diff --git a/.actrc b/.actrc
new file mode 100644
index 00000000000..e42d9a4a034
--- /dev/null
+++ b/.actrc
@@ -0,0 +1,5 @@
+ # Nektos act runs tests as root. Without this environment variable
+ # being set, CAPE exits at line 10 of web/web/settings.py,
+ # and no tests are run.
+
+ --env CAPE_AS_ROOT=1
diff --git a/.github/issue_template.md b/.github/ISSUE_TEMPLATE/bug_report.md
similarity index 63%
rename from .github/issue_template.md
rename to .github/ISSUE_TEMPLATE/bug_report.md
index 257757caad5..b62cec5cde2 100644
--- a/.github/issue_template.md
+++ b/.github/ISSUE_TEMPLATE/bug_report.md
@@ -1,15 +1,28 @@
-## This is opensource and you getting __free__ support so be friendly!
-* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)
+---
+name: Having problem/bug/issue
+about: Create a report to help us improve
+title: ''
+labels: ''
+assignees: ''
+
+---
+
+## About accounts on [capesandbox.com](https://capesandbox.com/)
+* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username
+
+## This is open source and you are getting __free__ support so be friendly!
 
 # Prerequisites
 
 Please answer the following questions for yourself before submitting an issue.
 
 - [ ] I am running the latest version
+- [ ] I did read the README!
 - [ ] I checked the documentation and found no answer
 - [ ] I checked to make sure that this issue has not already been filed
 - [ ] I'm reporting the issue to the correct repository (for multi-repository projects)
-- [ ] I'm have read all configs with all optional parts
+- [ ] I have read and checked all configs (with all optional parts)
+- [ ] Asked and no solution about my issue with [deepwiki](https://deepwiki.com/kevoreilly/CAPEv2)
 
 
 # Expected Behavior
@@ -34,7 +47,7 @@ Please provide detailed steps for reproducing the issue.
 
 ## Context
 
-Please provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.
+Please provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).
 
 | Question         | Answer
 |------------------|--------------------
diff --git a/.github/actions/python-setup/action.yml b/.github/actions/python-setup/action.yml
new file mode 100644
index 00000000000..8c950261bb6
--- /dev/null
+++ b/.github/actions/python-setup/action.yml
@@ -0,0 +1,32 @@
+name: 'Python setup steps that can be reused'
+description: 'Install dependencies, poetry, requirements'
+inputs:
+  python-version:
+    required: true
+    description: The python version
+
+runs:
+  using: "composite"
+  steps:
+    - name: Install dependencies
+      if: ${{ runner.os == 'Linux' }}
+      shell: bash
+      run: |
+        sudo apt update && sudo apt-get install -y --no-install-recommends libxml2-dev libxslt-dev python3-dev libgeoip-dev ssdeep libfuzzy-dev innoextract unrar upx
+
+    - name: Install poetry
+      shell: bash
+      run: PIP_BREAK_SYSTEM_PACKAGES=1 pip install poetry poetry-plugin-export
+    #- name: Python Poetry Action
+    #  uses: abatilo/actions-poetry@v3.0.1
+
+    - name: Set up Python ${{ inputs.python-version }}
+      uses: actions/setup-python@v5
+      with:
+        python-version: ${{ inputs.python-version }}
+        cache: 'poetry'
+
+    - name: Install requirements
+      shell: bash
+      run: |
+        PIP_BREAK_SYSTEM_PACKAGES=1 poetry install --no-interaction
diff --git a/.github/copilot-instructions.md b/.github/copilot-instructions.md
new file mode 100644
index 00000000000..5bc323d83fe
--- /dev/null
+++ b/.github/copilot-instructions.md
@@ -0,0 +1,58 @@
+# Copilot Instructions for CAPEv2
+
+## General Architecture
+- CAPEv2 is an automated malware analysis platform, based on Cuckoo Sandbox, with extensions for dynamic, static, and network analysis.
+- The backend is mainly Python, using SQLAlchemy for the database and Django/DRF for the web API.
+- Main components include:
+  - `lib/cuckoo/core/database.py`: database logic and ORM.
+  - `web/apiv2/views.py`: REST API endpoints (Django REST Framework).
+  - `lib/cuckoo/common/`: shared utilities, configuration, helpers.
+  - `storage/`: analysis results and temporary files.
+- Typical flow: sample upload → DB registration → VM assignment → analysis → result storage → API query.
+
+## Conventions and Patterns
+- Heavy use of SQLAlchemy 2.0 ORM, with explicit sessions and nested transactions (`begin_nested`).
+- Database models (Sample, Task, Machine, etc.) are always managed via `Database` object methods.
+- API endpoints always return a dict with `error`, `data`, and, if applicable, `error_value` keys.
+- Validation and request argument parsing is centralized in helpers (`parse_request_arguments`, etc.).
+- Integrity errors (e.g., duplicates) are handled with `try/except IntegrityError` and recovery of the existing object.
+- Tags are managed as comma-separated strings and normalized before associating to models.
+- Code avoids mutable global variables; configuration is accessed via `Config` objects.
+
+## Developer Workflows
+- No Makefile or standard build scripts; dependency management is usually via `poetry` or `pip`.
+- For testing, use virtual environments and run scripts manually.
+- Typical backend startup is via Django (`manage.py runserver`), and analysis workers are launched separately.
+- Database changes require manual migrations (see Alembic comments in `database.py`).
+
+## Integrations and Dependencies
+- Optional integration with MongoDB and Elasticsearch, controlled by configuration (`reporting.conf`).
+- The system can use different compression tools (zlib, 7zip) depending on config.
+- Sample analysis may invoke external utilities (e.g., Sflock, PE parsers).
+
+## Key Pattern Examples
+- IntegrityError handling example:
+  ```python
+  try:
+      with self.session.begin_nested():
+          self.session.add(sample)
+  except IntegrityError:
+      sample = self.session.scalar(select(Sample).where(Sample.md5 == file_md5))
+  ```
+- API response example:
+  ```python
+  return Response({"error": False, "data": result})
+  ```
+- Tag assignment example:
+  ```python
+  tags = ",".join(set(_tags))
+  ```
+
+## Key Files
+- `lib/cuckoo/core/database.py`: database logic, sample/task registration, machine management.
+- `web/apiv2/views.py`: REST endpoints, validation, high-level business logic.
+- `lib/cuckoo/common/`: utilities, helpers, configuration.
+
+---
+
+If you introduce new endpoints, helpers, or models, follow the validation, error handling, and standard response patterns. See the files above for implementation examples.
diff --git a/.github/workflows/antitemplaters.yml_disabled b/.github/workflows/antitemplaters.yml_disabled
new file mode 100644
index 00000000000..867e879c381
--- /dev/null
+++ b/.github/workflows/antitemplaters.yml_disabled
@@ -0,0 +1,17 @@
+on:
+  issues:
+    types: [opened, edited]
+
+jobs:
+  auto_close_issues:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v3
+
+      - name: Automatically close issues that don't follow the issue template
+        uses: lucasbento/auto-close-issues@v1.0.2
+        with:
+          github-token: ${{ secrets.GITHUB_TOKEN }}
+          issue-close-message: "@${issue.user.login}: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over." # optional property
+          closed-issues-label: "🙁 Not following issue template"
diff --git a/.github/workflows/auto_answer.yml b/.github/workflows/auto_answer.yml
new file mode 100644
index 00000000000..650358392be
--- /dev/null
+++ b/.github/workflows/auto_answer.yml
@@ -0,0 +1,36 @@
+name: Auto Answer Bot (using uv run)
+
+on:
+  issues:
+    types: [opened]
+
+jobs:
+  answer:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout repository code
+        uses: actions/checkout@v4
+
+      - name: Set up Python with caching
+        uses: actions/setup-python@v5
+        with:
+          python-version: '3.10'
+          cache: 'pip'
+
+      - name: Install uv
+        uses: astral-sh/setup-uv@v6
+        with:
+          enable-cache: true
+
+      - name: Run the answer bot with uv run
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+          GEMINI_API_KEY: ${{ secrets.GEMINI_API_KEY }}
+          ISSUE_NUMBER: ${{ github.event.issue.number }}
+          REPO_NAME: ${{ github.repository }}
+        run: |
+          cd KnowledgeBaseBot && \
+          uv run \
+          --with-requirements ../requirements.txt \
+          --with-requirements requirements.txt \
+          python auto_answer_bot.py
diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml
deleted file mode 100644
index 00dfb319f83..00000000000
--- a/.github/workflows/codeql-analysis.yml
+++ /dev/null
@@ -1,71 +0,0 @@
-# For most projects, this workflow file will not need changing; you simply need
-# to commit it to your repository.
-#
-# You may wish to alter this file to override the set of languages analyzed,
-# or to provide custom queries or build logic.
-name: "CodeQL"
-
-on:
-  push:
-    branches: [master]
-  pull_request:
-    # The branches below must be a subset of the branches above
-    branches: [master]
-  schedule:
-    - cron: '0 14 * * 2'
-
-jobs:
-  analyze:
-    name: Analyze
-    runs-on: ubuntu-latest
-
-    strategy:
-      fail-fast: false
-      matrix:
-        # Override automatic language detection by changing the below list
-        # Supported options are ['csharp', 'cpp', 'go', 'java', 'javascript', 'python']
-        language: ['python']
-        # Learn more...
-        # https://docs.github.com/en/github/finding-security-vulnerabilities-and-errors-in-your-code/configuring-code-scanning#overriding-automatic-language-detection
-
-    steps:
-    - name: Checkout repository
-      uses: actions/checkout@v2
-      with:
-        # We must fetch at least the immediate parents so that if this is
-        # a pull request then we can checkout the head.
-        fetch-depth: 2
-
-    # If this run was triggered by a pull request event, then checkout
-    # the head of the pull request instead of the merge commit.
-    - run: git checkout HEAD
-      if: ${{ github.event_name == 'pull_request' }}
-
-    # Initializes the CodeQL tools for scanning.
-    - name: Initialize CodeQL
-      uses: github/codeql-action/init@v1
-      with:
-        languages: ${{ matrix.language }}
-        # If you wish to specify custom queries, you can do so here or in a config file.
-        # By default, queries listed here will override any specified in a config file. 
-        # Prefix the list here with "+" to use these queries and those in the config file.
-        # queries: ./path/to/local/query, your-org/your-repo/queries@main
-
-    # Autobuild attempts to build any compiled languages  (C/C++, C#, or Java).
-    # If this step fails, then you should remove it and run the build manually (see below)
-    - name: Autobuild
-      uses: github/codeql-action/autobuild@v1
-
-    # ℹ️ Command-line programs to run using the OS shell.
-    # 📚 https://git.io/JvXDl
-
-    # ✏️ If the Autobuild fails above, remove it and uncomment the following three lines
-    #    and modify them (or add more) to build your code if your project
-    #    uses a compiled language
-
-    #- run: |
-    #   make bootstrap
-    #   make release
-
-    - name: Perform CodeQL Analysis
-      uses: github/codeql-action/analyze@v1
diff --git a/.github/workflows/export-requirements.yml b/.github/workflows/export-requirements.yml
new file mode 100644
index 00000000000..c54114b5747
--- /dev/null
+++ b/.github/workflows/export-requirements.yml
@@ -0,0 +1,46 @@
+name: Update requirements.txt file
+
+on:
+  push:
+    branches: [ master, staging ]
+    paths:
+      - "pyproject.toml"
+      - "poetry.lock"
+
+jobs:
+  update:
+    if: ${{ !github.event.act }} # skip during local actions testing
+    runs-on: ubuntu-latest
+    timeout-minutes: 5
+    strategy:
+      matrix:
+        python-version: ["3.10"]
+
+    steps:
+      - name: Check out repository code
+        uses: actions/checkout@v4
+
+      - name: Install poetry
+        run: pip install poetry poetry-plugin-export --user
+
+      - name: Set up Python ${{ matrix.python-version }}
+        uses: actions/setup-python@v5
+        with:
+          check-latest: true
+          python-version: ${{ matrix.python-version }}
+          cache: 'poetry'
+
+      - name: Export requirements.txt
+        run: poetry export --format requirements.txt --output requirements.txt
+
+      - name: Commit changes if any
+        # Skip this step if being run by nektos/act
+        if: ${{ !env.ACT }}
+        run: |
+          git config user.name "GitHub Actions"
+          git config user.email "action@github.com"
+          if output=$(git status --porcelain) && [ ! -z "$output" ]; then
+            git pull -f
+            git commit -m "ci: Update requirements.txt" -a
+            git push
+          fi
diff --git a/.github/workflows/pip-audit.yml b/.github/workflows/pip-audit.yml
new file mode 100644
index 00000000000..b47e7aaae6d
--- /dev/null
+++ b/.github/workflows/pip-audit.yml
@@ -0,0 +1,21 @@
+name: PIP audit
+
+on:
+  schedule:
+  - cron: '0 8 * * 1'
+
+jobs:
+  test:
+    runs-on: ubuntu-latest
+    timeout-minutes: 20
+    strategy:
+      matrix:
+        python-version: ["3.10"]
+
+    steps:
+      - name: Check out repository code
+        uses: actions/checkout@v4
+
+      - uses: pypa/gh-action-pip-audit@v1.0.8
+        with:
+          inputs: requirements.txt
diff --git a/.github/workflows/python-package-windows.yml b/.github/workflows/python-package-windows.yml
new file mode 100644
index 00000000000..5b8daa86df2
--- /dev/null
+++ b/.github/workflows/python-package-windows.yml
@@ -0,0 +1,43 @@
+name: Python tests on windows
+
+env:
+  COLUMNS: 120
+
+on:
+  push:
+    branches: [ master, staging ]
+  pull_request:
+    branches: [ master, staging ]
+
+jobs:
+  test:
+    runs-on: windows-latest
+    timeout-minutes: 20
+    strategy:
+      matrix:
+        python-version: ["3.10"]
+
+    steps:
+      - name: Check out repository code
+        uses: actions/checkout@v4
+
+      - name: Set up Python ${{ matrix.python-version }}
+        uses: actions/setup-python@v5
+        # Use x86 python because of https://github.com/kevoreilly/CAPEv2/issues/168
+        with:
+          python-version: ${{ matrix.python-version }}
+          cache: 'pip'
+          architecture: 'x86'
+
+      - name: Install dependencies
+        run: pip install --upgrade pytest requests
+
+      - name: Run analyzer unit tests
+        run: |
+          cd analyzer/windows
+          pytest -v .
+
+      - name: Run agent unit tests
+        run: |
+          cd agent
+          pytest -v .
diff --git a/.github/workflows/python-package.yml b/.github/workflows/python-package.yml
index bc175b34890..1d7cfd310fc 100644
--- a/.github/workflows/python-package.yml
+++ b/.github/workflows/python-package.yml
@@ -1,35 +1,83 @@
-# This workflow will install Python dependencies, run tests and lint with a variety of Python versions
-# For more information see: https://help.github.com/actions/language-and-framework-guides/using-python-with-github-actions
-
 name: Python package
 
+env:
+  COLUMNS: 120
+
 on:
   push:
-    branches: [ master ]
+    branches: [ master, staging ]
   pull_request:
-    branches: [ master ]
+    branches: [ master, staging ]
 
 jobs:
-  build:
+  test:
+    runs-on: ubuntu-22.04 # ubuntu-latest
+    timeout-minutes: 20
+    strategy:
+      matrix:
+        python-version: ["3.10"]
+    steps:
+      - name: Check out repository code
+        uses: actions/checkout@v4
+        with:
+          submodules: recursive
+
+      - name: Checkout test files repo
+        uses: actions/checkout@v4
+        with:
+          repository: CAPESandbox/CAPE-TestFiles
+          path: tests/data/
+
+      - uses: ./.github/actions/python-setup/
+        with:
+          python-version: ${{ matrix.python-version }}
 
-    runs-on: ubuntu-20.04
+      - name: Setup 7zz binary
+        run: |
+          mkdir -p data/
+          wget -q https://github.com/CAPESandbox/community/raw/master/data/7zz -O data/7zz
+          chmod +x data/7zz
+
+      - name: Install pyattck
+        run: |
+          poetry run pip install git+https://github.com/CAPESandbox/pyattck maco
+
+      - name: Run Ruff
+        run: poetry run ruff check . --output-format=github .
+
+      - name: Run unit tests
+        run: poetry run python -m pytest --import-mode=append
+
+      # see the mypy configuration in pyproject.toml
+      - name: Run mypy
+        run: poetry run mypy
+
+  format:
+    runs-on: ubuntu-latest
+    timeout-minutes: 20
     strategy:
       matrix:
-        python-version: [3.8]
+        python-version: ["3.10"]
+    if: ${{ github.ref == 'refs/heads/master' }}
 
     steps:
-    - uses: actions/checkout@v2
-    - name: Set up Python ${{ matrix.python-version }}
-      uses: actions/setup-python@v2
-      with:
-        python-version: ${{ matrix.python-version }}
-    - name: Install dependencies
-      run: |
-        python -m pip install --upgrade pip
-        pip install flake8
-    - name: Lint with flake8
-      run: |
-        # stop the build if there are Python syntax errors or undefined names
-        flake8 . --count --select=E9,F63,F7,F82 --show-source --statistics
-        # exit-zero treats all errors as warnings. The GitHub editor is 127 chars wide
-        flake8 . --count --exit-zero --max-complexity=10 --max-line-length=127 --statistics
+      - name: Check out repository code
+        uses: actions/checkout@v4
+
+      - name: Set up python
+        uses: ./.github/actions/python-setup
+        with:
+          python-version: ${{ matrix.python-version }}
+
+      - name: Commit changes if any
+        # Skip this step if being run by nektos/act
+        if: ${{ !env.ACT }}
+        run: |
+          git config user.name "GitHub Actions"
+          git config user.email "action@github.com"
+          if output=$(git status --porcelain) && [ ! -z "$output" ]; then
+            git pull
+            git add .
+            git commit -m "style: Automatic code formatting" -a
+            git push
+          fi
diff --git a/.github/workflows/todo.yml_disabled b/.github/workflows/todo.yml_disabled
new file mode 100644
index 00000000000..d5da8d8f1cc
--- /dev/null
+++ b/.github/workflows/todo.yml_disabled
@@ -0,0 +1,14 @@
+name: "ToDo to issue"
+
+on:
+  push:
+    branches: [ master ]
+
+jobs:
+  build:
+    runs-on: "ubuntu-latest"
+    steps:
+      - uses: "actions/checkout@master"
+      - name: "TODO to Issue"
+        uses: "alstr/todo-to-issue-action@v4.6.8"
+        id: "todo"
diff --git a/.github/workflows/yara-audit.yml b/.github/workflows/yara-audit.yml
new file mode 100644
index 00000000000..033a4e0edc1
--- /dev/null
+++ b/.github/workflows/yara-audit.yml
@@ -0,0 +1,36 @@
+name: YARA tests
+
+on:
+  schedule:
+  - cron: '0 8 * * 1'
+
+jobs:
+  test:
+    runs-on: ubuntu-latest
+    timeout-minutes: 20
+    strategy:
+      matrix:
+        python-version: ["3.10"]
+
+    steps:
+      - name: Check out repository code
+        uses: actions/checkout@v4
+
+      - name: Checkout test files repo
+        uses: actions/checkout@v4
+        with:
+          repository: CAPESandbox/CAPE-TestFiles
+          path: tests/data/
+
+      - uses: ./.github/actions/python-setup/
+        with:
+          python-version: ${{ matrix.python-version }}
+
+      - name: Install dependencies
+        run: |
+          sudo bash ./installer/cape2.sh yara
+          cd $GITHUB_WORKSPACE
+          bash -c "poetry run ./extra/yara_installer.sh"
+
+      - name: Run unit tests
+        run: poetry run pytest tests/test_yara.py -s --import-mode=append
diff --git a/.gitignore b/.gitignore
index c1c65554dbc..6c7756c82d9 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1,9 +1,26 @@
-
+.idea
 *.DS_Store
 *.log
-*.db 
+*.db
 *.sqlite
+*.pyc
+*.yarc
 __pycache__/
-env/
+.cache/
+.local/
 .env/
-*.pyc
+.vscode
+env/
+tests/test_objects/
+log/
+storage/
+conf/*.conf
+
+web/web/secret_key.py
+tests/test_bson.bson.compressed
+*~
+
+installer/cape-config.sh
+installer/kvm-config.sh
+
+docs/book/src/_build
\ No newline at end of file
diff --git a/.gitmodules b/.gitmodules
new file mode 100644
index 00000000000..fe7c79f691d
--- /dev/null
+++ b/.gitmodules
@@ -0,0 +1,3 @@
+[submodule "tests/data"]
+	path = tests/data
+	url = https://github.com/CAPESandbox/CAPE-TestFiles.git
diff --git a/.pre-commit-config.yaml b/.pre-commit-config.yaml
new file mode 100644
index 00000000000..8cc8a6fb07d
--- /dev/null
+++ b/.pre-commit-config.yaml
@@ -0,0 +1,34 @@
+repos:
+  - repo: https://github.com/pre-commit/pre-commit-hooks
+    rev: v4.3.0
+    hooks:
+      - id: check-json
+        exclude: tests/zip_compound/files/misconfiguration.json
+      - id: check-yaml
+      - id: end-of-file-fixer
+      - id: trailing-whitespace
+      - id: fix-byte-order-marker
+      - id: mixed-line-ending
+      - id: debug-statements
+
+  # - repo: https://github.com/csachs/pyproject-flake8
+  #   rev: v0.0.1a4
+  #   hooks:
+  #     - id: pyproject-flake8
+
+  - repo: https://github.com/astral-sh/ruff-pre-commit
+    rev: v0.3.0
+    hooks:
+      - id: ruff
+        args: [ --fix ]
+
+  - repo: https://github.com/psf/black
+    rev: 22.3.0
+    hooks:
+      - id: black
+
+  - repo: https://github.com/pycqa/isort
+    rev: 5.12.0
+    hooks:
+      - id: isort
+        name: isort (python)
diff --git a/.readthedocs.yaml b/.readthedocs.yaml
new file mode 100644
index 00000000000..52d6b21e9b6
--- /dev/null
+++ b/.readthedocs.yaml
@@ -0,0 +1,28 @@
+# Read the Docs configuration file for Sphinx projects
+# See https://docs.readthedocs.io/en/stable/config-file/v2.html for details
+
+# Required
+version: 2
+
+# Set the OS, Python version and other tools you might need
+build:
+  os: ubuntu-22.04
+  tools:
+    python: "3.12"
+
+# Build documentation in the "docs/" directory with Sphinx
+sphinx:
+  configuration: docs/book/src/conf.py
+  # You can configure Sphinx to use a different builder, for instance use the dirhtml builder for simpler URLs
+  # builder: "dirhtml"
+  # Fail on all warnings to avoid broken references
+  # fail_on_warning: true
+
+# Optionally build your docs in additional formats such as PDF and ePub
+# formats:
+#    - pdf
+#    - epub
+
+python:
+  install:
+    - requirements: docs/requirements.txt
diff --git a/.yara-ci.yml b/.yara-ci.yml
index ea65c036334..0f45c6ce69e 100644
--- a/.yara-ci.yml
+++ b/.yara-ci.yml
@@ -1,8 +1,13 @@
 files:
   accept:
   - "data/yara/**.yar"
-  - "analyzer/windows/data/yara/*.yar"
+  - "analyzer/windows/data/yara/**.yar"
 
 false_positives:
   ignore:
-    - rule: "CobaltStrikeBeacon"
+  - rule: "CobaltStrikeBeacon"
+  - rule: "Emotet"
+  - rule: "NSIS"
+  - rule: "UPX"
+  - rule: "Syscall"
+  - rule: "FormhookB"
diff --git a/CITATION.cff b/CITATION.cff
new file mode 100644
index 00000000000..0ff467afb39
--- /dev/null
+++ b/CITATION.cff
@@ -0,0 +1,21 @@
+cff-version: 1.2.0
+title: "CAPE: Malware Configuration And Payload Extraction"
+message: "If you use this software, please cite it as below."
+type: software
+authors:
+  - given-names: Kevin
+    family-names: O'Reilly
+  - given-names: Andriy
+    family-names: Brukhovetskyy
+url: "https://github.com/kevoreilly/CAPEv2"
+version: 2
+abstract: >
+  CAPEv2: Malware Configuration And Payload Extraction is a
+  malware sandbox.
+keywords:
+  - malware
+  - sandbox
+  - cape
+  - capev2
+  - analysis
+license: GPL-3.0
diff --git a/KnowledgeBaseBot/all_texts.json b/KnowledgeBaseBot/all_texts.json
new file mode 100644
index 00000000000..fcabc301726
--- /dev/null
+++ b/KnowledgeBaseBot/all_texts.json
@@ -0,0 +1,3014 @@
+[
+  "CAPE Sandbox Book\n\nCAPE Sandbox is an Open Source software for automating analysis of suspicious files. To do so it makes use of custom components that monitor the behavior of the malicious processes while running in an isolated environment.\n\nThis guide will explain how to set up CAPE, use it and customize it.\n\nHaving troubles?\n\nIf you're having troubles you might want to check out the FAQ <faq/index> as it may already have the answers to your questions.\n\nfaq/index\n\nOtherwise you can ask the developers and/or other CAPE users, see Join the discussion <finalremarks/index>.\n\nContents\n\nintroduction/index installation/index usage/index customization/index integrations/index development/index finalremarks/index",
+  "Customization\n\nThis chapter explains how to customize CAPE. CAPE is written in a modular architecture built to be as customizable as it can, to fit the needs of all users.\n\nauxiliary machinery packages processing signatures reporting",
+  "Reporting Modules\n\nAfter the raw analysis results have been processed and abstracted by the processing modules and the global container is generated (ref. processing), it is passed over by CAPE to all the reporting modules available, which will make use of it and will make it accessible and consumable in different formats.\n\nGetting Started\n\nAll reporting modules must be placed inside the directory modules/reporting/.\n\nEvery module must also have a dedicated section in the file conf/reporting.conf: for example, if you create a module module/reporting/foobar.py you will have to append the following section to conf/reporting.conf:\n\n[foobar]\nenabled = on\n\nEvery additional option you add to your section will be available to your reporting module in the self.options dictionary.\n\nFollowing is an example of a working JSON reporting module:\n\nimport os\nimport json\nimport codecs\n\nfrom lib.cuckoo.common.abstracts import Report\nfrom lib.cuckoo.common.exceptions import CuckooReportError",
+  "class JsonDump(Report):\n    \"\"\"Saves analysis results in JSON format.\"\"\"\n\n    def run(self, results):\n        \"\"\"Writes report.\n        @param results: Cuckoo results dict.\n        @raise CuckooReportError: if fails to write report.\n        \"\"\"\n        try:\n            report = codecs.open(os.path.join(self.reports_path, \"report.json\"), \"w\", \"utf-8\")\n            json.dump(results, report, sort_keys=False, indent=4)\n            report.close()\n        except (UnicodeError, TypeError, IOError) as e:\n            raise CuckooReportError(\"Failed to generate JSON report: %s\" % e)\n\nThis code is very simple, it just receives the global container produced by the processing modules, converts it into JSON, and writes it to a file.\n\nThere are a few requirements for writing a valid reporting module:\n\nDeclare your class inheriting from Report.\n\nHave a run() function performing the main operations.\n\nTry to catch most exceptions and raise CuckooReportError to notify the issue.",
+  "Try to catch most exceptions and raise CuckooReportError to notify the issue.\n\nAll reporting modules have access to some attributes:\n\nself.analysis_path: path to the folder containing the raw analysis results (e.g. storage/analyses/1/)\n\nself.reports_path: path to the folder where the reports should be written (e.g. storage/analyses/1/reports/)\n\nself.conf_path: path to the analysis.conf file of the current analysis (e.g. storage/analyses/1/analysis.conf)\n\nself.options: a dictionary containing all the options specified in the report's configuration section in conf/reporting.conf.",
+  "Auxiliary Modules\n\nAuxiliary modules define some procedures that need to be executed in parallel to every single analysis process. All auxiliary modules should be placed under the modules/auxiliary/ directory.\n\nThe skeleton of a module would look something like this:\n\nfrom lib.cuckoo.common.abstracts import Auxiliary\n\nclass MyAuxiliary(Auxiliary):\n\n    def start(self):\n        # Do something.\n\n    def stop(self):\n        # Stop the execution.\n\nThe function start() will be executed before starting the analysis machine and effectively executing the submitted malicious file, while the stop() function will be launched at the very end of the analysis process, before launching the processing and reporting procedures.\n\nFor example, an auxiliary module provided by default in CAPE is called sniffer.py and takes care of executing tcpdump in order to dump the generated network traffic.\n\nAuxiliary Module Configuration",
+  "Auxiliary Module Configuration\n\nAuxiliary modules can be \"configured\" before being started. This allows data to be added at runtime, whilst also allowing for the configuration to be stored separately from the CAPE python code.\n\nPrivate Auxiliary Module Configuration\n\nPrivate auxiliary module configuration is stored outside the auxiliary class, in a module under the same name as the auxiliary module. This is useful when managing configuration of auxiliary modules separately if desired, for privacy reasons or otherwise.\n\nHere is a configuration module example that installs some software prior to the auxiliary module starting:\n\n# data/auxiliary/example.py\nimport subprocess\nimport logging\nfrom pathlib import Path\n\nlog = logging.getLogger(__name__)\nBIN_PATH = Path.cwd() / \"bin\"",
+  "log = logging.getLogger(__name__)\nBIN_PATH = Path.cwd() / \"bin\"\n\n\ndef configure(aux_instance):\n    # here \"example\" refers to modules.auxiliary.example.Example\n    if not aux_instance.enabled:\n        return\n    msi = aux_instance.options.get(\"example_msi\")\n    if not msi:\n        return\n    msi_path = BIN_PATH / msi\n    if not msi_path.exists():\n        log.warning(\"missing MSI %s\", msi_path)\n        return\n    cmd = [\"msiexec\", \"/i\", msi_path, \"/quiet\"]\n    try:\n        log.info(\"Executing msi package...\")\n        subprocess.check_output(cmd)\n        log.info(\"Installation succesful\")\n    except subprocess.CalledProcessError as exc:\n        log.error(\"Installation failed: %s\", exc)\n        return",
+  "Analysis Packages\n\nAs explained in ../usage/packages, analysis packages are structured Python classes that describe how CAPE's analyzer component should conduct the analysis procedure for a given file inside the guest environment.\n\nAs you already know, you can create your packages and add them along with the default ones. Designing new packages is very easy and requires just a minimal understanding of programming and the Python language.\n\nGetting started\n\nAs an example we'll take a look at the default package for analyzing generic Windows executables (located at analyzer/windows/packages/exe.py):\n\nfrom lib.common.abstracts import Package\n\nclass Exe(Package):\n    \"\"\"EXE analysis package.\"\"\"\n\n    def start(self, path):\n        args = self.options.get(\"arguments\")\n        return self.execute(path, args)\n\nIt seems easy, thanks to all methods inherited by the Package object. Let's have a look at some of the main methods an analysis package inherits from the Package object:",
+  "from lib.api.process import Process\nfrom lib.common.exceptions import CuckooPackageError\n\nclass Package:\n    def start(self):\n        raise NotImplementedError\n\n    def check(self):\n        return True\n\n    def execute(self, path, args):\n        dll = self.options.get(\"dll\")\n        free = self.options.get(\"free\")\n        suspended = True\n        if free:\n            suspended = False\n\n        p = Process()\n        if not p.execute(path=path, args=args, suspended=suspended):\n            raise CuckooPackageError(\"Unable to execute the initial process, \"\n                                     \"analysis aborted.\")\n\n        if not free and suspended:\n            p.inject(dll)\n            p.resume()\n            p.close()\n            return p.pid\n\n    def finish(self):\n        if self.options.get(\"procmemdump\"):\n            for pid in self.pids:\n                p = Process(pid=pid)\n                p.dump_memory()\n        return True\n\nstart()",
+  "start()\n\nIn this function you have to place all the initialization operations you want to run. This may include running the malware process, launching additional applications, taking memory snapshots, and more.\n\ncheck()\n\nThis function is executed by CAPE every second while the malware is running. You can use this function to perform any kind of recurrent operation.\n\nFor example, if in your analysis you are looking for just one specific indicator to be created (e.g. a file) you could place your condition in this function and if it returns False, the analysis will terminate straight away.\n\nThink of it as \"should the analysis continue or not?\".\n\nFor example:\n\ndef check(self):\n    if os.path.exists(\"C:\\\\config.bin\"):\n        return False\n    else:\n        return True\n\nThis check() function will cause CAPE to immediately terminate the analysis whenever C:\\config.bin is created.\n\nexecute()\n\nWraps the malware execution and deals with DLL injection.\n\nfinish()",
+  "execute()\n\nWraps the malware execution and deals with DLL injection.\n\nfinish()\n\nThis function is simply called by CAPE before terminating the analysis and powering off the machine. By default, this function contains an optional feature to dump the process memory of all the monitored processes.\n\nOptions\n\nEvery package has automatically access to a dictionary containing all user-specified options (see ../usage/submit).\n\nSuch options are made available in the attribute self.options. For example, let's assume that the user specified the following string at submission:\n\nfoo=1,bar=2\n\nThe analysis package selected will have access to these values:\n\nfrom lib.common.abstracts import Package\n\nclass Example(Package):\n\n    def start(self, path):\n        foo = self.options[\"foo\"]\n        bar = self.options[\"bar\"]\n\n    def check():\n        return True\n\n    def finish():\n        return True\n\nThese options can be used for anything you might need to configure inside your package.",
+  "These options can be used for anything you might need to configure inside your package.\n\nPackage Configuration\n\nAnalysis packages can be \"configured\" before being started. Package configuration comes in two forms:\n\nPublic configuration\n\nPrivate configuration\n\nPublic configuration is stored within the analysis package class itself. Private configuration is stored externally, as data added to CAPE at runtime, separate from the CAPE Python code.\n\nPublic Package Configuration\n\nPublic package configuration is stored directly in the analysis package itself. This form of configuration is useful when configuring the host execution environment before the analysis is started.\n\nFor example, here is a alternative PDF package with lowered security settings:\n\nfrom lib.common.abstracts import Package\nfrom lib.common.exceptions import CuckooPackageError\nfrom lib.common.registry import *\n\n\nclass PDFLS(Package):\n    \"\"\"PDF analysis package, with lowered security settings.\"\"\"",
+  "class PDFLS(Package):\n    \"\"\"PDF analysis package, with lowered security settings.\"\"\"\n\n    PATHS = [\n        (\"ProgramFiles\", \"Adobe\", \"Acrobat DC\", \"Acrobat\", \"Acrobat.exe\"),\n    ]\n\n    def __init__(self, options=None, config=None):\n        \"\"\"@param options: options dict.\"\"\"\n        if options is None:\n            options = {}\n        self.config = config\n        self.options = options\n        self.options[\"pdf\"] = \"1\"\n\n    def configure(self, target):\n        rootkey, subkey = \"HKEY_CURRENT_USER\", r\"SOFTWARE\\Adobe\\Adobe Acrobat\\DC\"\n        set_regkey(rootkey, fr\"{subkey}\\Privileged\", \"bProtectedMmode\", REG_DWORD, 0)\n        set_regkey(rootkey, fr\"{subkey}\\JSPrefs\", \"bEnableJS\", REG_DWORD, 1)\n        set_regkey(rootkey, fr\"{subkey}\\JSPrefs\", \"bEnableGlobalSecurity\", REG_DWORD, 0)\n\n    def start(self, path):\n        reader = self.get_path_glob(\"Acrobat.exe\")\n        return self.execute(reader, f'\"{path}\"', path)\n\nPrivate Package Configuration",
+  "Private Package Configuration\n\nPrivate package configuration is stored outside the analysis package class, in a module under the same name as the analysis package. This is useful when managing configuration of package capabilities separately is desired, for privacy reasons or otherwise.\n\nFor example, here is a private package configuration for exe analysis that disables ASLR for the target being analyzed:\n\n# data/packages/exe.py\nimport lief\n\ndef configure(package, target):\n    # here \"package\" refers to modules.packages.exe.Exe\n    if package.options.get(\"disable-aslr\"):\n        pe_binary = lief.parse(target)\n        old_flags = pe_binary.optional.header.dll_characteristics\n        # unset DYNAMIC_BASE\n        new_flags = (old_flags & ~lief.PE.OptionalHeader.DLL_CHARACTERISTICS.DYNAMIC_BASE)\n        pe_binary.optional_header.dll_characteristics = new_flags\n        pe_binary.write(target)\n\nProcess API",
+  "Process API\n\nThe Process class provides access to different process-related features and functions. You can import it into your analysis packages with:\n\nfrom lib.api.process import Process\n\nYou then initialize an instance with:\n\np = Process()\n\nIn case you want to open an existing process instead of creating a new one, you can specify multiple arguments:\n\npid: PID of the process you want to operate on.\n\nh_process: handle of a process you want to operate on.\n\nthread_id: thread ID of a process you want to operate on.\n\nh_thread: handle of the thread of a process you want to operate on.\n\nThis class implements several methods that you can use in your scripts.\n\nMethods\n\nProcess.open()\n\nOpens an handle to a running process. Returns True or False in case of success or failure of the operation.\n\nExample Usage:\n\np = Process(pid=1234)\np.open()\nhandle = p.h_process\n\nProcess.exit_code()",
+  "Example Usage:\n\np = Process(pid=1234)\np.open()\nhandle = p.h_process\n\nProcess.exit_code()\n\nReturns the exit code of the opened process. If it wasn't already done before, exit_code() will perform a call to open() to acquire an handle to the process.\n\nExample Usage:\n\np = Process(pid=1234)\ncode = p.exit_code()\n\nProcess.is_alive()\n\nCalls exit_code() and verify if the returned code is STILL_ACTIVE, meaning that the given process is still running. Returns True or False.\n\nExample Usage:\n\np = Process(pid=1234)\nif p.is_alive():\n    print(\"Still running!\")\n\nProcess.get_parent_pid()\n\nReturns the PID of the parent process of the opened process. If it wasn't already done before, get_parent_pid() will perform a call to open() to acquire an handle to the process.\n\nExample Usage:\n\np = Process(pid=1234)\nppid = p.get_parent_pid()\n\nProcess.execute(path [, args=None[, suspended=False]])\n\nExecutes the file at the specified path. Returns True or False in case of success or failure of the operation.",
+  "Example Usage:\n\np = Process()\np.execute(path=\"C:\\\\WINDOWS\\\\system32\\\\calc.exe\", args=\"Something\", suspended=True)\n\nProcess.resume()\n\nResumes the opened process from a suspended state. Returns True or False in case of success or failure of the operation.\n\nExample Usage:\n\np = Process()\np.execute(path=\"C:\\\\WINDOWS\\\\system32\\\\calc.exe\", args=\"Something\", suspended=True)\np.resume()\n\nProcess.terminate()\n\nTerminates the opened process. Returns True or False in case of success or failure of the operation.\n\nExample Usage:\n\np = Process(pid=1234)\nif p.terminate():\n    print(\"Process terminated!\")\nelse:\n    print(\"Could not terminate the process!\")\n\nProcess.inject([dll[, apc=False]])\n\nInjects a DLL (by default \"dll/capemon.dll\") into the opened process. Returns True or False in case of success or failure of the operation.\n\nExample Usage:\n\np = Process()\np.execute(path=\"C:\\\\WINDOWS\\\\system32\\\\calc.exe\", args=\"Something\", suspended=True)\np.inject()\np.resume()\n\nProcess.dump_memory()",
+  "Process.dump_memory()\n\nTakes a snapshot of the given process' memory space. Returns True or False in case of success or failure of the operation.\n\nExample Usage:\n\np = Process(pid=1234)\np.dump_memory()",
+  "Machinery Modules\n\nMachinery modules define how CAPE should interact with your virtualization software (or potentially even with physical disk imaging solutions). Since we decided to not enforce any particular vendor, from release 0.4 you can use your preferred solution and, in case it's not supported by default, write a custom Python module that defines how to make CAPE use it.\n\nEvery machinery module should be located inside modules/machinery/.\n\nA basic machinery module would look like this:\n\nfrom lib.cuckoo.common.abstracts import Machinery\nfrom lib.cuckoo.common.exceptions import CuckooMachineError\n\nclass MyMachinery(Machinery):\n    def start(self, label):\n        try:\n            revert(label)\n            start(label)\n        except SomethingBadHappens as e:\n            raise CuckooMachineError(\"OPS!\")\n\n    def stop(self, label):\n        try:\n            stop(label)\n        except SomethingBadHappens as e:\n            raise CuckooMachineError(\"OPS!\")",
+  "The only requirements for Cuckoo are that:\n\nThe class inherits from Machinery.\n\nYou have a start() and stop() functions.\n\nYou raise CuckooMachineError when something fails.\n\nAs you understand, the machinery module is a core part of a CAPE setup, therefore make sure to spend enough time debugging your code and make it solid and resistant to any unexpected error.\n\nConfiguration\n\nEvery machinery module should come with a dedicated configuration file located in conf/<machinery module name>.conf. For example, for modules/machinery/kvm.py we have a conf/kvm.conf.\n\nThe configuration file should follow the default structure:\n\n[kvm]\n# Specify a comma-separated list of available machines to be used. For each\n# specified ID you have to define a dedicated section containing the details\n# on the respective machine. (E.g. cape1,cape2,cape3)\nmachines = cape1\n\n[cape1]\n# Specify the label name of the current machine as specified in your\n# libvirt configuration.\nlabel = cape1",
+  "# Specify the operating system platform used by current machine\n# [windows/darwin/linux].\nplatform = windows\n\n# Specify the IP address of the current machine. Make sure that the IP address\n# is valid and that the host machine is able to reach it. If not, the analysis\n# will fail.\nip = 192.168.122.105\n\nThe main section is called [<name of the module>] with a machines field containing a comma-separated list of machines IDs.\n\nFor each machine, you should specify a label, a platform, and its ip.\n\nThese fields are required by CAPE to use the already embedded initialize() function that generates the list of available machines.\n\nIf you plan to change the configuration structure you should override the initialize() function (inside your module, no need to modify CAPE's core code). You can find its original code in the Machinery abstract inside lib/cuckoo/common/abstracts.py.\n\nLibVirt",
+  "LibVirt\n\nStarting with Cuckoo 0.5 developing new machinery modules based on LibVirt is easy. Inside lib/cuckoo/common/abstracts.py you can find LibVirtMachinery that already provides all the functionality for a LibVirt module. Just inherit this base class and specify your connection string, as in the example below:\n\nfrom lib.cuckoo.common.abstracts import LibVirtMachinery\n\nclass MyMachinery(LibVirtMachinery):\n    # Set connection string.\n    dsn = \"my:///connection\"\n\nThis works for all the virtualization technologies supported by LibVirt. Just remember to check if your LibVirt package (if you are using one, for example from your Linux distribution) is compiled with the support for the technology you need.\n\nYou can check it with the following command:\n\n$ virsh -V\nVirsh command line tool of libvirt 0.9.13\nSee web site at http://libvirt.org/",
+  "$ virsh -V\nVirsh command line tool of libvirt 0.9.13\nSee web site at http://libvirt.org/\n\nCompiled with support for:\n Hypervisors: QEmu/KVM LXC UML Xen OpenVZ VMWare Test\n Networking: Remote Daemon Network Bridging Interface Nwfilter VirtualPort\n Storage: Dir Disk Filesystem SCSI Multipath iSCSI LVM\n Miscellaneous: Nodedev AppArmor Secrets Debug Readline Modular\n\nIf you don't find your virtualization technology in the list of Hypervisors, you will need to recompile LibVirt with the specific support for the missing one.",
+  "Processing Modules\n\nCAPE's processing modules are Python scripts that let you define custom ways to analyze the raw results generated by the sandbox and append some information to a global container that will be later used by the signatures and the reporting modules.\n\nYou can create as many modules as you want, as long as they follow a predefined structure that we will present in this chapter.\n\nGlobal Container\n\nAfter an analysis is completed, CAPE will invoke all the processing modules available in the modules/processing/ directory. Any additional module you decide to create must be placed inside that directory.\n\nEvery module should also have a dedicated section in the file conf/processing.conf: for example, if you create a module module/processing/foobar.py you will have to append the following section to conf/processing.conf:\n\n[foobar]\nenabled = on",
+  "[foobar]\nenabled = on\n\nEvery module will then be initialized and executed and the data returned will be appended in a data structure that we'll call global container.\n\nThis container is simply just a big Python dictionary that includes the abstracted results produced by all the modules classified by their identification key.\n\nCAPE already provides a default set of modules that will generate a standard global container. It's important for the existing reporting modules (HTML report etc.) that these default modules are not modified, otherwise, the resulting global container structure would change and the reporting modules wouldn't be able to recognize it and extract the information used to build the final reports.\n\nGetting started\n\nTo make them available to CAPE, all processing modules must be placed inside the folder at modules/processing/.\n\nA basic processing module could look like this:\n\nfrom lib.cuckoo.common.abstracts import Processing\n\nclass MyModule(Processing):",
+  "from lib.cuckoo.common.abstracts import Processing\n\nclass MyModule(Processing):\n\n    def run(self):\n        self.key = \"key\"\n        data = do_something()\n        return data\n\nYou can also specify an order value, which allows you to run the available processing modules in an ordered sequence. By default, all modules are set with an order value of 1 and are executed in alphabetical order.\n\nIf you want to change this value your module would look like this:\n\nfrom lib.cuckoo.common.abstracts import Processing\n\nclass MyModule(Processing):\n    order = 2\n\n    def run(self):\n        self.key = \"key\"\n        data = do_something()\n        return data\n\nYou can also manually disable a processing module by setting the enabled attribute to False:\n\nfrom lib.cuckoo.common.abstracts import Processing\n\nclass MyModule(Processing):\n    enabled = False\n\n    def run(self):\n        self.key = \"key\"\n        data = do_something()\n        return data",
+  "def run(self):\n        self.key = \"key\"\n        data = do_something()\n        return data\n\nThe processing modules are provided with some attributes that can be used to access the raw results for the given analysis:\n\nself.analysis_path: path to the folder containing the results (e.g. storage/analysis/1)\n\nself.log_path: path to the analysis.log file.\n\nself.conf_path: path to the analysis.conf file.\n\nself.file_path: path to the analyzed file.\n\nself.dropped_path: path to the folder containing the dropped files.\n\nself.logs_path: path to the folder containing the raw behavioral logs.\n\nself.shots_path: path to the folder containing the screenshots.\n\nself.pcap_path: path to the network pcap dump.\n\nself.memory_path: path to the full memory dump, if created.\n\nself.pmemory_path: path to the process memory dumps, if created.\n\nWith these attributes, you should be able to easily access all the raw results stored by CAPE and perform your analytic operations on them.",
+  "As a last note, a good practice is to use the CuckooProcessingError exception whenever the module encounters an issue you want to report to CAPE. This can be done by importing the class like this:\n\nfrom lib.cuckoo.common.exceptions import CuckooProcessingError\nfrom lib.cuckoo.common.abstracts import Processing\n\nclass MyModule(Processing):\n\n    def run(self):\n        self.key = \"key\"\n\n        try:\n            data = do_something()\n        except SomethingFailed:\n            raise CuckooProcessingError(\"Failed\")\n\n        return data",
+  "Signatures\n\nBy taking advantage of CAPE's customizability, you can write signatures which will then by run against analysis results. These signatures can be used to identify a predefined pattern that represents a malicious behavior or an indicator that you're interested in.\n\nThese signatures are very useful to give context to the analyses. They simplify the interpretation of the results and assist with automatically identifying malware samples of interest.\n\nYou can find signatures created by the CAPE administrators and other CAPE users on the Community repository.\n\nGetting Started\n\nCreating a signature is a very simple process but requires a decent understanding of Python programming.\n\nFirst things first, all signatures must be located inside the modules/signatures/ directory.\n\nThe following is a basic example signature:\n\nfrom lib.cuckoo.common.abstracts import Signature",
+  "The following is a basic example signature:\n\nfrom lib.cuckoo.common.abstracts import Signature\n\nclass CreatesExe(Signature):\n    name = \"creates_exe\"\n    description = \"Creates a Windows executable on the filesystem\"\n    severity = 2\n    categories = [\"generic\"]\n    authors = [\"CAPE Developers\"]\n    minimum = \"0.5\"\n\n    def run(self):\n        return self.check_file(pattern=\".*\\\\.exe$\",\n                               regex=True)\n\nAs you can see the structure of the signature is really simple and consistent with the other CAPE modules. Note that on line 12 a helper function is used. These helper functions assist with signature-writing and we highly recommend becoming familiar with what helper functions are available to you (found in the [Signature class](https://github.com/kevoreilly/CAPEv2/blob/master/lib/cuckoo/common/abstracts.py)) before you start writing signatures. Some documentation for Helpers can be found below.",
+  "In the example above, the helper function is used to walk through all of the accessed files in the summary and check if there are any files ending with \"*.exe*\". If there is at least one, then the helper function will return True; otherwise it will return False. When a signature returns True, that means that the signature matched.\n\nIf the signature matches, a new entry in the \"signatures\" section will be added to the global container self.results as follows:\n\n\"signatures\": [\n    {\n        \"severity\": 2,\n        \"description\": \"Creates a Windows executable on the filesystem\",\n        \"alert\": false,\n        \"references\": [],\n        \"data\": [\n            {\n                \"file_name\": \"C:\\\\d.exe\"\n            }\n        ],\n        \"name\": \"creates_exe\"\n    }\n]\n\nWe could rewrite the exact same signature by accessing the global container directly, rather than through the helper function `check_file`:\n\nfrom lib.cuckoo.common.abstracts import Signature",
+  "from lib.cuckoo.common.abstracts import Signature\n\nclass CreatesExe(Signature):\n    name = \"creates_exe\"\n    description = \"Creates a Windows executable on the filesystem\"\n    severity = 2\n    categories = [\"generic\"]\n    authors = [\"Cuckoo Developers\"]\n    minimum = \"0.5\"\n\n    def run(self):\n        for file_path in self.results[\"behavior\"][\"summary\"][\"files\"]:\n            if file_path.endswith(\".exe\"):\n                return True\n\n        return False\n\nIf you access the global container directly, you must know its structure, which can be observed in the JSON report of your analyses.\n\nCreating your new signature\n\nTo help you better understand the process of creating a signature, we are going to create a very simple one together and walk through the steps and the available options. For this purpose, we're going to create a signature that checks whether the malware analyzed opens a mutex named \"i_am_a_malware\".",
+  "The first thing to do is to import the dependencies, create a skeleton, and define some initial attributes. These are the attributes that you can currently set:\n\nname: an identifier for the signature.\n\ndescription: a brief description of what the signature represents.\n\nseverity: a number identifying the severity of the events matched (generally between 1 and 3).\n\nconfidence: a number between 1 and 100 that represents how confident the signature writer is that this signature will not be raised as a false positive.\n\nweight: a number used for calculating the malscore of a submission. This attribute acts as a multiplier of the product of severity and confidence.\n\ncategories: a list of categories that describe the type of event being matched (for example \"*banker*\", \"*injection*\" or \"*anti-vm*\"). For a list of all categories, see Categories.\n\nfamilies: a list of malware family names, in case the signature specifically matches a known one.",
+  "families: a list of malware family names, in case the signature specifically matches a known one.\n\nauthors: a list of people who authored the signature.\n\nreferences: a list of references (URLs) to give context to the signature.\n\nenabled: if set to False the signature will be skipped.\n\nalert: if set to True can be used to specify that the signature should be reported (perhaps by a dedicated reporting module).\n\nminimum: the minimum required version of CAPE to successfully run this signature.\n\nmaximum: the maximum required version of CAPE to successfully run this signature.\n\nttps: a list of MITRE ATT&CK IDs applicable to this signature.\n\nmbcs: a list of MITRE Malware Behavior Catalog IDs applicable to this signature.\n\nIn our example, we will create the following skeleton:\n\nfrom lib.cuckoo.common.abstracts import Signature",
+  "from lib.cuckoo.common.abstracts import Signature\n\nclass BadBadMalware(Signature): # We initialize the class by inheriting Signature.\n    name = \"badbadmalware\" # We define the name of the signature\n    description = \"Creates a mutex known to be associated with Win32.BadBadMalware\" # We provide a description\n    severity = 3 # We set the severity to maximum\n    categories = [\"trojan\"] # We add a category\n    families = [\"badbadmalware\"] # We add the name of our fictional malware family\n    authors = [\"Me\"] # We specify the author\n    minimum = \"0.5\" # We specify that in order to run the signature, the user will need at least CAPE 0.5\n\ndef run(self):\n    return\n\nThis is a perfectly valid signature. It doesn't do anything yet, so now we need to define the conditions for the signature to be matched.\n\nSince we want to match a particular mutex name, we use the helper function `check_mutex`:\n\nfrom lib.cuckoo.common.abstracts import Signature",
+  "from lib.cuckoo.common.abstracts import Signature\n\nclass BadBadMalware(Signature):\n    name = \"badbadmalware\"\n    description = \"Creates a mutex known to be associated with Win32.BadBadMalware\"\n    severity = 3\n    categories = [\"trojan\"]\n    families = [\"badbadmalware\"]\n    authors = [\"Me\"]\n    minimum = \"0.5\"\n\ndef run(self):\n    return self.check_mutex(\"i_am_a_malware\")\n\nIt's as simple as that! Now our signature will return True if the analyzed malware was observed opening the specified mutex.\n\nIf you want to be more explicit and directly access the global container, you could translate the previous signature in the following way:\n\nfrom lib.cuckoo.common.abstracts import Signature\n\nclass BadBadMalware(Signature):\n    name = \"badbadmalware\"\n    description = \"Creates a mutex known to be associated with Win32.BadBadMalware\"\n    severity = 3\n    categories = [\"trojan\"]\n    families = [\"badbadmalware\"]\n    authors = [\"Me\"]\n    minimum = \"0.5\"",
+  "def run(self):\n    for mutex in self.results[\"behavior\"][\"summary\"][\"mutexes\"]:\n        if mutex == \"i_am_a_malware\":\n            return True\n\n    return False\n\nEvented Signatures\n\nSince version 1.0, CAPE provides a way to write more high-performance signatures. In the past, every signature was required to loop through the whole collection of API calls collected during the analysis. This was necessarily causing some performance issues when such a collection would be large.\n\nCAPE now supports both the old model as well as what we call \"evented signatures\". The main difference is that with this new format, all the signatures will be executed in parallel and a callback function called on_call() will be invoked for each signature within one single loop through the collection of API calls.\n\nAn example signature using this technique is the following:\n\nfrom lib.cuckoo.common.abstracts import Signature",
+  "from lib.cuckoo.common.abstracts import Signature\n\nclass SystemMetrics(Signature):\n    name = \"generic_metrics\"\n    description = \"Uses GetSystemMetrics\"\n    severity = 2\n    categories = [\"generic\"]\n    authors = [\"CAPE Developers\"]\n    minimum = \"1.0\"\n\n    # Evented signatures need to implement the \"on_call\" method\n    evented = True\n\n    # Evented signatures can specify filters that reduce the amount of\n    # API calls that are streamed in. One can filter Process name, API\n    # name/identifier and category. These should be sets for faster lookup.\n    filter_processnames = set()\n    filter_apinames = set([\"GetSystemMetrics\"])\n    filter_categories = set()\n\n    # This is a signature template. It should be used as a skeleton for\n    # creating custom signatures, therefore is disabled by default.\n    # The on_call function is used in \"evented\" signatures.\n    # These use a more efficient way of processing logged API calls.\n    enabled = False",
+  "def stop(self):\n        # In the stop method one can implement any cleanup code and\n        #  decide one last time if this signature matches or not.\n        #  Return True in case it matches.\n        return False\n\n    # This method will be called for every logged API call by the loop\n    # in the RunSignatures plugin. The return value determines the \"state\"\n    # of this signature. True means the signature matched and False means\n    # it can't match anymore. Both of which stop streaming in API calls.\n    # Returning None keeps the signature active and will continue.\n    def on_call(self, call, process):\n        # This check would in reality not be needed as we already make use\n        # of filter_apinames above.\n        if call[\"api\"] == \"GetSystemMetrics\":\n            # Signature matched, return True.\n            return True\n\n        # continue\n        return None",
+  "# continue\n        return None\n\nThe inline comments are already self-explanatory. You can find many more examples of both evented and traditional signatures in our community repository.\n\nMatches\n\nStarting from version 1.2, signatures can log exactly what triggered the signature. This allows users to better understand why this signature is present in the log, and to be able to better focus malware analysis.\n\nTwo helpers have been included to specify matching data.\n\nSignature.add_match(process, type, match)\n\nAdds a match to the signature. Can be called several times for the same signature.\n\nExample Usage, with a single element:\n\nself.add_match(None, \"url\", \"http://malicious_url_detected.com\")\n\nExample Usage, with a more complex signature, needing several API calls to be triggered:\n\nself.signs = []\nself.signs.append(first_api_call)\nself.signs.append(second_api_call)\nself.add_match(process, 'api', self.signs)\n\nSignature.has_matches()",
+  "Signature.has_matches()\n\nChecks whether the current signature has any matching data registered. Returns True in case it does, otherwise returns False.\n\nThis can be used to easily add several matches for the same signature. If you want to do so, make sure that all the api calls are scanned by making sure that on_call never returns True. Then, use on_complete with has_matches so that the signature is triggered if any match was previously added.\n\nExample Usage, from the network_tor signature:\n\ndef on_call(self, call, process):\n    if self.check_argument_call(call,\n                                pattern=\"Tor Win32 Service\",\n                                api=\"CreateServiceA\",\n                                category=\"services\"):\n        self.add_match(process, \"api\", call)\n\ndef on_complete(self):\n    return self.has_matches()\n\nHelpers",
+  "def on_complete(self):\n    return self.has_matches()\n\nHelpers\n\nAs anticipated, from version 0.5 the Signature base class also provides some helper methods that simplify the creation of signatures and avoid the need for you having to access the global container directly (at least most of the times).\n\nFollowing is a list of available methods.\n\nSignature.check_file(pattern[, regex=False])\n\nChecks whether the malware opened or created a file matching the specified pattern. Returns True in case it did, otherwise returns False.\n\nExample Usage:\n\nself.check_file(pattern=\".*\\.exe$\", regex=True)\n\nSignature.check_key(pattern[, regex=False])\n\nChecks whether the malware opened or created a registry key matching the specified pattern. Returns True in case it did, otherwise returns False.\n\nExample Usage:\n\nself.check_key(pattern=\".*CurrentVersion\\\\Run$\", regex=True)\n\nSignature.check_mutex(pattern[, regex=False])",
+  "Signature.check_mutex(pattern[, regex=False])\n\nChecks whether the malware opened or created a mutex matching the specified pattern. Returns True in case it did, otherwise returns False.\n\nExample Usage:\n\nself.check_mutex(\"mutex_name\")\n\nSignature.check_api(pattern[, process=None[, regex=False]])\n\nChecks whether Windows function was invoked. Returns True in case it was, otherwise returns False.\n\nExample Usage:\n\nself.check_api(pattern=\"URLDownloadToFileW\", process=\"AcroRd32.exe\")\n\nSignature.check_argument(pattern[, name=Name[, api=None[, category=None[, process=None[, regex=False]]]])\n\nChecks whether the malware invoked a function with a specific argument value. Returns True in case it did, otherwise returns False.\n\nExample Usage:\n\nself.check_argument(pattern=\".*CAPE.*\", category=\"filesystem\", regex=True)\n\nSignature.check_ip(pattern[, regex=False])\n\nChecks whether the malware contacted the specified IP address. Returns True in case it did, otherwise returns False.\n\nExample Usage:",
+  "Example Usage:\n\nself.check_ip(\"123.123.123.123\")\n\nSignature.check_domain(pattern[, regex=False])\n\nChecks whether the malware contacted the specified domain. Returns True in case it did, otherwise returns False.\n\nExample Usage:\n\nself.check_domain(pattern=\".*capesandbox.com$\", regex=True)\n\nSignature.check_url(pattern[, regex=False])\n\nChecks whether the malware performed an HTTP request to the specified URL. Returns True in case it did, otherwise returns False.\n\nExample Usage:\n\nself.check_url(pattern=\"^.+\\/load\\.php\\?file=[0-9a-zA-Z]+$\", regex=True)\n\nCategories\n\nYou can put signatures into categories to facilitate grouping or sorting. You can create your own category if you wish, but it is easier for other users if you associate a signature with a category that already exists. Here is a list of all categories available:\n\n`account`: Adds or manipulates an administrative user account.\n\n`anti-analysis`: Constructed to conceal or obfuscate itself to prevent analysis.",
+  "`anti-analysis`: Constructed to conceal or obfuscate itself to prevent analysis.\n\n`anti-av`: Attempts to conceal itself from detection by antivirus.\n\n`anti-debug`: Attempts to detect if it is being debugged.\n\n`anti-emulation`: Detects the presence of an emulator.\n\n`anti-sandbox`: Attempts to detect if it is in a sandbox.\n\n`anti-vm`: Attempts to detect if it is being run in virtualized environment.\n\n`antivirus`: Antivirus hit. File is infected.\n\n`banker`: Designed to gain access to confidential information stored or processed through online banking.\n\n`bootkit`: Manipulates machine configurations that would affect the boot of the machine.\n\n`bot`: Appears to be a bot or exhibits bot-like behaviour.\n\n`browser`: Manipulates browser-settings in a suspicious way.\n\n`bypass`: Attempts to bypass operating systems security controls (firewall, amsi, applocker, UAC, etc.)\n\n`c2`: Communicates with a server controlled by a malicious actor.",
+  "`c2`: Communicates with a server controlled by a malicious actor.\n\n`clickfraud`: Manipulates browser settings to allow for insecure clicking.\n\n`command`: A suspicious command was observed.\n\n`credential_access`: Uses techniques to access credentials.\n\n`credential_dumping`: Uses techniques to dump credentials.\n\n`cryptomining`: Facilitates mining of cryptocurrency.\n\n`discovery`: Uses techniques for discovery information about the system, the user, or the environment.\n\n`dns`: Uses suspicious DNS queries.\n\n`dotnet`: .NET code is used in a suspicious manner.\n\n`downloader`: Trojan that downloads installs files.\n\n`dropper`: Trojan that drops additional malware on an affected system.\n\n`encryption`: Encryption algorithms are used for obfuscating data.\n\n`evasion`: Techniques are used to avoid detection.\n\n`execution`: Uses techniques to execute harmful code or create executables that could run harmful code.\n\n`exploit`: Exploits an known software vulnerability or security flaw.",
+  "`exploit`: Exploits an known software vulnerability or security flaw.\n\n`exploit_kit`: Programs designed to crack or break computer and network security measures.\n\n`generic`: Basic operating system objects are used in suspicious ways.\n\n`infostealer`: Collects and disseminates information such as login details, usernames, passwords, etc.\n\n`injection`: Input is not properly validated and gets processed by an interpreter as part of a command or query.\n\n`keylogger`: Monitoring software detected.\n\n`lateral`: Techniques used to move through environment and maintain access.\n\n`loader`: Download and execute additional payloads on compromised machines.\n\n`locker`: Prevents access to system data and files.\n\n`macro`: A set of commands that automates a software to perform a certain action, found in Office macros.\n\n`malware`: The file uses techniques associated with malicious software.\n\n`martians`: Command shell or script process was created by unexpected parent process.",
+  "`martians`: Command shell or script process was created by unexpected parent process.\n\n`masquerading`: The name or location of an object is manipulated to evade defenses and observation.\n\n`network`: Suspicious network traffic was observed.\n\n`office`: Makes API calls not consistent with expected/standard behaviour.\n\n`packer`: Compresses, encrypts, and/or modifies a malicious file's format.\n\n`persistence`: Technique used to maintain presence in system(s) across interruptions that could cut off access.\n\n`phishing`: Techniques were observed that attempted to obtain information from the user.\n\n`ransomware`: Designed to block access to a system until a sum of money is paid.\n\n`rat`: Designed to provide the capability of covert surveillance and/or unauthorized access to a target.\n\n`rootkit`: Designed to provide continued privileged access to a system while actively hiding its presence.\n\n`static`: A suspicious characteristic was discovered during static analysis.",
+  "`static`: A suspicious characteristic was discovered during static analysis.\n\n`stealth`: Leverages/modifies internal processes and settings to conceal itself.\n\n`trojan`: Presents itself as legitimate in attempt to infiltrate a system.\n\n`virus`: Malicious software program.\n\nTroubleshooting\n\nNo signatures\n\nWhenever you submit a sample for analysis, when it finishes you should be able to inspect the identified signatures. If you see the No signatures message, you might need to download or update them. Example from the web interface:\n\nimage\n\nIf no signatures are showing when executing a given report, you must use the utils/community.py tool so as to download them:\n\n$ sudo -u cape poetry run python3 utils/community.py -waf\n\nIf the execution of the script does not end successfully, make sure you solve it. For example:",
+  "If the execution of the script does not end successfully, make sure you solve it. For example:\n\nInstalling REPORTING\nFile \"/opt/CAPEv2/modules/reporting/__init__.py\" installed\nFile \"/opt/CAPEv2/modules/reporting/elasticsearchdb.py\" installed\nTraceback (most recent call last):\n  File \"/opt/CAPEv2/utils/community.py\", line 257, in <module>\n    main()\n  File \"/opt/CAPEv2/utils/community.py\", line 252, in main\n    install(enabled, args.force, args.rewrite, args.file, args.token)\n  File \"/opt/CAPEv2/utils/community.py\", line 180, in install\n    open(filepath, \"wb\").write(t.extractfile(member).read())\nPermissionError: [Errno 13] Permission denied: '/opt/CAPEv2/modules/reporting/elasticsearchdb.py'\n\nhappened because elasticsearchdb.py did not belong to cape:cape but to root:root.\n\nAfter chowning it to cape:cape, the script finished successfully. You should now see in the report page something similar to this:\n\nimage\n\nErrors/warnings in the logs",
+  "image\n\nErrors/warnings in the logs\n\nIf you ever face errors or warnings in the logs related to the signatures module (like Signature spawns_dev_util crashing after update)), chances are high you must update the signatures you are working with. To do so, just run the community` utility like so:\n\n$ sudo -u cape poetry run python3 community.py -waf -cr",
+  "Development\n\nThis chapter explains how to write CAPE's code and how to contribute.\n\ndevelopment_notes code_style current_module_improvement",
+  "Development examples\n\nCurtain\n\nfrom modules.processing.curtain import deobfuscate\nblob = \"\"\"here\"\"\"\nprint(deobfuscate(blob))\n\nSuricata name detection\n\nimport os, sys\nCUCKOO_ROOT = os.path.join(os.path.abspath(os.path.dirname(__file__)), \"..\")\nsys.path.append(CUCKOO_ROOT)\n\nfrom lib.cuckoo.common.suricata_detection import get_suricata_family\n# Signature example: \"ET MALWARE Sharik/Smoke CnC Beacon 11\"\nprint(get_suricata_family(signature_string))",
+  "Development Notes\n\nGit branches\n\nCAPE Sandbox source code is available in our official git repository.\n\nUp until version 1.0, we used to coordinate all ongoing development in a dedicated \"development\" branch and we've been exclusively merging pull requests in such branch. Since version 1.1 we moved development to the traditional \"master\" branch and we make use of GitHub's tags and release system to reference development milestones in time.\n\nRelease Versioning\n\nCAPE releases are named using three numbers separated by dots, such as 1.2.3, where the first number is the release, the second number is the major version, and the third number is the bugfix version. The testing stage from git ends with \"-beta\" and the development stage with \"-dev\".\n\nWarning",
+  "Warning\n\nIf you are using a \"beta\" or \"dev\" stage, please consider that it's not meant to be an official release, therefore we don't guarantee its functioning and we don't generally provide support. If you think you encountered a bug there, make sure that the nature of the problem is not related to your misconfiguration and collect all the details to be notified to our developers. Make sure to specify which exact version you are using, eventually with your current git commit id.\n\nTicketing system\n\nTo submit bug reports or feature requests, please use GitHub's Issue tracking system.\n\nContribute\n\nTo submit your patch just create a Pull Request from your GitHub fork. If you don't know how to create a Pull Request take a look at GitHub help.",
+  "Coding Style\n\nTo contribute code to the project, you must diligently follow the style rules describe in this chapter. Having a clean and structured code is very important for our development lifecycle, and not compliant code will most likely be rejected.\n\nEssentially CAPE's code style is based on PEP 8 - Style Guide for Python Code and PEP 257 -- Docstring Conventions.\n\nFormatting\n\nCopyright header\n\nAll source code files must start with the following copyright header:\n\n# Copyright (C) 2010-2015  X.\n# This file is part of CAPE Sandbox - https://capesandbox.com\n# See the file 'docs/LICENSE' for copying permission.\n\nIndentation\n\nThe code must have a 4-spaces-tabs indentation. Since Python enforces the indentation, make sure to configure your editor properly or your code might cause malfunctioning.\n\nMaximum Line Length\n\nLimit all lines to a maximum of 132 characters.\n\nBlank Lines",
+  "Maximum Line Length\n\nLimit all lines to a maximum of 132 characters.\n\nBlank Lines\n\nSeparate the class definition and the top-level function with one blank line. Methods definitions inside a class are separated by a single blank line:\n\nclass MyClass:\n    \"\"\"Doing something.\"\"\"\n\n    def __init__(self):\n        \"\"\"Initialize\"\"\"\n        pass\n\n    def do_it(self, what):\n        \"\"\"Do it.\n        @param what: do what.\n        \"\"\"\n        pass\n\nUse blank lines in functions, sparingly, to isolate logic sections. Import blocks are separated by a single blank line, import blocks are separated from classes by one blank line.\n\nImports\n\nImports must be on separate lines. If you're importing multiple objects from a package, use a single line:\n\nfrom lib import a, b, c\n\nNOT:\n\nfrom lib import a\nfrom lib import b\nfrom lib import c\n\nAlways specify explicitly the objects to import:\n\nfrom lib import a, b, c\n\nNOT:\n\nfrom lib import *\n\nStrings\n\nStrings must be delimited by double quotes (\").",
+  "NOT:\n\nfrom lib import *\n\nStrings\n\nStrings must be delimited by double quotes (\").\n\nPrinting and Logging\n\nWe discourage the use of print(): if you need to log an event please use Python's logging which is already initialized by CAPE.\n\nIn your module add:\n\nimport logging\nlog = logging.getLogger(__name__)\n\nAnd use the log handle, for more details refer to the Python documentation.\n\nIn case you need to print a string to standard output, use the print() function:\n\nprint(\"foo\")\n\nNOT the statement:\n\nprint \"foo\"\n\nChecking for keys in data structures\n\nWhen checking for a key in a data structure, use the clause \"in\" for example:\n\nif \"bar\" in foo:\n    do_something(foo[\"bar\"])\n\nExceptions\n\nCustom exceptions must be defined in the lib/cuckoo/common/exceptions.py file or the local module if the exception should not be global.\n\nThe following is the current CAPE exceptions chain:",
+  "The following is the current CAPE exceptions chain:\n\n.-- CuckooCriticalError\n|   |-- CuckooStartupError\n|   |-- CuckooDatabaseError\n|   |-- CuckooMachineError\n|   `-- CuckooDependencyError\n|-- CuckooOperationalError\n|   |-- CuckooAnalysisError\n|   |-- CuckooProcessingError\n|   `-- CuckooReportError\n`-- CuckooGuestError\n\nBeware that the use of CuckooCriticalError and its child exceptions will cause CAPE to terminate.\n\nNaming\n\nCustom exception names must start with \"Cuckoo\" and end with \"Error\" if it represents an unexpected malfunction.\n\nException handling\n\nWhen catching an exception and accessing its handle, use as e:\n\ntry:\n    foo()\nexcept Exception as e:\n    bar()\n\nNOT:\n\ntry:\n    foo()\nexcept Exception, something:\n    bar()\n\nIt's a good practice to use \"e\" instead of \"e.message\".\n\nDocumentation\n\nAll code must be documented in docstring format, see PEP 257 -- Docstring Conventions. Additional comments may be added in logical blocks to make the code easier to understand.",
+  "Automated testing\n\nWe believe in automated testing to provide high-quality code and avoid dumb bugs. When possible, all code must be committed with proper unit tests. Particular attention must be placed when fixing bugs: it's good practice to write unit tests to reproduce the bug. All unit tests and fixtures are placed in the tests folder in the CAPE root. We adopted pytest as the unit testing framework.\n\nGithub actions\n\nAutomated tests run as github actions ; see the .github directory.\n\nYou may wish to run github actions locally. A tool that may help is Nektos act. One of the installation options for act is as a plugin for the github CLI, and the actions are then triggered by gh act.\n\nAs input for act it's often helpful to create a simulated github event, and save it as an input file.\n\nExample:\n\n{\n  \"act\": true,\n  \"repository\" : {\n    \"default_branch\": \"master\"\n  }\n}\n\nSo to run the actions that normally are triggered by a push event:",
+  "So to run the actions that normally are triggered by a push event:\n\ngh act -s GITHUB_TOKEN=\"$(gh auth token)\" --eventpath /tmp/github-event.json\n\nand to run the actions that are scheduled:\n\ngh act schedule -s GITHUB_TOKEN=\"$(gh auth token)\" --eventpath /tmp/github-event.json\n\nWe created a file .actrc containing --env CAPE_AS_ROOT=1 because act runs the tests as root, and otherwise the tests would exit saying you cannot run CAPE as root.\n\nPoetry and pre-commit hooks\n\nAfter cloning the git repository, the first commands that you should do:\n\npoetry install\npoetry run pre-commit install\n\nThis will install the pre-commit hooks, ensuring that all files have to conform to black and isort.",
+  "FAQ\n\nFrequently Asked Questions:\n\nanalyze_urls\n\nesxi_reqs\n\ntroubles_upgrade\n\ntroubles_problem\n\nGeneral Questions\n\nCan I analyze URLs with CAPE?\n\nYes you can. But modern browsers has a lot of problems\n\nWhat I need to use CAPE with VMware ESXi?\n\nTo run with VMware vSphere Hypervisor (or ESXi) CAPE levareges on libvirt. Libivirt is currently using VMware API to take control over virtual machines, although these API are available ony in licensed version. In VMware vSphere free edition, these API are read only, so you are unable to use CAPE with it. For the minimum license needed, please have a look at VMware website.\n\nTroubleshooting\n\nAfter upgrade CAPE stops to work\n\nProbably you upgraded it in a wrong way. It's not a good practice to rewrite the files due to CAPE's complexity and quick evolution.\n\nPlease follow the upgrade steps described in ../installation/upgrade.\n\nCAPE stumbles and produces some error I don't understand",
+  "CAPE stumbles and produces some error I don't understand\n\nCAPE is a young and still evolving project, it's possible that you encounter some problems while running it, but before you rush into sending emails to everyone make sure you read what follows.\n\nCAPE is not meant to be a point-and-click tool: it's designed to be a highly customizable and configurable solution for somewhat experienced users and malware analysts.\n\nIt requires you to have a decent understanding of your operating systems, Python, the concepts behind virtualization and sandboxing. We try to make it as easy to use as possible, but you have to keep in mind that it's not a technology meant to be accessible to just anyone.\n\nThat being said, if a problem occurs you have to make sure that you did everything you could before asking for time and effort from our developers and users. We just can't help everyone, we have limited time and it has to be dedicated to the development and fixing of actual bugs.",
+  "We have extensive documentation, read it carefully. You can't just skip parts of it.\n\nWe have a mailing list archive, search through it for previous threads where your same problem could have been already addressed and solved.\n\nWe have a Community platform for asking questions, use it.\n\nWe have lot of users producing content on Internet, Google it.\n\nSpend some of your own time trying fixing the issues before asking ours, you might even get to learn and understand CAPE better.\n\nLong story short: use the existing resources, put some efforts into it and don't abuse people.\n\nIf you still can't figure out your problem, you can ask help on our online communities (see ../finalremarks/index). Make sure when you ask for help to:\n\nUse a clear and explicit title for your emails: \"I have a problem\", \"Help me\" or \"CAPE error\" are NOT good titles.\n\nExplain in details what you're experiencing. Try to reproduce several times your issue and write down all steps to achieve that.",
+  "Use no-paste services and link your logs, configuration files and details on your setup.\n\nEventually provide a copy of the analysis that generated the problem.\n\nCheck and restore current snapshot with KVM\n\nIf something goes wrong with virtual machine it's best practice to check current snapshot status. You can do that with the following:\n\n$ virsh snapshot-current \"<Name of VM>\"\n\nIf you got a long XML as output your current snapshot is configured and you can skip the rest of this chapter; anyway if you got an error like the following your current snapshot is broken:\n\n$ virsh snapshot-current \"<Name of VM>\"\nerror: domain '<Name of VM>' has no current snapshot\n\nTo fix and create a current snapshot first list all machine's snapshots:\n\n$ virsh snapshot-list \"<Name of VM>\"\n Name                 Creation Time             State\n ------------------------------------------------------------\n 1339506531           2012-06-12 15:08:51 +0200 running\n\nChoose one snapshot name and set it as current:",
+  "Choose one snapshot name and set it as current:\n\n$ snapshot-current \"<Name of VM>\" --snapshotname 1339506531\nSnapshot 1339506531 set as current\n\nNow the virtual machine state is fixed.\n\nCheck and restore current snapshot with VirtualBox\n\nIf something goes wrong with virtual it's best practice to check the virtual machine status and the current snapshot. First of all check the virtual machine status with the following:\n\n$ VBoxManage showvminfo \"<Name of VM>\" | grep State\nState:           powered off (since 2012-06-27T22:03:57.000000000)\n\nIf the state is \"powered off\" you can go ahead with the next check, if the state is \"aborted\" or something else you have to restore it to \"powered off\" before:\n\n$ VBoxManage controlvm \"<Name of VM>\" poweroff\n\nWith the following check the current snapshots state:\n\n$ VBoxManage snapshot \"<Name of VM>\" list --details\n   Name: s1 (UUID: 90828a77-72f4-4a5e-b9d3-bb1fdd4cef5f)\n      Name: s2 (UUID: 97838e37-9ca4-4194-a041-5e9a40d6c205) *",
+  "If you have a snapshot marked with a star \"*\" your snapshot is ready, anyway you have to restore the current snapshot:\n\n$ VBoxManage snapshot \"<Name of VM>\" restorecurrent\n\nUnable to bind result server error\n\nAt CAPE startup if you get an error message like this one:\n\n2014-01-07 18:42:12,686 [root] CRITICAL: CuckooCriticalError: Unable to bind result server on 192.168.56.1:2042: [Errno 99] Cannot assign requested address\n\nIt means that CAPE is unable to start the result server on the IP address written in cuckoo.conf (or in machinery_conf if you are using the resultserver_ip option inside). This usually happen when you start CAPE without bringing up the virtual interface associated with the result server IP address. You can bring it up manually, it depends from one virtualization software to another, but if you don't know how to do, a good trick is to manually start and stop an analysis virtual machine, this will bring virtual networking up.",
+  "Introduction\n\nThis is an introductory chapter to CAPE Sandbox. It explains some basic malware analysis concepts, what CAPE is, and how it can fit into malware analysis.\n\nsandboxing what license",
+  "Sandboxing\n\nAs defined by Wikipedia, \"*in computer security, a sandbox is a security mechanism for separating running programs. It is often used to execute untested code, or untrusted programs from unverified third-parties, suppliers, untrusted users and untrusted websites.*\".\n\nThis concept applies to malware analysis' sandboxing too: our goal is to run an unknown and untrusted application or file inside an isolated environment and get information about what the file does.\n\nMalware sandboxing is a practical application of the dynamical analysis approach: instead of statically analyzing the binary file, it gets executed and monitored in real-time.\n\nThis approach obviously has pros and cons, but it's a valuable technique to obtain additional details on the malware, such as its network behavior. Therefore it's a good practice to perform both static and dynamic analysis while inspecting a malware, to gain a deeper understanding of it.",
+  "Simple as it is, CAPE is a tool that allows you to perform sandboxed malware analysis.\n\nUsing a Sandbox\n\nBefore starting to install, configure and use CAPE, you should take some time to think about what you want to achieve with it and how.\n\nSome questions you should ask yourself:\n\nWhat kind of files do I want to analyze?\n\nWhat volume of analyses do I want to be able to handle?\n\nWhich platform do I want to use to run my analysis?\n\nWhat kind of information do I want about the file?\n\nThe creation of the isolated environment (the virtual machine) is probably the most critical and important part of a sandbox deployment: it should be done carefully and with proper planning.\n\nBefore getting your hands on the virtualization product of your choice, you should already have a design plan that defines:\n\nWhich operating system, language, and patching level to use.\n\nWhich software to install and which versions (particularly important when analyzing exploits).",
+  "Which software to install and which versions (particularly important when analyzing exploits).\n\nConsider that automated malware analysis is not deterministic and its success might depend on a trillion of factors: you are trying to make a malware run in a virtualized system as it would do on a native one, which could be tricky to achieve and may not always succeed. Your goal should be both to create a system able to handle all the requirements you need as well as try to make it as realistic as possible.\n\nFor example, you could consider leaving some intentional traces of normal usage, such as browsing history, cookies, documents, images, etc. If a malware sample is designed to operate, manipulate or steal such files you'll be able to notice it.",
+  "Virtualized operating systems usually carry a lot of traces with them which makes them very easily detectable. Even if you shouldn't overestimate this problem, you might want to take care of this and try to hide as many virtualization traces as possible. There is a lot of literature on the Internet regarding virtualization detection techniques and countermeasures.\n\nOnce you finished designing and preparing the prototype of the system you want, you can proceed with creating and deploying it. You will be always in time to change things or slightly fix them, but remember that good planning at the beginning always means fewer troubles in the long run.",
+  "License\n\nCuckoo/CAPE Sandbox license is shipped with Cuckoo/CAPE and contained in the \"LICENSE\" file under the base project directory.\n\nDisclaimer\n\nCuckoo/CAPE is distributed as it is, in the hope that it will be useful, but without any warranty nor the implied merchantability or fitness for a particular purpose.\n\nWhatever you do with this tool is uniquely your own responsibility.\n\nCuckoo Foundation\n\nThe Cuckoo Foundation is a non-profit organization incorporated as a Stichting in the Netherlands and it's mainly dedicated to support of the development and growth of Cuckoo Sandbox, an open source malware analysis system, and the surrounding projects and initiatives.\n\nThe Foundation operates to secure financial and infrastructure support for our software projects and coordinates the development and contributions from the community.",
+  "What is CAPE?\n\nCAPE is an open-source malware sandbox.\n\nA sandbox is used to execute malicious files in an isolated enviornment whilst instrumenting their dynamic behaviour and collecting forensic artefacts.\n\nCAPE was derived from Cuckoo v1 which features the following core capabilities on the Windows platform:\n\nBehavioral instrumentation based on API hooking\n\nCapture of files created, modified and deleted during execution\n\nNetwork traffic capture in PCAP format\n\nMalware classification based on behavioral and network signatures\n\nScreenshots of the desktop taken during the execution of the malware\n\nFull memory dumps of the target system\n\nCAPE complements Cuckoo's traditional sandbox output with several key additions:\n\nAutomated dynamic malware unpacking\n\nMalware classification based on YARA signatures of unpacked payloads\n\nStatic & dynamic malware configuration extraction\n\nInteractive desktop\n\nSome History",
+  "Static & dynamic malware configuration extraction\n\nInteractive desktop\n\nSome History\n\nCuckoo Sandbox started as a Google Summer of Code project in 2010 within The Honeynet Project. It was originally designed and developed by Claudio Guarnieri, the first beta release was published in 2011. In January 2014, Cuckoo v1.0 was released.\n\n2015 was a pivotal year, with a significant fork in Cuckoo's history. Development of the original monitor and API hooking method was halted in the main Cuckoo project. It was replaced by alternative monitor using a restructuredText-based signature format compiled via Linux toolchain, created by Jurriaan Bremer.\n\nAround the same time, a fork called cuckoo-modified was created by Brad 'Spender' Spengler continuing development of the original monitor with significant improvements including 64-bit support and importantly introducting Microsoft's Visual Studio compiler. .. _ `Cuckoo-modified`: https://github.com/spender-sandbox/cuckoo-modified",
+  "During that same year development of a dynamic command-line configuration and payload extraction tool called CAPE was begun at Context Information Security by Kevin O'Reilly. The name was coined as an acronym of 'Config And Payload Extraction' and the original research focused on using API hooks provided by Microsoft's Detours library to capture unpacked malware payloads and configuration. However, it became apparent that API hooks alone provide insufficient power and precision to allow for unpacking of payloads or configs from arbitrary malware.\n\nFor this reason research began into a novel debugger concept to allow malware to be precisely controlled and instrumented whilst avoiding use of Microsoft debugging interfaces, in order to be as stealthy as possible. This debugger was integrated into the proof-of-concept Detours-based command-line tool, combining with API hooks and resulting in very powerful capabilities.",
+  "When initial work showed that it would be possible to replace Microsoft Detours with cuckoo-modified's API hooking engine, the idea for CAPE Sandbox was born. With the addition of the debugger, automated unpacking, YARA-based classification and integrated config extraction, in September 2016 at 44con, CAPE Sandbox was publicly released for the first time: .. _ `CAPE CTXIS`: https://github.com/ctxis/CAPE\n\nIn the summer of 2018 the project was fortunate to see the beginning of huge contributions from Andriy 'doomedraven' Brukhovetskyy, a long-time Cuckoo contributor. In 2019 he began the mammoth task of porting CAPE to Python 3 and in October of that year CAPEv2 was released: .. _ `CAPEv2 upstream`: https://github.com/kevoreilly/CAPEv2",
+  "CAPE has been continuously developed and improved to keep pace with advancements in both malware and operating system capabilities. In 2021, the ability to program CAPE's debugger during detonation via dynamic YARA scans was added, allowing for dynamic bypasses to be created for anti-sandbox techniques. Windows 10 became the default operating system, and other significant additions include interactive desktop, AMSI (Anti-Malware Scan Interface) payload capture, 'syscall hooking' based on Microsoft Nirvana and debugger-based direct/indirect syscall countermeasures.\n\nUse Cases\n\nCAPE is designed to be used both as a standalone application as well as to be integrated into larger frameworks, thanks to its extremely modular design.\n\nIt can be used to analyze:\n\nGeneric Windows executables\n\nDLL files\n\nPDF documents\n\nMicrosoft Office documents\n\nURLs and HTML files\n\nPHP scripts\n\nCPL files\n\nVisual Basic (VB) scripts\n\nZIP files\n\nJava JAR\n\nPython files\n\nAlmost anything else",
+  "CPL files\n\nVisual Basic (VB) scripts\n\nZIP files\n\nJava JAR\n\nPython files\n\nAlmost anything else\n\nThanks to its modularity and powerful scripting capabilities, there's no limit to what you can achieve with CAPE!\n\nFor more information on customizing CAPE, see the ../customization/index chapter.\n\nArchitecture\n\nCAPE Sandbox consists of central management software which handles sample execution and analysis.\n\nEach analysis is launched in a fresh and isolated virtual machine. CAPE's infrastructure is composed of a Host machine (the management software) and a number of Guest machines (virtual machines for analysis).\n\nThe Host runs the core component of the sandbox that manages the whole analysis process, while the Guests are the isolated environments where the malware samples get safely executed and analyzed.\n\nThe following picture explains CAPE's main architecture:\n\nimage\n\nThe recommended setup is GNU/Linux (Ubuntu LTS preferably) as the Host and Windows 10 21H2 as a Guest.\n\nObtaining CAPE",
+  "Obtaining CAPE\n\nCAPE can be downloaded from the official git repository, where the stable and packaged releases are distributed or can be cloned from our official git repository.\n\nWarning\n\nIt is very likely that documentation is not up-to-date, but for that we try to keep a changelog.",
+  "Usage\n\nThis chapter explains how to use CAPE.\n\nstart internals submit web api dist cluster_administration packages results clean rooter utilities performance monitor interactive_desktop patterns_replacement",
+  "Analysis Results\n\nOnce an analysis is completed, several files are stored in a dedicated directory. All the analyses are stored under the directory storage/analyses/ inside a subdirectory named after the incremental numerical ID that represents the analysis task in the database.\n\nFollowing is an example of an analysis directory structure:\n\n.\n|-- analysis.conf\n|-- analysis.log\n|-- binary\n|-- dump.pcap\n|-- memory.dmp\n|-- files\n|   |-- 1234567890\n|       `-- dropped.exe\n|-- logs\n|   |-- 1232.raw\n|   |-- 1540.raw\n|   `-- 1118.raw\n|-- reports\n|   |-- report.html\n|   |-- report.json\n|   |-- report.maec-4.0.1.xml\n|   `-- report.metadata.xml\n`-- shots\n    |-- 0001.jpg\n    |-- 0002.jpg\n    |-- 0003.jpg\n    `-- 0004.jpg\n\nanalysis.conf\n\nThis is a configuration file automatically generated by CAPE to give its analyzer some details about the current analysis. It's generally of no interest to the end-user, as it's used internally by the sandbox.\n\nanalysis.log",
+  "analysis.log\n\nThis is a log file generated by the analyzer that contains a trace of the analysis execution inside the guest environment. It will report the creation of processes, files, and eventual errors that occurred during the execution.\n\ndump.pcap\n\nThis is the network dump generated by tcpdump or any other corresponding network sniffer.\n\nmemory.dmp\n\nIn case you enabled it, this file contains the full memory dump of the analysis machine.\n\nfiles/\n\nThis directory contains all the files the malware operated on and that CAPE was able to dump.\n\nlogs/\n\nThis directory contains all the raw logs generated by CAPE's process monitoring.\n\nreports/\n\nThis directory contains all the reports generated by CAPE as explained in the ../installation/host/configuration chapter.\n\nshots/\n\nThis directory contains all the screenshots of the guest's desktop taken during the malware execution.",
+  "Distributed CAPE\n\nThis works under the main server web interface, so everything is transparent for the end user, even if they were analyzed on another server(s).\n\nDeploy each server as a normal server and later just register it as a worker on the master server where dist.py is running.\n\nDependencies\n\nThe distributed script uses a few Python libraries which can be installed through the following command (on Debian/Ubuntu):\n\n$ poetry run pip install flask flask-restful flask-sqlalchemy requests\n\nStarting the Distributed REST API\n\nThe Distributed REST API requires a few command line options in order to run:\n\n$ cd /opt/CAPEv2/web && poetry run python manage.py runserver_plus 0.0.0.0:8000 --traceback --keep-meta-shutdown\n\nRESTful resources\n\nFollowing are all RESTful resources. Also, make sure to check out the quick-usage section which documents the most commonly used commands.",
+  "Resource Description GET node_root_get Get a list of all enabled CAPE nodes . POST node_root_post Register a new CAPE node. GET node_get Get basic information about a node. PUT node_put Update basic information of a node. DELETE node_delete Disable (not completely remove!) a node.\n\nGET /node\n\nReturns all enabled nodes. For each node its associated name, API url, and machines are returned:\n\n$ curl http://localhost:9003/node\n{\n    \"nodes\": {\n        \"localhost\": {\n            \"machines\": [\n                {\n                    \"name\": \"cuckoo1\",\n                    \"platform\": \"windows\",\n                    \"tags\": [\n                        \"\"\n                    ]\n                }\n            ],\n            \"name\": \"localhost\",\n            \"url\": \"http://0:8000/apiv2/\"\n        }\n    }\n}\n\nPOST /node",
+  "POST /node\n\nRegister a new CAPE node by providing the name and the URL. Optionally the apikey if auth is enabled, You might need to enable list_exitnodes and machinelist in custom/conf/api.conf if your Node API is using htaccess authentication:\n\n$ curl http://localhost:9003/node -F name=master -F url=http://localhost:8000/apiv2/ -F apikey=apikey -F enabled=1\n{\n    \"machines\": [\n        {\n            \"name\": \"cape1\",\n            \"platform\": \"windows\",\n            \"tags\": []\n        }\n    ],\n    \"name\": \"localhost\"\n}\n\nGET /node/<name>\n\nGet basic information about a particular CAPE node:\n\n$ curl http://localhost:9003/node/localhost\n{\n    \"name\": \"localhost\",\n    \"url\": \"http://localhost:8000/apiv2/\"\n}\n\nPUT /node/<name>\n\nUpdate basic information of a CAPE node:\n\n$ curl -XPUT http://localhost:9003/node/localhost -F name=newhost \\\n    -F url=http://1.2.3.4:8000/apiv2/\nnull\n\nAdditional Arguments:",
+  "Additional Arguments:\n\n* enabled\n    False=0 or True=1 to activate or deactivate worker node\n* exitnodes\n    exitnodes=1 - Update exit nodes list, to show on main web UI\n* apikey\n    apikey for authorization\n\nDELETE /node/<name>\n\nDisable a CAPE node, therefore not having it process any new tasks, but keep its history in the Distributed's database:\n\n$ curl -XDELETE http://localhost:9003/node/localhost\nnull\n\nQuick usage\n\nFor practical usage the following few commands will be most interesting.\n\nRegister a CAPE node - a CAPE REST API running on the same machine in this case:\n\n$ curl http://localhost:9003/node -F name=master -F url=http://localhost:8000/apiv2/\nMaster server must be called master, the rest of names we don't care\n\nDisable a CAPE node:\n\n$ curl -XDELETE http://localhost:9003/node/<name>\n\nor:\n\n$ curl -XPUT http://localhost:9003/node/localhost -F enable=0\nnull\n\nor:\n\n$ ./dist.py --node NAME --disable",
+  "or:\n\n$ ./dist.py --node NAME --disable\n\nGet the report of a task should be requested throw master node integrated /api/\n\nProposed setup\n\nThe following description depicts a Distributed CAPE setup with two CAPE machines, a master and a worker. In this setup the first machine, the master, also hosts the Distributed CAPE REST API.\n\nConfiguration settings\n\nOur setup will require a couple of updates about the configuration files.\n\nNote about VMs tags in hypervisor conf as kvm.conf:\n\nIf you have ``x64`` and ``x86`` VMs:\n* ``x64`` VMs should have both ``x64`` and ``x86`` tags. Otherwise only ``x64`` tag\n* ``x86`` VMs should have only ``x86`` tag.\n* You can use any other tags, just to work properly you need those two.\n* Probably will be improved in future for better solution\n\ncustom/conf/cuckoo.conf\n\nOptional: Update tmppath to something that holds enough storage to store a few hundred binaries. On some servers or setups /tmp may have a limited amount of space and thus this wouldn't suffice.",
+  "Update connection to use something that is not sqlite3. Preferably PostgreSQL. SQLite3 doesn't support multi-threaded applications that well and this will give errors at random if used. Neither support database schema upgrade.\n\ncustom/conf/processing.conf\n\nYou may want to disable some processing modules, such as virustotal.\n\ncustom/conf/reporting.conf\n\nDepending on which report(s) are required for integration with your system it might make sense to only make those report(s) that you're going to use. Thus disable the other ones.\n\ncustom/conf/distributed.conf\n\nCheck also \"[distributed]\" section, where you can set the database, path for samples, and a few more values. Do not use sqlite3! Use PostgreSQL database for performance and thread safe.\n\nUpdate db to use something that is not sqlite3. Preferably PostgreSQL. SQLite3 doesn't support multi-threaded applications that well and this will give errors at random if used. Neither support database schema upgrade.\n\nRegister CAPE nodes",
+  "Register CAPE nodes\n\nAs outlined in quick-usage the CAPE nodes have to be registered with the Distributed CAPE script\n\nwithout htaccess:\n\n$ curl http://localhost:9003/node -F name=master -F url=http://localhost:8000/apiv2/\n\nwith htaccess:\n\n$ curl http://localhost:9003/node -F name=worker -F url=http://1.2.3.4:8000/apiv2/ \\\n  -F username=user -F password=password\n\nHaving registered the CAPE nodes all that's left to do now is to submit tasks and fetch reports once finished. Documentation on these commands can be found in the quick-usage section.\n\nVM Maintenance\n\nOccasionally you might want to perform maintenance on VMs without shutting down your whole node. To do this, you need to remove the VM from being used by CAPE in its execution, preferably without having to restart the ./cuckoo.py daemon.\n\nFirst, get a list of available VMs that are running on the worker:\n\n$ poetry run python dist.py --node NAME\n\nSecondly, you can remove VMs from being used by CAPE with:",
+  "Secondly, you can remove VMs from being used by CAPE with:\n\n$ poetry run python dist.py --node NAME --delete-vm VM_NAME\n\nWhen you are done editing your VMs you need to add them back to be used by cuckoo. The easiest way to do that is to disable the node, so no more tasks get submitted to it:\n\n$ poetry run python dist.py --node NAME --disable\n\nWait for all running VMs to finish their tasks, and then restart the workers ./cuckoo.py, this will re-insert the previously deleted VMs into the Database from custom/conf/virtualbox.conf.\n\nUpdate the VM list on the master:\n\n$ poetry run python dist.py --node NAME\n\nAnd enable the worker again:\n\n$ poetry run python dist.py --node NAME --enable\n\nGood practice for production\n\nThe number of retrieved threads can be configured in reporting.conf\n\nInstallation of \"uwsgi\":\n\n# nginx is optional\n# apt install uwsgi uwsgi-plugin-python3 nginx\n\nIt's better if you run \"web\" and \"dist.py\" as uwsgi application. To run your api with config just execute as:",
+  "# Web UI is started by systemd as cape-web.service\n$ uwsgi --ini /opt/CAPEv2/uwsgi/capedist.ini\n\nTo add your application to auto start after boot, copy your config file to:\n\ncp /opt/CAPEv2/uwsgi/capedist.ini /etc/uwsgi/apps-available/cape_dist.ini\nln -s /etc/uwsgi/apps-available/cape_dist.ini /etc/uwsgi/apps-enabled\n\nservice uwsgi restart\n\nOptimizations:\n\nIf you have many workers is recommended\n    UWSGI:\n        set processes to be able handle number of requests dist + dist2 + 10\n    DB:\n        set max connection number to be able handle number of requests dist + dist2 + 10\n\nDistributed Mongo setup\n\nSet one mongo as master and the rest just point to it, in this example cuckoo_dist.fe is our master server. Depending on your hardware you may prepend the next command before mongod:\n\n$ numactl --interleave=all\n\nThese commands should be executed only on the master:",
+  "$ numactl --interleave=all\n\nThese commands should be executed only on the master:\n\n# create config server instance with the \"cuckoo_config\" replica set\n# Preferably to execute few config servers on different shards\n/usr/bin/mongod --configsvr --replSet cuckoo_config --bind_ip_all\n\n# initialize the \"cuckoo_config\" replica set\nmongosh --port 27019\n\nExecute in mongo console:\n    rs.initiate({\n      _id: \"cuckoo_config\",\n      configsvr: true,\n      members: [\n        { _id: 0, host: \"192.168.1.13:27019\" },\n      ]\n    })\n\nThis should be started on all nodes including master:\n\n# start shard server\n/usr/bin/mongod --shardsvr --bind_ip 0.0.0.0 --port 27017 --replSet rs0\n\nAdd clients, execute on master mongo server:\n\n# start mongodb router instance that connects to the config server\nmongos --configdb cuckoo_config/192.168.1.13:27019 --port 27020 --bind_ip_all",
+  "# in another terminal\nmongosh\nrs.initiate( {\n   _id : \"rs0\",\n   members: [\n      { _id: 0, host: \"192.168.1.x:27017\" },\n      { _id: 1, host: \"192.168.1.x:27017\" },\n      { _id: 2, host: \"192.168.1.x:27017\" },\n   ]\n})\n\n# Check which node is primary and change the prior if is incorrect\n# https://docs.mongodb.com/manual/tutorial/force-member-to-be-primary/\ncfg = rs.conf()\ncfg.members[0].priority = 0.5\ncfg.members[1].priority = 0.5\ncfg.members[2].priority = 1\nrs.reconfig(cfg, {\"force\": true})\n\n# Add arbiter only\nrs.addArb(\"192.168.1.51:27017\")\n\n# Add replica set member, secondary\nrs.add({\"host\": \"192.168.1.50:27017\", \"priority\": 0.5})\n\n# add shards\nmongosh --port 27020\n\nExecute in mongo console:\n    sh.addShard( \"rs0/192.168.1.13:27017\")\n    sh.addShard( \"rs0/192.168.1.44:27017\")\n    sh.addShard( \"rs0/192.168.1.55:27017\")\n    sh.addShard( \"rs0/192.168.1.62:27017\")\n\nWhere 192.168.1.(2,3,4,5) is our CAPE workers:",
+  "Where 192.168.1.(2,3,4,5) is our CAPE workers:\n\nmongo\nuse cuckoo\n# 5 days, last number is days\ndb.analysis.insert({\"name\":\"tutorials point\"})\ndb.calls.insert({\"name\":\"tutorials point\"})\ndb.analysis.createIndex ( {\"_id\": \"hashed\" })\ndb.calls.createIndex ( {\"_id\": \"hashed\"})\n\ndb.analysis.createIndex ( {\"createdAt\": 1 }, {expireAfterSeconds:60*60*24*5} )\ndb.calls.createIndex ( {\"createdAt\": 1}, {expireAfterSeconds:60*60*24*5} )\n\nmongosh --port 27020\nsh.enableSharding(\"cuckoo\")\nsh.shardCollection(\"cuckoo.analysis\", { \"_id\": \"hashed\" })\nsh.shardCollection(\"cuckoo.calls\", { \"_id\": \"hashed\" })\n\nTo see stats on master:\n\nmongos using\nmongosh --host 127.0.0.1 --port 27020\nsh.status()\n\nModify cape reporting.conf [mongodb] to point all mongos in reporting.conf to host = 127.0.0.1 port = 27020\n\nTo remove shard node:\n\nTo see all shards:\ndb.adminCommand( { listShards: 1 } )\n\nThen:\nuse admin\ndb.runCommand( { removeShard: \"SHARD_NAME_HERE\" } )\n\nIf you need extra help, check this:",
+  "If you need extra help, check this:\n\nSee any of these files on your system:\n\n$ /etc/uwsgi/apps-available/README\n$ /etc/uwsgi/apps-enabled/README\n$ /usr/share/doc/uwsgi/README.Debian.gz\n$ /etc/default/uwsgi\n\nAdministration and some useful commands:\n\nhttps://docs.mongodb.com/manual/reference/command/nav-sharding/\n$ mongosh --host 127.0.0.1 --port 27020\n$ use admin\n$ db.adminCommand( { listShards: 1 } )\n\n$ mongosh --host 127.0.0.1 --port 27019\n$ db.adminCommand( { movePrimary: \"cuckoo\", to: \"shard0000\" } )\n$ db.adminCommand( { removeShard : \"shard0002\" } )\n\n$ # required for post movePrimary\n$ db.adminCommand(\"flushRouterConfig\")\n$ mongosh --port 27020 --eval 'db.adminCommand(\"flushRouterConfig\")' admin\n\n$ use cuckoo\n$ db.analysis.find({\"shard\" : \"shard0002\"},{\"shard\":1,\"jumbo\":1}).pretty()\n$ db.calls.getShardDistribution()\n\nTo migrate data ensure:\n$ sh.setBalancerState(true)\n\nUser authentication and roles:",
+  "To migrate data ensure:\n$ sh.setBalancerState(true)\n\nUser authentication and roles:\n\n# To create ADMIN\nuse admin\ndb.createUser(\n    {\n        user: \"ADMIN_USERNAME\",\n        pwd: passwordPrompt(), // or cleartext password\n        roles: [ { role: \"userAdminAnyDatabase\", db: \"admin\" }, \"readWriteAnyDatabase\" ]\n    }\n)\n\n# To create user to read/write on specific database\nuse cuckoo\ndb.createUser(\n    {\n        user: \"WORKER_USERNAME\",\n        pwd:  passwordPrompt(),   // or cleartext password\n        roles: [ { role: \"readWrite\", db: \"cuckoo\" }, { role : \"dbAdmin\", db : \"cuckoo\"  }]\n    }\n)\n\n\n# To enable auth in ``/etc/mongod.conf``, add next lines\nsecurity:\n    authorization: enabled\n\nNFS data fetching:\n\nNice comparison between NFS, SSHFS, SMB\nhttps://blog.ja-ke.tech/2019/08/27/nas-performance-sshfs-nfs-smb.html\n\nTo configure NFS on the main server (NFS calls it client)\n\nTo install new service for fstab utils run as root:",
+  "To install new service for fstab utils run as root:\n\nln -s /opt/CAPEv2/systemd/cape-fstab.service /lib/systemd/system/cape-fstab.service\nsystemctl daemon-reload\nsystemctl enable cape-fstab.service\nsystemctl start cape-fstab.service\n\nFollowing steps about folder creation, entry in fstab are automated on 30.01.2023. See utils/fstab.py\n\nCAPE worker(s) (NFS calls it servers):\n\nInstall NFS:\n    * sudo apt install nfs-kernel-server\n    * systemctl enable nfs-kernel-server\n\nRun `id cape`:\n    * to get uid and gid to place inside of the file, Example:\n        * `uid=997(cape) gid=1005(cape) groups=1005(cape),1002(libvirt),1003(kvm),1004(pcap)`\n\nAdd entry to `/etc/exports`\n    /opt/CAPEv2 <clinet_ip/hostname>(rw,no_subtree_check,all_squash,anonuid=<uid>,anongid=<gid>)\nExample:\n    /opt/CAPEv2 192.168.1.1(rw,no_subtree_check,all_squash,anonuid=997,anongid=1005)\n\nRun command on worker:\n    exportfs -rav\n\nOnline:",
+  "Interactive session\n\nInstallation\n\nWarning\n\nDoesn't support cluster mode.\n\nTo install dependencies please run:\n\n$ sudo ./installer/cape2.sh guacamole\n\nNew services added:\n\n$ systemctl status guacd.service\n$ systemctl status guac-web.service\n\nWeb server configuration\n\nEnable and configure guacamole in conf/web.conf and restart cape-web.service and guacd.service:\n\n$ systemctl restart cape-web guacd.service\n\nThen configure NGINX. See best_practices_for_production for details.\n\nVirtual machine configuration\n\nAt the moment we support only KVM and we don't have plans to support any other hypervisor.\n\nTo enable support for remote session you need to add a VNC display to your VM, otherwise it won't work.\n\nHaving troubles?\n\nTo test if your guacamole working correctly you can use this code\n\nWarning\n\nIf you have opened VM in virt-manager you won't be able to get it via browser. Close virt-manager VM view and refresh tab in browser.",
+  "from uuid import uuid3, NAMESPACE_DNS\nfrom base64 import urlsafe_b64encode as ub64enc\nsid = uuid3(NAMESPACE_DNS, \"0000\").hex[:16]\nip = \"<YOUR_VM_IP>\" # Example 192.168.2.2\nvm_name = \"<YOUR_VM_NAME>\" # example win10\nsd = ub64enc(f\"{sid}|{vm_name}|{ip}\".encode(\"utf8\")).decode(\"utf8\")\nprint(sd)\n\n# Open in your browser https://<hostname>/guac/0000/<sd>\n\nStart your VM and once it finish booting, open that url in browser to ensure that remote session working just fine.\n\nIf that doesn't work, check logs:\n\n$ systemctl status guacd or journalctl -u guacd\n$ cat /opt/CAPEv2/web/guac-server.log\n\nKnown problems and solution steps:\n\nEnsure that CAPE loads on port 80 (later you can enable TLS/SSL). Sometime config instead of sites-enabled/cape.conf should be conf.d/default.conf.\n\nOnce verified that it works with http, move to https.\n\nYou can try websocket test client.\n\nTry another browser.",
+  "Utilities\n\nCAPE comes with a set of pre-built utilities to automate several common tasks. You can find them under the \"utils\" folder. There more utilities than documented\n\nCleanup utility\n\nUse CAPE-clean instead which also takes care of cleaning sample and task information from MySQL and PostgreSQL databases. This utility will also delete all data from the configured MongoDB or ElasticSearch databases.\n\nSubmission Utility\n\nSubmits samples to analysis. This tool is already described in submit.\n\nWeb Utility\n\nCAPE's web interface. This tool is already described in submit.\n\nProcessing Utility\n\nRun the results processing engine and optionally the reporting engine (run all reports) on an already available analysis folder, in order to not re-run the analysis if you want to re-generate the reports for it. This is used mainly in debugging and developing CAPE. For example if you want run again the report engine for analysis number 1:\n\n$ ./utils/process.py -r 1",
+  "$ ./utils/process.py -r 1\n\nIf you want to re-generate the reports:\n\n$ ./utils/process.py --report 1\n\nFollowing are the usage options:\n\n$ ./utils/process.py -h\n\nusage: process.py [-h] [-c] [-d] [-r] [-s] [-p PARALLEL] [-fp] [-mc MAXTASKSPERCHILD] [-md] [-pt PROCESSING_TIMEOUT] id\n\npositional arguments:\n  id                    ID of the analysis to process (auto for continuous processing of unprocessed tasks).",
+  "optional arguments:\n  -h, --help            show this help message and exit\n  -c, --caperesubmit    Allow CAPE resubmit processing.\n  -d, --debug           Display debug messages\n  -r, --report          Re-generate report\n  -s, --signatures      Re-execute signatures on the report\n  -p PARALLEL, --parallel PARALLEL\n                        Number of parallel threads to use (auto mode only).\n  -fp, --failed-processing\n                        reprocess failed processing\n  -mc MAXTASKSPERCHILD, --maxtasksperchild MAXTASKSPERCHILD\n                        Max children tasks per worker\n  -md, --memory-debugging\n                        Enable logging garbage collection related info\n  -pt PROCESSING_TIMEOUT, --processing-timeout PROCESSING_TIMEOUT\n                        Max amount of time spent in processing before we fail a task\n\nAs best practice we suggest to adopt the following configuration if you are running CAPE with many virtual machines:",
+  "Run a stand alone process.py in auto mode (you choose the number of parallel threads)\n\nThis could increase the performance of your system because the reporting is not yet demanded to CAPE.\n\nCommunity Download Utility\n\nThis utility downloads signatures from CAPE Community Repository and installs specific additional modules in your local setup. Following are the usage options:\n\n$ ./utils/community.py -h\n\nusage: community.py [-h] [-a] [-s] [-p] [-m] [-r] [-f] [-w] [-b BRANCH]",
+  "$ ./utils/community.py -h\n\nusage: community.py [-h] [-a] [-s] [-p] [-m] [-r] [-f] [-w] [-b BRANCH]\n\noptional arguments:\n  -h, --help            show this help message and exit\n  -a, --all             Download everything\n  -s, --signatures      Download Cuckoo signatures\n  -p, --processing      Download processing modules\n  -m, --machinemanagers\n                        Download machine managers\n  -r, --reporting       Download reporting modules\n  -f, --force           Install files without confirmation\n  -w, --rewrite         Rewrite existing files\n  -b BRANCH, --branch BRANCH\n                        Specify a different branch\n\nExample: install all available signatures:\n\n$ ./utils/community.py --signatures --force\n\nDatabase migration utility",
+  "$ ./utils/community.py --signatures --force\n\nDatabase migration utility\n\nThis utility is developed to migrate your data between CAPE's release. It's developed on top of the Alembic framework and it should provide data migration for both SQL database and Mongo database. This tool is already described in ../installation/upgrade.\n\nStats utility\n\nThis is a really simple utility which prints some statistics about processed samples:\n\n$ ./utils/stats.py\n\n1 samples in db\n1 tasks in db\npending 0 tasks\nrunning 0 tasks\ncompleted 0 tasks\nrecovered 0 tasks\nreported 1 tasks\nfailed_analysis 0 tasks\nfailed_processing 0 tasks\nroughly 32 tasks an hour\nroughly 778 tasks a day\n\nMachine utility\n\nThe machine.py utility is designed to help you automatize the configuration of virtual machines in CAPE. It takes a list of machine details as arguments and write them in the specified configuration file of the machinery module enabled in cuckoo.conf. Following are the available options:",
+  "$ ./utils/machine.py -h\nusage: machine.py [-h] [--debug] [--add] [--ip IP] [--platform PLATFORM]\n                [--tags TAGS] [--interface INTERFACE] [--snapshot SNAPSHOT]\n                [--resultserver RESULTSERVER]\n                vmname\n\npositional arguments:\n  vmname                Name of the Virtual Machine.\n\noptional arguments:\n  -h, --help            show this help message and exit\n  --debug               Debug log in case of errors.\n  --add                 Add a Virtual Machine.\n  --ip IP               Static IP Address.\n  --platform PLATFORM   Guest Operating System.\n  --tags TAGS           Tags for this Virtual Machine.\n  --interface INTERFACE\n                        Sniffer interface for this machine.\n  --snapshot SNAPSHOT   Specific Virtual Machine Snapshot to use.\n  --resultserver RESULTSERVER\n                        IP:Port of the Result Server.",
+  "Web interface\n\nCAPE provides a full-fledged web interface in the form of a Django application. This interface will allow you to submit files, browse through the reports as well as search across all the analysis results.\n\ncape2.sh adds systemd daemon called cape-web.service which listen on all interfaces:\n\n$ /lib/systemd/system/cape-web.service\n\nTo modify that you need to edit that file and change from 0.0.0.0 to your IP. You need to restart daemon to reload after change it:\n\n$ systemctl daemon-reload\n\nIf you get migration-related WARNINGS when launching the cape-web service, you should execute:\n\n$ poetry run python3 manage.py migrate\n\nNote\n\nIn order to improve performance, it is recommended to move from SQLite to PostgreSQL.\n\nConfiguration",
+  "Configuration\n\nThe web interface pulls data from a Mongo database or ElasticSearch, so having either the MongoDB or ElasticSearchDB reporting modules enabled in reporting.conf is mandatory for this interface. If that's not the case, the application won't start and it will raise an exception. Also, currently, Django only supports having one of the database modules enabled at a time.\n\nEnable web interface auth\n\nTo enable web authentication you need to edit conf/web.conf -> web_auth -> enabled = yes, after that you need to create your django admin user by running following command from web folder:\n\n$ poetry run python manage.py createsuperuser\n\nFor more security tips see Exposed to internet section.\n\nEnable/Disable REST API Endpoints\n\nBy default, there are multiple REST API endpoints that are disabled. To enable them, head to the API configuration file",
+  "For example, to enable the machines/list endpoint, you must find the [machinelist] header in the configuration file just mentioned and set the enabled field to yes.\n\nRestart the CAPE web service for the changes to take effect:\n\n$ systemctl restart cape-web\n\nUsage\n\nTo start the web interface, you can simply run the following command from the web/ directory:\n\n$ poetry run python3 manage.py runserver_plus --traceback --keep-meta-shutdown\n\nIf you want to configure the web interface as listening for any IP on a specified port (by default the web interface is deployed at localhost:8000), you can start it with the following command (replace PORT with the desired port number):\n\n$ poetry run python3 manage.py runserver_plus 0.0.0.0:8000 --traceback --keep-meta-shutdown",
+  "$ poetry run python3 manage.py runserver_plus 0.0.0.0:8000 --traceback --keep-meta-shutdown\n\nYou can serve CAPE's web interface using WSGI interface with common web servers: Apache, Nginx, Unicorn, and so on. Devs are using Nginx + Uwsgi. Please refer both to the documentation of the web server of your choice as well as Django documentation.\n\nSubscription\n\nSubscription allows you to control which users what can do what.\n\nRight now we support:\n\nRequest - Limits per second/minute/hour using django-ratelimit extensions\n\nReports - Allow or block downloading reports for specific users. Check conf/web.conf to enable this feature.\n\nTo extend the capabilities of control what users can do check Django migrations a primer.\n\nIn few words you need to add new fields to models.py and run poetry run python3 manage.py makemigrations\n\nExposed to internet",
+  "Exposed to internet\n\nTo get rid of many bots/scrappers so we suggest deploying this amazing project Nginx Ultimate bad bot blocker, follow the README for installation steps\n\nEnable web auth with captcha in conf/web.conf properly to avoid any brute force.\n\nEnable ReCaptcha. You will need to set RECAPTCHA_PUBLIC_KEY and RECAPTCHA_PRIVATE_KEY keys in web/web/local_settings.py\n\nYou might need to \"Verify\" and set as \"Stuff user\" to your admin in the Django admin panel and add your domain to Sites in Django admin too\n\nBest practices for production\n\nGunicorn + NGINX is the recommended way of serving the CAPE web UI.\n\nGunicorn\n\nFirst, configure the cape-web service to use Gunicorn\n\nModify /lib/systemd/system/cape-web.service so the ExecStart setting is set to:\n\nExecStart=/usr/bin/python3 -m poetry run gunicorn web.wsgi -w 4 -t 200 --capture-output --enable-stdio-inheritance\n\nRun\n\nsudo systemctl daemon-reload\nsudo service cape-web restart\n\nNGINX",
+  "Run\n\nsudo systemctl daemon-reload\nsudo service cape-web restart\n\nNGINX\n\nNext, install NGINX and configure it to be a reverse proxy to Gunicorn.\n\nsudo apt install nginx\n\nCreate a configuration file at /etc/nginx/conf.d/cape. You might need to add include /etc/nginx/conf.d/*.conf; to http section inside of /etc/nginx/nginx.conf.\n\nReplace www.capesandbox.com with your actual hostname.\n\nserver {\n    listen 80;\n    server_name www.capesandbox.com;\n    client_max_body_size 101M;\n    proxy_connect_timeout 75;\n    proxy_send_timeout 200;\n    proxy_read_timeout 200;\n\n\n    location ^~ /.well-known/acme-challenge/ {\n        default_type \"text/plain\";\n        root         /var/www/html;\n        break;\n    }\n\n    location = /.well-known/acme-challenge/ {\n        return 404;\n    }",
+  "location = /.well-known/acme-challenge/ {\n        return 404;\n    }\n\n    location / {\n        proxy_pass http://127.0.0.1:8000;\n        proxy_set_header Host $host;\n        proxy_set_header X-Remote-User $remote_user;\n        proxy_set_header X-Real-IP $remote_addr;\n        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;\n    }\n\n    location /static/ {\n        alias /opt/CAPEv2/web/static/;\n    }\n\n    location /static/admin/ {\n        proxy_pass http://127.0.0.1:8000;\n        proxy_set_header Host $host;\n        proxy_set_header X-Remote-User $remote_user;\n        proxy_set_header X-Real-IP $remote_addr;\n        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;\n    }",
+  "location /guac {\n        proxy_pass http://127.0.0.1:8008;\n        proxy_set_header X-Forwarded-Proto $scheme;\n        proxy_set_header Host $host;\n        proxy_set_header X-Real-IP $remote_addr;\n        proxy_buffering off;\n        proxy_http_version 1.1;\n        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;\n        proxy_set_header Upgrade $http_upgrade;\n        proxy_set_header Connection $http_connection;\n    }\n\n    location /recordings/playback/recfile {\n        alias /opt/CAPEv2/storage/guacrecordings/;\n        autoindex off;\n    }\n}\n\nNow enable the nginx configuration by executing the following:\n\nrm -f /etc/nginx/conf.d/default\nln -s /etc/nginx/conf.d/cape /etc/nginx/conf.d/default\n\nIf you want to block users from changing their own email addresses, add the following location directive inside of the server directive:\n\nlocation /accounts/email/ {\n    return 403;\n}",
+  "location /accounts/email/ {\n    return 403;\n}\n\nIf you want to block users from changing their own passwords, add the following location directive inside of the server directive:\n\nlocation /accounts/email/ {\n    return 403;\n}\n\nThe recording files written by guacd are only readable by the cape user and other members of the cape group, so in order for NGINX to read and serve the recordings the www-data user must be added to the cape group.\n\nsudo usermod www-data -G cape\n\nThen restart NGINX\n\nsudo service nginx restart\n\nWarning\n\nThe CAPE Guacamole Django web application is currently separate from the main CAPE Django web application, and does not support any authentication. Anyone who can connect to the web server access can Guacamole consoles and recordings, if they know the CAPE analysis ID and Guacamole session GUID.\n\nNGINX can be configured to require HTTP basic authentication for all CAPE web applications, as an alternative to the Django authentication system.",
+  "Install the apache2-utils package, which contains the htpasswd utility.\n\nsudo apt install apache2-utils\n\nUse the htpasswd file to create a new password file and add a first user, such as cape.\n\nsudo htpasswd -c /opt/CAPEv2/web/.htpasswd cape\n\nUse the same command without the -c option to add another user to an existing password file.\n\nSet the proper file permissions.\n\nsudo chown root:www-data /opt/CAPEv2/web/.htpasswd\nsudo chmod u=rw,g=r,o= /opt/CAPEv2/web/.htpasswd\n\nAdd the following lines to the NGINX configuration, just below the client_max_body_size line.\n\nauth_basic           \"Authentication required\";\nauth_basic_user_file /opt/CAPEv2/web/.htpasswd;\n\nThen restart NGINX\n\nsudo service nginx restart\n\nLet's Encrypt certificates",
+  "Then restart NGINX\n\nsudo service nginx restart\n\nLet's Encrypt certificates\n\nIf you would like to install a free Let's Encrypt certificate on your NGINX server, follow these steps, replacing capesandbox.com with your actual hostname. Use cape2.sh to install dependencies. But also ensure that instruction are up to date with this https://certbot.eff.org/\n\nInstall certbot.\n\nsudo cape2.sh letsencrypt\n\nRequest the certificate\n\nsudo certbot certonly --webroot -w /var/www/html -d www.capesandbox.com -d capesandbox.com\n\nInstall the certificate. When prompted, select the \"Attempt to reinstall this existing certificate\" option.\n\nsudo certbot --nginx -d www.capesandbox.com -d capesandbox.com\n\nSome extra security TIP(s)\n\nModSecurity tutorial - rejects requests\n\nFail2ban tutorial - ban hosts\n\nFail2ban + CloudFlare - how to ban on CloudFlare aka CDN firewall level\n\nExample of cloudflare action ban:",
+  "Example of cloudflare action ban:\n\n# Author: Mike Andreasen from https://guides.wp-bullet.com\n# Adapted Source: https://github.com/fail2ban/fail2ban/blob/master/config/action.d/cloudflare.conf\n# Referenced from: https://www.normyee.net/blog/2012/02/02/adding-cloudflare-support-to-fail2ban by NORM YEE\n#\n# To get your Cloudflare API key: https://www.cloudflare.com/my-account, you should use GLOBAL KEY!\n\n[Definition]\n\n# Option:  actionstart\n# Notes.:  command executed once at the start of Fail2Ban.\n# Values:  CMD\n#\nactionstart =\n\n# Option:  actionstop\n# Notes.:  command executed once at the end of Fail2Ban\n# Values:  CMD\n#\nactionstop =\n\n# Option:  actioncheck\n# Notes.:  command executed once before each actionban command\n# Values:  CMD\n#\nactioncheck =",
+  "# Option:  actionban\n# Notes.:  command executed when banning an IP. Take care that the\n#          command is executed with Fail2Ban user rights.\n# Tags:      IP address\n#            number of failures\n#            unix timestamp of the ban time\n# Values:  CMD\n\nactionban = curl -s -X POST \"https://api.cloudflare.com/client/v4/user/firewall/access_rules/rules\" -H \"X-Auth-Email: <cfuser>\" -H \"X-Auth-Key: <cftoken>\" -H \"Content-Type: application/json\" --data '{\"mode\":\"block\",\"configuration\":{\"target\":\"ip\",\"value\":\"<ip>\"},\"notes\":\"Fail2ban\"}'\n\n# Option:  actionunban\n# Notes.:  command executed when unbanning an IP. Take care that the\n#          command is executed with Fail2Ban user rights.\n# Tags:      IP address\n#            number of failures\n#            unix timestamp of the ban time\n# Values:  CMD\n#",
+  "actionunban = curl -s -X DELETE \"https://api.cloudflare.com/client/v4/user/firewall/access_rules/rules/$( \\\n            curl -s -X GET \"https://api.cloudflare.com/client/v4/user/firewall/access_rules/rules?mode=block&configuration_target=ip&configuration_value=<ip>&page=1&per_page=1&match=all\" \\\n            -H \"X-Auth-Email: <cfuser>\" \\\n            -H \"X-Auth-Key: <cftoken>\" \\\n            -H \"Content-Type: application/json\" | awk -F\"[,:}]\" '{for(i=1;i<=NF;i++){if($i~/'id'\\042/){print $(i+1)}}}' | tr -d '\"' | head -n 1)\" \\\n            -H \"X-Auth-Email: <cfuser>\" \\\n            -H \"X-Auth-Key: <cftoken>\" \\\n            -H \"Content-Type: application/json\"\n\n[Init]\n\n# Option: cfuser\n# Notes.: Replaces <cfuser> in actionban and actionunban with cfuser value below\n# Values: Your CloudFlare user account\n\ncfuser = put-your-cloudflare-email-here",
+  "cfuser = put-your-cloudflare-email-here\n\n# Option: cftoken\n# Notes.: Replaces <cftoken> in actionban and actionunban with cftoken value below\n# Values: Your CloudFlare API key\ncftoken = put-your-API-key-here\n\nExample of fail2ban rule to ban by path:\n\n# This will ban any host that trying to access /api/ for 3 times in 1 minute\n# Goes to /etc/fail2ban/filters.d/nginx-cape-api.conf\n[Definition]\nfailregex = ^<HOST> -.*\"(GET|POST|HEAD) /api/.*HTTP.*\"\nignoreregex =\n\n# goes to /etc/fail2ban/jail.local\n[cape-api]\nenabled = true\nport    = http,https\nfilter  = nginx-cape-api\nlogpath = /var/log/nginx/access.log\nmaxretry = 3\nfindtime = 60\nbantime = -1\n# Remove cloudflare line if you don't use it\naction = iptables-multiport\n         cloudflare",
+  "# This will ban any host that trying to brute force login or unauthorized requests for 5 times in 1 minute\n# Goes to /etc/fail2ban/filters.d/filter.d/nginx-cape-login.conf\n[Definition]\nfailregex = ^<HOST> -.*\"(GET|POST|HEAD) /accounts/login/\\?next=.*HTTP.*\"\nignoreregex =\n\n# goes to /etc/fail2ban/jail.local\n[cape-login]\nenabled = true\nport    = http,https\nfilter  = nginx-cape-login\nlogpath = /var/log/nginx/access.log\nmaxretry = 5\nfindtime = 60\nbantime = -1\n# Remove cloudflare line if you don't use it\naction = iptables-multiport\n          cloudflare\n\nTo check banned hosts:\n\n$ sudo fail2ban-client status cape-api\n\nTroubleshooting\n\nLogin error: no such column: users_userprofile.reports\n\nimage\n\nThis error usually appears after updating CAPEv2 and one or more changes have been made to the database schema. To solve it, you must use the web/manage utility like so:\n\n$ sudo -u cape poetry run python3 manage.py migrate\n\nThe output should be similar to:",
+  "$ sudo -u cape poetry run python3 manage.py migrate\n\nThe output should be similar to:\n\n$ sudo -u cape poetry run python3 manage.py migrate\nCAPE parser: No module named Nighthawk - No module named 'Crypto'\nMissed dependency flare-floss: poetry run pip install -U flare-floss\nOperations to perform:\n  Apply all migrations: account, admin, auth, authtoken, contenttypes, openid, sessions, sites, socialaccount, users\nRunning migrations:\n  Applying users.0002_reports... OK\n\nAfter the OK, the web service should be back to normal (no need to restart cape-web.service).\n\nNo such table: auth_user\n\nWhen executing:\n\n$ poetry run python manage.py createsuperuser\n\nan error like django.db.utils.OperationalError: no such table: auth_user may be raised. In order to solve it just execute the web/manage.py utility with the migrate option:\n\n$ sudo -u cape poetry run python3 web/manage.py migrate\n\nSlow web/API searches when using MongoDB as backend",
+  "Slow web/API searches when using MongoDB as backend\n\nCheck server lack of resources as memory ram, cpu or even slow hard drive.\n\nPossible issue is the lack of proper indexes.\n\nList your MongoDB indexes:\n\ndb.analysis.getIndexes()\n\nTest your query with explaination. Replace with your search patterns:\n\ndb.analysis.find({\"target.file.name\": \"<name>\"}).explain(\"executionStats\")\n\nPay attention to stage value:\n\nexecutionStages: {\n    stage: 'COLLSCAN', # <--- Full collection scan instead of index usage\n\nIf you expect it to search in index, expected output should be like this:\n\nexecutionStages: {\n    stage: 'FETCH',\n    <stripped>\n    inputStage: {\n        stage: 'IXSCAN', # <--- Index usage\n\nHow to delete index\n\ndb.collection.dropIndexes(\"<index name>\")",
+  "CAPE Rooter\n\nThe CAPE Rooter is a new concept, providing root access for various commands to CAPE (which itself generally speaking runs as non-root). This command is currently only available for Ubuntu and Debian-like systems.\n\nIn particular, the rooter helps CAPE out with running network-related commands to provide per-analysis routing options. For more information on that, please refer to the routing document. CAPE and the rooter communicate through a UNIX socket for which the rooter makes sure that CAPE can reach it.\n\nIts usage is as follows:\n\n$ python3 rooter.py -h\nusage: rooter.py [-h] [-g GROUP] [--systemctl SYSTEMCTL] [--iptables IPTABLES] [--iptables-save IPTABLES_SAVE] [--iptables-restore IPTABLES_RESTORE] [--ip IP] [-v] [socket]\n\npositional arguments:\nsocket                Unix socket path",
+  "positional arguments:\nsocket                Unix socket path\n\noptional arguments:\n-h, --help            show this help message and exit\n-g GROUP, --group GROUP\n                        Unix socket group\n--systemctl SYSTEMCTL\n                        Systemctl wrapper script for invoking OpenVPN\n--iptables IPTABLES   Path to iptables\n--iptables-save IPTABLES_SAVE\n                        Path to iptables-save\n--iptables-restore IPTABLES_RESTORE\n                        Path to iptables-restore\n--ip IP               Path to ip\n-v, --verbose         Enable verbose logging\n\nWhen executing the rooter utility, it will default to the cuckoo group.\n\nimage\n\nYou must specify the user of the UNIX socket. As recommended in the installation, it should be the cape user. You can do so by executing the following command:\n\n$ sudo python3 utils/rooter.py -g cape\n\nHowever, if you're running CAPE under a user other than cape, you will have to specify this to the rooter as follows:",
+  "$ sudo python3 utils/rooter.py -g <user>\n\nThe other options are fairly straightforward - you can specify the paths to specific Linux commands. By default, one shouldn't have to do this though, as the rooter takes the default paths for the various utilities as per a default setup.\n\nVirtualenv\n\nSince the rooter must be run as root user, there are some slight complications when using a virtualenv to run CAPE. More specifically, when running sudo python3 utils/rooter.py, the $VIRTUAL_ENV environment variable will not be passed along, due to which Python will not be executed from the same virtualenv as it would have been normally.\n\nTo resolve this one simply has to execute the cape binary from the virtualenv session directly. E.g., if your virtualenv is located at ~/venv, then running the rooter command could be done as follows:\n\n$ sudo ~/venv/bin/cape rooter\n\nCAPE Rooter Usage",
+  "$ sudo ~/venv/bin/cape rooter\n\nCAPE Rooter Usage\n\nUsing the CAPE Rooter is pretty easy. If you know how to start it, you're good to go. Even though CAPE talks with the CAPE Rooter for each analysis with a routing option other than routing_none, the CAPE Rooter does not keep any state or attach to any CAPE instance in particular.\n\nIt is therefore that once the CAPE Rooter has been started you may leave it be - the CAPE Rooter will take care of itself from that point onwards, no matter how often you restart your CAPE instance.",
+  "CAPE advanced administration\n\nWIP YET!\n\nEverything is easy when you have one server. But when you have many servers or even cluster some parts become more complicated. And when you run your private fork due to custom parts of CAPE, is where the challenge start. For that reason I wrote admin/admin.py. With this utility script you can do a lot of different interesting things that @doomedraven faced with his CAPE clusters. Just to mention some:\n\nServers in different networks that requires different SSH pivoting.\n\nDeploy 1 or N modified number of files (to be pushed to repo) or that was merged by another person and you need to deploy it after git pull.\n\nCompare upstream repo to your private fork or to list of files on your servers. This helps spot badly deployed files, where sha256 doesn't match.\n\nExecute commands on all servers.\n\nPull files.\n\nSee -h for the rest of your options\n\nDependencies",
+  "Execute commands on all servers.\n\nPull files.\n\nSee -h for the rest of your options\n\nDependencies\n\nYou need to add your ssh key to .ssh/authorized_keys. I personally suggest to add it under root user.\n\nSSH Pivoting explained\n\nSSH pivoting is when you access to one server using another as proxy. In case if you need deeper explanation of this. Google it! admin.py support two types of of pivoting, simple and more complex. You need to configure admin/admin_conf.py\n\nComparing files\n\nThe idea of this is to spot files that doesn't match and fix them. Right now only deletion works, but in future it will support deploying of mismatched files.",
+  "In case you use your own fork of CAPE. Is good to compare from time to time that you didn't miss any update and have all files properly updated. Some of us will have made custom mods to some files as for example: file_extra_info.py for example. You can exclude them in config under EXCLUDE_FILENAMES. Also another known problem that most advanced users will have their own YARA rules, config extractors, etc. For that my personal suggestion is to use prefix of your choice in that way you can filter them out in config with EXCLUDE_PREFIX. To generate repositories listing run:\n\npoetry run python admin/admin.py -gfl <path to private fork> --filename <Your fork name>\n\npoetry run python admin/admin.py -gfl <path to upstream repo> --filename upstream\n\nThe rest of the possibilities",
+  "Analysis Packages\n\nThe analysis packages are a core component of CAPE Sandbox. They consist of structured Python classes that, when executed in the guest machines, describe how CAPE's analyzer component should conduct the analysis.\n\nCAPE provides some default analysis packages that you can use, but you can create your own or modify the existing ones. You can find them at analyzer/windows/modules/packages/.\n\nAs described in ../usage/submit, you can specify some options to the analysis packages in the form of key1=value1,key2=value2. The existing analysis packages already include some default options that can be enabled.\n\nThe following is a list of the existing packages in alphabetical order:\n\naccess: used to run and analyze Microsoft Office Access files via msaccess.exe.\n\napplet: used to run and analyze Java applets via firefox.exe or iexplore.exe.\n\narchive: used to run and analyze archives such as ISO, VHD and anything else that 7-Zip can extract via 7z.exe.",
+  "Explanation how it works can be found in this Technical Session for CyberShock 2022, presented by CCCS.\n\nNB: Passing file= as a task option will ensure that the entire archive is passed to the victim VM and extracted there, prior to executing files of interest within in the extracted folder.\n\nchm: used to run and analyze Microsoft Compiled HTML Help files via hh.exe.\n\nchrome: used to open the given URL via chrome.exe.\n\nchromium: used to open the given URL via the Chromium version of chrome.exe.\n\ncpl: used to run and analyze Control Panel Applets via control.exe.\n\ndll: used to run and analyze Dynamically Linked Libraries via rundll32.exe.\n\ndoc_antivm: used to run and analyze Microsoft Word documents via winword.exe or wordview.exe.\n\nNB: Multiple applications are executed prior to the sample's execution, to prevent certain anti-vm techniques.\n\ndoc: used to run and analyze Microsoft Word documents via winword.exe.",
+  "doc: used to run and analyze Microsoft Word documents via winword.exe.\n\ndoc2016: used to run and analyze Microsoft Word documents via Microsoft Office 2016's winword.exe.\n\nedge: used to open the given URL via msedge.exe.\n\neml: used to run and analyze Electronic Mail files via outlook.exe.\n\nexe: default analysis package used to run and analyze generic Windows executables.\n\nfirefox: used to open the given URL via firefox.exe.\n\ngeneric: used to run and analyze generic samples via cmd.exe.\n\nhta: used to run and analyze HTML Applications via mshta.exe.\n\nhwp: used to run and analyze Hangul Word Processor files via hwp.exe or hword.exe.\n\nichitaro: used to run and analyze Ichitaro Word Processor files via taroview.exe.\n\nie: used to open the given URL via iexplore.exe.\n\ninp: used to run and analyze Inpage Word Processor files via inpage.exe.\n\njar: used to run and analyze Java JAR containers via java.exe.\n\njs_antivm: used to run and analyze JavaScript and JScript Encoded files via wscript.exe.",
+  "js_antivm: used to run and analyze JavaScript and JScript Encoded files via wscript.exe.\n\nNB: This package opens 20 Calculator windows prior to execution, to prevent certain anti-vm techniques.\n\njs: used to run and analyze JavaScript and JScript Encoded files via wscript.exe.\n\nNB: This package opens 20 Calculator windows prior to .jse execution, to prevent certain anti-vm techniques.\n\nlnk: used to run and analyze Windows Shortcuts via cmd.exe.\n\nmht: used to run and analyze MIME HTML files via iexplore.exe.\n\nmsbuild: used to run and analyze Microsoft Build Engine files via msbuild.exe.\n\nmsg: used to run and analyze Outlook Message Item files via outlook.exe.\n\nmsi: used to run and analyze Windows Installer Package files via msiexec.exe.\n\nnsis: used to run and analyze Nullsoft Scriptable Install System files via cmd.exe.\n\nollydbg: used to run and analyze generic samples via ollydbg.exe.\n\nNB: The ollydbg.exe application must be in the analyzer's bin directory.",
+  "NB: The ollydbg.exe application must be in the analyzer's bin directory.\n\none: used to run and analyze Microsoft OneNote documents via onenote.exe.\n\npdf: used to run and analyze PDF documents via acrord32.exe.\n\nppt: used to run and analyze Microsoft PowerPoint documents via powerpnt.exe.\n\nppt2016: used to run and analyze Microsoft PowerPoint documents via Microsoft Office 2016's powerpnt.exe.\n\nps1_x64: used to run and analyze PowerShell scripts via powershell.exe in SysNative.\n\nNB: This package uses the powershell.exe in SysNative.\n\nps1: used to run and analyze PowerShell scripts via powershell.exe in System32.\n\nNB: This package uses the powershell.exe in System32.\n\npub: used to run and analyze Microsoft Publisher documents via mspub.exe.\n\npub2016: used to run and analyze Microsoft Publisher documents via Microsoft Office 2016's mspub.exe.\n\npython: used to run and analyze Python scripts via py.exe or python.exe.",
+  "python: used to run and analyze Python scripts via py.exe or python.exe.\n\nrar: extracts WinRAR Compressed Archive files via the rarfile Python package, and runs an executable file (if it exists), with cmd.exe.\n\nNB: The rarfile Python package must be installed on the guest.\n\nreg: used to run and analyze Registry files via reg.exe.\n\nregsvr: used to run and analyze Dynamically Linked Libraries via regsvr32.exe.\n\nsct: used to run and analyze Windows Scriptlet files via regsvr32.exe.\n\nservice_dll: used to run and analyze Service Dynamically Linked Libraries via sc.exe.\n\nservice: used to run and analyze Services via sc.exe.\n\nshellcode_x64: used to run and analyze Shellcode via the 64-bit CAPE loader.\n\nshellcode: used to run and analyze Shellcode via the 32-bit CAPE loader, with unpacking!\n\nswf: used to run and analyze Shockwave Flash via flashplayer.exe.\n\nNB: You need to have flashplayer.exe in the analyzer's bin folder.",
+  "NB: You need to have flashplayer.exe in the analyzer's bin folder.\n\nvbejse: used to run and analyze VBScript Encoded and JScript Encoded files via wscript.exe.\n\nvbs: used to run and analyze VBScript and VBScript Encoded files via wscript.exe.\n\nwsf: used to run and analyze Windows Script Files via wscript.exe.\n\nxls: used to run and analyze Microsoft Excel documents via excel.exe.\n\nxls2016: used to run and analyze Microsoft Excel documents via Microsoft Office 2016's excel.exe.\n\nxslt: used to run and analyze eXtensible Stylesheet Language Transformation Files via wmic.exe.\n\nxps: used to run and analyze XML Paper Specification Files via xpsrchvw.exe.\n\nzip_compound: used to run and analyze Zip archives with more specific settings.\n\nNB: Either file option must be set, or a __configuration.json file must be present in the zip file. Sample json file:",
+  "{\n    \"path_to_extract\": {\n        \"a.exe\": \"%USERPROFILE%\\\\Desktop\\\\a\\\\b\\\\c\",\n        \"folder_b\": \"%appdata%\"\n    },\n    \"target_file\":\"a.exe\"\n}\n\nzip: extract Zip archives via the zipfile Python package, and runs an executable file (if it exists), with cmd.exe.\n\nYou can find more details on how to start creating analysis packages in the ../customization/packages customization chapter.\n\nAs you already know, you can select which analysis package to use by specifying its name at submission time (see submit) as follows:\n\n$ ./utils/submit.py --package <package name> /path/to/malware\n\nIf no package is specified, CAPE will try to detect the file type and select the correct analysis package accordingly. If the file type is not supported by default, the analysis will be aborted. Therefore we encourage to specify the package name whenever possible.\n\nFor example, to launch a malware sample and specify some options you can do:",
+  "For example, to launch a malware sample and specify some options you can do:\n\n$ ./utils/submit.py --package dll --options function=FunctionName,loader=explorer.exe /path/to/malware.dll",
+  "Pattern replacement\n\nReplace/discard any host/network pattern.\n\nCleaning Operation system patterns.\n\nPut your patterns inside of data/safelist/replacepatterns.py\n\nCleaning Network patterns as IP(s)/Domains.",
+  "Submit an Analysis\n\nsubmitpy\n\napipy\n\ndistpy\n\nwebpy\n\npython\n\nSubmission Utility\n\nThe easiest way to submit an analysis is to use the provided submit.py command-line utility. It currently has the following options available:\n\nusage: submit.py [-h] [--remote REMOTE] [--url] [--package PACKAGE]\n                 [--custom CUSTOM] [--timeout TIMEOUT] [--options OPTIONS]\n                 [--priority PRIORITY] [--machine MACHINE]\n                 [--platform PLATFORM] [--memory] [--enforce-timeout]\n                 [--clock CLOCK] [--tags TAGS] [--max MAX] [--pattern PATTERN]\n                 [--shuffle] [--unique] [--quiet]\n                 target\n\npositional arguments:\n  target               URL, path to the file or folder to analyze",
+  "optional arguments:\n  -h, --help           show this help message and exit\n  --remote REMOTE      Specify IP:port to a CAPE API server to submit\n                       remotely\n  --url                Specify whether the target is an URL\n  --package PACKAGE    Specify an analysis package\n  --custom CUSTOM      Specify any custom value\n  --timeout TIMEOUT    Specify an analysis timeout\n  --options OPTIONS    Specify options for the analysis package (e.g.\n                       \"name=value,name2=value2\")\n  --priority PRIORITY  Specify a priority for the analysis represented by an\n                       integer\n  --machine MACHINE    Specify the identifier of a machine you want to use\n  --platform PLATFORM  Specify the operating system platform you want to use\n                       (windows/darwin/linux)\n  --memory             Enable to take a memory dump of the analysis machine\n  --enforce-timeout    Enable to force the analysis to run for the full\n                       timeout period",
+  "timeout period\n  --clock CLOCK        Set virtual machine clock\n  --tags TAGS          Specify tags identifier of a machine you want to use\n  --max MAX            Maximum samples to add in a row\n  --pattern PATTERN    Pattern of files to submit\n  --shuffle            Shuffle samples before submitting them\n  --unique             Only submit new samples, ignore duplicates\n  --quiet              Only print text on failure",
+  "If you specify a directory as the target path, all of the files contained within that directory will be submitted for analysis.\n\nThe concept of analysis packages will be dealt with later in this documentation (at packages). The following are some examples of how to use the submit.py tool:\n\nWarning\n\nRemember to use the cape user. The following commands are executed as cape.\n\nExample: Submit a local binary:\n\n$ poetry run python utils/submit.py /path/to/binary\n\nExample: Submit an URL:\n\n$ poetry run python utils/submit.py --url http://www.example.com\n\nExample: Submit a local binary and specify a higher priority:\n\n$ poetry run python utils/submit.py --priority 5 /path/to/binary\n\nExample: Submit a local binary and specify a custom analysis timeout of 60 seconds:\n\n$ poetry run python utils/submit.py --timeout 60 /path/to/binary\n\nExample: Submit a local binary and specify a custom analysis package:\n\n$ poetry run python utils/submit.py --package <name of package> /path/to/binary",
+  "$ poetry run python utils/submit.py --package <name of package> /path/to/binary\n\nExample: Submit a local binary and specify a custom analysis package and some options (in this case a command line argument for the malware):\n\n$ poetry run python utils/submit.py --package exe --options arguments=--dosomething /path/to/binary.exe\n\nExample: Submit a local binary to be run on the virtual machine cape1:\n\n$ poetry run python utils/submit.py --machine cape1 /path/to/binary\n\nExample: Submit a local binary to be run on a Windows machine:\n\n$ poetry run python utils/submit.py --platform windows /path/to/binary\n\nExample: Submit a local binary and take a full memory dump of the analysis machine once the analysis is complete:\n\n$ poetry run python utils/submit.py --memory /path/to/binary\n\nExample: Submit a local binary and force the analysis to be executed for the full timeout (disregarding the internal mechanism that CAPE uses to decide when to terminate the analysis):",
+  "$ poetry run python utils/submit.py --enforce-timeout /path/to/binary\n\nExample: Submit a local binary and set the virtual machine clock. The format is %m-%d-%Y %H:%M:%S. If not specified, the current time is used. For example, if we want to run a sample on January 24th, 2001, at 14:41:20:\n\n$ poetry run python utils/submit.py --clock \"01-24-2001 14:41:20\" /path/to/binary\n\nExample: Submit a sample for Volatility analysis (to reduce side effects of the CAPE hooking, switch it off with options free=True):\n\n$ poetry run python utils/submit.py --memory --options free=True /path/to/binary\n\n--options Options Available\n\nfilename: Rename the sample file\n\nname: This will force family extractor to run, Ex: name=trickbot\n\nexecutiondir: Sets directory to launch the file from. Need not be the same as the directory of sample file. Defaults to %TEMP% if both executiondir and curdir are not specified. Only supports full paths\n\nfree: Run without monitoring (disables many capabilities) Ex: free=1",
+  "free: Run without monitoring (disables many capabilities) Ex: free=1\n\nforce-sleepskip: Override default sleep skipping behavior: 0 disables all sleep skipping, 1 skips all sleeps.\n\nfull-logs: By default, logs prior to network activity for URL analyses and prior to access of the file in question for non-executable formats are suppressed. Set to 1 to disable log suppression.\n\nforce-flush: For performance reasons, logs are buffered before being sent back to the result server. We make every attempt to flush the buffer at critical points including when exceptions occur, but in some rare termination scenarios, logs may be lost. Set to 1 to force flushing of the log buffers after any non-duplicate API is called, set to 2 to force flushing of every log.\n\nno-stealth: Set to 1 to disable anti-anti-VM/sandbox code enabled by default.\n\nbuffer-max: When set to an integer of your choice, changes the maximum number of bytes that can be logged for most API buffers.",
+  "large-buffer-max: Some hooked APIs permit larger buffers to be logged. To change the limit for this, set this to an integer of your choice.\n\nnorefer: Disables use of a fake referrer when performing URL analyses\n\nfile: When using the zip or rar package, set the name of the file to execute\n\npassword: When using the zip or rar package, set the password to use for extraction. Also used when analyzing password-protected Office documents.\n\nfunction: When using the dll package, set the name of the exported function to execute\n\ndllloader: When using the dll package, set the name of the process loading the DLL (defaults to rundll32.exe).\n\narguments: When using the dll, exe, or python packages, set the arguments to be passed to the executable or exported function.\n\nappdata: When using the exe package, set to 1 to run the executable out of the Application Data path instead of the Temp directory.",
+  "startbrowser: Setting this option to 1 will launch a browser 30 seconds into the analysis (useful for some banking trojans).\n\nbrowserdelay: Sets the number of seconds to wait before starting the browser with the startbrowser option. Defaults to 30 seconds.\n\nurl: When used with the startbrowser option, this will determine the URL the started browser will access.\n\ndebug: Set to 1 to enable reporting of critical exceptions occurring during analysis, set to 2 to enable reporting of all exceptions.\n\ndisable_hook_content: Set to 1 to remove functionality of all hooks except those critical for monitoring other processes. Set to 2 to apply to all hooks.\n\nhook-type: Valid for 32-bit analyses only. Specifies the hook type to use: direct, indirect, or safe. Safe attempts a Detours-style hook.\n\nserial: Spoof the serial of the system volume as the provided hex value\n\nsingle-process: When set to 1 this will limit behavior monitoring to the initial process only.",
+  "single-process: When set to 1 this will limit behavior monitoring to the initial process only.\n\nexclude-apis: Exclude the colon-separated list of APIs from being hooked\n\nexclude-dlls: Exclude the colon-separated list of DLLs from being hooked\n\ndropped-limit: Override the default dropped file limit of 100 files\n\ncompression: When set to 1 this will enable CAPE's extraction of compressed payloads\n\nextraction: When set to 1 this will enable CAPE's extraction of payloads from within each process\n\ninjection: When set to 1 this will enable CAPE's capture of injected payloads between processes\n\ncombo: This combines compression, injection and extraction with process dumps\n\ndump-on-api: Dump the calling module when a function from the colon-separated list of APIs is used\n\nbp0: Sets breakpoint 0 (processor/hardware) to a VA or RVA value (or module::export). Applies also to bp1-bp3.\n\nfile-offsets: Breakpoints in bp0-bp3 will be interpreted as PE file offsets rather than RVAs",
+  "file-offsets: Breakpoints in bp0-bp3 will be interpreted as PE file offsets rather than RVAs\n\nbreak-on-return: Sets breakpoints on the return address(es) from a colon-separated list of APIs\n\nbase-on-api: Sets the base address to which breakpoints will be applied (and sets breakpoints)\n\ndepth: Sets the depth an instruction trace will step into (defaults to 0, requires Trace package)\n\ncount: Sets the number of instructions in a trace (defaults to 128, requires Trace package)\n\nreferrer: Specify the referrer to be used for URL tasks, overriding the default Google referrer\n\nloop_detection: Set this option to 1 to enable loop detection (compress call logs - behavior analysis)\n\nstatic: Check if config can be extracted statically, if not, send to vm\n\nDl&Exec add headers: Example: dnl_user_agent: \"CAPE Sandbox\", dnl_referrer: google\n\nservicedesc - for service package: Service description\n\narguments - for service package: Service arguments",
+  "arguments - for service package: Service arguments\n\nstore_memdump: Will force STORE memdump, only when submitting to analyzer node directly, as distributed cluster can modify this\n\npre_script_args: Command line arguments for pre_script. Example: pre_script_args=file1 file2 file3\n\npre_script_timeout: pre_script_timeout will default to 60 seconds. Script will stop after timeout Example: pre_script_timeout=30\n\nduring_script_args: Command line arguments for during_script. Example: during_script_args=file1 file2 file3\n\npwsh: - for ps1 package: prefer PowerShell Core, if available in the vm\n\ncheck_shellcode: - Setting check_shellcode=0 will disable checking for shellcode during package identification and extracting from archive\n\nunhook-apis: - capability to dynamically unhook previously hooked functions (unhook-apis option takes colon-separated list e.g. unhook-apis=NtSetInformationThread:NtDelayExecution)",
+  "ttd: - ttd=1. TTD integration (Microsoft Time Travel Debugging). Place TTD binaries in analyzer/windows/bin (with wow64 subdirectory for 32-bit). .trc files output to TTD directory in results folder for manual retrieval\n\nWeb Interface\n\nDetailed usage of the web interface is described in web.\n\nAPI\n\nDetailed usage of the REST API interface is described in api.\n\nDistributed CAPE\n\nDetailed usage of the Distributed CAPE API interface is described in dist.\n\nPython Functions\n\nTo keep track of submissions, samples, and overall execution, CAPE uses a popular Python ORM called SQLAlchemy that allows you to make the sandbox use PostgreSQL, SQLite, MySQL, and several other SQL database systems.\n\nCAPE is designed to be easily integrated into larger solutions and to be fully automated. To automate analysis submission we suggest using the REST API interface described in api, but in case you want to write a Python submission script, you can also use the add_path() and add_url() functions.",
+  "add_path(file_path[, timeout=0[, package=None[, options=None[, priority=1[, custom=None[, machine=None[, platform=None[, memory=False[, enforce_timeout=False], clock=None[]]]]]]]]])\n\nAdd a local file to the list of pending analysis tasks. Returns the ID of the newly generated task.\n\nExample usage:\n\n>>> from lib.cuckoo.core.database import Database\n>>> db = Database()\n>>> db.add_path(\"/tmp/malware.exe\")\n1\n>>>\n\nadd_url(url[, timeout=0[, package=None[, options=None[, priority=1[, custom=None[, machine=None[, platform=None[, memory=False[, enforce_timeout=False], clock=None[]]]]]]]]])\n\nAdd a local file to the list of pending analysis tasks. Returns the ID of the newly generated task.\n\nExample Usage:\n\n>>> from lib.cuckoo.core.database import Database\n>>> db = Database()\n>>> db.add_url(\"http://www.cuckoosandbox.org\")\n2\n>>>\n\nTroubleshooting\n\nsubmit.py\n\nIf you try to submit an analysis using submit.py and your output looks like:",
+  "submit.py\n\nIf you try to submit an analysis using submit.py and your output looks like:\n\n$ sudo -u cape poetry run python submit.py /path/to/binary/test.exe\nError: adding task to database\n\nIt could be due to errors while trying to communicate with the PostgreSQL instance. PostgreSQL is installed and configured by default when executing cape2.sh. Make sure your PostgreSQL instance is active and running. To check it out execute the following command:\n\n$ sudo systemctl status postgresql\n\nIf the status is other than Active (it can be in exited status, as long as it is Active), there is something that needs to be fixed.\n\nThe logs for PostgreSQL can be found under /var/log/postgresql/*.log.\n\nIf everything is working regarding PostgreSQL, make sure the cape user is able to access (both read and write) the directories involved in the analysis. For example, cape must be able to read and write in /tmp.\n\nAnalysis results\n\nCheck analysis_results.",
+  "CAPE's debugger\n\nCAPE's debugger is one of the most powerful features of the sandbox: a programmable debugger configured at submission by either Yara signature or submission options, allowing breakpoints to be set dynamically. This allows instruction traces of malware execution to be captured, as well as configuring actions to perform such as control flow manipulation for anti-sandbox bypasses, or dumping decrypted config regions or unpacked payloads.\n\nWhat make CAPE's debugger unique among Windows debuggers is the fact that it has been built with minimal (almost zero) use of Windows debugging interfaces specifically for the purpose of malware analysis. Its goal is to make maximal use of the processor's debugging hardware but to avoid Windows interfaces which are typically targeted by anti-debug techniques.\n\nThe debugger is not interactive, its actions are pre-determined upon submission and the results can be found in the debugger log which is presented in a dedicated tab in the UI.",
+  "Th following is a quick guide on getting started with the debugger.\n\nBreakpoints: bp0, bp1, bp2, bp3\n\nThe most important feature of the debugger is the ability to set and catch hardware breakpoints using the debug registers of the CPU. There are four breakpoints slots in the Intel CPU to make use of, however it's worth noting that there is no help from the hardware for implemening a debugger feature like stepping over calls, so to achieve this one of the four breakpoints is needed. There are instructions (such as syscalls) which cannot be stepped into, so which must be stepped over. So to allow this as well as stepping over calls via the 'depth' option, at least one breakpoint must be kept free. For more background information on the hardware used here see: https://en.wikipedia.org/wiki/X86_debug_register.",
+  "Breakpoints are set using the options bp0, bp1, bp2 and bp3, supplying an RVA value. For example bp0=0x1234. The image base for the RVAs can be set dynamically in a number of ways, please see the remainder of the documentation.\n\nIn order to break on entry point, the option can be to set to 'ep': bp0=ep.This will instruct the debugger to break on the entry point of the main executable of each process and begin tracing. (In the case of a DLL, this breakpoint will also be set on the entry point of the DLL).\n\nDepth\n\nIn single-step mode, the behaviour of a trace can be characterised in terms of whether it steps into a call, or over it. From this comes the concept of depth; the debugger will trace at the same depth in a trace by stepping-over calls to deeper functions. Thus if we set a depth of zero (which is also the default) the behaviour will be to step over all the subsequent calls (at least until a ret is encountered):\n\ndepth=0",
+  "depth=0\n\nIf we set a depth of, say, three, then the debugger will step into calls into further levels of depth three times:\n\ndepth=3\n\nCount\n\nAnother important characteristic of a trace is its length or count of instructions. This is set with the count option, for example:\n\ncount=10000\n\nThe count may also be specified as hexadecimal:\n\ncount=0xff00\n\nThe default count is 0x4000.\n\nBreak-on-return\n\nSometimes it might be more convenient or quicker to take advantage of the fact that a certain API call is made from an interesting code region, with its return or 'caller' address to the region in question accompanying the API output in the behavior log. We can tell the debugger to use that return address as a breakpoint with the break-on-return option, for example:\n\nbreak-on-return=RtlDecompressBuffer\n\nBase-on-api",
+  "break-on-return=RtlDecompressBuffer\n\nBase-on-api\n\nInstead of breaking directly on the return address of an API, we may just wish to base our breakpoints on the same base address as a particular API. For this we use the base-on-api option, for example: * base-on-api=NtSetInformationThread\n\nThis option requires that the breakpoint RVA value be specified by one of the breakpoint options (bp, br).\n\nBase-on-alloc",
+  "Base-on-alloc\n\nAn obvious restriction using this method is that the API call from which the image base is determined must be made before the code we wish to put a breakpoint on is executed. For this reason, there exists an alternative option, base-on-alloc, which will attempt to set the breakpoint RVA relative to every newly executable region (whether through allocation or protection). The advantage of this method is that the breakpoint will always be set before the code can execute, but the downside is that breakpoints may repeatedly be set needlessly with allocations that are not of interest. This is simply set by the option: * base-on-alloc=1\n\nActions",
+  "Actions\n\nOften we might wish to perform an action when a breakpoint is hit. These actions can be defined by the actions: action0, action1, action2, and action3, each corresponding to a respective breakpoint. The action is specified by a simple string (not case sensitive). The list of actions is constantly growing, so if the need arises for further actions, they can be simply added.\n\nThe list of actions and their implementation can be found in Trace.c of Capemon(CAPE's monitor), specifically in the ActionDispatcher. It would be really easy to add additionnal actions and there is a lot of other gadgets which could be added there depending on the needs of the debugger's user.\n\nType\n\nAlthough the debugger defaults to execution breakpoints, it is also possible to set data breakpoints either for read-only, or both read & write. This is specified with the options: type0, type1, type2, and type3 for the corresponding breakpoint. The type option uses the following values:\n\nr - read only",
+  "r - read only\n\nw - write and read\n\nx - execution\n\nbr0, br1, br2, br3\n\nSometimes it may be convenient to set a breakpoint on the return address of a function, for example when it might be easier to write a YARA signature to detect a function but when you wish to break after it has been executed. For this, the br options exist, where br0 will set a breakpoint on the return address of the function at the supplied address. The format for the address is the same as the one for breakpoints mentionned above. Since the return address (for the breakpoint) is fetched from the top of the stack, the addresses supplied must either be the very first instruction of the function or certainly must come before any instruction that modifies the stack pointer such as push or pop.\n\nFake-rdtsc\n\nThis advanced feature is there for interacting with the TSC register. To learn more on it and what it's used for see: https://en.wikipedia.org/wiki/Time_Stamp_Counter.",
+  "To 'emulate' (skip and fake) the rdtsc instruction, the option fake-rdtsc=1 may be set. This will only have an affect on rdtsc instructions that are traced over by the debugger. If the debugger is not tracing at the time the CPU executes the instruction, it cannot of course fake the return value.\n\nThe effect of this setting is to allow the first traced rdtsc instruction to execute normally, but thereafter to fake the return value with the original return value plus whatever value is specified in the option. For example:\n\n'rdtsc=0x1000'\n\nThis will result in each subsequent rdtsc instruction after the first being faked with a value that has incremented by 0x1000.\n\nPractical examples\n\nFor more and the most up-to-date versions of examples please see https://github.com/kevoreilly/CAPEv2/tree/master/analyzer/windows/data/yara",
+  "rule Guloader\n{\n    meta:\n        author = \"kevoreilly\"\n        description = \"Guloader bypass\"\n        cape_options = \"bp0=$trap0,bp0=$trap1+4,action0=skip,bp1=$trap2+11,bp1=$trap3+19,action1=skip,bp2=$antihook,action2=goto:ntdll::NtAllocateVirtualMemory,count=0,\"\n    strings:\n        $trap0 = {0F 85 [2] FF FF 81 BD ?? 00 00 00 [2] 00 00 0F 8F [2] FF FF 39 D2 83 FF 00}\n        $trap1 = {49 83 F9 00 75 [1-20] 83 FF 00 [2-6] 81 FF}\n        $trap2 = {39 CB 59 01 D7 49 85 C8 83 F9 00 75 B3}\n        $trap3 = {61 0F AE E8 0F 31 0F AE E8 C1 E2 20 09 C2 29 F2 83 FA 00 7E CE C3}\n        $antihook = {FF 34 08 [0-48] 8F 04 0B [0-80] 83 C1 04 83 F9 18 75 [0-128] FF E3}\n    condition:\n        2 of them\n}",
+  "rule GuloaderB\n{\n    meta:\n        author = \"kevoreilly\"\n        description = \"Guloader bypass 2021 Edition\"\n        cape_options = \"bp0=$trap0+12,action0=ret,bp1=$trap1,action1=ret2,bp2=$antihook,action2=goto:ntdll::NtAllocateVirtualMemory,count=0,\"\n    strings:\n        $trap0 = {81 C6 00 10 00 00 81 FE 00 F0 FF 7F 0F 84 [2] 00 00}\n        $trap1 = {31 FF [0-24] (B9|C7 85 F8 00 00 00) 60 5F A9 00}\n        $antihook = {FF 34 08 [0-48] 8F 04 0B [0-80] 83 C1 04 83 F9 18 75 [0-128] FF E3}\n    condition:\n        2 of them\n}\n\nrule Pafish\n{\n    meta:\n        author = \"kevoreilly\"\n        description = \"Pafish bypass\"\n        cape_options = \"bp0=$rdtsc_vmexit-2,action0=SetZeroFlag,count=1\"\n    strings:\n        $rdtsc_vmexit = {8B 45 E8 80 F4 00 89 C3 8B 45 EC 80 F4 00 89 C6 89 F0 09 D8 85 C0 75 07}\n    condition:\n        uint16(0) == 0x5A4D and $rdtsc_vmexit\n}",
+  "rule Ursnif3\n{\n    meta:\n        author = \"kevoreilly\"\n        description = \"Ursnif Config Extraction\"\n        cape_options = \"br0=$crypto32-73,instr0=cmp,dumpsize=eax,action0=dumpebx,dumptype0=0x24,count=1\"\n    strings:\n        $golden_ratio = {8B 70 EC 33 70 F8 33 70 08 33 30 83 C0 04 33 F1 81 F6 B9 79 37 9E C1 C6 0B 89 70 08 41 81 F9 84 00 00 00}\n        $crypto32_1 = {8B C3 83 EB 01 85 C0 75 0D 0F B6 16 83 C6 01 89 74 24 14 8D 58 07 8B C2 C1 E8 07 83 E0 01 03 D2 85 C0 0F 84 AB 01 00 00 8B C3 83 EB 01 85 C0 89 5C 24 20 75 13 0F B6 16 83 C6 01 BB 07 00 00 00}\n        $crypto32_2 = {8B 45 EC 0F B6 38 FF 45 EC 33 C9 41 8B C7 23 C1 40 40 D1 EF 75 1B 89 4D 08 EB 45}\n    condition:\n        ($golden_ratio) and any of ($crypto32*)\n}",
+  "As shown in the example above, the debugger options are passed in the cape_options section of yar files in the analyzer of CAPE but could be passed to the submission itself like other parameters. It is important to note that even through it appear that br0 and br1 would have multiple values in the Guloader rule above, it is not the case and it's not possible to assign multiples values to them. This is because the yara is designed with an assumption in mind: the patterns $trap0 and $trap1 should never appear concurrently in the same sample. This particular sig is designed to deal with two variants of the same malware where bp0 and bp1 will only ever be set to either one of those values.\n\nImporting instruction traces into disassembler\n\nIt is possible to import CAPE's debugger output into a dissassembler. One example procedure is as follow:\n\nHighlight CFG in disassembler:",
+  "Highlight CFG in disassembler:\n\n1 Install lighthouse plugin from\n    pip3 install git+https://github.com/kevoreilly/lighthouse\n2 Load payload into IDA\n3 Check image base matches that from debugger log (if not rebase)\n4 Go to File -> Load File -> Code coverage file and load debugger logfile (ignore any warnings - any address outside image base causes these)\n\nimage",
+  "Clean all Tasks and Samples\n\nTo clean your setup, run -h to see available options:\n\n$ poetry run python utils/cleaners.py -h\n\nTo sum up, this command does the following:\n\nDelete analysis results.\n\nDelete submitted binaries.\n\nDelete all associated information of the tasks and samples in the configured database.\n\nDelete all data in the configured MongoDB (if configured and enabled in reporting.conf).\n\nDelete all data in ElasticSearch (if configured and enabled in reporting.conf).\n\nWarning\n\nIf you use this command you will delete permanently all data stored by CAPE in all storages: file system, SQL database, and MongoDB/ElasticSearch database. Use it only if you are sure you would clean up all the data.\n\nAfter executing the poetry run python cleaners.py --clean utility, you must restart CAPE service as it destroys the database.:\n\n$ sudo systemctl restart cape\n\nAfter any other option, you don't need to restart the service.",
+  "Starting CAPE\n\nMake sure to run it inside CAPE's root directory:\n\n$ cd /opt/CAPEv2\n\nTo start CAPE, use the command:\n\n$ python3 cuckoo.py\n\nYou will get an output similar to this:\n\nCuckoo Sandbox 2.1-CAPE\nwww.cuckoosandbox.org\nCopyright (c) 2010-2015\n\nCAPE: Config and Payload Extraction\ngithub.com/kevoreilly/CAPEv2\n\n2020-07-06 10:24:38,490 [lib.cuckoo.core.scheduler] INFO: Using \"kvm\" machine manager with max_analysis_count=0, max_machines_count=10, and max_vmstartup_count=10\n2020-07-06 10:24:38,552 [lib.cuckoo.core.scheduler] INFO: Loaded 100 machine/s\n2020-07-06 10:24:38,571 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks.\n\nNow CAPE is ready to run and it's waiting for submissions.\n\ncuckoo.py accepts some command line options as shown by the help:\n\nusage: cuckoo.py [-h] [-q] [-d] [-v] [-a] [-t] [-m MAX_ANALYSIS_COUNT]",
+  "usage: cuckoo.py [-h] [-q] [-d] [-v] [-a] [-t] [-m MAX_ANALYSIS_COUNT]\n\noptional arguments:\n-h, --help            show this help message and exit\n-q, --quiet           Display only error messages\n-d, --debug           Display debug messages\n-v, --version         show program's version number and exit\n-a, --artwork         Show artwork\n-t, --test            Test startup\n-m MAX_ANALYSIS_COUNT, --max-analysis-count MAX_ANALYSIS_COUNT\n                        Maximum number of analyses\n\nMost importantly --debug and --quiet respectively increase and decrease the logging verbosity.\n\nPoetry users\n\nIf you used poetry to install dependencies, you should launch cape with the following command:\n\n$ sudo -u cape poetry run python3 cuckoo.py\n\nIf you get any dependency-related error, make sure you execute the extra/libvirt_installer.sh script:\n\n$ sudo -u cape poetry run extra/libvirt_installer.sh\n\nTroubleshooting\n\nPermissionError: [Errno 13] Permission denied: '/opt/CAPEv2/log/cuckoo.log'",
+  "Troubleshooting\n\nPermissionError: [Errno 13] Permission denied: '/opt/CAPEv2/log/cuckoo.log'\n\nYou are not executing the CAPE (cuckoo.py) file with the appropriate user.\n\nRemember that the user meant to execute CAPE is the cape user. In fact, after installing CAPE with cape2.sh, the directory should look similar to the following structure:\n\nimage\n\nIn order to execute CAPE as the cape user you can either launch a shell or execute the following command (notice the command is using Poetry):\n\n$ sudo -u cape poetry run python3 cuckoo.py\n\nCuckooCriticalError: Cannot bind ResultServer on port 2042 because it was in use, bailing\n\nCAPE is already running in the background as cape.service\n\nIf you want to see the logs in realtime printed to stdout, stop the service by running the following command:\n\n$ sudo systemctl stop cape.service\n\nand run cuckoo.py again\n\nCuckooCriticalError: Unable to bind Result server on <IP> [Errno 99]\n\nCheck the cuckoo.conf configuration file again.",
+  "Check the cuckoo.conf configuration file again.\n\nYou will have to provide the host IP for the [resultserver], not the guest IP.\n\nStarting processing data generated by virtual machine\n\nSee -h for all latest options, for better customization:\n\nusage: process.py [-h] [-c] [-d] [-r] [-s] [-p PARALLEL] [-fp] [-mc MAXTASKSPERCHILD] [-md] [-pt PROCESSING_TIMEOUT] id\n\npositional arguments:\nid                    ID of the analysis to process (auto for continuous processing of unprocessed tasks).",
+  "optional arguments:\n-h, --help            show this help message and exit\n-c, --caperesubmit    Allow CAPE resubmit processing.\n-d, --debug           Display debug messages\n-r, --report          Re-generate report\n-s, --signatures      Re-execute signatures on the report\n-p PARALLEL, --parallel PARALLEL\n                        Number of parallel threads to use (auto mode only).\n-fp, --failed-processing\n                        reprocess failed processing\n-mc MAXTASKSPERCHILD, --maxtasksperchild MAXTASKSPERCHILD\n                        Max children tasks per worker\n-md, --memory-debugging\n                        Enable logging garbage collection related info\n-pt PROCESSING_TIMEOUT, --processing-timeout PROCESSING_TIMEOUT\n                        Max amount of time spent in processing before we fail a task\n\nCommand example:\n\n$ python3 utils/process.py -p7 auto",
+  "REST API\n\nTo see the current hosted REST API documentation head to /apiv2/. You will find all endpoints and details on how to do requests.\n\n`API example`: https://capesandbox.com/apiv2/\n\nTo enable the REST API, we use `django-rest-framework`:\n\n$ poetry run pip install djangorestframework\n\nTo generate a user authorization token:\n\n# Ensure you are in CAPE's web directory\ncd /opt/CAPEv2/web\n\n# To create super user aka admin\nsudo -u cape poetry run python3 manage.py createsuperuser\n\n# To create normal user, use web interface /admin/ (in case if you not changed path)\n\n# By hand, only required if auth enabled and user MUST exist\nsudo -u cape poetry run python3 manage.py drf_create_token <your_user>",
+  "# Auto generation local or any public instance\ncurl -d \"username=<USER>&password=<PASSWD>\" http://127.0.0.1:8000/apiv2/api-token-auth/\ncurl -d \"username=<USER>&password=<PASSWD>\" https://capesandbox.com/apiv2/api-token-auth/\ncurl -d \"username=<USER>&password=<PASSWD>\" http(s)://<ANY_CAPE>/apiv2/api-token-auth/\n\n# Usage\nimport requests\n\nurl = 'http://127.0.0.1:8000/apiv2/<ENDPOINT>'\nheaders = {'Authorization': 'Token <YOUR_TOKEN>'}\nr = requests.get(url, headers=headers)\n\nCAPE throttling, aka requests per minute/hour/day.\n\nRequires token authentication enabled in api.conf\n\nDefault 5/m\n\nYou can change the default throttle limits in api.conf\n\nTo change the user limit go to django admin /admin/ if you didn't change the path, and set the limit per user in the user profile at the bottom.\n\nWarning\n\nAll documentation below this warning is deprecated.\n\napi.py DEPRECATED\n\nResources",
+  "Warning\n\nAll documentation below this warning is deprecated.\n\napi.py DEPRECATED\n\nResources\n\nFollowing is a list of currently available resources and a brief description of each one. For details click on the resource name.",
+  "Resource Description POST tasks_create_file Adds a file to the list of pending tasks to be processed and\nanalyzed. POST tasks_create_url Adds an URL to the list of pending tasks to be processed and\nanalyzed. GET tasks_list Returns the list of tasks stored in the internal Cuckoo database.\nYou can optionally specify a limit of entries to return. GET tasks_view Returns the details on the task assigned to the specified ID. GET tasks_delete Removes the given task from the database and deletes the\nresults. GET tasks_report Returns the report generated out of the analysis of the task\nassociated with the specified ID. You can optionally specify which\nreport format to return, if none is specified the JSON report will be\nreturned. GET tasks_shots Retrieves one or all screenshots associated with a given analysis\ntask ID. GET files_view Search the analyzed binaries by MD5 hash, SHA256 hash or internal ID",
+  "task ID. GET files_view Search the analyzed binaries by MD5 hash, SHA256 hash or internal ID\n(referenced by the tasks details). GET files_get Returns the content of the binary with the specified SHA256\nhash. GET pcap_get Returns the content of the PCAP associated with the given task. GET machines_list Returns the list of analysis machines available to Cuckoo. GET machines_view Returns details on the analysis machine associated with the\nspecified name. GET cuckoo_status Returns the basic cuckoo status, including version and tasks\noverview",
+  "/tasks/create/file\n\nPOST /tasks/create/file\n\nAdds a file to the list of pending tasks. Returns the ID of the newly created task.\n\nExample request .. code-block:: bash\n\ncurl -F file=@/path/to/file http://localhost:8090/tasks/create/file\n\nExample request using Python .. code-block:: python\n\nimport requests import json\n\nREST_URL = \"http://localhost:8090/tasks/create/file\" SAMPLE_FILE = \"/path/to/malware.exe\"\n\n# Add your code to error checking for request.status_code.\n\njson_decoder = json.JSONDecoder() task_id = json_decoder.decode(request.text)[\"task_id\"]\n\n# Add your code for error checking if task_id is None.\n\nExample response:\n\n{\n    \"task_id\" : 1\n}\n\n/tasks/create/url\n\nPOST /tasks/create/url\n\nAdds a file to the list of pending tasks. Returns the ID of the newly created task.\n\nExample request:\n\ncurl -F url=\"http://www.malicious.site\" http://localhost:8090/tasks/create/url\n\nExample request using Python .. code-block:: python\n\nimport requests import json",
+  "Example request using Python .. code-block:: python\n\nimport requests import json\n\nREST_URL = \"http://localhost:8090/tasks/create/url\" SAMPLE_URL = \"http://example.org/malwr.exe\"\n\nmultipart_url = {\"url\": (\"\", SAMPLE_URL)} request = requests.post(REST_URL, files=multipart_url)\n\n# Add your code to error checking for request.status_code.\n\njson_decoder = json.JSONDecoder() task_id = json_decoder.decode(request.text)[\"task_id\"]\n\n# Add your code to error checking if task_id is None.\n\nExample response:\n\n{\n    \"task_id\" : 1\n}\n\n/tasks/list\n\nGET /tasks/list/ (int: limit) / (int: offset)\n\nReturns list of tasks.\n\nExample request:\n\ncurl http://localhost:8090/tasks/list\n\nExample response:",
+  "{\n    \"tasks\": [\n        {\n            \"category\": \"url\",\n            \"machine\": null,\n            \"errors\": [],\n            \"target\": \"http://www.malicious.site\",\n            \"package\": null,\n            \"sample_id\": null,\n            \"guest\": {},\n            \"custom\": null,\n            \"priority\": 1,\n            \"platform\": null,\n            \"options\": null,\n            \"status\": \"pending\",\n            \"enforce_timeout\": false,\n            \"timeout\": 0,\n            \"memory\": false,\n            \"tags\": []\n            \"id\": 1,\n            \"added_on\": \"2012-12-19 14:18:25\",\n            \"completed_on\": null\n        },\n        {\n            \"category\": \"file\",\n            \"machine\": null,\n            \"errors\": [],\n            \"target\": \"/tmp/malware.exe\",\n            \"package\": null,\n            \"sample_id\": 1,\n            \"guest\": {},\n            \"custom\": null,\n            \"priority\": 1,\n            \"platform\": null,\n            \"options\": null,\n            \"status\": \"pending\",",
+  "\"platform\": null,\n            \"options\": null,\n            \"status\": \"pending\",\n            \"enforce_timeout\": false,\n            \"timeout\": 0,\n            \"memory\": false,\n            \"tags\": [\n                        \"32bit\",\n                        \"acrobat_6\",\n                    ],\n            \"id\": 2,\n            \"added_on\": \"2012-12-19 14:18:25\",\n            \"completed_on\": null\n        }\n    ]\n}",
+  "/tasks/view\n\nGET /tasks/view/ (int: id)\n\nReturns details on the task associated with the specified ID.\n\nExample request:\n\ncurl http://localhost:8090/tasks/view/1\n\nExample response:\n\n{\n    \"task\": {\n        \"category\": \"url\",\n        \"machine\": null,\n        \"errors\": [],\n        \"target\": \"http://www.malicious.site\",\n        \"package\": null,\n        \"sample_id\": null,\n        \"guest\": {},\n        \"custom\": null,\n        \"priority\": 1,\n        \"platform\": null,\n        \"options\": null,\n        \"status\": \"pending\",\n        \"enforce_timeout\": false,\n        \"timeout\": 0,\n        \"memory\": false,\n        \"tags\": [\n                    \"32bit\",\n                    \"acrobat_6\",\n                ],\n        \"id\": 1,\n        \"added_on\": \"2012-12-19 14:18:25\",\n        \"completed_on\": null\n    }\n}\n\n/tasks/delete\n\nGET /tasks/delete/ (int: id)\n\nRemoves the given task from the database and deletes the results.\n\nExample request:\n\ncurl http://localhost:8090/tasks/delete/1\n\n/tasks/report",
+  "Example request:\n\ncurl http://localhost:8090/tasks/delete/1\n\n/tasks/report\n\nGET /tasks/report/ (int: id) / (str: format)\n\nReturns the report associated with the specified task ID.\n\nExample request:\n\ncurl http://localhost:8090/tasks/report/1\n\n/tasks/screenshots\n\nGET /tasks/screenshots/ (int: id) / (str: number)\n\nReturns one or all screenshots associated with the specified task ID.\n\nExample request:\n\nwget http://localhost:8090/tasks/screenshots/1\n\n/files/view\n\nGET /files/view/md5/ (str: md5)\n\nGET /files/view/sha256/ (str: sha256)\n\nGET /files/view/id/ (int: id)\n\nReturns details on the file matching either the specified MD5 hash, SHA256 hash or ID.\n\nExample request:\n\ncurl http://localhost:8090/files/view/id/1\n\nExample response:",
+  "Example request:\n\ncurl http://localhost:8090/files/view/id/1\n\nExample response:\n\n{\n    \"sample\": {\n        \"sha1\": \"da39a3ee5e6b4b0d3255bfef95601890afd80709\",\n        \"file_type\": \"empty\",\n        \"file_size\": 0,\n        \"crc32\": \"00000000\",\n        \"ssdeep\": \"3::\",\n        \"sha256\": \"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855\",\n        \"sha512\": \"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e\",\n        \"id\": 1,\n        \"md5\": \"d41d8cd98f00b204e9800998ecf8427e\"\n    }\n}\n\n/files/get\n\nGET /files/get/ (str: sha256)\n\nReturns the binary content of the file matching the specified SHA256 hash.\n\nExample request:\n\ncurl http://localhost:8090/files/get/e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 > sample.exe\n\n/pcap/get\n\nGET /pcap/get/ (int: task)\n\nReturns the content of the PCAP associated with the given task.\n\nExample request:",
+  "Returns the content of the PCAP associated with the given task.\n\nExample request:\n\ncurl http://localhost:8090/pcap/get/1 > dump.pcap\n\n/machines/list\n\nGET /machines/list\n\nReturns a list with details on the analysis machines available to Cuckoo.\n\nExample request:\n\ncurl http://localhost:8090/machines/list\n\nExample response:\n\n{\n    \"machines\": [\n        {\n            \"status\": null,\n            \"locked\": false,\n            \"name\": \"cuckoo1\",\n            \"resultserver_ip\": \"192.168.56.1\",\n            \"ip\": \"192.168.56.101\",\n            \"tags\": [\n                        \"32bit\",\n                        \"acrobat_6\",\n                    ],\n            \"label\": \"cuckoo1\",\n            \"locked_changed_on\": null,\n            \"platform\": \"windows\",\n            \"snapshot\": null,\n            \"interface\": null,\n            \"status_changed_on\": null,\n            \"id\": 1,\n            \"resultserver_port\": \"2042\"\n        }\n    ]\n}\n\n/machines/view\n\nGET /machines/view/ (str: name)",
+  "/machines/view\n\nGET /machines/view/ (str: name)\n\nReturns details on the analysis machine associated with the given name.\n\nExample request:\n\ncurl http://localhost:8090/machines/view/cuckoo1\n\nExample response:\n\n{\n    \"machine\": {\n        \"status\": null,\n        \"locked\": false,\n        \"name\": \"cuckoo1\",\n        \"resultserver_ip\": \"192.168.56.1\",\n        \"ip\": \"192.168.56.101\",\n        \"tags\": [\n                    \"32bit\",\n                    \"acrobat_6\",\n                ],\n        \"label\": \"cuckoo1\",\n        \"locked_changed_on\": null,\n        \"platform\": \"windows\",\n        \"snapshot\": null,\n        \"interface\": null,\n        \"status_changed_on\": null,\n        \"id\": 1,\n        \"resultserver_port\": \"2042\"\n    }\n}\n\n/cuckoo/status\n\nGET /cuckoo/status/\n\nReturns status of the cuckoo server.\n\nExample request:\n\ncurl http://localhost:8090/cuckoo/status\n\nExample response:",
+  "Example request:\n\ncurl http://localhost:8090/cuckoo/status\n\nExample response:\n\n{\n    \"tasks\": {\n        \"reported\": 165,\n        \"running\": 2,\n        \"total\": 167,\n        \"completed\": 0,\n        \"pending\": 0\n    },\n    \"version\": \"1.0\",\n    \"protocol_version\": 1,\n    \"hostname\": \"Patient0\",\n    \"machines\": {\n        \"available\": 4,\n        \"total\": 5\n    }\n    \"tools\":[\"vanilla\"]\n}",
+  "Performance\n\nThere are several ways to tune the CAPE performance\n\nProcessing\n\n\"Processing\" consists of three steps after the malware is executed in a VM. Those are\n\nprocessing of raw data\n\nsignature matching\n\nreporting\n\nProcessing can take up to 30 minutes if the original raw log is large. This is caused by many API calls in that log. Several steps will iterate through that API list which causes a slowdown. There are several ways to mitigate the impact:\n\nEvented signatures\n\nEvented signatures have a common loop through the API calls. Use them wherever possible and either switch the old-style signatures with their api-call loop or convert them to event based signatures\n\nReporting\n\nReports that contain the API log will also iterate through the list. De-activate reports you do not need. For automated environments switching off the html report will be a good choice.\n\nRam-boost",
+  "Ram-boost\n\nRam boost can be switched on in the configuration (in conf/processing.conf -> ram_boost in [behavior]). This will keep the whole API list in Ram. Do that only if you have plenty of Ram (>20 GB for 8 VMs).",
+  "CAPE internals\n\nCAPE base core components\n\ncuckoo.py or cape.service - Is in charge of schedule tasks, set proper routing, run them inside of the VM, etc\n\nutils/process.py or cape-processor.service - Is in charge of process the data generated inside of the VM.\n\nutils/rooter.py or cape-rooter.service - Is set proper iptables to route traffic from VM over exit node. As internet, proxy, vpn, etc.\n\nweb/manage.py or cape-web.service - Is web interface. It allows you to see reports if MongoDB or ElasticSearch is enabled, otherwise it only useful for restapi.\n\nCAPE advanced core components\n\nutils/dist.py or cape-dist.service - Allows you to have CAPE cluster with many different workers\n\nutils/fstab.py or cape-fstab.service - Utility for distributed CAPE with NFS mode. It automatically adds entries to /etc/fstab and mounts it. Useful for cloud setups as Google Cloud Platform (GCP) for auto scaling.\n\nHow CAPE processing works?",
+  "How CAPE processing works?\n\nAll data processing is divided into stages where lib/cuckoo/core/plugins.py does the magic.\n\nCheck out lib/cuckoo/common/abstracts.py -> class <stage name> for all auxiliary functions that can help you make your code cleaner.\n\nCheck custom/conf/<stage name>.conf for all features/modules that you can enable/disable.",
+  "Installation\n\nThis chapter explains how to install CAPE.\n\nNote\n\nThis documentation refers to Host as the underlying operating system on which you are running CAPE (generally being a GNU/Linux distribution) and to Guest as the Windows virtual machine used to run the isolated analysis.\n\nhost/index guest/index guest_physical/index upgrade",
+  "Upgrade from a previous release\n\nCAPE Sandbox grows fast. In every release, features are added, fixed and/or removed. There are two ways to upgrade your CAPE: start from scratch or migrate your \"old\" setup. The suggested way to upgrade CAPE is to start from a fresh setup because it's easier and faster than migrating your old setup.\n\nUpgrade starting from scratch\n\nTo start from scratch you have to perform a fresh setup as described in index. The following steps are suggested:\n\nBack up your installation.\n\nRead the documentation shipped with the new release.\n\nMake sure to have installed all required dependencies, otherwise install them.\n\nDo a CAPE fresh installation of the Host components.\n\nReconfigure CAPE as explained in this book (copying old configuration files is not safe because options can change between releases).",
+  "If you are using an external database instead of the default or you are using the MongoDb reporting module is suggested to start all databases from scratch, due to possible schema changes between CAPE releases.\n\nTest it!\n\nIf something goes wrong you probably failed to do some steps during the fresh installation or reconfiguration. Check again the procedure explained in this book.\n\nIt's not recommended to rewrite an old CAPE installation with the latest release files, as it might raise some problems because:\n\nYou are overwriting Python source files (.py) but Python bytecode files (.pyc) are still in place.\n\nThere are configuration file changes across the two versions, check our CHANGELOG file for added or removed configuration options.\n\nThe part of CAPE which runs inside guests (agent.py) may change.\n\nIf you are using an external database like the reporting module for MongoDb a change in the data schema may corrupt your database.\n\nMigrate your CAPE",
+  "Migrate your CAPE\n\nThe following steps are suggested as a requirement to migrate your data:\n\nBack up your installation.\n\nRead the documentation shipped with the new release.\n\nMake sure to have installed all required dependencies, otherwise install them.\n\nDownload and extract the latest CAPE.\n\nReconfigure CAPE as explained in this book (copying old configuration files is not safe because options can change between releases), and update the agent in your virtual machines.\n\nCopy from your backup \"storage\" and \"db\" folders. (Reports and analyses already present in \"storage\" folder will keep the old format.)\n\nNow setup Alembic (the framework used for migrations) and dateutil with:\n\npoetry run pip install alembic\npoetry run pip install python-dateutil\n\nEnter the alembic migration directory in \"utils/db_migration\" with:\n\ncd utils/db_migration",
+  "Enter the alembic migration directory in \"utils/db_migration\" with:\n\ncd utils/db_migration\n\nBefore starting the migration script you must set your database connection in \"cuckoo.conf\" if you are using a custom one. Alembic migration script will use the database connection parameters configured in cuckoo.conf.\n\nAgain, please remember to backup before launching the migration tool! A wrong configuration may corrupt your data, backup should save kittens!\n\nRun the database migrations with:\n\nalembic upgrade head\n\nPython library upgrades:\n\nPIP3:\n\n$ poetry run pip install -U <library>\n\nTroubleshooting:\n\nWhen trying to update your local CAPE installation with poetry with either of the following commands:\n\n$ sudo -u cape poetry install\n$ sudo -u cape poetry update\n\nyou may encounter the following error:",
+  "$ sudo -u cape poetry install\n$ sudo -u cape poetry update\n\nyou may encounter the following error:\n\nCalledProcessError\n   Command '['git', '--git-dir', '/tmp/pypoetry-git-web3.pyocemorcf/.git', '--work-tree', '/tmp/pypoetry-git-web3.pyocemorcf', 'checkout', 'master']' returned non-zero exit status 1.\n\nOr maybe when trying to update poetry itself with:\n\n$ sudo -u cape poetry self update\n\nyou may face the following error:\n\nRuntimeError\n   Poetry was not installed with the recommended installer. Cannot update automatically.\n\nThat is because you probably installed poetry with pip.\n\nIn order to solve it you must first upgrade your local poetry installation with:\n\n$ sudo pip3 install poetry --upgrade\n\nand then run the update command again:\n\n$ sudo -u cape poetry update",
+  "Preparing the Host\n\nEven though it's reported to run on other operating systems too, CAPE is originally supposed to run on a GNU/Linux native system. For this documentation, we chose the latest Ubuntu LTS as the reference system for the commands examples.\n\ninstallation configuration routing cloud",
+  "Configuration\n\nCAPE relies on six main configuration files:\n\ncuckoo_conf: for configuring general behavior and analysis options.\n\nauxiliary_conf: for enabling and configuring auxiliary modules.\n\nmemory_conf: Volatility configuration.\n\nprocessing_conf: for enabling and configuring processing modules.\n\nreporting_conf: for enabling or disabling report formats.\n\nrouting_conf: for defining the routing of internet connection for the VMs.\n\nTo get CAPE working you have to edit auxiliary_conf, cuckoo_conf, and machinery_conf at least. We suggest you check all configs before starting, to be familiar with the possibilities that you have and what you want to be done.\n\nNote\n\nWe recommend to you: create a custom/conf/ directory and put files in there whose names are the same as those in the top-level conf/ directory. These files only need to include settings that will override the defaults. In that way you won't have problems with any upcoming changes to default configs.",
+  "To allow for further flexibility, you can also create a custom/conf/<type>.conf.d/ (e.g. custom/conf/reporting.conf.d/) directory and place files in there. Any file in that directory whose name ends in .conf will be read (in lexicographic order). The last value read for a value will be the one that is used.\n\nWarning\n\nAny section inside the configs that is marked #community at the top refers to a plugin that was developed by our community, but that doesn't mean that we maintain it. Those plugins might be outdated or broken due to software/dependency changes. If you find anything like this broken, you are more than welcome to fix it and submit a pull request. The alternative is to switch off the offending plugin. Opening an issue for any of these is pointless as we don't maintain them and cannot support them.\n\ncuckoo.conf\n\nThe first file to edit is conf/cuckoo.conf, it contains the generic configuration options that you might want to verify before launching CAPE.",
+  "The file is largely commented and self-explaining, but some of the options you might want to pay more attention to are:\n\nmachinery in [cuckoo]: this defines which Machinery module you want CAPE to use to interact with your analysis machines. The value must be the name of the module without extension.\n\nip and port in [resultserver]: defines the local IP address and port that CAPE is going to use to bind the result server to. Make sure this matches the network configuration of your analysis machines, or they won't be able to return the collected results.\n\nconnection in [database]: defines how to connect to the internal database. You can use any DBMS supported by SQLAlchemy using a valid Database Urls syntax.\n\nWarning",
+  "Warning\n\nCheck your interface for resultserver IP! Some virtualization software (for example Virtualbox) doesn't bring up the virtual networking interfaces until a virtual machine is started. CAPE needs to have the interface where you bind the resultserver up before the start, so please check your network setup. If you are not sure about how to get the interface up, a good trick is to manually start and stop an analysis virtual machine, this will bring virtual networking up. If you are using NAT/PAT in your network, you can set up the resultserver IP to 0.0.0.0 to listen on all interfaces, then use the specific options resultserver_ip and resultserver_port in <machinery>.conf to specify the address and port as every machine sees them. Note that if you set resultserver IP to 0.0.0.0 in cuckoo.conf you have to set resultserver_ip for all your virtual machines.\n\nNote",
+  "Note\n\nDefault freespace value is 50GB It is worth mentioning that the default freespace value in cuckoo.conf is 50000 MB aka 50 GB.\n\nPlease check the latest version of cuckoo.conf here: cuckoo.conf.\n\nauxiliary.conf\n\nAuxiliary modules are scripts that run concurrently with malware analysis, this file defines their options. Please see the default version here: auxiliary.conf.\n\n<machinery>.conf\n\nMachinery modules are scripts that define how Cuckoo should interact with your virtualization software of choice.\n\nEvery module should have a dedicated configuration file that defines the details of the available machines. For example, if you created a kvm.py machinery module, you should specify kvm in conf/cuckoo.conf and have a conf/kvm.conf file.\n\nCAPE provides some modules by default and for the sake of this guide, we'll assume you're going to use KVM. Please see the latest version here: kvm.conf.",
+  "If you are using KVM (kvm.conf), for each VM you want to use for analysis there must be a dedicated section. First you have to create and configure the VM (following the instructions in the dedicated chapter, see preparing_the_guest). The name of the section must be the same as the label of the VM as printed by $ virsh list --all. If no VMs are shown, you can execute the following command sequence: $ virsh, $ connect qemu:///system, $ list --all; or you can check this link to learn how to change the connection in Virtual Manager.\n\nYou can also find examples of other hypervisors like:\n\nVirtualBox: virtualbox.conf.\n\nVMWare: vmware.conf.\n\nThe comments for the options are self-explanatory.\n\nYou can use this same configuration structure for any other machinery module, although existing ones might have some variations or additional configuration options.\n\nmemory.conf",
+  "memory.conf\n\nThe Volatility tool offers a large set of plugins for memory dump analysis. Some of them are quite slow. In volatility.conf lets you enable or disable the plugins of your choice. To use Volatility you have to follow two steps:\n\nEnable it in processing.conf\n\nEnable memory_dump in cuckoo.conf\n\nIn the memory.conf's basic section you can configure the Volatility profile and the deletion of memory dumps after processing:\n\n# Basic settings\n[basic]\n# Profile to avoid wasting time identifying it\nguest_profile = WinXPSP2x86\n# Delete memory dump after volatility processing.\ndelete_memdump = no\n\nAfter that every plugin has an own section for configuration:\n\n# Scans for hidden/injected code and dlls\n# http://code.google.com/p/volatility/wiki/CommandReference#malfind\n[malfind]\nenabled = on\nfilter = on",
+  "# Lists hooked api in user mode and kernel space\n# Expect it to be very slow when enabled\n# http://code.google.com/p/volatility/wiki/CommandReference#apihooks\n[apihooks]\nenabled = off\nfilter = on\n\nThe filter configuration helps you to remove known clean data from the resulting report. It can be configured separately for every plugin.\n\nThe filter itself is configured in the [mask] section. You can enter a list of pids in pid_generic to filter out processes:\n\n# Masks. Data that should not be logged\n# Just get this information from your plain VM Snapshot (without running malware)\n# This will filter out unwanted information in the logs\n[mask]\n# pid_generic: a list of process ids that already existed on the machine before the malware was started.\npid_generic = 4, 680, 752, 776, 828, 840, 1000, 1052, 1168, 1364, 1428, 1476, 1808, 452, 580, 652, 248, 1992, 1696, 1260, 1656, 1156\n\nPlease see the latest version here: memory.conf.\n\nprocessing.conf",
+  "Please see the latest version here: memory.conf.\n\nprocessing.conf\n\nThis file allows you to enable, disable and configure all processing modules. These modules are located under modules/processing/ and define how to digest the raw data collected during the analysis.\n\nYou will find a section for each processing module here: processing.conf.\n\nYou might want to configure the VirusTotal key if you have an account of your own.\n\nreporting.conf\n\nThe conf/reporting.conf file contains information on the automated reports generation. Please see the latest version here: reporting.conf.\n\nBy setting these options to on or off you enable or disable the generation of such reports.\n\nrouting.conf\n\nThe conf/routing.conf file contains information about how the guest VM is connected (or not) to the Internet via the Host, or whether it is isolated. This file is used in conjunction with the rooter.py utility.\n\nPlease see the latest version of routing.conf here: routing.conf.",
+  "Please see the latest version of routing.conf here: routing.conf.\n\nYou can read more about the routing.conf file and its options in the routing chapter and more about the rooter.py utility in the rooter chapter.\n\nUsing environment variables in config files\n\nAny of the above config files may reference environment variables in their values by using %(ENV:VARIABLE_NAME)s. For example, instead of putting a VirusTotal Intelligence API key in auxiliary_conf, you could use the following:\n\n[virustotaldl]\nenabled = yes\ndlintelkey = %(ENV:DLINTELKEY)s\n\nassuming the DLINTELKEY environment variable contains the API key.",
+  "Deploying CAPE in the Cloud\n\nThe following documentation will detail how to install CAPE using cloud resources.\n\nAzure\n\nTo use Azure as a machinery for CAPE, significant work must be done to deploy and secure the resource groups, network architecture, credential management, etc required.\n\nResource groups\n\nThe description below details how to create the resource groups that are required for isolating resources that should be controlled by the Azure machinery, which is running on a virtual machine and will have raw malware on it.\n\nNetworking\n\nThe description below details how a REST client could send files to CAPE, which would then detonate the submitted files in an isolated network.\n\nA route table resource has to be created in RG2 and applied to direct all traffic from guests through the host (VNET2_RT1). Apply this route table to VNET2_SUB2, and create a new rule that directs all traffic (0.0.0.0/0) to a virtual appliance, aka the IP of VNET2_SUB2_NIC.",
+  "These are the main networking resources required to deploy CAPE in Azure.\n\nCredential Management\n\nIn the az.conf, there are several crucial details that we will need for accessing/manipulating Azure resources. These details are client_id, secret, and tenant. To get these details, perform the following:\n\nSee ../guest/saving for instructions on how to create a shared gallery image definition version, the equivalent of a snapshot for virtual machine scale sets.",
+  "Per-Analysis Network Routing\n\nWith the more advanced per-analysis routing, it is naturally also possible to have one default route - a setup that used to be popular before, when the more luxurious routing was not yet available.\n\nIn our examples, we'll be focusing on KVM as it is our default machinery choice.\n\nWarning\n\nIn case if you see proxy IP:PORT in networking for example as tor 9040 port. It happens due that you have installed docker on your host and it breaks some networking filters.\n\nTo fix proxy IP:PORT problem, you need to run following script. Save it to file, give execution permission with sudo a+x iptables_fix.sh and run it with proper arguments:\n\n!/bin/bash\n# Fix when docker breaks your iptables\nif [ $# -eq 0 ] || [ $# -lt 2 ]; then\n    echo \"$0 <network range> <vir_iface> <real_iface>\"\n    echo \"    example: $0 192.168.1.0 virbr0 eno0\"\n    exit 1\nfi",
+  "echo \"[+] Setting iptables\"\niptables -t nat -A POSTROUTING -o \"$2\" -j MASQUERADE\niptables -A FORWARD -i \"$2\" -o \"$2\" -m state --state RELATED,ESTABLISHED -j ACCEPT\niptables -A FORWARD -i \"$2\" -o \"$2\" -j ACCEPT\niptables -I FORWARD -m physdev --physdev-is-bridged -j ACCEPT\niptables -I FORWARD -o \"$2\" -d  \"$1\"/24 -j ACCEPT\niptables -t nat -A POSTROUTING -s \"$1\"/24 -j MASQUERADE\niptables -A FORWARD -o \"$2\" -m state --state RELATED,ESTABLISHED -j ACCEPT\niptables -A FORWARD -i \"$2\" -o \"$3\" -j ACCEPT\niptables -A FORWARD -i \"$2\" -o lo -j ACCEPT",
+  "echo \"[+] Setting network options\"\n# https://forums.fedoraforum.org/showthread.php?312824-Bridge-broken-after-docker-install&s=ffc1c60cccc19e46c01b9a8e0fcd0c35&p=1804899#post1804899\n{\n    echo \"net.bridge.bridge-nf-call-ip6tables=0\";\n    echo \"net.bridge.bridge-nf-call-iptables=0\";\n    echo \"net.bridge.bridge-nf-call-arptables=0\";\n    echo \"net.ipv4.conf.all.forwarding=1\";\n    echo \"net.ipv4.ip_forward=1\";\n} >> /etc/sysctl.conf\nsysctl -p\necho \"iptables -A FORWARD -i $2 -o $2 -j ACCEPT\" >> /etc/network/if-pre-up.d/kvm_bridge_iptables\n\nvirsh nwfilter-list\n\nTo make it permanent you can use iptables-save.\n\nPer-Analysis Network Routing Options\n\nFollowing is the list of available routing options.",
+  "Per-Analysis Network Routing Options\n\nFollowing is the list of available routing options.\n\nRouting Option Description routing_none No routing whatsoever, the only option that does not require the Rooter to be run (and therefore also the default routing option). routing_drop Completely drops all non-CAPE traffic, including traffic within the\nVMs' subnet. routing_internet Full internet access as provided by the given network interface routing_inetsim Routes all traffic to an InetSim instance -which provides fake\nservices - running on the host machine. routing_tor Routes all traffic through Tor. routing_tun Route traffic though any \"tun\" interface routing_vpn Routes all traffic through one of perhaps multiple pre-defined VPN\nendpoints. routing_socks Routes all traffic through one of perhaps multiple pre-defined VPN\nendpoints.\n\nUsing Per-Analysis Network Routing",
+  "Using Per-Analysis Network Routing\n\nNow that you know the available network routing options, it is time to use them in practice. Assuming CAPE has been configured properly taking advantage of its features is as simple as starting the CAPE Rooter and choosing a network routing option for your analysis.\n\nDocumentation on starting the Rooter may be found in the cape_rooter_usage document.\n\nBoth global routing and per-analysis routing require ip forwarding to be enabled:\n\n$ echo 1 | sudo tee -a /proc/sys/net/ipv4/ip_forward\n$ sudo sysctl -w net.ipv4.ip_forward=1\n\nWarning\n\nPlease be aware by default these changes do not persist and will be reset after a system restart.\n\nConfiguring netplan\n\nIn modern releases of Ubuntu, all network configuration is handled by netplan, including routing tables.\n\nIf you are using Ubuntu Server, disable cloud-init, which is used by default.",
+  "If you are using Ubuntu Server, disable cloud-init, which is used by default.\n\nDo this by writing a file at /etc/cloud/cloud.cfg.d/99-disable-network-config.cfg, with the content network: {config: disabled}, then delete /etc/netplan/50-cloud-init.yaml.\n\nIf you are using a desktop version of Ubuntu instead, you will need to disable NetworkManager and enable networkd.\n\nsudo systemctl stop NetworkManager\nsudo systemctl disable NetworkManager\nsudo systemctl mask NetworkManager\n\nsudo systemctl unmask systemd-networkd\nsudo systemctl enable systemd-networkd\nsudo systemctl start systemd-networkd\n\nNext, create your own netplan configuration file manually at /etc/netplan/99-manual.yaml",
+  "Next, create your own netplan configuration file manually at /etc/netplan/99-manual.yaml\n\nThe example netplan configuration below has a 5G hotspot interface named enx00a0c6000000 for routing_internet (aka the dirty line) and a management interface named enp8s0 for hosting the CAPE web UI, SSH and other administrative services. In this configuration the dirty line is used as the default gateway for all internet traffic on the host. This helps prevent network leaks, firewall IDS/IPS issues, and keeps administrative traffic separate, where it could be placed in its own subnet for additional security.\n\nYou will need to replace the interface names and IP addresses to reflect your own system.\n\nEach interface configuration needs a routes section that describes the routes that can be accessed via that interface. In order for the configuration to work with CAPE's per-analysis routing, each routes section must have an arbitrary but unique table integer value.",
+  "network:\n    version: 2\n    renderer: networkd\n    ethernets:\n        lo:\n            addresses: [ \"127.0.0.1/8\", \"::1/128\", \"7.7.7.7/32\" ]\n        enx00a0c6000000:\n            dhcp4: no\n            addresses: [ \"192.168.1.2/24\" ]\n            nameservers:\n                addresses: [ \"192.168.1.1\" ]\n            routes:\n                - to: default\n                  via: 192.168.1.1\n                - to: 192.168.1.0/24\n                  via: 192.168.1.1\n                  table: 101\n            routing-policy:\n             - from: 192.168.1.0/24\n               table: 101\n        enp8s0:\n            dhcp4: no\n            addresses: [ \"10.23.6.66/24\" ]\n            routes:\n                - to: 10.23.6.0/24\n                  via: 10.23.6.1\n                  table: 102\n            routing-policy:\n                - from: 10.23.6.0/24\n                  table: 102",
+  "Run sudo netplan apply to apply the new netplan configuration. You can verify the new routing rules and tables have been created with:\n\nip r. To show 'main' table.\n\nip r show table X. To show 'X' table, where X is either the number or the name you specified in the netplan file.\n\nip r show table all. To show all routing rules form all tables.\n\nNote\n\nThere are some considerations you should take into account when configuring and setting netplan and others components necessary so as to provide the Hosts with Internet connection:\n\nIP forwarding MUST be enabled.\n\nThe routing table NUMBER specified in the netplan config file should be the SAME as the one specified in /etc/iproute2/rt_tables.\n\nThe routing table NAME specified in /etc/iproute2/rt_tables (next to its number) should be the SAME as the one specified specified in routing.conf (with the rt_table field).\n\nProtecting host ports",
+  "Protecting host ports\n\nBy default, most Linux network services listen on all network interface interfaces/addresses, leaving the services running on the host machine exposed to potential attacks from the analysis VMs.\n\nTo mitigate this issue, use the ufw firewall included with Ubuntu. It will not break CAPE\u2019s per-analysis network routing.\n\nAllow access to administrative services using the interface that is being used for management of the sandbox. Network interface details can be found by using the ip addr command.\n\nIn this example the management interface name is enp8s0, with an IP address of 10.23.6.66. Replace these values with the proper values for your server.\n\n# HTTP\nsudo ufw allow in on enp8s0 to 10.23.6.66 port 80 proto tcp\n\n# HTTPS\nsudo ufw allow in on enp8s0 to 10.23.6.66 port 443 proto tcp\n\n# SSH\nsudo ufw allow in on enp8s0 to 10.23.6.66 port 22 proto tcp",
+  "# SSH\nsudo ufw allow in on enp8s0 to 10.23.6.66 port 22 proto tcp\n\n# SMB (smbd is enabled by default on desktop versions of Ubuntu)\nsudo ufw allow in on enp8s0 to 10.23.6.66 port 22 proto tcp\n\n# RDP (if xrdp is used on the server)\nsudo ufw allow in on enp8s0 to 10.23.6.66 port 445 proto tcp\n\nAllow analysis VMs to access the CAPE result server, which used TCP port 2042 by default.\n\nIn this example the host interface name is virbr1 with an IP address of 192.168.42.1. Replace these values with the proper values for your server.\n\nsudo ufw allow in on virbr1 to 192.168.42.1 port 2042 proto tcp\n\nEnable the firewall after all of the rules have ben configured.\n\nsudo ufw enable\n\nNone Routing\n\nThe default routing mechanism in the sense that CAPE allows the analysis to route as defined by a third party. As in, it doesn't do anything. One may use the none routing\n\nDrop Routing",
+  "Drop Routing\n\nThe drop routing option is somewhat like a default routing_none setup (as in, in a machine where no global iptables rules have been created providing full internet access to VMs or so), except that it is much more aggressive in actively locking down the internet access provided to the VM.\n\nWith drop routing the only traffic possible is internal CAPE traffic and hence any DNS requests or outgoing TCP/IP connections are blocked.\n\nInternet Routing\n\nBy using the internet routing one may provide full internet access to VMs through one of the connected network interfaces. We also refer to this option as the dirty line due to its nature of allowing all potentially malicious samples to connect to the internet through the same uplink.\n\nNote\n\nIt is required to register the dirty line network interface with iproute2 as described in the routing_netplan section.\n\nInetSim Routing",
+  "InetSim Routing\n\nFor those that have not heard of InetSim, it's a project that provides fake services for malware to talk to. To use InetSim routing one will have to set up InetSim on the host machine (or in a separate VM) and configure CAPE so that it knows where to find the InetSim server.\n\nThe configuration for InetSim is self-explanatory and can be found as part of the $CWD/conf/routing.conf configuration file:\n\n[inetsim]\nenabled = yes\nserver = 192.168.122.1\n\nTo quickly get started with InetSim it is possible to download the latest version of the REMnux distribution which features - among many other tools - the latest version of InetSim. Naturally, this VM will require a static IP address which should then be configured in the routing.conf configuration file.\n\nWe suggest running it on a virtual machine to avoid any possible leaks\n\nTor Routing\n\nNote",
+  "We suggest running it on a virtual machine to avoid any possible leaks\n\nTor Routing\n\nNote\n\nAlthough we highly discourage the use of Tor for malware analysis - the maintainers of Tor exit nodes already have a hard enough time keeping up their servers - it is a well-supported feature.\n\nFirst of all, Tor will have to be installed. Please find instructions on installing the latest stable version of Tor here.\n\nWe'll then have to modify the Tor configuration file (not talking about CAPE's configuration for Tor yet!) To do so, we will have to provide Tor with the listening address and port for TCP/IP connections and UDP requests. For a default KVM setup, where the host machine has IP address 192.168.122.1, the following lines will have to be configured in the /etc/tor/torrc file:\n\nTransPort 192.168.122.1:9040\nDNSPort 192.168.122.1:5353",
+  "TransPort 192.168.122.1:9040\nDNSPort 192.168.122.1:5353\n\nDon't forget to restart Tor (/etc/init.d/tor restart). That leaves us with the Tor configuration for Cuckoo, which may be found in the $CWD/conf/routing.conf file. The configuration is pretty self-explanatory so we'll leave filling it out as an exercise to the reader (in fact, toggling the enabled field goes a long way):\n\n[tor]\nenabled = yes\ndnsport = 5353\nproxyport = 9040\n\nNote that the port numbers in the /etc/tor/torrc and $CWD/conf/routing.conf files must match for the two to interact correctly.\n\nTun Routing\n\nThis allows you to route via any tun interface. You can pass the tun interface name on demand per analysis. The interface name can be tunX or tun_foo. This assumes you create the tunnel inferface outside of CAPE.\n\nThen you set the route=tun_foo on the /apiv2/tasks/create/file/ API call.\n\nVPN Routing",
+  "Then you set the route=tun_foo on the /apiv2/tasks/create/file/ API call.\n\nVPN Routing\n\nIt is possible to route analyses through multiple VPNs. By defining a couple of VPNs, perhaps ending up in different countries, it may be possible to see if potentially malicious samples behave differently depending on the country of origin of their IP address.\n\nThe configuration for a VPN is much like the configuration of a VM. For each VPN you will need one section in the $CWD/conf/routing.conf configuration file detailing the relevant information for the VPN. In the configuration, the VPN will also have to be registered in the list of available VPNs (the same as you'd do for registering more VMs).\n\nConfiguration for a single VPN looks roughly as follows:\n\n[vpn]\n# Are VPNs enabled?\nenabled = yes\n\n# Comma-separated list of the available VPNs.\nvpns = vpn0",
+  "[vpn]\n# Are VPNs enabled?\nenabled = yes\n\n# Comma-separated list of the available VPNs.\nvpns = vpn0\n\n[vpn0]\n# Name of this VPN. The name is represented by the filepath to the\n# configuration file, e.g., CAPE would represent /etc/openvpn/cuckoo.conf\n# Note that you can't assign the names \"none\" and \"internet\" as those would\n# conflict with the routing section in cuckoo.conf.\nname = vpn0\n\n# The description of this VPN which will be displayed in the web interface.\n# Can be used to for example describe the country where this VPN ends up.\ndescription = Spain, Europe\n\n# The tun device hardcoded for this VPN. Each VPN *must* be configured to use\n# a hardcoded/persistent tun device by explicitly adding the line \"dev tunX\"\n# to its configuration (e.g., /etc/openvpn/vpn1.conf) where X in tunX is a\n# unique number between 0 and your lucky number of choice.\ninterface = tun0",
+  "# Routing table name/id for this VPN. If table name is used it *must* be\n# added to /etc/iproute2/rt_tables as \"<id> <name>\" line (e.g., \"201 tun0\").\n# ID and name must be unique across the system (refer /etc/iproute2/rt_tables\n# for existing names and IDs).\nrt_table = tun0\n\nNote\n\nIt is required to register each VPN network interface with netplan as described in the routing_netplan section.\n\nQuick and dirty example of iproute2 configuration for VPN:\n\nExample:\n    /etc/iproute2/rt_tables\n        5 host1\n        6 host2\n        7 host3\n\n    conf/routing.conf\n        [vpn5]\n        name = X.ovpn\n        description = X\n        interface = tunX\n        rt_table = host1\n\nBear in mind that you will need to adjust some values inside of VPN route script. Read it!\n\nHelper script vpt2cape.py, read code to understand it\n\nVPN persistence & auto-restart source:",
+  "Helper script vpt2cape.py, read code to understand it\n\nVPN persistence & auto-restart source:\n\n1. Run the command:\n    # sudo nano /etc/default/openvpn`\n    and uncomment, or remove, the \u201c#\u201d in front of AUTOSTART=\"all\"\n    then press \u2018Ctrl X\u2019 to save the changes and exit the text editor.\n\n2. Move the .ovpn file with the desired server location to the \u2018/etc/openvpn\u2019 folder:\n    # sudo cp /location/whereYouDownloadedConfigFilesTo/Germany.ovpn /etc/openvpn/\n\n3. In the \u2018/etc/openvpn\u2019 folder, create a text file called login.creds:\n    # sudo nano /etc/openvpn/login.creds\n    and enter your IVPN Account ID (starts with \u2018ivpn\u2019) on the first line and any non-blank text on the 2nd line, then press \u2018Ctrl X\u2019 to save the changes and exit the text editor.\n\n4. Change the permissions on the pass file to protect the credentials:\n    # sudo chmod 400 /etc/openvpn/login.creds\n\n5. Rename the .ovpn file to \u2018client.conf\u2019:\n    # sudo cp /etc/openvpn/Germany.ovpn /etc/openvpn/client.conf",
+  "6. Reload the daemons:\n# sudo systemctl daemon-reload\n\n7. Start the OpenVPN service:\n    # sudo systemctl start openvpn\n\n8. Test if it is working by checking the external IP:\n    # curl ifconfig.co\n\n9. If curl is not installed:\n    # sudo apt install curl\n\nWireguard VPN\n\nSetup Wireguard\n\nOriginal blog post on how to setup WireGuard with CAPE\n\nInstall wireguard:\n\nsudo apt install wireguard\n\nDownload Wireguard configurations from your VPN provider and copy them into /etc/wireguard/wgX.conf. E.g.:\n\n/etc/wireguard/wg1.conf\n/etc/wireguard/wg2.conf\n/etc/wireguard/wg3.conf\n\nEach configuration is for a different exit destination.\n\nAn example config for wg1.conf:\n\n# VPN-exit-CC\n[Interface]\nPrivateKey = <REMOVED>\nAddress = xxx.xxx.xxx.xxx/32\nTable = 420",
+  "# VPN-exit-CC\n[Interface]\nPrivateKey = <REMOVED>\nAddress = xxx.xxx.xxx.xxx/32\nTable = 420\n\n# Following 2 lines added in attempt to allow local traffic\nPreUp = iptables -A FORWARD -i %i -j ACCEPT; iptables -A FORWARD -o %i -j ACCEPT; iptables -t nat -A POSTROUTING -o %i -j MASQUERADE\nPreDown = iptables -D FORWARD -i %i -j ACCEPT; iptables -D FORWARD -o %i -j ACCEPT; iptables -t nat -D POSTROUTING -o %i -j MASQUERADE\n\n[Peer]\nPublicKey = <REMOVED>\nAllowedIPs = 0.0.0.0/0\nEndpoint = xxx.xxx.xxx.xxx:51820\n\nThe only changes I made to the original file from my VPN provider was adding Table = 420 and the PreUp and PreDown lines to configure iptables.\n\nThen start the VPN: wg-quick up wg1. If all goes well you can run wg and see that the tunnel is active. If you want to test it\u2019s working I suggest:\n\ncurl https://ifconfig.me/\ncurl --interface wg1 https://ifconfig.me/\n\nExample snippet from /opt/CAPEv2/conf/routing.conf configuration:",
+  "Example snippet from /opt/CAPEv2/conf/routing.conf configuration:\n\n[vpn0]\nname = vpn0\ndescription = vpn_CC_wg1\ninterface = wg1\nrt_table = wg1\n\nNote\n\nIt is required to register each VPN network interface with netplan as described in the routing_netplan section. Check quick and dirty note in original VPN section.\n\nSOCKS Routing\n\nYou also can use socks proxy servers to route your traffic. To manage your socks server you can use Socks5man software. Building them by yourself, using your favorite software, buying, etc The configuration is pretty simple and looks like VPN, but you don't need to configure anything else\n\nRequires to install dependency: poetry run pip install git+https://github.com/CAPESandbox/socks5man\n\nExample:\n\n[socks5]\n# By default we disable socks5 support as it requires running utils/rooter.py as\n# root next to cuckoo.py (which should run as regular user).\nenabled = no\n\n# Comma-separated list of the available proxies.\nproxies = socks_CC",
+  "# Comma-separated list of the available proxies.\nproxies = socks_CC\n\n[socks_CC]\nname = CC_socks\ndescription = CC_socks\nproxyport = 5000\ndnsport = 10000\n\nTroubleshooting\n\nConfiguring the Internet connection in the Hosts (VMs) can become a tedious task given the elements involved in the correct functioning. Here you can find several ways of debugging the connections from and to the Hosts besides cuckoo.py -d.\n\nManually testing Internet connection\n\nYou can manually test the Internet connection from inside the VMs without the need of performing any analysis. To do so, you have to use the . This utility allows you to enable or disable specific routes and debug them. It is a \"Standalone script to debug VM problems that allows to enable routing on VM\".\n\nFirst, stop the cape-rooter service with:\n\n$ sudo systemctl stop cape-rooter.service\n\nAssuming you already have any VM running, to test the internet connection using router_manager.py you have to execute the following commands:",
+  "$ sudo python3 router_manager.py -r internet -e --vm-name win1 --verbose\n$ sudo python3 router_manager.py -r internet -d --vm-name win1 --verbose\n\nThe -e flag is used to enable a route and -d is used to disable it. You can read more about all the options the utility has by running:\n\n$ sudo python3 router_manager.py -h\n\nNote\n\nThe --vm-name parameters expects any ID from the ones in <machinery>.conf, not the label you named each VM with. To see the available options you can execute $ sudo python3 router_manager.py --show-vm-names.\n\nWhenever you use the router_manager.py utility to either enable or disable any given route, there are changes made to iptables are you should be able to see them take place.\n\nFor instance, this is how it looks BEFORE enabling any route:\n\n$ ip rule\n0:  from all lookup local\n32766:  from all lookup main\n32767:  from all lookup default\n\nAnd this is how it looks AFTER executing the following commands:",
+  "And this is how it looks AFTER executing the following commands:\n\n$ sudo python3 router_manager.py -r internet -e --vm-name win1 --verbose\ninternet eno1 eno1 {'label': 'win10', 'platform': 'windows', 'ip': 'X.X.X.133', 'arch': 'x64'} None None\n$ sudo python3 router_manager.py -r internet -e --vm-name win2 --verbose\ninternet eno1 eno1 {'label': 'win10-clone', 'platform': 'windows', 'ip': 'X.X.X.134', 'arch': 'x64'} None None\n\n$ ip rule\n0:  from all lookup local\n32764:  from X.X.X.134 lookup eno1\n32765:  from X.X.X.133 lookup eno1\n32766:  from all lookup main\n32767:  from all lookup default\n\nThen again, if everything is configured as expected, when executing the utility with the -d option the IP rules should disappear, reverting them to their original state.\n\nIf your routing configuration is correct, you should now be able to successfully ping 8.8.8.8. If you disable the route you shouldn't be able to ping anything on the Internet.\n\nNote",
+  "Note\n\nSometimes ip rules may remain undeleted for several reasons. You can manually delete them with $ sudo ip rule delete from $IP, where $IP is the IP the rule refers to.\n\nDebugging iptables rules\n\nEvery single time the rooter brings up or down any route (assuming it works as expected) or you do so by using the router_manager.py utility, your iptables set of rules is modified in one way or another.\n\nTo inspect the changes being made and verify them, you can use the watch utility preinstalled in the vast majority of *nix systems. For example, to view rules created by CAPE-rooter or the utility you can run the following command:\n\n$ sudo watch -n 1 iptables -L -n -v\n\nYou can also leverage watch to inspect the connections being made from the Guest to the Host or viceversa:\n\n$ sudo watch -n 1 'netstat -peanut | grep $IP'\n\nwhere $IP is the IP of your Guest.",
+  "Installing CAPE\n\nProceed with download and installation. Read ../../introduction/what to learn where you can obtain a copy of the sandbox.\n\nAutomated installation, read the full page before you start\n\nWe have automated all work for you but bear in mind that 3rd party dependencies change frequently and can break the installation, so please check the installation log and try to provide the fix / correct issue to the developers.\n\nWarning\n\nWe advise against modifying or updating any package installed by the script explained below. By using package managers like apt there are high chances your KVM/libvirt/CAPE installation will break and you will most likely end up riding the lanes of dependency hell.\n\nTo install KVM\n\nWhile you can install and use any hypervisor you like, we recommend using KVM. The script to install everything related to KVM (including KVM itself) can be found here: kvm-qemu.sh.\n\nNote",
+  "Note\n\nWe recommend using the script to install everything related with KVM-Qemu since the script performs a stealthier configuration and achieves better performance than the installation from APT.\n\nBEFORE executing the script, you should replace the <WOOT> occurrences withing the script itself with real hardware patterns. You can use acpidump in Linux and acpiextract in Windows to obtain such patterns, as stated in the script itself.\n\nWarning\n\nIf you are installing or using CAPE in a laboratory environment you can replace <WOOT> with any random 4 chars you like. However, if you are planning to use CAPE in real production environments and you want to hinder the sandbox/VM detection, you should use REAL hardware 4 chars. To find out which chars correspond to each piece of HW, you should use ACPIDUMP/ACPIEXTRACT and Google.\n\nIn order to install KVM itself, execute the following command:\n\n$ sudo chmod a+x kvm-qemu.sh\n$ sudo ./kvm-qemu.sh all <username> | tee kvm-qemu.log",
+  "$ sudo chmod a+x kvm-qemu.sh\n$ sudo ./kvm-qemu.sh all <username> | tee kvm-qemu.log\n\nreplacing <username> with your actual username.\n\nRemember to reboot after the installation.\n\nIf you want to install Virtual Machine Manager (virt-manager), execute the following command:\n\n$ sudo ./kvm-qemu.sh virtmanager <username> | tee kvm-qemu-virt-manager.log\n\nreplacing <username> with your actual username.\n\nRemember to reboot after the installation.\n\nImportant\n\nIt is important to assert everything works as expected before moving forward. The vast majority of errors at this point can be solved by reinstalling the specific component with kvm-qemu.sh. For example, the error below was raised when trying to open virt-manager but libvirt installation was corrupted for some reason. Reinstalling libvirt with the script solved the issue.\n\nError\n\n.. image:: ../../_images/screenshots/libvirt_error_virtmanager.png\n\nTo install CAPE\n\nThe script to install CAPE can be found here: cape2.sh.\n\nNote",
+  "To install CAPE\n\nThe script to install CAPE can be found here: cape2.sh.\n\nNote\n\nCAPE is being maintained and updated in a rolling fashion. That is, there are no versions or releases. It is your responsibility to regularly pull the repo and stay up to date.\n\nPlease keep in mind that all our scripts use the -h flag to print the help and usage message. However, it is recommended to read the scripts themselves to understand what they do.\n\nPlease become familiar with available options using:\n\n$ sudo chmod a+x cape2.sh\n$ ./cape2.sh -h\n\nTo install CAPE with all the optimizations, use one of the following commands:\n\n$ sudo ./cape2.sh base cape | tee cape.log\n$ sudo ./cape2.sh all cape | tee cape.log\n\nRemember to reboot after the installation.\n\nThis should install all libraries and services for you, read the code if you need more details. Specifically, the installed services are:\n\ncape.service\n\ncape-processor.service\n\ncape-web.service\n\ncape-rooter.service\n\nTo restart any service use:",
+  "cape-processor.service\n\ncape-web.service\n\ncape-rooter.service\n\nTo restart any service use:\n\n$ systemctl restart <service_name>\n\nTo see service log use:\n\n$ journalctl -u <service_name>\n\nTo install dependencies\n\nTo install dependencies with poetry, execute the following command (from the main working directory of CAPE, usually /opt/CAPEv2/):\n\n$ poetry install\n\nOnce the installation is done, you can confirm a virtual environment has been created with:\n\n$ poetry env list\n\nThe output should be similar to:\n\n$ poetry env list\ncapev2-t2x27zRb-py3.10 (Activated)\n\nFrom now on, you will have to execute CAPE within the virtual env of Poetry. To do so you need just poetry run <command>. For example:\n\n$ sudo -u cape poetry run python3 cuckoo.py\n\nIf you need further assistance with Poetry, there are hundreds of cheat sheets on the Internet\n\nOptional dependencies\n\nsudo -u cape poetry run pip install -r extra/optional_dependencies.txt\n\nATTENTION! cape user",
+  "sudo -u cape poetry run pip install -r extra/optional_dependencies.txt\n\nATTENTION! cape user\n\nOnly the installation scripts and some utilities like rooter.py must be executed with sudo, the rest of configuration scripts and programs MUST be executed under the cape user, which is created in the system after executing cape2.sh.\n\nBy default, the cape user has no login. In order to substitute it and use the cmd on its behalf, you can execute the following command:\n\n$ sudo su - cape -c /bin/bash",
+  "Preparing the Guest (Physical Machine)\n\nAt this point, you should have configured the CAPE host component and you should have designed and defined the number and the names of the physical machines you are going to use for malware execution.\n\nYou don't need KVM or any other hypervisor to run physical machinery. You only need FOG.\n\nPlease see this writeup for more updated details 15.10.2020\n\nhttps://mariohenkel.medium.com/using-cape-sandbox-and-fog-to-analyze-malware-on-physical-machines-4dda328d4e2c\n\nNow it's time to create such machines and configure them properly.\n\ncreation requirements network ../guest/agent saving",
+  "Creation of the Physical Machine\n\nOnce you have properly installed <../host/installation> your imaging software, you can proceed with creating all the physical machines you need.\n\nUsing and configuring your imaging software is out of the scope of this guide, so please refer to the official documentation.\n\nNote\n\nYou can find some hints and considerations on how to design and create your virtualized environment in the ../../introduction/sandboxing chapter.\n\nNote\n\nFor analysis purposes, you are recommended to use Windows 10 21H2 with User Access Control disabled.\n\nWhen creating the physical machine, CAPE doesn't require any specific configuration. You can choose the options that best fit your needs.",
+  "Requirements\n\nTo make CAPE run properly in your physical Windows system, you will have to install some required software and libraries.\n\nInstall Python\n\nPython is a strict requirement for the CAPE guest component (analyzer) to run properly.\n\nYou can download the proper Windows installer from the official website. Also in this case Python > 3.6 is preferred.\n\nSome Python libraries are optional and provide some additional features to the CAPE guest component. They include:\n\nPython Image Library: it's used for taking screenshots of the Windows desktop during the analysis.\n\nThey are not strictly required by CAPE to work properly, but you are encouraged to install them if you want to have access to all available features. Make sure to download and install the proper packages according to your Python version.\n\nAdditional Software\n\nAt this point, you should have installed everything needed by CAPE to run properly.",
+  "At this point, you should have installed everything needed by CAPE to run properly.\n\nDepending on what kind of files you want to analyze and what kind of sandboxed Windows environment you want to run the malware samples in, you might want to install additional software such as browsers, PDF readers, office suites, etc. Remember to disable the \"auto update\" or \"check for updates\" feature of any additional software.\n\nThis is completely up to you and what your needs are. You can get some hints by reading the ../../introduction/sandboxing chapter.\n\nAdditional Host Requirements\n\nOn Debian/Ubuntu:\n\n$ sudo apt-get install samba-common-bin\n\nFor the physical machine manager to work, you must have a way for physical machines to be returned to a clean state. In development/testing Fog (http://www.fogproject.org/) was used as a platform to handle re-imaging the physical machines. However, any re-imaging platform can be used (Clonezilla, Deepfreeze, etc) to accomplish this.",
+  "Some extras by doomedraven: .. choco.bat: https://github.com/kevoreilly/CAPEv2/raw/master/installer/choco.bat .. disablewin7noise.bat: https://github.com/kevoreilly/CAPEv2/blob/master/installer/disable_win7noise.bat",
+  "Network Configuration\n\nNow it's time to set up the network for your physical machine.\n\nWindows Settings\n\nBefore configuring the underlying networking of the sandbox, you might want to tweak some settings inside Windows itself.\n\nOne of the most important things to do is disable Windows Firewall and the Automatic Updates. The reason behind this is that they can affect the behavior of the malware under normal circumstances and that they can pollute the network analysis performed by CAPE, by dropping connections or including irrelevant requests.\n\nYou can do so from Windows' Control Panel as shown in the picture:\n\nimage\n\nUsing a physical machine manager requires a few more configuration options than the virtual machine managers to run properly. In addition to the steps laid out in the regular Preparing the Guest section, some settings need to be changed for physical machines to work properly.\n\nEnable auto-login (Allows for the agent to start upon reboot)",
+  "Enable auto-login (Allows for the agent to start upon reboot)\n\nEnable Remote RPC (Allows for CAPE to reboot the sandbox using RPC)\n\nTurn off paging (Optional)\n\nDisable Screen Saver (Optional)\n\nIn Windows 7 the following commands can be entered into an Administrative command prompt to enable auto-logon and Remote RPC. :\n\nreg add \"hklm\\software\\Microsoft\\Windows NT\\CurrentVersion\\WinLogon\" /v DefaultUserName /d <USERNAME> /t REG_SZ /f\nreg add \"hklm\\software\\Microsoft\\Windows NT\\CurrentVersion\\WinLogon\" /v DefaultPassword /d <PASSWORD> /t REG_SZ /f\nreg add \"hklm\\software\\Microsoft\\Windows NT\\CurrentVersion\\WinLogon\" /v AutoAdminLogon /d 1 /t REG_SZ /f\nreg add \"hklm\\system\\CurrentControlSet\\Control\\TerminalServer\" /v AllowRemoteRPC /d 0x01 /t REG_DWORD /f\nreg add \"HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Policies\\System\" /v LocalAccountTokenFilterPolicy /d 0x01 /t REG_DWORD /f\n\nNetworking",
+  "Networking\n\nNow you need to decide how to make your physical machine able to access the Internet or your local network.\n\nTo make it work properly you'll have to configure your machine's network so that the Host and the Guest can communicate. Testing the network access by pinging a guest is a good practice, to make sure the virtual network was set up correctly. Use only static IP addresses for your guest, as today CAPE doesn't support DHCP, and using it will break your setup.\n\nThis stage is very much up to your requirements and the characteristics of your virtualization software.\n\nFor physical machines, make sure when setting the IP address of the guest to also set the Gateway and DNS server to be the IP address of the CAPE server on the physical network. For example, if your CAPE server has the IP address of 192.168.1.1, then you would set the Gateway and DNS server in Windows Settings to be 192.168.1.1 as well.\n\nimage",
+  "Saving the Guest\n\nNow you should be ready to save the physical machine to a clean state. For the physical machine manager to work, you must have a way for physical machines to be returned to a clean state.\n\nBefore doing this make sure you rebooted it softly and that it's currently running, with CAPE's agent running and with Windows fully booted.\n\nNow you can proceed with saving the machine. The way to do it depends on the imaging software you decided to use.\n\nIn development/testing Fog (http://www.fogproject.org/) was used as a platform to handle re-imaging the physical machines. However, any re-imaging platform can be used (Clonezilla, Deepfreeze, etc.) to accomplish this.\n\nIf you follow all the below steps properly, your virtual machine should be ready to be used by CAPE.\n\nFog\n\nAfter installing Fog, you will need to create an image and add an image and a host to the Fog server.",
+  "To add an image to the fog server, open the Image Management window (http://<your_fog_server>/fog/management/index.php?node=images) and click \"Create New Image.\" Provide the proper inputs for your OS configuration and click \"Add\"\n\nimage\n\nNext, you will need to add the host you plan to re-image to Fog. To add a host, open a web browser and navigate to the Host Management page of Fog (http://<your_fog_server>/fog/management/index.php?node=host). Click \"Create New Host.\" Provide the proper inputs for your host configuration. Be sure to select the image you created above from the \"Host Image\" option when finished click the \"Add\" button.\n\nimage",
+  "image\n\nAt this point, you should be ready to take an image from the guest machine. To take an image you will need to navigate to the Task Management page and list all hosts (http://<your_fog_server>/fog/management/index.php?node=tasks&sub=listhosts). From here you should be able to click the Upload icon (Green up arrow), which should instantly add a task to the queue to take an image. Now you should reboot your CAPE guest image and it should PXE boot into Fog and capture the base image from the CAPE guest.",
+  "After you have successfully taken an image of the guest machine, you can use that image as one to deploy to the CAPE physical sandbox as needed. It is recommended to use a scheduled task to accomplish this. In order to create a scheduled task to re-image sandboxes, navigate to the Host Management page on Fog (http://<your_fog_server>/fog/management/index.php?node=host&sub=list). Then click \"Download\" the machine you wish to schedule the re-image task for. From this menu, select \"Schedule Cron-style Deployment\" and put in the values you wish for the schedule to apply to (*/5 * * * *) in the case shown in the screenshot below, but you may need to tweak these times for your environment.\n\nimage",
+  "Installing the Agent\n\nThe CAPE agent is designed to be cross-platform, therefore you should be able to use it on Windows as well as on Linux and OS X. To make CAPE work properly, you'll have to install and start this agent on every guest.\n\nIn the agent/ directory you will find an agent.py file, just copy it to the Guest operating system (in whatever way you want, perhaps in a temporary shared folder, downloading it from a Host webserver, or mounting a CDROM containing the agent.py file) and run it. This will launch the HTTP server which will listen for connections.\n\nImportant\n\nIt is a MUST to launch agent.py/w with elevated privileges. One of the (arguably) easiest way of doing so is creating a Scheduled Task, as explained further below in this page.",
+  "On Windows, if you simply launch the script, a Python window will be spawned, with a title similar to C:\\Windows\\py.exe. If you want to hide this window you can rename the file from agent.py to agent.pyw which will prevent the window from spawning upon launching the script.\n\nWarning\n\nIt is encouraged to use the agent in its window-less version (.pyw extension) given that opening a cmd window will definitely interfere with human.py, causing several problems like blocking the agent.py. communication with the host or producing no behavioral analysis output, just to mention some.\n\nDon't forget to test the agent before saving the snapshot. You can do it both navigating to VM_IP:8000 with a browser from your Host or be executing: curl VM_IP:8000. You should see an output similar to the following:\n\nimage\n\nimage\n\nPrior To Windows 10",
+  "image\n\nimage\n\nPrior To Windows 10\n\nIf you want the script to be launched at Windows' boot, place the file in the admin startup folder. To access this folder, open the app launcher with Win+R and search for \"shell:common startup\" which will open the folder you want (usually C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\StartUp). Do not place the agent in the user startup folder (usually C:\\Users\\<Username>\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup) as it will launch the agent without admin privileges and therefore insufficient permissions resulting in the agent not being able to work as intended.\n\nWindows 10+\n\nNote\n\nUsing the scheduler as documented below is not strictly necessary. It is sufficient to take a snapshot with the agent running.\n\nTo start the script at boot, you will need to set the agent to be run as a scheduler task. Dropping it in C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\StartUp will result in it being ran with improper privilege.",
+  "Open Windows menu (Win key) and search for Task Scheduler.\n\nSelect Create Basic Task from the action list.\n\nimage\n\nGive the task a name (for example pizza.pyw, the name is irrelevant as long as you don't make any mention to CAPE or anything blatant for anti-VM detection algorithms) and click Next.\n\nSet the trigger as When I logon and click Next.\n\nIn the Action window, select Start a program and click Next.\n\nIn the Start a program window, select the path of the agent.py, and click Finish.\n\nAfter the task is created, click the Task Scheduler Library and find the one you just created. Right click on it and select Properties.\n\nimage\n\nIn the general tab tell it to Run with highest privileges.\n\nimage\n\nSelect OK.\n\nAfter that all is done, it will come up on the next restart/login.",
+  "Preparing the Guest\n\nAt this point, you should have configured the CAPE host component and you should have designed and defined the number and the names of the virtual machines you are going to use for malware execution.\n\nNow it's time to create such machines and configure them properly.\n\ncreation requirements agent additional_configuration network troubleshooting saving cloning linux",
+  "Additional Configuration\n\nIn this chapter we will enumerate several recommendations so as to make your Guest virtual machine as stealthy and operational as it gets. Additionally, we intend to address some of the most common problems that may arise.\n\nWindows Guest\n\nWindows Debloating\n\nThere exist some tools that automatically try to debloat your Windows instance. That is, uninstalling lots of pre-installed software and disabling intrusive features of Windows. The purpose of these tools is optimization, performance, security or all of these. In the context of CAPE, they're useful to reduce noise and the probability of malware not detonating. Examples of these tools are Debloat-Windows-10 or BlackBird. You can find a larger list here.\n\nNote\n\nIt is recommended to use any of these tools to disable as much noise as possible. Remember to create a snapshot before executing them.\n\nDisable Microsoft Store",
+  "Disable Microsoft Store\n\nSometimes the Microsoft Store opens up as soon as an analysis starts. In order to disable it, you can remove the environment variable %USERPROFILE%\\AppData\\Local\\Microsoft\\WindowsApps from the user PATH, as specified in this issue (#1237).\n\nReduce Overall Noise\n\nSometimes disabling all Windows services (like UAC, defender, update, aero, firewall, etc...) is necessary in order to make the analysis as fluent as possible. Make sure you check this script out and use it to get rid of all unnecessary noise. This is just an example. Your VM may require a different configuration in order to reduce or delete any Windows noise.\n\nWindows automatically enables the Virus Real-time Protection\n\nOne possible annoying behavior of Windows occurs when it automatically enables the real-time protection whenever an analysis is started therefore deleting the sample (if it identifies the sample as malware).",
+  "To definitely turn it off you can follow one or more options listed in this site.",
+  "Cloning the Virtual Machine\n\nIf you want to use more than one virtual machine based on a single \"golden image\", there's no need to repeat all the steps done so far: you can clone it. This way you'll have a copy of the original virtualized Windows with all requirements already installed.\n\nThere is a Python command-line utility available that can automate this process for you.\n\nThe new virtual machine will also contain all of the settings of the original one, which is not good. Now you need to proceed by repeating the steps explained in network, agent, and saving for this new machine.",
+  "One alternative to manually make the clones unique is to enable the disguise auxiliary module, windows_static_route and windows_static_route_gateway in conf/auxiliary.conf. The auxiliary option is applicable to dnsmasq user which can't set the default gateway there because of the usage of an isolated routing in kvm. One could run it once and snapshot to apply the modification or running the auxiliary module at every analysis.",
+  "Installing the Linux guest\n\nLinux guests doesn't have official CAPAE support! First, prepare the networking for your machinery platform on the host side.\n\nNext, get the list of virtual machines for which to configure the interface from conf/qemu.conf. For example, ubuntu_x32, ubuntu_x64, ubuntu_arm, ubuntu_mips, ubuntu_mipsel, et cetera. For each VM, preconfigure a network tap interface on the host, required to avoid having to start as root, e.g.:\n\n$ sudo ip tuntap add dev tap_ubuntu_x32 mode tap user cape\n$ sudo ip link set tap_ubuntu_x32 master br0\n$ sudo ip link set dev tap_ubuntu_x32 up\n$ sudo ip link set dev br0 up\n\n$ sudo ip tuntap add dev tap_ubuntu_x64 mode tap user cape\n$ sudo ip link set tap_ubuntu_x64 master br0\n$ sudo ip link set dev tap_ubuntu_x64 up\n$ sudo ip link set dev br0 up\n\nNote that if you run CAPE as a different user, replace ``cape`` after -u with your user. You also have a script in utils/linux_mktaps.sh\n\nPreparing x32/x64 Linux guests\n\nWarning",
+  "Preparing x32/x64 Linux guests\n\nWarning\n\nFor Linux guests on an Azure hypervisor, installing Python3 32-bit breaks the way that the Azure agent starts: https://docs.microsoft.com/en-us/azure/virtual-machines/extensions/agent-linux#installation. So the use of the monitor is limited to what can be run with the 64-bit version of Python3. You will have to comment out the architecture check in the CAPE agent.py for the CAPE agent to start. To reiterate, this warning is only relevant if you are using an Azure hypervisor.\n\nx32 guests\n\nInstall support file dependencies:\n\n$ sudo apt update\n$ sudo apt install python3-pip systemtap-runtime\n$ sudo pip3 install pyinotify\n$ sudo pip3 install Pillow       # optional\n$ sudo pip3 install pyscreenshot # optional\n$ sudo pip3 install pyautogui    # optional\n\nx64 guests\n\nInstall support file dependencies (we need Python3 32-bit):",
+  "x64 guests\n\nInstall support file dependencies (we need Python3 32-bit):\n\n$ sudo dpkg --add-architecture i386\n$ sudo apt update\n$ sudo apt install python3:i386 -y\n$ sudo apt install python3-distutils -y\n$ sudo apt install systemtap-runtime -y\n$ curl -sSL https://bootstrap.pypa.io/get-pip.py -o get-pip.py\n$ sudo python3 get-pip.py\n$ sudo python3 -m pip install pyinotify\n$ sudo python3 -m pip install Pillow       # optional\n$ sudo python3 -m pip install pyscreenshot # optional\n$ sudo python3 -m pip install pyautogui    # optional\n\nEnsure the agent automatically starts. The easiest way is to add it to crontab:\n\n$ sudo crontab -e\n@reboot python3 /path/to/agent.py\n\nDisable the firewall inside of the VM, if it exists:\n\n$ sudo ufw disable\n\nDisable NTP inside of the VM:\n\n$ sudo timedatectl set-ntp off\n\nDisable auto-update for noise reduction:",
+  "$ sudo timedatectl set-ntp off\n\nDisable auto-update for noise reduction:\n\n$ sudo tee /etc/apt/apt.conf.d/20auto-upgrades << EOF\nAPT::Periodic::Update-Package-Lists \"0\";\nAPT::Periodic::Download-Upgradeable-Packages \"0\";\nAPT::Periodic::AutocleanInterval \"0\";\nAPT::Periodic::Unattended-Upgrade \"0\";\nEOF\n\n$ sudo systemctl stop snapd.service && sudo systemctl mask snapd.service\n\nIf needed, kill the unattended-upgrade process using htop or ps + kill.\n\nOptional - remove preinstalled software and configurations:\n\n$ sudo apt-get purge update-notifier update-manager update-manager-core ubuntu-release-upgrader-core -y\n$ sudo apt-get purge whoopsie ntpdate cups-daemon avahi-autoipd avahi-daemon avahi-utils -y\n$ sudo apt-get purge account-plugin-salut libnss-mdns telepathy-salut -y",
+  "It is recommended to configure the Linux guest with a static IP addresses. Make sure the machine entry in the configuration has the correct IP address and has the platform variable set to linux. Create a snapshot once the VM has been configured. It is now ready for analysis!\n\nCommunity Feature - Tracee ---\n\nFor more information about Tracee in CAPEv2 and how to install it, visit its integration page: :ref:`tracee`.\n\nTo use [Tracee eBPF event tracing](https://github.com/kevoreilly/CAPEv2/pull/2235) in Linux, you will have to install Docker and the Tracee container in the Ubuntu guest:\n\n`shell docker pull docker.io/aquasec/tracee:0.20.0 docker image tag aquasec/tracee:0.20.0 aquasec/tracee:latest`\n\nAfterwards, enable Tracee using the appropriate options in auxiliary.conf and processing.conf and install the [CAPEv2 Community Repo](https://github.com/CAPESandbox/community). Here is a guide: https://capev2.readthedocs.io/en/latest/usage/utilities.html#community-download-utility.",
+  "Tracee should be able to automatically highlight events such as fileless execution and syscall hooking.",
+  "Creation of the Virtual Machine\n\nOnce you have properly installed <../host/installation> your virtualization software, you can create the virtual machines that you need.\n\nThe usage and configuration of your virtualization software is out of scope for this guide, so please refer to the virtualization software's official documentation.\n\nNote\n\nYou can find some hints and considerations on how to design and create your virtualized environment in the ../../introduction/sandboxing chapter.\n\nNote\n\nFor analysis purposes, it is recommended to use Windows 10 21H2 with User Access Control disabled.\n\nNote\n\nKVM Users - Be sure to choose a hard drive image format that supports snapshots, such as QCOW2. See saving for more information.\n\nWhen creating the virtual machine, CAPE doesn't require any specific configuration. Choose the options that best fit your needs.",
+  "Requirements\n\nTo make CAPE run properly in your virtualized Windows system, you will have to install some required software and libraries.\n\nInstall Python\n\nPython is a strict requirement for the CAPE guest component (analyzer) to run properly.\n\nWarning\n\nPlease note that only 32-bit (x86) versions of Python3 are supported at this time for Windows, due to the way the analyzer interacts with low-level Windows libraries. Using a 64-bit version of Python will crash the analyzer in Windows. For other platforms the version of Python can be 64-bit (x64).\n\nYou can download the proper Windows / Linux installer from the official website. Python versions > 3.10 and < 3.13 are preferred.\n\nImportant\n\nWhen installing Python, it is recommended to select the Add Python <version> to PATH option. And remove from that PATH %USERPROFILE%AppDataLocalMicrosoftWindowsApps\n\nimage",
+  "image\n\nWhen the installation is done, it is recommended to test whether Python is correctly set into your PATH environment variable. In order to do so, you can execute the following commands from a command prompt:\n\n> python --version\n\nYou should be prompted with Python's installed version. If not, make sure you add the binaries to your PATH. There are tutorials galore on the Internet.\n\nSome Python libraries are optional and provide some additional features to the CAPE guest component. They include:\n\nPython Image Library: used for taking screenshots of the Windows desktop during the analysis.\n\nThe recommended installation is the execution of the following commands:\n\n> python -m pip install --upgrade pip\n> python -m pip install Pillow\n\nThese Python libraries are not strictly required by CAPE, but you are encouraged to install them if you want to have access to all available features. Make sure to download and install the proper packages according to your Python version.",
+  "Additional Software\n\nAt this point, you should have installed everything needed by CAPE to run properly.\n\nDepending on what kind of files you want to analyze and what kind of sandbox environment you want to run the malware samples in, you may want to install additional software such as browsers, PDF readers, office suites, etc.\n\nNote\n\nRemember to disable the \"Auto Update\" or \"Check For Updates\" feature of any additional software that you install.\n\nFor Microsoft Office we recommend Office 2010 SP2. This is both for its susceptibility to exploits typically used in maldocs, and its proven compatibility with CAPE. The only recommended alternative is Office 2016 (32-bit).\n\nWe do not recommend any Office version more recent than 2016 due to lack of proven compatibility with both maldocs and CAPE.\n\nFor hints about what your needs may be, give the ../../introduction/sandboxing chapter a read.",
+  "Troubleshooting\n\nWhere to start diagnosing\n\nGiven the large number of technologies involved in CAPE installation, configuration and usage, chances are high one or more of them start failing, crashing or simply dying. When this happens, there are a few places you should always look first, since it could help you diagnosing the real problem and avoid wasting time looking at rabbit holes. These places are (no surprise here) the logs generated by each fundamental service involved in CAPE's execution. While all of them can be checked in their corresponding directories, journalctl can be leveraged to check all of them at once.\n\nNote\n\nPlease note the following errors are just random examples used to show how and where to start dealing with CAPE problems. You may never face these errors at all!",
+  "Regardless of the error you are facing there are two places where you should start looking: (1) CAPE's logs (naming inherited from cuckoo) and (2) virtqemu logs (assuming you have installed KVM/QEMU using the kvm_qemu.sh script <installation_kvm>.)\n\nFor example, lets consider the following situation:\n\nCAPE submission (either via web or <submit.py>) apparently works, but the VM is never spawned (and analysis never launched).\n\nWithout prior indication, the first place to check are CAPE logs, located in /opt/CAPEv2/log/ (installation directory). The logs corresponding to the analyses are rotated daily, and the current log is cuckoo.log. Checking the contents of /opt/CAPEv2/log/cuckoo.log one could easily spot the culprit:\n\nError\n\nError example in <cuckoo.log> file.\n\nimage",
+  "Error\n\nError example in <cuckoo.log> file.\n\nimage\n\nFurthermore, the error states something about libvirt. This is a clear indication that the corresponding logs must also be inspected. In this case, the logs of libvirt are stored under the virtqemud service. Whenever something seems wrong regarding the virtual machines, this is the place to look after. It can be inspected with $ sudo journalctl -u virtqemud -r:\n\nError\n\nError examples by inspecting vertqemud logs with journalctl.\n\nimage\n\nimage\n\nAdditionally, you should always try to see if you are able to manually replicate the error in order to discard technologies and find out which one is failing. Considering the scenario above, when trying to manually spawn the virtual machines:\n\nError\n\nError example in Virtual Manager - KVM.\n\nimage\n\nNo Internet connection in the guest",
+  "Error\n\nError example in Virtual Manager - KVM.\n\nimage\n\nNo Internet connection in the guest\n\nThere are reasons galore why your guest VM has no Internet connection when an analysis is fired up. Before digging into this problem, please make sure you followed the steps at Network Configuration to set up both the virtual machine and its connections. Furthermore, you should read the routing chapter in order to know and understand the different routing modes as well as the rooter chapter to understand what the Rooter is.\n\nSome considerations:\n\ndirtyline should be the interface that provides your host internet connection like eno1, not a virtual interface like virbr1. This must be configured in the routing.conf configuration file.\n\nCheck agent.py is running with elevated privileges within the guest VM.\n\nMake sure you specify the correct STATIC IP in kvm.conf.\n\nMake sure you specified the correct interface in auxiliary.conf.",
+  "Make sure you specified the correct interface in auxiliary.conf.\n\nAlso, bear in mind there are already created (and some of them solved) issues about this particular problem. For example:\n\nhttps://github.com/kevoreilly/CAPEv2/issues/1234\n\nhttps://github.com/kevoreilly/CAPEv2/issues/1245\n\nhttps://github.com/kevoreilly/CAPEv2/issues/371\n\nhttps://github.com/kevoreilly/CAPEv2/issues/367\n\nhttps://github.com/kevoreilly/CAPEv2/issues/136\n\nPCAP Generation\n\nIf you are facing problems related to either tcpdump or the PCAP generation, take a look at this issue (#1234).\n\nNote\n\nMake sure the pcap group exists in your system and that the user you use to launch CAPE (presumably the cape user) belongs to it as well as the tcpdump binary.\n\nMake sure the correct path is specified in auxiliary.conf for tcpdump. Check the path of your local installation of tcpdump with:\n\n$ whereis tcpdump",
+  "$ whereis tcpdump\n\nCheck permissions of tcpdump binary. cape user must be able to run it. Also check whether you specified the correct interface in auxiliary.conf.\n\nIf you are still facing problems and the PCAP is not generating, verify the tcpdump binary belongs to the pcap group and it has the neede capabilities:\n\n$ sudo chgrp pcap /usr/bin/tcpdump\n$ sudo setcap cap_net_raw,cap_net_admin=eip /usr/bin/tcpdump\n\nOther issues about this problem:\n\nhttps://github.com/kevoreilly/CAPEv2/issues/1193",
+  "Network Configuration\n\nNow it's time to set up the network for your virtual machine.\n\nWindows Settings\n\nNote\n\nAs was discussed in the previous chapter <additional_configuration>, any additional configuration like disabling the Windows Firewall and the Automatic Updates should be done before configuring the network as stated below. Given that VMs may be left without internet connection, it is convenient to download and make changes before this happens. The reason for turning off updates and firewall is that these features can affect the behavior of the malware under normal circumstances and they can pollute the network analysis performed by CAPE, by dropping connections or including irrelevant requests.\n\nWindows 10\n\nTo do so in Windows 10, open Control Panel and search for Windows Defender Firewall. Disable it completely:\n\nimage\n\nimage",
+  "image\n\nimage\n\nThe next step is disabling automatic updates. To do so, open Control Panel and search for Administrative Tools. Open it, then open Services. Look for the Windows Update entry and double-click on it. Set Startup type to disabled and click stop.\n\nimage\n\nWindows XP\n\nYou can do so from Windows' Control Panel as shown in the picture:\n\nimage\n\nVirtual Networking\n\nNow you need to decide whether you want your virtual machine to be able to access the Internet or your local network.\n\nTo make the virtual machine's networking work properly you'll have to configure your machine's network so that the Host and the Guest can communicate.\n\nTesting the network access by pinging a guest from the host is good practice, to make sure that the virtual network was set up correctly.\n\nOnly use static IP addresses for your guests, since CAPE doesn't support DHCP (at least, as of this writing).\n\nWarning",
+  "Warning\n\nThe range 192.168.122.0/24 is the default range for KVM's first interface (usually virbr01) and it can be used as an ANTI VM check. If you want to read more about ANTI VM checks and how to set up your VM, check this KVM ANTIVM post.\n\nThe recommended setup is using a Host-Only networking layout with proper forwarding and filtering configuration done with iptables on the Host.\n\nWe have automated this for you with:\n\n$ utils/rooter.py\n\nYou can read more about rooter.py in its dedicated chapter: rooter.\n\nIn the chapter Setting a static IP you will find the instructions for configuring a Windows guest OS to use a static IP. In the chapter Creating an isolated network you will find instructions on how to create an isolated network (usually referred to as hostonly) network and use it in your virtual machine. You can find further instructions on creating VMs with Virtual Machine Manage in this post.\n\nCreating an isolated network",
+  "Creating an isolated network\n\nThe recommended setup is using an isolated network for your VM. In order to do so, you can follow the instructions below if you are using KVM and virt-manager (Virtual Machine Manager).\n\nFirst, in the Virtual Machine Manager GUI click con Edit -> Connection Details.\n\nimage\n\nIn the opened window click on the + sign, at the bottom left corner of the image. We are now defining the details of the new network. Give it a name (hostonly, for example) and make sure you select Isolated mode. Then, click on the IPv$ configuration drop-down menu and define the range of your network. In the image below only the third octet is changed.\n\nimage\n\nOnce the new isolated network is created, if you already created a VM, you can select it from Virtual Machine Manager by clicking Show virtual hardware details of that specific VM. Then click on the network adapter and choose the recently created network. Then click Apply.\n\nimage",
+  "image\n\nThe next thing is checking the new interface was indeed created and the VM is actually using it. From your Host, execute the following command from a command prompt:\n\n> ip a\n\nimage\n\nThere should be an interface with the IP address you specified while creating it. in the image above the specific interface is virbr1.\n\nFrom the guest VM (Windows OS in this example) execute the following command from a command prompt:\n\n> ipconfig\n\nimage\n\nThe assigned IP should be in the range of the hostonly network.\n\nThe guest VM and host must have connectivity between them. In order to check it, you can use tools like ping or telnet.\n\nimage\n\nPlease bear in mind that this time the IP is assigned via DHCP, something CAPE does not support. Please set a static IP for your VM. Next chapter has instructions on that.\n\nSetting a static IP",
+  "Setting a static IP\n\nTo set up a static IP it is first recommended to inspect the assigned IP, which will be (ideally) in the range of your interface (presumably y virbr0). To see your actual IP settings execute the following command from a command prompt:\n\n> ipconfig /all\n\nimage\n\nNote\n\nThe IP addresses and ranges used throughout this chapter are just examples. Please make sure you use your own working configurations and addresses.\n\nOpen Control Panel and search for Network. Find and open the Network and Sharing Center. Click Change adapter settings.\n\nimage\n\nNow open the Ethernet adapter and click Properties.\n\nimage\n\nThen click Internet Protocol Version 4 (TCP/IPv4) and Properties. Set the IP address, Subnet mask, Default gateway and DNS Server according to the results of the ipconfig command.\n\nimage\n\nNote\n\nYou can set as static IP address the address previously given by DHCP or any other address you like within the range of your interface.",
+  "Wait a few seconds and you should have Internet access (in case you are using NAT. Bear in mind an isolated network will not provide Internet connection).\n\nIt is important to check connectivity between the Host and the Guest, like in the previous chapter.\n\nThis stage is very much up to your requirements and the characteristics of your virtualization software.\n\nWarning\n\nVirtual networking errors! Virtual networking is a vital component for CAPE. You must be sure that connectivity works between the host and the guests. Most of the issues reported by users are related to an incorrect networking setup. If you aren't sure about your networking, check your virtualization software documentation and test connectivity with ping and telnet.\n\nDisable Noisy Network Services\n\nWindows 7 introduced new network services that create a lot of noise and can hinder PCAP processing. Disable them by following the instructions below.\n\nTeredo\n\nOpen a command prompt as Administrator, and run:",
+  "Teredo\n\nOpen a command prompt as Administrator, and run:\n\n> netsh interface teredo set state disabled\n\nLink Local Multicast Name Resolution (LLMNR)\n\nOpen the Group Policy editor by typing gpedit.msc into the Start Menu search box, and press Enter. Then navigate to Computer Configuration> Administrative Templates> Network> DNS Client, and open Turn off Multicast Name Resolution.\n\nSet the policy to enabled.\n\ngpedit.msc missing\n\nWarning\n\nIf gpedit.msc is not present in your system (if you are using Windows 10 Home Edition, for example), you can enable it by executing the following commands from an Administrator command prompt:\n\n> FOR %F IN (\"%SystemRoot%\\servicing\\Packages\\Microsoft-Windows-GroupPolicy-ClientTools-Package~*.mum\") DO (DISM /Online /NoRestart /Add-Package:\"%F\")\n> FOR %F IN (\"%SystemRoot%\\servicing\\Packages\\Microsoft-Windows-GroupPolicy-ClientExtensions-Package~*.mum\") DO (DISM /Online /NoRestart /Add-Package:\"%F\")",
+  "If the commands were successful, you should now be able to execute Run (Win+R) -> gpedit.msc.\n\nNetwork Connectivity Status Indicator, Error Reporting, etc\n\nWindows has many diagnostic tools such as Network Connectivity Status Indicator and Error Reporting, that reach out to Microsoft servers over the Internet. Fortunately, these can all be disabled with one Group Policy change.\n\nOpen the Group Policy editor by typing gpedit.msc into the Start Menu search box, and press Enter. Then navigate to Computer Configuration> Administrative Templates> System> Internet Communication Management, and open Restrict Internet Communication.\n\nSet the policy to enabled.",
+  "Saving the Virtual Machine\n\nNow you should be ready to save the virtual machine to a snapshot state.\n\nBefore doing this, make sure that you have rebooted the guest softly and that it's currently running, with CAPE's agent running and with Windows fully booted.\n\nNow you can proceed with saving the machine, which depends on the virtualization software that you decided to use.\n\nThe virtualization software-specific instructions found below can assist with getting the virtual machine ready to be used by CAPE.\n\nKVM\n\nHere are some helpful links for creating a virtual machine with virt-manager:\n\nCreate a virtual machine with virt-manager aka GUI client\n\nAdvanced KVM preparation for malware analysis",
+  "Advanced KVM preparation for malware analysis\n\nIf you have decided to adopt KVM, you must use a disk format for your virtual machines that supports snapshots. By default, libvirt tools create RAW virtual disks, and since we need snapshots you'll have to use either QCOW2 or LVM. For the scope of this guide, we adopt QCOW2, since it is easier to set up than LVM.\n\nThe easiest way to create such a virtual disk is by using the tools provided by the libvirt suite. You can either use virsh if you prefer command-line interfaces or virt-manager for a nice GUI. You should be able to directly create the virtual disk in the QCOW2 format, but in case you have a RAW disk you can convert it like this:\n\n$ cd /your/disk/image/path\n$ qemu-img convert -O qcow2 your_disk.raw your_disk.qcow2\n\nNow edit your VM definition as follows:\n\n$ virsh edit \"<Name of VM>\"\n\nFind the disk section, which looks like this:",
+  "$ virsh edit \"<Name of VM>\"\n\nFind the disk section, which looks like this:\n\n<disk type='file' device='disk'>\n    <driver name='qemu' type='raw'/>\n    <source file='/your/disk/image/path/your_disk.raw'/>\n    <target dev='hda' bus='ide'/>\n    <address type='drive' controller='0' bus='0' unit='0'/>\n</disk>\n\nAnd change \"type\" to qcow2 and \"source file\" to your qcow2 disk image path, like this:\n\n<disk type='file' device='disk'>\n    <driver name='qemu' type='qcow2'/>\n    <source file='/your/disk/image/path/your_disk.qcow2'/>\n    <target dev='hda' bus='ide'/>\n    <address type='drive' controller='0' bus='0' unit='0'/>\n</disk>\n\nKVM by default will pass through a feature flag, viewable in ECX as the 31st bit after executing the CPUID instruction with EAX set to 1. Some malware will use this unprivileged instruction to detect its execution in a VM. One way to avoid this is to modify your VM definition as follows: find the following line:\n\n<domain type='kvm'>\n\nChange it to:",
+  "<domain type='kvm'>\n\nChange it to:\n\n<domain type='kvm' xmlns:qemu='http://libvirt.org/schemas/domain/qemu/1.0'>\n\nThen within the domain element, add the following:\n\n<qemu:commandline>\n  <qemu:arg value='-cpu'/>\n  <qemu:arg value='host,-hypervisor'/>\n</qemu:commandline>\n\nInstead of using \"host\", you can also choose from multiple other CPU models from the list displayed with the qemu-system-i386 -cpu help command (SandyBridge, Haswell, etc).\n\nNow test your virtual machine. If everything works, prepare it for snapshotting while running CAPE's agent. This means the virtual machine needs to be running when you take the snapshot. You can take a snapshot with the following command via virsh:\n\n$ virsh snapshot-create \"<Name of VM>\"\n$ virsh snapshot-create-as --domain \"<Name of VM>\" --name \"<Name of snapshot>\"\n\nAfter snapshotting the guest, you can shut it down.\n\nWarning\n\nHaving multiple snapshots can cause errors such as:\n\nERROR: No snapshot found for virtual machine <VM-Name>",
+  "ERROR: No snapshot found for virtual machine <VM-Name>\n\nVM snapshots can be managed using the following commands.\n\n$ virsh snapshot-list \"<VM-Name>\"\n\n$ virsh snapshot-delete \"<VM-Name>\" \"<Snapshot-Name>\"\"\n\nSnapshot with Virtual Manager (virt-manager)\n\nIf you are using virtual manager (virt-manager) to manage you VMs (as mentioned in the installation_kvm chapter), you can also use it to create the snapshots.\n\nWarning\n\nVirtual manager allows you to create either internal or external snapshots (which you can read more about here). The arguably easier mode of operation are internal snapshots, given that external ones use individual files that may mess up your whole libvirt - qemu - kvm installation in case of name/path modification or loss.\n\nWhen creating a new snapshot, in newer versions of KVM you can select whether you want an internal or external or one:\n\nimage\n\nWhen any given snapshot is external, it's label will be suffixed with \"*(External)*\".\n\nimage\n\nVirtualBox",
+  "image\n\nVirtualBox\n\nIf you are going for VirtualBox you can take the snapshot from the graphical user interface or the command line:\n\n$ VBoxManage snapshot \"<Name of VM>\" take \"<Name of snapshot>\" --pause\n\nAfter the snapshot creation is completed, you can power off the machine and restore it:\n\n$ VBoxManage controlvm \"<Name of VM>\" poweroff\n$ VBoxManage snapshot \"<Name of VM>\" restorecurrent\n\nVMware Workstation\n\nIf you decided to adopt VMware Workstation, you can take the snapshot from the graphical user interface or the command line:\n\n$ vmrun snapshot \"/your/disk/image/path/wmware_image_name.vmx\" your_snapshot_name\n\nWhere your_snapshot_name is the name you choose for the snapshot. After that power off the machine from the GUI or the command line:\n\n$ vmrun stop \"/your/disk/image/path/wmware_image_name.vmx\" hard\n\nXenServer",
+  "$ vmrun stop \"/your/disk/image/path/wmware_image_name.vmx\" hard\n\nXenServer\n\nIf you decided to adopt XenServer, the XenServer machinery supports starting virtual machines from either disk or a memory snapshot. Creating and reverting memory snapshots require that the Xen guest tools be installed in the virtual machine. The recommended method of booting XenServer virtual machines is through memory snapshots because they can greatly reduce the boot time of virtual machines during analysis. If, however, the option of installing the guest tools is not available, the virtual machine can be configured to have its disks reset on boot. Resetting the disk ensures that malware samples cannot permanently modify the virtual machine.\n\nMemory Snapshots\n\nThe Xen guest tools can be installed from the XenCenter application that ships with XenServer. Once installed, restart the virtual machine and ensure that the CAPE agent is running.",
+  "Snapshots can be taken through the XenCenter application and the command line interface on the control domain (Dom0). When creating the snapshot from XenCenter, ensure that the \"Snapshot disk and memory\" is checked. Once created, right-click on the snapshot and note the snapshot UUID.\n\nTo snapshot from the command line interface, run the following command:\n\n$ xe vm-checkpoint vm=\"vm_uuid_or_name\" new-name-label=\"Snapshot Name/Description\"\n\nThe snapshot UUID is printed to the screen once the command completes.\n\nRegardless of how the snapshot was created, save the UUID in the virtual machine's configuration section. Once the snapshot has been created, you can shut down the virtual machine.\n\nBooting from Disk\n\nIf you can't install the Xen guest tools or if you don't need to use memory snapshots, you will need to ensure that the virtual machine's disks are reset on boot and that the CAPE agent is set to run at boot time.",
+  "Running the agent at boot time can be configured in Windows by adding a startup item for the agent.\n\nThe following commands must be run while the virtual machine is powered off.\n\nTo set the virtual machine's disks to reset on boot, you'll first need to list all the attached disks for the virtual machine. To list all attached disks, run the following command:\n\n$ xe vm-disk-list vm=\"vm_name_or_uuid\"\n\nIgnoring all CD-ROM and read-only disks, run the following command for each remaining disk to change its behavior to reset on boot:\n\n$ xe vdi-param-set uuid=\"vdi_uuid\" on-boot=reset\n\nAfter the disk is set to reset on boot, no permanent changes can be made to the virtual machine's disk. Modifications that occur while a virtual machine is running will not persist past shutdown.\n\nAzure\n\nOnce you have a virtual machine that is ready to be your golden image for a virtual machine scale set, take a snapshot of the virtual machine's disk.",
+  "Official documentation on how to do this: Create a snapshot of a virtual hard disk\n\nWe are now going to turn this snapshot into an \"image\", which is the terminology Azure uses as the base for all virtual machines in a scale set.\n\nThe creation of an image from a snapshot takes a while, so be patient.\n\nIn the az.conf file, you will need to specify the Compute Gallery Name as well as the Image Definition Name.",
+  "Integrations\n\nThis chapter explains how to integrate external/3rd party services to CAPE. CAPE is written in a modular architecture built to be as customizable as it can, to fit the needs of all users.\n\nbox-js curtain librenms suricata",
+  "Curtain\n\nDetailed writeup by Mandiant's powershell blog post\n\nConfiguration required in Virtual Machine. Example for Windows 7:\n\nWindows 7 SP1, .NET at least 4.5, powershell 5 preferably over v4\nKB3109118 - Script block logging back port update for WMF4\nx64 - https://cuckoo.sh/vmcloak/Windows6.1-KB3109118-v4-x64.msu\nx32 - https://cuckoo.sh/vmcloak/Windows6.1-KB3109118-v4-x86.msu\nKB2819745 - WMF 4 (Windows Management Framework version 4) update for Windows 7\n\nx64 - https://cuckoo.sh/vmcloak/Windows6.1-KB2819745-x64-MultiPkg.msu\nx32 - https://cuckoo.sh/vmcloak/Windows6.1-KB2819745-x86-MultiPkg.msu\nKB3191566 - https://www.microsoft.com/en-us/download/details.aspx?id=54616",
+  "You should create following registry entries\nreg add \"HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\PowerShell\\ModuleLogging\\ModuleNames\" /v * /t REG_SZ /d * /f /reg:64\nreg add \"HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\PowerShell\\ScriptBlockLogging\" /v EnableScriptBlockLogging /t REG_DWORD /d 00000001 /f /reg:64\nreg add \"HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\PowerShell\\Transcription\" /v EnableTranscripting /t REG_DWORD /d 00000001 /f /reg:64\nreg add \"HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\PowerShell\\Transcription\" /v OutputDirectory /t REG_SZ /d C:\\PSTranscipts /f /reg:64\nreg add \"HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\PowerShell\\Transcription\" /v EnableInvocationHeader /t REG_DWORD /d 00000001 /f /reg:64",
+  "Suricata\n\nSuricata can be used to grab binaries or the like off the wire and then feed them to CAPEv2 for detonation. This involves several parts.\n\nA box running Suricata listening on a network span.\n\nsuricata_extract_submit from CAPE::Utils for handling found binaries.\n\nA CAPEv2 box for detonation.\n\nmojo_cape_submit from CAPE::Utils for accepting submissions via suricata_extract_submit.\n\nSuricata requires rules are capable of this and a output configured for file extraction.\n\nCAPE::Utils can be installed via the command cpanm CAPE::Utils and on some Linux distros the headers, which on Debian is included in the package zlib1g-dev.\n\nOnce that is installed, a config file for suricata_extract_submit needs configured. The default location is usr/local/etc/suricata_extract_submit.ini.",
+  "# the API key to use if needed\n#apikey=\n# URL to find mojo_cape_submit at\nurl=http://192.168.14.15:8080/\n# the group/client/whathaveya slug\nslug=foo\n# where Suricata has the file store at\nfilestore=/var/log/suricata/files\n# a file of IPs or subnets to ignore SRC or DEST IPs of\n#ignore=\n# a file of regex to use for checking host names go ignore\n#ignoreHosts=\n# if it should use HTTPS_PROXY and HTTP_PROXY from ENV or not\nenv_proxy=0\n# stats file holding only the stats for the last run\nstats_file=/var/cache/suricata_extract_submit_stats.json\n# stats dir\nstats_dir=/var/cache/suricata_extract_submit_stats/\n\nAnd then a cron job setup akin to below to handle the submission.\n\n/5 * * * * /usr/local/bin/suricata_extract_submit 2> /dev/null > /dev/null\n\nThe output is safe to dump to /dev/null as script sends it's data to syslog as suricata_extract_submit to the daemon log.\n\nYou can check if this has hung like below.",
+  "You can check if this has hung like below.\n\n/usr/local/libexec/nagios/check_file_age -i -f /var/run/suricata_extract_submit.pid\n\nAnd if monitoring via LibreNMS the following line can be added to the SNMPD config to enable monitoring of it. There are then several rules available in the rules collection that can be used for alerting upon submission issues.\n\nextend suricata_extract /usr/local/bin/suricata_extract_submit_extend\n\nWith the submission CAPE::Utils just needs installed on the CAPEv2 system beingused for detonation. In the default configuration of CAPEv2 does not require /usr/local/etc/cape_utils.ini being used, but may be worthwhile reviewing the documentation. You will need to make sure the directories specifeid via the variable incoming and incoming_json exists and is writable/readable by CAPEv2.",
+  "And if using the supplied systemd service file the following config file needs configured at /usr/local/etc/mojo_cape_submit.env. For more information on deploying Mojolicious based apps, the listen string, or for writing your own service file or something similar, checkout docs for Mojolicious Deployment.\n\nCAPE_USER=\"cape\"\nLISTEN_ON=\"http://192.168.14.15:8080\"\n\nSecurity mojo_cape_submit defaults to IP and can be controlled by the auth value in the config and has the default value of subnet as being 192.168.0.0/16,127.0.0.1/8,::1/128,172.16.0.0/12,10.0.0.0/8, which allows submission via anything on common private/local subnets.\n\nIf you using LibreNMS, you can monitor monitor it via mojo_cape_submit_extend by adding the following to your SNMPD config.\n\nextend mojo_cape_submit /usr/local/bin/mojo_cape_submit_extend",
+  "Box-js\n\nbox_installation\n\nbox_preparation\n\nbox_starting\n\nbox_restapi\n\nInstallation\n\nQuick and dirty notes on how to integrate box-js to CAPE:\n\n$ curl -sL https://deb.nodesource.com/setup_14.x | sudo -E bash -\n$ sudo apt install docker.io nodejs git\n$ sudo usermod -aG docker cape\n# newgrp docker\n$ docker run hello-world\n$ sudo npm install -g --save npm@latest core-util-is hapi rimraf express express-fileupload\n$ git clone https://github.com/kirk-sayre-work/box-js /opt/box-js\n$ cd /opt/box-js\n$ sudo npm audit fix --force\n\nPreparation\n\nWe will leave fixing and hardening of box-js for you, here are just a few examples:",
+  "Preparation\n\nWe will leave fixing and hardening of box-js for you, here are just a few examples:\n\nUSERNAME=\"CAPE\"\nIP=\"0.0.0.0\"\nsudo sed -i \"s|\\\\\\\\SYSOP1~1\\\\\\\\|\\\\\\\\$USERNAME\\\\\\\\|g\" emulator/WScriptShell.js\nsudo sed -i \"s|\\\\\\\\Sysop12\\\\\\\\|\\\\\\\\$USERNAME\\\\\\\\|g\" emulator/WScriptShell.js\nsudo sed -i \"s|windows-xp|windows 7|g\" emulator/WScriptShell.js # or 10 who knows\nsudo sed -i \"s|\\\\\\\\MyUsername\\\\\\\\|\\\\\\\\$USERNAME\\\\\\\\|g\" emulator/ShellApplication.js\nsudo sed -i \"s|USER-PC|$USERNAME-PC|g\" emulator/WMI.js\nsudo sed -i \"s|Sysop12|$USERNAME|g\" emulator/WMI.js\nsudo sed -i \"s|127.0.0.1|$IP|g\" integrations/api/api.js\n\nreplace emulator/processes.json with your own, you can use this to generate one:\n\n$ gwmi -Query \"SELECT * FROM Win32_Process\" > a.txt\n$ tools/makeProcList.js\n\ncreate a tar.gz with tar -czvf master.tar.gz box-js-master/:\n\n$ cd integrations/api/\n\nreplace Dockerfile with this content, required to run fixed/patched box-js inside of the Docker:",
+  "replace Dockerfile with this content, required to run fixed/patched box-js inside of the Docker:\n\nFROM node:10-alpine\n#ENV http_proxy http://PROXY_IP:PORT\n#ENV https_proxy http://PROXY_IP:PORT\nRUN apk update && apk upgrade\nRUN apk add --no-cache bash file gcc m4\nRUN apk add -U --repository http://dl-cdn.alpinelinux.org/alpine/edge/testing aufs-util\n# Install the latest v1 of box-js\nCOPY master.tar.gz /samples/\nRUN npm install /samples/master.tar.gz --global --production\nRUN rm /samples/master.tar.gz\nWORKDIR /samples\nCMD box-js /samples --output-dir=/samples --loglevel=debug\n\nStarting box-js rest-api\n\nThe default port is 9000 you can change it inside of api.py\n\n$ node api.js\n\nBox-js rest-api endpoints\n\nSandbox configuration\n\nIn conf/processing.conf enable box-js and set correct url",
+  "Tracee eBPF for Linux\n\nCAPEv2 now has support for [Aqua Security Tracee](https://www.aquasec.com/products/tracee/), an eBPF-based threat detection engine with built-in signatures, for Linux dynamic analysis to complement the existing strace implementation.\n\nTo use it, you need to install the [CAPEv2 Community Repo](https://github.com/CAPESandbox/community). Here is a guide: https://capev2.readthedocs.io/en/latest/usage/utilities.html#community-download-utility.\n\nOnce you have installed the CAPEv2 Community Repo, you should have analyzer/linux/modules/auxiliary/tracee.py.\n\nTracee has functionality to:\n\ncapture artifacts such as loaded kernel modules, suspicious memory regions and eBPF programs in their run-time state, allowing their easy extraction even from packed and encrypted malwares\n\noperate at the eBPF level to capture events\n\nThe information captured from Tracee will then be displayed in a results UI:",
+  "The information captured from Tracee will then be displayed in a results UI:\n\n![Screenshot of the Tracee Behaviour UI](https://github.com/user-attachments/assets/039ea42f-36bd-4530-b5d9-48face5f642b)\n\nConfiguring Tracee using Policies ===\n\nThe CAPEv2 Tracee module provides analyzer/linux/modules/auxiliary/tracee/policy.yml to Tracee. This policy.yml file defines how Tracee should behave and what events it should capture. You can modify locally it to fit your needs.\n\nDocumentation for the policy file: https://aquasecurity.github.io/tracee/v0.20/docs/policies/\n\nVerifying Functionality ===\n\nAfter performing the Tracee setup for Linux guests detailed in [Installing the Linux guest](https://capev2.readthedocs.io/en/latest/installation/guest/linux.html), you may want to verify the functionality of your installation and make sure everything is working well.",
+  "You can obtain a live malware sample for Linux to load into CAPEv2 from https://bazaar.abuse.ch/sample/bd0141e88a0d56b508bc52db4dab68a49b6027a486e4d9514ec0db006fe71eed/. Please be careful with this file as it's actual malware. We do not take responsibility for anything that goes wrong.\n\nOnce the task is finished processing, the \"Detailed Behaviour (Tracee)\" tab ought to be available.",
+  "LibreNMS\n\nLibreNMS is capable of monitoring stats for CAPEv2. This is handled by a SNMP extend.\n\nwget https://raw.githubusercontent.com/librenms/librenms-agent/master/snmp/cape -O /etc/snmp/cape\nchmod +x /etc/snmp/cape\napt-get install libfile-readbackwards-perl libjson-perl libconfig-tiny-perl libdbi-perl libfile-slurp-perl libstatistics-lite-perl libdbi-perl libdbd-pg-perl\n\nWith that all in place, you will then need to create a config file for it at /usr/local/etc/cape_extend.ini. Unless you are doing anything custom DB wise, the settings below, but with the proper PW will work.\n\n# DBI connection DSN\ndsn=dbi:Pg:dbname=cape;host=127.0.0.1\n\n# DB user\nuser=cape\n\n# DB PW\npass=12345\n\nThis module will also send warnings, errors, and critical errors found in the logs to LibreNMS. To filter these, /usr/local/etc/cape_extend.ignores can be used. The format for that is as below.\n\n<ignore level> <pattern>",
+  "<ignore level> <pattern>\n\nThis the ignore level will be lower cased. The separator between the level and the regexp pattern is /[\\ \\t]+/. So if you want to ignore the two warnings generated when VM traffic is dropped, you would use the two lines such as below.\n\nWARNING PCAP file does not exist at path\nWARNING Unable to Run Suricata: Pcap file\n\nOn the CAPEv2 side, you will need to make a few tweaks to reporting.conf. litereport will need enabled and keys_to_copy should include 'signatures' and 'detections'.\n\nFinally will need to enable the extend for your\n\nextend cape /etc/snmp/extends/cape\n\nOnce snmpd is restarted and the the device rediscovered via LibreNMS, you will then be able to\n\nFor more detailed monitoring, if using KVM, you will likely want to also considering using HV::Monitor, which will allow detailed monitoring various stats VMs.",
+  "Final Remarks\n\nLinks\n\nAsking for help\n\nPlease read the following rules before posting:\n\nBefore posting, Google about your issue. DO NOT post questions that have already been answered over and over everywhere.\n\nPosting messages saying just something like \"Doesn't work, help me\" is completely useless. If something is not working report the error, paste the logs, the config file, the information on the virtual machine, the results of the troubleshooting, etc. Give context. We are not wizards and we don't have a crystal ball.\n\nUse a proper title. Stuff like \"Doesn't work\", \"Help me\", and \"Error\" are not proper titles.\n\nTry to use pastebin.com, pastie.org or similar services to paste logs and configs: makes the message more readable.\n\nGithub issues. Please read the Markdown documentation before posting for tips on how to escape and post configs as code blocks.\n\nSupport Us",
+  "Support Us\n\nCAPE Sandbox is a completely open source software, released freely to the public and developed mostly during free time by volunteers. If you enjoy it and want to see it kept developed and updated, please consider supporting us.\n\nWe are always looking for financial support, hardware support, and contributions of any sort. If you're interested in cooperating, feel free to contact us.\n\nPeople\n\nCAPE Sandbox is an open source project resulting from the efforts and contributions of a lot of people who enjoyed volunteering some of their time for the greater good :).\n\nActive Developers\n\nName Role Kevin O'Reilly Lead Developer Andriy Brukhovetskyy Lead Developer",
+  "Title: CAPE issues RAG chatbot\nBody: None\nComment: ## Summary of Changes\n\nHello @doomedraven, I'm Gemini Code Assist[^1]! I'm currently reviewing this pull request and will post my feedback shortly. In the meantime, here's a summary to help you and other reviewers quickly get up to speed!\n\nThis pull request introduces a sophisticated Retrieval-Augmented Generation (RAG) chatbot designed to automatically answer newly opened GitHub issues. By leveraging a knowledge base constructed from project documentation and historical issue data, the bot can semantically search for relevant information and use a large language model (Gemini) to formulate helpful, context-aware responses, significantly streamlining issue support and reducing response times.\n\n### Highlights\n\n* **Automated Issue Answering**: A new GitHub Actions workflow (`auto_answer.yml`) has been introduced to automatically trigger a Retrieval-Augmented Generation (RAG) chatbot whenever a new issue is opened in the repository.\n* **RAG Chatbot Implementation**: The `auto_answer_bot.py` script implements the core RAG logic, utilizing `SentenceTransformer` for creating embeddings, FAISS for efficient semantic search within the knowledge base, and Google's Gemini LLM for generating context-aware answers.\n* **Knowledge Base Management**: A dedicated `build_knowledge_base.py` script is included to construct and update the bot's knowledge base. This script processes project documentation (RST files) and existing GitHub issues, converting them into searchable embeddings and metadata.\n* **Comprehensive Documentation**: A detailed `readme.md` file provides step-by-step instructions for setting up the local knowledge base, deploying the bot to GitHub, and outlining the maintenance process to keep the bot's information current.\n\n\n\n<details>\n<summary><b>Ignored Files</b></summary>\n\n*   **Ignored by pattern:** `.github/workflows/**` (1)\n    *   .github/workflows/auto_answer.yml\n</details>\n\n\n\n<details>\n<summary><b>Using Gemini Code Assist</b></summary>\n<br>\n\nThe full guide for Gemini Code Assist can be found on our [documentation page](https://developers.google.com/gemini-code-assist/docs/review-github-code), here are some quick tips.\n\n<b>Invoking Gemini</b>\n\nYou can request assistance from Gemini at any point by creating a comment using either `/gemini <command>` or `@gemini-code-assist <command>`. Below is a summary of the supported commands on the current page.\n\nFeature | Command | Description\n--- | --- | ---\nCode Review | `/gemini review` | Performs a code review for the current pull request in its current state.\nPull Request Summary | `/gemini summary` | Provides a summary of the current pull request in its current state.\nComment | @gemini-code-assist | Responds in comments when explicitly tagged, both in pull request comments and review comments.\nHelp | `/gemini help` | Displays a list of available commands.\n\n<b>Customization</b>\n\nTo customize Gemini Code Assist for GitHub experience, repository maintainers can create a configuration file and/or provide a custom code review style guide (such as PEP-8 for Python) by creating and adding files to a `.gemini/` folder in the base of the repository. Detailed instructions can be found [here](https://developers.google.com/gemini-code-assist/docs/customize-gemini-behavior-github).\n\n<b>Limitations & Feedback</b>\n\nGemini Code Assist may make mistakes. Please leave feedback on any instances where its feedback is incorrect or counter productive. You can react with :thumbsup: and :thumbsdown: on @gemini-code-assist comments. If you're interested in giving your feedback about your experience with Gemini Code Assist for Github and other Google products, sign up [here](https://google.qualtrics.com/jfe/form/SV_2cyuGuTWsEw84yG).\n\n<b>You can also get AI-powered code generation, chat, as well as code reviews directly in the IDE at no cost with the [Gemini Code Assist IDE Extension](https://cloud.google.com/products/gemini/code-assist).</b>\n</details>\n\n\n\n\n[^1]: Review the [Privacy Notices](https://policies.google.com/privacy), [Generative AI Prohibited Use Policy](https://policies.google.com/terms/generative-ai/use-policy), [Terms of Service](https://policies.google.com/terms), and learn how to configure Gemini Code Assist in GitHub [here](https://developers.google.com/gemini-code-assist/docs/customize-gemini-behavior-github). Gemini can make mistakes, so double check it and [use code with caution](https://support.google.com/legal/answer/13505487).\n",
+  "Title: Failing unserviceable task\nBody: # Failing unserviceable task\n\n- [x] I am running the latest version \n- [x] I did read the README!\n- [x] I checked the documentation and found no answer\n- [x] I checked to make sure that this issue has not already been filed \n- [x] I'm reporting the issue to the correct repository (for multi-repository projects) \n- [x] I have read and checked all configs (with all optional parts) \n\n## Expected Behavior\n\nOnce submitting a payload, capev2 should run the vm and start the analysis\n\n## Current Behavior\n\nAfter I submitted the malicious software, capev2 failed to operate kvm as expected\n\n# Failure Information (for bugs)\n\n1. I think this might be a permission issue, but I'm not sure if it's a bug. \n2. Whether the virtual machine is started or not, capev2 cannot turn the machine on or off\n3. I'm able to use virsh --connect qemu:///system list --all from the cape user, and run the vm.\n4. There may be a crucial mistake here `libvirt.libvirtError: operation failed: domain is not running`\n\n* After the installation of CapeV2 is completed, has Linux been restarted?\n\t* yes\n* Has CapeV2 been successfully run after installation\n\t* Yes, but it only ran successfully once. After Linux restarted, capev2 failed to run\n* The attempts I have made\n\t* Restart the cape service\n\t* Restart the libvirtd service\n\n## Steps to Reproduce\n\nPlease provide detailed steps for reproducing the issue.\n1.submit payload\n\n2. Takes a while\n3. Get failed_analysis\n\n## Configuration\n\nkvm.conf\n```\n[kvm]\nmachines = win10\ninterface = virbr1\ndsn = qemu:///system\n\n[cape1]\nlabel = cape1\nplatform = linux\nip = 192.168.66.1\narch = x64\n\n[win10]\nlabel = win10\nplatform = windows\nip = 192.168.66.166\nsnapshot = win10sandbox\narch = x64\n```\n\n## Failure Logs\n\n```\n2025-09-24 02:52:11,151 [lib.cuckoo.core.machinery_manager] INFO: Using MachineryManager[kvm] with max_machines_count=10\n2025-09-24 02:52:11,151 [lib.cuckoo.core.scheduler] INFO: Creating scheduler with max_analysis_count=unlimited\n2025-09-24 02:52:11,177 [lib.cuckoo.core.machinery_manager] INFO: Loaded 1 machine\n2025-09-24 02:52:11,202 [lib.cuckoo.core.machinery_manager] INFO: max_vmstartup_count for BoundedSemaphore = 5\n2025-09-24 02:52:11,203 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks\n2025-09-24 03:00:53,743 [lib.cuckoo.core.machinery_manager] INFO: Task #13: found useable machine win10 (arch=x64, platform=windows)\n2025-09-24 03:00:53,743 [lib.cuckoo.core.scheduler] INFO: Task #13: Processing task\n2025-09-24 03:00:53,772 [lib.cuckoo.core.analysis_manager] INFO: Task #13: File already exists at '/opt/CAPEv2/storage/binaries/be808fba3f74f9083abf04b2f2725cc46c79ba71368564a1338aaca9990f73fb'\n2025-09-24 03:00:53,773 [lib.cuckoo.core.analysis_manager] INFO: Task #13: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_3006c4px/mbr.exe'\n2025-09-24 03:01:08,033 [lib.cuckoo.core.analysis_manager] ERROR: Task #13: Unable to restore snapshot win10sandbox on virtual machine win10\nTraceback (most recent call last):\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 434, in start\n    self.vms[label].revertToSnapshot(snapshot, flags=0)\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/libvirt.py\", line 2456, in revertToSnapshot\n    raise libvirtError('virDomainRevertToSnapshot() failed')\nlibvirt.libvirtError: operation failed: domain is not running\n\nThe above exception was the direct cause of the following exception:\n\nTraceback (most recent call last):\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 310, in machine_running\n    self.machinery_manager.start_machine(self.machine)\n  File \"/opt/CAPEv2/lib/cuckoo/core/machinery_manager.py\", line 305, in start_machine\n    self.machinery.start(machine.label)\n  File \"/opt/CAPEv2/modules/machinery/kvm.py\", line 37, in start\n    super(KVM, self).start(label)\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 437, in start\n    raise CuckooMachineError(msg) from e\nlib.cuckoo.common.exceptions.CuckooMachineError: Unable to restore snapshot win10sandbox on virtual machine win10\n2025-09-24 03:01:08,084 [lib.cuckoo.core.analysis_manager] ERROR: Task #13: failure in AnalysisManager.run\nTraceback (most recent call last):\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 434, in start\n    self.vms[label].revertToSnapshot(snapshot, flags=0)\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/libvirt.py\", line 2456, in revertToSnapshot\n    raise libvirtError('virDomainRevertToSnapshot() failed')\nlibvirt.libvirtError: operation failed: domain is not running\n\nThe above exception was the direct cause of the following exception:\n\nTraceback (most recent call last):\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 310, in machine_running\n    self.machinery_manager.start_machine(self.machine)\n  File \"/opt/CAPEv2/lib/cuckoo/core/machinery_manager.py\", line 305, in start_machine\n    self.machinery.start(machine.label)\n  File \"/opt/CAPEv2/modules/machinery/kvm.py\", line 37, in start\n    super(KVM, self).start(label)\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 437, in start\n    raise CuckooMachineError(msg) from e\nlib.cuckoo.common.exceptions.CuckooMachineError: Unable to restore snapshot win10sandbox on virtual machine win10\n\nThe above exception was the direct cause of the following exception:\n\nTraceback (most recent call last):\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 511, in run\n    self.launch_analysis()\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 472, in launch_analysis\n    success = self.perform_analysis()\n              ^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 456, in perform_analysis\n    with self.machine_running(), self.result_server(), self.network_routing(), self.run_auxiliary():\n  File \"/usr/lib/python3.12/contextlib.py\", line 137, in __enter__\n    return next(self.gen)\n           ^^^^^^^^^^^^^^\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 335, in machine_running\n    raise CuckooDeadMachine(self.machine.name) from e\nlib.cuckoo.core.analysis_manager.CuckooDeadMachine: win10 is dead!\n2025-09-24 03:01:08,818 [lib.cuckoo.core.scheduler] INFO: Task #13: Failing unserviceable task\n```\nComment: * Local file permission check\n\n```\n# ll /var/lib/libvirt/images/\n\ntotal 29404504\ndrwxrwxrwx  2 root libvirt        4096 Sep  1 10:11 ./\ndrwxr-xr-x 13 root root           4096 Sep  1 06:24 ../\n-rwxrwxrwx  1 root libvirt   781058048 Sep  1 10:20 win10.1756721487*\n-rwxrwxrwx  1 root libvirt  4179465651 Sep  1 08:15 win10-mem.win10sandbox*\n-rwxrwxrwx  1 root libvirt 85912715264 Sep  1 07:27 win10.qcow2*\n-rwxrwxrwx  1 root libvirt  8594456576 Sep 24 03:46 win10.shutdown*\n-rwxrwxrwx  1 root libvirt      196704 Sep  1 10:11 zh-cn_windows_10_version_22h2_x64_dvd_139de365.1756721487*\n-rwxrwxrwx  1 root libvirt  6078826496 Sep  1 06:35 zh-cn_windows_10_version_22h2_x64_dvd_139de365.iso*\n\n# getent group libvirt\n\nlibvirt:x:1001:root,manner,cape\n```",
+  "Title: Tracee not working properly-Linux Guest\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\n\n## This is open source and you are getting __free__ support so be friendly!\n\n# Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n-  [x] I am running the latest version\n- [x] I did read the README!\n- [x] I checked the documentation and found no answer\n- [x] I checked to make sure that this issue has not already been filed\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [x] I have read and checked all configs (with all optional parts)\n\n\n# Expected Behavior\n\nI am expecting that Tracee works properly and is able to analyze the malware file.\n\n# Current Behavior\n\nWhat is the current behavior?\nThe current behavior is that docker is able to start with tracee but eventually there is a repeat of:\n[modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\n\nNo meaningful signatures or information is gained and the submission is simply timed out. This is not the case when stracee is enabled by itself.\n\nWhat I have made sure:\n\nI've enabled tracee properly, made sure to install it correctly in the Linux VM, and properly configured it in the auxiliary.conf and processing.conf. Strace is also enabled. I'm not sure why I'm not getting back any signatures or meaningful data.\n\n## Steps to Reproduce\n\nPlease provide detailed steps for reproducing the issue.\n\n1. Submit a file intended for Linux guest\n2. Get a report back\n3. No data is gained and looks like no analysis of the malware\n\n\n## Failure Logs\n\nPlease include any relevant log snippets or files here:\n\n2025-09-22 14:10:45,005 [root] DEBUG: Starting analyzer from: /cr8mee3r\n2025-09-22 14:10:45,006 [root] DEBUG: Storing results at: /tmp/XFfABqotb\n2025-09-22 14:10:45,013 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.filecollector\"...\n2025-09-22 14:10:45,096 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.human\"...\n2025-09-22 14:10:45,249 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.screenshots\"...\n2025-09-22 14:10:45,295 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageChops'\n2025-09-22 14:10:45,297 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageDraw'\n2025-09-22 14:10:45,297 [lib.api.screenshot] INFO: Please upgrade Pillow to >= 5.4.1 for best performance\n2025-09-22 14:10:45,349 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.sysmon\"...\n2025-09-22 14:10:45,351 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.tracee\"...\n2025-09-22 14:10:45,355 [modules.auxiliary.filecollector] INFO: FileCollector run started\n2025-09-22 14:10:45,364 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir snap\n2025-09-22 14:10:46,644 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir root\n2025-09-22 14:10:46,692 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir s1p3_whz\n2025-09-22 14:10:46,696 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir 6tsmu_9i\n2025-09-22 14:10:46,700 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir mnt\n2025-09-22 14:10:46,701 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir ahjr7_14\n2025-09-22 14:10:46,704 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir media\n2025-09-22 14:10:46,705 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir sbin.usr-is-merged\n2025-09-22 14:10:46,705 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir cr8mee3r\n2025-09-22 14:10:46,706 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir srv\n2025-09-22 14:10:46,706 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir .Library\n2025-09-22 14:10:46,707 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir boot\n2025-09-22 14:10:46,709 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir d9w5qvow\n2025-09-22 14:10:46,713 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir etc\n2025-09-22 14:10:46,803 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir kpdzasrr\n2025-09-22 14:10:46,807 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir home\n2025-09-22 14:10:46,886 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir lib.usr-is-merged\n2025-09-22 14:10:46,886 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir sbin\n2025-09-22 14:10:46,886 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir bin.usr-is-merged\n2025-09-22 14:10:46,887 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir cdrom\n2025-09-22 14:10:46,887 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir bin\n2025-09-22 14:10:46,887 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir lost+found\n2025-09-22 14:10:46,888 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir xcz3xob1\n2025-09-22 14:10:46,892 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir tkgyvp3u\n2025-09-22 14:10:46,897 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir opt\n2025-09-22 14:10:46,898 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir tmp\n2025-09-22 14:10:46,900 [modules.auxiliary.filecollector] INFO: FileCollector setup complete\n2025-09-22 14:10:47,356 [root] DEBUG: Initialized auxiliary module \"FileCollector\"\n2025-09-22 14:10:47,358 [root] DEBUG: Trying to start auxiliary module \"FileCollector\"...\n2025-09-22 14:10:47,359 [root] DEBUG: Started auxiliary module \"FileCollector\"\n2025-09-22 14:10:47,362 [modules.auxiliary.human] DEBUG: Human init complete\n2025-09-22 14:10:47,364 [root] DEBUG: Initialized auxiliary module \"Human\"\n2025-09-22 14:10:47,366 [root] DEBUG: Trying to start auxiliary module \"Human\"...\n2025-09-22 14:10:47,366 [root] DEBUG: Started auxiliary module \"Human\"\n2025-09-22 14:10:47,367 [root] DEBUG: Initialized auxiliary module \"Screenshots\"\n2025-09-22 14:10:47,368 [root] DEBUG: Trying to start auxiliary module \"Screenshots\"...\n2025-09-22 14:10:47,371 [asyncio] DEBUG: Using selector: EpollSelector\n2025-09-22 14:10:47,374 [root] DEBUG: Started auxiliary module \"Screenshots\"\n2025-09-22 14:10:47,374 [root] DEBUG: Initialized auxiliary module \"Sysmon\"\n2025-09-22 14:10:47,376 [root] DEBUG: Trying to start auxiliary module \"Sysmon\"...\n2025-09-22 14:10:47,378 [root] DEBUG: Started auxiliary module \"Sysmon\"\n2025-09-22 14:10:47,380 [modules.auxiliary.tracee] INFO: docker start\n2025-09-22 14:10:47,390 [modules.auxiliary.tracee] INFO: True\n2025-09-22 14:10:47,392 [modules.auxiliary.tracee] INFO: Tracee\n2025-09-22 14:10:47,395 [root] DEBUG: Initialized auxiliary module \"Docker\"\n2025-09-22 14:10:47,398 [root] DEBUG: Trying to start auxiliary module \"Docker\"...\n2025-09-22 14:10:47,514 [modules.auxiliary.tracee] DEBUG: Starting docker container\n2025-09-22 14:10:47,515 [modules.auxiliary.tracee] DEBUG: sudo docker run --name tracee -d --pid=host --cgroupns=host --privileged -v /etc/os-release:/etc/os-release-host:ro -v /cr8mee3r/tracee-artifacts/:/tmp/tracee/out/host -v /var/run:/var/run:ro -v /cr8mee3r/modules/auxiliary/tracee:/policy aquasec/tracee:latest --output json --output option:parse-arguments,exec-env,exec-hash --policy /policy/policy.yml --cache cache-type=mem --cache mem-cache-size=1024 --capture bpf --capture module\n2025-09-22 14:10:48,152 [modules.auxiliary.tracee] DEBUG: Docker container started: 7ba9c5608d4a2868c0bc475b5f2ccca5cd25a335f44b68caa598f41f5bf9dd7f\n\n2025-09-22 14:10:58,220 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\n\n2025-09-22 14:10:58,274 [modules.auxiliary.tracee] INFO: \n2025-09-22 14:11:08,312 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\n\n2025-09-22 14:11:08,366 [modules.auxiliary.tracee] INFO: \n2025-09-22 14:11:18,387 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\n\n2025-09-22 14:11:18,449 [modules.auxiliary.tracee] INFO: \n2025-09-22 14:11:28,478 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\n\n2025-09-22 14:11:28,524 [modules.auxiliary.tracee] INFO: \n2025-09-22 14:11:38,533 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\n\n2025-09-22 14:11:38,579 [modules.auxiliary.tracee] INFO: \n2025-09-22 14:11:48,591 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\n\n2025-09-22 14:11:48,654 [modules.auxiliary.tracee] INFO: \n2025-09-22 14:11:58,707 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\n\n2025-09-22 14:11:58,756 [modules.auxiliary.tracee] INFO: \n2025-09-22 14:12:08,768 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\n\n2025-09-22 14:12:08,816 [modules.auxiliary.tracee] INFO: \n2025-09-22 14:12:18,825 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\n\n2025-09-22 14:12:18,869 [modules.auxiliary.tracee] INFO: \n2025-09-22 14:12:28,880 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\n\n2025-09-22 14:12:28,925 [modules.auxiliary.tracee] INFO: \n2025-09-22 14:12:38,936 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\n\n2025-09-22 14:12:38,990 [modules.auxiliary.tracee] INFO: \n2025-09-22 14:12:49,006 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\n\n2025-09-22 14:12:49,053 [modules.auxiliary.tracee] INFO: \n2025-09-22 14:12:59,074 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\n\n2025-09-22 14:12:59,126 [modules.auxiliary.tracee] INFO: \n2025-09-22 14:13:09,157 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\n\n2025-09-22 14:13:09,217 [modules.auxiliary.tracee] INFO: \n2025-09-22 14:13:19,267 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\n\n2025-09-22 14:13:19,313 [modules.auxiliary.tracee] INFO: \n2025-09-22 14:13:29,324 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\n\n2025-09-22 14:13:29,377 [modules.auxiliary.tracee] INFO: \n2025-09-22 14:13:39,390 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\n\n2025-09-22 14:13:39,440 [modules.auxiliary.tracee] INFO: \n2025-09-22 14:13:49,464 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\n\n2025-09-22 14:13:49,509 [modules.auxiliary.tracee] INFO: \n2025-09-22 14:13:59,559 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\n\n2025-09-22 14:13:59,611 [modules.auxiliary.tracee] INFO: \n2025-09-22 14:14:09,616 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\n\n2025-09-22 14:14:09,656 [modules.auxiliary.tracee] INFO: \n2025-09-22 14:14:19,677 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\n\n2025-09-22 14:14:19,736 [modules.auxiliary.tracee] INFO: \n2025-09-22 14:14:29,768 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\n\n2025-09-22 14:14:29,819 [modules.auxiliary.tracee] INFO: \n2025-09-22 14:14:39,861 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\n\n2025-09-22 14:14:39,913 [modules.auxiliary.tracee] INFO: \n2025-09-22 14:14:49,950 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\n\n2025-09-22 14:14:50,006 [modules.auxiliary.tracee] INFO: \n2025-09-22 14:15:00,011 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\n\n2025-09-22 14:15:00,056 [modules.auxiliary.tracee] INFO: \n\n",
+  "Title: Use universal SID instead of locale-specific group names\nBody: Fixes agent failures on non-English Windows by using the SID  \"S-1-5-32-545\" instead of hardcoded \"BUILTIN\\Users\" in icacls commands.\r\n\r\nhttps://learn.microsoft.com/en-us/windows/win32/secauthz/well-known-sids\nComment: ## Summary of Changes\n\nHello @AndreasHanikel, I'm Gemini Code Assist[^1]! I'm currently reviewing this pull request and will post my feedback shortly. In the meantime, here's a summary to help you and other reviewers quickly get up to speed!\n\nThis pull request addresses a critical issue where agents running on non-English Windows operating systems would fail due to hardcoded, locale-specific group names in permission settings for temporary directories. By switching to a universal Security Identifier (SID), the change ensures that temporary directories are created with the correct permissions across all Windows locales, thereby improving the robustness and international compatibility of the agent.\n\n### Highlights\n\n* **Windows Permissions**: Replaced the locale-specific group name \"BUILTIN\\Users\" with the universal Well-Known SID \"S-1-5-32-545\" in `icacls` commands for temporary directories on Windows. This ensures consistent permission application regardless of the operating system's language.\n\n\n\n\n\n<details>\n<summary><b>Using Gemini Code Assist</b></summary>\n<br>\n\nThe full guide for Gemini Code Assist can be found on our [documentation page](https://developers.google.com/gemini-code-assist/docs/review-github-code), here are some quick tips.\n\n<b>Invoking Gemini</b>\n\nYou can request assistance from Gemini at any point by creating a comment using either `/gemini <command>` or `@gemini-code-assist <command>`. Below is a summary of the supported commands on the current page.\n\nFeature | Command | Description\n--- | --- | ---\n\n<b>Customization</b>\n\nTo customize Gemini Code Assist for GitHub experience, repository maintainers can create a configuration file and/or provide a custom code review style guide (such as PEP-8 for Python) by creating and adding files to a `.gemini/` folder in the base of the repository. Detailed instructions can be found [here](https://developers.google.com/gemini-code-assist/docs/customize-gemini-behavior-github).\n\n<b>Limitations & Feedback</b>\n\nGemini Code Assist may make mistakes. Please leave feedback on any instances where its feedback is incorrect or counter productive. You can react with :thumbsup: and :thumbsdown: on @gemini-code-assist comments. If you're interested in giving your feedback about your experience with Gemini Code Assist for Github and other Google products, sign up [here](https://google.qualtrics.com/jfe/form/SV_2cyuGuTWsEw84yG).\n\n<b>You can also get AI-powered code generation, chat, as well as code reviews directly in the IDE at no cost with the [Gemini Code Assist IDE Extension](https://cloud.google.com/products/gemini/code-assist).</b>\n</details>\n\n\n\n\n[^1]: Review the [Privacy Notices](https://policies.google.com/privacy), [Generative AI Prohibited Use Policy](https://policies.google.com/terms/generative-ai/use-policy), [Terms of Service](https://policies.google.com/terms), and learn how to configure Gemini Code Assist in GitHub [here](https://developers.google.com/gemini-code-assist/docs/customize-gemini-behavior-github). Gemini can make mistakes, so double check it and [use code with caution](https://support.google.com/legal/answer/13505487).\n\nComment: Danke!",
+  "Title: There was an error when deploying with Gunicorn\nBody: # Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n- [ \u2705] I am running the latest version\n- [ \u2705] I did read the README!\n- [ \u2705] I checked the documentation and found no answer\n- [ \u2705] I checked to make sure that this issue has not already been filed\n- [ ] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [ \u2705] I have read and checked all configs (with all optional parts)\n\n\n# Bugs\nI followed https://capev2.readthedocs.io/en/latest/usage/web.html#exposed-to-internet instructions to deploy cape-web, but found that there were errors during its operation.\n\n## Failure Logs\n```\nSep 20 14:52:41 capev2-sandbox python3[1694779]: ERROR:lib.cuckoo.common.demux:[Errno 2] No such file or directory: 'sflock/data/password.txt'\nSep 20 14:52:41 capev2-sandbox python3[1694779]: Traceback (most recent call last):\nSep 20 14:52:41 capev2-sandbox python3[1694779]:   File \"/opt/CAPEv2/lib/cuckoo/common/demux.py\", line 208, in demux_sflock\nSep 20 14:52:41 capev2-sandbox python3[1694779]:     unpacked = unpack(filename, password=password, check_shellcode=check_shellcode)\nSep 20 14:52:41 capev2-sandbox python3[1694779]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sflock/main.py\", line 72, in unpack\nSep 20 14:52:41 capev2-sandbox python3[1694779]:     Unpacker.single(f, password, duplicates)\nSep 20 14:52:41 capev2-sandbox python3[1694779]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sflock/abstracts.py\", line 130, in single\nSep 20 14:52:41 capev2-sandbox python3[1694779]:     return Unpacker(None).process([f], duplicates, password)\nSep 20 14:52:41 capev2-sandbox python3[1694779]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sflock/abstracts.py\", line 109, in process\nSep 20 14:52:41 capev2-sandbox python3[1694779]:     f.children = plugin.unpack(password, duplicates)\nSep 20 14:52:41 capev2-sandbox python3[1694779]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sflock/unpack/zip.py\", line 87, in unpack\nSep 20 14:52:41 capev2-sandbox python3[1694779]:     f = self.bruteforce(password, archive, entry)\nSep 20 14:52:41 capev2-sandbox python3[1694779]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sflock/abstracts.py\", line 157, in bruteforce\nSep 20 14:52:41 capev2-sandbox python3[1694779]:     for password in iter_passwords():\nSep 20 14:52:41 capev2-sandbox python3[1694779]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sflock/config.py\", line 16, in iter_passwords\nSep 20 14:52:41 capev2-sandbox python3[1694779]:     for line in passwd_file.read_text().splitlines():\nSep 20 14:52:41 capev2-sandbox python3[1694779]:   File \"/usr/lib/python3.10/pathlib.py\", line 1134, in read_text\nSep 20 14:52:41 capev2-sandbox python3[1694779]:     with self.open(mode='r', encoding=encoding, errors=errors) as f:\nSep 20 14:52:41 capev2-sandbox python3[1694779]:   File \"/usr/lib/python3.10/pathlib.py\", line 1119, in open\nSep 20 14:52:41 capev2-sandbox python3[1694779]:     return self._accessor.open(self, mode, buffering, encoding, errors,\nSep 20 14:52:41 capev2-sandbox python3[1694779]: FileNotFoundError: [Errno 2] No such file or directory: 'sflock/data/password.txt'\nSep 20 14:52:43 capev2-sandbox python3[1694780]: INFO:lib.cuckoo.core.database:Do sandbox packages need an update? Sflock identifies as: False - b'/tmp/cuckoo-tmp/upload_hpm4v2v2/VirusShare_02325.unknown'\n```\n\nComment: ```\nroot@capev2-sandbox:/opt/CAPEv2# git log | head -n1\ncommit 4612c4699b865d0f60d8379b7bed86e53ab3bec8\nroot@capev2-sandbox:/opt/CAPEv2# cat /etc/os-release\nPRETTY_NAME=\"Ubuntu 22.04.4 LTS\"\nNAME=\"Ubuntu\"\nVERSION_ID=\"22.04\"\nVERSION=\"22.04.4 LTS (Jammy Jellyfish)\"\nVERSION_CODENAME=jammy\nID=ubuntu\nID_LIKE=debian\nHOME_URL=\"https://www.ubuntu.com/\"\nSUPPORT_URL=\"https://help.ubuntu.com/\"\nBUG_REPORT_URL=\"https://bugs.launchpad.net/ubuntu/\"\nPRIVACY_POLICY_URL=\"https://www.ubuntu.com/legal/terms-and-policies/privacy-policy\"\nUBUNTU_CODENAME=jammy\n```\nComment: By examining the source code of sflock, it was found that it read the file \"password.txt\" located in the \"/opt/CAPEv2/web/sflock/data/\" directory. However, this file is actually within the sflock package.",
+  "Title: PyMongo auto-reconnecting...127.0.0.1:27017\nBody: What is the best version of mongod?\n\n I have error PyMongo auto-reconnecting...127.0.0.1:27017: [Errno 111] Connection refused (configured timeouts: socketTimeoutMS: 20000.0ms, connectTimeoutMS: 20000.0ms), Timeout: 30s, Topology Description: <TopologyDescription id: 68cbbc2a25228f0da66426e0, topology_type: Unknown, servers: [<ServerDescription ('127.0.0.1', 27017) server_type: Unknown, rtt: None, error=AutoReconnect('127.0.0.1:27017: [Errno 111] Connection refused (configured timeouts: socketTimeoutMS: 20000.0ms, connectTimeoutMS: 20000.0ms)')>]>. Waiting 0.5 seconds\n\nMy operating system version is:\nVERSION_ID=\"24.04\"\nVERSION=\"24.04.3 LTS (Noble Numbat)\"\n\n",
+  "Title: failing unserviceable task\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\n\n## This is open source and you are getting __free__ support so be friendly!\n\n# Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n- [yes ] I am running the latest version\n- [ yes] I did read the README!\n- [ yes] I checked the documentation and found no answer\n- [ yes] I checked to make sure that this issue has not already been filed\n- [ yes] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [ yes] I have read and checked all configs (with all optional parts)\n\n\n# Expected Behavior\n\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\n\nwhen i submit my exe file it should start the analysis \n\n# Current Behavior\n\nWhat is the current behavior?\n\nthe current behaviour is its failed instantly\nINFO: Task #xxxx: Failing unserviceable task\n# Failure Information (for bugs)\n\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\n\n## Steps to Reproduce\n\nPlease provide detailed steps for reproducing the issue.\n\n1. step 1\n2. step 2\n3. you get it...\n\n## Context\n\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\n\n| Question         | Answer\n|------------------|--------------------\n| Git commit       | Type `$ git log \\| head -n1` to find out\n| OS version       | Ubuntu 24.04.3 \n## Failure Logs\n\nPlease include any relevant log snippets or files here.\n\ni can't find anything while watching log it just say \n\nINFO: Task #xxxx: Failing unserviceable task\n",
+  "Title: failing unserviceable task\nBody: facing same issue while i put a exe file on cape web ui , it directlly say \"failing unserviceable task \"\n\n> please get a quick look again over the docs to avoid future issues \n\n _Originally posted by @doomedraven in [#2662](https://github.com/kevoreilly/CAPEv2/issues/2662#issuecomment-3173806370)_",
+  "Title: Analysis failed - vm is dead!\nBody: Please answer the following questions for yourself before submitting an issue.\n\n- [x] I am running the latest version\n- [x] I did read the README!\n- [x] I checked the documentation and found no answer\n- [x] I checked to make sure that this issue has not already been filed\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [x] I have read and checked all configs (with all optional parts)\n\n\n# Expected Behavior\n\nSuccessfully analyzing files.\n\n# Current Behavior\n\nIt cannot start the VM. Analysis fails.\n\n# Failure Information (for bugs)\n\nI am not sure it's a bug - I am probably doing something wrong. \n\n## Steps to Reproduce\n\nPlease provide detailed steps for reproducing the issue.\n\n1. Installed cape using the \"base\" version instead of all as \"all\" was getting stuck in the \"Redirecting output to w.get\" forever.\n2. Installed KVM.\n3. Changed the .conf files are required.\n4. I then cd to dir -> /opt/CAPEv2 and changed user to cape by running sudo -u cape -i\n5. Start cape as user cape using the command `poetry run python3 cuckoo.py`\n6. Submit an analysis on the web portal\n\nPlease note that I have done everything required in the guest machine too.\n\n## Context\n\nI installed cape and KVM by following the docs, configured the files, and it seems that cape cannot start the vm. I tried using a snapshot too. It starts analyzing but fails with the following log errors.\n\nIf it matters, `virsh list --all` does not return anything unless ran with sudo first. Only then it correctly shows my guest 'win10'.\n\nOne thing I noticed is that if I manually start the win10 guest by running \"sudo virsh start win10\" AFTER submitting the analysis, it may run the analysis successfully but apart from some signatures, it is not complete, e..g, there is no output in any of the analysis sections (behavior, network etc) in the UI despite the binary resolving DNS servers. Also, `analysis log` is empty.\n\n| Question         | Answer\n|------------------|--------------------\n| OS version       | Ubuntu 22.04.3, Windows 10 22H2,\n\n## Failure Logs\n\n**poetry python3 run cuckoo.py**\n\n```\ncape@TK-Ubuntu:/opt/CAPEv2$ poetry run python3 cuckoo.py\n\n  .-----------------.\n  | Cuckoo Sandbox? |\n  |     OH NOES!    |\\  '-.__.-'\n  '-----------------' \\  /oo |--.--,--,--.\n                         \\_.-'._i__i__i_.'\n                               \"\"\"\"\"\"\"\"\"\n\n Cuckoo Sandbox 2.4-CAPE\n www.cuckoosandbox.org\n Copyright (c) 2010-2015\n\n CAPE: Config and Payload Extraction\n github.com/kevoreilly/CAPEv2\n\npip3 install certvalidator asn1crypto mscerts\nOPTIONAL! Missed dependency: poetry run pip install -U git+https://github.com/DissectMalware/batch_deobfuscator\nOPTIONAL! Missed dependency: poetry run pip install -U git+https://github.com/CAPESandbox/httpreplay\n/usr/bin/tcpdump\n2025-09-13 15:22:32,220 [lib.cuckoo.core.machinery_manager] INFO: Using MachineryManager[kvm] with max_machines_count=10\n2025-09-13 15:22:32,220 [lib.cuckoo.core.scheduler] INFO: Creating scheduler with max_analysis_count=unlimited\n2025-09-13 15:22:32,242 [lib.cuckoo.core.machinery_manager] INFO: Loaded 1 machine\n2025-09-13 15:22:32,259 [lib.cuckoo.core.machinery_manager] INFO: max_vmstartup_count for BoundedSemaphore = 5\n2025-09-13 15:22:32,267 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks\n2025-09-13 15:23:25,475 [lib.cuckoo.core.machinery_manager] INFO: Task #11: found useable machine win10 (arch=x64, platform=windows)\n2025-09-13 15:23:25,475 [lib.cuckoo.core.scheduler] INFO: Task #11: Processing task\n2025-09-13 15:23:25,492 [lib.cuckoo.core.analysis_manager] INFO: Task #11: File already exists at '/opt/CAPEv2/storage/binaries/39ef2d3e9220c561a7b713c89345c7d4d0aaa023f739919cc66b8cb4d9646e02'\n2025-09-13 15:23:25,493 [lib.cuckoo.core.analysis_manager] INFO: Task #11: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_65_77nuh/test.exe'\n2025-09-13 15:28:30,612 [lib.cuckoo.core.analysis_manager] ERROR: Task #11: Timeout hit while for machine win10 to change status\nTraceback (most recent call last):\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 310, in machine_running\n    self.machinery_manager.start_machine(self.machine)\n  File \"/opt/CAPEv2/lib/cuckoo/core/machinery_manager.py\", line 305, in start_machine\n    self.machinery.start(machine.label)\n  File \"/opt/CAPEv2/modules/machinery/kvm.py\", line 37, in start\n    super(KVM, self).start(label)\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 461, in start\n    self._wait_status(label, self.RUNNING)\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 364, in _wait_status\n    raise CuckooMachineError(f\"Timeout hit while for machine {label} to change status\")\nlib.cuckoo.common.exceptions.CuckooMachineError: Timeout hit while for machine win10 to change status\n2025-09-13 15:28:30,635 [lib.cuckoo.core.analysis_manager] ERROR: Task #11: failure in AnalysisManager.run\nTraceback (most recent call last):\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 310, in machine_running\n    self.machinery_manager.start_machine(self.machine)\n  File \"/opt/CAPEv2/lib/cuckoo/core/machinery_manager.py\", line 305, in start_machine\n    self.machinery.start(machine.label)\n  File \"/opt/CAPEv2/modules/machinery/kvm.py\", line 37, in start\n    super(KVM, self).start(label)\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 461, in start\n    self._wait_status(label, self.RUNNING)\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 364, in _wait_status\n    raise CuckooMachineError(f\"Timeout hit while for machine {label} to change status\")\nlib.cuckoo.common.exceptions.CuckooMachineError: Timeout hit while for machine win10 to change status\n\nThe above exception was the direct cause of the following exception:\n\nTraceback (most recent call last):\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 511, in run\n    self.launch_analysis()\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 472, in launch_analysis\n    success = self.perform_analysis()\n              ^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 456, in perform_analysis\n    with self.machine_running(), self.result_server(), self.network_routing(), self.run_auxiliary():\n  File \"/usr/lib/python3.12/contextlib.py\", line 137, in __enter__\n    return next(self.gen)\n           ^^^^^^^^^^^^^^\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 335, in machine_running\n    raise CuckooDeadMachine(self.machine.name) from e\nlib.cuckoo.core.analysis_manager.CuckooDeadMachine: win10 is dead!\n2025-09-13 15:28:31,542 [lib.cuckoo.core.scheduler] INFO: Task #11: Failing unserviceable task\n```\n\n**sudo journalctl -u libvirtd**\n```\n\n-- Boot 81edac61e831438bb13c332dc2af71c8 --\nSep 13 10:23:02 TK-Ubuntu systemd[1]: Starting libvirtd.service - libvirt legacy monolithic daemon...\nSep 13 10:23:02 TK-Ubuntu systemd[1]: Started libvirtd.service - libvirt legacy monolithic daemon.\nSep 13 10:23:18 TK-Ubuntu libvirtd[12974]: libvirt version: 11.1.0\nSep 13 10:23:18 TK-Ubuntu libvirtd[12974]: hostname: TK-Ubuntu\nSep 13 10:23:18 TK-Ubuntu libvirtd[12974]: Domain id=1 name='win10' uuid=fbdc0f71-0e91-4deb-8bed-5c9cf7600773 is tainted: high-privileges\nSep 13 10:28:44 TK-Ubuntu libvirtd[12974]: Domain id=2 name='win10' uuid=fbdc0f71-0e91-4deb-8bed-5c9cf7600773 is tainted: high-privileges\nSep 13 10:52:17 TK-Ubuntu libvirtd[12974]: Domain id=3 name='win10' uuid=fbdc0f71-0e91-4deb-8bed-5c9cf7600773 is tainted: high-privileges\nSep 13 10:57:02 TK-Ubuntu libvirtd[12974]: Domain id=4 name='win10' uuid=fbdc0f71-0e91-4deb-8bed-5c9cf7600773 is tainted: high-privileges\nSep 13 11:01:58 TK-Ubuntu libvirtd[12974]: Domain id=5 name='win10' uuid=fbdc0f71-0e91-4deb-8bed-5c9cf7600773 is tainted: high-privileges\nSep 13 11:05:48 TK-Ubuntu libvirtd[12974]: End of file while reading data: Input/output error\nSep 13 11:40:44 TK-Ubuntu libvirtd[12974]: End of file while reading data: Input/output error\nSep 13 11:40:52 TK-Ubuntu systemd[1]: Stopping libvirtd.service - libvirt legacy monolithic daemon...\nSep 13 11:40:52 TK-Ubuntu systemd[1]: libvirtd.service: Deactivated successfully.\nSep 13 11:40:52 TK-Ubuntu systemd[1]: Stopped libvirtd.service - libvirt legacy monolithic daemon.\nSep 13 11:40:52 TK-Ubuntu systemd[1]: libvirtd.service: Consumed 8.267s CPU time.\n-- Boot 5d8f8e5fc33b4f9d899a7d1c2439eb38 --\nSep 13 16:32:05 TK-Ubuntu systemd[1]: Starting libvirtd.service - libvirt legacy monolithic daemon...\nSep 13 16:32:05 TK-Ubuntu systemd[1]: Started libvirtd.service - libvirt legacy monolithic daemon.\nSep 13 16:32:16 TK-Ubuntu libvirtd[10992]: libvirt version: 11.1.0\nSep 13 16:32:16 TK-Ubuntu libvirtd[10992]: hostname: TK-Ubuntu\nSep 13 16:32:16 TK-Ubuntu libvirtd[10992]: Domain id=1 name='win10' uuid=fbdc0f71-0e91-4deb-8bed-5c9cf7600773 is tainted: high-privileges\nSep 13 16:44:25 TK-Ubuntu systemd[1]: Stopping libvirtd.service - libvirt legacy monolithic daemon...\nSep 13 16:44:25 TK-Ubuntu systemd[1]: libvirtd.service: Deactivated successfully.\nSep 13 16:44:25 TK-Ubuntu systemd[1]: Stopped libvirtd.service - libvirt legacy monolithic daemon.\nSep 13 16:44:25 TK-Ubuntu systemd[1]: libvirtd.service: Consumed 2.237s CPU time.\nSep 13 16:44:25 TK-Ubuntu systemd[1]: Starting libvirtd.service - libvirt legacy monolithic daemon...\nSep 13 16:44:25 TK-Ubuntu systemd[1]: Started libvirtd.service - libvirt legacy monolithic daemon.\nSep 13 16:48:13 TK-Ubuntu libvirtd[12512]: libvirt version: 11.1.0\nSep 13 16:48:13 TK-Ubuntu libvirtd[12512]: hostname: TK-Ubuntu\nSep 13 16:48:13 TK-Ubuntu libvirtd[12512]: Domain id=1 name='win10' uuid=fbdc0f71-0e91-4deb-8bed-5c9cf7600773 is tainted: high-privileges\n```\nComment: Found the solution. It was a privileges issue, cape could not see the VM. I fixed it by running the below commands:\n\n\n```\n  sudo usermod -a -G libvirt cape\n  sudo usermod -a -G kvm cape\n```\n\nAlso, to make the cape user default to system-wide connection instead of user-session so it can see the VM:.\n\n```\nsudo -u cape mkdir -p /home/cape/.config/libvirt\nsudo -u cape bash -c 'echo \"uri_default = \\\"qemu:///system\\\"\" > /home/cape/.config/libvirt/libvirt.conf'\n```\n\n```\nsudo virsh dumpxml win10 > /tmp/win10.xml\nsudo virsh undefine win10 \nsudo virsh -c qemu:///system define /tmp/win10.xml\n```\n\nComment: Glad to hear it's sorted \ud83d\udc4d ",
+  "Title: Question: Best practices for integrating external analysis APIs and tools?\nBody: Hello CAPEv2 Team,\n\nFirst, thank you for creating such a powerful and comprehensive malware analysis tool. After a detailed setup process, we have successfully deployed a stable and high-fidelity instance of CAPEv2 that is now fully operational.\n\nOur goal is to **extend the overall analysis** of the pipeline by integrating external open-source tools via their APIs. We want to build upon CAPE's excellent foundation to extract more granular details from submitted binaries, which will help us create a richer dataset for our research.\n\nFor example, we are looking to integrate functionalities that can:\n*   Generate **Function Call Graphs (FCGs)** to map the relationships between functions.\n*   Generate **Control Flow Graphs (CFGs)** to visualize the binary's internal logic.\n*   Extract detailed **debug information** and symbol tables.\n*   Perform advanced **string analysis** to flag suspicious or interesting patterns.\n\nWe would be very grateful for your guidance on the best way to approach this. Our main questions are:\n\n1.  What is the recommended architecture for integrating external API calls into the CAPE processing workflow?\n2.  Does CAPEv2 have a built-in plugin system or defined hooks where custom modules like these can be added?\n3.  Are there any examples in the documentation or community contributions that we could reference to understand how to add a new processing module that interacts with an external analysis tool?\n\nThank you for your time and for your incredible work on this project. We would appreciate any direction you can provide as we look to extend CAPE's capabilities.\n\nBest regards,\nAhmar Husain\nComment: Hi Ahmar,\n\nI like the idea of extending the analysis - I think the question of whether an open-source tool should be integrated by code or by api largely boils down to the size and complexity of the tool to be integrated.\n\nTo take your example of advanced string analysis, cape already integrates floss and in general we would seek to integrate any prospective string analysis tool in this way unless its size or complexity precludes it.\n\nCall and control graphs might well be an example of something that sits on the fence. I've already seen such graphs directly integrated into the web interface of a derivative project - this works well with a lightweight disassembly engine. But recent developments in headless IDA for example might be more suited to a separate service and api integration.\n\nI'm not completely sure I know what you mean by debug information and symbol tables. PE header information, imported and exported functions and the like are already displayed in the web ui. This can of course be expanded to include any other headers or tables which might be useful.\n\nSo in general, we are of course very keen on open-source integration, leaning more towards direct integration where possible. If you can suggest specific tools or functionality we can look at how best they might be integrated. This is the first question, only after which does it make sense to look at the method of integration.\nComment: Closing as abandoned",
+  "Title: analyses' folder like procdump, memory and others are empty\nBody: sorry, i wanna know why when i go to opt/CAPEv2/storage/analyses/latest/ some folders are empty example (procdump and memory)...",
+  "Title: Fix task added_on and clock fields\nBody: None",
+  "Title: Bump django from 5.1.9 to 5.1.12\nBody: Bumps [django](https://github.com/django/django) from 5.1.9 to 5.1.12.\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/django/django/commit/f71d9c35e4c28614b4c079462f135637a59bfe19\"><code>f71d9c3</code></a> [5.1.x] Bumped version for 5.1.12 release.</li>\n<li><a href=\"https://github.com/django/django/commit/102965ea93072fe3c39a30be437c683ec1106ef5\"><code>102965e</code></a> [5.1.x] Fixed CVE-2025-57833 -- Protected FilteredRelation against SQL inject...</li>\n<li><a href=\"https://github.com/django/django/commit/44cd014a0ad35b3867595db1f3f4f1844308d581\"><code>44cd014</code></a> [5.1.x] Added stub release notes and release date for 5.1.12 and 4.2.24.</li>\n<li><a href=\"https://github.com/django/django/commit/09801786df0f413e990a378f4603c8aeb16968cc\"><code>0980178</code></a> [5.1.x] Fixed <a href=\"https://redirect.github.com/django/django/issues/36499\">#36499</a> -- Adjusted utils_tests.test_html.TestUtilsHtml.test_str...</li>\n<li><a href=\"https://github.com/django/django/commit/19e7b955520bfa78826c8e6c40b1756a39ba04b7\"><code>19e7b95</code></a> [5.1.x] Fixed test_utils.tests.HTMLEqualTests.test_parsing_errors following P...</li>\n<li><a href=\"https://github.com/django/django/commit/9d9b3bc71702e4bd4b7f8e1602d83fd69f871e94\"><code>9d9b3bc</code></a> [5.1.x] Refs <a href=\"https://redirect.github.com/django/django/issues/36535\">#36535</a> -- Doc'd that docutils &lt; 0.22 is required.</li>\n<li><a href=\"https://github.com/django/django/commit/37f64743800d45d27dcec846fa4fe0b8d46f10b7\"><code>37f6474</code></a> [5.1.x] Fixed GitHub Action that checks commit prefixes to fetch PR head corr...</li>\n<li><a href=\"https://github.com/django/django/commit/31045931aac14a0f9ab57213eea5b2364dec97a7\"><code>3104593</code></a> [5.1.x] Added GitHub Action to enforce stable branch commit message prefix.</li>\n<li><a href=\"https://github.com/django/django/commit/97c753741a1d2fba55ad83ad208df55f05d20952\"><code>97c7537</code></a> [5.1.x] Added follow-up to CVE-2025-48432 to security archive.</li>\n<li><a href=\"https://github.com/django/django/commit/353a6af6d971821e6cf27a19fb034d50177b846c\"><code>353a6af</code></a> [5.1.x] Post-release version bump.</li>\n<li>Additional commits viewable in <a href=\"https://github.com/django/django/compare/5.1.9...5.1.12\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=django&package-manager=pip&previous-version=5.1.9&new-version=5.1.12)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Prevent mouse emulation on Windows VMs from clicking on Console windows\nBody: This avoids situations where the console is clicked, causing select-mode to be enabled and the process to be suspended. This ultimately leads to the timeout being hit and a detonation with little useful telemetry.\nComment: Hi Josh, thanks for this, I'm testing this currently. Do you happen to have any good examples to test with?\nComment: > Hi Josh, thanks for this, I'm testing this currently. Do you happen to have any good examples to test with?\r\n\r\nI tested it with a full screen console app (with/without the fix applied) - I suspect that's probably the easiest way.",
+  "Title: Bump pypdf from 5.2.0 to 6.0.0\nBody: Bumps [pypdf](https://github.com/py-pdf/pypdf) from 5.2.0 to 6.0.0.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a href=\"https://github.com/py-pdf/pypdf/releases\">pypdf's releases</a>.</em></p>\n<blockquote>\n<h2>Version 6.0.0, 2025-08-11</h2>\n<h2>What's new</h2>\n<h3>Security (SEC)</h3>\n<ul>\n<li>Limit decompressed size for FlateDecode filter (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3430\">#3430</a>) by <a href=\"https://github.com/stefan6419846\"><code>@\u200bstefan6419846</code></a></li>\n</ul>\n<h3>Deprecations (DEP)</h3>\n<ul>\n<li>Drop Python 3.8 support (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3412\">#3412</a>) by <a href=\"https://github.com/stefan6419846\"><code>@\u200bstefan6419846</code></a></li>\n</ul>\n<h3>New Features (ENH)</h3>\n<ul>\n<li>Move BlackIs1 functionality to tiff_header (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3421\">#3421</a>) by <a href=\"https://github.com/j-t-1\"><code>@\u200bj-t-1</code></a></li>\n</ul>\n<h3>Robustness (ROB)</h3>\n<ul>\n<li>Skip Go-To actions without a destination (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3420\">#3420</a>) by <a href=\"https://github.com/badGarnet\"><code>@\u200bbadGarnet</code></a></li>\n</ul>\n<h3>Developer Experience (DEV)</h3>\n<ul>\n<li>Update code style related libraries (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3414\">#3414</a>) by <a href=\"https://github.com/stefan6419846\"><code>@\u200bstefan6419846</code></a></li>\n<li>Update mypy to 1.17.0 (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3413\">#3413</a>) by <a href=\"https://github.com/stefan6419846\"><code>@\u200bstefan6419846</code></a></li>\n<li>Stop testing on Python 3.8 and start testing on Python 3.14 (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3411\">#3411</a>) by <a href=\"https://github.com/stefan6419846\"><code>@\u200bstefan6419846</code></a></li>\n</ul>\n<h3>Maintenance (MAINT)</h3>\n<ul>\n<li>Cleanup deprecations (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3424\">#3424</a>) by <a href=\"https://github.com/stefan6419846\"><code>@\u200bstefan6419846</code></a></li>\n</ul>\n<p><a href=\"https://github.com/py-pdf/pypdf/compare/5.9.0...6.0.0\">Full Changelog</a></p>\n<h2>Version 5.9.0, 2025-07-27</h2>\n<h2>What's new</h2>\n<h3>New Features (ENH)</h3>\n<ul>\n<li>Automatically preserve links in added pages (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3298\">#3298</a>) by <a href=\"https://github.com/larsga\"><code>@\u200blarsga</code></a></li>\n<li>Allow writing/updating all properties of an embedded file (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3374\">#3374</a>) by <a href=\"https://github.com/Arya-A-Nair\"><code>@\u200bArya-A-Nair</code></a></li>\n</ul>\n<h3>Bug Fixes (BUG)</h3>\n<ul>\n<li>Fix XMP handling dropping indirect references (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3392\">#3392</a>) by <a href=\"https://github.com/stefan6419846\"><code>@\u200bstefan6419846</code></a></li>\n</ul>\n<h3>Robustness (ROB)</h3>\n<ul>\n<li>Deal with DecodeParms being empty list (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3388\">#3388</a>) by <a href=\"https://github.com/stefan6419846\"><code>@\u200bstefan6419846</code></a></li>\n</ul>\n<h3>Documentation (DOC)</h3>\n<ul>\n<li>Document how to read and modify XMP metadata (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3383\">#3383</a>) by <a href=\"https://github.com/stefan6419846\"><code>@\u200bstefan6419846</code></a></li>\n</ul>\n<p><a href=\"https://github.com/py-pdf/pypdf/compare/5.8.0...5.9.0\">Full Changelog</a></p>\n<h2>Version 5.8.0, 2025-07-13</h2>\n<h2>What's new</h2>\n<h3>New Features (ENH)</h3>\n<ul>\n<li>Implement flattening for writer (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3312\">#3312</a>) by <a href=\"https://github.com/PJBrs\"><code>@\u200bPJBrs</code></a></li>\n</ul>\n<h3>Bug Fixes (BUG)</h3>\n<!-- raw HTML omitted -->\n</blockquote>\n<p>... (truncated)</p>\n</details>\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/py-pdf/pypdf/blob/main/CHANGELOG.md\">pypdf's changelog</a>.</em></p>\n<blockquote>\n<h2>Version 6.0.0, 2025-08-11</h2>\n<h3>Security (SEC)</h3>\n<ul>\n<li>Limit decompressed size for FlateDecode filter (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3430\">#3430</a>)</li>\n</ul>\n<h3>Deprecations (DEP)</h3>\n<ul>\n<li>Drop Python 3.8 support (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3412\">#3412</a>)</li>\n</ul>\n<h3>New Features (ENH)</h3>\n<ul>\n<li>Move BlackIs1 functionality to tiff_header (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3421\">#3421</a>)</li>\n</ul>\n<h3>Robustness (ROB)</h3>\n<ul>\n<li>Skip Go-To actions without a destination (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3420\">#3420</a>)</li>\n</ul>\n<h3>Developer Experience (DEV)</h3>\n<ul>\n<li>Update code style related libraries (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3414\">#3414</a>)</li>\n<li>Update mypy to 1.17.0 (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3413\">#3413</a>)</li>\n<li>Stop testing on Python 3.8 and start testing on Python 3.14 (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3411\">#3411</a>)</li>\n</ul>\n<h3>Maintenance (MAINT)</h3>\n<ul>\n<li>Cleanup deprecations (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3424\">#3424</a>)</li>\n</ul>\n<p><a href=\"https://github.com/py-pdf/pypdf/compare/5.9.0...6.0.0\">Full Changelog</a></p>\n<h2>Version 5.9.0, 2025-07-27</h2>\n<h3>New Features (ENH)</h3>\n<ul>\n<li>Automatically preserve links in added pages (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3298\">#3298</a>)</li>\n<li>Allow writing/updating all properties of an embedded file (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3374\">#3374</a>)</li>\n</ul>\n<h3>Bug Fixes (BUG)</h3>\n<ul>\n<li>Fix XMP handling dropping indirect references (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3392\">#3392</a>)</li>\n</ul>\n<h3>Robustness (ROB)</h3>\n<ul>\n<li>Deal with DecodeParms being empty list (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3388\">#3388</a>)</li>\n</ul>\n<h3>Documentation (DOC)</h3>\n<ul>\n<li>Document how to read and modify XMP metadata (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3383\">#3383</a>)</li>\n</ul>\n<p><a href=\"https://github.com/py-pdf/pypdf/compare/5.8.0...5.9.0\">Full Changelog</a></p>\n<h2>Version 5.8.0, 2025-07-13</h2>\n<h3>New Features (ENH)</h3>\n<ul>\n<li>Implement flattening for writer (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3312\">#3312</a>)</li>\n</ul>\n<h3>Bug Fixes (BUG)</h3>\n<ul>\n<li>Unterminated object when using PdfWriter with incremental=True (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3345\">#3345</a>)</li>\n</ul>\n<h3>Robustness (ROB)</h3>\n<!-- raw HTML omitted -->\n</blockquote>\n<p>... (truncated)</p>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/py-pdf/pypdf/commit/0dd57738bbdcdb63f0fb43d8a6b3d222b6946595\"><code>0dd5773</code></a> REL: 6.0.0</li>\n<li><a href=\"https://github.com/py-pdf/pypdf/commit/bb3a69030fde7da545229438ff327b8c971cef49\"><code>bb3a690</code></a> SEC: Limit decompressed size for FlateDecode filter (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3430\">#3430</a>)</li>\n<li><a href=\"https://github.com/py-pdf/pypdf/commit/979af6defdcbfac38ff1ae67594633f4ae548242\"><code>979af6d</code></a> MAINT: Remove ignore of deprecation warning (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3428\">#3428</a>)</li>\n<li><a href=\"https://github.com/py-pdf/pypdf/commit/b622a2f51dd788f052245d48ad2f9a76cefca919\"><code>b622a2f</code></a> ENH: Move BlackIs1 functionality to tiff_header (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3421\">#3421</a>)</li>\n<li><a href=\"https://github.com/py-pdf/pypdf/commit/0b58493ac3b725a342da3a53d5634b197e698ab2\"><code>0b58493</code></a> MAINT: Cleanup deprecations (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3424\">#3424</a>)</li>\n<li><a href=\"https://github.com/py-pdf/pypdf/commit/794504bb87f8fac0fb8d5830c9bcfb6530100431\"><code>794504b</code></a> MAINT: Remove ignoring Ruff rule TD005 (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3422\">#3422</a>)</li>\n<li><a href=\"https://github.com/py-pdf/pypdf/commit/56f0eaa630a607d85d2137fac9ee60ed64c310a4\"><code>56f0eaa</code></a> DEV: Bump actions/download-artifact from 4 to 5 (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3423\">#3423</a>)</li>\n<li><a href=\"https://github.com/py-pdf/pypdf/commit/1b3177b4eba8f71e565cc9a0dee8d7e64312d148\"><code>1b3177b</code></a> ROB: Skip Go-To actions without a destination (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3420\">#3420</a>)</li>\n<li><a href=\"https://github.com/py-pdf/pypdf/commit/8000cbe20eb81fd19b2dbacc1dc5a7df022d15ee\"><code>8000cbe</code></a> MAINT: Remove duplicate CCITT processing (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3415\">#3415</a>)</li>\n<li><a href=\"https://github.com/py-pdf/pypdf/commit/ad85a228321e4dcac8a4b14fc7f84d1d2f8f4832\"><code>ad85a22</code></a> MAINT: Remove erroneous comment (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3406\">#3406</a>)</li>\n<li>Additional commits viewable in <a href=\"https://github.com/py-pdf/pypdf/compare/5.2.0...6.0.0\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pypdf&package-manager=pip&previous-version=5.2.0&new-version=6.0.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: gemini code base review\nBody: None",
+  "Title: bootstrap5 by gemini\nBody: written by gemini cli",
+  "Title: Add NightshadeC2, MonsterV2 Yara Rules\nBody: - Add NightshadeC2 Yara rule, see https://x.com/YungBinary/status/1963751038340534482\r\n- Update MonsterV2 yara rule to work for b869941a9c476585bbb8f48f7003d158c71e44038ceb2628cedb231493847775 and 666944b19c707afaa05453909d395f979a267b28ff43d90d143cd36f6b74b53e\r\n- Fixed symlink check in kvm-qemu.sh, \"-L\" argument should be used instead, fixes error:\r\n```\r\nln: failed to create symbolic link '/usr/bin/qemu-system-x86_64-spice': File exists\r\nln: failed to create symbolic link '/usr/bin/kvm-spice': File exists\r\nln: failed to create symbolic link '/usr/bin/kvm': File exists\r\n[-] Install failed\r\n```\r\n- Fixed missing qemu directory, create it first to fix error:\r\n```\r\n[-] Bios patching failed\r\n```\r\n\nComment: Would it be possible to have more than one pattern for the yara?\r\n\r\nI would say two or three patterns per yara is preferable as it's far less brittle and more future proof.\nComment: > Would it be possible to have more than one pattern for the yara?\r\n> \r\n> I would say two or three patterns per yara is preferable as it's far less brittle and more future proof.\r\n\r\nOkay got it, added more patterns for NightshadeC2 AKA CastleRAT\nComment: Are the changes to ``installer/kvm-qemu.sh`` intentional?\nComment: > Are the changes to `installer/kvm-qemu.sh` intentional?\r\n\r\nYes the script has bugs in it that these changes fix, see my PR notes:\r\n\r\n`Fixed symlink check in kvm-qemu.sh, \"-L\" argument should be used instead, fixes error:`\r\n\r\n`Fixed missing qemu directory, create it first to fix error:`",
+  "Title: Failed analysis for certain files\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\n\n## This is open source and you are getting __free__ support so be friendly!\n\n# Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n- [x] I am running the latest version\n- [x] I did read the README!\n- [x] I checked the documentation and found no answer\n- [x] I checked to make sure that this issue has not already been filed\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [x] I have read and checked all configs (with all optional parts)\n\n\n# Expected Behavior\n\nAll executable files are uploaded and detonated in guest vm.\n\n# Current Behavior\n\nThe error \"failed_analysis\" is reported in the web console for specific executables. Not every executable file fails and many are analyzed successfully.\n\n# Failure Information (for bugs)\n\nOnly certain executable files fail.\n\n## Steps to Reproduce\n\n1. Submit specific executable sample in Cape.\n\nHere is an Akira sample that fails: https://www.virustotal.com/gui/file/2647c28b0967b7923d7c857fa1bdc7687d8f816f9dc4906c6a6f66f687a6419a\n\n## Context\n\nKVM and CAPEv2 running on Ubuntu bare metal host.\n\nGuest is Windows 10 x64.\n\n## Failure Logs\n\nCaptured log trail for failure on sample upload:\n2025-09-03T19:16:10.540572+00:00 capehost python3[86302]: /opt/CAPEv2/lib/cuckoo/core/database.py:1304: SAWarning: Object of type <Task> not in session, add operation along 'Tag.tasks' won't proceed\n2025-09-03T19:16:10.540622+00:00 capehost python3[86302]:   with self.session.begin_nested():\n2025-09-03T19:16:10.682297+00:00 capehost poetry[99192]: 2025-09-03 19:16:10,681 [lib.cuckoo.core.scheduler] INFO: Task #11: Failing unserviceable task\n\nComment: <img width=\"2449\" height=\"94\" alt=\"Image\" src=\"https://github.com/user-attachments/assets/57bd9d10-aca5-48db-8331-80d3a8f7a0bf\" />\nComment: do you have x64 tag/arch in machinery config?\nComment: yes, config shared below:\n\n[kvm]\nmachines = win10\ninterface = virbr1\ndsn = qemu:///system\n[win10]\nlabel = win10\nplatform = windows\nip = 192.168.100.13\narch = x86\nComment: That says x86 not x64! So no...\nComment: sorry! I meant no :)\n\nlooking at a similar previous issue (https://github.com/kevoreilly/CAPEv2/issues/2178), I noticed the version of sqlalchemy. The error looks similar but my issue is on upload and not all .exe fail to submit and process. Is this correct?\n\n name         : sqlalchemy\n version      : 2.0.41\n description  : Database Abstraction Library\nComment: Sqlalchemy2 is not issue here, is your conf, you set x86, but pretend to run x64, that's why it can't find a proper vm\nComment: change to as your vm is x64\n```\narch = x64\ntags = x64,x86\n```\n\nthats all, restart as root `systemctl restart cape`\nComment: Thank you again for your help!\n\nThis is fixed with the arch change.",
+  "Title: Add AuraStealer yara\nBody: None",
+  "Title: Analysis\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\n\n## This is open source and you are getting __free__ support so be friendly!\n\n# Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n- [x] I am running the latest version\n- [x] I did read the README!\n- [x] I checked the documentation and found no answer\n- [x] I checked to make sure that this issue has not already been filed\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [x] I have read and checked all configs (with all optional parts)\n\n\n# Expected Behavior\n\n1. File should be sent and executed at target guest host.\n2. Process tree should be displayed in report.\n3. Behavioral analysis should be displayed in report.\n\nBased on some reading I'm thinking this may be associated with the result server config but not totally clear as I'm not seeing any errors.\n\nUsing kvm on an Ubuntu 24.04 host. Guest is Windows 10.\n\nUsing 0.0.0.0 as the resultserver_ip in both kvm.conf and cuckoo.conf\n\n# Current Behavior\n\n1. File does not appear to be detonated in guest host.\n2. Missing process tree from analysis report.\n3. Missing behavioral analysis in report. \n4. Only static analysis is provided for the file.\n5. Analysis logs are missing from storage \n\nScreenshots are taken of guest and if I manually interact while running screenshots are taken of interaction.\n\n## Steps to Reproduce\n\n1. Submit sample to CAPEv2 via web interface.\n\n## Failure Logs\n\n\u25cf cape.service - CAPE\n     Loaded: loaded (/usr/lib/systemd/system/cape.service; enabled; preset: enabled)\n     Active: active (running) since Mon 2025-09-01 05:11:32 UTC; 17min ago\n       Docs: https://github.com/kevoreilly/CAPEv2\n   Main PID: 57529 (python)\n      Tasks: 69 (limit: 18042)\n     Memory: 250.7M (peak: 251.1M)\n        CPU: 3.167s\n     CGroup: /system.slice/cape.service\n             \u2514\u250057529 /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/bin/python cuckoo.py\n\nSep 01 05:11:33 capehost poetry[57529]:  www.cuckoosandbox.org\nSep 01 05:11:33 capehost poetry[57529]:  Copyright (c) 2010-2015\nSep 01 05:11:33 capehost poetry[57529]:  CAPE: Config and Payload Extraction\nSep 01 05:11:33 capehost poetry[57529]:  github.com/kevoreilly/CAPEv2\nSep 01 05:11:33 capehost poetry[57609]: /usr/bin/tcpdump\nSep 01 05:11:33 capehost poetry[57529]: 2025-09-01 05:11:33,967 [lib.cuckoo.core.machinery_manager] INFO: Using MachineryManager[kvm] with>\nSep 01 05:11:33 capehost poetry[57529]: 2025-09-01 05:11:33,967 [lib.cuckoo.core.scheduler] INFO: Creating scheduler with max_analysis_cou>\nSep 01 05:11:33 capehost poetry[57529]: 2025-09-01 05:11:33,977 [lib.cuckoo.core.machinery_manager] INFO: Loaded 1 machine\nSep 01 05:11:33 capehost poetry[57529]: 2025-09-01 05:11:33,989 [lib.cuckoo.core.machinery_manager] INFO: max_vmstartup_count for BoundedS>\nSep 01 05:11:33 capehost poetry[57529]: 2025-09-01 05:11:33,991 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks\n\n[debug.txt](https://github.com/user-attachments/files/22071649/debug.txt)\nComment: thats wrong -> `Using 0.0.0.0 as the resultserver_ip in both kvm.conf and cuckoo.conf` server should have a specific IP, so you must to put that x.x.100.1 as result server in cuckoo.conf or in settings of each vm, better in cuckoo.conf\nComment: Quick response! Thank you for the support here.\n\nI tried this as well (replacing 0.0.0.0 with the interface IP address x.x100.1) and it was the same result. I commented out the resultserver lines in the kvm config.\n\nStill no luck...\nComment: Well then I would say for start provide more details, the main description\r\nis very poor, the connection with VM seems to work fine. What is in\r\nanalysis log? You can find it in storage/analysis/X/analysis.log\r\n\r\nAlso did you restart cape service after change result server? Otherwise it\r\nhas no effect\r\n\r\nEl lun, 1 sept 2025, 9:54, guser100 ***@***.***> escribi\u00f3:\r\n\r\n> *guser100* left a comment (kevoreilly/CAPEv2#2687)\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2687#issuecomment-3241267917>\r\n>\r\n> Quick response! Thank you for the support here.\r\n>\r\n> I tried this as well (replacing 0.0.0.0 with the interface IP address\r\n> x.x100.1) and it was the same result. I commented out the resultserver\r\n> lines in the kvm config.\r\n>\r\n> Still no luck...\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2687#issuecomment-3241267917>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH32EGGRGIO4OUMFBJDL3QP3TZAVCNFSM6AAAAACFJKMFJ6VHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZTENBRGI3DOOJRG4>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: Yup restarted all cape services. Sorry about the description. I don't really understand where the bug or misconfiguration is. I have redeployed from scratch for the third time and the same issue persists.\n\nThat is part of the problem, there is no analysis logs in /opt/CAPEv2/storage/analyses/ for the each of the analyzed samples (ie. 1, 2,3 etc.).\n\nHere is a corresponding error in the process.log file specific to the analysis logs missing:\n2025-09-01 07:55:45,911 [Task 11] [lib.cuckoo.common.integrations.virustotal] ERROR: VT: Request failed\n2025-09-01 07:55:46,456 [Task 11] [modules.processing.behavior] WARNING: Analysis results folder does not exist at path \"/opt/CAPEv2/storage/analyses/11/logs\"\n2025-09-01 07:55:46,457 [Task 11] [lib.cuckoo.core.plugins] INFO: Logs folder doesn't exist, maybe something with with analyzer folder, any change?\n2025-09-01 07:55:46,531 [Task 11] [dev_utils.mongodb] INFO: attempting to delete calls for 1 tasks\n2025-09-01 07:55:46,603 [root] INFO: Reports generation completed for Task #11\n\nNo identified errors in cuckoo.log file:\n2025-09-01 07:51:00,457 [lib.cuckoo.core.machinery_manager] INFO: Using MachineryManager[kvm] with max_machines_count=10\n2025-09-01 07:51:00,457 [lib.cuckoo.core.scheduler] INFO: Creating scheduler with max_analysis_count=unlimited\n2025-09-01 07:51:00,469 [lib.cuckoo.core.machinery_manager] INFO: Loaded 1 machine\n2025-09-01 07:51:00,487 [lib.cuckoo.core.machinery_manager] INFO: max_vmstartup_count for BoundedSemaphore = 5\n2025-09-01 07:51:00,488 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks\n2025-09-01 07:51:00,498 [lib.cuckoo.core.machinery_manager] INFO: Task #11: found useable machine win10 (arch=x86, platform=windows)\n2025-09-01 07:51:00,498 [lib.cuckoo.core.scheduler] INFO: Task #11: Processing task\n2025-09-01 07:51:00,622 [lib.cuckoo.core.analysis_manager] INFO: Task #11: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_8xa1_bm7/FileZilla_3.69.3_win.exe'\n2025-09-01 07:51:11,869 [lib.cuckoo.core.analysis_manager] INFO: Task #11: Enabled route 'none'.\n2025-09-01 07:51:11,869 [modules.auxiliary.Mitmdump] INFO: Mitmdump module loaded\n2025-09-01 07:51:11,869 [modules.auxiliary.PolarProxy] INFO: PolarProxy module loaded\n2025-09-01 07:51:11,869 [modules.auxiliary.QemuScreenshots] INFO: QEMU screenshots module loaded\n2025-09-01 07:51:12,273 [lib.cuckoo.core.guest] INFO: Task #11: Starting analysis on guest (id=win10, ip=192.168.100.13)\n2025-09-01 07:51:12,277 [lib.cuckoo.core.guest] INFO: Task #11: Guest is running CAPE Agent 0.20 (id=win10, ip=192.168.100.13)\n2025-09-01 07:51:12,998 [lib.cuckoo.core.guest] INFO: Task #11: Uploading script files to guest (id=win10, ip=192.168.100.13)\n2025-09-01 07:51:14,005 [lib.cuckoo.core.guest] INFO: Task #11: Started capturing screenshots for win10\n2025-09-01 07:55:34,113 [lib.cuckoo.core.guest] INFO: Task #11: End of analysis reached! (id=win10, ip=192.168.100.13)\n2025-09-01 07:55:43,796 [lib.cuckoo.core.analysis_manager] INFO: Task #11: Completed analysis successfully.\n2025-09-01 07:55:43,798 [lib.cuckoo.core.analysis_manager] INFO: Task #11: analysis procedure completed\n\n\nComment: the connection between server and VM works, but i have no idea what is wrong, i guess something inside of the VM as is which send logs. maybe is firewall as was one user case, idk\nComment: Which logs would you like me to send?\n\nCan you link me to the issue where it was the user's firewall? I have confirmed all guest firewalls and Defender is totally disabled.\nComment: in that case user enabled firewall on server side, see this one https://github.com/kevoreilly/CAPEv2/issues/2685\nComment: That was the issue!\n\nThis should be documented in the readthedocs documentation.\n\nUFW was activated and I needed to add a rule to allow in from the virtual interface.\nComment: glad we gave with solution, i will add it to docs, but did you enable it? as by default it comes disabled, is why it not in docs\nComment: Yes, UFW was activated prior to deployment for environment purposes.\n\nThank you again for the help!\nComment: Yaw",
+  "Title: Failed to take screenshot\nBody: \n# Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n- [x] I am running the latest version\n- [x] I did read the README!\n- [x] I checked the documentation and found no answer\n- [x] I checked to make sure that this issue has not already been filed\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [x] I have read and checked all configs (with all optional parts)\n\n# Expected Behavior\n\nScreenshots taken by the agent should appear in the host path `/opt/CAPEv2/storage/analyses/<task>/shots/` after analysis completes.\n\n# Current Behavior\n\nAgent-based screenshots do not appear on the host. The analysis completes successfully, other artifacts are collected, but the `shots` folder on the host remains empty.\n\n# Failure Information (for bugs)\n\nScreenshots are taken successfully inside the VM manually using Python + Pillow (`ImageGrab.grab().save(...)`) but are not transmitted to the host via CAPEv2.\n\n## Steps to Reproduce\n\n1. Configure CAPEv2 with Proxmox machinery.\n2. Enable agent-based screenshots: `screenshots_windows = yes` in `auxiliary.conf`.\n3. Run analysis on a Windows 11 VM with the CAPE agent installed and running.\n4. Let analysis complete.\n5. Check `/opt/CAPEv2/storage/analyses/<task>/shots/` \u2014 it is empty.\n\n\n\n### Configs used\n\n**cuckoo.conf**\n```ini\nmachinery = proxmox\n# Enable screenshots of analysis machines while running.\nmachinery_screenshots = on\n\n**api.conf**\n# Pull screenshots from a specific task.\n[taskscreenshot]\nenabled = yes\nauth_only = no\nrps = 1/s\n#rpm = 100/m\n\n\n**reporting.conf**\n[reporthtml]\n# Standalone report, not requires CAPE webgui\nenabled = no\n# Include screenshots in report\nscreenshots = no\napicalls = no\n\n\n[reporthtmlsummary]\n# much smaller, faster report generation, omits API logs and is non-interactive\nenabled = no\n# Include screenshots in report\nscreenshots = no\n\n**auxiliary.conf**\nscreenshots_windows = yes\nscreenshots_linux = yes\n\n[QemuScreenshots]\n# Enable or disable the use of QEMU as screenshot capture [yes/no].\n# screenshots_linux and screenshots_windows must be disabled\nenabled = no\n\n\n### Failure logs\n\n2025-08-31 10:19:34,812 [lib.cuckoo.core.plugins] DEBUG: Started auxiliary module: Sniffer\n2025-08-31 10:19:34,822 [lib.cuckoo.core.guest] INFO: Task #37: Starting analysis on guest (id=cuckoo1, ip=192.168.10.11)\n2025-08-31 12:25:32,883 [lib.cuckoo.core.analysis_manager] WARNING: Task #39: Failed to take screenshot of Win11-Sandbox:\n2025-08-31 12:25:33,891 [lib.cuckoo.core.analysis_manager] WARNING: Task #39: Failed to take screenshot of Win11-Sandbox:\n2025-08-31 12:25:34,897 [lib.cuckoo.core.analysis_manager] WARNING: Task #39: Failed to take screenshot of Win11-Sandbox:\n2025-08-31 12:25:35,905 [lib.cuckoo.core.analysis_manager] WARNING: Task #39: Failed to take screenshot of Win11-Sandbox:\n2025-08-31 12:25:36,913 [lib.cuckoo.core.analysis_manager] WARNING: Task #39: Failed to take screenshot of Win11-Sandbox:\n2025-08-31 12:25:37,919 [lib.cuckoo.core.analysis_manager] WARNING: Task #39: Failed to take screenshot of Win11-Sandbox:\n2025-08-31 12:25:38,926 [lib.cuckoo.core.analysis_manager] WARNING: Task #39: Failed to take screenshot of Win11-S...\nComment: hey, what is inside of the analysis.log? you can find it on webgui or in analysis folder, storage/analysis/<id>/analysis.log\nComment: \n**This is from one of the completed tasks with no screenshots**\n_/opt/CAPEv2/storage/analyses/24$ cat analysis.log_\n2025-08-24 15:56:33,749 [root] INFO: Date set to: 20250831T06:41:10, timeout set to: 300\n2025-08-31 06:41:10,008 [root] DEBUG: Starting analyzer from: C:\\qstr2giq\n2025-08-31 06:41:10,008 [root] DEBUG: Storing results at: C:\\iyeYqm\n2025-08-31 06:41:10,010 [root] DEBUG: Pipe server name: \\\\.\\PIPE\\NCFmMTalx\n2025-08-31 06:41:10,010 [root] DEBUG: Python path: C:\\Users\\Alex Dan\\AppData\\Local\\Programs\\Python\\Python310-32\n2025-08-31 06:41:10,010 [root] INFO: analysis running as an admin\n2025-08-31 06:41:10,012 [root] INFO: analysis package specified: \"edge\"\n2025-08-31 06:41:10,012 [root] DEBUG: importing analysis package module: \"modules.packages.edge\"...\n2025-08-31 06:41:10,022 [root] DEBUG: imported analysis package \"edge\"\n2025-08-31 06:41:10,022 [root] DEBUG: initializing analysis package \"edge\"...\n2025-08-31 06:41:10,022 [root] DEBUG: New location of moved file: googel.com\n2025-08-31 06:41:10,022 [root] INFO: Analyzer: Package modules.packages.edge does not specify a DLL option\n2025-08-31 06:41:10,022 [root] INFO: Analyzer: Package modules.packages.edge does not specify a DLL_64 option\n2025-08-31 06:41:10,022 [root] INFO: Analyzer: Package modules.packages.edge does not specify a loader option\n2025-08-31 06:41:10,022 [root] INFO: Analyzer: Package modules.packages.edge does not specify a loader_64 option\n2025-08-31 06:41:10,410 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.amsi\"\n2025-08-31 06:41:10,412 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.browser\"\n2025-08-31 06:41:10,414 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.browsermonitor\"\n2025-08-31 06:41:10,418 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.curtain\"\n2025-08-31 06:41:10,426 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.digisig\"\n2025-08-31 06:41:10,432 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.disguise\"\n2025-08-31 06:41:10,436 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.during_script\"\n2025-08-31 06:41:10,442 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.evtx\"\n2025-08-31 06:41:10,462 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.human\"\n2025-08-31 06:41:10,464 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.permissions\"\n2025-08-31 06:41:10,466 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.pre_script\"\n2025-08-31 06:41:10,468 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.procmon\"\n2025-08-31 06:41:10,472 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.recentfiles\"\n2025-08-31 06:41:10,476 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageChops'\n2025-08-31 06:41:10,719 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageGrab'\n2025-08-31 06:41:10,729 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageDraw'\n2025-08-31 06:41:10,762 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.screenshots\"\n2025-08-31 06:41:10,764 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.sysmon\"\n2025-08-31 06:41:10,770 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.tlsdump\"\n2025-08-31 06:41:10,772 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.usage\"\n2025-08-31 06:41:10,772 [root] DEBUG: Initialized auxiliary module \"Browser\"\n2025-08-31 06:41:10,774 [root] DEBUG: attempting to configure 'Browser' from data\n2025-08-31 06:41:10,774 [root] DEBUG: module Browser does not support data configuration, ignoring\n2025-08-31 06:41:10,774 [root] DEBUG: Trying to start auxiliary module \"modules.auxiliary.browser\"...\n2025-08-31 06:41:10,776 [root] DEBUG: Started auxiliary module modules.auxiliary.browser\n2025-08-31 06:41:10,776 [root] DEBUG: Initialized auxiliary module \"Browsermonitor\"\n2025-08-31 06:41:10,776 [root] DEBUG: attempting to configure 'Browsermonitor' from data\n2025-08-31 06:41:10,776 [root] DEBUG: module Browsermonitor does not support data configuration, ignoring\n2025-08-31 06:41:10,776 [root] DEBUG: Trying to start auxiliary module \"modules.auxiliary.browsermonitor\"...\n2025-08-31 06:41:10,776 [root] DEBUG: Started auxiliary module modules.auxiliary.browsermonitor\n2025-08-31 06:41:10,776 [root] DEBUG: Initialized auxiliary module \"Curtain\"\n2025-08-31 06:41:10,776 [root] DEBUG: attempting to configure 'Curtain' from data\n2025-08-31 06:41:10,778 [root] DEBUG: module Curtain does not support data configuration, ignoring\n2025-08-31 06:41:10,778 [root] DEBUG: Trying to start auxiliary module \"modules.auxiliary.curtain\"...\n2025-08-31 06:41:10,778 [root] DEBUG: Started auxiliary module modules.auxiliary.curtain\n2025-08-31 06:41:10,778 [root] DEBUG: Initialized auxiliary module \"DigiSig\"\n2025-08-31 06:41:10,778 [root] DEBUG: attempting to configure 'DigiSig' from data\n2025-08-31 06:41:10,778 [root] DEBUG: module DigiSig does not support data configuration, ignoring\n2025-08-31 06:41:10,780 [root] DEBUG: Trying to start auxiliary module \"modules.auxiliary.digisig\"...\n2025-08-31 06:41:10,780 [modules.auxiliary.digisig] DEBUG: Skipping authenticode validation, analysis is not a file\n2025-08-31 06:41:10,780 [root] DEBUG: Started auxiliary module modules.auxiliary.digisig\n2025-08-31 06:41:10,780 [root] DEBUG: Initialized auxiliary module \"Disguise\"\n2025-08-31 06:41:10,780 [root] DEBUG: attempting to configure 'Disguise' from data\n2025-08-31 06:41:10,780 [root] DEBUG: module Disguise does not support data configuration, ignoring\n2025-08-31 06:41:10,780 [root] DEBUG: Trying to start auxiliary module \"modules.auxiliary.disguise\"...\n2025-08-31 06:41:10,786 [modules.auxiliary.disguise] INFO: Disguising GUID to 6a0a719b-2477-466f-a34f-a6f77313575d\n2025-08-31 06:41:10,786 [root] DEBUG: Started auxiliary module modules.auxiliary.disguise\n2025-08-31 06:41:10,786 [root] DEBUG: Initialized auxiliary module \"Evtx\"\n2025-08-31 06:41:10,786 [root] DEBUG: attempting to configure 'Evtx' from data\n2025-08-31 06:41:10,788 [root] DEBUG: module Evtx does not support data configuration, ignoring\n2025-08-31 06:41:10,788 [root] DEBUG: Trying to start auxiliary module \"modules.auxiliary.evtx\"...\n2025-08-31 06:41:10,788 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Security State Change\" /success:enable /failure:enable\n2025-08-31 06:41:10,788 [root] DEBUG: Started auxiliary module modules.auxiliary.evtx\n2025-08-31 06:41:10,788 [root] DEBUG: Initialized auxiliary module \"Human\"\n2025-08-31 06:41:10,788 [root] DEBUG: attempting to configure 'Human' from data\n2025-08-31 06:41:10,788 [root] DEBUG: module Human does not support data configuration, ignoring\n2025-08-31 06:41:10,788 [root] DEBUG: Trying to start auxiliary module \"modules.auxiliary.human\"...\n2025-08-31 06:41:10,792 [root] DEBUG: Started auxiliary module modules.auxiliary.human\n2025-08-31 06:41:10,792 [root] DEBUG: Initialized auxiliary module \"Permissions\"\n2025-08-31 06:41:10,792 [root] DEBUG: attempting to configure 'Permissions' from data\n2025-08-31 06:41:10,792 [root] DEBUG: module Permissions does not support data configuration, ignoring\n2025-08-31 06:41:10,792 [root] DEBUG: Trying to start auxiliary module \"modules.auxiliary.permissions\"...\n2025-08-31 06:41:10,792 [root] DEBUG: Started auxiliary module modules.auxiliary.permissions\n2025-08-31 06:41:10,802 [root] DEBUG: Initialized auxiliary module \"Pre_script\"\n2025-08-31 06:41:10,802 [root] DEBUG: attempting to configure 'Pre_script' from data\n2025-08-31 06:41:10,802 [root] DEBUG: module Pre_script does not support data configuration, ignoring\n2025-08-31 06:41:10,804 [root] DEBUG: Trying to start auxiliary module \"modules.auxiliary.pre_script\"...\n2025-08-31 06:41:10,804 [root] DEBUG: Started auxiliary module modules.auxiliary.pre_script\n2025-08-31 06:41:10,804 [root] DEBUG: Initialized auxiliary module \"Procmon\"\n2025-08-31 06:41:10,804 [root] DEBUG: attempting to configure 'Procmon' from data\n2025-08-31 06:41:10,804 [root] DEBUG: module Procmon does not support data configuration, ignoring\n2025-08-31 06:41:10,804 [root] DEBUG: Trying to start auxiliary module \"modules.auxiliary.procmon\"...\n2025-08-31 06:41:10,806 [root] DEBUG: Started auxiliary module modules.auxiliary.procmon\n2025-08-31 06:41:10,808 [root] DEBUG: Initialized auxiliary module \"RecentFiles\"\n2025-08-31 06:41:10,808 [root] DEBUG: attempting to configure 'RecentFiles' from data\n2025-08-31 06:41:10,808 [root] DEBUG: module RecentFiles does not support data configuration, ignoring\n2025-08-31 06:41:10,808 [root] DEBUG: Trying to start auxiliary module \"modules.auxiliary.recentfiles\"...\n2025-08-31 06:41:10,820 [modules.auxiliary.recentfiles] DEBUG: Wrote 'recentfile' C:\\Users\\Alex Dan\\Documents\\iLHlelGDGzB.ppt to disk.\n2025-08-31 06:41:10,927 [modules.auxiliary.recentfiles] DEBUG: Wrote 'recentfile' C:\\Users\\Alex Dan\\Documents\\rdDNWUsERFuDFF.doc to disk.\n2025-08-31 06:41:10,931 [modules.auxiliary.recentfiles] DEBUG: Wrote 'recentfile' C:\\Users\\Alex Dan\\Documents\\pqfIjvIxtzEpD.ppt to disk.\n2025-08-31 06:41:10,933 [modules.auxiliary.recentfiles] DEBUG: Wrote 'recentfile' C:\\Users\\Alex Dan\\Documents\\PEbfdOrvYLeqDiOsmRHB.pptx to disk.\n2025-08-31 06:41:10,941 [modules.auxiliary.recentfiles] DEBUG: Wrote 'recentfile' C:\\Users\\Alex Dan\\Documents\\UEgjIgGqNH.docx to disk.\n2025-08-31 06:41:10,945 [modules.auxiliary.recentfiles] DEBUG: Wrote 'recentfile' C:\\Users\\Alex Dan\\Documents\\eYejiZKBcmZJ.ppt to disk.\n2025-08-31 06:41:10,949 [modules.auxiliary.recentfiles] DEBUG: Wrote 'recentfile' C:\\Users\\Alex Dan\\Documents\\WzsXuOpiUP.docx to disk.\n2025-08-31 06:41:10,953 [modules.auxiliary.recentfiles] DEBUG: Wrote 'recentfile' C:\\Users\\Alex Dan\\Documents\\CpINuvQyTqQ.docm to disk.\n2025-08-31 06:41:10,956 [modules.auxiliary.recentfiles] DEBUG: Wrote 'recentfile' C:\\Users\\Alex Dan\\Documents\\lrUcDqVdwLiHX.ppt to disk.\n2025-08-31 06:41:10,956 [root] DEBUG: Started auxiliary module modules.auxiliary.recentfiles\n2025-08-31 06:41:10,958 [root] DEBUG: Initialized auxiliary module \"Screenshots\"\n2025-08-31 06:41:10,958 [root] DEBUG: attempting to configure 'Screenshots' from data\n2025-08-31 06:41:10,958 [root] DEBUG: module Screenshots does not support data configuration, ignoring\n2025-08-31 06:41:10,958 [root] DEBUG: Trying to start auxiliary module \"modules.auxiliary.screenshots\"...\n2025-08-31 06:41:10,958 [root] DEBUG: Started auxiliary module modules.auxiliary.screenshots\n2025-08-31 06:41:10,958 [root] DEBUG: Initialized auxiliary module \"Sysmon\"\n2025-08-31 06:41:10,958 [root] DEBUG: attempting to configure 'Sysmon' from data\n2025-08-31 06:41:10,958 [root] DEBUG: module Sysmon does not support data configuration, ignoring\n2025-08-31 06:41:10,958 [root] DEBUG: Trying to start auxiliary module \"modules.auxiliary.sysmon\"...\n2025-08-31 06:41:10,988 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Security System Extension\" /success:enable /failure:enable\n2025-08-31 06:41:11,200 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"System Integrity\" /success:enable /failure:enable\n2025-08-31 06:41:11,273 [root] WARNING: Cannot execute auxiliary module modules.auxiliary.sysmon: In order to use the Sysmon functionality, it is required to have the SMaster(64|32).exe file and sysmonconfig-export.xml file in the bin path. Note that the SMaster(64|32).exe files are just the standard Sysmon binaries renamed to avoid anti-analysis detection techniques.\n2025-08-31 06:41:11,273 [root] DEBUG: Initialized auxiliary module \"TLSDumpMasterSecrets\"\n2025-08-31 06:41:11,273 [root] DEBUG: attempting to configure 'TLSDumpMasterSecrets' from data\n2025-08-31 06:41:11,273 [root] DEBUG: module TLSDumpMasterSecrets does not support data configuration, ignoring\n2025-08-31 06:41:11,273 [root] DEBUG: Trying to start auxiliary module \"modules.auxiliary.tlsdump\"...\n2025-08-31 06:41:11,277 [modules.auxiliary.tlsdump] INFO: lsass.exe found, pid 524\n2025-08-31 06:41:11,283 [lib.api.process] INFO: Monitor config for <Process 524 lsass.exe>: C:\\qstr2giq\\dll\\524.ini\n2025-08-31 06:41:11,325 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"IPsec Driver\" /success:disable /failure:disable\n2025-08-31 06:41:11,414 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Other System Events\" /success:disable /failure:enable\n2025-08-31 06:41:11,511 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Logon\" /success:enable /failure:enable\n2025-08-31 06:41:11,596 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Logoff\" /success:enable /failure:enable\n2025-08-31 06:41:11,766 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Account Lockout\" /success:enable /failure:enable\n2025-08-31 06:41:11,840 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"IPsec Main Mode\" /success:disable /failure:disable\n2025-08-31 06:41:12,089 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"IPsec Quick Mode\" /success:disable /failure:disable\n2025-08-31 06:41:12,160 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"IPsec Extended Mode\" /success:disable /failure:disable\n2025-08-31 06:41:12,239 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Other Logon/Logoff Events\" /success:enable /failure:enable\n2025-08-31 06:41:12,293 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:41:12,293 [lib.api.process] INFO: Option 'tlsdump' with value '1' sent to monitor\n2025-08-31 06:41:12,297 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:41:12,320 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Network Policy Server\" /success:enable /failure:enable\n2025-08-31 06:41:12,386 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Special Logon\" /success:enable /failure:enable\n2025-08-31 06:41:12,451 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"File System\" /success:enable /failure:enable\n2025-08-31 06:41:12,481 [root] DEBUG: Loader: Injecting process 524 with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:12,483 [root] DEBUG: Loader: Copied config file C:\\qstr2giq\\dll\\524.ini to system path C:\\524.ini\n2025-08-31 06:41:12,485 [root] DEBUG: Loader: Failed to open process, PPLinject launch failed\n2025-08-31 06:41:12,485 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:12,491 [root] DEBUG: Started auxiliary module modules.auxiliary.tlsdump\n2025-08-31 06:41:12,491 [root] DEBUG: Initialized auxiliary module \"Usage\"\n2025-08-31 06:41:12,491 [root] DEBUG: attempting to configure 'Usage' from data\n2025-08-31 06:41:12,491 [root] DEBUG: module Usage does not support data configuration, ignoring\n2025-08-31 06:41:12,491 [root] DEBUG: Trying to start auxiliary module \"modules.auxiliary.usage\"...\n2025-08-31 06:41:12,491 [root] DEBUG: Started auxiliary module modules.auxiliary.usage\n2025-08-31 06:41:12,495 [root] DEBUG: Initialized auxiliary module \"During_script\"\n2025-08-31 06:41:12,495 [root] DEBUG: attempting to configure 'During_script' from data\n2025-08-31 06:41:12,495 [root] DEBUG: module During_script does not support data configuration, ignoring\n2025-08-31 06:41:12,495 [root] DEBUG: Trying to start auxiliary module \"modules.auxiliary.during_script\"...\n2025-08-31 06:41:12,497 [root] DEBUG: Started auxiliary module modules.auxiliary.during_script\n2025-08-31 06:41:12,497 [root] INFO: Interactive mode enabled - injecting into explorer shell\n2025-08-31 06:41:12,499 [lib.api.process] INFO: Monitor config for <Process 4840 explorer.exe>: C:\\qstr2giq\\dll\\4840.ini\n2025-08-31 06:41:12,499 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:41:12,501 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:41:12,527 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Registry\" /success:enable /failure:enable\n2025-08-31 06:41:12,552 [root] DEBUG: Loader: Injecting process 4840 with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:12,594 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Kernel Object\" /success:enable /failure:enable\n2025-08-31 06:41:12,658 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"SAM\" /success:disable /failure:disable\n2025-08-31 06:41:12,751 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Certification Services\" /success:enable /failure:enable\n2025-08-31 06:41:12,812 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Handle Manipulation\" /success:disable /failure:disable\n2025-08-31 06:41:12,868 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Application Generated\" /success:enable /failure:enable\n2025-08-31 06:41:12,923 [root] DEBUG: 4840: Python path set to 'C:\\Users\\Alex Dan\\AppData\\Local\\Programs\\Python\\Python310-32'.\n2025-08-31 06:41:12,923 [root] DEBUG: 4840: Disabling sleep skipping.\n2025-08-31 06:41:12,925 [root] DEBUG: 4840: Interactive desktop enabled.\n2025-08-31 06:41:12,925 [root] DEBUG: 4840: Dropped file limit defaulting to 100.\n2025-08-31 06:41:12,925 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"File Share\" /success:enable /failure:enable\n2025-08-31 06:41:12,925 [root] DEBUG: 4840: Interactive desktop - injecting Explorer Shell\n2025-08-31 06:41:12,937 [root] DEBUG: 4840: YaraInit: Compiled 42 rule files\n2025-08-31 06:41:12,939 [root] DEBUG: 4840: YaraInit: Compiled rules saved to file C:\\qstr2giq\\data\\yara\\capemon.yac\n2025-08-31 06:41:12,959 [root] DEBUG: 4840: YaraScan: Scanning 0x00007FF731FE0000, size 0x2a2000\n2025-08-31 06:41:12,977 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Filtering Platform Packet Drop\" /success:disable /failure:disable\n2025-08-31 06:41:12,984 [root] DEBUG: 4840: Monitor initialised: 64-bit capemon loaded in process 4840 at 0x00007FFB53590000, thread 2820, image base 0x00007FF731FE0000, stack from 0x00000000056F2000-0x0000000005700000\n2025-08-31 06:41:12,984 [root] DEBUG: 4840: Commandline: C:\\WINDOWS\\Explorer.EXE\n2025-08-31 06:41:12,986 [root] DEBUG: 4840: add_all_dlls_to_dll_ranges: skipping C:\\WINDOWS\\pyshellext.\n2025-08-31 06:41:13,026 [root] DEBUG: 4840: Hooked 69 out of 69 functions\n2025-08-31 06:41:13,026 [root] DEBUG: 4840: Syscall hook installed, syscall logging level 1\n2025-08-31 06:41:13,030 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Filtering Platform Connection\" /success:disable /failure:disable\n2025-08-31 06:41:13,040 [root] DEBUG: 4840: DLL loaded at 0x00007FFB7E4A0000: C:\\WINDOWS\\SYSTEM32\\Cabinet (0x2a000 bytes).\n2025-08-31 06:41:13,050 [root] DEBUG: InjectDllViaThread: Successfully injected Dll into process via RtlCreateUserThread.\n2025-08-31 06:41:13,052 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:13,054 [lib.api.process] INFO: Injected into 64-bit <Process 4840 explorer.exe>\n2025-08-31 06:41:13,057 [root] DEBUG: 4840: AllocationHandler: Adding allocation to tracked region list: 0x00007FF5E7E21000, size: 0x1000.\n2025-08-31 06:41:13,059 [root] DEBUG: 4840: AllocationHandler: Adding allocation to tracked region list: 0x00007FF5E7E11000, size: 0x1000.\n2025-08-31 06:41:13,061 [root] DEBUG: 4840: AllocationHandler: Adding allocation to tracked region list: 0x00007FF5E7E01000, size: 0x1000.\n2025-08-31 06:41:13,068 [root] DEBUG: 4840: AllocationHandler: Adding allocation to tracked region list: 0x00007FF5E7DF1000, size: 0x3000.\n2025-08-31 06:41:13,070 [root] DEBUG: 4840: AllocationHandler: Adding allocation to tracked region list: 0x00007FF5E7DE1000, size: 0x1000.\n2025-08-31 06:41:13,072 [root] DEBUG: 4840: AllocationHandler: Adding allocation to tracked region list: 0x00007FF5E7DD1000, size: 0x1000.\n2025-08-31 06:41:13,074 [root] DEBUG: 4840: AllocationHandler: Adding allocation to tracked region list: 0x00007FF5E7DC1000, size: 0x1000.\n2025-08-31 06:41:13,076 [root] DEBUG: 4840: AllocationHandler: Adding allocation to tracked region list: 0x00007FF5E7DB1000, size: 0x1000.\n2025-08-31 06:41:13,078 [root] DEBUG: 4840: AllocationHandler: Adding allocation to tracked region list: 0x00007FF5E7DA1000, size: 0x1000.\n2025-08-31 06:41:13,078 [root] DEBUG: 4840: AllocationHandler: Adding allocation to tracked region list: 0x00007FF5E7D91000, size: 0x1000.\n2025-08-31 06:41:13,088 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Other Object Access Events\" /success:disable /failure:disable\n2025-08-31 06:41:13,097 [root] DEBUG: 4840: AllocationHandler: Adding allocation to tracked region list: 0x00007FF5E7D81000, size: 0x1000.\n2025-08-31 06:41:13,153 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Sensitive Privilege Use\" /success:disable /failure:disable\n2025-08-31 06:41:13,210 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Non Sensitive Privilege Use\" /success:disable /failure:disable\n2025-08-31 06:41:13,263 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Other Privilege Use Events\" /success:disable /failure:disable\n2025-08-31 06:41:13,333 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"RPC Events\" /success:enable /failure:enable\n2025-08-31 06:41:13,390 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Audit Policy Change\" /success:enable /failure:enable\n2025-08-31 06:41:13,448 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Authentication Policy Change\" /success:enable /failure:enable\n2025-08-31 06:41:13,527 [root] DEBUG: 4840: caller_dispatch: Added region at 0x00007FF731FE0000 to tracked regions list (combase::CoCreateInstance returns to 0x00007FF731FE53EA, thread 4324).\n2025-08-31 06:41:13,549 [root] DEBUG: 4840: YaraScan: Scanning 0x00007FF731FE0000, size 0x2a2000\n2025-08-31 06:41:13,553 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"MPSSVC Rule-Level Policy Change\" /success:disable /failure:disable\n2025-08-31 06:41:13,578 [root] DEBUG: 4840: ProcessImageBase: Main module image at 0x00007FF731FE0000 unmodified (entropy change 0.000000e+00)\n2025-08-31 06:41:13,658 [lib.api.process] INFO: Monitor config for <Process 1112 svchost.exe>: C:\\qstr2giq\\dll\\1112.ini\n2025-08-31 06:41:13,667 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:41:13,687 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:41:13,838 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Filtering Platform Policy Change\" /success:disable /failure:disable\n2025-08-31 06:41:13,885 [root] DEBUG: Loader: Injecting process 1112 with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:13,952 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Other Policy Change Events\" /success:disable /failure:enable\n2025-08-31 06:41:14,146 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"User Account Management\" /success:enable /failure:enable\n2025-08-31 06:41:14,213 [root] DEBUG: 1112: Python path set to 'C:\\Users\\Alex Dan\\AppData\\Local\\Programs\\Python\\Python310-32'.\n2025-08-31 06:41:14,213 [root] DEBUG: 1112: Disabling sleep skipping.\n2025-08-31 06:41:14,215 [root] DEBUG: 1112: Interactive desktop enabled.\n2025-08-31 06:41:14,217 [root] DEBUG: 1112: Dropped file limit defaulting to 100.\n2025-08-31 06:41:14,219 [root] DEBUG: 1112: Services hook set enabled\n2025-08-31 06:41:14,235 [root] DEBUG: 1112: YaraInit: Compiled rules loaded from existing file C:\\qstr2giq\\data\\yara\\capemon.yac\n2025-08-31 06:41:14,275 [root] DEBUG: 1112: Monitor initialised: 64-bit capemon loaded in process 1112 at 0x00007FFB53590000, thread 10128, image base 0x00007FF6E25C0000, stack from 0x00000073893F5000-0x0000007389400000\n2025-08-31 06:41:14,277 [root] DEBUG: 1112: Commandline: C:\\WINDOWS\\system32\\svchost.exe -k DcomLaunch -p\n2025-08-31 06:41:14,300 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Computer Account Management\" /success:enable /failure:enable\n2025-08-31 06:41:14,336 [root] DEBUG: 1112: Hooked 69 out of 69 functions\n2025-08-31 06:41:14,338 [root] INFO: Loaded monitor into process with pid 1112\n2025-08-31 06:41:14,338 [root] DEBUG: InjectDllViaThread: Successfully injected Dll into process via RtlCreateUserThread.\n2025-08-31 06:41:14,340 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:14,376 [lib.api.process] INFO: Injected into 64-bit <Process 1112 svchost.exe>\n2025-08-31 06:41:14,464 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Security Group Management\" /success:enable /failure:enable\n2025-08-31 06:41:14,609 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Distribution Group Management\" /success:enable /failure:enable\n2025-08-31 06:41:14,704 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Application Group Management\" /success:enable /failure:enable\n2025-08-31 06:41:14,870 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Other Account Management Events\" /success:enable /failure:enable\n2025-08-31 06:41:14,985 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Directory Service Access\" /success:enable /failure:enable\n2025-08-31 06:41:15,086 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Directory Service Changes\" /success:enable /failure:enable\n2025-08-31 06:41:15,183 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Directory Service Replication\" /success:disable /failure:enable\n2025-08-31 06:41:15,268 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Detailed Directory Service Replication\" /success:disable /failure:disable\n2025-08-31 06:41:15,351 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Credential Validation\" /success:enable /failure:enable\n2025-08-31 06:41:15,478 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Kerberos Service Ticket Operations\" /success:enable /failure:enable\n2025-08-31 06:41:15,571 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Other Account Logon Events\" /success:enable /failure:enable\n2025-08-31 06:41:15,669 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Kerberos Authentication Service\" /success:enable /failure:enable\n2025-08-31 06:41:15,788 [modules.auxiliary.evtx] DEBUG: Wiping Application\n2025-08-31 06:41:15,905 [modules.auxiliary.evtx] DEBUG: Wiping HardwareEvents\n2025-08-31 06:41:16,020 [modules.auxiliary.evtx] DEBUG: Wiping Internet Explorer\n2025-08-31 06:41:16,119 [modules.auxiliary.evtx] DEBUG: Wiping Key Management Service\n2025-08-31 06:41:16,226 [modules.auxiliary.evtx] DEBUG: Wiping OAlerts\n2025-08-31 06:41:16,354 [modules.auxiliary.evtx] DEBUG: Wiping Security\n2025-08-31 06:41:16,485 [modules.auxiliary.evtx] DEBUG: Wiping Setup\n2025-08-31 06:41:16,663 [modules.auxiliary.evtx] DEBUG: Wiping System\n2025-08-31 06:41:16,772 [modules.auxiliary.evtx] DEBUG: Wiping Windows PowerShell\n2025-08-31 06:41:16,898 [modules.auxiliary.evtx] DEBUG: Wiping Microsoft-Windows-Sysmon/Operational\n2025-08-31 06:41:19,941 [root] DEBUG: 1112: CreateProcessHandler: Injection info set for new process 8972: C:\\WINDOWS\\system32\\BackgroundTaskHost.exe, ImageBase: 0x00007FF77A6A0000\n2025-08-31 06:41:19,943 [root] INFO: Announced 64-bit process name: backgroundTaskHost.exe pid: 8972\n2025-08-31 06:41:19,943 [lib.api.process] INFO: Monitor config for <Process 8972 backgroundTaskHost.exe>: C:\\qstr2giq\\dll\\8972.ini\n2025-08-31 06:41:20,014 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:41:20,020 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:41:20,065 [root] DEBUG: Loader: Injecting process 8972 (thread 6536) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:20,068 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\n2025-08-31 06:41:20,068 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:20,073 [lib.api.process] INFO: Injected into 64-bit <Process 8972 backgroundTaskHost.exe>\n2025-08-31 06:41:20,082 [root] INFO: Announced 64-bit process name: backgroundTaskHost.exe pid: 8972\n2025-08-31 06:41:20,082 [lib.api.process] INFO: Monitor config for <Process 8972 backgroundTaskHost.exe>: C:\\qstr2giq\\dll\\8972.ini\n2025-08-31 06:41:20,082 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:41:20,088 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:41:20,105 [root] DEBUG: Loader: Injecting process 8972 (thread 6536) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:20,107 [root] DEBUG: InjectDllViaIAT: This image has already been patched.\n2025-08-31 06:41:20,107 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:20,111 [lib.api.process] INFO: Injected into 64-bit <Process 8972 backgroundTaskHost.exe>\n2025-08-31 06:41:21,346 [root] DEBUG: 1112: CreateProcessHandler: Injection info set for new process 9832: C:\\Windows\\System32\\RuntimeBroker.exe, ImageBase: 0x00007FF788F90000\n2025-08-31 06:41:21,346 [root] INFO: Announced 64-bit process name: RuntimeBroker.exe pid: 9832\n2025-08-31 06:41:21,348 [lib.api.process] INFO: Monitor config for <Process 9832 RuntimeBroker.exe>: C:\\qstr2giq\\dll\\9832.ini\n2025-08-31 06:41:21,350 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:41:21,356 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:41:21,387 [root] DEBUG: Loader: Injecting process 9832 (thread 5212) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:21,387 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\n2025-08-31 06:41:21,389 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:21,393 [lib.api.process] INFO: Injected into 64-bit <Process 9832 RuntimeBroker.exe>\n2025-08-31 06:41:21,397 [root] INFO: Announced 64-bit process name: RuntimeBroker.exe pid: 9832\n2025-08-31 06:41:21,399 [lib.api.process] INFO: Monitor config for <Process 9832 RuntimeBroker.exe>: C:\\qstr2giq\\dll\\9832.ini\n2025-08-31 06:41:21,399 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:41:21,403 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:41:21,423 [root] DEBUG: Loader: Injecting process 9832 (thread 5212) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:21,425 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\n2025-08-31 06:41:21,425 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:21,429 [lib.api.process] INFO: Injected into 64-bit <Process 9832 RuntimeBroker.exe>\n2025-08-31 06:41:21,464 [root] DEBUG: 9832: Python path set to 'C:\\Users\\Alex Dan\\AppData\\Local\\Programs\\Python\\Python310-32'.\n2025-08-31 06:41:21,464 [root] DEBUG: 9832: Interactive desktop enabled.\n2025-08-31 06:41:21,466 [root] DEBUG: 9832: Dropped file limit defaulting to 100.\n2025-08-31 06:41:21,472 [root] DEBUG: 9832: Disabling sleep skipping.\n2025-08-31 06:41:21,474 [root] DEBUG: 9832: YaraInit: Compiled rules loaded from existing file C:\\qstr2giq\\data\\yara\\capemon.yac\n2025-08-31 06:41:21,492 [root] DEBUG: 9832: YaraScan: Scanning 0x00007FF788F90000, size 0x20000\n2025-08-31 06:41:21,494 [root] DEBUG: 9832: Monitor initialised: 64-bit capemon loaded in process 9832 at 0x00007FFB53590000, thread 5212, image base 0x00007FF788F90000, stack from 0x00000014ABF34000-0x00000014ABF40000\n2025-08-31 06:41:21,496 [root] DEBUG: 9832: Commandline: C:\\Windows\\System32\\RuntimeBroker.exe -Embedding\n2025-08-31 06:41:21,524 [root] DEBUG: 9832: hook_api: LdrpCallInitRoutine export address 0x00007FFB9ED72980 obtained via GetFunctionAddress\n2025-08-31 06:41:21,587 [root] WARNING: b'Unable to place hook on LockResource'\n2025-08-31 06:41:21,587 [root] DEBUG: 9832: set_hooks: Unable to hook LockResource\n2025-08-31 06:41:21,611 [root] DEBUG: 9832: Hooked 616 out of 617 functions\n2025-08-31 06:41:21,613 [root] DEBUG: 9832: Syscall hook installed, syscall logging level 1\n2025-08-31 06:41:21,617 [root] INFO: Loaded monitor into process with pid 9832\n2025-08-31 06:41:21,621 [root] DEBUG: 9832: caller_dispatch: Added region at 0x00007FF788F90000 to tracked regions list (ntdll::NtSetInformationThread returns to 0x00007FF788F990F2, thread 5212).\n2025-08-31 06:41:21,623 [root] DEBUG: 9832: YaraScan: Scanning 0x00007FF788F90000, size 0x20000\n2025-08-31 06:41:21,625 [root] DEBUG: 9832: ProcessImageBase: Main module image at 0x00007FF788F90000 unmodified (entropy change 0.000000e+00)\n2025-08-31 06:41:21,844 [root] INFO: Announced starting service \"b'Winmgmt'\"\n2025-08-31 06:41:21,846 [lib.api.process] INFO: Monitor config for <Process 708 services.exe>: C:\\qstr2giq\\dll\\708.ini\n2025-08-31 06:41:21,848 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:41:21,854 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:41:21,886 [root] DEBUG: Loader: Injecting process 708 with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:21,890 [root] DEBUG: Loader: Copied config file C:\\qstr2giq\\dll\\708.ini to system path C:\\708.ini\n2025-08-31 06:41:21,937 [root] DEBUG: Loader: Failed to open process, PPLinject launch failed\n2025-08-31 06:41:21,937 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:22,080 [root] DEBUG: 1112: CreateProcessHandler: Injection info set for new process 1160: \\\\?\\C:\\Windows\\System32\\SecurityHealthHost.exe, ImageBase: 0x00007FF63CDC0000\n2025-08-31 06:41:22,082 [root] INFO: Announced 64-bit process name: SecurityHealthHost.exe pid: 1160\n2025-08-31 06:41:22,084 [lib.api.process] INFO: Monitor config for <Process 1160 SecurityHealthHost.exe>: C:\\qstr2giq\\dll\\1160.ini\n2025-08-31 06:41:22,091 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:41:22,097 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:41:22,135 [root] DEBUG: Loader: Injecting process 1160 (thread 1164) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:22,145 [root] DEBUG: InjectDllViaIAT: Failed to allocate region in target process for new import table.\n2025-08-31 06:41:22,147 [root] DEBUG: Error 5 (0x5) - InjectDllViaQueuedAPC: Failed to allocate buffer in target: Access is denied.\n2025-08-31 06:41:22,149 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:22,161 [root] INFO: Announced 64-bit process name: SecurityHealthHost.exe pid: 1160\n2025-08-31 06:41:22,161 [lib.api.process] INFO: Monitor config for <Process 1160 SecurityHealthHost.exe>: C:\\qstr2giq\\dll\\1160.ini\n2025-08-31 06:41:22,163 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:41:22,168 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:41:22,206 [root] DEBUG: Loader: Injecting process 1160 (thread 1164) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:22,218 [root] DEBUG: InjectDllViaIAT: Failed to allocate region in target process for new import table.\n2025-08-31 06:41:22,220 [root] DEBUG: Error 5 (0x5) - InjectDllViaQueuedAPC: Failed to allocate buffer in target: Access is denied.\n2025-08-31 06:41:22,220 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:22,846 [root] DEBUG: 1112: CreateProcessHandler: Injection info set for new process 4188: C:\\WINDOWS\\system32\\backgroundTaskHost.exe, ImageBase: 0x00007FF77A6A0000\n2025-08-31 06:41:22,848 [root] INFO: Announced 64-bit process name: backgroundTaskHost.exe pid: 4188\n2025-08-31 06:41:22,850 [lib.api.process] INFO: Monitor config for <Process 4188 backgroundTaskHost.exe>: C:\\qstr2giq\\dll\\4188.ini\n2025-08-31 06:41:22,850 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:41:22,856 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:41:22,898 [root] DEBUG: Loader: Injecting process 4188 (thread 7080) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:22,900 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\n2025-08-31 06:41:22,904 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:22,914 [lib.api.process] INFO: Injected into 64-bit <Process 4188 backgroundTaskHost.exe>\n2025-08-31 06:41:22,922 [root] INFO: Announced 64-bit process name: backgroundTaskHost.exe pid: 4188\n2025-08-31 06:41:22,924 [lib.api.process] INFO: Monitor config for <Process 4188 backgroundTaskHost.exe>: C:\\qstr2giq\\dll\\4188.ini\n2025-08-31 06:41:22,924 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:41:22,931 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:41:22,955 [root] DEBUG: Loader: Injecting process 4188 (thread 7080) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:22,957 [root] DEBUG: InjectDllViaIAT: This image has already been patched.\n2025-08-31 06:41:22,957 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:22,963 [lib.api.process] INFO: Injected into 64-bit <Process 4188 backgroundTaskHost.exe>\n2025-08-31 06:41:23,441 [root] INFO: Restarting WMI Service\n2025-08-31 06:41:23,695 [root] DEBUG: 1112: CreateProcessHandler: Injection info set for new process 3904: C:\\WINDOWS\\system32\\backgroundTaskHost.exe, ImageBase: 0x00007FF77A6A0000\n2025-08-31 06:41:23,695 [root] INFO: Announced 64-bit process name: backgroundTaskHost.exe pid: 3904\n2025-08-31 06:41:23,695 [lib.api.process] INFO: Monitor config for <Process 3904 backgroundTaskHost.exe>: C:\\qstr2giq\\dll\\3904.ini\n2025-08-31 06:41:23,697 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:41:23,705 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:41:23,725 [root] DEBUG: Loader: Injecting process 3904 (thread 3616) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:23,727 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\n2025-08-31 06:41:23,727 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:23,731 [lib.api.process] INFO: Injected into 64-bit <Process 3904 backgroundTaskHost.exe>\n2025-08-31 06:41:23,736 [root] INFO: Announced 64-bit process name: backgroundTaskHost.exe pid: 3904\n2025-08-31 06:41:23,738 [lib.api.process] INFO: Monitor config for <Process 3904 backgroundTaskHost.exe>: C:\\qstr2giq\\dll\\3904.ini\n2025-08-31 06:41:23,738 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:41:23,745 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:41:23,762 [root] DEBUG: Loader: Injecting process 3904 (thread 3616) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:23,762 [root] DEBUG: InjectDllViaIAT: This image has already been patched.\n2025-08-31 06:41:23,762 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:23,766 [lib.api.process] INFO: Injected into 64-bit <Process 3904 backgroundTaskHost.exe>\n2025-08-31 06:41:23,790 [root] DEBUG: 3904: Python path set to 'C:\\Users\\Alex Dan\\AppData\\Local\\Programs\\Python\\Python310-32'.\n2025-08-31 06:41:23,792 [root] DEBUG: 3904: Interactive desktop enabled.\n2025-08-31 06:41:23,792 [root] DEBUG: 3904: Dropped file limit defaulting to 100.\n2025-08-31 06:41:23,798 [root] DEBUG: 3904: Disabling sleep skipping.\n2025-08-31 06:41:23,800 [root] DEBUG: 3904: YaraInit: Compiled rules loaded from existing file C:\\qstr2giq\\data\\yara\\capemon.yac\n2025-08-31 06:41:23,818 [root] DEBUG: 3904: YaraScan: Scanning 0x00007FF77A6A0000, size 0xb000\n2025-08-31 06:41:23,818 [root] DEBUG: 3904: Monitor initialised: 64-bit capemon loaded in process 3904 at 0x00007FFB53590000, thread 3616, image base 0x00007FF77A6A0000, stack from 0x0000004746DC5000-0x0000004746DD0000\n2025-08-31 06:41:23,818 [root] DEBUG: 3904: Commandline: \"C:\\WINDOWS\\system32\\backgroundTaskHost.exe\" -ServerName:WindowsBackup.AppXnn6fnh4raxtmg45ba8k2f4ykb7n0k3y4.mca\n2025-08-31 06:41:23,841 [root] DEBUG: 3904: hook_api: LdrpCallInitRoutine export address 0x00007FFB9ED72980 obtained via GetFunctionAddress\n2025-08-31 06:41:23,903 [root] WARNING: b'Unable to place hook on LockResource'\n2025-08-31 06:41:23,905 [root] DEBUG: 3904: set_hooks: Unable to hook LockResource\n2025-08-31 06:41:23,918 [root] DEBUG: 3904: Hooked 616 out of 617 functions\n2025-08-31 06:41:23,918 [root] DEBUG: 3904: Syscall hook installed, syscall logging level 1\n2025-08-31 06:41:23,924 [root] INFO: Loaded monitor into process with pid 3904\n2025-08-31 06:41:23,924 [root] DEBUG: 3904: caller_dispatch: Added region at 0x00007FF77A6A0000 to tracked regions list (kernel32::SetUnhandledExceptionFilter returns to 0x00007FF77A6A1381, thread 3616).\n2025-08-31 06:41:23,926 [root] DEBUG: 3904: YaraScan: Scanning 0x00007FF77A6A0000, size 0xb000\n2025-08-31 06:41:23,926 [root] DEBUG: 3904: ProcessImageBase: Main module image at 0x00007FF77A6A0000 unmodified (entropy change 0.000000e+00)\n2025-08-31 06:41:24,191 [root] DEBUG: 1112: CreateProcessHandler: Injection info set for new process 2816: C:\\WINDOWS\\system32\\wbem\\wmiprvse.exe, ImageBase: 0x00007FF7ACE10000\n2025-08-31 06:41:24,193 [root] INFO: Announced 64-bit process name: WmiPrvSE.exe pid: 2816\n2025-08-31 06:41:24,193 [lib.api.process] INFO: Monitor config for <Process 2816 WmiPrvSE.exe>: C:\\qstr2giq\\dll\\2816.ini\n2025-08-31 06:41:24,195 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:41:25,583 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:41:25,607 [root] DEBUG: Loader: Injecting process 2816 (thread 9144) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:25,607 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\n2025-08-31 06:41:25,607 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:25,611 [lib.api.process] INFO: Injected into 64-bit <Process 2816 WmiPrvSE.exe>\n2025-08-31 06:41:25,617 [root] INFO: Announced 64-bit process name: WmiPrvSE.exe pid: 2816\n2025-08-31 06:41:25,617 [lib.api.process] INFO: Monitor config for <Process 2816 WmiPrvSE.exe>: C:\\qstr2giq\\dll\\2816.ini\n2025-08-31 06:41:25,617 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:41:25,623 [root] DEBUG: package modules.packages.edge does not support configure, ignoring\n2025-08-31 06:41:25,623 [root] WARNING: configuration error for package modules.packages.edge: error importing data.packages.edge: No module named 'data.packages'\n2025-08-31 06:41:25,623 [lib.core.compound] INFO: C:\\Users\\ALEXDA~1\\AppData\\Local\\Temp already exists, skipping creation\n2025-08-31 06:41:25,631 [lib.api.process] INFO: Successfully executed process from path \"C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\msedge.exe\" with arguments \"\"googel.com\"\" with pid 4308\n2025-08-31 06:41:25,633 [lib.api.process] INFO: Monitor config for <Process 4308 msedge.exe>: C:\\qstr2giq\\dll\\4308.ini\n2025-08-31 06:41:25,633 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:41:25,641 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:41:25,658 [root] DEBUG: Loader: Injecting process 4308 (thread 9184) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:25,658 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\n2025-08-31 06:41:25,660 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:25,664 [lib.api.process] INFO: Injected into 64-bit <Process 4308 msedge.exe>\n2025-08-31 06:41:26,221 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:41:26,237 [root] DEBUG: Loader: Injecting process 2816 (thread 9144) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:26,239 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\n2025-08-31 06:41:26,239 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:26,243 [lib.api.process] INFO: Injected into 64-bit <Process 2816 WmiPrvSE.exe>\n2025-08-31 06:41:26,271 [root] DEBUG: 2816: Python path set to 'C:\\Users\\Alex Dan\\AppData\\Local\\Programs\\Python\\Python310-32'.\n2025-08-31 06:41:26,271 [root] DEBUG: 2816: Interactive desktop enabled.\n2025-08-31 06:41:26,271 [root] DEBUG: 2816: Dropped file limit defaulting to 100.\n2025-08-31 06:41:26,273 [root] DEBUG: 2816: Disabling sleep skipping.\n2025-08-31 06:41:26,275 [root] DEBUG: 2816: Services hook set enabled\n2025-08-31 06:41:26,281 [root] DEBUG: 2816: YaraInit: Compiled rules loaded from existing file C:\\qstr2giq\\data\\yara\\capemon.yac\n2025-08-31 06:41:26,311 [root] DEBUG: 2816: Monitor initialised: 64-bit capemon loaded in process 2816 at 0x00007FFB53590000, thread 9144, image base 0x00007FF7ACE10000, stack from 0x0000007618140000-0x0000007618150000\n2025-08-31 06:41:26,313 [root] DEBUG: 2816: Commandline: C:\\WINDOWS\\system32\\wbem\\wmiprvse.exe -secured -Embedding\n2025-08-31 06:41:26,358 [root] DEBUG: 2816: Hooked 69 out of 69 functions\n2025-08-31 06:41:26,358 [root] INFO: Loaded monitor into process with pid 2816\n2025-08-31 06:41:26,372 [root] DEBUG: 2816: DLL loaded at 0x00007FFB9AD80000: C:\\WINDOWS\\SYSTEM32\\kernel.appcore (0x1a000 bytes).\n2025-08-31 06:41:26,374 [root] DEBUG: 2816: DLL loaded at 0x00007FFB9C300000: C:\\WINDOWS\\System32\\bcryptPrimitives (0x99000 bytes).\n2025-08-31 06:41:26,378 [root] DEBUG: 2816: DLL loaded at 0x00007FFB9DE20000: C:\\WINDOWS\\System32\\clbcatq (0xa8000 bytes).\n2025-08-31 06:41:26,382 [lib.api.process] INFO: Monitor config for <Process 6656 svchost.exe>: C:\\qstr2giq\\dll\\6656.ini\n2025-08-31 06:41:26,382 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:41:26,386 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:41:26,404 [root] DEBUG: Loader: Injecting process 6656 with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:26,412 [root] DEBUG: 6656: Python path set to 'C:\\Users\\Alex Dan\\AppData\\Local\\Programs\\Python\\Python310-32'.\n2025-08-31 06:41:26,412 [root] DEBUG: 6656: Disabling sleep skipping.\n2025-08-31 06:41:26,414 [root] DEBUG: 6656: Interactive desktop enabled.\n2025-08-31 06:41:26,414 [root] DEBUG: 6656: Dropped file limit defaulting to 100.\n2025-08-31 06:41:26,416 [root] DEBUG: 6656: Services hook set enabled\n2025-08-31 06:41:26,420 [root] DEBUG: 6656: YaraInit: Compiled rules loaded from existing file C:\\qstr2giq\\data\\yara\\capemon.yac\n2025-08-31 06:41:26,435 [root] DEBUG: 6656: Monitor initialised: 64-bit capemon loaded in process 6656 at 0x00007FFB53590000, thread 10016, image base 0x00007FF6E25C0000, stack from 0x0000007C539F5000-0x0000007C53A00000\n2025-08-31 06:41:26,435 [root] DEBUG: 6656: Commandline: C:\\WINDOWS\\system32\\svchost.exe -k netsvcs -p\n2025-08-31 06:41:26,469 [root] DEBUG: 6656: Hooked 69 out of 69 functions\n2025-08-31 06:41:26,471 [root] INFO: Loaded monitor into process with pid 6656\n2025-08-31 06:41:26,471 [root] DEBUG: InjectDllViaThread: Successfully injected Dll into process via RtlCreateUserThread.\n2025-08-31 06:41:26,473 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:26,477 [lib.api.process] INFO: Injected into 64-bit <Process 6656 svchost.exe>\n2025-08-31 06:41:27,677 [lib.api.process] INFO: Successfully resumed <Process 4308 msedge.exe>\n2025-08-31 06:41:27,747 [root] DEBUG: 4308: Python path set to 'C:\\Users\\Alex Dan\\AppData\\Local\\Programs\\Python\\Python310-32'.\n2025-08-31 06:41:27,749 [root] DEBUG: 4308: Interactive desktop enabled.\n2025-08-31 06:41:27,749 [root] DEBUG: 4308: Dropped file limit defaulting to 100.\n2025-08-31 06:41:27,761 [root] DEBUG: 4308: Edge-specific hook-set enabled.\n2025-08-31 06:41:27,769 [root] DEBUG: 4308: Disabling sleep skipping.\n2025-08-31 06:41:27,771 [root] DEBUG: 4308: YaraInit: Compiled rules loaded from existing file C:\\qstr2giq\\data\\yara\\capemon.yac\n2025-08-31 06:41:27,789 [root] DEBUG: 4308: Monitor initialised: 64-bit capemon loaded in process 4308 at 0x00007FFB53590000, thread 9184, image base 0x00007FF7D2850000, stack from 0x000000F42D3F5000-0x000000F42D400000\n2025-08-31 06:41:27,791 [root] DEBUG: 4308: Commandline: \"C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\msedge.exe\" \"googel.com\"\n2025-08-31 06:41:27,816 [root] DEBUG: 4308: Hooked 2 out of 2 functions\n2025-08-31 06:41:27,816 [root] DEBUG: 4308: Syscall hook installed, syscall logging level 1\n2025-08-31 06:41:27,820 [root] INFO: Loaded monitor into process with pid 4308\n2025-08-31 06:41:27,822 [root] DEBUG: 4308: DLL loaded at 0x00007FFB9C300000: C:\\WINDOWS\\System32\\bcryptprimitives (0x99000 bytes).\n2025-08-31 06:41:27,882 [root] DEBUG: 4308: InstrumentationCallback: Added region at 0x00007FFB73CB0000 to tracked regions list (thread 9184).\n2025-08-31 06:41:27,882 [root] DEBUG: 4308: DLL loaded at 0x00007FFB918E0000: C:\\WINDOWS\\SYSTEM32\\version (0xb000 bytes).\n2025-08-31 06:41:27,892 [root] DEBUG: 4308: DLL loaded at 0x00007FFB9EB00000: C:\\WINDOWS\\System32\\shcore (0xeb000 bytes).\n2025-08-31 06:41:27,914 [root] DEBUG: 4308: DLL loaded at 0x00007FFB9C4F0000: C:\\WINDOWS\\System32\\wintypes (0x168000 bytes).\n2025-08-31 06:41:27,914 [root] DEBUG: 4308: DLL loaded at 0x00007FFB9D3B0000: C:\\WINDOWS\\System32\\SHELL32 (0x715000 bytes).\n2025-08-31 06:41:27,922 [root] DEBUG: 4308: DLL loaded at 0x00007FFB99C80000: C:\\WINDOWS\\SYSTEM32\\windows.storage (0x845000 bytes).\n2025-08-31 06:41:27,931 [root] DEBUG: 4308: DLL loaded at 0x00007FFB9EB00000: C:\\WINDOWS\\System32\\SHCORE (0xeb000 bytes).\n2025-08-31 06:41:27,969 [root] DEBUG: 4308: DLL loaded at 0x00007FFB9AD80000: C:\\WINDOWS\\SYSTEM32\\kernel.appcore (0x1a000 bytes).\n2025-08-31 06:41:28,526 [root] DEBUG: 2816: DLL loaded at 0x00007FFB90EC0000: C:\\WINDOWS\\system32\\wbem\\wbemprox (0x12000 bytes).\n2025-08-31 06:41:28,544 [root] DEBUG: 2816: DLL loaded at 0x00007FFB8EBA0000: C:\\WINDOWS\\system32\\wbem\\wbemsvc (0x15000 bytes).\n2025-08-31 06:41:28,594 [root] DEBUG: 2816: DLL loaded at 0x00007FFB97280000: C:\\WINDOWS\\system32\\wbem\\wmiutils (0x1f000 bytes).\n2025-08-31 06:41:28,632 [root] DEBUG: 2816: DLL loaded at 0x00007FFB9BDF0000: C:\\WINDOWS\\SYSTEM32\\powrprof (0x4e000 bytes).\n2025-08-31 06:41:28,633 [root] DEBUG: 2816: DLL loaded at 0x00007FFB8DB90000: C:\\WINDOWS\\SYSTEM32\\framedynos (0x4f000 bytes).\n2025-08-31 06:41:28,634 [root] DEBUG: 2816: DLL loaded at 0x00007FFB57210000: C:\\WINDOWS\\system32\\wbem\\cimwin32 (0x1bb000 bytes).\n2025-08-31 06:41:28,637 [root] DEBUG: 2816: DLL loaded at 0x00007FFB9BDD0000: C:\\WINDOWS\\SYSTEM32\\UMPDC (0x14000 bytes).\n2025-08-31 06:41:28,652 [root] DEBUG: 2816: DLL loaded at 0x00007FFB547A0000: C:\\WINDOWS\\SYSTEM32\\TpmCoreProvisioning (0x196000 bytes).\n2025-08-31 06:41:28,653 [root] DEBUG: 2816: DLL loaded at 0x00007FFB91530000: C:\\Windows\\System32\\wbem\\Win32_TPM (0x17000 bytes).\n2025-08-31 06:41:28,663 [root] DEBUG: 2816: DLL loaded at 0x00007FFB96380000: C:\\WINDOWS\\SYSTEM32\\tbs (0x18000 bytes).\n2025-08-31 06:41:28,685 [root] INFO: Process with pid 4308 appears to have terminated\n2025-08-31 06:41:28,709 [root] DEBUG: 2816: DLL loaded at 0x00007FFB992A0000: C:\\WINDOWS\\SYSTEM32\\wtsapi32 (0x16000 bytes).\n2025-08-31 06:41:28,717 [root] DEBUG: 2816: DLL loaded at 0x00007FFB9BD40000: C:\\WINDOWS\\SYSTEM32\\WINSTA (0x67000 bytes).\n2025-08-31 06:41:28,735 [root] DEBUG: 2816: DLL loaded at 0x00007FFB9BAB0000: C:\\WINDOWS\\SYSTEM32\\cfgmgr32 (0x5f000 bytes).\n2025-08-31 06:41:28,736 [root] DEBUG: 2816: DLL loaded at 0x00007FFB9BB40000: C:\\WINDOWS\\SYSTEM32\\DEVOBJ (0x2d000 bytes).\n2025-08-31 06:41:28,746 [root] DEBUG: 2816: DLL loaded at 0x000001F5AF420000: C:\\WINDOWS\\SYSTEM32\\WMI (0x3000 bytes).\n2025-08-31 06:41:28,755 [root] DEBUG: 2816: DLL loaded at 0x00007FFB95A30000: C:\\WINDOWS\\SYSTEM32\\wmiclnt (0x13000 bytes).\n2025-08-31 06:41:28,768 [root] DEBUG: 2816: DLL loaded at 0x00007FFB91EF0000: C:\\WINDOWS\\SYSTEM32\\NETAPI32 (0x1a000 bytes).\n2025-08-31 06:41:28,787 [root] DEBUG: 2816: DLL loaded at 0x00007FFB9A760000: C:\\WINDOWS\\SYSTEM32\\SAMCLI (0x1b000 bytes).\n2025-08-31 06:41:28,797 [root] DEBUG: 2816: DLL loaded at 0x00007FFB91370000: C:\\WINDOWS\\SYSTEM32\\SRVCLI (0x29000 bytes).\n2025-08-31 06:41:28,812 [root] DEBUG: 2816: DLL loaded at 0x00007FFB9A780000: C:\\WINDOWS\\SYSTEM32\\NETUTILS (0xd000 bytes).\n2025-08-31 06:41:28,821 [root] DEBUG: 2816: DLL loaded at 0x00007FFB89380000: C:\\WINDOWS\\SYSTEM32\\LOGONCLI (0x46000 bytes).\n2025-08-31 06:41:28,838 [root] DEBUG: 2816: DLL loaded at 0x00007FFB99100000: C:\\WINDOWS\\SYSTEM32\\SCHEDCLI (0xd000 bytes).\n2025-08-31 06:41:28,846 [root] DEBUG: 2816: DLL loaded at 0x00007FFB94010000: C:\\WINDOWS\\SYSTEM32\\WKSCLI (0x1b000 bytes).\n2025-08-31 06:41:28,854 [root] DEBUG: 2816: DLL loaded at 0x00007FFB96C00000: C:\\WINDOWS\\SYSTEM32\\DSROLE (0xb000 bytes).\n2025-08-31 06:41:32,212 [root] DEBUG: 2816: DLL loaded at 0x00007FFB994A0000: C:\\WINDOWS\\SYSTEM32\\dxgi (0x12e000 bytes).\n2025-08-31 06:41:32,214 [root] DEBUG: 2816: DLL loaded at 0x00007FFB99440000: C:\\WINDOWS\\SYSTEM32\\directxdatabasehelper (0x5d000 bytes).\n2025-08-31 06:41:32,220 [root] DEBUG: 2816: DLL loaded at 0x00007FFB993F0000: C:\\WINDOWS\\SYSTEM32\\dxcore (0x47000 bytes).\n2025-08-31 06:41:32,226 [root] DEBUG: 2816: DLL loaded at 0x00007FFB9DF60000: C:\\WINDOWS\\System32\\setupapi (0x486000 bytes).\n2025-08-31 06:41:32,230 [root] DEBUG: 2816: DLL loaded at 0x00007FFB993F0000: C:\\WINDOWS\\SYSTEM32\\dxcore (0x47000 bytes).\n2025-08-31 06:41:32,234 [root] DEBUG: 2816: DLL loaded at 0x00007FFB9C660000: C:\\WINDOWS\\System32\\WINTRUST (0x7f000 bytes).\n2025-08-31 06:41:32,238 [root] DEBUG: 2816: DLL loaded at 0x00007FFB9B5B0000: C:\\WINDOWS\\SYSTEM32\\MSASN1 (0x13000 bytes).\n2025-08-31 06:41:32,240 [root] DEBUG: 2816: DLL loaded at 0x00007FFB9DF60000: C:\\WINDOWS\\System32\\setupapi (0x486000 bytes).\n2025-08-31 06:41:32,247 [root] DEBUG: 2816: DLL loaded at 0x00007FFB994A0000: C:\\WINDOWS\\SYSTEM32\\dxgi (0x12e000 bytes).\n2025-08-31 06:41:32,251 [root] DEBUG: 2816: DLL loaded at 0x00007FFB99440000: C:\\WINDOWS\\SYSTEM32\\directxdatabasehelper (0x5d000 bytes).\n2025-08-31 06:41:32,259 [root] DEBUG: 2816: DLL loaded at 0x00007FFB9DF60000: C:\\WINDOWS\\System32\\setupapi (0x486000 bytes).\n2025-08-31 06:41:32,263 [root] DEBUG: 2816: DLL loaded at 0x00007FFB9DF60000: C:\\WINDOWS\\System32\\setupapi (0x486000 bytes).\n2025-08-31 06:41:32,301 [root] DEBUG: 2816: DLL loaded at 0x00007FFB994A0000: C:\\WINDOWS\\SYSTEM32\\dxgi (0x12e000 bytes).\n2025-08-31 06:41:32,305 [root] DEBUG: 2816: DLL loaded at 0x00007FFB99440000: C:\\WINDOWS\\SYSTEM32\\directxdatabasehelper (0x5d000 bytes).\n2025-08-31 06:41:32,313 [root] DEBUG: 2816: DLL loaded at 0x00007FFB9DF60000: C:\\WINDOWS\\System32\\setupapi (0x486000 bytes).\n2025-08-31 06:41:32,317 [root] DEBUG: 2816: DLL loaded at 0x00007FFB9DF60000: C:\\WINDOWS\\System32\\setupapi (0x486000 bytes).\n2025-08-31 06:41:32,323 [root] DEBUG: 2816: DLL loaded at 0x00007FFB994A0000: C:\\WINDOWS\\SYSTEM32\\dxgi (0x12e000 bytes).\n2025-08-31 06:41:32,327 [root] DEBUG: 2816: DLL loaded at 0x00007FFB99440000: C:\\WINDOWS\\SYSTEM32\\directxdatabasehelper (0x5d000 bytes).\n2025-08-31 06:41:32,333 [root] DEBUG: 2816: DLL loaded at 0x00007FFB9DF60000: C:\\WINDOWS\\System32\\setupapi (0x486000 bytes).\n2025-08-31 06:41:32,337 [root] DEBUG: 2816: DLL loaded at 0x00007FFB9DF60000: C:\\WINDOWS\\System32\\setupapi (0x486000 bytes).\n2025-08-31 06:41:32,368 [root] DEBUG: 2816: DLL loaded at 0x00007FFB994A0000: C:\\WINDOWS\\SYSTEM32\\dxgi (0x12e000 bytes).\n2025-08-31 06:41:32,370 [root] DEBUG: 2816: DLL loaded at 0x00007FFB99440000: C:\\WINDOWS\\SYSTEM32\\directxdatabasehelper (0x5d000 bytes).\n2025-08-31 06:41:32,378 [root] DEBUG: 2816: DLL loaded at 0x00007FFB9DF60000: C:\\WINDOWS\\System32\\setupapi (0x486000 bytes).\n2025-08-31 06:41:32,382 [root] DEBUG: 2816: DLL loaded at 0x00007FFB9DF60000: C:\\WINDOWS\\System32\\setupapi (0x486000 bytes).\n2025-08-31 06:41:32,388 [root] DEBUG: 2816: DLL loaded at 0x00007FFB994A0000: C:\\WINDOWS\\SYSTEM32\\dxgi (0x12e000 bytes).\n2025-08-31 06:41:32,391 [root] DEBUG: 2816: DLL loaded at 0x00007FFB99440000: C:\\WINDOWS\\SYSTEM32\\directxdatabasehelper (0x5d000 bytes).\n2025-08-31 06:41:32,397 [root] DEBUG: 2816: DLL loaded at 0x00007FFB9DF60000: C:\\WINDOWS\\System32\\setupapi (0x486000 bytes).\n2025-08-31 06:41:32,401 [root] DEBUG: 2816: DLL loaded at 0x00007FFB9DF60000: C:\\WINDOWS\\System32\\setupapi (0x486000 bytes).\n2025-08-31 06:41:56,452 [root] INFO: Added new file to list with pid None and path C:\\Users\\Alex Dan\\AppData\\Local\\Microsoft\\Windows\\Explorer\\iconcache_idx.db\n2025-08-31 06:41:56,927 [root] INFO: Added new file to list with pid None and path C:\\Users\\Alex Dan\\AppData\\Local\\microsoft\\Edge\\user data\\Default\\edge profile.ico\n2025-08-31 06:41:56,931 [root] INFO: Added new file to list with pid None and path C:\\Users\\Alex Dan\\AppData\\Local\\Microsoft\\Windows\\Explorer\\iconcache_48.db\n2025-08-31 06:41:56,955 [root] DEBUG: 1112: CreateProcessHandler: Injection info set for new process 4612: \\\\?\\C:\\Windows\\System32\\SecurityHealthHost.exe, ImageBase: 0x00007FF79B710000\n2025-08-31 06:41:56,957 [root] INFO: Announced 64-bit process name: SecurityHealthHost.exe pid: 4612\n2025-08-31 06:41:56,957 [lib.api.process] INFO: Monitor config for <Process 4612 SecurityHealthHost.exe>: C:\\qstr2giq\\dll\\4612.ini\n2025-08-31 06:41:56,961 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:41:56,969 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:41:57,064 [root] DEBUG: Loader: Injecting process 4612 (thread 1068) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:57,074 [root] DEBUG: InjectDllViaIAT: Failed to allocate region in target process for new import table.\n2025-08-31 06:41:57,074 [root] DEBUG: Error 5 (0x5) - InjectDllViaQueuedAPC: Failed to allocate buffer in target: Access is denied.\n2025-08-31 06:41:57,076 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:57,086 [root] INFO: Announced 64-bit process name: SecurityHealthHost.exe pid: 4612\n2025-08-31 06:41:57,086 [lib.api.process] INFO: Monitor config for <Process 4612 SecurityHealthHost.exe>: C:\\qstr2giq\\dll\\4612.ini\n2025-08-31 06:41:57,087 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:41:57,095 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:41:57,113 [root] DEBUG: Loader: Injecting process 4612 (thread 1068) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:57,123 [root] DEBUG: InjectDllViaIAT: Failed to allocate region in target process for new import table.\n2025-08-31 06:41:57,125 [root] DEBUG: Error 5 (0x5) - InjectDllViaQueuedAPC: Failed to allocate buffer in target: Access is denied.\n2025-08-31 06:41:57,125 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:58,057 [root] DEBUG: 1112: CreateProcessHandler: Injection info set for new process 6836: C:\\WINDOWS\\system32\\DllHost.exe, ImageBase: 0x00007FF6C0730000\n2025-08-31 06:41:58,058 [root] INFO: Announced 64-bit process name: dllhost.exe pid: 6836\n2025-08-31 06:41:58,059 [lib.api.process] INFO: Monitor config for <Process 6836 dllhost.exe>: C:\\qstr2giq\\dll\\6836.ini\n2025-08-31 06:41:58,060 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:41:58,068 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:41:58,087 [root] DEBUG: Loader: Injecting process 6836 (thread 6868) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:58,088 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\n2025-08-31 06:41:58,089 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:58,092 [lib.api.process] INFO: Injected into 64-bit <Process 6836 dllhost.exe>\n2025-08-31 06:41:58,097 [root] INFO: Announced 64-bit process name: dllhost.exe pid: 6836\n2025-08-31 06:41:58,098 [lib.api.process] INFO: Monitor config for <Process 6836 dllhost.exe>: C:\\qstr2giq\\dll\\6836.ini\n2025-08-31 06:41:58,098 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:41:58,106 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:41:58,125 [root] DEBUG: Loader: Injecting process 6836 (thread 6868) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:58,126 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\n2025-08-31 06:41:58,126 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:41:58,130 [lib.api.process] INFO: Injected into 64-bit <Process 6836 dllhost.exe>\n2025-08-31 06:41:58,186 [root] DEBUG: 6836: Python path set to 'C:\\Users\\Alex Dan\\AppData\\Local\\Programs\\Python\\Python310-32'.\n2025-08-31 06:41:58,187 [root] DEBUG: 6836: Interactive desktop enabled.\n2025-08-31 06:41:58,188 [root] DEBUG: 6836: Dropped file limit defaulting to 100.\n2025-08-31 06:41:58,198 [root] DEBUG: 6836: Disabling sleep skipping.\n2025-08-31 06:41:58,207 [root] DEBUG: 6836: YaraInit: Compiled rules loaded from existing file C:\\qstr2giq\\data\\yara\\capemon.yac\n2025-08-31 06:41:58,224 [root] DEBUG: 6836: YaraScan: Scanning 0x00007FF6C0730000, size 0xb000\n2025-08-31 06:41:58,225 [root] DEBUG: 6836: Monitor initialised: 64-bit capemon loaded in process 6836 at 0x00007FFB53590000, thread 6868, image base 0x00007FF6C0730000, stack from 0x0000000845DA5000-0x0000000845DB0000\n2025-08-31 06:41:58,225 [root] DEBUG: 6836: Commandline: C:\\WINDOWS\\system32\\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}\n2025-08-31 06:41:58,253 [root] DEBUG: 6836: hook_api: LdrpCallInitRoutine export address 0x00007FFB9ED72980 obtained via GetFunctionAddress\n2025-08-31 06:41:58,314 [root] WARNING: b'Unable to place hook on LockResource'\n2025-08-31 06:41:58,314 [root] DEBUG: 6836: set_hooks: Unable to hook LockResource\n2025-08-31 06:41:58,338 [root] DEBUG: 6836: Hooked 616 out of 617 functions\n2025-08-31 06:41:58,338 [root] DEBUG: 6836: Syscall hook installed, syscall logging level 1\n2025-08-31 06:41:58,344 [root] INFO: Loaded monitor into process with pid 6836\n2025-08-31 06:41:58,346 [root] DEBUG: 6836: caller_dispatch: Added region at 0x00007FF6C0730000 to tracked regions list (ntdll::NtAllocateVirtualMemory returns to 0x00007FF6C0731112, thread 6868).\n2025-08-31 06:41:58,346 [root] DEBUG: 6836: YaraScan: Scanning 0x00007FF6C0730000, size 0xb000\n2025-08-31 06:41:58,348 [root] DEBUG: 6836: ProcessImageBase: Main module image at 0x00007FF6C0730000 unmodified (entropy change 0.000000e+00)\n2025-08-31 06:42:03,731 [root] DEBUG: 6656: DLL loaded at 0x00007FFB8D730000: C:\\WINDOWS\\system32\\wbem\\ncprov (0x20000 bytes).\n2025-08-31 06:42:13,472 [root] DEBUG: 4840: DLL loaded at 0x00007FFB8DA60000: C:\\WINDOWS\\System32\\WSCAPI (0x46000 bytes).\n2025-08-31 06:42:13,473 [root] DEBUG: 4840: DLL loaded at 0x00007FFB575D0000: C:\\WINDOWS\\System32\\wscui.cpl (0x1a000 bytes).\n2025-08-31 06:42:13,474 [root] DEBUG: 4840: DLL loaded at 0x00007FFB56600000: C:\\WINDOWS\\System32\\wscinterop (0x3a000 bytes).\n2025-08-31 06:42:13,533 [root] DEBUG: 4840: DLL loaded at 0x00007FFB8DB90000: C:\\WINDOWS\\System32\\framedynos (0x4f000 bytes).\n2025-08-31 06:42:13,535 [root] DEBUG: 4840: DLL loaded at 0x00007FFB521E0000: C:\\WINDOWS\\System32\\werconcpl (0xc5000 bytes).\n2025-08-31 06:42:13,548 [root] DEBUG: 4840: DLL loaded at 0x00007FFB99650000: C:\\WINDOWS\\System32\\wer (0xf2000 bytes).\n2025-08-31 06:42:13,572 [root] DEBUG: 4840: DLL loaded at 0x00007FFB56A20000: C:\\WINDOWS\\System32\\hcproviders (0x16000 bytes).\n2025-08-31 06:42:13,586 [root] DEBUG: 4840: DLL loaded at 0x00007FFB96D70000: C:\\WINDOWS\\SYSTEM32\\wevtapi (0x4c000 bytes).\n2025-08-31 06:42:13,595 [root] DEBUG: 4840: DLL loaded at 0x00007FFB461C0000: C:\\Windows\\System32\\IEProxy (0xc2000 bytes).\n2025-08-31 06:42:41,368 [root] DEBUG: 1112: CreateProcessHandler: Injection info set for new process 6664: C:\\WINDOWS\\system32\\DllHost.exe, ImageBase: 0x00007FF6C0730000\n2025-08-31 06:42:41,370 [root] INFO: Announced 64-bit process name: dllhost.exe pid: 6664\n2025-08-31 06:42:41,376 [lib.api.process] INFO: Monitor config for <Process 6664 dllhost.exe>: C:\\qstr2giq\\dll\\6664.ini\n2025-08-31 06:42:41,378 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:42:41,384 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:42:41,408 [root] DEBUG: Loader: Injecting process 6664 (thread 6888) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:42:41,410 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\n2025-08-31 06:42:41,410 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:42:41,414 [lib.api.process] INFO: Injected into 64-bit <Process 6664 dllhost.exe>\n2025-08-31 06:42:41,418 [root] INFO: Announced 64-bit process name: dllhost.exe pid: 6664\n2025-08-31 06:42:41,418 [lib.api.process] INFO: Monitor config for <Process 6664 dllhost.exe>: C:\\qstr2giq\\dll\\6664.ini\n2025-08-31 06:42:41,420 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:42:41,426 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:42:41,442 [root] DEBUG: Loader: Injecting process 6664 (thread 6888) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:42:41,444 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\n2025-08-31 06:42:41,444 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:42:41,447 [lib.api.process] INFO: Injected into 64-bit <Process 6664 dllhost.exe>\n2025-08-31 06:42:41,479 [root] DEBUG: 6664: Python path set to 'C:\\Users\\Alex Dan\\AppData\\Local\\Programs\\Python\\Python310-32'.\n2025-08-31 06:42:41,479 [root] DEBUG: 6664: Interactive desktop enabled.\n2025-08-31 06:42:41,479 [root] DEBUG: 6664: Dropped file limit defaulting to 100.\n2025-08-31 06:42:41,485 [root] DEBUG: 6664: Disabling sleep skipping.\n2025-08-31 06:42:41,489 [root] DEBUG: 6664: YaraInit: Compiled rules loaded from existing file C:\\qstr2giq\\data\\yara\\capemon.yac\n2025-08-31 06:42:41,505 [root] DEBUG: 6664: YaraScan: Scanning 0x00007FF6C0730000, size 0xb000\n2025-08-31 06:42:41,505 [root] DEBUG: 6664: Monitor initialised: 64-bit capemon loaded in process 6664 at 0x00007FFB53590000, thread 6888, image base 0x00007FF6C0730000, stack from 0x000000D305B24000-0x000000D305B30000\n2025-08-31 06:42:41,507 [root] DEBUG: 6664: Commandline: C:\\WINDOWS\\system32\\DllHost.exe /Processid:{338B40F9-9D68-4B53-A793-6B9AA0C5F63B}\n2025-08-31 06:42:41,526 [root] DEBUG: 6664: hook_api: LdrpCallInitRoutine export address 0x00007FFB9ED72980 obtained via GetFunctionAddress\n2025-08-31 06:42:41,572 [root] WARNING: b'Unable to place hook on LockResource'\n2025-08-31 06:42:41,572 [root] DEBUG: 6664: set_hooks: Unable to hook LockResource\n2025-08-31 06:42:41,584 [root] DEBUG: 6664: Hooked 616 out of 617 functions\n2025-08-31 06:42:41,586 [root] DEBUG: 6664: Syscall hook installed, syscall logging level 1\n2025-08-31 06:42:41,592 [root] INFO: Loaded monitor into process with pid 6664\n2025-08-31 06:42:46,744 [root] INFO: Process with pid 6664 appears to have terminated\n2025-08-31 06:42:54,578 [root] INFO: Announced starting service \"b'WaaSMedicSvc'\"\n2025-08-31 06:42:57,284 [root] DEBUG: 1112: CreateProcessHandler: Injection info set for new process 6428: C:\\WINDOWS\\system32\\wbem\\wmiprvse.exe, ImageBase: 0x00007FF7ACE10000\n2025-08-31 06:42:57,286 [root] INFO: Announced 64-bit process name: WmiPrvSE.exe pid: 6428\n2025-08-31 06:42:57,288 [lib.api.process] INFO: Monitor config for <Process 6428 WmiPrvSE.exe>: C:\\qstr2giq\\dll\\6428.ini\n2025-08-31 06:42:57,292 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:42:58,530 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:42:58,574 [root] DEBUG: Loader: Injecting process 6428 (thread 5512) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:42:58,576 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\n2025-08-31 06:42:58,578 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:42:58,584 [lib.api.process] INFO: Injected into 64-bit <Process 6428 WmiPrvSE.exe>\n2025-08-31 06:42:58,592 [root] INFO: Announced 64-bit process name: WmiPrvSE.exe pid: 6428\n2025-08-31 06:42:58,594 [lib.api.process] INFO: Monitor config for <Process 6428 WmiPrvSE.exe>: C:\\qstr2giq\\dll\\6428.ini\n2025-08-31 06:42:58,596 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:42:59,707 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:42:59,737 [root] DEBUG: Loader: Injecting process 6428 (thread 5512) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:42:59,739 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\n2025-08-31 06:42:59,739 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:42:59,745 [lib.api.process] INFO: Injected into 64-bit <Process 6428 WmiPrvSE.exe>\n2025-08-31 06:42:59,806 [root] DEBUG: 6428: Python path set to 'C:\\Users\\Alex Dan\\AppData\\Local\\Programs\\Python\\Python310-32'.\n2025-08-31 06:42:59,808 [root] DEBUG: 6428: Interactive desktop enabled.\n2025-08-31 06:42:59,808 [root] DEBUG: 6428: Dropped file limit defaulting to 100.\n2025-08-31 06:42:59,812 [root] DEBUG: 6428: Disabling sleep skipping.\n2025-08-31 06:42:59,814 [root] DEBUG: 6428: Services hook set enabled\n2025-08-31 06:42:59,824 [root] DEBUG: 6428: YaraInit: Compiled rules loaded from existing file C:\\qstr2giq\\data\\yara\\capemon.yac\n2025-08-31 06:42:59,840 [root] DEBUG: 6428: Monitor initialised: 64-bit capemon loaded in process 6428 at 0x00007FFB53590000, thread 5512, image base 0x00007FF7ACE10000, stack from 0x000000D194E70000-0x000000D194E80000\n2025-08-31 06:42:59,842 [root] DEBUG: 6428: Commandline: C:\\WINDOWS\\system32\\wbem\\wmiprvse.exe -secured -Embedding\n2025-08-31 06:42:59,881 [root] DEBUG: 6428: Hooked 69 out of 69 functions\n2025-08-31 06:42:59,882 [root] INFO: Loaded monitor into process with pid 6428\n2025-08-31 06:42:59,903 [root] DEBUG: 6428: DLL loaded at 0x00007FFB9AD80000: C:\\WINDOWS\\SYSTEM32\\kernel.appcore (0x1a000 bytes).\n2025-08-31 06:42:59,905 [root] DEBUG: 6428: DLL loaded at 0x00007FFB9C300000: C:\\WINDOWS\\System32\\bcryptPrimitives (0x99000 bytes).\n2025-08-31 06:42:59,911 [root] DEBUG: 6428: DLL loaded at 0x00007FFB9DE20000: C:\\WINDOWS\\System32\\clbcatq (0xa8000 bytes).\n2025-08-31 06:42:59,921 [root] DEBUG: 6428: DLL loaded at 0x00007FFB90EC0000: C:\\WINDOWS\\system32\\wbem\\wbemprox (0x12000 bytes).\n2025-08-31 06:42:59,943 [root] DEBUG: 6428: DLL loaded at 0x00007FFB8EBA0000: C:\\WINDOWS\\system32\\wbem\\wbemsvc (0x15000 bytes).\n2025-08-31 06:42:59,987 [root] DEBUG: 6428: DLL loaded at 0x00007FFB97280000: C:\\WINDOWS\\system32\\wbem\\wmiutils (0x1f000 bytes).\n2025-08-31 06:43:00,024 [root] DEBUG: 6428: DLL loaded at 0x00007FFB55A50000: C:\\WINDOWS\\system32\\wbem\\NetAdapterCim (0xbb000 bytes).\n2025-08-31 06:43:00,040 [root] DEBUG: 6428: DLL loaded at 0x00007FFB8E5E0000: C:\\WINDOWS\\SYSTEM32\\miutils (0x61000 bytes).\n2025-08-31 06:43:00,042 [root] DEBUG: 6428: DLL loaded at 0x00007FFB56FA0000: C:\\WINDOWS\\system32\\wmitomi (0x33000 bytes).\n2025-08-31 06:43:00,115 [root] DEBUG: 6428: DLL loaded at 0x00007FFB9BAB0000: C:\\WINDOWS\\SYSTEM32\\cfgmgr32 (0x5f000 bytes).\n2025-08-31 06:43:00,115 [root] DEBUG: 6428: DLL loaded at 0x00007FFB56460000: C:\\WINDOWS\\SYSTEM32\\NetSetupApi (0x2a000 bytes).\n2025-08-31 06:43:00,135 [root] DEBUG: 6428: DLL loaded at 0x00007FFB9CB80000: C:\\WINDOWS\\System32\\NSI (0xa000 bytes).\n2025-08-31 06:43:00,137 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:00,137 [root] DEBUG: 6428: DLL loaded at 0x00007FFB55740000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:00,388 [root] DEBUG: 6428: DLL loaded at 0x00007FFB9A7C0000: C:\\WINDOWS\\SYSTEM32\\IPHLPAPI (0x33000 bytes).\n2025-08-31 06:43:00,505 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:00,505 [root] DEBUG: 6428: DLL loaded at 0x00007FFB55740000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:01,592 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:01,592 [root] DEBUG: 6428: DLL loaded at 0x00007FFB55740000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:01,783 [root] DEBUG: 2816: DLL loaded at 0x00007FFB994A0000: C:\\WINDOWS\\SYSTEM32\\dxgi (0x12e000 bytes).\n2025-08-31 06:43:01,785 [root] DEBUG: 2816: DLL loaded at 0x00007FFB99440000: C:\\WINDOWS\\SYSTEM32\\directxdatabasehelper (0x5d000 bytes).\n2025-08-31 06:43:01,793 [root] DEBUG: 2816: DLL loaded at 0x00007FFB9DF60000: C:\\WINDOWS\\System32\\setupapi (0x486000 bytes).\n2025-08-31 06:43:01,797 [root] DEBUG: 2816: DLL loaded at 0x00007FFB9DF60000: C:\\WINDOWS\\System32\\setupapi (0x486000 bytes).\n2025-08-31 06:43:01,805 [root] DEBUG: 2816: DLL loaded at 0x00007FFB994A0000: C:\\WINDOWS\\SYSTEM32\\dxgi (0x12e000 bytes).\n2025-08-31 06:43:01,807 [root] DEBUG: 2816: DLL loaded at 0x00007FFB99440000: C:\\WINDOWS\\SYSTEM32\\directxdatabasehelper (0x5d000 bytes).\n2025-08-31 06:43:01,815 [root] DEBUG: 2816: DLL loaded at 0x00007FFB9DF60000: C:\\WINDOWS\\System32\\setupapi (0x486000 bytes).\n2025-08-31 06:43:01,819 [root] DEBUG: 2816: DLL loaded at 0x00007FFB9DF60000: C:\\WINDOWS\\System32\\setupapi (0x486000 bytes).\n2025-08-31 06:43:01,864 [root] DEBUG: 2816: DLL loaded at 0x00007FFB994A0000: C:\\WINDOWS\\SYSTEM32\\dxgi (0x12e000 bytes).\n2025-08-31 06:43:01,866 [root] DEBUG: 2816: DLL loaded at 0x00007FFB99440000: C:\\WINDOWS\\SYSTEM32\\directxdatabasehelper (0x5d000 bytes).\n2025-08-31 06:43:01,876 [root] DEBUG: 2816: DLL loaded at 0x00007FFB9DF60000: C:\\WINDOWS\\System32\\setupapi (0x486000 bytes).\n2025-08-31 06:43:01,880 [root] DEBUG: 2816: DLL loaded at 0x00007FFB9DF60000: C:\\WINDOWS\\System32\\setupapi (0x486000 bytes).\n2025-08-31 06:43:01,884 [root] DEBUG: 2816: DLL loaded at 0x00007FFB994A0000: C:\\WINDOWS\\SYSTEM32\\dxgi (0x12e000 bytes).\n2025-08-31 06:43:01,888 [root] DEBUG: 2816: DLL loaded at 0x00007FFB99440000: C:\\WINDOWS\\SYSTEM32\\directxdatabasehelper (0x5d000 bytes).\n2025-08-31 06:43:01,896 [root] DEBUG: 2816: DLL loaded at 0x00007FFB9DF60000: C:\\WINDOWS\\System32\\setupapi (0x486000 bytes).\n2025-08-31 06:43:01,900 [root] DEBUG: 2816: DLL loaded at 0x00007FFB9DF60000: C:\\WINDOWS\\System32\\setupapi (0x486000 bytes).\n2025-08-31 06:43:01,939 [root] DEBUG: 2816: DLL loaded at 0x00007FFB994A0000: C:\\WINDOWS\\SYSTEM32\\dxgi (0x12e000 bytes).\n2025-08-31 06:43:01,943 [root] DEBUG: 2816: DLL loaded at 0x00007FFB99440000: C:\\WINDOWS\\SYSTEM32\\directxdatabasehelper (0x5d000 bytes).\n2025-08-31 06:43:01,947 [root] DEBUG: 2816: DLL loaded at 0x00007FFB9DF60000: C:\\WINDOWS\\System32\\setupapi (0x486000 bytes).\n2025-08-31 06:43:01,951 [root] DEBUG: 2816: DLL loaded at 0x00007FFB9DF60000: C:\\WINDOWS\\System32\\setupapi (0x486000 bytes).\n2025-08-31 06:43:01,959 [root] DEBUG: 2816: DLL loaded at 0x00007FFB994A0000: C:\\WINDOWS\\SYSTEM32\\dxgi (0x12e000 bytes).\n2025-08-31 06:43:01,963 [root] DEBUG: 2816: DLL loaded at 0x00007FFB99440000: C:\\WINDOWS\\SYSTEM32\\directxdatabasehelper (0x5d000 bytes).\n2025-08-31 06:43:01,971 [root] DEBUG: 2816: DLL loaded at 0x00007FFB9DF60000: C:\\WINDOWS\\System32\\setupapi (0x486000 bytes).\n2025-08-31 06:43:01,975 [root] DEBUG: 2816: DLL loaded at 0x00007FFB9DF60000: C:\\WINDOWS\\System32\\setupapi (0x486000 bytes).\n2025-08-31 06:43:02,655 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:02,655 [root] DEBUG: 6428: DLL loaded at 0x00007FFB55740000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:03,707 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:03,707 [root] DEBUG: 6428: DLL loaded at 0x00007FFB55740000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:04,753 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:04,755 [root] DEBUG: 6428: DLL loaded at 0x00007FFB55740000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:05,808 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:05,810 [root] DEBUG: 6428: DLL loaded at 0x00007FFB55740000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:06,874 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:06,876 [root] DEBUG: 6428: DLL loaded at 0x00007FFB55740000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:07,941 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:07,943 [root] DEBUG: 6428: DLL loaded at 0x00007FFB516F0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:09,021 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:09,021 [root] DEBUG: 6428: DLL loaded at 0x00007FFB515D0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:10,092 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:10,094 [root] DEBUG: 6428: DLL loaded at 0x00007FFB515D0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:11,204 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:11,204 [root] DEBUG: 6428: DLL loaded at 0x00007FFB515D0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:12,288 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:12,290 [root] DEBUG: 6428: DLL loaded at 0x00007FFB515D0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:13,365 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:13,367 [root] DEBUG: 6428: DLL loaded at 0x00007FFB515D0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:14,433 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:14,435 [root] DEBUG: 6428: DLL loaded at 0x00007FFB515D0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:15,504 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:15,504 [root] DEBUG: 6428: DLL loaded at 0x00007FFB515D0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:17,588 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:17,590 [root] DEBUG: 6428: DLL loaded at 0x00007FFB515D0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:19,681 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:19,681 [root] DEBUG: 6428: DLL loaded at 0x00007FFB515D0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:21,451 [root] DEBUG: 1112: CreateProcessHandler: Injection info set for new process 9048: C:\\Windows\\System32\\RuntimeBroker.exe, ImageBase: 0x00007FF788F90000\n2025-08-31 06:43:21,453 [root] INFO: Announced 64-bit process name: RuntimeBroker.exe pid: 9048\n2025-08-31 06:43:21,455 [lib.api.process] INFO: Monitor config for <Process 9048 RuntimeBroker.exe>: C:\\qstr2giq\\dll\\9048.ini\n2025-08-31 06:43:21,457 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:43:21,468 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:43:21,498 [root] DEBUG: Loader: Injecting process 9048 (thread 6556) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:43:21,498 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\n2025-08-31 06:43:21,500 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:43:21,504 [lib.api.process] INFO: Injected into 64-bit <Process 9048 RuntimeBroker.exe>\n2025-08-31 06:43:21,508 [root] INFO: Announced 64-bit process name: RuntimeBroker.exe pid: 9048\n2025-08-31 06:43:21,510 [lib.api.process] INFO: Monitor config for <Process 9048 RuntimeBroker.exe>: C:\\qstr2giq\\dll\\9048.ini\n2025-08-31 06:43:21,538 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:43:21,556 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:43:21,575 [root] DEBUG: Loader: Injecting process 9048 (thread 6556) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:43:21,577 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\n2025-08-31 06:43:21,577 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:43:21,583 [lib.api.process] INFO: Injected into 64-bit <Process 9048 RuntimeBroker.exe>\n2025-08-31 06:43:21,625 [root] DEBUG: 9048: Python path set to 'C:\\Users\\Alex Dan\\AppData\\Local\\Programs\\Python\\Python310-32'.\n2025-08-31 06:43:21,626 [root] DEBUG: 9048: Interactive desktop enabled.\n2025-08-31 06:43:21,628 [root] DEBUG: 9048: Dropped file limit defaulting to 100.\n2025-08-31 06:43:21,633 [root] DEBUG: 9048: Disabling sleep skipping.\n2025-08-31 06:43:21,637 [root] DEBUG: 9048: YaraInit: Compiled rules loaded from existing file C:\\qstr2giq\\data\\yara\\capemon.yac\n2025-08-31 06:43:21,655 [root] DEBUG: 9048: YaraScan: Scanning 0x00007FF788F90000, size 0x20000\n2025-08-31 06:43:21,659 [root] DEBUG: 9048: Monitor initialised: 64-bit capemon loaded in process 9048 at 0x00007FFB53590000, thread 6556, image base 0x00007FF788F90000, stack from 0x000000EC834A4000-0x000000EC834B0000\n2025-08-31 06:43:21,659 [root] DEBUG: 9048: Commandline: C:\\Windows\\System32\\RuntimeBroker.exe -Embedding\n2025-08-31 06:43:21,693 [root] DEBUG: 9048: hook_api: LdrpCallInitRoutine export address 0x00007FFB9ED72980 obtained via GetFunctionAddress\n2025-08-31 06:43:21,750 [root] WARNING: b'Unable to place hook on LockResource'\n2025-08-31 06:43:21,752 [root] DEBUG: 9048: set_hooks: Unable to hook LockResource\n2025-08-31 06:43:21,754 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:21,756 [root] DEBUG: 6428: DLL loaded at 0x00007FFB515D0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:21,772 [root] DEBUG: 9048: Hooked 616 out of 617 functions\n2025-08-31 06:43:21,774 [root] DEBUG: 9048: Syscall hook installed, syscall logging level 1\n2025-08-31 06:43:21,782 [root] INFO: Loaded monitor into process with pid 9048\n2025-08-31 06:43:21,786 [root] DEBUG: 9048: caller_dispatch: Added region at 0x00007FF788F90000 to tracked regions list (ntdll::NtAllocateVirtualMemoryEx returns to 0x00007FF788F990F2, thread 6556).\n2025-08-31 06:43:21,786 [root] DEBUG: 9048: YaraScan: Scanning 0x00007FF788F90000, size 0x20000\n2025-08-31 06:43:21,789 [root] DEBUG: 9048: ProcessImageBase: Main module image at 0x00007FF788F90000 unmodified (entropy change 0.000000e+00)\n2025-08-31 06:43:22,274 [root] INFO: Process with pid 9832 appears to have terminated\n2025-08-31 06:43:22,832 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:22,834 [root] DEBUG: 6428: DLL loaded at 0x00007FFB515D0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:23,922 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:23,924 [root] DEBUG: 6428: DLL loaded at 0x00007FFB515D0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:24,293 [root] INFO: Process with pid 3904 appears to have terminated\n2025-08-31 06:43:25,028 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:25,030 [root] DEBUG: 6428: DLL loaded at 0x00007FFB515D0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:26,113 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:26,115 [root] DEBUG: 6428: DLL loaded at 0x00007FFB528F0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:27,164 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:27,167 [root] DEBUG: 6428: DLL loaded at 0x00007FFB56890000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:28,177 [root] DEBUG: 1112: CreateProcessHandler: Injection info set for new process 8420: C:\\WINDOWS\\system32\\DllHost.exe, ImageBase: 0x00007FF6C0730000\n2025-08-31 06:43:28,179 [root] INFO: Announced 64-bit process name: dllhost.exe pid: 8420\n2025-08-31 06:43:28,181 [lib.api.process] INFO: Monitor config for <Process 8420 dllhost.exe>: C:\\qstr2giq\\dll\\8420.ini\n2025-08-31 06:43:28,187 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:43:28,203 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:43:28,230 [root] DEBUG: Loader: Injecting process 8420 (thread 1100) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:43:28,232 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\n2025-08-31 06:43:28,234 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:43:28,240 [lib.api.process] INFO: Injected into 64-bit <Process 8420 dllhost.exe>\n2025-08-31 06:43:28,244 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:28,246 [root] INFO: Announced 64-bit process name: dllhost.exe pid: 8420\n2025-08-31 06:43:28,246 [root] DEBUG: 6428: DLL loaded at 0x00007FFB56890000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:28,250 [lib.api.process] INFO: Monitor config for <Process 8420 dllhost.exe>: C:\\qstr2giq\\dll\\8420.ini\n2025-08-31 06:43:28,250 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:43:28,266 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:43:28,288 [root] DEBUG: Loader: Injecting process 8420 (thread 1100) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:43:28,290 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\n2025-08-31 06:43:28,292 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:43:28,296 [lib.api.process] INFO: Injected into 64-bit <Process 8420 dllhost.exe>\n2025-08-31 06:43:28,325 [root] DEBUG: 8420: Python path set to 'C:\\Users\\Alex Dan\\AppData\\Local\\Programs\\Python\\Python310-32'.\n2025-08-31 06:43:28,325 [root] DEBUG: 8420: Interactive desktop enabled.\n2025-08-31 06:43:28,327 [root] DEBUG: 8420: Dropped file limit defaulting to 100.\n2025-08-31 06:43:28,335 [root] DEBUG: 8420: Disabling sleep skipping.\n2025-08-31 06:43:28,337 [root] DEBUG: 8420: YaraInit: Compiled rules loaded from existing file C:\\qstr2giq\\data\\yara\\capemon.yac\n2025-08-31 06:43:28,357 [root] INFO: Process with pid 6836 appears to have terminated\n2025-08-31 06:43:28,357 [root] DEBUG: 8420: YaraScan: Scanning 0x00007FF6C0730000, size 0xb000\n2025-08-31 06:43:28,361 [root] DEBUG: 8420: Monitor initialised: 64-bit capemon loaded in process 8420 at 0x00007FFB53590000, thread 1100, image base 0x00007FF6C0730000, stack from 0x000000564FDC4000-0x000000564FDD0000\n2025-08-31 06:43:28,363 [root] DEBUG: 8420: Commandline: C:\\WINDOWS\\system32\\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}\n2025-08-31 06:43:28,392 [root] DEBUG: 8420: hook_api: LdrpCallInitRoutine export address 0x00007FFB9ED72980 obtained via GetFunctionAddress\n2025-08-31 06:43:28,452 [root] WARNING: b'Unable to place hook on LockResource'\n2025-08-31 06:43:28,454 [root] DEBUG: 8420: set_hooks: Unable to hook LockResource\n2025-08-31 06:43:28,472 [root] DEBUG: 8420: Hooked 616 out of 617 functions\n2025-08-31 06:43:28,474 [root] DEBUG: 8420: Syscall hook installed, syscall logging level 1\n2025-08-31 06:43:28,480 [root] INFO: Loaded monitor into process with pid 8420\n2025-08-31 06:43:28,485 [root] DEBUG: 8420: caller_dispatch: Added region at 0x00007FF6C0730000 to tracked regions list (ntdll::NtSetInformationThread returns to 0x00007FF6C0731112, thread 1100).\n2025-08-31 06:43:28,487 [root] DEBUG: 8420: YaraScan: Scanning 0x00007FF6C0730000, size 0xb000\n2025-08-31 06:43:28,489 [root] DEBUG: 8420: ProcessImageBase: Main module image at 0x00007FF6C0730000 unmodified (entropy change 0.000000e+00)\n2025-08-31 06:43:30,309 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:30,311 [root] DEBUG: 6428: DLL loaded at 0x00007FFB56890000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:31,394 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:31,396 [root] DEBUG: 6428: DLL loaded at 0x00007FFB56890000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:32,525 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:32,527 [root] DEBUG: 6428: DLL loaded at 0x00007FFB56890000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:33,637 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:33,639 [root] DEBUG: 6428: DLL loaded at 0x00007FFB56890000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:34,704 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:34,706 [root] DEBUG: 6428: DLL loaded at 0x00007FFB56890000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:35,776 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:35,776 [root] DEBUG: 6428: DLL loaded at 0x00007FFB56890000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:36,895 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:36,897 [root] DEBUG: 6428: DLL loaded at 0x00007FFB85290000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:38,978 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:38,980 [root] DEBUG: 6428: DLL loaded at 0x00007FFB56890000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:41,054 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:41,057 [root] DEBUG: 6428: DLL loaded at 0x00007FFB528F0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:42,130 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:42,132 [root] DEBUG: 6428: DLL loaded at 0x00007FFB528F0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:43,218 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:43,222 [root] DEBUG: 6428: DLL loaded at 0x00007FFB528F0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:43,859 [root] DEBUG: 4840: DLL loaded at 0x00007FFB51940000: C:\\Windows\\System32\\Windows.CloudStore.Schema.DesktopShell (0xb3000 bytes).\n2025-08-31 06:43:43,896 [root] DEBUG: 4840: caller_dispatch: Added region at 0x000000001A680000 to tracked regions list (ntdll::NtOpenFile returns to 0x000000001A9C7070, thread 8052).\n2025-08-31 06:43:43,896 [root] DEBUG: 4840: DumpPEsInRange: Scanning range 0x000000001A680000 - 0x000000001A6807EB.\n2025-08-31 06:43:43,898 [root] DEBUG: 4840: ScanForDisguisedPE: Size too small: 0x7eb bytes\n2025-08-31 06:43:43,912 [lib.common.results] INFO: Uploading file C:\\iyeYqm\\CAPE\\4840_369004343431082025 to CAPE\\eb41d613e52f63da4d1436d810bc8bbd80ec3ffb03f835fb3e81dc485b280163; Size is 2027; Max size: 100000000\n2025-08-31 06:43:44,320 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:44,322 [root] DEBUG: 6428: DLL loaded at 0x00007FFB51850000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:44,361 [root] DEBUG: 4840: DumpMemory: Payload successfully created: C:\\iyeYqm\\CAPE\\4840_369004343431082025 (size 2027 bytes)\n2025-08-31 06:43:44,365 [root] DEBUG: 4840: DumpRegion: Dumped entire allocation from 0x000000001A680000, size 4096 bytes.\n2025-08-31 06:43:44,371 [root] DEBUG: 4840: ProcessTrackedRegion: Dumped region at 0x000000001A680000.\n2025-08-31 06:43:44,375 [root] DEBUG: 4840: YaraScan: Scanning 0x000000001A680000, size 0x7eb\n2025-08-31 06:43:45,420 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:45,422 [root] DEBUG: 6428: DLL loaded at 0x00007FFB51850000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:46,491 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:46,493 [root] DEBUG: 6428: DLL loaded at 0x00007FFB51850000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:47,572 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:47,574 [root] DEBUG: 6428: DLL loaded at 0x00007FFB51850000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:48,643 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:48,644 [root] DEBUG: 6428: DLL loaded at 0x00007FFB51850000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:49,708 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:49,709 [root] DEBUG: 6428: DLL loaded at 0x00007FFB51850000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:50,808 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:50,810 [root] DEBUG: 6428: DLL loaded at 0x00007FFB51850000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:51,920 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:51,922 [root] DEBUG: 6428: DLL loaded at 0x00007FFB51850000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:53,038 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:53,039 [root] DEBUG: 6428: DLL loaded at 0x00007FFB51850000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:54,127 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:54,131 [root] DEBUG: 6428: DLL loaded at 0x00007FFB51850000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:55,198 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:55,198 [root] DEBUG: 6428: DLL loaded at 0x00007FFB51850000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:56,272 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:56,274 [root] DEBUG: 6428: DLL loaded at 0x00007FFB51850000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:57,343 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:57,345 [root] DEBUG: 6428: DLL loaded at 0x00007FFB51850000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:58,407 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:58,409 [root] DEBUG: 6428: DLL loaded at 0x00007FFB51710000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:43:59,486 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:43:59,488 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:00,588 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:00,590 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:01,759 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:01,761 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:02,879 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:02,881 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:03,942 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:03,944 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:04,992 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:04,996 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:06,040 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:06,043 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:07,083 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:07,085 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:08,132 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:08,134 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:09,179 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:09,181 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:11,225 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:11,227 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:12,700 [root] DEBUG: 4840: DLL loaded at 0x00007FFB8A150000: \\\\?\\C:\\Windows\\System32\\SecurityHealthProxyStub (0x2d000 bytes).\n2025-08-31 06:44:12,751 [root] DEBUG: 1112: CreateProcessHandler: Injection info set for new process 3744: \\\\?\\C:\\Windows\\System32\\SecurityHealthHost.exe, ImageBase: 0x00007FF7ACCE0000\n2025-08-31 06:44:12,753 [root] INFO: Announced 64-bit process name: SecurityHealthHost.exe pid: 3744\n2025-08-31 06:44:12,755 [lib.api.process] INFO: Monitor config for <Process 3744 SecurityHealthHost.exe>: C:\\qstr2giq\\dll\\3744.ini\n2025-08-31 06:44:12,759 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:44:12,773 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:44:12,804 [root] DEBUG: Loader: Injecting process 3744 (thread 9072) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:44:12,814 [root] DEBUG: InjectDllViaIAT: Failed to allocate region in target process for new import table.\n2025-08-31 06:44:12,816 [root] DEBUG: Error 5 (0x5) - InjectDllViaQueuedAPC: Failed to allocate buffer in target: Access is denied.\n2025-08-31 06:44:12,818 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:44:12,826 [root] INFO: Announced 64-bit process name: SecurityHealthHost.exe pid: 3744\n2025-08-31 06:44:12,830 [lib.api.process] INFO: Monitor config for <Process 3744 SecurityHealthHost.exe>: C:\\qstr2giq\\dll\\3744.ini\n2025-08-31 06:44:12,830 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:44:12,846 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:44:12,864 [root] DEBUG: Loader: Injecting process 3744 (thread 9072) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:44:12,873 [root] DEBUG: InjectDllViaIAT: Failed to allocate region in target process for new import table.\n2025-08-31 06:44:12,875 [root] DEBUG: Error 5 (0x5) - InjectDllViaQueuedAPC: Failed to allocate buffer in target: Access is denied.\n2025-08-31 06:44:12,877 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:44:13,271 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:13,273 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:15,364 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:15,366 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:16,447 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:16,449 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:17,671 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:17,673 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:18,901 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:18,905 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:20,043 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:20,045 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:21,203 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:21,205 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:22,300 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:22,302 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:23,393 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:23,395 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:24,453 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:24,455 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:25,520 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:25,522 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:26,598 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:26,600 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:27,735 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:27,735 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:28,804 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:28,806 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:29,881 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:29,883 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:30,961 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:30,963 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:32,032 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:32,034 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:33,098 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:33,100 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:34,207 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:34,209 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:35,309 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:35,311 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:36,376 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:36,378 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:37,543 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:37,545 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:38,632 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:38,634 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:39,726 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:39,728 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:40,879 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:40,881 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:42,095 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:42,097 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:43,188 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:43,190 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:44,287 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:44,289 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:45,356 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:45,358 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:46,551 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:46,553 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:47,728 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:47,732 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:48,809 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:48,811 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:49,907 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:49,911 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:50,661 [root] DEBUG: 2816: DLL loaded at 0x00007FFB8C2B0000: C:\\WINDOWS\\System32\\Win32_DeviceGuard (0x20000 bytes).\n2025-08-31 06:44:50,667 [root] DEBUG: 2816: DLL loaded at 0x00007FFB8E5E0000: C:\\WINDOWS\\SYSTEM32\\miutils (0x61000 bytes).\n2025-08-31 06:44:50,669 [root] DEBUG: 2816: DLL loaded at 0x00007FFB56FA0000: C:\\WINDOWS\\system32\\wmitomi (0x33000 bytes).\n2025-08-31 06:44:50,700 [root] DEBUG: 2816: DLL loaded at 0x00007FFB90EC0000: C:\\WINDOWS\\system32\\wbem\\wbemprox (0x12000 bytes).\n2025-08-31 06:44:50,991 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:50,993 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:52,053 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:52,053 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:52,318 [root] DEBUG: 1112: CreateProcessHandler: Injection info set for new process 9952: C:\\WINDOWS\\system32\\backgroundTaskHost.exe, ImageBase: 0x00007FF77A6A0000\n2025-08-31 06:44:52,319 [root] INFO: Announced 64-bit process name: backgroundTaskHost.exe pid: 9952\n2025-08-31 06:44:52,321 [lib.api.process] INFO: Monitor config for <Process 9952 backgroundTaskHost.exe>: C:\\qstr2giq\\dll\\9952.ini\n2025-08-31 06:44:52,325 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:44:52,341 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:44:52,416 [root] DEBUG: Loader: Injecting process 9952 (thread 8392) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:44:52,418 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\n2025-08-31 06:44:52,420 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:44:52,426 [lib.api.process] INFO: Injected into 64-bit <Process 9952 backgroundTaskHost.exe>\n2025-08-31 06:44:52,436 [root] INFO: Announced 64-bit process name: backgroundTaskHost.exe pid: 9952\n2025-08-31 06:44:52,436 [lib.api.process] INFO: Monitor config for <Process 9952 backgroundTaskHost.exe>: C:\\qstr2giq\\dll\\9952.ini\n2025-08-31 06:44:52,438 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:44:52,452 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:44:52,482 [root] DEBUG: Loader: Injecting process 9952 (thread 8392) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:44:52,484 [root] DEBUG: InjectDllViaIAT: This image has already been patched.\n2025-08-31 06:44:52,486 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:44:52,490 [lib.api.process] INFO: Injected into 64-bit <Process 9952 backgroundTaskHost.exe>\n2025-08-31 06:44:53,136 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:53,138 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:54,250 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:54,252 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:55,316 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:55,318 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:56,389 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:56,389 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:57,488 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:57,488 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:58,449 [root] DEBUG: 1112: CreateProcessHandler: Injection info set for new process 2352: C:\\WINDOWS\\system32\\DllHost.exe, ImageBase: 0x00007FF6C0730000\n2025-08-31 06:44:58,451 [root] INFO: Announced 64-bit process name: dllhost.exe pid: 2352\n2025-08-31 06:44:58,453 [lib.api.process] INFO: Monitor config for <Process 2352 dllhost.exe>: C:\\qstr2giq\\dll\\2352.ini\n2025-08-31 06:44:58,457 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:44:58,480 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:44:58,544 [root] DEBUG: Loader: Injecting process 2352 (thread 2368) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:44:58,546 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\n2025-08-31 06:44:58,546 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:44:58,552 [lib.api.process] INFO: Injected into 64-bit <Process 2352 dllhost.exe>\n2025-08-31 06:44:58,561 [root] INFO: Announced 64-bit process name: dllhost.exe pid: 2352\n2025-08-31 06:44:58,561 [lib.api.process] INFO: Monitor config for <Process 2352 dllhost.exe>: C:\\qstr2giq\\dll\\2352.ini\n2025-08-31 06:44:58,563 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:44:58,565 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:58,569 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:44:58,585 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:44:58,608 [root] DEBUG: Loader: Injecting process 2352 (thread 2368) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:44:58,609 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\n2025-08-31 06:44:58,611 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:44:58,615 [lib.api.process] INFO: Injected into 64-bit <Process 2352 dllhost.exe>\n2025-08-31 06:44:58,687 [root] DEBUG: 2352: Python path set to 'C:\\Users\\Alex Dan\\AppData\\Local\\Programs\\Python\\Python310-32'.\n2025-08-31 06:44:58,689 [root] DEBUG: 2352: Interactive desktop enabled.\n2025-08-31 06:44:58,691 [root] DEBUG: 2352: Dropped file limit defaulting to 100.\n2025-08-31 06:44:58,705 [root] DEBUG: 2352: Disabling sleep skipping.\n2025-08-31 06:44:58,750 [root] DEBUG: 2352: YaraInit: Compiled rules loaded from existing file C:\\qstr2giq\\data\\yara\\capemon.yac\n2025-08-31 06:44:58,770 [root] DEBUG: 2352: YaraScan: Scanning 0x00007FF6C0730000, size 0xb000\n2025-08-31 06:44:58,772 [root] DEBUG: 2352: Monitor initialised: 64-bit capemon loaded in process 2352 at 0x00007FFB53590000, thread 2368, image base 0x00007FF6C0730000, stack from 0x00000094850F4000-0x0000009485100000\n2025-08-31 06:44:58,774 [root] DEBUG: 2352: Commandline: C:\\WINDOWS\\system32\\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}\n2025-08-31 06:44:58,793 [root] DEBUG: 2352: hook_api: LdrpCallInitRoutine export address 0x00007FFB9ED72980 obtained via GetFunctionAddress\n2025-08-31 06:44:58,825 [root] INFO: Process with pid 8420 appears to have terminated\n2025-08-31 06:44:58,861 [root] WARNING: b'Unable to place hook on LockResource'\n2025-08-31 06:44:58,863 [root] DEBUG: 2352: set_hooks: Unable to hook LockResource\n2025-08-31 06:44:58,883 [root] DEBUG: 2352: Hooked 616 out of 617 functions\n2025-08-31 06:44:58,884 [root] DEBUG: 2352: Syscall hook installed, syscall logging level 1\n2025-08-31 06:44:58,892 [root] INFO: Loaded monitor into process with pid 2352\n2025-08-31 06:44:58,896 [root] DEBUG: 2352: caller_dispatch: Added region at 0x00007FF6C0730000 to tracked regions list (ntdll::NtAllocateVirtualMemory returns to 0x00007FF6C0731112, thread 2368).\n2025-08-31 06:44:58,900 [root] DEBUG: 2352: YaraScan: Scanning 0x00007FF6C0730000, size 0xb000\n2025-08-31 06:44:58,902 [root] DEBUG: 2352: ProcessImageBase: Main module image at 0x00007FF6C0730000 unmodified (entropy change 0.000000e+00)\n2025-08-31 06:44:59,666 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:44:59,668 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:00,913 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:00,915 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:02,058 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:02,060 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:03,217 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:03,219 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:04,328 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:04,330 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:04,861 [root] DEBUG: 6656: api-cap: CoCreateInstance hook disabled due to count: 5000\n2025-08-31 06:45:05,516 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:05,518 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:06,597 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:06,600 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:07,817 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:07,819 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:08,901 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:08,901 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:09,992 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:09,993 [root] DEBUG: 6428: DLL loaded at 0x00007FFB570C0000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:10,525 [root] INFO: Announced starting service \"b'WaaSMedicSvc'\"\n2025-08-31 06:45:11,066 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:11,068 [root] DEBUG: 6428: DLL loaded at 0x00007FFB54850000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:11,913 [root] DEBUG: 1112: CreateProcessHandler: Injection info set for new process 1120: C:\\WINDOWS\\system32\\backgroundTaskHost.exe, ImageBase: 0x00007FF77A6A0000\n2025-08-31 06:45:11,915 [root] INFO: Announced 64-bit process name: backgroundTaskHost.exe pid: 1120\n2025-08-31 06:45:11,919 [lib.api.process] INFO: Monitor config for <Process 1120 backgroundTaskHost.exe>: C:\\qstr2giq\\dll\\1120.ini\n2025-08-31 06:45:12,151 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:12,151 [root] DEBUG: 6428: DLL loaded at 0x00007FFB52830000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:12,881 [root] DEBUG: 1112: CreateProcessHandler: Injection info set for new process 7112: C:\\Program Files\\WindowsApps\\Microsoft.WidgetsPlatformRuntime_1.6.9.0_x64__8wekyb3d8bbwe\\WidgetService\\WidgetService.exe, ImageBase: 0x00007FF638400000\n2025-08-31 06:45:12,885 [root] INFO: Announced 64-bit process name: WidgetService.exe pid: 7112\n2025-08-31 06:45:12,889 [lib.api.process] INFO: Monitor config for <Process 7112 WidgetService.exe>: C:\\qstr2giq\\dll\\7112.ini\n2025-08-31 06:45:12,895 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:45:12,938 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:45:12,954 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:45:13,017 [root] DEBUG: Loader: Injecting process 1120 (thread 3576) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:13,021 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\n2025-08-31 06:45:13,023 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:13,027 [lib.api.process] INFO: Injected into 64-bit <Process 1120 backgroundTaskHost.exe>\n2025-08-31 06:45:13,037 [root] INFO: Announced 64-bit process name: backgroundTaskHost.exe pid: 1120\n2025-08-31 06:45:13,039 [lib.api.process] INFO: Monitor config for <Process 1120 backgroundTaskHost.exe>: C:\\qstr2giq\\dll\\1120.ini\n2025-08-31 06:45:13,039 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:45:13,053 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:45:13,079 [root] DEBUG: Loader: Injecting process 1120 (thread 3576) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:13,081 [root] DEBUG: InjectDllViaIAT: This image has already been patched.\n2025-08-31 06:45:13,083 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:13,088 [lib.api.process] INFO: Injected into 64-bit <Process 1120 backgroundTaskHost.exe>\n2025-08-31 06:45:13,233 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:13,237 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57920000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:13,560 [root] DEBUG: 1112: CreateProcessHandler: Injection info set for new process 9348: C:\\WINDOWS\\system32\\BackgroundTaskHost.exe, ImageBase: 0x00007FF77A6A0000\n2025-08-31 06:45:13,564 [root] INFO: Announced 64-bit process name: backgroundTaskHost.exe pid: 9348\n2025-08-31 06:45:13,568 [lib.api.process] INFO: Monitor config for <Process 9348 backgroundTaskHost.exe>: C:\\qstr2giq\\dll\\9348.ini\n2025-08-31 06:45:13,572 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:45:13,592 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:45:13,624 [root] DEBUG: Loader: Injecting process 9348 (thread 8352) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:13,626 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\n2025-08-31 06:45:13,626 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:13,633 [lib.api.process] INFO: Injected into 64-bit <Process 9348 backgroundTaskHost.exe>\n2025-08-31 06:45:13,646 [root] INFO: Announced 64-bit process name: backgroundTaskHost.exe pid: 9348\n2025-08-31 06:45:13,648 [lib.api.process] INFO: Monitor config for <Process 9348 backgroundTaskHost.exe>: C:\\qstr2giq\\dll\\9348.ini\n2025-08-31 06:45:13,649 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:45:13,673 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:45:13,701 [root] DEBUG: Loader: Injecting process 9348 (thread 8352) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:13,703 [root] DEBUG: InjectDllViaIAT: This image has already been patched.\n2025-08-31 06:45:13,705 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:13,709 [lib.api.process] INFO: Injected into 64-bit <Process 9348 backgroundTaskHost.exe>\n2025-08-31 06:45:14,309 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:14,311 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57920000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:14,372 [root] DEBUG: 2816: api-cap: NtSetInformationFile hook disabled due to count: 5000\n2025-08-31 06:45:15,046 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:45:15,075 [root] DEBUG: Loader: Injecting process 7112 (thread 3824) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:15,081 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\n2025-08-31 06:45:15,083 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:15,087 [lib.api.process] INFO: Injected into 64-bit <Process 7112 WidgetService.exe>\n2025-08-31 06:45:15,095 [root] INFO: Announced 64-bit process name: WidgetService.exe pid: 7112\n2025-08-31 06:45:15,097 [lib.api.process] INFO: Monitor config for <Process 7112 WidgetService.exe>: C:\\qstr2giq\\dll\\7112.ini\n2025-08-31 06:45:15,100 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:45:15,377 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:15,381 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57920000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:16,446 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:16,448 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57920000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:17,030 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:45:17,062 [root] DEBUG: Loader: Injecting process 7112 (thread 3824) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:17,062 [root] DEBUG: InjectDllViaIAT: This image has already been patched.\n2025-08-31 06:45:17,064 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:17,068 [lib.api.process] INFO: Injected into 64-bit <Process 7112 WidgetService.exe>\n2025-08-31 06:45:17,530 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:17,532 [root] DEBUG: 6428: DLL loaded at 0x00007FFB54850000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:17,831 [root] DEBUG: 7112: Python path set to 'C:\\Users\\Alex Dan\\AppData\\Local\\Programs\\Python\\Python310-32'.\n2025-08-31 06:45:17,833 [root] DEBUG: 7112: Interactive desktop enabled.\n2025-08-31 06:45:17,835 [root] DEBUG: 7112: Dropped file limit defaulting to 100.\n2025-08-31 06:45:17,846 [root] DEBUG: 7112: Disabling sleep skipping.\n2025-08-31 06:45:17,850 [root] DEBUG: 7112: YaraInit: Compiled rules loaded from existing file C:\\qstr2giq\\data\\yara\\capemon.yac\n2025-08-31 06:45:17,866 [root] DEBUG: 7112: YaraScan: Scanning 0x00007FF638400000, size 0x3a670\n2025-08-31 06:45:17,870 [root] DEBUG: 7112: Monitor initialised: 64-bit capemon loaded in process 7112 at 0x00007FFB53590000, thread 3824, image base 0x00007FF638400000, stack from 0x000000B3C82F4000-0x000000B3C8300000\n2025-08-31 06:45:17,872 [root] DEBUG: 7112: Commandline: \"C:\\Program Files\\WindowsApps\\Microsoft.WidgetsPlatformRuntime_1.6.9.0_x64__8wekyb3d8bbwe\\WidgetService\\WidgetService.exe\" -RegisterProcessAsComServer -Embedding\n2025-08-31 06:45:17,935 [root] DEBUG: 7112: hook_api: LdrpCallInitRoutine export address 0x00007FFB9ED72980 obtained via GetFunctionAddress\n2025-08-31 06:45:18,005 [root] WARNING: b'Unable to place hook on LockResource'\n2025-08-31 06:45:18,007 [root] DEBUG: 7112: set_hooks: Unable to hook LockResource\n2025-08-31 06:45:18,028 [root] DEBUG: 7112: Hooked 616 out of 617 functions\n2025-08-31 06:45:18,028 [root] DEBUG: 7112: Syscall hook installed, syscall logging level 1\n2025-08-31 06:45:18,036 [root] INFO: Loaded monitor into process with pid 7112\n2025-08-31 06:45:18,038 [root] DEBUG: 7112: caller_dispatch: Added region at 0x00007FF638400000 to tracked regions list (kernel32::LoadLibraryExW returns to 0x00007FF63841A987, thread 3824).\n2025-08-31 06:45:18,042 [root] DEBUG: 7112: YaraScan: Scanning 0x00007FF638400000, size 0x3a670\n2025-08-31 06:45:18,046 [root] DEBUG: 7112: ProcessImageBase: Main module image at 0x00007FF638400000 unmodified (entropy change 0.000000e+00)\n2025-08-31 06:45:18,618 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:18,620 [root] DEBUG: 6428: DLL loaded at 0x00007FFB54850000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:19,744 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:19,748 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57920000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:20,815 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:20,817 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57920000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:21,586 [root] DEBUG: 1112: CreateProcessHandler: Injection info set for new process 5504: C:\\WINDOWS\\system32\\DllHost.exe, ImageBase: 0x00007FF6C0730000\n2025-08-31 06:45:21,588 [root] INFO: Announced 64-bit process name: dllhost.exe pid: 5504\n2025-08-31 06:45:21,590 [lib.api.process] INFO: Monitor config for <Process 5504 dllhost.exe>: C:\\qstr2giq\\dll\\5504.ini\n2025-08-31 06:45:21,596 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:45:21,622 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:45:21,630 [root] DEBUG: 1112: CreateProcessHandler: Injection info set for new process 1568: C:\\Windows\\System32\\RuntimeBroker.exe, ImageBase: 0x00007FF788F90000\n2025-08-31 06:45:21,632 [root] INFO: Announced 64-bit process name: RuntimeBroker.exe pid: 1568\n2025-08-31 06:45:21,634 [lib.api.process] INFO: Monitor config for <Process 1568 RuntimeBroker.exe>: C:\\qstr2giq\\dll\\1568.ini\n2025-08-31 06:45:21,640 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:45:21,665 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:45:21,734 [root] DEBUG: Loader: Injecting process 5504 (thread 8924) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:21,736 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\n2025-08-31 06:45:21,738 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:21,744 [lib.api.process] INFO: Injected into 64-bit <Process 5504 dllhost.exe>\n2025-08-31 06:45:21,750 [root] INFO: Announced 64-bit process name: dllhost.exe pid: 5504\n2025-08-31 06:45:21,752 [lib.api.process] INFO: Monitor config for <Process 5504 dllhost.exe>: C:\\qstr2giq\\dll\\5504.ini\n2025-08-31 06:45:21,754 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:45:21,756 [root] DEBUG: Loader: Injecting process 1568 (thread 9476) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:21,762 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\n2025-08-31 06:45:21,764 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:21,768 [lib.api.process] INFO: Injected into 64-bit <Process 1568 RuntimeBroker.exe>\n2025-08-31 06:45:21,776 [root] INFO: Announced 64-bit process name: RuntimeBroker.exe pid: 1568\n2025-08-31 06:45:21,778 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:45:21,780 [lib.api.process] INFO: Monitor config for <Process 1568 RuntimeBroker.exe>: C:\\qstr2giq\\dll\\1568.ini\n2025-08-31 06:45:21,782 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:45:21,809 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:45:21,827 [root] DEBUG: Loader: Injecting process 5504 (thread 8924) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:21,829 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\n2025-08-31 06:45:21,831 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:21,847 [lib.api.process] INFO: Injected into 64-bit <Process 5504 dllhost.exe>\n2025-08-31 06:45:21,851 [root] DEBUG: Loader: Injecting process 1568 (thread 9476) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:21,855 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\n2025-08-31 06:45:21,857 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:21,865 [lib.api.process] INFO: Injected into 64-bit <Process 1568 RuntimeBroker.exe>\n2025-08-31 06:45:21,922 [root] DEBUG: 5504: Python path set to 'C:\\Users\\Alex Dan\\AppData\\Local\\Programs\\Python\\Python310-32'.\n2025-08-31 06:45:21,926 [root] DEBUG: 1568: Python path set to 'C:\\Users\\Alex Dan\\AppData\\Local\\Programs\\Python\\Python310-32'.\n2025-08-31 06:45:21,928 [root] DEBUG: 5504: Interactive desktop enabled.\n2025-08-31 06:45:21,931 [root] DEBUG: 1568: Interactive desktop enabled.\n2025-08-31 06:45:21,932 [root] DEBUG: 5504: Dropped file limit defaulting to 100.\n2025-08-31 06:45:21,934 [root] DEBUG: 1568: Dropped file limit defaulting to 100.\n2025-08-31 06:45:21,941 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:21,944 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57920000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:21,944 [root] DEBUG: 5504: Disabling sleep skipping.\n2025-08-31 06:45:21,946 [root] DEBUG: 1568: Disabling sleep skipping.\n2025-08-31 06:45:21,950 [root] DEBUG: 5504: YaraInit: Compiled rules loaded from existing file C:\\qstr2giq\\data\\yara\\capemon.yac\n2025-08-31 06:45:21,954 [root] DEBUG: 1568: YaraInit: Compiled rules loaded from existing file C:\\qstr2giq\\data\\yara\\capemon.yac\n2025-08-31 06:45:21,989 [root] DEBUG: 5504: YaraScan: Scanning 0x00007FF6C0730000, size 0xb000\n2025-08-31 06:45:21,993 [root] DEBUG: 1568: YaraScan: Scanning 0x00007FF788F90000, size 0x20000\n2025-08-31 06:45:21,995 [root] DEBUG: 5504: Monitor initialised: 64-bit capemon loaded in process 5504 at 0x00007FFB53590000, thread 8924, image base 0x00007FF6C0730000, stack from 0x00000060732F5000-0x0000006073300000\n2025-08-31 06:45:21,995 [root] DEBUG: 5504: Commandline: C:\\WINDOWS\\system32\\DllHost.exe /Processid:{69B7FE84-6361-4423-B948-1D64820B1E96}\n2025-08-31 06:45:22,007 [root] DEBUG: 1568: Monitor initialised: 64-bit capemon loaded in process 1568 at 0x00007FFB53590000, thread 9476, image base 0x00007FF788F90000, stack from 0x00000087ABCB4000-0x00000087ABCC0000\n2025-08-31 06:45:22,011 [root] DEBUG: 1568: Commandline: C:\\Windows\\System32\\RuntimeBroker.exe -Embedding\n2025-08-31 06:45:22,027 [root] DEBUG: 5504: hook_api: LdrpCallInitRoutine export address 0x00007FFB9ED72980 obtained via GetFunctionAddress\n2025-08-31 06:45:22,045 [root] DEBUG: 1568: hook_api: LdrpCallInitRoutine export address 0x00007FFB9ED72980 obtained via GetFunctionAddress\n2025-08-31 06:45:22,100 [root] WARNING: b'Unable to place hook on LockResource'\n2025-08-31 06:45:22,106 [root] DEBUG: 5504: set_hooks: Unable to hook LockResource\n2025-08-31 06:45:22,120 [root] WARNING: b'Unable to place hook on LockResource'\n2025-08-31 06:45:22,124 [root] DEBUG: 1568: set_hooks: Unable to hook LockResource\n2025-08-31 06:45:22,126 [root] DEBUG: 5504: Hooked 616 out of 617 functions\n2025-08-31 06:45:22,128 [root] DEBUG: 5504: Syscall hook installed, syscall logging level 1\n2025-08-31 06:45:22,135 [root] INFO: Loaded monitor into process with pid 5504\n2025-08-31 06:45:22,139 [root] DEBUG: 5504: caller_dispatch: Added region at 0x00007FF6C0730000 to tracked regions list (ntdll::NtAllocateVirtualMemory returns to 0x00007FF6C0731112, thread 8924).\n2025-08-31 06:45:22,143 [root] DEBUG: 5504: YaraScan: Scanning 0x00007FF6C0730000, size 0xb000\n2025-08-31 06:45:22,145 [root] DEBUG: 1568: Hooked 616 out of 617 functions\n2025-08-31 06:45:22,147 [root] DEBUG: 5504: ProcessImageBase: Main module image at 0x00007FF6C0730000 unmodified (entropy change 0.000000e+00)\n2025-08-31 06:45:22,147 [root] DEBUG: 1568: Syscall hook installed, syscall logging level 1\n2025-08-31 06:45:22,155 [root] INFO: Loaded monitor into process with pid 1568\n2025-08-31 06:45:22,157 [root] DEBUG: 1568: caller_dispatch: Added region at 0x00007FF788F90000 to tracked regions list (ntdll::NtAllocateVirtualMemoryEx returns to 0x00007FF788F990F2, thread 9476).\n2025-08-31 06:45:22,163 [root] DEBUG: 1568: YaraScan: Scanning 0x00007FF788F90000, size 0x20000\n2025-08-31 06:45:22,169 [root] DEBUG: 1568: ProcessImageBase: Main module image at 0x00007FF788F90000 unmodified (entropy change 0.000000e+00)\n2025-08-31 06:45:22,219 [root] INFO: Process with pid 9048 appears to have terminated\n2025-08-31 06:45:23,055 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:23,057 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57920000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:24,129 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:24,131 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57920000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:24,208 [root] DEBUG: 6656: CreateProcessHandler: Injection info set for new process 7232: \\\\?\\C:\\WINDOWS\\system32\\wbem\\WMIADAP.EXE, ImageBase: 0x00007FF799630000\n2025-08-31 06:45:24,212 [root] INFO: Announced 64-bit process name: WMIADAP.exe pid: 7232\n2025-08-31 06:45:24,214 [lib.api.process] INFO: Monitor config for <Process 7232 WMIADAP.exe>: C:\\qstr2giq\\dll\\7232.ini\n2025-08-31 06:45:24,218 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:45:25,253 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:25,255 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:25,319 [root] DEBUG: 1112: CreateProcessHandler: Injection info set for new process 5856: C:\\WINDOWS\\system32\\BackgroundTaskHost.exe, ImageBase: 0x00007FF77A6A0000\n2025-08-31 06:45:25,323 [root] INFO: Announced 64-bit process name: backgroundTaskHost.exe pid: 5856\n2025-08-31 06:45:25,323 [lib.api.process] INFO: Monitor config for <Process 5856 backgroundTaskHost.exe>: C:\\qstr2giq\\dll\\5856.ini\n2025-08-31 06:45:25,327 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:45:25,347 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:45:25,467 [root] DEBUG: Loader: Injecting process 5856 (thread 8308) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:25,467 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\n2025-08-31 06:45:25,471 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:25,475 [lib.api.process] INFO: Injected into 64-bit <Process 5856 backgroundTaskHost.exe>\n2025-08-31 06:45:25,489 [root] INFO: Announced 64-bit process name: backgroundTaskHost.exe pid: 5856\n2025-08-31 06:45:25,491 [lib.api.process] INFO: Monitor config for <Process 5856 backgroundTaskHost.exe>: C:\\qstr2giq\\dll\\5856.ini\n2025-08-31 06:45:25,493 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:45:25,509 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:45:25,538 [root] DEBUG: Loader: Injecting process 5856 (thread 8308) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:25,540 [root] DEBUG: InjectDllViaIAT: This image has already been patched.\n2025-08-31 06:45:25,544 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:25,549 [lib.api.process] INFO: Injected into 64-bit <Process 5856 backgroundTaskHost.exe>\n2025-08-31 06:45:26,423 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:26,427 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:26,757 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:45:26,787 [root] DEBUG: Loader: Injecting process 7232 (thread 9908) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:26,791 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\n2025-08-31 06:45:26,795 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:26,799 [lib.api.process] INFO: Injected into 64-bit <Process 7232 WMIADAP.exe>\n2025-08-31 06:45:26,809 [root] INFO: Announced 64-bit process name: WMIADAP.exe pid: 7232\n2025-08-31 06:45:26,813 [lib.api.process] INFO: Monitor config for <Process 7232 WMIADAP.exe>: C:\\qstr2giq\\dll\\7232.ini\n2025-08-31 06:45:26,815 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:45:27,531 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:27,535 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:29,074 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:45:29,097 [root] DEBUG: Loader: Injecting process 7232 (thread 9908) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:29,099 [root] DEBUG: InjectDllViaIAT: This image has already been patched.\n2025-08-31 06:45:29,101 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:29,105 [lib.api.process] INFO: Injected into 64-bit <Process 7232 WMIADAP.exe>\n2025-08-31 06:45:29,141 [root] DEBUG: 7232: Python path set to 'C:\\Users\\Alex Dan\\AppData\\Local\\Programs\\Python\\Python310-32'.\n2025-08-31 06:45:29,143 [root] DEBUG: 7232: Interactive desktop enabled.\n2025-08-31 06:45:29,147 [root] DEBUG: 7232: Dropped file limit defaulting to 100.\n2025-08-31 06:45:29,161 [root] DEBUG: 7232: Disabling sleep skipping.\n2025-08-31 06:45:29,163 [root] DEBUG: 7232: YaraInit: Compiled rules loaded from existing file C:\\qstr2giq\\data\\yara\\capemon.yac\n2025-08-31 06:45:29,186 [root] DEBUG: 7232: YaraScan: Scanning 0x00007FF799630000, size 0x39000\n2025-08-31 06:45:29,190 [root] DEBUG: 7232: Monitor initialised: 64-bit capemon loaded in process 7232 at 0x00007FFB53590000, thread 9908, image base 0x00007FF799630000, stack from 0x000000C4D3900000-0x000000C4D3910000\n2025-08-31 06:45:29,192 [root] DEBUG: 7232: Commandline: wmiadap.exe /F /T /R\n2025-08-31 06:45:29,224 [root] DEBUG: 7232: hook_api: LdrpCallInitRoutine export address 0x00007FFB9ED72980 obtained via GetFunctionAddress\n2025-08-31 06:45:29,299 [root] WARNING: b'Unable to place hook on LockResource'\n2025-08-31 06:45:29,303 [root] DEBUG: 7232: set_hooks: Unable to hook LockResource\n2025-08-31 06:45:29,326 [root] DEBUG: 7232: Hooked 616 out of 617 functions\n2025-08-31 06:45:29,329 [root] DEBUG: 7232: Syscall hook installed, syscall logging level 1\n2025-08-31 06:45:29,335 [root] INFO: Loaded monitor into process with pid 7232\n2025-08-31 06:45:29,348 [root] DEBUG: 7232: caller_dispatch: Added region at 0x00007FF799630000 to tracked regions list (kernel32::SetUnhandledExceptionFilter returns to 0x00007FF799631A61, thread 9908).\n2025-08-31 06:45:29,349 [root] DEBUG: 7232: YaraScan: Scanning 0x00007FF799630000, size 0x39000\n2025-08-31 06:45:29,353 [root] DEBUG: 7232: ProcessImageBase: Main module image at 0x00007FF799630000 unmodified (entropy change 0.000000e+00)\n2025-08-31 06:45:29,617 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:29,619 [root] DEBUG: 6428: DLL loaded at 0x00007FFB54850000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:30,687 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:30,689 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:31,841 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:31,843 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:32,454 [root] DEBUG: 1112: CreateProcessHandler: Injection info set for new process 10680: C:\\WINDOWS\\system32\\BackgroundTaskHost.exe, ImageBase: 0x00007FF77A6A0000\n2025-08-31 06:45:32,456 [root] INFO: Announced 64-bit process name: backgroundTaskHost.exe pid: 10680\n2025-08-31 06:45:32,458 [lib.api.process] INFO: Monitor config for <Process 10680 backgroundTaskHost.exe>: C:\\qstr2giq\\dll\\10680.ini\n2025-08-31 06:45:32,464 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:45:32,481 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:45:32,540 [root] DEBUG: Loader: Injecting process 10680 (thread 10684) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:32,544 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\n2025-08-31 06:45:32,546 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:32,556 [lib.api.process] INFO: Injected into 64-bit <Process 10680 backgroundTaskHost.exe>\n2025-08-31 06:45:32,613 [root] INFO: Announced 64-bit process name: backgroundTaskHost.exe pid: 10680\n2025-08-31 06:45:32,615 [lib.api.process] INFO: Monitor config for <Process 10680 backgroundTaskHost.exe>: C:\\qstr2giq\\dll\\10680.ini\n2025-08-31 06:45:32,619 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:45:32,639 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:45:32,686 [root] DEBUG: Loader: Injecting process 10680 (thread 10684) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:32,690 [root] DEBUG: InjectDllViaIAT: This image has already been patched.\n2025-08-31 06:45:32,692 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:32,702 [lib.api.process] INFO: Injected into 64-bit <Process 10680 backgroundTaskHost.exe>\n2025-08-31 06:45:33,055 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:33,058 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:34,135 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:34,137 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:34,273 [root] DEBUG: 1112: CreateProcessHandler: Injection info set for new process 11000: C:\\WINDOWS\\system32\\BackgroundTaskHost.exe, ImageBase: 0x00007FF77A6A0000\n2025-08-31 06:45:34,277 [root] INFO: Announced 64-bit process name: backgroundTaskHost.exe pid: 11000\n2025-08-31 06:45:34,279 [lib.api.process] INFO: Monitor config for <Process 11000 backgroundTaskHost.exe>: C:\\qstr2giq\\dll\\11000.ini\n2025-08-31 06:45:34,283 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:45:34,311 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:45:34,335 [root] DEBUG: Loader: Injecting process 11000 (thread 11004) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:34,339 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\n2025-08-31 06:45:34,341 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:34,345 [lib.api.process] INFO: Injected into 64-bit <Process 11000 backgroundTaskHost.exe>\n2025-08-31 06:45:34,354 [root] INFO: Announced 64-bit process name: backgroundTaskHost.exe pid: 11000\n2025-08-31 06:45:34,356 [lib.api.process] INFO: Monitor config for <Process 11000 backgroundTaskHost.exe>: C:\\qstr2giq\\dll\\11000.ini\n2025-08-31 06:45:34,356 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:45:34,376 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:45:34,398 [root] DEBUG: Loader: Injecting process 11000 (thread 11004) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:34,400 [root] DEBUG: InjectDllViaIAT: This image has already been patched.\n2025-08-31 06:45:34,402 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:34,406 [lib.api.process] INFO: Injected into 64-bit <Process 11000 backgroundTaskHost.exe>\n2025-08-31 06:45:35,249 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:35,253 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:35,380 [root] DEBUG: 6656: api-cap: CoGetClassObject hook disabled due to count: 5000\n2025-08-31 06:45:35,767 [root] DEBUG: 1112: CreateProcessHandler: Injection info set for new process 11260: C:\\WINDOWS\\system32\\BackgroundTaskHost.exe, ImageBase: 0x00007FF77A6A0000\n2025-08-31 06:45:35,775 [root] INFO: Announced 64-bit process name: backgroundTaskHost.exe pid: 11260\n2025-08-31 06:45:35,779 [lib.api.process] INFO: Monitor config for <Process 11260 backgroundTaskHost.exe>: C:\\qstr2giq\\dll\\11260.ini\n2025-08-31 06:45:35,789 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:45:35,804 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:45:35,831 [root] DEBUG: Loader: Injecting process 11260 (thread 1164) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:35,835 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\n2025-08-31 06:45:35,836 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:35,841 [lib.api.process] INFO: Injected into 64-bit <Process 11260 backgroundTaskHost.exe>\n2025-08-31 06:45:35,853 [root] INFO: Announced 64-bit process name: backgroundTaskHost.exe pid: 11260\n2025-08-31 06:45:35,853 [lib.api.process] INFO: Monitor config for <Process 11260 backgroundTaskHost.exe>: C:\\qstr2giq\\dll\\11260.ini\n2025-08-31 06:45:35,855 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:45:35,876 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:45:35,894 [root] DEBUG: Loader: Injecting process 11260 (thread 1164) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:35,894 [root] DEBUG: InjectDllViaIAT: This image has already been patched.\n2025-08-31 06:45:35,900 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:35,906 [lib.api.process] INFO: Injected into 64-bit <Process 11260 backgroundTaskHost.exe>\n2025-08-31 06:45:36,347 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:36,349 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:37,424 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:37,428 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:38,485 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:38,487 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:39,564 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:39,566 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:40,625 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:40,627 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:41,692 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:41,694 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:42,774 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:42,776 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:43,842 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:43,844 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:44,905 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:44,905 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:45,711 [root] DEBUG: 1112: CreateProcessHandler: Injection info set for new process 11172: C:\\WINDOWS\\system32\\backgroundTaskHost.exe, ImageBase: 0x00007FF77A6A0000\n2025-08-31 06:45:45,714 [root] INFO: Announced 64-bit process name: backgroundTaskHost.exe pid: 11172\n2025-08-31 06:45:45,715 [lib.api.process] INFO: Monitor config for <Process 11172 backgroundTaskHost.exe>: C:\\qstr2giq\\dll\\11172.ini\n2025-08-31 06:45:45,721 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:45:45,739 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:45:45,763 [root] DEBUG: Loader: Injecting process 11172 (thread 11176) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:45,767 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\n2025-08-31 06:45:45,769 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:45,775 [lib.api.process] INFO: Injected into 64-bit <Process 11172 backgroundTaskHost.exe>\n2025-08-31 06:45:45,781 [root] INFO: Announced 64-bit process name: backgroundTaskHost.exe pid: 11172\n2025-08-31 06:45:45,783 [lib.api.process] INFO: Monitor config for <Process 11172 backgroundTaskHost.exe>: C:\\qstr2giq\\dll\\11172.ini\n2025-08-31 06:45:45,784 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:45:45,800 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:45:45,821 [root] DEBUG: Loader: Injecting process 11172 (thread 11176) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:45,821 [root] DEBUG: InjectDllViaIAT: This image has already been patched.\n2025-08-31 06:45:45,827 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:45,831 [lib.api.process] INFO: Injected into 64-bit <Process 11172 backgroundTaskHost.exe>\n2025-08-31 06:45:45,968 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:45,970 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:47,028 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:47,032 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:48,094 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:48,098 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:49,149 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:49,151 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:50,215 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:50,217 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:51,321 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:51,323 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:52,392 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:52,392 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:53,441 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:53,443 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:54,502 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:54,506 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:55,559 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:55,561 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:56,634 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:56,638 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:56,956 [root] DEBUG: 1112: CreateProcessHandler: Injection info set for new process 10276: C:\\WINDOWS\\system32\\backgroundTaskHost.exe, ImageBase: 0x00007FF77A6A0000\n2025-08-31 06:45:56,968 [root] INFO: Announced 64-bit process name: backgroundTaskHost.exe pid: 10276\n2025-08-31 06:45:56,970 [lib.api.process] INFO: Monitor config for <Process 10276 backgroundTaskHost.exe>: C:\\qstr2giq\\dll\\10276.ini\n2025-08-31 06:45:56,974 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:45:56,994 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:45:57,021 [root] DEBUG: Loader: Injecting process 10276 (thread 11176) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:57,021 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\n2025-08-31 06:45:57,025 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:57,029 [lib.api.process] INFO: Injected into 64-bit <Process 10276 backgroundTaskHost.exe>\n2025-08-31 06:45:57,041 [root] INFO: Announced 64-bit process name: backgroundTaskHost.exe pid: 10276\n2025-08-31 06:45:57,043 [lib.api.process] INFO: Monitor config for <Process 10276 backgroundTaskHost.exe>: C:\\qstr2giq\\dll\\10276.ini\n2025-08-31 06:45:57,047 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:45:57,063 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:45:57,081 [root] DEBUG: Loader: Injecting process 10276 (thread 11176) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:57,085 [root] DEBUG: InjectDllViaIAT: This image has already been patched.\n2025-08-31 06:45:57,085 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:57,088 [lib.api.process] INFO: Injected into 64-bit <Process 10276 backgroundTaskHost.exe>\n2025-08-31 06:45:57,457 [root] DEBUG: 1112: CreateProcessHandler: Injection info set for new process 10352: C:\\WINDOWS\\system32\\backgroundTaskHost.exe, ImageBase: 0x00007FF77A6A0000\n2025-08-31 06:45:57,461 [root] INFO: Announced 64-bit process name: backgroundTaskHost.exe pid: 10352\n2025-08-31 06:45:57,461 [lib.api.process] INFO: Monitor config for <Process 10352 backgroundTaskHost.exe>: C:\\qstr2giq\\dll\\10352.ini\n2025-08-31 06:45:57,465 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:45:57,487 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:45:57,509 [root] DEBUG: Loader: Injecting process 10352 (thread 6208) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:57,513 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\n2025-08-31 06:45:57,517 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:57,521 [lib.api.process] INFO: Injected into 64-bit <Process 10352 backgroundTaskHost.exe>\n2025-08-31 06:45:57,531 [root] INFO: Announced 64-bit process name: backgroundTaskHost.exe pid: 10352\n2025-08-31 06:45:57,533 [lib.api.process] INFO: Monitor config for <Process 10352 backgroundTaskHost.exe>: C:\\qstr2giq\\dll\\10352.ini\n2025-08-31 06:45:57,535 [lib.api.process] INFO: Option 'interactive' with value '1' sent to monitor\n2025-08-31 06:45:57,550 [lib.api.process] INFO: 64-bit DLL to inject is C:\\qstr2giq\\dll\\lkbYcofh.dll, loader C:\\qstr2giq\\bin\\gwHcFnLW.exe\n2025-08-31 06:45:57,570 [root] DEBUG: Loader: Injecting process 10352 (thread 6208) with C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:57,570 [root] DEBUG: InjectDllViaIAT: This image has already been patched.\n2025-08-31 06:45:57,574 [root] DEBUG: Successfully injected DLL C:\\qstr2giq\\dll\\lkbYcofh.dll.\n2025-08-31 06:45:57,578 [lib.api.process] INFO: Injected into 64-bit <Process 10352 backgroundTaskHost.exe>\n2025-08-31 06:45:57,744 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:57,746 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:58,824 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:58,826 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:45:59,907 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:45:59,909 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:46:00,969 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:46:00,969 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:46:02,030 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:46:02,032 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:46:03,097 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:46:03,099 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:46:04,179 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:46:04,181 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:46:05,263 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:46:05,265 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:46:06,354 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:46:06,356 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:46:07,428 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:46:07,430 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:46:08,495 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:46:08,496 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:46:09,616 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:46:09,618 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:46:11,712 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:46:11,714 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:46:13,785 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:46:13,787 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:46:15,843 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:46:15,845 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:46:16,907 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:46:16,909 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:46:17,969 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:46:17,971 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:46:19,039 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:46:19,041 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:46:20,186 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:46:20,188 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:46:21,254 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:46:21,256 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:46:22,325 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:46:22,327 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:46:23,391 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:46:23,393 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:46:24,472 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:46:24,475 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:46:25,583 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:46:25,593 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:46:26,646 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:46:26,654 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:46:27,722 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:46:27,726 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:46:27,963 [root] INFO: Analysis timeout hit, terminating analysis\n2025-08-31 06:46:27,965 [root] DEBUG: 1112: Terminate Event: Attempting to dump process 1112\n2025-08-31 06:46:27,965 [lib.api.process] INFO: Terminate event set for <Process 1112 svchost.exe>\n2025-08-31 06:46:27,969 [root] DEBUG: 1112: DoProcessDump: Skipping process dump as code is identical on disk.\n2025-08-31 06:46:27,979 [root] DEBUG: 1112: Terminate Event: monitor shutdown complete for process 1112\n2025-08-31 06:46:27,979 [lib.api.process] INFO: Termination confirmed for <Process 1112 svchost.exe>\n2025-08-31 06:46:27,981 [root] INFO: Terminate event set for process 1112\n2025-08-31 06:46:27,983 [lib.api.process] INFO: Terminate event set for <Process 2816 WmiPrvSE.exe>\n2025-08-31 06:46:27,985 [root] DEBUG: 2816: Terminate Event: Attempting to dump process 2816\n2025-08-31 06:46:27,991 [root] DEBUG: 2816: DoProcessDump: Skipping process dump as code is identical on disk.\n2025-08-31 06:46:27,999 [root] DEBUG: 2816: Terminate Event: Shutdown complete for process 2816 but failed to inform analyzer.\n2025-08-31 06:46:28,773 [root] DEBUG: 1112: CreateProcessHandler: Injection info set for new process 2784: C:\\WINDOWS\\system32\\DllHost.exe, ImageBase: 0x00007FF6C0730000\n2025-08-31 06:46:28,787 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:46:28,792 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:46:29,873 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:46:29,875 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:46:30,938 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:46:30,942 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:46:32,015 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:46:32,017 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:46:33,005 [lib.api.process] INFO: Termination confirmed for <Process 2816 WmiPrvSE.exe>\n2025-08-31 06:46:33,006 [root] INFO: Terminate event set for process 2816\n2025-08-31 06:46:33,006 [root] INFO: Terminating process 2816 before shutdown\n2025-08-31 06:46:33,006 [root] INFO: Waiting for process 2816 to exit\n2025-08-31 06:46:33,092 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:46:33,096 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:46:34,013 [root] INFO: Waiting for process 2816 to exit\n2025-08-31 06:46:34,158 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:46:34,163 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:46:35,028 [root] INFO: Waiting for process 2816 to exit\n2025-08-31 06:46:35,276 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:46:35,278 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:46:36,043 [root] INFO: Waiting for process 2816 to exit\n2025-08-31 06:46:36,365 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:46:36,367 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:46:37,058 [root] INFO: Waiting for process 2816 to exit\n2025-08-31 06:46:37,435 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:46:37,437 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:46:38,073 [root] INFO: Waiting for process 2816 to exit\n2025-08-31 06:46:38,521 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:46:38,525 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:46:39,090 [lib.api.process] INFO: Successfully terminated <Process 2816 WmiPrvSE.exe>\n2025-08-31 06:46:39,090 [root] INFO: Waiting for process 2816 to exit\n2025-08-31 06:46:39,604 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:46:39,606 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:46:40,104 [lib.api.process] INFO: Terminate event set for <Process 6656 svchost.exe>\n2025-08-31 06:46:40,108 [root] DEBUG: 6656: Terminate Event: Attempting to dump process 6656\n2025-08-31 06:46:40,110 [root] DEBUG: 6656: DoProcessDump: Skipping process dump as code is identical on disk.\n2025-08-31 06:46:40,118 [lib.api.process] INFO: Termination confirmed for <Process 6656 svchost.exe>\n2025-08-31 06:46:40,119 [root] INFO: Terminate event set for process 6656\n2025-08-31 06:46:40,119 [root] DEBUG: 6656: Terminate Event: monitor shutdown complete for process 6656\n2025-08-31 06:46:40,121 [lib.api.process] INFO: Terminate event set for <Process 6428 WmiPrvSE.exe>\n2025-08-31 06:46:40,123 [root] DEBUG: 6428: Terminate Event: Attempting to dump process 6428\n2025-08-31 06:46:40,129 [root] DEBUG: 6428: DoProcessDump: Skipping process dump as code is identical on disk.\n2025-08-31 06:46:40,135 [root] DEBUG: 6428: Terminate Event: Shutdown complete for process 6428 but failed to inform analyzer.\n2025-08-31 06:46:40,692 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:46:40,698 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:46:42,770 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:46:42,772 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57750000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:46:43,755 [root] DEBUG: 1112: CreateProcessHandler: Injection info set for new process 1192: C:\\WINDOWS\\system32\\wbem\\wmiprvse.exe, ImageBase: 0x00007FF7ACE10000\n2025-08-31 06:46:44,846 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:46:44,850 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57320000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:46:45,137 [lib.api.process] INFO: Termination confirmed for <Process 6428 WmiPrvSE.exe>\n2025-08-31 06:46:45,137 [root] INFO: Terminate event set for process 6428\n2025-08-31 06:46:45,137 [root] INFO: Terminating process 6428 before shutdown\n2025-08-31 06:46:45,137 [root] INFO: Waiting for process 6428 to exit\n2025-08-31 06:46:45,903 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:46:45,905 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57320000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:46:46,153 [root] INFO: Waiting for process 6428 to exit\n2025-08-31 06:46:46,992 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:46:46,996 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57320000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:46:47,168 [root] INFO: Waiting for process 6428 to exit\n2025-08-31 06:46:48,086 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:46:48,088 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57320000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:46:48,183 [root] INFO: Waiting for process 6428 to exit\n2025-08-31 06:46:49,198 [root] INFO: Waiting for process 6428 to exit\n2025-08-31 06:46:49,247 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:46:49,249 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57320000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:46:50,214 [root] INFO: Waiting for process 6428 to exit\n2025-08-31 06:46:50,428 [root] DEBUG: 6428: DLL loaded at 0x00007FFB970F0000: C:\\WINDOWS\\SYSTEM32\\WINNSI (0xf000 bytes).\n2025-08-31 06:46:50,429 [root] DEBUG: 6428: DLL loaded at 0x00007FFB57320000: C:\\WINDOWS\\SYSTEM32\\NetSetupEngine (0xe1000 bytes).\n2025-08-31 06:46:51,228 [lib.api.process] INFO: Successfully terminated <Process 6428 WmiPrvSE.exe>\n2025-08-31 06:46:51,230 [root] INFO: Waiting for process 6428 to exit\n2025-08-31 06:46:51,497 [root] DEBUG: 1112: CreateProcessHandler: Injection info set for new process 4360: C:\\WINDOWS\\system32\\wbem\\wmiprvse.exe, ImageBase: 0x00007FF7ACE10000\n2025-08-31 06:46:52,245 [lib.api.process] INFO: Terminate event set for <Process 7112 WidgetService.exe>\n2025-08-31 06:46:52,247 [root] DEBUG: 7112: Terminate Event: Attempting to dump process 7112\n2025-08-31 06:46:52,255 [root] DEBUG: 7112: DoProcessDump: Skipping process dump as code is identical on disk.\n2025-08-31 06:46:55,477 [root] INFO: Added new file to list with pid None and path C:\\Users\\Alex Dan\\AppData\\Local\\Microsoft\\GameDVR\\KnownGameList.bin\n2025-08-31 06:46:55,532 [root] DEBUG: 1112: DLL loaded at 0x00007FFB9BB70000: C:\\WINDOWS\\system32\\DPAPI (0xa000 bytes).\n2025-08-31 06:46:57,262 [lib.api.process] INFO: Termination confirmed for <Process 7112 WidgetService.exe>\n2025-08-31 06:46:57,264 [root] INFO: Terminate event set for process 7112\n2025-08-31 06:46:57,276 [lib.api.process] INFO: Terminate event set for <Process 1568 RuntimeBroker.exe>\n2025-08-31 06:46:57,278 [root] DEBUG: 1568: Terminate Event: Attempting to dump process 1568\n2025-08-31 06:46:57,282 [root] DEBUG: 1568: DoProcessDump: Skipping process dump as code is identical on disk.\n2025-08-31 06:47:02,289 [lib.api.process] INFO: Termination confirmed for <Process 1568 RuntimeBroker.exe>\n2025-08-31 06:47:02,293 [root] INFO: Terminate event set for process 1568\n2025-08-31 06:47:02,293 [root] INFO: Terminating process 1568 before shutdown\n2025-08-31 06:47:02,293 [root] INFO: Waiting for process 1568 to exit\n2025-08-31 06:47:03,305 [root] INFO: Waiting for process 1568 to exit\n2025-08-31 06:47:04,320 [root] INFO: Waiting for process 1568 to exit\n2025-08-31 06:47:05,335 [root] INFO: Waiting for process 1568 to exit\n2025-08-31 06:47:06,340 [root] INFO: Waiting for process 1568 to exit\n2025-08-31 06:47:07,355 [root] INFO: Waiting for process 1568 to exit\n2025-08-31 06:47:08,373 [lib.api.process] INFO: Successfully terminated <Process 1568 RuntimeBroker.exe>\n2025-08-31 06:47:08,373 [root] INFO: Waiting for process 1568 to exit\n2025-08-31 06:47:09,385 [lib.api.process] INFO: Terminate event set for <Process 7232 WMIADAP.exe>\n2025-08-31 06:47:09,387 [root] DEBUG: 7232: Terminate Event: Attempting to dump process 7232\n2025-08-31 06:47:09,392 [root] DEBUG: 7232: DoProcessDump: Skipping process dump as code is identical on disk.\n2025-08-31 06:47:09,400 [lib.api.process] INFO: Termination confirmed for <Process 7232 WMIADAP.exe>\n2025-08-31 06:47:09,401 [root] INFO: Terminate event set for process 7232\n2025-08-31 06:47:09,403 [root] DEBUG: 7232: Terminate Event: monitor shutdown complete for process 7232\n2025-08-31 06:47:09,403 [root] INFO: Terminating process 7232 before shutdown\n2025-08-31 06:47:09,407 [root] INFO: Waiting for process 7232 to exit\nComment: so error msg itself is from\n```\n[QemuScreenshots]\n# Enable or disable the use of QEMU as screenshot capture [yes/no].\n# screenshots_linux and screenshots_windows must be disabled\nenabled = no\n```\n\nbut you have it `off` that strange. we can see proper init and start of pillow based screenshots, but no screenshots uploaded for some reason, logs doesnt say why. so my `guess` is that library is not installed under proper user or wrong versio if python+library\nComment: Name: Pillow\nVersion: 9.5.0\nSumnary: Python Imaging Library (Fork)\nHome\u2014page: https://python-pillow.org\nAuthor: Jeffrey A. Clark (Alex)\nAuthor\u2014email : actark@actark.net\nLicense: HPND\nLocation: c:\\users\\alex dan\\appdata\\local\\programs\\python\\python310-32\\Iib\\site-packages\nRequires :\nRequired\u2014by :\n\n\nPython --versoin\nPython 3.10.6\nComment: If it's helpful, I can send you a new analysis.log for a new task with the same configs listed in the main post. I think the one I sent,  was during testing with different modifications, I don't recall tbh.\nComment: Nah with versions is fine. That are correct. I don't see where issue is\r\nsadly\r\n\r\nEl lun, 1 sept 2025, 10:25, LAKH ***@***.***> escribi\u00f3:\r\n\r\n> *LaKH-exe* left a comment (kevoreilly/CAPEv2#2686)\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2686#issuecomment-3241377740>\r\n>\r\n> If it's helpful, I can send you a new analysis.log for a new task with the\r\n> same configs listed in the main post. I think the one I sent I was testing\r\n> with different modifications, I don't recall tbh.\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2686#issuecomment-3241377740>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH32MT3YYYLGE4ONKRC33QP7IFAVCNFSM6AAAAACFIEUWP2VHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZTENBRGM3TONZUGA>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: Just thinking out loud\u2014when an analysis is submitted, a randomly named folder gets created on C:\\. Inside it, there\u2019s a folder called shots. If I manually drop screenshots in there, shouldn\u2019t they be sent to the result server at the end of the analysis? Or are they handled differently?\nComment: Yes they should\r\n\r\nEl lun, 1 sept 2025, 10:46, LAKH ***@***.***> escribi\u00f3:\r\n\r\n> *LaKH-exe* left a comment (kevoreilly/CAPEv2#2686)\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2686#issuecomment-3241456799>\r\n>\r\n> Just thinking out loud\u2014when an analysis is submitted, a randomly named\r\n> folder gets created on C:. Inside it, there\u2019s a folder called shots. If I\r\n> manually drop screenshots in there, shouldn\u2019t they be sent to the result\r\n> server at the end of the analysis? Or are they handled differently?\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2686#issuecomment-3241456799>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH35SLZZFK3ZYNX6EYHT3QQBV7AVCNFSM6AAAAACFIEUWP2VHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZTENBRGQ2TMNZZHE>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: Unfortunately, dropped files were not pulled back to the result server.\nThe thing is screenshot functionality was working fine before, not sure at which point it stopped working, but around that time I changed some configs (not related to screenshots) and it broke.\nI will try to revert some changes, and I might revert everything to the default configs and check.\n\nWill update here.\nComment: yep would be very interesting to spot what is wrong\nComment: After reverting to the default configs, screenshots worked. BTW I kept machinery_screenshots **off**. If I understand correctly it uses the machinery (proxmox) to take screenshot, it was **on** earlier, so it might be the cause.\n\nAnyways, I'll close this issue for now, and will apply my configs one by one by one if screenshot failed again will send her what option caused this.\n\nThank you!\nComment: Glad that you solved it, not proxmon, qemu/kvm",
+  "Title: Do not get Behavioural Analysis\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\n\n## This is open source and you are getting __free__ support so be friendly!\n\n# Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n- [x] I am running the latest version\n- [x] I did read the README!\n- [x] I checked the documentation and found no answer\n- [x] I checked to make sure that this issue has not already been filed\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [x] I have read and checked all configs (with all optional parts)\n\n\n# Expected Behavior\n\nI should get behavioural analysis.\n\n# Current Behavior\n\nI do not get behavioural information.\nThe problem exists since installation for any sample.\n\n# Failure Information (for bugs)\n\n## Context\nThe only coonfig files I changed were cuckoo.conf and kvm.conf.\n\nThe snapshot runs as expected when a sample is sent.\nIt seems that i cant communicate to host from my VM, although I can ping host from VM. Result server ip is correct.\nAt first I thought it had something to do with my VM so I created a new one but the issue persisted.\n\n## Failure Logs\nProcessor Logs\nAug 26 18:40:42 mantsrv3 poetry[2005]: 2025-08-26 18:40:42,933 [root] INFO: Processing analysis data for Task #35\nAug 26 18:40:43 mantsrv3 poetry[4028]: 2025-08-26 18:40:43,978 [Task 35] [modules.processing.behavior] WARNING: Analysis results folder does not exist at path \"/opt/CAPEv2/storage/analyses/35/logs\"\nAug 26 18:40:43 mantsrv3 poetry[4028]: 2025-08-26 18:40:43,991 [Task 35] [modules.processing.suricata] WARNING: Suricata: Failed to find usable Suricata log file\nAug 26 18:40:43 mantsrv3 poetry[4028]: 2025-08-26 18:40:43,994 [Task 35] [lib.cuckoo.core.plugins] INFO: Logs folder doesn't exist, maybe something with with analyzer folder, any change?\nAug 26 18:40:46 mantsrv3 poetry[4028]: 2025-08-26 18:40:46,280 [Task 35] [dev_utils.mongodb] INFO: attempting to delete calls for 1 tasks\nAug 26 18:40:46 mantsrv3 poetry[2005]: 2025-08-26 18:40:46,408 [root] INFO: Reports generation completed for Task #2435 \n\ncuckoo logs\n2025-08-26 18:36:10,816 [lib.cuckoo.core.machinery_manager] INFO: Task #35: found useable machine win10 (arch=x64, platform=windows)\n2025-08-26 18:36:10,816 [lib.cuckoo.core.scheduler] INFO: Task #35: Processing task\n2025-08-26 18:36:10,868 [lib.cuckoo.core.analysis_manager] INFO: Task #35: File already exists at '/opt/CAPEv2/storage/binaries/3dde38fa1f49b57f64f1176cda0e51f20eaf1cf5d455223cf4e679481a4a982e'\n2025-08-26 18:36:10,869 [lib.cuckoo.core.analysis_manager] INFO: Task #35: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_nb7aej19/firefox_installer.exe'\n2025-08-26 18:36:17,197 [lib.cuckoo.core.analysis_manager] INFO: Task #35: Enabled route 'none'.\n2025-08-26 18:36:17,197 [modules.auxiliary.Mitmdump] INFO: Mitmdump module loaded\n2025-08-26 18:36:17,197 [modules.auxiliary.QemuScreenshots] INFO: QEMU screenshots module loaded\n2025-08-26 18:36:17,216 [modules.auxiliary.sniffer] INFO: Started sniffer with PID 5085 (interface=virbr1, host=192.168.100.60, dump path=/opt/CAPEv2/storage/analyses/35/dump.pcap)\n2025-08-26 18:36:17,267 [lib.cuckoo.core.guest] INFO: Task #35: Starting analysis on guest (id=win10, ip=192.168.100.60)\n2025-08-26 18:36:17,293 [lib.cuckoo.core.guest] INFO: Task #35: Guest is running CAPE Agent 0.20 (id=win10, ip=192.168.100.60)\n2025-08-26 18:36:19,079 [lib.cuckoo.core.guest] INFO: Task #35: Uploading script files to guest (id=win10, ip=192.168.100.60)\n2025-08-26 18:40:39,947 [lib.cuckoo.core.guest] INFO: Task #35: End of analysis reached! (id=win10, ip=192.168.100.60)\n2025-08-26 18:40:40,758 [lib.cuckoo.core.analysis_manager] INFO: Task #35: Completed analysis successfully.\n2025-08-26 18:40:40,765 [lib.cuckoo.core.analysis_manager] INFO: Task #35: analysis procedure completed\n\n\nI deeply appreciate any help concerning my issue!\nComment: hey, hm if result server is correct, then it should be something wrong with the VM. does your VM has hardcoded ip address?\ndid your try to run `cuckoo.py -d`?\nComment: Yes my ip is hardcoded and static.\n\nRunning cuckoo.py -d doesnt show anything suspicious i guess:\n```text\n2025-08-27 11:56:37,280 [lib.cuckoo.core.machinery_manager] INFO: Using MachineryManager[kvm] with max_machines_count=10              \n2025-08-27 11:56:37,280 [lib.cuckoo.core.scheduler] INFO: Creating scheduler with max_analysis_count=unlimited                        \n2025-08-27 11:56:37,307 [lib.cuckoo.common.abstracts] DEBUG: Getting status for win10-2\n2025-08-27 11:56:37,318 [lib.cuckoo.core.machinery_manager] INFO: Loaded 1 machine\n2025-08-27 11:56:37,374 [lib.cuckoo.core.machinery_manager] INFO: max_vmstartup_count for BoundedSemaphore = 5\n2025-08-27 11:56:37,376 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks                                 11:57:24 [72/922]\n^[[B^[[B^[[B2025-08-27 11:57:17,788 [lib.cuckoo.core.machinery_manager] INFO: Task #36: found useable machine win10 (arch=x64, platfor\nm=windows)                                                                                                                            \n2025-08-27 11:57:17,788 [lib.cuckoo.core.scheduler] INFO: Task #36: Processing task                                                   \n2025-08-27 11:57:17,847 [lib.cuckoo.core.analysis_manager] INFO: Task #36: File already exists at '/opt/CAPEv2/storage/binaries/3dde38\nfa1f49b57f64f1176cda0e51f20eaf1cf5d455223cf4e679481a4a982e'                                                                           \n2025-08-27 11:57:17,848 [lib.cuckoo.core.analysis_manager] INFO: Task #36: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_onlki97i/\nfirefox_installer.exe'                                                                                                                \n2025-08-27 11:57:17,848 [lib.cuckoo.common.abstracts] DEBUG: Starting machine win10-2                                                 \n2025-08-27 11:57:17,854 [lib.cuckoo.common.abstracts] DEBUG: Getting status for win10-2                                               \n2025-08-27 11:57:17,866 [lib.cuckoo.common.abstracts] DEBUG: Using snapshot snapshot1 for virtual machine win10-2                     \n2025-08-27 11:57:24,014 [lib.cuckoo.common.abstracts] DEBUG: Getting status for win10-2                                               \n2025-08-27 11:57:24,048 [lib.cuckoo.core.resultserver] DEBUG: Task #36: The associated machine IP is 192.168.100.60                   \n2025-08-27 11:57:24,073 [lib.cuckoo.core.analysis_manager] INFO: Task #36: Enabled route 'none'.                                      \n2025-08-27 11:57:24,074 [modules.auxiliary.Mitmdump] INFO: Mitmdump module loaded \n2025-08-27 11:57:24,074 [modules.auxiliary.QemuScreenshots] INFO: QEMU screenshots module loaded                                      \n/usr/bin/tcpdump                                                                                                                      \n2025-08-27 11:57:24,093 [modules.auxiliary.sniffer] INFO: Started sniffer with PID 15873 (interface=virbr1, host=192.168.100.60, dump \npath=/opt/CAPEv2/storage/analyses/36/dump.pcap)                                                                                       \n2025-08-27 11:57:24,094 [lib.cuckoo.core.plugins] DEBUG: Started auxiliary module: Sniffer                                            \n2025-08-27 11:57:24,097 [lib.cuckoo.common.objects] DEBUG: file type set using basic heuristics for: /tmp/cuckoo-tmp/upload_onlki97i/f\nirefox_installer.exe                                                                                                                  \n2025-08-27 11:57:24,229 [lib.cuckoo.core.guest] INFO: Task #36: Starting analysis on guest (id=win10, ip=192.168.100.60)\n2025-08-27 11:57:24,259 [lib.cuckoo.core.guest] INFO: Task #36: Guest is running CAPE Agent 0.20 (id=win10, ip=192.168.100.60)\n2025-08-27 11:57:24,325 [lib.cuckoo.core.guest] DEBUG: Task #36: Uploading analyzer to guest (id=win10, ip=192.168.100.60, size=173486\n91)\n2025-08-27 11:57:26,089 [lib.cuckoo.core.guest] INFO: Task #36: Uploading script files to guest (id=win10, ip=192.168.100.60)\n2025-08-27 11:57:31,161 [lib.cuckoo.core.guest] DEBUG: Task #36: Analysis is still running (id=win10, ip=192.168.100.60)\n2025-08-27 12:01:46,961 [lib.cuckoo.core.guest] INFO: Task #36: End of analysis reached! (id=win10, ip=192.168.100.60)\n2025-08-27 12:01:47,043 [lib.cuckoo.core.plugins] DEBUG: Stopped auxiliary module: Sniffer\n2025-08-27 12:01:47,164 [lib.cuckoo.core.resultserver] DEBUG: Task #36: Stopped tracking machine 192.168.100.60\n2025-08-27 12:01:47,165 [lib.cuckoo.common.abstracts] DEBUG: Stopping machine win10-2\n2025-08-27 12:01:47,165 [lib.cuckoo.common.abstracts] DEBUG: Getting status for win10-2\n2025-08-27 12:01:47,723 [lib.cuckoo.common.abstracts] DEBUG: Getting status for win10-2\n2025-08-27 12:01:47,763 [lib.cuckoo.core.analysis_manager] INFO: Task #36: Completed analysis successfully.\n2025-08-27 12:01:47,770 [lib.cuckoo.core.analysis_manager] INFO: Task #36: analysis procedure completed\n```\nComment: can you please check the analysis.log inside of the aanalysis folder: `storage/analysis/36/analysis.log` something like that, post full log please\nComment: There is no such log, from what I understand that is the problem:\n```\n/opt/CAPEv2/storage/analyses/36$ ls\nbinary  dump.pcap  files.json  reports  scripts  selfextracted\n```\n\nComment: that means that you have issues with your VM. \n\ndo debug that use this\n\n```\nHow to debug analyzer and any script that executes inside of the virtual machine\nEnsure that you stopped all required services as systemctl stop cape.service\nStart cape as CAPE_DBG=1 python3 cuckoo.py -d\nAdd a new task, DISABLE human interaction emulation checkbox, set very high timeout like 1000\nOnce task start, core will upload analyzer folder to virtual machine\nAttach to virtual machine(virt-manager)\nStart analyzer.py by hand in cmd.exe with admin privilages:\nEx: c:\\windows\\py.exe c:\\tmp\\analyzer.py\nYou will see what fails, and if you don't, add more debugging lines or attach pdb or any other tool that you like\n```\nComment: I did that and I got this \n\n<img width=\"1020\" height=\"533\" alt=\"Image\" src=\"https://github.com/user-attachments/assets/592f5df3-3f42-4b0c-87ff-104734afd2ea\" />\nComment: what is the content of the confg file inside of that folder?, what is the config content of your machinery ?\nComment: kvm.conf is as follows:\n```\n[kvm]\nmachines = win10             \n                             \ninterface = virbr1           \ndsn = qemu:///system         \n\n[win10]\nlabel = win10-2\nplatform = windows\nip = 192.168.100.60\narch = x64\n```\n\nThe analysis.conf is:\n\n<img width=\"782\" height=\"536\" alt=\"Image\" src=\"https://github.com/user-attachments/assets/fe31accf-c7e4-49f8-b911-6aac75baf26a\" />\n\n<img width=\"787\" height=\"538\" alt=\"Image\" src=\"https://github.com/user-attachments/assets/5596c8ca-1f53-49bb-a500-a411a4d729b9\" />\nComment: the IP is clearly there. maybe you have any bad char after the resultserver ip? like new line, check that with hex editor for example. because it looks fine i have no idea what could be wrong\nComment: I checked it for any additional characters nothing came up.\nI guess I will move on to reinstalling cape (kvm doesn't need reinstallation right?)\nTo reinstall cape do I just rerun the script?\n\nThanks for all your help and quick replies!\nComment: kvm doesn't need. the issue is inside of the VM i would say, i guess the good would to add ip validation on startup to see if there is any bad char\nComment: I tried reinstalling cape and retyping config files - but the issue persists.\n\nCould the problem somehow be that I'm using ubuntu server?\nAlso I downloaded the agent from inside the VM from here https://github.com/kevoreilly/CAPEv2/blob/master/agent/agent.py could this cause a mixup?\nComment: Now im thinking, could the firewall interfere somehow and block communication?\nComment: Most of us in production using Ubuntu server. It doesn't matter how you put agent till is that file.\n\nYes firewall could block. But it would block everything instead of just part as it all goes to the same port\nComment: On ufw logs I found instances of this:\n2025-08-28T19:06:21.316957+00:00 dserpsrv3 kernel: [UFW BLOCK] IN=virbr1 OUT= MAC=52:54:00:9e:67:db:52:54:00:f7:03:43:08:00 SRC=192.168.100.50 DST=192.168.100.1 LEN=52 TOS=0x00 PREC=0x00 TTL=128 ID=11198 DF PROTO=TCP SPT=49762 DPT=2042 WINDOW=64240 RES=0x00 SYN URGP=0\n\nThat confirms that the firewall is behind the problem correct?\n\nComment: That is part of problem for sure\r\n\r\nEl vie, 29 ago 2025, 12:07, Manolis Tzagakis ***@***.***>\r\nescribi\u00f3:\r\n\r\n> *Xenonas* left a comment (kevoreilly/CAPEv2#2685)\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2685#issuecomment-3236488476>\r\n>\r\n> On ufw logs I found instances of this:\r\n> 2025-08-28T19:06:21.316957+00:00 dserpsrv3 kernel: [UFW BLOCK] IN=virbr1\r\n> OUT= MAC=52:54:00:9e:67:db:52:54:00:f7:03:43:08:00 SRC=192.168.100.50\r\n> DST=192.168.100.1 LEN=52 TOS=0x00 PREC=0x00 TTL=128 ID=11198 DF PROTO=TCP\r\n> SPT=49762 DPT=2042 WINDOW=64240 RES=0x00 SYN URGP=0\r\n>\r\n> That confirms that the firewall is behind the problem correct?\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2685#issuecomment-3236488476>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH32RPAI4AYRNUTVRDS33QAQ6BAVCNFSM6AAAAACE5QJY3WVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZTEMZWGQ4DQNBXGY>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: Allowing traffic through virbr1 solved the issue.\n\nThanks so much for your help!\n\nComment: Glad that you solved it. I have question for you, did you enable the\r\nfirewall? As by default is off. Just to get the idea of root of the issue\r\nso maybe in future I can make a default trouble checker\r\n\r\nEl vie, 29 ago 2025, 12:19, Manolis Tzagakis ***@***.***>\r\nescribi\u00f3:\r\n\r\n> *Xenonas* left a comment (kevoreilly/CAPEv2#2685)\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2685#issuecomment-3236523644>\r\n>\r\n> Allowing traffic through virbr1 solved the issue.\r\n>\r\n> Thanks so much for your help!\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2685#issuecomment-3236523644>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH33YVYWDJEFQ6JMPVOD3QASLHAVCNFSM6AAAAACE5QJY3WVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZTEMZWGUZDGNRUGQ>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: Yes I enabled the firewall.\n\nLooking back I should have known the cause was there, but I thought since I could ping from inside the VM there should be no problem with it.\nComment: ok well it still a good to add check for that. Glad that you solved your issue. let us know if you have any other",
+  "Title: Crash during detonation of ransomware via capev2, no crash when detonating manually on same machine\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\n\n## This is open source and you are getting __free__ support so be friendly!\n\n# Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n- [x] I am running the latest version\n- [x] I did read the README!\n- [x] I checked the documentation and found no answer\n- [x] I checked to make sure that this issue has not already been filed\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [x] I have read and checked all configs (with all optional parts)\n\n\n# Expected Behavior\n\nSample should be able to run fully unobstructed and run commands that are required without crashing\n\n# Current Behavior\n\nThe sample crashes at a powershell command that works. \n\ni can run the command manually on the same machine without issues, and the sample runs properly and fully when i run it manually within the same machine.\n\non 7-22-2025 i recall it detonating properly without problems.\n\nthe error i get from the sample is:\n\n```\nUnhandled Exception: System.TypeInitializationException: The type initializer for 'System.Management.Automation.AmsiUtils' threw an exception. ---> System.AccessViolationException: Attempted to read or write protected memory. This is often an indication that other memory is corrupt.\n   at Microsoft.Win32.NativeMethods.EnumProcessModules(SafeProcessHandle handle, IntPtr modules, Int32 size, Int32& needed)\n   at System.Diagnostics.NtProcessManager.GetModuleInfos(Int32 processId, Boolean firstModuleOnly)\n   at System.Diagnostics.NtProcessManager.GetFirstModuleInfo(Int32 processId)\n   at System.Diagnostics.Process.get_MainModule()\n   at System.Management.Automation.PsUtils.GetMainModule(Process targetProcess)\n   at System.Management.Automation.AmsiUtils.Init()\n   at System.Management.Automation.AmsiUtils.CheckAmsiInit()\n   at System.Management.Automation.AmsiUtils..cctor()\n   --- End of inner exception stack trace ---\n   at System.Management.Automation.AmsiUtils.Init()\n   at System.Management.Automation.Runspaces.EarlyStartup.<>c.<Init>b__0_1()\n   at System.Threading.Tasks.Task.InnerInvoke()\n   at System.Threading.Tasks.Task.Execute()\n   at System.Threading.Tasks.Task.ExecutionContextCallback(Object obj)\n   at System.Threading.ExecutionContext.RunInternal(ExecutionContext executionContext, ContextCallback callback, Object state, Boolean preserveSyncCtx)\n   at System.Threading.ExecutionContext.Run(ExecutionContext executionContext, ContextCallback callback, Object state, Boolean preserveSyncCtx)\n   at System.Threading.Tasks.Task.ExecuteWithThreadLocal(Task& currentTaskSlot)\n   at System.Threading.Tasks.Task.ExecuteEntry(Boolean bPreventDoubleExecution)\n   at System.Threading.Tasks.Task.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()\n   at System.Threading.ThreadPoolWorkQueue.Dispatch()\n   at System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()\n```\n\n## Steps to Reproduce\n\nNot sure, but i can send the sample.\n\n## Context\n\nBehavior crashing:\n[powershell.exe](javascript:show_tab('process_4864');) 4864 \"powershell\" $logs = Get-WinEvent -ListLog * | Where-Object {$_.RecordCount} | Select-Object -ExpandProperty LogName ; ForEach ( $l in $logs | Sort | Get-Unique ) {[System.Diagnostics.Eventing.Reader ...(truncated)\n[WerFault.exe](javascript:show_tab('process_372');) 372 -u -p 4864 -s 1336\n\nSo this exact same sample worked previously, the only difference is rebuilt new machines and updated capev2 to the latest version \n\n## Failure Logs\n\n```\nUnhandled Exception: System.TypeInitializationException: The type initializer for 'System.Management.Automation.AmsiUtils' threw an exception. ---> System.AccessViolationException: Attempted to read or write protected memory. This is often an indication that other memory is corrupt.\n   at Microsoft.Win32.NativeMethods.EnumProcessModules(SafeProcessHandle handle, IntPtr modules, Int32 size, Int32& needed)\n   at System.Diagnostics.NtProcessManager.GetModuleInfos(Int32 processId, Boolean firstModuleOnly)\n   at System.Diagnostics.NtProcessManager.GetFirstModuleInfo(Int32 processId)\n   at System.Diagnostics.Process.get_MainModule()\n   at System.Management.Automation.PsUtils.GetMainModule(Process targetProcess)\n   at System.Management.Automation.AmsiUtils.Init()\n   at System.Management.Automation.AmsiUtils.CheckAmsiInit()\n   at System.Management.Automation.AmsiUtils..cctor()\n   --- End of inner exception stack trace ---\n   at System.Management.Automation.AmsiUtils.Init()\n   at System.Management.Automation.Runspaces.EarlyStartup.<>c.<Init>b__0_1()\n   at System.Threading.Tasks.Task.InnerInvoke()\n   at System.Threading.Tasks.Task.Execute()\n   at System.Threading.Tasks.Task.ExecutionContextCallback(Object obj)\n   at System.Threading.ExecutionContext.RunInternal(ExecutionContext executionContext, ContextCallback callback, Object state, Boolean preserveSyncCtx)\n   at System.Threading.ExecutionContext.Run(ExecutionContext executionContext, ContextCallback callback, Object state, Boolean preserveSyncCtx)\n   at System.Threading.Tasks.Task.ExecuteWithThreadLocal(Task& currentTaskSlot)\n   at System.Threading.Tasks.Task.ExecuteEntry(Boolean bPreventDoubleExecution)\n   at System.Threading.Tasks.Task.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()\n   at System.Threading.ThreadPoolWorkQueue.Dispatch()\n   at System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()\n```\nim not seeing any errors in the cuckoo logs\n\nLet me know if you need more information.\nComment: updated to latest version, but stills errors out due to protected memory\nComment: Please share the sample or hash.\nComment: Is there a way to make it private / send it privately?\nComment: yes, see email at the bottom https://github.com/kevoreilly/CAPEv2?tab=security-ov-file#readme\nComment: Sent!\nComment: I can't see any detonation issues here!\n\n<img width=\"2361\" height=\"961\" alt=\"Image\" src=\"https://github.com/user-attachments/assets/e36926f0-55e5-4009-bb6c-77b12127c22e\" />\n\n<img width=\"1854\" height=\"378\" alt=\"Image\" src=\"https://github.com/user-attachments/assets/c3e8cc13-f8fe-4cb1-9f03-95daca981936\" />\nComment: Interesting, I'll see if it fixes itself if i reinstall.\n\nwould it be safe for me to save my configs and just run the capev2.sh again? or should i nuke the whole installation first then rerun?\nComment: its fine, is what i do with configs. but the issue i would bet is inside of VM instead of cape server side, as it says can't access some memory inside of the VM\nComment: So, i have been playing with cpu features and my machines dont present themselves as virtualized , the sample also detects the vms as physical, i have a feeling this could be related\n\ni'll report back , thanks for clarifying!\nComment: you are welcome. let us know what you find. i know this is frustrating, but each case is unique \nComment: Yep, it looks like that was the culprit, removed the feature and now it goes through. \n\ni guess they handle memory differently for physical machines...\n\nso just to be sure, this isnt inherently an issue with capev2 , but more so how the sample interacts with the vm based on the CPU and virtualization status?\nComment: Kevin uses hardened VM, is why we patch KVM/qemu on source level and there is no issue with access to memory\nComment: Do any of you use ``` \"<feature policy=\"disable\" name=\"hypervisor\"/>\"``` flag?\n\nthats what was giving me issues, it started working after removal -- not sure if its taken into account  in the patching. When you say its why you patch in kvm/qemu, you mean in the kvm-qemu.sh? or on your own in a separate process etc.\n\n\nComment: Nah, we disable that on command line at the bottom\nComment: I think my blog posts are linked in docs\r\n\r\nEl vie, 29 ago 2025, 18:19, boredchilada ***@***.***>\r\nescribi\u00f3:\r\n\r\n> *boredchilada* left a comment (kevoreilly/CAPEv2#2684)\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2684#issuecomment-3237572903>\r\n>\r\n> Do any of you use \"\" flag?\r\n>\r\n> thats what was giving me issues, it started working after removal -- not\r\n> sure if its taken into account in the patching. When you say its why you\r\n> patch in kvm/qemu, you mean in the kvm-qemu.sh? or on your own in a\r\n> separate process etc.\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2684#issuecomment-3237572903>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH36TNSZSZVRSNZSYBUD3QB4SHAVCNFSM6AAAAACE4MKGT2VHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZTEMZXGU3TEOJQGM>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n",
+  "Title: Improve logging\nBody: Print full traceback instead of only the last occuring error (which is often caused by previous ones)\r\nAs an example, errors thrown by machineries are stripped of their details before being printed to the user (as seen on #2682).\nComment: thank you",
+  "Title: \"CuckooCriticalError: Error initializing machines\" on physical machinery without any debug log indication\nBody: Hello,\nI'm struggling with the setup of CAPEv2 using `physical` machinery.\nWhen CAPE tries to start, it abruptly stops with a `CuckooCriticalError: Error initializing machines`. There is no debug log before that crash that seems to be helpful in fixing it.\n\n```\nuser@capev2:/opt/CAPEv2$ sudo -u cape -g cape /etc/poetry/bin/poetry run python cuckoo.py -d\n\n  .-----------------.\n  | Cuckoo Sandbox? |\n  |     OH NOES!    |\\  '-.__.-'\n  '-----------------' \\  /oo |--.--,--,--.\n                         \\_.-'._i__i__i_.'\n                               \"\"\"\"\"\"\"\"\"\n\n Cuckoo Sandbox 2.4-CAPE\n www.cuckoosandbox.org\n Copyright (c) 2010-2015\n\n CAPE: Config and Payload Extraction\n github.com/kevoreilly/CAPEv2\n\n2025-08-25 09:15:40,352 [root] DEBUG: Importing modules...\n2025-08-25 09:15:40,355 [modules.auxiliary.QemuScreenshots] DEBUG: Importing 'PIL.ImageChops.difference'\n2025-08-25 09:15:40,355 [modules.auxiliary.QemuScreenshots] DEBUG: Importing 'PIL.ImageDraw'\n2025-08-25 09:15:40,357 [modules.auxiliary.QemuScreenshots] DEBUG: Importing 'PIL.Image'\n2025-08-25 09:15:40,939 [root] DEBUG: Missed file extra/msft-public-ips.csv. Get a fresh copy from https://www.microsoft.com/en-us/download/details.aspx?id=53602\n2025-08-25 09:15:41,076 [root] DEBUG: Imported \"auxiliary\" modules:\n2025-08-25 09:15:41,077 [root] DEBUG: \t |-- [...long list stripped, full output below...]\n2025-08-25 09:15:41,082 [root] DEBUG: Imported \"processing\" modules:\n2025-08-25 09:15:41,082 [root] DEBUG: \t |-- [...long list stripped, full output below...]\n2025-08-25 09:15:41,083 [root] DEBUG: Imported \"signatures\" modules:\n2025-08-25 09:15:41,083 [root] DEBUG: \t |-- [...long list stripped, full output below...]\n2025-08-25 09:15:41,170 [root] DEBUG: Imported \"reporting\" modules:\n2025-08-25 09:15:41,170 [root] DEBUG: \t |-- BinGraph\n2025-08-25 09:15:41,170 [root] DEBUG: \t `-- JsonDump\n2025-08-25 09:15:41,170 [root] DEBUG: Imported \"feeds\" modules:\n2025-08-25 09:15:41,170 [root] DEBUG: \t `-- AbuseCH_SSL\n2025-08-25 09:15:41,170 [root] DEBUG: Imported \"machinery\" modules:\n2025-08-25 09:15:41,170 [root] DEBUG: \t `-- Physical\n2025-08-25 09:15:41,170 [root] DEBUG: Checking for locked tasks...\n/usr/bin/tcpdump\n2025-08-25 09:15:41,186 [lib.cuckoo.core.machinery_manager] INFO: Using MachineryManager[physical] with max_machines_count=10\n2025-08-25 09:15:41,186 [lib.cuckoo.core.scheduler] INFO: Creating scheduler with max_analysis_count=unlimited\nHost AIB-GDECI1-P has MAC 0a:00:27:00:00:05\n2025-08-25 09:15:41,390 [root] CRITICAL: CuckooCriticalError: Error initializing machines\nuser@capev2:/opt/CAPEv2$ \n```\n\n# Expected Behavior\n\nCAPE starts or at least outputs a meaninful error to help debug its configuration.\n\n# Current Behavior\n\nCAPE outputs no error in debug logs and stops abruptly with \"CuckooCriticalError: Error initializing machines\" \n\n# Failure Information (for bugs)\n\n## Steps to Reproduce\n\n1. Set up two networks :\n  - an internet access network (192.168.100.x/24, gateway 192.168.100.1)\n  - a detonation network (10.0.0.x/24)\n2. Set up three machines :\n  - a machine running FOG Project connected on both networks (192.168.100.20 & 10.0.0.1)\n  - a detonation machine with network boot enabled connected to the detonation network only (network boot uses DHCP, Windows has static 10.0.0.10)\n  - a machine running CAPEv2 (installed through `cape2.sh base`) connected to both networks (192.168.100.25 & 10.0.0.2)\n3. Write config files as follow :\n```yaml\n# /opt/CAPEv2/conf/cuckoo.conf\n[cuckoo]\nmachinery = physical\nmachinery_screenshots = on\nfreespace = 15000\n\n[resultserver]\nip = 0.0.0.0\nport = 2042\n```\n```\n# /opt/CAPEv2/conf/physical.conf\n[physical]\nmachines = physical01\ninterface = enp7s0\ntype = pure\n\n[fog]\nhostname = 10.0.0.1\napikey = [redacted]\nuser_apikey = [redacted]\n\n[physical01]\nlabel = physical01\nplatform = windows\nip = 10.0.0.10\nresultserver_ip = 10.0.0.2\nresultserver_port = 2042\narch = x86\n```\n4. Try to start CAPEv2\n\n## Context\n\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\n\n| Question         | Answer\n|------------------|--------------------\n| Git commit       | f41ba50535a8ae20137f49ecd1dc3447159155ba\n| OS version       | Ubuntu 22.04.5 LTS\n\n## Failure Logs\n\n<details>\n  <summary>Show logs</summary>\n\n```\nuser@capev2:/opt/CAPEv2$ sudo -u cape -g cape /etc/poetry/bin/poetry run python cuckoo.py -d\n\n  .-----------------.\n  | Cuckoo Sandbox? |\n  |     OH NOES!    |\\  '-.__.-'\n  '-----------------' \\  /oo |--.--,--,--.\n                         \\_.-'._i__i__i_.'\n                               \"\"\"\"\"\"\"\"\"\n\n Cuckoo Sandbox 2.4-CAPE\n www.cuckoosandbox.org\n Copyright (c) 2010-2015\n\n CAPE: Config and Payload Extraction\n github.com/kevoreilly/CAPEv2\n\n2025-08-25 09:15:40,352 [root] DEBUG: Importing modules...\n2025-08-25 09:15:40,355 [modules.auxiliary.QemuScreenshots] DEBUG: Importing 'PIL.ImageChops.difference'\n2025-08-25 09:15:40,355 [modules.auxiliary.QemuScreenshots] DEBUG: Importing 'PIL.ImageDraw'\n2025-08-25 09:15:40,357 [modules.auxiliary.QemuScreenshots] DEBUG: Importing 'PIL.Image'\n2025-08-25 09:15:40,939 [root] DEBUG: Missed file extra/msft-public-ips.csv. Get a fresh copy from https://www.microsoft.com/en-us/download/details.aspx?id=53602\n2025-08-25 09:15:41,076 [root] DEBUG: Imported \"auxiliary\" modules:\n2025-08-25 09:15:41,077 [root] DEBUG: \t |-- AzSniffer\n2025-08-25 09:15:41,081 [root] DEBUG: \t |-- Mitmdump\n2025-08-25 09:15:41,082 [root] DEBUG: \t |-- PolarProxy\n2025-08-25 09:15:41,082 [root] DEBUG: \t |-- QEMUScreenshots\n2025-08-25 09:15:41,082 [root] DEBUG: \t `-- Sniffer\n2025-08-25 09:15:41,082 [root] DEBUG: Imported \"processing\" modules:\n2025-08-25 09:15:41,082 [root] DEBUG: \t |-- CAPE\n2025-08-25 09:15:41,082 [root] DEBUG: \t |-- AnalysisInfo\n2025-08-25 09:15:41,082 [root] DEBUG: \t |-- Autoruns\n2025-08-25 09:15:41,082 [root] DEBUG: \t |-- BehaviorAnalysis\n2025-08-25 09:15:41,083 [root] DEBUG: \t |-- Debug\n2025-08-25 09:15:41,083 [root] DEBUG: \t |-- HollowsHunter\n2025-08-25 09:15:41,083 [root] DEBUG: \t |-- NetworkAnalysis\n2025-08-25 09:15:41,083 [root] DEBUG: \t |-- ProcessMemory\n2025-08-25 09:15:41,083 [root] DEBUG: \t |-- script_log_processing\n2025-08-25 09:15:41,083 [root] DEBUG: \t `-- UrlAnalysis\n2025-08-25 09:15:41,083 [root] DEBUG: Imported \"signatures\" modules:\n2025-08-25 09:15:41,083 [root] DEBUG: \t |-- AntiAnalysisTLSSection\n2025-08-25 09:15:41,083 [root] DEBUG: \t |-- ClamAV\n2025-08-25 09:15:41,083 [root] DEBUG: \t |-- KnownVirustotal\n2025-08-25 09:15:41,084 [root] DEBUG: \t |-- BadCerts\n2025-08-25 09:15:41,084 [root] DEBUG: \t |-- BadSSLCerts\n2025-08-25 09:15:41,084 [root] DEBUG: \t |-- ZeusP2P\n2025-08-25 09:15:41,084 [root] DEBUG: \t |-- ZeusURL\n2025-08-25 09:15:41,084 [root] DEBUG: \t |-- BinaryTriggeredYARA\n2025-08-25 09:15:41,084 [root] DEBUG: \t |-- AthenaHttp\n2025-08-25 09:15:41,084 [root] DEBUG: \t |-- DirtJumper\n2025-08-25 09:15:41,084 [root] DEBUG: \t |-- Drive\n2025-08-25 09:15:41,084 [root] DEBUG: \t |-- Drive2\n2025-08-25 09:15:41,085 [root] DEBUG: \t |-- Madness\n2025-08-25 09:15:41,085 [root] DEBUG: \t |-- HTMLPhisher_2\n2025-08-25 09:15:41,085 [root] DEBUG: \t |-- FamilyProxyBack\n2025-08-25 09:15:41,085 [root] DEBUG: \t |-- FlareCAPAAntiAnalysis\n2025-08-25 09:15:41,085 [root] DEBUG: \t |-- FlareCAPACollection\n2025-08-25 09:15:41,085 [root] DEBUG: \t |-- FlareCAPAcommunication\n2025-08-25 09:15:41,085 [root] DEBUG: \t |-- FlareCAPACompiler\n2025-08-25 09:15:41,085 [root] DEBUG: \t |-- FlareCAPADataManipulation\n2025-08-25 09:15:41,085 [root] DEBUG: \t |-- FlareCAPAExecutable\n2025-08-25 09:15:41,085 [root] DEBUG: \t |-- FlareCAPAHostInteration\n2025-08-25 09:15:41,085 [root] DEBUG: \t |-- FlareCAPAcommunication\n2025-08-25 09:15:41,086 [root] DEBUG: \t |-- FlareCAPALib\n2025-08-25 09:15:41,086 [root] DEBUG: \t |-- FlareCAPALinking\n2025-08-25 09:15:41,086 [root] DEBUG: \t |-- FlareCAPALoadCode\n2025-08-25 09:15:41,086 [root] DEBUG: \t |-- FlareCAPAMalwareFamily\n2025-08-25 09:15:41,086 [root] DEBUG: \t |-- FlareCAPANursery\n2025-08-25 09:15:41,086 [root] DEBUG: \t |-- FlareCAPAPersistence\n2025-08-25 09:15:41,086 [root] DEBUG: \t |-- FlareCAPARuntime\n2025-08-25 09:15:41,086 [root] DEBUG: \t |-- FlareCAPATargeting\n2025-08-25 09:15:41,086 [root] DEBUG: \t |-- ThreatFox\n2025-08-25 09:15:41,086 [root] DEBUG: \t |-- Log4j\n2025-08-25 09:15:41,087 [root] DEBUG: \t |-- MimicsExtension\n2025-08-25 09:15:41,087 [root] DEBUG: \t |-- NetworkCountryDistribution\n2025-08-25 09:15:41,087 [root] DEBUG: \t |-- NetworkMultipleDirectIPConnections\n2025-08-25 09:15:41,087 [root] DEBUG: \t |-- NetworkCnCHTTP\n2025-08-25 09:15:41,087 [root] DEBUG: \t |-- NetworkHTTPPOST\n2025-08-25 09:15:41,087 [root] DEBUG: \t |-- NetworkIPEXE\n2025-08-25 09:15:41,087 [root] DEBUG: \t |-- NetworkDGA\n2025-08-25 09:15:41,087 [root] DEBUG: \t |-- NetworkDGAFraunhofer\n2025-08-25 09:15:41,087 [root] DEBUG: \t |-- NetworkDynDNS\n2025-08-25 09:15:41,087 [root] DEBUG: \t |-- NetworkExcessiveUDP\n2025-08-25 09:15:41,087 [root] DEBUG: \t |-- NetworkHTTP\n2025-08-25 09:15:41,088 [root] DEBUG: \t |-- NetworkICMP\n2025-08-25 09:15:41,088 [root] DEBUG: \t |-- NetworkIRC\n2025-08-25 09:15:41,088 [root] DEBUG: \t |-- NetworkOpenProxy\n2025-08-25 09:15:41,088 [root] DEBUG: \t |-- NetworkP2P\n2025-08-25 09:15:41,088 [root] DEBUG: \t |-- NetworkQuestionableHost\n2025-08-25 09:15:41,088 [root] DEBUG: \t |-- NetworkQuestionableHttpPath\n2025-08-25 09:15:41,088 [root] DEBUG: \t |-- NetworkQuestionableHttpsPath\n2025-08-25 09:15:41,088 [root] DEBUG: \t |-- NetworkSMTP\n2025-08-25 09:15:41,088 [root] DEBUG: \t |-- TorGateway\n2025-08-25 09:15:41,088 [root] DEBUG: \t |-- BuildLangID\n2025-08-25 09:15:41,089 [root] DEBUG: \t |-- ResourceLangID\n2025-08-25 09:15:41,089 [root] DEBUG: \t |-- overlay\n2025-08-25 09:15:41,089 [root] DEBUG: \t |-- PackerUnknownPESectionName\n2025-08-25 09:15:41,089 [root] DEBUG: \t |-- ASPackPacked\n2025-08-25 09:15:41,089 [root] DEBUG: \t |-- AspireCryptPacked\n2025-08-25 09:15:41,089 [root] DEBUG: \t |-- BedsProtectorPacked\n2025-08-25 09:15:41,089 [root] DEBUG: \t |-- ConfuserPacked\n2025-08-25 09:15:41,089 [root] DEBUG: \t |-- EnigmaPacked\n2025-08-25 09:15:41,089 [root] DEBUG: \t |-- PackerEntropy\n2025-08-25 09:15:41,089 [root] DEBUG: \t |-- MPressPacked\n2025-08-25 09:15:41,089 [root] DEBUG: \t |-- NatePacked\n2025-08-25 09:15:41,090 [root] DEBUG: \t |-- NsPacked\n2025-08-25 09:15:41,090 [root] DEBUG: \t |-- SmartAssemblyPacked\n2025-08-25 09:15:41,090 [root] DEBUG: \t |-- SpicesPacked\n2025-08-25 09:15:41,090 [root] DEBUG: \t |-- ThemidaPacked\n2025-08-25 09:15:41,090 [root] DEBUG: \t |-- ThemidaPackedSection\n2025-08-25 09:15:41,090 [root] DEBUG: \t |-- TitanPacked\n2025-08-25 09:15:41,090 [root] DEBUG: \t |-- UPXCompressed\n2025-08-25 09:15:41,090 [root] DEBUG: \t |-- VMPPacked\n2025-08-25 09:15:41,090 [root] DEBUG: \t |-- YodaPacked\n2025-08-25 09:15:41,090 [root] DEBUG: \t |-- PDF_Annot_URLs_Checker\n2025-08-25 09:15:41,091 [root] DEBUG: \t |-- Polymorphic\n2025-08-25 09:15:41,091 [root] DEBUG: \t |-- PunchPlusPlusPCREs\n2025-08-25 09:15:41,091 [root] DEBUG: \t |-- Procmem_Yara\n2025-08-25 09:15:41,091 [root] DEBUG: \t |-- CheckIP\n2025-08-25 09:15:41,091 [root] DEBUG: \t |-- Authenticode\n2025-08-25 09:15:41,091 [root] DEBUG: \t |-- InvalidAuthenticodeSignature\n2025-08-25 09:15:41,091 [root] DEBUG: \t |-- DotNetAnomaly\n2025-08-25 09:15:41,091 [root] DEBUG: \t |-- Static_Java\n2025-08-25 09:15:41,091 [root] DEBUG: \t |-- Static_PDF\n2025-08-25 09:15:41,091 [root] DEBUG: \t |-- ContainsPEOverlay\n2025-08-25 09:15:41,091 [root] DEBUG: \t |-- PEAnomaly\n2025-08-25 09:15:41,092 [root] DEBUG: \t |-- PECompileTimeStomping\n2025-08-25 09:15:41,092 [root] DEBUG: \t |-- StaticPEPDBPath\n2025-08-25 09:15:41,092 [root] DEBUG: \t |-- RATConfig\n2025-08-25 09:15:41,092 [root] DEBUG: \t |-- VersionInfoAnomaly\n2025-08-25 09:15:41,092 [root] DEBUG: \t |-- StealthNetwork\n2025-08-25 09:15:41,092 [root] DEBUG: \t |-- SuricataAlert\n2025-08-25 09:15:41,092 [root] DEBUG: \t |-- suspiciousHRML_Body\n2025-08-25 09:15:41,092 [root] DEBUG: \t |-- suspiciousHTML_Filename\n2025-08-25 09:15:41,092 [root] DEBUG: \t |-- suspiciousHTML_Title\n2025-08-25 09:15:41,092 [root] DEBUG: \t |-- VolDevicetree1\n2025-08-25 09:15:41,093 [root] DEBUG: \t |-- VolHandles1\n2025-08-25 09:15:41,093 [root] DEBUG: \t |-- VolLdrModules1\n2025-08-25 09:15:41,093 [root] DEBUG: \t |-- VolLdrModules2\n2025-08-25 09:15:41,093 [root] DEBUG: \t |-- VolMalfind1\n2025-08-25 09:15:41,093 [root] DEBUG: \t |-- VolMalfind2\n2025-08-25 09:15:41,093 [root] DEBUG: \t |-- VolModscan1\n2025-08-25 09:15:41,093 [root] DEBUG: \t |-- VolSvcscan1\n2025-08-25 09:15:41,093 [root] DEBUG: \t |-- VolSvcscan2\n2025-08-25 09:15:41,093 [root] DEBUG: \t |-- VolSvcscan3\n2025-08-25 09:15:41,093 [root] DEBUG: \t |-- WHOIS_Create\n2025-08-25 09:15:41,094 [root] DEBUG: \t |-- DisableDriverViaBlocklist\n2025-08-25 09:15:41,094 [root] DEBUG: \t |-- DisableDriverViaHVCIDisallowedImages\n2025-08-25 09:15:41,094 [root] DEBUG: \t |-- DisableHypervisorProtectedCodeIntegrity\n2025-08-25 09:15:41,094 [root] DEBUG: \t |-- PendingFileRenameOperations\n2025-08-25 09:15:41,094 [root] DEBUG: \t |-- AccessesMailslot\n2025-08-25 09:15:41,094 [root] DEBUG: \t |-- AccessesNetlogonRegkey\n2025-08-25 09:15:41,094 [root] DEBUG: \t |-- AccessesPublicFolder\n2025-08-25 09:15:41,094 [root] DEBUG: \t |-- AccessesSysvol\n2025-08-25 09:15:41,094 [root] DEBUG: \t |-- WritesSysvol\n2025-08-25 09:15:41,094 [root] DEBUG: \t |-- AddsAdminUser\n2025-08-25 09:15:41,094 [root] DEBUG: \t |-- AddsUser\n2025-08-25 09:15:41,095 [root] DEBUG: \t |-- OverwritesAdminPassword\n2025-08-25 09:15:41,095 [root] DEBUG: \t |-- anomalous_deletefile\n2025-08-25 09:15:41,095 [root] DEBUG: \t |-- AntiAnalysisDetectFile\n2025-08-25 09:15:41,095 [root] DEBUG: \t |-- AntiAnalysisDetectReg\n2025-08-25 09:15:41,095 [root] DEBUG: \t |-- QihooDetectLibs\n2025-08-25 09:15:41,095 [root] DEBUG: \t |-- AhnlabDetectLibs\n2025-08-25 09:15:41,095 [root] DEBUG: \t |-- AvastDetectLibs\n2025-08-25 09:15:41,095 [root] DEBUG: \t |-- BitdefenderDetectLibs\n2025-08-25 09:15:41,095 [root] DEBUG: \t |-- BullguardDetectLibs\n2025-08-25 09:15:41,095 [root] DEBUG: \t |-- ModifiesAttachmentManager\n2025-08-25 09:15:41,096 [root] DEBUG: \t |-- AntiAVDetectFile\n2025-08-25 09:15:41,096 [root] DEBUG: \t |-- AntiAVDetectReg\n2025-08-25 09:15:41,096 [root] DEBUG: \t |-- EmsisoftDetectLibs\n2025-08-25 09:15:41,096 [root] DEBUG: \t |-- QurbDetectLibs\n2025-08-25 09:15:41,096 [root] DEBUG: \t |-- AntiAVServiceStop\n2025-08-25 09:15:41,096 [root] DEBUG: \t |-- AntiAVSRP\n2025-08-25 09:15:41,096 [root] DEBUG: \t |-- AntiAVWhitespace\n2025-08-25 09:15:41,096 [root] DEBUG: \t |-- antidebug_addvectoredexceptionhandler\n2025-08-25 09:15:41,097 [root] DEBUG: \t |-- APIOverrideDetectLibs\n2025-08-25 09:15:41,097 [root] DEBUG: \t |-- antidebug_checkremotedebuggerpresent\n2025-08-25 09:15:41,097 [root] DEBUG: \t |-- antidebug_debugactiveprocess\n2025-08-25 09:15:41,097 [root] DEBUG: \t |-- AntiDBGDevices\n2025-08-25 09:15:41,097 [root] DEBUG: \t |-- antidebug_gettickcount\n2025-08-25 09:15:41,097 [root] DEBUG: \t |-- antidebug_guardpages\n2025-08-25 09:15:41,097 [root] DEBUG: \t |-- antidebug_ntcreatethreadex\n2025-08-25 09:15:41,097 [root] DEBUG: \t |-- BullguardDetectLibs\n2025-08-25 09:15:41,097 [root] DEBUG: \t |-- antidebug_ntsetinformationthread\n2025-08-25 09:15:41,098 [root] DEBUG: \t |-- antidebug_outputdebugstring\n2025-08-25 09:15:41,098 [root] DEBUG: \t |-- antidebug_setunhandledexceptionfilter\n2025-08-25 09:15:41,098 [root] DEBUG: \t |-- AntiDBGWindows\n2025-08-25 09:15:41,098 [root] DEBUG: \t |-- AntiEmuWinDefend\n2025-08-25 09:15:41,098 [root] DEBUG: \t |-- WineDetectReg\n2025-08-25 09:15:41,098 [root] DEBUG: \t |-- WineDetectFunc\n2025-08-25 09:15:41,098 [root] DEBUG: \t |-- AntiSandboxCheckUserdomain\n2025-08-25 09:15:41,098 [root] DEBUG: \t |-- AntiCuckoo\n2025-08-25 09:15:41,099 [root] DEBUG: \t |-- CuckooDetectFiles\n2025-08-25 09:15:41,099 [root] DEBUG: \t |-- CuckooCrash\n2025-08-25 09:15:41,099 [root] DEBUG: \t |-- AntiSandboxForegroundWindow\n2025-08-25 09:15:41,099 [root] DEBUG: \t |-- FortinetDetectFiles\n2025-08-25 09:15:41,099 [root] DEBUG: \t |-- SandboxJoeAnubisDetectFiles\n2025-08-25 09:15:41,099 [root] DEBUG: \t |-- HookMouse\n2025-08-25 09:15:41,099 [root] DEBUG: \t |-- MouseMovementDetect\n2025-08-25 09:15:41,099 [root] DEBUG: \t |-- AntiSandboxRestart\n2025-08-25 09:15:41,099 [root] DEBUG: \t |-- SandboxieDetectLibs\n2025-08-25 09:15:41,100 [root] DEBUG: \t |-- AntisandboxSboxieMutex\n2025-08-25 09:15:41,100 [root] DEBUG: \t |-- AntiSandboxSboxieObjects\n2025-08-25 09:15:41,100 [root] DEBUG: \t |-- AntiSandboxScriptTimer\n2025-08-25 09:15:41,100 [root] DEBUG: \t |-- AntiSandboxSleep\n2025-08-25 09:15:41,100 [root] DEBUG: \t |-- SunbeltDetectFiles\n2025-08-25 09:15:41,100 [root] DEBUG: \t |-- SunbeltDetectLibs\n2025-08-25 09:15:41,100 [root] DEBUG: \t |-- AntiSandboxSuspend\n2025-08-25 09:15:41,100 [root] DEBUG: \t |-- ThreatTrackDetectFiles\n2025-08-25 09:15:41,100 [root] DEBUG: \t |-- Unhook\n2025-08-25 09:15:41,101 [root] DEBUG: \t |-- BochsDetectKeys\n2025-08-25 09:15:41,101 [root] DEBUG: \t |-- AntiVMDirectoryObjects\n2025-08-25 09:15:41,101 [root] DEBUG: \t |-- AntiVMBios\n2025-08-25 09:15:41,101 [root] DEBUG: \t |-- AntiVMCPU\n2025-08-25 09:15:41,101 [root] DEBUG: \t |-- DiskInformation\n2025-08-25 09:15:41,101 [root] DEBUG: \t |-- SetupAPIDiskInformation\n2025-08-25 09:15:41,101 [root] DEBUG: \t |-- AntiVMDiskReg\n2025-08-25 09:15:41,101 [root] DEBUG: \t |-- AntiVMSCSI\n2025-08-25 09:15:41,101 [root] DEBUG: \t |-- AntiVMServices\n2025-08-25 09:15:41,102 [root] DEBUG: \t |-- AntiVMSystem\n2025-08-25 09:15:41,102 [root] DEBUG: \t |-- HyperVDetectKeys\n2025-08-25 09:15:41,102 [root] DEBUG: \t |-- AntiVMChecksAvailableMemory\n2025-08-25 09:15:41,102 [root] DEBUG: \t |-- NetworkAdapters\n2025-08-25 09:15:41,102 [root] DEBUG: \t |-- ParallelsDetectKeys\n2025-08-25 09:15:41,102 [root] DEBUG: \t |-- DetectVirtualizationViaRecentFiles\n2025-08-25 09:15:41,102 [root] DEBUG: \t |-- VBoxDetectDevices\n2025-08-25 09:15:41,102 [root] DEBUG: \t |-- VBoxDetectFiles\n2025-08-25 09:15:41,103 [root] DEBUG: \t |-- VBoxDetectKeys\n2025-08-25 09:15:41,103 [root] DEBUG: \t |-- VBoxDetectLibs\n2025-08-25 09:15:41,103 [root] DEBUG: \t |-- VBoxDetectProvname\n2025-08-25 09:15:41,103 [root] DEBUG: \t |-- VBoxDetectWindow\n2025-08-25 09:15:41,103 [root] DEBUG: \t |-- VMwareDetectDevices\n2025-08-25 09:15:41,103 [root] DEBUG: \t |-- VMwareDetectEvent\n2025-08-25 09:15:41,103 [root] DEBUG: \t |-- VMwareDetectFiles\n2025-08-25 09:15:41,103 [root] DEBUG: \t |-- VMwareDetectKeys\n2025-08-25 09:15:41,103 [root] DEBUG: \t |-- VMwareDetectLibs\n2025-08-25 09:15:41,104 [root] DEBUG: \t |-- VMwareDetectMutexes\n2025-08-25 09:15:41,104 [root] DEBUG: \t |-- VPCDetectFiles\n2025-08-25 09:15:41,104 [root] DEBUG: \t |-- VPCDetectKeys\n2025-08-25 09:15:41,104 [root] DEBUG: \t |-- VPCDetectMutex\n2025-08-25 09:15:41,104 [root] DEBUG: \t |-- XenDetectKeys\n2025-08-25 09:15:41,104 [root] DEBUG: \t |-- APISpamming\n2025-08-25 09:15:41,104 [root] DEBUG: \t |-- api_uuidfromstringa\n2025-08-25 09:15:41,104 [root] DEBUG: \t |-- AsyncRatMutex\n2025-08-25 09:15:41,104 [root] DEBUG: \t |-- GulpixBehavior\n2025-08-25 09:15:41,105 [root] DEBUG: \t |-- KetricanRegkeys\n2025-08-25 09:15:41,105 [root] DEBUG: \t |-- OkrumMutexes\n2025-08-25 09:15:41,105 [root] DEBUG: \t |-- Cridex\n2025-08-25 09:15:41,105 [root] DEBUG: \t |-- Geodo\n2025-08-25 09:15:41,105 [root] DEBUG: \t |-- Prinimalka\n2025-08-25 09:15:41,105 [root] DEBUG: \t |-- SpyEyeMutexes\n2025-08-25 09:15:41,105 [root] DEBUG: \t |-- ZeusMutexes\n2025-08-25 09:15:41,105 [root] DEBUG: \t |-- BCDEditCommand\n2025-08-25 09:15:41,105 [root] DEBUG: \t |-- BitcoinOpenCL\n2025-08-25 09:15:41,106 [root] DEBUG: \t |-- AccessesPrimaryPartition\n2025-08-25 09:15:41,106 [root] DEBUG: \t |-- Bootkit\n2025-08-25 09:15:41,106 [root] DEBUG: \t |-- DirectHDDAccess\n2025-08-25 09:15:41,106 [root] DEBUG: \t |-- EnumeratesPhysicalDrives\n2025-08-25 09:15:41,106 [root] DEBUG: \t |-- PhysicalDriveAccess\n2025-08-25 09:15:41,106 [root] DEBUG: \t |-- PotentialOverWriteMBR\n2025-08-25 09:15:41,106 [root] DEBUG: \t |-- SuspiciousIoctlSCSIPassthough\n2025-08-25 09:15:41,106 [root] DEBUG: \t |-- SuspiciusIOControlCodes\n2025-08-25 09:15:41,107 [root] DEBUG: \t |-- Ruskill\n2025-08-25 09:15:41,107 [root] DEBUG: \t |-- BrowserAddon\n2025-08-25 09:15:41,107 [root] DEBUG: \t |-- ChromiumBrowserExtensionDirectory\n2025-08-25 09:15:41,107 [root] DEBUG: \t |-- BrowserHelperObject\n2025-08-25 09:15:41,107 [root] DEBUG: \t |-- BrowserNeeded\n2025-08-25 09:15:41,107 [root] DEBUG: \t |-- ModifyProxy\n2025-08-25 09:15:41,107 [root] DEBUG: \t |-- BrowserScanbox\n2025-08-25 09:15:41,107 [root] DEBUG: \t |-- BrowserSecurity\n2025-08-25 09:15:41,107 [root] DEBUG: \t |-- browser_startpage\n2025-08-25 09:15:41,108 [root] DEBUG: \t |-- FirefoxDisablesProcessPerTab\n2025-08-25 09:15:41,108 [root] DEBUG: \t |-- IEDisablesProcessPerTab\n2025-08-25 09:15:41,108 [root] DEBUG: \t |-- OdbcconfBypass\n2025-08-25 09:15:41,108 [root] DEBUG: \t |-- RegSrv32SquiblydooDLLLoad\n2025-08-25 09:15:41,108 [root] DEBUG: \t |-- SquiblydooBypass\n2025-08-25 09:15:41,108 [root] DEBUG: \t |-- SquiblytwoBypass\n2025-08-25 09:15:41,108 [root] DEBUG: \t |-- BypassFirewall\n2025-08-25 09:15:41,108 [root] DEBUG: \t |-- ChecksUACStatus\n2025-08-25 09:15:41,108 [root] DEBUG: \t |-- UACBypassCMSTP\n2025-08-25 09:15:41,109 [root] DEBUG: \t |-- UACBypassCMSTPCOM\n2025-08-25 09:15:41,109 [root] DEBUG: \t |-- UACBypassDelegateExecuteSdclt\n2025-08-25 09:15:41,109 [root] DEBUG: \t |-- UACBypassEventvwr\n2025-08-25 09:15:41,109 [root] DEBUG: \t |-- UACBypassFodhelper\n2025-08-25 09:15:41,109 [root] DEBUG: \t |-- UACBypassWindowsBackup\n2025-08-25 09:15:41,109 [root] DEBUG: \t |-- CAPEExtractedContent\n2025-08-25 09:15:41,109 [root] DEBUG: \t |-- CarberpMutexes\n2025-08-25 09:15:41,109 [root] DEBUG: \t |-- ClearsLogs\n2025-08-25 09:15:41,109 [root] DEBUG: \t |-- ClickfraudCookies\n2025-08-25 09:15:41,110 [root] DEBUG: \t |-- ClickfraudVolume\n2025-08-25 09:15:41,110 [root] DEBUG: \t |-- CmdlineObfuscation\n2025-08-25 09:15:41,110 [root] DEBUG: \t |-- CmdlineSwitches\n2025-08-25 09:15:41,110 [root] DEBUG: \t |-- CmdlineTerminate\n2025-08-25 09:15:41,110 [root] DEBUG: \t |-- CommandLineForFilesWildCard\n2025-08-25 09:15:41,110 [root] DEBUG: \t |-- CommandLineHTTPLink\n2025-08-25 09:15:41,111 [root] DEBUG: \t |-- CommandLineLongString\n2025-08-25 09:15:41,111 [root] DEBUG: \t |-- CommandLineReversedHTTPLink\n2025-08-25 09:15:41,111 [root] DEBUG: \t |-- LongCommandline\n2025-08-25 09:15:41,111 [root] DEBUG: \t |-- PowershellRenamedCommandLine\n2025-08-25 09:15:41,111 [root] DEBUG: \t |-- SystemAccountDiscoveryCMD\n2025-08-25 09:15:41,111 [root] DEBUG: \t |-- SystemCurrentlyLoggedinUserCMD\n2025-08-25 09:15:41,112 [root] DEBUG: \t |-- SystemInfoDiscoveryCMD\n2025-08-25 09:15:41,112 [root] DEBUG: \t |-- SystemInfoDiscoveryPWSH\n2025-08-25 09:15:41,112 [root] DEBUG: \t |-- SystemNetworkDiscoveryCMD\n2025-08-25 09:15:41,112 [root] DEBUG: \t |-- SystemNetworkDiscoveryPWSH\n2025-08-25 09:15:41,112 [root] DEBUG: \t |-- SystemUserDiscoveryCMD\n2025-08-25 09:15:41,112 [root] DEBUG: \t |-- CompilesDotNetCode\n2025-08-25 09:15:41,112 [root] DEBUG: \t |-- QueriesComputerName\n2025-08-25 09:15:41,112 [root] DEBUG: \t |-- QueriesUserName\n2025-08-25 09:15:41,112 [root] DEBUG: \t |-- CopiesSelf\n2025-08-25 09:15:41,113 [root] DEBUG: \t |-- CreatesExe\n2025-08-25 09:15:41,113 [root] DEBUG: \t |-- CreatesLargeKey\n2025-08-25 09:15:41,113 [root] DEBUG: \t |-- CreatesNullValue\n2025-08-25 09:15:41,113 [root] DEBUG: \t |-- AccessWindowsPasswordsVault\n2025-08-25 09:15:41,113 [root] DEBUG: \t |-- CredWiz\n2025-08-25 09:15:41,113 [root] DEBUG: \t |-- EnablesWDigest\n2025-08-25 09:15:41,113 [root] DEBUG: \t |-- VaultCmd\n2025-08-25 09:15:41,113 [root] DEBUG: \t |-- DumpLSAViaWindowsErrorReporting\n2025-08-25 09:15:41,114 [root] DEBUG: \t |-- FileCredentialStoreAccess\n2025-08-25 09:15:41,114 [root] DEBUG: \t |-- FileCredentialStoreWrite\n2025-08-25 09:15:41,114 [root] DEBUG: \t |-- KerberosCredentialAccessViaRubeus\n2025-08-25 09:15:41,114 [root] DEBUG: \t |-- LsassCredentialDumping\n2025-08-25 09:15:41,114 [root] DEBUG: \t |-- RegistryCredentialDumping\n2025-08-25 09:15:41,114 [root] DEBUG: \t |-- RegistryCredentialStoreAccess\n2025-08-25 09:15:41,114 [root] DEBUG: \t |-- RegistryLSASecretsAccess\n2025-08-25 09:15:41,114 [root] DEBUG: \t |-- ComsvcsCredentialDump\n2025-08-25 09:15:41,114 [root] DEBUG: \t |-- CriticalProcess\n2025-08-25 09:15:41,115 [root] DEBUG: \t |-- CryptGenKey\n2025-08-25 09:15:41,115 [root] DEBUG: \t |-- CryptominingStratumCommand\n2025-08-25 09:15:41,115 [root] DEBUG: \t |-- MINERS\n2025-08-25 09:15:41,115 [root] DEBUG: \t |-- CVE_2014_6332\n2025-08-25 09:15:41,115 [root] DEBUG: \t |-- CVE2015_2419_JS\n2025-08-25 09:15:41,115 [root] DEBUG: \t |-- CVE_2016_0189\n2025-08-25 09:15:41,115 [root] DEBUG: \t |-- CVE_2016_7200\n2025-08-25 09:15:41,115 [root] DEBUG: \t |-- CypherITMutexes\n2025-08-25 09:15:41,115 [root] DEBUG: \t |-- DarkCometRegkeys\n2025-08-25 09:15:41,116 [root] DEBUG: \t |-- DatopLoader\n2025-08-25 09:15:41,116 [root] DEBUG: \t |-- DeadConnect\n2025-08-25 09:15:41,116 [root] DEBUG: \t |-- DeadLink\n2025-08-25 09:15:41,116 [root] DEBUG: \t |-- DebugsSelf\n2025-08-25 09:15:41,116 [root] DEBUG: \t |-- DecoyDocument\n2025-08-25 09:15:41,116 [root] DEBUG: \t |-- DecoyImage\n2025-08-25 09:15:41,116 [root] DEBUG: \t |-- DeepFreezeMutex\n2025-08-25 09:15:41,116 [root] DEBUG: \t |-- DeletesExecutedFiles\n2025-08-25 09:15:41,116 [root] DEBUG: \t |-- DeletesExecutedFiles\n2025-08-25 09:15:41,117 [root] DEBUG: \t |-- DeletesSelf\n2025-08-25 09:15:41,117 [root] DEBUG: \t |-- DeletesShadowCopies\n2025-08-25 09:15:41,117 [root] DEBUG: \t |-- DeletesSystemStateBackup\n2025-08-25 09:15:41,117 [root] DEBUG: \t |-- DEPBypass\n2025-08-25 09:15:41,117 [root] DEBUG: \t |-- DEPDisable\n2025-08-25 09:15:41,117 [root] DEBUG: \t |-- DisablesAppLaunch\n2025-08-25 09:15:41,117 [root] DEBUG: \t |-- DisablesAutomaticAppTermination\n2025-08-25 09:15:41,117 [root] DEBUG: \t |-- DisablesAppVirtualiztion\n2025-08-25 09:15:41,117 [root] DEBUG: \t |-- DisablesBackups\n2025-08-25 09:15:41,118 [root] DEBUG: \t |-- DisablesBrowserWarn\n2025-08-25 09:15:41,118 [root] DEBUG: \t |-- DisablesContextMenus\n2025-08-25 09:15:41,118 [root] DEBUG: \t |-- DisablesCPLDisplay\n2025-08-25 09:15:41,118 [root] DEBUG: \t |-- DisablesCrashdumps\n2025-08-25 09:15:41,118 [root] DEBUG: \t |-- DisablesMappedDrivesAutodisconnect\n2025-08-25 09:15:41,118 [root] DEBUG: \t |-- DisablesEventLogging\n2025-08-25 09:15:41,118 [root] DEBUG: \t |-- DisableFolderOptions\n2025-08-25 09:15:41,118 [root] DEBUG: \t |-- DisablesNotificationCenter\n2025-08-25 09:15:41,119 [root] DEBUG: \t |-- DisablesPowerOptions\n2025-08-25 09:15:41,119 [root] DEBUG: \t |-- DisablesRestoreDefaultState\n2025-08-25 09:15:41,119 [root] DEBUG: \t |-- DisableRunCommand\n2025-08-25 09:15:41,119 [root] DEBUG: \t |-- DisablesSecurity\n2025-08-25 09:15:41,119 [root] DEBUG: \t |-- DisablesSmartScreen\n2025-08-25 09:15:41,119 [root] DEBUG: \t |-- DisablesSPDY\n2025-08-25 09:15:41,119 [root] DEBUG: \t |-- DisablesStartMenuSearch\n2025-08-25 09:15:41,119 [root] DEBUG: \t |-- DisablesSystemRestore\n2025-08-25 09:15:41,119 [root] DEBUG: \t |-- DisablesUAC\n2025-08-25 09:15:41,120 [root] DEBUG: \t |-- DisablesWER\n2025-08-25 09:15:41,120 [root] DEBUG: \t |-- DisablesWFP\n2025-08-25 09:15:41,120 [root] DEBUG: \t |-- AddWindowsDefenderExclusions\n2025-08-25 09:15:41,120 [root] DEBUG: \t |-- DisablesWindowsDefender\n2025-08-25 09:15:41,120 [root] DEBUG: \t |-- DisablesWindowsDefenderDISM\n2025-08-25 09:15:41,120 [root] DEBUG: \t |-- DisablesWindowsDefenderLogging\n2025-08-25 09:15:41,120 [root] DEBUG: \t |-- RemovesWindowsDefenderContextMenu\n2025-08-25 09:15:41,120 [root] DEBUG: \t |-- WindowsDefenderPowerShell\n2025-08-25 09:15:41,120 [root] DEBUG: \t |-- DisablesWindowsFileProtection\n2025-08-25 09:15:41,121 [root] DEBUG: \t |-- DisablesWindowsUpdate\n2025-08-25 09:15:41,121 [root] DEBUG: \t |-- DisablesWindowsFirewall\n2025-08-25 09:15:41,121 [root] DEBUG: \t |-- DllLoadUncommonFileTypes\n2025-08-25 09:15:41,121 [root] DEBUG: \t |-- DocScriptEXEDrop\n2025-08-25 09:15:41,121 [root] DEBUG: \t |-- AdfindDomainEnumeration\n2025-08-25 09:15:41,121 [root] DEBUG: \t |-- DomainEnumerationCommands\n2025-08-25 09:15:41,121 [root] DEBUG: \t |-- AndromutMutexes\n2025-08-25 09:15:41,121 [root] DEBUG: \t |-- DownloaderCabby\n2025-08-25 09:15:41,122 [root] DEBUG: \t |-- GuLoaderAPIs\n2025-08-25 09:15:41,122 [root] DEBUG: \t |-- PhorpiexMutexes\n2025-08-25 09:15:41,122 [root] DEBUG: \t |-- ProtonBotMutexes\n2025-08-25 09:15:41,122 [root] DEBUG: \t |-- DriverFilterManager\n2025-08-25 09:15:41,122 [root] DEBUG: \t |-- DriverLoad\n2025-08-25 09:15:41,122 [root] DEBUG: \t |-- Dropper\n2025-08-25 09:15:41,122 [root] DEBUG: \t |-- EXEDropper_JS\n2025-08-25 09:15:41,122 [root] DEBUG: \t |-- dynamic_function_loading\n2025-08-25 09:15:41,122 [root] DEBUG: \t |-- DLLArchiveExecution\n2025-08-25 09:15:41,123 [root] DEBUG: \t |-- LNKArchiveExecution\n2025-08-25 09:15:41,123 [root] DEBUG: \t |-- ScriptArchiveExecution\n2025-08-25 09:15:41,123 [root] DEBUG: \t |-- EncryptedIOC\n2025-08-25 09:15:41,123 [root] DEBUG: \t |-- Excel4MacroUrls\n2025-08-25 09:15:41,123 [root] DEBUG: \t |-- Crash\n2025-08-25 09:15:41,123 [root] DEBUG: \t |-- ProcessCreationSuspiciousLocation\n2025-08-25 09:15:41,123 [root] DEBUG: \t |-- exploit_getbasekerneladdress\n2025-08-25 09:15:41,123 [root] DEBUG: \t |-- exploit_gethaldispatchtable\n2025-08-25 09:15:41,123 [root] DEBUG: \t |-- ExploitHeapspray\n2025-08-25 09:15:41,124 [root] DEBUG: \t |-- EscalatePrivilegeViaNTLMRelay\n2025-08-25 09:15:41,124 [root] DEBUG: \t |-- SpoolerAccess\n2025-08-25 09:15:41,124 [root] DEBUG: \t |-- SpoolerSvcStart\n2025-08-25 09:15:41,124 [root] DEBUG: \t |-- KoadicAPIs\n2025-08-25 09:15:41,124 [root] DEBUG: \t |-- KoadicNetworkActivity\n2025-08-25 09:15:41,124 [root] DEBUG: \t |-- Modiloader_APIs\n2025-08-25 09:15:41,124 [root] DEBUG: \t |-- MappedDrivesUAC\n2025-08-25 09:15:41,124 [root] DEBUG: \t |-- SystemMetrics\n2025-08-25 09:15:41,125 [root] DEBUG: \t |-- Generic_Phish\n2025-08-25 09:15:41,125 [root] DEBUG: \t |-- HidesRecycleBinIcon\n2025-08-25 09:15:41,125 [root] DEBUG: \t |-- HTTP_Request\n2025-08-25 09:15:41,125 [root] DEBUG: \t |-- ApocalypseStealerFileBehavior\n2025-08-25 09:15:41,125 [root] DEBUG: \t |-- ArkeiFiles\n2025-08-25 09:15:41,125 [root] DEBUG: \t |-- AzorultMutexes\n2025-08-25 09:15:41,125 [root] DEBUG: \t |-- BitcoinWallet\n2025-08-25 09:15:41,125 [root] DEBUG: \t |-- BrowserStealer\n2025-08-25 09:15:41,125 [root] DEBUG: \t |-- InfostealerBrowserPassword\n2025-08-25 09:15:41,126 [root] DEBUG: \t |-- CookiesStealer\n2025-08-25 09:15:41,126 [root] DEBUG: \t |-- CryptBotFiles\n2025-08-25 09:15:41,126 [root] DEBUG: \t |-- CryptBotNetwork\n2025-08-25 09:15:41,126 [root] DEBUG: \t |-- EchelonFiles\n2025-08-25 09:15:41,126 [root] DEBUG: \t |-- FTPStealer\n2025-08-25 09:15:41,126 [root] DEBUG: \t |-- IMStealer\n2025-08-25 09:15:41,126 [root] DEBUG: \t |-- KeyLogger\n2025-08-25 09:15:41,127 [root] DEBUG: \t |-- EmailStealer\n2025-08-25 09:15:41,127 [root] DEBUG: \t |-- MassLoggerArtifacts\n2025-08-25 09:15:41,127 [root] DEBUG: \t |-- MassLoggerFiles\n2025-08-25 09:15:41,127 [root] DEBUG: \t |-- MassLoggerVersion\n2025-08-25 09:15:41,127 [root] DEBUG: \t |-- PoullightFiles\n2025-08-25 09:15:41,127 [root] DEBUG: \t |-- PurpleWaveMutexes\n2025-08-25 09:15:41,128 [root] DEBUG: \t |-- PurpleWaveNetworkAcivity\n2025-08-25 09:15:41,128 [root] DEBUG: \t |-- QuilClipperMutexes\n2025-08-25 09:15:41,128 [root] DEBUG: \t |-- QuilClipperNetworkBehavior\n2025-08-25 09:15:41,128 [root] DEBUG: \t |-- QulabFiles\n2025-08-25 09:15:41,128 [root] DEBUG: \t |-- QulabMutexes\n2025-08-25 09:15:41,128 [root] DEBUG: \t |-- RaccoonInfoStealerMutex\n2025-08-25 09:15:41,128 [root] DEBUG: \t |-- raccoon\n2025-08-25 09:15:41,128 [root] DEBUG: \t |-- CapturesScreenshot\n2025-08-25 09:15:41,129 [root] DEBUG: \t |-- vidar\n2025-08-25 09:15:41,129 [root] DEBUG: \t |-- InjectionCRT\n2025-08-25 09:15:41,129 [root] DEBUG: \t |-- InjectionExplorer\n2025-08-25 09:15:41,129 [root] DEBUG: \t |-- InjectionExtension\n2025-08-25 09:15:41,129 [root] DEBUG: \t |-- InjectionNetworkTraffic\n2025-08-25 09:15:41,129 [root] DEBUG: \t |-- InjectionRUNPE\n2025-08-25 09:15:41,129 [root] DEBUG: \t |-- InjectionRWX\n2025-08-25 09:15:41,129 [root] DEBUG: \t |-- injection_themeinitapihook\n2025-08-25 09:15:41,129 [root] DEBUG: \t |-- ThreadManipulationRemoteProcess\n2025-08-25 09:15:41,130 [root] DEBUG: \t |-- Internet_Dropper\n2025-08-25 09:15:41,130 [root] DEBUG: \t |-- EscalatePrivilegeViaNamedPipe\n2025-08-25 09:15:41,130 [root] DEBUG: \t |-- IPC_NamedPipe\n2025-08-25 09:15:41,130 [root] DEBUG: \t |-- JS_Phish\n2025-08-25 09:15:41,130 [root] DEBUG: \t |-- JS_SuspiciousRedirect\n2025-08-25 09:15:41,130 [root] DEBUG: \t |-- LOLBAS_EvadeExecutionViaASPNetCompiler\n2025-08-25 09:15:41,130 [root] DEBUG: \t |-- LOLBAS_EvadeExecutionViaDeviceCredentialDeployment\n2025-08-25 09:15:41,130 [root] DEBUG: \t |-- LOLBAS_EvadeExecutionViaFilterManagerControl\n2025-08-25 09:15:41,130 [root] DEBUG: \t |-- LOLBAS_EvadeExecutionViaIntelGFXDownloadWrapper\n2025-08-25 09:15:41,130 [root] DEBUG: \t |-- LOLBAS_ExecuteBinaryViaAppVLP\n2025-08-25 09:15:41,131 [root] DEBUG: \t |-- LOLBAS_ExecuteBinaryViaCDB\n2025-08-25 09:15:41,131 [root] DEBUG: \t |-- LOLBAS_ExecuteBinaryViaInternetExplorerExporter\n2025-08-25 09:15:41,131 [root] DEBUG: \t |-- LOLBAS_ExecuteBinaryViaOpenSSH\n2025-08-25 09:15:41,131 [root] DEBUG: \t |-- LOLBAS_ExecuteBinaryViaPcalua\n2025-08-25 09:15:41,131 [root] DEBUG: \t |-- LOLBAS_ExecuteBinaryViaPesterPSModule\n2025-08-25 09:15:41,131 [root] DEBUG: \t |-- LOLBAS_ExecuteBinaryViaRunExeHelperUtility\n2025-08-25 09:15:41,131 [root] DEBUG: \t |-- LOLBAS_ExecuteBinaryViaScriptRunner\n2025-08-25 09:15:41,131 [root] DEBUG: \t |-- LOLBAS_ExecuteBinaryViaTTDinject\n2025-08-25 09:15:41,131 [root] DEBUG: \t |-- LOLBAS_ExecuteBinaryVisualStudioLiveShare\n2025-08-25 09:15:41,131 [root] DEBUG: \t |-- LOLBAS_ExecuteMsiexecViaExplorer\n2025-08-25 09:15:41,132 [root] DEBUG: \t |-- LOLBAS_ExecutePSViaSyncappvpublishingserver\n2025-08-25 09:15:41,132 [root] DEBUG: \t |-- LOLBAS_ExecuteRemoteMSIViaDevinit\n2025-08-25 09:15:41,132 [root] DEBUG: \t |-- LOLBAS_ExecuteSuspiciousPowerShellViaRunscripthelper\n2025-08-25 09:15:41,132 [root] DEBUG: \t |-- LOLBAS_ExecuteSuspiciousPowerShellViaSQLPS\n2025-08-25 09:15:41,132 [root] DEBUG: \t |-- LOLBAS_IndirectCommandExecutionViaConsoleWindowHost\n2025-08-25 09:15:41,132 [root] DEBUG: \t |-- LOLBAS_PerformMaliciousActivitiesViaHeadlessBrowser\n2025-08-25 09:15:41,132 [root] DEBUG: \t |-- LOLBAS_RegisterDLLViaCertOC\n2025-08-25 09:15:41,132 [root] DEBUG: \t |-- LOLBAS_RegisterDLLViaMSIEXEC\n2025-08-25 09:15:41,132 [root] DEBUG: \t |-- LOLBAS_RegisterDLLViaOdbcconf\n2025-08-25 09:15:41,132 [root] DEBUG: \t |-- LOLBAS_ScriptletProxyExecutionViaPubprn\n2025-08-25 09:15:41,132 [root] DEBUG: \t |-- malicious_dynamic_function_loading\n2025-08-25 09:15:41,133 [root] DEBUG: \t |-- EncryptPCInfo\n2025-08-25 09:15:41,133 [root] DEBUG: \t |-- EnryptDataAgentTeslaHTTP\n2025-08-25 09:15:41,133 [root] DEBUG: \t |-- EnryptDataAgentTeslaHTTPT2\n2025-08-25 09:15:41,133 [root] DEBUG: \t |-- EnryptDataNanoCore\n2025-08-25 09:15:41,133 [root] DEBUG: \t |-- MartiansIE\n2025-08-25 09:15:41,133 [root] DEBUG: \t |-- MartiansOffice\n2025-08-25 09:15:41,133 [root] DEBUG: \t |-- ReadsMemoryRemoteProcess\n2025-08-25 09:15:41,133 [root] DEBUG: \t |-- MimicsAgent\n2025-08-25 09:15:41,133 [root] DEBUG: \t |-- MimicsFiletime\n2025-08-25 09:15:41,133 [root] DEBUG: \t |-- MimicsIcon\n2025-08-25 09:15:41,134 [root] DEBUG: \t |-- MasqueradesProcessName\n2025-08-25 09:15:41,134 [root] DEBUG: \t |-- MimikatzModules\n2025-08-25 09:15:41,134 [root] DEBUG: \t |-- QuilMinerNetworkBehavior\n2025-08-25 09:15:41,134 [root] DEBUG: \t |-- AMSIBypassViaCOMRegistry\n2025-08-25 09:15:41,134 [root] DEBUG: \t |-- AccessAutoLogonsViaRegistry\n2025-08-25 09:15:41,134 [root] DEBUG: \t |-- AccessBootKeyViaRegistry\n2025-08-25 09:15:41,134 [root] DEBUG: \t |-- CreateSuspiciousLNKFiles\n2025-08-25 09:15:41,134 [root] DEBUG: \t |-- CredentialAccessViaWindowsCredentialHistory\n2025-08-25 09:15:41,134 [root] DEBUG: \t |-- DLLHijackingViaMicrosoftExchange\n2025-08-25 09:15:41,134 [root] DEBUG: \t |-- DLLHijackingViaWaaSMedicSvcCOMTypeLib\n2025-08-25 09:15:41,135 [root] DEBUG: \t |-- ExecuteFileDownloadedViaOpenSSH\n2025-08-25 09:15:41,135 [root] DEBUG: \t |-- ExecuteSafeModeFromSuspiciousProcess\n2025-08-25 09:15:41,135 [root] DEBUG: \t |-- ExecuteScriptsViaMicrosoftManagementConsole\n2025-08-25 09:15:41,135 [root] DEBUG: \t |-- ExecuteSuspiciousProcessesViaWindowsMSSQLService\n2025-08-25 09:15:41,135 [root] DEBUG: \t |-- ExecutionFromSelfExtractingArchive\n2025-08-25 09:15:41,135 [root] DEBUG: \t |-- IPAddressDiscoveryViaTrustedProgram\n2025-08-25 09:15:41,135 [root] DEBUG: \t |-- LoadDLLViaControlPanel\n2025-08-25 09:15:41,135 [root] DEBUG: \t |-- MSOfficeCMDRCE\n2025-08-25 09:15:41,135 [root] DEBUG: \t |-- MountCopyToWebDavShare\n2025-08-25 09:15:41,135 [root] DEBUG: \t |-- NetworkConnectionViaSuspiciousProcess\n2025-08-25 09:15:41,135 [root] DEBUG: \t |-- PotentialLocationDiscoveryViaUnusualProcess\n2025-08-25 09:15:41,136 [root] DEBUG: \t |-- PotentialProtocolTunnelingViaLegitUtilities\n2025-08-25 09:15:41,136 [root] DEBUG: \t |-- PotentialProtocolTunnelingViaQEMU\n2025-08-25 09:15:41,136 [root] DEBUG: \t |-- StoreExecutableRegistry\n2025-08-25 09:15:41,136 [root] DEBUG: \t |-- SuspiciousExecutionViaDotnetRemoting\n2025-08-25 09:15:41,136 [root] DEBUG: \t |-- SuspiciousExecutionViaMicrosoftExchangeTransportAgent\n2025-08-25 09:15:41,136 [root] DEBUG: \t |-- SuspiciousJavaExecutionViaWinScripts\n2025-08-25 09:15:41,136 [root] DEBUG: \t |-- SuspiciousScheduledTaskCreationviaMasqueradedXMLFile\n2025-08-25 09:15:41,136 [root] DEBUG: \t |-- UsesRestartManagerForSuspiciousActivities\n2025-08-25 09:15:41,136 [root] DEBUG: \t |-- ModifiesCerts\n2025-08-25 09:15:41,136 [root] DEBUG: \t |-- DotNetCLRUsageLogKnob\n2025-08-25 09:15:41,137 [root] DEBUG: \t |-- Modifies_HostFile\n2025-08-25 09:15:41,137 [root] DEBUG: \t |-- ModifiesOEMInformation\n2025-08-25 09:15:41,137 [root] DEBUG: \t |-- ModifySecurityCenterWarnings\n2025-08-25 09:15:41,137 [root] DEBUG: \t |-- ModifiesUACNotify\n2025-08-25 09:15:41,137 [root] DEBUG: \t |-- ModifiesDesktopWallpaper\n2025-08-25 09:15:41,137 [root] DEBUG: \t |-- ZoneID\n2025-08-25 09:15:41,137 [root] DEBUG: \t |-- move_file_on_reboot\n2025-08-25 09:15:41,137 [root] DEBUG: \t |-- Multiple_UA\n2025-08-25 09:15:41,137 [root] DEBUG: \t |-- NetworkAnomaly\n2025-08-25 09:15:41,137 [root] DEBUG: \t |-- NetworkBIND\n2025-08-25 09:15:41,138 [root] DEBUG: \t |-- NetworkCnCHTTPSArchive\n2025-08-25 09:15:41,138 [root] DEBUG: \t |-- NetworkCnCHTTPSFreeWebHosting\n2025-08-25 09:15:41,138 [root] DEBUG: \t |-- NetworkCnCHTTPSGeneric\n2025-08-25 09:15:41,138 [root] DEBUG: \t |-- NetworkCnCHTTPSInteractsh\n2025-08-25 09:15:41,138 [root] DEBUG: \t |-- NetworkCnCHTTPSOpenSource\n2025-08-25 09:15:41,138 [root] DEBUG: \t |-- NetworkCnCHTTPSPasteSite\n2025-08-25 09:15:41,138 [root] DEBUG: \t |-- NetworkCnCHTTPSPayload\n2025-08-25 09:15:41,138 [root] DEBUG: \t |-- NetworkCnCHTTPSServiceInterface\n2025-08-25 09:15:41,138 [root] DEBUG: \t |-- NetworkCnCHTTPSSocialMedia\n2025-08-25 09:15:41,138 [root] DEBUG: \t |-- NetworkCnCHTTPSTelegram\n2025-08-25 09:15:41,138 [root] DEBUG: \t |-- NetworkCnCHTTPSTempStorageSite\n2025-08-25 09:15:41,139 [root] DEBUG: \t |-- NetworkCnCHTTPSTempURLDNS\n2025-08-25 09:15:41,139 [root] DEBUG: \t |-- NetworkCnCHTTPSURLShortenerSite\n2025-08-25 09:15:41,139 [root] DEBUG: \t |-- NetworkCnCHTTPSUserAgent\n2025-08-25 09:15:41,139 [root] DEBUG: \t |-- NetworkCnCSMTPSExfil\n2025-08-25 09:15:41,139 [root] DEBUG: \t |-- NetworkCnCSMTPSGeneric\n2025-08-25 09:15:41,139 [root] DEBUG: \t |-- NetworkDNSBlockChain\n2025-08-25 09:15:41,139 [root] DEBUG: \t |-- NetworkDNSIDN\n2025-08-25 09:15:41,139 [root] DEBUG: \t |-- NetworkDNSOpenNIC\n2025-08-25 09:15:41,139 [root] DEBUG: \t |-- NetworkDNSPasteSite\n2025-08-25 09:15:41,139 [root] DEBUG: \t |-- NetworkDNSReverseProxy\n2025-08-25 09:15:41,140 [root] DEBUG: \t |-- NetworkDNSSuspiciousQueryType\n2025-08-25 09:15:41,140 [root] DEBUG: \t |-- NetworkDNSTempFileService\n2025-08-25 09:15:41,140 [root] DEBUG: \t |-- NetworkDNSTempURLDNS\n2025-08-25 09:15:41,140 [root] DEBUG: \t |-- NetworkDNSTunnelingRequest\n2025-08-25 09:15:41,140 [root] DEBUG: \t |-- NetworkDNSURLShortener\n2025-08-25 09:15:41,140 [root] DEBUG: \t |-- NetworkDOHTLS\n2025-08-25 09:15:41,140 [root] DEBUG: \t |-- Suspicious_TLD\n2025-08-25 09:15:41,140 [root] DEBUG: \t |-- NetworkDocumentHTTP\n2025-08-25 09:15:41,140 [root] DEBUG: \t |-- ExplorerHTTP\n2025-08-25 09:15:41,140 [root] DEBUG: \t |-- NetworkFakeUserAgent\n2025-08-25 09:15:41,141 [root] DEBUG: \t |-- LegitDomainAbuse\n2025-08-25 09:15:41,141 [root] DEBUG: \t |-- NetworkDocumentFile\n2025-08-25 09:15:41,141 [root] DEBUG: \t |-- NetworkEXE\n2025-08-25 09:15:41,141 [root] DEBUG: \t |-- Tor\n2025-08-25 09:15:41,141 [root] DEBUG: \t |-- TorHiddenService\n2025-08-25 09:15:41,141 [root] DEBUG: \t |-- Office_Code_Page\n2025-08-25 09:15:41,141 [root] DEBUG: \t |-- OfficeAddinLoading\n2025-08-25 09:15:41,141 [root] DEBUG: \t |-- OfficeCOMLoad\n2025-08-25 09:15:41,141 [root] DEBUG: \t |-- OfficeDotNetLoad\n2025-08-25 09:15:41,141 [root] DEBUG: \t |-- OfficeMSHTMLLoad\n2025-08-25 09:15:41,141 [root] DEBUG: \t |-- OfficePerfKey\n2025-08-25 09:15:41,142 [root] DEBUG: \t |-- OfficeVBLLoad\n2025-08-25 09:15:41,142 [root] DEBUG: \t |-- OfficeWMILoad\n2025-08-25 09:15:41,142 [root] DEBUG: \t |-- OfficeCVE201711882\n2025-08-25 09:15:41,142 [root] DEBUG: \t |-- OfficeCVE201711882Network\n2025-08-25 09:15:41,142 [root] DEBUG: \t |-- OfficeCVE202140444\n2025-08-25 09:15:41,142 [root] DEBUG: \t |-- OfficeCVE202140444M2\n2025-08-25 09:15:41,142 [root] DEBUG: \t |-- OfficeFlashLoad\n2025-08-25 09:15:41,142 [root] DEBUG: \t |-- OfficePostScript\n2025-08-25 09:15:41,142 [root] DEBUG: \t |-- Office_Macro\n2025-08-25 09:15:41,143 [root] DEBUG: \t |-- ChangesTrustCenter_settings\n2025-08-25 09:15:41,143 [root] DEBUG: \t |-- DisablesVBATrustAccess\n2025-08-25 09:15:41,143 [root] DEBUG: \t |-- OfficeMacroAutoExecution\n2025-08-25 09:15:41,143 [root] DEBUG: \t |-- OfficeMacroIOC\n2025-08-25 09:15:41,143 [root] DEBUG: \t |-- OfficeMacroMaliciousPredition\n2025-08-25 09:15:41,143 [root] DEBUG: \t |-- OfficeMacroSuspicious\n2025-08-25 09:15:41,144 [root] DEBUG: \t |-- RTFASLRBypass\n2025-08-25 09:15:41,144 [root] DEBUG: \t |-- RTFAnomalyCharacterSet\n2025-08-25 09:15:41,144 [root] DEBUG: \t |-- RTFAnomalyVersion\n2025-08-25 09:15:41,144 [root] DEBUG: \t |-- RTFEmbeddedContent\n2025-08-25 09:15:41,144 [root] DEBUG: \t |-- RTFEmbeddedOfficeFile\n2025-08-25 09:15:41,144 [root] DEBUG: \t |-- RTFExploitStatic\n2025-08-25 09:15:41,144 [root] DEBUG: \t |-- OfficeSecurity\n2025-08-25 09:15:41,145 [root] DEBUG: \t |-- OfficeAnamalousFeature\n2025-08-25 09:15:41,145 [root] DEBUG: \t |-- OfficeDDECommand\n2025-08-25 09:15:41,145 [root] DEBUG: \t |-- OfficeSuspiciousProcesses\n2025-08-25 09:15:41,145 [root] DEBUG: \t |-- OfficeWriteEXE\n2025-08-25 09:15:41,145 [root] DEBUG: \t |-- ArmadilloMutex\n2025-08-25 09:15:41,145 [root] DEBUG: \t |-- ArmadilloRegKey\n2025-08-25 09:15:41,145 [root] DEBUG: \t |-- ADS\n2025-08-25 09:15:41,145 [root] DEBUG: \t |-- PersistenceViaAutodialDLLRegistry\n2025-08-25 09:15:41,145 [root] DEBUG: \t |-- Autorun\n2025-08-25 09:15:41,146 [root] DEBUG: \t |-- Autorun_scheduler\n2025-08-25 09:15:41,146 [root] DEBUG: \t |-- PersistenceSafeBoot\n2025-08-25 09:15:41,146 [root] DEBUG: \t |-- PersistenceBootexecute\n2025-08-25 09:15:41,146 [root] DEBUG: \t |-- PersistenceRegistryScript\n2025-08-25 09:15:41,146 [root] DEBUG: \t |-- PersistenceIFEO\n2025-08-25 09:15:41,146 [root] DEBUG: \t |-- PersistenceSilentProcessExit\n2025-08-25 09:15:41,146 [root] DEBUG: \t |-- PersistenceRDPRegistry\n2025-08-25 09:15:41,146 [root] DEBUG: \t |-- PersistenceRDPShadowing\n2025-08-25 09:15:41,147 [root] DEBUG: \t |-- PersistenceService\n2025-08-25 09:15:41,147 [root] DEBUG: \t |-- PersistenceShimDatabase\n2025-08-25 09:15:41,147 [root] DEBUG: \t |-- PowerpoolMutexes\n2025-08-25 09:15:41,147 [root] DEBUG: \t |-- PowerShellNetworkConnection\n2025-08-25 09:15:41,147 [root] DEBUG: \t |-- PowerShellScriptBlockLogging\n2025-08-25 09:15:41,147 [root] DEBUG: \t |-- PowershellCommandSuspicious\n2025-08-25 09:15:41,147 [root] DEBUG: \t |-- PowershellDownload\n2025-08-25 09:15:41,147 [root] DEBUG: \t |-- PowershellRenamed\n2025-08-25 09:15:41,147 [root] DEBUG: \t |-- PowershellRequest\n2025-08-25 09:15:41,148 [root] DEBUG: \t |-- PowershellReversed\n2025-08-25 09:15:41,148 [root] DEBUG: \t |-- PowershellVariableObfuscation\n2025-08-25 09:15:41,148 [root] DEBUG: \t |-- PreventsSafeboot\n2025-08-25 09:15:41,148 [root] DEBUG: \t |-- CmdlineProcessDiscovery\n2025-08-25 09:15:41,148 [root] DEBUG: \t |-- CreateToolhelp32SnapshotProcessModuleEnumeration\n2025-08-25 09:15:41,148 [root] DEBUG: \t |-- EnumeratesRunningProcesses\n2025-08-25 09:15:41,148 [root] DEBUG: \t |-- ProcessInterest\n2025-08-25 09:15:41,148 [root] DEBUG: \t |-- ProcessNeeded\n2025-08-25 09:15:41,148 [root] DEBUG: \t |-- MassDataEncryption\n2025-08-25 09:15:41,149 [root] DEBUG: \t |-- CryptoMixMutexes\n2025-08-25 09:15:41,149 [root] DEBUG: \t |-- DharmaMutexes\n2025-08-25 09:15:41,149 [root] DEBUG: \t |-- RansomwareDMALocker\n2025-08-25 09:15:41,149 [root] DEBUG: \t |-- RansomwareExtensions\n2025-08-25 09:15:41,149 [root] DEBUG: \t |-- RansomwareFileModifications\n2025-08-25 09:15:41,149 [root] DEBUG: \t |-- RansomwareFiles\n2025-08-25 09:15:41,149 [root] DEBUG: \t |-- FonixMutexes\n2025-08-25 09:15:41,149 [root] DEBUG: \t |-- GandCrabMutexes\n2025-08-25 09:15:41,149 [root] DEBUG: \t |-- GermanWiperMutexes\n2025-08-25 09:15:41,150 [root] DEBUG: \t |-- MedusaLockerMutexes\n2025-08-25 09:15:41,150 [root] DEBUG: \t |-- MedusaLockerRegkeys\n2025-08-25 09:15:41,150 [root] DEBUG: \t |-- RansomwareMessage\n2025-08-25 09:15:41,150 [root] DEBUG: \t |-- NemtyMutexes\n2025-08-25 09:15:41,150 [root] DEBUG: \t |-- NemtyNetworkActivity\n2025-08-25 09:15:41,150 [root] DEBUG: \t |-- NemtyNote\n2025-08-25 09:15:41,150 [root] DEBUG: \t |-- NemtyRegkeys\n2025-08-25 09:15:41,150 [root] DEBUG: \t |-- PYSAMutexes\n2025-08-25 09:15:41,150 [root] DEBUG: \t |-- RansomwareRadamant\n2025-08-25 09:15:41,151 [root] DEBUG: \t |-- RansomwareRecyclebin\n2025-08-25 09:15:41,151 [root] DEBUG: \t |-- RevilMutexes\n2025-08-25 09:15:41,151 [root] DEBUG: \t |-- RevilRegkey\n2025-08-25 09:15:41,151 [root] DEBUG: \t |-- SatanMutexes\n2025-08-25 09:15:41,151 [root] DEBUG: \t |-- SnakeRansomMutexes\n2025-08-25 09:15:41,151 [root] DEBUG: \t |-- sodinokibi\n2025-08-25 09:15:41,151 [root] DEBUG: \t |-- StopRansomMutexes\n2025-08-25 09:15:41,151 [root] DEBUG: \t |-- StopRansomwareCMD\n2025-08-25 09:15:41,152 [root] DEBUG: \t |-- StopRansomwareRegistry\n2025-08-25 09:15:41,152 [root] DEBUG: \t |-- RansomwareSTOPDJVU\n2025-08-25 09:15:41,152 [root] DEBUG: \t |-- BeebusMutexes\n2025-08-25 09:15:41,152 [root] DEBUG: \t |-- BlackNETMutexes\n2025-08-25 09:15:41,152 [root] DEBUG: \t |-- BlackRATAPIs\n2025-08-25 09:15:41,152 [root] DEBUG: \t |-- BlackRATMutexes\n2025-08-25 09:15:41,152 [root] DEBUG: \t |-- BlackRATNetworkActivity\n2025-08-25 09:15:41,152 [root] DEBUG: \t |-- BlackRATRegistryKeys\n2025-08-25 09:15:41,152 [root] DEBUG: \t |-- CRATMutexes\n2025-08-25 09:15:41,153 [root] DEBUG: \t |-- DCRatAPIs\n2025-08-25 09:15:41,153 [root] DEBUG: \t |-- DCRatFiles\n2025-08-25 09:15:41,153 [root] DEBUG: \t |-- DCRatMutex\n2025-08-25 09:15:41,153 [root] DEBUG: \t |-- FynloskiMutexes\n2025-08-25 09:15:41,153 [root] DEBUG: \t |-- KaraganyEventObjects\n2025-08-25 09:15:41,153 [root] DEBUG: \t |-- KaraganyFiles\n2025-08-25 09:15:41,153 [root] DEBUG: \t |-- LimeRATMutexes\n2025-08-25 09:15:41,153 [root] DEBUG: \t |-- LimeRATRegkeys\n2025-08-25 09:15:41,153 [root] DEBUG: \t |-- LodaRATFileBehavior\n2025-08-25 09:15:41,154 [root] DEBUG: \t |-- LuminosityRAT\n2025-08-25 09:15:41,154 [root] DEBUG: \t |-- ModiRATBehavior\n2025-08-25 09:15:41,154 [root] DEBUG: \t |-- NanocoreRAT\n2025-08-25 09:15:41,154 [root] DEBUG: \t |-- netwire\n2025-08-25 09:15:41,154 [root] DEBUG: \t |-- NjratRegkeys\n2025-08-25 09:15:41,154 [root] DEBUG: \t |-- ObliquekRATFiles\n2025-08-25 09:15:41,154 [root] DEBUG: \t |-- ObliquekRATMutexes\n2025-08-25 09:15:41,154 [root] DEBUG: \t |-- ObliquekRATNetworkActivity\n2025-08-25 09:15:41,154 [root] DEBUG: \t |-- OrcusRAT\n2025-08-25 09:15:41,155 [root] DEBUG: \t |-- ParallaxMutexes\n2025-08-25 09:15:41,155 [root] DEBUG: \t |-- PcClientMutexes\n2025-08-25 09:15:41,155 [root] DEBUG: \t |-- PlugxMutexes\n2025-08-25 09:15:41,155 [root] DEBUG: \t |-- PoisonIvyMutexes\n2025-08-25 09:15:41,155 [root] DEBUG: \t |-- QuasarMutexes\n2025-08-25 09:15:41,155 [root] DEBUG: \t |-- RatsnifMutexes\n2025-08-25 09:15:41,155 [root] DEBUG: \t |-- SennaMutexes\n2025-08-25 09:15:41,155 [root] DEBUG: \t |-- SpynetRat\n2025-08-25 09:15:41,155 [root] DEBUG: \t |-- TrochilusRATAPIs\n2025-08-25 09:15:41,156 [root] DEBUG: \t |-- VenomRAT\n2025-08-25 09:15:41,156 [root] DEBUG: \t |-- WarzoneRATFiles\n2025-08-25 09:15:41,156 [root] DEBUG: \t |-- WarzoneRATRegkeys\n2025-08-25 09:15:41,156 [root] DEBUG: \t |-- XpertRATFiles\n2025-08-25 09:15:41,156 [root] DEBUG: \t |-- XpertRATMutexes\n2025-08-25 09:15:41,156 [root] DEBUG: \t |-- XtremeMutexes\n2025-08-25 09:15:41,156 [root] DEBUG: \t |-- ReadsSelf\n2025-08-25 09:15:41,156 [root] DEBUG: \t |-- Recon_Beacon\n2025-08-25 09:15:41,156 [root] DEBUG: \t |-- Fingerprint\n2025-08-25 09:15:41,157 [root] DEBUG: \t |-- InstalledApps\n2025-08-25 09:15:41,157 [root] DEBUG: \t |-- SystemInfo\n2025-08-25 09:15:41,157 [root] DEBUG: \t |-- Accesses_RecycleBin\n2025-08-25 09:15:41,157 [root] DEBUG: \t |-- RemcosFiles\n2025-08-25 09:15:41,157 [root] DEBUG: \t |-- RemcosMutexes\n2025-08-25 09:15:41,157 [root] DEBUG: \t |-- RemcosRegkeys\n2025-08-25 09:15:41,157 [root] DEBUG: \t |-- RemcosShellCodeDynamicWrapperX\n2025-08-25 09:15:41,157 [root] DEBUG: \t |-- RDPTCPKey\n2025-08-25 09:15:41,157 [root] DEBUG: \t |-- UsesRDPClip\n2025-08-25 09:15:41,158 [root] DEBUG: \t |-- UsesRemoteDesktopSession\n2025-08-25 09:15:41,158 [root] DEBUG: \t |-- RemovesNetworkingIcon\n2025-08-25 09:15:41,158 [root] DEBUG: \t |-- RemovesPinnedPrograms\n2025-08-25 09:15:41,158 [root] DEBUG: \t |-- RemovesSecurityAndMaintenanceIcon\n2025-08-25 09:15:41,158 [root] DEBUG: \t |-- RemovesStartMenuDefaults\n2025-08-25 09:15:41,158 [root] DEBUG: \t |-- RemovesUsernameStartMenu\n2025-08-25 09:15:41,158 [root] DEBUG: \t |-- RemovesZoneIdADS\n2025-08-25 09:15:41,158 [root] DEBUG: \t |-- SpicyHotPotBehavior\n2025-08-25 09:15:41,158 [root] DEBUG: \t |-- ScriptCreatedProcess\n2025-08-25 09:15:41,159 [root] DEBUG: \t |-- ScriptNetworkActvity\n2025-08-25 09:15:41,159 [root] DEBUG: \t |-- SuspiciousJSScript\n2025-08-25 09:15:41,159 [root] DEBUG: \t |-- JavaScriptTimer\n2025-08-25 09:15:41,159 [root] DEBUG: \t |-- Secure_Login_Phish\n2025-08-25 09:15:41,159 [root] DEBUG: \t |-- SecurityXploded_Modules\n2025-08-25 09:15:41,159 [root] DEBUG: \t |-- GetClipboardData\n2025-08-25 09:15:41,159 [root] DEBUG: \t |-- SetsAutoconfigURL\n2025-08-25 09:15:41,159 [root] DEBUG: \t |-- InstallsWinpcap\n2025-08-25 09:15:41,160 [root] DEBUG: \t |-- SpoofsProcname\n2025-08-25 09:15:41,160 [root] DEBUG: \t |-- CreatesAutorunInf\n2025-08-25 09:15:41,160 [root] DEBUG: \t |-- StackPivot\n2025-08-25 09:15:41,160 [root] DEBUG: \t |-- StackPivotFileCreated\n2025-08-25 09:15:41,160 [root] DEBUG: \t |-- StackPivotProcessCreate\n2025-08-25 09:15:41,160 [root] DEBUG: \t |-- StealingClipboardData\n2025-08-25 09:15:41,161 [root] DEBUG: \t |-- StealthChildProc\n2025-08-25 09:15:41,161 [root] DEBUG: \t |-- StealthFile\n2025-08-25 09:15:41,161 [root] DEBUG: \t |-- StealthHiddenExtension\n2025-08-25 09:15:41,161 [root] DEBUG: \t |-- StealthHiddenReg\n2025-08-25 09:15:41,161 [root] DEBUG: \t |-- StealthHideNotifications\n2025-08-25 09:15:41,161 [root] DEBUG: \t |-- StealthSystemProcName\n2025-08-25 09:15:41,161 [root] DEBUG: \t |-- StealthTimeout\n2025-08-25 09:15:41,161 [root] DEBUG: \t |-- StealthWebHistory\n2025-08-25 09:15:41,162 [root] DEBUG: \t |-- Hidden_Window\n2025-08-25 09:15:41,162 [root] DEBUG: \t |-- sysinternals_psexec\n2025-08-25 09:15:41,162 [root] DEBUG: \t |-- sysinternals_tools\n2025-08-25 09:15:41,162 [root] DEBUG: \t |-- LanguageCheckReg\n2025-08-25 09:15:41,162 [root] DEBUG: \t |-- QueriesKeyboardLayout\n2025-08-25 09:15:41,162 [root] DEBUG: \t |-- QueriesLocaleAPI\n2025-08-25 09:15:41,162 [root] DEBUG: \t |-- TampersETW\n2025-08-25 09:15:41,162 [root] DEBUG: \t |-- LSATampering\n2025-08-25 09:15:41,162 [root] DEBUG: \t |-- TampersPowerShellLogging\n2025-08-25 09:15:41,163 [root] DEBUG: \t |-- Flame\n2025-08-25 09:15:41,163 [root] DEBUG: \t |-- TerminatesRemoteProcess\n2025-08-25 09:15:41,163 [root] DEBUG: \t |-- TerritorialDisputeSIGs\n2025-08-25 09:15:41,163 [root] DEBUG: \t |-- TrickBotTaskDelete\n2025-08-25 09:15:41,163 [root] DEBUG: \t |-- TrickBotMutexes\n2025-08-25 09:15:41,163 [root] DEBUG: \t |-- FleerCivetMutexes\n2025-08-25 09:15:41,163 [root] DEBUG: \t |-- LokibotMutexes\n2025-08-25 09:15:41,163 [root] DEBUG: \t |-- UrsnifBehavior\n2025-08-25 09:15:41,163 [root] DEBUG: \t |-- UpatreFiles\n2025-08-25 09:15:41,164 [root] DEBUG: \t |-- UpatreMutexes\n2025-08-25 09:15:41,164 [root] DEBUG: \t |-- UserEnum\n2025-08-25 09:15:41,164 [root] DEBUG: \t |-- ADFind\n2025-08-25 09:15:41,164 [root] DEBUG: \t |-- UsesMSProtocol\n2025-08-25 09:15:41,164 [root] DEBUG: \t |-- Virus\n2025-08-25 09:15:41,164 [root] DEBUG: \t |-- NeshtaFiles\n2025-08-25 09:15:41,164 [root] DEBUG: \t |-- NeshtaMutexes\n2025-08-25 09:15:41,164 [root] DEBUG: \t |-- NeshtaRegKeys\n2025-08-25 09:15:41,164 [root] DEBUG: \t |-- RenamerMutexes\n2025-08-25 09:15:41,165 [root] DEBUG: \t |-- Webmail_Phish\n2025-08-25 09:15:41,165 [root] DEBUG: \t |-- OWAWebShellFiles\n2025-08-25 09:15:41,165 [root] DEBUG: \t |-- WebShellFiles\n2025-08-25 09:15:41,165 [root] DEBUG: \t |-- WebShellProcesses\n2025-08-25 09:15:41,165 [root] DEBUG: \t |-- PersistsDotNetDevUtility\n2025-08-25 09:15:41,165 [root] DEBUG: \t |-- SpwansDotNetDevUtiliy\n2025-08-25 09:15:41,165 [root] DEBUG: \t |-- AltersWindowsUtility\n2025-08-25 09:15:41,165 [root] DEBUG: \t |-- DotNETCSCBuild\n2025-08-25 09:15:41,165 [root] DEBUG: \t |-- MavInjectLolbin\n2025-08-25 09:15:41,166 [root] DEBUG: \t |-- MultipleExplorerInstances\n2025-08-25 09:15:41,166 [root] DEBUG: \t |-- OverwritesAccessibilityUtility\n2025-08-25 09:15:41,166 [root] DEBUG: \t |-- PotentialLateralMovementViaSMBEXEC\n2025-08-25 09:15:41,166 [root] DEBUG: \t |-- PotentialWebShellViaScreenConnectServer\n2025-08-25 09:15:41,166 [root] DEBUG: \t |-- ScriptToolExecuted\n2025-08-25 09:15:41,166 [root] DEBUG: \t |-- SuspiciousCertutilUse\n2025-08-25 09:15:41,166 [root] DEBUG: \t |-- SuspiciousCommandTools\n2025-08-25 09:15:41,166 [root] DEBUG: \t |-- SuspiciousMpCmdRunUse\n2025-08-25 09:15:41,166 [root] DEBUG: \t |-- SuspiciousPingUse\n2025-08-25 09:15:41,167 [root] DEBUG: \t |-- UsesMicrosoftHTMLHelpExecutable\n2025-08-25 09:15:41,167 [root] DEBUG: \t |-- UsesPowerShellCopyItem\n2025-08-25 09:15:41,167 [root] DEBUG: \t |-- UsesWindowsUtilities\n2025-08-25 09:15:41,167 [root] DEBUG: \t |-- UsesWindowsUtilitiesAppCmd\n2025-08-25 09:15:41,167 [root] DEBUG: \t |-- UsesWindowsUtilitiesCSVDELDFIDE\n2025-08-25 09:15:41,167 [root] DEBUG: \t |-- UsesWindowsUtilitiesCipher\n2025-08-25 09:15:41,167 [root] DEBUG: \t |-- UsesWindowsUtilitiesClickOnce\n2025-08-25 09:15:41,167 [root] DEBUG: \t |-- UsesWindowsUtilitiesCurl\n2025-08-25 09:15:41,167 [root] DEBUG: \t |-- UsesWindowsUtilitiesDSQuery\n2025-08-25 09:15:41,168 [root] DEBUG: \t |-- UsesWindowsUtilitiesEsentutl\n2025-08-25 09:15:41,168 [root] DEBUG: \t |-- UsesWindowsUtilitiesFinger\n2025-08-25 09:15:41,168 [root] DEBUG: \t |-- UsesWindowsUtilitiesMode\n2025-08-25 09:15:41,168 [root] DEBUG: \t |-- UsesWindowsUtilitiesNTDSutil\n2025-08-25 09:15:41,168 [root] DEBUG: \t |-- UsesWindowsUtilitiesNltest\n2025-08-25 09:15:41,168 [root] DEBUG: \t |-- UsesWindowsUtilitiesScheduler\n2025-08-25 09:15:41,168 [root] DEBUG: \t |-- UsesWindowsUtilitiesXcopy\n2025-08-25 09:15:41,168 [root] DEBUG: \t |-- WMICCommandSuspicious\n2025-08-25 09:15:41,168 [root] DEBUG: \t |-- WiperZeroedBytes\n2025-08-25 09:15:41,169 [root] DEBUG: \t |-- ScrconsWMIScriptConsumer\n2025-08-25 09:15:41,169 [root] DEBUG: \t |-- WMICreateProcess\n2025-08-25 09:15:41,169 [root] DEBUG: \t |-- WMIScriptProcess\n2025-08-25 09:15:41,169 [root] DEBUG: \t |-- Win32ProcessCreate\n2025-08-25 09:15:41,169 [root] DEBUG: \t |-- AllapleMutexes\n2025-08-25 09:15:41,169 [root] DEBUG: \t |-- LinuxDeletesFiles\n2025-08-25 09:15:41,169 [root] DEBUG: \t |-- LinuxDropsFiles\n2025-08-25 09:15:41,169 [root] DEBUG: \t |-- LinuxReadsFiles\n2025-08-25 09:15:41,169 [root] DEBUG: \t `-- LinuxWritesFiles\n2025-08-25 09:15:41,170 [root] DEBUG: Imported \"reporting\" modules:\n2025-08-25 09:15:41,170 [root] DEBUG: \t |-- BinGraph\n2025-08-25 09:15:41,170 [root] DEBUG: \t `-- JsonDump\n2025-08-25 09:15:41,170 [root] DEBUG: Imported \"feeds\" modules:\n2025-08-25 09:15:41,170 [root] DEBUG: \t `-- AbuseCH_SSL\n2025-08-25 09:15:41,170 [root] DEBUG: Imported \"machinery\" modules:\n2025-08-25 09:15:41,170 [root] DEBUG: \t `-- Physical\n2025-08-25 09:15:41,170 [root] DEBUG: Checking for locked tasks...\n/usr/bin/tcpdump\n2025-08-25 09:15:41,186 [lib.cuckoo.core.machinery_manager] INFO: Using MachineryManager[physical] with max_machines_count=10\n2025-08-25 09:15:41,186 [lib.cuckoo.core.scheduler] INFO: Creating scheduler with max_analysis_count=unlimited\nHost AIB-GDECI1-P has MAC 0a:00:27:00:00:05\n2025-08-25 09:15:41,390 [root] CRITICAL: CuckooCriticalError: Error initializing machines\nuser@capev2:/opt/CAPEv2$ \n```\n\nNote that these logs show that FOGProject connection succeeded : hostname and mac address of one host (the only on that specific FOG instance) is shown.\n\n</details>\n\nNetwork configuration of CAPEv2 host : \n```\n1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000\n    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00\n    inet 127.0.0.1/8 scope host lo\n       valid_lft forever preferred_lft forever\n    inet6 ::1/128 scope host \n       valid_lft forever preferred_lft forever\n2: enp1s0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1430 qdisc fq_codel state UP group default qlen 1000\n    link/ether 52:54:00:57:1e:1a brd ff:ff:ff:ff:ff:ff\n    inet 192.168.100.25/24 metric 100 brd 192.168.100.255 scope global dynamic enp1s0\n       valid_lft 29529sec preferred_lft 29529sec\n    inet6 fe80::5054:ff:fe57:1e1a/64 scope link \n       valid_lft forever preferred_lft forever\n3: enp7s0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UP group default qlen 1000\n    link/ether 52:54:00:72:07:a3 brd ff:ff:ff:ff:ff:ff\n    inet 10.0.0.2/8 brd 10.255.255.255 scope global enp7s0\n       valid_lft forever preferred_lft forever\n    inet6 fe80::5054:ff:fe72:7a3/64 scope link \n       valid_lft forever preferred_lft forever\n```\n\nComment: hello. we only officially support KVM hypervisor. so you must find the solution by yourself or wait till someone from community who uses it helps you\nComment: Was indeed a configuration error. The machinery module is throwing a descriptive error which is catched and printed with details stripped out.",
+  "Title: Error screenshot and file not opening\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\n\n## This is open source and you are getting __free__ support so be friendly!\n\n# Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n- [X] I am running the latest version\n- [X] I did read the README!\n- [X] I checked the documentation and found no answer\n- [X] I checked to make sure that this issue has not already been filed\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [X] I have read and checked all configs (with all optional parts)\n\n\n# Expected Behavior\n\nNo error and screenshot\n\n# Current Behavior\nRight now I ran my task it successfully upload, i dont see the TXT getting opened. I am currently only trying with a txt file to see if everything is good. I get two error. Plus screenshot arent working\n\n# Failure Information (for bugs)\n\n2025-08-24 08:06:13,990 [lib.cuckoo.core.plugins] ERROR: import_package: modules.processing.CAPE - error: Error detecting the version of libcrypto\n## Steps to Reproduce\n2025-08-24 08:07:11,782 [lib.cuckoo.core.guest] INFO: Task #6: Started capturing screenshots for Sand10\n2025-08-24 08:07:11,783 [lib.cuckoo.core.analysis_manager] WARNING: Task #6: Failed to take screenshot of Sand10:\n2025-08-24 08:07:12,791 [lib.cuckoo.core.analysis_manager] WARNING: Task #6: Failed to take screenshot of Sand10:\n2025-08-24 08:07:13,801 [lib.cuckoo.core.analysis_manager] WARNING: Task #6: Failed to take screenshot of Sand10:\n2025-08-24 08:07:14,810 [lib.cuckoo.core.analysis_manager] WARNING: Task #6: Failed to take screenshot of Sand10:\n2025-08-24 08:07:15,817 [lib.cuckoo.core.analysis_manager] WARNING: Task #6: Failed to take screenshot of Sand10:\n## Context\n\nCAPE is hosted on Ubuntu desktop 24.04\nUsing proxmox  directly so my machinery is proxmox\nMy guest is Windows 10 with python 3.12.10, with Pillow installed.\nRunning The agent with task scheduler highest priv, curl is saying running as admin true when query port 8000 of agent\n\n## Failure Logs\n\n2025-08-24 08:08:47,585 [lib.cuckoo.core.analysis_manager] WARNING: Task #6: Failed to take screenshot of Sand10:\n2025-08-24 08:08:48,594 [lib.cuckoo.core.analysis_manager] WARNING: Task #6: Failed to take screenshot of Sand10:\n2025-08-24 08:08:49,601 [lib.cuckoo.core.analysis_manager] WARNING: Task #6: Failed to take screenshot of Sand10:\n2025-08-24 08:08:50,610 [lib.cuckoo.core.analysis_manager] WARNING: Task #6: Failed to take screenshot of Sand10:\n2025-08-24 08:08:51,619 [lib.cuckoo.core.analysis_manager] WARNING: Task #6: Failed to take screenshot of Sand10:\n\n2025-08-24 08:06:13,513 [root] DEBUG: Importing modules...\n2025-08-24 08:06:13,520 [modules.auxiliary.QemuScreenshots] DEBUG: Importing 'PIL.ImageChops.difference'\n2025-08-24 08:06:13,520 [modules.auxiliary.QemuScreenshots] DEBUG: Importing 'PIL.ImageDraw'\n2025-08-24 08:06:13,522 [modules.auxiliary.QemuScreenshots] DEBUG: Importing 'PIL.Image'\n2025-08-24 08:06:13,990 [lib.cuckoo.core.plugins] ERROR: import_package: modules.processing.CAPE - error: Error detecting the version of libcrypto\nTraceback (most recent call last):\n  File \"/opt/CAPEv2/lib/cuckoo/core/plugins.py\", line 100, in import_package\n    import_plugin(name)\n  File \"/opt/CAPEv2/lib/cuckoo/core/plugins.py\", line 53, in import_plugin\n    module = __import__(name, globals(), locals(), [\"dummy\"])\n             ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/opt/CAPEv2/modules/processing/CAPE.py\", line 26, in <module>\n    from lib.cuckoo.common.integrations.file_extra_info import DuplicatesType, static_file_info\n  File \"/opt/CAPEv2/lib/cuckoo/common/integrations/file_extra_info.py\", line 33, in <module>\n    from lib.cuckoo.common.integrations.parse_rdp import parse_rdp_file\n  File \"/opt/CAPEv2/lib/cuckoo/common/integrations/parse_rdp.py\", line 15, in <module>\n    from certvalidator import CertificateValidator, ValidationContext\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/certvalidator/__init__.py\", line 9, in <module>\n    from .validate import validate_path, validate_tls_hostname, validate_usage\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/certvalidator/validate.py\", line 5, in <module>\n    from oscrypto import asymmetric\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/oscrypto/asymmetric.py\", line 19, in <module>\n    from ._asymmetric import _unwrap_private_key_info\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/oscrypto/_asymmetric.py\", line 27, in <module>\n    from .kdf import pbkdf1, pbkdf2, pkcs12_kdf\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/oscrypto/kdf.py\", line 9, in <module>\n    from .util import rand_bytes\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/oscrypto/util.py\", line 14, in <module>\n    from ._openssl.util import rand_bytes\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/oscrypto/_openssl/util.py\", line 6, in <module>\n    from ._libcrypto import libcrypto, libcrypto_version_info, handle_openssl_error\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/oscrypto/_openssl/_libcrypto.py\", line 9, in <module>\n    from ._libcrypto_cffi import (\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/oscrypto/_openssl/_libcrypto_cffi.py\", line 44, in <module>\n    raise LibraryNotFoundError('Error detecting the version of libcrypto')\noscrypto.errors.LibraryNotFoundError: Error detecting the version of libcrypto\nOPTIONAL! Missed dependency: poetry run pip install -U **git+https://github.com/CAPESandbox/httpreplay**\n\n\n\nComment: hey never saw that error. looks like 3rd party dependency is broken\nTry to install from inside of poetry shell: `pip install git+https://github.com/wbond/oscrypto.git@1547f535001ba568b239b8797465536759c742a3`",
+  "Title: Resolve \"The Poetry configuration is invalid\"\nBody: This commit fixes the following error when poetry install is run to install dependencies inside /opt/CAPEv2:\r\n\r\n```\r\nThe Poetry configuration is invalid:\r\n  - Additional properties are not allowed ('requires-poetry' was unexpected)\r\n```",
+  "Title: Crash of Microsoft Office documents and some executables when analysis with capemon\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\n\n## This is open source and you are getting __free__ support so be friendly!\n\n# Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n- [x] I am running the latest version\n- [x] I did read the README!\n- [x] I checked the documentation and found no answer\n- [x] I checked to make sure that this issue has not already been filed\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [x] I have read and checked all configs (with all optional parts)\n\n# Expected Behavior\n\nSuccesfull analysis on some executables and Microsoft Office documents (docx, pptx).\n\n# Current Behavior\n\nWhen running analysis on some executables or Microsoft Office documents (like empty docx document), Capemon crashes the process leading to sample failure (or program running the sample failure).\n\nWhile trying manual detonation of DOCX document, the launcher of Microsoft Word was working fine - crash happened after the Word was launched.\n\n# Failure Information (for bugs)\n\nFrom the failure logs (and recent changes in capemon) I suspect some weird memory access issues.\n\nAlso while trying to debug the issue I found that `debug=2` in task options leads to empty behavioral analysis.\n\n## Steps to Reproduce\n\n1. Run CAPE analysis with empty Microsoft Word document.\n2. Wait for finish\n3. See on screenshots / behavioral analysis / analysis.log that execution of sample was terminated\n\nCurrent version of ChromeSetup available for download doesn't reproduce this issue.\nSome that I have from 2022-2024 are the only ones that have this issue. Here is one of them: [ChromeSetup.tar.gz](https://github.com/user-attachments/files/21938309/ChromeSetup.tar.gz)\n\n## Context\n\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\n\n| Question         | Answer\n|------------------|--------------------\n| Git commit       | 5d15ec1364f52eaa8b1e329e0aa3e3c5864925ef\n| OS version       | Ubuntu 24.04 on host, Windows 10 21H2 on guest\n| Office version   | 2016 MSO (16.0.42666.1001)\n\nLast working version of capemon found at commit: 833a37effde090e85525a51b7b3dc80608cdd45e\n\n## Failure Logs\n\nSample: ChromeSetup.exe (md5: d1356f94daef39474623c97c8da64523), analysis.log, options=debug=2:\n\n```\n2025-08-21 15:25:44,502 [root] INFO: Added new file to list with pid None and path C:\\Program Files (x86)\\Google\\Temp\\GUM61F6.tmp\\GoogleUpdateSetup.exe\n2025-08-21 15:25:44,517 [root] DEBUG: 5608: InstrumentationCallback: Added region at 0x75A50000 to tracked regions list (thread 5568).\n2025-08-21 15:25:44,533 [root] DEBUG: 5608: CreateProcessHandler: Injection info set for new process 4448: C:\\Program Files (x86)\\Google\\Temp\\GUM61F6.tmp\\GoogleUpdate.exe, ImageBase: 0x00B10000\n2025-08-21 15:25:44,533 [root] INFO: Announced 32-bit process name: GoogleUpdate.exe pid: 4448\n2025-08-21 15:25:44,533 [lib.api.process] INFO: Monitor config for <Process 4448 GoogleUpdate.exe>: C:\\7pb5kvup\\dll\\4448.ini\n2025-08-21 15:25:44,533 [lib.api.process] INFO: Option 'debug' with value '2' sent to monitor\n2025-08-21 15:25:44,877 [lib.api.process] INFO: 32-bit DLL to inject is C:\\7pb5kvup\\dll\\XeHYTmlK.dll, loader C:\\7pb5kvup\\bin\\NiHRsua.exe\n2025-08-21 15:25:44,892 [root] DEBUG: Loader: Injecting process 4448 (thread 4420) with C:\\7pb5kvup\\dll\\XeHYTmlK.dll.\n2025-08-21 15:25:44,892 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\n2025-08-21 15:25:44,892 [root] DEBUG: Successfully injected DLL C:\\7pb5kvup\\dll\\XeHYTmlK.dll.\n2025-08-21 15:25:44,892 [lib.api.process] INFO: Injected into 32-bit <Process 4448 GoogleUpdate.exe>\n2025-08-21 15:25:44,908 [root] DEBUG: 5608: DLL loaded at 0x74380000: C:\\Windows\\system32\\apphelp (0x9f000 bytes).\n...\n...\n...\n2025-08-21 15:25:45,394 [root] DEBUG: 4448: OpenProcessHandler: Image base for process 5608 (handle 0x490): 0x00690000.\n2025-08-21 15:25:45,394 [root] DEBUG: 4448: OpenProcessHandler: Injection info created for process 5540, handle 0x490: C:\\Windows\\System32\\SecurityHealthSystray.exe\n2025-08-21 15:25:45,394 [root] DEBUG: 4448: OpenProcessHandler: Injection info created for process 5776, handle 0x490: C:\\Windows\\System32\\smartscreen.exe\n2025-08-21 15:25:45,441 [root] DEBUG: 4448: CAPEExceptionFilter: Exception 0xc0000005 accessing 0xd16c0490 caught at RVA 0x6617a in capemon (expected in memory scans), passing to next handler.\n2025-08-21 15:25:45,441 [root] DEBUG: 4448: capemon.dll::0x7397617A 8b00                 MOV       EAX, [EAX]\n2025-08-21 15:25:45,441 [root] DEBUG: 4448: Exception Caught! PID: 4448 EIP: capemon.dll+0x6617a SEH: capemon.dll+0x177a30 7397617a, Fault Address: d16c0490, Esp: 006fcc2c, Exception Code: c0000005\nEAX 0xd16c0490 EBX 0x42 ECX 0x36 EDX 0x0 ESI 0x6fd138 EDI 0x73b2dd91\n ESP 0x6fcc2c EBP 0x6fd0ec\ncapemon.dll+0x3d229\nKERNELBASE.dll+0x11d52c\nKERNELBASE.dll+0xf2f53\nKERNELBASE.dll+0xf2ed7\ngoopdate.dll+0xfb8d\ngoopdate.dll+0xf8aa\ngoopdate.dll+0x1184b1\ngoopdate.dll+0x1180b9\ngoopdate.dll+0x117c4c\ngoopdate.dll+0x1179ad\ngoopdate.dll+0x117731\ngoopdate.dll+0xa2\n2025-08-21 15:25:45,441 [root] DEBUG: 4448: capemon.dll::0x7397617A 8b00                 MOV       EAX, [EAX]\n2025-08-21 15:25:45,441 [root] DEBUG: 4448: Exception Caught! PID: 4448 EIP: capemon.dll+0x6617a SEH: capemon.dll+0x177a30 7397617a, Fault Address: d16c0490, Esp: 006fcc2c, Exception Code: c0000005\nEAX 0xd16c0490 EBX 0x42 ECX 0x36 EDX 0x0 ESI 0x6fd138 EDI 0x73b2dd91\n ESP 0x6fcc2c EBP 0x6fd0ec\ncapemon.dll+0x3d229\nKERNELBASE.dll+0x11d52c\nKERNELBASE.dll+0xf2f53\nKERNELBASE.dll+0xf2ed7\ngoopdate.dll+0xfb8d\ngoopdate.dll+0xf8aa\ngoopdate.dll+0x1184b1\ngoopdate.dll+0x1180b9\ngoopdate.dll+0x117c4c\ngoopdate.dll+0x1179ad\ngoopdate.dll+0x117731\ngoopdate.dll+0xa2\n2025-08-21 15:25:45,441 [root] INFO: Process with pid 4448 has terminated\n2025-08-21 15:25:45,441 [root] DEBUG: 4448: NtTerminateProcess hook: Attempting to dump process 4448\n2025-08-21 15:25:45,441 [root] DEBUG: 4448: DoProcessDump: Skipping process dump as code is identical on disk.\n```\n\nNtTerminateProcess returned  0x8004ffff\n\nSample: empty.docx, analysis.log, options=debug=2:\n\n```\n2025-08-21 15:39:29,466 [root] DEBUG: 5564: Commandline: \"C:\\Program Files\\Microsoft Office\\Office16\\WINWORD.EXE\" \"C:\\Program Files\\Microsoft Office\\root\\Templates\\empty.docx\" /q\n2025-08-21 15:39:29,496 [root] WARNING: b'Unable to place hook on LockResource'\n2025-08-21 15:39:29,496 [root] DEBUG: 5564: set_hooks: Unable to hook LockResource\n2025-08-21 15:39:29,496 [root] DEBUG: 5564: Hooked 427 out of 428 functions\n2025-08-21 15:39:29,496 [root] DEBUG: 5564: Syscall hook installed, syscall logging level 1\n2025-08-21 15:39:29,512 [root] INFO: Loaded monitor into process with pid 5564\n...\n...\n...\n2025-08-21 15:39:30,660 [root] DEBUG: 5564: KERNELBASE.dll::0x00007FFA43044F99 0f1f440000           NOP       DWORD [RAX+RAX+0x0]\n2025-08-21 15:39:30,660 [root] DEBUG: 5564: Exception Caught! PID: 5564 EIP: KERNELBASE.dll+0x34f99 7ffa43044f99, Fault Address: 3ae818ad30, Esp: 3ae818ab90, Exception Code: e06d7363\nRAX 0x3ae818ab08 RBX 0x7ffa234ce3b8 RCX 0x1ef223cd250 RDX 0x7ffa456f47b1 RSI 0x3ae818ad30 RDI 0x19930520\nR8 0x202 R9 0x0 R10 0x246 R11 0x202 R12 0x3ae818b1a0 R13 0x0 R14 0x20019 R15 0x492 RSP 0x3ae818ab90 RBP 0x3ae818ad50\nntdll.dll+0x78a3c\nntdll.dll+0x51276\ncapemon_x64.dll+0xb9dea\nntdll.dll+0x511a5\nKERNELBASE.dll+0x34f99\nVCRUNTIME140.dll+0x6720\nmso30win32client.dll+\n2025-08-21 15:39:30,660 [root] DEBUG: 5564: KERNELBASE.dll::0x00007FFA43044F99 0f1f440000           NOP       DWORD [RAX+RAX+0x0]\n2025-08-21 15:39:30,660 [root] DEBUG: 5564: Exception Caught! PID: 5564 EIP: KERNELBASE.dll+0x34f99 7ffa43044f99, Fault Address: 00000000, Esp: 3ae8188700, Exception Code: e06d7363\nRAX 0x0 RBX 0x0 RCX 0x0 RDX 0x0 RSI 0x0 RDI 0x19930520\nR8 0x0 R9 0x0 R10 0x0 R11 0x0 R12 0x3ae81889b0 R13 0x0 R14 0x3ae8189828 R15 0x0 RSP 0x3ae8188700 RBP 0x3ae818ae00\nntdll.dll+0x78a3c\nntdll.dll+0x51276\ncapemon_x64.dll+0xb9dea\nntdll.dll+0x511a5\nKERNELBASE.dll+0x34f99\nVCRUNTIME140.dll+0x6720\nmso30win32client.dll+0x71f77\nmso30win32client.dll+0x7af05\nVCRUNTIME140.dll+0\n2025-08-21 15:39:30,676 [root] DEBUG: 5564: DLL loaded at 0x00007FFA40A20000: C:\\Windows\\SYSTEM32\\dwmapi (0x2f000 bytes).\n...\n...\n...\n2025-08-21 15:39:30,863 [root] DEBUG: 5564: api-rate-cap: ReadProcessMemory hook disabled due to rate\n2025-08-21 15:39:31,380 [lib.api.process] WARNING: failed to open process 5564\n2025-08-21 15:39:31,380 [lib.api.process] WARNING: failed to open process 5564\n2025-08-21 15:39:31,396 [lib.api.process] DEBUG: Failed getting image name for pid 5564\n2025-08-21 15:39:31,396 [lib.api.process] WARNING: failed to open process 5564\n2025-08-21 15:39:31,396 [lib.api.process] DEBUG: Failed getting image name for pid 5564\n2025-08-21 15:39:31,380 [lib.api.process] DEBUG: Failed getting exit code for <Process 5564 ???>\n2025-08-21 15:39:31,396 [root] INFO: Process with pid 5564 appears to have terminated\n2025-08-21 15:39:36,447 [root] INFO: Process list is empty, terminating analysis\n```\n\nComment: Fixed in 439dc0cf6cc2aa7cd4440f3c45d895c3cf861aa7, thanks!\nComment: Happy days \u2764\ufe0f ",
+  "Title: VMCloak\nBody: Dear,\n\nCan I create an analysis engine via VMCloak? Since I see that there is that possibility in Cuckoo.\n\nBest regards!\nComment: Idk\r\n\r\nEl jue, 21 ago 2025, 9:59, Loky85 ***@***.***> escribi\u00f3:\r\n\r\n> *Loky85* created an issue (kevoreilly/CAPEv2#2678)\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2678>\r\n>\r\n> Dear,\r\n>\r\n> Can I create an analysis engine via VMCloak? Since I see that there is\r\n> that possibility in Cuckoo.\r\n>\r\n> Best regards!\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2678>, or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH33ARJCXNQPPRPMECGD3OV35XAVCNFSM6AAAAACEN2STOSVHI2DSMVQWIX3LMV43ASLTON2WKOZTGM2DANZRGMYTKMI>\r\n> .\r\n> You are receiving this because you are subscribed to this thread.Message\r\n> ID: ***@***.***>\r\n>\r\n\nComment: I have never tried, so unfortunately can't answer whether it might be possible. It is not our recommendation though.",
+  "Title: Revert \"Update Stealc.yar\"\nBody: Reverts kevoreilly/CAPEv2#2674",
+  "Title: Dashboard crashes with `KeyError: 'aggregations'` when Elasticsearch is used\nBody: \n\n- [x] I am running the latest version  \n- [x] I did read the README!  \n- [x] I checked the documentation and found no answer  \n- [x] I checked to make sure that this issue has not already been filed  \n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)  \n- [x] I have read and checked all configs (with all optional parts)  \n\n# Expected Behavior\n\nThe CAPEv2 dashboard should load successfully on port 8000.\n\n# Current Behavior\n\nThe dashboard crashes with a `KeyError: 'aggregations'` when accessing the portal on port 8000.\n\n# Failure Information (for bugs)\n\n## Steps to Reproduce\n\n1. Set up CAPEv2 with Elasticsearch enabled in `reporting.conf` and MongoDB disabled  \n2. Submit a sample via CLI (e.g., a URL) \u2014 this works fine and completes  \n3. Access the dashboard at `http://localhost:8000`  \n4. Dashboard crashes with traceback  \n\n## Context\n\n\n| Question         | Answer\n|------------------|--------------------\n\n| OS version       | Ubuntu 22.04\n| Elasticsearch    | Running locally on port 9200\n| CAPEv2 config    | See below\n\n```ini\n[elasticsearchdb]\nenabled = yes\nsearchonly = no\nhost = 127.0.0.1\nport = 9200\n# The report data is indexed in the form of {{index-yyyy.mm.dd}}\n# so the below index configuration option is actually an index 'prefix'.\nindex = cuckoo\nusername =\npassword =\n# use_ssl =\n# verify_certs =\n\n```\nKeyError\nKeyError: 'aggregations'\n\nTraceback (most recent call last)\nFile \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/contrib/staticfiles/handlers.py\", line 80, in __call__\nreturn self.application(environ, start_response)\nFile \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/wsgi.py\", line 124, in __call__\nresponse = self.get_response(request)\nFile \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/base.py\", line 140, in get_response\nresponse = self._middleware_chain(request)\nFile \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/exception.py\", line 57, in inner\nresponse = response_for_exception(request, exc)\nFile \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/exception.py\", line 140, in response_for_exception\nresponse = handle_uncaught_exception(\nFile \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/exception.py\", line 181, in handle_uncaught_exception\nreturn debug.technical_500_response(request, *exc_info)\nFile \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django_extensions/management/technical_response.py\", line 40, in null_technical_500_response\nraise exc_value.with_traceback(tb)\nFile \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/exception.py\", line 55, in inner\nresponse = get_response(request)\nFile \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/base.py\", line 197, in _get_response\nresponse = wrapped_callback(request, *callback_args, **callback_kwargs)\nFile \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/views/decorators/http.py\", line 64, in inner\nreturn func(request, *args, **kwargs)\nFile \"/opt/CAPEv2/web/dashboard/views.py\", line 94, in index\nreport[\"top_detections\"] = top_detections()\nFile \"/opt/CAPEv2/web/web/../../lib/cuckoo/common/web_utils.py\", line 366, in top_detections\n\n        if date_since:\n            q[\"query\"][\"bool\"][\"must\"].append({\"range\": {\"info.started\": {\"gte\": date_since.isoformat()}}})\n\n        res = es.search(index=get_analysis_index(), body=q)\n        data = [{\"total\": r[\"doc_count\"], \"family\": r[\"key\"]} for r in res[\"aggregations\"][\"family\"][\"buckets\"]]\n    else:\n        data = []\n\n    if data:\n        data = list(data)\nKeyError: 'aggregations'\n\n```\nComment: We don't support ES, is on community. So fix it or use mongodb\r\n\r\nEl mi\u00e9, 20 ago 2025, 15:45, LAKH ***@***.***> escribi\u00f3:\r\n\r\n> *LaKH-exe* created an issue (kevoreilly/CAPEv2#2676)\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2676>\r\n>\r\n>    - I am running the latest version\r\n>    - I did read the README!\r\n>    - I checked the documentation and found no answer\r\n>    - I checked to make sure that this issue has not already been filed\r\n>    - I'm reporting the issue to the correct repository (for\r\n>    multi-repository projects)\r\n>    - I have read and checked all configs (with all optional parts)\r\n>\r\n> Expected Behavior\r\n>\r\n> The CAPEv2 dashboard should load successfully on port 8000.\r\n> Current Behavior\r\n>\r\n> The dashboard crashes with a KeyError: 'aggregations' when accessing the\r\n> portal on port 8000.\r\n> Failure Information (for bugs) Steps to Reproduce\r\n>\r\n>    1. Set up CAPEv2 with Elasticsearch enabled in reporting.conf and\r\n>    MongoDB disabled\r\n>    2. Submit a sample via CLI (e.g., a URL) \u2014 this works fine and\r\n>    completes\r\n>    3. Access the dashboard at http://localhost:8000\r\n>    4. Dashboard crashes with traceback\r\n>\r\n> Context\r\n> Question Answer\r\n>\r\n> | OS version | Ubuntu 22.04\r\n> | Elasticsearch | Running locally on port 9200\r\n> | CAPEv2 config | See below\r\n>\r\n> [elasticsearchdb]enabled = yessearchonly = nohost = 127.0.0.1port = 9200# The report data is indexed in the form of {{index-yyyy.mm.dd}}# so the below index configuration option is actually an index 'prefix'.index = cuckoousername =password =# use_ssl =# verify_certs =\r\n>\r\n> KeyError\r\n> KeyError: 'aggregations'\r\n>\r\n> Traceback (most recent call last)\r\n> File\r\n> \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/contrib/staticfiles/handlers.py\",\r\n> line 80, in *call*\r\n> return self.application(environ, start_response)\r\n> File\r\n> \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/wsgi.py\",\r\n> line 124, in *call*\r\n> response = self.get_response(request)\r\n> File\r\n> \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/base.py\",\r\n> line 140, in get_response\r\n> response = self._middleware_chain(request)\r\n> File\r\n> \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/exception.py\",\r\n> line 57, in inner\r\n> response = response_for_exception(request, exc)\r\n> File\r\n> \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/exception.py\",\r\n> line 140, in response_for_exception\r\n> response = handle_uncaught_exception(\r\n> File\r\n> \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/exception.py\",\r\n> line 181, in handle_uncaught_exception\r\n> return debug.technical_500_response(request, *exc_info)\r\n> File\r\n> \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django_extensions/management/technical_response.py\",\r\n> line 40, in null_technical_500_response\r\n> raise exc_value.with_traceback(tb)\r\n> File\r\n> \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/exception.py\",\r\n> line 55, in inner\r\n> response = get_response(request)\r\n> File\r\n> \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/base.py\",\r\n> line 197, in _get_response\r\n> response = wrapped_callback(request, *callback_args, **callback_kwargs)\r\n> File\r\n> \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/views/decorators/http.py\",\r\n> line 64, in inner\r\n> return func(request, *args, **kwargs)\r\n> File \"/opt/CAPEv2/web/dashboard/views.py\", line 94, in index\r\n> report[\"top_detections\"] = top_detections()\r\n> File \"/opt/CAPEv2/web/web/../../lib/cuckoo/common/web_utils.py\", line 366,\r\n> in top_detections\r\n>\r\n>     if date_since:\r\n>         q[\"query\"][\"bool\"][\"must\"].append({\"range\": {\"info.started\": {\"gte\": date_since.isoformat()}}})\r\n>\r\n>     res = es.search(index=get_analysis_index(), body=q)\r\n>     data = [{\"total\": r[\"doc_count\"], \"family\": r[\"key\"]} for r in res[\"aggregations\"][\"family\"][\"buckets\"]]\r\n> else:\r\n>     data = []\r\n>\r\n> if data:\r\n>     data = list(data)\r\n>\r\n> KeyError: 'aggregations'\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2676>, or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH322Z3TXKVGLKXU5YSD3OR3WZAVCNFSM6AAAAACELR3BU2VHI2DSMVQWIX3LMV43ASLTON2WKOZTGMZTQMRRGA3TMOI>\r\n> .\r\n> You are receiving this because you are subscribed to this thread.Message\r\n> ID: ***@***.***>\r\n>\r\n",
+  "Title: fix Interactive desktop\nBody: Fixed guac error page.\r\nFixed submission, machine was always NONE so error page was shown. I changed db.view_machine to db.view_machine_by_label like here, and it worked again: https://github.com/kevoreilly/CAPEv2/blob/5d15ec1364f52eaa8b1e329e0aa3e3c5864925ef/web/submission/views.py#L787",
+  "Title: Update Stealc.yar\nBody: This should get rid of the FPs but not produce FNs.\nComment: I prefer to improve the signature patterns rather than add exclusions.\r\n\r\nPlease supply details and hashes for the FPs.\nComment: Agreed with this and had the same thought originally - although, that might mean getting rid of the $snippet1 string.. Example FP hashes:\r\n\r\n03f891ce963ca916c865b91da8e9cd47dc97406c2cbc7d019964fe5b61d7343f\r\n444ed825f744a8929d05f7900a8768e968e25489dfa0f73326833bc3bb5a55d9\r\n\r\n<img width=\"595\" height=\"146\" alt=\"image\" src=\"https://github.com/user-attachments/assets/d8217095-ab30-4459-8dfb-52b874d13134\" />\r\n\r\nHope this helps,\r\n",
+  "Title: Issues regarding pcap generation - pcap file is always empty\nBody: # Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n- [x] I am running the latest version\n- [X] I did read the README!\n- [X] I checked the documentation and found no answer\n- [X] I checked to make sure that this issue has not already been filed\n- [ ] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [X] I have read and checked all configs (with all optional parts)\n\n\n# Expected Behavior\n\nPCAP File beeing generated correcty and contains packet dumps. Contacted hosts and DNS Requests are beeing displayed in the analysis report.\n\n# Current Behavior\n\nAnalysis runs, gets reported but Network analysis is empty, downloading the pcap file brings up an empty dump file.\n\n\n## Steps to Reproduce\n\nPlease provide detailed steps for reproducing the issue.\n\n1. Start Analysis Task\n2. Check Reported Task\n3. No Contacted Hosts or DNS Requests \n\n## Context\n\nI did check the docs more than once and can not find any issue.\nI've checked the troubleshooting section regarding pcap generation as well, checked the pcap permissions for cape but still won't work.\n\n```\n$ ll /usr/bin/tcpdump\n-rwxr-xr-x 1 root pcap 1273976 Feb 16  2025 /usr/bin/tcpdump*\n\n$ getent group pcap\npcap:x:1002:cape\n```\n\ntcpdump path is correct as well:\n\n```\n$ whereis tcpdump\ntcpdump: /usr/bin/tcpdump /usr/share/man/man8/tcpdump.8.gz\n```\n\n\nIn the analysis folder, there will always be a dump.pcap file, which is empty.\n\n\"enp6s18\" is the interface which provides internet connectivity. Which cape seems to be using for pcap generation.\n\nManually running tcpdump as cape user works fine as seen below, so this should not be an issue regarding permissions.\n\n```\n$ sudo -u cape tcpdump -i enp6s18\n[sudo] password for sandy:\ntcpdump: verbose output suppressed, use -v[v]... for full protocol decode\nlistening on enp6s18, link-type EN10MB (Ethernet), snapshot length 262144 bytes\n10:11:23.457190 IP madlen-sandbox.ssh > 10.10.88.1.55322: Flags [P.], seq 1874148051:1874148259, ack 3562662718, win 1431, length 208\n10:11:23.512504 IP 10.10.88.1.55322 > madlen-sandbox.ssh: Flags [.], ack 0, win 254, length 0\n10:11:23.539742 IP 10.10.88.1.55322 > madlen-sandbox.ssh: Flags [P.], seq 1:161, ack 208, win 253, length 160\n10:11:23.540064 IP madlen-sandbox.ssh > 10.10.88.1.55322: Flags [P.], seq 208:256, ack 161, win 1452, length 48\n10:11:23.550665 IP madlen-sandbox.53217 > dns9.quad9.net.domain: 32350+ [1au] PTR? 1.88.10.10.in-addr.arpa. (52)\n10:11:23.578182 IP dns9.quad9.net.domain > madlen-sandbox.53217: 32350 NXDomain- 0/0/1 (52)\n10:11:23.579691 IP madlen-sandbox.49724 > dns9.quad9.net.domain: 26458+ [1au] PTR? 5.195.168.192.in-addr.arpa. (55)\n10:11:23.595055 IP dns9.quad9.net.domain > madlen-sandbox.49724: 26458 NXDomain- 0/0/1 (55)\n```\n\n\n\n\n\n## Failure Logs\n\nCape Analysis Log:\n\n\n```\nCAPE: Config and Payload Extraction\ngithub.com/kevoreilly/CAPEv2\n\nXLMMacroDeobfuscator: pywin32 is not installed (only is required if you want to use MS Excel)\npip3 install certvalidator asn1crypto mscerts\n2025-08-19 09:42:23,788 [modules.processing.network] INFO: Loading maxmind database from /opt/CAPEv2/modules/processing/../../data/GeoLite2-Country.mmdb\n/usr/bin/tcpdump\n2025-08-19 09:42:24,172 [lib.cuckoo.core.machinery_manager] INFO: Using MachineryManager[proxmox] with max_machines_count=10\n2025-08-19 09:42:24,172 [lib.cuckoo.core.scheduler] INFO: Creating scheduler with max_analysis_count=unlimited\n2025-08-19 09:42:24,192 [lib.cuckoo.core.machinery_manager] INFO: Loaded 1 machine\n2025-08-19 09:42:24,257 [lib.cuckoo.core.machinery_manager] INFO: max_vmstartup_count for BoundedSemaphore = 5\n2025-08-19 09:42:24,261 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks\n2025-08-19 09:46:24,620 [lib.cuckoo.core.machinery_manager] INFO: Task #4: found useable machine SBX-Windows10-01 (arch=x86, platform=windows)\n2025-08-19 09:46:24,620 [lib.cuckoo.core.scheduler] INFO: Task #4: Processing task\n2025-08-19 09:46:24,875 [lib.cuckoo.core.analysis_manager] INFO: Task #4: File already exists at '/opt/CAPEv2/storage/binaries/4d70290367ad03399e17d5001842553fcd4d57e026eb330add0e3f28327d79a7'\n2025-08-19 09:46:24,876 [lib.cuckoo.core.analysis_manager] INFO: Task #4: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_kkwhui6f/ChromeSetup.exe'\n2025-08-19 09:46:28,758 [lib.cuckoo.core.analysis_manager] INFO: Task #4: Enabled route 'internet'.\n2025-08-19 09:46:28,773 [modules.auxiliary.Mitmdump] INFO: Mitmdump module loaded\n2025-08-19 09:46:28,774 [modules.auxiliary.PolarProxy] INFO: PolarProxy module loaded\n2025-08-19 09:46:28,774 [modules.auxiliary.QemuScreenshots] INFO: QEMU screenshots module loaded\n/usr/bin/tcpdump\n2025-08-19 09:46:28,789 [modules.auxiliary.sniffer] INFO: Started sniffer with PID 26677 (interface=enp6s18, host=192.168.99.20, dump path=/opt/CAPEv2/storage/analyses/4/dump.pcap)\n2025-08-19 09:46:30,085 [lib.cuckoo.core.guest] INFO: Task #4: Starting analysis on guest (id=SBX-Windows10-01, ip=192.168.99.20)\n2025-08-19 09:46:58,196 [lib.cuckoo.core.guest] INFO: Task #4: Guest is running CAPE Agent 0.11 (id=SBX-Windows10-01, ip=192.168.99.20)\n2025-08-19 09:47:02,270 [lib.cuckoo.core.guest] INFO: Task #4: Uploading script files to guest (id=SBX-Windows10-01, ip=192.168.99.20)\n2025-08-19 09:47:11,585 [lib.cuckoo.core.resultserver] INFO: Task 4: Process 7584 (parent 5872): ChromeSetup.exe, path C:\\Users\\Peter Silie\\AppData\\Local\\Temp\\ChromeSetup.exe\n2025-08-19 09:47:13,617 [lib.cuckoo.core.resultserver] INFO: Task 4: Process 8604 (parent 7584): updater.exe, path C:\\Users\\Peter Silie\\AppData\\Local\\Temp\\Google7584_1487186110\\bin\\updater.exe\n2025-08-19 09:47:14,381 [lib.cuckoo.core.resultserver] INFO: Task 4: Process 5516 (parent 8604): updater.exe, path C:\\Users\\Peter Silie\\AppData\\Local\\Temp\\Google7584_1487186110\\bin\\updater.exe\n2025-08-19 09:47:15,881 [lib.cuckoo.core.resultserver] INFO: Task 4: Process 1188 (parent 768): svchost.exe, path C:\\Windows\\System32\\svchost.exe\n2025-08-19 09:48:08,918 [lib.cuckoo.core.resultserver] INFO: Task 4: Process 7816 (parent 1188): taskhostw.exe, path C:\\Windows\\System32\\taskhostw.exe\n2025-08-19 09:48:58,604 [lib.cuckoo.core.resultserver] INFO: Task 4: Process 5244 (parent 5212): explorer.exe, path C:\\Windows\\explorer.exe\n2025-08-19 09:49:05,053 [lib.cuckoo.core.resultserver] INFO: Task 4: Process 8916 (parent 1188): taskhostw.exe, path C:\\Windows\\System32\\taskhostw.exe\n2025-08-19 09:49:18,536 [lib.cuckoo.core.guest] INFO: Task #4: Analysis completed successfully (id=SBX-Windows10-01, ip=192.168.99.20)\n2025-08-19 09:49:18,682 [lib.cuckoo.core.analysis_manager] INFO: Task #4: Disabled route 'internet'\n2025-08-19 09:49:21,141 [lib.cuckoo.core.analysis_manager] INFO: Task #4: Completed analysis successfully.\n2025-08-19 09:49:21,147 [lib.cuckoo.core.analysis_manager] INFO: Task #4: analysis procedure completed\n```\n\n\nComment: Did you enable pcap in routing.conf?\r\n\r\nEl mar, 19 ago 2025, 12:49, Sk4hnt42 ***@***.***> escribi\u00f3:\r\n\r\n> *Sk4hnt42* created an issue (kevoreilly/CAPEv2#2673)\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2673>\r\n> Prerequisites\r\n>\r\n> Please answer the following questions for yourself before submitting an\r\n> issue.\r\n>\r\n>    - I am running the latest version\r\n>    - I did read the README!\r\n>    - I checked the documentation and found no answer\r\n>    - I checked to make sure that this issue has not already been filed\r\n>    - I'm reporting the issue to the correct repository (for\r\n>    multi-repository projects)\r\n>    - I have read and checked all configs (with all optional parts)\r\n>\r\n> Expected Behavior\r\n>\r\n> PCAP File beeing generated correcty and contains packet dumps. Contacted\r\n> hosts and DNS Requests are beeing displayed in the analysis report.\r\n> Current Behavior\r\n>\r\n> Analysis runs, gets reported but Network analysis is empty, downloading\r\n> the pcap file brings up an empty dump file.\r\n> Steps to Reproduce\r\n>\r\n> Please provide detailed steps for reproducing the issue.\r\n>\r\n>    1. Start Analysis Task\r\n>    2. Check Reported Task\r\n>    3. No Contacted Hosts or DNS Requests\r\n>\r\n> Context\r\n>\r\n> I did check the docs more than once and can not find any issue.\r\n> I've checked the troubleshooting section regarding pcap generation as\r\n> well, checked the pcap permissions for cape but still won't work.\r\n>\r\n> $ ll /usr/bin/tcpdump\r\n> -rwxr-xr-x 1 root pcap 1273976 Feb 16  2025 /usr/bin/tcpdump*\r\n>\r\n> $ getent group pcap\r\n> pcap:x:1002:cape\r\n>\r\n> tcpdump path is correct as well:\r\n>\r\n> $ whereis tcpdump\r\n> tcpdump: /usr/bin/tcpdump /usr/share/man/man8/tcpdump.8.gz\r\n>\r\n> In the analysis folder, there will always be a dump.pcap file, which is\r\n> empty.\r\n>\r\n> \"enp6s18\" is the interface which provides internet connectivity. Which\r\n> cape seems to be using for pcap generation.\r\n>\r\n> Manually running tcpdump as cape user works fine as seen below, so this\r\n> should not be an issue regarding permissions.\r\n>\r\n> $ sudo -u cape tcpdump -i enp6s18\r\n> [sudo] password for sandy:\r\n> tcpdump: verbose output suppressed, use -v[v]... for full protocol decode\r\n> listening on enp6s18, link-type EN10MB (Ethernet), snapshot length 262144 bytes\r\n> 10:11:23.457190 IP madlen-sandbox.ssh > 10.10.88.1.55322: Flags [P.], seq 1874148051:1874148259, ack 3562662718, win 1431, length 208\r\n> 10:11:23.512504 IP 10.10.88.1.55322 > madlen-sandbox.ssh: Flags [.], ack 0, win 254, length 0\r\n> 10:11:23.539742 IP 10.10.88.1.55322 > madlen-sandbox.ssh: Flags [P.], seq 1:161, ack 208, win 253, length 160\r\n> 10:11:23.540064 IP madlen-sandbox.ssh > 10.10.88.1.55322: Flags [P.], seq 208:256, ack 161, win 1452, length 48\r\n> 10:11:23.550665 IP madlen-sandbox.53217 > dns9.quad9.net.domain: 32350+ [1au] PTR? 1.88.10.10.in-addr.arpa. (52)\r\n> 10:11:23.578182 IP dns9.quad9.net.domain > madlen-sandbox.53217: 32350 NXDomain- 0/0/1 (52)\r\n> 10:11:23.579691 IP madlen-sandbox.49724 > dns9.quad9.net.domain: 26458+ [1au] PTR? 5.195.168.192.in-addr.arpa. (55)\r\n> 10:11:23.595055 IP dns9.quad9.net.domain > madlen-sandbox.49724: 26458 NXDomain- 0/0/1 (55)\r\n>\r\n> Failure Logs\r\n>\r\n> Cape Analysis Log:\r\n>\r\n> CAPE: Config and Payload Extractiongithub.com/kevoreilly/CAPEv2\r\n>\r\n> XLMMacroDeobfuscator: pywin32 is not installed (only is required if you want to use MS Excel)\r\n> pip3 install certvalidator asn1crypto mscerts\r\n> 2025-08-19 09:42:23,788 [modules.processing.network] INFO: Loading maxmind database from /opt/CAPEv2/modules/processing/../../data/GeoLite2-Country.mmdb\r\n> /usr/bin/tcpdump\r\n> 2025-08-19 09:42:24,172 [lib.cuckoo.core.machinery_manager] INFO: Using MachineryManager[proxmox] with max_machines_count=10\r\n> 2025-08-19 09:42:24,172 [lib.cuckoo.core.scheduler] INFO: Creating scheduler with max_analysis_count=unlimited\r\n> 2025-08-19 09:42:24,192 [lib.cuckoo.core.machinery_manager] INFO: Loaded 1 machine\r\n> 2025-08-19 09:42:24,257 [lib.cuckoo.core.machinery_manager] INFO: max_vmstartup_count for BoundedSemaphore = 5\r\n> 2025-08-19 09:42:24,261 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks\r\n> 2025-08-19 09:46:24,620 [lib.cuckoo.core.machinery_manager] INFO: Task #4: found useable machine SBX-Windows10-01 (arch=x86, platform=windows)\r\n> 2025-08-19 09:46:24,620 [lib.cuckoo.core.scheduler] INFO: Task #4: Processing task\r\n> 2025-08-19 09:46:24,875 [lib.cuckoo.core.analysis_manager] INFO: Task #4: File already exists at '/opt/CAPEv2/storage/binaries/4d70290367ad03399e17d5001842553fcd4d57e026eb330add0e3f28327d79a7'\r\n> 2025-08-19 09:46:24,876 [lib.cuckoo.core.analysis_manager] INFO: Task #4: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_kkwhui6f/ChromeSetup.exe'\r\n> 2025-08-19 09:46:28,758 [lib.cuckoo.core.analysis_manager] INFO: Task #4: Enabled route 'internet'.\r\n> 2025-08-19 09:46:28,773 [modules.auxiliary.Mitmdump] INFO: Mitmdump module loaded\r\n> 2025-08-19 09:46:28,774 [modules.auxiliary.PolarProxy] INFO: PolarProxy module loaded\r\n> 2025-08-19 09:46:28,774 [modules.auxiliary.QemuScreenshots] INFO: QEMU screenshots module loaded\r\n> /usr/bin/tcpdump\r\n> 2025-08-19 09:46:28,789 [modules.auxiliary.sniffer] INFO: Started sniffer with PID 26677 (interface=enp6s18, host=192.168.99.20, dump path=/opt/CAPEv2/storage/analyses/4/dump.pcap)\r\n> 2025-08-19 09:46:30,085 [lib.cuckoo.core.guest] INFO: Task #4: Starting analysis on guest (id=SBX-Windows10-01, ip=192.168.99.20)\r\n> 2025-08-19 09:46:58,196 [lib.cuckoo.core.guest] INFO: Task #4: Guest is running CAPE Agent 0.11 (id=SBX-Windows10-01, ip=192.168.99.20)\r\n> 2025-08-19 09:47:02,270 [lib.cuckoo.core.guest] INFO: Task #4: Uploading script files to guest (id=SBX-Windows10-01, ip=192.168.99.20)\r\n> 2025-08-19 09:47:11,585 [lib.cuckoo.core.resultserver] INFO: Task 4: Process 7584 (parent 5872): ChromeSetup.exe, path C:\\Users\\Peter Silie\\AppData\\Local\\Temp\\ChromeSetup.exe\r\n> 2025-08-19 09:47:13,617 [lib.cuckoo.core.resultserver] INFO: Task 4: Process 8604 (parent 7584): updater.exe, path C:\\Users\\Peter Silie\\AppData\\Local\\Temp\\Google7584_1487186110\\bin\\updater.exe\r\n> 2025-08-19 09:47:14,381 [lib.cuckoo.core.resultserver] INFO: Task 4: Process 5516 (parent 8604): updater.exe, path C:\\Users\\Peter Silie\\AppData\\Local\\Temp\\Google7584_1487186110\\bin\\updater.exe\r\n> 2025-08-19 09:47:15,881 [lib.cuckoo.core.resultserver] INFO: Task 4: Process 1188 (parent 768): svchost.exe, path C:\\Windows\\System32\\svchost.exe\r\n> 2025-08-19 09:48:08,918 [lib.cuckoo.core.resultserver] INFO: Task 4: Process 7816 (parent 1188): taskhostw.exe, path C:\\Windows\\System32\\taskhostw.exe\r\n> 2025-08-19 09:48:58,604 [lib.cuckoo.core.resultserver] INFO: Task 4: Process 5244 (parent 5212): explorer.exe, path C:\\Windows\\explorer.exe\r\n> 2025-08-19 09:49:05,053 [lib.cuckoo.core.resultserver] INFO: Task 4: Process 8916 (parent 1188): taskhostw.exe, path C:\\Windows\\System32\\taskhostw.exe\r\n> 2025-08-19 09:49:18,536 [lib.cuckoo.core.guest] INFO: Task #4: Analysis completed successfully (id=SBX-Windows10-01, ip=192.168.99.20)\r\n> 2025-08-19 09:49:18,682 [lib.cuckoo.core.analysis_manager] INFO: Task #4: Disabled route 'internet'\r\n> 2025-08-19 09:49:21,141 [lib.cuckoo.core.analysis_manager] INFO: Task #4: Completed analysis successfully.\r\n> 2025-08-19 09:49:21,147 [lib.cuckoo.core.analysis_manager] INFO: Task #4: analysis procedure completed\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2673>, or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH34LPKV7ZBRX6CY2R2T3OL6MDAVCNFSM6AAAAACEH3U722VHI2DSMVQWIX3LMV43ASLTON2WKOZTGMZTGOBYGQYDOOI>\r\n> .\r\n> You are receiving this because you are subscribed to this thread.Message\r\n> ID: ***@***.***>\r\n>\r\n\nComment: > Did you enable pcap in routing.conf?\n> \n> El mar, 19 ago 2025, 12:49, Sk4hnt42 ***@***.***> escribi\u00f3:\n> [\u2026](#)\n\nHi,\n\ni had not. I just activated it, restarted all services, but the issue persists.\nComment: can you post new log from logs/cuckoo.log now that you have activated it and restarted services. just generate new job and post output\nComment: > can you post new log from logs/cuckoo.log now that you have activated it and restarted services. just generate new job and post output\n\nOf course! Here it is.\n\n\n```\n2025-08-19 11:37:25,253 [modules.processing.network] INFO: Loading maxmind database from /opt/CAPEv2/modules/processing/../../data/GeoLite2-Country.mmdb\n2025-08-19 11:37:25,626 [lib.cuckoo.core.machinery_manager] INFO: Using MachineryManager[proxmox] with max_machines_count=10\n2025-08-19 11:37:25,627 [lib.cuckoo.core.scheduler] INFO: Creating scheduler with max_analysis_count=unlimited\n2025-08-19 11:37:25,650 [lib.cuckoo.core.machinery_manager] INFO: Loaded 1 machine\n2025-08-19 11:37:25,700 [lib.cuckoo.core.machinery_manager] INFO: max_vmstartup_count for BoundedSemaphore = 5\n2025-08-19 11:37:25,705 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks\n2025-08-19 11:37:25,738 [lib.cuckoo.core.machinery_manager] INFO: Task #6: found useable machine SBX-Windows10-01 (arch=x86, platform=windows)\n2025-08-19 11:37:25,738 [lib.cuckoo.core.scheduler] INFO: Task #6: Processing task\n2025-08-19 11:37:25,984 [lib.cuckoo.core.analysis_manager] INFO: Task #6: File already exists at '/opt/CAPEv2/storage/binaries/4d70290367ad03399e17d5001842553fcd4d57e026eb330add0e3f2>\n2025-08-19 11:37:25,985 [lib.cuckoo.core.analysis_manager] INFO: Task #6: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_9te_vs52/ChromeSetup.exe'\n2025-08-19 11:37:29,865 [lib.cuckoo.core.analysis_manager] INFO: Task #6: Enabled route 'internet'.\n2025-08-19 11:37:29,875 [modules.auxiliary.Mitmdump] INFO: Mitmdump module loaded\n2025-08-19 11:37:29,875 [modules.auxiliary.PolarProxy] INFO: PolarProxy module loaded\n2025-08-19 11:37:29,876 [modules.auxiliary.QemuScreenshots] INFO: QEMU screenshots module loaded\n2025-08-19 11:37:29,888 [modules.auxiliary.sniffer] INFO: Started sniffer with PID 29710 (interface=enp6s18, host=192.168.99.20, dump path=/opt/CAPEv2/storage/analyses/6/dump.pcap)\n2025-08-19 11:37:31,133 [lib.cuckoo.core.guest] INFO: Task #6: Starting analysis on guest (id=SBX-Windows10-01, ip=192.168.99.20)\n2025-08-19 11:37:56,571 [lib.cuckoo.core.guest] INFO: Task #6: Guest is running CAPE Agent 0.11 (id=SBX-Windows10-01, ip=192.168.99.20)\n2025-08-19 11:37:59,976 [lib.cuckoo.core.guest] INFO: Task #6: Uploading script files to guest (id=SBX-Windows10-01, ip=192.168.99.20)\n2025-08-19 11:38:09,270 [lib.cuckoo.core.resultserver] INFO: Task 6: Process 7620 (parent 4240): ChromeSetup.exe, path C:\\Users\\Peter Silie\\AppData\\Local\\Temp\\ChromeSetup.exe\n2025-08-19 11:38:11,406 [lib.cuckoo.core.resultserver] INFO: Task 6: Process 8572 (parent 7620): updater.exe, path C:\\Users\\Peter Silie\\AppData\\Local\\Temp\\Google7620_948679524\\bin\\up>\n2025-08-19 11:38:12,072 [lib.cuckoo.core.resultserver] INFO: Task 6: Process 8144 (parent 8572): updater.exe, path C:\\Users\\Peter Silie\\AppData\\Local\\Temp\\Google7620_948679524\\bin\\up>\n2025-08-19 11:38:13,651 [lib.cuckoo.core.resultserver] INFO: Task 6: Process 1196 (parent 728): svchost.exe, path C:\\Windows\\System32\\svchost.exe\n2025-08-19 11:38:22,190 [lib.cuckoo.core.resultserver] INFO: Task 6: Process 5188 (parent 5128): explorer.exe, path C:\\Windows\\explorer.exe\n2025-08-19 11:38:25,069 [lib.cuckoo.core.resultserver] INFO: Task 6: Process 872 (parent 728): svchost.exe, path C:\\Windows\\System32\\svchost.exe\n2025-08-19 11:38:27,320 [lib.cuckoo.core.resultserver] INFO: Task 6: Process 10200 (parent 872): OpenWith.exe, path C:\\Windows\\System32\\OpenWith.exe\n2025-08-19 11:38:28,773 [lib.cuckoo.core.resultserver] INFO: Task 6: Process 2996 (parent 872): dllhost.exe, path C:\\Windows\\System32\\dllhost.exe\n2025-08-19 11:38:35,468 [lib.cuckoo.core.resultserver] INFO: Task 6: Process 3144 (parent 10200): msedge.exe, path C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\msedge.exe\n2025-08-19 11:38:36,725 [lib.cuckoo.core.resultserver] INFO: Task 6: Process 9816 (parent 872): BdeUISrv.exe, path C:\\Windows\\System32\\BdeUISrv.exe\n2025-08-19 11:38:41,164 [lib.cuckoo.core.resultserver] INFO: Task 6: Process 9412 (parent 1196): taskhostw.exe, path C:\\Windows\\System32\\taskhostw.exe\n2025-08-19 11:38:41,599 [lib.cuckoo.core.resultserver] INFO: Task 6: Process 5276 (parent 872): dllhost.exe, path C:\\Windows\\System32\\dllhost.exe\n2025-08-19 11:39:01,644 [lib.cuckoo.core.resultserver] INFO: Task 6: Process 5312 (parent 872): mobsync.exe, path C:\\Windows\\System32\\mobsync.exe\n2025-08-19 11:39:10,791 [lib.cuckoo.core.resultserver] INFO: Task 6: Process 5828 (parent 728): svchost.exe, path C:\\Windows\\System32\\svchost.exe\n2025-08-19 11:39:52,057 [lib.cuckoo.core.resultserver] INFO: Task 6: Process 7264 (parent 1196): MusNotification.exe, path C:\\Windows\\System32\\MusNotification.exe\n2025-08-19 11:39:55,682 [lib.cuckoo.core.resultserver] INFO: Task 6: Process 1820 (parent 7264): MusNotificationUx.exe, path C:\\Windows\\System32\\MusNotificationUx.exe\n2025-08-19 11:39:57,084 [lib.cuckoo.core.resultserver] INFO: Task 6: Process 1080 (parent 7264): MusNotifyIcon.exe, path C:\\Windows\\System32\\MusNotifyIcon.exe\n2025-08-19 11:40:19,234 [lib.cuckoo.core.guest] INFO: Task #6: Analysis completed successfully (id=SBX-Windows10-01, ip=192.168.99.20)\n2025-08-19 11:40:19,404 [lib.cuckoo.core.analysis_manager] INFO: Task #6: Disabled route 'internet'\n2025-08-19 11:40:21,850 [lib.cuckoo.core.analysis_manager] INFO: Task #6: Completed analysis successfully.\n2025-08-19 11:40:21,855 [lib.cuckoo.core.analysis_manager] INFO: Task #6: analysis procedure completed\n```\nComment: INFO: Started sniffer with PID 29710 (interface=enp6s18,\r\nhost=192.168.99.20, dump path=/opt/CAPEv2/storage/analyses/6/dump.pcap)\r\n\r\nEl mar, 19 ago 2025, 13:45, Sk4hnt42 ***@***.***> escribi\u00f3:\r\n\r\n> *Sk4hnt42* left a comment (kevoreilly/CAPEv2#2673)\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2673#issuecomment-3200412809>\r\n>\r\n> can you post new log from logs/cuckoo.log now that you have activated it\r\n> and restarted services. just generate new job and post output\r\n>\r\n> Of course! Here it is.\r\n>\r\n> 2025-08-19 11:37:25,253 [modules.processing.network] INFO: Loading maxmind database from /opt/CAPEv2/modules/processing/../../data/GeoLite2-Country.mmdb\r\n> 2025-08-19 11:37:25,626 [lib.cuckoo.core.machinery_manager] INFO: Using MachineryManager[proxmox] with max_machines_count=10\r\n> 2025-08-19 11:37:25,627 [lib.cuckoo.core.scheduler] INFO: Creating scheduler with max_analysis_count=unlimited\r\n> 2025-08-19 11:37:25,650 [lib.cuckoo.core.machinery_manager] INFO: Loaded 1 machine\r\n> 2025-08-19 11:37:25,700 [lib.cuckoo.core.machinery_manager] INFO: max_vmstartup_count for BoundedSemaphore = 5\r\n> 2025-08-19 11:37:25,705 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks\r\n> 2025-08-19 11:37:25,738 [lib.cuckoo.core.machinery_manager] INFO: Task #6: found useable machine SBX-Windows10-01 (arch=x86, platform=windows)\r\n> 2025-08-19 11:37:25,738 [lib.cuckoo.core.scheduler] INFO: Task #6: Processing task\r\n> 2025-08-19 11:37:25,984 [lib.cuckoo.core.analysis_manager] INFO: Task #6: File already exists at '/opt/CAPEv2/storage/binaries/4d70290367ad03399e17d5001842553fcd4d57e026eb330add0e3f2>\r\n> 2025-08-19 11:37:25,985 [lib.cuckoo.core.analysis_manager] INFO: Task #6: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_9te_vs52/ChromeSetup.exe'\r\n> 2025-08-19 11:37:29,865 [lib.cuckoo.core.analysis_manager] INFO: Task #6: Enabled route 'internet'.\r\n> 2025-08-19 11:37:29,875 [modules.auxiliary.Mitmdump] INFO: Mitmdump module loaded\r\n> 2025-08-19 11:37:29,875 [modules.auxiliary.PolarProxy] INFO: PolarProxy module loaded\r\n> 2025-08-19 11:37:29,876 [modules.auxiliary.QemuScreenshots] INFO: QEMU screenshots module loaded\r\n> 2025-08-19 11:37:29,888 [modules.auxiliary.sniffer] INFO: Started sniffer with PID 29710 (interface=enp6s18, host=192.168.99.20, dump path=/opt/CAPEv2/storage/analyses/6/dump.pcap)\r\n> 2025-08-19 11:37:31,133 [lib.cuckoo.core.guest] INFO: Task #6: Starting analysis on guest (id=SBX-Windows10-01, ip=192.168.99.20)\r\n> 2025-08-19 11:37:56,571 [lib.cuckoo.core.guest] INFO: Task #6: Guest is running CAPE Agent 0.11 (id=SBX-Windows10-01, ip=192.168.99.20)\r\n> 2025-08-19 11:37:59,976 [lib.cuckoo.core.guest] INFO: Task #6: Uploading script files to guest (id=SBX-Windows10-01, ip=192.168.99.20)\r\n> 2025-08-19 11:38:09,270 [lib.cuckoo.core.resultserver] INFO: Task 6: Process 7620 (parent 4240): ChromeSetup.exe, path C:\\Users\\Peter Silie\\AppData\\Local\\Temp\\ChromeSetup.exe\r\n> 2025-08-19 11:38:11,406 [lib.cuckoo.core.resultserver] INFO: Task 6: Process 8572 (parent 7620): updater.exe, path C:\\Users\\Peter Silie\\AppData\\Local\\Temp\\Google7620_948679524\\bin\\up>\r\n> 2025-08-19 11:38:12,072 [lib.cuckoo.core.resultserver] INFO: Task 6: Process 8144 (parent 8572): updater.exe, path C:\\Users\\Peter Silie\\AppData\\Local\\Temp\\Google7620_948679524\\bin\\up>\r\n> 2025-08-19 11:38:13,651 [lib.cuckoo.core.resultserver] INFO: Task 6: Process 1196 (parent 728): svchost.exe, path C:\\Windows\\System32\\svchost.exe\r\n> 2025-08-19 11:38:22,190 [lib.cuckoo.core.resultserver] INFO: Task 6: Process 5188 (parent 5128): explorer.exe, path C:\\Windows\\explorer.exe\r\n> 2025-08-19 11:38:25,069 [lib.cuckoo.core.resultserver] INFO: Task 6: Process 872 (parent 728): svchost.exe, path C:\\Windows\\System32\\svchost.exe\r\n> 2025-08-19 11:38:27,320 [lib.cuckoo.core.resultserver] INFO: Task 6: Process 10200 (parent 872): OpenWith.exe, path C:\\Windows\\System32\\OpenWith.exe\r\n> 2025-08-19 11:38:28,773 [lib.cuckoo.core.resultserver] INFO: Task 6: Process 2996 (parent 872): dllhost.exe, path C:\\Windows\\System32\\dllhost.exe\r\n> 2025-08-19 11:38:35,468 [lib.cuckoo.core.resultserver] INFO: Task 6: Process 3144 (parent 10200): msedge.exe, path C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\msedge.exe\r\n> 2025-08-19 11:38:36,725 [lib.cuckoo.core.resultserver] INFO: Task 6: Process 9816 (parent 872): BdeUISrv.exe, path C:\\Windows\\System32\\BdeUISrv.exe\r\n> 2025-08-19 11:38:41,164 [lib.cuckoo.core.resultserver] INFO: Task 6: Process 9412 (parent 1196): taskhostw.exe, path C:\\Windows\\System32\\taskhostw.exe\r\n> 2025-08-19 11:38:41,599 [lib.cuckoo.core.resultserver] INFO: Task 6: Process 5276 (parent 872): dllhost.exe, path C:\\Windows\\System32\\dllhost.exe\r\n> 2025-08-19 11:39:01,644 [lib.cuckoo.core.resultserver] INFO: Task 6: Process 5312 (parent 872): mobsync.exe, path C:\\Windows\\System32\\mobsync.exe\r\n> 2025-08-19 11:39:10,791 [lib.cuckoo.core.resultserver] INFO: Task 6: Process 5828 (parent 728): svchost.exe, path C:\\Windows\\System32\\svchost.exe\r\n> 2025-08-19 11:39:52,057 [lib.cuckoo.core.resultserver] INFO: Task 6: Process 7264 (parent 1196): MusNotification.exe, path C:\\Windows\\System32\\MusNotification.exe\r\n> 2025-08-19 11:39:55,682 [lib.cuckoo.core.resultserver] INFO: Task 6: Process 1820 (parent 7264): MusNotificationUx.exe, path C:\\Windows\\System32\\MusNotificationUx.exe\r\n> 2025-08-19 11:39:57,084 [lib.cuckoo.core.resultserver] INFO: Task 6: Process 1080 (parent 7264): MusNotifyIcon.exe, path C:\\Windows\\System32\\MusNotifyIcon.exe\r\n> 2025-08-19 11:40:19,234 [lib.cuckoo.core.guest] INFO: Task #6: Analysis completed successfully (id=SBX-Windows10-01, ip=192.168.99.20)\r\n> 2025-08-19 11:40:19,404 [lib.cuckoo.core.analysis_manager] INFO: Task #6: Disabled route 'internet'\r\n> 2025-08-19 11:40:21,850 [lib.cuckoo.core.analysis_manager] INFO: Task #6: Completed analysis successfully.\r\n> 2025-08-19 11:40:21,855 [lib.cuckoo.core.analysis_manager] INFO: Task #6: analysis procedure completed\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2673#issuecomment-3200412809>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH36AUDOVZUBPVYCQMUT3OME3ZAVCNFSM6AAAAACEH3U722VHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZTEMBQGQYTEOBQHE>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: > INFO: Started sniffer with PID 29710 (interface=enp6s18,\n> host=192.168.99.20, dump path=/opt/CAPEv2/storage/analyses/6/dump.pcap)\n> \n> El mar, 19 ago 2025, 13:45, Sk4hnt42 ***@***.***> escribi\u00f3:\n> [\u2026](#)\n\nYes i've seen that, the file is also beeing created.\nBut it is empty.\nBut i know that there has been network activity which should be written to the pcap dump file.\nComment: can you verify this?\nhttps://github.com/kevoreilly/CAPEv2/issues/2571#issuecomment-3108659344\n\n+ so as you saying that you sure, did you start VM manually with utils/rooter_manager.py(see -h) and enable it internet to test if it works ?\nComment: > can you verify this? [#2571 (comment)](https://github.com/kevoreilly/CAPEv2/issues/2571#issuecomment-3108659344)\n> \n>     * so as you saying that you sure, did you start VM manually with utils/rooter_manager.py(see -h) and enable it internet to test if it works ?\n\nI am not using libvirt, because cape is using proxmox as vm manager.\n\nInternet access for the Analysis machine works fine. \nComment: well no one of devs are using proxmon, so i can't help more here, my advice is to start tcpdump by yourself on host to see if you can see traffic, or you need to add some custom rules. we only officially support kvm\nComment: > well no one of devs are using proxmon, so i can't help more here, my advice is to start tcpdump by yourself on host to see if you can see traffic, or you need to add some custom rules. we only officially support kvm\n\nI see, thanks for your help.\n\nYes running tcpdump on the host as cape user works fine.\n\n```\nsandy@madlen-sandbox:~$ sudo -u cape tcpdump -i enp6s18\ntcpdump: verbose output suppressed, use -v[v]... for full protocol decode\nlistening on enp6s18, link-type EN10MB (Ethernet), snapshot length 262144 bytes\n21:13:58.607690 IP madlen-sandbox.ssh > 10.10.6.240.52345: Flags [P.], seq 813228487:813228695, ack 2158976888, win 521, length 208\n21:13:58.610409 IP 10.10.6.240.52345 > madlen-sandbox.ssh: Flags [.], ack 208, win 1020, length 0\n21:13:58.654463 IP madlen-sandbox.41616 > dns9.quad9.net.domain: 14781+ [1au] AAAA? www.virustotal.com. (47)\n21:13:58.669820 IP dns9.quad9.net.domain > madlen-sandbox.41616: 14781 0/1/1 (137)\n21:13:58.670406 IP madlen-sandbox.47696 > 138.88.54.34.bc.googleusercontent.com.https: Flags [S], seq 565562669, win 64240, options [mss 1460,sackOK,TS val 3308019100 ecr 0,nop,wscale 7], length 0\n21:13:58.684427 IP 138.88.54.34.bc.googleusercontent.com.https > madlen-sandbox.47696: Flags [S.], seq 4051756273, ack 565562670, win 65412, options [mss 960,sackOK,TS val 777585335 ecr 3308019100,nop,wscale 8], length 0\n21:13:58.684478 IP madlen-sandbox.47696 > 138.88.54.34.bc.googleusercontent.com.https: Flags [.], ack 1, win 502, options [nop,nop,TS val 3308019114 ecr 777585335], length 0\n21:13:58.685438 IP madlen-sandbox.47696 > 138.88.54.34.bc.googleusercontent.com.https: Flags [P.], seq 1:518, ack 1, win 502, options [nop,nop,TS val 3308019115 ecr 777585335], length 517\n21:13:58.698759 IP 138.88.54.34.bc.googleusercontent.com.https > madlen-sandbox.47696: Flags [.], ack 518, win 254, options [nop,nop,TS val 777585350 ecr 3308019115], length 0\n21:13:58.700271 IP madlen-sandbox.46872 > dns9.quad9.net.domain: 27249+ [1au] PTR? 240.6.10.10.in-addr.arpa. (53)\n21:13:58.716330 IP dns9.quad9.net.domain > madlen-sandbox.46872: 27249 NXDomain- 0/0/1 (53)\n21:13:58.717742 IP madlen-sandbox.44492 > dns9.quad9.net.domain: 31232+ [1au] PTR? 5.195.168.192.in-addr.arpa. (55)\n21:13:58.720152 IP 138.88.54.34.bc.googleusercontent.com.https > madlen-sandbox.47696: Flags [P.], seq 1:1897, ack 518, win 254, options [nop,nop,TS val 777585371 ecr 3308019115], length 1896\n21:13:58.720213 IP madlen-sandbox.47696 > 138.88.54.34.bc.googleusercontent.com.https: Flags [.], ack 1897, win 531, options [nop,nop,TS val 3308019149 ecr 777585371], length 0\n21:13:58.720240 IP 138.88.54.34.bc.googleusercontent.com.https > madlen-sandbox.47696: Flags [.], seq 1897:2845, ack 518, win 254, options [nop,nop,TS val 777585371 ecr 3308019115], length 948\n21:13:58.720272 IP madlen-sandbox.47696 > 138.88.54.34.bc.googleusercontent.com.https: Flags [.], ack 2845, win 546, options [nop,nop,TS val 3308019149 ecr 777585371], length 0\n21:13:58.720329 IP 138.88.54.34.bc.googleusercontent.com.https > madlen-sandbox.47696: Flags [P.], seq 2845:3793, ack 518, win 254, options [nop,nop,TS val 777585371 ecr 3308019115], length 948\n21:13:58.720351 IP madlen-sandbox.47696 > 138.88.54.34.bc.googleusercontent.com.https: Flags [.], ack 3793, win 552, options [nop,nop,TS val 3308019150 ecr 777585371], length 0\n21:13:58.720366 IP 138.88.54.34.bc.googleusercontent.com.https > madlen-sandbox.47696: Flags [P.], seq 3793:4529, ack 518, win 254, options [nop,nop,TS val 777585372 ecr 3308019115], length 736\n21:13:58.720375 IP madlen-sandbox.47696 > 138.88.54.34.bc.googleusercontent.com.https: Flags [.], ack 4529, win 547, options [nop,nop,TS val 3308019150 ecr 777585372], length 0\n21:13:58.724914 IP madlen-sandbox.47696 > 138.88.54.34.bc.googleusercontent.com.https: Flags [P.], seq 518:598, ack 4529, win 552, options [nop,nop,TS val 3308019154 ecr 777585372], length 80\n21:13:58.725604 IP madlen-sandbox.47696 > 138.88.54.34.bc.googleusercontent.com.https: Flags [P.], seq 598:926, ack 4529, win 552, options [nop,nop,TS val 3308019155 ecr 777585372], length 328\n21:13:58.733209 IP dns9.quad9.net.domain > madlen-sandbox.44492: 31232 NXDomain- 0/0/1 (55)\n21:13:58.734712 IP madlen-sandbox.ssh > 10.10.6.240.52345: Flags [P.], seq 208:496, ack 1, win 521, length 288\n21:13:58.735169 IP madlen-sandbox.ssh > 10.10.6.240.52345: Flags [P.], seq 496:752, ack 1, win 521, length 256\n21:13:58.735483 IP madlen-sandbox.59956 > dns9.quad9.net.domain: 62969+ [1au] PTR? 138.88.54.34.in-addr.arpa. (54)\n21:13:58.737828 IP 10.10.6.240.52345 > madlen-sandbox.ssh: Flags [.], ack 752, win 1018, length 0\n21:13:58.738966 IP 138.88.54.34.bc.googleusercontent.com.https > madlen-sandbox.47696: Flags [.], ack 926, win 253, options [nop,nop,TS val 777585390 ecr 3308019154], length 0\n21:13:58.828469 IP dns9.quad9.net.domain > madlen-sandbox.59956: 62969 1/0/1 PTR 138.88.54.34.bc.googleusercontent.com. (105)\n21:13:58.830158 IP madlen-sandbox.ssh > 10.10.6.240.52345: Flags [P.], seq 752:1984, ack 1, win 521, length 1232\n21:13:58.830263 IP madlen-sandbox.ssh > 10.10.6.240.52345: Flags [P.], seq 1984:3280, ack 1, win 521, length 1296\n21:13:58.830400 IP madlen-sandbox.ssh > 10.10.6.240.52345: Flags [P.], seq 3280:4096, ack 1, win 521, length 816\n21:13:58.830524 IP madlen-sandbox.ssh > 10.10.6.240.52345: Flags [P.], seq 4096:4352, ack 1, win 521, length 256\n21:13:58.830576 IP madlen-sandbox.ssh > 10.10.6.240.52345: Flags [P.], seq 4352:4912, ack 1, win 521, length 560\n21:13:58.833426 IP 10.10.6.240.52345 > madlen-sandbox.ssh: Flags [.], ack 3280, win 1023, length 0\n21:13:58.833426 IP 10.10.6.240.52345 > madlen-sandbox.ssh: Flags [.], ack 4352, win 1019, length 0\n21:13:58.883855 IP 10.10.6.240.52345 > madlen-sandbox.ssh: Flags [.], ack 4912, win 1023, length 0\n21:13:58.907460 IP madlen-sandbox.ssh > 10.10.6.240.52345: Flags [P.], seq 4912:5968, ack 1, win 521, length 1056\n21:13:58.960257 IP 10.10.6.240.52345 > madlen-sandbox.ssh: Flags [.], ack 5968, win 1019, length 0\n21:13:58.962936 IP 138.88.54.34.bc.googleusercontent.com.https > madlen-sandbox.47696: Flags [.], seq 4529:5477, ack 926, win 253, options [nop,nop,TS val 777585614 ecr 3308019154], length 948\n21:13:58.963044 IP 138.88.54.34.bc.googleusercontent.com.https > madlen-sandbox.47696: Flags [P.], seq 5477:5502, ack 926, win 253, options [nop,nop,TS val 777585614 ecr 3308019154], length 25\n21:13:58.963062 IP madlen-sandbox.47696 > 138.88.54.34.bc.googleusercontent.com.https: Flags [.], ack 5502, win 567, options [nop,nop,TS val 3308019392 ecr 777585614], length 0\n21:13:58.965525 IP madlen-sandbox.47696 > 138.88.54.34.bc.googleusercontent.com.https: Flags [F.], seq 926, ack 5502, win 567, options [nop,nop,TS val 3308019395 ecr 777585614], length 0\n21:13:58.983945 IP 138.88.54.34.bc.googleusercontent.com.https > madlen-sandbox.47696: Flags [F.], seq 5502, ack 927, win 253, options [nop,nop,TS val 777585635 ecr 3308019395], length 0\n21:13:58.983980 IP madlen-sandbox.47696 > 138.88.54.34.bc.googleusercontent.com.https: Flags [.], ack 5503, win 567, options [nop,nop,TS val 3308019413 ecr 777585635], length 0\n21:13:59.010996 IP madlen-sandbox.ssh > 10.10.6.240.52345: Flags [P.], seq 5968:7360, ack 1, win 521, length 1392\n21:13:59.069308 IP 10.10.6.240.52345 > madlen-sandbox.ssh: Flags [.], ack 7360, win 1023, length 0\n```",
+  "Title: Update Yara Rule for Amadey\nBody: Update Amadey Rule",
+  "Title: Bump pypdf from 5.2.0 to 6.0.0\nBody: Bumps [pypdf](https://github.com/py-pdf/pypdf) from 5.2.0 to 6.0.0.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a href=\"https://github.com/py-pdf/pypdf/releases\">pypdf's releases</a>.</em></p>\n<blockquote>\n<h2>Version 6.0.0, 2025-08-11</h2>\n<h2>What's new</h2>\n<h3>Security (SEC)</h3>\n<ul>\n<li>Limit decompressed size for FlateDecode filter (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3430\">#3430</a>) by <a href=\"https://github.com/stefan6419846\"><code>@\u200bstefan6419846</code></a></li>\n</ul>\n<h3>Deprecations (DEP)</h3>\n<ul>\n<li>Drop Python 3.8 support (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3412\">#3412</a>) by <a href=\"https://github.com/stefan6419846\"><code>@\u200bstefan6419846</code></a></li>\n</ul>\n<h3>New Features (ENH)</h3>\n<ul>\n<li>Move BlackIs1 functionality to tiff_header (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3421\">#3421</a>) by <a href=\"https://github.com/j-t-1\"><code>@\u200bj-t-1</code></a></li>\n</ul>\n<h3>Robustness (ROB)</h3>\n<ul>\n<li>Skip Go-To actions without a destination (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3420\">#3420</a>) by <a href=\"https://github.com/badGarnet\"><code>@\u200bbadGarnet</code></a></li>\n</ul>\n<h3>Developer Experience (DEV)</h3>\n<ul>\n<li>Update code style related libraries (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3414\">#3414</a>) by <a href=\"https://github.com/stefan6419846\"><code>@\u200bstefan6419846</code></a></li>\n<li>Update mypy to 1.17.0 (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3413\">#3413</a>) by <a href=\"https://github.com/stefan6419846\"><code>@\u200bstefan6419846</code></a></li>\n<li>Stop testing on Python 3.8 and start testing on Python 3.14 (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3411\">#3411</a>) by <a href=\"https://github.com/stefan6419846\"><code>@\u200bstefan6419846</code></a></li>\n</ul>\n<h3>Maintenance (MAINT)</h3>\n<ul>\n<li>Cleanup deprecations (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3424\">#3424</a>) by <a href=\"https://github.com/stefan6419846\"><code>@\u200bstefan6419846</code></a></li>\n</ul>\n<p><a href=\"https://github.com/py-pdf/pypdf/compare/5.9.0...6.0.0\">Full Changelog</a></p>\n<h2>Version 5.9.0, 2025-07-27</h2>\n<h2>What's new</h2>\n<h3>New Features (ENH)</h3>\n<ul>\n<li>Automatically preserve links in added pages (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3298\">#3298</a>) by <a href=\"https://github.com/larsga\"><code>@\u200blarsga</code></a></li>\n<li>Allow writing/updating all properties of an embedded file (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3374\">#3374</a>) by <a href=\"https://github.com/Arya-A-Nair\"><code>@\u200bArya-A-Nair</code></a></li>\n</ul>\n<h3>Bug Fixes (BUG)</h3>\n<ul>\n<li>Fix XMP handling dropping indirect references (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3392\">#3392</a>) by <a href=\"https://github.com/stefan6419846\"><code>@\u200bstefan6419846</code></a></li>\n</ul>\n<h3>Robustness (ROB)</h3>\n<ul>\n<li>Deal with DecodeParms being empty list (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3388\">#3388</a>) by <a href=\"https://github.com/stefan6419846\"><code>@\u200bstefan6419846</code></a></li>\n</ul>\n<h3>Documentation (DOC)</h3>\n<ul>\n<li>Document how to read and modify XMP metadata (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3383\">#3383</a>) by <a href=\"https://github.com/stefan6419846\"><code>@\u200bstefan6419846</code></a></li>\n</ul>\n<p><a href=\"https://github.com/py-pdf/pypdf/compare/5.8.0...5.9.0\">Full Changelog</a></p>\n<h2>Version 5.8.0, 2025-07-13</h2>\n<h2>What's new</h2>\n<h3>New Features (ENH)</h3>\n<ul>\n<li>Implement flattening for writer (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3312\">#3312</a>) by <a href=\"https://github.com/PJBrs\"><code>@\u200bPJBrs</code></a></li>\n</ul>\n<h3>Bug Fixes (BUG)</h3>\n<!-- raw HTML omitted -->\n</blockquote>\n<p>... (truncated)</p>\n</details>\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/py-pdf/pypdf/blob/main/CHANGELOG.md\">pypdf's changelog</a>.</em></p>\n<blockquote>\n<h2>Version 6.0.0, 2025-08-11</h2>\n<h3>Security (SEC)</h3>\n<ul>\n<li>Limit decompressed size for FlateDecode filter (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3430\">#3430</a>)</li>\n</ul>\n<h3>Deprecations (DEP)</h3>\n<ul>\n<li>Drop Python 3.8 support (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3412\">#3412</a>)</li>\n</ul>\n<h3>New Features (ENH)</h3>\n<ul>\n<li>Move BlackIs1 functionality to tiff_header (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3421\">#3421</a>)</li>\n</ul>\n<h3>Robustness (ROB)</h3>\n<ul>\n<li>Skip Go-To actions without a destination (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3420\">#3420</a>)</li>\n</ul>\n<h3>Developer Experience (DEV)</h3>\n<ul>\n<li>Update code style related libraries (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3414\">#3414</a>)</li>\n<li>Update mypy to 1.17.0 (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3413\">#3413</a>)</li>\n<li>Stop testing on Python 3.8 and start testing on Python 3.14 (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3411\">#3411</a>)</li>\n</ul>\n<h3>Maintenance (MAINT)</h3>\n<ul>\n<li>Cleanup deprecations (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3424\">#3424</a>)</li>\n</ul>\n<p><a href=\"https://github.com/py-pdf/pypdf/compare/5.9.0...6.0.0\">Full Changelog</a></p>\n<h2>Version 5.9.0, 2025-07-27</h2>\n<h3>New Features (ENH)</h3>\n<ul>\n<li>Automatically preserve links in added pages (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3298\">#3298</a>)</li>\n<li>Allow writing/updating all properties of an embedded file (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3374\">#3374</a>)</li>\n</ul>\n<h3>Bug Fixes (BUG)</h3>\n<ul>\n<li>Fix XMP handling dropping indirect references (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3392\">#3392</a>)</li>\n</ul>\n<h3>Robustness (ROB)</h3>\n<ul>\n<li>Deal with DecodeParms being empty list (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3388\">#3388</a>)</li>\n</ul>\n<h3>Documentation (DOC)</h3>\n<ul>\n<li>Document how to read and modify XMP metadata (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3383\">#3383</a>)</li>\n</ul>\n<p><a href=\"https://github.com/py-pdf/pypdf/compare/5.8.0...5.9.0\">Full Changelog</a></p>\n<h2>Version 5.8.0, 2025-07-13</h2>\n<h3>New Features (ENH)</h3>\n<ul>\n<li>Implement flattening for writer (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3312\">#3312</a>)</li>\n</ul>\n<h3>Bug Fixes (BUG)</h3>\n<ul>\n<li>Unterminated object when using PdfWriter with incremental=True (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3345\">#3345</a>)</li>\n</ul>\n<h3>Robustness (ROB)</h3>\n<!-- raw HTML omitted -->\n</blockquote>\n<p>... (truncated)</p>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/py-pdf/pypdf/commit/0dd57738bbdcdb63f0fb43d8a6b3d222b6946595\"><code>0dd5773</code></a> REL: 6.0.0</li>\n<li><a href=\"https://github.com/py-pdf/pypdf/commit/bb3a69030fde7da545229438ff327b8c971cef49\"><code>bb3a690</code></a> SEC: Limit decompressed size for FlateDecode filter (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3430\">#3430</a>)</li>\n<li><a href=\"https://github.com/py-pdf/pypdf/commit/979af6defdcbfac38ff1ae67594633f4ae548242\"><code>979af6d</code></a> MAINT: Remove ignore of deprecation warning (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3428\">#3428</a>)</li>\n<li><a href=\"https://github.com/py-pdf/pypdf/commit/b622a2f51dd788f052245d48ad2f9a76cefca919\"><code>b622a2f</code></a> ENH: Move BlackIs1 functionality to tiff_header (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3421\">#3421</a>)</li>\n<li><a href=\"https://github.com/py-pdf/pypdf/commit/0b58493ac3b725a342da3a53d5634b197e698ab2\"><code>0b58493</code></a> MAINT: Cleanup deprecations (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3424\">#3424</a>)</li>\n<li><a href=\"https://github.com/py-pdf/pypdf/commit/794504bb87f8fac0fb8d5830c9bcfb6530100431\"><code>794504b</code></a> MAINT: Remove ignoring Ruff rule TD005 (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3422\">#3422</a>)</li>\n<li><a href=\"https://github.com/py-pdf/pypdf/commit/56f0eaa630a607d85d2137fac9ee60ed64c310a4\"><code>56f0eaa</code></a> DEV: Bump actions/download-artifact from 4 to 5 (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3423\">#3423</a>)</li>\n<li><a href=\"https://github.com/py-pdf/pypdf/commit/1b3177b4eba8f71e565cc9a0dee8d7e64312d148\"><code>1b3177b</code></a> ROB: Skip Go-To actions without a destination (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3420\">#3420</a>)</li>\n<li><a href=\"https://github.com/py-pdf/pypdf/commit/8000cbe20eb81fd19b2dbacc1dc5a7df022d15ee\"><code>8000cbe</code></a> MAINT: Remove duplicate CCITT processing (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3415\">#3415</a>)</li>\n<li><a href=\"https://github.com/py-pdf/pypdf/commit/ad85a228321e4dcac8a4b14fc7f84d1d2f8f4832\"><code>ad85a22</code></a> MAINT: Remove erroneous comment (<a href=\"https://redirect.github.com/py-pdf/pypdf/issues/3406\">#3406</a>)</li>\n<li>Additional commits viewable in <a href=\"https://github.com/py-pdf/pypdf/compare/5.2.0...6.0.0\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pypdf&package-manager=pip&previous-version=5.2.0&new-version=6.0.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Ideas - Features\nBody: Just writing them down here to not forget \ud83d\ude09 . Feel free to split / close etc. @kevoreilly @doomedraven \n\n* Update CAPEv2 README + docs to include a section on CAPE-parsers since they were moved there.\n\n* 'Bump the dump'. Any payloads or anything detected by CAPE itself (whether procdumps, etc..), should always be all the way at the top in case of multiple dumps. \n\nThese may or may not be interesting and/or harder to do:\n\n* On the main submission page of CAPE, it could be useful to display the 'current version' and the last version (date) as mentioned in the changelog. Might require pulling the info from Git or whichever. But could be handy to keep track.\n\n* Option for a 'Download all' button on Payloads / Dropped files tab.\n\n* When setting a bp or using dump on api options using CAPE debugger, and a dump is generated (in Payloads tab), one can infer the correct dump by reviewing the analysis log, e.g. see https://capesandbox.com/analysis/21104/ which I uploaded. Perhaps an extra row in Payloads could be useful that shows the specific bp or API option that generated the dump? Probably this idea can be scrapped as we can review the analysis log, but who knows.\n \nThat's all,\nComment: Hey nice, download all is already implemented ",
+  "Title: Add package to run JS with NodeJS\nBody: None\nComment: thank you\nComment: \ud83d\ude4f ",
+  "Title: Bump protobuf from 5.29.3 to 5.29.5\nBody: Bumps [protobuf](https://github.com/protocolbuffers/protobuf) from 5.29.3 to 5.29.5.\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/protocolbuffers/protobuf/commit/f5de0a0495faa63b4186fc767324f8b9a7bf4fc4\"><code>f5de0a0</code></a> Updating version.json and repo version numbers to: 29.5</li>\n<li><a href=\"https://github.com/protocolbuffers/protobuf/commit/85637662f7fb32722416b127ce3b1808609fc0fa\"><code>8563766</code></a> Merge pull request <a href=\"https://redirect.github.com/protocolbuffers/protobuf/issues/21858\">#21858</a> from shaod2/py-cp-29</li>\n<li><a href=\"https://github.com/protocolbuffers/protobuf/commit/05ba1a8104c5cc39a7b00b749883bbd2de8bca79\"><code>05ba1a8</code></a> Add recursion depth limits to pure python</li>\n<li><a href=\"https://github.com/protocolbuffers/protobuf/commit/1ef3f01c4647df8e63d989489bf1ec1acbcbf8aa\"><code>1ef3f01</code></a> Internal pure python fixes</li>\n<li><a href=\"https://github.com/protocolbuffers/protobuf/commit/69cca9b7f591ab0edcbd348a5f12ad7103e98f84\"><code>69cca9b</code></a> Remove fast-path check for non-clang compilers in MessageCreator. (<a href=\"https://redirect.github.com/protocolbuffers/protobuf/issues/21612\">#21612</a>)</li>\n<li><a href=\"https://github.com/protocolbuffers/protobuf/commit/21fdb7acdb11fbca234570fa30d2e5687eaf12f6\"><code>21fdb7a</code></a> fix: contains check segfaults on empty map (<a href=\"https://redirect.github.com/protocolbuffers/protobuf/issues/20446\">#20446</a>) (<a href=\"https://redirect.github.com/protocolbuffers/protobuf/issues/20904\">#20904</a>)</li>\n<li><a href=\"https://github.com/protocolbuffers/protobuf/commit/03c50e38747da472e47ad1ceae5dfb02fa90ff66\"><code>03c50e3</code></a> Re-enable aarch64 tests. (<a href=\"https://redirect.github.com/protocolbuffers/protobuf/issues/20853\">#20853</a>)</li>\n<li><a href=\"https://github.com/protocolbuffers/protobuf/commit/128f0aafd9d32dc537fffb6b6fd9aa7f680ee55c\"><code>128f0aa</code></a> Add volatile to featuresResolved (<a href=\"https://redirect.github.com/protocolbuffers/protobuf/issues/20767\">#20767</a>)</li>\n<li><a href=\"https://github.com/protocolbuffers/protobuf/commit/bdd49bb1413710b49142d8d0da54e79cecb72724\"><code>bdd49bb</code></a> Merge pull request <a href=\"https://redirect.github.com/protocolbuffers/protobuf/issues/20755\">#20755</a> from protocolbuffers/29.x-202503192110</li>\n<li><a href=\"https://github.com/protocolbuffers/protobuf/commit/c65946848f55148b1ee0ff6c5bfc3e83c4fce90e\"><code>c659468</code></a> Updating version.json and repo version numbers to: 29.5-dev</li>\n<li>Additional commits viewable in <a href=\"https://github.com/protocolbuffers/protobuf/compare/v5.29.3...v5.29.5\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=protobuf&package-manager=pip&previous-version=5.29.3&new-version=5.29.5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Update usages with expected location of 7zz binary\nBody: Replace the leftover code spots pointing to `/usr/bin/7z`.\r\n\r\n@doomedraven \r\nMy preferred fix:\r\n1. Set `7zz` binary relative location in only one place in one config file.\r\n2. Create a constant using `SEVENZIP_BIN = os.path.join(CUCKOO_ROOT, <config_value>)` that can be imported where needed.\r\n\r\nLet me know if I should do that instead and I will make the changes to this PR.\nComment: thank you",
+  "Title: Azure machinery major updates\nBody: **New features:**\r\n1. VMSSs can now idle with zero VMs attached\r\n2. Faster VMSS instance deletions -> lower scale-down times\r\n\r\n**Fixes**\r\n1. Improved handling of IP conflicts when spot instances are evicted. Bug was preventing valid machines currently attached to the VMSS from being added to the DB, thus unable to run tasks.\r\n2. Minor logging typo fix and reduced `_thr_scale_machine_pool` call complexity\r\n\r\n\r\nThis PR removes the requirement to always have running instances on a VMSS. It does this by use of \"placeholder\" machines.\r\n- Previously, when a VMSS was at 0 capacity, CAPE would crash.\r\n- The placeholder machine is set in our DB to prevent that.\r\n- These machines are in a permanent \"locked\" state and can never be assigned tasks.\r\n- When initializing, if `initial_pool_size == 0`, we add a placeholder machine for that VMSS.\r\n- Removed when scaling-up and added when scaling down to zero.\r\n- **NOTE:** This means that when a VMSS is at 0 capacity and a task is submitted targeting it, it must first provision -> run -> wait for agent to be available before the task run begins. **This has been seen to take 1-3 minutes of time.** Efforts are being made to greatly reduce this, but be aware that it exists.\r\n\r\n\r\n**Undesirable changes:**\r\n1. Clumsy use of try/except to prevent sqlalchemy session issues\r\n2. No longer using `\"platform\"` with `filter_machines_to_task`. Caused many issues when running VMSS of win7/10/11 concurrently.\r\n\r\n\r\nThese are some pretty large changes, but should be nearly entirely backwards compatible. I have concerns over not filtering tasks by `\"platform\"` and would like feedback from anyone using Azure machinery if this is something they actively use for task submissions.\nComment: @cccs-mog @cccs-kevin These changes may/may not be of value for your use case. Have found it to be useful in reducing cost and quota load from less frequently used OS versions. If you have a chance to test this out or have ideas to improve, that would be greatly appreciated.\nComment: Hi @ChrisThibodeaux, might be able to do some limited testing. Will comment back in the near future. \nComment: thank you",
+  "Title: Reduce vivisect.base and vivisect.impemu cape-processor logs\nBody: Cape-processor logs are flooded with vivisect logs. These changes keep relevant `vivisect` logs and remove `vivisect.base` and `vivisect.impemu` logs below the `ERROR` level.\nComment: interesting, i had disable it completely \nComment: I found that the current settings had no impact on logs at `INFO` level or above. I'm not entirely sure how `NOTSET` works, but it seems to use a lower-heirarchy logger's level to set the one in capa.py \nComment: <img width=\"724\" height=\"284\" alt=\"Captura de pantalla 2025-08-11 a las 23 22 05\" src=\"https://github.com/user-attachments/assets/826cec63-14e5-4642-be27-e38033d18ef3\" />\r\n\r\nmaybe better to set it to critical?\nComment: I can definitely make that change, not a problem.\r\n\r\nI found some of the `[vivisect]` logs to be useful, such as:\r\n```\r\n2025-08-11 15:39:37,257 [Task 894] [vivisect] INFO: Percentage of discovered executable surface area: 95.8% (427791 / 446464)\r\n2025-08-11 15:39:37,257 [Task 894] [vivisect] INFO:    Xrefs/Blocks/Funcs:                             (31491 / 23131 / 1610)\r\n2025-08-11 15:39:37,257 [Task 894] [vivisect] INFO:    Locs,  Ops/Strings/Unicode/Nums/Ptrs/Vtables:   (89714:  83169 / 623 / 782 / 1339 / 620 / 0)\r\n```\r\n\r\nHowever, leaving it at `INFO` _does_ still output more logs than are useful. Particularly, `vivisect.parsers.pe` is still a pain and really overkill with logging..\r\n\r\nI agree on the swap to `CRITICAL` and have tested it locally.\nComment: we can mute per subparsers if we want that is not a big problem. so maybe we should add `logging.getLogger(\"vivisect.parsers.pe\").setLevel(logging.CRITICAL)` ? could you test it please \r\n\nComment: No problem, I will test that out today\nComment: Thank you",
+  "Title: Change citation information 's/is/in/'\nBody: None",
+  "Title: fix volatility malfind output\nBody: None",
+  "Title: Failing unserviceable task | failed_analysis when submitting any analysis\nBody: \n\n- [x] I am running the latest version Y\n- [x] I did read the README! Y\n- [x] I checked the documentation and found no answer Y\n- [x] I checked to make sure that this issue has not already been filed Y\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects) Y\n- [x] I have read and checked all configs (with all optional parts) Y\n\n\n# Expected Behavior\n\nOnce submitting a payload, capev2 should run the vm and start the analysis\n\n# Current Behavior\n\nonce I submit a a payload, capev2 catches it, and tries to run the machine with no avail until it hits a timeout. And shows unserviceable task.\n\n# Failure Information (for bugs)\n\nCapev2 is able to shut down the machine if it's on, but unable to run it. And if it's off it can't run it.\n\n\nI'm able to use virsh --connect qemu:///system list --all from the cape user, and run the vm.\n\n\n\n## Steps to Reproduce\n\nPlease provide detailed steps for reproducing the issue.\n1. submits payload\n2. Takes a while\n3. Gets failed_analysis \n\n## Context\n\ncat /etc/os-release\nPRETTY_NAME=\"Ubuntu 24.04.2 LTS\"\nNAME=\"Ubuntu\"\nVERSION_ID=\"24.04\"\nVERSION=\"24.04.2 LTS (Noble Numbat)\"\n\npython3 cuckoo.py -v\nYou are running Cuckoo Sandbox 2.4-CAPE\n\nvirsh dumpxml win10 | grep '<domain' ->\ndomain type='kvm' id='2'\n\n\n## Config Files:\n\n**KVM.cof**\n[kvm]\nmachines = win10\ninterface = virbr0\ndsn = qemu:///system\n[win10]\nlabel = win10\nplatform = windows\nip = 192.168.122.105\ntags = win10,office2019,acrobat_reader_11\nsnapshot = Snapshot1\ninterface = virbr0\narch = x64\n\n[cuckoo2]\nlabel = cuckoo2\nplatform = windows\nip = 192.168.122.106\narch = x86\ntags = win11,office2016,acrobat_reader_11\nsnapshot = Snapshot1\nreserved = no\n\n## Failure Logs\n\nBelow are logs from **python3 cuckoo.py -d**\n2025-08-07 11:32:02,422 [lib.cuckoo.core.machinery_manager] INFO: Task #8: found useable machine win10 (arch=x64, platform=windows)\n2025-08-07 11:32:02,422 [lib.cuckoo.core.scheduler] INFO: Task #8: Processing task\n2025-08-07 11:32:02,426 [lib.cuckoo.core.analysis_manager] INFO: Task #8: Starting analysis of URL 'www.google.com'\n2025-08-07 11:32:02,426 [lib.cuckoo.common.abstracts] DEBUG: Starting machine win10\n2025-08-07 11:32:02,430 [lib.cuckoo.common.abstracts] DEBUG: Getting status for win10\n2025-08-07 11:32:02,434 [lib.cuckoo.common.abstracts] DEBUG: Using snapshot snapshot1 for virtual machine win10\n2025-08-07 11:32:02,912 [lib.cuckoo.common.abstracts] DEBUG: Getting status for win10\n2025-08-07 11:32:02,916 [lib.cuckoo.common.abstracts] DEBUG: Waiting 0 cuckooseconds for machine win10 to switch to status ['running']\n2025-08-07 11:32:03,916 [lib.cuckoo.common.abstracts] DEBUG: Getting status for win10\n2025-08-07 11:32:03,920 [lib.cuckoo.common.abstracts] DEBUG: Waiting 1 cuckooseconds for machine win10 to switch to status ['running']\n2025-08-07 11:32:04,920 [lib.cuckoo.common.abstracts] DEBUG: Getting status for win10\n2025-08-07 11:32:04,935 [lib.cuckoo.common.abstracts] DEBUG: Waiting 2 cuckooseconds for machine win10 to switch to status ['running']\n2025-08-07 11:32:05,150 [lib.cuckoo.core.scheduler] DEBUG: # Active analysis: 1; # Pending Tasks: 0; # Specific Pending Tasks: {}; # Available Machines: 0; # Available Specific Machines: {}; # Locked Machines: 1; # Specific Locked Machines: {'win10': 1, 'office2019': 1, 'acrobat_reader_11': 1, 'windows': 1}; # Total Machines: 1\n2025-08-07 11:32:05,935 [lib.cuckoo.common.abstracts] DEBUG: Getting status for win10\n2025-08-07 11:32:05,950 [lib.cuckoo.common.abstracts] DEBUG: Waiting 3 cuckooseconds for machine win10 to switch to status ['running']\n2025-08-07 11:32:06,951 [lib.cuckoo.common.abstracts] DEBUG: Getting status for win10\n2025-08-07 11:32:06,965 [lib.cuckoo.common.abstracts] DEBUG: Waiting 4 cuckooseconds for machine win10 to switch to status ['running']\n2025-08-07 11:32:07,966 [lib.cuckoo.common.abstracts] DEBUG: Getting status for win10\n\n**python3 cuckoo.py**\n2025-08-10 08:58:15,271 [lib.cuckoo.core.analysis_manager] INFO: Task #9: Starting analysis of URL 'google.com'\n2025-08-10 09:03:21,302 [lib.cuckoo.core.analysis_manager] ERROR: Task #9: Timeout hit while for machine win10 to change status\nTraceback (most recent call last):\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 310, in machine_running\n    self.machinery_manager.start_machine(self.machine)\n  File \"/opt/CAPEv2/lib/cuckoo/core/machinery_manager.py\", line 305, in start_machine\n    self.machinery.start(machine.label)\n  File \"/opt/CAPEv2/modules/machinery/kvm.py\", line 37, in start\n    super(KVM, self).start(label)\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 454, in start\n    self._wait_status(label, self.RUNNING)\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 357, in _wait_status\n    raise CuckooMachineError(f\"Timeout hit while for machine {label} to change status\")\nlib.cuckoo.common.exceptions.CuckooMachineError: Timeout hit while for machine win10 to change status\n2025-08-10 09:03:21,350 [lib.cuckoo.core.analysis_manager] ERROR: Task #9: failure in AnalysisManager.run\nTraceback (most recent call last):\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 310, in machine_running\n    self.machinery_manager.start_machine(self.machine)\n  File \"/opt/CAPEv2/lib/cuckoo/core/machinery_manager.py\", line 305, in start_machine\n    self.machinery.start(machine.label)\n  File \"/opt/CAPEv2/modules/machinery/kvm.py\", line 37, in start\n    super(KVM, self).start(label)\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 454, in start\n    self._wait_status(label, self.RUNNING)\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 357, in _wait_status\n    raise CuckooMachineError(f\"Timeout hit while for machine {label} to change status\")\nlib.cuckoo.common.exceptions.CuckooMachineError: Timeout hit while for machine win10 to change status\n\nThe above exception was the direct cause of the following exception:\n\nTraceback (most recent call last):\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 511, in run\n    self.launch_analysis()\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 472, in launch_analysis\n    success = self.perform_analysis()\n              ^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 456, in perform_analysis\n    with self.machine_running(), self.result_server(), self.network_routing(), self.run_auxiliary():\n  File \"/usr/lib/python3.12/contextlib.py\", line 137, in __enter__\n    return next(self.gen)\n           ^^^^^^^^^^^^^^\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 335, in machine_running\n    raise CuckooDeadMachine(self.machine.name) from e\nlib.cuckoo.core.analysis_manager.CuckooDeadMachine: win10 is dead!\n2025-08-10 09:03:21,803 [lib.cuckoo.core.scheduler] INFO: Task #9: Failing unserviceable task\n\n\n**These logs are from /var/log/libvirt/qemu/win10.log**\nchar device redirected to /dev/pts/3 (label charserial0)\n2025-08-07T11:31:24.398279Z qemu-system-x86_64: terminating on signal 15 from pid 3207 (/usr/sbin/virtqemud)\n2025-08-07 11:31:24.999+0000: shutting down, reason=destroyed\n\nComment: does it works for files? you using kvm or qemu?\nComment: No doesn't work for files.\nif I understood your question correctly, QEMU with KVM.\nvirsh dumpxml win10 | grep '<domain' -> \ndomain type='kvm' id='2'\nComment: that is easier which machinery do you use kvm or qemu, aka which config file you modified qemu.conf or kvm.conf, but from output i guess it was kvm.conf.\n\nif not even files works, well you have wrong configuration of VMs related part, can you post config that you edited like kvm.conf or qemu.conf?\nComment: It's kvm.conf\n\ni just added it to the main post, and here it's again:\n\n**KVM.cof**\n[kvm]\nmachines = win10\ninterface = virbr0\ndsn = qemu:///system\n[win10]\nlabel = win10\nplatform = windows\nip = 192.168.122.105\ntags = win10,office2019,acrobat_reader_11\nsnapshot = Snapshot1\ninterface = virbr0\narch = x64\n\n[cuckoo2]\nlabel = cuckoo2\nplatform = windows\nip = 192.168.122.106\narch = x86\ntags = win11,office2016,acrobat_reader_11\nsnapshot = Snapshot1\n\n\nI'm using win10 machine.\n\nComment: It's in NAT mode for start. But that is not root of problem.\r\nIf you use the same IP range in cuckoomconf for resolserver then I don't\r\nsee any issue\r\n\r\nEl dom, 10 ago 2025, 9:44, LAKH ***@***.***> escribi\u00f3:\r\n\r\n> *LaKH-exe* left a comment (kevoreilly/CAPEv2#2662)\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2662#issuecomment-3172443013>\r\n>\r\n> It's kvm.conf\r\n>\r\n> i just added it to the main post, and here it's again:\r\n>\r\n> *KVM.cof*\r\n> [kvm]\r\n> machines = win10\r\n> interface = virbr0\r\n> dsn = qemu:///system\r\n> [win10]\r\n> label = win10\r\n> platform = windows\r\n> ip = 192.168.122.105\r\n> tags = win10,office2019,acrobat_reader_11\r\n> snapshot = Snapshot1\r\n> interface = virbr0\r\n> arch = x64\r\n>\r\n> [cuckoo2]\r\n> label = cuckoo2\r\n> platform = windows\r\n> ip = 192.168.122.106\r\n> arch = x86\r\n> tags = win11,office2016,acrobat_reader_11\r\n> snapshot = Snapshot1\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2662#issuecomment-3172443013>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3ZYDKQKO7KSIJ3O7ZD3M3Z4BAVCNFSM6AAAAACDKX5MIKVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZTCNZSGQ2DGMBRGM>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: Yes it's in NAT mode.\n\n\nHere is the content of **cuckoo.conf** \n\n**cat cuckoo.conf | grep 'resultserver' -A10**\n[resultserver]\nip = 192.168.122.1\nforce_port = yes\n\n**ip add**\n4: virbr0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc htb state UP group default qlen 1000\n    link/ether 52:54:00:49:93:0c brd ff:ff:ff:ff:ff:ff\n    inet 192.168.122.1/24 brd 192.168.122.255 scope global virbr0\n       valid_lft forever preferred_lft forever\n\n**ss -tulpn | grep 2042**\ntcp   LISTEN 0      128                            192.168.122.1:2042       0.0.0.0:*    users:((\"python3\",pid=34556,fd=10))\n\n\n\n\nComment: So far everything looks correct, in one of the configs you should be able\r\nto disable inservible option, then restart cuckoo service, as from\r\ninformation that you provided everything looks correr\r\n\r\nEl dom, 10 ago 2025, 11:06, LAKH ***@***.***> escribi\u00f3:\r\n\r\n> *LaKH-exe* left a comment (kevoreilly/CAPEv2#2662)\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2662#issuecomment-3172487281>\r\n>\r\n> Yes it's in NAT mode.\r\n>\r\n> Here is the content of *cuckoo.conf*\r\n>\r\n> *cat cuckoo.conf | grep 'resultserver' -A10*\r\n> [resultserver]\r\n> ip = 192.168.122.1\r\n> force_port = yes\r\n>\r\n> *ip add*\r\n> 4: virbr0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc htb state UP\r\n> group default qlen 1000\r\n> link/ether 52:54:00:49:93:0c brd ff:ff:ff:ff:ff:ff\r\n> inet 192.168.122.1/24 brd 192.168.122.255 scope global virbr0\r\n> valid_lft forever preferred_lft forever\r\n>\r\n> *ss -tulpn | grep 2042*\r\n> tcp LISTEN 0 128 192.168.122.1:2042 0.0.0.0:*\r\n> users:((\"python3\",pid=34556,fd=10))\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2662#issuecomment-3172487281>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH33K5G2DKIVBMJZHBOT3M4DQPAVCNFSM6AAAAACDKX5MIKVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZTCNZSGQ4DOMRYGE>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: > disable inservible option\n\nWhere can I find this? I searched the docs, looked in conf files but I didn't find such option.\nComment: Cuckoo.conf\r\n\r\n# Fail \"unserviceable\" tasks as they are queued.\r\n# Any task found that will never be analyzed based on the available\r\nanalysis machines\r\n# will have its status set to \"failed\".\r\nfail_unserviceable = on\r\n\r\nEl dom, 10 ago 2025, 13:36, LAKH ***@***.***> escribi\u00f3:\r\n\r\n> *LaKH-exe* left a comment (kevoreilly/CAPEv2#2662)\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2662#issuecomment-3172565483>\r\n>\r\n> disable inservible option\r\n>\r\n> Where can I find this? I searched the docs, looked in conf files but I\r\n> didn't find such option.\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2662#issuecomment-3172565483>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH337CKJ4PLTJNIUGQSD3M4VCPAVCNFSM6AAAAACDKX5MIKVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZTCNZSGU3DKNBYGM>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: Same issue. The thing is I'm watching the logs on /var/log/libvirt/qemu/win10.log, but libvirt is not receiving any request to change the status.\n\n**cuckoo.py -d**\n2025-08-10 12:56:04,778 [lib.cuckoo.core.scheduler] DEBUG: # Active analysis: 0; # Pending Tasks: 0; # Specific Pending Tasks: {}; # Available Machines: 1; # Available Specific Machines: {'acrobat_reader_11': 1, 'office2019': 1, 'win10': 1, 'windows': 1}; # Locked Machines: 0; # Specific Locked Machines: {}; # Total Machines: 1\n2025-08-10 12:56:10,955 [lib.cuckoo.core.machinery_manager] INFO: Task #12: found useable machine win10 (arch=x64, platform=windows)\n2025-08-10 12:56:10,955 [lib.cuckoo.core.scheduler] INFO: Task #12: Processing task\n2025-08-10 12:56:10,960 [lib.cuckoo.core.analysis_manager] INFO: Task #12: Starting analysis of URL 'www.google.com'\n2025-08-10 12:56:10,960 [lib.cuckoo.common.abstracts] DEBUG: Starting machine win10\n2025-08-10 12:56:10,963 [lib.cuckoo.common.abstracts] DEBUG: Getting status for win10\n2025-08-10 12:56:10,965 [lib.cuckoo.core.analysis_manager] ERROR: Task #12: Trying to start a virtual machine that has not been turned off win10\nTraceback (most recent call last):\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 310, in machine_running\n    self.machinery_manager.start_machine(self.machine)\n  File \"/opt/CAPEv2/lib/cuckoo/core/machinery_manager.py\", line 305, in start_machine\n    self.machinery.start(machine.label)\n  File \"/opt/CAPEv2/modules/machinery/kvm.py\", line 37, in start\n    super(KVM, self).start(label)\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 421, in start\n    raise CuckooMachineError(msg)\nlib.cuckoo.common.exceptions.CuckooMachineError: Trying to start a virtual machine that has not been turned off win10\n2025-08-10 12:56:10,978 [lib.cuckoo.core.analysis_manager] ERROR: Task #12: failure in AnalysisManager.run\nTraceback (most recent call last):\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 310, in machine_running\n    self.machinery_manager.start_machine(self.machine)\n  File \"/opt/CAPEv2/lib/cuckoo/core/machinery_manager.py\", line 305, in start_machine\n    self.machinery.start(machine.label)\n  File \"/opt/CAPEv2/modules/machinery/kvm.py\", line 37, in start\n    super(KVM, self).start(label)\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 421, in start\n    raise CuckooMachineError(msg)\nlib.cuckoo.common.exceptions.CuckooMachineError: Trying to start a virtual machine that has not been turned off win10\n\nThe above exception was the direct cause of the following exception:\n\nTraceback (most recent call last):\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 511, in run\n    self.launch_analysis()\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 472, in launch_analysis\n    success = self.perform_analysis()\n              ^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 456, in perform_analysis\n    with self.machine_running(), self.result_server(), self.network_routing(), self.run_auxiliary():\n  File \"/usr/lib/python3.12/contextlib.py\", line 137, in __enter__\n    return next(self.gen)\n           ^^^^^^^^^^^^^^\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 335, in machine_running\n    raise CuckooDeadMachine(self.machine.name) from e\nlib.cuckoo.core.analysis_manager.CuckooDeadMachine: win10 is dead!\n2025-08-10 12:56:11,970 [lib.cuckoo.core.scheduler] INFO: Task #12: Failing unserviceable task\n2025-08-10 12:56:14,801 [lib.cuckoo.core.scheduler] DEBUG: # Active analysis: 0; # Pending Tasks: 0; # Specific Pending Tasks: {}; # Available Machines: 0; # Available Specific Machines: {}; # Locked Machines: 0; # Specific Locked Machines: {}; # Total Machines: 0\n2025-08-10 12:56:24,823 [lib.cuckoo.core.scheduler] DEBUG: # Active analysis: 0; # Pending Tasks: 0; # Specific Pending Tasks: {}; # Available Machines: 0; # Available Specific Machines: {}; # Locked Machines: 0; # Specific Locked Machines: {}; # Total Machines: 0\n2025-08-10 12:56:34,829 [lib.cuckoo.core.scheduler] DEBUG: # Active analysis: 0; # Pending Tasks: 0; # Specific Pending Tasks: {}; # Available Machines: 0; # Available Specific Machines: {}; # Locked Machines: 0; # Specific Locked Machines: {}; # Total Machines: 0\n2025-08-10 12:56:44,838 [lib.cuckoo.core.scheduler] DEBUG: # Active analysis: 0; # Pending Tasks: 0; # Specific Pending Tasks: {}; # Available Machines: 0; # Available Specific Machines: {}; # Locked Machines: 0; # Specific Locked Machines: {}; # Total Machines: 0\n2025-08-10 12:56:54,843 [lib.cuckoo.core.scheduler] DEBUG: # Active analysis: 0; # Pending Tasks: 0; # Specific Pending Tasks: {}; # Available Machines: 0; # Available Specific Machines: {}; # Locked Machines: 0; # Specific Locked Machines: {}; # Total Machines\nComment: so `ERROR: Task https://github.com/kevoreilly/CAPEv2/pull/12: Trying to start a virtual machine that has not been turned off win10`\n\nthis says to me that VM snapshot is not in running state, could you provide details about VM ?\nComment: When I got the mentioned error, I had the VM on while monitoring libvert logs to see if cape is able to turn it off\n\n**virsh dominfo win10**\n```\nId:             2\nName:           win10\nUUID:           86226fec-7ca6-4797-9e23-16b5d3048bae\nOS Type:        hvm\nState:          running\nCPU(s):         4\nCPU time:       4275.0s\nMax memory:     8290304 KiB\nUsed memory:    8290304 KiB\nPersistent:     yes\nAutostart:      disable\nManaged save:   no\nSecurity model: apparmor\nSecurity DOI:   0\nSecurity label: libvirt-86226fec-7ca6-4797-9e23-16b5d3048bae (enforcing)\nMessages:       tainted: running with undesirable elevated privileges\n\n```\n\n_More verbose info from_ **virsh dumpxml win10**\n\n```\n<domain type='kvm' id='2'>\n  <name>win10</name>\n  <uuid>86226fec-7ca6-4797-9e23-16b5d3048bae</uuid>\n  <metadata>\n    <libosinfo:libosinfo xmlns:libosinfo=\"http://libosinfo.org/xmlns/libvirt/domain/1.0\">\n      <libosinfo:os id=\"http://microsoft.com/win/10\"/>\n    </libosinfo:libosinfo>\n  </metadata>\n  <memory unit='KiB'>8290304</memory>\n  <currentMemory unit='KiB'>8290304</currentMemory>\n  <vcpu placement='static'>4</vcpu>\n  <resource>\n    <partition>/machine</partition>\n  </resource>\n  <os>\n    <type arch='x86_64' machine='pc-q35-9.2'>hvm</type>\n    <bootmenu enable='yes'/>\n  </os>\n  <features>\n    <acpi/>\n    <apic/>\n    <hyperv mode='custom'>\n      <relaxed state='on'/>\n      <vapic state='on'/>\n      <spinlocks state='on' retries='8191'/>\n      <vpindex state='on'/>\n      <runtime state='on'/>\n      <synic state='on'/>\n      <stimer state='on'/>\n      <frequencies state='on'/>\n      <tlbflush state='on'/>\n      <ipi state='on'/>\n      <evmcs state='on'/>\n      <avic state='on'/>\n    </hyperv>\n    <vmport state='off'/>\n  </features>\n  <cpu mode='host-passthrough' check='none' migratable='on'/>\n  <clock offset='localtime'>\n    <timer name='rtc' tickpolicy='catchup'/>\n    <timer name='pit' tickpolicy='delay'/>\n    <timer name='hpet' present='no'/>\n    <timer name='hypervclock' present='yes'/>\n  </clock>\n  <on_poweroff>destroy</on_poweroff>\n  <on_reboot>restart</on_reboot>\n  <on_crash>destroy</on_crash>\n  <pm>\n    <suspend-to-mem enabled='no'/>\n    <suspend-to-disk enabled='no'/>\n  </pm>\n  <devices>\n    <emulator>/usr/bin/qemu-system-x86_64</emulator>\n    <disk type='file' device='disk'>\n      <driver name='qemu' type='qcow2'/>\n      <source file='/var/lib/libvirt/images/cuckoo1.1754830044' index='3'/>\n      <backingStore type='file' index='6'>\n        <format type='qcow2'/>\n        <source file='/var/lib/libvirt/images/cuckoo1.qcow2'/>\n        <backingStore/>\n      </backingStore>\n      <target dev='vda' bus='virtio'/>\n      <boot order='2'/>\n      <alias name='virtio-disk0'/>\n      <address type='pci' domain='0x0000' bus='0x04' slot='0x00' function='0x0'/>\n    </disk>\n    <disk type='file' device='cdrom'>\n      <driver name='qemu' type='qcow2'/>\n      <source file='/home/cape/ISOs/Win10_22H2_EnglishInternational_x64v1.1754830044' index='2'/>\n      <backingStore type='file' index='5'>\n        <format type='raw'/>\n        <source file='/home/cape/ISOs/Win10_22H2_EnglishInternational_x64v1.iso'/>\n        <backingStore/>\n      </backingStore>\n      <target dev='sdb' bus='sata'/>\n      <readonly/>\n      <boot order='1'/>\n      <alias name='sata0-0-1'/>\n      <address type='drive' controller='0' bus='0' target='0' unit='1'/>\n    </disk>\n    <disk type='file' device='cdrom'>\n      <driver name='qemu' type='qcow2'/>\n      <source file='/home/cape/ISOs/virtio-win-0.1.271.1754830044' index='1'/>\n      <backingStore type='file' index='4'>\n        <format type='raw'/>\n        <source file='/home/cape/ISOs/virtio-win-0.1.271.iso'/>\n        <backingStore/>\n      </backingStore>\n      <target dev='sdc' bus='sata'/>\n      <readonly/>\n      <boot order='3'/>\n      <alias name='sata0-0-2'/>\n      <address type='drive' controller='0' bus='0' target='0' unit='2'/>\n    </disk>\n    <controller type='usb' index='0' model='qemu-xhci' ports='15'>\n      <alias name='usb'/>\n      <address type='pci' domain='0x0000' bus='0x02' slot='0x00' function='0x0'/>\n    </controller>\n    <controller type='pci' index='0' model='pcie-root'>\n      <alias name='pcie.0'/>\n    </controller>\n    <controller type='pci' index='1' model='pcie-root-port'>\n      <model name='pcie-root-port'/>\n      <target chassis='1' port='0x10'/>\n      <alias name='pci.1'/>\n      <address type='pci' domain='0x0000' bus='0x00' slot='0x02' function='0x0' multifunction='on'/>\n    </controller>\n    <controller type='pci' index='2' model='pcie-root-port'>\n      <model name='pcie-root-port'/>\n      <target chassis='2' port='0x11'/>\n      <alias name='pci.2'/>\n      <address type='pci' domain='0x0000' bus='0x00' slot='0x02' function='0x1'/>\n    </controller>\n    <controller type='pci' index='3' model='pcie-root-port'>\n      <model name='pcie-root-port'/>\n      <target chassis='3' port='0x12'/>\n      <alias name='pci.3'/>\n      <address type='pci' domain='0x0000' bus='0x00' slot='0x02' function='0x2'/>\n    </controller>\n    <controller type='pci' index='4' model='pcie-root-port'>\n      <model name='pcie-root-port'/>\n      <target chassis='4' port='0x13'/>\n      <alias name='pci.4'/>\n      <address type='pci' domain='0x0000' bus='0x00' slot='0x02' function='0x3'/>\n    </controller>\n    <controller type='pci' index='5' model='pcie-root-port'>\n      <model name='pcie-root-port'/>\n      <target chassis='5' port='0x14'/>\n      <alias name='pci.5'/>\n      <address type='pci' domain='0x0000' bus='0x00' slot='0x02' function='0x4'/>\n    </controller>\n    <controller type='pci' index='6' model='pcie-root-port'>\n      <model name='pcie-root-port'/>\n      <target chassis='6' port='0x15'/>\n      <alias name='pci.6'/>\n      <address type='pci' domain='0x0000' bus='0x00' slot='0x02' function='0x5'/>\n    </controller>\n    <controller type='pci' index='7' model='pcie-root-port'>\n      <model name='pcie-root-port'/>\n      <target chassis='7' port='0x16'/>\n      <alias name='pci.7'/>\n      <address type='pci' domain='0x0000' bus='0x00' slot='0x02' function='0x6'/>\n    </controller>\n    <controller type='pci' index='8' model='pcie-root-port'>\n      <model name='pcie-root-port'/>\n      <target chassis='8' port='0x17'/>\n      <alias name='pci.8'/>\n      <address type='pci' domain='0x0000' bus='0x00' slot='0x02' function='0x7'/>\n    </controller>\n    <controller type='pci' index='9' model='pcie-root-port'>\n      <model name='pcie-root-port'/>\n      <target chassis='9' port='0x18'/>\n      <alias name='pci.9'/>\n      <address type='pci' domain='0x0000' bus='0x00' slot='0x03' function='0x0' multifunction='on'/>\n    </controller>\n    <controller type='pci' index='10' model='pcie-root-port'>\n      <model name='pcie-root-port'/>\n      <target chassis='10' port='0x19'/>\n      <alias name='pci.10'/>\n      <address type='pci' domain='0x0000' bus='0x00' slot='0x03' function='0x1'/>\n    </controller>\n    <controller type='pci' index='11' model='pcie-root-port'>\n      <model name='pcie-root-port'/>\n      <target chassis='11' port='0x1a'/>\n      <alias name='pci.11'/>\n      <address type='pci' domain='0x0000' bus='0x00' slot='0x03' function='0x2'/>\n    </controller>\n    <controller type='pci' index='12' model='pcie-root-port'>\n      <model name='pcie-root-port'/>\n      <target chassis='12' port='0x1b'/>\n      <alias name='pci.12'/>\n      <address type='pci' domain='0x0000' bus='0x00' slot='0x03' function='0x3'/>\n    </controller>\n    <controller type='pci' index='13' model='pcie-root-port'>\n      <model name='pcie-root-port'/>\n      <target chassis='13' port='0x1c'/>\n      <alias name='pci.13'/>\n      <address type='pci' domain='0x0000' bus='0x00' slot='0x03' function='0x4'/>\n    </controller>\n    <controller type='pci' index='14' model='pcie-root-port'>\n      <model name='pcie-root-port'/>\n      <target chassis='14' port='0x1d'/>\n      <alias name='pci.14'/>\n      <address type='pci' domain='0x0000' bus='0x00' slot='0x03' function='0x5'/>\n    </controller>\n    <controller type='sata' index='0'>\n      <alias name='ide'/>\n      <address type='pci' domain='0x0000' bus='0x00' slot='0x1f' function='0x2'/>\n    </controller>\n    <controller type='virtio-serial' index='0'>\n      <alias name='virtio-serial0'/>\n      <address type='pci' domain='0x0000' bus='0x03' slot='0x00' function='0x0'/>\n    </controller>\n    <interface type='network'>\n      <mac address='52:54:00:03:4c:d3'/>\n      <source network='default' portid='ab18947d-735c-4403-83c8-1da09a5c9e57' bridge='virbr0'/>\n      <target dev='vnet1'/>\n      <model type='virtio'/>\n      <alias name='net0'/>\n      <address type='pci' domain='0x0000' bus='0x01' slot='0x00' function='0x0'/>\n    </interface>\n    <serial type='pty'>\n      <source path='/dev/pts/5'/>\n      <target type='isa-serial' port='0'>\n        <model name='isa-serial'/>\n      </target>\n      <alias name='serial0'/>\n    </serial>\n    <console type='pty' tty='/dev/pts/5'>\n      <source path='/dev/pts/5'/>\n      <target type='serial' port='0'/>\n      <alias name='serial0'/>\n    </console>\n    <channel type='spicevmc'>\n      <target type='virtio' name='com.redhat.spice.0' state='disconnected'/>\n      <alias name='channel0'/>\n      <address type='virtio-serial' controller='0' bus='0' port='1'/>\n    </channel>\n    <input type='tablet' bus='usb'>\n      <alias name='input0'/>\n      <address type='usb' bus='0' port='1'/>\n    </input>\n    <input type='mouse' bus='ps2'>\n      <alias name='input1'/>\n    </input>\n    <input type='keyboard' bus='ps2'>\n      <alias name='input2'/>\n    </input>\n    <graphics type='spice' port='5900' autoport='yes' listen='127.0.0.1'>\n      <listen type='address' address='127.0.0.1'/>\n      <image compression='off'/>\n    </graphics>\n    <graphics type='vnc' port='5901' autoport='yes' listen='127.0.0.1'>\n      <listen type='address' address='127.0.0.1'/>\n    </graphics>\n    <sound model='ich9'>\n      <alias name='sound0'/>\n      <address type='pci' domain='0x0000' bus='0x00' slot='0x1b' function='0x0'/>\n    </sound>\n    <audio id='1' type='none'/>\n    <video>\n      <model type='qxl' ram='65536' vram='65536' vgamem='16384' heads='1' primary='yes'/>\n      <alias name='video0'/>\n      <address type='pci' domain='0x0000' bus='0x00' slot='0x01' function='0x0'/>\n    </video>\n    <redirdev bus='usb' type='spicevmc'>\n      <alias name='redir0'/>\n      <address type='usb' bus='0' port='2'/>\n    </redirdev>\n    <redirdev bus='usb' type='spicevmc'>\n      <alias name='redir1'/>\n      <address type='usb' bus='0' port='3'/>\n    </redirdev>\n    <watchdog model='itco' action='reset'>\n      <alias name='watchdog0'/>\n    </watchdog>\n    <memballoon model='virtio'>\n      <alias name='balloon0'/>\n      <address type='pci' domain='0x0000' bus='0x05' slot='0x00' function='0x0'/>\n    </memballoon>\n  </devices>\n  <seclabel type='dynamic' model='apparmor' relabel='yes'>\n    <label>libvirt-86226fec-7ca6-4797-9e23-16b5d3048bae</label>\n    <imagelabel>libvirt-86226fec-7ca6-4797-9e23-16b5d3048bae</imagelabel>\n  </seclabel>\n  <seclabel type='dynamic' model='dac' relabel='yes'>\n    <label>+0:+1002</label>\n    <imagelabel>+0:+1002</imagelabel>\n  </seclabel>\n</domain>\n```\nComment: so  to clarify, the **snapshot** is taken in running state? \nComment: No the snapshot was taken while the VM was off. What I meant, when I provided you the error above the VM was **on** at that time.\n\nHere are details about the snapshot, is it supposed to be on?\n\n\n**virsh snapshot-info win10 --current**\n```\nName:           snapshot1\nDomain:         win10\nCurrent:        yes\nState:          shutoff\nLocation:       external\nParent:         -\nChildren:       0\nDescendants:    0\nMetadata:       yes\n```\nComment: Why did you take snapshot of turned off VM? That won't work, docs says\r\nrunning state\r\n\r\nEl lun, 11 ago 2025, 10:36, LAKH ***@***.***> escribi\u00f3:\r\n\r\n> *LaKH-exe* left a comment (kevoreilly/CAPEv2#2662)\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2662#issuecomment-3173765184>\r\n>\r\n> No the snapshot was taken while the VM was off. What I meant, when I\r\n> provided you the error above the VM was *on* at that time.\r\n>\r\n> Here are details about the snapshot, is it supposed to be on?\r\n>\r\n> **virsh snapshot-info win10 --current**\r\n> Name:           snapshot1\r\n> Domain:         win10\r\n> Current:        yes\r\n> State:          shutoff\r\n> Location:       external\r\n> Parent:         -\r\n> Children:       0\r\n> Descendants:    0\r\n> Metadata:       yes\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2662#issuecomment-3173765184>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH34OVDJSZCB3TO75S633NBIXZAVCNFSM6AAAAACDKX5MIKVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZTCNZTG43DKMJYGQ>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: Sure will delete the snapshot and take it while the VM is running, and check if that is the issue.\nComment: please get a quick look again over the docs to avoid future issues",
+  "Title: When I run a file analysis, I get an error that says \u201cKeyError: \u2018behavior\u2019\u201d even though the analysis is said to be \u201cCompleted analysis successfully.\u201d\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\n\n## This is open source and you are getting __free__ support so be friendly!\n\n# Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n- [x ] I am running the latest version\n- [x ] I did read the README!\n- [ x] I checked the documentation and found no answer\n- [x ] I checked to make sure that this issue has not already been filed\n- [x ] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [x ] I have read and checked all configs (with all optional parts)\n\n\n# Expected Behavior\nI expect a file to be analyzed with a file report inside the web page.\n\n# Current Behavior\n\n After the analysis is complete, I get a \u201cfailed_processing\u201d response on the web interface, so I don't have any reports generated and the file analysis must not be done, even though I see the message \u201cINFO: Task #3: Completed analysis successfully\u201d in the debug logs. \n\n\n<img width=\"932\" height=\"158\" alt=\"Image\" src=\"https://github.com/user-attachments/assets/e8fe6636-a67a-4d41-a10e-79ba66710d8d\" />\n\n# Failure Information (for bugs)\n\n\nI therefore checked the \u201c/opt/CAPEv2/storage/analyses/3\u201d logs for more information, but there is no information in the logs or in the reporting files, which are empty.\nI therefore determined that the problem originated higher up, in the CAPE service.\nI then searched the CAPEv2 logs (/opt/CAPEv2/log) and found errors that are always the same regardless of the type of file I put in (malicious or not): I get a \u201cKeyError: \u2018behavior\u2019.\u201d\n\n<img width=\"1355\" height=\"512\" alt=\"Image\" src=\"https://github.com/user-attachments/assets/b9940973-a76d-4fa6-b33b-b9f95cf1cba7\" />\n\n\ni have already looked at this issue https://github.com/kevoreilly/CAPEv2/issues/2187  and  https://github.com/kevoreilly/CAPEv2/issues/2306 ,I have the latest update and I still have the same issue.\n## Steps to Reproduce\n\nPlease provide detailed steps for reproducing the issue.\n\n1. Enable reporting module\n2. submit task on the web UI\n3. you get the above error.\n\n## Context\n\n\n| Question         | Answer\n|------------------|--------------------\n| OS version       | Ubuntu 24.04.2 LTS, W10 analysis machine\n\n## Failure Logs\n\n2025-08-05 11:55:48,705 [root] INFO: Processing analysis data for Task #3\n2025-08-05 11:56:02,256 [Task 3] [lib.cuckoo.core.plugins] ERROR: failed to initialize signature DEPBypass: 'info'\n2025-08-05 11:56:02,260 [Task 3] [lib.cuckoo.core.plugins] ERROR: failed to initialize signature InjectionRWX: 'info'\n2025-08-05 11:56:02,266 [Task 3] [lib.cuckoo.core.plugins] ERROR: failed to initialize signature ReadsSelf: 'info'\n2025-08-05 11:56:02,266 [Task 3] [lib.cuckoo.core.plugins] ERROR: failed to initialize signature InstalledApps: 'info'\n2025-08-05 11:56:02,267 [Task 3] [lib.cuckoo.core.plugins] ERROR: failed to initialize signature StealthFile: 'info'\n2025-08-05 11:56:02,371 [root] ERROR: [3] Exception when processing task: 'behavior'\npebble.common.types.RemoteTraceback: Traceback (most recent call last):\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-vprlgb5p-py3.12/lib/python3.12/site-packages/pebble/common/process.py\", line 65, in process_execute\n    return Result(ResultStatus.SUCCESS, function(*args, **kwargs))\n                                        ^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/cuckoo/CAPEv2/utils/process.py\", line 157, in process\n    error_count = RunReporting(task=task.to_dict(), results=results, reprocess=reprocess).run()\n                  ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/cuckoo/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 817, in __init__\n    for process in results[\"behavior\"][\"processes\"]:\n                   ~~~~~~~^^^^^^^^^^^^\nKeyError: 'behavior'\n\n\nThe above exception was the direct cause of the following exception:\n\nTraceback (most recent call last):\n  File \"/cuckoo/CAPEv2/utils/process.py\", line 354, in processing_finished\n    _ = future.result()\n        ^^^^^^^^^^^^^^^\n  File \"/usr/lib/python3.12/concurrent/futures/_base.py\", line 449, in result\n    return self.__get_result()\n           ^^^^^^^^^^^^^^^^^^^\n  File \"/usr/lib/python3.12/concurrent/futures/_base.py\", line 401, in __get_result\n    raise self._exception\nKeyError: 'behavior'\n\nComment: you have some problems as neither info key is found, do you have enabled behavior and analysisinfo in configs?\nComment: closed as abondoned",
+  "Title: pyinotify is not defined in Linux Guest\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\n\n## This is open source and you are getting __free__ support so be friendly!\n\n# Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n- [x] I am running the latest version\n- [x] I did read the README!\n- [x] I checked the documentation and found no answer\n- [x] I checked to make sure that this issue has not already been filed\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [x] I have read and checked all configs (with all optional parts)\n\n\n# Expected Behavior\n\nLinux Guest VM can analyze the malwares without any errors\n\n\n# Current Behavior\n\nWhen i try to submit a malicious elf package i get the following error\n\n```\n2025-08-05 10:26:13,007 [root] DEBUG: Starting analyzer from: /l_bf9nuu\n2025-08-05 10:26:13,008 [root] DEBUG: Storing results at: /tmp/FAocHCQ\n2025-08-05 10:26:13,012 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.filecollector\"...\n2025-08-05 10:26:13,016 [root] ERROR: Traceback (most recent call last):\n  File \"/l_bf9nuu/analyzer.py\", line 453, in <module>\n    success = analyzer.run()\n  File \"/l_bf9nuu/analyzer.py\", line 266, in run\n    __import__(name, globals(), locals(), [\"dummy\"], 0)\n  File \"/l_bf9nuu/modules/auxiliary/filecollector.py\", line 170, in <module>\n    class EventProcessor(pyinotify.ProcessEvent):\nNameError: name 'pyinotify' is not defined\nTraceback (most recent call last):\n  File \"/l_bf9nuu/analyzer.py\", line 453, in <module>\n    success = analyzer.run()\n  File \"/l_bf9nuu/analyzer.py\", line 266, in run\n    __import__(name, globals(), locals(), [\"dummy\"], 0)\n  File \"/l_bf9nuu/modules/auxiliary/filecollector.py\", line 170, in <module>\n    class EventProcessor(pyinotify.ProcessEvent):\nNameError: name 'pyinotify' is not defined\n```\n\n# Failure Information (for bugs)\n\nThe full background of my issue is that i tried to integrate Ubuntu 22.04 64bit Guest VM. I followed the documentation and according to the documentation i had to install 32 bit packages\n\n\n[x64 guests](https://capev2.readthedocs.io/en/latest/installation/guest/linux.html#x64-guests)\n```\nInstall support file dependencies (we need Python3 32-bit):\n\n$ sudo dpkg --add-architecture i386\n$ sudo apt update\n$ sudo apt install python3:i386 -y\n$ sudo apt install python3-distutils -y\n$ sudo apt install systemtap-runtime -y\n$ curl -sSL https://bootstrap.pypa.io/get-pip.py -o get-pip.py\n$ python3 get-pip.py\n$ python3 -m pip install pyinotify\n$ python3 -m pip install Pillow       # optional\n$ python3 -m pip install pyscreenshot # optional\n$ python3 -m pip install pyautogui    # optional\n\n```\nWhen i tried to install the 32 bit packages, i faced issues like loss of Ubuntu VM GUI. \nSo i spent some time looking at the issues created by others and found this: https://github.com/kevoreilly/CAPEv2/issues/1400\n\nI installed the 64 bit packages and completed the setup by installing the agent and also created a cron job to launch agent.py @reboot\nI have also installed docker and pulled the tracee docker image and also enabled it in the configurations\n\nI tried running python3 -m pip install pyinotify again but the requirement is already satisfied\n\n```\npython3 -m pip install pyinotify\nDefaulting to user installation because normal site-packages is not writeable\nRequirement already satisfied: pyinotify in ./.local/lib/python3.10/site-packages (0.9.6)\n\n```\n\n## Steps to Reproduce\n\nPlease provide detailed steps for reproducing the issue.\n\n1. Setup the Linux guest VM using 64 bit packages\n\n## Context\n\n\n| Question         | Answer\n|------------------|--------------------\n| OS version       | Ubuntu 22.04 Cape Host, Ubuntu 22.04 Guest VM\n\n\nComment: Linux doesn't have official support. I guess you tried to install all that as root user right?\nComment: No i tried all that as normal user\n\nComment: so that is part of the issue, if you install dependencies as a normal user, but then run the agent as root. Install all py dependencies as root\nComment: Thank you, Installing the dependencies as root user solved the issue",
+  "Title: Add fix for Azure subnet.address_prefix issue #2658\nBody: None\nComment: thank you",
+  "Title: subnet.address_prefix returning None on Azure\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\n\n## This is open source and you are getting __free__ support so be friendly!\n\n# Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n- [x] I am running the latest version\n- [x] I did read the README!\n- [x] I checked the documentation and found no answer\n- [x] I checked to make sure that this issue has not already been filed\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [x] I have read and checked all configs (with all optional parts)\n\n\n# Expected Behavior\n\nAdd Azure subnet name to subnet variable inside conf/az.conf, machinery/az.py should find the subnet IP-range through subnet.address_prefix.\n\n# Current Behavior\n\nsubnet.address_prefix returns `None` on starting cape.service.\n\n# Failure Information (for bugs)\n\nsubnet.address_prefix returns `None` due to Microsoft adding a new field, subnet.address_prefixes, where it automatically puts the IP-range instead of address_prefix, unless you specify which to use. Afaik impossible on click ops, but doable in Powershell/AZ-cli.\n\n## Steps to Reproduce\n\n1. Standard setup for Az in clickops\n2. Add subnet name to az.conf\n3. subnet.address_prefix returns none\n\n## Context\n\nAzure setup.\n\nFix for the problem inside machinery/az.py:\n```\nmatch = re.match(IPV4_REGEX, subnet.address_prefix) \n-> match = re.match(IPV4_REGEX, subnet.address_prefix or subnet.address_prefixes[0])\n```\n\nAnother (local) fix use AZ-cli or similar to specify that it should use subnet.address_prefix in the setup of the VM.\n\n| Question         | Answer\n|------------------|--------------------\n| Git commit       | commit fa9cf8c2243bcbd2080a331d7f945a5e83472566\n| OS version       | Ubuntu 22.04.5 LTS\n\n## Failure Logs\n\n```\nAug 05 08:13:45 <host> poetry[59134]:     self.machinery_manager.initialize_machinery()\nAug 05 08:13:45 <host> poetry[59134]:   File \"/opt/CAPEv2/lib/cuckoo/core/machinery_manager.py\", line 232, in initialize_machinery\nAug 05 08:13:45 <host> poetry[59134]:     self.machinery.initialize()\nAug 05 08:13:45 <host> poetry[59134]:   File \"/opt/CAPEv2/modules/machinery/az.py\", line 130, in initialize\nAug 05 08:13:45 <host> poetry[59134]:     self._initialize_check()\nAug 05 08:13:45 <host> poetry[59134]:   File \"/opt/CAPEv2/modules/machinery/az.py\", line 201, in _initialize_check\nAug 05 08:13:45 <host> poetry[59134]:     match = re.match(IPV4_REGEX, subnet.address_prefix)\nAug 05 08:13:45 <host> poetry[59134]:   File \"/usr/lib/python3.10/re.py\", line 190, in match\nAug 05 08:13:45 <host> poetry[59134]:     return _compile(pattern, flags).match(string)\nAug 05 08:13:45 <host> poetry[59134]: TypeError: expected string or bytes-like object\n```\nComment: hello, thank you, can you submit PR? Azure is community module and doesn't have official support FYI",
+  "Title: Processing runs out of memory, but works perfectly fine when memory limit is removed\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\n\n## This is open source and you are getting __free__ support so be friendly!\n\n# Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n- [x] I am running the latest version\n- [x] I did read the README!\n- [x] I checked the documentation and found no answer\n- [x] I checked to make sure that this issue has not already been filed\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [x] I have read and checked all configs (with all optional parts)\n\n\n# Expected Behavior\n\nProcessing service should start properly, given that auto processing can work as long as I disable the memory limit, and manual processing via `utils/process.py` always works. \n\n# Current Behavior\n\nProcessing service fails immediately, even when there isn't any task left in the queue. The logs below are after I had disabled the memory limit once (by commenting out `memory_limit`), restarted the service, waited for the processing module to finish (and it does without any errors), then reenabled the limit (by uncommenting), then added a traceback in the branch where the memory exception is handled (for more details), and restarted the service again.\n\nThe traceback code is taken from the branch below in the same function:\n```python\n...\n    except (MemoryError, OSError) as e:\n        \n        mem = get_memory() / 1024 / 1024\n        sys.stderr.write(\n            \"\\n\\nERROR: Memory Exception\\nRemain: %.2f GB\\nYour system doesn't have enough FREE RAM to run processing!\" % mem\n        )\n        import traceback\n\n        traceback.print_exc()\n        sys.exit(1)\n...\n```\n\n# Failure Information (for bugs)\n\n```\nAug 01 08:59:25 cape systemd[1]: Stopped cape-processor.service - CAPE report processor.\nAug 01 08:59:25 cape systemd[1]: cape-processor.service: Consumed 3.764s CPU time.\nAug 01 08:59:25 cape systemd[1]: Started cape-processor.service - CAPE report processor.\nAug 01 08:59:28 cape poetry[5554]: 2025-08-01 08:59:28,830 [root] INFO: Processing analysis data\nAug 01 08:59:28 cape poetry[5554]: ERROR: Memory Exception\nAug 01 08:59:28 cape poetry[5554]: Remain: 2.38 GB\nAug 01 08:59:28 cape poetry[5554]: Your system doesn't have enough FREE RAM to run processing!\nAug 01 08:59:28 cape poetry[5554]: Traceback (most recent call last):\nAug 01 08:59:28 cape poetry[5554]:   File \"/opt/CAPEv2/utils/process.py\", line 397, in autoprocess\nAug 01 08:59:28 cape poetry[5554]:     with pebble.ProcessPool(max_workers=parallel, max_tasks=maxtasksperchild, initializer=init_worker) as pool:\nAug 01 08:59:28 cape poetry[5554]:          ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\nAug 01 08:59:28 cape poetry[5554]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 62, in __init__\nAug 01 08:59:28 cape poetry[5554]:     self._pool_manager = PoolManager(self._context, context)\nAug 01 08:59:28 cape poetry[5554]:                          ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\nAug 01 08:59:28 cape poetry[5554]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 204, in __init__\nAug 01 08:59:28 cape poetry[5554]:     self.worker_manager = WorkerManager(context.workers,\nAug 01 08:59:28 cape poetry[5554]:                           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\nAug 01 08:59:28 cape poetry[5554]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 349, in __init__\nAug 01 08:59:28 cape poetry[5554]:     self.pool_channel, self.workers_channel = channels(mp_context)\nAug 01 08:59:28 cape poetry[5554]:                                               ^^^^^^^^^^^^^^^^^^^^\nAug 01 08:59:28 cape poetry[5554]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/channel.py\", line 35, in channels\nAug 01 08:59:28 cape poetry[5554]:     WorkerChannel(read0, write1, (read1, write0), mp_context))\nAug 01 08:59:28 cape poetry[5554]:     ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\nAug 01 08:59:28 cape poetry[5554]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/channel.py\", line 83, in __init__\nAug 01 08:59:28 cape poetry[5554]:     self.mutex = ChannelMutex(mp_context)\nAug 01 08:59:28 cape poetry[5554]:                  ^^^^^^^^^^^^^^^^^^^^^^^^\nAug 01 08:59:28 cape poetry[5554]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/channel.py\", line 129, in __init__\nAug 01 08:59:28 cape poetry[5554]:     self.reader_mutex = mp_context.RLock()\nAug 01 08:59:28 cape poetry[5554]:                         ^^^^^^^^^^^^^^^^^^\nAug 01 08:59:28 cape poetry[5554]:   File \"/usr/lib/python3.12/multiprocessing/context.py\", line 73, in RLock\nAug 01 08:59:28 cape poetry[5554]:     return RLock(ctx=self.get_context())\nAug 01 08:59:28 cape poetry[5554]:            ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\nAug 01 08:59:28 cape poetry[5554]:   File \"/usr/lib/python3.12/multiprocessing/synchronize.py\", line 194, in __init__\nAug 01 08:59:28 cape poetry[5554]:     SemLock.__init__(self, RECURSIVE_MUTEX, 1, 1, ctx=ctx)\nAug 01 08:59:28 cape poetry[5554]:   File \"/usr/lib/python3.12/multiprocessing/synchronize.py\", line 57, in __init__\nAug 01 08:59:28 cape poetry[5554]:     sl = self._semlock = _multiprocessing.SemLock(\nAug 01 08:59:28 cape poetry[5554]:                          ^^^^^^^^^^^^^^^^^^^^^^^^^\nAug 01 08:59:28 cape poetry[5554]: OSError: [Errno 12] Cannot allocate memory\nAug 01 08:59:28 cape poetry[5554]: pip3 install certvalidator asn1crypto mscerts\nAug 01 08:59:28 cape poetry[5554]: OPTIONAL! Missed dependency: poetry run pip install -U git+https://github.com/DissectMalware/batch_deobfuscator\nAug 01 08:59:29 cape systemd[1]: cape-processor.service: Main process exited, code=exited, status=1/FAILURE\nAug 01 08:59:29 cape systemd[1]: cape-processor.service: Failed with result 'exit-code'.\nAug 01 08:59:29 cape systemd[1]: cape-processor.service: Consumed 3.801s CPU time.\n```\n\n## Steps to Reproduce\n\nPlease provide detailed steps for reproducing the issue.\n\n1. Set up CAPE\n2. Run an analysis (this might not even be needed)\n3. Check logs\n\n## Context\n\nRunning in a Proxmox VM with 4GB memory allocated. The underlying hardware also only has 4GB.  Maybe this is barely not enough once the 0.8 multiplier is applied? Or maybe the memory_limit function prevents page swaps and other virtual memory things from kicking in, which may make things slower when the memory limit is reached, but wouldn't cause errors? OS version is cloud-init Ubuntu Noble. \n\nAlso for context, I'm trying to write a custom version of the Proxmox machinary to incorporate newer features like IPAM, so this was run using a custom machinary file and configuration, but since the actual analysis went fine I don't believe this would be the issue.\n\nAs mentioned above, the actual analysis and processing code works fine once I commented out the memory limit:\n```python\n...\nmaxcount = cfg.cuckoo.max_analysis_count\n    count = 0\n    # pool = multiprocessing.Pool(parallel, init_worker)\n    pool = False\n    try:\n        memory_limit() # <- THIS LINE\n        log.info(\"Processing analysis data\")\n        with pebble.ProcessPool(max_workers=parallel, max_tasks=maxtasksperchild, initializer=init_worker) as pool:\n            # CAUTION - big ugly loop ahead.\n            while count < maxcount or not maxcount:\n...\n```\nProcessing also works if I turn off the CAPE module via the configuration file `process.conf`, but since even without turning it off I can get processing to work, I doubt that's where the underlying issue is. \n\nI could try installing CAPE in a brand new VM to see if the issue still presists (without any of my changes), but since every installation takes around 30 minutes on my system I'd rather not.\n## Failure Logs\n\nPlease include any relevant log snippets or files here.\n\nComment: hello, interesting, yes i have set that limit due to many different issues, as when OS itself get out of memory OOM-killer start smashing all the not CAPE related processes too. so is just to have a health OS\nComment: That was my guess behind the limit as well, it would be strange if one was there for no reason. Perhaps it would make sense to have an option that allows the user to disable this, similar to the free disk space ones? The extra trace was pretty helpful for figuring out what was actually causing the error as well, so maybe it would make sense to include it in addition to the \"ERROR: Memory Exception\" message? Other than that, I've already figured out a patch for my use case (mentioned above for anyone who has stumbled here), so feel free to close this ticket. \nComment: yes it make sense to make it as an option, but is summer and most of us don't have time to work a lot of some of this stuff so it might take time till it will be implemented\nComment: it was easier than i expected so here we go https://github.com/kevoreilly/CAPEv2/commit/155daafda4f7f30db893c18a739dc69436db0431\nComment: w maintainer ty have a nice day\nComment: you too",
+  "Title: Add PolarProxy plugin for TLS MiTM\nBody: This merge request adds the capability to run PolarProxy on a per task basis to man-in-the-middle TLS connections from target VMs on a predefined port.\r\n\r\n## Install \r\n\r\n```\r\n$ ./cape2.sh polarproxy cape\r\n```\r\n\r\n## Usage\r\n\r\nUse `polarproxy=1` option during submission. The MiTMed port can be changed using the `tlsport=<PORT>` option.\r\n\r\n## Functionality\r\n\r\nThe rooter shims a `REDIRECT` rule at the top of the `PREROUTING` table to intercept any traffic from a VM destined for port 443 and redirects it to PolarProxy listening on an ephemeral port. The traffic is decrypted and written to `storage/analyses/XX/polarproxy/tls.pcap`. During the processing step, this plugin will use `mergecap` to stitch the plaintext TLS traffic back into the PCAP generated from `tcpdump`. This modified PCAP is available just like normal through the UI/API. The TLS only PCAP is available through the `/apiv2/tasks/get/tlspcap/XX/` endpoint.\r\n\r\nPolarProxy includes a TLS firewall. Using the `bypass_list` and `block_list` option in `polarproxy.conf`, a user can define a list of domain regular expressions to block connections to (ie Windows telemetry) or allow the connection to go through but not MITM it.\r\n\nComment: thank you very much!",
+  "Title: Improve exception handling in Guacamole view & Vpshere\nBody: ### Summary\r\n\r\nImproved exception handling in `vsphere.py` and the Guacamole view:\r\n\r\n- In `vsphere.py`, added error details to the `CuckooCriticalError` message for better debugging.\r\n- In `guac/views.py`, added proper checks to:\r\n  - Ensure `libvirt` is available before using it\r\n  - Restrict Guacamole usage to compatible machinery types (`kvm`, `qemu`)\r\n- Updated the error page template to load static files if needed\r\n\r\nThese changes help avoid unexpected crashes or misleading behavior when using unsupported backends like `vsphere`, and improve feedback to the user.\r\n\r\n---\r\n\r\nThis is my first contribution to the project \u2014 happy to get any feedback.\nComment: thank you for updates!",
+  "Title: sqlalchemy.exc.InvalidRequestError: A transaction is already begun on this Session.\nBody: # Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n- [x] I am running the latest version\n- [x] I did read the README!\n- [x] I checked the documentation and found no answer\n- [x] I checked to make sure that this issue has not already been filed\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [x] I have read and checked all configs (with all optional parts)\n\n\n# Expected Behavior\nthe malware analysis process successful, not failed_processing\n\n# Current Behavior\nfailed_processing because an error, with the error message : \"sqlalchemy.exc.InvalidRequestError: A transaction is already begun on this Session.\"\n\n## Steps to Reproduce\n1. Install and setup the kvm-qemu.sh and cape2.sh\n2. Config the .conf file\n3. Restart all .services\n4. Submit the malware\n5. Waiting the analysis process\n6. Analysis process give the failed_processing result\n\n## Context\n| Question         | Answer\n|------------------|--------------------\n| OS Host       | Ubuntu 24.04.2 LTS Desktop\n| OS Victim       | Windows 10 Pro 22H2\n\n## Failure Logs\n27 19:02:29 cape poetry[28644]: INFO: modules.reporting.resubmitexe: Resubmitexe file \"/opt/CAPEv2/storage/analyses/2/files/c8614f11c662ba838ef6ed98e378576c7af342d71f38ec24d9aa4fc6b28352a9_link/GRVoMsBieCs.doc\" added as task with ID [3] resub count 0\nJul 27 19:02:29 cape poetry[28644]: INFO: modules.reporting.resubmitexe: Resubmitexe file \"/opt/CAPEv2/storage/analyses/2/files/c8614f11c662ba838ef6ed98e378576c7af342d71f38ec24d9aa4fc6b28352a9_link/GRVoMsBieCs.doc\" added as task with ID {} resub count 1\nJul 27 19:02:29 cape poetry[28644]: INFO: modules.reporting.resubmitexe: Resubmitexe file \"/opt/CAPEv2/storage/analyses/2/files/9ef4492d81a6e6aece1d916863a07f92145fe95856be0293be9bb813b135ce33_link/GEXgVcgJPI.doc\" added as task with ID [4] resub count 2\nJul 27 19:02:29 cape poetry[28644]: INFO: modules.reporting.resubmitexe: Resubmitexe file \"/opt/CAPEv2/storage/analyses/2/files/9ef4492d81a6e6aece1d916863a07f92145fe95856be0293be9bb813b135ce33_link/GEXgVcgJPI.doc\" added as task with ID {} resub count 3\nJul 27 19:02:29 cape poetry[28644]: INFO: modules.reporting.resubmitexe: Hit resub limit of 3, stopping iteration\nJul 27 19:02:29 cape poetry[28644]: DEBUG: lib.cuckoo.core.plugins: Executing reporting module \"JsonDump\"\nJul 27 19:02:31 cape poetry[28644]: DEBUG: lib.cuckoo.core.plugins: Executing reporting module \"TMPFSCLEAN\"\nJul 27 19:02:31 cape poetry[28644]: DEBUG: modules.reporting.tmpfsclean: Deleting memdump: /mnt/tmpfs/2.dmp\nJul 27 19:02:31 cape poetry[28644]: DEBUG: lib.cuckoo.core.plugins: Executing reporting module \"MongoDB\"\nJul 27 19:02:32 cape poetry[28644]: INFO: dev_utils.mongodb: attempting to delete calls for 1 tasks\nJul 27 19:02:32 cape poetry[28644]: DEBUG: modules.reporting.mongodb: Deleted previous MongoDB data for Task 2\nJul 27 19:02:34 cape poetry[2679]: 2025-07-27 19:02:34,736 [root] ERROR: [2] Exception when processing task: A transaction is already begun on this Session.\nJul 27 19:02:34 cape poetry[2679]: pebble.common.types.RemoteTraceback: Traceback (most recent call last):\nJul 27 19:02:34 cape poetry[2679]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/common/process.py\", line 65, in process_execute\nJul 27 19:02:34 cape poetry[2679]:     return Result(ResultStatus.SUCCESS, function(*args, **kwargs))\nJul 27 19:02:34 cape poetry[2679]:                                         ^^^^^^^^^^^^^^^^^^^^^^^^^\nJul 27 19:02:34 cape poetry[2679]:   File \"/opt/CAPEv2/utils/[process.py](https://process.py/)\", line 160, in process\nJul 27 19:02:34 cape poetry[2679]:     with db.session.begin():\nJul 27 19:02:34 cape poetry[2679]:          ^^^^^^^^^^^^^^^^^^\nJul 27 19:02:34 cape poetry[2679]:   File \"<string>\", line 2, in begin\nJul 27 19:02:34 cape poetry[2679]:   File \"<string>\", line 2, in begin\nJul 27 19:02:34 cape poetry[2679]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/sqlalchemy/util/deprecations.py\", line 375, in warned\nJul 27 19:02:34 cape poetry[2679]:     return fn(*args, **kwargs)\nJul 27 19:02:34 cape poetry[2679]:            ^^^^^^^^^^^^^^^^^^^\nJul 27 19:02:34 cape poetry[2679]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/sqlalchemy/orm/session.py\", line 1334, in begin\nJul 27 19:02:34 cape poetry[2679]:     raise sa_exc.InvalidRequestError(\nJul 27 19:02:34 cape poetry[2679]: sqlalchemy.exc.InvalidRequestError: A transaction is already begun on this Session.\nJul 27 19:02:34 cape poetry[2679]: The above exception was the direct cause of the following exception:\nJul 27 19:02:34 cape poetry[2679]: Traceback (most recent call last):\nJul 27 19:02:34 cape poetry[2679]:   File \"/opt/CAPEv2/utils/[process.py](https://process.py/)\", line 355, in processing_finished\nJul 27 19:02:34 cape poetry[2679]:     _ = future.result()\nJul 27 19:02:34 cape poetry[2679]:         ^^^^^^^^^^^^^^^\nJul 27 19:02:34 cape poetry[2679]:   File \"/usr/lib/python3.12/concurrent/futures/_base.py\", line 449, in result\nJul 27 19:02:34 cape poetry[2679]:     return self.__get_result()\nJul 27 19:02:34 cape poetry[2679]:            ^^^^^^^^^^^^^^^^^^^\nJul 27 19:02:34 cape poetry[2679]:   File \"/usr/lib/python3.12/concurrent/futures/_base.py\", line 401, in __get_result\nJul 27 19:02:34 cape poetry[2679]:     raise self._exception\nJul 27 19:02:34 cape poetry[2679]: sqlalchemy.exc.InvalidRequestError: A transaction is already begun on this Session.\nComment: disable all community modules and restart services. we love but not maintain community modules",
+  "Title: Keep file when demux adds default platform\nBody: If demux_sample returns (path, \"windows\") for a plain file (e.g. a csv named SAMPLE.XLS), tuple-based check saw:\r\n(path, \"\") != (path, \"windows\")\r\nand deleted the upload, triggering \u201cExtracted file doesn\u2019t exist\u201d. Compare paths only.\nComment: hello, thank you, can you apply Gemini suggested improvement?\nComment: Done :+1: \nComment: thank you, sorry for delay on review",
+  "Title: suricata is broken right now\nBody: None",
+  "Title: Suricata 8.0.0 breaks installation process\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\n\n## This is open source and you are getting __free__ support so be friendly!\n\n# Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n- [x] I am running the latest version\n- [x] I did read the README!\n- [x] I checked the documentation and found no answer\n- [x] I checked to make sure that this issue has not already been filed\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [x] I have read and checked all configs (with all optional parts)\n\n\n# Expected Behavior\n\nInstaller should work with latest version of Suricata, which is now 8.0.0 as of July 8th.\n\n# Current Behavior\n\nInstaller does not work with Suricata 8.0.0 due to permissions conflict between the Suricata user and the Cape user. Suricata itself does run once before breaking after cape2.sh changes file permissions. There's a good chance the offending lines in `cape2.sh` are:\n```bash\nchown ${USER}:${USER} -R /etc/suricata\nchown ${USER}:${USER} -R /var/log/suricata\n```\n\n# Failure Information (for bugs)\n\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\n\n## Steps to Reproduce\n\nPlease provide detailed steps for reproducing the issue.\n\n1. Run the installer.\n\n## Context\n\nI'm running the installer directly from a fresh cloud-init instance of Ubuntu-24.02. The script I'm running as root is:\n\n```bash\n#!/bin/bash\n# Install CAPEv2\nwget https://raw.githubusercontent.com/kevoreilly/CAPEv2/refs/heads/master/installer/cape2.sh\nsudo chmod +x cape2.sh | tee install.log\nsudo ./cape2.sh base cape --disable-libvirt 2>&1\n```\n\n\n## Failure Logs\nFrom `journalctl -u suricata`:\n```\nJul 23 10:35:31 cape-template systemd[1]: Starting suricata.service - Suricata IDS/IDP daemon...\nJul 23 10:35:31 cape-template systemd[1]: Starting suricata.service - Suricata IDS/IDP daemon...\nJul 23 10:35:31 cape-template systemd[1]: suricata.service: Control process exited, code=exited, status=203/EXEC\nJul 23 10:35:31 cape-template systemd[1]: suricata.service: Failed with result 'exit-code'.\nJul 23 10:35:31 cape-template systemd[1]: Failed to start suricata.service - Suricata IDS/IDP daemon.\nJul 23 10:36:13 cape-template systemd[1]: Starting suricata.service - Suricata IDS/IPS/NSM/FW daemon...\nJul 23 10:36:13 cape-template systemd[1]: Started suricata.service - Suricata IDS/IPS/NSM/FW daemon.\nJul 23 10:35:31 cape-template systemd[1]: Starting suricata.service - Suricata IDS/IDP daemon...\nJul 23 10:35:31 cape-template systemd[1]: suricata.service: Control process exited, code=exited, status=203/EXEC\nJul 23 10:35:31 cape-template systemd[1]: suricata.service: Failed with result 'exit-code'.\nJul 23 10:35:31 cape-template systemd[1]: Failed to start suricata.service - Suricata IDS/IDP daemon.\nJul 23 10:36:13 cape-template systemd[1]: Starting suricata.service - Suricata IDS/IPS/NSM/FW daemon...\nJul 23 10:36:13 cape-template systemd[1]: Started suricata.service - Suricata IDS/IPS/NSM/FW daemon.\nJul 23 10:36:13 cape-template suricata[35112]: i: suricata: This is Suricata version 8.0.0 RELEASE running in SYSTEM mode\nJul 23 10:36:13 cape-template suricata[35112]: E: pidfile: unable to set pidfile '/run/suricata.pid': Permission denied\nJul 23 10:36:13 cape-template suricata[35112]: E: suricata: Unable to create PID file, concurrent run of Suricata can occur.\nJul 23 10:36:13 cape-template suricata[35112]: E: suricata: PID file creation WILL be mandatory for daemon mode in future version\nJul 23 10:36:13 cape-template suricata[35112]: W: detect: No rule files match the pattern /var/lib/suricata/rules/suricata.rules\nJul 23 10:36:13 cape-template suricata[35112]: W: detect: 1 rule files specified, but no rules were loaded!\nJul 23 10:36:13 cape-template suricata[35112]: i: mpm-hs: Rule group caching - loaded: 0 newly cached: 0 total cacheable: 0\nJul 23 10:36:13 cape-template suricata[35112]: i: threads: Threads created -> W: 4 FM: 1 FR: 1   Engine started.\nJul 23 10:36:15 cape-template systemd[1]: Stopping suricata.service - Suricata IDS/IPS/NSM/FW daemon...\nJul 23 10:36:15 cape-template suricatasc[35318]: {\"message\":\"Closing Suricata\",\"return\":\"OK\"}\nJul 23 10:36:15 cape-template suricata[35112]: i: suricata: Signal Received.  Stopping engine.\nJul 23 10:36:17 cape-template suricata[35112]: i: device: eth0: packets: 25, drops: 0 (0.00%), invalid chksum: 0\nJul 23 10:36:17 cape-template systemd[1]: suricata.service: Deactivated successfully.\nJul 23 10:36:17 cape-template systemd[1]: Stopped suricata.service - Suricata IDS/IPS/NSM/FW daemon.\nJul 23 10:36:17 cape-template systemd[1]: suricata.service: Consumed 2.239s CPU time, 40.9M memory peak, 0B memory swap peak.\nJul 23 10:36:17 cape-template systemd[1]: Starting suricata.service - Suricata IDS/IPS/NSM/FW daemon...\nJul 23 10:36:17 cape-template systemd[1]: Started suricata.service - Suricata IDS/IPS/NSM/FW daemon.\nJul 23 10:36:17 cape-template suricata[35334]: Error: conf-yaml-loader: failed to open file: /etc/suricata/suricata.yaml: Permission denied\nJul 23 10:36:17 cape-template systemd[1]: suricata.service: Main process exited, code=exited, status=1/FAILURE\nJul 23 10:36:17 cape-template systemd[1]: suricata.service: Failed with result 'exit-code'.\nJul 23 10:36:17 cape-template systemd[1]: suricata.service: Scheduled restart job, restart counter is at 1.\nJul 23 10:36:17 cape-template systemd[1]: Starting suricata.service - Suricata IDS/IPS/NSM/FW daemon...\nJul 23 10:36:17 cape-template systemd[1]: Started suricata.service - Suricata IDS/IPS/NSM/FW daemon.\nJul 23 10:36:17 cape-template suricata[35345]: Error: conf-yaml-loader: failed to open file: /etc/suricata/suricata.yaml: Permission denied\nJul 23 10:36:17 cape-template systemd[1]: suricata.service: Main process exited, code=exited, status=1/FAILURE\n```\n\nComment: Commenting out the 2 `chown`s then gives rise to the following errors:\n```\nJul 24 10:21:38 cape-template systemd[1]: Starting suricata.service - Suricata IDS/IPS/NSM/FW daemon...\nJul 24 10:21:38 cape-template systemd[1]: Started suricata.service - Suricata IDS/IPS/NSM/FW daemon.\nJul 24 10:21:38 cape-template suricata[3945]: Warning: debug: Failed to change ownership of file /var/log/suricata//suricata.log: Operation not permitted\nJul 24 10:21:38 cape-template suricata[3945]: i: suricata: This is Suricata version 8.0.0 RELEASE running in SYSTEM mode\nJul 24 10:21:38 cape-template suricata[3945]: E: pidfile: unable to set pidfile '/run/suricata.pid': Permission denied\nJul 24 10:21:38 cape-template suricata[3945]: E: suricata: Unable to create PID file, concurrent run of Suricata can occur.\nJul 24 10:21:38 cape-template suricata[3945]: E: suricata: PID file creation WILL be mandatory for daemon mode in future version\nJul 24 10:21:38 cape-template suricata[3945]: E: privs: capng_change_id for main thread failed\nJul 24 10:21:38 cape-template systemd[1]: suricata.service: Main process exited, code=exited, status=1/FAILURE\nJul 24 10:21:38 cape-template systemd[1]: suricata.service: Failed with result 'exit-code'.\nJul 24 10:21:39 cape-template systemd[1]: suricata.service: Scheduled restart job, restart counter is at 1.\nJul 24 10:21:39 cape-template systemd[1]: Starting suricata.service - Suricata IDS/IPS/NSM/FW daemon...\nJul 24 10:21:39 cape-template systemd[1]: Started suricata.service - Suricata IDS/IPS/NSM/FW daemon.\nJul 24 10:21:39 cape-template suricata[3973]: Warning: debug: Failed to change ownership of file /var/log/suricata//suricata.log: Operation not permitted\nJul 24 10:21:39 cape-template suricata[3973]: i: suricata: This is Suricata version 8.0.0 RELEASE running in SYSTEM mode\nJul 24 10:21:39 cape-template suricata[3973]: E: pidfile: unable to set pidfile '/run/suricata.pid': Permission denied\nJul 24 10:21:39 cape-template suricata[3973]: E: suricata: Unable to create PID file, concurrent run of Suricata can occur.\nJul 24 10:21:39 cape-template suricata[3973]: E: suricata: PID file creation WILL be mandatory for daemon mode in future version\nJul 24 10:21:39 cape-template suricata[3973]: E: privs: capng_change_id for main thread failed\nJul 24 10:21:39 cape-template systemd[1]: suricata.service: Main process exited, code=exited, status=1/FAILURE\nJul 24 10:21:39 cape-template systemd[1]: suricata.service: Failed with result 'exit-code'.\nJul 24 10:21:39 cape-template systemd[1]: suricata.service: Scheduled restart job, restart counter is at 2.\nJul 24 10:21:39 cape-template systemd[1]: Starting suricata.service - Suricata IDS/IPS/NSM/FW daemon...\nJul 24 10:21:39 cape-template systemd[1]: Started suricata.service - Suricata IDS/IPS/NSM/FW daemon.\nJul 24 10:21:39 cape-template suricata[3996]: Warning: debug: Failed to change ownership of file /var/log/suricata//suricata.log: Operation not permitted\nJul 24 10:21:39 cape-template suricata[3996]: i: suricata: This is Suricata version 8.0.0 RELEASE running in SYSTEM mode\nJul 24 10:21:39 cape-template suricata[3996]: E: pidfile: unable to set pidfile '/run/suricata.pid': Permission denied\nJul 24 10:21:39 cape-template suricata[3996]: E: suricata: Unable to create PID file, concurrent run of Suricata can occur.\nJul 24 10:21:39 cape-template suricata[3996]: E: suricata: PID file creation WILL be mandatory for daemon mode in future version\nJul 24 10:21:39 cape-template suricata[3996]: E: privs: capng_change_id for main thread failed\n```\nComment: can you try `sudo usermod -G suricata -a cape`, and check again? \nComment: I haven't tried that, but I just ran the installation script again and it's working now. It would seem that the Suricata repo was telling the installer to use version `1:8.0.0-0ubuntu2`, but it has just been changed to version `1:8.0.0-0ubuntu18`, which seems to be working correctly. This issue can be closed.\nComment: oh thank you for details",
+  "Title: update nitrogenloader\nBody: None\nComment: @kevoreilly any feedback/merge here?",
+  "Title: No Module Named SFLOCK\nBody: Hello,\nI am trying to deploy CAPE on Ubuntu 22.04. When i try to run \n\n`poetry run python3 cuckoo.py`\n\nI get the following error\n\n```\nTraceback (most recent call last):\n     File \"/opt/CAPEv2/cuckoo.py\", line 12 in <module>\n          from lib.cuckoo.core.database import Database, init_database\n     File \"/opt/CAPEv2/lib/cuckoo/core/database.py\", line 18 in <module>\n          from sflock.abstracts import File as SflockFile\nModuleNotFoundError: No module named 'sflock'\n```\n\nNote: \n\nI have already installed all the optional dependencies inside the virtual env\n\nI am currently running poetry run pyhton3 cuckoo.py from inside the virtual env\n\nI checked the cape2.sh logs and it shows:\n\n`Installing sflock2 (0.3.76)`\n\nComment: we need the issue template to understand your issue with context, so provide the proper details\nComment: ## About accounts on [capesandbox.com](https://capesandbox.com/)\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\n\n## This is open source and you are getting __free__ support so be friendly!\n\n# Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n- [x] I am running the latest version\n- [x] I did read the README!\n- [x] I checked the documentation and found no answer\n- [x] I checked to make sure that this issue has not already been filed\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [x] I have read and checked all configs (with all optional parts)\n\n\n# Expected Behavior\n\nExecute cape without any errors using poetry run python3 cuckoo.py\n\n# Current Behavior\n\nWhen i try to run using poetry run python3 cuckoo.py i get the following error.\nI am trying to run this command inside the virtual envoirment and the cape user\n\n```\n\nTraceback (most recent call last):\n     File \"/opt/CAPEv2/cuckoo.py\", line 12 in <module>\n          from lib.cuckoo.core.database import Database, init_database\n     File \"/opt/CAPEv2/lib/cuckoo/core/database.py\", line 18 in <module>\n          from sflock.abstracts import File as SflockFile\nModuleNotFoundError: No module named 'sflock'\n\n```\n\n## Steps to Reproduce\n\nI followed the Documentation step by step\n\n1. Installed KVM and virtual manager using the kvm and virtual manager installation scripts and then rebooted the VM.\n2. Executed cape2.sh script and it executed without throwing any errors. I also checked the cape.log file and saw that sflock was installed successfully. According to cape.log file sflock2 (0.3.76) was installed\n3. I ran the  poetry run python3 cuckoo.py inside the virtual envoirment and also installed the optional dependencies inside the virtual envoirment\n\n## Context\n\nI have not yet configured the Host CAPE server and I have not yet setup the Guest VM. \n\n| Question         | Answer\n|------------------|--------------------\n| OS version       | Ubuntu 22.04\n\n\n\nComment: thanks for template, this is super strange, i just tested on my server and it works. can you run this as cape user?\n`cd /opt/CAPEv2 && poetry run pip3 install sflock2` and then rerun `poetry run python3 cuckoo.py`\nComment: I have been working on this too. \nSo I was working by taking snapshots. I reverted back and rerun the cape2.sh script. It worked fine and then i installed the dependencies and it worked fine too. I then installed extra dependencies and chepy. During the installation of chepy, i noticed that pip uninstalled cryptography 44 version and installed cryptography 41 version but sflock2 needs cryptography 44 version. This raised dependencies issue.\n\n\nSo maybe this was the issue, i will now run cape without chepy and extra dependencies.\n\nI saw this issue too so I was sure that extra dependencies do cause issues: https://github.com/kevoreilly/CAPEv2/issues/2439\nComment: you can ignore optional dependencies, they are only for people who need those modules and ready to suffer from incompability with other core modules\nComment: Yes and thank you for your support. I am closing this issue.\nComment: FYI i just got a look on chopy, while is nice library, they doesn't provide `url_decode` anymore, and idk who wrote that signature, as url de code can be done with native library, so i have removed the msg about it + disabled those sigs that using it as it is broken anyway. thanks for spotting it",
+  "Title: FormhookB change reintroduces FPs\nBody: Hello,\n\nthis commit https://github.com/kevoreilly/CAPEv2/commit/0ae5d09a6a783302535883359d2b13437136d95e reintroduces the problem with many FPs in FormhookB, which seemed to be fixed in https://github.com/kevoreilly/CAPEv2/issues/2339\n\nthe rule hit1088 times on a normal windows system on e.g. ed203afb03b9757b14bb187ba4c11a22aa330521bb1f99fc948289ebd976bd9f\n\nbest regards\narnim\n\n\n\nComment: Sorry about that! I will try to be more careful in future. Thank you for the report.",
+  "Title: Remote session fails when using vsphere machinery (invalid DSN)\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\n\n## This is open source and you are getting __free__ support so be friendly!\n\n# Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n- [x] I am running the latest version  \n- [x] I did read the README!  \n- [x] I checked the documentation and found no answer  \n- [x] I checked to make sure that this issue has not already been filed  \n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)  \n- [x] I have read and checked all configs (with all optional parts)  \n\n# Expected Behavior\n\nAccess a vSphere VM through RDP using remote session interface in CAPEv2.\n\n# Current Behavior\n\nWhen using `vsphere` as the machinery, the web interface attempts to connect via `libvirt` using the default `machinery_dsn = qemu:///system`, which is invalid for vSphere.\n\nThis results in the following error:\n```\nException: Domain not found: no domain with matching name 'win10-pro'\n```\n\n# Failure Information (for bugs)\n\nThe `guac/index()` view uses `libvirt.open()` regardless of the selected machinery, which is incompatible with vSphere.\n\n## Steps to Reproduce\n\n1. Set `machinery = vsphere` in `cuckoo.conf` and configure it\n2. Setup a valid Windows guest with RDP enabled\n3. Enable Guacamole and RDP support (`web.conf`)\n4. Start a task and try to access the session via the web interface\n\n## Context\n\nI was using CAPE with `kvm` machinery and everything worked fine.\nI am now switching to `vsphere` and Guacamole fails due to the incompatible `libvirt` connection attempt.\nTested apart, RDP is working and vSphere connection is working.\n\n## Suggested Fix\n\nWould it make sense to raise an exception for incompatible machinery types (like vsphere) when using remote sessions, or should the system instead support a configuration in vsphere.conf (e.g., dsn = esx://...) to enable compatibility with Guacamole?\n\nI\u2019m open to contributing a fix if guidance is provided on the preferred direction. Thank you for your time\n\nComment: As far as I know that feature is only supported by KVM. @enzok right?\nYes add check if that is not KVM should just ignore it\nComment: Vsphere has issues because of security. Auth was \"fixed\" if I remember correctly. \nComment: thanks for fix",
+  "Title: Sqlalchemy 2 + parent<>child relationship reworked\nBody: None",
+  "Title: Proper relationship parent-child samples\nBody: None",
+  "Title: db cleanup\nBody: None",
+  "Title: Bump urllib3 from 2.3.0 to 2.5.0\nBody: Bumps [urllib3](https://github.com/urllib3/urllib3) from 2.3.0 to 2.5.0.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a href=\"https://github.com/urllib3/urllib3/releases\">urllib3's releases</a>.</em></p>\n<blockquote>\n<h2>2.5.0</h2>\n<h2>\ud83d\ude80 urllib3 is fundraising for HTTP/2 support</h2>\n<p><a href=\"https://sethmlarson.dev/urllib3-is-fundraising-for-http2-support\">urllib3 is raising ~$40,000 USD</a> to release HTTP/2 support and ensure long-term sustainable maintenance of the project after a sharp decline in financial support. If your company or organization uses Python and would benefit from HTTP/2 support in Requests, pip, cloud SDKs, and thousands of other projects <a href=\"https://opencollective.com/urllib3\">please consider contributing financially</a> to ensure HTTP/2 support is developed sustainably and maintained for the long-haul.</p>\n<p>Thank you for your support.</p>\n<h1>Security issues</h1>\n<p>urllib3 2.5.0 fixes two moderate security issues:</p>\n<ul>\n<li>Pool managers now properly control redirects when <code>retries</code> is passed \u2014 CVE-2025-50181 reported by <a href=\"https://github.com/sandumjacob\"><code>@\u200bsandumjacob</code></a> (5.3 Medium, GHSA-pq67-6m6q-mj2v)</li>\n<li>Redirects are now controlled by urllib3 in the Node.js runtime \u2014 CVE-2025-50182 (5.3 Medium, GHSA-48p4-8xcf-vxj5)</li>\n</ul>\n<h1>Features</h1>\n<ul>\n<li>Added support for the <code>compression.zstd</code> module that is new in Python 3.14. See <a href=\"https://peps.python.org/pep-0784/\">PEP 784</a> for more information. (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3610\">#3610</a>)</li>\n<li>Added support for version 0.5 of <code>hatch-vcs</code> (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3612\">#3612</a>)</li>\n</ul>\n<h1>Bugfixes</h1>\n<ul>\n<li>Raised exception for <code>HTTPResponse.shutdown</code> on a connection already released to the pool. (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3581\">#3581</a>)</li>\n<li>Fixed incorrect <code>CONNECT</code> statement when using an IPv6 proxy with <code>connection_from_host</code>. Previously would not be wrapped in <code>[]</code>. (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3615\">#3615</a>)</li>\n</ul>\n<h2>2.4.0</h2>\n<h2>\ud83d\ude80 urllib3 is fundraising for HTTP/2 support</h2>\n<p><a href=\"https://sethmlarson.dev/urllib3-is-fundraising-for-http2-support\">urllib3 is raising ~$40,000 USD</a> to release HTTP/2 support and ensure long-term sustainable maintenance of the project after a sharp decline in financial support. If your company or organization uses Python and would benefit from HTTP/2 support in Requests, pip, cloud SDKs, and thousands of other projects <a href=\"https://opencollective.com/urllib3\">please consider contributing financially</a> to ensure HTTP/2 support is developed sustainably and maintained for the long-haul.</p>\n<p>Thank you for your support.</p>\n<h1>Features</h1>\n<ul>\n<li>Applied PEP 639 by specifying the license fields in pyproject.toml. (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3522\">#3522</a>)</li>\n<li>Updated exceptions to save and restore more properties during the pickle/serialization process. (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3567\">#3567</a>)</li>\n<li>Added <code>verify_flags</code> option to <code>create_urllib3_context</code> with a default of <code>VERIFY_X509_PARTIAL_CHAIN</code> and <code>VERIFY_X509_STRICT</code> for Python 3.13+. (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3571\">#3571</a>)</li>\n</ul>\n<h1>Bugfixes</h1>\n<ul>\n<li>Fixed a bug with partial reads of streaming data in Emscripten. (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3555\">#3555</a>)</li>\n</ul>\n<h1>Misc</h1>\n<ul>\n<li>Switched to uv for installing development dependecies. (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3550\">#3550</a>)</li>\n<li>Removed the <code>multiple.intoto.jsonl</code> asset from GitHub releases. Attestation of release files since v2.3.0 can be found on PyPI. (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3566\">#3566</a>)</li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/urllib3/urllib3/blob/main/CHANGES.rst\">urllib3's changelog</a>.</em></p>\n<blockquote>\n<h1>2.5.0 (2025-06-18)</h1>\n<h2>Features</h2>\n<ul>\n<li>Added support for the <code>compression.zstd</code> module that is new in Python 3.14.\nSee <code>PEP 784 &lt;https://peps.python.org/pep-0784/&gt;</code>_ for more information. (<code>[#3610](https://github.com/urllib3/urllib3/issues/3610) &lt;https://github.com/urllib3/urllib3/issues/3610&gt;</code>__)</li>\n<li>Added support for version 0.5 of <code>hatch-vcs</code> (<code>[#3612](https://github.com/urllib3/urllib3/issues/3612) &lt;https://github.com/urllib3/urllib3/issues/3612&gt;</code>__)</li>\n</ul>\n<h2>Bugfixes</h2>\n<ul>\n<li>Fixed a security issue where restricting the maximum number of followed\nredirects at the <code>urllib3.PoolManager</code> level via the <code>retries</code> parameter\ndid not work.</li>\n<li>Made the Node.js runtime respect redirect parameters such as <code>retries</code>\nand <code>redirects</code>.</li>\n<li>Raised exception for <code>HTTPResponse.shutdown</code> on a connection already released to the pool. (<code>[#3581](https://github.com/urllib3/urllib3/issues/3581) &lt;https://github.com/urllib3/urllib3/issues/3581&gt;</code>__)</li>\n<li>Fixed incorrect <code>CONNECT</code> statement when using an IPv6 proxy with <code>connection_from_host</code>. Previously would not be wrapped in <code>[]</code>. (<code>[#3615](https://github.com/urllib3/urllib3/issues/3615) &lt;https://github.com/urllib3/urllib3/issues/3615&gt;</code>__)</li>\n</ul>\n<h1>2.4.0 (2025-04-10)</h1>\n<h2>Features</h2>\n<ul>\n<li>Applied PEP 639 by specifying the license fields in pyproject.toml. (<code>[#3522](https://github.com/urllib3/urllib3/issues/3522) &lt;https://github.com/urllib3/urllib3/issues/3522&gt;</code>__)</li>\n<li>Updated exceptions to save and restore more properties during the pickle/serialization process. (<code>[#3567](https://github.com/urllib3/urllib3/issues/3567) &lt;https://github.com/urllib3/urllib3/issues/3567&gt;</code>__)</li>\n<li>Added <code>verify_flags</code> option to <code>create_urllib3_context</code> with a default of <code>VERIFY_X509_PARTIAL_CHAIN</code> and <code>VERIFY_X509_STRICT</code> for Python 3.13+. (<code>[#3571](https://github.com/urllib3/urllib3/issues/3571) &lt;https://github.com/urllib3/urllib3/issues/3571&gt;</code>__)</li>\n</ul>\n<h2>Bugfixes</h2>\n<ul>\n<li>Fixed a bug with partial reads of streaming data in Emscripten. (<code>[#3555](https://github.com/urllib3/urllib3/issues/3555) &lt;https://github.com/urllib3/urllib3/issues/3555&gt;</code>__)</li>\n</ul>\n<h2>Misc</h2>\n<ul>\n<li>Switched to uv for installing development dependecies. (<code>[#3550](https://github.com/urllib3/urllib3/issues/3550) &lt;https://github.com/urllib3/urllib3/issues/3550&gt;</code>__)</li>\n<li>Removed the <code>multiple.intoto.jsonl</code> asset from GitHub releases. Attestation of release files since v2.3.0 can be found on PyPI. (<code>[#3566](https://github.com/urllib3/urllib3/issues/3566) &lt;https://github.com/urllib3/urllib3/issues/3566&gt;</code>__)</li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/aaab4eccc10c965897540b21e15f11859d0b62e7\"><code>aaab4ec</code></a> Release 2.5.0</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/7eb4a2aafe49a279c29b6d1f0ed0f42e9736194f\"><code>7eb4a2a</code></a> Merge commit from fork</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/f05b1329126d5be6de501f9d1e3e36738bc08857\"><code>f05b132</code></a> Merge commit from fork</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/d03fe327a71d09728512217149f269763671f296\"><code>d03fe32</code></a> Fix HTTP tunneling with IPv6 in older Python versions</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/11661e9bb4278e43d081f47a516e287a928c2206\"><code>11661e9</code></a> Bump github/codeql-action from 3.28.0 to 3.29.0 (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3624\">#3624</a>)</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/6a0ecc6b16fe30f721021b44a81d19615098c71e\"><code>6a0ecc6</code></a> Update v2 migration guide to 2.4.0 (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3621\">#3621</a>)</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/8e32e60d9024c05bc6f7adda08bdf6c539d0b0d4\"><code>8e32e60</code></a> Raise exception for shutdown on a connection already released to the pool (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3\">#3</a>...</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/9996e0fbf90b77083ad3c73737a6c6395703faa9\"><code>9996e0f</code></a> Fix emscripten CI for Chrome 137+ (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3599\">#3599</a>)</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/4fd1a99a59725faf0efc946ce3b6bc9a194420af\"><code>4fd1a99</code></a> Bump RECENT_DATE (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3617\">#3617</a>)</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/c4b5917e911a90c8bf279448df8952a682294135\"><code>c4b5917</code></a> Add support for the new <code>compression.zstd</code> module in Python 3.14 (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3611\">#3611</a>)</li>\n<li>Additional commits viewable in <a href=\"https://github.com/urllib3/urllib3/compare/2.3.0...2.5.0\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=urllib3&package-manager=pip&previous-version=2.3.0&new-version=2.5.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Cape installer freezes on Suricata installation\nBody: # Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n- [x] I am running the latest version\n- [x] I did read the README!\n- [x] I checked the documentation and found no answer\n- [x] I checked to make sure that this issue has not already been filed\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [x] I have read and checked all configs (with all optional parts)\n\n\n# Expected Behavior\n\nCAPEv2 installation using cape2.sh should proceed automatically\n\n# Current Behavior\n\nThe `cape2.sh` installation script \"freezes\" during Suricata installation, asking to resolve the `/etc/suricata/threshold.config` file conflict\n\nThe `install_suricata` function in `cape2.sh` ([here](https://github.com/kevoreilly/CAPEv2/blob/master/installer/cape2.sh#L694)) uses:\n```bash\nsudo apt-get install -y suricata suricata-update\n```\nwhich should proceed non-interactively due to `DEBIAN_FRONTEND=noninteractive`. However, if Suricata detects existing configuration files, `apt-get` still prompt for user input to decide whether to keep the old configuration or replace it.\n\n# Failure Information (for bugs)\n\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\n\n## Steps to Reproduce\n\n1. Follow the instructions [here](https://capev2.readthedocs.io/en/latest/installation/host/installation.html) until the CAPE installation section\n2. Install CAPEv2 running:\n\n   ```bash\n   wget https://raw.githubusercontent.com/kevoreilly/CAPEv2/master/installer/cape2.sh; chmod +x cape2.sh; sudo ./cape2.sh all cape | tee cape.log\n   ```\n3. Wait until the script reaches the Suricata installation step.\n4. Observe that the installer stops at:\n\n   ```\n   Configuration file '/etc/suricata/threshold.config'\n   ==> File on system created by you or by a script.\n   ==> File also in package provided by package maintainer.\n   What would you like to do about it ?  Your options are:\n    Y or I  : install the package maintainer's version\n    N or O  : keep your currently-installed version\n      D     : show the differences between the versions\n      Z     : start a shell to examine the situation\n   The default action is to keep your current version.\n   *** threshold.config (Y/I/N/O/D/Z) [default=N] ?\n   ```\n\n## Context\n\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\n\n| Question         | Answer\n|------------------|--------------------\n| Git commit       | 833a37effde090e85525a51b7b3dc80608cdd45e\n| OS version       | Ubuntu 24.04\n\n## Failure Logs\n\nTo workaround this I've added a `--force-confold` when installing suricata, in this way we are forcing apt-get to automatically keep the existing configuration files (default option). \n\nHere is the log snippet that refers to the issue:\n```\n[+] Installing systemd configuration\n[+] Installing Suricata\nHit:1 http://fr.archive.ubuntu.com/ubuntu noble InRelease\nHit:2 http://security.ubuntu.com/ubuntu noble-security InRelease\nHit:3 http://fr.archive.ubuntu.com/ubuntu noble-updates InRelease\nHit:4 http://fr.archive.ubuntu.com/ubuntu noble-backports InRelease\nHit:5 http://apt.postgresql.org/pub/repos/apt noble-pgdg InRelease\nGet:6 https://ppa.launchpadcontent.net/oisf/suricata-stable/ubuntu noble InRelease [18.1 kB]\nIgn:7 https://repo.mongodb.org/apt/ubuntu noble/mongodb-org/4.4 InRelease\nHit:8 https://deb.torproject.org/torproject.org jammy InRelease\nErr:9 https://repo.mongodb.org/apt/ubuntu noble/mongodb-org/4.4 Release\n  404  Not Found [IP: 99.86.91.14 443]\nGet:10 https://ppa.launchpadcontent.net/oisf/suricata-stable/ubuntu noble/main amd64 Packages [1,384 B]\nGet:11 https://ppa.launchpadcontent.net/oisf/suricata-stable/ubuntu noble/main Translation-en [1,204 B]\nReading package lists...\nRepository: 'Types: deb\nURIs: https://ppa.launchpadcontent.net/oisf/suricata-stable/ubuntu/\nSuites: noble\nComponents: main\n'\nDescription:\nSuricata IDS/IPS/NSM stable packages\nhttps://suricata.io/\nhttps://oisf.net/\n\nSuricata IDS/IPS/NSM - Suricata is a high performance Intrusion Detection and Prevention System and Network Security Monitoring engine.\n\nOpen Source and owned by a community run non-profit foundation, the Open Information Security Foundation (OISF). Suricata is developed by the OISF, its supporting vendors and the community.\n\nThis Engine supports:\n\n- Multi-Threading - provides for extremely fast and flexible operation on multicore systems.\n- Multi Tenancy - Per vlan/Per interface\n- Uses Rust for most protocol detection/parsing\n- TLS/SSL certificate matching/logging\n- JA3 TLS client fingerprinting\n- JA3S TLS server fingerprinting\n- IEEE 802.1ad (QinQ) and IEEE 802.1Q (VLAN) support\n- VXLAN support\n- All JSON output/logging capability\n- IDS runmode\n- IPS runmode\n- IDPS runmode\n- NSM runmode\n- eBPF/XDP\n- Automatic Protocol Detection and logging - IPv4/6, TCP, UDP, ICMP, HTTP, SMTP, TLS, SSH, FTP, SMB, DNS, NFS, TFTP, KRB5, DHCP, IKEv2, SNMP, SIP, RDP\n- SCADA automatic protocol detection - ENIP/DNP3/MODBUS\n- File Extraction HTTP/SMTP/FTP/NFS/SMB - over 4000 file types recognized and extracted from live traffic.\n- File MD5/SHA1/SHA256 matching\n- Gzip Decompression\n- Fast IP Matching\n- Datasets matching\n- Rustlang enabled protocol detection\n- Lua scripting\n\nand many more great features -\nhttps://suricata.io/features/all-features/\nMore info: https://launchpad.net/~oisf/+archive/ubuntu/suricata-stable\nAdding repository.\nReading package lists...\nBuilding dependency tree...\nReading state information...\nThe following additional packages will be installed:\n  isa-support libevent-pthreads-2.1-7t64 libhiredis1.1.0 libhyperscan5\n  libluajit-5.1-common libnet1 libnetfilter-queue1 sse3-support\nThe following NEW packages will be installed:\n  isa-support libevent-pthreads-2.1-7t64 libhiredis1.1.0 libhyperscan5\n  libluajit-5.1-common libnet1 libnetfilter-queue1 sse3-support suricata\n  suricata-update\n0 upgraded, 10 newly installed, 0 to remove and 13 not upgraded.\nNeed to get 7,577 kB of archives.\nAfter this operation, 34.1 MB of additional disk space will be used.\nGet:1 http://fr.archive.ubuntu.com/ubuntu noble/universe amd64 isa-support amd64 21build1 [16.7 kB]\nGet:2 http://fr.archive.ubuntu.com/ubuntu noble/universe amd64 sse3-support amd64 21build1 [3,406 B]\nGet:3 http://fr.archive.ubuntu.com/ubuntu noble/main amd64 libevent-pthreads-2.1-7t64 amd64 2.1.12-stable-9ubuntu2 [7,982 B]\nGet:4 http://fr.archive.ubuntu.com/ubuntu noble/universe amd64 libhiredis1.1.0 amd64 1.2.0-6ubuntu3 [41.4 kB]\nGet:5 http://fr.archive.ubuntu.com/ubuntu noble/universe amd64 libhyperscan5 amd64 5.4.2-2 [2,827 kB]\nGet:6 https://ppa.launchpadcontent.net/oisf/suricata-stable/ubuntu noble/main amd64 suricata amd64 1:8.0.0-0ubuntu2 [4,512 kB]\nGet:7 http://fr.archive.ubuntu.com/ubuntu noble/universe amd64 libluajit-5.1-common all 2.1.0+git20231223.c525bcb+dfsg-1 [49.2 kB]\nGet:8 http://fr.archive.ubuntu.com/ubuntu noble/main amd64 libnet1 amd64 1.1.6+dfsg-3.2build1 [44.5 kB]\nGet:9 http://fr.archive.ubuntu.com/ubuntu noble/universe amd64 libnetfilter-queue1 amd64 1.0.5-4build1 [15.1 kB]\nGet:10 http://fr.archive.ubuntu.com/ubuntu noble/universe amd64 suricata-update amd64 1.3.0-2 [59.1 kB]\nPreconfiguring packages ...\nFetched 7,577 kB in 3s (2,605 kB/s)\nSelecting previously unselected package isa-support:amd64.\n(Reading database ... 197687 files and directories currently installed.)\nPreparing to unpack .../isa-support_21build1_amd64.deb ...\nUnpacking isa-support:amd64 (21build1) ...\nSetting up isa-support:amd64 (21build1) ...\nSelecting previously unselected package sse3-support.\n(Reading database ... 197719 files and directories currently installed.)\nPreparing to unpack .../0-sse3-support_21build1_amd64.deb ...\nUnpacking sse3-support (21build1) ...\nSelecting previously unselected package libevent-pthreads-2.1-7t64:amd64.\nPreparing to unpack .../1-libevent-pthreads-2.1-7t64_2.1.12-stable-9ubuntu2_amd64.deb ...\nUnpacking libevent-pthreads-2.1-7t64:amd64 (2.1.12-stable-9ubuntu2) ...\nSelecting previously unselected package libhiredis1.1.0:amd64.\nPreparing to unpack .../2-libhiredis1.1.0_1.2.0-6ubuntu3_amd64.deb ...\nUnpacking libhiredis1.1.0:amd64 (1.2.0-6ubuntu3) ...\nSelecting previously unselected package libhyperscan5.\nPreparing to unpack .../3-libhyperscan5_5.4.2-2_amd64.deb ...\nUnpacking libhyperscan5 (5.4.2-2) ...\nSelecting previously unselected package libluajit-5.1-common.\nPreparing to unpack .../4-libluajit-5.1-common_2.1.0+git20231223.c525bcb+dfsg-1_all.deb ...\nUnpacking libluajit-5.1-common (2.1.0+git20231223.c525bcb+dfsg-1) ...\nSelecting previously unselected package libnet1:amd64.\nPreparing to unpack .../5-libnet1_1.1.6+dfsg-3.2build1_amd64.deb ...\nUnpacking libnet1:amd64 (1.1.6+dfsg-3.2build1) ...\nSelecting previously unselected package libnetfilter-queue1:amd64.\nPreparing to unpack .../6-libnetfilter-queue1_1.0.5-4build1_amd64.deb ...\nUnpacking libnetfilter-queue1:amd64 (1.0.5-4build1) ...\nSelecting previously unselected package suricata.\nPreparing to unpack .../7-suricata_1%3a8.0.0-0ubuntu2_amd64.deb ...\nUnpacking suricata (1:8.0.0-0ubuntu2) ...\nSelecting previously unselected package suricata-update.\nPreparing to unpack .../8-suricata-update_1.3.0-2_amd64.deb ...\nUnpacking suricata-update (1.3.0-2) ...\ndpkg: error processing archive /tmp/apt-dpkg-install-EA0rii/8-suricata-update_1.3.0-2_amd64.deb (--unpack):\n trying to overwrite '/usr/bin/suricata-update', which is also in package suricata 1:8.0.0-0ubuntu2\nErrors were encountered while processing:\n /tmp/apt-dpkg-install-EA0rii/8-suricata-update_1.3.0-2_amd64.deb\nReading package lists...\nBuilding dependency tree...\nReading state information...\nThe following additional packages will be installed:\n  libjemalloc2\nThe following NEW packages will be installed:\n  libjemalloc-dev libjemalloc2\n0 upgraded, 2 newly installed, 0 to remove and 13 not upgraded.\n8 not fully installed or removed.\nNeed to get 768 kB of archives.\nAfter this operation, 4,166 kB of additional disk space will be used.\nGet:1 http://fr.archive.ubuntu.com/ubuntu noble/universe amd64 libjemalloc2 amd64 5.3.0-2build1 [256 kB]\nGet:2 http://fr.archive.ubuntu.com/ubuntu noble/universe amd64 libjemalloc-dev amd64 5.3.0-2build1 [512 kB]\nFetched 768 kB in 0s (3,343 kB/s)\nSelecting previously unselected package libjemalloc2:amd64.\n(Reading database ... 197880 files and directories currently installed.)\nPreparing to unpack .../libjemalloc2_5.3.0-2build1_amd64.deb ...\nUnpacking libjemalloc2:amd64 (5.3.0-2build1) ...\nSelecting previously unselected package libjemalloc-dev.\nPreparing to unpack .../libjemalloc-dev_5.3.0-2build1_amd64.deb ...\nUnpacking libjemalloc-dev (5.3.0-2build1) ...\nSetting up libevent-pthreads-2.1-7t64:amd64 (2.1.12-stable-9ubuntu2) ...\nSetting up libjemalloc2:amd64 (5.3.0-2build1) ...\nSetting up libnet1:amd64 (1.1.6+dfsg-3.2build1) ...\nSetting up libjemalloc-dev (5.3.0-2build1) ...\nSetting up libluajit-5.1-common (2.1.0+git20231223.c525bcb+dfsg-1) ...\nSetting up libnetfilter-queue1:amd64 (1.0.5-4build1) ...\nSetting up sse3-support (21build1) ...\nSetting up libhiredis1.1.0:amd64 (1.2.0-6ubuntu3) ...\nSetting up libhyperscan5 (5.4.2-2) ...\nSetting up suricata (1:8.0.0-0ubuntu2) ...\n\nConfiguration file '/etc/suricata/threshold.config'\n ==> File on system created by you or by a script.\n ==> File also in package provided by package maintainer.\n   What would you like to do about it ?  Your options are:\n    Y or I  : install the package maintainer's version\n    N or O  : keep your currently-installed version\n      D     : show the differences between the versions\n      Z     : start a shell to examine the situation\n The default action is to keep your current version.\n*** threshold.config (Y/I/N/O/D/Z) [default=N] ?\n```\nComment: \"it not freezes\", it asks you what you want to do as you already have that config. as we would overwrite everything, that could break users systems so i don't see any issue, you must watch the instalation anyway\nComment: I agree that there should be a manual review step. However, even if I press any key at the prompt, the installation remains stuck, and I cannot proceed. In my opinion, this should be considered as an issue \nComment: that is the issue if it doesnt respond, but why it doesn't respond? does it generate some extra output? it not fails for rest of us so:\n* did you run installer in tmux or just as ssh session and session and was disconnected? i need that bit of info\nComment: I ran the script on a tmux session as suggested in the readme, the tmux session was still alive. The script was hanging at the point I've described in the first message and doesn't generate any other output\nComment: I just rerun `sudo ./cape2.sh suricata` with no issue, I guess you will need to add some debug lines there \r\n\r\n> El 10 jul 2025, a las 19:52, Stefano De Rosa ***@***.***> escribi\u00f3:\r\n> \r\n> \r\n> CaptWake\r\n>  left a comment \r\n> (kevoreilly/CAPEv2#2642)\r\n>  <https://github.com/kevoreilly/CAPEv2/issues/2642#issuecomment-3058390096>\r\n> I ran the script on a tmux session as suggested in the readme. It hangs there and doesn't generate any other output\r\n> \r\n> \u2014\r\n> Reply to this email directly, view it on GitHub <https://github.com/kevoreilly/CAPEv2/issues/2642#issuecomment-3058390096>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAOFH3723TI6RRRDU675MID3H2R7LAVCNFSM6AAAAACBHSHRBKVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZTANJYGM4TAMBZGY>.\r\n> You are receiving this because you modified the open/close state.\r\n> \r\n\r\n",
+  "Title: Incomplete Analysis: Missing Behavior, Screenshots, and Logs Despite Correct Configuration\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\n\n## This is open source and you are getting __free__ support so be friendly!\n\n# Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n- [x] I am running the latest version\n- [x] I did read the README!\n- [x] I checked the documentation and found no answer\n- [x] I checked to make sure that this issue has not already been filed\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [x] I have read and checked all configs (with all optional parts)\n\n\n# Expected Behavior\n\nThe analysis should include:\n\n- Full behavior analysis\n- Screenshots of the Windows environment\n- Complete log analysis\n\nEven though all configurations have been set correctly, these parts of the analysis are missing or incomplete.\n\n# Current Behavior\n\nThe analysis process does not complete successfully. The behavior analysis is missing, no screenshot of the Windows environment is generated, and the logs are incomplete despite all settings being properly configured in the config files.\n\n# Failure Information (for bugs)\n\n\n\n## Steps to Reproduce\n\n1. Run the analysis on the sample (provide specific details on the sample, like the hash if applicable).\n2. Check the results after the process completes.\n3. Observe that the behavior analysis, screenshots, and log analysis are missing.\n\n## Context\n\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\n\n| Question         | Answer\n|------------------|--------------------\n| Git commit       | Type `$ git log \\| head -n1` to find out\n| OS version       | Ubuntu 22 (host), Windows 10x64 (guest)\n\n## Failure Logs\n\nPlease include any relevant log snippets or files here.\n\nComment: auxiliary.conf\n```\n# Requires dependencies of software in vm as by:\n# https://www.fireeye.com/blog/threat-research/2016/02/greater_visibilityt.html\n# Windows 7 SP1, .NET at least 4.5, powershell 5 preferly over v4\n# KB3109118 - Script block logging back port update for WMF4\n# x64 - https://cuckoo.sh/vmcloak/Windows6.1-KB3109118-v4-x64.msu\n# x32 - https://cuckoo.sh/vmcloak/Windows6.1-KB3109118-v4-x86.msu\n# KB2819745 - WMF 4 (Windows Management Framework version 4) update for Windows 7\n# x64 - https://cuckoo.sh/vmcloak/Windows6.1-KB2819745-x64-MultiPkg.msu\n# x32 - https://cuckoo.sh/vmcloak/Windows6.1-KB2819745-x86-MultiPkg.msu\n# KB3191566 - https://www.microsoft.com/en-us/download/details.aspx?id=54616\n# You should create following registry entries\n# reg add \"HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\PowerShell\\ModuleLogging\\ModuleNames\" /v * /t REG_SZ /d * /f /reg:64\n# reg add \"HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\PowerShell\\ScriptBlockLogging\" /v EnableScriptBlockLogging /t REG_DWORD /d 00000001 /f /reg:64\n# reg add \"HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\PowerShell\\Transcription\" /v EnableTranscripting /t REG_DWORD /d 00000001 /f /reg:64\n# reg add \"HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\PowerShell\\Transcription\" /v OutputDirectory /t REG_SZ /d C:\\PSTranscipts /f /reg:64\n# reg add \"HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\PowerShell\\Transcription\" /v EnableInvocationHeader /t REG_DWORD /d 00000001 /f /reg:64\n\n# Modules to be enabled or not inside of the VM\n[auxiliary_modules]\namsi = yes\nbrowser = yes\ncurtain = yes\ndigisig = yes\ndisguise = yes\n# This is only useful in case you use KVM's dnsmasq. You need to set windows_static_route_gateway. Disguise must be enabled\nwindows_static_route = no\n#windows_static_route_gateway = 192.168.1.1\nevtx = yes\nhuman_windows = yes\nhuman_linux = yes\nprocmon = yes\nrecentfiles = yes\nscreenshots_windows = no\nscreenshots_linux = no\nsysmon_windows = yes\nsysmon_linux = no\ntlsdump = yes\nusage = yes\nfile_pickup = yes\npermissions = yes\npre_script = yes\nduring_script = yes\nfilecollector = yes\ntracee_linux = no\nsslkeylogfile = no\n# Requires setting up browser extension, check extra/browser_extension\nbrowsermonitor = yes\nwmi_etw = no\ndns_etw = no\nwatchdownloads = no\n#filecollector = yes\n\n[AzSniffer]\n# Enable or disable the use of Azure Network Watcher packet capture feature, disable standard sniffer if this is in use to not create concurrent .pcap files\nenabled = no\n\n[sniffer]\n# Enable or disable the use of an external sniffer (tcpdump) [yes/no].\nenabled = yes\n\n# enable remote tcpdump support\nremote = no\nhost = root@192.168.122.1\n\n# Specify the path to your local installation of tcpdump. Make sure this\n# path is correct.\ntcpdump = /usr/bin/tcpdump\n\n# Specify the network interface name on which tcpdump should monitor the\n# traffic. Make sure the interface is active.\ninterface = virbr1\n\n# Specify a Berkeley packet filter to pass to tcpdump.\nbpf = not arp\n\n[gateways]\n#RTR1 = 192.168.1.254\n#RTR2 = 192.168.1.1\n#INETSIM = 192.168.1.2\n\n[QemuScreenshots]\n# Enable or disable the use of QEMU as screenshot capture [yes/no].\n# screenshots_linux and screenshots_windows must be disabled\nenabled = no\n\n[Mitmdump]\n# Enable or disable the use of mitmdump (mitmproxy) to get dump.har [yes/no].\n# This module requires installed mitmproxy see install_mitmproxy\n# (https://github.com/kevoreilly/CAPEv2/blob/master/installer/cape2.sh#L1320)\nenabled = no\n\n```\n\nkvm.conf\n```\n[kvm]\n# Specify a comma-separated list of available machines to be used. For each\n# specified ID you have to define a dedicated section containing the details\n# on the respective machine. (E.g. cuckoo1,cuckoo2,cuckoo3)\nmachines = windows10x64\n\ninterface = virbr1\n# To connect to local or remote host\ndsn = qemu:///system\n\n# To allow copy & paste. For details see example below\n[windows10x64]\nlabel = windows10x64\nplatform = windows\nip = 192.168.122.50\narch = x64\ntags = 22H2\nsnapshot = snapshot1\nresultserver_ip = 192.168.122.1\nreserved = no\n\n#[cuckoo1]\n# Specify the label name of the current machine as specified in your\n# libvirt configuration.\n#label = windows10x64\n\n# Specify the operating system platform used by current machine\n# [windows/darwin/linux].\n#platform = windows\n\n# Specify the IP address of the current virtual machine. Make sure that the\n# IP address is valid and that the host machine is able to reach it. If not,\n# the analysis will fail. You may want to configure your network settings in\n# /etc/libvirt/<hypervisor>/networks/\n#ip = 192.168.122.50\n\n# Specify tags to display\n# Tags may be used to specify on which guest machines a sample should be run\n# NOTE - One of the following OS version tags MUST be included for Windows VMs:\n# winxp,win7, win10, win11\n# Some samples will only detonate on specific versions of Windows (see web.conf packages for more info)\n# Example: MSIX - Windows >= 10\n# tags = winxp,acrobat_reader_6\n\n# (Optional) Specify the snapshot name to use.\n# If empty, it will use the current/latest snapshot.\n# Example (Snapshot1 is the snapshot name):\n# snapshot = Snapshot1\n\n# (Optional) Specify the name of the network interface that should be used\n# when dumping network traffic from this machine with tcpdump. If specified,\n# overrides the default interface specified in auxiliary.conf\n# Example (virbr0 is the interface name):\n# interface = virbr0\n\n# (Optional) Specify the IP of the Result Server, as your virtual machine sees it.\n# The Result Server will always bind to the address and port specified in cuckoo.conf,\n# however you could set up your virtual network to use NAT/PAT, so you can specify here\n# the IP address for the Result Server as your machine sees it. If you don't specify an\n# address here, the machine will use the default value from cuckoo.conf.\n# NOTE: if you set this option you have to set result server IP to 0.0.0.0 in cuckoo.conf.\n# Example:\n# resultserver_ip = 192.168.122.101\n\n# (Optional) Specify the port for the Result Server, as your virtual machine sees it.\n# The Result Server will always bind to the address and port specified in cuckoo.conf,\n# however you could set up your virtual network to use NAT/PAT, so you can specify here\n# the port for the Result Server as your machine sees it. If you don't specify a port\n# here, the machine will use the default value from cuckoo.conf.\n# Example:\n# resultserver_port = 2042\n\n# Set the machine architecture\n# Required to auto select proper machine architecture for sample\n# x64 or x86\n#arch = x64\n\n# (Optional) Specify whether or not the machine should be reserved, meaning that it will\n# only be used for a detonation if specifically requested by its label.\n# reserved = no\n```\n\ncuckoo.conf\n```\n[cuckoo]\n\n# Ignore Signals, will quit CAPE inmediatelly instead wait jobs to finish\nignore_signals = yes\n\n# Which category of tasks do you want to analyze?\ncategories = static, pcap, url, file\n\n# If turned on, Cuckoo will delete the original file after its analysis\n# has been completed.\ndelete_original = off\n\n# Archives are not deleted by default, as it extracts and \"original file\" become extracted file\ndelete_archive = on\n\n# If turned on, Cuckoo will delete the copy of the original file in the\n# local binaries repository after the analysis has finished. (On *nix this\n# will also invalidate the file called \"binary\" in each analysis directory,\n# as this is a symlink.)\ndelete_bin_copy = off\n\n# Specify the name of the machinery module to use, this module will\n# define the interaction between Cuckoo and your virtualization software\n# of choice.\nmachinery = kvm\n\n# Enable screenshots of analysis machines while running.\nmachinery_screenshots = on\n\n# Specify if a scaling bounded semaphore should be used by the scheduler for tasking the VMs.\n# This is only applicable to auto-scaling machineries such as Azure and AWS.\n# There is a specific configuration key in each machinery that is used to initialize the semaphore.\n# For Azure, this configuration key is \"total_machines_limit\"\n# For AWS, this configuration key is \"dynamic_machines_limit\"\nscaling_semaphore = off\n# A configurable wait time between updating the limit value of the scaling bounded semaphore\nscaling_semaphore_update_timer = 10\n\n# Specify a timeout for tasks, useful if you are bound to timely reports awaited by users\ntask_timeout = off\ntask_pending_timeout = 0\ntask_timeout_scan_interval = 30\n\n# Enable creation of memory dump of the analysis machine before shutting\n# down. Even if turned off, this functionality can also be enabled at\n# submission. Currently available for: VirtualBox and libvirt modules (KVM).\nmemory_dump = on\n\n# When the timeout of an analysis is hit, the VM is just killed by default.\n# For some long-running setups it might be interesting to terminate the\n# moinitored processes before killing the VM so that connections are closed.\nterminate_processes = off\n\n# Enable automatically re-schedule of \"broken\" tasks each startup.\n# Each task found in status \"processing\" is re-queued for analysis.\nreschedule = on\n\n# Fail \"unserviceable\" tasks as they are queued.\n# Any task found that will never be analyzed based on the available analysis machines\n# will have its status set to \"failed\".\nfail_unserviceable = on\n\n# Limit the amount of analysis jobs a Cuckoo process goes through.\n# This can be used together with a watchdog to mitigate risk of memory leaks.\nmax_analysis_count = 0\n\n# Limit the number of concurrently executing analysis machines.\n# This may be useful on systems with limited resources.\n# Set to 0 to disable any limits.\nmax_machines_count = 10\n\n# Limit the amount of VMs that are allowed to start in parallel. Generally\n# speaking starting the VMs is one of the more CPU intensive parts of the\n# actual analysis. This option tries to avoid maxing out the CPU completely.\n# This configuration option is only relevant for machineries that have a set\n# amount of VMs and are restricted by CPU usage.\n# If you are using an auto-scaling machinery such as Azure or AWS,\n# set this value to 0.\nmax_vmstartup_count = 5\n\n# Allow to schedule and analyze static jobs while all VMs are busy\n# it doesn't require VM, but by default logic it will be on hold\nallow_static = no\n\n# Minimum amount of free space (in MB) available before starting a new task.\n# This tries to avoid failing an analysis because the reports can't be written\n# due out-of-diskspace errors. Setting this value to 0 disables the check.\n# (Note: this feature is currently not supported under Windows.)\nfreespace = 0\n# Process tasks, but not reach out of memory\nfreespace_processing = 0\n\n# Temporary directory containing the files uploaded through Cuckoo interfaces\n# (web.py, api.py, Django web interface).\ntmppath = /tmp\n\n# Delta in days from current time to set the guest clocks to for file analyses\n# A negative value sets the clock back, a positive value sets it forward.\n# The default of 0 disables this option\n# Note that this can still be overridden by the per-analysis clock setting\n# and it is not performed by default for URL analysis as it will generally\n# result in SSL errors\ndaydelta = 0\n\n# Path to the unix socket for running root commands.\nrooter = /tmp/cuckoo-rooter\n\n# Enable if you want to see a DEBUG log periodically containing backlog of pending tasks, locked vs unlocked machines.\n# NOTE: Enabling this feature adds 4 database calls every 10 seconds.\nperiodic_log = off\n\n# Max filename length for submissions, before truncation. 196 is arbitrary.\nmax_len = 196\n\n# If it is greater than this, call truncate the filename further for sanitizing purposes.\n# Length truncated to is controlled by sanitize_to_len.\n#\n# This is to prevent long filenames such as files named by hash.\nsanitize_len = 32\nsanitize_to_len = 24\n\n[resultserver]\n# The Result Server is used to receive in real time the behavioral logs\n# produced by the analyzer.\n# Specify the IP address of the host. The analysis machines should be able\n# to contact the host through such address, so make sure it's valid.\n# NOTE: if you set resultserver IP to 0.0.0.0 you have to set the option\n# `resultserver_ip` for all your virtual machines in machinery configuration.\nip = 0.0.0.0\n\n# Specify a port number to bind the result server on.\nport = 2042\n\n# Force the port chosen above, don't try another one (we can select another\n# port dynamically if we can not bind this one, but that is not an option\n# in some setups)\nforce_port = yes\n\npool_size = 0\n\n# Should the server write the legacy CSV format?\n# (if you have any custom processing on those, switch this on)\nstore_csvs = on\n\n# Maximum size of uploaded files from VM (screenshots, dropped files, log)\n# The value is expressed in bytes, by default 100MB.\nupload_max_size = 1000000000\n\n# To enable trimming of huge binaries go to -> web.conf -> general -> enable_trim\n# Prevent upload of files that passes upload_max_size?\ndo_upload_max_size = no\n\n[processing]\n# Set the maximum size of analyses generated files to process. This is used\n# to avoid the processing of big files which may take a lot of processing\n# time. The value is expressed in bytes, by default 200MB.\nanalysis_size_limit = 200000000\n\n# Enable or disable DNS lookups.\nresolve_dns = on\n\n# Enable or disable reverse DNS lookups\n# This information currently is not displayed in the web interface\nreverse_dns = off\n\n# Enable PCAP sorting, needed for the connection content view in the web interface.\nsort_pcap = on\n\n[database]\n# Specify the database connection string.\n# Examples, see documentation for more:\n# sqlite:///foo.db\n# postgresql://foo:bar@localhost:5432/mydatabase\n# mysql://foo:bar@localhost/mydatabase\n# If empty, default is a SQLite in db/cuckoo.db.\n# SQLite doens't support database upgrades!\n# For production we strongly suggest go with PostgreSQL\nconnection = postgresql://cape:SuperPuperSecret@localhost:5432/cape\n# If you use PostgreSQL: SSL mode\n# https://www.postgresql.org/docs/current/libpq-ssl.html#LIBPQ-SSL-SSLMODE-STATEMENTS\npsql_ssl_mode = disable\n\n# Database connection timeout in seconds.\n# If empty, default is set to 60 seconds.\ntimeout = 150\n\n# Log all SQL statements issued to the database.\nlog_statements = off\n\n[timeouts]\n# Set the default analysis timeout expressed in seconds. This value will be\n# used to define after how many seconds the analysis will terminate unless\n# otherwise specified at submission.\ndefault = 300\n\n# Set the critical timeout expressed in (relative!) seconds. It will be added\n# to the default timeout above and after this timeout is hit\n# Cuckoo will consider the analysis failed and it will shutdown the machine\n# no matter what. When this happens the analysis results will most likely\n# be lost.\ncritical = 300\n\n# Maximum time to wait for virtual machine status change. For example when\n# shutting down a vm. Default is 300 seconds.\nvm_state = 150\n\n[tmpfs]\n# only if you using volatility to speedup IO\n# mkdir -p /mnt/tmpfs\n# mount -t tmpfs -o size=50g ramfs /mnt/tmpfs\n# chown cape:cape /mnt/tmpfs\n#\n# vim /etc/fstab\n# tmpfs       /mnt/tmpfs tmpfs   nodev,nosuid,noexec,nodiratime,size=50g   0 0\n#\n# Add crontab with\n# @reboot chown cape:cape /mnt/tmpfs -R\nenabled = no\npath = /mnt/tmpfs/\n# in mb\nfreespace = 4096\n\n[cleaner]\n# Invoke cleanup if <= of free space detected. see/set freespace/freespace_processing\n# format is 1d, 12h, 120m\nenabled = no\n# set any value to 0 to disable it. In days\nbinaries = 0\ntmp = 0\n# Remove analysis folder\nanalysis = 0\n# Delete mongo data\nmongo = no\n# Clean orphan files in mongodb\nunused_files_in_mongodb = no\n```\nComment: what about processing service and process.log?\nComment: > what about processing service and process.log?\n\ncape-processor.service\n```\nsudo systemctl status cape-processor.service \n\u25cf cape-processor.service - CAPE report processor\n     Loaded: loaded (/lib/systemd/system/cape-processor.service; enabled; vendor preset: enabled)\n     Active: active (running) since Thu 2025-07-10 07:55:02 UTC; 46min ago\n       Docs: https://github.com/kevoreilly/CAPEv2\n   Main PID: 69749 (/home/cape/.cac)\n      Tasks: 74 (limit: 77098)\n     Memory: 602.8M\n        CPU: 34.573s\n     CGroup: /system.slice/cape-processor.service\n             \u251c\u250069749 \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python process.py -p7 auto -pt 900\"\n             \u251c\u250070756 \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python process.py -p7 auto -pt 900\"\n             \u251c\u250070757 \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python process.py -p7 auto -pt 900\"\n             \u251c\u250070758 \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python process.py -p7 auto -pt 900\"\n             \u251c\u250070759 \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python process.py -p7 auto -pt 900\"\n             \u251c\u250070760 \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python process.py -p7 auto -pt 900 [Task 9]\"\n             \u251c\u250070761 \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python process.py -p7 auto -pt 900\"\n             \u2514\u250070762 \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python process.py -p7 auto -pt 900\"\n\nJul 10 08:09:44 SandboxHost poetry[70760]:     {% block content %}{% endblock %}\nJul 10 08:09:44 SandboxHost poetry[70760]:   File \"/opt/CAPEv2/data/html/report.html\", line 16, in block 'content'\nJul 10 08:09:44 SandboxHost poetry[70760]:     {% include \"sections/behavior.html\" %}\nJul 10 08:09:44 SandboxHost poetry[70760]:   File \"/opt/CAPEv2/data/html/sections/behavior.html\", line 163, in top-level template code\nJul 10 08:09:44 SandboxHost poetry[70760]:     {% if results.behavior.summary.files %}\nJul 10 08:09:44 SandboxHost poetry[70760]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/jinja2/environment>\nJul 10 08:09:44 SandboxHost poetry[70760]:     return getattr(obj, attribute)\nJul 10 08:09:44 SandboxHost poetry[70760]: jinja2.exceptions.UndefinedError: 'dict object' has no attribute 'summary'\nJul 10 08:09:44 SandboxHost poetry[70760]: 2025-07-10 08:09:44,923 [Task 9] [dev_utils.mongodb] INFO: attempting to delete calls for 1 tasks\nJul 10 08:09:45 SandboxHost poetry[69749]: 2025-07-10 08:09:45,107 [root] INFO: Reports generation completed for Task #9\n\n```\n\nlog process\n```\nJul 10 07:55:02 SandboxHost systemd[1]: Started CAPE report processor.\nJul 10 07:55:04 SandboxHost poetry[69749]: 2025-07-10 07:55:04,400 [root] INFO: Processing analysis data\nJul 10 08:09:15 SandboxHost poetry[69749]: 2025-07-10 08:09:15,591 [root] INFO: Processing analysis data for Task #9\nJul 10 08:09:15 SandboxHost poetry[69749]: XLMMacroDeobfuscator: pywin32 is not installed (only is required if you want to use MS Excel)\nJul 10 08:09:15 SandboxHost poetry[69749]: pip3 install certvalidator asn1crypto mscerts\nJul 10 08:09:21 SandboxHost poetry[70760]: 2025-07-10 08:09:21,380 [Task 9] [lib.cuckoo.common.integrations.file_extra_info] ERROR: You have permission error. F>\nJul 10 08:09:22 SandboxHost poetry[70760]: 2025-07-10 08:09:22,503 [Task 9] [lib.cuckoo.common.integrations.virustotal] ERROR: VT: Request failed\nJul 10 08:09:22 SandboxHost poetry[70760]: 2025-07-10 08:09:22,804 [Task 9] [lib.cuckoo.common.integrations.file_extra_info] ERROR: You have permission error. F>\nJul 10 08:09:22 SandboxHost poetry[70760]: 2025-07-10 08:09:22,833 [Task 9] [modules.processing.behavior] WARNING: Analysis results folder does not exist at pat>\nJul 10 08:09:32 SandboxHost poetry[70760]: 2025-07-10 08:09:32,172 [Task 9] [modules.processing.suricata] WARNING: Suricata: Failed to find usable Suricata log >\nJul 10 08:09:32 SandboxHost poetry[70760]: 2025-07-10 08:09:32,174 [Task 9] [lib.cuckoo.core.plugins] INFO: Logs folder doesn't exist, maybe something with with>\nJul 10 08:09:44 SandboxHost poetry[70760]: 2025-07-10 08:09:44,875 [Task 9] [modules.reporting.reporthtml] ERROR: Failed to generate summary HTML report: 'dict >\nJul 10 08:09:44 SandboxHost poetry[70760]: Traceback (most recent call last):\nJul 10 08:09:44 SandboxHost poetry[70760]:   File \"/opt/CAPEv2/utils/../modules/reporting/reporthtml.py\", line 85, in run\nJul 10 08:09:44 SandboxHost poetry[70760]:     html = tpl.render({\"results\": results, \"summary_report\": False})\nJul 10 08:09:44 SandboxHost poetry[70760]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/jinja2/environment>\nJul 10 08:09:44 SandboxHost poetry[70760]:     self.environment.handle_exception()\nJul 10 08:09:44 SandboxHost poetry[70760]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/jinja2/environment>\nJul 10 08:09:44 SandboxHost poetry[70760]:     raise rewrite_traceback_stack(source=source)\nJul 10 08:09:44 SandboxHost poetry[70760]:   File \"/opt/CAPEv2/data/html/report.html\", line 1, in top-level template code\nJul 10 08:09:44 SandboxHost poetry[70760]:     {% extends \"base-report.html\" %}\nJul 10 08:09:44 SandboxHost poetry[70760]:   File \"/opt/CAPEv2/data/html/base-report.html\", line 67, in top-level template code\nJul 10 08:09:44 SandboxHost poetry[70760]:     {% block content %}{% endblock %}\nJul 10 08:09:44 SandboxHost poetry[70760]:   File \"/opt/CAPEv2/data/html/report.html\", line 16, in block 'content'\nJul 10 08:09:44 SandboxHost poetry[70760]:     {% include \"sections/behavior.html\" %}\nJul 10 08:09:44 SandboxHost poetry[70760]:   File \"/opt/CAPEv2/data/html/sections/behavior.html\", line 163, in top-level template code\nJul 10 08:09:44 SandboxHost poetry[70760]:     {% if results.behavior.summary.files %}\nJul 10 08:09:44 SandboxHost poetry[70760]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/jinja2/environment>\nJul 10 08:09:44 SandboxHost poetry[70760]:     return getattr(obj, attribute)\nJul 10 08:09:44 SandboxHost poetry[70760]: jinja2.exceptions.UndefinedError: 'dict object' has no attribute 'summary'\nJul 10 08:09:44 SandboxHost poetry[70760]: 2025-07-10 08:09:44,923 [Task 9] [dev_utils.mongodb] INFO: attempting to delete calls for 1 tasks\nJul 10 08:09:45 SandboxHost poetry[69749]: 2025-07-10 08:09:45,107 [root] INFO: Reports generation completed for Task #9\nlines 1063-1100/1100 (END)\n\n```\n\nComment: disable reporthtml in reporting.conf and restart processing with root as `systemctl restart cape-processor`. This is known issue due to lib issues. But i don't have time to fix it\nComment: > disable reporthtml in reporting.conf and restart processing with root as `systemctl restart cape-processor`. This is known issue due to lib issues. But i don't have time to fix it\n\nokay already disabled reporthtml, but its not about reporthtml\n\nthis screenshot show uncompleted result, \n<img width=\"2940\" height=\"1446\" alt=\"Image\" src=\"https://github.com/user-attachments/assets/0ee03b5a-d677-4169-aadb-5980b842f6cc\" />\n\n<img width=\"2836\" height=\"1464\" alt=\"Image\" src=\"https://github.com/user-attachments/assets/dfe7dbc4-1edd-4fdb-bd37-2dbe345d1b7c\" />\n\n<img width=\"2940\" height=\"1446\" alt=\"Image\" src=\"https://github.com/user-attachments/assets/d3caffe5-73c5-445a-9c03-472c2035a3ce\" />\n\nComment: if you refer to screenshots, what about analysis log on webgui/inside of analysis folder? did you install pillow?\nComment: on webgui its blank / nothing show\n\non log folder, process-10.log\n```\ncat process-10.log \n2025-07-10 11:19:42,062 [Task 10] [lib.cuckoo.common.integrations.virustotal] ERROR: VT: Request failed\n2025-07-10 11:19:42,479 [Task 10] [modules.processing.behavior] WARNING: Analysis results folder does not exist at path \"/opt/CAPEv2/storage/analyses/10/logs\"\n2025-07-10 11:19:52,185 [Task 10] [modules.processing.suricata] WARNING: Suricata: Failed to find usable Suricata log file\n2025-07-10 11:19:52,186 [Task 10] [lib.cuckoo.core.plugins] INFO: Logs folder doesn't exist, maybe something with with analyzer folder, any change?\n2025-07-10 11:20:05,197 [Task 10] [dev_utils.mongodb] INFO: attempting to delete calls for 1 tasks\n```\n\nalready install pillow on host\n\nComment: That is process.log, we need analysis.log\nComment: > That is process.log, we need analysis.log\n\n<img width=\"1568\" height=\"94\" alt=\"Image\" src=\"https://github.com/user-attachments/assets/c85a908d-ce66-485f-b9f0-14b158c2d468\" />\n\nthere is no process.log been create\nComment: wha about cuckoo.log for that tasks? i have feel that you didn't configure properly your VM\nComment: so far from configs i do see that you run your VM in nat, and set resultserver to 0.0.0.0? is there any reason why do you do it and not using hostonly? the configuration ifself should works, depending of your VM ip configuration\nComment: > so far from configs i do see that you run your VM in nat, and set resultserver to 0.0.0.0? is there any reason why do you do it and not using hostonly? the configuration ifself should works, depending of your VM ip configuration\n\ni just follow tutorial from medium https://medium.com/@rizqisetyokus/building-capev2-automated-malware-analysis-sandbox-part-2-0c47e4b5cbcd\n\nand i just try nat bcuz when host only my host cant ping to guest, but same result\n\ncuckoo.log\n```\n2025-07-10 07:56:56,747 [lib.cuckoo.core.machinery_manager] INFO: Task #9: found useable machine windows10x64 (arch=x64, platform=windows)\n2025-07-10 07:56:56,747 [lib.cuckoo.core.scheduler] INFO: Task #9: Processing task\n2025-07-10 07:56:57,157 [lib.cuckoo.core.analysis_manager] INFO: Task #9: File already exists at '/opt/CAPEv2/storage/binaries/dbdb425f59933650146ae3c32313677afa4ff3e27c739a2a8e528095f68a950a'\n2025-07-10 07:56:57,157 [lib.cuckoo.core.analysis_manager] INFO: Task #9: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_mtd3dhr3/dbdb425f59933650146a.exe'\n2025-07-10 07:57:13,427 [lib.cuckoo.core.analysis_manager] INFO: Task #9: Enabled route 'internet'.\n2025-07-10 07:57:13,432 [modules.auxiliary.Mitmdump] INFO: Mitmdump module loaded\n2025-07-10 07:57:13,432 [modules.auxiliary.QemuScreenshots] INFO: QEMU screenshots module loaded\n2025-07-10 07:57:13,453 [modules.auxiliary.sniffer] INFO: Started sniffer with PID 70239 (interface=virbr1, host=192.168.122.50, dump path=/opt/CAPEv2/storage/analyses/9/dump.pcap)\n2025-07-10 07:57:14,519 [lib.cuckoo.core.guest] INFO: Task #9: Starting analysis on guest (id=windows10x64, ip=192.168.122.50)\n2025-07-10 08:07:15,020 [lib.cuckoo.core.analysis_manager] ERROR: Task #9: Machine windows10x64: the guest initialization hit the critical timeout, analysis aborted\nTraceback (most recent call last):\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 458, in perform_analysis\n    self.run_analysis_on_guest()\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 424, in run_analysis_on_guest\n    guest_manager.start_analysis(options)\n  File \"/opt/CAPEv2/lib/cuckoo/core/guest.py\", line 253, in start_analysis\n    self.wait_available()\n  File \"/opt/CAPEv2/lib/cuckoo/core/guest.py\", line 162, in wait_available\n    raise CuckooGuestCriticalTimeout(\nlib.cuckoo.common.exceptions.CuckooGuestCriticalTimeout: Machine windows10x64: the guest initialization hit the critical timeout, analysis aborted\n2025-07-10 08:07:15,097 [lib.cuckoo.core.analysis_manager] INFO: Task #9: Disabled route 'internet'\n2025-07-10 08:09:10,883 [lib.cuckoo.core.analysis_manager] INFO: Task #9: Completed analysis unsuccessfully.\n2025-07-10 08:09:10,892 [lib.cuckoo.core.analysis_manager] INFO: Task #9: analysis procedure completed\n2025-07-10 11:07:18,342 [lib.cuckoo.core.machinery_manager] INFO: Task #10: found useable machine windows10x64 (arch=x64, platform=windows)\n2025-07-10 11:07:18,342 [lib.cuckoo.core.scheduler] INFO: Task #10: Processing task\n2025-07-10 11:07:18,751 [lib.cuckoo.core.analysis_manager] INFO: Task #10: File already exists at '/opt/CAPEv2/storage/binaries/dbdb425f59933650146ae3c32313677afa4ff3e27c739a2a8e528095f68a950a'\n2025-07-10 11:07:18,751 [lib.cuckoo.core.analysis_manager] INFO: Task #10: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_sidwcipl/dbdb425f59933650146a.exe'\n2025-07-10 11:07:35,206 [lib.cuckoo.core.analysis_manager] INFO: Task #10: Enabled route 'internet'.\n2025-07-10 11:07:35,211 [modules.auxiliary.Mitmdump] INFO: Mitmdump module loaded\n2025-07-10 11:07:35,211 [modules.auxiliary.QemuScreenshots] INFO: QEMU screenshots module loaded\n2025-07-10 11:07:35,229 [modules.auxiliary.sniffer] INFO: Started sniffer with PID 76692 (interface=virbr1, host=192.168.122.50, dump path=/opt/CAPEv2/storage/analyses/10/dump.pcap)\n2025-07-10 11:07:36,117 [lib.cuckoo.core.guest] INFO: Task #10: Starting analysis on guest (id=windows10x64, ip=192.168.122.50)\n2025-07-10 11:17:36,592 [lib.cuckoo.core.analysis_manager] ERROR: Task #10: Machine windows10x64: the guest initialization hit the critical timeout, analysis aborted\nTraceback (most recent call last):\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 458, in perform_analysis\n    self.run_analysis_on_guest()\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 424, in run_analysis_on_guest\n    guest_manager.start_analysis(options)\n  File \"/opt/CAPEv2/lib/cuckoo/core/guest.py\", line 253, in start_analysis\n    self.wait_available()\n  File \"/opt/CAPEv2/lib/cuckoo/core/guest.py\", line 162, in wait_available\n    raise CuckooGuestCriticalTimeout(\nlib.cuckoo.common.exceptions.CuckooGuestCriticalTimeout: Machine windows10x64: the guest initialization hit the critical timeout, analysis aborted\n2025-07-10 11:17:36,686 [lib.cuckoo.core.analysis_manager] INFO: Task #10: Disabled route 'internet'\n2025-07-10 11:19:33,201 [lib.cuckoo.core.analysis_manager] INFO: Task #10: Completed analysis unsuccessfully.\n2025-07-10 11:19:33,207 [lib.cuckoo.core.analysis_manager] INFO: Task #10: analysis procedure completed\n```\nComment: so as i told, you have problems with VM setup, instead of follow random writeups, read the official documentation first and then for side ideas you can check the writeups",
+  "Title: prevent dns rebinding to internal networks\nBody: None",
+  "Title: Bump urllib3 from 2.3.0 to 2.5.0\nBody: Bumps [urllib3](https://github.com/urllib3/urllib3) from 2.3.0 to 2.5.0.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a href=\"https://github.com/urllib3/urllib3/releases\">urllib3's releases</a>.</em></p>\n<blockquote>\n<h2>2.5.0</h2>\n<h2>\ud83d\ude80 urllib3 is fundraising for HTTP/2 support</h2>\n<p><a href=\"https://sethmlarson.dev/urllib3-is-fundraising-for-http2-support\">urllib3 is raising ~$40,000 USD</a> to release HTTP/2 support and ensure long-term sustainable maintenance of the project after a sharp decline in financial support. If your company or organization uses Python and would benefit from HTTP/2 support in Requests, pip, cloud SDKs, and thousands of other projects <a href=\"https://opencollective.com/urllib3\">please consider contributing financially</a> to ensure HTTP/2 support is developed sustainably and maintained for the long-haul.</p>\n<p>Thank you for your support.</p>\n<h1>Security issues</h1>\n<p>urllib3 2.5.0 fixes two moderate security issues:</p>\n<ul>\n<li>Pool managers now properly control redirects when <code>retries</code> is passed \u2014 CVE-2025-50181 reported by <a href=\"https://github.com/sandumjacob\"><code>@\u200bsandumjacob</code></a> (5.3 Medium, GHSA-pq67-6m6q-mj2v)</li>\n<li>Redirects are now controlled by urllib3 in the Node.js runtime \u2014 CVE-2025-50182 (5.3 Medium, GHSA-48p4-8xcf-vxj5)</li>\n</ul>\n<h1>Features</h1>\n<ul>\n<li>Added support for the <code>compression.zstd</code> module that is new in Python 3.14. See <a href=\"https://peps.python.org/pep-0784/\">PEP 784</a> for more information. (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3610\">#3610</a>)</li>\n<li>Added support for version 0.5 of <code>hatch-vcs</code> (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3612\">#3612</a>)</li>\n</ul>\n<h1>Bugfixes</h1>\n<ul>\n<li>Raised exception for <code>HTTPResponse.shutdown</code> on a connection already released to the pool. (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3581\">#3581</a>)</li>\n<li>Fixed incorrect <code>CONNECT</code> statement when using an IPv6 proxy with <code>connection_from_host</code>. Previously would not be wrapped in <code>[]</code>. (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3615\">#3615</a>)</li>\n</ul>\n<h2>2.4.0</h2>\n<h2>\ud83d\ude80 urllib3 is fundraising for HTTP/2 support</h2>\n<p><a href=\"https://sethmlarson.dev/urllib3-is-fundraising-for-http2-support\">urllib3 is raising ~$40,000 USD</a> to release HTTP/2 support and ensure long-term sustainable maintenance of the project after a sharp decline in financial support. If your company or organization uses Python and would benefit from HTTP/2 support in Requests, pip, cloud SDKs, and thousands of other projects <a href=\"https://opencollective.com/urllib3\">please consider contributing financially</a> to ensure HTTP/2 support is developed sustainably and maintained for the long-haul.</p>\n<p>Thank you for your support.</p>\n<h1>Features</h1>\n<ul>\n<li>Applied PEP 639 by specifying the license fields in pyproject.toml. (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3522\">#3522</a>)</li>\n<li>Updated exceptions to save and restore more properties during the pickle/serialization process. (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3567\">#3567</a>)</li>\n<li>Added <code>verify_flags</code> option to <code>create_urllib3_context</code> with a default of <code>VERIFY_X509_PARTIAL_CHAIN</code> and <code>VERIFY_X509_STRICT</code> for Python 3.13+. (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3571\">#3571</a>)</li>\n</ul>\n<h1>Bugfixes</h1>\n<ul>\n<li>Fixed a bug with partial reads of streaming data in Emscripten. (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3555\">#3555</a>)</li>\n</ul>\n<h1>Misc</h1>\n<ul>\n<li>Switched to uv for installing development dependecies. (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3550\">#3550</a>)</li>\n<li>Removed the <code>multiple.intoto.jsonl</code> asset from GitHub releases. Attestation of release files since v2.3.0 can be found on PyPI. (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3566\">#3566</a>)</li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/urllib3/urllib3/blob/main/CHANGES.rst\">urllib3's changelog</a>.</em></p>\n<blockquote>\n<h1>2.5.0 (2025-06-18)</h1>\n<h2>Features</h2>\n<ul>\n<li>Added support for the <code>compression.zstd</code> module that is new in Python 3.14.\nSee <code>PEP 784 &lt;https://peps.python.org/pep-0784/&gt;</code>_ for more information. (<code>[#3610](https://github.com/urllib3/urllib3/issues/3610) &lt;https://github.com/urllib3/urllib3/issues/3610&gt;</code>__)</li>\n<li>Added support for version 0.5 of <code>hatch-vcs</code> (<code>[#3612](https://github.com/urllib3/urllib3/issues/3612) &lt;https://github.com/urllib3/urllib3/issues/3612&gt;</code>__)</li>\n</ul>\n<h2>Bugfixes</h2>\n<ul>\n<li>Fixed a security issue where restricting the maximum number of followed\nredirects at the <code>urllib3.PoolManager</code> level via the <code>retries</code> parameter\ndid not work.</li>\n<li>Made the Node.js runtime respect redirect parameters such as <code>retries</code>\nand <code>redirects</code>.</li>\n<li>Raised exception for <code>HTTPResponse.shutdown</code> on a connection already released to the pool. (<code>[#3581](https://github.com/urllib3/urllib3/issues/3581) &lt;https://github.com/urllib3/urllib3/issues/3581&gt;</code>__)</li>\n<li>Fixed incorrect <code>CONNECT</code> statement when using an IPv6 proxy with <code>connection_from_host</code>. Previously would not be wrapped in <code>[]</code>. (<code>[#3615](https://github.com/urllib3/urllib3/issues/3615) &lt;https://github.com/urllib3/urllib3/issues/3615&gt;</code>__)</li>\n</ul>\n<h1>2.4.0 (2025-04-10)</h1>\n<h2>Features</h2>\n<ul>\n<li>Applied PEP 639 by specifying the license fields in pyproject.toml. (<code>[#3522](https://github.com/urllib3/urllib3/issues/3522) &lt;https://github.com/urllib3/urllib3/issues/3522&gt;</code>__)</li>\n<li>Updated exceptions to save and restore more properties during the pickle/serialization process. (<code>[#3567](https://github.com/urllib3/urllib3/issues/3567) &lt;https://github.com/urllib3/urllib3/issues/3567&gt;</code>__)</li>\n<li>Added <code>verify_flags</code> option to <code>create_urllib3_context</code> with a default of <code>VERIFY_X509_PARTIAL_CHAIN</code> and <code>VERIFY_X509_STRICT</code> for Python 3.13+. (<code>[#3571](https://github.com/urllib3/urllib3/issues/3571) &lt;https://github.com/urllib3/urllib3/issues/3571&gt;</code>__)</li>\n</ul>\n<h2>Bugfixes</h2>\n<ul>\n<li>Fixed a bug with partial reads of streaming data in Emscripten. (<code>[#3555](https://github.com/urllib3/urllib3/issues/3555) &lt;https://github.com/urllib3/urllib3/issues/3555&gt;</code>__)</li>\n</ul>\n<h2>Misc</h2>\n<ul>\n<li>Switched to uv for installing development dependecies. (<code>[#3550](https://github.com/urllib3/urllib3/issues/3550) &lt;https://github.com/urllib3/urllib3/issues/3550&gt;</code>__)</li>\n<li>Removed the <code>multiple.intoto.jsonl</code> asset from GitHub releases. Attestation of release files since v2.3.0 can be found on PyPI. (<code>[#3566](https://github.com/urllib3/urllib3/issues/3566) &lt;https://github.com/urllib3/urllib3/issues/3566&gt;</code>__)</li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/aaab4eccc10c965897540b21e15f11859d0b62e7\"><code>aaab4ec</code></a> Release 2.5.0</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/7eb4a2aafe49a279c29b6d1f0ed0f42e9736194f\"><code>7eb4a2a</code></a> Merge commit from fork</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/f05b1329126d5be6de501f9d1e3e36738bc08857\"><code>f05b132</code></a> Merge commit from fork</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/d03fe327a71d09728512217149f269763671f296\"><code>d03fe32</code></a> Fix HTTP tunneling with IPv6 in older Python versions</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/11661e9bb4278e43d081f47a516e287a928c2206\"><code>11661e9</code></a> Bump github/codeql-action from 3.28.0 to 3.29.0 (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3624\">#3624</a>)</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/6a0ecc6b16fe30f721021b44a81d19615098c71e\"><code>6a0ecc6</code></a> Update v2 migration guide to 2.4.0 (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3621\">#3621</a>)</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/8e32e60d9024c05bc6f7adda08bdf6c539d0b0d4\"><code>8e32e60</code></a> Raise exception for shutdown on a connection already released to the pool (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3\">#3</a>...</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/9996e0fbf90b77083ad3c73737a6c6395703faa9\"><code>9996e0f</code></a> Fix emscripten CI for Chrome 137+ (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3599\">#3599</a>)</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/4fd1a99a59725faf0efc946ce3b6bc9a194420af\"><code>4fd1a99</code></a> Bump RECENT_DATE (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3617\">#3617</a>)</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/c4b5917e911a90c8bf279448df8952a682294135\"><code>c4b5917</code></a> Add support for the new <code>compression.zstd</code> module in Python 3.14 (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3611\">#3611</a>)</li>\n<li>Additional commits viewable in <a href=\"https://github.com/urllib3/urllib3/compare/2.3.0...2.5.0\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=urllib3&package-manager=pip&previous-version=2.3.0&new-version=2.5.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Fix azure machinery bug when gathering relevant machines\nBody: Bug gathers all existing machines as \"relevant\" instead of just machines where the tag passed matches.",
+  "Title: cgi removal from Python 3.13\nBody: Hi,\nIn the documentation (https://capev2.readthedocs.io/en/latest/installation/guest/requirements.html#install-python) the only requirement listed for the version is \"Python versions > 3.6 are preferred.\".\nI think that it should be noted that the Agent installed on the guest machine uses \"cgi\", which has been removed since version 3.13 (https://docs.python.org/3/library/cgi.html).\nMaybe it would be great to edit from: \"Python versions > 3.6 are preferred.\" to \"Python versions > 3.6 and < 3.13 are preferred.\".\nOr just write a warning that explains this issue.\nThank you.\nComment: duplicated. but yes https://github.com/kevoreilly/CAPEv2/issues/1512\nComment: > duplicated. but yes [#1512](https://github.com/kevoreilly/CAPEv2/issues/1512)\n\nOh, sorry I didn't see that issue.\nBut just to be clear my issue wasn't to rewrite the agent but just to edit the documentation to be clear about this issue.\nComment: yes that fine, but is about the same, i will push changes to docs in a bit, thanks for headups\nComment: https://github.com/kevoreilly/CAPEv2/commit/1caa2a5f18da276ba9bcce3d548baafecec8679c",
+  "Title: sqlalchemy 2\nBody: None\nComment: Will the existing migrations have to be updated to support SQLAlchemy 2.0?\nComment: good question, i have dropped all less 3 last migration, but forgot that it might require sqlalchemy 2 update, i will have to see how hard it will be to port to it, if it to hard, no, as i still fixing issue on parent<>child relation, as implementation is wrong/bad\nComment: > good question, i have dropped all less 3 last migration, but forgot that it might require sqlalchemy 2 update, i will have to see how hard it will be to port to it, if it to hard, no, as i still fixing issue on parent<>child relation, as implementation is wrong/bad\r\n\r\nAssuming you've seen the [upgrade guide](https://docs.sqlalchemy.org/en/20/changelog/migration_20.html)?\nComment: i saw it, but did read in diagonal only",
+  "Title: handle strings size is bigger than 16mb\nBody: None",
+  "Title: Requesting Access to Public CAPEv2 Sandbox\nBody: Hello CAPEv2 team,\n\nI'm a cybersecurity engineer working on adversary tracking and malware analysis tooling as part of a research and prototyping effort. I\u2019d like to request access to your public CAPEv2 sandbox instance at https://capesandbox.com.\n\nI plan to use the service to submit samples for behavioral analysis, test integrations with existing IOC feeds (e.g. VirusTotal), and explore CAPE\u2019s capabilities as part of a broader threat intel pipeline.\n\nI do not use Twitter, so I\u2019m reaching out here via GitHub instead. Please let me know if there\u2019s a preferred way to proceed, or any specific information you need to approve access.\n\nThanks for maintaining such a valuable community resource.  \nLooking forward to hearing from you!",
+  "Title: Question about guest static ip\nBody: Here says you need to set a static ip for the guest vm:  \nhttps://capev2.readthedocs.io/en/latest/installation/guest/network.html#setting-a-static-ip\n\nIf you set a static ip for the guest vm, when you want to clone many guest vms, how to set different ip for every guest vm quickly?\nComment: I don't think there is an answer to this, at least depending on your definition of 'quickly'.\n\nThe only way I know if is to set the iP in the tcp/ip properties of the network interface for each clone prior to snapshot.\nComment: 'quickly' for me is that do something on host instead of guest.\n\nI set a DHCP config but assign static gateway and DNS addr, then I can use clone-machines.py to clone some guest vms.\nComment: hello, so here are details on how you can set it automatically. you need to enable route apply in auxiliary config to properly route traffic later\n\n1. https://www.doomedraven.com/2016/#assign-static-guest-ip-addresses-using-dhcp-on-the-virtual-machine\n2. https://github.com/kevoreilly/CAPEv2/blob/master/installer/kvm-qemu.sh#L1161-L1203\n3. https://github.com/kevoreilly/CAPEv2/blob/master/conf/default/auxiliary.conf.default#L25-L27\nComment: > hello, so here are details on how you can set it automatically. you need to enable route apply in auxiliary config to properly route traffic later\n> \n> 1. https://www.doomedraven.com/2016/#assign-static-guest-ip-addresses-using-dhcp-on-the-virtual-machine\n> 2. https://github.com/kevoreilly/CAPEv2/blob/master/installer/kvm-qemu.sh#L1161-L1203\n> 3. https://github.com/kevoreilly/CAPEv2/blob/master/conf/default/auxiliary.conf.default#L25-L27\n\nI will test it. Thank you!",
+  "Title: Can't search by \"tags_tasks\" through the API\nBody: # Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n- [x] I am running the latest version\n- [x] I did read the README!\n- [x] I checked the documentation and found no answer\n- [x] I checked to make sure that this issue has not already been filed\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [x] I have read and checked all configs (with all optional parts)\n\n\n# Expected Behavior\n\nWhen I search through the GUI with `tags_tasks:sometexttag` I get the related tasks. I was expecting to get the same behavior posting `{\"option\": \"tags_tasks\", \"argument\": \"sometextag\"}` to `/apiv2/tasks/extendedsearch/`.\n\nAdditionally, I was expecting to get some `4xx` status code in a error response.\n\n# Current Behavior\n\nI'm getting a `Not all values are integers` error (with a `200` status code) raised from:\nhttps://github.com/kevoreilly/CAPEv2/blob/846b2a295b6f660387d6631428c3bf82096b3e9d/web/apiv2/views.py#L753\n\nNot sure if it's a bug or I'm misunderstanding how \"extended search\" works.\nComment: very good catch, thank you, fixed it here https://github.com/kevoreilly/CAPEv2/commit/20e8081166bcedd5880792b243430ce311679b8c\n\nbut this function still needs full review and rewrite\nComment: let me know if this solves your issue\nComment: Hi @doomedraven !\n\nNow I'm getting `{'error': True, 'error_value': 'Unable to retrieve records'}`.\n\nJust to check, searching for `tags_tasks:mytag` in the GUI should be equal to `{\"option\": \"tags_tasks\", \"argument\": \"mytag\"}` in the API, right?\nComment: no, options is for task options, is another db field, so just `tags_tasks:mytag `\nComment: Hi @doomedraven!\n\nI think I've found the reason why the GUI returns the result and the API doesn't.\n\nIn both cases the code calls `perform_search`, but in the GUI it splits `tags_tasks:mytag` passing `tags_tasks` as the term and `mytag` as the value, while in the API it makes an ID search first, thus passing a list of integers as the value (while keeping the term).\n\nI think that adding a `term = \"ids\"` after this line: https://github.com/kevoreilly/CAPEv2/blob/827819f789a1411f14d0aa9a9010ce8d76f0aafe/web/apiv2/views.py#L756 could fix the issue.\n\nRegards!\nComment: you are right, that was done so long time ago that i don't even remember that, it does look like it need full review to make it properly working.\n\njust FYI it gets IDs due to tags being stored in another database aka psql, and then fetch data by IDs from mongo to draw webgui info, that is faster way, but as you said, term is wrong once we got IDs. WIll try to fix that ASAP but i have another issue to fix first\nComment: sorry it taking longer than i expected to find a time to properly review and fix tihs\nComment: We've tried the proposed solution and it seems to work flawless.\nComment: thank you, added that https://github.com/kevoreilly/CAPEv2/commit/fa9cf8c2243bcbd2080a331d7f945a5e83472566",
+  "Title: Defeat false positives\nBody: None",
+  "Title: impossible to validate it or to connect.\nBody: Hi,\nI'm looking to activate my account. I had validated the email but impossible to validate it or to connect. Do you have an email to contact you?Username:mbygre\nComment: this is not place for this type of requests",
+  "Title: Restrict icacls excecution to Win32\nBody: Restricts `icacls` excecution to Win32\r\n\r\nRelates to #2621 ",
+  "Title: feat(scoring): Implement dedicated scoring logic for URL analysis\nBody: ### Type of change\r\n\r\n- [x] Bug fix (non-breaking change which fixes an issue)\r\n- [x] New feature (non-breaking change which adds functionality)\r\n\r\n### Motivation and Context\r\n\r\nCurrently, the `calc_scoring` function in `lib/cuckoo/common/scoring.py` has a detailed, category-based logic for executable files. However, analyses for URLs (`category: \"url\"`) fall into a generic `else` block.\r\n\r\nThis leads to two main issues:\r\n1.  The score calculation is basic and does not differentiate URL-specific threats.\r\n2.  More importantly, the `status` variable is never assigned for non-executable analyses, resulting in a `None` status in the final report, which is unhelpful for users and integrations.\r\n\r\nThis PR aims to fix this by implementing a dedicated and complete scoring logic for URL analyses.\r\n\r\n### Description of the Change\r\n\r\nThis pull request introduces a dedicated logic path for URL analyses at the beginning of the `calc_scoring` function.\r\n\r\n1.  It first checks the analysis target's category via `results.get(\"target\", {}).get(\"category\")`.\r\n2.  If the category is `\"url\"`, it enters a new block that performs the following actions:\r\n    *   Calculates `finalMalscore` based on the matched signatures' weight, severity, and confidence.\r\n    *   Adds support for the `maximum` attribute in signatures, allowing a single high-impact signature to set the score directly.\r\n    *   **Crucially, it assigns a `status`** (`Malicious`, `Suspicious`, `Clean`, or `Undetected`) based on the final score.\r\n    *   It then returns the score and status immediately, preventing the analysis from falling through to the file-specific logic.\r\n\r\nThis ensures that URL analyses now produce a meaningful score and a clear, human-readable status, significantly improving the quality of the analysis report. The existing logic for executable files remains untouched.\r\n\r\n### How to test\r\n\r\n1.  Submit a URL for analysis (e.g., a known phishing site or a benign site).\r\n2.  Ensure the analysis triggers some signatures (e.g., `network` or `phishing` related signatures).\r\n3.  Check the final report. Verify that the analysis now shows:\r\n    *   A calculated score (e.g., > 4.0).\r\n    *   A corresponding status (e.g., `Suspicious` or `Malicious`) instead of `None`.\r\n\r\n### Checklist\r\n\r\n- [x] My code follows the style guidelines of this project.\r\n- [x] I have performed a self-review of my own code.\r\n- [x] I have commented my code, particularly in hard-to-understand areas.\r\n- [x] I have made corresponding changes to the documentation. (N/A for this change)\r\n- [x] My changes generate no new warnings.\nComment: All feedback has been addressed. The code has been refactored and cleaned up. Thanks for the review!\nComment: Happy days! Thanks a lot for this contribution. I'll wait for doomed to double check when he's back from vacation, but all looks good to me \ud83d\udc4d ",
+  "Title: Bump urllib3 from 2.3.0 to 2.5.0\nBody: Bumps [urllib3](https://github.com/urllib3/urllib3) from 2.3.0 to 2.5.0.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a href=\"https://github.com/urllib3/urllib3/releases\">urllib3's releases</a>.</em></p>\n<blockquote>\n<h2>2.5.0</h2>\n<h2>\ud83d\ude80 urllib3 is fundraising for HTTP/2 support</h2>\n<p><a href=\"https://sethmlarson.dev/urllib3-is-fundraising-for-http2-support\">urllib3 is raising ~$40,000 USD</a> to release HTTP/2 support and ensure long-term sustainable maintenance of the project after a sharp decline in financial support. If your company or organization uses Python and would benefit from HTTP/2 support in Requests, pip, cloud SDKs, and thousands of other projects <a href=\"https://opencollective.com/urllib3\">please consider contributing financially</a> to ensure HTTP/2 support is developed sustainably and maintained for the long-haul.</p>\n<p>Thank you for your support.</p>\n<h1>Security issues</h1>\n<p>urllib3 2.5.0 fixes two moderate security issues:</p>\n<ul>\n<li>Pool managers now properly control redirects when <code>retries</code> is passed \u2014 CVE-2025-50181 reported by <a href=\"https://github.com/sandumjacob\"><code>@\u200bsandumjacob</code></a> (5.3 Medium, GHSA-pq67-6m6q-mj2v)</li>\n<li>Redirects are now controlled by urllib3 in the Node.js runtime \u2014 CVE-2025-50182 (5.3 Medium, GHSA-48p4-8xcf-vxj5)</li>\n</ul>\n<h1>Features</h1>\n<ul>\n<li>Added support for the <code>compression.zstd</code> module that is new in Python 3.14. See <a href=\"https://peps.python.org/pep-0784/\">PEP 784</a> for more information. (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3610\">#3610</a>)</li>\n<li>Added support for version 0.5 of <code>hatch-vcs</code> (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3612\">#3612</a>)</li>\n</ul>\n<h1>Bugfixes</h1>\n<ul>\n<li>Raised exception for <code>HTTPResponse.shutdown</code> on a connection already released to the pool. (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3581\">#3581</a>)</li>\n<li>Fixed incorrect <code>CONNECT</code> statement when using an IPv6 proxy with <code>connection_from_host</code>. Previously would not be wrapped in <code>[]</code>. (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3615\">#3615</a>)</li>\n</ul>\n<h2>2.4.0</h2>\n<h2>\ud83d\ude80 urllib3 is fundraising for HTTP/2 support</h2>\n<p><a href=\"https://sethmlarson.dev/urllib3-is-fundraising-for-http2-support\">urllib3 is raising ~$40,000 USD</a> to release HTTP/2 support and ensure long-term sustainable maintenance of the project after a sharp decline in financial support. If your company or organization uses Python and would benefit from HTTP/2 support in Requests, pip, cloud SDKs, and thousands of other projects <a href=\"https://opencollective.com/urllib3\">please consider contributing financially</a> to ensure HTTP/2 support is developed sustainably and maintained for the long-haul.</p>\n<p>Thank you for your support.</p>\n<h1>Features</h1>\n<ul>\n<li>Applied PEP 639 by specifying the license fields in pyproject.toml. (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3522\">#3522</a>)</li>\n<li>Updated exceptions to save and restore more properties during the pickle/serialization process. (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3567\">#3567</a>)</li>\n<li>Added <code>verify_flags</code> option to <code>create_urllib3_context</code> with a default of <code>VERIFY_X509_PARTIAL_CHAIN</code> and <code>VERIFY_X509_STRICT</code> for Python 3.13+. (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3571\">#3571</a>)</li>\n</ul>\n<h1>Bugfixes</h1>\n<ul>\n<li>Fixed a bug with partial reads of streaming data in Emscripten. (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3555\">#3555</a>)</li>\n</ul>\n<h1>Misc</h1>\n<ul>\n<li>Switched to uv for installing development dependecies. (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3550\">#3550</a>)</li>\n<li>Removed the <code>multiple.intoto.jsonl</code> asset from GitHub releases. Attestation of release files since v2.3.0 can be found on PyPI. (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3566\">#3566</a>)</li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/urllib3/urllib3/blob/main/CHANGES.rst\">urllib3's changelog</a>.</em></p>\n<blockquote>\n<h1>2.5.0 (2025-06-18)</h1>\n<h2>Features</h2>\n<ul>\n<li>Added support for the <code>compression.zstd</code> module that is new in Python 3.14.\nSee <code>PEP 784 &lt;https://peps.python.org/pep-0784/&gt;</code>_ for more information. (<code>[#3610](https://github.com/urllib3/urllib3/issues/3610) &lt;https://github.com/urllib3/urllib3/issues/3610&gt;</code>__)</li>\n<li>Added support for version 0.5 of <code>hatch-vcs</code> (<code>[#3612](https://github.com/urllib3/urllib3/issues/3612) &lt;https://github.com/urllib3/urllib3/issues/3612&gt;</code>__)</li>\n</ul>\n<h2>Bugfixes</h2>\n<ul>\n<li>Fixed a security issue where restricting the maximum number of followed\nredirects at the <code>urllib3.PoolManager</code> level via the <code>retries</code> parameter\ndid not work.</li>\n<li>Made the Node.js runtime respect redirect parameters such as <code>retries</code>\nand <code>redirects</code>.</li>\n<li>Raised exception for <code>HTTPResponse.shutdown</code> on a connection already released to the pool. (<code>[#3581](https://github.com/urllib3/urllib3/issues/3581) &lt;https://github.com/urllib3/urllib3/issues/3581&gt;</code>__)</li>\n<li>Fixed incorrect <code>CONNECT</code> statement when using an IPv6 proxy with <code>connection_from_host</code>. Previously would not be wrapped in <code>[]</code>. (<code>[#3615](https://github.com/urllib3/urllib3/issues/3615) &lt;https://github.com/urllib3/urllib3/issues/3615&gt;</code>__)</li>\n</ul>\n<h1>2.4.0 (2025-04-10)</h1>\n<h2>Features</h2>\n<ul>\n<li>Applied PEP 639 by specifying the license fields in pyproject.toml. (<code>[#3522](https://github.com/urllib3/urllib3/issues/3522) &lt;https://github.com/urllib3/urllib3/issues/3522&gt;</code>__)</li>\n<li>Updated exceptions to save and restore more properties during the pickle/serialization process. (<code>[#3567](https://github.com/urllib3/urllib3/issues/3567) &lt;https://github.com/urllib3/urllib3/issues/3567&gt;</code>__)</li>\n<li>Added <code>verify_flags</code> option to <code>create_urllib3_context</code> with a default of <code>VERIFY_X509_PARTIAL_CHAIN</code> and <code>VERIFY_X509_STRICT</code> for Python 3.13+. (<code>[#3571](https://github.com/urllib3/urllib3/issues/3571) &lt;https://github.com/urllib3/urllib3/issues/3571&gt;</code>__)</li>\n</ul>\n<h2>Bugfixes</h2>\n<ul>\n<li>Fixed a bug with partial reads of streaming data in Emscripten. (<code>[#3555](https://github.com/urllib3/urllib3/issues/3555) &lt;https://github.com/urllib3/urllib3/issues/3555&gt;</code>__)</li>\n</ul>\n<h2>Misc</h2>\n<ul>\n<li>Switched to uv for installing development dependecies. (<code>[#3550](https://github.com/urllib3/urllib3/issues/3550) &lt;https://github.com/urllib3/urllib3/issues/3550&gt;</code>__)</li>\n<li>Removed the <code>multiple.intoto.jsonl</code> asset from GitHub releases. Attestation of release files since v2.3.0 can be found on PyPI. (<code>[#3566](https://github.com/urllib3/urllib3/issues/3566) &lt;https://github.com/urllib3/urllib3/issues/3566&gt;</code>__)</li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/aaab4eccc10c965897540b21e15f11859d0b62e7\"><code>aaab4ec</code></a> Release 2.5.0</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/7eb4a2aafe49a279c29b6d1f0ed0f42e9736194f\"><code>7eb4a2a</code></a> Merge commit from fork</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/f05b1329126d5be6de501f9d1e3e36738bc08857\"><code>f05b132</code></a> Merge commit from fork</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/d03fe327a71d09728512217149f269763671f296\"><code>d03fe32</code></a> Fix HTTP tunneling with IPv6 in older Python versions</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/11661e9bb4278e43d081f47a516e287a928c2206\"><code>11661e9</code></a> Bump github/codeql-action from 3.28.0 to 3.29.0 (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3624\">#3624</a>)</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/6a0ecc6b16fe30f721021b44a81d19615098c71e\"><code>6a0ecc6</code></a> Update v2 migration guide to 2.4.0 (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3621\">#3621</a>)</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/8e32e60d9024c05bc6f7adda08bdf6c539d0b0d4\"><code>8e32e60</code></a> Raise exception for shutdown on a connection already released to the pool (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3\">#3</a>...</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/9996e0fbf90b77083ad3c73737a6c6395703faa9\"><code>9996e0f</code></a> Fix emscripten CI for Chrome 137+ (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3599\">#3599</a>)</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/4fd1a99a59725faf0efc946ce3b6bc9a194420af\"><code>4fd1a99</code></a> Bump RECENT_DATE (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3617\">#3617</a>)</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/c4b5917e911a90c8bf279448df8952a682294135\"><code>c4b5917</code></a> Add support for the new <code>compression.zstd</code> module in Python 3.14 (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3611\">#3611</a>)</li>\n<li>Additional commits viewable in <a href=\"https://github.com/urllib3/urllib3/compare/2.3.0...2.5.0\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=urllib3&package-manager=pip&previous-version=2.3.0&new-version=2.5.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: fix NitrogenLoader.yar remove wild card byte\nBody: None",
+  "Title: Bump protobuf from 5.29.3 to 5.29.5\nBody: Bumps [protobuf](https://github.com/protocolbuffers/protobuf) from 5.29.3 to 5.29.5.\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/protocolbuffers/protobuf/commit/f5de0a0495faa63b4186fc767324f8b9a7bf4fc4\"><code>f5de0a0</code></a> Updating version.json and repo version numbers to: 29.5</li>\n<li><a href=\"https://github.com/protocolbuffers/protobuf/commit/85637662f7fb32722416b127ce3b1808609fc0fa\"><code>8563766</code></a> Merge pull request <a href=\"https://redirect.github.com/protocolbuffers/protobuf/issues/21858\">#21858</a> from shaod2/py-cp-29</li>\n<li><a href=\"https://github.com/protocolbuffers/protobuf/commit/05ba1a8104c5cc39a7b00b749883bbd2de8bca79\"><code>05ba1a8</code></a> Add recursion depth limits to pure python</li>\n<li><a href=\"https://github.com/protocolbuffers/protobuf/commit/1ef3f01c4647df8e63d989489bf1ec1acbcbf8aa\"><code>1ef3f01</code></a> Internal pure python fixes</li>\n<li><a href=\"https://github.com/protocolbuffers/protobuf/commit/69cca9b7f591ab0edcbd348a5f12ad7103e98f84\"><code>69cca9b</code></a> Remove fast-path check for non-clang compilers in MessageCreator. (<a href=\"https://redirect.github.com/protocolbuffers/protobuf/issues/21612\">#21612</a>)</li>\n<li><a href=\"https://github.com/protocolbuffers/protobuf/commit/21fdb7acdb11fbca234570fa30d2e5687eaf12f6\"><code>21fdb7a</code></a> fix: contains check segfaults on empty map (<a href=\"https://redirect.github.com/protocolbuffers/protobuf/issues/20446\">#20446</a>) (<a href=\"https://redirect.github.com/protocolbuffers/protobuf/issues/20904\">#20904</a>)</li>\n<li><a href=\"https://github.com/protocolbuffers/protobuf/commit/03c50e38747da472e47ad1ceae5dfb02fa90ff66\"><code>03c50e3</code></a> Re-enable aarch64 tests. (<a href=\"https://redirect.github.com/protocolbuffers/protobuf/issues/20853\">#20853</a>)</li>\n<li><a href=\"https://github.com/protocolbuffers/protobuf/commit/128f0aafd9d32dc537fffb6b6fd9aa7f680ee55c\"><code>128f0aa</code></a> Add volatile to featuresResolved (<a href=\"https://redirect.github.com/protocolbuffers/protobuf/issues/20767\">#20767</a>)</li>\n<li><a href=\"https://github.com/protocolbuffers/protobuf/commit/bdd49bb1413710b49142d8d0da54e79cecb72724\"><code>bdd49bb</code></a> Merge pull request <a href=\"https://redirect.github.com/protocolbuffers/protobuf/issues/20755\">#20755</a> from protocolbuffers/29.x-202503192110</li>\n<li><a href=\"https://github.com/protocolbuffers/protobuf/commit/c65946848f55148b1ee0ff6c5bfc3e83c4fce90e\"><code>c659468</code></a> Updating version.json and repo version numbers to: 29.5-dev</li>\n<li>Additional commits viewable in <a href=\"https://github.com/protocolbuffers/protobuf/compare/v5.29.3...v5.29.5\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=protobuf&package-manager=pip&previous-version=5.29.3&new-version=5.29.5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Updates 01\nBody: None\nComment: \ud83d\ude4f ",
+  "Title: The file cannot be analyzed\nBody: When analyzing the file\n\nMD5:\nF57781AA46F943E4FE05EC598590C0F6\nSHA1:\n389CAA4746F6A8F941A07934B45FE543F8237F98\nSHA256:\nB3A366ABF7C0FF964492F3FA697D45A124E43858D12F4313AE70F93F89043186\n\nError message found\n\n![Image](https://github.com/user-attachments/assets/c3b63bb9-bc5d-4b44-96cb-565574204255)\n\nconf\uff1a\n[processing.txt](https://github.com/user-attachments/files/20751997/processing.txt)\n[auxiliary.txt](https://github.com/user-attachments/files/20752005/auxiliary.txt)\n\nReference website \uff1a\nhttps://any.run/report/b3a366abf7c0ff964492f3fa697d45a124e43858d12f4313ae70f93f89043186/30efedc8-afb5-46c3-b871-0c2e6a817de0?_gl=1*xrtfry*_gcl_au*MTQyNTY1NTA0LjE3NTAwNTYzNjQ.*FPAU*MTQyNTY1NTA0LjE3NTAwNTYzNjQ.*_ga*MTgzNTMzNzM0Ni4xNzUwMDU2MzU5*_ga_53KB74YDZR*czE3NTAwNTYzNTgkbzEkZzEkdDE3NTAwNTgwOTkkajUwJGwwJGgxOTg1NDk1MTM.\nComment: Hi waason, I've checked the sample and there is no issue in cape preventing its detonation:\n\nhttps://capesandbox.com/analysis/9553/\n\nTherefore the issue must be elsewhere. But since the template is missing and there is no relevant supporting information, if you need help with your instance you will need to create a new issue with all the necessary info. I note that you have supplied a screenshot of the server-side log which is unfortunately not helpful. I would suggest far more relevant are logs from the guest such as the analysis log, in text form.\nComment: hi kevoreilly  I would like to provide you with more information, but I am not so familiar with the system. Can you give me some tips on how to generate debug messages for your reference? \nComment: Just some basic info would be helpful to start with even. I was assuming you had it working but for this particular sample. Do any samples work?\n\nThe analysis log can usually be found in the web interface, top right:\n\n![Image](https://github.com/user-attachments/assets/80139bc6-1b47-471e-a871-d0ebaf65ea6f)\n\nThe contents of this log show what happened on the Windows side.",
+  "Title: fix\nBody: None",
+  "Title: WMI detonation issues caused by failed monitor injection into WmiPrvSE.exe\nBody: On a recently created VM it was noticed that detonation of samples which use WMI to, for example, spawn new processes would not succeed due to a failure to inject the monitor into WmiPrvSE.exe processes.\n\nAn example of PowerShell spawning notepad via WMI should look like:\n\n![Image](https://github.com/user-attachments/assets/e337540f-becf-49c3-a81c-df2c0dc022ba)\n\nThe failure is typified by the absence of WmiPrvSE.exe in the behavior log, and the following in the analysis log:\n\n```\n2025-06-11 11:15:14,501 [root] INFO: Announced 64-bit process name: WmiPrvSE.exe pid: 6800\n2025-06-11 11:15:14,501 [lib.api.process] INFO: Monitor config for <Process 6800 WmiPrvSE.exe>: C:\\tmp7vh8ln5v\\dll\\6800.ini\n2025-06-11 11:15:14,985 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmp7vh8ln5v\\dll\\NekTZsE.dll, loader C:\\tmp7vh8ln5v\\bin\\gAvJJdnn.exe\n2025-06-11 11:15:14,985 [root] DEBUG: Loader: Injecting process 6800 (thread 3824) with C:\\tmp7vh8ln5v\\dll\\NekTZsE.dll.\n2025-06-11 11:15:14,985 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\n2025-06-11 11:15:14,985 [root] DEBUG: Successfully injected DLL C:\\tmp7vh8ln5v\\dll\\NekTZsE.dll.\n2025-06-11 11:15:15,001 [lib.api.process] INFO: Injected into 64-bit <Process 6800 WmiPrvSE.exe>\n2025-06-11 11:15:15,001 [root] INFO: Announced 64-bit process name: WmiPrvSE.exe pid: 6800\n2025-06-11 11:15:15,001 [lib.api.process] INFO: Monitor config for <Process 6800 WmiPrvSE.exe>: C:\\tmp7vh8ln5v\\dll\\6800.ini\n2025-06-11 11:15:15,563 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmp7vh8ln5v\\dll\\NekTZsE.dll, loader C:\\tmp7vh8ln5v\\bin\\gAvJJdnn.exe\n2025-06-11 11:15:15,579 [root] DEBUG: Loader: Injecting process 6800 (thread 3824) with C:\\tmp7vh8ln5v\\dll\\NekTZsE.dll.\n2025-06-11 11:15:15,579 [root] DEBUG: InjectDllViaIAT: This image has already been patched.\n2025-06-11 11:15:15,579 [root] DEBUG: Successfully injected DLL C:\\tmp7vh8ln5v\\dll\\NekTZsE.dll.\n2025-06-11 11:15:15,579 [lib.api.process] INFO: Injected into 64-bit <Process 6800 WmiPrvSE.exe>\n...\n2025-06-11 11:15:36,985 [root] WARNING: Monitor injection attempted but failed for process 6800\n```\n\nUpon investigation, it turns out that the failure of this process to even launch is due to an ACCESS_DENIED error from the attempt to load the monitor dll in this process. This turns out to be due to the ACLs on the analyzer directory created by the agent function ``do_mktemp()`` which leverages the Python tempfile ``mkstemp()`` function. It seems that the behaviour of this function has changed from Python 3.10 to Python 3.12, such that the directory is created without inheriting the expected ACLs. Specifically, ``BUILTIN\\Users\" group does not have the necessary RX permissions which are needed for WmiPrvSE.exe which runs as Network Service.\n\nThe proposed solution is to add to the agent's ``do_mktemp()`` the following line explicitly setting the required ACL:\n\n```\nsubprocess.call([\"icacls\", dirpath, \"/inheritance:e\", \"/grant\", \"BUILTIN\\\\Users:(OI)(CI)(RX)\"])\n```\nComment: Rather than set the ACLs in the agent, would it not be better to set the ACLs when provisioning the VM? I've got a few concerns about doing this in the agent:\n\n1. This functionality is specific to Windows. The agent has been fairly OS-agnostic up to now.\n2. This will be executed regardless of the version of Python being ran, despite not always being required.\nComment: > Rather than set the ACLs in the agent, would it not be better to set the ACLs when provisioning the VM? I've got a few concerns about doing this in the agent:\n> \n> 1. This functionality is specific to Windows. The agent has been fairly OS-agnostic up to now.\n> 2. This will be executed regardless of the version of Python being ran, despite not always being required.\n\nI've put up a [PR](https://github.com/kevoreilly/CAPEv2/pull/2629) to prevent `icacls` from being executed in non-Windows enviroments; however, I still feel like this should be configured during VM provisioning and not at run time.\nComment: Hi Josh, thanks for the feedback. You are right that it may not always be required, and is specific to Windows, the issue boils down to a change in Python's behaviour on Windows.\n\nObviously this needs fixing, I am open to any suggestions for improvements but I do think that what you are suggesting in terms of VM provisioning does not take into account that currently there are no folders for anything created at VM provisioning time. Adding a requirement to create folders at this stage represents a substantial change in the design of the agent and VM bootstrapping, and I don't think it is an improvement, creating new questions around the need for random folder names per job which doubtless underpin the current design.\n\nI think the ideal solution is one that minimises changes to the way things work currently whereby the agent creates the folder that the analyzer is copied into. I have to admit I was not mindful of non-Windows use cases, but I hope there can be found a solution which ensures that the ACLs on folders created on Windows are suitable without needing any other changes. \nComment: Hey Kev,\n\nI've misunderstood the problem, I thought it was a Windows permissions issue.\n\nI suspect the observed behaviour change might have something to do with the following (though this has been changed on other Python versions <3.12 too):\n\n- [[CVE-2024-4030] Enable mkdir(mode=0o700) to work on Windows](https://github.com/python/cpython/issues/118486)\n- [[3.12] gh-118486: Support mkdir(mode=0o700) on Windows (GH-118488)](https://github.com/python/cpython/pull/118738/files)\n\nWith this change, the default `mode=0o700` argument that is passed to `os.mkdir` from `tempfile.mkdtemp` is now reflected in the folder permissions in Windows environments.\n\nIt would be ideal if `tempfile.mkdtemp` actually took a `mode` argument to allow this behaviour to be changed. As it doesn't, I suspect the best option for CAPE would be to write an equivalent `mkdtemp` function that calls `os.mkdir` with a more permissive mode, something like:\n\n `os.mkdir(tmpdir, mode=0o777)`\n\nThis would avoid any requirement to call `icacls` in the agent. Though for now, it's probably the easiest solution.\nComment: Yes! A solution like this is just what we need. I think the requirement is just to be able to create a randomly named folder in the root of C: with the right attributes, I don't think there is anything 'tempfile' that is actually needed.",
+  "Title: Bump django from 5.1.9 to 5.1.10\nBody: Bumps [django](https://github.com/django/django) from 5.1.9 to 5.1.10.\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/django/django/commit/23a853821b75787d77016811881220ec6f57310a\"><code>23a8538</code></a> [5.1.x] Bumped version for 5.1.10 release.</li>\n<li><a href=\"https://github.com/django/django/commit/596542ddb46cdabe011322917e1655f0d24eece2\"><code>596542d</code></a> [5.1.x] Fixed CVE-2025-48432 -- Escaped formatting arguments in `log_response...</li>\n<li><a href=\"https://github.com/django/django/commit/a70841bc03a5f025c0c7d7a436021f154aee7bef\"><code>a70841b</code></a> [5.1.x] Added stub release notes and release date for 5.1.10 and 4.2.22.</li>\n<li><a href=\"https://github.com/django/django/commit/129750a8074b1f1f712b0005062cd1293eac21a9\"><code>129750a</code></a> [5.1.x] Fixed <a href=\"https://redirect.github.com/django/django/issues/36402\">#36402</a>, Refs <a href=\"https://redirect.github.com/django/django/issues/35980\">#35980</a> -- Updated built package name in reusable a...</li>\n<li><a href=\"https://github.com/django/django/commit/32a9cb217936fee674c362faddac2a869f20315e\"><code>32a9cb2</code></a> [5.1.x] Added helpers in csrf_tests and logging_tests to assert logs from `lo...</li>\n<li><a href=\"https://github.com/django/django/commit/bb92acacac97a4ddcd5a1826ac1e025f3100e246\"><code>bb92aca</code></a> [5.1.x] Refs <a href=\"https://redirect.github.com/django/django/issues/26688\">#26688</a> -- Added tests for <code>log_response()</code> internal helper.</li>\n<li><a href=\"https://github.com/django/django/commit/85bdeb31e2700a68d61c89108ba122ee3618fc05\"><code>85bdeb3</code></a> [5.1.x] Refs <a href=\"https://redirect.github.com/django/django/issues/35980\">#35980</a> -- Added release note about changes in release artifacts ...</li>\n<li><a href=\"https://github.com/django/django/commit/503128a7d1649833c8973cff480999ef73448d76\"><code>503128a</code></a> [5.1.x] Removed &quot;Expected&quot; from release date for 5.1.9 and 4.2.21.</li>\n<li><a href=\"https://github.com/django/django/commit/73f70b5cc8a4218af11d14edd49b0e8e6ff79256\"><code>73f70b5</code></a> [5.1.x] Cleaned up CVE-2025-32873 security archive description.</li>\n<li><a href=\"https://github.com/django/django/commit/05fab4e394e98bfd6c7a333d0d195438ccfa5450\"><code>05fab4e</code></a> [5.1.x] Added CVE-2025-32873 to security archive.</li>\n<li>Additional commits viewable in <a href=\"https://github.com/django/django/compare/5.1.9...5.1.10\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=django&package-manager=pip&previous-version=5.1.9&new-version=5.1.10)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Bump h11 from 0.14.0 to 0.16.0\nBody: Bumps [h11](https://github.com/python-hyper/h11) from 0.14.0 to 0.16.0.\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/python-hyper/h11/commit/1c5b07581f058886c8bdd87adababd7d959dc7ca\"><code>1c5b075</code></a> this time for surer</li>\n<li><a href=\"https://github.com/python-hyper/h11/commit/d9c369935e853a7ee1aeb7e481f6dddf9b9c9b8a\"><code>d9c3699</code></a> this time for sure...</li>\n<li><a href=\"https://github.com/python-hyper/h11/commit/d91b9dd2290a25c8c3f5ec15feb57de5873e6e39\"><code>d91b9dd</code></a> blacken</li>\n<li><a href=\"https://github.com/python-hyper/h11/commit/5a4683ca466b59bbab9b19cfea20ee157b31cee0\"><code>5a4683c</code></a> Soothe mypy</li>\n<li><a href=\"https://github.com/python-hyper/h11/commit/9c9567f0a92d13a83a8d8ebdbc757c8c2d384536\"><code>9c9567f</code></a> Bump version to 0.16.0</li>\n<li><a href=\"https://github.com/python-hyper/h11/commit/114803a29ce50116dc47951c690ad4892b1a36ed\"><code>114803a</code></a> Merge commit from fork</li>\n<li><a href=\"https://github.com/python-hyper/h11/commit/9462006f6ce4941661888228cbd4ac1ea80689b0\"><code>9462006</code></a> Bump version to 0.15.0</li>\n<li><a href=\"https://github.com/python-hyper/h11/commit/70a96bea8e55403e5d92db14c111432c6d7a8685\"><code>70a96be</code></a> Merge pull request <a href=\"https://redirect.github.com/python-hyper/h11/issues/181\">#181</a> from Julien00859/Julien00859/get_int_max_str_digits</li>\n<li><a href=\"https://github.com/python-hyper/h11/commit/60782ad107e538b9312aac7e1c119c8358bf797c\"><code>60782ad</code></a> Reject Content-Length longer 1 billion TB</li>\n<li><a href=\"https://github.com/python-hyper/h11/commit/dff7cc397a26ed4acdedd92d1bda6c8f18a6ed9f\"><code>dff7cc3</code></a> Validate Chunked-Encoding chunk footer</li>\n<li>Additional commits viewable in <a href=\"https://github.com/python-hyper/h11/compare/v0.14.0...v0.16.0\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=h11&package-manager=pip&previous-version=0.14.0&new-version=0.16.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Bump requests from 2.32.2 to 2.32.4\nBody: Bumps [requests](https://github.com/psf/requests) from 2.32.2 to 2.32.4.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a href=\"https://github.com/psf/requests/releases\">requests's releases</a>.</em></p>\n<blockquote>\n<h2>v2.32.4</h2>\n<h2>2.32.4 (2025-06-10)</h2>\n<p><strong>Security</strong></p>\n<ul>\n<li>CVE-2024-47081 Fixed an issue where a maliciously crafted URL and trusted\nenvironment will retrieve credentials for the wrong hostname/machine from a\nnetrc file. (<a href=\"https://redirect.github.com/psf/requests/issues/6965\">#6965</a>)</li>\n</ul>\n<p><strong>Improvements</strong></p>\n<ul>\n<li>Numerous documentation improvements</li>\n</ul>\n<p><strong>Deprecations</strong></p>\n<ul>\n<li>Added support for pypy 3.11 for Linux and macOS. (<a href=\"https://redirect.github.com/psf/requests/issues/6926\">#6926</a>)</li>\n<li>Dropped support for pypy 3.9 following its end of support. (<a href=\"https://redirect.github.com/psf/requests/issues/6926\">#6926</a>)</li>\n</ul>\n<h2>v2.32.3</h2>\n<h2>2.32.3 (2024-05-29)</h2>\n<p><strong>Bugfixes</strong></p>\n<ul>\n<li>Fixed bug breaking the ability to specify custom SSLContexts in sub-classes of\nHTTPAdapter. (<a href=\"https://redirect.github.com/psf/requests/issues/6716\">#6716</a>)</li>\n<li>Fixed issue where Requests started failing to run on Python versions compiled\nwithout the <code>ssl</code> module. (<a href=\"https://redirect.github.com/psf/requests/issues/6724\">#6724</a>)</li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/psf/requests/blob/main/HISTORY.md\">requests's changelog</a>.</em></p>\n<blockquote>\n<h2>2.32.4 (2025-06-10)</h2>\n<p><strong>Security</strong></p>\n<ul>\n<li>CVE-2024-47081 Fixed an issue where a maliciously crafted URL and trusted\nenvironment will retrieve credentials for the wrong hostname/machine from a\nnetrc file.</li>\n</ul>\n<p><strong>Improvements</strong></p>\n<ul>\n<li>Numerous documentation improvements</li>\n</ul>\n<p><strong>Deprecations</strong></p>\n<ul>\n<li>Added support for pypy 3.11 for Linux and macOS.</li>\n<li>Dropped support for pypy 3.9 following its end of support.</li>\n</ul>\n<h2>2.32.3 (2024-05-29)</h2>\n<p><strong>Bugfixes</strong></p>\n<ul>\n<li>Fixed bug breaking the ability to specify custom SSLContexts in sub-classes of\nHTTPAdapter. (<a href=\"https://redirect.github.com/psf/requests/issues/6716\">#6716</a>)</li>\n<li>Fixed issue where Requests started failing to run on Python versions compiled\nwithout the <code>ssl</code> module. (<a href=\"https://redirect.github.com/psf/requests/issues/6724\">#6724</a>)</li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/psf/requests/commit/021dc729f0b71a3030cefdbec7fb57a0e80a6cfd\"><code>021dc72</code></a> Polish up release tooling for last manual release</li>\n<li><a href=\"https://github.com/psf/requests/commit/821770e822a20a21b207b3907ea83878bda1d396\"><code>821770e</code></a> Bump version and add release notes for v2.32.4</li>\n<li><a href=\"https://github.com/psf/requests/commit/59f8aa2adf1d3d06bcbf7ce6b13743a1639a5401\"><code>59f8aa2</code></a> Add netrc file search information to authentication documentation (<a href=\"https://redirect.github.com/psf/requests/issues/6876\">#6876</a>)</li>\n<li><a href=\"https://github.com/psf/requests/commit/5b4b64c3467fd7a3c03f91ee641aaa348b6bed3b\"><code>5b4b64c</code></a> Add more tests to prevent regression of CVE 2024 47081</li>\n<li><a href=\"https://github.com/psf/requests/commit/7bc45877a86192af77645e156eb3744f95b47dae\"><code>7bc4587</code></a> Add new test to check netrc auth leak (<a href=\"https://redirect.github.com/psf/requests/issues/6962\">#6962</a>)</li>\n<li><a href=\"https://github.com/psf/requests/commit/96ba401c1296ab1dda74a2365ef36d88f7d144ef\"><code>96ba401</code></a> Only use hostname to do netrc lookup instead of netloc</li>\n<li><a href=\"https://github.com/psf/requests/commit/7341690e842a23cf18ded0abd9229765fa88c4e2\"><code>7341690</code></a> Merge pull request <a href=\"https://redirect.github.com/psf/requests/issues/6951\">#6951</a> from tswast/patch-1</li>\n<li><a href=\"https://github.com/psf/requests/commit/6716d7c9f29df636643fa2489f98890216525cb0\"><code>6716d7c</code></a> remove links</li>\n<li><a href=\"https://github.com/psf/requests/commit/a7e1c745dc23c18e836febd672416ed0c5d8d8ae\"><code>a7e1c74</code></a> Update docs/conf.py</li>\n<li><a href=\"https://github.com/psf/requests/commit/c799b8167a13416833ad3b4f3298261a477e826f\"><code>c799b81</code></a> docs: fix dead links to kenreitz.org</li>\n<li>Additional commits viewable in <a href=\"https://github.com/psf/requests/compare/v2.32.2...v2.32.4\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=requests&package-manager=pip&previous-version=2.32.2&new-version=2.32.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: What if /opt does not exist\nBody: # Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n- [x] I am running the latest version\n- [x] I did read the README!\n- [x] I checked the documentation and found no answer\n- [x] I checked to make sure that this issue has not already been filed\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [x] I have read and checked all configs (with all optional parts)\n\n\n# Question\nMy machine doesn't have /opt directory. When I run cape2.sh, the CAPEv2 cannot be downloaded.  \nhttps://github.com/kevoreilly/CAPEv2/blob/3468ef14dbf65c0c3219e32830860967d6da51d5/installer/cape2.sh#L1251\n\nYes, I can create the /opt directory by myself. Is there a better solution to resolve this problem?\n\nComment: why /opt doesn't exist? it exist on all ubuntu's versions. but no there is no better solution, create it by hand.  \nComment: I don't know why. Yeah, I have created /opt. Thank you.",
+  "Title: Azure Windows images, screenshots, and recordings\nBody: Creating and closing this issue as a way to help others searching for a solution to screenshots, RDP connections, and guac session recording issues in Azure using Windows 10. If you are seeing this error, `[modules.auxiliary.screenshots] ERROR: Cannot take screenshot: screen grab failed`, this is for you.\n\nThese are directly related to issues [#1171](https://github.com/kevoreilly/CAPEv2/issues/1171) and [#1172](https://github.com/kevoreilly/CAPEv2/issues/1172). @cccs-kevin correctly identified and provided solutions for a significant portion of what I am going to cover. Thank you for that!\n\n> [!CAUTION]\n> I am by no means an expert in this domain. Explanations below, particularly of how Azure infrastructure operates, are only based on my interpretations of observed behavior and research into the issues. However, the solutions within will fix the outlined issues.\n\n> [!NOTE]\n>  This may apply to Win7 and Win11, but as those are not officially supported by CAPEv2, I have not used them and cannot confirm.\n\n## Some Background\nOut of the box, the Azure machinery is unable to:\n- Take screenshots\n- Use RDP to connect to the GUI of the user session running the analysis\n- Create relevant guac session recordings\n\nThere are a few reasons for each of these problems. Fixing one problem can/will expose other problems, but each can be overcome.\n\n## Before Diving In\nI suspect these problems are specific to using the Azure provided Windows 10 image, which in itself is likely a mistake. Likely, a better approach is to:\n\n1. Create the image locally based on Windows 10 21H2\n2. Complete OS installation, image configuration (UAC, Defender, AntiVirus, debloating, etc..), software installations for various analysis packages, and so on.\n3. Generalize the image using Sysprep.\n4. Convert the image format to vhd if it is not already.\n5. Upload to a storage container in Azure.\n6. From there, standard usage and management of images applies.\n\n## Azure Machinery 101\nUsing the Azure machinery module means using a CAPE host, Azure VMSS(s), and VM instances. The creation and scaling of the VMSS are controlled by the az.py CAPE machinery. There are many config files in az.conf that can be adjusted for performance and resource tuning.\n\nThe Azure machinery differs from other machinery, like KVM, in that the VM instances are booted as if from a shutdown state. They do not load as a live snapshot would. It has been my experience that the CAPE agent will not launch when the instances are created unless you set a scheduled task to run \"at startup\". This is because, by default, the instance does not have a logged in user.\n\nOnce the instance is assigned, runs, and completes a task, it will delete itself. This is done to keep results idempotent from other analysis runs. When an Azure VMSS instance does not have a logged in user, all operations occur within \"session 0\".\n\n## The Problems\n\n### Session 0\n\nWhen an Azure VMSS instance does not have a logged in user, all services and background operations run in the non-interactive \"session 0\". This is a security feature meant to isolate these processes and **does not ** have interactivity or access to the user interface. Effectively, this means CAPE analysis is running \"headless\" on the instances. Obviously, for screenshots and recordings to happen, there needs to be a GUI to screenshot or record.\n\nThis is the direct cause of the error message `ERROR: Cannot take screenshot: screen grab failed`.\n\n### RDP\n\nConnecting to the instance via RDP creates a session with a unique ID. This is going to be separate from the session created at boot. Suppose you run a submission with interactivity and decide to view the detonation. When the GUI displays, you will notice a lack of anything occurring. This is because the separation of sessions that Windows uses. So even though you can clearly view the desktop, screenshots in the other session will not work. Recordings, if any are created, will also not be relevant to the detonation.\n\n## A Solution\nCritically, you should at least follow the [documentation on image requirements](https://capev2.readthedocs.io/en/latest/installation/guest/requirements.html). For your own benefit and to save you hours/days/weeks of headache, **read all of the documentation**. Obviously, you should not trust that everything is exactly up to date there. **Read the code. Read through the install scripts for CAPE. Read the config files. Read everything. Read read read.** There is no substitute for this. No amount of documentation in code or elsewhere is going to give you this level of understanding.\n\nThere are many possible solutions to the issues I have outlined, but this is the simplest I could come up with.\n\n### Session 0\nWe don't want to run an analysis in session 0 if we need things the GUI provides. If you tried to work around agent start issues as I had by setting the trigger to be \"start up\", you will need to fix that. Follow the example the documentation has and set the agent to start \"at logon\" for the created Windows user.\n\nThis makes sure CAPE will run in a session with a GUI. Great, this is going to make sure we are RDPing to the correct session and let our screenshot module do it's thing.  But, without the user logging in, the agent won't start. We next have to make sure the user logs in when the instance boots.\n\n### Forcing a logon\nThe agent now needs the created user to be logged on to start up. [Multiple ways to do this](https://learn.microsoft.com/en-us/troubleshoot/windows-server/user-profiles-and-logon/turn-on-automatic-logon), just google it if my approach doesn't fit your needs. I used [Autologon](url), but be sure to read the previous link to understand the security implications.\n\nThat's it. Now we get screenshots, can view the detonations, and get recordings.\n\n\n@doomedraven This will lead to some documentation updates down the road. To keep the length of those updates to a minimum, I will just reference this issue to explain the topic.",
+  "Title: Bump django from 5.1.9 to 5.1.10\nBody: Bumps [django](https://github.com/django/django) from 5.1.9 to 5.1.10.\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/django/django/commit/23a853821b75787d77016811881220ec6f57310a\"><code>23a8538</code></a> [5.1.x] Bumped version for 5.1.10 release.</li>\n<li><a href=\"https://github.com/django/django/commit/596542ddb46cdabe011322917e1655f0d24eece2\"><code>596542d</code></a> [5.1.x] Fixed CVE-2025-48432 -- Escaped formatting arguments in `log_response...</li>\n<li><a href=\"https://github.com/django/django/commit/a70841bc03a5f025c0c7d7a436021f154aee7bef\"><code>a70841b</code></a> [5.1.x] Added stub release notes and release date for 5.1.10 and 4.2.22.</li>\n<li><a href=\"https://github.com/django/django/commit/129750a8074b1f1f712b0005062cd1293eac21a9\"><code>129750a</code></a> [5.1.x] Fixed <a href=\"https://redirect.github.com/django/django/issues/36402\">#36402</a>, Refs <a href=\"https://redirect.github.com/django/django/issues/35980\">#35980</a> -- Updated built package name in reusable a...</li>\n<li><a href=\"https://github.com/django/django/commit/32a9cb217936fee674c362faddac2a869f20315e\"><code>32a9cb2</code></a> [5.1.x] Added helpers in csrf_tests and logging_tests to assert logs from `lo...</li>\n<li><a href=\"https://github.com/django/django/commit/bb92acacac97a4ddcd5a1826ac1e025f3100e246\"><code>bb92aca</code></a> [5.1.x] Refs <a href=\"https://redirect.github.com/django/django/issues/26688\">#26688</a> -- Added tests for <code>log_response()</code> internal helper.</li>\n<li><a href=\"https://github.com/django/django/commit/85bdeb31e2700a68d61c89108ba122ee3618fc05\"><code>85bdeb3</code></a> [5.1.x] Refs <a href=\"https://redirect.github.com/django/django/issues/35980\">#35980</a> -- Added release note about changes in release artifacts ...</li>\n<li><a href=\"https://github.com/django/django/commit/503128a7d1649833c8973cff480999ef73448d76\"><code>503128a</code></a> [5.1.x] Removed &quot;Expected&quot; from release date for 5.1.9 and 4.2.21.</li>\n<li><a href=\"https://github.com/django/django/commit/73f70b5cc8a4218af11d14edd49b0e8e6ff79256\"><code>73f70b5</code></a> [5.1.x] Cleaned up CVE-2025-32873 security archive description.</li>\n<li><a href=\"https://github.com/django/django/commit/05fab4e394e98bfd6c7a333d0d195438ccfa5450\"><code>05fab4e</code></a> [5.1.x] Added CVE-2025-32873 to security archive.</li>\n<li>Additional commits viewable in <a href=\"https://github.com/django/django/compare/5.1.9...5.1.10\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=django&package-manager=pip&previous-version=5.1.9&new-version=5.1.10)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: generate zipped json report\nBody: None",
+  "Title: Status stuck in processing after finish running\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\n\n## This is open source and you are getting __free__ support so be friendly!\n\n# Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n- [/ ] I am running the latest version\n- [ /] I did read the README!\n- [/ ] I checked the documentation and found no answer\n- [ ] I checked to make sure that this issue has not already been filed\n- [ ] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [/ ] I have read and checked all configs (with all optional parts)\n\n\n# Expected Behavior\n\nStatus of files should be \"reported\" instead of \"processing\"\n\n# Current Behavior\n\nAfter submitting the file and it finishes running, the status of the process is stuck on processing. \n\n## Steps to Reproduce\n\nPlease provide detailed steps for reproducing the issue.\n\n1. Just normal set up following the CAPE documentation and online guides (https://endsec.au/blog/building-an-automated-malware-sandbox-using-cape/)\n\n## Context\n\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\n\n| Question         | Answer\n|------------------|--------------------\n| OS version       | Ubuntu 24.04 as sandbox host, Windows 10 21H2 as sandbox guest\n\n## Failure Logs\n\nI couldn't find any problems from the log files. Please let me know if there are any more log files needed or log files that I have missed out on. \n\nTq for the help in advanced. \n\nCuckoo.log\n2025-06-06 09:36:27,593 [lib.cuckoo.core.scheduler] INFO: received signal 'SIGTERM', waiting for remaining analysis to finish before stopping\n2025-06-06 09:36:55,706 [lib.cuckoo.core.machinery_manager] INFO: Using MachineryManager[kvm] with max_machines_count=10\n2025-06-06 09:36:55,707 [lib.cuckoo.core.scheduler] INFO: Creating scheduler with max_analysis_count=unlimited\n2025-06-06 09:36:55,772 [lib.cuckoo.core.machinery_manager] INFO: Loaded 1 machine\n2025-06-06 09:36:55,867 [lib.cuckoo.core.machinery_manager] INFO: max_vmstartup_count for BoundedSemaphore = 5\n2025-06-06 09:36:55,869 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks\n2025-06-06 09:50:23,181 [lib.cuckoo.core.machinery_manager] INFO: Task #3: found useable machine win10 (arch=x64, platform=windows)\n2025-06-06 09:50:23,182 [lib.cuckoo.core.scheduler] INFO: Task #3: Processing task\n2025-06-06 09:50:23,223 [lib.cuckoo.core.analysis_manager] INFO: Task #3: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_x85kro2u/45317968759d3e37282c.zip'\n2025-06-06 09:50:40,156 [lib.cuckoo.core.analysis_manager] INFO: Task #3: Enabled route 'none'.\n2025-06-06 09:50:40,160 [modules.auxiliary.Mitmdump] INFO: Mitmdump module loaded\n2025-06-06 09:50:40,161 [modules.auxiliary.QemuScreenshots] INFO: QEMU screenshots module loaded\n2025-06-06 09:50:40,420 [lib.cuckoo.core.guest] INFO: Task #3: Starting analysis on guest (id=win10, ip=192.168.100.50)\n2025-06-06 09:50:40,823 [lib.cuckoo.core.guest] INFO: Task #3: Guest is running CAPE Agent 0.19 (id=win10, ip=192.168.100.50)\n2025-06-06 09:50:43,603 [lib.cuckoo.core.guest] INFO: Task #3: Uploading script files to guest (id=win10, ip=192.168.100.50)\n2025-06-06 09:50:44,670 [lib.cuckoo.core.guest] INFO: Task #3: Started capturing screenshots for win10\n2025-06-06 09:51:05,127 [lib.cuckoo.core.resultserver] INFO: Task 3: Process 2780 (parent 4540): 45317968759d3e37282ceb75149f627d648534c5b4685f6da3966d8f6fca662d.exe, path C:\\Users\\cape\\AppData\\Local\\Temp\\45317968759d3e37282ceb75149f627d648534c5b4685f6da3966d8f6fca662d.exe\n2025-06-06 09:51:19,425 [lib.cuckoo.core.guest] INFO: Task #3: Analysis completed successfully (id=win10, ip=192.168.100.50)\n2025-06-06 09:51:29,501 [lib.cuckoo.core.analysis_manager] INFO: Task #3: Completed analysis successfully.\n2025-06-06 09:51:29,505 [lib.cuckoo.core.analysis_manager] INFO: Task #3: analysis procedure completed\n\nProcess.log\n2025-06-06 09:32:02,292 [root] INFO: Processing analysis data\n2025-06-06 09:36:55,643 [root] INFO: Processing analysis data\n2025-06-06 09:42:00,260 [root] INFO: Processing analysis data\n2025-06-06 09:47:03,035 [root] INFO: Processing analysis data\n2025-06-06 09:52:06,485 [root] INFO: Processing analysis data\n2025-06-06 09:57:08,575 [root] INFO: Processing analysis data\n2025-06-06 10:02:10,682 [root] INFO: Processing analysis data\n2025-06-06 10:07:12,745 [root] INFO: Processing analysis data\n2025-06-06 10:12:14,972 [root] INFO: Processing analysis data\n2025-06-06 10:17:17,210 [root] INFO: Processing analysis data\n2025-06-06 10:22:19,330 [root] INFO: Processing analysis data\n2025-06-06 10:27:21,358 [root] INFO: Processing analysis data\nComment: What about cape-processor status? Why not following official docs?\r\n\r\nEl vie, 6 jun 2025, 12:32, zqyap88 ***@***.***> escribi\u00f3:\r\n\r\n> *zqyap88* created an issue (kevoreilly/CAPEv2#2613)\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2613>\r\n> About accounts on capesandbox.com\r\n>\r\n>    - Issues isn't the way to ask for account activation. Ping capesandbox\r\n>    in Twitter <https://twitter.com/capesandbox> with your username\r\n>\r\n> This is open source and you are getting *free* support so be friendly!\r\n> Prerequisites\r\n>\r\n> Please answer the following questions for yourself before submitting an\r\n> issue.\r\n>\r\n>    - [/ ] I am running the latest version\r\n>    - [ /] I did read the README!\r\n>    - [/ ] I checked the documentation and found no answer\r\n>    - I checked to make sure that this issue has not already been filed\r\n>    - I'm reporting the issue to the correct repository (for\r\n>    multi-repository projects)\r\n>    - [/ ] I have read and checked all configs (with all optional parts)\r\n>\r\n> Expected Behavior\r\n>\r\n> Status of files should be \"reported\" instead of \"processing\"\r\n> Current Behavior\r\n>\r\n> After submitting the file and it finishes running, the status of the\r\n> process is stuck on processing.\r\n> Steps to Reproduce\r\n>\r\n> Please provide detailed steps for reproducing the issue.\r\n>\r\n>    1. Just normal set up following the CAPE documentation and online\r\n>    guides (\r\n>    https://endsec.au/blog/building-an-automated-malware-sandbox-using-cape/\r\n>    )\r\n>\r\n> Context\r\n>\r\n> Please provide any relevant information about your setup. This is\r\n> important in case the issue is not reproducible except for under certain\r\n> conditions. Operating system version, bitness, installed software versions,\r\n> test sample details/hash/binary (if applicable).\r\n> Question Answer\r\n> OS version Ubuntu 24.04 as sandbox host, Windows 10 21H2 as sandbox guest Failure\r\n> Logs\r\n>\r\n> I couldn't find any problems from the log files. Please let me know if\r\n> there are any more log files needed or log files that I have missed out on.\r\n>\r\n> Tq for the help in advanced.\r\n>\r\n> Cuckoo.log\r\n> 2025-06-06 09:36:27,593 [lib.cuckoo.core.scheduler] INFO: received signal\r\n> 'SIGTERM', waiting for remaining analysis to finish before stopping\r\n> 2025-06-06 09:36:55,706 [lib.cuckoo.core.machinery_manager] INFO: Using\r\n> MachineryManager[kvm] with max_machines_count=10\r\n> 2025-06-06 09:36:55,707 [lib.cuckoo.core.scheduler] INFO: Creating\r\n> scheduler with max_analysis_count=unlimited\r\n> 2025-06-06 09:36:55,772 [lib.cuckoo.core.machinery_manager] INFO: Loaded 1\r\n> machine\r\n> 2025-06-06 09:36:55,867 [lib.cuckoo.core.machinery_manager] INFO:\r\n> max_vmstartup_count for BoundedSemaphore = 5\r\n> 2025-06-06 09:36:55,869 [lib.cuckoo.core.scheduler] INFO: Waiting for\r\n> analysis tasks\r\n> 2025-06-06 09:50:23,181 [lib.cuckoo.core.machinery_manager] INFO: Task #3\r\n> <https://github.com/kevoreilly/CAPEv2/issues/3>: found useable machine\r\n> win10 (arch=x64, platform=windows)\r\n> 2025-06-06 09:50:23,182 [lib.cuckoo.core.scheduler] INFO: Task #3\r\n> <https://github.com/kevoreilly/CAPEv2/issues/3>: Processing task\r\n> 2025-06-06 09:50:23,223 [lib.cuckoo.core.analysis_manager] INFO: Task #3\r\n> <https://github.com/kevoreilly/CAPEv2/issues/3>: Starting analysis of\r\n> FILE '/tmp/cuckoo-tmp/upload_x85kro2u/45317968759d3e37282c.zip'\r\n> 2025-06-06 09:50:40,156 [lib.cuckoo.core.analysis_manager] INFO: Task #3\r\n> <https://github.com/kevoreilly/CAPEv2/issues/3>: Enabled route 'none'.\r\n> 2025-06-06 09:50:40,160 [modules.auxiliary.Mitmdump] INFO: Mitmdump module\r\n> loaded\r\n> 2025-06-06 09:50:40,161 [modules.auxiliary.QemuScreenshots] INFO: QEMU\r\n> screenshots module loaded\r\n> 2025-06-06 09:50:40,420 [lib.cuckoo.core.guest] INFO: Task #3\r\n> <https://github.com/kevoreilly/CAPEv2/issues/3>: Starting analysis on\r\n> guest (id=win10, ip=192.168.100.50)\r\n> 2025-06-06 09:50:40,823 [lib.cuckoo.core.guest] INFO: Task #3\r\n> <https://github.com/kevoreilly/CAPEv2/issues/3>: Guest is running CAPE\r\n> Agent 0.19 (id=win10, ip=192.168.100.50)\r\n> 2025-06-06 09:50:43,603 [lib.cuckoo.core.guest] INFO: Task #3\r\n> <https://github.com/kevoreilly/CAPEv2/issues/3>: Uploading script files\r\n> to guest (id=win10, ip=192.168.100.50)\r\n> 2025-06-06 09:50:44,670 [lib.cuckoo.core.guest] INFO: Task #3\r\n> <https://github.com/kevoreilly/CAPEv2/issues/3>: Started capturing\r\n> screenshots for win10\r\n> 2025-06-06 09:51:05,127 [lib.cuckoo.core.resultserver] INFO: Task 3:\r\n> Process 2780 (parent 4540):\r\n> 45317968759d3e37282ceb75149f627d648534c5b4685f6da3966d8f6fca662d.exe, path\r\n> C:\\Users\\cape\\AppData\\Local\\Temp\\45317968759d3e37282ceb75149f627d648534c5b4685f6da3966d8f6fca662d.exe\r\n> 2025-06-06 09:51:19,425 [lib.cuckoo.core.guest] INFO: Task #3\r\n> <https://github.com/kevoreilly/CAPEv2/issues/3>: Analysis completed\r\n> successfully (id=win10, ip=192.168.100.50)\r\n> 2025-06-06 09:51:29,501 [lib.cuckoo.core.analysis_manager] INFO: Task #3\r\n> <https://github.com/kevoreilly/CAPEv2/issues/3>: Completed analysis\r\n> successfully.\r\n> 2025-06-06 09:51:29,505 [lib.cuckoo.core.analysis_manager] INFO: Task #3\r\n> <https://github.com/kevoreilly/CAPEv2/issues/3>: analysis procedure\r\n> completed\r\n>\r\n> Process.log\r\n> 2025-06-06 09:32:02,292 [root] INFO: Processing analysis data\r\n> 2025-06-06 09:36:55,643 [root] INFO: Processing analysis data\r\n> 2025-06-06 09:42:00,260 [root] INFO: Processing analysis data\r\n> 2025-06-06 09:47:03,035 [root] INFO: Processing analysis data\r\n> 2025-06-06 09:52:06,485 [root] INFO: Processing analysis data\r\n> 2025-06-06 09:57:08,575 [root] INFO: Processing analysis data\r\n> 2025-06-06 10:02:10,682 [root] INFO: Processing analysis data\r\n> 2025-06-06 10:07:12,745 [root] INFO: Processing analysis data\r\n> 2025-06-06 10:12:14,972 [root] INFO: Processing analysis data\r\n> 2025-06-06 10:17:17,210 [root] INFO: Processing analysis data\r\n> 2025-06-06 10:22:19,330 [root] INFO: Processing analysis data\r\n> 2025-06-06 10:27:21,358 [root] INFO: Processing analysis data\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2613>, or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH37FNJEHIJUKCKJ7WRD3CFU3LAVCNFSM6AAAAAB6XW6QSWVHI2DSMVQWIX3LMV43ASLTON2WKOZTGEZDIMZWHE2DCMY>\r\n> .\r\n> You are receiving this because you are subscribed to this thread.Message\r\n> ID: ***@***.***>\r\n>\r\n\nComment: **sudo systemctl status cape-processor.service**\n\u25cf cape-processor.service - CAPE report processor\n     Loaded: loaded (/usr/lib/systemd/system/cape-processor.service; enabled; preset: enabled)\n     Active: activating (auto-restart) (Result: exit-code) since Fri 2025-06-06 10:49:15 UTC; 27s ago\n       Docs: https://github.com/kevoreilly/CAPEv2\n    Process: 8442 ExecStart=/etc/poetry/bin/poetry run python process.py -p7 auto -pt 900 (code=exited, status=1/FAILURE)\n   Main PID: 8442 (code=exited, status=1/FAILURE)\n        CPU: 1.904s\n\n\n**journalctl -u cape-processor.service -n 20**\ncape@cape-VMware-Virtual-Platform:/opt/CAPEv2/log$ journalctl -u cape-processor.service -n 20\nJun 06 10:48:22 cape-VMware-Virtual-Platform poetry[8326]: ERROR: Memory Exception\nJun 06 10:48:22 cape-VMware-Virtual-Platform poetry[8326]: Remain: 5.20 GB\nJun 06 10:48:22 cape-VMware-Virtual-Platform poetry[8326]: Your system doesn't have enough FREE RAM to run processing!XLMMacroDeobfuscator: pywin32 is not installed (only is required if you want to use MS Ex>\nJun 06 10:48:22 cape-VMware-Virtual-Platform poetry[8326]: pip3 install certvalidator asn1crypto mscerts\nJun 06 10:48:22 cape-VMware-Virtual-Platform poetry[8326]: Unable to import plugin \"modules.signatures.all.credential_access_phishingkit\": Optional! Missed dependency. Run: poetry run pip install chepy\nJun 06 10:48:22 cape-VMware-Virtual-Platform systemd[1]: cape-processor.service: Main process exited, code=exited, status=1/FAILURE\nJun 06 10:48:22 cape-VMware-Virtual-Platform systemd[1]: cape-processor.service: Failed with result 'exit-code'.\nJun 06 10:48:22 cape-VMware-Virtual-Platform systemd[1]: cape-processor.service: Consumed 1.834s CPU time.\nJun 06 10:49:09 cape-VMware-Virtual-Platform systemd[1]: Stopped cape-processor.service - CAPE report processor.\nJun 06 10:49:09 cape-VMware-Virtual-Platform systemd[1]: cape-processor.service: Consumed 1.834s CPU time.\nJun 06 10:49:13 cape-VMware-Virtual-Platform systemd[1]: Started cape-processor.service - CAPE report processor.\nJun 06 10:49:15 cape-VMware-Virtual-Platform poetry[8442]: 2025-06-06 10:49:15,628 [root] INFO: Processing analysis data\nJun 06 10:49:15 cape-VMware-Virtual-Platform poetry[8442]: ERROR: Memory Exception\nJun 06 10:49:15 cape-VMware-Virtual-Platform poetry[8442]: Remain: 5.17 GB\nJun 06 10:49:15 cape-VMware-Virtual-Platform poetry[8442]: Your system doesn't have enough FREE RAM to run processing!XLMMacroDeobfuscator: pywin32 is not installed (only is required if you want to use MS Ex>\nJun 06 10:49:15 cape-VMware-Virtual-Platform poetry[8442]: pip3 install certvalidator asn1crypto mscerts\nJun 06 10:49:15 cape-VMware-Virtual-Platform poetry[8442]: Unable to import plugin \"modules.signatures.all.credential_access_phishingkit\": Optional! Missed dependency. Run: poetry run pip install chepy\nJun 06 10:49:15 cape-VMware-Virtual-Platform systemd[1]: cape-processor.service: Main process exited, code=exited, status=1/FAILURE\nJun 06 10:49:15 cape-VMware-Virtual-Platform systemd[1]: cape-processor.service: Failed with result 'exit-code'.\nJun 06 10:49:15 cape-VMware-Virtual-Platform systemd[1]: cape-processor.service: Consumed 1.904s CPU time.\n\n---\n\nI got the above where it says system does not have enough free RAM, do i need to increase the RAM allocated to the VM to fix this?\n\n---\n\n> Why not following official docs?\n\nBeing very honest here, I didn't follow the docs cuz it just overwhelms me with the amount of information inside the docs. So, I wanted to take the easy route by following online guides. \nComment: Thanks for your honesty - but it does waste our time when we have put the effort into making the docs. There is no easy route as you have found out, and online guides always seem to get something wrong. But it's not fair to make us take time out to walk you through this step by step. So please, follow the docs and if you have any specific feedback that might help make them less overwhelming for others like yourself, we would welcome it.\nComment: ```\nJun 06 10:48:22 cape-VMware-Virtual-Platform poetry[8326]: ERROR: Memory Exception\nJun 06 10:48:22 cape-VMware-Virtual-Platform poetry[8326]: Remain: 5.20 GB\nJun 06 10:48:22 cape-VMware-Virtual-Platform poetry[8326]: Your system doesn't have enough FREE RAM to run\n```\n\nCAPE doesn't have easy route, read the docs or you will get into a lot of issues with all non official blogs, they are outdated really fast, some of them has bad suggestions, etc, i didn't check this one\n\nis first time that i see ram issue, is not related to cape, so you have something bad on your setup, and idk what and why, start from 0 with oficial docs\nComment: Not to mention that many guides suggest nesting multiple hypervisors! This is an abomination and not something we recommend. If you want a good instance, use KVM on linux host and forget VMware. ",
+  "Title: fix: forbidden escape sequence \\r\nBody: None\nComment: thank you",
+  "Title: Update analysis_manager.py\nBody: None",
+  "Title: Bump h11 from 0.14.0 to 0.16.0\nBody: Bumps [h11](https://github.com/python-hyper/h11) from 0.14.0 to 0.16.0.\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/python-hyper/h11/commit/1c5b07581f058886c8bdd87adababd7d959dc7ca\"><code>1c5b075</code></a> this time for surer</li>\n<li><a href=\"https://github.com/python-hyper/h11/commit/d9c369935e853a7ee1aeb7e481f6dddf9b9c9b8a\"><code>d9c3699</code></a> this time for sure...</li>\n<li><a href=\"https://github.com/python-hyper/h11/commit/d91b9dd2290a25c8c3f5ec15feb57de5873e6e39\"><code>d91b9dd</code></a> blacken</li>\n<li><a href=\"https://github.com/python-hyper/h11/commit/5a4683ca466b59bbab9b19cfea20ee157b31cee0\"><code>5a4683c</code></a> Soothe mypy</li>\n<li><a href=\"https://github.com/python-hyper/h11/commit/9c9567f0a92d13a83a8d8ebdbc757c8c2d384536\"><code>9c9567f</code></a> Bump version to 0.16.0</li>\n<li><a href=\"https://github.com/python-hyper/h11/commit/114803a29ce50116dc47951c690ad4892b1a36ed\"><code>114803a</code></a> Merge commit from fork</li>\n<li><a href=\"https://github.com/python-hyper/h11/commit/9462006f6ce4941661888228cbd4ac1ea80689b0\"><code>9462006</code></a> Bump version to 0.15.0</li>\n<li><a href=\"https://github.com/python-hyper/h11/commit/70a96bea8e55403e5d92db14c111432c6d7a8685\"><code>70a96be</code></a> Merge pull request <a href=\"https://redirect.github.com/python-hyper/h11/issues/181\">#181</a> from Julien00859/Julien00859/get_int_max_str_digits</li>\n<li><a href=\"https://github.com/python-hyper/h11/commit/60782ad107e538b9312aac7e1c119c8358bf797c\"><code>60782ad</code></a> Reject Content-Length longer 1 billion TB</li>\n<li><a href=\"https://github.com/python-hyper/h11/commit/dff7cc397a26ed4acdedd92d1bda6c8f18a6ed9f\"><code>dff7cc3</code></a> Validate Chunked-Encoding chunk footer</li>\n<li>Additional commits viewable in <a href=\"https://github.com/python-hyper/h11/compare/v0.14.0...v0.16.0\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=h11&package-manager=pip&previous-version=0.14.0&new-version=0.16.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: add md5 and sha256 indexes in mongodb\nBody: None",
+  "Title: False Positive: MSOffice/PDF Documents Spawn Orphaned explorer.exe Processes\nBody: ## Problem Description\nWhen analyzing MS Office documents (Word, Excel, PowerPoint) or PDFs, CAPE incorrectly monitors `explorer.exe` processes that appear as orphaned/dummy processes with incorrect parent process IDs. These processes don't show the actual MS Office or Adobe Acrobat applications as their parent, leading to false positive detections.\n\n![Image](https://github.com/user-attachments/assets/7b874ed2-5c8c-42e6-90f8-fed7290addc3)\n\n![Image](https://github.com/user-attachments/assets/3c4e090f-e450-4ae1-83ec-553ffc1a9c22)\n\n## Impact\n- False Positive Signatures: Orphaned `explorer.exe` processes trigger suspicious signatures (related to normal behavior)\n- Incorrect Process Trees: Process relationships are not accurately represented\n- Analysis Noise: Legitimate MS Office/PDFs behavior appears suspicious\n\n## Proposed Solution\nWe can try to validate whether the created process has a valid PPID of the main analyzed process, and then we can inject the DLLs to monitor it inside analyzer.py `_handle_process`\n\n\n```\n  def _handle_process(self, data):\n  ...\n  ...\n\n        # Get actual PPID and validate relationship\n        ppid = proc.get_parent_pid()\n\n        if not in_protected_path(filename) and ppid in self.analyzer.process_list.pids:\n            log.info(\"Announced %s process name: %s pid: %d\", \"64-bit\" if is_64bit else \"32-bit\", filename, process_id)\n            _ = proc.inject(interest)\n            self.analyzer.LASTINJECT_TIME = timeit.default_timer()\n            self.analyzer.NUM_INJECTED += 1\n        proc.close()\n```",
+  "Title: kvm-qemu.sh error about bzip2 and apparmor\nBody: # Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n- [x] I am running the latest version\n- [x] I did read the README!\n- [x] I checked the documentation and found no answer\n- [x] I checked to make sure that this issue has not already been filed\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [x] I have read and checked all configs (with all optional parts)\n\n\n# Expected Behavior\n\nRun kvm-qemu.sh normaly and install kvm-qemu successfully.\n\n# Current Behavior\n\nkvm-qemu.sh print some errors.\n\n# Failure Information (for bugs)\n\nERROR: Program 'bzip2' not found or not executable  \nERROR: Problem encountered: Cannot enable apparmor_profiles without apparmor\n\n## Steps to Reproduce\n\nRun kvm-qemu.sh:\n```sh\nsudo ./kvm-qemu.sh all cape 2>&1 | tee kvm-qemu.log\n```\n\n## Context\n\n| Question         | Answer\n|------------------|--------------------\n| Git commit       | commit dc658cce622fe3b5c41e638d5590466f0f6a03aa\n| OS version       | Ubuntu 24.04\n\n## Failure Logs\n\n[kvm-qemu.log](https://github.com/user-attachments/files/20429693/kvm-qemu.log)\n\nComment: There is not enough information to go off of here to help you really solve this issue. What is missing is what you did on the system before you ran the script.\n- Is this a fresh ubuntu install?\n- Did you have an installation of ubuntu 22.04 and then upgrade to 24.04?\n- Prior to the script, did you run any `apt-get install ...`, `apt-get upgrade ...`, `make install`, `python setup.py install`, or `apt install -f ...`?\n\n\n**BE WARE**: _You are better of doing a new install of ubuntu 24.04 instead of trying to fix what is misconfigured on your system._\n\n### Error\nLooking at your log, I see the issue deals with dependencies. Search for `{b}` in your log file. The lines following those will show the exact cause of the conflicts. For example:\n```\nThe following NEW packages will be installed:\n  libapparmor-dev{b} \n...\nThe following packages have unmet dependencies:\n libapparmor-dev : Depends: libapparmor1 (= 4.0.0-beta3-0ubuntu3) but 4.0.1really4.0.1-0ubuntu0.24.04.3 is installed\n```\n\n### Points of Failure\nThe `aptitude install` failures happen at lines [849](https://github.com/kevoreilly/CAPEv2/blob/master/installer/kvm-qemu.sh#L849), [850](https://github.com/kevoreilly/CAPEv2/blob/master/installer/kvm-qemu.sh#L850), [702](https://github.com/kevoreilly/CAPEv2/blob/master/installer/kvm-qemu.sh#L702), [475](https://github.com/kevoreilly/CAPEv2/blob/master/installer/kvm-qemu.sh#L475), and [263](https://github.com/kevoreilly/CAPEv2/blob/master/installer/kvm-qemu.sh#L263) (in that order).\n\nStep-by-step of the failures:\n1. Log shows `libbz2-dev : Depends: libbz2-1.0 (= 1.0.8-5.1) but 1.0.8-5.1build0.1 is installed`\n2. [./configure](https://github.com/kevoreilly/CAPEv2/blob/master/installer/kvm-qemu.sh#L894) uses the config flag `--enable-bzip2`, causing QEMU to fail compiling\n3. SeaBIOS can't copy the patched BIOS files to `/usr/share/qemu/` because QEMU never installed\n4. Log shows `libapparmor-dev : Depends: libapparmor1 (= 4.0.0-beta3-0ubuntu3) but 4.0.1really4.0.1-0ubuntu0.24.04.3 is installed`\n5. Libvirt fails because of the meson commands `-D apparmor_profiles=enabled`\n\n### Misconfiguration\nNot sure how it happened for you, but you have disabled/deleted apt repository entries for updates and backports. Your logs show only these repositories being hit when `apt-get update` is run:\n```\nHit:1 http://mirrors.huaweicloud.com/repository/ubuntu noble InRelease\nHit:2 http://security.ubuntu.com/ubuntu noble-security InRelease\nHit:3 https://apt.v2raya.org v2raya InRelease\n```\n\n### Verification\nVerify that is true by checking `apt policy libapparmor-dev libapparmor1`. Does `libapparmor-dev` show `4.0.1really4.0.1-0ubuntu0.24.04.3` under the version table? If not, that's the issue. Apt isn't connected to the repository that holds that version. \n\nYou are likely missing `noble-updates` and `noble-backports`. You can check your source list and add what you need. First make a backup in case something goofy happens, `cp /etc/apt/source.list.d/ubuntu.sources ~/`. Then, `nano /etc/apt/source.list.d/ubuntu.sources` and it should look something like:\n```\nTypes: deb\nURIs: http://archive.ubuntu.com/ubuntu/\nSuites: noble noble-updates noble-backports\nComponents: main restricted universe multiverse\nSigned-By: /usr/share/keyrings/ubuntu-archive-keyring.gpg\n\nTypes: deb\nURIs: http://security.ubuntu.com/ubuntu/\nSuites: noble-security\nComponents: main restricted universe multiverse\nSigned-By: /usr/share/keyrings/ubuntu-archive-keyring.gpg\n```\n\n### Fix Attempt\nIf you are missing suites for `noble-updates` and `noble-backports` as I suspect, add them if so and run `sudo apt update`.\n\nReview the output from `sudo apt update` and check for any issues. If you hit some and still feel like carrying on, you will have to research the best way to do that without blowing up your OS.\n\n**Just do a reinstall of ubuntu 24.04 and save yourself the headache.**\nComment: just my 2 cents, while that is nice suggestion and help. \n\nBut\n> BE WARE: You are better of doing a new install of ubuntu 24.04 instead of trying to fix what is misconfigured on your system.\n\nif i would do that, i would be skill less :) \nComment: This is a fresh ubuntu install: ubuntu-24.04.2-desktop-amd64.iso.  \nThe error log is hard to understand and it's hard to resolve these errors.  \nWhat version of ubuntu do you use?\nComment: ubuntu 24.04 server edition\nComment: @ChrisThibodeaux provided amazing points here, we need more details about everything, is not that easy to see what is wrong with limited data\nComment: @ChrisThibodeaux  Add noble-updates and noble-backports, it works. Thank you!",
+  "Title: Modify kvm-qemu.sh to apply changes in  #1634 back\nBody: Modify kvm installer to address issue #2588",
+  "Title: Bump django from 5.1.8 to 5.1.9\nBody: Bumps [django](https://github.com/django/django) from 5.1.8 to 5.1.9.\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/django/django/commit/db5c8a97bb084cee880e678681d63bddecf6d38b\"><code>db5c8a9</code></a> [5.1.x] Bumped version for 5.1.9 release.</li>\n<li><a href=\"https://github.com/django/django/commit/0b42f6a528df966729b24ecaaed67f85e5edc3dc\"><code>0b42f6a</code></a> [5.1.x] Fixed CVE-2025-32873 -- Mitigated potential DoS in strip_tags().</li>\n<li><a href=\"https://github.com/django/django/commit/1520d18e9c65a95339dc453a655ac91489532e9c\"><code>1520d18</code></a> [5.1.x] Added upcoming security release to release notes.</li>\n<li><a href=\"https://github.com/django/django/commit/660067f8e7a61e9877c5c8977f8401b00b6c9d9d\"><code>660067f</code></a> [5.1.x] Refs <a href=\"https://redirect.github.com/django/django/issues/36341\">#36341</a> -- Added release notes for 5.1.9 and 4.2.21 for fix in wo...</li>\n<li><a href=\"https://github.com/django/django/commit/09a1813cb8de0eaf8af8d612a223532dd6254b1f\"><code>09a1813</code></a> [5.1.x] Fixed <a href=\"https://redirect.github.com/django/django/issues/36341\">#36341</a> -- Preserved whitespaces in wordwrap template filter.</li>\n<li><a href=\"https://github.com/django/django/commit/0aa0224107f09c02fbb30bdf6bbc4be49df8c0bf\"><code>0aa0224</code></a> [5.1.x] Fixed warnings per flake8 7.2.0.</li>\n<li><a href=\"https://github.com/django/django/commit/3215e2a232c7afebd09c7adfc5d972e71512c4d2\"><code>3215e2a</code></a> [5.1.x] Pinned isort version to &quot;&lt;6.0.0&quot; to avoid undesired reformat.</li>\n<li><a href=\"https://github.com/django/django/commit/af6d305fc7ac375c9a273b49c8038e5e9030830b\"><code>af6d305</code></a> [5.1.x] Fixed <a href=\"https://redirect.github.com/django/django/issues/36320\">#36320</a> -- Ignored &quot;duplicated_toc_entry&quot; for ePub docs build.</li>\n<li><a href=\"https://github.com/django/django/commit/39b144baddca433b9aa28f99e595ffcc191c0bee\"><code>39b144b</code></a> [5.1.x] Fixed <a href=\"https://redirect.github.com/django/django/issues/36298\">#36298</a> -- Truncated the overwritten file content in file_move_s...</li>\n<li><a href=\"https://github.com/django/django/commit/bbf376bbc8cdfca817b54e7df99539633d10b06e\"><code>bbf376b</code></a> [5.1.x] Fixed <a href=\"https://redirect.github.com/django/django/issues/35980\">#35980</a> -- Updated setuptools to normalize package names in buil...</li>\n<li>Additional commits viewable in <a href=\"https://github.com/django/django/compare/5.1.8...5.1.9\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=django&package-manager=pip&previous-version=5.1.8&new-version=5.1.9)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: `stop()` in `physical.py` fails to re-image VMs when agent crashes\nBody: # My Setup\nI'm using physical machines managed by a FOG server to re-image VMs after each malware analysis. After an analysis completes, CAPE calls the `stop()` method in physical.py to reset the machine. This method checks the VM state; if it's running, it triggers a deployment task via the FOG server to restore the VM to a clean snapshot.\n\nHere\u2019s the relevant part of the code:\n \n```\ndef stop(self, label):\n      \"\"\"Stop a physical machine.\n      @param label: physical machine name.\n      @raise CuckooMachineError: if unable to stop.\n      \"\"\"\n      taskID_Deploy = 0\n      hostID = 0\n      \n      ## IF AGENT IS CRASHED, THIS CONDITION WOULDN'T BE TRIGGERED\n      ## THE VM WOULDN'T BE RE-IMAGGED\n      if self._status(label) == self.RUNNING:\n          log.debug(\"Rebooting machine: %s\", label)\n          machine = self._get_machine(label)\n\n          r_hosts = requests.get(f\"http://{self.options.fog.hostname}/fog/host\", headers=headers)\n          hosts = r_hosts.json()[\"hosts\"]\n\n          for host in hosts:\n              if machine.name == host[\"name\"]:\n                  print(f\"{host['id']}: {host['name']}\")\n                  hostID = host[\"id\"]\n                  r_types = requests.get(f\"http://{self.options.fog.hostname}/fog/tasktype\", headers=headers)\n                  types = r_types.json()\n```\n# Current Behavior\n\nWhen the agent inside the VM crashes, `self._status(label)` does not return RUNNING. As a result, the VM is skipped and never re-imaged, leaving it in an infected state indefinitely.\n\n```\n# IF THE AGENT CRASHES, THIS CONDITION IS NEVER TRIGGERED,\n# AND THE VM WILL NOT BE RE-IMAGED\nif self._status(label) == self.RUNNING:\n```\n\n# Fix Attempt 1\nTo work around this, I modified the condition to check if the machine object is returned by `self._get_machine(label)` instead of relying on `self._status(label)`:\n\n```\nmachine = self._get_machine(label)\n\n# if self._status(label) == self.RUNNING:\nif machine:\n    log.debug(\"Rebooting machine: %s\", label)\n    # machine = self._get_machine(label)\n```\n\n# New Problem Introduced\nWhile this workaround successfully initiates re-imaging even when the agent crashes, it appears to cause another issue: machines with agent crashes are no longer used in subsequent analyses. I suspect this is because they are marked as inactive or removed from the machines pool in the SQLAlchemy-backed database.\n\n\nComment: Hmm well firstly which agent version are you using? It sounds to me like we should fix the crash rather than the behavior upon crashing.\nComment: > Hmm well firstly which agent version are you using? It sounds to me like we should fix the crash rather than the behavior upon crashing.\n\nSorry for that delay, I use the latest agent version 0.19 ",
+  "Title: Update database.py so that the sample database will use bigint for fi\u2026\nBody: \u2026le_size.\r\n\r\nFor users that have an existing database when upgrading CAPEv2, you need to alter the database schema before the upgrade: \r\n\r\nALTER TABLE samples\r\nALTER COLUMN file_size TYPE BIGINT;\r\n\r\nAnd restart the related services.\nComment: hello thank you, the fix is partial, we need alembic migration to properly make users aware of it, we can't just hope that they will check readme. i will implement it once im back in june\nComment: > hello thank you, the fix is partial, we need alembic migration to properly make users aware of it, we can't just hope that they will check readme. i will implement it once im back in june\r\n\r\nperfect, thanks a lot!\nComment: this is now addressed in upcoming database modernization/cleanup in staging branch, thanks for headups",
+  "Title: File of size greater than 1.7GB cannot be accepted\nBody: # Current Behavior and Failure Information\nWhen a user submit a file of size greater than 1.7GB, the submission will be failed with error message such as bellow: \n\n![Image](https://github.com/user-attachments/assets/f207282c-8b34-40a4-b2dc-4d61b1abb08d)\n\n# Cause\nThat is caused by the schema of the sample table on the database.\n\n![Image](https://github.com/user-attachments/assets/a01f4325-f8c9-4b6f-acc7-4da5b994a3ef)\n\nAn workaround is to alter the schema to change the fize_size from type integer to bigint and update the source code.\n\n![Image](https://github.com/user-attachments/assets/d89465a1-9c87-413a-ab97-7372f5899dfa)\n\n![Image](https://github.com/user-attachments/assets/7781f278-cd9d-49cc-9b47-8f21021c7c61)\n\n![Image](https://github.com/user-attachments/assets/d28f7e8e-5ab5-4082-b927-d962f5d13c4e)\nComment: https://github.com/kevoreilly/CAPEv2/pull/2603 will address the issue. \nComment: thank you, fixed in staging already, will be merged in more less 1 month",
+  "Title: Use qemu screenshots config\nBody: None",
+  "Title: Bump setuptools from 75.8.0 to 78.1.1\nBody: Bumps [setuptools](https://github.com/pypa/setuptools) from 75.8.0 to 78.1.1.\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/pypa/setuptools/blob/main/NEWS.rst\">setuptools's changelog</a>.</em></p>\n<blockquote>\n<h1>v78.1.1</h1>\n<h2>Bugfixes</h2>\n<ul>\n<li>More fully sanitized the filename in PackageIndex._download. (<a href=\"https://redirect.github.com/pypa/setuptools/issues/4946\">#4946</a>)</li>\n</ul>\n<h1>v78.1.0</h1>\n<h2>Features</h2>\n<ul>\n<li>Restore access to _get_vc_env with a warning. (<a href=\"https://redirect.github.com/pypa/setuptools/issues/4874\">#4874</a>)</li>\n</ul>\n<h1>v78.0.2</h1>\n<h2>Bugfixes</h2>\n<ul>\n<li>Postponed removals of deprecated dash-separated and uppercase fields in <code>setup.cfg</code>.\nAll packages with deprecated configurations are advised to move before 2026. (<a href=\"https://redirect.github.com/pypa/setuptools/issues/4911\">#4911</a>)</li>\n</ul>\n<h1>v78.0.1</h1>\n<h2>Misc</h2>\n<ul>\n<li><a href=\"https://redirect.github.com/pypa/setuptools/issues/4909\">#4909</a></li>\n</ul>\n<h1>v78.0.0</h1>\n<h2>Bugfixes</h2>\n<ul>\n<li>Reverted distutils changes that broke the monkey patching of command classes. (<a href=\"https://redirect.github.com/pypa/setuptools/issues/4902\">#4902</a>)</li>\n</ul>\n<h2>Deprecations and Removals</h2>\n<ul>\n<li>Setuptools no longer accepts options containing uppercase or dash characters in <code>setup.cfg</code>.</li>\n</ul>\n<!-- raw HTML omitted -->\n</blockquote>\n<p>... (truncated)</p>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/pypa/setuptools/commit/8e4868a036b7fae3208d16cb4e5fe6d63c3752df\"><code>8e4868a</code></a> Bump version: 78.1.0 \u2192 78.1.1</li>\n<li><a href=\"https://github.com/pypa/setuptools/commit/100e9a61ad24d5a147ada57357425a8d40626d09\"><code>100e9a6</code></a> Merge pull request <a href=\"https://redirect.github.com/pypa/setuptools/issues/4951\">#4951</a></li>\n<li><a href=\"https://github.com/pypa/setuptools/commit/8faf1d7e0ca309983252e4f21837b73ee12e960f\"><code>8faf1d7</code></a> Add news fragment.</li>\n<li><a href=\"https://github.com/pypa/setuptools/commit/2ca4a9fe4758fcd39d771d3d3a5b4840aacebdf7\"><code>2ca4a9f</code></a> Rely on re.sub to perform the decision in one expression.</li>\n<li><a href=\"https://github.com/pypa/setuptools/commit/e409e8002932f2b86aae7b1abc8f8c2ebf96df2c\"><code>e409e80</code></a> Extract _sanitize method for sanitizing the filename.</li>\n<li><a href=\"https://github.com/pypa/setuptools/commit/250a6d17978f9f6ac3ac887091f2d32886fbbb0b\"><code>250a6d1</code></a> Add a check to ensure the name resolves relative to the tmpdir.</li>\n<li><a href=\"https://github.com/pypa/setuptools/commit/d8390feaa99091d1ba9626bec0e4ba7072fc507a\"><code>d8390fe</code></a> Extract _resolve_download_filename with test.</li>\n<li><a href=\"https://github.com/pypa/setuptools/commit/4e1e89392de5cb405e7844cdc8b20fc2755dbaba\"><code>4e1e893</code></a> Merge <a href=\"https://github.com/jaraco/skeleton\">https://github.com/jaraco/skeleton</a></li>\n<li><a href=\"https://github.com/pypa/setuptools/commit/3a3144f0d2887fa37c06550f42a101e9eebd953a\"><code>3a3144f</code></a> Fix typo: <code>pyproject.license</code> -&gt; <code>project.license</code> (<a href=\"https://redirect.github.com/pypa/setuptools/issues/4931\">#4931</a>)</li>\n<li><a href=\"https://github.com/pypa/setuptools/commit/d751068fd2627d6d8f1729e39cbcd8119049998f\"><code>d751068</code></a> Fix typo: pyproject.license -&gt; project.license</li>\n<li>Additional commits viewable in <a href=\"https://github.com/pypa/setuptools/compare/v75.8.0...v78.1.1\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=setuptools&package-manager=pip&previous-version=75.8.0&new-version=78.1.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: ERROR: PE type not recognised: 'DOS Header magic not found' on .ELF analysis process\nBody: # Prerequisites\n- [x] I am running the latest version\n- [x] I did read the README!\n- [x] I checked the documentation and found no answer\n- [x] I checked to make sure that this issue has not already been filed\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [x] I have read and checked all configs (with all optional parts)\n\n\n# Expected Behavior\n.ELF can be analyzed\n\n# Current Behavior\ncape.service say \"ERROR: PE type not recognised: 'DOS Header magic not found'\"\n\n## Steps to Reproduce\n1. Run kvm-qemu.sh with all argument and cape2.sh\n2. Configure the .conf file\n3. Build Ubuntu 22 Desktop on KVM-QEMU, then configure with refference https://capev2.readthedocs.io/en/latest/installation/guest/linux.html\n4. Testing agent.py, the result is OK\n5. Take snapshot\n6. Sumbit .ELF file, but the error say ERROR: PE type not recognised: 'DOS Header magic not found'\n\n![Image](https://github.com/user-attachments/assets/36461a20-de45-4f23-99f7-df691b2647c6)\n\nComment: that can be ignored, is just not PE file",
+  "Title: fixed flare-capa, flare-floss and GUI Buttons\nBody: fixed flare-capa, flare-floss and GUI Buttons\r\nMaybe we should wait for doomed to review this ;)",
+  "Title: CAPE Agent fails for no obvious reason\nBody: # Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n- [X] I am running the latest version\n- [X] I did read the README!\n- [X] I checked the documentation and found no answer\n- [X] I checked to make sure that this issue has not already been filed\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [X] I have read and checked all configs (with all optional parts)\n\n\n# Expected Behavior\n\nSubmitting a File to analyze over the CAPE WebUI to my client, should execute it there and document the behavior\n\n# Current Behavior\nOnce I click the analyze Button, the Logs indicate that it can connect to the Machine, however, the Agent fails for no reason - Log output please see below\n\n## Steps to Reproduce\n\nPlease provide detailed steps for reproducing the issue.\n\n1. Submit File to Analyze\n2. Check either journalctl or the cuckoo log afterwards for errors like the one below\n\n## Context\n\nI'm running on a Ubuntu 24.04.2 with a Windows Machine in KVM. \nI noticed that the Agent on the Windows Machine never started due to the following issue:\n`File C:\\..\\..\\agent.py import cgi\nModuleNotFoundError: No module named cgi`\nIf I however, comment this line out of the config on the Windows Machine and then start the Agent again, I can successfully connect.  \n\n\n## Failure Logs\n\n`2025-05-15 04:51:44,530 [lib.cuckoo.common.integrations.parse_pe] ERROR: PE type not recognised: 'DOS Header magic not found.'\n2025-05-15 04:51:44,541 [lib.cuckoo.core.guest] INFO: Task #31: Starting analysis on guest (id=win10, ip=192.168.122.150)\n2025-05-15 04:51:45,797 [lib.cuckoo.core.guest] INFO: Task #31: Guest is running CAPE Agent 0.19 (id=win10, ip=192.168.122.150)\n2025-05-15 04:51:46,302 [lib.cuckoo.core.analysis_manager] ERROR: Task #31: CAPE Agent failed without error status, please try upgrading to the latest version of agent.py (>= 0.10) and notify us if the issue persists\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]: Traceback (most recent call last):\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/urllib3/connectionpool.py\", line 787, in urlopen\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:     response = self._make_request(\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:                ^^^^^^^^^^^^^^^^^^^\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/urllib3/connectionpool.py\", line 534, in _make_request\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:     response = conn.getresponse()\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:                ^^^^^^^^^^^^^^^^^^\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/urllib3/connection.py\", line 516, in getresponse\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:     httplib_response = super().getresponse()\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:                        ^^^^^^^^^^^^^^^^^^^^^\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:   File \"/usr/lib/python3.12/http/client.py\", line 1428, in getresponse\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:     response.begin()\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:   File \"/usr/lib/python3.12/http/client.py\", line 331, in begin\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:     version, status, reason = self._read_status()\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:                               ^^^^^^^^^^^^^^^^^^^\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:   File \"/usr/lib/python3.12/http/client.py\", line 300, in _read_status\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:     raise RemoteDisconnected(\"Remote end closed connection without\"\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]: http.client.RemoteDisconnected: Remote end closed connection without response\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]: During handling of the above exception, another exception occurred:\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]: Traceback (most recent call last):\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/requests/adapters.py\", line 589, in send\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:     resp = conn.urlopen(\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:            ^^^^^^^^^^^^^\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/urllib3/connectionpool.py\", line 841, in urlopen\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:     retries = retries.increment(\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:               ^^^^^^^^^^^^^^^^^^\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/urllib3/util/retry.py\", line 474, in increment\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:     raise reraise(type(error), error, _stacktrace)\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/urllib3/util/util.py\", line 38, in reraise\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:     raise value.with_traceback(tb)\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/urllib3/connectionpool.py\", line 787, in urlopen\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:     response = self._make_request(\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:                ^^^^^^^^^^^^^^^^^^^\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/urllib3/connectionpool.py\", line 534, in _make_request\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:     response = conn.getresponse()\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:                ^^^^^^^^^^^^^^^^^^\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/urllib3/connection.py\", line 516, in getresponse\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:     httplib_response = super().getresponse()\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:                        ^^^^^^^^^^^^^^^^^^^^^\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:   File \"/usr/lib/python3.12/http/client.py\", line 1428, in getresponse\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:     response.begin()\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:   File \"/usr/lib/python3.12/http/client.py\", line 331, in begin\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:     version, status, reason = self._read_status()\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:                               ^^^^^^^^^^^^^^^^^^^\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:   File \"/usr/lib/python3.12/http/client.py\", line 300, in _read_status\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:     raise RemoteDisconnected(\"Remote end closed connection without\"\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]: urllib3.exceptions.ProtocolError: ('Connection aborted.', RemoteDisconnected('Remote end closed connection without response'))\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]: During handling of the above exception, another exception occurred:\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]: Traceback (most recent call last):\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:   File \"/opt/CAPEv2/lib/cuckoo/core/guest.py\", line 136, in post\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:     r = session.post(url, *args, **kwargs)\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:         ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/requests/sessions.py\", line 637, in post\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:     return self.request(\"POST\", url, data=data, json=json, **kwargs)\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:            ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/requests/sessions.py\", line 589, in request\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:     resp = self.send(prep, **send_kwargs)\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:            ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/requests/sessions.py\", line 703, in send\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:     r = adapter.send(request, **kwargs)\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:         ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/requests/adapters.py\", line 604, in send\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:     raise ConnectionError(err, request=request)\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]: requests.exceptions.ConnectionError: ('Connection aborted.', RemoteDisconnected('Remote end closed connection without response'))\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]: During handling of the above exception, another exception occurred:\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]: Traceback (most recent call last):\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:   File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 452, in perform_analysis\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:     self.run_analysis_on_guest()\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:   File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 418, in run_analysis_on_guest\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:     guest_manager.start_analysis(options)\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:   File \"/opt/CAPEv2/lib/cuckoo/core/guest.py\", line 301, in start_analysis\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:     self.upload_analyzer()\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:   File \"/opt/CAPEv2/lib/cuckoo/core/guest.py\", line 202, in upload_analyzer\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:     self.determine_analyzer_path()\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:   File \"/opt/CAPEv2/lib/cuckoo/core/guest.py\", line 181, in determine_analyzer_path\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:     r = self.post(\"/mkdtemp\", data={\"dirpath\": systemdrive})\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:         ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:   File \"/opt/CAPEv2/lib/cuckoo/core/guest.py\", line 138, in post\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]:     raise CuckooGuestError(\nMay 15 07:40:01 sandbox-VirtualBox poetry[2302]: lib.cuckoo.common.exceptions.CuckooGuestError: CAPE Agent failed without error status, please try upgrading to the latest version of agent.py (>= 0.10) and notify us if the issue persists`\nComment: I think the most pertinent bit of information about your setup is missing. Since it is the agent that is failing, and this is running on the Windows guest, it might be helpful to know what Python version you have installed in the guest.\n\nBut I recognise this error as being due to Python deprecating cgi in version 3.13. Therefore I am guessing you are on 3.13 on guest. Please remove this and try 3.12, this should fix it. We will probably have to update the readme & documentation to say no later than 3.12 on guest.\nComment: Yea you're right. I'm running on 3.13 (32-bit as per the Documentation)\nAppreciate the feedback - I'll test that real quick and will let you guys know.\nComment: UPDATE: using python 3.12.10 (32bit) on my Windows machine has fixed the issue. \nI'm still facing some other problems (minor ones), but I'll try to figure this out.\n\nReally appreciate the help!\nComment: I do have another quick Question if you don't mind - did you guys ever encounter such error:\n`025-05-16 06:17:52,112 [lib.cuckoo.core.plugins] ERROR: import_package: modules.processing.CAPE - error: Error detecting the version of libcrypto`\n\nBecause of this, I do get a tone of errors in the logs - but apparently the analysis isn't effected by that (?)\nComment: UPDATE:\nAfter downgrading Python on my Ubuntu 24.04.2 from Python3.12 to Python 3.10, everything is working as expected.\n\nTherefore this issue can be closed. Thank you again for pointing me into the right direction.",
+  "Title: FIX: replace <WOOT> with proper env in replace_seabios_clues_public\nBody: There was some place in `kvm-qemu.sh` script that  the `<WOOT>` was not replaced with proper value.\r\nSo i defined an env and replace them accordingly\nComment: hello, this is not fully correct, you replace 2 different patterns with just 1, they should have their own replacement patterns\nComment: thank you",
+  "Title: update latrodectus yara\nBody: None",
+  "Title: Time Based Evasion detection\nBody: Hello\nI was reading about Time Based Evasion technique that malwares can use.\nDoes cape do anything to detect or  prevent Time Based Evasion behavior of a malware?\nComment: I'm afraid this isn't the place for general open-ended questions - cape is a large open source project, feel free to read the source code - but it a nutshell, yes.",
+  "Title: Bump django from 5.1.8 to 5.1.9\nBody: Bumps [django](https://github.com/django/django) from 5.1.8 to 5.1.9.\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/django/django/commit/db5c8a97bb084cee880e678681d63bddecf6d38b\"><code>db5c8a9</code></a> [5.1.x] Bumped version for 5.1.9 release.</li>\n<li><a href=\"https://github.com/django/django/commit/0b42f6a528df966729b24ecaaed67f85e5edc3dc\"><code>0b42f6a</code></a> [5.1.x] Fixed CVE-2025-32873 -- Mitigated potential DoS in strip_tags().</li>\n<li><a href=\"https://github.com/django/django/commit/1520d18e9c65a95339dc453a655ac91489532e9c\"><code>1520d18</code></a> [5.1.x] Added upcoming security release to release notes.</li>\n<li><a href=\"https://github.com/django/django/commit/660067f8e7a61e9877c5c8977f8401b00b6c9d9d\"><code>660067f</code></a> [5.1.x] Refs <a href=\"https://redirect.github.com/django/django/issues/36341\">#36341</a> -- Added release notes for 5.1.9 and 4.2.21 for fix in wo...</li>\n<li><a href=\"https://github.com/django/django/commit/09a1813cb8de0eaf8af8d612a223532dd6254b1f\"><code>09a1813</code></a> [5.1.x] Fixed <a href=\"https://redirect.github.com/django/django/issues/36341\">#36341</a> -- Preserved whitespaces in wordwrap template filter.</li>\n<li><a href=\"https://github.com/django/django/commit/0aa0224107f09c02fbb30bdf6bbc4be49df8c0bf\"><code>0aa0224</code></a> [5.1.x] Fixed warnings per flake8 7.2.0.</li>\n<li><a href=\"https://github.com/django/django/commit/3215e2a232c7afebd09c7adfc5d972e71512c4d2\"><code>3215e2a</code></a> [5.1.x] Pinned isort version to &quot;&lt;6.0.0&quot; to avoid undesired reformat.</li>\n<li><a href=\"https://github.com/django/django/commit/af6d305fc7ac375c9a273b49c8038e5e9030830b\"><code>af6d305</code></a> [5.1.x] Fixed <a href=\"https://redirect.github.com/django/django/issues/36320\">#36320</a> -- Ignored &quot;duplicated_toc_entry&quot; for ePub docs build.</li>\n<li><a href=\"https://github.com/django/django/commit/39b144baddca433b9aa28f99e595ffcc191c0bee\"><code>39b144b</code></a> [5.1.x] Fixed <a href=\"https://redirect.github.com/django/django/issues/36298\">#36298</a> -- Truncated the overwritten file content in file_move_s...</li>\n<li><a href=\"https://github.com/django/django/commit/bbf376bbc8cdfca817b54e7df99539633d10b06e\"><code>bbf376b</code></a> [5.1.x] Fixed <a href=\"https://redirect.github.com/django/django/issues/35980\">#35980</a> -- Updated setuptools to normalize package names in buil...</li>\n<li>Additional commits viewable in <a href=\"https://github.com/django/django/compare/5.1.8...5.1.9\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=django&package-manager=pip&previous-version=5.1.8&new-version=5.1.9)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: After calling delete_tasks, open a new session\nBody: - the test was failing",
+  "Title: FLARE-FLOSS & FLARE-CAPA button/tab menu didn't show\nBody: # Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n- [x] I am running the latest version\n- [x] I did read the README!\n- [x] I checked the documentation and found no answer\n- [x] I checked to make sure that this issue has not already been filed\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [x] I have read and checked all configs (with all optional parts)\n\n# Expected Behavior\n\nFLARE-FLOSS & FLARE-CAPA button/tab menu and also the result shown.\n\n# Current Behavior\n\nFLARE-FLOSS & FLARE-CAPA button/tab menu didn't show\n\n## Steps to Reproduce\n\n- [x] running kvm-qemu.sh , then cape2.sh\n- [x] set vm for sandbox, then set agent.py and also snapshot on sandbox vm\n- [x] set the .conf file, and also enabling the CAPA & FLOSS feature in integration.conf\n- [x] run poetry for install flare-floss & flare-capa pypi package\n- [x] testing analyzing malware\n- [ ] the result is shown normal, but the CAPA & FLOSS didn't show. In the previous version thats menu/tab show on \"Quick Overview\" result\nComment: is it because the process is still call FLOSS and CAPA from processing.conf, but in the latest version, FLOSS and CAPA conf declare in the integration.conf (?)\nComment: I'm not sure about this I'm afraid - it will have to wait until others more familiar with the code there are available. Sorry about that.\nComment: > I'm not sure about this I'm afraid - it will have to wait until others more familiar with the code there are available. Sorry about that.\n\nThank you very much Sir, it solve by copying the flare and floss conf from `integrations.conf` to the `processing.conf`",
+  "Title: ERROR: No subproject or keycodemapdb\nBody: I get error When I execute kvm-qemu.sh script\n\nsudo ./kvm-qemu.sh all <username> | tee kvm-qemu.log\n\n```\n.....\nProgram vgscan found: YES (/sbin/vgscan)\nProgram pvs found: YES (/sbin/pvs)\nProgram vgs found: YES (/sbin/vgs)\nProgram lvs found: YES (/sbin/lvs)\nProgram dtrace found: YES (/usr/bin/dtrace)\nProgram systemctl found: YES (/usr/bin/systemctl)\nCheck usable header \"nss.h\" : YES \nChecking for type \"struct gaih_addrtuple\" : YES \nChecking for type \"ns_mtab\" : NO \nProgram numad found: YES (/usr/bin/numad)\nERROR: Subproject keycodemapdb is buildable: NO\n\nmeson.build:2139:15: ERROR: Neither a subproject directory nor a keycodemapdb.wrap file was found.\n\nA full log can be found at /tmp/libvirt-11.1.0/build/meson-logs/meson-log.txt\nninja: Entering directory `build'\nninja: error: loading 'build.ninja': No such file or directory\nninja: Entering directory `build'\nninja: error: loading 'build.ninja': No such file or directory\n\\033[0;31mFailed. Read the instalation log for details\\033[0m\n```\n\nhttps://github.com/libvirt/libvirt/blob/master/subprojects/keycodemapdb not found\n\nlog\ncat /tmp/libvirt-11.1.0/build/meson-logs/meson-log.txt\n```\n......\nWorking directory:  /tmp/libvirt-11.1.0/build/meson-private/tmpppuwlk9o\nCode:\n#include <nsswitch.h>\n        void bar(void) {\n            (void) sizeof(ns_mtab);\n        }\n-----------\nCommand line: `cc /tmp/libvirt-11.1.0/build/meson-private/tmpppuwlk9o/testfile.c -o /tmp/libvirt-11.1.0/build/meson-private/tmpppuwlk9o/output.obj -c -D_FILE_OFFSET_BITS=64 -O0 -std=gnu99` -> 1\nstderr:\n/tmp/libvirt-11.1.0/build/meson-private/tmpppuwlk9o/testfile.c:1:10: fatal error: nsswitch.h: No such file or directory\n    1 | #include <nsswitch.h>\n      |          ^~~~~~~~~~~~\ncompilation terminated.\n-----------\nChecking for type \"ns_mtab\" : NO \nProgram numad found: YES (/usr/bin/numad)\nERROR: Subproject keycodemapdb is buildable: NO\n\nmeson.build:2139:15: ERROR: Neither a subproject directory nor a keycodemapdb.wrap file was found.\n```\nI don't know how to solve this problem.\nComment: os: ubuntu 24.04\nComment: Hi,\ni cant reproduce that.\nJust tested the installer on fresh ubuntu 24.04 desktop machine.\n\n1. wget https://raw.githubusercontent.com/kevoreilly/CAPEv2/refs/heads/master/installer/kvm-qemu.sh\n2. chmod +x kvm-qemu.sh\n3. Replace <WOOT> in kvm-qemu.sh\n4. as cape-user: sudo ./kvm-qemu.sh all | tee kvm-qemu.log\n\nkvm-qemu.sh log:\n```\n...\nProgram vgscan found: YES (/sbin/vgscan)\nProgram pvs found: YES (/sbin/pvs)\nProgram vgs found: YES (/sbin/vgs)\nProgram lvs found: YES (/sbin/lvs)\nProgram dtrace found: YES (/usr/bin/dtrace)\nProgram systemctl found: YES (/usr/bin/systemctl)\nCheck usable header \"nss.h\" : YES \nChecking for type \"struct gaih_addrtuple\" : YES \nChecking for type \"ns_mtab\" : NO \nProgram numad found: YES (/usr/bin/numad)\n\nExecuting subproject keycodemapdb \n\nkeycodemapdb| Project name: keycodemapdb\nkeycodemapdb| Project version: undefined\nkeycodemapdb| Program tools/keymap-gen found: YES (/tmp/libvirt-11.1.0/subprojects/keycodemapdb/tools/keymap-gen)\nkeycodemapdb| Build targets in project: 0\nkeycodemapdb| Subproject keycodemapdb finished.\n\nProgram apibuild.py found: YES (/tmp/libvirt-11.1.0/scripts/apibuild.py)\n...\n\n```\nmeson-log.txt:\n```\n...\nChecking for type \"ns_mtab\" : NO \nProgram numad found: YES (/usr/bin/numad)\n\nExecuting subproject keycodemapdb \n\nProject name: keycodemapdb\nProject version: undefined\nProgram tools/keymap-gen found: YES (/tmp/libvirt-11.1.0/subprojects/keycodemapdb/tools/keymap-gen)\nBuild targets in project: 0\nSubproject keycodemapdb finished.\n\nProgram apibuild.py found: YES (/tmp/libvirt-11.1.0/scripts/apibuild.py)\n...\n```\nMaybe u can check if `/tmp/libvirt-11.1.0/subprojects/keycodemapdb/tools/keymap-gen` is missing somhow\nComment: i neither can reproduce it",
+  "Title: ERROR: PE type not recognised: 'DOS Header magic not found'\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\n\n## This is open source and you are getting __free__ support so be friendly!\n\n# Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n- [x] I am running the latest version\n- [x] I did read the README!\n- [x] I checked the documentation and found no answer\n- [x] I checked to make sure that this issue has not already been filed\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [x] I have read and checked all configs (with all optional parts)\n\n\n# Expected Behavior\n\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\n\n# Current Behavior\n\nWhat is the current behavior?\nZip files are failing when submitted by the UI or API. I've tried several different types of compressed files. I'v\n\n# Failure Information (for bugs)\n\nPE type not recognised: 'DOS Header magic not found.'\n\n## Steps to Reproduce\n\nPlease provide detailed steps for reproducing the issue.\n\n1. Submit zip via UI/ API\n2. Failure log below\n\n## Context\nI just re-installed capev2 on a brand new ubuntu 24.04 server moving from a 22.04 box that didn't have this issue. The install and processing of files is working well, I'm just having an issue when submitting compressed files. I've tried creating my own compressed files using known, safe exe binaries, as well as submitting compressed files containing malware. \n\nI checked the cape.log for any issues with installing pefile or python3-magic. I also double checked the poetry install and requirements to ensure all the libraries were install correctly. \n\n| Question         | Answer\n|------------------|--------------------\n| Git commit       | commit e48852c96af8bf4ffcbcc9154afcb9a48ecb7cf\n| OS version       | Ubuntu 24.04\n\n## Failure Logs\n\n2025-05-07 02:44:43,375 [lib.cuckoo.common.integrations.parse_pe] ERROR: PE type not recognised: 'DOS Header magic not found.'\n\nComment: I strongly suspect that the error message you have quoted has nothing to do with this issue. I assume you are submitting with package auto-detection single executables that have been zipped, rather than, say, a collection of files to be run with the zip package, but in general more information would be helpful.\n\nIn this scenario the component that is responsible for unzipping the file and submitting the contents as individual jobs is sflock: https://github.com/CAPESandbox/sflock. I would start by looking at your installation of this component, test it to see if it's installed and working. If not, it can be installed via pip.\nComment: @nbyt3 The fix that worked for me was to bump `sflock` from the repo @kevoreilly linked. Steps that got this working for me:\n\n1. On host machine as `cape` user, run `cd /opt/CAPEv2` -> `poetry run pip install -U git+https://github.com/CAPEsandbox/sflock` (bumps version to 0.3.70)\n2. Check that this installed the `7zz.elf` binary with correct perms/as executable within the package dir with `ls -la /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sflock/data` (your exact location may be different than mine)\n3. Restart your cape services\n4. Resubmit your previous file\n\nComment: abondoned",
+  "Title: KVM vm does not see more than 2GB of memory.\nBody: Hello.\nI installed KVM using `kvm-qemu.sh`  script.\nMy host OS is Ubuntu 22.04 and  i installed my windows using virtio driver.\nBut the problem is my windows 10 vm does not see more than 2 GB of memory.\nI also disable balloon driver in my vm  and see #1618 , but any luck.\nIs it any workaround for this issue?\nComment: Now i can spot the root cause of the problem.\nThe commit [here](https://github.com/kevoreilly/CAPEv2/commit/cc1662eb6f97d83048b711b07bd2917476b27cc8) modify changes maid by #1634 .\nShould I make another PR to apply #1634 changes again?\nIs a better way to overcome this issue?\nComment: hey, idk, normally as you saw on my responses this issue is due to bad bios file.  try to uncomment it, and compile, if that was commented out that was tested. so idk what to say you, it works here right now \nComment: hey. good to have you back :)\nI commented out and the problem is gone.\nSo make a PR  to solve the issue for now \nComment: Thank you, i still not fully back. Interesting i will have to review that properly. Thank you for PR + testing\nComment: yes you are right, thank you",
+  "Title: Android APK analysis with CAPE\nBody: Hi,\ni installed last version of CAPE , follow the instruction use windows 10 for kvm , but it does not handle **android APK** as jar file for analysis, \nmy task is capture APK network traffic as PCAP files \n as kvm log show : **not found PE header** as  **error**, i install android OS on kvm but do not know how to set it for this task,\nplease help me , **how can i capture APK network traffic** with CAPE ?\nComment: Android is an operating system like Windows. So Windows cannot run APKs as they are for a different operating system, CAPE cannot help with this task unfortunately.",
+  "Title: Question about 7z binary\nBody: I am a bit conflicted about the expected location of the 7z binary. I see the location referenced throughout the code base as `/usr/bin/7z` and in integrations.conf as `data/7zz`.\n\nI understand that running `poetry run python3 community.py -waf -cr` will place the binary at `/opt/CAPEv2/data/7zz` and just needs `chmod` to be executable.\n\nAre the references through to `/usr/bin/7z` old and need to be updated? I can create a PR for this if so. Thanks for any feedback!\nComment: I have no idea about this, it will have to wait until doomed is back from vacation.\nComment: 7z is ultra old in APT repos, 7zz is compiled by me from latest source code",
+  "Title: Installer script fixes\nBody: Couple minor fixes to cape2.sh and yara_installer.sh:\r\n\r\n- Fix Suricata text replacement for `file-store` not correctly setting `enabled: yes`\r\n- Fix yara installer script issue from `--directory /opt/CAPEv2` usage.\r\n\r\n\r\n@doomedraven  Do we even need to have this run in the installer script?\r\n```\r\n    # Run yara installer script\r\n    sudo -u ${USER} /etc/poetry/bin/poetry --directory /opt/CAPEv2 run extra/yara_installer.sh\r\n\r\n    if [ -d yara-python ]; then\r\n        sudo rm -rf yara-python\r\n    fi\r\n```\r\n\r\nRunning `poetry install` should install yara-python. Fixing the script in the PR is going to cause the install of the latest yara-python, 4.5.2. I can update the pyproject.toml to reflect this and add it to this PR if this is the right place to do it.\nComment: hey, thank you, sorry for long update i still not fully back. the issue with installing it from pypi vs source is that from source we compile with dotnet, as from pypi at least in past it wasn't installing that module, and i got tired going back and forth with it, anyway yara now is just in maintainece mode and we should move towards yara-x\nComment: @doomedraven Makes sense to me. I can remove those changes and just keep in the Suricata config fixes if we want. No problem either way.\nComment: i will do proper review once im back ,but till July i don't have much time\nComment: hey sorry for long delay on this one, is summer and no much time to handle all. i was checking suricata yesterday and i guess we gonna move custom mods to `include` file so it will overwrite the defaults, which is easier to maintain, but i will have to test it, idk when \nComment: Sounds good, thanks for circling back to this!\nComment: FYI im reworking completely how we deal with suricata, it now will have include side config with all requires mods, so it simplify everything and no more need to care about spaces/tags etc, as described here https://forum.suricata.io/t/overide-suricata-configuation-file/3216/2\nComment: So, sorry for long delay i finally got to this. \r\n\r\n1. i have rewrote suricata integration config to proper way.\r\n2. they removed socket mode in v8 sadly, that has negative performance impact as it requires to init engine each time when processing pcap, i tried to research solution but went to nowhere\r\n3. yara install i guess will become soon yara-x, as yara itself is in maintainance mode only",
+  "Title: check the parent pid of the spawned process\nBody: None",
+  "Title: agent spawn child subprocess not grandchild\nBody: The agent is creating the analyzer as a grandchild process rather than just a child.\r\n\r\nThe analyzer protects its own pid and its parent. \r\n\r\nUse `subprocess.Popen()` instead of `multiprocessing.Process()`\nComment: FYI @nbargnesi @kevoreilly @doomedraven \nComment: Thanks a lot - will test tomorrow \ud83d\udc4d \nComment: Unfortunately it's not quite working yet.... Seems to bomb when launching auxiliary modules:\r\n\r\n```\r\n2025-04-28 17:40:38,345 [root] INFO: Date set to: 20250501T09:36:31, timeout set to: 200\r\n2025-05-01 09:36:31,000 [root] DEBUG: Starting analyzer from: C:\\tmp3nycfpbt\r\n2025-05-01 09:36:31,000 [root] DEBUG: Storing results at: C:\\JejedDvGbv\r\n2025-05-01 09:36:31,000 [root] DEBUG: Pipe server name: \\\\.\\PIPE\\GUCvzSsU\r\n2025-05-01 09:36:31,000 [root] DEBUG: Python path: c:\\Users\\Louise\\AppData\\Local\\Programs\\Python\\Python312-32\r\n2025-05-01 09:36:31,000 [root] INFO: analysis running as an admin\r\n2025-05-01 09:36:31,000 [root] INFO: analysis package specified: \"exe\"\r\n2025-05-01 09:36:31,000 [root] DEBUG: importing analysis package module: \"modules.packages.exe\"...\r\n2025-05-01 09:36:31,013 [root] DEBUG: imported analysis package \"exe\"\r\n2025-05-01 09:36:31,013 [root] DEBUG: initializing analysis package \"exe\"...\r\n2025-05-01 09:36:31,013 [lib.common.common] INFO: wrapping\r\n2025-05-01 09:36:31,013 [lib.core.compound] INFO: C:\\Users\\Louise\\AppData\\Local\\Temp already exists, skipping creation\r\n2025-05-01 09:36:31,013 [root] DEBUG: New location of moved file: C:\\Users\\Louise\\AppData\\Local\\Temp\\c81190b655f1cd5942ccc576\r\n2025-05-01 09:36:31,013 [root] INFO: Analyzer: Package modules.packages.exe does not specify a DLL option\r\n2025-05-01 09:36:31,013 [root] INFO: Analyzer: Package modules.packages.exe does not specify a DLL_64 option\r\n2025-05-01 09:36:31,013 [root] INFO: Analyzer: Package modules.packages.exe does not specify a loader option\r\n2025-05-01 09:36:31,013 [root] INFO: Analyzer: Package modules.packages.exe does not specify a loader_64 option\r\n2025-05-01 09:36:31,028 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.browser\"\r\n2025-05-01 09:36:31,028 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.digisig\"\r\n2025-05-01 09:36:31,044 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.disguise\"\r\n2025-05-01 09:36:31,059 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.human\"\r\n2025-05-01 09:36:31,059 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.pre_script\"\r\n2025-05-01 09:36:31,059 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageChops'\r\n2025-05-01 09:36:31,059 [lib.api.screenshot] ERROR: No module named 'PIL'\r\n2025-05-01 09:36:31,059 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.screenshots\"\r\n2025-05-01 09:36:31,059 [root] DEBUG: Initialized auxiliary module \"Browser\"\r\n2025-05-01 09:36:31,059 [root] DEBUG: attempting to configure 'Browser' from data\r\n2025-05-01 09:36:31,059 [root] DEBUG: module Browser does not support data configuration, ignoring\r\n2025-05-01 09:36:31,059 [root] DEBUG: Trying to start auxiliary module \"modules.auxiliary.browser\"...\r\n2025-05-01 09:36:31,059 [root] DEBUG: Started auxiliary module modules.auxiliary.browser\r\n2025-05-01 09:36:31,059 [root] DEBUG: Initialized auxiliary module \"DigiSig\"\r\n2025-05-01 09:36:31,075 [root] DEBUG: attempting to configure 'DigiSig' from data\r\n2025-05-01 09:36:31,075 [root] DEBUG: module DigiSig does not support data configuration, ignoring\r\n2025-05-01 09:36:31,075 [root] DEBUG: Trying to start auxiliary module \"modules.auxiliary.digisig\"...\r\n2025-05-01 09:36:31,075 [modules.auxiliary.digisig] DEBUG: Checking for a digital signature\r\n2025-05-01 09:36:31,185 [modules.auxiliary.digisig] DEBUG: File is not signed\r\n2025-05-01 09:36:31,185 [modules.auxiliary.digisig] INFO: Uploading signature results to aux/DigiSig.json\r\n2025-05-01 09:36:31,185 [root] DEBUG: Started auxiliary module modules.auxiliary.digisig\r\n2025-05-01 09:36:31,185 [root] DEBUG: Initialized auxiliary module \"Disguise\"\r\n2025-05-01 09:36:31,185 [root] DEBUG: attempting to configure 'Disguise' from data\r\n2025-05-01 09:36:31,185 [root] DEBUG: module Disguise does not support data configuration, ignoring\r\n2025-05-01 09:36:31,200 [root] DEBUG: Trying to start auxiliary module \"modules.auxiliary.disguise\"...\r\n2025-05-01 09:36:31,200 [modules.auxiliary.disguise] INFO: Disguising GUID to e1a4f30b-09f8-492f-8ddb-4eac8bbdc474\r\n2025-05-01 09:36:31,200 [root] DEBUG: Started auxiliary module modules.auxiliary.disguise\r\n```\r\n\r\nNot sure why disguise is problematic but not the preceding modules...\nComment: I don't see any signs of an issue in the logs @kevoreilly dropped above. I exercised the basic execpy agent workflow, didn't see any problems. I'll have a look at the full analysis workflow with a proper analysis package and capemon and see what shakes out.\nComment: I tried removing ```multiprocessing.set_start_method(\"spawn\")``` from main but still the same issue, it just dies silently after that last log line about starting disguise aux mod.\r\n\r\nI also removed the following snippet:\r\n\r\n```\r\n    if not args.verbose:\r\n        sys.stdout = StringIO()\r\n        sys.stderr = StringIO()\r\n```\r\n\r\nto see if I could spot the error in the console output. Alas all that it showed was the status get requests from the server, nothing from the analyzer. I'm not quite sure what I need to do to get it to spit the verbose output to the console.",
+  "Title: Processor Processes Stuck?\nBody: # Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n- [x] I am running the latest version\n- [x] I did read the README!\n- [x] I checked the documentation and found no answer\n- [x] I checked to make sure that this issue has not already been filed\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [x] I have read and checked all configs (with all optional parts)\n\n# Current Behavior\n\nHi everyone, \n\nI'm noticing after CAPE tasks are complete (Status = reported), my process list shows process.py processes tied to reported tasks even after waiting over an hour (and counting).  I'm not sure if this is normal behaviour?\n\nIn the screenshot below, Tasks 52, 54 and 55 can be seen in the process list and the Web interface shows that they are reported.  \n![Image](https://github.com/user-attachments/assets/8c687672-6b68-4e90-9461-95f12e6503ef)\nComment: What about cape service state?\nComment: It is active(running):\n\n```\nanalyst@Analysis:/opt/CAPEv2$ sudo systemctl status cape.service\n[sudo] password for analyst: \n\u25cf cape.service - CAPE\n     Loaded: loaded (/lib/systemd/system/cape.service; enabled; vendor preset: enabled)\n     Active: active (running) since Tue 2025-04-29 16:13:23 EDT; 21h ago\n       Docs: https://github.com/kevoreilly/CAPEv2\n   Main PID: 104247 (python)\n      Tasks: 58 (limit: 77048)\n     Memory: 7.1G\n        CPU: 8min 28.744s\n     CGroup: /system.slice/cape.service\n             \u2514\u2500104247 /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python cuckoo.py\n\nApr 30 11:27:08 Analysis poetry[104247]: 2025-04-30 11:27:08,136 [lib.cuckoo.core.resultserver] INFO: Task 55: Process 4192 (parent 6172): rundll32.exe, path C:\\Windows\\SysWOW64\\rundll32.exe\nApr 30 11:28:27 Analysis poetry[104247]: 2025-04-30 11:28:27,008 [lib.cuckoo.core.guest] WARNING: Task #55: Virtual Machine win10-internet /status failed. This can indicate the guest losing network connectivity\nApr 30 11:28:37 Analysis poetry[104247]: 2025-04-30 11:28:37,674 [lib.cuckoo.core.guest] WARNING: Task #55: Virtual Machine win10-internet /status failed. This can indicate the guest losing network connectivity\nApr 30 11:28:44 Analysis poetry[104247]: 2025-04-30 11:28:44,078 [lib.cuckoo.core.guest] WARNING: Task #55: Virtual Machine win10-internet /status failed. This can indicate the guest losing network connectivity\nApr 30 11:31:55 Analysis poetry[104247]: 2025-04-30 11:31:55,295 [lib.cuckoo.core.guest] WARNING: Task #55: Virtual Machine win10-internet /status failed. This can indicate the guest losing network connectivity\nApr 30 11:36:36 Analysis poetry[104247]: 2025-04-30 11:36:36,017 [lib.cuckoo.core.guest] INFO: Task #55: End of analysis reached! (id=win10-internet, ip=192.168.100.101)\nApr 30 11:36:36 Analysis sudo[162245]: pam_unix(sudo:session): session closed for user root\nApr 30 11:36:36 Analysis poetry[104247]: 2025-04-30 11:36:36,079 [lib.cuckoo.core.analysis_manager] INFO: Task #55: Disabled route 'internet'\nApr 30 11:36:41 Analysis poetry[104247]: 2025-04-30 11:36:41,418 [lib.cuckoo.core.analysis_manager] INFO: Task #55: Completed analysis successfully.\nApr 30 11:36:41 Analysis poetry[104247]: 2025-04-30 11:36:41,423 [lib.cuckoo.core.analysis_manager] INFO: Task #55: analysis procedure completed\nanalyst@Analysis:/opt/CAPEv2$ ps aux | grep cape\ncape        1049  2.3  1.8 2400072 1216840 ?     Ssl  Apr28  74:47 /usr/bin/suricata -D -c /etc/suricata/suricata.yaml --unix-socket\nroot       51954  0.0  0.0  25136 15360 ?        Ss   Apr28   0:01 /opt/CAPEv2/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python rooter.py -g cape\ncape      104247  0.6  0.4 4724364 287716 ?      Ssl  Apr29   8:08 /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python cuckoo.py\npostgres  104313  0.1  0.0 227124 24172 ?        Ss   Apr29   1:41 postgres: 17/main: cape cape 127.0.0.1(56688) idle\ncape      104404  0.0  0.3 442872 261300 ?       Ss   Apr29   0:03 /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python manage.py runserver_plus 0.0.0.0:8000 --traceback --keep-meta-shutdown\npostgres  104461  0.0  0.0 225760 18488 ?        Ss   Apr29   0:00 postgres: 17/main: cape cape 127.0.0.1(56704) idle\ncape      104462 13.6  0.5 1418576 380548 ?      Sl   Apr29 180:42 /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python manage.py runserver_plus 0.0.0.0:8000 --traceback --keep-meta-shutdown\npostgres  104511  0.0  0.0 227544 22328 ?        Ss   Apr29   0:02 postgres: 17/main: cape cape 127.0.0.1(36424) idle\npostgres  104929  0.1  0.0 227580 22904 ?        Ss   Apr29   1:33 postgres: 17/main: cape cape 127.0.0.1(57562) idle\ncape      150744  0.2  0.3 4566252 254152 ?      Ssl  08:43   0:41 /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python process.py -p7 auto -pt 900\npostgres  150809  0.0  0.0 227456 20792 ?        Ss   08:43   0:07 postgres: 17/main: cape cape 127.0.0.1(53864) idle\ncape      153649  0.9  0.5 4114924 362612 ?      Sl   09:23   2:45 /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python process.py -p7 auto -pt 900 [Task 55]\ncape      153650  0.0  0.3 4343768 213420 ?      S    09:23   0:00 /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python process.py -p7 auto -pt 900\ncape      153651  0.0  0.3 4343768 213420 ?      S    09:23   0:00 /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python process.py -p7 auto -pt 900\ncape      153652  0.0  0.3 4343768 213420 ?      S    09:23   0:00 /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python process.py -p7 auto -pt 900\ncape      153653  0.8  0.6 4182280 444520 ?      Sl   09:23   2:33 /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python process.py -p7 auto -pt 900 [Task 54]\ncape      153654  0.3  0.4 4045080 299596 ?      Sl   09:23   0:55 /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python process.py -p7 auto -pt 900 [Task 52]\ncape      153655  0.0  0.3 4343768 213420 ?      S    09:23   0:00 /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python process.py -p7 auto -pt 900\npostgres  153669  0.0  0.0 226824 20596 ?        Ss   09:23   0:00 postgres: 17/main: cape cape 127.0.0.1(41262) idle\npostgres  157052  0.0  0.0 227192 20980 ?        Ss   10:23   0:00 postgres: 17/main: cape cape 127.0.0.1(59150) idle\npostgres  162233  0.0  0.0 226824 20404 ?        Ss   11:26   0:00 postgres: 17/main: cape cape 127.0.0.1(51580) idle\nanalyst   168054  0.0  0.0   9212  2496 pts/0    S+   14:13   0:00 grep --color=auto cape\n```\n\n\nComment: Hey @brightpinefield, those processes aren't stuck. This is normal behavior, but I admit it could do with some improvement.\n\nWhen the CAPE processor [starts a new task in autoprocess mode](https://github.com/kevoreilly/CAPEv2/blob/e48852c96af8bf4ffcbcc9154afcb9a48ecb7cf2/utils/process.py#L442), it [changes it's process name](https://github.com/kevoreilly/CAPEv2/blob/e48852c96af8bf4ffcbcc9154afcb9a48ecb7cf2/utils/process.py#L132), which you're seeing in the screenshot. The original process name [gets reset](https://github.com/kevoreilly/CAPEv2/blob/master/utils/process.py#L366) via [callback](https://github.com/kevoreilly/CAPEv2/blob/e48852c96af8bf4ffcbcc9154afcb9a48ecb7cf2/utils/process.py#L445) when it's done.\n\nPay more attention to the other columns in the process output, like CPU, task state, and task time. The \"Sl\"/\"S\" states, along with low CPU utilization and low CPU time, mean the process is waiting for something to happen. In this case, it's polling - you can interrogate the kernel function a process is in by reading `/proc/<pid>/wchan`. Do that and you'll get something like `do_poll`.\n\n\n\n\n\nComment: @doomedraven future suggestion - using pebble in the CAPE processing service is kind of silly honestly. No need to write and maintain internal concurrency strategies - processing each task is atomic. Systemd has been able to spawn multiple services via templates for years. A whole lot easier to just `systemctl start cape-processor@1`, `systemctl start cape-process@2`, ...\nComment: > Hey [@brightpinefield](https://github.com/brightpinefield), those processes aren't stuck. This is normal behavior, but I admit it could do with some improvement.\n> \n> When the CAPE processor [starts a new task in autoprocess mode](https://github.com/kevoreilly/CAPEv2/blob/e48852c96af8bf4ffcbcc9154afcb9a48ecb7cf2/utils/process.py#L442), it [changes it's process name](https://github.com/kevoreilly/CAPEv2/blob/e48852c96af8bf4ffcbcc9154afcb9a48ecb7cf2/utils/process.py#L132), which you're seeing in the screenshot. The original process name [gets reset](https://github.com/kevoreilly/CAPEv2/blob/master/utils/process.py#L366) via [callback](https://github.com/kevoreilly/CAPEv2/blob/e48852c96af8bf4ffcbcc9154afcb9a48ecb7cf2/utils/process.py#L445) when it's done.\n> \n> Pay more attention to the other columns in the process output, like CPU, task state, and task time. The \"Sl\"/\"S\" states, along with low CPU utilization and low CPU time, mean the process is waiting for something to happen. In this case, it's polling - you can interrogate the kernel function a process is in by reading `/proc/<pid>/wchan`. Do that and you'll get something like `do_poll`.\n\nAhhh, thank you very much @nbargnesi ! It just looked odd, so I was a bit concerned.  Thanks so much for the explanation on what is happening there.  I really appreciate it!  Will close this off now.  Thanks!! \ud83d\ude4f ",
+  "Title: cape crash after cleaner executed\nBody: I'm running latest version of cape and configured cleaner logic.\nwhenever cleaner executed, cape exited with below error:\n\n```\nApr 29 10:55:24 swap poetry[677221]: 2025-04-29 10:55:24,319 [lib.cuckoo.core.guest] INFO: Task #67: Analysis completed successfully (id=win10, ip=192.168.122.195)\nApr 29 10:57:19 swap poetry[677221]: 2025-04-29 10:57:19,096 [lib.cuckoo.common.cleaners_utils] ERROR: Not enough free disk space! (Only 19997 MB!). You can change limits it in cuckoo.conf -> freespace\nApr 29 10:57:19 swap poetry[677221]: 2025-04-29 10:57:19,125 [lib.cuckoo.common.cleaners_utils] INFO: number of matching records 59 before suri/custom filter\nApr 29 10:57:19 swap poetry[677221]: 2025-04-29 10:57:19,125 [lib.cuckoo.common.cleaners_utils] INFO: number of matching records 59 before suri/custom filter\nApr 29 10:57:19 swap poetry[677221]: 2025-04-29 10:57:19,125 [lib.cuckoo.common.cleaners_utils] INFO: number of matching records 59. Highest id: 66\nApr 29 10:57:19 swap poetry[677221]: 2025-04-29 10:57:19,125 [lib.cuckoo.common.cleaners_utils] INFO: number of matching records 59. Highest id: 66\nApr 29 10:57:31 swap poetry[677221]: 2025-04-29 10:57:31,264 [lib.cuckoo.core.database] INFO: Deleted 59 tasks matching the criteria.\nApr 29 10:57:31 swap poetry[677221]: 2025-04-29 10:57:31,264 [lib.cuckoo.core.database] INFO: Deleted 59 tasks matching the criteria.\nApr 29 10:57:31 swap poetry[677221]: 2025-04-29 10:57:31,266 [lib.cuckoo.common.cleaners_utils] INFO: Delete folder: /tmp/cuckoo-tmp/upload_21ru54rm\nApr 29 10:57:31 swap poetry[677221]: 2025-04-29 10:57:31,266 [lib.cuckoo.common.cleaners_utils] INFO: Delete folder: /tmp/cuckoo-tmp/upload_21ru54rm\nApr 29 10:57:31 swap poetry[677221]: 2025-04-29 10:57:31,437 [lib.cuckoo.common.cleaners_utils] INFO: Removing file entries in Mongo that are no longer referenced.\nApr 29 10:57:31 swap poetry[677221]: 2025-04-29 10:57:31,437 [lib.cuckoo.common.cleaners_utils] INFO: Removing file entries in Mongo that are no longer referenced.\nApr 29 10:57:31 swap poetry[677221]: 2025-04-29 10:57:31,518 [lib.cuckoo.common.cleaners_utils] INFO: Removed 213 file entries.\nApr 29 10:57:31 swap poetry[677221]: 2025-04-29 10:57:31,518 [lib.cuckoo.common.cleaners_utils] INFO: Removed 213 file entries.\nApr 29 10:57:36 swap poetry[677221]: -------------------------------------------------------------------------------\nApr 29 10:57:36 swap poetry[677221]: cuckoo.py 104 cuckoo_main\nApr 29 10:57:36 swap poetry[677221]: sched.start()\nApr 29 10:57:36 swap poetry[677221]: scheduler.py 308 start\nApr 29 10:57:39 swap poetry[677221]: sleep_time = self.do_main_loop_work(error_queue)\nApr 29 10:57:39 swap poetry[677221]: scheduler.py 111 do_main_loop_work\nApr 29 10:57:39 swap poetry[677221]: with self.db.session.begin():\nApr 29 10:57:39 swap poetry[677221]: <string> 2 begin\nApr 29 10:57:39 swap poetry[677221]: <string> 2 begin\nApr 29 10:57:39 swap poetry[677221]: deprecations.py 375 warned\nApr 29 10:57:39 swap poetry[677221]: return fn(*args, **kwargs)\nApr 29 10:57:39 swap poetry[677221]: session.py 1334 begin\nApr 29 10:57:39 swap poetry[677221]: raise sa_exc.InvalidRequestError(\nApr 29 10:57:39 swap poetry[677221]: sqlalchemy.exc.InvalidRequestError:\nApr 29 10:57:39 swap poetry[677221]: A transaction is already begun on this Session.\nApr 29 10:57:39 swap poetry[677221]: -------------------------------------------------------------------------------\nApr 29 10:57:39 swap poetry[677221]: cuckoo.py 143 <module>\nApr 29 10:57:39 swap poetry[677221]: cuckoo_main(max_analysis_count=args.max_analysis_count)\nApr 29 10:57:39 swap poetry[677221]: cuckoo.py 108 cuckoo_main\nApr 29 10:57:39 swap poetry[677221]: sched.shutdown_machinery()\nApr 29 10:57:39 swap poetry[677221]: scheduler.py 270 shutdown_machinery\nApr 29 10:57:39 swap poetry[677221]: with self.db.session.begin():\nApr 29 10:57:39 swap poetry[677221]: <string> 2 begin\nApr 29 10:57:39 swap poetry[677221]: <string> 2 begin\nApr 29 10:57:39 swap poetry[677221]: deprecations.py 375 warned\nApr 29 10:57:39 swap poetry[677221]: return fn(*args, **kwargs)\nApr 29 10:57:39 swap poetry[677221]: session.py 1334 begin\nApr 29 10:57:39 swap poetry[677221]: raise sa_exc.InvalidRequestError(\nApr 29 10:57:39 swap poetry[677221]: sqlalchemy.exc.InvalidRequestError:\nApr 29 10:57:39 swap poetry[677221]: A transaction is already begun on this Session.\nApr 29 10:57:40 swap systemd[1]: cape.service: Main process exited, code=exited, status=1/FAILURE\nApr 29 10:57:40 swap systemd[1]: cape.service: Failed with result 'exit-code'.\nApr 29 10:57:40 swap systemd[1]: cape.service: Consumed 10min 17.055s CPU time.\n\n```\nComment: hey, thank you, my suggestion is to disable cleaner and run it by hand. idk when i will have time to work on it, and i can't quickly figurate from that log where the issue is\nComment: i just tested that on my server to try to reproduce, i can't reproduce it, are you sure you are on latest + restarted services + applied those migrations? https://github.com/kevoreilly/CAPEv2/issues/2572\nComment: ```\n2025-04-30 14:10:32,299 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks\n2025-04-30 14:10:32,299 [lib.cuckoo.common.cleaners_utils] ERROR: Not enough free disk space! (Only 844470 MB!). You can change limits it in cuckoo.conf -> freespace\n2025-04-30 14:10:32,314 [lib.cuckoo.common.cleaners_utils] INFO: number of matching records 217 before suri/custom filter\n2025-04-30 14:10:32,314 [lib.cuckoo.common.cleaners_utils] INFO: number of matching records 217. Highest id: 218\n2025-04-30 14:10:32,324 [lib.cuckoo.core.database] INFO: Deleted 217 tasks matching the criteria.\n2025-04-30 14:10:37,336 [lib.cuckoo.common.cleaners_utils] INFO: number of matching records 0 before suri/custom filter\n2025-04-30 14:10:37,469 [lib.cuckoo.common.cleaners_utils] INFO: number of matching records 0. Highest id: 0\n2025-04-30 14:10:37,472 [lib.cuckoo.core.database] INFO: Deleted 0 tasks matching the criteria.\n2025-04-30 14:10:42,482 [lib.cuckoo.common.cleaners_utils] INFO: number of matching records 0 before suri/custom filter\n2025-04-30 14:10:42,483 [lib.cuckoo.common.cleaners_utils] INFO: number of matching records 0. Highest id: 0\n2025-04-30 14:10:42,485 [lib.cuckoo.core.database] INFO: Deleted 0 tasks matching the criteria.\n^C2025-04-30 14:10:44,848 [root] INFO: Received keyboard interrupt, stopping.\n```\nComment: Hey.\nThanks for your reply.\nI will try new migrations that you mentioned and tell you the result in a few days.\nComment: It working just fine with latest changes.\nThank you.",
+  "Title: [Feature] Rewrite file storage. Brainstorming are welcome!\nBody: We generate a lot of the same files between different analysis. We already separated files from mongo analysis collection and made them unique.\n\nNow we need to store uniq file on FS and reference it inside of each analysis folder and delete when no one task id points to it in files collection.\n\nany ideas, suggestions, etc are more than welcome",
+  "Title: demux\nBody: None",
+  "Title: Apply DEBIAN_FRONTEND=noninteractive globally in install script\nBody: ### What Changed\r\nMoved the `DEBIAN_FRONTEND=noninteractive` declaration to the top of the install script to ensure all `apt-get` operations run in non-interactive mode.\r\n\r\n### Why\r\nThis improves consistency and prevents prompts from other packages in automated or CI environments. It also aligns with maintainer feedback from the previous PR.\r\n\r\n### Related\r\nFollow-up to the fix for Wireshark interactive installation.\nComment: thank you",
+  "Title: Wireshark installation fails in non-interactive environments\nBody: ### Problem\r\nWhen running the installer script, the terminal exits unexpectedly during the Wireshark package installation. This is because wireshark-common prompts for user input (e.g., permission to allow non-superusers to capture packets), which requires an interactive terminal.\r\n\r\nThis breaks automated installations or any environment (like CI/CD pipelines or Docker builds) where user interaction is not possible.\r\n\r\n### Solution\r\nSet the environment variable DEBIAN_FRONTEND=noninteractive before installing Wireshark to suppress the interactive prompt:\r\n\r\n```bash\r\nDEBIAN_FRONTEND=noninteractive apt-get install -y wireshark\r\n```\r\n\r\nThis ensures the script runs smoothly in non-interactive sessions.\r\n\r\n### Additional Notes\r\n\r\n- The script could optionally pre-answer debconf selections if needed.\r\n\r\n- Tested on Debian/Ubuntu systems.\r\n\r\n- Does not impact systems where interaction is possible \u2014 only improves automation compatibility.\nComment: thank you, maybe this should be set on top of the install script to apply to all apt invocations?\nComment: You're absolutely right \u2014 setting `DEBIAN_FRONTEND=noninteractive` globally at the top of the install script is a better approach. This ensures all `apt-get` commands behave consistently in non-interactive environments, not just the Wireshark installation.\r\n\r\nI'll update the script accordingly to export this environment variable near the top. Thanks for the feedback!",
+  "Title: Cleaner issue\nBody: Cleaner cleans filesystem and mongo, but doesnt delete from PSQL\nComment: fixed https://github.com/kevoreilly/CAPEv2/commit/e48852c96af8bf4ffcbcc9154afcb9a48ecb7cf2",
+  "Title: Need help with Internet routing\nBody: # Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n- [x] I am running the latest version\n- [x] I did read the README!\n- [x] I checked the documentation and found no answer\n- [x] I checked to make sure that this issue has not already been filed\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [x] I have read and checked all configs (with all optional parts)\n\n# Expected Behavior\n\nExpected behavior is to get my Windows 10 VM routing to my Internet interface (enx0015ff131178).\n\n# Current Behavior\nHi all,\n\n\nI'm having some troubles getting Internet routing working with my CAPE instance.\n\nI've configured Netplan and have updated my rt_tables.\n\nI've been trying to troubleshoot using the documentation in the troubleshooting section. ie. using router_manager.py.\n\n```$ sudo python3 router_manager.py  -r internet -e --vm-name win10-internet --verbose\nMissing dependency: poetry run pip install psutil\ninternet enx0015ff131178 enx0015ff131178 {'label': 'win10-internet', 'platform': 'windows', 'ip': '192.168.100.101', 'arch': 'x64', 'tags': 'win10-internet,acrobat_reader_6', 'snapshot': 'snapshot1', 'resultserver_ip': '192.168.100.1', 'reserved': False} None None\n```\n\nrooter.py is running manually:\n\n```$ sudo python3 rooter.py -v -g cape\n2025-04-25 16:08:41,568 [cuckoo-rooter] INFO: Verbose logging enabled\n2025-04-25 16:08:41,568 [cuckoo-rooter] DEBUG: Enabling IPv4 forwarding\n2025-04-25 16:08:41,568 [cuckoo-rooter] DEBUG: Running command: /usr/sbin/sysctl -wnet.ipv4.ip_forward=1\n2025-04-25 16:08:57,073 [cuckoo-rooter] INFO: Processing command: forward_eclenable virbr1 enx0015ff131178 192.168.100.101 \n2025-04-25 16:08:57,073 [cuckoo-rooter] DEBUG: Running command: /sbin/iptables -D FORWARD -i virbr1 -j REJECT -m comment --comment CAPE-rooter\n2025-04-25 16:08:57,076 [cuckoo-rooter] DEBUG: Running command: /sbin/iptables -D FORWARD -o virbr1 -j REJECT -m comment --comment CAPE-rooter\n2025-04-25 16:08:57,078 [cuckoo-rooter] DEBUG: Running command: /sbin/iptables -I CAPE_ACCEPTED_SEGMENTS -i virbr1 -o enx0015ff131178 --source 192.168.100.101 -j ACCEPT -m comment --comment CAPE-rooter\n2025-04-25 16:08:57,081 [cuckoo-rooter] INFO: Processing command: srcroute_enable enx0015ff131178 192.168.100.101 \n2025-04-25 16:08:57,081 [cuckoo-rooter] DEBUG: Running command: /sbin/ip rule add from 192.168.100.101 table enx0015ff131178\n2025-04-25 16:08:57,083 [cuckoo-rooter] DEBUG: Running command: /sbin/ip route flush cache\n```\n\nip rule shows my VM (192.168.100.101) should go to my hotspot enx0015ff131178:\n\n```$ ip rule\n998:\tfrom 192.168.100.101 lookup enx0015ff131178\n999:\tfrom 10.0.0.0/8 lookup wls5 proto static\n999:\tfrom 192.168.100.101 lookup enx0015ff131178\n1000:\tfrom all lookup [l3mdev-table]\n1000:\tfrom 192.168.1.0/24 lookup enx0015ff131178 proto static\n1001:\tfrom all lookup [l3mdev-table] unreachable\n32765:\tfrom all lookup local\n32766:\tfrom all lookup main\n32767:\tfrom all lookup default\n```\n\nHere is my ip route output:\n\n```\n$ ip route\ndefault via 192.168.1.1 dev enx0015ff131178 proto static metric 100 \ndefault via 10.0.0.1 dev wls5 proto static metric 200 \n10.0.0.0/24 dev wls5 proto kernel scope link src 10.0.0.194 \n192.168.1.0/24 dev enx0015ff131178 proto kernel scope link src 192.168.1.17 \n192.168.100.0/24 dev virbr1 proto kernel scope link src 192.168.100.1 \n192.168.122.0/24 dev virbr0 proto kernel scope link src 192.168.122.1 linkdown \nanalyst@Analysis:/opt/CAPEv2/utils$ \n```\n\nWindows VM can ping the virtual interface gateway but can't ping outside.  VM DNS is set to Google's DNS:\n\n![Image](https://github.com/user-attachments/assets/d5d68e24-2c2b-4bdb-b795-1128a9ed91c7)\n\n![Image](https://github.com/user-attachments/assets/efde4ef8-2d30-4042-9a82-7b9a6d71133d)\n\nRouting.conf:\n```\n[routing]\n\n# Enable pcap generation for non live connections?\n# If you have huge number of VMs, pcap generation can be a bottleneck\nenable_pcap = yes\n\n# Default network routing mode; \"none\", \"internet\", or \"vpn_name\".\n# In none mode we don't do any special routing - the VM doesn't have any\n# network access (this has been the default actually for quite a while).\n# In internet mode by default all the VMs will be routed through the network\n# interface configured below (the \"dirty line\").\n# And in VPN mode by default the VMs will be routed through the VPN identified\n# by the given name of the VPN.\n# Note that just like enabling VPN configuration setting this option to\n# anything other than \"none\" requires one to run utils/rooter.py as root next\n# to the CAPE instance (as it's required for setting up the routing).\nroute = internet\n\n# Network interface that allows a VM to connect to the entire internet, the\n# \"dirty line\" so to say. Note that, just like with the VPNs, this will allow\n# malicious traffic through your network. So think twice before enabling it.\n# (For example, to route all VMs through eth0 by default: \"internet = eth0\").\ninternet = enx0015ff131178\n#internet = wls5\n\n# When set to no masquerade rule has been not generated.\nnat = no\n\n# When property nat set to yes. That property not used.\n# When property nat set to no and no_local_routing to yes, a vrf configuration \n# will be generated and local traffic will go through by internet interface (dirty_line).\nno_local_routing = yes\n\n# Routing table name/id for \"dirty line\" interface. If \"dirty line\" is\n# also default gateway in the system you can leave \"main\" value. Otherwise add\n# new routing table by adding \"<id> <name>\" line to /etc/iproute2/rt_tables\n# (e.g., \"200 eth0\"). ID and name must be unique across the system (refer to\n# /etc/iproute2/rt_tables for existing names and IDs).\nrt_table = enx0015ff131178\n#rt_table = wls5\n#rt_table = main\n\n# When using \"dirty line\", you can reject forwarding to a certain network segment.\n# For example, a request targeting 192.168.12.1/24,172.16.22.1/24 will not be\n# forwarded, but will be rejected:\n# \"reject_segments = 192.168.12.1/24,172.16.22.1/24\"\nreject_segments = none\n\n# When ussing \"dirty line\", you can reject guest access a certain port.\n# For example, a request targeting host's port 8000 and 8080 will be rejected:\n# \"reject_hostports = 8000,8080\"\nreject_hostports = none\n\n# To route traffic through multiple network interfaces CAPE uses\n# Policy Routing with separate routing table for each output interface\n# (VPN or \"dirty line\"). If this option is enabled CAPE on start will try\n# to automatically initialise routing tables by copying routing entries from\n# main routing table to the new routing tables. Depending on your network/vpn\n# configuration this might not be sufficient. In such case you would need to\n# initialise routing tables manually. Note that enabling this option won't\n# affect main routing table.\nauto_rt = yes\n#auto_rt = no\n\n# The drop route basically drops any outgoing network (except for CAPE\n# traffic) whereas the regular none route still allows a VM to access its own\n# subnet (e.g., 192.168.122.1/24). It is disabled by default as it does require\n# the optional rooter to run (unlike the none route, where literally nothing\n# happens). One can either explicitly enable the drop route or if the rooter\n# is enabled anyway, it is automatically enabled.\ndrop = no\n\n# Should check if the inteface is up\nverify_interface = yes\n\n# Should check if rt_table exists before initializing\nverify_rt_table = yes\n\n[inetsim]\n# Inetsim quick deploy, chose your vm manager if is not kvm\n# wget https://googledrive.com/host/0B6fULLT_NpxMQ1Rrb1drdW42SkE/remnux-6.0-ova-public.ova\n# tar xvf remnux-6.0-ova-public.ova\n# qemu-img convert -O qcow2 REMnuxV6-disk1.vmdk remnux.qcow2\n\nenabled = yes\nserver = 192.168.100.2\ndnsport = 53\ninterface = virbr1\n# Redirect TCP ports (should we also support UDP?). If specified, this should\n# represent whitespace-separated src:dst pairs. E.g., \"80:8080 443:8080\" will\n# redirect all 80/443 traffic to 8080 on the specified InetSim host.\n# Source port range redirection is also supported. E.g., \"996-2041:80\" will\n# redirect all traffic directed at ports between 996 and 2041 inclusive to port 80\n# on the specified InetSim host.\nports =\n\n\n[tor]\nenabled = no\ndnsport = 5353\nproxyport = 9040\ninterface = virbr1\n\n[vpn]\n# By default we disable VPN support as it requires running utils/rooter.py as\n# root next to cuckoo.py (which should run as regular user).\nenabled = no\n\n# select one of the configured vpns randomly\nrandom_vpn = no\n\n# Comma-separated list of the available VPNs.\nvpns = vpn0\n\n[vpn0]\n# Name of this VPN. The name is represented by the filepath to the\n# configuration file, e.g., cuckoo would represent /etc/openvpn/cuckoo.conf\n# Note that you can't assign the names \"none\" and \"internet\" as those would\n# conflict with the routing section in cuckoo.conf.\nname = vpn0\n\n# The description of this VPN which will be displayed in the web interface.\n# Can be used to for example describe the country where this VPN ends up.\ndescription = openvpn_tunnel\n\n# The tun device hardcoded for this VPN. Each VPN *must* be configured to use\n# a hardcoded/persistent tun device by explicitly adding the line \"dev tunX\"\n# to its configuration (e.g., /etc/openvpn/vpn1.conf) where X in tunX is a\n# unique number between 0 and your lucky number of choice.\ninterface = tun0\n\n# Routing table name/id for this VPN. If table name is used it *must* be\n# added to /etc/iproute2/rt_tables as \"<id> <name>\" line (e.g., \"201 tun0\").\n# ID and name must be unique across the system (refer /etc/iproute2/rt_tables\n# for existing names and IDs).\nrt_table = tun0\n\n\n[socks5]\n# By default we disable socks5 support as it requires running utils/rooter.py as\n# root next to cuckoo.py (which should run as regular user).\nenabled = no\n\n# select one of the configured socks5 proxies randomly\nrandom_socks5 = no\n\n# Comma-separated list of the available proxies.\nproxies = socks_ch\n\n[socks_ch]\nname = ch_socks\ndescription = ch_socks\nproxyport = 5008\ndnsport = 10053\n```\n\nAt this point, I am not sure what to do. If anyone has any ideas, I'd really appreciate it.\nThank you!\n\n\nComment: hello, is long time since i used last time internet, i normally use vpn/socks only. try to set nat to yes and restart `cape service` with `systemctl restart cape`. im not 100% sure, but i don't have much time till summer to verify with my old boxes\n\n```\n# When set to no masquerade rule has been not generated.\nnat = yes\n```\nComment: @doomedraven thank you for chiming in on your weekend.  I am really grateful.   I swapped to \"nat\" and it is now working.  My VMs are configured in \"Virtual network 'host-only'\"  mode and when  I read [issue](https://github.com/kevoreilly/CAPEv2/issues/2304), I had saw that you too were in host-only mode, so I didn't think I had to change that.  Not sure why this works now, but I am happy that it is. \ud83d\ude4f \u2764 \n\nThanks for the help!\n\nComment: The vm should be in hostonly, but that nat in config is just masquerade to enable \"forwarding\"\nComment: we need to improve name of that `nat` or comments, but im about to go to long PTO so once im back, closing this, feel free to reopen if needed or post comments here\nComment: Thank you @doomedraven.  I understand and no worries about the comments.. Hopefully people can see this thread if they run into similar issues.\n\nSo, router_manager.py testing works great for me... I do have an issue when I choose internet routing and submitting a sample. I am able to see the VM open and run.  I can even ping any domain (DNS works) successfully from the VM.  Cuckoo.log shows this:\n\n```\n2025-04-28 12:34:07,142 [lib.cuckoo.core.guest] INFO: Task #28: Starting analysis on guest (id=win10-internet, ip=192.168.100.101)\n2025-04-28 12:34:07,350 [lib.cuckoo.core.guest] INFO: Task #28: Guest is running CAPE Agent 0.18 (id=win10-internet, ip=192.168.100.101)\n2025-04-28 12:34:08,991 [lib.cuckoo.core.guest] INFO: Task #28: Uploading script files to guest (id=win10-internet, ip=192.168.100.101)\n2025-04-28 12:34:10,042 [lib.cuckoo.core.guest] INFO: Task #28: Started capturing screenshots for win10-internet\n2025-04-28 12:35:09,490 [lib.cuckoo.core.resultserver] INFO: Task 28: Process 9040 (parent 6672): af1cf572150e95fd75306a13.exe, path C:\\Users\\Hal\\AppData\\Local\\Temp\\af1cf572150e95fd75306a13.exe\n2025-04-28 12:36:40,620 [lib.cuckoo.core.guest] WARNING: Task #28: Virtual Machine win10-internet /status failed. This can indicate the guest losing network connectivity\n2025-04-28 12:40:16,963 [lib.cuckoo.core.guest] WARNING: Task #28: Virtual Machine win10-internet /status failed. This can indicate the guest losing network connectivity\n2025-04-28 12:41:30,344 [lib.cuckoo.core.guest] WARNING: Task #28: Virtual Machine win10-internet /status failed. This can indicate the guest losing network connectivity\n2025-04-28 12:44:09,585 [lib.cuckoo.core.guest] INFO: Task #28: End of analysis reached! (id=win10-internet, ip=192.168.100.101)\n2025-04-28 12:44:09,701 [lib.cuckoo.core.analysis_manager] INFO: Task #28: Disabled route 'internet'\n2025-04-28 12:44:15,035 [lib.cuckoo.core.analysis_manager] INFO: Task #28: Completed analysis successfully.\n2025-04-28 12:44:15,042 [lib.cuckoo.core.analysis_manager] INFO: Task #28: analysis procedure completed\n```\nand my processing.log gets a timeout 900:\n```\n2025-04-28 12:44:19,001 [root] INFO: Processing analysis data for Task #28\n2025-04-28 12:59:19,727 [root] ERROR: [28] Processing timeout: ('Task timeout', 900). Function: 900\n```\n\nThis sample has run fine many times with inetsim.  Even when internet routing wasn't working, for some reason, it still managed to process with the default timeout of 300... \n\nI can also go into `/opt/CAPEv2/storage/analyses/28/` and view `dump.pcap`.  I see bidirectional packets so that seems to be working fine.  I've up'ed my timeout to 3000 and it still times out. \n\nAny ideas?\nComment: @brightpinefield Hello, I also encountered a problem in implementing the route. I would like to ask if it is convenient for me to discuss the relevant settings with you. What information do I need to provide you?\nComment: \n@waason I haven't figured my issue out yet.  Still working on it.\n\n\nComment: Well processing timeout can be related to many different points.\n* Low resources\n* Too many files generated for that job\n* All modules enabled, too many random internet yaras\n* Etc etc\n\nSo my suggestion is to run processing by hand to reprocess that job, with highest timeout,let's say 2000, so once it generated you can see where it spend most of the time in statistics, or reprocess in debug mode(-d) so you can see where it spends time but it still will fail, so the best is -d and increase timeout\nComment:  >>Status failed. This can indicate the guest losing network connectivity\n\nThis looks to me like bad VM configuration or server side firewall doing mess.\n\nYou have hard coded IP inside of the vm? Or you using DHCP to assign it? Is result server listening on the same network range?\nComment: Thanks @doomedraven! I ran a manual debug on one of my latest submissions. I noticed this in the suricata module:\n```\n2025-04-29 08:41:53,348 [Task 37] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Suricata\" on analysis at \"/opt/CAPEv2/storage/analyses/37\"\n2025-04-29 08:41:53,531 [Task 37] [modules.processing.suricata] DEBUG: pcapfile list: {'message': {'count': 0, 'files': []}, 'return': 'OK'} current pcap: {'message': '/opt/CAPEv2/storage/analyses/37/dump.pcap', 'return': 'OK'}\n2025-04-29 08:41:58,537 [Task 37] [modules.processing.suricata] DEBUG: pcapfile list: {'message': {'count': 0, 'files': []}, 'return': 'OK'} current pcap: {'message': '/opt/CAPEv2/storage/analyses/37/dump.pcap', 'return': 'OK'}\n2025-04-29 08:42:03,542 [Task 37] [modules.processing.suricata] DEBUG: pcapfile list: {'message': {'count': 0, 'files': []}, 'return': 'OK'} current pcap: {'message': '/opt/CAPEv2/storage/analyses/37/dump.pcap', 'return': 'OK'}\n2025-04-29 08:42:08,548 [Task 37] [modules.processing.suricata] DEBUG: pcapfile list: {'message': {'count': 0, 'files': []}, 'return': 'OK'} current pcap: {'message': '/opt/CAPEv2/storage/analyses/37/dump.pcap', 'return': 'OK'}\n2025-04-29 08:42:13,554 [Task 37] [modules.processing.suricata] DEBUG: pcapfile list: {'message': {'count': 0, 'files': []}, 'return': 'OK'} current pcap: {'message': '/opt/CAPEv2/storage/analyses/37/dump.pcap', 'return': 'OK'}\n2025-04-29 08:42:18,560 [Task 37] [modules.processing.suricata] DEBUG: pcapfile list: {'message': {'count': 0, 'files': []}, 'return': 'OK'} current pcap: {'message': '/opt/CAPEv2/storage/analyses/37/dump.pcap', 'return': 'OK'}\n2025-04-29 08:42:23,566 [Task 37] [modules.processing.suricata] DEBUG: pcapfile list: {'message': {'count': 0, 'files': []}, 'return': 'OK'} current pcap: {'message': '/opt/CAPEv2/storage/analyses/37/dump.pcap', 'return': 'OK'}\n2025-04-29 08:42:28,572 [Task 37] [modules.processing.suricata] DEBUG: pcapfile list: {'message': {'count': 0, 'files': []}, 'return': 'OK'} current pcap: {'message': '/opt/CAPEv2/storage/analyses/37/dump.pcap', 'return': 'OK'}\n2025-04-29 08:42:33,578 [Task 37] [modules.processing.suricata] DEBUG: pcapfile list: {'message': {'count': 0, 'files': []}, 'return': 'OK'} current pcap: {'message': '/opt/CAPEv2/storage/analyses/37/dump.pcap', 'return': 'OK'}\n2025-04-29 08:42:38,592 [Task 37] [modules.processing.suricata] DEBUG: pcapfile list: {'message': {'count': 0, 'files': []}, 'return': 'OK'} current pcap: {'message': '/opt/CAPEv2/storage/analyses/37/dump.pcap', 'return': 'OK'}\n2025-04-29 08:42:43,598 [Task 37] [modules.processing.suricata] DEBUG: pcapfile list: {'message': {'count': 0, 'files': []}, 'return': 'OK'} current pcap: {'message': '/opt/CAPEv2/storage/analyses/37/dump.pcap', 'return': 'OK'}\n2025-04-29 08:43:03,082 [Task 37] [modules.processing.suricata] DEBUG: pcapfile list: {'message': {'count': 0, 'files': []}, 'return': 'OK'} current pcap: {'message': 'None', 'return': 'OK'}\n2025-04-29 08:43:03,082 [Task 37] [modules.processing.suricata] DEBUG: Pcap not in list and not current pcap lets assume it's processed\n```\n\nBut it continues on with no problems until I hit this:\n`2025-04-29 09:02:02,791 [Task 37] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"PCAP2CERT\"`\n\nLooks like it is hung on extracting TLS/SSL certs?  May explain why my inetsim runs work with no problem since it didn't have much of a pcap to work off of.  This pcap looks like this in `/opt/CAPEv2/storage/analyses/37`:\n`-rw-r--r--  1 cape cape 548358131 Apr 29 08:18 dump.pcap`\n\nOnly about 550MB in size. I haven't used PCAP2CERT before.. maybe I can try to run this manually on the pcap and see if it works.\n\nAs for the VM configuration, yes, I have static IP configured and able to ping my result_server:\n\n![Image](https://github.com/user-attachments/assets/fa8d4f73-cc20-4509-97a8-bd1f1e78d741)\n\n```\nkvm.conf:\n\n[win10-internet]\nlabel = win10-internet\nplatform = windows\nip = 192.168.100.101\narch = x64\ntags = win10-internet,acrobat_reader_6\nsnapshot = snapshot1\nresultserver_ip = 192.168.100.1\nreserved = no\n\n```\n\nComment: So about processing, why do you have enabled all modules? Enable only those that you need or those which are enabled by default, there are many cool community modules, but they are not optimized neither maintained by us, so I would disable go to process/reporting config and disable each section that has community tag on top of it for start\n\nAbout VM it looks fine, not sure why it doesn't work\nComment: Thanks @doomedraven , my bad. I guess I got too excited and turned some more things on...  I'll try removing the community ones and see..\n\nQuick question about the CAPE_extractors though. It is looking for modules in `modules_path = modules/processing/parsers/CAPE/` but when I pull the repo or even download the community.py, I can't seem to find where the config extractors are being stored.  Yet, I still see in the debug: `2025-04-29 08:59:47,248 [Task 37] [modules.processing.CAPE] DEBUG: CAPE: new config found for: Remcos`.   \n\nI see in the community repo, there are parsers in modules/parsers/MACO, but I don't see them when I run the community.py script either..  \nComment: update comment in config, cape configs are installed from pypi. they are part of dependencies so installed automatically. \n* https://github.com/CAPESandbox/cape-parsers\n* https://pypi.org/project/CAPE-parsers/\n\n* In case if you want to add custom/private extractors, put them under `custom/parsers`.\nIm going to long PTO so don't expect responses anymore till June probably. \n\nHave fun\n\nComment: Ah okay! Got it, thank you @doomedraven! Thanks for the explanation on the parsers.\n\nRegarding my Timeout on the internet configured routing analysis, the manual processing worked after disabling those community driven modules. I had the PCAP2CERT enabled (think it was on by default but disabled it).  Reran through web submission with default timeout of 300 but it failed.. so I'm hoping I am close now and maybe now just need to increase timeouts by a bit more. \n\nI really appreciate your help on this.  I hope you enjoy your PTO! \ud83c\udf7b \nComment: Hm default timeout for processing is 900, maybe I'm wrong, I'm on phone so\r\ncan't verify that.\r\n\r\nThank you. Have great time too \ud83c\udf7b\r\n\r\nEl mar, 29 abr 2025, 19:07, brightpinefield ***@***.***>\r\nescribi\u00f3:\r\n\r\n> *brightpinefield* left a comment (kevoreilly/CAPEv2#2575)\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2575#issuecomment-2839614826>\r\n>\r\n> Ah okay! Got it, thank you @doomedraven <https://github.com/doomedraven>!\r\n> Thanks for the explanation on the parsers.\r\n>\r\n> Regarding my Timeout on the internet configured routing analysis, the\r\n> manual processing worked after disabling those community driven modules. I\r\n> had the PCAP2CERT enabled (think it was on by default but disabled it).\r\n> Reran through web submission with default timeout of 300 but it failed.. so\r\n> I'm hoping I am close now and maybe now just need to increase timeouts by a\r\n> bit more.\r\n>\r\n> I really appreciate your help on this. I hope you enjoy your PTO! \ud83c\udf7b\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2575#issuecomment-2839614826>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3732KGRP5DJTHAXQFT236WTRAVCNFSM6AAAAAB34O3E6SVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDQMZZGYYTIOBSGY>\r\n> .\r\n> You are receiving this because you were mentioned.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: Oh sorry!  The 300 is for the Timeout specified in the submit portal in the web interface.   I see what you are saying now about the 900 setting.. I can see the `python process.py -p7 auto -pt 900` in the process list.    I don't see a setting in `processing.conf` to change the value..\n\n\nComment: That is systems config file, run systemctl status cape-processor \n\nAnd you will get path to file, edit it as root, then run\nsystemctl daemon-reload to pick the changes and restar cape-processor\nComment: Thanks again @doomedraven.  This is good to know and I'm documenting everything you've helped me with.  Really grateful! \n\nI'm just testing with the Remcos sample and submitted again with the community modules.  In one of the newer submissions, process.py froze on the Suricata processing. There must have been an issue with the dump.pcap file as I swapped in a previous successful pcap from earlier and it worked.   This is really tricky to troubleshoot! \ud83d\ude05 \nComment: welcome to 3rd party software dependencies hell :) \nyou never know who betrayed you :D \nbut so far im using suricata so it works for sure(things that im using works for sure :D), but maybe your pcap was too big. as i told depending where you run it, and it doesnt have enough resources, it might impact drastically on this\nComment: Fair enough! lol!   \n\nI will broaden my sample base and try a bunch of new ones.. The DL&EXEC Zip file with the 10 files inside - some are successfully running, so at least it appears that CAPE is working properly.   Will just have to deal with those failed ones as they come.\n\nThanks again for your help and please enjoy your vacation!! \ud83c\udf7b  I owe you some beers..\nComment: Just investigate with reprocessing in debug mode, to see which component\r\nstucks and consider if you need it. And if yes open issue with all details\r\nand relevant files as for example for suricata, pcap etc\r\n\r\nWhy you just don't use API to push your files instead of zipping them and\r\nputting somewhere. But as I told 10 is hard coded in demux.py so you can\r\nchange it and restar web service\r\n\r\nEl mar, 29 abr 2025, 22:58, brightpinefield ***@***.***>\r\nescribi\u00f3:\r\n\r\n> *brightpinefield* left a comment (kevoreilly/CAPEv2#2575)\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2575#issuecomment-2840227838>\r\n>\r\n> Fair enough! lol!\r\n>\r\n> I will broaden my sample base and try a bunch of new ones.. The DL&EXEC\r\n> Zip file with the 10 files inside - some are successfully running, so at\r\n> least it appears that CAPE is working properly. Will just have to deal with\r\n> those failed ones as they come.\r\n>\r\n> Thanks again for your help and please enjoy your vacation!! \ud83c\udf7b I owe you\r\n> some beers..\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2575#issuecomment-2840227838>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH33GMWVZEVNBQFB7PSL237RWLAVCNFSM6AAAAAB34O3E6SVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDQNBQGIZDOOBTHA>\r\n> .\r\n> You are receiving this because you were mentioned.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: Copy that.  I will do that, thank you!\n\nAs for the ZIP file, I just randomly chose a URL from URLhaus and it was a zip file.. I had no idea what was in it.. but I will definitely consider the API for more bulk type loads into the sandbox.  Thanks again! \ud83d\ude4f \nComment: btw https://github.com/kevoreilly/CAPEv2/pull/2579\nComment: Oh sweet! Thank you @doomedraven ! \ud83d\ude4f ",
+  "Title: cleaner fix delete from db\nBody: None",
+  "Title: cleaner fix delete from db\nBody: None",
+  "Title: Need to add another DB migration\nBody: ```\nALTER TABLE guests DROP CONSTRAINT guests_task_id_fkey, ADD CONSTRAINT guests_task_id_fkey FOREIGN KEY (task_id) REFERENCES tasks (id) ON DELETE CASCADE;\n\nALTER TABLE errors DROP CONSTRAINT errors_task_id_fkey, ADD CONSTRAINT errors_task_id_fkey FOREIGN KEY (task_id) REFERENCES tasks (id) ON DELETE CASCADE;\n\nALTER TABLE tasks DROP CONSTRAINT tasks_sample_id_fkey, ADD CONSTRAINT tasks_sample_id_fkey FOREIGN KEY (sample_id) REFERENCES samples (id) ON DELETE CASCADE;\n```",
+  "Title: Internet routing not working, unable to ping DNS server or resolve hosts\nBody: My network setup is very similar to the one in this [issue](https://github.com/kevoreilly/CAPEv2/issues/1533). I set up a hostonly network and wish to enable a dirty line for internet routing. I followed the steps in the documentation but am unable to `ping 1.1.1.1` on my windows VM.\n\nNetwork setup:\nWindows VM: 192.168.55.214\nUbuntu 22.04 Host: 192.168.55.1\n\nI followed the instructions to create an isolated hostonly network and the Windows VM has a static IP. I would like to forward the traffic from the VM to the Ubuntu host so it can reach out to the internet.\n\nI get the following error whenever I try to ping a public DNS and I can't resolve any hosts:\n\n<img width=\"511\" alt=\"Image\" src=\"https://github.com/user-attachments/assets/adbe27d1-a291-4528-a478-b4e56c5d0ff7\" />\n\nRunning tcpdump on the virtual interface `virbr1`, which is the hostonly network with my Ubuntu 22.04 host and windows 10 VM shows this issue:\n\n```\n22:54:15.540983 IP 192.168.55.214 > 1.1.1.1: ICMP echo request, id 1, seq 12, length 40\n22:54:15.541051 IP 192.168.55.1 > 192.168.55.214: ICMP 1.1.1.1 protocol 1 port 19791 unreachable, length 68\n22:54:16.564119 IP 192.168.55.214 > 1.1.1.1: ICMP echo request, id 1, seq 13, length 40\n22:54:16.564190 IP 192.168.55.1 > 192.168.55.214: ICMP 1.1.1.1 protocol 1 port 19790 unreachable, length 68\n22:54:17.580025 IP 192.168.55.214 > 1.1.1.1: ICMP echo request, id 1, seq 14, length 40\n22:54:17.580091 IP 192.168.55.1 > 192.168.55.214: ICMP 1.1.1.1 protocol 1 port 19789 unreachable, length 68\n22:54:18.595385 IP 192.168.55.214 > 1.1.1.1: ICMP echo request, id 1, seq 15, length 40\n```\n\nThe ping requests are being made, but my the Ubuntu host is just responding with a `port unreachable`. I'm not sure what the issue is. I have no firewalls of any sort enabled. The packets are also not being forwarded to the internet interface, because running `tcpdump` on that interface shows no ICMP packets.\n\nFollowing is my `conf/routing.conf`\n\n```\n[routing]\n\n# Enable pcap generation for non live connections?\n# If you have huge number of VMs, pcap generation can be a bottleneck\nenable_pcap = no\n\n# Default network routing mode; \"none\", \"internet\", or \"vpn_name\".\n# In none mode we don't do any special routing - the VM doesn't have any\n# network access (this has been the default actually for quite a while).\n# In internet mode by default all the VMs will be routed through the network\n# interface configured below (the \"dirty line\").\n# And in VPN mode by default the VMs will be routed through the VPN identified\n# by the given name of the VPN.\n# Note that just like enabling VPN configuration setting this option to\n# anything other than \"none\" requires one to run utils/rooter.py as root next\n# to the CAPE instance (as it's required for setting up the routing).\nroute = internet\n\n# Network interface that allows a VM to connect to the entire internet, the\n# \"dirty line\" so to say. Note that, just like with the VPNs, this will allow\n# malicious traffic through your network. So think twice before enabling it.\n# (For example, to route all VMs through eth0 by default: \"internet = eth0\").\ninternet = ens18\n\n# When set to no masquerade rule has been not generated.\nnat = yes\n\n# When property nat set to yes. That property not used.\n# When property nat set to no and no_local_routing to yes, a vrf configuration \n# will be generated and local traffic will go through by internet interface (dirty_line).\nno_local_routing = yes\n\n# Routing table name/id for \"dirty line\" interface. If \"dirty line\" is\n# also default gateway in the system you can leave \"main\" value. Otherwise add\n# new routing table by adding \"<id> <name>\" line to /etc/iproute2/rt_tables\n# (e.g., \"200 eth0\"). ID and name must be unique across the system (refer to\n# /etc/iproute2/rt_tables for existing names and IDs).\nrt_table = main\n\n# When using \"dirty line\", you can reject forwarding to a certain network segment.\n# For example, a request targeting 192.168.12.1/24,172.16.22.1/24 will not be\n# forwarded, but will be rejected:\n# \"reject_segments = 192.168.12.1/24,172.16.22.1/24\"\nreject_segments = none\n\n# When ussing \"dirty line\", you can reject guest access a certain port.\n# For example, a request targeting host's port 8000 and 8080 will be rejected:\n# \"reject_hostports = 8000,8080\"\nreject_hostports = none\n\n# To route traffic through multiple network interfaces CAPE uses\n# Policy Routing with separate routing table for each output interface\n# (VPN or \"dirty line\"). If this option is enabled CAPE on start will try\n# to automatically initialise routing tables by copying routing entries from\n# main routing table to the new routing tables. Depending on your network/vpn\n# configuration this might not be sufficient. In such case you would need to\n# initialise routing tables manually. Note that enabling this option won't\n# affect main routing table.\nauto_rt = no\n\n# The drop route basically drops any outgoing network (except for CAPE\n# traffic) whereas the regular none route still allows a VM to access its own\n# subnet (e.g., 192.168.122.1/24). It is disabled by default as it does require\n# the optional rooter to run (unlike the none route, where literally nothing\n# happens). One can either explicitly enable the drop route or if the rooter\n# is enabled anyway, it is automatically enabled.\ndrop = no\n\n# Should check if the inteface is up\nverify_interface = yes\n\n# Should check if rt_table exists before initializing\nverify_rt_table = yes\n\n[inetsim]\n# Inetsim quick deploy, chose your vm manager if is not kvm\n# wget https://googledrive.com/host/0B6fULLT_NpxMQ1Rrb1drdW42SkE/remnux-6.0-ova-public.ova\n# tar xvf remnux-6.0-ova-public.ova\n# qemu-img convert -O qcow2 REMnuxV6-disk1.vmdk remnux.qcow2\n\nenabled = no\nserver = 192.168.1.2\ndnsport = 53\ninterface = virbr1\n# Redirect TCP ports (should we also support UDP?). If specified, this should\n# represent whitespace-separated src:dst pairs. E.g., \"80:8080 443:8080\" will\n# redirect all 80/443 traffic to 8080 on the specified InetSim host.\n# Source port range redirection is also supported. E.g., \"996-2041:80\" will\n# redirect all traffic directed at ports between 996 and 2041 inclusive to port 80\n# on the specified InetSim host.\nports =\n\n\n[tor]\nenabled = no\ndnsport = 5353\nproxyport = 9040\ninterface = virbr1\n\n[vpn]\n# By default we disable VPN support as it requires running utils/rooter.py as\n# root next to cuckoo.py (which should run as regular user).\nenabled = no\n\n# select one of the configured vpns randomly\nrandom_vpn = no\n\n# Comma-separated list of the available VPNs.\nvpns = vpn0\n\n[vpn0]\n# Name of this VPN. The name is represented by the filepath to the\n# configuration file, e.g., cuckoo would represent /etc/openvpn/cuckoo.conf\n# Note that you can't assign the names \"none\" and \"internet\" as those would\n# conflict with the routing section in cuckoo.conf.\nname = vpn0\n\n# The description of this VPN which will be displayed in the web interface.\n# Can be used to for example describe the country where this VPN ends up.\ndescription = openvpn_tunnel\n\n# The tun device hardcoded for this VPN. Each VPN *must* be configured to use\n# a hardcoded/persistent tun device by explicitly adding the line \"dev tunX\"\n# to its configuration (e.g., /etc/openvpn/vpn1.conf) where X in tunX is a\n# unique number between 0 and your lucky number of choice.\ninterface = tun0\n\n# Routing table name/id for this VPN. If table name is used it *must* be\n# added to /etc/iproute2/rt_tables as \"<id> <name>\" line (e.g., \"201 tun0\").\n# ID and name must be unique across the system (refer /etc/iproute2/rt_tables\n# for existing names and IDs).\nrt_table = tun0\n\n\n[socks5]\n# By default we disable socks5 support as it requires running utils/rooter.py as\n# root next to cuckoo.py (which should run as regular user).\nenabled = no\n\n# select one of the configured socks5 proxies randomly\nrandom_socks5 = no\n\n# Comma-separated list of the available proxies.\nproxies = socks_ch\n\n[socks_ch]\nname = ch_socks\ndescription = ch_socks\nproxyport = 5008\ndnsport = 10053\n```\nComment: hello. can you start rooter by hand in verbose mode to verify that iptables? you need \n* `sudo systemctl stop cape-rooter` and then as cape user in poetry shell: `cd /opt/CAPEv2 && poetry run python utils/rooter.py -v` and start an analysis\n\n\nalso try to enable and you will need to restart `sudo systemctl restart cape`\n```\n# To route traffic through multiple network interfaces CAPE uses\n# Policy Routing with separate routing table for each output interface\n# (VPN or \"dirty line\"). If this option is enabled CAPE on start will try\n# to automatically initialise routing tables by copying routing entries from\n# main routing table to the new routing tables. Depending on your network/vpn\n# configuration this might not be sufficient. In such case you would need to\n# initialise routing tables manually. Note that enabling this option won't\n# affect main routing table.\nauto_rt = no\n```\nComment: also did you configure netplan? https://capev2.readthedocs.io/en/latest/installation/host/routing.html#configuring-netplan\nComment: I didn't configure a netplan, mostly because I couldn't tell from the documentation how to set it up for my needs as my network configuration is fairly simple. I have a hostonly network with the VM and wish to forward the data out through the internet line which is `ens18`. I figured setting the appropriate options in `conf/routing.conf` was enough based off of the previous issues. At least cape h as no issue enabling/disabling the internet route, I just can't get DNS to work and ping the public DNS from the guest.\n\n\n```\n2025-04-25 12:49:35,614 [cuckoo-rooter] INFO: Verbose logging enabled\n2025-04-25 12:49:35,614 [cuckoo-rooter] DEBUG: Enabling IPv4 forwarding\n2025-04-25 12:49:35,614 [cuckoo-rooter] DEBUG: Running command: /usr/sbin/sysctl -wnet.ipv4.ip_forward=1\n2025-04-25 12:52:05,497 [cuckoo-rooter] INFO: Processing command: nic_available ens18 \n2025-04-25 12:52:05,501 [cuckoo-rooter] INFO: Processing command: forward_enable dirty-line virbr1 0.0.0.0/0 192.168.55.214 \n2025-04-25 12:52:05,501 [cuckoo-rooter] DEBUG: Running command: /sbin/iptables -D FORWARD -i dirty-line -j REJECT -m comment --comment CAPE-rooter\n2025-04-25 12:52:05,503 [cuckoo-rooter] DEBUG: Running command: /sbin/iptables -D FORWARD -o dirty-line -j REJECT -m comment --comment CAPE-rooter\n2025-04-25 12:52:05,505 [cuckoo-rooter] DEBUG: Running command: /sbin/iptables -I CAPE_ACCEPTED_SEGMENTS -i dirty-line -o virbr1 --source 0.0.0.0/0 --destination 192.168.55.214 -j ACCEPT -m comment --comment CAPE-rooter\n2025-04-25 12:52:05,508 [cuckoo-rooter] INFO: Processing command: forward_enable dirty-line ens18 192.168.55.214 \n2025-04-25 12:52:05,508 [cuckoo-rooter] DEBUG: Running command: /sbin/iptables -D FORWARD -i dirty-line -j REJECT -m comment --comment CAPE-rooter\n2025-04-25 12:52:05,510 [cuckoo-rooter] DEBUG: Running command: /sbin/iptables -D FORWARD -o dirty-line -j REJECT -m comment --comment CAPE-rooter\n2025-04-25 12:52:05,512 [cuckoo-rooter] DEBUG: Running command: /sbin/iptables -I CAPE_ACCEPTED_SEGMENTS -i dirty-line -o ens18 --source 192.168.55.214 -j ACCEPT -m comment --comment CAPE-rooter\n2025-04-25 12:52:05,514 [cuckoo-rooter] INFO: Processing command: forward_enable dirty-line ens18 192.168.55.214 192.168.55.1 tcp 2042 \n2025-04-25 12:52:05,515 [cuckoo-rooter] DEBUG: Running command: /sbin/iptables -D FORWARD -i dirty-line -j REJECT -m comment --comment CAPE-rooter\n2025-04-25 12:52:05,516 [cuckoo-rooter] DEBUG: Running command: /sbin/iptables -D FORWARD -o dirty-line -j REJECT -m comment --comment CAPE-rooter\n2025-04-25 12:52:05,518 [cuckoo-rooter] DEBUG: Running command: /sbin/iptables -I CAPE_ACCEPTED_SEGMENTS -i dirty-line -o ens18 --source 192.168.55.214 --destination 192.168.55.1 -p tcp -m multiport --dport 2042 -j ACCEPT -m comment --comment CAPE-rooter\n2025-04-25 12:52:05,521 [cuckoo-rooter] INFO: Processing command: forward_enable dirty-line virbr1 192.168.55.1 192.168.55.214 \n2025-04-25 12:52:05,521 [cuckoo-rooter] DEBUG: Running command: /sbin/iptables -D FORWARD -i dirty-line -j REJECT -m comment --comment CAPE-rooter\n2025-04-25 12:52:05,523 [cuckoo-rooter] DEBUG: Running command: /sbin/iptables -D FORWARD -o dirty-line -j REJECT -m comment --comment CAPE-rooter\n2025-04-25 12:52:05,524 [cuckoo-rooter] DEBUG: Running command: /sbin/iptables -I CAPE_ACCEPTED_SEGMENTS -i dirty-line -o virbr1 --source 192.168.55.1 --destination 192.168.55.214 -j ACCEPT -m comment --comment CAPE-rooter\n2025-04-25 12:52:05,528 [cuckoo-rooter] INFO: Processing command: add_dev_to_vrf virbr1 \n2025-04-25 12:52:05,528 [cuckoo-rooter] DEBUG: Running command: /sbin/ip link set dev virbr1 master dirty-line\n2025-04-25 13:01:31,662 [cuckoo-rooter] INFO: Processing command: forward_disable dirty-line virbr1 0.0.0.0/0 192.168.55.214 \n2025-04-25 13:01:31,662 [cuckoo-rooter] DEBUG: Running command: /sbin/iptables -D CAPE_ACCEPTED_SEGMENTS -i dirty-line -o virbr1 --source 0.0.0.0/0 --destination 192.168.55.214 -j ACCEPT -m comment --comment CAPE-rooter\n2025-04-25 13:01:31,674 [cuckoo-rooter] INFO: Processing command: forward_disable dirty-line ens18 192.168.55.214 \n2025-04-25 13:01:31,674 [cuckoo-rooter] DEBUG: Running command: /sbin/iptables -D CAPE_ACCEPTED_SEGMENTS -i dirty-line -o ens18 --source 192.168.55.214 -j ACCEPT -m comment --comment CAPE-rooter\n2025-04-25 13:01:31,683 [cuckoo-rooter] INFO: Processing command: forward_disable dirty-line ens18 192.168.55.214 192.168.55.1 tcp 2042 \n2025-04-25 13:01:31,683 [cuckoo-rooter] DEBUG: Running command: /sbin/iptables -D CAPE_ACCEPTED_SEGMENTS -i dirty-line -o ens18 --source 192.168.55.214 --destination 192.168.55.1 -p tcp -m multiport --dport 2042 -j ACCEPT -m comment --comment CAPE-rooter\n2025-04-25 13:01:31,696 [cuckoo-rooter] INFO: Processing command: forward_disable dirty-line virbr1 192.168.55.1 192.168.55.214 \n2025-04-25 13:01:31,696 [cuckoo-rooter] DEBUG: Running command: /sbin/iptables -D CAPE_ACCEPTED_SEGMENTS -i dirty-line -o virbr1 --source 192.168.55.1 --destination 192.168.55.214 -j ACCEPT -m comment --comment CAPE-rooter\n2025-04-25 13:01:31,712 [cuckoo-rooter] INFO: Processing command: delete_dev_from_vrf virbr1 \n2025-04-25 13:01:31,712 [cuckoo-rooter] DEBUG: Running command: /sbin/ip link set dev virbr1 nomaster\n```\n\nThese are the logs from the rooter, so I can see the iptables being created.\n\nThe PCAP from the sample I executed simply shows a bunch of DNS requests being done from `192.168.55.214` to `1.1.1.1` with no response, so I do not think those requests are being forwarded to my `ens18` interface and NAT-ed.\n\n![Image](https://github.com/user-attachments/assets/89c3c186-5ab6-40ba-83c1-43b0cd957dd6)\n\nAccording to VirusTotal the sample does reach out to specific hosts. I also was unable to get any Behavior Analysis info from the sample itself, that tab is empty.\nComment: well to properly route traffic you need to configure netplan, just replace `enx00a0c6000000` with `ens18` and fix network ranges for your need thats all\nComment: I'll try that and update if I still have issues.\nComment: Do i need a management interface, ie a `enp8s0`? or can I just keep `ens18` only.\nComment: Ens18 should be fine\r\n\r\nEl vie, 25 abr 2025, 16:01, Vishwa Iyer ***@***.***> escribi\u00f3:\r\n\r\n> *vishiswoz* left a comment (kevoreilly/CAPEv2#2571)\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2571#issuecomment-2830523992>\r\n>\r\n> Do i need a management interface, ie a enp8s0? or can I just keep ens18\r\n> only.\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2571#issuecomment-2830523992>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3YHU5YXNHNEY7ZLIV323I55DAVCNFSM6AAAAAB32HWJ3SVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDQMZQGUZDGOJZGI>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: Hello @vishiswoz \nThe problem lies within nftables, try to delete (but before that try to do exactly the same tests above, you find that the rejected packets are exactly what is given by the rules counter), rooter tries to do so through iptables but it is not enough\n`libvirt_network guest_output`\n`libvirt_network guest_input`\n\nAdditional rules should be added (I think rooter does not manage that stuff, `nat=yes` is not reflected)\n`sudo nft add rule ip nat postrouting oifname \"dirty_line_iface\" masquerade`             \n `sudo nft insert rule ip filter CAPE_ACCEPTED_SEGMENTS iifname \"dirty_line_iface\" oifname \"virbr1\" counter accept`\nComment: that very interesting input, I never had problems with internet before, but I will try to test your input and update router if needed, but it will take some time\nComment: Hello @doomedraven \nI have tested a fresh stup of Capev2 on Ubuntu 24.04 and 22.04\nThe same issue with internet.\nI will try to fix the issue if I had the time.\nThe actual code here does not really solve the issue:\nhttps://github.com/kevoreilly/CAPEv2/blob/01cb2c16c88b7c6a5787011b4794f61db186a7c7/utils/rooter.py#L418\nComment: Hi\nlibvirt on ubuntu 24.04 comes with a new network.conf (/etc/libvirt/network.conf)\nAt least it does not exist on my old server with ubuntu 22.04\n```\n...\n#   If firewall_backend isn't configured, libvirt will choose the\n#   first available backend from the following list:\n#\n#     [nftables, iptables]\n...\n```\nSo I guess that libvirt uses nftable-rules under ubuntu 24.04 by default.\nSo adding `firewall_backend = \"iptables\"` to /etc/libvirt/network.conf makes dirty-line work again.\nMaybe someone can check my theory and give feedback.\n\nmy routing.conf:\n```\n[routing]\n\nenable_pcap = no\n\nroute = internet\n\ninternet = enp10s0\n\nnat = yes\n\nno_local_routing = no\n\nrt_table = main\n....\n```\n\nOS: Ubuntu 24.04 Desktop\nNo netplan configured\nNetwork is managed by default via Networkmanger\nsystemd-networkd inactive (masked)\nComment: i can confirm, it works, thank you, tested without netplan \nComment: * quick fix:\n* `sudo sed -i 's/#firewall_backend = \"nftables\"/firewall_backend = \"iptables\"/g' /etc/libvirt/network.conf`\n* `sudo systemctl restart libvirtd cape` \nComment: that is fixed with @ClaudioWayne finding",
+  "Title: Bump h11 from 0.14.0 to 0.16.0\nBody: Bumps [h11](https://github.com/python-hyper/h11) from 0.14.0 to 0.16.0.\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/python-hyper/h11/commit/1c5b07581f058886c8bdd87adababd7d959dc7ca\"><code>1c5b075</code></a> this time for surer</li>\n<li><a href=\"https://github.com/python-hyper/h11/commit/d9c369935e853a7ee1aeb7e481f6dddf9b9c9b8a\"><code>d9c3699</code></a> this time for sure...</li>\n<li><a href=\"https://github.com/python-hyper/h11/commit/d91b9dd2290a25c8c3f5ec15feb57de5873e6e39\"><code>d91b9dd</code></a> blacken</li>\n<li><a href=\"https://github.com/python-hyper/h11/commit/5a4683ca466b59bbab9b19cfea20ee157b31cee0\"><code>5a4683c</code></a> Soothe mypy</li>\n<li><a href=\"https://github.com/python-hyper/h11/commit/9c9567f0a92d13a83a8d8ebdbc757c8c2d384536\"><code>9c9567f</code></a> Bump version to 0.16.0</li>\n<li><a href=\"https://github.com/python-hyper/h11/commit/114803a29ce50116dc47951c690ad4892b1a36ed\"><code>114803a</code></a> Merge commit from fork</li>\n<li><a href=\"https://github.com/python-hyper/h11/commit/9462006f6ce4941661888228cbd4ac1ea80689b0\"><code>9462006</code></a> Bump version to 0.15.0</li>\n<li><a href=\"https://github.com/python-hyper/h11/commit/70a96bea8e55403e5d92db14c111432c6d7a8685\"><code>70a96be</code></a> Merge pull request <a href=\"https://redirect.github.com/python-hyper/h11/issues/181\">#181</a> from Julien00859/Julien00859/get_int_max_str_digits</li>\n<li><a href=\"https://github.com/python-hyper/h11/commit/60782ad107e538b9312aac7e1c119c8358bf797c\"><code>60782ad</code></a> Reject Content-Length longer 1 billion TB</li>\n<li><a href=\"https://github.com/python-hyper/h11/commit/dff7cc397a26ed4acdedd92d1bda6c8f18a6ed9f\"><code>dff7cc3</code></a> Validate Chunked-Encoding chunk footer</li>\n<li>Additional commits viewable in <a href=\"https://github.com/python-hyper/h11/compare/v0.14.0...v0.16.0\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=h11&package-manager=pip&previous-version=0.14.0&new-version=0.16.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Fix for bash script kvm-qemu.sh when installing libvmi\nBody: Hello everyone!\r\nPlease review a small fix to the file `installer/kvm-qemu.sh` for the libvmi installation script.\r\n\r\nWhen installing KVM/QEMU twice using this script I received such the error every time:\r\n```bash\r\nbash: cd: libvmi-v0.14.0: No such file or directory\r\n```\r\n### How to reproduce\r\n```bash\r\ncd /tmp\r\nwget -q https://github.com/libvmi/libvmi/archive/refs/tags/v0.14.0.zip -O libvmi-v0.14.0.zip\r\nunzip libvmi-v0.14.0.zip\r\ncd \"libvmi-v0.14.0\"\r\n```\r\n### Expected result\r\n```bash\r\nuser@ubuntu24:/tmp/libvmi-v0.14.0$\r\n```\r\n### The actual result\r\n```bash\r\nbash: cd: libvmi-v0.14.0: No such file or directory\r\n```\r\n### Description\r\nThe downloaded file `libvmi-v0.14.0.zip` has the `libvmi-0.14.0` directory inside, not the `libvmi-v0.14.0`.\r\n\r\n### What to be changed\r\nThis string:\r\n```bash\r\ncd \"libvmi-v0.14.0\" || return\r\n```\r\nis changing to this:\r\n```bash\r\ncd \"libvmi-0.14.0\" || return\r\n```\nComment: thank you",
+  "Title: warning message is output to process.log\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\n\n## This is open source and you are getting __free__ support so be friendly!\n\n# Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n- [ ] I am running the latest version\n- [ ] I did read the README!\n- [ ] I checked the documentation and found no answer\n- [ ] I checked to make sure that this issue has not already been filed\n- [ ] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [ ] I have read and checked all configs (with all optional parts)\n\n\n# Expected Behavior\n\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\n\n# Current Behavior\n\nWhat is the current behavior?\n\n# Failure Information (for bugs)\n\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\n\n## Steps to Reproduce\n\nPlease provide detailed steps for reproducing the issue.\n\n1. step 1\n2. step 2\n3. you get it...\n\n## Context\n\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\n\n| Question         | Answer\n|------------------|--------------------\n| Git commit       | Type `$ git log \\| head -n1` to find out\n| OS version       | Ubuntu 16.04, Windows 10, macOS 10.12.3\n\n## Failure Logs\n\nPlease include any relevant log snippets or files here.\n\nroot@capev2-sandbox:/etc/suricata# ls -lah /tmp/suricata-command.socket\nsrw-rw---- 1 cape cape 0 Mar 31 11:22 /tmp/suricata-command.socket\n\nApr 22 10:19:00 capev2-sandbox python3[3849374]: 2025-04-22 10:19:00,876 [Task 159439] [modules.processing.behavior] WARNING: Analysis results folder does not exist at path \"/opt/CAPEv2/storage/analyses/159439/logs\"\nApr 22 10:19:00 capev2-sandbox python3[3849374]: 2025-04-22 10:19:00,882 [Task 159439] [modules.processing.suricata] WARNING: Suricata: Failed to find usable Suricata log file\nApr 22 10:19:00 capev2-sandbox python3[3849374]: 2025-04-22 10:19:00,885 [Task 159439] [lib.cuckoo.core.plugins] INFO: Logs folder doesn't exist, maybe something with with analyzer folder, any change?\nComment: Wrong configuration of VM and suricata. Read docs for VM configuration \nComment: > Wrong configuration of VM and suricata. Read docs for VM configuration\n\nWhich chapter is it specifically? thank you\nComment: i would say all docs as you put that you didn't read the docs. but about vm https://capev2.readthedocs.io/en/latest/installation/guest/index.html",
+  "Title: Simplify Mongo Delete Functions\nBody: - Simplifies mongo delete functions by breaking out the complicated function signatures into separate functions.\r\n- Adds backwards compatibility for deleting data in the `calls` collection.\nComment: Note, this is completely untested.",
+  "Title: fix: update cleanup logic to use direct config values\nBody: Hello,\r\nThis PR try to solve some issues that i think coming from in #2556 and caused cleaner logic to does not work properly.\nComment: that is wrong, config should have 12h etc format, so it won't bbe able to convert to proper format without that. elaborate your issue\nComment: this is my cleaner configuration in cuckoo.conf file\r\n\r\n> [cleaner]\r\n> enabled = yes\r\n> binaries = 1h\r\n> tmp = 1h\r\n> analysis = 1h\r\n> mongo = yes\r\n> unused_files_in_mongodb = yes\r\n\r\nwhen i hit my limitation configured  by `freespace = 20000`   the **cape.service**  service crash and logs show `Invalid time range format` error.\r\nI troubleshoot the issue inside `CAPEv2/lib/cuckoo/common/cleaners_utils.py` file and realize `convert_into_time` function called twice with wrong value. (for example once [here](https://github.com/kevoreilly/CAPEv2/blob/563fd244405d62ca08793c67bf5ca80431a58185/lib/cuckoo/common/cleaners_utils.py#L124)  in `free_space_monitor` function and again inside `cuckoo_clean_before` function   in [here](https://github.com/kevoreilly/CAPEv2/blob/563fd244405d62ca08793c67bf5ca80431a58185/lib/cuckoo/common/cleaners_utils.py#L491) )\r\nChanges in this PR seems to solve the problem \nComment: ah ok yes make sense, i did check now properly and see what you saying, thank you",
+  "Title: Cents error reporting remcos signature malware\nBody: ## Failure Logs\n\nApr 19 08:35:26 cape-VM poetry[30286]: ERROR:lib.cuckoo.core.plugins:Failed to run the reporting module \"Cents\": unhashable type: 'dict'\nApr 19 08:35:26 cape-VM poetry[30286]: Traceback (most recent call last):\nApr 19 08:35:26 cape-VM poetry[30286]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 869, in process\nApr 19 08:35:26 cape-VM poetry[30286]:     current.run(self.results)\nApr 19 08:35:26 cape-VM poetry[30286]:   File \"/opt/CAPEv2/utils/../modules/reporting/cents.py\", line 78, in run\nApr 19 08:35:26 cape-VM poetry[30286]:     rules = cents_remcos(config_dict, self.sid_counter, md5, date, task_link)\nApr 19 08:35:26 cape-VM poetry[30286]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/common/cents/cents_remcos.py\", line 124, in cents_remcos\nApr 19 08:35:26 cape-VM poetry[30286]:     remcos_config_set.add(_config)\nApr 19 08:35:26 cape-VM poetry[30286]: TypeError: unhashable type: 'dict'\nApr 19 08:35:26 cape-VM poetry[30286]: 2025-04-19 08:35:26,708 [Task 96] [lib.cuckoo.core.plugins] ERROR: Failed to run the reporting module \"Cents\": unhashable type: 'dict'\nApr 19 08:35:26 cape-VM poetry[30286]: Traceback (most recent call last):\nApr 19 08:35:26 cape-VM poetry[30286]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 869, in process\nApr 19 08:35:26 cape-VM poetry[30286]:     current.run(self.results)\nApr 19 08:35:26 cape-VM poetry[30286]:   File \"/opt/CAPEv2/utils/../modules/reporting/cents.py\", line 78, in run\nApr 19 08:35:26 cape-VM poetry[30286]:     rules = cents_remcos(config_dict, self.sid_counter, md5, date, task_link)\nApr 19 08:35:26 cape-VM poetry[30286]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/common/cents/cents_remcos.py\", line 124, in cents_remcos\nApr 19 08:35:26 cape-VM poetry[30286]:     remcos_config_set.add(_config)\nApr 19 08:35:26 cape-VM poetry[30286]: TypeError: unhashable type: 'dict'\n\n\nComment: well you know that without hash is impossible to reproduce right?\nComment: closing as not provided extra info",
+  "Title: \"Drop\" route configuration should add FORWARD rules to block internet/routing of guest/analysis VM\nBody: # Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n- [x] I am running the latest version\n- [x] I did read the README!\n- [x] I checked the documentation and found no answer\n- [x] I checked to make sure that this issue has not already been filed\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [x] I have read and checked all configs (with all optional parts)\n\n\n# Expected Behavior\n\nWhen using per-analysis routing, using \"drop\" configuration should block internet for the guest/analysis VM. This implies blocking FORWARD/routing for the guest/analysis VM IP.\n\n# Current Behavior\n\nWhen using the \"drop\" configuration, only OUTPUT blocking rules are created. Since no FORWARD rules are generated, the communication between CAPE (acting as the router) and the guest/analysis VM is restricted, but not for internet access.\n\nThe fix is quite easy, I could create a PR. However, am I correct here? Should another system/way handle that part of blocking internet access?\n\n# Failure Information (for bugs)\n\n## Steps to Reproduce\n\n1. Use a \"drop\" route type for an analysis.\n2. Internet is still accessible since no FORWARD rules are blocking the communication.\n\n## Context\n\n- \"Drop\" route configuration : https://github.com/kevoreilly/CAPEv2/blob/563fd244405d62ca08793c67bf5ca80431a58185/lib/cuckoo/core/analysis_manager.py#L594-L595\n- Router \"drop_enable\" rules creation : https://github.com/kevoreilly/CAPEv2/blob/563fd244405d62ca08793c67bf5ca80431a58185/utils/rooter.py#L871-L880\n\n## Failure Logs\n\nN.A.\n\nComment: I am sure @doomedraven will provide more wisdom than I can, but it sounds like you didn't follow the documentation and set up the vm with host-only network.\n\nIt sounds counter-intuitive but this is how it should be set up so there is no Internet for the vms until the rooter component actively provides it.\nComment: Hi. Thanks for your fast response time! I'm not using host-only (I'm using Proxmox machinery), and I double-checked (manual firewall rules + tcpdump) that the guest access the internet through CAPE (which is in a container, and is the only one that can access internet in the subnet).\n\nThe issue is that the CAPE router doesn't block \"routing\" through FORWARD rules, and only adds OUTPUT rules, which aren't triggered, since CAPE only does routing on those communications (packets are not destined to CAPE, so only the FORWARD rules are triggered).\n\nI don't know if I missed an option or if I'm doing something wrong. From my understanding, the CAPE router should handle the route blocking itself, but I'm sure that the guest VM access the internet through CAPE (and hence the CAPE router should block it?).\nComment: Well that doesn't sound right to me!\nComment: hello, KVM has those rules by default, so drop works fine there and is unique hypervisor that we officially support. IF you can elaborate iptables rule and make a PR we can test if it not breaking it on our side, but we don't use/have proxmon so we can't help there\nComment: Okay, I can prepare a PR for next week. I'll be able to test the change for Proxmox. If there is any issue on KVM side, we could add an option/enable only for Proxmox machinery.\n\nThanks!\nComment: yep, no rush, we are on holidays anyway, so have a good weekend\nComment: any update here?",
+  "Title: Update analyzer.py\nBody: I changed the process injection logic to make it more secure:  \r\n\r\n- Added checks to block injection into critical system processes (lsass.exe, csrss.exe, etc.)  \r\n- Only allow injection into trusted paths (Program Files, Users folders)  \r\n- Verify code signatures when possible (Microsoft/Google/Mozilla signed only)\nComment: Can you let us know why you think injection needs to be more secure?!\r\n\r\nFor starters why would you want to block injection into lsass? This breaks cape's ability to capture TLS traffic via the tlsdump auxiliary module. Not to mention malware sometimes injects lsass! So cape needs to be able to monitor these processes. \r\n\r\nBecause of this oversight I am very skeptical about this PR without even testing it. But more fundamentally, what issue are you trying to solve?\nComment: The idea behind this change was to test a safer and more controlled injection strategy, especially for setups where CAPE is used in hybrid or semi-hardened environments (e.g. partial EDR/AV still active, internal CI systems, etc.).\r\nAbout lsass.exe, I get that it's useful for TLS capture and malware monitoring. My intention wasn\u2019t to break that. I just wanted to avoid injecting into critical system processes by default, since in some setups it can trigger alerts or cause instability.\r\nSame goes for whitelisting paths and checking publishers, it was an attempt to reduce log noise and avoid injecting into trusted/irrelevant processes.\r\nThat said, I totally agree this shouldn\u2019t be default behavior. I can rework it into a config option\nComment: Thank you for the clarification, and I appreciate the effort to think about CAPE\u2019s potential use in hybrid or hardened environments.\r\n\r\nThat said, the overarching design goal of CAPE is to enable unrestricted observation of malware behavior in a controlled environment. That includes allowing injection into any process that the malware interacts with - regardless of location, signature status, or perceived sensitivity. Blocking injection based on a whitelist of file paths or publishers directly conflicts with this goal. Malware frequently uses trusted locations and even signed binaries as part of its evasion strategy, so CAPE must be able to monitor such cases without restriction.\r\n\r\nTo give other common examples of broken malware detonation this would cause (though this is illustrative, not exhaustive): malware abusing svchost.exe in %System32% would be completely missed under such a regime.\r\n\r\nThe tlsdump module is just one of several features that rely on injection into otherwise \"sensitive\" processes. These capabilities are essential rather than optional. While I understand the desire to reduce noise or avoid detection in certain custom setups, those environments are best served by forking CAPE. Otherwise this project must default to maximum observability, because evasion and novelty are the rule in malware, not the exception.\r\n\r\nSo while I appreciate the contribution, I don't think this PR aligns with CAPE\u2019s goals or architecture, even with optional toggles. You're of course welcome to maintain a fork tailored to your specific setup. Thanks again for the thought and effort.\r\n",
+  "Title: Bump schema version to 4e000e02a409\nBody: Follows on from https://github.com/kevoreilly/CAPEv2/pull/2560.\r\n\r\nUpdates the `SCHEMA_VERSION` constant in `database.py` to `4e000e02a409`",
+  "Title: Add Linting / Validation / Visual Feedback for `<machinery>.conf` and Friends to Prevent and Troubleshoot Common Setup Mistakes\nBody: When setting up a CAPEv2 instance, I was changing the values stored in `kvm.conf` to suit my requirements. In particular, I changed the `resultserver_ip` to a different IP address, but kept the original as a trailing comment with `#` on the same line for reference.\n\n```\n[win10]\nlabel = win10\nresultserver_ip = 192.168.122.1 # original 192.168.122.101\n```\n\nThis resulted in CAPE not reporting any logs to the result server, even if the result server is indeed set up to be at `192.168.122.1`. After a long debugging session of reading code and adding debug prints here and there, I learned that the configuration file is interpreted more or less as-is from start of the `=` to the end of the line. This means the `analyzer.py` injected into the Windows guest VM interprets this result server host name as `\"192.168.122.1 # original 192.168.122.101\"` and not just `\"192.168.122.1\"`, making `getaddrinfo` fail and thus not being able to connect, and thus never actually starting any process nor logging anything.\n\nWhile in my opinion this behavior is rather unintuitive (especially because `#` _is_ interpreted as a comment if it is at the start of the line), I can understand that this is some syntax detail I just wasn't aware of (though I would love if this gets changed).\n\nIn any case, to spare some of the blind debugging hours in the future, it would be nice to have some basic linting or additional validation/feedback on the input configurations. The usual `systemctl status cape` did not indicate anything wrong with the config files, `systemctl status cape-processor` only indicated that the logs directory of each analysis report was empty, and thus it could not post-process, but no indication why they were empty or whether this was config-related. Also, because `analyzer.py` silently keeps retrying to connect to the same (invalid) host, you also will never see any visual feedback in the guest VM via VNC or similar, until the timeout passes.\n\nTo put concretely, my suggestions would be:\n- To implement basic linting for properties that often are assigned incorrectly, and report issues either in the logs or similar.\n- Interpret trailing comments really as comments.\n- Add visual feedback in the guest VM if no connection can be made to the result server.\nComment: thank you for feedback, i know what do you mean, but sadly is not that easy, as is 3rd tool that loads the data and we can't do nothing there. We can improve documentation mentioning that, but i don't have time neither thing there is a easy solution without write our own parser for that\nComment: Is there a schema of sorts for the config files, such that we could add some linting / checks on the parsed data instead?\n\nAs for visual feedback in the guest, would it be an idea to add a popup window (e.g., a call to `MessageBoxW`) if the connection fails after X retries/time?\n\nI am willing to have a look at it and maybe submit a PR, if you could point me to the right files.\nComment: Well there is no schema as far as I know config parser doesn't support it.\r\n\r\nLooking forward for your PR how you pretend to fix that\r\n\r\nEl lun, 14 abr 2025, 9:48, Jerre Starink ***@***.***>\r\nescribi\u00f3:\r\n\r\n> Is there a schema of sorts for the config files, such that we could add\r\n> some linting / checks on the parsed data instead?\r\n>\r\n> As for visual feedback in the guest, would it be an idea to add a popup\r\n> window (e.g., a call to MessageBoxW) if the connection fails after X\r\n> retries/time?\r\n>\r\n> I am willing to have a look at it and maybe submit a PR, if you could\r\n> point me to the right files.\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2561#issuecomment-2800765926>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH34Y5CGXJZ576G4IKRD2ZNR3DAVCNFSM6AAAAAB26KSBMSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDQMBQG43DKOJSGY>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n> *jstarink* left a comment (kevoreilly/CAPEv2#2561)\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2561#issuecomment-2800765926>\r\n>\r\n> Is there a schema of sorts for the config files, such that we could add\r\n> some linting / checks on the parsed data instead?\r\n>\r\n> As for visual feedback in the guest, would it be an idea to add a popup\r\n> window (e.g., a call to MessageBoxW) if the connection fails after X\r\n> retries/time?\r\n>\r\n> I am willing to have a look at it and maybe submit a PR, if you could\r\n> point me to the right files.\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2561#issuecomment-2800765926>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH34Y5CGXJZ576G4IKRD2ZNR3DAVCNFSM6AAAAAB26KSBMSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDQMBQG43DKOJSGY>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: so as months passed  and there is no PR, i guess we can close it, maybe in fugure there will be a better conf parsing tool that allows to create and verify schemas",
+  "Title: Migrations related to 9999881\nBody: - Fixes import path for existing migrations to allow alembic to create new migrations\r\n- Adds migration for foreign key changes made to tasks_tags in 9999881",
+  "Title: Minor typos fix\nBody: None",
+  "Title: add suricata files to collection\nBody: None",
+  "Title: files no backwards compatibility\nBody: None",
+  "Title: cleanup\nBody: None",
+  "Title: peepdf5\nBody: None\nComment: This looks good. ",
+  "Title: useragent switcher for firefox\nBody: Change the Firefox user agent for URL analysis.\r\n\r\nThe user agent must be sent as a base64-encoded string.\r\nProvide the path to your current Firefox user profile, where the pref.js file is located.\r\n\nComment: thank you",
+  "Title: Mitre Report Error\nBody: ## This is open source and you are getting __free__ support so be friendly!\n\n# Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n- [x] I am running the latest version\n- [x] I did read the README!\n- [x] I checked the documentation and found no answer\n- [x] I checked to make sure that this issue has not already been filed\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [x] I have read and checked all configs (with all optional parts)\n\n\n# Expected Behavior\n\nI am trying to get the mitre report working. I've never seen it work so I'm not not sure what it's supposed to look like. But I'm guessing this error in the log is not correct\n\n# Current Behavior\n\nThe reporting module is able to finish its run but I get the following error on the [mitre] task when I run utils/process.py\n`2025-04-08 20:06:39,178 [Task 58] [mitre] ERROR: ('Mitre', AttributeError(\"'NoneType' object has no attribute 'enterprise'\"))`\n\n# Failure Information (for bugs)\n\nI did see in [this](https://github.com/CAPESandbox/community/tree/master/data) repo you should wget down the json file. I did that and added the following to my reporting.conf\n```\n[mitre]\nenabled = yes\nlocal_file = data/mitre_attack.json\n```\nBut that did not seem to make any change. I then checked the json with a online json validator and it found a bunch of `NaN` entries it said were not valid so I replaced all those with `null` and that also did not make any change.\n\n## Steps to Reproduce\n\nPlease provide detailed steps for reproducing the issue.\n\nRun `poetry run python process.py -r 58 -d` as the cape user from the utils directory. Change the number to a submission number on your system.\n\n## Context\n\n\n\n| Question         | Answer\n|------------------|--------------------\n| Git commit       | commit c389db1984413730b539c580dabf5df68813acdf\n| OS version       | Ubuntu 24.04.2\n\n## Failure Logs\n\n```\n2025-04-08 20:06:39,153 [Task 58] [lib.cuckoo.core.plugins] DEBUG: Running signature \"allaple_mutexes\"\n2025-04-08 20:06:39,153 [Task 58] [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"antianalysis_tls_section\"\n2025-04-08 20:06:39,153 [Task 58] [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"packer_unknown_pe_section_name\"\n2025-04-08 20:06:39,153 [Task 58] [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"contains_pe_overlay\"\n2025-04-08 20:06:39,153 [Task 58] [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"static_pe_anomaly\"\n2025-04-08 20:06:39,155 [Task 58] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"BinGraph\"\n2025-04-08 20:06:39,155 [Task 58] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"LiteReport\"\n2025-04-08 20:06:39,178 [Task 58] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"MITRE_TTPS\"\n2025-04-08 20:06:39,178 [Task 58] [mitre] ERROR: ('Mitre', AttributeError(\"'NoneType' object has no attribute 'enterprise'\"))\n2025-04-08 20:06:39,179 [Task 58] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"PCAP2CERT\"\n2025-04-08 20:06:39,181 [Task 58] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"JsonDump\"\n2025-04-08 20:06:39,204 [Task 58] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"MongoDB\"\n2025-04-08 20:06:39,352 [Task 58] [modules.reporting.mongodb] DEBUG: Deleted previous MongoDB data for Task 58\n2025-04-08 20:06:39,610 [Task 58] [root] DEBUG: Finished processing task\n\n```\n\nComment: Well I seem to have made some progress. I updated pyattck using pip in the venv, downloaded [generated_attck_data.json](https://github.com/swimlane/pyattck/blob/master/generated_attck_data.json) from it's repo and it seems to be working if I manually run process.py. If I just upload something and let it analyze it by itself I still get the error\n\n![Image](https://github.com/user-attachments/assets/b91ca69b-7ca9-4ce3-8393-21ee50949932)\n\n![Image](https://github.com/user-attachments/assets/b9a9767e-cd60-4cac-8ceb-f6ccd9dcbf70)\nComment: Did you restart cape-processor after those changes?\nComment: > Did you restart cape-processor after those changes?\n\nOf course the one service I forgot to try resetting. After restarting that it's working fine now thank you.\n\nI don't see pyattck in the requirements.txt actually so I'm guessing it wasn't installed in the first place\nComment: Yes it not included by default due to conflicting with another more important libraries. But it should be improved to show proper msg instead of error, will improve that one day ",
+  "Title: Why are capstone and unicorn not managed by `pyproject.toml`?\nBody: This is more of a packaging question. The `cape2.sh` script has [two redundant lines](https://github.com/kevoreilly/CAPEv2/blob/master/installer/cape2.sh#L1129-L1130) in the `dependencies()` function which I don't understand:\n\n```sh\nsudo -u ${USER} bash -c '/etc/poetry/bin/poetry --directory /opt/CAPEv2/ run pip install unicorn capstone'\nsudo -u ${USER} bash -c 'cd /tmp/passivedns/ ; /etc/poetry/bin/poetry --directory /opt/CAPEv2/ run pip install unicorn capstone'\n```\n\nThese two lines run from different CWDs, but use the same poetry root directory, so they seem to be redundant. Further, the CAPE setup will run `poetry install` down the line, which should be responsible for installing python dependencies.\n\nWhy are these python dependencies not managed by the python dependency manager?\nComment: because some of them are optional, some of them has conflicts with another core/important libraries and so on. passivedns tool is side tool that can be used with cape, but we don't guarantee it support as it long time since i didn't use it.\n\nbefore it was using different path, but then we faced problems with some ubuntu changes, so we had to set the path. You can search in issues Sean tried to add all those to pyproject but gaveup due to conflicts betweenthem",
+  "Title: Sideloading detection & monitor sideloader countermeasure\nBody: None",
+  "Title: sample_search_in_mongo_conf\nBody: None",
+  "Title: vt_upload\nBody: None",
+  "Title: Bump django from 5.1.7 to 5.1.8\nBody: Bumps [django](https://github.com/django/django) from 5.1.7 to 5.1.8.\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/django/django/commit/5773bc9cf929f4648da30cb9c472b816bb4db771\"><code>5773bc9</code></a> [5.1.x] Bumped version for 5.1.8 release.</li>\n<li><a href=\"https://github.com/django/django/commit/edc2716d01a6fdd84b173c02031695231bcee1f8\"><code>edc2716</code></a> [5.1.x] Fixed CVE-2025-27556 -- Mitigated potential DoS in url_has_allowed_ho...</li>\n<li><a href=\"https://github.com/django/django/commit/b3b09dc6ce72f2aa778b95dc988653bf8c034035\"><code>b3b09dc</code></a> [5.1.x] Fixed <a href=\"https://redirect.github.com/django/django/issues/36213\">#36213</a> -- Doc'd MySQL's handling of self-select updates in Quer...</li>\n<li><a href=\"https://github.com/django/django/commit/3fdc8c31da5d5198ee9bdc33a47c70f78bf0d190\"><code>3fdc8c3</code></a> [5.1.x] Clarified pre_delete and post_delete's origin attributes.</li>\n<li><a href=\"https://github.com/django/django/commit/5805d1c346bc7875259abb47626b268ba4479881\"><code>5805d1c</code></a> [5.1.x] Simplified Intersphinx configuration example.</li>\n<li><a href=\"https://github.com/django/django/commit/31262b37d48905794da6fe3b374f3ab0808699ca\"><code>31262b3</code></a> [5.1.x] Doc'd how to use Intersphinx in the reusable apps tutorial.</li>\n<li><a href=\"https://github.com/django/django/commit/451ba1f3cfc7aaf7d5e546cb3bd2fef35d4b9c2e\"><code>451ba1f</code></a> [5.1.x] Added stub release notes and release date for 5.1.8 and 5.0.14.</li>\n<li><a href=\"https://github.com/django/django/commit/e38a80773d4eace4d41628154c68fe3c902258c2\"><code>e38a807</code></a> [5.1.x] Pinned black == 24.10.0 in GitHub actions, pre-commit and test requir...</li>\n<li><a href=\"https://github.com/django/django/commit/3266f2516c27dd25abebe8e8f7b8778650ab4f18\"><code>3266f25</code></a> [5.1.x] Updated ogrinfo output in GIS tutorial.</li>\n<li><a href=\"https://github.com/django/django/commit/659f88e4c96bea987b109754d22df8858f7e60d2\"><code>659f88e</code></a> [5.1.x] Fixed typo in docs/topics/signals.txt.</li>\n<li>Additional commits viewable in <a href=\"https://github.com/django/django/compare/5.1.7...5.1.8\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=django&package-manager=pip&previous-version=5.1.7&new-version=5.1.8)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: 'Settings' object has no attribute 'VTDL_KEY'\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\n\n## This is open source and you are getting __free__ support so be friendly!\n\n# Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n- [x] I am running the latest version\n- [x] I did read the README!\n- [x] I checked the documentation and found no answer\n- [x] I checked to make sure that this issue has not already been filed\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [x] I have read and checked all configs (with all optional parts)\n\n\n# Expected Behavior\n\nUpload to Virustotal via gui is successfull.\n\n\n# Current Behavior\n\n\nEnvironment:\n\n\nRequest Method: GET\nRequest URL: http://prods-sndbx1.ite.lan/vtupload/static/18/m5uxi/f769d5d86e6e07d550f11b7defbdc3a7beb4cabdf134c288dde1f35aae380d46/\n\nDjango Version: 5.1.5\nPython Version: 3.12.3\nInstalled Applications:\n['django.contrib.auth',\n 'django.contrib.contenttypes',\n 'django.contrib.sessions',\n 'django.contrib.messages',\n 'django.contrib.staticfiles',\n 'django.contrib.admin',\n 'analysis',\n 'compare',\n 'apiv2',\n 'users',\n 'django_extensions',\n 'django.contrib.sites',\n 'allauth',\n 'allauth.account',\n 'allauth.socialaccount',\n 'crispy_forms',\n 'crispy_bootstrap4',\n 'django_recaptcha',\n 'rest_framework',\n 'rest_framework.authtoken']\nInstalled Middleware:\n['django.middleware.common.CommonMiddleware',\n 'django.contrib.sessions.middleware.SessionMiddleware',\n 'django.middleware.csrf.CsrfViewMiddleware',\n 'django.contrib.auth.middleware.AuthenticationMiddleware',\n 'django.contrib.messages.middleware.MessageMiddleware',\n 'django.middleware.security.SecurityMiddleware',\n 'django.middleware.clickjacking.XFrameOptionsMiddleware',\n 'web.headers.CuckooHeaders',\n 'django.contrib.auth.middleware.AuthenticationMiddleware',\n 'web.middleware.DBTransactionMiddleware',\n 'allauth.account.middleware.AccountMiddleware']\n\n\n\nTraceback (most recent call last):\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/django/core/handlers/exception.py\", line 55, in inner\n    response = get_response(request)\n               ^^^^^^^^^^^^^^^^^^^^^\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/django/core/handlers/base.py\", line 197, in _get_response\n    response = wrapped_callback(request, *callback_args, **callback_kwargs)\n               ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/django/contrib/auth/decorators.py\", line 60, in _view_wrapper\n    return view_func(request, *args, **kwargs)\n           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/opt/CAPEv2/web/analysis/views.py\", line 2435, in vtupload\n    if enabledconf[\"vtupload\"] and settings.VTDL_KEY:\n                                   ^^^^^^^^^^^^^^^^^\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/django/conf/__init__.py\", line 83, in __getattr__\n    val = getattr(_wrapped, name)\n          ^^^^^^^^^^^^^^^^^^^^^^^\n\nException Type: AttributeError at /vtupload/static/18/m5uxi/f769d5d86e6e07d550f11b7defbdc3a7beb4cabdf134c288dde1f35aae380d46/\nException Value: 'Settings' object has no attribute 'VTDL_KEY'\n\n\n## Steps to Reproduce\n\nPlease provide detailed steps for reproducing the issue.\n\nEnabling vtupload in CAPEv2/conf/web.conf\n\nHere is notise \"Don't forget\"\n\n[vtupload]\n# Don't forget to set VT key in aux.conf under virustotaldl\nenabled = yes\n\nBut there isn't any file with the name aux.conf anywhere in CAPEv2 directory.\n\nI suppose, the problem is here, but idk what to do.\n\n## Context\n\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\n\n| Question         | Answer\n|------------------|--------------------\n| OS version       | Ubuntu 24.04 LTS\n\n\n\nComment: hello, yes that is old configuration, thanks for headups. please see this PR for proper configuration https://github.com/kevoreilly/CAPEv2/pull/2549\nComment: Yep, it's fixed.\nMy thanks.",
+  "Title: API TLP RED\nBody: None",
+  "Title: captcha\nBody: None",
+  "Title: Update cuckoo.py\nBody: None",
+  "Title: Bump django from 5.1.7 to 5.1.8\nBody: Bumps [django](https://github.com/django/django) from 5.1.7 to 5.1.8.\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/django/django/commit/5773bc9cf929f4648da30cb9c472b816bb4db771\"><code>5773bc9</code></a> [5.1.x] Bumped version for 5.1.8 release.</li>\n<li><a href=\"https://github.com/django/django/commit/edc2716d01a6fdd84b173c02031695231bcee1f8\"><code>edc2716</code></a> [5.1.x] Fixed CVE-2025-27556 -- Mitigated potential DoS in url_has_allowed_ho...</li>\n<li><a href=\"https://github.com/django/django/commit/b3b09dc6ce72f2aa778b95dc988653bf8c034035\"><code>b3b09dc</code></a> [5.1.x] Fixed <a href=\"https://redirect.github.com/django/django/issues/36213\">#36213</a> -- Doc'd MySQL's handling of self-select updates in Quer...</li>\n<li><a href=\"https://github.com/django/django/commit/3fdc8c31da5d5198ee9bdc33a47c70f78bf0d190\"><code>3fdc8c3</code></a> [5.1.x] Clarified pre_delete and post_delete's origin attributes.</li>\n<li><a href=\"https://github.com/django/django/commit/5805d1c346bc7875259abb47626b268ba4479881\"><code>5805d1c</code></a> [5.1.x] Simplified Intersphinx configuration example.</li>\n<li><a href=\"https://github.com/django/django/commit/31262b37d48905794da6fe3b374f3ab0808699ca\"><code>31262b3</code></a> [5.1.x] Doc'd how to use Intersphinx in the reusable apps tutorial.</li>\n<li><a href=\"https://github.com/django/django/commit/451ba1f3cfc7aaf7d5e546cb3bd2fef35d4b9c2e\"><code>451ba1f</code></a> [5.1.x] Added stub release notes and release date for 5.1.8 and 5.0.14.</li>\n<li><a href=\"https://github.com/django/django/commit/e38a80773d4eace4d41628154c68fe3c902258c2\"><code>e38a807</code></a> [5.1.x] Pinned black == 24.10.0 in GitHub actions, pre-commit and test requir...</li>\n<li><a href=\"https://github.com/django/django/commit/3266f2516c27dd25abebe8e8f7b8778650ab4f18\"><code>3266f25</code></a> [5.1.x] Updated ogrinfo output in GIS tutorial.</li>\n<li><a href=\"https://github.com/django/django/commit/659f88e4c96bea987b109754d22df8858f7e60d2\"><code>659f88e</code></a> [5.1.x] Fixed typo in docs/topics/signals.txt.</li>\n<li>Additional commits viewable in <a href=\"https://github.com/django/django/compare/5.1.7...5.1.8\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=django&package-manager=pip&previous-version=5.1.7&new-version=5.1.8)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: cleaners\nBody: None\nComment: /gemini summary\nComment: @gemini-code-assist\nComment: Hi, thanks for tagging me. I've reviewed the changes and have a few comments.\n\n*   **Changelog Update**: The changelog now includes details about specifying time ranges and schema updates. This is good for keeping users informed about the latest changes.\n*   **Configuration Changes**: The `cuckoo.conf.default` file has been updated to use a new time range format. This change should be clearly communicated to users, and the documentation should be updated accordingly.\n*   **MongoDB Cleanup**: The MongoDB cleanup functions have been refactored for improved speed and efficiency. The addition of the `task_id` value to the `calls` collection is a welcome improvement.\n*   **Time Conversion**: A new `convert_into_time` function has been added to handle time range conversions. This function includes error handling for invalid formats and units, which is good for robustness.\n*   **Bulk Task Deletion**: The `delete_bulk_tasks_n_folders` function has been updated to improve bulk cleanup performance. This should help speed up the cleanup process for large numbers of tasks.\n\nOverall, these changes seem to improve the functionality and efficiency of the cleaners. I have added some specific comments inline.",
+  "Title: Malscore changes for the same file submitted\nBody: I have been submitting the same file to the same vm snap for 20 times. One time the malscore is 6.05 after few submits it changes to 2.7 , 3.1, 7.1. am i missing something? can you help me with this. What should be done to get consistent malscore. \nComment: Yes, mal score is based on signatures, so depends how your sample runs, it matches different signatures, can be server side load. Can be shortest/longest running VM, many different thing has impact here. But mal score is totally useless if you don't wrote your own signatures",
+  "Title: httpreplay and virtmanager install fix\nBody: Update optional_dependencies.txt for httpreplay\r\nremoved deprecated packages for virtmanager in Ubuntu 24.04 (maybe helps https://github.com/kevoreilly/CAPEv2/issues/2517)",
+  "Title: Bump django from 5.1.5 to 5.1.7\nBody: Bumps [django](https://github.com/django/django) from 5.1.5 to 5.1.7.\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/django/django/commit/691e9455309e8ce9a29ecafa0a70249a53de2be2\"><code>691e945</code></a> [5.1.x] Bumped version for 5.1.7 release.</li>\n<li><a href=\"https://github.com/django/django/commit/8dbb44d34271637099258391dfc79df33951b841\"><code>8dbb44d</code></a> [5.1.x] Fixed CVE-2025-26699 -- Mitigated potential DoS in wordwrap template ...</li>\n<li><a href=\"https://github.com/django/django/commit/d7dc1f6db046b671fef12e74b900043a8497a5c8\"><code>d7dc1f6</code></a> [5.1.x] Fixed typo in docs/ref/checks.txt.</li>\n<li><a href=\"https://github.com/django/django/commit/dbd94e7ac968c8b11ddd9e4c0f323c96ba0ed2a1\"><code>dbd94e7</code></a> [5.1.x] Fixed <a href=\"https://redirect.github.com/django/django/issues/36227\">#36227</a> -- Fixed outdated PostgreSQL documentation links.</li>\n<li><a href=\"https://github.com/django/django/commit/cc405e154649af37e1741aeb4438391943133c29\"><code>cc405e1</code></a> [5.1.x] Fixed <a href=\"https://redirect.github.com/django/django/issues/36128\">#36128</a> -- Clarified auto-generated unique constraint on m2m thr...</li>\n<li><a href=\"https://github.com/django/django/commit/03ace756eafc3f7a85f5b84d28ce1e7ce092c018\"><code>03ace75</code></a> [5.1.x] Fixed <a href=\"https://redirect.github.com/django/django/issues/36217\">#36217</a> -- Restored pre_save/post_save signal emission via LogEn...</li>\n<li><a href=\"https://github.com/django/django/commit/76a9f12b6098632b1b326e40fb6eb65500c214e1\"><code>76a9f12</code></a> [5.1.x] Added some heading labels to to docs/topics/cache.txt.</li>\n<li><a href=\"https://github.com/django/django/commit/558c616c955f7edd89455847cc9081054725cc5a\"><code>558c616</code></a> [5.1.x] Added stub release notes and release date for 5.1.7, 5.0.13, and 4.2.20.</li>\n<li><a href=\"https://github.com/django/django/commit/11243cc8f3b8a60a73e5b9ed2d9c56b4632fc3a3\"><code>11243cc</code></a> [5.1.x] Added security guideline on reasonable size limitations when renderin...</li>\n<li><a href=\"https://github.com/django/django/commit/b80288a16d306c38732706b7847ec7e9dd3f55e8\"><code>b80288a</code></a> [5.1.x] Added security reporting guidelines.</li>\n<li>Additional commits viewable in <a href=\"https://github.com/django/django/compare/5.1.5...5.1.7\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=django&package-manager=pip&previous-version=5.1.5&new-version=5.1.7)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Bump django from 5.1.5 to 5.1.7\nBody: Bumps [django](https://github.com/django/django) from 5.1.5 to 5.1.7.\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/django/django/commit/691e9455309e8ce9a29ecafa0a70249a53de2be2\"><code>691e945</code></a> [5.1.x] Bumped version for 5.1.7 release.</li>\n<li><a href=\"https://github.com/django/django/commit/8dbb44d34271637099258391dfc79df33951b841\"><code>8dbb44d</code></a> [5.1.x] Fixed CVE-2025-26699 -- Mitigated potential DoS in wordwrap template ...</li>\n<li><a href=\"https://github.com/django/django/commit/d7dc1f6db046b671fef12e74b900043a8497a5c8\"><code>d7dc1f6</code></a> [5.1.x] Fixed typo in docs/ref/checks.txt.</li>\n<li><a href=\"https://github.com/django/django/commit/dbd94e7ac968c8b11ddd9e4c0f323c96ba0ed2a1\"><code>dbd94e7</code></a> [5.1.x] Fixed <a href=\"https://redirect.github.com/django/django/issues/36227\">#36227</a> -- Fixed outdated PostgreSQL documentation links.</li>\n<li><a href=\"https://github.com/django/django/commit/cc405e154649af37e1741aeb4438391943133c29\"><code>cc405e1</code></a> [5.1.x] Fixed <a href=\"https://redirect.github.com/django/django/issues/36128\">#36128</a> -- Clarified auto-generated unique constraint on m2m thr...</li>\n<li><a href=\"https://github.com/django/django/commit/03ace756eafc3f7a85f5b84d28ce1e7ce092c018\"><code>03ace75</code></a> [5.1.x] Fixed <a href=\"https://redirect.github.com/django/django/issues/36217\">#36217</a> -- Restored pre_save/post_save signal emission via LogEn...</li>\n<li><a href=\"https://github.com/django/django/commit/76a9f12b6098632b1b326e40fb6eb65500c214e1\"><code>76a9f12</code></a> [5.1.x] Added some heading labels to to docs/topics/cache.txt.</li>\n<li><a href=\"https://github.com/django/django/commit/558c616c955f7edd89455847cc9081054725cc5a\"><code>558c616</code></a> [5.1.x] Added stub release notes and release date for 5.1.7, 5.0.13, and 4.2.20.</li>\n<li><a href=\"https://github.com/django/django/commit/11243cc8f3b8a60a73e5b9ed2d9c56b4632fc3a3\"><code>11243cc</code></a> [5.1.x] Added security guideline on reasonable size limitations when renderin...</li>\n<li><a href=\"https://github.com/django/django/commit/b80288a16d306c38732706b7847ec7e9dd3f55e8\"><code>b80288a</code></a> [5.1.x] Added security reporting guidelines.</li>\n<li>Additional commits viewable in <a href=\"https://github.com/django/django/compare/5.1.5...5.1.7\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=django&package-manager=pip&previous-version=5.1.5&new-version=5.1.7)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Open question concerning install script\nBody: \n# Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n- [x] I am running the latest version\n- [x] I did read the README!\n- [x] I checked the documentation and found no answer\n- [x] I checked to make sure that this issue has not already been filed\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [x] I have read and checked all configs (with all optional parts)\n\n\n# Request \n\nFirst thank you for this great work you and the community did.\n \nI have some particular cases which needs some adaptation of the cape2.sh install script to my lab environment.\n\nMost issues are related \n- to proxy awareness (my lab env has a proxy excepted for the dirty line) on some part of the script\n- to the requirement to disable some features such as TOR or VPN that I dont use by the way as we have dedicated dirtyline\n- to upgrade process with files as well owned by cape user / root / and main user within the local git repo.\n\nIs there existing work I may have missed on that topic ? \nDid you consider solution such as ansible for easiest deployment ?\n\nTo what extent are you ok if make a PR with appropriate functions and activation flags allowing me to keep my code base coherent with yours and enable/disable feature via the config file ?\n\nThank you for your feedback\n\n\nComment: Hello, \n1. for proxy awareness: setting PIP proxy and APT/Linux ENV proxy won't work?\n2. disable tor/vpn, they are not configured by default for exit nodes, just installed dependencies\n3. not sure what do you mean here\n\nso if you can explain a bit better at least last part and why step 1 doesnt work\nComment: closing as abandoned \nComment: Sorry for the late answer \n**For 1st** : wont work out of the box with env vars as parent sudo and sudos in the script breaks the env var. \nSeems to need to be set at system/root user level in the bashrc/bashprofile. Not a good option in my case. \nCan do and test that on my side to propose a PR. \n**2nd** : just that we have automated package/code review with and generates some warnings. \nCan do and test that on my side to propose a PR to support this as a default activated feature so that it can be skipped during setup.\n**3rd** : The upgrade process, as stated in the Readme and doc still seems to have some issues.\n- Related to file owners (git pull) root / cape / sudoer user\n- Related to difficulties to run a simple system upgrade without breaking everything\n- Seems difficult to automate. But I can can keep the current method of reinstalling everything.\nComment: Thank you for update, PR is more than welcome.\r\nStrange, for me git pull works, but looking to see how you manage your setup\r\n\r\nEl vie, 4 abr 2025, 10:36, githule ***@***.***> escribi\u00f3:\r\n\r\n> Sorry for the late answer\r\n> *For 1st* : wont work out of the box with env vars as parent sudo and\r\n> sudos in the script breaks the env var.\r\n> Seems to need to be set at system/root user level in the\r\n> bashrc/bashprofile. Not a good option in my case.\r\n> Can do and test that on my side to propose a PR.\r\n> *2nd* : just that we have automated package/code review with and\r\n> generates some warnings.\r\n> Can do and test that on my side to propose a PR to support this as a\r\n> default activated feature so that it can be skipped during setup.\r\n> *3rd* : The upgrade process, as stated in the Readme and doc still seems\r\n> to have some issues.\r\n>\r\n>    - Related to file owners (git pull) root / cape / sudoer user\r\n>    - Related to difficulties to run a simple system upgrade without\r\n>    breaking everything\r\n>    - Seems difficult to automate. But I can can keep the current method\r\n>    of reinstalling everything.\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2537#issuecomment-2777947684>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3YQKPNZLQTWALHOIYD2XZACPAVCNFSM6AAAAABZ2YLFWCVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDONZXHE2DONRYGQ>\r\n> .\r\n> You are receiving this because you modified the open/close state.Message\r\n> ID: ***@***.***>\r\n> [image: githule]*githule* left a comment (kevoreilly/CAPEv2#2537)\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2537#issuecomment-2777947684>\r\n>\r\n> Sorry for the late answer\r\n> *For 1st* : wont work out of the box with env vars as parent sudo and\r\n> sudos in the script breaks the env var.\r\n> Seems to need to be set at system/root user level in the\r\n> bashrc/bashprofile. Not a good option in my case.\r\n> Can do and test that on my side to propose a PR.\r\n> *2nd* : just that we have automated package/code review with and\r\n> generates some warnings.\r\n> Can do and test that on my side to propose a PR to support this as a\r\n> default activated feature so that it can be skipped during setup.\r\n> *3rd* : The upgrade process, as stated in the Readme and doc still seems\r\n> to have some issues.\r\n>\r\n>    - Related to file owners (git pull) root / cape / sudoer user\r\n>    - Related to difficulties to run a simple system upgrade without\r\n>    breaking everything\r\n>    - Seems difficult to automate. But I can can keep the current method\r\n>    of reinstalling everything.\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2537#issuecomment-2777947684>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3YQKPNZLQTWALHOIYD2XZACPAVCNFSM6AAAAABZ2YLFWCVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDONZXHE2DONRYGQ>\r\n> .\r\n> You are receiving this because you modified the open/close state.Message\r\n> ID: ***@***.***>\r\n>\r\n\nComment: Ok, will need some time on my side to achieve this as I have other stuff to do and got some bugs to fix. I will keep you updated.",
+  "Title: Sample files not executing inside the guest machine\nBody: I'm able to connect with guest machine, agent.py is also running in the guest. The sample files submitted is not being executed inside the vm. I hope this log helps .\n2025-03-25 20:53:32,485 [root] INFO: Analyzer: Package modules.packages.pdf does not specify a DLL option\n2025-03-25 20:53:32,485 [root] INFO: Analyzer: Package modules.packages.pdf does not specify a DLL_64 option\n2025-03-25 20:53:32,485 [root] INFO: Analyzer: Package modules.packages.pdf does not specify a loader option\n2025-03-25 20:53:32,485 [root] INFO: Analyzer: Package modules.packages.pdf does not specify a loader_64 option\nneed some help with resolving this.\nComment: This logs says nothing, provide better evidence+description \nComment: I have just reinstalled the whole thing now, its executing ",
+  "Title: cgi module was deprecated, failed to start agent.py with python3.13\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\n\n## This is open source and you are getting __free__ support so be friendly!\n\n# Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n- [ + ] I am running the latest version\n- [ + ] I did read the README!\n- [ + ] I checked the documentation and found no answer\n- [ its filed ] I checked to make sure that this issue has not already been filed\n- [ + ] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [ + ] I have read and checked all configs (with all optional parts)\n\n\n# Expected Behavior\n\nagent.py runs correctly on Windows 10 with the latest Python 3.13 package\n\n# Current Behavior\n\nI'm facing a ModuleNotFound error for the cgi package. I haven't found a workaround for this issue, other than a [few closed tickets](https://github.com/kevoreilly/CAPEv2/issues/2008) warning about the deprecation of this package. Maybe need to leave the latest working version of python for the guest in the documentation, or update the dependencies?\n\n\n## Steps to Reproduce\n\nPlease provide detailed steps for reproducing the issue.\n\n1. Install Windows 10 + Python3.13\n2. run agent.py\n3. you get it...\n\n## Context\n\n| OS version       |  Windows 10\n\n## Failure Logs\n\nFile \"agent.py\", line 7, in <module>\n  import cgi\nModuleNotFoundError: no module named 'cgi'\n\n\nThanks in advance, great sir.\nComment: duplicated. https://github.com/kevoreilly/CAPEv2/issues/1512\nuse py3.12",
+  "Title: Allow disabling linux strace update_file_descriptors\nBody: Some samples open too many fd and we just get `failed_processing` due to timeout\r\n\r\n- 3232cd3755228abce71af80c6e978eeace441b2cf76c2e2322eff07d2b5bde90",
+  "Title: Bump gunicorn from 22.0.0 to 23.0.0\nBody: Bumps [gunicorn](https://github.com/benoitc/gunicorn) from 22.0.0 to 23.0.0.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a href=\"https://github.com/benoitc/gunicorn/releases\">gunicorn's releases</a>.</em></p>\n<blockquote>\n<h2>23.0.0</h2>\n<p>Gunicorn 23.0.0 has been released. This version improve HTTP 1.1. support and  which improve safety</p>\n<p>You're invited to upgrade asap your own installation.</p>\n<h1>23.0.0 - 2024-08-10</h1>\n<ul>\n<li>minor docs fixes (:pr:<code>3217</code>, :pr:<code>3089</code>, :pr:<code>3167</code>)</li>\n<li>worker_class parameter accepts a class (:pr:<code>3079</code>)</li>\n<li>fix deadlock if request terminated during chunked parsing (:pr:<code>2688</code>)</li>\n<li>permit receiving Transfer-Encodings: compress, deflate, gzip (:pr:<code>3261</code>)</li>\n<li>permit Transfer-Encoding headers specifying multiple encodings. note: no parameters, still (:pr:<code>3261</code>)</li>\n<li>sdist generation now explicitly excludes sphinx build folder (:pr:<code>3257</code>)</li>\n<li>decode bytes-typed status (as can be passed by gevent) as utf-8 instead of raising <code>TypeError</code> (:pr:<code>2336</code>)</li>\n<li>raise correct Exception when encounting invalid chunked requests (:pr:<code>3258</code>)</li>\n<li>the SCRIPT_NAME and PATH_INFO headers, when received from allowed forwarders, are no longer restricted for containing an underscore (:pr:<code>3192</code>)</li>\n<li>include IPv6 loopback address <code>[::1]</code> in default for :ref:<code>forwarded-allow-ips</code> and :ref:<code>proxy-allow-ips</code> (:pr:<code>3192</code>)</li>\n</ul>\n<p>** NOTE **</p>\n<ul>\n<li>The SCRIPT_NAME change mitigates a regression that appeared first in the 22.0.0 release</li>\n<li>Review your :ref:<code>forwarded-allow-ips</code> setting if you are still not seeing the SCRIPT_NAME transmitted</li>\n<li>Review your :ref:<code>forwarder-headers</code> setting if you are missing headers after upgrading from a version prior to 22.0.0</li>\n</ul>\n<p>** Breaking changes **</p>\n<ul>\n<li>refuse requests where the uri field is empty (:pr:<code>3255</code>)</li>\n<li>refuse requests with invalid CR/LR/NUL in heade field values (:pr:<code>3253</code>)</li>\n<li>remove temporary <code>--tolerate-dangerous-framing</code> switch from 22.0 (:pr:<code>3260</code>)</li>\n<li>If any of the breaking changes affect you, be aware that now refused requests can post a security problem, especially so in setups involving request pipe-lining and/or proxies.</li>\n</ul>\n<p>Fix CVE-2024-1135</p>\n</blockquote>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/benoitc/gunicorn/commit/411986d6191114dd1d1bbb9c72c948dbf0ef0425\"><code>411986d</code></a> fix doc</li>\n<li><a href=\"https://github.com/benoitc/gunicorn/commit/334392e7795f2017e83f7054d372422512d6f4b6\"><code>334392e</code></a> Merge pull request <a href=\"https://redirect.github.com/benoitc/gunicorn/issues/2559\">#2559</a> from laggardkernel/bugfix/reexec-env</li>\n<li><a href=\"https://github.com/benoitc/gunicorn/commit/e75c3533e32f91a9dceba9e8e1341fea5540ba81\"><code>e75c353</code></a> Merge pull request <a href=\"https://redirect.github.com/benoitc/gunicorn/issues/3189\">#3189</a> from pajod/patch-py36</li>\n<li><a href=\"https://github.com/benoitc/gunicorn/commit/9357b28dd867950e33ca3864207cb35a1eb8ba6f\"><code>9357b28</code></a> keep document user in access_log_format setting</li>\n<li><a href=\"https://github.com/benoitc/gunicorn/commit/79fdef0822cbfe7e16b659b07230af9be098d5fc\"><code>79fdef0</code></a> bump to 23.0.0</li>\n<li><a href=\"https://github.com/benoitc/gunicorn/commit/3acd9fbfd1159ca3cd80a8052ada89a0bf27f806\"><code>3acd9fb</code></a> Merge pull request <a href=\"https://redirect.github.com/benoitc/gunicorn/issues/2620\">#2620</a> from talkerbox/improve-access-log-format-docs</li>\n<li><a href=\"https://github.com/benoitc/gunicorn/commit/3f56d76548e4ade034bf5e174737902970285d1f\"><code>3f56d76</code></a> Merge pull request <a href=\"https://redirect.github.com/benoitc/gunicorn/issues/3192\">#3192</a> from pajod/patch-allowed-script-name</li>\n<li><a href=\"https://github.com/benoitc/gunicorn/commit/256d474a7910bd605f2cc8c082b79c1ae55215a9\"><code>256d474</code></a> docs: revert duped directive</li>\n<li><a href=\"https://github.com/benoitc/gunicorn/commit/ffa48b581dcaa75f17fd2df263515e4266feeef6\"><code>ffa48b5</code></a> test: default change was intentional</li>\n<li><a href=\"https://github.com/benoitc/gunicorn/commit/52538ca9070b5e7ead5d0fa731e82a622dc6f3ee\"><code>52538ca</code></a> docs: recommend SCRIPT_NAME=/subfolder</li>\n<li>Additional commits viewable in <a href=\"https://github.com/benoitc/gunicorn/compare/22.0.0...23.0.0\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=gunicorn&package-manager=pip&previous-version=22.0.0&new-version=23.0.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: fix wrong libvirt-version\nBody: sorry\nComment: That's fine",
+  "Title: Fix and update kvm-qemu.sh\nBody: None\nComment: Ups should be:\r\nLIB_VERSION=11.1.0\r\nlibvirt_version=11.1.0",
+  "Title: Mongo cleanup\nBody: None",
+  "Title: Mitmdump updates\nBody: None\nComment: Lo thank you",
+  "Title: add mitmdump file download to network tab\nBody: mitmdump api fixes",
+  "Title: fix: missing fi in cape2.sh\nBody: None\nComment: thank you",
+  "Title: agent.py is not compatible with python 3.6 on windows7\nBody: \n\n# Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n- [X] I am running the latest version\n- [X] I did read the README!\n- [X] I checked the documentation and found no answer\n- [X] I checked to make sure that this issue has not already been filed\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [ ] I have read and checked all configs (with all optional parts)\n\n\n# Expected Behavior\n\nagent.py running\n\n# Current Behavior\n\nagent.py crash \n\n```\n# line number 100\nagent_mutexes: dict[str, str] = {} #dict\" is not subscriptable\n\n```\n\nWhat is the current behavior?\n\n# Failure Information (for bugs)\nI know this is for python 3.6 but the docs still say is possible run agent.py in window 7.\n\nI've changed, line number 100, 327 and 328  from \n\n\n```\n   agent_mutexes: dict[str, str] = {} # 100\n    form: dict[str, str] = {} # 327\n    files: dict[str, str] = {} # 328\n\n\n```\nto \n```\n   agent_mutexes: Dict[str, str] = {} # 100\n    form: Dict[str, str] = {} # 327\n    files: Dict[str, str] = {} # 328\n```\nand added \n```\nfrom typing import Dict\n```\nbut i don't know if is enough\nComment: Why do you use py3.6? If latest supported version for wine is 3.8? But still win7 and py3.8 are dead so it might be incompatible\nComment: Because the docs [recommended](https://capev2.readthedocs.io/en/latest/installation/guest_physical/creation.html)\n\nI'm just following the docs\nComment: Oh dear. Looks like we need to update the docs.\n\nIf you want a 'recommended' setup then you will need Win10 21H2 and the latest 32 bit python. This is the current recommendation. Apologies for any wasted time but this project is 15 years old and started on XP. Win7 is pretty much dead now too.\nComment: docs are updated now. if you really need win7, try py3.8 but we can't guarantee that it will work. the best is to move toward win10, which is already 10y old too :) ",
+  "Title: run mitmdump in network namespace\nBody: Run mitmdump in a separate network namespace, if `netns=NAMESPACE_NAME`  option is passed. \r\n\r\nThis related to https://github.com/kevoreilly/CAPEv2/pull/2481  when running tunnel to other namespace which is running VPN.   Without this patch  packets from the mimdump process would be routed via default route on the machine,  not via the tunnel. \r\n\r\nTo use this, note that you need a wrapper to mimdump `/opt/mitmproxy/mitmdump_wrapper.sh`  That will write a pidfile.   Pidfile is needed to send the kill signal to cleanly exit.  Mimdump writes HAR file on exit.   Popen.terminate() can not be used because sudo will create process owned by root, which cape user does not have access to kill.\r\n`/opt/mitmproxy/mitmdump_wrapper.sh`  writes a pid file in the `/opt/CAPEv2/storage/analyses/XYZ/mitmdump/` directory. \r\n```\r\n#!/bin/bash\r\necho $$ > mitmdump.pid\r\n# exec full args\r\nexec $@\r\n```\r\n\r\n\r\nAdditionally in sudoers you need access to start in network namepace, then sudo back to cape user. \r\n`cape ALL=NOPASSWD: /usr/sbin/ip netns exec * /usr/bin/sudo -u cape *`\r\n",
+  "Title: Can't pull sample from MalwareBazaar\nBody: - [x] I am running the latest version\n- [x] I did read the README!\n- [x] I checked the documentation and found no answer\n- [x] I checked to make sure that this issue has not already been filed\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [x] I have read and checked all configs (with all optional parts)\n\n\n# Expected Behavior\n\nAfter pulling last commit and enabled/configured Malware Bazaar with respective API Key and enabled on integrations.conf, submit a Malware Bazaar hash (MD5,SHA1 OR SHA256) and get sample results.\n\n# Current Behavior\n\nThe following message appears after clicking Submit: \n\n**_ERROR :-(\nError adding task(s) to CAPE's database.\n\n<submitted hash> - Can't download sample from external services_**\n\n## Steps to Reproduce\n\n1. Get Abuse.ch Api key and load it in integrations.conf\n2. Make sure you have Malware Bazaar enabled.\n3. Submit a Malware Bazaar hash.\n\n## Context\n\n| Git commit       | 9827376e7d7f781577aac080b381ac6915dd959a\n| OS version       | Ubuntu 22.04\n\n## Failure Logs\n\nCan't find a proper log with failures, only Web GUI Response:\n\n**_ERROR :-(\nError adding task(s) to CAPE's database.\n\n<submitted hash> - Can't download sample from external services_**\n\n![Image](https://github.com/user-attachments/assets/bf0be2d1-3d86-41f5-99b8-473c26bfe587)\n\n![Image](https://github.com/user-attachments/assets/e99c4f97-461d-4740-8dfe-a23e97d99f79)\n\nComment: your specified commit doesn't exist in this repo\nComment: Hey,\n\nSorry, it was 4122f5f87acbba75bea413e924df061d9e7825c0 but with resultserver.py changed.\nComment: that strange, i just checked it again, it works, did you change `order` under `[downloaders]`? if is empty it will load all, but if you specified only some of them and not all, then others will be disabled\nComment: Hi, no, i haven't. This is my \"downloaders\" section:\n\n[downloaders]\n\n# You can overwrite the downloaders order, must match filename without \".py\". If name is missed is the same as disabled. Example:\n# order = virustotal,malwarebazaar\norder =\nComment: The blank order = surely needs removing, it's the last item to be read so will blat the previous line\nComment: no, he just didn't escape code so it converted `# to markdown's H3`. but the empty is fine, it means all if empty. is the same how i have it.\nComment: > no, he just didn't escape code so it converted `# to markdown's H3`. but the empty is fine, it means all if empty. is the same how i have it.\n\nExactly, sorry, i haven't escaped my code. I've done another check but i don't find any missconfiguration. I've also tried to pull different hashes from different samples (SHA 256, MD5, etc) and always the same output error. I can't find more information in logs\nComment: fixed now https://github.com/kevoreilly/CAPEv2/commit/de43845acc7949d73cc83ee36ea83a63e2c66ea8\nso for some reason on dev server it doesnt give problems, but i was able to reproduce your issue on Kevs server, so now it should be working. Thank you for reporting it and sorry for long delay, was need a server where it was failing\nComment: Oh i see. It's working correctly now, thanks a lot.\nComment: Hello there,\n\nToday, after doing a \"git pull\" to have latest version, this issue appeared again.\n\n![Image](https://github.com/user-attachments/assets/0033a596-2c1d-488d-aab7-bd86f228b23e)\nComment: Hey guys, any clue about this recurrent error?\nComment: No clue here I'm afraid, all I can say is that it's working fine for me!\nComment: > No clue here I'm afraid, all I can say is that it's working fine for me!\n\nThanks for answering. I found the issue...\n\nIf the request to download the sample is made from http://cape:8000 (which is the hostname) it fails, but it doesn't if you do it using the CAPE IP (example: http://10.8.10.10:8000). I've already deleted cache, cookies and also tried it from another machine. Same behaviour.\nComment: thats kinda interesting behavior\nComment: just tested with cape.local instead of ip, and it works just fine here so i can't really help here",
+  "Title: Processing error\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\n\n## This is open source and you are getting __free__ support so be friendly!\n\n# Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n- [x] I am running the latest version\n- [x] I did read the README!\n- [x] I checked the documentation and found no answer\n- [x] I checked to make sure that this issue has not already been filed\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [x] I have read and checked all configs (with all optional parts)\n\n\n# Expected Behavior\n\nRun a simple analysis (a URL in this case) and have results.\n\n# Current Behavior\n\nWhen running an URL analysis and it tries to shutdown the VM, it fails and get stuck.\n\n## Steps to Reproduce\n\n1. Submit an URL\n2. tail -f log/cuckoo.log\n\n## Context\n\n| Question         | Answer\n|------------------|--------------------\n| Git commit       | 9827376e7d7f781577aac080b381ac6915dd959a\n\n| OS version       | Ubuntu 22.04, Windows 10\n\n## Failure Logs\n\ntail -f log/cuckoo.log\n    with self.machine_running(), self.result_server(), self.network_routing(), self.run_auxiliary():\n  File \"/usr/lib/python3.10/contextlib.py\", line 142, in __exit__\n    next(self.gen)\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 383, in result_server\n    ResultServer().del_task(self.task, self.machine)\n  File \"/opt/CAPEv2/lib/cuckoo/core/resultserver.py\", line 629, in del_task\n    self.instance.del_task(task.id, machine.ip)\n  File \"/opt/CAPEv2/lib/cuckoo/core/resultserver.py\", line 485, in del_task\n    task_log_stop(task_id, debug=True)\nTypeError: task_log_stop() got an unexpected keyword argument 'debug'\n\n\nComment: After removing **debug=True** from resultserver.py and restaring CAPE Services, it works fine. Sorry but i couldn't find a way to submit a PR to change this. Perhaps you want to try it first.\n\nRegards,\nComment: hey, thanks, yes, i though i removed it, just pushed changes",
+  "Title: Feature Request: PE rich header hash\nBody: Within pefile a rich header hash could be implemented for PEs. \n\nIt is an interesting pivot point and is supported in VirusTotal (with the MD5 hash of the rich header hash). It can be used as a pivot to find similar authored/created malware https://www.virusbulletin.com/virusbulletin/2020/01/vb2019-paper-rich-headers-leveraging-mysterious-artifact-pe-format/, https://www.giac.org/paper/grem/6321/leveraging-pe-rich-header-static-alware-etection-linking/169729\n\nA simple demonstration of this is:\n\nimport pefile\nbinary = pefile.PE(\"FILENAME.exe\")\nbinary.get_rich_header_hash('md5')\nbinary.get_rich_header_hash('sha256')\nComment: \"rh_hash\": self.get_rh_hash(),\n\nhttps://github.com/kevoreilly/CAPEv2/blob/master/lib/cuckoo/common/objects.py#L644\nComment: so does current implementation works for you?\nComment: as we already have it, let me know if that doesn't match your requirement",
+  "Title: test\nBody: None",
+  "Title: json reporting format\nBody: I have set up CAPEv2 to train an ML model based on the reports from https://www.kaggle.com/datasets/greimas/malware-and-goodware-dynamic-analysis-reports, and I want the report samples of cape to follow this json structure:\n\"summary\": {\n\"files\": [],\n\"read_files\": [],\n\"write_files\": [],\n\"delete_files\": [],\n\"keys\": [],\n\"read_keys\": [],\n\"write_keys\": [],\n\"delete_keys\": [],\n\"executed_commands\": [],\n\"resolved_apis\": [],\n\"mutexes\": [],\n\"created_services\": [],\n\"started_services\": []\n}\n\nIs there a way to modify the reporting files to achieve this format?\n\ntried looking for the report script in /opt/CAPEv2/modules/reporting/jsondump.py \nComment: have fun https://github.com/kevoreilly/CAPEv2/blob/master/modules/processing/behavior.py#L457\nComment: I applied the changes, but the behavior analysis is missing from the final report.\nComment: well watch the logs, your logs will say what is wrong, i can't guess it\nComment: 2025-03-12 20:27:26,690 [Task 15] [lib.cuckoo.common.integrations.virustotal] ERROR: VT: Request failed\n2025-03-12 20:27:27,225 [Task 15] [modules.processing.behavior] WARNING: Analysis results folder does not exist at path \"/opt/CAPEv2/storage/analyses/15/logs\"\n2025-03-12 20:27:27,229 [Task 15] [lib.cuckoo.core.plugins] INFO: Logs folder doesn't exist, maybe something with with analyzer folder, any change?\n2025-03-12 20:27:27,379 [Task 15] [lib.cuckoo.common.integrations.capa] ERROR: CAPA ValidationError 4 validation errors for CapeReport\nbehavior.summary\n  Field required [type=missing, input_value={'processes': []}, input_type=dict]\n    For further information visit https://errors.pydantic.dev/2.10/v/missing\nbehavior.processtree\n  Field required [type=missing, input_value={'processes': []}, input_type=dict]\n    For further information visit https://errors.pydantic.dev/2.10/v/missing\nbehavior.anomaly\n  Field required [type=missing, input_value={'processes': []}, input_type=dict]\n    For further information visit https://errors.pydantic.dev/2.10/v/missing\nbehavior.encryptedbuffers\n  Field required [type=missing, input_value={'processes': []}, input_type=dict]\n    For further information visit https://errors.pydantic.dev/2.10/v/missing\nTraceback (most recent call last):\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/capa.py\", line 273, in flare_capa_details\n    extractor = capa.features.extractors.cape.extractor.CapeExtractor.from_report(results)\n                ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/capa/features/extractors/cape/extractor.py\", line 129, in from_report\n    cr = CapeReport.model_validate(report)\n         ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pydantic/main.py\", line 627, in model_validate\n    return cls.__pydantic_validator__.validate_python(\n           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\npydantic_core._pydantic_core.ValidationError: 4 validation errors for CapeReport\nbehavior.summary\n  Field required [type=missing, input_value={'processes': []}, input_type=dict]\n    For further information visit https://errors.pydantic.dev/2.10/v/missing\nbehavior.processtree\n  Field required [type=missing, input_value={'processes': []}, input_type=dict]\n    For further information visit https://errors.pydantic.dev/2.10/v/missing\nbehavior.anomaly\n  Field required [type=missing, input_value={'processes': []}, input_type=dict]\n    For further information visit https://errors.pydantic.dev/2.10/v/missing\nbehavior.encryptedbuffers\n  Field required [type=missing, input_value={'processes': []}, input_type=dict]\n    For further information visit https://errors.pydantic.dev/2.10/v/missing\nsorry if im being a pain\nComment: there is no bson logs from the vm`2025-03-12 20:27:27,229 [Task 15] [lib.cuckoo.core.plugins] INFO: Logs folder doesn't exist, maybe something with with analyzer folder, any change?`.\nso you need to review your setup, if everything goes fine, but as you removed the whole issue template, i can't help you without it",
+  "Title: SSO auth\nBody: None",
+  "Title: The analysis result of the pcap file uploaded through the \"/app2/tasks/create/file/\" interface is incorrect.\nBody: May I ask how I can upload PCAP files for analysis through the API interface? The analysis result of the pcap file uploaded through the \"/app2/tasks/create/file/\" interface is incorrect.\nComment: hey, did you try to set `data={\"pcap\":1}`?  https://github.com/kevoreilly/CAPEv2/blob/master/web/apiv2/views.py#L264\nComment: Sorry, I didn't understand what you meant. Can you provide a detailed explanation or give an example. thank you!\nComment: `curl -F file=@/path/to/pcap -F pcap=\"1\" <URL>`\nComment: When I execute `curl - F file=@ IPv4_ 45361-PhpMyAdmin brute force vulnerability attack _20240514075213. pcap - F pcap=\"1\" http://192.168.20.12:8000/apiv2/tasks/create/file/` I'm in trouble.\n\n\n```\n<!--\n\nTraceback (most recent call last):\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/contrib/staticfiles/handlers.py\", line 80, in __call__\n    return self.application(environ, start_response)\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/wsgi.py\", line 124, in __call__\n    response = self.get_response(request)\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/base.py\", line 140, in get_response\n    response = self._middleware_chain(request)\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/exception.py\", line 57, in inner\n    response = response_for_exception(request, exc)\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/exception.py\", line 140, in response_for_exception\n    response = handle_uncaught_exception(\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/exception.py\", line 181, in handle_uncaught_exception\n    return debug.technical_500_response(request, *exc_info)\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django_extensions/management/technical_response.py\", line 40, in null_technical_500_response\n    raise exc_value.with_traceback(tb)\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/exception.py\", line 55, in inner\n    response = get_response(request)\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/base.py\", line 197, in _get_response\n    response = wrapped_callback(request, *callback_args, **callback_kwargs)\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/views/decorators/csrf.py\", line 65, in _view_wrapper\n    return view_func(request, *args, **kwargs)\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/views/decorators/csrf.py\", line 65, in _view_wrapper\n    return view_func(request, *args, **kwargs)\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/views/generic/base.py\", line 104, in view\n    return self.dispatch(request, *args, **kwargs)\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/rest_framework/views.py\", line 509, in dispatch\n    response = self.handle_exception(exc)\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/rest_framework/views.py\", line 469, in handle_exception\n    self.raise_uncaught_exception(exc)\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/rest_framework/views.py\", line 480, in raise_uncaught_exception\n    raise exc\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/rest_framework/views.py\", line 506, in dispatch\n    response = handler(request, *args, **kwargs)\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/rest_framework/decorators.py\", line 50, in handler\n    return func(*args, **kwargs)\n  File \"/opt/CAPEv2/web/apiv2/views.py\", line 338, in tasks_create_file\n    if tmp_path.lower().endswith(\".saz\"):\nTypeError: endswith first arg must be bytes or a tuple of bytes, not str\n\n\n-->\n```\nComment: i will verify that in a bit and will be back to you, thanks for reporting this\nComment: done, i was able to reproduce it, thank you for notify me, fixed now. you need to `git pull` and restart webgui\nComment: This problem has been solved, but I have another one. When I tried to download the HTML report, the web interface displayed `File not found: summary-report.html`.Could you help me?\n\n![Image](https://github.com/user-attachments/assets/274a0d65-9254-4309-b511-ebb7898b07eb)\nComment: if you see the processing log, you will see probably exception, those pdf/html/html-summary reports are community maintained. i did a quick fix, is not a proper one, but it should work. the rest of fixes related to jinja must wait\n\nthere is some issue with one of the 3rd party libraries, that stopped to work, as this is not easy/fast issue i can't focus on that as i have my job to do, so i will leave it open till i have some spare time to properly research the 3rd party library issue\nComment: Okay, thank you for your help. I will also study this issue myself\nComment: So as main issue here is solved I'm closing this, thanks for reporting ",
+  "Title: Having problem on KVM-QEMU virt-manager on Ubuntu 24.04\nBody: # Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n- [x] I am running the latest version\n- [x] I did read the README!\n- [x] I checked the documentation and found no answer\n- [x] I checked to make sure that this issue has not already been filed\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [x] I have read and checked all configs (with all optional parts)\n\n\n# Expected Behavior\n\nKVM-QEMU virtmanager can operating normal\n\n# Current Behavior\n\nKVM-QEMU virtmanager many error: libxml2, GtkVnc, SpiceGtkClient modul error\n\n## Steps to Reproduce\n\n1. Install the Ubuntu latest version : 24.04.2\n2. git clone CAPEv2\n3. run sudo ./kvm-qemu.sh all cape 2>&1\n4. run sudo ./kvm-qemu.sh virtmanager cape 2>&1\n\n## Context\n\nPreviously, I successfully completed the entire installation of both KVM-QEMU and CAPEv2 core on Ubuntu Desktop 22.04.5. However, due to an update on GitHub stating that the recommended Ubuntu version is 24.04, I tried to install the latest CAPEv2 and encountered several errors after installing KVM-QEMU virt-manager.\n\n## Failure Logs\n\n![Image](https://github.com/user-attachments/assets/eb0f0d83-764c-4c2b-bbcb-bb6ca9d818bb)\n\n![Image](https://github.com/user-attachments/assets/ab2e6724-c067-44a5-8fa6-25fbcd0aafc2)\n\n![Image](https://github.com/user-attachments/assets/591925ce-642a-4b38-abf4-d66621adee2a)\n\nComment: Is the most stable version for Ubuntu actually still using 22.04? Or am I just misunderstanding the error I'm facing? I kindly ask for your assistance, thank you.\nComment: your error is in step 3, you don't save/watch your logs, if something went wrong is there and it should be watched or stored to log as it says to use it with `| tee -a kvm.log` so you will be able to check what went wrong, so rerun that step with that pipe and post the log\nComment: Okay thanks for your recommendation. I've done it, I forget to write it on this issue post. This is my kvm-qemu all and kvm-qemu virtmanager logs.\n\n![Image](https://github.com/user-attachments/assets/3bb85de4-76a7-4c4e-b8b8-0a8c1720743b)\n\n![Image](https://github.com/user-attachments/assets/fa8d1703-72cf-4827-a938-fc2574f17c03)\n\n[kvm-qemu-virtmanager.log](https://github.com/user-attachments/files/19153679/kvm-qemu-virtmanager.log)\n[kvm-qemu-all.log](https://github.com/user-attachments/files/19153680/kvm-qemu-all.log)\nComment: ```\nVNC support                     : YES\nVNC SASL support                : YES\nVNC JPEG support                : YES 2.1.5\n\n```\n\nif you run script with `--issues it shows` you need to install dependencies as root to be system wide\n```\n2. ImportError: No module named libxml2\n    $ pip3 install libxml2-python3\n```\n\nfor gtkvnc - `sudo apt install gir1.2-gtk-vnc-2.0`. \n\ni don't see errors in your logs as you greped them properly. but for some reason dependencies weren't installed correctly. Also i suggest you to start searching in issues as the same was here https://github.com/kevoreilly/CAPEv2/issues/2423\n\n\nComment: Okay, thank you very much for the solution. I've solve thats problems. But the next problem is glitch screen like this\n\n![Image](https://github.com/user-attachments/assets/b088019f-34e2-42cb-ab02-89140249891f)\n\nand from the CLI show the message like this\n\n![Image](https://github.com/user-attachments/assets/648ace06-f68f-4473-9c6e-16a667fd07c9)\n\nHave you ever face the problem like this? I've read some of opinion from the VMware forum, and the Intel forum (because I use Intel graphic and VMware for hypervisor), it's because of 3D acceleration feature, but I've enable it, but the glitch is still show.\nComment: first time see it, let me know what they suggest, but i don't use nested virtualization. maybe is some option that you need to enable on vmware hypervisor?\nComment: Some of opinion say, disabling or enabling the 3D acceleration feature on VMware, and I've to do it, which is enabling or disabling the result is nothing solved. Is it possible to see thats error message from virt-manager logs?\nComment: Previously, I followed the same steps on Ubuntu 22 with the same VMware and KVM-QEMU configuration, but I did not encounter this error.\nComment: you can run virt-manager from terminal, with `no fork` option. check `-h` for proper command + enable verbosity/debug\nComment: Solved in PM\nComment: > you can run virt-manager from terminal, with `no fork` option. check `-h` for proper command + enable verbosity/debug\n\nThe green pixel glitch is still shown. I didn't find the error message on verbose debug information :(\nComment: Ups sorry I confused users, I know what's happening here, will be back to you in a bit with fix\nComment: do git pull and rerun `kvm-qemu.sh all`. your issue was due to new seabios, so i pinned previous one which works\nComment: > do git pull and rerun `kvm-qemu.sh all`. your issue was due to new seabios, so i pinned previous one which works\n\nOkay big thanks Sir, I will try it again\nComment: Let me know I'd the issue is solved after that\nComment: > Let me know I'd the issue is solved after that\n\nBig thanks for your all recomenddation. I've solve that problem\n\n1. Downgrade the VMware Workstation Pro Player into 17.6.2\n2. edit the kvm-qemu.sh on the line 599 until 630, because the `gir1.2-rest-0.7` package is not available in Noble Numbat repo, so the package behind that packge not installed, my alternative solution is delete the package on kvm-qemu.sh, then reinstall it. The other package is also not available in the Noble Numbat repo, thats make package that behind is not installed.\n3. the other error that I've found is on the line 767 until 777, thats make tha patching bios failed, so I make a little change\n\nComment: > > Let me know I'd the issue is solved after that\n> \n> Big thanks for your all recomenddation. I've solve that problem\n> \n> 1. Downgrade the VMware Workstation Pro Player into 17.6.2\n> 2. edit the kvm-qemu.sh on the line 599 until 630, because the `gir1.2-rest-0.7` package is not available in Noble Numbat repo, so the package behind that packge not installed, my alternative solution is delete the package on kvm-qemu.sh, then reinstall it. The other package is also not available in the Noble Numbat repo, thats make package that behind is not installed.\n> 3. the other error that I've found is on the line 767 until 777, thats make tha patching bios failed, so I make a little change\n\nthis the the little changes on the kvm-qemu.sh on line 599:\n`aptitude -f -y install libgirepository1.0-dev gtk-doc-tools python3 python3-pip gir1.2-govirt-1.0 libgovirt-dev libgovirt-common libgovirt2 gir1.2-rest-1.0 unzip intltool augeas-doc ifupdown wodim cdrkit-doc indicator-application augeas-tools radvd auditd systemtap nfs-common zfsutils-linux python-openssl-doc samba debootstrap sharutils-doc ssh-askpass gnome-keyring spice-client-gtk sharutils spice-client-glib-usb-acl-helper ubuntu-mono x11-common python3-gi python3-gi-cairo python3-pkg-resources libgtksourceview-4-common python3-libxml2 libxml2-utils libxrandr2 libxrender1 libxshmfence1 libxtst6 libxv1 libyajl2 msr-tools osinfo-db python3-cairo python3-cffi-backend libxcb-present0 libxcb-render0 libxcb-shm0 libxcb-sync1 libxcb-xfixes0 libxcomposite1 libxcursor1 libxdamage1 libxfixes3 libxft2 libxi6 libxinerama1 libxkbcommon0 libusbredirhost1 libusbredirparser1 libv4l-0 libv4lconvert0 libvisual-0.4-0 libvorbis0a libvorbisenc2 libvte-2.91-0 libvte-2.91-common libwavpack1 libwayland-client0 libwayland-cursor0 libwayland-egl1-mesa libwayland-server0 libx11-xcb1 libxcb-dri2-0 libxcb-dri3-0 libsoup-gnome2.4-1 libsoup2.4-1 libspeex1 libspice-client-glib-2.0-8 libspice-client-gtk-3.0-5 libspice-server1 libtag1v5 libtag1v5-vanilla libthai-data libthai0 libtheora0 libtiff5-dev libtwolame0 libpython3-dev librados2 libraw1394-11 librbd1 librdmacm1 librest-1.0-0 gir1.2-gtksource-4 libgtksourceview-4-0 librsvg2-2 librsvg2-common libsamplerate0 libsdl1.2debian libshout3 libsndfile1 libpango-1.0-0 libpangocairo-1.0-0 libpangoft2-1.0-0 libpangoxft-1.0-0 libpciaccess0 libphodav-3.0-0 libphodav-3.0-common libpixman-1-0 libproxy1v5 libpulse-mainloop-glib0 libpulse0 libgstreamer1.0-0 libgtk-3-0 libgtk-3-bin libgtk-3-common libgtk-vnc-2.0-0 libgudev-1.0-0 libgvnc-1.0-0 libharfbuzz0b libibverbs1 libiec61883-0 libindicator3-7 libiscsi7 libjack-jackd2-0 libjbig0 libjpeg-turbo8 libjpeg8 libjson-glib-1.0-0 libjson-glib-1.0-common liblcms2-2 libmp3lame0 libmpg123-0 libnl-route-3-200 libnspr4 libnss3 libogg0 libopus0 liborc-0.4-0 libosinfo-1.0-0 libcairo-gobject2 libcairo2 libcdparanoia0 libcolord2 libcups2 libdatrie1 libdbusmenu-glib4 libdbusmenu-gtk3-4 libdconf1 libdv4 libegl-mesa0 libegl1 libepoxy0 libfdt1 libflac-dev libfontconfig1 libgbm1 libgdk-pixbuf2.0-0 libgdk-pixbuf2.0-bin libgdk-pixbuf2.0-common libglapi-mesa libglvnd0  libgraphite2-3 libgstreamer-plugins-base1.0-0 libgstreamer-plugins-good1.0-0 gtk-update-icon-cache hicolor-icon-theme humanity-icon-theme ibverbs-providers  libaa1 libaio1t64 libappindicator3-1 libasound2 libasound2-data libasyncns0 libatk-bridge2.0-0 libatk1.0-0 libatk1.0-0t64 libatspi2.0-0 libaugeas0 libavahi-client3 libavahi-common-data libavahi-common3 libavc1394-0 libbluetooth3 libcaca0 libcacard0 gir1.2-atk-1.0 gir1.2-freedesktop gir1.2-gdkpixbuf-2.0 gir1.2-gtk-3.0 gir1.2-gtk-vnc-2.0 gir1.2-libosinfo-1.0  gir1.2-pango-1.0 gir1.2-spiceclientglib-2.0 gir1.2-spiceclientgtk-3.0 gir1.2-vte-2.91 glib-networking glib-networking-common glib-networking-services gsettings-desktop-schemas gstreamer1.0-plugins-base gstreamer1.0-plugins-good gstreamer1.0-x adwaita-icon-theme at-spi2-core augeas-lenses cpu-checker dconf-gsettings-backend dconf-service fontconfig fontconfig-config fonts-dejavu-core genisoimage gir1.2-appindicator3-0.1 gir1.2-secret-1 libgtk-vnc-2.0-dev gobject-introspection intltool pkg-config libxml2-dev libxslt-dev libxslt1-dev python3-dev libgtk-3-dev plocate checkinstall pylint pycodestyle codespell`\n\nthen this is for the line 767 until th 777\n```\n_sed_aux \"s/Bochs/'\"$BOCHS_BLOCK_REPLACER\"'/g\" src/config.h 'Bochs was not replaced in src/config.h'\n_sed_aux \"s/BOCHSCPU/$bochs_cpu_replacement/g\" src/config.h 'BOCHSCPU was not replaced in src/config.h'\n_sed_aux \"s/\"BOCHS \"/'\"$$BOCHS_BLOCK_REPLACER\"'/g\" src/config.h 'BOCHS was not replaced in src/config.h'\n_sed_aux \"s/BXPC/'\"$BXPC_REPLACER\"'/g\" src/config.h 'BXPC was not replaced in src/config.h'\n_sed_aux \"s/QEMU\\/Bochs/$qemu_bochs_cpu/g\" vgasrc/Kconfig 'QEMU\\/Bochs was not replaced in vgasrc/Kconfig'\n_sed_aux \"s/qemu /$qemu_space_replacement/g\" vgasrc/Kconfig 'qemu was not replaced in vgasrc/Kconfig'\n_sed_aux \"s/06\\/23\\/99/$src_misc_bios_table/g\" src/misc.c 'change seabios date 1'\n_sed_aux \"s/04\\/01\\/2014/$src_bios_table_date2/g\" src/fw/biostables.c 'change seabios date 2'\n_sed_aux \"s/01\\/01\\/2011/$src_fw_smbios_date/g\" src/fw/smbios.c 'change seabios date 3'\n_sed_aux \"s/\"SeaBios\"/\"AMIBios\"/g\" src/fw/biostables.c 'change seabios to amibios'\n_sed_aux \"s/\"SeaBIOS\"/\"AMIBios\"/g\" src/fw/biostables.c 'change seabios to amibios'\n```\nComment: > > Let me know I'd the issue is solved after that\n> \n> Big thanks for your all recomenddation. I've solve that problem\n> \n> 1. Downgrade the VMware Workstation Pro Player into 17.6.2\n> 2. edit the kvm-qemu.sh on the line 599 until 630, because the `gir1.2-rest-0.7` package is not available in Noble Numbat repo, so the package behind that packge not installed, my alternative solution is delete the package on kvm-qemu.sh, then reinstall it. The other package is also not available in the Noble Numbat repo, thats make package that behind is not installed.\n> 3. the other error that I've found is on the line 767 until 777, thats make tha patching bios failed, so I make a little change\n\nI really don't know the matter what makes the many error on my implementation. But I've following the recommendation requirement, like a use Ubuntu 24.04.2 LTS\nComment: Did you know there is VMware machinery? You could have a cape vm alongside windows vms and no nesting! That is how I began cape 10 years ago!\nComment: thats interesting, i did few deploys on 24.04 without issues, neither had that `gir1.2-rest-0.7` problem hm i will check your 3 parts again once i have some free time\nComment: > Did you know there is VMware machinery? You could have a cape vm alongside windows vms and no nesting! That is how I began cape 10 years ago!\n\nYes of course, I've already use the VMWare Workstation Pro Player on my Windows 11 Host PC, then I install Ubuntu 24.04.2 LTS Desktop as a guest VM and install the CAPEv2 on that Ubuntu\nComment: > Did you know there is VMware machinery? You could have a cape vm alongside windows vms and no nesting! That is how I began cape 10 years ago!\n\nThis is the architecture that I used for CAPEv2 implementation\n\n![Image](https://github.com/user-attachments/assets/0d58ddeb-a7d9-4c2e-93ff-5b2bd48d2a62)\n\nComment: > thats interesting, i did few deploys on 24.04 without issues, neither had that `gir1.2-rest-0.7` problem hm i will check your 3 parts again once i have some free time\n\nthis is the virt-manager part installation log, it says couldn't find package blablabla. But after I make change `gir1.2-rest-0.7` thereis other package that Noble repo couldn't find also.\n\n![Image](https://github.com/user-attachments/assets/52b38fe6-b8bb-4a4a-8e99-a14f5389c9a2)\n\n\nComment: I'm not sure if you've understood what I was suggesting, as you have shown me a nested architecture. In my opinion, that is an absolutely hideous architecture which I would never waste my time on, but others are of a different opinion that it can be a good introduction to sandboxing.\n\nWhat I think is undeniable is that this is not a recommended setup, nor a 'professional' setup because it doubles the hypervisors and so doubles (at least) the ability of malware to detect it is not running in a vm.\n\nMy suggestion to you if you wish to achieve a more 'production' standard sandbox is to first make your mind up which hypervisor you prefer. If it is VMware, then you run CAPE in a VMware Ubuntu vm and you run Windows alongside in a VMware Windows vm. No nesting! This means the malware is only running on one hypervisor which is better, and the whole setup is more efficient.\n\nHowever, although I began working on a setup like this, I moved to pure KVM when I realised it is far superior hypervisor for malware stealth, particularly with doomedraven's custom script. That is why this is the recommended setup, pure KVM on a Ubuntu host, Windows KVM vms. And again, no nesting!\nComment: > I'm not sure if you've understood what I was suggesting, as you have shown me a nested architecture. In my opinion, that is an absolutely hideous architecture which I would never waste my time on, but others are of a different opinion that it can be a good introduction to sandboxing.\n> \n> What I think is undeniable is that this is not a recommended setup, nor a 'professional' setup because it doubles the hypervisors and so doubles (at least) the ability of malware to detect it is not running in a vm.\n> \n> My suggestion to you if you wish to achieve a more 'production' standard sandbox is to first make your mind up which hypervisor you prefer. If it is VMware, then you run CAPE in a VMware Ubuntu vm and you run Windows alongside in a VMware Windows vm. No nesting! This means the malware is only running on one hypervisor which is better, and the whole setup is more efficient.\n> \n> However, although I began working on a setup like this, I moved to pure KVM when I realised it is far superior hypervisor for malware stealth, particularly with doomedraven's custom script. That is why this is the recommended setup, pure KVM on a Ubuntu host, Windows KVM vms. And again, no nesting!\n\nOh yeah, I'm so sorry if I miss understood Sir, Thank you very much for the explain. The next time, I would try your insight, with the different VM between the host sandbox and the victim sandbox, okay Sir\nComment: where i can find more information on ubuntu guest installation ",
+  "Title: Failed to generate summary HTML report: 'dict object' has no attribute 'CAPE'\nBody: # Please Help Me\nI have an issue related to the reporting process\n\n```\nWARNING: The reporting module \"ReportHTML\" returned the following error: Failed to generate summary HTML report: 'dict object' has no attribute 'CAPE\n\nWARNING: The reporting module \"ReportHTMLSummary\" returned the following error: Failed to generate summary HTML report: 'dict object' has no attribute 'CAPE'\n\nWARNING: The reporting module \"ReportPDF\" returned the following error: Unable to open summary HTML report to convert to PDF: Ensure reporthtmlsummary is enabled in reporting.conf\n```\n\n\n# Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n- [x] I am running the latest version\n- [x] I did read the README!\n- [x] I checked the documentation and found no answer\n- [x] I checked to make sure that this issue has not already been filed\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [x] I have read and checked all configs (with all optional parts)\n\n## Context\n\n| Question         | Answer\n|------------------|--------------------\n| Git commit       | Type `$ git log \\| head -n1` to find out\n| OS version       | Ubuntu 24.04, Windows 10 (VM Guest)\n\n## Failure Logs\n\nin `process.log`\n\n![Image](https://github.com/user-attachments/assets/e7cf70b2-42c5-43db-9a28-5e390fbe28cd)\n\nin `reporting.conf`\n```\n[reporthtml]\nenabled = yes\nscreenshots = yes\napicalls = no\n\n[reporthtmlsummary]\nenabled = yes\nscreenshots = yes\n\n[reportpdf]\nenabled = yes\n```\nComment: hello, just tested it works fine here, have you disaled CAPE in processing.conf? also provide more info from template as on which commit you are, and you maybe have some previous errors in console? \nComment: > hello, just tested it works fine here, have you disaled CAPE in processing.conf? also provide more info from template as on which commit you are, and you maybe have some previous errors in console?\n\n### By default, [CAPE] is enabled. I just disabled it, tried again, and the error is still the same.\n\n# processing.conf\n\n```\n# Enable or disable the available processing modules [on/off].\n# If you add a custom processing module to your Cuckoo setup, you have to add\n# a dedicated entry in this file, or it won't be executed.\n# You can also add additional options under the section of your module and\n# they will be available in your Python class.\n\n# Community\n# exclude files that doesn't match safe extension and ignore their files from processing inside of other modules like CAPE.py\n[antiransomware]\nenabled = no\n# ignore all files with extension found more than X\nskip_number = 30\n\n# Community\n[curtain]\nenabled = no\n\n# Community\n[sysmon]\n#enabled = no\nenabled = yes\n\n[analysisinfo]\nenabled = yes\n\n# Community\n# FLARE capa -> to update rules utils/community.py -cr\n# install -> cd /tmp && git clone --recurse-submodules https://github.com/fireeye/capa.git && cd capa && git submodule update --init rules && python -m poetry run pip in>[flare_capa]\nenabled = no\n# Generate it always or generate on demand only(user need to click button to generate it), still should be enabled to use this feature on demand\non_demand = no\n# Analyze binary payloads\nstatic = no\n# Analyze CAPE payloads\ncape = no\n# Analyze ProcDump\nprocdump = no\n# Community\n[decompression]\nenabled = no\n\n[dumptls]\nenabled = no\n\n[amsi]\nenabled = no\n\n[behavior]\nenabled = yes\n# Toggle specific modules within the BehaviorAnalysis class\nanomaly = yes\nprocesstree = yes\nsummary = yes\nenhanced = yes\nencryptedbuffers = yes\n# Should the server use a compressed version of behavioural logs? This helps\n# in saving space in Mongo, accelerates searchs and reduce the size of the\n# final JSON report.\nloop_detection = no\n# The number of calls per process to process. 0 switches the limit off.\n# 10000 api calls should be processed in less than 2 minutes\nanalysis_call_limit = 0\n# Use ram to boost processing speed. You will need more than 20GB of RAM for this feature.\n# Please read \"performance\" section in the documentation.\nram_boost = no                                                                                                                                                            # https://capev2.readthedocs.io/en/latest/usage/patterns_replacement.html\nreplace_patterns = no\nfile_activities = no\n\n[tracee]\nenabled = no\n\n[strace]\nenabled = no\n# Toggle specific modules within the StraceAnalysis class\nprocesstree = no\n# Platform specific\nplatform = linux\n\n[debug]\nenabled = yes\n# Amount of text (bytes)\nbuffer = 0\n\n[detections]\nenabled = yes\n# Signatures\nbehavior = yes\nyara = yes\nsuricata = yes\nvirustotal = no\nclamav = no\n\n# ... but this mechanism may still be switched on\n[procmemory]\nenabled = yes\nstrings = yes\n\n[procmon]\nenabled = no\n\n[memory]\nenabled = no\n                                                                                                                                                                          [usage]\nenabled = no\n\n[network]\nenabled = yes\nsort_pcap = no\n# DNS whitelisting to ignore domains/IPs configured in network.py\ndnswhitelist = yes\n# additional entries\ndnswhitelist_file = extra/whitelist_domains.txt\nipwhitelist = yes\nipwhitelist_file = extra/whitelist_ips.txt\nnetwork_passlist = no\nnetwork_passlist_file = extra/whitelist_network.txt\n\n# Requires geoip2 and maxmind database\ncountry_lookup = no\n# Register and download for free from\n# https://www.maxmind.com/ or https://ipinfo.io/\n# For maxmind use: GeoLite2 Country\n# For ipinfo use: Free IP to Country + IP to ASN\nmaxmind_database = data/GeoLite2-Country.mmdb\n\n[pcapng]\nenabled = no\n\n[url_analysis]\nenabled = yes\n# Enable a WHOIS lookup for the target domain of a URL analyses\nwhois = yes\n\n[strings]\nenabled = yes\non_demand = no\nnullterminated_only = no\nminchars = 5\n\n# Community\n[trid]\n# Specify the path to the trid binary to use for static analysis.\nenabled = no\nidentifier = data/trid/trid\ndefinitions = data/trid/triddefs.trd\n\n[die]\n# Detect it Easy\nenabled = no\nbinary = /usr/bin/diec\n\n[virustotal]\nenabled = yes\non_demand = no\ntimeout = 60\n# remove empty detections\nremove_empty = yes\n# Add your VirusTotal API key here. The default API key, kindly provided\n# by the VirusTotal team, should enable you with a sufficient throughput\n# and while being shared with all our users, it shouldn't affect your use.\nkey = a0283a2c3d55728300d064874239b5346fb991317e8449fe43c902879d758088\ndo_file_lookup = yes\ndo_url_lookup = yes\nurlscrub = (^http:\\/\\/serw\\.clicksor\\.com\\/redir\\.php\\?url=|&InjectedParam=.+$)\n\n[suricata]\n# Notes on getting this to work check install_suricata function:\n# https://github.com/kevoreilly/CAPEv2/blob/master/installer/cape2.sh\n\nenabled = yes\n#Runmode \"cli\" or \"socket\"\nrunmode = socket\n#Outputfiles\n# if evelog is specified, it will be used instead of the per-protocol log files\nevelog = eve.json\n\n# per-protocol log files\n#\n#alertlog = alert.json\n#httplog = http.json                                                                                                                                                      #tlslog = tls.json\n#sshlog = ssh.json\n#dnslog = dns.json\n\nfileslog = files-json.log\nfilesdir = files\n# Amount of text to carve from plaintext files (bytes)\nbuffer = 8192\n#Used for creating an archive of extracted files\n7zbin = /usr/bin/7z\nzippass = infected\n##Runmode \"cli\" options\nbin = /usr/bin/suricata\nconf = /etc/suricata/suricata.yaml\n##Runmode \"socket\" Options\nsocket_file = /tmp/suricata-command.socket\n\n# Community\n[cif]\nenabled = no\n# url of CIF server\nurl = https://your-cif-server.com/api\n# CIF API key\nkey = your-api-key-here\n# time to wait for server to respond, in seconds\ntimeout = 60\n# minimum confidence level of returned results:\n# 25=not confident, 50=automated, 75=somewhat confident, 85=very confident, 95=certain\n# defaults to 85\nconfidence = 85\n# don't log queries by default, set to 'no' to log queries\nnolog = yes\n# max number of results per query\nper_lookup_limit = 20\n# max number of queries per analysis\nper_analysis_limit = 200\n\n[CAPE]\nenabled = no\n# Ex targetinfo standalone module\ntargetinfo = yes\n# Ex dropped standalone module\ndropped = yes\n# Ex procdump standalone module\nprocdump = yes\n# Amount of text to carve from plaintext files (bytes)\nbuffer = 8192\n# Process files not bigger than value below in Mb. We saw that after 90Mb it has biggest delay\nmax_file_size = 90\n# Scan for UserDB.TXT signature matches\nuserdb_signature = no\n# https://capev2.readthedocs.io/en/latest/usage/patterns_replacement.html\nreplace_patterns = no\n\n# Deduplicate screenshots - You need to install dependency ImageHash>=4.3.1\n[deduplication]\n#\n# Available hashs functions:\n#  ahash:      Average hash\n#  phash:      Perceptual hash\n#  dhash:      Difference hash\n#  whash-haar: Haar wavelet hash\n#  whash-db4:  Daubechies wavelet hash\nenabled = no\nhashmethod = ahash\n\n# Community\n[vba2graph]\n# Mac - brew install graphviz\n# Ubuntu - sudo apt-get install graphviz\n# Arch - sudo pacman -S graphviz+\n# sudo poetry run pip install networkx>=2.1 graphviz>=0.8.4 pydot>=1.2.4\nenabled = yes\non_demand = yes\n\n# ja3 finger print db with descriptions\n# https://github.com/trisulnsm/trisul-scripts/blob/master/lua/frontend_scripts/reassembly/ja3/prints/ja3fingerprint.json\n[ja3]\nja3_path = data/ja3/ja3fingerprint.json\n\n[maliciousmacrobot]\n# https://maliciousmacrobot.readthedocs.io\n# Install mmbot\n#   sudo poetry run pip install mmbot\n# Create/Set required paths\n# Populate benign_path and malicious_path with appropriate macro maldocs (try the tests/samples in the github)\n#   https://github.com/egaus/MaliciousMacroBot/tree/master/tests/samples\n# Create modeldata.pickle with your maldocs (this does not append to the model, it overwrites it)\n#\n#   mmb = MaliciousMacroBot(benign_path, malicious_path, model_path, retain_sample_contents=False)\n#   result = mmb.mmb_init_model(modelRebuild=True)\n#\n# Copy your model file and vocab.txt to your model_path\nenabled = no\nbenign_path = /opt/cuckoo/data/mmbot/benign\nmalicious_path = /opt/cuckoo/data/mmbot/malicious\nmodel_path = /opt/cuckoo/data/mmbot/model\n\n# Community\n[xlsdeobf]\n# poetry run pip install git+https://github.com/DissectMalware/XLMMacroDeobfuscator.git\nenabled = no\non_demand = no\n\n# Community\n[boxjs]\nenabled = no\ntimeout = 60\nurl = http://your_super_box_js:9000\n\n# Community\n# Extractors\n[mwcp]\nenabled = yes\nmodules_path = modules/processing/parsers/mwcp/\n\n# Community\n[ratdecoders]\nenabled = yes\nmodules_path = modules/processing/parsers/RATDecoders/\n\n# Community\n[malduck]\nenabled = yes\nmodules_path = modules/processing/parsers/malduck/\n\n[CAPE_extractors]\nenabled = yes\n# Must ends with /\nmodules_path = modules/processing/parsers/CAPE/\n# Config parsers all/core/community\nparsers = all\n# list of comma separated parsers. Ex: stealc,lumma\nexclude=\n\n# Community\n[reversinglabs]\nenabled = no\nurl =\nkey =\n\n# Community\n[script_log_processing]\nenabled = yes\n\n# Community\n[floss]\nenabled = no\non_demand = yes\nstatic_strings = no\nstack_strings = yes\ndecoded_strings = yes\ntight_strings = yes\nmin_length = 5\n# Download FLOSS signatures from https://github.com/mandiant/flare-floss/tree/master/sigs\nsigs_path = data/flare-signatures\n\n[html_scraper]\nenabled = no\n```\n\n# Debug log from command _poetry run python utils/process.py -r 15 -d_\n\n```\n2025-03-08 11:17:34,771 [root] DEBUG: Importing modules...\n2025-03-08 11:17:34,772 [modules.auxiliary.QemuScreenshots] DEBUG: Importing 'PIL.ImageChops.difference'\n2025-03-08 11:17:34,772 [modules.auxiliary.QemuScreenshots] DEBUG: Importing 'PIL.ImageDraw'\n2025-03-08 11:17:34,773 [modules.auxiliary.QemuScreenshots] DEBUG: Importing 'PIL.Image'\nOPTIONAL! Missed dependency: poetry run pip install -U git+https://github.com/CAPESandbox/httpreplay\n2025-03-08 11:17:34,938 [lazy_import] DEBUG: Getting attr Fernet of LazyModule instance of cryptography.fernet\n2025-03-08 11:17:34,938 [lazy_import] DEBUG: Getting attr __name__ of LazyModule instance of cryptography.fernet\n2025-03-08 11:17:34,959 [root] DEBUG: Missed file extra/msft-public-ips.csv. Get a fresh copy from https://www.microsoft.com/en-us/download/details.aspx?id=53602\n2025-03-08 11:17:35,033 [lazy_import] DEBUG: Getting attr __spec__ of LazyModule instance of yaml\n2025-03-08 11:17:35,034 [lazy_import] DEBUG: Getting attr __path__ of LazyModule instance of yaml\n2025-03-08 11:17:35,034 [lazy_import] DEBUG: Getting attr __name__ of LazyModule instance of yaml\n2025-03-08 11:17:35,034 [lazy_import] DEBUG: Proceeding to load module yaml, from requested value __path__\n2025-03-08 11:17:35,034 [lazy_import] DEBUG: Getting attr __name__ of LazyModule instance of yaml\n2025-03-08 11:17:35,034 [lazy_import] DEBUG: loading module yaml\n2025-03-08 11:17:35,041 [lazy_import] DEBUG: Successfully loaded module yaml\n2025-03-08 11:17:35,268 [capa.rules] DEBUG: reading rules from directory /opt/CAPEv2/data/capa-rules\n2025-03-08 11:17:35,283 [capa.rules.cache] DEBUG: loading rule set from cache: /home/cape/.cache/capa/capa-1d6fb80b.cache\n2025-03-08 11:17:35,318 [capa.loader] DEBUG: reading signatures from directory /opt/CAPEv2/data/flare-signatures\n2025-03-08 11:17:35,318 [capa.loader] DEBUG: found signature file: /opt/CAPEv2/data/flare-signatures/1_flare_msvc_rtf_32_64.sig\n2025-03-08 11:17:35,318 [capa.loader] DEBUG: found signature file: /opt/CAPEv2/data/flare-signatures/2_flare_msvc_atlmfc_32_64.sig\n2025-03-08 11:17:35,318 [capa.loader] DEBUG: found signature file: /opt/CAPEv2/data/flare-signatures/3_flare_common_libs.sig\n2025-03-08 11:17:35,347 [root] DEBUG: Imported \"auxiliary\" modules:\n2025-03-08 11:17:35,347 [root] DEBUG:    |-- AzSniffer\n2025-03-08 11:17:35,347 [root] DEBUG:    |-- Mitmdump\n2025-03-08 11:17:35,347 [root] DEBUG:    |-- QEMUScreenshots\n2025-03-08 11:17:35,347 [root] DEBUG:    `-- Sniffer\n2025-03-08 11:17:35,347 [root] DEBUG: Imported \"processing\" modules:\n2025-03-08 11:17:35,347 [root] DEBUG:    |-- AnalysisInfo\n2025-03-08 11:17:35,347 [root] DEBUG:    |-- Autoruns\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- BehaviorAnalysis\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- Debug\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- HollowsHunter\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- NetworkAnalysis\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- ProcessMemory\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- script_log_processing\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- Suricata\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- Sysmon\n2025-03-08 11:17:35,348 [root] DEBUG:    `-- UrlAnalysis\n2025-03-08 11:17:35,348 [root] DEBUG: Imported \"signatures\" modules:\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- AntiAnalysisTLSSection\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- ClamAV\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- KnownVirustotal\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- BadCerts\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- BadSSLCerts\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- ZeusP2P\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- ZeusURL\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- BinaryTriggeredYARA\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- AthenaHttp\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- DirtJumper\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- Drive\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- Drive2\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- Madness\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- HTMLPhisher_0\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- HTMLPhisher_1\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- HTMLPhisher_2\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- FamilyProxyBack\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- FlareCAPAAntiAnalysis\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- FlareCAPACollection\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- FlareCAPAcommunication\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- FlareCAPACompiler\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- FlareCAPADataManipulation\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- FlareCAPAExecutable\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- FlareCAPAHostInteration\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- FlareCAPAcommunication\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- FlareCAPALib\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- FlareCAPALinking\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- FlareCAPALoadCode\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- FlareCAPAMalwareFamily\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- FlareCAPANursery\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- FlareCAPAPersistence\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- FlareCAPARuntime\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- FlareCAPATargeting\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- ThreatFox\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- Log4j\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- MimicsExtension\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- NetworkCountryDistribution\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- NetworkMultipleDirectIPConnections\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- NetworkCnCHTTP\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- NetworkHTTPPOST\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- NetworkIPEXE\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- NetworkDGA\n2025-03-08 11:17:35,348 [root] DEBUG:    |-- NetworkDGAFraunhofer\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- NetworkDynDNS\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- NetworkExcessiveUDP\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- NetworkHTTP\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- NetworkICMP\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- NetworkIRC\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- NetworkOpenProxy\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- NetworkP2P\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- NetworkQuestionableHost\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- NetworkQuestionableHttpPath\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- NetworkQuestionableHttpsPath\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- NetworkSMTP\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- TorGateway\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- BuildLangID\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- ResourceLangID\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- overlay\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- PackerUnknownPESectionName\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- ASPackPacked\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- AspireCryptPacked\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- BedsProtectorPacked\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- ConfuserPacked\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- EnigmaPacked\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- PackerEntropy\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- MPressPacked\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- NatePacked\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- NsPacked\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- SmartAssemblyPacked\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- SpicesPacked\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- ThemidaPacked\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- ThemidaPackedSection\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- TitanPacked\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- UPXCompressed\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- VMPPacked\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- YodaPacked\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- PDF_Annot_URLs_Checker\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- Polymorphic\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- PunchPlusPlusPCREs\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- Procmem_Yara\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- CheckIP\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- Authenticode\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- InvalidAuthenticodeSignature\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- DotNetAnomaly\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- Static_Java\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- Static_PDF\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- ContainsPEOverlay\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- PEAnomaly\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- PECompileTimeStomping\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- StaticPEPDBPath\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- RATConfig\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- VersionInfoAnomaly\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- StealthNetwork\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- SuricataAlert\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- suspiciousHRML_Body\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- suspiciousHTML_Filename\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- suspiciousHTML_Title\n2025-03-08 11:17:35,349 [root] DEBUG:    |-- VolDevicetree1\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- VolHandles1\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- VolLdrModules1\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- VolLdrModules2\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- VolMalfind1\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- VolMalfind2\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- VolModscan1\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- VolSvcscan1\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- VolSvcscan2\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- VolSvcscan3\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- WHOIS_Create\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- DisableDriverViaBlocklist\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- DisableDriverViaHVCIDisallowedImages\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- DisableHypervisorProtectedCodeIntegrity\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- PendingFileRenameOperations\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- AccessesMailslot\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- AccessesNetlogonRegkey\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- AccessesPublicFolder\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- AccessesSysvol\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- WritesSysvol\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- AddsAdminUser\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- AddsUser\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- OverwritesAdminPassword\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- anomalous_deletefile\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- AntiAnalysisDetectFile\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- AntiAnalysisDetectReg\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- QihooDetectLibs\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- AhnlabDetectLibs\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- AvastDetectLibs\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- BitdefenderDetectLibs\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- BullguardDetectLibs\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- ModifiesAttachmentManager\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- AntiAVDetectFile\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- AntiAVDetectReg\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- EmsisoftDetectLibs\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- QurbDetectLibs\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- AntiAVServiceStop\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- AntiAVSRP\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- AntiAVWhitespace\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- antidebug_addvectoredexceptionhandler\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- APIOverrideDetectLibs\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- antidebug_checkremotedebuggerpresent\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- antidebug_debugactiveprocess\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- AntiDBGDevices\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- antidebug_gettickcount\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- antidebug_guardpages\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- antidebug_ntcreatethreadex\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- BullguardDetectLibs\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- antidebug_ntsetinformationthread\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- antidebug_outputdebugstring\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- antidebug_setunhandledexceptionfilter\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- AntiDBGWindows\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- AntiEmuWinDefend\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- WineDetectReg\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- WineDetectFunc\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- AntiSandboxCheckUserdomain\n2025-03-08 11:17:35,350 [root] DEBUG:    |-- AntiCuckoo\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- CuckooDetectFiles\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- CuckooCrash\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- AntiSandboxForegroundWindow\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- FortinetDetectFiles\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- SandboxJoeAnubisDetectFiles\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- HookMouse\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- AntiSandboxRestart\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- SandboxieDetectLibs\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- AntisandboxSboxieMutex\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- AntiSandboxSboxieObjects\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- AntiSandboxScriptTimer\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- AntiSandboxSleep\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- SunbeltDetectFiles\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- SunbeltDetectLibs\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- AntiSandboxSuspend\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- ThreatTrackDetectFiles\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- Unhook\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- BochsDetectKeys\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- AntiVMDirectoryObjects\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- AntiVMBios\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- AntiVMCPU\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- DiskInformation\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- SetupAPIDiskInformation\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- AntiVMDiskReg\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- AntiVMSCSI\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- AntiVMServices\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- AntiVMSystem\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- HyperVDetectKeys\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- AntiVMChecksAvailableMemory\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- NetworkAdapters\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- ParallelsDetectKeys\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- DetectVirtualizationViaRecentFiles\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- VBoxDetectDevices\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- VBoxDetectFiles\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- VBoxDetectKeys\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- VBoxDetectLibs\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- VBoxDetectProvname\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- VBoxDetectWindow\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- VMwareDetectDevices\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- VMwareDetectEvent\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- VMwareDetectFiles\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- VMwareDetectKeys\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- VMwareDetectLibs\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- VMwareDetectMutexes\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- VPCDetectFiles\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- VPCDetectKeys\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- VPCDetectMutex\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- XenDetectKeys\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- APISpamming\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- api_uuidfromstringa\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- AsyncRatMutex\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- GulpixBehavior\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- KetricanRegkeys\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- OkrumMutexes\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- Cridex\n2025-03-08 11:17:35,351 [root] DEBUG:    |-- Geodo\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- Prinimalka\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- SpyEyeMutexes\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- ZeusMutexes\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- BCDEditCommand\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- BitcoinOpenCL\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- AccessesPrimaryPartition\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- Bootkit\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- DirectHDDAccess\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- EnumeratesPhysicalDrives\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- PhysicalDriveAccess\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- PotentialOverWriteMBR\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- SuspiciousIoctlSCSIPassthough\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- Ruskill\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- BrowserAddon\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- ChromiumBrowserExtensionDirectory\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- BrowserHelperObject\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- BrowserNeeded\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- ModifyProxy\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- BrowserScanbox\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- BrowserSecurity\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- browser_startpage\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- FirefoxDisablesProcessPerTab\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- IEDisablesProcessPerTab\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- OdbcconfBypass\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- RegSrv32SquiblydooDLLLoad\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- SquiblydooBypass\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- SquiblytwoBypass\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- BypassFirewall\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- ChecksUACStatus\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- UACBypassCMSTP\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- UACBypassCMSTPCOM\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- UACBypassDelegateExecuteSdclt\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- UACBypassEventvwr\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- UACBypassFodhelper\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- UACBypassWindowsBackup\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- CAPEExtractedContent\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- CarberpMutexes\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- ClearsLogs\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- ClickfraudCookies\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- ClickfraudVolume\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- CmdlineObfuscation\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- CmdlineSwitches\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- CmdlineTerminate\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- CommandLineForFilesWildCard\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- CommandLineHTTPLink\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- CommandLineLongString\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- CommandLineReversedHTTPLink\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- LongCommandline\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- PowershellRenamedCommandLine\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- SystemAccountDiscoveryCMD\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- SystemCurrentlyLoggedinUserCMD\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- SystemInfoDiscoveryCMD\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- SystemInfoDiscoveryPWSH\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- SystemNetworkDiscoveryCMD\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- SystemNetworkDiscoveryPWSH\n2025-03-08 11:17:35,352 [root] DEBUG:    |-- SystemUserDiscoveryCMD\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- CompilesDotNetCode\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- QueriesComputerName\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- QueriesUserName\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- CopiesSelf\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- CreatesExe\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- CreatesLargeKey\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- CreatesNullValue\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- AccessWindowsPasswordsVault\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- CredWiz\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- EnablesWDigest\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- VaultCmd\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- DumpLSAViaWindowsErrorReporting\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- FileCredentialStoreAccess\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- FileCredentialStoreWrite\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- KerberosCredentialAccessViaRubeus\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- LsassCredentialDumping\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- RegistryCredentialDumping\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- RegistryCredentialStoreAccess\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- RegistryLSASecretsAccess\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- ComsvcsCredentialDump\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- CriticalProcess\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- CryptGenKey\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- CryptominingStratumCommand\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- MINERS\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- CVE_2014_6332\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- CVE2015_2419_JS\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- CVE_2016_0189\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- CVE_2016_7200\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- CypherITMutexes\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- DarkCometRegkeys\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- DatopLoader\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- DeadConnect\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- DeadLink\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- DebugsSelf\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- DecoyDocument\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- DecoyImage\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- DeepFreezeMutex\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- DeletesExecutedFiles\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- DeletesExecutedFiles\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- DeletesSelf\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- DeletesShadowCopies\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- DeletesSystemStateBackup\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- DEPBypass\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- DEPDisable\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- DisablesAppLaunch\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- DisablesAutomaticAppTermination\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- DisablesAppVirtualiztion\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- DisablesBackups\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- DisablesBrowserWarn\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- DisablesContextMenus\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- DisablesCPLDisplay\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- DisablesCrashdumps\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- DisablesMappedDrivesAutodisconnect\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- DisablesEventLogging\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- DisableFolderOptions\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- DisablesNotificationCenter\n2025-03-08 11:17:35,353 [root] DEBUG:    |-- DisablesPowerOptions\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- DisablesRestoreDefaultState\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- DisableRunCommand\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- DisablesSecurity\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- DisablesSmartScreen\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- DisablesSPDY\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- DisablesStartMenuSearch\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- DisablesSystemRestore\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- DisablesUAC\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- DisablesWER\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- DisablesWFP\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- AddWindowsDefenderExclusions\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- DisablesWindowsDefender\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- DisablesWindowsDefenderDISM\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- DisablesWindowsDefenderLogging\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- RemovesWindowsDefenderContextMenu\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- WindowsDefenderPowerShell\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- DisablesWindowsFileProtection\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- DisablesWindowsUpdate\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- DisablesWindowsFirewall\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- DllLoadUncommonFileTypes\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- DocScriptEXEDrop\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- AdfindDomainEnumeration\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- DomainEnumerationCommands\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- AndromutMutexes\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- DownloaderCabby\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- GuLoaderAPIs\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- PhorpiexMutexes\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- ProtonBotMutexes\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- DriverFilterManager\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- DriverLoad\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- Dropper\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- EXEDropper_JS\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- dynamic_function_loading\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- DLLArchiveExecution\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- LNKArchiveExecution\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- ScriptArchiveExecution\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- EncryptedIOC\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- Excel4MacroUrls\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- Crash\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- ProcessCreationSuspiciousLocation\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- exploit_getbasekerneladdress\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- exploit_gethaldispatchtable\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- ExploitHeapspray\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- EscalatePrivilegeViaNTLMRelay\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- SpoolerAccess\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- SpoolerSvcStart\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- KoadicAPIs\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- KoadicNetworkActivity\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- Modiloader_APIs\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- MappedDrivesUAC\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- SystemMetrics\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- Generic_Phish\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- HidesRecycleBinIcon\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- HTTP_Request\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- ApocalypseStealerFileBehavior\n2025-03-08 11:17:35,354 [root] DEBUG:    |-- ArkeiFiles\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- AzorultMutexes\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- BitcoinWallet\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- BrowserStealer\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- InfostealerBrowserPassword\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- CookiesStealer\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- CryptBotFiles\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- CryptBotNetwork\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- EchelonFiles\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- FTPStealer\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- IMStealer\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- KeyLogger\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- EmailStealer\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- MassLoggerArtifacts\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- MassLoggerFiles\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- MassLoggerVersion\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- PoullightFiles\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- PurpleWaveMutexes\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- PurpleWaveNetworkAcivity\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- QuilClipperMutexes\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- QuilClipperNetworkBehavior\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- QulabFiles\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- QulabMutexes\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- RaccoonInfoStealerMutex\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- raccoon\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- CapturesScreenshot\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- vidar\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- InjectionCRT\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- InjectionExplorer\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- InjectionExtension\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- InjectionNetworkTraffic\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- InjectionRUNPE\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- InjectionRWX\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- injection_themeinitapihook\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- ThreadManipulationRemoteProcess\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- Internet_Dropper\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- EscalatePrivilegeViaNamedPipe\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- IPC_NamedPipe\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- JS_Phish\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- JS_SuspiciousRedirect\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- LOLBAS_EvadeExecutionViaASPNetCompiler\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- LOLBAS_EvadeExecutionViaDeviceCredentialDeployment\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- LOLBAS_EvadeExecutionViaFilterManagerControl\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- LOLBAS_EvadeExecutionViaIntelGFXDownloadWrapper\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- LOLBAS_ExecuteBinaryViaAppVLP\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- LOLBAS_ExecuteBinaryViaCDB\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- LOLBAS_ExecuteBinaryViaInternetExplorerExporter\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- LOLBAS_ExecuteBinaryViaOpenSSH\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- LOLBAS_ExecuteBinaryViaPcalua\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- LOLBAS_ExecuteBinaryViaPesterPSModule\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- LOLBAS_ExecuteBinaryViaRunExeHelperUtility\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- LOLBAS_ExecuteBinaryViaScriptRunner\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- LOLBAS_ExecuteBinaryViaTTDinject\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- LOLBAS_ExecuteBinaryVisualStudioLiveShare\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- LOLBAS_ExecuteMsiexecViaExplorer\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- LOLBAS_ExecutePSViaSyncappvpublishingserver\n2025-03-08 11:17:35,355 [root] DEBUG:    |-- LOLBAS_ExecuteRemoteMSIViaDevinit\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- LOLBAS_ExecuteSuspiciousPowerShellViaRunscripthelper\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- LOLBAS_ExecuteSuspiciousPowerShellViaSQLPS\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- LOLBAS_IndirectCommandExecutionViaConsoleWindowHost\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- LOLBAS_PerformMaliciousActivitiesViaHeadlessBrowser\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- LOLBAS_RegisterDLLViaCertOC\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- LOLBAS_RegisterDLLViaMSIEXEC\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- LOLBAS_RegisterDLLViaOdbcconf\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- LOLBAS_ScriptletProxyExecutionViaPubprn\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- malicious_dynamic_function_loading\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- EncryptPCInfo\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- EnryptDataAgentTeslaHTTP\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- EnryptDataAgentTeslaHTTPT2\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- EnryptDataNanoCore\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- MartiansIE\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- MartiansOffice\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- ReadsMemoryRemoteProcess\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- MimicsAgent\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- MimicsFiletime\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- MimicsIcon\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- MasqueradesProcessName\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- MimikatzModules\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- QuilMinerNetworkBehavior\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- AMSIBypassViaCOMRegistry\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- AccessAutoLogonsViaRegistry\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- AccessBootKeyViaRegistry\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- CreateSuspiciousLNKFiles\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- CredentialAccessViaWindowsCredentialHistory\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- DLLHijackingViaMicrosoftExchange\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- DLLHijackingViaWaaSMedicSvcCOMTypeLib\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- ExecuteFileDownloadedViaOpenSSH\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- ExecuteSafeModeFromSuspiciousProcess\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- ExecuteScriptsViaMicrosoftManagementConsole\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- ExecuteSuspiciousProcessesViaWindowsMSSQLService\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- ExecutionFromSelfExtractingArchive\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- IPAddressDiscoveryViaTrustedProgram\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- LoadDLLViaControlPanel\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- MSOfficeCMDRCE\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- MountCopyToWebDavShare\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- NetworkConnectionViaSuspiciousProcess\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- PotentialLocationDiscoveryViaUnusualProcess\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- PotentialProtocolTunnelingViaLegitUtilities\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- PotentialProtocolTunnelingViaQEMU\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- StoreExecutableRegistry\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- SuspiciousExecutionViaDotnetRemoting\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- SuspiciousExecutionViaMicrosoftExchangeTransportAgent\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- SuspiciousJavaExecutionViaWinScripts\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- SuspiciousScheduledTaskCreationviaMasqueradedXMLFile\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- UsesRestartManagerForSuspiciousActivities\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- ModifiesCerts\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- DotNetCLRUsageLogKnob\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- Modifies_HostFile\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- ModifiesOEMInformation\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- ModifySecurityCenterWarnings\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- ModifiesUACNotify\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- ModifiesDesktopWallpaper\n2025-03-08 11:17:35,356 [root] DEBUG:    |-- ZoneID\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- move_file_on_reboot\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- Multiple_UA\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- NetworkAnomaly\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- NetworkBIND\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- NetworkCnCHTTPSArchive\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- NetworkCnCHTTPSFreeWebHosting\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- NetworkCnCHTTPSGeneric\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- NetworkCnCHTTPSInteractsh\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- NetworkCnCHTTPSOpenSource\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- NetworkCnCHTTPSPasteSite\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- NetworkCnCHTTPSPayload\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- NetworkCnCHTTPSServiceInterface\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- NetworkCnCHTTPSSocialMedia\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- NetworkCnCHTTPSTelegram\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- NetworkCnCHTTPSTempStorageSite\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- NetworkCnCHTTPSTempURLDNS\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- NetworkCnCHTTPSURLShortenerSite\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- NetworkCnCHTTPSUserAgent\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- NetworkCnCSMTPSExfil\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- NetworkCnCSMTPSGeneric\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- NetworkDNSBlockChain\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- NetworkDNSIDN\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- NetworkDNSOpenNIC\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- NetworkDNSPasteSite\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- NetworkDNSReverseProxy\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- NetworkDNSSuspiciousQueryType\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- NetworkDNSTempFileService\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- NetworkDNSTempURLDNS\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- NetworkDNSTunnelingRequest\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- NetworkDNSURLShortener\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- NetworkDOHTLS\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- Suspicious_TLD\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- NetworkDocumentHTTP\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- ExplorerHTTP\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- NetworkFakeUserAgent\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- LegitDomainAbuse\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- NetworkDocumentFile\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- NetworkEXE\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- Tor\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- TorHiddenService\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- Office_Code_Page\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- OfficeAddinLoading\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- OfficeCOMLoad\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- OfficeDotNetLoad\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- OfficeMSHTMLLoad\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- OfficePerfKey\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- OfficeVBLLoad\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- OfficeWMILoad\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- OfficeCVE201711882\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- OfficeCVE201711882Network\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- OfficeCVE202140444\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- OfficeCVE202140444M2\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- OfficeFlashLoad\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- OfficePostScript\n2025-03-08 11:17:35,357 [root] DEBUG:    |-- Office_Macro\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- ChangesTrustCenter_settings\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- DisablesVBATrustAccess\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- OfficeMacroAutoExecution\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- OfficeMacroIOC\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- OfficeMacroMaliciousPredition\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- OfficeMacroSuspicious\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- RTFASLRBypass\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- RTFAnomalyCharacterSet\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- RTFAnomalyVersion\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- RTFEmbeddedContent\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- RTFEmbeddedOfficeFile\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- RTFExploitStatic\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- OfficeSecurity\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- OfficeAnamalousFeature\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- OfficeDDECommand\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- OfficeSuspiciousProcesses\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- OfficeWriteEXE\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- ArmadilloMutex\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- ArmadilloRegKey\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- ADS\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- PersistenceViaAutodialDLLRegistry\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- Autorun\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- Autorun_scheduler\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- PersistenceSafeBoot\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- PersistenceBootexecute\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- PersistenceRegistryScript\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- PersistenceIFEO\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- PersistenceSilentProcessExit\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- PersistenceRDPRegistry\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- PersistenceRDPShadowing\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- PersistenceService\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- PersistenceShimDatabase\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- PowerpoolMutexes\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- PowerShellNetworkConnection\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- PowerShellScriptBlockLogging\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- PowershellCommandSuspicious\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- PowershellDownload\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- PowershellRenamed\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- PowershellRequest\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- PowershellReversed\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- PowershellVariableObfuscation\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- PreventsSafeboot\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- CmdlineProcessDiscovery\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- CreateToolhelp32SnapshotProcessModuleEnumeration\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- EnumeratesRunningProcesses\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- ProcessInterest\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- ProcessNeeded\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- MassDataEncryption\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- CryptoMixMutexes\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- DharmaMutexes\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- RansomwareDMALocker\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- RansomwareExtensions\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- RansomwareFileModifications\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- RansomwareFiles\n2025-03-08 11:17:35,358 [root] DEBUG:    |-- FonixMutexes\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- GandCrabMutexes\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- GermanWiperMutexes\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- MedusaLockerMutexes\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- MedusaLockerRegkeys\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- RansomwareMessage\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- NemtyMutexes\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- NemtyNetworkActivity\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- NemtyNote\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- NemtyRegkeys\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- PYSAMutexes\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- RansomwareRadamant\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- RansomwareRecyclebin\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- RevilMutexes\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- RevilRegkey\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- SatanMutexes\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- SnakeRansomMutexes\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- sodinokibi\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- StopRansomMutexes\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- StopRansomwareCMD\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- StopRansomwareRegistry\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- RansomwareSTOPDJVU\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- BeebusMutexes\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- BlackNETMutexes\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- BlackRATAPIs\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- BlackRATMutexes\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- BlackRATNetworkActivity\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- BlackRATRegistryKeys\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- CRATMutexes\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- DCRatAPIs\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- DCRatFiles\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- DCRatMutex\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- FynloskiMutexes\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- KaraganyEventObjects\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- KaraganyFiles\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- LimeRATMutexes\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- LimeRATRegkeys\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- LodaRATFileBehavior\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- LuminosityRAT\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- ModiRATBehavior\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- NanocoreRAT\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- netwire\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- NjratRegkeys\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- ObliquekRATFiles\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- ObliquekRATMutexes\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- ObliquekRATNetworkActivity\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- OrcusRAT\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- ParallaxMutexes\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- PcClientMutexes\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- PlugxMutexes\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- PoisonIvyMutexes\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- QuasarMutexes\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- RatsnifMutexes\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- SennaMutexes\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- SpynetRat\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- TrochilusRATAPIs\n2025-03-08 11:17:35,359 [root] DEBUG:    |-- VenomRAT\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- WarzoneRATFiles\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- WarzoneRATRegkeys\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- XpertRATFiles\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- XpertRATMutexes\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- XtremeMutexes\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- ReadsSelf\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- Recon_Beacon\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- Fingerprint\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- InstalledApps\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- SystemInfo\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- Accesses_RecycleBin\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- RemcosFiles\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- RemcosMutexes\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- RemcosRegkeys\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- RemcosShellCodeDynamicWrapperX\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- RDPTCPKey\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- UsesRDPClip\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- UsesRemoteDesktopSession\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- RemovesNetworkingIcon\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- RemovesPinnedPrograms\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- RemovesSecurityAndMaintenanceIcon\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- RemovesStartMenuDefaults\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- RemovesUsernameStartMenu\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- RemovesZoneIdADS\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- SpicyHotPotBehavior\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- ScriptCreatedProcess\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- ScriptNetworkActvity\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- SuspiciousJSScript\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- JavaScriptTimer\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- Secure_Login_Phish\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- SecurityXploded_Modules\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- GetClipboardData\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- SetsAutoconfigURL\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- InstallsWinpcap\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- SpoofsProcname\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- CreatesAutorunInf\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- StackPivot\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- StackPivotFileCreated\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- StackPivotProcessCreate\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- StealingClipboardData\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- StealthChildProc\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- StealthFile\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- StealthHiddenExtension\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- StealthHiddenReg\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- StealthHideNotifications\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- StealthSystemProcName\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- StealthTimeout\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- StealthWebHistory\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- Hidden_Window\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- sysinternals_psexec\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- sysinternals_tools\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- LanguageCheckReg\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- QueriesKeyboardLayout\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- QueriesLocaleAPI\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- TampersETW\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- LSATampering\n2025-03-08 11:17:35,360 [root] DEBUG:    |-- TampersPowerShellLogging\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- Flame\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- TerminatesRemoteProcess\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- TerritorialDisputeSIGs\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- TrickBotTaskDelete\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- TrickBotMutexes\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- FleerCivetMutexes\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- LokibotMutexes\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- UrsnifBehavior\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- UpatreFiles\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- UpatreMutexes\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- UserEnum\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- ADFind\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- UsesMSProtocol\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- Virus\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- NeshtaFiles\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- NeshtaMutexes\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- NeshtaRegKeys\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- RenamerMutexes\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- Webmail_Phish\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- OWAWebShellFiles\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- WebShellFiles\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- WebShellProcesses\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- PersistsDotNetDevUtility\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- SpwansDotNetDevUtiliy\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- AltersWindowsUtility\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- DotNETCSCBuild\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- MavInjectLolbin\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- MultipleExplorerInstances\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- OverwritesAccessibilityUtility\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- PotentialLateralMovementViaSMBEXEC\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- PotentialWebShellViaScreenConnectServer\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- ScriptToolExecuted\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- SuspiciousCertutilUse\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- SuspiciousCommandTools\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- SuspiciousMpCmdRunUse\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- SuspiciousPingUse\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- UsesMicrosoftHTMLHelpExecutable\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- UsesPowerShellCopyItem\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- UsesWindowsUtilities\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- UsesWindowsUtilitiesAppCmd\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- UsesWindowsUtilitiesCSVDELDFIDE\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- UsesWindowsUtilitiesCipher\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- UsesWindowsUtilitiesClickOnce\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- UsesWindowsUtilitiesCurl\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- UsesWindowsUtilitiesDSQuery\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- UsesWindowsUtilitiesEsentutl\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- UsesWindowsUtilitiesFinger\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- UsesWindowsUtilitiesMode\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- UsesWindowsUtilitiesNTDSutil\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- UsesWindowsUtilitiesNltest\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- UsesWindowsUtilitiesScheduler\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- UsesWindowsUtilitiesXcopy\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- WMICCommandSuspicious\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- WiperZeroedBytes\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- ScrconsWMIScriptConsumer\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- WMICreateProcess\n2025-03-08 11:17:35,361 [root] DEBUG:    |-- WMIScriptProcess\n2025-03-08 11:17:35,362 [root] DEBUG:    |-- Win32ProcessCreate\n2025-03-08 11:17:35,362 [root] DEBUG:    |-- AllapleMutexes\n2025-03-08 11:17:35,362 [root] DEBUG:    |-- LinuxDeletesFiles\n2025-03-08 11:17:35,362 [root] DEBUG:    |-- LinuxDropsFiles\n2025-03-08 11:17:35,362 [root] DEBUG:    |-- LinuxReadsFiles\n2025-03-08 11:17:35,362 [root] DEBUG:    `-- LinuxWritesFiles\n2025-03-08 11:17:35,362 [root] DEBUG: Imported \"reporting\" modules:\n2025-03-08 11:17:35,362 [root] DEBUG:    |-- BinGraph\n2025-03-08 11:17:35,362 [root] DEBUG:    |-- CAPASummary\n2025-03-08 11:17:35,362 [root] DEBUG:    |-- JsonDump\n2025-03-08 11:17:35,362 [root] DEBUG:    |-- MongoDB\n2025-03-08 11:17:35,362 [root] DEBUG:    |-- PCAP2CERT\n2025-03-08 11:17:35,362 [root] DEBUG:    |-- ReportHTML\n2025-03-08 11:17:35,362 [root] DEBUG:    |-- ReportHTMLSummary\n2025-03-08 11:17:35,362 [root] DEBUG:    `-- ReportPDF\n2025-03-08 11:17:35,362 [root] DEBUG: Imported \"feeds\" modules:\n2025-03-08 11:17:35,362 [root] DEBUG:    `-- AbuseCH_SSL\n2025-03-08 11:17:35,362 [root] DEBUG: Imported \"machinery\" modules:\n2025-03-08 11:17:35,362 [root] DEBUG:    `-- Proxmox\n2025-03-08 11:17:35,362 [Task 15] [root] DEBUG: Processing task\n2025-03-08 11:17:35,369 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"AnalysisInfo\" on analysis at \"/opt/CAPEv2/storage/analyses/15\"\n2025-03-08 11:17:35,376 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Processing module autoruns not found in configuration file\n2025-03-08 11:17:35,376 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"BehaviorAnalysis\" on analysis at \"/opt/CAPEv2/storage/analyses/15\"\n2025-03-08 11:17:35,399 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Debug\" on analysis at \"/opt/CAPEv2/storage/analyses/15\"\n2025-03-08 11:17:35,400 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Processing module hollowshunter not found in configuration file\n2025-03-08 11:17:35,400 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"NetworkAnalysis\" on analysis at \"/opt/CAPEv2/storage/analyses/15\"\n2025-03-08 11:17:35,400 [Task 15] [modules.processing.network] DEBUG: The PCAP file does not exist at path \"/opt/CAPEv2/storage/analyses/15/dump.pcap\"\n2025-03-08 11:17:35,400 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Suricata\" on analysis at \"/opt/CAPEv2/storage/analyses/15\"\n2025-03-08 11:17:35,400 [Task 15] [modules.processing.suricata] DEBUG: Unable to Run Suricata: Pcap file /opt/CAPEv2/storage/analyses/15/dump.pcap does not exist. Did you run analysis with live connection?\n2025-03-08 11:17:35,401 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Sysmon\" on analysis at \"/opt/CAPEv2/storage/analyses/15\"\n2025-03-08 11:17:35,401 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"UrlAnalysis\" on analysis at \"/opt/CAPEv2/storage/analyses/15\"\n2025-03-08 11:17:35,401 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"script_log_processing\" on analysis at \"/opt/CAPEv2/storage/analyses/15\"\n2025-03-08 11:17:35,401 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"ProcessMemory\" on analysis at \"/opt/CAPEv2/storage/analyses/15\"\n2025-03-08 11:17:35,470 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Applying signature overlays for signatures: creates_exe\n2025-03-08 11:17:35,472 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running 285 evented signatures\n2025-03-08 11:17:35,472 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- packer_themida\n2025-03-08 11:17:35,472 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- stealth_network\n2025-03-08 11:17:35,472 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- disable_driver_via_blocklist\n2025-03-08 11:17:35,472 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- disable_driver_via_hvcidisallowedimages\n2025-03-08 11:17:35,472 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- disable_hypervisor_protected_code_integrity\n2025-03-08 11:17:35,472 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- pendingfilerenameoperations_Operations\n2025-03-08 11:17:35,472 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- anomalous_deletefile\n2025-03-08 11:17:35,472 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antiav_360_libs\n2025-03-08 11:17:35,472 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antiav_ahnlab_libs\n2025-03-08 11:17:35,472 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antiav_avast_libs\n2025-03-08 11:17:35,472 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antiav_bitdefender_libs\n2025-03-08 11:17:35,472 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antiav_bullgaurd_libs\n2025-03-08 11:17:35,472 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antiav_emsisoft_libs\n2025-03-08 11:17:35,472 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antiav_qurb_libs\n2025-03-08 11:17:35,472 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antiav_servicestop\n2025-03-08 11:17:35,472 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antidebug_addvectoredexceptionhandler\n2025-03-08 11:17:35,472 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antiav_apioverride_libs\n2025-03-08 11:17:35,472 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antidebug_checkremotedebuggerpresent\n2025-03-08 11:17:35,472 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antidebug_debugactiveprocess\n2025-03-08 11:17:35,472 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antidebug_gettickcount\n2025-03-08 11:17:35,472 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antidebug_guardpages\n2025-03-08 11:17:35,472 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antidebug_ntcreatethreadex\n2025-03-08 11:17:35,472 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antiav_nthookengine_libs\n2025-03-08 11:17:35,473 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antidebug_ntsetinformationthread\n2025-03-08 11:17:35,473 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antidebug_outputdebugstring\n2025-03-08 11:17:35,473 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antidebug_setunhandledexceptionfilter\n2025-03-08 11:17:35,473 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antidebug_windows\n2025-03-08 11:17:35,473 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antiemu_wine_func\n2025-03-08 11:17:35,473 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antisandbox_check_userdomain\n2025-03-08 11:17:35,473 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antisandbox_cuckoo\n2025-03-08 11:17:35,473 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antisandbox_cuckoocrash\n2025-03-08 11:17:35,473 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antisandbox_foregroundwindows\n2025-03-08 11:17:35,473 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antisandbox_mouse_hook\n2025-03-08 11:17:35,473 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antisandbox_restart\n2025-03-08 11:17:35,473 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antisandbox_sboxie_libs\n2025-03-08 11:17:35,473 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antisandbox_sboxie_objects\n2025-03-08 11:17:35,473 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antisandbox_script_timer\n2025-03-08 11:17:35,473 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antisandbox_sleep\n2025-03-08 11:17:35,473 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antisandbox_sunbelt_libs\n2025-03-08 11:17:35,473 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antisandbox_suspend\n2025-03-08 11:17:35,473 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antisandbox_unhook\n2025-03-08 11:17:35,473 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antivm_directory_objects\n2025-03-08 11:17:35,473 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antivm_generic_disk\n2025-03-08 11:17:35,473 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antivm_generic_disk_setupapi\n2025-03-08 11:17:35,473 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antivm_generic_scsi\n2025-03-08 11:17:35,473 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antivm_generic_services\n2025-03-08 11:17:35,473 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antivm_generic_system\n2025-03-08 11:17:35,473 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antivm_checks_available_memory\n2025-03-08 11:17:35,473 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antivm_network_adapters\n2025-03-08 11:17:35,473 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- detect_virtualization_via_recent_files\n2025-03-08 11:17:35,473 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antivm_vbox_libs\n2025-03-08 11:17:35,473 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antivm_vbox_provname\n2025-03-08 11:17:35,473 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antivm_vbox_window\n2025-03-08 11:17:35,473 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antivm_vmware_events\n2025-03-08 11:17:35,473 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- antivm_vmware_libs\n2025-03-08 11:17:35,473 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- api_spamming\n2025-03-08 11:17:35,473 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- api_uuidfromstringa\n2025-03-08 11:17:35,473 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- banker_prinimalka\n2025-03-08 11:17:35,473 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- bcdedit_command\n2025-03-08 11:17:35,473 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- bootkit\n2025-03-08 11:17:35,473 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- potential_overwrite_mbr\n2025-03-08 11:17:35,473 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- suspicious_ioctl_scsipassthough\n2025-03-08 11:17:35,473 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- browser_needed\n2025-03-08 11:17:35,474 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- browser_scanbox\n2025-03-08 11:17:35,474 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- firefox_disables_process_tab\n2025-03-08 11:17:35,474 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- regsvr32_squiblydoo_dll_load\n2025-03-08 11:17:35,474 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- uac_bypass_cmstp\n2025-03-08 11:17:35,474 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- uac_bypass_eventvwr\n2025-03-08 11:17:35,474 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- uac_bypass_windows_Backup\n2025-03-08 11:17:35,474 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- clickfraud_cookies\n2025-03-08 11:17:35,474 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- clickfraud_volume\n2025-03-08 11:17:35,474 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- queries_computer_name\n2025-03-08 11:17:35,474 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- queries_user_name\n2025-03-08 11:17:35,474 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- creates_largekey\n2025-03-08 11:17:35,474 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- creates_nullvalue\n2025-03-08 11:17:35,474 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- access_windows_passwords_vault\n2025-03-08 11:17:35,474 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- dump_lsa_via_windows_error_reporting\n2025-03-08 11:17:35,474 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- lsass_credential_dumping\n2025-03-08 11:17:35,474 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- critical_process\n2025-03-08 11:17:35,474 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- generates_crypto_key\n2025-03-08 11:17:35,474 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- cryptopool_domains\n2025-03-08 11:17:35,474 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- cve_2014_6332\n2025-03-08 11:17:35,474 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- cve_2015_2419_js\n2025-03-08 11:17:35,474 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- cve_2016-0189\n2025-03-08 11:17:35,474 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- cve_2016_7200\n2025-03-08 11:17:35,474 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- dead_connect\n2025-03-08 11:17:35,474 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- dead_link\n2025-03-08 11:17:35,474 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- debugs_self\n2025-03-08 11:17:35,474 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- decoy_image\n2025-03-08 11:17:35,474 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- deletes_consolehost_history\n2025-03-08 11:17:35,474 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- deletes_self\n2025-03-08 11:17:35,474 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- deletes_shadow_copies\n2025-03-08 11:17:35,474 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- deletes_system_state_backup\n2025-03-08 11:17:35,474 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- dep_bypass\n2025-03-08 11:17:35,474 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- dep_disable\n2025-03-08 11:17:35,474 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- disables_mappeddrives_autodisconnect\n2025-03-08 11:17:35,474 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- disables_spdy\n2025-03-08 11:17:35,474 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- disables_wfp\n2025-03-08 11:17:35,474 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- add_windows_defender_exclusions\n2025-03-08 11:17:35,474 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- dll_load_uncommon_file_types\n2025-03-08 11:17:35,474 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- document_script_exe_drop\n2025-03-08 11:17:35,474 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- guloader_apis\n2025-03-08 11:17:35,474 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- driver_load\n2025-03-08 11:17:35,475 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- dynamic_function_loading\n2025-03-08 11:17:35,475 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- exec_crash\n2025-03-08 11:17:35,475 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- process_creation_suspicious_location\n2025-03-08 11:17:35,475 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- exploit_getbasekerneladdress\n2025-03-08 11:17:35,475 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- exploit_gethaldispatchtable\n2025-03-08 11:17:35,475 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- exploit_heapspray\n2025-03-08 11:17:35,475 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- koadic_apis\n2025-03-08 11:17:35,475 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- koadic_network_activity\n2025-03-08 11:17:35,475 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- downloads_from_filehosting\n2025-03-08 11:17:35,475 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- generic_phish\n2025-03-08 11:17:35,475 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- http_request\n2025-03-08 11:17:35,475 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- infostealer_browser\n2025-03-08 11:17:35,475 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- infostealer_browser_password\n2025-03-08 11:17:35,475 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- infostealer_cookies\n2025-03-08 11:17:35,475 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- cryptbot_network\n2025-03-08 11:17:35,475 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- infostealer_keylog\n2025-03-08 11:17:35,475 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- masslogger_artifacts\n2025-03-08 11:17:35,475 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- masslogger_version\n2025-03-08 11:17:35,475 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- purplewave_network_activity\n2025-03-08 11:17:35,475 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- quilclipper_behavior\n2025-03-08 11:17:35,475 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- raccoon_behavior\n2025-03-08 11:17:35,475 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- captures_screenshot\n2025-03-08 11:17:35,475 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- vidar_behavior\n2025-03-08 11:17:35,475 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- injection_createremotethread\n2025-03-08 11:17:35,475 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- injection_explorer\n2025-03-08 11:17:35,475 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- injection_needextension\n2025-03-08 11:17:35,475 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- injection_network_traffic\n2025-03-08 11:17:35,475 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- injection_runpe\n2025-03-08 11:17:35,475 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- injection_themeinitapihook\n2025-03-08 11:17:35,475 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- resumethread_remote_process\n2025-03-08 11:17:35,475 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- internet_dropper\n2025-03-08 11:17:35,475 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- escalate_privilege_via_named_pipe\n2025-03-08 11:17:35,475 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- ipc_namedpipe\n2025-03-08 11:17:35,475 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- js_phish\n2025-03-08 11:17:35,475 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- js_suspicious_redirect\n2025-03-08 11:17:35,475 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- execute_binary_via_internet_explorer_exporter\n2025-03-08 11:17:35,475 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- execute_binary_via_run_exe_helper_utility\n2025-03-08 11:17:35,475 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- execute_ps_via_syncappvpublishingserver\n2025-03-08 11:17:35,475 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- malicious_dynamic_function_loading\n2025-03-08 11:17:35,475 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- encrypt_pcinfo\n2025-03-08 11:17:35,475 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- encrypt_data_agenttesla_http\n2025-03-08 11:17:35,476 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- encrypt_data_agentteslat2_http\n2025-03-08 11:17:35,476 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- encrypt_data_nanocore\n2025-03-08 11:17:35,476 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- reads_memory_remote_process\n2025-03-08 11:17:35,476 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- mimics_filetime\n2025-03-08 11:17:35,476 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- quilclipper_behavior\n2025-03-08 11:17:35,476 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- amsi_bypass_via_com_registry\n2025-03-08 11:17:35,476 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- access_auto_logons_via_registry\n2025-03-08 11:17:35,476 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- access_boot_key_via_registry\n2025-03-08 11:17:35,476 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- create_suspicious_lnk_files\n2025-03-08 11:17:35,476 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- credential_access_via_windows_credential_history\n2025-03-08 11:17:35,476 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- dll_hijacking_via_microsoft_exchange\n2025-03-08 11:17:35,476 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- dll_hijacking_via_waas_medic_svc_com_typelib\n2025-03-08 11:17:35,476 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- execute_file_downloaded_via_openssh\n2025-03-08 11:17:35,476 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- execute_safe_mode_from_suspicious_process\n2025-03-08 11:17:35,476 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- execute_scripts_via_microsoft_management_console\n2025-03-08 11:17:35,476 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- execute_suspicious_processes_via_windows_mssql_service\n2025-03-08 11:17:35,476 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- execution_from_self_extracting_archive\n2025-03-08 11:17:35,476 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- ip_address_discovery_via_trusted_program\n2025-03-08 11:17:35,476 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- load_dll_via_control_panel\n2025-03-08 11:17:35,476 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- network_connection_via_suspicious_process\n2025-03-08 11:17:35,476 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- potential_location_discovery_via_unusual_process\n2025-03-08 11:17:35,476 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- store_executable_registry\n2025-03-08 11:17:35,476 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- Suspicious_Execution_Via_MicrosoftExchangeTransportAgent\n2025-03-08 11:17:35,476 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- suspicious_java_execution_via_win_scripts\n2025-03-08 11:17:35,476 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- Suspicious_Scheduled_Task_Creation_Via_Masqueraded_XML_File\n2025-03-08 11:17:35,476 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- uses_restart_manager_for_suspicious_activities\n2025-03-08 11:17:35,476 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- modify_desktop_wallpaper\n2025-03-08 11:17:35,476 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- modify_zoneid_ads\n2025-03-08 11:17:35,476 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- move_file_on_reboot\n2025-03-08 11:17:35,476 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- multiple_useragents\n2025-03-08 11:17:35,476 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- network_anomaly\n2025-03-08 11:17:35,476 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- network_bind\n2025-03-08 11:17:35,476 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_https_archive\n2025-03-08 11:17:35,476 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_https_free_webshoting\n2025-03-08 11:17:35,476 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_https_generic\n2025-03-08 11:17:35,476 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_https_temp_urldns\n2025-03-08 11:17:35,476 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_https_opensource\n2025-03-08 11:17:35,476 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_https_pastesite\n2025-03-08 11:17:35,476 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_https_payload\n2025-03-08 11:17:35,477 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_https_serviceinterface\n2025-03-08 11:17:35,477 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_https_socialmedia\n2025-03-08 11:17:35,477 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_https_telegram\n2025-03-08 11:17:35,477 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_https_tempstorage\n2025-03-08 11:17:35,477 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_https_temp_urldns\n2025-03-08 11:17:35,477 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_https_urlshortener\n2025-03-08 11:17:35,477 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_https_useragent\n2025-03-08 11:17:35,477 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_smtps_exfil\n2025-03-08 11:17:35,477 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_smtps_generic\n2025-03-08 11:17:35,477 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- network_dns_idn\n2025-03-08 11:17:35,477 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- network_dns_suspicious_querytype\n2025-03-08 11:17:35,477 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- network_dns_tunneling_request\n2025-03-08 11:17:35,477 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- explorer_http\n2025-03-08 11:17:35,477 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- network_fake_useragent\n2025-03-08 11:17:35,477 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- legitimate_domain_abuse\n2025-03-08 11:17:35,477 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- network_downloader_exe\n2025-03-08 11:17:35,477 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- network_tor\n2025-03-08 11:17:35,477 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- office_com_load\n2025-03-08 11:17:35,477 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- office_dotnet_load\n2025-03-08 11:17:35,477 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- office_mshtml_load\n2025-03-08 11:17:35,477 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- office_vb_load\n2025-03-08 11:17:35,477 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- office_wmi_load\n2025-03-08 11:17:35,477 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- office_cve2017_11882_network\n2025-03-08 11:17:35,477 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- office_cve_2021_40444\n2025-03-08 11:17:35,477 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- office_cve_2021_40444_m2\n2025-03-08 11:17:35,477 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- office_flash_load\n2025-03-08 11:17:35,477 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- office_postscript\n2025-03-08 11:17:35,477 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- office_suspicious_processes\n2025-03-08 11:17:35,477 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- persistence_via_autodial_dll_registry\n2025-03-08 11:17:35,477 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- persistence_autorun\n2025-03-08 11:17:35,477 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- persistence_autorun_tasks\n2025-03-08 11:17:35,477 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- persistence_bootexecute\n2025-03-08 11:17:35,477 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- persistence_registry_script\n2025-03-08 11:17:35,477 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- powershell_download\n2025-03-08 11:17:35,477 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- powershell_request\n2025-03-08 11:17:35,477 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- createtoolhelp32snapshot_module_enumeration\n2025-03-08 11:17:35,477 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- enumerates_running_processes\n2025-03-08 11:17:35,477 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- process_interest\n2025-03-08 11:17:35,477 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- process_needed\n2025-03-08 11:17:35,477 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- mass_data_encryption\n2025-03-08 11:17:35,477 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- ransomware_dmalocker\n2025-03-08 11:17:35,478 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- ransomware_file_modifications\n2025-03-08 11:17:35,478 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- ransomware_message\n2025-03-08 11:17:35,478 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- nemty_network_activity\n2025-03-08 11:17:35,478 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- nemty_note\n2025-03-08 11:17:35,478 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- sodinokibi_behavior\n2025-03-08 11:17:35,478 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- stop_ransomware_registry\n2025-03-08 11:17:35,478 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- blackrat_apis\n2025-03-08 11:17:35,478 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- blackrat_network_activity\n2025-03-08 11:17:35,478 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- blackrat_registry_keys\n2025-03-08 11:17:35,478 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- dcrat_behavior\n2025-03-08 11:17:35,478 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- karagany_system_event_objects\n2025-03-08 11:17:35,478 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- rat_luminosity\n2025-03-08 11:17:35,478 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- rat_nanocore\n2025-03-08 11:17:35,478 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- netwire_behavior\n2025-03-08 11:17:35,478 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- obliquerat_network_activity\n2025-03-08 11:17:35,478 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- orcusrat_behavior\n2025-03-08 11:17:35,478 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- trochilusrat_apis\n2025-03-08 11:17:35,478 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- recon_beacon\n2025-03-08 11:17:35,478 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- recon_programs\n2025-03-08 11:17:35,478 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- recon_systeminfo\n2025-03-08 11:17:35,478 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- accesses_recyclebin\n2025-03-08 11:17:35,478 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- remcos_shell_code_dynamic_wrapper_x\n2025-03-08 11:17:35,478 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- removes_zoneid_ads\n2025-03-08 11:17:35,478 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- script_created_process\n2025-03-08 11:17:35,478 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- script_network_activity\n2025-03-08 11:17:35,478 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- suspicious_js_script\n2025-03-08 11:17:35,478 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- javascript_timer\n2025-03-08 11:17:35,478 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- secure_login_phishing\n2025-03-08 11:17:35,478 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- securityxploded_modules\n2025-03-08 11:17:35,478 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- get_clipboard_data\n2025-03-08 11:17:35,478 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- sets_autoconfig_url\n2025-03-08 11:17:35,478 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- spoofs_procname\n2025-03-08 11:17:35,478 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- stack_pivot\n2025-03-08 11:17:35,478 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- stack_pivot_file_created\n2025-03-08 11:17:35,478 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- stack_pivot_process_create\n2025-03-08 11:17:35,478 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- set_clipboard_data\n2025-03-08 11:17:35,478 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- stealth_childproc\n2025-03-08 11:17:35,478 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- stealth_system_procname\n2025-03-08 11:17:35,478 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- stealth_timeout\n2025-03-08 11:17:35,478 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- stealth_window\n2025-03-08 11:17:35,478 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- queries_keyboard_layout\n2025-03-08 11:17:35,479 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- queries_locale_api\n2025-03-08 11:17:35,479 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- terminates_remote_process\n2025-03-08 11:17:35,479 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- trickbot_task_delete\n2025-03-08 11:17:35,479 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- user_enum\n2025-03-08 11:17:35,479 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- virus\n2025-03-08 11:17:35,479 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- neshta_files\n2025-03-08 11:17:35,479 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- neshta_regkeys\n2025-03-08 11:17:35,479 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- webmail_phish\n2025-03-08 11:17:35,479 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- persists_dev_util\n2025-03-08 11:17:35,479 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- spawns_dev_util\n2025-03-08 11:17:35,479 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- alters_windows_utility\n2025-03-08 11:17:35,479 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- overwrites_accessibility_utility\n2025-03-08 11:17:35,479 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- Potential_Lateral_Movement_Via_SMBEXEC\n2025-03-08 11:17:35,479 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- potential_WebShell_Via_ScreenConnectServer\n2025-03-08 11:17:35,479 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- uses_Microsoft_HTML_Help_Executable\n2025-03-08 11:17:35,479 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- uses_windows_utilities_to_create_scheduled_task\n2025-03-08 11:17:35,479 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- wiper_zeroedbytes\n2025-03-08 11:17:35,479 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- wmi_create_process\n2025-03-08 11:17:35,479 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       |-- wmi_script_process\n2025-03-08 11:17:35,479 [Task 15] [lib.cuckoo.core.plugins] DEBUG:       `-- win32_process_create\n2025-03-08 11:17:35,518 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running non-evented signatures\n2025-03-08 11:17:35,518 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antianalysis_tls_section\"\n2025-03-08 11:17:35,518 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivirus_clamav\"\n2025-03-08 11:17:35,519 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivirus_virustotal\"\n2025-03-08 11:17:35,519 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bad_certs\"\n2025-03-08 11:17:35,519 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bad_ssl_certs\"\n2025-03-08 11:17:35,519 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_zeus_p2p\"\n2025-03-08 11:17:35,519 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_zeus_url\"\n2025-03-08 11:17:35,519 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"binary_yara\"\n2025-03-08 11:17:35,519 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Failed to run signature \"binary_yara\": 'target'\n2025-03-08 11:17:35,519 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_athenahttp\"\n2025-03-08 11:17:35,519 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_dirtjumper\"\n2025-03-08 11:17:35,519 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_drive\"\n2025-03-08 11:17:35,520 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_drive2\"\n2025-03-08 11:17:35,520 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_madness\"\n2025-03-08 11:17:35,520 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"phishing_kit_detected\"\n2025-03-08 11:17:35,520 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"phishing_kit_detected\"\n2025-03-08 11:17:35,520 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"phishing_kit_detected\"\n2025-03-08 11:17:35,520 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"family_proxyback\"\n2025-03-08 11:17:35,520 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_antianalysis\"\n2025-03-08 11:17:35,520 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_collection\"\n2025-03-08 11:17:35,520 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_communication\"\n2025-03-08 11:17:35,520 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_compiler\"\n2025-03-08 11:17:35,521 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_datamanipulation\"\n2025-03-08 11:17:35,521 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_executable\"\n2025-03-08 11:17:35,521 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_hostinteraction\"\n2025-03-08 11:17:35,521 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_impact\"\n2025-03-08 11:17:35,521 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_lib\"\n2025-03-08 11:17:35,521 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_linking\"\n2025-03-08 11:17:35,521 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_loadcode\"\n2025-03-08 11:17:35,521 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_malwarefamily\"\n2025-03-08 11:17:35,521 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_nursery\"\n2025-03-08 11:17:35,521 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_persistence\"\n2025-03-08 11:17:35,521 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_runtime\"\n2025-03-08 11:17:35,521 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_targeting\"\n2025-03-08 11:17:35,521 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"threatfox\"\n2025-03-08 11:17:35,521 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"log4shell\"\n2025-03-08 11:17:35,522 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"mimics_extension\"\n2025-03-08 11:17:35,522 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_ip_exe\"\n2025-03-08 11:17:35,522 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dga\"\n2025-03-08 11:17:35,522 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dga_fraunhofer\"\n2025-03-08 11:17:35,522 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dyndns\"\n2025-03-08 11:17:35,522 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_icmp\"\n2025-03-08 11:17:35,522 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_irc\"\n2025-03-08 11:17:35,522 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_open_proxy\"\n2025-03-08 11:17:35,522 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_smtp\"\n2025-03-08 11:17:35,522 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_torgateway\"\n2025-03-08 11:17:35,522 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"origin_langid\"\n2025-03-08 11:17:35,522 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"origin_resource_langid\"\n2025-03-08 11:17:35,523 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"overlay\"\n2025-03-08 11:17:35,523 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_unknown_pe_section_name\"\n2025-03-08 11:17:35,523 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_aspack\"\n2025-03-08 11:17:35,523 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_aspirecrypt\"\n2025-03-08 11:17:35,523 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_bedsprotector\"\n2025-03-08 11:17:35,523 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_confuser\"\n2025-03-08 11:17:35,523 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_enigma\"\n2025-03-08 11:17:35,523 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_entropy\"\n2025-03-08 11:17:35,523 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_mpress\"\n2025-03-08 11:17:35,523 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_nate\"\n2025-03-08 11:17:35,523 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_nspack\"\n2025-03-08 11:17:35,523 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_smartassembly\"\n2025-03-08 11:17:35,523 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_spices\"\n2025-03-08 11:17:35,523 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_themida\"\n2025-03-08 11:17:35,524 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_titan\"\n2025-03-08 11:17:35,524 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_upx\"\n2025-03-08 11:17:35,524 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_vmprotect\"\n2025-03-08 11:17:35,524 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_yoda\"\n2025-03-08 11:17:35,524 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"punch_plus_plus_pcres\"\n2025-03-08 11:17:35,524 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"procmem_yara\"\n2025-03-08 11:17:35,524 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"recon_checkip\"\n2025-03-08 11:17:35,524 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_authenticode\"\n2025-03-08 11:17:35,524 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"invalid_authenticode_signature\"\n2025-03-08 11:17:35,524 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_dotnet_anomaly\"\n2025-03-08 11:17:35,524 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_java\"\n2025-03-08 11:17:35,524 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_pdf\"\n2025-03-08 11:17:35,524 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"contains_pe_overlay\"\n2025-03-08 11:17:35,524 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_pe_anomaly\"\n2025-03-08 11:17:35,525 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"pe_compile_timestomping\"\n2025-03-08 11:17:35,525 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_pe_pdbpath\"\n2025-03-08 11:17:35,525 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_rat_config\"\n2025-03-08 11:17:35,525 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_versioninfo_anomaly\"\n2025-03-08 11:17:35,525 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suricata_alert\"\n2025-03-08 11:17:35,525 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_html_body\"\n2025-03-08 11:17:35,525 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_html_name\"\n2025-03-08 11:17:35,525 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_html_title\"\n2025-03-08 11:17:35,525 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_devicetree_1\"\n2025-03-08 11:17:35,525 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_handles_1\"\n2025-03-08 11:17:35,525 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_ldrmodules_1\"\n2025-03-08 11:17:35,525 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_ldrmodules_2\"\n2025-03-08 11:17:35,526 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_malfind_1\"\n2025-03-08 11:17:35,526 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_malfind_2\"\n2025-03-08 11:17:35,526 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_modscan_1\"\n2025-03-08 11:17:35,526 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_svcscan_1\"\n2025-03-08 11:17:35,526 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_svcscan_2\"\n2025-03-08 11:17:35,526 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_svcscan_3\"\n2025-03-08 11:17:35,526 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"whois_create\"\n2025-03-08 11:17:35,526 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"accesses_mailslot\"\n2025-03-08 11:17:35,526 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"accesses_netlogon_regkey\"\n2025-03-08 11:17:35,526 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"accesses_public_folder\"\n2025-03-08 11:17:35,526 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"accesses_sysvol\"\n2025-03-08 11:17:35,527 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"writes_sysvol\"\n2025-03-08 11:17:35,527 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"adds_admin_user\"\n2025-03-08 11:17:35,527 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"adds_user\"\n2025-03-08 11:17:35,527 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"overwrites_admin_password\"\n2025-03-08 11:17:35,527 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antianalysis_detectfile\"\n2025-03-08 11:17:35,528 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antianalysis_detectreg\"\n2025-03-08 11:17:35,532 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_attachment_manager\"\n2025-03-08 11:17:35,532 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_detectfile\"\n2025-03-08 11:17:35,533 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_detectreg\"\n2025-03-08 11:17:35,550 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_srp\"\n2025-03-08 11:17:35,550 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_whitespace\"\n2025-03-08 11:17:35,550 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antidebug_devices\"\n2025-03-08 11:17:35,551 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiemu_windefend\"\n2025-03-08 11:17:35,551 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiemu_wine_reg\"\n2025-03-08 11:17:35,551 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_cuckoo_files\"\n2025-03-08 11:17:35,551 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_fortinet_files\"\n2025-03-08 11:17:35,551 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_joe_anubis_files\"\n2025-03-08 11:17:35,551 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_sboxie_mutex\"\n2025-03-08 11:17:35,551 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_sunbelt_files\"\n2025-03-08 11:17:35,552 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_threattrack_files\"\n2025-03-08 11:17:35,552 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_bochs_keys\"\n2025-03-08 11:17:35,552 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_generic_bios\"\n2025-03-08 11:17:35,552 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_generic_cpu\"\n2025-03-08 11:17:35,552 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_generic_diskreg\"\n2025-03-08 11:17:35,553 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_hyperv_keys\"\n2025-03-08 11:17:35,554 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_parallels_keys\"\n2025-03-08 11:17:35,555 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vbox_devices\"\n2025-03-08 11:17:35,555 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vbox_files\"\n2025-03-08 11:17:35,556 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vbox_keys\"\n2025-03-08 11:17:35,558 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vmware_devices\"\n2025-03-08 11:17:35,558 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vmware_files\"\n2025-03-08 11:17:35,558 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vmware_keys\"\n2025-03-08 11:17:35,559 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vmware_mutexes\"\n2025-03-08 11:17:35,559 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vpc_files\"\n2025-03-08 11:17:35,560 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vpc_keys\"\n2025-03-08 11:17:35,560 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vpc_mutex\"\n2025-03-08 11:17:35,560 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_xen_keys\"\n2025-03-08 11:17:35,562 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"asyncrat_mutex\"\n2025-03-08 11:17:35,562 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"gulpix_behavior\"\n2025-03-08 11:17:35,562 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ketrican_regkeys\"\n2025-03-08 11:17:35,562 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"okrum_mutexes\"\n2025-03-08 11:17:35,562 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_cridex\"\n2025-03-08 11:17:35,562 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"geodo_banking_trojan\"\n2025-03-08 11:17:35,563 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_spyeye_mutexes\"\n2025-03-08 11:17:35,563 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_zeus_mutex\"\n2025-03-08 11:17:35,564 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bitcoin_opencl\"\n2025-03-08 11:17:35,564 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"accesses_primary_patition\"\n2025-03-08 11:17:35,564 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"direct_hdd_access\"\n2025-03-08 11:17:35,564 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"enumerates_physical_drives\"\n2025-03-08 11:17:35,564 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"physical_drive_access\"\n2025-03-08 11:17:35,564 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_russkill\"\n2025-03-08 11:17:35,564 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"browser_addon\"\n2025-03-08 11:17:35,564 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"chromium_browser_extension_directory\"\n2025-03-08 11:17:35,564 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"browser_helper_object\"\n2025-03-08 11:17:35,565 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"browser_security\"\n2025-03-08 11:17:35,565 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"browser_startpage\"\n2025-03-08 11:17:35,565 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ie_disables_process_tab\"\n2025-03-08 11:17:35,565 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"odbcconf_bypass\"\n2025-03-08 11:17:35,565 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"squiblydoo_bypass\"\n2025-03-08 11:17:35,565 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"squiblytwo_bypass\"\n2025-03-08 11:17:35,565 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bypass_firewall\"\n2025-03-08 11:17:35,566 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"checks_uac_status\"\n2025-03-08 11:17:35,566 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uac_bypass_cmstpcom\"\n2025-03-08 11:17:35,566 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uac_bypass_delegateexecute_sdclt\"\n2025-03-08 11:17:35,566 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uac_bypass_fodhelper\"\n2025-03-08 11:17:35,567 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cape_extracted_content\"\n2025-03-08 11:17:35,567 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"carberp_mutex\"\n2025-03-08 11:17:35,567 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"clears_logs\"\n2025-03-08 11:17:35,567 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_obfuscation\"\n2025-03-08 11:17:35,567 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_switches\"\n2025-03-08 11:17:35,567 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_terminate\"\n2025-03-08 11:17:35,567 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_forfiles_wildcard\"\n2025-03-08 11:17:35,567 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_http_link\"\n2025-03-08 11:17:35,567 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_long_string\"\n2025-03-08 11:17:35,567 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_reversed_http_link\"\n2025-03-08 11:17:35,567 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"long_commandline\"\n2025-03-08 11:17:35,567 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_renamed_commandline\"\n2025-03-08 11:17:35,568 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_account_discovery_cmd\"\n2025-03-08 11:17:35,568 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_currently_loggedin_user_cmd\"\n2025-03-08 11:17:35,568 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_info_discovery_cmd\"\n2025-03-08 11:17:35,568 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_info_discovery_pwsh\"\n2025-03-08 11:17:35,568 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_network_discovery_cmd\"\n2025-03-08 11:17:35,568 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_network_discovery_pwsh\"\n2025-03-08 11:17:35,568 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_user_discovery_cmd\"\n2025-03-08 11:17:35,568 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"copies_self\"\n2025-03-08 11:17:35,568 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"credwiz_credentialaccess\"\n2025-03-08 11:17:35,568 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"enables_wdigest\"\n2025-03-08 11:17:35,568 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"vaultcmd_credentialaccess\"\n2025-03-08 11:17:35,568 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"file_credential_store_access\"\n2025-03-08 11:17:35,569 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"file_credential_store_write\"\n2025-03-08 11:17:35,569 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"kerberos_credential_access_via_rubeus\"\n2025-03-08 11:17:35,569 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"registry_credential_dumping\"\n2025-03-08 11:17:35,569 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"registry_credential_store_access\"\n2025-03-08 11:17:35,569 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Failed to run signature \"registry_credential_store_access\": 'target'\n2025-03-08 11:17:35,569 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"registry_lsa_secrets_access\"\n2025-03-08 11:17:35,569 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"comsvcs_credentialdump\"\n2025-03-08 11:17:35,569 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cryptomining_stratum_command\"\n2025-03-08 11:17:35,570 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cypherit_mutexes\"\n2025-03-08 11:17:35,570 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"darkcomet_regkeys\"\n2025-03-08 11:17:35,570 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"datop_loader\"\n2025-03-08 11:17:35,570 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"deepfreeze_mutex\"\n2025-03-08 11:17:35,570 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"deletes_executed_files\"\n2025-03-08 11:17:35,570 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_app_launch\"\n2025-03-08 11:17:35,570 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_auto_app_termination\"\n2025-03-08 11:17:35,571 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_appv_virtualization\"\n2025-03-08 11:17:35,571 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_backups\"\n2025-03-08 11:17:35,571 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_browser_warn\"\n2025-03-08 11:17:35,571 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_context_menus\"\n2025-03-08 11:17:35,572 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_cpl_disable\"\n2025-03-08 11:17:35,572 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_crashdumps\"\n2025-03-08 11:17:35,572 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_event_logging\"\n2025-03-08 11:17:35,572 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_folder_options\"\n2025-03-08 11:17:35,572 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_notificationcenter\"\n2025-03-08 11:17:35,572 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_power_options\"\n2025-03-08 11:17:35,572 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_restore_default_state\"\n2025-03-08 11:17:35,572 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_run_command\"\n2025-03-08 11:17:35,573 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_security\"\n2025-03-08 11:17:35,573 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_smartscreen\"\n2025-03-08 11:17:35,573 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_startmenu_search\"\n2025-03-08 11:17:35,573 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_system_restore\"\n2025-03-08 11:17:35,573 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_uac\"\n2025-03-08 11:17:35,573 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_wer\"\n2025-03-08 11:17:35,573 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_windows_defender\"\n2025-03-08 11:17:35,574 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_windows_defender_dism\"\n2025-03-08 11:17:35,574 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_windows_defender_logging\"\n2025-03-08 11:17:35,574 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_windows_defender_contextmenu\"\n2025-03-08 11:17:35,574 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"windows_defender_powershell\"\n2025-03-08 11:17:35,574 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_windows_file_protection\"\n2025-03-08 11:17:35,574 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_windowsupdate\"\n2025-03-08 11:17:35,574 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_winfirewall\"\n2025-03-08 11:17:35,575 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"adfind_domain_enumeration\"\n2025-03-08 11:17:35,575 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"domain_enumeration_commands\"\n2025-03-08 11:17:35,575 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"andromut_mutexes\"\n2025-03-08 11:17:35,575 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"downloader_cabby\"\n2025-03-08 11:17:35,575 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"phorpiex_mutexes\"\n2025-03-08 11:17:35,575 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"protonbot_mutexes\"\n2025-03-08 11:17:35,575 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"driver_filtermanager\"\n2025-03-08 11:17:35,575 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dropper\"\n2025-03-08 11:17:35,575 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dll_archive_execution\"\n2025-03-08 11:17:35,575 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"lnk_archive_execution\"\n2025-03-08 11:17:35,576 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"script_archive_execution\"\n2025-03-08 11:17:35,576 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"excel4_macro_urls\"\n2025-03-08 11:17:35,576 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"escalate_privilege_via_ntlm_relay\"\n2025-03-08 11:17:35,576 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"spooler_access\"\n2025-03-08 11:17:35,576 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"spooler_svc_start\"\n2025-03-08 11:17:35,576 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"mapped_drives_uac\"\n2025-03-08 11:17:35,576 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"hides_recycle_bin_icon\"\n2025-03-08 11:17:35,576 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"apocalypse_stealer_file_behavior\"\n2025-03-08 11:17:35,576 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"arkei_files\"\n2025-03-08 11:17:35,576 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"azorult_mutexes\"\n2025-03-08 11:17:35,577 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_bitcoin\"\n2025-03-08 11:17:35,578 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cryptbot_files\"\n2025-03-08 11:17:35,578 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"echelon_files\"\n2025-03-08 11:17:35,578 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_ftp\"\n2025-03-08 11:17:35,584 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_im\"\n2025-03-08 11:17:35,588 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_mail\"\n2025-03-08 11:17:35,589 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"masslogger_files\"\n2025-03-08 11:17:35,589 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"poullight_files\"\n2025-03-08 11:17:35,590 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"purplewave_mutexes\"\n2025-03-08 11:17:35,590 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"quilclipper_mutexes\"\n2025-03-08 11:17:35,590 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"qulab_files\"\n2025-03-08 11:17:35,590 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"qulab_mutexes\"\n2025-03-08 11:17:35,590 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"asyncrat_mutex\"\n2025-03-08 11:17:35,590 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Evade_Execution_Via_ASPNet_Compiler\"\n2025-03-08 11:17:35,591 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Evade_Execute_Via_DeviceCredentialDeployment\"\n2025-03-08 11:17:35,591 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Evade_Execution_Via_Filter_Manager_Control\"\n2025-03-08 11:17:35,591 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Evade_Execution_Via_Intel_GFXDownloadWrapper\"\n2025-03-08 11:17:35,591 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"execute_binary_via_appvlp\"\n2025-03-08 11:17:35,591 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"execute_binary_via_pcalua\"\n2025-03-08 11:17:35,591 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Execute_Binary_Via_OpenSSH\"\n2025-03-08 11:17:35,591 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"execute_binary_via_pcalua\"\n2025-03-08 11:17:35,591 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Execute_Binary_Via_PesterPSModule\"\n2025-03-08 11:17:35,591 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Execute_Binary_Via_ScriptRunner\"\n2025-03-08 11:17:35,591 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"execute_binary_via_ttdinject\"\n2025-03-08 11:17:35,591 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Execute_Binary_Via_VisualStudioLiveShare\"\n2025-03-08 11:17:35,591 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Execute_Msiexec_Via_Explorer\"\n2025-03-08 11:17:35,591 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"execute_remote_msi\"\n2025-03-08 11:17:35,592 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"execute_suspicious_powershell_via_runscripthelper\"\n2025-03-08 11:17:35,592 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"execute_suspicious_powershell_via_sqlps\"\n2025-03-08 11:17:35,592 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Indirect_Command_Execution_Via_ConsoleWindowHost\"\n2025-03-08 11:17:35,592 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Perform_Malicious_Activities_Via_Headless_Browser\"\n2025-03-08 11:17:35,592 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Register_DLL_Via_CertOC\"\n2025-03-08 11:17:35,592 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Register_DLL_Via_MSIEXEC\"\n2025-03-08 11:17:35,592 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Register_DLL_Via_Odbcconf\"\n2025-03-08 11:17:35,592 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Scriptlet_Proxy_Execution_Via_Pubprn\"\n2025-03-08 11:17:35,592 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ie_martian_children\"\n2025-03-08 11:17:35,592 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_martian_children\"\n2025-03-08 11:17:35,592 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"mimics_icon\"\n2025-03-08 11:17:35,592 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"masquerade_process_name\"\n2025-03-08 11:17:35,593 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"mimikatz_modules\"\n2025-03-08 11:17:35,593 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ms_office_cmd_rce\"\n2025-03-08 11:17:35,593 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"mount_copy_to_webdav_share\"\n2025-03-08 11:17:35,593 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"potential_protocol_tunneling_via_legit_utilities\"\n2025-03-08 11:17:35,593 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"potential_protocol_tunneling_via_qemu\"\n2025-03-08 11:17:35,593 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_execution_via_dotnet_remoting\"\n2025-03-08 11:17:35,594 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dotnet_clr_usagelog_regkeys\"\n2025-03-08 11:17:35,594 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_hostfile\"\n2025-03-08 11:17:35,594 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_oem_information\"\n2025-03-08 11:17:35,594 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_security_center_warnings\"\n2025-03-08 11:17:35,594 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_uac_prompt\"\n2025-03-08 11:17:35,594 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_blockchain\"\n2025-03-08 11:17:35,594 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_opennic\"\n2025-03-08 11:17:35,594 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_paste_site\"\n2025-03-08 11:17:35,595 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_reverse_proxy\"\n2025-03-08 11:17:35,595 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_temp_file_storage\"\n2025-03-08 11:17:35,595 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_temp_urldns\"\n2025-03-08 11:17:35,595 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_url_shortener\"\n2025-03-08 11:17:35,595 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_doh_tls\"\n2025-03-08 11:17:35,595 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_tld\"\n2025-03-08 11:17:35,595 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_tor_service\"\n2025-03-08 11:17:35,595 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_code_page\"\n2025-03-08 11:17:35,595 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_addinloading\"\n2025-03-08 11:17:35,595 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_perfkey\"\n2025-03-08 11:17:35,595 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro\"\n2025-03-08 11:17:35,596 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"changes_trust_center_settings\"\n2025-03-08 11:17:35,596 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_vba_trust_access\"\n2025-03-08 11:17:35,596 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro_autoexecution\"\n2025-03-08 11:17:35,596 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro_ioc\"\n2025-03-08 11:17:35,596 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro_malicious_prediction\"\n2025-03-08 11:17:35,596 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro_suspicious\"\n2025-03-08 11:17:35,596 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_aslr_bypass\"\n2025-03-08 11:17:35,596 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_anomaly_characterset\"\n2025-03-08 11:17:35,596 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_anomaly_version\"\n2025-03-08 11:17:35,596 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_embedded_content\"\n2025-03-08 11:17:35,596 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_embedded_office_file\"\n2025-03-08 11:17:35,596 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_exploit_static\"\n2025-03-08 11:17:35,596 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_security\"\n2025-03-08 11:17:35,597 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_anomalous_feature\"\n2025-03-08 11:17:35,597 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_dde_command\"\n2025-03-08 11:17:35,597 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_armadillo_mutex\"\n2025-03-08 11:17:35,597 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_armadillo_regkey\"\n2025-03-08 11:17:35,597 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_ads\"\n2025-03-08 11:17:35,597 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_safeboot\"\n2025-03-08 11:17:35,597 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_ifeo\"\n2025-03-08 11:17:35,597 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_silent_process_exit\"\n2025-03-08 11:17:35,598 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_rdp_registry\"\n2025-03-08 11:17:35,598 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_rdp_shadowing\"\n2025-03-08 11:17:35,598 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_service\"\n2025-03-08 11:17:35,598 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_shim_database\"\n2025-03-08 11:17:35,598 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powerpool_mutexes\"\n2025-03-08 11:17:35,598 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_scriptblock_logging\"\n2025-03-08 11:17:35,598 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_command_suspicious\"\n2025-03-08 11:17:35,598 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_renamed\"\n2025-03-08 11:17:35,598 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_reversed\"\n2025-03-08 11:17:35,598 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_variable_obfuscation\"\n2025-03-08 11:17:35,599 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"prevents_safeboot\"\n2025-03-08 11:17:35,599 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_process_discovery\"\n2025-03-08 11:17:35,599 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cryptomix_mutexes\"\n2025-03-08 11:17:35,599 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dharma_mutexes\"\n2025-03-08 11:17:35,599 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_extensions\"\n2025-03-08 11:17:35,600 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_files\"\n2025-03-08 11:17:35,602 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"fonix_mutexes\"\n2025-03-08 11:17:35,602 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"gandcrab_mutexes\"\n2025-03-08 11:17:35,602 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"germanwiper_mutexes\"\n2025-03-08 11:17:35,602 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"medusalocker_mutexes\"\n2025-03-08 11:17:35,603 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"medusalocker_regkeys\"\n2025-03-08 11:17:35,603 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"nemty_mutexes\"\n2025-03-08 11:17:35,603 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"nemty_regkeys\"\n2025-03-08 11:17:35,603 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"pysa_mutexes\"\n2025-03-08 11:17:35,603 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_radamant\"\n2025-03-08 11:17:35,603 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_recyclebin\"\n2025-03-08 11:17:35,603 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"revil_mutexes\"\n2025-03-08 11:17:35,604 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_revil_regkey\"\n2025-03-08 11:17:35,604 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"satan_mutexes\"\n2025-03-08 11:17:35,604 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"snake_ransom_mutexes\"\n2025-03-08 11:17:35,604 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"stop_ransom_mutexes\"\n2025-03-08 11:17:35,604 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"stop_ransomware_cmd\"\n2025-03-08 11:17:35,604 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_stopdjvu\"\n2025-03-08 11:17:35,604 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_beebus_mutexes\"\n2025-03-08 11:17:35,605 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"blacknet_mutexes\"\n2025-03-08 11:17:35,605 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"blackrat_mutexes\"\n2025-03-08 11:17:35,605 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"crat_mutexes\"\n2025-03-08 11:17:35,605 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dcrat_files\"\n2025-03-08 11:17:35,605 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dcrat_mutexes\"\n2025-03-08 11:17:35,605 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_fynloski_mutexes\"\n2025-03-08 11:17:35,605 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"karagany_files\"\n2025-03-08 11:17:35,605 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"limerat_mutexes\"\n2025-03-08 11:17:35,605 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"limerat_regkeys\"\n2025-03-08 11:17:35,606 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"lodarat_file_behavior\"\n2025-03-08 11:17:35,606 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modirat_behavior\"\n2025-03-08 11:17:35,606 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"njrat_regkeys\"\n2025-03-08 11:17:35,606 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"obliquerat_files\"\n2025-03-08 11:17:35,606 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"obliquerat_mutexes\"\n2025-03-08 11:17:35,607 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"parallax_mutexes\"\n2025-03-08 11:17:35,607 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_pcclient\"\n2025-03-08 11:17:35,607 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_plugx_mutexes\"\n2025-03-08 11:17:35,607 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_poisonivy_mutexes\"\n2025-03-08 11:17:35,607 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_quasar_mutexes\"\n2025-03-08 11:17:35,607 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ratsnif_mutexes\"\n2025-03-08 11:17:35,607 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_senna_mutexes\"\n2025-03-08 11:17:35,607 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_spynet\"\n2025-03-08 11:17:35,607 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"venomrat_mutexes\"\n2025-03-08 11:17:35,608 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"warzonerat_files\"\n2025-03-08 11:17:35,608 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"warzonerat_regkeys\"\n2025-03-08 11:17:35,608 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"xpertrat_files\"\n2025-03-08 11:17:35,608 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"xpertrat_mutexes\"\n2025-03-08 11:17:35,608 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_xtreme_mutexes\"\n2025-03-08 11:17:35,608 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"recon_fingerprint\"\n2025-03-08 11:17:35,609 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"remcos_files\"\n2025-03-08 11:17:35,609 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"remcos_mutexes\"\n2025-03-08 11:17:35,609 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"remcos_regkeys\"\n2025-03-08 11:17:35,609 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rdptcp_key\"\n2025-03-08 11:17:35,609 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_rdp_clip\"\n2025-03-08 11:17:35,609 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_remote_desktop_session\"\n2025-03-08 11:17:35,609 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_networking_icon\"\n2025-03-08 11:17:35,610 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_pinned_programs\"\n2025-03-08 11:17:35,610 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_security_maintenance_icon\"\n2025-03-08 11:17:35,610 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_startmenu_defaults\"\n2025-03-08 11:17:35,610 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_username_startmenu\"\n2025-03-08 11:17:35,610 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"spicyhotpot_behavior\"\n2025-03-08 11:17:35,610 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"sniffer_winpcap\"\n2025-03-08 11:17:35,611 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"spreading_autoruninf\"\n2025-03-08 11:17:35,611 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_hidden_extension\"\n2025-03-08 11:17:35,611 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_hiddenreg\"\n2025-03-08 11:17:35,611 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_hide_notifications\"\n2025-03-08 11:17:35,611 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_webhistory\"\n2025-03-08 11:17:35,611 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"sysinternals_psexec\"\n2025-03-08 11:17:35,611 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"sysinternals_tools\"\n2025-03-08 11:17:35,611 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"language_check_registry\"\n2025-03-08 11:17:35,612 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"language_check_registry\"\n2025-03-08 11:17:35,612 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"tampers_etw\"\n2025-03-08 11:17:35,612 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"lsa_tampering\"\n2025-03-08 11:17:35,612 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"tampers_powershell_logging\"\n2025-03-08 11:17:35,612 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"targeted_flame\"\n2025-03-08 11:17:35,612 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"territorial_disputes_sigs\"\n2025-03-08 11:17:35,618 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"trickbot_mutex\"\n2025-03-08 11:17:35,619 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"fleercivet_mutex\"\n2025-03-08 11:17:35,619 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"lokibot_mutexes\"\n2025-03-08 11:17:35,619 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ursnif_behavior\"\n2025-03-08 11:17:35,619 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"upatre_files\"\n2025-03-08 11:17:35,619 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"upatre_files\"\n2025-03-08 11:17:35,619 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_adfind\"\n2025-03-08 11:17:35,619 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_ms_protocol\"\n2025-03-08 11:17:35,620 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"neshta_mutexes\"\n2025-03-08 11:17:35,620 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"renamer_mutexes\"\n2025-03-08 11:17:35,620 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"owa_web_shell_files\"\n2025-03-08 11:17:35,620 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"web_shell_files\"\n2025-03-08 11:17:35,620 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"web_shell_processes\"\n2025-03-08 11:17:35,620 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dotnet_csc_build\"\n2025-03-08 11:17:35,620 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"mavinject_lolbin\"\n2025-03-08 11:17:35,620 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"multiple_explorer_instances\"\n2025-03-08 11:17:35,620 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"script_tool_executed\"\n2025-03-08 11:17:35,620 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_certutil_use\"\n2025-03-08 11:17:35,620 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_command_tools\"\n2025-03-08 11:17:35,621 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_mpcmdrun_use\"\n2025-03-08 11:17:35,621 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_ping_use\"\n2025-03-08 11:17:35,621 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_powershell_copyitem\"\n2025-03-08 11:17:35,622 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities\"\n2025-03-08 11:17:35,622 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_appcmd\"\n2025-03-08 11:17:35,623 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_csvde_ldifde\"\n2025-03-08 11:17:35,623 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_cipher\"\n2025-03-08 11:17:35,623 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_clickonce\"\n2025-03-08 11:17:35,623 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_curl\"\n2025-03-08 11:17:35,623 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_dsquery\"\n2025-03-08 11:17:35,623 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_esentutl\"\n2025-03-08 11:17:35,623 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_finger\"\n2025-03-08 11:17:35,623 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_mode\"\n2025-03-08 11:17:35,623 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_ntdsutil\"\n2025-03-08 11:17:35,623 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_nltest\"\n2025-03-08 11:17:35,623 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_xcopy\"\n2025-03-08 11:17:35,623 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"wmic_command_suspicious\"\n2025-03-08 11:17:35,623 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"scrcons_wmi_script_consumer\"\n2025-03-08 11:17:35,624 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Running signature \"allaple_mutexes\"\n2025-03-08 11:17:35,624 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"stealth_timeout\"\n2025-03-08 11:17:35,624 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"language_check_registry\"\n2025-03-08 11:17:35,637 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"BinGraph\"\n2025-03-08 11:17:35,638 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"CAPASummary\"\n2025-03-08 11:17:35,638 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"PCAP2CERT\"\n2025-03-08 11:17:35,638 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"ReportHTML\"\n2025-03-08 11:17:35,657 [Task 15] [lib.cuckoo.core.plugins] WARNING: The reporting module \"ReportHTML\" returned the following error: Failed to generate summary HTML report: 'dict object' has no attribute 'CAPE'\n2025-03-08 11:17:35,657 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"ReportHTMLSummary\"\n2025-03-08 11:17:35,675 [Task 15] [lib.cuckoo.core.plugins] WARNING: The reporting module \"ReportHTMLSummary\" returned the following error: Failed to generate summary HTML report: 'dict object' has no attribute 'CAPE'\n2025-03-08 11:17:35,675 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"JsonDump\"\n2025-03-08 11:17:35,677 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"ReportPDF\"\n2025-03-08 11:17:35,677 [Task 15] [lib.cuckoo.core.plugins] WARNING: The reporting module \"ReportPDF\" returned the following error: Unable to open summary HTML report to convert to PDF: Ensure reporthtmlsummary is enabled in reporting.conf\n2025-03-08 11:17:35,677 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"MongoDB\"\n2025-03-08 11:17:35,694 [Task 15] [modules.reporting.mongodb] DEBUG: Deleted previous MongoDB data for Task 15\n2025-03-08 11:17:35,761 [Task 15] [root] DEBUG: Finished processing task\n```\nComment: can you share hash to try to reproduce it on my side?\nComment: Hash of a file that has been analyzed ?\n\n`**65c9f1d4977cf587a3dc9ac30d1193c0**`\n\n![Image](https://github.com/user-attachments/assets/420cae1b-6e7b-42ce-992a-cba4956b3f81)\nComment: file are not on vt, and i can't find it on another platforms, can you attack it? is that just a txt file with some ips?\nComment: Yes, this is just a regular sample file that I am using (no indication of malware).\n\n\nComment: i just submitted random txt files, and it generated me the report just fine. i did check again those modules that fails to you but i don't see whats is wrong\nComment: > Just for your information, if I disable HTML & PDF reporting, the reporting in JSON format works without any issues.\nComment: i have pushed some changes to those modules, if you need them, reenable it, pull from master `poetry run utils/community.py -waf` and then reprocess again that task, that now should give better error details + shouldn't make failed analysis\nComment: **After I performed the update, the error that occurred is as follows:**\n\n```\n2025-03-08 15:42:18,156 [Task 21] [modules.reporting.reporthtml] ERROR: Failed to generate summary HTML report: 'dict object' has no attribute 'CAPE'\nTraceback (most recent call last):\n  File \"/opt/CAPEv2/utils/../modules/reporting/reporthtml.py\", line 85, in run\n    html = tpl.render({\"results\": results, \"summary_report\": False})\n           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/jinja2/environment.py\", line 1295, in render\n    self.environment.handle_exception()\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/jinja2/environment.py\", line 942, in handle_exception\n    raise rewrite_traceback_stack(source=source)\n  File \"/opt/CAPEv2/data/html/report.html\", line 1, in top-level template code\n    {% extends \"base-report.html\" %}\n    ^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/opt/CAPEv2/data/html/base-report.html\", line 67, in top-level template code\n    {% block content %}{% endblock %}\n    ^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/opt/CAPEv2/data/html/report.html\", line 3, in block 'content'\n    {% include \"sections/info.html\" %}\n    ^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/opt/CAPEv2/data/html/sections/info.html\", line 65, in top-level template code\n    {% if results.CAPE.configs %}\n    ^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/jinja2/environment.py\", line 490, in getattr\n    return getattr(obj, attribute)\n           ^^^^^^^^^^^^^^^^^^^^^^^\njinja2.exceptions.UndefinedError: 'dict object' has no attribute 'CAPE'\n2025-03-08 15:42:18,158 [Task 21] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"ReportHTMLSummary\"\n2025-03-08 15:42:18,175 [Task 21] [modules.reporting.reporthtmlsummary] ERROR: Failed to generate summary HTML report: 'dict object' has no attribute 'CAPE'\nTraceback (most recent call last):\n  File \"/opt/CAPEv2/utils/../modules/reporting/reporthtmlsummary.py\", line 95, in run\n    html = tpl.render({\"results\": results, \"summary_report\": True})\n           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/jinja2/environment.py\", line 1295, in render\n    self.environment.handle_exception()\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/jinja2/environment.py\", line 942, in handle_exception\n    raise rewrite_traceback_stack(source=source)\n  File \"/opt/CAPEv2/data/html/report.html\", line 1, in top-level template code\n    {% extends \"base-report.html\" %}\n    ^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/opt/CAPEv2/data/html/base-report.html\", line 67, in top-level template code\n    {% block content %}{% endblock %}\n    ^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/opt/CAPEv2/data/html/report.html\", line 3, in block 'content'\n    {% include \"sections/info.html\" %}\n    ^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/opt/CAPEv2/data/html/sections/info.html\", line 65, in top-level template code\n    {% if results.CAPE.configs %}\n    ^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/jinja2/environment.py\", line 490, in getattr\n    return getattr(obj, attribute)\n           ^^^^^^^^^^^^^^^^^^^^^^^\njinja2.exceptions.UndefinedError: 'dict object' has no attribute 'CAPE'\n2025-03-08 15:42:18,176 [Task 21] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"JsonDump\"\n2025-03-08 15:42:18,176 [Task 21] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"ReportPDF\"\n2025-03-08 15:42:18,176 [Task 21] [lib.cuckoo.core.plugins] WARNING: The reporting module \"ReportPDF\" returned the following error: Unable to open summary HTML report to convert to PDF: Ensure reporthtmlsummary is enabled in reporting.conf\n2025-03-08 15:42:18,177 [Task 21] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"MongoDB\"\n2025-03-08 15:42:18,182 [Task 21] [modules.reporting.mongodb] DEBUG: Deleted previous MongoDB data for Task 21\n2025-03-08 15:42:18,261 [Task 21] [root] DEBUG: Finished processing task\n```\nComment: Great this is what I need, thank you will push a fix in a bit\nComment: ok, lets try once more.\n\ndo next:\n1. git pull\n2. reprocess the same job and see if it still happens\n\nalso provide plz output of `poetry run pip freeze grep Jinja`\nHere is mine\n```\nJinja2==3.1.5\n```\nComment: ```\n2025-03-08 17:17:01,565 [Task 23] [modules.reporting.reporthtml] ERROR: Failed to generate summary HTML report: 'dict object' has no attribute 'target'\nTraceback (most recent call last):\n  File \"/opt/CAPEv2/utils/../modules/reporting/reporthtml.py\", line 85, in run\n    html = tpl.render({\"results\": results, \"summary_report\": False})\n           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/jinja2/environment.py\", line 1295, in render\n    self.environment.handle_exception()\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/jinja2/environment.py\", line 942, in handle_exception\n    raise rewrite_traceback_stack(source=source)\n  File \"/opt/CAPEv2/data/html/report.html\", line 1, in top-level template code\n    {% extends \"base-report.html\" %}\n    ^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/opt/CAPEv2/data/html/base-report.html\", line 67, in top-level template code\n    {% block content %}{% endblock %}\n    ^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/opt/CAPEv2/data/html/report.html\", line 6, in block 'content'\n    {% include \"sections/file.html\" %}\n    ^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/opt/CAPEv2/data/html/sections/file.html\", line 16, in top-level template code\n    {% if results.target.file %}\n    ^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/jinja2/environment.py\", line 490, in getattr\n    return getattr(obj, attribute)\n           ^^^^^^^^^^^^^^^^^^^^^^^\njinja2.exceptions.UndefinedError: 'dict object' has no attribute 'target'\n2025-03-08 17:17:01,566 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"ReportHTMLSummary\"\n2025-03-08 17:17:01,586 [Task 23] [modules.reporting.reporthtmlsummary] ERROR: Failed to generate summary HTML report: 'dict object' has no attribute 'target'\nTraceback (most recent call last):\n  File \"/opt/CAPEv2/utils/../modules/reporting/reporthtmlsummary.py\", line 95, in run\n    html = tpl.render({\"results\": results, \"summary_report\": True})\n           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/jinja2/environment.py\", line 1295, in render\n    self.environment.handle_exception()\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/jinja2/environment.py\", line 942, in handle_exception\n    raise rewrite_traceback_stack(source=source)\n  File \"/opt/CAPEv2/data/html/report.html\", line 1, in top-level template code\n    {% extends \"base-report.html\" %}\n    ^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/opt/CAPEv2/data/html/base-report.html\", line 67, in top-level template code\n    {% block content %}{% endblock %}\n    ^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/opt/CAPEv2/data/html/report.html\", line 6, in block 'content'\n    {% include \"sections/file.html\" %}\n    ^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/opt/CAPEv2/data/html/sections/file.html\", line 16, in top-level template code\n    {% if results.target.file %}\n    ^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/jinja2/environment.py\", line 490, in getattr\n    return getattr(obj, attribute)\n           ^^^^^^^^^^^^^^^^^^^^^^^\njinja2.exceptions.UndefinedError: 'dict object' has no attribute 'target'\n2025-03-08 17:17:01,587 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"JsonDump\"\n2025-03-08 17:17:01,587 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"ReportPDF\"\n2025-03-08 17:17:01,588 [Task 23] [lib.cuckoo.core.plugins] WARNING: The reporting module \"ReportPDF\" returned the following error: Unable to open summary HTML report to convert to PDF: Ensure reporthtmlsummary is enabled in reporting.conf\n2025-03-08 17:17:01,588 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"MongoDB\"\n2025-03-08 17:17:01,593 [Task 23] [modules.reporting.mongodb] DEBUG: Deleted previous MongoDB data for Task 23\n2025-03-08 17:17:01,651 [Task 23] [root] DEBUG: Finished processing task\n```\n\n**poetry run pip freeze grep Jinja**\n\n![Image](https://github.com/user-attachments/assets/705c35d1-8f37-408e-ac34-b69c815ba944)\nComment: did you reenabble CAPE in processing.conf? that must be enabled\nComment: I have tried enabling and disabling it, and the log is the same.\nComment: you have in logs `2025-03-08 11:17:35,519 [Task 15] [lib.cuckoo.core.plugins] DEBUG: Failed to run signature \"binary_yara\": 'target'`\nbut there is no info why for some reason %)\nComment: does that happens only with this txt or it happens with real samples?\nComment: \nI am using the sample `MalwareBazaar_dll.zip` with the hash `2793dee0d84f1d94df7d5dcd8634b9d7`.\n\n```\n2025-03-08 17:43:12,360 [root] DEBUG: Importing modules...\n2025-03-08 17:43:12,361 [modules.auxiliary.QemuScreenshots] DEBUG: Importing 'PIL.ImageChops.difference'\n2025-03-08 17:43:12,362 [modules.auxiliary.QemuScreenshots] DEBUG: Importing 'PIL.ImageDraw'\n2025-03-08 17:43:12,362 [modules.auxiliary.QemuScreenshots] DEBUG: Importing 'PIL.Image'\nOPTIONAL! Missed dependency: poetry run pip install -U git+https://github.com/CAPESandbox/httpreplay\n2025-03-08 17:43:12,532 [lazy_import] DEBUG: Getting attr Fernet of LazyModule instance of cryptography.fernet\n2025-03-08 17:43:12,532 [lazy_import] DEBUG: Getting attr __name__ of LazyModule instance of cryptography.fernet\n2025-03-08 17:43:12,553 [root] DEBUG: Missed file extra/msft-public-ips.csv. Get a fresh copy from https://www.microsoft.com/en-us/download/details.aspx?id=53602\n2025-03-08 17:43:12,629 [lazy_import] DEBUG: Getting attr __spec__ of LazyModule instance of yaml\n2025-03-08 17:43:12,630 [lazy_import] DEBUG: Getting attr __path__ of LazyModule instance of yaml\n2025-03-08 17:43:12,630 [lazy_import] DEBUG: Getting attr __name__ of LazyModule instance of yaml\n2025-03-08 17:43:12,630 [lazy_import] DEBUG: Proceeding to load module yaml, from requested value __path__\n2025-03-08 17:43:12,630 [lazy_import] DEBUG: Getting attr __name__ of LazyModule instance of yaml\n2025-03-08 17:43:12,630 [lazy_import] DEBUG: loading module yaml\n2025-03-08 17:43:12,637 [lazy_import] DEBUG: Successfully loaded module yaml\n2025-03-08 17:43:12,871 [capa.rules] DEBUG: reading rules from directory /opt/CAPEv2/data/capa-rules\n2025-03-08 17:43:12,887 [capa.rules.cache] DEBUG: loading rule set from cache: /home/cape/.cache/capa/capa-1d6fb80b.cache\n2025-03-08 17:43:12,925 [capa.loader] DEBUG: reading signatures from directory /opt/CAPEv2/data/flare-signatures\n2025-03-08 17:43:12,925 [capa.loader] DEBUG: found signature file: /opt/CAPEv2/data/flare-signatures/1_flare_msvc_rtf_32_64.sig\n2025-03-08 17:43:12,925 [capa.loader] DEBUG: found signature file: /opt/CAPEv2/data/flare-signatures/2_flare_msvc_atlmfc_32_64.sig\n2025-03-08 17:43:12,925 [capa.loader] DEBUG: found signature file: /opt/CAPEv2/data/flare-signatures/3_flare_common_libs.sig\n2025-03-08 17:43:12,954 [root] DEBUG: Imported \"auxiliary\" modules:\n2025-03-08 17:43:12,954 [root] DEBUG:    |-- AzSniffer\n2025-03-08 17:43:12,955 [root] DEBUG:    |-- Mitmdump\n2025-03-08 17:43:12,955 [root] DEBUG:    |-- QEMUScreenshots\n2025-03-08 17:43:12,955 [root] DEBUG:    `-- Sniffer\n2025-03-08 17:43:12,955 [root] DEBUG: Imported \"processing\" modules:\n2025-03-08 17:43:12,955 [root] DEBUG:    |-- AnalysisInfo\n2025-03-08 17:43:12,955 [root] DEBUG:    |-- Autoruns\n2025-03-08 17:43:12,955 [root] DEBUG:    |-- BehaviorAnalysis\n2025-03-08 17:43:12,955 [root] DEBUG:    |-- Debug\n2025-03-08 17:43:12,955 [root] DEBUG:    |-- HollowsHunter\n2025-03-08 17:43:12,955 [root] DEBUG:    |-- NetworkAnalysis\n2025-03-08 17:43:12,955 [root] DEBUG:    |-- ProcessMemory\n2025-03-08 17:43:12,955 [root] DEBUG:    |-- script_log_processing\n2025-03-08 17:43:12,955 [root] DEBUG:    |-- Suricata\n2025-03-08 17:43:12,955 [root] DEBUG:    |-- Sysmon\n2025-03-08 17:43:12,955 [root] DEBUG:    `-- UrlAnalysis\n2025-03-08 17:43:12,955 [root] DEBUG: Imported \"signatures\" modules:\n2025-03-08 17:43:12,955 [root] DEBUG:    |-- AntiAnalysisTLSSection\n2025-03-08 17:43:12,955 [root] DEBUG:    |-- ClamAV\n2025-03-08 17:43:12,955 [root] DEBUG:    |-- KnownVirustotal\n2025-03-08 17:43:12,955 [root] DEBUG:    |-- BadCerts\n2025-03-08 17:43:12,955 [root] DEBUG:    |-- BadSSLCerts\n2025-03-08 17:43:12,955 [root] DEBUG:    |-- ZeusP2P\n2025-03-08 17:43:12,955 [root] DEBUG:    |-- ZeusURL\n2025-03-08 17:43:12,955 [root] DEBUG:    |-- BinaryTriggeredYARA\n2025-03-08 17:43:12,955 [root] DEBUG:    |-- AthenaHttp\n2025-03-08 17:43:12,955 [root] DEBUG:    |-- DirtJumper\n2025-03-08 17:43:12,955 [root] DEBUG:    |-- Drive\n2025-03-08 17:43:12,955 [root] DEBUG:    |-- Drive2\n2025-03-08 17:43:12,955 [root] DEBUG:    |-- Madness\n2025-03-08 17:43:12,955 [root] DEBUG:    |-- HTMLPhisher_0\n2025-03-08 17:43:12,955 [root] DEBUG:    |-- HTMLPhisher_1\n2025-03-08 17:43:12,955 [root] DEBUG:    |-- HTMLPhisher_2\n2025-03-08 17:43:12,955 [root] DEBUG:    |-- FamilyProxyBack\n2025-03-08 17:43:12,955 [root] DEBUG:    |-- FlareCAPAAntiAnalysis\n2025-03-08 17:43:12,955 [root] DEBUG:    |-- FlareCAPACollection\n2025-03-08 17:43:12,955 [root] DEBUG:    |-- FlareCAPAcommunication\n2025-03-08 17:43:12,955 [root] DEBUG:    |-- FlareCAPACompiler\n2025-03-08 17:43:12,955 [root] DEBUG:    |-- FlareCAPADataManipulation\n2025-03-08 17:43:12,955 [root] DEBUG:    |-- FlareCAPAExecutable\n2025-03-08 17:43:12,955 [root] DEBUG:    |-- FlareCAPAHostInteration\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- FlareCAPAcommunication\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- FlareCAPALib\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- FlareCAPALinking\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- FlareCAPALoadCode\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- FlareCAPAMalwareFamily\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- FlareCAPANursery\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- FlareCAPAPersistence\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- FlareCAPARuntime\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- FlareCAPATargeting\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- ThreatFox\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- Log4j\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- MimicsExtension\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- NetworkCountryDistribution\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- NetworkMultipleDirectIPConnections\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- NetworkCnCHTTP\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- NetworkHTTPPOST\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- NetworkIPEXE\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- NetworkDGA\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- NetworkDGAFraunhofer\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- NetworkDynDNS\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- NetworkExcessiveUDP\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- NetworkHTTP\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- NetworkICMP\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- NetworkIRC\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- NetworkOpenProxy\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- NetworkP2P\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- NetworkQuestionableHost\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- NetworkQuestionableHttpPath\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- NetworkQuestionableHttpsPath\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- NetworkSMTP\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- TorGateway\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- BuildLangID\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- ResourceLangID\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- overlay\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- PackerUnknownPESectionName\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- ASPackPacked\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- AspireCryptPacked\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- BedsProtectorPacked\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- ConfuserPacked\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- EnigmaPacked\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- PackerEntropy\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- MPressPacked\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- NatePacked\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- NsPacked\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- SmartAssemblyPacked\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- SpicesPacked\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- ThemidaPacked\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- ThemidaPackedSection\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- TitanPacked\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- UPXCompressed\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- VMPPacked\n2025-03-08 17:43:12,956 [root] DEBUG:    |-- YodaPacked\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- PDF_Annot_URLs_Checker\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- Polymorphic\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- PunchPlusPlusPCREs\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- Procmem_Yara\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- CheckIP\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- Authenticode\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- InvalidAuthenticodeSignature\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- DotNetAnomaly\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- Static_Java\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- Static_PDF\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- ContainsPEOverlay\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- PEAnomaly\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- PECompileTimeStomping\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- StaticPEPDBPath\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- RATConfig\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- VersionInfoAnomaly\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- StealthNetwork\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- SuricataAlert\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- suspiciousHRML_Body\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- suspiciousHTML_Filename\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- suspiciousHTML_Title\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- VolDevicetree1\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- VolHandles1\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- VolLdrModules1\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- VolLdrModules2\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- VolMalfind1\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- VolMalfind2\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- VolModscan1\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- VolSvcscan1\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- VolSvcscan2\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- VolSvcscan3\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- WHOIS_Create\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- DisableDriverViaBlocklist\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- DisableDriverViaHVCIDisallowedImages\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- DisableHypervisorProtectedCodeIntegrity\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- PendingFileRenameOperations\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- AccessesMailslot\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- AccessesNetlogonRegkey\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- AccessesPublicFolder\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- AccessesSysvol\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- WritesSysvol\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- AddsAdminUser\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- AddsUser\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- OverwritesAdminPassword\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- anomalous_deletefile\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- AntiAnalysisDetectFile\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- AntiAnalysisDetectReg\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- QihooDetectLibs\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- AhnlabDetectLibs\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- AvastDetectLibs\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- BitdefenderDetectLibs\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- BullguardDetectLibs\n2025-03-08 17:43:12,957 [root] DEBUG:    |-- ModifiesAttachmentManager\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- AntiAVDetectFile\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- AntiAVDetectReg\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- EmsisoftDetectLibs\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- QurbDetectLibs\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- AntiAVServiceStop\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- AntiAVSRP\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- AntiAVWhitespace\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- antidebug_addvectoredexceptionhandler\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- APIOverrideDetectLibs\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- antidebug_checkremotedebuggerpresent\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- antidebug_debugactiveprocess\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- AntiDBGDevices\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- antidebug_gettickcount\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- antidebug_guardpages\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- antidebug_ntcreatethreadex\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- BullguardDetectLibs\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- antidebug_ntsetinformationthread\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- antidebug_outputdebugstring\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- antidebug_setunhandledexceptionfilter\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- AntiDBGWindows\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- AntiEmuWinDefend\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- WineDetectReg\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- WineDetectFunc\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- AntiSandboxCheckUserdomain\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- AntiCuckoo\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- CuckooDetectFiles\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- CuckooCrash\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- AntiSandboxForegroundWindow\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- FortinetDetectFiles\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- SandboxJoeAnubisDetectFiles\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- HookMouse\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- AntiSandboxRestart\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- SandboxieDetectLibs\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- AntisandboxSboxieMutex\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- AntiSandboxSboxieObjects\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- AntiSandboxScriptTimer\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- AntiSandboxSleep\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- SunbeltDetectFiles\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- SunbeltDetectLibs\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- AntiSandboxSuspend\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- ThreatTrackDetectFiles\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- Unhook\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- BochsDetectKeys\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- AntiVMDirectoryObjects\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- AntiVMBios\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- AntiVMCPU\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- DiskInformation\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- SetupAPIDiskInformation\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- AntiVMDiskReg\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- AntiVMSCSI\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- AntiVMServices\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- AntiVMSystem\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- HyperVDetectKeys\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- AntiVMChecksAvailableMemory\n2025-03-08 17:43:12,958 [root] DEBUG:    |-- NetworkAdapters\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- ParallelsDetectKeys\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- DetectVirtualizationViaRecentFiles\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- VBoxDetectDevices\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- VBoxDetectFiles\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- VBoxDetectKeys\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- VBoxDetectLibs\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- VBoxDetectProvname\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- VBoxDetectWindow\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- VMwareDetectDevices\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- VMwareDetectEvent\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- VMwareDetectFiles\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- VMwareDetectKeys\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- VMwareDetectLibs\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- VMwareDetectMutexes\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- VPCDetectFiles\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- VPCDetectKeys\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- VPCDetectMutex\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- XenDetectKeys\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- APISpamming\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- api_uuidfromstringa\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- AsyncRatMutex\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- GulpixBehavior\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- KetricanRegkeys\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- OkrumMutexes\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- Cridex\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- Geodo\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- Prinimalka\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- SpyEyeMutexes\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- ZeusMutexes\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- BCDEditCommand\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- BitcoinOpenCL\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- AccessesPrimaryPartition\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- Bootkit\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- DirectHDDAccess\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- EnumeratesPhysicalDrives\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- PhysicalDriveAccess\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- PotentialOverWriteMBR\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- SuspiciousIoctlSCSIPassthough\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- Ruskill\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- BrowserAddon\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- ChromiumBrowserExtensionDirectory\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- BrowserHelperObject\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- BrowserNeeded\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- ModifyProxy\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- BrowserScanbox\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- BrowserSecurity\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- browser_startpage\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- FirefoxDisablesProcessPerTab\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- IEDisablesProcessPerTab\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- OdbcconfBypass\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- RegSrv32SquiblydooDLLLoad\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- SquiblydooBypass\n2025-03-08 17:43:12,959 [root] DEBUG:    |-- SquiblytwoBypass\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- BypassFirewall\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- ChecksUACStatus\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- UACBypassCMSTP\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- UACBypassCMSTPCOM\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- UACBypassDelegateExecuteSdclt\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- UACBypassEventvwr\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- UACBypassFodhelper\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- UACBypassWindowsBackup\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- CAPEExtractedContent\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- CarberpMutexes\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- ClearsLogs\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- ClickfraudCookies\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- ClickfraudVolume\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- CmdlineObfuscation\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- CmdlineSwitches\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- CmdlineTerminate\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- CommandLineForFilesWildCard\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- CommandLineHTTPLink\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- CommandLineLongString\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- CommandLineReversedHTTPLink\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- LongCommandline\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- PowershellRenamedCommandLine\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- SystemAccountDiscoveryCMD\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- SystemCurrentlyLoggedinUserCMD\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- SystemInfoDiscoveryCMD\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- SystemInfoDiscoveryPWSH\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- SystemNetworkDiscoveryCMD\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- SystemNetworkDiscoveryPWSH\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- SystemUserDiscoveryCMD\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- CompilesDotNetCode\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- QueriesComputerName\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- QueriesUserName\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- CopiesSelf\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- CreatesExe\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- CreatesLargeKey\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- CreatesNullValue\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- AccessWindowsPasswordsVault\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- CredWiz\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- EnablesWDigest\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- VaultCmd\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- DumpLSAViaWindowsErrorReporting\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- FileCredentialStoreAccess\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- FileCredentialStoreWrite\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- KerberosCredentialAccessViaRubeus\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- LsassCredentialDumping\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- RegistryCredentialDumping\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- RegistryCredentialStoreAccess\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- RegistryLSASecretsAccess\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- ComsvcsCredentialDump\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- CriticalProcess\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- CryptGenKey\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- CryptominingStratumCommand\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- MINERS\n2025-03-08 17:43:12,960 [root] DEBUG:    |-- CVE_2014_6332\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- CVE2015_2419_JS\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- CVE_2016_0189\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- CVE_2016_7200\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- CypherITMutexes\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DarkCometRegkeys\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DatopLoader\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DeadConnect\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DeadLink\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DebugsSelf\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DecoyDocument\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DecoyImage\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DeepFreezeMutex\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DeletesExecutedFiles\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DeletesExecutedFiles\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DeletesSelf\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DeletesShadowCopies\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DeletesSystemStateBackup\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DEPBypass\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DEPDisable\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DisablesAppLaunch\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DisablesAutomaticAppTermination\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DisablesAppVirtualiztion\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DisablesBackups\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DisablesBrowserWarn\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DisablesContextMenus\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DisablesCPLDisplay\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DisablesCrashdumps\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DisablesMappedDrivesAutodisconnect\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DisablesEventLogging\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DisableFolderOptions\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DisablesNotificationCenter\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DisablesPowerOptions\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DisablesRestoreDefaultState\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DisableRunCommand\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DisablesSecurity\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DisablesSmartScreen\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DisablesSPDY\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DisablesStartMenuSearch\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DisablesSystemRestore\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DisablesUAC\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DisablesWER\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DisablesWFP\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- AddWindowsDefenderExclusions\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DisablesWindowsDefender\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DisablesWindowsDefenderDISM\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DisablesWindowsDefenderLogging\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- RemovesWindowsDefenderContextMenu\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- WindowsDefenderPowerShell\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DisablesWindowsFileProtection\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DisablesWindowsUpdate\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DisablesWindowsFirewall\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DllLoadUncommonFileTypes\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DocScriptEXEDrop\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- AdfindDomainEnumeration\n2025-03-08 17:43:12,961 [root] DEBUG:    |-- DomainEnumerationCommands\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- AndromutMutexes\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- DownloaderCabby\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- GuLoaderAPIs\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- PhorpiexMutexes\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- ProtonBotMutexes\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- DriverFilterManager\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- DriverLoad\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- Dropper\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- EXEDropper_JS\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- dynamic_function_loading\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- DLLArchiveExecution\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- LNKArchiveExecution\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- ScriptArchiveExecution\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- EncryptedIOC\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- Excel4MacroUrls\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- Crash\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- ProcessCreationSuspiciousLocation\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- exploit_getbasekerneladdress\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- exploit_gethaldispatchtable\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- ExploitHeapspray\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- EscalatePrivilegeViaNTLMRelay\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- SpoolerAccess\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- SpoolerSvcStart\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- KoadicAPIs\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- KoadicNetworkActivity\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- Modiloader_APIs\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- MappedDrivesUAC\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- SystemMetrics\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- Generic_Phish\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- HidesRecycleBinIcon\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- HTTP_Request\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- ApocalypseStealerFileBehavior\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- ArkeiFiles\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- AzorultMutexes\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- BitcoinWallet\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- BrowserStealer\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- InfostealerBrowserPassword\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- CookiesStealer\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- CryptBotFiles\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- CryptBotNetwork\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- EchelonFiles\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- FTPStealer\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- IMStealer\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- KeyLogger\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- EmailStealer\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- MassLoggerArtifacts\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- MassLoggerFiles\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- MassLoggerVersion\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- PoullightFiles\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- PurpleWaveMutexes\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- PurpleWaveNetworkAcivity\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- QuilClipperMutexes\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- QuilClipperNetworkBehavior\n2025-03-08 17:43:12,962 [root] DEBUG:    |-- QulabFiles\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- QulabMutexes\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- RaccoonInfoStealerMutex\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- raccoon\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- CapturesScreenshot\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- vidar\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- InjectionCRT\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- InjectionExplorer\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- InjectionExtension\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- InjectionNetworkTraffic\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- InjectionRUNPE\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- InjectionRWX\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- injection_themeinitapihook\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- ThreadManipulationRemoteProcess\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- Internet_Dropper\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- EscalatePrivilegeViaNamedPipe\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- IPC_NamedPipe\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- JS_Phish\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- JS_SuspiciousRedirect\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- LOLBAS_EvadeExecutionViaASPNetCompiler\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- LOLBAS_EvadeExecutionViaDeviceCredentialDeployment\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- LOLBAS_EvadeExecutionViaFilterManagerControl\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- LOLBAS_EvadeExecutionViaIntelGFXDownloadWrapper\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- LOLBAS_ExecuteBinaryViaAppVLP\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- LOLBAS_ExecuteBinaryViaCDB\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- LOLBAS_ExecuteBinaryViaInternetExplorerExporter\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- LOLBAS_ExecuteBinaryViaOpenSSH\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- LOLBAS_ExecuteBinaryViaPcalua\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- LOLBAS_ExecuteBinaryViaPesterPSModule\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- LOLBAS_ExecuteBinaryViaRunExeHelperUtility\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- LOLBAS_ExecuteBinaryViaScriptRunner\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- LOLBAS_ExecuteBinaryViaTTDinject\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- LOLBAS_ExecuteBinaryVisualStudioLiveShare\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- LOLBAS_ExecuteMsiexecViaExplorer\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- LOLBAS_ExecutePSViaSyncappvpublishingserver\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- LOLBAS_ExecuteRemoteMSIViaDevinit\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- LOLBAS_ExecuteSuspiciousPowerShellViaRunscripthelper\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- LOLBAS_ExecuteSuspiciousPowerShellViaSQLPS\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- LOLBAS_IndirectCommandExecutionViaConsoleWindowHost\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- LOLBAS_PerformMaliciousActivitiesViaHeadlessBrowser\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- LOLBAS_RegisterDLLViaCertOC\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- LOLBAS_RegisterDLLViaMSIEXEC\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- LOLBAS_RegisterDLLViaOdbcconf\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- LOLBAS_ScriptletProxyExecutionViaPubprn\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- malicious_dynamic_function_loading\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- EncryptPCInfo\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- EnryptDataAgentTeslaHTTP\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- EnryptDataAgentTeslaHTTPT2\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- EnryptDataNanoCore\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- MartiansIE\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- MartiansOffice\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- ReadsMemoryRemoteProcess\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- MimicsAgent\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- MimicsFiletime\n2025-03-08 17:43:12,963 [root] DEBUG:    |-- MimicsIcon\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- MasqueradesProcessName\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- MimikatzModules\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- QuilMinerNetworkBehavior\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- AMSIBypassViaCOMRegistry\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- AccessAutoLogonsViaRegistry\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- AccessBootKeyViaRegistry\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- CreateSuspiciousLNKFiles\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- CredentialAccessViaWindowsCredentialHistory\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- DLLHijackingViaMicrosoftExchange\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- DLLHijackingViaWaaSMedicSvcCOMTypeLib\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- ExecuteFileDownloadedViaOpenSSH\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- ExecuteSafeModeFromSuspiciousProcess\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- ExecuteScriptsViaMicrosoftManagementConsole\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- ExecuteSuspiciousProcessesViaWindowsMSSQLService\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- ExecutionFromSelfExtractingArchive\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- IPAddressDiscoveryViaTrustedProgram\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- LoadDLLViaControlPanel\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- MSOfficeCMDRCE\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- MountCopyToWebDavShare\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- NetworkConnectionViaSuspiciousProcess\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- PotentialLocationDiscoveryViaUnusualProcess\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- PotentialProtocolTunnelingViaLegitUtilities\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- PotentialProtocolTunnelingViaQEMU\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- StoreExecutableRegistry\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- SuspiciousExecutionViaDotnetRemoting\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- SuspiciousExecutionViaMicrosoftExchangeTransportAgent\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- SuspiciousJavaExecutionViaWinScripts\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- SuspiciousScheduledTaskCreationviaMasqueradedXMLFile\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- UsesRestartManagerForSuspiciousActivities\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- ModifiesCerts\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- DotNetCLRUsageLogKnob\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- Modifies_HostFile\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- ModifiesOEMInformation\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- ModifySecurityCenterWarnings\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- ModifiesUACNotify\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- ModifiesDesktopWallpaper\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- ZoneID\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- move_file_on_reboot\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- Multiple_UA\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- NetworkAnomaly\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- NetworkBIND\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- NetworkCnCHTTPSArchive\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- NetworkCnCHTTPSFreeWebHosting\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- NetworkCnCHTTPSGeneric\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- NetworkCnCHTTPSInteractsh\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- NetworkCnCHTTPSOpenSource\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- NetworkCnCHTTPSPasteSite\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- NetworkCnCHTTPSPayload\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- NetworkCnCHTTPSServiceInterface\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- NetworkCnCHTTPSSocialMedia\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- NetworkCnCHTTPSTelegram\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- NetworkCnCHTTPSTempStorageSite\n2025-03-08 17:43:12,964 [root] DEBUG:    |-- NetworkCnCHTTPSTempURLDNS\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- NetworkCnCHTTPSURLShortenerSite\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- NetworkCnCHTTPSUserAgent\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- NetworkCnCSMTPSExfil\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- NetworkCnCSMTPSGeneric\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- NetworkDNSBlockChain\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- NetworkDNSIDN\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- NetworkDNSOpenNIC\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- NetworkDNSPasteSite\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- NetworkDNSReverseProxy\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- NetworkDNSSuspiciousQueryType\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- NetworkDNSTempFileService\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- NetworkDNSTempURLDNS\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- NetworkDNSTunnelingRequest\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- NetworkDNSURLShortener\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- NetworkDOHTLS\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- Suspicious_TLD\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- NetworkDocumentHTTP\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- ExplorerHTTP\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- NetworkFakeUserAgent\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- LegitDomainAbuse\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- NetworkDocumentFile\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- NetworkEXE\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- Tor\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- TorHiddenService\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- Office_Code_Page\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- OfficeAddinLoading\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- OfficeCOMLoad\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- OfficeDotNetLoad\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- OfficeMSHTMLLoad\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- OfficePerfKey\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- OfficeVBLLoad\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- OfficeWMILoad\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- OfficeCVE201711882\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- OfficeCVE201711882Network\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- OfficeCVE202140444\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- OfficeCVE202140444M2\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- OfficeFlashLoad\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- OfficePostScript\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- Office_Macro\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- ChangesTrustCenter_settings\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- DisablesVBATrustAccess\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- OfficeMacroAutoExecution\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- OfficeMacroIOC\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- OfficeMacroMaliciousPredition\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- OfficeMacroSuspicious\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- RTFASLRBypass\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- RTFAnomalyCharacterSet\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- RTFAnomalyVersion\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- RTFEmbeddedContent\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- RTFEmbeddedOfficeFile\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- RTFExploitStatic\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- OfficeSecurity\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- OfficeAnamalousFeature\n2025-03-08 17:43:12,965 [root] DEBUG:    |-- OfficeDDECommand\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- OfficeSuspiciousProcesses\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- OfficeWriteEXE\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- ArmadilloMutex\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- ArmadilloRegKey\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- ADS\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- PersistenceViaAutodialDLLRegistry\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- Autorun\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- Autorun_scheduler\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- PersistenceSafeBoot\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- PersistenceBootexecute\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- PersistenceRegistryScript\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- PersistenceIFEO\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- PersistenceSilentProcessExit\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- PersistenceRDPRegistry\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- PersistenceRDPShadowing\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- PersistenceService\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- PersistenceShimDatabase\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- PowerpoolMutexes\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- PowerShellNetworkConnection\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- PowerShellScriptBlockLogging\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- PowershellCommandSuspicious\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- PowershellDownload\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- PowershellRenamed\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- PowershellRequest\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- PowershellReversed\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- PowershellVariableObfuscation\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- PreventsSafeboot\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- CmdlineProcessDiscovery\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- CreateToolhelp32SnapshotProcessModuleEnumeration\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- EnumeratesRunningProcesses\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- ProcessInterest\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- ProcessNeeded\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- MassDataEncryption\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- CryptoMixMutexes\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- DharmaMutexes\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- RansomwareDMALocker\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- RansomwareExtensions\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- RansomwareFileModifications\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- RansomwareFiles\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- FonixMutexes\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- GandCrabMutexes\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- GermanWiperMutexes\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- MedusaLockerMutexes\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- MedusaLockerRegkeys\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- RansomwareMessage\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- NemtyMutexes\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- NemtyNetworkActivity\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- NemtyNote\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- NemtyRegkeys\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- PYSAMutexes\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- RansomwareRadamant\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- RansomwareRecyclebin\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- RevilMutexes\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- RevilRegkey\n2025-03-08 17:43:12,966 [root] DEBUG:    |-- SatanMutexes\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- SnakeRansomMutexes\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- sodinokibi\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- StopRansomMutexes\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- StopRansomwareCMD\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- StopRansomwareRegistry\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- RansomwareSTOPDJVU\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- BeebusMutexes\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- BlackNETMutexes\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- BlackRATAPIs\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- BlackRATMutexes\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- BlackRATNetworkActivity\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- BlackRATRegistryKeys\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- CRATMutexes\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- DCRatAPIs\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- DCRatFiles\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- DCRatMutex\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- FynloskiMutexes\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- KaraganyEventObjects\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- KaraganyFiles\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- LimeRATMutexes\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- LimeRATRegkeys\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- LodaRATFileBehavior\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- LuminosityRAT\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- ModiRATBehavior\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- NanocoreRAT\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- netwire\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- NjratRegkeys\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- ObliquekRATFiles\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- ObliquekRATMutexes\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- ObliquekRATNetworkActivity\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- OrcusRAT\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- ParallaxMutexes\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- PcClientMutexes\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- PlugxMutexes\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- PoisonIvyMutexes\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- QuasarMutexes\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- RatsnifMutexes\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- SennaMutexes\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- SpynetRat\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- TrochilusRATAPIs\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- VenomRAT\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- WarzoneRATFiles\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- WarzoneRATRegkeys\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- XpertRATFiles\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- XpertRATMutexes\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- XtremeMutexes\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- ReadsSelf\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- Recon_Beacon\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- Fingerprint\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- InstalledApps\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- SystemInfo\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- Accesses_RecycleBin\n2025-03-08 17:43:12,967 [root] DEBUG:    |-- RemcosFiles\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- RemcosMutexes\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- RemcosRegkeys\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- RemcosShellCodeDynamicWrapperX\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- RDPTCPKey\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- UsesRDPClip\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- UsesRemoteDesktopSession\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- RemovesNetworkingIcon\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- RemovesPinnedPrograms\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- RemovesSecurityAndMaintenanceIcon\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- RemovesStartMenuDefaults\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- RemovesUsernameStartMenu\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- RemovesZoneIdADS\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- SpicyHotPotBehavior\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- ScriptCreatedProcess\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- ScriptNetworkActvity\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- SuspiciousJSScript\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- JavaScriptTimer\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- Secure_Login_Phish\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- SecurityXploded_Modules\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- GetClipboardData\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- SetsAutoconfigURL\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- InstallsWinpcap\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- SpoofsProcname\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- CreatesAutorunInf\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- StackPivot\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- StackPivotFileCreated\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- StackPivotProcessCreate\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- StealingClipboardData\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- StealthChildProc\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- StealthFile\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- StealthHiddenExtension\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- StealthHiddenReg\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- StealthHideNotifications\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- StealthSystemProcName\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- StealthTimeout\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- StealthWebHistory\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- Hidden_Window\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- sysinternals_psexec\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- sysinternals_tools\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- LanguageCheckReg\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- QueriesKeyboardLayout\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- QueriesLocaleAPI\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- TampersETW\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- LSATampering\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- TampersPowerShellLogging\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- Flame\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- TerminatesRemoteProcess\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- TerritorialDisputeSIGs\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- TrickBotTaskDelete\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- TrickBotMutexes\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- FleerCivetMutexes\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- LokibotMutexes\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- UrsnifBehavior\n2025-03-08 17:43:12,968 [root] DEBUG:    |-- UpatreFiles\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- UpatreMutexes\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- UserEnum\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- ADFind\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- UsesMSProtocol\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- Virus\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- NeshtaFiles\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- NeshtaMutexes\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- NeshtaRegKeys\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- RenamerMutexes\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- Webmail_Phish\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- OWAWebShellFiles\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- WebShellFiles\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- WebShellProcesses\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- PersistsDotNetDevUtility\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- SpwansDotNetDevUtiliy\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- AltersWindowsUtility\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- DotNETCSCBuild\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- MavInjectLolbin\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- MultipleExplorerInstances\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- OverwritesAccessibilityUtility\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- PotentialLateralMovementViaSMBEXEC\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- PotentialWebShellViaScreenConnectServer\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- ScriptToolExecuted\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- SuspiciousCertutilUse\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- SuspiciousCommandTools\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- SuspiciousMpCmdRunUse\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- SuspiciousPingUse\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- UsesMicrosoftHTMLHelpExecutable\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- UsesPowerShellCopyItem\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- UsesWindowsUtilities\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- UsesWindowsUtilitiesAppCmd\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- UsesWindowsUtilitiesCSVDELDFIDE\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- UsesWindowsUtilitiesCipher\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- UsesWindowsUtilitiesClickOnce\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- UsesWindowsUtilitiesCurl\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- UsesWindowsUtilitiesDSQuery\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- UsesWindowsUtilitiesEsentutl\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- UsesWindowsUtilitiesFinger\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- UsesWindowsUtilitiesMode\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- UsesWindowsUtilitiesNTDSutil\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- UsesWindowsUtilitiesNltest\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- UsesWindowsUtilitiesScheduler\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- UsesWindowsUtilitiesXcopy\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- WMICCommandSuspicious\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- WiperZeroedBytes\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- ScrconsWMIScriptConsumer\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- WMICreateProcess\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- WMIScriptProcess\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- Win32ProcessCreate\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- AllapleMutexes\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- LinuxDeletesFiles\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- LinuxDropsFiles\n2025-03-08 17:43:12,969 [root] DEBUG:    |-- LinuxReadsFiles\n2025-03-08 17:43:12,970 [root] DEBUG:    `-- LinuxWritesFiles\n2025-03-08 17:43:12,970 [root] DEBUG: Imported \"reporting\" modules:\n2025-03-08 17:43:12,970 [root] DEBUG:    |-- BinGraph\n2025-03-08 17:43:12,970 [root] DEBUG:    |-- CAPASummary\n2025-03-08 17:43:12,970 [root] DEBUG:    |-- JsonDump\n2025-03-08 17:43:12,970 [root] DEBUG:    |-- MongoDB\n2025-03-08 17:43:12,970 [root] DEBUG:    |-- PCAP2CERT\n2025-03-08 17:43:12,970 [root] DEBUG:    |-- ReportHTML\n2025-03-08 17:43:12,970 [root] DEBUG:    |-- ReportHTMLSummary\n2025-03-08 17:43:12,970 [root] DEBUG:    `-- ReportPDF\n2025-03-08 17:43:12,970 [root] DEBUG: Imported \"feeds\" modules:\n2025-03-08 17:43:12,970 [root] DEBUG:    `-- AbuseCH_SSL\n2025-03-08 17:43:12,970 [root] DEBUG: Imported \"machinery\" modules:\n2025-03-08 17:43:12,970 [root] DEBUG:    `-- Proxmox\n2025-03-08 17:43:12,970 [Task 23] [root] DEBUG: Processing task\n2025-03-08 17:43:12,980 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"AnalysisInfo\" on analysis at \"/opt/CAPEv2/storage/analyses/23\"\n2025-03-08 17:43:12,987 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Processing module autoruns not found in configuration file\n2025-03-08 17:43:12,988 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"BehaviorAnalysis\" on analysis at \"/opt/CAPEv2/storage/analyses/23\"\n2025-03-08 17:43:12,988 [Task 23] [modules.processing.behavior] WARNING: Analysis results folder does not exist at path \"/opt/CAPEv2/storage/analyses/23/logs\"\n2025-03-08 17:43:12,989 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Debug\" on analysis at \"/opt/CAPEv2/storage/analyses/23\"\n2025-03-08 17:43:12,990 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Processing module hollowshunter not found in configuration file\n2025-03-08 17:43:12,990 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"NetworkAnalysis\" on analysis at \"/opt/CAPEv2/storage/analyses/23\"\n2025-03-08 17:43:12,990 [Task 23] [modules.processing.network] DEBUG: The PCAP file does not exist at path \"/opt/CAPEv2/storage/analyses/23/dump.pcap\"\n2025-03-08 17:43:12,990 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Suricata\" on analysis at \"/opt/CAPEv2/storage/analyses/23\"\n2025-03-08 17:43:12,990 [Task 23] [modules.processing.suricata] DEBUG: Unable to Run Suricata: Pcap file /opt/CAPEv2/storage/analyses/23/dump.pcap does not exist. Did you run analysis with live connection?\n2025-03-08 17:43:12,990 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Sysmon\" on analysis at \"/opt/CAPEv2/storage/analyses/23\"\n2025-03-08 17:43:12,991 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"UrlAnalysis\" on analysis at \"/opt/CAPEv2/storage/analyses/23\"\n2025-03-08 17:43:12,991 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"script_log_processing\" on analysis at \"/opt/CAPEv2/storage/analyses/23\"\n2025-03-08 17:43:12,991 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"ProcessMemory\" on analysis at \"/opt/CAPEv2/storage/analyses/23\"\n2025-03-08 17:43:13,064 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Applying signature overlays for signatures: creates_exe\n2025-03-08 17:43:13,066 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running 285 evented signatures\n2025-03-08 17:43:13,066 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- packer_themida\n2025-03-08 17:43:13,066 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- stealth_network\n2025-03-08 17:43:13,066 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- disable_driver_via_blocklist\n2025-03-08 17:43:13,066 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- disable_driver_via_hvcidisallowedimages\n2025-03-08 17:43:13,066 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- disable_hypervisor_protected_code_integrity\n2025-03-08 17:43:13,066 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- pendingfilerenameoperations_Operations\n2025-03-08 17:43:13,066 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- anomalous_deletefile\n2025-03-08 17:43:13,066 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antiav_360_libs\n2025-03-08 17:43:13,066 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antiav_ahnlab_libs\n2025-03-08 17:43:13,066 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antiav_avast_libs\n2025-03-08 17:43:13,066 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antiav_bitdefender_libs\n2025-03-08 17:43:13,066 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antiav_bullgaurd_libs\n2025-03-08 17:43:13,066 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antiav_emsisoft_libs\n2025-03-08 17:43:13,066 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antiav_qurb_libs\n2025-03-08 17:43:13,066 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antiav_servicestop\n2025-03-08 17:43:13,066 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antidebug_addvectoredexceptionhandler\n2025-03-08 17:43:13,066 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antiav_apioverride_libs\n2025-03-08 17:43:13,066 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antidebug_checkremotedebuggerpresent\n2025-03-08 17:43:13,066 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antidebug_debugactiveprocess\n2025-03-08 17:43:13,066 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antidebug_gettickcount\n2025-03-08 17:43:13,066 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antidebug_guardpages\n2025-03-08 17:43:13,066 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antidebug_ntcreatethreadex\n2025-03-08 17:43:13,067 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antiav_nthookengine_libs\n2025-03-08 17:43:13,067 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antidebug_ntsetinformationthread\n2025-03-08 17:43:13,067 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antidebug_outputdebugstring\n2025-03-08 17:43:13,067 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antidebug_setunhandledexceptionfilter\n2025-03-08 17:43:13,067 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antidebug_windows\n2025-03-08 17:43:13,067 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antiemu_wine_func\n2025-03-08 17:43:13,067 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antisandbox_check_userdomain\n2025-03-08 17:43:13,067 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antisandbox_cuckoo\n2025-03-08 17:43:13,067 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antisandbox_cuckoocrash\n2025-03-08 17:43:13,067 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antisandbox_foregroundwindows\n2025-03-08 17:43:13,067 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antisandbox_mouse_hook\n2025-03-08 17:43:13,067 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antisandbox_restart\n2025-03-08 17:43:13,067 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antisandbox_sboxie_libs\n2025-03-08 17:43:13,067 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antisandbox_sboxie_objects\n2025-03-08 17:43:13,067 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antisandbox_script_timer\n2025-03-08 17:43:13,067 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antisandbox_sleep\n2025-03-08 17:43:13,067 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antisandbox_sunbelt_libs\n2025-03-08 17:43:13,067 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antisandbox_suspend\n2025-03-08 17:43:13,067 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antisandbox_unhook\n2025-03-08 17:43:13,067 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antivm_directory_objects\n2025-03-08 17:43:13,067 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antivm_generic_disk\n2025-03-08 17:43:13,067 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antivm_generic_disk_setupapi\n2025-03-08 17:43:13,067 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antivm_generic_scsi\n2025-03-08 17:43:13,067 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antivm_generic_services\n2025-03-08 17:43:13,067 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antivm_generic_system\n2025-03-08 17:43:13,067 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antivm_checks_available_memory\n2025-03-08 17:43:13,067 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antivm_network_adapters\n2025-03-08 17:43:13,067 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- detect_virtualization_via_recent_files\n2025-03-08 17:43:13,067 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antivm_vbox_libs\n2025-03-08 17:43:13,067 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antivm_vbox_provname\n2025-03-08 17:43:13,067 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antivm_vbox_window\n2025-03-08 17:43:13,067 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antivm_vmware_events\n2025-03-08 17:43:13,067 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antivm_vmware_libs\n2025-03-08 17:43:13,067 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- api_spamming\n2025-03-08 17:43:13,067 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- api_uuidfromstringa\n2025-03-08 17:43:13,067 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- banker_prinimalka\n2025-03-08 17:43:13,067 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- bcdedit_command\n2025-03-08 17:43:13,067 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- bootkit\n2025-03-08 17:43:13,068 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- potential_overwrite_mbr\n2025-03-08 17:43:13,068 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- suspicious_ioctl_scsipassthough\n2025-03-08 17:43:13,068 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- browser_needed\n2025-03-08 17:43:13,068 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- browser_scanbox\n2025-03-08 17:43:13,068 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- firefox_disables_process_tab\n2025-03-08 17:43:13,068 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- regsvr32_squiblydoo_dll_load\n2025-03-08 17:43:13,068 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- uac_bypass_cmstp\n2025-03-08 17:43:13,068 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- uac_bypass_eventvwr\n2025-03-08 17:43:13,068 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- uac_bypass_windows_Backup\n2025-03-08 17:43:13,068 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- clickfraud_cookies\n2025-03-08 17:43:13,068 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- clickfraud_volume\n2025-03-08 17:43:13,068 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- queries_computer_name\n2025-03-08 17:43:13,068 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- queries_user_name\n2025-03-08 17:43:13,068 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- creates_largekey\n2025-03-08 17:43:13,068 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- creates_nullvalue\n2025-03-08 17:43:13,068 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- access_windows_passwords_vault\n2025-03-08 17:43:13,068 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- dump_lsa_via_windows_error_reporting\n2025-03-08 17:43:13,068 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- lsass_credential_dumping\n2025-03-08 17:43:13,068 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- critical_process\n2025-03-08 17:43:13,068 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- generates_crypto_key\n2025-03-08 17:43:13,068 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- cryptopool_domains\n2025-03-08 17:43:13,068 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- cve_2014_6332\n2025-03-08 17:43:13,068 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- cve_2015_2419_js\n2025-03-08 17:43:13,068 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- cve_2016-0189\n2025-03-08 17:43:13,068 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- cve_2016_7200\n2025-03-08 17:43:13,068 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- dead_connect\n2025-03-08 17:43:13,068 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- dead_link\n2025-03-08 17:43:13,068 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- debugs_self\n2025-03-08 17:43:13,068 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- decoy_image\n2025-03-08 17:43:13,068 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- deletes_consolehost_history\n2025-03-08 17:43:13,068 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- deletes_self\n2025-03-08 17:43:13,068 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- deletes_shadow_copies\n2025-03-08 17:43:13,068 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- deletes_system_state_backup\n2025-03-08 17:43:13,068 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- dep_bypass\n2025-03-08 17:43:13,068 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- dep_disable\n2025-03-08 17:43:13,068 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- disables_mappeddrives_autodisconnect\n2025-03-08 17:43:13,068 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- disables_spdy\n2025-03-08 17:43:13,068 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- disables_wfp\n2025-03-08 17:43:13,068 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- add_windows_defender_exclusions\n2025-03-08 17:43:13,068 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- dll_load_uncommon_file_types\n2025-03-08 17:43:13,069 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- document_script_exe_drop\n2025-03-08 17:43:13,069 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- guloader_apis\n2025-03-08 17:43:13,069 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- driver_load\n2025-03-08 17:43:13,069 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- dynamic_function_loading\n2025-03-08 17:43:13,069 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- exec_crash\n2025-03-08 17:43:13,069 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- process_creation_suspicious_location\n2025-03-08 17:43:13,069 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- exploit_getbasekerneladdress\n2025-03-08 17:43:13,069 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- exploit_gethaldispatchtable\n2025-03-08 17:43:13,069 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- exploit_heapspray\n2025-03-08 17:43:13,069 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- koadic_apis\n2025-03-08 17:43:13,069 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- koadic_network_activity\n2025-03-08 17:43:13,069 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- downloads_from_filehosting\n2025-03-08 17:43:13,069 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- generic_phish\n2025-03-08 17:43:13,069 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- http_request\n2025-03-08 17:43:13,069 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- infostealer_browser\n2025-03-08 17:43:13,069 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- infostealer_browser_password\n2025-03-08 17:43:13,069 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- infostealer_cookies\n2025-03-08 17:43:13,069 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- cryptbot_network\n2025-03-08 17:43:13,069 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- infostealer_keylog\n2025-03-08 17:43:13,069 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- masslogger_artifacts\n2025-03-08 17:43:13,069 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- masslogger_version\n2025-03-08 17:43:13,069 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- purplewave_network_activity\n2025-03-08 17:43:13,069 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- quilclipper_behavior\n2025-03-08 17:43:13,069 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- raccoon_behavior\n2025-03-08 17:43:13,069 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- captures_screenshot\n2025-03-08 17:43:13,069 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- vidar_behavior\n2025-03-08 17:43:13,069 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- injection_createremotethread\n2025-03-08 17:43:13,069 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- injection_explorer\n2025-03-08 17:43:13,069 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- injection_needextension\n2025-03-08 17:43:13,069 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- injection_network_traffic\n2025-03-08 17:43:13,069 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- injection_runpe\n2025-03-08 17:43:13,069 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- injection_themeinitapihook\n2025-03-08 17:43:13,069 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- resumethread_remote_process\n2025-03-08 17:43:13,069 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- internet_dropper\n2025-03-08 17:43:13,069 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- escalate_privilege_via_named_pipe\n2025-03-08 17:43:13,069 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- ipc_namedpipe\n2025-03-08 17:43:13,069 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- js_phish\n2025-03-08 17:43:13,069 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- js_suspicious_redirect\n2025-03-08 17:43:13,069 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- execute_binary_via_internet_explorer_exporter\n2025-03-08 17:43:13,070 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- execute_binary_via_run_exe_helper_utility\n2025-03-08 17:43:13,070 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- execute_ps_via_syncappvpublishingserver\n2025-03-08 17:43:13,070 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- malicious_dynamic_function_loading\n2025-03-08 17:43:13,070 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- encrypt_pcinfo\n2025-03-08 17:43:13,070 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- encrypt_data_agenttesla_http\n2025-03-08 17:43:13,070 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- encrypt_data_agentteslat2_http\n2025-03-08 17:43:13,070 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- encrypt_data_nanocore\n2025-03-08 17:43:13,070 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- reads_memory_remote_process\n2025-03-08 17:43:13,070 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- mimics_filetime\n2025-03-08 17:43:13,070 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- quilclipper_behavior\n2025-03-08 17:43:13,070 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- amsi_bypass_via_com_registry\n2025-03-08 17:43:13,070 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- access_auto_logons_via_registry\n2025-03-08 17:43:13,070 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- access_boot_key_via_registry\n2025-03-08 17:43:13,070 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- create_suspicious_lnk_files\n2025-03-08 17:43:13,070 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- credential_access_via_windows_credential_history\n2025-03-08 17:43:13,070 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- dll_hijacking_via_microsoft_exchange\n2025-03-08 17:43:13,070 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- dll_hijacking_via_waas_medic_svc_com_typelib\n2025-03-08 17:43:13,070 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- execute_file_downloaded_via_openssh\n2025-03-08 17:43:13,070 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- execute_safe_mode_from_suspicious_process\n2025-03-08 17:43:13,070 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- execute_scripts_via_microsoft_management_console\n2025-03-08 17:43:13,070 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- execute_suspicious_processes_via_windows_mssql_service\n2025-03-08 17:43:13,070 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- execution_from_self_extracting_archive\n2025-03-08 17:43:13,070 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- ip_address_discovery_via_trusted_program\n2025-03-08 17:43:13,070 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- load_dll_via_control_panel\n2025-03-08 17:43:13,070 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_connection_via_suspicious_process\n2025-03-08 17:43:13,070 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- potential_location_discovery_via_unusual_process\n2025-03-08 17:43:13,070 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- store_executable_registry\n2025-03-08 17:43:13,070 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- Suspicious_Execution_Via_MicrosoftExchangeTransportAgent\n2025-03-08 17:43:13,070 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- suspicious_java_execution_via_win_scripts\n2025-03-08 17:43:13,070 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- Suspicious_Scheduled_Task_Creation_Via_Masqueraded_XML_File\n2025-03-08 17:43:13,070 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- uses_restart_manager_for_suspicious_activities\n2025-03-08 17:43:13,070 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- modify_desktop_wallpaper\n2025-03-08 17:43:13,070 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- modify_zoneid_ads\n2025-03-08 17:43:13,070 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- move_file_on_reboot\n2025-03-08 17:43:13,070 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- multiple_useragents\n2025-03-08 17:43:13,070 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_anomaly\n2025-03-08 17:43:13,070 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_bind\n2025-03-08 17:43:13,070 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_https_archive\n2025-03-08 17:43:13,071 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_https_free_webshoting\n2025-03-08 17:43:13,071 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_https_generic\n2025-03-08 17:43:13,071 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_https_temp_urldns\n2025-03-08 17:43:13,071 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_https_opensource\n2025-03-08 17:43:13,071 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_https_pastesite\n2025-03-08 17:43:13,071 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_https_payload\n2025-03-08 17:43:13,071 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_https_serviceinterface\n2025-03-08 17:43:13,071 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_https_socialmedia\n2025-03-08 17:43:13,071 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_https_telegram\n2025-03-08 17:43:13,071 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_https_tempstorage\n2025-03-08 17:43:13,071 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_https_temp_urldns\n2025-03-08 17:43:13,071 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_https_urlshortener\n2025-03-08 17:43:13,071 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_https_useragent\n2025-03-08 17:43:13,071 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_smtps_exfil\n2025-03-08 17:43:13,071 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_smtps_generic\n2025-03-08 17:43:13,071 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_dns_idn\n2025-03-08 17:43:13,071 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_dns_suspicious_querytype\n2025-03-08 17:43:13,071 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_dns_tunneling_request\n2025-03-08 17:43:13,071 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- explorer_http\n2025-03-08 17:43:13,071 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_fake_useragent\n2025-03-08 17:43:13,071 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- legitimate_domain_abuse\n2025-03-08 17:43:13,071 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_downloader_exe\n2025-03-08 17:43:13,071 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_tor\n2025-03-08 17:43:13,071 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- office_com_load\n2025-03-08 17:43:13,071 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- office_dotnet_load\n2025-03-08 17:43:13,071 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- office_mshtml_load\n2025-03-08 17:43:13,071 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- office_vb_load\n2025-03-08 17:43:13,071 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- office_wmi_load\n2025-03-08 17:43:13,071 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- office_cve2017_11882_network\n2025-03-08 17:43:13,071 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- office_cve_2021_40444\n2025-03-08 17:43:13,071 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- office_cve_2021_40444_m2\n2025-03-08 17:43:13,071 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- office_flash_load\n2025-03-08 17:43:13,071 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- office_postscript\n2025-03-08 17:43:13,071 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- office_suspicious_processes\n2025-03-08 17:43:13,071 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- persistence_via_autodial_dll_registry\n2025-03-08 17:43:13,071 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- persistence_autorun\n2025-03-08 17:43:13,071 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- persistence_autorun_tasks\n2025-03-08 17:43:13,071 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- persistence_bootexecute\n2025-03-08 17:43:13,071 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- persistence_registry_script\n2025-03-08 17:43:13,071 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- powershell_download\n2025-03-08 17:43:13,072 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- powershell_request\n2025-03-08 17:43:13,072 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- createtoolhelp32snapshot_module_enumeration\n2025-03-08 17:43:13,072 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- enumerates_running_processes\n2025-03-08 17:43:13,072 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- process_interest\n2025-03-08 17:43:13,072 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- process_needed\n2025-03-08 17:43:13,072 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- mass_data_encryption\n2025-03-08 17:43:13,072 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- ransomware_dmalocker\n2025-03-08 17:43:13,072 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- ransomware_file_modifications\n2025-03-08 17:43:13,072 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- ransomware_message\n2025-03-08 17:43:13,072 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- nemty_network_activity\n2025-03-08 17:43:13,072 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- nemty_note\n2025-03-08 17:43:13,072 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- sodinokibi_behavior\n2025-03-08 17:43:13,072 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- stop_ransomware_registry\n2025-03-08 17:43:13,072 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- blackrat_apis\n2025-03-08 17:43:13,072 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- blackrat_network_activity\n2025-03-08 17:43:13,072 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- blackrat_registry_keys\n2025-03-08 17:43:13,072 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- dcrat_behavior\n2025-03-08 17:43:13,072 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- karagany_system_event_objects\n2025-03-08 17:43:13,072 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- rat_luminosity\n2025-03-08 17:43:13,072 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- rat_nanocore\n2025-03-08 17:43:13,072 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- netwire_behavior\n2025-03-08 17:43:13,072 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- obliquerat_network_activity\n2025-03-08 17:43:13,072 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- orcusrat_behavior\n2025-03-08 17:43:13,072 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- trochilusrat_apis\n2025-03-08 17:43:13,072 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- recon_beacon\n2025-03-08 17:43:13,072 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- recon_programs\n2025-03-08 17:43:13,072 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- recon_systeminfo\n2025-03-08 17:43:13,072 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- accesses_recyclebin\n2025-03-08 17:43:13,072 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- remcos_shell_code_dynamic_wrapper_x\n2025-03-08 17:43:13,072 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- removes_zoneid_ads\n2025-03-08 17:43:13,072 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- script_created_process\n2025-03-08 17:43:13,072 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- script_network_activity\n2025-03-08 17:43:13,072 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- suspicious_js_script\n2025-03-08 17:43:13,072 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- javascript_timer\n2025-03-08 17:43:13,072 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- secure_login_phishing\n2025-03-08 17:43:13,072 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- securityxploded_modules\n2025-03-08 17:43:13,072 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- get_clipboard_data\n2025-03-08 17:43:13,072 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- sets_autoconfig_url\n2025-03-08 17:43:13,073 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- spoofs_procname\n2025-03-08 17:43:13,073 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- stack_pivot\n2025-03-08 17:43:13,073 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- stack_pivot_file_created\n2025-03-08 17:43:13,073 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- stack_pivot_process_create\n2025-03-08 17:43:13,073 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- set_clipboard_data\n2025-03-08 17:43:13,073 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- stealth_childproc\n2025-03-08 17:43:13,073 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- stealth_system_procname\n2025-03-08 17:43:13,073 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- stealth_timeout\n2025-03-08 17:43:13,073 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- stealth_window\n2025-03-08 17:43:13,073 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- queries_keyboard_layout\n2025-03-08 17:43:13,073 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- queries_locale_api\n2025-03-08 17:43:13,073 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- terminates_remote_process\n2025-03-08 17:43:13,073 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- trickbot_task_delete\n2025-03-08 17:43:13,073 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- user_enum\n2025-03-08 17:43:13,073 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- virus\n2025-03-08 17:43:13,073 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- neshta_files\n2025-03-08 17:43:13,073 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- neshta_regkeys\n2025-03-08 17:43:13,073 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- webmail_phish\n2025-03-08 17:43:13,073 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- persists_dev_util\n2025-03-08 17:43:13,073 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- spawns_dev_util\n2025-03-08 17:43:13,073 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- alters_windows_utility\n2025-03-08 17:43:13,073 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- overwrites_accessibility_utility\n2025-03-08 17:43:13,073 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- Potential_Lateral_Movement_Via_SMBEXEC\n2025-03-08 17:43:13,073 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- potential_WebShell_Via_ScreenConnectServer\n2025-03-08 17:43:13,073 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- uses_Microsoft_HTML_Help_Executable\n2025-03-08 17:43:13,073 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- uses_windows_utilities_to_create_scheduled_task\n2025-03-08 17:43:13,073 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- wiper_zeroedbytes\n2025-03-08 17:43:13,073 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- wmi_create_process\n2025-03-08 17:43:13,073 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- wmi_script_process\n2025-03-08 17:43:13,073 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       `-- win32_process_create\n2025-03-08 17:43:13,076 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Failed to run signature \"uac_bypass_windows_Backup\": 'NoneType' object is not iterable\n2025-03-08 17:43:13,085 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running non-evented signatures\n2025-03-08 17:43:13,085 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antianalysis_tls_section\"\n2025-03-08 17:43:13,085 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivirus_clamav\"\n2025-03-08 17:43:13,085 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivirus_virustotal\"\n2025-03-08 17:43:13,085 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bad_certs\"\n2025-03-08 17:43:13,085 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bad_ssl_certs\"\n2025-03-08 17:43:13,085 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_zeus_p2p\"\n2025-03-08 17:43:13,085 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_zeus_url\"\n2025-03-08 17:43:13,085 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"binary_yara\"\n2025-03-08 17:43:13,085 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Failed to run signature \"binary_yara\": 'target'\n2025-03-08 17:43:13,086 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_athenahttp\"\n2025-03-08 17:43:13,086 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_dirtjumper\"\n2025-03-08 17:43:13,086 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_drive\"\n2025-03-08 17:43:13,086 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_drive2\"\n2025-03-08 17:43:13,086 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_madness\"\n2025-03-08 17:43:13,086 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"phishing_kit_detected\"\n2025-03-08 17:43:13,086 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"phishing_kit_detected\"\n2025-03-08 17:43:13,086 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"phishing_kit_detected\"\n2025-03-08 17:43:13,087 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"family_proxyback\"\n2025-03-08 17:43:13,087 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_antianalysis\"\n2025-03-08 17:43:13,087 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_collection\"\n2025-03-08 17:43:13,087 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_communication\"\n2025-03-08 17:43:13,087 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_compiler\"\n2025-03-08 17:43:13,087 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_datamanipulation\"\n2025-03-08 17:43:13,087 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_executable\"\n2025-03-08 17:43:13,087 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_hostinteraction\"\n2025-03-08 17:43:13,087 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_impact\"\n2025-03-08 17:43:13,087 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_lib\"\n2025-03-08 17:43:13,087 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_linking\"\n2025-03-08 17:43:13,087 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_loadcode\"\n2025-03-08 17:43:13,087 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_malwarefamily\"\n2025-03-08 17:43:13,088 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_nursery\"\n2025-03-08 17:43:13,088 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_persistence\"\n2025-03-08 17:43:13,088 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_runtime\"\n2025-03-08 17:43:13,088 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_targeting\"\n2025-03-08 17:43:13,088 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"threatfox\"\n2025-03-08 17:43:13,088 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"log4shell\"\n2025-03-08 17:43:13,088 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"mimics_extension\"\n2025-03-08 17:43:13,088 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_ip_exe\"\n2025-03-08 17:43:13,088 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dga\"\n2025-03-08 17:43:13,088 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dga_fraunhofer\"\n2025-03-08 17:43:13,088 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dyndns\"\n2025-03-08 17:43:13,088 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_icmp\"\n2025-03-08 17:43:13,088 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_irc\"\n2025-03-08 17:43:13,089 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_open_proxy\"\n2025-03-08 17:43:13,089 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_smtp\"\n2025-03-08 17:43:13,089 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_torgateway\"\n2025-03-08 17:43:13,089 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"origin_langid\"\n2025-03-08 17:43:13,089 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"origin_resource_langid\"\n2025-03-08 17:43:13,089 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"overlay\"\n2025-03-08 17:43:13,089 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_unknown_pe_section_name\"\n2025-03-08 17:43:13,089 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_aspack\"\n2025-03-08 17:43:13,089 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_aspirecrypt\"\n2025-03-08 17:43:13,089 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_bedsprotector\"\n2025-03-08 17:43:13,089 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_confuser\"\n2025-03-08 17:43:13,089 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_enigma\"\n2025-03-08 17:43:13,089 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_entropy\"\n2025-03-08 17:43:13,090 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_mpress\"\n2025-03-08 17:43:13,090 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_nate\"\n2025-03-08 17:43:13,090 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_nspack\"\n2025-03-08 17:43:13,090 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_smartassembly\"\n2025-03-08 17:43:13,090 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_spices\"\n2025-03-08 17:43:13,090 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_themida\"\n2025-03-08 17:43:13,090 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_titan\"\n2025-03-08 17:43:13,090 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_upx\"\n2025-03-08 17:43:13,090 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_vmprotect\"\n2025-03-08 17:43:13,090 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_yoda\"\n2025-03-08 17:43:13,090 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"punch_plus_plus_pcres\"\n2025-03-08 17:43:13,090 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"procmem_yara\"\n2025-03-08 17:43:13,090 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"recon_checkip\"\n2025-03-08 17:43:13,090 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_authenticode\"\n2025-03-08 17:43:13,091 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"invalid_authenticode_signature\"\n2025-03-08 17:43:13,091 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_dotnet_anomaly\"\n2025-03-08 17:43:13,091 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_java\"\n2025-03-08 17:43:13,091 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_pdf\"\n2025-03-08 17:43:13,091 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"contains_pe_overlay\"\n2025-03-08 17:43:13,091 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_pe_anomaly\"\n2025-03-08 17:43:13,091 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"pe_compile_timestomping\"\n2025-03-08 17:43:13,091 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_pe_pdbpath\"\n2025-03-08 17:43:13,091 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_rat_config\"\n2025-03-08 17:43:13,091 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_versioninfo_anomaly\"\n2025-03-08 17:43:13,091 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suricata_alert\"\n2025-03-08 17:43:13,091 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_html_body\"\n2025-03-08 17:43:13,091 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_html_name\"\n2025-03-08 17:43:13,091 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_html_title\"\n2025-03-08 17:43:13,092 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_devicetree_1\"\n2025-03-08 17:43:13,092 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_handles_1\"\n2025-03-08 17:43:13,092 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_ldrmodules_1\"\n2025-03-08 17:43:13,092 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_ldrmodules_2\"\n2025-03-08 17:43:13,092 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_malfind_1\"\n2025-03-08 17:43:13,092 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_malfind_2\"\n2025-03-08 17:43:13,092 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_modscan_1\"\n2025-03-08 17:43:13,092 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_svcscan_1\"\n2025-03-08 17:43:13,092 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_svcscan_2\"\n2025-03-08 17:43:13,092 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_svcscan_3\"\n2025-03-08 17:43:13,092 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"whois_create\"\n2025-03-08 17:43:13,092 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"accesses_mailslot\"\n2025-03-08 17:43:13,093 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"accesses_netlogon_regkey\"\n2025-03-08 17:43:13,093 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"accesses_public_folder\"\n2025-03-08 17:43:13,093 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"accesses_sysvol\"\n2025-03-08 17:43:13,093 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"writes_sysvol\"\n2025-03-08 17:43:13,093 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"adds_admin_user\"\n2025-03-08 17:43:13,093 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"adds_user\"\n2025-03-08 17:43:13,093 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"overwrites_admin_password\"\n2025-03-08 17:43:13,093 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antianalysis_detectfile\"\n2025-03-08 17:43:13,094 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antianalysis_detectreg\"\n2025-03-08 17:43:13,094 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_attachment_manager\"\n2025-03-08 17:43:13,095 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_detectfile\"\n2025-03-08 17:43:13,095 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_detectreg\"\n2025-03-08 17:43:13,096 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_srp\"\n2025-03-08 17:43:13,097 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_whitespace\"\n2025-03-08 17:43:13,097 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antidebug_devices\"\n2025-03-08 17:43:13,097 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiemu_windefend\"\n2025-03-08 17:43:13,097 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiemu_wine_reg\"\n2025-03-08 17:43:13,097 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_cuckoo_files\"\n2025-03-08 17:43:13,097 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_fortinet_files\"\n2025-03-08 17:43:13,097 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_joe_anubis_files\"\n2025-03-08 17:43:13,097 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_sboxie_mutex\"\n2025-03-08 17:43:13,098 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_sunbelt_files\"\n2025-03-08 17:43:13,098 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_threattrack_files\"\n2025-03-08 17:43:13,098 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_bochs_keys\"\n2025-03-08 17:43:13,098 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_generic_bios\"\n2025-03-08 17:43:13,098 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_generic_cpu\"\n2025-03-08 17:43:13,098 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_generic_diskreg\"\n2025-03-08 17:43:13,098 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_hyperv_keys\"\n2025-03-08 17:43:13,098 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_parallels_keys\"\n2025-03-08 17:43:13,098 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vbox_devices\"\n2025-03-08 17:43:13,099 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vbox_files\"\n2025-03-08 17:43:13,099 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vbox_keys\"\n2025-03-08 17:43:13,099 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vmware_devices\"\n2025-03-08 17:43:13,099 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vmware_files\"\n2025-03-08 17:43:13,099 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vmware_keys\"\n2025-03-08 17:43:13,100 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vmware_mutexes\"\n2025-03-08 17:43:13,100 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vpc_files\"\n2025-03-08 17:43:13,100 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vpc_keys\"\n2025-03-08 17:43:13,100 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vpc_mutex\"\n2025-03-08 17:43:13,100 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_xen_keys\"\n2025-03-08 17:43:13,100 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"asyncrat_mutex\"\n2025-03-08 17:43:13,100 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"gulpix_behavior\"\n2025-03-08 17:43:13,101 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ketrican_regkeys\"\n2025-03-08 17:43:13,101 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"okrum_mutexes\"\n2025-03-08 17:43:13,101 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_cridex\"\n2025-03-08 17:43:13,101 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"geodo_banking_trojan\"\n2025-03-08 17:43:13,101 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_spyeye_mutexes\"\n2025-03-08 17:43:13,102 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_zeus_mutex\"\n2025-03-08 17:43:13,102 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bitcoin_opencl\"\n2025-03-08 17:43:13,102 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"accesses_primary_patition\"\n2025-03-08 17:43:13,102 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"direct_hdd_access\"\n2025-03-08 17:43:13,102 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"enumerates_physical_drives\"\n2025-03-08 17:43:13,102 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"physical_drive_access\"\n2025-03-08 17:43:13,102 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_russkill\"\n2025-03-08 17:43:13,102 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"browser_addon\"\n2025-03-08 17:43:13,102 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"chromium_browser_extension_directory\"\n2025-03-08 17:43:13,103 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"browser_helper_object\"\n2025-03-08 17:43:13,103 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"browser_security\"\n2025-03-08 17:43:13,103 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"browser_startpage\"\n2025-03-08 17:43:13,103 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ie_disables_process_tab\"\n2025-03-08 17:43:13,103 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"odbcconf_bypass\"\n2025-03-08 17:43:13,103 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"squiblydoo_bypass\"\n2025-03-08 17:43:13,103 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"squiblytwo_bypass\"\n2025-03-08 17:43:13,104 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bypass_firewall\"\n2025-03-08 17:43:13,104 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"checks_uac_status\"\n2025-03-08 17:43:13,104 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uac_bypass_cmstpcom\"\n2025-03-08 17:43:13,104 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uac_bypass_delegateexecute_sdclt\"\n2025-03-08 17:43:13,104 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uac_bypass_fodhelper\"\n2025-03-08 17:43:13,104 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cape_extracted_content\"\n2025-03-08 17:43:13,104 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"carberp_mutex\"\n2025-03-08 17:43:13,104 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"clears_logs\"\n2025-03-08 17:43:13,105 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_obfuscation\"\n2025-03-08 17:43:13,105 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_switches\"\n2025-03-08 17:43:13,105 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_terminate\"\n2025-03-08 17:43:13,105 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_forfiles_wildcard\"\n2025-03-08 17:43:13,105 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_http_link\"\n2025-03-08 17:43:13,105 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_long_string\"\n2025-03-08 17:43:13,105 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_reversed_http_link\"\n2025-03-08 17:43:13,105 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"long_commandline\"\n2025-03-08 17:43:13,105 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_renamed_commandline\"\n2025-03-08 17:43:13,105 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_account_discovery_cmd\"\n2025-03-08 17:43:13,105 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_currently_loggedin_user_cmd\"\n2025-03-08 17:43:13,105 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_info_discovery_cmd\"\n2025-03-08 17:43:13,105 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_info_discovery_pwsh\"\n2025-03-08 17:43:13,106 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_network_discovery_cmd\"\n2025-03-08 17:43:13,106 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_network_discovery_pwsh\"\n2025-03-08 17:43:13,106 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_user_discovery_cmd\"\n2025-03-08 17:43:13,106 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"copies_self\"\n2025-03-08 17:43:13,106 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"credwiz_credentialaccess\"\n2025-03-08 17:43:13,106 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"enables_wdigest\"\n2025-03-08 17:43:13,106 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"vaultcmd_credentialaccess\"\n2025-03-08 17:43:13,106 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"file_credential_store_access\"\n2025-03-08 17:43:13,106 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"file_credential_store_write\"\n2025-03-08 17:43:13,106 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"kerberos_credential_access_via_rubeus\"\n2025-03-08 17:43:13,106 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"registry_credential_dumping\"\n2025-03-08 17:43:13,106 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"registry_credential_store_access\"\n2025-03-08 17:43:13,107 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Failed to run signature \"registry_credential_store_access\": 'target'\n2025-03-08 17:43:13,107 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"registry_lsa_secrets_access\"\n2025-03-08 17:43:13,107 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"comsvcs_credentialdump\"\n2025-03-08 17:43:13,107 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cryptomining_stratum_command\"\n2025-03-08 17:43:13,107 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cypherit_mutexes\"\n2025-03-08 17:43:13,107 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"darkcomet_regkeys\"\n2025-03-08 17:43:13,107 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"datop_loader\"\n2025-03-08 17:43:13,107 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"deepfreeze_mutex\"\n2025-03-08 17:43:13,107 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"deletes_executed_files\"\n2025-03-08 17:43:13,107 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_app_launch\"\n2025-03-08 17:43:13,108 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_auto_app_termination\"\n2025-03-08 17:43:13,108 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_appv_virtualization\"\n2025-03-08 17:43:13,108 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_backups\"\n2025-03-08 17:43:13,108 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_browser_warn\"\n2025-03-08 17:43:13,108 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_context_menus\"\n2025-03-08 17:43:13,109 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_cpl_disable\"\n2025-03-08 17:43:13,109 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_crashdumps\"\n2025-03-08 17:43:13,109 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_event_logging\"\n2025-03-08 17:43:13,109 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_folder_options\"\n2025-03-08 17:43:13,109 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_notificationcenter\"\n2025-03-08 17:43:13,109 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_power_options\"\n2025-03-08 17:43:13,109 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_restore_default_state\"\n2025-03-08 17:43:13,110 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_run_command\"\n2025-03-08 17:43:13,110 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_security\"\n2025-03-08 17:43:13,110 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_smartscreen\"\n2025-03-08 17:43:13,110 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_startmenu_search\"\n2025-03-08 17:43:13,110 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_system_restore\"\n2025-03-08 17:43:13,110 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_uac\"\n2025-03-08 17:43:13,110 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_wer\"\n2025-03-08 17:43:13,111 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_windows_defender\"\n2025-03-08 17:43:13,111 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_windows_defender_dism\"\n2025-03-08 17:43:13,111 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_windows_defender_logging\"\n2025-03-08 17:43:13,111 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_windows_defender_contextmenu\"\n2025-03-08 17:43:13,111 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"windows_defender_powershell\"\n2025-03-08 17:43:13,111 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_windows_file_protection\"\n2025-03-08 17:43:13,111 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_windowsupdate\"\n2025-03-08 17:43:13,112 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_winfirewall\"\n2025-03-08 17:43:13,112 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"adfind_domain_enumeration\"\n2025-03-08 17:43:13,112 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"domain_enumeration_commands\"\n2025-03-08 17:43:13,112 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"andromut_mutexes\"\n2025-03-08 17:43:13,112 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"downloader_cabby\"\n2025-03-08 17:43:13,112 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"phorpiex_mutexes\"\n2025-03-08 17:43:13,112 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"protonbot_mutexes\"\n2025-03-08 17:43:13,112 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"driver_filtermanager\"\n2025-03-08 17:43:13,112 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dropper\"\n2025-03-08 17:43:13,112 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dll_archive_execution\"\n2025-03-08 17:43:13,112 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"lnk_archive_execution\"\n2025-03-08 17:43:13,113 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"script_archive_execution\"\n2025-03-08 17:43:13,113 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"excel4_macro_urls\"\n2025-03-08 17:43:13,113 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"escalate_privilege_via_ntlm_relay\"\n2025-03-08 17:43:13,113 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"spooler_access\"\n2025-03-08 17:43:13,113 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"spooler_svc_start\"\n2025-03-08 17:43:13,113 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"mapped_drives_uac\"\n2025-03-08 17:43:13,113 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"hides_recycle_bin_icon\"\n2025-03-08 17:43:13,113 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"apocalypse_stealer_file_behavior\"\n2025-03-08 17:43:13,113 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"arkei_files\"\n2025-03-08 17:43:13,113 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"azorult_mutexes\"\n2025-03-08 17:43:13,114 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_bitcoin\"\n2025-03-08 17:43:13,114 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cryptbot_files\"\n2025-03-08 17:43:13,114 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"echelon_files\"\n2025-03-08 17:43:13,115 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_ftp\"\n2025-03-08 17:43:13,115 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_im\"\n2025-03-08 17:43:13,116 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_mail\"\n2025-03-08 17:43:13,116 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"masslogger_files\"\n2025-03-08 17:43:13,116 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"poullight_files\"\n2025-03-08 17:43:13,117 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"purplewave_mutexes\"\n2025-03-08 17:43:13,117 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"quilclipper_mutexes\"\n2025-03-08 17:43:13,117 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"qulab_files\"\n2025-03-08 17:43:13,117 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"qulab_mutexes\"\n2025-03-08 17:43:13,117 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"asyncrat_mutex\"\n2025-03-08 17:43:13,117 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Evade_Execution_Via_ASPNet_Compiler\"\n2025-03-08 17:43:13,117 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Evade_Execute_Via_DeviceCredentialDeployment\"\n2025-03-08 17:43:13,117 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Evade_Execution_Via_Filter_Manager_Control\"\n2025-03-08 17:43:13,117 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Evade_Execution_Via_Intel_GFXDownloadWrapper\"\n2025-03-08 17:43:13,117 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"execute_binary_via_appvlp\"\n2025-03-08 17:43:13,118 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"execute_binary_via_pcalua\"\n2025-03-08 17:43:13,118 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Execute_Binary_Via_OpenSSH\"\n2025-03-08 17:43:13,118 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"execute_binary_via_pcalua\"\n2025-03-08 17:43:13,118 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Execute_Binary_Via_PesterPSModule\"\n2025-03-08 17:43:13,118 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Execute_Binary_Via_ScriptRunner\"\n2025-03-08 17:43:13,118 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"execute_binary_via_ttdinject\"\n2025-03-08 17:43:13,118 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Execute_Binary_Via_VisualStudioLiveShare\"\n2025-03-08 17:43:13,118 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Execute_Msiexec_Via_Explorer\"\n2025-03-08 17:43:13,118 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"execute_remote_msi\"\n2025-03-08 17:43:13,118 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"execute_suspicious_powershell_via_runscripthelper\"\n2025-03-08 17:43:13,118 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"execute_suspicious_powershell_via_sqlps\"\n2025-03-08 17:43:13,118 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Indirect_Command_Execution_Via_ConsoleWindowHost\"\n2025-03-08 17:43:13,118 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Perform_Malicious_Activities_Via_Headless_Browser\"\n2025-03-08 17:43:13,118 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Register_DLL_Via_CertOC\"\n2025-03-08 17:43:13,119 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Register_DLL_Via_MSIEXEC\"\n2025-03-08 17:43:13,119 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Register_DLL_Via_Odbcconf\"\n2025-03-08 17:43:13,119 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Scriptlet_Proxy_Execution_Via_Pubprn\"\n2025-03-08 17:43:13,119 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ie_martian_children\"\n2025-03-08 17:43:13,119 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_martian_children\"\n2025-03-08 17:43:13,119 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"mimics_icon\"\n2025-03-08 17:43:13,119 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"masquerade_process_name\"\n2025-03-08 17:43:13,119 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"mimikatz_modules\"\n2025-03-08 17:43:13,119 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ms_office_cmd_rce\"\n2025-03-08 17:43:13,119 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"mount_copy_to_webdav_share\"\n2025-03-08 17:43:13,120 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"potential_protocol_tunneling_via_legit_utilities\"\n2025-03-08 17:43:13,120 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"potential_protocol_tunneling_via_qemu\"\n2025-03-08 17:43:13,120 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_execution_via_dotnet_remoting\"\n2025-03-08 17:43:13,120 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dotnet_clr_usagelog_regkeys\"\n2025-03-08 17:43:13,120 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_hostfile\"\n2025-03-08 17:43:13,120 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_oem_information\"\n2025-03-08 17:43:13,120 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_security_center_warnings\"\n2025-03-08 17:43:13,120 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_uac_prompt\"\n2025-03-08 17:43:13,121 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_blockchain\"\n2025-03-08 17:43:13,121 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_opennic\"\n2025-03-08 17:43:13,121 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_paste_site\"\n2025-03-08 17:43:13,121 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_reverse_proxy\"\n2025-03-08 17:43:13,121 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_temp_file_storage\"\n2025-03-08 17:43:13,121 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_temp_urldns\"\n2025-03-08 17:43:13,121 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_url_shortener\"\n2025-03-08 17:43:13,121 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_doh_tls\"\n2025-03-08 17:43:13,121 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_tld\"\n2025-03-08 17:43:13,121 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_tor_service\"\n2025-03-08 17:43:13,121 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_code_page\"\n2025-03-08 17:43:13,121 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_addinloading\"\n2025-03-08 17:43:13,122 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_perfkey\"\n2025-03-08 17:43:13,122 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro\"\n2025-03-08 17:43:13,122 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"changes_trust_center_settings\"\n2025-03-08 17:43:13,122 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_vba_trust_access\"\n2025-03-08 17:43:13,122 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro_autoexecution\"\n2025-03-08 17:43:13,122 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro_ioc\"\n2025-03-08 17:43:13,122 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro_malicious_prediction\"\n2025-03-08 17:43:13,122 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro_suspicious\"\n2025-03-08 17:43:13,122 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_aslr_bypass\"\n2025-03-08 17:43:13,122 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_anomaly_characterset\"\n2025-03-08 17:43:13,122 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_anomaly_version\"\n2025-03-08 17:43:13,122 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_embedded_content\"\n2025-03-08 17:43:13,122 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_embedded_office_file\"\n2025-03-08 17:43:13,123 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_exploit_static\"\n2025-03-08 17:43:13,123 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_security\"\n2025-03-08 17:43:13,123 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_anomalous_feature\"\n2025-03-08 17:43:13,123 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_dde_command\"\n2025-03-08 17:43:13,123 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_armadillo_mutex\"\n2025-03-08 17:43:13,123 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_armadillo_regkey\"\n2025-03-08 17:43:13,123 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_ads\"\n2025-03-08 17:43:13,123 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Failed to run signature \"persistence_ads\": 'files'\n2025-03-08 17:43:13,123 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_safeboot\"\n2025-03-08 17:43:13,123 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_ifeo\"\n2025-03-08 17:43:13,123 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_silent_process_exit\"\n2025-03-08 17:43:13,124 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_rdp_registry\"\n2025-03-08 17:43:13,124 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_rdp_shadowing\"\n2025-03-08 17:43:13,124 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_service\"\n2025-03-08 17:43:13,124 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Failed to run signature \"persistence_service\": 'created_services'\n2025-03-08 17:43:13,124 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_shim_database\"\n2025-03-08 17:43:13,124 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powerpool_mutexes\"\n2025-03-08 17:43:13,124 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_scriptblock_logging\"\n2025-03-08 17:43:13,124 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_command_suspicious\"\n2025-03-08 17:43:13,124 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_renamed\"\n2025-03-08 17:43:13,124 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_reversed\"\n2025-03-08 17:43:13,125 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_variable_obfuscation\"\n2025-03-08 17:43:13,125 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"prevents_safeboot\"\n2025-03-08 17:43:13,125 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_process_discovery\"\n2025-03-08 17:43:13,125 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cryptomix_mutexes\"\n2025-03-08 17:43:13,125 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dharma_mutexes\"\n2025-03-08 17:43:13,125 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_extensions\"\n2025-03-08 17:43:13,126 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_files\"\n2025-03-08 17:43:13,128 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"fonix_mutexes\"\n2025-03-08 17:43:13,128 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"gandcrab_mutexes\"\n2025-03-08 17:43:13,128 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"germanwiper_mutexes\"\n2025-03-08 17:43:13,129 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"medusalocker_mutexes\"\n2025-03-08 17:43:13,129 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"medusalocker_regkeys\"\n2025-03-08 17:43:13,129 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"nemty_mutexes\"\n2025-03-08 17:43:13,129 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"nemty_regkeys\"\n2025-03-08 17:43:13,129 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"pysa_mutexes\"\n2025-03-08 17:43:13,129 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_radamant\"\n2025-03-08 17:43:13,129 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_recyclebin\"\n2025-03-08 17:43:13,129 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"revil_mutexes\"\n2025-03-08 17:43:13,130 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_revil_regkey\"\n2025-03-08 17:43:13,130 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"satan_mutexes\"\n2025-03-08 17:43:13,130 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"snake_ransom_mutexes\"\n2025-03-08 17:43:13,130 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"stop_ransom_mutexes\"\n2025-03-08 17:43:13,130 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"stop_ransomware_cmd\"\n2025-03-08 17:43:13,130 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_stopdjvu\"\n2025-03-08 17:43:13,130 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Failed to run signature \"ransomware_stopdjvu\": 'NoneType' object is not iterable\n2025-03-08 17:43:13,130 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_beebus_mutexes\"\n2025-03-08 17:43:13,130 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"blacknet_mutexes\"\n2025-03-08 17:43:13,131 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"blackrat_mutexes\"\n2025-03-08 17:43:13,131 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"crat_mutexes\"\n2025-03-08 17:43:13,131 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dcrat_files\"\n2025-03-08 17:43:13,131 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dcrat_mutexes\"\n2025-03-08 17:43:13,131 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_fynloski_mutexes\"\n2025-03-08 17:43:13,131 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"karagany_files\"\n2025-03-08 17:43:13,131 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"limerat_mutexes\"\n2025-03-08 17:43:13,131 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"limerat_regkeys\"\n2025-03-08 17:43:13,132 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"lodarat_file_behavior\"\n2025-03-08 17:43:13,132 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modirat_behavior\"\n2025-03-08 17:43:13,132 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"njrat_regkeys\"\n2025-03-08 17:43:13,132 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"obliquerat_files\"\n2025-03-08 17:43:13,132 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"obliquerat_mutexes\"\n2025-03-08 17:43:13,132 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"parallax_mutexes\"\n2025-03-08 17:43:13,132 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_pcclient\"\n2025-03-08 17:43:13,132 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_plugx_mutexes\"\n2025-03-08 17:43:13,133 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_poisonivy_mutexes\"\n2025-03-08 17:43:13,133 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_quasar_mutexes\"\n2025-03-08 17:43:13,133 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ratsnif_mutexes\"\n2025-03-08 17:43:13,133 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_senna_mutexes\"\n2025-03-08 17:43:13,133 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_spynet\"\n2025-03-08 17:43:13,133 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"venomrat_mutexes\"\n2025-03-08 17:43:13,133 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"warzonerat_files\"\n2025-03-08 17:43:13,133 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"warzonerat_regkeys\"\n2025-03-08 17:43:13,133 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"xpertrat_files\"\n2025-03-08 17:43:13,133 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"xpertrat_mutexes\"\n2025-03-08 17:43:13,134 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_xtreme_mutexes\"\n2025-03-08 17:43:13,134 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"recon_fingerprint\"\n2025-03-08 17:43:13,134 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"remcos_files\"\n2025-03-08 17:43:13,134 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"remcos_mutexes\"\n2025-03-08 17:43:13,134 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"remcos_regkeys\"\n2025-03-08 17:43:13,134 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rdptcp_key\"\n2025-03-08 17:43:13,134 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_rdp_clip\"\n2025-03-08 17:43:13,134 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_remote_desktop_session\"\n2025-03-08 17:43:13,135 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_networking_icon\"\n2025-03-08 17:43:13,135 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_pinned_programs\"\n2025-03-08 17:43:13,135 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_security_maintenance_icon\"\n2025-03-08 17:43:13,135 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_startmenu_defaults\"\n2025-03-08 17:43:13,135 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_username_startmenu\"\n2025-03-08 17:43:13,135 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"spicyhotpot_behavior\"\n2025-03-08 17:43:13,135 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"sniffer_winpcap\"\n2025-03-08 17:43:13,136 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"spreading_autoruninf\"\n2025-03-08 17:43:13,136 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_hidden_extension\"\n2025-03-08 17:43:13,136 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_hiddenreg\"\n2025-03-08 17:43:13,136 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_hide_notifications\"\n2025-03-08 17:43:13,136 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_webhistory\"\n2025-03-08 17:43:13,136 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"sysinternals_psexec\"\n2025-03-08 17:43:13,136 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"sysinternals_tools\"\n2025-03-08 17:43:13,136 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"language_check_registry\"\n2025-03-08 17:43:13,137 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"tampers_etw\"\n2025-03-08 17:43:13,137 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"lsa_tampering\"\n2025-03-08 17:43:13,137 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"tampers_powershell_logging\"\n2025-03-08 17:43:13,137 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"targeted_flame\"\n2025-03-08 17:43:13,137 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"territorial_disputes_sigs\"\n2025-03-08 17:43:13,138 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"trickbot_mutex\"\n2025-03-08 17:43:13,138 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"fleercivet_mutex\"\n2025-03-08 17:43:13,138 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"lokibot_mutexes\"\n2025-03-08 17:43:13,138 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ursnif_behavior\"\n2025-03-08 17:43:13,139 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"upatre_files\"\n2025-03-08 17:43:13,139 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"upatre_files\"\n2025-03-08 17:43:13,139 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_adfind\"\n2025-03-08 17:43:13,139 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_ms_protocol\"\n2025-03-08 17:43:13,139 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"neshta_mutexes\"\n2025-03-08 17:43:13,139 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"renamer_mutexes\"\n2025-03-08 17:43:13,139 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"owa_web_shell_files\"\n2025-03-08 17:43:13,139 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"web_shell_files\"\n2025-03-08 17:43:13,139 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"web_shell_processes\"\n2025-03-08 17:43:13,139 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dotnet_csc_build\"\n2025-03-08 17:43:13,139 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"mavinject_lolbin\"\n2025-03-08 17:43:13,140 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"multiple_explorer_instances\"\n2025-03-08 17:43:13,140 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"script_tool_executed\"\n2025-03-08 17:43:13,140 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_certutil_use\"\n2025-03-08 17:43:13,140 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_command_tools\"\n2025-03-08 17:43:13,140 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_mpcmdrun_use\"\n2025-03-08 17:43:13,140 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_ping_use\"\n2025-03-08 17:43:13,140 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_powershell_copyitem\"\n2025-03-08 17:43:13,140 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities\"\n2025-03-08 17:43:13,140 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_appcmd\"\n2025-03-08 17:43:13,140 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_csvde_ldifde\"\n2025-03-08 17:43:13,140 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_cipher\"\n2025-03-08 17:43:13,140 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_clickonce\"\n2025-03-08 17:43:13,140 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_curl\"\n2025-03-08 17:43:13,140 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_dsquery\"\n2025-03-08 17:43:13,141 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_esentutl\"\n2025-03-08 17:43:13,141 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_finger\"\n2025-03-08 17:43:13,141 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_mode\"\n2025-03-08 17:43:13,141 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_ntdsutil\"\n2025-03-08 17:43:13,141 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_nltest\"\n2025-03-08 17:43:13,141 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_xcopy\"\n2025-03-08 17:43:13,141 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"wmic_command_suspicious\"\n2025-03-08 17:43:13,141 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"scrcons_wmi_script_consumer\"\n2025-03-08 17:43:13,141 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"allaple_mutexes\"\n2025-03-08 17:43:13,142 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"BinGraph\"\n2025-03-08 17:43:13,142 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"CAPASummary\"\n2025-03-08 17:43:13,142 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"PCAP2CERT\"\n2025-03-08 17:43:13,143 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"ReportHTML\"\n2025-03-08 17:43:13,168 [Task 23] [modules.reporting.reporthtml] ERROR: Failed to generate summary HTML report: 'dict object' has no attribute 'target'\nTraceback (most recent call last):\n  File \"/opt/CAPEv2/utils/../modules/reporting/reporthtml.py\", line 85, in run\n    html = tpl.render({\"results\": results, \"summary_report\": False})\n           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/jinja2/environment.py\", line 1295, in render\n    self.environment.handle_exception()\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/jinja2/environment.py\", line 942, in handle_exception\n    raise rewrite_traceback_stack(source=source)\n  File \"/opt/CAPEv2/data/html/report.html\", line 1, in top-level template code\n    {% extends \"base-report.html\" %}\n    ^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/opt/CAPEv2/data/html/base-report.html\", line 67, in top-level template code\n    {% block content %}{% endblock %}\n    ^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/opt/CAPEv2/data/html/report.html\", line 6, in block 'content'\n    {% include \"sections/file.html\" %}\n    ^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/opt/CAPEv2/data/html/sections/file.html\", line 16, in top-level template code\n    {% if results.target.file %}\n    ^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/jinja2/environment.py\", line 490, in getattr\n    return getattr(obj, attribute)\n           ^^^^^^^^^^^^^^^^^^^^^^^\njinja2.exceptions.UndefinedError: 'dict object' has no attribute 'target'\n2025-03-08 17:43:13,170 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"ReportHTMLSummary\"\n2025-03-08 17:43:13,190 [Task 23] [modules.reporting.reporthtmlsummary] ERROR: Failed to generate summary HTML report: 'dict object' has no attribute 'target'\nTraceback (most recent call last):\n  File \"/opt/CAPEv2/utils/../modules/reporting/reporthtmlsummary.py\", line 95, in run\n    html = tpl.render({\"results\": results, \"summary_report\": True})\n           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/jinja2/environment.py\", line 1295, in render\n    self.environment.handle_exception()\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/jinja2/environment.py\", line 942, in handle_exception\n    raise rewrite_traceback_stack(source=source)\n  File \"/opt/CAPEv2/data/html/report.html\", line 1, in top-level template code\n    {% extends \"base-report.html\" %}\n    ^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/opt/CAPEv2/data/html/base-report.html\", line 67, in top-level template code\n    {% block content %}{% endblock %}\n    ^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/opt/CAPEv2/data/html/report.html\", line 6, in block 'content'\n    {% include \"sections/file.html\" %}\n    ^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/opt/CAPEv2/data/html/sections/file.html\", line 16, in top-level template code\n    {% if results.target.file %}\n    ^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/jinja2/environment.py\", line 490, in getattr\n    return getattr(obj, attribute)\n           ^^^^^^^^^^^^^^^^^^^^^^^\njinja2.exceptions.UndefinedError: 'dict object' has no attribute 'target'\n2025-03-08 17:43:13,191 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"JsonDump\"\n2025-03-08 17:43:13,192 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"ReportPDF\"\n2025-03-08 17:43:13,192 [Task 23] [lib.cuckoo.core.plugins] WARNING: The reporting module \"ReportPDF\" returned the following error: Unable to open summary HTML report to convert to PDF: Ensure reporthtmlsummary is enabled in reporting.conf\n2025-03-08 17:43:13,193 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"MongoDB\"\n2025-03-08 17:43:13,214 [Task 23] [modules.reporting.mongodb] DEBUG: Deleted previous MongoDB data for Task 23\n2025-03-08 17:43:13,285 [Task 23] [root] DEBUG: Finished processing task\n```\nComment: do you have any custom plugin/signature or anything custom that you added? i can't reproduce it and you still have `target` key issue \nComment: I did not add any plugins/signatures or anything else, everything is default.\n\nComment: then i have no idea what is wrong\nComment: Maybe I will try re-deploying, hopefully, everything will be fine after the last update you made.\n\nI will update you again after the re-deployment.\n\nThank you.\nComment: let me me know how that goes, that is very strange, and unusual to see problems with `target` key, but lets see if we can find what is wrong, try to disable capa in processing and reporting, and reprocess real sample as last test\nComment: ### conf/processing.conf\n\n```\n[flare_capa]\nenabled = no\n# Generate it always or generate on demand only(user need to click button to generate it), still should be enabled to use this feature on demand\non_demand = no\n# Analyze binary payloads\nstatic = no\n# Analyze CAPE payloads\ncape = no\n# Analyze ProcDump\nprocdump = no\n\n```\n### conf/reporting.conf\n\n```\n[flare_capa_summary]\nenabled = no\non_demand= no\n```\n### Spoetry run python utils/process.py -r 23 -d\n\n```\n2025-03-08 18:18:36,928 [root] DEBUG: Importing modules...\n2025-03-08 18:18:36,929 [modules.auxiliary.QemuScreenshots] DEBUG: Importing 'PIL.ImageChops.difference'\n2025-03-08 18:18:36,929 [modules.auxiliary.QemuScreenshots] DEBUG: Importing 'PIL.ImageDraw'\n2025-03-08 18:18:36,929 [modules.auxiliary.QemuScreenshots] DEBUG: Importing 'PIL.Image'\nOPTIONAL! Missed dependency: poetry run pip install -U git+https://github.com/CAPESandbox/httpreplay\n2025-03-08 18:18:37,093 [lazy_import] DEBUG: Getting attr Fernet of LazyModule instance of cryptography.fernet\n2025-03-08 18:18:37,093 [lazy_import] DEBUG: Getting attr __name__ of LazyModule instance of cryptography.fernet\n2025-03-08 18:18:37,114 [root] DEBUG: Missed file extra/msft-public-ips.csv. Get a fresh copy from https://www.microsoft.com/en-us/download/details.aspx?id=53602\n2025-03-08 18:18:37,189 [root] DEBUG: Imported \"auxiliary\" modules:\n2025-03-08 18:18:37,189 [root] DEBUG:    |-- AzSniffer\n2025-03-08 18:18:37,189 [root] DEBUG:    |-- Mitmdump\n2025-03-08 18:18:37,189 [root] DEBUG:    |-- QEMUScreenshots\n2025-03-08 18:18:37,189 [root] DEBUG:    `-- Sniffer\n2025-03-08 18:18:37,189 [root] DEBUG: Imported \"processing\" modules:\n2025-03-08 18:18:37,189 [root] DEBUG:    |-- AnalysisInfo\n2025-03-08 18:18:37,189 [root] DEBUG:    |-- Autoruns\n2025-03-08 18:18:37,189 [root] DEBUG:    |-- BehaviorAnalysis\n2025-03-08 18:18:37,189 [root] DEBUG:    |-- Debug\n2025-03-08 18:18:37,189 [root] DEBUG:    |-- HollowsHunter\n2025-03-08 18:18:37,189 [root] DEBUG:    |-- NetworkAnalysis\n2025-03-08 18:18:37,189 [root] DEBUG:    |-- ProcessMemory\n2025-03-08 18:18:37,189 [root] DEBUG:    |-- script_log_processing\n2025-03-08 18:18:37,189 [root] DEBUG:    |-- Suricata\n2025-03-08 18:18:37,189 [root] DEBUG:    |-- Sysmon\n2025-03-08 18:18:37,189 [root] DEBUG:    `-- UrlAnalysis\n2025-03-08 18:18:37,189 [root] DEBUG: Imported \"signatures\" modules:\n2025-03-08 18:18:37,189 [root] DEBUG:    |-- AntiAnalysisTLSSection\n2025-03-08 18:18:37,189 [root] DEBUG:    |-- ClamAV\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- KnownVirustotal\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- BadCerts\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- BadSSLCerts\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- ZeusP2P\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- ZeusURL\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- BinaryTriggeredYARA\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- AthenaHttp\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- DirtJumper\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- Drive\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- Drive2\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- Madness\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- HTMLPhisher_0\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- HTMLPhisher_1\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- HTMLPhisher_2\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- FamilyProxyBack\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- FlareCAPAAntiAnalysis\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- FlareCAPACollection\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- FlareCAPAcommunication\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- FlareCAPACompiler\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- FlareCAPADataManipulation\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- FlareCAPAExecutable\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- FlareCAPAHostInteration\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- FlareCAPAcommunication\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- FlareCAPALib\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- FlareCAPALinking\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- FlareCAPALoadCode\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- FlareCAPAMalwareFamily\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- FlareCAPANursery\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- FlareCAPAPersistence\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- FlareCAPARuntime\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- FlareCAPATargeting\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- ThreatFox\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- Log4j\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- MimicsExtension\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- NetworkCountryDistribution\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- NetworkMultipleDirectIPConnections\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- NetworkCnCHTTP\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- NetworkHTTPPOST\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- NetworkIPEXE\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- NetworkDGA\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- NetworkDGAFraunhofer\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- NetworkDynDNS\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- NetworkExcessiveUDP\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- NetworkHTTP\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- NetworkICMP\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- NetworkIRC\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- NetworkOpenProxy\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- NetworkP2P\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- NetworkQuestionableHost\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- NetworkQuestionableHttpPath\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- NetworkQuestionableHttpsPath\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- NetworkSMTP\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- TorGateway\n2025-03-08 18:18:37,190 [root] DEBUG:    |-- BuildLangID\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- ResourceLangID\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- overlay\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- PackerUnknownPESectionName\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- ASPackPacked\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- AspireCryptPacked\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- BedsProtectorPacked\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- ConfuserPacked\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- EnigmaPacked\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- PackerEntropy\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- MPressPacked\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- NatePacked\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- NsPacked\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- SmartAssemblyPacked\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- SpicesPacked\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- ThemidaPacked\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- ThemidaPackedSection\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- TitanPacked\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- UPXCompressed\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- VMPPacked\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- YodaPacked\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- PDF_Annot_URLs_Checker\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- Polymorphic\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- PunchPlusPlusPCREs\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- Procmem_Yara\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- CheckIP\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- Authenticode\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- InvalidAuthenticodeSignature\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- DotNetAnomaly\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- Static_Java\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- Static_PDF\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- ContainsPEOverlay\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- PEAnomaly\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- PECompileTimeStomping\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- StaticPEPDBPath\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- RATConfig\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- VersionInfoAnomaly\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- StealthNetwork\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- SuricataAlert\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- suspiciousHRML_Body\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- suspiciousHTML_Filename\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- suspiciousHTML_Title\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- VolDevicetree1\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- VolHandles1\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- VolLdrModules1\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- VolLdrModules2\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- VolMalfind1\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- VolMalfind2\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- VolModscan1\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- VolSvcscan1\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- VolSvcscan2\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- VolSvcscan3\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- WHOIS_Create\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- DisableDriverViaBlocklist\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- DisableDriverViaHVCIDisallowedImages\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- DisableHypervisorProtectedCodeIntegrity\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- PendingFileRenameOperations\n2025-03-08 18:18:37,191 [root] DEBUG:    |-- AccessesMailslot\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- AccessesNetlogonRegkey\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- AccessesPublicFolder\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- AccessesSysvol\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- WritesSysvol\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- AddsAdminUser\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- AddsUser\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- OverwritesAdminPassword\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- anomalous_deletefile\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- AntiAnalysisDetectFile\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- AntiAnalysisDetectReg\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- QihooDetectLibs\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- AhnlabDetectLibs\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- AvastDetectLibs\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- BitdefenderDetectLibs\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- BullguardDetectLibs\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- ModifiesAttachmentManager\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- AntiAVDetectFile\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- AntiAVDetectReg\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- EmsisoftDetectLibs\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- QurbDetectLibs\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- AntiAVServiceStop\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- AntiAVSRP\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- AntiAVWhitespace\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- antidebug_addvectoredexceptionhandler\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- APIOverrideDetectLibs\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- antidebug_checkremotedebuggerpresent\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- antidebug_debugactiveprocess\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- AntiDBGDevices\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- antidebug_gettickcount\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- antidebug_guardpages\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- antidebug_ntcreatethreadex\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- BullguardDetectLibs\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- antidebug_ntsetinformationthread\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- antidebug_outputdebugstring\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- antidebug_setunhandledexceptionfilter\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- AntiDBGWindows\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- AntiEmuWinDefend\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- WineDetectReg\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- WineDetectFunc\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- AntiSandboxCheckUserdomain\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- AntiCuckoo\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- CuckooDetectFiles\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- CuckooCrash\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- AntiSandboxForegroundWindow\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- FortinetDetectFiles\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- SandboxJoeAnubisDetectFiles\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- HookMouse\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- AntiSandboxRestart\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- SandboxieDetectLibs\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- AntisandboxSboxieMutex\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- AntiSandboxSboxieObjects\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- AntiSandboxScriptTimer\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- AntiSandboxSleep\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- SunbeltDetectFiles\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- SunbeltDetectLibs\n2025-03-08 18:18:37,192 [root] DEBUG:    |-- AntiSandboxSuspend\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- ThreatTrackDetectFiles\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- Unhook\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- BochsDetectKeys\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- AntiVMDirectoryObjects\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- AntiVMBios\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- AntiVMCPU\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- DiskInformation\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- SetupAPIDiskInformation\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- AntiVMDiskReg\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- AntiVMSCSI\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- AntiVMServices\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- AntiVMSystem\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- HyperVDetectKeys\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- AntiVMChecksAvailableMemory\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- NetworkAdapters\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- ParallelsDetectKeys\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- DetectVirtualizationViaRecentFiles\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- VBoxDetectDevices\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- VBoxDetectFiles\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- VBoxDetectKeys\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- VBoxDetectLibs\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- VBoxDetectProvname\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- VBoxDetectWindow\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- VMwareDetectDevices\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- VMwareDetectEvent\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- VMwareDetectFiles\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- VMwareDetectKeys\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- VMwareDetectLibs\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- VMwareDetectMutexes\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- VPCDetectFiles\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- VPCDetectKeys\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- VPCDetectMutex\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- XenDetectKeys\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- APISpamming\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- api_uuidfromstringa\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- AsyncRatMutex\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- GulpixBehavior\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- KetricanRegkeys\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- OkrumMutexes\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- Cridex\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- Geodo\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- Prinimalka\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- SpyEyeMutexes\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- ZeusMutexes\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- BCDEditCommand\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- BitcoinOpenCL\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- AccessesPrimaryPartition\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- Bootkit\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- DirectHDDAccess\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- EnumeratesPhysicalDrives\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- PhysicalDriveAccess\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- PotentialOverWriteMBR\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- SuspiciousIoctlSCSIPassthough\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- Ruskill\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- BrowserAddon\n2025-03-08 18:18:37,193 [root] DEBUG:    |-- ChromiumBrowserExtensionDirectory\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- BrowserHelperObject\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- BrowserNeeded\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- ModifyProxy\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- BrowserScanbox\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- BrowserSecurity\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- browser_startpage\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- FirefoxDisablesProcessPerTab\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- IEDisablesProcessPerTab\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- OdbcconfBypass\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- RegSrv32SquiblydooDLLLoad\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- SquiblydooBypass\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- SquiblytwoBypass\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- BypassFirewall\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- ChecksUACStatus\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- UACBypassCMSTP\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- UACBypassCMSTPCOM\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- UACBypassDelegateExecuteSdclt\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- UACBypassEventvwr\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- UACBypassFodhelper\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- UACBypassWindowsBackup\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- CAPEExtractedContent\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- CarberpMutexes\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- ClearsLogs\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- ClickfraudCookies\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- ClickfraudVolume\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- CmdlineObfuscation\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- CmdlineSwitches\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- CmdlineTerminate\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- CommandLineForFilesWildCard\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- CommandLineHTTPLink\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- CommandLineLongString\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- CommandLineReversedHTTPLink\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- LongCommandline\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- PowershellRenamedCommandLine\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- SystemAccountDiscoveryCMD\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- SystemCurrentlyLoggedinUserCMD\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- SystemInfoDiscoveryCMD\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- SystemInfoDiscoveryPWSH\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- SystemNetworkDiscoveryCMD\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- SystemNetworkDiscoveryPWSH\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- SystemUserDiscoveryCMD\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- CompilesDotNetCode\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- QueriesComputerName\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- QueriesUserName\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- CopiesSelf\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- CreatesExe\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- CreatesLargeKey\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- CreatesNullValue\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- AccessWindowsPasswordsVault\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- CredWiz\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- EnablesWDigest\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- VaultCmd\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- DumpLSAViaWindowsErrorReporting\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- FileCredentialStoreAccess\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- FileCredentialStoreWrite\n2025-03-08 18:18:37,194 [root] DEBUG:    |-- KerberosCredentialAccessViaRubeus\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- LsassCredentialDumping\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- RegistryCredentialDumping\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- RegistryCredentialStoreAccess\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- RegistryLSASecretsAccess\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- ComsvcsCredentialDump\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- CriticalProcess\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- CryptGenKey\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- CryptominingStratumCommand\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- MINERS\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- CVE_2014_6332\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- CVE2015_2419_JS\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- CVE_2016_0189\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- CVE_2016_7200\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- CypherITMutexes\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- DarkCometRegkeys\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- DatopLoader\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- DeadConnect\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- DeadLink\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- DebugsSelf\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- DecoyDocument\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- DecoyImage\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- DeepFreezeMutex\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- DeletesExecutedFiles\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- DeletesExecutedFiles\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- DeletesSelf\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- DeletesShadowCopies\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- DeletesSystemStateBackup\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- DEPBypass\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- DEPDisable\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- DisablesAppLaunch\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- DisablesAutomaticAppTermination\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- DisablesAppVirtualiztion\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- DisablesBackups\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- DisablesBrowserWarn\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- DisablesContextMenus\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- DisablesCPLDisplay\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- DisablesCrashdumps\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- DisablesMappedDrivesAutodisconnect\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- DisablesEventLogging\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- DisableFolderOptions\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- DisablesNotificationCenter\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- DisablesPowerOptions\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- DisablesRestoreDefaultState\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- DisableRunCommand\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- DisablesSecurity\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- DisablesSmartScreen\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- DisablesSPDY\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- DisablesStartMenuSearch\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- DisablesSystemRestore\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- DisablesUAC\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- DisablesWER\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- DisablesWFP\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- AddWindowsDefenderExclusions\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- DisablesWindowsDefender\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- DisablesWindowsDefenderDISM\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- DisablesWindowsDefenderLogging\n2025-03-08 18:18:37,195 [root] DEBUG:    |-- RemovesWindowsDefenderContextMenu\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- WindowsDefenderPowerShell\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- DisablesWindowsFileProtection\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- DisablesWindowsUpdate\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- DisablesWindowsFirewall\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- DllLoadUncommonFileTypes\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- DocScriptEXEDrop\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- AdfindDomainEnumeration\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- DomainEnumerationCommands\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- AndromutMutexes\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- DownloaderCabby\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- GuLoaderAPIs\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- PhorpiexMutexes\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- ProtonBotMutexes\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- DriverFilterManager\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- DriverLoad\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- Dropper\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- EXEDropper_JS\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- dynamic_function_loading\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- DLLArchiveExecution\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- LNKArchiveExecution\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- ScriptArchiveExecution\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- EncryptedIOC\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- Excel4MacroUrls\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- Crash\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- ProcessCreationSuspiciousLocation\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- exploit_getbasekerneladdress\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- exploit_gethaldispatchtable\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- ExploitHeapspray\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- EscalatePrivilegeViaNTLMRelay\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- SpoolerAccess\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- SpoolerSvcStart\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- KoadicAPIs\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- KoadicNetworkActivity\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- Modiloader_APIs\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- MappedDrivesUAC\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- SystemMetrics\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- Generic_Phish\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- HidesRecycleBinIcon\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- HTTP_Request\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- ApocalypseStealerFileBehavior\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- ArkeiFiles\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- AzorultMutexes\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- BitcoinWallet\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- BrowserStealer\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- InfostealerBrowserPassword\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- CookiesStealer\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- CryptBotFiles\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- CryptBotNetwork\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- EchelonFiles\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- FTPStealer\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- IMStealer\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- KeyLogger\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- EmailStealer\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- MassLoggerArtifacts\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- MassLoggerFiles\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- MassLoggerVersion\n2025-03-08 18:18:37,196 [root] DEBUG:    |-- PoullightFiles\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- PurpleWaveMutexes\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- PurpleWaveNetworkAcivity\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- QuilClipperMutexes\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- QuilClipperNetworkBehavior\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- QulabFiles\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- QulabMutexes\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- RaccoonInfoStealerMutex\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- raccoon\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- CapturesScreenshot\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- vidar\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- InjectionCRT\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- InjectionExplorer\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- InjectionExtension\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- InjectionNetworkTraffic\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- InjectionRUNPE\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- InjectionRWX\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- injection_themeinitapihook\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- ThreadManipulationRemoteProcess\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- Internet_Dropper\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- EscalatePrivilegeViaNamedPipe\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- IPC_NamedPipe\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- JS_Phish\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- JS_SuspiciousRedirect\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- LOLBAS_EvadeExecutionViaASPNetCompiler\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- LOLBAS_EvadeExecutionViaDeviceCredentialDeployment\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- LOLBAS_EvadeExecutionViaFilterManagerControl\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- LOLBAS_EvadeExecutionViaIntelGFXDownloadWrapper\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- LOLBAS_ExecuteBinaryViaAppVLP\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- LOLBAS_ExecuteBinaryViaCDB\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- LOLBAS_ExecuteBinaryViaInternetExplorerExporter\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- LOLBAS_ExecuteBinaryViaOpenSSH\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- LOLBAS_ExecuteBinaryViaPcalua\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- LOLBAS_ExecuteBinaryViaPesterPSModule\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- LOLBAS_ExecuteBinaryViaRunExeHelperUtility\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- LOLBAS_ExecuteBinaryViaScriptRunner\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- LOLBAS_ExecuteBinaryViaTTDinject\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- LOLBAS_ExecuteBinaryVisualStudioLiveShare\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- LOLBAS_ExecuteMsiexecViaExplorer\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- LOLBAS_ExecutePSViaSyncappvpublishingserver\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- LOLBAS_ExecuteRemoteMSIViaDevinit\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- LOLBAS_ExecuteSuspiciousPowerShellViaRunscripthelper\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- LOLBAS_ExecuteSuspiciousPowerShellViaSQLPS\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- LOLBAS_IndirectCommandExecutionViaConsoleWindowHost\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- LOLBAS_PerformMaliciousActivitiesViaHeadlessBrowser\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- LOLBAS_RegisterDLLViaCertOC\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- LOLBAS_RegisterDLLViaMSIEXEC\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- LOLBAS_RegisterDLLViaOdbcconf\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- LOLBAS_ScriptletProxyExecutionViaPubprn\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- malicious_dynamic_function_loading\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- EncryptPCInfo\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- EnryptDataAgentTeslaHTTP\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- EnryptDataAgentTeslaHTTPT2\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- EnryptDataNanoCore\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- MartiansIE\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- MartiansOffice\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- ReadsMemoryRemoteProcess\n2025-03-08 18:18:37,197 [root] DEBUG:    |-- MimicsAgent\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- MimicsFiletime\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- MimicsIcon\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- MasqueradesProcessName\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- MimikatzModules\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- QuilMinerNetworkBehavior\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- AMSIBypassViaCOMRegistry\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- AccessAutoLogonsViaRegistry\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- AccessBootKeyViaRegistry\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- CreateSuspiciousLNKFiles\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- CredentialAccessViaWindowsCredentialHistory\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- DLLHijackingViaMicrosoftExchange\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- DLLHijackingViaWaaSMedicSvcCOMTypeLib\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- ExecuteFileDownloadedViaOpenSSH\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- ExecuteSafeModeFromSuspiciousProcess\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- ExecuteScriptsViaMicrosoftManagementConsole\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- ExecuteSuspiciousProcessesViaWindowsMSSQLService\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- ExecutionFromSelfExtractingArchive\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- IPAddressDiscoveryViaTrustedProgram\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- LoadDLLViaControlPanel\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- MSOfficeCMDRCE\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- MountCopyToWebDavShare\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- NetworkConnectionViaSuspiciousProcess\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- PotentialLocationDiscoveryViaUnusualProcess\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- PotentialProtocolTunnelingViaLegitUtilities\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- PotentialProtocolTunnelingViaQEMU\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- StoreExecutableRegistry\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- SuspiciousExecutionViaDotnetRemoting\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- SuspiciousExecutionViaMicrosoftExchangeTransportAgent\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- SuspiciousJavaExecutionViaWinScripts\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- SuspiciousScheduledTaskCreationviaMasqueradedXMLFile\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- UsesRestartManagerForSuspiciousActivities\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- ModifiesCerts\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- DotNetCLRUsageLogKnob\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- Modifies_HostFile\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- ModifiesOEMInformation\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- ModifySecurityCenterWarnings\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- ModifiesUACNotify\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- ModifiesDesktopWallpaper\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- ZoneID\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- move_file_on_reboot\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- Multiple_UA\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- NetworkAnomaly\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- NetworkBIND\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- NetworkCnCHTTPSArchive\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- NetworkCnCHTTPSFreeWebHosting\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- NetworkCnCHTTPSGeneric\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- NetworkCnCHTTPSInteractsh\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- NetworkCnCHTTPSOpenSource\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- NetworkCnCHTTPSPasteSite\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- NetworkCnCHTTPSPayload\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- NetworkCnCHTTPSServiceInterface\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- NetworkCnCHTTPSSocialMedia\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- NetworkCnCHTTPSTelegram\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- NetworkCnCHTTPSTempStorageSite\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- NetworkCnCHTTPSTempURLDNS\n2025-03-08 18:18:37,198 [root] DEBUG:    |-- NetworkCnCHTTPSURLShortenerSite\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- NetworkCnCHTTPSUserAgent\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- NetworkCnCSMTPSExfil\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- NetworkCnCSMTPSGeneric\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- NetworkDNSBlockChain\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- NetworkDNSIDN\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- NetworkDNSOpenNIC\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- NetworkDNSPasteSite\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- NetworkDNSReverseProxy\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- NetworkDNSSuspiciousQueryType\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- NetworkDNSTempFileService\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- NetworkDNSTempURLDNS\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- NetworkDNSTunnelingRequest\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- NetworkDNSURLShortener\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- NetworkDOHTLS\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- Suspicious_TLD\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- NetworkDocumentHTTP\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- ExplorerHTTP\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- NetworkFakeUserAgent\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- LegitDomainAbuse\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- NetworkDocumentFile\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- NetworkEXE\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- Tor\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- TorHiddenService\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- Office_Code_Page\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- OfficeAddinLoading\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- OfficeCOMLoad\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- OfficeDotNetLoad\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- OfficeMSHTMLLoad\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- OfficePerfKey\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- OfficeVBLLoad\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- OfficeWMILoad\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- OfficeCVE201711882\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- OfficeCVE201711882Network\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- OfficeCVE202140444\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- OfficeCVE202140444M2\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- OfficeFlashLoad\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- OfficePostScript\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- Office_Macro\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- ChangesTrustCenter_settings\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- DisablesVBATrustAccess\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- OfficeMacroAutoExecution\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- OfficeMacroIOC\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- OfficeMacroMaliciousPredition\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- OfficeMacroSuspicious\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- RTFASLRBypass\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- RTFAnomalyCharacterSet\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- RTFAnomalyVersion\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- RTFEmbeddedContent\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- RTFEmbeddedOfficeFile\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- RTFExploitStatic\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- OfficeSecurity\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- OfficeAnamalousFeature\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- OfficeDDECommand\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- OfficeSuspiciousProcesses\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- OfficeWriteEXE\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- ArmadilloMutex\n2025-03-08 18:18:37,199 [root] DEBUG:    |-- ArmadilloRegKey\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- ADS\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- PersistenceViaAutodialDLLRegistry\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- Autorun\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- Autorun_scheduler\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- PersistenceSafeBoot\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- PersistenceBootexecute\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- PersistenceRegistryScript\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- PersistenceIFEO\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- PersistenceSilentProcessExit\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- PersistenceRDPRegistry\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- PersistenceRDPShadowing\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- PersistenceService\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- PersistenceShimDatabase\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- PowerpoolMutexes\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- PowerShellNetworkConnection\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- PowerShellScriptBlockLogging\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- PowershellCommandSuspicious\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- PowershellDownload\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- PowershellRenamed\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- PowershellRequest\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- PowershellReversed\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- PowershellVariableObfuscation\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- PreventsSafeboot\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- CmdlineProcessDiscovery\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- CreateToolhelp32SnapshotProcessModuleEnumeration\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- EnumeratesRunningProcesses\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- ProcessInterest\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- ProcessNeeded\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- MassDataEncryption\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- CryptoMixMutexes\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- DharmaMutexes\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- RansomwareDMALocker\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- RansomwareExtensions\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- RansomwareFileModifications\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- RansomwareFiles\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- FonixMutexes\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- GandCrabMutexes\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- GermanWiperMutexes\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- MedusaLockerMutexes\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- MedusaLockerRegkeys\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- RansomwareMessage\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- NemtyMutexes\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- NemtyNetworkActivity\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- NemtyNote\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- NemtyRegkeys\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- PYSAMutexes\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- RansomwareRadamant\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- RansomwareRecyclebin\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- RevilMutexes\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- RevilRegkey\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- SatanMutexes\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- SnakeRansomMutexes\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- sodinokibi\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- StopRansomMutexes\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- StopRansomwareCMD\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- StopRansomwareRegistry\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- RansomwareSTOPDJVU\n2025-03-08 18:18:37,200 [root] DEBUG:    |-- BeebusMutexes\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- BlackNETMutexes\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- BlackRATAPIs\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- BlackRATMutexes\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- BlackRATNetworkActivity\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- BlackRATRegistryKeys\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- CRATMutexes\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- DCRatAPIs\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- DCRatFiles\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- DCRatMutex\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- FynloskiMutexes\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- KaraganyEventObjects\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- KaraganyFiles\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- LimeRATMutexes\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- LimeRATRegkeys\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- LodaRATFileBehavior\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- LuminosityRAT\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- ModiRATBehavior\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- NanocoreRAT\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- netwire\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- NjratRegkeys\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- ObliquekRATFiles\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- ObliquekRATMutexes\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- ObliquekRATNetworkActivity\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- OrcusRAT\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- ParallaxMutexes\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- PcClientMutexes\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- PlugxMutexes\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- PoisonIvyMutexes\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- QuasarMutexes\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- RatsnifMutexes\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- SennaMutexes\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- SpynetRat\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- TrochilusRATAPIs\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- VenomRAT\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- WarzoneRATFiles\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- WarzoneRATRegkeys\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- XpertRATFiles\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- XpertRATMutexes\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- XtremeMutexes\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- ReadsSelf\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- Recon_Beacon\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- Fingerprint\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- InstalledApps\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- SystemInfo\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- Accesses_RecycleBin\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- RemcosFiles\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- RemcosMutexes\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- RemcosRegkeys\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- RemcosShellCodeDynamicWrapperX\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- RDPTCPKey\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- UsesRDPClip\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- UsesRemoteDesktopSession\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- RemovesNetworkingIcon\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- RemovesPinnedPrograms\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- RemovesSecurityAndMaintenanceIcon\n2025-03-08 18:18:37,201 [root] DEBUG:    |-- RemovesStartMenuDefaults\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- RemovesUsernameStartMenu\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- RemovesZoneIdADS\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- SpicyHotPotBehavior\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- ScriptCreatedProcess\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- ScriptNetworkActvity\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- SuspiciousJSScript\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- JavaScriptTimer\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- Secure_Login_Phish\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- SecurityXploded_Modules\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- GetClipboardData\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- SetsAutoconfigURL\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- InstallsWinpcap\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- SpoofsProcname\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- CreatesAutorunInf\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- StackPivot\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- StackPivotFileCreated\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- StackPivotProcessCreate\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- StealingClipboardData\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- StealthChildProc\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- StealthFile\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- StealthHiddenExtension\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- StealthHiddenReg\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- StealthHideNotifications\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- StealthSystemProcName\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- StealthTimeout\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- StealthWebHistory\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- Hidden_Window\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- sysinternals_psexec\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- sysinternals_tools\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- LanguageCheckReg\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- QueriesKeyboardLayout\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- QueriesLocaleAPI\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- TampersETW\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- LSATampering\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- TampersPowerShellLogging\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- Flame\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- TerminatesRemoteProcess\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- TerritorialDisputeSIGs\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- TrickBotTaskDelete\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- TrickBotMutexes\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- FleerCivetMutexes\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- LokibotMutexes\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- UrsnifBehavior\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- UpatreFiles\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- UpatreMutexes\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- UserEnum\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- ADFind\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- UsesMSProtocol\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- Virus\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- NeshtaFiles\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- NeshtaMutexes\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- NeshtaRegKeys\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- RenamerMutexes\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- Webmail_Phish\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- OWAWebShellFiles\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- WebShellFiles\n2025-03-08 18:18:37,202 [root] DEBUG:    |-- WebShellProcesses\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- PersistsDotNetDevUtility\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- SpwansDotNetDevUtiliy\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- AltersWindowsUtility\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- DotNETCSCBuild\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- MavInjectLolbin\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- MultipleExplorerInstances\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- OverwritesAccessibilityUtility\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- PotentialLateralMovementViaSMBEXEC\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- PotentialWebShellViaScreenConnectServer\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- ScriptToolExecuted\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- SuspiciousCertutilUse\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- SuspiciousCommandTools\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- SuspiciousMpCmdRunUse\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- SuspiciousPingUse\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- UsesMicrosoftHTMLHelpExecutable\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- UsesPowerShellCopyItem\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- UsesWindowsUtilities\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- UsesWindowsUtilitiesAppCmd\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- UsesWindowsUtilitiesCSVDELDFIDE\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- UsesWindowsUtilitiesCipher\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- UsesWindowsUtilitiesClickOnce\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- UsesWindowsUtilitiesCurl\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- UsesWindowsUtilitiesDSQuery\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- UsesWindowsUtilitiesEsentutl\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- UsesWindowsUtilitiesFinger\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- UsesWindowsUtilitiesMode\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- UsesWindowsUtilitiesNTDSutil\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- UsesWindowsUtilitiesNltest\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- UsesWindowsUtilitiesScheduler\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- UsesWindowsUtilitiesXcopy\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- WMICCommandSuspicious\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- WiperZeroedBytes\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- ScrconsWMIScriptConsumer\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- WMICreateProcess\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- WMIScriptProcess\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- Win32ProcessCreate\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- AllapleMutexes\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- LinuxDeletesFiles\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- LinuxDropsFiles\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- LinuxReadsFiles\n2025-03-08 18:18:37,203 [root] DEBUG:    `-- LinuxWritesFiles\n2025-03-08 18:18:37,203 [root] DEBUG: Imported \"reporting\" modules:\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- BinGraph\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- JsonDump\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- MongoDB\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- PCAP2CERT\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- ReportHTML\n2025-03-08 18:18:37,203 [root] DEBUG:    |-- ReportHTMLSummary\n2025-03-08 18:18:37,203 [root] DEBUG:    `-- ReportPDF\n2025-03-08 18:18:37,203 [root] DEBUG: Imported \"feeds\" modules:\n2025-03-08 18:18:37,203 [root] DEBUG:    `-- AbuseCH_SSL\n2025-03-08 18:18:37,203 [root] DEBUG: Imported \"machinery\" modules:\n2025-03-08 18:18:37,203 [root] DEBUG:    `-- Proxmox\n2025-03-08 18:18:37,203 [Task 23] [root] DEBUG: Processing task\n2025-03-08 18:18:37,211 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"AnalysisInfo\" on analysis at \"/opt/CAPEv2/storage/analyses/23\"\n2025-03-08 18:18:37,218 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Processing module autoruns not found in configuration file\n2025-03-08 18:18:37,218 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"BehaviorAnalysis\" on analysis at \"/opt/CAPEv2/storage/analyses/23\"\n2025-03-08 18:18:37,218 [Task 23] [modules.processing.behavior] WARNING: Analysis results folder does not exist at path \"/opt/CAPEv2/storage/analyses/23/logs\"\n2025-03-08 18:18:37,219 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Debug\" on analysis at \"/opt/CAPEv2/storage/analyses/23\"\n2025-03-08 18:18:37,220 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Processing module hollowshunter not found in configuration file\n2025-03-08 18:18:37,220 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"NetworkAnalysis\" on analysis at \"/opt/CAPEv2/storage/analyses/23\"\n2025-03-08 18:18:37,220 [Task 23] [modules.processing.network] DEBUG: The PCAP file does not exist at path \"/opt/CAPEv2/storage/analyses/23/dump.pcap\"\n2025-03-08 18:18:37,220 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Suricata\" on analysis at \"/opt/CAPEv2/storage/analyses/23\"\n2025-03-08 18:18:37,220 [Task 23] [modules.processing.suricata] DEBUG: Unable to Run Suricata: Pcap file /opt/CAPEv2/storage/analyses/23/dump.pcap does not exist. Did you run analysis with live connection?\n2025-03-08 18:18:37,220 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Sysmon\" on analysis at \"/opt/CAPEv2/storage/analyses/23\"\n2025-03-08 18:18:37,220 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"UrlAnalysis\" on analysis at \"/opt/CAPEv2/storage/analyses/23\"\n2025-03-08 18:18:37,220 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"script_log_processing\" on analysis at \"/opt/CAPEv2/storage/analyses/23\"\n2025-03-08 18:18:37,221 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"ProcessMemory\" on analysis at \"/opt/CAPEv2/storage/analyses/23\"\n2025-03-08 18:18:37,231 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Applying signature overlays for signatures: creates_exe\n2025-03-08 18:18:37,232 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running 285 evented signatures\n2025-03-08 18:18:37,232 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- packer_themida\n2025-03-08 18:18:37,232 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- stealth_network\n2025-03-08 18:18:37,232 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- disable_driver_via_blocklist\n2025-03-08 18:18:37,232 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- disable_driver_via_hvcidisallowedimages\n2025-03-08 18:18:37,232 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- disable_hypervisor_protected_code_integrity\n2025-03-08 18:18:37,232 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- pendingfilerenameoperations_Operations\n2025-03-08 18:18:37,232 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- anomalous_deletefile\n2025-03-08 18:18:37,232 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antiav_360_libs\n2025-03-08 18:18:37,232 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antiav_ahnlab_libs\n2025-03-08 18:18:37,232 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antiav_avast_libs\n2025-03-08 18:18:37,232 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antiav_bitdefender_libs\n2025-03-08 18:18:37,232 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antiav_bullgaurd_libs\n2025-03-08 18:18:37,232 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antiav_emsisoft_libs\n2025-03-08 18:18:37,232 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antiav_qurb_libs\n2025-03-08 18:18:37,232 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antiav_servicestop\n2025-03-08 18:18:37,232 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antidebug_addvectoredexceptionhandler\n2025-03-08 18:18:37,232 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antiav_apioverride_libs\n2025-03-08 18:18:37,232 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antidebug_checkremotedebuggerpresent\n2025-03-08 18:18:37,232 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antidebug_debugactiveprocess\n2025-03-08 18:18:37,233 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antidebug_gettickcount\n2025-03-08 18:18:37,233 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antidebug_guardpages\n2025-03-08 18:18:37,233 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antidebug_ntcreatethreadex\n2025-03-08 18:18:37,233 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antiav_nthookengine_libs\n2025-03-08 18:18:37,233 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antidebug_ntsetinformationthread\n2025-03-08 18:18:37,233 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antidebug_outputdebugstring\n2025-03-08 18:18:37,233 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antidebug_setunhandledexceptionfilter\n2025-03-08 18:18:37,233 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antidebug_windows\n2025-03-08 18:18:37,233 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antiemu_wine_func\n2025-03-08 18:18:37,233 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antisandbox_check_userdomain\n2025-03-08 18:18:37,233 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antisandbox_cuckoo\n2025-03-08 18:18:37,233 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antisandbox_cuckoocrash\n2025-03-08 18:18:37,233 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antisandbox_foregroundwindows\n2025-03-08 18:18:37,233 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antisandbox_mouse_hook\n2025-03-08 18:18:37,233 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antisandbox_restart\n2025-03-08 18:18:37,233 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antisandbox_sboxie_libs\n2025-03-08 18:18:37,233 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antisandbox_sboxie_objects\n2025-03-08 18:18:37,233 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antisandbox_script_timer\n2025-03-08 18:18:37,233 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antisandbox_sleep\n2025-03-08 18:18:37,233 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antisandbox_sunbelt_libs\n2025-03-08 18:18:37,233 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antisandbox_suspend\n2025-03-08 18:18:37,233 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antisandbox_unhook\n2025-03-08 18:18:37,233 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antivm_directory_objects\n2025-03-08 18:18:37,233 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antivm_generic_disk\n2025-03-08 18:18:37,233 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antivm_generic_disk_setupapi\n2025-03-08 18:18:37,233 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antivm_generic_scsi\n2025-03-08 18:18:37,233 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antivm_generic_services\n2025-03-08 18:18:37,233 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antivm_generic_system\n2025-03-08 18:18:37,233 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antivm_checks_available_memory\n2025-03-08 18:18:37,233 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antivm_network_adapters\n2025-03-08 18:18:37,233 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- detect_virtualization_via_recent_files\n2025-03-08 18:18:37,233 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antivm_vbox_libs\n2025-03-08 18:18:37,233 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antivm_vbox_provname\n2025-03-08 18:18:37,233 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antivm_vbox_window\n2025-03-08 18:18:37,233 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antivm_vmware_events\n2025-03-08 18:18:37,233 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- antivm_vmware_libs\n2025-03-08 18:18:37,233 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- api_spamming\n2025-03-08 18:18:37,233 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- api_uuidfromstringa\n2025-03-08 18:18:37,234 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- banker_prinimalka\n2025-03-08 18:18:37,234 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- bcdedit_command\n2025-03-08 18:18:37,234 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- bootkit\n2025-03-08 18:18:37,234 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- potential_overwrite_mbr\n2025-03-08 18:18:37,234 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- suspicious_ioctl_scsipassthough\n2025-03-08 18:18:37,234 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- browser_needed\n2025-03-08 18:18:37,234 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- browser_scanbox\n2025-03-08 18:18:37,234 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- firefox_disables_process_tab\n2025-03-08 18:18:37,234 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- regsvr32_squiblydoo_dll_load\n2025-03-08 18:18:37,234 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- uac_bypass_cmstp\n2025-03-08 18:18:37,234 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- uac_bypass_eventvwr\n2025-03-08 18:18:37,234 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- uac_bypass_windows_Backup\n2025-03-08 18:18:37,234 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- clickfraud_cookies\n2025-03-08 18:18:37,234 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- clickfraud_volume\n2025-03-08 18:18:37,234 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- queries_computer_name\n2025-03-08 18:18:37,234 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- queries_user_name\n2025-03-08 18:18:37,234 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- creates_largekey\n2025-03-08 18:18:37,234 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- creates_nullvalue\n2025-03-08 18:18:37,234 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- access_windows_passwords_vault\n2025-03-08 18:18:37,234 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- dump_lsa_via_windows_error_reporting\n2025-03-08 18:18:37,234 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- lsass_credential_dumping\n2025-03-08 18:18:37,234 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- critical_process\n2025-03-08 18:18:37,234 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- generates_crypto_key\n2025-03-08 18:18:37,234 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- cryptopool_domains\n2025-03-08 18:18:37,234 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- cve_2014_6332\n2025-03-08 18:18:37,234 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- cve_2015_2419_js\n2025-03-08 18:18:37,234 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- cve_2016-0189\n2025-03-08 18:18:37,234 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- cve_2016_7200\n2025-03-08 18:18:37,234 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- dead_connect\n2025-03-08 18:18:37,234 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- dead_link\n2025-03-08 18:18:37,234 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- debugs_self\n2025-03-08 18:18:37,234 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- decoy_image\n2025-03-08 18:18:37,234 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- deletes_consolehost_history\n2025-03-08 18:18:37,234 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- deletes_self\n2025-03-08 18:18:37,234 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- deletes_shadow_copies\n2025-03-08 18:18:37,234 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- deletes_system_state_backup\n2025-03-08 18:18:37,234 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- dep_bypass\n2025-03-08 18:18:37,234 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- dep_disable\n2025-03-08 18:18:37,234 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- disables_mappeddrives_autodisconnect\n2025-03-08 18:18:37,235 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- disables_spdy\n2025-03-08 18:18:37,235 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- disables_wfp\n2025-03-08 18:18:37,235 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- add_windows_defender_exclusions\n2025-03-08 18:18:37,235 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- dll_load_uncommon_file_types\n2025-03-08 18:18:37,235 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- document_script_exe_drop\n2025-03-08 18:18:37,235 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- guloader_apis\n2025-03-08 18:18:37,235 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- driver_load\n2025-03-08 18:18:37,235 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- dynamic_function_loading\n2025-03-08 18:18:37,235 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- exec_crash\n2025-03-08 18:18:37,235 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- process_creation_suspicious_location\n2025-03-08 18:18:37,235 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- exploit_getbasekerneladdress\n2025-03-08 18:18:37,235 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- exploit_gethaldispatchtable\n2025-03-08 18:18:37,235 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- exploit_heapspray\n2025-03-08 18:18:37,235 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- koadic_apis\n2025-03-08 18:18:37,235 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- koadic_network_activity\n2025-03-08 18:18:37,235 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- downloads_from_filehosting\n2025-03-08 18:18:37,235 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- generic_phish\n2025-03-08 18:18:37,235 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- http_request\n2025-03-08 18:18:37,235 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- infostealer_browser\n2025-03-08 18:18:37,235 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- infostealer_browser_password\n2025-03-08 18:18:37,235 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- infostealer_cookies\n2025-03-08 18:18:37,235 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- cryptbot_network\n2025-03-08 18:18:37,235 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- infostealer_keylog\n2025-03-08 18:18:37,235 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- masslogger_artifacts\n2025-03-08 18:18:37,235 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- masslogger_version\n2025-03-08 18:18:37,235 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- purplewave_network_activity\n2025-03-08 18:18:37,235 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- quilclipper_behavior\n2025-03-08 18:18:37,235 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- raccoon_behavior\n2025-03-08 18:18:37,235 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- captures_screenshot\n2025-03-08 18:18:37,235 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- vidar_behavior\n2025-03-08 18:18:37,235 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- injection_createremotethread\n2025-03-08 18:18:37,235 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- injection_explorer\n2025-03-08 18:18:37,235 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- injection_needextension\n2025-03-08 18:18:37,235 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- injection_network_traffic\n2025-03-08 18:18:37,235 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- injection_runpe\n2025-03-08 18:18:37,235 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- injection_themeinitapihook\n2025-03-08 18:18:37,235 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- resumethread_remote_process\n2025-03-08 18:18:37,235 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- internet_dropper\n2025-03-08 18:18:37,235 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- escalate_privilege_via_named_pipe\n2025-03-08 18:18:37,235 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- ipc_namedpipe\n2025-03-08 18:18:37,236 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- js_phish\n2025-03-08 18:18:37,236 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- js_suspicious_redirect\n2025-03-08 18:18:37,236 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- execute_binary_via_internet_explorer_exporter\n2025-03-08 18:18:37,236 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- execute_binary_via_run_exe_helper_utility\n2025-03-08 18:18:37,236 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- execute_ps_via_syncappvpublishingserver\n2025-03-08 18:18:37,236 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- malicious_dynamic_function_loading\n2025-03-08 18:18:37,236 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- encrypt_pcinfo\n2025-03-08 18:18:37,236 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- encrypt_data_agenttesla_http\n2025-03-08 18:18:37,236 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- encrypt_data_agentteslat2_http\n2025-03-08 18:18:37,236 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- encrypt_data_nanocore\n2025-03-08 18:18:37,236 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- reads_memory_remote_process\n2025-03-08 18:18:37,236 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- mimics_filetime\n2025-03-08 18:18:37,236 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- quilclipper_behavior\n2025-03-08 18:18:37,236 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- amsi_bypass_via_com_registry\n2025-03-08 18:18:37,236 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- access_auto_logons_via_registry\n2025-03-08 18:18:37,236 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- access_boot_key_via_registry\n2025-03-08 18:18:37,236 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- create_suspicious_lnk_files\n2025-03-08 18:18:37,236 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- credential_access_via_windows_credential_history\n2025-03-08 18:18:37,236 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- dll_hijacking_via_microsoft_exchange\n2025-03-08 18:18:37,236 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- dll_hijacking_via_waas_medic_svc_com_typelib\n2025-03-08 18:18:37,236 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- execute_file_downloaded_via_openssh\n2025-03-08 18:18:37,236 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- execute_safe_mode_from_suspicious_process\n2025-03-08 18:18:37,236 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- execute_scripts_via_microsoft_management_console\n2025-03-08 18:18:37,236 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- execute_suspicious_processes_via_windows_mssql_service\n2025-03-08 18:18:37,236 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- execution_from_self_extracting_archive\n2025-03-08 18:18:37,236 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- ip_address_discovery_via_trusted_program\n2025-03-08 18:18:37,236 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- load_dll_via_control_panel\n2025-03-08 18:18:37,236 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_connection_via_suspicious_process\n2025-03-08 18:18:37,236 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- potential_location_discovery_via_unusual_process\n2025-03-08 18:18:37,236 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- store_executable_registry\n2025-03-08 18:18:37,236 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- Suspicious_Execution_Via_MicrosoftExchangeTransportAgent\n2025-03-08 18:18:37,236 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- suspicious_java_execution_via_win_scripts\n2025-03-08 18:18:37,236 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- Suspicious_Scheduled_Task_Creation_Via_Masqueraded_XML_File\n2025-03-08 18:18:37,236 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- uses_restart_manager_for_suspicious_activities\n2025-03-08 18:18:37,236 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- modify_desktop_wallpaper\n2025-03-08 18:18:37,236 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- modify_zoneid_ads\n2025-03-08 18:18:37,236 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- move_file_on_reboot\n2025-03-08 18:18:37,236 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- multiple_useragents\n2025-03-08 18:18:37,236 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_anomaly\n2025-03-08 18:18:37,237 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_bind\n2025-03-08 18:18:37,237 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_https_archive\n2025-03-08 18:18:37,237 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_https_free_webshoting\n2025-03-08 18:18:37,237 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_https_generic\n2025-03-08 18:18:37,237 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_https_temp_urldns\n2025-03-08 18:18:37,237 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_https_opensource\n2025-03-08 18:18:37,237 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_https_pastesite\n2025-03-08 18:18:37,237 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_https_payload\n2025-03-08 18:18:37,237 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_https_serviceinterface\n2025-03-08 18:18:37,237 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_https_socialmedia\n2025-03-08 18:18:37,237 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_https_telegram\n2025-03-08 18:18:37,237 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_https_tempstorage\n2025-03-08 18:18:37,237 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_https_temp_urldns\n2025-03-08 18:18:37,237 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_https_urlshortener\n2025-03-08 18:18:37,237 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_https_useragent\n2025-03-08 18:18:37,237 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_smtps_exfil\n2025-03-08 18:18:37,237 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_cnc_smtps_generic\n2025-03-08 18:18:37,237 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_dns_idn\n2025-03-08 18:18:37,237 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_dns_suspicious_querytype\n2025-03-08 18:18:37,237 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_dns_tunneling_request\n2025-03-08 18:18:37,237 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- explorer_http\n2025-03-08 18:18:37,237 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_fake_useragent\n2025-03-08 18:18:37,237 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- legitimate_domain_abuse\n2025-03-08 18:18:37,237 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_downloader_exe\n2025-03-08 18:18:37,237 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- network_tor\n2025-03-08 18:18:37,237 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- office_com_load\n2025-03-08 18:18:37,237 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- office_dotnet_load\n2025-03-08 18:18:37,237 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- office_mshtml_load\n2025-03-08 18:18:37,237 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- office_vb_load\n2025-03-08 18:18:37,237 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- office_wmi_load\n2025-03-08 18:18:37,237 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- office_cve2017_11882_network\n2025-03-08 18:18:37,237 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- office_cve_2021_40444\n2025-03-08 18:18:37,237 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- office_cve_2021_40444_m2\n2025-03-08 18:18:37,237 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- office_flash_load\n2025-03-08 18:18:37,237 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- office_postscript\n2025-03-08 18:18:37,237 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- office_suspicious_processes\n2025-03-08 18:18:37,237 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- persistence_via_autodial_dll_registry\n2025-03-08 18:18:37,237 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- persistence_autorun\n2025-03-08 18:18:37,237 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- persistence_autorun_tasks\n2025-03-08 18:18:37,237 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- persistence_bootexecute\n2025-03-08 18:18:37,238 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- persistence_registry_script\n2025-03-08 18:18:37,238 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- powershell_download\n2025-03-08 18:18:37,238 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- powershell_request\n2025-03-08 18:18:37,238 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- createtoolhelp32snapshot_module_enumeration\n2025-03-08 18:18:37,238 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- enumerates_running_processes\n2025-03-08 18:18:37,238 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- process_interest\n2025-03-08 18:18:37,238 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- process_needed\n2025-03-08 18:18:37,238 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- mass_data_encryption\n2025-03-08 18:18:37,238 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- ransomware_dmalocker\n2025-03-08 18:18:37,238 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- ransomware_file_modifications\n2025-03-08 18:18:37,238 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- ransomware_message\n2025-03-08 18:18:37,238 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- nemty_network_activity\n2025-03-08 18:18:37,238 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- nemty_note\n2025-03-08 18:18:37,238 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- sodinokibi_behavior\n2025-03-08 18:18:37,238 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- stop_ransomware_registry\n2025-03-08 18:18:37,238 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- blackrat_apis\n2025-03-08 18:18:37,238 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- blackrat_network_activity\n2025-03-08 18:18:37,238 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- blackrat_registry_keys\n2025-03-08 18:18:37,238 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- dcrat_behavior\n2025-03-08 18:18:37,238 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- karagany_system_event_objects\n2025-03-08 18:18:37,238 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- rat_luminosity\n2025-03-08 18:18:37,238 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- rat_nanocore\n2025-03-08 18:18:37,238 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- netwire_behavior\n2025-03-08 18:18:37,238 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- obliquerat_network_activity\n2025-03-08 18:18:37,238 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- orcusrat_behavior\n2025-03-08 18:18:37,238 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- trochilusrat_apis\n2025-03-08 18:18:37,238 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- recon_beacon\n2025-03-08 18:18:37,238 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- recon_programs\n2025-03-08 18:18:37,238 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- recon_systeminfo\n2025-03-08 18:18:37,238 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- accesses_recyclebin\n2025-03-08 18:18:37,238 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- remcos_shell_code_dynamic_wrapper_x\n2025-03-08 18:18:37,238 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- removes_zoneid_ads\n2025-03-08 18:18:37,238 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- script_created_process\n2025-03-08 18:18:37,238 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- script_network_activity\n2025-03-08 18:18:37,238 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- suspicious_js_script\n2025-03-08 18:18:37,238 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- javascript_timer\n2025-03-08 18:18:37,238 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- secure_login_phishing\n2025-03-08 18:18:37,238 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- securityxploded_modules\n2025-03-08 18:18:37,238 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- get_clipboard_data\n2025-03-08 18:18:37,238 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- sets_autoconfig_url\n2025-03-08 18:18:37,239 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- spoofs_procname\n2025-03-08 18:18:37,239 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- stack_pivot\n2025-03-08 18:18:37,239 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- stack_pivot_file_created\n2025-03-08 18:18:37,239 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- stack_pivot_process_create\n2025-03-08 18:18:37,239 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- set_clipboard_data\n2025-03-08 18:18:37,239 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- stealth_childproc\n2025-03-08 18:18:37,239 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- stealth_system_procname\n2025-03-08 18:18:37,239 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- stealth_timeout\n2025-03-08 18:18:37,239 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- stealth_window\n2025-03-08 18:18:37,239 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- queries_keyboard_layout\n2025-03-08 18:18:37,239 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- queries_locale_api\n2025-03-08 18:18:37,239 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- terminates_remote_process\n2025-03-08 18:18:37,239 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- trickbot_task_delete\n2025-03-08 18:18:37,239 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- user_enum\n2025-03-08 18:18:37,239 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- virus\n2025-03-08 18:18:37,239 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- neshta_files\n2025-03-08 18:18:37,239 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- neshta_regkeys\n2025-03-08 18:18:37,239 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- webmail_phish\n2025-03-08 18:18:37,239 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- persists_dev_util\n2025-03-08 18:18:37,239 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- spawns_dev_util\n2025-03-08 18:18:37,239 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- alters_windows_utility\n2025-03-08 18:18:37,239 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- overwrites_accessibility_utility\n2025-03-08 18:18:37,239 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- Potential_Lateral_Movement_Via_SMBEXEC\n2025-03-08 18:18:37,239 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- potential_WebShell_Via_ScreenConnectServer\n2025-03-08 18:18:37,239 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- uses_Microsoft_HTML_Help_Executable\n2025-03-08 18:18:37,239 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- uses_windows_utilities_to_create_scheduled_task\n2025-03-08 18:18:37,239 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- wiper_zeroedbytes\n2025-03-08 18:18:37,239 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- wmi_create_process\n2025-03-08 18:18:37,239 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       |-- wmi_script_process\n2025-03-08 18:18:37,239 [Task 23] [lib.cuckoo.core.plugins] DEBUG:       `-- win32_process_create\n2025-03-08 18:18:37,242 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Failed to run signature \"uac_bypass_windows_Backup\": 'NoneType' object is not iterable\n2025-03-08 18:18:37,250 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running non-evented signatures\n2025-03-08 18:18:37,250 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antianalysis_tls_section\"\n2025-03-08 18:18:37,250 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivirus_clamav\"\n2025-03-08 18:18:37,250 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivirus_virustotal\"\n2025-03-08 18:18:37,251 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bad_certs\"\n2025-03-08 18:18:37,251 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bad_ssl_certs\"\n2025-03-08 18:18:37,251 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_zeus_p2p\"\n2025-03-08 18:18:37,251 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_zeus_url\"\n2025-03-08 18:18:37,251 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"binary_yara\"\n2025-03-08 18:18:37,251 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Failed to run signature \"binary_yara\": 'target'\n2025-03-08 18:18:37,251 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_athenahttp\"\n2025-03-08 18:18:37,251 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_dirtjumper\"\n2025-03-08 18:18:37,251 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_drive\"\n2025-03-08 18:18:37,252 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_drive2\"\n2025-03-08 18:18:37,252 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_madness\"\n2025-03-08 18:18:37,252 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"phishing_kit_detected\"\n2025-03-08 18:18:37,252 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"phishing_kit_detected\"\n2025-03-08 18:18:37,252 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"phishing_kit_detected\"\n2025-03-08 18:18:37,252 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"family_proxyback\"\n2025-03-08 18:18:37,252 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_antianalysis\"\n2025-03-08 18:18:37,252 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_collection\"\n2025-03-08 18:18:37,252 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_communication\"\n2025-03-08 18:18:37,253 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_compiler\"\n2025-03-08 18:18:37,253 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_datamanipulation\"\n2025-03-08 18:18:37,253 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_executable\"\n2025-03-08 18:18:37,253 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_hostinteraction\"\n2025-03-08 18:18:37,253 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_impact\"\n2025-03-08 18:18:37,253 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_lib\"\n2025-03-08 18:18:37,253 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_linking\"\n2025-03-08 18:18:37,253 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_loadcode\"\n2025-03-08 18:18:37,253 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_malwarefamily\"\n2025-03-08 18:18:37,253 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_nursery\"\n2025-03-08 18:18:37,253 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_persistence\"\n2025-03-08 18:18:37,253 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_runtime\"\n2025-03-08 18:18:37,253 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_targeting\"\n2025-03-08 18:18:37,253 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"threatfox\"\n2025-03-08 18:18:37,254 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"log4shell\"\n2025-03-08 18:18:37,254 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"mimics_extension\"\n2025-03-08 18:18:37,254 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_ip_exe\"\n2025-03-08 18:18:37,254 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dga\"\n2025-03-08 18:18:37,254 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dga_fraunhofer\"\n2025-03-08 18:18:37,254 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dyndns\"\n2025-03-08 18:18:37,254 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_icmp\"\n2025-03-08 18:18:37,254 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_irc\"\n2025-03-08 18:18:37,254 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_open_proxy\"\n2025-03-08 18:18:37,254 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_smtp\"\n2025-03-08 18:18:37,254 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_torgateway\"\n2025-03-08 18:18:37,254 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"origin_langid\"\n2025-03-08 18:18:37,254 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"origin_resource_langid\"\n2025-03-08 18:18:37,255 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"overlay\"\n2025-03-08 18:18:37,255 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_unknown_pe_section_name\"\n2025-03-08 18:18:37,255 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_aspack\"\n2025-03-08 18:18:37,255 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_aspirecrypt\"\n2025-03-08 18:18:37,255 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_bedsprotector\"\n2025-03-08 18:18:37,255 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_confuser\"\n2025-03-08 18:18:37,255 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_enigma\"\n2025-03-08 18:18:37,255 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_entropy\"\n2025-03-08 18:18:37,255 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_mpress\"\n2025-03-08 18:18:37,255 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_nate\"\n2025-03-08 18:18:37,255 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_nspack\"\n2025-03-08 18:18:37,255 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_smartassembly\"\n2025-03-08 18:18:37,255 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_spices\"\n2025-03-08 18:18:37,255 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_themida\"\n2025-03-08 18:18:37,256 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_titan\"\n2025-03-08 18:18:37,256 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_upx\"\n2025-03-08 18:18:37,256 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_vmprotect\"\n2025-03-08 18:18:37,256 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_yoda\"\n2025-03-08 18:18:37,256 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"punch_plus_plus_pcres\"\n2025-03-08 18:18:37,256 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"procmem_yara\"\n2025-03-08 18:18:37,256 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"recon_checkip\"\n2025-03-08 18:18:37,256 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_authenticode\"\n2025-03-08 18:18:37,256 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"invalid_authenticode_signature\"\n2025-03-08 18:18:37,256 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_dotnet_anomaly\"\n2025-03-08 18:18:37,256 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_java\"\n2025-03-08 18:18:37,256 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_pdf\"\n2025-03-08 18:18:37,256 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"contains_pe_overlay\"\n2025-03-08 18:18:37,256 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_pe_anomaly\"\n2025-03-08 18:18:37,257 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"pe_compile_timestomping\"\n2025-03-08 18:18:37,257 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_pe_pdbpath\"\n2025-03-08 18:18:37,257 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_rat_config\"\n2025-03-08 18:18:37,257 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_versioninfo_anomaly\"\n2025-03-08 18:18:37,257 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suricata_alert\"\n2025-03-08 18:18:37,257 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_html_body\"\n2025-03-08 18:18:37,257 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_html_name\"\n2025-03-08 18:18:37,257 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_html_title\"\n2025-03-08 18:18:37,257 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_devicetree_1\"\n2025-03-08 18:18:37,257 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_handles_1\"\n2025-03-08 18:18:37,257 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_ldrmodules_1\"\n2025-03-08 18:18:37,257 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_ldrmodules_2\"\n2025-03-08 18:18:37,258 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_malfind_1\"\n2025-03-08 18:18:37,258 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_malfind_2\"\n2025-03-08 18:18:37,258 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_modscan_1\"\n2025-03-08 18:18:37,258 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_svcscan_1\"\n2025-03-08 18:18:37,258 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_svcscan_2\"\n2025-03-08 18:18:37,258 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_svcscan_3\"\n2025-03-08 18:18:37,258 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"whois_create\"\n2025-03-08 18:18:37,258 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"accesses_mailslot\"\n2025-03-08 18:18:37,258 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"accesses_netlogon_regkey\"\n2025-03-08 18:18:37,258 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"accesses_public_folder\"\n2025-03-08 18:18:37,258 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"accesses_sysvol\"\n2025-03-08 18:18:37,258 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"writes_sysvol\"\n2025-03-08 18:18:37,259 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"adds_admin_user\"\n2025-03-08 18:18:37,259 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"adds_user\"\n2025-03-08 18:18:37,259 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"overwrites_admin_password\"\n2025-03-08 18:18:37,259 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antianalysis_detectfile\"\n2025-03-08 18:18:37,260 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antianalysis_detectreg\"\n2025-03-08 18:18:37,260 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_attachment_manager\"\n2025-03-08 18:18:37,260 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_detectfile\"\n2025-03-08 18:18:37,261 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_detectreg\"\n2025-03-08 18:18:37,262 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_srp\"\n2025-03-08 18:18:37,262 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_whitespace\"\n2025-03-08 18:18:37,262 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antidebug_devices\"\n2025-03-08 18:18:37,262 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiemu_windefend\"\n2025-03-08 18:18:37,263 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiemu_wine_reg\"\n2025-03-08 18:18:37,263 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_cuckoo_files\"\n2025-03-08 18:18:37,263 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_fortinet_files\"\n2025-03-08 18:18:37,263 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_joe_anubis_files\"\n2025-03-08 18:18:37,263 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_sboxie_mutex\"\n2025-03-08 18:18:37,263 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_sunbelt_files\"\n2025-03-08 18:18:37,263 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_threattrack_files\"\n2025-03-08 18:18:37,263 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_bochs_keys\"\n2025-03-08 18:18:37,263 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_generic_bios\"\n2025-03-08 18:18:37,263 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_generic_cpu\"\n2025-03-08 18:18:37,264 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_generic_diskreg\"\n2025-03-08 18:18:37,264 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_hyperv_keys\"\n2025-03-08 18:18:37,264 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_parallels_keys\"\n2025-03-08 18:18:37,264 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vbox_devices\"\n2025-03-08 18:18:37,264 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vbox_files\"\n2025-03-08 18:18:37,264 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vbox_keys\"\n2025-03-08 18:18:37,265 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vmware_devices\"\n2025-03-08 18:18:37,265 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vmware_files\"\n2025-03-08 18:18:37,265 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vmware_keys\"\n2025-03-08 18:18:37,265 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vmware_mutexes\"\n2025-03-08 18:18:37,265 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vpc_files\"\n2025-03-08 18:18:37,265 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vpc_keys\"\n2025-03-08 18:18:37,266 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vpc_mutex\"\n2025-03-08 18:18:37,266 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_xen_keys\"\n2025-03-08 18:18:37,266 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"asyncrat_mutex\"\n2025-03-08 18:18:37,266 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"gulpix_behavior\"\n2025-03-08 18:18:37,266 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ketrican_regkeys\"\n2025-03-08 18:18:37,266 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"okrum_mutexes\"\n2025-03-08 18:18:37,266 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_cridex\"\n2025-03-08 18:18:37,266 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"geodo_banking_trojan\"\n2025-03-08 18:18:37,267 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_spyeye_mutexes\"\n2025-03-08 18:18:37,267 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_zeus_mutex\"\n2025-03-08 18:18:37,267 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bitcoin_opencl\"\n2025-03-08 18:18:37,267 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"accesses_primary_patition\"\n2025-03-08 18:18:37,267 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"direct_hdd_access\"\n2025-03-08 18:18:37,268 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"enumerates_physical_drives\"\n2025-03-08 18:18:37,268 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"physical_drive_access\"\n2025-03-08 18:18:37,268 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_russkill\"\n2025-03-08 18:18:37,268 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"browser_addon\"\n2025-03-08 18:18:37,268 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"chromium_browser_extension_directory\"\n2025-03-08 18:18:37,268 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"browser_helper_object\"\n2025-03-08 18:18:37,268 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"browser_security\"\n2025-03-08 18:18:37,269 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"browser_startpage\"\n2025-03-08 18:18:37,269 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ie_disables_process_tab\"\n2025-03-08 18:18:37,269 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"odbcconf_bypass\"\n2025-03-08 18:18:37,269 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"squiblydoo_bypass\"\n2025-03-08 18:18:37,269 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"squiblytwo_bypass\"\n2025-03-08 18:18:37,269 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bypass_firewall\"\n2025-03-08 18:18:37,269 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"checks_uac_status\"\n2025-03-08 18:18:37,269 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uac_bypass_cmstpcom\"\n2025-03-08 18:18:37,269 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uac_bypass_delegateexecute_sdclt\"\n2025-03-08 18:18:37,269 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uac_bypass_fodhelper\"\n2025-03-08 18:18:37,270 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cape_extracted_content\"\n2025-03-08 18:18:37,270 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"carberp_mutex\"\n2025-03-08 18:18:37,270 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"clears_logs\"\n2025-03-08 18:18:37,270 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_obfuscation\"\n2025-03-08 18:18:37,270 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_switches\"\n2025-03-08 18:18:37,270 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_terminate\"\n2025-03-08 18:18:37,270 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_forfiles_wildcard\"\n2025-03-08 18:18:37,270 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_http_link\"\n2025-03-08 18:18:37,270 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_long_string\"\n2025-03-08 18:18:37,270 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_reversed_http_link\"\n2025-03-08 18:18:37,270 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"long_commandline\"\n2025-03-08 18:18:37,271 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_renamed_commandline\"\n2025-03-08 18:18:37,271 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_account_discovery_cmd\"\n2025-03-08 18:18:37,271 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_currently_loggedin_user_cmd\"\n2025-03-08 18:18:37,271 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_info_discovery_cmd\"\n2025-03-08 18:18:37,271 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_info_discovery_pwsh\"\n2025-03-08 18:18:37,271 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_network_discovery_cmd\"\n2025-03-08 18:18:37,271 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_network_discovery_pwsh\"\n2025-03-08 18:18:37,271 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_user_discovery_cmd\"\n2025-03-08 18:18:37,271 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"copies_self\"\n2025-03-08 18:18:37,271 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"credwiz_credentialaccess\"\n2025-03-08 18:18:37,271 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"enables_wdigest\"\n2025-03-08 18:18:37,271 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"vaultcmd_credentialaccess\"\n2025-03-08 18:18:37,271 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"file_credential_store_access\"\n2025-03-08 18:18:37,272 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"file_credential_store_write\"\n2025-03-08 18:18:37,272 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"kerberos_credential_access_via_rubeus\"\n2025-03-08 18:18:37,272 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"registry_credential_dumping\"\n2025-03-08 18:18:37,272 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"registry_credential_store_access\"\n2025-03-08 18:18:37,272 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Failed to run signature \"registry_credential_store_access\": 'target'\n2025-03-08 18:18:37,272 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"registry_lsa_secrets_access\"\n2025-03-08 18:18:37,272 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"comsvcs_credentialdump\"\n2025-03-08 18:18:37,272 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cryptomining_stratum_command\"\n2025-03-08 18:18:37,272 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cypherit_mutexes\"\n2025-03-08 18:18:37,272 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"darkcomet_regkeys\"\n2025-03-08 18:18:37,273 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"datop_loader\"\n2025-03-08 18:18:37,273 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"deepfreeze_mutex\"\n2025-03-08 18:18:37,273 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"deletes_executed_files\"\n2025-03-08 18:18:37,273 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_app_launch\"\n2025-03-08 18:18:37,273 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_auto_app_termination\"\n2025-03-08 18:18:37,273 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_appv_virtualization\"\n2025-03-08 18:18:37,273 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_backups\"\n2025-03-08 18:18:37,273 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_browser_warn\"\n2025-03-08 18:18:37,274 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_context_menus\"\n2025-03-08 18:18:37,274 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_cpl_disable\"\n2025-03-08 18:18:37,274 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_crashdumps\"\n2025-03-08 18:18:37,274 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_event_logging\"\n2025-03-08 18:18:37,274 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_folder_options\"\n2025-03-08 18:18:37,274 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_notificationcenter\"\n2025-03-08 18:18:37,274 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_power_options\"\n2025-03-08 18:18:37,275 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_restore_default_state\"\n2025-03-08 18:18:37,275 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_run_command\"\n2025-03-08 18:18:37,275 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_security\"\n2025-03-08 18:18:37,275 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_smartscreen\"\n2025-03-08 18:18:37,275 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_startmenu_search\"\n2025-03-08 18:18:37,275 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_system_restore\"\n2025-03-08 18:18:37,276 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_uac\"\n2025-03-08 18:18:37,276 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_wer\"\n2025-03-08 18:18:37,276 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_windows_defender\"\n2025-03-08 18:18:37,276 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_windows_defender_dism\"\n2025-03-08 18:18:37,276 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_windows_defender_logging\"\n2025-03-08 18:18:37,276 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_windows_defender_contextmenu\"\n2025-03-08 18:18:37,276 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"windows_defender_powershell\"\n2025-03-08 18:18:37,277 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_windows_file_protection\"\n2025-03-08 18:18:37,277 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_windowsupdate\"\n2025-03-08 18:18:37,277 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_winfirewall\"\n2025-03-08 18:18:37,277 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"adfind_domain_enumeration\"\n2025-03-08 18:18:37,277 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"domain_enumeration_commands\"\n2025-03-08 18:18:37,277 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"andromut_mutexes\"\n2025-03-08 18:18:37,277 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"downloader_cabby\"\n2025-03-08 18:18:37,277 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"phorpiex_mutexes\"\n2025-03-08 18:18:37,277 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"protonbot_mutexes\"\n2025-03-08 18:18:37,278 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"driver_filtermanager\"\n2025-03-08 18:18:37,278 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dropper\"\n2025-03-08 18:18:37,278 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dll_archive_execution\"\n2025-03-08 18:18:37,278 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"lnk_archive_execution\"\n2025-03-08 18:18:37,278 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"script_archive_execution\"\n2025-03-08 18:18:37,278 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"excel4_macro_urls\"\n2025-03-08 18:18:37,278 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"escalate_privilege_via_ntlm_relay\"\n2025-03-08 18:18:37,278 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"spooler_access\"\n2025-03-08 18:18:37,278 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"spooler_svc_start\"\n2025-03-08 18:18:37,278 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"mapped_drives_uac\"\n2025-03-08 18:18:37,278 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"hides_recycle_bin_icon\"\n2025-03-08 18:18:37,278 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"apocalypse_stealer_file_behavior\"\n2025-03-08 18:18:37,279 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"arkei_files\"\n2025-03-08 18:18:37,279 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"azorult_mutexes\"\n2025-03-08 18:18:37,279 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_bitcoin\"\n2025-03-08 18:18:37,279 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cryptbot_files\"\n2025-03-08 18:18:37,280 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"echelon_files\"\n2025-03-08 18:18:37,280 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_ftp\"\n2025-03-08 18:18:37,281 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_im\"\n2025-03-08 18:18:37,281 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_mail\"\n2025-03-08 18:18:37,281 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"masslogger_files\"\n2025-03-08 18:18:37,282 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"poullight_files\"\n2025-03-08 18:18:37,282 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"purplewave_mutexes\"\n2025-03-08 18:18:37,282 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"quilclipper_mutexes\"\n2025-03-08 18:18:37,282 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"qulab_files\"\n2025-03-08 18:18:37,282 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"qulab_mutexes\"\n2025-03-08 18:18:37,282 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"asyncrat_mutex\"\n2025-03-08 18:18:37,282 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Evade_Execution_Via_ASPNet_Compiler\"\n2025-03-08 18:18:37,283 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Evade_Execute_Via_DeviceCredentialDeployment\"\n2025-03-08 18:18:37,283 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Evade_Execution_Via_Filter_Manager_Control\"\n2025-03-08 18:18:37,283 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Evade_Execution_Via_Intel_GFXDownloadWrapper\"\n2025-03-08 18:18:37,283 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"execute_binary_via_appvlp\"\n2025-03-08 18:18:37,283 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"execute_binary_via_pcalua\"\n2025-03-08 18:18:37,283 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Execute_Binary_Via_OpenSSH\"\n2025-03-08 18:18:37,283 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"execute_binary_via_pcalua\"\n2025-03-08 18:18:37,283 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Execute_Binary_Via_PesterPSModule\"\n2025-03-08 18:18:37,283 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Execute_Binary_Via_ScriptRunner\"\n2025-03-08 18:18:37,283 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"execute_binary_via_ttdinject\"\n2025-03-08 18:18:37,283 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Execute_Binary_Via_VisualStudioLiveShare\"\n2025-03-08 18:18:37,283 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Execute_Msiexec_Via_Explorer\"\n2025-03-08 18:18:37,283 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"execute_remote_msi\"\n2025-03-08 18:18:37,283 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"execute_suspicious_powershell_via_runscripthelper\"\n2025-03-08 18:18:37,284 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"execute_suspicious_powershell_via_sqlps\"\n2025-03-08 18:18:37,284 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Indirect_Command_Execution_Via_ConsoleWindowHost\"\n2025-03-08 18:18:37,284 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Perform_Malicious_Activities_Via_Headless_Browser\"\n2025-03-08 18:18:37,284 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Register_DLL_Via_CertOC\"\n2025-03-08 18:18:37,284 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Register_DLL_Via_MSIEXEC\"\n2025-03-08 18:18:37,284 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Register_DLL_Via_Odbcconf\"\n2025-03-08 18:18:37,284 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"Scriptlet_Proxy_Execution_Via_Pubprn\"\n2025-03-08 18:18:37,284 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ie_martian_children\"\n2025-03-08 18:18:37,284 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_martian_children\"\n2025-03-08 18:18:37,284 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"mimics_icon\"\n2025-03-08 18:18:37,284 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"masquerade_process_name\"\n2025-03-08 18:18:37,285 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"mimikatz_modules\"\n2025-03-08 18:18:37,285 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ms_office_cmd_rce\"\n2025-03-08 18:18:37,285 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"mount_copy_to_webdav_share\"\n2025-03-08 18:18:37,285 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"potential_protocol_tunneling_via_legit_utilities\"\n2025-03-08 18:18:37,285 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"potential_protocol_tunneling_via_qemu\"\n2025-03-08 18:18:37,285 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_execution_via_dotnet_remoting\"\n2025-03-08 18:18:37,285 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dotnet_clr_usagelog_regkeys\"\n2025-03-08 18:18:37,285 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_hostfile\"\n2025-03-08 18:18:37,285 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_oem_information\"\n2025-03-08 18:18:37,285 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_security_center_warnings\"\n2025-03-08 18:18:37,286 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_uac_prompt\"\n2025-03-08 18:18:37,286 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_blockchain\"\n2025-03-08 18:18:37,286 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_opennic\"\n2025-03-08 18:18:37,286 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_paste_site\"\n2025-03-08 18:18:37,286 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_reverse_proxy\"\n2025-03-08 18:18:37,286 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_temp_file_storage\"\n2025-03-08 18:18:37,286 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_temp_urldns\"\n2025-03-08 18:18:37,286 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_url_shortener\"\n2025-03-08 18:18:37,286 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_doh_tls\"\n2025-03-08 18:18:37,286 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_tld\"\n2025-03-08 18:18:37,287 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_tor_service\"\n2025-03-08 18:18:37,287 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_code_page\"\n2025-03-08 18:18:37,287 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_addinloading\"\n2025-03-08 18:18:37,287 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_perfkey\"\n2025-03-08 18:18:37,287 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro\"\n2025-03-08 18:18:37,287 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"changes_trust_center_settings\"\n2025-03-08 18:18:37,287 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_vba_trust_access\"\n2025-03-08 18:18:37,287 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro_autoexecution\"\n2025-03-08 18:18:37,287 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro_ioc\"\n2025-03-08 18:18:37,287 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro_malicious_prediction\"\n2025-03-08 18:18:37,287 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro_suspicious\"\n2025-03-08 18:18:37,287 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_aslr_bypass\"\n2025-03-08 18:18:37,288 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_anomaly_characterset\"\n2025-03-08 18:18:37,288 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_anomaly_version\"\n2025-03-08 18:18:37,288 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_embedded_content\"\n2025-03-08 18:18:37,288 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_embedded_office_file\"\n2025-03-08 18:18:37,288 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_exploit_static\"\n2025-03-08 18:18:37,288 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_security\"\n2025-03-08 18:18:37,288 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_anomalous_feature\"\n2025-03-08 18:18:37,288 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_dde_command\"\n2025-03-08 18:18:37,288 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_armadillo_mutex\"\n2025-03-08 18:18:37,288 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_armadillo_regkey\"\n2025-03-08 18:18:37,288 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_ads\"\n2025-03-08 18:18:37,288 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Failed to run signature \"persistence_ads\": 'files'\n2025-03-08 18:18:37,289 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_safeboot\"\n2025-03-08 18:18:37,289 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_ifeo\"\n2025-03-08 18:18:37,289 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_silent_process_exit\"\n2025-03-08 18:18:37,289 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_rdp_registry\"\n2025-03-08 18:18:37,289 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_rdp_shadowing\"\n2025-03-08 18:18:37,289 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_service\"\n2025-03-08 18:18:37,289 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Failed to run signature \"persistence_service\": 'created_services'\n2025-03-08 18:18:37,289 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_shim_database\"\n2025-03-08 18:18:37,289 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powerpool_mutexes\"\n2025-03-08 18:18:37,290 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_scriptblock_logging\"\n2025-03-08 18:18:37,290 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_command_suspicious\"\n2025-03-08 18:18:37,290 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_renamed\"\n2025-03-08 18:18:37,290 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_reversed\"\n2025-03-08 18:18:37,290 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_variable_obfuscation\"\n2025-03-08 18:18:37,290 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"prevents_safeboot\"\n2025-03-08 18:18:37,290 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_process_discovery\"\n2025-03-08 18:18:37,290 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cryptomix_mutexes\"\n2025-03-08 18:18:37,290 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dharma_mutexes\"\n2025-03-08 18:18:37,290 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_extensions\"\n2025-03-08 18:18:37,292 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_files\"\n2025-03-08 18:18:37,293 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"fonix_mutexes\"\n2025-03-08 18:18:37,294 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"gandcrab_mutexes\"\n2025-03-08 18:18:37,294 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"germanwiper_mutexes\"\n2025-03-08 18:18:37,294 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"medusalocker_mutexes\"\n2025-03-08 18:18:37,294 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"medusalocker_regkeys\"\n2025-03-08 18:18:37,294 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"nemty_mutexes\"\n2025-03-08 18:18:37,294 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"nemty_regkeys\"\n2025-03-08 18:18:37,294 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"pysa_mutexes\"\n2025-03-08 18:18:37,294 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_radamant\"\n2025-03-08 18:18:37,294 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_recyclebin\"\n2025-03-08 18:18:37,295 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"revil_mutexes\"\n2025-03-08 18:18:37,295 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_revil_regkey\"\n2025-03-08 18:18:37,295 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"satan_mutexes\"\n2025-03-08 18:18:37,295 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"snake_ransom_mutexes\"\n2025-03-08 18:18:37,295 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"stop_ransom_mutexes\"\n2025-03-08 18:18:37,295 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"stop_ransomware_cmd\"\n2025-03-08 18:18:37,295 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_stopdjvu\"\n2025-03-08 18:18:37,295 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Failed to run signature \"ransomware_stopdjvu\": 'NoneType' object is not iterable\n2025-03-08 18:18:37,296 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_beebus_mutexes\"\n2025-03-08 18:18:37,296 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"blacknet_mutexes\"\n2025-03-08 18:18:37,296 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"blackrat_mutexes\"\n2025-03-08 18:18:37,296 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"crat_mutexes\"\n2025-03-08 18:18:37,296 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dcrat_files\"\n2025-03-08 18:18:37,296 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dcrat_mutexes\"\n2025-03-08 18:18:37,296 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_fynloski_mutexes\"\n2025-03-08 18:18:37,296 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"karagany_files\"\n2025-03-08 18:18:37,296 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"limerat_mutexes\"\n2025-03-08 18:18:37,297 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"limerat_regkeys\"\n2025-03-08 18:18:37,297 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"lodarat_file_behavior\"\n2025-03-08 18:18:37,297 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modirat_behavior\"\n2025-03-08 18:18:37,297 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"njrat_regkeys\"\n2025-03-08 18:18:37,297 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"obliquerat_files\"\n2025-03-08 18:18:37,297 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"obliquerat_mutexes\"\n2025-03-08 18:18:37,297 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"parallax_mutexes\"\n2025-03-08 18:18:37,297 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_pcclient\"\n2025-03-08 18:18:37,298 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_plugx_mutexes\"\n2025-03-08 18:18:37,298 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_poisonivy_mutexes\"\n2025-03-08 18:18:37,298 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_quasar_mutexes\"\n2025-03-08 18:18:37,298 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ratsnif_mutexes\"\n2025-03-08 18:18:37,298 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_senna_mutexes\"\n2025-03-08 18:18:37,298 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_spynet\"\n2025-03-08 18:18:37,298 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"venomrat_mutexes\"\n2025-03-08 18:18:37,298 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"warzonerat_files\"\n2025-03-08 18:18:37,298 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"warzonerat_regkeys\"\n2025-03-08 18:18:37,299 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"xpertrat_files\"\n2025-03-08 18:18:37,299 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"xpertrat_mutexes\"\n2025-03-08 18:18:37,299 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_xtreme_mutexes\"\n2025-03-08 18:18:37,299 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"recon_fingerprint\"\n2025-03-08 18:18:37,299 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"remcos_files\"\n2025-03-08 18:18:37,299 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"remcos_mutexes\"\n2025-03-08 18:18:37,299 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"remcos_regkeys\"\n2025-03-08 18:18:37,299 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rdptcp_key\"\n2025-03-08 18:18:37,300 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_rdp_clip\"\n2025-03-08 18:18:37,300 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_remote_desktop_session\"\n2025-03-08 18:18:37,300 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_networking_icon\"\n2025-03-08 18:18:37,300 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_pinned_programs\"\n2025-03-08 18:18:37,300 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_security_maintenance_icon\"\n2025-03-08 18:18:37,300 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_startmenu_defaults\"\n2025-03-08 18:18:37,300 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_username_startmenu\"\n2025-03-08 18:18:37,300 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"spicyhotpot_behavior\"\n2025-03-08 18:18:37,301 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"sniffer_winpcap\"\n2025-03-08 18:18:37,301 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"spreading_autoruninf\"\n2025-03-08 18:18:37,301 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_hidden_extension\"\n2025-03-08 18:18:37,301 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_hiddenreg\"\n2025-03-08 18:18:37,301 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_hide_notifications\"\n2025-03-08 18:18:37,301 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_webhistory\"\n2025-03-08 18:18:37,301 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"sysinternals_psexec\"\n2025-03-08 18:18:37,301 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"sysinternals_tools\"\n2025-03-08 18:18:37,302 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"language_check_registry\"\n2025-03-08 18:18:37,302 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"tampers_etw\"\n2025-03-08 18:18:37,302 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"lsa_tampering\"\n2025-03-08 18:18:37,302 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"tampers_powershell_logging\"\n2025-03-08 18:18:37,302 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"targeted_flame\"\n2025-03-08 18:18:37,302 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"territorial_disputes_sigs\"\n2025-03-08 18:18:37,303 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"trickbot_mutex\"\n2025-03-08 18:18:37,303 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"fleercivet_mutex\"\n2025-03-08 18:18:37,303 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"lokibot_mutexes\"\n2025-03-08 18:18:37,303 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ursnif_behavior\"\n2025-03-08 18:18:37,304 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"upatre_files\"\n2025-03-08 18:18:37,304 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"upatre_files\"\n2025-03-08 18:18:37,304 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_adfind\"\n2025-03-08 18:18:37,304 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_ms_protocol\"\n2025-03-08 18:18:37,304 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"neshta_mutexes\"\n2025-03-08 18:18:37,304 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"renamer_mutexes\"\n2025-03-08 18:18:37,304 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"owa_web_shell_files\"\n2025-03-08 18:18:37,304 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"web_shell_files\"\n2025-03-08 18:18:37,304 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"web_shell_processes\"\n2025-03-08 18:18:37,304 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dotnet_csc_build\"\n2025-03-08 18:18:37,305 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"mavinject_lolbin\"\n2025-03-08 18:18:37,305 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"multiple_explorer_instances\"\n2025-03-08 18:18:37,305 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"script_tool_executed\"\n2025-03-08 18:18:37,305 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_certutil_use\"\n2025-03-08 18:18:37,305 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_command_tools\"\n2025-03-08 18:18:37,305 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_mpcmdrun_use\"\n2025-03-08 18:18:37,305 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_ping_use\"\n2025-03-08 18:18:37,305 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_powershell_copyitem\"\n2025-03-08 18:18:37,305 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities\"\n2025-03-08 18:18:37,305 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_appcmd\"\n2025-03-08 18:18:37,305 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_csvde_ldifde\"\n2025-03-08 18:18:37,305 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_cipher\"\n2025-03-08 18:18:37,305 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_clickonce\"\n2025-03-08 18:18:37,306 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_curl\"\n2025-03-08 18:18:37,306 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_dsquery\"\n2025-03-08 18:18:37,306 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_esentutl\"\n2025-03-08 18:18:37,306 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_finger\"\n2025-03-08 18:18:37,306 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_mode\"\n2025-03-08 18:18:37,306 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_ntdsutil\"\n2025-03-08 18:18:37,306 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_nltest\"\n2025-03-08 18:18:37,306 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_xcopy\"\n2025-03-08 18:18:37,306 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"wmic_command_suspicious\"\n2025-03-08 18:18:37,306 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"scrcons_wmi_script_consumer\"\n2025-03-08 18:18:37,306 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"allaple_mutexes\"\n2025-03-08 18:18:37,307 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"BinGraph\"\n2025-03-08 18:18:37,307 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"PCAP2CERT\"\n2025-03-08 18:18:37,307 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"ReportHTML\"\n2025-03-08 18:18:37,329 [Task 23] [modules.reporting.reporthtml] ERROR: Failed to generate summary HTML report: 'dict object' has no attribute 'target'\nTraceback (most recent call last):\n  File \"/opt/CAPEv2/utils/../modules/reporting/reporthtml.py\", line 85, in run\n    html = tpl.render({\"results\": results, \"summary_report\": False})\n           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/jinja2/environment.py\", line 1295, in render\n    self.environment.handle_exception()\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/jinja2/environment.py\", line 942, in handle_exception\n    raise rewrite_traceback_stack(source=source)\n  File \"/opt/CAPEv2/data/html/report.html\", line 1, in top-level template code\n    {% extends \"base-report.html\" %}\n    ^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/opt/CAPEv2/data/html/base-report.html\", line 67, in top-level template code\n    {% block content %}{% endblock %}\n    ^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/opt/CAPEv2/data/html/report.html\", line 6, in block 'content'\n    {% include \"sections/file.html\" %}\n    ^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/opt/CAPEv2/data/html/sections/file.html\", line 16, in top-level template code\n    {% if results.target.file %}\n    ^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/jinja2/environment.py\", line 490, in getattr\n    return getattr(obj, attribute)\n           ^^^^^^^^^^^^^^^^^^^^^^^\njinja2.exceptions.UndefinedError: 'dict object' has no attribute 'target'\n2025-03-08 18:18:37,330 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"ReportHTMLSummary\"\n2025-03-08 18:18:37,350 [Task 23] [modules.reporting.reporthtmlsummary] ERROR: Failed to generate summary HTML report: 'dict object' has no attribute 'target'\nTraceback (most recent call last):\n  File \"/opt/CAPEv2/utils/../modules/reporting/reporthtmlsummary.py\", line 95, in run\n    html = tpl.render({\"results\": results, \"summary_report\": True})\n           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/jinja2/environment.py\", line 1295, in render\n    self.environment.handle_exception()\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/jinja2/environment.py\", line 942, in handle_exception\n    raise rewrite_traceback_stack(source=source)\n  File \"/opt/CAPEv2/data/html/report.html\", line 1, in top-level template code\n    {% extends \"base-report.html\" %}\n    ^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/opt/CAPEv2/data/html/base-report.html\", line 67, in top-level template code\n    {% block content %}{% endblock %}\n    ^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/opt/CAPEv2/data/html/report.html\", line 6, in block 'content'\n    {% include \"sections/file.html\" %}\n    ^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/opt/CAPEv2/data/html/sections/file.html\", line 16, in top-level template code\n    {% if results.target.file %}\n    ^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/jinja2/environment.py\", line 490, in getattr\n    return getattr(obj, attribute)\n           ^^^^^^^^^^^^^^^^^^^^^^^\njinja2.exceptions.UndefinedError: 'dict object' has no attribute 'target'\n2025-03-08 18:18:37,351 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"JsonDump\"\n2025-03-08 18:18:37,352 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"ReportPDF\"\n2025-03-08 18:18:37,352 [Task 23] [lib.cuckoo.core.plugins] WARNING: The reporting module \"ReportPDF\" returned the following error: Unable to open summary HTML report to convert to PDF: Ensure reporthtmlsummary is enabled in reporting.conf\n2025-03-08 18:18:37,352 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"MongoDB\"\n2025-03-08 18:18:37,358 [Task 23] [modules.reporting.mongodb] DEBUG: Deleted previous MongoDB data for Task 23\n2025-03-08 18:18:37,408 [Task 23] [root] DEBUG: Finished processing task\n```\nComment: Sorry for the late update,\n\nI have tried reinstalling on Ubuntu 22.04 and 24.04.\n\nThe status on Ubuntu 22.04 is `failed_reporting` and when I run the `poetry run python utils/process.py -r 37 -d` command, the report is successfully generated.\n\n### Normal log if running process from web\n\n[normal_log_22.txt](https://github.com/user-attachments/files/19178278/normal_log_22.txt)\n\n### log from poetry run python utils/process.py -r 37 -d\n\n[log_from_poetry_22.txt](https://github.com/user-attachments/files/19178254/log_from_poetry_22.txt)\n\n\nMeanwhile, on Ubuntu 24.04, `failed_reporting` occurs, and when I run the `poetry run python utils/process.py -r 37 -d` command, the report still fails.\n\n### Normal log if running process from web\n\n[normal_log_24.txt](https://github.com/user-attachments/files/19178288/normal_log_24.txt)\n\n### log from poetry run python utils/process.py -r 2 -d\n\n[log_from_poetry_24.txt](https://github.com/user-attachments/files/19178318/log_from_poetry_24.txt)\nComment: hello, thats interesting, i have both servers version in run but didn't face it. can you add some debugging inside of`modules/processing/CAPE.py` as is where the `target`. just before `return self.cape` line 381, add `print(\"target is: \", self.cape.get(\"target\"))`\nComment: ![Image](https://github.com/user-attachments/assets/0b13719e-a6fc-477b-aeee-0b7635035c63)\n\nAfter add `print(\"target is: \", self.cape.get(\"target\"))`\n\n```\n2025-03-11 08:33:42,020 [Task 38] [modules.reporting.reporthtml] ERROR: Failed to generate summary HTML report: 'dict object' has no attribute 'target'\nTraceback (most recent call last):\n  File \"/opt/CAPEv2/utils/../modules/reporting/reporthtml.py\", line 85, in run\n    html = tpl.render({\"results\": results, \"summary_report\": False})\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/jinja2/environment.py\", line 1295, in render\n    self.environment.handle_exception()\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/jinja2/environment.py\", line 942, in handle_exception\n    raise rewrite_traceback_stack(source=source)\n  File \"/opt/CAPEv2/data/html/report.html\", line 1, in top-level template code\n    {% extends \"base-report.html\" %}\n  File \"/opt/CAPEv2/data/html/base-report.html\", line 67, in top-level template code\n    {% block content %}{% endblock %}\n  File \"/opt/CAPEv2/data/html/report.html\", line 6, in block 'content'\n    {% include \"sections/file.html\" %}\n  File \"/opt/CAPEv2/data/html/sections/file.html\", line 16, in top-level template code\n    {% if results.target.file %}\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/jinja2/environment.py\", line 490, in getattr\n    return getattr(obj, attribute)\njinja2.exceptions.UndefinedError: 'dict object' has no attribute 'target'\n2025-03-11 08:33:42,021 [Task 38] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"ReportHTMLSummary\"\n2025-03-11 08:33:42,042 [Task 38] [modules.reporting.reporthtmlsummary] ERROR: Failed to generate summary HTML report: 'dict object' has no attribute 'target'\nTraceback (most recent call last):\n  File \"/opt/CAPEv2/utils/../modules/reporting/reporthtmlsummary.py\", line 95, in run\n    html = tpl.render({\"results\": results, \"summary_report\": True})\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/jinja2/environment.py\", line 1295, in render\n    self.environment.handle_exception()\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/jinja2/environment.py\", line 942, in handle_exception\n    raise rewrite_traceback_stack(source=source)\n  File \"/opt/CAPEv2/data/html/report.html\", line 1, in top-level template code\n    {% extends \"base-report.html\" %}\n  File \"/opt/CAPEv2/data/html/base-report.html\", line 67, in top-level template code\n    {% block content %}{% endblock %}\n  File \"/opt/CAPEv2/data/html/report.html\", line 6, in block 'content'\n    {% include \"sections/file.html\" %}\n  File \"/opt/CAPEv2/data/html/sections/file.html\", line 16, in top-level template code\n    {% if results.target.file %}\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/jinja2/environment.py\", line 490, in getattr\n    return getattr(obj, attribute)\njinja2.exceptions.UndefinedError: 'dict object' has no attribute 'target'\n2025-03-11 08:33:42,042 [Task 38] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"JsonDump\"\n2025-03-11 08:33:42,043 [Task 38] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"ReportPDF\"\n2025-03-11 08:33:42,043 [Task 38] [lib.cuckoo.core.plugins] WARNING: The reporting module \"ReportPDF\" returned the following error: Unable to open summary HTML report to convert to PDF: Ensure reporthtmlsummary is enabled in reporting.conf\n2025-03-11 08:33:42,043 [Task 38] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"MongoDB\"\n2025-03-11 08:33:42,050 [Task 38] [modules.reporting.mongodb] DEBUG: Deleted previous MongoDB data for Task 38\n2025-03-11 08:33:42,150 [Task 38] [root] DEBUG: Finished processing task\n```\nComment: It should be printed before, as the log is for reporting part, not processing, so you don't see it right? CAPE is enabled in processing.conf?\nComment: CAPE is disabled in processing.conf\n\n![Image](https://github.com/user-attachments/assets/6697b2c6-e7e4-4cd5-b641-db79e35bba19)\nComment: thats explains it, CAPE must be on, without it it won't work and most of the stuff will just fail\nComment: The same error occurs even though 'CAPE' has been enabled.\n\n```\n2025-03-11 09:04:47,934 [Task 38] [modules.reporting.reporthtml] ERROR: Failed to generate summary HTML report: 'dict object' has no attribute 'target'\nTraceback (most recent call last):\n  File \"/opt/CAPEv2/utils/../modules/reporting/reporthtml.py\", line 85, in run\n    html = tpl.render({\"results\": results, \"summary_report\": False})\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/jinja2/environment.py\", line 1295, in render\n    self.environment.handle_exception()\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/jinja2/environment.py\", line 942, in handle_exception\n    raise rewrite_traceback_stack(source=source)\n  File \"/opt/CAPEv2/data/html/report.html\", line 1, in top-level template code\n    {% extends \"base-report.html\" %}\n  File \"/opt/CAPEv2/data/html/base-report.html\", line 67, in top-level template code\n    {% block content %}{% endblock %}\n  File \"/opt/CAPEv2/data/html/report.html\", line 6, in block 'content'\n    {% include \"sections/file.html\" %}\n  File \"/opt/CAPEv2/data/html/sections/file.html\", line 16, in top-level template code\n    {% if results.target.file %}\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/jinja2/environment.py\", line 490, in getattr\n    return getattr(obj, attribute)\njinja2.exceptions.UndefinedError: 'dict object' has no attribute 'target'\n2025-03-11 09:04:47,934 [Task 38] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"ReportHTMLSummary\"\n2025-03-11 09:04:47,957 [Task 38] [modules.reporting.reporthtmlsummary] ERROR: Failed to generate summary HTML report: 'dict object' has no attribute 'target'\nTraceback (most recent call last):\n  File \"/opt/CAPEv2/utils/../modules/reporting/reporthtmlsummary.py\", line 95, in run\n    html = tpl.render({\"results\": results, \"summary_report\": True})\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/jinja2/environment.py\", line 1295, in render\n    self.environment.handle_exception()\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/jinja2/environment.py\", line 942, in handle_exception\n    raise rewrite_traceback_stack(source=source)\n  File \"/opt/CAPEv2/data/html/report.html\", line 1, in top-level template code\n    {% extends \"base-report.html\" %}\n  File \"/opt/CAPEv2/data/html/base-report.html\", line 67, in top-level template code\n    {% block content %}{% endblock %}\n  File \"/opt/CAPEv2/data/html/report.html\", line 6, in block 'content'\n    {% include \"sections/file.html\" %}\n  File \"/opt/CAPEv2/data/html/sections/file.html\", line 16, in top-level template code\n    {% if results.target.file %}\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/jinja2/environment.py\", line 490, in getattr\n    return getattr(obj, attribute)\njinja2.exceptions.UndefinedError: 'dict object' has no attribute 'target'\n2025-03-11 09:04:47,957 [Task 38] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"JsonDump\"\n2025-03-11 09:04:47,958 [Task 38] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"ReportPDF\"\n2025-03-11 09:04:47,958 [Task 38] [lib.cuckoo.core.plugins] WARNING: The reporting module \"ReportPDF\" returned the following error: Unable to open summary HTML report to convert to PDF: Ensure reporthtmlsummary is enabled in reporting.conf\n2025-03-11 09:04:47,958 [Task 38] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"MongoDB\"\n2025-03-11 09:04:47,964 [Task 38] [modules.reporting.mongodb] DEBUG: Deleted previous MongoDB data for Task 38\n2025-03-11 09:04:48,033 [Task 38] [root] DEBUG: Finished processing task\n```\nComment: but you still not see the print that you added right? even if it would be empty, it should just print initial part\nComment: @doomedraven Hi, I also face the same issue. However, it's apparently not only the PDF Report, but every Report that fails to be generated. I also made sure to not miss anything, but for some reason non of the reports are working. Regardless whether its JSON; PDF, HTML HTML-Summary etc etc. I'm running CAPE on an Ubuntu 24.04. \n\nApr 14 12:14:00 sandbox-VirtualBox poetry[29933]: 2025-04-14 14:14:00,965 [lib.cuckoo.core.analysis_manager] ERROR: Task #16: Machine win10: the guest initialization hit the critical timeout, analysis aborted\nApr 14 12:14:00 sandbox-VirtualBox poetry[29933]: Traceback (most recent call last):\nApr 14 12:14:00 sandbox-VirtualBox poetry[29933]:   File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 452, in perform_analysis\nApr 14 12:14:00 sandbox-VirtualBox poetry[29933]:     self.run_analysis_on_guest()\nApr 14 12:14:00 sandbox-VirtualBox poetry[29933]:   File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 418, in run_analysis_on_guest\nApr 14 12:14:00 sandbox-VirtualBox poetry[29933]:     guest_manager.start_analysis(options)\nApr 14 12:14:00 sandbox-VirtualBox poetry[29933]:   File \"/opt/CAPEv2/lib/cuckoo/core/guest.py\", line 253, in start_analysis\nApr 14 12:14:00 sandbox-VirtualBox poetry[29933]:     self.wait_available()\nApr 14 12:14:00 sandbox-VirtualBox poetry[29933]:   File \"/opt/CAPEv2/lib/cuckoo/core/guest.py\", line 162, in wait_available\nApr 14 12:14:00 sandbox-VirtualBox poetry[29933]:     raise CuckooGuestCriticalTimeout(\nApr 14 12:14:00 sandbox-VirtualBox poetry[29933]: lib.cuckoo.common.exceptions.CuckooGuestCriticalTimeout: Machine win10: the guest initialization hit the critical timeout, analysis aborted\nApr 14 12:14:00 sandbox-VirtualBox kernel: virbr0: left promiscuous mode\nApr 14 12:14:01 sandbox-VirtualBox sudo[33491]: pam_unix(sudo:session): session closed for user root\nApr 14 12:14:01 sandbox-VirtualBox poetry[29933]: 2025-04-14 14:14:01,112 [lib.cuckoo.core.analysis_manager] INFO: Task #16: Disabled route 'internet'\nApr 14 12:14:01 sandbox-VirtualBox kernel: virbr0: port 1(vnet12) entered disabled state\nApr 14 12:14:01 sandbox-VirtualBox kernel: vnet12 (unregistering): left allmulticast mode\nApr 14 12:14:01 sandbox-VirtualBox kernel: vnet12 (unregistering): left promiscuous mode\nApr 14 12:14:01 sandbox-VirtualBox kernel: virbr0: port 1(vnet12) entered disabled state\nApr 14 12:14:01 sandbox-VirtualBox NetworkManager[1332]: <info>  [1744632841.1272] device (vnet12): state change: activated -> unmanaged (reason 'unmanaged', sys-iface-state: 'removed')\nApr 14 12:14:01 sandbox-VirtualBox NetworkManager[1332]: <info>  [1744632841.1275] device (vnet12): released from master device virbr0\nApr 14 12:14:01 sandbox-VirtualBox dbus-daemon[1227]: [system] Activating via systemd: service name='org.freedesktop.nm_dispatcher' unit='dbus-org.freedesktop.nm-dispatcher.service' requested by ':1.12' (uid=0 pid=1332 comm=\"/usr/sbin/NetworkManager --no-daemon\" label=\"unconfined\")\nApr 14 12:14:01 sandbox-VirtualBox systemd[1]: Starting NetworkManager-dispatcher.service - Network Manager Script Dispatcher Service...\nApr 14 12:14:01 sandbox-VirtualBox dbus-daemon[1227]: [system] Successfully activated service 'org.freedesktop.nm_dispatcher'\nApr 14 12:14:01 sandbox-VirtualBox systemd[1]: Started NetworkManager-dispatcher.service - Network Manager Script Dispatcher Service.\nApr 14 12:14:02 sandbox-VirtualBox poetry[29933]: libvirt: Domain Config error : Requested operation is not valid: domain is not running\nApr 14 12:14:02 sandbox-VirtualBox poetry[29933]: libvirt: I/O Stream Utils error : this function is not supported by the connection driver: virStreamFinish\nApr 14 12:14:02 sandbox-VirtualBox poetry[29933]: 2025-04-14 14:14:02,002 [modules.auxiliary.QemuScreenshots] ERROR: Cannot take screenshot: this function is not supported by the connection driver: virStreamFinish\nApr 14 12:14:02 sandbox-VirtualBox tracker-miner-fs-3[53684]: (tracker-extract-3:53684): GLib-GIO-WARNING **: 14:14:02.030: Error creating IO channel for /proc/self/mountinfo: Invalid argument (g-io-error-quark, 13)\nApr 14 12:14:02 sandbox-VirtualBox poetry[29933]: 2025-04-14 14:14:02,031 [lib.cuckoo.core.analysis_manager] INFO: Task #16: Completed analysis unsuccessfully.\nApr 14 12:14:02 sandbox-VirtualBox poetry[29933]: 2025-04-14 14:14:02,033 [lib.cuckoo.core.analysis_manager] INFO: Task #16: analysis procedure completed\nApr 14 12:14:02 sandbox-VirtualBox ntpd[1865]: IO: Deleting interface #18 virbr0, 192.168.122.1#123, interface stats: received=0, sent=0, dropped=0, active_time=2611 secs\nApr 14 12:14:05 sandbox-VirtualBox poetry[19375]: 2025-04-14 12:14:05,092 [root] INFO: Processing analysis data for Task #16\nApr 14 12:14:05 sandbox-VirtualBox mongodb[1757]: {\"t\":{\"$date\":\"2025-04-14T12:14:05.550+00:00\"},\"s\":\"I\",  \"c\":\"WTCHKPT\",  \"id\":22430,   \"ctx\":\"Checkpointer\",\"msg\":\"WiredTiger message\",\"attr\":{\"message\":{\"ts_sec\":1744632845,\"ts_usec\":550308,\"thread\":\"1757:0x797e4d7cd6c0\",\"session_name\":\"WT_SESSION.checkpoint\",\"category\":\"WT_VERB_CHECKPOINT_PROGRESS\",\"category_id\":7,\"verbose_level\":\"DEBUG_1\",\"verbose_level_id\":1,\"msg\":\"saving checkpoint snapshot min: 664, snapshot max: 664 snapshot count: 0, oldest timestamp: (0, 0) , meta checkpoint timestamp: (0, 0) base write gen: 119\"}}}\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]: 2025-04-14 12:14:05,874 [Task 16] [lib.cuckoo.common.integrations.virustotal] ERROR: VT: Request failed\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]: --- Logging error ---\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]: Traceback (most recent call last):\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/logging/__init__.py\", line 1163, in emit\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:     stream.write(msg + self.terminator)\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]: ValueError: I/O operation on closed file.\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]: Call stack:\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 689, in <module>\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:     main()\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 613, in main\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:     autoprocess(\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 442, in autoprocess\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:     future = pool.schedule(process, args, kwargs, timeout=processing_timeout)\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 105, in schedule\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:     self._check_pool_status()\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/base_pool.py\", line 94, in _check_pool_status\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:     self._update_pool_status()\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/base_pool.py\", line 103, in _update_pool_status\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:     self._start_pool()\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 70, in _start_pool\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:     self._pool_manager.start()\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 209, in start\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:     self.worker_manager.create_workers()\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 387, in create_workers\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:     self.new_worker()\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 399, in new_worker\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:     worker = launch_process(\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/common/process.py\", line 41, in launch_process\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:     process.start()\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/process.py\", line 121, in start\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:     self._popen = self._Popen(self)\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/context.py\", line 224, in _Popen\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:     return _default_context.get_context().Process._Popen(process_obj)\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/context.py\", line 282, in _Popen\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:     return Popen(process_obj)\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/popen_fork.py\", line 19, in __init__\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:     self._launch(process_obj)\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/popen_fork.py\", line 71, in _launch\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:     code = process_obj._bootstrap(parent_sentinel=child_r)\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/process.py\", line 314, in _bootstrap\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:     self.run()\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/process.py\", line 108, in run\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:     self._target(*self._args, **self._kwargs)\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 433, in worker_process\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:     result = process_execute(\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/common/process.py\", line 65, in process_execute\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:     return Result(ResultStatus.SUCCESS, function(*args, **kwargs))\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 141, in process\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:     RunProcessing(task=task_dict, results=results).run()\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 352, in run\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:     result = self.process(module)\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 318, in process\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:     data = current.run()\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../modules/processing/CAPE.py\", line 365, in run\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:     self.process_file(\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../modules/processing/CAPE.py\", line 198, in process_file\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:     static_file_info(\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/file_extra_info.py\", line 264, in static_file_info\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:     vt_details = vt_lookup(\"file\", file_path, results)\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/virustotal.py\", line 232, in vt_lookup\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]:     log.error(\"VT: Request failed\")\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]: Message: 'VT: Request failed'\nApr 14 12:14:05 sandbox-VirtualBox poetry[20295]: Arguments: ()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: 2025-04-14 14:14:06,516 [Task 16] [modules.processing.behavior] WARNING: Analysis results folder does not exist at path \"/opt/CAPEv2/storage/analyses/16/logs\"\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: --- Logging error ---\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Traceback (most recent call last):\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/logging/handlers.py\", line 74, in emit\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.doRollover()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 229, in doRollover\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.stream.flush()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: ValueError: I/O operation on closed file.\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Call stack:\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 689, in <module>\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     main()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 613, in main\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     autoprocess(\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 442, in autoprocess\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     future = pool.schedule(process, args, kwargs, timeout=processing_timeout)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 105, in schedule\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._check_pool_status()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/base_pool.py\", line 94, in _check_pool_status\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._update_pool_status()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/base_pool.py\", line 103, in _update_pool_status\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._start_pool()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 70, in _start_pool\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._pool_manager.start()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 209, in start\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.worker_manager.create_workers()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 387, in create_workers\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.new_worker()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 399, in new_worker\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     worker = launch_process(\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/common/process.py\", line 41, in launch_process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     process.start()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/process.py\", line 121, in start\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._popen = self._Popen(self)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/context.py\", line 224, in _Popen\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     return _default_context.get_context().Process._Popen(process_obj)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/context.py\", line 282, in _Popen\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     return Popen(process_obj)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/popen_fork.py\", line 19, in __init__\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._launch(process_obj)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/popen_fork.py\", line 71, in _launch\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     code = process_obj._bootstrap(parent_sentinel=child_r)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/process.py\", line 314, in _bootstrap\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.run()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/process.py\", line 108, in run\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._target(*self._args, **self._kwargs)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 433, in worker_process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     result = process_execute(\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/common/process.py\", line 65, in process_execute\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     return Result(ResultStatus.SUCCESS, function(*args, **kwargs))\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 141, in process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     RunProcessing(task=task_dict, results=results).run()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 352, in run\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     result = self.process(module)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 318, in process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     data = current.run()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../modules/processing/behavior.py\", line 1219, in run\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     log.warning('Analysis results folder does not exist at path \"%s\"', self.logs_path)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Message: 'Analysis results folder does not exist at path \"%s\"'\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Arguments: ('/opt/CAPEv2/storage/analyses/16/logs',)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: 2025-04-14 14:14:06,521 [Task 16] [modules.processing.suricata] WARNING: Suricata: Failed to find usable Suricata log file\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: --- Logging error ---\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Traceback (most recent call last):\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/logging/handlers.py\", line 74, in emit\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.doRollover()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 229, in doRollover\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.stream.flush()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: ValueError: I/O operation on closed file.\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Call stack:\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 689, in <module>\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     main()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 613, in main\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     autoprocess(\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 442, in autoprocess\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     future = pool.schedule(process, args, kwargs, timeout=processing_timeout)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 105, in schedule\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._check_pool_status()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/base_pool.py\", line 94, in _check_pool_status\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._update_pool_status()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/base_pool.py\", line 103, in _update_pool_status\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._start_pool()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 70, in _start_pool\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._pool_manager.start()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 209, in start\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.worker_manager.create_workers()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 387, in create_workers\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.new_worker()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 399, in new_worker\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     worker = launch_process(\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/common/process.py\", line 41, in launch_process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     process.start()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/process.py\", line 121, in start\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._popen = self._Popen(self)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/context.py\", line 224, in _Popen\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     return _default_context.get_context().Process._Popen(process_obj)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/context.py\", line 282, in _Popen\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     return Popen(process_obj)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/popen_fork.py\", line 19, in __init__\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._launch(process_obj)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/popen_fork.py\", line 71, in _launch\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     code = process_obj._bootstrap(parent_sentinel=child_r)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/process.py\", line 314, in _bootstrap\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.run()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/process.py\", line 108, in run\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._target(*self._args, **self._kwargs)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 433, in worker_process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     result = process_execute(\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/common/process.py\", line 65, in process_execute\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     return Result(ResultStatus.SUCCESS, function(*args, **kwargs))\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 141, in process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     RunProcessing(task=task_dict, results=results).run()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 352, in run\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     result = self.process(module)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 318, in process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     data = current.run()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../modules/processing/suricata.py\", line 225, in run\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     log.warning(\"Suricata: Failed to find usable Suricata log file\")\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Message: 'Suricata: Failed to find usable Suricata log file'\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Arguments: ()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: 2025-04-14 14:14:06,523 [Task 16] [lib.cuckoo.core.plugins] INFO: Logs folder doesn't exist, maybe something with with analyzer folder, any change?\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: --- Logging error ---\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Traceback (most recent call last):\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/logging/handlers.py\", line 74, in emit\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.doRollover()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 229, in doRollover\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.stream.flush()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: ValueError: I/O operation on closed file.\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Call stack:\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 689, in <module>\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     main()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 613, in main\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     autoprocess(\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 442, in autoprocess\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     future = pool.schedule(process, args, kwargs, timeout=processing_timeout)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 105, in schedule\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._check_pool_status()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/base_pool.py\", line 94, in _check_pool_status\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._update_pool_status()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/base_pool.py\", line 103, in _update_pool_status\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._start_pool()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 70, in _start_pool\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._pool_manager.start()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 209, in start\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.worker_manager.create_workers()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 387, in create_workers\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.new_worker()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 399, in new_worker\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     worker = launch_process(\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/common/process.py\", line 41, in launch_process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     process.start()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/process.py\", line 121, in start\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._popen = self._Popen(self)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/context.py\", line 224, in _Popen\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     return _default_context.get_context().Process._Popen(process_obj)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/context.py\", line 282, in _Popen\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     return Popen(process_obj)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/popen_fork.py\", line 19, in __init__\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._launch(process_obj)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/popen_fork.py\", line 71, in _launch\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     code = process_obj._bootstrap(parent_sentinel=child_r)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/process.py\", line 314, in _bootstrap\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.run()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/process.py\", line 108, in run\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._target(*self._args, **self._kwargs)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 433, in worker_process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     result = process_execute(\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/common/process.py\", line 65, in process_execute\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     return Result(ResultStatus.SUCCESS, function(*args, **kwargs))\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 141, in process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     RunProcessing(task=task_dict, results=results).run()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 384, in run\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     log.info(\"Logs folder doesn't exist, maybe something with with analyzer folder, any change?\")\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Message: \"Logs folder doesn't exist, maybe something with with analyzer folder, any change?\"\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Arguments: ()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: 2025-04-14 14:14:06,604 [Task 16] [lib.cuckoo.core.plugins] WARNING: The reporting module \"MAEC41Report\" has missing dependencies: Unable to import cybox (install with `pip3 install cybox`)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: --- Logging error ---\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Traceback (most recent call last):\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 869, in process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     current.run(self.results)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../modules/reporting/maec41.py\", line 2787, in run\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     raise CuckooDependencyError(\"Unable to import cybox (install with `pip3 install cybox`)\")\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: lib.cuckoo.common.exceptions.CuckooDependencyError: Unable to import cybox (install with `pip3 install cybox`)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: During handling of the above exception, another exception occurred:\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Traceback (most recent call last):\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/logging/handlers.py\", line 74, in emit\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.doRollover()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 229, in doRollover\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.stream.flush()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: ValueError: I/O operation on closed file.\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Call stack:\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 689, in <module>\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     main()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 613, in main\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     autoprocess(\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 442, in autoprocess\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     future = pool.schedule(process, args, kwargs, timeout=processing_timeout)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 105, in schedule\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._check_pool_status()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/base_pool.py\", line 94, in _check_pool_status\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._update_pool_status()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/base_pool.py\", line 103, in _update_pool_status\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._start_pool()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 70, in _start_pool\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._pool_manager.start()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 209, in start\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.worker_manager.create_workers()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 387, in create_workers\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.new_worker()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 399, in new_worker\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     worker = launch_process(\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/common/process.py\", line 41, in launch_process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     process.start()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/process.py\", line 121, in start\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._popen = self._Popen(self)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/context.py\", line 224, in _Popen\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     return _default_context.get_context().Process._Popen(process_obj)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/context.py\", line 282, in _Popen\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     return Popen(process_obj)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/popen_fork.py\", line 19, in __init__\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._launch(process_obj)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/popen_fork.py\", line 71, in _launch\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     code = process_obj._bootstrap(parent_sentinel=child_r)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/process.py\", line 314, in _bootstrap\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.run()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/process.py\", line 108, in run\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._target(*self._args, **self._kwargs)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 433, in worker_process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     result = process_execute(\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/common/process.py\", line 65, in process_execute\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     return Result(ResultStatus.SUCCESS, function(*args, **kwargs))\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 157, in process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     error_count = RunReporting(task=task.to_dict(), results=results, reprocess=reprocess).run()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 906, in run\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.process(module)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 879, in process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     log.warning('The reporting module \"%s\" has missing dependencies: %s', current.__class__.__name__, e)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Message: 'The reporting module \"%s\" has missing dependencies: %s'\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Arguments: ('MAEC41Report', CuckooDependencyError('Unable to import cybox (install with `pip3 install cybox`)'))\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: 2025-04-14 14:14:06,605 [Task 16] [lib.cuckoo.core.plugins] ERROR: Failed to run the reporting module \"MaecReport\": 'NoneType' object has no attribute 'enterprise'\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Traceback (most recent call last):\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 869, in process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     current.run(self.results)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../modules/reporting/maec5.py\", line 188, in run\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.add_mitre_attack(results)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../modules/reporting/maec5.py\", line 722, in add_mitre_attack\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     for tactic in self.mitre.enterprise.tactics:\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:                   ^^^^^^^^^^^^^^^^^^^^^\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: AttributeError: 'NoneType' object has no attribute 'enterprise'\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: --- Logging error ---\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Traceback (most recent call last):\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 869, in process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     current.run(self.results)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../modules/reporting/maec5.py\", line 188, in run\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.add_mitre_attack(results)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../modules/reporting/maec5.py\", line 722, in add_mitre_attack\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     for tactic in self.mitre.enterprise.tactics:\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:                   ^^^^^^^^^^^^^^^^^^^^^\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: AttributeError: 'NoneType' object has no attribute 'enterprise'\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: During handling of the above exception, another exception occurred:\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Traceback (most recent call last):\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/logging/handlers.py\", line 74, in emit\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.doRollover()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 229, in doRollover\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.stream.flush()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: ValueError: I/O operation on closed file.\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Call stack:\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 689, in <module>\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     main()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 613, in main\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     autoprocess(\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 442, in autoprocess\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     future = pool.schedule(process, args, kwargs, timeout=processing_timeout)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 105, in schedule\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._check_pool_status()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/base_pool.py\", line 94, in _check_pool_status\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._update_pool_status()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/base_pool.py\", line 103, in _update_pool_status\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._start_pool()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 70, in _start_pool\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._pool_manager.start()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 209, in start\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.worker_manager.create_workers()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 387, in create_workers\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.new_worker()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 399, in new_worker\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     worker = launch_process(\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/common/process.py\", line 41, in launch_process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     process.start()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/process.py\", line 121, in start\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._popen = self._Popen(self)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/context.py\", line 224, in _Popen\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     return _default_context.get_context().Process._Popen(process_obj)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/context.py\", line 282, in _Popen\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     return Popen(process_obj)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/popen_fork.py\", line 19, in __init__\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._launch(process_obj)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/popen_fork.py\", line 71, in _launch\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     code = process_obj._bootstrap(parent_sentinel=child_r)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/process.py\", line 314, in _bootstrap\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.run()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/process.py\", line 108, in run\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._target(*self._args, **self._kwargs)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 433, in worker_process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     result = process_execute(\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/common/process.py\", line 65, in process_execute\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     return Result(ResultStatus.SUCCESS, function(*args, **kwargs))\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 157, in process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     error_count = RunReporting(task=task.to_dict(), results=results, reprocess=reprocess).run()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 906, in run\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.process(module)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 885, in process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     log.exception('Failed to run the reporting module \"%s\": %s', current.__class__.__name__, e)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Message: 'Failed to run the reporting module \"%s\": %s'\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Arguments: ('MaecReport', AttributeError(\"'NoneType' object has no attribute 'enterprise'\"))\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: 2025-04-14 14:14:06,607 [Task 16] [mitre] ERROR: ('Mitre', AttributeError(\"'NoneType' object has no attribute 'enterprise'\"))\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: --- Logging error ---\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Traceback (most recent call last):\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/mitre.py\", line 21, in mitre_generate_attck\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     for technique in mitre.enterprise.techniques:\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:                      ^^^^^^^^^^^^^^^^\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: AttributeError: 'NoneType' object has no attribute 'enterprise'\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: During handling of the above exception, another exception occurred:\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Traceback (most recent call last):\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/logging/handlers.py\", line 74, in emit\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.doRollover()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 229, in doRollover\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.stream.flush()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: ValueError: I/O operation on closed file.\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Call stack:\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 689, in <module>\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     main()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 613, in main\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     autoprocess(\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 442, in autoprocess\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     future = pool.schedule(process, args, kwargs, timeout=processing_timeout)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 105, in schedule\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._check_pool_status()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/base_pool.py\", line 94, in _check_pool_status\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._update_pool_status()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/base_pool.py\", line 103, in _update_pool_status\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._start_pool()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 70, in _start_pool\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._pool_manager.start()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 209, in start\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.worker_manager.create_workers()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 387, in create_workers\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.new_worker()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 399, in new_worker\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     worker = launch_process(\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/common/process.py\", line 41, in launch_process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     process.start()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/process.py\", line 121, in start\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._popen = self._Popen(self)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/context.py\", line 224, in _Popen\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     return _default_context.get_context().Process._Popen(process_obj)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/context.py\", line 282, in _Popen\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     return Popen(process_obj)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/popen_fork.py\", line 19, in __init__\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._launch(process_obj)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/popen_fork.py\", line 71, in _launch\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     code = process_obj._bootstrap(parent_sentinel=child_r)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/process.py\", line 314, in _bootstrap\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.run()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/process.py\", line 108, in run\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._target(*self._args, **self._kwargs)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 433, in worker_process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     result = process_execute(\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/common/process.py\", line 65, in process_execute\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     return Result(ResultStatus.SUCCESS, function(*args, **kwargs))\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 157, in process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     error_count = RunReporting(task=task.to_dict(), results=results, reprocess=reprocess).run()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 906, in run\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.process(module)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 869, in process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     current.run(self.results)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../modules/reporting/mitre.py\", line 18, in run\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     attck = mitre_generate_attck(results, self.mitre)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/mitre.py\", line 37, in mitre_generate_attck\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     log.error((\"Mitre\", e))\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Message: ('Mitre', AttributeError(\"'NoneType' object has no attribute 'enterprise'\"))\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Arguments: ()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: 2025-04-14 14:14:06,658 [Task 16] [modules.reporting.reporthtml] ERROR: Failed to generate summary HTML report: 'dict object' has no attribute 'summary'\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Traceback (most recent call last):\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../modules/reporting/reporthtml.py\", line 85, in run\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     html = tpl.render({\"results\": results, \"summary_report\": False})\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:            ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/jinja2/environment.py\", line 1295, in render\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.environment.handle_exception()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/jinja2/environment.py\", line 942, in handle_exception\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     raise rewrite_traceback_stack(source=source)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/data/html/report.html\", line 1, in top-level template code\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     {% extends \"base-report.html\" %}\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     ^^^^^^^^^^^^^^^^^^^^^^^^^\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/data/html/base-report.html\", line 67, in top-level template code\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     {% block content %}{% endblock %}\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     ^^^^^^^^^^^^^^^^^^^^^^^^^\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/data/html/report.html\", line 16, in block 'content'\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     {% include \"sections/behavior.html\" %}\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     ^^^^^^^^^^^^^^^^^^^^^^^^^\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/data/html/sections/behavior.html\", line 163, in top-level template code\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     {% if results.behavior.summary.files %}\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     ^^^^^^^^^^^^^^^^^^^^^^^^^\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/jinja2/environment.py\", line 490, in getattr\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     return getattr(obj, attribute)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:            ^^^^^^^^^^^^^^^^^^^^^^^\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: jinja2.exceptions.UndefinedError: 'dict object' has no attribute 'summary'\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: --- Logging error ---\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Traceback (most recent call last):\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../modules/reporting/reporthtml.py\", line 85, in run\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     html = tpl.render({\"results\": results, \"summary_report\": False})\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:            ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/jinja2/environment.py\", line 1295, in render\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.environment.handle_exception()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/jinja2/environment.py\", line 942, in handle_exception\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     raise rewrite_traceback_stack(source=source)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/data/html/report.html\", line 1, in top-level template code\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     {% extends \"base-report.html\" %}\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     ^^^^^^^^^^^^^^^^^^^^^^^^^\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/data/html/base-report.html\", line 67, in top-level template code\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     {% block content %}{% endblock %}\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     ^^^^^^^^^^^^^^^^^^^^^^^^^\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/data/html/report.html\", line 16, in block 'content'\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     {% include \"sections/behavior.html\" %}\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     ^^^^^^^^^^^^^^^^^^^^^^^^^\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/data/html/sections/behavior.html\", line 163, in top-level template code\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     {% if results.behavior.summary.files %}\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     ^^^^^^^^^^^^^^^^^^^^^^^^^\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/jinja2/environment.py\", line 490, in getattr\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     return getattr(obj, attribute)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:            ^^^^^^^^^^^^^^^^^^^^^^^\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: jinja2.exceptions.UndefinedError: 'dict object' has no attribute 'summary'\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: During handling of the above exception, another exception occurred:\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Traceback (most recent call last):\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/logging/handlers.py\", line 74, in emit\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.doRollover()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 229, in doRollover\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.stream.flush()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: ValueError: I/O operation on closed file.\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Call stack:\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 689, in <module>\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     main()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 613, in main\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     autoprocess(\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 442, in autoprocess\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     future = pool.schedule(process, args, kwargs, timeout=processing_timeout)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 105, in schedule\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._check_pool_status()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/base_pool.py\", line 94, in _check_pool_status\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._update_pool_status()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/base_pool.py\", line 103, in _update_pool_status\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._start_pool()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 70, in _start_pool\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._pool_manager.start()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 209, in start\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.worker_manager.create_workers()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 387, in create_workers\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.new_worker()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 399, in new_worker\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     worker = launch_process(\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/common/process.py\", line 41, in launch_process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     process.start()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/process.py\", line 121, in start\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._popen = self._Popen(self)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/context.py\", line 224, in _Popen\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     return _default_context.get_context().Process._Popen(process_obj)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/context.py\", line 282, in _Popen\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     return Popen(process_obj)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/popen_fork.py\", line 19, in __init__\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._launch(process_obj)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/popen_fork.py\", line 71, in _launch\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     code = process_obj._bootstrap(parent_sentinel=child_r)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/process.py\", line 314, in _bootstrap\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.run()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/process.py\", line 108, in run\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._target(*self._args, **self._kwargs)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 433, in worker_process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     result = process_execute(\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/common/process.py\", line 65, in process_execute\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     return Result(ResultStatus.SUCCESS, function(*args, **kwargs))\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 157, in process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     error_count = RunReporting(task=task.to_dict(), results=results, reprocess=reprocess).run()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 906, in run\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.process(module)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 869, in process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     current.run(self.results)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../modules/reporting/reporthtml.py\", line 89, in run\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     log.exception(\"Failed to generate summary HTML report: %s\", e)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Message: 'Failed to generate summary HTML report: %s'\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Arguments: (UndefinedError(\"'dict object' has no attribute 'summary'\"),)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: 2025-04-14 14:14:06,705 [Task 16] [modules.reporting.reporthtmlsummary] ERROR: Failed to generate summary HTML report: 'dict object' has no attribute 'summary'\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Traceback (most recent call last):\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../modules/reporting/reporthtmlsummary.py\", line 95, in run\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     html = tpl.render({\"results\": results, \"summary_report\": True})\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:            ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/jinja2/environment.py\", line 1295, in render\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.environment.handle_exception()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/jinja2/environment.py\", line 942, in handle_exception\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     raise rewrite_traceback_stack(source=source)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/data/html/report.html\", line 1, in top-level template code\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     {% extends \"base-report.html\" %}\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     ^^^^^^^^^^^^^^^^^^^^^^^^^\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/data/html/base-report.html\", line 67, in top-level template code\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     {% block content %}{% endblock %}\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     ^^^^^^^^^^^^^^^^^^^^^^^^^\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/data/html/report.html\", line 16, in block 'content'\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     {% include \"sections/behavior.html\" %}\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     ^^^^^^^^^^^^^^^^^^^^^^^^^\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/data/html/sections/behavior.html\", line 163, in top-level template code\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     {% if results.behavior.summary.files %}\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     ^^^^^^^^^^^^^^^^^^^^^^^^^\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/jinja2/environment.py\", line 490, in getattr\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     return getattr(obj, attribute)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:            ^^^^^^^^^^^^^^^^^^^^^^^\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: jinja2.exceptions.UndefinedError: 'dict object' has no attribute 'summary'\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: --- Logging error ---\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Traceback (most recent call last):\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../modules/reporting/reporthtmlsummary.py\", line 95, in run\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     html = tpl.render({\"results\": results, \"summary_report\": True})\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:            ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/jinja2/environment.py\", line 1295, in render\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.environment.handle_exception()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/jinja2/environment.py\", line 942, in handle_exception\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     raise rewrite_traceback_stack(source=source)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/data/html/report.html\", line 1, in top-level template code\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     {% extends \"base-report.html\" %}\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     ^^^^^^^^^^^^^^^^^^^^^^^^^\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/data/html/base-report.html\", line 67, in top-level template code\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     {% block content %}{% endblock %}\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     ^^^^^^^^^^^^^^^^^^^^^^^^^\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/data/html/report.html\", line 16, in block 'content'\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     {% include \"sections/behavior.html\" %}\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     ^^^^^^^^^^^^^^^^^^^^^^^^^\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/data/html/sections/behavior.html\", line 163, in top-level template code\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     {% if results.behavior.summary.files %}\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     ^^^^^^^^^^^^^^^^^^^^^^^^^\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/jinja2/environment.py\", line 490, in getattr\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     return getattr(obj, attribute)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:            ^^^^^^^^^^^^^^^^^^^^^^^\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: jinja2.exceptions.UndefinedError: 'dict object' has no attribute 'summary'\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: During handling of the above exception, another exception occurred:\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Traceback (most recent call last):\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/logging/handlers.py\", line 74, in emit\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.doRollover()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 229, in doRollover\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.stream.flush()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: ValueError: I/O operation on closed file.\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Call stack:\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 689, in <module>\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     main()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 613, in main\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     autoprocess(\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 442, in autoprocess\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     future = pool.schedule(process, args, kwargs, timeout=processing_timeout)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 105, in schedule\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._check_pool_status()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/base_pool.py\", line 94, in _check_pool_status\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._update_pool_status()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/base_pool.py\", line 103, in _update_pool_status\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._start_pool()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 70, in _start_pool\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._pool_manager.start()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 209, in start\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.worker_manager.create_workers()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 387, in create_workers\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.new_worker()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 399, in new_worker\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     worker = launch_process(\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/common/process.py\", line 41, in launch_process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     process.start()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/process.py\", line 121, in start\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._popen = self._Popen(self)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/context.py\", line 224, in _Popen\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     return _default_context.get_context().Process._Popen(process_obj)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/context.py\", line 282, in _Popen\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     return Popen(process_obj)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/popen_fork.py\", line 19, in __init__\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._launch(process_obj)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/popen_fork.py\", line 71, in _launch\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     code = process_obj._bootstrap(parent_sentinel=child_r)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/process.py\", line 314, in _bootstrap\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.run()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/process.py\", line 108, in run\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._target(*self._args, **self._kwargs)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 433, in worker_process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     result = process_execute(\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/common/process.py\", line 65, in process_execute\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     return Result(ResultStatus.SUCCESS, function(*args, **kwargs))\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 157, in process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     error_count = RunReporting(task=task.to_dict(), results=results, reprocess=reprocess).run()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 906, in run\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.process(module)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 869, in process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     current.run(self.results)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../modules/reporting/reporthtmlsummary.py\", line 99, in run\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     log.exception(\"Failed to generate summary HTML report: %s\", str(e))\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Message: 'Failed to generate summary HTML report: %s'\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Arguments: (\"'dict object' has no attribute 'summary'\",)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: 2025-04-14 14:14:06,707 [Task 16] [lib.cuckoo.core.plugins] WARNING: The reporting module \"ReportPDF\" returned the following error: Unable to open summary HTML report to convert to PDF: Ensure reporthtmlsummary is enabled in reporting.conf\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: --- Logging error ---\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Traceback (most recent call last):\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 869, in process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     current.run(self.results)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../modules/reporting/reportpdf.py\", line 29, in run\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     raise CuckooReportError(\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: lib.cuckoo.common.exceptions.CuckooReportError: Unable to open summary HTML report to convert to PDF: Ensure reporthtmlsummary is enabled in reporting.conf\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: During handling of the above exception, another exception occurred:\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Traceback (most recent call last):\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/logging/handlers.py\", line 74, in emit\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.doRollover()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 229, in doRollover\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.stream.flush()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: ValueError: I/O operation on closed file.\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Call stack:\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 689, in <module>\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     main()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 613, in main\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     autoprocess(\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 442, in autoprocess\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     future = pool.schedule(process, args, kwargs, timeout=processing_timeout)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 105, in schedule\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._check_pool_status()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/base_pool.py\", line 94, in _check_pool_status\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._update_pool_status()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/base_pool.py\", line 103, in _update_pool_status\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._start_pool()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 70, in _start_pool\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._pool_manager.start()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 209, in start\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.worker_manager.create_workers()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 387, in create_workers\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.new_worker()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 399, in new_worker\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     worker = launch_process(\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/common/process.py\", line 41, in launch_process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     process.start()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/process.py\", line 121, in start\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._popen = self._Popen(self)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/context.py\", line 224, in _Popen\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     return _default_context.get_context().Process._Popen(process_obj)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/context.py\", line 282, in _Popen\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     return Popen(process_obj)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/popen_fork.py\", line 19, in __init__\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._launch(process_obj)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/popen_fork.py\", line 71, in _launch\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     code = process_obj._bootstrap(parent_sentinel=child_r)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/process.py\", line 314, in _bootstrap\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.run()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/process.py\", line 108, in run\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._target(*self._args, **self._kwargs)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 433, in worker_process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     result = process_execute(\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/common/process.py\", line 65, in process_execute\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     return Result(ResultStatus.SUCCESS, function(*args, **kwargs))\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 157, in process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     error_count = RunReporting(task=task.to_dict(), results=results, reprocess=reprocess).run()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 906, in run\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.process(module)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 882, in process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     log.warning('The reporting module \"%s\" returned the following error: %s', current.__class__.__name__, e)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Message: 'The reporting module \"%s\" returned the following error: %s'\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Arguments: ('ReportPDF', CuckooReportError('Unable to open summary HTML report to convert to PDF: Ensure reporthtmlsummary is enabled in reporting.conf'))\n\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: 2025-04-14 14:14:06,760 [Task 16] [lib.cuckoo.core.plugins] ERROR: Failed to run the reporting module \"RunStatistics\": 'NoneType' object has no attribute 'get'\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Traceback (most recent call last):\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 869, in process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     current.run(self.results)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../modules/reporting/runstatistics.py\", line 103, in run\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     detail[\"files_written\"] = self.getFilesWrittenCount(results)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:                               ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../modules/reporting/runstatistics.py\", line 76, in getFilesWrittenCount\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     return len(results.get(\"behavior\").get(\"summary\").get(\"write_files\"))\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:                ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: AttributeError: 'NoneType' object has no attribute 'get'\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: --- Logging error ---\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Traceback (most recent call last):\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 869, in process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     current.run(self.results)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../modules/reporting/runstatistics.py\", line 103, in run\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     detail[\"files_written\"] = self.getFilesWrittenCount(results)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:                               ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../modules/reporting/runstatistics.py\", line 76, in getFilesWrittenCount\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     return len(results.get(\"behavior\").get(\"summary\").get(\"write_files\"))\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:                ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: AttributeError: 'NoneType' object has no attribute 'get'\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: During handling of the above exception, another exception occurred:\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Traceback (most recent call last):\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/logging/handlers.py\", line 74, in emit\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.doRollover()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 229, in doRollover\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.stream.flush()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: ValueError: I/O operation on closed file.\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Call stack:\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 689, in <module>\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     main()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 613, in main\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     autoprocess(\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 442, in autoprocess\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     future = pool.schedule(process, args, kwargs, timeout=processing_timeout)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 105, in schedule\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._check_pool_status()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/base_pool.py\", line 94, in _check_pool_status\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._update_pool_status()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/base_pool.py\", line 103, in _update_pool_status\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._start_pool()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 70, in _start_pool\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._pool_manager.start()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 209, in start\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.worker_manager.create_workers()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 387, in create_workers\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.new_worker()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 399, in new_worker\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     worker = launch_process(\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/common/process.py\", line 41, in launch_process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     process.start()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/process.py\", line 121, in start\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._popen = self._Popen(self)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/context.py\", line 224, in _Popen\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     return _default_context.get_context().Process._Popen(process_obj)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/context.py\", line 282, in _Popen\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     return Popen(process_obj)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/popen_fork.py\", line 19, in __init__\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._launch(process_obj)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/popen_fork.py\", line 71, in _launch\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     code = process_obj._bootstrap(parent_sentinel=child_r)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/process.py\", line 314, in _bootstrap\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.run()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/usr/lib/python3.12/multiprocessing/process.py\", line 108, in run\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self._target(*self._args, **self._kwargs)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/pool/process.py\", line 433, in worker_process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     result = process_execute(\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.12/lib/python3.12/site-packages/pebble/common/process.py\", line 65, in process_execute\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     return Result(ResultStatus.SUCCESS, function(*args, **kwargs))\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/process.py\", line 157, in process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     error_count = RunReporting(task=task.to_dict(), results=results, reprocess=reprocess).run()\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 906, in run\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     self.process(module)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 885, in process\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]:     log.exception('Failed to run the reporting module \"%s\": %s', current.__class__.__name__, e)\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Message: 'Failed to run the reporting module \"%s\": %s'\nApr 14 12:14:06 sandbox-VirtualBox poetry[20295]: Arguments: ('RunStatistics', AttributeError(\"'NoneType' object has no attribute 'get'\"))\nApr 14 12:14:06 sandbox-VirtualBox poetry[19375]: 2025-04-14 12:14:06,777 [root] INFO: Reports generation completed for Task #16\n\nComment: Well your looks like configuration problem of the sandbox/vm\nComment: That's a bummer - I just went through my config, and alos through the already finished analysis, and noticed that only one analysis came back as \"reported\" and only there the JSON Report worked. For some reason, all the others fail with \"report.html\" or \"report.pdf\" not found. Could you potentially show me please, where I might have misconfigured something?  I'd really appreciate that.\nComment: just read your posted log, almost everything is wrong, starting from that it can't connect to VM, etc. But html/pdf report gen doesnt work due to 3rd party lib issue. json works.\n```\nApr 14 12:14:00 sandbox-VirtualBox poetry[29933]: lib.cuckoo.common.exceptions.CuckooGuestCriticalTimeout: Machine win10: the guest initialization hit the critical timeout, analysis aborted\n```\nComment: thanks - but the interesting thing is, that I can see that it is starting the win10 VM by itself. i'll have a look into that.\n\nSo from what you are saying, only JSON is the way to go for the time being - is there a potential solution on the way or is it not going to be fixed? \n\nComment: Well to see report you have webgui. For html/pdf as standalone no and I don't have time to work on it/low priority \n\nAbout start win10 is one thing, second thing is agent inside of the vm, see docs of configuration and testing connectivity\nComment: really appreciated your answers - thank you! \nComment: You are welcome, once you fix that most of the errors will disappear ",
+  "Title: capa 9\nBody: None",
+  "Title: Fix: False attribution in Yara rule for AgentTesla\nBody: Hey guys I just wanted to report a false attribution for your Yara rule \"AgentTeslaXor\". This rule does actually detect the string decryption routine of the open source obfuscator Obfuscar.\n\nhttps://github.com/kevoreilly/CAPEv2/blob/be42bbe651459d96c032c9cf055531ccf241993e/data/yara/CAPE/AgentTesla.yar#L113C1-L123C2\n\nHere is the runtime code from Obfuscar:\n\n![Image](https://github.com/user-attachments/assets/e08d58aa-818d-4065-9682-b83b9d234b78)\nhttps://github.com/obfuscar/obfuscar/blob/65e9ced171e0f2a92d2c64c479c3a1ec3624802a/Obfuscar/Obfuscator.cs#L1693\n\nAnd here is the instruction pattern matched by your rule:\n\n![Image](https://github.com/user-attachments/assets/077104a4-daa8-4513-934c-cc1f914a9456)\n\nThis is the same code as the one generated by Obfuscar. While this obfuscator is often used by malware it is not unique or specific to AgentTesla but rather a generic .NET obfuscator.\n\nSome false attributed matches on VT:\nc046f84093992fe76c8da1ca0f8c89a59f7bdf31fa90e8ec50448062cf3ee7f3\n856293a7529c978d54811b0d473331d24dc6310f2e25b0b4fb06b5afc64d949a\n8cf074c114cd8ce772dc785dc6321738a37ac4b89a5a131f9e1c8ab5396904ee\n\nComment: Hello, thank you very much for reporting this case with a lot of useful details, we considering how to properly handle this.\nComment: solved here https://github.com/kevoreilly/CAPEv2/commit/fd9240a05509fda65622b6f178b605ed91be5a4b. Thank you again",
+  "Title: Improve linux analysis\nBody: Optimize strace fd_lookup and skip CAPA",
+  "Title: Bump jinja2 from 3.1.5 to 3.1.6\nBody: Bumps [jinja2](https://github.com/pallets/jinja) from 3.1.5 to 3.1.6.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a href=\"https://github.com/pallets/jinja/releases\">jinja2's releases</a>.</em></p>\n<blockquote>\n<h2>3.1.6</h2>\n<p>This is the Jinja 3.1.6 security release, which fixes security issues but does not otherwise change behavior and should not result in breaking changes compared to the latest feature release.</p>\n<p>PyPI: <a href=\"https://pypi.org/project/Jinja2/3.1.6/\">https://pypi.org/project/Jinja2/3.1.6/</a>\nChanges: <a href=\"https://jinja.palletsprojects.com/en/stable/changes/#version-3-1-6\">https://jinja.palletsprojects.com/en/stable/changes/#version-3-1-6</a></p>\n<ul>\n<li>The <code>|attr</code> filter does not bypass the environment's attribute lookup, allowing the sandbox to apply its checks. <a href=\"https://github.com/pallets/jinja/security/advisories/GHSA-cpwx-vrp4-4pq7\">https://github.com/pallets/jinja/security/advisories/GHSA-cpwx-vrp4-4pq7</a></li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/pallets/jinja/blob/main/CHANGES.rst\">jinja2's changelog</a>.</em></p>\n<blockquote>\n<h2>Version 3.1.6</h2>\n<p>Released 2025-03-05</p>\n<ul>\n<li>The <code>|attr</code> filter does not bypass the environment's attribute lookup,\nallowing the sandbox to apply its checks. :ghsa:<code>cpwx-vrp4-4pq7</code></li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/pallets/jinja/commit/15206881c006c79667fe5154fe80c01c65410679\"><code>1520688</code></a> release version 3.1.6</li>\n<li><a href=\"https://github.com/pallets/jinja/commit/90457bbf33b8662926ae65cdde4c4c32e756e403\"><code>90457bb</code></a> Merge commit from fork</li>\n<li><a href=\"https://github.com/pallets/jinja/commit/065334d1ee5b7210e1a0a93c37238c86858f2af7\"><code>065334d</code></a> attr filter uses env.getattr</li>\n<li><a href=\"https://github.com/pallets/jinja/commit/033c20015c7ca899ab52eb921bb0f08e6d3dd145\"><code>033c200</code></a> start version 3.1.6</li>\n<li><a href=\"https://github.com/pallets/jinja/commit/bc68d4efa99c5f77334f0e519628558059ae8c35\"><code>bc68d4e</code></a> use global contributing guide (<a href=\"https://redirect.github.com/pallets/jinja/issues/2070\">#2070</a>)</li>\n<li><a href=\"https://github.com/pallets/jinja/commit/247de5e0c5062a792eb378e50e13e692885ee486\"><code>247de5e</code></a> use global contributing guide</li>\n<li><a href=\"https://github.com/pallets/jinja/commit/ab8218c7a1b66b62e0ad6b941bd514e3a64a358f\"><code>ab8218c</code></a> use project advisory link instead of global</li>\n<li><a href=\"https://github.com/pallets/jinja/commit/b4ffc8ff299dfd360064bea4cd2f862364601ad2\"><code>b4ffc8f</code></a> release version 3.1.5 (<a href=\"https://redirect.github.com/pallets/jinja/issues/2066\">#2066</a>)</li>\n<li>See full diff in <a href=\"https://github.com/pallets/jinja/compare/3.1.5...3.1.6\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=jinja2&package-manager=pip&previous-version=3.1.5&new-version=3.1.6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Fix downloaders order\nBody: None\nComment: thank you, can we test that tests are useless now? :D",
+  "Title: Fix CAPA 9\nBody: https://github.com/mandiant/capa/commit/8d17319128bf531f72841063b3d7375da608f613\r\n\r\nDataclass instead of tuple",
+  "Title: Do not run CAPA viv if not static\nBody: None",
+  "Title: FDs leaks on process|cuckoo.log\nBody: `sudo lsof -R|grep CAPEv2|grep deleted`",
+  "Title: Fix platform None\nBody: Fix  edge case `{\"platform\": None}`\r\n\r\n```\r\nif platform in module:\r\nTypeError: 'in <string>' requires string as left operand, not NoneType\r\n```",
+  "Title: Fix demux\nBody: fixes\r\n\r\n```\r\nfor filename, platform, magic_type, file_size in retlist:\r\nValueError: too many values to unpack (expected 4)\r\n```",
+  "Title: ensure FD close of logs\nBody: None",
+  "Title: Static analysis failed\nBody: # Current Behavior\n\nI uploaded the file for static analysis, but it didn't work.\n[cape.service.log](https://github.com/user-attachments/files/19050935/cape.service.log)\n[cape-processor.service.log](https://github.com/user-attachments/files/19050936/cape-processor.service.log)\n\nBut there is data in /opt/CAPEv2/storage/analyses/\n![Image](https://github.com/user-attachments/assets/5eb2447e-244a-403f-a665-70446b811254)\n\nI want to ask what the setting error is, or other problems\n\n\nWhat is the current behavior?\nfile md5 : 879e3d30cc1392370ab0eec1601aa1b6\n\n![Image](https://github.com/user-attachments/assets/472c170d-b21e-4564-9c5b-dbc8d3ee142d)\n\n\n| Question         | Answer\n|------------------|--------------------\n| Git commit       | 0a2a93f43df66396375867f593597c42634c37fd\n| OS version       | Ubuntu 22.04\n\n\n\nComment: hello, i don't see any error, if you mean error of capa, is just validation, so you can ignore it\n\n```\nar 03 09:12:56 capev2-2025vm poetry[5653]: 2025-03-03 09:12:56,936 [Task 6] [lib.cuckoo.common.integrations.capa] ERROR: CAPA ValidationError 4 validation errors for CapeReport\nMar 03 09:12:56 capev2-2025vm poetry[5653]: behavior.summary\nMar 03 09:12:56 capev2-2025vm poetry[5653]:   Field required [type=missing, input_value={'processes': []}, input_type=dict]\nMar 03 09:12:56 capev2-2025vm poetry[5653]:     For further information visit https://errors.pydantic.dev/2.10/v/missing\nMar 03 09:12:56 capev2-2025vm poetry[5653]: behavior.processtree\nMar 03 09:12:56 capev2-2025vm poetry[5653]:   Field required [type=missing, input_value={'processes': []}, input_type=dict]\nMar 03 09:12:56 capev2-2025vm poetry[5653]:     For further information visit https://errors.pydantic.dev/2.10/v/missing\nMar 03 09:12:56 capev2-2025vm poetry[5653]: behavior.anomaly\nMar 03 09:12:56 capev2-2025vm poetry[5653]:   Field required [type=missing, input_value={'processes': []}, input_type=dict]\nMar 03 09:12:56 capev2-2025vm poetry[5653]:     For further information visit https://errors.pydantic.dev/2.10/v/missing\nMar 03 09:12:56 capev2-2025vm poetry[5653]: behavior.encryptedbuffers\nMar 03 09:12:56 capev2-2025vm poetry[5653]:   Field required [type=missing, input_value={'processes': []}, input_type=dict]\nMar 03 09:12:56 capev2-2025vm poetry[5653]:     For further information visit https://errors.pydantic.dev/2.10/v/missing\n```\n\nif you mean, this, is that you have enabled memory analysis but didn't install dependencies for it, i don't use volatility since long time ago, so idk in which state is the support is, but most of the things should works just fine if you install dependencies\n```\nMar 03 09:12:55 capev2-2025vm poetry[5410]: Missed dependency: pip3 install volatility3 -U\nMar 03 09:12:55 capev2-2025vm poetry[5410]: name 'interfaces' is not defined\n```\nComment: Thanks for letting me know.\n\nI would also like to ask about \"static analysis\". (Except for Volatile), which is not currently used,\n\nwhat analysis module is recommended to be installed on capev2?\n\nAlso, is clamav also disabled? (I installed it and there is no module nor enabled)\nComment: hello, most of the thing are installed by default. What is not installed, is show msg when enabled as volatility. It not installed bcz due to conflicts or it become optional. As volatility which is amazing tool and i love it so much, but cape got stronger and accomplish all what i need without volatility for me(i was interested mostly in malfind module)\n\nAbout clamav https://github.com/search?q=repo%3Akevoreilly%2FCAPEv2%20clamav&type=code in processing.conf you have it. Start using search on github is very useful, or `grep` in local\n```\n[detections]\nenabled = yes\n# Signatures\nbehavior = yes\nyara = yes\nsuricata = yes\nvirustotal = no\nclamav = no <---------\n```\n\nno recomendation, is very personal, like each person/company has their goals, what is useful for me, can be completelly useless for your purpose. So thing what you pretend to do, + also bear in mind that enabling everything takes more time to process + more resources. Which initially can be fine. But when you are on scale, you need to get more performance and speed.\n\nclosing this, but feel free to ask here about static if i didn't answer any question or something need clarification\nComment: Thank you for your clear answer. I am also happy to share with you that I have eliminated the related construction problems in kvm-qemu and cape and can detect malicious programs.\nComment: glad that you got it working, i saw your msg but i was on sick leave and when i returned yesterday you already deleted it. i personally use `kvm-qemu.sh all`, to install all together, not run 1 by 1. but i also neither use public version, but is 90% the same as private",
+  "Title: add rtf file test\nBody: None",
+  "Title: Replace apt-get with apt and enforce sudo and -y usage in installer/cape2.sh\nBody: Updated installer/cape2.sh to replace apt-get with apt for consistency and ensured all package commands use sudo and -y.  \nComment: hello, thank you, that is how i had script initially, but `apt` then throw warning all the time so i had to change it back to `apt-get`. but the part of `-y` is good\nComment: Thank you for your feedback and for updating it back to apt-get. I appreciate it!",
+  "Title: Can't find CAPEv2 version of zer0m0n on GitHub\nBody: For some reason I want to analyse samples in kernel mod, so I noticed zer0m0n project, which I can't find a CAPEv2 version on github.\n\nTo be honest, I want to capture the implicit loading of dlls with IAT of my malware sample. In my opinion , it requires capemon.dll to be loaded earlier than any other dll, just like what \"Early Bird APC\" or \"EDR Preloading\" techs mentioned, so that the hook for NtCreationSection will complete before actions of implicit loading. To achieve this, I noticed that \"InjectDllViaIAT\" function in capemon project had already put the IID structure of capemon.dll at the beeginning of NewImportDirectory, which may lead to earlier hooking :\n![Image](https://github.com/user-attachments/assets/1a30c2b3-77be-463a-85d5-646b0fd4aa3a)\n![Image](https://github.com/user-attachments/assets/616984d5-6997-4274-a66a-0520651acb50)\nbut it's also the fact that the calls of NtCreationSection for implicit loading haven't been logged in my experiments. \nI also tried mandatory using of InjectDllViaQueuedAPC, which mentioned in \"Early Bird APC\" tech, but failed too.\nIn fact, there are still other ways may achieve my goal, like injecting capemon.dll through driver, or directly writing sys file to notify any image loading with PsSetLoadImageNotifyRoutine function, which I haven't tried. Anyway, That's all for later.\n\nAnyway, whether zer0m0n would satisfy me, I'm just curious for the existence of the CAPE ver of it now. The latest version of zer0m0n I found is zer0m0n v1.0, project here: https://github.com/angelkillah/zer0m0n\nIt just supports cuckoo 2.0.\n\nI also noticed that in \"CAPEv2\\analyzer\\windows\\lib\\api\\process.py\", CAPEv2 wants sys files named \"zer0m0n_x64.sys\" and \"zer0m0n.sys\", while zer0m0n v1.0 actually offering \"zer0m0n-x64.sys\" and \"zer0m0n-x86.sys\", does that mean the version of zer0m0n that offer CAPEv2 compatibility actually exist? Is secondary development of ver 1.0 to \"ver CAPEv2\" meaningful? \n\nsorry for my bad english\nComment: Hi scccccccccc, interesting questions... Firstly to be honest I have never used zer0m0n in cape - it's there more as a legacy of cuckoo-modified. So I can't tell you if it could be made to work or not, sorry about that.\n\nHowever the subject of usermode analysis is close to my heart, as is the loading of the monitor and process initialisation. The very reason I put the work in to write a new loader centered around ``InjectDllViaIAT()`` was to improve the woeful situation in Cuckoo where the ultimate misnomer of a technique 'EarlyBird' was used to inject the monitor. This is demonstrably much later than IAT patching and I have found the IAT patching is able to capture extremely early malicious code which some modern malware uses in dll sideloading of dlls where the malicious code is in the dll's initialisation or 'dllmain'.\n\nI am therefore curious if you have some malware that evades capture and can run ``NtCreateSection`` before it's hooked, I would really love to see it! Would you be able to share the hash or sample?\nComment: sure~ actually several samples I tested failed to be logged :(\n- **Huawei JD.zip**\n\n  32 bits, implicit loading\n\n  white exe: Huawei JD (Job Description).exe\n\n  black dll: libcef.dll\n\n  sha256: 228b9ad7570860afe0dbf5c337341771fdf6c5b38fea7ff9459bd6eb9a94e098\n\n- **Release.zip**\n\n  64 bits, implicit loading\n\n  white exe: StarRail.exe\n\n  black dll: StarRailBase.dll\n\n  sha256: 7b34e0b357acf5212bdbfc2a7afa07f5fe8818da642b28ca2ec293999b94c669\n\n- **BRC4**\n\n  64 bits, implicit loading\n\n  white exe: OneDriveUpdater.exe\n\n  black dll: version.dll\n\n  sha 256: 1fc7b0e1054d54ce8f1de0cc95976081c7a85c7926c03172a3ddaa672690042c\n\n\noh, and what's more, I have modified the hook for `NtCreateSection` as follows:\n\n```\nHOOKDEF(NTSTATUS, WINAPI, NtCreateSection,\n\t__out\t PHANDLE SectionHandle,\n\t__in\t  ACCESS_MASK DesiredAccess,\n\t__in_opt  POBJECT_ATTRIBUTES ObjectAttributes,\n\t__in_opt  PLARGE_INTEGER MaximumSize,\n\t__in\t  ULONG SectionPageProtection,\n\t__in\t  ULONG AllocationAttributes,\n\t__in_opt  HANDLE FileHandle\n) {\n\tWCHAR FilePath[MAX_PATH];\n\t//wchar_t *FilePath = (wchar_t *)malloc(32768 * sizeof(wchar_t));\n\tDWORD PathLength = GetFinalPathNameByHandleW(FileHandle, FilePath, MAX_PATH, FILE_NAME_NORMALIZED);\n\n\tNTSTATUS ret = Old_NtCreateSection(SectionHandle, DesiredAccess,\n\t\tObjectAttributes, MaximumSize, SectionPageProtection,\n\t\tAllocationAttributes, FileHandle);\n\tLOQ_ntstatus(\"process\", \"Phopiu\", \"SectionHandle\", SectionHandle,\n\t\t\"DesiredAccess\", DesiredAccess, \"ObjectAttributes\", ObjectAttributes ? ObjectAttributes->ObjectName : NULL,\n\t\t\"FileHandle\", FileHandle, \"FilePathLength\", PathLength, \"FilePath\", FilePath);\n\n\tif (NT_SUCCESS(ret) && FileHandle && (DesiredAccess & SECTION_MAP_WRITE)) {\n\t\tfile_write(FileHandle);\n\t}\n\n\treturn ret;\n}\n```\n\nI used `GetFinalPathNameByHandleW` so I could know which file had been loaded into memory with its handle, and loq as \"u\", it works fine like:\n\n![Image](https://github.com/user-attachments/assets/27ba99ec-d5c0-44d7-88fd-fb90bea3bb75)\n\nthe image above showed that I'm actually able to capture dll loading through `NtCreateSection`. By the way, this sample uses LoadLibrary to explicitly load malicious dll, which happened so late that caused it to be captured, I think. And the infos of it as below:\n\n- **APTQ27**\n\n  32 bits, dynamic loading with LoadLibrary\n\n  white exe: \\reloc\\0\\autorun.exe\n\n  black dll: \\reloc\\0\\language.dll\n\n  sha 256: d4cfb90a36244ac86c4a9c8f52308c95f010fb9ea02739b56832cfc1b1126ecb\n\nComment: Thanks scccccccccc! I often feel like a broken record asking for samples, so when I get a lovely sample set like this I am over the moon.\n\nThese dll-sideloaders are very much of the moment and, like you say, the ones that statically (or implicitly) load are trickier as they are loaded much earlier in the process's lifetime. This is not only the reason I wrote the new loader years ago with IAT hooking, but also the reason I recently addressed the very issue you describe by adding a new hook for ``LdrpCallInitRoutine``. It is with this hook that capemon achieves the power that it needs, and the power that you need! To be able to capture ALL of the execution of the malicious dll!\n\nIt's at this point that I feel it's worth clarifying something, as there is a bit of an XY problem here. If I am not mistaken, what you really want, and what CAPE needs to deliver, is total capture of the behavior of the malicious dll. What you don't actually need is to be able to capture the Windows loader creating the section. It just so happens that for dynamically loaded dlls this is captured. But for statically loaded dlls, it is not. But this is not a problem. The real crux comes down to whether the hooks are ready to capture the _execution_, beginning at the entry point, of the dll. This execution is launched by the ``LdrpCallInitRoutine`` function which is hooked, so as long as we can see this call in our logs, we know we have captured the beginning of the execution. It's worth noting that the hook calls the real api _before_ it logs, so we will see any logged apis from the dllmain _before_ the call to ``LdrpCallInitRoutine``.\n\nThat's the theory, let's give it a whirl!\n\n- Huawei JD.zip\n\nHere we can see the second call in the log is our call to ``LdrpCallInitRoutine`` for the malicious dll here which is libcef.dll:\n\n![Image](https://github.com/user-attachments/assets/4ab70f38-0c77-47ba-bac5-65a4c30201fe)\n\nNo apis are captured from the dll initialisation because there aren't any! See next section.\n\nWe do of course capture calls from the dll later in its execution, after an exported function has been called such as here directed at the encrypted payload file:\n\n![Image](https://github.com/user-attachments/assets/976c8aff-3443-4377-b611-218d2b3b5ec2)\n\n- Release.zip\n\nRight off the bat the first call is that to ``LdrpCallInitRoutine`` for our malicious dll StarRailBase.dll:\n\n![Image](https://github.com/user-attachments/assets/af5f2ffd-3c1f-40d9-8165-c716e164931c)\n\nThe reason this isn't preceded by any calls from dllmain is because there aren't any. How do I know this? See next section \ud83d\ude04 \n\n- BRC4\n\nHere we can spot the ``LdrpCallInitRoutine`` call for version.dll quite a way into the behavior log:\n\n![Image](https://github.com/user-attachments/assets/5009ffd3-f61f-452c-9b1d-1c8f88cd6875)\n\nIf we note the base address of this dll at ``0x7ffb7af50000`` we can see that the reason the call appears so deep in the log is that it is preceded by the captured behavior of that dll's initialisation, such as for example the reading of the payload from OneDrive.Update:\n\n![Image](https://github.com/user-attachments/assets/d54aca10-0528-417f-9270-641f7529c45d)\n\nSo here we can actually see the calls from the malicious dll initialisation up front in the logs.\n\n# We need more proof!\n\nBut is it really true that this proves we can capture everything? I just added the (overdue) capability to trace from statically loaded dll entrypoint so we can literally capture the very first instruction of the malicious dll \ud83d\ude0e \n\n- Huawei JD.zip\n\nRequired options: ``file=Huawei JD (Job Description).exe,coverage-modules=libcef,bp0=0x12e0``\n```\nCAPE Sandbox - Debugger log: Fri Feb 28 12:12:35 2025\nBreakpoint 0 hit by instruction at 0x73C612E0 (thread 5380) EBX=0x43 ECX=0x741fff50 \"SetInitialBreakpoints: Breakpoint %d set on address 0x%p (RVA 0x...\" BCjpoJv.dll EDX=0x2b30000 \"R?R\" ESI=0x93f6c0 EDI=0x73c60000 \"MZ\" libcef.dll ESP=0x93f6b0 \"v)Iw\" *ESP=0x77492976 ntdll.dll EBP=0x93f6cc\nBreak at 0x73C612E0 in libcef.dll (RVA 0x12e0, thread 5380, Stack 0x00932000-0x00940000, ImageBase 0x73C60000)\n0x73C612E0  55                       PUSH      EBP                            ESP=0x93f6ac *ESP=0x93f6cc\n0x73C612E1  8BEC                     MOV       EBP, ESP                       EBP=0x93f6ac\n0x73C612E3  51                       PUSH      ECX                            ESP=0x93f6a8 *ESP=0x741fff50 \"SetInitialBreakpoints: Breakpoint %d set on address 0x%p (RVA 0x...\" BCjpoJv.dll\n0x73C612E4  8B450C                   MOV       EAX, [EBP+0xc]                 EAX=0x1\n0x73C612E7  8945FC                   MOV       [EBP-0x4], EAX                \n0x73C612EA  B801000000               MOV       EAX, 0x1                      \n0x73C612EF  8BE5                     MOV       ESP, EBP                       ESP=0x93f6ac *ESP=0x93f6cc\n0x73C612F1  5D                       POP       EBP                            ESP=0x93f6b0 \"v)Iw\" *ESP=0x77492976 ntdll.dll EBP=0x93f6cc\n0x73C612F2  C20C00                   RET       0xc \n```\n\n- Release.zip\n\nRequired options: ``file=StarRail.exe,coverage-modules=StarRailBase,bp0=0x1020``\n```\nCAPE Sandbox - Debugger log: Fri Feb 28 12:42:46 2025\nBreakpoint 0 hit by instruction at 0x00007FFB84821020 (thread 3160) RAX=0x7ffb84821020 StarRailBase.dll RBX=0x7ffe0385 RCX=0x7ffb84820000 \"MZ\" StarRailBase.dll RDX=0x1 RSI=0x1 RDI=0x7ffe0384 RSP=0x14f058 *RSP=0x7ffb898c9a1d ntdll.dll RBP=0x14f5e0 R8=0x14fae0 R9=0x14fae0 R10=0x7ffe0384 R11=0x14ee60 R12=0x7ffb84821020 StarRailBase.dll R13=0x7ffb84821020 StarRailBase.dll R14=0x7ffb84820000 \"MZ\" StarRailBase.dll R15=0x14fae0\nBreak at 0x00007FFB84821020 in StarRailBase.dll (RVA 0x1020, thread 3160, Stack 0x000000000013F000-0x0000000000150000, ImageBase 0x00007FFB84820000)\n0x00007FFB84821020  B801000000               MOV       EAX, 0x1                       RAX=0x1\n0x00007FFB84821025  C3                       RET \n```\n\n- BRC4\n\nRequired options: ``file=OneDriveUpdater.exe,coverage-modules=version,bp0=0x61b0``\n```\nCAPE Sandbox - Debugger log: Fri Feb 28 12:23:05 2025\nBreakpoint 0 hit by instruction at 0x00007FFB7B3D61B0 (thread 2280) RAX=0x7ffb7b3d61b0 version.dll RBX=0x7ffe0385 RCX=0x7ffb7b3d0000 \"MZ\" version.dll RDX=0x1 RSI=0x1 RDI=0x7ffe0384 RSP=0x1e8f3cef88 *RSP=0x7ffb898c9a1d ntdll.dll RBP=0x1e8f3cf510 R8=0x1e8f3cfa10 R9=0x1e8f3cfa10 R10=0xfff6f67ac36 R11=0xffffffffffffffff R12=0x7ffb7b3d61b0 version.dll R13=0x7ffb7b3d61b0 version.dll R14=0x7ffb7b3d0000 \"MZ\" version.dll R15=0x1e8f3cfa10\nBreak at 0x00007FFB7B3D61B0 in VERSION.dll (RVA 0x61b0, thread 2280, Stack 0x0000001E8F3BF000-0x0000001E8F3D0000, ImageBase 0x00007FFB7B3D0000)\n0x00007FFB7B3D61B0  48895C2408               MOV       [RSP+0x8], RBX                \n0x00007FFB7B3D61B5  4889742410               MOV       [RSP+0x10], RSI               \n0x00007FFB7B3D61BA  57                       PUSH      RDI                            RSP=0x1e8f3cef80 *RSP=0x7ffe0384\n0x00007FFB7B3D61BB  4883EC20                 SUB       RSP, 0x20                      RSP=0x1e8f3cef60 *RSP=0x7ffb7b3d61ba \"WH\" version.dll\n0x00007FFB7B3D61BF  498BF8                   MOV       RDI, R8                        RDI=0x1e8f3cfa10\n0x00007FFB7B3D61C2  8BDA                     MOV       EBX, EDX                       RBX=0x1\n0x00007FFB7B3D61C4  488BF1                   MOV       RSI, RCX                       RSI=0x7ffb7b3d0000 \"MZ\" version.dll\n0x00007FFB7B3D61C7  83FA01                   CMP       EDX, 0x1                      \n0x00007FFB7B3D61CA  7505                     JNZ       0x00007FFB7B3D61D1            \n0x00007FFB7B3D61CC  E8C3070000               CALL      0x00007FFB7B3D6994             RSP=0x1e8f3cef58 *RSP=0x7ffb7b3d61d1 version.dll\n0x00007FFB7B3D6994  48895C2420               MOV       [RSP+0x20], RBX               \n0x00007FFB7B3D6999  55                       PUSH      RBP                            RSP=0x1e8f3cef50 *RSP=0x1e8f3cf510\n0x00007FFB7B3D699A  488BEC                   MOV       RBP, RSP                       RBP=0x1e8f3cef50\n0x00007FFB7B3D699D  4883EC20                 SUB       RSP, 0x20                      RSP=0x1e8f3cef30 *RSP=0x7ffb7b3d6999 \"UH\" version.dll\n0x00007FFB7B3D69A1  488B0528670300           MOV       RAX, [RIP+0x36728]             RAX=0xd50e1390e4ad\n0x00007FFB7B3D69A8  48BB32A2DF2D992B0000     MOV       RBX, 0x2b992ddfa232            RBX=0x2b992ddfa232\n0x00007FFB7B3D69B2  483BC3                   CMP       RAX, RBX                      \n0x00007FFB7B3D69B5  7574                     JNZ       0x00007FFB7B3D6A2B            \n0x00007FFB7B3D6A2B  488B5C2448               MOV       RBX, [RSP+0x48]                RBX=0x1\n***snip***\n```\n\nPlease note if you wish to recreate the above traces you need the very latest monitor published this morning!\nComment: Oh by the way I forgot to say thanks for the suggestion of logging the filename in the ``NtCreateSection`` hook! I added this functionality using the established ``path_from_handle()`` utility function already present in the monitor: https://github.com/kevoreilly/capemon/commit/75922e1a6e047091cd233867a1506d851e77b34f\n\n![Image](https://github.com/user-attachments/assets/4ad86731-9cc3-4502-8244-31a7f2b9246f)\n\ud83c\udf89 \nComment: @scccccccccc thank you\nComment: Thank you! Your analysis and the use of `LdrpCallInitRoutine` do help me a lot! \nI've never used CAPE\u2019s debugger, I'll learn and try it. I still have a long way to go to master this powerful sandbox\u263a\ufe0f\nComment: Feel free to reach with anything where you need help with the sandbox. I guess we can close this issue?",
+  "Title: fix tun logging\nBody: None",
+  "Title: fix peer address parse\nBody: None",
+  "Title: A couple of ruff %s fixes were missed\nBody: - The change was from `\"%s\" % str(id)` to `\"%s\", str(id)`\r\n- Should have been just `str(id)`\r\n- Follows on from f89c890143b59bdbcc9b9c8b5e15fbc5fd827afd\r\n- also changed a comment re: integrations.conf renaming\nComment: Thank you",
+  "Title: Feature Request: Implement RTFObj from oletools\nBody: While oletools is used for office macros and suspicious behaviour rtf files are not analysed. Within the oletools package (already used in CAPE) there is rtfobj that can highlight suspicious RTF objects.\n\nFor example, here is equation editor.\n\n![Image](https://github.com/user-attachments/assets/5c2d7601-d97d-4f7e-88d4-88307514ffcc)\nComment: can you share the hash so i don't need to search/copy from image?\nComment: any RTF exploit/malicious doc will work but here is one on malware-traffic https://malware-traffic-analysis.net/2018/01/15/index.html. \nComment: em https://github.com/search?q=repo%3Akevoreilly%2FCAPEv2%20RTFObj&type=code\nComment: + https://github.com/kevoreilly/CAPEv2/blob/1ab9a140fa7831cd9a8b73bf992fda75d18d61bb/lib/cuckoo/common/integrations/parse_office.py#L153\n\ni will try to test it later once ihave some time\nComment: <img width=\"1262\" alt=\"Image\" src=\"https://github.com/user-attachments/assets/f59606c5-4481-4a1a-b74c-003d09d9fa00\" />\n\nal code is there, i had to adjust a bbit. but it is in staging, im on sick leave so once iwill be bback next week i will merge it \nComment: this is now in master",
+  "Title: fix yara_details for subfiles\nBody: Added \r\n- subfile_capeyara.html\r\n- subfile_yara.html\r\nas a potentially temporary solution.",
+  "Title: Fix template _subfile_info.html\nBody: None\nComment: ouch, good catch",
+  "Title: Staging\nBody: None",
+  "Title: Downloaders\nBody: None",
+  "Title: Unable to setup cape\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\n\n## This is open source and you are getting __free__ support so be friendly!\n\nSo as a preface, I have been trying to install this through many ways , and followed many guides to the tee and every. single. time. a different component doesnt work. So i<m  posting here because i guess i'm clueless and really tired of running around in circles trying to get this thing to run properly.\n\nI have read and reread your book and i cannot get past the host installation steps for some reason as theres ALWAYS an error somewhere. This really shouldn't be as hard or complicated as it seems to be. \n\nI have reinstalled about 3 to 4 times starting fresh and again following your guides, everytime theres a new error.\n\nalso, which user do i have to set for kvm-qemu.sh? what happens if i use cape user as system user will it work? \n\nis the intended user architecture supposed to be leave the cape username available and use another user ? \n\n# Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n- [x] I am running the latest version\n- [x] I did read the README!\n- [x] I checked the documentation and found no answer\n- [x] I checked to make sure that this issue has not already been filed\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [x] I have read and checked all configs (with all optional parts)\n\n\n# Expected Behavior\n\nproper poetry installation\n\n# Current Behavior\n\njust after finishing up cape sudo ./cape2.sh base cape | tee cape.log (yes i edited the settings)\n```\nFile \"/opt/CAPEv2/data/yara/CAPE/Fonix.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Foxgrabber.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/FujinamaRAT.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/G0Crypt.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/GDriveRAT.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/GarrantDecrypt.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Gasket.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Gaudox.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Gelsemium.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/GetCrypt.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/GhostEmperor.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/GloomaneStealer.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/GoBrut.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Godzilla.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/GoldenAxe.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/GoldenSpy.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/GraphicalProton.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/GravityRAT.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Greame.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/GreetingGhoul.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Guidlma.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Gulpix.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/HDLocker.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/HakunaMatata.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/HawkEye.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/HawkEyeV9.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Hello.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Heracles.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/HiddenVNC.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/HiddenWasp.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Hive.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/HorusEyesRAT.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Houdini.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/HttpBrowser.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/HyperBro.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/IAmTheKing.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/IAmTheKingKeylogger.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/IAmTheKingKingOfHearts.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/IAmTheKingQueenOfClubs.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/IAmTheKingQueenOfHearts.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/IAmTheKingScrCap.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/IRCBot.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/ISRStealer.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Imminent.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Impacket.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Infinity.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/InfinityLock.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/InvalidPrinter.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/JSSLoader.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/JanelaRAT.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/JavaDropper.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/JennLog.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/JesterStealer.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/JoeGo.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Jupyter.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/KLogExe.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/KPortScan.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/KTLVdoor.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Karagany.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Karkoff.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/KdcSponge.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/KeyBase.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Khonsari.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/KillMBR.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Kimsuky.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Kinsing.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Kitty.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/KlingonRAT.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/KoadicBAT.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/KoadicDOC.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/KoadicJS.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Konni.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Koxic.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/KrakenStealer.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Kutaki.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/LCPDot.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/LOLKEK.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/LaZagne.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/LapLas.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/LastConn.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Laturo.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/LegionLocker.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Leivion.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/LightHand.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/LilithRAT.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/LimeRAT.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/LockDown.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/LockFile.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Locked.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/LokiLocker.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Lorenz.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/LostDoor.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Lu0Bot.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/LuminosityLink.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/LuxNet.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/M00nD3v.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/MB150.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Macoute.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Maktub.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Mangzamel.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/MargulasRAT.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/MarkiRAT.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/MatanbuchusLoader.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Matiex.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Maze.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/MediaPI.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/MedusaLocker.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Megumin.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Mercurial.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Meteorite.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Meterpreter.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Milan.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Mimikatz.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/MiniTor.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/MoDiRAT.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/ModiLoader.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Motocos.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/MountLocker.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Mystic.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/NGLite.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/NLBrute.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/NPPSpy.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/NWorm.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/NanoCore.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Nefilim.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Neptune.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Nermer.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Neshta.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/NetSupport.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/NetWire.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Neteagle.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Netwalker.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Niribu.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Nitol.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Nitro.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Njrat.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Nodachi.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/ObliqueRAT.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Octopus.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/OnlyLogger.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/OrcaRAT.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/OrcusRAT.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Orion.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Osno.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Owowa.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/OzoneRAT.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/PCRat.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/PLEAD.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/PWSHCUMII.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/PYSA.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/PandaStealer.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Pandora.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Paradox.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Parallax.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/PatchWork.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/PhemedroneStealer.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Phobos.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Phoenix.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Phorpiex.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/PillowMint.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/PingBack.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/PirateStealer.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Plasma.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Plurox.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/PoisonIvy.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Polar.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/PondRAT.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/PoolRAT.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/PoshKeylogger.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Poullight.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/PovertyStealer.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/PowerPool.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/PredatorPain.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/ProLock.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Prometei.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/ProtonBot.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Punisher.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/PureLoader.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Purge.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/PurpleWave.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Pyrogenic.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/PythoRAT.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/QRat.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/QiwxxRAT.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/QnapCrypt.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Quantum.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/QuasarStealer.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/QuilClipper.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/QuiteRAT.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Qulab.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/R77.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/RDPWrap.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/REvil.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/RHttpCtrl.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Raccoon.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/RageStealer.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/RagnarLocker.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/RansomEXX.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/RanumBot.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/RanzyLocker.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Rapid.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Rasftuby.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Ratty.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/RedLeaf.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/RedLine.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Redsip.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/RemoteUtilitiesRAT.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Renamer.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Responder.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Retefe.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/RevCodeRAT.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/RevengeRAT.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/ReverseRAT.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Rhysida.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Rietspoof.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/RisePro.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Robbinhood.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/RomCom.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/RootTeamStealer.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Rsjon.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/RunningRAT.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/RustyBuer.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/RustyStealer.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/S05Kitty.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/SNAKEImplant.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/STEALDEAL.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/STOP.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Salfram.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/SapphireStealer.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Satan.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Satana.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/ScoutElite.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/SectopRAT.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Sfile.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/ShadowTech.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/SideWalk.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/SilentMoon.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Simda.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/SimplePacker.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/SlackBot.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Sliver.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/SlothfulMedia.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/SmallNet.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Sn0wLogger.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Snake.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Snatch.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/SoftCNApp.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/SolarMarker.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/SoranoStealer.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Spacecolon.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Spectre.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/SpyEye.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/SpyGate.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Spyro.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Stealerium.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/SteamHook.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/StrelaStealer.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/StrifeWater.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/StrongPity.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Strrat.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Sub7Nation.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/SunCrypt.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/SunShuttle.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Surtr.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/SweetyStealer.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/SystemBC.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/T5000.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/TJKeylogger.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/TManager.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/TOITOIN.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/TRAT.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/TWarBot.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/TYRAT.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Taidoor.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Tardigrade.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Taurus.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Tefosteal.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/TeslaRevenge.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Thanos.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/TigerRAT.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/TimeTime.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Tofsee.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Tomiris.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Torisma.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/ToxicEye.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/TreasureHunter.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/TrickbotModule.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/TrueBot.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Turian.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/UDPRat.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/UNKInfostealer.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/UltraSurf.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/UmbralStealer.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Underground.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Unicorn.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/UnlockYourFiles.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Unrecom.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/VSSDestroy.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/ValidAlpha.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/VanillaRAT.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/VenomRAT.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Vertex.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/VirLock.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/VirusRat.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Vovalex.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Vulturi.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/W1RAT.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/WCE.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/WSHRAT.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Warezov.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/WarzoneRAT.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/WellMess.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/WhiffyRecon.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/WinDealer.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/WinGo.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/WobbyChipMBR.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/XFiles.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/XiaoBa.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/XorStringsNET.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Xorist.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/XpertRAT.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Xtreme.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/ZXShell.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Zegost.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Zeoticus.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Zeppelin.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/Ziggy.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/ZombieBoy.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/adWind.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/deprecated/Formbook.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/deprecated/Grum.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/deprecated/LummaStealer.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/deprecated/MetaStealer.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/deprecated/UPX.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/deprecated/embedded.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/deprecated/shellcodes.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/deprecated/zgRAT.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/iTranslator.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/jRat.yar\" installed\nFile \"/opt/CAPEv2/data/yara/CAPE/xRAT.yar\" installed\nFile \"/opt/CAPEv2/data/yara/binaries/AutoIT.yar\" installed\nFile \"/opt/CAPEv2/data/yara/binaries/EcrimePackerStub.yar\" installed\nFile \"/opt/CAPEv2/data/yara/binaries/Generic_Phishing_PDF.yar\" installed\nFile \"/opt/CAPEv2/data/yara/binaries/HTMLPhisher_2023.yar\" installed\nFile \"/opt/CAPEv2/data/yara/binaries/HeavensGate.yar\" installed\nFile \"/opt/CAPEv2/data/yara/binaries/IEuser_author_doc.yar\" installed\nFile \"/opt/CAPEv2/data/yara/binaries/ISO_exec.yar\" installed\nFile \"/opt/CAPEv2/data/yara/binaries/LNK_Ruleset.yar\" installed\nFile \"/opt/CAPEv2/data/yara/binaries/MalScript_Tricks.yar\" installed\nFile \"/opt/CAPEv2/data/yara/binaries/Maldoc_PDF.yar\" installed\nFile \"/opt/CAPEv2/data/yara/binaries/OLEfile_in_CAD_FAS_LSP.yar\" installed\nFile \"/opt/CAPEv2/data/yara/binaries/OneNote.yar\" installed\nFile \"/opt/CAPEv2/data/yara/binaries/RoyalRoad_RTF.yar\" installed\nFile \"/opt/CAPEv2/data/yara/binaries/VMProtectStub.yar\" installed\nFile \"/opt/CAPEv2/data/yara/binaries/Webshell_in_image.yar\" installed\nFile \"/opt/CAPEv2/data/yara/binaries/embedded.yar\" installed\nFile \"/opt/CAPEv2/data/yara/binaries/indicator_packed.yar\" installed\nFile \"/opt/CAPEv2/data/yara/binaries/indicator_suspicious.yar\" installed\nFile \"/opt/CAPEv2/data/yara/binaries/indicator_tools.yar\" installed\nFile \"/opt/CAPEv2/data/yara/binaries/oAuth_Phishing_PDF.yar\" installed\nFile \"/opt/CAPEv2/data/yara/binaries/ole_vba.yar\" installed\nFile \"/opt/CAPEv2/data/yara/binaries/shellcodes.yar\" installed\nFile \"/opt/CAPEv2/data/yara/binaries/susp_obfuscated_JS.yar\" installed\nFile \"/opt/CAPEv2/data/yara/binaries/vmdetect.yar\" installed\nFile \"/opt/CAPEv2/data/yara/deprecated/Amadey.yar\" installed\nFile \"/opt/CAPEv2/data/yara/deprecated/BuerLoader.yar\" installed\nFile \"/opt/CAPEv2/data/yara/deprecated/LNK_Ruleset.yar\" installed\nFile \"/opt/CAPEv2/data/yara/deprecated/Sakula.yar\" installed\nFile \"/opt/CAPEv2/data/yara/deprecated/dridex.yar\" installed\nFile \"/opt/CAPEv2/data/yara/deprecated/dyre.yar\" installed\nFile \"/opt/CAPEv2/data/yara/memory/Exploit_HT_Flash_Vars.yar\" installed\nFile \"/opt/CAPEv2/data/yara/memory/Exploit_HT_VRename.yar\" installed\nFile \"/opt/CAPEv2/data/yara/memory/adgholas.yar\" installed\nFile \"/opt/CAPEv2/data/yara/memory/angler.yar\" installed\nFile \"/opt/CAPEv2/data/yara/memory/astrum.yar\" installed\nFile \"/opt/CAPEv2/data/yara/memory/cve_2013_2551.yar\" installed\nFile \"/opt/CAPEv2/data/yara/memory/cve_2014_0515.yar\" installed\nFile \"/opt/CAPEv2/data/yara/memory/cve_2014_0569.yar\" installed\nFile \"/opt/CAPEv2/data/yara/memory/cve_2014_6332.yar\" installed\nFile \"/opt/CAPEv2/data/yara/memory/cve_2015_0016.yar\" installed\nFile \"/opt/CAPEv2/data/yara/memory/cve_2015_2419.yar\" installed\nFile \"/opt/CAPEv2/data/yara/memory/cve_2015_2545.yar\" installed\nFile \"/opt/CAPEv2/data/yara/memory/cve_2015_5122.yar\" installed\nFile \"/opt/CAPEv2/data/yara/memory/cve_2016_0189.yar\" installed\nFile \"/opt/CAPEv2/data/yara/memory/cve_2016_3298.yar\" installed\nFile \"/opt/CAPEv2/data/yara/memory/darkcomet.yar\" installed\nFile \"/opt/CAPEv2/data/yara/memory/eitest.yar\" installed\nFile \"/opt/CAPEv2/data/yara/memory/flash_exploits.yar\" installed\nFile \"/opt/CAPEv2/data/yara/memory/kazybot.yar\" installed\nFile \"/opt/CAPEv2/data/yara/memory/neutrino.yar\" installed\nFile \"/opt/CAPEv2/data/yara/memory/nuclear.yar\" installed\nFile \"/opt/CAPEv2/data/yara/memory/rig.yar\" installed\nFile \"/opt/CAPEv2/data/yara/memory/shellcodes.yar\" installed\nFile \"/opt/CAPEv2/data/yara/memory/sundown.yar\" installed\n\nInstalling INTEGRATIONS\nFile \"/opt/CAPEv2/lib/cuckoo/common/integrations/Kixtart/__init__.py\" installed\nFile \"/opt/CAPEv2/lib/cuckoo/common/integrations/Kixtart/constants.py\" installed\nFile \"/opt/CAPEv2/lib/cuckoo/common/integrations/Kixtart/detokenize.py\" installed\nFile \"/opt/CAPEv2/lib/cuckoo/common/integrations/Kixtart/requirements.txt\" installed\nFile \"/opt/CAPEv2/lib/cuckoo/common/integrations/misp.py\" installed\nFile \"/opt/CAPEv2/lib/cuckoo/common/integrations/pdftools/__init__.py\" installed\nFile \"/opt/CAPEv2/lib/cuckoo/common/integrations/pdftools/pdfid.py\" installed\nFile \"/opt/CAPEv2/lib/cuckoo/common/integrations/whoisxmlapi.py\" installed\n\nInstalling MITRE\nFile \"/opt/CAPEv2/data/mitre/TTPs.json\" installed\nFile \"/opt/CAPEv2/data/mitre/enterprise_attck_json.json\" installed\nFile \"/opt/CAPEv2/data/mitre/generated_nist_json.json\" installed\nFile \"/opt/CAPEv2/data/mitre/ics_attck_json.json\" installed\nFile \"/opt/CAPEv2/data/mitre/mobile_attck_json.json\" installed\nFile \"/opt/CAPEv2/data/mitre/nist_controls_json.json\" installed\nFile \"/opt/CAPEv2/data/mitre/pre_attck_json.json\" installed\n\nInstalling COMMON\nFile \"/opt/CAPEv2/lib/cuckoo/common/cents/__init__.py\" installed\nFile \"/opt/CAPEv2/lib/cuckoo/common/cents/cents_remcos.py\" installed\nFile \"/opt/CAPEv2/lib/cuckoo/common/cents/cents_squirrelwaffle.py\" installed\nFile \"/opt/CAPEv2/lib/cuckoo/common/cents/cents_trickbot.py\" installed\nFile \"/opt/CAPEv2/lib/cuckoo/common/integrations/Kixtart/__init__.py\" installed\nFile \"/opt/CAPEv2/lib/cuckoo/common/integrations/Kixtart/constants.py\" installed\nFile \"/opt/CAPEv2/lib/cuckoo/common/integrations/Kixtart/detokenize.py\" installed\nFile \"/opt/CAPEv2/lib/cuckoo/common/integrations/Kixtart/requirements.txt\" installed\nFile \"/opt/CAPEv2/lib/cuckoo/common/integrations/misp.py\" installed\nFile \"/opt/CAPEv2/lib/cuckoo/common/integrations/pdftools/__init__.py\" installed\nFile \"/opt/CAPEv2/lib/cuckoo/common/integrations/pdftools/pdfid.py\" installed\nFile \"/opt/CAPEv2/lib/cuckoo/common/integrations/whoisxmlapi.py\" installed\n\nInstalling UTILS\nFile \"/opt/CAPEv2/utils/TTPmap_updater.py\" installed\nFile \"/opt/CAPEv2/utils/clone-machines.py\" installed\nFile \"/opt/CAPEv2/utils/create_bloom.py\" installed\nFile \"/opt/CAPEv2/utils/cuckoomx.py\" installed\nFile \"/opt/CAPEv2/utils/download_parsers.py\" installed\nFile \"/opt/CAPEv2/utils/download_yara.py\" installed\nFile \"/opt/CAPEv2/utils/email_test.py\" installed\nFile \"/opt/CAPEv2/utils/linux_mktaps.sh\" installed\nFile \"/opt/CAPEv2/utils/listdump.py\" installed\nFile \"/opt/CAPEv2/utils/machine.py\" installed\nFile \"/opt/CAPEv2/utils/smtp_sinkhole.py\" installed\nFile \"/opt/CAPEv2/utils/smtp_sinkhole.sh\" installed\nFile \"/opt/CAPEv2/utils/tridupdate.py\" installed\n[+] Checking for old YARA version to uninstall\n(Reading database ... 233652 files and directories currently installed.)\nRemoving yara (4.5.2) ...\nProcessing triggers for man-db (2.10.2-1) ...\n[+] Installing Yara\nReading package lists...\nBuilding dependency tree...\nReading state information...\nautoconf is already the newest version (2.71-2).\njq is already the newest version (1.6-2.1ubuntu3).\nlibjansson-dev is already the newest version (2.13.1-1.1build3).\nlibtool is already the newest version (2.4.6-15build2).\nlibyara-dev is already the newest version (4.1.3-1build1).\nlibmagic-dev is already the newest version (1:5.41-3ubuntu0.1).\nlibmagic1 is already the newest version (1:5.41-3ubuntu0.1).\n0 upgraded, 0 newly installed, 0 to remove and 0 not upgraded.\nlibtoolize: putting auxiliary files in AC_CONFIG_AUX_DIR, 'build-aux'.\nlibtoolize: copying file 'build-aux/ltmain.sh'\nlibtoolize: putting macros in AC_CONFIG_MACRO_DIRS, 'm4'.\nlibtoolize: copying file 'm4/libtool.m4'\nlibtoolize: copying file 'm4/ltoptions.m4'\nlibtoolize: copying file 'm4/ltsugar.m4'\nlibtoolize: copying file 'm4/ltversion.m4'\nlibtoolize: copying file 'm4/lt~obsolete.m4'\nconfigure.ac:23: warning: The macro `AC_PROG_CC_C99' is obsolete.\nconfigure.ac:23: You should run autoupdate.\n./lib/autoconf/c.m4:1659: AC_PROG_CC_C99 is expanded from...\nconfigure.ac:23: the top level\nconfigure.ac:25: warning: AC_PROG_LEX without either yywrap or noyywrap is obsolete\n./lib/autoconf/programs.m4:716: _AC_PROG_LEX is expanded from...\n./lib/autoconf/programs.m4:709: AC_PROG_LEX is expanded from...\naclocal.m4:1004: AM_PROG_LEX is expanded from...\nconfigure.ac:25: the top level\nconfigure.ac:90: warning: The macro `AC_LANG_C' is obsolete.\nconfigure.ac:90: You should run autoupdate.\n./lib/autoconf/c.m4:72: AC_LANG_C is expanded from...\nm4/acx_pthread.m4:63: ACX_PTHREAD is expanded from...\nconfigure.ac:90: the top level\nconfigure.ac:90: warning: The macro `AC_TRY_LINK' is obsolete.\nconfigure.ac:90: You should run autoupdate.\n./lib/autoconf/general.m4:2920: AC_TRY_LINK is expanded from...\nm4/acx_pthread.m4:63: ACX_PTHREAD is expanded from...\nconfigure.ac:90: the top level\nconfigure.ac:391: warning: AC_C_BIGENDIAN should be used with AC_CONFIG_HEADERS\nconfigure.ac:20: installing 'build-aux/ar-lib'\nconfigure.ac:20: installing 'build-aux/compile'\nconfigure.ac:35: installing 'build-aux/config.guess'\nconfigure.ac:35: installing 'build-aux/config.sub'\nconfigure.ac:8: installing 'build-aux/install-sh'\nconfigure.ac:8: installing 'build-aux/missing'\nMakefile.am: installing 'build-aux/depcomp'\nconfigure.ac: installing 'build-aux/ylwrap'\nparallel-tests: installing 'build-aux/test-driver'\nchecking whether make supports nested variables... yes\nchecking for a BSD-compatible install... /usr/bin/install -c\nchecking whether build environment is sane... yes\nchecking for a race-free mkdir -p... /usr/bin/mkdir -p\nchecking for gawk... no\nchecking for mawk... mawk\nchecking whether make sets $(MAKE)... yes\nchecking whether make supports the include directive... yes (GNU style)\nchecking for gcc... gcc\nchecking whether the C compiler works... yes\nchecking for C compiler default output file name... a.out\nchecking for suffix of executables... \nchecking whether we are cross compiling... no\nchecking for suffix of object files... o\nchecking whether the compiler supports GNU C... yes\nchecking whether gcc accepts -g... yes\nchecking for gcc option to enable C11 features... none needed\nchecking whether gcc understands -c and -o together... yes\nchecking dependency style of gcc... gcc3\nchecking for ar... ar\nchecking the archiver (ar) interface... ar\nchecking for gcc... (cached) gcc\nchecking whether the compiler supports GNU C... (cached) yes\nchecking whether gcc accepts -g... (cached) yes\nchecking for gcc option to enable C11 features... (cached) none needed\nchecking whether gcc understands -c and -o together... (cached) yes\nchecking dependency style of gcc... (cached) gcc3\nchecking for flex... flex\nchecking for lex output file root... lex.yy\nchecking for lex library... none needed\nchecking for library containing yywrap... -ll\nchecking whether yytext is a pointer... yes\nchecking for bison... bison -y\nchecking for inline... inline\nchecking for stdio.h... yes\nchecking for stdlib.h... yes\nchecking for string.h... yes\nchecking for inttypes.h... yes\nchecking for stdint.h... yes\nchecking for strings.h... yes\nchecking for sys/stat.h... yes\nchecking for sys/types.h... yes\nchecking for unistd.h... yes\nchecking whether byte ordering is bigendian... no\nchecking build system type... x86_64-pc-linux-gnu\nchecking host system type... x86_64-pc-linux-gnu\nchecking how to print strings... printf\nchecking for a sed that does not truncate output... /usr/bin/sed\nchecking for grep that handles long lines and -e... /usr/bin/grep\nchecking for egrep... /usr/bin/grep -E\nchecking for fgrep... /usr/bin/grep -F\nchecking for ld used by gcc... /usr/bin/ld\nchecking if the linker (/usr/bin/ld) is GNU ld... yes\nchecking for BSD- or MS-compatible name lister (nm)... /usr/bin/nm -B\nchecking the name lister (/usr/bin/nm -B) interface... BSD nm\nchecking whether ln -s works... yes\nchecking the maximum length of command line arguments... 1572864\nchecking how to convert x86_64-pc-linux-gnu file names to x86_64-pc-linux-gnu format... func_convert_file_noop\nchecking how to convert x86_64-pc-linux-gnu file names to toolchain format... func_convert_file_noop\nchecking for /usr/bin/ld option to reload object files... -r\nchecking for objdump... objdump\nchecking how to recognize dependent libraries... pass_all\nchecking for dlltool... no\nchecking how to associate runtime and link libraries... printf %s\\n\nchecking for archiver @FILE support... @\nchecking for strip... strip\nchecking for ranlib... ranlib\nchecking command to parse /usr/bin/nm -B output from gcc object... ok\nchecking for sysroot... no\nchecking for a working dd... /usr/bin/dd\nchecking how to truncate binary pipes... /usr/bin/dd bs=4096 count=1\nchecking for mt... mt\nchecking if mt is a manifest tool... no\nchecking for dlfcn.h... yes\nchecking for objdir... .libs\nchecking if gcc supports -fno-rtti -fno-exceptions... no\nchecking for gcc option to produce PIC... -fPIC -DPIC\nchecking if gcc PIC flag -fPIC -DPIC works... yes\nchecking if gcc static flag -static works... yes\nchecking if gcc supports -c -o file.o... yes\nchecking if gcc supports -c -o file.o... (cached) yes\nchecking whether the gcc linker (/usr/bin/ld -m elf_x86_64) supports shared libraries... yes\nchecking whether -lc should be explicitly linked in... no\nchecking dynamic linker characteristics... GNU/Linux ld.so\nchecking how to hardcode library paths into programs... immediate\nchecking whether stripping libraries is possible... yes\nchecking if libtool supports shared libraries... yes\nchecking whether to build shared libraries... yes\nchecking whether to build static libraries... yes\nchecking for the pthreads library -lpthreads... no\nchecking whether pthreads work without any flags... yes\nchecking for joinable pthread attribute... PTHREAD_CREATE_JOINABLE\nchecking if more special flags are required for pthreads... no\nchecking whether to check for GCC pthread/shared inconsistencies... yes\nchecking whether -pthread is sufficient with -shared... yes\nchecking for isnan in -lm... yes\nchecking for log2 in -lm... yes\nchecking for strlcpy... no\nchecking for strlcat... no\nchecking for memmem... yes\nchecking for timegm... yes\nchecking for _mkgmtime... no\nchecking for clock_gettime... yes\nchecking for stdbool.h... yes\nchecking for jansson.h... yes\nchecking for json_loadb in -ljansson... yes\nchecking for magic.h... yes\nchecking for magic_open in -lmagic... yes\nchecking for pkg-config... /usr/bin/pkg-config\nchecking pkg-config is at least version 0.9.0... yes\nchecking for openssl/evp.h... yes\nchecking for openssl/asn1.h... yes\nchecking for openssl/crypto.h... yes\nchecking for openssl/bio.h... yes\nchecking for openssl/pkcs7.h... yes\nchecking for openssl/x509.h... yes\nchecking for openssl/safestack.h... yes\nchecking for EVP_DigestInit in -lcrypto... yes\nchecking for EVP_DigestUpdate in -lcrypto... yes\nchecking for EVP_DigestFinal in -lcrypto... yes\nchecking for EVP_md5 in -lcrypto... yes\nchecking for EVP_sha1 in -lcrypto... yes\nchecking for EVP_sha256 in -lcrypto... yes\nchecking that generated files are newer than configure... done\nconfigure: creating ./config.status\nconfig.status: creating Makefile\nconfig.status: creating yara.pc\nconfig.status: executing depfiles commands\nconfig.status: executing libtool commands\nmake  all-am\nmake[1]: Entering directory '/tmp/VirusTotal-yara-688268d'\n  CC       cli/yarac.o\n  CC       cli/args.o\n  CC       cli/common.o\n  CC       cli/threading.o\n  CC       cli/yara.o\n  CC       libyara/modules/tests/la-tests.lo\n  CC       libyara/modules/elf/la-elf.lo\n  CC       libyara/modules/math/la-math.lo\n  CC       libyara/modules/time/la-time.lo\n  CC       libyara/modules/pe/la-pe.lo\n  CC       libyara/modules/pe/la-pe_utils.lo\n  CC       libyara/modules/console/la-console.lo\n  CC       libyara/modules/string/la-string.lo\nIn file included from libyara/modules/elf/elf.c:42:\n./libyara/include/../exception.h:167:13: warning: \u2018exception_handler\u2019 defined but not used [-Wunused-function]\n  167 | static void exception_handler(int sig, siginfo_t * info, void *context)\n      |             ^~~~~~~~~~~~~~~~~\n  CC       libyara/modules/cuckoo/la-cuckoo.lo\n  CC       libyara/modules/magic/la-magic.lo\n  CC       libyara/modules/hash/la-hash.lo\n  CC       libyara/modules/dotnet/la-dotnet.lo\n  CC       libyara/modules/pe/authenticode-parser/la-authenticode.lo\n  CC       libyara/modules/pe/authenticode-parser/la-certificate.lo\n  CC       libyara/modules/pe/authenticode-parser/la-helper.lo\n  CC       libyara/modules/pe/authenticode-parser/la-countersignature.lo\n  CC       libyara/modules/pe/authenticode-parser/la-structs.lo\n  CC       libyara/la-grammar.lo\n  CC       libyara/la-ahocorasick.lo\n  CC       libyara/la-arena.lo\n  CC       libyara/la-atoms.lo\n  CC       libyara/la-base64.lo\n  CC       libyara/la-bitmask.lo\n  CC       libyara/la-compiler.lo\n  CC       libyara/la-endian.lo\n  CC       libyara/la-exec.lo\n  CC       libyara/la-exefiles.lo\n  CC       libyara/la-filemap.lo\n  CC       libyara/la-hash.lo\n  CC       libyara/la-hex_grammar.lo\n  CC       libyara/la-hex_lexer.lo\n  CC       libyara/la-lexer.lo\n  CC       libyara/la-libyara.lo\n  CC       libyara/la-mem.lo\n  CC       libyara/la-modules.lo\n  CC       libyara/la-notebook.lo\n  CC       libyara/la-object.lo\n  CC       libyara/la-parser.lo\n  CC       libyara/la-proc.lo\n  CC       libyara/la-re.lo\n  CC       libyara/la-re_grammar.lo\n  CC       libyara/la-re_lexer.lo\n  CC       libyara/la-rules.lo\n  CC       libyara/la-scan.lo\n  CC       libyara/la-scanner.lo\n  CC       libyara/la-simple_str.lo\n  CC       libyara/la-sizedstr.lo\n  CC       libyara/la-stack.lo\n  CC       libyara/la-stopwatch.lo\n  CC       libyara/la-strutils.lo\n  CC       libyara/la-stream.lo\n  CC       libyara/tlshc/la-tlsh.lo\n  CC       libyara/tlshc/la-tlsh_impl.lo\n  CC       libyara/tlshc/la-tlsh_util.lo\n  CC       libyara/la-threading.lo\n  CC       libyara/proc/la-linux.lo\n  CCLD     libyara.la\ncopying selected object files to avoid basename conflicts...\n  CCLD     yara\n  CCLD     yarac\nmake[1]: Leaving directory '/tmp/VirusTotal-yara-688268d'\nmake  install-am\nmake[1]: Entering directory '/tmp/VirusTotal-yara-688268d'\nmake[2]: Entering directory '/tmp/VirusTotal-yara-688268d'\n /usr/bin/mkdir -p '/tmp/yara_builded/usr/local/lib'\n /usr/bin/mkdir -p '/tmp/yara_builded/usr/local/include'\n /usr/bin/mkdir -p '/tmp/yara_builded/usr/local/share/man/man1'\n /bin/bash ./libtool   --mode=install /usr/bin/install -c   libyara.la '/tmp/yara_builded/usr/local/lib'\n /usr/bin/mkdir -p '/tmp/yara_builded/usr/local/lib/pkgconfig'\n /usr/bin/mkdir -p '/tmp/yara_builded/usr/local/include/yara'\n /usr/bin/install -c -m 644 libyara/include/yara.h '/tmp/yara_builded/usr/local/include'\n /usr/bin/install -c -m 644 'yara.man' '/tmp/yara_builded/usr/local/share/man/man1/yara.1'\n /usr/bin/install -c -m 644 yara.pc '/tmp/yara_builded/usr/local/lib/pkgconfig'\n /usr/bin/install -c -m 644 'yarac.man' '/tmp/yara_builded/usr/local/share/man/man1/yarac.1'\n /usr/bin/install -c -m 644 libyara/include/yara/ahocorasick.h libyara/include/yara/arena.h libyara/include/yara/atoms.h libyara/include/yara/base64.h libyara/include/yara/bitmask.h libyara/include/yara/compiler.h libyara/include/yara/error.h libyara/include/yara/exec.h libyara/include/yara/exefiles.h libyara/include/yara/filemap.h libyara/include/yara/hash.h libyara/include/yara/integers.h libyara/include/yara/libyara.h libyara/include/yara/limits.h libyara/include/yara/mem.h libyara/include/yara/modules.h libyara/include/yara/notebook.h libyara/include/yara/object.h libyara/include/yara/parser.h libyara/include/yara/proc.h libyara/include/yara/re.h libyara/include/yara/rules.h libyara/include/yara/scan.h libyara/include/yara/scanner.h libyara/include/yara/simple_str.h libyara/include/yara/sizedstr.h libyara/include/yara/stack.h libyara/include/yara/stopwatch.h libyara/include/yara/stream.h libyara/include/yara/strutils.h libyara/include/yara/threading.h libyara/include/yara/types.h libyara/include/yara/unaligned.h libyara/include/yara/utils.h '/tmp/yara_builded/usr/local/include/yara'\nlibtool: install: /usr/bin/install -c .libs/libyara.so.10.0.0 /tmp/yara_builded/usr/local/lib/libyara.so.10.0.0\nlibtool: install: (cd /tmp/yara_builded/usr/local/lib && { ln -s -f libyara.so.10.0.0 libyara.so.10 || { rm -f libyara.so.10 && ln -s libyara.so.10.0.0 libyara.so.10; }; })\nlibtool: install: (cd /tmp/yara_builded/usr/local/lib && { ln -s -f libyara.so.10.0.0 libyara.so || { rm -f libyara.so && ln -s libyara.so.10.0.0 libyara.so; }; })\nlibtool: install: /usr/bin/install -c .libs/libyara.lai /tmp/yara_builded/usr/local/lib/libyara.la\nlibtool: install: /usr/bin/install -c .libs/libyara.a /tmp/yara_builded/usr/local/lib/libyara.a\nlibtool: install: chmod 644 /tmp/yara_builded/usr/local/lib/libyara.a\nlibtool: install: ranlib /tmp/yara_builded/usr/local/lib/libyara.a\nlibtool: warning: remember to run 'libtool --finish /usr/local/lib'\n /usr/bin/mkdir -p '/tmp/yara_builded/usr/local/bin'\n  /bin/bash ./libtool   --mode=install /usr/bin/install -c yara yarac '/tmp/yara_builded/usr/local/bin'\nlibtool: warning: 'libyara.la' has not been installed in '/usr/local/lib'\nlibtool: install: /usr/bin/install -c .libs/yara /tmp/yara_builded/usr/local/bin/yara\nlibtool: warning: 'libyara.la' has not been installed in '/usr/local/lib'\nlibtool: install: /usr/bin/install -c .libs/yarac /tmp/yara_builded/usr/local/bin/yarac\nmake[2]: Leaving directory '/tmp/VirusTotal-yara-688268d'\nmake[1]: Leaving directory '/tmp/VirusTotal-yara-688268d'\ndpkg-deb: building package 'yara' in '/tmp/yara_builded.deb'.\nSelecting previously unselected package yara.\n(Reading database ... 233601 files and directories currently installed.)\nPreparing to unpack /tmp/yara_builded.deb ...\nUnpacking yara (4.5.2) ...\nSetting up yara (4.5.2) ...\nProcessing triggers for man-db (2.10.2-1) ...\n+ '[' '!' -d /tmp/yara-python ']'\n+ git clone --recursive https://github.com/VirusTotal/yara-python /tmp/yara-python\nCloning into '/tmp/yara-python'...\nremote: Enumerating objects: 1248, done.\nremote: Counting objects: 100% (263/263), done.\nremote: Compressing objects: 100% (144/144), done.\nremote: Total 1248 (delta 149), reused 172 (delta 107), pack-reused 985 (from 1)\nReceiving objects: 100% (1248/1248), 325.55 KiB | 6.78 MiB/s, done.\nResolving deltas: 100% (733/733), done.\nSubmodule 'yara' (https://github.com/VirusTotal/yara.git) registered for path 'yara'\nCloning into '/tmp/yara-python/yara'...\nremote: Enumerating objects: 22210, done.        \nremote: Counting objects: 100% (22/22), done.        \nremote: Compressing objects: 100% (13/13), done.        \nremote: Total 22210 (delta 16), reused 9 (delta 9), pack-reused 22188 (from 2)        \nReceiving objects: 100% (22210/22210), 21.43 MiB | 32.55 MiB/s, done.\nResolving deltas: 100% (16144/16144), done.\nSubmodule path 'yara': checked out '0e5b6bb9660cba500eb58dbccb027757c82cc4cf'\n+ cd /tmp/yara-python\n+ /etc/poetry/bin/poetry --directory /opt/CAPEv2 run python setup.py build --enable-cuckoo --enable-magic --enable-profiling\n/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python: can't open file '/opt/CAPEv2/setup.py': [Errno 2] No such file or directory\n[+] Installing systemd configuration\nSynchronizing state of suricata.service with SysV service script with /lib/systemd/systemd-sysv-install.\nExecuting: /lib/systemd/systemd-sysv-install enable suricata\n[+] Installing Suricata\nHit:1 http://ca.archive.ubuntu.com/ubuntu jammy InRelease\nHit:2 http://ca.archive.ubuntu.com/ubuntu jammy-updates InRelease\nHit:3 http://ca.archive.ubuntu.com/ubuntu jammy-backports InRelease\nHit:4 https://repo.mongodb.org/apt/ubuntu jammy/mongodb-org/8.0 InRelease\nHit:5 http://apt.postgresql.org/pub/repos/apt jammy-pgdg InRelease\nHit:6 https://deb.torproject.org/torproject.org jammy InRelease\nHit:7 http://security.ubuntu.com/ubuntu jammy-security InRelease\nHit:8 https://ppa.launchpadcontent.net/oisf/suricata-stable/ubuntu jammy InRelease\nReading package lists...\nRepository: 'deb https://ppa.launchpadcontent.net/oisf/suricata-stable/ubuntu/ jammy main'\nDescription:\nSuricata IDS/IPS/NSM stable packages\nhttps://suricata.io/\nhttps://oisf.net/\n\nSuricata IDS/IPS/NSM - Suricata is a high performance Intrusion Detection and Prevention System and Network Security Monitoring engine.\n\nOpen Source and owned by a community run non-profit foundation, the Open Information Security Foundation (OISF). Suricata is developed by the OISF, its supporting vendors and the community.\n\nThis Engine supports:\n\n- Multi-Threading - provides for extremely fast and flexible operation on multicore systems.\n- Multi Tenancy - Per vlan/Per interface\n- Uses Rust for most protocol detection/parsing\n- TLS/SSL certificate matching/logging\n- JA3 TLS client fingerprinting\n- JA3S TLS server fingerprinting\n- IEEE 802.1ad (QinQ) and IEEE 802.1Q (VLAN) support\n- VXLAN support\n- All JSON output/logging capability\n- IDS runmode\n- IPS runmode\n- IDPS runmode\n- NSM runmode\n- eBPF/XDP\n- Automatic Protocol Detection and logging - IPv4/6, TCP, UDP, ICMP, HTTP, SMTP, TLS, SSH, FTP, SMB, DNS, NFS, TFTP, KRB5, DHCP, IKEv2, SNMP, SIP, RDP\n- SCADA automatic protocol detection - ENIP/DNP3/MODBUS\n- File Extraction HTTP/SMTP/FTP/NFS/SMB - over 4000 file types recognized and extracted from live traffic.\n- File MD5/SHA1/SHA256 matching\n- Gzip Decompression\n- Fast IP Matching\n- Datasets matching\n- Rustlang enabled protocol detection\n- Lua scripting\n\nand many more great features -\nhttps://suricata.io/features/all-features/\nMore info: https://launchpad.net/~oisf/+archive/ubuntu/suricata-stable\nAdding repository.\nFound existing deb entry in /etc/apt/sources.list.d/oisf-ubuntu-suricata-stable-jammy.list\nAdding deb entry to /etc/apt/sources.list.d/oisf-ubuntu-suricata-stable-jammy.list\nFound existing deb-src entry in /etc/apt/sources.list.d/oisf-ubuntu-suricata-stable-jammy.list\nAdding disabled deb-src entry to /etc/apt/sources.list.d/oisf-ubuntu-suricata-stable-jammy.list\nAdding key to /etc/apt/trusted.gpg.d/oisf-ubuntu-suricata-stable.gpg with fingerprint 121504ADE276E141AD704A75AC10378CF205C960\nReading package lists...\nBuilding dependency tree...\nReading state information...\nsuricata-update is already the newest version (1.2.3-1).\nsuricata is already the newest version (1:7.0.8-0ubuntu1).\n0 upgraded, 0 newly installed, 0 to remove and 0 not upgraded.\n[+] cape2.sh - Done\ncape@cape-juan:/opt/CAPEv2/installer$ ls^C\n```\n\n```\ncape@cape-juan:/opt/CAPEv2/installer$ ls^C\ncape@cape-juan:/opt/CAPEv2/installer$ ls\ncape2.sh  cape.log  choco.bat  disable_win7noise.bat  kvm-qemu.sh  README.md  suricata_from_source.sh  wget-log  win10_disabler.ps1\ncape@cape-juan:/opt/CAPEv2/installer$ cd ..\ncape@cape-juan:/opt/CAPEv2$ poetry install\n\n  RuntimeError\n\n  The Poetry configuration is invalid:\n    - Additional properties are not allowed ('requires-poetry', 'package-mode', 'group' were unexpected)\n  \n\n  at /usr/lib/python3/dist-packages/poetry/core/factory.py:43 in create_poetry\n       39\u2502             message = \"\"\n       40\u2502             for error in check_result[\"errors\"]:\n       41\u2502                 message += \"  - {}\\n\".format(error)\n       42\u2502 \n    \u2192  43\u2502             raise RuntimeError(\"The Poetry configuration is invalid:\\n\" + message)\n       44\u2502 \n       45\u2502         # Load package\n       46\u2502         name = local_config[\"name\"]\n       47\u2502         version = local_config[\"version\"]\ncape@cape-juan:/opt/CAPEv2$ sudo !!\nsudo poetry install\n\n  RuntimeError\n\n  The Poetry configuration is invalid:\n    - Additional properties are not allowed ('requires-poetry', 'group', 'package-mode' were unexpected)\n  \n\n  at /usr/lib/python3/dist-packages/poetry/core/factory.py:43 in create_poetry\n       39\u2502             message = \"\"\n       40\u2502             for error in check_result[\"errors\"]:\n       41\u2502                 message += \"  - {}\\n\".format(error)\n       42\u2502 \n    \u2192  43\u2502             raise RuntimeError(\"The Poetry configuration is invalid:\\n\" + message)\n       44\u2502 \n       45\u2502         # Load package\n       46\u2502         name = local_config[\"name\"]\n       47\u2502         version = local_config[\"version\"]\ncape@cape-juan:/opt/CAPEv2$ ^C\n\n```\n# Failure Information (for bugs)\n\n```\ncape@cape-juan:/opt/CAPEv2/installer$ ls^C\ncape@cape-juan:/opt/CAPEv2/installer$ ls\ncape2.sh  cape.log  choco.bat  disable_win7noise.bat  kvm-qemu.sh  README.md  suricata_from_source.sh  wget-log  win10_disabler.ps1\ncape@cape-juan:/opt/CAPEv2/installer$ cd ..\ncape@cape-juan:/opt/CAPEv2$ poetry install\n\n  RuntimeError\n\n  The Poetry configuration is invalid:\n    - Additional properties are not allowed ('requires-poetry', 'package-mode', 'group' were unexpected)\n  \n\n  at /usr/lib/python3/dist-packages/poetry/core/factory.py:43 in create_poetry\n       39\u2502             message = \"\"\n       40\u2502             for error in check_result[\"errors\"]:\n       41\u2502                 message += \"  - {}\\n\".format(error)\n       42\u2502 \n    \u2192  43\u2502             raise RuntimeError(\"The Poetry configuration is invalid:\\n\" + message)\n       44\u2502 \n       45\u2502         # Load package\n       46\u2502         name = local_config[\"name\"]\n       47\u2502         version = local_config[\"version\"]\ncape@cape-juan:/opt/CAPEv2$ sudo !!\nsudo poetry install\n\n  RuntimeError\n\n  The Poetry configuration is invalid:\n    - Additional properties are not allowed ('requires-poetry', 'group', 'package-mode' were unexpected)\n  \n\n  at /usr/lib/python3/dist-packages/poetry/core/factory.py:43 in create_poetry\n       39\u2502             message = \"\"\n       40\u2502             for error in check_result[\"errors\"]:\n       41\u2502                 message += \"  - {}\\n\".format(error)\n       42\u2502 \n    \u2192  43\u2502             raise RuntimeError(\"The Poetry configuration is invalid:\\n\" + message)\n       44\u2502 \n       45\u2502         # Load package\n       46\u2502         name = local_config[\"name\"]\n       47\u2502         version = local_config[\"version\"]\ncape@cape-juan:/opt/CAPEv2$ ^C\n```\n## Steps to Reproduce\n\nFollow your book from a fresh install and do this part\n\n![Image](https://github.com/user-attachments/assets/6d1f663c-679b-426f-86b9-7d7e18b1d2b6)\n\n## Context\n\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\n\n| Question         | Answer\n|------------------|--------------------\n| Git commit       | Type `$ git log \\| head -n1` to find out\n| OS version       | Ubuntu 16.04, Windows 10, macOS 10.12.3\n\ncape@cape-juan:~/CAPEv2$ lsb_release -a\nNo LSB modules are available.\nDistributor ID: Ubuntu\nDescription:    Ubuntu 22.04.5 LTS\nRelease:        22.04\nCodename:       jammy\ncape@cape-juan:~/CAPEv2$ \n\nLinux cape-juan 6.8.0-52-generic #53~22.04.1-Ubuntu SMP PREEMPT_DYNAMIC Wed Jan 15 19:18:46 UTC 2 x86_64 x86_64 x86_64 GNU/Linux\n\n## Failure Logs\n\nPlease include any relevant log snippets or files here.\n\n[cape2-base.log](https://github.com/user-attachments/files/18774830/cape2-base.log)\n[kvm-qemu.log](https://github.com/user-attachments/files/18774831/kvm-qemu.log)\n[kvm-qemu-virtmanager.log](https://github.com/user-attachments/files/18774832/kvm-qemu-virtmanager.log)\nComment: and just to be sure, these guides arent proper right? i<ve tried these and well... im here...\n\nhttps://medium.com/@rizqisetyokus/building-capev2-automated-malware-analysis-sandbox-part-1-da2a6ff69cdb\nhttps://github.com/rebaker501/capev2install\nComment: It looks like you have wrong version of poetry, guides could be partially right, but they getting outdated so fast, your error is even specified in changelog.md\n\nYou need to check cape2.log to see what is wrong with poetry install\nComment: in attached log i don't see any issue with installing poetry itself, bear in mind that there could be output that wasn't captured, so try to rerun the next code to see if you getting any issue, `as root` \n```\n    curl -sSL https://install.python-poetry.org | POETRY_HOME=/etc/poetry python3 -\n    echo \"PATH=$PATH:/etc/poetry/bin/\" >> /etc/bash.bashrc\n    source /etc/bash.bashrc\n    poetry self add poetry-plugin-shell\n```\n\nthen as cape user `cd /opt/CAPEv2 && poetry install`\nComment: Hey! Sorry for the delay, i took a breather and restarted from scratch creating a separate user and just using shell via cape user to install dependcies. The webui is up and running. Right now I'm changing tactics and looking into using a real physical device i have and using this guide :\n\nhttps://mariohenkel.medium.com/using-cape-sandbox-and-fog-to-analyze-malware-on-physical-machines-4dda328d4e2c\n\nI will report back but i think this way is the best no need for kvm stuff, and just need to configure the stuff to link the physical machine to cape + malware love laptops.\nComment: well kvm y physical are different approaches. that bblog is good one as we have it linked in docs .closing this issue as solved now\nComment: Good luck, I fear the physical setup will be even more error prone!\nComment: yep, it has no official support \nComment: ![31hmh7de5pl51.png](https://github.com/user-attachments/assets/e61ca0ce-7cfe-4d28-9b55-f5208dc4ed65)\n\n\nComment: wow i really thought this was an only me issue. thanks, i hope i can get mine running thanks to your query.\nComment: Which query?\r\n\r\n> El 19 abr 2025, a las 15:36, Nathaniel Rijndorp ***@***.***> escribi\u00f3:\r\n> \r\n> \r\n> NathanielRijndorp\r\n>  left a comment \r\n> (kevoreilly/CAPEv2#2492)\r\n> wow i really thought this was an only me issue. thanks, i hope i can get mine running thanks to your query.\r\n> \r\n> \u2014\r\n> Reply to this email directly, view it on GitHub, or unsubscribe.\r\n> You are receiving this because you modified the open/close state.\r\n> \r\n>  <https://github.com/kevoreilly/CAPEv2/issues/2492#issuecomment-2816709262> <https://github.com/notifications/unsubscribe-auth/AAOFH37NU6E75RZUIZD7I6D22JGO3AVCNFSM6AAAAABXAYHK2GVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDQMJWG4YDSMRWGI>\r\n> \r\n> NathanielRijndorp\r\n>  left a comment \r\n> (kevoreilly/CAPEv2#2492)\r\n>  <https://github.com/kevoreilly/CAPEv2/issues/2492#issuecomment-2816709262>\r\n> wow i really thought this was an only me issue. thanks, i hope i can get mine running thanks to your query.\r\n> \r\n> \u2014\r\n> Reply to this email directly, view it on GitHub <https://github.com/kevoreilly/CAPEv2/issues/2492#issuecomment-2816709262>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAOFH37NU6E75RZUIZD7I6D22JGO3AVCNFSM6AAAAABXAYHK2GVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDQMJWG4YDSMRWGI>.\r\n> You are receiving this because you modified the open/close state.\r\n> \r\n\r\n\nComment: my bad, i meant to reply to the OP, i'm having issues installing capev2 cause when i do \"sudo -u cape poetry run python3 cuckoo.py\" it says poetry is not installed, but when i'm on my default user it works properly, right now im gonna test by doing \"su cape\" so that im directly on the user account cape, i'm not sure why this is happening as i am following everything inside of the cape docs, i may just be messing up in one part specifically, but capev2 and kvm install are going fine, its the setting up thats bugging out for me. I'll make my own issue thread if this persists.. again, my bad\n\nQUICK EDIT: i am inside of /opt/CAPEv2 as well\nComment: @NathanielRijndorp This has everything to do with the way that `sudo` handles environment and PATH variables.\n\nIf you are trying to run `sudo -u cape ... cuckoo.py`, you only need to point directly to the location of the poetry binary by running `sudo -u cape /etc/poetry/bin/poetry run python3 cuckoo.py` if you are already within `/opt/CAPEv2`.\n\nIf you are elsewhere, run it as `sudo -u cape /etc/poetry/bin/poetry run python3 /opt/CAPEv2/cuckoo.py`\n\n",
+  "Title: peepdf update and test\nBody: test sample: ad6cedb0d1244c1d740bf5f681850a275c4592281cdebb491ce533edd9d6a77d",
+  "Title: sync\nBody: None",
+  "Title: Add Mandiant Intelligence API lookup\nBody: None",
+  "Title: playing with copilot for docs + tests\nBody: None",
+  "Title: pyinstaller selfextract\nBody: None",
+  "Title: zip_regex\nBody: None",
+  "Title: capa 9\nBody: None",
+  "Title: Issue Running Virt-Manager in CAPE V2 \u2013 \"Namespace LibvirtGLib not available\"\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\n\n## This is open source and you are getting __free__ support so be friendly!\n\n# Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n I am running the latest version yes\n I did read the README! yes\n I checked the documentation and found no answer yes\n I checked to make sure that this issue has not already been filed yes\n I'm reporting the issue to the correct repository (for multi-repository projects) yes\n I have read and checked all configs (with all optional parts) yes\n\n\n# Expected Behavior\n\nVirt-Manager should successfully launch and allow virtual machines to be managed without errors.\n\nSince Virt-Manager is a required component for managing virtualized analysis environments, it should start without issues and correctly detect system bindings for LibvirtGLib.\n\n# Current Behavior\n\nWhen attempting to launch Virt-Manager, the following error occurs:\n\nleslie@leslie-desktop:/$ virt-manager\nTraceback (most recent call last):\n  File \"/usr/local/bin/virt-manager\", line 6, in <module>\n    from virtManager import virtmanager\n  File \"/usr/local/share/virt-manager/virtManager/virtmanager.py\", line 16, in <module>\n    gi.require_version('LibvirtGLib', '1.0')\n  File \"/usr/lib/python3/dist-packages/gi/__init__.py\", line 126, in require_version\n    raise ValueError('Namespace %s not available' % namespace)\nValueError: Namespace LibvirtGLib not available\n\nalso tried:\n\ncape@leslie-desktop:/$ virt-manager\nTraceback (most recent call last):\n  File \"/usr/local/bin/virt-manager\", line 6, in <module>\n    from virtManager import virtmanager\n  File \"/usr/local/share/virt-manager/virtManager/virtmanager.py\", line 16, in <module>\n    gi.require_version('LibvirtGLib', '1.0')\n  File \"/usr/lib/python3/dist-packages/gi/__init__.py\", line 126, in require_version\n    raise ValueError('Namespace %s not available' % namespace)\nValueError: Namespace LibvirtGLib not available\n\n\n\nDespite installing all required dependencies, Virt-Manager fails to detect LibvirtGLib when launched inside the Poetry-managed CAPEv2 environment.\n\nVirt-Manager does not start due to the missing LibvirtGLib namespace in Python GI bindings. The issue persists even after installing all required dependencies.\n\n## Steps to Reproduce\n\nPlease provide detailed steps for reproducing the issue.\n\n1. sudo chmod a+x kvm-qemu.sh\n    sudo ./kvm-qemu.sh all <username> | tee kvm-qemu.log\n\n2. sudo ./kvm-qemu.sh virtmanager <username> | tee kvm-qemu-virt-manager.log\n\n3. ValueError: Namespace LibvirtGLib not available\n\n## Context\n\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\n\n| Question         | Answer\n|------------------|--------------------\n| Git commit       | Type `$ git log \\| head -n1` to find out\n| OS version       | Ubuntu 22.04 LTS\n Python Version 3.10\n\nRelevant Libraries Installed: libvirt-glib-1.0-0, python3-gi, gir1.2-libvirt-glib-1.0\n\nleslie@leslie-desktop:~$ python3 -c \"import gi; gi.require_version('LibvirtGLib', '1.0')\"\nTraceback (most recent call last):\n  File \"<string>\", line 1, in <module>\n  File \"/usr/lib/python3/dist-packages/gi/__init__.py\", line 126, in require_version\n    raise ValueError('Namespace %s not available' % namespace)\nValueError: Namespace LibvirtGLib not available\nleslie@leslie-desktop:~$ \n\ncape@leslie-desktop:~$ python3 -c \"import gi; gi.require_version('LibvirtGLib', '1.0')\"\nTraceback (most recent call last):\n  File \"<string>\", line 1, in <module>\n  File \"/usr/lib/python3/dist-packages/gi/__init__.py\", line 126, in require_version\n    raise ValueError('Namespace %s not available' % namespace)\nValueError: Namespace LibvirtGLib not available\ncape@leslie-desktop:~$ \n\nMy question is should I use these apt installation scripts?\n\nsudo apt install -y virt-manager gir1.2-libvirt-glib-1.0 libvirt-glib-1.0-0 \\\n                    libvirt-dev gir1.2-spiceclientgtk-3.0 python3-gi \\\n                    python3-gi-cairo gir1.2-gtk-3.0\nAre  they allow to use or they will broke the VM?\n\nThank you so much for the help.\n\n\nPlease include any relevant log snippets or files here.\n\nComment: Hello, this is duplicated, as I told in previous issue, search in issues, there is one were we did research on the problem and it was problem compiling on user side, or you can use suggested docker image\nComment: Read that https://github.com/kevoreilly/CAPEv2/issues/2322#issuecomment-2597309262\nComment: about your question, well idk if they gonna break, i don't install nothing by hand, if you run that command WITHOUT `-y` read the output if there is something like `qemu-` and `libvirt` if yes, then yes they will break your vm. but if you new to ubuntu, python, kvm, the best what i can suggest you is to use docker for virt manager that i also linked in that other issue\n\n```\nsudo apt install -y virt-manager gir1.2-libvirt-glib-1.0 libvirt-glib-1.0-0\nlibvirt-dev gir1.2-spiceclientgtk-3.0 python3-gi\npython3-gi-cairo gir1.2-gtk-3.0\n```\nComment: Thank you for the reply, and sorry if I made you frustrated. I have very little time to make my dissertation and Cape will be a very important part of it. It's just very frustrating it does not work because of another app.\n\nJust read the other issue as well and it's not the same issue.\n\nRegarding the issue, it might be important or maybe nothing but I can install Libvirt (and your script install Libvirt itself which is fine), only LibvirtGLib does not work and it can't be linked to CAPE\u2019s Python GI for some reason.\n\nAlso tested my CPU can support virtualisation as well.\n\nI'll try first installing LibvirtGLib from Github (hope this one is a safe operation not like apt) and manually link it to CAPE\u2019s Python GI if that does not work, I'll try the Docker version of Virt-Manager. I'll gather as many error logs as possible to sort this issue out. Thank you for your help and patience.\n\nSo just checked:\n\nLibvirtGLib is installed.\n\nleslie@leslie-desktop:~$ ls -l /usr/lib/girepository-1.0/ | grep Libvirt\nls -l /usr/local/lib/girepository-1.0/ | grep Libvirt\n-rw-r--r-- 1 root root 840 Feb  4 07:15 LibvirtGLib-1.0.typelib\nleslie@leslie-desktop:~$ \n\nTried debugging Python GI:\n\nleslie@leslie-desktop:~$ python3 -c \"import gi; gi.require_version('LibvirtGLib', '1.0')\"\nTraceback (most recent call last):\n  File \"<string>\", line 1, in <module>\n  File \"/usr/lib/python3/dist-packages/gi/__init__.py\", line 126, in require_version\n    raise ValueError('Namespace %s not available' % namespace)\nValueError: Namespace LibvirtGLib not available\nleslie@leslie-desktop:~$  \n\nAlso, I run this script from both under my main account and under cape: LIBVIRT_DEBUG=1 virt-manager --debug 2>&1 | tee ~/virt-manager-debug.log\n\n\nThe output from leslie:\n\nleslie@leslie-desktop:/opt/CAPEv2$ LIBVIRT_DEBUG=1 virt-manager --debug 2>&1 | tee ~/virt-manager-debug.log\nTraceback (most recent call last):\n  File \"/usr/local/bin/virt-manager\", line 6, in <module>\n    from virtManager import virtmanager\n  File \"/usr/local/share/virt-manager/virtManager/virtmanager.py\", line 16, in <module>\n    gi.require_version('LibvirtGLib', '1.0')\n  File \"/usr/lib/python3/dist-packages/gi/__init__.py\", line 126, in require_version\n    raise ValueError('Namespace %s not available' % namespace)\nValueError: Namespace LibvirtGLib not available\nleslie@leslie-desktop:/opt/CAPEv2$ \n\nThe output from cape:\n\ncape@leslie-desktop:/opt/CAPEv2$ LIBVIRT_DEBUG=1 virt-manager --debug 2>&1 | tee ~/virt-manager-debug.log\n2025-02-04 19:57:20.208+0000: 885050: info : libvirt version: 10.10.0\n2025-02-04 19:57:20.208+0000: 885050: info : hostname: leslie-desktop\n2025-02-04 19:57:20.208+0000: 885050: debug : virGlobalInit:247 : register drivers\n2025-02-04 19:57:20.208+0000: 885050: debug : virRegisterConnectDriver:528 : driver=0x7cfcdfcef580 name=Test\n2025-02-04 19:57:20.208+0000: 885050: debug : virRegisterConnectDriver:539 : registering Test as driver 0\n2025-02-04 19:57:20.208+0000: 885050: debug : virRegisterConnectDriver:528 : driver=0x7cfcdfceece0 name=OPENVZ\n2025-02-04 19:57:20.208+0000: 885050: debug : virRegisterConnectDriver:539 : registering OPENVZ as driver 1\n2025-02-04 19:57:20.208+0000: 885050: debug : virRegisterConnectDriver:528 : driver=0x7cfcdfcf0220 name=VMWARE\n2025-02-04 19:57:20.208+0000: 885050: debug : virRegisterConnectDriver:539 : registering VMWARE as driver 2\n2025-02-04 19:57:20.208+0000: 885050: debug : virRegisterConnectDriver:528 : driver=0x7cfcdfcedcc0 name=ESX\n2025-02-04 19:57:20.208+0000: 885050: debug : virRegisterConnectDriver:539 : registering ESX as driver 3\n2025-02-04 19:57:20.208+0000: 885050: debug : virRegisterConnectDriver:528 : driver=0x7cfcdfcebf40 name=remote\n2025-02-04 19:57:20.208+0000: 885050: debug : virRegisterConnectDriver:539 : registering remote as driver 4\n[Tue, 04 Feb 2025 19:57:20 virt-manager 885050] DEBUG (cli:204) Version 5.0.0 launched with command line: /usr/local/bin/virt-manager --debug\n[Tue, 04 Feb 2025 19:57:20 virt-manager 885050] DEBUG (virtmanager:192) virt-manager version: 5.0.0\n[Tue, 04 Feb 2025 19:57:20 virt-manager 885050] DEBUG (virtmanager:193) virtManager import: /usr/local/share/virt-manager/virtManager\n[Tue, 04 Feb 2025 19:57:20 virt-manager 885050] DEBUG (virtmanager:214) Using SSH_ASKPASS_REQUIRE=force\n\n(virt-manager:885050): Gtk-WARNING **: 19:57:20.703: cannot open display: \n\nI wonder if the problem here is the following:\n\nI installed a dummy display as Wayland is rubbish so I blocked it and used X11 but I still can't use a remote desktop with it so I decided to use a dummy display with RustDesk.\n\nsudo apt install xserver-xorg-video-dummy\n\nWhat do you think?\n\n\nComment: Idk, I don't install those, neither mess, my servers are serves edition so they don't have gui, if you need gui and can't fix it, use docker as I suggested in linked issue, you will have the working remote machine view\nComment: Thank you. However, the issue might lie with the Intel NUC mini PC itself. I cant access the BIOS for some reason to check if my virtualisation is blocked or not. I just decided to return the PC and ordered a new one hope that will work better and solve the issue. I'll try a clean install after I get the PC and if still encounter any issues I'll try the Docker solution. Thank you again.\nComment: No dude you are so wrong, you just don't have no idea what you doin and dealing. Go for docker for virt manager and save you a lot of time time. Closing this, as this is not cape issue at all\nComment: I am trying to pinpoint the issue with your script dude. Because I am not the only one who has this issue and you should not ignore it as others have the same issue. We not using a server version of Ubuntu like yours. So please don't ignore this issue as it might not cape issue but an installation script issue. And the script is your creation. I'll try the solution later maybe you should learn not to look down on others as they trying to learn such a very complicated application. Not everybody is as perfect as you. Don't worry I find my way and don't need any reply. Pls close my ticket and thank you for your time.\nComment: Lol you so sensitive, I just point you to tickets where people did research we point the problem on user side as others also confirmed that they don't have issues, I point you to working solution and you still get it wrong and offensive. I don't have time to spend with this kind of behavior. \n\nYour learning is more than welcome but even if that is my script, the issue is in 3rd part software that doesn't fall to all users\nComment: No man. I am not too sensitive just a bit lot on stake for me at the moment and an arrogant and disrespectful person as you not helping at all as i just wanted to point out some potential cause for something that might worth investigating. Probably you need to leave the high horse and start learning to show some respect against others who\u2019s not on your level yet. Thanks for the useful information, the rest no thank you. Will figure out how to manage this by myself as i determined. All the best.\nComment: omg dude if you keep like this nobody will help you lol. Who could point you better than the devs? You posted error, I point you to solution, you reject to recon it and taking it offensive and going totally in wrong direction about the PC problem with virtualization when the error is in virt-manager compilation on your side, you just need to watch out the log. \n\nbeing said, all this is not CAPE's problem, if you gonna continue in that way, you will get literally 0 help + ban due to wasting our time on useless discussion where issue ISN'T with CAPE. i gave you second opportunity, you went wrong direction again. So who has the problem is you not me\nComment: Hi guys,\nI join myself to your funny exchange :) , I've tried to install virt-manager but my trouble is the same as Lacc1986, could you help me workaround this trouble, install docker is certainly THE good solution, lets give me some traces plz...\n\nbest regard\n__ \nPhilipp\nps: sry for my English, I'm French...\nComment:  https://hub.docker.com/r/mber5/virt-manager\nComment: also i have a tip\n\ntry next\n```\nexport GI_TYPELIB_PATH=/usr/local/lib/girepository-1.0:$GI_TYPELIB_PATH\nvirt-manager\n```\n\nor just \n```\nsudo cp builddir/libvirt-glib/LibvirtGLib-1.0.typelib /usr/lib/girepository-1.0/\nsudo ldconfig\n```\nComment: > https://hub.docker.com/r/mber5/virt-manager\n\nI'll start study your tip tomorrow, great thanks answering me!\n\n__ \nPhilipp\nComment: > also i have a tip\n> \n> try next\n> \n> ```\n> export GI_TYPELIB_PATH=/usr/local/lib/girepository-1.0:$GI_TYPELIB_PATH\n> virt-manager\n> ```\n> \n> or just\n> \n> ```\n> sudo cp builddir/libvirt-glib/LibvirtGLib-1.0.typelib /usr/lib/girepository-1.0/\n> sudo ldconfig\n> ```\n\nThose tips are for standard installation!? I mean without docker?\n\n__ \nPhilipp\nComment: Yes without docker\nComment: Install script is update dao you can just rerun it with virtmanager\r\nargument and it will automatically fix it for you\r\n\r\nEl mi\u00e9, 19 feb 2025, 15:59, frenchy35 ***@***.***> escribi\u00f3:\r\n\r\n> also i have a tip\r\n>\r\n> try next\r\n>\r\n> export GI_TYPELIB_PATH=/usr/local/lib/girepository-1.0:$GI_TYPELIB_PATH\r\n> virt-manager\r\n>\r\n> or just\r\n>\r\n> sudo cp builddir/libvirt-glib/LibvirtGLib-1.0.typelib /usr/lib/girepository-1.0/\r\n> sudo ldconfig\r\n>\r\n> Those tips are for standard installation!? I mean without docker?\r\n>\r\n> __\r\n> Philipp\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2484#issuecomment-2668904095>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH34QBKWNWXNRZH67L7D2QSL4PAVCNFSM6AAAAABWNFFK2SVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDMNRYHEYDIMBZGU>\r\n> .\r\n> You are receiving this because you modified the open/close state.Message\r\n> ID: ***@***.***>\r\n> [image: frenchy35]*frenchy35* left a comment (kevoreilly/CAPEv2#2484)\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2484#issuecomment-2668904095>\r\n>\r\n> also i have a tip\r\n>\r\n> try next\r\n>\r\n> export GI_TYPELIB_PATH=/usr/local/lib/girepository-1.0:$GI_TYPELIB_PATH\r\n> virt-manager\r\n>\r\n> or just\r\n>\r\n> sudo cp builddir/libvirt-glib/LibvirtGLib-1.0.typelib /usr/lib/girepository-1.0/\r\n> sudo ldconfig\r\n>\r\n> Those tips are for standard installation!? I mean without docker?\r\n>\r\n> __\r\n> Philipp\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2484#issuecomment-2668904095>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH34QBKWNWXNRZH67L7D2QSL4PAVCNFSM6AAAAABWNFFK2SVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDMNRYHEYDIMBZGU>\r\n> .\r\n> You are receiving this because you modified the open/close state.Message\r\n> ID: ***@***.***>\r\n>\r\n\nComment: It seems you being a prick with me but if somebody else jumps into the conversation then suddenly can answer wow. Thanks for the solution. @frenchy35 \nComment: rofl dude. there are 5 issues like this, and there are people that said the same we WEREN'T able to reproduce it. TILL today, my devops nuked my env an i had to recreate and was able to reproduce the issue, but even the last week i wasn't able to reproduce. so is not about your or others, is about being able to reproduce and research the solution. so take it easy\nComment: @doomedraven hello, I've tried lots of \"from scratch installation\", we are two guys working hard for make it work.. no success. Could you tell me if the URL under is at the good release!?\n\nhttps://github.com/kevoreilly/CAPEv2.git\n\nGreat thanks in advance\n\n__ \nPhilipp\nComment: Il n'est pas facile \u00e0 installer, \u00e7a, on est tous d'accord! Mais sans d\u00e9tails on ne peut rien faire.\n\n> we are two guys working hard for make it work.. no success.\n\nNous aussi, on est deux mecs qui travaillons dur pour cr\u00e9er un bon sandbox et aider les autres \u00e0 l'utiliser en m\u00eame temps. Mais apr\u00e8s huit ans de travail, c'est toujours les m\u00eames probl\u00e8mes : des gens qui ignorent le mod\u00e8le de ticket, ne lisent pas la documentation et qui semblent vouloir se battre dans les issues. \u00c7a devient dur apr\u00e8s tout ce temps, mais on continue!\n\nMais au moins, s'il vous pla\u00eet, ne nous envoyez pas de messages sans d\u00e9tails sur les erreurs que vous rencontrez ou sans logs. Sans au moins \u00e7a, on ne peut litt\u00e9ralement rien faire.\nComment: > [@doomedraven](https://github.com/doomedraven) hello, I've tried lots of \"from scratch installation\", we are two guys working hard for make it work.. no success. Could you tell me if the URL under is at the good release!?\n> \n> https://github.com/kevoreilly/CAPEv2.git\n> \n> Great thanks in advance\n> \n> __ Philipp\n\nHi @kevoreilly,\n\ngreat to \"hear u\", could u please just answer me for that question (no need any logs ;) )\n\nBest regard\n\n__ \nPhilipp\nComment: Sorry but it does seem a ridiculous question! OF COURSE!!!\nComment: > Sorry but it does seem a ridiculous question! OF COURSE!!!\n\nU think there's ridiculous questions in this world?\nComment: Ok you're right, apologies, there is no such thing.\n\nBut yes, the git URL represents the latest in the repository so it's always the latest if you git pull or clone from that.\n\nThe problems you are experiencing are not due to a problem that is present for everyone in the latest version of the repository, rather they are specific to a few unfortunate souls who happen to encounter these issues. If there is ever a problem, or even a hint of one, in the latest version of the repo, myself and doomed don't sleep until it's fixed!\nComment: > Ok you're right, apologies, there is no such thing.\n> \n> But yes, the git URL represents the latest in the repository so it's always the latest if you git pull or clone from that.\n> \n> The problems you are experiencing are not due to a problem that is present for everyone in the latest version of the repository, rather they are specific to a few unfortunate souls who happen to encounter these issues. If there is ever a problem, or even a hint of one, in the latest version of the repo, myself and doomed don't sleep until it's fixed!\n\nNo problem Kevin,\n\nGo back home now, I'll try to do a perfect install without update && upgrade on a brand new 22.04.1 tomorrow... Side of that, tryed to build on a last 22.04.XX build, post u logs... ;)\n\nBest regards\n\n__ \nPhilipp\nComment: Hi guys,\n\nI'm a big shit, vas doing apt update && apt upgrade, when was written nowhere...\n\nAll is good now, great tanks for your fast answering..\n\nbest regards \n\n__ \nPhilipp",
+  "Title: Wrap the `normalize_file` mongo operation inside a try/catch. This ac\u2026\nBody: \u2026complishes two things:\r\n\r\n1. It improves process log output, making any follow-on troubleshooting straightforward.\r\n\r\n  We go from a generic OperationFailure log, which makes it look like the analysis doc was too big:\r\n  ```\r\n  poetry[1072529]: 2025-01-31 11:24:41,229 [Task 1] [modules.reporting.mongodb] ERROR: Got MongoDB OperationFailure, code 10334\r\n  poetry[1072529]: 2025-01-31 11:24:41,229 [Task 1] [modules.reporting.mongodb] WARNING: Deleting behavior process tree children from results.\r\n  ```\r\n\r\n  To this, which actually indicates that the hook failed and why:\r\n\r\n  ```\r\npoetry[1108630]: 2025-01-31 15:25:55,981 [Task 2] [dev_utils.mongo_hooks] ERROR: Mongo hook 'normalize_files' failed with code 10334: BSONObj size: 18852184 (0x11FA958) is invalid. Size must be between 0 and 16793600(16MB) First element: q: { _id: \"...461a8\" }, full error: {'ok': 0.0, 'errmsg': 'BSONObj size: 18852184 (0x11FA958) is invalid. Size must be between 0 and 16793600(16MB) First element: q: { _id: \"...461a8\" }', 'code': 10334, 'codeName': 'BSONObjectTooLarge'}\r\n  ```\r\n\r\n2. If the `normalize_file` bulk write operation errors out, it no longer gets caught by the exception handler in `modules/reporting/mongodb.MongoDB.run` leading to the behaviour process tree children being removed from the analysis report (See logs above - not good!).\r\n\r\nWhat this does not fix, however, is the problem with large `strings` data that prevented it from being written to the `files` collection. It does provide a lot more visibility though, in addition to preventing the analysis document from being arbitrarily cut-down if an error does occur in the hook.\r\n\r\nOn the topic of other hooks, there are probably other hooks that require the same treatment, but this is a good place to start.",
+  "Title: Wrap signature init in a try/catch\nBody: This prevents the processing step from failing if there is a problem in a signatures `__init__` method.\nComment: Is there any issue or is just to prevent possible fails?\nComment: > Is there any issue or is just to prevent possible fails?\r\n\r\nThis will prevent regressions like [this](https://github.com/CAPESandbox/community/commit/9ef92fb942b181a212cf4d4c95bf41d1e795b4fd) from killing the processor",
+  "Title: optionally route via tunnel\nBody: route via any `tunX` or `tun_foo` interface.   \r\n* This allows you to configure any tunnel interface outside of cape.\r\n* it will fail safe and have no internet if the tunnel interface is not working. \r\n",
+  "Title: QR data extraction\nBody: None",
+  "Title: CapeV2 several issues after installation\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\n\n## This is open source and you are getting __free__ support so be friendly!\n\n# Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n- [x] I am running the latest version\n- [x] I did read the README!\n- [ ] I checked the documentation and found no answer\n- [x] I checked to make sure that this issue has not already been filed\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [x] I have read and checked all configs (with all optional parts)\n\n\n# Expected Behavior\n\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\n\n# Current Behavior\n\nWhat is the current behavior?\n\n# Failure Information (for bugs)\n\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\n\n## Steps to Reproduce\n\nPlease provide detailed steps for reproducing the issue.\n\n1. step 1\n2. step 2\n3. you get it...\n\n## Context\n\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\n\n| Question         | Answer\n|------------------|--------------------\n| Git commit       | Type `$ git log \\| head -n1` to find out\n| OS version       | Ubuntu 16.04, Windows 10, macOS 10.12.3\n\n## Failure Logs\n\nPlease include any relevant log snippets or files here.\n\nComment: cape@leslie-desktop:/opt/CAPEv2$ sudo systemctl status cape.service\nsudo systemctl status cape-processor.service\nsudo systemctl status cape-web.service\nsudo systemctl status cape-rooter.service\n\u25cf cape.service - CAPE\n     Loaded: loaded (/lib/systemd/system/cape.service; enabled; vendor preset: >\n     Active: activating (auto-restart) (Result: exit-code) since Sun 2025-02-02>\n       Docs: https://github.com/kevoreilly/CAPEv2\n    Process: 96083 ExecStart=/etc/poetry/bin/poetry run python cuckoo.py (code=>\n   Main PID: 96083 (code=exited, status=1/FAILURE)\n        CPU: 3.802s\nlines 1-7/7 (END)\n\ncape@leslie-desktop:/opt/CAPEv2$ sudo systemctl status cape.service\n\u25cf cape.service - CAPE\n     Loaded: loaded (/lib/systemd/system/cape.service; enabled; vendor preset: >\n     Active: activating (auto-restart) (Result: exit-code) since Sun 2025-02-02>\n       Docs: https://github.com/kevoreilly/CAPEv2\n    Process: 103148 ExecStart=/etc/poetry/bin/poetry run python cuckoo.py (code>\n   Main PID: 103148 (code=exited, status=1/FAILURE)\n        CPU: 3.790s\n\nFeb 02 14:33:34 leslie-desktop systemd[1]: cape.service: Main process exited, c>\nFeb 02 14:33:34 leslie-desktop systemd[1]: cape.service: Failed with result 'ex>\nFeb 02 14:33:34 leslie-desktop systemd[1]: cape.service: Consumed 3.790s CPU ti>\nlines 1-11/11 (END)\n\ncape@leslie-desktop:/opt/CAPEv2$ sudo -u cape /etc/poetry/bin/poetry run python3 cuckoo.py --test\n\n                               ),-.     /\n  Cuckoo Sandbox              <(a  ---','\n     no chance for malwares!  ( -, ._> )\n                               ) _>.___/\n                                   _/\n\n Cuckoo Sandbox 2.4-CAPE\n www.cuckoosandbox.org\n Copyright (c) 2010-2015\n\n CAPE: Config and Payload Extraction\n github.com/kevoreilly/CAPEv2\n\npip3 install certvalidator asn1crypto mscerts\nOPTIONAL! Missed dependency: poetry run pip install -U git+https://github.com/DissectMalware/batch_deobfuscator\nOPTIONAL! Missed dependency: poetry run pip install -U git+https://github.com/CAPESandbox/httpreplay\nUnable to import plugin \"modules.signatures.all.credential_access_phishingkit\": Please install chepy\nNo module named 'capa'\nFLARE-CAPA missed: poetry install\n/usr/bin/tcpdump\ncape@leslie-desktop:/opt/CAPEv2$ \n\n(virt-manager:105065): Gtk-WARNING **: 14:34:58.098: cannot open display: \ncape@leslie-desktop:/opt/CAPEv2$ xhost +SI:localuser:cape\nsudo -u cape virt-manager\nxhost:  unable to open display \"\"\nTraceback (most recent call last):\n  File \"/usr/local/bin/virt-manager\", line 6, in <module>\n    from virtManager import virtmanager\n  File \"/usr/local/share/virt-manager/virtManager/virtmanager.py\", line 16, in <module>\n    gi.require_version('LibvirtGLib', '1.0')\n  File \"/usr/lib/python3/dist-packages/gi/__init__.py\", line 126, in require_version\n    raise ValueError('Namespace %s not available' % namespace)\nValueError: Namespace LibvirtGLib not available\ncape@leslie-desktop:/opt/CAPEv2$ \n\ncape@leslie-desktop:/opt/CAPEv2$ sudo -u cape /etc/poetry/bin/poetry run python3 cuckoo.py\n\n  .-----------------.\n  | Cuckoo Sandbox? |\n  |     OH NOES!    |\\  '-.__.-'\n  '-----------------' \\  /oo |--.--,--,--.\n                         \\_.-'._i__i__i_.'\n                               \"\"\"\"\"\"\"\"\"\n\n Cuckoo Sandbox 2.4-CAPE\n www.cuckoosandbox.org\n Copyright (c) 2010-2015\n\n CAPE: Config and Payload Extraction\n github.com/kevoreilly/CAPEv2\n\npip3 install certvalidator asn1crypto mscerts\nOPTIONAL! Missed dependency: poetry run pip install -U git+https://github.com/DissectMalware/batch_deobfuscator\nOPTIONAL! Missed dependency: poetry run pip install -U git+https://github.com/CAPESandbox/httpreplay\nUnable to import plugin \"modules.signatures.all.credential_access_phishingkit\": Please install chepy\nNo module named 'capa'\nFLARE-CAPA missed: poetry install\n/usr/bin/tcpdump\n2025-02-02 14:36:00,661 [root] CRITICAL: CuckooDependencyError: Unable to import libvirt. Ensure that you properly installed it by running: cd /opt/CAPEv2/ ; sudo -u cape poetry run extra/libvirt_installer.sh\ncape@leslie-desktop:/opt/CAPEv2$ \n\nEverything is installed with the scripts still not working.\n\nComment: hey,did you do what the output says? like `Unable to import libvirt. Ensure that you properly installed it by running: cd /opt/CAPEv2/ ; sudo -u cape poetry run extra/libvirt_installer.sh` what about kvm-qemu.log?\n\nabout virt-manager you can search in issues there are few responses, we can't reproduce it sadly, soy have to pay attention to the output, or use docker\nComment: Good afternoon. Yes, I closely following the installation guidelines. Only used the installation scripts and nothing else as it can break CapeV2. \n\nCurrently, I am reinstalling my system from scratch and trying to create a separate \"cape\" user before the script execution and move the scripts from my main user under the \"cape user and execute them there. However the last time I had issues with Suricata (which application I never had issues with before so I just did a complete Ubuntu reinstall). If things are the same I'll test each installed application if there are any issues with it if there are any I'll post them here separately and the way I installed them for debugging.\n\nThank you so much for your help.\nComment: execute as cape user script wont work, it should be executed as root only. Well without logs/error msgs i can't help. i did deploy yesterday 2 servers with no issues. Also fill properly issue template, as there is missing critical information\nComment: I wonder in this commands I have to replace the \"cape\" with my username as I copy and paste these commands as they are:\n\n$ sudo ./cape2.sh base cape | tee cape.log\n$ sudo ./cape2.sh all cape | tee cape.log\n\n$ sudo -u cape poetry run python3 cuckoo.py\n$ sudo -u cape poetry run pip install -r extra/optional_dependencies.txt\n\nThis installation is very confusing as I am just a beginner with your malware analysing tool for my Dissertation. A fully guided setup video would be amazing if possible. I don't know how to fill up the issue template properly as I never had such issues before anything like this. \nComment: read the docs https://capev2.readthedocs.io/en/latest/\n\nyou still didn't provide any relevant info here, i have asked for logs/details i got 0 of them, so i can't help you if you doesn't provide requested data.\n\nyou can read the first msg here right? edit it with the data and commands output there\nComment: You should not be rude like this. Sadly not every user is as pro as you man. As I asked for a setup video would be great but it seems like that never going to happen.\nComment: rude came on dude? im asking for some logs over and over,what is rude? video is useless, you have the step by step docs that i linked here. if you don't provide info that another person asks, how do you want people to help? its not about be pro or newbie, is about to supply data.\n\nread the docs and you will have the answers\nComment: The way you asking for them mate. As I am not familiar with your system I asked for help. Currently, I have these error logs I can provide. Look how you mocking me. This is rude. Instead, try to give me some points on what commands I need to execute to get those \"logs\". For me videos are priceless. You were once in my shoes I believe but probably you forgot. Sometimes the commands are not straightforward. But don't worry I not going to be mad at you you are an amazing developer to put together such great software so thank you for this. I'll try my best and get all those logs somehow.\nComment: ok dude by steps\n1. you came saying that it doesn't work, why it doesn't work where is the proof? should i hack your PC to figurate it? \n2. i asked for logs to help you, and asked to fill the issue template, when you open issue there is form to fill, you just mostly ignore it, and is critial to not wasting our time\n3. asking for logs again and again, you taking rude well\n4. why you just don't read the docs? if you are new to project, always start with official docs\nComment: im locking this as it become useless, read the docs as first step always!",
+  "Title: staging - merging in 1-2w \nBody: None",
+  "Title: Update python-package.yml\nBody: None",
+  "Title: Update cape2 sh\nBody: None",
+  "Title: Reduce SQLAlchemy session scope to avoid stale data\nBody: This PR changes two things:\r\n\r\n1. It transitions from thread-local to request-local SQLAlchemy sessions in CAPE-web to avoid stale data. \r\n2. It moves to use a single SQLAlchemy session per processing task inside the Pebble worker processes to avoid stale data.\r\n\r\nThe change to request-local sessions inside CAPE-web is accomplished by calling `scoped_session().remove()` at the end of every web request. Whilst this bug didn't appear to affect anything critical, it did manifest itself in the task status views (API and UI) by ocassionally showing stale data after a task status had been updated on the backend.\r\n\r\nUsing request-local sessions is the recommended approach inside web apps as noted in the SQLAlchemy [docs](https://docs.sqlalchemy.org/en/14/orm/contextual.html#using-thread-local-scope-with-web-applications):\r\n\r\n> As discussed in the section When do I construct a Session, when do I commit it, and when do I close it?, a web application is architected around the concept of a web request, and integrating such an application with the Session usually implies that the Session will be associated with that request. As it turns out, most Python web frameworks, with notable exceptions such as the asynchronous frameworks Twisted and Tornado, use threads in a simple way, such that a particular web request is received, processed, and completed within the scope of a single worker thread. When the request ends, the worker thread is released to a pool of workers where it is available to handle another request.\r\n>\r\n> This simple correspondence of web request and thread means that to associate a Session with a thread implies it is also associated with the web request running within that thread, and vice versa, provided that the Session is created only after the web request begins and torn down just before the web request ends. So it is a common practice to use scoped_session as a quick way to integrate the Session with a web application. The sequence diagram below illustrates this flow:\r\n\r\n```\r\nWeb Server          Web Framework        SQLAlchemy ORM Code\r\n--------------      --------------       ------------------------------\r\nstartup        ->   Web framework        # Session registry is established\r\n                    initializes          Session = scoped_session(sessionmaker())\r\n\r\nincoming\r\nweb request    ->   web request     ->   # The registry is *optionally*\r\n                    starts               # called upon explicitly to create\r\n                                         # a Session local to the thread and/or request\r\n                                         Session()\r\n\r\n                                         # the Session registry can otherwise\r\n                                         # be used at any time, creating the\r\n                                         # request-local Session() if not present,\r\n                                         # or returning the existing one\r\n                                         Session.execute(select(MyClass)) # ...\r\n\r\n                                         Session.add(some_object) # ...\r\n\r\n                                         # if data was modified, commit the\r\n                                         # transaction\r\n                                         Session.commit()\r\n\r\n                    web request ends  -> # the registry is instructed to\r\n                                         # remove the Session\r\n                                         Session.remove()\r\n\r\n                    sends output      <-\r\noutgoing web    <-\r\nresponse\r\n```\r\n\r\nThe change to avoid stale data inside of the processor is achieved by removing the session after processing. The next task that runs in the same process will grab a new session and will be forced to pull new objects from the database, preventing any data inconsistencies.\r\n\r\nThis manifested itself in an issue where the task status fails to change to `reported` within the `process` function if the same worker process had previously processed the same task. Although the function call is executed inside the `process` function, SQLAlchemy does not issue an update statement to the database. This occurs because the task object is already present in the ORM cache from a previous job, with a status of `reported`.\r\n\nComment: \\c @dsecuma @xiangchen96 FYI",
+  "Title: fix litereport failure due to invalid utf-8 byte string\nBody: use chardet to avoid UnicodeDecodeError due to invalid utf-8 byte string.\r\nSample: 70524de53d60119c2913370232effaf1e551db9308909dba2cd1331bb0fa0f19\nComment: interesting, thank you",
+  "Title: Ignore non-JSON output in detect-it-easy output\nBody: The `diec` binary outputs non-JSON output in JSON mode, causing the parsing to fail. For example:\r\n\r\n```text\r\n[!] Heuristic scan is disabled. Use --heuristicscan to enable\r\n{\r\n    \"detects\": [\r\n        {\r\n            \"filetype\": \"PE64\",\r\n            \"info\": \"\",\r\n            \"offset\": \"0\",\r\n            \"parentfilepart\": \"Header\",\r\n            \"size\": \"3488048\",\r\n            \"values\": [\r\n                {\r\n                    \"info\": \"\",\r\n                    \"name\": \"Microsoft Linker\",\r\n                    \"string\": \"Linker: Microsoft Linker(14.22.27905)\",\r\n                    \"type\": \"Linker\",\r\n                    \"version\": \"14.22.27905\"\r\n                },\r\n                {\r\n                    \"info\": \"C++\",\r\n                    \"name\": \"Microsoft Visual C/C++\",\r\n                    \"string\": \"Compiler: Microsoft Visual C/C++(19.22.27905)[C++]\",\r\n                    \"type\": \"Compiler\",\r\n                    \"version\": \"19.22.27905\"\r\n                },\r\n                {\r\n                    \"info\": \"\",\r\n                    \"name\": \"Visual Studio\",\r\n                    \"string\": \"Tool: Visual Studio(2019, v16.2)\",\r\n                    \"type\": \"Tool\",\r\n                    \"version\": \"2019, v16.2\"\r\n                }\r\n            ]\r\n        }\r\n    ]\r\n}\r\n```\r\n\r\nThere is a related issue noted against the DIE project:\r\nhttps://github.com/horsicq/Detect-It-Easy/issues/242",
+  "Title: Require poetry 2.0\nBody: Require Poetry 2.0",
+  "Title: Create watchdownloads.py\nBody: None",
+  "Title: Add reference to diec binary in config and add die binary path check\nBody: Restores DIEC binary compatibility\r\n\r\n- Adds a binary parameter to processing.conf.default::die\r\n- Adds a path check for the `diec` binary\r\n- Removes commented code blocks for die-python implementation",
+  "Title: Fix URL tags\nBody: None",
+  "Title: Make the logging and exception handling inside of `processing_finished` more succinct\nBody: Makes the logging and exception handling inside of `processing_finished` more succinct\r\n\r\n- Merges the `pebble.ProcessExpired` and generic `Exception` clauses as they are functionally identical. I've retained code-level visibility of `pebble.ProcessExpired`, despite it not being technically required.\r\n- Removes the recently added `exc_classname` and `exc_message` variables, introduced in commit 1556340. The exception name is not required in the case of the `TimeoutError` clause, as the exception message provides enough insight.  In the second, generic clause, `exc_info` ensures the exception type, traceback and stack are contained in the log message.\r\n- Replaces the `Database()` initialization calls in the exception handlers with a reference to the already initialized database, `db`, instead.\nComment: thank you i had it in my ToDo",
+  "Title: Capturing Complete Assembly Traces for Packed Malware, Including Unpacker Execution, in CAPEv2\nBody: Hello, thanks for your great sandboxing engine!\n\nIn our research on **packed** malware analysis, we aim to collect complete assembly traces from the CAPEv2 debugger. Specifically, we want the traces to include the entire execution of the malware sample, including the Capev2 unpacker that precedes the payload (notepad in our case), from start to finish.\n\nWhen submitting a **UPX-packed notepad.exe** and setting **bp0=ep, depth=0xFFFF, and count=100000**, we noticed that the traces are incomplete (the output in most cases is just 5-7 lines of assembly instructions), as the unpacker executes before notepad.exe is launched. From the screenshots of capev2, we are sure that the binary was correctly unpacked and the notepad.exe w launched. This happens also any other simple binary (not necessarily packed). Could you please provide the exact settings needed to capture full traces, including the unpacker execution, in such cases?\n\nThanks in advance,\nComment: Hi LaminsLSU - sounds like some interesting research!\n\nI can see a slight issue with the options you have tried, so of course I can help you with the settings needed to enable a 'full' capture with cape's debugger...\n\n... However this won't help you achieve your actual stated goal of capturing a complete execution I'm afraid to say. Let me deal with each in turn.\n\nThe chances are that with only a few instructions captured, you are encountering an issue that involves a clash of the the UPX unpacker yara that is included with cape and your own debugger instructions. So in order to capture a better trace you need to switch off that yara. The easiest way is just to switch off monitor yara scans completely with the option:\n\n``yarascan=0``\n\nNow you will see many more lines that are captured and I think your stated options should work fine here. But just for your information, I have already addressed the issue of full capture by adding the keyword ``all`` to ``depth`` and ``count`` options:\n\n``depth=all,count=all``\n\nSo if you now submit your sample with the combination:\n\n``yarascan=0,bp0=ep,depth=all,count=all``\n\nYou will start to see the full capture capabilities of cape's debugger in all its glory....\n\n```\nCAPE Sandbox - Debugger log: Mon Jan 27 16:56:38 2025\nBreakpoint 0 set on entry point at 0x00819F70\nBreakpoint 0 hit by instruction at 0x00819F70 (thread 2056) EAX=0xddf928 EBX=0xe3e000 ECX=0x819f70 ac06b2f14ab19794cdd0ca8d.exe EDX=0x819f70 ac06b2f14ab19794cdd0ca8d.exe ESI=0x819f70 ac06b2f14ab19794cdd0ca8d.exe EDI=0x819f70 ac06b2f14ab19794cdd0ca8d.exe ESP=0xddf8d0 *ESP=0x758dfa29 kernel32.dll EBP=0xddf8dc\nBreak at 0x00819F70 in ac06b2f14ab19794cdd0ca8d.exe (RVA 0x29f70, thread 2056, Stack 0x00DD3000-0x00DE0000, ImageBase 0x007F0000)\n0x00819F70  60                       PUSHA                                    ESP=0xddf8b0 *ESP=0x819f70 ac06b2f14ab19794cdd0ca8d.exe\n0x00819F71  BE00D08000               MOV       ESI, 0x80d000                  ESI=0x80d000 ac06b2f14ab19794cdd0ca8d.exe\n0x00819F76  8DBE0040FEFF             LEA       EDI, [ESI-0x1c000]             EDI=0x7f1000 ac06b2f14ab19794cdd0ca8d.exe\n0x00819F7C  57                       PUSH      EDI                            ESP=0xddf8ac *ESP=0x7f1000 ac06b2f14ab19794cdd0ca8d.exe\n0x00819F7D  83CDFF                   OR        EBP, -0x1                      EBP=0xffffffff\n0x00819F80  EB10                     JMP       0x00819F92                    \n0x00819F92  8B1E                     MOV       EBX, [ESI]                     EBX=0xffffffff\n0x00819F94  83EEFC                   SUB       ESI, -0x4                      ESI=0x80d004 \"SVW\" ac06b2f14ab19794cdd0ca8d.exe\n0x00819F97  11DB                     ADC       EBX, EBX                      \n0x00819F99  72ED                     JB        0xffffffef                    \n0x00819F88  8A06                     MOV       AL, [ESI]                      EAX=0xddf953\n0x00819F8A  46                       INC       ESI                            ESI=0x80d005 \"VW\" ac06b2f14ab19794cdd0ca8d.exe\n0x00819F8B  8807                     MOV       [EDI], AL                     \n0x00819F8D  47                       INC       EDI                            EDI=0x7f1001 ac06b2f14ab19794cdd0ca8d.exe\n0x00819F8E  01DB                     ADD       EBX, EBX                       EBX=0xfffffffe\n0x00819F90  7507                     JNZ       0x9                           \n0x00819F99  72ED                     JB        0xffffffef                    \n0x00819F88  8A06                     MOV       AL, [ESI]                      EAX=0xddf956\n0x00819F8A  46                       INC       ESI                            ESI=0x80d006 ac06b2f14ab19794cdd0ca8d.exe\n0x00819F8B  8807                     MOV       [EDI], AL                     \n0x00819F8D  47                       INC       EDI                            EDI=0x7f1002 ac06b2f14ab19794cdd0ca8d.exe\n0x00819F8E  01DB                     ADD       EBX, EBX                       EBX=0xfffffffc\n0x00819F90  7507                     JNZ       0x9\n...\n```\n\n... and all its flaws. Now I am the world's greatest fan of cape's debugger and love nothing more than extol its virtues, but as much as I do love it and it is awesome, there is unfortunately a big limitation to it that I cannot help, as it is a limitation of the hardware and the operating system. It's best illustrated by this post: https://www.jwhitham.org/2016/01/x86-single-step-mode-how-slow-is-it.html\n\nAs you can see from the empirical results quoted in that blog, the execution slowdown for single-stepping on Windows 7 was around 33000 times! Doubtless the single-stepper there was quicker to execute its own code than cape's debugger, and it wouldn't surprise me if Windows 10 is even slower. But the bottom line is you will quickly find that when you set cape's debugger doing a 'full' trace then the slowdown is massive, such that when I just tried a full trace on a UPX-packed executable that ran for the default 200 seconds, the result was a trace of ~90MB in size and which contained ~1 million instructions. This represents a tiny fraction of the full execution of the UPX layer, never mind the underlying sample. As such you can see to capture the full UPX layer would take cape debugger maybe several days to capture. I can barely imagine how huge the text log file would be!\n\nThere is however the capability of harnessing Microsoft's Time Travel Debugging in cape. This is a technology that does not rely on single-stepping the cpu, rather dynamic code recompilation or emulation. As such it is much faster than cape's debugger. Microsoft also use a highly compressed trace capture format which keeps the resulting capture sizes manageable. It is possible to capture the full execution of the UPX layer this way. It also allows the capture of all of cape's monitor's instructions too, as long as cape's debugger is not used. Since the UPX unpacker does use cape's debugger, that won't work under TTD. But the passively captured payloads that are on by default do still work!\n\nTo enable TTD, first download the TTD binaries from Microsoft and extract them into the ``analyzer\\windows\\bin`` directory in cape. Then submit your sample with ``ttd=1`` and the sample will be launched with TTD traces captured to disk. After the job is complete you can manually start the vm to retrieve the .trc files.\nComment: Thank you so much for this answer with detailed and precise information! We tested the combination of settings you recommended and saw the magic of CAPE v2. Thanks once again.",
+  "Title: Libvirt is required but hypervisor dont use it\nBody: \n# Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n- [X] I am running the latest version\n- [X] I did read the README!\n- [X] I checked the documentation and found no answer\n- [X] I checked to make sure that this issue has not already been filed\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\n- [X] I have read and checked all configs (with all optional parts)\n\n\n# Expected Behavior\nQemuScreenshots processing module must check if libvirt stack is present/enabled before requiring it.\n\n# Current Behavior\nMy daemons reported an error at startup. Module added by https://github.com/kevoreilly/CAPEv2/pull/2255 added a feature to take screenshots. My hypervisor don't use it. [QemuScreenshots] is set to enabled = no in auxiliary.conf\n\n# Failure Information (for bugs)\n**Will edit and provide data soon (sorry expected to prepare a draft then missclicked on save)**\n\n## Steps to Reproduce\n\n- Start cape daemons\n- Startup is failling after reporting an error related to libvirt\n\n## Context\n\nLatest commit as of 20/01/2025\nProxmox Machinery\n\n**Will edit and provide data soon (sorry expected to prepare a draft then missclicked on save)**\n\n| Question         | Answer\n|------------------|--------------------\n| Git commit       | Type `$ git log \\| head -n1` to find out\n| OS version       | Ubuntu 16.04, Windows 10, macOS 10.12.3\n\n## Failure Logs\n\nPlease include any relevant log snippets or files here.\n\nComment: Hello, do you have any error? is very strange that this happens as if set to not, it shouldn't do nothing else than just show error that it can't import libvirt\nComment: Sorry we can close this. That new feature appeared to be the cause as it was always the last log I had. But after inspecting the code you are right. Seems unrelated will triple check the next time, seems a platform issue.\nComment: Ok thanks for feedback, I have disabled msg about missing dependency also",
+  "Title: Bump django from 4.2.17 to 4.2.18\nBody: Bumps [django](https://github.com/django/django) from 4.2.17 to 4.2.18.\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/django/django/commit/a7b0e50eadba8f0420013605c70eb790280b0fd2\"><code>a7b0e50</code></a> [4.2.x] Bumped version for 4.2.18 release.</li>\n<li><a href=\"https://github.com/django/django/commit/ad866a1ca3e7d60da888d25d27e46a8adb2ed36e\"><code>ad866a1</code></a> [4.2.x] Fixed CVE-2024-56374 -- Mitigated potential DoS in IPv6 validation.</li>\n<li><a href=\"https://github.com/django/django/commit/b0d309c9eb802cbc652595e2d413bb451e37f124\"><code>b0d309c</code></a> [4.2.x] Added stub release notes and release date for 4.2.18.</li>\n<li><a href=\"https://github.com/django/django/commit/39cf3c63f3228a04f101f3e62c75a6aae7c6ef0f\"><code>39cf3c6</code></a> [4.2.x] Cleaned up CVE-2024-53907 and CVE-2024-53908 security archive descrip...</li>\n<li><a href=\"https://github.com/django/django/commit/0ff19d12e7d240d871975432ce429616012aa35e\"><code>0ff19d1</code></a> [4.2.x] Added CVE-2024-53907 and CVE-2024-53908 to security archive.</li>\n<li><a href=\"https://github.com/django/django/commit/6c4fc7d6202b70ca20d21a62808e38b36bc50854\"><code>6c4fc7d</code></a> [4.2.x] Post-release version bump.</li>\n<li>See full diff in <a href=\"https://github.com/django/django/compare/4.2.17...4.2.18\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=django&package-manager=pip&previous-version=4.2.17&new-version=4.2.18)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Run mypy static analysis against agent\nBody: - A few changes to the agent to make mypy happy\r\n- Added mypy to github actions\nComment: gradually we can extend mypy type checking to other parts of the codebase, by adjusting the settings in `pyproject.toml`\nComment: thank you, is a good start",
+  "Title: virt-manager wont install\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\n\n## This is open source and you are getting __free__ support so be friendly!\n\n# Prerequisites\n\nPlease answer the following questions for yourself before submitting an issue.\n\n- [x] I am running the latest version\n- [x] I did read the README!\n- [x] I checked the documentation and found no answer\n- [x] I checked to make sure that this issue has not already been filed - there was an old one that was closed but not fixed.\n- [?] I'm reporting the issue to the correct repository (for multi-repository projects)- sorry new at github not sure how to do it\n- [x] I have read and checked all configs (with all optional parts)\n\n\n# Expected Behavior\n\nvirt-manager command opens kvm gui\n\n# Current Behavior\n\nwhen running virt-manager i get error:\n\nTraceback (most recent call last):\n  File \"/usr/local/bin/virt-manager\", line 6, in <module>\n    from virtManager import virtmanager\n  File \"/usr/local/share/virt-manager/virtManager/virtmanager.py\", line 16, in <module>\n    gi.require_version('LibvirtGLib', '1.0')\n  File \"/usr/lib/python3/dist-packages/gi/__init__.py\", line 126, in require_version\n    raise ValueError('Namespace %s not available' % namespace)\nValueError: Namespace LibvirtGLib not available\n\nI checket the common issues file and tried the fix:\nsudo ./kvm-qemu.sh libvirt \n\nI still get the same error.\n\nI've gone through all the posts i could find but didn't find a fix for it. \n\nand no i have not used any apt to poison it.\n\n# Failure Information (for bugs)\n\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\n\n## Steps to Reproduce\n\nPlease provide detailed steps for reproducing the issue.\n\n1. sudo ./kvm-qemu.sh all username | tee kvm-qemu.log\n2. sudo reboot\n3. sudo ./kvm-qemu.sh virtmanager username | tee kvm-qemu-virt-manager.log\n4. sudo reboot\n5. sudo virt-manager\n\n## Context\nComputer:\nIntel i5 9 gen\ngeforce 1080\nWindows 11 \n\nUsing Virtualbox 7.1.4 to Virtualize Ubuntu 22.0.4.1\nTrying to Install Capev2 that uses KVM to visualize win 10\n\n| Question         | Answer\n|------------------|--------------------\n| Git commit       | Type `$ git log \\| head -n1` to find out\n| OS version       | Ubuntu 22.04.01\n\n## Failure Logs\n\n[kvm-qemu.log](https://github.com/user-attachments/files/18445639/kvm-qemu.log)\n[kvm-qemu-libvirt.log](https://github.com/user-attachments/files/18445641/kvm-qemu-libvirt.log)\n[kvm-qemu-virt-manager.log](https://github.com/user-attachments/files/18445640/kvm-qemu-virt-manager.log)\nComment: \u6211\u4e5f\u9047\u5230\u4e00\u6a23\u554f\u984c\nComment: there is no issue in logs, so or some parts of output wasn't captured or something else is wrong, but without see error i can't see what is wrong on your side. i would suggest to rerun `sudo ./kvm-qemu.sh virtmanager > fulllog.txt` maybe that add some light about this issue, otherwise there is a docker for virt-manager\nComment: also check if you have installed `libvirt-glib-1.0-dev` if not, you can try to install it with `sudo apt install libvirt-glib-1.0-dev` BUT before press `y` check what it going to install, if it going to install libvirt0 or something like that, that will mess, so don't install it. it should be installed by script(from source)\n\n```\napt search libvirt-glib\n\ngir1.2-libvirt-glib-1.0/noble 5.0.0-2build3 amd64\n  GObject introspection files for the libvirt-glib library\n\nlibvirt-glib-1.0-0/noble 5.0.0-2build3 amd64\n  libvirt GLib and GObject mapping library\n\nlibvirt-glib-1.0-data/noble,noble 5.0.0-2build3 all\n  (none)\n\nlibvirt-glib-1.0-dev/noble 5.0.0-2build3 amd64\n  Development files for the libvirt-glib library\n```\nComment: follow in this issue https://github.com/kevoreilly/CAPEv2/issues/2322#issuecomment-2597309262\nComment: I seem to have that installed\n\n> apt search libvirt-glib\n\nFull Text Search... Done\ngir1.2-libvirt-glib-1.0/jammy 4.0.0-2 amd64\n  GObject introspection files for the libvirt-glib library\n\nlibvirt-glib-1.0-0/jammy 4.0.0-2 amd64\n  libvirt GLib and GObject mapping library\n\nlibvirt-glib-1.0-data/jammy,jammy 4.0.0-2 all\n  (none)\n\nlibvirt-glib-1.0-dev/jammy 4.0.0-2 amd64\n  Development files for the libvirt-glib library\n\nI looked at the other post about using apt to install libvirt-glip-1.0 with apt but for some reason can't locate it\n \nE: Unable to locate package libvirt-glib-1.0\nE: Couldn't find any package by glob 'libvirt-glib-1.0'\n\nShould i just switch to Ubuntu 24?\nAnd I using docker for this is not possible for my situation\nComment: if you doing a fresh install, then yes 24.04 is the way to go. i did recently deploy of both 22.04 and 24.04 and didn't have issues, see comments in the linked issue, i put how to debug the issue, so maybe you can get extra logs with that and we can find what is wrong on your side\nComment: I ran it line by line but didn't really catch any errors except those but they vanished when i switched sudo to the start. So not sure if they are related? Anw switched to Ubuntu 24 fresh install now so hoping I wont fall into the same problem.\n\ncd /tmp\nif [ ! -d \"virt-manager\" ]; then\n    git clone https://github.com/virt-manager/virt-manager.git\n    echo \"[+] Cloned Virt Manager repo\"\nfi\ncd virt-manager\n**meson setup build\nmeson install -C build**\n+ cd /tmp\n+ '[' '!' -d virt-manager ']'\n+ cd virt-manager\n+ meson setup build\nDirectory already configured.\n\nJust run your build command (e.g. ninja) and Meson will regenerate as necessary.\nRun \"meson setup --reconfigure\" to force Meson to regenerate.\n\nIf build failures persist, run \"meson setup --wipe\" to rebuild from scratch\nusing the same options as passed when configuring the build.\n+ meson install -C build\nninja: Entering directory `/tmp/virt-manager/build'\nninja: no work to do.\nTraceback (most recent call last):\n  File \"/usr/local/lib/python3.10/dist-packages/mesonbuild/mesonmain.py\", line 193, in run\n    return options.run_func(options)\n  File \"/usr/local/lib/python3.10/dist-packages/mesonbuild/minstall.py\", line 861, in run\n    with open(os.path.join(log_dir, 'install-log.txt'), 'w', encoding='utf-8') as lf:\nPermissionError: [Errno 13] Permission denied: 'meson-private/../meson-logs/install-log.txt'\n\nERROR: Unhandled python OSError. This is probably not a Meson bug, but an issue with your build environment.\n\nuser@CapeV2:/tmp$ cd virt-manager\n**meson setup build\nmeson install -C build**\nDirectory already configured.\n\nJust run your build command (e.g. ninja) and Meson will regenerate as necessary.\nRun \"meson setup --reconfigure\" to force Meson to regenerate.\n\nIf build failures persist, run \"meson setup --wipe\" to rebuild from scratch\nusing the same options as passed when configuring the build.\nninja: Entering directory `/tmp/virt-manager/build'\nninja: no work to do.\nTraceback (most recent call last):\n  File \"/usr/local/lib/python3.10/dist-packages/mesonbuild/mesonmain.py\", line 193, in run\n    return options.run_func(options)\n  File \"/usr/local/lib/python3.10/dist-packages/mesonbuild/minstall.py\", line 870, in run\n    installer.do_install(datafilename)\n  File \"/usr/local/lib/python3.10/dist-packages/mesonbuild/minstall.py\", line 550, in do_install\n    self.install_targets(d, dm, destdir, fullprefix)\n  File \"/usr/local/lib/python3.10/dist-packages/mesonbuild/minstall.py\", line 747, in install_targets\n    file_copied = self.do_copyfile(fname, outname, makedirs=(dm, outdir))\n  File \"/usr/local/lib/python3.10/dist-packages/mesonbuild/minstall.py\", line 409, in do_copyfile\n    self.remove(to_file)\n  File \"/usr/local/lib/python3.10/dist-packages/mesonbuild/minstall.py\", line 308, in remove\n    os.remove(*args, **kwargs)\nPermissionError: [Errno 13] Permission denied: '/usr/local/share/man/man1/virt-install.1'\nInstalling man/virt-install.1 to /usr/local/share/man/man1\n\nERROR: Unhandled python OSError. This is probably not a Meson bug, but an issue with your build environment.\n\n\nComment: you need to run it as root not as regular user, so first run `sudo su` then those commands",
+  "Title: Make sure to ignore the stuff under custom/\nBody: None",
+  "Title: Import all, windows, and linux custom signatures if available.\nBody: None",
+  "Title: Upload download folder for URLs analysis\nBody: None",
+  "Title: restore behavior defaults to a dictionary\nBody: Prior to PR #2454, behavioral data defaulted to a dictionary pointing to a list. The PR changed it to an empty list. This is expected to be a dictionary everywhere, and most code expects the \"processes\" key to exist and either be empty or have process data in it.\r\n\r\nThe specific commit this changed in is https://github.com/kevoreilly/CAPEv2/commit/11fb7b1964ae0836e1a69ec3734c346594b08a2e.\nComment: Thanks Nick",
+  "Title: Update Arkei.yar Yara Rule\nBody: Update Arkei.yar Yara Rule\nComment: @kevoreilly I found out if this is merged then Arkei payloads will show matches for both Arkei and StealC. You might want to take a different approach but perhaps you might want to tighten the StealC yara rule so it doesn't match Arkei samples? I uploaded an unpacked Arkei sample into the test files repo at https://github.com/CAPESandbox/CAPE-TestFiles/blob/main/malware/69ba4e2995d6b11bb319d7373d150560ea295c02773fe5aa9c729bfd2c334e1e\nComment: Thanks @YungBinary I hope to get round to tightening the Stealc detection at some point! I will need to take a good look at how to differentiate between the two families.",
+  "Title: yara_detect\nBody: None",
+  "Title: Update CAPE.py\nBody: Fix, that prevents extracted files from being ignored for detection.",
+  "Title: Ignore the data/ binaries that could be pulled in from the community repo.\nBody: I'm not sure exactly how people deploy these self-extraction binaries, but it seemed like if they get deployed to the places that are defined in conf/default/selfextract.conf.default but don't exist in this repo, then they should be in .gitignore.",
+  "Title: load behavior from json\nBody: None",
+  "Title: nsis\nBody: None",
+  "Title: check for MongoDB code 15 Overflow too\nBody: Follow up on #2396, check for nested object overflows too.",
+  "Title: ValueError: Too many values \u200b\u200bto unpack (expected 4)\nBody: # Current behavior\r\nI uploaded a file to scan for \"Ransomware.WannaCry\" and encountered this problem\r\n\"ValueError: Too many values \u200b\u200bto unpack (expected 4)\"\r\nI also scanned some \"ps1 files\" and didn't encounter any problems.\r\n\r\nupdated on 2025/01/08\r\ngit pull origin master\r\npip3 install -r requirements.txt\r\n\r\n## Failure Logs\r\n\r\nValueError\r\n\r\nValueError: too many values to unpack (expected 4)\r\nTraceback (most recent call last)\r\n\r\nThis is the Copy/Paste friendly version of the traceback.\r\n\r\nTraceback (most recent call last):\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/contrib/staticfiles/handlers.py\", line 80, in __call__\r\n    return self.application(environ, start_response)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/wsgi.py\", line 124, in __call__\r\n    response = self.get_response(request)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/base.py\", line 140, in get_response\r\n    response = self._middleware_chain(request)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/exception.py\", line 57, in inner\r\n    response = response_for_exception(request, exc)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/exception.py\", line 140, in response_for_exception\r\n    response = handle_uncaught_exception(\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/exception.py\", line 181, in handle_uncaught_exception\r\n    return debug.technical_500_response(request, *exc_info)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django_extensions/management/technical_response.py\", line 40, in null_technical_500_response\r\n    raise exc_value.with_traceback(tb)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/exception.py\", line 55, in inner\r\n    response = get_response(request)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/base.py\", line 197, in _get_response\r\n    response = wrapped_callback(request, *callback_args, **callback_kwargs)\r\n  File \"/opt/CAPEv2/web/submission/views.py\", line 560, in index\r\n    task_id = db.add_static(file_path=path, priority=priority, tlp=tlp, options=options, user_id=request.user.id or 0)\r\n  File \"/opt/CAPEv2/web/web/../../lib/cuckoo/core/database.py\", line 1714, in add_static\r\n    extracted_files, demux_error_msgs = demux_sample(file_path, package, options)\r\n  File \"/opt/CAPEv2/web/web/../../lib/cuckoo/common/demux.py\", line 337, in demux_sample\r\n    for filename, platform, magic_type, file_size in retlist:\r\nValueError: too many values to unpack (expected 4)\r\n\r\n\r\n\nComment: Hash?\nComment: I sincerely apologize for the oversight in not providing the MD5 hash yesterday due to the rush. I deeply regret any inconvenience this may have caused and appreciate your understanding.\r\n\r\nRansomware.WannaCry.zip\r\nmd5 efe76bf09daba2c594d2bc173d9b5cf0  \r\nsha1 ba5de52939cb809eae10fdbb7fac47095a9599a7  \r\nsha256 707a9f323556179571bc832e34fa592066b1d5f2cac4a7426fe163597e3e618a  \r\n\r\nref: [https://any.run/report/707a9f323556179571bc832e34fa592066b1d5f2cac4a7426fe163597e3e618a/91bfa3a9-9285-41a6-8fdf-6ccaf3f43246]\r\n\r\ndoomedraven ***@***.***> \u65bc 2025\u5e741\u67089\u65e5 \u9031\u56db \u4e0a\u53482:42\u5beb\u9053\uff1a\r\n\r\n> Hash?\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2451#issuecomment-2578371281>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/BK24IGHKXD2R4RMJVXVBCCD2JVWRHAVCNFSM6AAAAABUZOOXV6VHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDKNZYGM3TCMRYGE>\r\n> .\r\n> You are receiving this because you authored the thread.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: hello, thank you for hashes, i just tested it here, it works here, so something must be wrong on your side.\r\nso you doing use poetry? asking as you specified `pip3 install -r requirements.txt`. We use `sflock2` library to handle archives, can you try next, in case if you don't use poetry remove the prefixes `poetry run`:\r\n```\r\n# as cape user\r\npoetry run pip install sflock2 -U \r\n\r\n# as root\r\nsystemctl restart cape-web\r\n```\r\n\r\nupload your sample again and check if you have the issue\nComment: Thanks for your reply. \r\nI tried your method \r\npoetry run pip install sflock2 -U \r\nbut the problem is still not solved. I reinstalled cape. T_T\r\n\nComment: Does reinstall works?\r\n\r\nEl jue, 9 ene 2025, 8:36, Waason ***@***.***> escribi\u00f3:\r\n\r\n> Thanks for your reply.\r\n> I tried your method\r\n> poetry run pip install sflock2 -U\r\n> but the problem is still not solved. I reinstalled cape. T_T\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2451#issuecomment-2579348758>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH34FSCBCESGNQZJCNX32JYRIDAVCNFSM6AAAAABUZOOXV6VHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDKNZZGM2DQNZVHA>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: \r\nI encountered a problem when rebuilding kvm-qemu.sh.\r\nIn execution\r\n`sudo ./kvm-qemu.sh virtmanager <username> | tee kvm-qemu-virt-manager.log`\r\n[kvm-qemu-virtmanager.log](https://github.com/user-attachments/files/18378902/kvm-qemu-virtmanager.log)\r\nAfter that, virt-manager could not run normally.\r\nchatGPT said that  is missing\r\n`aptitude install -f libvirt-glib-1.0-0 gir1.2-libvirt-glib-1.0 -y`\r\n\r\nFailure Logs\r\n\r\n```\r\n  cape@cape-2025:~/CAPEv2/installer$ virt-manager \r\nTraceback (most recent call last):\r\n  File \"/usr/local/bin/virt-manager\", line 6, in <module>\r\n    from virtManager import virtmanager\r\n  File \"/usr/local/share/virt-manager/virtManager/virtmanager.py\", line 16, in <module>\r\n    gi.require_version('LibvirtGLib', '1.0')\r\n  File \"/usr/lib/python3/dist-packages/gi/__init__.py\", line 126, in require_version\r\n    raise ValueError('Namespace %s not available' % namespace)\r\nValueError: Namespace LibvirtGLib not available\r\ncape@cape-2025:~/CAPEv2/installer$ \r\n```\r\n\r\n\nComment: That is also in docs of the script if you run -h you will see it has section issues\nComment: But that is there so there so etching else on your side that generate the problem before of that\nComment: any update here?\nComment: I used the 2024/10 installed version to upgrade capev2, which worked, but\r\nwhen I installed the 2025/01 version of qemu, the problem was still as\r\ndescribed above. Later, I also asked virt-manager github , and he said the\r\nproblem libvirt-glib was missing. I tried to install it myself but couldn't\r\nfix it.\r\n\ud83d\ude2d\ud83d\ude2d\ud83d\ude2d\r\n\r\n\r\n\r\ndoomedraven ***@***.***>\u65bc 2025\u5e741\u670815\u65e5 \u9031\u4e09\uff0c15:15\u5beb\u9053\uff1a\r\n\r\n> any update here?\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2451#issuecomment-2591806706>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/BK24IGCWB4BZZIHHBJOEWNL2KYDHLAVCNFSM6AAAAABUZOOXV6VHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDKOJRHAYDMNZQGY>\r\n> .\r\n> You are receiving this because you authored the thread.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: well i was asking about cape, for virt-manager you cans see another issue where we we spot what it was + if you can't fix it there is docker suggestion for virt-manager\nComment: Other questions\nFailed when doing static scanning\n\nFailure Logs\n\n \u4e00  17 05:39:05 cape-200 python3[2010]: 2025-01-17 05:39:05,668 [root] INFO: Processing analysis data for Task #7\n \u4e00  17 05:39:05 cape-200 python3[2010]: Missed dependency: install pyattck library, see requirements for proper version\n \u4e00  17 05:39:05 cape-200 python3[2010]: pip3 install certvalidator asn1crypto mscerts\n \u4e00  17 05:39:05 cape-200 python3[2010]: FLARE-CAPA missed or incompatible version. Run: poetry install\n \u4e00  17 05:39:08 cape-200 python3[5228]: 2025-01-17 05:39:08,824 [Task 7] [lib.cuckoo.common.integrations.virustotal] ERROR: VT: Request failed\n \u4e00  17 05:39:09 cape-200 python3[5228]: 2025-01-17 05:39:09,268 [Task 7] [modules.processing.behavior] WARNING: Analysis results folder does not exist at path \"/opt/CAPEv2/storage/analyses/7/logs\"\n \u4e00  17 05:39:09 cape-200 python3[5228]: 2025-01-17 05:39:09,272 [Task 7] [root] ERROR: Memory dump not found: to run volatility you have to enable memory_dump\n \u4e00  17 05:39:09 cape-200 python3[2010]: 2025-01-17 05:39:09,281 [root] ERROR: [7] Exception when processing task: 'list' object has no attribute 'get'\n \u4e00  17 05:39:09 cape-200 python3[2010]: pebble.common.RemoteTraceback: Traceback (most recent call last):\n \u4e00  17 05:39:09 cape-200 python3[2010]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/pebble/common.py\", line 174, in process_execute\n \u4e00  17 05:39:09 cape-200 python3[2010]:     return function(*args, **kwargs)\n \u4e00  17 05:39:09 cape-200 python3[2010]:   File \"/opt/CAPEv2/utils/process.py\", line 137, in process\n \u4e00  17 05:39:09 cape-200 python3[2010]:     RunSignatures(task=task_dict, results=results).run()\n \u4e00  17 05:39:09 cape-200 python3[2010]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 673, in run\n \u4e00  17 05:39:09 cape-200 python3[2010]:     malscore, malstatus = calc_scoring(self.results, matched)\n \u4e00  17 05:39:09 cape-200 python3[2010]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/common/scoring.py\", line 156, in calc_scoring\n \u4e00  17 05:39:09 cape-200 python3[2010]:     if results.get(\"behavior\", {}).get(\"processtree\", []):\n \u4e00  17 05:39:09 cape-200 python3[2010]: AttributeError: 'list' object has no attribute 'get'\n \u4e00  17 05:39:09 cape-200 python3[2010]: The above exception was the direct cause of the following exception:\n \u4e00  17 05:39:09 cape-200 python3[2010]: Traceback (most recent call last):\n \u4e00  17 05:39:09 cape-200 python3[2010]:   File \"/opt/CAPEv2/utils/process.py\", line 286, in processing_finished\n \u4e00  17 05:39:09 cape-200 python3[2010]:     _ = future.result()\n \u4e00  17 05:39:09 cape-200 python3[2010]:   File \"/usr/lib/python3.10/concurrent/futures/_base.py\", line 451, in result\n \u4e00  17 05:39:09 cape-200 python3[2010]:     return self.__get_result()\n \u4e00  17 05:39:09 cape-200 python3[2010]:   File \"/usr/lib/python3.10/concurrent/futures/_base.py\", line 403, in __get_result\n \u4e00  17 05:39:09 cape-200 python3[2010]:     raise self._exception\n \u4e00  17 05:39:09 cape-200 python3[2010]: AttributeError: 'list' object has no attribute 'get'\n\n----\n \u4e00  17 05:00:05 cape-200 python3[2012]:  www.cuckoosandbox.org\n \u4e00  17 05:00:05 cape-200 python3[2012]:  Copyright (c) 2010-2015\n \u4e00  17 05:00:05 cape-200 python3[2012]:  CAPE: Config and Payload Extraction\n \u4e00  17 05:00:05 cape-200 python3[2012]:  github.com/kevoreilly/CAPEv2\n \u4e00  17 05:00:07 cape-200 python3[2545]: /usr/bin/tcpdump\n \u4e00  17 05:00:07 cape-200 python3[2012]: 2025-01-17 05:00:07,780 [lib.cuckoo.core.machinery_manager] INFO: Using MachineryManager[kvm] with max_machines_count=10\n \u4e00  17 05:00:07 cape-200 python3[2012]: 2025-01-17 05:00:07,780 [lib.cuckoo.core.scheduler] INFO: Creating scheduler with max_analysis_count=unlimited\n \u4e00  17 05:00:07 cape-200 python3[2012]: 2025-01-17 05:00:07,842 [lib.cuckoo.core.machinery_manager] INFO: Loaded 1 machine\n \u4e00  17 05:00:07 cape-200 python3[2012]: 2025-01-17 05:00:07,917 [lib.cuckoo.core.machinery_manager] INFO: max_vmstartup_count for BoundedSemaphore = 5\n \u4e00  17 05:00:07 cape-200 python3[2012]: 2025-01-17 05:00:07,919 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks\n \u4e00  17 05:39:05 cape-200 python3[2012]: 2025-01-17 05:39:05,039 [lib.cuckoo.core.scheduler] INFO: Task #7: Processing task\n \u4e00  17 05:39:05 cape-200 python3[2012]: 2025-01-17 05:39:05,106 [lib.cuckoo.core.analysis_manager] INFO: Task #7: File already exists at '/opt/CAPEv2/storage/binaries/704ebc20fe0c7678a2b73d97ba6ad2945ece3a7d35ba0e0a394b629570af00ca'\n \u4e00  17 05:39:05 cape-200 python3[2012]: 2025-01-17 05:39:05,121 [lib.cuckoo.core.analysis_manager] INFO: Task #7: Completed analysis successfully.\n \u4e00  17 05:39:05 cape-200 python3[2012]: 2025-01-17 05:39:05,127 [lib.cuckoo.core.analysis_manager] INFO: Task #7: analysis procedure completed\n\n![Image](https://github.com/user-attachments/assets/7a7c88ce-61c0-4acb-b3cc-e5143bb61169)\n\nfile https://  github.com/ionuttbara/windows-defender-remover/releases/download/release_def_12_8/DefenderRemover.exe\nmd5 879e3d30cc1392370ab0eec1601aa1b6\n\n\n\nComment: i would say that you are on outdated cape. update to latest with `git pull` and restart processing `sudo systemctl restart cape-processor`\nComment: follow in this issue about virt-manager https://github.com/kevoreilly/CAPEv2/issues/2322#issuecomment-2597309262",
+  "Title: nginx installation from cape2.sh\nBody: nginx does not install because of invalid zlib downloading URL, which is used in `make` of nginx, with current cape2.sh script.\r\n\nComment: without thanks for headups, updated link",
+  "Title: Introducing wmi_etw auxiliary module\nBody: During the analysis of a sample, we observed that it could modify the Registry contents, but Cape was unable to detect this activity (tracing WMI StdRegProv::CreateKey calls). After conducting a manual analysis, we discovered that the sample initiated a Registry modification request through WMI APIs, which Cape seems unable to properly track. To address this, we developed a plugin, *wmi_etw.py*, that enables the tracking of WMI activity via ETW. The code is based on the existing *dns_etw.py* plugin and saves the log trace in *aux/wmi_etw.json*. It is important to note that, like the *dns_etw.py* plugin, it requires the installation of the *pywintrace* Python package within the test VM to function correctly.\nComment: Very interesting! Thank you. Any chance you could share the example sample mentioned? Or its hash!\nComment: hash: 0a06a25efb1dfea94e24096f64b40cc3661ef97a0de194fd83d2ca8d9a3648cc\r\nOur sample come from VT, but it seems available also from open-source repositories\nComment: thank you very much, we need to add entry to aux config to load it, i will add it after the dinner\nComment: \\cc FYI @dsecuma \nComment: > \\cc FYI @dsecuma\r\n\r\nThank you. I will take a look at this in the coming days, cool @IridiumXOR.\r\n\r\n",
+  "Title: django.urls.exceptions.NoReverseMatch\nBody: # Current Behavior\r\nI encountered two issues after completing the installation on Friday, 2025/01/03:\r\n\r\nThe first issue: During the first file scan, I monitored the cape system status using journalctl, and everything seemed normal. However, when the report was returned, I encountered the error \"django.urls.exceptions.NoReverseMatch.\" Could you please advise me on how to resolve this? I have attached the file \"django.urls.exceptions.NoReverseMatch.zip\" and a screenshot (p1.png) for reference.\r\n\r\nThe second issue: After installing the new version of kvm-qemu.sh, the virt-manager could not be installed correctly, which caused the desktop to fail to open. I am currently using the old version of kvm-qemu.sh (from October 2024) for installation, and it works fine.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| OS version       | ubuntu-22.04.4-desktop-amd64\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n[django.urls.exceptions.NoReverseMatch.zip](https://github.com/user-attachments/files/18313379/django.urls.exceptions.NoReverseMatch.zip)\r\n![p1](https://github.com/user-attachments/assets/d21146d1-7236-4317-969e-73eea4abd2b4)\r\n\r\n\nComment: I have the same problem on my machine.\r\n\r\n![image](https://github.com/user-attachments/assets/c762b410-ab04-46ac-80ae-24151c39ba61)\r\n\nComment: did you update to latest cape? aka git pull? and restarted processing? there was regression issue, but it was fixed here https://github.com/kevoreilly/CAPEv2/pull/2446\nComment: Okay, I'll try it, thank you very much\nComment: > did you update to latest cape? aka git pull? and restarted processing? there was regression issue, but it was fixed here #2446\r\n\r\nIt worked, thank you.\nComment: It worked, thank you  very much ^_^\nComment: thanks for confirmation\nComment: I encountered this issue on a recent  version with Ubuntu 24.04, is there a fix or a workaround ?",
+  "Title: How to use malware parsers (mwcp, RATdecoders, malduck, MACO, cape-parsers), and what are the things that need to be configured to run the functions of these malware parsers?\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\nI don't know with the detailed how to use the malware parser function on this latest CAPEv2 version. I hope to gain more insights regarding the use of these malware parser functions.\r\n\r\n# Current Behavior\r\nSome of function that I have enabled run normally, and no problem at all, I'm just confused about how to use the malware parser.\nComment: Can you be more specific? Have you installed cape-parsers from their own repository as explained in the changelog recently?\r\n\r\nWe need specific details and machine output for your issue to be able to help.\nComment: to run those, just enable those in config https://github.com/kevoreilly/CAPEv2/blob/master/conf/default/processing.conf.default#L294-L316 in your case is in /opt/CAPEv2/conf/processing.conf. Then restart processing with `systemctl restart cape-processor` and run your malware samples in sandbbox, thats all\nComment: > Can you be more specific? Have you installed cape-parsers from their own repository as explained in the changelog recently?\r\n> \r\n> We need specific details and machine output for your issue to be able to help.\r\n\r\nI've done the installation of `CAPE-parsers, MACO, malduck, RAT-king-parser, MWCP, RATDecoders (a.k.a malwareconfig)`\r\n\r\n![image](https://github.com/user-attachments/assets/d67bd72a-44ed-4a76-8bc8-f98226ea89f6)\r\n![image](https://github.com/user-attachments/assets/4423b116-efb9-44bc-aa32-aa66626ed167)\r\n\r\nBut the thing I'm confused is where the parser file is used, and how it works, and how to update the parser file when there is an update?\r\n\r\nDuring this way I use and know is to run the command `poetry run python3 utils/community.py -waf` , in addition I also add a CAPE-parser directory sourced from `https://github.com/CAPESandbox/CAPE-parsers/tree/main/cape_parsers` into the directory `/opt/CAPEv2/modules/processing/processing/parsers` \r\n\r\n![image](https://github.com/user-attachments/assets/b00a99e9-1ff8-4dc9-bb99-69b1e6156867)\r\n\r\nIs the way I do right? I asked you for your feedback, thank you very much!\r\n\nComment: well you going too far from what you need, you just need:\r\n1. use `poetry install` it will install [cape-parsers](https://github.com/CAPESandbox/CAPE-parsers)\r\n2. and restart processing by `systemctl restart cape-processor`\r\n\r\nso if you just a user and not writting configs, just follow those 2 steps, if you write a parsers, then if you will contribbute, subbmit pull request of parser and unittest + sample to [test files](https://github.com/CAPESandbox/CAPE-TestFiles). If you gonna use pure python private parsers, just places them under `custom/parsers`.\r\n\r\nabout more details how it was loading in past you can find here, https://www.doomedraven.com/2020/02/cape-sandbox-config-extraction.html everything still pretty similar, but we just moved them to external folder\nComment: > well you going too far from what you need, you just need:\r\n> \r\n> 1. use `poetry install` it will install [cape-parsers](https://github.com/CAPESandbox/CAPE-parsers)\r\n> 2. and restart processing by `systemctl restart cape-processor`\r\n> \r\n> so if you just a user and not writting configs, just follow those 2 steps, if you write a parsers, then if you will contribbute, subbmit pull request of parser and unittest + sample to [test files](https://github.com/CAPESandbox/CAPE-TestFiles). If you gonna use pure python private parsers, just places them under `custom/parsers`.\r\n> \r\n> about more details how it was loading in past you can find here, https://www.doomedraven.com/2020/02/cape-sandbox-config-extraction.html everything still pretty similar, but we just moved them to external folder\r\n\r\nOkay, big thanks. So, I don't need adding the [CAPE parser directories](https://github.com/CAPESandbox/CAPE-parsers/tree/main/cape_parsers) into `/opt/CAPEv2/modules/processing/parsers` ? Or, should I still do that?\nComment: No, you don't need to, you just submit your malware and enjoy free results\r\n:)\r\n\r\nEl lun, 13 ene 2025, 6:06, superonion7890 ***@***.***>\r\nescribi\u00f3:\r\n\r\n> well you going too far from what you need, you just need:\r\n>\r\n>    1. use poetry install it will install cape-parsers\r\n>    <https://github.com/CAPESandbox/CAPE-parsers>\r\n>    2. and restart processing by systemctl restart cape-processor\r\n>\r\n> so if you just a user and not writting configs, just follow those 2 steps,\r\n> if you write a parsers, then if you will contribbute, subbmit pull request\r\n> of parser and unittest + sample to test files\r\n> <https://github.com/CAPESandbox/CAPE-TestFiles>. If you gonna use pure\r\n> python private parsers, just places them under custom/parsers.\r\n>\r\n> about more details how it was loading in past you can find here,\r\n> https://www.doomedraven.com/2020/02/cape-sandbox-config-extraction.html\r\n> everything still pretty similar, but we just moved them to external folder\r\n>\r\n> Okay, big thanks. So, I don't need adding the CAPE parser directories\r\n> <https://github.com/CAPESandbox/CAPE-parsers/tree/main/cape_parsers> into\r\n> /opt/CAPEv2/modules/processing/parsers ? Or, should I still do that?\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2447#issuecomment-2586182493>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3YPPUNBZHRKASURIXD2KNCVTAVCNFSM6AAAAABUT3YZNSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDKOBWGE4DENBZGM>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: > No, you don't need to, you just submit your malware and enjoy free results :) El lun, 13 ene 2025, 6:06, superonion7890 ***@***.***> escribi\u00f3:\r\n> [\u2026](#)\r\n> well you going too far from what you need, you just need: 1. use poetry install it will install cape-parsers <https://github.com/CAPESandbox/CAPE-parsers> 2. and restart processing by systemctl restart cape-processor so if you just a user and not writting configs, just follow those 2 steps, if you write a parsers, then if you will contribbute, subbmit pull request of parser and unittest + sample to test files <https://github.com/CAPESandbox/CAPE-TestFiles>. If you gonna use pure python private parsers, just places them under custom/parsers. about more details how it was loading in past you can find here, https://www.doomedraven.com/2020/02/cape-sandbox-config-extraction.html everything still pretty similar, but we just moved them to external folder Okay, big thanks. So, I don't need adding the CAPE parser directories <https://github.com/CAPESandbox/CAPE-parsers/tree/main/cape_parsers> into /opt/CAPEv2/modules/processing/parsers ? Or, should I still do that? \u2014 Reply to this email directly, view it on GitHub <[#2447 (comment)](https://github.com/kevoreilly/CAPEv2/issues/2447#issuecomment-2586182493)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAOFH3YPPUNBZHRKASURIXD2KNCVTAVCNFSM6AAAAABUT3YZNSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDKOBWGE4DENBZGM> . You are receiving this because you commented.Message ID: ***@***.***>\r\n\r\nOkay, thank you very much!",
+  "Title: Don't overwrite the 'target' key for every detonation.\nBody: This fixes a regression introduced in https://github.com/kevoreilly/CAPEv2/commit/d896e8d50f70216ab9847b2880f63eff6828fab1 where every file detonation now has {\"category\": \"url\"} as the entire content of the \"target\" key. This removes all of the information about the target file.\nComment: Thank you\nComment: damn, thanks Tommy, i did test but didn't get any problem, should have something wrong %)",
+  "Title: capesandbox.com is down\nBody: The website is down and it's linked in the readme.\nComment: we know",
+  "Title: VirusTotal and the NSIS Integrity Check function\nBody: I tried searching the web and even consulting with AI and couldn't find an answer to this.\r\n\r\nVirusTotal is using CAPEv2 to scan EXE files.\r\nI submitted an [installer I created myself](https://www.virustotal.com/gui/file/829935a6a2bed88deae0adc4ba9a4895d3a0ce977da93c245a17435835e5c792) using NSIS and then digitally signed the resulting EXE with a code signing certificate.\r\n\r\nVirusTotal is reporting that CAPEv2's \"NSIS Integrity Check function\" (see below) is being triggered.\r\n\r\nI am trying to figure out why this rule is triggered, could it possibly be the code signing certificate? And if it is, is there a way to work around this issue? It doesn't make sense for VirusTotal to report every signed NSIS EXE as suffering from an integrity check issue.\r\n\r\nHere's a direct link to the installer EXE:\r\nhttps://www.zptechnology.com/download/zp2000max.exe\r\n\r\nP.S.\r\nI directly contacted VirusTotal on this issue, but it would really help to have your insight.\r\n\r\n```\r\nrule NSIS\r\n{\r\n    meta:\r\n        author = \"kevoreilly\"\r\n        description = \"NSIS Integrity Check function\"\r\n        cape_options = \"exclude-apis=LdrLoadDll\"\r\n        hash = \"d0c1e946f02503a290d24637b5c522145f58372a9ded9e647d24cd904552d235\"\r\n    strings:\r\n        $check = {6A 1C 8D 45 [3-8] E8 [4] 8B 45 ?? A9 F0 FF FF FF 75 ?? 81 7D ?? EF BE AD DE 75 ?? 81 7D ?? 49 6E 73 74 75 ?? 81 7D ?? 73 6F 66 74 75 ?? 81 7D ?? 4E 75 6C 6C 75 ?? 09 45 08 8B 45 08 8B 0D [4] 83 E0 02 09 05 [4] 8B 45 ?? 3B C6 89 0D [4] 0F 8? [2] 00 00 F6 45 08 08 75 06 F6 45 08 04 75}\r\n    condition:\r\n        uint16(0) == 0x5A4D and all of them\r\n}\r\n```\r\n\nComment: This feels like deja vu... but this is definitely the place to get the answer, although is it the right question? I don't think so.\r\n\r\nThe reason it's detected it because that is the singular unique goal of the yara signature. Why is that a problem? Probably because somewhere this is being misinterpreted as some sort of judgment as to whether it's malicious or not. But that isn't cape's problem! As far as this sandbox is concerned, there is a technical reason (detonation success) that depends upon it. That is it, all and everything. It doesn't mean it's malicious, nor benign. It's literally like a mechanical cog in a machine where its absence would mean a failure of detonation for any nsis executable, no more, no less.\nComment: From what I understand from your response, you believe that VirusTotal is mishandling the result of this rule or not making it clear enough that the result is not indicative of a safety warning, especially if the file is signed with a coding certificate.\r\n\r\nAny chance you have contacts in VirusTotal that can be persuaded to change the way in which the results of this rule are presented?\nComment: I'm not sure what exactly you mean by 'mishandling' - reporting that the yara signature matches is not enough to say that. It is only if there is an explicit marker for maliciousness that it could be categorically called a mistake. I can't comment on the VirusTotal side too much other than to say that this signature is not an indicator of maliciousness or otherwise.\r\n\r\nI know a few contributors with contacts at VT - I will try raise the inclusion of the moinitor yara signatures to see if this is really what is intended since this is a distinct collection of yara signatures that exists for ingestion by the sandbox only. They are not intended for classification or a verdict of maliciousness. \nComment: P.S. unfortunately the presence of a valid digital signature makes no difference here - this signature checks for the presence of very specific code bytes which are unique to NSIS and which appear in all NSIS exes:\r\n\r\n![image](https://github.com/user-attachments/assets/6fe54a8f-8774-4c44-b832-b9c234b3f184)\r\n\r\nIt's like a code fingerprint. The reason this signature is needed in CAPE is that without it, NSIS archives fail to detonate due to the presence of an API hook on the ntdll function ``LdrLoadDll``. The hook and NSIS do not get on and so it's necessary to disable the hook to allow NSIS archives to run in the sandbox. This is achieved with the ``cape_options`` metadata string ``exclude-apis=LdrLoadDll``.",
+  "Title: Bump jinja2 from 3.1.4 to 3.1.5\nBody: Bumps [jinja2](https://github.com/pallets/jinja) from 3.1.4 to 3.1.5.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a href=\"https://github.com/pallets/jinja/releases\">jinja2's releases</a>.</em></p>\n<blockquote>\n<h2>3.1.5</h2>\n<p>This is the Jinja 3.1.5 security fix release, which fixes security issues and bugs but does not otherwise change behavior and should not result in breaking changes compared to the latest feature release.</p>\n<p>PyPI: <a href=\"https://pypi.org/project/Jinja2/3.1.5/\">https://pypi.org/project/Jinja2/3.1.5/</a>\nChanges: <a href=\"https://jinja.palletsprojects.com/changes/#version-3-1-5\">https://jinja.palletsprojects.com/changes/#version-3-1-5</a>\nMilestone: <a href=\"https://github.com/pallets/jinja/milestone/16?closed=1\">https://github.com/pallets/jinja/milestone/16?closed=1</a></p>\n<ul>\n<li>The sandboxed environment handles indirect calls to <code>str.format</code>, such as by passing a stored reference to a filter that calls its argument. <a href=\"https://github.com/pallets/jinja/security/advisories/GHSA-q2x7-8rv6-6q7h\">GHSA-q2x7-8rv6-6q7h</a></li>\n<li>Escape template name before formatting it into error messages, to avoid issues with names that contain f-string syntax. <a href=\"https://redirect.github.com/pallets/jinja/issues/1792\">#1792</a>, <a href=\"https://github.com/pallets/jinja/security/advisories/GHSA-gmj6-6f8f-6699\">GHSA-gmj6-6f8f-6699</a></li>\n<li>Sandbox does not allow <code>clear</code> and <code>pop</code> on known mutable sequence types. <a href=\"https://redirect.github.com/pallets/jinja/issues/2032\">#2032</a></li>\n<li>Calling sync <code>render</code> for an async template uses <code>asyncio.run</code>. <a href=\"https://redirect.github.com/pallets/jinja/issues/1952\">#1952</a></li>\n<li>Avoid unclosed <code>auto_aiter</code> warnings. <a href=\"https://redirect.github.com/pallets/jinja/issues/1960\">#1960</a></li>\n<li>Return an <code>aclose</code>-able <code>AsyncGenerator</code> from <code>Template.generate_async</code>. <a href=\"https://redirect.github.com/pallets/jinja/issues/1960\">#1960</a></li>\n<li>Avoid leaving <code>root_render_func()</code> unclosed in <code>Template.generate_async</code>. <a href=\"https://redirect.github.com/pallets/jinja/issues/1960\">#1960</a></li>\n<li>Avoid leaving async generators unclosed in blocks, includes and extends. <a href=\"https://redirect.github.com/pallets/jinja/issues/1960\">#1960</a></li>\n<li>The runtime uses the correct <code>concat</code> function for the current environment when calling block references. <a href=\"https://redirect.github.com/pallets/jinja/issues/1701\">#1701</a></li>\n<li>Make <code>|unique</code> async-aware, allowing it to be used after another async-aware filter. <a href=\"https://redirect.github.com/pallets/jinja/issues/1781\">#1781</a></li>\n<li><code>|int</code> filter handles <code>OverflowError</code> from scientific notation. <a href=\"https://redirect.github.com/pallets/jinja/issues/1921\">#1921</a></li>\n<li>Make compiling deterministic for tuple unpacking in a <code>{% set ... %}</code> call. <a href=\"https://redirect.github.com/pallets/jinja/issues/2021\">#2021</a></li>\n<li>Fix dunder protocol (<code>copy</code>/<code>pickle</code>/etc) interaction with <code>Undefined</code> objects. <a href=\"https://redirect.github.com/pallets/jinja/issues/2025\">#2025</a></li>\n<li>Fix <code>copy</code>/<code>pickle</code> support for the internal <code>missing</code> object. <a href=\"https://redirect.github.com/pallets/jinja/issues/2027\">#2027</a></li>\n<li><code>Environment.overlay(enable_async)</code> is applied correctly. <a href=\"https://redirect.github.com/pallets/jinja/issues/2061\">#2061</a></li>\n<li>The error message from <code>FileSystemLoader</code> includes the paths that were searched. <a href=\"https://redirect.github.com/pallets/jinja/issues/1661\">#1661</a></li>\n<li><code>PackageLoader</code> shows a clearer error message when the package does not contain the templates directory. <a href=\"https://redirect.github.com/pallets/jinja/issues/1705\">#1705</a></li>\n<li>Improve annotations for methods returning copies. <a href=\"https://redirect.github.com/pallets/jinja/issues/1880\">#1880</a></li>\n<li><code>urlize</code> does not add <code>mailto:</code> to values like <code>@a@b</code>. <a href=\"https://redirect.github.com/pallets/jinja/issues/1870\">#1870</a></li>\n<li>Tests decorated with <code>@pass_context</code> can be used with the <code>|select</code> filter. <a href=\"https://redirect.github.com/pallets/jinja/issues/1624\">#1624</a></li>\n<li>Using <code>set</code> for multiple assignment (<code>a, b = 1, 2</code>) does not fail when the target is a namespace attribute. <a href=\"https://redirect.github.com/pallets/jinja/issues/1413\">#1413</a></li>\n<li>Using <code>set</code> in all branches of <code>{% if %}{% elif %}{% else %}</code> blocks does not cause the variable to be considered initially undefined. <a href=\"https://redirect.github.com/pallets/jinja/issues/1253\">#1253</a></li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/pallets/jinja/blob/main/CHANGES.rst\">jinja2's changelog</a>.</em></p>\n<blockquote>\n<h2>Version 3.1.5</h2>\n<p>Released 2024-12-21</p>\n<ul>\n<li>The sandboxed environment handles indirect calls to <code>str.format</code>, such as\nby passing a stored reference to a filter that calls its argument.\n:ghsa:<code>q2x7-8rv6-6q7h</code></li>\n<li>Escape template name before formatting it into error messages, to avoid\nissues with names that contain f-string syntax.\n:issue:<code>1792</code>, :ghsa:<code>gmj6-6f8f-6699</code></li>\n<li>Sandbox does not allow <code>clear</code> and <code>pop</code> on known mutable sequence\ntypes. :issue:<code>2032</code></li>\n<li>Calling sync <code>render</code> for an async template uses <code>asyncio.run</code>.\n:pr:<code>1952</code></li>\n<li>Avoid unclosed <code>auto_aiter</code> warnings. :pr:<code>1960</code></li>\n<li>Return an <code>aclose</code>-able <code>AsyncGenerator</code> from\n<code>Template.generate_async</code>. :pr:<code>1960</code></li>\n<li>Avoid leaving <code>root_render_func()</code> unclosed in\n<code>Template.generate_async</code>. :pr:<code>1960</code></li>\n<li>Avoid leaving async generators unclosed in blocks, includes and extends.\n:pr:<code>1960</code></li>\n<li>The runtime uses the correct <code>concat</code> function for the current environment\nwhen calling block references. :issue:<code>1701</code></li>\n<li>Make <code>|unique</code> async-aware, allowing it to be used after another\nasync-aware filter. :issue:<code>1781</code></li>\n<li><code>|int</code> filter handles <code>OverflowError</code> from scientific notation.\n:issue:<code>1921</code></li>\n<li>Make compiling deterministic for tuple unpacking in a <code>{% set ... %}</code>\ncall. :issue:<code>2021</code></li>\n<li>Fix dunder protocol (<code>copy</code>/<code>pickle</code>/etc) interaction with <code>Undefined</code>\nobjects. :issue:<code>2025</code></li>\n<li>Fix <code>copy</code>/<code>pickle</code> support for the internal <code>missing</code> object.\n:issue:<code>2027</code></li>\n<li><code>Environment.overlay(enable_async)</code> is applied correctly. :pr:<code>2061</code></li>\n<li>The error message from <code>FileSystemLoader</code> includes the paths that were\nsearched. :issue:<code>1661</code></li>\n<li><code>PackageLoader</code> shows a clearer error message when the package does not\ncontain the templates directory. :issue:<code>1705</code></li>\n<li>Improve annotations for methods returning copies. :pr:<code>1880</code></li>\n<li><code>urlize</code> does not add <code>mailto:</code> to values like <code>@a@b</code>. :pr:<code>1870</code></li>\n<li>Tests decorated with <code>@pass_context`` can be used with the ``|select`` filter. :issue:</code>1624`</li>\n<li>Using <code>set</code> for multiple assignment (<code>a, b = 1, 2</code>) does not fail when the\ntarget is a namespace attribute. :issue:<code>1413</code></li>\n<li>Using <code>set</code> in all branches of <code>{% if %}{% elif %}{% else %}</code> blocks\ndoes not cause the variable to be considered initially undefined.\n:issue:<code>1253</code></li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/pallets/jinja/commit/877f6e51be8e1765b06d911cfaa9033775f051d1\"><code>877f6e5</code></a> release version 3.1.5</li>\n<li><a href=\"https://github.com/pallets/jinja/commit/8d588592653b052f957b720e1fc93196e06f207f\"><code>8d58859</code></a> remove test pypi</li>\n<li><a href=\"https://github.com/pallets/jinja/commit/eda8fe86fd716dfce24910294e9f1fc81fbc740c\"><code>eda8fe8</code></a> update dev dependencies</li>\n<li><a href=\"https://github.com/pallets/jinja/commit/c8fdce1e0333f1122b244b03a48535fdd7b03d91\"><code>c8fdce1</code></a> Fix bug involving calling set on a template parameter within all branches of ...</li>\n<li><a href=\"https://github.com/pallets/jinja/commit/66587ce989e5a478e0bb165371fa2b9d42b7040f\"><code>66587ce</code></a> Fix bug where set would sometimes fail within if</li>\n<li><a href=\"https://github.com/pallets/jinja/commit/fbc3a696c729d177340cc089531de7e2e5b6f065\"><code>fbc3a69</code></a> Add support for namespaces in tuple parsing (<a href=\"https://redirect.github.com/pallets/jinja/issues/1664\">#1664</a>)</li>\n<li><a href=\"https://github.com/pallets/jinja/commit/b8f4831d41e6a7cb5c40d42f074ffd92d2daccfc\"><code>b8f4831</code></a> more comments about nsref assignment</li>\n<li><a href=\"https://github.com/pallets/jinja/commit/ee832194cd9f55f75e5a51359b709d535efe957f\"><code>ee83219</code></a> Add support for namespaces in tuple assignment</li>\n<li><a href=\"https://github.com/pallets/jinja/commit/1d55cddbb28e433779511f28f13a2d8c4ec45826\"><code>1d55cdd</code></a> Triple quotes in docs (<a href=\"https://redirect.github.com/pallets/jinja/issues/2064\">#2064</a>)</li>\n<li><a href=\"https://github.com/pallets/jinja/commit/8a8eafc6b992ba177f1d3dd483f8465f18a11116\"><code>8a8eafc</code></a> edit block assignment section</li>\n<li>Additional commits viewable in <a href=\"https://github.com/pallets/jinja/compare/3.1.4...3.1.5\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=jinja2&package-manager=pip&previous-version=3.1.4&new-version=3.1.5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: kvm-qemu.sh Unable to install.\nBody: # Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\n\"I encountered a problem while installing kvm-qemu.sh. At line 694, the command git clone https://gitlab.com/libvirt/libvirt-glib.git does not download the content for line 697, which is libvirt-glib-3.0.0.tar.gz. As a result, I cannot start virt-manager properly. Is there a way to resolve this?\"\r\n\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. step \r\n    sudo ./kvm-qemu.sh all cape 2>&1 | tee kvm-qemu.log\r\n2. step \r\n    sudo ./kvm-qemu.sh virtmanager cape 2>&1 | tee kvm-qemu-virtmanager.log\r\n3. not find libvirt-glib-3.0.0.tar.gz\r\n\r\n| OS version       |ubuntu-22.04.4-desktop-amd64\r\nLaptop DELL XPS 15 9550 \r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: thanks for headups, pushed fix, let us know if you spot something else",
+  "Title: Reporting on URLs using Microsoft Edge fails due to a resubmitexe error\nBody: ``python\r\n2024-12-23 13:26:16,210 [modules.processing.network] INFO: Loading maxmind database from /opt/CAPEv2/modules/processing/../../data/GeoLite2-Country.mmdb\r\n2024-12-23 13:26:29,185 [Task 162] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"binary_yara\": 'target'\r\n2024-12-23 13:26:29,187 [Task 162] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"phishing_kit_detected\": 'target'\r\n2024-12-23 13:26:29,187 [Task 162] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"phishing_kit_detected\": 'target'\r\n2024-12-23 13:26:29,187 [Task 162] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"phishing_kit_detected\": 'target'\r\n2024-12-23 13:26:29,193 [Task 162] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"suspicious_html_body\": 'target'\r\n2024-12-23 13:26:29,194 [Task 162] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"suspicious_html_name\": 'target'\r\n2024-12-23 13:26:29,194 [Task 162] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"suspicious_html_title\": 'target'\r\n2024-12-23 13:26:29,301 [Task 162] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"registry_credential_store_access\": 'target'\r\n2024-12-23 13:26:39,189 [Task 162] [lib.cuckoo.core.plugins] ERROR: Failed to run the reporting module \"ReSubmitExtractedEXE\": 'target'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 756, in process\r\n    current.run(self.results)\r\n  File \"/opt/CAPEv2/utils/../modules/reporting/resubmitexe.py\", line 213, in run\r\n    if results[\"target\"][\"category\"] == \"file\" and self.results[\"target\"][\"file\"][\"sha256\"] == dropped[\"sha256\"]:\r\nKeyError: 'target'\r\n```\r\n\r\nI'm not sure what the missing `target` key is in this case, or why it is missing.\nComment: target is target file/url, details, so is very strange that it missing, you maybe have another error there, try to reprocess the same analysis `poetry run python process.py -r X -d`\nComment: This just got stranger. resubmitexe is the only thing that failed, I can see results if I go to the  report URL. but the results list says `failed_analysis`\r\n\r\n```text\r\n2024-12-23 13:45:04,122 [Task 140] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"CAPASummary\"\r\n2024-12-23 13:45:04,122 [Task 140] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"MITRE_TTPS\"\r\n2024-12-23 13:45:04,618 [Task 140] [Base.Attck] DEBUG: Calling MITRE Enterprise ATT&CK Framework\r\n2024-12-23 13:45:12,720 [Task 140] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"PCAP2CERT\"\r\n2024-12-23 13:46:32,067 [Task 140] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"ReportHTMLSummary\"\r\n2024-12-23 13:46:32,150 [Task 140] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"ReSubmitExtractedEXE\"\r\n2024-12-23 13:46:32,150 [Task 140] [lib.cuckoo.core.plugins] ERROR: Failed to run the reporting module \"ReSubmitExtractedEXE\": 'target'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 756, in process\r\n    current.run(self.results)\r\n  File \"/opt/CAPEv2/utils/../modules/reporting/resubmitexe.py\", line 213, in run\r\n    if results[\"target\"][\"category\"] == \"file\" and self.results[\"target\"][\"file\"][\"sha256\"] == dropped[\"sha256\"]:\r\nKeyError: 'target'\r\n2024-12-23 13:46:32,151 [Task 140] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"JsonDump\"\r\n2024-12-23 13:46:32,291 [Task 140] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"ReportPDF\"\r\nQStandardPaths: XDG_RUNTIME_DIR not set, defaulting to '/tmp/runtime-cape'\r\n2024-12-23 13:46:37,267 [Task 140] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"MongoDB\"\r\n2024-12-23 13:46:39,324 [Task 140] [modules.reporting.mongodb] DEBUG: Deleted previous MongoDB data for Task 140\r\n2024-12-23 13:46:39,668 [Task 140] [root] DEBUG: Finished processing task\r\n```\nComment: that strange, without target you shouldn't be able to see anything related to that url on the web\nComment: All I'm doing in analyzing example.com in microsoft edge and google chrome\nComment: fixed now too ,thanks for headups, i personally don't use url analysis at all",
+  "Title: Using the flare-floss analysis module results in  terminated by signal SIGKILL (Forced quit)\nBody: 'sudo -u cape poetry run python\u2026' terminated by signal SIGKILL (Forced quit)\nComment: ouch wow, could you share hash to try to reproduce it?\nComment: Gladly. You can find it on VirusTotal\r\n\r\nhttps://www.virustotal.com/gui/file/ed0074c644b448eda3a6fa4b3fd83bdcbebe958cae85b759b1c621cd9162fcc0\nComment: i was able to reproduce it, i guess we can add handling but it would be good to report that to flare so they can investigate it properly\nComment: ok i even have added sigterm handling, it still kills console, so i can't do much here, sadly is out of cape control, i don't want to intercept all linux signals\nComment: i have tried with sigint and sigterm handling, still kills the console\nComment: so far it only happens to dotnet file 8961fee08f2fd802c671b00dd845f7dfad9748c317e57aa675774a034319d89e if deobfusacte strings enabled, if deobfuscation is not enabled it works fine\nComment: Where did that second hash come from? I can't find it on VT.\nComment: Reported. https://github.com/mandiant/flare-floss/issues/1087\nComment: that file was captured by cape fro me malware execution/de4dot, i would need to check, i just disabled floss for dotnet and no crashes anymore. closing this as this is not cape issue, thanks for reporting it to floss. update cape, restart procesign and it won't happend anymore \nComment: Thanks, reported it further upstream to vivisect. Disabling FLOSS specific extractions for .NET samples makes sense as the tool doesn't do any .NET specific handling currently. ",
+  "Title: Dependencies missing from pyproject.toml\nBody: After installing all of the commented out dependencies in pyproject.toml, which I assume were commented out for CI as mentioned in #2437, there were still a few missing dependencies that aren't listed in pyproject.toml that I'm documenting here for later reference.\r\n\r\ncertvalidator, asn1crypto, and mscerts for the parse_rdp integration.\r\n\r\n`git+https://github.com/DissectMalware/batch_deobfuscator`\r\n\r\n`chepy` for `modules.signatures.all.credential_access_phishingkit`\r\n\r\nRequired the following changes in pyproject.toml\r\n\r\n- Changing `python = \">=3.10, <4.0\" ` to `python = \">=3.10, <3.13\"`\r\n- Changing `cryptography = \"43.0.1\"` to `cryptography = \"41.0.7\"`\r\n- Changing` pyOpenSSL = \"24.0.0\"` to `pyOpenSSL = \"23.2.0\"`\nComment: well they are optional, and not default, so we leave those to end user to install, i don't remember why we exclude those, normally that happens due to conflicts with important libraries https://github.com/kevoreilly/CAPEv2/blob/master/extra/optional_dependencies.txt\nComment: The problem with doing `poetry run pip -r extra/optional_dependencies.txt` is that pip doesn't check dependencies, so you can end up with a broken env without realizing it. I'm working on a pyproject.toml that includes as many of these as possible without breaking key libraries.\nComment: well if that doesn't break now, if that will break in future, it will go back to that file, as sometime is hard and not make sense to fight with all of them, you know everyone puts their hardcoded versions and that is a caos sometime\nComment: After trying to add a few more I gave up and reverted back to the project's pyproject. I see what you mean. So many projects pin different specific versions of the same library. What a pain!\nComment: yes, i guess we just would need to add comment why it is optional, so people focus on another tasks, but ya all those extra tools has their values, so that is on end user if he needs that feature, he need to fight/sacrify something. im leaving this open till i add comment to extra deps, thanks for try to bring it back to pyproject\nComment: Hmmm. For dependencies that conflict, such as `flare-capa/floss` and `attck` I wonder if we could use separate docker containers to get results from each tool...I've only dabbled in containerization, so I'm not exactly sure how the mechanics would work.\nComment: well that adds more complexity for end users, and if docker doesn't work, it will make more difficult to debug for them. so some user must learn and put features that they need, we can't satisfy everyone's use case\nComment: added note",
+  "Title: test reenable capa\nBody: None",
+  "Title: Why was flare-capa commented out on pyproject.toml?\nBody: I see that `flare-capa` was commented out on `pyproject.toml` in commit https://github.com/kevoreilly/CAPEv2/commit/778ae1f60c5991f003a1fab1eaff9abd972e4c09, but I haven't figured out why.\nComment: Bcz of the CI problem, we says py3.10 but it sets 3.12, once that will be fixed or capa will end merge 3.12 compatibility, we gonna reactivate it\r\n\r\nEl lun, 23 dic 2024, 1:40, Sean Whalen ***@***.***> escribi\u00f3:\r\n\r\n> I see that flare-capa was commented out on pyproject.toml in commit\r\n> 778ae1f\r\n> <https://github.com/kevoreilly/CAPEv2/commit/778ae1f60c5991f003a1fab1eaff9abd972e4c09>,\r\n> but I haven't figured out why.\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2437>, or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3YPBTMLMSSKS6WWLK32G5LW7AVCNFSM6AAAAABUCET2GGVHI2DSMVQWIX3LMV43ASLTON2WKOZSG42TIOJVGQ4DGMQ>\r\n> .\r\n> You are receiving this because you are subscribed to this thread.Message\r\n> ID: ***@***.***>\r\n>\r\n",
+  "Title: How to debug failed_reporting\nBody: When a task has a `failed_reporting` status, there does not seem to be any logging for reporting anywhere. How can I find the cause of a reporting error?\r\n\r\nI have turned off every community reporting module and still get a `failed_reporting` status when analyzing the sample `ed0074c644b448eda3a6fa4b3fd83bdcbebe958cae85b759b1c621cd9162fcc0 `.  `reports/report.json` did generate correctly though.\nComment: process.py -r taskid -d\nComment: Thanks. Reporting was failing because flare-floss was missing. My guess is it was missing because it was included because of flare-capa being commented out for CI reasons, as mentioned in #2437.\nComment: it not make any sense that it fails due to missed dependency, but if like that maybe need better handling. do you have any logs to check it?",
+  "Title: Installer poetry path\nBody: @doomedraven \r\n\r\n`installers/capev2.sh` currently installs Poetry in `/etc/poetry` which means that the `poetry` executable is installed in `/etc/poetry/bin/poetry`. The `/etc` path is generally used for configuration files alone, so it seems very weird to have Poetry installed there. `/opt/poetry` would be better. \r\n\r\nMany places in the installer assume that the `poetry` executable is located at `/etc/poetry/bin/poetry`. On my CAPE system that I set up years ago, the `poetry` executable is installed in a more normal location, `/usr/local/bin/poetry`. I have no idea how I originally installed it though.\r\n\r\nCould the installer check various locations for the `poetry` executable, or at least allow the path to be passed as an argument?\nComment: Yes, I don't remember why, but you can see in PRs why, as far as I remember\r\nAPT's poetry is outdated or something like that. We could add it, I will\r\nleave it open till I have some time to add it\r\n\r\nEl vie, 20 dic 2024, 22:33, Sean Whalen ***@***.***> escribi\u00f3:\r\n\r\n> @doomedraven <https://github.com/doomedraven>\r\n>\r\n> installers/capev2.sh currently installs Poetry in /etc/poetry which means\r\n> that the poetry executable is installed in /etc/poetry/bin/poetry. The\r\n> /etc path is generally used for configuration files alone, so it seems\r\n> very weird to have Poetry installed there. /opt/poetry would be better.\r\n>\r\n> Many places in the installer assume that the poetry executable is located\r\n> at /etc/poetry/bin/poetry. On my CAPE system that I set up years ago, the\r\n> poetry executable is installed in a more normal location,\r\n> /usr/local/bin/poetry. I have no idea how I originally installed it\r\n> though.\r\n>\r\n> Could the installer check various locations for the poetry executable, or\r\n> at least allow it to be passed an argument?\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2435>, or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH36FC6BNPAIHWWAMIM32GSELXAVCNFSM6AAAAABT74ACJ2VHI2DSMVQWIX3LMV43ASLTON2WKOZSG42TGNJRGIYDGMI>\r\n> .\r\n> You are receiving this because you were mentioned.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: I just had a thought. For not, I'll just add a symlink on my system.\nComment: symlink worked?",
+  "Title: Installer help does not include all commands \nBody: I've noticed that @doomedraven's installer scripts for CAPE and KVM do not include all commands in `--help`, and/or do not match the proper text case of the actual command. \r\n\r\nThe installers are also missing the `+x` execution bit.\nComment: added, thanks",
+  "Title: jsionc missing from libvirt installer\nBody: @doomedraven \r\n\r\n```meson.build:1666:6: ERROR: Problem encountered: json-c is required to build QEMU driver\r\n\r\nA full log can be found at /tmp/libvirt-10.10.0/build/meson-logs/meson-log.txt\r\nWARNING: Running the setup command as `meson [options]` instead of `meson setup [options]` is ambiguous and deprecated.\r\nninja: Entering directory `build'\r\nninja: error: loading 'build.ninja': No such file or directory\r\nninja: Entering directory `build'\r\nninja: error: loading 'build.ninja': No such file or directory\r\n\\033[0;31mFailed. Read the instalation log for details\\033[0m\r\n```\r\n\r\nlibjson-c-dev package needs installed\nComment: synced core with the private version, now all should be fine\nComment: Thanks\nComment: thanks for headups",
+  "Title: Strange rendering when using Guac web\nBody: The \"interactive session\" feature of CAPE isn't very usable due to strange rendering. Here are screenshots of example.com in Chrome on a sandbox VM.\r\n\r\nMicrosoft Windows client with an AMD GPU.\r\n\r\n## Microsoft Edge\r\n\r\n![image](https://github.com/user-attachments/assets/15b4126f-fabe-4a4e-bf45-84a7ac563dcd)\r\n\r\n## Firefox\r\n\r\n![image](https://github.com/user-attachments/assets/c715e6f8-697d-480a-8ce8-b4f4df06c5b4)\r\n\nComment: Does this only happen when using Guac or do you see the same behavior when the desktop view is launched from virt-manager? I had a very similar issue, but it was not limited to the display via Guac.\r\n\r\nI'm assuming you changed your changed your display type to `VNC Server`? If so, the issue may be that the video model is still set to the SPICE model, `QXL`.For me, the fix was just changing the video model. First tried using `VGA` with decent results, but limited higher resolution options and I found virtualization artifacts within the VM from using it. Editing the vm's xml directly and using `vmvga` gave me the best results.\r\n\r\nSide note, `vmvga` is apparently the VMWare video model. Loaded fine for me with KVM/QEMU without installing any additional drivers.\r\n\r\nRelevant parts of the xml:\r\n```\r\n...\r\n    <graphics type=\"vnc\" port=\"-1\" autoport=\"yes\" listen=\"127.0.0.1\">\r\n      <listen type=\"address\" address=\"127.0.0.1\"/>\r\n    </graphics>\r\n...\r\n    <video>\r\n      <model type=\"vmvga\" vram=\"16384\" heads=\"1\" primary=\"yes\"/>\r\n      <address type=\"pci\" domain=\"0x0000\" bus=\"0x00\" slot=\"0x01\" function=\"0x0\"/>\r\n    </video>\r\n...\r\n```\nComment: Ah, yeah. When creating VMs in `virt-manager` they start out with a `qxl` video adaptor and a `spice` video display. I added a second `display` with type `vnc` instead of changing the existing `spice` display to `vnc`. I did't notice the issues with VNC until using CAPE's \"interactive session\"/guac-web` because `virt-manager` preferred to connect to the SPICE display.\r\n\r\nChanging the video adaptor `type` from `qxl` to `vmvga` and removing the `ram` and `vganem` attributes that VMVGA does not use fixed it. Thanks!\r\n\r\nBefore:\r\n\r\n```xml\r\n<video>\r\n  <model type=\"qxl\" ram=\"65536\" vram=\"65536\" vgamem=\"16384\" heads=\"1\" primary=\"yes\"/>\r\n  <address type=\"pci\" domain=\"0x0000\" bus=\"0x00\" slot=\"0x01\" function=\"0x0\"/>\r\n</video>\r\n```\r\n\r\nAfter\r\n\r\n```xml\r\n<video>\r\n  <model type=\"vmvga\" vram=\"65536\" heads=\"1\" primary=\"yes\"/>\r\n  <address type=\"pci\" domain=\"0x0000\" bus=\"0x00\" slot=\"0x01\" function=\"0x0\"/>\r\n</video>\r\n```",
+  "Title: Unable to delete external virsh snapshots\nBody: Not a CAPE error, but an issue with libvirt. (@kevoreilly Could you please enable the new Discussions feature on this project. It would be great for this kind of stuff.)\r\n\r\nIn `virt-manager` 5, external snapshot is selected by default when you click new snapshot. I can create an external snapshot and start the VM/domain fine, but I get an error when I try to delete the snapshot.\r\n\r\n> error: Failed to delete snapshot prep\r\nerror: internal error: unable to execute QEMU command 'block-commit': Could not open '/var/lib/libvirt/images/win10-stage.qcow2': Permission denied\r\n\r\nWhich is nuts because I literally was just using that disk image prior to creating the snapshot. It even failed when running `virsh delete-snapshot` as root.\r\n\r\nThe only workaround I've found if I accidently create an external snapshot is to run `virsh dumpxml win10-stage > win10-stage.xml`, Delete the VM/domain, modify the exported XML to point to the original `.qcow2` disk image file path, then reimport the XML with `sudo define win10-stage.xml`.\r\n\r\nI'm thinking this might be a bug in the version of libvirt used in the CAPE installer, @doomedraven?\nComment: hm interesting, im not using external snapshot, but will try to generate one, about version of libvirt could be, i see that in cape installer it was 10.3, but im on 10.10 and newer cape, so i have bumped that in installer.\r\n\r\nabout discussions, no, we closed that pcz people abuse and skip issue template, which in most of the cases is annoying as it forces us to ask the same over and over.\r\n\r\nIf you can, try to upgrade libvirt to latest version\nComment: ok so i just tried, it works fine for me, im on libvirt 10.10.0.\r\nBut i guess here is the most important issue is the location where you create it, but if you can create, you should be able to delete it. try to upgrade to 10.10, and if that doesn't work, check  the folder permission where you creating the external snapshots\nComment: After upgrading to libvirt 10.10 I created an external snapshot. When I tried to delete it, I got a much more helpful error message.\r\n\r\n> Error deleting snapshot 'snapshot1': Operation not supported: deleting external snapshot that has internal snapshot as parent not supported\r\n\r\nAfter I reverted to the internal snapshot, I was able to delete the external snapshot.\r\n\r\n@doomedraven Out of curiosity, do you prefer internal or external snapshots? I'm thinking that I still prefer internal snapshots, just to keep things simple.\nComment: all my vms were created ages ago, then only internal snapshot was existing, so i didn't use yet external one, so can't really speak about preferences or what is better, would need to get more familiar with what is the real difference ",
+  "Title: Using capemon with Microsoft Edge 92.0.902.67 causes the VM to crash 5 seconds after loading a page\nBody: This is a bug that is similar, but not identical to #1636.  Chrome and Firefox work fine but analyzing a URL with Microsoft Edge 92.0.902.67 will cause the VM to crash unless capemon is disabled in the advanced submission options.\nComment: I'm not sure what happened, but this seems to be fixed.",
+  "Title: Enable IPv4 forwarding at rooter startup\nBody: Also add the `--sysctrl` option to the `rooter.py` CLI\nComment: qq, why do you write 0? with just run command it should be more than enough right?\nComment: I'm guessing you meant 1 instead of zero. I thought the same thing, but the documentation says to do both, so I'm following the documentation.\r\n\r\nhttps://capev2.readthedocs.io/en/latest/installation/host/routing.html\r\n\r\n> $ echo 1 | sudo tee -a /proc/sys/net/ipv4/ip_forward\r\n> $ sudo sysctl -w net.ipv4.ip_forward=1\r\n\r\nIt's also weird that the documentation is using `tee -a` to append to the file.  We probably don't need that at all. I'll do some tests.\nComment: Yep, only the `sysctl` command is needed. I removed the file edit from the PR.\nComment: thanks for PR",
+  "Title: Internet routing stopped functioning after a CAPE upgrade\nBody: Hello everyone,\r\n\r\nI haven't used CAPE in a while and just upgraded to the latest version without checking what version I was on, so I have no idea when this issue started.  When running samples through CAPE, internet traffic wasn't functioning for the VMs. The logs for `rooter` show that it has been enabling and disabling network routing for `inetsim`, even though the dirty line is selected in the web UI.\r\n\r\nWhen using `submit.py` no routing takes place, and there doesn't seem to be a way to specify routing.\nComment: about the webgui i need details if is web/api with details. about submit.py -> https://github.com/kevoreilly/CAPEv2/blob/master/utils/submit.py#L47\nComment: Ah, the issue is different than I thought. The rooter logs say this at startup, so I thought the inetsim route was being used but, but it isn't.\r\n\r\n```text\r\n 2024-12-18 18:46:49,981 [cuckoo-rooter] INFO: Disabling inetsim route.\r\n```\r\n\r\nFor each VM\r\n\r\nThe `cape` logs show the `internet` route being enabled or disabled as expected no matter which why you submit a sample, but there is no corresponding log entry in the `rooter` logs. So, it seems like cape is not communicating to the rooter like it thinks it is.\nComment: I just did more testing.\r\n\r\nRunning ` sudo -u cape poetry run python  utils/router_manager.py -e -r internet --vm-name win10-stage` did not return any errors, but also did not generate any `rooter` logs\nComment: Ok. When starting rooter with verbose logging on the inetsim messages are gone, and I can see that rooter was using `virbr0` for my VMs, when all of my VMs are connected to `virbr1`, interface and the global `interface` setting `kvm.conf` is set to `virbr1` too. I had to set the `interface` setting at the VM level in `kvm.conf` for rooter to use `virbr1`. \r\n\r\nHowever, even after that was fixed, my sandbox VMs still can't communicate to the internet. With `ping 1.1.1.1` returning `Request timed out`. I'm not sure what's going wrong.\nComment: well now that we see that you had bad network interface, i need to see the configs. https://capev2.readthedocs.io/en/latest/installation/host/routing.html\r\n\r\nyou restarted cape service after change the routing/cuckoo config?\nComment: Aha! I got it working. There are two separate problems.\r\n\r\nFirst, IP forwarding was not enabled. I thought `rooter` took care of that at startup, but the documentation you linked to says to run these two commands to enable IP forwarding and warns that the changes do not persist after a system restart.\r\n\r\n```bash\r\necho 1 | sudo tee -a /proc/sys/net/ipv4/ip_forward\r\nsudo sysctl -w net.ipv4.ip_forward=1\r\n```\r\n\r\nThis like it would be something simple to have `rooter` do on startup. I'll open a PR for that when I have a little time.\r\n\r\nThe second problem is that although `interface` is set to `virbr1` in `kvm.conf` and `auxiliary.conf `, `rooter` will use `virbr0` unless `virbr0` is explicitly set in per-VM the `interface` setting as shown below. \r\n\r\nMy `kvm.conf` looks like this.\r\n\r\n```ini\r\n[kvm]\r\n# Specify a comma-separated list of available machines to be used. For each\r\n# specified ID you have to define a dedicated section containing the details\r\n# on the respective machine. (E.g. cuckoo1,cuckoo2,cuckoo3)\r\nmachines = win10-stage,win10-01,win10-02,win10-03,win10-04\r\n\r\ninterface = virbr1\r\n\r\n[win10-stage]\r\n# Specify the label name of the current machine as specified in your\r\n# libvirt configuration.\r\nlabel = win10-stage\r\n\r\n# Specify the operating system platform used by current machine\r\n# [windows/darwin/linux].\r\nplatform = windows\r\n\r\n# Specify the IP address of the current virtual machine. Make sure that the\r\n# IP address is valid and that the host machine is able to reach it. If not,\r\n# the analysis will fail. You may want to configure your network settings in\r\n# /etc/libvirt/<hypervisor>/networks/\r\nip = xxx.xxx.xxx.x\r\n\r\n# Specify tags to display\r\n# Tags may be used to specify on which guest machines a sample should be run\r\n# NOTE - One of the following OS version tags MUST be included for Windows VMs:\r\n# winxp,win7, win10, win11\r\n# Some samples will only detonate on specific versions of Windows (see web.conf packages for more info)\r\n# Example: MSIX - Windows >= 10\r\ntags = win10,office2016\r\n\r\n# (Optional) Specify the snapshot name to use. If you do not specify a snapshot\r\n# name, the KVM MachineManager will use the current snapshot.\r\n# Example (Snapshot1 is the snapshot name):\r\nsnapshot = running\r\n\r\n# (Optional) Specify the name of the network interface that should be used\r\n# when dumping network traffic from this machine with tcpdump. If specified,\r\n# overrides the default interface specified in auxiliary.conf\r\n# Example (virbr0 is the interface name):\r\ninterface = virbr1\nComment: glad that you got it working\r\n\r\n>> The second problem is that although interface is set to virbr1 in kvm.conf and auxiliary.conf , rooter will use virbr0 unless virbr0 is explicitly set in per-VM the interface setting as shown below.\r\n\r\nthis is false, i have only set `virbr1` in `kvm.conf`. the aux one is just for sniffer, that was since cuckoo times, that didn't change, so as config says all those options fields are optional.\r\nSnaphot will be used last one if not specified, the iface will be used the main one specified on top if you don't specify it neither\nComment: You're right. That config option is unrelated. However, I spoke too soon when I said I got it working. It works when using `rooter_manager.py`, but not when analyzing a sample. It turns out that a different set of `rooter` commands are used.\r\n\r\n## rooter logs when starting an analysis via submit.py\r\n\r\n> sudo -u cape poetry run python utils/submit.py --route internet --url example.com\r\n\r\n```text\r\n[cuckoo-rooter] INFO: Processing command: forward_enable dirty-line [dirty line interface] [VM IP] [host IP] tcp 2042\r\n[cuckoo-rooter] DEBUG: Running command: /sbin/iptables -D FORWARD -i dirty-line -j REJECT -m comment --comment CAPE-rooter\r\n[cuckoo-rooter] DEBUG: Running command: /sbin/iptables -D FORWARD -o dirty-line -j REJECT -m comment --comment CAPE-rooter\r\n[cuckoo-rooter] DEBUG: Running command: /sbin/iptables -I CAPE_ACCEPTED_SEGMENTS -i dirty-line -o [dirty line interface] --source [VM IP] --destination [host IP] -p tcp -m multiport --dport 2042 -j ACCEPT -m comment --comment CAPE-rooter\r\n[cuckoo-rooter] INFO: Processing command: forward_enable dirty-line virbr1 [host IP] [VM IP]\r\n[cuckoo-rooter] DEBUG: Running command: /sbin/iptables -D FORWARD -i dirty-line -j REJECT -m comment --comment CAPE-rooter\r\n[cuckoo-rooter] DEBUG: Running command: /sbin/iptables -D FORWARD -o dirty-line -j REJECT -m comment --comment CAPE-rooter\r\n[cuckoo-rooter] DEBUG: Running command: /sbin/iptables -I CAPE_ACCEPTED_SEGMENTS -i dirty-line -o virbr1 --source [host IP] --destination [VM IP] -j ACCEPT -m comment --comment CAPE-rooter\r\n[cuckoo-rooter] INFO: Processing command: add_dev_to_vrf virbr1\r\n[cuckoo-rooter] DEBUG: Running command: /sbin/ip link set dev virbr1 master dirty-line\r\n```\r\n\r\n## rooter logs when starting an analysis via the web UI\r\n\r\n```text\r\n[cuckoo-rooter] INFO: Processing command: forward_enable dirty-line virbr1 0.0.0.0/0 [VM IP]\r\n[cuckoo-rooter] DEBUG: Running command: /sbin/iptables -D FORWARD -i dirty-line -j REJECT -m comment --comment CAPE-rooter\r\n[cuckoo-rooter] DEBUG: Running command: /sbin/iptables -D FORWARD -o dirty-line -j REJECT -m comment --comment CAPE-rooter\r\n[cuckoo-rooter] DEBUG: Running command: /sbin/iptables -I CAPE_ACCEPTED_SEGMENTS -i dirty-line -o virbr1 --source 0.0.0.0/0 --destination [VM IP] -j ACCEPT -m comment --comment CAPE-rooter\r\n[cuckoo-rooter] INFO: Processing command: forward_enable dirty-line [dirty line interface] [VM IP]\r\n[cuckoo-rooter] DEBUG: Running command: /sbin/iptables -D FORWARD -i dirty-line -j REJECT -m comment --comment CAPE-rooter\r\n[cuckoo-rooter] DEBUG: Running command: /sbin/iptables -D FORWARD -o dirty-line -j REJECT -m comment --comment CAPE-rooter\r\n[cuckoo-rooter] DEBUG: Running command: /sbin/iptables -I CAPE_ACCEPTED_SEGMENTS -i dirty-line -o [dirty line interface] --source [VM IP] -j ACCEPT -m comment --comment CAPE-rooter\r\n[cuckoo-rooter] INFO: Processing command: forward_enable dirty-line [dirty line interface] [VM IP] [host IP] tcp 2042\r\n[cuckoo-rooter] DEBUG: Running command: /sbin/iptables -D FORWARD -i dirty-line -j REJECT -m comment --comment CAPE-rooter\r\n[cuckoo-rooter] DEBUG: Running command: /sbin/iptables -D FORWARD -o dirty-line -j REJECT -m comment --comment CAPE-rooter\r\n[cuckoo-rooter] DEBUG: Running command: /sbin/iptables -I CAPE_ACCEPTED_SEGMENTS -i dirty-line -o [dirty line interface] --source [VM IP] --destination [host IP] -p tcp -m multiport --dport 2042 -j ACCEPT -m comment --comment CAPE-rooter\r\n[cuckoo-rooter] INFO: Processing command: forward_enable dirty-line virbr1 [host IP] [VM IP]\r\n[cuckoo-rooter] DEBUG: Running command: /sbin/iptables -D FORWARD -i dirty-line -j REJECT -m comment --comment CAPE-rooter\r\n[cuckoo-rooter] DEBUG: Running command: /sbin/iptables -D FORWARD -o dirty-line -j REJECT -m comment --comment CAPE-rooter\r\n[cuckoo-rooter] DEBUG: Running command: /sbin/iptables -I CAPE_ACCEPTED_SEGMENTS -i dirty-line -o virbr1 --source [host IP] --destination [VM IP] -j ACCEPT -m comment --comment CAPE-rooter\r\n[cuckoo-rooter] INFO: Processing command: add_dev_to_vrf virbr1\r\n[cuckoo-rooter] DEBUG: Running command: /sbin/ip link set dev virbr1 master dirty-line\r\n```\r\n\r\n## rooter logs when running rooter_manager.py\r\n\r\n> sudo -u cape poetry run python utils/router_manager.py -d  -r internet --vm-name win10-01\r\n\r\n```text\r\n[cuckoo-rooter] INFO: Verbose logging enabled\r\n[cuckoo-rooter] INFO: Processing command: forward_enable virbr1 [dirty line interface] [VM IP]\r\n[cuckoo-rooter] DEBUG: Running command: /sbin/iptables -D FORWARD -i virbr1 -j REJECT -m comment --comment CAPE-rooter\r\n[cuckoo-rooter] DEBUG: Running command: /sbin/iptables -D FORWARD -o virbr1 -j REJECT -m comment --comment CAPE-rooter\r\n[cuckoo-rooter] DEBUG: Running command: /sbin/iptables -I CAPE_ACCEPTED_SEGMENTS -i virbr1 -o [dirty line interface] --source [VM IP] -j ACCEPT -m comment --comment CAPE-rooter\r\n[cuckoo-rooter] INFO: Processing command: srcroute_enable main [VM IP]\r\n[cuckoo-rooter] DEBUG: Running command: /sbin/ip rule add from [VM IP] table main\r\n[cuckoo-rooter] DEBUG: Running command: /sbin/ip route flush cache\r\n```\r\n\nComment: I got it! [searching the code](https://github.com/kevoreilly/CAPEv2/blob/0018defcb8c14c11412197bb6869eb2bd9055f41/lib/cuckoo/core/analysis_manager.py#L598) for `dirty-line` showed me that there is a new routing option called `no_local_routing`, which is set to `yes` by default. Adding `no_local_routing = no` to `routing.conf` solved the problem.\nComment: glad that you solved it ",
+  "Title: check flare-capa with python version\nBody: According to the CAPA release information (see https://github.com/mandiant/capa/releases/tag/v7.4.0), version 8.x of CAPA is currently compatible with the Python version used by CAPE.\nComment: Thanks David, yes, we just have some small issue with GitHub ci, even saying run on py3.10 it installs it under 3.12, is why it not in dependencies right now",
+  "Title: Error running CAPev2: No module named 'capa', FLARE-CAPA missed: poetry install\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ ] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nRun capev2 with sudo -u cape poetry run python3 cuckoo.py without error or missing modules \r\n\r\n# Current Behavior\r\n\r\nAfter executing the script to install capev2 and doing poetry install in the right folder for managing the dependencies following the documentation when i run cape with sudo -u cape poetry run python3 cuckoo.py there is an error saying No module named 'capa', FLARE-CAPA missed: poetry install\r\n\r\n# Failure Information (for bugs)\r\n\r\nCape service fail to activate. Error indicates that executing /etc/poetry/bin/poetry run python cuckoo.py failed\r\n\r\n## Steps to Reproduce\r\n\r\n1) Install cape with the script\r\n2) Move to opt/CAPEv2 and execute poetry install\r\n3) Run sudo -u cape poetry run python3 cuckoo.py\r\n\r\n## Context\r\n\r\nInstalled on Desktop version of Ubuntu 22.04.5 LTS through the script. I Also added the package-mode = false in the pyproject.toml after the advice of the warning that poetry install was printing. The warning is the following: \r\n\r\nWarning: The current project could not be installed: No file/folder found for package capev2\r\nIf you do not want to install the current project use --no-root.\r\nIf you want to use Poetry only for dependency management but not for packaging, you can disable package mode by setting package-mode = false in your pyproject.toml file.\r\nIn a future version of Poetry this warning will become an error!\r\n\r\n## Failure Logs\r\n\r\nFrom the journalctl of cape.service\r\n\r\nDec 17 20:22:23 luca-breshi systemd[1]: Started CAPE.\r\nDec 17 20:22:24 luca-breshi poetry[14818]: \r\nDec 17 20:22:24 luca-breshi poetry[14818]:                                ),-.     /\r\nDec 17 20:22:24 luca-breshi poetry[14818]:   Cuckoo Sandbox              <(a  `---','\r\nDec 17 20:22:24 luca-breshi poetry[14818]:      no chance for malwares!  ( `-, ._> )\r\nDec 17 20:22:24 luca-breshi poetry[14818]:                                ) _>.___/\r\nDec 17 20:22:24 luca-breshi poetry[14818]:                                    _/\r\nDec 17 20:22:24 luca-breshi poetry[14818]:  Cuckoo Sandbox 2.4-CAPE\r\nDec 17 20:22:24 luca-breshi poetry[14818]:  www.cuckoosandbox.org\r\nDec 17 20:22:24 luca-breshi poetry[14818]:  Copyright (c) 2010-2015\r\nDec 17 20:22:24 luca-breshi poetry[14818]:  CAPE: Config and Payload Extraction\r\nDec 17 20:22:24 luca-breshi poetry[14818]:  github.com/kevoreilly/CAPEv2\r\nDec 17 20:22:24 luca-breshi poetry[14818]: XLMMacroDeobfuscator: pywin32 is not installed (only is required if you want to use MS Exce>\r\nDec 17 20:22:24 luca-breshi poetry[14818]: No module named 'capa'\r\nDec 17 20:22:24 luca-breshi poetry[14818]: FLARE-CAPA missed: poetry install\r\nDec 17 20:22:24 luca-breshi poetry[14948]: /usr/bin/tcpdump\r\nDec 17 20:22:24 luca-breshi poetry[14818]: 2024-12-17 20:22:24,946 [root] CRITICAL: CuckooCriticalError: Unable to bind ResultServer o>\r\nDec 17 20:22:25 luca-breshi systemd[1]: cape.service: Main process exited, code=exited, status=1/FAILURE\r\nDec 17 20:22:25 luca-breshi systemd[1]: cape.service: Failed with result 'exit-code'.\r\nDec 17 20:22:25 luca-breshi systemd[1]: cape.service: Consumed 2.094s CPU time.\r\n\r\nfrom systemctl status cape.service\r\n\r\n\u25cf cape.service - CAPE\r\n     Loaded: loaded (/lib/systemd/system/cape.service; enabled; vendor preset: enabled)\r\n     Active: activating (auto-restart) (Result: exit-code) since Tue 2024-12-17 20:27:28 UTC; 1min 4s ago\r\n       Docs: https://github.com/kevoreilly/CAPEv2\r\n    Process: 17200 ExecStart=/etc/poetry/bin/poetry run python cuckoo.py (code=exited, status=1/FAILURE)\r\n   Main PID: 17200 (code=exited, status=1/FAILURE)\r\n        CPU: 2.081s\r\n\r\n\r\n\nComment: hello, that not due to capa, is just a suggestion, the problem itself is `Unable to bind ResultServer`. it looks like you have running cape already\r\nrun:\r\n```\r\nsudo ps aux|grep cuckoo\r\nsudo fuser -k 2042/tcp #\u00a0to kill it\r\nsudo systemctl restart cape # start it, if that sstill fails, run as cape user -> poetry run python cuckoo.py -d\r\n```\nComment: Thank you for your support :)  I'm a new user and thought that was the problem since the first message of the missing module says explicitly that it is not strictly required while capa ones doesn't. Manage to fix the real problem that was exactly what you described plus some configuration errors. Thank you again.\nComment: You are welcome\r\n\r\nEl mar, 17 dic 2024, 23:38, Luca Bresciani ***@***.***>\r\nescribi\u00f3:\r\n\r\n> Thank you for your support :) I'm a new user and thought that was the\r\n> problem since the first message of the missing module says explicitly that\r\n> it is not strictly required while capa ones doesn't. Manage to fix the real\r\n> problem that was exactly what you described plus some configuration errors.\r\n> Thank you again.\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2426#issuecomment-2549796712>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH322ECXLQH7GBT6Z2VD2GCRVVAVCNFSM6AAAAABTZBMD5CVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDKNBZG44TMNZRGI>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n",
+  "Title: Sanity root check for router-manager\nBody: The output is exactly the same if you use sudo/root or not, however only if you have the permissions for changing the rules will it do anything. Added a small check for permissions for actually creating the rules with a simple sudo/root check.  ",
+  "Title: PPLInject64.exe Application Error\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I did read the README!\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\r\n\r\n# Current Behavior\r\n\r\nPLLInject64.exe error popup on all analysis runs. Same message body each time:\r\n```\r\nThe application was unable to start correctly (0xc00000007b).\r\nClick OK to close the application.\r\n```\r\n\r\n# Failure Information (for bugs)\r\n\r\n**Don't think there is an actual error.** In the logs, I am seeing successful injections into 64-bit processes.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Start analysis run\r\n2. View desktop\r\n3. PLLInject64.exe Application Error popup appears.\r\n\r\n## Context\r\n\r\n- Ubuntu 22.04 server\r\n- Windows 10 64-bit guest OS\r\n- KVM/QEMU/Libvirt\r\n- 32-bit Python on guest\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | 8211cf9\r\n| OS version       | Ubuntu 22.04 Host, Windows 10 x64 Guest\r\n\r\n## Failure Logs\r\n\r\n```\r\n[root] DEBUG: 7076: DLL loaded at 0x00007FFCDA7D0000: C:\\Windows\\SYSTEM32\\kernel.appcore (0x12000 bytes).\r\n[root] DEBUG: 7076: DLL loaded at 0x00007FFCDEF70000: C:\\Windows\\System32\\clbcatq (0xa9000 bytes).\r\n[root] DEBUG: 7076: DLL loaded at 0x00007FFCDD030000: C:\\Windows\\System32\\bcryptPrimitives (0x83000 bytes).\r\n[root] DEBUG: 5288: OpenProcessHandler: Injection info created for process 2568, handle 0x2cac: C:\\Windows\\System32\\conhost.exe\r\n[root] INFO: Announced starting service \"b'VSS'\"\r\n[lib.api.process] INFO: Monitor config for <Process 704 services.exe>: C:\\tmp0zaw4afp\\dll\\704.ini\r\n[lib.api.process] INFO: 64-bit DLL to inject is C:\\tmp0zaw4afp\\dll\\AsPcWgT.dll, loader C:\\tmp0zaw4afp\\bin\\OFtcjPAX.exe\r\n[root] DEBUG: Loader: Injecting process 704 with C:\\tmp0zaw4afp\\dll\\AsPcWgT.dll.\r\n[root] DEBUG: 848: CreateProcessHandler: Injection info set for new process 2352: C:\\Windows\\System32\\slui.exe, ImageBase: 0x00007FF70B380000\r\n[root] INFO: Announced 64-bit process name: slui.exe pid: 2352\r\n[lib.api.process] INFO: Monitor config for <Process 2352 slui.exe>: C:\\tmp0zaw4afp\\dll\\2352.ini\r\n[root] DEBUG: Loader: Copied config file C:\\tmp0zaw4afp\\dll\\704.ini to system path C:\\704.ini\r\n[root] DEBUG: Loader: Unable to open process, launched: PPLinject64.exe 704 C:\\tmp0zaw4afp\\dll\\AsPcWgT.dll\r\n[root] DEBUG: Successfully injected DLL C:\\tmp0zaw4afp\\dll\\AsPcWgT.dll.\r\n[lib.api.process] INFO: 64-bit DLL to inject is C:\\tmp0zaw4afp\\dll\\AsPcWgT.dll, loader C:\\tmp0zaw4afp\\bin\\OFtcjPAX.exe\r\n[lib.api.process] INFO: Injected into 64-bit <Process 704 services.exe>\r\n[root] DEBUG: Loader: Injecting process 2352 (thread 4156) with C:\\tmp0zaw4afp\\dll\\AsPcWgT.dll.\r\n[root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\r\n[root] DEBUG: Successfully injected DLL C:\\tmp0zaw4afp\\dll\\AsPcWgT.dll.\r\n```\r\n![snappybee_dll_err_popup](https://github.com/user-attachments/assets/f45ba492-4159-4b66-967a-b5acd6134dbb)\r\n\nComment: Getting this on every run, whether I submit a DLL, archive, or PE. I don't believe this is an actual error, as it looks like the injection succeeds in the logs. I am mainly curious why this error message always shows.\r\n\r\nIs this indication that I have incorrectly launched or configured something?\nComment: Since you are not a new user - has this been happening ever since you started using cape?! Strange that this would crop up now all of a sudden...\r\n\r\nBut you have omitted a key piece of info.... I trust you are aware of the fact that 21H2 is currently the only version of win10 that pplinject is expected to work with. It is services.exe that is ppl by the way.\nComment: Whoops, sorry about that. Running on 21H2 with UAC disabled.\r\n\r\n![win_version2](https://github.com/user-attachments/assets/5647fdb4-3ee4-4d4b-aa62-b7e06a7e30ac)\r\n\r\nI'm not seeing this error on my Azure deployment, but that one is running off of a ~5 month old commit and built using the Azure win10 image. Doing a bare metal deployment to take advantage of KVM's features this time around.\nComment: Well PPLinject hasn't changed for a year or two...\nComment: Gotcha. I'll try to work my way back to the source of this and I'll update here if I find anything. Hoping this is a simple configuration issue on my end.\r\n\r\nThanks!\nComment: PPLinject is invoked upon access denied obtaining target process handle so worth checking agent is elevated.\nComment: For sure running with agent elevated with curl returning `{\"message\": \"CAPE Agent!\", \"version\": \"0.18\", \"features\": [\"execpy\", \"execute\", \"pinning\", \"logs\", \"largefile\", \"unicodepath\", \"mutex\", \"browser_extension\"], \"is_user_admin\": true}`.\r\n\r\nI've got UAC/Firewall disabled as well.\r\n![uac](https://github.com/user-attachments/assets/304314f6-540c-48e1-8e89-bbc57873793b)\r\n\r\n\r\nI haven't had time to dig into this, but hoping that things calm down middle of next week and I will start throwing in some debugging.\nComment: It's worth noting that the analysis log provides output from the loader, the snippet(s) relevant to PPLinject would be very helpful in shedding light. As I mentioned, PPLinject is only intended for injection into PPL processes which basically means services.exe. Altho there are occasionally other PPL processes, services injection is the principal reason for its existence in cape.\r\n\r\nThis means that only a subset of detonations invoke PPLinject and the vast majority only for a single process, services.exe. \r\n\r\nSo the log(s) as well as the type of sample(s) are highly pertinent. \nComment: Closing this issue as I no longer deploy on bare metal.\n\nI suspect the root of this issue was based in the way I was configuring the VM images. It happened across windows 7, 10, and 11 images. It's possible this was caused by my stopping a task, or something similar, that a separate scheduled task was restarting.",
+  "Title: installing virtmanager fails\nBody: Final error is:\r\n```\r\nProgram gtk4-update-icon-cache found: YES (/usr/bin/gtk4-update-icon-cache)\r\nConfiguring virt-manager.spec using configuration\r\nProgram pylint pylint-3 found: NO\r\n\r\ntests/meson.build:16:14: ERROR: Program 'pylint pylint-3' not found or not executable\r\n\r\nA full log can be found at /tmp/virt-manager/build/meson-logs/meson-log.txt\r\nInstall data not found. Run this command in build directory root.\r\n\r\n```\r\nI think the root cause is that this command fails earlier:\r\n\r\n```\r\npip3 install tqdm requests six urllib3 ipaddr ipaddress idna dbus-python certifi lxml cryptography pyOpenSSL chardet asn1crypto pycairo PySocks PyGObject pylint pytest\r\n```\r\n\r\nthe error:\r\n```\r\nerror: externally-managed-environment\r\n\r\n\u00d7 This environment is externally managed\r\n\u2570\u2500> To install Python packages system-wide, try apt install\r\n    python3-xyz, where xyz is the package you are trying to\r\n    install.\r\n    \r\n    If you wish to install a non-Debian-packaged Python package,\r\n    create a virtual environment using python3 -m venv path/to/venv.\r\n    Then use path/to/venv/bin/python and path/to/venv/bin/pip. Make\r\n    sure you have python3-full installed.\r\n    \r\n    If you wish to install a non-Debian packaged Python application,\r\n    it may be easiest to use pipx install xyz, which will manage a\r\n    virtual environment for you. Make sure you have pipx installed.\r\n    \r\n    See /usr/share/doc/python3.12/README.venv for more information.\r\n\r\nnote: If you believe this is a mistake, please contact your Python installation or OS distribution provider. You can override this, at the risk of breaking your Python installation or OS, by passing --break-system-packages.\r\n```\r\n\r\n\r\n\nComment: good catch, added break https://github.com/kevoreilly/CAPEv2/commit/8211cf940e1ede6c35e256639d56beb7e9a2aff5\nComment: Thank you! that fixed it. afterwards I got this error:\r\n\r\n```\r\nmohamed@mohamed-HP-EliteBook-850-G5:~/woot$ virt-manager --version\r\nTraceback (most recent call last):\r\n  File \"/usr/local/bin/virt-manager\", line 6, in <module>\r\n    from virtManager import virtmanager\r\n  File \"/usr/local/share/virt-manager/virtManager/virtmanager.py\", line 19, in <module>\r\n    from virtinst import BuildConfig\r\n  File \"/usr/local/share/virt-manager/virtinst/__init__.py\", line 50, in <module>\r\n    from virtinst.domain import *  # pylint: disable=wildcard-import\r\n    ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\r\n  File \"/usr/local/share/virt-manager/virtinst/domain/__init__.py\", line 5, in <module>\r\n    from .blkiotune import DomainBlkiotune\r\n  File \"/usr/local/share/virt-manager/virtinst/domain/blkiotune.py\", line 8, in <module>\r\n    from ..xmlbuilder import XMLBuilder, XMLChildProperty, XMLProperty\r\n  File \"/usr/local/share/virt-manager/virtinst/xmlbuilder.py\", line 16, in <module>\r\n    from .xmlapi import XMLAPI\r\n  File \"/usr/local/share/virt-manager/virtinst/xmlapi.py\", line 7, in <module>\r\n    import libxml2\r\nModuleNotFoundError: No module named 'libxml2'\r\nmohamed@mohamed-HP-EliteBook-850-G5:~/woot$ \r\nmohamed@mohamed-HP-EliteBook-850-G5:~/woot$ \r\n\r\n```\r\n\r\nand it seems to be fixed by this command:\r\n\r\n```\r\nmohamed@mohamed-HP-EliteBook-850-G5:~/woot$ sudo aptitude install python3-libxml2\r\nThe following NEW packages will be installed:\r\n  python3-libxml2 \r\n0 packages upgraded, 1 newly installed, 0 to remove and 72 not upgraded.\r\nNeed to get 139 kB of archives. After unpacking 882 kB will be used.\r\nGet: 1 http://us.archive.ubuntu.com/ubuntu noble/universe amd64 python3-libxml2 amd64 2.9.14+dfsg-1.3ubuntu3 [139 kB]\r\nFetched 139 kB in 0s (298 kB/s)         \r\nSelecting previously unselected package python3-libxml2:amd64.\r\n(Reading database ... 176243 files and directories currently installed.)\r\nPreparing to unpack .../python3-libxml2_2.9.14+dfsg-1.3ubuntu3_amd64.deb ...\r\nUnpacking python3-libxml2:amd64 (2.9.14+dfsg-1.3ubuntu3) ...\r\nSetting up python3-libxml2:amd64 (2.9.14+dfsg-1.3ubuntu3) ...\r\n                                         \r\nmohamed@mohamed-HP-EliteBook-850-G5:~/woot$ virt-manager --version\r\n5.0.0\r\nmohamed@mohamed-HP-EliteBook-850-G5:~/woot$ \r\n```\nComment: next issue I have now is when trying to create a VM in virt-manager:\r\n\r\n```\r\nmohamed@mohamed-HP-EliteBook-850-G5:~$ !virt\r\nvirt-manager \r\nTraceback (most recent call last):\r\n  File \"/usr/local/share/virt-manager/virtManager/manager.py\", line 451, in new_vm\r\n    from .createvm import vmmCreateVM\r\n  File \"/usr/local/share/virt-manager/virtManager/createvm.py\", line 31, in <module>\r\n    from .vmwindow import vmmVMWindow\r\n  File \"/usr/local/share/virt-manager/virtManager/vmwindow.py\", line 15, in <module>\r\n    from .details.console import vmmConsolePages\r\n  File \"/usr/local/share/virt-manager/virtManager/details/console.py\", line 15, in <module>\r\n    from .viewers import SpiceViewer, VNCViewer, SPICE_GTK_IMPORT_ERROR\r\n  File \"/usr/local/share/virt-manager/virtManager/details/viewers.py\", line 14, in <module>\r\n    gi.require_version('GtkVnc', '2.0')\r\n  File \"/usr/lib/python3/dist-packages/gi/__init__.py\", line 122, in require_version\r\n    raise ValueError('Namespace %s not available' % namespace)\r\nValueError: Namespace GtkVnc not available\r\nmohamed@mohamed-HP-EliteBook-850-G5:~$ \r\n\r\n\r\n```\r\n\r\nreinstalling libvirt as suggested does not seem to fix it!\r\n\r\n```  $ ./kvm-qemu.sh libvirt```\r\n\r\n\nComment: @lrhazi Run `sudo ./kvm-qemu.sh Issues` to see common issues that can occur when running the script and their solutions. I found these when I did:\r\n```\r\n    8. Namespace Gtk not available: Could not open display: localhost:10.0\r\n    8 ValueError: Namespace GtkSource not available\r\n    $ aptitude install -f gir1.2-gtksource-4 libgtksourceview-4-0 libgtksourceview-4-common\r\n    * Error will specify version, example gi.require_version(\"GtkSource\", \"4\"), if that version is not available for your distro\r\n    * you will need downgrade your virt-manager with $ sudo rm -r /usr/share/virt-manager and install older version\r\n```\r\n\r\n\nComment: thanks @ChrisThibodeaux , this seems to have fixed it for me:\r\n\r\n```\r\n$ sudo aptitude install gir1.2-gtk-vnc-2.0\r\n```\nComment: next issue is when trying to create a VM, it says network is not activated. but when I try to start it I get error:\r\n\r\n```\r\nmohamed@mohamed-HP-EliteBook-850-G5:~$ sudo virsh net-start default \r\nerror: Failed to start network default\r\nerror: internal error: Child process (VIR_BRIDGE_NAME=virbr0 /usr/sbin/dnsmasq --conf-file=/var/lib/libvirt/dnsmasq/default.conf --leasefile-ro --dhcp-script=/usr/libexec/libvirt_leaseshelper) unexpected exit status 3: /usr/libexec/libvirt_leaseshelper: error while loading shared libraries: libvirt.so.0: cannot open shared object file: No such file or directory\r\n\r\ndnsmasq: cannot run lease-init script /usr/libexec/libvirt_leaseshelper: No such file or directory\r\n\r\n\r\nmohamed@mohamed-HP-EliteBook-850-G5:~$ \r\n```\r\n\r\nI tried reinstalling libvirt and virtmanager, using kvm-qemu.sh, but to no avail!\r\n\nComment: @lrhazi The issue template is really useful for getting assistance. To help you, we need to know your distro/version, how you are running the commands, relevant info from the log files, etc. It also helps for others in your position who are searching through the tickets.\r\n\r\nCould you edit your initial post, fill out the template, and copy/paste your original text in the `Failure Logs` section?\nComment: thank you @ChrisThibodeaux for helping here",
+  "Title: Bump django from 4.2.16 to 4.2.17\nBody: Bumps [django](https://github.com/django/django) from 4.2.16 to 4.2.17.\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/django/django/commit/1f0356ff2af11a5fa71fb07b4627e10edd170438\"><code>1f0356f</code></a> [4.2.x] Bumped version for 4.2.17 release.</li>\n<li><a href=\"https://github.com/django/django/commit/7376bcbf508883282ffcc0f0fac5cf0ed2d6cbc5\"><code>7376bcb</code></a> [4.2.x] Fixed CVE-2024-53908 -- Prevented SQL injections in direct HasKeyLook...</li>\n<li><a href=\"https://github.com/django/django/commit/790eb058b0716c536a2f2e8d1c6d5079d776c22b\"><code>790eb05</code></a> [4.2.x] Fixed CVE-2024-53907 -- Mitigated potential DoS in strip_tags().</li>\n<li><a href=\"https://github.com/django/django/commit/f663277a4c22ef96cbdebfd0ed76155b9d37b4f8\"><code>f663277</code></a> [4.2.x] Refs CVE-2024-11168 -- Updated vendored _urlsplit() to properly valid...</li>\n<li><a href=\"https://github.com/django/django/commit/0acff0fd1f5ad09367aacb51b2b68699c6ce7929\"><code>0acff0f</code></a> [4.2.x] Added stub release notes and release date for 4.2.17.</li>\n<li><a href=\"https://github.com/django/django/commit/b381b19854f32c9ff03e6bd98865ddffbb7e7082\"><code>b381b19</code></a> [4.2.x] Fixed docs build on Sphinx 8.1+.</li>\n<li><a href=\"https://github.com/django/django/commit/ea4a1fb61e0bc6a4294a0123b82183da947e5efb\"><code>ea4a1fb</code></a> [4.2.x] Refs <a href=\"https://redirect.github.com/django/django/issues/35844\">#35844</a> -- Expanded compatibility for expected error messages in ...</li>\n<li><a href=\"https://github.com/django/django/commit/345a6652e6a15febbf4f68351dcea5dd674ea324\"><code>345a665</code></a> [4.2.x] Added GitHub Action workflow to test all Python versions listed in th...</li>\n<li><a href=\"https://github.com/django/django/commit/52116774549e27ac5d1ba9423e2fe61c5503a4a4\"><code>5211677</code></a> [4.2.x] Added CVE-2024-45230 and CVE-2024-45231 to security archive.</li>\n<li><a href=\"https://github.com/django/django/commit/8f6c36234deef30fad171f80d130eb7c296df526\"><code>8f6c362</code></a> [4.2.x] Post-release version bump.</li>\n<li>See full diff in <a href=\"https://github.com/django/django/compare/4.2.16...4.2.17\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=django&package-manager=pip&previous-version=4.2.16&new-version=4.2.17)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: NitrogenLoader update and monitor yara\nBody: None",
+  "Title: Improve trend unquarantine performance\nBody: Prior to these changes `trend_unquarantine` was passing the entire sample through a XOR routine before checking the XOR'd file header to determine if it was a quarantined file.\r\n\r\nFor a 100MB sample it was taking ~22 seconds to XOR the file.\r\n\r\n```\r\n%Own   %Total  OwnTime  TotalTime  Function\r\n0.00%   0.00%   21.58s    21.58s   bytearray_xor (lib/cuckoo/common/quarantine.py)\r\n\r\nNote, `bytearray_xor` is called by `trend_unquarantine`\r\n```\r\n\r\nBy changing the function to only XOR the first 10 bytes of the file (header) before checking the file signature, we remove significant amounts of processing time for what will likely be all samples submitted.\r\n\r\nUsing the same sample, post-change, the whole `unquarantine` process now only takes 0.770s.\r\n\r\n```\r\n%Own   %Total  OwnTime  TotalTime  Function\r\n0.00%   0.00%   0.040s    0.770s   unquarantine (lib/cuckoo/common/quarantine.py)\r\n\r\nNote, `trend_unquarantine` is called by `unquarantine`\r\n```\r\n\r\nUltimately, I'm not convinced that `trend_unquarantine` works anyway because:\r\n - there were syntax errors in the args passed to the `.decode` functions.\r\n - `read_trend_tag` returns a `tuple[int, bytes]`, the tag code and the tag data. When unpacking the original filename tag (tag code 2), it passes the tag data (bytes) into the `str` func, encodes it and then decodes it again. This means the original filename is only ever a string representation of bytes (see below), causing the downstream functions to fail (in my testing, without a proper quarantined file).\r\n \r\n```\r\n>>> str(b\"hello\").encode(\"utf16\").decode(errors=\"ignore\")\r\n\"b\\x00'\\x00h\\x00e\\x00l\\x00l\\x00o\\x00'\\x00\"  \r\n>>> str(\"hello\".encode(\"utf16\")).encode(\"utf16\").decode(errors=\"ignore\")\r\n\"b\\x00'\\x00\\\\\\x00x\\x00f\\x00f\\x00\\\\\\x00x\\x00f\\x00e\\x00h\\x00\\\\\\x00x\\x000\\x000\\x00e\\x00\\\\\\x00x\\x000\\x000\\x00l\\x00\\\\\\x00x\\x000\\x000\\x00l\\x00\\\\\\x00x\\x000\\x000\\x00o\\x00\\\\\\x00x\\x000\\x000\\x00'\\x00\"\r\n```\nComment: nice finding, thank you",
+  "Title: Update poetry binary location. Fix pip errors for ubuntu 22.04.\nBody: - Fixed all `poetry: command not found` errors.\r\n- Kept the ubuntu 24.04 updates and fixed the pip errors with 22.04.\r\n\r\nLikely a more graceful way of pointing to the Poetry binary than placing `/etc/poetry/bin/poetry` everywhere, but this fixes all of the install issues on ubuntu 22.04.\nComment: thanks ",
+  "Title: fix for interactive desktop analysis using rdp\nBody: This PR is a fix for using RDP for interactive desktop analyses. Without this change, I was unable to get RDP working.\r\n\r\nThere is also a new config for indicating if certificate verification of the remote desktop should be ignored. The cert verification only applies to connections over RDP; it is ignored for VNC.\nComment: thanks, i guess about certificate you mean https right?\nComment: Windows allows you to install a TLS cert for use with RDP. RDP clients will attempt to verify the signer back to the root certificate, but if validation fails (for example if the cert is self-signed), they will allow you to accept the warning and connect anyway. However, guacamole will fail the connection and report a TLS/SSL error, unless the `ignore_cert` argument is specified.",
+  "Title: tweak nitrogen loader rules\nBody: add monitor rule to dump resource xor decryption key",
+  "Title: CobaltStrikeBeacon YARA rule False Positives\nBody: This feels like the wrong place to report the issue, but it feels like it needs reported somewhere. I do not have the means to improve and test the YARA rule myself, so I am raising the issue here.\r\n\r\nI've started observing false positives with the CobaltStrikeBeacon YARA rule:\r\nhttps://github.com/kevoreilly/CAPEv2/blob/3427c2690275fc06aff5ff5e27aeb8fc68422529/data/yara/CAPE/CobaltStrikeBeacon.yar \r\n\r\nThis was observed because this YARA rule is also leveraged by VirusTotal and VirusTotal's own CAPE sandbox. In VirusTotal's situation, it results an VirusTotal returning an empty \"malware_config\" for \"beacon\" when this YARA rule is triggered. I reported the issue to VirusTotal separately.\r\n\r\n1) Microsoft Signed Executable: https://www.virustotal.com/gui/file/97d90dbc0b511f0b963d069927aee4e1590abf93e0cd83e48d48e4e4cb3b22c5/detection\r\n\r\nImage from Malcat regarding matched patterns:\r\n![image](https://github.com/user-attachments/assets/d676e919-9fbc-4f81-9c56-ef760c9ca082)\r\n\r\n\r\n2) https://www.virustotal.com/gui/file/ca1b7a7af14d886bd6817caf93208da44627f97d7b30f88acaa6b971e3dd233b/detection\r\n\r\nThis sample appears to trigger on the condition of \"all of ($ver4*)\" \r\n```\r\n        $ver4a = {2e 2f 2e 2f 2e 2c ?? ?? 2e}\r\n        $ver4b = {2e 2e 2e 2e}\r\n```\r\nImage from Malcat regarding matched patterns:\r\n![image](https://github.com/user-attachments/assets/8754c951-9f21-468b-bc35-eb56a27c6c1f)\r\n\r\n------------------------\r\nUnfortunately, it does not seem hard to find false positives like the above.\r\nIn my opinion there are two good solutions (1) the rule needs to be tightened or (2) the rule should be retired.\nComment: Give up on detecting Cobalt Strike?! Retiring detection doesn't sound like an option to me!\nComment: Improving the rule gets my vote...\nComment: Ahaha, that is fair. :sweat_smile: .  I myself don't understand the rule enough to contribute to improving it nor do I quite know for sure what is going wrong with the current detection. But I reckon one of ya'll should be able to figure it out.\nComment: Thanks for the heads up \ud83d\udc4d \nComment: The instances of patterns ``{2e 2e 2e 2e}`` and ``{69 69 69 69}`` are just terrible, for all samples I have that are detected by these patterns (which are just empty regions xored), I found there was no loss of detection increasing the size of these by four but this was sufficient to remove one of the above mentioned false positives (``ca1b7a7af14d886bd6817caf93208da44627f97d7b30f88acaa6b971e3dd233b``), so that was an easy improvement.\r\n\r\nIn the case of ``97d90dbc0b511f0b963d069927aee4e1590abf93e0cd83e48d48e4e4cb3b22c5`` which is MRT.exe (Microsoft Malicious Software Removal Tool) the detection is based on other less obviously weak conditions (``2 of ($a*)``) which I am slightly reluctant to mess with as I would not be surprised if these are legitimate detections of malicious patterns in the embedded MRT signature set.\r\n\r\nSo let's see how the FPs look after the slight improvement I've pushed and if they are not drastically reduced (but perhaps allowing a few dubious outliers like MRT) then we can tighten it further.",
+  "Title: Update cloning.rst\nBody: None\nComment: thank you, i will add that configurable from the config tomorrow, so no need to change the disguise.py by hand, aftar that i will mode this and merge\nComment: could you test the update plz before i merge?\nComment: \\c @dsecuma for headups\nComment: So I tested the upgrade and seem to work fine. Wondering what the goal of the config section gateways is ? Is it related ? Or maybe disguise should have his own section ?(Don't remember if the sections are for server side auxiliary) Small details but regardless of the presentation it work good now.\nComment: Oh actually it used the default I think. There is no get for the config object. \nComment: ok, removed get as it useless as we have default value in config anyway, thank you going to merge",
+  "Title: sigs\nBody: None\nComment: Thank you @doomedraven",
+  "Title: QEMU/SeaBIOS identifiers detectable\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n# Current Behavior\r\n\r\n**Not considering this a bug**, could be an issue with my setup. Followed the docs, editing and running the install scripts. Followed the two KVM posts from @doomedraven to get everything set as well.\r\n\r\nIdentifiers for QEMU and SeaBIOS present on guest machines. Here are examples from the registry:\r\n```\r\nHKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Enum\\ACPI\\QEMU0002\\3&11583659&0\r\nHKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Enum\\ACPI\\QEMU0002\r\nHKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Enum\\ACPI\\QEMU0002\\3&11583659&0\\Device Parameters\r\nHKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Enum\\ACPI\\QEMU0002\\3&11583659&0\r\nHKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Enum\\ACPI\\QEMU0002\\3&11583659&0\\LogConf\r\nHKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Enum\\ACPI\\QEMU0002\\3&11583659&0\r\n\r\nHKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Control\\Class\\{4d36e968-e325-11ce-bfc1-08002be10318}\\0000\\HardwareInformation.ChipType = SeaBIOS VBE(C) 2011\r\nHKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Control\\Class\\{4d36e968-e325-11ce-bfc1-08002be10318}\\0000\\HardwareInformation.DacType = SeaBIOS Developers\r\nHKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Control\\Class\\{4d36e968-e325-11ce-bfc1-08002be10318}\\0000\\HardwareInformation.BiosString = SeaBIOS VBE Adapter\r\nHKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Control\\Class\\{4d36e97d-e325-11ce-bfc1-08002be10318}\\0035\\HardwareInformation.ChipType = SeaBIOS VBE(C) 2011\r\nHKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Control\\Class\\{4d36e97d-e325-11ce-bfc1-08002be10318}\\0035\\HardwareInformation.DacType = SeaBIOS Developers\r\nHKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Control\\Class\\{4d36e97d-e325-11ce-bfc1-08002be10318}\\0035\\HardwareInformation.BiosString = SeaBIOS VBE Adapter\r\n```\r\n\r\n1. `ACPI\\QEMU0002\\3&11583659&0` is a known artifact [found on Virus Total and Hybrid Analysis VMs](https://obbedcode.hashnode.dev/bad-honey-in-the-honey-pot) (search for `QEMU0002` in that article). This shows under device manager as `Other devices\\Unknown Device` and has set registry keys with the identifying string.\r\n2. The various `SeaBIOS` are also found in the above article and used by [AsyncRAT in the wild](https://www.huntress.com/blog/fake-browser-updates-lead-to-boinc-volunteer-computing-software).\r\n\r\n![seabiod_video_indicators](https://github.com/user-attachments/assets/c3829938-17d0-4380-aba8-c2beff8fe49d)\r\n![regi_keys](https://github.com/user-attachments/assets/070ff748-ae47-4b5b-876c-801e3f4abf20)\r\n\r\nI know that the AsyncRAT check is at least accounted for by community YARA rule for VenomRAT. Not sure if anything is in place for the `ACPI\\QEMU0002\\3&11583659&0` one, but that might just be an issue with my install? I've uninstalled the device and removed the registry keys. For the time being, I am manually editing the keys that have any SeaBIOS in their data.\r\n\r\nLooking for advice on this. Should I update the `kvm-qemu.sh` to cover the SeaBIOS strings in [vgasrc/vbe.c](https://github.com/coreboot/seabios/blob/62a1429ec1ec67f14c039d97627a6a7ef70a983c/vgasrc/vbe.c#L19)?\r\n\nComment: Hey yes, you need to extend it, I have my private version that I use, so I don't use public one, public is an examples that I did for community with base fixes, but there is way much more to fix. But as you understand I can't show all of them otherwise those who implements detection will have advantage. So you need to fix that by youself\nComment: Okay, that makes perfect sense. I did not consider that, should I edit my original post to redact those items?\r\n\r\nAlso, if I extend the kvm-qemu.sh, can I run these to have an existing VM updated?\r\n`$ sudo ./kvm-qemu.sh replace_qemu | tee update_qemu.log`\r\n`$ sudo ./kvm-qemu.sh replace_seabios <path> | tee update_seabios.log`\nComment: Bah thats fine :) better than edit, you can PR fix to kvm-qemu ;) \r\n\r\nIn most of the cases yes, but from my experience, this specific qemu002 need recreation of vm, but try to fix, reboot vm, if it doesn't disappear then you will need to recreate OR use psexec to force dump of registry, edit and restore patched version,  see disguise.py there should be example how we were doing that on live machine\nComment: feel free to post/ask here, but closing as resolved\nComment: @doomedraven Thanks! CAPE was and has been my only source of experience with sandboxing and dynamic analysis. I am learning more about malware through CAPE and more about CAPE through malware. I love the sandbox and the project as a whole. Incredible stuff all around and I'll contribute as much as I can, wherever I can. I'm working on the updates to the `kvm-qemu.sh` now and setting up a laptop as a dedicated build test environment.\r\n\r\nI was wondering about the idea of continuously hardening VMs versus creating hooks to handle anti-vm techniques. They both have their place, but after a certain point of hardening, I don't know if it makes sense to continue. It seems like the flexibility of being able to enable/disable hooks gives you more variability to the run environment. Hardening is sort of set in stone, unable to vary between one run and the next for a given VM.\r\n\r\nWhere you draw the line, if at all, and stop hardening a VM against detection? \nComment: I also learned a lot since 2011 when I started with cuckoo/cuckoo-modified/cape. Glad you learning a lot. In my personal point of view, is better to handle on source code level so you don't need to care about stuff inside of the VM, as each hook is huge delay for the performance. And when more hooks we add, bad guys can start abusing that to defeat analysis. Qemu introduces new patterns rarely so is easier to check if there is new issue to fix.\r\n\r\nabout the line, well they do another things to defeat analysis, i see less and less malware care about vm stuff, as is easier to spot in server side if is real pc or sandbox. is complicated subject and mostly depends of kind of malware that you focus on\nComment: one small nota that i forgot to add, windows has a lot of undocumented features, so is much better to handle that on source level once and forever, than have to patch once new method of enumeration is discovered",
+  "Title: Elasticsearch breaks because of unspecified version of pip package\nBody: https://github.com/kevoreilly/CAPEv2/blob/b46f439832e8e3d35a74f82ff5141bcc26ccd80c/installer/cape2.sh#L878\r\n\r\nUnspecified version, installs 8+, breaks all the commands because port isn't even supported when creating elastic_handler\nComment:     elastic_handler = Elasticsearch(\r\n        hosts=[repconf.elasticsearchdb.host],\r\n        port=repconf.elasticsearchdb.get(\"port\", 9200),\r\n        http_auth=(repconf.elasticsearchdb.get(\"username\"), repconf.elasticsearchdb.get(\"password\")),\r\n        use_ssl=repconf.elasticsearchdb.get(\"use_ssl\", False),\r\n        verify_certs=repconf.elasticsearchdb.get(\"verify_certs\", False),\r\n        timeout=120,\r\n    )\nComment: elastic is not supported and you can uninstall it, is why it not in any base/all block that is there just for devs to help them into get env for tests",
+  "Title: HTTPS/TLS decryption not works properly\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I did read the README!\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nUsing tlsdump there are shouldbe visible HTTPS requests. \r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\n# Failure Information (for bugs)\r\n\r\nI tried to configure SSL decryption with mitmdump, i successfully managed to do it. But there are only HAR file generated, that could be downloaded via api. However the https requests are not visible in web GUI.\r\n![2024-11-21_15-10](https://github.com/user-attachments/assets/da7fcb3c-21ab-4c5a-8f4f-9cd2f3098809)\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Enable tlsdump feature\r\n2. There are no https request visible in GUI \r\n\r\n## Context\r\n\r\n\r\nI tried to configure SSL decryption with mitmdump, i successfully managed to do it. But there are only HAR file generated, that could be downloaded via api. However the https requests are not visible in web GUI. My another attempt was to use tlsdump module (i found out that mitmdump and tlsdump does not work simultaneously), And now i can only download TLS-Keys\r\n![2024-11-21_15-08](https://github.com/user-attachments/assets/7ceb522b-b995-4ff0-ac9b-adcd9d7eaa17)\r\n\r\nI don't know how to enable tls/ssl decryption to achieve visibility in GUI. Am I missing something in my configuration? Below i paste my auxiliary.conf and mitmdump.conf. I\r\n\r\n```\r\nauxiliary.conf\r\n# Requires dependencies of software in vm as by:\r\n# https://www.fireeye.com/blog/threat-research/2016/02/greater_visibilityt.html\r\n# Windows 7 SP1, .NET at least 4.5, powershell 5 preferly over v4\r\n# KB3109118 - Script block logging back port update for WMF4\r\n# x64 - https://cuckoo.sh/vmcloak/Windows6.1-KB3109118-v4-x64.msu\r\n# x32 - https://cuckoo.sh/vmcloak/Windows6.1-KB3109118-v4-x86.msu\r\n# KB2819745 - WMF 4 (Windows Management Framework version 4) update for Windows 7\r\n# x64 - https://cuckoo.sh/vmcloak/Windows6.1-KB2819745-x64-MultiPkg.msu\r\n# x32 - https://cuckoo.sh/vmcloak/Windows6.1-KB2819745-x86-MultiPkg.msu\r\n# KB3191566 - https://www.microsoft.com/en-us/download/details.aspx?id=54616\r\n# You should create following registry entries\r\n# reg add \"HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\PowerShell\\ModuleLogging\\ModuleNames\" /v * /t REG_SZ /d * /f /reg:64\r\n# reg add \"HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\PowerShell\\ScriptBlockLogging\" /v EnableScriptBlockLogging /t REG_DWORD /d 00000001 /f /reg:64\r\n# reg add \"HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\PowerShell\\Transcription\" /v EnableTranscripting /t REG_DWORD /d 00000001 /f /reg:64\r\n# reg add \"HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\PowerShell\\Transcription\" /v OutputDirectory /t REG_SZ /d C:\\PSTranscipts /f /reg:64\r\n# reg add \"HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\PowerShell\\Transcription\" /v EnableInvocationHeader /t REG_DWORD /d 00000001 /f /reg:64\r\n\r\n# Modules to be enabled or not inside of the VM\r\n[auxiliary_modules]\r\namsi = yes\r\nbrowser = yes\r\ncurtain = yes\r\ndigisig = yes\r\ndisguise = yes\r\nevtx = yes\r\nhuman_windows = yes\r\nhuman_linux = no\r\nprocmon = yes\r\nrecentfiles = yes\r\nscreenshots_windows = yes\r\nscreenshots_linux = yes\r\nsysmon_windows = no\r\nsysmon_linux = no\r\ntlsdump = yes\r\nusage = yes\r\nfile_pickup = yes\r\npermissions = yes\r\npre_script = no\r\nduring_script = no\r\nfilecollector = yes\r\n# This is only useful in case you use KVM's dnsmasq. You need to change your range inside of analyzer/windows/modules/auxiliary/disguise.py. Disguise must be enabled\r\nwindows_static_route = no\r\ntracee_linux = no\r\nsslkeylogfile = no\r\n# Requires setting up browser extension, check extra/browser_extension\r\nbrowsermonitor = no\r\n\r\n[AzSniffer]\r\n# Enable or disable the use of Azure Network Watcher packet capture feature, disable standard sniffer if this is in use to not create concurrent .pcap files\r\nenabled = no\r\n\r\n[sniffer]\r\n# Enable or disable the use of an external sniffer (tcpdump) [yes/no].\r\nenabled = yes\r\n\r\n# enable remote tcpdump support\r\nremote = no\r\nhost = root@192.168.122.1\r\n\r\n# Specify the path to your local installation of tcpdump. Make sure this\r\n# path is correct.\r\ntcpdump = /usr/bin/tcpdump\r\n\r\n# Specify the network interface name on which tcpdump should monitor the\r\n# traffic. Make sure the interface is active.\r\ninterface = virbr1\r\n\r\n# Specify a Berkeley packet filter to pass to tcpdump.\r\nbpf = not arp\r\n\r\n[gateways]\r\n#RTR1 = 192.168.1.254\r\n#RTR2 = 192.168.1.1\r\n#INETSIM = 192.168.1.2\r\n\r\n[QemuScreenshots]\r\n# Enable or disable the use of QEMU as screenshot capture [yes/no].\r\n# screenshots_linux and screenshots_windows must be disabled\r\nenabled = no\r\n\r\n[Mitmdump]\r\n# Enable or disable the use of mitmdump (mitmproxy) to get dump.har [yes/no].\r\n# This module requires installed mitmproxy see install_mitmproxy \r\n# (https://github.com/kevoreilly/CAPEv2/blob/master/installer/cape2.sh#L1320)\r\nenabled = no\r\n```\r\n\r\n```\r\nmitmdump.conf\r\n[cfg]\r\n# bin path to mitmdump\r\nbin = /opt/mitmproxy/mitmdump\r\n\r\n# Host ip where mitmdump is listening\r\nhost = 192.168.122.1\r\n\r\n# Interface where mitmdump is listening\r\ninterface = virbr0\r\n```\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 16.04, Windows 10, macOS 10.12.3\r\n\r\n\r\n## Failure Logs\r\n\r\nIn cape-processor logs i find out that tlsdump file is empty, but analysis log tells that tlsdump process has started\r\n\r\n```\r\n2024-11-25 14:47:21,860 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.tlsdump\"\r\n2024-11-25 14:47:44,063 [root] DEBUG: Trying to start auxiliary module \"modules.auxiliary.tlsdump\"...\r\n2024-11-25 14:47:44,063 [modules.auxiliary.tlsdump] INFO: lsass.exe found, pid 656\r\n2024-11-25 14:47:44,079 [lib.api.process] INFO: Option 'tlsdump' with value '1' sent to monitor\r\n2024-11-25 14:47:44,454 [root] DEBUG: Started auxiliary module modules.auxiliary.tlsdump\r\n2024-11-25 14:47:44,485 [root] DEBUG: 656: TLS 1.2 secrets logged to: C:\\XXroxY\\tlsdump\\tlsdump.log\r\n```\r\n\r\n\r\n```\r\nlis 25 15:58:46 cape python3[127583]: editcap: \"/opt/CAPEv2/storage/analyses/64/tlsdump/tmpalgcg7bj\" is an empty file, ignoring\r\nlis 25 15:59:09 cape python3[126286]: 2024-11-25 15:59:09,267 [Task 64] [lib.cuckoo.common.integrations.capa] ERROR: CAPA ValidationError 5 validation errors for CapeReport\r\nlis 25 15:59:09 cape python3[126286]: behavior.processes.0.file_activities\r\nlis 25 15:59:09 cape python3[126286]:   Extra inputs are not permitted [type=extra_forbidden, input_value={'read_files': [], 'write... [], 'delete_files': []}, input_type=dict]\r\nlis 25 15:59:09 cape python3[126286]:     For further information visit https://errors.pydantic.dev/2.9/v/extra_forbidden\r\nlis 25 15:59:09 cape python3[126286]: behavior.processes.1.file_activities\r\nlis 25 15:59:09 cape python3[126286]:   Extra inputs are not permitted [type=extra_forbidden, input_value={'read_files': [], 'write... [], 'delete_files': []}, input_type=dict]\r\nlis 25 15:59:09 cape python3[126286]:     For further information visit https://errors.pydantic.dev/2.9/v/extra_forbidden\r\nlis 25 15:59:09 cape python3[126286]: behavior.processes.2.file_activities\r\nlis 25 15:59:09 cape python3[126286]:   Extra inputs are not permitted [type=extra_forbidden, input_value={'read_files': [], 'write... [], 'delete_files': []}, input_type=dict]\r\nlis 25 15:59:09 cape python3[126286]:     For further information visit https://errors.pydantic.dev/2.9/v/extra_forbidden\r\nlis 25 15:59:09 cape python3[126286]: behavior.processes.3.file_activities\r\nlis 25 15:59:09 cape python3[126286]:   Extra inputs are not permitted [type=extra_forbidden, input_value={'read_files': [], 'write... [], 'delete_files': []}, input_type=dict]\r\nlis 25 15:59:09 cape python3[126286]:     For further information visit https://errors.pydantic.dev/2.9/v/extra_forbidden\r\nlis 25 15:59:09 cape python3[126286]: procmemory.0\r\nlis 25 15:59:09 cape python3[126286]:   Input should be None [type=none_required, input_value={'path': '/opt/CAPEv2/sto...281305bd90c8ed35441c'}]}, input_type=dict]\r\nlis 25 15:59:09 cape python3[126286]:     For further information visit https://errors.pydantic.dev/2.9/v/none_required\r\nlis 25 15:59:27 cape python3[124488]: 2024-11-25 15:59:27,821 [root] INFO: Reports generation completed for Task #64\r\n```\r\n\r\n",
+  "Title: Ruff\nBody: None\nComment: looks good to me :)\nComment: Thank you for double checking ",
+  "Title: tweak nitrogen loader rule\nBody: None",
+  "Title: Poetry module not found by systemd services\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nAfter full install, CAPE's systemd services should be active.\r\n\r\n# Current Behavior\r\n\r\nServices all fail to activate.\r\n\r\n# Failure Information (for bugs)\r\n\r\nCape, cape-web, cape-rooter, and cape-processor services fail to activate. Errors indicate poetry not being found by python correctly.\r\n\r\n## Steps to Reproduce\r\n\r\n1. Edit and run installation scripts.\r\n2. Install dependencies with `poetry install`\r\n3. Restart cape, cape-web, etc. services.\r\n4. Check the `systemctl status` and/or `journalctl -u <service> -f`. Will display failure info.\r\n\r\n## Context\r\n\r\nInstalled on a bare metal server with Ubuntu 22.04.\r\n\r\nRecent changes to the method of installing poetry in cape2.sh (`curl -sSL https://install.python-poetry.org | POETRY_HOME=/etc/poetry python3 -`) move where it is installed to `/etc/poetry`. No issue with installing that way or in that location because that is exactly how poetry's docs say it can be done.\r\n\r\n_I believe_ this new install location is **not** a location that python will check when attempting to load a module with `python -m`. The previous use of `apt install python-poetry` was likely installing at `/usr/local/lib/python3.10/dist-packages` or `/usr/lib/python3/dist-packages`. Directly running `sudo -u cape poetry run python3 cuckoo.py` from `/opt/CAPEv2` works properly. Nearly positive this issue is isolated to the systemd service files.\r\n\r\nPR with proposed fix here: #2407 \r\nI am not entirely sure about the ramifications of running the `ExecStart`s with `/etc/poetry/bin/poetry run python ...` instead of `/usr/bin/python3 poetry run python ...`, but the changes in this PR fix the problem for me.\r\n\r\nLeaving it as a draft until anyone else can confirm that\r\n\r\n1. A fresh install fails for them in the same way\r\n2. Applying the #2407 changes fixes that\r\n\r\n## Failure Logs\r\n\r\nFrom the `journalctl` for cape.service.\r\n```\r\nNov 20 10:18:14 hairy-aviators systemd[1]: Started CAPE.\r\nNov 20 10:18:14 hairy-aviators python3[1272]: /usr/bin/python3: No module named poetry\r\nNov 20 10:18:14 hairy-aviators systemd[1]: cape.service: Main process exited, code=exited, status=1/FAILURE\r\nNov 20 10:18:14 hairy-aviators systemd[1]: cape.service: Failed with result 'exit-code'.\r\nNov 20 10:23:14 hairy-aviators systemd[1]: cape.service: Scheduled restart job, restart counter is at 1.\r\nNov 20 10:23:14 hairy-aviators systemd[1]: Stopped CAPE.\r\n```\r\n\r\nNote that `poetry` is available in the PATH variable.\r\n```\r\nroot@hairy-aviators:/opt/CAPEv2# poetry\r\nPoetry (version 1.8.4)\r\n...\r\n```\nComment: I'm getting the same exact issue and the suggested PR lets me progress further. Still stuck afterwards due to the cape2.sh installer failing to find poetry anyways despite the fixed issue 2400.\nComment: @poland4000 Can you share the portion of `cape.log` with the errors? My runs of `sudo ./cape.sh base cape | tee cape.log` don't seem to fail. This is the only part of the log I see anything about Poetry:\r\n\r\n```\r\nRetrieving Poetry metadata\r\n\r\n# Welcome to Poetry!\r\n\r\nThis will download and install the latest version of Poetry,\r\na dependency and package manager for Python.\r\n\r\nIt will add the `poetry` command to Poetry's bin directory, located at:\r\n\r\n/etc/poetry/bin\r\n\r\nYou can uninstall at any time by executing this script with the --uninstall option,\r\nand these changes will be reverted.\r\n\r\nInstalling Poetry (1.8.4)\r\nInstalling Poetry (1.8.4): Creating environment\r\nInstalling Poetry (1.8.4): Installing Poetry\r\nInstalling Poetry (1.8.4): Creating script\r\nInstalling Poetry (1.8.4): Done\r\n\r\nPoetry (1.8.4) is installed now. Great!\r\n\r\nTo get started you need Poetry's bin directory (/etc/poetry/bin) in your `PATH`\r\nenvironment variable.\r\n\r\nAdd `export PATH=\"/etc/poetry/bin:$PATH\"` to your shell configuration file.\r\n\r\nAlternatively, you can call Poetry explicitly with `/etc/poetry/bin/poetry`.\r\n\r\nYou can test that everything is set up by executing:\r\n\r\n`poetry --version`\r\n```\nComment: I'd like to provide a log though I already 'fixed' it by including the poetry path into secure_path in visudo. Without this It would install just as in your logs, poetry installation would be successful however every step involving poetry e.g. \"poetry --directory /opt/CAPEv2/ run pip install yara-x\" would throw poetry command not found. I used \"sudo ./cape2.sh all cape | tee cape.log\" to install.\nComment: So, with the base install that I ran, I did not hit those errors. I have a feeling `poetry --directory /opt/CAPEv2/ run ...` fails, but `sudo -u ${USER} poetry --directory /opt/CAPEv2 run ...` definitely does not. There is no place where the direct `poetry --directory ...` style is used when `base` arg is used.\r\n\r\nMay simply be that the spots where the first command is used need to be updated to prepend `sudo -u ${USER}` to them.\nComment: So I got around this by modifying the `ExecStart=/usr/bin/python3 -m poetry ...` part of each `cape.*.service` file with `ExecStart=/etc/poetry/bin/poetry`. The problem is that the `cape2.sh` script doesn't install poetry as a module to the base system's pip repo so the `systemd` service files ultimately can't find it. I haven't investigated which part of the `cape2.sh` install script creates the service files but it seems like if my changes above were put into the service file templates, all will work as intended. I don't know if this will have any unintended side effects but it is working for me so far.\nComment: Hey thanks for heads, I will fix systemd tomorrow, files are in systemd\r\nfolder inside of CAPEv2, CAPEv2.sh just copies them\r\n\r\nEl vie, 22 nov 2024, 23:30, czechmate247 ***@***.***>\r\nescribi\u00f3:\r\n\r\n> So I got around this by modifying the ExecStart=/usr/bin/python3 -m\r\n> poetry ... part of each cape.*.service file with\r\n> ExecStart=/etc/poetry/bin/poetry. The problem is that the cape2.sh script\r\n> doesn't install poetry as a module to the base system's pip repo so the\r\n> systemd service files ultimately can't find it. I haven't investigated\r\n> which part of the cape2.sh install script creates the service files but\r\n> it seems like if my changes above were put into the service file templates,\r\n> all will work as intended. I don't know if this will have any unintended\r\n> side effects but it is working for me so far.\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2408#issuecomment-2494978586>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH36RS4HAQWDRIHQQQ7D2B6V7XAVCNFSM6AAAAABSIIFO4GVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDIOJUHE3TQNJYGY>\r\n> .\r\n> You are receiving this because you are subscribed to this thread.Message\r\n> ID: ***@***.***>\r\n>\r\n\nComment: fixed here https://github.com/kevoreilly/CAPEv2/commit/a8c6b37c97b0fd7391bcd92a305f9bda0f0b76a3\nComment: @doomedraven From the fix [commit](https://github.com/kevoreilly/CAPEv2/blob/a8c6b37c97b0fd7391bcd92a305f9bda0f0b76a3/systemd/cape-rooter.service#L9-10) in `/systemd/cape-rooter.service`:\r\n```\r\nExecStartPre=/etc/poetry/bin/poetry -m poetry config cache-dir /opt/CAPEv2/.cache/pypoetry\r\nExecStart=/etc/poetry/bin/poetry -m poetry run python rooter.py -g cape\r\n```\r\n\r\nShould these two lines be this instead?\r\n```\r\nExecStartPre=/etc/poetry/bin/poetry config cache-dir /opt/CAPEv2/.cache/pypoetry\r\nExecStart=/etc/poetry/bin/poetry run python rooter.py -g cape\r\n```\nComment: ah yes good catch, thanks, fixing\nComment: @doomedraven As always, thank you for all your work! I'll close out this issue and the PR I put up.\r\n\r\nThere may remain the problem others are reporting here with the cape2.sh script failing to find Poetry. I don't think that necessarily should be solved in this ticket, though. When I have more time, I will take a look there as well.\nComment: thanks for the headups, the poetry now is instaled to /etc/poetry so shouldn't be a problem anymore, let me know if you find any other problem",
+  "Title: Fix systemd services being unable to find the poetry module.\nBody: Update systemd service files to point to new Poetry install location.\r\n\r\nLinked issue ticket #2408 \nComment: ouch, i missed this PR",
+  "Title: Fix TypeError on the status page when viewing URL submissions\nBody: Fixes a TypeError that occurs because `task.sample` is None when submitting URLs.",
+  "Title: Update NitrogenLoader yara\nBody: None",
+  "Title: Count failures when running reporting modules\nBody: The status `TASK_FAILED_REPORTING` was never being set.\r\n\r\n1. Reporting exceptions are now counted in `RunReporting.process()`.\r\n2. `RunReporting.run()` now returns the number of exceptions caught.\r\n3. When `utils/process.py` ran, it was always setting the status to `TASK_REPORTED`. \r\n   - Now, it checks the number of these exceptions, and if non-zero, sets the status to `TASK_FAILED_REPORTING` instead.",
+  "Title: Count failures when running reporting modules\nBody: The status `TASK_FAILED_REPORTING` was never being set.\r\n\r\n1. Reporting exceptions are now counted in `RunReporting.process()`.\r\n2. `RunReporting.run()` now returns the number of exceptions caught.\r\n3. When `utils/process.py` ran, it was always setting the status to `TASK_REPORTED`. \r\n   - Now, it checks the number of these exceptions, and if non-zero, sets the status to `TASK_FAILED_REPORTING` instead.",
+  "Title: Failing to install virt-manager with kvm-qemu.sh\nBody: - [x] I am trying to install the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nThe expected behavior for `kvm-qemu.sh` is to install the virt-manager by cloning the repository and running the `setup.py `file\r\n\r\n# Current Behavior\r\n\r\nThe current behavior is failing at the `setup.py `stage because the repository does not have a `setup.py `file when it is cloned from [https://github.com/virt-manager/virt-manager](https://github.com/virt-manager/virt-manager). This is the error that I am getting.\r\n\r\n`python3: can't open file '/tmp/virt-manager/setup.py': [Errno 2] No such file or directory`\r\n\r\n\r\nUpon Checking the directory there is no setup.py. Here is the list of files in the repository /tmp/virt-manager:\r\n```bash\r\nls /tmp/virt-manager/ -1\r\nCONTRIBUTING.md\r\nCOPYING\r\ndata\r\nDESIGN.md\r\nINSTALL.md\r\nman\r\nmeson.build\r\nmeson_options.txt\r\nNEWS.md\r\npo\r\nREADME.md\r\nscripts\r\nsetup.cfg\r\ntests\r\nui\r\nvirt-clone\r\nvirtinst\r\nvirt-install\r\nvirt-manager\r\nvirtManager\r\nvirt-manager.spec.in\r\nvirt-xml\r\n```\r\n\r\nAs we can see there is no `setup.py ` file in the repository which was cloned. I double-checked the repository and there is no `setup.py` either. Also to verify that this indeed is the section, here is the relevant part of the script `kvm-qemu.sh`:\r\n\r\n```python\r\nif [ ! -d \"virt-manager\" ]; then\r\n        git clone https://github.com/virt-manager/virt-manager.git\r\n        echo \"[+] Cloned Virt Manager repo\"\r\n    fi\r\n    cd \"virt-manager\" || return\r\n    # py3\r\n    #pip3 install .\r\n    python3 setup.py build\r\n```\r\nHow do I continue the installation without this? The recommended way to install is to use the provided script to automate the whole process and I am following the documentation. Any help would be greatly appreciated. \r\n\r\n\r\n\r\n\r\n\r\n\nComment: There is issue opened about this, which we can't reproduce, you can use\r\ndocker with virt-manager, check that issue\r\n\r\nEl vie, 15 nov 2024, 7:10, Ajwad Akil ***@***.***> escribi\u00f3:\r\n\r\n>\r\n>    - I am trying to install the latest version\r\n>    - I did read the README!\r\n>    - I checked the documentation and found no answer\r\n>    - I checked to make sure that this issue has not already been filed\r\n>    - I'm reporting the issue to the correct repository (for\r\n>    multi-repository projects)\r\n>    - I have read and checked all configs (with all optional parts)\r\n>\r\n> Expected Behavior\r\n>\r\n> The expected behavior for kvm-qemu.sh is to install the virt-manager by\r\n> cloning the repository and running the setup.py file\r\n> Current Behavior\r\n>\r\n> The current behavior is failing at the setup.py stage because the\r\n> repository does not have a setup.py file when it is cloned from\r\n> https://github.com/virt-manager/virt-manager. This is the error that I am\r\n> getting.\r\n>\r\n> python3: can't open file '/tmp/virt-manager/setup.py': [Errno 2] No such\r\n> file or directory\r\n>\r\n> Upon Checking the directory there is no setup.py. Here is the list of\r\n> files in the repository /tmp/virt-manager:\r\n>\r\n> ls /tmp/virt-manager/ -1\r\n> CONTRIBUTING.md\r\n> COPYING\r\n> data\r\n> DESIGN.md\r\n> INSTALL.md\r\n> man\r\n> meson.build\r\n> meson_options.txt\r\n> NEWS.md\r\n> po\r\n> README.md\r\n> scripts\r\n> setup.cfg\r\n> tests\r\n> ui\r\n> virt-clone\r\n> virtinst\r\n> virt-install\r\n> virt-manager\r\n> virtManagervirt-manager.spec.in\r\n> virt-xml\r\n>\r\n> As we can see there is no setup.py file in the repository which was\r\n> cloned. Also to verify that this indeed is the section, here is the\r\n> relevant part of the script:\r\n>\r\n> if [ ! -d \"virt-manager\" ]; then\r\n>         git clone https://github.com/virt-manager/virt-manager.git\r\n>         echo \"[+] Cloned Virt Manager repo\"\r\n>     fi\r\n>     cd \"virt-manager\" || return\r\n>     # py3\r\n>     #pip3 install .\r\n>     python3 setup.py build\r\n>\r\n> How do I continue the installation without this? Any help would be\r\n> appreciated.\r\n>\r\n> Thanks in advanced.\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2401>, or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH33OO55WTHXDLATFBJD2AWF3ZAVCNFSM6AAAAABR2O4JCSVHI2DSMVQWIX3LMV43ASLTON2WKOZSGY3DAOBZGI2TKMQ>\r\n> .\r\n> You are receiving this because you are subscribed to this thread.Message\r\n> ID: ***@***.***>\r\n>\r\n\nComment: duplicated https://github.com/kevoreilly/CAPEv2/issues/2401\nComment: The error comes up because virt-manager repository no longer uses setup.py to install virt-manager and switched to other build system. You can take a look at the repository link to verify. kvm-qemu.sh still uses the previous setup.py command - resulting in the conflict. \nComment: https://github.com/kevoreilly/CAPEv2/commit/75f3d2966ebdf099a5ad05b96d75633ac28eb931 ah ok, so i missunderstand your initial issue, fixed build there\r\n\r\n\r\nhttps://github.com/virt-manager/virt-manager/blob/main/INSTALL.md",
+  "Title: [cape2.sh] Installing poetry without APT does not add it to PATH\nBody: On this commit https://github.com/kevoreilly/CAPEv2/commit/c7a857bcfe17af3d372317e82b03adbfcb2c9890, poetry installation got changed from APT to official installer. On Ubuntu 22.04 and 24.04, installing it this way does not add it into the PATH variable, causing subsequent commands in cape2.sh to fail:\r\n\r\n![image](https://github.com/user-attachments/assets/15abadc1-d0bb-4931-b679-4b71d43f9d02)\r\n\r\nPossible solution:\r\n- Install poetry to a different path as per official installation instructions, and add this directory to the global PATH, since it has to be available to both root and the CAPE user. As an example of how to do it (I'm sure there are cleaner ways):\r\n```\r\ncurl -sSL https://install.python-poetry.org | POETRY_HOME=/etc/poetry python3 -\r\necho \"PATH=$PATH:/etc/poetry/bin/\" >> /etc/bash.bashrc\r\nsource /etc/bash.bashrc\r\n```\nComment: oh good catch, the uniq problem is we need to get which shell is used, as for example im on zsh, i will give it a try when will have a bit of free time\nComment: i just tested your suggestion, it works just fine on zsh too, thank you for headup and suggested fix https://github.com/kevoreilly/CAPEv2/commit/8d857394d49039bcfed0a7cf50126dbb2ef8614a",
+  "Title: Update Quickbind yara\nBody: None",
+  "Title: feat: clean up cuckoo-sflock tmp folder\nBody: This PR adds `cuckoo-sflock` to the list of tmp folders for cleanup. I noticed it wasn\u2019t included in when this function was changed a few months ago, and ran into issues on my CAPE instance, so thought it\u2019d be helpful to add.\r\n\r\nThanks!\nComment: thanks",
+  "Title: rewrite selfextract\nBody: None",
+  "Title: fix MongoDB BSONObjectTooLarge conditions\nBody: Check the MongoDB OperationalFaiure for 10334, indicating the BSON object was too large. The string match is fragile and doesn't work for all cases. If the operational failure isn't 10334, make sure that's raised with a CuckooReportError so we're not silently failing.",
+  "Title: Deleted\nBody: Deleted\nComment: Deleted",
+  "Title: deleted\nBody: deleted\nComment: Update: Nevermind I resolved this.",
+  "Title: MSIX not detonating due to a Powershell error\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ ] I am running the latest version\r\n    - I'm using the commit 9f2525cae22e25dec20d3761181acdd74df80e4c (Nov 6 15:27:25 2024)\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ ] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nCAPE analyzes a MSIX file without an error.\r\n\r\n# Current Behavior\r\n\r\nWhen I submit a MSIX file (without `startScript` (whose presence changes how the file is detonated, as I see in msix.py)), agent.py on the guest VM tries to run msix.ps1 (which is responsible for installing and running the msix file being analyzed), but it fails without actually running msix.ps1.\r\n\r\n# Failure Information (for bugs)\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. launch agent.py via Task Scheduler (I don't know if this matters)\r\n2. submit a MSIX file (example: 00009d3e7ac4c77a31be26d5d989822cd622d5e3f95d485b6f65fc31ab27c507 [virustotal](https://www.virustotal.com/gui/file/00009d3e7ac4c77a31be26d5d989822cd622d5e3f95d485b6f65fc31ab27c507))\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | commit 9f2525cae22e25dec20d3761181acdd74df80e4c\r\n| OS version       | Ubuntu 22.04.5 LTS, Windows 10 (VirtualBox)\r\n| auxiliary.conf | permissions = no\r\n| Defender real-time protection | turned off via Group Policy\r\n| Windows OS Language | en-US\r\n\r\n## Failure Logs\r\n\r\nerror (source: Powershell transcript file collected by CAPE as \"dropped file\")\r\n```\r\nPS>CommandInvocation(Out-String): \"Out-String\"\r\n>> ParameterBinding(Out-String): name=\"InputObject\"; value=\"Access to the path 'C:\\tmpmb9dnw8c\\data\\msix.ps1' is denied.\"\r\nC:\\tmpmb9dnw8c\\data\\msix.ps1 : Access to the path 'C:\\tmpmb9dnw8c\\data\\msix.ps1' is denied.\r\nAt line:1 char:1\r\n+ C:\\tmpmb9dnw8c\\data\\msix.ps1 C:\\Users\\john\\AppData\\Local\\Temp\\00009d3 ...\r\n+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n    + CategoryInfo          : ObjectNotFound: (:String) [], CommandNotFoundException\r\n    + FullyQualifiedErrorId : CommandNotFoundException\r\nC:\\tmpmb9dnw8c\\data\\msix.ps1 : Access to the path 'C:\\tmpmb9dnw8c\\data\\msix.ps1' is denied.\r\nAt line:1 char:1\r\n+ C:\\tmpmb9dnw8c\\data\\msix.ps1 C:\\Users\\john\\AppData\\Local\\Temp\\00009d3 ...\r\n+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n    + CategoryInfo          : ObjectNotFound: (:String) [], CommandNotFoundException\r\n    + FullyQualifiedErrorId : CommandNotFoundException\r\nC:\\tmpmb9dnw8c\\data\\msix.ps1 : Access to the path 'C:\\tmpmb9dnw8c\\data\\msix.ps1' is denied.\r\nAt line:1 char:1\r\n+ C:\\tmpmb9dnw8c\\data\\msix.ps1 C:\\Users\\john\\AppData\\Local\\Temp\\00009d3 ...\r\n+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n    + CategoryInfo          : ObjectNotFound: (:String) [], CommandNotFoundException\r\n    + FullyQualifiedErrorId : CommandNotFoundException\r\n```\r\n\r\nI made sure agent.py was running as admin. As you can see in the screenshot below, the CAPE processes are elevated. The powershell process is the one running msix.ps1.\r\n\r\n![image](https://github.com/user-attachments/assets/65849315-6684-4fca-8507-da7be6db6b32)\r\n\r\n\r\n## Related?\r\n\r\nI'm not sure if this is related but when the windows VM's OS language was set to Japanese, the powershell process running msix.ps1 crashed due to heap corruption (before actually running the script). I'm not sure why but changing the language to en-US fixed this.\r\n\r\nI would really appreciate help. Thank you.\nComment: Oddly enough, when I manually run msix.ps1, it runs just fine. \r\n\r\nSteps:\r\n\r\n- Edit virtualbox.py so CAPE doesn't revert the guest VM to a snapshot\r\n- On the guest VM, after a msix was analyzed there, launch a powershell with admin privilege\r\n- Open python REPL (32 bit)\r\n- type `import subprocess` and hit enter\r\n- type `subprocess.run(r'C:\\Windows\\sysnative\\WindowsPowerShell\\v1.0\\powershell.exe -NoProfile -ExecutionPolicy bypass C:\\tmp___\\data\\msix.ps1 path/to/sample.msix')` and hit enter\r\n\r\n(The reason I'm using python here is to imitate how CAPE runs msix.ps1.)\r\n\r\nI wonder how CAPE's way of running powershell is different from this.\nComment: https://github.com/kevoreilly/CAPEv2/blob/master/analyzer/windows/modules/packages/msix.py\r\n\r\nhello, well is something to do with permissions more than other thing, at least looks like \r\n`C:\\tmpmb9dnw8c\\data\\msix.ps1 : Access to the path 'C:\\tmpmb9dnw8c\\data\\msix.ps1' is denied.` <-\nComment: i just tested on my side, it runs fine, so i would suggest review the permission, maybe your agent.py doesn't have system right, you can restore snapshot and run `curl <vm_ip>:8000` and it will return if is admin or not\nComment: @doomedraven \r\n\r\nThanks for the reply.\r\n\r\n> you can restore snapshot and run curl <vm_ip>:8000 and it will return if is admin or not\r\n\r\nHere's the response. It seems to be running as admin.\r\n```\r\n{\"message\": \"CAPE Agent!\", \"version\": \"0.18\", \"features\": [\"execpy\", \"execute\", \"pinning\", \"logs\", \"largefile\", \"unicodepath\", \"mutex\", \"browser_extension\"], \"is_user_admin\": true}\r\n```\nComment: Here's the permissions of the folders/file if it helps.\r\n```\r\nPS C:\\Windows\\system32> (Get-Acl C:\\tmpcq_2dtwl\\).Access\r\n\r\nFileSystemRights  : FullControl\r\nAccessControlType : Allow\r\nIdentityReference : OWNER RIGHTS\r\nIsInherited       : False\r\nInheritanceFlags  : ContainerInherit, ObjectInherit\r\nPropagationFlags  : None\r\n\r\nFileSystemRights  : FullControl\r\nAccessControlType : Allow\r\nIdentityReference : NT AUTHORITY\\SYSTEM\r\nIsInherited       : False\r\nInheritanceFlags  : ContainerInherit, ObjectInherit\r\nPropagationFlags  : None\r\n\r\nFileSystemRights  : FullControl\r\nAccessControlType : Allow\r\nIdentityReference : BUILTIN\\Administrators\r\nIsInherited       : False\r\nInheritanceFlags  : ContainerInherit, ObjectInherit\r\nPropagationFlags  : None\r\n\r\nPS C:\\Windows\\system32> (Get-Acl C:\\tmpcq_2dtwl\\data\\).Access\r\n\r\nFileSystemRights  : FullControl\r\nAccessControlType : Allow\r\nIdentityReference : NT AUTHORITY\\SYSTEM\r\nIsInherited       : True\r\nInheritanceFlags  : ContainerInherit, ObjectInherit\r\nPropagationFlags  : None\r\n\r\nFileSystemRights  : FullControl\r\nAccessControlType : Allow\r\nIdentityReference : BUILTIN\\Administrators\r\nIsInherited       : True\r\nInheritanceFlags  : ContainerInherit, ObjectInherit\r\nPropagationFlags  : None\r\n\r\nFileSystemRights  : FullControl\r\nAccessControlType : Allow\r\nIdentityReference : OWNER RIGHTS\r\nIsInherited       : True\r\nInheritanceFlags  : ContainerInherit, ObjectInherit\r\nPropagationFlags  : None\r\n\r\nPS C:\\Windows\\system32> (Get-Acl C:\\tmpcq_2dtwl\\data\\msix.ps1).Access\r\n\r\nFileSystemRights  : FullControl\r\nAccessControlType : Allow\r\nIdentityReference : NT AUTHORITY\\SYSTEM\r\nIsInherited       : True\r\nInheritanceFlags  : None\r\nPropagationFlags  : None\r\n\r\nFileSystemRights  : FullControl\r\nAccessControlType : Allow\r\nIdentityReference : BUILTIN\\Administrators\r\nIsInherited       : True\r\nInheritanceFlags  : None\r\nPropagationFlags  : None\r\n\r\nFileSystemRights  : FullControl\r\nAccessControlType : Allow\r\nIdentityReference : OWNER RIGHTS\r\nIsInherited       : True\r\nInheritanceFlags  : None\r\nPropagationFlags  : None\r\n```\nComment: Is there anything else I should check?\nComment: hm no, it looks correct, sorry i have no clue why you getting access denied \nComment: It's fine, thank you.\r\n\r\nIf anyone else has any ideas, I'd really appreciate it if you could let me know.\nComment: Updates:\r\n- I replicated the problem in a separate environment\r\n- Disabling injection (by setting `free = True` in `execute` method of `Package` class in `analyzer/windows/lib/common/abstracts.py`) fixes the issue for some reason and the MSIX gets installed successfully\r\n  - But you will no longer get behavior logs. I need them so this is not a solution\r\n- I'm using Windows 10 Pro 22H2\r\n\r\nDoes anyone have an idea how I could solve this?\nComment: 22h2 is not officially supported\r\n\r\nEl vie, 29 nov 2024, 11:32, kubota83895398 ***@***.***>\r\nescribi\u00f3:\r\n\r\n> Updates:\r\n>\r\n>    - I replicated the problem in a separate environment\r\n>    - Disabling injection (by setting free = True in execute method of\r\n>    Package class in analyzer/windows/lib/common/abstracts.py) fixes the\r\n>    issue for some reason and the MSIX gets installed successfully\r\n>    - I'm using Windows 10 Pro 22H2\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2393#issuecomment-2507527086>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH36EEO5MRAHPTQM52ND2DA7C7AVCNFSM6AAAAABRRDNOJKVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDKMBXGUZDOMBYGY>\r\n> .\r\n> You are receiving this because you were mentioned.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: Oh, I didn't know it wasn't supported.\r\n\r\nActually I missed this part in the documentation. Sorry. I'll try 21H2.\r\n\r\n> For analysis purposes, it is recommended to use Windows 10 21H2 with User Access Control disabled. CAPE also supports Windows 7.\r\n\r\nThanks for the info.\nComment: Support for 22h2 is being worked on currently...\nComment: I tried 21H2 but I still have the same problem \ud83d\ude2d \nComment: what version of PowerShell do you have installed?\nComment: @doomedraven  ![image](https://github.com/user-attachments/assets/9041ad56-df8a-4eec-9e27-7fa2907b5353)\nComment: Update: We solved it. Placing msix.ps1 in the guest VM in advance (before taking the snapshot) fixed the error!\nComment: However, I don't see the process chain (sihost-> AiStub -> powershell (which runs `startScript` specified in `config.json` inside the msix)) in report.json. How do I make CAPE track these processes?\r\n\r\nThis is not the sample we're trying to analyze but it's similar enough.\r\n![image9-2](https://github.com/user-attachments/assets/02f0332c-a16f-468f-b4b5-e611bc9d5bba)\r\n\r\n(image source: https://redcanary.com/threat-detection-report/techniques/installer-packages/ )\nComment: Oh I should've mentioned I commented out this part so CAPE sees the full installation & execution behavior. (For a specific reason I need the whole behavior rather than just directly running the start script like CAPE does by default.)\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/b455a543ba31c36b644c2eab1d9d776b4c96f07c/analyzer/windows/modules/packages/msix.py#L43-L54\nComment: I should probably create a new issue?\nComment: nah is fine to keep it here. @kevoreilly any idea about detonation tracking improvement? \nComment: I'm struggling to find the function/module that determines which processes to monitor. Could anyone tell me where it is? so I can try modifying it to include sihost.\nComment: In this case is mix package that runs execute function which returns pid,\r\nsee analyzer/windows/analyzer.py\r\n\r\nEl lun, 9 dic 2024, 2:36, kubota83895398 ***@***.***>\r\nescribi\u00f3:\r\n\r\n> I'm struggling to find the function/module that determines which processes\r\n> to monitor. Could anyone tell me where it is? so I can try modifying it to\r\n> include sihost.\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2393#issuecomment-2526600523>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH352WTKWX6BCZM3X2OT2ETXYNAVCNFSM6AAAAABRRDNOJKVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDKMRWGYYDANJSGM>\r\n> .\r\n> You are receiving this because you were mentioned.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: It turns out AiStub is spawned from sihost.exe only when you install the MSIX using the GUI installer window and click \"Launch\" at the end. Otherwise (as msix.ps1 does with `Start-Process`) it's spawned by explorer.exe (Technically the process is created by Appinfo service svchost.exe, which handles elevation).\r\n\r\nAnd I finally managed to track the explorer -> AiStub -> ... chain! By injecting into the Appinfo svchost process (PID 9300 for example) like so:\r\n\r\n```\r\n--- a/analyzer/windows/analyzer.py\r\n+++ b/analyzer/windows/analyzer.py\r\n@@ -301,7 +301,8 @@ class Analyzer:\r\n         # Initialize and start the Pipe Servers. This is going to be used for\r\n         # communicating with the injected and monitored processes.\r\n \r\n-        self.command_pipe = PipeServer(PipeDispatcher, self.config.pipe, message=True, dispatcher=CommandPipeHandler(self))\r\n+        self.cph = CommandPipeHandler(self)\r\n+        self.command_pipe = PipeServer(PipeDispatcher, self.config.pipe, message=True, dispatcher=self.cph)\r\n         self.command_pipe.daemon = True\r\n         self.command_pipe.start()\r\n \r\n@@ -646,6 +647,7 @@ class Analyzer:\r\n             self.pid_check = False\r\n \r\n         # next phase; go to the analysis loop\r\n+        self.cph._handle_process(b'PROCESS:9300')\r\n         self.analysis_loop(aux_modules)\r\n \r\n         return True\r\n```\nComment: Thanks for the help. Closing this.",
+  "Title: \"Assertion error\" when trying to restart CAPE after pulling last release from repo\nBody: - [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nStart CAPE services normally.\r\n\r\n# Current Behavior\r\n\r\nServices fail to start after pulling last changes from main repo.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Do a git pull and/or merge from main repo / master\r\n2. Restart cape services (systemctl restart cape*)\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | commit 9b0c794fc3c2579ee450b488727ead728c017348\r\n| OS version       | Ubuntu 22.04.5 LTS\r\n\r\n## Failure Logs\r\n\r\npython3 -m poetry run python cuckoo.py -d\r\n\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/cuckoo.py\", line 12, in <module>\r\n    from lib.cuckoo.core.database import Database, init_database\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/database.py\", line 21, in <module>\r\n    from lib.cuckoo.common.cape_utils import static_config_lookup, static_extraction\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/cape_utils.py\", line 105, in <module>\r\n    assert \"test cape\" in cape_malware_parsers\r\nAssertionError\r\n\r\n\nComment: that because you don't read and don't follow changelog!",
+  "Title: The image of behavior screenshot not show in the \"Quick Overview\" menu.\nBody: # Prerequisites\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nThe image of  behavior screenshot process show in the \"Quick Overview\" menu.\r\n\r\n# Current Behavior\r\n\r\nBefore `git pull`, the image of behavior screenshot show in the \"Quick Overview\" menu, but now, after `git pull` The image of screenshot process in the \"Quick Overview\" menu is not shown. When I check in the `/opt/CAPEv2/storage/analyses/1/shots`directory, the result of behavior screenshot is available, but that image is not show in the \"Quick Overview\" menu\r\n\r\n## Steps to Reproduce\r\n\r\n1. Before `git pull` the image of behavior screenshot show.\r\n2. `git pull`\r\n3. sudo systemctl restart cape.service\r\n4. sudo systemctl restart cape-processor.service\r\n5. sudo systemctl restart cape-rooter.service\r\n6. sudo systemctl restart cape-web.service\r\n7. Submit new malware sample\r\n8. Analysis is complete.\r\n9. Image of behavior screenshot not show in the \"Quick Overview\" menu\r\n\r\n## Context\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Architecture       | Nested Virtualization\r\n| Guest L1       | Ubuntu 22.05.5\r\n| Guest L2       | Windows 10 x64\r\n| CAPEv2 respository       | latest version\r\n| agent.py       | latest version\r\n\r\n## Failure Logs\r\n\r\nThis is my auxiliary.conf\r\n![image](https://github.com/user-attachments/assets/c3cfd1f3-5ef3-4f2d-91c9-b2003d2d1bfd)\r\n\r\nThe view of result analysis from the \"Quick Overview\" menu\r\n![image](https://github.com/user-attachments/assets/9198eaa5-55b9-4da0-9e06-3bba6493a04e)\r\n![image](https://github.com/user-attachments/assets/791e46fd-e36b-4da2-a22c-ed3c0f8fe9cd)\r\nThe behavior screenshot not show\r\n![image](https://github.com/user-attachments/assets/0ce411c6-2e7a-4113-82bf-b1921303a388)\r\n\r\nThe image result of behavior screenshot in the `/opt/CAPEv2/storage/analyses/1/shots`directory\r\n![image](https://github.com/user-attachments/assets/2273cf99-5515-4040-9803-1844a39f3ce6)\r\n\r\nThis is my logs, I have check it and nothings error or warning message that related with the screenshot of behavior process\r\n[cape.web.2.log](https://github.com/user-attachments/files/17671182/cape.web.2.log)\r\n[cape.service.2.log](https://github.com/user-attachments/files/17671183/cape.service.2.log)\r\n[cape.processor.2.log](https://github.com/user-attachments/files/17671184/cape.processor.2.log)\r\n\r\n\r\n\nComment: can you open browser's dev console -> networking and reload page to see what response you getting for screenshots?\nComment: > can you open browser's dev console -> networking and reload page to see what response you getting for screenshots?\r\n\r\nThank you very much admin, I've solved this problem because the setting on api.conf\nComment: I met the same issue with you, In my case, seems the ssl strategy kill the transmission of my screenshots\r\n<img width=\"1920\" alt=\"screenshot\" src=\"https://github.com/user-attachments/assets/74115c00-01c7-4f75-95ac-f02f9f7b9731\" />\r\n",
+  "Title: parse_rdp\nBody: None\nComment: @wmetcalf FYI",
+  "Title: Update rdp.py for class name\nBody: None",
+  "Title: Update package for rdp package\nBody: None\nComment: there is interesting tool from Will https://github.com/wmetcalf/rdp_holiday",
+  "Title: Staging\nBody: None",
+  "Title: Update stealc test\nBody: Update stealc test",
+  "Title: Fix StealC Parser, Add URI\nBody: - Fix StealC Parser for some samples reported to me by @doomedraven , add URI to C2\r\n- Clean up Lumma parser, first 32 bytes is XOR key, remaining bytes is encrypted str",
+  "Title: toggle advanced options and tooltips\nBody: None",
+  "Title: parsers_split\nBody: None",
+  "Title: Errors in bypass_uac.py and misc.py after plugins update\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I did read the README!\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nSubmit an URL analysis, get task id and results.\r\n\r\n# Current Behavior\r\n\r\nAfter VM is turned off, doing a \"tail -f log/processing.log\" i can see that two python scripts are failing after the last update:\r\n\r\n\r\n\r\nTask finishes but with errors as you can see above.\r\n\r\n# Failure Information (for bugs)\r\n-\r\n\r\n## Steps to Reproduce\r\n\r\n1. Get your CAPE at latest version\r\n2. Submit a URL to CAPE\r\n3. Wait until it finishes\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       |  commit ffb167694c75a6e3e075110196bd5205669ea637\r\n| OS version       | Ubuntu 22.04.5 LTS | Windows 10 22H2\r\n\r\n## Failure Logs\r\n\r\n\r\n2024-10-30 09:17:07,793 [Task 625] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"uac_bypass_cmstpcom\": unbalanced parenthesis at position 29\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 499, in process\r\n    data = signature.run()\r\n  File \"/opt/CAPEv2/utils/../modules/signatures/windows/bypass_uac.py\", line 215, in run\r\n    match = self.check_executed_command(pattern=indicator, regex=True)\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/abstracts.py\", line 1234, in check_executed_command\r\n    return self._check_value(pattern=pattern, subject=subject, regex=regex, all=all, ignorecase=ignorecase)\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/abstracts.py\", line 1039, in _check_value\r\n    exp = re.compile(pattern, re.IGNORECASE)\r\n  File \"/usr/lib/python3.10/re.py\", line 251, in compile\r\n    return _compile(pattern, flags)\r\n  File \"/usr/lib/python3.10/re.py\", line 303, in _compile\r\n    p = sre_compile.compile(pattern, flags)\r\n  File \"/usr/lib/python3.10/sre_compile.py\", line 788, in compile\r\n    p = sre_parse.parse(p, flags)\r\n  File \"/usr/lib/python3.10/sre_parse.py\", line 969, in parse\r\n    raise source.error(\"unbalanced parenthesis\")\r\nre.error: unbalanced parenthesis at position 29\r\n2024-10-30 09:17:07,796 [Task 625] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"registry_credential_store_access\": 'target'\r\n2024-10-30 09:17:38,529 [root] INFO: Reports generation completed for Task #625\r\n\r\n\r\nI also send you the two files i've modified in order to evaluate if they must be replaced. (just remove \".txt\" extension)\r\n\r\n[bypass_uac.py.txt](https://github.com/user-attachments/files/17572672/bypass_uac.py.txt)\r\n[misc.py.txt](https://github.com/user-attachments/files/17572677/misc.py.txt)\r\n\nComment: Additional information:\r\nAfter replace those two files with mine, it works, but after doing a \"python3 community.py -waf -cr\" which is a cron task, the error appears again.\nComment: hey, that is community, not capev2 repo, FYI. you can PR fixes there instead of attach it here\nComment: Oh, sorry, misunderstood. Thanks!",
+  "Title: get HAR from api\nBody: None",
+  "Title: maco optional\nBody: None\nComment: @cccs-rs you need to use [\"maco\"] as in king rat parsers. once you aware i will merge it\nComment: Sounds good to me, thanks for the notice!\nComment: btw https://github.com/CAPESandbox/CAPE-parsers, i still working on that and it will take some time to properly split them, but work started, lets see if i will have success on it ",
+  "Title: Add Snake Keylogger config extractor\nBody: Here's some previews, tested with lots of payloads :) if someone knows of a better way to get a field's value let me know, otherwise what I ended up doing was extracting all static strings and their associated field names, then using them later on when needing to lookup what the field value is for a specific field.\r\n\r\nThe PR for the Snake payload test file is: https://github.com/CAPESandbox/CAPE-TestFiles/pull/13\r\n\r\n![Screenshot from 2024-10-30 00-57-16](https://github.com/user-attachments/assets/befc3f16-d9fd-4b0c-b156-f31b12ca541c)\r\n\r\n![Screenshot from 2024-10-30 00-58-40](https://github.com/user-attachments/assets/12f2aad0-808c-4aa1-a2e0-313d651685e6)\r\n\r\nI'm sure in time the technique they're using to encrypt strings will change but for now this is how they do it, using the first 8 bytes of an MD5 calculated against a static string as the key with DES (ECB mode).\r\n\r\n```\r\npublic static string decrypt_string(string string_30, string string_31)\r\n{\r\n\tstring result;\r\n\ttry\r\n\t{\r\n\t\tDESCryptoServiceProvider descryptoServiceProvider = new DESCryptoServiceProvider();\r\n\t\tMD5CryptoServiceProvider md5CryptoServiceProvider = new MD5CryptoServiceProvider();\r\n\t\tbyte[] array = new byte[8];\r\n\t\tbyte[] sourceArray = md5CryptoServiceProvider.ComputeHash(Encoding.ASCII.GetBytes(string_31));\r\n\t\tArray.Copy(sourceArray, 0, array, 0, 8);\r\n\t\tdescryptoServiceProvider.Key = array;\r\n\t\tdescryptoServiceProvider.Mode = CipherMode.ECB;\r\n\t\tICryptoTransform cryptoTransform = descryptoServiceProvider.CreateDecryptor();\r\n\t\tbyte[] array2 = Convert.FromBase64String(string_30);\r\n\t\tstring @string = Encoding.ASCII.GetString(cryptoTransform.TransformFinalBlock(array2, 0, array2.Length));\r\n\t\tresult = @string;\r\n\t}\r\n\treturn result;\r\n}\r\n```\nComment: Thanks for this! \u2764\ufe0f ",
+  "Title: Bumblebee parser and yara update\nBody: None",
+  "Title: Use correct rule\nBody: None",
+  "Title: Create rdp.py\nBody: Simple package for allowing the submission of RDP files. ",
+  "Title: NitrogenLoader yara and syscall bypass\nBody: None",
+  "Title: cape2.sh script bug prevents installation of sandbox\nBody: # Prerequisites\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\n`sudo ./cape2.sh base cape | tee cape-sandbox.log`\r\nInstalled correctly without errors\r\n\r\n# Current Behavior\r\nUse the script cape2.sh to install CAPEv2 sandbox. Python prompts an error. There was no error before.\r\n```\r\n[+] Installing capa\r\n...\r\nNoSuchOptionException\r\nThe \"--directory\" option does not exist.\r\n...\r\n./cape2.sh: line 910: cd: /opt/CAPEv2: No such file or directory\r\n```\r\n\r\n\r\n# Failure Information (for bugs)\r\n\r\n```\r\nPreparing to unpack de4dot_3.1.41592.3405-2_all.deb ...\r\nUnpacking de4dot (3.1.41592.3405-2) ...\r\nSetting up de4dot (3.1.41592.3405-2) ...\r\n[+] Installing capa\r\nAlready up to date.\r\nSubmodule path 'rules': checked out 'b325cf8a50fc1293455a0822170422734d6977dc'\r\n\r\n  Stack trace:\r\n\r\n  11  /usr/lib/python3/dist-packages/clikit/console_application.py:123 in run\r\n      io = io_factory(\r\n\r\n  10  /usr/lib/python3/dist-packages/poetry/console/config/application_config.py:221 in create_io\r\n      resolved_command = application.resolve_command(args)\r\n\r\n   9  /usr/lib/python3/dist-packages/clikit/console_application.py:110 in resolve_command\r\n      return self._config.command_resolver.resolve(args, self)\r\n\r\n   8  /usr/lib/python3/dist-packages/clikit/resolver/default_resolver.py:43 in resolve\r\n      result = self.process_default_commands(args, application.default_commands)\r\n\r\n   7  /usr/lib/python3/dist-packages/clikit/resolver/default_resolver.py:104 in process_default_commands\r\n      if resolved_command.is_parsable():\r\n\r\n   6  /usr/lib/python3/dist-packages/clikit/resolver/resolve_result.py:43 in is_parsable\r\n      self._parse()\r\n\r\n   5  /usr/lib/python3/dist-packages/clikit/resolver/resolve_result.py:49 in _parse\r\n      self._parsed_args = self._command.parse(self._raw_args)\r\n\r\n   4  /usr/lib/python3/dist-packages/clikit/api/command/command.py:113 in parse\r\n      return self._config.args_parser.parse(args, self._args_format, lenient)\r\n\r\n   3  /usr/lib/python3/dist-packages/clikit/args/default_args_parser.py:53 in parse\r\n      self._parse(args, _fmt, lenient)\r\n\r\n   2  /usr/lib/python3/dist-packages/clikit/args/default_args_parser.py:101 in _parse\r\n      self._parse_long_option(token, tokens, fmt, lenient)\r\n\r\n   1  /usr/lib/python3/dist-packages/clikit/args/default_args_parser.py:247 in _parse_long_option\r\n      self._add_long_option(name, None, tokens, fmt, lenient)\r\n\r\n  NoSuchOptionException\r\n\r\n  The \"--directory\" option does not exist.\r\n\r\n  at /usr/lib/python3/dist-packages/clikit/args/default_args_parser.py:300 in _add_long_option\r\n      296\u2502     def _add_long_option(\r\n      297\u2502         self, name, value, tokens, fmt, lenient\r\n      298\u2502     ):  # type: (str, Optional[str], List[str], ArgsFormat, bool) -> None\r\n      299\u2502         if not fmt.has_option(name):\r\n    \u2192 300\u2502             raise NoSuchOptionException(name)\r\n      301\u2502 \r\n      302\u2502         option = fmt.get_option(name)\r\n      303\u2502 \r\n      304\u2502         if value is False:\r\n[+] Installing PostgreSQL\r\nHit:1 http://cn.archive.ubuntu.com/ubuntu jammy InRelease\r\nGet:2 http://security.ubuntu.com/ubuntu jammy-security InRelease [129 kB]\r\nGet:3 http://apt.postgresql.org/pub/repos/apt jammy-pgdg InRelease [129 kB]\r\nGet:4 http://cn.archive.ubuntu.com/ubuntu jammy-updates InRelease [128 kB]\r\n```\r\n\r\n## Steps to Reproduce\r\n\r\n1.`wget https://raw.githubusercontent.com/kevoreilly/CAPEv2/master/installer/cape2.sh` download script\r\n2.`sed -i s/NETWORK_IFACE=virbr1/NETWORK_IFACE=virbr0/g cape2.sh`\r\n3.`sed -i s/IFACE_IP=\\\"192.168.1.1\\\"/IFACE_IP=\\\"192.168.122.1\\\"/g cape2.sh`\r\n4.`sudo ./cape2.sh base cape | tee cape-sandbox.log`\r\n\r\n## Context\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | commit a89bd2bb426c58f5ab5a6852c670f80dde49376f\r\n| OS version       | Ubuntu 22.04.5\r\n| Python3 version | 3.10.12\r\n\r\n\nComment: fixed, thanks\nComment: The \"--directory\" option does not exist\r\nThis option creates more bugs\r\n```\r\n[+] Checking for old YARA version to uninstall\r\n[+] Installing Yara\r\nUnpacking yara (4.5.2) ...\r\nSetting up yara (4.5.2) ...\r\nProcessing triggers for man-db (2.10.2-1) ...\r\n\r\n  Stack trace:\r\n\r\n  11  /usr/lib/python3/dist-packages/clikit/console_application.py:123 in run\r\n      io = io_factory(\r\n\r\n  10  /usr/lib/python3/dist-packages/poetry/console/config/application_config.py:221 in create_io\r\n      resolved_command = application.resolve_command(args)\r\n\r\n   9  /usr/lib/python3/dist-packages/clikit/console_application.py:110 in resolve_command\r\n      return self._config.command_resolver.resolve(args, self)\r\n\r\n   8  /usr/lib/python3/dist-packages/clikit/resolver/default_resolver.py:43 in resolve\r\n      result = self.process_default_commands(args, application.default_commands)\r\n\r\n   7  /usr/lib/python3/dist-packages/clikit/resolver/default_resolver.py:104 in process_default_commands\r\n      if resolved_command.is_parsable():\r\n\r\n   6  /usr/lib/python3/dist-packages/clikit/resolver/resolve_result.py:43 in is_parsable\r\n      self._parse()\r\n\r\n   5  /usr/lib/python3/dist-packages/clikit/resolver/resolve_result.py:49 in _parse\r\n      self._parsed_args = self._command.parse(self._raw_args)\r\n\r\n   4  /usr/lib/python3/dist-packages/clikit/api/command/command.py:113 in parse\r\n      return self._config.args_parser.parse(args, self._args_format, lenient)\r\n\r\n   3  /usr/lib/python3/dist-packages/clikit/args/default_args_parser.py:53 in parse\r\n      self._parse(args, _fmt, lenient)\r\n\r\n   2  /usr/lib/python3/dist-packages/clikit/args/default_args_parser.py:101 in _parse\r\n      self._parse_long_option(token, tokens, fmt, lenient)\r\n\r\n   1  /usr/lib/python3/dist-packages/clikit/args/default_args_parser.py:247 in _parse_long_option\r\n      self._add_long_option(name, None, tokens, fmt, lenient)\r\n\r\n  NoSuchOptionException\r\n\r\n  The \"--directory\" option does not exist.\r\n\r\n  at /usr/lib/python3/dist-packages/clikit/args/default_args_parser.py:300 in _add_long_option\r\n      296\u2502     def _add_long_option(\r\n      297\u2502         self, name, value, tokens, fmt, lenient\r\n      298\u2502     ):  # type: (str, Optional[str], List[str], ArgsFormat, bool) -> None\r\n      299\u2502         if not fmt.has_option(name):\r\n    \u2192 300\u2502             raise NoSuchOptionException(name)\r\n      301\u2502 \r\n      302\u2502         option = fmt.get_option(name)\r\n      303\u2502 \r\n      304\u2502         if value is False:\r\n```\r\n```\r\n[+] Installing CAPEv2\r\n....\r\nBuilding wheels for collected packages: libvirt-python\r\n  Building wheel for libvirt-python (pyproject.toml): started\r\n  Building wheel for libvirt-python (pyproject.toml): finished with status 'done'\r\n  Created wheel for libvirt-python: filename=libvirt_python-10.7.0-cp310-cp310-linux_x86_64.whl size=507561 sha256=5383c61b6f41eefb8e8cbd7b643967548f3a7b95b6fdb533eba2832a8341a581\r\n  Stored in directory: /home/cape/.cache/pip/wheels/6c/49/63/7b1b2031f0fb4c7ec7121a229f9eac43dba5218bdf78a5d3dc\r\nSuccessfully built libvirt-python\r\nInstalling collected packages: libvirt-python\r\nSuccessfully installed libvirt-python-10.7.0\r\nReading package lists...\r\nBuilding dependency tree...\r\nReading state information...\r\nlibmagic1 is already the newest version (1:5.41-3ubuntu0.1).\r\nlibmagic1 set to manually installed.\r\nThe following NEW packages will be installed:\r\n  libjansson-dev libmagic-dev\r\n0 upgraded, 2 newly installed, 0 to remove and 10 not upgraded.\r\nNeed to get 140 kB of archives.\r\nAfter this operation, 532 kB of additional disk space will be used.\r\nGet:1 http://cn.archive.ubuntu.com/ubuntu jammy/main amd64 libjansson-dev amd64 2.13.1-1.1build3 [35.3 kB]\r\nGet:2 http://cn.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libmagic-dev amd64 1:5.41-3ubuntu0.1 [105 kB]\r\nFetched 140 kB in 1s (93.9 kB/s)\r\nSelecting previously unselected package libjansson-dev:amd64.\r\n(Reading database ... 227689 files and directories currently installed.)\r\nPreparing to unpack .../libjansson-dev_2.13.1-1.1build3_amd64.deb ...\r\nUnpacking libjansson-dev:amd64 (2.13.1-1.1build3) ...\r\nSelecting previously unselected package libmagic-dev:amd64.\r\nPreparing to unpack .../libmagic-dev_1%3a5.41-3ubuntu0.1_amd64.deb ...\r\nUnpacking libmagic-dev:amd64 (1:5.41-3ubuntu0.1) ...\r\nSetting up libmagic-dev:amd64 (1:5.41-3ubuntu0.1) ...\r\nSetting up libjansson-dev:amd64 (2.13.1-1.1build3) ...\r\nProcessing triggers for man-db (2.10.2-1) ...\r\nSubmodule path 'yara': checked out '0e5b6bb9660cba500eb58dbccb027757c82cc4cf'\r\n\r\n  Stack trace:\r\n\r\n  11  /usr/lib/python3/dist-packages/clikit/console_application.py:123 in run\r\n      io = io_factory(\r\n\r\n  10  /usr/lib/python3/dist-packages/poetry/console/config/application_config.py:221 in create_io\r\n      resolved_command = application.resolve_command(args)\r\n\r\n   9  /usr/lib/python3/dist-packages/clikit/console_application.py:110 in resolve_command\r\n      return self._config.command_resolver.resolve(args, self)\r\n\r\n   8  /usr/lib/python3/dist-packages/clikit/resolver/default_resolver.py:43 in resolve\r\n      result = self.process_default_commands(args, application.default_commands)\r\n\r\n   7  /usr/lib/python3/dist-packages/clikit/resolver/default_resolver.py:104 in process_default_commands\r\n      if resolved_command.is_parsable():\r\n\r\n   6  /usr/lib/python3/dist-packages/clikit/resolver/resolve_result.py:43 in is_parsable\r\n      self._parse()\r\n\r\n   5  /usr/lib/python3/dist-packages/clikit/resolver/resolve_result.py:49 in _parse\r\n      self._parsed_args = self._command.parse(self._raw_args)\r\n\r\n   4  /usr/lib/python3/dist-packages/clikit/api/command/command.py:113 in parse\r\n      return self._config.args_parser.parse(args, self._args_format, lenient)\r\n\r\n   3  /usr/lib/python3/dist-packages/clikit/args/default_args_parser.py:53 in parse\r\n      self._parse(args, _fmt, lenient)\r\n\r\n   2  /usr/lib/python3/dist-packages/clikit/args/default_args_parser.py:101 in _parse\r\n      self._parse_long_option(token, tokens, fmt, lenient)\r\n\r\n   1  /usr/lib/python3/dist-packages/clikit/args/default_args_parser.py:247 in _parse_long_option\r\n      self._add_long_option(name, None, tokens, fmt, lenient)\r\n\r\n  NoSuchOptionException\r\n\r\n  The \"--directory\" option does not exist.\r\n\r\n  at /usr/lib/python3/dist-packages/clikit/args/default_args_parser.py:300 in _add_long_option\r\n      296\u2502     def _add_long_option(\r\n      297\u2502         self, name, value, tokens, fmt, lenient\r\n      298\u2502     ):  # type: (str, Optional[str], List[str], ArgsFormat, bool) -> None\r\n      299\u2502         if not fmt.has_option(name):\r\n    \u2192 300\u2502             raise NoSuchOptionException(name)\r\n      301\u2502 \r\n      302\u2502         option = fmt.get_option(name)\r\n      303\u2502 \r\n      304\u2502         if value is False:\r\n```\r\n```\r\nmake[1]: Leaving directory '/tmp/passivedns'\r\n\r\ncheckinstall 1.6.3, Copyright 2010 Felipe Eduardo Sanchez Diaz Duran\r\n\r\n\r\n [y]: y\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\nMaking install in src\r\nmake[1]: Entering directory '/tmp/passivedns/src'\r\nmake[2]: Entering directory '/tmp/passivedns/src'\r\n /usr/bin/mkdir -p '/usr/local/bin'\r\n  /usr/bin/install -c passivedns '/usr/local/bin'\r\nmake[2]: Nothing to be done for 'install-data-am'.\r\nmake[2]: Leaving directory '/tmp/passivedns/src'\r\nmake[1]: Leaving directory '/tmp/passivedns/src'\r\nmake[1]: Entering directory '/tmp/passivedns'\r\nmake[2]: Entering directory '/tmp/passivedns'\r\nmake[2]: Nothing to be done for 'install-exec-am'.\r\nmake[2]: Nothing to be done for 'install-data-am'.\r\nmake[2]: Leaving directory '/tmp/passivedns'\r\nmake[1]: Leaving directory '/tmp/passivedns'\r\n\r\n\r\nCopying documentation directory...\r\n./\r\n./doc/\r\n./doc/LICENSE\r\n./doc/How-it-works.txt\r\n./doc/AUTHORS\r\n./doc/INSTALL\r\n./doc/ROADMAP\r\n./doc/ISSUES\r\n./doc/README.upgrading\r\n./doc/TODO\r\n./doc/ChangeLog\r\n./doc/README\r\n./README\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n**********************************************************************\r\n\r\n\r\n**********************************************************************\r\n\r\n\r\n  Stack trace:\r\n\r\n  11  /usr/lib/python3/dist-packages/clikit/console_application.py:123 in run\r\n      io = io_factory(\r\n\r\n  10  /usr/lib/python3/dist-packages/poetry/console/config/application_config.py:221 in create_io\r\n      resolved_command = application.resolve_command(args)\r\n\r\n   9  /usr/lib/python3/dist-packages/clikit/console_application.py:110 in resolve_command\r\n      return self._config.command_resolver.resolve(args, self)\r\n\r\n   8  /usr/lib/python3/dist-packages/clikit/resolver/default_resolver.py:43 in resolve\r\n      result = self.process_default_commands(args, application.default_commands)\r\n\r\n   7  /usr/lib/python3/dist-packages/clikit/resolver/default_resolver.py:104 in process_default_commands\r\n      if resolved_command.is_parsable():\r\n\r\n   6  /usr/lib/python3/dist-packages/clikit/resolver/resolve_result.py:43 in is_parsable\r\n      self._parse()\r\n\r\n   5  /usr/lib/python3/dist-packages/clikit/resolver/resolve_result.py:49 in _parse\r\n      self._parsed_args = self._command.parse(self._raw_args)\r\n\r\n   4  /usr/lib/python3/dist-packages/clikit/api/command/command.py:113 in parse\r\n      return self._config.args_parser.parse(args, self._args_format, lenient)\r\n\r\n   3  /usr/lib/python3/dist-packages/clikit/args/default_args_parser.py:53 in parse\r\n      self._parse(args, _fmt, lenient)\r\n\r\n   2  /usr/lib/python3/dist-packages/clikit/args/default_args_parser.py:101 in _parse\r\n      self._parse_long_option(token, tokens, fmt, lenient)\r\n\r\n   1  /usr/lib/python3/dist-packages/clikit/args/default_args_parser.py:247 in _parse_long_option\r\n      self._add_long_option(name, None, tokens, fmt, lenient)\r\n\r\n  NoSuchOptionException\r\n\r\n  The \"--directory\" option does not exist.\r\n\r\n  at /usr/lib/python3/dist-packages/clikit/args/default_args_parser.py:300 in _add_long_option\r\n      296\u2502     def _add_long_option(\r\n      297\u2502         self, name, value, tokens, fmt, lenient\r\n      298\u2502     ):  # type: (str, Optional[str], List[str], ArgsFormat, bool) -> None\r\n      299\u2502         if not fmt.has_option(name):\r\n    \u2192 300\u2502             raise NoSuchOptionException(name)\r\n      301\u2502 \r\n      302\u2502         option = fmt.get_option(name)\r\n      303\u2502 \r\n      304\u2502         if value is False:\r\n\r\n  Stack trace:\r\n\r\n  11  /usr/lib/python3/dist-packages/clikit/console_application.py:123 in run\r\n      io = io_factory(\r\n\r\n  10  /usr/lib/python3/dist-packages/poetry/console/config/application_config.py:221 in create_io\r\n      resolved_command = application.resolve_command(args)\r\n\r\n   9  /usr/lib/python3/dist-packages/clikit/console_application.py:110 in resolve_command\r\n      return self._config.command_resolver.resolve(args, self)\r\n\r\n   8  /usr/lib/python3/dist-packages/clikit/resolver/default_resolver.py:43 in resolve\r\n      result = self.process_default_commands(args, application.default_commands)\r\n\r\n   7  /usr/lib/python3/dist-packages/clikit/resolver/default_resolver.py:104 in process_default_commands\r\n      if resolved_command.is_parsable():\r\n\r\n   6  /usr/lib/python3/dist-packages/clikit/resolver/resolve_result.py:43 in is_parsable\r\n      self._parse()\r\n\r\n   5  /usr/lib/python3/dist-packages/clikit/resolver/resolve_result.py:49 in _parse\r\n      self._parsed_args = self._command.parse(self._raw_args)\r\n\r\n   4  /usr/lib/python3/dist-packages/clikit/api/command/command.py:113 in parse\r\n      return self._config.args_parser.parse(args, self._args_format, lenient)\r\n\r\n   3  /usr/lib/python3/dist-packages/clikit/args/default_args_parser.py:53 in parse\r\n      self._parse(args, _fmt, lenient)\r\n\r\n   2  /usr/lib/python3/dist-packages/clikit/args/default_args_parser.py:101 in _parse\r\n      self._parse_long_option(token, tokens, fmt, lenient)\r\n\r\n   1  /usr/lib/python3/dist-packages/clikit/args/default_args_parser.py:247 in _parse_long_option\r\n      self._add_long_option(name, None, tokens, fmt, lenient)\r\n\r\n  NoSuchOptionException\r\n\r\n  The \"--directory\" option does not exist.\r\n\r\n  at /usr/lib/python3/dist-packages/clikit/args/default_args_parser.py:300 in _add_long_option\r\n      296\u2502     def _add_long_option(\r\n      297\u2502         self, name, value, tokens, fmt, lenient\r\n      298\u2502     ):  # type: (str, Optional[str], List[str], ArgsFormat, bool) -> None\r\n      299\u2502         if not fmt.has_option(name):\r\n    \u2192 300\u2502             raise NoSuchOptionException(name)\r\n      301\u2502 \r\n      302\u2502         option = fmt.get_option(name)\r\n      303\u2502 \r\n      304\u2502         if value is False:\r\n```\nComment: @doomedraven \nComment: ok i will review later today community contribution that introduced that bug\r\n\r\nbut i do see directory option, what version of poetry do you have? https://python-poetry.org/docs/cli/\nComment: > ok i will review later today community contribution that introduced that bug\r\n> \r\n> but i do see directory option, what version of poetry do you have? https://python-poetry.org/docs/cli/\r\n\r\ninstalled by script should be ubuntu22.04 default version \r\n```\r\ncape@kvm:~$ python3 -m poetry -V   \r\nPoetry version 1.1.12\r\n```\r\n\nComment: wow is extremely old, now is 1.8.x\nComment: :)\r\n```\r\nsed -i \"s|poetry --directory /opt/CAPEv2/|cd /opt/CAPEv2/ \\&\\& poetry|g\" cape2.sh\r\nsed -i \"s|poetry --directory /opt/CAPEv2|cd /opt/CAPEv2/ \\&\\& poetry|g\" cape2.sh\r\n```\nComment: i have updated install script to use oficial installer isntead of outdated APT, \r\n`curl -sSL https://install.python-poetry.org | python3 -` use taht to upgrade your poetry\nComment: > i have updated install script to use oficial installer isntead of outdated APT, `curl -sSL https://install.python-poetry.org | python3 -` use taht to upgrade your poetry\r\n\r\nafter test it work fine\r\nno error \r\n\r\nsteps:\r\n```\r\ngit clone https://github.com/kevoreilly/CAPEv2.git\r\ncp ./CAPEv2/installer/cape2.sh ./\r\nsudo chmod +x ./cape2.sh\r\nsed -i s/NETWORK_IFACE=virbr1/NETWORK_IFACE=virbr0/g cape2.sh \r\nexport http_proxy=http://192.168.0.1:1081\r\nexport pip_proxy=\"https://example.com/simple\"\r\nnum=$(grep -n \"CRYPTOGRAPHY_DONT_BUILD_RUST=1\" cape2.sh | cut -d: -f1)\r\nsed -i \"${num}i \\ \\ \\ \\ sudo poetry source add --priority=default mirrors $pip_proxy && sudo poetry lock\" cape2.sh\r\nsed -i \"s|python3 utils/community.py -waf -cr|python3 utils/community.py -waf -cr --proxy $http_proxy|g\" cape2.sh\r\nsudo mv CAPEv2/ /opt/CAPEv2\r\nsudo ./cape2.sh base cape | tee cape-sandbox.log\r\n``` \r\n\nComment: @lesszzen Noob question \ud83d\ude05 what is happening in this command? \r\n```bash\r\nsed -i \"${num}i \\ \\ \\ \\ sudo poetry source add --priority=default mirrors $pip_proxy && sudo poetry lock\" cape2.sh\r\n```\r\nSpecifically `sed -i \"${num}i \\ \\ \\ \\`\nComment: > @lesszzen Noob question \ud83d\ude05 what is happening in this command?\r\n> \r\n> ```shell\r\n> sed -i \"${num}i \\ \\ \\ \\ sudo poetry source add --priority=default mirrors $pip_proxy && sudo poetry lock\" cape2.sh\r\n> ```\r\n> \r\n> Specifically `sed -i \"${num}i \\ \\ \\ \\`\r\n\r\nif you look here he greps the number line in here num=$(grep -n \"CRYPTOGRAPHY_DONT_BUILD_RUST=1\" cape2.sh | cut -d: -f1)\r\n\r\nthis grep the number line where CRYPTOGRAPHY_DONT_BUILD_RUST=1 exist in cape2.sh then it sed it which means goes to that line number lets say 50  then usually it replaces but since it has ${num}i after this i (inserts) a new line then  \\ \\ \\ \\ ( 4 spaces) \r\n51      sudo poetry source add --priority=default mirrors  https://example.com/simple && sudo poetry lock\nComment: > @lesszzen Noob question \ud83d\ude05 what is happening in this command?\r\n> \r\n> ```shell\r\n> sed -i \"${num}i \\ \\ \\ \\ sudo poetry source add --priority=default mirrors $pip_proxy && sudo poetry lock\" cape2.sh\r\n> ```\r\n> \r\n> Specifically `sed -i \"${num}i \\ \\ \\ \\`\r\n\r\nSwitch to the nearest mirror source. Lock is required after modification. The four spaces are for alignment",
+  "Title: Create MACO extractors that wrap the CAPE extractor\nBody: Related to: https://github.com/kevoreilly/CAPEv2/issues/1716\r\n\r\nThis should allow for converting the raw CAPE output to the MACO standard without interfering with the original extractor code.\nComment: thank you, i guess it would be better to put this under community, as it almost 100 files. what do you think? i can merge and move\nComment: I assume you mean to move them under https://github.com/CAPESandbox/community?\r\n\r\nCould but the only problem is how to resolve the dependencies/imports if they're split across different projects.\r\n\r\nAny thoughts on how I may do that? Is it possible to install CAPEv2 as a Python package perhaps?\nComment: yes that community repo\r\nthey will be pulled to the actual folder, it just to try to make more cleaner what is maintained by who, once they pulled, they will have all the access to the imported extractors\r\n\r\ncapev2.sh installs cape and pulls the community to integrate them. about package no, it requires huge rewrite as cuckoov2 did to be able to install properly as package\nComment: Totally makes sense, just thinking about how this is going to be used with the extractor CLIs (maco, configextractor-py) that are in projects like Assemblyline where the installation of the extractor is all around Python PATH manipulation and module loading (and in some cases, analysts don't want to install all of CAPE just to get access to the extractors).\r\n\r\nCurrently the process is (essentially what these [tests](https://github.com/CybercentreCanada/configextractor-py/blob/823ec6ae4a6a088b6d86a325dc6c692361199931/tests/test_detection.py#L133) do):\r\n\r\n- Git clone / HTTP GET extractor repository\r\n- Use CLI to point to directory containing extractors/module context\r\n  - CLI looks for requirements.txt or pyproject.toml to determine package dependencies for extractors to install in a venv\r\n  - CLI loads/keeps modules that match the extractor framework it's looking for\r\n\r\nAlso now that I think about it, automatic deployment in air-gapped systems would also pose an issue but there could be ways to get around that (ie. custom steps specifically for the CAPEv2 project but I'd prefer to stay as general as possible). \ud83e\udd14\nComment: I'll see if I can think of something as this is mostly a problem with automatic integration/patching with our systems. \ud83e\udd13\nComment: yep, lets thing of that in one of the next day, as my mind is occupied by another subject today, so we can find a proper solution \nComment: Thanks for the PR - I really like this implementation, nice wrappers that people can use or not as they please, leaving the core nice and clean \u2764\ufe0f \nComment: As a point of inquiry, is there any negatives of keeping the extractors within the main project?\nComment: no, the idea is just to properly try to split things,but we probably will have to merge and keep it here\nComment: i have a question, do you use this script? https://github.com/CAPESandbox/community/blob/master/utils/download_parsers.py\nComment: Nope, haven't seen that script before.\nComment: so if i understand properly\r\n\r\n1. having that extractor fetcher we could add maco folder into there from community repo so it would get you all parsers. \r\n2. In air gap setup you still need to clone main repo, so you can clone both of them\r\n3. It uses maco dependency, which probably only will be used by CCCS so i don't see reason to put it into core for everyone, i personally use `community_blacklist.py` for folders/files that i don't want on my servers\r\n4. another thing that would be nice for you i guess, is splitted dependencies, to have extractor dependencies independent to main pyprojects so that would make smaller main pyproject, but main dependency i guess is yara y pycryptodomex for most of the cases. but you could have pure extractor related dependencies\r\n5. if you prefer we can talk about this in pm\nComment: > 3\\. It uses maco dependency, which probably only will be used by CCCS so i don't see reason to put it into core for everyone, i personally use `community_blacklist.py` for folders/files that i don't want on my servers\r\n\r\nWell in this case, we could make `maco` an optional dependency similar to what was done from RKP so that way it doesn't impact CAPE and we could just install those dependencies in addition to what's part of the project by default.\r\n\r\nWhat this would imply is that we would need to add a try-except block to all the MACO extractors so way it doesn't break anything if they remain in the same project (this is doable and I don't see any problem with this).\r\n\r\n\r\n> 4\\. another thing that would be nice for you i guess, is splitted dependencies, to have extractor dependencies independent to main pyprojects so that would make smaller main pyproject, but main dependency i guess is yara y pycryptodomex for most of the cases. but you could have pure extractor related dependencies\r\n\r\nThis would be our most ideal scenario: where the extractors live in a separate project, specify their package dependencies, and could be submoduled/merged into CAPE upon installation. That way users that are just interested in running the extractors could just clone that one part rather than all of CAPE. \r\n\r\nBut as you mentioned, right now they are pretty tight knit but I noticed that there are only 9 extractors that use `lib.cuckoo.common.*` so maybe that's something that could be pulled out and stored in this extractor-only repository? The other side of this is the YARA rule dependency that extractors have which could follow suit of being included in the extractor repo and then merged into the whole of CAPE.\r\n\r\n---\r\n\r\nAn alternative measure I could see, which could be acceptable, is to move the `convert_to_MACO` within the CAPE extractors and change the output to return a dictionary rather than a Pydantic model. This removes the `maco` package dependency from the project entirely but this in some part moves the responsibility of the maintaining the conversion call in the main project (which for the most part, only people who call that function explicitly would be aware of like CCCS or anyone using Assemblyline.)\nComment: yes is hard one, ok so lets do one thing. im gonna merge and later we can research how to properly do it properly. the main problem as you mentioned yaras and extractors. we love community contribution, but we also see that they not always stable/can be trusted due to bad data generation etc. So normally we keep CAPE stuff in core, and the rest outside. So split it into projects is a bit hard right now, but i guess we can move parsers into separate project under core and community and just load them as it is now will speak with kevin after his pto\nComment: > i have a question, do you use this script? https://github.com/CAPESandbox/community/blob/master/utils/download_parsers.py\r\n\r\nYes we do use that script. @cccs-mog can confirm it's usage to download the latest parsers via a cronjob\nComment: WIP https://github.com/CAPESandbox/CAPE-parsers\nComment: Hello guys, we do have now it live on pypi, MACO wasn't fixed yet, but the parsers itself works just fine\r\n\r\nhttps://pypi.org/project/CAPE-parsers/0.1.0/\r\n![image](https://github.com/user-attachments/assets/ea3b2748-5612-469a-9fcd-4ca0786aec1a)\r\n\r\nso with having this as package, im considering more to move MACO to community and here is my reason, don't get me wrong i don't have nothing against MACO, but i neither write/maintain public parsers as we relay completely on our own parsers. So as im not maintaining them, if something changes, MACO formatting will be using by CCCS 99% so is easier to keep it fixed in community repo, than release new package right?\r\n\r\nim open to proper discussion of this, i will fix all imports in MACO so they can import properly cape extractors, but if that is fine for you to put them in comunity, i will procede and we will be done very soon with this cape parsers split from capev2\r\n\r\nPS what i don't see in this PR is invocation of the MACO by cape, or maybe there is too many files and it escapes from my eyes, so i guess you have code on your side right?\nComment: what i would love to highlight in the cape-parsers `load_cape_parsers` is ability to load all(cape/community) or only one of those + support list of modules to exclude from loading, in case any parser produce bad data and you want to exclude it, specially if that is community module and nobody fixing it. i have fixed all MACO imports to use parsers from library, i still need to fix path to yaras, i think instead of having them in `modules/processing/parsers/MACO` i prefer to put them inside `modules/parsers/MACO` what do you think?\nComment: > so with having this as package, im considering more to move MACO to community and here is my reason, don't get me wrong i don't have nothing against MACO, but i neither write/maintain public parsers as we relay completely on our own parsers. So as im not maintaining them, if something changes, MACO formatting will be using by CCCS 99% so is easier to keep it fixed in community repo, than release new package right?\r\n\r\nI think this will be fine if we can use the community repo and it contains the pip package as a dependency in the pyproject.toml and assuming everything we need is in that repository. I can do some testing when you think the repository is ready.\r\n\r\n> PS what i don't see in this PR is invocation of the MACO by cape, or maybe there is too many files and it escapes from my eyes, so i guess you have code on your side right?\r\n\r\nSo I never really got around to that part since I know in the past the UI doesn't play well with rendering nested data which MACO is usually composed of. I believe previous discussions were that MACO could be an alternative view of the raw config but I don't know if that's still the case.\r\n\r\n\r\n\r\n> i have fixed all MACO imports to use parsers from library, i still need to fix path to yaras, i think instead of having them in `modules/processing/parsers/MACO` i prefer to put them inside `modules/parsers/MACO` what do you think?\r\n\r\nFrom our perspective if you move it closer to the root, it shouldn't make a difference. What's the strategy for resolving the yara dependencies atm if the extractors were moved to community? Would there be a sync process between the two?\nComment: I do want to say I really appreciate the efforts being made to help us out \ud83d\ude0d\nComment: yep it won't be merged till we find working solution for everyone here.\r\ncape-parsers are part of capev2 pyproject, but i can put it there if you need. the idea is the same as now:\r\n1. git pull CAPEv2\r\n2. then fetch community repo, \r\ncape-parsers is inside of pyproject of CAPEv2, but i can put that in community as well if you need it, if you gonna use it with capev2, then you just use capev2's pyproject.\r\n\r\nyes is just replace import path on your side i guess. i have fixed all imports in MACO, just need to fix yara path, yara stay in CAPEv2, as detection is done on CAPEv2, and cape invokes parsers after match, the extractor that needs their own yara, is embedded into extractor as it was before, so no really big change, just cleanup, flexibility etc\nComment: Would there be any opposition to embedding the YARA rules into the MACO extractors? This would resolve a path-relative dependency but still give the flexibility to use the YARA rules when running within or without CAPEv2.\r\n\r\nwhat I'm thinking would be:\r\n```python\r\ntry:\r\n    yara_rule = open(os.path.join(os.path.dirname(__file__).split('/modules', 1)[0], f\"data/yara/CAPE/{family}.yar\")).read()\r\nexcept FileNotFoundError:\r\n    yara_rule = \"SOME EMBEDDED RULE\" or None \r\n# yara_rule=None just means the extractor will try and run on everything but we can wrap the execute in a try-except so it doesn't just crash\r\n```\r\n\r\nThis would imply that at least for CCCS and MACO, we would need to update the rules ourselves when we do find there are problems and it wouldn't be a concern for CAPEv2 (unless these rule changes are in fact useful to CAPEv2 as well).\nComment: yes you can do that, you can do anything to MACO files, as you will be probably uniq user of those. so do what best works for you. Yes the pitfall of embedding i guess is that you need to ensure that you update it if you use outside of cape or not reading the current yara which will be updated\r\n\r\ncheck out, is the default maco, as imports only required update\r\n\r\nhttps://github.com/CAPESandbox/community/pull/469\nComment: > CAPESandbox/community#469\r\n\r\nI think this works for us, I'll do some testing later today before you merge that branch in, if that's okay \ud83d\ude01\nComment: great, thank you for help, le me know about the dependencies, if you want them in community or it's used with capev2 pyprojects",
+  "Title: windows 11 support\nBody: Hi, sorry for posting my question here; I wasn't sure where else to ask.. I\u2019m struggling to install CAPEv2 and then realized it doesn\u2019t support Windows 11.. Are there technical challenges, or is an update planned?\nComment: Hi, sorry to hear you are having troubles. But the documentation clearly states Win10 21H2. Yes there are technical challenges for anything newer in the form of injecting into PPL. Solutions welcome!\nComment: Thank you for your response. It's okay; it's my fault for not reading the docs. But, is there a possibility that this will be resolved in the future? \nComment: Yes I am working on it \nComment: Oh... I'm really looking forward to it. I'm very much obliged to you\nComment: everything will be resolved in future, is future :) ",
+  "Title: Bump werkzeug from 3.0.3 to 3.0.6\nBody: Bumps [werkzeug](https://github.com/pallets/werkzeug) from 3.0.3 to 3.0.6.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a href=\"https://github.com/pallets/werkzeug/releases\">werkzeug's releases</a>.</em></p>\n<blockquote>\n<h2>3.0.6</h2>\n<p>This is the Werkzeug 3.0.6 security fix release, which fixes security issues but does not otherwise change behavior and should not result in breaking changes.</p>\n<p>PyPI: <a href=\"https://pypi.org/project/Werkzeug/3.0.6/\">https://pypi.org/project/Werkzeug/3.0.6/</a>\nChanges: <a href=\"https://werkzeug.palletsprojects.com/en/stable/changes/#version-3-0-6\">https://werkzeug.palletsprojects.com/en/stable/changes/#version-3-0-6</a></p>\n<ul>\n<li>Fix how <code>max_form_memory_size</code> is applied when parsing large non-file fields. <a href=\"https://github.com/advisories/GHSA-q34m-jh98-gwm2\">GHSA-q34m-jh98-gwm2</a></li>\n<li><code>safe_join</code> catches certain paths on Windows that were not caught by <code>ntpath.isabs</code> on Python &lt; 3.11. <a href=\"https://github.com/advisories/GHSA-f9vj-2wh5-fj8j\">GHSA-f9vj-2wh5-fj8j</a></li>\n</ul>\n<h2>3.0.5</h2>\n<p>This is the Werkzeug 3.0.5 fix release, which fixes bugs but does not otherwise change behavior and should not result in breaking changes.</p>\n<p>PyPI: <a href=\"https://pypi.org/project/Werkzeug/3.0.5/\">https://pypi.org/project/Werkzeug/3.0.5/</a>\nChanges: <a href=\"https://werkzeug.palletsprojects.com/en/stable/changes/#version-3-0-5\">https://werkzeug.palletsprojects.com/en/stable/changes/#version-3-0-5</a>\nMilestone: <a href=\"https://github.com/pallets/werkzeug/milestone/37?closed=1\">https://github.com/pallets/werkzeug/milestone/37?closed=1</a></p>\n<ul>\n<li>The Watchdog reloader ignores file closed no write events. <a href=\"https://redirect.github.com/pallets/werkzeug/issues/2945\">#2945</a></li>\n<li>Logging works with client addresses containing an IPv6 scope. <a href=\"https://redirect.github.com/pallets/werkzeug/issues/2952\">#2952</a></li>\n<li>Ignore invalid authorization parameters. <a href=\"https://redirect.github.com/pallets/werkzeug/issues/2955\">#2955</a></li>\n<li>Improve type annotation fore <code>SharedDataMiddleware</code>. <a href=\"https://redirect.github.com/pallets/werkzeug/issues/2958\">#2958</a></li>\n<li>Compatibility with Python 3.13 when generating debugger pin and the current UID does not have an associated name. <a href=\"https://redirect.github.com/pallets/werkzeug/issues/2957\">#2957</a></li>\n</ul>\n<h2>3.0.4</h2>\n<p>This is the Werkzeug 3.0.4 fix release, which fixes bugs but does not otherwise change behavior and should not result in breaking changes.</p>\n<p>PyPI: <a href=\"https://pypi.org/project/Werkzeug/3.0.4/\">https://pypi.org/project/Werkzeug/3.0.4/</a>\nChanges: <a href=\"https://werkzeug.palletsprojects.com/en/3.0.x/changes/#version-3-0-4\">https://werkzeug.palletsprojects.com/en/3.0.x/changes/#version-3-0-4</a>\nMilestone: <a href=\"https://github.com/pallets/werkzeug/milestone/36?closed=1\">https://github.com/pallets/werkzeug/milestone/36?closed=1</a></p>\n<ul>\n<li>Restore behavior where parsing <code>multipart/x-www-form-urlencoded</code> data with\ninvalid UTF-8 bytes in the body results in no form data parsed rather than a\n413 error. <a href=\"https://redirect.github.com/pallets/werkzeug/issues/2930\">#2930</a></li>\n<li>Improve <code>parse_options_header</code> performance when parsing unterminated\nquoted string values. <a href=\"https://redirect.github.com/pallets/werkzeug/issues/2904\">#2904</a></li>\n<li>Debugger pin auth is synchronized across threads/processes when tracking\nfailed entries. <a href=\"https://redirect.github.com/pallets/werkzeug/issues/2916\">#2916</a></li>\n<li>Dev server handles unexpected <code>SSLEOFError</code> due to issue in Python &lt; 3.13.\n<a href=\"https://redirect.github.com/pallets/werkzeug/issues/2926\">#2926</a></li>\n<li>Debugger pin auth works when the URL already contains a query string.\n<a href=\"https://redirect.github.com/pallets/werkzeug/issues/2918\">#2918</a></li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/pallets/werkzeug/blob/main/CHANGES.rst\">werkzeug's changelog</a>.</em></p>\n<blockquote>\n<h2>Version 3.0.6</h2>\n<p>Released 2024-10-25</p>\n<ul>\n<li>Fix how <code>max_form_memory_size</code> is applied when parsing large non-file\nfields. :ghsa:<code>q34m-jh98-gwm2</code></li>\n<li><code>safe_join</code> catches certain paths on Windows that were not caught by\n<code>ntpath.isabs</code> on Python &lt; 3.11. :ghsa:<code>f9vj-2wh5-fj8j</code></li>\n</ul>\n<h2>Version 3.0.5</h2>\n<p>Released 2024-10-24</p>\n<ul>\n<li>The Watchdog reloader ignores file closed no write events. :issue:<code>2945</code></li>\n<li>Logging works with client addresses containing an IPv6 scope :issue:<code>2952</code></li>\n<li>Ignore invalid authorization parameters. :issue:<code>2955</code></li>\n<li>Improve type annotation fore <code>SharedDataMiddleware</code>. :issue:<code>2958</code></li>\n<li>Compatibility with Python 3.13 when generating debugger pin and the current\nUID does not have an associated name. :issue:<code>2957</code></li>\n</ul>\n<h2>Version 3.0.4</h2>\n<p>Released 2024-08-21</p>\n<ul>\n<li>Restore behavior where parsing <code>multipart/x-www-form-urlencoded</code> data with\ninvalid UTF-8 bytes in the body results in no form data parsed rather than a\n413 error. :issue:<code>2930</code></li>\n<li>Improve <code>parse_options_header</code> performance when parsing unterminated\nquoted string values. :issue:<code>2904</code></li>\n<li>Debugger pin auth is synchronized across threads/processes when tracking\nfailed entries. :issue:<code>2916</code></li>\n<li>Dev server handles unexpected <code>SSLEOFError</code> due to issue in Python &lt; 3.13.\n:issue:<code>2926</code></li>\n<li>Debugger pin auth works when the URL already contains a query string.\n:issue:<code>2918</code></li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/pallets/werkzeug/commit/5eaefc3996aa5cc8c5237d8b82f1b89eed6ea624\"><code>5eaefc3</code></a> release version 3.0.6</li>\n<li><a href=\"https://github.com/pallets/werkzeug/commit/2767bcb10a7dd1c297d812cc5e6d11a474c1f092\"><code>2767bcb</code></a> Merge commit from fork</li>\n<li><a href=\"https://github.com/pallets/werkzeug/commit/87cc78a25f782f8c59fbde786840a00cf0d09b3d\"><code>87cc78a</code></a> catch special absolute path on Windows Python &lt; 3.11</li>\n<li><a href=\"https://github.com/pallets/werkzeug/commit/50cfeebcb0727e18cc52ffbeb125f4a66551179b\"><code>50cfeeb</code></a> Merge commit from fork</li>\n<li><a href=\"https://github.com/pallets/werkzeug/commit/8760275afb72bd10b57d92cb4d52abf759b2f3a7\"><code>8760275</code></a> apply max_form_memory_size another level up in the parser</li>\n<li><a href=\"https://github.com/pallets/werkzeug/commit/8d6a12e2af542a553853c870d106884a3cd1f73b\"><code>8d6a12e</code></a> start version 3.0.6</li>\n<li><a href=\"https://github.com/pallets/werkzeug/commit/a7b121abc781b9a6557ca204f23247db654d0253\"><code>a7b121a</code></a> release version 3.0.5 (<a href=\"https://redirect.github.com/pallets/werkzeug/issues/2961\">#2961</a>)</li>\n<li><a href=\"https://github.com/pallets/werkzeug/commit/9caf72ac060181a3171d91fd12279e071df430ca\"><code>9caf72a</code></a> release version 3.0.5</li>\n<li><a href=\"https://github.com/pallets/werkzeug/commit/e28a2451e99457ce71e460af276a02f27a3bdba1\"><code>e28a245</code></a> catch OSError from getpass.getuser (<a href=\"https://redirect.github.com/pallets/werkzeug/issues/2960\">#2960</a>)</li>\n<li><a href=\"https://github.com/pallets/werkzeug/commit/e6b4cce97eef17716004625bcf6754fa930f2618\"><code>e6b4cce</code></a> catch OSError from getpass.getuser</li>\n<li>Additional commits viewable in <a href=\"https://github.com/pallets/werkzeug/compare/3.0.3...3.0.6\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=werkzeug&package-manager=pip&previous-version=3.0.3&new-version=3.0.6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Fixing database issue\nBody: related to #2353\nComment: thanks",
+  "Title: Update install script for ubuntu 24.04\nBody: Hi,\r\n\r\nThis install script seem to \"work\" (better than the previous state) for **Ubuntu 24.04** (using the `all` parameter):\r\n- Automated script in docker using CI (hypervisor target: VirtualBox setup). Need of the new option `--disable-mongodb-avx-check`\r\n- Fresh install on a **ubuntu server 24.04** (hypervisor target: Proxmox setup)\nComment: thank you",
+  "Title: YungBinary Add Stealc/KoiLoader Config Extractors\nBody: Here's a preview of config extraction for StealC/KoiLoader :) been trying to find a job doing this full time so if anyone has any leads lmk!\r\n\r\n![Screenshot from 2024-10-23 09-38-52](https://github.com/user-attachments/assets/51bea1b4-365b-4306-a10b-b9bb1905449c)\r\n\r\n![PREVIEW CONFIG EXTRACTION](https://github.com/user-attachments/assets/0fb0f9d5-e4a8-400e-b6b4-edee6dd252d9)\r\n\r\n\nComment: Can you please add test for the extractor too?\nComment: > Can you please add test for the extractor too?\r\n\r\nOn it, thanks!\nComment: @doomedraven Okay I've added the tests including one for lumma, here's the PR for the test files repo: https://github.com/CAPESandbox/CAPE-TestFiles/pull/10 planning to re-run the failed test here once that PR is merged\nComment: Thanks for this contribution \ud83d\ude4f Unfortunately I am not keen on the idea of having decrypted strings in the config - for dynamically extracted strings there is already the facility to have them appear as a text file in the payloads tab. I am working with doomed on a potential mechanism to have strings dumped from static parsers to appear in a more suitable place than the config. For this reason I will hold off for now on merging this, and will be on leave for a week or so. But this addition is very much appreciated, I would request your patience while we work out the details.\nComment: > Thanks for this contribution \ud83d\ude4f Unfortunately I am not keen on the idea of having decrypted strings in the config - for dynamically extracted strings there is already the facility to have them appear as a text file in the payloads tab. I am working with doomed on a potential mechanism to have strings dumped from static parsers to appear in a more suitable place than the config. For this reason I will hold off for now on merging this, and will be on leave for a week or so. But this addition is very much appreciated, I would request your patience while we work out the details.\r\n\r\nThanks for the update. The goal was to have output useful for reverse engineers so they can pop the sample into IDA and be able to map labels like dword_x to specific strings, otherwise the strings aren't very meaningful on their own.\nComment: Yep absolutely - useful output no doubt. It's that the place for such output is really somewhere like the payload tab, just not the config.\nComment: > Yep absolutely - useful output no doubt. It's that the place for such output is really somewhere like the payload tab, just not the config.\r\n\r\nOkay gotcha that sounds good. I'll keep an eye out for DMs or messages here in the event y'all find something suitable and I need to make changes. Also, just wrote up a KoiLoader config extractor and test and added to this PR as I can't fork the repo twice but can remove if it should be in its own PR, thanks!\nComment: Hello, I would suggest to split commits per parser, as having both parsers here will be on hold till we have time to work on strings instead of directly merge the second one\nComment: you don't need to fork repo twice, you can work on different branches\nComment: @kevoreilly as quick workout for this i would just kick strings from web gui(allowing users to enable that in config if they want). so we can merge this and work on the move of strings properly once we have more spare time\nComment: i have disabled string storing for now, we will be able to restore that later, so i can merge this PR :), thanks again @YungBinary ",
+  "Title: ReportHTML fix\nBody: In processing:\r\n\r\n`[lib.cuckoo.core.plugins] WARNING: The reporting module \"ReportHTML\" returned the following error: Failed to generate summary HTML report: expected token 'end of print statement', got ':' on base-report.html, line 26`\r\n\r\nThis error stops the generation of report html. Feel free to use any other expression in the title tag",
+  "Title: Add BlackDropper Parser and Yara\nBody: None\nComment: maybe sort urls?\nComment: sorted\nComment: seems to be an issue\r\n\nComment: ok fixed\r\n",
+  "Title: Mitmdump support\nBody: CAPE integration of mitmdump, part of mitmproxy. Currently this module acts as a proxy for `443/80` and extracts a `HAR` file from these connections.\r\n\r\nThis module needs to be enabled in `auxiliary.conf` but also **requires** the send mitmdump parameter in web submit, this is to prevent all tasks being sent to mitmdump (e.g. sample with sample with cert pinned).\r\n\r\nThe Har resulted can be downloaded separated of report from `tasks/get/mitmdump/<task_id>/`",
+  "Title: overlay\nBody: None",
+  "Title: \"web/manage.py migrate\" end with \"no migrations to apply\"\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\n__The migrations is real applied and the status \"You have xx unapplied migration(s)\" is gone__\r\n\r\n# Current Behavior\r\n\r\nI'm running `poetry run python3 web/manage.py migrate` but the migrations is not applied and I get message \"No migrations to apply\"\r\n\r\n## Steps to Reproduce\r\n\r\n1. `sudo systemctl restart cape*`\r\n2. `sudo systemctl status cape-web.serice` and the message \"You have 33 unapplied migration(s)\" shown\r\n3. `poetry run python3 web/manage.py migrate` and the message \"No migrations to apply\" shown\r\n4. `poetry run python3 web/manage.py migrate` again and still show the same message\r\n\r\n## Context\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Architecture       | Nested virtualization\r\n| OS version       | Ubuntu Desktop 22.04.5 (VMware Guest) \r\n| RAM       | 20GB\r\n| Storage       | 160GB\r\n| RAM       | 20GB\r\n| CAPEv2 version       | October 18, 2024\r\n| Python3 version     | 3.10.12\r\n| poetry version       | 1.8.4\r\n| django version (in poetry)       | 4.2.16\r\n\r\n## Failure Logs\r\n\r\n```markdown\r\ncape@cape:/opt/CAPEv2$ sudo systemctl status cape-web.service \r\n\u25cf cape-web.service - CAPE WSGI app\r\n     Loaded: loaded (/lib/systemd/system/cape-web.service; enabled; vendor preset: enabled)\r\n     Active: active (running) since Sun 2024-10-20 12:27:16 UTC; 5s ago\r\n       Docs: https://github.com/kevoreilly/CAPEv2\r\n   Main PID: 7369 (python)\r\n      Tasks: 3 (limit: 23849)\r\n     Memory: 476.2M\r\n        CPU: 3.800s\r\n     CGroup: /system.slice/cape-web.service\r\n             \u251c\u25007369 /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python manage.py runserver_plus 0.0.0.0:8000 --traceback --keep-meta-shutdown\r\n             \u2514\u25007538 /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python manage.py runserver_plus 0.0.0.0:8000 --traceback --keep-meta-shutdown\r\n\r\nOkt 20 12:27:19 cape python3[7538]: INFO:modules.processing.network:Loading maxmind database from /opt/CAPEv2/modules/processing/../../data/GeoLite2-Country.mmdb\r\nOkt 20 12:27:19 cape python3[7538]: System check identified no issues (3 silenced).\r\nOkt 20 12:27:20 cape python3[7538]: You have 33 unapplied migration(s). Your project may not work properly until you apply the migrations for app(s): account, admin, a>\r\nOkt 20 12:27:20 cape python3[7538]: Run 'python manage.py migrate' to apply them.\r\nOkt 20 12:27:20 cape python3[7538]: Django version 4.2.16, using settings 'web.settings'\r\nOkt 20 12:27:20 cape python3[7538]: Development server is running at http://0.0.0.0:8000/\r\nOkt 20 12:27:20 cape python3[7538]: Using the Werkzeug debugger (http://werkzeug.pocoo.org/)\r\nOkt 20 12:27:20 cape python3[7538]: Quit the server with CONTROL-C.\r\nOkt 20 12:27:20 cape python3[7538]:  * Debugger is active!\r\nOkt 20 12:27:20 cape python3[7538]:  * Debugger PIN: 545-112-931\r\n\r\ncape@cape:/opt/CAPEv2$ poetry run python3 web/manage.py migrate\r\nINFO:modules.processing.network:Loading maxmind database from /opt/CAPEv2/modules/processing/../../data/GeoLite2-Country.mmdb\r\nOperations to perform:\r\n  Apply all migrations: account, admin, auth, authtoken, contenttypes, openid, sessions, sites, socialaccount, users\r\nRunning migrations:\r\n  No migrations to apply.\r\n\r\ncape@cape:/opt/CAPEv2$ poetry run python3 web/manage.py showmigrations --list\r\nINFO:modules.processing.network:Loading maxmind database from /opt/CAPEv2/modules/processing/../../data/GeoLite2-Country.mmdb\r\naccount\r\n [X] 0001_initial\r\n [X] 0002_email_max_length\r\nadmin\r\n [X] 0001_initial\r\n [X] 0002_logentry_remove_auto_add\r\n [X] 0003_logentry_add_action_flag_choices\r\nauth\r\n [X] 0001_initial\r\n [X] 0002_alter_permission_name_max_length\r\n [X] 0003_alter_user_email_max_length\r\n [X] 0004_alter_user_username_opts\r\n [X] 0005_alter_user_last_login_null\r\n [X] 0006_require_contenttypes_0002\r\n [X] 0007_alter_validators_add_error_messages\r\n [X] 0008_alter_user_username_max_length\r\n [X] 0009_alter_user_last_name_max_length\r\n [X] 0010_alter_group_name_max_length\r\n [X] 0011_update_proxy_permissions\r\n [X] 0012_alter_user_first_name_max_length\r\nauthtoken\r\n [X] 0001_initial\r\n [X] 0002_auto_20160226_1747\r\n [X] 0003_tokenproxy\r\n [X] 0004_alter_tokenproxy_options\r\ncontenttypes\r\n [X] 0001_initial\r\n [X] 0002_remove_content_type_name\r\nopenid\r\n [X] 0001_initial\r\nsessions\r\n [X] 0001_initial\r\nsites\r\n [X] 0001_initial\r\n [X] 0002_alter_domain_unique\r\nsocialaccount\r\n [X] 0001_initial\r\n [X] 0002_token_max_lengths\r\n [X] 0003_extra_data_default_dict\r\nusers\r\n [X] 0001_initial\r\n [X] 0002_reports\r\n [X] 0003_rename_field_subscription\r\n```\r\n\r\n![image](https://github.com/user-attachments/assets/02c366be-5b72-432d-994b-b90eee273d73)\r\n![image](https://github.com/user-attachments/assets/dbf50978-0ec1-477d-b170-50a389946f1c)\r\n\r\n\nComment: Do you restart web after migration?\nComment: > Do you restart web after migration?\r\n\r\nYes, Yes, I have restarted the service, but the status \"You have 33 unapplied migration(s) is still shown.\nComment: just tested on new server, i can't reproduce it %)\nComment: as we can't reproduce it, im closing this\nComment: Okay thank you very much. I have reproduced the CAPEv2 on the new VM, but the message is still show and I think it's not problem.",
+  "Title: WIP: Update Lumma C2 Config Parser\nBody: Here's a preview of C2 extraction - \r\n\r\n![Screenshot from 2024-10-20 00-34-59](https://github.com/user-attachments/assets/7402d6bc-2c0b-4c7c-9afc-1dc436583ffb)\r\n\nComment: Going to mark this as a WIP as I need to test with more samples. If anyone has any known lumma sample hashes please drop them here? Thanks!\nComment: Thanks for all your work on this! Give me an hour or two and I shall be on the case \ud83d\udc4d \nComment: I've taken some time to review this, and the first thing to say is thank you for this contribution. Lumma is a prevalent family which has been a bit neglected in cape so an update was very much needed \ud83d\ude4f \r\n\r\nThe decoder/parser is really nicely written as well as working nicely \ud83d\udc4d \r\n\r\nThe detection side unfortunately did not work so well. I tested many samples from the past three months from MalwareBazaar, sadly none were detected at all by this yara. Also none in my collection of about a year.\r\n\r\nHere are some samples I tested from MalwareBazaar:\r\n\r\n```\r\n2024-10-21 01:08\t64a1012812d93a806ea6acb96de9d39c7b94bb52dd2cb05cc967d11fc908212b\tExecutable exe\tLummaStealer\texe LummaStealer\t Bitsight\t\r\n2024-10-20 14:36\t23ff1c20b16d9afaf1ce443784fc9a025434a010e2194de9dec041788c369887\tExecutable exe\tLummaStealer\texe LummaStealer\t 4k95m\t\r\n2024-10-19 23:38\t3889a6276257495ca38bbc6914d7157bb88cf8a88d1f767a3678aee6ae4cf2d7\tExecutable exe\tLummaStealer\texe LummaStealer\t Chainskilabs\t\r\n2024-10-19 22:32\t0c3b276a645b603ef249cb10dca8e6c20d446713464598e873f9613724cbdc90\tDLL dll\tLummaStealer\tdll LummaStealer\t aachum\t\r\n2024-10-19 22:29\t74039bd80009452e741dc66a2082a59afefd3ed828ee8fd8bf99af94cd8562f9\tExecutable exe\tLummaStealer\texe LummaStealer\t aachum\t\r\n2024-10-19 21:48\ta3959af369ca057024a912c494a466ec9fa8797f4829929bb8193ecbdd9e383e\tExecutable exe\tLummaStealer\t32 exe LummaStealer trojan\t zbetcheckin\t\r\n2024-10-18 16:55\tc86df8b5b6844a8cf1048abb8985f2407cdad39105135f7f49e164dc23575188\tExecutable exe\tLummaStealer\texe LummaStealer\t Bitsight\t\r\n2024-10-13 21:26\tb68f20b21290f3398b67a6c4b645d5ea94aeaf8e3da4272554b0b8e03753d08c\tExecutable exe\tLummaStealer\texe LummaStealer\t SecuriteInfoCom\t\r\n2024-09-15 15:25\t805fc01b800bf1e64a2ade4ee7a74fa2c96a4f3b11aa783ba69632dee4aeb111\tExecutable exe\tLummaStealer\texe LummaStealer\t SecuriteInfoCom\t\r\n2024-09-14 10:43\tab7d521c4c56ad3b3770b2b0a649c2b3ffa81fe94ee06332a4452df07d255ab2\tExecutable exe\tLummaStealer\texe LummaStealer\t aachum\t\r\n2024-09-13 19:13\t4c14100fd95eec6724a418eb227f23380d5a3d2ba41c32cc9688d8a69db9a0af\tExecutable exe\tLummaStealer\texe LummaStealer\t aachum\t\r\n2024-09-12 23:36\t9872e627ec7fde1dd2a2aa89d288257ad2220ac5932434d1ebc24925c7eec278\tExecutable exe\tLummaStealer\texe LummaStealer\t Bitsight\t\r\n2024-09-11 17:07\t37fcd674643b9586fdcecce7ed04f7f47509553a282dcdfa21c501dd03e3e941\tExecutable exe\tLummaStealer\tClearFake exe FLARC LummaStealer pangscroogecarnage signed\t monitorsg\t\r\n2024-09-10 23:14\t038ae1968e1cc1424184b684200cced6e2ddd84d4d8557fc2a10330cb754f44e\tExecutable exe\tLummaStealer\texe LummaStealer\t Bitsight\t\r\n2024-09-09 15:29\t08d54acc0e22ba91e89824ee3b838f5527abeb53e36996e3d92e93f7c27dd77d\tExecutable exe\tLummaStealer\texe LummaStealer\t Chainskilabs\t\r\n2024-09-01 20:22\t3266bf53273feea7374264865066f706462ea323d8c26cba051cfcbefc1fcb80\tExecutable exe\tLummaStealer\texe GoInjector LummaStealer\t SecuriteInfoCom\t\r\n```\r\n\r\nI also tested older samples from my collection:\r\n\r\n```\r\nd73bf02e574fc907ee25a373379532da515a089511755756d4792016d4c0b0da\r\n7972cbf2c143cea3f90f4d8a9ed3d39ac13980adfdcf8ff766b574e2bbcef1b4\r\n351fadc9f1ddd2bd6bd34ceed2353b8211123e057b52c6aeb60a28643d92f137\r\n55158d21359fab879f9154e3f999aa3c003e88895f89b2cdcb740070d250b7d1\r\n56f2f2548297d7b72af40b7898d1dabe2dcb8090388985b218f4452d1a9c6ebf\r\n```\r\n\r\nOne of the difficulties with this family is that the decoding algorithm used for detection varies a great deal across samples and time. It turns out the sample used in your example (which is not packed) is fairly unusual with a decoding algorithm that I cannot see in a single other sample. This is why the yara detects almost no other samples:\r\n\r\n![image](https://github.com/user-attachments/assets/bada2ee1-852e-4385-9e3a-74ebce462c10)\r\n\r\nSo I have spent a few hours creating a new yara to detect as many samples as possible including yours.\r\n\r\nI found a few samples for which the parser doesn't work - for example some packed with Themida where the encrypted C2s are not in ``.rdata``. I've looked into these and will hopefully be able to get them working, but no reason not to merge what we have currently!\r\n\nComment: Awesome @kevoreilly thanks for your assistance on this appreciate the kind words and good work \ud83d\udcaa\nComment: @kevoreilly Curious if you have a recommendation for any other families I should take a look at? Maybe you can DM me on X? My Twitter handle is the same as my GH username.",
+  "Title: Update mongodb to 8.0\nBody: None",
+  "Title: Update to mongodb 8.0\nBody: Hi,\r\n\r\nIs it possible to update MongoDB version to 8.0 in installer script ? Would this have an impact on the rest of the project?\r\n\r\nUsing the latest Ubuntu LTS (24.04 - noble), the 7.0 version is not available in their repository: https://repo.mongodb.org/apt/ubuntu/dists/noble/mongodb-org/\r\n\r\nImpacted line of code:\r\nhttps://github.com/kevoreilly/CAPEv2/blob/a411d423d2badcb5ac5f344345770d902b053287/installer/cape2.sh#L788C1-L788C23\r\n\r\nThanks ! :)\nComment: Push pr\r\n\r\nEl jue, 17 oct 2024, 22:39, Maxime Berthault ***@***.***>\r\nescribi\u00f3:\r\n\r\n> Hi,\r\n>\r\n> Is it possible to update MongoDB version to 8.0 in installer script ?\r\n> Would this have an impact on the rest of the project?\r\n>\r\n> Using the latest Ubuntu LTS (24.04 - noble), the 7.0 version is not\r\n> available in their repository:\r\n> https://repo.mongodb.org/apt/ubuntu/dists/noble/mongodb-org/\r\n>\r\n> Impacted line of code:\r\n>\r\n> https://github.com/kevoreilly/CAPEv2/blob/a411d423d2badcb5ac5f344345770d902b053287/installer/cape2.sh#L788C1-L788C23\r\n>\r\n> Thanks ! :)\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2360>, or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH35F7G76I4P5KVZKQSTZ4AOAFAVCNFSM6AAAAABQER2R26VHI2DSMVQWIX3LMV43ASLTON2WKOZSGU4TKNZQGE3TMNA>\r\n> .\r\n> You are receiving this because you are subscribed to this thread.Message\r\n> ID: ***@***.***>\r\n>\r\n\nComment: Done: https://github.com/kevoreilly/CAPEv2/pull/2361\nComment: Merci",
+  "Title: Save stdout and stderr to log\nBody: None",
+  "Title: Rename test_Shellcode test to test_shellcode\nBody: - Renames test_Shellcode test to test_shellcode",
+  "Title: Package consolidation fix\nBody: - Updates unit tests as a result of the package changes in 45b0099.\r\n- Updates floss packages as a result of the changes in 45b0099.\r\n- Removes vawtrack package.",
+  "Title: Fix bug when download_file returns success.\nBody: None\nComment: ouch good catch, but we need to handle it, as zips with many files, could reject some of them. thanks to point to the problem, i will review it again tomorrow\nComment: plz see my changes, now it should be properly handled and errors will be streamed down to user",
+  "Title: CAPE Guru badge added\nBody: PR for the issue: #2344 ",
+  "Title: Fix typo getting demux errors.\nBody: None",
+  "Title: Analysis Failing After Error Unlocking Physical Machine - session.add(machine) - Can't attach, another instance present in this session.\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I did read the README!\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nSubmit sample to physical machine, complete analysis, successfully release machine and make analysis available for reporting. \r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\nDeployed fresh Cape instance, using a single physical host for analysis (no vms). Submitting sample and analysis is successful but then after the machine is reset to its clean image, Analysis manager fails after trying to release the machine and calling self.session.add(machine) in database.py due to \"sqlalchemy.exc.InvalidRequestError: Can't attach instance <Machine at 0x79e514210070>; another instance with key (<class 'lib.cuckoo.core.database.Machine'>, (1,), None) is already present in this session.\"\r\n\r\n# Failure Information (for bugs)\r\n```\r\n2024-10-15 13:24:37,135 [lib.cuckoo.core.analysis_manager] ERROR: Task #1: failure in AnalysisManager.run\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 497, in run\r\n    self.launch_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 459, in launch_analysis\r\n    success = self.perform_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 443, in perform_analysis\r\n    with self.machine_running(), self.result_server(), self.network_routing(), self.run_auxiliary():\r\n  File \"/usr/lib/python3.10/contextlib.py\", line 142, in __exit__\r\n    next(self.gen)\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 335, in machine_running\r\n    self.machinery_manager.machinery.release(self.machine)\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 270, in release\r\n    return self.db.unlock_machine(machine)\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/database.py\", line 978, in unlock_machine\r\n    self.session.add(machine)\r\n  File \"<string>\", line 2, in add\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 2648, in add\r\n    self._save_or_update_state(state)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 2672, in _save_or_update_state\r\n    self._save_or_update_impl(state)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 3289, in _save_or_update_impl\r\n    self._update_impl(state)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 3278, in _update_impl\r\n    self.identity_map.add(state)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/identity.py\", line 151, in add\r\n    raise sa_exc.InvalidRequestError(\r\nsqlalchemy.exc.InvalidRequestError: Can't attach instance <Machine at 0x79e514210070>; another instance with key (<class 'lib.cuckoo.core.database.Machine'>, (1,), None) is already present in this session.\r\n```\r\n\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Running CUCKOO_VERSION = \"2.4-CAPE\" and SQLAlchemy = \"1.4.50\" with only one physical machine (no VMs)\r\n2. Submit file to physical machine for analysis\r\n3. Once analysis is complete the machine begins to reset to its clean state from Fog\r\n4. After the machine is reset the analysis fails trying to release the lock on it. \r\n5. Analysis is stuck in running state on the web app until the services are restarted, then shows analysis failed, although the storage folder seems to have all the analysis content successfully. \r\n\r\n## Context\r\nCUCKOO_VERSION = \"2.4-CAPE\"\r\nSQLAlchemy = \"1.4.50\"\r\nUbuntu 22.04.5\r\nPython 3.10.12\r\n\r\nCape is running on a Qemu VM in a bridged virtual network with the physical machine similar to https://mariohenkel.medium.com/using-cape-sandbox-and-fog-to-analyze-malware-on-physical-machines-4dda328d4e2c\r\n\r\nI noticed similar issues in https://github.com/kevoreilly/CAPEv2/issues/2225#issue-2407395084 and https://github.com/kevoreilly/CAPEv2/issues/2258#issue-2444522205 but they did not find solutions. I have been trying to debug it myself but have not figured out what the issue is yet. Thank you for any help and let me know if I can provide more info. \r\n\r\n## Failure Logs\r\ncape.service logs (no sql)\r\n```\r\nOct 15 00:32:58 cape sudo[3982]: pam_limits(sudo:session): unknown limit item 'hard'\r\nOct 15 00:32:58 cape sudo[3982]: pam_unix(sudo:session): session opened for user root(uid=0) by (uid=997)\r\nOct 15 00:33:00 cape python3[3704]: 2024-10-15 00:33:00,428 [lib.cuckoo.core.guest] INFO: Task #1: Starting analysis on guest (id=physical01, ip=192.168.200.106)\r\nOct 15 00:33:00 cape python3[3704]: 2024-10-15 00:33:00,487 [lib.cuckoo.core.guest] INFO: Task #1: Guest is running CAPE Agent 0.12 (id=physical01, ip=192.168.200.106)\r\nOct 15 00:33:01 cape python3[3704]: 2024-10-15 00:33:01,860 [lib.cuckoo.core.guest] INFO: Task #1: Uploading script files to guest (id=physical01, ip=192.168.200.106)\r\nOct 15 00:33:14 cape python3[3704]: 2024-10-15 00:33:14,383 [lib.cuckoo.core.resultserver] INFO: Task 1: Process 5172 (parent 7808): 8f236f2d98fe2171ca74.exe, path C:\\Users\\jerry\\AppData\\Local\\Temp\\8f236f2d98fe2171ca74.exe\r\nOct 15 00:34:13 cape python3[3704]: 2024-10-15 00:34:13,485 [lib.cuckoo.core.resultserver] INFO: Task 1: Process 4324 (parent 5172): cttune.exe, path C:\\Windows\\SysWOW64\\cttune.exe\r\nOct 15 00:36:42 cape python3[3704]: 2024-10-15 00:36:42,793 [lib.cuckoo.core.guest] INFO: Task #1: Analysis completed successfully (id=physical01, ip=192.168.200.106)\r\nOct 15 00:36:42 cape sudo[3982]: pam_unix(sudo:session): session closed for user root\r\nOct 15 00:36:43 cape python3[3704]: 2024-10-15 00:36:43,030 [lib.cuckoo.core.analysis_manager] INFO: Task #1: Disabled route 'internet'\r\nOct 15 00:41:58 cape python3[3704]: 2024-10-15 00:41:58,110 [lib.cuckoo.core.analysis_manager] ERROR: Task #1: failure in AnalysisManager.run\r\nOct 15 00:41:58 cape python3[3704]: Traceback (most recent call last):\r\nOct 15 00:41:58 cape python3[3704]:   File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 497, in run\r\nOct 15 00:41:58 cape python3[3704]:     self.launch_analysis()\r\nOct 15 00:41:58 cape python3[3704]:   File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 459, in launch_analysis\r\nOct 15 00:41:58 cape python3[3704]:     success = self.perform_analysis()\r\nOct 15 00:41:58 cape python3[3704]:   File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 443, in perform_analysis\r\nOct 15 00:41:58 cape python3[3704]:     with self.machine_running(), self.result_server(), self.network_routing(), self.run_auxiliary():\r\nOct 15 00:41:58 cape python3[3704]:   File \"/usr/lib/python3.10/contextlib.py\", line 142, in __exit__\r\nOct 15 00:41:58 cape python3[3704]:     next(self.gen)\r\nOct 15 00:41:58 cape python3[3704]:   File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 335, in machine_running\r\nOct 15 00:41:58 cape python3[3704]:     self.machinery_manager.machinery.release(self.machine)\r\nOct 15 00:41:58 cape python3[3704]:   File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 270, in release\r\nOct 15 00:41:58 cape python3[3704]:     return self.db.unlock_machine(machine)\r\nOct 15 00:41:58 cape python3[3704]:   File \"/opt/CAPEv2/lib/cuckoo/core/database.py\", line 978, in unlock_machine\r\nOct 15 00:41:58 cape python3[3704]:     self.session.add(machine)\r\nOct 15 00:41:58 cape python3[3704]:   File \"<string>\", line 2, in add\r\nOct 15 00:41:58 cape python3[3704]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 2648, in add\r\nOct 15 00:41:58 cape python3[3704]:     self._save_or_update_state(state)\r\nOct 15 00:41:58 cape python3[3704]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 2672, in _save_or_update_state\r\nOct 15 00:41:58 cape python3[3704]:     self._save_or_update_impl(state)\r\nOct 15 00:41:58 cape python3[3704]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 3289, in _save_or_update_impl\r\nOct 15 00:41:58 cape python3[3704]:     self._update_impl(state)\r\nOct 15 00:41:58 cape python3[3704]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 3278, in _update_impl\r\nOct 15 00:41:58 cape python3[3704]:     self.identity_map.add(state)\r\nOct 15 00:41:58 cape python3[3704]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/identity.py\", line 151, in add\r\nOct 15 00:41:58 cape python3[3704]:     raise sa_exc.InvalidRequestError(\r\nOct 15 00:41:58 cape python3[3704]: sqlalchemy.exc.InvalidRequestError: Can't attach instance <Machine at 0x72786bfcd480>; another instance with key (<class 'lib.cuckoo.core.database.Machine'>, (1,), None) is already present in this session.\r\n```\r\n\r\ncape-processor.service logs (nosql)\r\n```\r\nOct 15 00:31:51 cape python3[3394]: WHERE tasks.status = %(status_1)s ORDER BY tasks.completed_on ASC\r\nOct 15 00:31:51 cape python3[3394]:  LIMIT %(param_1)s) AS anon_1 LEFT OUTER JOIN (tasks_tags AS tasks_tags_1 JOIN tags AS tags_1 ON tags_1.id = tasks_tags_1.tag_id) ON anon_1.tasks_id = tasks_tags_1.task_id LEFT OUTER JOIN guests AS guests_1 ON anon_1.tasks_id = guests_1.task_id LEFT OUTER JOIN errors AS errors_1 ON anon_1.tasks_id = errors_1.task_id ORDER BY anon_1.tasks_completed_on ASC]\r\nOct 15 00:31:51 cape python3[3394]: [parameters: {'status_1': 'completed', 'param_1': 7}]\r\nOct 15 00:31:51 cape python3[3394]: (Background on this error at: https://sqlalche.me/e/14/f405)\r\nOct 15 00:31:51 cape systemd[1]: cape-processor.service: Deactivated successfully.\r\nOct 15 00:31:51 cape systemd[1]: cape-processor.service: Consumed 1min 36.730s CPU time.\r\nOct 15 00:32:04 cape systemd[1]: Stopped CAPE report processor.\r\nOct 15 00:32:04 cape systemd[1]: cape-processor.service: Consumed 1min 36.730s CPU time.\r\nOct 15 00:32:06 cape systemd[1]: Started CAPE report processor.\r\nOct 15 00:32:18 cape python3[3721]: 2024-10-15 00:32:18,530 [root] INFO: Processing analysis data\r\n```\r\n\r\nHere are logs with sql debug on. Attaching them separately because of length. Error is at line 5344 in cuckoo.log \r\n[cuckoo.log](https://github.com/user-attachments/files/17381848/cuckoo.log)\r\n[process.log](https://github.com/user-attachments/files/17381849/process.log)\r\n\r\nconf files\r\n[cuckoo.conf.txt](https://github.com/user-attachments/files/17382218/cuckoo.conf.txt)\r\n[physical.conf.txt](https://github.com/user-attachments/files/17382221/physical.conf.txt)\r\n\nComment: @tbeadle could you check it plz?\nComment: I have resolved this issue by replacing `session.add(machine)` with `session.merge(machine)`\nComment: Can you submit pull request with fix?\r\n\r\nEl jue, 24 oct 2024, 9:30, Mohannad Raafat ***@***.***>\r\nescribi\u00f3:\r\n\r\n> I have resolved this issue with session.merge(machine)\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2353#issuecomment-2434509032>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH33G4GEUCD7Q6D3N2TLZ5COZHAVCNFSM6AAAAABP7SJV76VHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDIMZUGUYDSMBTGI>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: Confirmed it's working for me too now. Thank you @para0x0dise \nComment: thanks for confirming",
+  "Title: Fix test where the `file` utility changes its output based on the installed version.\nBody: None",
+  "Title: Fix return types in demux_sflock/demux_sample.\nBody: Also fix handling of one case where sample size was smaller than the limit but was still being reported as an error saying the sample is too big.",
+  "Title: Config Issue with result_server and API questions\nBody: Hello. I have been using CAPEv2 for a while to get to know it again after a pause and I have a couple of questions. I have read the documentation but still get confused by some stuff.\r\n\r\nI have set my resultserver at some point to - 192.168.122.1:2042 port\r\nHowever I accessed the cape dashboard in 192.168.122.1:8000 port in order to submit tasks when I start cape to listen for submissions\r\n\r\nNow I have read that result_server should be the host IP which i changed -> 192.168.140.150 with the same 2042 default port\r\nhowever I can only access the dashboard on the previous IP ->> 192.168.122.1:8000\r\n\r\nThe VM that I have still can communicate to the previous IP due to me editing the kvm.conf file:\r\n\r\nI was wondering for fix here or some help because I wanna use the API of Cape to fetch the results but before that I must fix the issues here - plus I can only access apiv2/tasks/get/report/2 only from --> 192.168.122.1\r\n\r\nI have restarted cape several times but no result\r\ncan you help me out?\r\n\r\n![cape_issue9](https://github.com/user-attachments/assets/fa36ecaa-0ee7-45e7-8dca-c367593c702f)\r\n![capegithub1](https://github.com/user-attachments/assets/1bdf535c-40f6-46b6-aa35-8c41ce5d9051)\r\n![capegithub2](https://github.com/user-attachments/assets/80db88ee-3931-4947-a344-87707dfeaa30)\r\n![capegithub3](https://github.com/user-attachments/assets/84113776-f73a-46d3-8d52-9a66d3734276)\r\n\nComment: result server is not web server, you need to edit `cape-web.service` \nComment: in future plz read the docs https://capev2.readthedocs.io/en/latest/usage/web.html",
+  "Title: expose demux error msgs\nBody: None",
+  "Title: The view dashboard.views.index didn't return an HttpResponse object. It returned None instead.\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nExpected to be able to load the index at 127.0.0.1:8000\r\n\r\n# Current Behavior\r\n\r\nI am unable to load the dashboard page for CAPEv2 on a fresh install. I've tried reinstalling with \"All\" and \"base\". Not sure what the issue is as nothing suspect is printed to journalctl as seen below. I've confirmed all other pages are loading fine, e.g. recent, submit, etc. To resolve this I submitted a file and let it finish and now the dashboard loads. I suspect anyone installing CAPEv2 from scratch may run into this. \r\n\r\n# Failure Information (for bugs)\r\n\r\n```\r\ncape-web.service - CAPE WSGI app\r\n     Loaded: loaded (/lib/systemd/system/cape-web.service; enabled; vendor preset: enabled)\r\n     Active: active (running) since Fri 2024-10-11 23:41:17 UTC; 5min ago\r\n       Docs: https://github.com/kevoreilly/CAPEv2\r\n   Main PID: 1547 (python)\r\n      Tasks: 3 (limit: 37537)\r\n     Memory: 516.9M\r\n        CPU: 19.753s\r\n     CGroup: /system.slice/cape-web.service\r\n             \u251c\u25001547 /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python manage.py runserver_plus 0.0.0.0:8000 --traceback --keep-meta-shutdown\r\n             \u2514\u25001713 /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python manage.py runserver_plus 0.0.0.0:8000 --traceback --keep-meta-shutdown\r\n\r\npython3[1713]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers>\r\npython3[1713]:     response = get_response(request)\r\npython3[1713]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers>\r\npython3[1713]:     self.check_response(response, callback)\r\npython3[1713]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers>\r\npython3[1713]:     raise ValueError(\r\npython3[1713]: ValueError: The view dashboard.views.index didn't return an HttpResponse object. It returned None instead.\r\npython3[1713]: 127.0.0.1 - - [11/Oct/2024 23:45:04] \"GET /?__debugger__=yes&cmd=resource&f=style.css HTTP/1.1\" 304 -\r\n```\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Install Ubuntu 22.04\r\n2. Install KVM/QEMU via kvm-qemu.sh All\r\n3. Install CAPEv2 via cape2.sh All\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Latest\r\n| OS version       | Ubuntu 22.04\r\n\r\n## Failure Logs\r\n\r\n```\r\ncape-web.service - CAPE WSGI app\r\n     Loaded: loaded (/lib/systemd/system/cape-web.service; enabled; vendor preset: enabled)\r\n     Active: active (running) since Fri 2024-10-11 23:41:17 UTC; 5min ago\r\n       Docs: https://github.com/kevoreilly/CAPEv2\r\n   Main PID: 1547 (python)\r\n      Tasks: 3 (limit: 37537)\r\n     Memory: 516.9M\r\n        CPU: 19.753s\r\n     CGroup: /system.slice/cape-web.service\r\n             \u251c\u25001547 /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python manage.py runserver_plus 0.0.0.0:8000 --traceback --keep-meta-shutdown\r\n             \u2514\u25001713 /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python manage.py runserver_plus 0.0.0.0:8000 --traceback --keep-meta-shutdown\r\n\r\npython3[1713]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers>\r\npython3[1713]:     response = get_response(request)\r\npython3[1713]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers>\r\npython3[1713]:     self.check_response(response, callback)\r\npython3[1713]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers>\r\npython3[1713]:     raise ValueError(\r\npython3[1713]: ValueError: The view dashboard.views.index didn't return an HttpResponse object. It returned None instead.\r\npython3[1713]: 127.0.0.1 - - [11/Oct/2024 23:45:04] \"GET /?__debugger__=yes&cmd=resource&f=style.css HTTP/1.1\" 304 -\r\n```\r\n\nComment: hello, that is not enough info to reproduce, i need the html error image that you see when you open browser\nComment: When I first installed cape my machine pulled down commit fdb291ae110faab1c52f076c83cd6da78e20079e. This worked fine until I pulled from master on 10/11/2024. After a generic install I receive the same error when accessing the cape web-ui.\r\n\r\n```\r\nsudo ./kvm-qemu.sh all $USER 2>&1 | sudo tee kvm-qemu.log\r\nsudo ./cape2.sh all cape 2>&1 | sudo tee cape.log\r\n```\r\n\r\n```\r\nTraceback (most recent call last):\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/contrib/staticfiles/handlers.py\", line 80, in __call__\r\n    return self.application(environ, start_response)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/wsgi.py\", line 124, in __call__\r\n    response = self.get_response(request)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/base.py\", line 140, in get_response\r\n    response = self._middleware_chain(request)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/exception.py\", line 57, in inner\r\n    response = response_for_exception(request, exc)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/exception.py\", line 140, in response_for_exception\r\n    response = handle_uncaught_exception(\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/exception.py\", line 181, in handle_uncaught_exception\r\n    return debug.technical_500_response(request, *exc_info)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django_extensions/management/technical_response.py\", line 40, in null_technical_500_response\r\n    raise exc_value.with_traceback(tb)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/exception.py\", line 55, in inner\r\n    response = get_response(request)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/base.py\", line 204, in _get_response\r\n    self.check_response(response, callback)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/base.py\", line 332, in check_response\r\n    raise ValueError(\r\nValueError: The view dashboard.views.index didn't return an HttpResponse object. It returned None instead.\r\n```\r\n![Screenshot from 2024-10-14 17-47-03](https://github.com/user-attachments/assets/ebd4235f-9a36-458d-a4d9-6050c164a35f)\r\n\nComment: ok, do git pull and restart web server, this should be fixed here, thanks for reporting \r\n\r\nhttps://github.com/kevoreilly/CAPEv2/commit/432ca07268290ce8b7fcff43eba02c5d0da66b26\nComment: let me know if that doesn't fix, closing",
+  "Title: Disable analysis log truncation if buffer is configured to 0\nBody: Follows on from the changes to modules.processing.debug.Debug in https://github.com/kevoreilly/CAPEv2/commit/944d0e2d771038a1e24aaf6164fe6afa511dcbee.\r\n\r\nAllows log truncation to be disabled if the configured buffer parameter is set to '0'.",
+  "Title: Only upload_to_host once in browsermonitor\nBody: None",
+  "Title: Adds private auxiliary module configuration option\nBody: This adds a new `configure_from_data` method to analyzer.windows.lib.common.abstracts.Auxiliary.\r\n\r\nThis optional method provides the ability to run private auxiliary-specific configuration code from `data.packages.<module_name>`.\r\n\r\nIf an auxiliary module doesn't provide a `configure_from_data` method, it's logged but ignored.",
+  "Title: Introducing CAPE Guru on Gurubase.io\nBody: Hello CAPE team,\r\n\r\nI wanted to update you that I've added the CAPE Guru to Gurubase. Gurubase is a platform that aggregates open-source tools to help developers find information quickly. CAPE Guru uses the data from this repo and the data from [docs](https://capev2.readthedocs.io/en/latest/) to answer questions. I hope you find it useful.\r\n\r\nHere is the link to the CAPE Guru: https://gurubase.io/g/cape\r\n\r\nI believe CAPE users or new starters would find it useful to have a badge or a link to Gurubase in the README.md. I've prepared two examples below:\r\n\r\nExample 1 - Just a badge: \r\n--\r\n[![](https://img.shields.io/badge/Gurubase-ASK%20CAPE%20GURU-006BFF)](https://gurubase.io/g/cape)\r\n\r\nExample 2 - Separate Section:\r\n--\r\n### \u2728 Ask CAPE Guru\r\nIf you don\u2019t want to get lost in the documentation, you can ask [CAPE Guru](https://gurubase.io/g/cape) directly. It\u2019s an AI that focuses on addressing your questions about CAPE.\r\n[![](https://img.shields.io/badge/Gurubase-ASK%20CAPE%20GURU-006BFF)](https://gurubase.io/g/cape)\r\n\r\n\r\nIf you find it useful, I would be happy to open a PR for this.\r\n\r\nAdditionally, if you want me to disable CAPE Guru in Gurubase, just let me know that's totally fine.\r\n                \nComment: hello, it looks fine, about the badge, im not sure, i will leave that part to decide to the owner @kevoreilly. As docs pointed in first line of readme. Asking parts is nice, but if users doesn't read whole docs, when they setup first time, they won't be successful in proper usage of the tool\nComment: Thanks for the review @doomedraven \r\n\r\n> Asking parts is nice, but if users doesn't read whole docs, when they setup first time, they won't be successful in proper usage of the tool\r\nAs most of the answers point users to relevant parts of the documentation, they\u2019ll have the opportunity to explore the full page if they need more detailed information. This way, they can learn at their own pace while still having access to the necessary guidance.\r\n\r\nHi @kevoreilly, I\u2019ve created a [PR](https://github.com/kevoreilly/CAPEv2/pull/2355) for this. I\u2019d love to hear your thoughts on the contribution whenever you have a chance.\nComment: Hi K\u00fcr\u015fat, thank you for this PR. As doomed has said the documentation needs to be understood before installation is started as there are many pitfalls which would require starting from scratch if fallen into - vm creation is just one example.\r\n\r\nAlso we have put a lot of effort into the documentation and support channels which I don't think would be helped with this addition.\r\n\r\nFinally we will soon be launching a github.io site with some more detailed posts about advanced cape usage.\r\n\r\nI hope you will understand that we would like to focus on getting these things right rather than adding to the list with something else. For that reason I would be grateful if you would disable the guru for cape.\r\n\r\nThanks for the suggestion nonetheless, and kind regards!\nComment: Thank you for your consideration. I removed the CAPE Guru as you requested.",
+  "Title: Contextual window titles\nBody: - Makes window titles more contextual. For example, on the the Analysis Report page, the window title will be 'Analysis Report \u00b7 CAPE Sandbox'\r\n- Replaces 'hang on...' on the status page with the task ID and sample hash/URL\r\n- Adds a resubmit link when the analysis enters 'failed_analysis' state\nComment: Can you plz fix ruff ? Then I can merge\nComment: > Can you plz fix ruff ? Then I can merge\r\n\r\nYep\nComment: > Can you plz fix ruff ? Then I can merge\r\n\r\nDone",
+  "Title: Bump django from 4.2.15 to 4.2.16\nBody: Bumps [django](https://github.com/django/django) from 4.2.15 to 4.2.16.\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/django/django/commit/6f9fea33137fee6416ff43b775aa9567440a23d3\"><code>6f9fea3</code></a> [4.2.x] Bumped version for 4.2.16 release.</li>\n<li><a href=\"https://github.com/django/django/commit/bf4888d317ba4506d091eeac6e8b4f1fcc731199\"><code>bf4888d</code></a> [4.2.x] Fixed CVE-2024-45231 -- Avoided server error on password reset when e...</li>\n<li><a href=\"https://github.com/django/django/commit/d147a8ebbdf28c17cafbbe2884f0bc57e2bf82e2\"><code>d147a8e</code></a> [4.2.x] Fixed CVE-2024-45230 -- Mitigated potential DoS in urlize and urlizet...</li>\n<li><a href=\"https://github.com/django/django/commit/705066d186ce880bf64142e47084f3d8df3c2352\"><code>705066d</code></a> [4.2.x] Fixed grammatical error in stub release notes for upcoming security r...</li>\n<li><a href=\"https://github.com/django/django/commit/b07d4f2dea2e5884d3d13c981fd3f22dc8f2e915\"><code>b07d4f2</code></a> [4.2.x] Added stub release notes and release date for 4.2.16.</li>\n<li><a href=\"https://github.com/django/django/commit/e0579ce27746b04a37cf43559df445068fd2a781\"><code>e0579ce</code></a> [4.2.x] Added CVE-2024-41989, CVE-2024-41990, CVE-2024-41991, and CVE-2024-42...</li>\n<li><a href=\"https://github.com/django/django/commit/ae0ca8345dd4a2469ac45211522f8d4bf5bc610c\"><code>ae0ca83</code></a> [4.2.x] Post-release version bump.</li>\n<li>See full diff in <a href=\"https://github.com/django/django/compare/4.2.15...4.2.16\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=django&package-manager=pip&previous-version=4.2.15&new-version=4.2.16)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Change Creator ID and OEM Table ID in ACPI Tables\nBody: Patch to hide QEMU from ACPI table IDs detection\nComment: O thanks ",
+  "Title: FormhookB: any -> all\nBody: See https://github.com/kevoreilly/CAPEv2/issues/2339\nComment: Thanks ",
+  "Title: FormhookB Yara Rule: all instead of any\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Current/Expected Behavior\r\n\r\nThe condition of the Yara \"FromhookB\" rule (see https://github.com/kevoreilly/CAPEv2/blob/acb0261ca2ced0a1768c6cd82d293384ba72fa07/analyzer/windows/data/yara/Formbook.yar#L16) is set to \"any of them\" and I've got a a false positive on a sample from the xerces XML-Parser (https://xerces.apache.org/). \r\nThe `$decode` pattern seems to match on a subroutine of the dll on version 3.1.4.\r\nYou can see the pattern in the screenshot:\r\n\r\n![pic](https://github.com/user-attachments/assets/c76dc8e4-34e2-4903-8f08-c3275a62f865)\r\n\r\nI think the condition should be `all of them` instead of `any of them`.\r\n\r\nSee https://github.com/daschr/CAPEv2/commit/a576f699723396acc90844a184c2006b80ab49c1\r\n\r\n# Failure Information (for bugs)\r\n\r\nThis is the sample DLL: \r\n[xerces-c_3_1.zip](https://github.com/user-attachments/files/17277724/xerces-c_3_1.zip)\r\n\r\n## Steps to Reproduce\r\n\r\n1. Scan the sample above\r\n2. see that it matches on \"FormhookB\"\nComment: Turns out just setting to all does not allow the bypass to work so I have made other improvements - let me know if there are any further issues\nComment: Thank you!\nComment: Thanks for the report \ud83e\udd1d ",
+  "Title: Feature Request: Tesseract OCR\nBody: Having OCR capabilities via tesseract (https://github.com/tesseract-ocr/tesseract) would be useful to analyse screenshots. \r\n\r\nPossible use cases of OCR currently include phish page detections (specific matches or generic such as Microsoft login page not on correct domain) or fake update style pages (https://www.proofpoint.com/uk/blog/threat-insight/are-you-sure-your-browser-date-current-landscape-fake-browser-updates) and likely others.\r\n\r\nI am sure it used to be part of cuckoo-modified or main cuckoo sandbox branch as I remember it being useful for detecting phrases such as \"enable macro\" being present. I did look and I can't seem to find it but I know at one point it did exist.",
+  "Title: Al-khaser bypass is misleading\nBody: Dear developers, \r\nFirst of all, thank you for your open product, which we (our team and I) use for our research projects. \r\n\r\nWhen we first installed CAPE, one of the first tests we did was to run [Al-khaser ](https://github.com/LordNoteworthy/al-khaser) to get an idea of the techniques that were not mitigated (then possibly counteract the code to give the blue pills). \r\nHowever, as all evasion techniques were mitigated, we proceeded happily :)\r\n\r\nToday we discovered that there is [a custom rule for Al-khaser's print function](https://github.com/kevoreilly/CAPEv2/blob/b24e09c29b4e861f3bbdb7c082528376cdf422b0/analyzer/windows/data/yara/Al-khaser.yar#L6) that changes all results! \r\nThis rule introduces a huge flaw in CAPE's evaluation, and we believe it should be removed. \r\nThe purpose of Al-khaser is precisely to test the evasion capabilities of sandboxes, and this rule does not allow it to do this properly.\r\n\r\nInstead (and we will try to help with this by pushing new rules), you should try to mitigate the various techniques, not the function that shows the results.\r\n\r\n\r\nThis is the list of the evasive techniques that detect CAPEv2\r\n\r\n```\r\n[Fri Oct  4 13:11:04 2024] [*] Checking If Parent Process is explorer.exe  -> 1\r\n[Fri Oct  4 13:11:04 2024] [*] Checking SeDebugPrivilege  -> 1\r\n[Fri Oct  4 13:11:05 2024] [*] Checking NtYieldExecution  -> 1\r\n[Fri Oct  4 13:11:05 2024] [*] Checking if process is in a job   -> 1\r\n[Fri Oct  4 13:11:05 2024] [*] Checking VirtualAlloc write watch (API calls)  -> 1\r\n[Fri Oct  4 13:11:20 2024] [*] Walking process memory with GetModuleInformation  -> 1\r\n[Fri Oct  4 13:11:23 2024] [*] Walking process memory for hidden modules  -> 1\r\n[Fri Oct  4 13:11:24 2024] [*] Checking Local Descriptor Table location  -> 1\r\n[Fri Oct  4 13:11:30 2024] [*] Checking Number of cores in machine using WMI  -> 1\r\n[Fri Oct  4 13:11:31 2024] [*] Checking hard disk size using WMI  -> 1\r\n[Fri Oct  4 13:11:36 2024] [*] Checking lack of user input  -> 1\r\n[Fri Oct  4 13:11:36 2024] [*] Checking if CPU hypervisor field is set using cpuid(0x1) -> 1\r\n[Fri Oct  4 13:11:36 2024] [*] Checking hypervisor vendor using cpuid(0x40000000) -> 1\r\n[Fri Oct  4 13:13:11 2024] [*] Checking Current Temperature using WMI  -> 1\r\n[Fri Oct  4 13:13:22 2024] [*] Checking ProcessId using WMI  -> 1\r\n[Fri Oct  4 13:13:22 2024] [*] Checking power capabilities  -> 1\r\n[Fri Oct  4 13:13:30 2024] [*] Checking CPU fan using WMI  -> 1\r\n[Fri Oct  4 13:13:39 2024] [*] Checking Win32_CacheMemory with WMI  -> 1\r\n[Fri Oct  4 13:13:46 2024] [*] Checking Win32_PhysicalMemory with WMI  -> 1\r\n[Fri Oct  4 13:13:54 2024] [*] Checking Win32_MemoryDevice with WMI  -> 1\r\n[Fri Oct  4 13:14:03 2024] [*] Checking Win32_MemoryArray with WMI  -> 1\r\n[Fri Oct  4 13:14:11 2024] [*] Checking Win32_VoltageProbe with WMI  -> 1\r\n[Fri Oct  4 13:14:19 2024] [*] Checking Win32_PortConnector with WMI  -> 1\r\n[Fri Oct  4 13:14:28 2024] [*] Checking Win32_SMBIOSMemory with WMI  -> 1\r\n[Fri Oct  4 13:14:48 2024] [*] Checking ThermalZoneInfo performance counters with WMI  -> 1\r\n[Fri Oct  4 13:14:56 2024] [*] Checking CIM_Memory with WMI  -> 1\r\n[Fri Oct  4 13:15:04 2024] [*] Checking CIM_Sensor with WMI  -> 1\r\n[Fri Oct  4 13:15:13 2024] [*] Checking CIM_NumericSensor with WMI  -> 1\r\n[Fri Oct  4 13:15:21 2024] [*] Checking CIM_TemperatureSensor with WMI  -> 1\r\n[Fri Oct  4 13:15:30 2024] [*] Checking CIM_VoltageSensor with WMI  -> 1\r\n[Fri Oct  4 13:15:40 2024] [*] Checking CIM_PhysicalConnector with WMI  -> 1\r\n[Fri Oct  4 13:15:50 2024] [*] Checking CIM_Slot with WMI  -> 1\r\n[Fri Oct  4 13:16:54 2024] [*] Checking ACPI tables   -> 1\r\n[Fri Oct  4 13:16:54 2024] [*] Checking for Hyper-V global objects  -> 1\r\n```\r\n\nComment: Hello and thanks for the feedback. Reading your story I can understand your frustration. However, it's a bit unfair to describe this entire list as things that \"detect CAPEv2\". CAPE is a usermode sandbox that runs on a multitude of hypervisors as well as bare metal.\r\n\r\n```\r\n[Fri Oct  4 07:54:26 2024] [*] Checking if CPU hypervisor field is set using cpuid(0x1) -> 0\r\n```\r\n\r\nThings like the hypervisor bit are really nothing to do with CAPE and all to do with virtual machine setup. This bit is not detected in my vms for example, and we do a lot to try and encourage good vm setup (for example https://www.doomedraven.com/2016/05/kvm.html mentions how to hide the hypervisor bit) but this is down to the user and hypervisor, and not something that CAPE should be blamed for. You didn't even mention which hypervisor you are using, nor how it was set up.\r\n\r\nI hear your suggestion to 'mitigate the various techniques, not the function that shows the results'. But if we take the previous example of the hypervisor bit, as a usermode sandbox it's not possible to directly mitigate the output from the processor's ``CPUID`` instruction. The only way a usermode sandbox could reasonably be expected to help hide this from malware is by interfering with the result of the test. At least this is something!\r\n\r\nThere aren't many options for a usermode sandbox to hide this technique from a malware sample, but fortunately CAPE does have a unique and powerful debugger which is very stealthy and can be dynamically programmed during detonation by yara signature to set breakpoints on code and dynamically perform actions such as control flow manipulation. So it can, for example, break on the ``CPUID`` instruction and emulate it, or break after and modify the register values.\r\n\r\nThis is one of CAPE's greatest assets but a huge challenge for the project is making this capability well known and accessible to the end user. One of the only ways I have to try and 'sell' this capability is to demonstrate it by creating an array of yara signatures to show off its power whilst also making CAPE perform as well as possible against as much evasive malware and tests as possible. It's in this vein that I have also created dynamic bypasses for tools such as Pafish and Al-khaser.\r\n\r\nSo that is why this bypass for Al-khaser exists, of course its objective is to demonstrate how to bypass detection in the simplest way possible. It turns out there is a single function which evaluates (and prints) results so rather than bypassing individual tests it just targets the simplest intervention. It could of course put breakpoints on individual tests and subvert their results one by one, but that would be inefficient.\r\n\r\nDid you notice that the Al-khaser debugger detection tests all failed? When you describe this bypass as merely a 'custom rule' that changes the results I think that does it a massive disservice, as if it were somehow fudging the results rather than demonstrating a powerful capability. During detonation, cape's monitor dynamically scans memory, detects a code sequence and programs the debugger to set a breakpoint on a specific instruction. The breakpoint is set and execution proceeds to sail through all Al-khaser's anti-debugger tests, hitting the breakpoint for every failed test and actively switching the results.\r\n\r\nReally any intervention performed by cape, whether by debugger or API hooks, could be described as being misleading. For example, there are numerous anti-evasion techniques performed by API hooks such as hiding the number of processors/cores by modifying the results of API calls. Would you describe these too as 'custom rules that change the results'? Because really this boils down to the same thing, and other techniques or APIs might see through these interventions. Other examples worth considering are yara signatures that generically detect techniques, such as ``Syscall.yar`` which tries to detect variants of direct syscalls and capture them. If this signature worked against Al-khaser and avoided a syscall check, would it be misleading? Perhaps as it is more generic, not detecting a particular tool or malware family, it would be viewed as fair enough and better than nothing. If it then missed malware using a different variant of the same technique, it might then be accused of being misleading - seems like an impossible situation.\r\n\r\nPerhaps we should make even more effort in documenting virtual machine setup by mentioning the presence of not just this capability in cape, but also the presence of the existing dynamic evasion bypasses as well, in case users to wish to use things like Al-khaser to assess the evasion capabilities. I will look at adding a note to the documentation somewhere that to test CAPE stripped of its inbuilt evasion bypasses, running with ``yarascan=0`` might be worth trying. But since this bypass is a demonstration of (and part of) one of cape's greatest strengths, on balance I don't think it should just be binned.\r\n\r\n\nComment: Thanks for your reply. \r\nI still maintain that it must be disabled by default. \r\nIf it was, I would immediately realise that I would have to tweak the qemu installation to bypass those controls. \r\n\r\nThere are already plenty of examples of how to use the yara+debugger combo (again, great idea, we are very happy with CAPE). \r\n\r\nThen... the product is yours, but really, for those who use it it could make a difference in testing before \"production\".\r\n\r\nM2C\nComment: yes im agree on this, is a bad ass example how powerfull cape is, but it al-khaser and pafish should be disabled as it doesn't allow properly test VM. So that mislead some testing\nComment: @packmad This is what you'll need to add to your VM's XML:\r\n\r\n```\r\n  <features>\r\n    ...\r\n    <kvm>\r\n      <hidden state=\"on\"/>\r\n    </kvm>\r\n    ...\r\n  </features>\r\n```\r\n\r\nAnd add \"kvm=off\" to the QEMU command line args:\r\n\r\n```\r\n    <qemu:arg value=\"-cpu\"/>\r\n    <qemu:arg value=\"host,kvm=off\"/>\r\n```\nComment: > @packmad This is what you'll need to add to your VM's XML:\r\n> \r\n> ```\r\n>   <features>\r\n>     ...\r\n>     <kvm>\r\n>       <hidden state=\"on\"/>\r\n>     </kvm>\r\n>     ...\r\n>   </features>\r\n> ```\r\n> \r\n> And add \"kvm=off\" to the QEMU command line args:\r\n> \r\n> ```\r\n>     <qemu:arg value=\"-cpu\"/>\r\n>     <qemu:arg value=\"host,kvm=off\"/>\r\n> ```\r\n\r\nThanks bro, we alI found it out recently... And we are slowly pushing some PR.\nComment: I saw that you removed it from the main branch. Well done :)",
+  "Title: Missing import\nBody: None",
+  "Title: TOR Browser extension support\nBody: TOR browser has a setup time (joining the TOR network). The package leaves enough time for it to join, tweak if neccessary.\r\n\r\nFor setup settings, check README.md updates in `extra/browser_extension`\r\n",
+  "Title: Missing UnAutoIt binary: /opt/CAPEv2/data/UnAutoIt/UnAutoIt\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nWe need a valid link to UnAutoIt\r\n\r\n# Current Behavior\r\n\r\nThe link referenced is dead: https://github.com/x0r19x91/UnAutoIt\r\n\r\n# Failure Information (for bugs)\r\n\r\n2024-09-27 22:09:45,296 [Task 1] [lib.cuckoo.common.integrations.file_extra_info] WARNING: Missing UnAutoIt binary: /opt/CAPEv2/data/UnAutoIt/UnAutoIt. Download from - https://github.com/x0r19x91/UnAutoIt\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. N/A\r\n\r\n## Failure Logs\r\n\r\n```2024-09-27 22:09:45,296 [Task 1] [lib.cuckoo.common.integrations.file_extra_info] WARNING: Missing UnAutoIt binary: /opt/CAPEv2/data/UnAutoIt/UnAutoIt. Download from - https://github.com/x0r19x91/UnAutoIt```\nComment: You could search in issues, that repo doesn't exist anymore, we don't remove it as some user has it on their servers",
+  "Title: Update Quickbind \nBody: None",
+  "Title: Pending tasks timeout\nBody: Not sure how much this is needed but useful feature for cleaning the queue of old tasks while running automatically. \nComment: Missing the params in the test, will be adding them a bit later. \nComment: let me know if is fine to merge\nComment: Oh thanks for fixing the test ! I did multiple tests and it seem to work fine. Might be good to have additional tests before merging. It should be good to go and shouldn't affect anything else however unless you activate the feature.  ",
+  "Title: auxiliary.conf.default -> browser_monitor -> browsermonitor\nBody: None",
+  "Title: Feature: Monitor browser requests using a browser extension.\nBody: This features allow monitoring browser requests (Firefox/Chromium) and includes them in the final report JSON under the `browser` key.\r\n\r\nThe feature requires extra setup steps, see `extra/browser_extension/README.md` but requires no extra dependencies as it relies on `webbrowser` stdlib to open the browser. Currently only Firefox and Chromium have been tested. \r\n\r\nTo not interfere with regular URL analysis, `chromium_ext.py` and `firefox_ext.py` packages have been introduced. ",
+  "Title: CobaltStrike Beacon parser fix\nBody: None\nComment: test what is wrong with you it not fails in local :D \nComment: looks like it failed in get_yara",
+  "Title: Staging\nBody: None",
+  "Title: Modify aux module config names\nBody: These modules won't be loaded because these have _windows suffix. Add the suffix before checking if the module is enabled.",
+  "Title: Problem with stable performance of CAPE - 'This can indicate the guest losing network connectivity'\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ Y ] I am running the latest version\r\n- [ Y ] I did read the README!\r\n- [ Y ] I checked the documentation and found no answer\r\n- [ Y ] I checked to make sure that this issue has not already been filed\r\n- [ Y ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ Y ] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nHi Team, I wanted to have a stable instance of a CAPEv2 box to run some malware samples on and was almost about reaching this point but since few weeks I am constantly having a very specific issue with the CAPE/agent after I run a sample analysis.\r\n\r\n\r\n# Current Behavior\r\nSome time ago I have opened the issue about the very same problem #2253 (Machine status failed. This can indicate the guest losing network connectivity). I have received there some recommendations to move to the recommended virtualization software setup as KVM/QEMU instead of using VirtualBox. I have done that and it was working for almost a week, even if submitting the analysis one by one without any long delays CAPE was able to properly handle the submission an the analysis was fine (it was able to actually open the suspected file and in the report I had an option for seeing procdumps and pcaps). Unfortunately since few days I am constantly receiving some warnings during the analysis, after these the analysis summary report is every time missing some parts like procdumps,pcaps and the submitted file sample is not opened by agent even.\r\nMore or less CAPE is not working but I have no any idea why it has changed - since the last week I did not do any changes in the CAPE config and test files are the same as previously.\r\n\r\nI am looking for any tips or comments that could narrow me to the resolution of this weird issue, any reboots of the machine or restart of all services of CAPE does nothing and the analysis are having the same warning in the logs and submitted files are not run by the agent.\r\n(snapshot of the Win10 guest machines also the same as week ago while all was working fine, agent is running there and all noisy services of Win10 are disabled like FW and so on)\r\n\r\nAlso to add more context I have 3 different Win10 machines all saved properly with a clear snapshots, all of them were properly working with CAPE and the summary reports were great and files were run properly - now none of them is able to run properly the analysis, each of them is getting the same warning/error \r\n\"Machine status failed. This can indicate the guest losing network connectivity\"\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\nhost Ubuntu 22.04.4 LTS\r\nvirt soft: Virtual Machine Manager 4.1.0\r\nguests: Win10 x64 21H2\r\n\r\n## Failure Logs\r\n\r\n`\r\nSep 23 15:23:52 cape-vm1 python3[2992]:  Cuckoo Sandbox 2.4-CAPE\r\nSep 23 15:23:52 cape-vm1 python3[2992]:  www.cuckoosandbox.org\r\nSep 23 15:23:52 cape-vm1 python3[2992]:  Copyright (c) 2010-2015\r\nSep 23 15:23:52 cape-vm1 python3[2992]:  CAPE: Config and Payload Extraction\r\nSep 23 15:23:52 cape-vm1 python3[2992]:  github.com/kevoreilly/CAPEv2\r\nSep 23 15:23:53 cape-vm1 python3[3036]: /usr/bin/tcpdump\r\nSep 23 15:23:53 cape-vm1 python3[2992]: 2024-09-23 15:23:53,849 [lib.cuckoo.core.scheduler] INFO: Using \"kvm\" machine manager with max_analysis_count=0, max_machines_count=10, and max_vmstartup_count=5\r\nSep 23 15:23:53 cape-vm1 python3[2992]: 2024-09-23 15:23:53,853 [lib.cuckoo.core.scheduler] INFO: Loaded 4 machine/s\r\nSep 23 15:23:53 cape-vm1 python3[2992]: 2024-09-23 15:23:53,892 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks\r\nSep 23 15:24:20 cape-vm1 python3[2992]: 2024-09-23 15:24:20,131 [lib.cuckoo.core.scheduler] INFO: Task #9: File already exists at '/opt/CAPEv2/storage/binaries/15b66f254cc0d0054d5654fa09a644e15e0d7d1cf0cc1162bccde2599027b6a9'\r\nSep 23 15:24:20 cape-vm1 python3[2992]: 2024-09-23 15:24:20,132 [lib.cuckoo.core.scheduler] INFO: Task #9: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_gap14lx_/Macros_BENIGN_TESTv5.docm'\r\nSep 23 15:24:20 cape-vm1 python3[2992]: 2024-09-23 15:24:20,388 [lib.cuckoo.core.scheduler] INFO: Task #9: acquired machine Win10_Office_4p_10r_16wrz (label=Win10_Office_4p_10r_16wrz, arch=x64, platform=windows)\r\nSep 23 15:25:03 cape-vm1 python3[2992]: 2024-09-23 15:25:03,560 [lib.cuckoo.common.integrations.parse_pe] ERROR: PE type not recognised: 'DOS Header magic not found.'\r\nSep 23 15:25:03 cape-vm1 python3[2992]: 2024-09-23 15:25:03,576 [lib.cuckoo.core.scheduler] INFO: Enabled route 'internet'.\r\nSep 23 15:25:03 cape-vm1 python3[3150]: /usr/bin/tcpdump\r\nSep 23 15:25:03 cape-vm1 python3[2992]: 2024-09-23 15:25:03,617 [modules.auxiliary.sniffer] INFO: Started sniffer with PID 3151 (interface=virbr1, host=192.168.56.105, dump path=/opt/CAPEv2/storage/analyses/9/dump.pcap)\r\nSep 23 15:25:03 cape-vm1 sudo[3151]:     cape : PWD=/opt/CAPEv2 ; USER=root ; COMMAND=/usr/bin/tcpdump -U -q -s 0 -i virbr1 -n -Z cape -w /opt/CAPEv2/storage/analyses/9/dump.pcap host 192.168.56.105 and not ( dst host 192.168.56.105 and dst port 8000 ) and not ( src host 192.168.56.105 and src port 8000 ) and not ( dst host 192.168.56.1 and dst port 2043 ) and not ( src host 192.168.56.1 and src port 2043 ) and ( 'not arp' )\r\nSep 23 15:25:03 cape-vm1 sudo[3151]: pam_limits(sudo:session): unknown limit item 'hard'\r\nSep 23 15:25:03 cape-vm1 sudo[3151]: pam_unix(sudo:session): session opened for user root(uid=0) by (uid=1001)\r\nSep 23 15:25:03 cape-vm1 python3[2992]: 2024-09-23 15:25:03,643 [lib.cuckoo.core.guest] INFO: Task #9: Starting analysis on guest (id=Win10_Office_4p_10r_16wrz, ip=192.168.56.105)\r\nSep 23 15:25:03 cape-vm1 python3[2992]: 2024-09-23 15:25:03,740 [lib.cuckoo.core.guest] INFO: Task #9: Guest is running CAPE Agent 0.17 (id=Win10_Office_4p_10r_16wrz, ip=192.168.56.105)\r\nSep 23 15:25:10 cape-vm1 python3[2992]: 2024-09-23 15:25:10,838 [lib.cuckoo.core.guest] INFO: Task #9: Uploading script files to guest (id=Win10_Office_4p_10r_16wrz, ip=192.168.56.105)\r\nSep 23 15:25:25 cape-vm1 python3[2992]: 2024-09-23 15:25:25,168 [lib.cuckoo.core.guest] WARNING: Task #9: Virtual Machine Win10_Office_4p_10r_16wrz /status failed. This can indicate the guest losing network connectivity\r\nSep 23 15:26:08 cape-vm1 python3[2992]: 2024-09-23 15:26:08,450 [lib.cuckoo.core.guest] WARNING: Task #9: Virtual Machine Win10_Office_4p_10r_16wrz /status failed. This can indicate the guest losing network connectivity\r\nSep 23 15:26:14 cape-vm1 python3[2992]: 2024-09-23 15:26:14,464 [lib.cuckoo.core.guest] WARNING: Task #9: Virtual Machine Win10_Office_4p_10r_16wrz /status failed. This can indicate the guest losing network connectivity\r\nSep 23 15:26:20 cape-vm1 python3[2992]: 2024-09-23 15:26:20,493 [lib.cuckoo.core.guest] WARNING: Task #9: Virtual Machine Win10_Office_4p_10r_16wrz /status failed. This can indicate the guest losing network connectivity\r\nSep 23 15:26:26 cape-vm1 python3[2992]: 2024-09-23 15:26:26,506 [lib.cuckoo.core.guest] WARNING: Task #9: Virtual Machine Win10_Office_4p_10r_16wrz /status failed. This can indicate the guest losing network connectivity\r\nSep 23 15:26:32 cape-vm1 python3[2992]: 2024-09-23 15:26:32,522 [lib.cuckoo.core.guest] WARNING: Task #9: Virtual Machine Win10_Office_4p_10r_16wrz /status failed. This can indicate the guest losing network connectivity\r\nSep 23 15:27:19 cape-vm1 python3[2992]: 2024-09-23 15:27:19,146 [lib.cuckoo.core.guest] WARNING: Task #9: Virtual Machine Win10_Office_4p_10r_16wrz /status failed. This can indicate the guest losing network connectivity\r\nSep 23 15:27:25 cape-vm1 python3[2992]: 2024-09-23 15:27:25,162 [lib.cuckoo.core.guest] WARNING: Task #9: Virtual Machine Win10_Office_4p_10r_16wrz /status failed. This can indicate the guest losing network connectivity\r\nSep 23 15:27:31 cape-vm1 python3[2992]: 2024-09-23 15:27:31,175 [lib.cuckoo.core.guest] WARNING: Task #9: Virtual Machine Win10_Office_4p_10r_16wrz /status failed. This can indicate the guest losing network connectivity\r\nSep 23 15:27:39 cape-vm1 python3[2992]: 2024-09-23 15:27:39,775 [lib.cuckoo.core.guest] WARNING: Task #9: Virtual Machine Win10_Office_4p_10r_16wrz /status failed. This can indicate the guest losing network connectivity\r\nSep 23 15:27:53 cape-vm1 python3[2992]: 2024-09-23 15:27:53,637 [lib.cuckoo.core.guest] WARNING: Task #9: Virtual Machine Win10_Office_4p_10r_16wrz /status failed. This can indicate the guest losing network connectivity\r\nSep 23 15:28:02 cape-vm1 python3[2992]: 2024-09-23 15:28:02,275 [lib.cuckoo.core.guest] WARNING: Task #9: Virtual Machine Win10_Office_4p_10r_16wrz /status failed. This can indicate the guest losing network connectivity\r\nSep 23 15:28:08 cape-vm1 python3[2992]: 2024-09-23 15:28:08,288 [lib.cuckoo.core.guest] WARNING: Task #9: Virtual Machine Win10_Office_4p_10r_16wrz /status failed. This can indicate the guest losing network connectivity\r\nSep 23 15:28:22 cape-vm1 python3[2992]: 2024-09-23 15:28:22,470 [lib.cuckoo.core.guest] WARNING: Task #9: Virtual Machine Win10_Office_4p_10r_16wrz /status failed. This can indicate the guest losing network connectivity\r\nSep 23 15:29:35 cape-vm1 python3[2992]: 2024-09-23 15:29:35,318 [lib.cuckoo.core.guest] INFO: Task #9: End of analysis reached! (id=Win10_Office_4p_10r_16wrz, ip=192.168.56.105)\r\nSep 23 15:29:35 cape-vm1 sudo[3151]: pam_unix(sudo:session): session closed for user root\r\nSep 23 15:29:36 cape-vm1 python3[2992]: 2024-09-23 15:29:36,209 [lib.cuckoo.core.scheduler] INFO: Disabled route 'internet'\r\nSep 23 15:29:36 cape-vm1 python3[2992]: 2024-09-23 15:29:36,239 [lib.cuckoo.core.scheduler] INFO: Task #9: analysis procedure completed\r\n\r\n2024-09-16 15:14:23,018 [root] INFO: Date set to: 20240923T15:24:19, timeout set to: 200\r\n2024-09-23 15:24:24,699 [root] DEBUG: kernel.OpenProcess failed for PID: 0\r\n2024-09-23 15:24:24,699 [root] DEBUG: psapi.GetProcessImageFileNameA failed for PID: 4\r\n2024-09-23 15:24:24,814 [root] DEBUG: kernel.OpenProcess failed for PID: 0\r\n2024-09-23 15:24:24,824 [root] DEBUG: psapi.GetProcessImageFileNameA failed for PID: 4\r\n2024-09-23 15:24:25,965 [root] DEBUG: Starting analyzer from: C:\\tmphwb_ppti\r\n2024-09-23 15:24:25,965 [root] DEBUG: Storing results at: C:\\YqEftSOnx\r\n2024-09-23 15:24:25,965 [root] DEBUG: Pipe server name: \\\\.\\PIPE\\uCXHyMmzyB\r\n2024-09-23 15:24:25,965 [root] DEBUG: Python path: C:\\Users\\Lenny-B\\AppData\\Local\\Programs\\Python\\Python310-32\r\n2024-09-23 15:24:25,965 [root] INFO: analysis running as an admin\r\n2024-09-23 15:24:25,965 [root] INFO: Analysis package \"doc\" has been specified\r\n2024-09-23 15:24:25,965 [root] DEBUG: Importing analysis package \"doc\"...\r\n2024-09-23 15:24:26,058 [root] DEBUG: Initializing analysis package \"doc\"...\r\n2024-09-23 15:24:26,089 [root] DEBUG: New location of moved file: C:\\Users\\Lenny-B\\AppData\\Local\\Temp\\Macros_BENIGN_TESTv5.docm\r\n2024-09-23 15:24:26,089 [root] INFO: Analyzer: Package modules.packages.doc does not specify a DLL option\r\n2024-09-23 15:24:26,089 [root] INFO: Analyzer: Package modules.packages.doc does not specify a DLL_64 option\r\n2024-09-23 15:24:26,089 [root] INFO: Analyzer: Package modules.packages.doc does not specify a loader option\r\n2024-09-23 15:24:26,089 [root] INFO: Analyzer: Package modules.packages.doc does not specify a loader_64 option\r\n2024-09-23 15:24:37,296 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.autoruns\"...\r\n2024-09-23 15:24:39,870 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.browser\"...\r\n2024-09-23 15:24:39,870 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.curtain\"...\r\n2024-09-23 15:24:39,933 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.digisig\"...\r\n2024-09-23 15:24:40,079 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.disguise\"...\r\n2024-09-23 15:24:41,073 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.during_script\"...\r\n2024-09-23 15:24:41,123 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.evtx\"...\r\n2024-09-23 15:24:41,388 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.filepickup\"...\r\n2024-09-23 15:24:41,433 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.html_scraper\"...\r\n2024-09-23 15:24:46,870 [modules.auxiliary.html_scraper] ERROR: No module named 'selenium'\r\n2024-09-23 15:24:46,870 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.human\"...\r\n2024-09-23 15:24:46,933 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.permissions\"...\r\n2024-09-23 15:24:47,027 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.pre_script\"...\r\n2024-09-23 15:24:48,126 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.procmon\"...\r\n2024-09-23 15:24:48,420 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.recentfiles\"...\r\n2024-09-23 15:24:48,435 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.screenshots\"...\r\n2024-09-23 15:24:48,730 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageChops'\r\n2024-09-23 15:25:43,126 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageGrab'\r\n2024-09-23 15:25:45,917 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageDraw'\r\n2024-09-23 15:25:51,168 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.sysmon\"...\r\n2024-09-23 15:25:51,282 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.tlsdump\"...\r\n2024-09-23 15:25:51,512 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.usage\"...\r\n2024-09-23 15:25:52,167 [root] WARNING: Auxiliary module Autoruns was not implemented: 'Config' object has no attribute 'autoruns'\r\n2024-09-23 15:25:52,167 [root] DEBUG: Initialized auxiliary module \"Browser\"\r\n2024-09-23 15:25:52,167 [root] DEBUG: Trying to start auxiliary module \"Browser\"...\r\n2024-09-23 15:25:52,949 [root] DEBUG: Started auxiliary module \"Browser\"\r\n2024-09-23 15:25:52,949 [root] DEBUG: Started auxiliary module Browser\r\n2024-09-23 15:25:52,949 [root] DEBUG: Initialized auxiliary module \"Curtain\"\r\n2024-09-23 15:25:52,949 [root] DEBUG: Trying to start auxiliary module \"Curtain\"...\r\n2024-09-23 15:25:53,699 [root] DEBUG: Started auxiliary module \"Curtain\"\r\n2024-09-23 15:25:53,735 [root] DEBUG: Started auxiliary module Curtain\r\n2024-09-23 15:25:53,735 [root] DEBUG: Initialized auxiliary module \"DigiSig\"\r\n2024-09-23 15:25:53,735 [root] DEBUG: Trying to start auxiliary module \"DigiSig\"...\r\n2024-09-23 15:25:53,735 [modules.auxiliary.digisig] DEBUG: Checking for a digital signature\r\n2024-09-23 15:27:31,464 [modules.auxiliary.digisig] DEBUG: File format not recognized\r\n2024-09-23 15:27:31,464 [modules.auxiliary.digisig] INFO: Uploading signature results to aux/DigiSig.json\r\n2024-09-23 15:27:31,464 [root] DEBUG: Started auxiliary module \"DigiSig\"\r\n2024-09-23 15:27:31,527 [root] DEBUG: Started auxiliary module DigiSig\r\n2024-09-23 15:27:31,527 [root] DEBUG: Initialized auxiliary module \"Disguise\"\r\n2024-09-23 15:27:31,527 [root] DEBUG: Trying to start auxiliary module \"Disguise\"...\r\n2024-09-23 15:27:31,589 [modules.auxiliary.disguise] INFO: Disguising GUID to 76f0cf56-0edd-4e7a-ac21-49a2d97d8e5f\r\n2024-09-23 15:27:31,589 [root] DEBUG: Started auxiliary module \"Disguise\"\r\n2024-09-23 15:27:31,589 [root] DEBUG: Started auxiliary module Disguise\r\n2024-09-23 15:27:31,589 [root] DEBUG: Initialized auxiliary module \"Evtx\"\r\n2024-09-23 15:27:31,611 [root] DEBUG: Trying to start auxiliary module \"Evtx\"...\r\n2024-09-23 15:27:31,621 [root] DEBUG: Started auxiliary module \"Evtx\"\r\n2024-09-23 15:27:31,621 [root] DEBUG: Started auxiliary module Evtx\r\n2024-09-23 15:27:31,621 [root] DEBUG: Initialized auxiliary module \"FilePickup\"\r\n2024-09-23 15:27:31,621 [root] DEBUG: Trying to start auxiliary module \"FilePickup\"...\r\n2024-09-23 15:27:31,621 [root] DEBUG: Started auxiliary module \"FilePickup\"\r\n2024-09-23 15:27:31,621 [root] DEBUG: Started auxiliary module FilePickup\r\n2024-09-23 15:27:31,621 [root] DEBUG: Initialized auxiliary module \"HtmlScraper\"\r\n2024-09-23 15:27:31,621 [root] DEBUG: Trying to start auxiliary module \"HtmlScraper\"...\r\n2024-09-23 15:27:31,621 [root] DEBUG: Started auxiliary module \"HtmlScraper\"\r\n2024-09-23 15:27:33,027 [root] DEBUG: Started auxiliary module HtmlScraper\r\n2024-09-23 15:27:33,027 [root] DEBUG: Initialized auxiliary module \"Human\"\r\n2024-09-23 15:27:33,027 [root] DEBUG: Trying to start auxiliary module \"Human\"...\r\n2024-09-23 15:27:33,121 [root] DEBUG: Started auxiliary module \"Human\"\r\n2024-09-23 15:27:33,121 [root] DEBUG: Started auxiliary module Human\r\n2024-09-23 15:27:33,121 [root] DEBUG: Initialized auxiliary module \"Permissions\"\r\n2024-09-23 15:27:33,121 [root] DEBUG: Trying to start auxiliary module \"Permissions\"...\r\n2024-09-23 15:27:33,121 [root] DEBUG: Started auxiliary module \"Permissions\"\r\n2024-09-23 15:27:33,121 [root] DEBUG: Started auxiliary module Permissions\r\n2024-09-23 15:27:33,121 [root] DEBUG: Initialized auxiliary module \"Pre_script\"\r\n2024-09-23 15:27:33,121 [root] DEBUG: Trying to start auxiliary module \"Pre_script\"...\r\n2024-09-23 15:27:33,121 [root] DEBUG: Started auxiliary module \"Pre_script\"\r\n2024-09-23 15:27:33,121 [root] DEBUG: Started auxiliary module Pre_script\r\n2024-09-23 15:27:33,121 [root] DEBUG: Initialized auxiliary module \"Procmon\"\r\n2024-09-23 15:27:33,121 [root] DEBUG: Trying to start auxiliary module \"Procmon\"...\r\n2024-09-23 15:27:33,152 [root] DEBUG: Started auxiliary module \"Procmon\"\r\n2024-09-23 15:27:33,152 [root] DEBUG: Started auxiliary module Procmon\r\n2024-09-23 15:27:33,152 [root] DEBUG: Initialized auxiliary module \"RecentFiles\"\r\n2024-09-23 15:27:33,152 [root] DEBUG: Trying to start auxiliary module \"RecentFiles\"...\r\n2024-09-23 15:27:33,152 [root] DEBUG: Started auxiliary module \"RecentFiles\"\r\n2024-09-23 15:27:33,152 [root] DEBUG: Started auxiliary module RecentFiles\r\n2024-09-23 15:27:33,152 [root] DEBUG: Initialized auxiliary module \"Screenshots\"\r\n2024-09-23 15:27:33,152 [root] DEBUG: Trying to start auxiliary module \"Screenshots\"...\r\n2024-09-23 15:27:33,152 [root] DEBUG: Started auxiliary module \"Screenshots\"\r\n2024-09-23 15:27:33,152 [root] DEBUG: Started auxiliary module Screenshots\r\n2024-09-23 15:27:33,152 [root] DEBUG: Initialized auxiliary module \"Sysmon\"\r\n2024-09-23 15:27:33,152 [root] DEBUG: Trying to start auxiliary module \"Sysmon\"...\r\n2024-09-23 15:27:33,152 [root] DEBUG: Started auxiliary module \"Sysmon\"\r\n2024-09-23 15:27:33,152 [root] DEBUG: Started auxiliary module Sysmon\r\n2024-09-23 15:27:33,152 [root] DEBUG: Initialized auxiliary module \"TLSDumpMasterSecrets\"\r\n2024-09-23 15:27:33,152 [root] DEBUG: Trying to start auxiliary module \"TLSDumpMasterSecrets\"...\r\n2024-09-23 15:27:33,183 [modules.auxiliary.tlsdump] INFO: lsass.exe found, pid 680\r\n2024-09-22 11:06:08,904 [lib.api.process] INFO: Monitor config for process 680: C:\\tmphwb_ppti\\dll\\680.ini\r\n2024-09-22 11:06:08,971 [lib.api.process] INFO: Option 'tlsdump' with value '1' sent to monitor\r\n2024-09-22 11:06:08,971 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmphwb_ppti\\dll\\EJVXAGZ.dll, loader C:\\tmphwb_ppti\\bin\\WwGaAlBh.exe\r\n2024-09-22 11:06:11,609 [root] DEBUG: Loader: Injecting process 680 with C:\\tmphwb_ppti\\dll\\EJVXAGZ.dll.\r\n2024-09-22 11:06:11,873 [root] DEBUG: 680: Python path set to 'C:\\Users\\Lenny-B\\AppData\\Local\\Programs\\Python\\Python310-32'.\r\n2024-09-22 11:06:11,998 [root] DEBUG: 680: TLS secret dump mode enabled.\r\n2024-09-22 11:06:12,486 [root] INFO: Disabling sleep skipping.\r\n2024-09-22 11:06:13,268 [root] DEBUG: 680: InternalYaraScan: Scanning 0x00007FFB850F0000, size 0x1f4542\r\n2024-09-22 11:06:14,264 [root] DEBUG: 680: InternalYaraScan hit: RtlInsertInvertedFunctionTable\r\n2024-09-22 11:06:15,138 [root] DEBUG: 680: RtlInsertInvertedFunctionTable 0x00007FFB8510090E, LdrpInvertedFunctionTableSRWLock 0x00007FFB8525B4F0\r\n2024-09-22 11:06:15,158 [root] DEBUG: 680: Monitor initialised: 64-bit capemon loaded in process 680 at 0x00007FFB44F00000, thread 1732, image base 0x00007FF7CC150000, stack from 0x000000B9A98F4000-0x000000B9A9900000\r\n2024-09-22 11:06:15,169 [root] DEBUG: 680: Commandline: C:\\Windows\\system32\\lsass.exe\r\n2024-09-22 11:06:15,283 [root] DEBUG: 680: Syscall hook installed, syscall logging level 1\r\n2024-09-22 11:06:15,283 [root] DEBUG: InjectDllViaThread: Successfully injected Dll into process via RtlCreateUserThread.\r\n2024-09-22 11:06:15,294 [root] DEBUG: Successfully injected DLL C:\\tmphwb_ppti\\dll\\EJVXAGZ.dll.\r\n2024-09-22 11:06:16,044 [lib.api.process] INFO: Injected into 64-bit process with pid 680\r\n2024-09-22 11:06:16,044 [root] DEBUG: Started auxiliary module \"TLSDumpMasterSecrets\"\r\n2024-09-22 11:06:16,044 [root] DEBUG: Started auxiliary module TLSDumpMasterSecrets\r\n2024-09-22 11:06:16,044 [root] DEBUG: Initialized auxiliary module \"Usage\"\r\n2024-09-22 11:06:16,044 [root] DEBUG: Trying to start auxiliary module \"Usage\"...\r\n2024-09-22 11:06:16,044 [root] DEBUG: Started auxiliary module \"Usage\"\r\n2024-09-22 11:06:16,044 [root] DEBUG: Started auxiliary module Usage\r\n2024-09-22 11:06:16,107 [root] DEBUG: Initialized auxiliary module \"During_script\"\r\n2024-09-22 11:06:16,107 [root] DEBUG: Trying to start auxiliary module \"During_script\"...\r\n2024-09-22 11:06:16,107 [root] DEBUG: Started auxiliary module \"During_script\"\r\n2024-09-22 11:06:16,107 [root] DEBUG: Started auxiliary module During_script\r\n2024-09-22 11:06:32,596 [root] DEBUG: 680: TLS 1.2 secrets logged to: C:\\YqEftSOnx\\tlsdump\\tlsdump.log\r\n2024-09-22 11:06:36,763 [root] INFO: Restarting WMI Service\r\n2024-09-22 11:06:41,294 [lib.common.common] INFO: Submitted file is missing extension, adding .doc\r\n2024-09-22 11:06:41,294 [lib.core.compound] INFO: C:\\Users\\Lenny-B\\AppData\\Local\\Temp already exists, skipping creation\r\n2024-09-22 11:06:41,514 [lib.api.process] INFO: Successfully executed process from path \"C:\\Program Files (x86)\\Microsoft Office\\Office15\\WINWORD.EXE\" with arguments \"\"C:\\Users\\Lenny-B\\AppData\\Local\\Temp\\Macros_BENIGN_TESTv5.docm.doc\" /q\" with pid 3552\r\n2024-09-22 11:06:41,514 [lib.api.process] INFO: Monitor config for process 3552: C:\\tmphwb_ppti\\dll\\3552.ini\r\n2024-09-22 11:06:41,559 [lib.api.process] INFO: 32-bit DLL to inject is C:\\tmphwb_ppti\\dll\\EIcafY.dll, loader C:\\tmphwb_ppti\\bin\\aLYSNeb.exe\r\n2024-09-22 11:06:44,431 [root] DEBUG: Loader: Injecting process 3552 (thread 3264) with C:\\tmphwb_ppti\\dll\\EIcafY.dll.\r\n2024-09-22 11:06:44,810 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\r\n2024-09-22 11:06:45,095 [root] DEBUG: Successfully injected DLL C:\\tmphwb_ppti\\dll\\EIcafY.dll.\r\n2024-09-22 11:06:45,653 [lib.api.process] INFO: Injected into 32-bit process with pid 3552\r\n2024-09-22 11:06:47,997 [lib.api.process] INFO: Successfully resumed process with pid 3552\r\n2024-09-22 11:06:50,488 [root] DEBUG: 3552: Python path set to 'C:\\Users\\Lenny-B\\AppData\\Local\\Programs\\Python\\Python310-32'.\r\n2024-09-22 11:06:50,497 [root] DEBUG: 3552: Dropped file limit defaulting to 100.\r\n2024-09-22 11:06:50,560 [root] DEBUG: 3552: Microsoft Office settings enabled.\r\n2024-09-22 11:06:50,653 [root] DEBUG: 3552: InternalYaraScan: Scanning 0x776A0000, size 0x1a21a4\r\n2024-09-22 11:06:53,579 [root] DEBUG: 3552: Yara error: Scanning timed out\r\n2024-09-22 11:06:55,669 [root] DEBUG: 3552: AmsiDumper initialised.\r\n2024-09-22 11:06:55,732 [root] DEBUG: 3552: Monitor initialised: 32-bit capemon loaded in process 3552 at 0x6a190000, thread 3264, image base 0x390000, stack from 0x8f6000-0x900000\r\n2024-09-22 11:06:55,732 [root] DEBUG: 3552: Commandline: \"C:\\Program Files (x86)\\Microsoft Office\\Office15\\WINWORD.EXE\" \"C:\\Users\\Lenny-B\\AppData\\Local\\Temp\\Macros_BENIGN_TESTv5.docm.doc\" /q\r\n2024-09-22 11:06:55,800 [root] DEBUG: 3552: hook_api: Warning - CoCreateInstance export address 0x769B56BD differs from GetProcAddress -> 0x76ACC970 (combase.dll::0xdc970)\r\n2024-09-22 11:06:55,810 [root] DEBUG: 3552: hook_api: Warning - CoCreateInstanceEx export address 0x769B56FC differs from GetProcAddress -> 0x76AAC2B0 (combase.dll::0xbc2b0)\r\n2024-09-22 11:06:55,810 [root] DEBUG: 3552: hook_api: Warning - CoGetClassObject export address 0x769B5C8C differs from GetProcAddress -> 0x76A95040 (combase.dll::0xa5040)\r\n2024-09-22 11:06:56,403 [root] DEBUG: 3552: hook_api: Warning - CLSIDFromProgID export address 0x769B4EF6 differs from GetProcAddress -> 0x76A889F0 (combase.dll::0x989f0)\r\n2024-09-22 11:06:57,037 [root] DEBUG: 3552: Syscall hook installed, syscall logging level 1\r\n2024-09-22 11:06:57,235 [root] DEBUG: 3552: WoW64fix: Windows version 6.2 not supported.\r\n2024-09-22 11:06:57,341 [root] DEBUG: 3552: RestoreHeaders: Restored original import table.\r\n2024-09-22 11:06:57,341 [root] INFO: Loaded monitor into process with pid 3552\r\n`\nComment: Hello, did you configure proper static IP inside of the windows guest? The same as in KVM.conf?\nComment: Hi @doomedraven thank you very much for your swift reply, really appreciate it\r\n\r\nYes, it is all good there, all of them have static IPs from the correct IP range (same as in the config for kvm) and it is saved in the clear snapshot for all of them (they also ping properly with the host).\r\n\r\nThe crazy thing here is that it worked perfectly a week ago (just after I saved all of these guests), but as they are not fresh anymore there is something broken and I really have no any idea what could cause these issues and how to fix this.\r\nFirstly I thought it is about the virtualization software and I had same errors in the VirtualBox setup but now I have literally zero ideas what could I check and verify besides creating whole guest environment from scratch.\r\n\r\n\r\n\r\n\nComment: so if that was working and now doesn't if i understand correctly, the unique thing is do yo uhave unattended-updates enabled? did you update OS ? did you install docker? if that was working and now doesn't is hard to know what is wrong, but something on the host cuts the connection\nComment: Besides standard updates there was nothing new added, however I think it might be related to the reboot that was after.\r\nSorry that I didn't share it before but I thought initially that it is not anyhow related to this issue but actually looks like this is the problem.\r\n\r\nSo, I have a very small basic disc drive so I am storing all the VMs and snapshot on the external drive that is mounted to the machine. The problem is that after the reboot happens this drive is being unmounted and wile I login it ask me for my credentials for cape. Then the drive is unlocked and I have back all my guest VMs.\r\nHowever it looks like it happens then CAPE is not able to communicate with these machines properly (it is opening session and trying to analyze files but at the end the submitted file is not run).\r\nJust for testing this I have opened one of the guest, created a new snapshot and run an analysis on (while external drive was already mounted and everything was fine) and 5 analysis one by one were ok - CAPE was able to actually run the submitted sample.\r\n\r\nI am a new in KVM/QEMU but I think it might be the root cause here, still I am not sure how to permanently resolve it.\r\nI can save all the guest snapshot once again and they will work normally but after the reboot of the machine most likely all of them will have same issue.\r\n\r\nSo far I just run sudo chmod 777 -R  /media/cape/Extra_Space (my external drive) to provide all user access but it didnt resolve the issue (after the reboot it is failing the analysis once again). I know that this case is most likely not strictly related to CAPE itself but do you have any recommendations to make this external drive space always accessible/visible to the virt-manager/CAPE. Normally after the reboot I open the virt-manger just from typing it in the terminal (using sudo virt-manager does nothing and GUI is not opened).\r\n\r\n*Also from the virt-manager view I cannot delete the snapshots it says access is denied:\r\nError deleting snapshot 'BASIC-1': internal error: unable to execute QEMU command 'block-commit': Could not open '/media/cape/Extra_Space/VMs-KVM/Win10-16wrz.qcow2': Permission denied\r\n\r\n\nComment: yes this doesn't nothing to do with cape at all\r\nrun: `sudo chown root:libvirt /media/cape/Extra_Space/ -R` this should fix your permission, but is just permission error that you need to fix, but this all is specific to your setup\r\n\r\nim gonna close this issue as this is not real issue for cape, but you can ask question here, but i can't really help more apart of saying fix your VM's disks permissions with comamnd that i shared\nComment: Sure, thank you for your comments and sorry for this Issue.\r\nWas struggling for a long time with it and was thinking that something in the CAPE is broken as it once works and the other day not. Thanks a lot!\nComment: That's fine to ask :) we can give direction, but when is not cape related\r\nand not something specific is hard to suggest proper solution\r\n\r\nEl mi\u00e9, 25 sept 2024, 14:15, Parithmos424 ***@***.***>\r\nescribi\u00f3:\r\n\r\n> Sure, thank you for your comments and sorry for this Issue.\r\n> Was struggling for a long time with it and was thinking that something in\r\n> the CAPE is broken as it once works and the other day not. Thanks a lot!\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2326#issuecomment-2373919490>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3ZZYO4D3BPTE5C3QMDZYKSPVAVCNFSM6AAAAABOWNZTBSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDGNZTHEYTSNBZGA>\r\n> .\r\n> You are receiving this because you modified the open/close state.Message\r\n> ID: ***@***.***>\r\n>\r\n",
+  "Title: Category query param for task_list\nBody: None",
+  "Title: Azure safety updates\nBody: Updates to handle critical errors when:\r\n- Non-persistent machine deletion from the DB leads to a machine scheduled for deletion being assigned a task\r\n- A machine's agent will sometimes be unreachable at startup\r\n- A machine is sometimes added more than once to `delete_vm_list`\r\n- On startup, an existing VM is on the VMSS\r\n- On startup, a machine that was previously in the DB is still present on the VMSS\r\n- On startup, when all initialized machines fail, add a configurable retry capability\r\n- On startup, an existing VM is `locked`\r\n\r\nMany of the changes are to make the code more thread-safe.\r\nDelay monitor thread start to allow all VMSSs to be up and instances running, especially in the case of initial startup failures.\nComment: Hello, thank you, i will need first move this to staging before it will be merged to master to ensure that we didn't break nothing\nComment: @doomedraven  Sounds good. I want to test it significantly on my end before moving forward with it as well. Is it possible to change this to a draft instead of a regular PR?\nComment: yes then draft would be good\nComment: @cccs-mog If you have a chance to test this on your end, it should fix all the errors we discussed in #2323\nComment: @doomedraven I removed the changes in `scheduler.py` and `abstracts.py`. Only `machinery/az.py` has changes to it now.\r\n\r\nReady to move out of draft now.\nComment: cool thank you, lets see if @cccs-mog can confirm it and then we fine to merge\nComment: i changed from staging to master as changes are only to az.py, so they are not so dangerous for the rest of users and easier to review\nComment: Hi @doomedraven and @ChrisThibodeaux, I will take a look today and get back. Awesome work ! \nComment: ok lets merge this then, and then someone use uses azure can add subnet limit and quota . thank you @ChrisThibodeaux for your work ",
+  "Title: Database and AZ machinery issue \nBody: \r\n\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X ] I am running the latest version\r\n- [X ] I did read the README!\r\n- [X ] I checked the documentation and found no answer\r\n- [X ] I checked to make sure that this issue has not already been filed\r\n- [X ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ X] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nA call to self.db.add_machine() should result on a machine being created and thus the check in initialize_machinery() listing machine should not induce an error for the AZ machinery.\r\n\r\n# Current Behavior\r\n\r\nNo machine are created at all, the running of this function doesn't seem to produce any database commands being ran.\r\n\r\n# Failure Information (for bugs)\r\n\r\nThe session goes all the way throught initialize_machinery(). The AZ machinery overwrite the initialize and initialize_check function. In all cases at some point the machinery will attempt to add machines to the database the same way as the other machinery would do it, but for some reasons it doesn't work. The connection to the database is ok because tasks can be added to it and the schema was created at the beginning. Tested on both SQLite3 and PosgreSQL. This could be a timing issue which is specific to scaling machinery but I would expect that explicitely calling the addition of a machine in the database to actually do it.\r\n\r\n## Steps to Reproduce\r\n\r\n1. Clean install of CAPE\r\n2. Setup for the AZ machinery with VMSS\r\n3. Run the cape service/daemon as normal\r\n\r\n## Context\r\nFresh install on Ubuntu 20.04. Base installation made from cape2.sh. Every aspect seem to work fine except this. \r\n\r\n## Failure Logs\r\n\r\n2024-09-18 18:26:45,412 [root] DEBUG: Imported \"machinery\" modules:\r\n2024-09-18 18:26:45,412 [root] DEBUG:    `-- Azure\r\n2024-09-18 18:26:45,413 [root] DEBUG: Checking for locked tasks...\r\n2024-09-18 18:26:45,417 INFO sqlalchemy.engine.Engine BEGIN (implicit)\r\n2024-09-18 18:26:45,417 [sqlalchemy.engine.Engine] INFO: BEGIN (implicit)\r\n2024-09-18 18:26:45,448 INFO sqlalchemy.engine.Engine SELECT tasks.id AS tasks_id, tasks.target AS tasks_target, tasks.category AS tasks_category, tasks.cape AS tasks_cape, tasks.timeout AS tasks_timeout, tasks.priority AS tasks_priority, tasks.custom AS tasks_custom, tasks.machine AS tasks_machine, tasks.package AS tasks_package, tasks.route AS tasks_route, tasks.tags_tasks AS tasks_tags_tasks, tasks.options AS tasks_options, tasks.platform AS tasks_platform, tasks.memory AS tasks_memory, tasks.enforce_timeout AS tasks_enforce_timeout, tasks.clock AS tasks_clock, tasks.added_on AS tasks_added_on, tasks.started_on AS tasks_started_on, tasks.completed_on AS tasks_completed_on, tasks.status AS tasks_status, tasks.dropped_files AS tasks_dropped_files, tasks.running_processes AS tasks_running_processes, tasks.api_calls AS tasks_api_calls, tasks.domains AS tasks_domains, tasks.signatures_total AS tasks_signatures_total, tasks.signatures_alert AS tasks_signatures_alert, tasks.files_written AS tasks_files_written, tasks.registry_keys_modified AS tasks_registry_keys_modified, tasks.crash_issues AS tasks_crash_issues, tasks.anti_issues AS tasks_anti_issues, tasks.analysis_started_on AS tasks_analysis_started_on, tasks.analysis_finished_on AS tasks_analysis_finished_on, tasks.processing_started_on AS tasks_processing_started_on, tasks.processing_finished_on AS tasks_processing_finished_on, tasks.signatures_started_on AS tasks_signatures_started_on, tasks.signatures_finished_on AS tasks_signatures_finished_on, tasks.reporting_started_on AS tasks_reporting_started_on, tasks.reporting_finished_on AS tasks_reporting_finished_on, tasks.timedout AS tasks_timedout, tasks.sample_id AS tasks_sample_id, tasks.machine_id AS tasks_machine_id, tasks.shrike_url AS tasks_shrike_url, tasks.shrike_refer AS tasks_shrike_refer, tasks.shrike_msg AS tasks_shrike_msg, tasks.shrike_sid AS tasks_shrike_sid, tasks.parent_id AS tasks_parent_id, tasks.tlp AS tasks_tlp, tasks.user_id AS tasks_user_id, tasks.username AS tasks_username, tags_1.id AS tags_1_id, tags_1.name AS tags_1_name, guests_1.id AS guests_1_id, guests_1.status AS guests_1_status, guests_1.name AS guests_1_name, guests_1.label AS guests_1_label, guests_1.platform AS guests_1_platform, guests_1.manager AS guests_1_manager, guests_1.started_on AS guests_1_started_on, guests_1.shutdown_on AS guests_1_shutdown_on, guests_1.task_id AS guests_1_task_id, errors_1.id AS errors_1_id, errors_1.message AS errors_1_message, errors_1.task_id AS errors_1_task_id \r\nFROM tasks LEFT OUTER JOIN (tasks_tags AS tasks_tags_1 JOIN tags AS tags_1 ON tags_1.id = tasks_tags_1.tag_id) ON tasks.id = tasks_tags_1.task_id LEFT OUTER JOIN guests AS guests_1 ON tasks.id = guests_1.task_id LEFT OUTER JOIN errors AS errors_1 ON tasks.id = errors_1.task_id \r\nWHERE tasks.status = %(status_1)s ORDER BY tasks.added_on DESC\r\n2024-09-18 18:26:45,448 [sqlalchemy.engine.Engine] INFO: SELECT tasks.id AS tasks_id, tasks.target AS tasks_target, tasks.category AS tasks_category, tasks.cape AS tasks_cape, tasks.timeout AS tasks_timeout, tasks.priority AS tasks_priority, tasks.custom AS tasks_custom, tasks.machine AS tasks_machine, tasks.package AS tasks_package, tasks.route AS tasks_route, tasks.tags_tasks AS tasks_tags_tasks, tasks.options AS tasks_options, tasks.platform AS tasks_platform, tasks.memory AS tasks_memory, tasks.enforce_timeout AS tasks_enforce_timeout, tasks.clock AS tasks_clock, tasks.added_on AS tasks_added_on, tasks.started_on AS tasks_started_on, tasks.completed_on AS tasks_completed_on, tasks.status AS tasks_status, tasks.dropped_files AS tasks_dropped_files, tasks.running_processes AS tasks_running_processes, tasks.api_calls AS tasks_api_calls, tasks.domains AS tasks_domains, tasks.signatures_total AS tasks_signatures_total, tasks.signatures_alert AS tasks_signatures_alert, tasks.files_written AS tasks_files_written, tasks.registry_keys_modified AS tasks_registry_keys_modified, tasks.crash_issues AS tasks_crash_issues, tasks.anti_issues AS tasks_anti_issues, tasks.analysis_started_on AS tasks_analysis_started_on, tasks.analysis_finished_on AS tasks_analysis_finished_on, tasks.processing_started_on AS tasks_processing_started_on, tasks.processing_finished_on AS tasks_processing_finished_on, tasks.signatures_started_on AS tasks_signatures_started_on, tasks.signatures_finished_on AS tasks_signatures_finished_on, tasks.reporting_started_on AS tasks_reporting_started_on, tasks.reporting_finished_on AS tasks_reporting_finished_on, tasks.timedout AS tasks_timedout, tasks.sample_id AS tasks_sample_id, tasks.machine_id AS tasks_machine_id, tasks.shrike_url AS tasks_shrike_url, tasks.shrike_refer AS tasks_shrike_refer, tasks.shrike_msg AS tasks_shrike_msg, tasks.shrike_sid AS tasks_shrike_sid, tasks.parent_id AS tasks_parent_id, tasks.tlp AS tasks_tlp, tasks.user_id AS tasks_user_id, tasks.username AS tasks_username, tags_1.id AS tags_1_id, tags_1.name AS tags_1_name, guests_1.id AS guests_1_id, guests_1.status AS guests_1_status, guests_1.name AS guests_1_name, guests_1.label AS guests_1_label, guests_1.platform AS guests_1_platform, guests_1.manager AS guests_1_manager, guests_1.started_on AS guests_1_started_on, guests_1.shutdown_on AS guests_1_shutdown_on, guests_1.task_id AS guests_1_task_id, errors_1.id AS errors_1_id, errors_1.message AS errors_1_message, errors_1.task_id AS errors_1_task_id \r\nFROM tasks LEFT OUTER JOIN (tasks_tags AS tasks_tags_1 JOIN tags AS tags_1 ON tags_1.id = tasks_tags_1.tag_id) ON tasks.id = tasks_tags_1.task_id LEFT OUTER JOIN guests AS guests_1 ON tasks.id = guests_1.task_id LEFT OUTER JOIN errors AS errors_1 ON tasks.id = errors_1.task_id \r\nWHERE tasks.status = %(status_1)s ORDER BY tasks.added_on DESC\r\n2024-09-18 18:26:45,448 INFO sqlalchemy.engine.Engine [generated in 0.00079s] {'status_1': 'running'}\r\n2024-09-18 18:26:45,448 [sqlalchemy.engine.Engine] INFO: [generated in 0.00079s] {'status_1': 'running'}\r\n2024-09-18 18:26:45,456 INFO sqlalchemy.engine.Engine COMMIT\r\n2024-09-18 18:26:45,456 [sqlalchemy.engine.Engine] INFO: COMMIT\r\n2024-09-18 18:26:45,479 [lib.cuckoo.core.machinery_manager] INFO: Using MachineryManager[az] with max_machines_count=0\r\n2024-09-18 18:26:45,479 [lib.cuckoo.core.scheduler] INFO: Creating scheduler with max_analysis_count=unlimited\r\n2024-09-18 18:27:38,006 INFO sqlalchemy.engine.Engine BEGIN (implicit)\r\n2024-09-18 18:27:38,006 [sqlalchemy.engine.Engine] INFO: BEGIN (implicit)\r\n2024-09-18 18:27:38,009 INFO sqlalchemy.engine.Engine DELETE FROM machines_tags\r\n2024-09-18 18:27:38,009 [sqlalchemy.engine.Engine] INFO: DELETE FROM machines_tags\r\n2024-09-18 18:27:38,009 INFO sqlalchemy.engine.Engine [generated in 0.00066s] {}\r\n2024-09-18 18:27:38,009 [sqlalchemy.engine.Engine] INFO: [generated in 0.00066s] {}\r\n2024-09-18 18:27:38,013 INFO sqlalchemy.engine.Engine DELETE FROM machines\r\n2024-09-18 18:27:38,013 [sqlalchemy.engine.Engine] INFO: DELETE FROM machines\r\n2024-09-18 18:27:38,013 INFO sqlalchemy.engine.Engine [generated in 0.00050s] {}\r\n2024-09-18 18:27:38,013 [sqlalchemy.engine.Engine] INFO: [generated in 0.00050s] {}\r\n2024-09-18 18:27:38,014 [modules.machinery.az] DEBUG: Connecting to Azure for the region 'XXX'.\r\n2024-09-18 18:27:38,638 [modules.machinery.az] DEBUG: Trying <bound method GalleryImagesOperations.get of <azure.mgmt.compute.v2023_07_03.operations._operations.GalleryImagesOperations object at 0x7fab7172d810>>(('XXX', 'cape_compute_gallery', 'XXX'),{})\r\n2024-09-18 18:27:38,761 [modules.machinery.az] DEBUG: Trying <bound method VirtualMachineScaleSetsOperations.list of <azure.mgmt.compute.v2024_07_01.operations._operations.VirtualMachineScaleSetsOperations object at 0x7fab7172df60>>(('XXX',),{})\r\n2024-09-18 18:27:38,913 [modules.machinery.az] DEBUG: Trying <bound method SubnetsOperations.get of <azure.mgmt.network.operations._operations.SubnetsOperations object at 0x7fab7172f730>>(('XXX', 'VNET', 'XXX'),{})\r\n2024-09-18 18:27:43,160 [modules.machinery.az] DEBUG: Trying <bound method VirtualMachineScaleSetsOperations.begin_reimage_all of <azure.mgmt.compute.v2024_07_01.operations._operations.VirtualMachineScaleSetsOperations object at 0x7fab7172f940>>(('XXX', 'vmss-cape-win10x64-60'),{'polling_interval': 1})\r\n2024-09-18 18:32:08,967 [modules.machinery.az] DEBUG: Adding machines to database for vmss-cape-win10x64-60.\r\n2024-09-18 18:32:08,981 INFO sqlalchemy.engine.Engine BEGIN (implicit)\r\n2024-09-18 18:32:08,981 [sqlalchemy.engine.Engine] INFO: BEGIN (implicit)\r\n2024-09-18 18:32:08,990 INFO sqlalchemy.engine.Engine SELECT machines.id AS machines_id, machines.name AS machines_name, machines.label AS machines_label, machines.arch AS machines_arch, machines.ip AS machines_ip, machines.platform AS machines_platform, machines.interface AS machines_interface, machines.snapshot AS machines_snapshot, machines.locked AS machines_locked, machines.locked_changed_on AS machines_locked_changed_on, machines.status AS machines_status, machines.status_changed_on AS machines_status_changed_on, machines.resultserver_ip AS machines_resultserver_ip, machines.resultserver_port AS machines_resultserver_port, machines.reserved AS machines_reserved, tags_1.id AS tags_1_id, tags_1.name AS tags_1_name \r\nFROM machines LEFT OUTER JOIN (machines_tags AS machines_tags_1 JOIN tags AS tags_1 ON tags_1.id = machines_tags_1.tag_id) ON machines.id = machines_tags_1.machine_id \r\nWHERE machines.reserved = false\r\n2024-09-18 18:32:08,990 [sqlalchemy.engine.Engine] INFO: SELECT machines.id AS machines_id, machines.name AS machines_name, machines.label AS machines_label, machines.arch AS machines_arch, machines.ip AS machines_ip, machines.platform AS machines_platform, machines.interface AS machines_interface, machines.snapshot AS machines_snapshot, machines.locked AS machines_locked, machines.locked_changed_on AS machines_locked_changed_on, machines.status AS machines_status, machines.status_changed_on AS machines_status_changed_on, machines.resultserver_ip AS machines_resultserver_ip, machines.resultserver_port AS machines_resultserver_port, machines.reserved AS machines_reserved, tags_1.id AS tags_1_id, tags_1.name AS tags_1_name \r\nFROM machines LEFT OUTER JOIN (machines_tags AS machines_tags_1 JOIN tags AS tags_1 ON tags_1.id = machines_tags_1.tag_id) ON machines.id = machines_tags_1.machine_id \r\nWHERE machines.reserved = false\r\n2024-09-18 18:32:08,991 INFO sqlalchemy.engine.Engine [generated in 0.00067s] {}\r\n2024-09-18 18:32:08,991 [sqlalchemy.engine.Engine] INFO: [generated in 0.00067s] {}\r\n2024-09-18 18:32:08,995 [modules.machinery.az] DEBUG: Trying <bound method VirtualMachineScaleSetVMsOperations.list of <azure.mgmt.compute.v2024_07_01.operations._operations.VirtualMachineScaleSetVMsOperations object at 0x7fab717add20>>(('XXX', 'vmss-cape-win10x64-60'),{})\r\n2024-09-18 18:32:08,998 [modules.machinery.az] DEBUG: Trying <bound method NetworkInterfacesOperations.list_virtual_machine_scale_set_network_interfaces of <azure.mgmt.network.operations._operations.NetworkInterfacesOperations object at 0x7fab6fe0c040>>(('XXX', 'vmss-cape-win10x64-60'),{'api_version': '2024-07-01'})\r\n2024-09-18 18:32:18,186 INFO sqlalchemy.engine.Engine SELECT tags.id AS tags_id, tags.name AS tags_name \r\nFROM tags \r\nWHERE tags.name = %(name_1)s \r\n LIMIT %(param_1)s\r\n2024-09-18 18:32:18,186 [sqlalchemy.engine.Engine] INFO: SELECT tags.id AS tags_id, tags.name AS tags_name \r\nFROM tags \r\nWHERE tags.name = %(name_1)s \r\n LIMIT %(param_1)s\r\n2024-09-18 18:32:18,187 INFO sqlalchemy.engine.Engine [generated in 0.00113s] {'name_1': 'win10x64', 'param_1': 1}\r\n2024-09-18 18:32:18,187 [sqlalchemy.engine.Engine] INFO: [generated in 0.00113s] {'name_1': 'win10x64', 'param_1': 1}\r\n2024-09-18 18:32:19,321 [modules.machinery.az] DEBUG: Machine vmss-cape-win10x64-60_0 was created and available in 0s\r\n2024-09-18 18:32:22,244 INFO sqlalchemy.engine.Engine SELECT machines.id AS machines_id, machines.name AS machines_name, machines.label AS machines_label, machines.arch AS machines_arch, machines.ip AS machines_ip, machines.platform AS machines_platform, machines.interface AS machines_interface, machines.snapshot AS machines_snapshot, machines.locked AS machines_locked, machines.locked_changed_on AS machines_locked_changed_on, machines.status AS machines_status, machines.status_changed_on AS machines_status_changed_on, machines.resultserver_ip AS machines_resultserver_ip, machines.resultserver_port AS machines_resultserver_port, machines.reserved AS machines_reserved, tags_1.id AS tags_1_id, tags_1.name AS tags_1_name \r\nFROM machines LEFT OUTER JOIN (machines_tags AS machines_tags_1 JOIN tags AS tags_1 ON tags_1.id = machines_tags_1.tag_id) ON machines.id = machines_tags_1.machine_id\r\n2024-09-18 18:32:22,244 [sqlalchemy.engine.Engine] INFO: SELECT machines.id AS machines_id, machines.name AS machines_name, machines.label AS machines_label, machines.arch AS machines_arch, machines.ip AS machines_ip, machines.platform AS machines_platform, machines.interface AS machines_interface, machines.snapshot AS machines_snapshot, machines.locked AS machines_locked, machines.locked_changed_on AS machines_locked_changed_on, machines.status AS machines_status, machines.status_changed_on AS machines_status_changed_on, machines.resultserver_ip AS machines_resultserver_ip, machines.resultserver_port AS machines_resultserver_port, machines.reserved AS machines_reserved, tags_1.id AS tags_1_id, tags_1.name AS tags_1_name \r\nFROM machines LEFT OUTER JOIN (machines_tags AS machines_tags_1 JOIN tags AS tags_1 ON tags_1.id = machines_tags_1.tag_id) ON machines.id = machines_tags_1.machine_id\r\n2024-09-18 18:32:22,244 INFO sqlalchemy.engine.Engine [generated in 0.00080s] {}\r\n2024-09-18 18:32:22,244 [sqlalchemy.engine.Engine] INFO: [generated in 0.00080s] {}\r\n2024-09-18 18:32:22,248 INFO sqlalchemy.engine.Engine ROLLBACK\r\n2024-09-18 18:32:22,248 [sqlalchemy.engine.Engine] INFO: ROLLBACK\r\n2024-09-18 18:32:22,251 INFO sqlalchemy.engine.Engine BEGIN (implicit)\r\n2024-09-18 18:32:22,251 [sqlalchemy.engine.Engine] INFO: BEGIN (implicit)\r\n2024-09-18 18:32:22,256 INFO sqlalchemy.engine.Engine SELECT machines.id AS machines_id, machines.name AS machines_name, machines.label AS machines_label, machines.arch AS machines_arch, machines.ip AS machines_ip, machines.platform AS machines_platform, machines.interface AS machines_interface, machines.snapshot AS machines_snapshot, machines.locked AS machines_locked, machines.locked_changed_on AS machines_locked_changed_on, machines.status AS machines_status, machines.status_changed_on AS machines_status_changed_on, machines.resultserver_ip AS machines_resultserver_ip, machines.resultserver_port AS machines_resultserver_port, machines.reserved AS machines_reserved, tags_1.id AS tags_1_id, tags_1.name AS tags_1_name \r\nFROM machines LEFT OUTER JOIN (machines_tags AS machines_tags_1 JOIN tags AS tags_1 ON tags_1.id = machines_tags_1.tag_id) ON machines.id = machines_tags_1.machine_id \r\nWHERE machines.locked = true AND machines.reserved = false\r\n2024-09-18 18:32:22,256 [sqlalchemy.engine.Engine] INFO: SELECT machines.id AS machines_id, machines.name AS machines_name, machines.label AS machines_label, machines.arch AS machines_arch, machines.ip AS machines_ip, machines.platform AS machines_platform, machines.interface AS machines_interface, machines.snapshot AS machines_snapshot, machines.locked AS machines_locked, machines.locked_changed_on AS machines_locked_changed_on, machines.status AS machines_status, machines.status_changed_on AS machines_status_changed_on, machines.resultserver_ip AS machines_resultserver_ip, machines.resultserver_port AS machines_resultserver_port, machines.reserved AS machines_reserved, tags_1.id AS tags_1_id, tags_1.name AS tags_1_name \r\nFROM machines LEFT OUTER JOIN (machines_tags AS machines_tags_1 JOIN tags AS tags_1 ON tags_1.id = machines_tags_1.tag_id) ON machines.id = machines_tags_1.machine_id \r\nWHERE machines.locked = true AND machines.reserved = false\r\n2024-09-18 18:32:22,256 INFO sqlalchemy.engine.Engine [generated in 0.00056s] {}\r\n2024-09-18 18:32:22,256 [sqlalchemy.engine.Engine] INFO: [generated in 0.00056s] {}\r\n2024-09-18 18:32:22,259 INFO sqlalchemy.engine.Engine COMMIT\r\n2024-09-18 18:32:22,259 [sqlalchemy.engine.Engine] INFO: COMMIT\r\n2024-09-18 18:32:22,260 [root] CRITICAL: CuckooCriticalError: No machines available\r\n2024-09-18 18:32:38,638 [modules.machinery.az] DEBUG: Monitoring the machine pools...\r\n2024-09-18 18:32:38,678 INFO sqlalchemy.engine.Engine BEGIN (implicit)\r\n2024-09-18 18:32:38,678 [sqlalchemy.engine.Engine] INFO: BEGIN (implicit)\r\n2024-09-18 18:32:38,680 INFO sqlalchemy.engine.Engine SELECT machines.id AS machines_id, machines.name AS machines_name, machines.label AS machines_label, machines.arch AS machines_arch, machines.ip AS machines_ip, machines.platform AS machines_platform, machines.interface AS machines_interface, machines.snapshot AS machines_snapshot, machines.locked AS machines_locked, machines.locked_changed_on AS machines_locked_changed_on, machines.status AS machines_status, machines.status_changed_on AS machines_status_changed_on, machines.resultserver_ip AS machines_resultserver_ip, machines.resultserver_port AS machines_resultserver_port, machines.reserved AS machines_reserved, tags_1.id AS tags_1_id, tags_1.name AS tags_1_name \r\nFROM machines LEFT OUTER JOIN (machines_tags AS machines_tags_1 JOIN tags AS tags_1 ON tags_1.id = machines_tags_1.tag_id) ON machines.id = machines_tags_1.machine_id \r\nWHERE machines.reserved = false\r\n2024-09-18 18:32:38,680 [sqlalchemy.engine.Engine] INFO: SELECT machines.id AS machines_id, machines.name AS machines_name, machines.label AS machines_label, machines.arch AS machines_arch, machines.ip AS machines_ip, machines.platform AS machines_platform, machines.interface AS machines_interface, machines.snapshot AS machines_snapshot, machines.locked AS machines_locked, machines.locked_changed_on AS machines_locked_changed_on, machines.status AS machines_status, machines.status_changed_on AS machines_status_changed_on, machines.resultserver_ip AS machines_resultserver_ip, machines.resultserver_port AS machines_resultserver_port, machines.reserved AS machines_reserved, tags_1.id AS tags_1_id, tags_1.name AS tags_1_name \r\nFROM machines LEFT OUTER JOIN (machines_tags AS machines_tags_1 JOIN tags AS tags_1 ON tags_1.id = machines_tags_1.tag_id) ON machines.id = machines_tags_1.machine_id \r\nWHERE machines.reserved = false\r\n2024-09-18 18:32:38,683 INFO sqlalchemy.engine.Engine [cached since 29.69s ago] {}\r\n2024-09-18 18:32:38,683 [sqlalchemy.engine.Engine] INFO: [cached since 29.69s ago] {}\r\n2024-09-18 18:32:38,695 INFO sqlalchemy.engine.Engine SELECT tasks.id AS tasks_id, tasks.target AS tasks_target, tasks.category AS tasks_category, tasks.cape AS tasks_cape, tasks.timeout AS tasks_timeout, tasks.priority AS tasks_priority, tasks.custom AS tasks_custom, tasks.machine AS tasks_machine, tasks.package AS tasks_package, tasks.route AS tasks_route, tasks.tags_tasks AS tasks_tags_tasks, tasks.options AS tasks_options, tasks.platform AS tasks_platform, tasks.memory AS tasks_memory, tasks.enforce_timeout AS tasks_enforce_timeout, tasks.clock AS tasks_clock, tasks.added_on AS tasks_added_on, tasks.started_on AS tasks_started_on, tasks.completed_on AS tasks_completed_on, tasks.status AS tasks_status, tasks.dropped_files AS tasks_dropped_files, tasks.running_processes AS tasks_running_processes, tasks.api_calls AS tasks_api_calls, tasks.domains AS tasks_domains, tasks.signatures_total AS tasks_signatures_total, tasks.signatures_alert AS tasks_signatures_alert, tasks.files_written AS tasks_files_written, tasks.registry_keys_modified AS tasks_registry_keys_modified, tasks.crash_issues AS tasks_crash_issues, tasks.anti_issues AS tasks_anti_issues, tasks.analysis_started_on AS tasks_analysis_started_on, tasks.analysis_finished_on AS tasks_analysis_finished_on, tasks.processing_started_on AS tasks_processing_started_on, tasks.processing_finished_on AS tasks_processing_finished_on, tasks.signatures_started_on AS tasks_signatures_started_on, tasks.signatures_finished_on AS tasks_signatures_finished_on, tasks.reporting_started_on AS tasks_reporting_started_on, tasks.reporting_finished_on AS tasks_reporting_finished_on, tasks.timedout AS tasks_timedout, tasks.sample_id AS tasks_sample_id, tasks.machine_id AS tasks_machine_id, tasks.shrike_url AS tasks_shrike_url, tasks.shrike_refer AS tasks_shrike_refer, tasks.shrike_msg AS tasks_shrike_msg, tasks.shrike_sid AS tasks_shrike_sid, tasks.parent_id AS tasks_parent_id, tasks.tlp AS tasks_tlp, tasks.user_id AS tasks_user_id, tasks.username AS tasks_username, tags_1.id AS tags_1_id, tags_1.name AS tags_1_name, guests_1.id AS guests_1_id, guests_1.status AS guests_1_status, guests_1.name AS guests_1_name, guests_1.label AS guests_1_label, guests_1.platform AS guests_1_platform, guests_1.manager AS guests_1_manager, guests_1.started_on AS guests_1_started_on, guests_1.shutdown_on AS guests_1_shutdown_on, guests_1.task_id AS guests_1_task_id, errors_1.id AS errors_1_id, errors_1.message AS errors_1_message, errors_1.task_id AS errors_1_task_id \r\nFROM tasks LEFT OUTER JOIN (tasks_tags AS tasks_tags_1 JOIN tags AS tags_1 ON tags_1.id = tasks_tags_1.tag_id) ON tasks.id = tasks_tags_1.task_id LEFT OUTER JOIN guests AS guests_1 ON tasks.id = guests_1.task_id LEFT OUTER JOIN errors AS errors_1 ON tasks.id = errors_1.task_id \r\nWHERE tasks.status = %(status_1)s ORDER BY tasks.added_on DESC\r\n2024-09-18 18:32:38,695 [sqlalchemy.engine.Engine] INFO: SELECT tasks.id AS tasks_id, tasks.target AS tasks_target, tasks.category AS tasks_category, tasks.cape AS tasks_cape, tasks.timeout AS tasks_timeout, tasks.priority AS tasks_priority, tasks.custom AS tasks_custom, tasks.machine AS tasks_machine, tasks.package AS tasks_package, tasks.route AS tasks_route, tasks.tags_tasks AS tasks_tags_tasks, tasks.options AS tasks_options, tasks.platform AS tasks_platform, tasks.memory AS tasks_memory, tasks.enforce_timeout AS tasks_enforce_timeout, tasks.clock AS tasks_clock, tasks.added_on AS tasks_added_on, tasks.started_on AS tasks_started_on, tasks.completed_on AS tasks_completed_on, tasks.status AS tasks_status, tasks.dropped_files AS tasks_dropped_files, tasks.running_processes AS tasks_running_processes, tasks.api_calls AS tasks_api_calls, tasks.domains AS tasks_domains, tasks.signatures_total AS tasks_signatures_total, tasks.signatures_alert AS tasks_signatures_alert, tasks.files_written AS tasks_files_written, tasks.registry_keys_modified AS tasks_registry_keys_modified, tasks.crash_issues AS tasks_crash_issues, tasks.anti_issues AS tasks_anti_issues, tasks.analysis_started_on AS tasks_analysis_started_on, tasks.analysis_finished_on AS tasks_analysis_finished_on, tasks.processing_started_on AS tasks_processing_started_on, tasks.processing_finished_on AS tasks_processing_finished_on, tasks.signatures_started_on AS tasks_signatures_started_on, tasks.signatures_finished_on AS tasks_signatures_finished_on, tasks.reporting_started_on AS tasks_reporting_started_on, tasks.reporting_finished_on AS tasks_reporting_finished_on, tasks.timedout AS tasks_timedout, tasks.sample_id AS tasks_sample_id, tasks.machine_id AS tasks_machine_id, tasks.shrike_url AS tasks_shrike_url, tasks.shrike_refer AS tasks_shrike_refer, tasks.shrike_msg AS tasks_shrike_msg, tasks.shrike_sid AS tasks_shrike_sid, tasks.parent_id AS tasks_parent_id, tasks.tlp AS tasks_tlp, tasks.user_id AS tasks_user_id, tasks.username AS tasks_username, tags_1.id AS tags_1_id, tags_1.name AS tags_1_name, guests_1.id AS guests_1_id, guests_1.status AS guests_1_status, guests_1.name AS guests_1_name, guests_1.label AS guests_1_label, guests_1.platform AS guests_1_platform, guests_1.manager AS guests_1_manager, guests_1.started_on AS guests_1_started_on, guests_1.shutdown_on AS guests_1_shutdown_on, guests_1.task_id AS guests_1_task_id, errors_1.id AS errors_1_id, errors_1.message AS errors_1_message, errors_1.task_id AS errors_1_task_id \r\nFROM tasks LEFT OUTER JOIN (tasks_tags AS tasks_tags_1 JOIN tags AS tags_1 ON tags_1.id = tasks_tags_1.tag_id) ON tasks.id = tasks_tags_1.task_id LEFT OUTER JOIN guests AS guests_1 ON tasks.id = guests_1.task_id LEFT OUTER JOIN errors AS errors_1 ON tasks.id = errors_1.task_id \r\nWHERE tasks.status = %(status_1)s ORDER BY tasks.added_on DESC\r\n2024-09-18 18:32:38,703 INFO sqlalchemy.engine.Engine [cached since 353.3s ago] {'status_1': 'pending'}\r\n2024-09-18 18:32:38,703 [sqlalchemy.engine.Engine] INFO: [cached since 353.3s ago] {'status_1': 'pending'}\r\n2024-09-18 18:32:38,711 INFO sqlalchemy.engine.Engine SELECT machines.id AS machines_id, machines.name AS machines_name, machines.label AS machines_label, machines.arch AS machines_arch, machines.ip AS machines_ip, machines.platform AS machines_platform, machines.interface AS machines_interface, machines.snapshot AS machines_snapshot, machines.locked AS machines_locked, machines.locked_changed_on AS machines_locked_changed_on, machines.status AS machines_status, machines.status_changed_on AS machines_status_changed_on, machines.resultserver_ip AS machines_resultserver_ip, machines.resultserver_port AS machines_resultserver_port, machines.reserved AS machines_reserved, tags_1.id AS tags_1_id, tags_1.name AS tags_1_name \r\nFROM machines LEFT OUTER JOIN (machines_tags AS machines_tags_1 JOIN tags AS tags_1 ON tags_1.id = machines_tags_1.tag_id) ON machines.id = machines_tags_1.machine_id \r\nWHERE machines.reserved = false\r\n2024-09-18 18:32:38,711 [sqlalchemy.engine.Engine] INFO: SELECT machines.id AS machines_id, machines.name AS machines_name, machines.label AS machines_label, machines.arch AS machines_arch, machines.ip AS machines_ip, machines.platform AS machines_platform, machines.interface AS machines_interface, machines.snapshot AS machines_snapshot, machines.locked AS machines_locked, machines.locked_changed_on AS machines_locked_changed_on, machines.status AS machines_status, machines.status_changed_on AS machines_status_changed_on, machines.resultserver_ip AS machines_resultserver_ip, machines.resultserver_port AS machines_resultserver_port, machines.reserved AS machines_reserved, tags_1.id AS tags_1_id, tags_1.name AS tags_1_name \r\nFROM machines LEFT OUTER JOIN (machines_tags AS machines_tags_1 JOIN tags AS tags_1 ON tags_1.id = machines_tags_1.tag_id) ON machines.id = machines_tags_1.machine_id \r\nWHERE machines.reserved = false\r\n2024-09-18 18:32:38,725 INFO sqlalchemy.engine.Engine [cached since 29.73s ago] {}\r\n2024-09-18 18:32:38,725 [sqlalchemy.engine.Engine] INFO: [cached since 29.73s ago] {}\r\n2024-09-18 18:32:38,731 [modules.machinery.az] DEBUG: Trying <bound method UsageOperations.list of <azure.mgmt.compute.v2024_07_01.operations._operations.UsageOperations object at 0x7fab720be980>>(('XXX',),{})\r\n2024-09-18 18:32:39,030 [modules.machinery.az] DEBUG: Scaling vmsscape-win10x64-60 size from 0 -> 1\r\n2024-09-18 18:32:39,045 [modules.machinery.az] DEBUG: Trying <bound method VirtualMachineScaleSetsOperations.get of <azure.mgmt.compute.v2024_07_01.operations._operations.VirtualMachineScaleSetsOperations object at 0x7fab7172f8e0>>(('XXX', 'vmsscape-win10x64-60'),{})\r\n2024-09-18 18:32:39,133 [modules.machinery.az] DEBUG: Trying <bound method VirtualMachineScaleSetsOperations.begin_update of <azure.mgmt.compute.v2024_07_01.operations._operations.VirtualMachineScaleSetsOperations object at 0x7fab6fe8ec50>>(('XXX', 'vmss-cape-win10x64-60', <azure.mgmt.compute.v2024_07_01.models._models_py3.VirtualMachineScaleSet object at 0x7fab6fe8f490>),{'polling_interval': 1})\r\n\nComment: could it be related to another AZ issues that is in WIP? as we don't run it we can't help here\nComment: Hi @doomedraven, I can't say for sure. I am trying to resolve the issue and have tried a lot of things. Just wanted to open it here to see if anyone is either facing the same issue or was able to make Azure work since the revamp of the database which happened a while ago. Also maybe a quick glance from @tbeadle might help since he's probably way better than I am on DB issues.\nComment: yes make sense\nComment: So I was able to make it work. It seem that for some reasons the function add_machine() from the database require a flush() and commit(). I don't know all the involvement on that but it is strange to me that AZ would be the only machinery affected by this. It could be a versionning issue somehow. Python3.10.14, SQLAlchemy==1.4.50, SQLAlchemy-Utils==0.41.1,sqlparse==0.5.0 which is exactly the version from the requirements.txt and poetry.  \nComment: so far versions looks ok %) but yes is strange, i did deployment of new servers on GCP 2 days ago and no issues with kvm\nComment: @cccs-mog Can you try these on your end in the following order. Before/after each you should start/stop the cape.service:\r\n1. Run `cleaners.py --clean`.\r\n2. Try deleting all of the VMSS instances in Azure. Once they are completely removed, run `cleaners.py --clean`.\r\n3. Try the same steps as 2, but delete the entire VMSS instead of the instances.\r\n\r\nI noticed that I was getting errors when a VMSS from a previous cape.service run. I'm pretty sure it was only when the previous run's machines still existed at startup. For my case, running the cleaners util fixed that.\nComment: Sorry in advanced for the long comment. I have tracked down what causes my issue described above. You may not be experiencing the same thing, but something very similar. \r\n\r\n`scheduler.py` - **Note the session context manager**.\r\n```\r\n    def start(self):\r\n        \"\"\"Start scheduler.\"\"\"\r\n        if self.machinery_manager:\r\n            with self.db.session.begin():\r\n                self.machinery_manager.initialize_machinery()\r\n```\r\n\r\n`machinery_manager.py`\r\n```\r\n    def initialize_machinery(self) -> None:\r\n        \"\"\"Initialize the machines in the database and initialize routing for them.\"\"\"\r\n        try:\r\n            self.machinery.initialize()\r\n```\r\n\r\n`abstracts.py`\r\n```\r\n    def initialize(self) -> None:\r\n        \"\"\"Read, load, and verify machines configuration.\"\"\"\r\n        # Machine table is cleaned to be filled from configuration file\r\n        # at each start.\r\n        self.db.clean_machines()\r\n\r\n        # Load.\r\n        self._initialize()\r\n\r\n        # Run initialization checks.\r\n        self._initialize_check()\r\n```\r\n\r\n`database.py` - Here, existing machines in the database are removed correctly, but the transaction is still within the original session context manager.\r\n```\r\n    def clean_machines(self):\r\n        \"\"\"Clean old stored machines and related tables.\"\"\"\r\n        # Secondary table.\r\n        # TODO: this is better done via cascade delete.\r\n        # self.engine.execute(machines_tags.delete())\r\n\r\n        self.session.execute(machines_tags.delete())\r\n        self.session.query(Machine).delete()\r\n```\r\n\r\nFinally, `az.py` - We override `_initialize` and `_initialize_check`, still acting within the `scheduler.py` session context manager. In the az machinery, `begin_reimage_all` is called on an existing, required VMSS with greater than 0 machines. This that flow.\r\n```\r\ndef _initialize_check(self):\r\n    ...\r\n    self._set_vmss_stage()\r\n\r\ndef _set_vmss_stage(self):\r\n    ...\r\n        for vmss, vals in self.required_vmsss.items():\r\n            if vals[\"exists\"] and not self.options.az.just_start:\r\n                if machine_pools[vmss][\"size\"] == 0:\r\n                    self._thr_scale_machine_pool(self.options.az.scale_sets[vmss].pool_tag, True if vals[\"platform\"] else False),\r\n                else:\r\n                    # Reimage VMSS!\r\n                    thr = threading.Thread(\r\n                        target=self._thr_reimage_vmss,\r\n                        args=(vmss,),\r\n                    )\r\n                    vmss_reimage_threads.append(thr)\r\n                    thr.start()\r\n    ...\r\n        for thr in vmss_reimage_threads + vmss_creation_threads:\r\n            thr.join()\r\n    \r\ndef _thr_reimage_vmss(self, vmss_name):\r\n    ...\r\n    try:\r\n        async_reimage_all = Azure._azure_api_call(\r\n            self.options.az.sandbox_resource_group,\r\n            vmss_name,\r\n            polling_interval=1,\r\n            operation=self.compute_client.virtual_machine_scale_sets.begin_reimage_all,\r\n        )\r\n        _ = self._handle_poller_result(async_reimage_all)\r\n    except CuckooMachineError as e:\r\n    ...\r\n    with self.db.session.begin():\r\n        self._add_machines_to_db(vmss_name)\r\n```\r\nThat new session context manager at the end is the issue, but also necessary. While the main thread responsible for initializing the az machinery has still not closed, we create a subthread that creates its own session context manager. Because the `clean_machines` transaction still hasn't been committed, the machines from the previous run are present as far as the subthread knows when it hits the DB.\r\n\r\nIn `_add_machines_to_db`, the variable `machines_in_db` has the machines we assume were removed, so this check is going to skip adding the machine to the DB:\r\n```\r\n            machines_in_db = self.db.list_machines()\r\n            db_machine_labels = [machine.label for machine in machines_in_db]\r\n            ...\r\n            # Get all VMs in the VMSS\r\n            paged_vmss_vms = Azure._azure_api_call(\r\n                self.options.az.sandbox_resource_group,\r\n                vmss_name,\r\n                operation=self.compute_client.virtual_machine_scale_set_vms.list,\r\n            )\r\n            ...\r\n                for vmss_vm in paged_vmss_vms:\r\n                if vmss_vm.name in db_machine_labels:\r\n                    # Don't add it if it already exists!\r\n                    continue\r\n``` \r\n\r\n\r\nSnippet of logs demonstrating this behavior:\r\n```\r\n[lib.cuckoo.core.machinery_manager] INFO: Using MachineryManager[az] with max_machines_count=0\r\n[lib.cuckoo.core.scheduler] INFO: Creating scheduler with max_analysis_count=unlimited\r\n[lib.cuckoo.core.database] WARNING: In database._Database.clean_machines before delete: self.list_machines() = [<Machine(2,'cape-guest-vmss-win10x64_20')>]\r\n[lib.cuckoo.core.database] WARNING: In database._Database.clean_machines after delete: self.list_machines() = []\r\n[modules.machinery.az] WARNING: Start of _set_vmss_stage: self.db.list_machines() = []\r\n...\r\n[modules.machinery.az] WARNING: Before joining threads in _set_vmss_stage: self.db.list_machines() = []\r\n# Note, the log below returns the same list of machines that we got before we deleted them in clean_machines\r\n[modules.machinery.az] WARNING: In _thr_reimage_vmss: self.db.list_machines() = [<Machine(2,'cape-guest-vmss-win10x64_20')>]\r\n[modules.machinery.az] WARNING: Start of _add_machines_to_db: self.db.list_machines() = [<Machine(2,'cape-guest-vmss-win10x64_20')>].\r\n[modules.machinery.az] DEBUG: Adding machines to database for cape-guest-vmss-win10x64.\r\n[modules.machinery.az] DEBUG: Trying <bound method NetworkInterfacesOperations.list_virtual_machine_scale_set_network_interfaces of <azure.mgmt.network.operations._operations.NetworkInterfacesOperations object at 0x75b0a7712ef0>>(('XXX', 'cape-guest-vmss-win10x64'),{})\r\n[modules.machinery.az] WARNING:In 'if vmss_vm.name in db_machine_labels' block of _add_machines_to_db: cape-guest-vmss-win10x64_20 exists in the db, skipping.\r\n[modules.machinery.az] WARNING: After subthreads exit in _set_vmss_stage: self.db.list_machines() = [].\r\n[root] CRITICAL: CuckooCriticalError: No machines available\r\n```\r\n\r\nThe problem you're running into seems a little different. You're machines are somehow being added to `ready_vmss_vm_threads`, as evident by this log `[modules.machinery.az] DEBUG: Machine vmss-cape-win10x64-60_0 was created and available in 0s`. I am having a hard time understanding how you are reaching this point in the code, though.\r\n\r\nFrom your logs, I think this is the part that indicates our problem is at least related. Time stamps line up.\r\n```\r\n# Likely logs from the creation of the session context manager in the scheduler\r\n2024-09-18 18:26:45,417 INFO sqlalchemy.engine.Engine BEGIN (implicit)\r\n2024-09-18 18:26:45,417 [sqlalchemy.engine.Engine] INFO: BEGIN (implicit)\r\n\r\n# The critical failure\r\n2024-09-18 18:32:22,260 [root] CRITICAL: CuckooCriticalError: No machines available\r\n\r\n# Further on, logs showing cached with one transaction pending.\r\n2024-09-18 18:32:38,703 INFO sqlalchemy.engine.Engine [cached since 353.3s ago] {'status_1': 'pending'}\r\n2024-09-18 18:32:38,703 [sqlalchemy.engine.Engine] INFO: [cached since 353.3s ago] {'status_1': 'pending'}\r\n```\nComment: All that to say, I don't have a good idea for a fix here. Maybe it would be possible to move the `self.db.clean_machines()` call out of the initialize method, but I don't know if that is going to break things for folks using other hypervisors.\r\n\r\nFor the time being, my first comment has been a sure-fire workaround for this.\nComment: Hi @ChrisThibodeaux, I also faced that issue in the past and applied a similar approach for a temporary fix. It is somehow of a pain but only on each restart. It doesn't seem like anything changed so I think it's because I started with a fresh db or something like that. In any case like you point out, the issue is similar and is caused by the session span without commit interlocking needs and conditions which are contradicting. I would assume it is possible to keep the logic intact for every machinery but separate the session manager in smaller units which would fix it for AZ. I will do some tests, then PR so the fix can be tested and hopefully work well for all machinery. \nComment: @cccs-mog Looking forward to the PR, would be great to have a fix for this.\r\n\r\nI am wondering now if this is related to another issue I have seen, maybe you can provide some insight here. Suppose I have: \r\n1. CAPE running with a VMSS\r\n2. A given machine finishes a task and we attempt to reimage it\r\n6. Somewhere, somehow, something goes wrong. From that point on, once **_any_** machine running an analysis finishes, it is unable to pick up a new task.\r\n7. Reimaged machine is also never able to pick up another task\r\n\r\nIt has only ever happened to me a couple times, and unfortunately I did not have the DB logs enabled at the time. I have patched the `az.py` machinery with a fix locally that has prevented it from ever happening again. I am hoping that this is somehow related to the current issues we have discussed.\r\n\r\n\r\n**Edit:**\r\n\r\nHad it crop up right after I made this comment... Seems like a couple of issues to unpack, all stemming from a problem on my end with Azure taking so long to delete/reimage machines. No idea what that's about.. For now, I'm going to copy what you have in your PR and bump the timeout up to 300 seconds.\r\n\r\nThose timeouts make the threads call `delete_machine`, but the DB removals don't persist (per the session manager issue). Since out monitor thread -> scaling thread can't delete the machine before the scheduler assigns it a new task, Azure timeouts for reimaging/deletions are critical failures.\r\n\r\nI have a fix by checking the machine in the `az.start` method. I'll be putting a PR up for it and a few other minor changes when I can confirm it fixes the problem. Here are the logs from when this happened if you're curious.\r\n\r\n```\r\n**# Two machines, 36/37, finish their tasks.**\r\n2024-09-20 02:02:09,378 [lib.cuckoo.core.guest] INFO: Task #2: End of analysis reached! (id=cape-guest-vmss-win10x64_37, ip=10.2.2.7)\r\n2024-09-20 02:02:10,686 [lib.cuckoo.core.guest] INFO: Task #3: End of analysis reached! (id=cape-guest-vmss-win10x64_36, ip=10.2.2.6)\r\n2024-09-20 02:02:15,448 [lib.cuckoo.core.resultserver] DEBUG: Task #2: Stopped tracking machine 10.2.2.7\r\n2024-09-20 02:02:15,451 [modules.machinery.az] DEBUG: Stopping machine 'cape-guest-vmss-win10x64_37'\r\n2024-09-20 02:02:15,568 [lib.cuckoo.core.resultserver] DEBUG: Task #3: Stopped tracking machine 10.2.2.6\r\n2024-09-20 02:02:15,570 [modules.machinery.az] DEBUG: Stopping machine 'cape-guest-vmss-win10x64_36'\r\n**# Reimaging thread makes API call to reimage 36/37.**\r\n2024-09-20 02:02:18,796 [modules.machinery.az] DEBUG: Trying <bound method VirtualMachineScaleSetsOperations.begin_reimage_all of <azure.mgmt.compute.v2024_03_01.operations._operations.VirtualM>\r\n...\r\n**# Reimaging thread removes the machines from the database and queues them to be removed from the VMSS.**\r\n2024-09-20 02:04:19,123 [modules.machinery.az] DEBUG: Reimaging machines ['36', '37'] in vmss-win10x64 took too long, deleting them from the DB and the VMSS.\r\n2024-09-20 02:04:19,134 [modules.machinery.az] DEBUG: Reimaging instances ['36', '37'] in vmss-win10x64 took 120s\r\n**# Thread finishes and returns. Machines appear back in the DB.**\r\n**# Machine 37 is scheduled for another task. As it still exists on the VMSS, it runs.**\r\n2024-09-20 02:04:20,877 [lib.cuckoo.core.machinery_manager] INFO: Task #7: found useable machine vmss-win10x64_37 (arch=x64, platform=windows)\r\n2024-09-20 02:04:20,877 [lib.cuckoo.core.scheduler] INFO: Task #7: Processing task\r\n...\r\n2024-09-20 02:04:20,899 [lib.cuckoo.core.analysis_manager] INFO: Task #7: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_8feacaqv/XXX'\r\n...\r\n2024-09-20 02:04:20,935 [lib.cuckoo.core.guest] INFO: Task #7: Starting analysis on guest (id=cape-guest-vmss-win10x64_37, ip=10.2.2.7)\r\n2024-09-20 02:04:20,947 [lib.cuckoo.core.guest] INFO: Task #7: Guest is running CAPE Agent 0.17 (id=cape-guest-vmss-win10x64_37, ip=10.2.2.7)\r\n2024-09-20 02:04:20,999 [lib.cuckoo.core.guest] DEBUG: Task #7: Uploading analyzer to guest (id=cape-guest-vmss-win10x64_37, ip=10.2.2.7, size=16933455)\r\n2024-09-20 02:04:21,414 [lib.cuckoo.core.guest] INFO: Task #7: Uploading script files to guest (id=cape-guest-vmss-win10x64_37, ip=10.2.2.7)\r\n2024-09-20 02:04:21,900 [lib.cuckoo.core.resultserver] DEBUG: Task #7: live log analysis.log initialized\r\n**# This was the original task of machine 37**\r\n2024-09-20 02:04:22,356 [lib.cuckoo.core.resultserver] DEBUG: Task #2 had connection reset by peer for <Context for None>\r\n...\r\n**# VMSS instance deletion API call for 36/37**\r\n2024-09-20 02:04:23,867 [modules.machinery.az] DEBUG: Trying <bound method VirtualMachineScaleSetsOperations.begin_delete_instances of <azure.mgmt.compute.v2024_03_01.operations._operations.Virt>\r\n...\r\n**# After deletion call, funky /status failed logs start to appear.**\r\nSep 20 02:04:36 hostname python3[2854305]: 2024-09-20 02:04:36,011 [lib.cuckoo.core.guest] WARNING: Task #7: Virtual Machine cape-guest-vmss-win10x64_37 /status failed. This can indicate the guest losing network connectivity\r\nSep 20 02:04:37 hostname python3[2854305]: 2024-09-20 02:04:37,015 [lib.cuckoo.core.guest] DEBUG: Task #7: Analysis is still running (id=cape-guest-vmss-win10x64_37, ip=10.2.2.7)\r\n...\r\n**# Deletion times out.**\r\n2024-09-20 02:06:24,174 [modules.machinery.az] DEBUG: Deleting machines ['36', '37'] in cape-guest-vmss-win10x64 took too long.\r\n2024-09-20 02:06:24,174 [modules.machinery.az] DEBUG: Deleting instances ['36', '37'] in cape-guest-vmss-win10x64 took 120s\r\n...\r\n**# Finally, machine 37 \"finishes\" the task.**\r\n2024-09-20 02:08:41,187 [lib.cuckoo.core.guest] DEBUG: Task #7: Analysis is still running (id=cape-guest-vmss-win10x64_37, ip=10.2.2.7)\r\n2024-09-20 02:08:43,251 [lib.cuckoo.core.guest] WARNING: Task #7: Virtual Machine cape-guest-vmss-win10x64_37 /status failed. This can indicate the guest losing network connectivity\r\n2024-09-20 02:08:44,255 [lib.cuckoo.core.guest] INFO: Task #7: End of analysis reached! (id=cape-guest-vmss-win10x64_37, ip=10.2.2.7)\r\n2024-09-20 02:08:44,403 [lib.cuckoo.core.resultserver] DEBUG: Task #7: Stopped tracking machine 10.2.2.7\r\n2024-09-20 02:08:44,404 [modules.machinery.az] DEBUG: Stopping machine 'cape-guest-vmss-win10x64_37'\r\n**# Reimaging attempt is made**\r\n2024-09-20 02:08:44,627 [modules.machinery.az] DEBUG: Trying <bound method VirtualMachineScaleSetsOperations.begin_reimage_all of <azure.mgmt.compute.v2024_03_01.operations._operations.VirtualMa>\r\n**# Attempt fails because the machine was removed from the VMSS.**\r\n2024-09-20 02:08:44,757 [modules.machinery.az] WARNING: Failed to <bound method VirtualMachineScaleSetsOperations.begin_reimage_all of <azure.mgmt.compute.v2024_03_01.operations._operations.Virt>\r\nCode: InvalidParameter\r\nMessage: The provided instanceId 37 is not an active Virtual Machine Scale Set VM instanceId.\r\nTarget: instanceIds': '(InvalidParameter) The provided instanceId 37 is not an active Virtual Machine Scale Set VM instanceId.\r\nCode: InvalidParameter\r\nMessage: The provided instanceId 37 is not an active Virtual Machine Scale Set VM instanceId.\r\nTarget: instanceIds'.\r\n2024-09-20 02:08:44,758 [modules.machinery.az] ERROR: CuckooMachineError('(InvalidParameter) The provided instanceId 37 is not an active Virtual Machine Scale Set VM instanceId.\\nCode: InvalidPa>\r\nlib.cuckoo.common.exceptions.CuckooMachineError: (InvalidParameter) The provided instanceId 37 is not an active Virtual Machine Scale Set VM instanceId.\r\nCode: InvalidParameter\r\nMessage: The provided instanceId 37 is not an active Virtual Machine Scale Set VM instanceId.\r\nTarget: instanceIds:(InvalidParameter) The provided instanceId 37 is not an active Virtual Machine Scale Set VM instanceId.\r\nCode: InvalidParameter\r\nMessage: The provided instanceId 37 is not an active Virtual Machine Scale Set VM instanceId.\r\nTarget: instanceIds\r\n2024-09-20 02:08:44,766 [modules.machinery.az] WARNING: Machine cape-guest-vmss-win10x64_37 does not exist anymore. Deleting from database.\r\n2024-09-20 02:08:49,436 [lib.cuckoo.core.analysis_manager] INFO: Task #7: Completed analysis successfully.\r\n2024-09-20 02:08:49,442 [lib.cuckoo.core.analysis_manager] INFO: Task #7: analysis procedure completed\r\n```\nComment: Hey @cccs-mog, very big thanks to you and @cccs-kevin for all the work y'all have done on this module and in the replies across different issues. Both have been an immense help to me.\r\n\r\nI have a [PR](https://github.com/kevoreilly/CAPEv2/pull/2324) with a fix for what you faced here. I addressed a few other bugs dealing with timeouts, machine failures, etc. I tried to keep my changes in step with the spirit of the machinery as it was written, so please let me know if anything looks out of place.\r\n\r\nHope this helps!\nComment: so i guess we can close this now?\nComment: Exactly. Thanks a lot to you two ! \nComment: Much gratitude \ud83d\ude4f ",
+  "Title: Virt-manager LibVirt error in kvm-qemu.sh\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nInstall kvm-qemu via installation script and install virt-manager\r\n\r\n# Current Behavior\r\n\r\nafter running kvm-qemu.sh all {user} and rebooting and running kvm-qemu.sh virt-manager {user} and rebooting again. I attempt to open virt-manager and get the error Namespace LibVirtGlib not available.\r\n\r\n# Failure Information (for bugs)\r\n\r\nGetting this exact error\r\n![image](https://github.com/user-attachments/assets/b7089bd7-7170-45ac-88aa-abb8393c6cc7)\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. sudo ./kvm-qemu.sh all <username> | tee kvm-qemu.log\r\n2. reboot\r\n3.  sudo ./kvm-qemu.sh virtmanager <username> | tee kvm-qemu-virt-manager.log\r\n4. reboot\r\n5. try to open virt-manager to verify install, error raised\r\n6.  sudo ./kvm-qemu.sh libvirt <username> | tee kvm-qemu-virt-manager.log\r\n7. logout and login again\r\n8. try to open virt-manager to verify install, error raised\r\n\r\n## Context\r\n\r\nUbuntu 22.04.x, latest CAPEv2 versions.\r\n\nComment: and yes I read: \r\n\r\n> Important\r\n: \r\n> It is important to assert everything works as expected before moving forward. The vast majority of errors at this point can be solved by reinstalling the specific component with [kvm-qemu.sh](https://github.com/kevoreilly/CAPEv2/blob/master/installer/kvm-qemu.sh). For example, the error below was raised when trying to open virt-manager but libvirt installation was corrupted for some reason. Reinstalling libvirt with the script solved the issue.\r\n\r\n\nComment: Run --issues there is msg about this specific error\r\n\r\nEl mi\u00e9, 18 sept 2024, 17:20, xx0red ***@***.***> escribi\u00f3:\r\n\r\n> and yes I read:\r\n>\r\n> Important\r\n> :\r\n> It is important to assert everything works as expected before moving\r\n> forward. The vast majority of errors at this point can be solved by\r\n> reinstalling the specific component with kvm-qemu.sh\r\n> <https://github.com/kevoreilly/CAPEv2/blob/master/installer/kvm-qemu.sh>.\r\n> For example, the error below was raised when trying to open virt-manager\r\n> but libvirt installation was corrupted for some reason. Reinstalling\r\n> libvirt with the script solved the issue.\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2322#issuecomment-2358765721>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH32VT3LGJ5U3WPMZETDZXGK2LAVCNFSM6AAAAABON6D54SVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDGNJYG43DKNZSGE>\r\n> .\r\n> You are receiving this because you are subscribed to this thread.Message\r\n> ID: ***@***.***>\r\n>\r\n\nComment: it just says to run ./kvm-qemu.sh libvirt which I've already done as stated\nComment: oh it was bigger previously :D basically some problem here but no logs so i can't help\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/installer/kvm-qemu.sh#L691-L730\r\ngir1.2-libvirt-glib-1.0_1.0.0-1_amd64 or libvirt-glib-3.0.0 wasn't properly installed\nComment: [kvm-qemu.log](https://github.com/user-attachments/files/17049049/kvm-qemu.log)\r\n[kvm-qemu-libvirt.log](https://github.com/user-attachments/files/17049050/kvm-qemu-libvirt.log)\r\n[kvm-qemu-virt-manager.log](https://github.com/user-attachments/files/17049051/kvm-qemu-virt-manager.log)\r\n\nComment: not sure which logs you need, I didn't see any errors from what I saw but maybe I overlooked..\nComment: they looks fine, idk what is wrong, but i guess some lib wasn't properly linked\nComment: Well I\u2019ve reinstalled fresh twice now and still no luck.\r\n\r\nOn Wed, Sep 18, 2024 at 2:18\u202fPM doomedraven ***@***.***>\r\nwrote:\r\n\r\n> they looks fine, idk what is wrong, but i guess some lib wasn't properly\r\n> linked\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2322#issuecomment-2359229956>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/ARKCO3WYK62QSHGVULLGHK3ZXHGY5AVCNFSM6AAAAABON6D54SVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDGNJZGIZDSOJVGY>\r\n> .\r\n> You are receiving this because you authored the thread.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: I really tried to reproduce your error but didn't succeed. Just did what you mentioned here on 2 different systems: \r\n```\r\n1. sudo ./kvm-qemu.sh all | tee kvm-qemu.log\r\n2. reboot\r\n3. sudo ./kvm-qemu.sh virtmanager | tee kvm-qemu-virt-manager.log\r\n4. reboot\r\n5. try to open virt-manager to verify install -> it works\r\n```\r\nMaybe it's a more general underlying failure here. Not sure if this failure appears due to lack of virtualization support but it seems your system did not support virtualization as you can see in your logs:\r\n```\r\n[+] You should logout and login \r\nINFO: Your CPU does not support KVM extensions\r\nKVM acceleration can NOT be used\r\n  QEMU: Checking for hardware virtualization                                 : FAIL (Host not compatible with KVM; HW virtualization CPU features not found. Only emulated CPUs are available; performance will be significantly limited)\r\n```\nComment: Thanks Claudio, no, that error is due to incorrectly linked dependency, but I can't reproduce it, but I had it in past too\nComment: Hmm what to do lol\r\n\r\nOn Thu, Sep 19, 2024 at 2:34\u202fAM doomedraven ***@***.***>\r\nwrote:\r\n\r\n> Thanks Claudio, no, that error is due to incorrectly linked dependency,\r\n> but I can't reproduce it, but I had it in past too\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2322#issuecomment-2360212955>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/ARKCO3V4W7DIWGV4NGWKRO3ZXJ5BVAVCNFSM6AAAAABON6D54SVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDGNRQGIYTEOJVGU>\r\n> .\r\n> You are receiving this because you authored the thread.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: I've followed the documentation to a T, using VMware Ubuntu 22.04, changed **WOOT** to 'CORE', rebooted as necessary. Don't know what I'm doing wrong\nComment: It doesn't show in the .log file but in the terminal I do see this warning, not sure if relevant?\r\n\r\n```\r\n        CCLD     libvirt-gobject-1.0.la\r\n                                                                         GISCAN   LibvirtGObject-1.0.gir\r\n                        /tmp/libvirt-glib-3.0.0/libvirt-gobject/tmp-introspect9qv2n20v/LibvirtGObject-1.0.c: In function 'dump_object_type':\r\n/tmp/libvirt-glib-3.0.0/libvirt-gobject/tmp-introspect9qv2n20v/LibvirtGObject-1.0.c:251:3: warning: 'G_TYPE_FLAG_FINAL' is deprecated: Not available before 2.70 [-Wdeprecated-declarations]\r\n  251 |   if (G_TYPE_IS_FINAL (type))\r\n      |   ^~\r\nIn file included from /usr/include/glib-2.0/gobject/gobject.h:24,\r\n                 from /usr/include/glib-2.0/gobject/gbinding.h:29,\r\n                 from /usr/include/glib-2.0/glib-object.h:22,\r\n                 from /tmp/libvirt-glib-3.0.0/libvirt-gobject/tmp-introspect9qv2n20v/LibvirtGObject-1.0.c:30:\r\n/usr/include/glib-2.0/gobject/gtype.h:1050:3: note: declared here\r\n 1050 |   G_TYPE_FLAG_FINAL GLIB_AVAILABLE_ENUMERATOR_IN_2_70 = (1 << 6)\r\n      |   ^~~~~~~~~~~~~~~~~\r\n/tmp/libvirt-glib-3.0.0/libvirt-gobject/tmp-introspect9qv2n20v/LibvirtGObject-1.0.c:251:13: warning: Not available before 2.70\r\n  251 |   if (G_TYPE_IS_FINAL (type))\r\n      |             ^~~~~~~~~~~~~~~~~          \r\n/tmp/libvirt-glib-3.0.0/libvirt-gobject/tmp-introspect9qv2n20v/LibvirtGObject-1.0.c: In function 'dump_fundamental_type':\r\n/tmp/libvirt-glib-3.0.0/libvirt-gobject/tmp-introspect9qv2n20v/LibvirtGObject-1.0.c:369:3: warning: 'G_TYPE_FLAG_FINAL' is deprecated: Not available before 2.70 [-Wdeprecated-declarations]\r\n  369 |   if (G_TYPE_IS_FINAL (type))\r\n      |   ^~\r\nIn file included from /usr/include/glib-2.0/gobject/gobject.h:24,\r\n                 from /usr/include/glib-2.0/gobject/gbinding.h:29,\r\n                 from /usr/include/glib-2.0/glib-object.h:22,\r\n                 from /tmp/libvirt-glib-3.0.0/libvirt-gobject/tmp-introspect9qv2n20v/LibvirtGObject-1.0.c:30:\r\n/usr/include/glib-2.0/gobject/gtype.h:1050:3: note: declared here\r\n 1050 |   G_TYPE_FLAG_FINAL GLIB_AVAILABLE_ENUMERATOR_IN_2_70 = (1 << 6)\r\n      |   ^~~~~~~~~~~~~~~~~\r\n/tmp/libvirt-glib-3.0.0/libvirt-gobject/tmp-introspect9qv2n20v/LibvirtGObject-1.0.c:369:13: warning: Not available before 2.70\r\n  369 |   if (G_TYPE_IS_FINAL (type))\r\n      |             ^~~~~~~~~~~~~~~~~          \r\n  GICOMP   LibvirtGObject-1.0.gir\r\n                                 make[3]: Leaving directory '/tmp/libvirt-glib-3.0.0/libvirt-gobject'\r\n                     make[2]: Leaving directory '/tmp/libvirt-glib-3.0.0/libvirt-gobject'\r\n         Making all in vapi\r\n                           make[2]: Entering directory '/tmp/libvirt-glib-3.0.0/vapi'\r\n     make[2]: Nothing to be done for 'all'.\r\n                                           make[2]: Leaving directory '/tmp/libvirt-glib-3.0.0/vapi'\r\n                    Making all in examples\r\n                                          make[2]: Entering directory '/tmp/libvirt-glib-3.0.0/examples'\r\n                          CC       event_test-event-test.o\r\n                                                            CC       conn_test-conn-test.o\r\n            CCLD     event-test\r\n                                 CCLD     conn-test\r\n                                                   make[2]: Leaving directory '/tmp/libvirt-glib-3.0.0/examples'\r\n                                Making all in docs\r\n                                                  make[2]: Entering directory '/tmp/libvirt-glib-3.0.0/docs'\r\n                            Making all in libvirt-glib\r\n                                                      make[3]: Entering directory '/tmp/libvirt-glib-3.0.0/docs/libvirt-glib'\r\n                                             make[3]: Nothing to be done for 'all'.\r\n   make[3]: Leaving directory '/tmp/libvirt-glib-3.0.0/docs/libvirt-glib'\r\n                                                                         Making all in libvirt-gobject\r\n                      make[3]: Entering directory '/tmp/libvirt-glib-3.0.0/docs/libvirt-gobject'\r\n                make[3]: Nothing to be done for 'all'.\r\n                                                      make[3]: Leaving directory '/tmp/libvirt-glib-3.0.0/docs/libvirt-gobject'\r\n                                               Making all in libvirt-gconfig\r\n                                                                            make[3]: Entering directory '/tmp/libvirt-glib-3.0.0/docs/libvirt-gconfig'\r\n                                                                      make[3]: Nothing to be done for 'all'.\r\n                            make[3]: Leaving directory '/tmp/libvirt-glib-3.0.0/docs/libvirt-gconfig'\r\n                     make[3]: Entering directory '/tmp/libvirt-glib-3.0.0/docs'\r\n                                                                               make[3]: Nothing to be done for 'all-am'.\r\n                                        make[3]: Leaving directory '/tmp/libvirt-glib-3.0.0/docs'\r\n                 make[2]: Leaving directory '/tmp/libvirt-glib-3.0.0/docs'\r\n                                                                          Making all in po\r\n          make[2]: Entering directory '/tmp/libvirt-glib-3.0.0/po'\r\n                                                                  make[2]: Nothing to be done for 'all'.\r\n                        make[2]: Leaving directory '/tmp/libvirt-glib-3.0.0/po'\r\n                                                                               Making all in tests\r\n                  make[2]: Entering directory '/tmp/libvirt-glib-3.0.0/tests'\r\n                                                                             make  all-am\r\n         make[3]: Entering directory '/tmp/libvirt-glib-3.0.0/tests'\r\n                                                                    make[3]: Nothing to be done for 'all-am'.\r\n                             make[3]: Leaving directory '/tmp/libvirt-glib-3.0.0/tests'\r\n       make[2]: Leaving directory '/tmp/libvirt-glib-3.0.0/tests'\r\n                                                                 make[2]: Entering directory '/tmp/libvirt-glib-3.0.0'\r\n                                      make[2]: Leaving directory '/tmp/libvirt-glib-3.0.0'\r\n          make[1]: Leaving directory '/tmp/libvirt-glib-3.0.0'\r\n                                                              dpkg: error: cannot access archive 'gir1.2-libvirt-glib-1.0_1.0.0-1_amd64.deb': No such file or directory\r\nCloning into 'virt-manager'...\r\nremote: Enumerating objects: 63544, done.\r\nremote: Counting objects: 100% (1687/1687), done.\r\nremote: Compressing objects: 100% (479/479), done.\r\nremote: Total 63544 (delta 1337), reused 1366 (delta 1208), pack-reused 61857 (from 1)\r\nReceiving objects: 100% (63544/63544), 92.35 MiB | 22.23 MiB/s, done.\r\nResolving deltas: 100% (52672/52672), done.\r\n[+] Cloned Virt Manager repo\r\n\r\n```\nComment: Yes that one is exactly which says what is wrong\nComment: Do you have a fix?\nComment: No, bcz it works for me\r\n\r\nEl jue, 19 sept 2024, 23:15, xx0red ***@***.***> escribi\u00f3:\r\n\r\n> Do you have a fix?\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2322#issuecomment-2362211759>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH335T2J5UYC5FWD5GD3ZXM5HNAVCNFSM6AAAAABON6D54SVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDGNRSGIYTCNZVHE>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: ```\r\nusing VMware Ubuntu 22.04\r\n```\r\n\r\nHmm VMware? So your Ubuntu is in a vm? What about your windows vms... don't say nested!\nComment: It is indeed nested, I believe the problem was that the VM was not setup for virtualization. Ideally I'd like to just deploy a second Windows VM and use that instead of being nested, but I'm unsure how atm.\nComment: Well doomed and I don't always agree when it comes to this issue, but I think it's a terrible idea and something which you probably should have mentioned in the beginning.\r\n\r\nThe only positive argument for nesting is that it makes the job of installing cape easier somehow for new users - but it comes at a very great price in terms of malware compatibility - to have two distinct hypervisors as well as an extra layer of virtualisation significantly multiplies the chances of samples not running due to vm detection/timing issues. Also issues like this with virtualisation features not being present in the nested hypervisor are to be expected.\r\n\r\nIt is for this reason that I wrote a machinery module for VMware workstation, to complement that for ESXi so all VMware platforms are covered for non-nested use. But ultimately I still recommend ditching VMware completely as it's not good for malware research for reasons mentioned above, and is one of many reasons we recommend KVM above all else.\nComment: Well nested not related to the issue, the thing is that till next deploy of\r\nmy server and if it fail I won't investigate that, as if I can't reproduce\r\nit I can't fix it, I did deployment last week without issues\r\n\r\nEl lun, 23 sept 2024, 17:00, kevoreilly ***@***.***> escribi\u00f3:\r\n\r\n> Well doomed and I don't always agree when it comes to this issue, but I\r\n> think it's a terrible idea and something which you probably should have\r\n> mentioned in the beginning.\r\n>\r\n> The only positive argument for nesting is that it makes the job of\r\n> installing cape easier somehow for new users - but it comes at a very great\r\n> price in terms of malware compatibility - to have two distinct hypervisors\r\n> as well as an extra layer of virtualisation significantly multiplies the\r\n> chances of samples not running due to vm detection/timing issues. Also\r\n> issues like this with virtualisation features not being present in the\r\n> nested hypervisor are to be expected.\r\n>\r\n> It is for this reason that I wrote a machinery modules for VMware\r\n> workstation, to complement that for ESXi so all VMware platforms are\r\n> covered for non-nested use. But ultimately I still recommend ditching\r\n> VMware completely as it's not good for malware research for reasons\r\n> mentioned above, and is one of many reasons we recommend KVM above all else.\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2322#issuecomment-2368550706>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH344XMUYAB4Z3WF6X6DZYAUJLAVCNFSM6AAAAABON6D54SVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDGNRYGU2TANZQGY>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: btw if you need virt-manager and can't fix that by yourself, you can use https://hub.docker.com/r/mber5/virt-manager is what im using on non linux OS \nComment: there is update to build virt-manager, you can try it, but it works here just fine, so if it still doesn't work for you, i can't reproduce it so i can't really investigate that https://github.com/kevoreilly/CAPEv2/commit/75f3d2966ebdf099a5ad05b96d75633ac28eb931\nComment: Hi @xx0red, I recently ran into this same issue and resolved it by manually installing libvirt-glib-1.0 via apt: `sudo apt-get install libvirt-glib-1.0`.\n\nI understand that installing packages via APT can break other things within that script, but that is an option available to you if you are willing to risk it.\nComment: thanks @skneppel i just found the same. is kinda ok to install things from apt, you just need to be careful and read what extra dependencies it gonna to install, to avoid anything related to qemu/libvirt\nComment: if you want to help to spot what is wrong, run by hand this code, line by line as root and see if any error happens, i just rerun it, and it works for me, so i can't fix something that works\nhttps://github.com/kevoreilly/CAPEv2/blob/master/installer/kvm-qemu.sh#L683-L723\nComment: Unfortunately, when I ran those lines manually, I did not see any errors either, other than some commands needing to be run as sudo. However, virt-manager gives me the same error, as seen below. A reboot does not change the outcome, either. \n\nThis is running on Ubuntu 22.04.5 with the latest patches. Out of curiosity, when you test, are you running those tests within a VM or a physical device? I doubt that is relevant, but, FWIW, I am running this on a VM with hardware virtualization enabled for testing. I believe @xx0red was doing so as well.\n\n```\nskneppel@cape:~$ sudo updatedb\n[sudo] password for skneppel: \nskneppel@cape:~$ temp_libvirt_so_path=$(locate libvirt-qemu.so | head -n1 | awk '{print $1;}')\nskneppel@cape:~$ temp_export_path=$(locate libvirt.pc | head -n1 | awk '{print $1;}')\nskneppel@cape:~$ libvirt_so_path=\"${temp_libvirt_so_path%/*}/\"\nskneppel@cape:~$ export_path=\"${temp_export_path%/*}/\"\nskneppel@cape:~$ export PKG_CONFIG_PATH=$export_path\nskneppel@cape:~$ cd /tmp || return\nskneppel@cape:/tmp$ if [ ! -d \"libvirt-glib\" ]; then\n        git clone https://gitlab.com/libvirt/libvirt-glib.git\n    fi\nCloning into 'libvirt-glib'...\nremote: Enumerating objects: 7909, done.\nremote: Counting objects: 100% (1163/1163), done.\nremote: Compressing objects: 100% (319/319), done.\nremote: Total 7909 (delta 851), reused 1137 (delta 826), pack-reused 6746 (from 1)\nReceiving objects: 100% (7909/7909), 1.57 MiB | 12.95 MiB/s, done.\nResolving deltas: 100% (6463/6463), done.\nskneppel@cape:/tmp$ cd libvirt-glib\nskneppel@cape:/tmp/libvirt-glib$ meson setup builddir\nThe Meson build system\nVersion: 1.6.1\nSource dir: /tmp/libvirt-glib\nBuild dir: /tmp/libvirt-glib/builddir\nBuild type: native build\nProject name: libvirt-glib\nProject version: 6.0.0\nC compiler for the host machine: cc (gcc 11.4.0 \"cc (Ubuntu 11.4.0-1ubuntu1~22.04) 11.4.0\")\nC linker for the host machine: cc ld.bfd 2.38\nHost machine cpu family: x86_64\nHost machine cpu: x86_64\nProgram python3 found: YES (/usr/bin/python3)\nFound pkg-config: YES (/usr/bin/pkg-config) 0.29.2\nRun-time dependency glib-2.0 found: YES 2.72.4\nRun-time dependency gobject-2.0 found: YES 2.72.4\nRun-time dependency gio-2.0 found: YES 2.72.4\nRun-time dependency libvirt found: YES 10.10.0\nRun-time dependency libxml-2.0 found: YES 2.9.13\nProgram check-symfile.py found: YES (/tmp/libvirt-glib/build-aux/check-symfile.py)\nProgram check-symsorting.py found: YES (/tmp/libvirt-glib/build-aux/check-symsorting.py)\nProgram dist.py found: YES (/tmp/libvirt-glib/build-aux/dist.py)\nProgram gen-authors.py found: YES (/tmp/libvirt-glib/build-aux/gen-authors.py)\nConfiguring Makefile using configuration\nProgram make found: YES (/usr/bin/make)\nProgram g-ir-scanner found: YES (/usr/bin/g-ir-scanner)\nCompiler for language vala for the host machine not found.\nProgram gtkdoc-scan found: YES (/usr/bin/gtkdoc-scan)\nCompiler for C supports link arguments -Wl,--no-undefined: YES \nConfiguring config.h using configuration\nConfiguring libvirt-glib.spec using configuration\nConfiguring libvirt-glib-1.0.pc using configuration\nConfiguring libvirt-gconfig-1.0.pc using configuration\nConfiguring libvirt-gobject-1.0.pc using configuration\nChecking for size of \"ptrdiff_t\" : 8 \nChecking for size of \"size_t\" : 8 \nCompiler for C supports arguments -fstack-protector-strong: YES \nFirst supported argument: -fstack-protector-strong\nCompiler for C supports arguments -Werror: YES \nCompiler for C supports arguments -fasynchronous-unwind-tables: YES \nCompiler for C supports arguments -fexceptions: YES \nCompiler for C supports arguments -fipa-pure-const: YES \nCompiler for C supports arguments -fno-common: YES \nCompiler for C supports arguments -Wabsolute-value: YES \nCompiler for C supports arguments -Waddress: YES \nCompiler for C supports arguments -Waddress-of-packed-member: YES \nCompiler for C supports arguments -Waggressive-loop-optimizations: YES \nCompiler for C supports arguments -Walloc-size-larger-than=9223372036854775807: YES \nCompiler for C supports arguments -Warray-bounds=2: YES \nCompiler for C supports arguments -Wattribute-alias=2: YES \nCompiler for C supports arguments -Wattribute-warning: YES \nCompiler for C supports arguments -Wattributes: YES \nCompiler for C supports arguments -Wbool-compare: YES \nCompiler for C supports arguments -Wbool-operation: YES \nCompiler for C supports arguments -Wbuiltin-declaration-mismatch: YES \nCompiler for C supports arguments -Wbuiltin-macro-redefined: YES \nCompiler for C supports arguments -Wcannot-profile: YES \nCompiler for C supports arguments -Wno-cast-function-type: YES \nCompiler for C supports arguments -Wchar-subscripts: YES \nCompiler for C supports arguments -Wclobbered: YES \nCompiler for C supports arguments -Wcomment: YES \nCompiler for C supports arguments -Wcomments: YES \nCompiler for C supports arguments -Wcoverage-mismatch: YES \nCompiler for C supports arguments -Wcpp: YES \nCompiler for C supports arguments -Wdangling-else: YES \nCompiler for C supports arguments -Wdate-time: YES \nCompiler for C supports arguments -Wdeprecated-declarations: YES \nCompiler for C supports arguments -Wdesignated-init: YES \nCompiler for C supports arguments -Wdiscarded-array-qualifiers: YES \nCompiler for C supports arguments -Wdiscarded-qualifiers: YES \nCompiler for C supports arguments -Wdiv-by-zero: YES \nCompiler for C supports arguments -Wduplicated-cond: YES \nCompiler for C supports arguments -Wduplicate-decl-specifier: YES \nCompiler for C supports arguments -Wempty-body: YES \nCompiler for C supports arguments -Wendif-labels: YES \nCompiler for C supports arguments -Wexpansion-to-defined: YES \nCompiler for C supports arguments -Wformat-contains-nul: YES \nCompiler for C supports arguments -Wformat-extra-args: YES \nCompiler for C supports arguments -Wno-format-nonliteral: YES \nCompiler for C supports arguments -Wformat-overflow=2: YES \nCompiler for C supports arguments -Wformat-security: YES \nCompiler for C supports arguments -Wno-format-truncation: YES \nCompiler for C supports arguments -Wformat-y2k: YES \nCompiler for C supports arguments -Wformat-zero-length: YES \nCompiler for C supports arguments -Wframe-address: YES \nCompiler for C supports arguments -Wframe-larger-than=1024: YES \nCompiler for C supports arguments -Wfree-nonheap-object: YES \nCompiler for C supports arguments -Whsa: YES \nCompiler for C supports arguments -Wif-not-aligned: YES \nCompiler for C supports arguments -Wignored-attributes: YES \nCompiler for C supports arguments -Wignored-qualifiers: YES \nCompiler for C supports arguments -Wimplicit: YES \nCompiler for C supports arguments -Wimplicit-fallthrough=5: YES \nCompiler for C supports arguments -Wimplicit-function-declaration: YES \nCompiler for C supports arguments -Wimplicit-int: YES \nCompiler for C supports arguments -Wincompatible-pointer-types: YES \nCompiler for C supports arguments -Winit-self: YES \nCompiler for C supports arguments -Winline: YES \nCompiler for C supports arguments -Wint-conversion: YES \nCompiler for C supports arguments -Wint-in-bool-context: YES \nCompiler for C supports arguments -Wint-to-pointer-cast: YES \nCompiler for C supports arguments -Winvalid-memory-model: YES \nCompiler for C supports arguments -Winvalid-pch: YES \nCompiler for C supports arguments -Wjump-misses-init: YES \nCompiler for C supports arguments -Wlogical-not-parentheses: YES \nCompiler for C supports arguments -Wlogical-op: YES \nCompiler for C supports arguments -Wmain: YES \nCompiler for C supports arguments -Wmaybe-uninitialized: YES \nCompiler for C supports arguments -Wmemset-elt-size: YES \nCompiler for C supports arguments -Wmemset-transposed-args: YES \nCompiler for C supports arguments -Wmisleading-indentation: YES \nCompiler for C supports arguments -Wmissing-attributes: YES \nCompiler for C supports arguments -Wmissing-braces: YES \nCompiler for C supports arguments -Wmissing-declarations: YES \nCompiler for C supports arguments -Wmissing-field-initializers: YES \nCompiler for C supports arguments -Wmissing-include-dirs: YES \nCompiler for C supports arguments -Wmissing-parameter-type: YES \nCompiler for C supports arguments -Wmissing-profile: YES \nCompiler for C supports arguments -Wmissing-prototypes: YES \nCompiler for C supports arguments -Wmultichar: YES \nCompiler for C supports arguments -Wmultistatement-macros: YES \nCompiler for C supports arguments -Wnarrowing: YES \nCompiler for C supports arguments -Wnested-externs: YES \nCompiler for C supports arguments -Wnonnull: YES \nCompiler for C supports arguments -Wnonnull-compare: YES \nCompiler for C supports arguments -Wnormalized=nfc: YES \nCompiler for C supports arguments -Wnull-dereference: YES \nCompiler for C supports arguments -Wodr: YES \nCompiler for C supports arguments -Wold-style-declaration: YES \nCompiler for C supports arguments -Wold-style-definition: YES \nCompiler for C supports arguments -Wopenmp-simd: YES \nCompiler for C supports arguments -Woverflow: YES \nCompiler for C supports arguments -Woverride-init: YES \nCompiler for C supports arguments -Wpacked-bitfield-compat: YES \nCompiler for C supports arguments -Wpacked-not-aligned: YES \nCompiler for C supports arguments -Wparentheses: YES \nCompiler for C supports arguments -Wpointer-arith: YES \nCompiler for C supports arguments -Wpointer-compare: YES \nCompiler for C supports arguments -Wpointer-sign: YES \nCompiler for C supports arguments -Wpointer-to-int-cast: YES \nCompiler for C supports arguments -Wpragmas: YES \nCompiler for C supports arguments -Wpsabi: YES \nCompiler for C supports arguments -Wrestrict: YES \nCompiler for C supports arguments -Wreturn-local-addr: YES \nCompiler for C supports arguments -Wreturn-type: YES \nCompiler for C supports arguments -Wscalar-storage-order: YES \nCompiler for C supports arguments -Wsequence-point: YES \nCompiler for C supports arguments -Wshadow: YES \nCompiler for C supports arguments -Wshift-count-negative: YES \nCompiler for C supports arguments -Wshift-count-overflow: YES \nCompiler for C supports arguments -Wshift-negative-value: YES \nCompiler for C supports arguments -Wshift-overflow=2: YES \nCompiler for C supports arguments -Wno-sign-compare: YES \nCompiler for C supports arguments -Wsizeof-array-argument: YES \nCompiler for C supports arguments -Wsizeof-pointer-div: YES \nCompiler for C supports arguments -Wsizeof-pointer-memaccess: YES \nCompiler for C supports arguments -Wstrict-aliasing: YES \nCompiler for C supports arguments -Wstrict-prototypes: YES \nCompiler for C supports arguments -Wstringop-overflow=2: YES \nCompiler for C supports arguments -Wstringop-truncation: YES \nCompiler for C supports arguments -Wsuggest-attribute=cold: YES \nCompiler for C supports arguments -Wno-suggest-attribute=const: YES \nCompiler for C supports arguments -Wsuggest-attribute=format: YES \nCompiler for C supports arguments -Wsuggest-attribute=noreturn: YES \nCompiler for C supports arguments -Wno-suggest-attribute=pure: YES \nCompiler for C supports arguments -Wsuggest-final-methods: YES \nCompiler for C supports arguments -Wsuggest-final-types: YES \nCompiler for C supports arguments -Wswitch: YES \nCompiler for C supports arguments -Wswitch-bool: YES \nCompiler for C supports arguments -Wswitch-enum: YES \nCompiler for C supports arguments -Wswitch-unreachable: YES \nCompiler for C supports arguments -Wsync-nand: YES \nCompiler for C supports arguments -Wtautological-compare: YES \nCompiler for C supports arguments -Wtrampolines: YES \nCompiler for C supports arguments -Wtrigraphs: YES \nCompiler for C supports arguments -Wtype-limits: YES \nCompiler for C supports arguments -Wno-typedef-redefinition: NO \nCompiler for C supports arguments -Wuninitialized: YES \nCompiler for C supports arguments -Wunknown-pragmas: YES \nCompiler for C supports arguments -Wunused: YES \nCompiler for C supports arguments -Wunused-but-set-parameter: YES \nCompiler for C supports arguments -Wunused-but-set-variable: YES \nCompiler for C supports arguments -Wunused-const-variable=2: YES \nCompiler for C supports arguments -Wunused-function: YES \nCompiler for C supports arguments -Wunused-label: YES \nCompiler for C supports arguments -Wunused-local-typedefs: YES \nCompiler for C supports arguments -Wunused-result: YES \nCompiler for C supports arguments -Wunused-value: YES \nCompiler for C supports arguments -Wunused-variable: YES \nCompiler for C supports arguments -Wvarargs: YES \nCompiler for C supports arguments -Wvariadic-macros: YES \nCompiler for C supports arguments -Wvector-operation-performance: YES \nCompiler for C supports arguments -Wvla: YES \nCompiler for C supports arguments -Wvolatile-register-var: YES \nCompiler for C supports arguments -Wwrite-strings: YES \nCompiler for C supports arguments -fstack-protector-strong: YES (cached)\nConfiguring AUTHORS using configuration\nRun-time dependency gobject-introspection-1.0 found: YES 1.72.0\nDependency gobject-introspection-1.0 found: YES 1.72.0 (cached)\nProgram /usr/bin/g-ir-scanner found: YES (/usr/bin/g-ir-scanner)\nDependency gobject-introspection-1.0 found: YES 1.72.0 (cached)\nProgram /usr/bin/g-ir-compiler found: YES (/usr/bin/g-ir-compiler)\nDependency glib-2.0 found: YES 2.72.4 (cached)\nProgram /usr/bin/glib-mkenums found: YES (/usr/bin/glib-mkenums)\nDependency glib-2.0 found: YES 2.72.4 (cached)\nProgram /usr/bin/glib-mkenums found: YES (/usr/bin/glib-mkenums)\nDependency glib-2.0 found: YES 2.72.4 (cached)\nProgram /usr/bin/glib-mkenums found: YES (/usr/bin/glib-mkenums)\nDependency glib-2.0 found: YES 2.72.4 (cached)\nProgram /usr/bin/glib-mkenums found: YES (/usr/bin/glib-mkenums)\nProgram msgfmt found: YES (/usr/bin/msgfmt)\nProgram msginit found: YES (/usr/bin/msginit)\nProgram msgmerge found: YES (/usr/bin/msgmerge)\nProgram xgettext found: YES (/usr/bin/xgettext)\nConfiguring version.xml using configuration\nProgram gtkdoc-scan found: YES (/usr/bin/gtkdoc-scan)\nProgram gtkdoc-scangobj found: YES (/usr/bin/gtkdoc-scangobj)\nProgram gtkdoc-mkdb found: YES (/usr/bin/gtkdoc-mkdb)\nProgram gtkdoc-mkhtml found: YES (/usr/bin/gtkdoc-mkhtml)\nProgram gtkdoc-fixxref found: YES (/usr/bin/gtkdoc-fixxref)\nProgram gtkdoc-scan found: YES (/usr/bin/gtkdoc-scan)\nProgram gtkdoc-scangobj found: YES (/usr/bin/gtkdoc-scangobj)\nProgram gtkdoc-mkdb found: YES (/usr/bin/gtkdoc-mkdb)\nProgram gtkdoc-mkhtml found: YES (/usr/bin/gtkdoc-mkhtml)\nProgram gtkdoc-fixxref found: YES (/usr/bin/gtkdoc-fixxref)\nProgram gtkdoc-scan found: YES (/usr/bin/gtkdoc-scan)\nProgram gtkdoc-scangobj found: YES (/usr/bin/gtkdoc-scangobj)\nProgram gtkdoc-mkdb found: YES (/usr/bin/gtkdoc-mkdb)\nProgram gtkdoc-mkhtml found: YES (/usr/bin/gtkdoc-mkhtml)\nProgram gtkdoc-fixxref found: YES (/usr/bin/gtkdoc-fixxref)\nBuild targets in project: 51\n\nFound ninja-1.11.1.git.kitware.jobserver-1 at /usr/local/bin/ninja\nskneppel@cape:/tmp/libvirt-glib$ meson compile -C builddir\nINFO: autodetecting backend as ninja\nINFO: calculating backend command to run: /usr/local/bin/ninja -C /tmp/libvirt-glib/builddir\nninja: Entering directory `/tmp/libvirt-glib/builddir'\n[165/165] Generating libvirt-gobject/LibvirtGObject-1.0.typelib with a custom command\nskneppel@cape:/tmp/libvirt-glib$ sudo ninja -C builddir install\nninja: Entering directory `builddir'\n[0/1] Installing files.\nInstalling libvirt-glib/libvirt-glib-1.0.so.0.6000.0 to /usr/local/lib/x86_64-linux-gnu\nInstalling libvirt-glib/LibvirtGLib-1.0.gir to /usr/local/share/gir-1.0\nInstalling libvirt-glib/LibvirtGLib-1.0.typelib to /usr/local/lib/x86_64-linux-gnu/girepository-1.0\nInstalling libvirt-gconfig/libvirt-gconfig-enum-types.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling libvirt-gconfig/libvirt-gconfig-1.0.so.0.6000.0 to /usr/local/lib/x86_64-linux-gnu\nInstalling libvirt-gconfig/LibvirtGConfig-1.0.gir to /usr/local/share/gir-1.0\nInstalling libvirt-gconfig/LibvirtGConfig-1.0.typelib to /usr/local/lib/x86_64-linux-gnu/girepository-1.0\nInstalling libvirt-gobject/libvirt-gobject-enums.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\nInstalling libvirt-gobject/libvirt-gobject-1.0.so.0.6000.0 to /usr/local/lib/x86_64-linux-gnu\nInstalling libvirt-gobject/LibvirtGObject-1.0.gir to /usr/local/share/gir-1.0\nInstalling libvirt-gobject/LibvirtGObject-1.0.typelib to /usr/local/lib/x86_64-linux-gnu/girepository-1.0\nInstalling po/ca/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/ca/LC_MESSAGES\nInstalling po/cs/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/cs/LC_MESSAGES\nInstalling po/de/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/de/LC_MESSAGES\nInstalling po/en_GB/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/en_GB/LC_MESSAGES\nInstalling po/es/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/es/LC_MESSAGES\nInstalling po/fi/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/fi/LC_MESSAGES\nInstalling po/fr/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/fr/LC_MESSAGES\nInstalling po/hi/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/hi/LC_MESSAGES\nInstalling po/ja/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/ja/LC_MESSAGES\nInstalling po/pl/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/pl/LC_MESSAGES\nInstalling po/pt_BR/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/pt_BR/LC_MESSAGES\nInstalling po/ru/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/ru/LC_MESSAGES\nInstalling po/tr/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/tr/LC_MESSAGES\nInstalling po/uk/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/uk/LC_MESSAGES\nInstalling po/id/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/id/LC_MESSAGES\nInstalling po/it/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/it/LC_MESSAGES\nInstalling po/si/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/si/LC_MESSAGES\nInstalling po/ko/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/ko/LC_MESSAGES\nInstalling po/sv/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/sv/LC_MESSAGES\nInstalling po/ka/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/ka/LC_MESSAGES\nInstalling po/ro/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/ro/LC_MESSAGES\nInstalling po/nl/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/nl/LC_MESSAGES\nInstalling /tmp/libvirt-glib/builddir/libvirt-glib-1.0.pc to /usr/local/lib/x86_64-linux-gnu/pkgconfig\nInstalling /tmp/libvirt-glib/builddir/libvirt-gconfig-1.0.pc to /usr/local/lib/x86_64-linux-gnu/pkgconfig\nInstalling /tmp/libvirt-glib/builddir/libvirt-gobject-1.0.pc to /usr/local/lib/x86_64-linux-gnu/pkgconfig\nInstalling /tmp/libvirt-glib/libvirt-glib/libvirt-glib.h to /usr/local/include/libvirt-glib-1.0/libvirt-glib\nInstalling /tmp/libvirt-glib/libvirt-glib/libvirt-glib-error.h to /usr/local/include/libvirt-glib-1.0/libvirt-glib\nInstalling /tmp/libvirt-glib/libvirt-glib/libvirt-glib-event.h to /usr/local/include/libvirt-glib-1.0/libvirt-glib\nInstalling /tmp/libvirt-glib/libvirt-glib/libvirt-glib-main.h to /usr/local/include/libvirt-glib-1.0/libvirt-glib\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-main.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-object.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities-host.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities-cpu.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities-cpu-feature.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities-cpu-model.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities-cpu-topology.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities-guest.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities-guest-arch.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities-guest-domain.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities-guest-feature.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities-host-secmodel.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-address.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-address-pci.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-address-usb.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-audio.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-capabilities.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-capabilities-os.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-channel.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-chardev.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-chardev-source.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-chardev-source-pty.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-chardev-source-spiceport.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-chardev-source-spicevmc.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-chardev-source-unix.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-clock.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-console.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-controller.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-controller-usb.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-cpu.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-cpu-feature.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-cpu-model.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-device.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-disk.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-disk-driver.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-filesys.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-graphics.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-graphics-desktop.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-graphics-rdp.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-graphics-sdl.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-graphics-spice.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-graphics-vnc.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-graphics-dbus.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-hostdev.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-hostdev-pci.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-input.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-interface.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-interface-bridge.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-interface-filterref.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-interface-filterref-parameter.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-interface-network.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-interface-user.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-memballoon.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-os.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-parallel.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-power-management.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-redirdev.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-seclabel.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-serial.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-smartcard.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-smartcard-host.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-smartcard-host-certificates.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-smartcard-passthrough.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-snapshot.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-snapshot-disk.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-sound.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-timer.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-timer-hpet.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-timer-pit.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-timer-rtc.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-video.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-vsock.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-helpers.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-interface.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-network.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-network-filter.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-node-device.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-secret.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-storage-permissions.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-storage-pool.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-storage-pool-source.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-storage-pool-target.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-storage-vol.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-storage-vol-backing-store.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-storage-vol-target.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\nInstalling /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-main.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\nInstalling /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-domain-snapshot.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\nInstalling /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-domain-device.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\nInstalling /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-domain-disk.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\nInstalling /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-domain-interface.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\nInstalling /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-domain.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\nInstalling /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-interface.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\nInstalling /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-network.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\nInstalling /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-network-dhcp-lease.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\nInstalling /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-network-filter.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\nInstalling /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-node-device.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\nInstalling /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-secret.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\nInstalling /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-storage-vol.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\nInstalling /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-storage-pool.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\nInstalling /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-stream.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\nInstalling /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-connection.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\nInstalling /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-manager.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\nInstalling symlink pointing to libvirt-glib-1.0.so.0.6000.0 to /usr/local/lib/x86_64-linux-gnu/libvirt-glib-1.0.so.0\nInstalling symlink pointing to libvirt-glib-1.0.so.0 to /usr/local/lib/x86_64-linux-gnu/libvirt-glib-1.0.so\nInstalling symlink pointing to libvirt-gconfig-1.0.so.0.6000.0 to /usr/local/lib/x86_64-linux-gnu/libvirt-gconfig-1.0.so.0\nInstalling symlink pointing to libvirt-gconfig-1.0.so.0 to /usr/local/lib/x86_64-linux-gnu/libvirt-gconfig-1.0.so\nInstalling symlink pointing to libvirt-gobject-1.0.so.0.6000.0 to /usr/local/lib/x86_64-linux-gnu/libvirt-gobject-1.0.so.0\nInstalling symlink pointing to libvirt-gobject-1.0.so.0 to /usr/local/lib/x86_64-linux-gnu/libvirt-gobject-1.0.so\nRunning custom install script '/usr/local/bin/meson --internal gtkdoc --sourcedir=/tmp/libvirt-glib --builddir=/tmp/libvirt-glib/builddir --subdir=docs/libvirt-glib --headerdirs=/tmp/libvirt-glib/libvirt-glib --mainfile=Libvirt-glib-docs.xml --modulename=Libvirt-glib --moduleversion= --mode=auto --gtkdoc-scan=/usr/bin/gtkdoc-scan --gtkdoc-scangobj=/usr/bin/gtkdoc-scangobj --gtkdoc-mkdb=/usr/bin/gtkdoc-mkdb --gtkdoc-mkhtml=/usr/bin/gtkdoc-mkhtml --gtkdoc-fixxref=/usr/bin/gtkdoc-fixxref --htmlargs= --scanargs=--rebuild-sections --scanobjsargs= --gobjects-types-file= --fixxrefargs= --mkdbargs=--output-format=xml --html-assets= --content-files= --expand-content-files= --ignore-headers= --installdir=/usr/local/share/gtk-doc/html/Libvirt-glib --cc=cc --ld=cc --cflags=-I/usr/include/glib-2.0 -I/usr/lib/x86_64-linux-gnu/glib-2.0/include --ldflags=-L/tmp/libvirt-glib/builddir/libvirt-glib -Wl,-rpath,/tmp/libvirt-glib/builddir/libvirt-glib -lvirt-glib-1.0 -L/usr/lib64 -lvirt -lglib-2.0 -lgobject-2.0'\nRunning custom install script '/usr/local/bin/meson --internal gtkdoc --sourcedir=/tmp/libvirt-glib --builddir=/tmp/libvirt-glib/builddir --subdir=docs/libvirt-gconfig --headerdirs=/tmp/libvirt-glib/libvirt-gconfig --mainfile=Libvirt-gconfig-docs.xml --modulename=Libvirt-gconfig --moduleversion= --mode=auto --gtkdoc-scan=/usr/bin/gtkdoc-scan --gtkdoc-scangobj=/usr/bin/gtkdoc-scangobj --gtkdoc-mkdb=/usr/bin/gtkdoc-mkdb --gtkdoc-mkhtml=/usr/bin/gtkdoc-mkhtml --gtkdoc-fixxref=/usr/bin/gtkdoc-fixxref --htmlargs= --scanargs=--rebuild-sections@@--rebuild-types --scanobjsargs= --gobjects-types-file= --fixxrefargs= --mkdbargs=--output-format=xml --html-assets= --content-files= --expand-content-files= --ignore-headers= --installdir=/usr/local/share/gtk-doc/html/Libvirt-gconfig --cc=cc --ld=cc --cflags=-I/usr/include/glib-2.0 -I/usr/lib/x86_64-linux-gnu/glib-2.0/include -I/usr/include/libxml2 --ldflags=-L/tmp/libvirt-glib/builddir/libvirt-gconfig -Wl,-rpath,/tmp/libvirt-glib/builddir/libvirt-gconfig -L/tmp/libvirt-glib/builddir/libvirt-glib -Wl,-rpath,/tmp/libvirt-glib/builddir/libvirt-glib -lvirt-gconfig-1.0 -L/usr/lib64 -lvirt -lgobject-2.0 -lglib-2.0 -lxml2'\nRunning custom install script '/usr/local/bin/meson --internal gtkdoc --sourcedir=/tmp/libvirt-glib --builddir=/tmp/libvirt-glib/builddir --subdir=docs/libvirt-gobject --headerdirs=/tmp/libvirt-glib/libvirt-gobject --mainfile=Libvirt-gobject-docs.xml --modulename=Libvirt-gobject --moduleversion= --mode=auto --gtkdoc-scan=/usr/bin/gtkdoc-scan --gtkdoc-scangobj=/usr/bin/gtkdoc-scangobj --gtkdoc-mkdb=/usr/bin/gtkdoc-mkdb --gtkdoc-mkhtml=/usr/bin/gtkdoc-mkhtml --gtkdoc-fixxref=/usr/bin/gtkdoc-fixxref --htmlargs= --scanargs=--rebuild-sections@@--rebuild-types --scanobjsargs= --gobjects-types-file= --fixxrefargs= --mkdbargs=--output-format=xml --html-assets= --content-files= --expand-content-files= --ignore-headers= --installdir=/usr/local/share/gtk-doc/html/Libvirt-gobject --cc=cc --ld=cc --cflags=-pthread -I/usr/include/libmount -I/usr/include/blkid -I/usr/include/glib-2.0 -I/usr/lib/x86_64-linux-gnu/glib-2.0/include -I/usr/include/libxml2 --ldflags=-L/tmp/libvirt-glib/builddir/libvirt-gobject -Wl,-rpath,/tmp/libvirt-glib/builddir/libvirt-gobject -L/tmp/libvirt-glib/builddir/libvirt-glib -Wl,-rpath,/tmp/libvirt-glib/builddir/libvirt-glib -L/tmp/libvirt-glib/builddir/libvirt-gconfig -Wl,-rpath,/tmp/libvirt-glib/builddir/libvirt-gconfig -lvirt-gobject-1.0 -lvirt-glib-1.0 -lvirt-gconfig-1.0 -L/usr/lib64 -lvirt -lgio-2.0 -lgobject-2.0 -lglib-2.0 -lxml2'\nskneppel@cape:/tmp/libvirt-glib$ sudo ninja -C builddir install\nninja: Entering directory `builddir'\n[0/1] Installing files.\nInstalling libvirt-glib/libvirt-glib-1.0.so.0.6000.0 to /usr/local/lib/x86_64-linux-gnu\nInstalling libvirt-glib/LibvirtGLib-1.0.gir to /usr/local/share/gir-1.0\nInstalling libvirt-glib/LibvirtGLib-1.0.typelib to /usr/local/lib/x86_64-linux-gnu/girepository-1.0\nInstalling libvirt-gconfig/libvirt-gconfig-enum-types.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling libvirt-gconfig/libvirt-gconfig-1.0.so.0.6000.0 to /usr/local/lib/x86_64-linux-gnu\nInstalling libvirt-gconfig/LibvirtGConfig-1.0.gir to /usr/local/share/gir-1.0\nInstalling libvirt-gconfig/LibvirtGConfig-1.0.typelib to /usr/local/lib/x86_64-linux-gnu/girepository-1.0\nInstalling libvirt-gobject/libvirt-gobject-enums.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\nInstalling libvirt-gobject/libvirt-gobject-1.0.so.0.6000.0 to /usr/local/lib/x86_64-linux-gnu\nInstalling libvirt-gobject/LibvirtGObject-1.0.gir to /usr/local/share/gir-1.0\nInstalling libvirt-gobject/LibvirtGObject-1.0.typelib to /usr/local/lib/x86_64-linux-gnu/girepository-1.0\nInstalling po/ca/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/ca/LC_MESSAGES\nInstalling po/cs/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/cs/LC_MESSAGES\nInstalling po/de/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/de/LC_MESSAGES\nInstalling po/en_GB/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/en_GB/LC_MESSAGES\nInstalling po/es/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/es/LC_MESSAGES\nInstalling po/fi/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/fi/LC_MESSAGES\nInstalling po/fr/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/fr/LC_MESSAGES\nInstalling po/hi/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/hi/LC_MESSAGES\nInstalling po/ja/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/ja/LC_MESSAGES\nInstalling po/pl/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/pl/LC_MESSAGES\nInstalling po/pt_BR/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/pt_BR/LC_MESSAGES\nInstalling po/ru/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/ru/LC_MESSAGES\nInstalling po/tr/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/tr/LC_MESSAGES\nInstalling po/uk/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/uk/LC_MESSAGES\nInstalling po/id/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/id/LC_MESSAGES\nInstalling po/it/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/it/LC_MESSAGES\nInstalling po/si/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/si/LC_MESSAGES\nInstalling po/ko/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/ko/LC_MESSAGES\nInstalling po/sv/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/sv/LC_MESSAGES\nInstalling po/ka/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/ka/LC_MESSAGES\nInstalling po/ro/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/ro/LC_MESSAGES\nInstalling po/nl/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/nl/LC_MESSAGES\nInstalling /tmp/libvirt-glib/builddir/libvirt-glib-1.0.pc to /usr/local/lib/x86_64-linux-gnu/pkgconfig\nInstalling /tmp/libvirt-glib/builddir/libvirt-gconfig-1.0.pc to /usr/local/lib/x86_64-linux-gnu/pkgconfig\nInstalling /tmp/libvirt-glib/builddir/libvirt-gobject-1.0.pc to /usr/local/lib/x86_64-linux-gnu/pkgconfig\nInstalling /tmp/libvirt-glib/libvirt-glib/libvirt-glib.h to /usr/local/include/libvirt-glib-1.0/libvirt-glib\nInstalling /tmp/libvirt-glib/libvirt-glib/libvirt-glib-error.h to /usr/local/include/libvirt-glib-1.0/libvirt-glib\nInstalling /tmp/libvirt-glib/libvirt-glib/libvirt-glib-event.h to /usr/local/include/libvirt-glib-1.0/libvirt-glib\nInstalling /tmp/libvirt-glib/libvirt-glib/libvirt-glib-main.h to /usr/local/include/libvirt-glib-1.0/libvirt-glib\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-main.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-object.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities-host.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities-cpu.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities-cpu-feature.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities-cpu-model.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities-cpu-topology.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities-guest.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities-guest-arch.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities-guest-domain.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities-guest-feature.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities-host-secmodel.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-address.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-address-pci.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-address-usb.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-audio.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-capabilities.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-capabilities-os.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-channel.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-chardev.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-chardev-source.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-chardev-source-pty.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-chardev-source-spiceport.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-chardev-source-spicevmc.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-chardev-source-unix.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-clock.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-console.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-controller.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-controller-usb.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-cpu.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-cpu-feature.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-cpu-model.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-device.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-disk.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-disk-driver.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-filesys.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-graphics.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-graphics-desktop.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-graphics-rdp.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-graphics-sdl.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-graphics-spice.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-graphics-vnc.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-graphics-dbus.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-hostdev.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-hostdev-pci.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-input.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-interface.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-interface-bridge.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-interface-filterref.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-interface-filterref-parameter.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-interface-network.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-interface-user.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-memballoon.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-os.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-parallel.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-power-management.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-redirdev.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-seclabel.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-serial.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-smartcard.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-smartcard-host.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-smartcard-host-certificates.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-smartcard-passthrough.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-snapshot.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-snapshot-disk.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-sound.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-timer.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-timer-hpet.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-timer-pit.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-timer-rtc.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-video.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-vsock.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-helpers.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-interface.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-network.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-network-filter.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-node-device.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-secret.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-storage-permissions.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-storage-pool.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-storage-pool-source.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-storage-pool-target.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-storage-vol.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-storage-vol-backing-store.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-storage-vol-target.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\nInstalling /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\nInstalling /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-main.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\nInstalling /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-domain-snapshot.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\nInstalling /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-domain-device.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\nInstalling /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-domain-disk.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\nInstalling /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-domain-interface.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\nInstalling /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-domain.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\nInstalling /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-interface.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\nInstalling /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-network.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\nInstalling /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-network-dhcp-lease.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\nInstalling /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-network-filter.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\nInstalling /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-node-device.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\nInstalling /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-secret.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\nInstalling /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-storage-vol.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\nInstalling /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-storage-pool.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\nInstalling /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-stream.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\nInstalling /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-connection.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\nInstalling /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-manager.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\nInstalling symlink pointing to libvirt-glib-1.0.so.0.6000.0 to /usr/local/lib/x86_64-linux-gnu/libvirt-glib-1.0.so.0\nInstalling symlink pointing to libvirt-glib-1.0.so.0 to /usr/local/lib/x86_64-linux-gnu/libvirt-glib-1.0.so\nInstalling symlink pointing to libvirt-gconfig-1.0.so.0.6000.0 to /usr/local/lib/x86_64-linux-gnu/libvirt-gconfig-1.0.so.0\nInstalling symlink pointing to libvirt-gconfig-1.0.so.0 to /usr/local/lib/x86_64-linux-gnu/libvirt-gconfig-1.0.so\nInstalling symlink pointing to libvirt-gobject-1.0.so.0.6000.0 to /usr/local/lib/x86_64-linux-gnu/libvirt-gobject-1.0.so.0\nInstalling symlink pointing to libvirt-gobject-1.0.so.0 to /usr/local/lib/x86_64-linux-gnu/libvirt-gobject-1.0.so\nRunning custom install script '/usr/local/bin/meson --internal gtkdoc --sourcedir=/tmp/libvirt-glib --builddir=/tmp/libvirt-glib/builddir --subdir=docs/libvirt-glib --headerdirs=/tmp/libvirt-glib/libvirt-glib --mainfile=Libvirt-glib-docs.xml --modulename=Libvirt-glib --moduleversion= --mode=auto --gtkdoc-scan=/usr/bin/gtkdoc-scan --gtkdoc-scangobj=/usr/bin/gtkdoc-scangobj --gtkdoc-mkdb=/usr/bin/gtkdoc-mkdb --gtkdoc-mkhtml=/usr/bin/gtkdoc-mkhtml --gtkdoc-fixxref=/usr/bin/gtkdoc-fixxref --htmlargs= --scanargs=--rebuild-sections --scanobjsargs= --gobjects-types-file= --fixxrefargs= --mkdbargs=--output-format=xml --html-assets= --content-files= --expand-content-files= --ignore-headers= --installdir=/usr/local/share/gtk-doc/html/Libvirt-glib --cc=cc --ld=cc --cflags=-I/usr/include/glib-2.0 -I/usr/lib/x86_64-linux-gnu/glib-2.0/include --ldflags=-L/tmp/libvirt-glib/builddir/libvirt-glib -Wl,-rpath,/tmp/libvirt-glib/builddir/libvirt-glib -lvirt-glib-1.0 -L/usr/lib64 -lvirt -lglib-2.0 -lgobject-2.0'\nRunning custom install script '/usr/local/bin/meson --internal gtkdoc --sourcedir=/tmp/libvirt-glib --builddir=/tmp/libvirt-glib/builddir --subdir=docs/libvirt-gconfig --headerdirs=/tmp/libvirt-glib/libvirt-gconfig --mainfile=Libvirt-gconfig-docs.xml --modulename=Libvirt-gconfig --moduleversion= --mode=auto --gtkdoc-scan=/usr/bin/gtkdoc-scan --gtkdoc-scangobj=/usr/bin/gtkdoc-scangobj --gtkdoc-mkdb=/usr/bin/gtkdoc-mkdb --gtkdoc-mkhtml=/usr/bin/gtkdoc-mkhtml --gtkdoc-fixxref=/usr/bin/gtkdoc-fixxref --htmlargs= --scanargs=--rebuild-sections@@--rebuild-types --scanobjsargs= --gobjects-types-file= --fixxrefargs= --mkdbargs=--output-format=xml --html-assets= --content-files= --expand-content-files= --ignore-headers= --installdir=/usr/local/share/gtk-doc/html/Libvirt-gconfig --cc=cc --ld=cc --cflags=-I/usr/include/glib-2.0 -I/usr/lib/x86_64-linux-gnu/glib-2.0/include -I/usr/include/libxml2 --ldflags=-L/tmp/libvirt-glib/builddir/libvirt-gconfig -Wl,-rpath,/tmp/libvirt-glib/builddir/libvirt-gconfig -L/tmp/libvirt-glib/builddir/libvirt-glib -Wl,-rpath,/tmp/libvirt-glib/builddir/libvirt-glib -lvirt-gconfig-1.0 -L/usr/lib64 -lvirt -lgobject-2.0 -lglib-2.0 -lxml2'\nRunning custom install script '/usr/local/bin/meson --internal gtkdoc --sourcedir=/tmp/libvirt-glib --builddir=/tmp/libvirt-glib/builddir --subdir=docs/libvirt-gobject --headerdirs=/tmp/libvirt-glib/libvirt-gobject --mainfile=Libvirt-gobject-docs.xml --modulename=Libvirt-gobject --moduleversion= --mode=auto --gtkdoc-scan=/usr/bin/gtkdoc-scan --gtkdoc-scangobj=/usr/bin/gtkdoc-scangobj --gtkdoc-mkdb=/usr/bin/gtkdoc-mkdb --gtkdoc-mkhtml=/usr/bin/gtkdoc-mkhtml --gtkdoc-fixxref=/usr/bin/gtkdoc-fixxref --htmlargs= --scanargs=--rebuild-sections@@--rebuild-types --scanobjsargs= --gobjects-types-file= --fixxrefargs= --mkdbargs=--output-format=xml --html-assets= --content-files= --expand-content-files= --ignore-headers= --installdir=/usr/local/share/gtk-doc/html/Libvirt-gobject --cc=cc --ld=cc --cflags=-pthread -I/usr/include/libmount -I/usr/include/blkid -I/usr/include/glib-2.0 -I/usr/lib/x86_64-linux-gnu/glib-2.0/include -I/usr/include/libxml2 --ldflags=-L/tmp/libvirt-glib/builddir/libvirt-gobject -Wl,-rpath,/tmp/libvirt-glib/builddir/libvirt-gobject -L/tmp/libvirt-glib/builddir/libvirt-glib -Wl,-rpath,/tmp/libvirt-glib/builddir/libvirt-glib -L/tmp/libvirt-glib/builddir/libvirt-gconfig -Wl,-rpath,/tmp/libvirt-glib/builddir/libvirt-gconfig -lvirt-gobject-1.0 -lvirt-glib-1.0 -lvirt-gconfig-1.0 -L/usr/lib64 -lvirt -lgio-2.0 -lgobject-2.0 -lglib-2.0 -lxml2'\nskneppel@cape:/tmp/libvirt-glib$ mkdir -p /usr/local/lib/girepository-1.0/\nskneppel@cape:/tmp/libvirt-glib$ cp builddir/libvirt-glib/LibvirtGLib-1.0.typelib /usr/local/lib/girepository-1.0/LibvirtGLib-1.0.typelib\n    /sbin/ldconfig\ncp: cannot create regular file '/usr/local/lib/girepository-1.0/LibvirtGLib-1.0.typelib': Permission denied\n/sbin/ldconfig.real: Can't create temporary cache file /etc/ld.so.cache~: Permission denied\nskneppel@cape:/tmp/libvirt-glib$ sudo cp builddir/libvirt-glib/LibvirtGLib-1.0.typelib /usr/local/lib/girepository-1.0/LibvirtGLib-1.0.typelib\nskneppel@cape:/tmp/libvirt-glib$ /sbin/ldconfig\n/sbin/ldconfig.real: Can't create temporary cache file /etc/ld.so.cache~: Permission denied\nskneppel@cape:/tmp/libvirt-glib$ sudo /sbin/ldconfig\nskneppel@cape:/tmp/libvirt-glib$ if [ ! -d \"virt-manager\" ]; then\n        git clone https://github.com/virt-manager/virt-manager.git\n        echo \"[+] Cloned Virt Manager repo\"\n    fi\nCloning into 'virt-manager'...\nremote: Enumerating objects: 64899, done.\nremote: Counting objects: 100% (2739/2739), done.\nremote: Compressing objects: 100% (509/509), done.\nremote: Total 64899 (delta 2381), reused 2230 (delta 2230), pack-reused 62160 (from 4)\nReceiving objects: 100% (64899/64899), 95.01 MiB | 13.12 MiB/s, done.\nResolving deltas: 100% (53847/53847), done.\n[+] Cloned Virt Manager repo\nskneppel@cape:/tmp/libvirt-glib$ cd \"virt-manager\" || return\nskneppel@cape:/tmp/libvirt-glib/virt-manager$ meson setup build\nThe Meson build system\nVersion: 1.6.1\nSource dir: /tmp/libvirt-glib/virt-manager\nBuild dir: /tmp/libvirt-glib/virt-manager/build\nBuild type: native build\nProject name: virt-manager\nProject version: 5.0.0\nHost machine cpu family: x86_64\nHost machine cpu: x86_64\nProgram python3 found: YES (/usr/bin/python3)\nProgram make_bin_wrapper.py found: YES (/usr/bin/python3 /tmp/libvirt-glib/virt-manager/scripts/make_bin_wrapper.py)\nProgram meson_dist.py found: YES (/usr/bin/python3 /tmp/libvirt-glib/virt-manager/scripts/meson_dist.py)\nProgram rst2man found: YES (/usr/bin/rst2man)\nConfiguring virt-install using configuration\nConfiguring virt-clone using configuration\nConfiguring virt-xml using configuration\nConfiguring build.cfg using configuration\nProgram msgfmt found: YES (/usr/bin/msgfmt)\nProgram msginit found: YES (/usr/bin/msginit)\nProgram msgmerge found: YES (/usr/bin/msgmerge)\nProgram xgettext found: YES (/usr/bin/xgettext)\nFound pkg-config: YES (/usr/bin/pkg-config) 0.29.2\nBuild-time dependency gio-2.0 found: YES 2.72.4\nProgram /usr/bin/glib-compile-schemas found: YES (/usr/bin/glib-compile-schemas)\nProgram gtk4-update-icon-cache found: YES (/usr/bin/gtk4-update-icon-cache)\nConfiguring virt-manager.spec using configuration\nProgram pylint found: YES (/usr/bin/pylint)\nProgram pytest found: YES (/usr/local/bin/pytest)\nProgram pycodestyle found: YES (/usr/local/bin/pycodestyle)\nProgram codespell found: NO\nBuild targets in project: 66\n\nFound ninja-1.11.1.git.kitware.jobserver-1 at /usr/local/bin/ninja\nskneppel@cape:/tmp/libvirt-glib/virt-manager$ meson install -C build\nninja: Entering directory `/tmp/libvirt-glib/virt-manager/build'\n[63/63] Merging translations for po/virt-manager.appdata.xml\nInstalling man/virt-install.1 to /usr/local/share/man/man1\nInstallation failed due to insufficient permissions.\nAttempt to use /usr/bin/sudo to gain elevated privileges? [y/n] y\nInstalling man/virt-install.1 to /usr/local/share/man/man1\nInstalling man/virt-clone.1 to /usr/local/share/man/man1\nInstalling man/virt-xml.1 to /usr/local/share/man/man1\nInstalling man/virt-manager.1 to /usr/local/share/man/man1\nInstalling po/virt-manager.desktop to /usr/local/share/applications\nInstalling po/virt-manager.appdata.xml to /usr/local/share/metainfo\nInstalling po/ar/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/ar/LC_MESSAGES\nInstalling po/as/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/as/LC_MESSAGES\nInstalling po/bg/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/bg/LC_MESSAGES\nInstalling po/bn_IN/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/bn_IN/LC_MESSAGES\nInstalling po/bs/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/bs/LC_MESSAGES\nInstalling po/ca/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/ca/LC_MESSAGES\nInstalling po/cs/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/cs/LC_MESSAGES\nInstalling po/da/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/da/LC_MESSAGES\nInstalling po/de/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/de/LC_MESSAGES\nInstalling po/en_GB/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/en_GB/LC_MESSAGES\nInstalling po/es/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/es/LC_MESSAGES\nInstalling po/fa/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/fa/LC_MESSAGES\nInstalling po/fi/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/fi/LC_MESSAGES\nInstalling po/fr/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/fr/LC_MESSAGES\nInstalling po/fur/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/fur/LC_MESSAGES\nInstalling po/gl/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/gl/LC_MESSAGES\nInstalling po/gu/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/gu/LC_MESSAGES\nInstalling po/hi/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/hi/LC_MESSAGES\nInstalling po/hr/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/hr/LC_MESSAGES\nInstalling po/hu/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/hu/LC_MESSAGES\nInstalling po/id/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/id/LC_MESSAGES\nInstalling po/ie/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/ie/LC_MESSAGES\nInstalling po/is/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/is/LC_MESSAGES\nInstalling po/it/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/it/LC_MESSAGES\nInstalling po/ja/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/ja/LC_MESSAGES\nInstalling po/ka/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/ka/LC_MESSAGES\nInstalling po/kab/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/kab/LC_MESSAGES\nInstalling po/kn/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/kn/LC_MESSAGES\nInstalling po/ko/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/ko/LC_MESSAGES\nInstalling po/ml/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/ml/LC_MESSAGES\nInstalling po/mr/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/mr/LC_MESSAGES\nInstalling po/ms/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/ms/LC_MESSAGES\nInstalling po/nb/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/nb/LC_MESSAGES\nInstalling po/nl/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/nl/LC_MESSAGES\nInstalling po/or/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/or/LC_MESSAGES\nInstalling po/pa/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/pa/LC_MESSAGES\nInstalling po/pl/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/pl/LC_MESSAGES\nInstalling po/pt/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/pt/LC_MESSAGES\nInstalling po/pt_BR/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/pt_BR/LC_MESSAGES\nInstalling po/ro/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/ro/LC_MESSAGES\nInstalling po/ru/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/ru/LC_MESSAGES\nInstalling po/si/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/si/LC_MESSAGES\nInstalling po/sk/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/sk/LC_MESSAGES\nInstalling po/sr/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/sr/LC_MESSAGES\nInstalling po/sr@latin/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/sr@latin/LC_MESSAGES\nInstalling po/sv/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/sv/LC_MESSAGES\nInstalling po/ta/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/ta/LC_MESSAGES\nInstalling po/te/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/te/LC_MESSAGES\nInstalling po/tr/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/tr/LC_MESSAGES\nInstalling po/uk/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/uk/LC_MESSAGES\nInstalling po/vi/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/vi/LC_MESSAGES\nInstalling po/zh_CN/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/zh_CN/LC_MESSAGES\nInstalling po/zh_TW/LC_MESSAGES/virt-manager.mo to /usr/local/share/locale/zh_TW/LC_MESSAGES\nInstalling virt-install to /usr/local/bin\nInstalling virt-clone to /usr/local/bin\nInstalling virt-xml to /usr/local/bin\nInstalling virt-manager to /usr/local/bin\nInstalling /tmp/libvirt-glib/virt-manager/data/org.virt-manager.virt-manager.gschema.xml to /usr/local/share/glib-2.0/schemas\nInstalling /tmp/libvirt-glib/virt-manager/build/data/virt-install to /usr/local/share/bash-completion/completions\nInstalling /tmp/libvirt-glib/virt-manager/build/data/virt-clone to /usr/local/share/bash-completion/completions\nInstalling /tmp/libvirt-glib/virt-manager/build/data/virt-xml to /usr/local/share/bash-completion/completions\nInstalling /tmp/libvirt-glib/virt-manager/data/icons/16x16/actions/icon_console.png to /usr/local/share/virt-manager/icons/hicolor/16x16/actions\nInstalling /tmp/libvirt-glib/virt-manager/data/icons/16x16/actions/vm_new.png to /usr/local/share/virt-manager/icons/hicolor/16x16/actions\nInstalling /tmp/libvirt-glib/virt-manager/data/icons/16x16/apps/virt-manager.png to /usr/local/share/icons/hicolor/16x16/apps\nInstalling /tmp/libvirt-glib/virt-manager/data/icons/22x22/actions/icon_console.png to /usr/local/share/virt-manager/icons/hicolor/22x22/actions\nInstalling /tmp/libvirt-glib/virt-manager/data/icons/22x22/actions/icon_details.png to /usr/local/share/virt-manager/icons/hicolor/22x22/actions\nInstalling /tmp/libvirt-glib/virt-manager/data/icons/22x22/actions/vm_new.png to /usr/local/share/virt-manager/icons/hicolor/22x22/actions\nInstalling /tmp/libvirt-glib/virt-manager/data/icons/22x22/apps/virt-manager.png to /usr/local/share/icons/hicolor/22x22/apps\nInstalling /tmp/libvirt-glib/virt-manager/data/icons/22x22/devices/device_cpu.png to /usr/local/share/virt-manager/icons/hicolor/22x22/devices\nInstalling /tmp/libvirt-glib/virt-manager/data/icons/22x22/devices/device_mem.png to /usr/local/share/virt-manager/icons/hicolor/22x22/devices\nInstalling /tmp/libvirt-glib/virt-manager/data/icons/22x22/devices/device_pci.png to /usr/local/share/virt-manager/icons/hicolor/22x22/devices\nInstalling /tmp/libvirt-glib/virt-manager/data/icons/22x22/devices/device_serial.png to /usr/local/share/virt-manager/icons/hicolor/22x22/devices\nInstalling /tmp/libvirt-glib/virt-manager/data/icons/22x22/devices/device_usb.png to /usr/local/share/virt-manager/icons/hicolor/22x22/devices\nInstalling /tmp/libvirt-glib/virt-manager/data/icons/22x22/status/state_paused.png to /usr/local/share/virt-manager/icons/hicolor/22x22/status\nInstalling /tmp/libvirt-glib/virt-manager/data/icons/22x22/status/state_running.png to /usr/local/share/virt-manager/icons/hicolor/22x22/status\nInstalling /tmp/libvirt-glib/virt-manager/data/icons/22x22/status/state_shutoff.png to /usr/local/share/virt-manager/icons/hicolor/22x22/status\nInstalling /tmp/libvirt-glib/virt-manager/data/icons/24x24/actions/icon_console.png to /usr/local/share/virt-manager/icons/hicolor/24x24/actions\nInstalling /tmp/libvirt-glib/virt-manager/data/icons/24x24/actions/vm_clone_wizard.png to /usr/local/share/virt-manager/icons/hicolor/24x24/actions\nInstalling /tmp/libvirt-glib/virt-manager/data/icons/24x24/actions/vm_new.png to /usr/local/share/virt-manager/icons/hicolor/24x24/actions\nInstalling /tmp/libvirt-glib/virt-manager/data/icons/24x24/apps/virt-manager.png to /usr/local/share/icons/hicolor/24x24/apps\nInstalling /tmp/libvirt-glib/virt-manager/data/icons/32x32/actions/icon_console.png to /usr/local/share/virt-manager/icons/hicolor/32x32/actions\nInstalling /tmp/libvirt-glib/virt-manager/data/icons/32x32/actions/vm_new.png to /usr/local/share/virt-manager/icons/hicolor/32x32/actions\nInstalling /tmp/libvirt-glib/virt-manager/data/icons/32x32/apps/virt-manager.png to /usr/local/share/icons/hicolor/32x32/apps\nInstalling /tmp/libvirt-glib/virt-manager/data/icons/32x32/status/state_paused.png to /usr/local/share/virt-manager/icons/hicolor/32x32/status\nInstalling /tmp/libvirt-glib/virt-manager/data/icons/32x32/status/state_running.png to /usr/local/share/virt-manager/icons/hicolor/32x32/status\nInstalling /tmp/libvirt-glib/virt-manager/data/icons/32x32/status/state_shutoff.png to /usr/local/share/virt-manager/icons/hicolor/32x32/status\nInstalling /tmp/libvirt-glib/virt-manager/data/icons/48x48/actions/vm_clone_wizard.png to /usr/local/share/virt-manager/icons/hicolor/48x48/actions\nInstalling /tmp/libvirt-glib/virt-manager/data/icons/48x48/actions/vm_delete_wizard.png to /usr/local/share/virt-manager/icons/hicolor/48x48/actions\nInstalling /tmp/libvirt-glib/virt-manager/data/icons/48x48/actions/vm_import_wizard.png to /usr/local/share/virt-manager/icons/hicolor/48x48/actions\nInstalling /tmp/libvirt-glib/virt-manager/data/icons/48x48/actions/vm_new_wizard.png to /usr/local/share/virt-manager/icons/hicolor/48x48/actions\nInstalling /tmp/libvirt-glib/virt-manager/data/icons/48x48/apps/virt-manager.png to /usr/local/share/icons/hicolor/48x48/apps\nInstalling /tmp/libvirt-glib/virt-manager/data/icons/256x256/apps/virt-manager.png to /usr/local/share/icons/hicolor/256x256/apps\nInstalling /tmp/libvirt-glib/virt-manager/ui/about.ui to /usr/local/share/virt-manager/ui\nInstalling /tmp/libvirt-glib/virt-manager/ui/addhardware.ui to /usr/local/share/virt-manager/ui\nInstalling /tmp/libvirt-glib/virt-manager/ui/addstorage.ui to /usr/local/share/virt-manager/ui\nInstalling /tmp/libvirt-glib/virt-manager/ui/asyncjob.ui to /usr/local/share/virt-manager/ui\nInstalling /tmp/libvirt-glib/virt-manager/ui/clone.ui to /usr/local/share/virt-manager/ui\nInstalling /tmp/libvirt-glib/virt-manager/ui/connectauth.ui to /usr/local/share/virt-manager/ui\nInstalling /tmp/libvirt-glib/virt-manager/ui/console.ui to /usr/local/share/virt-manager/ui\nInstalling /tmp/libvirt-glib/virt-manager/ui/createconn.ui to /usr/local/share/virt-manager/ui\nInstalling /tmp/libvirt-glib/virt-manager/ui/createnet.ui to /usr/local/share/virt-manager/ui\nInstalling /tmp/libvirt-glib/virt-manager/ui/createpool.ui to /usr/local/share/virt-manager/ui\nInstalling /tmp/libvirt-glib/virt-manager/ui/createvm.ui to /usr/local/share/virt-manager/ui\nInstalling /tmp/libvirt-glib/virt-manager/ui/createvol.ui to /usr/local/share/virt-manager/ui\nInstalling /tmp/libvirt-glib/virt-manager/ui/delete.ui to /usr/local/share/virt-manager/ui\nInstalling /tmp/libvirt-glib/virt-manager/ui/details.ui to /usr/local/share/virt-manager/ui\nInstalling /tmp/libvirt-glib/virt-manager/ui/fsdetails.ui to /usr/local/share/virt-manager/ui\nInstalling /tmp/libvirt-glib/virt-manager/ui/gfxdetails.ui to /usr/local/share/virt-manager/ui\nInstalling /tmp/libvirt-glib/virt-manager/ui/hostnets.ui to /usr/local/share/virt-manager/ui\nInstalling /tmp/libvirt-glib/virt-manager/ui/hoststorage.ui to /usr/local/share/virt-manager/ui\nInstalling /tmp/libvirt-glib/virt-manager/ui/host.ui to /usr/local/share/virt-manager/ui\nInstalling /tmp/libvirt-glib/virt-manager/ui/manager.ui to /usr/local/share/virt-manager/ui\nInstalling /tmp/libvirt-glib/virt-manager/ui/migrate.ui to /usr/local/share/virt-manager/ui\nInstalling /tmp/libvirt-glib/virt-manager/ui/netlist.ui to /usr/local/share/virt-manager/ui\nInstalling /tmp/libvirt-glib/virt-manager/ui/oslist.ui to /usr/local/share/virt-manager/ui\nInstalling /tmp/libvirt-glib/virt-manager/ui/preferences.ui to /usr/local/share/virt-manager/ui\nInstalling /tmp/libvirt-glib/virt-manager/ui/snapshotsnew.ui to /usr/local/share/virt-manager/ui\nInstalling /tmp/libvirt-glib/virt-manager/ui/snapshots.ui to /usr/local/share/virt-manager/ui\nInstalling /tmp/libvirt-glib/virt-manager/ui/storagebrowse.ui to /usr/local/share/virt-manager/ui\nInstalling /tmp/libvirt-glib/virt-manager/ui/tpmdetails.ui to /usr/local/share/virt-manager/ui\nInstalling /tmp/libvirt-glib/virt-manager/ui/vmwindow.ui to /usr/local/share/virt-manager/ui\nInstalling /tmp/libvirt-glib/virt-manager/ui/vsockdetails.ui to /usr/local/share/virt-manager/ui\nInstalling /tmp/libvirt-glib/virt-manager/ui/xmleditor.ui to /usr/local/share/virt-manager/ui\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/__init__.py to /usr/local/share/virt-manager/virtinst\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/_progresspriv.py to /usr/local/share/virt-manager/virtinst\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/buildconfig.py to /usr/local/share/virt-manager/virtinst\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/capabilities.py to /usr/local/share/virt-manager/virtinst\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/cli.py to /usr/local/share/virt-manager/virtinst\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/cloner.py to /usr/local/share/virt-manager/virtinst\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/connection.py to /usr/local/share/virt-manager/virtinst\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/diskbackend.py to /usr/local/share/virt-manager/virtinst\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/domcapabilities.py to /usr/local/share/virt-manager/virtinst\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/generatename.py to /usr/local/share/virt-manager/virtinst\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/guest.py to /usr/local/share/virt-manager/virtinst\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/logger.py to /usr/local/share/virt-manager/virtinst\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/network.py to /usr/local/share/virt-manager/virtinst\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/nodedev.py to /usr/local/share/virt-manager/virtinst\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/osdict.py to /usr/local/share/virt-manager/virtinst\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/pollhelpers.py to /usr/local/share/virt-manager/virtinst\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/progress.py to /usr/local/share/virt-manager/virtinst\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/snapshot.py to /usr/local/share/virt-manager/virtinst\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/storage.py to /usr/local/share/virt-manager/virtinst\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/support.py to /usr/local/share/virt-manager/virtinst\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/uri.py to /usr/local/share/virt-manager/virtinst\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/virtclone.py to /usr/local/share/virt-manager/virtinst\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/virtinstall.py to /usr/local/share/virt-manager/virtinst\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/virtxml.py to /usr/local/share/virt-manager/virtinst\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/xmlapi.py to /usr/local/share/virt-manager/virtinst\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/xmlbuilder.py to /usr/local/share/virt-manager/virtinst\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/xmlutil.py to /usr/local/share/virt-manager/virtinst\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/devices/__init__.py to /usr/local/share/virt-manager/virtinst/devices\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/devices/audio.py to /usr/local/share/virt-manager/virtinst/devices\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/devices/char.py to /usr/local/share/virt-manager/virtinst/devices\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/devices/controller.py to /usr/local/share/virt-manager/virtinst/devices\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/devices/device.py to /usr/local/share/virt-manager/virtinst/devices\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/devices/disk.py to /usr/local/share/virt-manager/virtinst/devices\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/devices/filesystem.py to /usr/local/share/virt-manager/virtinst/devices\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/devices/graphics.py to /usr/local/share/virt-manager/virtinst/devices\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/devices/hostdev.py to /usr/local/share/virt-manager/virtinst/devices\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/devices/input.py to /usr/local/share/virt-manager/virtinst/devices\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/devices/interface.py to /usr/local/share/virt-manager/virtinst/devices\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/devices/iommu.py to /usr/local/share/virt-manager/virtinst/devices\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/devices/memballoon.py to /usr/local/share/virt-manager/virtinst/devices\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/devices/memory.py to /usr/local/share/virt-manager/virtinst/devices\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/devices/panic.py to /usr/local/share/virt-manager/virtinst/devices\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/devices/redirdev.py to /usr/local/share/virt-manager/virtinst/devices\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/devices/rng.py to /usr/local/share/virt-manager/virtinst/devices\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/devices/shmem.py to /usr/local/share/virt-manager/virtinst/devices\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/devices/smartcard.py to /usr/local/share/virt-manager/virtinst/devices\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/devices/sound.py to /usr/local/share/virt-manager/virtinst/devices\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/devices/tpm.py to /usr/local/share/virt-manager/virtinst/devices\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/devices/video.py to /usr/local/share/virt-manager/virtinst/devices\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/devices/vsock.py to /usr/local/share/virt-manager/virtinst/devices\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/devices/watchdog.py to /usr/local/share/virt-manager/virtinst/devices\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/domain/__init__.py to /usr/local/share/virt-manager/virtinst/domain\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/domain/blkiotune.py to /usr/local/share/virt-manager/virtinst/domain\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/domain/clock.py to /usr/local/share/virt-manager/virtinst/domain\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/domain/cpu.py to /usr/local/share/virt-manager/virtinst/domain\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/domain/cputune.py to /usr/local/share/virt-manager/virtinst/domain\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/domain/features.py to /usr/local/share/virt-manager/virtinst/domain\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/domain/idmap.py to /usr/local/share/virt-manager/virtinst/domain\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/domain/keywrap.py to /usr/local/share/virt-manager/virtinst/domain\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/domain/launch_security.py to /usr/local/share/virt-manager/virtinst/domain\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/domain/memorybacking.py to /usr/local/share/virt-manager/virtinst/domain\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/domain/memtune.py to /usr/local/share/virt-manager/virtinst/domain\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/domain/metadata.py to /usr/local/share/virt-manager/virtinst/domain\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/domain/numatune.py to /usr/local/share/virt-manager/virtinst/domain\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/domain/os.py to /usr/local/share/virt-manager/virtinst/domain\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/domain/pm.py to /usr/local/share/virt-manager/virtinst/domain\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/domain/resource.py to /usr/local/share/virt-manager/virtinst/domain\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/domain/seclabel.py to /usr/local/share/virt-manager/virtinst/domain\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/domain/sysinfo.py to /usr/local/share/virt-manager/virtinst/domain\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/domain/vcpus.py to /usr/local/share/virt-manager/virtinst/domain\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/domain/xmlnsqemu.py to /usr/local/share/virt-manager/virtinst/domain\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/install/__init__.py to /usr/local/share/virt-manager/virtinst/install\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/install/cloudinit.py to /usr/local/share/virt-manager/virtinst/install\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/install/installer.py to /usr/local/share/virt-manager/virtinst/install\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/install/installerinject.py to /usr/local/share/virt-manager/virtinst/install\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/install/installertreemedia.py to /usr/local/share/virt-manager/virtinst/install\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/install/unattended.py to /usr/local/share/virt-manager/virtinst/install\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/install/urldetect.py to /usr/local/share/virt-manager/virtinst/install\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/install/urlfetcher.py to /usr/local/share/virt-manager/virtinst/install\nInstalling /tmp/libvirt-glib/virt-manager/virtinst/install/volumeupload.py to /usr/local/share/virt-manager/virtinst/install\nInstalling /tmp/libvirt-glib/virt-manager/build/virtinst/build.cfg to /usr/local/share/virt-manager/virtinst\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/__init__.py to /usr/local/share/virt-manager/virtManager\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/about.py to /usr/local/share/virt-manager/virtManager\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/addhardware.py to /usr/local/share/virt-manager/virtManager\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/asyncjob.py to /usr/local/share/virt-manager/virtManager\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/baseclass.py to /usr/local/share/virt-manager/virtManager\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/clone.py to /usr/local/share/virt-manager/virtManager\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/config.py to /usr/local/share/virt-manager/virtManager\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/connection.py to /usr/local/share/virt-manager/virtManager\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/connmanager.py to /usr/local/share/virt-manager/virtManager\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/createconn.py to /usr/local/share/virt-manager/virtManager\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/createnet.py to /usr/local/share/virt-manager/virtManager\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/createpool.py to /usr/local/share/virt-manager/virtManager\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/createvm.py to /usr/local/share/virt-manager/virtManager\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/createvol.py to /usr/local/share/virt-manager/virtManager\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/delete.py to /usr/local/share/virt-manager/virtManager\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/engine.py to /usr/local/share/virt-manager/virtManager\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/error.py to /usr/local/share/virt-manager/virtManager\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/host.py to /usr/local/share/virt-manager/virtManager\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/hostnets.py to /usr/local/share/virt-manager/virtManager\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/hoststorage.py to /usr/local/share/virt-manager/virtManager\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/manager.py to /usr/local/share/virt-manager/virtManager\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/migrate.py to /usr/local/share/virt-manager/virtManager\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/oslist.py to /usr/local/share/virt-manager/virtManager\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/preferences.py to /usr/local/share/virt-manager/virtManager\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/storagebrowse.py to /usr/local/share/virt-manager/virtManager\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/systray.py to /usr/local/share/virt-manager/virtManager\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/virtmanager.py to /usr/local/share/virt-manager/virtManager\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/vmmenu.py to /usr/local/share/virt-manager/virtManager\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/vmwindow.py to /usr/local/share/virt-manager/virtManager\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/xmleditor.py to /usr/local/share/virt-manager/virtManager\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/details/__init__.py to /usr/local/share/virt-manager/virtManager/details\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/details/console.py to /usr/local/share/virt-manager/virtManager/details\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/details/details.py to /usr/local/share/virt-manager/virtManager/details\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/details/serialcon.py to /usr/local/share/virt-manager/virtManager/details\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/details/snapshots.py to /usr/local/share/virt-manager/virtManager/details\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/details/sshtunnels.py to /usr/local/share/virt-manager/virtManager/details\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/details/viewers.py to /usr/local/share/virt-manager/virtManager/details\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/device/__init__.py to /usr/local/share/virt-manager/virtManager/device\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/device/addstorage.py to /usr/local/share/virt-manager/virtManager/device\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/device/fsdetails.py to /usr/local/share/virt-manager/virtManager/device\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/device/gfxdetails.py to /usr/local/share/virt-manager/virtManager/device\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/device/mediacombo.py to /usr/local/share/virt-manager/virtManager/device\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/device/netlist.py to /usr/local/share/virt-manager/virtManager/device\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/device/tpmdetails.py to /usr/local/share/virt-manager/virtManager/device\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/device/vsockdetails.py to /usr/local/share/virt-manager/virtManager/device\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/lib/__init__.py to /usr/local/share/virt-manager/virtManager/lib\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/lib/connectauth.py to /usr/local/share/virt-manager/virtManager/lib\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/lib/graphwidgets.py to /usr/local/share/virt-manager/virtManager/lib\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/lib/inspection.py to /usr/local/share/virt-manager/virtManager/lib\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/lib/keyring.py to /usr/local/share/virt-manager/virtManager/lib\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/lib/libvirtenummap.py to /usr/local/share/virt-manager/virtManager/lib\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/lib/module_trace.py to /usr/local/share/virt-manager/virtManager/lib\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/lib/statsmanager.py to /usr/local/share/virt-manager/virtManager/lib\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/lib/testmock.py to /usr/local/share/virt-manager/virtManager/lib\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/lib/uiutil.py to /usr/local/share/virt-manager/virtManager/lib\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/object/__init__.py to /usr/local/share/virt-manager/virtManager/object\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/object/domain.py to /usr/local/share/virt-manager/virtManager/object\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/object/libvirtobject.py to /usr/local/share/virt-manager/virtManager/object\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/object/network.py to /usr/local/share/virt-manager/virtManager/object\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/object/nodedev.py to /usr/local/share/virt-manager/virtManager/object\nInstalling /tmp/libvirt-glib/virt-manager/virtManager/object/storagepool.py to /usr/local/share/virt-manager/virtManager/object\nRunning custom install script '/usr/bin/glib-compile-schemas /usr/local/share/glib-2.0/schemas'\nRunning custom install script '/usr/bin/gtk4-update-icon-cache -q -t -f /usr/local/share/icons/hicolor'\nskneppel@cape:/tmp/libvirt-glib/virt-manager$ if [ \"$SHELL\" = \"/bin/zsh\" ] || [ \"$SHELL\" = \"/usr/bin/zsh\" ] ; then\n        echo \"export LIBVIRT_DEFAULT_URI=qemu:///system\" >> \"$HOME/.zsh\"\n    else\n        echo \"export LIBVIRT_DEFAULT_URI=qemu:///system\" >> \"$HOME/.bashrc\"\n    fi\nskneppel@cape:/tmp/libvirt-glib/virt-manager$ sudo glib-compile-schemas --strict /usr/share/glib-2.0/schemas/\nskneppel@cape:/tmp/libvirt-glib/virt-manager$ systemctl enable virtstoraged.service\nskneppel@cape:/tmp/libvirt-glib/virt-manager$ systemctl start virtstoraged.service\n\nskneppel@cape:/tmp/libvirt-glib/virt-manager$ virt-manager\nTraceback (most recent call last):\n  File \"/usr/local/bin/virt-manager\", line 6, in <module>\n    from virtManager import virtmanager\n  File \"/usr/local/share/virt-manager/virtManager/virtmanager.py\", line 16, in <module>\n    gi.require_version('LibvirtGLib', '1.0')\n  File \"/usr/lib/python3/dist-packages/gi/__init__.py\", line 126, in require_version\n    raise ValueError('Namespace %s not available' % namespace)\nValueError: Namespace LibvirtGLib not available\n```\nComment: Correct\r\n\r\nOn Fri, Jan 17, 2025 at 11:22\u202fAM Sam Kneppel ***@***.***>\r\nwrote:\r\n\r\n> Unfortunately, when I ran those lines manually, I did not see any errors\r\n> either, other than some commands needing to be run as sudo. However,\r\n> virt-manager gives me the same error, as seen below. A reboot does not\r\n> change the outcome, either.\r\n>\r\n> This is running on Ubuntu 22.04.5 with the latest patches. Out of\r\n> curiosity, when you test, are you running those tests within a VM or a\r\n> physical device? I doubt that is relevant, but, FWIW, I am running this on\r\n> a VM with hardware virtualization enabled for testing. I believe @xx0red\r\n> <https://github.com/xx0red> was doing so as well.\r\n>\r\n> ***@***.***:~$ sudo updatedb\r\n> [sudo] password for skneppel:\r\n> ***@***.***:~$ temp_libvirt_so_path=$(locate libvirt-qemu.so | head -n1 | awk '{print $1;}')\r\n> ***@***.***:~$ temp_export_path=$(locate libvirt.pc | head -n1 | awk '{print $1;}')\r\n> ***@***.***:~$ libvirt_so_path=\"${temp_libvirt_so_path%/*}/\"\r\n> ***@***.***:~$ export_path=\"${temp_export_path%/*}/\"\r\n> ***@***.***:~$ export PKG_CONFIG_PATH=$export_path\r\n> ***@***.***:~$ cd /tmp || return\r\n> ***@***.***:/tmp$ if [ ! -d \"libvirt-glib\" ]; then\r\n>         git clone https://gitlab.com/libvirt/libvirt-glib.git\r\n>     fi\r\n> Cloning into 'libvirt-glib'...\r\n> remote: Enumerating objects: 7909, done.\r\n> remote: Counting objects: 100% (1163/1163), done.\r\n> remote: Compressing objects: 100% (319/319), done.\r\n> remote: Total 7909 (delta 851), reused 1137 (delta 826), pack-reused 6746 (from 1)\r\n> Receiving objects: 100% (7909/7909), 1.57 MiB | 12.95 MiB/s, done.\r\n> Resolving deltas: 100% (6463/6463), done.\r\n> ***@***.***:/tmp$ cd libvirt-glib\r\n> ***@***.***:/tmp/libvirt-glib$ meson setup builddir\r\n> The Meson build system\r\n> Version: 1.6.1\r\n> Source dir: /tmp/libvirt-glib\r\n> Build dir: /tmp/libvirt-glib/builddir\r\n> Build type: native build\r\n> Project name: libvirt-glib\r\n> Project version: 6.0.0\r\n> C compiler for the host machine: cc (gcc 11.4.0 \"cc (Ubuntu 11.4.0-1ubuntu1~22.04) 11.4.0\")\r\n> C linker for the host machine: cc ld.bfd 2.38\r\n> Host machine cpu family: x86_64\r\n> Host machine cpu: x86_64\r\n> Program python3 found: YES (/usr/bin/python3)\r\n> Found pkg-config: YES (/usr/bin/pkg-config) 0.29.2\r\n> Run-time dependency glib-2.0 found: YES 2.72.4\r\n> Run-time dependency gobject-2.0 found: YES 2.72.4\r\n> Run-time dependency gio-2.0 found: YES 2.72.4\r\n> Run-time dependency libvirt found: YES 10.10.0\r\n> Run-time dependency libxml-2.0 found: YES 2.9.13\r\n> Program check-symfile.py found: YES (/tmp/libvirt-glib/build-aux/check-symfile.py)\r\n> Program check-symsorting.py found: YES (/tmp/libvirt-glib/build-aux/check-symsorting.py)\r\n> Program dist.py found: YES (/tmp/libvirt-glib/build-aux/dist.py)\r\n> Program gen-authors.py found: YES (/tmp/libvirt-glib/build-aux/gen-authors.py)\r\n> Configuring Makefile using configuration\r\n> Program make found: YES (/usr/bin/make)\r\n> Program g-ir-scanner found: YES (/usr/bin/g-ir-scanner)\r\n> Compiler for language vala for the host machine not found.\r\n> Program gtkdoc-scan found: YES (/usr/bin/gtkdoc-scan)\r\n> Compiler for C supports link arguments -Wl,--no-undefined: YES\r\n> Configuring config.h using configuration\r\n> Configuring libvirt-glib.spec using configuration\r\n> Configuring libvirt-glib-1.0.pc using configuration\r\n> Configuring libvirt-gconfig-1.0.pc using configuration\r\n> Configuring libvirt-gobject-1.0.pc using configuration\r\n> Checking for size of \"ptrdiff_t\" : 8\r\n> Checking for size of \"size_t\" : 8\r\n> Compiler for C supports arguments -fstack-protector-strong: YES\r\n> First supported argument: -fstack-protector-strong\r\n> Compiler for C supports arguments -Werror: YES\r\n> Compiler for C supports arguments -fasynchronous-unwind-tables: YES\r\n> Compiler for C supports arguments -fexceptions: YES\r\n> Compiler for C supports arguments -fipa-pure-const: YES\r\n> Compiler for C supports arguments -fno-common: YES\r\n> Compiler for C supports arguments -Wabsolute-value: YES\r\n> Compiler for C supports arguments -Waddress: YES\r\n> Compiler for C supports arguments -Waddress-of-packed-member: YES\r\n> Compiler for C supports arguments -Waggressive-loop-optimizations: YES\r\n> Compiler for C supports arguments -Walloc-size-larger-than=9223372036854775807: YES\r\n> Compiler for C supports arguments -Warray-bounds=2: YES\r\n> Compiler for C supports arguments -Wattribute-alias=2: YES\r\n> Compiler for C supports arguments -Wattribute-warning: YES\r\n> Compiler for C supports arguments -Wattributes: YES\r\n> Compiler for C supports arguments -Wbool-compare: YES\r\n> Compiler for C supports arguments -Wbool-operation: YES\r\n> Compiler for C supports arguments -Wbuiltin-declaration-mismatch: YES\r\n> Compiler for C supports arguments -Wbuiltin-macro-redefined: YES\r\n> Compiler for C supports arguments -Wcannot-profile: YES\r\n> Compiler for C supports arguments -Wno-cast-function-type: YES\r\n> Compiler for C supports arguments -Wchar-subscripts: YES\r\n> Compiler for C supports arguments -Wclobbered: YES\r\n> Compiler for C supports arguments -Wcomment: YES\r\n> Compiler for C supports arguments -Wcomments: YES\r\n> Compiler for C supports arguments -Wcoverage-mismatch: YES\r\n> Compiler for C supports arguments -Wcpp: YES\r\n> Compiler for C supports arguments -Wdangling-else: YES\r\n> Compiler for C supports arguments -Wdate-time: YES\r\n> Compiler for C supports arguments -Wdeprecated-declarations: YES\r\n> Compiler for C supports arguments -Wdesignated-init: YES\r\n> Compiler for C supports arguments -Wdiscarded-array-qualifiers: YES\r\n> Compiler for C supports arguments -Wdiscarded-qualifiers: YES\r\n> Compiler for C supports arguments -Wdiv-by-zero: YES\r\n> Compiler for C supports arguments -Wduplicated-cond: YES\r\n> Compiler for C supports arguments -Wduplicate-decl-specifier: YES\r\n> Compiler for C supports arguments -Wempty-body: YES\r\n> Compiler for C supports arguments -Wendif-labels: YES\r\n> Compiler for C supports arguments -Wexpansion-to-defined: YES\r\n> Compiler for C supports arguments -Wformat-contains-nul: YES\r\n> Compiler for C supports arguments -Wformat-extra-args: YES\r\n> Compiler for C supports arguments -Wno-format-nonliteral: YES\r\n> Compiler for C supports arguments -Wformat-overflow=2: YES\r\n> Compiler for C supports arguments -Wformat-security: YES\r\n> Compiler for C supports arguments -Wno-format-truncation: YES\r\n> Compiler for C supports arguments -Wformat-y2k: YES\r\n> Compiler for C supports arguments -Wformat-zero-length: YES\r\n> Compiler for C supports arguments -Wframe-address: YES\r\n> Compiler for C supports arguments -Wframe-larger-than=1024: YES\r\n> Compiler for C supports arguments -Wfree-nonheap-object: YES\r\n> Compiler for C supports arguments -Whsa: YES\r\n> Compiler for C supports arguments -Wif-not-aligned: YES\r\n> Compiler for C supports arguments -Wignored-attributes: YES\r\n> Compiler for C supports arguments -Wignored-qualifiers: YES\r\n> Compiler for C supports arguments -Wimplicit: YES\r\n> Compiler for C supports arguments -Wimplicit-fallthrough=5: YES\r\n> Compiler for C supports arguments -Wimplicit-function-declaration: YES\r\n> Compiler for C supports arguments -Wimplicit-int: YES\r\n> Compiler for C supports arguments -Wincompatible-pointer-types: YES\r\n> Compiler for C supports arguments -Winit-self: YES\r\n> Compiler for C supports arguments -Winline: YES\r\n> Compiler for C supports arguments -Wint-conversion: YES\r\n> Compiler for C supports arguments -Wint-in-bool-context: YES\r\n> Compiler for C supports arguments -Wint-to-pointer-cast: YES\r\n> Compiler for C supports arguments -Winvalid-memory-model: YES\r\n> Compiler for C supports arguments -Winvalid-pch: YES\r\n> Compiler for C supports arguments -Wjump-misses-init: YES\r\n> Compiler for C supports arguments -Wlogical-not-parentheses: YES\r\n> Compiler for C supports arguments -Wlogical-op: YES\r\n> Compiler for C supports arguments -Wmain: YES\r\n> Compiler for C supports arguments -Wmaybe-uninitialized: YES\r\n> Compiler for C supports arguments -Wmemset-elt-size: YES\r\n> Compiler for C supports arguments -Wmemset-transposed-args: YES\r\n> Compiler for C supports arguments -Wmisleading-indentation: YES\r\n> Compiler for C supports arguments -Wmissing-attributes: YES\r\n> Compiler for C supports arguments -Wmissing-braces: YES\r\n> Compiler for C supports arguments -Wmissing-declarations: YES\r\n> Compiler for C supports arguments -Wmissing-field-initializers: YES\r\n> Compiler for C supports arguments -Wmissing-include-dirs: YES\r\n> Compiler for C supports arguments -Wmissing-parameter-type: YES\r\n> Compiler for C supports arguments -Wmissing-profile: YES\r\n> Compiler for C supports arguments -Wmissing-prototypes: YES\r\n> Compiler for C supports arguments -Wmultichar: YES\r\n> Compiler for C supports arguments -Wmultistatement-macros: YES\r\n> Compiler for C supports arguments -Wnarrowing: YES\r\n> Compiler for C supports arguments -Wnested-externs: YES\r\n> Compiler for C supports arguments -Wnonnull: YES\r\n> Compiler for C supports arguments -Wnonnull-compare: YES\r\n> Compiler for C supports arguments -Wnormalized=nfc: YES\r\n> Compiler for C supports arguments -Wnull-dereference: YES\r\n> Compiler for C supports arguments -Wodr: YES\r\n> Compiler for C supports arguments -Wold-style-declaration: YES\r\n> Compiler for C supports arguments -Wold-style-definition: YES\r\n> Compiler for C supports arguments -Wopenmp-simd: YES\r\n> Compiler for C supports arguments -Woverflow: YES\r\n> Compiler for C supports arguments -Woverride-init: YES\r\n> Compiler for C supports arguments -Wpacked-bitfield-compat: YES\r\n> Compiler for C supports arguments -Wpacked-not-aligned: YES\r\n> Compiler for C supports arguments -Wparentheses: YES\r\n> Compiler for C supports arguments -Wpointer-arith: YES\r\n> Compiler for C supports arguments -Wpointer-compare: YES\r\n> Compiler for C supports arguments -Wpointer-sign: YES\r\n> Compiler for C supports arguments -Wpointer-to-int-cast: YES\r\n> Compiler for C supports arguments -Wpragmas: YES\r\n> Compiler for C supports arguments -Wpsabi: YES\r\n> Compiler for C supports arguments -Wrestrict: YES\r\n> Compiler for C supports arguments -Wreturn-local-addr: YES\r\n> Compiler for C supports arguments -Wreturn-type: YES\r\n> Compiler for C supports arguments -Wscalar-storage-order: YES\r\n> Compiler for C supports arguments -Wsequence-point: YES\r\n> Compiler for C supports arguments -Wshadow: YES\r\n> Compiler for C supports arguments -Wshift-count-negative: YES\r\n> Compiler for C supports arguments -Wshift-count-overflow: YES\r\n> Compiler for C supports arguments -Wshift-negative-value: YES\r\n> Compiler for C supports arguments -Wshift-overflow=2: YES\r\n> Compiler for C supports arguments -Wno-sign-compare: YES\r\n> Compiler for C supports arguments -Wsizeof-array-argument: YES\r\n> Compiler for C supports arguments -Wsizeof-pointer-div: YES\r\n> Compiler for C supports arguments -Wsizeof-pointer-memaccess: YES\r\n> Compiler for C supports arguments -Wstrict-aliasing: YES\r\n> Compiler for C supports arguments -Wstrict-prototypes: YES\r\n> Compiler for C supports arguments -Wstringop-overflow=2: YES\r\n> Compiler for C supports arguments -Wstringop-truncation: YES\r\n> Compiler for C supports arguments -Wsuggest-attribute=cold: YES\r\n> Compiler for C supports arguments -Wno-suggest-attribute=const: YES\r\n> Compiler for C supports arguments -Wsuggest-attribute=format: YES\r\n> Compiler for C supports arguments -Wsuggest-attribute=noreturn: YES\r\n> Compiler for C supports arguments -Wno-suggest-attribute=pure: YES\r\n> Compiler for C supports arguments -Wsuggest-final-methods: YES\r\n> Compiler for C supports arguments -Wsuggest-final-types: YES\r\n> Compiler for C supports arguments -Wswitch: YES\r\n> Compiler for C supports arguments -Wswitch-bool: YES\r\n> Compiler for C supports arguments -Wswitch-enum: YES\r\n> Compiler for C supports arguments -Wswitch-unreachable: YES\r\n> Compiler for C supports arguments -Wsync-nand: YES\r\n> Compiler for C supports arguments -Wtautological-compare: YES\r\n> Compiler for C supports arguments -Wtrampolines: YES\r\n> Compiler for C supports arguments -Wtrigraphs: YES\r\n> Compiler for C supports arguments -Wtype-limits: YES\r\n> Compiler for C supports arguments -Wno-typedef-redefinition: NO\r\n> Compiler for C supports arguments -Wuninitialized: YES\r\n> Compiler for C supports arguments -Wunknown-pragmas: YES\r\n> Compiler for C supports arguments -Wunused: YES\r\n> Compiler for C supports arguments -Wunused-but-set-parameter: YES\r\n> Compiler for C supports arguments -Wunused-but-set-variable: YES\r\n> Compiler for C supports arguments -Wunused-const-variable=2: YES\r\n> Compiler for C supports arguments -Wunused-function: YES\r\n> Compiler for C supports arguments -Wunused-label: YES\r\n> Compiler for C supports arguments -Wunused-local-typedefs: YES\r\n> Compiler for C supports arguments -Wunused-result: YES\r\n> Compiler for C supports arguments -Wunused-value: YES\r\n> Compiler for C supports arguments -Wunused-variable: YES\r\n> Compiler for C supports arguments -Wvarargs: YES\r\n> Compiler for C supports arguments -Wvariadic-macros: YES\r\n> Compiler for C supports arguments -Wvector-operation-performance: YES\r\n> Compiler for C supports arguments -Wvla: YES\r\n> Compiler for C supports arguments -Wvolatile-register-var: YES\r\n> Compiler for C supports arguments -Wwrite-strings: YES\r\n> Compiler for C supports arguments -fstack-protector-strong: YES (cached)\r\n> Configuring AUTHORS using configuration\r\n> Run-time dependency gobject-introspection-1.0 found: YES 1.72.0\r\n> Dependency gobject-introspection-1.0 found: YES 1.72.0 (cached)\r\n> Program /usr/bin/g-ir-scanner found: YES (/usr/bin/g-ir-scanner)\r\n> Dependency gobject-introspection-1.0 found: YES 1.72.0 (cached)\r\n> Program /usr/bin/g-ir-compiler found: YES (/usr/bin/g-ir-compiler)\r\n> Dependency glib-2.0 found: YES 2.72.4 (cached)\r\n> Program /usr/bin/glib-mkenums found: YES (/usr/bin/glib-mkenums)\r\n> Dependency glib-2.0 found: YES 2.72.4 (cached)\r\n> Program /usr/bin/glib-mkenums found: YES (/usr/bin/glib-mkenums)\r\n> Dependency glib-2.0 found: YES 2.72.4 (cached)\r\n> Program /usr/bin/glib-mkenums found: YES (/usr/bin/glib-mkenums)\r\n> Dependency glib-2.0 found: YES 2.72.4 (cached)\r\n> Program /usr/bin/glib-mkenums found: YES (/usr/bin/glib-mkenums)\r\n> Program msgfmt found: YES (/usr/bin/msgfmt)\r\n> Program msginit found: YES (/usr/bin/msginit)\r\n> Program msgmerge found: YES (/usr/bin/msgmerge)\r\n> Program xgettext found: YES (/usr/bin/xgettext)\r\n> Configuring version.xml using configuration\r\n> Program gtkdoc-scan found: YES (/usr/bin/gtkdoc-scan)\r\n> Program gtkdoc-scangobj found: YES (/usr/bin/gtkdoc-scangobj)\r\n> Program gtkdoc-mkdb found: YES (/usr/bin/gtkdoc-mkdb)\r\n> Program gtkdoc-mkhtml found: YES (/usr/bin/gtkdoc-mkhtml)\r\n> Program gtkdoc-fixxref found: YES (/usr/bin/gtkdoc-fixxref)\r\n> Program gtkdoc-scan found: YES (/usr/bin/gtkdoc-scan)\r\n> Program gtkdoc-scangobj found: YES (/usr/bin/gtkdoc-scangobj)\r\n> Program gtkdoc-mkdb found: YES (/usr/bin/gtkdoc-mkdb)\r\n> Program gtkdoc-mkhtml found: YES (/usr/bin/gtkdoc-mkhtml)\r\n> Program gtkdoc-fixxref found: YES (/usr/bin/gtkdoc-fixxref)\r\n> Program gtkdoc-scan found: YES (/usr/bin/gtkdoc-scan)\r\n> Program gtkdoc-scangobj found: YES (/usr/bin/gtkdoc-scangobj)\r\n> Program gtkdoc-mkdb found: YES (/usr/bin/gtkdoc-mkdb)\r\n> Program gtkdoc-mkhtml found: YES (/usr/bin/gtkdoc-mkhtml)\r\n> Program gtkdoc-fixxref found: YES (/usr/bin/gtkdoc-fixxref)\r\n> Build targets in project: 51\r\n>\r\n> Found ninja-1.11.1.git.kitware.jobserver-1 at /usr/local/bin/ninja\r\n> ***@***.***:/tmp/libvirt-glib$ meson compile -C builddir\r\n> INFO: autodetecting backend as ninja\r\n> INFO: calculating backend command to run: /usr/local/bin/ninja -C /tmp/libvirt-glib/builddir\r\n> ninja: Entering directory `/tmp/libvirt-glib/builddir'\r\n> [165/165] Generating libvirt-gobject/LibvirtGObject-1.0.typelib with a custom command\r\n> ***@***.***:/tmp/libvirt-glib$ sudo ninja -C builddir install\r\n> ninja: Entering directory `builddir'\r\n> [0/1] Installing files.\r\n> Installing libvirt-glib/libvirt-glib-1.0.so.0.6000.0 to /usr/local/lib/x86_64-linux-gnu\r\n> Installing libvirt-glib/LibvirtGLib-1.0.gir to /usr/local/share/gir-1.0\r\n> Installing libvirt-glib/LibvirtGLib-1.0.typelib to /usr/local/lib/x86_64-linux-gnu/girepository-1.0\r\n> Installing libvirt-gconfig/libvirt-gconfig-enum-types.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing libvirt-gconfig/libvirt-gconfig-1.0.so.0.6000.0 to /usr/local/lib/x86_64-linux-gnu\r\n> Installing libvirt-gconfig/LibvirtGConfig-1.0.gir to /usr/local/share/gir-1.0\r\n> Installing libvirt-gconfig/LibvirtGConfig-1.0.typelib to /usr/local/lib/x86_64-linux-gnu/girepository-1.0\r\n> Installing libvirt-gobject/libvirt-gobject-enums.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\r\n> Installing libvirt-gobject/libvirt-gobject-1.0.so.0.6000.0 to /usr/local/lib/x86_64-linux-gnu\r\n> Installing libvirt-gobject/LibvirtGObject-1.0.gir to /usr/local/share/gir-1.0\r\n> Installing libvirt-gobject/LibvirtGObject-1.0.typelib to /usr/local/lib/x86_64-linux-gnu/girepository-1.0\r\n> Installing po/ca/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/ca/LC_MESSAGES\r\n> Installing po/cs/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/cs/LC_MESSAGES\r\n> Installing po/de/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/de/LC_MESSAGES\r\n> Installing po/en_GB/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/en_GB/LC_MESSAGES\r\n> Installing po/es/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/es/LC_MESSAGES\r\n> Installing po/fi/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/fi/LC_MESSAGES\r\n> Installing po/fr/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/fr/LC_MESSAGES\r\n> Installing po/hi/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/hi/LC_MESSAGES\r\n> Installing po/ja/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/ja/LC_MESSAGES\r\n> Installing po/pl/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/pl/LC_MESSAGES\r\n> Installing po/pt_BR/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/pt_BR/LC_MESSAGES\r\n> Installing po/ru/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/ru/LC_MESSAGES\r\n> Installing po/tr/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/tr/LC_MESSAGES\r\n> Installing po/uk/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/uk/LC_MESSAGES\r\n> Installing po/id/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/id/LC_MESSAGES\r\n> Installing po/it/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/it/LC_MESSAGES\r\n> Installing po/si/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/si/LC_MESSAGES\r\n> Installing po/ko/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/ko/LC_MESSAGES\r\n> Installing po/sv/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/sv/LC_MESSAGES\r\n> Installing po/ka/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/ka/LC_MESSAGES\r\n> Installing po/ro/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/ro/LC_MESSAGES\r\n> Installing po/nl/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/nl/LC_MESSAGES\r\n> Installing /tmp/libvirt-glib/builddir/libvirt-glib-1.0.pc to /usr/local/lib/x86_64-linux-gnu/pkgconfig\r\n> Installing /tmp/libvirt-glib/builddir/libvirt-gconfig-1.0.pc to /usr/local/lib/x86_64-linux-gnu/pkgconfig\r\n> Installing /tmp/libvirt-glib/builddir/libvirt-gobject-1.0.pc to /usr/local/lib/x86_64-linux-gnu/pkgconfig\r\n> Installing /tmp/libvirt-glib/libvirt-glib/libvirt-glib.h to /usr/local/include/libvirt-glib-1.0/libvirt-glib\r\n> Installing /tmp/libvirt-glib/libvirt-glib/libvirt-glib-error.h to /usr/local/include/libvirt-glib-1.0/libvirt-glib\r\n> Installing /tmp/libvirt-glib/libvirt-glib/libvirt-glib-event.h to /usr/local/include/libvirt-glib-1.0/libvirt-glib\r\n> Installing /tmp/libvirt-glib/libvirt-glib/libvirt-glib-main.h to /usr/local/include/libvirt-glib-1.0/libvirt-glib\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-main.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-object.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities-host.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities-cpu.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities-cpu-feature.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities-cpu-model.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities-cpu-topology.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities-guest.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities-guest-arch.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities-guest-domain.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities-guest-feature.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities-host-secmodel.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-address.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-address-pci.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-address-usb.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-audio.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-capabilities.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-capabilities-os.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-channel.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-chardev.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-chardev-source.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-chardev-source-pty.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-chardev-source-spiceport.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-chardev-source-spicevmc.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-chardev-source-unix.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-clock.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-console.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-controller.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-controller-usb.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-cpu.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-cpu-feature.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-cpu-model.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-device.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-disk.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-disk-driver.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-filesys.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-graphics.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-graphics-desktop.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-graphics-rdp.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-graphics-sdl.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-graphics-spice.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-graphics-vnc.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-graphics-dbus.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-hostdev.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-hostdev-pci.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-input.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-interface.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-interface-bridge.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-interface-filterref.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-interface-filterref-parameter.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-interface-network.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-interface-user.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-memballoon.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-os.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-parallel.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-power-management.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-redirdev.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-seclabel.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-serial.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-smartcard.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-smartcard-host.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-smartcard-host-certificates.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-smartcard-passthrough.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-snapshot.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-snapshot-disk.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-sound.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-timer.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-timer-hpet.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-timer-pit.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-timer-rtc.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-video.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-vsock.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-helpers.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-interface.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-network.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-network-filter.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-node-device.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-secret.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-storage-permissions.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-storage-pool.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-storage-pool-source.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-storage-pool-target.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-storage-vol.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-storage-vol-backing-store.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-storage-vol-target.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\r\n> Installing /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-main.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\r\n> Installing /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-domain-snapshot.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\r\n> Installing /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-domain-device.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\r\n> Installing /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-domain-disk.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\r\n> Installing /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-domain-interface.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\r\n> Installing /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-domain.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\r\n> Installing /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-interface.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\r\n> Installing /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-network.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\r\n> Installing /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-network-dhcp-lease.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\r\n> Installing /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-network-filter.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\r\n> Installing /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-node-device.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\r\n> Installing /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-secret.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\r\n> Installing /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-storage-vol.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\r\n> Installing /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-storage-pool.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\r\n> Installing /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-stream.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\r\n> Installing /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-connection.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\r\n> Installing /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-manager.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\r\n> Installing symlink pointing to libvirt-glib-1.0.so.0.6000.0 to /usr/local/lib/x86_64-linux-gnu/libvirt-glib-1.0.so.0\r\n> Installing symlink pointing to libvirt-glib-1.0.so.0 to /usr/local/lib/x86_64-linux-gnu/libvirt-glib-1.0.so\r\n> Installing symlink pointing to libvirt-gconfig-1.0.so.0.6000.0 to /usr/local/lib/x86_64-linux-gnu/libvirt-gconfig-1.0.so.0\r\n> Installing symlink pointing to libvirt-gconfig-1.0.so.0 to /usr/local/lib/x86_64-linux-gnu/libvirt-gconfig-1.0.so\r\n> Installing symlink pointing to libvirt-gobject-1.0.so.0.6000.0 to /usr/local/lib/x86_64-linux-gnu/libvirt-gobject-1.0.so.0\r\n> Installing symlink pointing to libvirt-gobject-1.0.so.0 to /usr/local/lib/x86_64-linux-gnu/libvirt-gobject-1.0.so\r\n> Running custom install script '/usr/local/bin/meson --internal gtkdoc --sourcedir=/tmp/libvirt-glib --builddir=/tmp/libvirt-glib/builddir --subdir=docs/libvirt-glib --headerdirs=/tmp/libvirt-glib/libvirt-glib --mainfile=Libvirt-glib-docs.xml --modulename=Libvirt-glib --moduleversion= --mode=auto --gtkdoc-scan=/usr/bin/gtkdoc-scan --gtkdoc-scangobj=/usr/bin/gtkdoc-scangobj --gtkdoc-mkdb=/usr/bin/gtkdoc-mkdb --gtkdoc-mkhtml=/usr/bin/gtkdoc-mkhtml --gtkdoc-fixxref=/usr/bin/gtkdoc-fixxref --htmlargs= --scanargs=--rebuild-sections --scanobjsargs= --gobjects-types-file= --fixxrefargs= --mkdbargs=--output-format=xml --html-assets= --content-files= --expand-content-files= --ignore-headers= --installdir=/usr/local/share/gtk-doc/html/Libvirt-glib --cc=cc --ld=cc --cflags=-I/usr/include/glib-2.0 -I/usr/lib/x86_64-linux-gnu/glib-2.0/include --ldflags=-L/tmp/libvirt-glib/builddir/libvirt-glib -Wl,-rpath,/tmp/libvirt-glib/builddir/libvirt-glib -lvirt-glib-1.0 -L/usr/lib64 -lvirt -lglib-2.0 -lgobject-2.0'\r\n> Running custom install script '/usr/local/bin/meson --internal gtkdoc --sourcedir=/tmp/libvirt-glib --builddir=/tmp/libvirt-glib/builddir --subdir=docs/libvirt-gconfig --headerdirs=/tmp/libvirt-glib/libvirt-gconfig --mainfile=Libvirt-gconfig-docs.xml --modulename=Libvirt-gconfig --moduleversion= --mode=auto --gtkdoc-scan=/usr/bin/gtkdoc-scan --gtkdoc-scangobj=/usr/bin/gtkdoc-scangobj --gtkdoc-mkdb=/usr/bin/gtkdoc-mkdb --gtkdoc-mkhtml=/usr/bin/gtkdoc-mkhtml --gtkdoc-fixxref=/usr/bin/gtkdoc-fixxref --htmlargs= --scanargs=--rebuild-sections@@--rebuild-types --scanobjsargs= --gobjects-types-file= --fixxrefargs= --mkdbargs=--output-format=xml --html-assets= --content-files= --expand-content-files= --ignore-headers= --installdir=/usr/local/share/gtk-doc/html/Libvirt-gconfig --cc=cc --ld=cc --cflags=-I/usr/include/glib-2.0 -I/usr/lib/x86_64-linux-gnu/glib-2.0/include -I/usr/include/libxml2 --ldflags=-L/tmp/libvirt-glib/builddir/libvirt-gconfig -Wl,-rpath,/tmp/libvirt-glib/builddir/libvirt-gconfig -L/tmp/libvirt-glib/builddir/libvirt-glib -Wl,-rpath,/tmp/libvirt-glib/builddir/libvirt-glib -lvirt-gconfig-1.0 -L/usr/lib64 -lvirt -lgobject-2.0 -lglib-2.0 -lxml2'\r\n> Running custom install script '/usr/local/bin/meson --internal gtkdoc --sourcedir=/tmp/libvirt-glib --builddir=/tmp/libvirt-glib/builddir --subdir=docs/libvirt-gobject --headerdirs=/tmp/libvirt-glib/libvirt-gobject --mainfile=Libvirt-gobject-docs.xml --modulename=Libvirt-gobject --moduleversion= --mode=auto --gtkdoc-scan=/usr/bin/gtkdoc-scan --gtkdoc-scangobj=/usr/bin/gtkdoc-scangobj --gtkdoc-mkdb=/usr/bin/gtkdoc-mkdb --gtkdoc-mkhtml=/usr/bin/gtkdoc-mkhtml --gtkdoc-fixxref=/usr/bin/gtkdoc-fixxref --htmlargs= --scanargs=--rebuild-sections@@--rebuild-types --scanobjsargs= --gobjects-types-file= --fixxrefargs= --mkdbargs=--output-format=xml --html-assets= --content-files= --expand-content-files= --ignore-headers= --installdir=/usr/local/share/gtk-doc/html/Libvirt-gobject --cc=cc --ld=cc --cflags=-pthread -I/usr/include/libmount -I/usr/include/blkid -I/usr/include/glib-2.0 -I/usr/lib/x86_64-linux-gnu/glib-2.0/include -I/usr/include/libxml2 --ldflags=-L/tmp/libvirt-glib/builddir/libvirt-gobject -Wl,-rpath,/tmp/libvirt-glib/builddir/libvirt-gobject -L/tmp/libvirt-glib/builddir/libvirt-glib -Wl,-rpath,/tmp/libvirt-glib/builddir/libvirt-glib -L/tmp/libvirt-glib/builddir/libvirt-gconfig -Wl,-rpath,/tmp/libvirt-glib/builddir/libvirt-gconfig -lvirt-gobject-1.0 -lvirt-glib-1.0 -lvirt-gconfig-1.0 -L/usr/lib64 -lvirt -lgio-2.0 -lgobject-2.0 -lglib-2.0 -lxml2'\r\n> ***@***.***:/tmp/libvirt-glib$ sudo ninja -C builddir install\r\n> ninja: Entering directory `builddir'\r\n> [0/1] Installing files.\r\n> Installing libvirt-glib/libvirt-glib-1.0.so.0.6000.0 to /usr/local/lib/x86_64-linux-gnu\r\n> Installing libvirt-glib/LibvirtGLib-1.0.gir to /usr/local/share/gir-1.0\r\n> Installing libvirt-glib/LibvirtGLib-1.0.typelib to /usr/local/lib/x86_64-linux-gnu/girepository-1.0\r\n> Installing libvirt-gconfig/libvirt-gconfig-enum-types.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing libvirt-gconfig/libvirt-gconfig-1.0.so.0.6000.0 to /usr/local/lib/x86_64-linux-gnu\r\n> Installing libvirt-gconfig/LibvirtGConfig-1.0.gir to /usr/local/share/gir-1.0\r\n> Installing libvirt-gconfig/LibvirtGConfig-1.0.typelib to /usr/local/lib/x86_64-linux-gnu/girepository-1.0\r\n> Installing libvirt-gobject/libvirt-gobject-enums.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\r\n> Installing libvirt-gobject/libvirt-gobject-1.0.so.0.6000.0 to /usr/local/lib/x86_64-linux-gnu\r\n> Installing libvirt-gobject/LibvirtGObject-1.0.gir to /usr/local/share/gir-1.0\r\n> Installing libvirt-gobject/LibvirtGObject-1.0.typelib to /usr/local/lib/x86_64-linux-gnu/girepository-1.0\r\n> Installing po/ca/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/ca/LC_MESSAGES\r\n> Installing po/cs/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/cs/LC_MESSAGES\r\n> Installing po/de/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/de/LC_MESSAGES\r\n> Installing po/en_GB/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/en_GB/LC_MESSAGES\r\n> Installing po/es/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/es/LC_MESSAGES\r\n> Installing po/fi/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/fi/LC_MESSAGES\r\n> Installing po/fr/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/fr/LC_MESSAGES\r\n> Installing po/hi/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/hi/LC_MESSAGES\r\n> Installing po/ja/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/ja/LC_MESSAGES\r\n> Installing po/pl/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/pl/LC_MESSAGES\r\n> Installing po/pt_BR/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/pt_BR/LC_MESSAGES\r\n> Installing po/ru/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/ru/LC_MESSAGES\r\n> Installing po/tr/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/tr/LC_MESSAGES\r\n> Installing po/uk/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/uk/LC_MESSAGES\r\n> Installing po/id/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/id/LC_MESSAGES\r\n> Installing po/it/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/it/LC_MESSAGES\r\n> Installing po/si/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/si/LC_MESSAGES\r\n> Installing po/ko/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/ko/LC_MESSAGES\r\n> Installing po/sv/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/sv/LC_MESSAGES\r\n> Installing po/ka/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/ka/LC_MESSAGES\r\n> Installing po/ro/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/ro/LC_MESSAGES\r\n> Installing po/nl/LC_MESSAGES/libvirt-glib.mo to /usr/local/share/locale/nl/LC_MESSAGES\r\n> Installing /tmp/libvirt-glib/builddir/libvirt-glib-1.0.pc to /usr/local/lib/x86_64-linux-gnu/pkgconfig\r\n> Installing /tmp/libvirt-glib/builddir/libvirt-gconfig-1.0.pc to /usr/local/lib/x86_64-linux-gnu/pkgconfig\r\n> Installing /tmp/libvirt-glib/builddir/libvirt-gobject-1.0.pc to /usr/local/lib/x86_64-linux-gnu/pkgconfig\r\n> Installing /tmp/libvirt-glib/libvirt-glib/libvirt-glib.h to /usr/local/include/libvirt-glib-1.0/libvirt-glib\r\n> Installing /tmp/libvirt-glib/libvirt-glib/libvirt-glib-error.h to /usr/local/include/libvirt-glib-1.0/libvirt-glib\r\n> Installing /tmp/libvirt-glib/libvirt-glib/libvirt-glib-event.h to /usr/local/include/libvirt-glib-1.0/libvirt-glib\r\n> Installing /tmp/libvirt-glib/libvirt-glib/libvirt-glib-main.h to /usr/local/include/libvirt-glib-1.0/libvirt-glib\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-main.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-object.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities-host.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities-cpu.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities-cpu-feature.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities-cpu-model.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities-cpu-topology.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities-guest.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities-guest-arch.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities-guest-domain.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities-guest-feature.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-capabilities-host-secmodel.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-address.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-address-pci.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-address-usb.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-audio.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-capabilities.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-capabilities-os.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-channel.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-chardev.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-chardev-source.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-chardev-source-pty.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-chardev-source-spiceport.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-chardev-source-spicevmc.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-chardev-source-unix.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-clock.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-console.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-controller.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-controller-usb.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-cpu.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-cpu-feature.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-cpu-model.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-device.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-disk.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-disk-driver.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-filesys.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-graphics.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-graphics-desktop.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-graphics-rdp.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-graphics-sdl.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-graphics-spice.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-graphics-vnc.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-graphics-dbus.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-hostdev.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-hostdev-pci.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-input.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-interface.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-interface-bridge.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-interface-filterref.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-interface-filterref-parameter.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-interface-network.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-interface-user.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-memballoon.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-os.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-parallel.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-power-management.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-redirdev.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-seclabel.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-serial.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-smartcard.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-smartcard-host.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-smartcard-host-certificates.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-smartcard-passthrough.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-snapshot.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-snapshot-disk.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-sound.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-timer.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-timer-hpet.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-timer-pit.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-timer-rtc.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-video.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-domain-vsock.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-helpers.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-interface.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-network.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-network-filter.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-node-device.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-secret.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-storage-permissions.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-storage-pool.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-storage-pool-source.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-storage-pool-target.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-storage-vol.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-storage-vol-backing-store.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gconfig/libvirt-gconfig-storage-vol-target.h to /usr/local/include/libvirt-gconfig-1.0/libvirt-gconfig\r\n> Installing /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\r\n> Installing /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-main.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\r\n> Installing /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-domain-snapshot.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\r\n> Installing /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-domain-device.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\r\n> Installing /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-domain-disk.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\r\n> Installing /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-domain-interface.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\r\n> Installing /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-domain.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\r\n> Installing /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-interface.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\r\n> Installing /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-network.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\r\n> Installing /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-network-dhcp-lease.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\r\n> Installing /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-network-filter.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\r\n> Installing /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-node-device.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\r\n> Installing /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-secret.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\r\n> Installing /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-storage-vol.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\r\n> Installing /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-storage-pool.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\r\n> Installing /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-stream.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\r\n> Installing /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-connection.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\r\n> Installing /tmp/libvirt-glib/libvirt-gobject/libvirt-gobject-manager.h to /usr/local/include/libvirt-gobject-1.0/libvirt-gobject\r\n> Installing symlink pointing to libvirt-glib-1.0.so.0.6000.0 to /usr/local/lib/x86_64-linux-gnu/libvirt-glib-1.0.so.0\r\n> Installing symlink pointing to libvirt-glib-1.0.so.0 to /usr/local/lib/x86_64-linux-gnu/libvirt-glib-1.0.so\r\n> Installing symlink pointing to libvirt-gconfig-1.0.so.0.6000.0 to /usr/local/lib/x86_64-linux-gnu/libvirt-gconfig-1.0.so.0\r\n> Installing symlink pointing to libvirt-gconfig-1.0.so.0 to /usr/local/lib/x86_64-linux-gnu/libvirt-gconfig-1.0.so\r\n> Installing symlink pointing to libvirt-gobject-1.0.so.0.6000.0 to /usr/local/lib/x86_64-linux-gnu/libvirt-gobject-1.0.so.0\r\n> Installing symlink pointing to libvirt-gobject-1.0.so.0 to /usr/local/lib/x86_64-linux-gnu/libvirt-gobject-1.0.so\r\n> Running custom install script '/usr/local/bin/meson --internal gtkdoc --sourcedir=/tmp/libvirt-glib --builddir=/tmp/libvirt-glib/builddir --subdir=docs/libvirt-glib --headerdirs=/tmp/libvirt-glib/libvirt-glib --mainfile=Libvirt-glib-docs.xml --modulename=Libvirt-glib --moduleversion= --mode=auto --gtkdoc-scan=/usr/bin/gtkdoc-scan --gtkdoc-scangobj=/usr/bin/gtkdoc-scangobj --gtkdoc-mkdb=/usr/bin/gtkdoc-mkdb --gtkdoc-mkhtml=/usr/bin/gtkdoc-mkhtml --gtkdoc-fixxref=/usr/bin/gtkdoc-fixxref --htmlargs= --scanargs=--rebuild-sections --scanobjsargs= --gobjects-types-file= --fixxrefargs= --mkdbargs=--output-format=xml --html-assets= --content-files= --expand-content-files= --ignore-headers= --installdir=/usr/local/share/gtk-doc/html/Libvirt-glib --cc=cc --ld=cc --cflags=-I/usr/include/glib-2.0 -I/usr/lib/x86_64-linux-gnu/glib-2.0/include --ldflags=-L/tmp/libvirt-glib/builddir/libvirt-glib -Wl,-rpath,/tmp/libvirt-glib/builddir/libvirt-glib -lvirt-glib-1.0 -L/usr/lib64 -lvirt -lglib-2.0 -lgobject-2.0'\r\n> Running custom install script '/usr/local/bin/meson --internal gtkdoc --sourcedir=/tmp/libvirt-glib --builddir=/tmp/libvirt-glib/builddir --subdir=docs/libvirt-gconfig --headerdirs=/tmp/libvirt-glib/libvirt-gconfig --mainfile=Libvirt-gconfig-docs.xml --modulename=Libvirt-gconfig --moduleversion= --mode=auto --gtkdoc-scan=/usr/bin/gtkdoc-scan --gtkdoc-scangobj=/usr/bin/gtkdoc-scangobj --gtkdoc-mkdb=/usr/bin/gtkdoc-mkdb --gtkdoc-mkhtml=/usr/bin/gtkdoc-mkhtml --gtkdoc-fixxref=/usr/bin/gtkdoc-fixxref --htmlargs= --scanargs=--rebuild-sections@@--rebuild-types --scanobjsargs= --gobjects-types-file= --fixxrefargs= --mkdbargs=--output-format=xml --html-assets= --content-files= --expand-content-files= --ignore-headers= --installdir=/usr/local/share/gtk-doc/html/Libvirt-gconfig --cc=cc --ld=cc --cflags=-I/usr/include/glib-2.0 -I/usr/lib/x86_64-linux-gnu/glib-2.0/include -I/usr/include/libxml2 --ldflags=-L/tmp/libvirt-glib/builddir/libvirt-gconfig -Wl,-rpath,/tmp/libvirt-glib/builddir/libvirt-gconfig -L/tmp/libvirt-glib/builddir/libvirt-glib -Wl,-rpath,/tmp/libvirt-glib/builddir/libvirt-glib -lvirt-gconfig-1.0 -L/usr/lib64 -lvirt -lgobject-2.0 -lglib-2.0 -lxml2'\r\n> Running custom install script '/usr/local/bin/meson --internal gtkdoc --sourcedir=/tmp/libvirt-glib --builddir=/tmp/libvirt-glib/builddir --subdir=docs/libvirt-gobject --headerdirs=/tmp/libvirt-glib/libvirt-gobject --mainfile=Libvirt-gobject-docs.xml --modulename=Libvirt-gobject --moduleversion= --mode=auto --gtkdoc-scan=/usr/bin/gtkdoc-scan --gtkdoc-scangobj=/usr/bin/gtkdoc-scangobj --gtkdoc-mkdb=/usr/bin/gtkdoc-mkdb --gtkdoc-mkhtml=/usr/bin/gtkdoc-mkhtml --gtkdoc-fixxref=/usr/bin/gtkdoc-fixxref --htmlargs= --scanargs=--rebuild-sections@@--rebuild-types --scanobjsargs= --gobjects-types-file= --fixxrefargs= --mkdbargs=--output-format=xml --html-assets= --content-files= --expand-content-files= --ignore-headers= --installdir=/usr/local/share/gtk-doc/html/Libvirt-gobject --cc=cc --ld=cc --cflags=-pthread -I/usr/include/libmount -I/usr/include/blkid -I/usr/include/glib-2.0 -I/usr/lib/x86_64-linux-gnu/glib-2.0/include -I/usr/include/libxml2 --ldflags=-L/tmp/libvirt-glib/builddir/libvirt-gobject -Wl,-rpath,/tmp/libvirt-glib/builddir/libvirt-gobject -L/tmp/libvirt-glib/builddir/libvirt-glib -Wl,-rpath,/tmp/libvirt-glib/builddir/libvirt-glib -L/tmp/libvirt-glib/builddir/libvirt-gconfig -Wl,-rpath,/tmp/libvirt-glib/builddir/libvirt-gconfig -lvirt-gobject-1.0 -lvirt-glib-1.0 -lvirt-gconfig-1.0 -L/usr/lib64 -lvirt -lgio-2.0 -lgobject-2.0 -lglib-2.0 -lxml2'\r\n> ***@***.***:/tmp/libvirt-glib$ mkdir -p /usr/local/lib/girepository-1.0/\r\n> ***@***.***:/tmp/libvirt-glib$ cp builddir/libvirt-glib/LibvirtGLib-1.0.typelib /usr/local/lib/girepository-1.0/LibvirtGLib-1.0.typelib\r\n>     /sbin/ldconfig\r\n> cp: cannot create regular file '/usr/local/lib/girepository-1.0/LibvirtGLib-1.0.typelib': Permission denied\r\n> /sbin/ldconfig.real: Can't create temporary cache file /etc/ld.so.cache~: Permission denied\r\n> ***@***.***:/tmp/libvirt-glib$ sudo cp builddir/libvirt-glib/LibvirtGLib-1.0.typelib /usr/local/lib/girepository-1.0/LibvirtGLib-1.0.typelib\r\n> ***@***.***:/tmp/libvirt-glib$ /sbin/ldconfig\r\n> /sbin/ldconfig.real: Can't create temporary cache file /etc/ld.so.cache~: Permission denied\r\n> ***@***.***:/tmp/libvirt-glib$ sudo /sbin/ldconfig\r\n> ***@***.***:/tmp/libvirt-glib$ if [ ! -d \"virt-manager\" ]; then\r\n>         git clone https://github.com/virt-manager/virt-manager.git\r\n>         echo \"[+] Cloned Virt Manager repo\"\r\n>     fi\r\n> Cloning into 'virt-manager'...\r\n> remote: Enumerating objects: 64899, done.\r\n> remote: Counting objects: 100% (2739/2739), done.\r\n> remote: Compressing objects: 100% (509/509), done.\r\n> remote: Total 64899 (delta 2381), reused 2230 (delta 2230), pack-reused 62160 (from 4)\r\n> Receiving objects: 100% (64899/64899), 95.01 MiB | 13.12 MiB/s, done.\r\n> Resolving deltas: 100% (53847/53847), done.\r\n> [+] Cloned Virt Manager repo\r\n> ***@***.***:/tmp/libvirt-glib$ cd \"virt-manager\" || return\r\n> ***@***.***:/tmp/libvirt-glib/virt-manager$ meson setup build\r\n> The Meson build system\r\n> Version: 1.6.1\r\n> Source dir: /tmp/libvirt-glib/virt-manager\r\n> Build dir: /tmp/libvirt-glib/virt-manager/build\r\n> Build type: native build\r\n> Project name: virt-manager\r\n> Project version: 5.0.0\r\n> Host machine cpu family: x86_64\r\n> Host machine cpu: x86_64\r\n> Program python3 found: YES (/usr/bin/python3)\r\n> Program make_bin_wrapper.py found: YES (/usr/bin/python3 /tmp/libvirt-glib/virt-manager/scripts/make_bin_wrapper.py)\r\n> Program meson_dist.py found: YES (/usr/bin/python3 /tmp/libvirt-glib/virt-manager/scripts/meson_dist.py)\r\n> Program rst2man found: YES (/usr/bin/rst2man)\r\n> Configuring virt-install using configuration\r\n> Configuring virt-clone using configuration\r\n> Configuring virt-xml using configuration\r\n> Configuring build.cfg using configuration\r\n> Program msgfmt found: YES (/usr/bin/msgfmt)\r\n> Program msginit found: YES (/usr/bin/msginit)\r\n> Program msgmerge found: YES (/usr/bin/msgmerge)\r\n> Program xgettext found: YES (/usr/bin/xgettext)\r\n> Found pkg-config: YES (/usr/bin/pkg-config) 0.29.2\r\n> Build-time dependency gio-2.0 found: YES 2.72.4\r\n> Program /usr/bin/glib-compile-schemas found: YES (/usr/bin/glib-compile-schemas)\r\n> Program gtk4-update-icon-cache found: YES (/usr/bin/gtk4-update-icon-cache)\r\n> Configuring virt-manager.spec using configuration\r\n> Program pylint found: YES (/usr/bin/pylint)\r\n> Program pytest found: YES (/usr/local/bin/pytest)\r\n> Program pycodestyle found: YES (/usr/local/bin/pycodestyle)\r\n> Program codespell found: NO\r\n> Build targets in project: 66\r\n>\r\n> Found ninja-1.11.1.git.kitware.jobserver-1 at /usr/local/bin/ninja\r\n> ***@***.***:/tmp/libvirt-glib/virt-manager$ meson install -C build\r\n> ninja: Entering directory `/tmp/libvirt-glib/virt-manager/build'\r\n> [63/63] Merging translations for po/virt-manager.appdata.xml\r\n> Installing man/virt-install.1 to /usr/\nComment: on a vm,  getting latest iso and just build a quick vm, run script and after some time just check it. You just need to run everything as root user, you can just `sudo su` and then run them\n\n@skneppel what i do see that failed and is important \n\n```\nskneppel@cape:/tmp/libvirt-glib$ mkdir -p /usr/local/lib/girepository-1.0/\nskneppel@cape:/tmp/libvirt-glib$ cp builddir/libvirt-glib/LibvirtGLib-1.0.typelib /usr/local/lib/girepository-1.0/LibvirtGLib-1.0.typelib\n    /sbin/ldconfig\ncp: cannot create regular file '/usr/local/lib/girepository-1.0/LibvirtGLib-1.0.typelib': Permission denied\n/sbin/ldconfig.real: Can't create temporary cache file /etc/ld.so.cache~: Permission denied\nskneppel@cape:/tmp/libvirt-glib$ sudo cp builddir/libvirt-glib/LibvirtGLib-1.0.typelib /usr/local/lib/girepository-1.0/LibvirtGLib-1.0.typelib\nskneppel@cape:/tmp/libvirt-glib$ /sbin/ldconfig\n/sbin/ldconfig.real: Can't create temporary cache file /etc/ld.so.cache~: Permission denied\n```\nComment: thanks to gemini, this must works\n\n```\nexport GI_TYPELIB_PATH=/usr/local/lib/girepository-1.0:$GI_TYPELIB_PATH\nvirt-manager\n```\n\nor just \n```\nsudo cp builddir/libvirt-glib/LibvirtGLib-1.0.typelib /usr/lib/girepository-1.0/\nsudo ldconfig\n```",
+  "Title: Add checkbox, radio button compatibility to Human aux module\nBody: Improves the likelihood of a successful multi-stage detonation when the sample requires human interaction before delivering additional payloads.\r\n\r\n#### Human.py (Windows)\r\n- Adds checkbox checking functionality\r\n- Adds radio button checking functionality\r\n- Improves readability and code structure",
+  "Title: Fix CPUID replacement in kvm.c\nBody: - Fix the path to kvm.c\r\n- Fix the regex to match KVMKVMKVM\\0\\0\\0\nComment: thanks",
+  "Title: Prescript detection feature\nBody: None\nComment: interesting feature, thank you",
+  "Title: scheduler.py never reaches the cleaner code\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I did read the README!\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nInvoke cleanup if <= of free space detected\r\n\r\n# Current Behavior\r\n\r\nI am trying to make use of the free-space-monitor and the new cleaner function that you can configure in cooko.conf.\r\nIt doesn't work properly for me, I think scheduler.py never reaches the cleaner code because the parameter return_value=True is passed when the method is called.\r\nhttps://github.com/kevoreilly/CAPEv2/blob/a9d80fd990d6fd7c1b2caced4175e316c1b01a9f/lib/cuckoo/core/scheduler.py#L245\r\nSo cleaners_utils.py returns always before execute_cleanup()\r\n\r\n        if return_value:\r\n            return need_space, space_available\r\n\r\n        if need_space:\r\n            if not printed_error:\r\n                log.error(\r\n                    \"Not enough free disk space! (Only %d MB!). You can change limits it in cuckoo.conf -> freespace\",\r\n                    space_available,\r\n                )\r\n                printed_error = True\r\n\r\n            # Invoke cleaups here if enabled\r\n            if config.cleaner.enabled:\r\n                # prepare dict on startup\r\n                execute_cleanup(cleanup_dict)\r\n\r\nfree_space_monitor is also used in process.py but without without return_value. So i tried to set freespace_processing  = 50000 and freespace = 0 to skip the check in scheduler.py.\r\nhttps://github.com/kevoreilly/CAPEv2/blob/a9d80fd990d6fd7c1b2caced4175e316c1b01a9f/utils/process.py#L315\r\nBut proccess.py checks cfg.cuckoo.freespace. I would expect a check for cfg.cuckoo.freespace_processing?!\r\nhttps://github.com/kevoreilly/CAPEv2/blob/a9d80fd990d6fd7c1b2caced4175e316c1b01a9f/utils/process.py#L311\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nconfigure cleaner and freespace/freespace_processing in cuckoo.conf\r\n```\r\n[cleaner]\r\n# Invoke cleanup if <= of free space detected. see/set freespace/freespace_processing\r\nenabled = yes\r\n# set any value to 0 to disable it. In days\r\nbinaries_days = 30\r\ntmp_days = 1\r\n# Remove analysis folder\r\nanalysis_days = 30\r\n# Delete mongo data\r\nmongo = no\r\n# Clean orphan files in mongodb\r\nunused_files_in_mongodb = no\r\n```\r\nstart cuckoo.py\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | ba39c0c7b5da71a83073bd6bc3dc2d0cfc956fe0\r\n| OS version       | Ubuntu 22.04, Windows 10 21H2\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: very good point, thank you, finally i was able to reach to this, it's now solved here https://github.com/kevoreilly/CAPEv2/commit/587699953411a6a22fe081bbbe36ca6c925412b3\nComment: Thx",
+  "Title: fix: incorrect use of Config class.\nBody: The config class was used incorrectly to load the resultserver ip resulting in an error at db.add_machine because an empy Config object cannot be casted into the required type.\r\n\r\nhappend to ran into this issue and did some debugging to resolve the issue.\r\n\nComment: Tnx",
+  "Title: Cannot continue with installation because of kvm.sh\nBody: Hi, I was installing Cape for the first time in 4 months and I have seen some changes and unexpected difficulties progressing even installing the thing(and I was able to do that with alot of struggle in the past)\r\n\r\nI install the kvm.sh script but i cannot continue bc i get interrupted:\r\n```\r\nuge thanks to:\r\n    * @SamRSA8\r\n    * @http_error_418\r\n    * @2sec4you\r\n    * @seifreed\r\n    * @Fire9\r\n    * @abuse_ch\r\n    * @wmetcalf\r\n    * @ClaudioWayne\r\n    * @CplNathan\r\n'\r\n+ QTARGETS=--target-list=i386-softmmu,x86_64-softmmu,i386-linux-user,x86_64-linux-user\r\n+ qemu_version=9.0.0\r\n+ libvirt_version=10.3.0\r\n+ OS=\r\n+ username=student\r\n+ MAINTAINER=\r\n+ VM_NETWORK_RANGE=192.168.1\r\n+ DNS_PRIMARY=8.8.8.8\r\n+ DNS_SECONDARY=8.8.4.4\r\n+ systemctl mask sleep.target suspend.target hibernate.target hybrid-sleep.target\r\n+ cpuid='Intel(R) Core(TM) i3-4130 CPU'\r\n+ hypervisor_string_replacemnt=GenuineIntel\r\n+ qemu_hd_replacement='SAMSUNG MZ76E120'\r\n+ qemu_dvd_replacement='HL-PQ-SV WB8'\r\n+ bochs_cpu_replacement=INTELCPU\r\n+ qemu_bochs_cpu='INTEL\\/INTEL'\r\n+ qemu_space_replacement='intel '\r\n+ src_misc_bios_table='07\\/02\\/18'\r\n+ src_bios_table_date2='11\\/03\\/2018'\r\n+ src_fw_smbios_date='11\\/03\\/2018'\r\n+ PEN_REPLACER=BXPC\r\n+ SCSI_REPLACER=BXPC\r\n+ ATAPI_REPLACER=BXPC\r\n+ MICRODRIVE_REPLACER=BXPC\r\n+ BOCHS_BLOCK_REPLACER=BXPC\r\n+ BOCHS_BLOCK_REPLACER2=BXPC\r\n+ BOCHS_BLOCK_REPLACER3=BXPC\r\n+ BXPC_REPLACER=BXPC\r\n+ '[' -f ./kvm-config.sh ']'\r\n+ sudo apt-get update\r\nHit:1 http://nl.archive.ubuntu.com/ubuntu jammy InRelease\r\nGet:2 http://security.ubuntu.com/ubuntu jammy-security InRelease [129 kB]\r\nHit:3 http://nl.archive.ubuntu.com/ubuntu jammy-updates InRelease\r\nHit:4 http://nl.archive.ubuntu.com/ubuntu jammy-backports InRelease\r\nFetched 129 kB in 0s (345 kB/s)\r\nReading package lists...\r\n+ NC='\\033[0m'\r\n+ RED='\\033[0;31m'\r\n+ echo -e '\\033[0;31m[!] ONLY for UBUNTU 20.04 and 22.04\\033[0m'\r\n+ echo -e '\\033[0;31m\\t[!] NEVER install packages from APT that installed by this script\\033[0m'\r\n+ echo -e '\\033[0;31m\\t[!] NEVER use '\\''make install'\\'' - it poison system and no easy way to upgrade/uninstall/cleanup, use dpkg-deb\\033[0m'\r\n+ echo -e '\\033[0;31m\\t[!] NEVER run '\\''python setup.py install'\\'' DO USE '\\''pip intall .'\\'' the same as APT poisoning/upgrading\\033[0m\\n'\r\n+ echo -e '\\033[0;31m\\t[!] NEVER FORCE system upgrade, it will ignore blacklist and mess with packages installed by APT and this scritp!\\033[0m\\n'\r\n[!] ONLY for UBUNTU 20.04 and 22.04\r\n\t[!] NEVER install packages from APT that installed by this script\r\n\t[!] NEVER use 'make install' - it poison system and no easy way to upgrade/uninstall/cleanup, use dpkg-deb\r\n\t[!] NEVER run 'python setup.py install' DO USE 'pip intall .' the same as APT poisoning/upgrading\r\n\r\n\t[!] NEVER FORCE system upgrade, it will ignore blacklist and mess with packages installed by APT and this scritp!\r\n\r\n++ echo all\r\n++ tr '[:upper:]' '[:lower:]'\r\n+ COMMAND=all\r\n+ case $COMMAND in\r\n+ '[' 0 -ne 0 ']'\r\n++ uname -s\r\n+ OS=Linux\r\n++ whoami\r\n++ hostname\r\n+ MAINTAINER=root_student-vm-ubuntu22\r\n++ dpkg --print-architecture\r\n+ ARCH=amd64\r\n+ case \"$COMMAND\" in\r\n+ configure_needreboot\r\n+ sed -i '/#$nrconf{restart} = '\\''i'\\'';/s/.*/$nrconf{restart} = '\\''a'\\'';/' /etc/needrestart/needrestart.conf\r\n+ sed -i 's/#$nrconf{kernelhints} = -1;/$nrconf{kernelhints} = -1;/g' /etc/needrestart/needrestart.conf\r\n+ aptitude install -f language-pack-UTF-8 -y\r\nReading package lists...\r\nBuilding dependency tree...\r\nReading state information...\r\nReading extended state information...\r\nInitializing package states...\r\nWriting extended state information...\r\nBuilding tag database...\r\nUnable to apply some actions but Aptitude::CmdLine::Fix-Broken (-f) is enabled, continuing...\r\nCouldn't find any package whose name or description matched \"language-pack-UTF-8\"\r\nNo packages will be installed, upgraded, or removed.\r\n0 packages upgraded, 0 newly installed, 0 to remove and 10 not upgraded.\r\nNeed to get 0 B of archives. After unpacking 0 B will be used.\r\nWriting extended state information...\r\nReading package lists...\r\n                        Building dependency tree...\r\n                                                   Reading state information...\r\n                                                                               Reading extended state information...\r\n                                                                                                                    Initializing package states...\r\n                   Writing extended state information...\r\n                                                        Building tag database...\r\n                                                                                + install_qemu\r\n+ cd /tmp\r\n+ echo '[+] Cleaning QEMU old install if exists'\r\n[+] Cleaning QEMU old install if exists\r\n                                       + rm -r /usr/share/qemu\r\n\r\n```\r\n\r\nI commented out the utf pack but then it just gets interrupted to install qemu\r\ncan someone help?\nComment: try it without` set -ex` in line 2\r\nlike:\r\n```\r\n#!/bin/bash\r\n#set -ex\r\n\r\n# Copyright (C) 2011-2023 doomedraven.\r\n# See the file 'LICENSE.md' for copying permission.\r\n# https://www.doomedraven.com/2016/05/kvm.htm\r\n```\nComment: Yep, need to remove set -ex at the header of script\r\n\r\nEl mi\u00e9, 11 sept 2024, 16:11, Wilted ***@***.***> escribi\u00f3:\r\n\r\n> Hi, I was installing Cape for the first time in 4 months and I have seen\r\n> some changes and unexpected difficulties progressing even installing the\r\n> thing(and I was able to do that with alot of struggle in the past)\r\n>\r\n> I install the kvm.sh script but i cannot continue bc i get interrupted:\r\n>\r\n> uge thanks to:\r\n>     * @SamRSA8\r\n>     * @http_error_418\r\n>     * @2sec4you\r\n>     * @seifreed\r\n>     * @Fire9\r\n>     * @abuse_ch\r\n>     * @wmetcalf\r\n>     * @ClaudioWayne\r\n>     * @CplNathan\r\n> '\r\n> + QTARGETS=--target-list=i386-softmmu,x86_64-softmmu,i386-linux-user,x86_64-linux-user\r\n> + qemu_version=9.0.0\r\n> + libvirt_version=10.3.0\r\n> + OS=\r\n> + username=student\r\n> + MAINTAINER=\r\n> + VM_NETWORK_RANGE=192.168.1\r\n> + DNS_PRIMARY=8.8.8.8\r\n> + DNS_SECONDARY=8.8.4.4\r\n> + systemctl mask sleep.target suspend.target hibernate.target hybrid-sleep.target\r\n> + cpuid='Intel(R) Core(TM) i3-4130 CPU'\r\n> + hypervisor_string_replacemnt=GenuineIntel\r\n> + qemu_hd_replacement='SAMSUNG MZ76E120'\r\n> + qemu_dvd_replacement='HL-PQ-SV WB8'\r\n> + bochs_cpu_replacement=INTELCPU\r\n> + qemu_bochs_cpu='INTEL\\/INTEL'\r\n> + qemu_space_replacement='intel '\r\n> + src_misc_bios_table='07\\/02\\/18'\r\n> + src_bios_table_date2='11\\/03\\/2018'\r\n> + src_fw_smbios_date='11\\/03\\/2018'\r\n> + PEN_REPLACER=BXPC\r\n> + SCSI_REPLACER=BXPC\r\n> + ATAPI_REPLACER=BXPC\r\n> + MICRODRIVE_REPLACER=BXPC\r\n> + BOCHS_BLOCK_REPLACER=BXPC\r\n> + BOCHS_BLOCK_REPLACER2=BXPC\r\n> + BOCHS_BLOCK_REPLACER3=BXPC\r\n> + BXPC_REPLACER=BXPC\r\n> + '[' -f ./kvm-config.sh ']'\r\n> + sudo apt-get update\r\n> Hit:1 http://nl.archive.ubuntu.com/ubuntu jammy InRelease\r\n> Get:2 http://security.ubuntu.com/ubuntu jammy-security InRelease [129 kB]\r\n> Hit:3 http://nl.archive.ubuntu.com/ubuntu jammy-updates InRelease\r\n> Hit:4 http://nl.archive.ubuntu.com/ubuntu jammy-backports InRelease\r\n> Fetched 129 kB in 0s (345 kB/s)\r\n> Reading package lists...\r\n> + NC='\\033[0m'\r\n> + RED='\\033[0;31m'\r\n> + echo -e '\\033[0;31m[!] ONLY for UBUNTU 20.04 and 22.04\\033[0m'\r\n> + echo -e '\\033[0;31m\\t[!] NEVER install packages from APT that installed by this script\\033[0m'\r\n> + echo -e '\\033[0;31m\\t[!] NEVER use '\\''make install'\\'' - it poison system and no easy way to upgrade/uninstall/cleanup, use dpkg-deb\\033[0m'\r\n> + echo -e '\\033[0;31m\\t[!] NEVER run '\\''python setup.py install'\\'' DO USE '\\''pip intall .'\\'' the same as APT poisoning/upgrading\\033[0m\\n'\r\n> + echo -e '\\033[0;31m\\t[!] NEVER FORCE system upgrade, it will ignore blacklist and mess with packages installed by APT and this scritp!\\033[0m\\n'\r\n> [!] ONLY for UBUNTU 20.04 and 22.04\r\n> \t[!] NEVER install packages from APT that installed by this script\r\n> \t[!] NEVER use 'make install' - it poison system and no easy way to upgrade/uninstall/cleanup, use dpkg-deb\r\n> \t[!] NEVER run 'python setup.py install' DO USE 'pip intall .' the same as APT poisoning/upgrading\r\n>\r\n> \t[!] NEVER FORCE system upgrade, it will ignore blacklist and mess with packages installed by APT and this scritp!\r\n>\r\n> ++ echo all\r\n> ++ tr '[:upper:]' '[:lower:]'\r\n> + COMMAND=all\r\n> + case $COMMAND in\r\n> + '[' 0 -ne 0 ']'\r\n> ++ uname -s\r\n> + OS=Linux\r\n> ++ whoami\r\n> ++ hostname\r\n> + MAINTAINER=root_student-vm-ubuntu22\r\n> ++ dpkg --print-architecture\r\n> + ARCH=amd64\r\n> + case \"$COMMAND\" in\r\n> + configure_needreboot\r\n> + sed -i '/#$nrconf{restart} = '\\''i'\\'';/s/.*/$nrconf{restart} = '\\''a'\\'';/' /etc/needrestart/needrestart.conf\r\n> + sed -i 's/#$nrconf{kernelhints} = -1;/$nrconf{kernelhints} = -1;/g' /etc/needrestart/needrestart.conf\r\n> + aptitude install -f language-pack-UTF-8 -y\r\n> Reading package lists...\r\n> Building dependency tree...\r\n> Reading state information...\r\n> Reading extended state information...\r\n> Initializing package states...\r\n> Writing extended state information...\r\n> Building tag database...\r\n> Unable to apply some actions but Aptitude::CmdLine::Fix-Broken (-f) is enabled, continuing...\r\n> Couldn't find any package whose name or description matched \"language-pack-UTF-8\"\r\n> No packages will be installed, upgraded, or removed.\r\n> 0 packages upgraded, 0 newly installed, 0 to remove and 10 not upgraded.\r\n> Need to get 0 B of archives. After unpacking 0 B will be used.\r\n> Writing extended state information...\r\n> Reading package lists...\r\n>                         Building dependency tree...\r\n>                                                    Reading state information...\r\n>                                                                                Reading extended state information...\r\n>                                                                                                                     Initializing package states...\r\n>                    Writing extended state information...\r\n>                                                         Building tag database...\r\n>                                                                                 + install_qemu\r\n> + cd /tmp\r\n> + echo '[+] Cleaning QEMU old install if exists'\r\n> [+] Cleaning QEMU old install if exists\r\n>                                        + rm -r /usr/share/qemu\r\n>\r\n>\r\n> I commented out the utf pack but then it just gets interrupted to install\r\n> qemu\r\n> can someone help?\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2316>, or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH33EPMRHVZULYX63LZ3ZWBMS3AVCNFSM6AAAAABOBGJTPCVHI2DSMVQWIX3LMV43ASLTON2WKOZSGUZDAMBSG43TINI>\r\n> .\r\n> You are receiving this because you are subscribed to this thread.Message\r\n> ID: ***@***.***>\r\n>\r\n\nComment: it seems to download stuff now, i used cape in my malware analysis internship a while ago and now it has changed for the almost 6 months of work - thank you very much!",
+  "Title: Only process PCAPs with httpreplay when tlsdump.log exists\nBody: These changes prevent PCAPs from being processed by httpreplay (Pcap2 processing module) when there are no TLS keys available. This is because httpreplay processing is very time intensive due to its pure-python implementation.\r\n\r\nHttpreplay's core use is to decrypt TLS traffic so it can be processed by Suricata. If there are no TLS keys available, there is no requirement to use it for processing.\r\n\r\nFor context, when CAPE attempted to process a ~250MB PCAP with httpreplay, it took ~960 seconds. Without httpreplay, it took ~16 seconds.\r\n\r\nRelated to https://github.com/kevoreilly/CAPEv2/issues/2314",
+  "Title: Replace httpreplay with something faster\nBody: # Replace httpreplay with something faster\r\n\r\n## Summary \r\nHttpreplay is used inside of CAPE to decrypt TLS traffic so that it can be processed by Suricata. Due to its pure-python implementation, it is extremely slow.\r\n\r\n## Context\r\n\r\nOn my local instance, CAPE took ~960 seconds to process a ~250MB PCAP with httpreplay. When the same PCAP with httpreplay disabled, it only took 16 seconds.\r\n\r\n## Replacement considerations\r\n\r\n- A golang-based tool leveraging https://github.com/google/gopacket\nComment: How about using a TLS inspection proxy instead of dumping TLS secrets that have to be post-processed with httpreplay? Some TLS proxies can generate PCAP files with decrypted TLS traffic on the fly.\nComment: yes in past i was using mitmproxy for that, but i don't remembe why i dropped it\nComment: > yes in past i was using mitmproxy for that, but i don't remembe why i dropped it\r\n\r\nMaybe mitmproxy didn't provide much value over the current implementation? The TLS traffic and sslkeylogfile.txt from mitmproxy probably still had to be post-processed (decrypted) in order for Suricata to inspect it, right?\nComment: as far as i remember, i might be wrong rigth now, mitmdump was dumping decrypted already pcap https://docs.mitmproxy.org/stable/#mitmdump\nComment: The one disadvantage with using an inline proxy is some malware could detect on the naming/properties used by the CA.\nComment: 130MB\u7684pcap\u6587\u4ef6\uff0c\u4f1a\u5bfc\u81f4\u5904\u7406\u8d85\u65f6\uff0cprocessor\u63d0\u793atimeout 900\uff0c\u8fd9\u4e2a\u65f6\u95f4\u4e5f\u4e0d\u77e5\u9053\u5728\u54ea\u91cc\u4fee\u6539",
+  "Title: Package summary/description in UI\nBody: - Following on from #2220 now we display the package summary and description in the UI\r\n- In views.py:\r\n  - Added code to parse the python analysis package modules, pulling out summary and description\r\n  - Updated `get_form_data()` to return list of dicts, not list of strings\r\n  - When sorting the package names, no longer be case sensitive\r\n- Updated the `submission/index.html` template to expect a dict per package\r\n- Added some tests\r\n- Tweak to `web/settings.py` so it can find the templates, even during test execution\r\n\r\nScreenshots:\r\n![Screenshot from 2024-09-09 15-27-14](https://github.com/user-attachments/assets/1f45ae75-91b1-4249-b8b0-a61cc0873c02)\r\n![Screenshot from 2024-09-09 15-27-36](https://github.com/user-attachments/assets/c9712636-f99d-45ea-bab2-ec273ffde520)\r\n![Screenshot from 2024-09-09 15-26-57](https://github.com/user-attachments/assets/bde4d634-f08e-4dd5-bcab-aedd7fd45773)\r\n\r\n\r\n\nComment: We've been running this code for a few weeks now, and we haven't had any trouble with it.\r\n\nComment: nice, thank you for this",
+  "Title: Add SslKeyLogFile aux module and PcapNg processing module\nBody: Adds two new modules:\r\n- SslKeyLogFile auxiliary module\r\n- PcapNg processing module\r\n\r\nSslKeyLogFile sets the SSLKEYLOGFILE environment var on the guest and collects the resulting log file. This is especially useful when detonating inside of browsers.\r\n\r\nPcapNg takes SSL/TLS keys from tlsdump.log and SslKeyLogFile and injects them into the detonation PCAP using the `editcap` binary. The file is made available to download via the UI.\nComment: thank you",
+  "Title: Install Script Poetry Error\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ ] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nCAPEv2 install via cape2.sh installation script\r\n\r\n# Current Behavior\r\n\r\nCurrently getting an error during this part of the script: \r\n```\r\nfunction install_volatility3() {\r\n    sudo apt-get install unzip\r\n    sudo -u ${USER} poetry run pip3 install git+https://github.com/volatilityfoundation/volatility3\r\n```\r\nThe error is that poetry is not a recognized command, also - if trying to install poetry separately and trying to rerun the script you run into issues within postgresql where the cape user is already existing so you have to attempt to delete the database and user which I've ran into some issues with as well. I've tried the install on 3 separate platforms with the same error.\r\n    \r\n\r\n# Failure Information (for bugs)\r\n\r\npoetry command not found (script exits)\r\n\r\n## Steps to Reproduce\r\n\r\n1. download script or clone repository\r\n2. run cape2.sh\r\n3. error produced, script closes\r\n\r\n## Context\r\n\r\nUbuntu 22.04 LTS\r\nMost recent script version.\r\n\r\n## Failure Logs\r\n\r\nfunction install_volatility3() {\r\n    sudo apt-get install unzip\r\n    sudo -u ${USER} poetry run pip3 install git+https://github.com/volatilityfoundation/volatility3\r\n\r\ncommand poetry not found\r\n    \r\n    \r\n\nComment: posting log part where it tries to install poetry would be the most useful part, without that we can't help you\nComment: I have same issue with most recent script:\r\nsudo -u cape poetry run pip3 install git+https://github.com/volatilityfoundation/volatility3\r\nsudo: poetry: command not found\r\n\r\n![image](https://github.com/user-attachments/assets/6ec4e26f-ff65-423c-8037-ae1978904f47)\nComment: Do you have the log of cape2.sh? You need to see why poetry wasn't installed, without that part, as I told, we can't help\nComment: See the log file below, there's not much that says why it wasn't installed.\r\n\r\n`[+] Installing dependencies\r\nReading package lists...\r\nBuilding dependency tree...\r\nReading state information...\r\nlibssl3 is already the newest version (3.0.2-0ubuntu1.18).\r\nlibssl3 set to manually installed.\r\nThe following package was automatically installed and is no longer required:\r\n  libnuma1\r\nUse 'sudo apt autoremove' to remove it.\r\nThe following additional packages will be installed:\r\n  bzip2 cmake-data cpp cpp-11 dh-elpa-helper dpkg-dev emacsen-common fakeroot\r\n  fontconfig-config fonts-dejavu-core g++ g++-11 gcc gcc-11 gcc-11-base\r\n  javascript-common keyutils libalgorithm-diff-perl libalgorithm-diff-xs-perl\r\n  libalgorithm-merge-perl libarchive13 libasan6 libatomic1 libc-dev-bin\r\n  libc-devtools libc6-dev libcc1-0 libcrypt-dev libdeflate0 libdpkg-perl\r\n  libexpat1-dev libfakeroot libfile-fcntllock-perl libfontconfig1\r\n  libgcc-11-dev libgd3 libgomp1 libisl23 libitm1 libjbig0 libjpeg-turbo8\r\n  libjpeg8 libjs-jquery libjs-sphinxdoc libjs-underscore libjsoncpp25 liblsan0\r\n  libmpc3 libnfsidmap1 libnsl-dev libpython3-dev libpython3.10-dev\r\n  libquadmath0 librhash0 libstdc++-11-dev libtiff5 libtirpc-dev libtsan0\r\n  libubsan1 libwebp7 libxpm4 linux-libc-dev lto-disabled-list make\r\n  manpages-dev python3-wheel python3.10-dev rpcbind rpcsvc-proto zlib1g-dev\r\nSuggested packages:\r\n  bzip2-doc cmake-doc ninja-build cmake-format cpp-doc gcc-11-locales\r\n  debian-keyring g++-multilib g++-11-multilib gcc-11-doc gcc-multilib autoconf\r\n  automake libtool flex bison gdb gcc-doc gcc-11-multilib apache2 | lighttpd\r\n  | httpd lrzip glibc-doc bzr libgd-tools libssl-doc libstdc++-11-doc make-doc\r\n  watchdog\r\nThe following NEW packages will be installed:\r\n  build-essential bzip2 cmake cmake-data cpp cpp-11 dh-elpa-helper dpkg-dev\r\n  emacsen-common fakeroot fontconfig-config fonts-dejavu-core g++ g++-11 gcc\r\n  gcc-11 gcc-11-base javascript-common keyutils libalgorithm-diff-perl\r\n  libalgorithm-diff-xs-perl libalgorithm-merge-perl libarchive13 libasan6\r\n  libatomic1 libc-dev-bin libc-devtools libc6-dev libcc1-0 libcrypt-dev\r\n  libdeflate0 libdpkg-perl libexpat1-dev libfakeroot libfile-fcntllock-perl\r\n  libfontconfig1 libgcc-11-dev libgd3 libgomp1 libisl23 libitm1 libjbig0\r\n  libjpeg-turbo8 libjpeg8 libjs-jquery libjs-sphinxdoc libjs-underscore\r\n  libjsoncpp25 liblsan0 libmpc3 libnfsidmap1 libnsl-dev libpython3-dev\r\n  libpython3.10-dev libquadmath0 librhash0 libssl-dev libstdc++-11-dev\r\n  libtiff5 libtirpc-dev libtsan0 libubsan1 libwebp7 libxpm4 linux-libc-dev\r\n  lto-disabled-list make manpages-dev nfs-common python3-dev python3-pip\r\n  python3-wheel python3.10-dev rpcbind rpcsvc-proto zlib1g-dev\r\n0 upgraded, 76 newly installed, 0 to remove and 3 not upgraded.\r\nNeed to get 81.6 MB of archives.\r\nAfter this operation, 286 MB of additional disk space will be used.\r\nGet:1 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libnfsidmap1 amd64 1:2.6.1-1ubuntu1.2 [42.9 kB]\r\nGet:2 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 rpcbind amd64 1.2.6-2build1 [46.6 kB]\r\nGet:3 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 keyutils amd64 1.6.1-2ubuntu3 [50.4 kB]\r\nGet:4 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 nfs-common amd64 1:2.6.1-1ubuntu1.2 [241 kB]\r\nGet:5 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libc-dev-bin amd64 2.35-0ubuntu3.8 [20.3 kB]\r\nGet:6 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 linux-libc-dev amd64 5.15.0-119.129 [1,318 kB]\r\nGet:7 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libcrypt-dev amd64 1:4.4.27-1 [112 kB]\r\nGet:8 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 rpcsvc-proto amd64 1.4.2-0ubuntu6 [68.5 kB]\r\nGet:9 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libtirpc-dev amd64 1.3.2-2ubuntu0.1 [192 kB]\r\nGet:10 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libnsl-dev amd64 1.3.0-2build2 [71.3 kB]\r\nGet:11 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libc6-dev amd64 2.35-0ubuntu3.8 [2,100 kB]\r\nGet:12 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 gcc-11-base amd64 11.4.0-1ubuntu1~22.04 [20.2 kB]\r\nGet:13 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libisl23 amd64 0.24-2build1 [727 kB]\r\nGet:14 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libmpc3 amd64 1.2.1-2build1 [46.9 kB]\r\nGet:15 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 cpp-11 amd64 11.4.0-1ubuntu1~22.04 [10.0 MB]\r\nGet:16 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 cpp amd64 4:11.2.0-1ubuntu1 [27.7 kB]\r\nGet:17 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libcc1-0 amd64 12.3.0-1ubuntu1~22.04 [48.3 kB]\r\nGet:18 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libgomp1 amd64 12.3.0-1ubuntu1~22.04 [126 kB]\r\nGet:19 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libitm1 amd64 12.3.0-1ubuntu1~22.04 [30.2 kB]\r\nGet:20 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libatomic1 amd64 12.3.0-1ubuntu1~22.04 [10.4 kB]\r\nGet:21 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libasan6 amd64 11.4.0-1ubuntu1~22.04 [2,282 kB]\r\nGet:22 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 liblsan0 amd64 12.3.0-1ubuntu1~22.04 [1,069 kB]\r\nGet:23 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libtsan0 amd64 11.4.0-1ubuntu1~22.04 [2,260 kB]\r\nGet:24 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libubsan1 amd64 12.3.0-1ubuntu1~22.04 [976 kB]\r\nGet:25 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libquadmath0 amd64 12.3.0-1ubuntu1~22.04 [154 kB]\r\nGet:26 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libgcc-11-dev amd64 11.4.0-1ubuntu1~22.04 [2,517 kB]\r\nGet:27 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 gcc-11 amd64 11.4.0-1ubuntu1~22.04 [20.1 MB]\r\nGet:28 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 gcc amd64 4:11.2.0-1ubuntu1 [5,112 B]\r\nGet:29 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libstdc++-11-dev amd64 11.4.0-1ubuntu1~22.04 [2,101 kB]\r\nGet:30 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 g++-11 amd64 11.4.0-1ubuntu1~22.04 [11.4 MB]\r\nGet:31 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 g++ amd64 4:11.2.0-1ubuntu1 [1,412 B]\r\nGet:32 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 make amd64 4.3-4.1build1 [180 kB]\r\nGet:33 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libdpkg-perl all 1.21.1ubuntu2.3 [237 kB]\r\nGet:34 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 bzip2 amd64 1.0.8-5build1 [34.8 kB]\r\nGet:35 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 lto-disabled-list all 24 [12.5 kB]\r\nGet:36 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 dpkg-dev all 1.21.1ubuntu2.3 [922 kB]\r\nGet:37 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 build-essential amd64 12.9ubuntu3 [4,744 B]\r\nGet:38 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libarchive13 amd64 3.6.0-1ubuntu1.1 [369 kB]\r\nGet:39 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libjsoncpp25 amd64 1.9.5-3 [80.0 kB]\r\nGet:40 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 librhash0 amd64 1.4.2-1ubuntu1 [125 kB]\r\nGet:41 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 dh-elpa-helper all 2.0.9ubuntu1 [7,610 B]\r\nGet:42 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 emacsen-common all 3.0.4 [14.9 kB]\r\nGet:43 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 cmake-data all 3.22.1-1ubuntu1.22.04.2 [1,913 kB]\r\nGet:44 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 cmake amd64 3.22.1-1ubuntu1.22.04.2 [5,010 kB]\r\nGet:45 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libfakeroot amd64 1.28-1ubuntu1 [31.5 kB]\r\nGet:46 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 fakeroot amd64 1.28-1ubuntu1 [60.4 kB]\r\nGet:47 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 fonts-dejavu-core all 2.37-2build1 [1,041 kB]\r\nGet:48 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 fontconfig-config all 2.13.1-4.2ubuntu5 [29.1 kB]\r\nGet:49 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 javascript-common all 11+nmu1 [5,936 B]\r\nGet:50 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libalgorithm-diff-perl all 1.201-1 [41.8 kB]\r\nGet:51 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libalgorithm-diff-xs-perl amd64 0.04-6build3 [11.9 kB]\r\nGet:52 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libalgorithm-merge-perl all 0.08-3 [12.0 kB]\r\nGet:53 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libfontconfig1 amd64 2.13.1-4.2ubuntu5 [131 kB]\r\nGet:54 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libjpeg-turbo8 amd64 2.1.2-0ubuntu1 [134 kB]\r\nGet:55 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libjpeg8 amd64 8c-2ubuntu10 [2,264 B]\r\nGet:56 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libdeflate0 amd64 1.10-2 [70.9 kB]\r\nGet:57 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libjbig0 amd64 2.1-3.1ubuntu0.22.04.1 [29.2 kB]\r\nGet:58 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libwebp7 amd64 1.2.2-2ubuntu0.22.04.2 [206 kB]\r\nGet:59 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libtiff5 amd64 4.3.0-6ubuntu0.10 [185 kB]\r\nGet:60 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libxpm4 amd64 1:3.5.12-1ubuntu0.22.04.2 [36.7 kB]\r\nGet:61 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libgd3 amd64 2.3.0-2ubuntu2 [129 kB]\r\nGet:62 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libc-devtools amd64 2.35-0ubuntu3.8 [28.9 kB]\r\nGet:63 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libexpat1-dev amd64 2.4.7-1ubuntu0.3 [147 kB]\r\nGet:64 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libfile-fcntllock-perl amd64 0.22-3build7 [33.9 kB]\r\nGet:65 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libjs-jquery all 3.6.0+dfsg+~3.5.13-1 [321 kB]\r\nGet:66 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libjs-underscore all 1.13.2~dfsg-2 [118 kB]\r\nGet:67 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libjs-sphinxdoc all 4.3.2-1 [139 kB]\r\nGet:68 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 zlib1g-dev amd64 1:1.2.11.dfsg-2ubuntu9.2 [164 kB]\r\nGet:69 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libpython3.10-dev amd64 3.10.12-1~22.04.5 [4,762 kB]\r\nGet:70 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libpython3-dev amd64 3.10.6-1~22.04.1 [7,064 B]\r\nGet:71 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libssl-dev amd64 3.0.2-0ubuntu1.18 [2,375 kB]\r\nGet:72 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 manpages-dev all 5.10-1ubuntu1 [2,309 kB]\r\nGet:73 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 python3.10-dev amd64 3.10.12-1~22.04.5 [507 kB]\r\nGet:74 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 python3-dev amd64 3.10.6-1~22.04.1 [26.0 kB]\r\nGet:75 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/universe amd64 python3-wheel all 0.37.1-2ubuntu0.22.04.1 [32.0 kB]\r\nGet:76 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/universe amd64 python3-pip all 22.0.2+dfsg-1ubuntu0.4 [1,305 kB]\r\nFetched 81.6 MB in 2s (46.7 MB/s)\r\nSelecting previously unselected package libnfsidmap1:amd64.\r\n(Reading database ... 96721 files and directories currently installed.)\r\nPreparing to unpack .../00-libnfsidmap1_1%3a2.6.1-1ubuntu1.2_amd64.deb ...\r\nUnpacking libnfsidmap1:amd64 (1:2.6.1-1ubuntu1.2) ...\r\nSelecting previously unselected package rpcbind.\r\nPreparing to unpack .../01-rpcbind_1.2.6-2build1_amd64.deb ...\r\nUnpacking rpcbind (1.2.6-2build1) ...\r\nSelecting previously unselected package keyutils.\r\nPreparing to unpack .../02-keyutils_1.6.1-2ubuntu3_amd64.deb ...\r\nUnpacking keyutils (1.6.1-2ubuntu3) ...\r\nSelecting previously unselected package nfs-common.\r\nPreparing to unpack .../03-nfs-common_1%3a2.6.1-1ubuntu1.2_amd64.deb ...\r\nUnpacking nfs-common (1:2.6.1-1ubuntu1.2) ...\r\nSelecting previously unselected package libc-dev-bin.\r\nPreparing to unpack .../04-libc-dev-bin_2.35-0ubuntu3.8_amd64.deb ...\r\nUnpacking libc-dev-bin (2.35-0ubuntu3.8) ...\r\nSelecting previously unselected package linux-libc-dev:amd64.\r\nPreparing to unpack .../05-linux-libc-dev_5.15.0-119.129_amd64.deb ...\r\nUnpacking linux-libc-dev:amd64 (5.15.0-119.129) ...\r\nSelecting previously unselected package libcrypt-dev:amd64.\r\nPreparing to unpack .../06-libcrypt-dev_1%3a4.4.27-1_amd64.deb ...\r\nUnpacking libcrypt-dev:amd64 (1:4.4.27-1) ...\r\nSelecting previously unselected package rpcsvc-proto.\r\nPreparing to unpack .../07-rpcsvc-proto_1.4.2-0ubuntu6_amd64.deb ...\r\nUnpacking rpcsvc-proto (1.4.2-0ubuntu6) ...\r\nSelecting previously unselected package libtirpc-dev:amd64.\r\nPreparing to unpack .../08-libtirpc-dev_1.3.2-2ubuntu0.1_amd64.deb ...\r\nUnpacking libtirpc-dev:amd64 (1.3.2-2ubuntu0.1) ...\r\nSelecting previously unselected package libnsl-dev:amd64.\r\nPreparing to unpack .../09-libnsl-dev_1.3.0-2build2_amd64.deb ...\r\nUnpacking libnsl-dev:amd64 (1.3.0-2build2) ...\r\nSelecting previously unselected package libc6-dev:amd64.\r\nPreparing to unpack .../10-libc6-dev_2.35-0ubuntu3.8_amd64.deb ...\r\nUnpacking libc6-dev:amd64 (2.35-0ubuntu3.8) ...\r\nSelecting previously unselected package gcc-11-base:amd64.\r\nPreparing to unpack .../11-gcc-11-base_11.4.0-1ubuntu1~22.04_amd64.deb ...\r\nUnpacking gcc-11-base:amd64 (11.4.0-1ubuntu1~22.04) ...\r\nSelecting previously unselected package libisl23:amd64.\r\nPreparing to unpack .../12-libisl23_0.24-2build1_amd64.deb ...\r\nUnpacking libisl23:amd64 (0.24-2build1) ...\r\nSelecting previously unselected package libmpc3:amd64.\r\nPreparing to unpack .../13-libmpc3_1.2.1-2build1_amd64.deb ...\r\nUnpacking libmpc3:amd64 (1.2.1-2build1) ...\r\nSelecting previously unselected package cpp-11.\r\nPreparing to unpack .../14-cpp-11_11.4.0-1ubuntu1~22.04_amd64.deb ...\r\nUnpacking cpp-11 (11.4.0-1ubuntu1~22.04) ...\r\nSelecting previously unselected package cpp.\r\nPreparing to unpack .../15-cpp_4%3a11.2.0-1ubuntu1_amd64.deb ...\r\nUnpacking cpp (4:11.2.0-1ubuntu1) ...\r\nSelecting previously unselected package libcc1-0:amd64.\r\nPreparing to unpack .../16-libcc1-0_12.3.0-1ubuntu1~22.04_amd64.deb ...\r\nUnpacking libcc1-0:amd64 (12.3.0-1ubuntu1~22.04) ...\r\nSelecting previously unselected package libgomp1:amd64.\r\nPreparing to unpack .../17-libgomp1_12.3.0-1ubuntu1~22.04_amd64.deb ...\r\nUnpacking libgomp1:amd64 (12.3.0-1ubuntu1~22.04) ...\r\nSelecting previously unselected package libitm1:amd64.\r\nPreparing to unpack .../18-libitm1_12.3.0-1ubuntu1~22.04_amd64.deb ...\r\nUnpacking libitm1:amd64 (12.3.0-1ubuntu1~22.04) ...\r\nSelecting previously unselected package libatomic1:amd64.\r\nPreparing to unpack .../19-libatomic1_12.3.0-1ubuntu1~22.04_amd64.deb ...\r\nUnpacking libatomic1:amd64 (12.3.0-1ubuntu1~22.04) ...\r\nSelecting previously unselected package libasan6:amd64.\r\nPreparing to unpack .../20-libasan6_11.4.0-1ubuntu1~22.04_amd64.deb ...\r\nUnpacking libasan6:amd64 (11.4.0-1ubuntu1~22.04) ...\r\nSelecting previously unselected package liblsan0:amd64.\r\nPreparing to unpack .../21-liblsan0_12.3.0-1ubuntu1~22.04_amd64.deb ...\r\nUnpacking liblsan0:amd64 (12.3.0-1ubuntu1~22.04) ...\r\nSelecting previously unselected package libtsan0:amd64.\r\nPreparing to unpack .../22-libtsan0_11.4.0-1ubuntu1~22.04_amd64.deb ...\r\nUnpacking libtsan0:amd64 (11.4.0-1ubuntu1~22.04) ...\r\nSelecting previously unselected package libubsan1:amd64.\r\nPreparing to unpack .../23-libubsan1_12.3.0-1ubuntu1~22.04_amd64.deb ...\r\nUnpacking libubsan1:amd64 (12.3.0-1ubuntu1~22.04) ...\r\nSelecting previously unselected package libquadmath0:amd64.\r\nPreparing to unpack .../24-libquadmath0_12.3.0-1ubuntu1~22.04_amd64.deb ...\r\nUnpacking libquadmath0:amd64 (12.3.0-1ubuntu1~22.04) ...\r\nSelecting previously unselected package libgcc-11-dev:amd64.\r\nPreparing to unpack .../25-libgcc-11-dev_11.4.0-1ubuntu1~22.04_amd64.deb ...\r\nUnpacking libgcc-11-dev:amd64 (11.4.0-1ubuntu1~22.04) ...\r\nSelecting previously unselected package gcc-11.\r\nPreparing to unpack .../26-gcc-11_11.4.0-1ubuntu1~22.04_amd64.deb ...\r\nUnpacking gcc-11 (11.4.0-1ubuntu1~22.04) ...\r\nSelecting previously unselected package gcc.\r\nPreparing to unpack .../27-gcc_4%3a11.2.0-1ubuntu1_amd64.deb ...\r\nUnpacking gcc (4:11.2.0-1ubuntu1) ...\r\nSelecting previously unselected package libstdc++-11-dev:amd64.\r\nPreparing to unpack .../28-libstdc++-11-dev_11.4.0-1ubuntu1~22.04_amd64.deb ...\r\nUnpacking libstdc++-11-dev:amd64 (11.4.0-1ubuntu1~22.04) ...\r\nSelecting previously unselected package g++-11.\r\nPreparing to unpack .../29-g++-11_11.4.0-1ubuntu1~22.04_amd64.deb ...\r\nUnpacking g++-11 (11.4.0-1ubuntu1~22.04) ...\r\nSelecting previously unselected package g++.\r\nPreparing to unpack .../30-g++_4%3a11.2.0-1ubuntu1_amd64.deb ...\r\nUnpacking g++ (4:11.2.0-1ubuntu1) ...\r\nSelecting previously unselected package make.\r\nPreparing to unpack .../31-make_4.3-4.1build1_amd64.deb ...\r\nUnpacking make (4.3-4.1build1) ...\r\nSelecting previously unselected package libdpkg-perl.\r\nPreparing to unpack .../32-libdpkg-perl_1.21.1ubuntu2.3_all.deb ...\r\nUnpacking libdpkg-perl (1.21.1ubuntu2.3) ...\r\nSelecting previously unselected package bzip2.\r\nPreparing to unpack .../33-bzip2_1.0.8-5build1_amd64.deb ...\r\nUnpacking bzip2 (1.0.8-5build1) ...\r\nSelecting previously unselected package lto-disabled-list.\r\nPreparing to unpack .../34-lto-disabled-list_24_all.deb ...\r\nUnpacking lto-disabled-list (24) ...\r\nSelecting previously unselected package dpkg-dev.\r\nPreparing to unpack .../35-dpkg-dev_1.21.1ubuntu2.3_all.deb ...\r\nUnpacking dpkg-dev (1.21.1ubuntu2.3) ...\r\nSelecting previously unselected package build-essential.\r\nPreparing to unpack .../36-build-essential_12.9ubuntu3_amd64.deb ...\r\nUnpacking build-essential (12.9ubuntu3) ...\r\nSelecting previously unselected package libarchive13:amd64.\r\nPreparing to unpack .../37-libarchive13_3.6.0-1ubuntu1.1_amd64.deb ...\r\nUnpacking libarchive13:amd64 (3.6.0-1ubuntu1.1) ...\r\nSelecting previously unselected package libjsoncpp25:amd64.\r\nPreparing to unpack .../38-libjsoncpp25_1.9.5-3_amd64.deb ...\r\nUnpacking libjsoncpp25:amd64 (1.9.5-3) ...\r\nSelecting previously unselected package librhash0:amd64.\r\nPreparing to unpack .../39-librhash0_1.4.2-1ubuntu1_amd64.deb ...\r\nUnpacking librhash0:amd64 (1.4.2-1ubuntu1) ...\r\nSelecting previously unselected package dh-elpa-helper.\r\nPreparing to unpack .../40-dh-elpa-helper_2.0.9ubuntu1_all.deb ...\r\nUnpacking dh-elpa-helper (2.0.9ubuntu1) ...\r\nSelecting previously unselected package emacsen-common.\r\nPreparing to unpack .../41-emacsen-common_3.0.4_all.deb ...\r\nUnpacking emacsen-common (3.0.4) ...\r\nSelecting previously unselected package cmake-data.\r\nPreparing to unpack .../42-cmake-data_3.22.1-1ubuntu1.22.04.2_all.deb ...\r\nUnpacking cmake-data (3.22.1-1ubuntu1.22.04.2) ...\r\nSelecting previously unselected package cmake.\r\nPreparing to unpack .../43-cmake_3.22.1-1ubuntu1.22.04.2_amd64.deb ...\r\nUnpacking cmake (3.22.1-1ubuntu1.22.04.2) ...\r\nSelecting previously unselected package libfakeroot:amd64.\r\nPreparing to unpack .../44-libfakeroot_1.28-1ubuntu1_amd64.deb ...\r\nUnpacking libfakeroot:amd64 (1.28-1ubuntu1) ...\r\nSelecting previously unselected package fakeroot.\r\nPreparing to unpack .../45-fakeroot_1.28-1ubuntu1_amd64.deb ...\r\nUnpacking fakeroot (1.28-1ubuntu1) ...\r\nSelecting previously unselected package fonts-dejavu-core.\r\nPreparing to unpack .../46-fonts-dejavu-core_2.37-2build1_all.deb ...\r\nUnpacking fonts-dejavu-core (2.37-2build1) ...\r\nSelecting previously unselected package fontconfig-config.\r\nPreparing to unpack .../47-fontconfig-config_2.13.1-4.2ubuntu5_all.deb ...\r\nUnpacking fontconfig-config (2.13.1-4.2ubuntu5) ...\r\nSelecting previously unselected package javascript-common.\r\nPreparing to unpack .../48-javascript-common_11+nmu1_all.deb ...\r\nUnpacking javascript-common (11+nmu1) ...\r\nSelecting previously unselected package libalgorithm-diff-perl.\r\nPreparing to unpack .../49-libalgorithm-diff-perl_1.201-1_all.deb ...\r\nUnpacking libalgorithm-diff-perl (1.201-1) ...\r\nSelecting previously unselected package libalgorithm-diff-xs-perl.\r\nPreparing to unpack .../50-libalgorithm-diff-xs-perl_0.04-6build3_amd64.deb ...\r\nUnpacking libalgorithm-diff-xs-perl (0.04-6build3) ...\r\nSelecting previously unselected package libalgorithm-merge-perl.\r\nPreparing to unpack .../51-libalgorithm-merge-perl_0.08-3_all.deb ...\r\nUnpacking libalgorithm-merge-perl (0.08-3) ...\r\nSelecting previously unselected package libfontconfig1:amd64.\r\nPreparing to unpack .../52-libfontconfig1_2.13.1-4.2ubuntu5_amd64.deb ...\r\nUnpacking libfontconfig1:amd64 (2.13.1-4.2ubuntu5) ...\r\nSelecting previously unselected package libjpeg-turbo8:amd64.\r\nPreparing to unpack .../53-libjpeg-turbo8_2.1.2-0ubuntu1_amd64.deb ...\r\nUnpacking libjpeg-turbo8:amd64 (2.1.2-0ubuntu1) ...\r\nSelecting previously unselected package libjpeg8:amd64.\r\nPreparing to unpack .../54-libjpeg8_8c-2ubuntu10_amd64.deb ...\r\nUnpacking libjpeg8:amd64 (8c-2ubuntu10) ...\r\nSelecting previously unselected package libdeflate0:amd64.\r\nPreparing to unpack .../55-libdeflate0_1.10-2_amd64.deb ...\r\nUnpacking libdeflate0:amd64 (1.10-2) ...\r\nSelecting previously unselected package libjbig0:amd64.\r\nPreparing to unpack .../56-libjbig0_2.1-3.1ubuntu0.22.04.1_amd64.deb ...\r\nUnpacking libjbig0:amd64 (2.1-3.1ubuntu0.22.04.1) ...\r\nSelecting previously unselected package libwebp7:amd64.\r\nPreparing to unpack .../57-libwebp7_1.2.2-2ubuntu0.22.04.2_amd64.deb ...\r\nUnpacking libwebp7:amd64 (1.2.2-2ubuntu0.22.04.2) ...\r\nSelecting previously unselected package libtiff5:amd64.\r\nPreparing to unpack .../58-libtiff5_4.3.0-6ubuntu0.10_amd64.deb ...\r\nUnpacking libtiff5:amd64 (4.3.0-6ubuntu0.10) ...\r\nSelecting previously unselected package libxpm4:amd64.\r\nPreparing to unpack .../59-libxpm4_1%3a3.5.12-1ubuntu0.22.04.2_amd64.deb ...\r\nUnpacking libxpm4:amd64 (1:3.5.12-1ubuntu0.22.04.2) ...\r\nSelecting previously unselected package libgd3:amd64.\r\nPreparing to unpack .../60-libgd3_2.3.0-2ubuntu2_amd64.deb ...\r\nUnpacking libgd3:amd64 (2.3.0-2ubuntu2) ...\r\nSelecting previously unselected package libc-devtools.\r\nPreparing to unpack .../61-libc-devtools_2.35-0ubuntu3.8_amd64.deb ...\r\nUnpacking libc-devtools (2.35-0ubuntu3.8) ...\r\nSelecting previously unselected package libexpat1-dev:amd64.\r\nPreparing to unpack .../62-libexpat1-dev_2.4.7-1ubuntu0.3_amd64.deb ...\r\nUnpacking libexpat1-dev:amd64 (2.4.7-1ubuntu0.3) ...\r\nSelecting previously unselected package libfile-fcntllock-perl.\r\nPreparing to unpack .../63-libfile-fcntllock-perl_0.22-3build7_amd64.deb ...\r\nUnpacking libfile-fcntllock-perl (0.22-3build7) ...\r\nSelecting previously unselected package libjs-jquery.\r\nPreparing to unpack .../64-libjs-jquery_3.6.0+dfsg+~3.5.13-1_all.deb ...\r\nUnpacking libjs-jquery (3.6.0+dfsg+~3.5.13-1) ...\r\nSelecting previously unselected package libjs-underscore.\r\nPreparing to unpack .../65-libjs-underscore_1.13.2~dfsg-2_all.deb ...\r\nUnpacking libjs-underscore (1.13.2~dfsg-2) ...\r\nSelecting previously unselected package libjs-sphinxdoc.\r\nPreparing to unpack .../66-libjs-sphinxdoc_4.3.2-1_all.deb ...\r\nUnpacking libjs-sphinxdoc (4.3.2-1) ...\r\nSelecting previously unselected package zlib1g-dev:amd64.\r\nPreparing to unpack .../67-zlib1g-dev_1%3a1.2.11.dfsg-2ubuntu9.2_amd64.deb ...\r\nUnpacking zlib1g-dev:amd64 (1:1.2.11.dfsg-2ubuntu9.2) ...\r\nSelecting previously unselected package libpython3.10-dev:amd64.\r\nPreparing to unpack .../68-libpython3.10-dev_3.10.12-1~22.04.5_amd64.deb ...\r\nUnpacking libpython3.10-dev:amd64 (3.10.12-1~22.04.5) ...\r\nSelecting previously unselected package libpython3-dev:amd64.\r\nPreparing to unpack .../69-libpython3-dev_3.10.6-1~22.04.1_amd64.deb ...\r\nUnpacking libpython3-dev:amd64 (3.10.6-1~22.04.1) ...\r\nSelecting previously unselected package libssl-dev:amd64.\r\nPreparing to unpack .../70-libssl-dev_3.0.2-0ubuntu1.18_amd64.deb ...\r\nUnpacking libssl-dev:amd64 (3.0.2-0ubuntu1.18) ...\r\nSelecting previously unselected package manpages-dev.\r\nPreparing to unpack .../71-manpages-dev_5.10-1ubuntu1_all.deb ...\r\nUnpacking manpages-dev (5.10-1ubuntu1) ...\r\nSelecting previously unselected package python3.10-dev.\r\nPreparing to unpack .../72-python3.10-dev_3.10.12-1~22.04.5_amd64.deb ...\r\nUnpacking python3.10-dev (3.10.12-1~22.04.5) ...\r\nSelecting previously unselected package python3-dev.\r\nPreparing to unpack .../73-python3-dev_3.10.6-1~22.04.1_amd64.deb ...\r\nUnpacking python3-dev (3.10.6-1~22.04.1) ...\r\nSelecting previously unselected package python3-wheel.\r\nPreparing to unpack .../74-python3-wheel_0.37.1-2ubuntu0.22.04.1_all.deb ...\r\nUnpacking python3-wheel (0.37.1-2ubuntu0.22.04.1) ...\r\nSelecting previously unselected package python3-pip.\r\nPreparing to unpack .../75-python3-pip_22.0.2+dfsg-1ubuntu0.4_all.deb ...\r\nUnpacking python3-pip (22.0.2+dfsg-1ubuntu0.4) ...\r\nSetting up javascript-common (11+nmu1) ...\r\nSetting up gcc-11-base:amd64 (11.4.0-1ubuntu1~22.04) ...\r\nSetting up manpages-dev (5.10-1ubuntu1) ...\r\nSetting up lto-disabled-list (24) ...\r\nSetting up libnfsidmap1:amd64 (1:2.6.1-1ubuntu1.2) ...\r\nSetting up libxpm4:amd64 (1:3.5.12-1ubuntu0.22.04.2) ...\r\nSetting up libfile-fcntllock-perl (0.22-3build7) ...\r\nSetting up libarchive13:amd64 (3.6.0-1ubuntu1.1) ...\r\nSetting up libalgorithm-diff-perl (1.201-1) ...\r\nSetting up libdeflate0:amd64 (1.10-2) ...\r\nSetting up linux-libc-dev:amd64 (5.15.0-119.129) ...\r\nSetting up rpcbind (1.2.6-2build1) ...\r\nCreated symlink /etc/systemd/system/multi-user.target.wants/rpcbind.service \u2192 /lib/systemd/system/rpcbind.service.\r\nCreated symlink /etc/systemd/system/sockets.target.wants/rpcbind.socket \u2192 /lib/systemd/system/rpcbind.socket.\r\nSetting up libgomp1:amd64 (12.3.0-1ubuntu1~22.04) ...\r\nSetting up bzip2 (1.0.8-5build1) ...\r\nSetting up python3-wheel (0.37.1-2ubuntu0.22.04.1) ...\r\nSetting up libjbig0:amd64 (2.1-3.1ubuntu0.22.04.1) ...\r\nSetting up libfakeroot:amd64 (1.28-1ubuntu1) ...\r\nSetting up libasan6:amd64 (11.4.0-1ubuntu1~22.04) ...\r\nSetting up fakeroot (1.28-1ubuntu1) ...\r\nupdate-alternatives: using /usr/bin/fakeroot-sysv to provide /usr/bin/fakeroot (fakeroot) in auto mode\r\nSetting up libtirpc-dev:amd64 (1.3.2-2ubuntu0.1) ...\r\nSetting up rpcsvc-proto (1.4.2-0ubuntu6) ...\r\nSetting up emacsen-common (3.0.4) ...\r\nSetting up make (4.3-4.1build1) ...\r\nSetting up dh-elpa-helper (2.0.9ubuntu1) ...\r\nSetting up libquadmath0:amd64 (12.3.0-1ubuntu1~22.04) ...\r\nSetting up libssl-dev:amd64 (3.0.2-0ubuntu1.18) ...\r\nSetting up libmpc3:amd64 (1.2.1-2build1) ...\r\nSetting up libatomic1:amd64 (12.3.0-1ubuntu1~22.04) ...\r\nSetting up libjsoncpp25:amd64 (1.9.5-3) ...\r\nSetting up fonts-dejavu-core (2.37-2build1) ...\r\nSetting up python3-pip (22.0.2+dfsg-1ubuntu0.4) ...\r\nSetting up libjpeg-turbo8:amd64 (2.1.2-0ubuntu1) ...\r\nSetting up libdpkg-perl (1.21.1ubuntu2.3) ...\r\nSetting up libwebp7:amd64 (1.2.2-2ubuntu0.22.04.2) ...\r\nSetting up libubsan1:amd64 (12.3.0-1ubuntu1~22.04) ...\r\nSetting up keyutils (1.6.1-2ubuntu3) ...\r\nSetting up libnsl-dev:amd64 (1.3.0-2build2) ...\r\nSetting up librhash0:amd64 (1.4.2-1ubuntu1) ...\r\nSetting up libcrypt-dev:amd64 (1:4.4.27-1) ...\r\nSetting up cmake-data (3.22.1-1ubuntu1.22.04.2) ...\r\nSetting up libjs-jquery (3.6.0+dfsg+~3.5.13-1) ...\r\nSetting up libisl23:amd64 (0.24-2build1) ...\r\nSetting up libc-dev-bin (2.35-0ubuntu3.8) ...\r\nSetting up libalgorithm-diff-xs-perl (0.04-6build3) ...\r\nSetting up libcc1-0:amd64 (12.3.0-1ubuntu1~22.04) ...\r\nSetting up liblsan0:amd64 (12.3.0-1ubuntu1~22.04) ...\r\nSetting up libitm1:amd64 (12.3.0-1ubuntu1~22.04) ...\r\nSetting up libjs-underscore (1.13.2~dfsg-2) ...\r\nSetting up libalgorithm-merge-perl (0.08-3) ...\r\nSetting up libtsan0:amd64 (11.4.0-1ubuntu1~22.04) ...\r\nSetting up libjpeg8:amd64 (8c-2ubuntu10) ...\r\nSetting up cpp-11 (11.4.0-1ubuntu1~22.04) ...\r\nSetting up fontconfig-config (2.13.1-4.2ubuntu5) ...\r\nSetting up dpkg-dev (1.21.1ubuntu2.3) ...\r\nSetting up nfs-common (1:2.6.1-1ubuntu1.2) ...\r\n\r\nCreating config file /etc/idmapd.conf with new version\r\n\r\nCreating config file /etc/nfs.conf with new version\r\nAdding system user `statd' (UID 115) ...\r\nAdding new user `statd' (UID 115) with group `nogroup' ...\r\nNot creating home directory `/var/lib/nfs'.\r\nCreated symlink /etc/systemd/system/multi-user.target.wants/nfs-client.target \u2192 /lib/systemd/system/nfs-client.target.\r\nCreated symlink /etc/systemd/system/remote-fs.target.wants/nfs-client.target \u2192 /lib/systemd/system/nfs-client.target.\r\nauth-rpcgss-module.service is a disabled or a static unit, not starting it.\r\nnfs-idmapd.service is a disabled or a static unit, not starting it.\r\nnfs-utils.service is a disabled or a static unit, not starting it.\r\nproc-fs-nfsd.mount is a disabled or a static unit, not starting it.\r\nrpc-gssd.service is a disabled or a static unit, not starting it.\r\nrpc-statd-notify.service is a disabled or a static unit, not starting it.\r\nrpc-statd.service is a disabled or a static unit, not starting it.\r\nrpc-svcgssd.service is a disabled or a static unit, not starting it.\r\nrpc_pipefs.target is a disabled or a static unit, not starting it.\r\nvar-lib-nfs-rpc_pipefs.mount is a disabled or a static unit, not starting it.\r\nSetting up libjs-sphinxdoc (4.3.2-1) ...\r\nSetting up libgcc-11-dev:amd64 (11.4.0-1ubuntu1~22.04) ...\r\nSetting up gcc-11 (11.4.0-1ubuntu1~22.04) ...\r\nSetting up cpp (4:11.2.0-1ubuntu1) ...\r\nSetting up cmake (3.22.1-1ubuntu1.22.04.2) ...\r\nSetting up libc6-dev:amd64 (2.35-0ubuntu3.8) ...\r\nSetting up libtiff5:amd64 (4.3.0-6ubuntu0.10) ...\r\nSetting up libfontconfig1:amd64 (2.13.1-4.2ubuntu5) ...\r\nSetting up gcc (4:11.2.0-1ubuntu1) ...\r\nSetting up libexpat1-dev:amd64 (2.4.7-1ubuntu0.3) ...\r\nSetting up libgd3:amd64 (2.3.0-2ubuntu2) ...\r\nSetting up libstdc++-11-dev:amd64 (11.4.0-1ubuntu1~22.04) ...\r\nSetting up zlib1g-dev:amd64 (1:1.2.11.dfsg-2ubuntu9.2) ...\r\nSetting up libc-devtools (2.35-0ubuntu3.8) ...\r\nSetting up g++-11 (11.4.0-1ubuntu1~22.04) ...\r\nSetting up libpython3.10-dev:amd64 (3.10.12-1~22.04.5) ...\r\nSetting up python3.10-dev (3.10.12-1~22.04.5) ...\r\nSetting up g++ (4:11.2.0-1ubuntu1) ...\r\nupdate-alternatives: using /usr/bin/g++ to provide /usr/bin/c++ (c++) in auto mode\r\nSetting up build-essential (12.9ubuntu3) ...\r\nSetting up libpython3-dev:amd64 (3.10.6-1~22.04.1) ...\r\nSetting up python3-dev (3.10.6-1~22.04.1) ...\r\nProcessing triggers for man-db (2.10.2-1) ...\r\nProcessing triggers for libc-bin (2.35-0ubuntu3.8) ...\r\nReading package lists...\r\nBuilding dependency tree...\r\nReading state information...\r\npsmisc is already the newest version (23.4-2build3).\r\npsmisc set to manually installed.\r\ngit is already the newest version (1:2.34.1-1ubuntu1.11).\r\ngit set to manually installed.\r\niptables is already the newest version (1.8.7-1ubuntu5.2).\r\niptables set to manually installed.\r\npython3 is already the newest version (3.10.6-1~22.04.1).\r\npython3 set to manually installed.\r\npython3-dev is already the newest version (3.10.6-1~22.04.1).\r\ntmux is already the newest version (3.2a-4ubuntu0.2).\r\ntmux set to manually installed.\r\nzlib1g-dev is already the newest version (1:1.2.11.dfsg-2ubuntu9.2).\r\nzlib1g-dev set to manually installed.\r\npython3-pip is already the newest version (22.0.2+dfsg-1ubuntu0.4).\r\nThe following additional packages will be installed:\r\n  fontconfig fonts-liberation libann0 libboost-filesystem1.74.0\r\n  libboost-iostreams1.74.0 libboost-program-options1.74.0 libcairo2 libcdt5\r\n  libcgraph6 libdatrie1 libgcab-1.0-0 libgraphite2-3 libgsf-1-114\r\n  libgsf-1-common libgts-0.7-5 libgts-bin libgvc6 libgvpr2 libharfbuzz0b\r\n  libice6 libjpeg-turbo8-dev libjpeg8-dev libjq1 liblab-gamut1 libltdl7\r\n  libmsi0 libonig5 libpango-1.0-0 libpangocairo-1.0-0 libpangoft2-1.0-0\r\n  libpathplan4 libpixman-1-0 libsm6 libthai-data libthai0 libxaw7\r\n  libxcb-render0 libxcb-shm0 libxmu6 libxrender1 libxt6 x11-common\r\nSuggested packages:\r\n  gettext gsfonts graphviz-doc sqlite3-doc\r\nThe following NEW packages will be installed:\r\n  checkinstall fontconfig fonts-liberation graphviz innoextract jq libann0\r\n  libboost-filesystem1.74.0 libboost-iostreams1.74.0\r\n  libboost-program-options1.74.0 libcairo2 libcdt5 libcgraph6 libdatrie1\r\n  libgcab-1.0-0 libgraphite2-3 libgsf-1-114 libgsf-1-common libgts-0.7-5\r\n  libgts-bin libgvc6 libgvpr2 libharfbuzz0b libice6 libjpeg-dev\r\n  libjpeg-turbo8-dev libjpeg8-dev libjq1 liblab-gamut1 libltdl7 libmsi0\r\n  libonig5 libpango-1.0-0 libpangocairo-1.0-0 libpangoft2-1.0-0 libpathplan4\r\n  libpixman-1-0 libsm6 libthai-data libthai0 libxaw7 libxcb-render0\r\n  libxcb-shm0 libxmu6 libxrender1 libxt6 msitools net-tools numactl\r\n  python3-pydot sqlite3 x11-common\r\n0 upgraded, 52 newly installed, 0 to remove and 3 not upgraded.\r\nNeed to get 10.3 MB of archives.\r\nAfter this operation, 32.1 MB of additional disk space will be used.\r\nGet:1 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 checkinstall amd64 1.6.2+git20170426.d24a630-2ubuntu2 [107 kB]\r\nGet:2 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 fontconfig amd64 2.13.1-4.2ubuntu5 [177 kB]\r\nGet:3 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 fonts-liberation all 1:1.07.4-11 [822 kB]\r\nGet:4 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libann0 amd64 1.1.2+doc-7build1 [26.0 kB]\r\nGet:5 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/universe amd64 libcdt5 amd64 2.42.2-6ubuntu0.1 [21.1 kB]\r\nGet:6 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/universe amd64 libcgraph6 amd64 2.42.2-6ubuntu0.1 [45.4 kB]\r\nGet:7 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libgts-0.7-5 amd64 0.7.6+darcs121130-5 [164 kB]\r\nGet:8 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libpixman-1-0 amd64 0.40.0-1ubuntu0.22.04.1 [264 kB]\r\nGet:9 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libxcb-render0 amd64 1.14-3ubuntu3 [16.4 kB]\r\nGet:10 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libxcb-shm0 amd64 1.14-3ubuntu3 [5,780 B]\r\nGet:11 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libxrender1 amd64 1:0.9.10-1build4 [19.7 kB]\r\nGet:12 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libcairo2 amd64 1.16.0-5ubuntu2 [628 kB]\r\nGet:13 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libltdl7 amd64 2.4.6-15build2 [39.6 kB]\r\nGet:14 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libgraphite2-3 amd64 1.3.14-1build2 [71.3 kB]\r\nGet:15 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libharfbuzz0b amd64 2.7.4-1ubuntu3.1 [352 kB]\r\nGet:16 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libthai-data all 0.1.29-1build1 [162 kB]\r\nGet:17 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libdatrie1 amd64 0.2.13-2 [19.9 kB]\r\nGet:18 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libthai0 amd64 0.1.29-1build1 [19.2 kB]\r\nGet:19 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libpango-1.0-0 amd64 1.50.6+ds-2ubuntu1 [230 kB]\r\nGet:20 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libpangoft2-1.0-0 amd64 1.50.6+ds-2ubuntu1 [54.0 kB]\r\nGet:21 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libpangocairo-1.0-0 amd64 1.50.6+ds-2ubuntu1 [39.8 kB]\r\nGet:22 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/universe amd64 libpathplan4 amd64 2.42.2-6ubuntu0.1 [23.4 kB]\r\nGet:23 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/universe amd64 libgvc6 amd64 2.42.2-6ubuntu0.1 [724 kB]\r\nGet:24 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/universe amd64 libgvpr2 amd64 2.42.2-6ubuntu0.1 [192 kB]\r\nGet:25 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/universe amd64 liblab-gamut1 amd64 2.42.2-6ubuntu0.1 [1,965 kB]\r\nGet:26 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 x11-common all 1:7.7+23ubuntu2 [23.4 kB]\r\nGet:27 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libice6 amd64 2:1.0.10-1build2 [42.6 kB]\r\nGet:28 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libsm6 amd64 2:1.2.3-1build2 [16.7 kB]\r\nGet:29 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libxt6 amd64 1:1.2.1-1 [177 kB]\r\nGet:30 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libxmu6 amd64 2:1.1.3-3 [49.6 kB]\r\nGet:31 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libxaw7 amd64 2:1.0.14-1 [191 kB]\r\nGet:32 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/universe amd64 graphviz amd64 2.42.2-6ubuntu0.1 [653 kB]\r\nGet:33 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libonig5 amd64 6.9.7.1-2build1 [172 kB]\r\nGet:34 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libjq1 amd64 1.6-2.1ubuntu3 [133 kB]\r\nGet:35 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 jq amd64 1.6-2.1ubuntu3 [52.5 kB]\r\nGet:36 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libboost-filesystem1.74.0 amd64 1.74.0-14ubuntu3 [264 kB]\r\nGet:37 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libboost-iostreams1.74.0 amd64 1.74.0-14ubuntu3 [245 kB]\r\nGet:38 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libboost-program-options1.74.0 amd64 1.74.0-14ubuntu3 [311 kB]\r\nGet:39 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libgcab-1.0-0 amd64 1.4-3build2 [29.0 kB]\r\nGet:40 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libgsf-1-common all 1.14.47-1build2 [12.9 kB]\r\nGet:41 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libgsf-1-114 amd64 1.14.47-1build2 [111 kB]\r\nGet:42 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libgts-bin amd64 0.7.6+darcs121130-5 [44.3 kB]\r\nGet:43 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libjpeg-turbo8-dev amd64 2.1.2-0ubuntu1 [257 kB]\r\nGet:44 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libjpeg8-dev amd64 8c-2ubuntu10 [1,476 B]\r\nGet:45 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libjpeg-dev amd64 8c-2ubuntu10 [1,472 B]\r\nGet:46 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libmsi0 amd64 0.101+repack-1 [64.4 kB]\r\nGet:47 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 msitools amd64 0.101+repack-1 [42.0 kB]\r\nGet:48 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 net-tools amd64 1.60+git20181103.0eebece-1ubuntu5 [204 kB]\r\nGet:49 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 numactl amd64 2.0.14-3ubuntu2 [36.8 kB]\r\nGet:50 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 python3-pydot all 1.4.2-1build1 [25.8 kB]\r\nGet:51 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 sqlite3 amd64 3.37.2-2ubuntu0.3 [768 kB]\r\nGet:52 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 innoextract amd64 1.8-1.2build1 [198 kB]\r\nFetched 10.3 MB in 1s (7,869 kB/s)\r\nSelecting previously unselected package checkinstall.\r\n(Reading database ... 106907 files and directories currently installed.)\r\nPreparing to unpack .../00-checkinstall_1.6.2+git20170426.d24a630-2ubuntu2_amd64.deb ...\r\nUnpacking checkinstall (1.6.2+git20170426.d24a630-2ubuntu2) ...\r\nSelecting previously unselected package fontconfig.\r\nPreparing to unpack .../01-fontconfig_2.13.1-4.2ubuntu5_amd64.deb ...\r\nUnpacking fontconfig (2.13.1-4.2ubuntu5) ...\r\nSelecting previously unselected package fonts-liberation.\r\nPreparing to unpack .../02-fonts-liberation_1%3a1.07.4-11_all.deb ...\r\nUnpacking fonts-liberation (1:1.07.4-11) ...\r\nSelecting previously unselected package libann0.\r\nPreparing to unpack .../03-libann0_1.1.2+doc-7build1_amd64.deb ...\r\nUnpacking libann0 (1.1.2+doc-7build1) ...\r\nSelecting previously unselected package libcdt5:amd64.\r\nPreparing to unpack .../04-libcdt5_2.42.2-6ubuntu0.1_amd64.deb ...\r\nUnpacking libcdt5:amd64 (2.42.2-6ubuntu0.1) ...\r\nSelecting previously unselected package libcgraph6:amd64.\r\nPreparing to unpack .../05-libcgraph6_2.42.2-6ubuntu0.1_amd64.deb ...\r\nUnpacking libcgraph6:amd64 (2.42.2-6ubuntu0.1) ...\r\nSelecting previously unselected package libgts-0.7-5:amd64.\r\nPreparing to unpack .../06-libgts-0.7-5_0.7.6+darcs121130-5_amd64.deb ...\r\nUnpacking libgts-0.7-5:amd64 (0.7.6+darcs121130-5) ...\r\nSelecting previously unselected package libpixman-1-0:amd64.\r\nPreparing to unpack .../07-libpixman-1-0_0.40.0-1ubuntu0.22.04.1_amd64.deb ...\r\nUnpacking libpixman-1-0:amd64 (0.40.0-1ubuntu0.22.04.1) ...\r\nSelecting previously unselected package libxcb-render0:amd64.\r\nPreparing to unpack .../08-libxcb-render0_1.14-3ubuntu3_amd64.deb ...\r\nUnpacking libxcb-render0:amd64 (1.14-3ubuntu3) ...\r\nSelecting previously unselected package libxcb-shm0:amd64.\r\nPreparing to unpack .../09-libxcb-shm0_1.14-3ubuntu3_amd64.deb ...\r\nUnpacking libxcb-shm0:amd64 (1.14-3ubuntu3) ...\r\nSelecting previously unselected package libxrender1:amd64.\r\nPreparing to unpack .../10-libxrender1_1%3a0.9.10-1build4_amd64.deb ...\r\nUnpacking libxrender1:amd64 (1:0.9.10-1build4) ...\r\nSelecting previously unselected package libcairo2:amd64.\r\nPreparing to unpack .../11-libcairo2_1.16.0-5ubuntu2_amd64.deb ...\r\nUnpacking libcairo2:amd64 (1.16.0-5ubuntu2) ...\r\nSelecting previously unselected package libltdl7:amd64.\r\nPreparing to unpack .../12-libltdl7_2.4.6-15build2_amd64.deb ...\r\nUnpacking libltdl7:amd64 (2.4.6-15build2) ...\r\nSelecting previously unselected package libgraphite2-3:amd64.\r\nPreparing to unpack .../13-libgraphite2-3_1.3.14-1build2_amd64.deb ...\r\nUnpacking libgraphite2-3:amd64 (1.3.14-1build2) ...\r\nSelecting previously unselected package libharfbuzz0b:amd64.\r\nPreparing to unpack .../14-libharfbuzz0b_2.7.4-1ubuntu3.1_amd64.deb ...\r\nUnpacking libharfbuzz0b:amd64 (2.7.4-1ubuntu3.1) ...\r\nSelecting previously unselected package libthai-data.\r\nPreparing to unpack .../15-libthai-data_0.1.29-1build1_all.deb ...\r\nUnpacking libthai-data (0.1.29-1build1) ...\r\nSelecting previously unselected package libdatrie1:amd64.\r\nPreparing to unpack .../16-libdatrie1_0.2.13-2_amd64.deb ...\r\nUnpacking libdatrie1:amd64 (0.2.13-2) ...\r\nSelecting previously unselected package libthai0:amd64.\r\nPreparing to unpack .../17-libthai0_0.1.29-1build1_amd64.deb ...\r\nUnpacking libthai0:amd64 (0.1.29-1build1) ...\r\nSelecting previously unselected package libpango-1.0-0:amd64.\r\nPreparing to unpack .../18-libpango-1.0-0_1.50.6+ds-2ubuntu1_amd64.deb ...\r\nUnpacking libpango-1.0-0:amd64 (1.50.6+ds-2ubuntu1) ...\r\nSelecting previously unselected package libpangoft2-1.0-0:amd64.\r\nPreparing to unpack .../19-libpangoft2-1.0-0_1.50.6+ds-2ubuntu1_amd64.deb ...\r\nUnpacking libpangoft2-1.0-0:amd64 (1.50.6+ds-2ubuntu1) ...\r\nSelecting previously unselected package libpangocairo-1.0-0:amd64.\r\nPreparing to unpack .../20-libpangocairo-1.0-0_1.50.6+ds-2ubuntu1_amd64.deb ...\r\nUnpacking libpangocairo-1.0-0:amd64 (1.50.6+ds-2ubuntu1) ...\r\nSelecting previously unselected package libpathplan4:amd64.\r\nPreparing to unpack .../21-libpathplan4_2.42.2-6ubuntu0.1_amd64.deb ...\r\nUnpacking libpathplan4:amd64 (2.42.2-6ubuntu0.1) ...\r\nSelecting previously unselected package libgvc6.\r\nPreparing to unpack .../22-libgvc6_2.42.2-6ubuntu0.1_amd64.deb ...\r\nUnpacking libgvc6 (2.42.2-6ubuntu0.1) ...\r\nSelecting previously unselected package libgvpr2:amd64.\r\nPreparing to unpack .../23-libgvpr2_2.42.2-6ubuntu0.1_amd64.deb ...\r\nUnpacking libgvpr2:amd64 (2.42.2-6ubuntu0.1) ...\r\nSelecting previously unselected package liblab-gamut1:amd64.\r\nPreparing to unpack .../24-liblab-gamut1_2.42.2-6ubuntu0.1_amd64.deb ...\r\nUnpacking liblab-gamut1:amd64 (2.42.2-6ubuntu0.1) ...\r\nSelecting previously unselected package x11-common.\r\nPreparing to unpack .../25-x11-common_1%3a7.7+23ubuntu2_all.deb ...\r\nUnpacking x11-common (1:7.7+23ubuntu2) ...\r\nSelecting previously unselected package libice6:amd64.\r\nPreparing to unpack .../26-libice6_2%3a1.0.10-1build2_amd64.deb ...\r\nUnpacking libice6:amd64 (2:1.0.10-1build2) ...\r\nSelecting previously unselected package libsm6:amd64.\r\nPreparing to unpack .../27-libsm6_2%3a1.2.3-1build2_amd64.deb ...\r\nUnpacking libsm6:amd64 (2:1.2.3-1build2) ...\r\nSelecting previously unselected package libxt6:amd64.\r\nPreparing to unpack .../28-libxt6_1%3a1.2.1-1_amd64.deb ...\r\nUnpacking libxt6:amd64 (1:1.2.1-1) ...\r\nSelecting previously unselected package libxmu6:amd64.\r\nPreparing to unpack .../29-libxmu6_2%3a1.1.3-3_amd64.deb ...\r\nUnpacking libxmu6:amd64 (2:1.1.3-3) ...\r\nSelecting previously unselected package libxaw7:amd64.\r\nPreparing to unpack .../30-libxaw7_2%3a1.0.14-1_amd64.deb ...\r\nUnpacking libxaw7:amd64 (2:1.0.14-1) ...\r\nSelecting previously unselected package graphviz.\r\nPreparing to unpack .../31-graphviz_2.42.2-6ubuntu0.1_amd64.deb ...\r\nUnpacking graphviz (2.42.2-6ubuntu0.1) ...\r\nSelecting previously unselected package libonig5:amd64.\r\nPreparing to unpack .../32-libonig5_6.9.7.1-2build1_amd64.deb ...\r\nUnpacking libonig5:amd64 (6.9.7.1-2build1) ...\r\nSelecting previously unselected package libjq1:amd64.\r\nPreparing to unpack .../33-libjq1_1.6-2.1ubuntu3_amd64.deb ...\r\nUnpacking libjq1:amd64 (1.6-2.1ubuntu3) ...\r\nSelecting previously unselected package jq.\r\nPreparing to unpack .../34-jq_1.6-2.1ubuntu3_amd64.deb ...\r\nUnpacking jq (1.6-2.1ubuntu3) ...\r\nSelecting previously unselected package libboost-filesystem1.74.0:amd64.\r\nPreparing to unpack .../35-libboost-filesystem1.74.0_1.74.0-14ubuntu3_amd64.deb ...\r\nUnpacking libboost-filesystem1.74.0:amd64 (1.74.0-14ubuntu3) ...\r\nSelecting previously unselected package libboost-iostreams1.74.0:amd64.\r\nPreparing to unpack .../36-libboost-iostreams1.74.0_1.74.0-14ubuntu3_amd64.deb ...\r\nUnpacking libboost-iostreams1.74.0:amd64 (1.74.0-14ubuntu3) ...\r\nSelecting previously unselected package libboost-program-options1.74.0:amd64.\r\nPreparing to unpack .../37-libboost-program-options1.74.0_1.74.0-14ubuntu3_amd64.deb ...\r\nUnpacking libboost-program-options1.74.0:amd64 (1.74.0-14ubuntu3) ...\r\nSelecting previously unselected package libgcab-1.0-0:amd64.\r\nPreparing to unpack .../38-libgcab-1.0-0_1.4-3build2_amd64.deb ...\r\nUnpacking libgcab-1.0-0:amd64 (1.4-3build2) ...\r\nSelecting previously unselected package libgsf-1-common.\r\nPreparing to unpack .../39-libgsf-1-common_1.14.47-1build2_all.deb ...\r\nUnpacking libgsf-1-common (1.14.47-1build2) ...\r\nSelecting previously unselected package libgsf-1-114:amd64.\r\nPreparing to unpack .../40-libgsf-1-114_1.14.47-1build2_amd64.deb ...\r\nUnpacking libgsf-1-114:amd64 (1.14.47-1build2) ...\r\nSelecting previously unselected package libgts-bin.\r\nPreparing to unpack .../41-libgts-bin_0.7.6+darcs121130-5_amd64.deb ...\r\nUnpacking libgts-bin (0.7.6+darcs121130-5) ...\r\nSelecting previously unselected package libjpeg-turbo8-dev:amd64.\r\nPreparing to unpack .../42-libjpeg-turbo8-dev_2.1.2-0ubuntu1_amd64.deb ...\r\nUnpacking libjpeg-turbo8-dev:amd64 (2.1.2-0ubuntu1) ...\r\nSelecting previously unselected package libjpeg8-dev:amd64.\r\nPreparing to unpack .../43-libjpeg8-dev_8c-2ubuntu10_amd64.deb ...\r\nUnpacking libjpeg8-dev:amd64 (8c-2ubuntu10) ...\r\nSelecting previously unselected package libjpeg-dev:amd64.\r\nPreparing to unpack .../44-libjpeg-dev_8c-2ubuntu10_amd64.deb ...\r\nUnpacking libjpeg-dev:amd64 (8c-2ubuntu10) ...\r\nSelecting previously unselected package libmsi0:amd64.\r\nPreparing to unpack .../45-libmsi0_0.101+repack-1_amd64.deb ...\r\nUnpacking libmsi0:amd64 (0.101+repack-1) ...\r\nSelecting previously unselected package msitools.\r\nPreparing to unpack .../46-msitools_0.101+repack-1_amd64.deb ...\r\nUnpacking msitools (0.101+repack-1) ...\r\nSelecting previously unselected package net-tools.\r\nPreparing to unpack .../47-net-tools_1.60+git20181103.0eebece-1ubuntu5_amd64.deb ...\r\nUnpacking net-tools (1.60+git20181103.0eebece-1ubuntu5) ...\r\nSelecting previously unselected package numactl.\r\nPreparing to unpack .../48-numactl_2.0.14-3ubuntu2_amd64.deb ...\r\nUnpacking numactl (2.0.14-3ubuntu2) ...\r\nSelecting previously unselected package python3-pydot.\r\nPreparing to unpack .../49-python3-pydot_1.4.2-1build1_all.deb ...\r\nUnpacking python3-pydot (1.4.2-1build1) ...\r\nSelecting previously unselected package sqlite3.\r\nPreparing to unpack .../50-sqlite3_3.37.2-2ubuntu0.3_amd64.deb ...\r\nUnpacking sqlite3 (3.37.2-2ubuntu0.3) ...\r\nSelecting previously unselected package innoextract.\r\nPreparing to unpack .../51-innoextract_1.8-1.2build1_amd64.deb ...\r\nUnpacking innoextract (1.8-1.2build1) ...\r\nSetting up libgsf-1-common (1.14.47-1build2) ...\r\nSetting up libgraphite2-3:amd64 (1.3.14-1build2) ...\r\nSetting up libpixman-1-0:amd64 (0.40.0-1ubuntu0.22.04.1) ...\r\nSetting up fontconfig (2.13.1-4.2ubuntu5) ...\r\nRegenerating fonts cache... done.\r\nSetting up libjpeg-turbo8-dev:amd64 (2.1.2-0ubuntu1) ...\r\nSetting up net-tools (1.60+git20181103.0eebece-1ubuntu5) ...\r\nSetting up numactl (2.0.14-3ubuntu2) ...\r\nSetting up libxrender1:amd64 (1:0.9.10-1build4) ...\r\nSetting up libdatrie1:amd64 (0.2.13-2) ...\r\nSetting up libxcb-render0:amd64 (1.14-3ubuntu3) ...\r\nSetting up libboost-iostreams1.74.0:amd64 (1.74.0-14ubuntu3) ...\r\nSetting up libboost-program-options1.74.0:amd64 (1.74.0-14ubuntu3) ...\r\nSetting up liblab-gamut1:amd64 (2.42.2-6ubuntu0.1) ...\r\nSetting up x11-common (1:7.7+23ubuntu2) ...\r\nSetting up libboost-filesystem1.74.0:amd64 (1.74.0-14ubuntu3) ...\r\nSetting up libxcb-shm0:amd64 (1.14-3ubuntu3) ...\r\nSetting up libcairo2:amd64 (1.16.0-5ubuntu2) ...\r\nSetting up libgsf-1-114:amd64 (1.14.47-1build2) ...\r\nSetting up libgts-0.7-5:amd64 (0.7.6+darcs121130-5) ...\r\nSetting up libpathplan4:amd64 (2.42.2-6ubuntu0.1) ...\r\nSetting up libann0 (1.1.2+doc-7build1) ...\r\nSetting up libmsi0:amd64 (0.101+repack-1) ...\r\nSetting up libltdl7:amd64 (2.4.6-15build2) ...\r\nSetting up checkinstall (1.6.2+git20170426.d24a630-2ubuntu2) ...\r\nSetting up innoextract (1.8-1.2build1) ...\r\nSetting up fonts-liberation (1:1.07.4-11) ...\r\nSetting up libharfbuzz0b:amd64 (2.7.4-1ubuntu3.1) ...\r\nSetting up libthai-data (0.1.29-1build1) ...\r\nSetting up libcdt5:amd64 (2.42.2-6ubuntu0.1) ...\r\nSetting up libcgraph6:amd64 (2.42.2-6ubuntu0.1) ...\r\nSetting up libjpeg8-dev:amd64 (8c-2ubuntu10) ...\r\nSetting up libgcab-1.0-0:amd64 (1.4-3build2) ...\r\nSetting up libonig5:amd64 (6.9.7.1-2build1) ...\r\nSetting up sqlite3 (3.37.2-2ubuntu0.3) ...\r\nSetting up libgts-bin (0.7.6+darcs121130-5) ...\r\nSetting up libice6:amd64 (2:1.0.10-1build2) ...\r\nSetting up libjq1:amd64 (1.6-2.1ubuntu3) ...\r\nSetting up libjpeg-dev:amd64 (8c-2ubuntu10) ...\r\nSetting up libthai0:amd64 (0.1.29-1build1) ...\r\nSetting up msitools (0.101+repack-1) ...\r\nSetting up libgvpr2:amd64 (2.42.2-6ubuntu0.1) ...\r\nSetting up jq (1.6-2.1ubuntu3) ...\r\nSetting up libsm6:amd64 (2:1.2.3-1build2) ...\r\nSetting up libpango-1.0-0:amd64 (1.50.6+ds-2ubuntu1) ...\r\nSetting up libxt6:amd64 (1:1.2.1-1) ...\r\nSetting up libpangoft2-1.0-0:amd64 (1.50.6+ds-2ubuntu1) ...\r\nSetting up libpangocairo-1.0-0:amd64 (1.50.6+ds-2ubuntu1) ...\r\nSetting up libxmu6:amd64 (2:1.1.3-3) ...\r\nSetting up libxaw7:amd64 (2:1.0.14-1) ...\r\nSetting up libgvc6 (2.42.2-6ubuntu0.1) ...\r\nSetting up graphviz (2.42.2-6ubuntu0.1) ...\r\nSetting up python3-pydot (1.4.2-1build1) ...\r\nProcessing triggers for man-db (2.10.2-1) ...\r\nProcessing triggers for libc-bin (2.35-0ubuntu3.8) ...\r\nReading package lists...\r\nBuilding dependency tree...\r\nReading state information...\r\nlibjpeg-dev is already the newest version (8c-2ubuntu10).\r\nwget is already the newest version (1.21.2-2ubuntu1.1).\r\nwget set to manually installed.\r\nThe following additional packages will be installed:\r\n  binfmt-support ca-certificates-mono cli-common geoip-bin libarchive-zip-perl\r\n  libfuzzy2 libgeoip1 libmime-charset-perl libmono-btls-interface4.0-cil\r\n  libmono-corlib4.5-cil libmono-corlib4.5-dll libmono-i18n-west4.0-cil\r\n  libmono-i18n4.0-cil libmono-security4.0-cil\r\n  libmono-system-configuration4.0-cil libmono-system-core4.0-cil\r\n  libmono-system-numerics4.0-cil libmono-system-security4.0-cil\r\n  libmono-system-xml4.0-cil libmono-system4.0-cil libmonoboehm-2.0-1\r\n  libnetaddr-ip-perl libsocket6-perl libsombok3 libucl1\r\n  libunicode-linebreak-perl mono-4.0-gac mono-gac mono-runtime\r\n  mono-runtime-common mono-runtime-sgen p7zip\r\nSuggested packages:\r\n  libposix-strptime-perl libencode-hanextra-perl libpod2-base-perl\r\n  libmono-i18n4.0-all libasound2 libgamin0 xdg-utils | libgnome2-0 | konqueror\r\n  p7zip-rar\r\nThe following NEW packages will be installed:\r\n  binfmt-support ca-certificates-mono cabextract cli-common geoip-bin\r\n  geoip-database libarchive-zip-perl libfuzzy-dev libfuzzy2 libgeoip-dev\r\n  libgeoip1 libimage-exiftool-perl libmime-charset-perl\r\n  libmono-btls-interface4.0-cil libmono-corlib4.5-cil libmono-corlib4.5-dll\r\n  libmono-i18n-west4.0-cil libmono-i18n4.0-cil libmono-security4.0-cil\r\n  libmono-system-configuration4.0-cil libmono-system-core4.0-cil\r\n  libmono-system-numerics4.0-cil libmono-system-security4.0-cil\r\n  libmono-system-xml4.0-cil libmono-system4.0-cil libmonoboehm-2.0-1\r\n  libnetaddr-ip-perl libsocket6-perl libsombok3 libucl1\r\n  libunicode-linebreak-perl lzip mono-4.0-gac mono-gac mono-runtime\r\n  mono-runtime-common mono-runtime-sgen mono-utils p7zip p7zip-full rar ssdeep\r\n  unace-nonfree unrar unzip upx-ucl zip zpaq\r\n0 upgraded, 48 newly installed, 0 to remove and 3 not upgraded.\r\nNeed to get 25.1 MB of archives.\r\nAfter this operation, 103 MB of additional disk space will be used.\r\nGet:1 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 mono-runtime-common amd64 6.8.0.105+dfsg-3.2 [1,030 kB]\r\nGet:2 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libmono-corlib4.5-dll all 6.8.0.105+dfsg-3.2 [1,254 kB]\r\nGet:3 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libmono-system-core4.0-cil all 6.8.0.105+dfsg-3.2 [302 kB]\r\nGet:4 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libmono-system-numerics4.0-cil all 6.8.0.105+dfsg-3.2 [48.6 kB]\r\nGet:5 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libmono-system-xml4.0-cil all 6.8.0.105+dfsg-3.2 [816 kB]\r\nGet:6 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libmono-system-security4.0-cil all 6.8.0.105+dfsg-3.2 [114 kB]\r\nGet:7 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libmono-system-configuration4.0-cil all 6.8.0.105+dfsg-3.2 [54.9 kB]\r\nGet:8 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libmono-system4.0-cil all 6.8.0.105+dfsg-3.2 [802 kB]\r\nGet:9 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libmono-security4.0-cil all 6.8.0.105+dfsg-3.2 [95.3 kB]\r\nGet:10 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 mono-4.0-gac all 6.8.0.105+dfsg-3.2 [153 kB]\r\nGet:11 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 mono-gac all 6.8.0.105+dfsg-3.2 [18.8 kB]\r\nGet:12 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 mono-runtime-sgen amd64 6.8.0.105+dfsg-3.2 [1,793 kB]\r\nGet:13 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 mono-runtime amd64 6.8.0.105+dfsg-3.2 [14.8 kB]\r\nGet:14 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libmono-corlib4.5-cil all 6.8.0.105+dfsg-3.2 [13.0 kB]\r\nGet:15 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 ca-certificates-mono all 6.8.0.105+dfsg-3.2 [18.0 kB]\r\nGet:16 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 binfmt-support amd64 2.2.1-2 [55.8 kB]\r\nGet:17 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 cabextract amd64 1.9-3 [23.4 kB]\r\nGet:18 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 cli-common all 0.10 [171 kB]\r\nGet:19 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libgeoip1 amd64 1.6.12-8 [84.4 kB]\r\nGet:20 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libnetaddr-ip-perl amd64 4.079+dfsg-1build7 [82.4 kB]\r\nGet:21 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 geoip-bin amd64 1.6.12-8 [71.8 kB]\r\nGet:22 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 geoip-database all 20191224-3 [3,030 kB]\r\nGet:23 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libarchive-zip-perl all 1.68-1 [90.2 kB]\r\nGet:24 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libfuzzy2 amd64 2.14.1+git20180629.57fcfff-2 [14.8 kB]\r\nGet:25 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libfuzzy-dev amd64 2.14.1+git20180629.57fcfff-2 [13.0 kB]\r\nGet:26 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libgeoip-dev amd64 1.6.12-8 [67.2 kB]\r\nGet:27 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libimage-exiftool-perl all 12.40+dfsg-1 [3,717 kB]\r\nGet:28 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libmime-charset-perl all 1.012.2-1 [30.9 kB]\r\nGet:29 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libmono-btls-interface4.0-cil amd64 6.8.0.105+dfsg-3.2 [25.0 kB]\r\nGet:30 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libmono-i18n4.0-cil all 6.8.0.105+dfsg-3.2 [22.9 kB]\r\nGet:31 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libmono-i18n-west4.0-cil all 6.8.0.105+dfsg-3.2 [25.9 kB]\r\nGet:32 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libmonoboehm-2.0-1 amd64 6.8.0.105+dfsg-3.2 [1,629 kB]\r\nGet:33 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libsocket6-perl amd64 0.29-1build4 [19.7 kB]\r\nGet:34 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libsombok3 amd64 2.4.0-2 [26.9 kB]\r\nGet:35 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libucl1 amd64 1.03+repack-6 [25.8 kB]\r\nGet:36 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libunicode-linebreak-perl amd64 0.0.20190101-1build3 [99.1 kB]\r\nGet:37 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 lzip amd64 1.23-1 [80.5 kB]\r\nGet:38 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 mono-utils amd64 6.8.0.105+dfsg-3.2 [6,068 kB]\r\nGet:39 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 p7zip amd64 16.02+dfsg-8 [363 kB]\r\nGet:40 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 p7zip-full amd64 16.02+dfsg-8 [1,186 kB]\r\nGet:41 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/multiverse amd64 rar amd64 2:5.5.0-1.1 [341 kB]\r\nGet:42 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 ssdeep amd64 2.14.1+git20180629.57fcfff-2 [31.1 kB]\r\nGet:43 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/multiverse amd64 unace-nonfree amd64 2.5-9 [59.5 kB]\r\nGet:44 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/multiverse amd64 unrar amd64 1:6.1.5-1 [145 kB]\r\nGet:45 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 unzip amd64 6.0-26ubuntu3.2 [175 kB]\r\nGet:46 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 upx-ucl amd64 3.96-3 [453 kB]\r\nGet:47 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 zip amd64 3.0-12build2 [176 kB]\r\nGet:48 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 zpaq amd64 7.15+repack-1 [157 kB]\r\nFetched 25.1 MB in 5s (5,375 kB/s)\r\nSelecting previously unselected package mono-runtime-common.\r\n(Reading database ... 107529 files and directories currently installed.)\r\nPreparing to unpack .../0-mono-runtime-common_6.8.0.105+dfsg-3.2_amd64.deb ...\r\nUnpacking mono-runtime-common (6.8.0.105+dfsg-3.2) ...\r\nSelecting previously unselected package libmono-corlib4.5-dll.\r\nPreparing to unpack .../1-libmono-corlib4.5-dll_6.8.0.105+dfsg-3.2_all.deb ...\r\nUnpacking libmono-corlib4.5-dll (6.8.0.105+dfsg-3.2) ...\r\nSelecting previously unselected package libmono-system-core4.0-cil.\r\nPreparing to unpack .../2-libmono-system-core4.0-cil_6.8.0.105+dfsg-3.2_all.deb ...\r\nUnpacking libmono-system-core4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSelecting previously unselected package libmono-system-numerics4.0-cil.\r\nPreparing to unpack .../3-libmono-system-numerics4.0-cil_6.8.0.105+dfsg-3.2_all.deb ...\r\nUnpacking libmono-system-numerics4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSelecting previously unselected package libmono-system-xml4.0-cil.\r\nPreparing to unpack .../4-libmono-system-xml4.0-cil_6.8.0.105+dfsg-3.2_all.deb ...\r\nUnpacking libmono-system-xml4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSelecting previously unselected package libmono-system-security4.0-cil.\r\nPreparing to unpack .../5-libmono-system-security4.0-cil_6.8.0.105+dfsg-3.2_all.deb ...\r\nUnpacking libmono-system-security4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSelecting previously unselected package libmono-system-configuration4.0-cil.\r\nPreparing to unpack .../6-libmono-system-configuration4.0-cil_6.8.0.105+dfsg-3.2_all.deb ...\r\nUnpacking libmono-system-configuration4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSelecting previously unselected package libmono-system4.0-cil.\r\nPreparing to unpack .../7-libmono-system4.0-cil_6.8.0.105+dfsg-3.2_all.deb ...\r\nUnpacking libmono-system4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSelecting previously unselected package libmono-security4.0-cil.\r\nPreparing to unpack .../8-libmono-security4.0-cil_6.8.0.105+dfsg-3.2_all.deb ...\r\nUnpacking libmono-security4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSelecting previously unselected package mono-4.0-gac.\r\nPreparing to unpack .../9-mono-4.0-gac_6.8.0.105+dfsg-3.2_all.deb ...\r\nUnpacking mono-4.0-gac (6.8.0.105+dfsg-3.2) ...\r\nSetting up mono-runtime-common (6.8.0.105+dfsg-3.2) ...\r\nSelecting previously unselected package mono-gac.\r\n(Reading database ... 107644 files and directories currently installed.)\r\nPreparing to unpack .../00-mono-gac_6.8.0.105+dfsg-3.2_all.deb ...\r\nUnpacking mono-gac (6.8.0.105+dfsg-3.2) ...\r\nSelecting previously unselected package mono-runtime-sgen.\r\nPreparing to unpack .../01-mono-runtime-sgen_6.8.0.105+dfsg-3.2_amd64.deb ...\r\nUnpacking mono-runtime-sgen (6.8.0.105+dfsg-3.2) ...\r\nSelecting previously unselected package mono-runtime.\r\nPreparing to unpack .../02-mono-runtime_6.8.0.105+dfsg-3.2_amd64.deb ...\r\nUnpacking mono-runtime (6.8.0.105+dfsg-3.2) ...\r\nSelecting previously unselected package libmono-corlib4.5-cil.\r\nPreparing to unpack .../03-libmono-corlib4.5-cil_6.8.0.105+dfsg-3.2_all.deb ...\r\nUnpacking libmono-corlib4.5-cil (6.8.0.105+dfsg-3.2) ...\r\nSelecting previously unselected package ca-certificates-mono.\r\nPreparing to unpack .../04-ca-certificates-mono_6.8.0.105+dfsg-3.2_all.deb ...\r\nUnpacking ca-certificates-mono (6.8.0.105+dfsg-3.2) ...\r\nSelecting previously unselected package binfmt-support.\r\nPreparing to unpack .../05-binfmt-support_2.2.1-2_amd64.deb ...\r\nUnpacking binfmt-support (2.2.1-2) ...\r\nSelecting previously unselected package cabextract.\r\nPreparing to unpack .../06-cabextract_1.9-3_amd64.deb ...\r\nUnpacking cabextract (1.9-3) ...\r\nSelecting previously unselected package cli-common.\r\nPreparing to unpack .../07-cli-common_0.10_all.deb ...\r\nUnpacking cli-common (0.10) ...\r\nSelecting previously unselected package libgeoip1:amd64.\r\nPreparing to unpack .../08-libgeoip1_1.6.12-8_amd64.deb ...\r\nUnpacking libgeoip1:amd64 (1.6.12-8) ...\r\nSelecting previously unselected package libnetaddr-ip-perl.\r\nPreparing to unpack .../09-libnetaddr-ip-perl_4.079+dfsg-1build7_amd64.deb ...\r\nUnpacking libnetaddr-ip-perl (4.079+dfsg-1build7) ...\r\nSelecting previously unselected package geoip-bin.\r\nPreparing to unpack .../10-geoip-bin_1.6.12-8_amd64.deb ...\r\nUnpacking geoip-bin (1.6.12-8) ...\r\nSelecting previously unselected package geoip-database.\r\nPreparing to unpack .../11-geoip-database_20191224-3_all.deb ...\r\nUnpacking geoip-database (20191224-3) ...\r\nSelecting previously unselected package libarchive-zip-perl.\r\nPreparing to unpack .../12-libarchive-zip-perl_1.68-1_all.deb ...\r\nUnpacking libarchive-zip-perl (1.68-1) ...\r\nSelecting previously unselected package libfuzzy2:amd64.\r\nPreparing to unpack .../13-libfuzzy2_2.14.1+git20180629.57fcfff-2_amd64.deb ...\r\nUnpacking libfuzzy2:amd64 (2.14.1+git20180629.57fcfff-2) ...\r\nSelecting previously unselected package libfuzzy-dev:amd64.\r\nPreparing to unpack .../14-libfuzzy-dev_2.14.1+git20180629.57fcfff-2_amd64.deb ...\r\nUnpacking libfuzzy-dev:amd64 (2.14.1+git20180629.57fcfff-2) ...\r\nSelecting previously unselected package libgeoip-dev.\r\nPreparing to unpack .../15-libgeoip-dev_1.6.12-8_amd64.deb ...\r\nUnpacking libgeoip-dev (1.6.12-8) ...\r\nSelecting previously unselected package libimage-exiftool-perl.\r\nPreparing to unpack .../16-libimage-exiftool-perl_12.40+dfsg-1_all.deb ...\r\nUnpacking libimage-exiftool-perl (12.40+dfsg-1) ...\r\nSelecting previously unselected package libmime-charset-perl.\r\nPreparing to unpack .../17-libmime-charset-perl_1.012.2-1_all.deb ...\r\nUnpacking libmime-charset-perl (1.012.2-1) ...\r\nSelecting previously unselected package libmono-btls-interface4.0-cil.\r\nPreparing to unpack .../18-libmono-btls-interface4.0-cil_6.8.0.105+dfsg-3.2_amd64.deb ...\r\nUnpacking libmono-btls-interface4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSelecting previously unselected package libmono-i18n4.0-cil.\r\nPreparing to unpack .../19-libmono-i18n4.0-cil_6.8.0.105+dfsg-3.2_all.deb ...\r\nUnpacking libmono-i18n4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSelecting previously unselected package libmono-i18n-west4.0-cil.\r\nPreparing to unpack .../20-libmono-i18n-west4.0-cil_6.8.0.105+dfsg-3.2_all.deb ...\r\nUnpacking libmono-i18n-west4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSelecting previously unselected package libmonoboehm-2.0-1.\r\nPreparing to unpack .../21-libmonoboehm-2.0-1_6.8.0.105+dfsg-3.2_amd64.deb ...\r\nUnpacking libmonoboehm-2.0-1 (6.8.0.105+dfsg-3.2) ...\r\nSelecting previously unselected package libsocket6-perl.\r\nPreparing to unpack .../22-libsocket6-perl_0.29-1build4_amd64.deb ...\r\nUnpacking libsocket6-perl (0.29-1build4) ...\r\nSelecting previously unselected package libsombok3:amd64.\r\nPreparing to unpack .../23-libsombok3_2.4.0-2_amd64.deb ...\r\nUnpacking libsombok3:amd64 (2.4.0-2) ...\r\nSelecting previously unselected package libucl1:amd64.\r\nPreparing to unpack .../24-libucl1_1.03+repack-6_amd64.deb ...\r\nUnpacking libucl1:amd64 (1.03+repack-6) ...\r\nSelecting previously unselected package libunicode-linebreak-perl.\r\nPreparing to unpack .../25-libunicode-linebreak-perl_0.0.20190101-1build3_amd64.deb ...\r\nUnpacking libunicode-linebreak-perl (0.0.20190101-1build3) ...\r\nSelecting previously unselected package lzip.\r\nPreparing to unpack .../26-lzip_1.23-1_amd64.deb ...\r\nUnpacking lzip (1.23-1) ...\r\nSelecting previously unselected package mono-utils.\r\nPreparing to unpack .../27-mono-utils_6.8.0.105+dfsg-3.2_amd64.deb ...\r\nUnpacking mono-utils (6.8.0.105+dfsg-3.2) ...\r\nSelecting previously unselected package p7zip.\r\nPreparing to unpack .../28-p7zip_16.02+dfsg-8_amd64.deb ...\r\nUnpacking p7zip (16.02+dfsg-8) ...\r\nSelecting previously unselected package p7zip-full.\r\nPreparing to unpack .../29-p7zip-full_16.02+dfsg-8_amd64.deb ...\r\nUnpacking p7zip-full (16.02+dfsg-8) ...\r\nSelecting previously unselected package rar.\r\nPreparing to unpack .../30-rar_2%3a5.5.0-1.1_amd64.deb ...\r\nUnpacking rar (2:5.5.0-1.1) ...\r\nSelecting previously unselected package ssdeep.\r\nPreparing to unpack .../31-ssdeep_2.14.1+git20180629.57fcfff-2_amd64.deb ...\r\nUnpacking ssdeep (2.14.1+git20180629.57fcfff-2) ...\r\nSelecting previously unselected package unace-nonfree.\r\nPreparing to unpack .../32-unace-nonfree_2.5-9_amd64.deb ...\r\nAdding 'diversion of /usr/bin/unace to /usr/bin/unace-free by unace-nonfree'\r\nAdding 'diversion of /usr/share/man/man1/unace.1.gz to /usr/share/man/man1/unace-free.1.gz by unace-nonfree'\r\nUnpacking unace-nonfree (2.5-9) ...\r\nSelecting previously unselected package unrar.\r\nPreparing to unpack .../33-unrar_1%3a6.1.5-1_amd64.deb ...\r\nUnpacking unrar (1:6.1.5-1) ...\r\nSelecting previously unselected package unzip.\r\nPreparing to unpack .../34-unzip_6.0-26ubuntu3.2_amd64.deb ...\r\nUnpacking unzip (6.0-26ubuntu3.2) ...\r\nSelecting previously unselected package upx-ucl.\r\nPreparing to unpack .../35-upx-ucl_3.96-3_amd64.deb ...\r\nUnpacking upx-ucl (3.96-3) ...\r\nSelecting previously unselected package zip.\r\nPreparing to unpack .../36-zip_3.0-12build2_amd64.deb ...\r\nUnpacking zip (3.0-12build2) ...\r\nSelecting previously unselected package zpaq.\r\nPreparing to unpack .../37-zpaq_7.15+repack-1_amd64.deb ...\r\nUnpacking zpaq (7.15+repack-1) ...\r\nSetting up libmono-btls-interface4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSetting up cabextract (1.9-3) ...\r\nSetting up libfuzzy2:amd64 (2.14.1+git20180629.57fcfff-2) ...\r\nSetting up libsombok3:amd64 (2.4.0-2) ...\r\nSetting up libarchive-zip-perl (1.68-1) ...\r\nSetting up libfuzzy-dev:amd64 (2.14.1+git20180629.57fcfff-2) ...\r\nSetting up unzip (6.0-26ubuntu3.2) ...\r\nSetting up rar (2:5.5.0-1.1) ...\r\nSetting up unrar (1:6.1.5-1) ...\r\nupdate-alternatives: using /usr/bin/unrar-nonfree to provide /usr/bin/unrar (unrar) in auto mode\r\nSetting up libimage-exiftool-perl (12.40+dfsg-1) ...\r\nSetting up libmono-corlib4.5-dll (6.8.0.105+dfsg-3.2) ...\r\nSetting up libnetaddr-ip-perl (4.079+dfsg-1build7) ...\r\nSetting up zip (3.0-12build2) ...\r\nSetting up libmonoboehm-2.0-1 (6.8.0.105+dfsg-3.2) ...\r\nSetting up cli-common (0.10) ...\r\nSetting up libsocket6-perl (0.29-1build4) ...\r\nSetting up lzip (1.23-1) ...\r\nupdate-alternatives: using /usr/bin/lzip.lzip to provide /usr/bin/lzip (lzip) in auto mode\r\nupdate-alternatives: using /usr/bin/lzip.lzip to provide /usr/bin/lzip-compressor (lzip-compressor) in auto mode\r\nupdate-alternatives: using /usr/bin/lzip.lzip to provide /usr/bin/lzip-decompressor (lzip-decompressor) in auto mode\r\nSetting up binfmt-support (2.2.1-2) ...\r\nupdate-binfmts: warning: python3.10 already enabled in kernel.\r\nupdate-binfmts: warning: /usr/share/binfmts/cli: no executable /usr/bin/cli found, but continuing anyway as you request\r\nCreated symlink /etc/systemd/system/multi-user.target.wants/binfmt-support.service \u2192 /lib/systemd/system/binfmt-support.service.\r\nSetting up zpaq (7.15+repack-1) ...\r\nSetting up unace-nonfree (2.5-9) ...\r\nSetting up libmime-charset-perl (1.012.2-1) ...\r\nSetting up libgeoip1:amd64 (1.6.12-8) ...\r\nSetting up ssdeep (2.14.1+git20180629.57fcfff-2) ...\r\nSetting up geoip-database (20191224-3) ...\r\nSetting up libucl1:amd64 (1.03+repack-6) ...\r\nSetting up p7zip (16.02+dfsg-8) ...\r\nSetting up upx-ucl (3.96-3) ...\r\nupdate-alternatives: error: no alternatives for upx\r\nupdate-alternatives: using /usr/bin/upx-ucl to provide /usr/bin/upx (upx) in auto mode\r\nSetting up geoip-bin (1.6.12-8) ...\r\nSetting up libmono-system-numerics4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSetting up p7zip-full (16.02+dfsg-8) ...\r\nSetting up libunicode-linebreak-perl (0.0.20190101-1build3) ...\r\nSetting up libgeoip-dev (1.6.12-8) ...\r\nSetting up libmono-system-xml4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSetting up libmono-system-configuration4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSetting up libmono-security4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSetting up libmono-system4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSetting up libmono-system-core4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSetting up libmono-system-security4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSetting up mono-4.0-gac (6.8.0.105+dfsg-3.2) ...\r\nSetting up mono-gac (6.8.0.105+dfsg-3.2) ...\r\nupdate-alternatives: using /usr/bin/gacutil to provide /usr/bin/cli-gacutil (global-assembly-cache-tool) in auto mode\r\nSetting up mono-runtime-sgen (6.8.0.105+dfsg-3.2) ...\r\nSetting up mono-runtime (6.8.0.105+dfsg-3.2) ...\r\nupdate-alternatives: using /usr/bin/mono to provide /usr/bin/cli (cli) in auto mode\r\nSetting up libmono-corlib4.5-cil (6.8.0.105+dfsg-3.2) ...\r\nSetting up ca-certificates-mono (6.8.0.105+dfsg-3.2) ...\r\nSetting up libmono-i18n4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSetting up mono-utils (6.8.0.105+dfsg-3.2) ...\r\nupdate-alternatives: using /usr/bin/monodis to provide /usr/bin/cli-ildasm (cil-disassembler) in auto mode\r\nSetting up libmono-i18n-west4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nProcessing triggers for install-info (6.8-4build1) ...\r\nProcessing triggers for libc-bin (2.35-0ubuntu3.8) ...\r\nProcessing triggers for man-db (2.10.2-1) ...\r\nProcessing triggers for ca-certificates (20230311ubuntu0.22.04.1) ...\r\nUpdating certificates in /etc/ssl/certs...\r\n0 added, 0 removed; done.\r\nRunning hooks in /etc/ca-certificates/update.d...\r\nUpdating Mono key store\r\nMono Certificate Store Sync - version 6.8.0.105\r\nPopulate Mono certificate store from a concatenated list of certificates.\r\nCopyright 2002, 2003 Motus Technologies. Copyright 2004-2008 Novell. BSD licensed.\r\n\r\nImporting into legacy system store:\r\nI already trust 0, your new list has 137\r\nCertificate added: CN=ACCVRAIZ1, OU=PKIACCV, O=ACCV, C=ES\r\nCertificate added: C=ES, O=FNMT-RCM, OU=AC RAIZ FNMT-RCM\r\nCertificate added: C=ES, O=FNMT-RCM, OU=Ceres, OID.2.5.4.97=VATES-Q2826004J, CN=AC RAIZ FNMT-RCM SERVIDORES SEGUROS\r\nCertificate added: SERIALNUMBER=G63287510, C=ES, O=ANF Autoridad de Certificacion, OU=ANF CA Raiz, CN=ANF Secure Server Root CA\r\nCertificate added: C=IT, L=Milan, O=Actalis S.p.A./03358520967, CN=Actalis Authentication Root CA\r\nCertificate added: C=US, O=AffirmTrust, CN=AffirmTrust Commercial\r\nCertificate added: C=US, O=AffirmTrust, CN=AffirmTrust Networking\r\nCertificate added: C=US, O=AffirmTrust, CN=AffirmTrust Premium\r\nCertificate added: C=US, O=AffirmTrust, CN=AffirmTrust Premium ECC\r\nCertificate added: C=US, O=Amazon, CN=Amazon Root CA 1\r\nCertificate added: C=US, O=Amazon, CN=Amazon Root CA 2\r\nCertificate added: C=US, O=Amazon, CN=Amazon Root CA 3\r\nCertificate added: C=US, O=Amazon, CN=Amazon Root CA 4\r\nCertificate added: CN=Atos TrustedRoot 2011, O=Atos, C=DE\r\nCertificate added: C=ES, CN=Autoridad de Certificacion Firmaprofesional CIF A62634068\r\nCertificate added: C=IE, O=Baltimore, OU=CyberTrust, CN=Baltimore CyberTrust Root\r\nCertificate added: C=NO, O=Buypass AS-983163327, CN=Buypass Class 2 Root CA\r\nCertificate added: C=NO, O=Buypass AS-983163327, CN=Buypass Class 3 Root CA\r\nCertificate added: C=SK, L=Bratislava, O=Disig a.s., CN=CA Disig Root R2\r\nCertificate added: C=CN, O=China Financial Certification Authority, CN=CFCA EV ROOT\r\nCertificate added: C=GB, S=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO Certification Authority\r\nCertificate added: C=GB, S=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO ECC Certification Authority\r\nCertificate added: C=GB, S=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO RSA Certification Authority\r\nCertificate added: C=FR, O=Dhimyotis, CN=Certigna\r\nCertificate added: C=FR, O=Dhimyotis, OU=0002 48146308100036, CN=Certigna Root CA\r\nCertificate added: C=PL, O=Asseco Data Systems S.A., OU=Certum Certification Authority, CN=Certum EC-384 CA\r\nCertificate added: C=PL, O=Unizeto Technologies S.A., OU=Certum Certification Authority, CN=Certum Trusted Network CA\r\nCertificate added: C=PL, O=Unizeto Technologies S.A., OU=Certum Certification Authority, CN=Certum Trusted Network CA 2\r\nCertificate added: C=PL, O=Asseco Data Systems S.A., OU=Certum Certification Authority, CN=Certum Trusted Root CA\r\nCertificate added: C=GB, S=Greater Manchester, L=Salford, O=Comodo CA Limited, CN=AAA Certificate Services\r\nCertificate added: C=DE, O=D-Trust GmbH, CN=D-TRUST Root Class 3 CA 2 2009\r\nCertificate added: C=DE, O=D-Trust GmbH, CN=D-TRUST Root Class 3 CA 2 EV 2009\r\nCertificate added: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert Assured ID Root CA\r\nCertificate added: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert Assured ID Root G2\r\nCertificate added: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert Assured ID Root G3\r\nCertificate added: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert Global Root CA\r\nCertificate added: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert Global Root G2\r\nCertificate added: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert Global Root G3\r\nCertificate added: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert High Assurance EV Root CA\r\nCertificate added: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert Trusted Root G4\r\nCertificate added: C=TR, L=Ankara, O=E-Tu\u011fra EBG Bili\u015fim Teknolojileri ve Hizmetleri A.\u015e., OU=E-Tugra Sertifikasyon Merkezi, CN=E-Tugra Certification Authority\r\nCertificate added: O=Entrust.net, OU=www.entrust.net/CPS_2048 incorp. by ref. (limits liab.), OU=(c) 1999 Entrust.net Limited, CN=Entrust.net Certification Authority (2048)\r\nCertificate added: C=US, O=\"Entrust, Inc.\", OU=www.entrust.net/CPS is incorporated by reference, OU=\"(c) 2006 Entrust, Inc.\", CN=Entrust Root Certification Authority\r\nCertificate added: C=US, O=\"Entrust, Inc.\", OU=See www.entrust.net/legal-terms, OU=\"(c) 2012 Entrust, Inc. - for authorized use only\", CN=Entrust Root Certification Authority - EC1\r\nCertificate added: C=US, O=\"Entrust, Inc.\", OU=See www.entrust.net/legal-terms, OU=\"(c) 2009 Entrust, Inc. - for authorized use only\", CN=Entrust Root Certification Authority - G2\r\nCertificate added: C=US, O=\"Entrust, Inc.\", OU=See www.entrust.net/legal-terms, OU=\"(c) 2015 Entrust, Inc. - for authorized use only\", CN=Entrust Root Certification Authority - G4\r\nCertificate added: C=CN, O=\"GUANG DONG CERTIFICATE AUTHORITY CO.,LTD.\", CN=GDCA TrustAUTH R5 ROOT\r\nCertificate added: C=AT, O=e-commerce monitoring GmbH, CN=GLOBALTRUST 2020\r\nCertificate added: C=US, O=Google Trust Services LLC, CN=GTS Root R1\r\nCertificate added: C=US, O=Google Trust Services LLC, CN=GTS Root R2\r\nCertificate added: C=US, O=Google Trust Services LLC, CN=GTS Root R3\r\nCertificate added: C=US, O=Google Trust Services LLC, CN=GTS Root R4\r\nCertificate added: OU=GlobalSign ECC Root CA - R4, O=GlobalSign, CN=GlobalSign\r\nCertificate added: OU=GlobalSign ECC Root CA - R5, O=GlobalSign, CN=GlobalSign\r\nCertificate added: C=BE, O=GlobalSign nv-sa, OU=Root CA, CN=GlobalSign Root CA\r\nCertificate added: OU=GlobalSign Root CA - R3, O=GlobalSign, CN=GlobalSign\r\nCertificate added: OU=GlobalSign Root CA - R6, O=GlobalSign, CN=GlobalSign\r\nCertificate added: C=BE, O=GlobalSign nv-sa, CN=GlobalSign Root E46\r\nCertificate added: C=BE, O=GlobalSign nv-sa, CN=GlobalSign Root R46\r\nCertificate added: C=US, O=\"The Go Daddy Group, Inc.\", OU=Go Daddy Class 2 Certification Authority\r\nCertificate added: C=US, S=Arizona, L=Scottsdale, O=\"GoDaddy.com, Inc.\", CN=Go Daddy Root Certificate Authority - G2\r\nCertificate added: C=GR, L=Athens, O=Hellenic Academic and Research Institutions Cert. Authority, CN=Hellenic Academic and Research Institutions ECC RootCA 2015\r\nCertificate added: C=GR, L=Athens, O=Hellenic Academic and Research Institutions Cert. Authority, CN=Hellenic Academic and Research Institutions RootCA 2015\r\nCertificate added: C=HK, O=Hongkong Post, CN=Hongkong Post Root CA 1\r\nCertificate added: C=HK, S=Hong Kong, L=Hong Kong, O=Hongkong Post, CN=Hongkong Post Root CA 3\r\nCertificate added: C=US, O=Internet Security Research Group, CN=ISRG Root X1\r\nCertificate added: C=US, O=IdenTrust, CN=IdenTrust Commercial Root CA 1\r\nCertificate added: C=US, O=IdenTrust, CN=IdenTrust Public Sector Root CA 1\r\nCertificate added: C=ES, O=IZENPE S.A., CN=Izenpe.com\r\nCertificate added: C=HU, L=Budapest, O=Microsec Ltd., CN=Microsec e-Szigno Root CA 2009, E=info@e-szigno.hu\r\nCertificate added: C=US, O=Microsoft Corporation, CN=Microsoft ECC Root Certificate Authority 2017\r\nCertificate added: C=US, O=Microsoft Corporation, CN=Microsoft RSA Root Certificate Authority 2017\r\nCertificate added: C=KR, O=NAVER BUSINESS PLATFORM Corp., CN=NAVER Global Root Certification Authority\r\nCertificate added: C=HU, L=Budapest, O=NetLock Kft., OU=Tan\u00fas\u00edtv\u00e1nykiad\u00f3k (Certification Services), CN=NetLock Arany (Class Gold) F\u0151tan\u00fas\u00edtv\u00e1ny\r\nCertificate added: C=CH, O=WISeKey, OU=OISTE Foundation Endorsed, CN=OISTE WISeKey Global Root GB CA\r\nCertificate added: C=CH, O=WISeKey, OU=OISTE Foundation Endorsed, CN=OISTE WISeKey Global Root GC CA\r\nCertificate added: C=BM, O=QuoVadis Limited, CN=QuoVadis Root CA 1 G3\r\nCertificate added: C=BM, O=QuoVadis Limited, CN=QuoVadis Root CA 2\r\nCertificate added: C=BM, O=QuoVadis Limited, CN=QuoVadis Root CA 2 G3\r\nCertificate added: C=BM, O=QuoVadis Limited, CN=QuoVadis Root CA 3\r\nCertificate added: C=BM, O=QuoVadis Limited, CN=QuoVadis Root CA 3 G3\r\nCertificate added: C=US, S=Texas, L=Houston, O=SSL Corporation, CN=SSL.com EV Root Certification Authority ECC\r\nCertificate added: C=US, S=Texas, L=Houston, O=SSL Corporation, CN=SSL.com EV Root Certification Authority RSA R2\r\nCertificate added: C=US, S=Texas, L=Houston, O=SSL Corporation, CN=SSL.com Root Certification Authority ECC\r\nCertificate added: C=US, S=Texas, L=Houston, O=SSL Corporation, CN=SSL.com Root Certification Authority RSA\r\nCertificate added: C=PL, O=Krajowa Izba Rozliczeniowa S.A., CN=SZAFIR ROOT CA2\r\nCertificate added: C=JP, O=\"Japan Certification Services, Inc.\", CN=SecureSign RootCA11\r\nCertificate added: C=US, O=SecureTrust Corporation, CN=SecureTrust CA\r\nCertificate added: C=US, O=SecureTrust Corporation, CN=Secure Global CA\r\nCertificate added: C=JP, O=\"SECOM Trust Systems CO.,LTD.\", OU=Security Communication RootCA2\r\nCertificate added: C=JP, O=SECOM Trust.net, OU=Security Communication RootCA1\r\nCertificate added: C=US, O=\"Starfield Technologies, Inc.\", OU=Starfield Class 2 Certification Authority\r\nCertificate added: C=US, S=Arizona, L=Scottsdale, O=\"Starfield Technologies, Inc.\", CN=Starfield Root Certificate Authority - G2\r\nCertificate added: C=US, S=Arizona, L=Scottsdale, O=\"Starfield Technologies, Inc.\", CN=Starfield Services Root Certificate Authority - G2\r\nCertificate added: C=CH, O=SwissSign AG, CN=SwissSign Gold CA - G2\r\nCertificate added: C=CH, O=SwissSign AG, CN=SwissSign Silver CA - G2\r\nCertificate added: C=DE, O=T-Systems Enterprise Services GmbH, OU=T-Systems Trust Center, CN=T-TeleSec GlobalRoot Class 2\r\nCertificate added: C=DE, O=T-Systems Enterprise Services GmbH, OU=T-Systems Trust Center, CN=T-TeleSec GlobalRoot Class 3\r\nCertificate added: C=TR, L=Gebze - Kocaeli, O=Turkiye Bilimsel ve Teknolojik Arastirma Kurumu - TUBITAK, OU=Kamu Sertifikasyon Merkezi - Kamu SM, CN=TUBITAK Kamu SM SSL Kok Sertifikasi - Surum 1\r\nCertificate added: C=TW, O=TAIWAN-CA, OU=Root CA, CN=TWCA Global Root CA\r\nCertificate added: C=TW, O=TAIWAN-CA, OU=Root CA, CN=TWCA Root Certification Authority\r\nCertificate added: O=TeliaSonera, CN=TeliaSonera Root CA v1\r\nCertificate added: C=US, S=Illinois, L=Chicago, O=\"Trustwave Holdings, Inc.\", CN=Trustwave Global Certification Authority\r\nCertificate added: C=US, S=Illinois, L=Chicago, O=\"Trustwave Holdings, Inc.\", CN=Trustwave Global ECC P256 Certification Authority\r\nCertificate added: C=US, S=Illinois, L=Chicago, O=\"Trustwave Holdings, Inc.\", CN=Trustwave Global ECC P384 Certification Authority\r\nCertificate added: C=CN, O=UniTrust, CN=UCA Extended Validation Root\r\nCertificate added: C=CN, O=UniTrust, CN=UCA Global G2 Root\r\nCertificate added: C=US, S=New Jersey, L=Jersey City, O=The USERTRUST Network, CN=USERTrust ECC Certification Authority\r\nCertificate added: C=US, S=New Jersey, L=Jersey City, O=The USERTRUST Network, CN=USERTrust RSA Certification Authority\r\nCertificate added: C=US, OU=www.xrampsecurity.com, O=XRamp Security Services Inc, CN=XRamp Global Certification Authority\r\nCertificate added: C=RO, O=certSIGN, OU=certSIGN ROOT CA\r\nCertificate added: C=RO, O=CERTSIGN SA, OU=certSIGN ROOT CA G2\r\nCertificate added: C=HU, L=Budapest, O=Microsec Ltd., OID.2.5.4.97=VATHU-23584497, CN=e-Szigno Root CA 2017\r\nCertificate added: C=TW, O=\"Chunghwa Telecom Co., Ltd.\", OU=ePKI Root Certification Authority\r\nCertificate added: C=US, OU=emSign PKI, O=eMudhra Inc, CN=emSign ECC Root CA - C3\r\nCertificate added: C=IN, OU=emSign PKI, O=eMudhra Technologies Limited, CN=emSign ECC Root CA - G3\r\nCertificate added: C=US, OU=emSign PKI, O=eMudhra Inc, CN=emSign Root CA - C1\r\nCertificate added: C=IN, OU=emSign PKI, O=eMudhra Technologies Limited, CN=emSign Root CA - G1\r\nCertificate added: C=ES, CN=Autoridad de Certificacion Firmaprofesional CIF A62634068\r\nCertificate added: C=US, O=Certainly, CN=Certainly Root E1\r\nCertificate added: C=US, O=Certainly, CN=Certainly Root R1\r\nCertificate added: C=DE, O=D-Trust GmbH, CN=D-TRUST BR Root CA 1 2020\r\nCertificate added: C=DE, O=D-Trust GmbH, CN=D-TRUST EV Root CA 1 2020\r\nCertificate added: C=US, O=\"DigiCert, Inc.\", CN=DigiCert TLS ECC P384 Root G5\r\nCertificate added: C=US, O=\"DigiCert, Inc.\", CN=DigiCert TLS RSA4096 Root G5\r\nCertificate added: C=TR, L=Ankara, O=E-Tugra EBG A.S., OU=E-Tugra Trust Center, CN=E-Tugra Global Root CA ECC v3\r\nCertificate added: C=TR, L=Ankara, O=E-Tugra EBG A.S., OU=E-Tugra Trust Center, CN=E-Tugra Global Root CA RSA v3\r\nCertificate added: C=GR, O=Hellenic Academic and Research Institutions CA, CN=HARICA TLS ECC Root CA 2021\r\nCertificate added: C=GR, O=Hellenic Academic and Research Institutions CA, CN=HARICA TLS RSA Root CA 2021\r\nCertificate added: C=TW, O=\"Chunghwa Telecom Co., Ltd.\", CN=HiPKI Root CA - G1\r\nCertificate added: C=US, O=Internet Security Research Group, CN=ISRG Root X2\r\nCertificate added: C=JP, O=\"SECOM Trust Systems CO.,LTD.\", CN=Security Communication ECC RootCA1\r\nCertificate added: C=JP, O=\"SECOM Trust Systems CO.,LTD.\", CN=Security Communication RootCA3\r\nCertificate added: C=FI, O=Telia Finland Oyj, CN=Telia Root CA v2\r\nCertificate added: C=TN, O=Agence Nationale de Certification Electronique, CN=TunTrust Root CA\r\nCertificate added: C=CN, O=\"iTrusChina Co.,Ltd.\", CN=vTrus ECC Root CA\r\nCertificate added: C=CN, O=\"iTrusChina Co.,Ltd.\", CN=vTrus Root CA\r\n137 new root certificates were added to your trust store.\r\nImport process completed.\r\n\r\nImporting into BTLS system store:\r\nI already trust 0, your new list has 137\r\nCertificate added: CN=ACCVRAIZ1, OU=PKIACCV, O=ACCV, C=ES\r\nCertificate added: C=ES, O=FNMT-RCM, OU=AC RAIZ FNMT-RCM\r\nCertificate added: C=ES, O=FNMT-RCM, OU=Ceres, OID.2.5.4.97=VATES-Q2826004J, CN=AC RAIZ FNMT-RCM SERVIDORES SEGUROS\r\nCertificate added: SERIALNUMBER=G63287510, C=ES, O=ANF Autoridad de Certificacion, OU=ANF CA Raiz, CN=ANF Secure Server Root CA\r\nCertificate added: C=IT, L=Milan, O=Actalis S.p.A./03358520967, CN=Actalis Authentication Root CA\r\nCertificate added: C=US, O=AffirmTrust, CN=AffirmTrust Commercial\r\nCertificate added: C=US, O=AffirmTrust, CN=AffirmTrust Networking\r\nCertificate added: C=US, O=AffirmTrust, CN=AffirmTrust Premium\r\nCertificate added: C=US, O=AffirmTrust, CN=AffirmTrust Premium ECC\r\nCertificate added: C=US, O=Amazon, CN=Amazon Root CA 1\r\nCertificate added: C=US, O=Amazon, CN=Amazon Root CA 2\r\nCertificate added: C=US, O=Amazon, CN=Amazon Root CA 3\r\nCertificate added: C=US, O=Amazon, CN=Amazon Root CA 4\r\nCertificate added: CN=Atos TrustedRoot 2011, O=Atos, C=DE\r\nCertificate added: C=ES, CN=Autoridad de Certificacion Firmaprofesional CIF A62634068\r\nCertificate added: C=IE, O=Baltimore, OU=CyberTrust, CN=Baltimore CyberTrust Root\r\nCertificate added: C=NO, O=Buypass AS-983163327, CN=Buypass Class 2 Root CA\r\nCertificate added: C=NO, O=Buypass AS-983163327, CN=Buypass Class 3 Root CA\r\nCertificate added: C=SK, L=Bratislava, O=Disig a.s., CN=CA Disig Root R2\r\nCertificate added: C=CN, O=China Financial Certification Authority, CN=CFCA EV ROOT\r\nCertificate added: C=GB, S=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO Certification Authority\r\nCertificate added: C=GB, S=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO ECC Certification Authority\r\nCertificate added: C=GB, S=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO RSA Certification Authority\r\nCertificate added: C=FR, O=Dhimyotis, CN=Certigna\r\nCertificate added: C=FR, O=Dhimyotis, OU=0002 48146308100036, CN=Certigna Root CA\r\nCertificate added: C=PL, O=Asseco Data Systems S.A., OU=Certum Certification Authority, CN=Certum EC-384 CA\r\nCertificate added: C=PL, O=Unizeto Technologies S.A., OU=Certum Certification Authority, CN=Certum Trusted Network CA\r\nCertificate added: C=PL, O=Unizeto Technologies S.A., OU=Certum Certification Authority, CN=Certum Trusted Network CA 2\r\nCertificate added: C=PL, O=Asseco Data Systems S.A., OU=Certum Certification Authority, CN=Certum Trusted Root CA\r\nCertificate added: C=GB, S=Greater Manchester, L=Salford, O=Comodo CA Limited, CN=AAA Certificate Services\r\nCertificate added: C=DE, O=D-Trust GmbH, CN=D-TRUST Root Class 3 CA 2 2009\r\nCertificate added: C=DE, O=D-Trust GmbH, CN=D-TRUST Root Class 3 CA 2 EV 2009\r\nCertificate added: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert Assured ID Root CA\r\nCertificate added: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert Assured ID Root G2\r\nCertificate added: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert Assured ID Root G3\r\nCertificate added: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert Global Root CA\r\nCertificate added: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert Global Root G2\r\nCertificate added: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert Global Root G3\r\nCertificate added: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert High Assurance EV Root CA\r\nCertificate added: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert Trusted Root G4\r\nCertificate added: C=TR, L=Ankara, O=E-Tu\u011fra EBG Bili\u015fim Teknolojileri ve Hizmetleri A.\u015e., OU=E-Tugra Sertifikasyon Merkezi, CN=E-Tugra Certification Authority\r\nCertificate added: O=Entrust.net, OU=www.entrust.net/CPS_2048 incorp. by ref. (limits liab.), OU=(c) 1999 Entrust.net Limited, CN=Entrust.net Certification Authority (2048)\r\nCertificate added: C=US, O=\"Entrust, Inc.\", OU=www.entrust.net/CPS is incorporated by reference, OU=\"(c) 2006 Entrust, Inc.\", CN=Entrust Root Certification Authority\r\nCertificate added: C=US, O=\"Entrust, Inc.\", OU=See www.entrust.net/legal-terms, OU=\"(c) 2012 Entrust, Inc. - for authorized use only\", CN=Entrust Root Certification Authority - EC1\r\nCertificate added: C=US, O=\"Entrust, Inc.\", OU=See www.entrust.net/legal-terms, OU=\"(c) 2009 Entrust, Inc. - for authorized use only\", CN=Entrust Root Certification Authority - G2\r\nCertificate added: C=US, O=\"Entrust, Inc.\", OU=See www.entrust.net/legal-terms, OU=\"(c) 2015 Entrust, Inc. - for authorized use only\", CN=Entrust Root Certification Authority - G4\r\nCertificate added: C=CN, O=\"GUANG DONG CERTIFICATE AUTHORITY CO.,LTD.\", CN=GDCA TrustAUTH R5 ROOT\r\nCertificate added: C=AT, O=e-commerce monitoring GmbH, CN=GLOBALTRUST 2020\r\nCertificate added: C=US, O=Google Trust Services LLC, CN=GTS Root R1\r\nCertificate added: C=US, O=Google Trust Services LLC, CN=GTS Root R2\r\nCertificate added: C=US, O=Google Trust Services LLC, CN=GTS Root R3\r\nCertificate added: C=US, O=Google Trust Services LLC, CN=GTS Root R4\r\nCertificate added: OU=GlobalSign ECC Root CA - R4, O=GlobalSign, CN=GlobalSign\r\nCertificate added: OU=GlobalSign ECC Root CA - R5, O=GlobalSign, CN=GlobalSign\r\nCertificate added: C=BE, O=GlobalSign nv-sa, OU=Root CA, CN=GlobalSign Root CA\r\nCertificate added: OU=GlobalSign Root CA - R3, O=GlobalSign, CN=GlobalSign\r\nCertificate added: OU=GlobalSign Root CA - R6, O=GlobalSign, CN=GlobalSign\r\nCertificate added: C=BE, O=GlobalSign nv-sa, CN=GlobalSign Root E46\r\nCertificate added: C=BE, O=GlobalSign nv-sa, CN=GlobalSign Root R46\r\nCertificate added: C=US, O=\"The Go Daddy Group, Inc.\", OU=Go Daddy Class 2 Certification Authority\r\nCertificate added: C=US, S=Arizona, L=Scottsdale, O=\"GoDaddy.com, Inc.\", CN=Go Daddy Root Certificate Authority - G2\r\nCertificate added: C=GR, L=Athens, O=Hellenic Academic and Research Institutions Cert. Authority, CN=Hellenic Academic and Research Institutions ECC RootCA 2015\r\nCertificate added: C=GR, L=Athens, O=Hellenic Academic and Research Institutions Cert. Authority, CN=Hellenic Academic and Research Institutions RootCA 2015\r\nCertificate added: C=HK, O=Hongkong Post, CN=Hongkong Post Root CA 1\r\nCertificate added: C=HK, S=Hong Kong, L=Hong Kong, O=Hongkong Post, CN=Hongkong Post Root CA 3\r\nCertificate added: C=US, O=Internet Security Research Group, CN=ISRG Root X1\r\nCertificate added: C=US, O=IdenTrust, CN=IdenTrust Commercial Root CA 1\r\nCertificate added: C=US, O=IdenTrust, CN=IdenTrust Public Sector Root CA 1\r\nCertificate added: C=ES, O=IZENPE S.A., CN=Izenpe.com\r\nCertificate added: C=HU, L=Budapest, O=Microsec Ltd., CN=Microsec e-Szigno Root CA 2009, E=info@e-szigno.hu\r\nCertificate added: C=US, O=Microsoft Corporation, CN=Microsoft ECC Root Certificate Authority 2017\r\nCertificate added: C=US, O=Microsoft Corporation, CN=Microsoft RSA Root Certificate Authority 2017\r\nCertificate added: C=KR, O=NAVER BUSINESS PLATFORM Corp., CN=NAVER Global Root Certification Authority\r\nCertificate added: C=HU, L=Budapest, O=NetLock Kft., OU=Tan\u00fas\u00edtv\u00e1nykiad\u00f3k (Certification Services), CN=NetLock Arany (Class Gold) F\u0151tan\u00fas\u00edtv\u00e1ny\r\nCertificate added: C=CH, O=WISeKey, OU=OISTE Foundation Endorsed, CN=OISTE WISeKey Global Root GB CA\r\nCertificate added: C=CH, O=WISeKey, OU=OISTE Foundation Endorsed, CN=OISTE WISeKey Global Root GC CA\r\nCertificate added: C=BM, O=QuoVadis Limited, CN=QuoVadis Root CA 1 G3\r\nCertificate added: C=BM, O=QuoVadis Limited, CN=QuoVadis Root CA 2\r\nCertificate added: C=BM, O=QuoVadis Limited, CN=QuoVadis Root CA 2 G3\r\nCertificate added: C=BM, O=QuoVadis Limited, CN=QuoVadis Root CA 3\r\nCertificate added: C=BM, O=QuoVadis Limited, CN=QuoVadis Root CA 3 G3\r\nCertificate added: C=US, S=Texas, L=Houston, O=SSL Corporation, CN=SSL.com EV Root Certification Authority ECC\r\nCertificate added: C=US, S=Texas, L=Houston, O=SSL Corporation, CN=SSL.com EV Root Certification Authority RSA R2\r\nCertificate added: C=US, S=Texas, L=Houston, O=SSL Corporation, CN=SSL.com Root Certification Authority ECC\r\nCertificate added: C=US, S=Texas, L=Houston, O=SSL Corporation, CN=SSL.com Root Certification Authority RSA\r\nCertificate added: C=PL, O=Krajowa Izba Rozliczeniowa S.A., CN=SZAFIR ROOT CA2\r\nCertificate added: C=JP, O=\"Japan Certification Services, Inc.\", CN=SecureSign RootCA11\r\nCertificate added: C=US, O=SecureTrust Corporation, CN=SecureTrust CA\r\nCertificate added: C=US, O=SecureTrust Corporation, CN=Secure Global CA\r\nCertificate added: C=JP, O=\"SECOM Trust Systems CO.,LTD.\", OU=Security Communication RootCA2\r\nCertificate added: C=JP, O=SECOM Trust.net, OU=Security Communication RootCA1\r\nCertificate added: C=US, O=\"Starfield Technologies, Inc.\", OU=Starfield Class 2 Certification Authority\r\nCertificate added: C=US, S=Arizona, L=Scottsdale, O=\"Starfield Technologies, Inc.\", CN=Starfield Root Certificate Authority - G2\r\nCertificate added: C=US, S=Arizona, L=Scottsdale, O=\"Starfield Technologies, Inc.\", CN=Starfield Services Root Certificate Authority - G2\r\nCertificate added: C=CH, O=SwissSign AG, CN=SwissSign Gold CA - G2\r\nCertificate added: C=CH, O=SwissSign AG, CN=SwissSign Silver CA - G2\r\nCertificate added: C=DE, O=T-Systems Enterprise Services GmbH, OU=T-Systems Trust Center, CN=T-TeleSec GlobalRoot Class 2\r\nCertificate added: C=DE, O=T-Systems Enterprise Services GmbH, OU=T-Systems Trust Center, CN=T-TeleSec GlobalRoot Class 3\r\nCertificate added: C=TR, L=Gebze - Kocaeli, O=Turkiye Bilimsel ve Teknolojik Arastirma Kurumu - TUBITAK, OU=Kamu Sertifikasyon Merkezi - Kamu SM, CN=TUBITAK Kamu SM SSL Kok Sertifikasi - Surum 1\r\nCertificate added: C=TW, O=TAIWAN-CA, OU=Root CA, CN=TWCA Global Root CA\r\nCertificate added: C=TW, O=TAIWAN-CA, OU=Root CA, CN=TWCA Root Certification Authority\r\nCertificate added: O=TeliaSonera, CN=TeliaSonera Root CA v1\r\nCertificate added: C=US, S=Illinois, L=Chicago, O=\"Trustwave Holdings, Inc.\", CN=Trustwave Global Certification Authority\r\nCertificate added: C=US, S=Illinois, L=Chicago, O=\"Trustwave Holdings, Inc.\", CN=Trustwave Global ECC P256 Certification Authority\r\nCertificate added: C=US, S=Illinois, L=Chicago, O=\"Trustwave Holdings, Inc.\", CN=Trustwave Global ECC P384 Certification Authority\r\nCertificate added: C=CN, O=UniTrust, CN=UCA Extended Validation Root\r\nCertificate added: C=CN, O=UniTrust, CN=UCA Global G2 Root\r\nCertificate added: C=US, S=New Jersey, L=Jersey City, O=The USERTRUST Network, CN=USERTrust ECC Certification Authority\r\nCertificate added: C=US, S=New Jersey, L=Jersey City, O=The USERTRUST Network, CN=USERTrust RSA Certification Authority\r\nCertificate added: C=US, OU=www.xrampsecurity.com, O=XRamp Security Services Inc, CN=XRamp Global Certification Authority\r\nCertificate added: C=RO, O=certSIGN, OU=certSIGN ROOT CA\r\nCertificate added: C=RO, O=CERTSIGN SA, OU=certSIGN ROOT CA G2\r\nCertificate added: C=HU, L=Budapest, O=Microsec Ltd., OID.2.5.4.97=VATHU-23584497, CN=e-Szigno Root CA 2017\r\nCertificate added: C=TW, O=\"Chunghwa Telecom Co., Ltd.\", OU=ePKI Root Certification Authority\r\nCertificate added: C=US, OU=emSign PKI, O=eMudhra Inc, CN=emSign ECC Root CA - C3\r\nCertificate added: C=IN, OU=emSign PKI, O=eMudhra Technologies Limited, CN=emSign ECC Root CA - G3\r\nCertificate added: C=US, OU=emSign PKI, O=eMudhra Inc, CN=emSign Root CA - C1\r\nCertificate added: C=IN, OU=emSign PKI, O=eMudhra Technologies Limited, CN=emSign Root CA - G1\r\nCertificate added: C=ES, CN=Autoridad de Certificacion Firmaprofesional CIF A62634068\r\nCertificate added: C=US, O=Certainly, CN=Certainly Root E1\r\nCertificate added: C=US, O=Certainly, CN=Certainly Root R1\r\nCertificate added: C=DE, O=D-Trust GmbH, CN=D-TRUST BR Root CA 1 2020\r\nCertificate added: C=DE, O=D-Trust GmbH, CN=D-TRUST EV Root CA 1 2020\r\nCertificate added: C=US, O=\"DigiCert, Inc.\", CN=DigiCert TLS ECC P384 Root G5\r\nCertificate added: C=US, O=\"DigiCert, Inc.\", CN=DigiCert TLS RSA4096 Root G5\r\nCertificate added: C=TR, L=Ankara, O=E-Tugra EBG A.S., OU=E-Tugra Trust Center, CN=E-Tugra Global Root CA ECC v3\r\nCertificate added: C=TR, L=Ankara, O=E-Tugra EBG A.S., OU=E-Tugra Trust Center, CN=E-Tugra Global Root CA RSA v3\r\nCertificate added: C=GR, O=Hellenic Academic and Research Institutions CA, CN=HARICA TLS ECC Root CA 2021\r\nCertificate added: C=GR, O=Hellenic Academic and Research Institutions CA, CN=HARICA TLS RSA Root CA 2021\r\nCertificate added: C=TW, O=\"Chunghwa Telecom Co., Ltd.\", CN=HiPKI Root CA - G1\r\nCertificate added: C=US, O=Internet Security Research Group, CN=ISRG Root X2\r\nCertificate added: C=JP, O=\"SECOM Trust Systems CO.,LTD.\", CN=Security Communication ECC RootCA1\r\nCertificate added: C=JP, O=\"SECOM Trust Systems CO.,LTD.\", CN=Security Communication RootCA3\r\nCertificate added: C=FI, O=Telia Finland Oyj, CN=Telia Root CA v2\r\nCertificate added: C=TN, O=Agence Nationale de Certification Electronique, CN=TunTrust Root CA\r\nCertificate added: C=CN, O=\"iTrusChina Co.,Ltd.\", CN=vTrus ECC Root CA\r\nCertificate added: C=CN, O=\"iTrusChina Co.,Ltd.\", CN=vTrus Root CA\r\n137 new root certificates were added to your trust store.\r\nImport process completed.\r\nDone\r\ndone.\r\nReading package lists...\r\nBuilding dependency tree...\r\nReading state information...\r\nlibcap2-bin is already the newest version (1:2.44-1ubuntu0.22.04.1).\r\nlibcap2-bin set to manually installed.\r\nsoftware-properties-common is already the newest version (0.99.22.9).\r\nsoftware-properties-common set to manually installed.\r\ntcpdump is already the newest version (4.99.1-3ubuntu0.2).\r\ntcpdump set to manually installed.\r\nThe following additional packages will be installed:\r\n  adwaita-icon-theme alsa-topology-conf alsa-ucm-conf at-spi2-core\r\n  autotools-dev avahi-daemon dconf-gsettings-backend dconf-service doc-base\r\n  geoclue-2.0 glib-networking glib-networking-common glib-networking-services\r\n  gsettings-desktop-schemas gstreamer1.0-gl gstreamer1.0-plugins-base\r\n  gtk-update-icon-cache hicolor-icon-theme humanity-icon-theme\r\n  iio-sensor-proxy libasound2 libasound2-data libasyncns0 libatk-bridge2.0-0\r\n  libatk1.0-0 libatk1.0-data libatspi2.0-0 libavahi-client3\r\n  libavahi-common-data libavahi-common3 libavahi-core7 libavahi-glib1\r\n  libbcg729-0 libc-ares2 libcairo-gobject2 libcdparanoia0 libcolord2\r\n  libconfig-doc libconfig9 libcups2 libdaemon0 libdconf1 libdouble-conversion3\r\n  libdrm-amdgpu1 libdrm-intel1 libdrm-nouveau2 libdrm-radeon1 libegl-mesa0\r\n  libegl1 libepoxy0 libevdev2 libflac8 libfontenc1 libgbm1 libgdk-pixbuf-2.0-0\r\n  libgdk-pixbuf2.0-bin libgdk-pixbuf2.0-common libgl1 libgl1-amber-dri\r\n  libgl1-mesa-dri libglapi-mesa libglvnd0 libglx-mesa0 libglx0\r\n  libgraphene-1.0-0 libgstreamer-gl1.0-0 libgstreamer-plugins-base1.0-0\r\n  libgtk-3-0 libgtk-3-bin libgtk-3-common libgudev-1.0-0 libhyphen0\r\n  libinput-bin libinput10 libjson-glib-1.0-0 libjson-glib-1.0-common\r\n  liblcms2-2 libllvm15 libltdl-dev liblua5.2-0 libmbedcrypto7 libmbedtls14\r\n  libmbedx509-1 libmd4c0 libminizip1 libmtdev1 libnl-route-3-200 libnotify4\r\n  libnss-mdns libogg0 libopus0 liborc-0.4-0 libpciaccess0 libpcre2-16-0\r\n  libpcsclite1 libproxy1v5 libpulse0 libqt5core5a libqt5dbus5 libqt5gui5\r\n  libqt5multimedia5 libqt5multimedia5-plugins libqt5multimediagsttools5\r\n  libqt5multimediawidgets5 libqt5network5 libqt5positioning5\r\n  libqt5printsupport5 libqt5qml5 libqt5qmlmodels5 libqt5quick5 libqt5sensors5\r\n  libqt5svg5 libqt5webchannel5 libqt5webkit5 libqt5widgets5 librsvg2-2\r\n  librsvg2-common libsbc1 libsensors-config libsensors5 libsmi2ldbl\r\n  libsnappy1v5 libsndfile1 libsoup2.4-1 libsoup2.4-common libspandsp2\r\n  libspeexdsp1 libssh-gcrypt-4 libtheora0 libuuid-perl libvisual-0.4-0\r\n  libvorbis0a libvorbisenc2 libwacom-bin libwacom-common libwacom9\r\n  libwayland-client0 libwayland-cursor0 libwayland-egl1 libwayland-server0\r\n  libwireshark-data libwireshark15 libwiretap12 libwoff1 libwsutil13\r\n  libx11-xcb1 libxcb-dri2-0 libxcb-dri3-0 libxcb-glx0 libxcb-icccm4\r\n  libxcb-image0 libxcb-keysyms1 libxcb-present0 libxcb-randr0\r\n  libxcb-render-util0 libxcb-shape0 libxcb-sync1 libxcb-util1 libxcb-xfixes0\r\n  libxcb-xinerama0 libxcb-xinput0 libxcb-xkb1 libxcomposite1 libxcursor1\r\n  libxdamage1 libxfixes3 libxfont2 libxi6 libxinerama1 libxkbcommon-x11-0\r\n  libxkbcommon0 libxkbfile1 libxrandr2 libxshmfence1 libxtst6 libxxf86vm1\r\n  libyaml-tiny-perl m4 modemmanager pkg-config qt5-gtk-platformtheme\r\n  qttranslations5-l10n session-migration ubuntu-mono wireshark wireshark-qt\r\n  wpasupplicant x11-xkb-utils xfonts-base xfonts-encodings xfonts-utils\r\n  xserver-common\r\nSuggested packages:\r\n  autoconf-archive gnu-standards autoconf-doc gettext avahi-autoipd dhelp\r\n  | dwww | dochelp | doc-central | yelp | khelpcenter gvfs libasound2-plugins\r\n  alsa-utils colord cups-common libvisual-0.4-plugins liblcms2-utils\r\n  libtool-doc gnome-shell | notification-daemon avahi-autoipd | zeroconf\r\n  opus-tools pcscd pulseaudio qt5-image-formats-plugins qtwayland5\r\n  qt5-qmltooling-plugins librsvg2-bin lm-sensors snmp-mibs-downloader gfortran\r\n  | fortran95-compiler gcj-jdk geoipupdate geoip-database-extra libjs-leaflet\r\n  libjs-leaflet.markercluster wireshark-doc m4-doc wpagui\r\n  libengine-pkcs11-openssl\r\nThe following NEW packages will be installed:\r\n  adwaita-icon-theme alsa-topology-conf alsa-ucm-conf at-spi2-core autoconf\r\n  automake autotools-dev avahi-daemon dconf-gsettings-backend dconf-service\r\n  doc-base geoclue-2.0 glib-networking glib-networking-common\r\n  glib-networking-services gsettings-desktop-schemas gstreamer1.0-gl\r\n  gstreamer1.0-plugins-base gtk-update-icon-cache hicolor-icon-theme\r\n  humanity-icon-theme iio-sensor-proxy libarchive-dev libasound2\r\n  libasound2-data libasyncns0 libatk-bridge2.0-0 libatk1.0-0 libatk1.0-data\r\n  libatspi2.0-0 libavahi-client3 libavahi-common-data libavahi-common3\r\n  libavahi-core7 libavahi-glib1 libbcg729-0 libc-ares2 libcairo-gobject2\r\n  libcdparanoia0 libcolord2 libconfig-dev libconfig-doc libconfig9 libcups2\r\n  libdaemon0 libdconf1 libdouble-conversion3 libdrm-amdgpu1 libdrm-intel1\r\n  libdrm-nouveau2 libdrm-radeon1 libegl-mesa0 libegl1 libepoxy0 libevdev2\r\n  libflac8 libfontenc1 libgbm1 libgdk-pixbuf-2.0-0 libgdk-pixbuf2.0-bin\r\n  libgdk-pixbuf2.0-common libgl1 libgl1-amber-dri libgl1-mesa-dri\r\n  libglapi-mesa libglvnd0 libglx-mesa0 libglx0 libgraphene-1.0-0\r\n  libgstreamer-gl1.0-0 libgstreamer-plugins-base1.0-0 libgtk-3-0 libgtk-3-bin\r\n  libgtk-3-common libgudev-1.0-0 libhyphen0 libinput-bin libinput10\r\n  libjson-glib-1.0-0 libjson-glib-1.0-common liblcms2-2 libllvm15 libltdl-dev\r\n  liblua5.2-0 libmbedcrypto7 libmbedtls14 libmbedx509-1 libmd4c0 libminizip1\r\n  libmtdev1 libnl-route-3-200 libnotify4 libnss-mdns libogg0 libopus0\r\n  liborc-0.4-0 libpciaccess0 libpcre2-16-0 libpcsclite1 libproxy1v5 libpulse0\r\n  libqt5core5a libqt5dbus5 libqt5gui5 libqt5multimedia5\r\n  libqt5multimedia5-plugins libqt5multimediagsttools5 libqt5multimediawidgets5\r\n  libqt5network5 libqt5positioning5 libqt5printsupport5 libqt5qml5\r\n  libqt5qmlmodels5 libqt5quick5 libqt5sensors5 libqt5svg5 libqt5webchannel5\r\n  libqt5webkit5 libqt5widgets5 librsvg2-2 librsvg2-common libsbc1\r\n  libsensors-config libsensors5 libsmi2ldbl libsnappy1v5 libsndfile1\r\n  libsoup2.4-1 libsoup2.4-common libspandsp2 libspeexdsp1 libssh-gcrypt-4\r\n  libtheora0 libtool libuuid-perl libvisual-0.4-0 libvorbis0a libvorbisenc2\r\n  libwacom-bin libwacom-common libwacom9 libwayland-client0 libwayland-cursor0\r\n  libwayland-egl1 libwayland-server0 libwireshark-data libwireshark15\r\n  libwiretap12 libwoff1 libwsutil13 libx11-xcb1 libxcb-dri2-0 libxcb-dri3-0\r\n  libxcb-glx0 libxcb-icccm4 libxcb-image0 libxcb-keysyms1 libxcb-present0\r\n  libxcb-randr0 libxcb-render-util0 libxcb-shape0 libxcb-sync1 libxcb-util1\r\n  libxcb-xfixes0 libxcb-xinerama0 libxcb-xinput0 libxcb-xkb1 libxcomposite1\r\n  libxcursor1 libxdamage1 libxfixes3 libxfont2 libxi6 libxinerama1\r\n  libxkbcommon-x11-0 libxkbcommon0 libxkbfile1 libxrandr2 libxshmfence1\r\n  libxtst6 libxxf86vm1 libyaml-tiny-perl m4 modemmanager pkg-config privoxy\r\n  qt5-gtk-platformtheme qttranslations5-l10n session-migration ubuntu-mono\r\n  uthash-dev wireshark wireshark-common wireshark-qt wkhtmltopdf wpasupplicant\r\n  x11-xkb-utils xfonts-100dpi xfonts-base xfonts-encodings xfonts-utils\r\n  xserver-common xvfb\r\n0 upgraded, 203 newly installed, 0 to remove and 3 not upgraded.\r\nNeed to get 133 MB of archives.\r\nAfter this operation, 535 MB of additional disk space will be used.\r\nGet:1 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libavahi-common-data amd64 0.8-5ubuntu5.2 [23.8 kB]\r\nGet:2 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libavahi-common3 amd64 0.8-5ubuntu5.2 [23.9 kB]\r\nGet:3 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libavahi-core7 amd64 0.8-5ubuntu5.2 [90.8 kB]\r\nGet:4 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libdaemon0 amd64 0.14-7.1ubuntu3 [14.1 kB]\r\nGet:5 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 avahi-daemon amd64 0.8-5ubuntu5.2 [69.7 kB]\r\nGet:6 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libdouble-conversion3 amd64 3.1.7-4 [39.0 kB]\r\nGet:7 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libpcre2-16-0 amd64 10.39-3ubuntu0.1 [203 kB]\r\nGet:8 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/universe amd64 libqt5core5a amd64 5.15.3+dfsg-2ubuntu0.2 [2,006 kB]\r\nGet:9 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libglvnd0 amd64 1.4.0-1 [73.6 kB]\r\nGet:10 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libwayland-server0 amd64 1.20.0-1ubuntu0.1 [34.3 kB]\r\nGet:11 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libxcb-randr0 amd64 1.14-3ubuntu3 [18.3 kB]\r\nGet:12 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libgbm1 amd64 23.2.1-1ubuntu3.1~22.04.2 [33.5 kB]\r\nGet:13 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libglapi-mesa amd64 23.2.1-1ubuntu3.1~22.04.2 [37.1 kB]\r\nGet:14 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libwayland-client0 amd64 1.20.0-1ubuntu0.1 [25.9 kB]\r\nGet:15 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libx11-xcb1 amd64 2:1.7.5-1ubuntu0.3 [7,802 B]\r\nGet:16 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libxcb-dri2-0 amd64 1.14-3ubuntu3 [7,206 B]\r\nGet:17 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libxcb-dri3-0 amd64 1.14-3ubuntu3 [6,968 B]\r\nGet:18 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libxcb-present0 amd64 1.14-3ubuntu3 [5,734 B]\r\nGet:19 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libxcb-sync1 amd64 1.14-3ubuntu3 [9,416 B]\r\nGet:20 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libxcb-xfixes0 amd64 1.14-3ubuntu3 [9,996 B]\r\nGet:21 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libxshmfence1 amd64 1.3-1build4 [5,394 B]\r\nGet:22 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libegl-mesa0 amd64 23.2.1-1ubuntu3.1~22.04.2 [118 kB]\r\nGet:23 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libegl1 amd64 1.4.0-1 [28.6 kB]\r\nGet:24 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libxcb-glx0 amd64 1.14-3ubuntu3 [25.9 kB]\r\nGet:25 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libxfixes3 amd64 1:6.0.0-1 [11.7 kB]\r\nGet:26 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libxxf86vm1 amd64 1:1.1.4-1build3 [10.4 kB]\r\nGet:27 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libdrm-amdgpu1 amd64 2.4.113-2~ubuntu0.22.04.1 [19.9 kB]\r\nGet:28 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libpciaccess0 amd64 0.16-3 [19.1 kB]\r\nGet:29 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libdrm-intel1 amd64 2.4.113-2~ubuntu0.22.04.1 [66.7 kB]\r\nGet:30 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libdrm-nouveau2 amd64 2.4.113-2~ubuntu0.22.04.1 [17.5 kB]\r\nGet:31 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libdrm-radeon1 amd64 2.4.113-2~ubuntu0.22.04.1 [21.6 kB]\r\nGet:32 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libllvm15 amd64 1:15.0.7-0ubuntu0.22.04.3 [25.4 MB]\r\nGet:33 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libsensors-config all 1:3.6.0-7ubuntu1 [5,274 B]\r\nGet:34 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libsensors5 amd64 1:3.6.0-7ubuntu1 [26.3 kB]\r\nGet:35 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libgl1-mesa-dri amd64 23.2.1-1ubuntu3.1~22.04.2 [8,860 kB]\r\nGet:36 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libglx-mesa0 amd64 23.2.1-1ubuntu3.1~22.04.2 [158 kB]\r\nGet:37 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libglx0 amd64 1.4.0-1 [41.0 kB]\r\nGet:38 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libgl1 amd64 1.4.0-1 [110 kB]\r\nGet:39 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libevdev2 amd64 1.12.1+dfsg-1 [39.5 kB]\r\nGet:40 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libmtdev1 amd64 1.1.6-1build4 [14.5 kB]\r\nGet:41 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libgudev-1.0-0 amd64 1:237-2build1 [16.3 kB]\r\nGet:42 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libwacom-common all 2.2.0-1 [54.3 kB]\r\nGet:43 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libwacom9 amd64 2.2.0-1 [22.0 kB]\r\nGet:44 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libinput-bin amd64 1.20.0-1ubuntu0.3 [19.9 kB]\r\nGet:45 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libinput10 amd64 1.20.0-1ubuntu0.3 [131 kB]\r\nGet:46 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libmd4c0 amd64 0.4.8-1 [42.0 kB]\r\nGet:47 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/universe amd64 libqt5dbus5 amd64 5.15.3+dfsg-2ubuntu0.2 [222 kB]\r\nGet:48 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/universe amd64 libqt5network5 amd64 5.15.3+dfsg-2ubuntu0.2 [731 kB]\r\nGet:49 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libxcb-icccm4 amd64 0.4.1-1.1build2 [11.5 kB]\r\nGet:50 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libxcb-util1 amd64 0.4.0-1build2 [11.4 kB]\r\nGet:51 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libxcb-image0 amd64 0.4.0-2 [11.5 kB]\r\nGet:52 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libxcb-keysyms1 amd64 0.4.0-1build3 [8,746 B]\r\nGet:53 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libxcb-render-util0 amd64 0.3.9-1build3 [10.3 kB]\r\nGet:54 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libxcb-shape0 amd64 1.14-3ubuntu3 [6,158 B]\r\nGet:55 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libxcb-xinerama0 amd64 1.14-3ubuntu3 [5,414 B]\r\nGet:56 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libxcb-xinput0 amd64 1.14-3ubuntu3 [34.3 kB]\r\nGet:57 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libxcb-xkb1 amd64 1.14-3ubuntu3 [32.8 kB]\r\nGet:58 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libxkbcommon0 amd64 1.4.0-1 [125 kB]\r\nGet:59 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libxkbcommon-x11-0 amd64 1.4.0-1 [14.4 kB]\r\nGet:60 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/universe amd64 libqt5gui5 amd64 5.15.3+dfsg-2ubuntu0.2 [3,722 kB]\r\nGet:61 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/universe amd64 libqt5widgets5 amd64 5.15.3+dfsg-2ubuntu0.2 [2,561 kB]\r\nGet:62 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libqt5svg5 amd64 5.15.3-1 [149 kB]\r\nGet:63 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 liborc-0.4-0 amd64 1:0.4.32-2ubuntu0.1 [228 kB]\r\nGet:64 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libgstreamer-plugins-base1.0-0 amd64 1.20.1-1ubuntu0.2 [848 kB]\r\nGet:65 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libhyphen0 amd64 2.8.8-7build2 [28.2 kB]\r\nGet:66 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libqt5positioning5 amd64 5.15.3+dfsg-3 [223 kB]\r\nGet:67 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libavahi-client3 amd64 0.8-5ubuntu5.2 [28.0 kB]\r\nGet:68 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libcups2 amd64 2.4.1op1-1ubuntu4.10 [263 kB]\r\nGet:69 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/universe amd64 libqt5printsupport5 amd64 5.15.3+dfsg-2ubuntu0.2 [214 kB]\r\nGet:70 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libqt5qml5 amd64 5.15.3+dfsg-1 [1,472 kB]\r\nGet:71 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libqt5qmlmodels5 amd64 5.15.3+dfsg-1 [205 kB]\r\nGet:72 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libqt5quick5 amd64 5.15.3+dfsg-1 [1,748 kB]\r\nGet:73 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libqt5sensors5 amd64 5.15.3-1 [123 kB]\r\nGet:74 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libqt5webchannel5 amd64 5.15.3-1 [62.9 kB]\r\nGet:75 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libwoff1 amd64 1.0.2-1build4 [45.2 kB]\r\nGet:76 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libqt5webkit5 amd64 5.212.0~alpha4-15ubuntu1 [12.8 MB]\r\nGet:77 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libmbedcrypto7 amd64 2.28.0-1build1 [204 kB]\r\nGet:78 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libmbedx509-1 amd64 2.28.0-1build1 [47.2 kB]\r\nGet:79 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libmbedtls14 amd64 2.28.0-1build1 [82.7 kB]\r\nGet:80 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 privoxy amd64 3.0.33-1build1 [601 kB]\r\nGet:81 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 hicolor-icon-theme all 0.17-2 [9,976 B]\r\nGet:82 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libgdk-pixbuf2.0-common all 2.42.8+dfsg-1ubuntu0.3 [5,630 B]\r\nGet:83 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libgdk-pixbuf-2.0-0 amd64 2.42.8+dfsg-1ubuntu0.3 [148 kB]\r\nGet:84 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 gtk-update-icon-cache amd64 3.24.33-1ubuntu2.2 [31.4 kB]\r\nGet:85 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 humanity-icon-theme all 0.6.16 [1,282 kB]\r\nGet:86 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 ubuntu-mono all 20.10-0ubuntu2 [153 kB]\r\nGet:87 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 adwaita-icon-theme all 41.0-1ubuntu1 [3,444 kB]\r\nGet:88 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 alsa-topology-conf all 1.2.5.1-2 [15.5 kB]\r\nGet:89 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libasound2-data all 1.2.6.1-1ubuntu1 [19.1 kB]\r\nGet:90 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libasound2 amd64 1.2.6.1-1ubuntu1 [390 kB]\r\nGet:91 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 alsa-ucm-conf all 1.2.6.3-1ubuntu1.11 [43.6 kB]\r\nGet:92 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libxi6 amd64 2:1.8-1build1 [32.6 kB]\r\nGet:93 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libatspi2.0-0 amd64 2.44.0-3 [80.9 kB]\r\nGet:94 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libxtst6 amd64 2:1.2.3-1build4 [13.4 kB]\r\nGet:95 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libdconf1 amd64 0.40.0-3 [40.5 kB]\r\nGet:96 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 dconf-service amd64 0.40.0-3 [28.5 kB]\r\nGet:97 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 dconf-gsettings-backend amd64 0.40.0-3 [22.8 kB]\r\nGet:98 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 session-migration amd64 0.3.6 [9,774 B]\r\nGet:99 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 gsettings-desktop-schemas all 42.0-1ubuntu1 [31.1 kB]\r\nGet:100 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 at-spi2-core amd64 2.44.0-3 [54.4 kB]\r\nGet:101 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 m4 amd64 1.4.18-5ubuntu2 [199 kB]\r\nGet:102 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 autoconf all 2.71-2 [338 kB]\r\nGet:103 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 autotools-dev all 20220109.1 [44.9 kB]\r\nGet:104 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 automake all 1:1.16.5-1.3 [558 kB]\r\nGet:105 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libuuid-perl amd64 0.28-1build4 [15.9 kB]\r\nGet:106 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libyaml-tiny-perl all 1.73-1 [25.2 kB]\r\nGet:107 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 doc-base all 0.11.1 [79.4 kB]\r\nGet:108 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libavahi-glib1 amd64 0.8-5ubuntu5.2 [8,296 B]\r\nGet:109 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libjson-glib-1.0-common all 1.6.6-1build1 [4,432 B]\r\nGet:110 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libjson-glib-1.0-0 amd64 1.6.6-1build1 [69.9 kB]\r\nGet:111 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libnotify4 amd64 0.7.9-3ubuntu5.22.04.1 [20.3 kB]\r\nGet:112 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libproxy1v5 amd64 0.4.17-2 [51.9 kB]\r\nGet:113 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 glib-networking-common all 2.72.0-1 [3,718 B]\r\nGet:114 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 glib-networking-services amd64 2.72.0-1 [9,982 B]\r\nGet:115 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 glib-networking amd64 2.72.0-1 [69.8 kB]\r\nGet:116 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libsoup2.4-common all 2.74.2-3 [4,008 B]\r\nGet:117 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libsoup2.4-1 amd64 2.74.2-3 [287 kB]\r\nGet:118 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 geoclue-2.0 amd64 2.5.7-3ubuntu3 [111 kB]\r\nGet:119 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libgraphene-1.0-0 amd64 1.10.8-1 [48.2 kB]\r\nGet:120 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libwayland-cursor0 amd64 1.20.0-1ubuntu0.1 [10.7 kB]\r\nGet:121 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libwayland-egl1 amd64 1.20.0-1ubuntu0.1 [5,582 B]\r\nGet:122 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libgstreamer-gl1.0-0 amd64 1.20.1-1ubuntu0.2 [204 kB]\r\nGet:123 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 gstreamer1.0-gl amd64 1.20.1-1ubuntu0.2 [125 kB]\r\nGet:124 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libcdparanoia0 amd64 3.10.2+debian-14build2 [49.3 kB]\r\nGet:125 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libogg0 amd64 1.3.5-0ubuntu3 [22.9 kB]\r\nGet:126 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libopus0 amd64 1.3.1-0.1build2 [203 kB]\r\nGet:127 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libtheora0 amd64 1.1.1+dfsg.1-15ubuntu4 [209 kB]\r\nGet:128 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libvisual-0.4-0 amd64 0.4.0-17build2 [108 kB]\r\nGet:129 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libvorbis0a amd64 1.3.7-1build2 [99.2 kB]\r\nGet:130 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libvorbisenc2 amd64 1.3.7-1build2 [82.6 kB]\r\nGet:131 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 gstreamer1.0-plugins-base amd64 1.20.1-1ubuntu0.2 [712 kB]\r\nGet:132 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 iio-sensor-proxy amd64 3.3-0ubuntu6 [34.4 kB]\r\nGet:133 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libarchive-dev amd64 3.6.0-1ubuntu1.1 [582 kB]\r\nGet:134 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libasyncns0 amd64 0.8-6build2 [12.8 kB]\r\nGet:135 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libatk1.0-data all 2.36.0-3build1 [2,824 B]\r\nGet:136 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libatk1.0-0 amd64 2.36.0-3build1 [51.9 kB]\r\nGet:137 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libatk-bridge2.0-0 amd64 2.38.0-3 [66.6 kB]\r\nGet:138 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libbcg729-0 amd64 1.1.1-2 [32.9 kB]\r\nGet:139 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libcairo-gobject2 amd64 1.16.0-5ubuntu2 [19.4 kB]\r\nGet:140 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 liblcms2-2 amd64 2.12~rc1-2build2 [159 kB]\r\nGet:141 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libcolord2 amd64 1.4.6-1 [155 kB]\r\nGet:142 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libconfig9 amd64 1.5-0.4build1 [22.3 kB]\r\nGet:143 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 pkg-config amd64 0.29.2-1ubuntu3 [48.2 kB]\r\nGet:144 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libconfig-dev amd64 1.5-0.4build1 [51.7 kB]\r\nGet:145 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libconfig-doc all 1.5-0.4build1 [306 kB]\r\nGet:146 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libepoxy0 amd64 1.5.10-1 [237 kB]\r\nGet:147 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libflac8 amd64 1.3.3-2ubuntu0.2 [111 kB]\r\nGet:148 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libfontenc1 amd64 1:1.1.4-1build3 [14.7 kB]\r\nGet:149 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libgdk-pixbuf2.0-bin amd64 2.42.8+dfsg-1ubuntu0.3 [14.2 kB]\r\nGet:150 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libgl1-amber-dri amd64 21.3.9-0ubuntu1~22.04.1 [4,218 kB]\r\nGet:151 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libxcomposite1 amd64 1:0.4.5-1build2 [7,192 B]\r\nGet:152 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libxcursor1 amd64 1:1.2.0-2build4 [20.9 kB]\r\nGet:153 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libxdamage1 amd64 1:1.1.5-2build2 [7,154 B]\r\nGet:154 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libxinerama1 amd64 2:1.1.4-3 [7,382 B]\r\nGet:155 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libxrandr2 amd64 2:1.5.2-1build1 [20.4 kB]\r\nGet:156 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libgtk-3-common all 3.24.33-1ubuntu2.2 [239 kB]\r\nGet:157 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libgtk-3-0 amd64 3.24.33-1ubuntu2.2 [3,053 kB]\r\nGet:158 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libgtk-3-bin amd64 3.24.33-1ubuntu2.2 [69.6 kB]\r\nGet:159 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libltdl-dev amd64 2.4.6-15build2 [169 kB]\r\nGet:160 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 liblua5.2-0 amd64 5.2.4-2 [125 kB]\r\nGet:161 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libminizip1 amd64 1.1-8build1 [20.2 kB]\r\nGet:162 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libnl-route-3-200 amd64 3.5.0-0.1 [180 kB]\r\nGet:163 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libnss-mdns amd64 0.15.1-1ubuntu1 [27.0 kB]\r\nGet:164 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libpcsclite1 amd64 1.9.5-3ubuntu1 [19.8 kB]\r\nGet:165 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libsndfile1 amd64 1.0.31-2ubuntu0.1 [197 kB]\r\nGet:166 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libpulse0 amd64 1:15.99.1+dfsg1-1ubuntu2.2 [298 kB]\r\nGet:167 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libqt5multimedia5 amd64 5.15.3-1 [320 kB]\r\nGet:168 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libqt5multimediawidgets5 amd64 5.15.3-1 [42.6 kB]\r\nGet:169 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libqt5multimediagsttools5 amd64 5.15.3-1 [112 kB]\r\nGet:170 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libqt5multimedia5-plugins amd64 5.15.3-1 [178 kB]\r\nGet:171 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 librsvg2-2 amd64 2.52.5+dfsg-3ubuntu0.2 [2,974 kB]\r\nGet:172 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 librsvg2-common amd64 2.52.5+dfsg-3ubuntu0.2 [17.7 kB]\r\nGet:173 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libsmi2ldbl amd64 0.4.8+dfsg2-16 [100 kB]\r\nGet:174 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libspandsp2 amd64 0.0.6+dfsg-2 [272 kB]\r\nGet:175 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libspeexdsp1 amd64 1.2~rc1.2-1.1ubuntu3 [42.5 kB]\r\nGet:176 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libssh-gcrypt-4 amd64 0.9.6-2ubuntu0.22.04.3 [223 kB]\r\nGet:177 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libtool all 2.4.6-15build2 [164 kB]\r\nGet:178 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libwacom-bin amd64 2.2.0-1 [13.6 kB]\r\nGet:179 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libwireshark-data all 3.6.2-2 [1,647 kB]\r\nGet:180 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libc-ares2 amd64 1.18.1-1ubuntu0.22.04.3 [45.1 kB]\r\nGet:181 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libsbc1 amd64 1.5-3build2 [34.4 kB]\r\nGet:182 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libsnappy1v5 amd64 1.1.8-1build3 [17.5 kB]\r\nGet:183 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libwsutil13 amd64 3.6.2-2 [99.2 kB]\r\nGet:184 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libwiretap12 amd64 3.6.2-2 [255 kB]\r\nGet:185 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libwireshark15 amd64 3.6.2-2 [19.5 MB]\r\nGet:186 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libxfont2 amd64 1:2.0.5-1build1 [94.5 kB]\r\nGet:187 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libxkbfile1 amd64 1:1.1.0-1build3 [71.8 kB]\r\nGet:188 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 modemmanager amd64 1.20.0-1~ubuntu22.04.3 [1,094 kB]\r\nGet:189 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/universe amd64 qt5-gtk-platformtheme amd64 5.15.3+dfsg-2ubuntu0.2 [130 kB]\r\nGet:190 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 qttranslations5-l10n all 5.15.3-1 [1,983 kB]\r\nGet:191 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 wireshark-common amd64 3.6.2-2 [473 kB]\r\nGet:192 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 wireshark-qt amd64 3.6.2-2 [4,269 kB]\r\nGet:193 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 wireshark amd64 3.6.2-2 [4,992 B]\r\nGet:194 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 wpasupplicant amd64 2:2.10-6ubuntu2.1 [1,482 kB]\r\nGet:195 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 x11-xkb-utils amd64 7.7+5build4 [172 kB]\r\nGet:196 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 xfonts-encodings all 1:1.0.5-0ubuntu2 [578 kB]\r\nGet:197 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 xfonts-utils amd64 1:7.7+6build2 [94.6 kB]\r\nGet:198 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 xfonts-100dpi all 1:1.0.4+nmu1.1 [3,818 kB]\r\nGet:199 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 xfonts-base all 1:1.0.5 [5,896 kB]\r\nGet:200 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 xserver-common all 2:21.1.4-2ubuntu1.7~22.04.11 [28.6 kB]\r\nGet:201 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/universe amd64 xvfb amd64 2:21.1.4-2ubuntu1.7~22.04.11 [863 kB]\r\nGet:202 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 uthash-dev amd64 2.3.0-1 [176 kB]\r\nGet:203 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 wkhtmltopdf amd64 0.12.6-2 [173 kB]\r\nPreconfiguring packages ...\r\nFetched 133 MB in 5s (24.5 MB/s)\r\nSelecting previously unselected package libavahi-common-data:amd64.\r\n(Reading database ... 108867 files and directories currently installed.)\r\nPreparing to unpack .../000-libavahi-common-data_0.8-5ubuntu5.2_amd64.deb ...\r\nUnpacking libavahi-common-data:amd64 (0.8-5ubuntu5.2) ...\r\nSelecting previously unselected package libavahi-common3:amd64.\r\nPreparing to unpack .../001-libavahi-common3_0.8-5ubuntu5.2_amd64.deb ...\r\nUnpacking libavahi-common3:amd64 (0.8-5ubuntu5.2) ...\r\nSelecting previously unselected package libavahi-core7:amd64.\r\nPreparing to unpack .../002-libavahi-core7_0.8-5ubuntu5.2_amd64.deb ...\r\nUnpacking libavahi-core7:amd64 (0.8-5ubuntu5.2) ...\r\nSelecting previously unselected package libdaemon0:amd64.\r\nPreparing to unpack .../003-libdaemon0_0.14-7.1ubuntu3_amd64.deb ...\r\nUnpacking libdaemon0:amd64 (0.14-7.1ubuntu3) ...\r\nSelecting previously unselected package avahi-daemon.\r\nPreparing to unpack .../004-avahi-daemon_0.8-5ubuntu5.2_amd64.deb ...\r\nUnpacking avahi-daemon (0.8-5ubuntu5.2) ...\r\nSelecting previously unselected package libdouble-conversion3:amd64.\r\nPreparing to unpack .../005-libdouble-conversion3_3.1.7-4_amd64.deb ...\r\nUnpacking libdouble-conversion3:amd64 (3.1.7-4) ...\r\nSelecting previously unselected package libpcre2-16-0:amd64.\r\nPreparing to unpack .../006-libpcre2-16-0_10.39-3ubuntu0.1_amd64.deb ...\r\nUnpacking libpcre2-16-0:amd64 (10.39-3ubuntu0.1) ...\r\nSelecting previously unselected package libqt5core5a:amd64.\r\nPreparing to unpack .../007-libqt5core5a_5.15.3+dfsg-2ubuntu0.2_amd64.deb ...\r\nUnpacking libqt5core5a:amd64 (5.15.3+dfsg-2ubuntu0.2) ...\r\nSelecting previously unselected package libglvnd0:amd64.\r\nPreparing to unpack .../008-libglvnd0_1.4.0-1_amd64.deb ...\r\nUnpacking libglvnd0:amd64 (1.4.0-1) ...\r\nSelecting previously unselected package libwayland-server0:amd64.\r\nPreparing to unpack .../009-libwayland-server0_1.20.0-1ubuntu0.1_amd64.deb ...\r\nUnpacking libwayland-server0:amd64 (1.20.0-1ubuntu0.1) ...\r\nSelecting previously unselected package libxcb-randr0:amd64.\r\nPreparing to unpack .../010-libxcb-randr0_1.14-3ubuntu3_amd64.deb ...\r\nUnpacking libxcb-randr0:amd64 (1.14-3ubuntu3) ...\r\nSelecting previously unselected package libgbm1:amd64.\r\nPreparing to unpack .../011-libgbm1_23.2.1-1ubuntu3.1~22.04.2_amd64.deb ...\r\nUnpacking libgbm1:amd64 (23.2.1-1ubuntu3.1~22.04.2) ...\r\nSelecting previously unselected package libglapi-mesa:amd64.\r\nPreparing to unpack .../012-libglapi-mesa_23.2.1-1ubuntu3.1~22.04.2_amd64.deb ...\r\nUnpacking libglapi-mesa:amd64 (23.2.1-1ubuntu3.1~22.04.2) ...\r\nSelecting previously unselected package libwayland-client0:amd64.\r\nPreparing to unpack .../013-libwayland-client0_1.20.0-1ubuntu0.1_amd64.deb ...\r\nUnpacking libwayland-client0:amd64 (1.20.0-1ubuntu0.1) ...\r\nSelecting previously unselected package libx11-xcb1:amd64.\r\nPreparing to unpack .../014-libx11-xcb1_2%3a1.7.5-1ubuntu0.3_amd64.deb ...\r\nUnpacking libx11-xcb1:amd64 (2:1.7.5-1ubuntu0.3) ...\r\nSelecting previously unselected package libxcb-dri2-0:amd64.\r\nPreparing to unpack .../015-libxcb-dri2-0_1.14-3ubuntu3_amd64.deb ...\r\nUnpacking libxcb-dri2-0:amd64 (1.14-3ubuntu3) ...\r\nSelecting previously unselected package libxcb-dri3-0:amd64.\r\nPreparing to unpack .../016-libxcb-dri3-0_1.14-3ubuntu3_amd64.deb ...\r\nUnpacking libxcb-dri3-0:amd64 (1.14-3ubuntu3) ...\r\nSelecting previously unselected package libxcb-present0:amd64.\r\nPreparing to unpack .../017-libxcb-present0_1.14-3ubuntu3_amd64.deb ...\r\nUnpacking libxcb-present0:amd64 (1.14-3ubuntu3) ...\r\nSelecting previously unselected package libxcb-sync1:amd64.\r\nPreparing to unpack .../018-libxcb-sync1_1.14-3ubuntu3_amd64.deb ...\r\nUnpacking libxcb-sync1:amd64 (1.14-3ubuntu3) ...\r\nSelecting previously unselected package libxcb-xfixes0:amd64.\r\nPreparing to unpack .../019-libxcb-xfixes0_1.14-3ubuntu3_amd64.deb ...\r\nUnpacking libxcb-xfixes0:amd64 (1.14-3ubuntu3) ...\r\nSelecting previously unselected package libxshmfence1:amd64.\r\nPreparing to unpack .../020-libxshmfence1_1.3-1build4_amd64.deb ...\r\nUnpacking libxshmfence1:amd64 (1.3-1build4) ...\r\nSelecting previously unselected package libegl-mesa0:amd64.\r\nPreparing to unpack .../021-libegl-mesa0_23.2.1-1ubuntu3.1~22.04.2_amd64.deb ...\r\nUnpacking libegl-mesa0:amd64 (23.2.1-1ubuntu3.1~22.04.2) ...\r\nSelecting previously unselected package libegl1:amd64.\r\nPreparing to unpack .../022-libegl1_1.4.0-1_amd64.deb ...\r\nUnpacking libegl1:amd64 (1.4.0-1) ...\r\nSelecting previously unselected package libxcb-glx0:amd64.\r\nPreparing to unpack .../023-libxcb-glx0_1.14-3ubuntu3_amd64.deb ...\r\nUnpacking libxcb-glx0:amd64 (1.14-3ubuntu3) ...\r\nSelecting previously unselected package libxfixes3:amd64.\r\nPreparing to unpack .../024-libxfixes3_1%3a6.0.0-1_amd64.deb ...\r\nUnpacking libxfixes3:amd64 (1:6.0.0-1) ...\r\nSelecting previously unselected package libxxf86vm1:amd64.\r\nPreparing to unpack .../025-libxxf86vm1_1%3a1.1.4-1build3_amd64.deb ...\r\nUnpacking libxxf86vm1:amd64 (1:1.1.4-1build3) ...\r\nSelecting previously unselected package libdrm-amdgpu1:amd64.\r\nPreparing to unpack .../026-libdrm-amdgpu1_2.4.113-2~ubuntu0.22.04.1_amd64.deb ...\r\nUnpacking libdrm-amdgpu1:amd64 (2.4.113-2~ubuntu0.22.04.1) ...\r\nSelecting previously unselected package libpciaccess0:amd64.\r\nPreparing to unpack .../027-libpciaccess0_0.16-3_amd64.deb ...\r\nUnpacking libpciaccess0:amd64 (0.16-3) ...\r\nSelecting previously unselected package libdrm-intel1:amd64.\r\nPreparing to unpack .../028-libdrm-intel1_2.4.113-2~ubuntu0.22.04.1_amd64.deb ...\r\nUnpacking libdrm-intel1:amd64 (2.4.113-2~ubuntu0.22.04.1) ...\r\nSelecting previously unselected package libdrm-nouveau2:amd64.\r\nPreparing to unpack .../029-libdrm-nouveau2_2.4.113-2~ubuntu0.22.04.1_amd64.deb ...\r\nUnpacking libdrm-nouveau2:amd64 (2.4.113-2~ubuntu0.22.04.1) ...\r\nSelecting previously unselected package libdrm-radeon1:amd64.\r\nPreparing to unpack .../030-libdrm-radeon1_2.4.113-2~ubuntu0.22.04.1_amd64.deb ...\r\nUnpacking libdrm-radeon1:amd64 (2.4.113-2~ubuntu0.22.04.1) ...\r\nSelecting previously unselected package libllvm15:amd64.\r\nPreparing to unpack .../031-libllvm15_1%3a15.0.7-0ubuntu0.22.04.3_amd64.deb ...\r\nUnpacking libllvm15:amd64 (1:15.0.7-0ubuntu0.22.04.3) ...\r\nSelecting previously unselected package libsensors-config.\r\nPreparing to unpack .../032-libsensors-config_1%3a3.6.0-7ubuntu1_all.deb ...\r\nUnpacking libsensors-config (1:3.6.0-7ubuntu1) ...\r\nSelecting previously unselected package libsensors5:amd64.\r\nPreparing to unpack .../033-libsensors5_1%3a3.6.0-7ubuntu1_amd64.deb ...\r\nUnpacking libsensors5:amd64 (1:3.6.0-7ubuntu1) ...\r\nSelecting previously unselected package libgl1-mesa-dri:amd64.\r\nPreparing to unpack .../034-libgl1-mesa-dri_23.2.1-1ubuntu3.1~22.04.2_amd64.deb ...\r\nUnpacking libgl1-mesa-dri:amd64 (23.2.1-1ubuntu3.1~22.04.2) ...\r\nSelecting previously unselected package libglx-mesa0:amd64.\r\nPreparing to unpack .../035-libglx-mesa0_23.2.1-1ubuntu3.1~22.04.2_amd64.deb ...\r\nUnpacking libglx-mesa0:amd64 (23.2.1-1ubuntu3.1~22.04.2) ...\r\nSelecting previously unselected package libglx0:amd64.\r\nPreparing to unpack .../036-libglx0_1.4.0-1_amd64.deb ...\r\nUnpacking libglx0:amd64 (1.4.0-1) ...\r\nSelecting previously unselected package libgl1:amd64.\r\nPreparing to unpack .../037-libgl1_1.4.0-1_amd64.deb ...\r\nUnpacking libgl1:amd64 (1.4.0-1) ...\r\nSelecting previously unselected package libevdev2:amd64.\r\nPreparing to unpack .../038-libevdev2_1.12.1+dfsg-1_amd64.deb ...\r\nUnpacking libevdev2:amd64 (1.12.1+dfsg-1) ...\r\nSelecting previously unselected package libmtdev1:amd64.\r\nPreparing to unpack .../039-libmtdev1_1.1.6-1build4_amd64.deb ...\r\nUnpacking libmtdev1:amd64 (1.1.6-1build4) ...\r\nSelecting previously unselected package libgudev-1.0-0:amd64.\r\nPreparing to unpack .../040-libgudev-1.0-0_1%3a237-2build1_amd64.deb ...\r\nUnpacking libgudev-1.0-0:amd64 (1:237-2build1) ...\r\nSelecting previously unselected package libwacom-common.\r\nPreparing to unpack .../041-libwacom-common_2.2.0-1_all.deb ...\r\nUnpacking libwacom-common (2.2.0-1) ...\r\nSelecting previously unselected package libwacom9:amd64.\r\nPreparing to unpack .../042-libwacom9_2.2.0-1_amd64.deb ...\r\nUnpacking libwacom9:amd64 (2.2.0-1) ...\r\nSelecting previously unselected package libinput-bin.\r\nPreparing to unpack .../043-libinput-bin_1.20.0-1ubuntu0.3_amd64.deb ...\r\nUnpacking libinput-bin (1.20.0-1ubuntu0.3) ...\r\nSelecting previously unselected package libinput10:amd64.\r\nPreparing to unpack .../044-libinput10_1.20.0-1ubuntu0.3_amd64.deb ...\r\nUnpacking libinput10:amd64 (1.20.0-1ubuntu0.3) ...\r\nSelecting previously unselected package libmd4c0:amd64.\r\nPreparing to unpack .../045-libmd4c0_0.4.8-1_amd64.deb ...\r\nUnpacking libmd4c0:amd64 (0.4.8-1) ...\r\nSelecting previously unselected package libqt5dbus5:amd64.\r\nPreparing to unpack .../046-libqt5dbus5_5.15.3+dfsg-2ubuntu0.2_amd64.deb ...\r\nUnpacking libqt5dbus5:amd64 (5.15.3+dfsg-2ubuntu0.2) ...\r\nSelecting previously unselected package libqt5network5:amd64.\r\nPreparing to unpack .../047-libqt5network5_5.15.3+dfsg-2ubuntu0.2_amd64.deb ...\r\nUnpacking libqt5network5:amd64 (5.15.3+dfsg-2ubuntu0.2) ...\r\nSelecting previously unselected package libxcb-icccm4:amd64.\r\nPreparing to unpack .../048-libxcb-icccm4_0.4.1-1.1build2_amd64.deb ...\r\nUnpacking libxcb-icccm4:amd64 (0.4.1-1.1build2) ...\r\nSelecting previously unselected package libxcb-util1:amd64.\r\nPreparing to unpack .../049-libxcb-util1_0.4.0-1build2_amd64.deb ...\r\nUnpacking libxcb-util1:amd64 (0.4.0-1build2) ...\r\nSelecting previously unselected package libxcb-image0:amd64.\r\nPreparing to unpack .../050-libxcb-image0_0.4.0-2_amd64.deb ...\r\nUnpacking libxcb-image0:amd64 (0.4.0-2) ...\r\nSelecting previously unselected package libxcb-keysyms1:amd64.\r\nPreparing to unpack .../051-libxcb-keysyms1_0.4.0-1build3_amd64.deb ...\r\nUnpacking libxcb-keysyms1:amd64 (0.4.0-1build3) ...\r\nSelecting previously unselected package libxcb-render-util0:amd64.\r\nPreparing to unpack .../052-libxcb-render-util0_0.3.9-1build3_amd64.deb ...\r\nUnpacking libxcb-render-util0:amd64 (0.3.9-1build3) ...\r\nSelecting previously unselected package libxcb-shape0:amd64.\r\nPreparing to unpack .../053-libxcb-shape0_1.14-3ubuntu3_amd64.deb ...\r\nUnpacking libxcb-shape0:amd64 (1.14-3ubuntu3) ...\r\nSelecting previously unselected package libxcb-xinerama0:amd64.\r\nPreparing to unpack .../054-libxcb-xinerama0_1.14-3ubuntu3_amd64.deb ...\r\nUnpacking libxcb-xinerama0:amd64 (1.14-3ubuntu3) ...\r\nSelecting previously unselected package libxcb-xinput0:amd64.\r\nPreparing to unpack .../055-libxcb-xinput0_1.14-3ubuntu3_amd64.deb ...\r\nUnpacking libxcb-xinput0:amd64 (1.14-3ubuntu3) ...\r\nSelecting previously unselected package libxcb-xkb1:amd64.\r\nPreparing to unpack .../056-libxcb-xkb1_1.14-3ubuntu3_amd64.deb ...\r\nUnpacking libxcb-xkb1:amd64 (1.14-3ubuntu3) ...\r\nSelecting previously unselected package libxkbcommon0:amd64.\r\nPreparing to unpack .../057-libxkbcommon0_1.4.0-1_amd64.deb ...\r\nUnpacking libxkbcommon0:amd64 (1.4.0-1) ...\r\nSelecting previously unselected package libxkbcommon-x11-0:amd64.\r\nPreparing to unpack .../058-libxkbcommon-x11-0_1.4.0-1_amd64.deb ...\r\nUnpacking libxkbcommon-x11-0:amd64 (1.4.0-1) ...\r\nSelecting previously unselected package libqt5gui5:amd64.\r\nPreparing to unpack .../059-libqt5gui5_5.15.3+dfsg-2ubuntu0.2_amd64.deb ...\r\nUnpacking libqt5gui5:amd64 (5.15.3+dfsg-2ubuntu0.2) ...\r\nSelecting previously unselected package libqt5widgets5:amd64.\r\nPreparing to unpack .../060-libqt5widgets5_5.15.3+dfsg-2ubuntu0.2_amd64.deb ...\r\nUnpacking libqt5widgets5:amd64 (5.15.3+dfsg-2ubuntu0.2) ...\r\nSelecting previously unselected package libqt5svg5:amd64.\r\nPreparing to unpack .../061-libqt5svg5_5.15.3-1_amd64.deb ...\r\nUnpacking libqt5svg5:amd64 (5.15.3-1) ...\r\nSelecting previously unselected package liborc-0.4-0:amd64.\r\nPreparing to unpack .../062-liborc-0.4-0_1%3a0.4.32-2ubuntu0.1_amd64.deb ...\r\nUnpacking liborc-0.4-0:amd64 (1:0.4.32-2ubuntu0.1) ...\r\nSelecting previously unselected package libgstreamer-plugins-base1.0-0:amd64.\r\nPreparing to unpack .../063-libgstreamer-plugins-base1.0-0_1.20.1-1ubuntu0.2_amd64.deb ...\r\nUnpacking libgstreamer-plugins-base1.0-0:amd64 (1.20.1-1ubuntu0.2) ...\r\nSelecting previously unselected package libhyphen0:amd64.\r\nPreparing to unpack .../064-libhyphen0_2.8.8-7build2_amd64.deb ...\r\nUnpacking libhyphen0:amd64 (2.8.8-7build2) ...\r\nSelecting previously unselected package libqt5positioning5:amd64.\r\nPreparing to unpack .../065-libqt5positioning5_5.15.3+dfsg-3_amd64.deb ...\r\nUnpacking libqt5positioning5:amd64 (5.15.3+dfsg-3) ...\r\nSelecting previously unselected package libavahi-client3:amd64.\r\nPreparing to unpack .../066-libavahi-client3_0.8-5ubuntu5.2_amd64.deb ...\r\nUnpacking libavahi-client3:amd64 (0.8-5ubuntu5.2) ...\r\nSelecting previously unselected package libcups2:amd64.\r\nPreparing to unpack .../067-libcups2_2.4.1op1-1ubuntu4.10_amd64.deb ...\r\nUnpacking libcups2:amd64 (2.4.1op1-1ubuntu4.10) ...\r\nSelecting previously unselected package libqt5printsupport5:amd64.\r\nPreparing to unpack .../068-libqt5printsupport5_5.15.3+dfsg-2ubuntu0.2_amd64.deb ...\r\nUnpacking libqt5printsupport5:amd64 (5.15.3+dfsg-2ubuntu0.2) ...\r\nSelecting previously unselected package libqt5qml5:amd64.\r\nPreparing to unpack .../069-libqt5qml5_5.15.3+dfsg-1_amd64.deb ...\r\nUnpacking libqt5qml5:amd64 (5.15.3+dfsg-1) ...\r\nSelecting previously unselected package libqt5qmlmodels5:amd64.\r\nPreparing to unpack .../070-libqt5qmlmodels5_5.15.3+dfsg-1_amd64.deb ...\r\nUnpacking libqt5qmlmodels5:amd64 (5.15.3+dfsg-1) ...\r\nSelecting previously unselected package libqt5quick5:amd64.\r\nPreparing to unpack .../071-libqt5quick5_5.15.3+dfsg-1_amd64.deb ...\r\nUnpacking libqt5quick5:amd64 (5.15.3+dfsg-1) ...\r\nSelecting previously unselected package libqt5sensors5:amd64.\r\nPreparing to unpack .../072-libqt5sensors5_5.15.3-1_amd64.deb ...\r\nUnpacking libqt5sensors5:amd64 (5.15.3-1) ...\r\nSelecting previously unselected package libqt5webchannel5:amd64.\r\nPreparing to unpack .../073-libqt5webchannel5_5.15.3-1_amd64.deb ...\r\nUnpacking libqt5webchannel5:amd64 (5.15.3-1) ...\r\nSelecting previously unselected package libwoff1:amd64.\r\nPreparing to unpack .../074-libwoff1_1.0.2-1build4_amd64.deb ...\r\nUnpacking libwoff1:amd64 (1.0.2-1build4) ...\r\nSelecting previously unselected package libqt5webkit5:amd64.\r\nPreparing to unpack .../075-libqt5webkit5_5.212.0~alpha4-15ubuntu1_amd64.deb ...\r\nUnpacking libqt5webkit5:amd64 (5.212.0~alpha4-15ubuntu1) ...\r\nSelecting previously unselected package libmbedcrypto7:amd64.\r\nPreparing to unpack .../076-libmbedcrypto7_2.28.0-1build1_amd64.deb ...\r\nUnpacking libmbedcrypto7:amd64 (2.28.0-1build1) ...\r\nSelecting previously unselected package libmbedx509-1:amd64.\r\nPreparing to unpack .../077-libmbedx509-1_2.28.0-1build1_amd64.deb ...\r\nUnpacking libmbedx509-1:amd64 (2.28.0-1build1) ...\r\nSelecting previously unselected package libmbedtls14:amd64.\r\nPreparing to unpack .../078-libmbedtls14_2.28.0-1build1_amd64.deb ...\r\nUnpacking libmbedtls14:amd64 (2.28.0-1build1) ...\r\nSelecting previously unselected package privoxy.\r\nPreparing to unpack .../079-privoxy_3.0.33-1build1_amd64.deb ...\r\nUnpacking privoxy (3.0.33-1build1) ...\r\nSelecting previously unselected package hicolor-icon-theme.\r\nPreparing to unpack .../080-hicolor-icon-theme_0.17-2_all.deb ...\r\nUnpacking hicolor-icon-theme (0.17-2) ...\r\nSelecting previously unselected package libgdk-pixbuf2.0-common.\r\nPreparing to unpack .../081-libgdk-pixbuf2.0-common_2.42.8+dfsg-1ubuntu0.3_all.deb ...\r\nUnpacking libgdk-pixbuf2.0-common (2.42.8+dfsg-1ubuntu0.3) ...\r\nSelecting previously unselected package libgdk-pixbuf-2.0-0:amd64.\r\nPreparing to unpack .../082-libgdk-pixbuf-2.0-0_2.42.8+dfsg-1ubuntu0.3_amd64.deb ...\r\nUnpacking libgdk-pixbuf-2.0-0:amd64 (2.42.8+dfsg-1ubuntu0.3) ...\r\nSelecting previously unselected package gtk-update-icon-cache.\r\nPreparing to unpack .../083-gtk-update-icon-cache_3.24.33-1ubuntu2.2_amd64.deb ...\r\nUnpacking gtk-update-icon-cache (3.24.33-1ubuntu2.2) ...\r\nSelecting previously unselected package humanity-icon-theme.\r\nPreparing to unpack .../084-humanity-icon-theme_0.6.16_all.deb ...\r\nUnpacking humanity-icon-theme (0.6.16) ...\r\nSelecting previously unselected package ubuntu-mono.\r\nPreparing to unpack .../085-ubuntu-mono_20.10-0ubuntu2_all.deb ...\r\nUnpacking ubuntu-mono (20.10-0ubuntu2) ...\r\nSelecting previously unselected package adwaita-icon-theme.\r\nPreparing to unpack .../086-adwaita-icon-theme_41.0-1ubuntu1_all.deb ...\r\nUnpacking adwaita-icon-theme (41.0-1ubuntu1) ...\r\nSelecting previously unselected package alsa-topology-conf.\r\nPreparing to unpack .../087-alsa-topology-conf_1.2.5.1-2_all.deb ...\r\nUnpacking alsa-topology-conf (1.2.5.1-2) ...\r\nSelecting previously unselected package libasound2-data.\r\nPreparing to unpack .../088-libasound2-data_1.2.6.1-1ubuntu1_all.deb ...\r\nUnpacking libasound2-data (1.2.6.1-1ubuntu1) ...\r\nSelecting previously unselected package libasound2:amd64.\r\nPreparing to unpack .../089-libasound2_1.2.6.1-1ubuntu1_amd64.deb ...\r\nUnpacking libasound2:amd64 (1.2.6.1-1ubuntu1) ...\r\nSelecting previously unselected package alsa-ucm-conf.\r\nPreparing to unpack .../090-alsa-ucm-conf_1.2.6.3-1ubuntu1.11_all.deb ...\r\nUnpacking alsa-ucm-conf (1.2.6.3-1ubuntu1.11) ...\r\nSelecting previously unselected package libxi6:amd64.\r\nPreparing to unpack .../091-libxi6_2%3a1.8-1build1_amd64.deb ...\r\nUnpacking libxi6:amd64 (2:1.8-1build1) ...\r\nSelecting previously unselected package libatspi2.0-0:amd64.\r\nPreparing to unpack .../092-libatspi2.0-0_2.44.0-3_amd64.deb ...\r\nUnpacking libatspi2.0-0:amd64 (2.44.0-3) ...\r\nSelecting previously unselected package libxtst6:amd64.\r\nPreparing to unpack .../093-libxtst6_2%3a1.2.3-1build4_amd64.deb ...\r\nUnpacking libxtst6:amd64 (2:1.2.3-1build4) ...\r\nSelecting previously unselected package libdconf1:amd64.\r\nPreparing to unpack .../094-libdconf1_0.40.0-3_amd64.deb ...\r\nUnpacking libdconf1:amd64 (0.40.0-3) ...\r\nSelecting previously unselected package dconf-service.\r\nPreparing to unpack .../095-dconf-service_0.40.0-3_amd64.deb ...\r\nUnpacking dconf-service (0.40.0-3) ...\r\nSelecting previously unselected package dconf-gsettings-backend:amd64.\r\nPreparing to unpack .../096-dconf-gsettings-backend_0.40.0-3_amd64.deb ...\r\nUnpacking dconf-gsettings-backend:amd64 (0.40.0-3) ...\r\nSelecting previously unselected package session-migration.\r\nPreparing to unpack .../097-session-migration_0.3.6_amd64.deb ...\r\nUnpacking session-migration (0.3.6) ...\r\nSelecting previously unselected package gsettings-desktop-schemas.\r\nPreparing to unpack .../098-gsettings-desktop-schemas_42.0-1ubuntu1_all.deb ...\r\nUnpacking gsettings-desktop-schemas (42.0-1ubuntu1) ...\r\nSelecting previously unselected package at-spi2-core.\r\nPreparing to unpack .../099-at-spi2-core_2.44.0-3_amd64.deb ...\r\nUnpacking at-spi2-core (2.44.0-3) ...\r\nSelecting previously unselected package m4.\r\nPreparing to unpack .../100-m4_1.4.18-5ubuntu2_amd64.deb ...\r\nUnpacking m4 (1.4.18-5ubuntu2) ...\r\nSelecting previously unselected package autoconf.\r\nPreparing to unpack .../101-autoconf_2.71-2_all.deb ...\r\nUnpacking autoconf (2.71-2) ...\r\nSelecting previously unselected package autotools-dev.\r\nPreparing to unpack .../102-autotools-dev_20220109.1_all.deb ...\r\nUnpacking autotools-dev (20220109.1) ...\r\nSelecting previously unselected package automake.\r\nPreparing to unpack .../103-automake_1%3a1.16.5-1.3_all.deb ...\r\nUnpacking automake (1:1.16.5-1.3) ...\r\nSelecting previously unselected package libuuid-perl.\r\nPreparing to unpack .../104-libuuid-perl_0.28-1build4_amd64.deb ...\r\nUnpacking libuuid-perl (0.28-1build4) ...\r\nSelecting previously unselected package libyaml-tiny-perl.\r\nPreparing to unpack .../105-libyaml-tiny-perl_1.73-1_all.deb ...\r\nUnpacking libyaml-tiny-perl (1.73-1) ...\r\nSelecting previously unselected package doc-base.\r\nPreparing to unpack .../106-doc-base_0.11.1_all.deb ...\r\nUnpacking doc-base (0.11.1) ...\r\nSelecting previously unselected package libavahi-glib1:amd64.\r\nPreparing to unpack .../107-libavahi-glib1_0.8-5ubuntu5.2_amd64.deb ...\r\nUnpacking libavahi-glib1:amd64 (0.8-5ubuntu5.2) ...\r\nSelecting previously unselected package libjson-glib-1.0-common.\r\nPreparing to unpack .../108-libjson-glib-1.0-common_1.6.6-1build1_all.deb ...\r\nUnpacking libjson-glib-1.0-common (1.6.6-1build1) ...\r\nSelecting previously unselected package libjson-glib-1.0-0:amd64.\r\nPreparing to unpack .../109-libjson-glib-1.0-0_1.6.6-1build1_amd64.deb ...\r\nUnpacking libjson-glib-1.0-0:amd64 (1.6.6-1build1) ...\r\nSelecting previously unselected package libnotify4:amd64.\r\nPreparing to unpack .../110-libnotify4_0.7.9-3ubuntu5.22.04.1_amd64.deb ...\r\nUnpacking libnotify4:amd64 (0.7.9-3ubuntu5.22.04.1) ...\r\nSelecting previously unselected package libproxy1v5:amd64.\r\nPreparing to unpack .../111-libproxy1v5_0.4.17-2_amd64.deb ...\r\nUnpacking libproxy1v5:amd64 (0.4.17-2) ...\r\nSelecting previously unselected package glib-networking-common.\r\nPreparing to unpack .../112-glib-networking-common_2.72.0-1_all.deb ...\r\nUnpacking glib-networking-common (2.72.0-1) ...\r\nSelecting previously unselected package glib-networking-services.\r\nPreparing to unpack .../113-glib-networking-services_2.72.0-1_amd64.deb ...\r\nUnpacking glib-networking-services (2.72.0-1) ...\r\nSelecting previously unselected package glib-networking:amd64.\r\nPreparing to unpack .../114-glib-networking_2.72.0-1_amd64.deb ...\r\nUnpacking glib-networking:amd64 (2.72.0-1) ...\r\nSelecting previously unselected package libsoup2.4-common.\r\nPreparing to unpack .../115-libsoup2.4-common_2.74.2-3_all.deb ...\r\nUnpacking libsoup2.4-common (2.74.2-3) ...\r\nSelecting previously unselected package libsoup2.4-1:amd64.\r\nPreparing to unpack .../116-libsoup2.4-1_2.74.2-3_amd64.deb ...\r\nUnpacking libsoup2.4-1:amd64 (2.74.2-3) ...\r\nSelecting previously unselected package geoclue-2.0.\r\nPreparing to unpack .../117-geoclue-2.0_2.5.7-3ubuntu3_amd64.deb ...\r\nUnpacking geoclue-2.0 (2.5.7-3ubuntu3) ...\r\nSelecting previously unselected package libgraphene-1.0-0:amd64.\r\nPreparing to unpack .../118-libgraphene-1.0-0_1.10.8-1_amd64.deb ...\r\nUnpacking libgraphene-1.0-0:amd64 (1.10.8-1) ...\r\nSelecting previously unselected package libwayland-cursor0:amd64.\r\nPreparing to unpack .../119-libwayland-cursor0_1.20.0-1ubuntu0.1_amd64.deb ...\r\nUnpacking libwayland-cursor0:amd64 (1.20.0-1ubuntu0.1) ...\r\nSelecting previously unselected package libwayland-egl1:amd64.\r\nPreparing to unpack .../120-libwayland-egl1_1.20.0-1ubuntu0.1_amd64.deb ...\r\nUnpacking libwayland-egl1:amd64 (1.20.0-1ubuntu0.1) ...\r\nSelecting previously unselected package libgstreamer-gl1.0-0:amd64.\r\nPreparing to unpack .../121-libgstreamer-gl1.0-0_1.20.1-1ubuntu0.2_amd64.deb ...\r\nUnpacking libgstreamer-gl1.0-0:amd64 (1.20.1-1ubuntu0.2) ...\r\nSelecting previously unselected package gstreamer1.0-gl:amd64.\r\nPreparing to unpack .../122-gstreamer1.0-gl_1.20.1-1ubuntu0.2_amd64.deb ...\r\nUnpacking gstreamer1.0-gl:amd64 (1.20.1-1ubuntu0.2) ...\r\nSelecting previously unselected package libcdparanoia0:amd64.\r\nPreparing to unpack .../123-libcdparanoia0_3.10.2+debian-14build2_amd64.deb ...\r\nUnpacking libcdparanoia0:amd64 (3.10.2+debian-14build2) ...\r\nSelecting previously unselected package libogg0:amd64.\r\nPreparing to unpack .../124-libogg0_1.3.5-0ubuntu3_amd64.deb ...\r\nUnpacking libogg0:amd64 (1.3.5-0ubuntu3) ...\r\nSelecting previously unselected package libopus0:amd64.\r\nPreparing to unpack .../125-libopus0_1.3.1-0.1build2_amd64.deb ...\r\nUnpacking libopus0:amd64 (1.3.1-0.1build2) ...\r\nSelecting previously unselected package libtheora0:amd64.\r\nPreparing to unpack .../126-libtheora0_1.1.1+dfsg.1-15ubuntu4_amd64.deb ...\r\nUnpacking libtheora0:amd64 (1.1.1+dfsg.1-15ubuntu4) ...\r\nSelecting previously unselected package libvisual-0.4-0:amd64.\r\nPreparing to unpack .../127-libvisual-0.4-0_0.4.0-17build2_amd64.deb ...\r\nUnpacking libvisual-0.4-0:amd64 (0.4.0-17build2) ...\r\nSelecting previously unselected package libvorbis0a:amd64.\r\nPreparing to unpack .../128-libvorbis0a_1.3.7-1build2_amd64.deb ...\r\nUnpacking libvorbis0a:amd64 (1.3.7-1build2) ...\r\nSelecting previously unselected package libvorbisenc2:amd64.\r\nPreparing to unpack .../129-libvorbisenc2_1.3.7-1build2_amd64.deb ...\r\nUnpacking libvorbisenc2:amd64 (1.3.7-1build2) ...\r\nSelecting previously unselected package gstreamer1.0-plugins-base:amd64.\r\nPreparing to unpack .../130-gstreamer1.0-plugins-base_1.20.1-1ubuntu0.2_amd64.deb ...\r\nUnpacking gstreamer1.0-plugins-base:amd64 (1.20.1-1ubuntu0.2) ...\r\nSelecting previously unselected package iio-sensor-proxy.\r\nPreparing to unpack .../131-iio-sensor-proxy_3.3-0ubuntu6_amd64.deb ...\r\nUnpacking iio-sensor-proxy (3.3-0ubuntu6) ...\r\nSelecting previously unselected package libarchive-dev:amd64.\r\nPreparing to unpack .../132-libarchive-dev_3.6.0-1ubuntu1.1_amd64.deb ...\r\nUnpacking libarchive-dev:amd64 (3.6.0-1ubuntu1.1) ...\r\nSelecting previously unselected package libasyncns0:amd64.\r\nPreparing to unpack .../133-libasyncns0_0.8-6build2_amd64.deb ...\r\nUnpacking libasyncns0:amd64 (0.8-6build2) ...\r\nSelecting previously unselected package libatk1.0-data.\r\nPreparing to unpack .../134-libatk1.0-data_2.36.0-3build1_all.deb ...\r\nUnpacking libatk1.0-data (2.36.0-3build1) ...\r\nSelecting previously unselected package libatk1.0-0:amd64.\r\nPreparing to unpack .../135-libatk1.0-0_2.36.0-3build1_amd64.deb ...\r\nUnpacking libatk1.0-0:amd64 (2.36.0-3build1) ...\r\nSelecting previously unselected package libatk-bridge2.0-0:amd64.\r\nPreparing to unpack .../136-libatk-bridge2.0-0_2.38.0-3_amd64.deb ...\r\nUnpacking libatk-bridge2.0-0:amd64 (2.38.0-3) ...\r\nSelecting previously unselected package libbcg729-0:amd64.\r\nPreparing to unpack .../137-libbcg729-0_1.1.1-2_amd64.deb ...\r\nUnpacking libbcg729-0:amd64 (1.1.1-2) ...\r\nSelecting previously unselected package libcairo-gobject2:amd64.\r\nPreparing to unpack .../138-libcairo-gobject2_1.16.0-5ubuntu2_amd64.deb ...\r\nUnpacking libcairo-gobject2:amd64 (1.16.0-5ubuntu2) ...\r\nSelecting previously unselected package liblcms2-2:amd64.\r\nPreparing to unpack .../139-liblcms2-2_2.12~rc1-2build2_amd64.deb ...\r\nUnpacking liblcms2-2:amd64 (2.12~rc1-2build2) ...\r\nSelecting previously unselected package libcolord2:amd64.\r\nPreparing to unpack .../140-libcolord2_1.4.6-1_amd64.deb ...\r\nUnpacking libcolord2:amd64 (1.4.6-1) ...\r\nSelecting previously unselected package libconfig9:amd64.\r\nPreparing to unpack .../141-libconfig9_1.5-0.4build1_amd64.deb ...\r\nUnpacking libconfig9:amd64 (1.5-0.4build1) ...\r\nSelecting previously unselected package pkg-config.\r\nPreparing to unpack .../142-pkg-config_0.29.2-1ubuntu3_amd64.deb ...\r\nUnpacking pkg-config (0.29.2-1ubuntu3) ...\r\nSelecting previously unselected package libconfig-dev:amd64.\r\nPreparing to unpack .../143-libconfig-dev_1.5-0.4build1_amd64.deb ...\r\nUnpacking libconfig-dev:amd64 (1.5-0.4build1) ...\r\nSelecting previously unselected package libconfig-doc.\r\nPreparing to unpack .../144-libconfig-doc_1.5-0.4build1_all.deb ...\r\nUnpacking libconfig-doc (1.5-0.4build1) ...\r\nSelecting previously unselected package libepoxy0:amd64.\r\nPreparing to unpack .../145-libepoxy0_1.5.10-1_amd64.deb ...\r\nUnpacking libepoxy0:amd64 (1.5.10-1) ...\r\nSelecting previously unselected package libflac8:amd64.\r\nPreparing to unpack .../146-libflac8_1.3.3-2ubuntu0.2_amd64.deb ...\r\nUnpacking libflac8:amd64 (1.3.3-2ubuntu0.2) ...\r\nSelecting previously unselected package libfontenc1:amd64.\r\nPreparing to unpack .../147-libfontenc1_1%3a1.1.4-1build3_amd64.deb ...\r\nUnpacking libfontenc1:amd64 (1:1.1.4-1build3) ...\r\nSelecting previously unselected package libgdk-pixbuf2.0-bin.\r\nPreparing to unpack .../148-libgdk-pixbuf2.0-bin_2.42.8+dfsg-1ubuntu0.3_amd64.deb ...\r\nUnpacking libgdk-pixbuf2.0-bin (2.42.8+dfsg-1ubuntu0.3) ...\r\nSelecting previously unselected package libgl1-amber-dri:amd64.\r\nPreparing to unpack .../149-libgl1-amber-dri_21.3.9-0ubuntu1~22.04.1_amd64.deb ...\r\nUnpacking libgl1-amber-dri:amd64 (21.3.9-0ubuntu1~22.04.1) ...\r\nSelecting previously unselected package libxcomposite1:amd64.\r\nPreparing to unpack .../150-libxcomposite1_1%3a0.4.5-1build2_amd64.deb ...\r\nUnpacking libxcomposite1:amd64 (1:0.4.5-1build2) ...\r\nSelecting previously unselected package libxcursor1:amd64.\r\nPreparing to unpack .../151-libxcursor1_1%3a1.2.0-2build4_amd64.deb ...\r\nUnpacking libxcursor1:amd64 (1:1.2.0-2build4) ...\r\nSelecting previously unselected package libxdamage1:amd64.\r\nPreparing to unpack .../152-libxdamage1_1%3a1.1.5-2build2_amd64.deb ...\r\nUnpacking libxdamage1:amd64 (1:1.1.5-2build2) ...\r\nSelecting previously unselected package libxinerama1:amd64.\r\nPreparing to unpack .../153-libxinerama1_2%3a1.1.4-3_amd64.deb ...\r\nUnpacking libxinerama1:amd64 (2:1.1.4-3) ...\r\nSelecting previously unselected package libxrandr2:amd64.\r\nPreparing to unpack .../154-libxrandr2_2%3a1.5.2-1build1_amd64.deb ...\r\nUnpacking libxrandr2:amd64 (2:1.5.2-1build1) ...\r\nSelecting previously unselected package libgtk-3-common.\r\nPreparing to unpack .../155-libgtk-3-common_3.24.33-1ubuntu2.2_all.deb ...\r\nUnpacking libgtk-3-common (3.24.33-1ubuntu2.2) ...\r\nSelecting previously unselected package libgtk-3-0:amd64.\r\nPreparing to unpack .../156-libgtk-3-0_3.24.33-1ubuntu2.2_amd64.deb ...\r\nUnpacking libgtk-3-0:amd64 (3.24.33-1ubuntu2.2) ...\r\nSelecting previously unselected package libgtk-3-bin.\r\nPreparing to unpack .../157-libgtk-3-bin_3.24.33-1ubuntu2.2_amd64.deb ...\r\nUnpacking libgtk-3-bin (3.24.33-1ubuntu2.2) ...\r\nSelecting previously unselected package libltdl-dev:amd64.\r\nPreparing to unpack .../158-libltdl-dev_2.4.6-15build2_amd64.deb ...\r\nUnpacking libltdl-dev:amd64 (2.4.6-15build2) ...\r\nSelecting previously unselected package liblua5.2-0:amd64.\r\nPreparing to unpack .../159-liblua5.2-0_5.2.4-2_amd64.deb ...\r\nUnpacking liblua5.2-0:amd64 (5.2.4-2) ...\r\nSelecting previously unselected package libminizip1:amd64.\r\nPreparing to unpack .../160-libminizip1_1.1-8build1_amd64.deb ...\r\nUnpacking libminizip1:amd64 (1.1-8build1) ...\r\nSelecting previously unselected package libnl-route-3-200:amd64.\r\nPreparing to unpack .../161-libnl-route-3-200_3.5.0-0.1_amd64.deb ...\r\nUnpacking libnl-route-3-200:amd64 (3.5.0-0.1) ...\r\nSelecting previously unselected package libnss-mdns:amd64.\r\nPreparing to unpack .../162-libnss-mdns_0.15.1-1ubuntu1_amd64.deb ...\r\nUnpacking libnss-mdns:amd64 (0.15.1-1ubuntu1) ...\r\nSelecting previously unselected package libpcsclite1:amd64.\r\nPreparing to unpack .../163-libpcsclite1_1.9.5-3ubuntu1_amd64.deb ...\r\nUnpacking libpcsclite1:amd64 (1.9.5-3ubuntu1) ...\r\nSelecting previously unselected package libsndfile1:amd64.\r\nPreparing to unpack .../164-libsndfile1_1.0.31-2ubuntu0.1_amd64.deb ...\r\nUnpacking libsndfile1:amd64 (1.0.31-2ubuntu0.1) ...\r\nSelecting previously unselected package libpulse0:amd64.\r\nPreparing to unpack .../165-libpulse0_1%3a15.99.1+dfsg1-1ubuntu2.2_amd64.deb ...\r\nUnpacking libpulse0:amd64 (1:15.99.1+dfsg1-1ubuntu2.2) ...\r\nSelecting previously unselected package libqt5multimedia5:amd64.\r\nPreparing to unpack .../166-libqt5multimedia5_5.15.3-1_amd64.deb ...\r\nUnpacking libqt5multimedia5:amd64 (5.15.3-1) ...\r\nSelecting previously unselected package libqt5multimediawidgets5:amd64.\r\nPreparing to unpack .../167-libqt5multimediawidgets5_5.15.3-1_amd64.deb ...\r\nUnpacking libqt5multimediawidgets5:amd64 (5.15.3-1) ...\r\nSelecting previously unselected package libqt5multimediagsttools5:amd64.\r\nPreparing to unpack .../168-libqt5multimediagsttools5_5.15.3-1_amd64.deb ...\r\nUnpacking libqt5multimediagsttools5:amd64 (5.15.3-1) ...\r\nSelecting previously unselected package libqt5multimedia5-plugins:amd64.\r\nPreparing to unpack .../169-libqt5multimedia5-plugins_5.15.3-1_amd64.deb ...\r\nUnpacking libqt5multimedia5-plugins:amd64 (5.15.3-1) ...\r\nSelecting previously unselected package librsvg2-2:amd64.\r\nPreparing to unpack .../170-librsvg2-2_2.52.5+dfsg-3ubuntu0.2_amd64.deb ...\r\nUnpacking librsvg2-2:amd64 (2.52.5+dfsg-3ubuntu0.2) ...\r\nSelecting previously unselected package librsvg2-common:amd64.\r\nPreparing to unpack .../171-librsvg2-common_2.52.5+dfsg-3ubuntu0.2_amd64.deb ...\r\nUnpacking librsvg2-common:amd64 (2.52.5+dfsg-3ubuntu0.2) ...\r\nSelecting previously unselected package libsmi2ldbl:amd64.\r\nPreparing to unpack .../172-libsmi2ldbl_0.4.8+dfsg2-16_amd64.deb ...\r\nUnpacking libsmi2ldbl:amd64 (0.4.8+dfsg2-16) ...\r\nSelecting previously unselected package libspandsp2:amd64.\r\nPreparing to unpack .../173-libspandsp2_0.0.6+dfsg-2_amd64.deb ...\r\nUnpacking libspandsp2:amd64 (0.0.6+dfsg-2) ...\r\nSelecting previously unselected package libspeexdsp1:amd64.\r\nPreparing to unpack .../174-libspeexdsp1_1.2~rc1.2-1.1ubuntu3_amd64.deb ...\r\nUnpacking libspeexdsp1:amd64 (1.2~rc1.2-1.1ubuntu3) ...\r\nSelecting previously unselected package libssh-gcrypt-4:amd64.\r\nPreparing to unpack .../175-libssh-gcrypt-4_0.9.6-2ubuntu0.22.04.3_amd64.deb ...\r\nUnpacking libssh-gcrypt-4:amd64 (0.9.6-2ubuntu0.22.04.3) ...\r\nSelecting previously unselected package libtool.\r\nPreparing to unpack .../176-libtool_2.4.6-15build2_all.deb ...\r\nUnpacking libtool (2.4.6-15build2) ...\r\nSelecting previously unselected package libwacom-bin.\r\nPreparing to unpack .../177-libwacom-bin_2.2.0-1_amd64.deb ...\r\nUnpacking libwacom-bin (2.2.0-1) ...\r\nSelecting previously unselected package libwireshark-data.\r\nPreparing to unpack .../178-libwireshark-data_3.6.2-2_all.deb ...\r\nUnpacking libwireshark-data (3.6.2-2) ...\r\nSelecting previously unselected package libc-ares2:amd64.\r\nPreparing to unpack .../179-libc-ares2_1.18.1-1ubuntu0.22.04.3_amd64.deb ...\r\nUnpacking libc-ares2:amd64 (1.18.1-1ubuntu0.22.04.3) ...\r\nSelecting previously unselected package libsbc1:amd64.\r\nPreparing to unpack .../180-libsbc1_1.5-3build2_amd64.deb ...\r\nUnpacking libsbc1:amd64 (1.5-3build2) ...\r\nSelecting previously unselected package libsnappy1v5:amd64.\r\nPreparing to unpack .../181-libsnappy1v5_1.1.8-1build3_amd64.deb ...\r\nUnpacking libsnappy1v5:amd64 (1.1.8-1build3) ...\r\nSelecting previously unselected package libwsutil13:amd64.\r\nPreparing to unpack .../182-libwsutil13_3.6.2-2_amd64.deb ...\r\nUnpacking libwsutil13:amd64 (3.6.2-2) ...\r\nSelecting previously unselected package libwiretap12:amd64.\r\nPreparing to unpack .../183-libwiretap12_3.6.2-2_amd64.deb ...\r\nUnpacking libwiretap12:amd64 (3.6.2-2) ...\r\nSelecting previously unselected package libwireshark15:amd64.\r\nPreparing to unpack .../184-libwireshark15_3.6.2-2_amd64.deb ...\r\nUnpacking libwireshark15:amd64 (3.6.2-2) ...\r\nSelecting previously unselected package libxfont2:amd64.\r\nPreparing to unpack .../185-libxfont2_1%3a2.0.5-1build1_amd64.deb ...\r\nUnpacking libxfont2:amd64 (1:2.0.5-1build1) ...\r\nSelecting previously unselected package libxkbfile1:amd64.\r\nPreparing to unpack .../186-libxkbfile1_1%3a1.1.0-1build3_amd64.deb ...\r\nUnpacking libxkbfile1:amd64 (1:1.1.0-1build3) ...\r\nSelecting previously unselected package modemmanager.\r\nPreparing to unpack .../187-modemmanager_1.20.0-1~ubuntu22.04.3_amd64.deb ...\r\nUnpacking modemmanager (1.20.0-1~ubuntu22.04.3) ...\r\nSelecting previously unselected package qt5-gtk-platformtheme:amd64.\r\nPreparing to unpack .../188-qt5-gtk-platformtheme_5.15.3+dfsg-2ubuntu0.2_amd64.deb ...\r\nUnpacking qt5-gtk-platformtheme:amd64 (5.15.3+dfsg-2ubuntu0.2) ...\r\nSelecting previously unselected package qttranslations5-l10n.\r\nPreparing to unpack .../189-qttranslations5-l10n_5.15.3-1_all.deb ...\r\nUnpacking qttranslations5-l10n (5.15.3-1) ...\r\nSelecting previously unselected package wireshark-common.\r\nPreparing to unpack .../190-wireshark-common_3.6.2-2_amd64.deb ...\r\nUnpacking wireshark-common (3.6.2-2) ...\r\nSelecting previously unselected package wireshark-qt.\r\nPreparing to unpack .../191-wireshark-qt_3.6.2-2_amd64.deb ...\r\nUnpacking wireshark-qt (3.6.2-2) ...\r\nSelecting previously unselected package wireshark.\r\nPreparing to unpack .../192-wireshark_3.6.2-2_amd64.deb ...\r\nUnpacking wireshark (3.6.2-2) ...\r\nSelecting previously unselected package wpasupplicant.\r\nPreparing to unpack .../193-wpasupplicant_2%3a2.10-6ubuntu2.1_amd64.deb ...\r\nUnpacking wpasupplicant (2:2.10-6ubuntu2.1) ...\r\nSelecting previously unselected package x11-xkb-utils.\r\nPreparing to unpack .../194-x11-xkb-utils_7.7+5build4_amd64.deb ...\r\nUnpacking x11-xkb-utils (7.7+5build4) ...\r\nSelecting previously unselected package xfonts-encodings.\r\nPreparing to unpack .../195-xfonts-encodings_1%3a1.0.5-0ubuntu2_all.deb ...\r\nUnpacking xfonts-encodings (1:1.0.5-0ubuntu2) ...\r\nSelecting previously unselected package xfonts-utils.\r\nPreparing to unpack .../196-xfonts-utils_1%3a7.7+6build2_amd64.deb ...\r\nUnpacking xfonts-utils (1:7.7+6build2) ...\r\nSelecting previously unselected package xfonts-100dpi.\r\nPreparing to unpack .../197-xfonts-100dpi_1%3a1.0.4+nmu1.1_all.deb ...\r\nUnpacking xfonts-100dpi (1:1.0.4+nmu1.1) ...\r\nSelecting previously unselected package xfonts-base.\r\nPreparing to unpack .../198-xfonts-base_1%3a1.0.5_all.deb ...\r\nUnpacking xfonts-base (1:1.0.5) ...\r\nSelecting previously unselected package xserver-common.\r\nPreparing to unpack .../199-xserver-common_2%3a21.1.4-2ubuntu1.7~22.04.11_all.deb ...\r\nUnpacking xserver-common (2:21.1.4-2ubuntu1.7~22.04.11) ...\r\nSelecting previously unselected package xvfb.\r\nPreparing to unpack .../200-xvfb_2%3a21.1.4-2ubuntu1.7~22.04.11_amd64.deb ...\r\nUnpacking xvfb (2:21.1.4-2ubuntu1.7~22.04.11) ...\r\nSelecting previously unselected package uthash-dev:amd64.\r\nPreparing to unpack .../201-uthash-dev_2.3.0-1_amd64.deb ...\r\nUnpacking uthash-dev:amd64 (2.3.0-1) ...\r\nSelecting previously unselected package wkhtmltopdf.\r\nPreparing to unpack .../202-wkhtmltopdf_0.12.6-2_amd64.deb ...\r\nUnpacking wkhtmltopdf (0.12.6-2) ...\r\nSetting up libconfig9:amd64 (1.5-0.4build1) ...\r\nSetting up libssh-gcrypt-4:amd64 (0.9.6-2ubuntu0.22.04.3) ...\r\nSetting up libxcb-dri3-0:amd64 (1.14-3ubuntu3) ...\r\nSetting up liblcms2-2:amd64 (2.12~rc1-2build2) ...\r\nSetting up libcdparanoia0:amd64 (3.10.2+debian-14build2) ...\r\nSetting up libwayland-server0:amd64 (1.20.0-1ubuntu0.1) ...\r\nSetting up libx11-xcb1:amd64 (2:1.7.5-1ubuntu0.3) ...\r\nSetting up libpciaccess0:amd64 (0.16-3) ...\r\nSetting up session-migration (0.3.6) ...\r\nCreated symlink /etc/systemd/user/graphical-session-pre.target.wants/session-migration.service \u2192 /usr/lib/systemd/user/session-migration.service.\r\nSetting up libdouble-conversion3:amd64 (3.1.7-4) ...\r\nSetting up libsbc1:amd64 (1.5-3build2) ...\r\nSetting up libproxy1v5:amd64 (0.4.17-2) ...\r\nSetting up libdrm-nouveau2:amd64 (2.4.113-2~ubuntu0.22.04.1) ...\r\nSetting up libbcg729-0:amd64 (1.1.1-2) ...\r\nSetting up uthash-dev:amd64 (2.3.0-1) ...\r\nSetting up libxdamage1:amd64 (1:1.1.5-2build2) ...\r\nSetting up libxcb-xfixes0:amd64 (1.14-3ubuntu3) ...\r\nSetting up libogg0:amd64 (1.3.5-0ubuntu3) ...\r\nSetting up libuuid-perl (0.28-1build4) ...\r\nSetting up libconfig-doc (1.5-0.4build1) ...\r\nSetting up hicolor-icon-theme (0.17-2) ...\r\nSetting up libxi6:amd64 (2:1.8-1build1) ...\r\nSetting up libxcb-xinput0:amd64 (1.14-3ubuntu3) ...\r\nSetting up libwoff1:amd64 (1.0.2-1build4) ...\r\nSetting up libhyphen0:amd64 (2.8.8-7build2) ...\r\nSetting up libminizip1:amd64 (1.1-8build1) ...\r\nSetting up libvisual-0.4-0:amd64 (0.4.0-17build2) ...\r\nSetting up libdrm-radeon1:amd64 (2.4.113-2~ubuntu0.22.04.1) ...\r\nSetting up libglvnd0:amd64 (1.4.0-1) ...\r\nSetting up libxtst6:amd64 (2:1.2.3-1build4) ...\r\nSetting up libxcb-glx0:amd64 (1.14-3ubuntu3) ...\r\nSetting up libdrm-intel1:amd64 (2.4.113-2~ubuntu0.22.04.1) ...\r\nSetting up libgdk-pixbuf2.0-common (2.42.8+dfsg-1ubuntu0.3) ...\r\nSetting up libxcb-keysyms1:amd64 (0.4.0-1build3) ...\r\nSetting up libxcb-shape0:amd64 (1.14-3ubuntu3) ...\r\nSetting up libsensors-config (1:3.6.0-7ubuntu1) ...\r\nSetting up m4 (1.4.18-5ubuntu2) ...\r\nSetting up libxcb-render-util0:amd64 (0.3.9-1build3) ...\r\nSetting up libxcb-icccm4:amd64 (0.4.1-1.1build2) ...\r\nSetting up libc-ares2:amd64 (1.18.1-1ubuntu0.22.04.3) ...\r\nSetting up libatspi2.0-0:amd64 (2.44.0-3) ...\r\nSetting up libyaml-tiny-perl (1.73-1) ...\r\nSetting up libpcre2-16-0:amd64 (10.39-3ubuntu0.1) ...\r\nSetting up libcolord2:amd64 (1.4.6-1) ...\r\nSetting up libspandsp2:amd64 (0.0.6+dfsg-2) ...\r\nSetting up libxcb-util1:amd64 (0.4.0-1build2) ...\r\nSetting up libxxf86vm1:amd64 (1:1.1.4-1build3) ...\r\nSetting up libflac8:amd64 (1.3.3-2ubuntu0.2) ...\r\nSetting up libsnappy1v5:amd64 (1.1.8-1build3) ...\r\nSetting up libxcb-xkb1:amd64 (1.14-3ubuntu3) ...\r\nSetting up libxcb-image0:amd64 (0.4.0-2) ...\r\nSetting up libnl-route-3-200:amd64 (3.5.0-0.1) ...\r\nSetting up libxcb-present0:amd64 (1.14-3ubuntu3) ...\r\nSetting up libdconf1:amd64 (0.40.0-3) ...\r\nSetting up libasound2-data (1.2.6.1-1ubuntu1) ...\r\nSetting up libsmi2ldbl:amd64 (0.4.8+dfsg2-16) ...\r\nSetting up libfontenc1:amd64 (1:1.1.4-1build3) ...\r\nSetting up autotools-dev (20220109.1) ...\r\nSetting up libwsutil13:amd64 (3.6.2-2) ...\r\nSetting up libxcb-xinerama0:amd64 (1.14-3ubuntu3) ...\r\nSetting up qttranslations5-l10n (5.15.3-1) ...\r\nSetting up libmbedcrypto7:amd64 (2.28.0-1build1) ...\r\nSetting up libepoxy0:amd64 (1.5.10-1) ...\r\nSetting up libxfixes3:amd64 (1:6.0.0-1) ...\r\nSetting up libxcb-sync1:amd64 (1.14-3ubuntu3) ...\r\nSetting up libavahi-common-data:amd64 (0.8-5ubuntu5.2) ...\r\nSetting up xfonts-encodings (1:1.0.5-0ubuntu2) ...\r\nSetting up libopus0:amd64 (1.3.1-0.1build2) ...\r\nSetting up libxinerama1:amd64 (2:1.1.4-3) ...\r\nSetting up libwiretap12:amd64 (3.6.2-2) ...\r\nSetting up libvorbis0a:amd64 (1.3.7-1build2) ...\r\nSetting up libxrandr2:amd64 (2:1.5.2-1build1) ...\r\nSetting up liborc-0.4-0:amd64 (1:0.4.32-2ubuntu0.1) ...\r\nSetting up pkg-config (0.29.2-1ubuntu3) ...\r\nSetting up libpcsclite1:amd64 (1.9.5-3ubuntu1) ...\r\nSetting up libsensors5:amd64 (1:3.6.0-7ubuntu1) ...\r\nSetting up libqt5core5a:amd64 (5.15.3+dfsg-2ubuntu0.2) ...\r\nSetting up libglapi-mesa:amd64 (23.2.1-1ubuntu3.1~22.04.2) ...\r\nSetting up libmtdev1:amd64 (1.1.6-1build4) ...\r\nSetting up autoconf (2.71-2) ...\r\nSetting up libsoup2.4-common (2.74.2-3) ...\r\nSetting up libxcb-dri2-0:amd64 (1.14-3ubuntu3) ...\r\nSetting up libatk1.0-data (2.36.0-3build1) ...\r\nSetting up alsa-topology-conf (1.2.5.1-2) ...\r\nSetting up libwireshark-data (3.6.2-2) ...\r\nSetting up liblua5.2-0:amd64 (5.2.4-2) ...\r\nSetting up libasyncns0:amd64 (0.8-6build2) ...\r\nSetting up libxshmfence1:amd64 (1.3-1build4) ...\r\nSetting up libqt5dbus5:amd64 (5.15.3+dfsg-2ubuntu0.2) ...\r\nSetting up libarchive-dev:amd64 (3.6.0-1ubuntu1.1) ...\r\nSetting up libxcb-randr0:amd64 (1.14-3ubuntu3) ...\r\nSetting up libllvm15:amd64 (1:15.0.7-0ubuntu0.22.04.3) ...\r\nSetting up libtheora0:amd64 (1.1.1+dfsg.1-15ubuntu4) ...\r\nSetting up libspeexdsp1:amd64 (1.2~rc1.2-1.1ubuntu3) ...\r\nSetting up libasound2:amd64 (1.2.6.1-1ubuntu1) ...\r\nSetting up libconfig-dev:amd64 (1.5-0.4build1) ...\r\nSetting up libmd4c0:amd64 (0.4.8-1) ...\r\nSetting up libgdk-pixbuf-2.0-0:amd64 (2.42.8+dfsg-1ubuntu0.3) ...\r\nSetting up libjson-glib-1.0-common (1.6.6-1build1) ...\r\nSetting up libcairo-gobject2:amd64 (1.16.0-5ubuntu2) ...\r\nSetting up libatk1.0-0:amd64 (2.36.0-3build1) ...\r\nSetting up libwayland-egl1:amd64 (1.20.0-1ubuntu0.1) ...\r\nSetting up libxkbfile1:amd64 (1:1.1.0-1build3) ...\r\nSetting up glib-networking-common (2.72.0-1) ...\r\nSetting up libqt5sensors5:amd64 (5.15.3-1) ...\r\nSetting up libdaemon0:amd64 (0.14-7.1ubuntu3) ...\r\nSetting up libnss-mdns:amd64 (0.15.1-1ubuntu1) ...\r\nFirst installation detected...\r\nChecking NSS setup...\r\nSetting up libxcomposite1:amd64 (1:0.4.5-1build2) ...\r\nSetting up libxfont2:amd64 (1:2.0.5-1build1) ...\r\nSetting up libevdev2:amd64 (1.12.1+dfsg-1) ...\r\nSetting up libgudev-1.0-0:amd64 (1:237-2build1) ...\r\nSetting up libgraphene-1.0-0:amd64 (1.10.8-1) ...\r\nSetting up libvorbisenc2:amd64 (1.3.7-1build2) ...\r\nSetting up libdrm-amdgpu1:amd64 (2.4.113-2~ubuntu0.22.04.1) ...\r\nSetting up libwacom-common (2.2.0-1) ...\r\nSetting up libxkbcommon0:amd64 (1.4.0-1) ...\r\nSetting up libwayland-client0:amd64 (1.20.0-1ubuntu0.1) ...\r\nSetting up automake (1:1.16.5-1.3) ...\r\nupdate-alternatives: using /usr/bin/automake-1.16 to provide /usr/bin/automake (automake) in auto mode\r\nSetting up libgl1-amber-dri:amd64 (21.3.9-0ubuntu1~22.04.1) ...\r\nSetting up glib-networking-services (2.72.0-1) ...\r\nSetting up gtk-update-icon-cache (3.24.33-1ubuntu2.2) ...\r\nSetting up iio-sensor-proxy (3.3-0ubuntu6) ...\r\niio-sensor-proxy.service is a disabled or a static unit, not starting it.\r\nSetting up libmbedx509-1:amd64 (2.28.0-1build1) ...\r\nSetting up doc-base (0.11.1) ...\r\nRegistering 28 doc-base files...\r\nSetting up libmbedtls14:amd64 (2.28.0-1build1) ...\r\nSetting up libgbm1:amd64 (23.2.1-1ubuntu3.1~22.04.2) ...\r\nSetting up alsa-ucm-conf (1.2.6.3-1ubuntu1.11) ...\r\nSetting up libtool (2.4.6-15build2) ...\r\nSetting up libwacom9:amd64 (2.2.0-1) ...\r\nSetting up x11-xkb-utils (7.7+5build4) ...\r\nSetting up libxcursor1:amd64 (1:1.2.0-2build4) ...\r\nSetting up libqt5positioning5:amd64 (5.15.3+dfsg-3) ...\r\nSetting up libgl1-mesa-dri:amd64 (23.2.1-1ubuntu3.1~22.04.2) ...\r\nSetting up libavahi-common3:amd64 (0.8-5ubuntu5.2) ...\r\nSetting up libgstreamer-plugins-base1.0-0:amd64 (1.20.1-1ubuntu0.2) ...\r\nSetting up dconf-service (0.40.0-3) ...\r\nSetting up xfonts-utils (1:7.7+6build2) ...\r\nSetting up libqt5network5:amd64 (5.15.3+dfsg-2ubuntu0.2) ...\r\nSetting up libjson-glib-1.0-0:amd64 (1.6.6-1build1) ...\r\nSetting up libinput-bin (1.20.0-1ubuntu0.3) ...\r\nSetting up librsvg2-2:amd64 (2.52.5+dfsg-3ubuntu0.2) ...\r\nSetting up wpasupplicant (2:2.10-6ubuntu2.1) ...\r\nCreated symlink /etc/systemd/system/dbus-fi.w1.wpa_supplicant1.service \u2192 /lib/systemd/system/wpa_supplicant.service.\r\nCreated symlink /etc/systemd/system/multi-user.target.wants/wpa_supplicant.service \u2192 /lib/systemd/system/wpa_supplicant.service.\r\nSetting up libatk-bridge2.0-0:amd64 (2.38.0-3) ...\r\nSetting up libltdl-dev:amd64 (2.4.6-15build2) ...\r\nSetting up xfonts-base (1:1.0.5) ...\r\nSetting up libegl-mesa0:amd64 (23.2.1-1ubuntu3.1~22.04.2) ...\r\nSetting up privoxy (3.0.33-1build1) ...\r\n\r\nCreating config file /etc/privoxy/config with new version\r\nCreated symlink /etc/systemd/system/multi-user.target.wants/privoxy.service \u2192 /lib/systemd/system/privoxy.service.\r\nSetting up gstreamer1.0-plugins-base:amd64 (1.20.1-1ubuntu0.2) ...\r\nSetting up libqt5qml5:amd64 (5.15.3+dfsg-1) ...\r\nSetting up libnotify4:amd64 (0.7.9-3ubuntu5.22.04.1) ...\r\nSetting up libxkbcommon-x11-0:amd64 (1.4.0-1) ...\r\nSetting up libqt5webchannel5:amd64 (5.15.3-1) ...\r\nSetting up librsvg2-common:amd64 (2.52.5+dfsg-3ubuntu0.2) ...\r\nSetting up libwacom-bin (2.2.0-1) ...\r\nSetting up libwireshark15:amd64 (3.6.2-2) ...\r\nSetting up libgdk-pixbuf2.0-bin (2.42.8+dfsg-1ubuntu0.3) ...\r\nSetting up libwayland-cursor0:amd64 (1.20.0-1ubuntu0.1) ...\r\nSetting up libegl1:amd64 (1.4.0-1) ...\r\nSetting up libavahi-glib1:amd64 (0.8-5ubuntu5.2) ...\r\nSetting up libsndfile1:amd64 (1.0.31-2ubuntu0.1) ...\r\nSetting up modemmanager (1.20.0-1~ubuntu22.04.3) ...\r\nCreated symlink /etc/systemd/system/dbus-org.freedesktop.ModemManager1.service \u2192 /lib/systemd/system/ModemManager.service.\r\nCreated symlink /etc/systemd/system/multi-user.target.wants/ModemManager.service \u2192 /lib/systemd/system/ModemManager.service.\r\nSetting up xserver-common (2:21.1.4-2ubuntu1.7~22.04.11) ...\r\nSetting up libavahi-core7:amd64 (0.8-5ubuntu5.2) ...\r\nSetting up libavahi-client3:amd64 (0.8-5ubuntu5.2) ...\r\nSetting up libinput10:amd64 (1.20.0-1ubuntu0.3) ...\r\nSetting up wireshark-common (3.6.2-2) ...\r\nSetting up libqt5qmlmodels5:amd64 (5.15.3+dfsg-1) ...\r\nSetting up libglx-mesa0:amd64 (23.2.1-1ubuntu3.1~22.04.2) ...\r\nSetting up xfonts-100dpi (1:1.0.4+nmu1.1) ...\r\nSetting up libglx0:amd64 (1.4.0-1) ...\r\nSetting up dconf-gsettings-backend:amd64 (0.40.0-3) ...\r\nSetting up libpulse0:amd64 (1:15.99.1+dfsg1-1ubuntu2.2) ...\r\nSetting up libgl1:amd64 (1.4.0-1) ...\r\nSetting up libcups2:amd64 (2.4.1op1-1ubuntu4.10) ...\r\nSetting up avahi-daemon (0.8-5ubuntu5.2) ...\r\nCreated symlink /etc/systemd/system/dbus-org.freedesktop.Avahi.service \u2192 /lib/systemd/system/avahi-daemon.service.\r\nCreated symlink /etc/systemd/system/multi-user.target.wants/avahi-daemon.service \u2192 /lib/systemd/system/avahi-daemon.service.\r\nCreated symlink /etc/systemd/system/sockets.target.wants/avahi-daemon.socket \u2192 /lib/systemd/system/avahi-daemon.socket.\r\nSetting up libgtk-3-common (3.24.33-1ubuntu2.2) ...\r\nSetting up gsettings-desktop-schemas (42.0-1ubuntu1) ...\r\nSetting up xvfb (2:21.1.4-2ubuntu1.7~22.04.11) ...\r\nSetting up libqt5gui5:amd64 (5.15.3+dfsg-2ubuntu0.2) ...\r\nSetting up libqt5widgets5:amd64 (5.15.3+dfsg-2ubuntu0.2) ...\r\nSetting up libqt5multimedia5:amd64 (5.15.3-1) ...\r\nSetting up libqt5printsupport5:amd64 (5.15.3+dfsg-2ubuntu0.2) ...\r\nSetting up libgstreamer-gl1.0-0:amd64 (1.20.1-1ubuntu0.2) ...\r\nSetting up libqt5multimediawidgets5:amd64 (5.15.3-1) ...\r\nSetting up libqt5multimediagsttools5:amd64 (5.15.3-1) ...\r\nSetting up libqt5multimedia5-plugins:amd64 (5.15.3-1) ...\r\nSetting up libqt5quick5:amd64 (5.15.3+dfsg-1) ...\r\nSetting up gstreamer1.0-gl:amd64 (1.20.1-1ubuntu0.2) ...\r\nSetting up libqt5svg5:amd64 (5.15.3-1) ...\r\nSetting up libqt5webkit5:amd64 (5.212.0~alpha4-15ubuntu1) ...\r\nSetting up wireshark-qt (3.6.2-2) ...\r\nSetting up wkhtmltopdf (0.12.6-2) ...\r\nSetting up wireshark (3.6.2-2) ...\r\nSetting up adwaita-icon-theme (41.0-1ubuntu1) ...\r\nupdate-alternatives: using /usr/share/icons/Adwaita/cursor.theme to provide /usr/share/icons/default/index.theme (x-cursor-theme) in auto mode\r\nSetting up humanity-icon-theme (0.6.16) ...\r\nSetting up ubuntu-mono (20.10-0ubuntu2) ...\r\nProcessing triggers for man-db (2.10.2-1) ...\r\nProcessing triggers for dbus (1.12.20-2ubuntu4.1) ...\r\nProcessing triggers for shared-mime-info (2.1-2) ...\r\nProcessing triggers for udev (249.11-0ubuntu3.12) ...\r\nProcessing triggers for install-info (6.8-4build1) ...\r\nProcessing triggers for fontconfig (2.13.1-4.2ubuntu5) ...\r\nProcessing triggers for libglib2.0-0:amd64 (2.72.4-0ubuntu2.3) ...\r\nSetting up libgtk-3-0:amd64 (3.24.33-1ubuntu2.2) ...\r\nProcessing triggers for libc-bin (2.35-0ubuntu3.8) ...\r\nSetting up libgtk-3-bin (3.24.33-1ubuntu2.2) ...\r\nSetting up qt5-gtk-platformtheme:amd64 (5.15.3+dfsg-2ubuntu0.2) ...\r\nSetting up at-spi2-core (2.44.0-3) ...\r\nSetting up glib-networking:amd64 (2.72.0-1) ...\r\nSetting up libsoup2.4-1:amd64 (2.74.2-3) ...\r\nSetting up geoclue-2.0 (2.5.7-3ubuntu3) ...\r\ngeoclue.service is a disabled or a static unit, not starting it.\r\nProcessing triggers for libgdk-pixbuf-2.0-0:amd64 (2.42.8+dfsg-1ubuntu0.3) ...\r\nProcessing triggers for libc-bin (2.35-0ubuntu3.8) ...\r\nProcessing triggers for dbus (1.12.20-2ubuntu4.1) ...\r\nReading package lists...\r\nBuilding dependency tree...\r\nReading state information...\r\ncurl is already the newest version (7.81.0-1ubuntu1.17).\r\ncurl set to manually installed.\r\ngit is already the newest version (1:2.34.1-1ubuntu1.11).\r\nThe following additional packages will be installed:\r\n  libapr1 libaprutil1 libimagequant0 libnorm1 libopenjp2-7 libpgm-5.3-0\r\n  libraqm0 libserf-1-1 libsvn1 libutf8proc2 libwebpdemux2 libwebpmux3 libyajl2\r\n  libzmq5 mailcap mime-support python3-olefile uwsgi-core\r\nSuggested packages:\r\n  python-pil-doc db5.3-util libapache2-mod-svn subversion-tools nginx-full\r\n  | cherokee | libapache2-mod-proxy-uwsgi | libapache2-mod-uwsgi\r\n  | libapache2-mod-ruwsgi uwsgi-dev uwsgi-extra uwsgi-plugins-all\r\n  python3-uwsgidecorators\r\nThe following NEW packages will be installed:\r\n  libapr1 libaprutil1 libimagequant0 libnorm1 libopenjp2-7 libpgm-5.3-0\r\n  libraqm0 libserf-1-1 libsvn1 libutf8proc2 libwebpdemux2 libwebpmux3 libyajl2\r\n  libzmq5 mailcap mime-support python3-olefile python3-pil python3-pyelftools\r\n  subversion uwsgi uwsgi-core uwsgi-plugin-python3\r\n0 upgraded, 23 newly installed, 0 to remove and 3 not upgraded.\r\nNeed to get 4,836 kB of archives.\r\nAfter this operation, 18.2 MB of additional disk space will be used.\r\nGet:1 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libapr1 amd64 1.7.0-8ubuntu0.22.04.1 [108 kB]\r\nGet:2 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libaprutil1 amd64 1.6.1-5ubuntu4.22.04.2 [92.8 kB]\r\nGet:3 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libimagequant0 amd64 2.17.0-1 [34.6 kB]\r\nGet:4 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libnorm1 amd64 1.5.9+dfsg-2 [221 kB]\r\nGet:5 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libpgm-5.3-0 amd64 5.3.128~dfsg-2 [161 kB]\r\nGet:6 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libraqm0 amd64 0.7.0-4ubuntu1 [11.7 kB]\r\nGet:7 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libserf-1-1 amd64 1.3.9-10ubuntu2 [50.0 kB]\r\nGet:8 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libutf8proc2 amd64 2.7.0-3 [73.9 kB]\r\nGet:9 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/universe amd64 libsvn1 amd64 1.14.1-3ubuntu0.22.04.1 [1,387 kB]\r\nGet:10 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libwebpdemux2 amd64 1.2.2-2ubuntu0.22.04.2 [9,964 B]\r\nGet:11 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libwebpmux3 amd64 1.2.2-2ubuntu0.22.04.2 [20.5 kB]\r\nGet:12 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libzmq5 amd64 4.3.4-2 [256 kB]\r\nGet:13 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 mailcap all 3.70+nmu1ubuntu1 [23.8 kB]\r\nGet:14 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 mime-support all 3.66 [3,696 B]\r\nGet:15 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 python3-olefile all 0.46-3 [33.8 kB]\r\nGet:16 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libopenjp2-7 amd64 2.4.0-6 [158 kB]\r\nGet:17 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 python3-pil amd64 9.0.1-1ubuntu0.3 [419 kB]\r\nGet:18 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/universe amd64 subversion amd64 1.14.1-3ubuntu0.22.04.1 [960 kB]\r\nGet:19 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libyajl2 amd64 2.1.0-3ubuntu0.22.04.1 [21.0 kB]\r\nGet:20 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 uwsgi-core amd64 2.0.20-4 [590 kB]\r\nGet:21 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 uwsgi amd64 2.0.20-4 [18.2 kB]\r\nGet:22 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 python3-pyelftools all 0.27-1 [97.4 kB]\r\nGet:23 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 uwsgi-plugin-python3 amd64 2.0.20-4 [84.2 kB]\r\nFetched 4,836 kB in 1s (6,172 kB/s)\r\nSelecting previously unselected package libapr1:amd64.\r\n(Reading database ... 127605 files and directories currently installed.)\r\nPreparing to unpack .../00-libapr1_1.7.0-8ubuntu0.22.04.1_amd64.deb ...\r\nUnpacking libapr1:amd64 (1.7.0-8ubuntu0.22.04.1) ...\r\nSelecting previously unselected package libaprutil1:amd64.\r\nPreparing to unpack .../01-libaprutil1_1.6.1-5ubuntu4.22.04.2_amd64.deb ...\r\nUnpacking libaprutil1:amd64 (1.6.1-5ubuntu4.22.04.2) ...\r\nSelecting previously unselected package libimagequant0:amd64.\r\nPreparing to unpack .../02-libimagequant0_2.17.0-1_amd64.deb ...\r\nUnpacking libimagequant0:amd64 (2.17.0-1) ...\r\nSelecting previously unselected package libnorm1:amd64.\r\nPreparing to unpack .../03-libnorm1_1.5.9+dfsg-2_amd64.deb ...\r\nUnpacking libnorm1:amd64 (1.5.9+dfsg-2) ...\r\nSelecting previously unselected package libpgm-5.3-0:amd64.\r\nPreparing to unpack .../04-libpgm-5.3-0_5.3.128~dfsg-2_amd64.deb ...\r\nUnpacking libpgm-5.3-0:amd64 (5.3.128~dfsg-2) ...\r\nSelecting previously unselected package libraqm0:amd64.\r\nPreparing to unpack .../05-libraqm0_0.7.0-4ubuntu1_amd64.deb ...\r\nUnpacking libraqm0:amd64 (0.7.0-4ubuntu1) ...\r\nSelecting previously unselected package libserf-1-1:amd64.\r\nPreparing to unpack .../06-libserf-1-1_1.3.9-10ubuntu2_amd64.deb ...\r\nUnpacking libserf-1-1:amd64 (1.3.9-10ubuntu2) ...\r\nSelecting previously unselected package libutf8proc2:amd64.\r\nPreparing to unpack .../07-libutf8proc2_2.7.0-3_amd64.deb ...\r\nUnpacking libutf8proc2:amd64 (2.7.0-3) ...\r\nSelecting previously unselected package libsvn1:amd64.\r\nPreparing to unpack .../08-libsvn1_1.14.1-3ubuntu0.22.04.1_amd64.deb ...\r\nUnpacking libsvn1:amd64 (1.14.1-3ubuntu0.22.04.1) ...\r\nSelecting previously unselected package libwebpdemux2:amd64.\r\nPreparing to unpack .../09-libwebpdemux2_1.2.2-2ubuntu0.22.04.2_amd64.deb ...\r\nUnpacking libwebpdemux2:amd64 (1.2.2-2ubuntu0.22.04.2) ...\r\nSelecting previously unselected package libwebpmux3:amd64.\r\nPreparing to unpack .../10-libwebpmux3_1.2.2-2ubuntu0.22.04.2_amd64.deb ...\r\nUnpacking libwebpmux3:amd64 (1.2.2-2ubuntu0.22.04.2) ...\r\nSelecting previously unselected package libzmq5:amd64.\r\nPreparing to unpack .../11-libzmq5_4.3.4-2_amd64.deb ...\r\nUnpacking libzmq5:amd64 (4.3.4-2) ...\r\nSelecting previously unselected package mailcap.\r\nPreparing to unpack .../12-mailcap_3.70+nmu1ubuntu1_all.deb ...\r\nUnpacking mailcap (3.70+nmu1ubuntu1) ...\r\nSelecting previously unselected package mime-support.\r\nPreparing to unpack .../13-mime-support_3.66_all.deb ...\r\nUnpacking mime-support (3.66) ...\r\nSelecting previously unselected package python3-olefile.\r\nPreparing to unpack .../14-python3-olefile_0.46-3_all.deb ...\r\nUnpacking python3-olefile (0.46-3) ...\r\nSelecting previously unselected package libopenjp2-7:amd64.\r\nPreparing to unpack .../15-libopenjp2-7_2.4.0-6_amd64.deb ...\r\nUnpacking libopenjp2-7:amd64 (2.4.0-6) ...\r\nSelecting previously unselected package python3-pil:amd64.\r\nPreparing to unpack .../16-python3-pil_9.0.1-1ubuntu0.3_amd64.deb ...\r\nUnpacking python3-pil:amd64 (9.0.1-1ubuntu0.3) ...\r\nSelecting previously unselected package subversion.\r\nPreparing to unpack .../17-subversion_1.14.1-3ubuntu0.22.04.1_amd64.deb ...\r\nUnpacking subversion (1.14.1-3ubuntu0.22.04.1) ...\r\nSelecting previously unselected package libyajl2:amd64.\r\nPreparing to unpack .../18-libyajl2_2.1.0-3ubuntu0.22.04.1_amd64.deb ...\r\nUnpacking libyajl2:amd64 (2.1.0-3ubuntu0.22.04.1) ...\r\nSelecting previously unselected package uwsgi-core.\r\nPreparing to unpack .../19-uwsgi-core_2.0.20-4_amd64.deb ...\r\nUnpacking uwsgi-core (2.0.20-4) ...\r\nSelecting previously unselected package uwsgi.\r\nPreparing to unpack .../20-uwsgi_2.0.20-4_amd64.deb ...\r\nUnpacking uwsgi (2.0.20-4) ...\r\nSelecting previously unselected package python3-pyelftools.\r\nPreparing to unpack .../21-python3-pyelftools_0.27-1_all.deb ...\r\nUnpacking python3-pyelftools (0.27-1) ...\r\nSelecting previously unselected package uwsgi-plugin-python3.\r\nPreparing to unpack .../22-uwsgi-plugin-python3_2.0.20-4_amd64.deb ...\r\nUnpacking uwsgi-plugin-python3 (2.0.20-4) ...\r\nSetting up python3-pyelftools (0.27-1) ...\r\nSetting up libpgm-5.3-0:amd64 (5.3.128~dfsg-2) ...\r\nSetting up python3-olefile (0.46-3) ...\r\nSetting up libwebpdemux2:amd64 (1.2.2-2ubuntu0.22.04.2) ...\r\nSetting up libutf8proc2:amd64 (2.7.0-3) ...\r\nSetting up libnorm1:amd64 (1.5.9+dfsg-2) ...\r\nSetting up libyajl2:amd64 (2.1.0-3ubuntu0.22.04.1) ...\r\nSetting up libapr1:amd64 (1.7.0-8ubuntu0.22.04.1) ...\r\nSetting up libraqm0:amd64 (0.7.0-4ubuntu1) ...\r\nSetting up libimagequant0:amd64 (2.17.0-1) ...\r\nSetting up libopenjp2-7:amd64 (2.4.0-6) ...\r\nSetting up libwebpmux3:amd64 (1.2.2-2ubuntu0.22.04.2) ...\r\nSetting up mailcap (3.70+nmu1ubuntu1) ...\r\nSetting up libaprutil1:amd64 (1.6.1-5ubuntu4.22.04.2) ...\r\nSetting up libzmq5:amd64 (4.3.4-2) ...\r\nSetting up mime-support (3.66) ...\r\nSetting up libserf-1-1:amd64 (1.3.9-10ubuntu2) ...\r\nSetting up uwsgi-core (2.0.20-4) ...\r\nSetting up python3-pil:amd64 (9.0.1-1ubuntu0.3) ...\r\nSetting up uwsgi (2.0.20-4) ...\r\nSetting up uwsgi-plugin-python3 (2.0.20-4) ...\r\nSetting up libsvn1:amd64 (1.14.1-3ubuntu0.22.04.1) ...\r\nSetting up subversion (1.14.1-3ubuntu0.22.04.1) ...\r\nProcessing triggers for libc-bin (2.35-0ubuntu3.8) ...\r\nProcessing triggers for man-db (2.10.2-1) ...\r\nReading package lists...\r\nBuilding dependency tree...\r\nReading state information...\r\nThe following additional packages will be installed:\r\n  libpkcs11-helper1 wireguard-tools\r\nSuggested packages:\r\n  resolvconf openvpn-systemd-resolved easy-rsa openresolv | resolvconf\r\nThe following NEW packages will be installed:\r\n  libpkcs11-helper1 openvpn wireguard wireguard-tools\r\n0 upgraded, 4 newly installed, 0 to remove and 3 not upgraded.\r\nNeed to get 759 kB of archives.\r\nAfter this operation, 2,176 kB of additional disk space will be used.\r\nGet:1 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libpkcs11-helper1 amd64 1.28-1ubuntu0.22.04.1 [50.3 kB]\r\nGet:2 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 openvpn amd64 2.5.9-0ubuntu0.22.04.3 [618 kB]\r\nGet:3 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 wireguard-tools amd64 1.0.20210914-1ubuntu2 [86.9 kB]\r\nGet:4 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 wireguard all 1.0.20210914-1ubuntu2 [3,114 B]\r\nPreconfiguring packages ...\r\nFetched 759 kB in 0s (1,822 kB/s)\r\nSelecting previously unselected package libpkcs11-helper1:amd64.\r\n(Reading database ... 128237 files and directories currently installed.)\r\nPreparing to unpack .../libpkcs11-helper1_1.28-1ubuntu0.22.04.1_amd64.deb ...\r\nUnpacking libpkcs11-helper1:amd64 (1.28-1ubuntu0.22.04.1) ...\r\nSelecting previously unselected package openvpn.\r\nPreparing to unpack .../openvpn_2.5.9-0ubuntu0.22.04.3_amd64.deb ...\r\nUnpacking openvpn (2.5.9-0ubuntu0.22.04.3) ...\r\nSelecting previously unselected package wireguard-tools.\r\nPreparing to unpack .../wireguard-tools_1.0.20210914-1ubuntu2_amd64.deb ...\r\nUnpacking wireguard-tools (1.0.20210914-1ubuntu2) ...\r\nSelecting previously unselected package wireguard.\r\nPreparing to unpack .../wireguard_1.0.20210914-1ubuntu2_all.deb ...\r\nUnpacking wireguard (1.0.20210914-1ubuntu2) ...\r\nSetting up libpkcs11-helper1:amd64 (1.28-1ubuntu0.22.04.1) ...\r\nSetting up wireguard-tools (1.0.20210914-1ubuntu2) ...\r\nwg-quick.target is a disabled or a static unit not running, not starting it.\r\nSetting up wireguard (1.0.20210914-1ubuntu2) ...\r\nSetting up openvpn (2.5.9-0ubuntu0.22.04.3) ...\r\nCreated symlink /etc/systemd/system/multi-user.target.wants/openvpn.service \u2192 /lib/systemd/system/openvpn.service.\r\nProcessing triggers for man-db (2.10.2-1) ...\r\nProcessing triggers for libc-bin (2.35-0ubuntu3.8) ...\r\nReading package lists...\r\nBuilding dependency tree...\r\nReading state information...\r\nThe following additional packages will be installed:\r\n  libexif12\r\nSuggested packages:\r\n  libgnomeui-0 libgtk2.0-0\r\nRecommended packages:\r\n  libgluezilla\r\nThe following NEW packages will be installed:\r\n  libdnlib2.1-cil libexif12 libgdiplus libgif7 libmono-accessibility4.0-cil\r\n  libmono-ldap4.0-cil libmono-posix4.0-cil libmono-sqlite4.0-cil\r\n  libmono-system-componentmodel-dataannotations4.0-cil\r\n  libmono-system-data4.0-cil libmono-system-design4.0-cil\r\n  libmono-system-drawing4.0-cil libmono-system-enterpriseservices4.0-cil\r\n  libmono-system-ldap4.0-cil\r\n  libmono-system-runtime-serialization-formatters-soap4.0-cil\r\n  libmono-system-runtime4.0-cil libmono-system-transactions4.0-cil\r\n  libmono-system-web-applicationservices4.0-cil\r\n  libmono-system-web-services4.0-cil libmono-system-web4.0-cil\r\n  libmono-system-windows-forms4.0-cil libmono-webbrowser4.0-cil\r\n0 upgraded, 22 newly installed, 0 to remove and 3 not upgraded.\r\nNeed to get 3,834 kB of archives.\r\nAfter this operation, 17.3 MB of additional disk space will be used.\r\nGet:1 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libdnlib2.1-cil all 2.1-3 [433 kB]\r\nGet:2 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libexif12 amd64 0.6.24-1build1 [92.5 kB]\r\nGet:3 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libgif7 amd64 5.1.9-2ubuntu0.1 [33.9 kB]\r\nGet:4 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libgdiplus amd64 6.0.4+dfsg-2 [160 kB]\r\nGet:5 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libmono-accessibility4.0-cil all 6.8.0.105+dfsg-3.2 [15.8 kB]\r\nGet:6 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libmono-ldap4.0-cil all 6.8.0.105+dfsg-3.2 [93.0 kB]\r\nGet:7 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libmono-posix4.0-cil all 6.8.0.105+dfsg-3.2 [82.3 kB]\r\nGet:8 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libmono-system-transactions4.0-cil all 6.8.0.105+dfsg-3.2 [23.7 kB]\r\nGet:9 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libmono-system-enterpriseservices4.0-cil all 6.8.0.105+dfsg-3.2 [27.0 kB]\r\nGet:10 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libmono-system-data4.0-cil all 6.8.0.105+dfsg-3.2 [578 kB]\r\nGet:11 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libmono-sqlite4.0-cil all 6.8.0.105+dfsg-3.2 [58.2 kB]\r\nGet:12 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libmono-system-componentmodel-dataannotations4.0-cil all 6.8.0.105+dfsg-3.2 [37.4 kB]\r\nGet:13 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libmono-system-drawing4.0-cil all 6.8.0.105+dfsg-3.2 [150 kB]\r\nGet:14 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libmono-system-runtime-serialization-formatters-soap4.0-cil all 6.8.0.105+dfsg-3.2 [26.9 kB]\r\nGet:15 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libmono-system-web-applicationservices4.0-cil all 6.8.0.105+dfsg-3.2 [23.0 kB]\r\nGet:16 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libmono-system-ldap4.0-cil all 6.8.0.105+dfsg-3.2 [41.6 kB]\r\nGet:17 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libmono-system-web-services4.0-cil all 6.8.0.105+dfsg-3.2 [173 kB]\r\nGet:18 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libmono-system-web4.0-cil all 6.8.0.105+dfsg-3.2 [755 kB]\r\nGet:19 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libmono-webbrowser4.0-cil all 6.8.0.105+dfsg-3.2 [58.5 kB]\r\nGet:20 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libmono-system-windows-forms4.0-cil all 6.8.0.105+dfsg-3.2 [812 kB]\r\nGet:21 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libmono-system-design4.0-cil all 6.8.0.105+dfsg-3.2 [104 kB]\r\nGet:22 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libmono-system-runtime4.0-cil all 6.8.0.105+dfsg-3.2 [56.1 kB]\r\nFetched 3,834 kB in 1s (4,293 kB/s)\r\nSelecting previously unselected package libdnlib2.1-cil.\r\n(Reading database ... 128416 files and directories currently installed.)\r\nPreparing to unpack .../00-libdnlib2.1-cil_2.1-3_all.deb ...\r\nUnpacking libdnlib2.1-cil (2.1-3) ...\r\nSelecting previously unselected package libexif12:amd64.\r\nPreparing to unpack .../01-libexif12_0.6.24-1build1_amd64.deb ...\r\nUnpacking libexif12:amd64 (0.6.24-1build1) ...\r\nSelecting previously unselected package libgif7:amd64.\r\nPreparing to unpack .../02-libgif7_5.1.9-2ubuntu0.1_amd64.deb ...\r\nUnpacking libgif7:amd64 (5.1.9-2ubuntu0.1) ...\r\nSelecting previously unselected package libgdiplus.\r\nPreparing to unpack .../03-libgdiplus_6.0.4+dfsg-2_amd64.deb ...\r\nUnpacking libgdiplus (6.0.4+dfsg-2) ...\r\nSelecting previously unselected package libmono-accessibility4.0-cil.\r\nPreparing to unpack .../04-libmono-accessibility4.0-cil_6.8.0.105+dfsg-3.2_all.deb ...\r\nUnpacking libmono-accessibility4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSelecting previously unselected package libmono-ldap4.0-cil.\r\nPreparing to unpack .../05-libmono-ldap4.0-cil_6.8.0.105+dfsg-3.2_all.deb ...\r\nUnpacking libmono-ldap4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSelecting previously unselected package libmono-posix4.0-cil.\r\nPreparing to unpack .../06-libmono-posix4.0-cil_6.8.0.105+dfsg-3.2_all.deb ...\r\nUnpacking libmono-posix4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSelecting previously unselected package libmono-system-transactions4.0-cil.\r\nPreparing to unpack .../07-libmono-system-transactions4.0-cil_6.8.0.105+dfsg-3.2_all.deb ...\r\nUnpacking libmono-system-transactions4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSelecting previously unselected package libmono-system-enterpriseservices4.0-cil.\r\nPreparing to unpack .../08-libmono-system-enterpriseservices4.0-cil_6.8.0.105+dfsg-3.2_all.deb ...\r\nUnpacking libmono-system-enterpriseservices4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSelecting previously unselected package libmono-system-data4.0-cil.\r\nPreparing to unpack .../09-libmono-system-data4.0-cil_6.8.0.105+dfsg-3.2_all.deb ...\r\nUnpacking libmono-system-data4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSelecting previously unselected package libmono-sqlite4.0-cil.\r\nPreparing to unpack .../10-libmono-sqlite4.0-cil_6.8.0.105+dfsg-3.2_all.deb ...\r\nUnpacking libmono-sqlite4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSelecting previously unselected package libmono-system-componentmodel-dataannotations4.0-cil.\r\nPreparing to unpack .../11-libmono-system-componentmodel-dataannotations4.0-cil_6.8.0.105+dfsg-3.2_all.deb ...\r\nUnpacking libmono-system-componentmodel-dataannotations4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSelecting previously unselected package libmono-system-drawing4.0-cil.\r\nPreparing to unpack .../12-libmono-system-drawing4.0-cil_6.8.0.105+dfsg-3.2_all.deb ...\r\nUnpacking libmono-system-drawing4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSelecting previously unselected package libmono-system-runtime-serialization-formatters-soap4.0-cil.\r\nPreparing to unpack .../13-libmono-system-runtime-serialization-formatters-soap4.0-cil_6.8.0.105+dfsg-3.2_all.deb ...\r\nUnpacking libmono-system-runtime-serialization-formatters-soap4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSelecting previously unselected package libmono-system-web-applicationservices4.0-cil.\r\nPreparing to unpack .../14-libmono-system-web-applicationservices4.0-cil_6.8.0.105+dfsg-3.2_all.deb ...\r\nUnpacking libmono-system-web-applicationservices4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSelecting previously unselected package libmono-system-ldap4.0-cil.\r\nPreparing to unpack .../15-libmono-system-ldap4.0-cil_6.8.0.105+dfsg-3.2_all.deb ...\r\nUnpacking libmono-system-ldap4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSelecting previously unselected package libmono-system-web-services4.0-cil.\r\nPreparing to unpack .../16-libmono-system-web-services4.0-cil_6.8.0.105+dfsg-3.2_all.deb ...\r\nUnpacking libmono-system-web-services4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSelecting previously unselected package libmono-system-web4.0-cil.\r\nPreparing to unpack .../17-libmono-system-web4.0-cil_6.8.0.105+dfsg-3.2_all.deb ...\r\nUnpacking libmono-system-web4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSelecting previously unselected package libmono-webbrowser4.0-cil.\r\nPreparing to unpack .../18-libmono-webbrowser4.0-cil_6.8.0.105+dfsg-3.2_all.deb ...\r\nUnpacking libmono-webbrowser4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSelecting previously unselected package libmono-system-windows-forms4.0-cil.\r\nPreparing to unpack .../19-libmono-system-windows-forms4.0-cil_6.8.0.105+dfsg-3.2_all.deb ...\r\nUnpacking libmono-system-windows-forms4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSelecting previously unselected package libmono-system-design4.0-cil.\r\nPreparing to unpack .../20-libmono-system-design4.0-cil_6.8.0.105+dfsg-3.2_all.deb ...\r\nUnpacking libmono-system-design4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSelecting previously unselected package libmono-system-runtime4.0-cil.\r\nPreparing to unpack .../21-libmono-system-runtime4.0-cil_6.8.0.105+dfsg-3.2_all.deb ...\r\nUnpacking libmono-system-runtime4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSetting up libdnlib2.1-cil (2.1-3) ...\r\n* Installing 1 assembly from libdnlib2.1-cil into Mono\r\nSetting up libmono-posix4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSetting up libmono-ldap4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSetting up libmono-webbrowser4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSetting up libmono-system-runtime-serialization-formatters-soap4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSetting up libexif12:amd64 (0.6.24-1build1) ...\r\nSetting up libgif7:amd64 (5.1.9-2ubuntu0.1) ...\r\nSetting up libmono-system-transactions4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSetting up libmono-system-componentmodel-dataannotations4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSetting up libmono-system-web-applicationservices4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSetting up libmono-accessibility4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSetting up libmono-system-ldap4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSetting up libgdiplus (6.0.4+dfsg-2) ...\r\nSetting up libmono-system-enterpriseservices4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSetting up libmono-system-drawing4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSetting up libmono-system-data4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSetting up libmono-sqlite4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSetting up libmono-system-windows-forms4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSetting up libmono-system-web-services4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSetting up libmono-system-web4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSetting up libmono-system-design4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nSetting up libmono-system-runtime4.0-cil (6.8.0.105+dfsg-3.2) ...\r\nProcessing triggers for libc-bin (2.35-0ubuntu3.8) ...\r\nSelecting previously unselected package de4dot.\r\n(Reading database ... 128572 files and directories currently installed.)\r\nPreparing to unpack de4dot_3.1.41592.3405-2_all.deb ...\r\nUnpacking de4dot (3.1.41592.3405-2) ...\r\nSetting up de4dot (3.1.41592.3405-2) ...\r\nAlready up to date.\r\nSubmodule path 'rules': checked out '5b8c8a63a29c4fed88078278e7f8c8fdfbad709a'\r\nProcessing /tmp/capa\r\n  Installing build dependencies: started\r\n  Installing build dependencies: finished with status 'done'\r\n  Getting requirements to build wheel: started\r\n  Getting requirements to build wheel: finished with status 'done'\r\n  Installing backend dependencies: started\r\n  Installing backend dependencies: finished with status 'done'\r\n  Preparing metadata (pyproject.toml): started\r\n  Preparing metadata (pyproject.toml): finished with status 'done'\r\nBuilding wheels for collected packages: UNKNOWN\r\n  Building wheel for UNKNOWN (pyproject.toml): started\r\n  Building wheel for UNKNOWN (pyproject.toml): finished with status 'done'\r\n  Created wheel for UNKNOWN: filename=UNKNOWN-0.0.0-py3-none-any.whl size=5130 sha256=69731ee2b43cafcaafa0d3a4af615f02279cedbbf2f98b9986e4df709133a74f\r\n  Stored in directory: /tmp/pip-ephem-wheel-cache-t7uddgfb/wheels/6d/93/5e/299a4d5fcaf65012720b79877aec8403ec1c1bd6bfd2fd8de1\r\nSuccessfully built UNKNOWN\r\nInstalling collected packages: UNKNOWN\r\nSuccessfully installed UNKNOWN-0.0.0\r\n[+] Installing PostgreSQL\r\nHit:1 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy InRelease\r\nHit:2 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates InRelease\r\nHit:3 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-backports InRelease\r\nHit:4 http://security.ubuntu.com/ubuntu jammy-security InRelease\r\nGet:5 http://apt.postgresql.org/pub/repos/apt jammy-pgdg InRelease [129 kB]\r\nGet:6 http://apt.postgresql.org/pub/repos/apt jammy-pgdg/main amd64 Packages [343 kB]\r\nFetched 472 kB in 2s (285 kB/s)\r\nReading package lists...\r\nReading package lists...\r\nBuilding dependency tree...\r\nReading state information...\r\nThe following additional packages will be installed:\r\n  libcommon-sense-perl libjson-perl libjson-xs-perl libpq5\r\n  libtypes-serialiser-perl postgresql-16 postgresql-client-16\r\n  postgresql-client-common postgresql-common ssl-cert sysstat\r\nSuggested packages:\r\n  postgresql-doc-16 postgresql-doc isag\r\nThe following NEW packages will be installed:\r\n  libcommon-sense-perl libjson-perl libjson-xs-perl libpq-dev libpq5\r\n  libtypes-serialiser-perl postgresql postgresql-16 postgresql-client\r\n  postgresql-client-16 postgresql-client-common postgresql-common ssl-cert\r\n  sysstat\r\n0 upgraded, 14 newly installed, 0 to remove and 3 not upgraded.\r\nNeed to get 21.5 MB of archives.\r\nAfter this operation, 73.7 MB of additional disk space will be used.\r\nGet:1 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libjson-perl all 4.04000-1 [81.8 kB]\r\nGet:2 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 ssl-cert all 1.1.2 [17.4 kB]\r\nGet:3 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libcommon-sense-perl amd64 3.75-2build1 [21.1 kB]\r\nGet:4 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libtypes-serialiser-perl all 1.01-1 [11.6 kB]\r\nGet:5 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libjson-xs-perl amd64 4.030-1build3 [87.2 kB]\r\nGet:6 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 sysstat amd64 12.5.2-2ubuntu0.2 [487 kB]\r\nGet:7 http://apt.postgresql.org/pub/repos/apt jammy-pgdg/main amd64 postgresql-client-common all 262.pgdg22.04+1 [94.8 kB]\r\nGet:8 http://apt.postgresql.org/pub/repos/apt jammy-pgdg/main amd64 postgresql-common all 262.pgdg22.04+1 [240 kB]\r\nGet:9 http://apt.postgresql.org/pub/repos/apt jammy-pgdg/main amd64 libpq5 amd64 16.4-1.pgdg22.04+1 [217 kB]\r\nGet:10 http://apt.postgresql.org/pub/repos/apt jammy-pgdg/main amd64 libpq-dev amd64 16.4-1.pgdg22.04+1 [143 kB]\r\nGet:11 http://apt.postgresql.org/pub/repos/apt jammy-pgdg/main amd64 postgresql-client-16 amd64 16.4-1.pgdg22.04+1 [1,887 kB]\r\nGet:12 http://apt.postgresql.org/pub/repos/apt jammy-pgdg/main amd64 postgresql-16 amd64 16.4-1.pgdg22.04+1 [18.1 MB]\r\nGet:13 http://apt.postgresql.org/pub/repos/apt jammy-pgdg/main amd64 postgresql all 16+262.pgdg22.04+1 [69.6 kB]\r\nGet:14 http://apt.postgresql.org/pub/repos/apt jammy-pgdg/main amd64 postgresql-client all 16+262.pgdg22.04+1 [69.6 kB]\r\nPreconfiguring packages ...\r\nFetched 21.5 MB in 2s (9,928 kB/s)\r\nSelecting previously unselected package libjson-perl.\r\n(Reading database ... 128584 files and directories currently installed.)\r\nPreparing to unpack .../00-libjson-perl_4.04000-1_all.deb ...\r\nUnpacking libjson-perl (4.04000-1) ...\r\nSelecting previously unselected package postgresql-client-common.\r\nPreparing to unpack .../01-postgresql-client-common_262.pgdg22.04+1_all.deb ...\r\nUnpacking postgresql-client-common (262.pgdg22.04+1) ...\r\nSelecting previously unselected package ssl-cert.\r\nPreparing to unpack .../02-ssl-cert_1.1.2_all.deb ...\r\nUnpacking ssl-cert (1.1.2) ...\r\nSelecting previously unselected package postgresql-common.\r\nPreparing to unpack .../03-postgresql-common_262.pgdg22.04+1_all.deb ...\r\nAdding 'diversion of /usr/bin/pg_config to /usr/bin/pg_config.libpq-dev by postgresql-common'\r\nUnpacking postgresql-common (262.pgdg22.04+1) ...\r\nSelecting previously unselected package libcommon-sense-perl:amd64.\r\nPreparing to unpack .../04-libcommon-sense-perl_3.75-2build1_amd64.deb ...\r\nUnpacking libcommon-sense-perl:amd64 (3.75-2build1) ...\r\nSelecting previously unselected package libtypes-serialiser-perl.\r\nPreparing to unpack .../05-libtypes-serialiser-perl_1.01-1_all.deb ...\r\nUnpacking libtypes-serialiser-perl (1.01-1) ...\r\nSelecting previously unselected package libjson-xs-perl.\r\nPreparing to unpack .../06-libjson-xs-perl_4.030-1build3_amd64.deb ...\r\nUnpacking libjson-xs-perl (4.030-1build3) ...\r\nSelecting previously unselected package libpq5:amd64.\r\nPreparing to unpack .../07-libpq5_16.4-1.pgdg22.04+1_amd64.deb ...\r\nUnpacking libpq5:amd64 (16.4-1.pgdg22.04+1) ...\r\nSelecting previously unselected package libpq-dev.\r\nPreparing to unpack .../08-libpq-dev_16.4-1.pgdg22.04+1_amd64.deb ...\r\nUnpacking libpq-dev (16.4-1.pgdg22.04+1) ...\r\nSelecting previously unselected package postgresql-client-16.\r\nPreparing to unpack .../09-postgresql-client-16_16.4-1.pgdg22.04+1_amd64.deb ...\r\nUnpacking postgresql-client-16 (16.4-1.pgdg22.04+1) ...\r\nSelecting previously unselected package postgresql-16.\r\nPreparing to unpack .../10-postgresql-16_16.4-1.pgdg22.04+1_amd64.deb ...\r\nUnpacking postgresql-16 (16.4-1.pgdg22.04+1) ...\r\nSelecting previously unselected package postgresql.\r\nPreparing to unpack .../11-postgresql_16+262.pgdg22.04+1_all.deb ...\r\nUnpacking postgresql (16+262.pgdg22.04+1) ...\r\nSelecting previously unselected package postgresql-client.\r\nPreparing to unpack .../12-postgresql-client_16+262.pgdg22.04+1_all.deb ...\r\nUnpacking postgresql-client (16+262.pgdg22.04+1) ...\r\nSelecting previously unselected package sysstat.\r\nPreparing to unpack .../13-sysstat_12.5.2-2ubuntu0.2_amd64.deb ...\r\nUnpacking sysstat (12.5.2-2ubuntu0.2) ...\r\nSetting up postgresql-client-common (262.pgdg22.04+1) ...\r\nSetting up libpq5:amd64 (16.4-1.pgdg22.04+1) ...\r\nSetting up libcommon-sense-perl:amd64 (3.75-2build1) ...\r\nSetting up libpq-dev (16.4-1.pgdg22.04+1) ...\r\nSetting up ssl-cert (1.1.2) ...\r\nSetting up libtypes-serialiser-perl (1.01-1) ...\r\nSetting up libjson-perl (4.04000-1) ...\r\nSetting up sysstat (12.5.2-2ubuntu0.2) ...\r\n\r\nCreating config file /etc/default/sysstat with new version\r\nupdate-alternatives: using /usr/bin/sar.sysstat to provide /usr/bin/sar (sar) in auto mode\r\nCreated symlink /etc/systemd/system/sysstat.service.wants/sysstat-collect.timer \u2192 /lib/systemd/system/sysstat-collect.timer.\r\nCreated symlink /etc/systemd/system/sysstat.service.wants/sysstat-summary.timer \u2192 /lib/systemd/system/sysstat-summary.timer.\r\nCreated symlink /etc/systemd/system/multi-user.target.wants/sysstat.service \u2192 /lib/systemd/system/sysstat.service.\r\nSetting up libjson-xs-perl (4.030-1build3) ...\r\nSetting up postgresql-client-16 (16.4-1.pgdg22.04+1) ...\r\nupdate-alternatives: using /usr/share/postgresql/16/man/man1/psql.1.gz to provide /usr/share/man/man1/psql.1.gz (psql.1.gz) in auto mode\r\nSetting up postgresql-common (262.pgdg22.04+1) ...\r\nAdding user postgres to group ssl-cert\r\n\r\nCreating config file /etc/postgresql-common/createcluster.conf with new version\r\nBuilding PostgreSQL dictionaries from installed myspell/hunspell packages...\r\nRemoving obsolete dictionary files:\r\nCreated symlink /etc/systemd/system/multi-user.target.wants/postgresql.service \u2192 /lib/systemd/system/postgresql.service.\r\nSetting up postgresql-client (16+262.pgdg22.04+1) ...\r\nSetting up postgresql-16 (16.4-1.pgdg22.04+1) ...\r\nCreating new PostgreSQL cluster 16/main ...\r\n/usr/lib/postgresql/16/bin/initdb -D /var/lib/postgresql/16/main --auth-local peer --auth-host scram-sha-256 --no-instructions\r\nThe files belonging to this database system will be owned by user \"postgres\".\r\nThis user must also own the server process.\r\n\r\nThe database cluster will be initialized with locale \"C.UTF-8\".\r\nThe default database encoding has accordingly been set to \"UTF8\".\r\nThe default text search configuration will be set to \"english\".\r\n\r\nData page checksums are disabled.\r\n\r\nfixing permissions on existing directory /var/lib/postgresql/16/main ... ok\r\ncreating subdirectories ... ok\r\nselecting dynamic shared memory implementation ... posix\r\nselecting default max_connections ... 100\r\nselecting default shared_buffers ... 128MB\r\nselecting default time zone ... UTC\r\ncreating configuration files ... ok\r\nrunning bootstrap script ... ok\r\nperforming post-bootstrap initialization ... ok\r\nsyncing data to disk ... ok\r\nSetting up postgresql (16+262.pgdg22.04+1) ...\r\nProcessing triggers for libc-bin (2.35-0ubuntu3.8) ...\r\nProcessing triggers for man-db (2.10.2-1) ...\r\nProcessing triggers for doc-base (0.11.1) ...\r\nProcessing 1 added doc-base file...\r\nCollecting pg_activity\r\n  Downloading pg_activity-3.5.1-py3-none-any.whl (71 kB)\r\n     \u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501 71.4/71.4 KB 2.1 MB/s eta 0:00:00\r\nCollecting psycopg2-binary\r\n  Downloading psycopg2_binary-2.9.9-cp310-cp310-manylinux_2_17_x86_64.manylinux2014_x86_64.whl (3.0 MB)\r\n     \u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501 3.0/3.0 MB 37.0 MB/s eta 0:00:00\r\nCollecting blessed>=1.15.0\r\n  Downloading blessed-1.20.0-py2.py3-none-any.whl (58 kB)\r\n     \u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501 58.4/58.4 KB 7.9 MB/s eta 0:00:00\r\nCollecting psutil>=2.0.0\r\n  Downloading psutil-6.0.0-cp36-abi3-manylinux_2_12_x86_64.manylinux2010_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl (290 kB)\r\n     \u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501 290.5/290.5 KB 37.5 MB/s eta 0:00:00\r\nCollecting humanize>=0.5.1\r\n  Downloading humanize-4.10.0-py3-none-any.whl (126 kB)\r\n     \u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501 127.0/127.0 KB 22.5 MB/s eta 0:00:00\r\nRequirement already satisfied: attrs!=21.1,>=17.4 in /usr/lib/python3/dist-packages (from pg_activity) (21.2.0)\r\nRequirement already satisfied: six>=1.9.0 in /usr/lib/python3/dist-packages (from blessed>=1.15.0->pg_activity) (1.16.0)\r\nCollecting wcwidth>=0.1.4\r\n  Downloading wcwidth-0.2.13-py2.py3-none-any.whl (34 kB)\r\nInstalling collected packages: wcwidth, psycopg2-binary, psutil, humanize, blessed, pg_activity\r\nSuccessfully installed blessed-1.20.0 humanize-4.10.0 pg_activity-3.5.1 psutil-6.0.0 psycopg2-binary-2.9.9 wcwidth-0.2.13\r\nCREATE ROLE\r\nCREATE DATABASE\r\nGRANT\r\nALTER DATABASE\r\nReading package lists...\r\nBuilding dependency tree...\r\nReading state information...\r\nThe following additional packages will be installed:\r\n  python3-apparmor python3-libapparmor\r\nSuggested packages:\r\n  vim-addon-manager\r\nThe following NEW packages will be installed:\r\n  apparmor-utils python3-apparmor python3-libapparmor\r\n0 upgraded, 3 newly installed, 0 to remove and 3 not upgraded.\r\nNeed to get 170 kB of archives.\r\nAfter this operation, 1,186 kB of additional disk space will be used.\r\nGet:1 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 python3-libapparmor amd64 3.0.4-2ubuntu2.3build2 [29.5 kB]\r\nGet:2 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 python3-apparmor all 3.0.4-2ubuntu2.3build2 [81.1 kB]\r\nGet:3 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 apparmor-utils all 3.0.4-2ubuntu2.3build2 [59.4 kB]\r\nFetched 170 kB in 0s (5,313 kB/s)\r\nSelecting previously unselected package python3-libapparmor.\r\n(Reading database ... 131000 files and directories currently installed.)\r\nPreparing to unpack .../python3-libapparmor_3.0.4-2ubuntu2.3build2_amd64.deb ...\r\nUnpacking python3-libapparmor (3.0.4-2ubuntu2.3build2) ...\r\nSelecting previously unselected package python3-apparmor.\r\nPreparing to unpack .../python3-apparmor_3.0.4-2ubuntu2.3build2_all.deb ...\r\nUnpacking python3-apparmor (3.0.4-2ubuntu2.3build2) ...\r\nSelecting previously unselected package apparmor-utils.\r\nPreparing to unpack .../apparmor-utils_3.0.4-2ubuntu2.3build2_all.deb ...\r\nUnpacking apparmor-utils (3.0.4-2ubuntu2.3build2) ...\r\nSetting up python3-libapparmor (3.0.4-2ubuntu2.3build2) ...\r\nSetting up python3-apparmor (3.0.4-2ubuntu2.3build2) ...\r\nSetting up apparmor-utils (3.0.4-2ubuntu2.3build2) ...\r\nProcessing triggers for man-db (2.10.2-1) ...\r\nSetting /usr/bin/tcpdump to complain mode.\r\nWarning: profile tcpdump represents multiple programs\r\nWarning: profile tcpdump represents multiple programs\r\nDisabling /usr/bin/tcpdump.\r\nReading package lists...\r\nBuilding dependency tree...\r\nReading state information...\r\nThe following NEW packages will be installed:\r\n  gnupg2\r\n0 upgraded, 1 newly installed, 0 to remove and 3 not upgraded.\r\nNeed to get 5,548 B of archives.\r\nAfter this operation, 52.2 kB of additional disk space will be used.\r\nGet:1 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/universe amd64 gnupg2 all 2.2.27-3ubuntu2.1 [5,548 B]\r\nFetched 5,548 B in 0s (154 kB/s)\r\nSelecting previously unselected package gnupg2.\r\n(Reading database ... 131099 files and directories currently installed.)\r\nPreparing to unpack .../gnupg2_2.2.27-3ubuntu2.1_all.deb ...\r\nUnpacking gnupg2 (2.2.27-3ubuntu2.1) ...\r\nSetting up gnupg2 (2.2.27-3ubuntu2.1) ...\r\nProcessing triggers for man-db (2.10.2-1) ...\r\nHit:1 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy InRelease\r\nHit:2 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates InRelease\r\nHit:3 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-backports InRelease\r\nHit:4 http://security.ubuntu.com/ubuntu jammy-security InRelease\r\nHit:5 http://apt.postgresql.org/pub/repos/apt jammy-pgdg InRelease\r\nGet:6 https://deb.torproject.org/torproject.org jammy InRelease [2,812 B]\r\nGet:7 https://deb.torproject.org/torproject.org jammy/main Sources [1,254 B]\r\nGet:8 https://deb.torproject.org/torproject.org jammy/main amd64 Packages [2,102 B]\r\nFetched 6,168 B in 1s (4,973 B/s)\r\nReading package lists...\r\nReading package lists...\r\nBuilding dependency tree...\r\nReading state information...\r\nlibzstd1 is already the newest version (1.4.8+dfsg-3build1).\r\nlibzstd1 set to manually installed.\r\nThe following additional packages will be installed:\r\n  libevent-2.1-7 tor-geoipdb torsocks\r\nSuggested packages:\r\n  mixmaster torbrowser-launcher socat nyx obfs4proxy\r\nThe following NEW packages will be installed:\r\n  deb.torproject.org-keyring libevent-2.1-7 tor tor-geoipdb torsocks\r\n0 upgraded, 5 newly installed, 0 to remove and 3 not upgraded.\r\nNeed to get 4,174 kB of archives.\r\nAfter this operation, 23.9 MB of additional disk space will be used.\r\nGet:1 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libevent-2.1-7 amd64 2.1.12-stable-1build3 [148 kB]\r\nGet:2 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 torsocks amd64 2.3.0-3 [62.5 kB]\r\nGet:3 https://deb.torproject.org/torproject.org jammy/main amd64 deb.torproject.org-keyring all 2024.05.22 [4,372 B]\r\nGet:4 https://deb.torproject.org/torproject.org jammy/main amd64 tor amd64 0.4.8.12-1~jammy+1 [1,788 kB]\r\nGet:5 https://deb.torproject.org/torproject.org jammy/main amd64 tor-geoipdb all 0.4.8.12-1~jammy+1 [2,171 kB]\r\nFetched 4,174 kB in 1s (2,924 kB/s)\r\nSelecting previously unselected package deb.torproject.org-keyring.\r\n(Reading database ... 131105 files and directories currently installed.)\r\nPreparing to unpack .../deb.torproject.org-keyring_2024.05.22_all.deb ...\r\nUnpacking deb.torproject.org-keyring (2024.05.22) ...\r\nSelecting previously unselected package libevent-2.1-7:amd64.\r\nPreparing to unpack .../libevent-2.1-7_2.1.12-stable-1build3_amd64.deb ...\r\nUnpacking libevent-2.1-7:amd64 (2.1.12-stable-1build3) ...\r\nSelecting previously unselected package tor.\r\nPreparing to unpack .../tor_0.4.8.12-1~jammy+1_amd64.deb ...\r\nUnpacking tor (0.4.8.12-1~jammy+1) ...\r\nSelecting previously unselected package tor-geoipdb.\r\nPreparing to unpack .../tor-geoipdb_0.4.8.12-1~jammy+1_all.deb ...\r\nUnpacking tor-geoipdb (0.4.8.12-1~jammy+1) ...\r\nSelecting previously unselected package torsocks.\r\nPreparing to unpack .../torsocks_2.3.0-3_amd64.deb ...\r\nUnpacking torsocks (2.3.0-3) ...\r\nSetting up deb.torproject.org-keyring (2024.05.22) ...\r\nSetting up libevent-2.1-7:amd64 (2.1.12-stable-1build3) ...\r\nSetting up tor (0.4.8.12-1~jammy+1) ...\r\nSomething or somebody made /var/lib/tor disappear.\r\nCreating one for you again.\r\nSomething or somebody made /var/log/tor disappear.\r\nCreating one for you again.\r\nCreated symlink /etc/systemd/system/multi-user.target.wants/tor.service \u2192 /lib/systemd/system/tor.service.\r\nSetting up torsocks (2.3.0-3) ...\r\nSetting up tor-geoipdb (0.4.8.12-1~jammy+1) ...\r\nProcessing triggers for man-db (2.10.2-1) ...\r\nProcessing triggers for libc-bin (2.35-0ubuntu3.8) ...\r\nfs.file-max = 100000\r\nnet.ipv6.conf.all.disable_ipv6 = 1\r\nnet.ipv6.conf.default.disable_ipv6 = 1\r\nnet.ipv6.conf.lo.disable_ipv6 = 0\r\nnet.bridge.bridge-nf-call-ip6tables = 0\r\nnet.bridge.bridge-nf-call-iptables = 0\r\nnet.bridge.bridge-nf-call-arptables = 0\r\nnet.ipv4.ip_forward = 1\r\nReading package lists...\r\nBuilding dependency tree...\r\nReading state information...\r\ngit is already the newest version (1:2.34.1-1ubuntu1.11).\r\nThe following additional packages will be installed:\r\n  libalgorithm-c3-perl libb-hooks-endofscope-perl libb-hooks-op-check-perl\r\n  libclass-c3-perl libclass-c3-xs-perl libclass-data-inheritable-perl\r\n  libclass-inspector-perl libclass-method-modifiers-perl\r\n  libclass-singleton-perl libclass-xsaccessor-perl libdata-optlist-perl\r\n  libdatetime-locale-perl libdatetime-timezone-perl libdbi-perl libdbus-1-dev\r\n  libdevel-callchecker-perl libdevel-caller-perl libdevel-lexalias-perl\r\n  libdevel-stacktrace-perl libdynaloader-functions-perl libeval-closure-perl\r\n  libexception-class-perl libfile-sharedir-perl libldns3\r\n  libmodule-implementation-perl libmodule-runtime-perl libmro-compat-perl\r\n  libmysqlclient21 libnamespace-autoclean-perl libnamespace-clean-perl\r\n  libpackage-stash-perl libpackage-stash-xs-perl libpadwalker-perl\r\n  libparams-classify-perl libparams-util-perl\r\n  libparams-validationcompiler-perl libpcap0.8-dev libreadonly-perl\r\n  libref-util-perl libref-util-xs-perl librole-tiny-perl libspecio-perl\r\n  libsub-exporter-perl libsub-exporter-progressive-perl libsub-identify-perl\r\n  libsub-install-perl libsub-name-perl libsub-quote-perl libtry-tiny-perl\r\n  libvariable-magic-perl libxstring-perl mysql-common\r\nSuggested packages:\r\n  libclone-perl libmldbm-perl libnet-daemon-perl libsql-statement-perl\r\n  libscalar-number-perl libtest-fatal-perl\r\nThe following NEW packages will be installed:\r\n  binutils-dev libalgorithm-c3-perl libb-hooks-endofscope-perl\r\n  libb-hooks-op-check-perl libclass-c3-perl libclass-c3-xs-perl\r\n  libclass-data-inheritable-perl libclass-inspector-perl\r\n  libclass-method-modifiers-perl libclass-singleton-perl\r\n  libclass-xsaccessor-perl libdata-optlist-perl libdate-simple-perl\r\n  libdatetime-locale-perl libdatetime-perl libdatetime-timezone-perl\r\n  libdbd-mysql-perl libdbi-perl libdbus-1-dev libdevel-callchecker-perl\r\n  libdevel-caller-perl libdevel-lexalias-perl libdevel-stacktrace-perl\r\n  libdynaloader-functions-perl libeval-closure-perl libexception-class-perl\r\n  libfile-sharedir-perl libldns-dev libldns3 libmodule-implementation-perl\r\n  libmodule-runtime-perl libmro-compat-perl libmysqlclient21\r\n  libnamespace-autoclean-perl libnamespace-clean-perl libpackage-stash-perl\r\n  libpackage-stash-xs-perl libpadwalker-perl libparams-classify-perl\r\n  libparams-util-perl libparams-validationcompiler-perl libpcap-dev\r\n  libpcap0.8-dev libreadonly-perl libref-util-perl libref-util-xs-perl\r\n  librole-tiny-perl libspecio-perl libsub-exporter-perl\r\n  libsub-exporter-progressive-perl libsub-identify-perl libsub-install-perl\r\n  libsub-name-perl libsub-quote-perl libtry-tiny-perl libvariable-magic-perl\r\n  libxstring-perl mysql-common\r\n0 upgraded, 58 newly installed, 0 to remove and 3 not upgraded.\r\nNeed to get 12.3 MB of archives.\r\nAfter this operation, 90.2 MB of additional disk space will be used.\r\nGet:1 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libalgorithm-c3-perl all 0.11-1 [11.0 kB]\r\nGet:2 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libb-hooks-op-check-perl amd64 0.22-1build5 [10.3 kB]\r\nGet:3 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libdynaloader-functions-perl all 0.003-1.1 [12.1 kB]\r\nGet:4 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libdevel-callchecker-perl amd64 0.008-1ubuntu4 [14.9 kB]\r\nGet:5 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libparams-classify-perl amd64 0.015-1build5 [22.0 kB]\r\nGet:6 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libmodule-runtime-perl all 0.016-1 [16.2 kB]\r\nGet:7 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libtry-tiny-perl all 0.31-1 [21.8 kB]\r\nGet:8 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libmodule-implementation-perl all 0.09-1.1 [11.6 kB]\r\nGet:9 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libsub-exporter-progressive-perl all 0.001013-1 [6,784 B]\r\nGet:10 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libvariable-magic-perl amd64 0.62-1build5 [35.9 kB]\r\nGet:11 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libb-hooks-endofscope-perl all 0.25-1 [17.8 kB]\r\nGet:12 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libclass-c3-perl all 0.35-1 [19.0 kB]\r\nGet:13 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libclass-c3-xs-perl amd64 0.15-1build2 [16.7 kB]\r\nGet:14 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libclass-data-inheritable-perl all 0.08-3 [8,084 B]\r\nGet:15 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libclass-inspector-perl all 1.36-1 [16.3 kB]\r\nGet:16 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libclass-method-modifiers-perl all 2.13-1 [16.2 kB]\r\nGet:17 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libclass-singleton-perl all 1.6-1 [12.4 kB]\r\nGet:18 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libclass-xsaccessor-perl amd64 1.19-3build9 [34.1 kB]\r\nGet:19 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libparams-util-perl amd64 1.102-1build3 [22.7 kB]\r\nGet:20 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libsub-install-perl all 0.928-1.1 [9,972 B]\r\nGet:21 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libdata-optlist-perl all 0.112-1 [11.0 kB]\r\nGet:22 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libdate-simple-perl amd64 3.0300-3build2 [34.1 kB]\r\nGet:23 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libdbi-perl amd64 1.643-3build3 [741 kB]\r\nGet:24 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 mysql-common all 5.8+1.0.8 [7,212 B]\r\nGet:25 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libmysqlclient21 amd64 8.0.39-0ubuntu0.22.04.1 [1,301 kB]\r\nGet:26 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/universe amd64 libdbd-mysql-perl amd64 4.050-5ubuntu0.22.04.1 [87.6 kB]\r\nGet:27 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 libdbus-1-dev amd64 1.12.20-2ubuntu4.1 [188 kB]\r\nGet:28 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libpadwalker-perl amd64 2.5-1build2 [15.9 kB]\r\nGet:29 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libdevel-caller-perl amd64 2.06-2build4 [11.1 kB]\r\nGet:30 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libdevel-lexalias-perl amd64 0.05-2build4 [9,070 B]\r\nGet:31 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libdevel-stacktrace-perl all 2.0400-1 [22.7 kB]\r\nGet:32 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libsub-exporter-perl all 0.988-1 [50.6 kB]\r\nGet:33 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libeval-closure-perl all 0.14-1 [10.3 kB]\r\nGet:34 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libexception-class-perl all 1.45-1 [28.6 kB]\r\nGet:35 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libfile-sharedir-perl all 1.118-1 [15.0 kB]\r\nGet:36 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libldns3 amd64 1.7.1-2ubuntu4 [156 kB]\r\nGet:37 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libmro-compat-perl all 0.15-1 [11.7 kB]\r\nGet:38 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libpackage-stash-perl all 0.39-1 [19.1 kB]\r\nGet:39 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libsub-identify-perl amd64 0.14-1build5 [10.4 kB]\r\nGet:40 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libsub-name-perl amd64 0.26-1build3 [11.4 kB]\r\nGet:41 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libnamespace-clean-perl all 0.27-1 [13.6 kB]\r\nGet:42 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libnamespace-autoclean-perl all 0.29-1 [12.5 kB]\r\nGet:43 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libpackage-stash-xs-perl amd64 0.29-1build5 [19.4 kB]\r\nGet:44 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libparams-validationcompiler-perl all 0.30-1 [28.9 kB]\r\nGet:45 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libpcap0.8-dev amd64 1.10.1-4build1 [270 kB]\r\nGet:46 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libpcap-dev amd64 1.10.1-4build1 [3,328 B]\r\nGet:47 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libreadonly-perl all 2.050-3 [19.9 kB]\r\nGet:48 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libref-util-perl all 0.204-1 [15.0 kB]\r\nGet:49 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libref-util-xs-perl amd64 0.117-1build5 [12.7 kB]\r\nGet:50 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 librole-tiny-perl all 2.002004-1 [16.3 kB]\r\nGet:51 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/main amd64 libsub-quote-perl all 2.006006-1 [19.5 kB]\r\nGet:52 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libxstring-perl amd64 0.005-1build2 [8,076 B]\r\nGet:53 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libspecio-perl all 0.47-1 [140 kB]\r\nGet:54 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 binutils-dev amd64 2.38-4ubuntu2.6 [4,374 kB]\r\nGet:55 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libdatetime-locale-perl all 1:1.33-1 [2,733 kB]\r\nGet:56 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libdatetime-timezone-perl all 1:2.51-1+2021e [273 kB]\r\nGet:57 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libdatetime-perl amd64 2:1.55-1build1 [97.4 kB]\r\nGet:58 http://us-east1.gce.archive.ubuntu.com/ubuntu jammy/universe amd64 libldns-dev amd64 1.7.1-2ubuntu4 [1,144 kB]\r\nFetched 12.3 MB in 3s (4,655 kB/s)\r\nSelecting previously unselected package libalgorithm-c3-perl.\r\n(Reading database ... 131179 files and directories currently installed.)\r\nPreparing to unpack .../00-libalgorithm-c3-perl_0.11-1_all.deb ...\r\nUnpacking libalgorithm-c3-perl (0.11-1) ...\r\nSelecting previously unselected package libb-hooks-op-check-perl.\r\nPreparing to unpack .../01-libb-hooks-op-check-perl_0.22-1build5_amd64.deb ...\r\nUnpacking libb-hooks-op-check-perl (0.22-1build5) ...\r\nSelecting previously unselected package libdynaloader-functions-perl.\r\nPreparing to unpack .../02-libdynaloader-functions-perl_0.003-1.1_all.deb ...\r\nUnpacking libdynaloader-functions-perl (0.003-1.1) ...\r\nSelecting previously unselected package libdevel-callchecker-perl.\r\nPreparing to unpack .../03-libdevel-callchecker-perl_0.008-1ubuntu4_amd64.deb ...\r\nUnpacking libdevel-callchecker-perl (0.008-1ubuntu4) ...\r\nSelecting previously unselected package libparams-classify-perl.\r\nPreparing to unpack .../04-libparams-classify-perl_0.015-1build5_amd64.deb ...\r\nUnpacking libparams-classify-perl (0.015-1build5) ...\r\nSelecting previously unselected package libmodule-runtime-perl.\r\nPreparing to unpack .../05-libmodule-runtime-perl_0.016-1_all.deb ...\r\nUnpacking libmodule-runtime-perl (0.016-1) ...\r\nSelecting previously unselected package libtry-tiny-perl.\r\nPreparing to unpack .../06-libtry-tiny-perl_0.31-1_all.deb ...\r\nUnpacking libtry-tiny-perl (0.31-1) ...\r\nSelecting previously unselected package libmodule-implementation-perl.\r\nPreparing to unpack .../07-libmodule-implementation-perl_0.09-1.1_all.deb ...\r\nUnpacking libmodule-implementation-perl (0.09-1.1) ...\r\nSelecting previously unselected package libsub-exporter-progressive-perl.\r\nPreparing to unpack .../08-libsub-exporter-progressive-perl_0.001013-1_all.deb ...\r\nUnpacking libsub-exporter-progressive-perl (0.001013-1) ...\r\nSelecting previously unselected package libvariable-magic-perl.\r\nPreparing to unpack .../09-libvariable-magic-perl_0.62-1build5_amd64.deb ...\r\nUnpacking libvariable-magic-perl (0.62-1build5) ...\r\nSelecting previously unselected package libb-hooks-endofscope-perl.\r\nPreparing to unpack .../10-libb-hooks-endofscope-perl_0.25-1_all.deb ...\r\nUnpacking libb-hooks-endofscope-perl (0.25-1) ...\r\nSelecting previously unselected package libclass-c3-perl.\r\nPreparing to unpack .../11-libclass-c3-perl_0.35-1_all.deb ...\r\nUnpacking libclass-c3-perl (0.35-1) ...\r\nSelecting previously unselected package libclass-c3-xs-perl.\r\nPreparing to unpack .../12-libclass-c3-xs-perl_0.15-1build2_amd64.deb ...\r\nUnpacking libclass-c3-xs-perl (0.15-1build2) ...\r\nSelecting previously unselected package libclass-data-inheritable-perl.\r\nPreparing to unpack .../13-libclass-data-inheritable-perl_0.08-3_all.deb ...\r\nUnpacking libclass-data-inheritable-perl (0.08-3) ...\r\nSelecting previously unselected package libclass-inspector-perl.\r\nPreparing to unpack .../14-libclass-inspector-perl_1.36-1_all.deb ...\r\nUnpacking libclass-inspector-perl (1.36-1) ...\r\nSelecting previously unselected package libclass-method-modifiers-perl.\r\nPreparing to unpack .../15-libclass-method-modifiers-perl_2.13-1_all.deb ...\r\nUnpacking libclass-method-modifiers-perl (2.13-1) ...\r\nSelecting previously unselected package libclass-singleton-perl.\r\nPreparing to unpack .../16-libclass-singleton-perl_1.6-1_all.deb ...\r\nUnpacking libclass-singleton-perl (1.6-1) ...\r\nSelecting previously unselected package libclass-xsaccessor-perl.\r\nPreparing to unpack .../17-libclass-xsaccessor-perl_1.19-3build9_amd64.deb ...\r\nUnpacking libclass-xsaccessor-perl (1.19-3build9) ...\r\nSelecting previously unselected package libparams-util-perl.\r\nPreparing to unpack .../18-libparams-util-perl_1.102-1build3_amd64.deb ...\r\nUnpacking libparams-util-perl (1.102-1build3) ...\r\nSelecting previously unselected package libsub-install-perl.\r\nPreparing to unpack .../19-libsub-install-perl_0.928-1.1_all.deb ...\r\nUnpacking libsub-install-perl (0.928-1.1) ...\r\nSelecting previously unselected package libdata-optlist-perl.\r\nPreparing to unpack .../20-libdata-optlist-perl_0.112-1_all.deb ...\r\nUnpacking libdata-optlist-perl (0.112-1) ...\r\nSelecting previously unselected package libdate-simple-perl.\r\nPreparing to unpack .../21-libdate-simple-perl_3.0300-3build2_amd64.deb ...\r\nUnpacking libdate-simple-perl (3.0300-3build2) ...\r\nSelecting previously unselected package libdbi-perl:amd64.\r\nPreparing to unpack .../22-libdbi-perl_1.643-3build3_amd64.deb ...\r\nUnpacking libdbi-perl:amd64 (1.643-3build3) ...\r\nSelecting previously unselected package mysql-common.\r\nPreparing to unpack .../23-mysql-common_5.8+1.0.8_all.deb ...\r\nUnpacking mysql-common (5.8+1.0.8) ...\r\nSelecting previously unselected package libmysqlclient21:amd64.\r\nPreparing to unpack .../24-libmysqlclient21_8.0.39-0ubuntu0.22.04.1_amd64.deb ...\r\nUnpacking libmysqlclient21:amd64 (8.0.39-0ubuntu0.22.04.1) ...\r\nSelecting previously unselected package libdbd-mysql-perl:amd64.\r\nPreparing to unpack .../25-libdbd-mysql-perl_4.050-5ubuntu0.22.04.1_amd64.deb ...\r\nUnpacking libdbd-mysql-perl:amd64 (4.050-5ubuntu0.22.04.1) ...\r\nSelecting previously unselected package libdbus-1-dev:amd64.\r\nPreparing to unpack .../26-libdbus-1-dev_1.12.20-2ubuntu4.1_amd64.deb ...\r\nUnpacking libdbus-1-dev:amd64 (1.12.20-2ubuntu4.1) ...\r\nSelecting previously unselected package libpadwalker-perl.\r\nPreparing to unpack .../27-libpadwalker-perl_2.5-1build2_amd64.deb ...\r\nUnpacking libpadwalker-perl (2.5-1build2) ...\r\nSelecting previously unselected package libdevel-caller-perl.\r\nPreparing to unpack .../28-libdevel-caller-perl_2.06-2build4_amd64.deb ...\r\nUnpacking libdevel-caller-perl (2.06-2build4) ...\r\nSelecting previously unselected package libdevel-lexalias-perl.\r\nPreparing to unpack .../29-libdevel-lexalias-perl_0.05-2build4_amd64.deb ...\r\nUnpacking libdevel-lexalias-perl (0.05-2build4) ...\r\nSelecting previously unselected package libdevel-stacktrace-perl.\r\nPreparing to unpack .../30-libdevel-stacktrace-perl_2.0400-1_all.deb ...\r\nUnpacking libdevel-stacktrace-perl (2.0400-1) ...\r\nSelecting previously unselected package libsub-exporter-perl.\r\nPreparing to unpack .../31-libsub-exporter-perl_0.988-1_all.deb ...\r\nUnpacking libsub-exporter-perl (0.988-1) ...\r\nSelecting previously unselected package libeval-closure-perl.\r\nPreparing to unpack .../32-libeval-closure-perl_0.14-1_all.deb ...\r\nUnpacking libeval-closure-perl (0.14-1) ...\r\nSelecting previously unselected package libexception-class-perl.\r\nPreparing to unpack .../33-libexception-class-perl_1.45-1_all.deb ...\r\nUnpacking libexception-class-perl (1.45-1) ...\r\nSelecting previously unselected package libfile-sharedir-perl.\r\nPreparing to unpack .../34-libfile-sharedir-perl_1.118-1_all.deb ...\r\nUnpacking libfile-sharedir-perl (1.118-1) ...\r\nSelecting previously unselected package libldns3:amd64.\r\nPreparing to unpack .../35-libldns3_1.7.1-2ubuntu4_amd64.deb ...\r\nUnpacking libldns3:amd64 (1.7.1-2ubuntu4) ...\r\nSelecting previously unselected package libmro-compat-perl.\r\nPreparing to unpack .../36-libmro-compat-perl_0.15-1_all.deb ...\r\nUnpacking libmro-compat-perl (0.15-1) ...\r\nSelecting previously unselected package libpackage-stash-perl.\r\nPreparing to unpack .../37-libpackage-stash-perl_0.39-1_all.deb ...\r\nUnpacking libpackage-stash-perl (0.39-1) ...\r\nSelecting previously unselected package libsub-identify-perl.\r\nPreparing to unpack .../38-libsub-identify-perl_0.14-1build5_amd64.deb ...\r\nUnpacking libsub-identify-perl (0.14-1build5) ...\r\nSelecting previously unselected package libsub-name-perl.\r\nPreparing to unpack .../39-libsub-name-perl_0.26-1build3_amd64.deb ...\r\nUnpacking libsub-name-perl (0.26-1build3) ...\r\nSelecting previously unselected package libnamespace-clean-perl.\r\nPreparing to unpack .../40-libnamespace-clean-perl_0.27-1_all.deb ...\r\nUnpacking libnamespace-clean-perl (0.27-1) ...\r\nSelecting previously unselected package libnamespace-autoclean-perl.\r\nPreparing to unpack .../41-libnamespace-autoclean-perl_0.29-1_all.deb ...\r\nUnpacking libnamespace-autoclean-perl (0.29-1) ...\r\nSelecting previously unselected package libpackage-stash-xs-perl.\r\nPreparing to unpack .../42-libpackage-stash-xs-perl_0.29-1build5_amd64.deb ...\r\nUnpacking libpackage-stash-xs-perl (0.29-1build5) ...\r\nSelecting previously unselected package libparams-validationcompiler-perl.\r\nPreparing to unpack .../43-libparams-validationcompiler-perl_0.30-1_all.deb ...\r\nUnpacking libparams-validationcompiler-perl (0.30-1) ...\r\nSelecting previously unselected package libpcap0.8-dev:amd64.\r\nPreparing to unpack .../44-libpcap0.8-dev_1.10.1-4build1_amd64.deb ...\r\nUnpacking libpcap0.8-dev:amd64 (1.10.1-4build1) ...\r\nSelecting previously unselected package libpcap-dev:amd64.\r\nPreparing to unpack .../45-libpcap-dev_1.10.1-4build1_amd64.deb ...\r\nUnpacking libpcap-dev:amd64 (1.10.1-4build1) ...\r\nSelecting previously unselected package libreadonly-perl.\r\nPreparing to unpack .../46-libreadonly-perl_2.050-3_all.deb ...\r\nUnpacking libreadonly-perl (2.050-3) ...\r\nSelecting previously unselected package libref-util-perl.\r\nPreparing to unpack .../47-libref-util-perl_0.204-1_all.deb ...\r\nUnpacking libref-util-perl (0.204-1) ...\r\nSelecting previously unselected package libref-util-xs-perl.\r\nPreparing to unpack .../48-libref-util-xs-perl_0.117-1build5_amd64.deb ...\r\nUnpacking libref-util-xs-perl (0.117-1build5) ...\r\nSelecting previously unselected package librole-tiny-perl.\r\nPreparing to unpack .../49-librole-tiny-perl_2.002004-1_all.deb ...\r\nUnpacking librole-tiny-perl (2.002004-1) ...\r\nSelecting previously unselected package libsub-quote-perl.\r\nPreparing to unpack .../50-libsub-quote-perl_2.006006-1_all.deb ...\r\nUnpacking libsub-quote-perl (2.006006-1) ...\r\nSelecting previously unselected package libxstring-perl.\r\nPreparing to unpack .../51-libxstring-perl_0.005-1build2_amd64.deb ...\r\nUnpacking libxstring-perl (0.005-1build2) ...\r\nSelecting previously unselected package libspecio-perl.\r\nPreparing to unpack .../52-libspecio-perl_0.47-1_all.deb ...\r\nUnpacking libspecio-perl (0.47-1) ...\r\nSelecting previously unselected package binutils-dev.\r\nPreparing to unpack .../53-binutils-dev_2.38-4ubuntu2.6_amd64.deb ...\r\nUnpacking binutils-dev (2.38-4ubuntu2.6) ...\r\nSelecting previously unselected package libdatetime-locale-perl.\r\nPreparing to unpack .../54-libdatetime-locale-perl_1%3a1.33-1_all.deb ...\r\nUnpacking libdatetime-locale-perl (1:1.33-1) ...\r\nSelecting previously unselected package libdatetime-timezone-perl.\r\nPreparing to unpack .../55-libdatetime-timezone-perl_1%3a2.51-1+2021e_all.deb ...\r\nUnpacking libdatetime-timezone-perl (1:2.51-1+2021e) ...\r\nSelecting previously unselected package libdatetime-perl:amd64.\r\nPreparing to unpack .../56-libdatetime-perl_2%3a1.55-1build1_amd64.deb ...\r\nUnpacking libdatetime-perl:amd64 (2:1.55-1build1) ...\r\nSelecting previously unselected package libldns-dev:amd64.\r\nPreparing to unpack .../57-libldns-dev_1.7.1-2ubuntu4_amd64.deb ...\r\nUnpacking libldns-dev:amd64 (1.7.1-2ubuntu4) ...\r\nSetting up mysql-common (5.8+1.0.8) ...\r\nupdate-alternatives: using /etc/mysql/my.cnf.fallback to provide /etc/mysql/my.cnf (my.cnf) in auto mode\r\nSetting up libmysqlclient21:amd64 (8.0.39-0ubuntu0.22.04.1) ...\r\nSetting up libclass-inspector-perl (1.36-1) ...\r\nSetting up libdynaloader-functions-perl (0.003-1.1) ...\r\nSetting up libclass-method-modifiers-perl (2.13-1) ...\r\nSetting up libref-util-xs-perl (0.117-1build5) ...\r\nSetting up libsub-identify-perl (0.14-1build5) ...\r\nSetting up libtry-tiny-perl (0.31-1) ...\r\nSetting up libclass-singleton-perl (1.6-1) ...\r\nSetting up libpadwalker-perl (2.5-1build2) ...\r\nSetting up binutils-dev (2.38-4ubuntu2.6) ...\r\nSetting up libxstring-perl (0.005-1build2) ...\r\nSetting up libclass-c3-xs-perl (0.15-1build2) ...\r\nSetting up libdevel-caller-perl (2.06-2build4) ...\r\nSetting up libsub-install-perl (0.928-1.1) ...\r\nSetting up libreadonly-perl (2.050-3) ...\r\nSetting up libdevel-lexalias-perl (0.05-2build4) ...\r\nSetting up libpackage-stash-xs-perl (0.29-1build5) ...\r\nSetting up libclass-data-inheritable-perl (0.08-3) ...\r\nSetting up libalgorithm-c3-perl (0.11-1) ...\r\nSetting up libdate-simple-perl (3.0300-3build2) ...\r\nSetting up libdbus-1-dev:amd64 (1.12.20-2ubuntu4.1) ...\r\nSetting up libref-util-perl (0.204-1) ...\r\nSetting up libvariable-magic-perl (0.62-1build5) ...\r\nSetting up libb-hooks-op-check-perl (0.22-1build5) ...\r\nSetting up libparams-util-perl (1.102-1build3) ...\r\nSetting up libsub-exporter-progressive-perl (0.001013-1) ...\r\nSetting up libsub-name-perl (0.26-1build3) ...\r\nSetting up librole-tiny-perl (2.002004-1) ...\r\nSetting up libfile-sharedir-perl (1.118-1) ...\r\nSetting up libsub-quote-perl (2.006006-1) ...\r\nSetting up libdevel-stacktrace-perl (2.0400-1) ...\r\nSetting up libclass-xsaccessor-perl (1.19-3build9) ...\r\nSetting up libdbi-perl:amd64 (1.643-3build3) ...\r\nSetting up libldns3:amd64 (1.7.1-2ubuntu4) ...\r\nSetting up libpcap0.8-dev:amd64 (1.10.1-4build1) ...\r\nSetting up libexception-class-perl (1.45-1) ...\r\nSetting up libclass-c3-perl (0.35-1) ...\r\nSetting up libldns-dev:amd64 (1.7.1-2ubuntu4) ...\r\nSetting up libdevel-callchecker-perl (0.008-1ubuntu4) ...\r\nSetting up libdbd-mysql-perl:amd64 (4.050-5ubuntu0.22.04.1) ...\r\nSetting up libdata-optlist-perl (0.112-1) ...\r\nSetting up libmro-compat-perl (0.15-1) ...\r\nSetting up libsub-exporter-perl (0.988-1) ...\r\nSetting up libeval-closure-perl (0.14-1) ...\r\nSetting up libparams-validationcompiler-perl (0.30-1) ...\r\nSetting up libpcap-dev:amd64 (1.10.1-4build1) ...\r\nSetting up libparams-classify-perl (0.015-1build5) ...\r\nSetting up libmodule-runtime-perl (0.016-1) ...\r\nSetting up libmodule-implementation-perl (0.09-1.1) ...\r\nSetting up libpackage-stash-perl (0.39-1) ...\r\nSetting up libspecio-perl (0.47-1) ...\r\nSetting up libb-hooks-endofscope-perl (0.25-1) ...\r\nSetting up libnamespace-clean-perl (0.27-1) ...\r\nSetting up libnamespace-autoclean-perl (0.29-1) ...\r\nSetting up libdatetime-locale-perl (1:1.33-1) ...\r\nSetting up libdatetime-timezone-perl (1:2.51-1+2021e) ...\r\nSetting up libdatetime-perl:amd64 (2:1.55-1build1) ...\r\nProcessing triggers for man-db (2.10.2-1) ...\r\nProcessing triggers for libc-bin (2.35-0ubuntu3.8) ...\r\nchecking for a BSD-compatible install... /usr/bin/install -c\r\nchecking whether build environment is sane... yes\r\nchecking for a race-free mkdir -p... /usr/bin/mkdir -p\r\nchecking for gawk... gawk\r\nchecking whether make sets $(MAKE)... yes\r\nchecking whether make supports nested variables... yes\r\nchecking whether make supports the include directive... yes (GNU style)\r\nchecking for gcc... gcc\r\nchecking whether the C compiler works... yes\r\nchecking for C compiler default output file name... a.out\r\nchecking for suffix of executables... \r\nchecking whether we are cross compiling... no\r\nchecking for suffix of object files... o\r\nchecking whether the compiler supports GNU C... yes\r\nchecking whether gcc accepts -g... yes\r\nchecking for gcc option to enable C11 features... none needed\r\nchecking whether gcc understands -c and -o together... yes\r\nchecking dependency style of gcc... gcc3\r\nchecking for stdio.h... yes\r\nchecking for stdlib.h... yes\r\nchecking for string.h... yes\r\nchecking for inttypes.h... yes\r\nchecking for stdint.h... yes\r\nchecking for strings.h... yes\r\nchecking for sys/stat.h... yes\r\nchecking for sys/types.h... yes\r\nchecking for unistd.h... yes\r\nchecking for wchar.h... yes\r\nchecking for minix/config.h... no\r\nchecking for vfork.h... no\r\nchecking whether it is safe to define __EXTENSIONS__... yes\r\nchecking whether _XOPEN_SOURCE should be defined... no\r\nchecking for gcc... (cached) gcc\r\nchecking whether the compiler supports GNU C... (cached) yes\r\nchecking whether gcc accepts -g... (cached) yes\r\nchecking for gcc option to enable C11 features... (cached) none needed\r\nchecking whether gcc understands -c and -o together... (cached) yes\r\nchecking dependency style of gcc... (cached) gcc3\r\nchecking build system type... x86_64-pc-linux-gnu\r\nchecking host system type... x86_64-pc-linux-gnu\r\nchecking for pcap.h... yes\r\nchecking for pcap_loop in -lpcap... yes\r\nchecking for openssl/ssl.h... yes\r\nchecking for ldns/ldns.h... yes\r\nchecking for ldns_pkt_get_rcode in -lldns... yes\r\nchecking for arpa/inet.h... yes\r\nchecking for fcntl.h... yes\r\nchecking for netinet/in.h... yes\r\nchecking for stdlib.h... (cached) yes\r\nchecking for string.h... (cached) yes\r\nchecking for syslog.h... yes\r\nchecking for unistd.h... (cached) yes\r\nchecking for pid_t... yes\r\nchecking for uint16_t... yes\r\nchecking for uint32_t... yes\r\nchecking for uint64_t... yes\r\nchecking for uint8_t... yes\r\nchecking for fork... yes\r\nchecking for vfork... yes\r\nchecking for working fork... yes\r\nchecking for working vfork... (cached) yes\r\nchecking for working strnlen... yes\r\nchecking for alarm... yes\r\nchecking for dup2... yes\r\nchecking for endgrent... yes\r\nchecking for endpwent... yes\r\nchecking for ftruncate... yes\r\nchecking for getcwd... yes\r\nchecking for memset... yes\r\nchecking for strdup... yes\r\nchecking for strerror... yes\r\nchecking for strtol... yes\r\nchecking for strtoul... yes\r\nchecking that generated files are newer than configure... done\r\nconfigure: creating ./config.status\r\nconfig.status: creating Makefile\r\nconfig.status: creating src/Makefile\r\nconfig.status: creating src/config.h\r\nconfig.status: executing depfiles commands\r\nMaking all in src\r\nmake[1]: Entering directory '/tmp/passivedns/src'\r\ngcc -O3  -c passivedns.c -o passivedns.o\r\ngcc -O3  -c dns.c -o dns.o\r\ngcc -o passivedns passivedns.o dns.o -lpcap -lldns\r\nmake  all-am\r\nmake[2]: Entering directory '/tmp/passivedns/src'\r\nmake[2]: Leaving directory '/tmp/passivedns/src'\r\nmake[1]: Leaving directory '/tmp/passivedns/src'\r\nmake[1]: Entering directory '/tmp/passivedns'\r\nmake[1]: Nothing to be done for 'all-am'.\r\nmake[1]: Leaving directory '/tmp/passivedns'\r\n\r\ncheckinstall 1.6.3, Copyright 2010 Felipe Eduardo Sanchez Diaz Duran\r\n\r\n\r\n [y]: y\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\nMaking install in src\r\nmake[1]: Entering directory '/tmp/passivedns/src'\r\nmake[2]: Entering directory '/tmp/passivedns/src'\r\n /usr/bin/mkdir -p '/usr/local/bin'\r\n  /usr/bin/install -c passivedns '/usr/local/bin'\r\nmake[2]: Nothing to be done for 'install-data-am'.\r\nmake[2]: Leaving directory '/tmp/passivedns/src'\r\nmake[1]: Leaving directory '/tmp/passivedns/src'\r\nmake[1]: Entering directory '/tmp/passivedns'\r\nmake[2]: Entering directory '/tmp/passivedns'\r\nmake[2]: Nothing to be done for 'install-exec-am'.\r\nmake[2]: Nothing to be done for 'install-data-am'.\r\nmake[2]: Leaving directory '/tmp/passivedns'\r\nmake[1]: Leaving directory '/tmp/passivedns'\r\n\r\n\r\nCopying documentation directory...\r\n./\r\n./README\r\n./doc/\r\n./doc/ROADMAP\r\n./doc/LICENSE\r\n./doc/How-it-works.txt\r\n./doc/TODO\r\n./doc/INSTALL\r\n./doc/ISSUES\r\n./doc/README\r\n./doc/ChangeLog\r\n./doc/AUTHORS\r\n./doc/README.upgrading\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n**********************************************************************\r\n\r\n\r\n**********************************************************************\r\n\r\nCollecting unicorn\r\n  Downloading unicorn-2.0.1.post1-py2.py3-none-manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl (16.1 MB)\r\n     \u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501 16.1/16.1 MB 35.1 MB/s eta 0:00:00\r\nCollecting capstone\r\n  Downloading capstone-5.0.3-py3-none-manylinux_2_17_x86_64.manylinux2014_x86_64.whl (2.9 MB)\r\n     \u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501 2.9/2.9 MB 52.7 MB/s eta 0:00:00\r\nInstalling collected packages: unicorn, capstone\r\nSuccessfully installed capstone-5.0.3 unicorn-2.0.1.post1\r\nReading package lists...\r\nBuilding dependency tree...\r\nReading state information...\r\nunzip is already the newest version (6.0-26ubuntu3.2).\r\n0 upgraded, 0 newly installed, 0 to remove and 3 not upgraded.`\nComment: poetry is installed in install_CAPE() first time. \r\nBut with that commit poetry https://github.com/kevoreilly/CAPEv2/commit/84aaa99ace9007d794d1d8c68ba11c8f05360f61 appears in install_volatility first time. \r\nMaybe move `pip3 install poetry` to install_dependencies or just before `sudo -u ${USER} poetry run pip3 install git+https://github.com/volatilityfoundation/volatility3`\nComment: Hey I put the pip3 install poetry within the install_depencies function now I'm getting this error. \r\n\r\n`                                                                      Installing collected packages: unicorn, capstone\r\n     Successfully installed capstone-5.0.3 unicorn-2.0.1.post1\r\n                                                              WARNING: Running pip as the 'root' user can result in broken permissions and conflicting behaviour with the system package manager. It is recommended to use a virtual environment instead: https://pip.pypa.io/warnings/venv\r\n+ sed -i 's/APT::Periodic::Unattended-Upgrade \"1\";/APT::Periodic::Unattended-Upgrade \"0\";/g' /etc/apt/apt.conf.d/20auto-upgrades\r\n+ install_volatility3\r\n+ sudo apt-get install unzip\r\nReading package lists...\r\n                        Building dependency tree...\r\n                                                   Reading state information...\r\n                                                                               unzip is already the newest version (6.0-26ubuntu3.2).\r\n                    0 upgraded, 0 newly installed, 0 to remove and 6 not upgraded.\r\n                                                                                  + sudo -u cape poetry run pip3 install git+https://github.com/volatilityfoundation/volatility3\r\n\r\nPoetry could not find a pyproject.toml file in /tmp/passivedns or its parents`\nComment: okay yes we need to clone CAPE repo first. Maybe it would be better to move install_volatility3 after install_CAPE. Let doomed decide that\nComment: thank you @ClaudioWayne, moved that after cape install",
+  "Title: Update process.py for callback usage.\nBody: None\nComment: i would ignore changing process.py, as callback and process sets the status, is not a big deal, but put specific community module into processing is no a good option\nComment: the callback itself is updated already, thanks for PR to clarify what you mean for process.py but we can skip it",
+  "Title:  Update torproject install\nBody: Update torproject installation.\r\nReference: https://support.torproject.org/apt/tor-deb-repo/\nComment: Thabks",
+  "Title: 429 HTTP Error with screenshots\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n# Expected Behavior\r\n\r\nWhen viewing an analysis results, screenshots thumbnails are displayed and can be clicked to zoom.\r\n\r\n# Current Behavior\r\n\r\nOnly a few thumbnails are displayed and clicking on one of them does not display the full size picture.\r\n\r\n# Failure Information (for bugs)\r\n\r\nMy CAPE is behind a reverse proxy and the proxy receives HTTP 429 errors (\"Too many requests\"). I checked for interesting parameters in web.conf. Is the web interface using the API and api.conf must be fine-tuned?\r\n\nComment: yes you need to tune, if you don't care about amount of requests, just disable ratelimit in api.conf\nComment: I completely disabled rate limits:\r\n```\r\n[api]\r\nratelimit = no\r\n```\r\nRestarted cape-web and still HTTP/429 errors!?\r\n\nComment: that not make sense, i just checked code, https://github.com/kevoreilly/CAPEv2/blob/master/web/analysis/views.py#L1726 it is `file_nl` which is not limited by ratelimit at all, do you use webauth? \nComment: Yes, web_auth is enabled!\nComment: i did check the code, is impossible that screenshots trigger that, so probably there is something that is not under file_nl and is under `file`, can you open dev console -> network tab and reload page to see on what exactly that happens\nComment: Ok, did that. The 429 errors are related to these URI's:\r\n\r\n`/analysis/file_nl/screenshot/325/xxxx/\r\n`\nComment: Wow is file_nl is so weird, is there any other request before of\r\nscreenshots?\r\n\r\nEl vie, 6 sept 2024, 7:35, Xavier Mertens ***@***.***>\r\nescribi\u00f3:\r\n\r\n> Ok, did that. The 429 errors are related to these URI's:\r\n>\r\n> /analysis/file_nl/screenshot/325/xxxx/\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2308#issuecomment-2333267207>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3Z3KAVKEBA57L45UQTZVE5LPAVCNFSM6AAAAABNSREXBWVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDGMZTGI3DOMRQG4>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: Here are the requests when I want to display an analysis result page:\r\n\r\n```\r\n/analysis/325\r\njquery.js\r\n/file/usage/325/0\r\n/analysis/file_nl/screenshot/325/xxxx/\r\n/analysis/file_nl/screenshot/325/xxxx/\r\n/analysis/file_nl/screenshot/325/xxxx/\r\n...\r\n\r\n```\r\n\nComment: Can you change subscription number from 5 to 500 under user configuration\r\nin Django admin?\r\n\r\nEl vie, 6 sept 2024, 9:53, Xavier Mertens ***@***.***>\r\nescribi\u00f3:\r\n\r\n> Here are the requests when I want to display an analysis result page:\r\n>\r\n> /analysis/325\r\n> jquery.js\r\n> /file/usage/325/0\r\n> /analysis/file_nl/screenshot/325/xxxx/\r\n> /analysis/file_nl/screenshot/325/xxxx/\r\n> /analysis/file_nl/screenshot/325/xxxx/\r\n> ...\r\n>\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2308#issuecomment-2333463391>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH37DMG24QKMOD4ENGXDZVFNQPAVCNFSM6AAAAABNSREXBWVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDGMZTGQ3DGMZZGE>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: Much better! It works smoothly now...\nComment: if user is admin or staff there is no limits, regular users are under those limits. I will add that to docs to clarify",
+  "Title: Update Latrodectus condition name\nBody: None",
+  "Title: When Callback Reporting Module is Enabled DB session Error Happens\nBody: # Expected Behavior\r\n\r\nInforming the provided URL in the callback section in reporting.conf file when analysis report is finished.\r\n\r\n# Current Behavior\r\n\r\nWhen I enable the reporting module and submit a task, I get this error:\r\n\r\n```\r\n2024-09-03 06:59:04,932 [root] ERROR: [39] Exception when processing task: A transaction is already begun on this Session.\r\npebble.common.RemoteTraceback: Traceback (most recent call last):\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/pebble/common.py\", line 174, in process_execute\r\n    return function(*args, **kwargs)\r\n  File \"/opt/CAPEv2/utils/process.py\", line 141, in process\r\n    with db.session.begin():\r\n  File \"<string>\", line 2, in begin\r\n  File \"<string>\", line 2, in begin\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/util/deprecations.py\", line 375, in warned\r\n    return fn(*args, **kwargs)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 1334, in begin\r\n    raise sa_exc.InvalidRequestError(\r\nsqlalchemy.exc.InvalidRequestError: A transaction is already begun on this Session.\r\nThe above exception was the direct cause of the following exception:\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/process.py\", line 277, in processing_finished\r\n    _ = future.result()\r\n  File \"/usr/lib/python3.10/concurrent/futures/_base.py\", line 451, in result\r\n    return self.__get_result()\r\n  File \"/usr/lib/python3.10/concurrent/futures/_base.py\", line 403, in __get_result\r\n    raise self._exception\r\nsqlalchemy.exc.InvalidRequestError: A transaction is already begun on this Session.\r\n\r\n```\r\n# Failure Information (for bugs)\r\n\r\nThe callback module was working with an old version of CAPE (before adding the \"Simplify database calls and use higher-level transactions\" commit) . When I updated to the latest version of CAPE this issue appeared.\r\n\r\nI have already looked at this issue https://github.com/kevoreilly/CAPEv2/issues/2187 I have the latest update and I still have the same issue.\r\n\r\n## Steps to Reproduce\r\n\r\n1. Enable reporting module\r\n2. submit task\r\n3. you get the above error.\r\n\r\n## Context\r\n\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| OS version       | Ubuntu 22.04, Windows 7 analysis machine\r\n\r\n\nComment: @norantharowat Possible that the callback module was not updated with/after that commit you mentioned. This is a community module, so it isn't always kept up to date when the rest of CAPE changes. Would you try removing the `main_db.set_status` lines in `modules/reporting/callback.py`? The file would end up looking something like this:\r\n\r\n```\r\nimport json\r\nimport logging\r\n\r\nimport requests\r\n\r\nfrom lib.cuckoo.common.abstracts import Report\r\n\r\nlog = logging.getLogger(__name__)\r\n\r\n\r\nclass CALLBACKHOME(Report):\r\n    \"Notify us about analysis is done\"\r\n\r\n    order = 10000  # used in the reporting module and required here.\r\n\r\n    def run(self, results):\r\n        urls = self.options.url.split(\",\")\r\n        task_id = int(results.get(\"info\", {}).get(\"id\"))\r\n        for url in urls:\r\n            try:\r\n                for value in (task_id, str(task_id)):\r\n                    res = requests.post(url, data=json.dumps({\"task_id\": value}), timeout=20)\r\n                    if res and res.ok:\r\n                        log.debug(\"reported id: %d\", task_id)\r\n                    else:\r\n                        log.error(\"failed to report %d\", task_id)\r\n            except requests.exceptions.ConnectTimeout:\r\n                log.error(\"Timeout when calling to callback: %s\", url)\r\n            except Exception as e:\r\n                log.exception(e)\r\n```\r\n\r\nUnfortunately, this would mean that the callback (if it fixes the problem), would show task with a of status \"completed\". You would know, however, that this is the last reporting module to run. Thus, it could be considered \"reported\" when the callback is run. See these lines in `utils/process.py` to see what I mean:\r\n```\r\n        # This will run each of your enabled reporting modules. It sorts the run order by the `order` attribute for each module.\r\n        # Callback.py's CALLBACKHOME class has the highest `order` at 10000.\r\n        RunReporting(task=task.to_dict(), results=results, reprocess=reprocess).run()\r\n        with db.session.begin():\r\n            # Only update the task status to \"reported\" after all enabled reporting modules run.\r\n            db.set_status(task_id, TASK_REPORTED)\r\n```\r\n\r\nI couldn't figure out a great way to update task status within `RunReporting(...).run()` and we can't use the `db.set_status...` line there until after `RunReporting(...).run()`. I have no idea if any of the other code in this class is going to work as expected, either.\r\n\r\nAnyway, hope this helps you at least get rid of the error you're getting. If it does, hopefully someone with more SQAlchemy experience can come along and find a better solution.\nComment: If my above reply doesn't fix it for you, this may work:\r\n\r\nIn `utils/process.py`, update this\r\n```\r\n        RunReporting(task=task.to_dict(), results=results, reprocess=reprocess).run()\r\n        with db.session.begin():\r\n            db.set_status(task_id, TASK_REPORTED)\r\n``` \r\nto this\r\n```\r\n        if repconf.callback.enabled:\r\n            with db.session.begin():\r\n                RunReporting(task=task.to_dict(), results=results, reprocess=reprocess).run()\r\n        else:\r\n            RunReporting(task=task.to_dict(), results=results, reprocess=reprocess).run()\r\n            with db.session.begin():\r\n                db.set_status(task_id, TASK_REPORTED)\r\n```\r\n\r\n\r\nThen in `callback.py`, update it to this:\r\n```\r\nimport json\r\nimport logging\r\n\r\nimport requests\r\n\r\nfrom lib.cuckoo.common.abstracts import Report\r\nfrom lib.cuckoo.core.database import TASK_REPORTED, Database\r\n\r\nlog = logging.getLogger(__name__)\r\n\r\n\r\nclass CALLBACKHOME(Report):\r\n    \"Notify us about analysis is done\"\r\n\r\n    order = 10000  # used in the reporting module and required here.\r\n\r\n    def run(self, results):\r\n        urls = self.options.url.split(\",\")\r\n        task_id = self.task[\"id\"]\r\n        # Update task status to reported.\r\n        Database().set_status(task_id, TASK_REPORTED)\r\n        for url in urls:\r\n            try:\r\n                for value in (task_id, str(task_id)):\r\n                    res = requests.post(url, data=json.dumps({\"task_id\": value}), timeout=20)\r\n                    if res and res.ok:\r\n                        log.debug(\"reported id: %d\", task_id)\r\n                    else:\r\n                        log.error(\"failed to report %d\", task_id)\r\n            except requests.exceptions.ConnectTimeout:\r\n                log.error(\"Timeout when calling to callback: %s\", url)\r\n            except Exception as e:\r\n                log.exception(e)\r\n```\r\n\r\nNot an incredibly elegant approach, but I think that should work.\nComment: @ChrisThibodeaux Thank you for your response. I tried your second option and everything seems to be fine, I am not getting the above error anymore. However, I got another behavior that is causing me some troubles. I have a case where I have my own API, and when CAPE hits the callback module it will send a request to my API informing it that the analysis is done, then my API will call the \"/tasks/report\" endpoint to get the report results. However when I call the \"/tasks/report\" I get in the response body an error that \"Task is still being analyzed\", I am not sure why this is happening because I included this line in the callback module.\r\n\r\n'''\r\n Database().set_status(task_id, TASK_REPORTED)\r\n'''\r\n\nComment: @norantharowat Ah, I think I know what the issue is then. The session is not closed yet when the callback is sent, so the task status is not actually updated (maybe). Okay, one more approach to try.\r\n\r\n```\r\n        if repconf.callback.enabled:\r\n            RunReporting(task=task.to_dict(), results=results, reprocess=reprocess).run()\r\n        else:\r\n            RunReporting(task=task.to_dict(), results=results, reprocess=reprocess).run()\r\n            with db.session.begin():\r\n                db.set_status(task_id, TASK_REPORTED)\r\n``` \r\n\r\n```\r\nimport json\r\nimport logging\r\n\r\nimport requests\r\n\r\nfrom lib.cuckoo.common.abstracts import Report\r\nfrom lib.cuckoo.core.database import TASK_REPORTED, Database\r\n\r\nlog = logging.getLogger(__name__)\r\n\r\n\r\nclass CALLBACKHOME(Report):\r\n    \"Notify us about analysis is done\"\r\n\r\n    order = 10000  # used in the reporting module and required here.\r\n\r\n    def run(self, results):\r\n        urls = self.options.url.split(\",\")\r\n        task_id = self.task[\"id\"]\r\n        # Update task status to reported.\r\n        with Database().session.begin():\r\n            Database().set_status(task_id, TASK_REPORTED)\r\n        for url in urls:\r\n            try:\r\n                for value in (task_id, str(task_id)):\r\n                    res = requests.post(url, data=json.dumps({\"task_id\": value}), timeout=20)\r\n                    if res and res.ok:\r\n                        log.debug(\"reported id: %d\", task_id)\r\n                    else:\r\n                        log.error(\"failed to report %d\", task_id)\r\n            except requests.exceptions.ConnectTimeout:\r\n                log.error(\"Timeout when calling to callback: %s\", url)\r\n            except Exception as e:\r\n                log.exception(e)\r\n```\r\n\r\nI think this might be the appropriate fix, but please let me know if the issue persists. If it does, I can look into potential race conditions for you.\nComment: @ChrisThibodeaux Sorry for the late reply. I tried the last approach and I think that everything is fine now. Thank you so much for your help through out the issue, would you add these changes to the main code as well?\nComment: code was added to main code, thanks for fix\nComment: @ChrisThibodeaux @doomedraven I just wanted to mention that I think you should also update the process.py with the new condition, thanks.\nComment: ah missed that part\nComment: im not sure where that code should go as there is already similar code, so please PR it to proper location\nComment: @ChrisThibodeaux @doomedraven I am not sure but I think Chris should be the one submitting the PR because I am not the one who fixed the code, but for where that code should go, it should be added to the process.py file in the utils folder, starting from line 140 you should replace the following code:\r\n\r\n```\r\nRunReporting(task=task.to_dict(), results=results, reprocess=reprocess).run()\r\nwith db.session.begin():\r\n    db.set_status(task_id, TASK_REPORTED)\r\n```\r\nwith this code\r\n```\r\n        if repconf.callback.enabled:\r\n            RunReporting(task=task.to_dict(), results=results, reprocess=reprocess).run()\r\n        else:\r\n            RunReporting(task=task.to_dict(), results=results, reprocess=reprocess).run()\r\n            with db.session.begin():\r\n                db.set_status(task_id, TASK_REPORTED)\r\n```\nComment: @doomedraven @norantharowat Sorry, just seeing this. Here is a link to the PR with that: https://github.com/kevoreilly/CAPEv2/pull/2310",
+  "Title: Attempting to monitor Medusa ransomware sample via syscall hooks causes BSOD\nBody: Sample: SHA256 (found on VT):[e7d2f78fdc1af32cea5ee99f57feff82f016d2a4baac4201a8785735427a9af3](https://www.virustotal.com/gui/file/e7d2f78fdc1af32cea5ee99f57feff82f016d2a4baac4201a8785735427a9af3)\r\nOS: Windows 10 21H2\r\nCAPE commit: https://github.com/kevoreilly/CAPEv2/commit/d76a17c4174a5807bcfcc74017f3c76d91cc41e6\r\n\r\nUsing Cuckoo-style thread monitoring instead works as expected.\r\n\r\nInterestingly, the CAPE instance used by VirusTotal produced results and not a BSOD. I'm not sure if that's because they use an older version of CAPE which might not have this problem, or if they default to using thread-based monitoring.\r\n\nComment: it works on my cape too, im on latest\nComment: Working fine for me\nComment: Weird. Most be something with my VM. Maybe a slightly different Windows build. Any suggestions on how to isolate the problem?\nComment: well some more info such as the analysis log might be nice\nComment: The analysis log is empty. And now I can't reproduce the error after I was able to get it to BSOD a couple times earlier in the day. Really weird.",
+  "Title: No packets from/to guests?\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n# Expected Behavior\r\n\r\nCAPE using kvm, \"standard\" setup.\r\n\r\n# Current Behavior\r\n\r\nWhen I boot guests manually, they have network connectivity (through virbr0), I can access the agent (via port 8000), all good!\r\nWhen I submit a file to CAPE, the VM is started but... no network at all! Seems that no packets are sent/received by the guest and all analysis fail.\r\n\r\nI'm using \"Internet\" access and my ens160 interface as \"dirty line\".\r\n\r\n```\r\n2024-09-02 14:50:35,282 [lib.cuckoo.core.analysis_manager] ERROR: Task #310: Machine win10x64: the guest initialization hit the critical timeout, analysis aborted\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 445, in perform_analysis\r\n    self.run_analysis_on_guest()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 411, in run_analysis_on_guest\r\n    guest_manager.start_analysis(options)\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/guest.py\", line 253, in start_analysis\r\n    self.wait_available()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/guest.py\", line 162, in wait_available\r\n    raise CuckooGuestCriticalTimeout(\r\nlib.cuckoo.common.exceptions.CuckooGuestCriticalTimeout: Machine win10x64: the guest initialization hit the critical timeout, analysis aborted\r\n```\r\n\r\n## Steps to Reproduce\r\n\r\ntcpdump in virbr0 reveals that the guest can't even to an ARP lookup to get the default gw MAC!\r\nHere are the rules made by Rooter:\r\n\r\n```\r\n# iptables -L -n\r\nChain INPUT (policy ACCEPT)\r\ntarget     prot opt source               destination\r\nLIBVIRT_INP  all  --  0.0.0.0/0            0.0.0.0/0\r\nACCEPT     all  --  0.0.0.0/0            0.0.0.0/0            state RELATED,ESTABLISHED /* CAPE-rooter */\r\n\r\nChain FORWARD (policy DROP)\r\ntarget     prot opt source               destination\r\nCAPE_ACCEPTED_SEGMENTS  all  --  0.0.0.0/0            0.0.0.0/0            /* CAPE-rooter */\r\nCAPE_REJECTED_SEGMENTS  all  --  0.0.0.0/0            0.0.0.0/0            /* CAPE-rooter */\r\nLIBVIRT_FWX  all  --  0.0.0.0/0            0.0.0.0/0\r\nLIBVIRT_FWI  all  --  0.0.0.0/0            0.0.0.0/0\r\nLIBVIRT_FWO  all  --  0.0.0.0/0            0.0.0.0/0\r\n\r\nChain OUTPUT (policy ACCEPT)\r\ntarget     prot opt source               destination\r\nLIBVIRT_OUT  all  --  0.0.0.0/0            0.0.0.0/0\r\n\r\nChain CAPE_ACCEPTED_SEGMENTS (1 references)\r\ntarget     prot opt source               destination\r\nACCEPT     all  --  192.168.122.1        192.168.122.106      /* CAPE-rooter */\r\nACCEPT     tcp  --  192.168.122.106      192.168.122.1        multiport dports 2042 /* CAPE-rooter */\r\nACCEPT     all  --  192.168.122.106      0.0.0.0/0            /* CAPE-rooter */\r\nACCEPT     all  --  0.0.0.0/0            192.168.122.106      /* CAPE-rooter */\r\nACCEPT     all  --  0.0.0.0/0            0.0.0.0/0            state RELATED,ESTABLISHED /* CAPE-rooter */\r\n\r\nChain CAPE_REJECTED_SEGMENTS (1 references)\r\ntarget     prot opt source               destination\r\n\r\nChain LIBVIRT_FWI (1 references)\r\ntarget     prot opt source               destination\r\nACCEPT     all  --  0.0.0.0/0            192.168.122.0/24     ctstate RELATED,ESTABLISHED\r\nREJECT     all  --  0.0.0.0/0            0.0.0.0/0            reject-with icmp-port-unreachable\r\n\r\nChain LIBVIRT_FWO (1 references)\r\ntarget     prot opt source               destination\r\nACCEPT     all  --  192.168.122.0/24     0.0.0.0/0\r\nREJECT     all  --  0.0.0.0/0            0.0.0.0/0            reject-with icmp-port-unreachable\r\n\r\nChain LIBVIRT_FWX (1 references)\r\ntarget     prot opt source               destination\r\nACCEPT     all  --  0.0.0.0/0            0.0.0.0/0\r\n\r\nChain LIBVIRT_INP (1 references)\r\ntarget     prot opt source               destination\r\nACCEPT     udp  --  0.0.0.0/0            0.0.0.0/0            udp dpt:53\r\nACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0            tcp dpt:53\r\nACCEPT     udp  --  0.0.0.0/0            0.0.0.0/0            udp dpt:67\r\nACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0            tcp dpt:67\r\n\r\nChain LIBVIRT_OUT (1 references)\r\ntarget     prot opt source               destination\r\nACCEPT     udp  --  0.0.0.0/0            0.0.0.0/0            udp dpt:53\r\nACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0            tcp dpt:53\r\nACCEPT     udp  --  0.0.0.0/0            0.0.0.0/0            udp dpt:68\r\nACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0            tcp dpt:68\r\n```\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | fb34305ec3db3fd2b2db6dac10980a3539e95e8b\r\n| OS version       | Ubuntu 22.04.4 LTS\r\n\r\n\nComment: that might be related to recent changes, as i see you using NAT instead of hostonly, you might need to enable NAT and/or local_traffic in `routing.conf`\nComment: These two parameters where missing in my routing.conf indeed. I'm not sure to understand the purpose of \"nat\". I tried both and it still the same. My setup is pretty simple: 192.168.122.0/24 is used by KVM through virbr0.\r\n192.168.122.0/24 is NAT'd to reach other hosts via ens160 (my default gw)\r\n\r\nFunny, when I start an analysis and keep a ping running to the VM, I see that, when the VM snapshot has been restored, 2 or 3 ICMP packets are accepted then... no traffic anymore! I looks like these packets are received before rooter.py makes the changes!\r\n\r\nHere is my routing.conf:\r\n\r\n```\r\n[routing]\r\n\r\n# Enable pcap generation for non live connections?\r\n# If you have huge number of VMs, pcap generation can be a bottleneck\r\nenable_pcap = no\r\n\r\n# Default network routing mode; \"none\", \"internet\", or \"vpn_name\".\r\n# In none mode we don't do any special routing - the VM doesn't have any\r\n# network access (this has been the default actually for quite a while).\r\n# In internet mode by default all the VMs will be routed through the network\r\n# interface configured below (the \"dirty line\").\r\n# And in VPN mode by default the VMs will be routed through the VPN identified\r\n# by the given name of the VPN.\r\n# Note that just like enabling VPN configuration setting this option to\r\n# anything other than \"none\" requires one to run utils/rooter.py as root next\r\n# to the CAPE instance (as it's required for setting up the routing).\r\nroute = internet\r\n\r\n# Network interface that allows a VM to connect to the entire internet, the\r\n# \"dirty line\" so to say. Note that, just like with the VPNs, this will allow\r\n# malicious traffic through your network. So think twice before enabling it.\r\n# (For example, to route all VMs through eth0 by default: \"internet = eth0\").\r\ninternet = ens160\r\n\r\n# When set to no masquerade rule has been not generated.\r\nnat = no\r\n\r\n# When property nat set to yes. That property not used.\r\n# When property nat set to no and no_local_routing to yes, a vrf configuration\r\n# will be generated and local traffic will go through by internet interface (dirty_line).\r\nno_local_routing = yes\r\n\r\n# Routing table name/id for \"dirty line\" interface. If \"dirty line\" is\r\n# also default gateway in the system you can leave \"main\" value. Otherwise add\r\n# new routing table by adding \"<id> <name>\" line to /etc/iproute2/rt_tables\r\n# (e.g., \"200 eth0\"). ID and name must be unique across the system (refer to\r\n# /etc/iproute2/rt_tables for existing names and IDs).\r\nrt_table = main\r\n\r\n# When using \"dirty line\", you can reject forwarding to a certain network segment.\r\n# For example, a request targeting 192.168.12.1/24,172.16.22.1/24 will not be\r\n# forwarded, but will be rejected:\r\n# \"reject_segments = 192.168.12.1/24,172.16.22.1/24\"\r\nreject_segments = none\r\n\r\n# When ussing \"dirty line\", you can reject guest access a certain port.\r\n# For example, a request targeting host's port 8000 and 8080 will be rejected:\r\n# \"reject_hostports = 8000,8080\"\r\nreject_hostports = none\r\n\r\n# To route traffic through multiple network interfaces CAPE uses\r\n# Policy Routing with separate routing table for each output interface\r\n# (VPN or \"dirty line\"). If this option is enabled CAPE on start will try\r\n# to automatically initialise routing tables by copying routing entries from\r\n# main routing table to the new routing tables. Depending on your network/vpn\r\n# configuration this might not be sufficient. In such case you would need to\r\n# initialise routing tables manually. Note that enabling this option won't\r\n# affect main routing table.\r\nauto_rt = no\r\n\r\n# The drop route basically drops any outgoing network (except for CAPE\r\n# traffic) whereas the regular none route still allows a VM to access its own\r\n# subnet (e.g., 192.168.122.1/24). It is disabled by default as it does require\r\n# the optional rooter to run (unlike the none route, where literally nothing\r\n# happens). One can either explicitly enable the drop route or if the rooter\r\n# is enabled anyway, it is automatically enabled.\r\ndrop = no\r\n\r\n# Should check if the inteface is up\r\nverify_interface = yes\r\n\r\n# Should check if rt_table exists before initializing\r\nverify_rt_table = yes\r\n\r\n[inetsim]\r\n# Inetsim quick deploy, chose your vm manager if is not kvm\r\n# wget https://googledrive.com/host/0B6fULLT_NpxMQ1Rrb1drdW42SkE/remnux-6.0-ova-public.ova\r\n# tar xvf remnux-6.0-ova-public.ova\r\n# qemu-img convert -O qcow2 REMnuxV6-disk1.vmdk remnux.qcow2\r\n\r\nenabled = no\r\nserver = 192.168.1.2\r\ndnsport = 53\r\ninterface = virbr1\r\n# Redirect TCP ports (should we also support UDP?). If specified, this should\r\n# represent whitespace-separated src:dst pairs. E.g., \"80:8080 443:8080\" will\r\n# redirect all 80/443 traffic to 8080 on the specified InetSim host.\r\n# Source port range redirection is also supported. E.g., \"996-2041:80\" will\r\n# redirect all traffic directed at ports between 996 and 2041 inclusive to port 80\r\n# on the specified InetSim host.\r\nports =\r\n\r\n\r\n[tor]\r\nenabled = no\r\ndnsport = 5353\r\nproxyport = 9040\r\ninterface = virbr1\r\n\r\n[vpn]\r\n# By default we disable VPN support as it requires running utils/rooter.py as\r\n# root next to cuckoo.py (which should run as regular user).\r\nenabled = no\r\n\r\n# select one of the configured vpns randomly\r\nrandom_vpn = no\r\n\r\n# Comma-separated list of the available VPNs.\r\nvpns = vpn0\r\n\r\n[vpn0]\r\n# Name of this VPN. The name is represented by the filepath to the\r\n# configuration file, e.g., cuckoo would represent /etc/openvpn/cuckoo.conf\r\n# Note that you can't assign the names \"none\" and \"internet\" as those would\r\n# conflict with the routing section in cuckoo.conf.\r\nname = vpn0\r\n\r\n# The description of this VPN which will be displayed in the web interface.\r\n# Can be used to for example describe the country where this VPN ends up.\r\ndescription = openvpn_tunnel\r\n\r\n# The tun device hardcoded for this VPN. Each VPN *must* be configured to use\r\n# a hardcoded/persistent tun device by explicitly adding the line \"dev tunX\"\r\n# to its configuration (e.g., /etc/openvpn/vpn1.conf) where X in tunX is a\r\n# unique number between 0 and your lucky number of choice.\r\ninterface = tun0\r\n\r\n# Routing table name/id for this VPN. If table name is used it *must* be\r\n# added to /etc/iproute2/rt_tables as \"<id> <name>\" line (e.g., \"201 tun0\").\r\n# ID and name must be unique across the system (refer /etc/iproute2/rt_tables\r\n# for existing names and IDs).\r\nrt_table = tun0\r\n\r\n\r\n[socks5]\r\n# By default we disable socks5 support as it requires running utils/rooter.py as\r\n# root next to cuckoo.py (which should run as regular user).\r\nenabled = no\r\n\r\n# select one of the configured socks5 proxies randomly\r\nrandom_socks5 = no\r\n\r\n# Comma-separated list of the available proxies.\r\nproxies = socks_ch\r\n\r\n[socks_ch]\r\nname = ch_socks\r\ndescription = ch_socks\r\nproxyport = 5008\r\ndnsport = 10053\r\n```\r\n\nComment: i would suggest try to set `nat=yes`. My all servers are in hostonly mode, so with default values for those 2 entries everything works just fine. But in nat mode i guess you need to enable nat. restart router and cape services are required\nComment: Switched NAT to \"yes\" and same behaviour... You said that your servers are in host only mode. How to you connect to the Internet then? (Ex: when the malware needs to download the next stage)\r\nWhen I use the VMs manually, they have Internet access. Is there a way to disable rooter.sh at all?\r\n\r\n[Updated]\r\nI tested with \"route = none\" and it works now! I think that I misunderstood the purpose of this parameter. If you specify \"none\", rooter.sh does nothing and (in my case) it uses the system config -> Routing/NAT is performed by KVM.\nComment: We have cape-rooter service which enables desired network route for the vm,\r\nbut denies vm to discover other vms in the same network. You can enable\r\ninternet in routing.conf and select Internet, see documentation\r\n\r\nEl mar, 3 sept 2024, 14:36, Xavier Mertens ***@***.***>\r\nescribi\u00f3:\r\n\r\n> Switched NAT to \"yes\" and same behaviour... You said that your servers are\r\n> in host only mode. How to you connect to the Internet then? (Ex: when the\r\n> malware needs to download the next stage)\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2304#issuecomment-2326413222>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH37DHJOUPU4EIJEFH3DZUWUMRAVCNFSM6AAAAABNQP43NWVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDGMRWGQYTGMRSGI>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: so we can close this? in case that you see that any description can be improved, any suggestion is more than welcome\nComment: Closed! Tx!",
+  "Title: Default gateway lost after cron job execution!?\nBody: ## Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nThe following cron  job is executed daily:\r\necho \"5 0 */1 * * cd /opt/CAPEv2/utils/ && poetry run python utils/community.py -waf -cr && poetry run pips install -U flare-capa  && systemctl restart cape-processor 2>/dev/null\r\nAnd should not impact the system...\r\n\r\n# Current Behavior\r\n\r\nFor a few days, the cron job triggers network issues: my NIC (VMware) losts carrier and I loose connectivity with the server.\r\nI've seen for the last couple of days, after I sync with the latest git repo.\r\nI understand that I seems a bit strange to be related to CAPE but that's the only correlation I found :-)\r\nAny crazy idea? \r\n\r\n# Failure Information (for bugs)\r\n\r\n```\r\nSep  2 00:05:01 cape CRON[662628]: (root) CMD (cd /opt/CAPEv2/utils/ && python3 community.py -waf -cr && pip3 install -U flare-capa  && systemctl restart cape-processor 2>/dev/null)\r\nSep  2 00:05:01 cape CRON[662630]: (root) CMD (command -v debian-sa1 > /dev/null && debian-sa1 1 1)\r\nSep  2 00:05:07 cape python3[547545]:  * Detected change in '/opt/CAPEv2/modules/signatures/__init__.py', reloading\r\nSep  2 00:05:07 cape python3[1475]:  * Restarting with stat\r\nSep  2 00:05:08 cape systemd-networkd[855]: dirty-line: Link DOWN\r\nSep  2 00:05:08 cape systemd-networkd[855]: dirty-line: Lost carrier\r\nSep  2 00:05:08 cape systemd-udevd[662659]: Using default interface naming scheme 'v249'.\r\nSep  2 00:05:08 cape networkd-dispatcher[928]: WARNING:Unknown index 11 seen, reloading interface list\r\nSep  2 00:05:08 cape systemd-networkd[855]: dirty-line: Link UP\r\nSep  2 00:05:08 cape systemd-networkd[855]: dirty-line: Gained carrier\r\nSep  2 00:05:08 cape avahi-daemon[921]: Withdrawing address record for fe80::20c:29ff:fe95:41a9 on ens160.\r\nSep  2 00:05:08 cape avahi-daemon[921]: Leaving mDNS multicast group on interface ens160.IPv6 with address fe80::20c:29ff:fe95:41a9.\r\nSep  2 00:05:08 cape kernel: [221219.253003] vmxnet3 0000:03:00.0 ens160: intr type 3, mode 0, 5 vectors allocated\r\nSep  2 00:05:08 cape kernel: [221219.253406] vmxnet3 0000:03:00.0 ens160: NIC Link is Up 10000 Mbps\r\nSep  2 00:05:08 cape avahi-daemon[921]: Interface ens160.IPv6 no longer relevant for mDNS.\r\nSep  2 00:05:08 cape systemd-networkd[855]: ens160: Link DOWN\r\nSep  2 00:05:08 cape avahi-daemon[921]: Interface ens160.IPv4 no longer relevant for mDNS.\r\nSep  2 00:05:08 cape avahi-daemon[921]: Leaving mDNS multicast group on interface ens160.IPv4 with address 10.67.0.11.\r\nSep  2 00:05:08 cape avahi-daemon[921]: Withdrawing address record for 10.67.0.11 on ens160.\r\nSep  2 00:05:08 cape avahi-daemon[921]: Joining mDNS multicast group on interface ens160.IPv4 with address 10.67.0.11.\r\nSep  2 00:05:08 cape avahi-daemon[921]: New relevant interface ens160.IPv4 for mDNS.\r\nSep  2 00:05:08 cape avahi-daemon[921]: Registering new address record for 10.67.0.11 on ens160.IPv4.\r\nSep  2 00:05:08 cape systemd-networkd[855]: ens160: Lost carrier\r\nSep  2 00:05:08 cape systemd-networkd[855]: ens160: DHCPv6 lease lost\r\nSep  2 00:05:08 cape systemd-networkd[855]: ens160: Link UP\r\nSep  2 00:05:08 cape avahi-daemon[921]: Withdrawing address record for 10.67.0.11 on ens160.\r\nSep  2 00:05:08 cape avahi-daemon[921]: Leaving mDNS multicast group on interface ens160.IPv4 with address 10.67.0.11.\r\nSep  2 00:05:08 cape avahi-daemon[921]: Interface ens160.IPv4 no longer relevant for mDNS.\r\nSep  2 00:05:08 cape systemd-networkd[855]: ens160: Gained carrier\r\nSep  2 00:05:08 cape systemd-networkd[855]: ens160: Could not set route: Nexthop has invalid gateway. Network is unreachable\r\nSep  2 00:05:08 cape systemd-networkd[855]: ens160: Failed\r\n```\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | fb34305ec3db3fd2b2db6dac10980a3539e95e8b\r\n| OS version       | 22.04.4 LTS\r\n\r\n\nComment: thats very strange issue, i have no idea why systemd/networkd is involved here\nComment: I fully agree with you :-) Trying to understand the link between the cron job and network :)\r\n[Update]\r\nIt happens when the cape.service is restarted!\nComment: After more investigations, my problem was related to my other case... Seems stable now!\nComment: please close issues if they are solved",
+  "Title: Updates RAT King Parser to commit b85abe5\nBody: Hi CAPE Team!\r\n\r\nThis PR brings the CAPEv2 implementation of RAT King Parser (ported over by @doomedraven - thank you again \ud83d\udc96) to the [latest commit of the RAT King Parser](https://github.com/jeFF0Falltrades/rat_king_parser/commit/b85abe5fbcda6bc11829659d47feddc70083b502).\r\n\r\nThe updates included introduce a few key changes to the parser that produced better reliability of the parser across a large sample set of AsyncRAT/DcRAT/VenomRAT/QuasarRAT/XenoRAT/XWorm samples, particularly among obfuscated samples.\r\n\r\nI also swapped out the existing AsyncRAT and XWorm parsers in CAPEv2 with the RAT King Parser, as I believe RKP will be more robust than the existing configuration parsers as it's designed to not rely on specific config field names (as these are often obfuscated or changed by malware authors); However, if you would prefer to keep those existing parsers, please feel free to revert my changes.\r\n\r\nI tried to keep the changes minimal and align them with the CAPEv2 style guide, but would appreciate someone checking the format and testing the configuration parsers within CAPE as I do not have a local instance stood up yet to test on.\r\n\r\nLastly, I am using a specific set of YARA rules in the non-ported version of RAT King Parser to detect payloads that can be extracted with RKP; You can find those in the RKP repository, or in [my YARA signature repo](https://github.com/jeFF0Falltrades/YARA-Signatures/tree/master/Broadbased), if they are needed for testing, and the following samples (found in the RKP README) can also be downloaded and used for testing:\r\n\r\n```\r\n034941c1ea1b1ae32a653aab6371f760dfc4fc43db7c7bf07ac10fc9e98c849e\r\n0e19cefba973323c234322452dfd04e318f14809375090b4f6ab39282f6ba07e\r\n9d07ca4a98787aac65235cec31822246a0eb918094124a1dfe5a5fc11168e933\r\nfb0d45b0e48b0cdda2dd8c5a152f3c7a375c18d63e588f6a217c9d47f7d5199d\r\n6b99acfa5961591c39b3f889cf29970c1dd48ddb0e274f14317940cf279a4412\r\n83892117f96867db66c1e6676822a4c0d6691cde60449ee47457f4cc31410fce\r\n9bfed30be017e62e482a8792fb643a0ca4fa22167e4b239cde37b70db241f2c4\r\na76af3d67a95a22efd83d016c9142b7ac9974068625516de23e77a5ac3dd051b\r\nd5028e10a756f2df677f32ebde105d7de8df37e253c431837c8f810260f4428e\r\ndb09db5bdf1dcf6e607936a6abbe5ce91efbbf9ce136efc3bdb45222710792fa\r\n```\r\n\r\nPlease let me know if there are any questions or edits to be made, and thank you for your continued contributions to the community!\nComment: hello, oh nice, thank you for update, i will try to review it in few days and add tests\nComment: @doomedraven : Thank you again so much for the time you spent reviewing, as well as the samples you sent over.\r\n\r\nI was planning on doing a refactor of RKP for a while now, and after seeing your comments in private chat, I decided that now was as good of a time as any, and spent the last few weeks refactoring RKP to what is now v3.0.0.\r\n\r\nI've now updated this PR with that new code, and whenever you have the time, I'd love to know if this passes with the samples that were giving you trouble before (and hopefully it hasn't broken anything new\ud83d\ude04 ).\r\n\r\nPlease let me know if you run into any issues or see anything out of sorts.\r\n\r\nThanks as always to you and the team!\nComment: Right I've begun reviewing this, and have ended up having to create a PR to make some changes. This seems over-complicated when my changes were so trivial but I couldn't work out a better way.\r\n\r\nI have also pushed some corresponding updates to the yara sigs in community repo (although I'm considering moving these to main repo as I think if the main repo has a parser for a family, the yara should be there too).\nComment: Not sure what has gone wrong and why my mods haven't appeared here yet...\nComment: I cannot be bothered to try to understand why it didn't work so I will just make the minimal changes in line!\r\n\r\nThank you @jeFF0Falltrades for all this work!\nComment: Thanks to you, @kevoreilly , for the diligent review!",
+  "Title: Analysis Package for Batch Scripts\nBody: None\nComment: hey, thank you, maybe instead of `bat.py` it should be called `batch.py`?\nComment: > hey, thank you, maybe instead of `bat.py` it should be called `batch.py`?\r\n\r\nhmmm, I think you're right \nComment: thanks",
+  "Title: ps_watch\nBody: None",
+  "Title: Fix AWS autoscaling premature machine deletion.\nBody: PR ready for review. AWS user confirmed changes fixed their premature machine deletion issue.\nComment: thank you for update",
+  "Title: Update Latrodectus yara and parser\nBody: Changes for v1.4+",
+  "Title: QA: How does Cape pull data from virtual machines ?\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\nI am reading the source for the project (am a bit lost), i want to understand how does cape pull data from virtual machines. I know capemon is used to generate log (syscall log and other stuff)  and that data is written to disk (after getting file name from `GetResultsPath` ). How is this data sent over to the cape.db or mongodb for processing.\r\n\r\nPlease help answer few questions\r\n+ is the data synchronously sent over to the host machine in live time ?\r\n+ how is data written to disk protected from ransomware samples being detonated in the sandbox ?\r\n+ which module or source file is responsible for reciving the data and where is it stored before the processing/analyzing is run ?\r\n\r\nThank you for the project. I want to start contributing to the project but the code documentation is a bit lacking therefore starting a this issue. If there is a better way to talk about this project like (discord/slack/mattermost/matrix) please link me to that channel.\nComment: Hey I'm on phone so partial answer\r\nCheck analyzer/windows/analyzer.py it does all what you looking for. Most files are streamed to host directly, some are submitted at the end of the job\nComment: As doomed says, the data is streamed via pipes from analyzer in the guest to the results server on the host, for which the code is in ``lib/cuckoo/core/resultserver.py``. These are written to disk on the server side ready for processing in the ``storage/analyses/X`` subdirectory.\r\n\r\nSince this data is not written to disk on the Windows side, there is no need to protect it from ransomware. However, there are still some files written to disk (such as unpacked payloads) that could be trashed - there is a limited protection from file api hooks here to help avoid this: see for example a hook such as that for ``FindFirstFileA`` in the hook source: ``https://github.com/kevoreilly/capemon/blob/capemon/hook_file.c``\nComment: This answers that. Thanks :)",
+  "Title: Support pcap_ng captures\nBody: None\nComment: oh that nice, but we don't write it right?\nComment: No. Only temporarily. \nComment: I've got some changes running locally that dump pcapng's with embedded TLS keys. I'll create an upstream PR at some point this week.",
+  "Title: fix broken aux conf link\nBody: None",
+  "Title: Only import enabled auxiliary modules\nBody: None",
+  "Title: Fixes an import bug with the DNS_ETW auxiliary module\nBody: DNS_ETW references several entities that are part of the pywintrace library. If the pywintrace library isn't present on the VM, the analyzer fails when attempting to import the DNS_ETW module.\r\n\r\nThis change moves the code that references pywintrace into a conditional statement, to prevent the analyzer from exiting prematurely.",
+  "Title: Add `enabled` checks in `init`, `start`, and `stop`.\nBody: Add `enabled` check on AzSniffer auxiliary module.\r\n\r\nRelevant issue: https://github.com/kevoreilly/CAPEv2/issues/2254\nComment: thanks, i guess the best will be to do the same that @enzok did yesterday to analyzer, to check if enabled before even import it",
+  "Title: Azure standard vmss fix\nBody: None\nComment: Following. I am deploying via Azure, let me know if you want a hand testing.\nComment: Hi @ChrisThibodeaux, yes hand testing would be good. This is still a work in progress so any feedback is appreciated. I unfortunately don't much time to work on this so any help is more than welcome.\nComment: Should we merge this one?\nComment: @doomedraven Could you give me a couple hours on this one? I am a tiny bit concerned with the changes with quotas.\r\n\r\nIt may prevent my setup from being able to scale.\nComment: @cccs-mog If my quota limit is 10vCPU and my machines each have 2vCPU, would it ever scale beyond a single instance?\r\n\r\nI would like to be able to take advantage of the quota check that you are using. Is it possible to place the check's CPU multiplier (the `5` in `int(self.instance_type_cpus * 5)`) as a config item with a default of 5?\nComment: Probably not. Yeah that number is quite high for small setup and would make sense to be able to lower/edit as a config value. @ChrisThibodeaux  \nComment: any time that you need :)thanks\nComment: @doomedraven Thanks, all done on my end.\r\n\r\n@cccs-mog Working wonderfully, loving the quota check. I'd seen error logs crop up dealing with quota limits before, so this gives peace of mind. Cheers!\nComment: i guess you need to push PR?\nComment: or this one?",
+  "Title: Add timeout to linux FileCollector stop\nBody: This was blocking everything else until the host timeout was hit",
+  "Title: Fix win10_disabler.ps1 error\nBody: None\nComment: Thank you\nComment: thanks",
+  "Title: build(deps): bump twisted from 23.10.0 to 24.7.0\nBody: Bumps [twisted](https://github.com/twisted/twisted) from 23.10.0 to 24.7.0.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a href=\"https://github.com/twisted/twisted/releases\">twisted's releases</a>.</em></p>\n<blockquote>\n<h1>Twisted 24.7.0 (2024-08-08)</h1>\n<p>24.7.0.rc2 fixed an unreleased regression caused by PR 12109. (<a href=\"https://redirect.github.com/twisted/twisted/issues/12279\">#12279</a>)\nNo other changes since 24.7.0.rc2</p>\n<h2>Features</h2>\n<ul>\n<li>twisted.protocols.ftp now supports the IPv6 extensions defined in RFC 2428. (<a href=\"https://redirect.github.com/twisted/twisted/issues/9645\">#9645</a>)</li>\n<li>twisted.internet.defer.inlineCallbacks can now yield a coroutine. (<a href=\"https://redirect.github.com/twisted/twisted/issues/9972\">#9972</a>)</li>\n<li>twisted.python._shellcomp.ZshArgumentsGenerator was updated for Python 3.13. (<a href=\"https://redirect.github.com/twisted/twisted/issues/12065\">#12065</a>)</li>\n<li>twisted.web.wsgi request environment now contains the peer port number as <code>REMOTE_PORT</code>. (<a href=\"https://redirect.github.com/twisted/twisted/issues/12096\">#12096</a>)</li>\n<li>twisted.internet.defer.Deferred.callback() and twisted.internet.defer.Deferred.addCallbacks() no longer use <code>assert</code> to check the type of the arguments. You should now use type checking to validate your code. These changes were done to reduce the CPU usage. (<a href=\"https://redirect.github.com/twisted/twisted/issues/12122\">#12122</a>)</li>\n<li>Added two new methods, twisted.logger.Logger.failuresHandled and twisted.logger.Logger.failureHandler, which allow for more concise and convenient handling of exceptions when dispatching out to application code.  The former can arbitrarily customize failure handling at the call site, and the latter can be used for performance-sensitive cases where no additional information needs to be logged. (<a href=\"https://redirect.github.com/twisted/twisted/issues/12188\">#12188</a>)</li>\n<li>twisted.internet.defer.Deferred.addCallback now runs about 10% faster. (<a href=\"https://redirect.github.com/twisted/twisted/issues/12223\">#12223</a>)</li>\n<li>twisted.internet.defer.Deferred error handling is now faster, taking 40% less time to run. (<a href=\"https://redirect.github.com/twisted/twisted/issues/12227\">#12227</a>)</li>\n</ul>\n<h2>Bugfixes</h2>\n<ul>\n<li>Fixed unreleased regression caused by PR <a href=\"https://redirect.github.com/twisted/twisted/issues/12109\">#12109</a>. (<a href=\"https://redirect.github.com/twisted/twisted/issues/12279\">#12279</a>)</li>\n<li>twisted.internet.ssl.Certificate.<strong>repr</strong> can now handle certificates without a common name (CN) in the certificate itself or the signing CA. (<a href=\"https://redirect.github.com/twisted/twisted/issues/5851\">#5851</a>)</li>\n<li>Type annotations have been added to twisted.conch.interfaces.IKnownHostEntry and its implementations, twisted.conch.client.knownhosts.PlainHost and twisted.conch.client.knownhosts.HashedHost, correcting a variety of type confusion issues throughout the conch client code. (<a href=\"https://redirect.github.com/twisted/twisted/issues/9713\">#9713</a>)</li>\n<li>twisted.python.failure.Failure once again utilizes the custom pickling logic it used to in the past. (<a href=\"https://redirect.github.com/twisted/twisted/issues/12112\">#12112</a>)</li>\n<li>twisted.conch.client.knownhosts.KnownHostsFile.verifyHostKey no longer logs an exception when automatically adding an IP address host key, which means the interactive <code>conch</code> command-line no longer will either. (<a href=\"https://redirect.github.com/twisted/twisted/issues/12141\">#12141</a>)</li>\n</ul>\n<h2>Improved Documentation</h2>\n<ul>\n<li>The IRC server example found in the documentation was updated for readability. (<a href=\"https://redirect.github.com/twisted/twisted/issues/12097\">#12097</a>)</li>\n<li>Remove contextvars from list of optional dependencies. (<a href=\"https://redirect.github.com/twisted/twisted/issues/12128\">#12128</a>)</li>\n<li>The documentation for installing Twisted was moved into a single page. (<a href=\"https://redirect.github.com/twisted/twisted/issues/12145\">#12145</a>)</li>\n<li>The project's compatibility policy now clearly indicates that the GitHub Actions test matrix defines the supported platforms. (<a href=\"https://redirect.github.com/twisted/twisted/issues/12167\">#12167</a>)</li>\n<li>Updated imap4client.py example, it no longer references Python 2. (<a href=\"https://redirect.github.com/twisted/twisted/issues/12252\">#12252</a>)</li>\n</ul>\n<h2>Deprecations and Removals</h2>\n<ul>\n<li>twisted.internet.defer.returnValue has been deprecated. You can replace it with the standard <code>return</code> statement. (<a href=\"https://redirect.github.com/twisted/twisted/issues/9930\">#9930</a>)</li>\n<li>The <code>twisted-iocpsupport</code> is no longer a hard dependency on Windows.\nThe IOCP support is now installed together with the other Windows soft\ndependencies via <code>twisted[windows-platform]</code>. (<a href=\"https://redirect.github.com/twisted/twisted/issues/11893\">#11893</a>)</li>\n<li>twisted.python.deprecate helper function will now always strip whitespaces from the docstrings.\nThis is done to have the same behaviour as with Python 3.13. (<a href=\"https://redirect.github.com/twisted/twisted/issues/12063\">#12063</a>)</li>\n<li>twisted.conch.manhole.ManholeInterpreter.write, twisted.conch.manhole.ManholeInterpreter.addOutput, twisted.mail.imap4.IMAP4Server.sendUntaggedResponse <code>async</code> argument, deprecated since 18.9.0, has been removed. (<a href=\"https://redirect.github.com/twisted/twisted/issues/12130\">#12130</a>)</li>\n<li>twisted.web.soap was removed.</li>\n</ul>\n<!-- raw HTML omitted -->\n</blockquote>\n<p>... (truncated)</p>\n</details>\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/twisted/twisted/blob/trunk/NEWS.rst\">twisted's changelog</a>.</em></p>\n<blockquote>\n<h1>Twisted 24.7.0 (2024-08-08)</h1>\n<p>24.7.0.rc2 fixed an unreleased regression caused by PR 12109. (<a href=\"https://redirect.github.com/twisted/twisted/issues/12279\">#12279</a>)\nNo other changes since 24.7.0.rc2</p>\n<h2>Security Advisories</h2>\n<ul>\n<li>twisted.web.util.redirectTo now HTML-escapes the provided URL in the fallback response body it returns (GHSA-cf56-g6w6-pqq2, CVE-2024-41810). (<a href=\"https://redirect.github.com/twisted/twisted/issues/9839\">#9839</a>)</li>\n<li>The HTTP 1.0 and 1.1 server provided by twisted.web could process pipelined HTTP requests out-of-order, possibly resulting in information disclosure (CVE-2024-41671/GHSA-c8m8-j448-xjx7) (<a href=\"https://redirect.github.com/twisted/twisted/issues/12248\">#12248</a>)</li>\n</ul>\n<h2>Features</h2>\n<ul>\n<li>twisted.protocols.ftp now supports the IPv6 extensions defined in RFC 2428. (<a href=\"https://redirect.github.com/twisted/twisted/issues/9645\">#9645</a>)</li>\n<li>twisted.internet.defer.inlineCallbacks can now yield a coroutine. (<a href=\"https://redirect.github.com/twisted/twisted/issues/9972\">#9972</a>)</li>\n<li>twisted.python._shellcomp.ZshArgumentsGenerator was updated for Python 3.13. (<a href=\"https://redirect.github.com/twisted/twisted/issues/12065\">#12065</a>)</li>\n<li>twisted.web.wsgi request environment now contains the peer port number as <code>REMOTE_PORT</code>. (<a href=\"https://redirect.github.com/twisted/twisted/issues/12096\">#12096</a>)</li>\n<li>twisted.internet.defer.Deferred.callback() and twisted.internet.defer.Deferred.addCallbacks() no longer use <code>assert</code> to check the type of the arguments. You should now use type checking to validate your code. These changes were done to reduce the CPU usage. (<a href=\"https://redirect.github.com/twisted/twisted/issues/12122\">#12122</a>)</li>\n<li>Added two new methods, twisted.logger.Logger.failuresHandled and twisted.logger.Logger.failureHandler, which allow for more concise and convenient handling of exceptions when dispatching out to application code.  The former can arbitrarily customize failure handling at the call site, and the latter can be used for performance-sensitive cases where no additional information needs to be logged. (<a href=\"https://redirect.github.com/twisted/twisted/issues/12188\">#12188</a>)</li>\n<li>twisted.internet.defer.Deferred.addCallback now runs about 10% faster. (<a href=\"https://redirect.github.com/twisted/twisted/issues/12223\">#12223</a>)</li>\n<li>twisted.internet.defer.Deferred error handling is now faster, taking 40% less time to run. (<a href=\"https://redirect.github.com/twisted/twisted/issues/12227\">#12227</a>)</li>\n</ul>\n<h2>Bugfixes</h2>\n<ul>\n<li>twisted.internet.ssl.Certificate.<strong>repr</strong> can now handle certificates without a common name (CN) in the certificate itself or the signing CA. (<a href=\"https://redirect.github.com/twisted/twisted/issues/5851\">#5851</a>)</li>\n<li>Type annotations have been added to twisted.conch.interfaces.IKnownHostEntry and its implementations, twisted.conch.client.knownhosts.PlainHost and twisted.conch.client.knownhosts.HashedHost, correcting a variety of type confusion issues throughout the conch client code. (<a href=\"https://redirect.github.com/twisted/twisted/issues/9713\">#9713</a>)</li>\n<li>twisted.python.failure.Failure once again utilizes the custom pickling logic it used to in the past. (<a href=\"https://redirect.github.com/twisted/twisted/issues/12112\">#12112</a>)</li>\n<li>twisted.conch.client.knownhosts.KnownHostsFile.verifyHostKey no longer logs an exception when automatically adding an IP address host key, which means the interactive <code>conch</code> command-line no longer will either. (<a href=\"https://redirect.github.com/twisted/twisted/issues/12141\">#12141</a>)</li>\n</ul>\n<h2>Improved Documentation</h2>\n<ul>\n<li>The IRC server example found in the documentation was updated for readability. (<a href=\"https://redirect.github.com/twisted/twisted/issues/12097\">#12097</a>)</li>\n<li>Remove contextvars from list of optional dependencies. (<a href=\"https://redirect.github.com/twisted/twisted/issues/12128\">#12128</a>)</li>\n<li>The documentation for installing Twisted was moved into a single page. (<a href=\"https://redirect.github.com/twisted/twisted/issues/12145\">#12145</a>)</li>\n<li>The project's compatibility policy now clearly indicates that the GitHub Actions test matrix defines the supported platforms. (<a href=\"https://redirect.github.com/twisted/twisted/issues/12167\">#12167</a>)</li>\n<li>Updated imap4client.py example, it no longer references Python 2. (<a href=\"https://redirect.github.com/twisted/twisted/issues/12252\">#12252</a>)</li>\n</ul>\n<h2>Deprecations and Removals</h2>\n<ul>\n<li>twisted.internet.defer.returnValue has been deprecated. You can replace it with the standard <code>return</code> statement. (<a href=\"https://redirect.github.com/twisted/twisted/issues/9930\">#9930</a>)</li>\n</ul>\n<!-- raw HTML omitted -->\n</blockquote>\n<p>... (truncated)</p>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/twisted/twisted/commit/8cb7d2bcf5dd09dd5b98b0da7b9d77d86581016f\"><code>8cb7d2b</code></a> python -m incremental.update Twisted --newversion 24.7.0</li>\n<li><a href=\"https://github.com/twisted/twisted/commit/05b4a87fdc55153187ca1445a85f16f3478d78e8\"><code>05b4a87</code></a> Update news.</li>\n<li><a href=\"https://github.com/twisted/twisted/commit/a30fcf654e0e49d253d93867237a11594f1ae92c\"><code>a30fcf6</code></a> Fix conflict.</li>\n<li><a href=\"https://github.com/twisted/twisted/commit/db61dbb794367dc8de97c06d3a8c3ae9c2c4e4b6\"><code>db61dbb</code></a> tox -e towncrier</li>\n<li><a href=\"https://github.com/twisted/twisted/commit/34dc72e14ee04504fea32ba34d747da893637600\"><code>34dc72e</code></a> python -m incremental.update Twisted --rc</li>\n<li><a href=\"https://github.com/twisted/twisted/commit/4814526f91927a257dd941c64c114ef8560120f9\"><code>4814526</code></a> Fix regression in CopiedFailure</li>\n<li><a href=\"https://github.com/twisted/twisted/commit/b51c18600629d5c2263fd2a714659b7dd716f12c\"><code>b51c186</code></a> Move securitu fixes to a separate security advisories.</li>\n<li><a href=\"https://github.com/twisted/twisted/commit/c0b035c85b1b42731c0f7a68900ede4c842b45c9\"><code>c0b035c</code></a> Fix typos</li>\n<li><a href=\"https://github.com/twisted/twisted/commit/6970f5c6503e94f6c9ab76fa04fff8ae71884386\"><code>6970f5c</code></a> Fix typo.</li>\n<li><a href=\"https://github.com/twisted/twisted/commit/6d157ca99cccf2479dfb7dcb7e9dd4d9b748fe59\"><code>6d157ca</code></a> tox -e towncrier</li>\n<li>Additional commits viewable in <a href=\"https://github.com/twisted/twisted/compare/twisted-23.10.0...twisted-24.7.0\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=twisted&package-manager=pip&previous-version=23.10.0&new-version=24.7.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: fix quickbind test\nBody: None",
+  "Title: Update Quickbind parser\nBody: None",
+  "Title: Optimize Remcos config extractor - get version string\nBody: RegEx misses versions x.x e.g. 1.7 pro\r\n\r\n![Fix_Version_String_1](https://github.com/user-attachments/assets/02850f4b-d7c7-494b-845f-b2a7b68c0370)\r\n---->\r\n![Fix_Version_String_2](https://github.com/user-attachments/assets/87aa257d-62a7-49b2-a2cc-5276f4c0e674)\r\n\r\nSample to reproduce: \r\n[c42c37c46206d1beab2ca15b75af8b1f8b9c0ace15155f8ce934749ca05ea250](https://www.virustotal.com/gui/file/c42c37c46206d1beab2ca15b75af8b1f8b9c0ace15155f8ce934749ca05ea250)\r\n",
+  "Title: Implement curdir in linux\nBody: None",
+  "Title: Exclude the FOG Server IP\nBody: None\nComment: well is kinda ok, but by default it will be `<FOG server IP>` so need some logic to check if that machinery is used first",
+  "Title: ETW for DNS\nBody: Could be made as a community auxiliary. This is for DNS but might be used as base for other ETW efforts. ",
+  "Title: Update Quickbind yara rule\nBody: None",
+  "Title: Support task local file streaming\nBody: None",
+  "Title: keyError = ttd modules.packages.exe encountered the unhandled exception exe.py\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [Y] I am running the latest version\r\n- [Y] I did read the README!\r\n- [Y] I checked the documentation and found no answer\r\n- [Y] I checked to make sure that this issue has not already been filed\r\n- [Y] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [Y] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nThe analysis should complete successfully, gathering all the required data.\r\n\r\n\r\n# Current Behavior\r\n\r\nCurrently, the analysis fails with the following error:\r\n\r\n\r\n\r\n> 2024-08-18 18:21:19,822 [root] INFO: You probably submitted the job with wrong package\r\nTraceback (most recent call last):\r\n  File \"C:\\tmp8jgunaps\\analyzer.py\", line 385, in choose_package\r\n    pkg_module = importlib.import_module(package_name)\r\n  File \"C:\\Users\\cape\\AppData\\Local\\Programs\\Python\\Python310-32\\lib\\importlib\\__init__.py\", line 126, in import_module\r\n    return _bootstrap._gcd_import(name[level:], package, level)\r\n  File \"<frozen importlib._bootstrap>\", line 1050, in _gcd_import\r\n  File \"<frozen importlib._bootstrap>\", line 1027, in _find_and_load\r\n  File \"<frozen importlib._bootstrap>\", line 1006, in _find_and_load_unlocked\r\n  File \"<frozen importlib._bootstrap>\", line 688, in _load_unlocked\r\n  File \"<frozen importlib._bootstrap_external>\", line 879, in exec_module\r\n  File \"<frozen importlib._bootstrap_external>\", line 1017, in get_code\r\n  File \"<frozen importlib._bootstrap_external>\", line 947, in source_to_code\r\n  File \"<frozen importlib._bootstrap>\", line 241, in _call_with_frames_removed\r\n  File \"C:\\tmp8jgunaps\\modules\\packages\\exe.py\", line 29\r\n    \tttd = self.options.get(\"ttd\",0)\r\n    ^\r\nTabError: inconsistent use of tabs and spaces in indentation\r\n\r\n> The above exception was the direct cause of the following exception:\r\nTraceback (most recent call last):\r\n  File \"C:\\tmp8jgunaps\\analyzer.py\", line 1524, in <module>\r\n    success = analyzer.run()\r\n  File \"C:\\tmp8jgunaps\\analyzer.py\", line 424, in run\r\n    self.package_name, self.package = self.choose_package()\r\n  File \"C:\\tmp8jgunaps\\analyzer.py\", line 390, in choose_package\r\n    raise CuckooError(f'Unable to import package \"{self.package_name}\", does not exist') from e\r\nlib.common.exceptions.CuckooError: Unable to import package \"None\", does not exist \r\n\r\nI attempted to fix this by adding:\r\n\r\n` ttd = self.options.get(\"ttd\", 0) `\r\n\r\nso a null is always available for ttd but it made it worse \r\n\r\n\r\nI assume that since this error occurs, the rest of the analysis process does not proceed correctly, leading to an incomplete analysis.\r\n\r\n# package \r\n/analyser/windows/modules/packages/exe.py\r\n\r\n# Failure Information (for bugs)\r\n\r\nI've reinstalled multiple times, but each time I upload a PE file, I get this error, and the analysis doesn't proceed past this point. I've reviewed all the configurations, and everything appears to be in order.\r\n\r\n\r\n![image](https://github.com/user-attachments/assets/0563cd6d-f333-4043-96ec-d05ffedb2a34)\r\n\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 22.04, Windows 10\r\n\r\n## Failure Logs\r\n\r\nThe core CAPE service logs appear fine, but the processor logs show no FLARE CAPA hits. Below are some key excerpts:\r\n\r\n>Aug 18 09:32:46 cape-virtual-machine python3[7805]: 2024-08-18 09:32:46,323 [root] INFO: Processing analysis data\r\nAug 18 09:46:19 cape-virtual-machine python3[7805]: 2024-08-18 09:46:19,048 [root] INFO: Processing analysis data for Task #1\r\nAug 18 09:46:19 cape-virtual-machine python3[7805]: Missing machinery-required libraries.\r\nAug 18 09:46:19 cape-virtual-machine python3[7805]: poetry run python -m pip install azure-identity msrest msrestazure azure-mgmt-compute azure-mgmt-network azure-mgmt-storage azure-storage-blob\r\nAug 18 09:46:21 cape-virtual-machine python3[8836]: 2024-08-18 09:46:21,062 [Task 1] [vivisect.parsers.pe] INFO: loadPeIntoWorkspace:  loading '/opt/CAPEv2/storage/binaries/fffbd78bb2682da5b60d2cb6173c1b8354ff47fa5ff95b22fd2847dc92a9f47d' (size: 0x26200c) at 0x400000\r\nAug 18 09:46:21 cape-virtual-machine python3[8836]: 2024-08-18 09:46:21,115 [Task 1] [vivisect.parsers.pe] INFO: PE loader: Arch: 'i386'        Format: pe        Platform: 'windows'        Filename: '/opt/CAPEv2/storage/binaries/fffbd78bb2682da5b60d2cb6173c1b8354ff47fa5ff95b22fd2847dc92a9f47d'        BaseAddr: 0x400000\r\nAug 18 09:46:21 cape-virtual-machine python3[8836]: 2024-08-18 09:46:21,115 [Task 1] [vivisect.parsers.pe] INFO: PE Imagebase: 0x400000        entry: 0x65f67e        codebase: 0x2000        codesize: 0x25d800\r\nAug 18 09:46:21 cape-virtual-machine python3[8836]: 2024-08-18 09:46:21,120 [Task 1] [vivisect.parsers.pe] INFO: PE dllname: None        fvivname: '/opt/CAPEv2/storage/binaries/fffbd78bb2682da5b60d2cb6173c1b8354ff47fa5ff95b22fd2847dc92a9f47d'        md5: '17a825e38324e6efc7261122a5bd3330'        sha256: 'FFFBD78BB2682DA5B60D2CB6173C1B8354FF47FA5FF95B22FD2847DC92A9F47D'\r\nAug 18 09:46:21 cape-virtual-machine python3[8836]: 2024-08-18 09:46:21,134 [Task 1] [vivisect.parsers.pe] INFO: PE relocation: 0x65f680 -> 'fffbd78bb2682da5b60d2cb6173c1b8354ff47fa5ff95b22fd2847dc92a9f47d'+0x2000\r\nAug 18 09:46:21 cape-virtual-machine python3[8836]: 2024-08-18 09:46:21,134 [Task 1] [vivisect.parsers.pe] INFO: Skipping PE Relocation type: 0 at 2486272 (no handler)\r\nAug 18 09:46:21 cape-virtual-machine python3[8836]: 2024-08-18 09:46:21,857 [Task 1] [vivisect.analysis] INFO: Vivisect Analysis Setup Hooks Complete\r\nAug 18 09:46:21 cape-virtual-machine python3[8836]: 2024-08-18 09:46:21,859 [Task 1] [vivisect] INFO: Beginning analysis...\r\nAug 18 09:46:21 cape-virtual-machine python3[8836]: 2024-08-18 09:46:21,859 [Task 1] [vivisect] INFO: Extended Analysis: vivisect.analysis.generic.linker\r\nAug 18 09:46:21 cape-virtual-machine python3[8836]: 2024-08-18 09:46:21,859 [Task 1] [vivisect.analysis.generic.linker] INFO: linking Imports with Exports\r\nAug 18 09:46:21 cape-virtual-machine python3[8836]: 2024-08-18 09:46:21,859 [Task 1] [vivisect] INFO: Extended Analysis: vivisect.analysis.generic.entrypoints\r\nAug 18 09:46:21 cape-virtual-machine python3[8836]: 2024-08-18 09:46:21,864 [Task 1] [vivisect] INFO: Extended Analysis: vivisect.analysis.pe\r\nAug 18 09:46:21 cape-virtual-machine python3[8836]: 2024-08-18 09:46:21,864 [Task 1] [vivisect] INFO: Extended Analysis: vivisect.analysis.generic.relocations\r\nAug 18 09:46:21 cape-virtual-machine python3[8836]: 2024-08-18 09:46:21,864 [Task 1] [vivisect] INFO: Extended Analysis: vivisect.analysis.ms.vftables\r\nAug 18 09:46:25 cape-virtual-machine python3[8836]: 2024-08-18 09:46:25,347 [Task 1] [vivisect] INFO: Extended Analysis: vivisect.analysis.generic.emucode\r\nAug 18 09:46:25 cape-virtual-machine python3[8836]: 2024-08-18 09:46:25,349 [Task 1] [vivisect] INFO: emucode: 0 new functions defined (now total: 1)\r\nAug 18 09:46:25 cape-virtual-machine python3[8836]: 2024-08-18 09:46:25,349 [Task 1] [vivisect] INFO: Extended Analysis: vivisect.analysis.i386.importcalls\r\nAug 18 09:46:25 cape-virtual-machine python3[8836]: 2024-08-18 09:46:25,354 [Task 1] [vivisect] INFO: Extended Analysis: vivisect.analysis.i386.golang\r\nAug 18 09:46:25 cape-virtual-machine python3[8836]: 2024-08-18 09:46:25,355 [Task 1] [vivisect] INFO: Extended Analysis: vivisect.analysis.ms.localhints\r\nAug 18 09:46:25 cape-virtual-machine python3[8836]: 2024-08-18 09:46:25,355 [Task 1] [vivisect] INFO: Extended Analysis: vivisect.analysis.generic.funcentries\r\nAug 18 09:46:32 cape-virtual-machine python3[8836]: 2024-08-18 09:46:32,071 [Task 1] [vivisect] INFO: Extended Analysis: vivisect.analysis.ms.msvcfunc\r\nAug 18 09:46:32 cape-virtual-machine python3[8836]: 2024-08-18 09:46:32,071 [Task 1] [vivisect] INFO: Extended Analysis: vivisect.analysis.generic.thunks\r\nAug 18 09:46:32 cape-virtual-machine python3[8836]: 2024-08-18 09:46:32,071 [Task 1] [vivisect] INFO: Extended Analysis: vivisect.analysis.generic.strconst\r\nAug 18 09:46:32 cape-virtual-machine python3[8836]: 2024-08-18 09:46:32,071 [Task 1] [vivisect] INFO: ...analysis complete! (10 sec)\r\nAug 18 09:46:33 cape-virtual-machine python3[8836]: 2024-08-18 09:46:33,203 [Task 1] [vivisect] INFO: Percentage of discovered executable surface area: 0.0% (10 / 2480128)\r\nAug 18 09:46:33 cape-virtual-machine python3[8836]: 2024-08-18 09:46:33,204 [Task 1] [vivisect] INFO:    Xrefs/Blocks/Funcs:                             (2 / 1 / 1)\r\nAug 18 09:46:33 cape-virtual-machine python3[8836]: 2024-08-18 09:46:33,204 [Task 1] [vivisect] INFO:    Locs,  Ops/Strings/Unicode/Nums/Ptrs/Vtables:   (15:  1 / 0 / 0 / 6 / 0 / 0)\r\nAug 18 09:46:39 cape-virtual-machine python3[8836]: 2024-08-18 09:46:39,812 [Task 1] [lib.cuckoo.common.integrations.capa] INFO: FLARE CAPA -> No process data available\r\nAug 18 09:46:40 cape-virtual-machine python3[7805]: 2024-08-18 09:46:40,096 [root] INFO: Reports generation completed for Task #1 \r\n\r\n\r\nIt seems that the analysis is failing due to missing process data as indicated by this log:\r\n\r\n ` Aug 18 09:46:39 cape-virtual-machine python3[8836]: 2024-08-18 09:46:39,812 [Task 1] [lib.cuckoo.common.integrations.capa] INFO: FLARE CAPA -> No process data available `\r\n\r\n\r\n\nComment: ttd=0 in options fixed the issue for me\nComment: hello, thanks for reporting it, when you have a fix it would be appreciated that you directly submit pull request with suggested fix, will fix it\nComment: This should be fixed in https://github.com/kevoreilly/CAPEv2/commit/5ae84cc98dc9ab2bee4d26d9b53d79b8f12ece4d - apologies that was my fault - I am still unsure why no exception was produced on my dev instance, and why a key error is returned from ``get()`` dictionary method - but this will fix it.",
+  "Title: win10_disabler.ps1 error\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nwin10_disabler.ps1 runs no error.  \r\n\r\n# Current Behavior\r\n\r\nThe output shows it has 3 errors:  \r\n```\r\nPS C:\\Users\\alice\\Desktop> .\\win10_disabler.ps1\r\nDisabling Windows defender features...\r\n\r\n\r\nDisableAntiSpyware : 1\r\nPSPath             : Microsoft.PowerShell.Core\\Registry::HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows Defender\r\nPSParentPath       : Microsoft.PowerShell.Core\\Registry::HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\r\nPSChildName        : Windows Defender\r\nPSDrive            : HKLM\r\nPSProvider         : Microsoft.PowerShell.Core\\Registry\r\n\r\nSet-MpPreference : \u627e\u4e0d\u5230\u63a5\u53d7\u5b9e\u9645\u53c2\u6570\u201cDisableAntiSpyware\u201d\u7684\u4f4d\u7f6e\u5f62\u5f0f\u53c2\u6570\u3002\r\n\u6240\u5728\u4f4d\u7f6e C:\\Users\\alice\\Desktop\\win10_disabler.ps1:15 \u5b57\u7b26: 1\r\n+ Set-MpPreference DisableAntiSpyware $true -ExclusionPath C:\\ -Disable ...\r\n+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n    + CategoryInfo          : InvalidArgument: (:) [Set-MpPreference]\uff0cParameterBindingException\r\n    + FullyQualifiedErrorId : PositionalParameterNotFound,Set-MpPreference\r\n\r\nDisabling Firewall...\r\nDisabling SmartScreen Filter...\r\nSecurity_HKLM_only : 0\r\nPSPath             : Microsoft.PowerShell.Core\\Registry::HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\CurrentVersion\\Internet Settings\r\nPSParentPath       : Microsoft.PowerShell.Core\\Registry::HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\CurrentVersion\r\nPSChildName        : Internet Settings\r\nPSDrive            : HKLM\r\nPSProvider         : Microsoft.PowerShell.Core\\Registry\r\n\r\nProperty      : {}\r\nPSPath        : Microsoft.PowerShell.Core\\Registry::HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\CurrentVersion\\Internet Settings\\Zones\r\nPSParentPath  : Microsoft.PowerShell.Core\\Registry::HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\CurrentVersion\\Internet Settings\r\nPSChildName   : Zones\r\nPSDrive       : HKLM\r\nPSProvider    : Microsoft.PowerShell.Core\\Registry\r\nPSIsContainer : True\r\nSubKeyCount   : 0\r\nView          : Default\r\nHandle        : Microsoft.Win32.SafeHandles.SafeRegistryHandle\r\nValueCount    : 0\r\nName          : HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\CurrentVersion\\Internet Settings\\Zones\r\n\r\nProperty      : {}\r\nPSPath        : Microsoft.PowerShell.Core\\Registry::HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\CurrentVersion\\Internet Settings\\Zones\\2\r\nPSParentPath  : Microsoft.PowerShell.Core\\Registry::HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\CurrentVersion\\Internet Settings\\Zones\r\nPSChildName   : 2\r\nPSDrive       : HKLM\r\nPSProvider    : Microsoft.PowerShell.Core\\Registry\r\nPSIsContainer : True\r\nSubKeyCount   : 0\r\nView          : Default\r\nHandle        : Microsoft.Win32.SafeHandles.SafeRegistryHandle\r\nValueCount    : 0\r\nName          : HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\CurrentVersion\\Internet Settings\\Zones\\2\r\n\r\n2301         : 3\r\nPSPath       : Microsoft.PowerShell.Core\\Registry::HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\CurrentVersion\\Internet Settings\\Zones\\2\r\nPSParentPath : Microsoft.PowerShell.Core\\Registry::HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\CurrentVersion\\Internet Settings\\Zones\r\nPSChildName  : 2\r\nPSDrive      : HKLM\r\nPSProvider   : Microsoft.PowerShell.Core\\Registry\r\n\r\nDisabling browser auto update...\r\nMicrosoft Edge updater running... Killing it\r\nWaiting for Microsoft Edge update to finish (60s Timeout)\r\nMicrosoft Edge updater running... waiting its finish...\r\nMicrosoft Edge updater finished.\r\nDisabling telemetry via Group Policies\r\nNew-FolderForced : \u65e0\u6cd5\u5c06\u201cNew-FolderForced\u201d\u9879\u8bc6\u522b\u4e3a cmdlet\u3001\u51fd\u6570\u3001\u811a\u672c\u6587\u4ef6\u6216\u53ef\u8fd0\u884c\u7a0b\u5e8f\u7684\u540d\u79f0\u3002\u8bf7\u68c0\u67e5\u540d\u79f0\u7684\u62fc\u5199\uff0c\u5982\u679c\u5305\u62ec\u8def\u5f84\uff0c\u8bf7\u786e\u4fdd\u8def\u5f84\u6b63\u786e\uff0c\u7136\u540e\u518d\u8bd5\u4e00\u6b21\u3002\r\n\u6240\u5728\u4f4d\u7f6e C:\\Users\\alice\\Desktop\\win10_disabler.ps1:53 \u5b57\u7b26: 1\r\n+ New-FolderForced -Path \"HKLM:\\SOFTWARE\\Policies\\Microsoft\\Windows\\Dat ...\r\n+ ~~~~~~~~~~~~~~~~\r\n    + CategoryInfo          : ObjectNotFound: (New-FolderForced:String) [], CommandNotFoundException\r\n    + FullyQualifiedErrorId : CommandNotFoundException\r\n\r\nBlock scheduled telemetry tasks\r\nActions            : {MSFT_TaskExecAction}\r\nAuthor             : $(@%SystemRoot%\\system32\\compattelrunner.exe,-501)\r\nDate               :\r\nDescription        : $(@%SystemRoot%\\system32\\compattelrunner.exe,-503)\r\nDocumentation      :\r\nPrincipal          : MSFT_TaskPrincipal2\r\nSecurityDescriptor : D:(A;;GA;;;BA)(A;;GA;;;SY)(A;;FRFX;;;LS)\r\nSettings           : MSFT_TaskSettings3\r\nSource             : $(@%SystemRoot%\\system32\\compattelrunner.exe,-501)\r\nState              : Disabled\r\nTaskName           : Microsoft Compatibility Appraiser\r\nTaskPath           : \\Microsoft\\Windows\\Application Experience\\\r\nTriggers           : {MSFT_TaskTimeTrigger, MSFT_TaskTrigger, MSFT_TaskTrigger}\r\nURI                : \\Microsoft\\Windows\\Application Experience\\Microsoft Compatibility Appraiser\r\nVersion            : 1.0\r\nPSComputerName     :\r\n\r\nActions            : {MSFT_TaskExecAction}\r\nAuthor             : $(@%SystemRoot%\\system32\\invagent.dll,-701)\r\nDate               :\r\nDescription        : $(@%SystemRoot%\\system32\\invagent.dll,-702)\r\nDocumentation      :\r\nPrincipal          : MSFT_TaskPrincipal2\r\nSecurityDescriptor : D:(A;;GA;;;BA)(A;;GA;;;SY)(A;;FRFX;;;LS)\r\nSettings           : MSFT_TaskSettings3\r\nSource             : $(@%SystemRoot%\\system32\\invagent.dll,-701)\r\nState              : Disabled\r\nTaskName           : ProgramDataUpdater\r\nTaskPath           : \\Microsoft\\Windows\\Application Experience\\\r\nTriggers           :\r\nURI                : \\Microsoft\\Windows\\Application Experience\\ProgramDataUpdater\r\nVersion            : 1.0\r\nPSComputerName     :\r\n\r\nActions            : {MSFT_TaskExecAction}\r\nAuthor             : Microsoft Corporation\r\nDate               :\r\nDescription        : \u626b\u63cf\u542f\u52a8\u9879\uff0c\u5e76\u5728\u542f\u52a8\u9879\u8fc7\u591a\u7684\u60c5\u51b5\u4e0b\u5411\u7528\u6237\u53d1\u51fa\u901a\u77e5\u3002\r\nDocumentation      :\r\nPrincipal          : MSFT_TaskPrincipal2\r\nSecurityDescriptor : D:(A;OICI;FA;;;BA)(A;OICI;FA;;;LA)(A;OICI;FA;;;SY)(A;OICI;FRFX;;;AU)(A;;FRFX;;;LS)\r\nSettings           : MSFT_TaskSettings3\r\nSource             : Microsoft Corporation\r\nState              : Disabled\r\nTaskName           : StartupAppTask\r\nTaskPath           : \\Microsoft\\Windows\\Application Experience\\\r\nTriggers           :\r\nURI                : \\Microsoft\\Windows\\Application Experience\\StartupAppTask\r\nVersion            : 1.0\r\nPSComputerName     :\r\n\r\nActions            : {MSFT_TaskExecAction}\r\nAuthor             : Microsoft Corporation\r\nDate               :\r\nDescription        : Updates compatibility database\r\nDocumentation      :\r\nPrincipal          : MSFT_TaskPrincipal2\r\nSecurityDescriptor : D:(A;;GA;;;BA)(A;;GA;;;SY)(A;;FRFX;;;LS)\r\nSettings           : MSFT_TaskSettings3\r\nSource             : Microsoft Corporation\r\nState              : Disabled\r\nTaskName           : PcaPatchDbTask\r\nTaskPath           : \\Microsoft\\Windows\\Application Experience\\\r\nTriggers           : {MSFT_TaskTimeTrigger}\r\nURI                : \\Microsoft\\Windows\\Application Experience\\PcaPatchDbTask\r\nVersion            : 1.0\r\nPSComputerName     :\r\n\r\nRemove WindowsApp to prevent MS StoreStartup\r\nRemove-Item : \u627e\u4e0d\u5230\u8def\u5f84\u201cC:\\Users\\Default\\AppData\\Local\\Microsoft\\WindowsApp\u201d\uff0c\u56e0\u4e3a\u8be5\u8def\u5f84\u4e0d\u5b58\u5728\u3002\r\n\u6240\u5728\u4f4d\u7f6e C:\\Users\\alice\\Desktop\\win10_disabler.ps1:88 \u5b57\u7b26: 1\r\n+ Remove-Item -path C:\\Users\\Default\\AppData\\Local\\Microsoft\\WindowsApp ...\r\n+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n    + CategoryInfo          : ObjectNotFound: (C:\\Users\\Defaul...soft\\WindowsApp:String) [Remove-Item], ItemNotFoundException\r\n    + FullyQualifiedErrorId : PathNotFound,Microsoft.PowerShell.Commands.RemoveItemCommand\r\n\r\n```\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nRun win10_disabler.ps1 in Windows 10 21H2\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| OS version       | Windows 10 21H2\r\n\r\n\nComment: i guess we can close this then?\nComment: Yeah, fixed in this pr https://github.com/kevoreilly/CAPEv2/pull/2289",
+  "Title: Allow more doc.py extensions\nBody: None",
+  "Title: Disable Signatures Module if Benign File\nBody: Related to PR #1941, If the file is benign, I think we don't need to get any triggered signature to avoid false-positive detections.\nComment: is way much more complicated than this. + i never respect the malscore neither have it enabled as in my personal opinion is useless. Signatures helps you to understand what sample does, even if is benign\nComment: Yeah malscore is off by default in cape! It's only included to keep a few folks happy, but it's rubbish compared to cape's classification methods. Signatures are a fundamental measure of behavior, taking this logic to the extreme we could delete all the api logs and payloads too based on a 'decision' by malscore. I don't think we would want to go down that road, rather keep cape's output honest based on measured behavior rather than some arbitrary notion of maliciousness or a poorly determined score.",
+  "Title: Add .asd ext\nBody: ... For auto-recovered Word files. These run as normal docs pretty much.",
+  "Title: Allow .slk in xls\nBody: None",
+  "Title: Add CAPEv2 Documentation for Tracee eBPF threat detection\nBody: This pull request documents the Tracee eBPF threat detection feature which I added in #2235 and fixes a minor configuration error.",
+  "Title: Linux manual stop\nBody: None",
+  "Title: Add strace_args\nBody: Maybe it is cleaner if I just add `strace_cmd` as a option instead?",
+  "Title: Typos\nBody: Nothing more, nothing less.\nComment: Tnx",
+  "Title: don't treat VT integration lookup 404s as failures\nBody: Don't treat VT 404 lookups as failures.\r\n\r\nThis changes logs from this:\r\n\r\n<img width=\"694\" alt=\"Screenshot of Preview at Aug 8, 2024 at 12_40_11\u202fPM\" src=\"https://github.com/user-attachments/assets/e74c6e02-add3-4172-be3a-89284938fc72\">\r\n\r\nTo this:\r\n\r\n<img width=\"1167\" alt=\"Screenshot of Firefox at Aug 8, 2024 at 12_40_47\u202fPM\" src=\"https://github.com/user-attachments/assets/8e54dc5c-6189-4682-830c-9b9eeaab2907\">",
+  "Title: Auxiliary modules don't hit stop()\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# 1. Issue:\r\nI'm currently working on an auxiliary module that is used to capture a video of current analysis, but I have an issue that the analysis is finished without hitting `stop()` methods and also the results are incomplete.\r\n\r\n## 1.1. How module works:\r\n* The module uses `opencv-python` library which uses multiple frames to produce the final video.\r\n* First, I specified the FPS to be 10 F/S which means that each frame will take `1/10 = 0.1` second, so I used a `delta` to maintain the frame rate.\r\n\r\n```python\r\nimport logging\r\nimport time\r\nimport timeit\r\nimport os\r\nfrom threading import Thread\r\nfrom lib.core.config import Config\r\n\r\nfrom lib.common.abstracts import Auxiliary\r\nfrom lib.common.results import upload_to_host\r\n\r\nlog = logging.getLogger(__name__)\r\n\r\ntry:\r\n    import cv2\r\n    import numpy as np\r\n    from PIL import ImageGrab\r\n\r\n    HAVE_OPENCV = True\r\n    HAVE_PIL = True\r\n    log.info(\"Libs are loaded\")\r\n\r\nexcept ImportError:\r\n    HAVE_OPENCV = False\r\n    HAVE_PIL = False\r\n    log.error(\"Please Install Pillow and OpenCV libraries\")\r\n\r\nclass Screen_recorder(Auxiliary, Thread):\r\n    def __init__(self, options, config):\r\n        Auxiliary.__init__(self, options, config)\r\n        Thread.__init__(self)\r\n        self.config = Config(cfg=\"analysis.conf\")\r\n        self.enabled = self.config.screen_recorder_windows\r\n        self.do_run = self.enabled\r\n\r\n    def collect_Video(self):\r\n        videoPath = \"C:\\\\recording.mp4\"\r\n        if os.path.exists(videoPath):\r\n            try:\r\n                log.info(\"Trying to Upload the video...\")\r\n\r\n                upload_to_host(videoPath, \"recording.mp4\")\r\n                log.info(\"Video is uplodaed.\")\r\n            except Exception as e:\r\n                log.error(e)\r\n\r\n        else:\r\n            log.error(\"The video file is not found\")\r\n\r\n    def start(self):\r\n        if not self.enabled or not HAVE_OPENCV or not HAVE_PIL:\r\n            return False\r\n        log.info(f\"Timeout: {self.config.timeout}\")\r\n        try:\r\n            trackingTime = 0\r\n            videoPath = \"C:\\\\recording.mp4\"\r\n            fps = 10.0\r\n            screen_size = ImageGrab.grab().size\r\n            fourcc = cv2.VideoWriter_fourcc(*'mp4v')\r\n            out = cv2.VideoWriter(videoPath, fourcc, fps, screen_size)\r\n            startingTime = timeit.default_timer()\r\n\r\n            # MAXIMUM time taken to capture, process, and write the current frame.\r\n            frameMaxDuration = 1.0 / fps\r\n\r\n            while self.do_run:\r\n                frameStartingTime = timeit.default_timer()\r\n\r\n                img = ImageGrab.grab()\r\n                frame = np.array(img)\r\n                frame = cv2.cvtColor(frame, cv2.COLOR_RGB2BGR)\r\n                out.write(frame)\r\n\r\n                # Calculate elapsed time and sleep to maintain the frame rate\r\n                # ACTUAL time taken to capture, process, and write the current frame.\r\n                frameActualTime = timeit.default_timer() - frameStartingTime\r\n                delta = frameMaxDuration - frameActualTime\r\n\r\n                # This condition doesn't check the actual duration of the video, but the duration of the runtime\r\n                # So we could produce a video of 30 seconds and the duration is only set to 10 seconds\r\n                # So we should maintain the frame rate using the previous timing calculations\r\n                if timeit.default_timer() - startingTime > self.config.timeout:\r\n                    break\r\n\r\n                if delta > 0:\r\n                    # Sleep for the remaining time to match the frameMaxDuration\r\n                    trackingTime += delta \r\n                    time.sleep(delta)\r\n\r\n            log.info(f\"Video exists: {os.path.exists(videoPath)}\")\r\n            log.info(f\"Aux Duration: {trackingTime}\")\r\n            log.info(\"Video is ready to upload\")\r\n\r\n            out.release()\r\n            cv2.destroyAllWindows()\r\n            return True\r\n\r\n        except Exception as e:\r\n            log.error(e)\r\n            return False\r\n\r\n    def stop(self) -> bool:\r\n        log.info(\"Trying to stop the recorder......\")\r\n\r\n        self.do_run = False\r\n        if self.enabled:\r\n            self.collect_Video()\r\n            return True\r\n        return False\r\n```\r\n\r\n## 1.2. Submission Settings:\r\n1. Timeout: 100 sec\r\n2. File hash: `e5074e3ee4bb9bb9abf6322ed7c820e950ef8e2d1af7f9a66007a37cf9656630`\r\n\r\n## 1.3. Produced logs:\r\n```\r\n2024-08-08 13:56:20,265 [root] INFO: Date set to: 20240808T13:56:18, timeout set to: 100\r\n2024-08-08 13:56:18,000 [root] DEBUG: Starting analyzer from: C:\\tmpy5yb4181\r\n2024-08-08 13:56:18,000 [root] DEBUG: Storing results at: C:\\kSamqedlkr\r\n2024-08-08 13:56:18,000 [root] DEBUG: Pipe server name: \\\\.\\PIPE\\AGJgvItW\r\n2024-08-08 13:56:18,000 [root] DEBUG: Python path: C:\\Users\\node-1-win7-1\\AppData\\Local\\Programs\\Python\\Python37-32\r\n2024-08-08 13:56:18,000 [root] INFO: analysis running as an admin\r\n2024-08-08 13:56:18,000 [root] INFO: analysis package specified: \"exe\"\r\n2024-08-08 13:56:18,000 [root] DEBUG: importing analysis package module: \"modules.packages.exe\"...\r\n2024-08-08 13:56:18,000 [root] DEBUG: imported analysis package \"exe\"\r\n2024-08-08 13:56:18,000 [root] DEBUG: initializing analysis package \"exe\"...\r\n2024-08-08 13:56:18,000 [lib.common.common] INFO: wrapping\r\n2024-08-08 13:56:18,000 [lib.core.compound] INFO: C:\\Users\\NODE-1~1\\AppData\\Local\\Temp already exists, skipping creation\r\n2024-08-08 13:56:18,000 [root] DEBUG: New location of moved file: C:\\Users\\NODE-1~1\\AppData\\Local\\Temp\\e5074e3ee4bb9bb9abf6322e\r\n2024-08-08 13:56:18,000 [root] INFO: Analyzer: Package modules.packages.exe does not specify a DLL option\r\n2024-08-08 13:56:18,000 [root] INFO: Analyzer: Package modules.packages.exe does not specify a DLL_64 option\r\n2024-08-08 13:56:18,000 [root] INFO: Analyzer: Package modules.packages.exe does not specify a loader option\r\n2024-08-08 13:56:18,000 [root] INFO: Analyzer: Package modules.packages.exe does not specify a loader_64 option\r\n2024-08-08 13:56:18,546 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.amsi\"...\r\n2024-08-08 13:56:18,873 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.amsi_collector\"...\r\n2024-08-08 13:56:18,873 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.browser\"...\r\n2024-08-08 13:56:18,873 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.digisig\"...\r\n2024-08-08 13:56:18,873 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.disguise\"...\r\n2024-08-08 13:56:18,889 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.during_script\"...\r\n2024-08-08 13:56:18,889 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.evtx\"...\r\n2024-08-08 13:56:18,889 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.filepickup\"...\r\n2024-08-08 13:56:18,889 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.human\"...\r\n2024-08-08 13:56:18,889 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.permissions\"...\r\n2024-08-08 13:56:18,904 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.pre_script\"...\r\n2024-08-08 13:56:19,107 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.recentfiles\"...\r\n2024-08-08 13:56:19,107 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.screen_recorder\"...\r\n2024-08-08 13:56:23,506 [modules.auxiliary.screen_recorder] INFO: Libs are loaded\r\n2024-08-08 13:56:23,506 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.screenshots\"...\r\n2024-08-08 13:56:23,506 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageChops'\r\n2024-08-08 13:56:23,506 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageGrab'\r\n2024-08-08 13:56:23,506 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageDraw'\r\n2024-08-08 13:56:23,506 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.tlsdump\"...\r\n2024-08-08 13:56:23,522 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.usage\"...\r\n2024-08-08 13:56:23,522 [root] WARNING: Auxiliary module AMSICollector was not implemented: 'Config' object has no attribute 'amsi'\r\n2024-08-08 13:56:23,522 [root] DEBUG: Initialized auxiliary module \"Browser\"\r\n2024-08-08 13:56:23,522 [root] DEBUG: Trying to start auxiliary module \"Browser\"...\r\n2024-08-08 13:56:23,522 [root] DEBUG: Started auxiliary module Browser\r\n2024-08-08 13:56:23,522 [root] DEBUG: Initialized auxiliary module \"DigiSig\"\r\n2024-08-08 13:56:23,522 [root] DEBUG: Trying to start auxiliary module \"DigiSig\"...\r\n2024-08-08 13:56:23,522 [modules.auxiliary.digisig] DEBUG: Checking for a digital signature\r\n2024-08-08 13:56:24,380 [modules.auxiliary.digisig] DEBUG: File is not signed\r\n2024-08-08 13:56:24,380 [modules.auxiliary.digisig] INFO: Uploading signature results to aux/DigiSig.json\r\n2024-08-08 13:56:24,396 [root] DEBUG: Started auxiliary module DigiSig\r\n2024-08-08 13:56:24,396 [root] DEBUG: Initialized auxiliary module \"Disguise\"\r\n2024-08-08 13:56:24,396 [root] DEBUG: Trying to start auxiliary module \"Disguise\"...\r\n2024-08-08 13:56:24,396 [modules.auxiliary.disguise] INFO: Disguising GUID to 8f3b35d9-832b-4b1d-a805-b40d527ae1ba\r\n2024-08-08 13:56:24,396 [root] DEBUG: Started auxiliary module Disguise\r\n2024-08-08 13:56:24,396 [root] DEBUG: Initialized auxiliary module \"Evtx\"\r\n2024-08-08 13:56:24,396 [root] DEBUG: Trying to start auxiliary module \"Evtx\"...\r\n2024-08-08 13:56:24,396 [root] DEBUG: Started auxiliary module Evtx\r\n2024-08-08 13:56:24,396 [root] DEBUG: Initialized auxiliary module \"FilePickup\"\r\n2024-08-08 13:56:24,396 [root] DEBUG: Trying to start auxiliary module \"FilePickup\"...\r\n2024-08-08 13:56:24,396 [root] DEBUG: Started auxiliary module FilePickup\r\n2024-08-08 13:56:24,396 [root] DEBUG: Initialized auxiliary module \"Human\"\r\n2024-08-08 13:56:24,396 [root] DEBUG: Trying to start auxiliary module \"Human\"...\r\n2024-08-08 13:56:24,396 [root] DEBUG: Started auxiliary module Human\r\n2024-08-08 13:56:24,396 [root] DEBUG: Initialized auxiliary module \"Permissions\"\r\n2024-08-08 13:56:24,396 [root] DEBUG: Trying to start auxiliary module \"Permissions\"...\r\n2024-08-08 13:56:24,396 [root] DEBUG: Started auxiliary module Permissions\r\n2024-08-08 13:56:24,520 [root] DEBUG: Initialized auxiliary module \"Pre_script\"\r\n2024-08-08 13:56:24,520 [root] DEBUG: Trying to start auxiliary module \"Pre_script\"...\r\n2024-08-08 13:56:24,520 [root] DEBUG: Started auxiliary module Pre_script\r\n2024-08-08 13:56:24,520 [root] DEBUG: Initialized auxiliary module \"RecentFiles\"\r\n2024-08-08 13:56:24,520 [root] DEBUG: Trying to start auxiliary module \"RecentFiles\"...\r\n2024-08-08 13:56:24,520 [root] DEBUG: Started auxiliary module RecentFiles\r\n2024-08-08 13:56:24,520 [root] DEBUG: Initialized auxiliary module \"Screen_recorder\"\r\n2024-08-08 13:56:24,520 [root] DEBUG: Trying to start auxiliary module \"Screen_recorder\"...\r\n2024-08-08 13:56:24,520 [modules.auxiliary.screen_recorder] INFO: Timeout: 100\r\n2024-08-08 13:58:05,250 [modules.auxiliary.screen_recorder] INFO: Video exists: True\r\n2024-08-08 13:58:05,250 [modules.auxiliary.screen_recorder] INFO: Aux Duration: 80.6868926999998\r\n2024-08-08 13:58:05,250 [modules.auxiliary.screen_recorder] INFO: Video is ready to upload\r\n2024-08-08 13:58:05,265 [root] DEBUG: Started auxiliary module Screen_recorder\r\n2024-08-08 13:58:05,265 [root] DEBUG: Initialized auxiliary module \"Screenshots\"\r\n2024-08-08 13:58:05,265 [root] DEBUG: Trying to start auxiliary module \"Screenshots\"...\r\n2024-08-08 13:58:05,265 [root] DEBUG: Started auxiliary module Screenshots\r\n2024-08-08 13:58:05,265 [root] DEBUG: Initialized auxiliary module \"TLSDumpMasterSecrets\"\r\n2024-08-08 13:58:05,265 [root] DEBUG: Trying to start auxiliary module \"TLSDumpMasterSecrets\"...\r\n2024-08-08 13:58:05,265 [modules.auxiliary.tlsdump] INFO: lsass.exe found, pid 452\r\n2024-08-08 13:58:05,265 [lib.api.process] INFO: Monitor config for <Process 452 lsass.exe>: C:\\tmpy5yb4181\\dll\\452.ini\r\n2024-08-08 13:58:05,265 [lib.api.process] INFO: Option 'tlsdump' with value '1' sent to monitor\r\n2024-08-08 13:58:05,265 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmpy5yb4181\\dll\\VPoWkna.dll, loader C:\\tmpy5yb4181\\bin\\hKDWsKvt.exe\r\n2024-08-08 13:58:05,265 [root] DEBUG: Loader: Injecting process 452 with C:\\tmpy5yb4181\\dll\\VPoWkna.dll.\r\n2024-08-08 13:58:05,265 [root] DEBUG: 452: Python path set to 'C:\\Users\\node-1-win7-1\\AppData\\Local\\Programs\\Python\\Python37-32'.\r\n2024-08-08 13:58:05,281 [root] DEBUG: 452: TLS secret dump mode enabled.\r\n2024-08-08 13:58:05,281 [root] INFO: Disabling sleep skipping.\r\n2024-08-08 13:58:05,281 [root] DEBUG: 452: Monitor initialised: 64-bit capemon loaded in process 452 at 0x000007FEEAE40000, thread 3792, image base 0x00000000FF210000, stack from 0x0000000001A94000-0x0000000001AA0000\r\n2024-08-08 13:58:05,281 [root] DEBUG: 452: Commandline: C:\\Windows\\system32\\lsass.exe\r\n2024-08-08 13:58:05,281 [root] DEBUG: 452: Hooked 5 functions\r\n2024-08-08 13:58:05,281 [root] DEBUG: InjectDllViaThread: Successfully injected Dll into process via RtlCreateUserThread.\r\n2024-08-08 13:58:05,281 [root] DEBUG: Successfully injected DLL C:\\tmpy5yb4181\\dll\\VPoWkna.dll.\r\n2024-08-08 13:58:05,281 [lib.api.process] INFO: Injected into 64-bit <Process 452 lsass.exe>\r\n2024-08-08 13:58:05,281 [root] DEBUG: Started auxiliary module TLSDumpMasterSecrets\r\n2024-08-08 13:58:05,281 [root] DEBUG: Initialized auxiliary module \"Usage\"\r\n2024-08-08 13:58:05,281 [root] DEBUG: Trying to start auxiliary module \"Usage\"...\r\n2024-08-08 13:58:05,281 [root] DEBUG: Started auxiliary module Usage\r\n2024-08-08 13:58:05,281 [root] DEBUG: Initialized auxiliary module \"During_script\"\r\n2024-08-08 13:58:05,281 [root] DEBUG: Trying to start auxiliary module \"During_script\"...\r\n2024-08-08 13:58:05,281 [root] DEBUG: Started auxiliary module During_script\r\n2024-08-08 13:58:15,951 [root] INFO: Restarting WMI Service\r\n2024-08-08 13:58:18,073 [root] DEBUG: package modules.packages.exe does not support configure, ignoring\r\n2024-08-08 13:58:18,073 [root] WARNING: configuration error for package modules.packages.exe: error importing data.packages.exe: No module named 'data.packages'\r\n2024-08-08 13:58:18,073 [lib.common.common] INFO: Submitted file is missing extension, adding .exe\r\n2024-08-08 13:58:18,073 [lib.core.compound] INFO: C:\\Users\\NODE-1~1\\AppData\\Local\\Temp already exists, skipping creation\r\n2024-08-08 13:58:18,089 [lib.api.process] INFO: Successfully executed process from path \"C:\\Users\\NODE-1~1\\AppData\\Local\\Temp\\e5074e3ee4bb9bb9abf6322e.exe\" with arguments \"\" with pid 3244\r\n2024-08-08 13:58:18,089 [lib.api.process] INFO: Monitor config for <Process 3244 e5074e3ee4bb9bb9abf6322e.exe>: C:\\tmpy5yb4181\\dll\\3244.ini\r\n2024-08-08 13:58:18,089 [lib.api.process] INFO: 32-bit DLL to inject is C:\\tmpy5yb4181\\dll\\pLbbBGHE.dll, loader C:\\tmpy5yb4181\\bin\\xvkIjzM.exe\r\n\r\n...\r\n...\r\n...\r\n\r\n2024-08-08 13:58:47,058 [root] DEBUG: 2100: hook_api: Warning - CreateRemoteThreadEx export address 0x76DBA24B differs from GetProcAddress -> 0x75CB3FDF (KERNELBASE.dll::0x13fdf)\r\n2024-08-08 13:58:47,058 [root] DEBUG: 2100: hook_api: Warning - UpdateProcThreadAttribute export address 0x76DBAACB differs from GetProcAddress -> 0x75CAF9CB (KERNELBASE.dll::0xf9cb)\r\n2024-08-08 13:58:47,058 [root] DEBUG: 2100: Hooked 490 functions\r\n2024-08-08 13:58:47,073 [root] DEBUG: 2100: WoW64 detected: 64-bit ntdll base: 0x777c0000, KiUserExceptionDispatcher: 0x0, NtSetContextThread: 0x7782b610, Wow64PrepareForException: 0x0\r\n2024-08-08 13:58:47,073 [root] DEBUG: 2100: WoW64 workaround: KiUserExceptionDispatcher hook installed at: 0x1c0000\r\n2024-08-08 13:58:47,073 [root] INFO: Loaded monitor into process with pid 2100\r\n2024-08-08 13:58:47,073 [root] DEBUG: 2100: caller_dispatch: Added region at 0x00470000 to tracked regions list (kernel32::GetSystemTimeAsFileTime returns to 0x00475A43, thread 2540).\r\n2024-08-08 13:58:47,073 [root] DEBUG: 2100: YaraScan: Scanning 0x00470000, size 0x93f2\r\n2024-08-08 13:58:47,089 [root] DEBUG: 2100: ProcessImageBase: Main module image at 0x00470000 unmodified (entropy change 0.000000e+00)\r\n2024-08-08 13:58:48,181 [root] DEBUG: 2100: NtTerminateProcess hook: Attempting to dump process 2100\r\n2024-08-08 13:58:48,181 [root] DEBUG: 2100: VerifyCodeSection: Executable code does not match, 0x0 of 0x53fc matching\r\n2024-08-08 13:58:48,181 [root] DEBUG: 2100: DoProcessDump: Code modification detected, dumping Imagebase at 0x00470000.\r\n2024-08-08 13:58:48,181 [root] DEBUG: 2100: DumpImageInCurrentProcess: Attempting to dump virtual PE image.\r\n2024-08-08 13:58:48,181 [root] DEBUG: 2100: DumpProcess: Instantiating PeParser with address: 0x00470000.\r\n2024-08-08 13:58:48,197 [root] DEBUG: 2100: DumpProcess: Module entry point VA is 0x00005703.\r\n2024-08-08 13:58:48,212 [lib.common.results] INFO: Uploading file C:\\kSamqedlkr\\CAPE\\2100_56801014818148482024 to procdump\\8956125f603bbd25f1ab242874d8c27806e483f1737f909136deec632459e900; Size is 27648; Max size: 100000000\r\n2024-08-08 13:58:48,212 [root] DEBUG: 2100: DumpProcess: Module image dump success - dump size 0x6c00.\r\n2024-08-08 13:58:48,212 [root] INFO: Process with pid 2100 has terminated\r\n2024-08-08 13:58:48,228 [lib.common.results] INFO: Uploading file C:\\Users\\node-1-win7-1\\AppData\\Local\\Temp\\e5074e3ee4bb9bb9abf6322e.exe to files\\e5074e3ee4bb9bb9abf6322ed7c820e950ef8e2d1af7f9a66007a37cf9656630; Size is 233472; Max size: 100000000\r\n2024-08-08 13:58:48,243 [root] DEBUG: 1600: NtTerminateProcess hook: Attempting to dump process 1600\r\n2024-08-08 13:58:48,243 [root] DEBUG: 1600: DoProcessDump: Skipping process dump as code is identical on disk.\r\n2024-08-08 13:58:48,243 [root] INFO: Process with pid 1600 has terminated\r\n2024-08-08 13:58:51,629 [root] INFO: Process with pid 3504 has terminated\r\n2024-08-08 13:58:51,644 [root] DEBUG: 3504: ClearAllBreakpoints: Error setting thread context (thread 3968).\r\n2024-08-08 13:58:51,644 [root] DEBUG: 3504: NtTerminateProcess hook: Attempting to dump process 3504\r\n2024-08-08 13:58:51,644 [root] DEBUG: 3504: DoProcessDump: Skipping process dump as code is identical on disk.\r\n2024-08-08 13:58:52,799 [root] DEBUG: 416: api-rate-cap: GetSystemTimeAsFileTime hook disabled due to rate\r\n2024-08-08 13:58:52,799 [root] DEBUG: 416: api-rate-cap: NtSetTimer hook disabled due to rate\r\n```\r\n\r\n\r\nHere we can see that the video exists and is ready to be uploaded. I also checked the total sleeping time for `delta` and I found out that it is 80 sec.\r\n```\r\n2024-08-08 13:58:05,250 [modules.auxiliary.screen_recorder] INFO: Video exists: True\r\n2024-08-08 13:58:05,250 [modules.auxiliary.screen_recorder] INFO: Aux Duration: 80.6868926999998\r\n2024-08-08 13:58:05,250 [modules.auxiliary.screen_recorder] INFO: Video is ready to upload\r\n```\r\n\r\n## 1.4. My Conclusion:\r\nI think that there is a timing synchronization issue, CAPE ends the analysis before it's actually finished due to sleeping duration because the successful analysis should include the following in the analysis logs\r\n```\r\n...\r\n...\r\n2024-08-08 13:54:24,636 [root] INFO: Analysis completed\r\n```\nComment: hm thats interesting\nComment: I think we should add a optional grace time to cuckoo timeout to allow the analyzer to stop (after the original timeout) and upload things\r\n\r\nEdit: timeouts.critical does this",
+  "Title: Memdumps for Linux\nBody: Based on recent changes in Linux with strace to dump memory from parent pid and child pids detected in the background.\r\n\r\nThese dumps use /tmp/random_dir to store dmp files while the analysis is complete. The dumps are uploaded to the host immediately to prevent encryption by ransomware.\r\n\r\nImprovements or changes are welcome.\r\n\r\n\r\n",
+  "Title: build(deps): bump django from 4.2.14 to 4.2.15\nBody: Bumps [django](https://github.com/django/django) from 4.2.14 to 4.2.15.\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/django/django/commit/4d32ebcd57340aa8de2d6d31613f1646dc6391f6\"><code>4d32ebc</code></a> [4.2.x] Bumped version for 4.2.15 release.</li>\n<li><a href=\"https://github.com/django/django/commit/f4af67b9b41e0f4c117a8741da3abbd1c869ab28\"><code>f4af67b</code></a> [4.2.x] Fixed CVE-2024-42005 -- Mitigated QuerySet.values() SQL injection att...</li>\n<li><a href=\"https://github.com/django/django/commit/efea1ef7e2190e3f77ca0651b5458297bc0f6a9f\"><code>efea1ef</code></a> [4.2.x] Fixed CVE-2024-41991 -- Prevented potential ReDoS in django.utils.htm...</li>\n<li><a href=\"https://github.com/django/django/commit/d0a82e26a74940bf0c78204933c3bdd6a283eb88\"><code>d0a82e2</code></a> [4.2.x] Fixed CVE-2024-41990 -- Mitigated potential DoS in urlize and urlizet...</li>\n<li><a href=\"https://github.com/django/django/commit/fc76660f589ac07e45e9cd34ccb8087aeb11904b\"><code>fc76660</code></a> [4.2.x] Fixed CVE-2024-41989 -- Prevented excessive memory consumption in flo...</li>\n<li><a href=\"https://github.com/django/django/commit/7b1a76f899f7a7acb7d70b433cb0064c2184186b\"><code>7b1a76f</code></a> [4.2.x] Added stub release notes and release date for 4.2.15.</li>\n<li><a href=\"https://github.com/django/django/commit/96a349740048ecd4746ac2f15751865219d445cf\"><code>96a3497</code></a> [4.2.x] Fixed <a href=\"https://redirect.github.com/django/django/issues/35627\">#35627</a> -- Raised a LookupError rather than an unhandled ValueEr...</li>\n<li><a href=\"https://github.com/django/django/commit/c5d196a65264136ee6795356871a29f3d22ec52f\"><code>c5d196a</code></a> [4.2.x] Fixed auth_tests and file_storage tests on Python 3.8.</li>\n<li><a href=\"https://github.com/django/django/commit/8e59e33400ffcec262116d75f7886d96e2b57980\"><code>8e59e33</code></a> [4.2.x] Added CVE-2024-38875, CVE-2024-39329, CVE-2024-39330, and CVE-2024-39...</li>\n<li><a href=\"https://github.com/django/django/commit/72f6c7d3a6551b1aed1e4d248e5fbe94d2a8fc0b\"><code>72f6c7d</code></a> [4.2.x] Post-release version bump.</li>\n<li>See full diff in <a href=\"https://github.com/django/django/compare/4.2.14...4.2.15\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=django&package-manager=pip&previous-version=4.2.14&new-version=4.2.15)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Add SparkRAT parse test\nBody: Added test code for the SparkRAT module added by https://github.com/kevoreilly/CAPEv2/pull/2261.",
+  "Title: Allow .accde extension for access\nBody: https://support.microsoft.com/en-us/office/hide-vba-code-from-users-ce6ab610-af07-4008-91e0-1ef1b796ff18",
+  "Title: APIv2: Enable target machine file streaming handler\nBody: Uses agent.py `/retrieve` handler to stream a local file",
+  "Title: Fix the break on sniffer section in auxiliary.conf.default\nBody: The pr (kevoreilly#2255) breaks the sniffer section, the screenshot section should be put at the end of the configuration file.\nComment: Tnx",
+  "Title: Add SparkRAT config parser\nBody: I created a module to extract SparkRAT configuration.\r\n\r\nThe following image shows the result of extracting the configuration from this sample.  \r\nhttps://bazaar.abuse.ch/sample/ec349cfacc7658eed3640f1c475eb958c5f05bae7c2ed74d4cdb7493176daeba/\r\n![image](https://github.com/user-attachments/assets/0f2c995c-c4be-49e0-8a30-ff34d19590c0)\r\n\nComment: This is great, thanks a lot \ud83d\ude4f",
+  "Title: keep button\nBody: Keep button on chrome dangerous download.\r\n<img width=\"1033\" alt=\"image\" src=\"https://github.com/user-attachments/assets/12ea692a-c218-4bd8-9604-8a14f284620d\">\r\n",
+  "Title: pacakge to load a crx in chrome browsers\nBody: None",
+  "Title: capev2 physical machine sqlalchemy errors\nBody: \r\n- [ X] I am running the latest version\r\n- [ X] I did read the README!\r\n- [ X] I checked the documentation and found no answer\r\n- [ X] I checked to make sure that this issue has not already been filed\r\n- [X ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ X] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\nlunch analysis to physical machine -> complete analysis -> reimage physical machine -> got result of analysis\r\n\r\n# Current Behavior\r\n\r\nafter i updated and upgraded my machine:  \r\nPRETTY_NAME=\"Ubuntu 22.04.4 LTS\"\r\nNAME=\"Ubuntu\"\r\nVERSION_ID=\"22.04\"\r\nVERSION=\"22.04.4 LTS (Jammy Jellyfish)\"\r\n\r\nand updated Capev2 lo last version, i got some errors due to sqlalchemy, after the analysis is completed and the image is deployed on physical machine.\r\n\r\n# Failure Information (for bugs)\r\n\r\nthis'is the log:\r\n```2024-08-02 08:48:18,089 [lib.cuckoo.core.guest] INFO: Task #41: Starting analysis on guest (id=physical01, ip=192.168.1.11)\r\n2024-08-02 08:48:18,095 [lib.cuckoo.core.guest] INFO: Task #41: Guest is running CAPE Agent 0.17 (id=physical01, ip=192.168.1.11)\r\n2024-08-02 08:48:20,402 [lib.cuckoo.core.guest] INFO: Task #41: Uploading script files to guest (id=physical01, ip=192.168.1.11)\r\n2024-08-02 08:48:28,948 [lib.cuckoo.core.resultserver] INFO: Task 41: Process 4832 (parent 1324): download.exe, path C:\\Users\\sam\\AppData\\Local\\Temp\\download.exe\r\n2024-08-02 08:48:30,131 [lib.cuckoo.core.resultserver] INFO: Task 41: Process 8996 (parent 4832): RegSvcs.exe, path C:\\Windows\\Microsoft.NET\\Framework\\v4.0.30319\\RegSvcs.exe\r\n2024-08-02 08:51:56,073 [lib.cuckoo.core.guest] INFO: Task #41: Analysis completed successfully (id=physical01, ip=192.168.1.101)\r\n2024-08-02 08:51:56,222 [lib.cuckoo.core.analysis_manager] INFO: Task #41: Disabled route 'internet'\r\n2024-08-02 09:05:21,001 [lib.cuckoo.core.analysis_manager] ERROR: Task #41: failure in AnalysisManager.run\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 496, in run\r\n    self.launch_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 458, in launch_analysis\r\n    success = self.perform_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 442, in perform_analysis\r\n    with self.machine_running(), self.result_server(), self.network_routing(), self.run_auxiliary():\r\n  File \"/usr/lib/python3.10/contextlib.py\", line 142, in __exit__\r\n    next(self.gen)\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 334, in machine_running\r\n    self.machinery_manager.machinery.release(self.machine)\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 270, in release\r\n    return self.db.unlock_machine(machine)\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/database.py\", line 978, in unlock_machine\r\n    self.session.add(machine)\r\n  File \"<string>\", line 2, in add\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 2648, in add\r\n    self._save_or_update_state(state)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 2672, in _save_or_update_state\r\n    self._save_or_update_impl(state)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 3289, in _save_or_update_impl\r\n    self._update_impl(state)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 3278, in _update_impl\r\n    self.identity_map.add(state)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/identity.py\", line 151, in add\r\n    raise sa_exc.InvalidRequestError(\r\nsqlalchemy.exc.InvalidRequestError: Can't attach instance <Machine at 0x7617691b01f0>; another instance with key (<class 'lib.cuckoo.core.database.Machine'>, (89,), None) is already present in this session.\r\n```\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. update and upgrade Ubuntu 22.04.4 LTS\r\n2. update capev2 to last version\r\n3. lunch analysis on physical machine\r\n4. complete analysis and re-image physical machine (automatic task) \r\n5. error\r\n\r\n## Context\r\n\r\ni noticed some issue due to sqlalchemy version. anyway i checked all packages are syncronized and sqlalchemy version is \r\n\r\n name         : sqlalchemy                   \r\n version      : 1.4.50                       \r\n description  : Database Abstraction Library \r\n\r\ndependencies\r\n - greenlet !=0.4.17\r\n\r\nrequired by\r\n - alembic >=1.3.0\r\n - sqlalchemy-utils >=1.3\r\n\r\nthanks in advance for support\nComment: also tried to clean all tasks and samples but got same errors\r\n```\r\n2024-08-03 12:14:19,171 [lib.cuckoo.core.analysis_manager] ERROR: Task #1: failure in AnalysisManager.run\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 496, in run\r\n    self.launch_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 458, in launch_analysis\r\n    success = self.perform_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 442, in perform_analysis\r\n    with self.machine_running(), self.result_server(), self.network_routing(), self.run_auxiliary():\r\n  File \"/usr/lib/python3.10/contextlib.py\", line 142, in __exit__\r\n    next(self.gen)\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 334, in machine_running\r\n    self.machinery_manager.machinery.release(self.machine)\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 270, in release\r\n    return self.db.unlock_machine(machine)\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/database.py\", line 978, in unlock_machine\r\n    self.session.add(machine)\r\n  File \"<string>\", line 2, in add\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 2648, in add\r\n    self._save_or_update_state(state)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 2672, in _save_or_update_state\r\n    self._save_or_update_impl(state)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 3289, in _save_or_update_impl\r\n    self._update_impl(state)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 3278, in _update_impl\r\n    self.identity_map.add(state)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/identity.py\", line 151, in add\r\n    raise sa_exc.InvalidRequestError(\r\nsqlalchemy.exc.InvalidRequestError: Can't attach instance <Machine at 0x77a5bc1c63e0>; another instance with key (<class 'lib.cuckoo.core.database.Machine'>, (3,), None) is already present in this session.\r\n```\nComment: Enable SQL logging in cuckoo.conf, and rerun the command, post the output, but plz use markdown code escale for that blov\nComment: > Enable SQL logging in cuckoo.conf, and rerun the command, post the output, but plz use markdown code escale for that blov\r\n\r\n\r\nthanks for reply.. here the log: [capev2-sqldebug.txt](https://github.com/user-attachments/files/16480968/capev2-sqldebug.txt)\r\nbelow last part of the log \r\n```\r\n\r\n\r\n2024-08-03 15:45:08,787 [sqlalchemy.engine.Engine] INFO: SELECT tasks.id AS tasks_id, tasks.target AS tasks_target, tasks.category AS tasks_category, tasks.cape AS tasks_cape, tasks.timeout AS tasks_timeout, tasks.priority AS tasks_priority, tasks.custom AS tasks_custom, tasks.machine AS tasks_machine, tasks.package AS tasks_package, tasks.route AS tasks_route, tasks.tags_tasks AS tasks_tags_tasks, tasks.options AS tasks_options, tasks.platform AS tasks_platform, tasks.memory AS tasks_memory, tasks.enforce_timeout AS tasks_enforce_timeout, tasks.clock AS tasks_clock, tasks.added_on AS tasks_added_on, tasks.started_on AS tasks_started_on, tasks.completed_on AS tasks_completed_on, tasks.status AS tasks_status, tasks.dropped_files AS tasks_dropped_files, tasks.running_processes AS tasks_running_processes, tasks.api_calls AS tasks_api_calls, tasks.domains AS tasks_domains, tasks.signatures_total AS tasks_signatures_total, tasks.signatures_alert AS tasks_signatures_alert, tasks.files_written AS tasks_files_written, tasks.registry_keys_modified AS tasks_registry_keys_modified, tasks.crash_issues AS tasks_crash_issues, tasks.anti_issues AS tasks_anti_issues, tasks.analysis_started_on AS tasks_analysis_started_on, tasks.analysis_finished_on AS tasks_analysis_finished_on, tasks.processing_started_on AS tasks_processing_started_on, tasks.processing_finished_on AS tasks_processing_finished_on, tasks.signatures_started_on AS tasks_signatures_started_on, tasks.signatures_finished_on AS tasks_signatures_finished_on, tasks.reporting_started_on AS tasks_reporting_started_on, tasks.reporting_finished_on AS tasks_reporting_finished_on, tasks.timedout AS tasks_timedout, tasks.sample_id AS tasks_sample_id, tasks.machine_id AS tasks_machine_id, tasks.shrike_url AS tasks_shrike_url, tasks.shrike_refer AS tasks_shrike_refer, tasks.shrike_msg AS tasks_shrike_msg, tasks.shrike_sid AS tasks_shrike_sid, tasks.parent_id AS tasks_parent_id, tasks.tlp AS tasks_tlp, tasks.user_id AS tasks_user_id, tasks.username AS tasks_username, tags_1.id AS tags_1_id, tags_1.name AS tags_1_name, guests_1.id AS guests_1_id, guests_1.status AS guests_1_status, guests_1.name AS guests_1_name, guests_1.label AS guests_1_label, guests_1.platform AS guests_1_platform, guests_1.manager AS guests_1_manager, guests_1.started_on AS guests_1_started_on, guests_1.shutdown_on AS guests_1_shutdown_on, guests_1.task_id AS guests_1_task_id, errors_1.id AS errors_1_id, errors_1.message AS errors_1_message, errors_1.task_id AS errors_1_task_id \r\nFROM tasks LEFT OUTER JOIN (tasks_tags AS tasks_tags_1 JOIN tags AS tags_1 ON tags_1.id = tasks_tags_1.tag_id) ON tasks.id = tasks_tags_1.task_id LEFT OUTER JOIN guests AS guests_1 ON tasks.id = guests_1.task_id LEFT OUTER JOIN errors AS errors_1 ON tasks.id = errors_1.task_id \r\nWHERE tasks.status = %(status_1)s AND tasks.options NOT LIKE %(options_1)s ORDER BY tasks.priority DESC, tasks.added_on FOR UPDATE OF tasks\r\n2024-08-03 15:45:08,788 INFO sqlalchemy.engine.Engine [cached since 1057s ago] {'status_1': 'pending', 'options_1': '%node=%'}\r\n2024-08-03 15:45:08,788 [sqlalchemy.engine.Engine] INFO: [cached since 1057s ago] {'status_1': 'pending', 'options_1': '%node=%'}\r\n2024-08-03 15:45:08,795 INFO sqlalchemy.engine.Engine COMMIT\r\n2024-08-03 15:45:08,795 [sqlalchemy.engine.Engine] INFO: COMMIT\r\n{\"message\": \"Analysis status\", \"status\": \"init\", \"description\": \"\"}\r\n2024-08-03 15:45:09,353 INFO sqlalchemy.engine.Engine COMMIT\r\n2024-08-03 15:45:09,353 [sqlalchemy.engine.Engine] INFO: COMMIT\r\n2024-08-03 15:45:09,356 [lib.cuckoo.core.analysis_manager] ERROR: Task #2: failure in AnalysisManager.run\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 496, in run\r\n    self.launch_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 458, in launch_analysis\r\n    success = self.perform_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 442, in perform_analysis\r\n    with self.machine_running(), self.result_server(), self.network_routing(), self.run_auxiliary():\r\n  File \"/usr/lib/python3.10/contextlib.py\", line 142, in __exit__\r\n    next(self.gen)\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 334, in machine_running\r\n    self.machinery_manager.machinery.release(self.machine)\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 270, in release\r\n    return self.db.unlock_machine(machine)\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/database.py\", line 978, in unlock_machine\r\n    self.session.add(machine)\r\n  File \"<string>\", line 2, in add\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 2648, in add\r\n    self._save_or_update_state(state)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 2672, in _save_or_update_state\r\n    self._save_or_update_impl(state)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 3289, in _save_or_update_impl\r\n    self._update_impl(state)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 3278, in _update_impl\r\n    self.identity_map.add(state)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/identity.py\", line 151, in add\r\n    raise sa_exc.InvalidRequestError(\r\nsqlalchemy.exc.InvalidRequestError: Can't attach instance <Machine at 0x71b1d40c2560>; another instance with key (<class 'lib.cuckoo.core.database.Machine'>, (5,), None) is already present in this session.\r\n2024-08-03 15:45:09,799 INFO sqlalchemy.engine.Engine BEGIN (implicit)\r\n2024-08-03 15:45:09,799 [sqlalchemy.engine.Engine] INFO: BEGIN (implicit)\r\n2024-08-03 15:45:09,799 INFO sqlalchemy.engine.Engine SELECT count(*) AS count_1 \r\nFROM (SELECT machines.id AS machines_id, machines.name AS machines_name, machines.label AS machines_label, machines.arch AS machines_arch, machines.ip AS machines_ip, machines.platform AS machines_platform, machines.interface AS machines_interface, machines.snapshot AS machines_snapshot, machines.locked AS machines_locked, machines.locked_changed_on AS machines_locked_changed_on, machines.status AS machines_status, machines.status_changed_on AS machines_status_changed_on, machines.resultserver_ip AS machines_resultserver_ip, machines.resultserver_port AS machines_resultserver_port, machines.reserved AS machines_reserved \r\nFROM machines \r\nWHERE machines.locked = true) AS anon_1\r\n2024-08-03 15:45:09,799 [sqlalchemy.engine.Engine] INFO: SELECT count(*) AS count_1 \r\nFROM (SELECT machines.id AS machines_id, machines.name AS machines_name, machines.label AS machines_label, machines.arch AS machines_arch, machines.ip AS machines_ip, machines.platform AS machines_platform, machines.interface AS machines_interface, machines.snapshot AS machines_snapshot, machines.locked AS machines_locked, machines.locked_changed_on AS machines_locked_changed_on, machines.status AS machines_status, machines.status_changed_on AS machines_status_changed_on, machines.resultserver_ip AS machines_resultserver_ip, machines.resultserver_port AS machines_resultserver_port, machines.reserved AS machines_reserved \r\nFROM machines \r\nWHERE machines.locked = true) AS anon_1\r\n2024-08-03 15:45:09,800 INFO sqlalchemy.engine.Engine [cached since 1058s ago] {}\r\n2024-08-03 15:45:09,800 [sqlalchemy.engine.Engine] INFO: [cached since 1058s ago] {}\r\n2024-08-03 15:45:09,801 INFO sqlalchemy.engine.Engine SELECT tasks.id AS tasks_id, tasks.target AS tasks_target, tasks.category AS tasks_category, tasks.cape AS tasks_cape, tasks.timeout AS tasks_timeout, tasks.priority AS tasks_priority, tasks.custom AS tasks_custom, tasks.machine AS tasks_machine, tasks.package AS tasks_package, tasks.route AS tasks_route, tasks.tags_tasks AS tasks_tags_tasks, tasks.options AS tasks_options, tasks.platform AS tasks_platform, tasks.memory AS tasks_memory, tasks.enforce_timeout AS tasks_enforce_timeout, tasks.clock AS tasks_clock, tasks.added_on AS tasks_added_on, tasks.started_on AS tasks_started_on, tasks.completed_on AS tasks_completed_on, tasks.status AS tasks_status, tasks.dropped_files AS tasks_dropped_files, tasks.running_processes AS tasks_running_processes, tasks.api_calls AS tasks_api_calls, tasks.domains AS tasks_domains, tasks.signatures_total AS tasks_signatures_total, tasks.signatures_alert AS tasks_signatures_alert, tasks.files_written AS tasks_files_written, tasks.registry_keys_modified AS tasks_registry_keys_modified, tasks.crash_issues AS tasks_crash_issues, tasks.anti_issues AS tasks_anti_issues, tasks.analysis_started_on AS tasks_analysis_started_on, tasks.analysis_finished_on AS tasks_analysis_finished_on, tasks.processing_started_on AS tasks_processing_started_on, tasks.processing_finished_on AS tasks_processing_finished_on, tasks.signatures_started_on AS tasks_signatures_started_on, tasks.signatures_finished_on AS tasks_signatures_finished_on, tasks.reporting_started_on AS tasks_reporting_started_on, tasks.reporting_finished_on AS tasks_reporting_finished_on, tasks.timedout AS tasks_timedout, tasks.sample_id AS tasks_sample_id, tasks.machine_id AS tasks_machine_id, tasks.shrike_url AS tasks_shrike_url, tasks.shrike_refer AS tasks_shrike_refer, tasks.shrike_msg AS tasks_shrike_msg, tasks.shrike_sid AS tasks_shrike_sid, tasks.parent_id AS tasks_parent_id, tasks.tlp AS tasks_tlp, tasks.user_id AS tasks_user_id, tasks.username AS tasks_username, tags_1.id AS tags_1_id, tags_1.name AS tags_1_name, guests_1.id AS guests_1_id, guests_1.status AS guests_1_status, guests_1.name AS guests_1_name, guests_1.label AS guests_1_label, guests_1.platform AS guests_1_platform, guests_1.manager AS guests_1_manager, guests_1.started_on AS guests_1_started_on, guests_1.shutdown_on AS guests_1_shutdown_on, guests_1.task_id AS guests_1_task_id, errors_1.id AS errors_1_id, errors_1.message AS errors_1_message, errors_1.task_id AS errors_1_task_id \r\nFROM tasks LEFT OUTER JOIN (tasks_tags AS tasks_tags_1 JOIN tags AS tags_1 ON tags_1.id = tasks_tags_1.tag_id) ON tasks.id = tasks_tags_1.task_id LEFT OUTER JOIN guests AS guests_1 ON tasks.id = guests_1.task_id LEFT OUTER JOIN errors AS errors_1 ON tasks.id = errors_1.task_id \r\nWHERE tasks.status = %(status_1)s AND tasks.options NOT LIKE %(options_1)s ORDER BY tasks.priority DESC, tasks.added_on FOR UPDATE OF tasks\r\n2024-08-03 15:45:09,801 [sqlalchemy.engine.Engine] INFO: SELECT tasks.id AS tasks_id, tasks.target AS tasks_target, tasks.category AS tasks_category, tasks.cape AS tasks_cape, tasks.timeout AS tasks_timeout, tasks.priority AS tasks_priority, tasks.custom AS tasks_custom, tasks.machine AS tasks_machine, tasks.package AS tasks_package, tasks.route AS tasks_route, tasks.tags_tasks AS tasks_tags_tasks, tasks.options AS tasks_options, tasks.platform AS tasks_platform, tasks.memory AS tasks_memory, tasks.enforce_timeout AS tasks_enforce_timeout, tasks.clock AS tasks_clock, tasks.added_on AS tasks_added_on, tasks.started_on AS tasks_started_on, tasks.completed_on AS tasks_completed_on, tasks.status AS tasks_status, tasks.dropped_files AS tasks_dropped_files, tasks.running_processes AS tasks_running_processes, tasks.api_calls AS tasks_api_calls, tasks.domains AS tasks_domains, tasks.signatures_total AS tasks_signatures_total, tasks.signatures_alert AS tasks_signatures_alert, tasks.files_written AS tasks_files_written, tasks.registry_keys_modified AS tasks_registry_keys_modified, tasks.crash_issues AS tasks_crash_issues, tasks.anti_issues AS tasks_anti_issues, tasks.analysis_started_on AS tasks_analysis_started_on, tasks.analysis_finished_on AS tasks_analysis_finished_on, tasks.processing_started_on AS tasks_processing_started_on, tasks.processing_finished_on AS tasks_processing_finished_on, tasks.signatures_started_on AS tasks_signatures_started_on, tasks.signatures_finished_on AS tasks_signatures_finished_on, tasks.reporting_started_on AS tasks_reporting_started_on, tasks.reporting_finished_on AS tasks_reporting_finished_on, tasks.timedout AS tasks_timedout, tasks.sample_id AS tasks_sample_id, tasks.machine_id AS tasks_machine_id, tasks.shrike_url AS tasks_shrike_url, tasks.shrike_refer AS tasks_shrike_refer, tasks.shrike_msg AS tasks_shrike_msg, tasks.shrike_sid AS tasks_shrike_sid, tasks.parent_id AS tasks_parent_id, tasks.tlp AS tasks_tlp, tasks.user_id AS tasks_user_id, tasks.username AS tasks_username, tags_1.id AS tags_1_id, tags_1.name AS tags_1_name, guests_1.id AS guests_1_id, guests_1.status AS guests_1_status, guests_1.name AS guests_1_name, guests_1.label AS guests_1_label, guests_1.platform AS guests_1_platform, guests_1.manager AS guests_1_manager, guests_1.started_on AS guests_1_started_on, guests_1.shutdown_on AS guests_1_shutdown_on, guests_1.task_id AS guests_1_task_id, errors_1.id AS errors_1_id, errors_1.message AS errors_1_message, errors_1.task_id AS errors_1_task_id \r\nFROM tasks LEFT OUTER JOIN (tasks_tags AS tasks_tags_1 JOIN tags AS tags_1 ON tags_1.id = tasks_tags_1.tag_id) ON tasks.id = tasks_tags_1.task_id LEFT OUTER JOIN guests AS guests_1 ON tasks.id = guests_1.task_id LEFT OUTER JOIN errors AS errors_1 ON tasks.id = errors_1.task_id \r\nWHERE tasks.status = %(status_1)s AND tasks.options NOT LIKE %(options_1)s ORDER BY tasks.priority DESC, tasks.added_on FOR UPDATE OF tasks\r\n2024-08-03 15:45:09,801 INFO sqlalchemy.engine.Engine [cached since 1058s ago] {'status_1': 'pending', 'options_1': '%node=%'}\r\n2024-08-03 15:45:09,801 [sqlalchemy.engine.Engine] INFO: [cached since 1058s ago] {'status_1': 'pending', 'options_1': '%node=%'}\r\n2024-08-03 15:45:09,804 INFO sqlalchemy.engine.Engine COMMIT\r\n2024-08-03 15:45:09,804 [sqlalchemy.engine.Engine] INFO: COMMIT\r\n2024-08-03 15:45:10,806 INFO sqlalchemy.engine.Engine BEGIN (implicit)\r\n2024-08-03 15:45:10,806 [sqlalchemy.engine.Engine] INFO: BEGIN (implicit)\r\n2024-08-03 15:45:10,807 INFO sqlalchemy.engine.Engine SELECT count(*) AS count_1 \r\nFROM (SELECT machines.id AS machines_id, machines.name AS machines_name, machines.label AS machines_label, machines.arch AS machines_arch, machines.ip AS machines_ip, machines.platform AS machines_platform, machines.interface AS machines_interface, machines.snapshot AS machines_snapshot, machines.locked AS machines_locked, machines.locked_changed_on AS machines_locked_changed_on, machines.status AS machines_status, machines.status_changed_on AS machines_status_changed_on, machines.resultserver_ip AS machines_resultserver_ip, machines.resultserver_port AS machines_resultserver_port, machines.reserved AS machines_reserved \r\nFROM machines \r\nWHERE machines.locked = true) AS anon_1\r\n2024-08-03 15:45:10,807 [sqlalchemy.engine.Engine] INFO: SELECT count(*) AS count_1 \r\nFROM (SELECT machines.id AS machines_id, machines.name AS machines_name, machines.label AS machines_label, machines.arch AS machines_arch, machines.ip AS machines_ip, machines.platform AS machines_platform, machines.interface AS machines_interface, machines.snapshot AS machines_snapshot, machines.locked AS machines_locked, machines.locked_changed_on AS machines_locked_changed_on, machines.status AS machines_status, machines.status_changed_on AS machines_status_changed_on, machines.resultserver_ip AS machines_resultserver_ip, machines.resultserver_port AS machines_resultserver_port, machines.reserved AS machines_reserved \r\nFROM machines \r\nWHERE machines.locked = true) AS anon_1\r\n2024-08-03 15:45:10,807 INFO sqlalchemy.engine.Engine [cached since 1059s ago] {}\r\n2024-08-03 15:45:10,807 [sqlalchemy.engine.Engine] INFO: [cached since 1059s ago] {}\r\n2024-08-03 15:45:10,808 INFO sqlalchemy.engine.Engine SELECT tasks.id AS tasks_id, tasks.target AS tasks_target, tasks.category AS tasks_category, tasks.cape AS tasks_cape, tasks.timeout AS tasks_timeout, tasks.priority AS tasks_priority, tasks.custom AS tasks_custom, tasks.machine AS tasks_machine, tasks.package AS tasks_package, tasks.route AS tasks_route, tasks.tags_tasks AS tasks_tags_tasks, tasks.options AS tasks_options, tasks.platform AS tasks_platform, tasks.memory AS tasks_memory, tasks.enforce_timeout AS tasks_enforce_timeout, tasks.clock AS tasks_clock, tasks.added_on AS tasks_added_on, tasks.started_on AS tasks_started_on, tasks.completed_on AS tasks_completed_on, tasks.status AS tasks_status, tasks.dropped_files AS tasks_dropped_files, tasks.running_processes AS tasks_running_processes, tasks.api_calls AS tasks_api_calls, tasks.domains AS tasks_domains, tasks.signatures_total AS tasks_signatures_total, tasks.signatures_alert AS tasks_signatures_alert, tasks.files_written AS tasks_files_written, tasks.registry_keys_modified AS tasks_registry_keys_modified, tasks.crash_issues AS tasks_crash_issues, tasks.anti_issues AS tasks_anti_issues, tasks.analysis_started_on AS tasks_analysis_started_on, tasks.analysis_finished_on AS tasks_analysis_finished_on, tasks.processing_started_on AS tasks_processing_started_on, tasks.processing_finished_on AS tasks_processing_finished_on, tasks.signatures_started_on AS tasks_signatures_started_on, tasks.signatures_finished_on AS tasks_signatures_finished_on, tasks.reporting_started_on AS tasks_reporting_started_on, tasks.reporting_finished_on AS tasks_reporting_finished_on, tasks.timedout AS tasks_timedout, tasks.sample_id AS tasks_sample_id, tasks.machine_id AS tasks_machine_id, tasks.shrike_url AS tasks_shrike_url, tasks.shrike_refer AS tasks_shrike_refer, tasks.shrike_msg AS tasks_shrike_msg, tasks.shrike_sid AS tasks_shrike_sid, tasks.parent_id AS tasks_parent_id, tasks.tlp AS tasks_tlp, tasks.user_id AS tasks_user_id, tasks.username AS tasks_username, tags_1.id AS tags_1_id, tags_1.name AS tags_1_name, guests_1.id AS guests_1_id, guests_1.status AS guests_1_status, guests_1.name AS guests_1_name, guests_1.label AS guests_1_label, guests_1.platform AS guests_1_platform, guests_1.manager AS guests_1_manager, guests_1.started_on AS guests_1_started_on, guests_1.shutdown_on AS guests_1_shutdown_on, guests_1.task_id AS guests_1_task_id, errors_1.id AS errors_1_id, errors_1.message AS errors_1_message, errors_1.task_id AS errors_1_task_id \r\nFROM tasks LEFT OUTER JOIN (tasks_tags AS tasks_tags_1 JOIN tags AS tags_1 ON tags_1.id = tasks_tags_1.tag_id) ON tasks.id = tasks_tags_1.task_id LEFT OUTER JOIN guests AS guests_1 ON tasks.id = guests_1.task_id LEFT OUTER JOIN errors AS errors_1 ON tasks.id = errors_1.task_id \r\nWHERE tasks.status = %(status_1)s AND tasks.options NOT LIKE %(options_1)s ORDER BY tasks.priority DESC, tasks.added_on FOR UPDATE OF tasks\r\n2024-08-03 15:45:10,808 [sqlalchemy.engine.Engine] INFO: SELECT tasks.id AS tasks_id, tasks.target AS tasks_target, tasks.category AS tasks_category, tasks.cape AS tasks_cape, tasks.timeout AS tasks_timeout, tasks.priority AS tasks_priority, tasks.custom AS tasks_custom, tasks.machine AS tasks_machine, tasks.package AS tasks_package, tasks.route AS tasks_route, tasks.tags_tasks AS tasks_tags_tasks, tasks.options AS tasks_options, tasks.platform AS tasks_platform, tasks.memory AS tasks_memory, tasks.enforce_timeout AS tasks_enforce_timeout, tasks.clock AS tasks_clock, tasks.added_on AS tasks_added_on, tasks.started_on AS tasks_started_on, tasks.completed_on AS tasks_completed_on, tasks.status AS tasks_status, tasks.dropped_files AS tasks_dropped_files, tasks.running_processes AS tasks_running_processes, tasks.api_calls AS tasks_api_calls, tasks.domains AS tasks_domains, tasks.signatures_total AS tasks_signatures_total, tasks.signatures_alert AS tasks_signatures_alert, tasks.files_written AS tasks_files_written, tasks.registry_keys_modified AS tasks_registry_keys_modified, tasks.crash_issues AS tasks_crash_issues, tasks.anti_issues AS tasks_anti_issues, tasks.analysis_started_on AS tasks_analysis_started_on, tasks.analysis_finished_on AS tasks_analysis_finished_on, tasks.processing_started_on AS tasks_processing_started_on, tasks.processing_finished_on AS tasks_processing_finished_on, tasks.signatures_started_on AS tasks_signatures_started_on, tasks.signatures_finished_on AS tasks_signatures_finished_on, tasks.reporting_started_on AS tasks_reporting_started_on, tasks.reporting_finished_on AS tasks_reporting_finished_on, tasks.timedout AS tasks_timedout, tasks.sample_id AS tasks_sample_id, tasks.machine_id AS tasks_machine_id, tasks.shrike_url AS tasks_shrike_url, tasks.shrike_refer AS tasks_shrike_refer, tasks.shrike_msg AS tasks_shrike_msg, tasks.shrike_sid AS tasks_shrike_sid, tasks.parent_id AS tasks_parent_id, tasks.tlp AS tasks_tlp, tasks.user_id AS tasks_user_id, tasks.username AS tasks_username, tags_1.id AS tags_1_id, tags_1.name AS tags_1_name, guests_1.id AS guests_1_id, guests_1.status AS guests_1_status, guests_1.name AS guests_1_name, guests_1.label AS guests_1_label, guests_1.platform AS guests_1_platform, guests_1.manager AS guests_1_manager, guests_1.started_on AS guests_1_started_on, guests_1.shutdown_on AS guests_1_shutdown_on, guests_1.task_id AS guests_1_task_id, errors_1.id AS errors_1_id, errors_1.message AS errors_1_message, errors_1.task_id AS errors_1_task_id \r\nFROM tasks LEFT OUTER JOIN (tasks_tags AS tasks_tags_1 JOIN tags AS tags_1 ON tags_1.id = tasks_tags_1.tag_id) ON tasks.id = tasks_tags_1.task_id LEFT OUTER JOIN guests AS guests_1 ON tasks.id = guests_1.task_id LEFT OUTER JOIN errors AS errors_1 ON tasks.id = errors_1.task_id \r\nWHERE tasks.status = %(status_1)s AND tasks.options NOT LIKE %(options_1)s ORDER BY tasks.priority DESC, tasks.added_on FOR UPDATE OF tasks\r\n2024-08-03 15:45:10,808 INFO sqlalchemy.engine.Engine [cached since 1059s ago] {'status_1': 'pending', 'options_1': '%node=%'}\r\n2024-08-03 15:45:10,808 [sqlalchemy.engine.Engine] INFO: [cached since 1059s ago] {'status_1': 'pending', 'options_1': '%node=%'}\r\n2024-08-03 15:45:10,810 INFO sqlalchemy.engine.Engine COMMIT\r\n2024-08-03 15:45:10,810 [sqlalchemy.engine.Engine] INFO: COMMIT\r\n2024-08-03 15:45:11,812 INFO sqlalchemy.engine.Engine BEGIN (implicit)\r\n2024-08-03 15:45:11,812 [sqlalchemy.engine.Engine] INFO: BEGIN (implicit)\r\n2024-08-03 15:45:11,813 INFO sqlalchemy.engine.Engine SELECT count(*) AS count_1 \r\nFROM (SELECT machines.id AS machines_id, machines.name AS machines_name, machines.label AS machines_label, machines.arch AS machines_arch, machines.ip AS machines_ip, machines.platform AS machines_platform, machines.interface AS machines_interface, machines.snapshot AS machines_snapshot, machines.locked AS machines_locked, machines.locked_changed_on AS machines_locked_changed_on, machines.status AS machines_status, machines.status_changed_on AS machines_status_changed_on, machines.resultserver_ip AS machines_resultserver_ip, machines.resultserver_port AS machines_resultserver_port, machines.reserved AS machines_reserved \r\nFROM machines \r\nWHERE machines.locked = true) AS anon_1\r\n2024-08-03 15:45:11,813 [sqlalchemy.engine.Engine] INFO: SELECT count(*) AS count_1 \r\nFROM (SELECT machines.id AS machines_id, machines.name AS machines_name, machines.label AS machines_label, machines.arch AS machines_arch, machines.ip AS machines_ip, machines.platform AS machines_platform, machines.interface AS machines_interface, machines.snapshot AS machines_snapshot, machines.locked AS machines_locked, machines.locked_changed_on AS machines_locked_changed_on, machines.status AS machines_status, machines.status_changed_on AS machines_status_changed_on, machines.resultserver_ip AS machines_resultserver_ip, machines.resultserver_port AS machines_resultserver_port, machines.reserved AS machines_reserved \r\nFROM machines \r\nWHERE machines.locked = true) AS anon_1\r\n```\nComment: @doomedraven i updated os and cape and errors due to sqlalchemy seem to be fixed. unfortunately i got another error, Basically the analysis started as expected but after few seconds, task turned in failed and physical machine was rebooted. This is the log of the analysis task on web gui:\r\n\r\n```\r\n2024-08-22 13:31:13,357 [root] INFO: Date set to: 20240822T13:31:14, timeout set to: 200\r\n2024-08-22 13:31:14,000 [root] DEBUG: Starting analyzer from: C:\\tmp8sz0jlcw\r\n2024-08-22 13:31:14,000 [root] DEBUG: Storing results at: C:\\EJVzYsIz\r\n2024-08-22 13:31:14,000 [root] DEBUG: Pipe server name: \\\\.\\PIPE\\QNUdrqGaF\r\n2024-08-22 13:31:14,000 [root] DEBUG: Python path: C:\\Users\\sam\\AppData\\Local\\Programs\\Python\\Python310-32\r\n2024-08-22 13:31:14,000 [root] INFO: analysis running as an admin\r\n2024-08-22 13:31:14,000 [root] INFO: analysis package specified: \"exe\"\r\n2024-08-22 13:31:14,000 [root] DEBUG: importing analysis package module: \"modules.packages.exe\"...\r\n2024-08-22 13:31:14,010 [root] DEBUG: imported analysis package \"exe\"\r\n2024-08-22 13:31:14,010 [root] DEBUG: initializing analysis package \"exe\"...\r\n2024-08-22 13:31:14,010 [lib.common.common] INFO: wrapping\r\n2024-08-22 13:31:14,010 [lib.core.compound] INFO: C:\\Users\\sam\\AppData\\Local\\Temp already exists, skipping creation\r\n2024-08-22 13:31:14,010 [root] DEBUG: New location of moved file: C:\\Users\\sam\\AppData\\Local\\Temp\\2cdf95d8ff803328ea77.exe\r\n2024-08-22 13:31:14,010 [root] INFO: Analyzer: Package modules.packages.exe does not specify a DLL option\r\n2024-08-22 13:31:14,010 [root] INFO: Analyzer: Package modules.packages.exe does not specify a DLL_64 option\r\n2024-08-22 13:31:14,010 [root] INFO: Analyzer: Package modules.packages.exe does not specify a loader option\r\n2024-08-22 13:31:14,010 [root] INFO: Analyzer: Package modules.packages.exe does not specify a loader_64 option\r\n2024-08-22 13:31:14,010 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.DNS_ETW\"...\r\n2024-08-22 13:31:14,026 [modules.auxiliary.DNS_ETW] DEBUG: Could not load auxiliary module DNS_ETW due to 'No module named 'etw''\r\n2024-08-22 13:31:14,026 [root] ERROR: Traceback (most recent call last):\r\n  File \"C:\\tmp8sz0jlcw\\modules\\auxiliary\\DNS_ETW.py\", line 17, in <module>\r\n    from etw import ETW, ProviderInfo\r\nModuleNotFoundError: No module named 'etw'\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"C:\\tmp8sz0jlcw\\analyzer.py\", line 1524, in <module>\r\n    success = analyzer.run()\r\n  File \"C:\\tmp8sz0jlcw\\analyzer.py\", line 507, in run\r\n    __import__(name, globals(), locals(), [\"dummy\"])\r\n  File \"C:\\tmp8sz0jlcw\\modules\\auxiliary\\DNS_ETW.py\", line 22, in <module>\r\n    raise CuckooPackageError(\"In order to use DNS_ETW functionality, it \" \"is required to have pywintrace setup in python.\")\r\nlib.common.exceptions.CuckooPackageError: In order to use DNS_ETW functionality, it is required to have pywintrace setup in python.\r\nTraceback (most recent call last):\r\n  File \"C:\\tmp8sz0jlcw\\modules\\auxiliary\\DNS_ETW.py\", line 17, in <module>\r\n    from etw import ETW, ProviderInfo\r\nModuleNotFoundError: No module named 'etw'\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"C:\\tmp8sz0jlcw\\analyzer.py\", line 1524, in <module>\r\n    success = analyzer.run()\r\n  File \"C:\\tmp8sz0jlcw\\analyzer.py\", line 507, in run\r\n    __import__(name, globals(), locals(), [\"dummy\"])\r\n  File \"C:\\tmp8sz0jlcw\\modules\\auxiliary\\DNS_ETW.py\", line 22, in <module>\r\n    raise CuckooPackageError(\"In order to use DNS_ETW functionality, it \" \"is required to have pywintrace setup in python.\")\r\nlib.common.exceptions.CuckooPackageError: In order to use DNS_ETW functionality, it is required to have pywintrace setup in python.\r\n2024-08-22 13:31:14,026 [root] WARNING: Folder at path \"C:\\EJVzYsIz\\debugger\" does not exist, skipping\r\n2024-08-22 13:31:14,026 [root] WARNING: Folder at path \"C:\\EJVzYsIz\\tlsdump\" does not exist, skipping\r\n2024-08-22 13:31:14,026 [root] INFO: Analysis completed\r\n```\r\nfrom the DNS_ETW module:\r\n```\r\ntry:\r\n    from etw import ETW, ProviderInfo\r\n    from etw import evntrace as et\r\n    from etw.GUID import GUID\r\nexcept Exception as e:\r\n    log.debug(f\"Could not load auxiliary module DNS_ETW due to '{e}'\")\r\n    raise CuckooPackageError(\"In order to use DNS_ETW functionality, it \" \"is required to have pywintrace setup in python.\")\r\n```\r\n I noticed that DNS_ETW was added only 3 days ago..  pywintrace is required on physical host?.\r\ncan you help me?\nComment: hey, sorry, for no responses, jumping between vacations and work. i have pushed fix, do `git pull`, you don't need to restart nothing at all\nComment: @doomedraven thanks for reply ;-) .. as you wrote before (update)  pywintrace is required on physical host?\r\n\r\n\nComment: @doomedraven the fix did not solve the problem ... perhaps the lack of pywintrace raises the exception \nComment: pywintrace is not required, is windows side dependency in case you want to get ETW events, well if it didn't fit it, then remove that file from you cape, i don't have time to dig into that right now\nComment: also as you say it didn't fix, show the error\nComment: yep.. think I will apply this workaround, also because it is not possible to disable the module from the auxiliary config file\nComment: saying that something doesn't work without error trace is not very useful\nComment: closing this as original issue doesn't exist anymore. and would appreciate the error msg after `git pull` as you say dns etw is not fixed\nComment: the problem with sqlalchemy resurfaced after last update (machine and capev2). Capev2 was in 'clean' state.\r\nthis is the log:\r\n\r\n```\r\n2024-09-08 11:28:20,564 [modules.auxiliary.QemuScreenshots] ERROR: No module named 'libvirt'\r\n2024-09-08 11:28:22,115 [lib.cuckoo.core.machinery_manager] INFO: Using MachineryManager[physical] with max_machines_count=10\r\n2024-09-08 11:28:22,115 [lib.cuckoo.core.scheduler] INFO: Creating scheduler with max_analysis_count=unlimited\r\n2024-09-08 11:28:25,559 [lib.cuckoo.core.machinery_manager] INFO: Loaded 1 machine\r\n2024-09-08 11:28:25,590 [lib.cuckoo.core.machinery_manager] INFO: max_vmstartup_count for BoundedSemaphore = 5\r\n2024-09-08 11:28:25,594 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks\r\n2024-09-08 11:53:04,553 [lib.cuckoo.core.machinery_manager] INFO: Task #1: found useable machine physical01 (arch=x64, platform=windows)\r\n2024-09-08 11:53:04,553 [lib.cuckoo.core.scheduler] INFO: Task #1: Processing task\r\n2024-09-08 11:53:04,667 [lib.cuckoo.core.analysis_manager] INFO: Task #1: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_3ez_u6wo/cs.dll'\r\n2024-09-08 11:53:04,695 [lib.cuckoo.core.analysis_manager] INFO: Task #1: Enabled route 'internet'.\r\n2024-09-08 11:53:04,700 [modules.auxiliary.QemuScreenshots] INFO: QEMU screenshots module loaded\r\n2024-09-08 11:53:04,711 [modules.auxiliary.sniffer] INFO: Started sniffer with PID 4345 (interface=enp2s0, host=192.168.1.101, dump path=/opt/CAPEv2/storage/analyses/1/dump.pcap)\r\n2024-09-08 11:53:05,215 [lib.cuckoo.core.guest] INFO: Task #1: Starting analysis on guest (id=physical01, ip=192.168.1.101)\r\n2024-09-08 11:53:05,231 [lib.cuckoo.core.guest] INFO: Task #1: Guest is running CAPE Agent 0.17 (id=physical01, ip=192.168.1.101)\r\n2024-09-08 11:53:07,391 [lib.cuckoo.core.guest] INFO: Task #1: Uploading script files to guest (id=physical01, ip=192.168.1.101)\r\n2024-09-08 11:57:27,655 [lib.cuckoo.core.guest] INFO: Task #1: End of analysis reached! (id=physical01, ip=192.168.1.101)\r\n2024-09-08 11:57:27,768 [lib.cuckoo.core.analysis_manager] INFO: Task #1: Disabled route 'internet'\r\n2024-09-08 12:13:22,128 [lib.cuckoo.core.analysis_manager] ERROR: Task #1: failure in AnalysisManager.run\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 497, in run\r\n    self.launch_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 459, in launch_analysis\r\n    success = self.perform_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 443, in perform_analysis\r\n    with self.machine_running(), self.result_server(), self.network_routing(), self.run_auxiliary():\r\n  File \"/usr/lib/python3.10/contextlib.py\", line 142, in __exit__\r\n    next(self.gen)\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 335, in machine_running\r\n    self.machinery_manager.machinery.release(self.machine)\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 270, in release\r\n    return self.db.unlock_machine(machine)\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/database.py\", line 978, in unlock_machine\r\n    self.session.add(machine)\r\n  File \"<string>\", line 2, in add\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 2648, in add\r\n    self._save_or_update_state(state)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 2672, in _save_or_update_state\r\n    self._save_or_update_impl(state)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 3289, in _save_or_update_impl\r\n    self._update_impl(state)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 3278, in _update_impl\r\n    self.identity_map.add(state)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/identity.py\", line 151, in add\r\n    raise sa_exc.InvalidRequestError(\r\nsqlalchemy.exc.InvalidRequestError: Can't attach instance <Machine at 0x73b53a191300>; another instance with key (<class 'lib.cuckoo.core.database.Machine'>, (1,), None) is already present in this session.\r\n```\r\ncan anyone help me solve it definitively? or is it better to reinstall cape?\r\n@doomedraven please could you reopen the issue?\r\n\nComment: I have investigated further and I have noticed a weird behaviour. if I restore the machine to the cleaned state and launch a normal exe with default options, the analysis works, it is completed correctly without errors.\r\ninstead in the previous analysis i ran a dll with dll analyzer and some options (dllloader and function) and it failed for some reason (may be for some wrong option value), getting the sqlalchemy error message. could this have been the cause?\r\n\r\n@doomedraven please consider closing the case again. Thanks!! \r\n\nComment: Sql errors are not related to cape options\r\n\r\nEl mar, 10 sept 2024, 7:12, marsomx ***@***.***> escribi\u00f3:\r\n\r\n> I have investigated further and I have noticed a weird behaviour. if I\r\n> restore the machine to the cleaned state and launch a normal exe with\r\n> default options, the analysis works, it is completed correctly without\r\n> errors.\r\n> instead in the previous analysis i ran a dll with dll analyzer and some\r\n> options (dllloader and function) and it failed for some reason (may be for\r\n> some wrong option value), getting the sqlalchemy error message. could this\r\n> have been the cause?\r\n>\r\n> @doomedraven <https://github.com/doomedraven> please consider closing the\r\n> case again. Thanks!!\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2258#issuecomment-2339751383>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH36UU2JUR5QA62UAV63ZV2EVDAVCNFSM6AAAAABL4F3XMKVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDGMZZG42TCMZYGM>\r\n> .\r\n> You are receiving this because you were mentioned.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: Not directly, of course... I meant that if the analysis is not completed correctly it could cause a sqlalchemy session problem.\r\n\r\n> Sql errors are not related to cape options El mar, 10 sept 2024, 7:12, marsomx ***@***.***> escribi\u00f3:\r\n> [\u2026](#)\r\n> I have investigated further and I have noticed a weird behaviour. if I restore the machine to the cleaned state and launch a normal exe with default options, the analysis works, it is completed correctly without errors. instead in the previous analysis i ran a dll with dll analyzer and some options (dllloader and function) and it failed for some reason (may be for some wrong option value), getting the sqlalchemy error message. could this have been the cause? @doomedraven <https://github.com/doomedraven> please consider closing the case again. Thanks!! \u2014 Reply to this email directly, view it on GitHub <[#2258 (comment)](https://github.com/kevoreilly/CAPEv2/issues/2258#issuecomment-2339751383)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAOFH36UU2JUR5QA62UAV63ZV2EVDAVCNFSM6AAAAABL4F3XMKVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDGMZZG42TCMZYGM> . You are receiving this because you were mentioned.Message ID: ***@***.***>\r\n\r\n\nComment: @doomedraven sorry if i ping you agains.. only one question.. after configuration parser modification (1 November) it seems my physical CAPE is not able to extract malware configuration anymore.. i've done required step with poetry install.. other action are required in files configuration? thanks in advance  \nComment: np, strange, no you don't need to do nothing else, you just need to have installed cape-parsers which is part of pyproject.toml. did you restart processing? if yes, can you do next as cape user:\r\n* `cd /opt/CAPEv2/utils && poetry run python process.py -r <task_id> -d` so that should give us an clue\nComment: > np, strange, no you don't need to do nothing else, you just need to have installed cape-parsers which is part of pyproject.toml. did you restart processing? if yes, can you do next as cape user:\r\n> \r\n> * `cd /opt/CAPEv2/utils && poetry run python process.py -r <task_id> -d` so that should give us an clue\r\n\r\ni submitted a lumma payoad (dumped from previous analysis) and this is the result of mentioned command\r\n\r\n```\r\n2024-12-14 10:22:51,548 [root] DEBUG: Importing modules...\r\n2024-12-14 10:22:51,550 [modules.auxiliary.QemuScreenshots] DEBUG: Importing 'PIL.ImageChops.difference'\r\n2024-12-14 10:22:51,550 [modules.auxiliary.QemuScreenshots] DEBUG: Importing 'PIL.ImageDraw'\r\n2024-12-14 10:22:51,551 [modules.auxiliary.QemuScreenshots] DEBUG: Importing 'PIL.Image'\r\n2024-12-14 10:22:51,551 [modules.auxiliary.QemuScreenshots] ERROR: No module named 'libvirt'\r\nOPTIONAL! Missed dependency: poetry run pip install peepdf-3\r\npip3 install certvalidator asn1crypto mscerts\r\nOPTIONAL! Missed dependency: poetry run pip install -U git+https://github.com/DissectMalware/batch_deobfuscator\r\nOPTIONAL! Missed dependency: poetry run pip install -U git+https://github.com/CAPESandbox/httpreplay\r\n2024-12-14 10:22:52,202 [capa.rules] DEBUG: reading rules from directory /opt/CAPEv2/data/capa-rules\r\n2024-12-14 10:22:52,228 [capa.rules.cache] DEBUG: loading rule set from cache: /home/cape/.cache/capa/capa-8c6bac93.cache\r\n2024-12-14 10:22:52,333 [capa.loader] DEBUG: reading signatures from directory /opt/CAPEv2/data/flare-signatures\r\n2024-12-14 10:22:52,333 [capa.loader] DEBUG: found signature file: /opt/CAPEv2/data/flare-signatures/1_flare_msvc_rtf_32_64.sig\r\n2024-12-14 10:22:52,333 [capa.loader] DEBUG: found signature file: /opt/CAPEv2/data/flare-signatures/2_flare_msvc_atlmfc_32_64.sig\r\n2024-12-14 10:22:52,333 [capa.loader] DEBUG: found signature file: /opt/CAPEv2/data/flare-signatures/3_flare_common_libs.sig\r\n2024-12-14 10:22:52,335 [root] DEBUG: Imported \"auxiliary\" modules:\r\n2024-12-14 10:22:52,336 [root] DEBUG: \t |-- AzSniffer\r\n2024-12-14 10:22:52,336 [root] DEBUG: \t |-- Mitmdump\r\n2024-12-14 10:22:52,336 [root] DEBUG: \t |-- QEMUScreenshots\r\n2024-12-14 10:22:52,336 [root] DEBUG: \t `-- Sniffer\r\n2024-12-14 10:22:52,336 [root] DEBUG: Imported \"processing\" modules:\r\n2024-12-14 10:22:52,336 [root] DEBUG: \t |-- CAPE\r\n2024-12-14 10:22:52,336 [root] DEBUG: \t |-- AnalysisInfo\r\n2024-12-14 10:22:52,336 [root] DEBUG: \t |-- Autoruns\r\n2024-12-14 10:22:52,336 [root] DEBUG: \t |-- BehaviorAnalysis\r\n2024-12-14 10:22:52,336 [root] DEBUG: \t |-- Debug\r\n2024-12-14 10:22:52,336 [root] DEBUG: \t |-- NetworkAnalysis\r\n2024-12-14 10:22:52,336 [root] DEBUG: \t |-- ProcessMemory\r\n2024-12-14 10:22:52,336 [root] DEBUG: \t |-- script_log_processing\r\n2024-12-14 10:22:52,336 [root] DEBUG: \t |-- Suricata\r\n2024-12-14 10:22:52,336 [root] DEBUG: \t `-- UrlAnalysis\r\n2024-12-14 10:22:52,336 [root] DEBUG: Imported \"signatures\" modules:\r\n2024-12-14 10:22:52,336 [root] DEBUG: \t |-- ClamAV\r\n2024-12-14 10:22:52,336 [root] DEBUG: \t |-- KnownVirustotal\r\n2024-12-14 10:22:52,336 [root] DEBUG: \t |-- BadCerts\r\n2024-12-14 10:22:52,336 [root] DEBUG: \t |-- BadSSLCerts\r\n2024-12-14 10:22:52,336 [root] DEBUG: \t |-- ZeusP2P\r\n2024-12-14 10:22:52,336 [root] DEBUG: \t |-- ZeusURL\r\n2024-12-14 10:22:52,336 [root] DEBUG: \t |-- AthenaHttp\r\n2024-12-14 10:22:52,336 [root] DEBUG: \t |-- DirtJumper\r\n2024-12-14 10:22:52,337 [root] DEBUG: \t |-- Drive\r\n2024-12-14 10:22:52,337 [root] DEBUG: \t |-- Drive2\r\n2024-12-14 10:22:52,337 [root] DEBUG: \t |-- Madness\r\n2024-12-14 10:22:52,337 [root] DEBUG: \t |-- FamilyProxyBack\r\n2024-12-14 10:22:52,337 [root] DEBUG: \t |-- FlareCAPAAntiAnalysis\r\n2024-12-14 10:22:52,337 [root] DEBUG: \t |-- FlareCAPACollection\r\n2024-12-14 10:22:52,337 [root] DEBUG: \t |-- FlareCAPACompiler\r\n2024-12-14 10:22:52,337 [root] DEBUG: \t |-- FlareCAPADataManipulation\r\n2024-12-14 10:22:52,337 [root] DEBUG: \t |-- FlareCAPAExecutable\r\n2024-12-14 10:22:52,337 [root] DEBUG: \t |-- FlareCAPAHostInteration\r\n2024-12-14 10:22:52,337 [root] DEBUG: \t |-- FlareCAPAcommunication\r\n2024-12-14 10:22:52,337 [root] DEBUG: \t |-- FlareCAPALib\r\n2024-12-14 10:22:52,337 [root] DEBUG: \t |-- FlareCAPALinking\r\n2024-12-14 10:22:52,337 [root] DEBUG: \t |-- FlareCAPALoadCode\r\n2024-12-14 10:22:52,337 [root] DEBUG: \t |-- FlareCAPAMalwareFamily\r\n2024-12-14 10:22:52,337 [root] DEBUG: \t |-- FlareCAPANursery\r\n2024-12-14 10:22:52,337 [root] DEBUG: \t |-- FlareCAPAPersistence\r\n2024-12-14 10:22:52,337 [root] DEBUG: \t |-- FlareCAPARuntime\r\n2024-12-14 10:22:52,337 [root] DEBUG: \t |-- FlareCAPATargeting\r\n2024-12-14 10:22:52,337 [root] DEBUG: \t |-- Log4j\r\n2024-12-14 10:22:52,337 [root] DEBUG: \t |-- MimicsExtension\r\n2024-12-14 10:22:52,337 [root] DEBUG: \t |-- NetworkCountryDistribution\r\n2024-12-14 10:22:52,337 [root] DEBUG: \t |-- NetworkMultipleDirectIPConnections\r\n2024-12-14 10:22:52,337 [root] DEBUG: \t |-- NetworkCnCHTTP\r\n2024-12-14 10:22:52,338 [root] DEBUG: \t |-- NetworkHTTPPOST\r\n2024-12-14 10:22:52,338 [root] DEBUG: \t |-- NetworkIPEXE\r\n2024-12-14 10:22:52,338 [root] DEBUG: \t |-- NetworkDGA\r\n2024-12-14 10:22:52,338 [root] DEBUG: \t |-- NetworkDGAFraunhofer\r\n2024-12-14 10:22:52,338 [root] DEBUG: \t |-- NetworkDynDNS\r\n2024-12-14 10:22:52,338 [root] DEBUG: \t |-- NetworkExcessiveUDP\r\n2024-12-14 10:22:52,338 [root] DEBUG: \t |-- NetworkHTTP\r\n2024-12-14 10:22:52,338 [root] DEBUG: \t |-- NetworkICMP\r\n2024-12-14 10:22:52,338 [root] DEBUG: \t |-- NetworkIRC\r\n2024-12-14 10:22:52,338 [root] DEBUG: \t |-- NetworkOpenProxy\r\n2024-12-14 10:22:52,338 [root] DEBUG: \t |-- NetworkP2P\r\n2024-12-14 10:22:52,338 [root] DEBUG: \t |-- NetworkQuestionableHost\r\n2024-12-14 10:22:52,338 [root] DEBUG: \t |-- NetworkQuestionableHttpPath\r\n2024-12-14 10:22:52,338 [root] DEBUG: \t |-- NetworkQuestionableHttpsPath\r\n2024-12-14 10:22:52,338 [root] DEBUG: \t |-- NetworkSMTP\r\n2024-12-14 10:22:52,338 [root] DEBUG: \t |-- TorGateway\r\n2024-12-14 10:22:52,338 [root] DEBUG: \t |-- BuildLangID\r\n2024-12-14 10:22:52,338 [root] DEBUG: \t |-- ResourceLangID\r\n2024-12-14 10:22:52,338 [root] DEBUG: \t |-- overlay\r\n2024-12-14 10:22:52,338 [root] DEBUG: \t |-- PackerUnknownPESectionName\r\n2024-12-14 10:22:52,338 [root] DEBUG: \t |-- ASPackPacked\r\n2024-12-14 10:22:52,338 [root] DEBUG: \t |-- AspireCryptPacked\r\n2024-12-14 10:22:52,338 [root] DEBUG: \t |-- BedsProtectorPacked\r\n2024-12-14 10:22:52,338 [root] DEBUG: \t |-- ConfuserPacked\r\n2024-12-14 10:22:52,338 [root] DEBUG: \t |-- EnigmaPacked\r\n2024-12-14 10:22:52,339 [root] DEBUG: \t |-- PackerEntropy\r\n2024-12-14 10:22:52,339 [root] DEBUG: \t |-- MPressPacked\r\n2024-12-14 10:22:52,339 [root] DEBUG: \t |-- NatePacked\r\n2024-12-14 10:22:52,339 [root] DEBUG: \t |-- NsPacked\r\n2024-12-14 10:22:52,339 [root] DEBUG: \t |-- SmartAssemblyPacked\r\n2024-12-14 10:22:52,339 [root] DEBUG: \t |-- SpicesPacked\r\n2024-12-14 10:22:52,339 [root] DEBUG: \t |-- ThemidaPacked\r\n2024-12-14 10:22:52,339 [root] DEBUG: \t |-- ThemidaPackedSection\r\n2024-12-14 10:22:52,339 [root] DEBUG: \t |-- TitanPacked\r\n2024-12-14 10:22:52,339 [root] DEBUG: \t |-- UPXCompressed\r\n2024-12-14 10:22:52,339 [root] DEBUG: \t |-- VMPPacked\r\n2024-12-14 10:22:52,339 [root] DEBUG: \t |-- YodaPacked\r\n2024-12-14 10:22:52,339 [root] DEBUG: \t |-- PDF_Annot_URLs\r\n2024-12-14 10:22:52,339 [root] DEBUG: \t |-- Polymorphic\r\n2024-12-14 10:22:52,339 [root] DEBUG: \t |-- PunchPlusPlusPCREs\r\n2024-12-14 10:22:52,339 [root] DEBUG: \t |-- Procmem_Yara\r\n2024-12-14 10:22:52,339 [root] DEBUG: \t |-- CheckIP\r\n2024-12-14 10:22:52,339 [root] DEBUG: \t |-- Authenticode\r\n2024-12-14 10:22:52,339 [root] DEBUG: \t |-- InvalidAuthenticodeSignature\r\n2024-12-14 10:22:52,339 [root] DEBUG: \t |-- DotNetAnomaly\r\n2024-12-14 10:22:52,339 [root] DEBUG: \t |-- Static_Java\r\n2024-12-14 10:22:52,339 [root] DEBUG: \t |-- Static_PDF\r\n2024-12-14 10:22:52,339 [root] DEBUG: \t |-- PEAnomaly\r\n2024-12-14 10:22:52,339 [root] DEBUG: \t |-- PECompileTimeStomping\r\n2024-12-14 10:22:52,339 [root] DEBUG: \t |-- StaticPEPDBPath\r\n2024-12-14 10:22:52,339 [root] DEBUG: \t |-- RATConfig\r\n2024-12-14 10:22:52,340 [root] DEBUG: \t |-- VersionInfoAnomaly\r\n2024-12-14 10:22:52,340 [root] DEBUG: \t |-- StealthNetwork\r\n2024-12-14 10:22:52,340 [root] DEBUG: \t |-- SuricataAlert\r\n2024-12-14 10:22:52,340 [root] DEBUG: \t |-- VolDevicetree1\r\n2024-12-14 10:22:52,340 [root] DEBUG: \t |-- VolHandles1\r\n2024-12-14 10:22:52,340 [root] DEBUG: \t |-- VolLdrModules1\r\n2024-12-14 10:22:52,340 [root] DEBUG: \t |-- VolLdrModules2\r\n2024-12-14 10:22:52,340 [root] DEBUG: \t |-- VolMalfind1\r\n2024-12-14 10:22:52,340 [root] DEBUG: \t |-- VolMalfind2\r\n2024-12-14 10:22:52,340 [root] DEBUG: \t |-- VolModscan1\r\n2024-12-14 10:22:52,340 [root] DEBUG: \t |-- VolSvcscan1\r\n2024-12-14 10:22:52,340 [root] DEBUG: \t |-- VolSvcscan2\r\n2024-12-14 10:22:52,340 [root] DEBUG: \t |-- VolSvcscan3\r\n2024-12-14 10:22:52,340 [root] DEBUG: \t |-- WHOIS_Create\r\n2024-12-14 10:22:52,340 [root] DEBUG: \t |-- AccessesMailslot\r\n2024-12-14 10:22:52,340 [root] DEBUG: \t |-- AccessesNetlogonRegkey\r\n2024-12-14 10:22:52,340 [root] DEBUG: \t |-- AccessesPublicFolder\r\n2024-12-14 10:22:52,340 [root] DEBUG: \t |-- AccessesSysvol\r\n2024-12-14 10:22:52,340 [root] DEBUG: \t |-- WritesSysvol\r\n2024-12-14 10:22:52,340 [root] DEBUG: \t |-- AddsAdminUser\r\n2024-12-14 10:22:52,340 [root] DEBUG: \t |-- AddsUser\r\n2024-12-14 10:22:52,340 [root] DEBUG: \t |-- OverwritesAdminPassword\r\n2024-12-14 10:22:52,340 [root] DEBUG: \t |-- anomalous_deletefile\r\n2024-12-14 10:22:52,340 [root] DEBUG: \t |-- AntiAnalysisDetectFile\r\n2024-12-14 10:22:52,340 [root] DEBUG: \t |-- AntiAnalysisDetectReg\r\n2024-12-14 10:22:52,341 [root] DEBUG: \t |-- QihooDetectLibs\r\n2024-12-14 10:22:52,341 [root] DEBUG: \t |-- AhnlabDetectLibs\r\n2024-12-14 10:22:52,341 [root] DEBUG: \t |-- AvastDetectLibs\r\n2024-12-14 10:22:52,341 [root] DEBUG: \t |-- BitdefenderDetectLibs\r\n2024-12-14 10:22:52,341 [root] DEBUG: \t |-- BullguardDetectLibs\r\n2024-12-14 10:22:52,341 [root] DEBUG: \t |-- ModifiesAttachmentManager\r\n2024-12-14 10:22:52,341 [root] DEBUG: \t |-- AntiAVDetectFile\r\n2024-12-14 10:22:52,341 [root] DEBUG: \t |-- AntiAVDetectReg\r\n2024-12-14 10:22:52,341 [root] DEBUG: \t |-- EmsisoftDetectLibs\r\n2024-12-14 10:22:52,341 [root] DEBUG: \t |-- QurbDetectLibs\r\n2024-12-14 10:22:52,341 [root] DEBUG: \t |-- AntiAVServiceStop\r\n2024-12-14 10:22:52,341 [root] DEBUG: \t |-- AntiAVSRP\r\n2024-12-14 10:22:52,341 [root] DEBUG: \t |-- AntiAVWhitespace\r\n2024-12-14 10:22:52,341 [root] DEBUG: \t |-- antidebug_addvectoredexceptionhandler\r\n2024-12-14 10:22:52,341 [root] DEBUG: \t |-- APIOverrideDetectLibs\r\n2024-12-14 10:22:52,341 [root] DEBUG: \t |-- antidebug_checkremotedebuggerpresent\r\n2024-12-14 10:22:52,341 [root] DEBUG: \t |-- antidebug_debugactiveprocess\r\n2024-12-14 10:22:52,341 [root] DEBUG: \t |-- AntiDBGDevices\r\n2024-12-14 10:22:52,341 [root] DEBUG: \t |-- antidebug_gettickcount\r\n2024-12-14 10:22:52,341 [root] DEBUG: \t |-- antidebug_guardpages\r\n2024-12-14 10:22:52,341 [root] DEBUG: \t |-- antidebug_ntcreatethreadex\r\n2024-12-14 10:22:52,341 [root] DEBUG: \t |-- BullguardDetectLibs\r\n2024-12-14 10:22:52,341 [root] DEBUG: \t |-- antidebug_ntsetinformationthread\r\n2024-12-14 10:22:52,341 [root] DEBUG: \t |-- antidebug_outputdebugstring\r\n2024-12-14 10:22:52,341 [root] DEBUG: \t |-- antidebug_setunhandledexceptionfilter\r\n2024-12-14 10:22:52,341 [root] DEBUG: \t |-- AntiDBGWindows\r\n2024-12-14 10:22:52,342 [root] DEBUG: \t |-- AntiEmuWinDefend\r\n2024-12-14 10:22:52,342 [root] DEBUG: \t |-- WineDetectReg\r\n2024-12-14 10:22:52,342 [root] DEBUG: \t |-- WineDetectFunc\r\n2024-12-14 10:22:52,342 [root] DEBUG: \t |-- AntiSandboxCheckUserdomain\r\n2024-12-14 10:22:52,342 [root] DEBUG: \t |-- AntiCuckoo\r\n2024-12-14 10:22:52,342 [root] DEBUG: \t |-- CuckooDetectFiles\r\n2024-12-14 10:22:52,342 [root] DEBUG: \t |-- CuckooCrash\r\n2024-12-14 10:22:52,342 [root] DEBUG: \t |-- AntiSandboxForegroundWindow\r\n2024-12-14 10:22:52,342 [root] DEBUG: \t |-- FortinetDetectFiles\r\n2024-12-14 10:22:52,342 [root] DEBUG: \t |-- SandboxJoeAnubisDetectFiles\r\n2024-12-14 10:22:52,342 [root] DEBUG: \t |-- HookMouse\r\n2024-12-14 10:22:52,342 [root] DEBUG: \t |-- AntiSandboxRestart\r\n2024-12-14 10:22:52,342 [root] DEBUG: \t |-- SandboxieDetectLibs\r\n2024-12-14 10:22:52,342 [root] DEBUG: \t |-- AntisandboxSboxieMutex\r\n2024-12-14 10:22:52,342 [root] DEBUG: \t |-- AntiSandboxSboxieObjects\r\n2024-12-14 10:22:52,342 [root] DEBUG: \t |-- AntiSandboxScriptTimer\r\n2024-12-14 10:22:52,342 [root] DEBUG: \t |-- AntiSandboxSleep\r\n2024-12-14 10:22:52,342 [root] DEBUG: \t |-- SunbeltDetectFiles\r\n2024-12-14 10:22:52,342 [root] DEBUG: \t |-- SunbeltDetectLibs\r\n2024-12-14 10:22:52,342 [root] DEBUG: \t |-- AntiSandboxSuspend\r\n2024-12-14 10:22:52,342 [root] DEBUG: \t |-- ThreatTrackDetectFiles\r\n2024-12-14 10:22:52,342 [root] DEBUG: \t |-- Unhook\r\n2024-12-14 10:22:52,342 [root] DEBUG: \t |-- BochsDetectKeys\r\n2024-12-14 10:22:52,342 [root] DEBUG: \t |-- AntiVMDirectoryObjects\r\n2024-12-14 10:22:52,342 [root] DEBUG: \t |-- AntiVMBios\r\n2024-12-14 10:22:52,342 [root] DEBUG: \t |-- AntiVMCPU\r\n2024-12-14 10:22:52,343 [root] DEBUG: \t |-- DiskInformation\r\n2024-12-14 10:22:52,343 [root] DEBUG: \t |-- SetupAPIDiskInformation\r\n2024-12-14 10:22:52,343 [root] DEBUG: \t |-- AntiVMDiskReg\r\n2024-12-14 10:22:52,343 [root] DEBUG: \t |-- AntiVMSCSI\r\n2024-12-14 10:22:52,343 [root] DEBUG: \t |-- AntiVMServices\r\n2024-12-14 10:22:52,343 [root] DEBUG: \t |-- AntiVMSystem\r\n2024-12-14 10:22:52,343 [root] DEBUG: \t |-- HyperVDetectKeys\r\n2024-12-14 10:22:52,343 [root] DEBUG: \t |-- AntiVMChecksAvailableMemory\r\n2024-12-14 10:22:52,343 [root] DEBUG: \t |-- NetworkAdapters\r\n2024-12-14 10:22:52,343 [root] DEBUG: \t |-- ParallelsDetectKeys\r\n2024-12-14 10:22:52,343 [root] DEBUG: \t |-- VBoxDetectDevices\r\n2024-12-14 10:22:52,343 [root] DEBUG: \t |-- VBoxDetectFiles\r\n2024-12-14 10:22:52,343 [root] DEBUG: \t |-- VBoxDetectKeys\r\n2024-12-14 10:22:52,343 [root] DEBUG: \t |-- VBoxDetectLibs\r\n2024-12-14 10:22:52,343 [root] DEBUG: \t |-- VBoxDetectProvname\r\n2024-12-14 10:22:52,343 [root] DEBUG: \t |-- VBoxDetectWindow\r\n2024-12-14 10:22:52,343 [root] DEBUG: \t |-- VMwareDetectDevices\r\n2024-12-14 10:22:52,343 [root] DEBUG: \t |-- VMwareDetectEvent\r\n2024-12-14 10:22:52,343 [root] DEBUG: \t |-- VMwareDetectFiles\r\n2024-12-14 10:22:52,343 [root] DEBUG: \t |-- VMwareDetectKeys\r\n2024-12-14 10:22:52,343 [root] DEBUG: \t |-- VMwareDetectLibs\r\n2024-12-14 10:22:52,343 [root] DEBUG: \t |-- VMwareDetectMutexes\r\n2024-12-14 10:22:52,343 [root] DEBUG: \t |-- VPCDetectFiles\r\n2024-12-14 10:22:52,343 [root] DEBUG: \t |-- VPCDetectKeys\r\n2024-12-14 10:22:52,344 [root] DEBUG: \t |-- VPCDetectMutex\r\n2024-12-14 10:22:52,344 [root] DEBUG: \t |-- XenDetectKeys\r\n2024-12-14 10:22:52,344 [root] DEBUG: \t |-- APISpamming\r\n2024-12-14 10:22:52,344 [root] DEBUG: \t |-- api_uuidfromstringa\r\n2024-12-14 10:22:52,344 [root] DEBUG: \t |-- AsyncRatMutex\r\n2024-12-14 10:22:52,344 [root] DEBUG: \t |-- GulpixBehavior\r\n2024-12-14 10:22:52,344 [root] DEBUG: \t |-- KetricanRegkeys\r\n2024-12-14 10:22:52,344 [root] DEBUG: \t |-- OkrumMutexes\r\n2024-12-14 10:22:52,344 [root] DEBUG: \t |-- Cridex\r\n2024-12-14 10:22:52,344 [root] DEBUG: \t |-- Geodo\r\n2024-12-14 10:22:52,345 [root] DEBUG: \t |-- Prinimalka\r\n2024-12-14 10:22:52,345 [root] DEBUG: \t |-- SpyEyeMutexes\r\n2024-12-14 10:22:52,345 [root] DEBUG: \t |-- ZeusMutexes\r\n2024-12-14 10:22:52,345 [root] DEBUG: \t |-- BCDEditCommand\r\n2024-12-14 10:22:52,345 [root] DEBUG: \t |-- BitcoinOpenCL\r\n2024-12-14 10:22:52,345 [root] DEBUG: \t |-- AccessesPrimaryPartition\r\n2024-12-14 10:22:52,345 [root] DEBUG: \t |-- Bootkit\r\n2024-12-14 10:22:52,345 [root] DEBUG: \t |-- DirectHDDAccess\r\n2024-12-14 10:22:52,345 [root] DEBUG: \t |-- EnumeratesPhysicalDrives\r\n2024-12-14 10:22:52,345 [root] DEBUG: \t |-- PhysicalDriveAccess\r\n2024-12-14 10:22:52,345 [root] DEBUG: \t |-- PotentialOverWriteMBR\r\n2024-12-14 10:22:52,345 [root] DEBUG: \t |-- SuspiciousIoctlSCSIPassthough\r\n2024-12-14 10:22:52,345 [root] DEBUG: \t |-- Ruskill\r\n2024-12-14 10:22:52,345 [root] DEBUG: \t |-- BrowserAddon\r\n2024-12-14 10:22:52,345 [root] DEBUG: \t |-- ChromiumBrowserExtensionDirectory\r\n2024-12-14 10:22:52,345 [root] DEBUG: \t |-- BrowserHelperObject\r\n2024-12-14 10:22:52,346 [root] DEBUG: \t |-- BrowserNeeded\r\n2024-12-14 10:22:52,346 [root] DEBUG: \t |-- ModifyProxy\r\n2024-12-14 10:22:52,346 [root] DEBUG: \t |-- BrowserScanbox\r\n2024-12-14 10:22:52,346 [root] DEBUG: \t |-- BrowserSecurity\r\n2024-12-14 10:22:52,346 [root] DEBUG: \t |-- browser_startpage\r\n2024-12-14 10:22:52,346 [root] DEBUG: \t |-- FirefoxDisablesProcessPerTab\r\n2024-12-14 10:22:52,346 [root] DEBUG: \t |-- IEDisablesProcessPerTab\r\n2024-12-14 10:22:52,346 [root] DEBUG: \t |-- OdbcconfBypass\r\n2024-12-14 10:22:52,346 [root] DEBUG: \t |-- RegSrv32SquiblydooDLLLoad\r\n2024-12-14 10:22:52,346 [root] DEBUG: \t |-- SquiblydooBypass\r\n2024-12-14 10:22:52,346 [root] DEBUG: \t |-- SquiblytwoBypass\r\n2024-12-14 10:22:52,347 [root] DEBUG: \t |-- BypassFirewall\r\n2024-12-14 10:22:52,347 [root] DEBUG: \t |-- UACBypassCMSTP\r\n2024-12-14 10:22:52,347 [root] DEBUG: \t |-- UACBypassCMSTPCOM\r\n2024-12-14 10:22:52,347 [root] DEBUG: \t |-- UACBypassDelegateExecuteSdclt\r\n2024-12-14 10:22:52,347 [root] DEBUG: \t |-- UACBypassEventvwr\r\n2024-12-14 10:22:52,347 [root] DEBUG: \t |-- UACBypassFodhelper\r\n2024-12-14 10:22:52,347 [root] DEBUG: \t |-- CAPEExtractedContent\r\n2024-12-14 10:22:52,347 [root] DEBUG: \t |-- CarberpMutexes\r\n2024-12-14 10:22:52,347 [root] DEBUG: \t |-- ClearsLogs\r\n2024-12-14 10:22:52,347 [root] DEBUG: \t |-- ClickfraudCookies\r\n2024-12-14 10:22:52,347 [root] DEBUG: \t |-- ClickfraudVolume\r\n2024-12-14 10:22:52,347 [root] DEBUG: \t |-- CmdlineObfuscation\r\n2024-12-14 10:22:52,347 [root] DEBUG: \t |-- CmdlineSwitches\r\n2024-12-14 10:22:52,347 [root] DEBUG: \t |-- CmdlineTerminate\r\n2024-12-14 10:22:52,347 [root] DEBUG: \t |-- CommandLineForFilesWildCard\r\n2024-12-14 10:22:52,347 [root] DEBUG: \t |-- CommandLineHTTPLink\r\n2024-12-14 10:22:52,347 [root] DEBUG: \t |-- CommandLineLongString\r\n2024-12-14 10:22:52,348 [root] DEBUG: \t |-- CommandLineReversedHTTPLink\r\n2024-12-14 10:22:52,348 [root] DEBUG: \t |-- LongCommandline\r\n2024-12-14 10:22:52,348 [root] DEBUG: \t |-- PowershellRenamedCommandLine\r\n2024-12-14 10:22:52,348 [root] DEBUG: \t |-- SystemAccountDiscoveryCMD\r\n2024-12-14 10:22:52,348 [root] DEBUG: \t |-- SystemCurrentlyLoggedinUserCMD\r\n2024-12-14 10:22:52,348 [root] DEBUG: \t |-- SystemInfoDiscoveryCMD\r\n2024-12-14 10:22:52,348 [root] DEBUG: \t |-- SystemInfoDiscoveryPWSH\r\n2024-12-14 10:22:52,348 [root] DEBUG: \t |-- SystemNetworkDiscoveryCMD\r\n2024-12-14 10:22:52,348 [root] DEBUG: \t |-- SystemNetworkDiscoveryPWSH\r\n2024-12-14 10:22:52,348 [root] DEBUG: \t |-- SystemUserDiscoveryCMD\r\n2024-12-14 10:22:52,348 [root] DEBUG: \t |-- CompilesDotNetCode\r\n2024-12-14 10:22:52,348 [root] DEBUG: \t |-- CopiesSelf\r\n2024-12-14 10:22:52,348 [root] DEBUG: \t |-- CreatesExe\r\n2024-12-14 10:22:52,348 [root] DEBUG: \t |-- CreatesLargeKey\r\n2024-12-14 10:22:52,348 [root] DEBUG: \t |-- CreatesNullValue\r\n2024-12-14 10:22:52,348 [root] DEBUG: \t |-- CredWiz\r\n2024-12-14 10:22:52,348 [root] DEBUG: \t |-- EnablesWDigest\r\n2024-12-14 10:22:52,349 [root] DEBUG: \t |-- VaultCmd\r\n2024-12-14 10:22:52,349 [root] DEBUG: \t |-- FileCredentialStoreAccess\r\n2024-12-14 10:22:52,349 [root] DEBUG: \t |-- FileCredentialStoreWrite\r\n2024-12-14 10:22:52,349 [root] DEBUG: \t |-- LsassCredentialDumping\r\n2024-12-14 10:22:52,349 [root] DEBUG: \t |-- RegistryCredentialDumping\r\n2024-12-14 10:22:52,349 [root] DEBUG: \t |-- RegistryCredentialStoreAccess\r\n2024-12-14 10:22:52,349 [root] DEBUG: \t |-- RegistryLSASecretsAccess\r\n2024-12-14 10:22:52,349 [root] DEBUG: \t |-- ComsvcsCredentialDump\r\n2024-12-14 10:22:52,349 [root] DEBUG: \t |-- CriticalProcess\r\n2024-12-14 10:22:52,349 [root] DEBUG: \t |-- CryptGenKey\r\n2024-12-14 10:22:52,349 [root] DEBUG: \t |-- CryptominingStratumCommand\r\n2024-12-14 10:22:52,349 [root] DEBUG: \t |-- MINERS\r\n2024-12-14 10:22:52,349 [root] DEBUG: \t |-- CVE_2014_6332\r\n2024-12-14 10:22:52,349 [root] DEBUG: \t |-- CVE2015_2419_JS\r\n2024-12-14 10:22:52,349 [root] DEBUG: \t |-- CVE_2016_0189\r\n2024-12-14 10:22:52,349 [root] DEBUG: \t |-- CVE_2016_7200\r\n2024-12-14 10:22:52,349 [root] DEBUG: \t |-- CypherITMutexes\r\n2024-12-14 10:22:52,350 [root] DEBUG: \t |-- DarkCometRegkeys\r\n2024-12-14 10:22:52,350 [root] DEBUG: \t |-- DatopLoader\r\n2024-12-14 10:22:52,350 [root] DEBUG: \t |-- DeadConnect\r\n2024-12-14 10:22:52,350 [root] DEBUG: \t |-- DeadLink\r\n2024-12-14 10:22:52,350 [root] DEBUG: \t |-- DebugsSelf\r\n2024-12-14 10:22:52,350 [root] DEBUG: \t |-- DecoyDocument\r\n2024-12-14 10:22:52,350 [root] DEBUG: \t |-- DecoyImage\r\n2024-12-14 10:22:52,350 [root] DEBUG: \t |-- DeepFreezeMutex\r\n2024-12-14 10:22:52,350 [root] DEBUG: \t |-- DeletesExecutedFiles\r\n2024-12-14 10:22:52,350 [root] DEBUG: \t |-- DeletesSelf\r\n2024-12-14 10:22:52,350 [root] DEBUG: \t |-- DeletesShadowCopies\r\n2024-12-14 10:22:52,350 [root] DEBUG: \t |-- DeletesSystemStateBackup\r\n2024-12-14 10:22:52,350 [root] DEBUG: \t |-- DEPBypass\r\n2024-12-14 10:22:52,350 [root] DEBUG: \t |-- DEPDisable\r\n2024-12-14 10:22:52,350 [root] DEBUG: \t |-- DisablesAppLaunch\r\n2024-12-14 10:22:52,350 [root] DEBUG: \t |-- DisablesAutomaticAppTermination\r\n2024-12-14 10:22:52,350 [root] DEBUG: \t |-- DisablesAppVirtualiztion\r\n2024-12-14 10:22:52,350 [root] DEBUG: \t |-- DisablesBackups\r\n2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisablesBrowserWarn\r\n2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisablesContextMenus\r\n2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisablesCPLDisplay\r\n2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisablesCrashdumps\r\n2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisablesMappedDrivesAutodisconnect\r\n2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisablesEventLogging\r\n2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisableFolderOptions\r\n2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisablesNotificationCenter\r\n2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisablesPowerOptions\r\n2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisablesRestoreDefaultState\r\n2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisableRunCommand\r\n2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisablesSecurity\r\n2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisablesSmartScreen\r\n2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisablesSPDY\r\n2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisablesStartMenuSearch\r\n2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisablesSystemRestore\r\n2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisablesUAC\r\n2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisablesWER\r\n2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisablesWFP\r\n2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisablesWindowsDefender\r\n2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisablesWindowsDefenderDISM\r\n2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisablesWindowsDefenderLogging\r\n2024-12-14 10:22:52,351 [root] DEBUG: \t |-- RemovesWindowsDefenderContextMenu\r\n2024-12-14 10:22:52,351 [root] DEBUG: \t |-- WindowsDefenderPowerShell\r\n2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisablesWindowsFileProtection\r\n2024-12-14 10:22:52,352 [root] DEBUG: \t |-- DisablesWindowsUpdate\r\n2024-12-14 10:22:52,352 [root] DEBUG: \t |-- DisablesWindowsFirewall\r\n2024-12-14 10:22:52,352 [root] DEBUG: \t |-- DllLoadUncommonFileTypes\r\n2024-12-14 10:22:52,352 [root] DEBUG: \t |-- DocScriptEXEDrop\r\n2024-12-14 10:22:52,352 [root] DEBUG: \t |-- AdfindDomainEnumeration\r\n2024-12-14 10:22:52,352 [root] DEBUG: \t |-- DomainEnumerationCommands\r\n2024-12-14 10:22:52,352 [root] DEBUG: \t |-- AndromutMutexes\r\n2024-12-14 10:22:52,352 [root] DEBUG: \t |-- DownloaderCabby\r\n2024-12-14 10:22:52,352 [root] DEBUG: \t |-- GuLoaderAPIs\r\n2024-12-14 10:22:52,352 [root] DEBUG: \t |-- PhorpiexMutexes\r\n2024-12-14 10:22:52,352 [root] DEBUG: \t |-- ProtonBotMutexes\r\n2024-12-14 10:22:52,352 [root] DEBUG: \t |-- DriverFilterManager\r\n2024-12-14 10:22:52,352 [root] DEBUG: \t |-- DriverLoad\r\n2024-12-14 10:22:52,352 [root] DEBUG: \t |-- Dropper\r\n2024-12-14 10:22:52,352 [root] DEBUG: \t |-- EXEDropper_JS\r\n2024-12-14 10:22:52,352 [root] DEBUG: \t |-- dynamic_function_loading\r\n2024-12-14 10:22:52,352 [root] DEBUG: \t |-- DLLArchiveExecution\r\n2024-12-14 10:22:52,352 [root] DEBUG: \t |-- LNKArchiveExecution\r\n2024-12-14 10:22:52,352 [root] DEBUG: \t |-- ScriptArchiveExecution\r\n2024-12-14 10:22:52,352 [root] DEBUG: \t |-- EncryptedIOC\r\n2024-12-14 10:22:52,352 [root] DEBUG: \t |-- Excel4MacroUrls\r\n2024-12-14 10:22:52,352 [root] DEBUG: \t |-- Crash\r\n2024-12-14 10:22:52,352 [root] DEBUG: \t |-- ProcessCreationSuspiciousLocation\r\n2024-12-14 10:22:52,353 [root] DEBUG: \t |-- exploit_getbasekerneladdress\r\n2024-12-14 10:22:52,353 [root] DEBUG: \t |-- exploit_gethaldispatchtable\r\n2024-12-14 10:22:52,353 [root] DEBUG: \t |-- ExploitHeapspray\r\n2024-12-14 10:22:52,353 [root] DEBUG: \t |-- SpoolerAccess\r\n2024-12-14 10:22:52,353 [root] DEBUG: \t |-- SpoolerSvcStart\r\n2024-12-14 10:22:52,353 [root] DEBUG: \t |-- KoadicAPIs\r\n2024-12-14 10:22:52,353 [root] DEBUG: \t |-- KoadicNetworkActivity\r\n2024-12-14 10:22:52,353 [root] DEBUG: \t |-- Modiloader_APIs\r\n2024-12-14 10:22:52,353 [root] DEBUG: \t |-- MappedDrivesUAC\r\n2024-12-14 10:22:52,353 [root] DEBUG: \t |-- SystemMetrics\r\n2024-12-14 10:22:52,353 [root] DEBUG: \t |-- Generic_Phish\r\n2024-12-14 10:22:52,353 [root] DEBUG: \t |-- HidesRecycleBinIcon\r\n2024-12-14 10:22:52,353 [root] DEBUG: \t |-- HTTP_Request\r\n2024-12-14 10:22:52,353 [root] DEBUG: \t |-- ApocalypseStealerFileBehavior\r\n2024-12-14 10:22:52,353 [root] DEBUG: \t |-- ArkeiFiles\r\n2024-12-14 10:22:52,353 [root] DEBUG: \t |-- AzorultMutexes\r\n2024-12-14 10:22:52,353 [root] DEBUG: \t |-- BitcoinWallet\r\n2024-12-14 10:22:52,353 [root] DEBUG: \t |-- BrowserStealer\r\n2024-12-14 10:22:52,353 [root] DEBUG: \t |-- InfostealerBrowserPassword\r\n2024-12-14 10:22:52,353 [root] DEBUG: \t |-- CookiesStealer\r\n2024-12-14 10:22:52,353 [root] DEBUG: \t |-- CryptBotFiles\r\n2024-12-14 10:22:52,353 [root] DEBUG: \t |-- CryptBotNetwork\r\n2024-12-14 10:22:52,353 [root] DEBUG: \t |-- EchelonFiles\r\n2024-12-14 10:22:52,353 [root] DEBUG: \t |-- FTPStealer\r\n2024-12-14 10:22:52,353 [root] DEBUG: \t |-- IMStealer\r\n2024-12-14 10:22:52,354 [root] DEBUG: \t |-- KeyLogger\r\n2024-12-14 10:22:52,354 [root] DEBUG: \t |-- EmailStealer\r\n2024-12-14 10:22:52,354 [root] DEBUG: \t |-- MassLoggerArtifacts\r\n2024-12-14 10:22:52,354 [root] DEBUG: \t |-- MassLoggerFiles\r\n2024-12-14 10:22:52,354 [root] DEBUG: \t |-- MassLoggerVersion\r\n2024-12-14 10:22:52,354 [root] DEBUG: \t |-- PoullightFiles\r\n2024-12-14 10:22:52,354 [root] DEBUG: \t |-- PurpleWaveMutexes\r\n2024-12-14 10:22:52,354 [root] DEBUG: \t |-- PurpleWaveNetworkAcivity\r\n2024-12-14 10:22:52,354 [root] DEBUG: \t |-- QuilClipperMutexes\r\n2024-12-14 10:22:52,354 [root] DEBUG: \t |-- QuilClipperNetworkBehavior\r\n2024-12-14 10:22:52,354 [root] DEBUG: \t |-- QulabFiles\r\n2024-12-14 10:22:52,354 [root] DEBUG: \t |-- QulabMutexes\r\n2024-12-14 10:22:52,354 [root] DEBUG: \t |-- RaccoonInfoStealerMutex\r\n2024-12-14 10:22:52,354 [root] DEBUG: \t |-- raccoon\r\n2024-12-14 10:22:52,354 [root] DEBUG: \t |-- CapturesScreenshot\r\n2024-12-14 10:22:52,354 [root] DEBUG: \t |-- vidar\r\n2024-12-14 10:22:52,354 [root] DEBUG: \t |-- InjectionCRT\r\n2024-12-14 10:22:52,354 [root] DEBUG: \t |-- InjectionExplorer\r\n2024-12-14 10:22:52,354 [root] DEBUG: \t |-- InjectionExtension\r\n2024-12-14 10:22:52,354 [root] DEBUG: \t |-- InjectionNetworkTraffic\r\n2024-12-14 10:22:52,354 [root] DEBUG: \t |-- InjectionRUNPE\r\n2024-12-14 10:22:52,354 [root] DEBUG: \t |-- InjectionRWX\r\n2024-12-14 10:22:52,354 [root] DEBUG: \t |-- injection_themeinitapihook\r\n2024-12-14 10:22:52,354 [root] DEBUG: \t |-- Internet_Dropper\r\n2024-12-14 10:22:52,354 [root] DEBUG: \t |-- IPC_NamedPipe\r\n2024-12-14 10:22:52,354 [root] DEBUG: \t |-- JS_Phish\r\n2024-12-14 10:22:52,355 [root] DEBUG: \t |-- JS_SuspiciousRedirect\r\n2024-12-14 10:22:52,355 [root] DEBUG: \t |-- malicious_dynamic_function_loading\r\n2024-12-14 10:22:52,355 [root] DEBUG: \t |-- EncryptPCInfo\r\n2024-12-14 10:22:52,355 [root] DEBUG: \t |-- EnryptDataAgentTeslaHTTP\r\n2024-12-14 10:22:52,355 [root] DEBUG: \t |-- EnryptDataAgentTeslaHTTPT2\r\n2024-12-14 10:22:52,355 [root] DEBUG: \t |-- EnryptDataNanoCore\r\n2024-12-14 10:22:52,355 [root] DEBUG: \t |-- MartiansIE\r\n2024-12-14 10:22:52,355 [root] DEBUG: \t |-- MartiansOffice\r\n2024-12-14 10:22:52,355 [root] DEBUG: \t |-- MimicsAgent\r\n2024-12-14 10:22:52,355 [root] DEBUG: \t |-- MimicsFiletime\r\n2024-12-14 10:22:52,355 [root] DEBUG: \t |-- MimicsIcon\r\n2024-12-14 10:22:52,355 [root] DEBUG: \t |-- MasqueradesProcessName\r\n2024-12-14 10:22:52,355 [root] DEBUG: \t |-- MimikatzModules\r\n2024-12-14 10:22:52,355 [root] DEBUG: \t |-- QuilMinerNetworkBehavior\r\n2024-12-14 10:22:52,355 [root] DEBUG: \t |-- ModifiesCerts\r\n2024-12-14 10:22:52,355 [root] DEBUG: \t |-- DotNetCLRUsageLogKnob\r\n2024-12-14 10:22:52,355 [root] DEBUG: \t |-- Modifies_HostFile\r\n2024-12-14 10:22:52,355 [root] DEBUG: \t |-- ModifiesOEMInformation\r\n2024-12-14 10:22:52,355 [root] DEBUG: \t |-- ModifySecurityCenterWarnings\r\n2024-12-14 10:22:52,355 [root] DEBUG: \t |-- ModifiesUACNotify\r\n2024-12-14 10:22:52,355 [root] DEBUG: \t |-- ModifiesDesktopWallpaper\r\n2024-12-14 10:22:52,355 [root] DEBUG: \t |-- ZoneID\r\n2024-12-14 10:22:52,355 [root] DEBUG: \t |-- move_file_on_reboot\r\n2024-12-14 10:22:52,355 [root] DEBUG: \t |-- Multiple_UA\r\n2024-12-14 10:22:52,355 [root] DEBUG: \t |-- NetworkAnomaly\r\n2024-12-14 10:22:52,355 [root] DEBUG: \t |-- NetworkBIND\r\n2024-12-14 10:22:52,356 [root] DEBUG: \t |-- NetworkCnCHTTPSArchive\r\n2024-12-14 10:22:52,356 [root] DEBUG: \t |-- NetworkCnCHTTPSFreeWebHosting\r\n2024-12-14 10:22:52,356 [root] DEBUG: \t |-- NetworkCnCHTTPSGeneric\r\n2024-12-14 10:22:52,356 [root] DEBUG: \t |-- NetworkCnCHTTPSInteractsh\r\n2024-12-14 10:22:52,356 [root] DEBUG: \t |-- NetworkCnCHTTPSOpenSource\r\n2024-12-14 10:22:52,356 [root] DEBUG: \t |-- NetworkCnCHTTPSPasteSite\r\n2024-12-14 10:22:52,356 [root] DEBUG: \t |-- NetworkCnCHTTPSPayload\r\n2024-12-14 10:22:52,356 [root] DEBUG: \t |-- NetworkCnCHTTPSServiceInterface\r\n2024-12-14 10:22:52,356 [root] DEBUG: \t |-- NetworkCnCHTTPSSocialMedia\r\n2024-12-14 10:22:52,356 [root] DEBUG: \t |-- NetworkCnCHTTPSTelegram\r\n2024-12-14 10:22:52,356 [root] DEBUG: \t |-- NetworkCnCHTTPSTempStorageSite\r\n2024-12-14 10:22:52,356 [root] DEBUG: \t |-- NetworkCnCHTTPSTempURLDNS\r\n2024-12-14 10:22:52,356 [root] DEBUG: \t |-- NetworkCnCHTTPSURLShortenerSite\r\n2024-12-14 10:22:52,356 [root] DEBUG: \t |-- NetworkCnCHTTPSUserAgent\r\n2024-12-14 10:22:52,356 [root] DEBUG: \t |-- NetworkCnCSMTPSExfil\r\n2024-12-14 10:22:52,356 [root] DEBUG: \t |-- NetworkCnCSMTPSGeneric\r\n2024-12-14 10:22:52,356 [root] DEBUG: \t |-- NetworkDNSBlockChain\r\n2024-12-14 10:22:52,356 [root] DEBUG: \t |-- NetworkDNSIDN\r\n2024-12-14 10:22:52,356 [root] DEBUG: \t |-- NetworkDNSOpenNIC\r\n2024-12-14 10:22:52,356 [root] DEBUG: \t |-- NetworkDNSPasteSite\r\n2024-12-14 10:22:52,357 [root] DEBUG: \t |-- NetworkDNSReverseProxy\r\n2024-12-14 10:22:52,357 [root] DEBUG: \t |-- NetworkDNSSuspiciousQueryType\r\n2024-12-14 10:22:52,357 [root] DEBUG: \t |-- NetworkDNSTempFileService\r\n2024-12-14 10:22:52,357 [root] DEBUG: \t |-- NetworkDNSTempURLDNS\r\n2024-12-14 10:22:52,357 [root] DEBUG: \t |-- NetworkDNSTunnelingRequest\r\n2024-12-14 10:22:52,357 [root] DEBUG: \t |-- NetworkDNSURLShortener\r\n2024-12-14 10:22:52,357 [root] DEBUG: \t |-- NetworkDOHTLS\r\n2024-12-14 10:22:52,357 [root] DEBUG: \t |-- Suspicious_TLD\r\n2024-12-14 10:22:52,357 [root] DEBUG: \t |-- NetworkDocumentHTTP\r\n2024-12-14 10:22:52,357 [root] DEBUG: \t |-- ExplorerHTTP\r\n2024-12-14 10:22:52,357 [root] DEBUG: \t |-- NetworkFakeUserAgent\r\n2024-12-14 10:22:52,357 [root] DEBUG: \t |-- NetworkDocumentFile\r\n2024-12-14 10:22:52,357 [root] DEBUG: \t |-- NetworkEXE\r\n2024-12-14 10:22:52,357 [root] DEBUG: \t |-- Tor\r\n2024-12-14 10:22:52,357 [root] DEBUG: \t |-- TorHiddenService\r\n2024-12-14 10:22:52,358 [root] DEBUG: \t |-- Office_Code_Page\r\n2024-12-14 10:22:52,358 [root] DEBUG: \t |-- OfficeAddinLoading\r\n2024-12-14 10:22:52,358 [root] DEBUG: \t |-- OfficeCOMLoad\r\n2024-12-14 10:22:52,358 [root] DEBUG: \t |-- OfficeDotNetLoad\r\n2024-12-14 10:22:52,358 [root] DEBUG: \t |-- OfficeMSHTMLLoad\r\n2024-12-14 10:22:52,358 [root] DEBUG: \t |-- OfficePerfKey\r\n2024-12-14 10:22:52,358 [root] DEBUG: \t |-- OfficeVBLLoad\r\n2024-12-14 10:22:52,358 [root] DEBUG: \t |-- OfficeWMILoad\r\n2024-12-14 10:22:52,358 [root] DEBUG: \t |-- OfficeCVE201711882\r\n2024-12-14 10:22:52,358 [root] DEBUG: \t |-- OfficeCVE201711882Network\r\n2024-12-14 10:22:52,358 [root] DEBUG: \t |-- OfficeCVE202140444\r\n2024-12-14 10:22:52,358 [root] DEBUG: \t |-- OfficeCVE202140444M2\r\n2024-12-14 10:22:52,358 [root] DEBUG: \t |-- OfficeFlashLoad\r\n2024-12-14 10:22:52,359 [root] DEBUG: \t |-- OfficePostScript\r\n2024-12-14 10:22:52,359 [root] DEBUG: \t |-- Office_Macro\r\n2024-12-14 10:22:52,359 [root] DEBUG: \t |-- ChangesTrustCenter_settings\r\n2024-12-14 10:22:52,359 [root] DEBUG: \t |-- DisablesVBATrustAccess\r\n2024-12-14 10:22:52,359 [root] DEBUG: \t |-- OfficeMacroAutoExecution\r\n2024-12-14 10:22:52,359 [root] DEBUG: \t |-- OfficeMacroIOC\r\n2024-12-14 10:22:52,359 [root] DEBUG: \t |-- OfficeMacroMaliciousPredition\r\n2024-12-14 10:22:52,359 [root] DEBUG: \t |-- OfficeMacroSuspicious\r\n2024-12-14 10:22:52,359 [root] DEBUG: \t |-- RTFASLRBypass\r\n2024-12-14 10:22:52,359 [root] DEBUG: \t |-- RTFAnomalyCharacterSet\r\n2024-12-14 10:22:52,359 [root] DEBUG: \t |-- RTFAnomalyVersion\r\n2024-12-14 10:22:52,359 [root] DEBUG: \t |-- RTFEmbeddedContent\r\n2024-12-14 10:22:52,359 [root] DEBUG: \t |-- RTFEmbeddedOfficeFile\r\n2024-12-14 10:22:52,359 [root] DEBUG: \t |-- RTFExploitStatic\r\n2024-12-14 10:22:52,359 [root] DEBUG: \t |-- OfficeSecurity\r\n2024-12-14 10:22:52,359 [root] DEBUG: \t |-- OfficeAnamalousFeature\r\n2024-12-14 10:22:52,359 [root] DEBUG: \t |-- OfficeDDECommand\r\n2024-12-14 10:22:52,360 [root] DEBUG: \t |-- OfficeSuspiciousProcesses\r\n2024-12-14 10:22:52,360 [root] DEBUG: \t |-- OfficeWriteEXE\r\n2024-12-14 10:22:52,360 [root] DEBUG: \t |-- ArmadilloMutex\r\n2024-12-14 10:22:52,360 [root] DEBUG: \t |-- ArmadilloRegKey\r\n2024-12-14 10:22:52,360 [root] DEBUG: \t |-- ADS\r\n2024-12-14 10:22:52,360 [root] DEBUG: \t |-- Autorun\r\n2024-12-14 10:22:52,360 [root] DEBUG: \t |-- Autorun_scheduler\r\n2024-12-14 10:22:52,360 [root] DEBUG: \t |-- PersistenceSafeBoot\r\n2024-12-14 10:22:52,360 [root] DEBUG: \t |-- PersistenceBootexecute\r\n2024-12-14 10:22:52,360 [root] DEBUG: \t |-- PersistenceRegistryScript\r\n2024-12-14 10:22:52,360 [root] DEBUG: \t |-- PersistenceIFEO\r\n2024-12-14 10:22:52,360 [root] DEBUG: \t |-- PersistenceSilentProcessExit\r\n2024-12-14 10:22:52,360 [root] DEBUG: \t |-- PersistenceRDPRegistry\r\n2024-12-14 10:22:52,360 [root] DEBUG: \t |-- PersistenceRDPShadowing\r\n2024-12-14 10:22:52,360 [root] DEBUG: \t |-- PersistenceService\r\n2024-12-14 10:22:52,360 [root] DEBUG: \t |-- PersistenceShimDatabase\r\n2024-12-14 10:22:52,360 [root] DEBUG: \t |-- PowerpoolMutexes\r\n2024-12-14 10:22:52,361 [root] DEBUG: \t |-- PowerShellNetworkConnection\r\n2024-12-14 10:22:52,361 [root] DEBUG: \t |-- PowerShellScriptBlockLogging\r\n2024-12-14 10:22:52,361 [root] DEBUG: \t |-- PowershellCommandSuspicious\r\n2024-12-14 10:22:52,361 [root] DEBUG: \t |-- PowershellDownload\r\n2024-12-14 10:22:52,361 [root] DEBUG: \t |-- PowershellRenamed\r\n2024-12-14 10:22:52,361 [root] DEBUG: \t |-- PowershellRequest\r\n2024-12-14 10:22:52,361 [root] DEBUG: \t |-- PowershellReversed\r\n2024-12-14 10:22:52,361 [root] DEBUG: \t |-- PowershellVariableObfuscation\r\n2024-12-14 10:22:52,361 [root] DEBUG: \t |-- PreventsSafeboot\r\n2024-12-14 10:22:52,361 [root] DEBUG: \t |-- CmdlineProcessDiscovery\r\n2024-12-14 10:22:52,361 [root] DEBUG: \t |-- CreateToolhelp32SnapshotProcessModuleEnumeration\r\n2024-12-14 10:22:52,361 [root] DEBUG: \t |-- EnumeratesRunningProcesses\r\n2024-12-14 10:22:52,361 [root] DEBUG: \t |-- ProcessInterest\r\n2024-12-14 10:22:52,361 [root] DEBUG: \t |-- ProcessNeeded\r\n2024-12-14 10:22:52,361 [root] DEBUG: \t |-- MassDataEncryption\r\n2024-12-14 10:22:52,361 [root] DEBUG: \t |-- CryptoMixMutexes\r\n2024-12-14 10:22:52,361 [root] DEBUG: \t |-- DharmaMutexes\r\n2024-12-14 10:22:52,361 [root] DEBUG: \t |-- RansomwareDMALocker\r\n2024-12-14 10:22:52,361 [root] DEBUG: \t |-- RansomwareExtensions\r\n2024-12-14 10:22:52,361 [root] DEBUG: \t |-- RansomwareFileModifications\r\n2024-12-14 10:22:52,361 [root] DEBUG: \t |-- RansomwareFiles\r\n2024-12-14 10:22:52,361 [root] DEBUG: \t |-- FonixMutexes\r\n2024-12-14 10:22:52,362 [root] DEBUG: \t |-- GandCrabMutexes\r\n2024-12-14 10:22:52,362 [root] DEBUG: \t |-- GermanWiperMutexes\r\n2024-12-14 10:22:52,362 [root] DEBUG: \t |-- MedusaLockerMutexes\r\n2024-12-14 10:22:52,362 [root] DEBUG: \t |-- MedusaLockerRegkeys\r\n2024-12-14 10:22:52,362 [root] DEBUG: \t |-- RansomwareMessage\r\n2024-12-14 10:22:52,362 [root] DEBUG: \t |-- NemtyMutexes\r\n2024-12-14 10:22:52,362 [root] DEBUG: \t |-- NemtyNetworkActivity\r\n2024-12-14 10:22:52,362 [root] DEBUG: \t |-- NemtyNote\r\n2024-12-14 10:22:52,362 [root] DEBUG: \t |-- NemtyRegkeys\r\n2024-12-14 10:22:52,362 [root] DEBUG: \t |-- PYSAMutexes\r\n2024-12-14 10:22:52,362 [root] DEBUG: \t |-- RansomwareRadamant\r\n2024-12-14 10:22:52,362 [root] DEBUG: \t |-- RansomwareRecyclebin\r\n2024-12-14 10:22:52,362 [root] DEBUG: \t |-- RevilMutexes\r\n2024-12-14 10:22:52,362 [root] DEBUG: \t |-- RevilRegkey\r\n2024-12-14 10:22:52,362 [root] DEBUG: \t |-- SatanMutexes\r\n2024-12-14 10:22:52,362 [root] DEBUG: \t |-- SnakeRansomMutexes\r\n2024-12-14 10:22:52,362 [root] DEBUG: \t |-- sodinokibi\r\n2024-12-14 10:22:52,362 [root] DEBUG: \t |-- StopRansomMutexes\r\n2024-12-14 10:22:52,362 [root] DEBUG: \t |-- StopRansomwareCMD\r\n2024-12-14 10:22:52,362 [root] DEBUG: \t |-- StopRansomwareRegistry\r\n2024-12-14 10:22:52,362 [root] DEBUG: \t |-- BeebusMutexes\r\n2024-12-14 10:22:52,362 [root] DEBUG: \t |-- BlackNETMutexes\r\n2024-12-14 10:22:52,362 [root] DEBUG: \t |-- BlackRATAPIs\r\n2024-12-14 10:22:52,362 [root] DEBUG: \t |-- BlackRATMutexes\r\n2024-12-14 10:22:52,362 [root] DEBUG: \t |-- BlackRATNetworkActivity\r\n2024-12-14 10:22:52,362 [root] DEBUG: \t |-- BlackRATRegistryKeys\r\n2024-12-14 10:22:52,362 [root] DEBUG: \t |-- CRATMutexes\r\n2024-12-14 10:22:52,363 [root] DEBUG: \t |-- DCRatAPIs\r\n2024-12-14 10:22:52,363 [root] DEBUG: \t |-- DCRatFiles\r\n2024-12-14 10:22:52,363 [root] DEBUG: \t |-- DCRatMutex\r\n2024-12-14 10:22:52,363 [root] DEBUG: \t |-- FynloskiMutexes\r\n2024-12-14 10:22:52,363 [root] DEBUG: \t |-- KaraganyEventObjects\r\n2024-12-14 10:22:52,363 [root] DEBUG: \t |-- KaraganyFiles\r\n2024-12-14 10:22:52,363 [root] DEBUG: \t |-- LimeRATMutexes\r\n2024-12-14 10:22:52,363 [root] DEBUG: \t |-- LimeRATRegkeys\r\n2024-12-14 10:22:52,363 [root] DEBUG: \t |-- LodaRATFileBehavior\r\n2024-12-14 10:22:52,363 [root] DEBUG: \t |-- LuminosityRAT\r\n2024-12-14 10:22:52,363 [root] DEBUG: \t |-- ModiRATBehavior\r\n2024-12-14 10:22:52,363 [root] DEBUG: \t |-- NanocoreRAT\r\n2024-12-14 10:22:52,363 [root] DEBUG: \t |-- netwire\r\n2024-12-14 10:22:52,363 [root] DEBUG: \t |-- NjratRegkeys\r\n2024-12-14 10:22:52,363 [root] DEBUG: \t |-- ObliquekRATFiles\r\n2024-12-14 10:22:52,363 [root] DEBUG: \t |-- ObliquekRATMutexes\r\n2024-12-14 10:22:52,363 [root] DEBUG: \t |-- ObliquekRATNetworkActivity\r\n2024-12-14 10:22:52,363 [root] DEBUG: \t |-- OrcusRAT\r\n2024-12-14 10:22:52,363 [root] DEBUG: \t |-- ParallaxMutexes\r\n2024-12-14 10:22:52,363 [root] DEBUG: \t |-- PcClientMutexes\r\n2024-12-14 10:22:52,363 [root] DEBUG: \t |-- PlugxMutexes\r\n2024-12-14 10:22:52,363 [root] DEBUG: \t |-- PoisonIvyMutexes\r\n2024-12-14 10:22:52,363 [root] DEBUG: \t |-- QuasarMutexes\r\n2024-12-14 10:22:52,363 [root] DEBUG: \t |-- RatsnifMutexes\r\n2024-12-14 10:22:52,363 [root] DEBUG: \t |-- SennaMutexes\r\n2024-12-14 10:22:52,363 [root] DEBUG: \t |-- SpynetRat\r\n2024-12-14 10:22:52,364 [root] DEBUG: \t |-- TrochilusRATAPIs\r\n2024-12-14 10:22:52,364 [root] DEBUG: \t |-- VenomRAT\r\n2024-12-14 10:22:52,364 [root] DEBUG: \t |-- WarzoneRATFiles\r\n2024-12-14 10:22:52,364 [root] DEBUG: \t |-- WarzoneRATRegkeys\r\n2024-12-14 10:22:52,364 [root] DEBUG: \t |-- XpertRATFiles\r\n2024-12-14 10:22:52,364 [root] DEBUG: \t |-- XpertRATMutexes\r\n2024-12-14 10:22:52,364 [root] DEBUG: \t |-- XtremeMutexes\r\n2024-12-14 10:22:52,364 [root] DEBUG: \t |-- ReadsSelf\r\n2024-12-14 10:22:52,364 [root] DEBUG: \t |-- Recon_Beacon\r\n2024-12-14 10:22:52,364 [root] DEBUG: \t |-- Fingerprint\r\n2024-12-14 10:22:52,364 [root] DEBUG: \t |-- InstalledApps\r\n2024-12-14 10:22:52,364 [root] DEBUG: \t |-- SystemInfo\r\n2024-12-14 10:22:52,364 [root] DEBUG: \t |-- Accesses_RecycleBin\r\n2024-12-14 10:22:52,364 [root] DEBUG: \t |-- RemcosFiles\r\n2024-12-14 10:22:52,364 [root] DEBUG: \t |-- RemcosMutexes\r\n2024-12-14 10:22:52,364 [root] DEBUG: \t |-- RemcosRegkeys\r\n2024-12-14 10:22:52,364 [root] DEBUG: \t |-- RDPTCPKey\r\n2024-12-14 10:22:52,364 [root] DEBUG: \t |-- UsesRDPClip\r\n2024-12-14 10:22:52,364 [root] DEBUG: \t |-- UsesRemoteDesktopSession\r\n2024-12-14 10:22:52,364 [root] DEBUG: \t |-- RemovesNetworkingIcon\r\n2024-12-14 10:22:52,364 [root] DEBUG: \t |-- RemovesPinnedPrograms\r\n2024-12-14 10:22:52,364 [root] DEBUG: \t |-- RemovesSecurityAndMaintenanceIcon\r\n2024-12-14 10:22:52,364 [root] DEBUG: \t |-- RemovesStartMenuDefaults\r\n2024-12-14 10:22:52,364 [root] DEBUG: \t |-- RemovesUsernameStartMenu\r\n2024-12-14 10:22:52,364 [root] DEBUG: \t |-- RemovesZoneIdADS\r\n2024-12-14 10:22:52,364 [root] DEBUG: \t |-- SpicyHotPotBehavior\r\n2024-12-14 10:22:52,365 [root] DEBUG: \t |-- ScriptCreatedProcess\r\n2024-12-14 10:22:52,365 [root] DEBUG: \t |-- ScriptNetworkActvity\r\n2024-12-14 10:22:52,365 [root] DEBUG: \t |-- SuspiciousJSScript\r\n2024-12-14 10:22:52,365 [root] DEBUG: \t |-- JavaScriptTimer\r\n2024-12-14 10:22:52,365 [root] DEBUG: \t |-- Secure_Login_Phish\r\n2024-12-14 10:22:52,365 [root] DEBUG: \t |-- SecurityXploded_Modules\r\n2024-12-14 10:22:52,365 [root] DEBUG: \t |-- GetClipboardData\r\n2024-12-14 10:22:52,365 [root] DEBUG: \t |-- SetsAutoconfigURL\r\n2024-12-14 10:22:52,365 [root] DEBUG: \t |-- InstallsWinpcap\r\n2024-12-14 10:22:52,365 [root] DEBUG: \t |-- SpoofsProcname\r\n2024-12-14 10:22:52,365 [root] DEBUG: \t |-- CreatesAutorunInf\r\n2024-12-14 10:22:52,365 [root] DEBUG: \t |-- StackPivot\r\n2024-12-14 10:22:52,365 [root] DEBUG: \t |-- StackPivotFileCreated\r\n2024-12-14 10:22:52,365 [root] DEBUG: \t |-- StackPivotProcessCreate\r\n2024-12-14 10:22:52,365 [root] DEBUG: \t |-- StealingClipboardData\r\n2024-12-14 10:22:52,365 [root] DEBUG: \t |-- StealthChildProc\r\n2024-12-14 10:22:52,365 [root] DEBUG: \t |-- StealthFile\r\n2024-12-14 10:22:52,365 [root] DEBUG: \t |-- StealthHiddenExtension\r\n2024-12-14 10:22:52,365 [root] DEBUG: \t |-- StealthHiddenReg\r\n2024-12-14 10:22:52,365 [root] DEBUG: \t |-- StealthHideNotifications\r\n2024-12-14 10:22:52,365 [root] DEBUG: \t |-- StealthSystemProcName\r\n2024-12-14 10:22:52,365 [root] DEBUG: \t |-- StealthTimeout\r\n2024-12-14 10:22:52,365 [root] DEBUG: \t |-- StealthWebHistory\r\n2024-12-14 10:22:52,365 [root] DEBUG: \t |-- Hidden_Window\r\n2024-12-14 10:22:52,365 [root] DEBUG: \t |-- sysinternals_psexec\r\n2024-12-14 10:22:52,365 [root] DEBUG: \t |-- sysinternals_tools\r\n2024-12-14 10:22:52,366 [root] DEBUG: \t |-- QueriesKeyboardLayout\r\n2024-12-14 10:22:52,366 [root] DEBUG: \t |-- TampersETW\r\n2024-12-14 10:22:52,366 [root] DEBUG: \t |-- LSATampering\r\n2024-12-14 10:22:52,366 [root] DEBUG: \t |-- TampersPowerShellLogging\r\n2024-12-14 10:22:52,366 [root] DEBUG: \t |-- Flame\r\n2024-12-14 10:22:52,366 [root] DEBUG: \t |-- TerminatesRemoteProcess\r\n2024-12-14 10:22:52,366 [root] DEBUG: \t |-- TerritorialDisputeSIGs\r\n2024-12-14 10:22:52,366 [root] DEBUG: \t |-- TrickBotTaskDelete\r\n2024-12-14 10:22:52,366 [root] DEBUG: \t |-- TrickBotMutexes\r\n2024-12-14 10:22:52,366 [root] DEBUG: \t |-- FleerCivetMutexes\r\n2024-12-14 10:22:52,366 [root] DEBUG: \t |-- LokibotMutexes\r\n2024-12-14 10:22:52,366 [root] DEBUG: \t |-- UrsnifBehavior\r\n2024-12-14 10:22:52,366 [root] DEBUG: \t |-- UpatreFiles\r\n2024-12-14 10:22:52,366 [root] DEBUG: \t |-- UpatreMutexes\r\n2024-12-14 10:22:52,366 [root] DEBUG: \t |-- UserEnum\r\n2024-12-14 10:22:52,366 [root] DEBUG: \t |-- ADFind\r\n2024-12-14 10:22:52,366 [root] DEBUG: \t |-- UsesMSProtocol\r\n2024-12-14 10:22:52,366 [root] DEBUG: \t |-- Virus\r\n2024-12-14 10:22:52,366 [root] DEBUG: \t |-- NeshtaFiles\r\n2024-12-14 10:22:52,366 [root] DEBUG: \t |-- NeshtaMutexes\r\n2024-12-14 10:22:52,366 [root] DEBUG: \t |-- NeshtaRegKeys\r\n2024-12-14 10:22:52,366 [root] DEBUG: \t |-- RenamerMutexes\r\n2024-12-14 10:22:52,366 [root] DEBUG: \t |-- Webmail_Phish\r\n2024-12-14 10:22:52,366 [root] DEBUG: \t |-- OWAWebShellFiles\r\n2024-12-14 10:22:52,366 [root] DEBUG: \t |-- WebShellFiles\r\n2024-12-14 10:22:52,366 [root] DEBUG: \t |-- WebShellProcesses\r\n2024-12-14 10:22:52,367 [root] DEBUG: \t |-- PersistsDotNetDevUtility\r\n2024-12-14 10:22:52,367 [root] DEBUG: \t |-- SpwansDotNetDevUtiliy\r\n2024-12-14 10:22:52,367 [root] DEBUG: \t |-- AltersWindowsUtility\r\n2024-12-14 10:22:52,367 [root] DEBUG: \t |-- DotNETCSCBuild\r\n2024-12-14 10:22:52,367 [root] DEBUG: \t |-- MultipleExplorerInstances\r\n2024-12-14 10:22:52,367 [root] DEBUG: \t |-- OverwritesAccessibilityUtility\r\n2024-12-14 10:22:52,367 [root] DEBUG: \t |-- ScriptToolExecuted\r\n2024-12-14 10:22:52,367 [root] DEBUG: \t |-- SuspiciousCertutilUse\r\n2024-12-14 10:22:52,367 [root] DEBUG: \t |-- SuspiciousCommandTools\r\n2024-12-14 10:22:52,367 [root] DEBUG: \t |-- SuspiciousMpCmdRunUse\r\n2024-12-14 10:22:52,367 [root] DEBUG: \t |-- SuspiciousPingUse\r\n2024-12-14 10:22:52,367 [root] DEBUG: \t |-- UsesPowerShellCopyItem\r\n2024-12-14 10:22:52,367 [root] DEBUG: \t |-- UsesWindowsUtilities\r\n2024-12-14 10:22:52,367 [root] DEBUG: \t |-- UsesWindowsUtilitiesAppCmd\r\n2024-12-14 10:22:52,367 [root] DEBUG: \t |-- UsesWindowsUtilitiesCSVDELDFIDE\r\n2024-12-14 10:22:52,367 [root] DEBUG: \t |-- UsesWindowsUtilitiesCipher\r\n2024-12-14 10:22:52,367 [root] DEBUG: \t |-- UsesWindowsUtilitiesClickOnce\r\n2024-12-14 10:22:52,367 [root] DEBUG: \t |-- UsesWindowsUtilitiesCurl\r\n2024-12-14 10:22:52,367 [root] DEBUG: \t |-- UsesWindowsUtilitiesDSQuery\r\n2024-12-14 10:22:52,367 [root] DEBUG: \t |-- UsesWindowsUtilitiesEsentutl\r\n2024-12-14 10:22:52,367 [root] DEBUG: \t |-- UsesWindowsUtilitiesFinger\r\n2024-12-14 10:22:52,367 [root] DEBUG: \t |-- UsesWindowsUtilitiesMode\r\n2024-12-14 10:22:52,367 [root] DEBUG: \t |-- UsesWindowsUtilitiesNTDSutil\r\n2024-12-14 10:22:52,367 [root] DEBUG: \t |-- UsesWindowsUtilitiesNltest\r\n2024-12-14 10:22:52,367 [root] DEBUG: \t |-- UsesWindowsUtilitiesScheduler\r\n2024-12-14 10:22:52,367 [root] DEBUG: \t |-- UsesWindowsUtilitiesXcopy\r\n2024-12-14 10:22:52,368 [root] DEBUG: \t |-- WMICCommandSuspicious\r\n2024-12-14 10:22:52,368 [root] DEBUG: \t |-- WiperZeroedBytes\r\n2024-12-14 10:22:52,368 [root] DEBUG: \t |-- ScrconsWMIScriptConsumer\r\n2024-12-14 10:22:52,368 [root] DEBUG: \t |-- WMICreateProcess\r\n2024-12-14 10:22:52,368 [root] DEBUG: \t |-- WMIScriptProcess\r\n2024-12-14 10:22:52,368 [root] DEBUG: \t |-- Win32ProcessCreate\r\n2024-12-14 10:22:52,368 [root] DEBUG: \t |-- AllapleMutexes\r\n2024-12-14 10:22:52,368 [root] DEBUG: \t |-- LinuxDeletesFiles\r\n2024-12-14 10:22:52,368 [root] DEBUG: \t |-- LinuxDropsFiles\r\n2024-12-14 10:22:52,368 [root] DEBUG: \t |-- LinuxReadsFiles\r\n2024-12-14 10:22:52,368 [root] DEBUG: \t `-- LinuxWritesFiles\r\n2024-12-14 10:22:52,368 [root] DEBUG: Imported \"reporting\" modules:\r\n2024-12-14 10:22:52,368 [root] DEBUG: \t |-- BinGraph\r\n2024-12-14 10:22:52,368 [root] DEBUG: \t |-- CAPASummary\r\n2024-12-14 10:22:52,368 [root] DEBUG: \t |-- JsonDump\r\n2024-12-14 10:22:52,368 [root] DEBUG: \t |-- MongoDB\r\n2024-12-14 10:22:52,368 [root] DEBUG: \t `-- PCAP2CERT\r\n2024-12-14 10:22:52,368 [root] DEBUG: Imported \"feeds\" modules:\r\n2024-12-14 10:22:52,368 [root] DEBUG: \t `-- AbuseCH_SSL\r\n2024-12-14 10:22:52,368 [root] DEBUG: Imported \"machinery\" modules:\r\n2024-12-14 10:22:52,368 [root] DEBUG: \t `-- Physical\r\n2024-12-14 10:22:52,368 [Task 23] [root] DEBUG: Processing task\r\n2024-12-14 10:22:52,378 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"CAPE\" on analysis at \"/opt/CAPEv2/storage/analyses/23\"\r\n2024-12-14 10:22:52,571 [Task 23] [lib.cuckoo.common.objects] DEBUG: file type set using basic heuristics for: /opt/CAPEv2/storage/binaries/33b4fd9d1dd032c56f0e2d74d609db74a04a3190eb45cd07f277f5efca7abe23\r\n2024-12-14 10:22:52,571 [Task 23] [lib.cuckoo.common.objects] DEBUG: Initializing Yara...\r\n2024-12-14 10:22:52,644 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries AutoIT.yar\r\n2024-12-14 10:22:52,645 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries EcrimePackerStub.yar\r\n2024-12-14 10:22:52,645 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries Generic_Phishing_PDF.yar\r\n2024-12-14 10:22:52,645 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries HTMLPhisher_2023.yar\r\n2024-12-14 10:22:52,645 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries HeavensGate.yar\r\n2024-12-14 10:22:52,645 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries IEuser_author_doc.yar\r\n2024-12-14 10:22:52,645 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries ISO_exec.yar\r\n2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries LNK_Ruleset.yar\r\n2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries MalScript_Tricks.yar\r\n2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries Maldoc_PDF.yar\r\n2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries OLEfile_in_CAD_FAS_LSP.yar\r\n2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries OneNote.yar\r\n2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries RoyalRoad_RTF.yar\r\n2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries Themida.yar\r\n2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries VMProtectStub.yar\r\n2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries Webshell_in_image.yar\r\n2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries embedded.yar\r\n2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries indicator_packed.yar\r\n2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries indicator_suspicious.yar\r\n2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries indicator_tools.yar\r\n2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries oAuth_Phishing_PDF.yar\r\n2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries ole_vba.yar\r\n2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries shellcodes.yar\r\n2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries susp_obfuscated_JS.yar\r\n2024-12-14 10:22:52,647 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries vmdetect.yar\r\n2024-12-14 10:22:52,672 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory Exploit_HT_Flash_Vars.yar\r\n2024-12-14 10:22:52,672 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory Exploit_HT_VRename.yar\r\n2024-12-14 10:22:52,672 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory adgholas.yar\r\n2024-12-14 10:22:52,672 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory angler.yar\r\n2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory astrum.yar\r\n2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory cve_2013_2551.yar\r\n2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory cve_2014_0515.yar\r\n2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory cve_2014_0569.yar\r\n2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory cve_2014_6332.yar\r\n2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory cve_2015_0016.yar\r\n2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory cve_2015_2419.yar\r\n2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory cve_2015_2545.yar\r\n2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory cve_2015_5122.yar\r\n2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory cve_2016_0189.yar\r\n2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory cve_2016_3298.yar\r\n2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory darkcomet.yar\r\n2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory eitest.yar\r\n2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory flash_exploits.yar\r\n2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory kazybot.yar\r\n2024-12-14 10:22:52,674 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory neutrino.yar\r\n2024-12-14 10:22:52,674 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory nuclear.yar\r\n2024-12-14 10:22:52,674 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory rig.yar\r\n2024-12-14 10:22:52,674 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory shellcodes.yar\r\n2024-12-14 10:22:52,674 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory sundown.yar\r\n2024-12-14 10:22:52,748 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE A310Logger.yar\r\n2024-12-14 10:22:52,749 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE AAR.yar\r\n2024-12-14 10:22:52,749 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE APT27.yar\r\n2024-12-14 10:22:52,749 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE ARCrypt.yar\r\n2024-12-14 10:22:52,749 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE AbubasbanditBot.yar\r\n2024-12-14 10:22:52,749 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE AcidRain.yar\r\n2024-12-14 10:22:52,749 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE ActionRAT.yar\r\n2024-12-14 10:22:52,749 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Adfind.yar\r\n2024-12-14 10:22:52,749 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Adzok.yar\r\n2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE AgentRacoon.yar\r\n2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE AgentTesla.yar\r\n2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE AgnianeStealer.yar\r\n2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Agrius.yar\r\n2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Akira.yar\r\n2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Alfonso.yar\r\n2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE AlienCrypter.yar\r\n2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE AlienSpy.yar\r\n2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Alkhal.yar\r\n2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE AllaKore.yar\r\n2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Amadey.yar\r\n2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Andromeda.yar\r\n2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Ap0calypse.yar\r\n2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Apocalypse.yar\r\n2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Arcom.yar\r\n2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Arechclient2.yar\r\n2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Arkei.yar\r\n2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE ArrowRAT.yar\r\n2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Aspire.yar\r\n2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE AsyncRAT.yar\r\n2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Atlas.yar\r\n2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Aurora.yar\r\n2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE AuroraStealer.yar\r\n2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Avaddon.yar\r\n2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Avalon.yar\r\n2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE AvosLocker.yar\r\n2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Azer.yar\r\n2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Azorult.yar\r\n2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BACKSPACE.yar\r\n2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BHunt.yar\r\n2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Babuk.yar\r\n2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BackNet.yar\r\n2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BackOffLoader.yar\r\n2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BackOffPOS.yar\r\n2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BadJoke.yar\r\n2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BadRabbit.yar\r\n2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Bagle.yar\r\n2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Baldr.yar\r\n2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Bandit.yar\r\n2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Bandook.yar\r\n2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Banload.yar\r\n2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Bazar.yar\r\n2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BazarLoader.yar\r\n2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BazarLoaderNim.yar\r\n2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Beastdoor.yar\r\n2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BetaBot.yar\r\n2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BioPass.yar\r\n2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BitCoinGrabber.yar\r\n2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BitPaymer.yar\r\n2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BitRAT.yar\r\n2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BitterRAT.yar\r\n2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BlackByte.yar\r\n2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BlackByteGo.yar\r\n2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BlackCat.yar\r\n2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BlackDropper.yar\r\n2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BlackHunt.yar\r\n2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BlackMatter.yar\r\n2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BlackNET.yar\r\n2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BlackNix.yar\r\n2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BlackShades.yar\r\n2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BlackshadesRAT.yar\r\n2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BlankStealer.yar\r\n2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Blister.yar\r\n2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BlitzGrabber.yar\r\n2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BlueBanana.yar\r\n2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BlueBot.yar\r\n2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Bobik.yar\r\n2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BoxCaon.yar\r\n2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Bozok.yar\r\n2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BrbBot.yar\r\n2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BreakStaf.yar\r\n2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BreakWin.yar\r\n2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BroEx.yar\r\n2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BruteRatel.yar\r\n2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BuerLoader.yar\r\n2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BumbleBee.yar\r\n2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Buran.yar\r\n2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE ButeRAT.yar\r\n2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE CRAT.yar\r\n2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Caliber.yar\r\n2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Carbanak.yar\r\n2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE CargoBayLoader.yar\r\n2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE CasperTroy.yar\r\n2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Cerber.yar\r\n2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE ChChes.yar\r\n2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE ChaChaDDoS.yar\r\n2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Chaos.yar\r\n2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Chinotto.yar\r\n2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Chuwi.yar\r\n2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE ClientMesh.yar\r\n2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE ClipBanker.yar\r\n2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Clop.yar\r\n2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE CobaltStrikeBeacon.yar\r\n2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE CobaltStrikeStager.yar\r\n2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE CobianRAT.yar\r\n2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Codoso.yar\r\n2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE CoinMiners.yar\r\n2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE CoinMiningBot.yar\r\n2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE CommonMagic.yar\r\n2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Confucius_B.yar\r\n2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Conti.yar\r\n2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE CookieStealer.yar\r\n2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE CoreBot.yar\r\n2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Covenant.yar\r\n2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE CrimsonRAT.yar\r\n2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Crown.yar\r\n2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE CryLock.yar\r\n2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE CryptBot.yar\r\n2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE CryptoLocker.yar\r\n2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE CryptoStealerGo.yar\r\n2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Cryptoshield.yar\r\n2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Cuba.yar\r\n2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Cutlet.yar\r\n2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE CyberGate.yar\r\n2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE CyberStealer.yar\r\n2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE DCRat.yar\r\n2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE DECAF.yar\r\n2024-12-14 10:22:52,756 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE DTstealer.yar\r\n2024-12-14 10:22:52,756 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE DanaBot.yar\r\n2024-12-14 10:22:52,756 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE DarkCloud.yar\r\n2024-12-14 10:22:52,756 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE DarkComet.yar\r\n2024-12-14 10:22:52,756 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE DarkEye.yar\r\n2024-12-14 10:22:52,756 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE DarkGate.yar\r\n2024-12-14 10:22:52,756 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE DarkRAT.yar\r\n2024-12-14 10:22:52,756 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE DarksideV1.yar\r\n2024-12-14 10:22:52,756 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE DeathRansom.yar\r\n2024-12-14 10:22:52,756 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE DecryptMyFiles.yar\r\n2024-12-14 10:22:52,756 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE DeepRats.yar\r\n2024-12-14 10:22:52,756 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Dharma.yar\r\n2024-12-14 10:22:52,756 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Diavol.yar\r\n2024-12-14 10:22:52,756 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE DiscoNightClub.yar\r\n2024-12-14 10:22:52,756 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE DoejoCrypt.yar\r\n2024-12-14 10:22:52,756 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE DoomedLoader.yar\r\n2024-12-14 10:22:52,756 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE DoppelPaymer.yar\r\n2024-12-14 10:22:52,756 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Downloaders.yar\r\n2024-12-14 10:22:52,756 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Dreambot.yar\r\n2024-12-14 10:22:52,757 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Dridex.yar\r\n2024-12-14 10:22:52,757 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE DridexLoader.yar\r\n2024-12-14 10:22:52,757 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE DridexV4.yar\r\n2024-12-14 10:22:52,757 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE DuckTail.yar\r\n2024-12-14 10:22:52,757 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Duke.yar\r\n2024-12-14 10:22:52,757 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Echelon.yar\r\n2024-12-14 10:22:52,757 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Egregor.yar\r\n2024-12-14 10:22:52,757 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Ekans.yar\r\n2024-12-14 10:22:52,757 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Emotet.yar\r\n2024-12-14 10:22:52,757 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE EmotetLoader.yar\r\n2024-12-14 10:22:52,757 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Enfal.yar\r\n2024-12-14 10:22:52,757 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE EnigmaStub.yar\r\n2024-12-14 10:22:52,757 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE EpicenterRAT.yar\r\n2024-12-14 10:22:52,757 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Epsilon.yar\r\n2024-12-14 10:22:52,757 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE EspioLoader.yar\r\n2024-12-14 10:22:52,757 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE EternalRomance.yar\r\n2024-12-14 10:22:52,757 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE EvilGrab.yar\r\n2024-12-14 10:22:52,757 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE ExMatter.yar\r\n2024-12-14 10:22:52,757 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Exaramel.yar\r\n2024-12-14 10:22:52,758 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE ExpressCMS.yar\r\n2024-12-14 10:22:52,758 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE FYAnti.yar\r\n2024-12-14 10:22:52,758 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Fabookie.yar\r\n2024-12-14 10:22:52,758 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE FakeWMI.yar\r\n2024-12-14 10:22:52,758 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Fareit.yar\r\n2024-12-14 10:22:52,758 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Farfli.yar\r\n2024-12-14 10:22:52,758 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE FatalRAT.yar\r\n2024-12-14 10:22:52,758 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Fiber.yar\r\n2024-12-14 10:22:52,758 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Ficker.yar\r\n2024-12-14 10:22:52,758 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE FirebirdRAT.yar\r\n2024-12-14 10:22:52,758 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Flagpro.yar\r\n2024-12-14 10:22:52,758 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE FloodFix.yar\r\n2024-12-14 10:22:52,758 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE FoggyWeb.yar\r\n2024-12-14 10:22:52,758 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Fonix.yar\r\n2024-12-14 10:22:52,758 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Formbook.yar\r\n2024-12-14 10:22:52,758 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Foxgrabber.yar\r\n2024-12-14 10:22:52,758 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE FujinamaRAT.yar\r\n2024-12-14 10:22:52,758 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE G0Crypt.yar\r\n2024-12-14 10:22:52,758 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE GDriveRAT.yar\r\n2024-12-14 10:22:52,758 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Gandcrab.yar\r\n2024-12-14 10:22:52,759 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE GarrantDecrypt.yar\r\n2024-12-14 10:22:52,759 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Gasket.yar\r\n2024-12-14 10:22:52,759 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Gaudox.yar\r\n2024-12-14 10:22:52,759 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Gelsemium.yar\r\n2024-12-14 10:22:52,759 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE GetCrypt.yar\r\n2024-12-14 10:22:52,759 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE GhostEmperor.yar\r\n2024-12-14 10:22:52,759 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE GloomaneStealer.yar\r\n2024-12-14 10:22:52,759 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE GoBrut.yar\r\n2024-12-14 10:22:52,759 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Godzilla.yar\r\n2024-12-14 10:22:52,759 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE GoldenAxe.yar\r\n2024-12-14 10:22:52,759 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE GoldenSpy.yar\r\n2024-12-14 10:22:52,759 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Gootkit.yar\r\n2024-12-14 10:22:52,759 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE GraphicalProton.yar\r\n2024-12-14 10:22:52,759 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE GravityRAT.yar\r\n2024-12-14 10:22:52,759 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Greame.yar\r\n2024-12-14 10:22:52,759 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE GreetingGhoul.yar\r\n2024-12-14 10:22:52,760 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Grum.yar\r\n2024-12-14 10:22:52,760 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Guidlma.yar\r\n2024-12-14 10:22:52,760 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Guloader.yar\r\n2024-12-14 10:22:52,760 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Gulpix.yar\r\n2024-12-14 10:22:52,760 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE HDLocker.yar\r\n2024-12-14 10:22:52,760 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE HakunaMatata.yar\r\n2024-12-14 10:22:52,760 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Hancitor.yar\r\n2024-12-14 10:22:52,760 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE HawkEye.yar\r\n2024-12-14 10:22:52,760 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE HawkEyeV9.yar\r\n2024-12-14 10:22:52,760 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Hello.yar\r\n2024-12-14 10:22:52,760 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Heracles.yar\r\n2024-12-14 10:22:52,760 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Hermes.yar\r\n2024-12-14 10:22:52,760 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE HiddenVNC.yar\r\n2024-12-14 10:22:52,760 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE HiddenWasp.yar\r\n2024-12-14 10:22:52,760 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Hive.yar\r\n2024-12-14 10:22:52,760 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE HorusEyesRAT.yar\r\n2024-12-14 10:22:52,760 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE HttpBrowser.yar\r\n2024-12-14 10:22:52,760 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE HyperBro.yar\r\n2024-12-14 10:22:52,760 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE IAmTheKing.yar\r\n2024-12-14 10:22:52,761 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE IAmTheKingKeylogger.yar\r\n2024-12-14 10:22:52,761 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE IAmTheKingKingOfHearts.yar\r\n2024-12-14 10:22:52,761 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE IAmTheKingQueenOfClubs.yar\r\n2024-12-14 10:22:52,761 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE IAmTheKingQueenOfHearts.yar\r\n2024-12-14 10:22:52,761 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE IAmTheKingScrCap.yar\r\n2024-12-14 10:22:52,761 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE IRCBot.yar\r\n2024-12-14 10:22:52,761 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE ISRStealer.yar\r\n2024-12-14 10:22:52,761 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE IcedID.yar\r\n2024-12-14 10:22:52,761 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE IcedIDLoader.yar\r\n2024-12-14 10:22:52,761 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Imminent.yar\r\n2024-12-14 10:22:52,761 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Impacket.yar\r\n2024-12-14 10:22:52,761 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Infinity.yar\r\n2024-12-14 10:22:52,761 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE InfinityLock.yar\r\n2024-12-14 10:22:52,761 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE InvalidPrinter.yar\r\n2024-12-14 10:22:52,761 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE JSSLoader.yar\r\n2024-12-14 10:22:52,761 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Jaff.yar\r\n2024-12-14 10:22:52,761 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE JanelaRAT.yar\r\n2024-12-14 10:22:52,761 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE JavaDropper.yar\r\n2024-12-14 10:22:52,761 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE JennLog.yar\r\n2024-12-14 10:22:52,761 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE JesterStealer.yar\r\n2024-12-14 10:22:52,762 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE JoeGo.yar\r\n2024-12-14 10:22:52,762 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Jupyter.yar\r\n2024-12-14 10:22:52,762 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE KPortScan.yar\r\n2024-12-14 10:22:52,762 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Karagany.yar\r\n2024-12-14 10:22:52,762 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Karkoff.yar\r\n2024-12-14 10:22:52,762 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE KdcSponge.yar\r\n2024-12-14 10:22:52,762 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE KeyBase.yar\r\n2024-12-14 10:22:52,762 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Khonsari.yar\r\n2024-12-14 10:22:52,762 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE KillMBR.yar\r\n2024-12-14 10:22:52,762 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Kimsuky.yar\r\n2024-12-14 10:22:52,762 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Kinsing.yar\r\n2024-12-14 10:22:52,762 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Kitty.yar\r\n2024-12-14 10:22:52,762 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE KlingonRAT.yar\r\n2024-12-14 10:22:52,762 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE KoadicBAT.yar\r\n2024-12-14 10:22:52,762 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE KoadicDOC.yar\r\n2024-12-14 10:22:52,762 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE KoadicJS.yar\r\n2024-12-14 10:22:52,762 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE KoiLoader.yar\r\n2024-12-14 10:22:52,762 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Konni.yar\r\n2024-12-14 10:22:52,762 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Kovter.yar\r\n2024-12-14 10:22:52,763 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Koxic.yar\r\n2024-12-14 10:22:52,763 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Kpot.yar\r\n2024-12-14 10:22:52,763 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE KrakenStealer.yar\r\n2024-12-14 10:22:52,763 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Kronos.yar\r\n2024-12-14 10:22:52,763 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Kutaki.yar\r\n2024-12-14 10:22:52,763 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE LCPDot.yar\r\n2024-12-14 10:22:52,763 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE LOLKEK.yar\r\n2024-12-14 10:22:52,763 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE LaZagne.yar\r\n2024-12-14 10:22:52,763 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE LapLas.yar\r\n2024-12-14 10:22:52,763 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE LastConn.yar\r\n2024-12-14 10:22:52,763 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Latrodectus.yar\r\n2024-12-14 10:22:52,763 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Laturo.yar\r\n2024-12-14 10:22:52,763 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE LegionLocker.yar\r\n2024-12-14 10:22:52,763 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Leivion.yar\r\n2024-12-14 10:22:52,763 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE LilithRAT.yar\r\n2024-12-14 10:22:52,763 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE LimeRAT.yar\r\n2024-12-14 10:22:52,763 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE LockDown.yar\r\n2024-12-14 10:22:52,763 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE LockFile.yar\r\n2024-12-14 10:22:52,763 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Lockbit.yar\r\n2024-12-14 10:22:52,763 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Locked.yar\r\n2024-12-14 10:22:52,764 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Locky.yar\r\n2024-12-14 10:22:52,764 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE LokiBot.yar\r\n2024-12-14 10:22:52,764 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE LokiLocker.yar\r\n2024-12-14 10:22:52,764 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Lorenz.yar\r\n2024-12-14 10:22:52,764 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE LostDoor.yar\r\n2024-12-14 10:22:52,764 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Lu0Bot.yar\r\n2024-12-14 10:22:52,764 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE LuminosityLink.yar\r\n2024-12-14 10:22:52,764 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Lumma.yar\r\n2024-12-14 10:22:52,764 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE LuxNet.yar\r\n2024-12-14 10:22:52,764 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE M00nD3v.yar\r\n2024-12-14 10:22:52,764 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE MB150.yar\r\n2024-12-14 10:22:52,764 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Macoute.yar\r\n2024-12-14 10:22:52,764 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Magniber.yar\r\n2024-12-14 10:22:52,764 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Maktub.yar\r\n2024-12-14 10:22:52,764 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Mangzamel.yar\r\n2024-12-14 10:22:52,764 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE MargulasRAT.yar\r\n2024-12-14 10:22:52,764 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE MarkiRAT.yar\r\n2024-12-14 10:22:52,764 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE MassLogger.yar\r\n2024-12-14 10:22:52,764 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE MatanbuchusLoader.yar\r\n2024-12-14 10:22:52,764 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Matiex.yar\r\n2024-12-14 10:22:52,765 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Maze.yar\r\n2024-12-14 10:22:52,765 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE MediaPI.yar\r\n2024-12-14 10:22:52,765 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE MedusaLocker.yar\r\n2024-12-14 10:22:52,765 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE MegaCortex.yar\r\n2024-12-14 10:22:52,765 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Megumin.yar\r\n2024-12-14 10:22:52,765 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Mercurial.yar\r\n2024-12-14 10:22:52,765 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Meteorite.yar\r\n2024-12-14 10:22:52,765 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Meterpreter.yar\r\n2024-12-14 10:22:52,765 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Milan.yar\r\n2024-12-14 10:22:52,765 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Mimikatz.yar\r\n2024-12-14 10:22:52,765 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE MiniTor.yar\r\n2024-12-14 10:22:52,765 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE MoDiRAT.yar\r\n2024-12-14 10:22:52,765 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE ModiLoader.yar\r\n2024-12-14 10:22:52,765 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Mole.yar\r\n2024-12-14 10:22:52,765 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Motocos.yar\r\n2024-12-14 10:22:52,765 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE MountLocker.yar\r\n2024-12-14 10:22:52,765 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Mystic.yar\r\n2024-12-14 10:22:52,765 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE NGLite.yar\r\n2024-12-14 10:22:52,765 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE NLBrute.yar\r\n2024-12-14 10:22:52,765 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE NPPSpy.yar\r\n2024-12-14 10:22:52,766 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE NWorm.yar\r\n2024-12-14 10:22:52,766 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE NanoCore.yar\r\n2024-12-14 10:22:52,766 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE NanoLocker.yar\r\n2024-12-14 10:22:52,766 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Nefilim.yar\r\n2024-12-14 10:22:52,766 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Nemty.yar\r\n2024-12-14 10:22:52,766 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Neptune.yar\r\n2024-12-14 10:22:52,766 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Nermer.yar\r\n2024-12-14 10:22:52,766 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Neshta.yar\r\n2024-12-14 10:22:52,766 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE NetSupport.yar\r\n2024-12-14 10:22:52,766 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE NetTraveler.yar\r\n2024-12-14 10:22:52,766 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE NetWire.yar\r\n2024-12-14 10:22:52,766 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Neteagle.yar\r\n2024-12-14 10:22:52,766 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Netwalker.yar\r\n2024-12-14 10:22:52,766 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Nighthawk.yar\r\n2024-12-14 10:22:52,766 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Niribu.yar\r\n2024-12-14 10:22:52,766 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Nitol.yar\r\n2024-12-14 10:22:52,766 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Nitro.yar\r\n2024-12-14 10:22:52,766 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE NitrogenLoader.yar\r\n2024-12-14 10:22:52,766 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Njrat.yar\r\n2024-12-14 10:22:52,766 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Nodachi.yar\r\n2024-12-14 10:22:52,767 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE ObliqueRAT.yar\r\n2024-12-14 10:22:52,767 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Octopus.yar\r\n2024-12-14 10:22:52,767 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE OnlyLogger.yar\r\n2024-12-14 10:22:52,767 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE OrcaRAT.yar\r\n2024-12-14 10:22:52,767 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE OrcusRAT.yar\r\n2024-12-14 10:22:52,767 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Origin.yar\r\n2024-12-14 10:22:52,767 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Orion.yar\r\n2024-12-14 10:22:52,767 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Osno.yar\r\n2024-12-14 10:22:52,767 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Owowa.yar\r\n2024-12-14 10:22:52,767 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Oyster.yar\r\n2024-12-14 10:22:52,767 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE OzoneRAT.yar\r\n2024-12-14 10:22:52,767 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE PCRat.yar\r\n2024-12-14 10:22:52,767 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE PLEAD.yar\r\n2024-12-14 10:22:52,767 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE PWSHCUMII.yar\r\n2024-12-14 10:22:52,767 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE PYSA.yar\r\n2024-12-14 10:22:52,767 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Pafish.yar\r\n2024-12-14 10:22:52,767 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE PandaStealer.yar\r\n2024-12-14 10:22:52,767 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Pandora.yar\r\n2024-12-14 10:22:52,767 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Paradox.yar\r\n2024-12-14 10:22:52,767 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Parallax.yar\r\n2024-12-14 10:22:52,768 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE PatchWork.yar\r\n2024-12-14 10:22:52,768 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE PetrWrap.yar\r\n2024-12-14 10:22:52,768 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Petya.yar\r\n2024-12-14 10:22:52,768 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE PhemedroneStealer.yar\r\n2024-12-14 10:22:52,768 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Phobos.yar\r\n2024-12-14 10:22:52,768 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Phoenix.yar\r\n2024-12-14 10:22:52,768 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Phorpiex.yar\r\n2024-12-14 10:22:52,768 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE PikaBot.yar\r\n2024-12-14 10:22:52,768 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE PillowMint.yar\r\n2024-12-14 10:22:52,768 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE PingBack.yar\r\n2024-12-14 10:22:52,768 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE PirateStealer.yar\r\n2024-12-14 10:22:52,768 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Plasma.yar\r\n2024-12-14 10:22:52,768 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Plurox.yar\r\n2024-12-14 10:22:52,768 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE PoisonIvy.yar\r\n2024-12-14 10:22:52,768 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Polar.yar\r\n2024-12-14 10:22:52,768 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE PoshKeylogger.yar\r\n2024-12-14 10:22:52,768 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Poullight.yar\r\n2024-12-14 10:22:52,768 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE PovertyStealer.yar\r\n2024-12-14 10:22:52,768 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE PowerPool.yar\r\n2024-12-14 10:22:52,768 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE PredatorPain.yar\r\n2024-12-14 10:22:52,769 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE ProLock.yar\r\n2024-12-14 10:22:52,769 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Prometei.yar\r\n2024-12-14 10:22:52,769 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE ProtonBot.yar\r\n2024-12-14 10:22:52,769 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Prynt.yar\r\n2024-12-14 10:22:52,769 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Punisher.yar\r\n2024-12-14 10:22:52,769 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE PureLoader.yar\r\n2024-12-14 10:22:52,769 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Purge.yar\r\n2024-12-14 10:22:52,769 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE PurpleWave.yar\r\n2024-12-14 10:22:52,769 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Pyrogenic.yar\r\n2024-12-14 10:22:52,769 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE PythoRAT.yar\r\n2024-12-14 10:22:52,769 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE QRat.yar\r\n2024-12-14 10:22:52,769 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE QakBot.yar\r\n2024-12-14 10:22:52,769 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE QiwxxRAT.yar\r\n2024-12-14 10:22:52,769 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE QnapCrypt.yar\r\n2024-12-14 10:22:52,769 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Quantum.yar\r\n2024-12-14 10:22:52,769 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE QuasarRAT.yar\r\n2024-12-14 10:22:52,769 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE QuasarStealer.yar\r\n2024-12-14 10:22:52,769 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Quickbind.yar\r\n2024-12-14 10:22:52,769 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE QuilClipper.yar\r\n2024-12-14 10:22:52,770 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE QuiteRAT.yar\r\n2024-12-14 10:22:52,770 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Qulab.yar\r\n2024-12-14 10:22:52,770 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE R77.yar\r\n2024-12-14 10:22:52,770 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE RCSession.yar\r\n2024-12-14 10:22:52,770 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE RDPWrap.yar\r\n2024-12-14 10:22:52,770 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE REvil.yar\r\n2024-12-14 10:22:52,770 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE RHttpCtrl.yar\r\n2024-12-14 10:22:52,770 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Raccoon.yar\r\n2024-12-14 10:22:52,770 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE RageStealer.yar\r\n2024-12-14 10:22:52,770 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE RagnarLocker.yar\r\n2024-12-14 10:22:52,770 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Ramnit.yar\r\n2024-12-14 10:22:52,770 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE RansomEXX.yar\r\n2024-12-14 10:22:52,770 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE RanumBot.yar\r\n2024-12-14 10:22:52,770 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE RanzyLocker.yar\r\n2024-12-14 10:22:52,770 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Rapid.yar\r\n2024-12-14 10:22:52,770 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Rasftuby.yar\r\n2024-12-14 10:22:52,770 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Ratty.yar\r\n2024-12-14 10:22:52,770 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE RedLeaf.yar\r\n2024-12-14 10:22:52,770 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE RedLine.yar\r\n2024-12-14 10:22:52,770 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Redsip.yar\r\n2024-12-14 10:22:52,771 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Remcos.yar\r\n2024-12-14 10:22:52,771 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE RemoteUtilitiesRAT.yar\r\n2024-12-14 10:22:52,771 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Renamer.yar\r\n2024-12-14 10:22:52,771 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Responder.yar\r\n2024-12-14 10:22:52,771 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Retefe.yar\r\n2024-12-14 10:22:52,771 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE RevCodeRAT.yar\r\n2024-12-14 10:22:52,771 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE RevengeRAT.yar\r\n2024-12-14 10:22:52,771 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE ReverseRAT.yar\r\n2024-12-14 10:22:52,771 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Rhadamanthys.yar\r\n2024-12-14 10:22:52,771 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Rhysida.yar\r\n2024-12-14 10:22:52,771 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Rietspoof.yar\r\n2024-12-14 10:22:52,771 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE RisePro.yar\r\n2024-12-14 10:22:52,771 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Robbinhood.yar\r\n2024-12-14 10:22:52,771 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE RokRat.yar\r\n2024-12-14 10:22:52,771 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE RomCom.yar\r\n2024-12-14 10:22:52,771 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE RootTeamStealer.yar\r\n2024-12-14 10:22:52,771 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Rozena.yar\r\n2024-12-14 10:22:52,771 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Rsjon.yar\r\n2024-12-14 10:22:52,771 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE RunningRAT.yar\r\n2024-12-14 10:22:52,771 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE RustyBuer.yar\r\n2024-12-14 10:22:52,772 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE RustyStealer.yar\r\n2024-12-14 10:22:52,772 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Ryuk.yar\r\n2024-12-14 10:22:52,772 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE S05Kitty.yar\r\n2024-12-14 10:22:52,772 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE SNAKEImplant.yar\r\n2024-12-14 10:22:52,772 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE STEALDEAL.yar\r\n2024-12-14 10:22:52,772 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE STOP.yar\r\n2024-12-14 10:22:52,772 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Salfram.yar\r\n2024-12-14 10:22:52,772 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE SapphireStealer.yar\r\n2024-12-14 10:22:52,772 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Satan.yar\r\n2024-12-14 10:22:52,772 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Satana.yar\r\n2024-12-14 10:22:52,772 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Scarab.yar\r\n2024-12-14 10:22:52,772 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE SectopRAT.yar\r\n2024-12-14 10:22:52,772 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Sedreco.yar\r\n2024-12-14 10:22:52,772 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Seduploader.yar\r\n2024-12-14 10:22:52,772 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Sfile.yar\r\n2024-12-14 10:22:52,772 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE ShadowTech.yar\r\n2024-12-14 10:22:52,772 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE SideWalk.yar\r\n2024-12-14 10:22:52,772 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE SilentMoon.yar\r\n2024-12-14 10:22:52,772 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Simda.yar\r\n2024-12-14 10:22:52,772 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE SimplePacker.yar\r\n2024-12-14 10:22:52,773 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE SlackBot.yar\r\n2024-12-14 10:22:52,773 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE SlothfulMedia.yar\r\n2024-12-14 10:22:52,773 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE SmallNet.yar\r\n2024-12-14 10:22:52,773 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE SmokeLoader.yar\r\n2024-12-14 10:22:52,773 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Sn0wLogger.yar\r\n2024-12-14 10:22:52,773 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Snake.yar\r\n2024-12-14 10:22:52,773 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Snatch.yar\r\n2024-12-14 10:22:52,773 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Socks5Systemz.yar\r\n2024-12-14 10:22:52,773 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE SoftCNApp.yar\r\n2024-12-14 10:22:52,773 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE SolarMarker.yar\r\n2024-12-14 10:22:52,773 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE SoranoStealer.yar\r\n2024-12-14 10:22:52,773 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Spacecolon.yar\r\n2024-12-14 10:22:52,773 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE SparkRAT.yar\r\n2024-12-14 10:22:52,773 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Spectre.yar\r\n2024-12-14 10:22:52,773 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE SpyEye.yar\r\n2024-12-14 10:22:52,773 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE SpyGate.yar\r\n2024-12-14 10:22:52,773 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Spyro.yar\r\n2024-12-14 10:22:52,773 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE SquirrelWaffle.yar\r\n2024-12-14 10:22:52,773 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Stealc.yar\r\n2024-12-14 10:22:52,773 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Stealerium.yar\r\n2024-12-14 10:22:52,774 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE SteamHook.yar\r\n2024-12-14 10:22:52,774 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE StormKitty.yar\r\n2024-12-14 10:22:52,774 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE StrelaStealer.yar\r\n2024-12-14 10:22:52,774 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE StrifeWater.yar\r\n2024-12-14 10:22:52,774 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE StrongPity.yar\r\n2024-12-14 10:22:52,774 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Strrat.yar\r\n2024-12-14 10:22:52,774 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Sub7Nation.yar\r\n2024-12-14 10:22:52,774 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE SunCrypt.yar\r\n2024-12-14 10:22:52,774 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE SunShuttle.yar\r\n2024-12-14 10:22:52,774 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Surtr.yar\r\n2024-12-14 10:22:52,774 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE SweetyStealer.yar\r\n2024-12-14 10:22:52,774 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE SystemBC.yar\r\n2024-12-14 10:22:52,774 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE T5000.yar\r\n2024-12-14 10:22:52,774 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE TClient.yar\r\n2024-12-14 10:22:52,774 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE TJKeylogger.yar\r\n2024-12-14 10:22:52,774 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE TManager.yar\r\n2024-12-14 10:22:52,774 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE TOITOIN.yar\r\n2024-12-14 10:22:52,774 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE TRAT.yar\r\n2024-12-14 10:22:52,774 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE TSCookie.yar\r\n2024-12-14 10:22:52,774 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE TWarBot.yar\r\n2024-12-14 10:22:52,775 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE TYRAT.yar\r\n2024-12-14 10:22:52,775 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Taidoor.yar\r\n2024-12-14 10:22:52,775 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Tardigrade.yar\r\n2024-12-14 10:22:52,775 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Taurus.yar\r\n2024-12-14 10:22:52,775 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Tefosteal.yar\r\n2024-12-14 10:22:52,775 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE TeslaRevenge.yar\r\n2024-12-14 10:22:52,775 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Thanos.yar\r\n2024-12-14 10:22:52,775 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE TigerRAT.yar\r\n2024-12-14 10:22:52,775 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE TimeTime.yar\r\n2024-12-14 10:22:52,775 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Tofsee.yar\r\n2024-12-14 10:22:52,775 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Tomiris.yar\r\n2024-12-14 10:22:52,775 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Torisma.yar\r\n2024-12-14 10:22:52,775 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE ToxicEye.yar\r\n2024-12-14 10:22:52,775 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE TreasureHunter.yar\r\n2024-12-14 10:22:52,775 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE TrickBot.yar\r\n2024-12-14 10:22:52,775 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE TrickbotModule.yar\r\n2024-12-14 10:22:52,775 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE TrueBot.yar\r\n2024-12-14 10:22:52,775 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Turian.yar\r\n2024-12-14 10:22:52,775 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE UDPRat.yar\r\n2024-12-14 10:22:52,775 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE UNKInfostealer.yar\r\n2024-12-14 10:22:52,776 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE UltraSurf.yar\r\n2024-12-14 10:22:52,776 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE UmbralStealer.yar\r\n2024-12-14 10:22:52,776 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Underground.yar\r\n2024-12-14 10:22:52,776 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Unicorn.yar\r\n2024-12-14 10:22:52,776 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE UnlockYourFiles.yar\r\n2024-12-14 10:22:52,776 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Unrecom.yar\r\n2024-12-14 10:22:52,776 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Ursnif.yar\r\n2024-12-14 10:22:52,776 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE UrsnifV3.yar\r\n2024-12-14 10:22:52,776 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE VSSDestroy.yar\r\n2024-12-14 10:22:52,776 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE VanillaRAT.yar\r\n2024-12-14 10:22:52,776 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Varenyky.yar\r\n2024-12-14 10:22:52,776 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE VenomRAT.yar\r\n2024-12-14 10:22:52,776 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Vertex.yar\r\n2024-12-14 10:22:52,776 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Vidar.yar\r\n2024-12-14 10:22:52,776 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE VirLock.yar\r\n2024-12-14 10:22:52,776 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE VirusRat.yar\r\n2024-12-14 10:22:52,776 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Vovalex.yar\r\n2024-12-14 10:22:52,776 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Vulturi.yar\r\n2024-12-14 10:22:52,776 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE W1RAT.yar\r\n2024-12-14 10:22:52,776 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE WCE.yar\r\n2024-12-14 10:22:52,777 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE WSHRAT.yar\r\n2024-12-14 10:22:52,777 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE WanaCry.yar\r\n2024-12-14 10:22:52,777 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Warezov.yar\r\n2024-12-14 10:22:52,777 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE WarzoneRAT.yar\r\n2024-12-14 10:22:52,777 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE WellMess.yar\r\n2024-12-14 10:22:52,777 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE WhiffyRecon.yar\r\n2024-12-14 10:22:52,777 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE WinDealer.yar\r\n2024-12-14 10:22:52,777 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE WinGo.yar\r\n2024-12-14 10:22:52,777 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE WobbyChipMBR.yar\r\n2024-12-14 10:22:52,777 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE WorldWind.yar\r\n2024-12-14 10:22:52,777 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE XFiles.yar\r\n2024-12-14 10:22:52,777 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE XWorm.yar\r\n2024-12-14 10:22:52,777 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE XenoRAT.yar\r\n2024-12-14 10:22:52,777 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE XiaoBa.yar\r\n2024-12-14 10:22:52,777 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE XorStringsNET.yar\r\n2024-12-14 10:22:52,777 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Xorist.yar\r\n2024-12-14 10:22:52,777 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE XpertRAT.yar\r\n2024-12-14 10:22:52,777 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Xtreme.yar\r\n2024-12-14 10:22:52,777 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE ZXShell.yar\r\n2024-12-14 10:22:52,777 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Zegost.yar\r\n2024-12-14 10:22:52,778 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Zeoticus.yar\r\n2024-12-14 10:22:52,778 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Zeppelin.yar\r\n2024-12-14 10:22:52,778 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE ZeroT.yar\r\n2024-12-14 10:22:52,778 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE ZeusPanda.yar\r\n2024-12-14 10:22:52,778 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Ziggy.yar\r\n2024-12-14 10:22:52,778 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Zloader.yar\r\n2024-12-14 10:22:52,778 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE ZombieBoy.yar\r\n2024-12-14 10:22:52,778 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE adWind.yar\r\n2024-12-14 10:22:52,778 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE iTranslator.yar\r\n2024-12-14 10:22:52,778 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE jRat.yar\r\n2024-12-14 10:22:52,778 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE xRAT.yar\r\n2024-12-14 10:22:52,778 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE zgRAT.yar\r\n2024-12-14 10:22:54,971 [Task 23] [lib.cuckoo.common.integrations.virustotal] ERROR: VT: Request failed\r\n2024-12-14 10:22:55,237 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"AnalysisInfo\" on analysis at \"/opt/CAPEv2/storage/analyses/23\"\r\n2024-12-14 10:22:55,270 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Processing module autoruns not found in configuration file\r\n2024-12-14 10:22:55,270 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"BehaviorAnalysis\" on analysis at \"/opt/CAPEv2/storage/analyses/23\"\r\n2024-12-14 10:22:55,273 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Debug\" on analysis at \"/opt/CAPEv2/storage/analyses/23\"\r\n2024-12-14 10:22:55,274 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"NetworkAnalysis\" on analysis at \"/opt/CAPEv2/storage/analyses/23\"\r\n2024-12-14 10:22:55,307 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Suricata\" on analysis at \"/opt/CAPEv2/storage/analyses/23\"\r\n2024-12-14 10:22:55,358 [Task 23] [modules.processing.suricata] DEBUG: pcapfile list: {'message': {'count': 0, 'files': []}, 'return': 'OK'} current pcap: {'message': '/opt/CAPEv2/storage/analyses/23/dump.pcap', 'return': 'OK'}\r\n2024-12-14 10:23:00,363 [Task 23] [modules.processing.suricata] DEBUG: pcapfile list: {'message': {'count': 0, 'files': []}, 'return': 'OK'} current pcap: {'message': 'None', 'return': 'OK'}\r\n2024-12-14 10:23:00,363 [Task 23] [modules.processing.suricata] DEBUG: Pcap not in list and not current pcap lets assume it's processed\r\n2024-12-14 10:23:00,365 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"UrlAnalysis\" on analysis at \"/opt/CAPEv2/storage/analyses/23\"\r\n2024-12-14 10:23:00,366 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"script_log_processing\" on analysis at \"/opt/CAPEv2/storage/analyses/23\"\r\n2024-12-14 10:23:00,366 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"ProcessMemory\" on analysis at \"/opt/CAPEv2/storage/analyses/23\"\r\n2024-12-14 10:23:00,402 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Applying signature overlays for signatures: creates_exe\r\n2024-12-14 10:23:00,406 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running 256 evented signatures\r\n2024-12-14 10:23:00,407 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- packer_themida\r\n2024-12-14 10:23:00,407 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- stealth_network\r\n2024-12-14 10:23:00,407 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- anomalous_deletefile\r\n2024-12-14 10:23:00,407 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_360_libs\r\n2024-12-14 10:23:00,407 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_ahnlab_libs\r\n2024-12-14 10:23:00,407 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_avast_libs\r\n2024-12-14 10:23:00,407 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_bitdefender_libs\r\n2024-12-14 10:23:00,408 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_bullgaurd_libs\r\n2024-12-14 10:23:00,408 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_emsisoft_libs\r\n2024-12-14 10:23:00,408 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_qurb_libs\r\n2024-12-14 10:23:00,408 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_servicestop\r\n2024-12-14 10:23:00,408 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_addvectoredexceptionhandler\r\n2024-12-14 10:23:00,408 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_apioverride_libs\r\n2024-12-14 10:23:00,408 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_checkremotedebuggerpresent\r\n2024-12-14 10:23:00,408 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_debugactiveprocess\r\n2024-12-14 10:23:00,408 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_gettickcount\r\n2024-12-14 10:23:00,408 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_guardpages\r\n2024-12-14 10:23:00,409 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_ntcreatethreadex\r\n2024-12-14 10:23:00,409 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_nthookengine_libs\r\n2024-12-14 10:23:00,409 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_ntsetinformationthread\r\n2024-12-14 10:23:00,409 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_outputdebugstring\r\n2024-12-14 10:23:00,409 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_setunhandledexceptionfilter\r\n2024-12-14 10:23:00,409 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_windows\r\n2024-12-14 10:23:00,409 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiemu_wine_func\r\n2024-12-14 10:23:00,409 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_check_userdomain\r\n2024-12-14 10:23:00,409 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_cuckoo\r\n2024-12-14 10:23:00,409 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_cuckoocrash\r\n2024-12-14 10:23:00,410 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_foregroundwindows\r\n2024-12-14 10:23:00,410 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_mouse_hook\r\n2024-12-14 10:23:00,410 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_restart\r\n2024-12-14 10:23:00,410 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_sboxie_libs\r\n2024-12-14 10:23:00,410 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_sboxie_objects\r\n2024-12-14 10:23:00,410 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_script_timer\r\n2024-12-14 10:23:00,410 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_sleep\r\n2024-12-14 10:23:00,410 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_sunbelt_libs\r\n2024-12-14 10:23:00,410 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_suspend\r\n2024-12-14 10:23:00,410 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_unhook\r\n2024-12-14 10:23:00,411 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_directory_objects\r\n2024-12-14 10:23:00,411 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_generic_disk\r\n2024-12-14 10:23:00,411 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_generic_disk_setupapi\r\n2024-12-14 10:23:00,411 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_generic_scsi\r\n2024-12-14 10:23:00,411 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_generic_services\r\n2024-12-14 10:23:00,411 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_generic_system\r\n2024-12-14 10:23:00,411 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_checks_available_memory\r\n2024-12-14 10:23:00,411 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_network_adapters\r\n2024-12-14 10:23:00,411 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_vbox_libs\r\n2024-12-14 10:23:00,411 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_vbox_provname\r\n2024-12-14 10:23:00,411 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_vbox_window\r\n2024-12-14 10:23:00,412 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_vmware_events\r\n2024-12-14 10:23:00,412 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_vmware_libs\r\n2024-12-14 10:23:00,412 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- api_spamming\r\n2024-12-14 10:23:00,412 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- api_uuidfromstringa\r\n2024-12-14 10:23:00,412 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- banker_prinimalka\r\n2024-12-14 10:23:00,412 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- bcdedit_command\r\n2024-12-14 10:23:00,412 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- bootkit\r\n2024-12-14 10:23:00,412 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- potential_overwrite_mbr\r\n2024-12-14 10:23:00,412 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- suspicious_ioctl_scsipassthough\r\n2024-12-14 10:23:00,412 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- browser_needed\r\n2024-12-14 10:23:00,412 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- browser_scanbox\r\n2024-12-14 10:23:00,413 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- firefox_disables_process_tab\r\n2024-12-14 10:23:00,413 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- regsvr32_squiblydoo_dll_load\r\n2024-12-14 10:23:00,413 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- uac_bypass_cmstp\r\n2024-12-14 10:23:00,413 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- uac_bypass_eventvwr\r\n2024-12-14 10:23:00,413 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- clickfraud_cookies\r\n2024-12-14 10:23:00,413 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- clickfraud_volume\r\n2024-12-14 10:23:00,413 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- dotnet_code_compile\r\n2024-12-14 10:23:00,413 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- creates_largekey\r\n2024-12-14 10:23:00,413 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- creates_nullvalue\r\n2024-12-14 10:23:00,413 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- lsass_credential_dumping\r\n2024-12-14 10:23:00,414 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- critical_process\r\n2024-12-14 10:23:00,414 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- generates_crypto_key\r\n2024-12-14 10:23:00,414 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- cryptopool_domains\r\n2024-12-14 10:23:00,414 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- cve_2014_6332\r\n2024-12-14 10:23:00,414 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- cve_2015_2419_js\r\n2024-12-14 10:23:00,414 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- cve_2016-0189\r\n2024-12-14 10:23:00,414 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- cve_2016_7200\r\n2024-12-14 10:23:00,414 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- dead_connect\r\n2024-12-14 10:23:00,414 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- dead_link\r\n2024-12-14 10:23:00,414 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- debugs_self\r\n2024-12-14 10:23:00,415 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- decoy_document\r\n2024-12-14 10:23:00,415 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- decoy_image\r\n2024-12-14 10:23:00,415 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- deletes_self\r\n2024-12-14 10:23:00,415 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- deletes_shadow_copies\r\n2024-12-14 10:23:00,415 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- deletes_system_state_backup\r\n2024-12-14 10:23:00,415 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- dep_bypass\r\n2024-12-14 10:23:00,415 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- dep_disable\r\n2024-12-14 10:23:00,415 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- disables_mappeddrives_autodisconnect\r\n2024-12-14 10:23:00,415 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- disables_spdy\r\n2024-12-14 10:23:00,415 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- disables_wfp\r\n2024-12-14 10:23:00,415 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- dll_load_uncommon_file_types\r\n2024-12-14 10:23:00,416 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- document_script_exe_drop\r\n2024-12-14 10:23:00,416 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- guloader_apis\r\n2024-12-14 10:23:00,416 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- driver_load\r\n2024-12-14 10:23:00,416 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- exe_dropper_js\r\n2024-12-14 10:23:00,416 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- dynamic_function_loading\r\n2024-12-14 10:23:00,416 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- encrypted_ioc\r\n2024-12-14 10:23:00,416 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- exec_crash\r\n2024-12-14 10:23:00,416 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- process_creation_suspicious_location\r\n2024-12-14 10:23:00,416 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- exploit_getbasekerneladdress\r\n2024-12-14 10:23:00,416 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- exploit_gethaldispatchtable\r\n2024-12-14 10:23:00,416 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- exploit_heapspray\r\n2024-12-14 10:23:00,417 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- koadic_apis\r\n2024-12-14 10:23:00,417 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- koadic_network_activity\r\n2024-12-14 10:23:00,417 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- downloads_from_filehosting\r\n2024-12-14 10:23:00,417 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- generic_phish\r\n2024-12-14 10:23:00,417 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- http_request\r\n2024-12-14 10:23:00,417 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- infostealer_browser\r\n2024-12-14 10:23:00,417 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- infostealer_browser_password\r\n2024-12-14 10:23:00,417 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- infostealer_cookies\r\n2024-12-14 10:23:00,417 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- cryptbot_network\r\n2024-12-14 10:23:00,417 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- infostealer_keylog\r\n2024-12-14 10:23:00,418 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- masslogger_artifacts\r\n2024-12-14 10:23:00,418 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- masslogger_version\r\n2024-12-14 10:23:00,418 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- purplewave_network_activity\r\n2024-12-14 10:23:00,418 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- quilclipper_behavior\r\n2024-12-14 10:23:00,418 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- raccoon_behavior\r\n2024-12-14 10:23:00,418 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- captures_screenshot\r\n2024-12-14 10:23:00,418 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- vidar_behavior\r\n2024-12-14 10:23:00,418 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_createremotethread\r\n2024-12-14 10:23:00,418 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_explorer\r\n2024-12-14 10:23:00,418 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_needextension\r\n2024-12-14 10:23:00,419 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_network_traffic\r\n2024-12-14 10:23:00,419 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_runpe\r\n2024-12-14 10:23:00,419 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_rwx\r\n2024-12-14 10:23:00,419 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_themeinitapihook\r\n2024-12-14 10:23:00,419 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- internet_dropper\r\n2024-12-14 10:23:00,419 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- ipc_namedpipe\r\n2024-12-14 10:23:00,419 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- js_phish\r\n2024-12-14 10:23:00,419 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- js_suspicious_redirect\r\n2024-12-14 10:23:00,419 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- malicious_dynamic_function_loading\r\n2024-12-14 10:23:00,419 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- encrypt_pcinfo\r\n2024-12-14 10:23:00,420 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- encrypt_data_agenttesla_http\r\n2024-12-14 10:23:00,420 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- encrypt_data_agentteslat2_http\r\n2024-12-14 10:23:00,420 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- encrypt_data_nanocore\r\n2024-12-14 10:23:00,420 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- mimics_agent\r\n2024-12-14 10:23:00,420 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- mimics_filetime\r\n2024-12-14 10:23:00,420 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- quilclipper_behavior\r\n2024-12-14 10:23:00,420 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- modify_desktop_wallpaper\r\n2024-12-14 10:23:00,420 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- modify_zoneid_ads\r\n2024-12-14 10:23:00,420 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- move_file_on_reboot\r\n2024-12-14 10:23:00,420 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- multiple_useragents\r\n2024-12-14 10:23:00,420 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_anomaly\r\n2024-12-14 10:23:00,421 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_bind\r\n2024-12-14 10:23:00,421 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_archive\r\n2024-12-14 10:23:00,421 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_free_webshoting\r\n2024-12-14 10:23:00,421 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_generic\r\n2024-12-14 10:23:00,421 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_temp_urldns\r\n2024-12-14 10:23:00,421 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_opensource\r\n2024-12-14 10:23:00,421 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_pastesite\r\n2024-12-14 10:23:00,421 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_payload\r\n2024-12-14 10:23:00,421 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_serviceinterface\r\n2024-12-14 10:23:00,421 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_socialmedia\r\n2024-12-14 10:23:00,421 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_telegram\r\n2024-12-14 10:23:00,422 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_tempstorage\r\n2024-12-14 10:23:00,422 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_temp_urldns\r\n2024-12-14 10:23:00,422 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_urlshortener\r\n2024-12-14 10:23:00,422 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_useragent\r\n2024-12-14 10:23:00,422 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_smtps_exfil\r\n2024-12-14 10:23:00,422 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_smtps_generic\r\n2024-12-14 10:23:00,422 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_dns_idn\r\n2024-12-14 10:23:00,422 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_dns_suspicious_querytype\r\n2024-12-14 10:23:00,422 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_dns_tunneling_request\r\n2024-12-14 10:23:00,422 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_document_http\r\n2024-12-14 10:23:00,423 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- explorer_http\r\n2024-12-14 10:23:00,423 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_fake_useragent\r\n2024-12-14 10:23:00,423 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_document_file\r\n2024-12-14 10:23:00,423 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_downloader_exe\r\n2024-12-14 10:23:00,423 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_tor\r\n2024-12-14 10:23:00,423 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_com_load\r\n2024-12-14 10:23:00,423 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_dotnet_load\r\n2024-12-14 10:23:00,423 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_mshtml_load\r\n2024-12-14 10:23:00,423 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_vb_load\r\n2024-12-14 10:23:00,424 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_wmi_load\r\n2024-12-14 10:23:00,424 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_cve2017_11882\r\n2024-12-14 10:23:00,424 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_cve2017_11882_network\r\n2024-12-14 10:23:00,424 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_cve_2021_40444\r\n2024-12-14 10:23:00,424 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_cve_2021_40444_m2\r\n2024-12-14 10:23:00,424 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_flash_load\r\n2024-12-14 10:23:00,424 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_postscript\r\n2024-12-14 10:23:00,424 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_suspicious_processes\r\n2024-12-14 10:23:00,424 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_write_exe\r\n2024-12-14 10:23:00,424 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- persistence_autorun\r\n2024-12-14 10:23:00,424 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- persistence_autorun_tasks\r\n2024-12-14 10:23:00,425 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- persistence_bootexecute\r\n2024-12-14 10:23:00,425 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- persistence_registry_script\r\n2024-12-14 10:23:00,425 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- powershell_network_connection\r\n2024-12-14 10:23:00,425 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- powershell_download\r\n2024-12-14 10:23:00,425 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- powershell_request\r\n2024-12-14 10:23:00,425 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- createtoolhelp32snapshot_module_enumeration\r\n2024-12-14 10:23:00,425 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- enumerates_running_processes\r\n2024-12-14 10:23:00,425 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- process_interest\r\n2024-12-14 10:23:00,425 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- process_needed\r\n2024-12-14 10:23:00,426 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- mass_data_encryption\r\n2024-12-14 10:23:00,426 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- ransomware_dmalocker\r\n2024-12-14 10:23:00,426 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- ransomware_file_modifications\r\n2024-12-14 10:23:00,426 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- ransomware_message\r\n2024-12-14 10:23:00,426 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- nemty_network_activity\r\n2024-12-14 10:23:00,426 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- nemty_note\r\n2024-12-14 10:23:00,426 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- sodinokibi_behavior\r\n2024-12-14 10:23:00,426 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- stop_ransomware_registry\r\n2024-12-14 10:23:00,426 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- blackrat_apis\r\n2024-12-14 10:23:00,427 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- blackrat_network_activity\r\n2024-12-14 10:23:00,427 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- blackrat_registry_keys\r\n2024-12-14 10:23:00,427 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- dcrat_behavior\r\n2024-12-14 10:23:00,427 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- karagany_system_event_objects\r\n2024-12-14 10:23:00,427 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- rat_luminosity\r\n2024-12-14 10:23:00,427 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- rat_nanocore\r\n2024-12-14 10:23:00,427 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- netwire_behavior\r\n2024-12-14 10:23:00,427 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- obliquerat_network_activity\r\n2024-12-14 10:23:00,427 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- orcusrat_behavior\r\n2024-12-14 10:23:00,427 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- trochilusrat_apis\r\n2024-12-14 10:23:00,427 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- reads_self\r\n2024-12-14 10:23:00,428 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- recon_beacon\r\n2024-12-14 10:23:00,428 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- recon_programs\r\n2024-12-14 10:23:00,428 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- recon_systeminfo\r\n2024-12-14 10:23:00,428 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- accesses_recyclebin\r\n2024-12-14 10:23:00,428 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- removes_zoneid_ads\r\n2024-12-14 10:23:00,428 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- script_created_process\r\n2024-12-14 10:23:00,428 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- script_network_activity\r\n2024-12-14 10:23:00,428 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- suspicious_js_script\r\n2024-12-14 10:23:00,428 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- javascript_timer\r\n2024-12-14 10:23:00,428 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- secure_login_phishing\r\n2024-12-14 10:23:00,428 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- securityxploded_modules\r\n2024-12-14 10:23:00,429 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- get_clipboard_data\r\n2024-12-14 10:23:00,429 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- sets_autoconfig_url\r\n2024-12-14 10:23:00,429 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- spoofs_procname\r\n2024-12-14 10:23:00,429 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- stack_pivot\r\n2024-12-14 10:23:00,429 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- stack_pivot_file_created\r\n2024-12-14 10:23:00,429 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- stack_pivot_process_create\r\n2024-12-14 10:23:00,429 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- set_clipboard_data\r\n2024-12-14 10:23:00,429 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- stealth_childproc\r\n2024-12-14 10:23:00,429 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- stealth_file\r\n2024-12-14 10:23:00,429 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- stealth_system_procname\r\n2024-12-14 10:23:00,430 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- stealth_timeout\r\n2024-12-14 10:23:00,430 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- stealth_window\r\n2024-12-14 10:23:00,430 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- queries_keyboard_layout\r\n2024-12-14 10:23:00,430 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- terminates_remote_process\r\n2024-12-14 10:23:00,430 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- trickbot_task_delete\r\n2024-12-14 10:23:00,430 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- user_enum\r\n2024-12-14 10:23:00,430 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- virus\r\n2024-12-14 10:23:00,430 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- neshta_files\r\n2024-12-14 10:23:00,430 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- neshta_regkeys\r\n2024-12-14 10:23:00,431 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- webmail_phish\r\n2024-12-14 10:23:00,431 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- persists_dev_util\r\n2024-12-14 10:23:00,431 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- spawns_dev_util\r\n2024-12-14 10:23:00,431 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- alters_windows_utility\r\n2024-12-14 10:23:00,431 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- overwrites_accessibility_utility\r\n2024-12-14 10:23:00,431 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- uses_windows_utilities_to_create_scheduled_task\r\n2024-12-14 10:23:00,431 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- wiper_zeroedbytes\r\n2024-12-14 10:23:00,431 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- wmi_create_process\r\n2024-12-14 10:23:00,431 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- wmi_script_process\r\n2024-12-14 10:23:00,431 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- win32_process_create\r\n2024-12-14 10:23:00,432 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- deletes_files\r\n2024-12-14 10:23:00,432 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- drops_files\r\n2024-12-14 10:23:00,432 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t |-- reads_files\r\n2024-12-14 10:23:00,432 [Task 23] [lib.cuckoo.core.plugins] DEBUG: \t `-- writes_files\r\n2024-12-14 10:23:00,445 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running non-evented signatures\r\n2024-12-14 10:23:00,446 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivirus_clamav\"\r\n2024-12-14 10:23:00,446 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivirus_virustotal\"\r\n2024-12-14 10:23:00,447 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bad_certs\"\r\n2024-12-14 10:23:00,447 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bad_ssl_certs\"\r\n2024-12-14 10:23:00,448 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_zeus_p2p\"\r\n2024-12-14 10:23:00,448 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_zeus_url\"\r\n2024-12-14 10:23:00,449 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_athenahttp\"\r\n2024-12-14 10:23:00,450 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_dirtjumper\"\r\n2024-12-14 10:23:00,450 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_drive\"\r\n2024-12-14 10:23:00,451 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_drive2\"\r\n2024-12-14 10:23:00,452 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_madness\"\r\n2024-12-14 10:23:00,453 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"family_proxyback\"\r\n2024-12-14 10:23:00,453 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_antianalysis\"\r\n2024-12-14 10:23:00,453 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_collection\"\r\n2024-12-14 10:23:00,454 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_compiler\"\r\n2024-12-14 10:23:00,454 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_datamanipulation\"\r\n2024-12-14 10:23:00,454 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_executable\"\r\n2024-12-14 10:23:00,454 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_hostinteraction\"\r\n2024-12-14 10:23:00,455 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_impact\"\r\n2024-12-14 10:23:00,455 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_lib\"\r\n2024-12-14 10:23:00,455 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_linking\"\r\n2024-12-14 10:23:00,455 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_loadcode\"\r\n2024-12-14 10:23:00,455 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_malwarefamily\"\r\n2024-12-14 10:23:00,456 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_nursery\"\r\n2024-12-14 10:23:00,456 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_persistence\"\r\n2024-12-14 10:23:00,456 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_runtime\"\r\n2024-12-14 10:23:00,456 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"flare_capa_targeting\"\r\n2024-12-14 10:23:00,456 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"log4shell\"\r\n2024-12-14 10:23:00,456 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"mimics_extension\"\r\n2024-12-14 10:23:00,457 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_country_distribution\"\r\n2024-12-14 10:23:00,457 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_multiple_direct_ip_connections\"\r\n2024-12-14 10:23:00,457 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_cnc_http\"\r\n2024-12-14 10:23:00,458 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_http_post\"\r\n2024-12-14 10:23:00,458 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_ip_exe\"\r\n2024-12-14 10:23:00,458 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dga\"\r\n2024-12-14 10:23:00,458 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dga_fraunhofer\"\r\n2024-12-14 10:23:00,458 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dyndns\"\r\n2024-12-14 10:23:00,459 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_excessive_udp\"\r\n2024-12-14 10:23:00,459 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_http\"\r\n2024-12-14 10:23:00,459 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_icmp\"\r\n2024-12-14 10:23:00,459 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_irc\"\r\n2024-12-14 10:23:00,460 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_open_proxy\"\r\n2024-12-14 10:23:00,460 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_p2p\"\r\n2024-12-14 10:23:00,460 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_questionable_http_path\"\r\n2024-12-14 10:23:00,460 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_questionable_https_path\"\r\n2024-12-14 10:23:00,460 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_smtp\"\r\n2024-12-14 10:23:00,460 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_torgateway\"\r\n2024-12-14 10:23:00,461 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"origin_langid\"\r\n2024-12-14 10:23:00,461 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"origin_resource_langid\"\r\n2024-12-14 10:23:00,461 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"overlay\"\r\n2024-12-14 10:23:00,461 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_unknown_pe_section_name\"\r\n2024-12-14 10:23:00,462 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_aspack\"\r\n2024-12-14 10:23:00,462 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_aspirecrypt\"\r\n2024-12-14 10:23:00,462 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_bedsprotector\"\r\n2024-12-14 10:23:00,462 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_confuser\"\r\n2024-12-14 10:23:00,462 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_enigma\"\r\n2024-12-14 10:23:00,462 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_entropy\"\r\n2024-12-14 10:23:00,463 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_mpress\"\r\n2024-12-14 10:23:00,463 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_nate\"\r\n2024-12-14 10:23:00,463 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_nspack\"\r\n2024-12-14 10:23:00,463 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_smartassembly\"\r\n2024-12-14 10:23:00,464 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_spices\"\r\n2024-12-14 10:23:00,464 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_themida\"\r\n2024-12-14 10:23:00,464 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_titan\"\r\n2024-12-14 10:23:00,464 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_upx\"\r\n2024-12-14 10:23:00,465 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_vmprotect\"\r\n2024-12-14 10:23:00,465 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_yoda\"\r\n2024-12-14 10:23:00,465 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"pdf_annot_urls\"\r\n2024-12-14 10:23:00,465 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"polymorphic\"\r\n2024-12-14 10:23:00,466 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"punch_plus_plus_pcres\"\r\n2024-12-14 10:23:00,466 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"procmem_yara\"\r\n2024-12-14 10:23:00,466 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"recon_checkip\"\r\n2024-12-14 10:23:00,467 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_authenticode\"\r\n2024-12-14 10:23:00,467 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"invalid_authenticode_signature\"\r\n2024-12-14 10:23:00,467 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_dotnet_anomaly\"\r\n2024-12-14 10:23:00,467 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_java\"\r\n2024-12-14 10:23:00,467 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_pdf\"\r\n2024-12-14 10:23:00,468 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_pe_anomaly\"\r\n2024-12-14 10:23:00,468 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"pe_compile_timestomping\"\r\n2024-12-14 10:23:00,468 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_pe_pdbpath\"\r\n2024-12-14 10:23:00,469 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_rat_config\"\r\n2024-12-14 10:23:00,469 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_versioninfo_anomaly\"\r\n2024-12-14 10:23:00,469 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suricata_alert\"\r\n2024-12-14 10:23:00,469 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_devicetree_1\"\r\n2024-12-14 10:23:00,469 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_handles_1\"\r\n2024-12-14 10:23:00,470 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_ldrmodules_1\"\r\n2024-12-14 10:23:00,470 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_ldrmodules_2\"\r\n2024-12-14 10:23:00,470 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_malfind_1\"\r\n2024-12-14 10:23:00,470 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_malfind_2\"\r\n2024-12-14 10:23:00,470 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_modscan_1\"\r\n2024-12-14 10:23:00,470 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_svcscan_1\"\r\n2024-12-14 10:23:00,471 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_svcscan_2\"\r\n2024-12-14 10:23:00,471 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_svcscan_3\"\r\n2024-12-14 10:23:00,471 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"whois_create\"\r\n2024-12-14 10:23:00,471 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"accesses_mailslot\"\r\n2024-12-14 10:23:00,471 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"accesses_netlogon_regkey\"\r\n2024-12-14 10:23:00,472 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"accesses_public_folder\"\r\n2024-12-14 10:23:00,472 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"accesses_sysvol\"\r\n2024-12-14 10:23:00,473 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"writes_sysvol\"\r\n2024-12-14 10:23:00,473 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"adds_admin_user\"\r\n2024-12-14 10:23:00,473 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"adds_user\"\r\n2024-12-14 10:23:00,474 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"overwrites_admin_password\"\r\n2024-12-14 10:23:00,474 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antianalysis_detectfile\"\r\n2024-12-14 10:23:00,481 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antianalysis_detectreg\"\r\n2024-12-14 10:23:00,483 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_attachment_manager\"\r\n2024-12-14 10:23:00,484 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_detectfile\"\r\n2024-12-14 10:23:00,487 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_detectreg\"\r\n2024-12-14 10:23:00,495 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_srp\"\r\n2024-12-14 10:23:00,495 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_whitespace\"\r\n2024-12-14 10:23:00,495 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antidebug_devices\"\r\n2024-12-14 10:23:00,496 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiemu_windefend\"\r\n2024-12-14 10:23:00,497 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiemu_wine_reg\"\r\n2024-12-14 10:23:00,497 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_cuckoo_files\"\r\n2024-12-14 10:23:00,497 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_fortinet_files\"\r\n2024-12-14 10:23:00,497 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_joe_anubis_files\"\r\n2024-12-14 10:23:00,498 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_sboxie_mutex\"\r\n2024-12-14 10:23:00,498 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_sunbelt_files\"\r\n2024-12-14 10:23:00,498 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_threattrack_files\"\r\n2024-12-14 10:23:00,499 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_bochs_keys\"\r\n2024-12-14 10:23:00,499 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_generic_bios\"\r\n2024-12-14 10:23:00,500 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_generic_cpu\"\r\n2024-12-14 10:23:00,500 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_generic_diskreg\"\r\n2024-12-14 10:23:00,501 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_hyperv_keys\"\r\n2024-12-14 10:23:00,501 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_parallels_keys\"\r\n2024-12-14 10:23:00,502 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vbox_devices\"\r\n2024-12-14 10:23:00,502 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vbox_files\"\r\n2024-12-14 10:23:00,504 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vbox_keys\"\r\n2024-12-14 10:23:00,506 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vmware_devices\"\r\n2024-12-14 10:23:00,506 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vmware_files\"\r\n2024-12-14 10:23:00,507 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vmware_keys\"\r\n2024-12-14 10:23:00,508 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vmware_mutexes\"\r\n2024-12-14 10:23:00,508 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vpc_files\"\r\n2024-12-14 10:23:00,508 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vpc_keys\"\r\n2024-12-14 10:23:00,509 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vpc_mutex\"\r\n2024-12-14 10:23:00,510 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_xen_keys\"\r\n2024-12-14 10:23:00,510 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"asyncrat_mutex\"\r\n2024-12-14 10:23:00,511 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"gulpix_behavior\"\r\n2024-12-14 10:23:00,511 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ketrican_regkeys\"\r\n2024-12-14 10:23:00,512 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"okrum_mutexes\"\r\n2024-12-14 10:23:00,513 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_cridex\"\r\n2024-12-14 10:23:00,513 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"geodo_banking_trojan\"\r\n2024-12-14 10:23:00,514 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_spyeye_mutexes\"\r\n2024-12-14 10:23:00,515 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_zeus_mutex\"\r\n2024-12-14 10:23:00,516 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bitcoin_opencl\"\r\n2024-12-14 10:23:00,516 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"accesses_primary_patition\"\r\n2024-12-14 10:23:00,516 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"direct_hdd_access\"\r\n2024-12-14 10:23:00,517 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"enumerates_physical_drives\"\r\n2024-12-14 10:23:00,517 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"physical_drive_access\"\r\n2024-12-14 10:23:00,517 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_russkill\"\r\n2024-12-14 10:23:00,517 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"browser_addon\"\r\n2024-12-14 10:23:00,518 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"chromium_browser_extension_directory\"\r\n2024-12-14 10:23:00,518 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"browser_helper_object\"\r\n2024-12-14 10:23:00,519 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_proxy\"\r\n2024-12-14 10:23:00,519 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"browser_security\"\r\n2024-12-14 10:23:00,521 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"browser_startpage\"\r\n2024-12-14 10:23:00,522 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ie_disables_process_tab\"\r\n2024-12-14 10:23:00,522 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"odbcconf_bypass\"\r\n2024-12-14 10:23:00,522 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"squiblydoo_bypass\"\r\n2024-12-14 10:23:00,522 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"squiblytwo_bypass\"\r\n2024-12-14 10:23:00,523 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bypass_firewall\"\r\n2024-12-14 10:23:00,523 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uac_bypass_cmstpcom\"\r\n2024-12-14 10:23:00,524 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uac_bypass_delegateexecute_sdclt\"\r\n2024-12-14 10:23:00,524 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uac_bypass_fodhelper\"\r\n2024-12-14 10:23:00,525 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cape_extracted_content\"\r\n2024-12-14 10:23:00,525 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"carberp_mutex\"\r\n2024-12-14 10:23:00,525 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"clears_logs\"\r\n2024-12-14 10:23:00,526 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_obfuscation\"\r\n2024-12-14 10:23:00,526 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_switches\"\r\n2024-12-14 10:23:00,526 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_terminate\"\r\n2024-12-14 10:23:00,527 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_forfiles_wildcard\"\r\n2024-12-14 10:23:00,527 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_http_link\"\r\n2024-12-14 10:23:00,527 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_long_string\"\r\n2024-12-14 10:23:00,527 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_reversed_http_link\"\r\n2024-12-14 10:23:00,528 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"long_commandline\"\r\n2024-12-14 10:23:00,528 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_renamed_commandline\"\r\n2024-12-14 10:23:00,528 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_account_discovery_cmd\"\r\n2024-12-14 10:23:00,528 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_currently_loggedin_user_cmd\"\r\n2024-12-14 10:23:00,528 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_info_discovery_cmd\"\r\n2024-12-14 10:23:00,528 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_info_discovery_pwsh\"\r\n2024-12-14 10:23:00,529 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_network_discovery_cmd\"\r\n2024-12-14 10:23:00,529 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_network_discovery_pwsh\"\r\n2024-12-14 10:23:00,529 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_user_discovery_cmd\"\r\n2024-12-14 10:23:00,529 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"copies_self\"\r\n2024-12-14 10:23:00,529 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"credwiz_credentialaccess\"\r\n2024-12-14 10:23:00,530 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"enables_wdigest\"\r\n2024-12-14 10:23:00,530 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"vaultcmd_credentialaccess\"\r\n2024-12-14 10:23:00,530 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"file_credential_store_access\"\r\n2024-12-14 10:23:00,531 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"file_credential_store_write\"\r\n2024-12-14 10:23:00,531 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"registry_credential_dumping\"\r\n2024-12-14 10:23:00,531 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"registry_credential_store_access\"\r\n2024-12-14 10:23:00,532 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"registry_lsa_secrets_access\"\r\n2024-12-14 10:23:00,532 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"comsvcs_credentialdump\"\r\n2024-12-14 10:23:00,532 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cryptomining_stratum_command\"\r\n2024-12-14 10:23:00,533 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cypherit_mutexes\"\r\n2024-12-14 10:23:00,533 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"darkcomet_regkeys\"\r\n2024-12-14 10:23:00,533 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"datop_loader\"\r\n2024-12-14 10:23:00,534 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"deepfreeze_mutex\"\r\n2024-12-14 10:23:00,534 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"deletes_executed_files\"\r\n2024-12-14 10:23:00,534 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_app_launch\"\r\n2024-12-14 10:23:00,535 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_auto_app_termination\"\r\n2024-12-14 10:23:00,535 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_appv_virtualization\"\r\n2024-12-14 10:23:00,536 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_backups\"\r\n2024-12-14 10:23:00,538 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_browser_warn\"\r\n2024-12-14 10:23:00,539 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_context_menus\"\r\n2024-12-14 10:23:00,540 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_cpl_disable\"\r\n2024-12-14 10:23:00,540 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_crashdumps\"\r\n2024-12-14 10:23:00,541 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_event_logging\"\r\n2024-12-14 10:23:00,541 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_folder_options\"\r\n2024-12-14 10:23:00,542 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_notificationcenter\"\r\n2024-12-14 10:23:00,542 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_power_options\"\r\n2024-12-14 10:23:00,543 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_restore_default_state\"\r\n2024-12-14 10:23:00,543 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_run_command\"\r\n2024-12-14 10:23:00,544 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_security\"\r\n2024-12-14 10:23:00,544 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_smartscreen\"\r\n2024-12-14 10:23:00,545 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_startmenu_search\"\r\n2024-12-14 10:23:00,545 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_system_restore\"\r\n2024-12-14 10:23:00,546 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_uac\"\r\n2024-12-14 10:23:00,547 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_wer\"\r\n2024-12-14 10:23:00,547 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_windows_defender\"\r\n2024-12-14 10:23:00,548 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_windows_defender_dism\"\r\n2024-12-14 10:23:00,548 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_windows_defender_logging\"\r\n2024-12-14 10:23:00,549 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_windows_defender_contextmenu\"\r\n2024-12-14 10:23:00,549 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"windows_defender_powershell\"\r\n2024-12-14 10:23:00,550 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_windows_file_protection\"\r\n2024-12-14 10:23:00,550 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_windowsupdate\"\r\n2024-12-14 10:23:00,551 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_winfirewall\"\r\n2024-12-14 10:23:00,551 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"adfind_domain_enumeration\"\r\n2024-12-14 10:23:00,551 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"domain_enumeration_commands\"\r\n2024-12-14 10:23:00,551 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"andromut_mutexes\"\r\n2024-12-14 10:23:00,552 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"downloader_cabby\"\r\n2024-12-14 10:23:00,552 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"phorpiex_mutexes\"\r\n2024-12-14 10:23:00,553 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"protonbot_mutexes\"\r\n2024-12-14 10:23:00,553 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"driver_filtermanager\"\r\n2024-12-14 10:23:00,553 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dropper\"\r\n2024-12-14 10:23:00,553 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dll_archive_execution\"\r\n2024-12-14 10:23:00,554 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"lnk_archive_execution\"\r\n2024-12-14 10:23:00,554 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"script_archive_execution\"\r\n2024-12-14 10:23:00,554 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"excel4_macro_urls\"\r\n2024-12-14 10:23:00,554 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"spooler_access\"\r\n2024-12-14 10:23:00,554 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"spooler_svc_start\"\r\n2024-12-14 10:23:00,555 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"mapped_drives_uac\"\r\n2024-12-14 10:23:00,555 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"hides_recycle_bin_icon\"\r\n2024-12-14 10:23:00,556 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"apocalypse_stealer_file_behavior\"\r\n2024-12-14 10:23:00,556 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"arkei_files\"\r\n2024-12-14 10:23:00,557 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"azorult_mutexes\"\r\n2024-12-14 10:23:00,559 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_bitcoin\"\r\n2024-12-14 10:23:00,561 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cryptbot_files\"\r\n2024-12-14 10:23:00,562 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"echelon_files\"\r\n2024-12-14 10:23:00,564 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_ftp\"\r\n2024-12-14 10:23:00,568 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_im\"\r\n2024-12-14 10:23:00,570 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_mail\"\r\n2024-12-14 10:23:00,572 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"masslogger_files\"\r\n2024-12-14 10:23:00,573 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"poullight_files\"\r\n2024-12-14 10:23:00,577 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"purplewave_mutexes\"\r\n2024-12-14 10:23:00,577 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"quilclipper_mutexes\"\r\n2024-12-14 10:23:00,577 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"qulab_files\"\r\n2024-12-14 10:23:00,578 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"qulab_mutexes\"\r\n2024-12-14 10:23:00,579 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"asyncrat_mutex\"\r\n2024-12-14 10:23:00,579 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ie_martian_children\"\r\n2024-12-14 10:23:00,579 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_martian_children\"\r\n2024-12-14 10:23:00,579 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"mimics_icon\"\r\n2024-12-14 10:23:00,580 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"masquerade_process_name\"\r\n2024-12-14 10:23:00,582 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"mimikatz_modules\"\r\n2024-12-14 10:23:00,582 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_certs\"\r\n2024-12-14 10:23:00,582 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dotnet_clr_usagelog_regkeys\"\r\n2024-12-14 10:23:00,583 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_hostfile\"\r\n2024-12-14 10:23:00,583 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_oem_information\"\r\n2024-12-14 10:23:00,584 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_security_center_warnings\"\r\n2024-12-14 10:23:00,585 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_uac_prompt\"\r\n2024-12-14 10:23:00,586 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_blockchain\"\r\n2024-12-14 10:23:00,586 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_opennic\"\r\n2024-12-14 10:23:00,586 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_paste_site\"\r\n2024-12-14 10:23:00,587 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_reverse_proxy\"\r\n2024-12-14 10:23:00,587 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_temp_file_storage\"\r\n2024-12-14 10:23:00,587 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_temp_urldns\"\r\n2024-12-14 10:23:00,587 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_url_shortener\"\r\n2024-12-14 10:23:00,587 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_doh_tls\"\r\n2024-12-14 10:23:00,588 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_tld\"\r\n2024-12-14 10:23:00,588 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_tor_service\"\r\n2024-12-14 10:23:00,588 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_code_page\"\r\n2024-12-14 10:23:00,589 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_addinloading\"\r\n2024-12-14 10:23:00,589 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_perfkey\"\r\n2024-12-14 10:23:00,589 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro\"\r\n2024-12-14 10:23:00,590 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"changes_trust_center_settings\"\r\n2024-12-14 10:23:00,590 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_vba_trust_access\"\r\n2024-12-14 10:23:00,591 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro_autoexecution\"\r\n2024-12-14 10:23:00,591 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro_ioc\"\r\n2024-12-14 10:23:00,591 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro_malicious_prediction\"\r\n2024-12-14 10:23:00,591 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro_suspicious\"\r\n2024-12-14 10:23:00,592 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_aslr_bypass\"\r\n2024-12-14 10:23:00,592 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_anomaly_characterset\"\r\n2024-12-14 10:23:00,592 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_anomaly_version\"\r\n2024-12-14 10:23:00,592 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_embedded_content\"\r\n2024-12-14 10:23:00,592 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_embedded_office_file\"\r\n2024-12-14 10:23:00,593 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_exploit_static\"\r\n2024-12-14 10:23:00,593 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_security\"\r\n2024-12-14 10:23:00,593 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_anomalous_feature\"\r\n2024-12-14 10:23:00,594 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_dde_command\"\r\n2024-12-14 10:23:00,594 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_armadillo_mutex\"\r\n2024-12-14 10:23:00,594 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_armadillo_regkey\"\r\n2024-12-14 10:23:00,594 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_ads\"\r\n2024-12-14 10:23:00,595 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_safeboot\"\r\n2024-12-14 10:23:00,595 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_ifeo\"\r\n2024-12-14 10:23:00,596 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_silent_process_exit\"\r\n2024-12-14 10:23:00,597 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_rdp_registry\"\r\n2024-12-14 10:23:00,597 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_rdp_shadowing\"\r\n2024-12-14 10:23:00,598 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_service\"\r\n2024-12-14 10:23:00,598 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_shim_database\"\r\n2024-12-14 10:23:00,599 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powerpool_mutexes\"\r\n2024-12-14 10:23:00,599 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_scriptblock_logging\"\r\n2024-12-14 10:23:00,599 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_command_suspicious\"\r\n2024-12-14 10:23:00,599 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_renamed\"\r\n2024-12-14 10:23:00,599 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_reversed\"\r\n2024-12-14 10:23:00,600 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_variable_obfuscation\"\r\n2024-12-14 10:23:00,600 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"prevents_safeboot\"\r\n2024-12-14 10:23:00,600 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_process_discovery\"\r\n2024-12-14 10:23:00,600 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cryptomix_mutexes\"\r\n2024-12-14 10:23:00,601 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dharma_mutexes\"\r\n2024-12-14 10:23:00,601 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_extensions\"\r\n/opt/CAPEv2/utils/../lib/cuckoo/common/abstracts.py:1039: FutureWarning: Possible nested set at position 5\r\n  exp = re.compile(pattern, re.IGNORECASE)\r\n2024-12-14 10:23:00,609 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_files\"\r\n2024-12-14 10:23:00,621 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"fonix_mutexes\"\r\n2024-12-14 10:23:00,622 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"gandcrab_mutexes\"\r\n2024-12-14 10:23:00,622 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"germanwiper_mutexes\"\r\n2024-12-14 10:23:00,622 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"medusalocker_mutexes\"\r\n2024-12-14 10:23:00,623 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"medusalocker_regkeys\"\r\n2024-12-14 10:23:00,624 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"nemty_mutexes\"\r\n2024-12-14 10:23:00,624 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"nemty_regkeys\"\r\n2024-12-14 10:23:00,625 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"pysa_mutexes\"\r\n2024-12-14 10:23:00,625 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_radamant\"\r\n2024-12-14 10:23:00,626 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_recyclebin\"\r\n2024-12-14 10:23:00,626 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"revil_mutexes\"\r\n2024-12-14 10:23:00,629 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_revil_regkey\"\r\n2024-12-14 10:23:00,629 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"satan_mutexes\"\r\n2024-12-14 10:23:00,630 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"snake_ransom_mutexes\"\r\n2024-12-14 10:23:00,631 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"stop_ransom_mutexes\"\r\n2024-12-14 10:23:00,632 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"stop_ransomware_cmd\"\r\n2024-12-14 10:23:00,632 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_beebus_mutexes\"\r\n2024-12-14 10:23:00,633 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"blacknet_mutexes\"\r\n2024-12-14 10:23:00,633 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"blackrat_mutexes\"\r\n2024-12-14 10:23:00,634 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"crat_mutexes\"\r\n2024-12-14 10:23:00,635 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dcrat_files\"\r\n2024-12-14 10:23:00,636 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dcrat_mutexes\"\r\n2024-12-14 10:23:00,636 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_fynloski_mutexes\"\r\n2024-12-14 10:23:00,636 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"karagany_files\"\r\n2024-12-14 10:23:00,637 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"limerat_mutexes\"\r\n2024-12-14 10:23:00,637 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"limerat_regkeys\"\r\n2024-12-14 10:23:00,638 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"lodarat_file_behavior\"\r\n2024-12-14 10:23:00,639 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modirat_behavior\"\r\n2024-12-14 10:23:00,642 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"njrat_regkeys\"\r\n2024-12-14 10:23:00,643 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"obliquerat_files\"\r\n2024-12-14 10:23:00,644 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"obliquerat_mutexes\"\r\n2024-12-14 10:23:00,644 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"parallax_mutexes\"\r\n2024-12-14 10:23:00,645 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_pcclient\"\r\n2024-12-14 10:23:00,646 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_plugx_mutexes\"\r\n2024-12-14 10:23:00,646 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_poisonivy_mutexes\"\r\n2024-12-14 10:23:00,647 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_quasar_mutexes\"\r\n2024-12-14 10:23:00,647 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ratsnif_mutexes\"\r\n2024-12-14 10:23:00,647 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_senna_mutexes\"\r\n2024-12-14 10:23:00,648 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_spynet\"\r\n2024-12-14 10:23:00,649 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"venomrat_mutexes\"\r\n2024-12-14 10:23:00,649 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"warzonerat_files\"\r\n2024-12-14 10:23:00,649 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"warzonerat_regkeys\"\r\n2024-12-14 10:23:00,650 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"xpertrat_files\"\r\n2024-12-14 10:23:00,651 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"xpertrat_mutexes\"\r\n2024-12-14 10:23:00,651 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_xtreme_mutexes\"\r\n2024-12-14 10:23:00,652 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"recon_fingerprint\"\r\n2024-12-14 10:23:00,652 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"remcos_files\"\r\n2024-12-14 10:23:00,653 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"remcos_mutexes\"\r\n2024-12-14 10:23:00,654 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"remcos_regkeys\"\r\n2024-12-14 10:23:00,655 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rdptcp_key\"\r\n2024-12-14 10:23:00,655 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_rdp_clip\"\r\n2024-12-14 10:23:00,655 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_remote_desktop_session\"\r\n2024-12-14 10:23:00,656 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_networking_icon\"\r\n2024-12-14 10:23:00,656 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_pinned_programs\"\r\n2024-12-14 10:23:00,656 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_security_maintenance_icon\"\r\n2024-12-14 10:23:00,657 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_startmenu_defaults\"\r\n2024-12-14 10:23:00,657 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_username_startmenu\"\r\n2024-12-14 10:23:00,658 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"spicyhotpot_behavior\"\r\n2024-12-14 10:23:00,659 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"sniffer_winpcap\"\r\n2024-12-14 10:23:00,659 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"spreading_autoruninf\"\r\n2024-12-14 10:23:00,659 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_hidden_extension\"\r\n2024-12-14 10:23:00,660 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_hiddenreg\"\r\n2024-12-14 10:23:00,661 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_hide_notifications\"\r\n2024-12-14 10:23:00,662 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_webhistory\"\r\n2024-12-14 10:23:00,662 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"sysinternals_psexec\"\r\n2024-12-14 10:23:00,663 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"sysinternals_tools\"\r\n2024-12-14 10:23:00,663 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"tampers_etw\"\r\n2024-12-14 10:23:00,664 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"lsa_tampering\"\r\n2024-12-14 10:23:00,664 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"tampers_powershell_logging\"\r\n2024-12-14 10:23:00,665 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"targeted_flame\"\r\n2024-12-14 10:23:00,665 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"territorial_disputes_sigs\"\r\n2024-12-14 10:23:00,669 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"trickbot_mutex\"\r\n2024-12-14 10:23:00,669 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"fleercivet_mutex\"\r\n2024-12-14 10:23:00,669 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"lokibot_mutexes\"\r\n2024-12-14 10:23:00,670 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ursnif_behavior\"\r\n2024-12-14 10:23:00,676 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"upatre_files\"\r\n2024-12-14 10:23:00,677 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"upatre_files\"\r\n2024-12-14 10:23:00,677 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_adfind\"\r\n2024-12-14 10:23:00,677 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_ms_protocol\"\r\n2024-12-14 10:23:00,677 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"neshta_mutexes\"\r\n2024-12-14 10:23:00,678 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"renamer_mutexes\"\r\n2024-12-14 10:23:00,678 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"owa_web_shell_files\"\r\n2024-12-14 10:23:00,679 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"web_shell_files\"\r\n2024-12-14 10:23:00,679 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"web_shell_processes\"\r\n2024-12-14 10:23:00,680 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dotnet_csc_build\"\r\n2024-12-14 10:23:00,680 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"multiple_explorer_instances\"\r\n2024-12-14 10:23:00,680 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"script_tool_executed\"\r\n2024-12-14 10:23:00,680 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_certutil_use\"\r\n2024-12-14 10:23:00,681 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_command_tools\"\r\n2024-12-14 10:23:00,681 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_mpcmdrun_use\"\r\n2024-12-14 10:23:00,681 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_ping_use\"\r\n2024-12-14 10:23:00,681 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_powershell_copyitem\"\r\n2024-12-14 10:23:00,682 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities\"\r\n2024-12-14 10:23:00,682 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_appcmd\"\r\n2024-12-14 10:23:00,682 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_csvde_ldifde\"\r\n2024-12-14 10:23:00,683 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_cipher\"\r\n2024-12-14 10:23:00,683 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_clickonce\"\r\n2024-12-14 10:23:00,683 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_curl\"\r\n2024-12-14 10:23:00,683 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_dsquery\"\r\n2024-12-14 10:23:00,684 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_esentutl\"\r\n2024-12-14 10:23:00,684 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_finger\"\r\n2024-12-14 10:23:00,684 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_mode\"\r\n2024-12-14 10:23:00,684 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_ntdsutil\"\r\n2024-12-14 10:23:00,685 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_nltest\"\r\n2024-12-14 10:23:00,685 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_xcopy\"\r\n2024-12-14 10:23:00,685 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"wmic_command_suspicious\"\r\n2024-12-14 10:23:00,685 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"scrcons_wmi_script_consumer\"\r\n2024-12-14 10:23:00,686 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Running signature \"allaple_mutexes\"\r\n2024-12-14 10:23:00,686 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"exec_crash\"\r\n2024-12-14 10:23:00,689 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"BinGraph\"\r\n2024-12-14 10:23:00,690 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"CAPASummary\"\r\n2024-12-14 10:23:00,691 [Task 23] [lib.cuckoo.common.integrations.capa] ERROR: CAPA ValidationError 1 validation error for CapeReport\r\nbehavior.processes.0.file_activities\r\n  Extra inputs are not permitted [type=extra_forbidden, input_value={'read_files': [], 'write... [], 'delete_files': []}, input_type=dict]\r\n    For further information visit https://errors.pydantic.dev/2.4/v/extra_forbidden\r\n2024-12-14 10:23:00,692 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"PCAP2CERT\"\r\n2024-12-14 10:23:00,696 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"JsonDump\"\r\n2024-12-14 10:23:00,698 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"MongoDB\"\r\n2024-12-14 10:23:00,720 [Task 23] [modules.reporting.mongodb] DEBUG: Deleted previous MongoDB data for Task 23\r\n2024-12-14 10:23:00,813 [Task 23] [root] DEBUG: Finished processing task\r\n```\r\ni verified that Lumma.py works correctly and it is able to extract config for the sample \nComment: Does it has lumma Yara detection? I don't see any error there\r\n\r\nEl s\u00e1b, 14 dic 2024, 10:32, marsomx ***@***.***> escribi\u00f3:\r\n\r\n> np, strange, no you don't need to do nothing else, you just need to have\r\n> installed cape-parsers which is part of pyproject.toml. did you restart\r\n> processing? if yes, can you do next as cape user:\r\n>\r\n>    - cd /opt/CAPEv2/utils && poetry run python process.py -r <task_id> -d\r\n>    so that should give us an clue\r\n>\r\n> i submitted a lumma payoad (dumped from previous analysis) and this is the\r\n> result of mentioned command\r\n>\r\n> 2024-12-14 10:22:51,548 [root] DEBUG: Importing modules...\r\n> 2024-12-14 10:22:51,550 [modules.auxiliary.QemuScreenshots] DEBUG: Importing 'PIL.ImageChops.difference'\r\n> 2024-12-14 10:22:51,550 [modules.auxiliary.QemuScreenshots] DEBUG: Importing 'PIL.ImageDraw'\r\n> 2024-12-14 10:22:51,551 [modules.auxiliary.QemuScreenshots] DEBUG: Importing 'PIL.Image'\r\n> 2024-12-14 10:22:51,551 [modules.auxiliary.QemuScreenshots] ERROR: No module named 'libvirt'\r\n> OPTIONAL! Missed dependency: poetry run pip install peepdf-3\r\n> pip3 install certvalidator asn1crypto mscerts\r\n> OPTIONAL! Missed dependency: poetry run pip install -U git+https://github.com/DissectMalware/batch_deobfuscator\r\n> OPTIONAL! Missed dependency: poetry run pip install -U git+https://github.com/CAPESandbox/httpreplay\r\n> 2024-12-14 <https://github.com/CAPESandbox/httpreplay2024-12-14> 10:22:52,202 [capa.rules] DEBUG: reading rules from directory /opt/CAPEv2/data/capa-rules\r\n> 2024-12-14 10:22:52,228 [capa.rules.cache] DEBUG: loading rule set from cache: /home/cape/.cache/capa/capa-8c6bac93.cache\r\n> 2024-12-14 10:22:52,333 [capa.loader] DEBUG: reading signatures from directory /opt/CAPEv2/data/flare-signatures\r\n> 2024-12-14 10:22:52,333 [capa.loader] DEBUG: found signature file: /opt/CAPEv2/data/flare-signatures/1_flare_msvc_rtf_32_64.sig\r\n> 2024-12-14 10:22:52,333 [capa.loader] DEBUG: found signature file: /opt/CAPEv2/data/flare-signatures/2_flare_msvc_atlmfc_32_64.sig\r\n> 2024-12-14 10:22:52,333 [capa.loader] DEBUG: found signature file: /opt/CAPEv2/data/flare-signatures/3_flare_common_libs.sig\r\n> 2024-12-14 10:22:52,335 [root] DEBUG: Imported \"auxiliary\" modules:\r\n> 2024-12-14 10:22:52,336 [root] DEBUG: \t |-- AzSniffer\r\n> 2024-12-14 10:22:52,336 [root] DEBUG: \t |-- Mitmdump\r\n> 2024-12-14 10:22:52,336 [root] DEBUG: \t |-- QEMUScreenshots\r\n> 2024-12-14 10:22:52,336 [root] DEBUG: \t `-- Sniffer\r\n> 2024-12-14 10:22:52,336 [root] DEBUG: Imported \"processing\" modules:\r\n> 2024-12-14 10:22:52,336 [root] DEBUG: \t |-- CAPE\r\n> 2024-12-14 10:22:52,336 [root] DEBUG: \t |-- AnalysisInfo\r\n> 2024-12-14 10:22:52,336 [root] DEBUG: \t |-- Autoruns\r\n> 2024-12-14 10:22:52,336 [root] DEBUG: \t |-- BehaviorAnalysis\r\n> 2024-12-14 10:22:52,336 [root] DEBUG: \t |-- Debug\r\n> 2024-12-14 10:22:52,336 [root] DEBUG: \t |-- NetworkAnalysis\r\n> 2024-12-14 10:22:52,336 [root] DEBUG: \t |-- ProcessMemory\r\n> 2024-12-14 10:22:52,336 [root] DEBUG: \t |-- script_log_processing\r\n> 2024-12-14 10:22:52,336 [root] DEBUG: \t |-- Suricata\r\n> 2024-12-14 10:22:52,336 [root] DEBUG: \t `-- UrlAnalysis\r\n> 2024-12-14 10:22:52,336 [root] DEBUG: Imported \"signatures\" modules:\r\n> 2024-12-14 10:22:52,336 [root] DEBUG: \t |-- ClamAV\r\n> 2024-12-14 10:22:52,336 [root] DEBUG: \t |-- KnownVirustotal\r\n> 2024-12-14 10:22:52,336 [root] DEBUG: \t |-- BadCerts\r\n> 2024-12-14 10:22:52,336 [root] DEBUG: \t |-- BadSSLCerts\r\n> 2024-12-14 10:22:52,336 [root] DEBUG: \t |-- ZeusP2P\r\n> 2024-12-14 10:22:52,336 [root] DEBUG: \t |-- ZeusURL\r\n> 2024-12-14 10:22:52,336 [root] DEBUG: \t |-- AthenaHttp\r\n> 2024-12-14 10:22:52,336 [root] DEBUG: \t |-- DirtJumper\r\n> 2024-12-14 10:22:52,337 [root] DEBUG: \t |-- Drive\r\n> 2024-12-14 10:22:52,337 [root] DEBUG: \t |-- Drive2\r\n> 2024-12-14 10:22:52,337 [root] DEBUG: \t |-- Madness\r\n> 2024-12-14 10:22:52,337 [root] DEBUG: \t |-- FamilyProxyBack\r\n> 2024-12-14 10:22:52,337 [root] DEBUG: \t |-- FlareCAPAAntiAnalysis\r\n> 2024-12-14 10:22:52,337 [root] DEBUG: \t |-- FlareCAPACollection\r\n> 2024-12-14 10:22:52,337 [root] DEBUG: \t |-- FlareCAPACompiler\r\n> 2024-12-14 10:22:52,337 [root] DEBUG: \t |-- FlareCAPADataManipulation\r\n> 2024-12-14 10:22:52,337 [root] DEBUG: \t |-- FlareCAPAExecutable\r\n> 2024-12-14 10:22:52,337 [root] DEBUG: \t |-- FlareCAPAHostInteration\r\n> 2024-12-14 10:22:52,337 [root] DEBUG: \t |-- FlareCAPAcommunication\r\n> 2024-12-14 10:22:52,337 [root] DEBUG: \t |-- FlareCAPALib\r\n> 2024-12-14 10:22:52,337 [root] DEBUG: \t |-- FlareCAPALinking\r\n> 2024-12-14 10:22:52,337 [root] DEBUG: \t |-- FlareCAPALoadCode\r\n> 2024-12-14 10:22:52,337 [root] DEBUG: \t |-- FlareCAPAMalwareFamily\r\n> 2024-12-14 10:22:52,337 [root] DEBUG: \t |-- FlareCAPANursery\r\n> 2024-12-14 10:22:52,337 [root] DEBUG: \t |-- FlareCAPAPersistence\r\n> 2024-12-14 10:22:52,337 [root] DEBUG: \t |-- FlareCAPARuntime\r\n> 2024-12-14 10:22:52,337 [root] DEBUG: \t |-- FlareCAPATargeting\r\n> 2024-12-14 10:22:52,337 [root] DEBUG: \t |-- Log4j\r\n> 2024-12-14 10:22:52,337 [root] DEBUG: \t |-- MimicsExtension\r\n> 2024-12-14 10:22:52,337 [root] DEBUG: \t |-- NetworkCountryDistribution\r\n> 2024-12-14 10:22:52,337 [root] DEBUG: \t |-- NetworkMultipleDirectIPConnections\r\n> 2024-12-14 10:22:52,337 [root] DEBUG: \t |-- NetworkCnCHTTP\r\n> 2024-12-14 10:22:52,338 [root] DEBUG: \t |-- NetworkHTTPPOST\r\n> 2024-12-14 10:22:52,338 [root] DEBUG: \t |-- NetworkIPEXE\r\n> 2024-12-14 10:22:52,338 [root] DEBUG: \t |-- NetworkDGA\r\n> 2024-12-14 10:22:52,338 [root] DEBUG: \t |-- NetworkDGAFraunhofer\r\n> 2024-12-14 10:22:52,338 [root] DEBUG: \t |-- NetworkDynDNS\r\n> 2024-12-14 10:22:52,338 [root] DEBUG: \t |-- NetworkExcessiveUDP\r\n> 2024-12-14 10:22:52,338 [root] DEBUG: \t |-- NetworkHTTP\r\n> 2024-12-14 10:22:52,338 [root] DEBUG: \t |-- NetworkICMP\r\n> 2024-12-14 10:22:52,338 [root] DEBUG: \t |-- NetworkIRC\r\n> 2024-12-14 10:22:52,338 [root] DEBUG: \t |-- NetworkOpenProxy\r\n> 2024-12-14 10:22:52,338 [root] DEBUG: \t |-- NetworkP2P\r\n> 2024-12-14 10:22:52,338 [root] DEBUG: \t |-- NetworkQuestionableHost\r\n> 2024-12-14 10:22:52,338 [root] DEBUG: \t |-- NetworkQuestionableHttpPath\r\n> 2024-12-14 10:22:52,338 [root] DEBUG: \t |-- NetworkQuestionableHttpsPath\r\n> 2024-12-14 10:22:52,338 [root] DEBUG: \t |-- NetworkSMTP\r\n> 2024-12-14 10:22:52,338 [root] DEBUG: \t |-- TorGateway\r\n> 2024-12-14 10:22:52,338 [root] DEBUG: \t |-- BuildLangID\r\n> 2024-12-14 10:22:52,338 [root] DEBUG: \t |-- ResourceLangID\r\n> 2024-12-14 10:22:52,338 [root] DEBUG: \t |-- overlay\r\n> 2024-12-14 10:22:52,338 [root] DEBUG: \t |-- PackerUnknownPESectionName\r\n> 2024-12-14 10:22:52,338 [root] DEBUG: \t |-- ASPackPacked\r\n> 2024-12-14 10:22:52,338 [root] DEBUG: \t |-- AspireCryptPacked\r\n> 2024-12-14 10:22:52,338 [root] DEBUG: \t |-- BedsProtectorPacked\r\n> 2024-12-14 10:22:52,338 [root] DEBUG: \t |-- ConfuserPacked\r\n> 2024-12-14 10:22:52,338 [root] DEBUG: \t |-- EnigmaPacked\r\n> 2024-12-14 10:22:52,339 [root] DEBUG: \t |-- PackerEntropy\r\n> 2024-12-14 10:22:52,339 [root] DEBUG: \t |-- MPressPacked\r\n> 2024-12-14 10:22:52,339 [root] DEBUG: \t |-- NatePacked\r\n> 2024-12-14 10:22:52,339 [root] DEBUG: \t |-- NsPacked\r\n> 2024-12-14 10:22:52,339 [root] DEBUG: \t |-- SmartAssemblyPacked\r\n> 2024-12-14 10:22:52,339 [root] DEBUG: \t |-- SpicesPacked\r\n> 2024-12-14 10:22:52,339 [root] DEBUG: \t |-- ThemidaPacked\r\n> 2024-12-14 10:22:52,339 [root] DEBUG: \t |-- ThemidaPackedSection\r\n> 2024-12-14 10:22:52,339 [root] DEBUG: \t |-- TitanPacked\r\n> 2024-12-14 10:22:52,339 [root] DEBUG: \t |-- UPXCompressed\r\n> 2024-12-14 10:22:52,339 [root] DEBUG: \t |-- VMPPacked\r\n> 2024-12-14 10:22:52,339 [root] DEBUG: \t |-- YodaPacked\r\n> 2024-12-14 10:22:52,339 [root] DEBUG: \t |-- PDF_Annot_URLs\r\n> 2024-12-14 10:22:52,339 [root] DEBUG: \t |-- Polymorphic\r\n> 2024-12-14 10:22:52,339 [root] DEBUG: \t |-- PunchPlusPlusPCREs\r\n> 2024-12-14 10:22:52,339 [root] DEBUG: \t |-- Procmem_Yara\r\n> 2024-12-14 10:22:52,339 [root] DEBUG: \t |-- CheckIP\r\n> 2024-12-14 10:22:52,339 [root] DEBUG: \t |-- Authenticode\r\n> 2024-12-14 10:22:52,339 [root] DEBUG: \t |-- InvalidAuthenticodeSignature\r\n> 2024-12-14 10:22:52,339 [root] DEBUG: \t |-- DotNetAnomaly\r\n> 2024-12-14 10:22:52,339 [root] DEBUG: \t |-- Static_Java\r\n> 2024-12-14 10:22:52,339 [root] DEBUG: \t |-- Static_PDF\r\n> 2024-12-14 10:22:52,339 [root] DEBUG: \t |-- PEAnomaly\r\n> 2024-12-14 10:22:52,339 [root] DEBUG: \t |-- PECompileTimeStomping\r\n> 2024-12-14 10:22:52,339 [root] DEBUG: \t |-- StaticPEPDBPath\r\n> 2024-12-14 10:22:52,339 [root] DEBUG: \t |-- RATConfig\r\n> 2024-12-14 10:22:52,340 [root] DEBUG: \t |-- VersionInfoAnomaly\r\n> 2024-12-14 10:22:52,340 [root] DEBUG: \t |-- StealthNetwork\r\n> 2024-12-14 10:22:52,340 [root] DEBUG: \t |-- SuricataAlert\r\n> 2024-12-14 10:22:52,340 [root] DEBUG: \t |-- VolDevicetree1\r\n> 2024-12-14 10:22:52,340 [root] DEBUG: \t |-- VolHandles1\r\n> 2024-12-14 10:22:52,340 [root] DEBUG: \t |-- VolLdrModules1\r\n> 2024-12-14 10:22:52,340 [root] DEBUG: \t |-- VolLdrModules2\r\n> 2024-12-14 10:22:52,340 [root] DEBUG: \t |-- VolMalfind1\r\n> 2024-12-14 10:22:52,340 [root] DEBUG: \t |-- VolMalfind2\r\n> 2024-12-14 10:22:52,340 [root] DEBUG: \t |-- VolModscan1\r\n> 2024-12-14 10:22:52,340 [root] DEBUG: \t |-- VolSvcscan1\r\n> 2024-12-14 10:22:52,340 [root] DEBUG: \t |-- VolSvcscan2\r\n> 2024-12-14 10:22:52,340 [root] DEBUG: \t |-- VolSvcscan3\r\n> 2024-12-14 10:22:52,340 [root] DEBUG: \t |-- WHOIS_Create\r\n> 2024-12-14 10:22:52,340 [root] DEBUG: \t |-- AccessesMailslot\r\n> 2024-12-14 10:22:52,340 [root] DEBUG: \t |-- AccessesNetlogonRegkey\r\n> 2024-12-14 10:22:52,340 [root] DEBUG: \t |-- AccessesPublicFolder\r\n> 2024-12-14 10:22:52,340 [root] DEBUG: \t |-- AccessesSysvol\r\n> 2024-12-14 10:22:52,340 [root] DEBUG: \t |-- WritesSysvol\r\n> 2024-12-14 10:22:52,340 [root] DEBUG: \t |-- AddsAdminUser\r\n> 2024-12-14 10:22:52,340 [root] DEBUG: \t |-- AddsUser\r\n> 2024-12-14 10:22:52,340 [root] DEBUG: \t |-- OverwritesAdminPassword\r\n> 2024-12-14 10:22:52,340 [root] DEBUG: \t |-- anomalous_deletefile\r\n> 2024-12-14 10:22:52,340 [root] DEBUG: \t |-- AntiAnalysisDetectFile\r\n> 2024-12-14 10:22:52,340 [root] DEBUG: \t |-- AntiAnalysisDetectReg\r\n> 2024-12-14 10:22:52,341 [root] DEBUG: \t |-- QihooDetectLibs\r\n> 2024-12-14 10:22:52,341 [root] DEBUG: \t |-- AhnlabDetectLibs\r\n> 2024-12-14 10:22:52,341 [root] DEBUG: \t |-- AvastDetectLibs\r\n> 2024-12-14 10:22:52,341 [root] DEBUG: \t |-- BitdefenderDetectLibs\r\n> 2024-12-14 10:22:52,341 [root] DEBUG: \t |-- BullguardDetectLibs\r\n> 2024-12-14 10:22:52,341 [root] DEBUG: \t |-- ModifiesAttachmentManager\r\n> 2024-12-14 10:22:52,341 [root] DEBUG: \t |-- AntiAVDetectFile\r\n> 2024-12-14 10:22:52,341 [root] DEBUG: \t |-- AntiAVDetectReg\r\n> 2024-12-14 10:22:52,341 [root] DEBUG: \t |-- EmsisoftDetectLibs\r\n> 2024-12-14 10:22:52,341 [root] DEBUG: \t |-- QurbDetectLibs\r\n> 2024-12-14 10:22:52,341 [root] DEBUG: \t |-- AntiAVServiceStop\r\n> 2024-12-14 10:22:52,341 [root] DEBUG: \t |-- AntiAVSRP\r\n> 2024-12-14 10:22:52,341 [root] DEBUG: \t |-- AntiAVWhitespace\r\n> 2024-12-14 10:22:52,341 [root] DEBUG: \t |-- antidebug_addvectoredexceptionhandler\r\n> 2024-12-14 10:22:52,341 [root] DEBUG: \t |-- APIOverrideDetectLibs\r\n> 2024-12-14 10:22:52,341 [root] DEBUG: \t |-- antidebug_checkremotedebuggerpresent\r\n> 2024-12-14 10:22:52,341 [root] DEBUG: \t |-- antidebug_debugactiveprocess\r\n> 2024-12-14 10:22:52,341 [root] DEBUG: \t |-- AntiDBGDevices\r\n> 2024-12-14 10:22:52,341 [root] DEBUG: \t |-- antidebug_gettickcount\r\n> 2024-12-14 10:22:52,341 [root] DEBUG: \t |-- antidebug_guardpages\r\n> 2024-12-14 10:22:52,341 [root] DEBUG: \t |-- antidebug_ntcreatethreadex\r\n> 2024-12-14 10:22:52,341 [root] DEBUG: \t |-- BullguardDetectLibs\r\n> 2024-12-14 10:22:52,341 [root] DEBUG: \t |-- antidebug_ntsetinformationthread\r\n> 2024-12-14 10:22:52,341 [root] DEBUG: \t |-- antidebug_outputdebugstring\r\n> 2024-12-14 10:22:52,341 [root] DEBUG: \t |-- antidebug_setunhandledexceptionfilter\r\n> 2024-12-14 10:22:52,341 [root] DEBUG: \t |-- AntiDBGWindows\r\n> 2024-12-14 10:22:52,342 [root] DEBUG: \t |-- AntiEmuWinDefend\r\n> 2024-12-14 10:22:52,342 [root] DEBUG: \t |-- WineDetectReg\r\n> 2024-12-14 10:22:52,342 [root] DEBUG: \t |-- WineDetectFunc\r\n> 2024-12-14 10:22:52,342 [root] DEBUG: \t |-- AntiSandboxCheckUserdomain\r\n> 2024-12-14 10:22:52,342 [root] DEBUG: \t |-- AntiCuckoo\r\n> 2024-12-14 10:22:52,342 [root] DEBUG: \t |-- CuckooDetectFiles\r\n> 2024-12-14 10:22:52,342 [root] DEBUG: \t |-- CuckooCrash\r\n> 2024-12-14 10:22:52,342 [root] DEBUG: \t |-- AntiSandboxForegroundWindow\r\n> 2024-12-14 10:22:52,342 [root] DEBUG: \t |-- FortinetDetectFiles\r\n> 2024-12-14 10:22:52,342 [root] DEBUG: \t |-- SandboxJoeAnubisDetectFiles\r\n> 2024-12-14 10:22:52,342 [root] DEBUG: \t |-- HookMouse\r\n> 2024-12-14 10:22:52,342 [root] DEBUG: \t |-- AntiSandboxRestart\r\n> 2024-12-14 10:22:52,342 [root] DEBUG: \t |-- SandboxieDetectLibs\r\n> 2024-12-14 10:22:52,342 [root] DEBUG: \t |-- AntisandboxSboxieMutex\r\n> 2024-12-14 10:22:52,342 [root] DEBUG: \t |-- AntiSandboxSboxieObjects\r\n> 2024-12-14 10:22:52,342 [root] DEBUG: \t |-- AntiSandboxScriptTimer\r\n> 2024-12-14 10:22:52,342 [root] DEBUG: \t |-- AntiSandboxSleep\r\n> 2024-12-14 10:22:52,342 [root] DEBUG: \t |-- SunbeltDetectFiles\r\n> 2024-12-14 10:22:52,342 [root] DEBUG: \t |-- SunbeltDetectLibs\r\n> 2024-12-14 10:22:52,342 [root] DEBUG: \t |-- AntiSandboxSuspend\r\n> 2024-12-14 10:22:52,342 [root] DEBUG: \t |-- ThreatTrackDetectFiles\r\n> 2024-12-14 10:22:52,342 [root] DEBUG: \t |-- Unhook\r\n> 2024-12-14 10:22:52,342 [root] DEBUG: \t |-- BochsDetectKeys\r\n> 2024-12-14 10:22:52,342 [root] DEBUG: \t |-- AntiVMDirectoryObjects\r\n> 2024-12-14 10:22:52,342 [root] DEBUG: \t |-- AntiVMBios\r\n> 2024-12-14 10:22:52,342 [root] DEBUG: \t |-- AntiVMCPU\r\n> 2024-12-14 10:22:52,343 [root] DEBUG: \t |-- DiskInformation\r\n> 2024-12-14 10:22:52,343 [root] DEBUG: \t |-- SetupAPIDiskInformation\r\n> 2024-12-14 10:22:52,343 [root] DEBUG: \t |-- AntiVMDiskReg\r\n> 2024-12-14 10:22:52,343 [root] DEBUG: \t |-- AntiVMSCSI\r\n> 2024-12-14 10:22:52,343 [root] DEBUG: \t |-- AntiVMServices\r\n> 2024-12-14 10:22:52,343 [root] DEBUG: \t |-- AntiVMSystem\r\n> 2024-12-14 10:22:52,343 [root] DEBUG: \t |-- HyperVDetectKeys\r\n> 2024-12-14 10:22:52,343 [root] DEBUG: \t |-- AntiVMChecksAvailableMemory\r\n> 2024-12-14 10:22:52,343 [root] DEBUG: \t |-- NetworkAdapters\r\n> 2024-12-14 10:22:52,343 [root] DEBUG: \t |-- ParallelsDetectKeys\r\n> 2024-12-14 10:22:52,343 [root] DEBUG: \t |-- VBoxDetectDevices\r\n> 2024-12-14 10:22:52,343 [root] DEBUG: \t |-- VBoxDetectFiles\r\n> 2024-12-14 10:22:52,343 [root] DEBUG: \t |-- VBoxDetectKeys\r\n> 2024-12-14 10:22:52,343 [root] DEBUG: \t |-- VBoxDetectLibs\r\n> 2024-12-14 10:22:52,343 [root] DEBUG: \t |-- VBoxDetectProvname\r\n> 2024-12-14 10:22:52,343 [root] DEBUG: \t |-- VBoxDetectWindow\r\n> 2024-12-14 10:22:52,343 [root] DEBUG: \t |-- VMwareDetectDevices\r\n> 2024-12-14 10:22:52,343 [root] DEBUG: \t |-- VMwareDetectEvent\r\n> 2024-12-14 10:22:52,343 [root] DEBUG: \t |-- VMwareDetectFiles\r\n> 2024-12-14 10:22:52,343 [root] DEBUG: \t |-- VMwareDetectKeys\r\n> 2024-12-14 10:22:52,343 [root] DEBUG: \t |-- VMwareDetectLibs\r\n> 2024-12-14 10:22:52,343 [root] DEBUG: \t |-- VMwareDetectMutexes\r\n> 2024-12-14 10:22:52,343 [root] DEBUG: \t |-- VPCDetectFiles\r\n> 2024-12-14 10:22:52,343 [root] DEBUG: \t |-- VPCDetectKeys\r\n> 2024-12-14 10:22:52,344 [root] DEBUG: \t |-- VPCDetectMutex\r\n> 2024-12-14 10:22:52,344 [root] DEBUG: \t |-- XenDetectKeys\r\n> 2024-12-14 10:22:52,344 [root] DEBUG: \t |-- APISpamming\r\n> 2024-12-14 10:22:52,344 [root] DEBUG: \t |-- api_uuidfromstringa\r\n> 2024-12-14 10:22:52,344 [root] DEBUG: \t |-- AsyncRatMutex\r\n> 2024-12-14 10:22:52,344 [root] DEBUG: \t |-- GulpixBehavior\r\n> 2024-12-14 10:22:52,344 [root] DEBUG: \t |-- KetricanRegkeys\r\n> 2024-12-14 10:22:52,344 [root] DEBUG: \t |-- OkrumMutexes\r\n> 2024-12-14 10:22:52,344 [root] DEBUG: \t |-- Cridex\r\n> 2024-12-14 10:22:52,344 [root] DEBUG: \t |-- Geodo\r\n> 2024-12-14 10:22:52,345 [root] DEBUG: \t |-- Prinimalka\r\n> 2024-12-14 10:22:52,345 [root] DEBUG: \t |-- SpyEyeMutexes\r\n> 2024-12-14 10:22:52,345 [root] DEBUG: \t |-- ZeusMutexes\r\n> 2024-12-14 10:22:52,345 [root] DEBUG: \t |-- BCDEditCommand\r\n> 2024-12-14 10:22:52,345 [root] DEBUG: \t |-- BitcoinOpenCL\r\n> 2024-12-14 10:22:52,345 [root] DEBUG: \t |-- AccessesPrimaryPartition\r\n> 2024-12-14 10:22:52,345 [root] DEBUG: \t |-- Bootkit\r\n> 2024-12-14 10:22:52,345 [root] DEBUG: \t |-- DirectHDDAccess\r\n> 2024-12-14 10:22:52,345 [root] DEBUG: \t |-- EnumeratesPhysicalDrives\r\n> 2024-12-14 10:22:52,345 [root] DEBUG: \t |-- PhysicalDriveAccess\r\n> 2024-12-14 10:22:52,345 [root] DEBUG: \t |-- PotentialOverWriteMBR\r\n> 2024-12-14 10:22:52,345 [root] DEBUG: \t |-- SuspiciousIoctlSCSIPassthough\r\n> 2024-12-14 10:22:52,345 [root] DEBUG: \t |-- Ruskill\r\n> 2024-12-14 10:22:52,345 [root] DEBUG: \t |-- BrowserAddon\r\n> 2024-12-14 10:22:52,345 [root] DEBUG: \t |-- ChromiumBrowserExtensionDirectory\r\n> 2024-12-14 10:22:52,345 [root] DEBUG: \t |-- BrowserHelperObject\r\n> 2024-12-14 10:22:52,346 [root] DEBUG: \t |-- BrowserNeeded\r\n> 2024-12-14 10:22:52,346 [root] DEBUG: \t |-- ModifyProxy\r\n> 2024-12-14 10:22:52,346 [root] DEBUG: \t |-- BrowserScanbox\r\n> 2024-12-14 10:22:52,346 [root] DEBUG: \t |-- BrowserSecurity\r\n> 2024-12-14 10:22:52,346 [root] DEBUG: \t |-- browser_startpage\r\n> 2024-12-14 10:22:52,346 [root] DEBUG: \t |-- FirefoxDisablesProcessPerTab\r\n> 2024-12-14 10:22:52,346 [root] DEBUG: \t |-- IEDisablesProcessPerTab\r\n> 2024-12-14 10:22:52,346 [root] DEBUG: \t |-- OdbcconfBypass\r\n> 2024-12-14 10:22:52,346 [root] DEBUG: \t |-- RegSrv32SquiblydooDLLLoad\r\n> 2024-12-14 10:22:52,346 [root] DEBUG: \t |-- SquiblydooBypass\r\n> 2024-12-14 10:22:52,346 [root] DEBUG: \t |-- SquiblytwoBypass\r\n> 2024-12-14 10:22:52,347 [root] DEBUG: \t |-- BypassFirewall\r\n> 2024-12-14 10:22:52,347 [root] DEBUG: \t |-- UACBypassCMSTP\r\n> 2024-12-14 10:22:52,347 [root] DEBUG: \t |-- UACBypassCMSTPCOM\r\n> 2024-12-14 10:22:52,347 [root] DEBUG: \t |-- UACBypassDelegateExecuteSdclt\r\n> 2024-12-14 10:22:52,347 [root] DEBUG: \t |-- UACBypassEventvwr\r\n> 2024-12-14 10:22:52,347 [root] DEBUG: \t |-- UACBypassFodhelper\r\n> 2024-12-14 10:22:52,347 [root] DEBUG: \t |-- CAPEExtractedContent\r\n> 2024-12-14 10:22:52,347 [root] DEBUG: \t |-- CarberpMutexes\r\n> 2024-12-14 10:22:52,347 [root] DEBUG: \t |-- ClearsLogs\r\n> 2024-12-14 10:22:52,347 [root] DEBUG: \t |-- ClickfraudCookies\r\n> 2024-12-14 10:22:52,347 [root] DEBUG: \t |-- ClickfraudVolume\r\n> 2024-12-14 10:22:52,347 [root] DEBUG: \t |-- CmdlineObfuscation\r\n> 2024-12-14 10:22:52,347 [root] DEBUG: \t |-- CmdlineSwitches\r\n> 2024-12-14 10:22:52,347 [root] DEBUG: \t |-- CmdlineTerminate\r\n> 2024-12-14 10:22:52,347 [root] DEBUG: \t |-- CommandLineForFilesWildCard\r\n> 2024-12-14 10:22:52,347 [root] DEBUG: \t |-- CommandLineHTTPLink\r\n> 2024-12-14 10:22:52,347 [root] DEBUG: \t |-- CommandLineLongString\r\n> 2024-12-14 10:22:52,348 [root] DEBUG: \t |-- CommandLineReversedHTTPLink\r\n> 2024-12-14 10:22:52,348 [root] DEBUG: \t |-- LongCommandline\r\n> 2024-12-14 10:22:52,348 [root] DEBUG: \t |-- PowershellRenamedCommandLine\r\n> 2024-12-14 10:22:52,348 [root] DEBUG: \t |-- SystemAccountDiscoveryCMD\r\n> 2024-12-14 10:22:52,348 [root] DEBUG: \t |-- SystemCurrentlyLoggedinUserCMD\r\n> 2024-12-14 10:22:52,348 [root] DEBUG: \t |-- SystemInfoDiscoveryCMD\r\n> 2024-12-14 10:22:52,348 [root] DEBUG: \t |-- SystemInfoDiscoveryPWSH\r\n> 2024-12-14 10:22:52,348 [root] DEBUG: \t |-- SystemNetworkDiscoveryCMD\r\n> 2024-12-14 10:22:52,348 [root] DEBUG: \t |-- SystemNetworkDiscoveryPWSH\r\n> 2024-12-14 10:22:52,348 [root] DEBUG: \t |-- SystemUserDiscoveryCMD\r\n> 2024-12-14 10:22:52,348 [root] DEBUG: \t |-- CompilesDotNetCode\r\n> 2024-12-14 10:22:52,348 [root] DEBUG: \t |-- CopiesSelf\r\n> 2024-12-14 10:22:52,348 [root] DEBUG: \t |-- CreatesExe\r\n> 2024-12-14 10:22:52,348 [root] DEBUG: \t |-- CreatesLargeKey\r\n> 2024-12-14 10:22:52,348 [root] DEBUG: \t |-- CreatesNullValue\r\n> 2024-12-14 10:22:52,348 [root] DEBUG: \t |-- CredWiz\r\n> 2024-12-14 10:22:52,348 [root] DEBUG: \t |-- EnablesWDigest\r\n> 2024-12-14 10:22:52,349 [root] DEBUG: \t |-- VaultCmd\r\n> 2024-12-14 10:22:52,349 [root] DEBUG: \t |-- FileCredentialStoreAccess\r\n> 2024-12-14 10:22:52,349 [root] DEBUG: \t |-- FileCredentialStoreWrite\r\n> 2024-12-14 10:22:52,349 [root] DEBUG: \t |-- LsassCredentialDumping\r\n> 2024-12-14 10:22:52,349 [root] DEBUG: \t |-- RegistryCredentialDumping\r\n> 2024-12-14 10:22:52,349 [root] DEBUG: \t |-- RegistryCredentialStoreAccess\r\n> 2024-12-14 10:22:52,349 [root] DEBUG: \t |-- RegistryLSASecretsAccess\r\n> 2024-12-14 10:22:52,349 [root] DEBUG: \t |-- ComsvcsCredentialDump\r\n> 2024-12-14 10:22:52,349 [root] DEBUG: \t |-- CriticalProcess\r\n> 2024-12-14 10:22:52,349 [root] DEBUG: \t |-- CryptGenKey\r\n> 2024-12-14 10:22:52,349 [root] DEBUG: \t |-- CryptominingStratumCommand\r\n> 2024-12-14 10:22:52,349 [root] DEBUG: \t |-- MINERS\r\n> 2024-12-14 10:22:52,349 [root] DEBUG: \t |-- CVE_2014_6332\r\n> 2024-12-14 10:22:52,349 [root] DEBUG: \t |-- CVE2015_2419_JS\r\n> 2024-12-14 10:22:52,349 [root] DEBUG: \t |-- CVE_2016_0189\r\n> 2024-12-14 10:22:52,349 [root] DEBUG: \t |-- CVE_2016_7200\r\n> 2024-12-14 10:22:52,349 [root] DEBUG: \t |-- CypherITMutexes\r\n> 2024-12-14 10:22:52,350 [root] DEBUG: \t |-- DarkCometRegkeys\r\n> 2024-12-14 10:22:52,350 [root] DEBUG: \t |-- DatopLoader\r\n> 2024-12-14 10:22:52,350 [root] DEBUG: \t |-- DeadConnect\r\n> 2024-12-14 10:22:52,350 [root] DEBUG: \t |-- DeadLink\r\n> 2024-12-14 10:22:52,350 [root] DEBUG: \t |-- DebugsSelf\r\n> 2024-12-14 10:22:52,350 [root] DEBUG: \t |-- DecoyDocument\r\n> 2024-12-14 10:22:52,350 [root] DEBUG: \t |-- DecoyImage\r\n> 2024-12-14 10:22:52,350 [root] DEBUG: \t |-- DeepFreezeMutex\r\n> 2024-12-14 10:22:52,350 [root] DEBUG: \t |-- DeletesExecutedFiles\r\n> 2024-12-14 10:22:52,350 [root] DEBUG: \t |-- DeletesSelf\r\n> 2024-12-14 10:22:52,350 [root] DEBUG: \t |-- DeletesShadowCopies\r\n> 2024-12-14 10:22:52,350 [root] DEBUG: \t |-- DeletesSystemStateBackup\r\n> 2024-12-14 10:22:52,350 [root] DEBUG: \t |-- DEPBypass\r\n> 2024-12-14 10:22:52,350 [root] DEBUG: \t |-- DEPDisable\r\n> 2024-12-14 10:22:52,350 [root] DEBUG: \t |-- DisablesAppLaunch\r\n> 2024-12-14 10:22:52,350 [root] DEBUG: \t |-- DisablesAutomaticAppTermination\r\n> 2024-12-14 10:22:52,350 [root] DEBUG: \t |-- DisablesAppVirtualiztion\r\n> 2024-12-14 10:22:52,350 [root] DEBUG: \t |-- DisablesBackups\r\n> 2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisablesBrowserWarn\r\n> 2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisablesContextMenus\r\n> 2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisablesCPLDisplay\r\n> 2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisablesCrashdumps\r\n> 2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisablesMappedDrivesAutodisconnect\r\n> 2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisablesEventLogging\r\n> 2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisableFolderOptions\r\n> 2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisablesNotificationCenter\r\n> 2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisablesPowerOptions\r\n> 2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisablesRestoreDefaultState\r\n> 2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisableRunCommand\r\n> 2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisablesSecurity\r\n> 2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisablesSmartScreen\r\n> 2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisablesSPDY\r\n> 2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisablesStartMenuSearch\r\n> 2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisablesSystemRestore\r\n> 2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisablesUAC\r\n> 2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisablesWER\r\n> 2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisablesWFP\r\n> 2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisablesWindowsDefender\r\n> 2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisablesWindowsDefenderDISM\r\n> 2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisablesWindowsDefenderLogging\r\n> 2024-12-14 10:22:52,351 [root] DEBUG: \t |-- RemovesWindowsDefenderContextMenu\r\n> 2024-12-14 10:22:52,351 [root] DEBUG: \t |-- WindowsDefenderPowerShell\r\n> 2024-12-14 10:22:52,351 [root] DEBUG: \t |-- DisablesWindowsFileProtection\r\n> 2024-12-14 10:22:52,352 [root] DEBUG: \t |-- DisablesWindowsUpdate\r\n> 2024-12-14 10:22:52,352 [root] DEBUG: \t |-- DisablesWindowsFirewall\r\n> 2024-12-14 10:22:52,352 [root] DEBUG: \t |-- DllLoadUncommonFileTypes\r\n> 2024-12-14 10:22:52,352 [root] DEBUG: \t |-- DocScriptEXEDrop\r\n> 2024-12-14 10:22:52,352 [root] DEBUG: \t |-- AdfindDomainEnumeration\r\n> 2024-12-14 10:22:52,352 [root] DEBUG: \t |-- DomainEnumerationCommands\r\n> 2024-12-14 10:22:52,352 [root] DEBUG: \t |-- AndromutMutexes\r\n> 2024-12-14 10:22:52,352 [root] DEBUG: \t |-- DownloaderCabby\r\n> 2024-12-14 10:22:52,352 [root] DEBUG: \t |-- GuLoaderAPIs\r\n> 2024-12-14 10:22:52,352 [root] DEBUG: \t |-- PhorpiexMutexes\r\n> 2024-12-14 10:22:52,352 [root] DEBUG: \t |-- ProtonBotMutexes\r\n> 2024-12-14 10:22:52,352 [root] DEBUG: \t |-- DriverFilterManager\r\n> 2024-12-14 10:22:52,352 [root] DEBUG: \t |-- DriverLoad\r\n> 2024-12-14 10:22:52,352 [root] DEBUG: \t |-- Dropper\r\n> 2024-12-14 10:22:52,352 [root] DEBUG: \t |-- EXEDropper_JS\r\n> 2024-12-14 10:22:52,352 [root] DEBUG: \t |-- dynamic_function_loading\r\n> 2024-12-14 10:22:52,352 [root] DEBUG: \t |-- DLLArchiveExecution\r\n> 2024-12-14 10:22:52,352 [root] DEBUG: \t |-- LNKArchiveExecution\r\n> 2024-12-14 10:22:52,352 [root] DEBUG: \t |-- ScriptArchiveExecution\r\n> 2024-12-14 10:22:52,352 [root] DEBUG: \t |-- EncryptedIOC\r\n> 2024-12-14 10:22:52,352 [root] DEBUG: \t |-- Excel4MacroUrls\r\n> 2024-12-14 10:22:52,352 [root] DEBUG: \t |-- Crash\r\n> 2024-12-14 10:22:52,352 [root] DEBUG: \t |-- ProcessCreationSuspiciousLocation\r\n> 2024-12-14 10:22:52,353 [root] DEBUG: \t |-- exploit_getbasekerneladdress\r\n> 2024-12-14 10:22:52,353 [root] DEBUG: \t |-- exploit_gethaldispatchtable\r\n> 2024-12-14 10:22:52,353 [root] DEBUG: \t |-- ExploitHeapspray\r\n> 2024-12-14 10:22:52,353 [root] DEBUG: \t |-- SpoolerAccess\r\n> 2024-12-14 10:22:52,353 [root] DEBUG: \t |-- SpoolerSvcStart\r\n> 2024-12-14 10:22:52,353 [root] DEBUG: \t |-- KoadicAPIs\r\n> 2024-12-14 10:22:52,353 [root] DEBUG: \t |-- KoadicNetworkActivity\r\n> 2024-12-14 10:22:52,353 [root] DEBUG: \t |-- Modiloader_APIs\r\n> 2024-12-14 10:22:52,353 [root] DEBUG: \t |-- MappedDrivesUAC\r\n> 2024-12-14 10:22:52,353 [root] DEBUG: \t |-- SystemMetrics\r\n> 2024-12-14 10:22:52,353 [root] DEBUG: \t |-- Generic_Phish\r\n> 2024-12-14 10:22:52,353 [root] DEBUG: \t |-- HidesRecycleBinIcon\r\n> 2024-12-14 10:22:52,353 [root] DEBUG: \t |-- HTTP_Request\r\n> 2024-12-14 10:22:52,353 [root] DEBUG: \t |-- ApocalypseStealerFileBehavior\r\n> 2024-12-14 10:22:52,353 [root] DEBUG: \t |-- ArkeiFiles\r\n> 2024-12-14 10:22:52,353 [root] DEBUG: \t |-- AzorultMutexes\r\n> 2024-12-14 10:22:52,353 [root] DEBUG: \t |-- BitcoinWallet\r\n> 2024-12-14 10:22:52,353 [root] DEBUG: \t |-- BrowserStealer\r\n> 2024-12-14 10:22:52,353 [root] DEBUG: \t |-- InfostealerBrowserPassword\r\n> 2024-12-14 10:22:52,353 [root] DEBUG: \t |-- CookiesStealer\r\n> 2024-12-14 10:22:52,353 [root] DEBUG: \t |-- CryptBotFiles\r\n> 2024-12-14 10:22:52,353 [root] DEBUG: \t |-- CryptBotNetwork\r\n> 2024-12-14 10:22:52,353 [root] DEBUG: \t |-- EchelonFiles\r\n> 2024-12-14 10:22:52,353 [root] DEBUG: \t |-- FTPStealer\r\n> 2024-12-14 10:22:52,353 [root] DEBUG: \t |-- IMStealer\r\n> 2024-12-14 10:22:52,354 [root] DEBUG: \t |-- KeyLogger\r\n> 2024-12-14 10:22:52,354 [root] DEBUG: \t |-- EmailStealer\r\n> 2024-12-14 10:22:52,354 [root] DEBUG: \t |-- MassLoggerArtifacts\r\n> 2024-12-14 10:22:52,354 [root] DEBUG: \t |-- MassLoggerFiles\r\n> 2024-12-14 10:22:52,354 [root] DEBUG: \t |-- MassLoggerVersion\r\n> 2024-12-14 10:22:52,354 [root] DEBUG: \t |-- PoullightFiles\r\n> 2024-12-14 10:22:52,354 [root] DEBUG: \t |-- PurpleWaveMutexes\r\n> 2024-12-14 10:22:52,354 [root] DEBUG: \t |-- PurpleWaveNetworkAcivity\r\n> 2024-12-14 10:22:52,354 [root] DEBUG: \t |-- QuilClipperMutexes\r\n> 2024-12-14 10:22:52,354 [root] DEBUG: \t |-- QuilClipperNetworkBehavior\r\n> 2024-12-14 10:22:52,354 [root] DEBUG: \t |-- QulabFiles\r\n> 2024-12-14 10:22:52,354 [root] DEBUG: \t |-- QulabMutexes\r\n> 2024-12-14 10:22:52,354 [root] DEBUG: \t |-- RaccoonInfoStealerMutex\r\n> 2024-12-14 10:22:52,354 [root] DEBUG: \t |-- raccoon\r\n> 2024-12-14 10:22:52,354 [root] DEBUG: \t |-- CapturesScreenshot\r\n> 2024-12-14 10:22:52,354 [root] DEBUG: \t |-- vidar\r\n> 2024-12-14 10:22:52,354 [root] DEBUG: \t |-- InjectionCRT\r\n> 2024-12-14 10:22:52,354 [root] DEBUG: \t |-- InjectionExplorer\r\n> 2024-12-14 10:22:52,354 [root] DEBUG: \t |-- InjectionExtension\r\n> 2024-12-14 10:22:52,354 [root] DEBUG: \t |-- InjectionNetworkTraffic\r\n> 2024-12-14 10:22:52,354 [root] DEBUG: \t |-- InjectionRUNPE\r\n> 2024-12-14 10:22:52,354 [root] DEBUG: \t |-- InjectionRWX\r\n> 2024-12-14 10:22:52,354 [root] DEBUG: \t |-- injection_themeinitapihook\r\n> 2024-12-14 10:22:52,354 [root] DEBUG: \t |-- Internet_Dropper\r\n> 2024-12-14 10:22:52,354 [root] DEBUG: \t |-- IPC_NamedPipe\r\n> 2024-12-14 10:22:52,354 [root] DEBUG: \t |-- JS_Phish\r\n> 2024-12-14 10:22:52,355 [root] DEBUG: \t |-- JS_SuspiciousRedirect\r\n> 2024-12-14 10:22:52,355 [root] DEBUG: \t |-- malicious_dynamic_function_loading\r\n> 2024-12-14 10:22:52,355 [root] DEBUG: \t |-- EncryptPCInfo\r\n> 2024-12-14 10:22:52,355 [root] DEBUG: \t |-- EnryptDataAgentTeslaHTTP\r\n> 2024-12-14 10:22:52,355 [root] DEBUG: \t |-- EnryptDataAgentTeslaHTTPT2\r\n> 2024-12-14 10:22:52,355 [root] DEBUG: \t |-- EnryptDataNanoCore\r\n> 2024-12-14 10:22:52,355 [root] DEBUG: \t |-- MartiansIE\r\n> 2024-12-14 10:22:52,355 [root] DEBUG: \t |-- MartiansOffice\r\n> 2024-12-14 10:22:52,355 [root] DEBUG: \t |-- MimicsAgent\r\n> 2024-12-14 10:22:52,355 [root] DEBUG: \t |-- MimicsFiletime\r\n> 2024-12-14 10:22:52,355 [root] DEBUG: \t |-- MimicsIcon\r\n> 2024-12-14 10:22:52,355 [root] DEBUG: \t |-- MasqueradesProcessName\r\n> 2024-12-14 10:22:52,355 [root] DEBUG: \t |-- MimikatzModules\r\n> 2024-12-14 10:22:52,355 [root] DEBUG: \t |-- QuilMinerNetworkBehavior\r\n> 2024-12-14 10:22:52,355 [root] DEBUG: \t |-- ModifiesCerts\r\n> 2024-12-14 10:22:52,355 [root] DEBUG: \t |-- DotNetCLRUsageLogKnob\r\n> 2024-12-14 10:22:52,355 [root] DEBUG: \t |-- Modifies_HostFile\r\n> 2024-12-14 10:22:52,355 [root] DEBUG: \t |-- ModifiesOEMInformation\r\n> 2024-12-14 10:22:52,355 [root] DEBUG: \t |-- ModifySecurityCenterWarnings\r\n> 2024-12-14 10:22:52,355 [root] DEBUG: \t |-- ModifiesUACNotify\r\n> 2024-12-14 10:22:52,355 [root] DEBUG: \t |-- ModifiesDesktopWallpaper\r\n> 2024-12-14 10:22:52,355 [root] DEBUG: \t |-- ZoneID\r\n> 2024-12-14 10:22:52,355 [root] DEBUG: \t |-- move_file_on_reboot\r\n> 2024-12-14 10:22:52,355 [root] DEBUG: \t |-- Multiple_UA\r\n> 2024-12-14 10:22:52,355 [root] DEBUG: \t |-- NetworkAnomaly\r\n> 2024-12-14 10:22:52,355 [root] DEBUG: \t |-- NetworkBIND\r\n> 2024-12-14 10:22:52,356 [root] DEBUG: \t |-- NetworkCnCHTTPSArchive\r\n> 2024-12-14 10:22:52,356 [root] DEBUG: \t |-- NetworkCnCHTTPSFreeWebHosting\r\n> 2024-12-14 10:22:52,356 [root] DEBUG: \t |-- NetworkCnCHTTPSGeneric\r\n> 2024-12-14 10:22:52,356 [root] DEBUG: \t |-- NetworkCnCHTTPSInteractsh\r\n> 2024-12-14 10:22:52,356 [root] DEBUG: \t |-- NetworkCnCHTTPSOpenSource\r\n> 2024-12-14 10:22:52,356 [root] DEBUG: \t |-- NetworkCnCHTTPSPasteSite\r\n> 2024-12-14 10:22:52,356 [root] DEBUG: \t |-- NetworkCnCHTTPSPayload\r\n> 2024-12-14 10:22:52,356 [root] DEBUG: \t |-- NetworkCnCHTTPSServiceInterface\r\n> 2024-12-14 10:22:52,356 [root] DEBUG: \t |-- NetworkCnCHTTPSSocialMedia\r\n> 2024-12-14 10:22:52,356 [root] DEBUG: \t |-- NetworkCnCHTTPSTelegram\r\n> 2024-12-14 10:22:52,356 [root] DEBUG: \t |-- NetworkCnCHTTPSTempStorageSite\r\n> 2024-12-14 10:22:52,356 [root] DEBUG: \t |-- NetworkCnCHTTPSTempURLDNS\r\n> 2024-12-14 10:22:52,356 [root] DEBUG: \t |-- NetworkCnCHTTPSURLShortenerSite\r\n> 2024-12-14 10:22:52,356 [root] DEBUG: \t |-- NetworkCnCHTTPSUserAgent\r\n> 2024-12-14 10:22:52,356 [root] DEBUG: \t |-- NetworkCnCSMTPSExfil\r\n> 2024-12-14 10:22:52,356 [root] DEBUG: \t |-- NetworkCnCSMTPSGeneric\r\n> 2024-12-14 10:22:52,356 [root] DEBUG: \t |-- NetworkDNSBlockChain\r\n> 2024-12-14 10:22:52,356 [root] DEBUG: \t |-- NetworkDNSIDN\r\n> 2024-12-14 10:22:52,356 [root] DEBUG: \t |-- NetworkDNSOpenNIC\r\n> 2024-12-14 10:22:52,356 [root] DEBUG: \t |-- NetworkDNSPasteSite\r\n> 2024-12-14 10:22:52,357 [root] DEBUG: \t |-- NetworkDNSReverseProxy\r\n> 2024-12-14 10:22:52,357 [root] DEBUG: \t |-- NetworkDNSSuspiciousQueryType\r\n> 2024-12-14 10:22:52,357 [root] DEBUG: \t |-- NetworkDNSTempFileService\r\n> 2024-12-14 10:22:52,357 [root] DEBUG: \t |-- NetworkDNSTempURLDNS\r\n> 2024-12-14 10:22:52,357 [root] DEBUG: \t |-- NetworkDNSTunnelingRequest\r\n> 2024-12-14 10:22:52,357 [root] DEBUG: \t |-- NetworkDNSURLShortener\r\n> 2024-12-14 10:22:52,357 [root] DEBUG: \t |-- NetworkDOHTLS\r\n> 2024-12-14 10:22:52,357 [root] DEBUG: \t |-- Suspicious_TLD\r\n> 2024-12-14 10:22:52,357 [root] DEBUG: \t |-- NetworkDocumentHTTP\r\n> 2024-12-14 10:22:52,357 [root] DEBUG: \t |-- ExplorerHTTP\r\n> 2024-12-14 10:22:52,357 [root] DEBUG: \t |-- NetworkFakeUserAgent\r\n> 2024-12-14 10:22:52,357 [root] DEBUG: \t |-- NetworkDocumentFile\r\n> 2024-12-14 10:22:52,357 [root] DEBUG: \t |-- NetworkEXE\r\n> 2024-12-14 10:22:52,357 [root] DEBUG: \t |-- Tor\r\n> 2024-12-14 10:22:52,357 [root] DEBUG: \t |-- TorHiddenService\r\n> 2024-12-14 10:22:52,358 [root] DEBUG: \t |-- Office_Code_Page\r\n> 2024-12-14 10:22:52,358 [root] DEBUG: \t |-- OfficeAddinLoading\r\n> 2024-12-14 10:22:52,358 [root] DEBUG: \t |-- OfficeCOMLoad\r\n> 2024-12-14 10:22:52,358 [root] DEBUG: \t |-- OfficeDotNetLoad\r\n> 2024-12-14 10:22:52,358 [root] DEBUG: \t |-- OfficeMSHTMLLoad\r\n> 2024-12-14 10:22:52,358 [root] DEBUG: \t |-- OfficePerfKey\r\n> 2024-12-14 10:22:52,358 [root] DEBUG: \t |-- OfficeVBLLoad\r\n> 2024-12-14 10:22:52,358 [root] DEBUG: \t |-- OfficeWMILoad\r\n> 2024-12-14 10:22:52,358 [root] DEBUG: \t |-- OfficeCVE201711882\r\n> 2024-12-14 10:22:52,358 [root] DEBUG: \t |-- OfficeCVE201711882Network\r\n> 2024-12-14 10:22:52,358 [root] DEBUG: \t |-- OfficeCVE202140444\r\n> 2024-12-14 10:22:52,358 [root] DEBUG: \t |-- OfficeCVE202140444M2\r\n> 2024-12-14 10:22:52,358 [root] DEBUG: \t |-- OfficeFlashLoad\r\n> 2024-12-14 10:22:52,359 [root] DEBUG: \t |-- OfficePostScript\r\n> 2024-12-14 10:22:52,359 [root] DEBUG: \t |-- Office_Macro\r\n> 2024-12-14 10:22:52,359 [root] DEBUG: \t |-- ChangesTrustCenter_settings\r\n> 2024-12-14 10:22:52,359 [root] DEBUG: \t |-- DisablesVBATrustAccess\r\n> 2024-12-14 10:22:52,359 [root] DEBUG: \t |-- OfficeMacroAutoExecution\r\n> 2024-12-14 10:22:52,359 [root] DEBUG: \t |-- OfficeMacroIOC\r\n> 2024-12-14 10:22:52,359 [root] DEBUG: \t |-- OfficeMacroMaliciousPredition\r\n> 2024-12-14 10:22:52,359 [root] DEBUG: \t |-- OfficeMacroSuspicious\r\n> 2024-12-14 10:22:52,359 [root] DEBUG: \t |-- RTFASLRBypass\r\n> 2024-12-14 10:22:52,359 [root] DEBUG: \t |-- RTFAnomalyCharacterSet\r\n> 2024-12-14 10:22:52,359 [root] DEBUG: \t |-- RTFAnomalyVersion\r\n> 2024-12-14 10:22:52,359 [root] DEBUG: \t |-- RTFEmbeddedContent\r\n> 2024-12-14 10:22:52,359 [root] DEBUG: \t |-- RTFEmbeddedOfficeFile\r\n> 2024-12-14 10:22:52,359 [root] DEBUG: \t |-- RTFExploitStatic\r\n> 2024-12-14 10:22:52,359 [root] DEBUG: \t |-- OfficeSecurity\r\n> 2024-12-14 10:22:52,359 [root] DEBUG: \t |-- OfficeAnamalousFeature\r\n> 2024-12-14 10:22:52,359 [root] DEBUG: \t |-- OfficeDDECommand\r\n> 2024-12-14 10:22:52,360 [root] DEBUG: \t |-- OfficeSuspiciousProcesses\r\n> 2024-12-14 10:22:52,360 [root] DEBUG: \t |-- OfficeWriteEXE\r\n> 2024-12-14 10:22:52,360 [root] DEBUG: \t |-- ArmadilloMutex\r\n> 2024-12-14 10:22:52,360 [root] DEBUG: \t |-- ArmadilloRegKey\r\n> 2024-12-14 10:22:52,360 [root] DEBUG: \t |-- ADS\r\n> 2024-12-14 10:22:52,360 [root] DEBUG: \t |-- Autorun\r\n> 2024-12-14 10:22:52,360 [root] DEBUG: \t |-- Autorun_scheduler\r\n> 2024-12-14 10:22:52,360 [root] DEBUG: \t |-- PersistenceSafeBoot\r\n> 2024-12-14 10:22:52,360 [root] DEBUG: \t |-- PersistenceBootexecute\r\n> 2024-12-14 10:22:52,360 [root] DEBUG: \t |-- PersistenceRegistryScript\r\n> 2024-12-14 10:22:52,360 [root] DEBUG: \t |-- PersistenceIFEO\r\n> 2024-12-14 10:22:52,360 [root] DEBUG: \t |-- PersistenceSilentProcessExit\r\n> 2024-12-14 10:22:52,360 [root] DEBUG: \t |-- PersistenceRDPRegistry\r\n> 2024-12-14 10:22:52,360 [root] DEBUG: \t |-- PersistenceRDPShadowing\r\n> 2024-12-14 10:22:52,360 [root] DEBUG: \t |-- PersistenceService\r\n> 2024-12-14 10:22:52,360 [root] DEBUG: \t |-- PersistenceShimDatabase\r\n> 2024-12-14 10:22:52,360 [root] DEBUG: \t |-- PowerpoolMutexes\r\n> 2024-12-14 10:22:52,361 [root] DEBUG: \t |-- PowerShellNetworkConnection\r\n> 2024-12-14 10:22:52,361 [root] DEBUG: \t |-- PowerShellScriptBlockLogging\r\n> 2024-12-14 10:22:52,361 [root] DEBUG: \t |-- PowershellCommandSuspicious\r\n> 2024-12-14 10:22:52,361 [root] DEBUG: \t |-- PowershellDownload\r\n> 2024-12-14 10:22:52,361 [root] DEBUG: \t |-- PowershellRenamed\r\n> 2024-12-14 10:22:52,361 [root] DEBUG: \t |-- PowershellRequest\r\n> 2024-12-14 10:22:52,361 [root] DEBUG: \t |-- PowershellReversed\r\n> 2024-12-14 10:22:52,361 [root] DEBUG: \t |-- PowershellVariableObfuscation\r\n> 2024-12-14 10:22:52,361 [root] DEBUG: \t |-- PreventsSafeboot\r\n> 2024-12-14 10:22:52,361 [root] DEBUG: \t |-- CmdlineProcessDiscovery\r\n> 2024-12-14 10:22:52,361 [root] DEBUG: \t |-- CreateToolhelp32SnapshotProcessModuleEnumeration\r\n> 2024-12-14 10:22:52,361 [root] DEBUG: \t |-- EnumeratesRunningProcesses\r\n> 2024-12-14 10:22:52,361 [root] DEBUG: \t |-- ProcessInterest\r\n> 2024-12-14 10:22:52,361 [root] DEBUG: \t |-- ProcessNeeded\r\n> 2024-12-14 10:22:52,361 [root] DEBUG: \t |-- MassDataEncryption\r\n> 2024-12-14 10:22:52,361 [root] DEBUG: \t |-- CryptoMixMutexes\r\n> 2024-12-14 10:22:52,361 [root] DEBUG: \t |-- DharmaMutexes\r\n> 2024-12-14 10:22:52,361 [root] DEBUG: \t |-- RansomwareDMALocker\r\n> 2024-12-14 10:22:52,361 [root] DEBUG: \t |-- RansomwareExtensions\r\n> 2024-12-14 10:22:52,361 [root] DEBUG: \t |-- RansomwareFileModifications\r\n> 2024-12-14 10:22:52,361 [root] DEBUG: \t |-- RansomwareFiles\r\n> 2024-12-14 10:22:52,361 [root] DEBUG: \t |-- FonixMutexes\r\n> 2024-12-14 10:22:52,362 [root] DEBUG: \t |-- GandCrabMutexes\r\n> 2024-12-14 10:22:52,362 [root] DEBUG: \t |-- GermanWiperMutexes\r\n> 2024-12-14 10:22:52,362 [root] DEBUG: \t |-- MedusaLockerMutexes\r\n> 2024-12-14 10:22:52,362 [root] DEBUG: \t |-- MedusaLockerRegkeys\r\n> 2024-12-14 10:22:52,362 [root] DEBUG: \t |-- RansomwareMessage\r\n> 2024-12-14 10:22:52,362 [root] DEBUG: \t |-- NemtyMutexes\r\n> 2024-12-14 10:22:52,362 [root] DEBUG: \t |-- NemtyNetworkActivity\r\n> 2024-12-14 10:22:52,362 [root] DEBUG: \t |-- NemtyNote\r\n> 2024-12-14 10:22:52,362 [root] DEBUG: \t |-- NemtyRegkeys\r\n> 2024-12-14 10:22:52,362 [root] DEBUG: \t |-- PYSAMutexes\r\n> 2024-12-14 10:22:52,362 [root] DEBUG: \t |-- RansomwareRadamant\r\n> 2024-12-14 10:22:52,362 [root] DEBUG: \t |-- RansomwareRecyclebin\r\n> 2024-12-14 10:22:52,362 [root] DEBUG: \t |-- RevilMutexes\r\n> 2024-12-14 10:22:52,362 [root] DEBUG: \t |-- RevilRegkey\r\n> 2024-12-14 10:22:52,362 [root] DEBUG: \t |-- SatanMutexes\r\n> 2024-12-14 10:22:52,362 [root] DEBUG: \t |-- SnakeRansomMutexes\r\n> 2024-12-14 10:22:52,362 [root] DEBUG: \t |-- sodinokibi\r\n> 2024-12-14 10:22:52,362 [root] DEBUG: \t |-- StopRansomMutexes\r\n> 2024-12-14 10:22:52,362 [root] DEBUG: \t |-- StopRansomwareCMD\r\n> 2024-12-14 10:22:52,362 [root] DEBUG: \t |-- StopRansomwareRegistry\r\n> 2024-12-14 10:22:52,362 [root] DEBUG: \t |-- BeebusMutexes\r\n> 2024-12-14 10:22:52,362 [root] DEBUG: \t |-- BlackNETMutexes\r\n> 2024-12-14 10:22:52,362 [root] DEBUG: \t |-- BlackRATAPIs\r\n> 2024-12-14 10:22:52,362 [root] DEBUG: \t |-- BlackRATMutexes\r\n> 2024-12-14 10:22:52,362 [root] DEBUG: \t |-- BlackRATNetworkActivity\r\n> 2024-12-14 10:22:52,362 [root] DEBUG: \t |-- BlackRATRegistryKeys\r\n> 2024-12-14 10:22:52,362 [root] DEBUG: \t |-- CRATMutexes\r\n> 2024-12-14 10:22:52,363 [root] DEBUG: \t |-- DCRatAPIs\r\n> 2024-12-14 10:22:52,363 [root] DEBUG: \t |-- DCRatFiles\r\n> 2024-12-14 10:22:52,363 [root] DEBUG: \t |-- DCRatMutex\r\n> 2024-12-14 10:22:52,363 [root] DEBUG: \t |-- FynloskiMutexes\r\n> 2024-12-14 10:22:52,363 [root] DEBUG: \t |-- KaraganyEventObjects\r\n> 2024-12-14 10:22:52,363 [root] DEBUG: \t |-- KaraganyFiles\r\n> 2024-12-14 10:22:52,363 [root] DEBUG: \t |-- LimeRATMutexes\r\n> 2024-12-14 10:22:52,363 [root] DEBUG: \t |-- LimeRATRegkeys\r\n> 2024-12-14 10:22:52,363 [root] DEBUG: \t |-- LodaRATFileBehavior\r\n> 2024-12-14 10:22:52,363 [root] DEBUG: \t |-- LuminosityRAT\r\n> 2024-12-14 10:22:52,363 [root] DEBUG: \t |-- ModiRATBehavior\r\n> 2024-12-14 10:22:52,363 [root] DEBUG: \t |-- NanocoreRAT\r\n> 2024-12-14 10:22:52,363 [root] DEBUG: \t |-- netwire\r\n> 2024-12-14 10:22:52,363 [root] DEBUG: \t |-- NjratRegkeys\r\n> 2024-12-14 10:22:52,363 [root] DEBUG: \t |-- ObliquekRATFiles\r\n> 2024-12-14 10:22:52,363 [root] DEBUG: \t |-- ObliquekRATMutexes\r\n> 2024-12-14 10:22:52,363 [root] DEBUG: \t |-- ObliquekRATNetworkActivity\r\n> 2024-12-14 10:22:52,363 [root] DEBUG: \t |-- OrcusRAT\r\n> 2024-12-14 10:22:52,363 [root] DEBUG: \t |-- ParallaxMutexes\r\n> 2024-12-14 10:22:52,363 [root] DEBUG: \t |-- PcClientMutexes\r\n> 2024-12-14 10:22:52,363 [root] DEBUG: \t |-- PlugxMutexes\r\n> 2024-12-14 10:22:52,363 [root] DEBUG: \t |-- PoisonIvyMutexes\r\n> 2024-12-14 10:22:52,363 [root] DEBUG: \t |-- QuasarMutexes\r\n> 2024-12-14 10:22:52,363 [root] DEBUG: \t |-- RatsnifMutexes\r\n> 2024-12-14 10:22:52,363 [root] DEBUG: \t |-- SennaMutexes\r\n> 2024-12-14 10:22:52,363 [root] DEBUG: \t |-- SpynetRat\r\n> 2024-12-14 10:22:52,364 [root] DEBUG: \t |-- TrochilusRATAPIs\r\n> 2024-12-14 10:22:52,364 [root] DEBUG: \t |-- VenomRAT\r\n> 2024-12-14 10:22:52,364 [root] DEBUG: \t |-- WarzoneRATFiles\r\n> 2024-12-14 10:22:52,364 [root] DEBUG: \t |-- WarzoneRATRegkeys\r\n> 2024-12-14 10:22:52,364 [root] DEBUG: \t |-- XpertRATFiles\r\n> 2024-12-14 10:22:52,364 [root] DEBUG: \t |-- XpertRATMutexes\r\n> 2024-12-14 10:22:52,364 [root] DEBUG: \t |-- XtremeMutexes\r\n> 2024-12-14 10:22:52,364 [root] DEBUG: \t |-- ReadsSelf\r\n> 2024-12-14 10:22:52,364 [root] DEBUG: \t |-- Recon_Beacon\r\n> 2024-12-14 10:22:52,364 [root] DEBUG: \t |-- Fingerprint\r\n> 2024-12-14 10:22:52,364 [root] DEBUG: \t |-- InstalledApps\r\n> 2024-12-14 10:22:52,364 [root] DEBUG: \t |-- SystemInfo\r\n> 2024-12-14 10:22:52,364 [root] DEBUG: \t |-- Accesses_RecycleBin\r\n> 2024-12-14 10:22:52,364 [root] DEBUG: \t |-- RemcosFiles\r\n> 2024-12-14 10:22:52,364 [root] DEBUG: \t |-- RemcosMutexes\r\n> 2024-12-14 10:22:52,364 [root] DEBUG: \t |-- RemcosRegkeys\r\n> 2024-12-14 10:22:52,364 [root] DEBUG: \t |-- RDPTCPKey\r\n> 2024-12-14 10:22:52,364 [root] DEBUG: \t |-- UsesRDPClip\r\n> 2024-12-14 10:22:52,364 [root] DEBUG: \t |-- UsesRemoteDesktopSession\r\n> 2024-12-14 10:22:52,364 [root] DEBUG: \t |-- RemovesNetworkingIcon\r\n> 2024-12-14 10:22:52,364 [root] DEBUG: \t |-- RemovesPinnedPrograms\r\n> 2024-12-14 10:22:52,364 [root] DEBUG: \t |-- RemovesSecurityAndMaintenanceIcon\r\n> 2024-12-14 10:22:52,364 [root] DEBUG: \t |-- RemovesStartMenuDefaults\r\n> 2024-12-14 10:22:52,364 [root] DEBUG: \t |-- RemovesUsernameStartMenu\r\n> 2024-12-14 10:22:52,364 [root] DEBUG: \t |-- RemovesZoneIdADS\r\n> 2024-12-14 10:22:52,364 [root] DEBUG: \t |-- SpicyHotPotBehavior\r\n> 2024-12-14 10:22:52,365 [root] DEBUG: \t |-- ScriptCreatedProcess\r\n> 2024-12-14 10:22:52,365 [root] DEBUG: \t |-- ScriptNetworkActvity\r\n> 2024-12-14 10:22:52,365 [root] DEBUG: \t |-- SuspiciousJSScript\r\n> 2024-12-14 10:22:52,365 [root] DEBUG: \t |-- JavaScriptTimer\r\n> 2024-12-14 10:22:52,365 [root] DEBUG: \t |-- Secure_Login_Phish\r\n> 2024-12-14 10:22:52,365 [root] DEBUG: \t |-- SecurityXploded_Modules\r\n> 2024-12-14 10:22:52,365 [root] DEBUG: \t |-- GetClipboardData\r\n> 2024-12-14 10:22:52,365 [root] DEBUG: \t |-- SetsAutoconfigURL\r\n> 2024-12-14 10:22:52,365 [root] DEBUG: \t |-- InstallsWinpcap\r\n> 2024-12-14 10:22:52,365 [root] DEBUG: \t |-- SpoofsProcname\r\n> 2024-12-14 10:22:52,365 [root] DEBUG: \t |-- CreatesAutorunInf\r\n> 2024-12-14 10:22:52,365 [root] DEBUG: \t |-- StackPivot\r\n> 2024-12-14 10:22:52,365 [root] DEBUG: \t |-- StackPivotFileCreated\r\n> 2024-12-14 10:22:52,365 [root] DEBUG: \t |-- StackPivotProcessCreate\r\n> 2024-12-14 10:22:52,365 [root] DEBUG: \t |-- StealingClipboardData\r\n> 2024-12-14 10:22:52,365 [root] DEBUG: \t |-- StealthChildProc\r\n> 2024-12-14 10:22:52,365 [root] DEBUG: \t |-- StealthFile\r\n> 2024-12-14 10:22:52,365 [root] DEBUG: \t |-- StealthHiddenExtension\r\n> 2024-12-14 10:22:52,365 [root] DEBUG: \t |-- StealthHiddenReg\r\n> 2024-12-14 10:22:52,365 [root] DEBUG: \t |-- StealthHideNotifications\r\n> 2024-12-14 10:22:52,365 [root] DEBUG: \t |-- StealthSystemProcName\r\n> 2024-12-14 10:22:52,365 [root] DEBUG: \t |-- StealthTimeout\r\n> 2024-12-14 10:22:52,365 [root] DEBUG: \t |-- StealthWebHistory\r\n> 2024-12-14 10:22:52,365 [root] DEBUG: \t |-- Hidden_Window\r\n> 2024-12-14 10:22:52,365 [root] DEBUG: \t |-- sysinternals_psexec\r\n> 2024-12-14 10:22:52,365 [root] DEBUG: \t |-- sysinternals_tools\r\n> 2024-12-14 10:22:52,366 [root] DEBUG: \t |-- QueriesKeyboardLayout\r\n> 2024-12-14 10:22:52,366 [root] DEBUG: \t |-- TampersETW\r\n> 2024-12-14 10:22:52,366 [root] DEBUG: \t |-- LSATampering\r\n> 2024-12-14 10:22:52,366 [root] DEBUG: \t |-- TampersPowerShellLogging\r\n> 2024-12-14 10:22:52,366 [root] DEBUG: \t |-- Flame\r\n> 2024-12-14 10:22:52,366 [root] DEBUG: \t |-- TerminatesRemoteProcess\r\n> 2024-12-14 10:22:52,366 [root] DEBUG: \t |-- TerritorialDisputeSIGs\r\n> 2024-12-14 10:22:52,366 [root] DEBUG: \t |-- TrickBotTaskDelete\r\n> 2024-12-14 10:22:52,366 [root] DEBUG: \t |-- TrickBotMutexes\r\n> 2024-12-14 10:22:52,366 [root] DEBUG: \t |-- FleerCivetMutexes\r\n> 2024-12-14 10:22:52,366 [root] DEBUG: \t |-- LokibotMutexes\r\n> 2024-12-14 10:22:52,366 [root] DEBUG: \t |-- UrsnifBehavior\r\n> 2024-12-14 10:22:52,366 [root] DEBUG: \t |-- UpatreFiles\r\n> 2024-12-14 10:22:52,366 [root] DEBUG: \t |-- UpatreMutexes\r\n> 2024-12-14 10:22:52,366 [root] DEBUG: \t |-- UserEnum\r\n> 2024-12-14 10:22:52,366 [root] DEBUG: \t |-- ADFind\r\n> 2024-12-14 10:22:52,366 [root] DEBUG: \t |-- UsesMSProtocol\r\n> 2024-12-14 10:22:52,366 [root] DEBUG: \t |-- Virus\r\n> 2024-12-14 10:22:52,366 [root] DEBUG: \t |-- NeshtaFiles\r\n> 2024-12-14 10:22:52,366 [root] DEBUG: \t |-- NeshtaMutexes\r\n> 2024-12-14 10:22:52,366 [root] DEBUG: \t |-- NeshtaRegKeys\r\n> 2024-12-14 10:22:52,366 [root] DEBUG: \t |-- RenamerMutexes\r\n> 2024-12-14 10:22:52,366 [root] DEBUG: \t |-- Webmail_Phish\r\n> 2024-12-14 10:22:52,366 [root] DEBUG: \t |-- OWAWebShellFiles\r\n> 2024-12-14 10:22:52,366 [root] DEBUG: \t |-- WebShellFiles\r\n> 2024-12-14 10:22:52,366 [root] DEBUG: \t |-- WebShellProcesses\r\n> 2024-12-14 10:22:52,367 [root] DEBUG: \t |-- PersistsDotNetDevUtility\r\n> 2024-12-14 10:22:52,367 [root] DEBUG: \t |-- SpwansDotNetDevUtiliy\r\n> 2024-12-14 10:22:52,367 [root] DEBUG: \t |-- AltersWindowsUtility\r\n> 2024-12-14 10:22:52,367 [root] DEBUG: \t |-- DotNETCSCBuild\r\n> 2024-12-14 10:22:52,367 [root] DEBUG: \t |-- MultipleExplorerInstances\r\n> 2024-12-14 10:22:52,367 [root] DEBUG: \t |-- OverwritesAccessibilityUtility\r\n> 2024-12-14 10:22:52,367 [root] DEBUG: \t |-- ScriptToolExecuted\r\n> 2024-12-14 10:22:52,367 [root] DEBUG: \t |-- SuspiciousCertutilUse\r\n> 2024-12-14 10:22:52,367 [root] DEBUG: \t |-- SuspiciousCommandTools\r\n> 2024-12-14 10:22:52,367 [root] DEBUG: \t |-- SuspiciousMpCmdRunUse\r\n> 2024-12-14 10:22:52,367 [root] DEBUG: \t |-- SuspiciousPingUse\r\n> 2024-12-14 10:22:52,367 [root] DEBUG: \t |-- UsesPowerShellCopyItem\r\n> 2024-12-14 10:22:52,367 [root] DEBUG: \t |-- UsesWindowsUtilities\r\n> 2024-12-14 10:22:52,367 [root] DEBUG: \t |-- UsesWindowsUtilitiesAppCmd\r\n> 2024-12-14 10:22:52,367 [root] DEBUG: \t |-- UsesWindowsUtilitiesCSVDELDFIDE\r\n> 2024-12-14 10:22:52,367 [root] DEBUG: \t |-- UsesWindowsUtilitiesCipher\r\n> 2024-12-14 10:22:52,367 [root] DEBUG: \t |-- UsesWindowsUtilitiesClickOnce\r\n> 2024-12-14 10:22:52,367 [root] DEBUG: \t |-- UsesWindowsUtilitiesCurl\r\n> 2024-12-14 10:22:52,367 [root] DEBUG: \t |-- UsesWindowsUtilitiesDSQuery\r\n> 2024-12-14 10:22:52,367 [root] DEBUG: \t |-- UsesWindowsUtilitiesEsentutl\r\n> 2024-12-14 10:22:52,367 [root] DEBUG: \t |-- UsesWindowsUtilitiesFinger\r\n> 2024-12-14 10:22:52,367 [root] DEBUG: \t |-- UsesWindowsUtilitiesMode\r\n> 2024-12-14 10:22:52,367 [root] DEBUG: \t |-- UsesWindowsUtilitiesNTDSutil\r\n> 2024-12-14 10:22:52,367 [root] DEBUG: \t |-- UsesWindowsUtilitiesNltest\r\n> 2024-12-14 10:22:52,367 [root] DEBUG: \t |-- UsesWindowsUtilitiesScheduler\r\n> 2024-12-14 10:22:52,367 [root] DEBUG: \t |-- UsesWindowsUtilitiesXcopy\r\n> 2024-12-14 10:22:52,368 [root] DEBUG: \t |-- WMICCommandSuspicious\r\n> 2024-12-14 10:22:52,368 [root] DEBUG: \t |-- WiperZeroedBytes\r\n> 2024-12-14 10:22:52,368 [root] DEBUG: \t |-- ScrconsWMIScriptConsumer\r\n> 2024-12-14 10:22:52,368 [root] DEBUG: \t |-- WMICreateProcess\r\n> 2024-12-14 10:22:52,368 [root] DEBUG: \t |-- WMIScriptProcess\r\n> 2024-12-14 10:22:52,368 [root] DEBUG: \t |-- Win32ProcessCreate\r\n> 2024-12-14 10:22:52,368 [root] DEBUG: \t |-- AllapleMutexes\r\n> 2024-12-14 10:22:52,368 [root] DEBUG: \t |-- LinuxDeletesFiles\r\n> 2024-12-14 10:22:52,368 [root] DEBUG: \t |-- LinuxDropsFiles\r\n> 2024-12-14 10:22:52,368 [root] DEBUG: \t |-- LinuxReadsFiles\r\n> 2024-12-14 10:22:52,368 [root] DEBUG: \t `-- LinuxWritesFiles\r\n> 2024-12-14 10:22:52,368 [root] DEBUG: Imported \"reporting\" modules:\r\n> 2024-12-14 10:22:52,368 [root] DEBUG: \t |-- BinGraph\r\n> 2024-12-14 10:22:52,368 [root] DEBUG: \t |-- CAPASummary\r\n> 2024-12-14 10:22:52,368 [root] DEBUG: \t |-- JsonDump\r\n> 2024-12-14 10:22:52,368 [root] DEBUG: \t |-- MongoDB\r\n> 2024-12-14 10:22:52,368 [root] DEBUG: \t `-- PCAP2CERT\r\n> 2024-12-14 10:22:52,368 [root] DEBUG: Imported \"feeds\" modules:\r\n> 2024-12-14 10:22:52,368 [root] DEBUG: \t `-- AbuseCH_SSL\r\n> 2024-12-14 10:22:52,368 [root] DEBUG: Imported \"machinery\" modules:\r\n> 2024-12-14 10:22:52,368 [root] DEBUG: \t `-- Physical\r\n> 2024-12-14 10:22:52,368 [Task 23] [root] DEBUG: Processing task\r\n> 2024-12-14 10:22:52,378 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"CAPE\" on analysis at \"/opt/CAPEv2/storage/analyses/23\"\r\n> 2024-12-14 10:22:52,571 [Task 23] [lib.cuckoo.common.objects] DEBUG: file type set using basic heuristics for: /opt/CAPEv2/storage/binaries/33b4fd9d1dd032c56f0e2d74d609db74a04a3190eb45cd07f277f5efca7abe23\r\n> 2024-12-14 10:22:52,571 [Task 23] [lib.cuckoo.common.objects] DEBUG: Initializing Yara...\r\n> 2024-12-14 10:22:52,644 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries AutoIT.yar\r\n> 2024-12-14 10:22:52,645 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries EcrimePackerStub.yar\r\n> 2024-12-14 10:22:52,645 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries Generic_Phishing_PDF.yar\r\n> 2024-12-14 10:22:52,645 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries HTMLPhisher_2023.yar\r\n> 2024-12-14 10:22:52,645 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries HeavensGate.yar\r\n> 2024-12-14 10:22:52,645 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries IEuser_author_doc.yar\r\n> 2024-12-14 10:22:52,645 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries ISO_exec.yar\r\n> 2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries LNK_Ruleset.yar\r\n> 2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries MalScript_Tricks.yar\r\n> 2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries Maldoc_PDF.yar\r\n> 2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries OLEfile_in_CAD_FAS_LSP.yar\r\n> 2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries OneNote.yar\r\n> 2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries RoyalRoad_RTF.yar\r\n> 2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries Themida.yar\r\n> 2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries VMProtectStub.yar\r\n> 2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries Webshell_in_image.yar\r\n> 2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries embedded.yar\r\n> 2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries indicator_packed.yar\r\n> 2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries indicator_suspicious.yar\r\n> 2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries indicator_tools.yar\r\n> 2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries oAuth_Phishing_PDF.yar\r\n> 2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries ole_vba.yar\r\n> 2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries shellcodes.yar\r\n> 2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries susp_obfuscated_JS.yar\r\n> 2024-12-14 10:22:52,647 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries vmdetect.yar\r\n> 2024-12-14 10:22:52,672 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory Exploit_HT_Flash_Vars.yar\r\n> 2024-12-14 10:22:52,672 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory Exploit_HT_VRename.yar\r\n> 2024-12-14 10:22:52,672 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory adgholas.yar\r\n> 2024-12-14 10:22:52,672 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory angler.yar\r\n> 2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory astrum.yar\r\n> 2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory cve_2013_2551.yar\r\n> 2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory cve_2014_0515.yar\r\n> 2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory cve_2014_0569.yar\r\n> 2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory cve_2014_6332.yar\r\n> 2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory cve_2015_0016.yar\r\n> 2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory cve_2015_2419.yar\r\n> 2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory cve_2015_2545.yar\r\n> 2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory cve_2015_5122.yar\r\n> 2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory cve_2016_0189.yar\r\n> 2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory cve_2016_3298.yar\r\n> 2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory darkcomet.yar\r\n> 2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory eitest.yar\r\n> 2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory flash_exploits.yar\r\n> 2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory kazybot.yar\r\n> 2024-12-14 10:22:52,674 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory neutrino.yar\r\n> 2024-12-14 10:22:52,674 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory nuclear.yar\r\n> 2024-12-14 10:22:52,674 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory rig.yar\r\n> 2024-12-14 10:22:52,674 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory shellcodes.yar\r\n> 2024-12-14 10:22:52,674 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- memory sundown.yar\r\n> 2024-12-14 10:22:52,748 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE A310Logger.yar\r\n> 2024-12-14 10:22:52,749 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE AAR.yar\r\n> 2024-12-14 10:22:52,749 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE APT27.yar\r\n> 2024-12-14 10:22:52,749 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE ARCrypt.yar\r\n> 2024-12-14 10:22:52,749 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE AbubasbanditBot.yar\r\n> 2024-12-14 10:22:52,749 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE AcidRain.yar\r\n> 2024-12-14 10:22:52,749 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE ActionRAT.yar\r\n> 2024-12-14 10:22:52,749 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Adfind.yar\r\n> 2024-12-14 10:22:52,749 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Adzok.yar\r\n> 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE AgentRacoon.yar\r\n> 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE AgentTesla.yar\r\n> 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE AgnianeStealer.yar\r\n> 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Agrius.yar\r\n> 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Akira.yar\r\n> 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Alfonso.yar\r\n> 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE AlienCrypter.yar\r\n> 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE AlienSpy.yar\r\n> 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Alkhal.yar\r\n> 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE AllaKore.yar\r\n> 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Amadey.yar\r\n> 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Andromeda.yar\r\n> 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Ap0calypse.yar\r\n> 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Apocalypse.yar\r\n> 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Arcom.yar\r\n> 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Arechclient2.yar\r\n> 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Arkei.yar\r\n> 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE ArrowRAT.yar\r\n> 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Aspire.yar\r\n> 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE AsyncRAT.yar\r\n> 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Atlas.yar\r\n> 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Aurora.yar\r\n> 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE AuroraStealer.yar\r\n> 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Avaddon.yar\r\n> 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Avalon.yar\r\n> 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE AvosLocker.yar\r\n> 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Azer.yar\r\n> 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Azorult.yar\r\n> 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BACKSPACE.yar\r\n> 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BHunt.yar\r\n> 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Babuk.yar\r\n> 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BackNet.yar\r\n> 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BackOffLoader.yar\r\n> 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BackOffPOS.yar\r\n> 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BadJoke.yar\r\n> 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BadRabbit.yar\r\n> 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Bagle.yar\r\n> 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Baldr.yar\r\n> 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Bandit.yar\r\n> 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Bandook.yar\r\n> 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Banload.yar\r\n> 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Bazar.yar\r\n> 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BazarLoader.yar\r\n> 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BazarLoaderNim.yar\r\n> 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Beastdoor.yar\r\n> 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BetaBot.yar\r\n> 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BioPass.yar\r\n> 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BitCoinGrabber.yar\r\n> 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BitPaymer.yar\r\n> 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BitRAT.yar\r\n> 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BitterRAT.yar\r\n> 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BlackByte.yar\r\n> 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BlackByteGo.yar\r\n> 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BlackCat.yar\r\n> 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BlackDropper.yar\r\n> 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BlackHunt.yar\r\n> 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BlackMatter.yar\r\n> 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BlackNET.yar\r\n> 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BlackNix.yar\r\n> 2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BlackShades.yar\r\n> 2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BlackshadesRAT.yar\r\n> 2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BlankStealer.yar\r\n> 2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Blister.yar\r\n> 2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BlitzGrabber.yar\r\n> 2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BlueBanana.yar\r\n> 2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BlueBot.yar\r\n> 2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Bobik.yar\r\n> 2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BoxCaon.yar\r\n> 2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Bozok.yar\r\n> 2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BrbBot.yar\r\n> 2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BreakStaf.yar\r\n> 2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BreakWin.yar\r\n> 2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BroEx.yar\r\n> 2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BruteRatel.yar\r\n> 2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BuerLoader.yar\r\n> 2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE BumbleBee.yar\r\n> 2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Buran.yar\r\n> 2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE ButeRAT.yar\r\n> 2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE CRAT.yar\r\n> 2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Caliber.yar\r\n> 2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Carbanak.yar\r\n> 2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE CargoBayLoader.yar\r\n> 2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE CasperTroy.yar\r\n> 2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Cerber.yar\r\n> 2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE ChChes.yar\r\n> 2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE ChaChaDDoS.yar\r\n> 2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Chaos.yar\r\n> 2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Chinotto.yar\r\n> 2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Chuwi.yar\r\n> 2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE ClientMesh.yar\r\n> 2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE ClipBanker.yar\r\n> 2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Clop.yar\r\n> 2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE CobaltStrikeBeacon.yar\r\n> 2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE CobaltStrikeStager.yar\r\n> 2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE CobianRAT.yar\r\n> 2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Codoso.yar\r\n> 2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE CoinMiners.yar\r\n> 2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE CoinMiningBot.yar\r\n> 2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE CommonMagic.yar\r\n> 2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Confucius_B.yar\r\n> 2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Conti.yar\r\n> 2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE CookieStealer.yar\r\n> 2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE CoreBot.yar\r\n> 2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Covenant.yar\r\n> 2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE CrimsonRAT.yar\r\n> 2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE Crown.yar\r\n> 2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE CryLock.yar\r\n> 2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE CryptBot.yar\r\n> 2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE CryptoLocker.yar\r\n> 2024-12-14\nComment: > Does it has lumma Yara detection? I don't see any error there El s\u00e1b, 14 dic 2024, 10:32, marsomx ***@***.***> escribi\u00f3:\r\n> [\u2026](#)\r\n> np, strange, no you don't need to do nothing else, you just need to have installed cape-parsers which is part of pyproject.toml. did you restart processing? if yes, can you do next as cape user: - cd /opt/CAPEv2/utils && poetry run python process.py -r <task_id> -d so that should give us an clue i submitted a lumma payoad (dumped from previous analysis) and this is the result of mentioned command 2024-12-14 10:22:51,548 [root] DEBUG: Importing modules... 2024-12-14 10:22:51,550 [modules.auxiliary.QemuScreenshots] DEBUG: Importing 'PIL.ImageChops.difference' 2024-12-14 10:22:51,550 [modules.auxiliary.QemuScreenshots] DEBUG: Importing 'PIL.ImageDraw' 2024-12-14 10:22:51,551 [modules.auxiliary.QemuScreenshots] DEBUG: Importing 'PIL.Image' 2024-12-14 10:22:51,551 [modules.auxiliary.QemuScreenshots] ERROR: No module named 'libvirt' OPTIONAL! Missed dependency: poetry run pip install peepdf-3 pip3 install certvalidator asn1crypto mscerts OPTIONAL! Missed dependency: poetry run pip install -U git+https://github.com/DissectMalware/batch_deobfuscator OPTIONAL! Missed dependency: poetry run pip install -U git+https://github.com/CAPESandbox/httpreplay 2024-12-14 <https://github.com/CAPESandbox/httpreplay2024-12-14> 10:22:52,202 [capa.rules] DEBUG: reading rules from directory /opt/CAPEv2/data/capa-rules 2024-12-14 10:22:52,228 [capa.rules.cache] DEBUG: loading rule set from cache: /home/cape/.cache/capa/capa-8c6bac93.cache 2024-12-14 10:22:52,333 [capa.loader] DEBUG: reading signatures from directory /opt/CAPEv2/data/flare-signatures 2024-12-14 10:22:52,333 [capa.loader] DEBUG: found signature file: /opt/CAPEv2/data/flare-signatures/1_flare_msvc_rtf_32_64.sig 2024-12-14 10:22:52,333 [capa.loader] DEBUG: found signature file: /opt/CAPEv2/data/flare-signatures/2_flare_msvc_atlmfc_32_64.sig 2024-12-14 10:22:52,333 [capa.loader] DEBUG: found signature file: /opt/CAPEv2/data/flare-signatures/3_flare_common_libs.sig 2024-12-14 10:22:52,335 [root] DEBUG: Imported \"auxiliary\" modules: 2024-12-14 10:22:52,336 [root] DEBUG: |-- AzSniffer 2024-12-14 10:22:52,336 [root] DEBUG: |-- Mitmdump 2024-12-14 10:22:52,336 [root] DEBUG: |-- QEMUScreenshots 2024-12-14 10:22:52,336 [root] DEBUG: `-- Sniffer 2024-12-14 10:22:52,336 [root] DEBUG: Imported \"processing\" modules: 2024-12-14 10:22:52,336 [root] DEBUG: |-- CAPE 2024-12-14 10:22:52,336 [root] DEBUG: |-- AnalysisInfo 2024-12-14 10:22:52,336 [root] DEBUG: |-- Autoruns 2024-12-14 10:22:52,336 [root] DEBUG: |-- BehaviorAnalysis 2024-12-14 10:22:52,336 [root] DEBUG: |-- Debug 2024-12-14 10:22:52,336 [root] DEBUG: |-- NetworkAnalysis 2024-12-14 10:22:52,336 [root] DEBUG: |-- ProcessMemory 2024-12-14 10:22:52,336 [root] DEBUG: |-- script_log_processing 2024-12-14 10:22:52,336 [root] DEBUG: |-- Suricata 2024-12-14 10:22:52,336 [root] DEBUG: `-- UrlAnalysis 2024-12-14 10:22:52,336 [root] DEBUG: Imported \"signatures\" modules: 2024-12-14 10:22:52,336 [root] DEBUG: |-- ClamAV 2024-12-14 10:22:52,336 [root] DEBUG: |-- KnownVirustotal 2024-12-14 10:22:52,336 [root] DEBUG: |-- BadCerts 2024-12-14 10:22:52,336 [root] DEBUG: |-- BadSSLCerts 2024-12-14 10:22:52,336 [root] DEBUG: |-- ZeusP2P 2024-12-14 10:22:52,336 [root] DEBUG: |-- ZeusURL 2024-12-14 10:22:52,336 [root] DEBUG: |-- AthenaHttp 2024-12-14 10:22:52,336 [root] DEBUG: |-- DirtJumper 2024-12-14 10:22:52,337 [root] DEBUG: |-- Drive 2024-12-14 10:22:52,337 [root] DEBUG: |-- Drive2 2024-12-14 10:22:52,337 [root] DEBUG: |-- Madness 2024-12-14 10:22:52,337 [root] DEBUG: |-- FamilyProxyBack 2024-12-14 10:22:52,337 [root] DEBUG: |-- FlareCAPAAntiAnalysis 2024-12-14 10:22:52,337 [root] DEBUG: |-- FlareCAPACollection 2024-12-14 10:22:52,337 [root] DEBUG: |-- FlareCAPACompiler 2024-12-14 10:22:52,337 [root] DEBUG: |-- FlareCAPADataManipulation 2024-12-14 10:22:52,337 [root] DEBUG: |-- FlareCAPAExecutable 2024-12-14 10:22:52,337 [root] DEBUG: |-- FlareCAPAHostInteration 2024-12-14 10:22:52,337 [root] DEBUG: |-- FlareCAPAcommunication 2024-12-14 10:22:52,337 [root] DEBUG: |-- FlareCAPALib 2024-12-14 10:22:52,337 [root] DEBUG: |-- FlareCAPALinking 2024-12-14 10:22:52,337 [root] DEBUG: |-- FlareCAPALoadCode 2024-12-14 10:22:52,337 [root] DEBUG: |-- FlareCAPAMalwareFamily 2024-12-14 10:22:52,337 [root] DEBUG: |-- FlareCAPANursery 2024-12-14 10:22:52,337 [root] DEBUG: |-- FlareCAPAPersistence 2024-12-14 10:22:52,337 [root] DEBUG: |-- FlareCAPARuntime 2024-12-14 10:22:52,337 [root] DEBUG: |-- FlareCAPATargeting 2024-12-14 10:22:52,337 [root] DEBUG: |-- Log4j 2024-12-14 10:22:52,337 [root] DEBUG: |-- MimicsExtension 2024-12-14 10:22:52,337 [root] DEBUG: |-- NetworkCountryDistribution 2024-12-14 10:22:52,337 [root] DEBUG: |-- NetworkMultipleDirectIPConnections 2024-12-14 10:22:52,337 [root] DEBUG: |-- NetworkCnCHTTP 2024-12-14 10:22:52,338 [root] DEBUG: |-- NetworkHTTPPOST 2024-12-14 10:22:52,338 [root] DEBUG: |-- NetworkIPEXE 2024-12-14 10:22:52,338 [root] DEBUG: |-- NetworkDGA 2024-12-14 10:22:52,338 [root] DEBUG: |-- NetworkDGAFraunhofer 2024-12-14 10:22:52,338 [root] DEBUG: |-- NetworkDynDNS 2024-12-14 10:22:52,338 [root] DEBUG: |-- NetworkExcessiveUDP 2024-12-14 10:22:52,338 [root] DEBUG: |-- NetworkHTTP 2024-12-14 10:22:52,338 [root] DEBUG: |-- NetworkICMP 2024-12-14 10:22:52,338 [root] DEBUG: |-- NetworkIRC 2024-12-14 10:22:52,338 [root] DEBUG: |-- NetworkOpenProxy 2024-12-14 10:22:52,338 [root] DEBUG: |-- NetworkP2P 2024-12-14 10:22:52,338 [root] DEBUG: |-- NetworkQuestionableHost 2024-12-14 10:22:52,338 [root] DEBUG: |-- NetworkQuestionableHttpPath 2024-12-14 10:22:52,338 [root] DEBUG: |-- NetworkQuestionableHttpsPath 2024-12-14 10:22:52,338 [root] DEBUG: |-- NetworkSMTP 2024-12-14 10:22:52,338 [root] DEBUG: |-- TorGateway 2024-12-14 10:22:52,338 [root] DEBUG: |-- BuildLangID 2024-12-14 10:22:52,338 [root] DEBUG: |-- ResourceLangID 2024-12-14 10:22:52,338 [root] DEBUG: |-- overlay 2024-12-14 10:22:52,338 [root] DEBUG: |-- PackerUnknownPESectionName 2024-12-14 10:22:52,338 [root] DEBUG: |-- ASPackPacked 2024-12-14 10:22:52,338 [root] DEBUG: |-- AspireCryptPacked 2024-12-14 10:22:52,338 [root] DEBUG: |-- BedsProtectorPacked 2024-12-14 10:22:52,338 [root] DEBUG: |-- ConfuserPacked 2024-12-14 10:22:52,338 [root] DEBUG: |-- EnigmaPacked 2024-12-14 10:22:52,339 [root] DEBUG: |-- PackerEntropy 2024-12-14 10:22:52,339 [root] DEBUG: |-- MPressPacked 2024-12-14 10:22:52,339 [root] DEBUG: |-- NatePacked 2024-12-14 10:22:52,339 [root] DEBUG: |-- NsPacked 2024-12-14 10:22:52,339 [root] DEBUG: |-- SmartAssemblyPacked 2024-12-14 10:22:52,339 [root] DEBUG: |-- SpicesPacked 2024-12-14 10:22:52,339 [root] DEBUG: |-- ThemidaPacked 2024-12-14 10:22:52,339 [root] DEBUG: |-- ThemidaPackedSection 2024-12-14 10:22:52,339 [root] DEBUG: |-- TitanPacked 2024-12-14 10:22:52,339 [root] DEBUG: |-- UPXCompressed 2024-12-14 10:22:52,339 [root] DEBUG: |-- VMPPacked 2024-12-14 10:22:52,339 [root] DEBUG: |-- YodaPacked 2024-12-14 10:22:52,339 [root] DEBUG: |-- PDF_Annot_URLs 2024-12-14 10:22:52,339 [root] DEBUG: |-- Polymorphic 2024-12-14 10:22:52,339 [root] DEBUG: |-- PunchPlusPlusPCREs 2024-12-14 10:22:52,339 [root] DEBUG: |-- Procmem_Yara 2024-12-14 10:22:52,339 [root] DEBUG: |-- CheckIP 2024-12-14 10:22:52,339 [root] DEBUG: |-- Authenticode 2024-12-14 10:22:52,339 [root] DEBUG: |-- InvalidAuthenticodeSignature 2024-12-14 10:22:52,339 [root] DEBUG: |-- DotNetAnomaly 2024-12-14 10:22:52,339 [root] DEBUG: |-- Static_Java 2024-12-14 10:22:52,339 [root] DEBUG: |-- Static_PDF 2024-12-14 10:22:52,339 [root] DEBUG: |-- PEAnomaly 2024-12-14 10:22:52,339 [root] DEBUG: |-- PECompileTimeStomping 2024-12-14 10:22:52,339 [root] DEBUG: |-- StaticPEPDBPath 2024-12-14 10:22:52,339 [root] DEBUG: |-- RATConfig 2024-12-14 10:22:52,340 [root] DEBUG: |-- VersionInfoAnomaly 2024-12-14 10:22:52,340 [root] DEBUG: |-- StealthNetwork 2024-12-14 10:22:52,340 [root] DEBUG: |-- SuricataAlert 2024-12-14 10:22:52,340 [root] DEBUG: |-- VolDevicetree1 2024-12-14 10:22:52,340 [root] DEBUG: |-- VolHandles1 2024-12-14 10:22:52,340 [root] DEBUG: |-- VolLdrModules1 2024-12-14 10:22:52,340 [root] DEBUG: |-- VolLdrModules2 2024-12-14 10:22:52,340 [root] DEBUG: |-- VolMalfind1 2024-12-14 10:22:52,340 [root] DEBUG: |-- VolMalfind2 2024-12-14 10:22:52,340 [root] DEBUG: |-- VolModscan1 2024-12-14 10:22:52,340 [root] DEBUG: |-- VolSvcscan1 2024-12-14 10:22:52,340 [root] DEBUG: |-- VolSvcscan2 2024-12-14 10:22:52,340 [root] DEBUG: |-- VolSvcscan3 2024-12-14 10:22:52,340 [root] DEBUG: |-- WHOIS_Create 2024-12-14 10:22:52,340 [root] DEBUG: |-- AccessesMailslot 2024-12-14 10:22:52,340 [root] DEBUG: |-- AccessesNetlogonRegkey 2024-12-14 10:22:52,340 [root] DEBUG: |-- AccessesPublicFolder 2024-12-14 10:22:52,340 [root] DEBUG: |-- AccessesSysvol 2024-12-14 10:22:52,340 [root] DEBUG: |-- WritesSysvol 2024-12-14 10:22:52,340 [root] DEBUG: |-- AddsAdminUser 2024-12-14 10:22:52,340 [root] DEBUG: |-- AddsUser 2024-12-14 10:22:52,340 [root] DEBUG: |-- OverwritesAdminPassword 2024-12-14 10:22:52,340 [root] DEBUG: |-- anomalous_deletefile 2024-12-14 10:22:52,340 [root] DEBUG: |-- AntiAnalysisDetectFile 2024-12-14 10:22:52,340 [root] DEBUG: |-- AntiAnalysisDetectReg 2024-12-14 10:22:52,341 [root] DEBUG: |-- QihooDetectLibs 2024-12-14 10:22:52,341 [root] DEBUG: |-- AhnlabDetectLibs 2024-12-14 10:22:52,341 [root] DEBUG: |-- AvastDetectLibs 2024-12-14 10:22:52,341 [root] DEBUG: |-- BitdefenderDetectLibs 2024-12-14 10:22:52,341 [root] DEBUG: |-- BullguardDetectLibs 2024-12-14 10:22:52,341 [root] DEBUG: |-- ModifiesAttachmentManager 2024-12-14 10:22:52,341 [root] DEBUG: |-- AntiAVDetectFile 2024-12-14 10:22:52,341 [root] DEBUG: |-- AntiAVDetectReg 2024-12-14 10:22:52,341 [root] DEBUG: |-- EmsisoftDetectLibs 2024-12-14 10:22:52,341 [root] DEBUG: |-- QurbDetectLibs 2024-12-14 10:22:52,341 [root] DEBUG: |-- AntiAVServiceStop 2024-12-14 10:22:52,341 [root] DEBUG: |-- AntiAVSRP 2024-12-14 10:22:52,341 [root] DEBUG: |-- AntiAVWhitespace 2024-12-14 10:22:52,341 [root] DEBUG: |-- antidebug_addvectoredexceptionhandler 2024-12-14 10:22:52,341 [root] DEBUG: |-- APIOverrideDetectLibs 2024-12-14 10:22:52,341 [root] DEBUG: |-- antidebug_checkremotedebuggerpresent 2024-12-14 10:22:52,341 [root] DEBUG: |-- antidebug_debugactiveprocess 2024-12-14 10:22:52,341 [root] DEBUG: |-- AntiDBGDevices 2024-12-14 10:22:52,341 [root] DEBUG: |-- antidebug_gettickcount 2024-12-14 10:22:52,341 [root] DEBUG: |-- antidebug_guardpages 2024-12-14 10:22:52,341 [root] DEBUG: |-- antidebug_ntcreatethreadex 2024-12-14 10:22:52,341 [root] DEBUG: |-- BullguardDetectLibs 2024-12-14 10:22:52,341 [root] DEBUG: |-- antidebug_ntsetinformationthread 2024-12-14 10:22:52,341 [root] DEBUG: |-- antidebug_outputdebugstring 2024-12-14 10:22:52,341 [root] DEBUG: |-- antidebug_setunhandledexceptionfilter 2024-12-14 10:22:52,341 [root] DEBUG: |-- AntiDBGWindows 2024-12-14 10:22:52,342 [root] DEBUG: |-- AntiEmuWinDefend 2024-12-14 10:22:52,342 [root] DEBUG: |-- WineDetectReg 2024-12-14 10:22:52,342 [root] DEBUG: |-- WineDetectFunc 2024-12-14 10:22:52,342 [root] DEBUG: |-- AntiSandboxCheckUserdomain 2024-12-14 10:22:52,342 [root] DEBUG: |-- AntiCuckoo 2024-12-14 10:22:52,342 [root] DEBUG: |-- CuckooDetectFiles 2024-12-14 10:22:52,342 [root] DEBUG: |-- CuckooCrash 2024-12-14 10:22:52,342 [root] DEBUG: |-- AntiSandboxForegroundWindow 2024-12-14 10:22:52,342 [root] DEBUG: |-- FortinetDetectFiles 2024-12-14 10:22:52,342 [root] DEBUG: |-- SandboxJoeAnubisDetectFiles 2024-12-14 10:22:52,342 [root] DEBUG: |-- HookMouse 2024-12-14 10:22:52,342 [root] DEBUG: |-- AntiSandboxRestart 2024-12-14 10:22:52,342 [root] DEBUG: |-- SandboxieDetectLibs 2024-12-14 10:22:52,342 [root] DEBUG: |-- AntisandboxSboxieMutex 2024-12-14 10:22:52,342 [root] DEBUG: |-- AntiSandboxSboxieObjects 2024-12-14 10:22:52,342 [root] DEBUG: |-- AntiSandboxScriptTimer 2024-12-14 10:22:52,342 [root] DEBUG: |-- AntiSandboxSleep 2024-12-14 10:22:52,342 [root] DEBUG: |-- SunbeltDetectFiles 2024-12-14 10:22:52,342 [root] DEBUG: |-- SunbeltDetectLibs 2024-12-14 10:22:52,342 [root] DEBUG: |-- AntiSandboxSuspend 2024-12-14 10:22:52,342 [root] DEBUG: |-- ThreatTrackDetectFiles 2024-12-14 10:22:52,342 [root] DEBUG: |-- Unhook 2024-12-14 10:22:52,342 [root] DEBUG: |-- BochsDetectKeys 2024-12-14 10:22:52,342 [root] DEBUG: |-- AntiVMDirectoryObjects 2024-12-14 10:22:52,342 [root] DEBUG: |-- AntiVMBios 2024-12-14 10:22:52,342 [root] DEBUG: |-- AntiVMCPU 2024-12-14 10:22:52,343 [root] DEBUG: |-- DiskInformation 2024-12-14 10:22:52,343 [root] DEBUG: |-- SetupAPIDiskInformation 2024-12-14 10:22:52,343 [root] DEBUG: |-- AntiVMDiskReg 2024-12-14 10:22:52,343 [root] DEBUG: |-- AntiVMSCSI 2024-12-14 10:22:52,343 [root] DEBUG: |-- AntiVMServices 2024-12-14 10:22:52,343 [root] DEBUG: |-- AntiVMSystem 2024-12-14 10:22:52,343 [root] DEBUG: |-- HyperVDetectKeys 2024-12-14 10:22:52,343 [root] DEBUG: |-- AntiVMChecksAvailableMemory 2024-12-14 10:22:52,343 [root] DEBUG: |-- NetworkAdapters 2024-12-14 10:22:52,343 [root] DEBUG: |-- ParallelsDetectKeys 2024-12-14 10:22:52,343 [root] DEBUG: |-- VBoxDetectDevices 2024-12-14 10:22:52,343 [root] DEBUG: |-- VBoxDetectFiles 2024-12-14 10:22:52,343 [root] DEBUG: |-- VBoxDetectKeys 2024-12-14 10:22:52,343 [root] DEBUG: |-- VBoxDetectLibs 2024-12-14 10:22:52,343 [root] DEBUG: |-- VBoxDetectProvname 2024-12-14 10:22:52,343 [root] DEBUG: |-- VBoxDetectWindow 2024-12-14 10:22:52,343 [root] DEBUG: |-- VMwareDetectDevices 2024-12-14 10:22:52,343 [root] DEBUG: |-- VMwareDetectEvent 2024-12-14 10:22:52,343 [root] DEBUG: |-- VMwareDetectFiles 2024-12-14 10:22:52,343 [root] DEBUG: |-- VMwareDetectKeys 2024-12-14 10:22:52,343 [root] DEBUG: |-- VMwareDetectLibs 2024-12-14 10:22:52,343 [root] DEBUG: |-- VMwareDetectMutexes 2024-12-14 10:22:52,343 [root] DEBUG: |-- VPCDetectFiles 2024-12-14 10:22:52,343 [root] DEBUG: |-- VPCDetectKeys 2024-12-14 10:22:52,344 [root] DEBUG: |-- VPCDetectMutex 2024-12-14 10:22:52,344 [root] DEBUG: |-- XenDetectKeys 2024-12-14 10:22:52,344 [root] DEBUG: |-- APISpamming 2024-12-14 10:22:52,344 [root] DEBUG: |-- api_uuidfromstringa 2024-12-14 10:22:52,344 [root] DEBUG: |-- AsyncRatMutex 2024-12-14 10:22:52,344 [root] DEBUG: |-- GulpixBehavior 2024-12-14 10:22:52,344 [root] DEBUG: |-- KetricanRegkeys 2024-12-14 10:22:52,344 [root] DEBUG: |-- OkrumMutexes 2024-12-14 10:22:52,344 [root] DEBUG: |-- Cridex 2024-12-14 10:22:52,344 [root] DEBUG: |-- Geodo 2024-12-14 10:22:52,345 [root] DEBUG: |-- Prinimalka 2024-12-14 10:22:52,345 [root] DEBUG: |-- SpyEyeMutexes 2024-12-14 10:22:52,345 [root] DEBUG: |-- ZeusMutexes 2024-12-14 10:22:52,345 [root] DEBUG: |-- BCDEditCommand 2024-12-14 10:22:52,345 [root] DEBUG: |-- BitcoinOpenCL 2024-12-14 10:22:52,345 [root] DEBUG: |-- AccessesPrimaryPartition 2024-12-14 10:22:52,345 [root] DEBUG: |-- Bootkit 2024-12-14 10:22:52,345 [root] DEBUG: |-- DirectHDDAccess 2024-12-14 10:22:52,345 [root] DEBUG: |-- EnumeratesPhysicalDrives 2024-12-14 10:22:52,345 [root] DEBUG: |-- PhysicalDriveAccess 2024-12-14 10:22:52,345 [root] DEBUG: |-- PotentialOverWriteMBR 2024-12-14 10:22:52,345 [root] DEBUG: |-- SuspiciousIoctlSCSIPassthough 2024-12-14 10:22:52,345 [root] DEBUG: |-- Ruskill 2024-12-14 10:22:52,345 [root] DEBUG: |-- BrowserAddon 2024-12-14 10:22:52,345 [root] DEBUG: |-- ChromiumBrowserExtensionDirectory 2024-12-14 10:22:52,345 [root] DEBUG: |-- BrowserHelperObject 2024-12-14 10:22:52,346 [root] DEBUG: |-- BrowserNeeded 2024-12-14 10:22:52,346 [root] DEBUG: |-- ModifyProxy 2024-12-14 10:22:52,346 [root] DEBUG: |-- BrowserScanbox 2024-12-14 10:22:52,346 [root] DEBUG: |-- BrowserSecurity 2024-12-14 10:22:52,346 [root] DEBUG: |-- browser_startpage 2024-12-14 10:22:52,346 [root] DEBUG: |-- FirefoxDisablesProcessPerTab 2024-12-14 10:22:52,346 [root] DEBUG: |-- IEDisablesProcessPerTab 2024-12-14 10:22:52,346 [root] DEBUG: |-- OdbcconfBypass 2024-12-14 10:22:52,346 [root] DEBUG: |-- RegSrv32SquiblydooDLLLoad 2024-12-14 10:22:52,346 [root] DEBUG: |-- SquiblydooBypass 2024-12-14 10:22:52,346 [root] DEBUG: |-- SquiblytwoBypass 2024-12-14 10:22:52,347 [root] DEBUG: |-- BypassFirewall 2024-12-14 10:22:52,347 [root] DEBUG: |-- UACBypassCMSTP 2024-12-14 10:22:52,347 [root] DEBUG: |-- UACBypassCMSTPCOM 2024-12-14 10:22:52,347 [root] DEBUG: |-- UACBypassDelegateExecuteSdclt 2024-12-14 10:22:52,347 [root] DEBUG: |-- UACBypassEventvwr 2024-12-14 10:22:52,347 [root] DEBUG: |-- UACBypassFodhelper 2024-12-14 10:22:52,347 [root] DEBUG: |-- CAPEExtractedContent 2024-12-14 10:22:52,347 [root] DEBUG: |-- CarberpMutexes 2024-12-14 10:22:52,347 [root] DEBUG: |-- ClearsLogs 2024-12-14 10:22:52,347 [root] DEBUG: |-- ClickfraudCookies 2024-12-14 10:22:52,347 [root] DEBUG: |-- ClickfraudVolume 2024-12-14 10:22:52,347 [root] DEBUG: |-- CmdlineObfuscation 2024-12-14 10:22:52,347 [root] DEBUG: |-- CmdlineSwitches 2024-12-14 10:22:52,347 [root] DEBUG: |-- CmdlineTerminate 2024-12-14 10:22:52,347 [root] DEBUG: |-- CommandLineForFilesWildCard 2024-12-14 10:22:52,347 [root] DEBUG: |-- CommandLineHTTPLink 2024-12-14 10:22:52,347 [root] DEBUG: |-- CommandLineLongString 2024-12-14 10:22:52,348 [root] DEBUG: |-- CommandLineReversedHTTPLink 2024-12-14 10:22:52,348 [root] DEBUG: |-- LongCommandline 2024-12-14 10:22:52,348 [root] DEBUG: |-- PowershellRenamedCommandLine 2024-12-14 10:22:52,348 [root] DEBUG: |-- SystemAccountDiscoveryCMD 2024-12-14 10:22:52,348 [root] DEBUG: |-- SystemCurrentlyLoggedinUserCMD 2024-12-14 10:22:52,348 [root] DEBUG: |-- SystemInfoDiscoveryCMD 2024-12-14 10:22:52,348 [root] DEBUG: |-- SystemInfoDiscoveryPWSH 2024-12-14 10:22:52,348 [root] DEBUG: |-- SystemNetworkDiscoveryCMD 2024-12-14 10:22:52,348 [root] DEBUG: |-- SystemNetworkDiscoveryPWSH 2024-12-14 10:22:52,348 [root] DEBUG: |-- SystemUserDiscoveryCMD 2024-12-14 10:22:52,348 [root] DEBUG: |-- CompilesDotNetCode 2024-12-14 10:22:52,348 [root] DEBUG: |-- CopiesSelf 2024-12-14 10:22:52,348 [root] DEBUG: |-- CreatesExe 2024-12-14 10:22:52,348 [root] DEBUG: |-- CreatesLargeKey 2024-12-14 10:22:52,348 [root] DEBUG: |-- CreatesNullValue 2024-12-14 10:22:52,348 [root] DEBUG: |-- CredWiz 2024-12-14 10:22:52,348 [root] DEBUG: |-- EnablesWDigest 2024-12-14 10:22:52,349 [root] DEBUG: |-- VaultCmd 2024-12-14 10:22:52,349 [root] DEBUG: |-- FileCredentialStoreAccess 2024-12-14 10:22:52,349 [root] DEBUG: |-- FileCredentialStoreWrite 2024-12-14 10:22:52,349 [root] DEBUG: |-- LsassCredentialDumping 2024-12-14 10:22:52,349 [root] DEBUG: |-- RegistryCredentialDumping 2024-12-14 10:22:52,349 [root] DEBUG: |-- RegistryCredentialStoreAccess 2024-12-14 10:22:52,349 [root] DEBUG: |-- RegistryLSASecretsAccess 2024-12-14 10:22:52,349 [root] DEBUG: |-- ComsvcsCredentialDump 2024-12-14 10:22:52,349 [root] DEBUG: |-- CriticalProcess 2024-12-14 10:22:52,349 [root] DEBUG: |-- CryptGenKey 2024-12-14 10:22:52,349 [root] DEBUG: |-- CryptominingStratumCommand 2024-12-14 10:22:52,349 [root] DEBUG: |-- MINERS 2024-12-14 10:22:52,349 [root] DEBUG: |-- CVE_2014_6332 2024-12-14 10:22:52,349 [root] DEBUG: |-- CVE2015_2419_JS 2024-12-14 10:22:52,349 [root] DEBUG: |-- CVE_2016_0189 2024-12-14 10:22:52,349 [root] DEBUG: |-- CVE_2016_7200 2024-12-14 10:22:52,349 [root] DEBUG: |-- CypherITMutexes 2024-12-14 10:22:52,350 [root] DEBUG: |-- DarkCometRegkeys 2024-12-14 10:22:52,350 [root] DEBUG: |-- DatopLoader 2024-12-14 10:22:52,350 [root] DEBUG: |-- DeadConnect 2024-12-14 10:22:52,350 [root] DEBUG: |-- DeadLink 2024-12-14 10:22:52,350 [root] DEBUG: |-- DebugsSelf 2024-12-14 10:22:52,350 [root] DEBUG: |-- DecoyDocument 2024-12-14 10:22:52,350 [root] DEBUG: |-- DecoyImage 2024-12-14 10:22:52,350 [root] DEBUG: |-- DeepFreezeMutex 2024-12-14 10:22:52,350 [root] DEBUG: |-- DeletesExecutedFiles 2024-12-14 10:22:52,350 [root] DEBUG: |-- DeletesSelf 2024-12-14 10:22:52,350 [root] DEBUG: |-- DeletesShadowCopies 2024-12-14 10:22:52,350 [root] DEBUG: |-- DeletesSystemStateBackup 2024-12-14 10:22:52,350 [root] DEBUG: |-- DEPBypass 2024-12-14 10:22:52,350 [root] DEBUG: |-- DEPDisable 2024-12-14 10:22:52,350 [root] DEBUG: |-- DisablesAppLaunch 2024-12-14 10:22:52,350 [root] DEBUG: |-- DisablesAutomaticAppTermination 2024-12-14 10:22:52,350 [root] DEBUG: |-- DisablesAppVirtualiztion 2024-12-14 10:22:52,350 [root] DEBUG: |-- DisablesBackups 2024-12-14 10:22:52,351 [root] DEBUG: |-- DisablesBrowserWarn 2024-12-14 10:22:52,351 [root] DEBUG: |-- DisablesContextMenus 2024-12-14 10:22:52,351 [root] DEBUG: |-- DisablesCPLDisplay 2024-12-14 10:22:52,351 [root] DEBUG: |-- DisablesCrashdumps 2024-12-14 10:22:52,351 [root] DEBUG: |-- DisablesMappedDrivesAutodisconnect 2024-12-14 10:22:52,351 [root] DEBUG: |-- DisablesEventLogging 2024-12-14 10:22:52,351 [root] DEBUG: |-- DisableFolderOptions 2024-12-14 10:22:52,351 [root] DEBUG: |-- DisablesNotificationCenter 2024-12-14 10:22:52,351 [root] DEBUG: |-- DisablesPowerOptions 2024-12-14 10:22:52,351 [root] DEBUG: |-- DisablesRestoreDefaultState 2024-12-14 10:22:52,351 [root] DEBUG: |-- DisableRunCommand 2024-12-14 10:22:52,351 [root] DEBUG: |-- DisablesSecurity 2024-12-14 10:22:52,351 [root] DEBUG: |-- DisablesSmartScreen 2024-12-14 10:22:52,351 [root] DEBUG: |-- DisablesSPDY 2024-12-14 10:22:52,351 [root] DEBUG: |-- DisablesStartMenuSearch 2024-12-14 10:22:52,351 [root] DEBUG: |-- DisablesSystemRestore 2024-12-14 10:22:52,351 [root] DEBUG: |-- DisablesUAC 2024-12-14 10:22:52,351 [root] DEBUG: |-- DisablesWER 2024-12-14 10:22:52,351 [root] DEBUG: |-- DisablesWFP 2024-12-14 10:22:52,351 [root] DEBUG: |-- DisablesWindowsDefender 2024-12-14 10:22:52,351 [root] DEBUG: |-- DisablesWindowsDefenderDISM 2024-12-14 10:22:52,351 [root] DEBUG: |-- DisablesWindowsDefenderLogging 2024-12-14 10:22:52,351 [root] DEBUG: |-- RemovesWindowsDefenderContextMenu 2024-12-14 10:22:52,351 [root] DEBUG: |-- WindowsDefenderPowerShell 2024-12-14 10:22:52,351 [root] DEBUG: |-- DisablesWindowsFileProtection 2024-12-14 10:22:52,352 [root] DEBUG: |-- DisablesWindowsUpdate 2024-12-14 10:22:52,352 [root] DEBUG: |-- DisablesWindowsFirewall 2024-12-14 10:22:52,352 [root] DEBUG: |-- DllLoadUncommonFileTypes 2024-12-14 10:22:52,352 [root] DEBUG: |-- DocScriptEXEDrop 2024-12-14 10:22:52,352 [root] DEBUG: |-- AdfindDomainEnumeration 2024-12-14 10:22:52,352 [root] DEBUG: |-- DomainEnumerationCommands 2024-12-14 10:22:52,352 [root] DEBUG: |-- AndromutMutexes 2024-12-14 10:22:52,352 [root] DEBUG: |-- DownloaderCabby 2024-12-14 10:22:52,352 [root] DEBUG: |-- GuLoaderAPIs 2024-12-14 10:22:52,352 [root] DEBUG: |-- PhorpiexMutexes 2024-12-14 10:22:52,352 [root] DEBUG: |-- ProtonBotMutexes 2024-12-14 10:22:52,352 [root] DEBUG: |-- DriverFilterManager 2024-12-14 10:22:52,352 [root] DEBUG: |-- DriverLoad 2024-12-14 10:22:52,352 [root] DEBUG: |-- Dropper 2024-12-14 10:22:52,352 [root] DEBUG: |-- EXEDropper_JS 2024-12-14 10:22:52,352 [root] DEBUG: |-- dynamic_function_loading 2024-12-14 10:22:52,352 [root] DEBUG: |-- DLLArchiveExecution 2024-12-14 10:22:52,352 [root] DEBUG: |-- LNKArchiveExecution 2024-12-14 10:22:52,352 [root] DEBUG: |-- ScriptArchiveExecution 2024-12-14 10:22:52,352 [root] DEBUG: |-- EncryptedIOC 2024-12-14 10:22:52,352 [root] DEBUG: |-- Excel4MacroUrls 2024-12-14 10:22:52,352 [root] DEBUG: |-- Crash 2024-12-14 10:22:52,352 [root] DEBUG: |-- ProcessCreationSuspiciousLocation 2024-12-14 10:22:52,353 [root] DEBUG: |-- exploit_getbasekerneladdress 2024-12-14 10:22:52,353 [root] DEBUG: |-- exploit_gethaldispatchtable 2024-12-14 10:22:52,353 [root] DEBUG: |-- ExploitHeapspray 2024-12-14 10:22:52,353 [root] DEBUG: |-- SpoolerAccess 2024-12-14 10:22:52,353 [root] DEBUG: |-- SpoolerSvcStart 2024-12-14 10:22:52,353 [root] DEBUG: |-- KoadicAPIs 2024-12-14 10:22:52,353 [root] DEBUG: |-- KoadicNetworkActivity 2024-12-14 10:22:52,353 [root] DEBUG: |-- Modiloader_APIs 2024-12-14 10:22:52,353 [root] DEBUG: |-- MappedDrivesUAC 2024-12-14 10:22:52,353 [root] DEBUG: |-- SystemMetrics 2024-12-14 10:22:52,353 [root] DEBUG: |-- Generic_Phish 2024-12-14 10:22:52,353 [root] DEBUG: |-- HidesRecycleBinIcon 2024-12-14 10:22:52,353 [root] DEBUG: |-- HTTP_Request 2024-12-14 10:22:52,353 [root] DEBUG: |-- ApocalypseStealerFileBehavior 2024-12-14 10:22:52,353 [root] DEBUG: |-- ArkeiFiles 2024-12-14 10:22:52,353 [root] DEBUG: |-- AzorultMutexes 2024-12-14 10:22:52,353 [root] DEBUG: |-- BitcoinWallet 2024-12-14 10:22:52,353 [root] DEBUG: |-- BrowserStealer 2024-12-14 10:22:52,353 [root] DEBUG: |-- InfostealerBrowserPassword 2024-12-14 10:22:52,353 [root] DEBUG: |-- CookiesStealer 2024-12-14 10:22:52,353 [root] DEBUG: |-- CryptBotFiles 2024-12-14 10:22:52,353 [root] DEBUG: |-- CryptBotNetwork 2024-12-14 10:22:52,353 [root] DEBUG: |-- EchelonFiles 2024-12-14 10:22:52,353 [root] DEBUG: |-- FTPStealer 2024-12-14 10:22:52,353 [root] DEBUG: |-- IMStealer 2024-12-14 10:22:52,354 [root] DEBUG: |-- KeyLogger 2024-12-14 10:22:52,354 [root] DEBUG: |-- EmailStealer 2024-12-14 10:22:52,354 [root] DEBUG: |-- MassLoggerArtifacts 2024-12-14 10:22:52,354 [root] DEBUG: |-- MassLoggerFiles 2024-12-14 10:22:52,354 [root] DEBUG: |-- MassLoggerVersion 2024-12-14 10:22:52,354 [root] DEBUG: |-- PoullightFiles 2024-12-14 10:22:52,354 [root] DEBUG: |-- PurpleWaveMutexes 2024-12-14 10:22:52,354 [root] DEBUG: |-- PurpleWaveNetworkAcivity 2024-12-14 10:22:52,354 [root] DEBUG: |-- QuilClipperMutexes 2024-12-14 10:22:52,354 [root] DEBUG: |-- QuilClipperNetworkBehavior 2024-12-14 10:22:52,354 [root] DEBUG: |-- QulabFiles 2024-12-14 10:22:52,354 [root] DEBUG: |-- QulabMutexes 2024-12-14 10:22:52,354 [root] DEBUG: |-- RaccoonInfoStealerMutex 2024-12-14 10:22:52,354 [root] DEBUG: |-- raccoon 2024-12-14 10:22:52,354 [root] DEBUG: |-- CapturesScreenshot 2024-12-14 10:22:52,354 [root] DEBUG: |-- vidar 2024-12-14 10:22:52,354 [root] DEBUG: |-- InjectionCRT 2024-12-14 10:22:52,354 [root] DEBUG: |-- InjectionExplorer 2024-12-14 10:22:52,354 [root] DEBUG: |-- InjectionExtension 2024-12-14 10:22:52,354 [root] DEBUG: |-- InjectionNetworkTraffic 2024-12-14 10:22:52,354 [root] DEBUG: |-- InjectionRUNPE 2024-12-14 10:22:52,354 [root] DEBUG: |-- InjectionRWX 2024-12-14 10:22:52,354 [root] DEBUG: |-- injection_themeinitapihook 2024-12-14 10:22:52,354 [root] DEBUG: |-- Internet_Dropper 2024-12-14 10:22:52,354 [root] DEBUG: |-- IPC_NamedPipe 2024-12-14 10:22:52,354 [root] DEBUG: |-- JS_Phish 2024-12-14 10:22:52,355 [root] DEBUG: |-- JS_SuspiciousRedirect 2024-12-14 10:22:52,355 [root] DEBUG: |-- malicious_dynamic_function_loading 2024-12-14 10:22:52,355 [root] DEBUG: |-- EncryptPCInfo 2024-12-14 10:22:52,355 [root] DEBUG: |-- EnryptDataAgentTeslaHTTP 2024-12-14 10:22:52,355 [root] DEBUG: |-- EnryptDataAgentTeslaHTTPT2 2024-12-14 10:22:52,355 [root] DEBUG: |-- EnryptDataNanoCore 2024-12-14 10:22:52,355 [root] DEBUG: |-- MartiansIE 2024-12-14 10:22:52,355 [root] DEBUG: |-- MartiansOffice 2024-12-14 10:22:52,355 [root] DEBUG: |-- MimicsAgent 2024-12-14 10:22:52,355 [root] DEBUG: |-- MimicsFiletime 2024-12-14 10:22:52,355 [root] DEBUG: |-- MimicsIcon 2024-12-14 10:22:52,355 [root] DEBUG: |-- MasqueradesProcessName 2024-12-14 10:22:52,355 [root] DEBUG: |-- MimikatzModules 2024-12-14 10:22:52,355 [root] DEBUG: |-- QuilMinerNetworkBehavior 2024-12-14 10:22:52,355 [root] DEBUG: |-- ModifiesCerts 2024-12-14 10:22:52,355 [root] DEBUG: |-- DotNetCLRUsageLogKnob 2024-12-14 10:22:52,355 [root] DEBUG: |-- Modifies_HostFile 2024-12-14 10:22:52,355 [root] DEBUG: |-- ModifiesOEMInformation 2024-12-14 10:22:52,355 [root] DEBUG: |-- ModifySecurityCenterWarnings 2024-12-14 10:22:52,355 [root] DEBUG: |-- ModifiesUACNotify 2024-12-14 10:22:52,355 [root] DEBUG: |-- ModifiesDesktopWallpaper 2024-12-14 10:22:52,355 [root] DEBUG: |-- ZoneID 2024-12-14 10:22:52,355 [root] DEBUG: |-- move_file_on_reboot 2024-12-14 10:22:52,355 [root] DEBUG: |-- Multiple_UA 2024-12-14 10:22:52,355 [root] DEBUG: |-- NetworkAnomaly 2024-12-14 10:22:52,355 [root] DEBUG: |-- NetworkBIND 2024-12-14 10:22:52,356 [root] DEBUG: |-- NetworkCnCHTTPSArchive 2024-12-14 10:22:52,356 [root] DEBUG: |-- NetworkCnCHTTPSFreeWebHosting 2024-12-14 10:22:52,356 [root] DEBUG: |-- NetworkCnCHTTPSGeneric 2024-12-14 10:22:52,356 [root] DEBUG: |-- NetworkCnCHTTPSInteractsh 2024-12-14 10:22:52,356 [root] DEBUG: |-- NetworkCnCHTTPSOpenSource 2024-12-14 10:22:52,356 [root] DEBUG: |-- NetworkCnCHTTPSPasteSite 2024-12-14 10:22:52,356 [root] DEBUG: |-- NetworkCnCHTTPSPayload 2024-12-14 10:22:52,356 [root] DEBUG: |-- NetworkCnCHTTPSServiceInterface 2024-12-14 10:22:52,356 [root] DEBUG: |-- NetworkCnCHTTPSSocialMedia 2024-12-14 10:22:52,356 [root] DEBUG: |-- NetworkCnCHTTPSTelegram 2024-12-14 10:22:52,356 [root] DEBUG: |-- NetworkCnCHTTPSTempStorageSite 2024-12-14 10:22:52,356 [root] DEBUG: |-- NetworkCnCHTTPSTempURLDNS 2024-12-14 10:22:52,356 [root] DEBUG: |-- NetworkCnCHTTPSURLShortenerSite 2024-12-14 10:22:52,356 [root] DEBUG: |-- NetworkCnCHTTPSUserAgent 2024-12-14 10:22:52,356 [root] DEBUG: |-- NetworkCnCSMTPSExfil 2024-12-14 10:22:52,356 [root] DEBUG: |-- NetworkCnCSMTPSGeneric 2024-12-14 10:22:52,356 [root] DEBUG: |-- NetworkDNSBlockChain 2024-12-14 10:22:52,356 [root] DEBUG: |-- NetworkDNSIDN 2024-12-14 10:22:52,356 [root] DEBUG: |-- NetworkDNSOpenNIC 2024-12-14 10:22:52,356 [root] DEBUG: |-- NetworkDNSPasteSite 2024-12-14 10:22:52,357 [root] DEBUG: |-- NetworkDNSReverseProxy 2024-12-14 10:22:52,357 [root] DEBUG: |-- NetworkDNSSuspiciousQueryType 2024-12-14 10:22:52,357 [root] DEBUG: |-- NetworkDNSTempFileService 2024-12-14 10:22:52,357 [root] DEBUG: |-- NetworkDNSTempURLDNS 2024-12-14 10:22:52,357 [root] DEBUG: |-- NetworkDNSTunnelingRequest 2024-12-14 10:22:52,357 [root] DEBUG: |-- NetworkDNSURLShortener 2024-12-14 10:22:52,357 [root] DEBUG: |-- NetworkDOHTLS 2024-12-14 10:22:52,357 [root] DEBUG: |-- Suspicious_TLD 2024-12-14 10:22:52,357 [root] DEBUG: |-- NetworkDocumentHTTP 2024-12-14 10:22:52,357 [root] DEBUG: |-- ExplorerHTTP 2024-12-14 10:22:52,357 [root] DEBUG: |-- NetworkFakeUserAgent 2024-12-14 10:22:52,357 [root] DEBUG: |-- NetworkDocumentFile 2024-12-14 10:22:52,357 [root] DEBUG: |-- NetworkEXE 2024-12-14 10:22:52,357 [root] DEBUG: |-- Tor 2024-12-14 10:22:52,357 [root] DEBUG: |-- TorHiddenService 2024-12-14 10:22:52,358 [root] DEBUG: |-- Office_Code_Page 2024-12-14 10:22:52,358 [root] DEBUG: |-- OfficeAddinLoading 2024-12-14 10:22:52,358 [root] DEBUG: |-- OfficeCOMLoad 2024-12-14 10:22:52,358 [root] DEBUG: |-- OfficeDotNetLoad 2024-12-14 10:22:52,358 [root] DEBUG: |-- OfficeMSHTMLLoad 2024-12-14 10:22:52,358 [root] DEBUG: |-- OfficePerfKey 2024-12-14 10:22:52,358 [root] DEBUG: |-- OfficeVBLLoad 2024-12-14 10:22:52,358 [root] DEBUG: |-- OfficeWMILoad 2024-12-14 10:22:52,358 [root] DEBUG: |-- OfficeCVE201711882 2024-12-14 10:22:52,358 [root] DEBUG: |-- OfficeCVE201711882Network 2024-12-14 10:22:52,358 [root] DEBUG: |-- OfficeCVE202140444 2024-12-14 10:22:52,358 [root] DEBUG: |-- OfficeCVE202140444M2 2024-12-14 10:22:52,358 [root] DEBUG: |-- OfficeFlashLoad 2024-12-14 10:22:52,359 [root] DEBUG: |-- OfficePostScript 2024-12-14 10:22:52,359 [root] DEBUG: |-- Office_Macro 2024-12-14 10:22:52,359 [root] DEBUG: |-- ChangesTrustCenter_settings 2024-12-14 10:22:52,359 [root] DEBUG: |-- DisablesVBATrustAccess 2024-12-14 10:22:52,359 [root] DEBUG: |-- OfficeMacroAutoExecution 2024-12-14 10:22:52,359 [root] DEBUG: |-- OfficeMacroIOC 2024-12-14 10:22:52,359 [root] DEBUG: |-- OfficeMacroMaliciousPredition 2024-12-14 10:22:52,359 [root] DEBUG: |-- OfficeMacroSuspicious 2024-12-14 10:22:52,359 [root] DEBUG: |-- RTFASLRBypass 2024-12-14 10:22:52,359 [root] DEBUG: |-- RTFAnomalyCharacterSet 2024-12-14 10:22:52,359 [root] DEBUG: |-- RTFAnomalyVersion 2024-12-14 10:22:52,359 [root] DEBUG: |-- RTFEmbeddedContent 2024-12-14 10:22:52,359 [root] DEBUG: |-- RTFEmbeddedOfficeFile 2024-12-14 10:22:52,359 [root] DEBUG: |-- RTFExploitStatic 2024-12-14 10:22:52,359 [root] DEBUG: |-- OfficeSecurity 2024-12-14 10:22:52,359 [root] DEBUG: |-- OfficeAnamalousFeature 2024-12-14 10:22:52,359 [root] DEBUG: |-- OfficeDDECommand 2024-12-14 10:22:52,360 [root] DEBUG: |-- OfficeSuspiciousProcesses 2024-12-14 10:22:52,360 [root] DEBUG: |-- OfficeWriteEXE 2024-12-14 10:22:52,360 [root] DEBUG: |-- ArmadilloMutex 2024-12-14 10:22:52,360 [root] DEBUG: |-- ArmadilloRegKey 2024-12-14 10:22:52,360 [root] DEBUG: |-- ADS 2024-12-14 10:22:52,360 [root] DEBUG: |-- Autorun 2024-12-14 10:22:52,360 [root] DEBUG: |-- Autorun_scheduler 2024-12-14 10:22:52,360 [root] DEBUG: |-- PersistenceSafeBoot 2024-12-14 10:22:52,360 [root] DEBUG: |-- PersistenceBootexecute 2024-12-14 10:22:52,360 [root] DEBUG: |-- PersistenceRegistryScript 2024-12-14 10:22:52,360 [root] DEBUG: |-- PersistenceIFEO 2024-12-14 10:22:52,360 [root] DEBUG: |-- PersistenceSilentProcessExit 2024-12-14 10:22:52,360 [root] DEBUG: |-- PersistenceRDPRegistry 2024-12-14 10:22:52,360 [root] DEBUG: |-- PersistenceRDPShadowing 2024-12-14 10:22:52,360 [root] DEBUG: |-- PersistenceService 2024-12-14 10:22:52,360 [root] DEBUG: |-- PersistenceShimDatabase 2024-12-14 10:22:52,360 [root] DEBUG: |-- PowerpoolMutexes 2024-12-14 10:22:52,361 [root] DEBUG: |-- PowerShellNetworkConnection 2024-12-14 10:22:52,361 [root] DEBUG: |-- PowerShellScriptBlockLogging 2024-12-14 10:22:52,361 [root] DEBUG: |-- PowershellCommandSuspicious 2024-12-14 10:22:52,361 [root] DEBUG: |-- PowershellDownload 2024-12-14 10:22:52,361 [root] DEBUG: |-- PowershellRenamed 2024-12-14 10:22:52,361 [root] DEBUG: |-- PowershellRequest 2024-12-14 10:22:52,361 [root] DEBUG: |-- PowershellReversed 2024-12-14 10:22:52,361 [root] DEBUG: |-- PowershellVariableObfuscation 2024-12-14 10:22:52,361 [root] DEBUG: |-- PreventsSafeboot 2024-12-14 10:22:52,361 [root] DEBUG: |-- CmdlineProcessDiscovery 2024-12-14 10:22:52,361 [root] DEBUG: |-- CreateToolhelp32SnapshotProcessModuleEnumeration 2024-12-14 10:22:52,361 [root] DEBUG: |-- EnumeratesRunningProcesses 2024-12-14 10:22:52,361 [root] DEBUG: |-- ProcessInterest 2024-12-14 10:22:52,361 [root] DEBUG: |-- ProcessNeeded 2024-12-14 10:22:52,361 [root] DEBUG: |-- MassDataEncryption 2024-12-14 10:22:52,361 [root] DEBUG: |-- CryptoMixMutexes 2024-12-14 10:22:52,361 [root] DEBUG: |-- DharmaMutexes 2024-12-14 10:22:52,361 [root] DEBUG: |-- RansomwareDMALocker 2024-12-14 10:22:52,361 [root] DEBUG: |-- RansomwareExtensions 2024-12-14 10:22:52,361 [root] DEBUG: |-- RansomwareFileModifications 2024-12-14 10:22:52,361 [root] DEBUG: |-- RansomwareFiles 2024-12-14 10:22:52,361 [root] DEBUG: |-- FonixMutexes 2024-12-14 10:22:52,362 [root] DEBUG: |-- GandCrabMutexes 2024-12-14 10:22:52,362 [root] DEBUG: |-- GermanWiperMutexes 2024-12-14 10:22:52,362 [root] DEBUG: |-- MedusaLockerMutexes 2024-12-14 10:22:52,362 [root] DEBUG: |-- MedusaLockerRegkeys 2024-12-14 10:22:52,362 [root] DEBUG: |-- RansomwareMessage 2024-12-14 10:22:52,362 [root] DEBUG: |-- NemtyMutexes 2024-12-14 10:22:52,362 [root] DEBUG: |-- NemtyNetworkActivity 2024-12-14 10:22:52,362 [root] DEBUG: |-- NemtyNote 2024-12-14 10:22:52,362 [root] DEBUG: |-- NemtyRegkeys 2024-12-14 10:22:52,362 [root] DEBUG: |-- PYSAMutexes 2024-12-14 10:22:52,362 [root] DEBUG: |-- RansomwareRadamant 2024-12-14 10:22:52,362 [root] DEBUG: |-- RansomwareRecyclebin 2024-12-14 10:22:52,362 [root] DEBUG: |-- RevilMutexes 2024-12-14 10:22:52,362 [root] DEBUG: |-- RevilRegkey 2024-12-14 10:22:52,362 [root] DEBUG: |-- SatanMutexes 2024-12-14 10:22:52,362 [root] DEBUG: |-- SnakeRansomMutexes 2024-12-14 10:22:52,362 [root] DEBUG: |-- sodinokibi 2024-12-14 10:22:52,362 [root] DEBUG: |-- StopRansomMutexes 2024-12-14 10:22:52,362 [root] DEBUG: |-- StopRansomwareCMD 2024-12-14 10:22:52,362 [root] DEBUG: |-- StopRansomwareRegistry 2024-12-14 10:22:52,362 [root] DEBUG: |-- BeebusMutexes 2024-12-14 10:22:52,362 [root] DEBUG: |-- BlackNETMutexes 2024-12-14 10:22:52,362 [root] DEBUG: |-- BlackRATAPIs 2024-12-14 10:22:52,362 [root] DEBUG: |-- BlackRATMutexes 2024-12-14 10:22:52,362 [root] DEBUG: |-- BlackRATNetworkActivity 2024-12-14 10:22:52,362 [root] DEBUG: |-- BlackRATRegistryKeys 2024-12-14 10:22:52,362 [root] DEBUG: |-- CRATMutexes 2024-12-14 10:22:52,363 [root] DEBUG: |-- DCRatAPIs 2024-12-14 10:22:52,363 [root] DEBUG: |-- DCRatFiles 2024-12-14 10:22:52,363 [root] DEBUG: |-- DCRatMutex 2024-12-14 10:22:52,363 [root] DEBUG: |-- FynloskiMutexes 2024-12-14 10:22:52,363 [root] DEBUG: |-- KaraganyEventObjects 2024-12-14 10:22:52,363 [root] DEBUG: |-- KaraganyFiles 2024-12-14 10:22:52,363 [root] DEBUG: |-- LimeRATMutexes 2024-12-14 10:22:52,363 [root] DEBUG: |-- LimeRATRegkeys 2024-12-14 10:22:52,363 [root] DEBUG: |-- LodaRATFileBehavior 2024-12-14 10:22:52,363 [root] DEBUG: |-- LuminosityRAT 2024-12-14 10:22:52,363 [root] DEBUG: |-- ModiRATBehavior 2024-12-14 10:22:52,363 [root] DEBUG: |-- NanocoreRAT 2024-12-14 10:22:52,363 [root] DEBUG: |-- netwire 2024-12-14 10:22:52,363 [root] DEBUG: |-- NjratRegkeys 2024-12-14 10:22:52,363 [root] DEBUG: |-- ObliquekRATFiles 2024-12-14 10:22:52,363 [root] DEBUG: |-- ObliquekRATMutexes 2024-12-14 10:22:52,363 [root] DEBUG: |-- ObliquekRATNetworkActivity 2024-12-14 10:22:52,363 [root] DEBUG: |-- OrcusRAT 2024-12-14 10:22:52,363 [root] DEBUG: |-- ParallaxMutexes 2024-12-14 10:22:52,363 [root] DEBUG: |-- PcClientMutexes 2024-12-14 10:22:52,363 [root] DEBUG: |-- PlugxMutexes 2024-12-14 10:22:52,363 [root] DEBUG: |-- PoisonIvyMutexes 2024-12-14 10:22:52,363 [root] DEBUG: |-- QuasarMutexes 2024-12-14 10:22:52,363 [root] DEBUG: |-- RatsnifMutexes 2024-12-14 10:22:52,363 [root] DEBUG: |-- SennaMutexes 2024-12-14 10:22:52,363 [root] DEBUG: |-- SpynetRat 2024-12-14 10:22:52,364 [root] DEBUG: |-- TrochilusRATAPIs 2024-12-14 10:22:52,364 [root] DEBUG: |-- VenomRAT 2024-12-14 10:22:52,364 [root] DEBUG: |-- WarzoneRATFiles 2024-12-14 10:22:52,364 [root] DEBUG: |-- WarzoneRATRegkeys 2024-12-14 10:22:52,364 [root] DEBUG: |-- XpertRATFiles 2024-12-14 10:22:52,364 [root] DEBUG: |-- XpertRATMutexes 2024-12-14 10:22:52,364 [root] DEBUG: |-- XtremeMutexes 2024-12-14 10:22:52,364 [root] DEBUG: |-- ReadsSelf 2024-12-14 10:22:52,364 [root] DEBUG: |-- Recon_Beacon 2024-12-14 10:22:52,364 [root] DEBUG: |-- Fingerprint 2024-12-14 10:22:52,364 [root] DEBUG: |-- InstalledApps 2024-12-14 10:22:52,364 [root] DEBUG: |-- SystemInfo 2024-12-14 10:22:52,364 [root] DEBUG: |-- Accesses_RecycleBin 2024-12-14 10:22:52,364 [root] DEBUG: |-- RemcosFiles 2024-12-14 10:22:52,364 [root] DEBUG: |-- RemcosMutexes 2024-12-14 10:22:52,364 [root] DEBUG: |-- RemcosRegkeys 2024-12-14 10:22:52,364 [root] DEBUG: |-- RDPTCPKey 2024-12-14 10:22:52,364 [root] DEBUG: |-- UsesRDPClip 2024-12-14 10:22:52,364 [root] DEBUG: |-- UsesRemoteDesktopSession 2024-12-14 10:22:52,364 [root] DEBUG: |-- RemovesNetworkingIcon 2024-12-14 10:22:52,364 [root] DEBUG: |-- RemovesPinnedPrograms 2024-12-14 10:22:52,364 [root] DEBUG: |-- RemovesSecurityAndMaintenanceIcon 2024-12-14 10:22:52,364 [root] DEBUG: |-- RemovesStartMenuDefaults 2024-12-14 10:22:52,364 [root] DEBUG: |-- RemovesUsernameStartMenu 2024-12-14 10:22:52,364 [root] DEBUG: |-- RemovesZoneIdADS 2024-12-14 10:22:52,364 [root] DEBUG: |-- SpicyHotPotBehavior 2024-12-14 10:22:52,365 [root] DEBUG: |-- ScriptCreatedProcess 2024-12-14 10:22:52,365 [root] DEBUG: |-- ScriptNetworkActvity 2024-12-14 10:22:52,365 [root] DEBUG: |-- SuspiciousJSScript 2024-12-14 10:22:52,365 [root] DEBUG: |-- JavaScriptTimer 2024-12-14 10:22:52,365 [root] DEBUG: |-- Secure_Login_Phish 2024-12-14 10:22:52,365 [root] DEBUG: |-- SecurityXploded_Modules 2024-12-14 10:22:52,365 [root] DEBUG: |-- GetClipboardData 2024-12-14 10:22:52,365 [root] DEBUG: |-- SetsAutoconfigURL 2024-12-14 10:22:52,365 [root] DEBUG: |-- InstallsWinpcap 2024-12-14 10:22:52,365 [root] DEBUG: |-- SpoofsProcname 2024-12-14 10:22:52,365 [root] DEBUG: |-- CreatesAutorunInf 2024-12-14 10:22:52,365 [root] DEBUG: |-- StackPivot 2024-12-14 10:22:52,365 [root] DEBUG: |-- StackPivotFileCreated 2024-12-14 10:22:52,365 [root] DEBUG: |-- StackPivotProcessCreate 2024-12-14 10:22:52,365 [root] DEBUG: |-- StealingClipboardData 2024-12-14 10:22:52,365 [root] DEBUG: |-- StealthChildProc 2024-12-14 10:22:52,365 [root] DEBUG: |-- StealthFile 2024-12-14 10:22:52,365 [root] DEBUG: |-- StealthHiddenExtension 2024-12-14 10:22:52,365 [root] DEBUG: |-- StealthHiddenReg 2024-12-14 10:22:52,365 [root] DEBUG: |-- StealthHideNotifications 2024-12-14 10:22:52,365 [root] DEBUG: |-- StealthSystemProcName 2024-12-14 10:22:52,365 [root] DEBUG: |-- StealthTimeout 2024-12-14 10:22:52,365 [root] DEBUG: |-- StealthWebHistory 2024-12-14 10:22:52,365 [root] DEBUG: |-- Hidden_Window 2024-12-14 10:22:52,365 [root] DEBUG: |-- sysinternals_psexec 2024-12-14 10:22:52,365 [root] DEBUG: |-- sysinternals_tools 2024-12-14 10:22:52,366 [root] DEBUG: |-- QueriesKeyboardLayout 2024-12-14 10:22:52,366 [root] DEBUG: |-- TampersETW 2024-12-14 10:22:52,366 [root] DEBUG: |-- LSATampering 2024-12-14 10:22:52,366 [root] DEBUG: |-- TampersPowerShellLogging 2024-12-14 10:22:52,366 [root] DEBUG: |-- Flame 2024-12-14 10:22:52,366 [root] DEBUG: |-- TerminatesRemoteProcess 2024-12-14 10:22:52,366 [root] DEBUG: |-- TerritorialDisputeSIGs 2024-12-14 10:22:52,366 [root] DEBUG: |-- TrickBotTaskDelete 2024-12-14 10:22:52,366 [root] DEBUG: |-- TrickBotMutexes 2024-12-14 10:22:52,366 [root] DEBUG: |-- FleerCivetMutexes 2024-12-14 10:22:52,366 [root] DEBUG: |-- LokibotMutexes 2024-12-14 10:22:52,366 [root] DEBUG: |-- UrsnifBehavior 2024-12-14 10:22:52,366 [root] DEBUG: |-- UpatreFiles 2024-12-14 10:22:52,366 [root] DEBUG: |-- UpatreMutexes 2024-12-14 10:22:52,366 [root] DEBUG: |-- UserEnum 2024-12-14 10:22:52,366 [root] DEBUG: |-- ADFind 2024-12-14 10:22:52,366 [root] DEBUG: |-- UsesMSProtocol 2024-12-14 10:22:52,366 [root] DEBUG: |-- Virus 2024-12-14 10:22:52,366 [root] DEBUG: |-- NeshtaFiles 2024-12-14 10:22:52,366 [root] DEBUG: |-- NeshtaMutexes 2024-12-14 10:22:52,366 [root] DEBUG: |-- NeshtaRegKeys 2024-12-14 10:22:52,366 [root] DEBUG: |-- RenamerMutexes 2024-12-14 10:22:52,366 [root] DEBUG: |-- Webmail_Phish 2024-12-14 10:22:52,366 [root] DEBUG: |-- OWAWebShellFiles 2024-12-14 10:22:52,366 [root] DEBUG: |-- WebShellFiles 2024-12-14 10:22:52,366 [root] DEBUG: |-- WebShellProcesses 2024-12-14 10:22:52,367 [root] DEBUG: |-- PersistsDotNetDevUtility 2024-12-14 10:22:52,367 [root] DEBUG: |-- SpwansDotNetDevUtiliy 2024-12-14 10:22:52,367 [root] DEBUG: |-- AltersWindowsUtility 2024-12-14 10:22:52,367 [root] DEBUG: |-- DotNETCSCBuild 2024-12-14 10:22:52,367 [root] DEBUG: |-- MultipleExplorerInstances 2024-12-14 10:22:52,367 [root] DEBUG: |-- OverwritesAccessibilityUtility 2024-12-14 10:22:52,367 [root] DEBUG: |-- ScriptToolExecuted 2024-12-14 10:22:52,367 [root] DEBUG: |-- SuspiciousCertutilUse 2024-12-14 10:22:52,367 [root] DEBUG: |-- SuspiciousCommandTools 2024-12-14 10:22:52,367 [root] DEBUG: |-- SuspiciousMpCmdRunUse 2024-12-14 10:22:52,367 [root] DEBUG: |-- SuspiciousPingUse 2024-12-14 10:22:52,367 [root] DEBUG: |-- UsesPowerShellCopyItem 2024-12-14 10:22:52,367 [root] DEBUG: |-- UsesWindowsUtilities 2024-12-14 10:22:52,367 [root] DEBUG: |-- UsesWindowsUtilitiesAppCmd 2024-12-14 10:22:52,367 [root] DEBUG: |-- UsesWindowsUtilitiesCSVDELDFIDE 2024-12-14 10:22:52,367 [root] DEBUG: |-- UsesWindowsUtilitiesCipher 2024-12-14 10:22:52,367 [root] DEBUG: |-- UsesWindowsUtilitiesClickOnce 2024-12-14 10:22:52,367 [root] DEBUG: |-- UsesWindowsUtilitiesCurl 2024-12-14 10:22:52,367 [root] DEBUG: |-- UsesWindowsUtilitiesDSQuery 2024-12-14 10:22:52,367 [root] DEBUG: |-- UsesWindowsUtilitiesEsentutl 2024-12-14 10:22:52,367 [root] DEBUG: |-- UsesWindowsUtilitiesFinger 2024-12-14 10:22:52,367 [root] DEBUG: |-- UsesWindowsUtilitiesMode 2024-12-14 10:22:52,367 [root] DEBUG: |-- UsesWindowsUtilitiesNTDSutil 2024-12-14 10:22:52,367 [root] DEBUG: |-- UsesWindowsUtilitiesNltest 2024-12-14 10:22:52,367 [root] DEBUG: |-- UsesWindowsUtilitiesScheduler 2024-12-14 10:22:52,367 [root] DEBUG: |-- UsesWindowsUtilitiesXcopy 2024-12-14 10:22:52,368 [root] DEBUG: |-- WMICCommandSuspicious 2024-12-14 10:22:52,368 [root] DEBUG: |-- WiperZeroedBytes 2024-12-14 10:22:52,368 [root] DEBUG: |-- ScrconsWMIScriptConsumer 2024-12-14 10:22:52,368 [root] DEBUG: |-- WMICreateProcess 2024-12-14 10:22:52,368 [root] DEBUG: |-- WMIScriptProcess 2024-12-14 10:22:52,368 [root] DEBUG: |-- Win32ProcessCreate 2024-12-14 10:22:52,368 [root] DEBUG: |-- AllapleMutexes 2024-12-14 10:22:52,368 [root] DEBUG: |-- LinuxDeletesFiles 2024-12-14 10:22:52,368 [root] DEBUG: |-- LinuxDropsFiles 2024-12-14 10:22:52,368 [root] DEBUG: |-- LinuxReadsFiles 2024-12-14 10:22:52,368 [root] DEBUG: `-- LinuxWritesFiles 2024-12-14 10:22:52,368 [root] DEBUG: Imported \"reporting\" modules: 2024-12-14 10:22:52,368 [root] DEBUG: |-- BinGraph 2024-12-14 10:22:52,368 [root] DEBUG: |-- CAPASummary 2024-12-14 10:22:52,368 [root] DEBUG: |-- JsonDump 2024-12-14 10:22:52,368 [root] DEBUG: |-- MongoDB 2024-12-14 10:22:52,368 [root] DEBUG: `-- PCAP2CERT 2024-12-14 10:22:52,368 [root] DEBUG: Imported \"feeds\" modules: 2024-12-14 10:22:52,368 [root] DEBUG: `-- AbuseCH_SSL 2024-12-14 10:22:52,368 [root] DEBUG: Imported \"machinery\" modules: 2024-12-14 10:22:52,368 [root] DEBUG: `-- Physical 2024-12-14 10:22:52,368 [Task 23] [root] DEBUG: Processing task 2024-12-14 10:22:52,378 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"CAPE\" on analysis at \"/opt/CAPEv2/storage/analyses/23\" 2024-12-14 10:22:52,571 [Task 23] [lib.cuckoo.common.objects] DEBUG: file type set using basic heuristics for: /opt/CAPEv2/storage/binaries/33b4fd9d1dd032c56f0e2d74d609db74a04a3190eb45cd07f277f5efca7abe23 2024-12-14 10:22:52,571 [Task 23] [lib.cuckoo.common.objects] DEBUG: Initializing Yara... 2024-12-14 10:22:52,644 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- binaries AutoIT.yar 2024-12-14 10:22:52,645 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- binaries EcrimePackerStub.yar 2024-12-14 10:22:52,645 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- binaries Generic_Phishing_PDF.yar 2024-12-14 10:22:52,645 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- binaries HTMLPhisher_2023.yar 2024-12-14 10:22:52,645 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- binaries HeavensGate.yar 2024-12-14 10:22:52,645 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- binaries IEuser_author_doc.yar 2024-12-14 10:22:52,645 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- binaries ISO_exec.yar 2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- binaries LNK_Ruleset.yar 2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- binaries MalScript_Tricks.yar 2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- binaries Maldoc_PDF.yar 2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- binaries OLEfile_in_CAD_FAS_LSP.yar 2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- binaries OneNote.yar 2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- binaries RoyalRoad_RTF.yar 2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- binaries Themida.yar 2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- binaries VMProtectStub.yar 2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- binaries Webshell_in_image.yar 2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- binaries embedded.yar 2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- binaries indicator_packed.yar 2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- binaries indicator_suspicious.yar 2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- binaries indicator_tools.yar 2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- binaries oAuth_Phishing_PDF.yar 2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- binaries ole_vba.yar 2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- binaries shellcodes.yar 2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- binaries susp_obfuscated_JS.yar 2024-12-14 10:22:52,647 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- binaries vmdetect.yar 2024-12-14 10:22:52,672 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- memory Exploit_HT_Flash_Vars.yar 2024-12-14 10:22:52,672 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- memory Exploit_HT_VRename.yar 2024-12-14 10:22:52,672 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- memory adgholas.yar 2024-12-14 10:22:52,672 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- memory angler.yar 2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- memory astrum.yar 2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- memory cve_2013_2551.yar 2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- memory cve_2014_0515.yar 2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- memory cve_2014_0569.yar 2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- memory cve_2014_6332.yar 2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- memory cve_2015_0016.yar 2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- memory cve_2015_2419.yar 2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- memory cve_2015_2545.yar 2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- memory cve_2015_5122.yar 2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- memory cve_2016_0189.yar 2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- memory cve_2016_3298.yar 2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- memory darkcomet.yar 2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- memory eitest.yar 2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- memory flash_exploits.yar 2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- memory kazybot.yar 2024-12-14 10:22:52,674 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- memory neutrino.yar 2024-12-14 10:22:52,674 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- memory nuclear.yar 2024-12-14 10:22:52,674 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- memory rig.yar 2024-12-14 10:22:52,674 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- memory shellcodes.yar 2024-12-14 10:22:52,674 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- memory sundown.yar 2024-12-14 10:22:52,748 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE A310Logger.yar 2024-12-14 10:22:52,749 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE AAR.yar 2024-12-14 10:22:52,749 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE APT27.yar 2024-12-14 10:22:52,749 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE ARCrypt.yar 2024-12-14 10:22:52,749 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE AbubasbanditBot.yar 2024-12-14 10:22:52,749 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE AcidRain.yar 2024-12-14 10:22:52,749 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE ActionRAT.yar 2024-12-14 10:22:52,749 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Adfind.yar 2024-12-14 10:22:52,749 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Adzok.yar 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE AgentRacoon.yar 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE AgentTesla.yar 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE AgnianeStealer.yar 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Agrius.yar 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Akira.yar 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Alfonso.yar 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE AlienCrypter.yar 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE AlienSpy.yar 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Alkhal.yar 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE AllaKore.yar 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Amadey.yar 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Andromeda.yar 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Ap0calypse.yar 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Apocalypse.yar 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Arcom.yar 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Arechclient2.yar 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Arkei.yar 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE ArrowRAT.yar 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Aspire.yar 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE AsyncRAT.yar 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Atlas.yar 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Aurora.yar 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE AuroraStealer.yar 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Avaddon.yar 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Avalon.yar 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE AvosLocker.yar 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Azer.yar 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Azorult.yar 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE BACKSPACE.yar 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE BHunt.yar 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Babuk.yar 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE BackNet.yar 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE BackOffLoader.yar 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE BackOffPOS.yar 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE BadJoke.yar 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE BadRabbit.yar 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Bagle.yar 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Baldr.yar 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Bandit.yar 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Bandook.yar 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Banload.yar 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Bazar.yar 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE BazarLoader.yar 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE BazarLoaderNim.yar 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Beastdoor.yar 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE BetaBot.yar 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE BioPass.yar 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE BitCoinGrabber.yar 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE BitPaymer.yar 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE BitRAT.yar 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE BitterRAT.yar 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE BlackByte.yar 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE BlackByteGo.yar 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE BlackCat.yar 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE BlackDropper.yar 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE BlackHunt.yar 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE BlackMatter.yar 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE BlackNET.yar 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE BlackNix.yar 2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE BlackShades.yar 2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE BlackshadesRAT.yar 2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE BlankStealer.yar 2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Blister.yar 2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE BlitzGrabber.yar 2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE BlueBanana.yar 2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE BlueBot.yar 2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Bobik.yar 2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE BoxCaon.yar 2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Bozok.yar 2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE BrbBot.yar 2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE BreakStaf.yar 2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE BreakWin.yar 2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE BroEx.yar 2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE BruteRatel.yar 2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE BuerLoader.yar 2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE BumbleBee.yar 2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Buran.yar 2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE ButeRAT.yar 2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE CRAT.yar 2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Caliber.yar 2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Carbanak.yar 2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE CargoBayLoader.yar 2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE CasperTroy.yar 2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Cerber.yar 2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE ChChes.yar 2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE ChaChaDDoS.yar 2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Chaos.yar 2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Chinotto.yar 2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Chuwi.yar 2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE ClientMesh.yar 2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE ClipBanker.yar 2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Clop.yar 2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE CobaltStrikeBeacon.yar 2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE CobaltStrikeStager.yar 2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE CobianRAT.yar 2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Codoso.yar 2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE CoinMiners.yar 2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE CoinMiningBot.yar 2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE CommonMagic.yar 2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Confucius_B.yar 2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Conti.yar 2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE CookieStealer.yar 2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE CoreBot.yar 2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Covenant.yar 2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE CrimsonRAT.yar 2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Crown.yar 2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE CryLock.yar 2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE CryptBot.yar 2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE CryptoLocker.yar 2024-12-14\r\n\r\nyep cape recognizes playload as lumma correctly with yara but doesn't extract configuration with parser Lumma.py (i suppose..) \nComment: Can you share hash so I can test?\r\n\r\nEl s\u00e1b, 14 dic 2024, 10:47, marsomx ***@***.***> escribi\u00f3:\r\n\r\n> Does it has lumma Yara detection? I don't see any error there El s\u00e1b, 14\r\n> dic 2024, 10:32, marsomx *@*.***> escribi\u00f3:\r\n> \u2026 <#m_9138664210593377461_>\r\n> np, strange, no you don't need to do nothing else, you just need to have\r\n> installed cape-parsers which is part of pyproject.toml. did you restart\r\n> processing? if yes, can you do next as cape user: - cd /opt/CAPEv2/utils &&\r\n> poetry run python process.py -r <task_id> -d so that should give us an clue\r\n> i submitted a lumma payoad (dumped from previous analysis) and this is the\r\n> result of mentioned command 2024-12-14 10:22:51,548 [root] DEBUG: Importing\r\n> modules... 2024-12-14 10:22:51,550 [modules.auxiliary.QemuScreenshots]\r\n> DEBUG: Importing 'PIL.ImageChops.difference' 2024-12-14 10:22:51,550\r\n> [modules.auxiliary.QemuScreenshots] DEBUG: Importing 'PIL.ImageDraw'\r\n> 2024-12-14 10:22:51,551 [modules.auxiliary.QemuScreenshots] DEBUG:\r\n> Importing 'PIL.Image' 2024-12-14 10:22:51,551\r\n> [modules.auxiliary.QemuScreenshots] ERROR: No module named 'libvirt'\r\n> OPTIONAL! Missed dependency: poetry run pip install peepdf-3 pip3 install\r\n> certvalidator asn1crypto mscerts OPTIONAL! Missed dependency: poetry run\r\n> pip install -U git+https://github.com/DissectMalware/batch_deobfuscator\r\n> OPTIONAL! Missed dependency: poetry run pip install -U git+\r\n> https://github.com/CAPESandbox/httpreplay 2024-12-14\r\n> https://github.com/CAPESandbox/httpreplay2024-12-14 10:22:52,202\r\n> [capa.rules] DEBUG: reading rules from directory\r\n> /opt/CAPEv2/data/capa-rules 2024-12-14 10:22:52,228 [capa.rules.cache]\r\n> DEBUG: loading rule set from cache:\r\n> /home/cape/.cache/capa/capa-8c6bac93.cache 2024-12-14 10:22:52,333\r\n> [capa.loader] DEBUG: reading signatures from directory\r\n> /opt/CAPEv2/data/flare-signatures 2024-12-14 10:22:52,333 [capa.loader]\r\n> DEBUG: found signature file:\r\n> /opt/CAPEv2/data/flare-signatures/1_flare_msvc_rtf_32_64.sig 2024-12-14\r\n> 10:22:52,333 [capa.loader] DEBUG: found signature file:\r\n> /opt/CAPEv2/data/flare-signatures/2_flare_msvc_atlmfc_32_64.sig 2024-12-14\r\n> 10:22:52,333 [capa.loader] DEBUG: found signature file:\r\n> /opt/CAPEv2/data/flare-signatures/3_flare_common_libs.sig 2024-12-14\r\n> 10:22:52,335 [root] DEBUG: Imported \"auxiliary\" modules: 2024-12-14\r\n> 10:22:52,336 [root] DEBUG: |-- AzSniffer 2024-12-14 10:22:52,336 [root]\r\n> DEBUG: |-- Mitmdump 2024-12-14 10:22:52,336 [root] DEBUG: |--\r\n> QEMUScreenshots 2024-12-14 10:22:52,336 [root] DEBUG: -- Sniffer\r\n> 2024-12-14 10:22:52,336 [root] DEBUG: Imported \"processing\" modules:\r\n> 2024-12-14 10:22:52,336 [root] DEBUG: |-- CAPE 2024-12-14 10:22:52,336\r\n> [root] DEBUG: |-- AnalysisInfo 2024-12-14 10:22:52,336 [root] DEBUG: |--\r\n> Autoruns 2024-12-14 10:22:52,336 [root] DEBUG: |-- BehaviorAnalysis\r\n> 2024-12-14 10:22:52,336 [root] DEBUG: |-- Debug 2024-12-14 10:22:52,336\r\n> [root] DEBUG: |-- NetworkAnalysis 2024-12-14 10:22:52,336 [root] DEBUG: |--\r\n> ProcessMemory 2024-12-14 10:22:52,336 [root] DEBUG: |--\r\n> script_log_processing 2024-12-14 10:22:52,336 [root] DEBUG: |-- Suricata\r\n> 2024-12-14 10:22:52,336 [root] DEBUG: -- UrlAnalysis 2024-12-14\r\n> 10:22:52,336 [root] DEBUG: Imported \"signatures\" modules: 2024-12-14\r\n> 10:22:52,336 [root] DEBUG: |-- ClamAV 2024-12-14 10:22:52,336 [root] DEBUG:\r\n> |-- KnownVirustotal 2024-12-14 10:22:52,336 [root] DEBUG: |-- BadCerts\r\n> 2024-12-14 10:22:52,336 [root] DEBUG: |-- BadSSLCerts 2024-12-14\r\n> 10:22:52,336 [root] DEBUG: |-- ZeusP2P 2024-12-14 10:22:52,336 [root]\r\n> DEBUG: |-- ZeusURL 2024-12-14 10:22:52,336 [root] DEBUG: |-- AthenaHttp\r\n> 2024-12-14 10:22:52,336 [root] DEBUG: |-- DirtJumper 2024-12-14\r\n> 10:22:52,337 [root] DEBUG: |-- Drive 2024-12-14 10:22:52,337 [root] DEBUG:\r\n> |-- Drive2 2024-12-14 10:22:52,337 [root] DEBUG: |-- Madness 2024-12-14\r\n> 10:22:52,337 [root] DEBUG: |-- FamilyProxyBack 2024-12-14 10:22:52,337\r\n> [root] DEBUG: |-- FlareCAPAAntiAnalysis 2024-12-14 10:22:52,337 [root]\r\n> DEBUG: |-- FlareCAPACollection 2024-12-14 10:22:52,337 [root] DEBUG: |--\r\n> FlareCAPACompiler 2024-12-14 10:22:52,337 [root] DEBUG: |--\r\n> FlareCAPADataManipulation 2024-12-14 10:22:52,337 [root] DEBUG: |--\r\n> FlareCAPAExecutable 2024-12-14 10:22:52,337 [root] DEBUG: |--\r\n> FlareCAPAHostInteration 2024-12-14 10:22:52,337 [root] DEBUG: |--\r\n> FlareCAPAcommunication 2024-12-14 10:22:52,337 [root] DEBUG: |--\r\n> FlareCAPALib 2024-12-14 10:22:52,337 [root] DEBUG: |-- FlareCAPALinking\r\n> 2024-12-14 10:22:52,337 [root] DEBUG: |-- FlareCAPALoadCode 2024-12-14\r\n> 10:22:52,337 [root] DEBUG: |-- FlareCAPAMalwareFamily 2024-12-14\r\n> 10:22:52,337 [root] DEBUG: |-- FlareCAPANursery 2024-12-14 10:22:52,337\r\n> [root] DEBUG: |-- FlareCAPAPersistence 2024-12-14 10:22:52,337 [root]\r\n> DEBUG: |-- FlareCAPARuntime 2024-12-14 10:22:52,337 [root] DEBUG: |--\r\n> FlareCAPATargeting 2024-12-14 10:22:52,337 [root] DEBUG: |-- Log4j\r\n> 2024-12-14 10:22:52,337 [root] DEBUG: |-- MimicsExtension 2024-12-14\r\n> 10:22:52,337 [root] DEBUG: |-- NetworkCountryDistribution 2024-12-14\r\n> 10:22:52,337 [root] DEBUG: |-- NetworkMultipleDirectIPConnections\r\n> 2024-12-14 10:22:52,337 [root] DEBUG: |-- NetworkCnCHTTP 2024-12-14\r\n> 10:22:52,338 [root] DEBUG: |-- NetworkHTTPPOST 2024-12-14 10:22:52,338\r\n> [root] DEBUG: |-- NetworkIPEXE 2024-12-14 10:22:52,338 [root] DEBUG: |--\r\n> NetworkDGA 2024-12-14 10:22:52,338 [root] DEBUG: |-- NetworkDGAFraunhofer\r\n> 2024-12-14 10:22:52,338 [root] DEBUG: |-- NetworkDynDNS 2024-12-14\r\n> 10:22:52,338 [root] DEBUG: |-- NetworkExcessiveUDP 2024-12-14 10:22:52,338\r\n> [root] DEBUG: |-- NetworkHTTP 2024-12-14 10:22:52,338 [root] DEBUG: |--\r\n> NetworkICMP 2024-12-14 10:22:52,338 [root] DEBUG: |-- NetworkIRC 2024-12-14\r\n> 10:22:52,338 [root] DEBUG: |-- NetworkOpenProxy 2024-12-14 10:22:52,338\r\n> [root] DEBUG: |-- NetworkP2P 2024-12-14 10:22:52,338 [root] DEBUG: |--\r\n> NetworkQuestionableHost 2024-12-14 10:22:52,338 [root] DEBUG: |--\r\n> NetworkQuestionableHttpPath 2024-12-14 10:22:52,338 [root] DEBUG: |--\r\n> NetworkQuestionableHttpsPath 2024-12-14 10:22:52,338 [root] DEBUG: |--\r\n> NetworkSMTP 2024-12-14 10:22:52,338 [root] DEBUG: |-- TorGateway 2024-12-14\r\n> 10:22:52,338 [root] DEBUG: |-- BuildLangID 2024-12-14 10:22:52,338 [root]\r\n> DEBUG: |-- ResourceLangID 2024-12-14 10:22:52,338 [root] DEBUG: |-- overlay\r\n> 2024-12-14 10:22:52,338 [root] DEBUG: |-- PackerUnknownPESectionName\r\n> 2024-12-14 10:22:52,338 [root] DEBUG: |-- ASPackPacked 2024-12-14\r\n> 10:22:52,338 [root] DEBUG: |-- AspireCryptPacked 2024-12-14 10:22:52,338\r\n> [root] DEBUG: |-- BedsProtectorPacked 2024-12-14 10:22:52,338 [root] DEBUG:\r\n> |-- ConfuserPacked 2024-12-14 10:22:52,338 [root] DEBUG: |-- EnigmaPacked\r\n> 2024-12-14 10:22:52,339 [root] DEBUG: |-- PackerEntropy 2024-12-14\r\n> 10:22:52,339 [root] DEBUG: |-- MPressPacked 2024-12-14 10:22:52,339 [root]\r\n> DEBUG: |-- NatePacked 2024-12-14 10:22:52,339 [root] DEBUG: |-- NsPacked\r\n> 2024-12-14 10:22:52,339 [root] DEBUG: |-- SmartAssemblyPacked 2024-12-14\r\n> 10:22:52,339 [root] DEBUG: |-- SpicesPacked 2024-12-14 10:22:52,339 [root]\r\n> DEBUG: |-- ThemidaPacked 2024-12-14 10:22:52,339 [root] DEBUG: |--\r\n> ThemidaPackedSection 2024-12-14 10:22:52,339 [root] DEBUG: |-- TitanPacked\r\n> 2024-12-14 10:22:52,339 [root] DEBUG: |-- UPXCompressed 2024-12-14\r\n> 10:22:52,339 [root] DEBUG: |-- VMPPacked 2024-12-14 10:22:52,339 [root]\r\n> DEBUG: |-- YodaPacked 2024-12-14 10:22:52,339 [root] DEBUG: |--\r\n> PDF_Annot_URLs 2024-12-14 10:22:52,339 [root] DEBUG: |-- Polymorphic\r\n> 2024-12-14 10:22:52,339 [root] DEBUG: |-- PunchPlusPlusPCREs 2024-12-14\r\n> 10:22:52,339 [root] DEBUG: |-- Procmem_Yara 2024-12-14 10:22:52,339 [root]\r\n> DEBUG: |-- CheckIP 2024-12-14 10:22:52,339 [root] DEBUG: |-- Authenticode\r\n> 2024-12-14 10:22:52,339 [root] DEBUG: |-- InvalidAuthenticodeSignature\r\n> 2024-12-14 10:22:52,339 [root] DEBUG: |-- DotNetAnomaly 2024-12-14\r\n> 10:22:52,339 [root] DEBUG: |-- Static_Java 2024-12-14 10:22:52,339 [root]\r\n> DEBUG: |-- Static_PDF 2024-12-14 10:22:52,339 [root] DEBUG: |-- PEAnomaly\r\n> 2024-12-14 10:22:52,339 [root] DEBUG: |-- PECompileTimeStomping 2024-12-14\r\n> 10:22:52,339 [root] DEBUG: |-- StaticPEPDBPath 2024-12-14 10:22:52,339\r\n> [root] DEBUG: |-- RATConfig 2024-12-14 10:22:52,340 [root] DEBUG: |--\r\n> VersionInfoAnomaly 2024-12-14 10:22:52,340 [root] DEBUG: |-- StealthNetwork\r\n> 2024-12-14 10:22:52,340 [root] DEBUG: |-- SuricataAlert 2024-12-14\r\n> 10:22:52,340 [root] DEBUG: |-- VolDevicetree1 2024-12-14 10:22:52,340\r\n> [root] DEBUG: |-- VolHandles1 2024-12-14 10:22:52,340 [root] DEBUG: |--\r\n> VolLdrModules1 2024-12-14 10:22:52,340 [root] DEBUG: |-- VolLdrModules2\r\n> 2024-12-14 10:22:52,340 [root] DEBUG: |-- VolMalfind1 2024-12-14\r\n> 10:22:52,340 [root] DEBUG: |-- VolMalfind2 2024-12-14 10:22:52,340 [root]\r\n> DEBUG: |-- VolModscan1 2024-12-14 10:22:52,340 [root] DEBUG: |--\r\n> VolSvcscan1 2024-12-14 10:22:52,340 [root] DEBUG: |-- VolSvcscan2\r\n> 2024-12-14 10:22:52,340 [root] DEBUG: |-- VolSvcscan3 2024-12-14\r\n> 10:22:52,340 [root] DEBUG: |-- WHOIS_Create 2024-12-14 10:22:52,340 [root]\r\n> DEBUG: |-- AccessesMailslot 2024-12-14 10:22:52,340 [root] DEBUG: |--\r\n> AccessesNetlogonRegkey 2024-12-14 10:22:52,340 [root] DEBUG: |--\r\n> AccessesPublicFolder 2024-12-14 10:22:52,340 [root] DEBUG: |--\r\n> AccessesSysvol 2024-12-14 10:22:52,340 [root] DEBUG: |-- WritesSysvol\r\n> 2024-12-14 10:22:52,340 [root] DEBUG: |-- AddsAdminUser 2024-12-14\r\n> 10:22:52,340 [root] DEBUG: |-- AddsUser 2024-12-14 10:22:52,340 [root]\r\n> DEBUG: |-- OverwritesAdminPassword 2024-12-14 10:22:52,340 [root] DEBUG:\r\n> |-- anomalous_deletefile 2024-12-14 10:22:52,340 [root] DEBUG: |--\r\n> AntiAnalysisDetectFile 2024-12-14 10:22:52,340 [root] DEBUG: |--\r\n> AntiAnalysisDetectReg 2024-12-14 10:22:52,341 [root] DEBUG: |--\r\n> QihooDetectLibs 2024-12-14 10:22:52,341 [root] DEBUG: |-- AhnlabDetectLibs\r\n> 2024-12-14 10:22:52,341 [root] DEBUG: |-- AvastDetectLibs 2024-12-14\r\n> 10:22:52,341 [root] DEBUG: |-- BitdefenderDetectLibs 2024-12-14\r\n> 10:22:52,341 [root] DEBUG: |-- BullguardDetectLibs 2024-12-14 10:22:52,341\r\n> [root] DEBUG: |-- ModifiesAttachmentManager 2024-12-14 10:22:52,341 [root]\r\n> DEBUG: |-- AntiAVDetectFile 2024-12-14 10:22:52,341 [root] DEBUG: |--\r\n> AntiAVDetectReg 2024-12-14 10:22:52,341 [root] DEBUG: |--\r\n> EmsisoftDetectLibs 2024-12-14 10:22:52,341 [root] DEBUG: |-- QurbDetectLibs\r\n> 2024-12-14 10:22:52,341 [root] DEBUG: |-- AntiAVServiceStop 2024-12-14\r\n> 10:22:52,341 [root] DEBUG: |-- AntiAVSRP 2024-12-14 10:22:52,341 [root]\r\n> DEBUG: |-- AntiAVWhitespace 2024-12-14 10:22:52,341 [root] DEBUG: |--\r\n> antidebug_addvectoredexceptionhandler 2024-12-14 10:22:52,341 [root] DEBUG:\r\n> |-- APIOverrideDetectLibs 2024-12-14 10:22:52,341 [root] DEBUG: |--\r\n> antidebug_checkremotedebuggerpresent 2024-12-14 10:22:52,341 [root] DEBUG:\r\n> |-- antidebug_debugactiveprocess 2024-12-14 10:22:52,341 [root] DEBUG: |--\r\n> AntiDBGDevices 2024-12-14 10:22:52,341 [root] DEBUG: |--\r\n> antidebug_gettickcount 2024-12-14 10:22:52,341 [root] DEBUG: |--\r\n> antidebug_guardpages 2024-12-14 10:22:52,341 [root] DEBUG: |--\r\n> antidebug_ntcreatethreadex 2024-12-14 10:22:52,341 [root] DEBUG: |--\r\n> BullguardDetectLibs 2024-12-14 10:22:52,341 [root] DEBUG: |--\r\n> antidebug_ntsetinformationthread 2024-12-14 10:22:52,341 [root] DEBUG: |--\r\n> antidebug_outputdebugstring 2024-12-14 10:22:52,341 [root] DEBUG: |--\r\n> antidebug_setunhandledexceptionfilter 2024-12-14 10:22:52,341 [root] DEBUG:\r\n> |-- AntiDBGWindows 2024-12-14 10:22:52,342 [root] DEBUG: |--\r\n> AntiEmuWinDefend 2024-12-14 10:22:52,342 [root] DEBUG: |-- WineDetectReg\r\n> 2024-12-14 10:22:52,342 [root] DEBUG: |-- WineDetectFunc 2024-12-14\r\n> 10:22:52,342 [root] DEBUG: |-- AntiSandboxCheckUserdomain 2024-12-14\r\n> 10:22:52,342 [root] DEBUG: |-- AntiCuckoo 2024-12-14 10:22:52,342 [root]\r\n> DEBUG: |-- CuckooDetectFiles 2024-12-14 10:22:52,342 [root] DEBUG: |--\r\n> CuckooCrash 2024-12-14 10:22:52,342 [root] DEBUG: |--\r\n> AntiSandboxForegroundWindow 2024-12-14 10:22:52,342 [root] DEBUG: |--\r\n> FortinetDetectFiles 2024-12-14 10:22:52,342 [root] DEBUG: |--\r\n> SandboxJoeAnubisDetectFiles 2024-12-14 10:22:52,342 [root] DEBUG: |--\r\n> HookMouse 2024-12-14 10:22:52,342 [root] DEBUG: |-- AntiSandboxRestart\r\n> 2024-12-14 10:22:52,342 [root] DEBUG: |-- SandboxieDetectLibs 2024-12-14\r\n> 10:22:52,342 [root] DEBUG: |-- AntisandboxSboxieMutex 2024-12-14\r\n> 10:22:52,342 [root] DEBUG: |-- AntiSandboxSboxieObjects 2024-12-14\r\n> 10:22:52,342 [root] DEBUG: |-- AntiSandboxScriptTimer 2024-12-14\r\n> 10:22:52,342 [root] DEBUG: |-- AntiSandboxSleep 2024-12-14 10:22:52,342\r\n> [root] DEBUG: |-- SunbeltDetectFiles 2024-12-14 10:22:52,342 [root] DEBUG:\r\n> |-- SunbeltDetectLibs 2024-12-14 10:22:52,342 [root] DEBUG: |--\r\n> AntiSandboxSuspend 2024-12-14 10:22:52,342 [root] DEBUG: |--\r\n> ThreatTrackDetectFiles 2024-12-14 10:22:52,342 [root] DEBUG: |-- Unhook\r\n> 2024-12-14 10:22:52,342 [root] DEBUG: |-- BochsDetectKeys 2024-12-14\r\n> 10:22:52,342 [root] DEBUG: |-- AntiVMDirectoryObjects 2024-12-14\r\n> 10:22:52,342 [root] DEBUG: |-- AntiVMBios 2024-12-14 10:22:52,342 [root]\r\n> DEBUG: |-- AntiVMCPU 2024-12-14 10:22:52,343 [root] DEBUG: |--\r\n> DiskInformation 2024-12-14 10:22:52,343 [root] DEBUG: |--\r\n> SetupAPIDiskInformation 2024-12-14 10:22:52,343 [root] DEBUG: |--\r\n> AntiVMDiskReg 2024-12-14 10:22:52,343 [root] DEBUG: |-- AntiVMSCSI\r\n> 2024-12-14 10:22:52,343 [root] DEBUG: |-- AntiVMServices 2024-12-14\r\n> 10:22:52,343 [root] DEBUG: |-- AntiVMSystem 2024-12-14 10:22:52,343 [root]\r\n> DEBUG: |-- HyperVDetectKeys 2024-12-14 10:22:52,343 [root] DEBUG: |--\r\n> AntiVMChecksAvailableMemory 2024-12-14 10:22:52,343 [root] DEBUG: |--\r\n> NetworkAdapters 2024-12-14 10:22:52,343 [root] DEBUG: |--\r\n> ParallelsDetectKeys 2024-12-14 10:22:52,343 [root] DEBUG: |--\r\n> VBoxDetectDevices 2024-12-14 10:22:52,343 [root] DEBUG: |-- VBoxDetectFiles\r\n> 2024-12-14 10:22:52,343 [root] DEBUG: |-- VBoxDetectKeys 2024-12-14\r\n> 10:22:52,343 [root] DEBUG: |-- VBoxDetectLibs 2024-12-14 10:22:52,343\r\n> [root] DEBUG: |-- VBoxDetectProvname 2024-12-14 10:22:52,343 [root] DEBUG:\r\n> |-- VBoxDetectWindow 2024-12-14 10:22:52,343 [root] DEBUG: |--\r\n> VMwareDetectDevices 2024-12-14 10:22:52,343 [root] DEBUG: |--\r\n> VMwareDetectEvent 2024-12-14 10:22:52,343 [root] DEBUG: |--\r\n> VMwareDetectFiles 2024-12-14 10:22:52,343 [root] DEBUG: |--\r\n> VMwareDetectKeys 2024-12-14 10:22:52,343 [root] DEBUG: |-- VMwareDetectLibs\r\n> 2024-12-14 10:22:52,343 [root] DEBUG: |-- VMwareDetectMutexes 2024-12-14\r\n> 10:22:52,343 [root] DEBUG: |-- VPCDetectFiles 2024-12-14 10:22:52,343\r\n> [root] DEBUG: |-- VPCDetectKeys 2024-12-14 10:22:52,344 [root] DEBUG: |--\r\n> VPCDetectMutex 2024-12-14 10:22:52,344 [root] DEBUG: |-- XenDetectKeys\r\n> 2024-12-14 10:22:52,344 [root] DEBUG: |-- APISpamming 2024-12-14\r\n> 10:22:52,344 [root] DEBUG: |-- api_uuidfromstringa 2024-12-14 10:22:52,344\r\n> [root] DEBUG: |-- AsyncRatMutex 2024-12-14 10:22:52,344 [root] DEBUG: |--\r\n> GulpixBehavior 2024-12-14 10:22:52,344 [root] DEBUG: |-- KetricanRegkeys\r\n> 2024-12-14 10:22:52,344 [root] DEBUG: |-- OkrumMutexes 2024-12-14\r\n> 10:22:52,344 [root] DEBUG: |-- Cridex 2024-12-14 10:22:52,344 [root] DEBUG:\r\n> |-- Geodo 2024-12-14 10:22:52,345 [root] DEBUG: |-- Prinimalka 2024-12-14\r\n> 10:22:52,345 [root] DEBUG: |-- SpyEyeMutexes 2024-12-14 10:22:52,345 [root]\r\n> DEBUG: |-- ZeusMutexes 2024-12-14 10:22:52,345 [root] DEBUG: |--\r\n> BCDEditCommand 2024-12-14 10:22:52,345 [root] DEBUG: |-- BitcoinOpenCL\r\n> 2024-12-14 10:22:52,345 [root] DEBUG: |-- AccessesPrimaryPartition\r\n> 2024-12-14 10:22:52,345 [root] DEBUG: |-- Bootkit 2024-12-14 10:22:52,345\r\n> [root] DEBUG: |-- DirectHDDAccess 2024-12-14 10:22:52,345 [root] DEBUG: |--\r\n> EnumeratesPhysicalDrives 2024-12-14 10:22:52,345 [root] DEBUG: |--\r\n> PhysicalDriveAccess 2024-12-14 10:22:52,345 [root] DEBUG: |--\r\n> PotentialOverWriteMBR 2024-12-14 10:22:52,345 [root] DEBUG: |--\r\n> SuspiciousIoctlSCSIPassthough 2024-12-14 10:22:52,345 [root] DEBUG: |--\r\n> Ruskill 2024-12-14 10:22:52,345 [root] DEBUG: |-- BrowserAddon 2024-12-14\r\n> 10:22:52,345 [root] DEBUG: |-- ChromiumBrowserExtensionDirectory 2024-12-14\r\n> 10:22:52,345 [root] DEBUG: |-- BrowserHelperObject 2024-12-14 10:22:52,346\r\n> [root] DEBUG: |-- BrowserNeeded 2024-12-14 10:22:52,346 [root] DEBUG: |--\r\n> ModifyProxy 2024-12-14 10:22:52,346 [root] DEBUG: |-- BrowserScanbox\r\n> 2024-12-14 10:22:52,346 [root] DEBUG: |-- BrowserSecurity 2024-12-14\r\n> 10:22:52,346 [root] DEBUG: |-- browser_startpage 2024-12-14 10:22:52,346\r\n> [root] DEBUG: |-- FirefoxDisablesProcessPerTab 2024-12-14 10:22:52,346\r\n> [root] DEBUG: |-- IEDisablesProcessPerTab 2024-12-14 10:22:52,346 [root]\r\n> DEBUG: |-- OdbcconfBypass 2024-12-14 10:22:52,346 [root] DEBUG: |--\r\n> RegSrv32SquiblydooDLLLoad 2024-12-14 10:22:52,346 [root] DEBUG: |--\r\n> SquiblydooBypass 2024-12-14 10:22:52,346 [root] DEBUG: |-- SquiblytwoBypass\r\n> 2024-12-14 10:22:52,347 [root] DEBUG: |-- BypassFirewall 2024-12-14\r\n> 10:22:52,347 [root] DEBUG: |-- UACBypassCMSTP 2024-12-14 10:22:52,347\r\n> [root] DEBUG: |-- UACBypassCMSTPCOM 2024-12-14 10:22:52,347 [root] DEBUG:\r\n> |-- UACBypassDelegateExecuteSdclt 2024-12-14 10:22:52,347 [root] DEBUG: |--\r\n> UACBypassEventvwr 2024-12-14 10:22:52,347 [root] DEBUG: |--\r\n> UACBypassFodhelper 2024-12-14 10:22:52,347 [root] DEBUG: |--\r\n> CAPEExtractedContent 2024-12-14 10:22:52,347 [root] DEBUG: |--\r\n> CarberpMutexes 2024-12-14 10:22:52,347 [root] DEBUG: |-- ClearsLogs\r\n> 2024-12-14 10:22:52,347 [root] DEBUG: |-- ClickfraudCookies 2024-12-14\r\n> 10:22:52,347 [root] DEBUG: |-- ClickfraudVolume 2024-12-14 10:22:52,347\r\n> [root] DEBUG: |-- CmdlineObfuscation 2024-12-14 10:22:52,347 [root] DEBUG:\r\n> |-- CmdlineSwitches 2024-12-14 10:22:52,347 [root] DEBUG: |--\r\n> CmdlineTerminate 2024-12-14 10:22:52,347 [root] DEBUG: |--\r\n> CommandLineForFilesWildCard 2024-12-14 10:22:52,347 [root] DEBUG: |--\r\n> CommandLineHTTPLink 2024-12-14 10:22:52,347 [root] DEBUG: |--\r\n> CommandLineLongString 2024-12-14 10:22:52,348 [root] DEBUG: |--\r\n> CommandLineReversedHTTPLink 2024-12-14 10:22:52,348 [root] DEBUG: |--\r\n> LongCommandline 2024-12-14 10:22:52,348 [root] DEBUG: |--\r\n> PowershellRenamedCommandLine 2024-12-14 10:22:52,348 [root] DEBUG: |--\r\n> SystemAccountDiscoveryCMD 2024-12-14 10:22:52,348 [root] DEBUG: |--\r\n> SystemCurrentlyLoggedinUserCMD 2024-12-14 10:22:52,348 [root] DEBUG: |--\r\n> SystemInfoDiscoveryCMD 2024-12-14 10:22:52,348 [root] DEBUG: |--\r\n> SystemInfoDiscoveryPWSH 2024-12-14 10:22:52,348 [root] DEBUG: |--\r\n> SystemNetworkDiscoveryCMD 2024-12-14 10:22:52,348 [root] DEBUG: |--\r\n> SystemNetworkDiscoveryPWSH 2024-12-14 10:22:52,348 [root] DEBUG: |--\r\n> SystemUserDiscoveryCMD 2024-12-14 10:22:52,348 [root] DEBUG: |--\r\n> CompilesDotNetCode 2024-12-14 10:22:52,348 [root] DEBUG: |-- CopiesSelf\r\n> 2024-12-14 10:22:52,348 [root] DEBUG: |-- CreatesExe 2024-12-14\r\n> 10:22:52,348 [root] DEBUG: |-- CreatesLargeKey 2024-12-14 10:22:52,348\r\n> [root] DEBUG: |-- CreatesNullValue 2024-12-14 10:22:52,348 [root] DEBUG:\r\n> |-- CredWiz 2024-12-14 10:22:52,348 [root] DEBUG: |-- EnablesWDigest\r\n> 2024-12-14 10:22:52,349 [root] DEBUG: |-- VaultCmd 2024-12-14 10:22:52,349\r\n> [root] DEBUG: |-- FileCredentialStoreAccess 2024-12-14 10:22:52,349 [root]\r\n> DEBUG: |-- FileCredentialStoreWrite 2024-12-14 10:22:52,349 [root] DEBUG:\r\n> |-- LsassCredentialDumping 2024-12-14 10:22:52,349 [root] DEBUG: |--\r\n> RegistryCredentialDumping 2024-12-14 10:22:52,349 [root] DEBUG: |--\r\n> RegistryCredentialStoreAccess 2024-12-14 10:22:52,349 [root] DEBUG: |--\r\n> RegistryLSASecretsAccess 2024-12-14 10:22:52,349 [root] DEBUG: |--\r\n> ComsvcsCredentialDump 2024-12-14 10:22:52,349 [root] DEBUG: |--\r\n> CriticalProcess 2024-12-14 10:22:52,349 [root] DEBUG: |-- CryptGenKey\r\n> 2024-12-14 10:22:52,349 [root] DEBUG: |-- CryptominingStratumCommand\r\n> 2024-12-14 10:22:52,349 [root] DEBUG: |-- MINERS 2024-12-14 10:22:52,349\r\n> [root] DEBUG: |-- CVE_2014_6332 2024-12-14 10:22:52,349 [root] DEBUG: |--\r\n> CVE2015_2419_JS 2024-12-14 10:22:52,349 [root] DEBUG: |-- CVE_2016_0189\r\n> 2024-12-14 10:22:52,349 [root] DEBUG: |-- CVE_2016_7200 2024-12-14\r\n> 10:22:52,349 [root] DEBUG: |-- CypherITMutexes 2024-12-14 10:22:52,350\r\n> [root] DEBUG: |-- DarkCometRegkeys 2024-12-14 10:22:52,350 [root] DEBUG:\r\n> |-- DatopLoader 2024-12-14 10:22:52,350 [root] DEBUG: |-- DeadConnect\r\n> 2024-12-14 10:22:52,350 [root] DEBUG: |-- DeadLink 2024-12-14 10:22:52,350\r\n> [root] DEBUG: |-- DebugsSelf 2024-12-14 10:22:52,350 [root] DEBUG: |--\r\n> DecoyDocument 2024-12-14 10:22:52,350 [root] DEBUG: |-- DecoyImage\r\n> 2024-12-14 10:22:52,350 [root] DEBUG: |-- DeepFreezeMutex 2024-12-14\r\n> 10:22:52,350 [root] DEBUG: |-- DeletesExecutedFiles 2024-12-14 10:22:52,350\r\n> [root] DEBUG: |-- DeletesSelf 2024-12-14 10:22:52,350 [root] DEBUG: |--\r\n> DeletesShadowCopies 2024-12-14 10:22:52,350 [root] DEBUG: |--\r\n> DeletesSystemStateBackup 2024-12-14 10:22:52,350 [root] DEBUG: |--\r\n> DEPBypass 2024-12-14 10:22:52,350 [root] DEBUG: |-- DEPDisable 2024-12-14\r\n> 10:22:52,350 [root] DEBUG: |-- DisablesAppLaunch 2024-12-14 10:22:52,350\r\n> [root] DEBUG: |-- DisablesAutomaticAppTermination 2024-12-14 10:22:52,350\r\n> [root] DEBUG: |-- DisablesAppVirtualiztion 2024-12-14 10:22:52,350 [root]\r\n> DEBUG: |-- DisablesBackups 2024-12-14 10:22:52,351 [root] DEBUG: |--\r\n> DisablesBrowserWarn 2024-12-14 10:22:52,351 [root] DEBUG: |--\r\n> DisablesContextMenus 2024-12-14 10:22:52,351 [root] DEBUG: |--\r\n> DisablesCPLDisplay 2024-12-14 10:22:52,351 [root] DEBUG: |--\r\n> DisablesCrashdumps 2024-12-14 10:22:52,351 [root] DEBUG: |--\r\n> DisablesMappedDrivesAutodisconnect 2024-12-14 10:22:52,351 [root] DEBUG:\r\n> |-- DisablesEventLogging 2024-12-14 10:22:52,351 [root] DEBUG: |--\r\n> DisableFolderOptions 2024-12-14 10:22:52,351 [root] DEBUG: |--\r\n> DisablesNotificationCenter 2024-12-14 10:22:52,351 [root] DEBUG: |--\r\n> DisablesPowerOptions 2024-12-14 10:22:52,351 [root] DEBUG: |--\r\n> DisablesRestoreDefaultState 2024-12-14 10:22:52,351 [root] DEBUG: |--\r\n> DisableRunCommand 2024-12-14 10:22:52,351 [root] DEBUG: |--\r\n> DisablesSecurity 2024-12-14 10:22:52,351 [root] DEBUG: |--\r\n> DisablesSmartScreen 2024-12-14 10:22:52,351 [root] DEBUG: |-- DisablesSPDY\r\n> 2024-12-14 10:22:52,351 [root] DEBUG: |-- DisablesStartMenuSearch\r\n> 2024-12-14 10:22:52,351 [root] DEBUG: |-- DisablesSystemRestore 2024-12-14\r\n> 10:22:52,351 [root] DEBUG: |-- DisablesUAC 2024-12-14 10:22:52,351 [root]\r\n> DEBUG: |-- DisablesWER 2024-12-14 10:22:52,351 [root] DEBUG: |--\r\n> DisablesWFP 2024-12-14 10:22:52,351 [root] DEBUG: |--\r\n> DisablesWindowsDefender 2024-12-14 10:22:52,351 [root] DEBUG: |--\r\n> DisablesWindowsDefenderDISM 2024-12-14 10:22:52,351 [root] DEBUG: |--\r\n> DisablesWindowsDefenderLogging 2024-12-14 10:22:52,351 [root] DEBUG: |--\r\n> RemovesWindowsDefenderContextMenu 2024-12-14 10:22:52,351 [root] DEBUG: |--\r\n> WindowsDefenderPowerShell 2024-12-14 10:22:52,351 [root] DEBUG: |--\r\n> DisablesWindowsFileProtection 2024-12-14 10:22:52,352 [root] DEBUG: |--\r\n> DisablesWindowsUpdate 2024-12-14 10:22:52,352 [root] DEBUG: |--\r\n> DisablesWindowsFirewall 2024-12-14 10:22:52,352 [root] DEBUG: |--\r\n> DllLoadUncommonFileTypes 2024-12-14 10:22:52,352 [root] DEBUG: |--\r\n> DocScriptEXEDrop 2024-12-14 10:22:52,352 [root] DEBUG: |--\r\n> AdfindDomainEnumeration 2024-12-14 10:22:52,352 [root] DEBUG: |--\r\n> DomainEnumerationCommands 2024-12-14 10:22:52,352 [root] DEBUG: |--\r\n> AndromutMutexes 2024-12-14 10:22:52,352 [root] DEBUG: |-- DownloaderCabby\r\n> 2024-12-14 10:22:52,352 [root] DEBUG: |-- GuLoaderAPIs 2024-12-14\r\n> 10:22:52,352 [root] DEBUG: |-- PhorpiexMutexes 2024-12-14 10:22:52,352\r\n> [root] DEBUG: |-- ProtonBotMutexes 2024-12-14 10:22:52,352 [root] DEBUG:\r\n> |-- DriverFilterManager 2024-12-14 10:22:52,352 [root] DEBUG: |--\r\n> DriverLoad 2024-12-14 10:22:52,352 [root] DEBUG: |-- Dropper 2024-12-14\r\n> 10:22:52,352 [root] DEBUG: |-- EXEDropper_JS 2024-12-14 10:22:52,352 [root]\r\n> DEBUG: |-- dynamic_function_loading 2024-12-14 10:22:52,352 [root] DEBUG:\r\n> |-- DLLArchiveExecution 2024-12-14 10:22:52,352 [root] DEBUG: |--\r\n> LNKArchiveExecution 2024-12-14 10:22:52,352 [root] DEBUG: |--\r\n> ScriptArchiveExecution 2024-12-14 10:22:52,352 [root] DEBUG: |--\r\n> EncryptedIOC 2024-12-14 10:22:52,352 [root] DEBUG: |-- Excel4MacroUrls\r\n> 2024-12-14 10:22:52,352 [root] DEBUG: |-- Crash 2024-12-14 10:22:52,352\r\n> [root] DEBUG: |-- ProcessCreationSuspiciousLocation 2024-12-14 10:22:52,353\r\n> [root] DEBUG: |-- exploit_getbasekerneladdress 2024-12-14 10:22:52,353\r\n> [root] DEBUG: |-- exploit_gethaldispatchtable 2024-12-14 10:22:52,353\r\n> [root] DEBUG: |-- ExploitHeapspray 2024-12-14 10:22:52,353 [root] DEBUG:\r\n> |-- SpoolerAccess 2024-12-14 10:22:52,353 [root] DEBUG: |-- SpoolerSvcStart\r\n> 2024-12-14 10:22:52,353 [root] DEBUG: |-- KoadicAPIs 2024-12-14\r\n> 10:22:52,353 [root] DEBUG: |-- KoadicNetworkActivity 2024-12-14\r\n> 10:22:52,353 [root] DEBUG: |-- Modiloader_APIs 2024-12-14 10:22:52,353\r\n> [root] DEBUG: |-- MappedDrivesUAC 2024-12-14 10:22:52,353 [root] DEBUG: |--\r\n> SystemMetrics 2024-12-14 10:22:52,353 [root] DEBUG: |-- Generic_Phish\r\n> 2024-12-14 10:22:52,353 [root] DEBUG: |-- HidesRecycleBinIcon 2024-12-14\r\n> 10:22:52,353 [root] DEBUG: |-- HTTP_Request 2024-12-14 10:22:52,353 [root]\r\n> DEBUG: |-- ApocalypseStealerFileBehavior 2024-12-14 10:22:52,353 [root]\r\n> DEBUG: |-- ArkeiFiles 2024-12-14 10:22:52,353 [root] DEBUG: |--\r\n> AzorultMutexes 2024-12-14 10:22:52,353 [root] DEBUG: |-- BitcoinWallet\r\n> 2024-12-14 10:22:52,353 [root] DEBUG: |-- BrowserStealer 2024-12-14\r\n> 10:22:52,353 [root] DEBUG: |-- InfostealerBrowserPassword 2024-12-14\r\n> 10:22:52,353 [root] DEBUG: |-- CookiesStealer 2024-12-14 10:22:52,353\r\n> [root] DEBUG: |-- CryptBotFiles 2024-12-14 10:22:52,353 [root] DEBUG: |--\r\n> CryptBotNetwork 2024-12-14 10:22:52,353 [root] DEBUG: |-- EchelonFiles\r\n> 2024-12-14 10:22:52,353 [root] DEBUG: |-- FTPStealer 2024-12-14\r\n> 10:22:52,353 [root] DEBUG: |-- IMStealer 2024-12-14 10:22:52,354 [root]\r\n> DEBUG: |-- KeyLogger 2024-12-14 10:22:52,354 [root] DEBUG: |-- EmailStealer\r\n> 2024-12-14 10:22:52,354 [root] DEBUG: |-- MassLoggerArtifacts 2024-12-14\r\n> 10:22:52,354 [root] DEBUG: |-- MassLoggerFiles 2024-12-14 10:22:52,354\r\n> [root] DEBUG: |-- MassLoggerVersion 2024-12-14 10:22:52,354 [root] DEBUG:\r\n> |-- PoullightFiles 2024-12-14 10:22:52,354 [root] DEBUG: |--\r\n> PurpleWaveMutexes 2024-12-14 10:22:52,354 [root] DEBUG: |--\r\n> PurpleWaveNetworkAcivity 2024-12-14 10:22:52,354 [root] DEBUG: |--\r\n> QuilClipperMutexes 2024-12-14 10:22:52,354 [root] DEBUG: |--\r\n> QuilClipperNetworkBehavior 2024-12-14 10:22:52,354 [root] DEBUG: |--\r\n> QulabFiles 2024-12-14 10:22:52,354 [root] DEBUG: |-- QulabMutexes\r\n> 2024-12-14 10:22:52,354 [root] DEBUG: |-- RaccoonInfoStealerMutex\r\n> 2024-12-14 10:22:52,354 [root] DEBUG: |-- raccoon 2024-12-14 10:22:52,354\r\n> [root] DEBUG: |-- CapturesScreenshot 2024-12-14 10:22:52,354 [root] DEBUG:\r\n> |-- vidar 2024-12-14 10:22:52,354 [root] DEBUG: |-- InjectionCRT 2024-12-14\r\n> 10:22:52,354 [root] DEBUG: |-- InjectionExplorer 2024-12-14 10:22:52,354\r\n> [root] DEBUG: |-- InjectionExtension 2024-12-14 10:22:52,354 [root] DEBUG:\r\n> |-- InjectionNetworkTraffic 2024-12-14 10:22:52,354 [root] DEBUG: |--\r\n> InjectionRUNPE 2024-12-14 10:22:52,354 [root] DEBUG: |-- InjectionRWX\r\n> 2024-12-14 10:22:52,354 [root] DEBUG: |-- injection_themeinitapihook\r\n> 2024-12-14 10:22:52,354 [root] DEBUG: |-- Internet_Dropper 2024-12-14\r\n> 10:22:52,354 [root] DEBUG: |-- IPC_NamedPipe 2024-12-14 10:22:52,354 [root]\r\n> DEBUG: |-- JS_Phish 2024-12-14 10:22:52,355 [root] DEBUG: |--\r\n> JS_SuspiciousRedirect 2024-12-14 10:22:52,355 [root] DEBUG: |--\r\n> malicious_dynamic_function_loading 2024-12-14 10:22:52,355 [root] DEBUG:\r\n> |-- EncryptPCInfo 2024-12-14 10:22:52,355 [root] DEBUG: |--\r\n> EnryptDataAgentTeslaHTTP 2024-12-14 10:22:52,355 [root] DEBUG: |--\r\n> EnryptDataAgentTeslaHTTPT2 2024-12-14 10:22:52,355 [root] DEBUG: |--\r\n> EnryptDataNanoCore 2024-12-14 10:22:52,355 [root] DEBUG: |-- MartiansIE\r\n> 2024-12-14 10:22:52,355 [root] DEBUG: |-- MartiansOffice 2024-12-14\r\n> 10:22:52,355 [root] DEBUG: |-- MimicsAgent 2024-12-14 10:22:52,355 [root]\r\n> DEBUG: |-- MimicsFiletime 2024-12-14 10:22:52,355 [root] DEBUG: |--\r\n> MimicsIcon 2024-12-14 10:22:52,355 [root] DEBUG: |-- MasqueradesProcessName\r\n> 2024-12-14 10:22:52,355 [root] DEBUG: |-- MimikatzModules 2024-12-14\r\n> 10:22:52,355 [root] DEBUG: |-- QuilMinerNetworkBehavior 2024-12-14\r\n> 10:22:52,355 [root] DEBUG: |-- ModifiesCerts 2024-12-14 10:22:52,355 [root]\r\n> DEBUG: |-- DotNetCLRUsageLogKnob 2024-12-14 10:22:52,355 [root] DEBUG: |--\r\n> Modifies_HostFile 2024-12-14 10:22:52,355 [root] DEBUG: |--\r\n> ModifiesOEMInformation 2024-12-14 10:22:52,355 [root] DEBUG: |--\r\n> ModifySecurityCenterWarnings 2024-12-14 10:22:52,355 [root] DEBUG: |--\r\n> ModifiesUACNotify 2024-12-14 10:22:52,355 [root] DEBUG: |--\r\n> ModifiesDesktopWallpaper 2024-12-14 10:22:52,355 [root] DEBUG: |-- ZoneID\r\n> 2024-12-14 10:22:52,355 [root] DEBUG: |-- move_file_on_reboot 2024-12-14\r\n> 10:22:52,355 [root] DEBUG: |-- Multiple_UA 2024-12-14 10:22:52,355 [root]\r\n> DEBUG: |-- NetworkAnomaly 2024-12-14 10:22:52,355 [root] DEBUG: |--\r\n> NetworkBIND 2024-12-14 10:22:52,356 [root] DEBUG: |--\r\n> NetworkCnCHTTPSArchive 2024-12-14 10:22:52,356 [root] DEBUG: |--\r\n> NetworkCnCHTTPSFreeWebHosting 2024-12-14 10:22:52,356 [root] DEBUG: |--\r\n> NetworkCnCHTTPSGeneric 2024-12-14 10:22:52,356 [root] DEBUG: |--\r\n> NetworkCnCHTTPSInteractsh 2024-12-14 10:22:52,356 [root] DEBUG: |--\r\n> NetworkCnCHTTPSOpenSource 2024-12-14 10:22:52,356 [root] DEBUG: |--\r\n> NetworkCnCHTTPSPasteSite 2024-12-14 10:22:52,356 [root] DEBUG: |--\r\n> NetworkCnCHTTPSPayload 2024-12-14 10:22:52,356 [root] DEBUG: |--\r\n> NetworkCnCHTTPSServiceInterface 2024-12-14 10:22:52,356 [root] DEBUG: |--\r\n> NetworkCnCHTTPSSocialMedia 2024-12-14 10:22:52,356 [root] DEBUG: |--\r\n> NetworkCnCHTTPSTelegram 2024-12-14 10:22:52,356 [root] DEBUG: |--\r\n> NetworkCnCHTTPSTempStorageSite 2024-12-14 10:22:52,356 [root] DEBUG: |--\r\n> NetworkCnCHTTPSTempURLDNS 2024-12-14 10:22:52,356 [root] DEBUG: |--\r\n> NetworkCnCHTTPSURLShortenerSite 2024-12-14 10:22:52,356 [root] DEBUG: |--\r\n> NetworkCnCHTTPSUserAgent 2024-12-14 10:22:52,356 [root] DEBUG: |--\r\n> NetworkCnCSMTPSExfil 2024-12-14 10:22:52,356 [root] DEBUG: |--\r\n> NetworkCnCSMTPSGeneric 2024-12-14 10:22:52,356 [root] DEBUG: |--\r\n> NetworkDNSBlockChain 2024-12-14 10:22:52,356 [root] DEBUG: |--\r\n> NetworkDNSIDN 2024-12-14 10:22:52,356 [root] DEBUG: |-- NetworkDNSOpenNIC\r\n> 2024-12-14 10:22:52,356 [root] DEBUG: |-- NetworkDNSPasteSite 2024-12-14\r\n> 10:22:52,357 [root] DEBUG: |-- NetworkDNSReverseProxy 2024-12-14\r\n> 10:22:52,357 [root] DEBUG: |-- NetworkDNSSuspiciousQueryType 2024-12-14\r\n> 10:22:52,357 [root] DEBUG: |-- NetworkDNSTempFileService 2024-12-14\r\n> 10:22:52,357 [root] DEBUG: |-- NetworkDNSTempURLDNS 2024-12-14 10:22:52,357\r\n> [root] DEBUG: |-- NetworkDNSTunnelingRequest 2024-12-14 10:22:52,357 [root]\r\n> DEBUG: |-- NetworkDNSURLShortener 2024-12-14 10:22:52,357 [root] DEBUG: |--\r\n> NetworkDOHTLS 2024-12-14 10:22:52,357 [root] DEBUG: |-- Suspicious_TLD\r\n> 2024-12-14 10:22:52,357 [root] DEBUG: |-- NetworkDocumentHTTP 2024-12-14\r\n> 10:22:52,357 [root] DEBUG: |-- ExplorerHTTP 2024-12-14 10:22:52,357 [root]\r\n> DEBUG: |-- NetworkFakeUserAgent 2024-12-14 10:22:52,357 [root] DEBUG: |--\r\n> NetworkDocumentFile 2024-12-14 10:22:52,357 [root] DEBUG: |-- NetworkEXE\r\n> 2024-12-14 10:22:52,357 [root] DEBUG: |-- Tor 2024-12-14 10:22:52,357\r\n> [root] DEBUG: |-- TorHiddenService 2024-12-14 10:22:52,358 [root] DEBUG:\r\n> |-- Office_Code_Page 2024-12-14 10:22:52,358 [root] DEBUG: |--\r\n> OfficeAddinLoading 2024-12-14 10:22:52,358 [root] DEBUG: |-- OfficeCOMLoad\r\n> 2024-12-14 10:22:52,358 [root] DEBUG: |-- OfficeDotNetLoad 2024-12-14\r\n> 10:22:52,358 [root] DEBUG: |-- OfficeMSHTMLLoad 2024-12-14 10:22:52,358\r\n> [root] DEBUG: |-- OfficePerfKey 2024-12-14 10:22:52,358 [root] DEBUG: |--\r\n> OfficeVBLLoad 2024-12-14 10:22:52,358 [root] DEBUG: |-- OfficeWMILoad\r\n> 2024-12-14 10:22:52,358 [root] DEBUG: |-- OfficeCVE201711882 2024-12-14\r\n> 10:22:52,358 [root] DEBUG: |-- OfficeCVE201711882Network 2024-12-14\r\n> 10:22:52,358 [root] DEBUG: |-- OfficeCVE202140444 2024-12-14 10:22:52,358\r\n> [root] DEBUG: |-- OfficeCVE202140444M2 2024-12-14 10:22:52,358 [root]\r\n> DEBUG: |-- OfficeFlashLoad 2024-12-14 10:22:52,359 [root] DEBUG: |--\r\n> OfficePostScript 2024-12-14 10:22:52,359 [root] DEBUG: |-- Office_Macro\r\n> 2024-12-14 10:22:52,359 [root] DEBUG: |-- ChangesTrustCenter_settings\r\n> 2024-12-14 10:22:52,359 [root] DEBUG: |-- DisablesVBATrustAccess 2024-12-14\r\n> 10:22:52,359 [root] DEBUG: |-- OfficeMacroAutoExecution 2024-12-14\r\n> 10:22:52,359 [root] DEBUG: |-- OfficeMacroIOC 2024-12-14 10:22:52,359\r\n> [root] DEBUG: |-- OfficeMacroMaliciousPredition 2024-12-14 10:22:52,359\r\n> [root] DEBUG: |-- OfficeMacroSuspicious 2024-12-14 10:22:52,359 [root]\r\n> DEBUG: |-- RTFASLRBypass 2024-12-14 10:22:52,359 [root] DEBUG: |--\r\n> RTFAnomalyCharacterSet 2024-12-14 10:22:52,359 [root] DEBUG: |--\r\n> RTFAnomalyVersion 2024-12-14 10:22:52,359 [root] DEBUG: |--\r\n> RTFEmbeddedContent 2024-12-14 10:22:52,359 [root] DEBUG: |--\r\n> RTFEmbeddedOfficeFile 2024-12-14 10:22:52,359 [root] DEBUG: |--\r\n> RTFExploitStatic 2024-12-14 10:22:52,359 [root] DEBUG: |-- OfficeSecurity\r\n> 2024-12-14 10:22:52,359 [root] DEBUG: |-- OfficeAnamalousFeature 2024-12-14\r\n> 10:22:52,359 [root] DEBUG: |-- OfficeDDECommand 2024-12-14 10:22:52,360\r\n> [root] DEBUG: |-- OfficeSuspiciousProcesses 2024-12-14 10:22:52,360 [root]\r\n> DEBUG: |-- OfficeWriteEXE 2024-12-14 10:22:52,360 [root] DEBUG: |--\r\n> ArmadilloMutex 2024-12-14 10:22:52,360 [root] DEBUG: |-- ArmadilloRegKey\r\n> 2024-12-14 10:22:52,360 [root] DEBUG: |-- ADS 2024-12-14 10:22:52,360\r\n> [root] DEBUG: |-- Autorun 2024-12-14 10:22:52,360 [root] DEBUG: |--\r\n> Autorun_scheduler 2024-12-14 10:22:52,360 [root] DEBUG: |--\r\n> PersistenceSafeBoot 2024-12-14 10:22:52,360 [root] DEBUG: |--\r\n> PersistenceBootexecute 2024-12-14 10:22:52,360 [root] DEBUG: |--\r\n> PersistenceRegistryScript 2024-12-14 10:22:52,360 [root] DEBUG: |--\r\n> PersistenceIFEO 2024-12-14 10:22:52,360 [root] DEBUG: |--\r\n> PersistenceSilentProcessExit 2024-12-14 10:22:52,360 [root] DEBUG: |--\r\n> PersistenceRDPRegistry 2024-12-14 10:22:52,360 [root] DEBUG: |--\r\n> PersistenceRDPShadowing 2024-12-14 10:22:52,360 [root] DEBUG: |--\r\n> PersistenceService 2024-12-14 10:22:52,360 [root] DEBUG: |--\r\n> PersistenceShimDatabase 2024-12-14 10:22:52,360 [root] DEBUG: |--\r\n> PowerpoolMutexes 2024-12-14 10:22:52,361 [root] DEBUG: |--\r\n> PowerShellNetworkConnection 2024-12-14 10:22:52,361 [root] DEBUG: |--\r\n> PowerShellScriptBlockLogging 2024-12-14 10:22:52,361 [root] DEBUG: |--\r\n> PowershellCommandSuspicious 2024-12-14 10:22:52,361 [root] DEBUG: |--\r\n> PowershellDownload 2024-12-14 10:22:52,361 [root] DEBUG: |--\r\n> PowershellRenamed 2024-12-14 10:22:52,361 [root] DEBUG: |--\r\n> PowershellRequest 2024-12-14 10:22:52,361 [root] DEBUG: |--\r\n> PowershellReversed 2024-12-14 10:22:52,361 [root] DEBUG: |--\r\n> PowershellVariableObfuscation 2024-12-14 10:22:52,361 [root] DEBUG: |--\r\n> PreventsSafeboot 2024-12-14 10:22:52,361 [root] DEBUG: |--\r\n> CmdlineProcessDiscovery 2024-12-14 10:22:52,361 [root] DEBUG: |--\r\n> CreateToolhelp32SnapshotProcessModuleEnumeration 2024-12-14 10:22:52,361\r\n> [root] DEBUG: |-- EnumeratesRunningProcesses 2024-12-14 10:22:52,361 [root]\r\n> DEBUG: |-- ProcessInterest 2024-12-14 10:22:52,361 [root] DEBUG: |--\r\n> ProcessNeeded 2024-12-14 10:22:52,361 [root] DEBUG: |-- MassDataEncryption\r\n> 2024-12-14 10:22:52,361 [root] DEBUG: |-- CryptoMixMutexes 2024-12-14\r\n> 10:22:52,361 [root] DEBUG: |-- DharmaMutexes 2024-12-14 10:22:52,361 [root]\r\n> DEBUG: |-- RansomwareDMALocker 2024-12-14 10:22:52,361 [root] DEBUG: |--\r\n> RansomwareExtensions 2024-12-14 10:22:52,361 [root] DEBUG: |--\r\n> RansomwareFileModifications 2024-12-14 10:22:52,361 [root] DEBUG: |--\r\n> RansomwareFiles 2024-12-14 10:22:52,361 [root] DEBUG: |-- FonixMutexes\r\n> 2024-12-14 10:22:52,362 [root] DEBUG: |-- GandCrabMutexes 2024-12-14\r\n> 10:22:52,362 [root] DEBUG: |-- GermanWiperMutexes 2024-12-14 10:22:52,362\r\n> [root] DEBUG: |-- MedusaLockerMutexes 2024-12-14 10:22:52,362 [root] DEBUG:\r\n> |-- MedusaLockerRegkeys 2024-12-14 10:22:52,362 [root] DEBUG: |--\r\n> RansomwareMessage 2024-12-14 10:22:52,362 [root] DEBUG: |-- NemtyMutexes\r\n> 2024-12-14 10:22:52,362 [root] DEBUG: |-- NemtyNetworkActivity 2024-12-14\r\n> 10:22:52,362 [root] DEBUG: |-- NemtyNote 2024-12-14 10:22:52,362 [root]\r\n> DEBUG: |-- NemtyRegkeys 2024-12-14 10:22:52,362 [root] DEBUG: |--\r\n> PYSAMutexes 2024-12-14 10:22:52,362 [root] DEBUG: |-- RansomwareRadamant\r\n> 2024-12-14 10:22:52,362 [root] DEBUG: |-- RansomwareRecyclebin 2024-12-14\r\n> 10:22:52,362 [root] DEBUG: |-- RevilMutexes 2024-12-14 10:22:52,362 [root]\r\n> DEBUG: |-- RevilRegkey 2024-12-14 10:22:52,362 [root] DEBUG: |--\r\n> SatanMutexes 2024-12-14 10:22:52,362 [root] DEBUG: |-- SnakeRansomMutexes\r\n> 2024-12-14 10:22:52,362 [root] DEBUG: |-- sodinokibi 2024-12-14\r\n> 10:22:52,362 [root] DEBUG: |-- StopRansomMutexes 2024-12-14 10:22:52,362\r\n> [root] DEBUG: |-- StopRansomwareCMD 2024-12-14 10:22:52,362 [root] DEBUG:\r\n> |-- StopRansomwareRegistry 2024-12-14 10:22:52,362 [root] DEBUG: |--\r\n> BeebusMutexes 2024-12-14 10:22:52,362 [root] DEBUG: |-- BlackNETMutexes\r\n> 2024-12-14 10:22:52,362 [root] DEBUG: |-- BlackRATAPIs 2024-12-14\r\n> 10:22:52,362 [root] DEBUG: |-- BlackRATMutexes 2024-12-14 10:22:52,362\r\n> [root] DEBUG: |-- BlackRATNetworkActivity 2024-12-14 10:22:52,362 [root]\r\n> DEBUG: |-- BlackRATRegistryKeys 2024-12-14 10:22:52,362 [root] DEBUG: |--\r\n> CRATMutexes 2024-12-14 10:22:52,363 [root] DEBUG: |-- DCRatAPIs 2024-12-14\r\n> 10:22:52,363 [root] DEBUG: |-- DCRatFiles 2024-12-14 10:22:52,363 [root]\r\n> DEBUG: |-- DCRatMutex 2024-12-14 10:22:52,363 [root] DEBUG: |--\r\n> FynloskiMutexes 2024-12-14 10:22:52,363 [root] DEBUG: |--\r\n> KaraganyEventObjects 2024-12-14 10:22:52,363 [root] DEBUG: |--\r\n> KaraganyFiles 2024-12-14 10:22:52,363 [root] DEBUG: |-- LimeRATMutexes\r\n> 2024-12-14 10:22:52,363 [root] DEBUG: |-- LimeRATRegkeys 2024-12-14\r\n> 10:22:52,363 [root] DEBUG: |-- LodaRATFileBehavior 2024-12-14 10:22:52,363\r\n> [root] DEBUG: |-- LuminosityRAT 2024-12-14 10:22:52,363 [root] DEBUG: |--\r\n> ModiRATBehavior 2024-12-14 10:22:52,363 [root] DEBUG: |-- NanocoreRAT\r\n> 2024-12-14 10:22:52,363 [root] DEBUG: |-- netwire 2024-12-14 10:22:52,363\r\n> [root] DEBUG: |-- NjratRegkeys 2024-12-14 10:22:52,363 [root] DEBUG: |--\r\n> ObliquekRATFiles 2024-12-14 10:22:52,363 [root] DEBUG: |--\r\n> ObliquekRATMutexes 2024-12-14 10:22:52,363 [root] DEBUG: |--\r\n> ObliquekRATNetworkActivity 2024-12-14 10:22:52,363 [root] DEBUG: |--\r\n> OrcusRAT 2024-12-14 10:22:52,363 [root] DEBUG: |-- ParallaxMutexes\r\n> 2024-12-14 10:22:52,363 [root] DEBUG: |-- PcClientMutexes 2024-12-14\r\n> 10:22:52,363 [root] DEBUG: |-- PlugxMutexes 2024-12-14 10:22:52,363 [root]\r\n> DEBUG: |-- PoisonIvyMutexes 2024-12-14 10:22:52,363 [root] DEBUG: |--\r\n> QuasarMutexes 2024-12-14 10:22:52,363 [root] DEBUG: |-- RatsnifMutexes\r\n> 2024-12-14 10:22:52,363 [root] DEBUG: |-- SennaMutexes 2024-12-14\r\n> 10:22:52,363 [root] DEBUG: |-- SpynetRat 2024-12-14 10:22:52,364 [root]\r\n> DEBUG: |-- TrochilusRATAPIs 2024-12-14 10:22:52,364 [root] DEBUG: |--\r\n> VenomRAT 2024-12-14 10:22:52,364 [root] DEBUG: |-- WarzoneRATFiles\r\n> 2024-12-14 10:22:52,364 [root] DEBUG: |-- WarzoneRATRegkeys 2024-12-14\r\n> 10:22:52,364 [root] DEBUG: |-- XpertRATFiles 2024-12-14 10:22:52,364 [root]\r\n> DEBUG: |-- XpertRATMutexes 2024-12-14 10:22:52,364 [root] DEBUG: |--\r\n> XtremeMutexes 2024-12-14 10:22:52,364 [root] DEBUG: |-- ReadsSelf\r\n> 2024-12-14 10:22:52,364 [root] DEBUG: |-- Recon_Beacon 2024-12-14\r\n> 10:22:52,364 [root] DEBUG: |-- Fingerprint 2024-12-14 10:22:52,364 [root]\r\n> DEBUG: |-- InstalledApps 2024-12-14 10:22:52,364 [root] DEBUG: |--\r\n> SystemInfo 2024-12-14 10:22:52,364 [root] DEBUG: |-- Accesses_RecycleBin\r\n> 2024-12-14 10:22:52,364 [root] DEBUG: |-- RemcosFiles 2024-12-14\r\n> 10:22:52,364 [root] DEBUG: |-- RemcosMutexes 2024-12-14 10:22:52,364 [root]\r\n> DEBUG: |-- RemcosRegkeys 2024-12-14 10:22:52,364 [root] DEBUG: |--\r\n> RDPTCPKey 2024-12-14 10:22:52,364 [root] DEBUG: |-- UsesRDPClip 2024-12-14\r\n> 10:22:52,364 [root] DEBUG: |-- UsesRemoteDesktopSession 2024-12-14\r\n> 10:22:52,364 [root] DEBUG: |-- RemovesNetworkingIcon 2024-12-14\r\n> 10:22:52,364 [root] DEBUG: |-- RemovesPinnedPrograms 2024-12-14\r\n> 10:22:52,364 [root] DEBUG: |-- RemovesSecurityAndMaintenanceIcon 2024-12-14\r\n> 10:22:52,364 [root] DEBUG: |-- RemovesStartMenuDefaults 2024-12-14\r\n> 10:22:52,364 [root] DEBUG: |-- RemovesUsernameStartMenu 2024-12-14\r\n> 10:22:52,364 [root] DEBUG: |-- RemovesZoneIdADS 2024-12-14 10:22:52,364\r\n> [root] DEBUG: |-- SpicyHotPotBehavior 2024-12-14 10:22:52,365 [root] DEBUG:\r\n> |-- ScriptCreatedProcess 2024-12-14 10:22:52,365 [root] DEBUG: |--\r\n> ScriptNetworkActvity 2024-12-14 10:22:52,365 [root] DEBUG: |--\r\n> SuspiciousJSScript 2024-12-14 10:22:52,365 [root] DEBUG: |--\r\n> JavaScriptTimer 2024-12-14 10:22:52,365 [root] DEBUG: |--\r\n> Secure_Login_Phish 2024-12-14 10:22:52,365 [root] DEBUG: |--\r\n> SecurityXploded_Modules 2024-12-14 10:22:52,365 [root] DEBUG: |--\r\n> GetClipboardData 2024-12-14 10:22:52,365 [root] DEBUG: |--\r\n> SetsAutoconfigURL 2024-12-14 10:22:52,365 [root] DEBUG: |-- InstallsWinpcap\r\n> 2024-12-14 10:22:52,365 [root] DEBUG: |-- SpoofsProcname 2024-12-14\r\n> 10:22:52,365 [root] DEBUG: |-- CreatesAutorunInf 2024-12-14 10:22:52,365\r\n> [root] DEBUG: |-- StackPivot 2024-12-14 10:22:52,365 [root] DEBUG: |--\r\n> StackPivotFileCreated 2024-12-14 10:22:52,365 [root] DEBUG: |--\r\n> StackPivotProcessCreate 2024-12-14 10:22:52,365 [root] DEBUG: |--\r\n> StealingClipboardData 2024-12-14 10:22:52,365 [root] DEBUG: |--\r\n> StealthChildProc 2024-12-14 10:22:52,365 [root] DEBUG: |-- StealthFile\r\n> 2024-12-14 10:22:52,365 [root] DEBUG: |-- StealthHiddenExtension 2024-12-14\r\n> 10:22:52,365 [root] DEBUG: |-- StealthHiddenReg 2024-12-14 10:22:52,365\r\n> [root] DEBUG: |-- StealthHideNotifications 2024-12-14 10:22:52,365 [root]\r\n> DEBUG: |-- StealthSystemProcName 2024-12-14 10:22:52,365 [root] DEBUG: |--\r\n> StealthTimeout 2024-12-14 10:22:52,365 [root] DEBUG: |-- StealthWebHistory\r\n> 2024-12-14 10:22:52,365 [root] DEBUG: |-- Hidden_Window 2024-12-14\r\n> 10:22:52,365 [root] DEBUG: |-- sysinternals_psexec 2024-12-14 10:22:52,365\r\n> [root] DEBUG: |-- sysinternals_tools 2024-12-14 10:22:52,366 [root] DEBUG:\r\n> |-- QueriesKeyboardLayout 2024-12-14 10:22:52,366 [root] DEBUG: |--\r\n> TampersETW 2024-12-14 10:22:52,366 [root] DEBUG: |-- LSATampering\r\n> 2024-12-14 10:22:52,366 [root] DEBUG: |-- TampersPowerShellLogging\r\n> 2024-12-14 10:22:52,366 [root] DEBUG: |-- Flame 2024-12-14 10:22:52,366\r\n> [root] DEBUG: |-- TerminatesRemoteProcess 2024-12-14 10:22:52,366 [root]\r\n> DEBUG: |-- TerritorialDisputeSIGs 2024-12-14 10:22:52,366 [root] DEBUG: |--\r\n> TrickBotTaskDelete 2024-12-14 10:22:52,366 [root] DEBUG: |--\r\n> TrickBotMutexes 2024-12-14 10:22:52,366 [root] DEBUG: |-- FleerCivetMutexes\r\n> 2024-12-14 10:22:52,366 [root] DEBUG: |-- LokibotMutexes 2024-12-14\r\n> 10:22:52,366 [root] DEBUG: |-- UrsnifBehavior 2024-12-14 10:22:52,366\r\n> [root] DEBUG: |-- UpatreFiles 2024-12-14 10:22:52,366 [root] DEBUG: |--\r\n> UpatreMutexes 2024-12-14 10:22:52,366 [root] DEBUG: |-- UserEnum 2024-12-14\r\n> 10:22:52,366 [root] DEBUG: |-- ADFind 2024-12-14 10:22:52,366 [root] DEBUG:\r\n> |-- UsesMSProtocol 2024-12-14 10:22:52,366 [root] DEBUG: |-- Virus\r\n> 2024-12-14 10:22:52,366 [root] DEBUG: |-- NeshtaFiles 2024-12-14\r\n> 10:22:52,366 [root] DEBUG: |-- NeshtaMutexes 2024-12-14 10:22:52,366 [root]\r\n> DEBUG: |-- NeshtaRegKeys 2024-12-14 10:22:52,366 [root] DEBUG: |--\r\n> RenamerMutexes 2024-12-14 10:22:52,366 [root] DEBUG: |-- Webmail_Phish\r\n> 2024-12-14 10:22:52,366 [root] DEBUG: |-- OWAWebShellFiles 2024-12-14\r\n> 10:22:52,366 [root] DEBUG: |-- WebShellFiles 2024-12-14 10:22:52,366 [root]\r\n> DEBUG: |-- WebShellProcesses 2024-12-14 10:22:52,367 [root] DEBUG: |--\r\n> PersistsDotNetDevUtility 2024-12-14 10:22:52,367 [root] DEBUG: |--\r\n> SpwansDotNetDevUtiliy 2024-12-14 10:22:52,367 [root] DEBUG: |--\r\n> AltersWindowsUtility 2024-12-14 10:22:52,367 [root] DEBUG: |--\r\n> DotNETCSCBuild 2024-12-14 10:22:52,367 [root] DEBUG: |--\r\n> MultipleExplorerInstances 2024-12-14 10:22:52,367 [root] DEBUG: |--\r\n> OverwritesAccessibilityUtility 2024-12-14 10:22:52,367 [root] DEBUG: |--\r\n> ScriptToolExecuted 2024-12-14 10:22:52,367 [root] DEBUG: |--\r\n> SuspiciousCertutilUse 2024-12-14 10:22:52,367 [root] DEBUG: |--\r\n> SuspiciousCommandTools 2024-12-14 10:22:52,367 [root] DEBUG: |--\r\n> SuspiciousMpCmdRunUse 2024-12-14 10:22:52,367 [root] DEBUG: |--\r\n> SuspiciousPingUse 2024-12-14 10:22:52,367 [root] DEBUG: |--\r\n> UsesPowerShellCopyItem 2024-12-14 10:22:52,367 [root] DEBUG: |--\r\n> UsesWindowsUtilities 2024-12-14 10:22:52,367 [root] DEBUG: |--\r\n> UsesWindowsUtilitiesAppCmd 2024-12-14 10:22:52,367 [root] DEBUG: |--\r\n> UsesWindowsUtilitiesCSVDELDFIDE 2024-12-14 10:22:52,367 [root] DEBUG: |--\r\n> UsesWindowsUtilitiesCipher 2024-12-14 10:22:52,367 [root] DEBUG: |--\r\n> UsesWindowsUtilitiesClickOnce 2024-12-14 10:22:52,367 [root] DEBUG: |--\r\n> UsesWindowsUtilitiesCurl 2024-12-14 10:22:52,367 [root] DEBUG: |--\r\n> UsesWindowsUtilitiesDSQuery 2024-12-14 10:22:52,367 [root] DEBUG: |--\r\n> UsesWindowsUtilitiesEsentutl 2024-12-14 10:22:52,367 [root] DEBUG: |--\r\n> UsesWindowsUtilitiesFinger 2024-12-14 10:22:52,367 [root] DEBUG: |--\r\n> UsesWindowsUtilitiesMode 2024-12-14 10:22:52,367 [root] DEBUG: |--\r\n> UsesWindowsUtilitiesNTDSutil 2024-12-14 10:22:52,367 [root] DEBUG: |--\r\n> UsesWindowsUtilitiesNltest 2024-12-14 10:22:52,367 [root] DEBUG: |--\r\n> UsesWindowsUtilitiesScheduler 2024-12-14 10:22:52,367 [root] DEBUG: |--\r\n> UsesWindowsUtilitiesXcopy 2024-12-14 10:22:52,368 [root] DEBUG: |--\r\n> WMICCommandSuspicious 2024-12-14 10:22:52,368 [root] DEBUG: |--\r\n> WiperZeroedBytes 2024-12-14 10:22:52,368 [root] DEBUG: |--\r\n> ScrconsWMIScriptConsumer 2024-12-14 10:22:52,368 [root] DEBUG: |--\r\n> WMICreateProcess 2024-12-14 10:22:52,368 [root] DEBUG: |-- WMIScriptProcess\r\n> 2024-12-14 10:22:52,368 [root] DEBUG: |-- Win32ProcessCreate 2024-12-14\r\n> 10:22:52,368 [root] DEBUG: |-- AllapleMutexes 2024-12-14 10:22:52,368\r\n> [root] DEBUG: |-- LinuxDeletesFiles 2024-12-14 10:22:52,368 [root] DEBUG:\r\n> |-- LinuxDropsFiles 2024-12-14 10:22:52,368 [root] DEBUG: |--\r\n> LinuxReadsFiles 2024-12-14 10:22:52,368 [root] DEBUG: -- LinuxWritesFiles\r\n> 2024-12-14 10:22:52,368 [root] DEBUG: Imported \"reporting\" modules:\r\n> 2024-12-14 10:22:52,368 [root] DEBUG: |-- BinGraph 2024-12-14 10:22:52,368\r\n> [root] DEBUG: |-- CAPASummary 2024-12-14 10:22:52,368 [root] DEBUG: |--\r\n> JsonDump 2024-12-14 10:22:52,368 [root] DEBUG: |-- MongoDB 2024-12-14\r\n> 10:22:52,368 [root] DEBUG: -- PCAP2CERT 2024-12-14 10:22:52,368 [root]\r\n> DEBUG: Imported \"feeds\" modules: 2024-12-14 10:22:52,368 [root] DEBUG: --\r\n> AbuseCH_SSL 2024-12-14 10:22:52,368 [root] DEBUG: Imported \"machinery\"\r\n> modules: 2024-12-14 10:22:52,368 [root] DEBUG: -- Physical 2024-12-14\r\n> 10:22:52,368 [Task 23] [root] DEBUG: Processing task 2024-12-14\r\n> 10:22:52,378 [Task 23] [lib.cuckoo.core.plugins] DEBUG: Executing\r\n> processing module \"CAPE\" on analysis at \"/opt/CAPEv2/storage/analyses/23\"\r\n> 2024-12-14 10:22:52,571 [Task 23] [lib.cuckoo.common.objects] DEBUG: file\r\n> type set using basic heuristics for:\r\n> /opt/CAPEv2/storage/binaries/33b4fd9d1dd032c56f0e2d74d609db74a04a3190eb45cd07f277f5efca7abe23\r\n> 2024-12-14 10:22:52,571 [Task 23] [lib.cuckoo.common.objects] DEBUG:\r\n> Initializing Yara... 2024-12-14 10:22:52,644 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- binaries AutoIT.yar 2024-12-14\r\n> 10:22:52,645 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- binaries\r\n> EcrimePackerStub.yar 2024-12-14 10:22:52,645 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- binaries Generic_Phishing_PDF.yar\r\n> 2024-12-14 10:22:52,645 [Task 23] [lib.cuckoo.common.objects] DEBUG: |--\r\n> binaries HTMLPhisher_2023.yar 2024-12-14 10:22:52,645 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- binaries HeavensGate.yar 2024-12-14\r\n> 10:22:52,645 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- binaries\r\n> IEuser_author_doc.yar 2024-12-14 10:22:52,645 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- binaries ISO_exec.yar 2024-12-14\r\n> 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- binaries\r\n> LNK_Ruleset.yar 2024-12-14 10:22:52,646 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- binaries MalScript_Tricks.yar\r\n> 2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: |--\r\n> binaries Maldoc_PDF.yar 2024-12-14 10:22:52,646 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- binaries OLEfile_in_CAD_FAS_LSP.yar\r\n> 2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: |--\r\n> binaries OneNote.yar 2024-12-14 10:22:52,646 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- binaries RoyalRoad_RTF.yar\r\n> 2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: |--\r\n> binaries Themida.yar 2024-12-14 10:22:52,646 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- binaries VMProtectStub.yar\r\n> 2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: |--\r\n> binaries Webshell_in_image.yar 2024-12-14 10:22:52,646 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- binaries embedded.yar 2024-12-14\r\n> 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- binaries\r\n> indicator_packed.yar 2024-12-14 10:22:52,646 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- binaries indicator_suspicious.yar\r\n> 2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: |--\r\n> binaries indicator_tools.yar 2024-12-14 10:22:52,646 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- binaries oAuth_Phishing_PDF.yar\r\n> 2024-12-14 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: |--\r\n> binaries ole_vba.yar 2024-12-14 10:22:52,646 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- binaries shellcodes.yar 2024-12-14\r\n> 10:22:52,646 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- binaries\r\n> susp_obfuscated_JS.yar 2024-12-14 10:22:52,647 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- binaries vmdetect.yar 2024-12-14\r\n> 10:22:52,672 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- memory\r\n> Exploit_HT_Flash_Vars.yar 2024-12-14 10:22:52,672 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- memory Exploit_HT_VRename.yar\r\n> 2024-12-14 10:22:52,672 [Task 23] [lib.cuckoo.common.objects] DEBUG: |--\r\n> memory adgholas.yar 2024-12-14 10:22:52,672 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- memory angler.yar 2024-12-14\r\n> 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- memory\r\n> astrum.yar 2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects]\r\n> DEBUG: |-- memory cve_2013_2551.yar 2024-12-14 10:22:52,673 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- memory cve_2014_0515.yar 2024-12-14\r\n> 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- memory\r\n> cve_2014_0569.yar 2024-12-14 10:22:52,673 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- memory cve_2014_6332.yar 2024-12-14\r\n> 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- memory\r\n> cve_2015_0016.yar 2024-12-14 10:22:52,673 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- memory cve_2015_2419.yar 2024-12-14\r\n> 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- memory\r\n> cve_2015_2545.yar 2024-12-14 10:22:52,673 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- memory cve_2015_5122.yar 2024-12-14\r\n> 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- memory\r\n> cve_2016_0189.yar 2024-12-14 10:22:52,673 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- memory cve_2016_3298.yar 2024-12-14\r\n> 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- memory\r\n> darkcomet.yar 2024-12-14 10:22:52,673 [Task 23] [lib.cuckoo.common.objects]\r\n> DEBUG: |-- memory eitest.yar 2024-12-14 10:22:52,673 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- memory flash_exploits.yar 2024-12-14\r\n> 10:22:52,673 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- memory\r\n> kazybot.yar 2024-12-14 10:22:52,674 [Task 23] [lib.cuckoo.common.objects]\r\n> DEBUG: |-- memory neutrino.yar 2024-12-14 10:22:52,674 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- memory nuclear.yar 2024-12-14\r\n> 10:22:52,674 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- memory\r\n> rig.yar 2024-12-14 10:22:52,674 [Task 23] [lib.cuckoo.common.objects]\r\n> DEBUG: |-- memory shellcodes.yar 2024-12-14 10:22:52,674 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- memory sundown.yar 2024-12-14\r\n> 10:22:52,748 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE\r\n> A310Logger.yar 2024-12-14 10:22:52,749 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE AAR.yar 2024-12-14 10:22:52,749\r\n> [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE APT27.yar 2024-12-14\r\n> 10:22:52,749 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE\r\n> ARCrypt.yar 2024-12-14 10:22:52,749 [Task 23] [lib.cuckoo.common.objects]\r\n> DEBUG: |-- CAPE AbubasbanditBot.yar 2024-12-14 10:22:52,749 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE AcidRain.yar 2024-12-14\r\n> 10:22:52,749 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE\r\n> ActionRAT.yar 2024-12-14 10:22:52,749 [Task 23] [lib.cuckoo.common.objects]\r\n> DEBUG: |-- CAPE Adfind.yar 2024-12-14 10:22:52,749 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE Adzok.yar 2024-12-14\r\n> 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE\r\n> AgentRacoon.yar 2024-12-14 10:22:52,750 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE AgentTesla.yar 2024-12-14\r\n> 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE\r\n> AgnianeStealer.yar 2024-12-14 10:22:52,750 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE Agrius.yar 2024-12-14\r\n> 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE\r\n> Akira.yar 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects]\r\n> DEBUG: |-- CAPE Alfonso.yar 2024-12-14 10:22:52,750 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE AlienCrypter.yar 2024-12-14\r\n> 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE\r\n> AlienSpy.yar 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects]\r\n> DEBUG: |-- CAPE Alkhal.yar 2024-12-14 10:22:52,750 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE AllaKore.yar 2024-12-14\r\n> 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE\r\n> Amadey.yar 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects]\r\n> DEBUG: |-- CAPE Andromeda.yar 2024-12-14 10:22:52,750 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE Ap0calypse.yar 2024-12-14\r\n> 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE\r\n> Apocalypse.yar 2024-12-14 10:22:52,750 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE Arcom.yar 2024-12-14\r\n> 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE\r\n> Arechclient2.yar 2024-12-14 10:22:52,750 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE Arkei.yar 2024-12-14\r\n> 10:22:52,750 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE\r\n> ArrowRAT.yar 2024-12-14 10:22:52,750 [Task 23] [lib.cuckoo.common.objects]\r\n> DEBUG: |-- CAPE Aspire.yar 2024-12-14 10:22:52,750 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE AsyncRAT.yar 2024-12-14\r\n> 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE\r\n> Atlas.yar 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects]\r\n> DEBUG: |-- CAPE Aurora.yar 2024-12-14 10:22:52,751 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE AuroraStealer.yar 2024-12-14\r\n> 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE\r\n> Avaddon.yar 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects]\r\n> DEBUG: |-- CAPE Avalon.yar 2024-12-14 10:22:52,751 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE AvosLocker.yar 2024-12-14\r\n> 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE Azer.yar\r\n> 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: |--\r\n> CAPE Azorult.yar 2024-12-14 10:22:52,751 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE BACKSPACE.yar 2024-12-14\r\n> 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE\r\n> BHunt.yar 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects]\r\n> DEBUG: |-- CAPE Babuk.yar 2024-12-14 10:22:52,751 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE BackNet.yar 2024-12-14\r\n> 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE\r\n> BackOffLoader.yar 2024-12-14 10:22:52,751 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE BackOffPOS.yar 2024-12-14\r\n> 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE\r\n> BadJoke.yar 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects]\r\n> DEBUG: |-- CAPE BadRabbit.yar 2024-12-14 10:22:52,751 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE Bagle.yar 2024-12-14\r\n> 10:22:52,751 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE\r\n> Baldr.yar 2024-12-14 10:22:52,751 [Task 23] [lib.cuckoo.common.objects]\r\n> DEBUG: |-- CAPE Bandit.yar 2024-12-14 10:22:52,752 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE Bandook.yar 2024-12-14\r\n> 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE\r\n> Banload.yar 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects]\r\n> DEBUG: |-- CAPE Bazar.yar 2024-12-14 10:22:52,752 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE BazarLoader.yar 2024-12-14\r\n> 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE\r\n> BazarLoaderNim.yar 2024-12-14 10:22:52,752 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE Beastdoor.yar 2024-12-14\r\n> 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE\r\n> BetaBot.yar 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects]\r\n> DEBUG: |-- CAPE BioPass.yar 2024-12-14 10:22:52,752 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE BitCoinGrabber.yar 2024-12-14\r\n> 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE\r\n> BitPaymer.yar 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects]\r\n> DEBUG: |-- CAPE BitRAT.yar 2024-12-14 10:22:52,752 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE BitterRAT.yar 2024-12-14\r\n> 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE\r\n> BlackByte.yar 2024-12-14 10:22:52,752 [Task 23] [lib.cuckoo.common.objects]\r\n> DEBUG: |-- CAPE BlackByteGo.yar 2024-12-14 10:22:52,752 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE BlackCat.yar 2024-12-14\r\n> 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE\r\n> BlackDropper.yar 2024-12-14 10:22:52,752 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE BlackHunt.yar 2024-12-14\r\n> 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE\r\n> BlackMatter.yar 2024-12-14 10:22:52,752 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE BlackNET.yar 2024-12-14\r\n> 10:22:52,752 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE\r\n> BlackNix.yar 2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects]\r\n> DEBUG: |-- CAPE BlackShades.yar 2024-12-14 10:22:52,753 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE BlackshadesRAT.yar 2024-12-14\r\n> 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE\r\n> BlankStealer.yar 2024-12-14 10:22:52,753 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE Blister.yar 2024-12-14\r\n> 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE\r\n> BlitzGrabber.yar 2024-12-14 10:22:52,753 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE BlueBanana.yar 2024-12-14\r\n> 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE\r\n> BlueBot.yar 2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects]\r\n> DEBUG: |-- CAPE Bobik.yar 2024-12-14 10:22:52,753 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE BoxCaon.yar 2024-12-14\r\n> 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE\r\n> Bozok.yar 2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects]\r\n> DEBUG: |-- CAPE BrbBot.yar 2024-12-14 10:22:52,753 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE BreakStaf.yar 2024-12-14\r\n> 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE\r\n> BreakWin.yar 2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects]\r\n> DEBUG: |-- CAPE BroEx.yar 2024-12-14 10:22:52,753 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE BruteRatel.yar 2024-12-14\r\n> 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE\r\n> BuerLoader.yar 2024-12-14 10:22:52,753 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE BumbleBee.yar 2024-12-14\r\n> 10:22:52,753 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE\r\n> Buran.yar 2024-12-14 10:22:52,753 [Task 23] [lib.cuckoo.common.objects]\r\n> DEBUG: |-- CAPE ButeRAT.yar 2024-12-14 10:22:52,754 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE CRAT.yar 2024-12-14\r\n> 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE\r\n> Caliber.yar 2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects]\r\n> DEBUG: |-- CAPE Carbanak.yar 2024-12-14 10:22:52,754 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE CargoBayLoader.yar 2024-12-14\r\n> 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE\r\n> CasperTroy.yar 2024-12-14 10:22:52,754 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE Cerber.yar 2024-12-14\r\n> 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE\r\n> ChChes.yar 2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects]\r\n> DEBUG: |-- CAPE ChaChaDDoS.yar 2024-12-14 10:22:52,754 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE Chaos.yar 2024-12-14\r\n> 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE\r\n> Chinotto.yar 2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects]\r\n> DEBUG: |-- CAPE Chuwi.yar 2024-12-14 10:22:52,754 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE ClientMesh.yar 2024-12-14\r\n> 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE\r\n> ClipBanker.yar 2024-12-14 10:22:52,754 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE Clop.yar 2024-12-14\r\n> 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE\r\n> CobaltStrikeBeacon.yar 2024-12-14 10:22:52,754 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE CobaltStrikeStager.yar\r\n> 2024-12-14 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: |--\r\n> CAPE CobianRAT.yar 2024-12-14 10:22:52,754 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE Codoso.yar 2024-12-14\r\n> 10:22:52,754 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE\r\n> CoinMiners.yar 2024-12-14 10:22:52,755 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE CoinMiningBot.yar 2024-12-14\r\n> 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE\r\n> CommonMagic.yar 2024-12-14 10:22:52,755 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE Confucius_B.yar 2024-12-14\r\n> 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE\r\n> Conti.yar 2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects]\r\n> DEBUG: |-- CAPE CookieStealer.yar 2024-12-14 10:22:52,755 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE CoreBot.yar 2024-12-14\r\n> 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE\r\n> Covenant.yar 2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects]\r\n> DEBUG: |-- CAPE CrimsonRAT.yar 2024-12-14 10:22:52,755 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE Crown.yar 2024-12-14\r\n> 10:22:52,755 [Task 23] [lib.cuckoo.common.objects] DEBUG: |-- CAPE\r\n> CryLock.yar 2024-12-14 10:22:52,755 [Task 23] [lib.cuckoo.common.objects]\r\n> DEBUG: |-- CAPE CryptBot.yar 2024-12-14 10:22:52,755 [Task 23]\r\n> [lib.cuckoo.common.objects] DEBUG: |-- CAPE CryptoLocker.yar 2024-12-14\r\n>\r\n> yep cape recognizes playload as lumma correctly with yara but doesn't\r\n> extract configuration with parser Lumma.py (i suppose..)\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2258#issuecomment-2543030658>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH33EI7CJLDJUWY2WVGT2FP5EHAVCNFSM6AAAAABL4F3XMKVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDKNBTGAZTANRVHA>\r\n> .\r\n> You are receiving this because you were mentioned.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: @doomedraven inside config/processing.conf i have these lines\r\n\r\n```\r\n# Community\r\n# Extractors\r\n[mwcp]\r\nenabled = yes\r\nmodules_path = modules/processing/parsers/mwcp/\r\n\r\n# Community\r\n[ratdecoders]\r\nenabled = yes\r\nmodules_path = modules/processing/parsers/RATDecoders/\r\n\r\n# Community\r\n[malduck]\r\nenabled = yes\r\nmodules_path = modules/processing/parsers/malduck/\r\n\r\n[CAPE_extractors]\r\nenabled = yes\r\n# Must ends with /\r\nmodules_path = modules/processing/parsers/CAPE/\r\n```\r\nbut inside modules/processing/parsers/CAPE/ i have only \r\n```\r\n __pycache__\r\nSnake.py\r\n```\r\nand not Core and Community folders as per CAPE_Parser repo. could be this the isue? \r\n\r\nmoreover changelog reported \r\n```\r\nFeature added. load=X, where X is one of those: all/core/community\r\nAll = core and community\r\nExclude parsers. Allows to not load some particular parsers. exclude_parsers=[\"name1\", \"name2\"]\r\n```\r\nwhere i have to use this options?\r\n\r\nThanks\r\n\r\nedit:\r\n\r\nfor the sample you can use [81e2acbd26c2d3dcfba65fdff1c91d0927bfbb5f9d7c923184c97af4edda63f1](https://bazaar.abuse.ch/sample/81e2acbd26c2d3dcfba65fdff1c91d0927bfbb5f9d7c923184c97af4edda63f1/)\r\n\r\n \nComment: no, not having those folder not needed, as they are under cape-parsers. you need `load=All` if you want all parsers. thanks for hash, i will test it in few mins\nComment: <img width=\"1021\" alt=\"Captura de pantalla 2024-12-14 a las 18 48 08\" src=\"https://github.com/user-attachments/assets/a84a8b9b-95d2-4ef1-8cdd-2689bc99cbfb\" />\r\n\r\ncan you post output of this command as cape user `poetry run pip freaze|grep cape-parsers`\r\n\r\n```\r\npoetry run pip freeze|grep CAPE-parsers\r\n```\nComment: > <img alt=\"Captura de pantalla 2024-12-14 a las 18 48 08\" width=\"1021\" src=\"https://private-user-images.githubusercontent.com/1856495/395808498-a84a8b9b-95d2-4ef1-8cdd-2689bc99cbfb.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.vuXm0vjbaT8QkEU4pfdjpXwrrNpFzKzXGbXyfEDfLxk\">\r\n> can you post output of this command as cape user `poetry run pip freaze|grep cape-parsers`\r\n> \r\n> ```\r\n> poetry run pip freeze|grep CAPE-parsers\r\n> ```\r\n\r\ni got nothing from this command\nComment: so you don't have parsers installed, run `poetry run pip3 install -U CAPE-parsers`, and reprocess the job, if that works, you need to restart processing, but also run `poetry install` to ensure that the rest of libs are up to date\nComment: > so you don't have parsers installed, run `poetry run pip3 install -U CAPE-parsers`, and reprocess the job, if that works, you need to restart processing, but also run `poetry install` to ensure that the rest of libs are up to date\r\n\r\nnow it works as expected ... maybe i found what was my mistake... i ran poetry install not as cape user... this could cause the cape parser not to be installed properly... \r\n\r\nthanks a lot.. have a nice weekend :)\nComment: Ah yes that installed deps to another user\r\nThanks, now is hard \ud83d\ude2d\r\n\r\n\r\n\r\nEl s\u00e1b, 14 dic 2024, 19:35, marsomx ***@***.***> escribi\u00f3:\r\n\r\n> so you don't have parsers installed, run poetry run pip3 install -U\r\n> CAPE-parsers, and reprocess the job, if that works, you need to restart\r\n> processing, but also run poetry install to ensure that the rest of libs\r\n> are up to date\r\n>\r\n> now it works as expected ... maybe i found what was my mistake... i ran\r\n> poetry install not as cape user... this could cause the cape parser not to\r\n> be installed properly...\r\n>\r\n> thanks a lot.. have a nice weekend :)\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2258#issuecomment-2543305510>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH34UEL25WBTGKE2JQW32FR263AVCNFSM6AAAAABL4F3XMKVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDKNBTGMYDKNJRGA>\r\n> .\r\n> You are receiving this because you were mentioned.Message ID:\r\n> ***@***.***>\r\n>\r\n",
+  "Title: Updating Docs\nBody: None",
+  "Title: Fix exit parent and LNK package from cmd to powershell\nBody: None",
+  "Title: Agnostic OS Qemu screenshots\nBody: This PR adds a module to get screenshots from any OS that running in QEMU via libvirt. The idea to create this is based on the variety of desktops, X (Xorg,Wayland,...) and OS types and versions, to have one solution for all of them.\r\n\r\n- The module uses some functionality from current windows screenshot auxiliary module to reduce the number of screenshots. In addition `deduplicity` also is executed in postprocessing. \r\n\r\n- `screenshots_linux` and `screenshots_windows` must be disabled.\r\n\r\nIs open to changes, ideas and even considering moving to a community repo. The module has been tested on several Linux and Windows VMs.\r\n\r\nThank you.\nComment: hey, nice feature, thanks. It requires `pillow` library to be installed right?\nComment: > hey, nice feature, thanks. It requires `pillow` library to be installed right?\r\n\r\nYes is a requirement to compare screenshots. I will add a checker for the lib\nComment: This is similar to PR #1814 which has been around for nearly a year now: https://github.com/kevoreilly/CAPEv2/pull/1814\r\n\r\n@doomedraven I'd suggest one approach, either what was authored in this one or #1814.\r\n\r\nI'd suggest #1814 over #2255 since it's agnostic of the OS _and_ the machinery. We've got folks using Libvirt+QEMU, Azure, VirtualBox, and Hyper-V.\nComment: @dsecuma did/do you have any problems with that screenshot feature that @nbargnesi mentioning?\nComment: Oh yes, it's duplicated. Maybe I would just add a comparison to reduce the writes that the deduplicate module then deletes.",
+  "Title: The AzSniffer module initialization failed, causing the initialization to return\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ ] I am running the latest version\r\n- [ ] I did read the README!\r\n- [ ] I checked the documentation and found no answer\r\n- [ ] I checked to make sure that this issue has not already been filed\r\n- [ ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ ] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\r\n\r\n# Current Behavior\r\n\r\nThe AzSniffer module initialization failed with an error, causing the sniffer to not load properly, and as a result, the pcap file was not generated\r\n\r\n# Failure Information (for bugs)\r\n\r\n2024-07-31 20:05:18,651 [lib.cuckoo.core.plugins] ERROR: Failed to load the auxiliary module \"<class 'modules.auxiliary.AzSniffer.AzSniffer'>\": secret should be a Microsoft Entra application's client secret\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/plugins.py\", line 125, in start\r\n    current = module()\r\n  File \"/opt/CAPEv2/modules/auxiliary/AzSniffer.py\", line 48, in __init__\r\n    self.credentials = self._get_credentials()\r\n  File \"/opt/CAPEv2/modules/auxiliary/AzSniffer.py\", line 58, in _get_credentials\r\n    return ClientSecretCredential(tenant_id=self.tenant_id, client_id=self.client_id, client_secret=self.client_secret)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/azure/identity/_credentials/client_secret.py\", line 47, in __init__\r\n    raise ValueError(\"secret should be a Microsoft Entra application's client secret\")\r\nValueError: secret should be a Microsoft Entra application's client secret\r\n\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Using the default az.conf can trigger the bug.\r\n\r\n#Sniffer configurations\r\n# New sniffer logic implementing Azure Watchers packet capture with either local or blob storage file locations \r\n# the configurations for AzSniffer module will be used to create the dump.pcap file needed for network analysis when using Azure VMSS for Guest VMs\r\nresource_group = \r\n#Storage account where the .cap  file will be placed by the Azure Packet Capture, soon the local file path logic will be implemented too \r\nstorage_account = \r\nvmss_name = \r\n#location of the network watcher (region name)\r\nlocation =  \r\ntenant_id = \r\nclient_secret = \r\nconnection_string =\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | cfbea5e617d10684f7743e44b51427547c0ea97a\r\n| OS version       | Ubuntu 22.04.1\r\n\r\n## Failure Logs\r\n![1722428061072](https://github.com/user-attachments/assets/d6404b2b-4fc8-4f07-9555-66cdef4d0a69)\r\n![image](https://github.com/user-attachments/assets/e411a666-34b9-421e-b0ac-aeabc5999dc0)\r\n\r\nAs shown in the picture, the module created authorization during initialization, but I haven't installed Azure. The initialization failure caused the start function to return, this affected the subsequent module loading.\r\nThe current temporary solution is to directly delete AzSniffer\r\n\nComment: If anyone else makes it here.  This seems to also break other sniffing tasks (like TCPDump).\r\n\r\nRenaming the module file $PATH/modules/auxiliary/AzSniffer.py resolved the issue for me.\r\n\r\n`mv /path/to/install/modules/auxiliary/AzSniffer.py /path/to/install/modules/auxiliary/AzSniffer.py.old`\nComment: > Si quelqu'un d'autre le fait ici. Cela semble \u00e9galement interrompre d'autres t\u00e2ches de d\u00e9tection (comme TCPDump).\r\n> \r\n> Renommer le fichier du module $PATH/modules/auxiliary/AzSniffer.py a r\u00e9solu le probl\u00e8me pour moi.\r\n> \r\n> `mv /path/to/install/modules/auxiliary/AzSniffer.py /path/to/install/modules/auxiliary/AzSniffer.py.old`\r\n\r\nThanks, it worked for me\nComment: I have a PR up for this. https://github.com/kevoreilly/CAPEv2/pull/2292\r\n\r\n@Ravoltek @benweber2 @JohnSmith054 Can you guys try out the changes? You can just copy/paste in the [few lines that I added](https://github.com/kevoreilly/CAPEv2/pull/2292/files). \nComment: @doomedraven This should be closable now.",
+  "Title: Machine status failed. This can indicate the guest losing network connectivity\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n- [ Y ] I am running the latest version\r\n- [ Y ] I did read the README!\r\n- [ Y ] I checked the documentation and found no answer\r\n- [ Y ] I checked to make sure that this issue has not already been filed\r\n- [ Y ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ Y ] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nI am currently working on getting an operational guest OS as Win10 x64 21H2 on a Virtual box (Version 6.1.50_Ubuntu r161033).\r\nDuring last week I have created the environment and made a clean snapshot and there was no any problems with running the analysis.\r\n\r\n\r\n# Current Behavior\r\n\r\nUnfortunately one week after I have started to see some weird warnings and problem with the guest OS performance.\r\n(I didn't make any updates or configuration changes during that time, also Win7machine that is my another guest OS is running perfectly without any issues that cause suggest this connectivity warning)\r\n\r\n Sometimes it is crashing during the analysis (virtualbox is aborting itself) but mostly the analysis is run but I constantly see this specific warning:\r\nWARNING: Task #17: Virtual Machine Win10_64bit_1 /status failed. This can indicate the guest losing network connectivity\r\n\r\n\r\nI have added logs from the cape below to give more context.\r\nAlso may I ask do you have some tested and well functioning preset config for RAM and processors and Win10? I am testing it right now on 6GB of RAM and 2 cores but as it is sometimes crashing I wonder that maybe there is some already tested and working perfectly set.\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\nUbuntu 22.04.4 LTS\r\nVirtual box (Version 6.1.50_Ubuntu r161033)\r\nWin10 x64 21H2\r\n\r\n## Failure Logs\r\n\r\n```\r\nJul 30 11:20:33 cape-vm1 python3[8496]:   |     OH NOES!    |\\  '-.__.-'\r\nJul 30 11:20:33 cape-vm1 python3[8496]:   '-----------------' \\  /oo |--.--,--,--.\r\nJul 30 11:20:33 cape-vm1 python3[8496]:                          \\_.-'._i__i__i_.'\r\nJul 30 11:20:33 cape-vm1 python3[8496]:                                \"\"\"\"\"\"\"\"\"\r\nJul 30 11:20:33 cape-vm1 python3[8496]:  Cuckoo Sandbox 2.4-CAPE\r\nJul 30 11:20:33 cape-vm1 python3[8496]:  www.cuckoosandbox.org\r\nJul 30 11:20:33 cape-vm1 python3[8496]:  Copyright (c) 2010-2015\r\nJul 30 11:20:33 cape-vm1 python3[8496]:  CAPE: Config and Payload Extraction\r\nJul 30 11:20:33 cape-vm1 python3[8496]:  github.com/kevoreilly/CAPEv2\r\nJul 30 11:20:34 cape-vm1 python3[8544]: /usr/bin/tcpdump\r\nJul 30 11:20:37 cape-vm1 python3[8496]: 2024-07-30 11:20:37,675 [lib.cuckoo.core.scheduler] INFO: Using \"virtualbox\" machine manager with max_analysis_count=0, max_machines_count=10, and max_vmstartup_count=5\r\nJul 30 11:20:37 cape-vm1 python3[8496]: 2024-07-30 11:20:37,678 [lib.cuckoo.core.scheduler] INFO: Loaded 3 machine/s\r\nJul 30 11:20:37 cape-vm1 python3[8496]: 2024-07-30 11:20:37,694 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks\r\nJul 30 11:21:06 cape-vm1 python3[8496]: 2024-07-30 11:21:06,768 [lib.cuckoo.core.scheduler] INFO: Task #17: File already exists at '/opt/CAPEv2/storage/binaries/ad61cd88b7415cdb9b2347a10c4b672191ab922dc9b1d5c1c08bdf27993e5b97'\r\nJul 30 11:21:06 cape-vm1 python3[8496]: 2024-07-30 11:21:06,769 [lib.cuckoo.core.scheduler] INFO: Task #17: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_qgqwilo1/7z2403.exe'\r\nJul 30 11:21:06 cape-vm1 python3[8496]: 2024-07-30 11:21:06,785 [lib.cuckoo.core.scheduler] INFO: Task #17: acquired machine Win10_64bit_1 (label=Win10_64bit_1, arch=x64, platform=windows)\r\nJul 30 11:21:20 cape-vm1 python3[8496]: 2024-07-30 11:21:20,505 [lib.cuckoo.core.scheduler] INFO: Enabled route 'internet'.\r\nJul 30 11:21:20 cape-vm1 python3[8886]: /usr/bin/tcpdump\r\nJul 30 11:21:20 cape-vm1 python3[8496]: 2024-07-30 11:21:20,553 [modules.auxiliary.sniffer] INFO: Started sniffer with PID 8887 (interface=vboxnet0, host=192.168.56.111, dump path=/opt/CAPEv2/storage/analyses/17/dump.pcap)\r\nJul 30 11:21:20 cape-vm1 python3[8496]: 2024-07-30 11:21:20,566 [lib.cuckoo.core.guest] INFO: Task #17: Starting analysis on guest (id=Win10_64bit_1, ip=192.168.56.111)\r\nJul 30 11:21:20 cape-vm1 sudo[8887]:     cape : PWD=/opt/CAPEv2 ; USER=root ; COMMAND=/usr/bin/tcpdump -U -q -s 0 -i vboxnet0 -n -Z cape -w /opt/CAPEv2/storage/analyses/17/dump.pcap host 192.168.56.111 and not ( dst host 192.168.56.111 and dst port 8000 ) and not ( src host 192.168.56.111 and src port 8000 ) and not ( dst host 192.168.56.1 and dst port 2043 ) and not ( src host 192.168.56.1 and src port 2043 ) and ( 'not arp' )\r\nJul 30 11:21:20 cape-vm1 sudo[8887]: pam_limits(sudo:session): unknown limit item 'hard'\r\nJul 30 11:21:20 cape-vm1 sudo[8887]: pam_unix(sudo:session): session opened for user root(uid=0) by (uid=1001)\r\nJul 30 11:21:23 cape-vm1 python3[8496]: 2024-07-30 11:21:23,811 [lib.cuckoo.core.guest] INFO: Task #17: Guest is running CAPE Agent 0.17 (id=Win10_64bit_1, ip=192.168.56.111)\r\nJul 30 11:21:29 cape-vm1 python3[8496]: 2024-07-30 11:21:29,541 [lib.cuckoo.core.guest] INFO: Task #17: Uploading script files to guest (id=Win10_64bit_1, ip=192.168.56.111)\r\nJul 30 11:24:04 cape-vm1 python3[8496]: 2024-07-30 11:24:04,505 [lib.cuckoo.core.guest] WARNING: Task #17: Virtual Machine Win10_64bit_1 /status failed. This can indicate the guest losing network connectivity\r\nJul 30 11:24:33 cape-vm1 python3[8496]: 2024-07-30 11:24:33,068 [lib.cuckoo.core.guest] WARNING: Task #17: Virtual Machine Win10_64bit_1 /status failed. This can indicate the guest losing network connectivity\r\nJul 30 11:24:39 cape-vm1 python3[8496]: 2024-07-30 11:24:39,084 [lib.cuckoo.core.guest] WARNING: Task #17: Virtual Machine Win10_64bit_1 /status failed. This can indicate the guest losing network connectivity\r\nJul 30 11:24:49 cape-vm1 python3[8496]: 2024-07-30 11:24:49,501 [lib.cuckoo.core.guest] WARNING: Task #17: Virtual Machine Win10_64bit_1 /status failed. This can indicate the guest losing network connectivity\r\nJul 30 11:25:38 cape-vm1 python3[8496]: 2024-07-30 11:25:38,548 [lib.cuckoo.core.guest] INFO: Task #17: Analysis completed successfully (id=Win10_64bit_1, ip=192.168.56.111)\r\nJul 30 11:25:38 cape-vm1 sudo[8887]: pam_unix(sudo:session): session closed for user root\r\nJul 30 11:25:40 cape-vm1 python3[8496]: 2024-07-30 11:25:40,314 [lib.cuckoo.core.scheduler] INFO: Disabled route 'internet'\r\nJul 30 11:25:40 cape-vm1 python3[8496]: 2024-07-30 11:25:40,337 [lib.cuckoo.core.scheduler] INFO: Task #17: analysis procedure completed\r\n\r\n\r\n```\nComment: Hi @Parithmos424. VirtualBox has fallen out of favor in recent years for malware analysis purposes. It's going to be harder to find folks that can help troubleshoot. Spec-wise, 6 GB and 2 cores should be fine for 21H2.\r\n\r\nSince you're on Ubuntu, consider switching to KVM and QEMU instead.\r\n\r\nRegarding the \"guest losing network connectivity\", based on your logs, the analysis started off fine:\r\n\r\n```\r\nJul 30 11:21:29 cape-vm1 python3[8496]: 2024-07-30 11:21:29,541 [lib.cuckoo.core.guest] INFO: Task #17: Uploading script files to guest (id=Win10_64bit_1, ip=192.168.56.111)\r\n```\r\n\r\nA few minutes later you get the warning:\r\n\r\n```\r\nJul 30 11:24:04 cape-vm1 python3[8496]: 2024-07-30 11:24:04,505 [lib.cuckoo.core.guest] WARNING: Task #17: Virtual Machine Win10_64bit_1 /status failed. This can indicate the guest losing network connectivity\r\n```\r\n\r\nThe message itself is not too useful, but what is happening takes place inside the agent process in your cape-vm1 VM. It's sending back a \"bad\" response to the \"/status\" request: https://github.com/kevoreilly/CAPEv2/blob/f9f935f924c6612b13b8f103f53643718282f24b/agent/agent.py#L440\r\n\r\nThe likely culprit based on timing in your logs is here:\r\nhttps://github.com/kevoreilly/CAPEv2/blob/f9f935f924c6612b13b8f103f53643718282f24b/agent/agent.py#L391\r\n\r\nSo I bet whatever you were analyzing exited after a few minutes with a code of something other than 0. If you're getting good analysis data back, just ignore it.\nComment: Hi @nbargnesi ,\r\n\r\nThank you very much for your comments, sometimes these analysis are finished just fine but sometimes it looks like the analysis is crushing on the guest and I don't see any activity on the VM that is analyzing the sample.\r\nLooks I will have to try the KVM/QEMU setup instead.\r\n\r\nOnce again thanks, looks that it is not something crucial or common, more likely just about my specific setup. \r\nIssue can be closed or we can leave it for a while maybe someone else encountered something similar in the past.\r\nI am fine with both of these actions, thanks!\r\n",
+  "Title: Upload linux tlsdump.log\nBody: None",
+  "Title: run inside xterm\nBody: **Run target sample inside xterm**\r\n\r\nIf you need to run a sample interactively, for example terminal applications where user input is expected to continue, passing the nohuman option as yes will run the sample inside the xterm process *behind strace*, so the output will have some xterm garbage.\r\n\r\nThis change is compatible with use _enforce_timeout_.",
+  "Title: ERROR: osProfile': '(InvalidParameter) Required parameter 'osProfile' is missing (null)\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\nComplete the installation on azure and get CAPEv2Host  to launch guest machine\r\n\r\n# Current Behavior\r\n\r\nAfter successful installation  of CAPEv2host and completing all required configuration for Azure cloud within the az.conf file, the host is unable to create guest machines. After analysis of az.py module, I have found out vmss_vm_profile:\r\n` if self.options.az.spot_instances:\r\n            vmss_vm_profile = models.VirtualMachineScaleSetVMProfile(\r\n                storage_profile=vmss_storage_profile,\r\n                network_profile=vmss_network_profile,\r\n                # Note: The following key value pairs are for Azure spot instances\r\n                priority=models.VirtualMachinePriorityTypes.spot,\r\n                eviction_policy=models.VirtualMachineEvictionPolicyTypes.delete,\r\n                # Note: This value may change depending on your needs.\r\n                billing_profile=models.BillingProfile(max_price=float(-1)),\r\n            )\r\n        else:\r\n            vmss_vm_profile = models.VirtualMachineScaleSetVMProfile(\r\n                storage_profile=vmss_storage_profile,\r\n                network_profile=vmss_network_profile,\r\n            )`\r\ndoesn't seem to contain the osProfile that seem to be required by azure\r\n\r\n# Failure Information (for bugs)\r\n`2024-07-27 16:42:03,426 [lib.cuckoo.core.machinery_manager] INFO: Using MachineryManager[az] with max_machines_count=10\r\n2024-07-27 16:42:03,429 [lib.cuckoo.core.scheduler] INFO: Creating scheduler with max_analysis_count=unlimited\r\n2024-07-27 16:42:31,695 [modules.machinery.az] WARNING: Failed to <bound method VirtualMachineScaleSetsOperations.begin_create_or_update of <azure.mgmt.compute.v2024_03_01.operations._operations.VirtualMachineScaleSetsOperations object at 0x79246d6c6da0>>(('soc_tooling_capev2_sandbox_rg', 'cuckoo1', <azure.mgmt.compute.v2024_03_01.models._models_py3.VirtualMachineScaleSet object at 0x79246d562440>),{'polling_interval': 1}) due to the Azure error '(InvalidParameter) Required parameter 'osProfile' is missing (null).\r\nCode: InvalidParameter\r\nMessage: Required parameter 'osProfile' is missing (null).\r\nTarget: osProfile': '(InvalidParameter) Required parameter 'osProfile' is missing (null).\r\nCode: InvalidParameter\r\nMessage: Required parameter 'osProfile' is missing (null).\r\nTarget: osProfile'.`\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Complete the installation of CAPEv2 on azure cloud according to official guide: https://capev2.readthedocs.io/en/latest/installation/host/cloud.html\r\n2. Complete the configuration of az.conf  machinery file\r\n3. sudo systemctl restart cape.service\r\n4. sudo systemctl status cape.service\r\n5. cd /opt/CAPEv2/\r\n6. cat log/cuckoo.lo\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 16.04, Windows 10, macOS 10.12.3\r\n\r\n## Failure Logs\r\n\r\n`2024-07-27 16:42:03,426 [lib.cuckoo.core.machinery_manager] INFO: Using MachineryManager[az] with max_machines_count=10\r\n2024-07-27 16:42:03,429 [lib.cuckoo.core.scheduler] INFO: Creating scheduler with max_analysis_count=unlimited\r\n2024-07-27 16:42:31,695 [modules.machinery.az] WARNING: Failed to <bound method VirtualMachineScaleSetsOperations.begin_create_or_update of <azure.mgmt.compute.v2024_03_01.operations._operations.VirtualMachineScaleSetsOperations object at 0x79246d6c6da0>>(('soc_tooling_capev2_sandbox_rg', 'cuckoo1', <azure.mgmt.compute.v2024_03_01.models._models_py3.VirtualMachineScaleSet object at 0x79246d562440>),{'polling_interval': 1}) due to the Azure error '(InvalidParameter) Required parameter 'osProfile' is missing (null).\r\nCode: InvalidParameter\r\nMessage: Required parameter 'osProfile' is missing (null).\r\nTarget: osProfile': '(InvalidParameter) Required parameter 'osProfile' is missing (null).\r\nCode: InvalidParameter\r\nMessage: Required parameter 'osProfile' is missing (null).\r\nTarget: osProfile'.`\r\n\r\n\nComment: Did you Google it? It looks like azure related and not cape related issue, we do not provide official azure support, is completely on community\nComment: > Did you Google it? It looks like azure related and not cape related issue, we do not provide official azure support, is completely on community\r\nNo luck with Google. I will be looking to change the image that I am using and see if this solves the issue. \r\n\nComment: you will need till someone from community who uses azure helps you, as this issue is not related to core of cape, so i have no idea what is wrong\nComment: @yveskerbens Can you confirm that you followed [this part of the docs](https://capev2.readthedocs.io/en/latest/installation/guest/saving.html#azure) when you created the guest image? Must be a \"SPECIALIZED\" image. You can double-check this by going to your Azure portal -> navigate to your guest's `VM image definition` -> check value for `OS state`.\r\n\r\nHere is what mine looks like.\r\n![osprofile](https://github.com/user-attachments/assets/c8ed47f9-782a-405a-b7f7-096e401ed473)\r\n\r\n\r\nHere is a [link to the Microsoft docs](https://learn.microsoft.com/en-us/azure/virtual-machines/troubleshooting-shared-images) explaining why you are seeing the error message and how to fix. In your case, the fix would be to create the image as \"SPECIALIZED\". Here is the important part:\r\n```\r\nError Message: Required parameter 'osProfile' is missing (null)\r\nCause: The VM is created from a generalized image, and it's missing the admin username, password, or SSH keys. Because generalized images don't retain the admin username, password, or SSH keys, these fields must be specified during creation of a VM or scale set\r\n```\r\n\nComment: closed as abondoned",
+  "Title: Updated docs\nBody: None",
+  "Title: Unserviceable task (only Office doc)\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ ] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nI submit files via the API. The API request has a \"machine\" defined (The VM exists).\r\n\r\n# Current Behavior\r\n\r\nOffice documents are not processed!?\r\nThey fail immediately with: \r\n`INFO: Task #xxxx: Failing unserviceable task`\r\nOther files (PE, ...) work without problem.\r\n\r\n# Failure Information (for bugs)\r\n\r\nThe only reference found in the code is here:\r\n```\r\ntry:\r\n     machine = self.machinery_manager.find_machine_to_service_task(task_candidate)\r\nexcept CuckooUnserviceableTaskError:\r\n     if self.cfg.cuckoo.fail_unserviceable:\r\n           log.info(\"Task #%s: Failing unserviceable task\", task_candidate.id)\r\n           self.db.set_status(task_candidate.id, TASK_FAILED_ANALYSIS)\r\n     else:\r\n            log.info(\"Task #%s: Unserviceable task\", task_candidate.id)\r\n            continue\r\n```\r\n\r\nThe VM that I use for documents is not the \"default\" one. I force it via web.conf:\r\n```\r\n[packages]\r\ndoc = win7x64\r\n```\nComment: Ok, RTFM by myself...\r\n```\r\n# VM tags may be used to specify on which guest machines a sample should be run\r\n# NOTE - One of the following OS version tags MUST be included for Windows VMs:\r\n# winxp, win7, win8, win10, win11\r\n# Some samples will only detonate on specific versions of Windows (see web.conf packages for more info)\r\n# Example: MSIX - Windows >= 10\r\n```\r\nIt's a TAG not a VM!\nComment: if you think we need to improve that msg to clarify, suggestions are more than welcome\nComment: Hmm...I still have some tasks rejected for \"doc\" files. I added the correct tag and restarted CAPE.\r\nIf I call the API with a machine name and if I have a tag defined for the package (in web.conf), both are different.\r\n=> Which one will be used? \r\n\r\nAbout the message, maybe refer to a wrong tag instead of a machinery?\nComment: hm i used that from web only, im on pto till 5.08, so i will check once im back with keyboard\nComment: After a bit of reverse-engineering of the code, I found the problem: The VM that I would like to use with the \"tag\" was \"reserved = yes\" in the config file! Working like a charm now!\nComment: hello, added small note about this in config, let me know if you know how better clarify that or improve description \r\nhttps://github.com/kevoreilly/CAPEv2/commit/f9f935f924c6612b13b8f103f53643718282f24b",
+  "Title: fix: linux dropped files naming convention\nBody: The `filecollector` Linux auxiliary module saves the file onto the CAPE server with the format of first 16 characters of the SHA256 hash and the respective filename. This causes an error in lookup when trying to download the file from the dropped files API as it references the file by the full hash. This change just saves the Linux dropped files as the full SHA256 hash, fixing the issue of the file lookup.",
+  "Title: XLS allow more extensions\nBody: None",
+  "Title: URL analysis doesn't output VT results\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nURL analysis should output VT results\r\n\r\n# Current Behavior\r\n\r\nURL analysis doesn't output VT results\r\n\r\n## Steps to Reproduce\r\n\r\n1. Submit an URL analysis\r\n2. Wait for result\r\n\r\n## Context\r\n\r\nParameters in processing.conf look correct (screenshot below). File requests to the VT API are executed (but not always output in Recent), and URL analysis requests are not executed and are not output (screenshots below). The analysis.log file for the last analyzed URL is also attached below.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| OS version       | Ubuntu 22.04\r\n\r\n## Failure Logs\r\n\r\n![image](https://github.com/user-attachments/assets/f01e4c97-1f45-4d56-96cf-fc5b7466a344)\r\n![image](https://github.com/user-attachments/assets/e0ffad2a-7cba-437b-877c-6bcbceb3ed91)\r\n![image](https://github.com/user-attachments/assets/7a0699d3-acba-4201-ac94-b0991861f246)\r\n![image](https://github.com/user-attachments/assets/918ce4d1-b02b-4381-82fc-09a829e480d4)\r\n[analysis.log](https://github.com/user-attachments/files/16331895/analysis.log)\r\n\r\n\nComment: Duplicated https://github.com/kevoreilly/CAPEv2/issues/2239",
+  "Title: update king rat parser\nBody: https://github.com/jeFF0Falltrades/rat_king_parser/pull/8/files",
+  "Title: Bring Azure machinery auto-scaling up to date.\nBody: Updated the Azure machinery, specifically with auto-scaling, to a usable state out-of-the-box.\r\n\r\n**Updates include**:\r\n- Config key to allow the selection of ephemeral OS disk type, allowing a wider range of Azure VM types to be used.\r\n- Config key to allow changing the timer set for the monitor thread to scale up/down the VMSS.\r\n- Fix for the missing `machines` key in the config, which was leading to errors.\r\n- Change the method of finding \"relevant\" machines for submitted tasks, allowing more flexibility in naming your VMSS in the config. This removes the need to append the `pool_tag` to the end of the VMSS name.\r\n- Workaround to semaphore deadlocking issues.\r\n- Removal of machine deletion in the `modules/machinery/az.py` method `stop` when the scale-set is set to `is_scaling_down`, which was leading to a `StaleDataError`.\r\n- Tiny, non-critical, update to a log in `lib/cuckoo/core/guest.py` correcting the order of variables.\r\n\r\n**Concerns**:\r\nThe fix for the `StaleDataError` is not ideal. It means that the process of scaling down when no relevant tasks are available must wait for all current tasks to finish AND for the monitor thread to wake up and run. What would be a much better fix would be to find a way to signal the machine for deletion in az.py immediately after the AnalysisManager releases the machine. Any tips are greatly appreciated on how that might be done. (Edit: This no longer applies. Now correctly deleting machines in such cases.)\r\n\r\nIf there are any ideas on how to better handle the issue with the semaphore, I would love to better apply a solution there. I am not entirely comfortable with what I have in place here. The main issues leading to deadlocking that I have noticed are:\r\n\r\n1. In `update_limit` -- The `_limit_value` is only updated when there are machines, and the amount of machines is less than the `_upper_limit`. So no update for `_limit_value` occurs when we are at the upper limit.\r\n2. In `check_for_starvation` -- The `available_count` is the number of unlocked machines. If machines are waiting at the semaphore, they are already locked. This makes updating the `_value` here impossible.\r\n\r\nAs a check for releasing the semaphore, I used the condition of `locked machines <=  configured machine limit`, but I think that should maybe be `total machines (locked or unlocked) <= configured machine limit`.\r\n\r\nThoughts?\nComment: let me know when is ready to merge\nComment: @doomedraven I've tested trying to get the semaphore to lock up in various situations, but it looks good now. Should be good to merge.\nComment: @doomedraven I believe I have found a better way of managing machine deletion. Please hold off on the merge until I can get the commits together.\nComment: @doomedraven Okay, fix is in. Now operating as expected.\nComment: thank you for update",
+  "Title: sqalchemy StaleDataError with Azure machinery\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nWhen using Azure machinery with a VMSS, analysis should complete without database errors.\r\n\r\n# Current Behavior\r\n\r\nWhen the last available task has been assigned to a machine, any other finishing analysis causes a sqlalchemy.orm.exc.StaleDataError. After, remaining tasks will always remain in the `running` state.\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Allow VMSS max size to be greater than one.\r\n2. Submit any number of tasks greater than one. We want at least two machines to be running analysis.\r\n3. When the last task is assigned, whichever running task finishes next produced a StaleDataError.\r\n\r\n## Context\r\nSqalchemy version = 1.4.50\r\n\r\nUsing Azure machinery with auto-scaling. The ScalingBoundSemaphore usage in the master branch has a bug when used with Azure auto-scaling that consistently leads to deadlocking. I have implemented a workaround that updates the semaphore in analysis_manager immediately before the machine is locked. If that is relevant, I can share the fix I have for that as well.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | 303bdcc2\r\n| OS version       | Ubuntu 22.04\r\n\r\n## Failure Logs\r\n\r\n```\r\nJul 20 17:33:16 hostname python3[251990]: 2024-07-20 17:33:16,107 [lib.cuckoo.core.guest] DEBUG: Task #8: Analysis is still running (id=cape-guest-vmss-win10x64_0, ip=10.2.2.5)\r\nJul 20 17:33:16 hostname python3[251990]: 2024-07-20 17:33:16,923 [lib.cuckoo.core.guest] DEBUG: Task #6: Analysis is still running (id=cape-guest-vmss-win10x64_2, ip=10.2.2.6)\r\nJul 20 17:33:17 hostname python3[251990]: 2024-07-20 17:33:17,099 [lib.cuckoo.core.resultserver] DEBUG: Task #6 had connection reset by peer for <Context for b'LOG'>\r\nJul 20 17:33:17 hostname python3[251990]: 2024-07-20 17:33:17,100 [lib.cuckoo.core.resultserver] DEBUG: Task #6 had connection reset by peer for <Context for None>\r\nJul 20 17:33:17 hostname python3[251990]: 2024-07-20 17:33:17,100 [lib.cuckoo.core.resultserver] DEBUG: Task #6 had connection reset by peer for <Context for b'BSON'>\r\nJul 20 17:33:17 hostname python3[251990]: 2024-07-20 17:33:17,939 [lib.cuckoo.core.guest] INFO: Task #6: Analysis completed successfully (id=cape-guest-vmss-win10x64_2, ip=10.2.2.6)\r\nJul 20 17:33:18 hostname sudo[252717]: pam_unix(sudo:session): session closed for user root\r\nJul 20 17:33:18 hostname python3[251990]: 2024-07-20 17:33:18,004 [lib.cuckoo.core.plugins] DEBUG: Stopped auxiliary module: Sniffer\r\nJul 20 17:33:18 hostname python3[251990]: 2024-07-20 17:33:18,125 [lib.cuckoo.core.resultserver] DEBUG: Task #6: Stopped tracking machine 10.2.2.6\r\nJul 20 17:33:18 hostname python3[251990]: 2024-07-20 17:33:18,125 [modules.machinery.az] DEBUG: Stopping machine 'cape-guest-vmss-win10x64_2'\r\nJul 20 17:33:18 hostname python3[251990]: 2024-07-20 17:33:18,138 [lib.cuckoo.core.analysis_manager] ERROR: Task #6: failure in AnalysisManager.run\r\nJul 20 17:33:18 hostname python3[251990]: Traceback (most recent call last):\r\nJul 20 17:33:18 hostname python3[251990]:   File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 519, in run\r\nJul 20 17:33:18 hostname python3[251990]:     self.launch_analysis()\r\nJul 20 17:33:18 hostname python3[251990]:   File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 481, in launch_analysis\r\nJul 20 17:33:18 hostname python3[251990]:     success = self.perform_analysis()\r\nJul 20 17:33:18 hostname python3[251990]:   File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 455, in perform_analysis\r\nJul 20 17:33:18 hostname python3[251990]:     with self.machine_running(), self.result_server(), self.network_routing(), self.run_auxiliary():\r\nJul 20 17:33:18 hostname python3[251990]:   File \"/usr/lib/python3.10/contextlib.py\", line 142, in __exit__\r\nJul 20 17:33:18 hostname python3[251990]:     next(self.gen)\r\nJul 20 17:33:18 hostname python3[251990]:   File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 346, in machine_running\r\nJul 20 17:33:18 hostname python3[251990]:     with self.db.session.begin():\r\nJul 20 17:33:18 hostname python3[251990]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/util.py\", line 235, in __exit__\r\nJul 20 17:33:18 hostname python3[251990]:     with util.safe_reraise():\r\nJul 20 17:33:18 hostname python3[251990]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/util/langhelpers.py\", line 70, in __exit__\r\nJul 20 17:33:18 hostname python3[251990]:     compat.raise_(\r\nJul 20 17:33:18 hostname python3[251990]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/util/compat.py\", line 211, in raise_\r\nJul 20 17:33:18 hostname python3[251990]:     raise exception\r\nJul 20 17:33:18 hostname python3[251990]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/util.py\", line 233, in __exit__\r\nJul 20 17:33:18 hostname python3[251990]:     self.commit()\r\nJul 20 17:33:18 hostname python3[251990]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 832, in commit\r\nJul 20 17:33:18 hostname python3[251990]:     self._prepare_impl()\r\nJul 20 17:33:18 hostname python3[251990]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 811, in _prepare_impl\r\nJul 20 17:33:18 hostname python3[251990]:     self.session.flush()\r\nJul 20 17:33:18 hostname python3[251990]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 3449, in flush\r\nJul 20 17:33:18 hostname python3[251990]:     self._flush(objects)\r\nJul 20 17:33:18 hostname python3[251990]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 3588, in _flush\r\nJul 20 17:33:18 hostname python3[251990]:     with util.safe_reraise():\r\nJul 20 17:33:18 hostname python3[251990]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/util/langhelpers.py\", line 70, in __exit__\r\nJul 20 17:33:18 hostname python3[251990]:     compat.raise_(\r\nJul 20 17:33:18 hostname python3[251990]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/util/compat.py\", line 211, in raise_\r\nJul 20 17:33:18 hostname python3[251990]:     raise exception\r\nJul 20 17:33:18 hostname python3[251990]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 3549, in _flush\r\nJul 20 17:33:18 hostname python3[251990]:     flush_context.execute()\r\nJul 20 17:33:18 hostname python3[251990]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/unitofwork.py\", line 456, in execute\r\nJul 20 17:33:18 hostname python3[251990]:     rec.execute(self)\r\nJul 20 17:33:18 hostname python3[251990]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/unitofwork.py\", line 630, in execute\r\nJul 20 17:33:18 hostname python3[251990]:     util.preloaded.orm_persistence.save_obj(\r\nJul 20 17:33:18 hostname python3[251990]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/persistence.py\", line 237, in save_obj\r\nJul 20 17:33:18 hostname python3[251990]:     _emit_update_statements(\r\nJul 20 17:33:18 hostname python3[251990]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/persistence.py\", line 1035, in _emit_update_statements\r\nJul 20 17:33:18 hostname python3[251990]:     raise orm_exc.StaleDataError(\r\nJul 20 17:33:18 hostname python3[251990]: sqlalchemy.orm.exc.StaleDataError: UPDATE statement on table 'machines' expected to update 1 row(s); 0 were matched.\r\n```\r\nTask 8 was the last task. It began running while task 6 was running. When task 6 finished, I got the error above. This is after successfully reporting on tasks 1-5 and 7.\r\n\r\nThoughts on where to begin looking for the cause?\r\n\nComment: Correction to the setup steps in my post. This error is also happening when using a single VMSS instance. All other info applies.\nComment: Found the issue. In the `def stop(self)` of az.py, this [line](https://github.com/kevoreilly/CAPEv2/blob/a0203aef18ebda3e05b1c494d01f729a64d3efa3/modules/machinery/az.py#L465) was deleting the machine from the database before AnalysisManager could release it [here](https://github.com/kevoreilly/CAPEv2/blob/a0203aef18ebda3e05b1c494d01f729a64d3efa3/lib/cuckoo/core/analysis_manager.py#L334). I suppose this only happened when the last task was taken because the azure machinery was not attempting to scale down until there were no relevant tasks remaining.\r\n\r\nI will have a fix for this in the PR bringing azure machinery up to date.\nComment: Hey Chris, what's up?\r\nWe are facing the same issue but with aws.py.\r\nThis is the error we got:\r\n\"sqlalchemy.orm.exc.StaleDataError: UPDATE statement on table 'machines' expected to update 1 row(s); 0 were matched\"\r\n\r\n\"Traceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 498, in run\r\n    self.launch_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 460, in launch_analysis\r\n    success = self.perform_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 444, in perform_analysis\r\n    with self.machine_running(), self.result_server(), self.network_routing(), self.run_auxiliary():\r\n  File \"/usr/lib/python3.10/contextlib.py\", line 142, in __exit__\r\n    next(self.gen)\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 334, in machine_running\r\n    self.machinery_manager.machinery.release(self.machine)\r\n  File \"/opt/CAPEv2/modules/machinery/aws.py\", line 339, in release\r\n    self._start_or_create_machines()\r\n  File \"/opt/CAPEv2/modules/machinery/aws.py\", line 231, in _start_or_create_machines\r\n    current_available_machines = self.db.count_machines_available()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/database.py\", line 1002, in count_machines_available\r\n    return machines.count()\r\n\"\r\n\r\nDo you think it's the same issue you were faced with? if so, can you share the solution you made?\r\n\r\n\nComment: @dor15 I think it is exactly like the issue I faced. You are going to want to look at `aws.py` and review the two methods `stop` and `release`. In essence, if you are removing the machine in `stop`, you are going to have a bad time. That must occur in `release`. Should this be the actual issue, the fix is to move machine deletion into the `release` method and out of `stop`.\r\n\r\nThis is where stop and release are happening in the flow of a sandbox run: https://github.com/kevoreilly/CAPEv2/blob/master/lib/cuckoo/core/analysis_manager.py#L292-L341\r\n\r\nNotice that the stop occurs first by calling `self.machinery_manager.stop_machine(self.machine)` which is just this:\r\n```\r\ndef stop_machine(self, machine: Machine) -> None:\r\n    self.machinery.stop(machine.label)\r\n```\r\n\r\nYou can see the fix that I made for the azure machinery:\r\n[before](https://github.com/kevoreilly/CAPEv2/blob/96fddc77e1ea8d639483f4b2c6b50606d73c6bcc/modules/machinery/az.py#L440-L466)\r\n[after](https://github.com/kevoreilly/CAPEv2/blob/master/modules/machinery/az.py#L447-L478)\nComment: Honestly, I'm surprised you are running into that now and no one else has reported it before. If you do happen to find the problem and the above fixes it for you, please create a pull request with the changes. It goes a long way!\nComment: maybe it only related to cloud providers? i don't have those with kvm\nComment: @doomedraven I think it is most likely how az/aws.py have chosen to deal with autoscaling. The az module was having issues because it was deleting the machine from the database in the `stop` call. Looking at aws.py, I see that only happens when `self._is_autoscaled` is true for the machine its called on. When the AnalysisManager tells the MachineryManager to release the machine, it has been removed from the database, so the call using that machine's ID will result in stale data errors.\r\n\r\nI don't think any other machinery module explicitly removes machines from the database as the normal flow in `stop`. Thus, when the MachineryManager attempts to release it, the machine is still present in the database.\r\n\r\n@dor15 I would be very interested in knowing a bit more about your setup. Have I correctly guessed that you are using autoscaling?\nComment: so maybe we need to backport that aws feature to az?\nComment: im gonna keep this open for some time till we see what gonna do, as is summer and i don't have a lot of time to properly concentrate on big tasks here\nComment: > Honestly, I'm surprised you are running into that now and no one else has reported it before. If you do happen to find the problem and the above fixes it for you, please create a pull request with the changes. It goes a long way!\r\n\r\n\r\nmore than that, in the original code, in the part of \"def _delete_machine_form_db(self, label):\", it is trying to create a new \"session\" - \r\nsession = db.Session()\r\n\r\nand it got the following exception:\r\n\r\n\"/opt/CAPEv2/modules/machinery/aws.py\" 435L, 16769B                                                                                                                          107,18        21%\r\n    with self.machine_running(), self.result_server(), self.network_routing(), self.run_auxiliary():\r\n  File \"/usr/lib/python3.10/contextlib.py\", line 142, in __exit__\r\n    next(self.gen)\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 325, in machine_running\r\n    self.machinery_manager.stop_machine(self.machine)\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/machinery_manager.py\", line 308, in stop_machine\r\n    self.machinery.stop(machine.label)\r\n  File \"/opt/CAPEv2/modules/machinery/aws.py\", line 300, in stop\r\n    self._delete_machine_form_db(label)\r\n  File \"/opt/CAPEv2/modules/machinery/aws.py\", line 107, in _delete_machine_form_db\r\n    session = db.Session()\r\nNameError: name 'db' is not defined\r\n\r\n\r\nSo I used the existing session with \"self.db.session\" to proceed with running the code, and then I got the error I described above.\r\nI agree with you, and it is a bit weird that no one reported at least about this issue\nComment: > @doomedraven I think it is most likely how az/aws.py have chosen to deal with autoscaling. The az module was having issues because it was deleting the machine from the database in the `stop` call. Looking at aws.py, I see that only happens when `self._is_autoscaled` is true for the machine its called on. When the AnalysisManager tells the MachineryManager to release the machine, it has been removed from the database, so the call using that machine's ID will result in stale data errors.\r\n> \r\n> I don't think any other machinery module explicitly removes machines from the database as the normal flow in `stop`. Thus, when the MachineryManager attempts to release it, the machine is still present in the database.\r\n> \r\n> @dor15 I would be very interested in knowing a bit more about your setup. Have I correctly guessed that you are using autoscaling?\r\n\r\nyes - \r\n\r\nfrom aws.conf:\r\n[autoscale]\r\n\r\nEnable auto-scale in cuckoo(by setting autoscale = yes). recommended for better performance.\r\nautoscale = yes\r\n\r\n\nComment: @dor15 I don't see `session = db.session` in the file [at this line](https://github.com/kevoreilly/CAPEv2/blob/d0732ee9d4b01184f86136336ee4ed5af98c34ca/modules/machinery/aws.py#L108). I would make sure you are on the most current commit before going any further.\r\n\r\nAnyway, try using this and see if it fixes the problem.\r\n```\r\n    def stop(self, label):\r\n        \"\"\"\r\n        Stops a virtual machine.\r\n        If the machine has initialized from autoscaled component, then terminate it.\r\n        @param label: virtual machine label.\r\n        @raise CuckooMachineError: if unable to stop.\r\n        \"\"\"\r\n        log.debug(\"Stopping vm %s\" % label)\r\n\r\n        status = self._status(label)\r\n\r\n        if status == AWS.POWEROFF:\r\n            raise CuckooMachineError(\"Trying to stop an already stopped VM: %s\" % label)\r\n\r\n        if self._is_autoscaled(self.ec2_machines[label]):\r\n            self.ec2_machines[label].terminate()\r\n        else:\r\n            self.ec2_machines[label].stop(Force=True)\r\n            self._wait_status(label, AWS.POWEROFF)\r\n            self._restore(label)\r\n\r\n    \"\"\"override Machinery method\"\"\"\r\n\r\n    def release(self, machine: Machine) -> Machine:\r\n        \"\"\"\r\n        we override it to have the ability to run start_or_create_machines() after unlocking the last machine\r\n        Release a machine.\r\n        @param label: machine label.\r\n        \"\"\"\r\n        retval = super(AWS, self).release(machine)\r\n\r\n        if self._is_autoscaled(self.ec2_machines[machine.label]):\r\n            self._delete_machine_form_db(machine.label)\r\n            self.dynamic_machines_count -= 1\r\n\r\n        self._start_or_create_machines()\r\n        return retval\r\n```\r\n\r\nI don't know what `self.ec2_machines[label].terminate()` does, so I left it alone. I shifted down the machine deletion and count reduction to immediately after the machine's release.\nComment: yes, I meant this line [https://github.com/kevoreilly/CAPEv2/blob/d0732ee9d4b01184f86136336ee4ed5af98c34ca/modules/machinery/aws.py#L108 ](url)\r\nsession = self.db.Session(),\r\n\r\ninstead of this I use \"self.db.session\" before any session action, for example - \r\n  machine = session.query(Machine).filter_by(label=label).first() --> machine = self.db.session.query(Machine).filter_by(label=label).first()\r\n\r\nI'll try to use your fix and update. thanks! \nComment: trying to apply your fix and now getting a new error:\r\n`2024-08-28 09:02:48,881 [lib.cuckoo.core.analysis_manager] ERROR: Task #100: failure in AnalysisManager.run\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 498, in run\r\n    self.launch_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 460, in launch_analysis\r\n    success = self.perform_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 444, in perform_analysis\r\n    with self.machine_running(), self.result_server(), self.network_routing(), self.run_auxiliary():\r\n  File \"/usr/lib/python3.10/contextlib.py\", line 142, in __exit__\r\n    next(self.gen)\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 334, in machine_running\r\n    self.machinery_manager.machinery.release(self.machine)\r\n  File \"/opt/CAPEv2/modules/machinery/aws.py\", line 322, in release\r\n    self._start_or_create_machines()\r\n  File \"/opt/CAPEv2/modules/machinery/aws.py\", line 207, in _start_or_create_machines\r\n    current_available_machines = self.db.count_machines_available()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/database.py\", line 1001, in count_machines_available\r\n    return machines.count()\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/query.py\", line 3176, in count\r\n    return self._from_self(col).enable_eagerloads(False).scalar()\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/query.py\", line 2893, in scalar\r\n    ret = self.one()\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/query.py\", line 2870, in one\r\n    return self._iter().one()\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/query.py\", line 2916, in _iter\r\n    result = self.session.execute(\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 1716, in execute\r\n    conn = self._connection_for_bind(bind)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 1552, in _connection_for_bind\r\n    TransactionalContext._trans_ctx_check(self)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/util.py\", line 199, in _trans_ctx_check\r\n    raise exc.InvalidRequestError(\r\nsqlalchemy.exc.InvalidRequestError: Can't operate on closed transaction inside context manager.  Please complete the context manager before emitting further commands.`\r\n\r\nit's probably related to the way I create/use the current session in \"_delete_machine_form_db\" - \r\n\r\n\r\n`    def _delete_machine_form_db(self, label):\r\n        \"\"\"\r\n        cuckoo's DB class does not implement machine deletion, so we made one here\r\n        :param label: the machine label\r\n        \"\"\"\r\n        try:\r\n            self.db.session.begin_nested()\r\n            from lib.cuckoo.core.database import Machine\r\n            \r\n            machine = self.db.session.query(Machine).filter_by(label=label).first()\r\n            if machine:\r\n                self.db.session.delete(machine)\r\n                self.db.session.commit()\r\n        except SQLAlchemyError as e:\r\n            log.debug(\"Database error removing machine: {0}\".format(e))\r\n            self.db.session.rollback()\r\n            return\r\n        finally:\r\n            self.db.session.close()`\r\n\nComment: \r\n> trying to apply your fix and now getting a new error: `2024-08-28 09:02:48,881 [lib.cuckoo.core.analysis_manager] ERROR: Task #100: failure in AnalysisManager.run Traceback (most recent call last): File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 498, in run self.launch_analysis() File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 460, in launch_analysis success = self.perform_analysis() File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 444, in perform_analysis with self.machine_running(), self.result_server(), self.network_routing(), self.run_auxiliary(): File \"/usr/lib/python3.10/contextlib.py\", line 142, in __exit__ next(self.gen) File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 334, in machine_running self.machinery_manager.machinery.release(self.machine) File \"/opt/CAPEv2/modules/machinery/aws.py\", line 322, in release self._start_or_create_machines() File \"/opt/CAPEv2/modules/machinery/aws.py\", line 207, in _start_or_create_machines current_available_machines = self.db.count_machines_available() File \"/opt/CAPEv2/lib/cuckoo/core/database.py\", line 1001, in count_machines_available return machines.count() File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/query.py\", line 3176, in count return self._from_self(col).enable_eagerloads(False).scalar() File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/query.py\", line 2893, in scalar ret = self.one() File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/query.py\", line 2870, in one return self._iter().one() File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/query.py\", line 2916, in _iter result = self.session.execute( File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 1716, in execute conn = self._connection_for_bind(bind) File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 1552, in _connection_for_bind TransactionalContext._trans_ctx_check(self) File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/util.py\", line 199, in _trans_ctx_check raise exc.InvalidRequestError( sqlalchemy.exc.InvalidRequestError: Can't operate on closed transaction inside context manager. Please complete the context manager before emitting further commands.`\r\n> \r\n> it's probably related to the way I create/use the current session in \"_delete_machine_form_db\" -\r\n> \r\n> ` def _delete_machine_form_db(self, label): \"\"\" cuckoo's DB class does not implement machine deletion, so we made one here :param label: the machine label \"\"\" try: self.db.session.begin_nested() from lib.cuckoo.core.database import Machine\r\n> \r\n> ```\r\n>         machine = self.db.session.query(Machine).filter_by(label=label).first()\r\n>         if machine:\r\n>             self.db.session.delete(machine)\r\n>             self.db.session.commit()\r\n>     except SQLAlchemyError as e:\r\n>         log.debug(\"Database error removing machine: {0}\".format(e))\r\n>         self.db.session.rollback()\r\n>         return\r\n>     finally:\r\n>         self.db.session.close()`\r\n> ```\r\n\r\nthe issue was solved  after I comment-out the last line, and now it deletes the \"old\" machine and creates new one, and the whole process ends successfully \r\n`self.db.session.close()`\r\n\r\nBut I'm not sure how it will affect the rest of the code (if it will affect anything).\r\n\r\nThese are the final changes I made in the code:\r\n\r\n    def stop(self, label):\r\n        log.info(\"Stopping vm %s\" % label)\r\n\r\n        status = self._status(label)\r\n\r\n        if status == AWS.POWEROFF:\r\n            raise CuckooMachineError(\"Trying to stop an already stopped VM: %s\" % label)\r\n\r\n        if self._is_autoscaled(self.ec2_machines[label]):\r\n            self.ec2_machines[label].terminate()\r\n        else:\r\n            self.ec2_machines[label].stop(Force=True)\r\n            self._wait_status(label, AWS.POWEROFF)\r\n            self._restore(label)\r\n\r\n    \"\"\"override Machinery method\"\"\"\r\n\r\n    def release(self, machine: Machine) -> Machine:\r\n        \"\"\"\r\n        we override it to have the ability to run start_or_create_machines() after unlocking the last machine\r\n        Release a machine.\r\n        @param label: machine label.\r\n        \"\"\"\r\n\r\n        retval = super(AWS, self).release(machine)\r\n        if self._is_autoscaled(self.ec2_machines[machine.label]):\r\n            log.info(\"release - start delete_machine_from_db\")\r\n            self._delete_machine_form_db(machine.label)\r\n            self.dynamic_machines_count -= 1\r\n        \r\n\r\n        self._start_or_create_machines()\r\n        return retval\r\n        \r\n    def _delete_machine_form_db(self, label):\r\n        \"\"\"\r\n        cuckoo's DB class does not implement machine deletion, so we made one here\r\n        :param label: the machine label\r\n        \"\"\"\r\n        try:\r\n            self.db.session.begin_nested()\r\n            from lib.cuckoo.core.database import Machine\r\n            \r\n            machine = self.db.session.query(Machine).filter_by(label=label).first()\r\n            if machine:\r\n                self.db.session.delete(machine)\r\n                self.db.session.commit()\r\n        except SQLAlchemyError as e:\r\n            log.debug(\"Database error removing machine: {0}\".format(e))\r\n            self.db.session.rollback()\r\n            return\r\n        #finally:\r\n        #    self.db.session.close()\nComment: @dor15 In `stop`, can you replace `self._delete_machine_form_db(label)` with `super(AWS, self).delete_machine(label)`.\r\n\r\nTotal changes would now look like this:\r\n```\r\n    def stop(self, label):\r\n        \"\"\"\r\n        Stops a virtual machine.\r\n        If the machine has initialized from autoscaled component, then terminate it.\r\n        @param label: virtual machine label.\r\n        @raise CuckooMachineError: if unable to stop.\r\n        \"\"\"\r\n        log.debug(\"Stopping vm %s\" % label)\r\n\r\n        status = self._status(label)\r\n\r\n        if status == AWS.POWEROFF:\r\n            raise CuckooMachineError(\"Trying to stop an already stopped VM: %s\" % label)\r\n\r\n        if self._is_autoscaled(self.ec2_machines[label]):\r\n            self.ec2_machines[label].terminate()\r\n        else:\r\n            self.ec2_machines[label].stop(Force=True)\r\n            self._wait_status(label, AWS.POWEROFF)\r\n            self._restore(label)\r\n\r\n    \"\"\"override Machinery method\"\"\"\r\n\r\n    def release(self, machine: Machine) -> Machine:\r\n        \"\"\"\r\n        we override it to have the ability to run start_or_create_machines() after unlocking the last machine\r\n        Release a machine.\r\n        @param label: machine label.\r\n        \"\"\"\r\n        retval = super(AWS, self).release(machine)\r\n\r\n        if self._is_autoscaled(self.ec2_machines[machine.label]):\r\n            super(AWS, self).delete_machine(machine.label)\r\n            self.dynamic_machines_count -= 1\r\n\r\n        self._start_or_create_machines()\r\n        return retval\r\n```\r\n\r\n\r\nI think the machinery file should do as little session spawning as possible, but that's just me. Let me know if this fixes the last part of the problem.\nComment: but we speak about azure not aws issue ? \nComment: @doomedraven Azure issue was solved with #2243. This is a separate issue with AWS. I have a PR draft waiting for confirmation that these changes fix it.\nComment: ah ok thank you\nComment: > @dor15 In `stop`, can you replace `self._delete_machine_form_db(label)` with `super(AWS, self).delete_machine(label)`.\r\n> \r\n> Total changes would now look like this:\r\n> \r\n> ```\r\n>     def stop(self, label):\r\n>         \"\"\"\r\n>         Stops a virtual machine.\r\n>         If the machine has initialized from autoscaled component, then terminate it.\r\n>         @param label: virtual machine label.\r\n>         @raise CuckooMachineError: if unable to stop.\r\n>         \"\"\"\r\n>         log.debug(\"Stopping vm %s\" % label)\r\n> \r\n>         status = self._status(label)\r\n> \r\n>         if status == AWS.POWEROFF:\r\n>             raise CuckooMachineError(\"Trying to stop an already stopped VM: %s\" % label)\r\n> \r\n>         if self._is_autoscaled(self.ec2_machines[label]):\r\n>             self.ec2_machines[label].terminate()\r\n>         else:\r\n>             self.ec2_machines[label].stop(Force=True)\r\n>             self._wait_status(label, AWS.POWEROFF)\r\n>             self._restore(label)\r\n> \r\n>     \"\"\"override Machinery method\"\"\"\r\n> \r\n>     def release(self, machine: Machine) -> Machine:\r\n>         \"\"\"\r\n>         we override it to have the ability to run start_or_create_machines() after unlocking the last machine\r\n>         Release a machine.\r\n>         @param label: machine label.\r\n>         \"\"\"\r\n>         retval = super(AWS, self).release(machine)\r\n> \r\n>         if self._is_autoscaled(self.ec2_machines[machine.label]):\r\n>             super(AWS, self).delete_machine(machine.label)\r\n>             self.dynamic_machines_count -= 1\r\n> \r\n>         self._start_or_create_machines()\r\n>         return retval\r\n> ```\r\n> \r\n> I think the machinery file should do as little session spawning as possible, but that's just me. Let me know if this fixes the last part of the problem.\r\n\r\nHey,\r\nI believe you meant to \"replace `self._delete_machine_form_db(label)` with `super(AWS, self).delete_machine(label)`\" in \"release\" func and not in \"stop\".\r\nI tried to apply the changes that you suggested, but the process doesn't create a new machine instead of the one that finished the job - \r\n\r\n2024-08-29 09:17:58,140 [modules.machinery.aws] INFO: Stopping vm i-0eef625a9c17d557b\r\n2024-08-29 09:17:58,339 [modules.machinery.aws] INFO: instance state: running\r\n2024-08-29 09:17:58,671 [lib.cuckoo.core.database] WARNING: i-0eef625a9c17d557b does not exist in the database.\r\n\r\n\r\n\nComment: @dor15 You're right, I said that wrong. The code was what I had intended, though. I don't understand where you are getting that log line from `[lib.cuckoo.core.database] WARNING: i-0eef625a9c17d557b does not exist in the database.`. This would be easier if I could see your code. Do you have a fork that I can view?\nComment: You are passing the label (instance id), not the Machine.name.\nComment: > You are passing the label (instance id), not the Machine.name.\r\n\r\n@ethhart Great catch, that is definitely the problem.\r\n@dor15 The line should be `super(AWS, self).delete_machine(machine.name)`\r\n\r\nI'll update the PR draft.\nComment: > @dor15 You're right, I said that wrong. The code was what I had intended, though. I don't understand where you are getting that log line from `[lib.cuckoo.core.database] WARNING: i-0eef625a9c17d557b does not exist in the database.`. This would be easier if I could see your code. Do you have a fork that I can view?\r\n\r\nno, I don't have a fork, but the line is from the original code [database](https://github.com/kevoreilly/CAPEv2/blob/master/lib/cuckoo/core/database.py#L663) \r\n\r\n\r\n\r\n> > You are passing the label (instance id), not the Machine.name.\r\n> \r\n> @ethhart Great catch, that is definitely the problem. @dor15 The line should be `super(AWS, self).delete_machine(machine.name)`\r\n> \r\n> I'll update the PR draft.\r\n\r\n@ethhart, you are right; now it's working.\r\n\r\nso the changes that @ChrisThibodeaux suggested work and solve the issue.\r\n\nComment: so, now that we merged fix, is this issue is relevant? as it says Azure, not AWS\nComment: @doomedraven I should have asked dor15 to split this off into a separate ticket sooner. I think we can close now.\nComment: Thanks",
+  "Title: Updating docs\nBody: Added screenshots and warnings about external and internal snapshots.\r\nUpdated .gitignore to ignore docs when built locally.",
+  "Title: feat: Add check_shellcode to options, to provide an option to turn it off\nBody: Related to this issue: https://github.com/kevoreilly/CAPEv2/issues/2237\r\n\r\nI added `check_shellcode` to the submission options, and wrote a description of what it does\r\n\r\nIf there is a better way to pass this parameter, please let me know and I will implement it accordingly.\r\n\r\nThanks \nComment: thank you, can you edit check_shellcode=True to check_shellcode=check_shellcode in exception? i dont have permission to edit your PR\nComment: thanks for fix, i will push the requested changes by myself",
+  "Title: VirusTotal (VT) section not filling in on Web GUI\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ X ] I am running the latest version\r\n- [ X } I did read the README!\r\n- [ X ] I checked the documentation and found no answer\r\n- [ X ] I checked to make sure that this issue has not already been filed\r\n- [ X ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ X ] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nWeb GUI shows VT results and detections.\r\n\r\n# Current Behavior\r\n\r\nWeb GUI does not show VT results or detections when viewing a file.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Submit the file for analysis\r\n2. Wait for report to come back and check 'recent' from Web GUI or click on the specific file and look at the report\r\n\r\n## Context\r\n\r\nI have all VirusTotal configurations seemingly set correctly within processing.conf. If there is another configuration that needs to be set before VT can be put into the WebGUI, please let me know, otherwise I think it may be an issue. (Files were already analyzed in VirusTotal, so it is not an issue of it being a file that VT has not seen before)\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| OS version       | Ubuntu 22.04\r\n\r\n## Failure Logs\r\n\r\n![image](https://github.com/user-attachments/assets/9eb24eaf-897d-4d9f-9aee-afb23b8affd4)\r\n![image](https://github.com/user-attachments/assets/4d4747b7-b78e-4ece-a06e-6cbbeaadd932)\r\n![image](https://github.com/user-attachments/assets/e9f2156e-2deb-4b9d-aa24-641fba536e8a)\r\n\r\n\nComment: to make it work you need your own apikey, as that key is used around all cuckoo, cuckoo-modified and cape instances. \r\n```\r\nb'{\\n    \"error\": {\\n        \"code\": \"QuotaExceededError\",\\n        \"message\": \"Quota exceeded\"\\n    }\\n}'\r\n```\nComment: I have the same problem, but with **URL analysis** :( \r\n**I use the API key from my VT account**. The VT results in the case of **file analysis** are displayed in \"Recent\". \r\nAlso, the key usage statistics on VT show API requests by files, **but not by URL**. \r\nIn _\"processing.conf\"_ in the **[detections]** section: _virustotal = yes_, in the **[virustotal]** section: _do_url_lookup = yes_ parameter, the API key was entered correctly.\r\n\r\n![image](https://github.com/user-attachments/assets/83242efe-6b75-4cd5-905d-172c0fc7bfe2)\r\n![image](https://github.com/user-attachments/assets/08790f8f-18ba-46dd-8e5e-e5613b863546)\r\n![image](https://github.com/user-attachments/assets/4ee1d95d-64a7-42b6-9fef-1bfd587e9142)\r\n\r\n**analysis.log of the last URL analysis:**\r\n[analysis.log](https://github.com/user-attachments/files/16332179/analysis.log)\r\n\r\nPlease help me understand what the problem is.\nComment: remove screen with your apikey, yes url analysis is not supported yet, i have added code, but requires testing, will try to test it this week if will find some time, the file lookup itself works fine, have just verified with private apikey\nComment: > remove screen with your apikey, yes url analysis is not supported yet, i have added code, but requires testing, will try to test it this week if will find some code, the file lookup itself works fine, have just verified with private apikey\r\n\r\nUnderstood, thank you very much\nComment: Thanks for help, it is now working.\r\n\r\nAnother issue arose after the issue was fixed. Within the 'Recent' tab in the WebGUI, when clicking on the \"1/78\" under 'VT', it brings up an error. Checking the folder location (ls /opt/CAPEv2/web/templates/analysis/overview/) it is trying to get the template from, there is no _antivirus.html template so it makes sense it cannot find it. \r\n\r\n![image](https://github.com/user-attachments/assets/016df9fe-1edf-467f-ba15-05dc24bd0b2d)\r\n\r\n![image](https://github.com/user-attachments/assets/0e83b99b-0338-41f5-b284-c45f72346ca3)\r\n\r\n![image](https://github.com/user-attachments/assets/8fa3fabe-be39-45f5-a893-46c2f4dc8ec0)\r\n\r\n\nComment: thanks fixed the path, this part itself is broken, it needs to check everything as it something that i never used, but this week i don't have spare time to go and properly make it working\nComment: ![image](https://github.com/user-attachments/assets/42a591c2-ce3d-4fa7-8d02-66adb8e2964b)\r\nso i have pushed files info fix. the URL requires url lookup api update\nComment: url works now too, git pull and reprocess any job to see it\nComment: > url works now too, git pull and reprocess any job to see it\r\n\r\nCool, it works. Thank you so much :)\nComment: glad to hear that, @JTurn01 does it works for you? if yes close the issue plz",
+  "Title: Human interactions are not working properly\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ + ] I am running the latest version\r\n- [ + ] I did read the README!\r\n- [ + ] I checked the documentation and found no answer\r\n- [ + ] I checked to make sure that this issue has not already been filed\r\n- [ + ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ + ] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nHuman interactions should press the buttons \"next\", \"ok\", etc. if they are available while analyzing some installers.\r\n\r\n# Current Behavior\r\n\r\nCurrently, the buttons are not clicked.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Download standard cape2.sh;\r\n2. Download NordVPN installer or Sublime Text 3 installer;\r\n3. Try to make an analysis.\r\n\r\n## Context\r\n\r\nHello, I'm having an issue with human interactions during file analysis. For the testing I am uploading an installer of different applications for analysis. The installer opens the initial page and waits for _\"Next\"_ or _\"OK\"_ to be pressed. But the _human.py_ script isn't clicking them, it just moves the mouse. I thought it might be a case sensitivity issue in the _human.py_ file, so I tried duplicating _\"Next\"_ and _\"OK\"_ with capital letters, but that didn't help.\r\n\r\n**Can you please suggest how I can check why it's not working as expected?**\r\n\r\n_Thanks in advance._\r\n\r\n![1 1](https://github.com/user-attachments/assets/16791922-de97-4fac-a802-b6d3cfb5ae44)\r\n[1_sublime_text.webm](https://github.com/user-attachments/assets/fa9c2689-1d67-4e0a-ab1d-a7aac587ade7)\r\n[2_nordvpn.webm](https://github.com/user-attachments/assets/762a2ffd-9d65-49f5-9626-f0edbc7d3560)\nComment: Maybe they use MUI which doesn't expose API so humen can't see those buttons\nComment: Maybe you have some samples on which I can test the right working scenario? Because I have already tried 15+ different installers, and it is not working. That is why I thought that human.py are not loaded correctly or blocked at some point. Because if you check the videos, the mouse stops moving when the installer opens.\nComment: i don't have any samples\nComment: Got it. Will try to find out then. Do human.py file injects into Windows 10 when the analysis starts or it operates in host machine through KVM somehow?\nComment: is inside of the windows vm\nComment: Got it, thanks\nComment: btw closing as your files are not related to malware, if you find this problem with real malware feel free to reopen",
+  "Title: Web process crashes due to running sflock with check_shellcode\nBody: # Expected Behavior\r\nSubmit a file successfully using the `/apiv2/tasks/create/file/` API\r\n\r\n# Current Behavior\r\n\r\nI encountered an issue when submitting some samples to our CAPE sandbox instance. The cape-web gunicorn process simply receives SIGABRT and crashes.\r\n\r\nIt seems that running the functions `sflock.ident.identify` and `sflock.unpack` with `check_shellcode=True` causes these crashes. These functions run as part of `lib.cuckoo.core.database._identify_aux_func` and `lic.cuckoo.common.demux.demux_sflock`\r\n\r\n# Failure Information (for bugs)\r\nThe process crashes when submitting the file using `/apiv2/tasks/create/file/` and the server returns 502 response.\r\n\r\nLooking at journalctl of the web service I can see this:\r\n`[2024-07-17 10:40:10 +0000] [782815] [ERROR] Worker (pid:782891) was sent code 134!`\r\n\r\n## Steps to Reproduce\r\n\r\n1. Here is an example of a file from VT which causes the crash: https://www.virustotal.com/gui/file/f29ab757d872152c3d85d3c1fbe7e030993499e79a3d65c2b4cfd75ae5a69fe4\r\n2. Submitting this file using `/apiv2/tasks/create/file/` should currently return 502\r\n\r\n## Context\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | 722aced01eb7fbe976edb3ce372895deb0fb2106\r\n| OS version       | Ubuntu 22.04.2 LTS\r\n| Tested Hash   | f29ab757d872152c3d85d3c1fbe7e030993499e79a3d65c2b4cfd75ae5a69fe4\r\n\r\n## Suggested Solution\r\nLooking a bit deeper into sflock source code, it seems the problem lies in `sflock.ident.emulate` function which runs as part of `sflock.ident.detect_shellcode`, I'm not sure how to resolve that.\r\n\r\nHowever, I was thinking about making `check_shellcode` configurable when submitting the file for analysis (as we have no use for it in our CAPE instance). I can open the PR with these changes, but I was wondering if it should be a feature flag in one of the configs, or a parameter you can send as part of the `/apiv2/tasks/create/file/` REST API.\r\n\r\nThanks in advance.\nComment: yes open PR please, interesting finding\nComment: I opened a PR.\r\nLMK what you think, thanks again!\nComment: thanks for PR\nComment: well i will keep this open to see on lower level what happens there\nComment: i think this one is related https://github.com/kevoreilly/CAPEv2/commit/d0edd36e5d45dc4d8c5bb7b8e34b6e5153dce11c as was able to reproduce your error once, but now i can't reproduce it, so we have option for disable it, but i will add space check too",
+  "Title: Question regarding Network routing and InetSim\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ + ] I am running the latest version\r\n- [ + ] I did read the README!\r\n- [ + ] I checked the documentation and found no answer\r\n- [ + ] I checked to make sure that this issue has not already been filed\r\n- [ + ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ + ] I have read and checked all configs (with all optional parts)\r\n\r\n## Context\r\n\r\nHello, I have a question about **Network routing and InetSim**. I\u2019ve set up **Cape** and **Remnux** machines, where the Cape machine\u2019s default network gateway **points to InetSim**. I wrote a test **PowerShell** script that tries to open a page an _example.com_ when it is submitted for analysis. If it gets a **200** response, it then tries to download a _file.exe_ from the corresponding website. And now this works because **InetSim** sends back a **200** response and an **empty file** for the download.\r\n\r\nRight now, I have the routing and internet settings set to \"none\" to keep the Cape VM off the internet and avoid any connections.\r\n\r\n**So, my question is:** Will my current network configurations still work properly if I **don\u2019t use CAPE Rooter**? Or is there a way to use CAPE Rooter without turning on the internet for the machine and routing everything to InetSim? I am asking that question because I am worried that the current setup with route _none_ and not working CAPE Rooter is not right.\r\n\r\n_I apologize for the inconvenience, but despite reviewing the documentation multiple times, I am still unable to finalize this question. As you are the experts, I would appreciate your assistance. Thanks in advance._\r\n\r\nMy configurations:\r\n\r\n```---cuckoo.conf---\r\n\r\n[cuckoo]\r\nmachinery_screenshots = on\r\nreschedule = on\r\nallow_static = yes\r\n\r\n[resultserver]\r\nip = 192.168.100.1\r\n\r\n---kvm.conf---\r\n\r\n[kvm]\r\n# Specify a comma-separated list of available machines to be used. For each\r\n# specified ID you have to define a dedicated section containing the details\r\n# on the respective machine. (E.g. cuckoo1,cuckoo2,cuckoo3)\r\nmachines = win10\r\n\r\ninterface = virbr1\r\n# To connect to local or remote host\r\ndsn = qemu:///system\r\n\r\n[win10]\r\n# Specify the label name of the current machine as specified in your\r\n# libvirt configuration.\r\nlabel = win10\r\n\r\n# Specify the operating system platform used by current machine\r\n# [windows/darwin/linux].\r\nplatform = windows\r\n\r\n# Specify the IP address of the current virtual machine. Make sure that the\r\n# IP address is valid and that the host machine is able to reach it. If not,\r\n# the analysis will fail. You may want to configure your network settings in\r\n# /etc/libvirt/<hypervisor>/networks/\r\nip = 192.168.100.171\r\n\r\n# Specify tags to display\r\n# Tags may be used to specify on which guest machines a sample should be run\r\n# NOTE - One of the following OS version tags MUST be included for Windows VMs:\r\n# winxp,win7, win10, win11\r\n# Some samples will only detonate on specific versions of Windows (see web.conf packages for more info)\r\n# Example: MSIX - Windows >= 10\r\n# tags = winxp,acrobat_reader_6\r\n\r\n# (Optional) Specify the snapshot name to use. If you do not specify a snapshot\r\n# name, the KVM MachineManager will use the current snapshot.\r\n# Example (Snapshot1 is the snapshot name):\r\nsnapshot = snapshot5\r\n\r\n# (Optional) Specify the name of the network interface that should be used\r\n# when dumping network traffic from this machine with tcpdump. If specified,\r\n# overrides the default interface specified in auxiliary.conf\r\n# Example (virbr0 is the interface name):\r\ninterface = virbr1\r\n\r\n# (Optional) Specify the IP of the Result Server, as your virtual machine sees it.\r\n# The Result Server will always bind to the address and port specified in cuckoo.conf,\r\n# however you could set up your virtual network to use NAT/PAT, so you can specify here\r\n# the IP address for the Result Server as your machine sees it. If you don't specify an\r\n# address here, the machine will use the default value from cuckoo.conf.\r\n# NOTE: if you set this option you have to set result server IP to 0.0.0.0 in cuckoo.conf.\r\n# Example:\r\nresultserver_ip = 192.168.100.1\r\n\r\n# (Optional) Specify the port for the Result Server, as your virtual machine sees it.\r\n# The Result Server will always bind to the address and port specified in cuckoo.conf,\r\n# however you could set up your virtual network to use NAT/PAT, so you can specify here\r\n# the port for the Result Server as your machine sees it. If you don't specify a port\r\n# here, the machine will use the default value from cuckoo.conf.\r\n# Example:\r\nresultserver_port = 2042\r\n\r\n# Set the machine architecture\r\n# Required to auto select proper machine architecture for sample\r\n# x64 or x86\r\narch = x64\r\n\r\n# (Optional) Specify whether or not the machine should be reserved, meaning that it will\r\n# only be used for a detonation if specifically requested by its label.\r\n# reserved = no\r\n\r\n---routing.conf---\r\n\r\n[routing]\r\nenable_pcap = yes\r\n\r\nroute = none\r\ninternet = none\r\nrt_table = virbr1\r\nverify_interface = yes\r\n\r\n[inetsim]\r\nenabled = yes\r\nserver = 192.168.100.221\r\ndnsport = 53\r\ninterface = virbr1\r\n\r\n---auxiliary.conf---\r\n\r\n[auxiliary_modules]\r\nprocmon = no\r\nhuman_windows = yes\r\nhuman_linux = yes\r\n\r\n[gateways]\r\nRTR1 = 192.168.122.1\r\nRTR2 = 192.168.100.1\r\nINETSIM = 192.168.100.221\r\n```\r\n\r\n![1](https://github.com/user-attachments/assets/4a5988d2-95f8-4de3-88b3-ec12aa6d21b7)\r\n![2](https://github.com/user-attachments/assets/f1b721d2-0533-49e3-8e08-fce04ee2c353)\r\n![3](https://github.com/user-attachments/assets/e2963446-d31c-46d8-8281-975a01f24f41)\r\n![4](https://github.com/user-attachments/assets/0ad83e51-0833-4e91-95b0-61ec4e747bbc)\r\n![5](https://github.com/user-attachments/assets/1780b693-e433-4c44-b5cc-152d427047ea)\r\n![6](https://github.com/user-attachments/assets/672b04ae-11aa-4ed4-8593-50256873062d)\r\n![7](https://github.com/user-attachments/assets/717bb045-79c3-419b-94d2-d43cec706e00)\r\n![8](https://github.com/user-attachments/assets/fd264f7e-1901-4af9-8dae-0f67b4278532)\nComment: well if you did that on gateway side, you don't need router",
+  "Title: Add Tracee eBPF threat detection for Linux Dynamic Analysis\nBody: # Tracee Pull Request\r\n\r\nThis pull request integrates [Aqua Security Tracee](https://www.aquasec.com/products/tracee/), an eBPF-based threat detection engine with built-in signatures, into CAPEv2 for Linux dynamic analysis to complement the existing `strace` implementation. The log streaming implementation is similar to @winson0123's `strace` streaming to prevent ransomware's encryption of the logs.\r\n\r\nPlease comment if you see any issues.\r\n\r\n## Screenshots and demo\r\n\r\n*Screenshot of the Tracee Behaviour UI*\r\n![image](https://github.com/user-attachments/assets/039ea42f-36bd-4530-b5d9-48face5f642b)\r\n\r\n*Demonstration of a captured kernel module (which was encrypted and stored only in memory)*\r\n![image](https://github.com/user-attachments/assets/35cc6704-8599-403b-9f13-e65326cdef23)\r\n\r\n## Rationale\r\n\r\nIn no order of importance:\r\n\r\n- Tracee has functionality to **capture artifacts** such as loaded kernel modules, suspicious memory regions and eBPF programs in their **run-time state**, allowing their **easy extraction even from packed and encrypted malwares**, aiding in dynamic analysis\r\n- Powerful filtering UI based on datatables JavaScript library\r\n    - Opted for client-side data filtering for performance reasons and to ease server load\r\n    - Compressed (gzipped) data format for storage in CAPE report (~10x compression and bandwidth savings due to JSON log format)\r\n    - Able to store uncompressed fields if required, e.g. for integration into CAPE signatures (future work)\r\n- Tracee has advanced [built-in signatures](https://aquasecurity.github.io/tracee/latest/docs/events/builtin/signatures/) for many suspicious behaviours such as:\r\n    - Dynamic Code Loading\r\n    - Fileless Execution\r\n    - Hidden File Created\r\n    - Syscall Table Hooking\r\n    - `kallsyms_lookup_name` -  it could be used in some rootkits, likely until recently... (it's an [interesting story](https://github.com/xcellerator/linux_kernel_hacking/issues/3))\r\n    - **Illegitimate Shell** - detect instances where a web server program spawns a shell\r\n    - **Kernel Module Loading** - new kernel module loaded (possible kernel rookits)\r\n    - **Loader Preload** - identifies manipulation of `LD_PRELOAD` and `LD_LIBRARY_PATH` environment variables, or similar methods which can potentially be leveraged for code injection\r\n    - **Process VM Write** - detect potential code injection attacks using the `process_vm_writev` syscall\r\n    - **Scheduled Task Modification** - like cron\r\n    - **Standard I/O Over Socket** - potential remote shell\r\n    - **Many more...**\r\n- Built-in signatures make it easier for users to identify and narrow down suspicious behaviours compared to sifting through many syscalls\r\n- Tracee operates at the eBPF level, making it harder (but not impossible) to detect than `strace` by malware.\r\n\r\n## Trying it out\r\n\r\nTo get started, use the branch theoleecj2/CAPEv2 -> tracee.\r\n\r\nRun `docker pull docker.io/aquasec/tracee:0.20.0` in a Ubuntu VM which already has the CAPE agent running. For best results, use Ubuntu 20.04.\r\n\r\n> **Side Note**: Some rootkits and malware you may find online may require `kallsyms_lookup_name` which is affected in Linux kernel versions > 5.7. See [here](https://github.com/xcellerator/linux_kernel_hacking/issues/3) for more information.\r\n\r\nThen `docker image tag aquasec/tracee:0.20.0 aquasec/tracee:latest` to record v0.20.0 as the latest.\r\n\r\nAdd `tracee_linux = yes` to the auxiliary.conf's `[auxiliary_modules]` section and\r\n\r\n```yaml\r\n[tracee]\r\nenabled = yes\r\n```\r\n\r\ninto processing.conf.\r\n\r\nYou can obtain a **live malware sample** for Linux to load into CAPEv2 from https://bazaar.abuse.ch/sample/bd0141e88a0d56b508bc52db4dab68a49b6027a486e4d9514ec0db006fe71eed/. Please be careful with this file as it's an actual malware. We do not take responsibility for anything that goes wrong.\r\n\r\nFor further demonstration, you can try https://github.com/citronneur/pamspy which loads an eBPF program to steal credentials. The eBPF should be captured by Tracee in 'Dropped Files'.\r\n\r\n## Limitations\r\n\r\nTracee sometimes does not de-reference pointers while `strace` can capture the contents. The Tracee implementation here is not 100% reliable, and we are working on improving it (for instance, we have added a health check).\r\n\r\n## Common Issues\r\n\r\nYou need to have the `strace` auxiliary module enabled. Processing for `strace` need not be enabled, but you can enable it to observe the Tracee module's weaknesses and strengths compared to it.\r\n\r\nThe event capturing is not 100% reliable. If a task's Tracee output looks incorrect, please try again.\r\n\r\nCheck that you have `/opt/CAPEv2/data/linux/linux-syscalls.json`. If not, you can obtain it from https://raw.githubusercontent.com/mebeim/linux-syscalls/master/db/x86/64/x64/v6.5/table.json.\nComment: Thank you \u2764\ufe0f \nComment: hello, thank you for such a great contribution, i will merge it , but some parts will be moved to community repo to clarify that is not done by core devs\nComment: log\r\n2025-04-28 09:50:56,040 [root] DEBUG: Starting analyzer from: /tmphhcukjcn\r\n2025-04-28 09:50:56,041 [root] DEBUG: Storing results at: /tmp/TLzwjbKO\r\n2025-04-28 09:50:56,050 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.filecollector\"...\r\n2025-04-28 09:50:56,149 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.human\"...\r\n2025-04-28 09:50:56,639 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.screenshots\"...\r\n2025-04-28 09:50:56,936 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageChops'\r\n2025-04-28 09:50:56,937 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageDraw'\r\n2025-04-28 09:50:56,937 [lib.api.screenshot] INFO: Please upgrade Pillow to >= 5.4.1 for best performance\r\n2025-04-28 09:50:57,074 [modules.auxiliary.filecollector] INFO: FileCollector run started\r\n2025-04-28 09:50:57,135 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir srv\r\n2025-04-28 09:50:57,136 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir lost+found\r\n2025-04-28 09:50:57,141 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir snap\r\n2025-04-28 09:51:01,382 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir tmpjz1jkxdc\r\n2025-04-28 09:51:01,387 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir libx32\r\n2025-04-28 09:51:01,388 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir bin\r\n2025-04-28 09:51:01,388 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir opt\r\n2025-04-28 09:51:01,389 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir home\r\n2025-04-28 09:51:01,508 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir .Library\r\n2025-04-28 09:51:01,509 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir cdrom\r\n2025-04-28 09:51:01,509 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir lib32\r\n2025-04-28 09:51:01,510 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir media\r\n2025-04-28 09:51:01,510 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir sbin\r\n2025-04-28 09:51:01,511 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir boot\r\n2025-04-28 09:51:01,513 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir tmphhcukjcn\r\n2025-04-28 09:51:01,514 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir etc\r\n2025-04-28 09:51:01,607 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir tmp\r\n2025-04-28 09:51:01,610 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir root\r\n2025-04-28 09:51:01,673 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir mnt\r\n2025-04-28 09:51:01,673 [modules.auxiliary.filecollector] INFO: FileCollector setup complete\r\n2025-04-28 09:51:02,076 [root] DEBUG: Initialized auxiliary module \"FileCollector\"\r\n2025-04-28 09:51:02,077 [root] DEBUG: Trying to start auxiliary module \"FileCollector\"...\r\n2025-04-28 09:51:02,078 [root] DEBUG: Started auxiliary module \"FileCollector\"\r\n2025-04-28 09:51:02,080 [modules.auxiliary.human] DEBUG: Human init complete\r\n2025-04-28 09:51:02,081 [root] DEBUG: Initialized auxiliary module \"Human\"\r\n2025-04-28 09:51:02,081 [root] DEBUG: Trying to start auxiliary module \"Human\"...\r\n2025-04-28 09:51:02,082 [root] DEBUG: Started auxiliary module \"Human\"\r\n2025-04-28 09:51:02,083 [root] DEBUG: Initialized auxiliary module \"Screenshots\"\r\n2025-04-28 09:51:02,084 [root] DEBUG: Trying to start auxiliary module \"Screenshots\"...\r\n2025-04-28 09:51:02,084 [asyncio] DEBUG: Using selector: EpollSelector\r\n2025-04-28 09:51:02,085 [root] DEBUG: Started auxiliary module \"Screenshots\"\r\n2025-04-28 09:51:02,092 [lib.core.packages] INFO: sh -c\r\n2025-04-28 09:51:02,092 [lib.core.packages] INFO: sudo strace -o /dev/stderr -s 800  -ttf sh -c /tmp/bd0141e88a0d56b508bc.elf\r\n2025-04-28 09:51:02,095 [lib.core.packages] INFO: Process started with strace\r\n2025-04-28 09:51:02,096 [root] INFO: Added new process to list with pid: 2274\r\n2025-04-28 09:51:02,348 [root] INFO: New child process detected: 2280\r\n2025-04-28 09:51:02,769 [lib.common.results] INFO: File /.Library/SystemServices/updateSystem size is 40960, Max size: 100000000\r\n2025-04-28 09:51:02,786 [lib.common.results] INFO: File /.Library/SystemServices/updateSystem size is 865144, Max size: 100000000\r\n2025-04-28 09:54:22,430 [root] INFO: Analysis timeout hit, terminating analysis\r\n2025-04-28 09:54:22,431 [root] INFO: Stopping auxiliary modules\r\n2025-04-28 09:54:22,433 [root] INFO: Stopping auxiliary module: FileCollector\r\n2025-04-28 09:54:23,201 [lib.core.packages] INFO: Strace streaming connection has been closed\r\n2025-04-28 09:54:29,436 [root] INFO: Stopping auxiliary module: Human\r\n2025-04-28 09:54:29,437 [root] INFO: Stopping auxiliary module: Screenshots\r\n2025-04-28 09:54:29,437 [root] INFO: Finishing auxiliary modules\r\n2025-04-28 09:54:29,438 [lib.common.results] WARNING: File /sslkeylog.log doesn't exist anymore\r\n2025-04-28 09:54:29,438 [root] INFO: Analysis completed\r\n\nComment: > # Tracee Pull Request\r\n> This pull request integrates [Aqua Security Tracee](https://www.aquasec.com/products/tracee/), an eBPF-based threat detection engine with built-in signatures, into CAPEv2 for Linux dynamic analysis to complement the existing `strace` implementation. The log streaming implementation is similar to @winson0123's `strace` streaming to prevent ransomware's encryption of the logs.\r\n> \r\n> Please comment if you see any issues.\r\n> \r\n> ## Screenshots and demo\r\n> _Screenshot of the Tracee Behaviour UI_ ![image](https://private-user-images.githubusercontent.com/163821037/349348502-039ea42f-36bd-4530-b5d9-48face5f642b.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJnaXRodWIuY29tIiwiYXVkIjoicmF3LmdpdGh1YnVzZXJjb250ZW50LmNvbSIsImtleSI6ImtleTUiLCJleHAiOjE3NDc1NDc5ODcsIm5iZiI6MTc0NzU0NzY4NywicGF0aCI6Ii8xNjM4MjEwMzcvMzQ5MzQ4NTAyLTAzOWVhNDJmLTM2YmQtNDUzMC1iNWQ5LTQ4ZmFjZTVmNjQyYi5wbmc_WC1BbXotQWxnb3JpdGhtPUFXUzQtSE1BQy1TSEEyNTYmWC1BbXotQ3JlZGVudGlhbD1BS0lBVkNPRFlMU0E1M1BRSzRaQSUyRjIwMjUwNTE4JTJGdXMtZWFzdC0xJTJGczMlMkZhd3M0X3JlcXVlc3QmWC1BbXotRGF0ZT0yMDI1MDUxOFQwNTU0NDdaJlgtQW16LUV4cGlyZXM9MzAwJlgtQW16LVNpZ25hdHVyZT1iY2Q1OWYyY2ZkYmI5ZTcxM2M5MTg4MDQ2NWVkOWU3ZWMzNGVhMzA5YTE1NDNmZTgzMTY0MWIxNTE2ZmZiNGEwJlgtQW16LVNpZ25lZEhlYWRlcnM9aG9zdCJ9.dzNmX7AL9g0BaEBeByTn_pP1lhs-eueRHBXL85Wu9AI)\r\n> \r\n> _Demonstration of a captured kernel module (which was encrypted and stored only in memory)_ ![image](https://private-user-images.githubusercontent.com/163821037/349348603-35cc6704-8599-403b-9f13-e65326cdef23.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJnaXRodWIuY29tIiwiYXVkIjoicmF3LmdpdGh1YnVzZXJjb250ZW50LmNvbSIsImtleSI6ImtleTUiLCJleHAiOjE3NDc1NDc5ODcsIm5iZiI6MTc0NzU0NzY4NywicGF0aCI6Ii8xNjM4MjEwMzcvMzQ5MzQ4NjAzLTM1Y2M2NzA0LTg1OTktNDAzYi05ZjEzLWU2NTMyNmNkZWYyMy5wbmc_WC1BbXotQWxnb3JpdGhtPUFXUzQtSE1BQy1TSEEyNTYmWC1BbXotQ3JlZGVudGlhbD1BS0lBVkNPRFlMU0E1M1BRSzRaQSUyRjIwMjUwNTE4JTJGdXMtZWFzdC0xJTJGczMlMkZhd3M0X3JlcXVlc3QmWC1BbXotRGF0ZT0yMDI1MDUxOFQwNTU0NDdaJlgtQW16LUV4cGlyZXM9MzAwJlgtQW16LVNpZ25hdHVyZT1iODdkYmRmZmQ3MWZkMGUwZWVhM2I2N2EyOWZlM2FhMGVjNjhmYjBlYzM4MDA1N2FmNmM4NjZmMzUyZmMzMWU5JlgtQW16LVNpZ25lZEhlYWRlcnM9aG9zdCJ9.16OzbQHsK1__OdOnrsRc8FpAI-4iCmgcjBtWra-NBwU)\r\n> \r\n> ## Rationale\r\n> In no order of importance:\r\n> \r\n> * Tracee has functionality to **capture artifacts** such as loaded kernel modules, suspicious memory regions and eBPF programs in their **run-time state**, allowing their **easy extraction even from packed and encrypted malwares**, aiding in dynamic analysis\r\n> * Powerful filtering UI based on datatables JavaScript library\r\n>   \r\n>   * Opted for client-side data filtering for performance reasons and to ease server load\r\n>   * Compressed (gzipped) data format for storage in CAPE report (~10x compression and bandwidth savings due to JSON log format)\r\n>   * Able to store uncompressed fields if required, e.g. for integration into CAPE signatures (future work)\r\n> * Tracee has advanced [built-in signatures](https://aquasecurity.github.io/tracee/latest/docs/events/builtin/signatures/) for many suspicious behaviours such as:\r\n>   \r\n>   * Dynamic Code Loading\r\n>   * Fileless Execution\r\n>   * Hidden File Created\r\n>   * Syscall Table Hooking\r\n>   * `kallsyms_lookup_name` -  it could be used in some rootkits, likely until recently... (it's an [interesting story](https://github.com/xcellerator/linux_kernel_hacking/issues/3))\r\n>   * **Illegitimate Shell** - detect instances where a web server program spawns a shell\r\n>   * **Kernel Module Loading** - new kernel module loaded (possible kernel rookits)\r\n>   * **Loader Preload** - identifies manipulation of `LD_PRELOAD` and `LD_LIBRARY_PATH` environment variables, or similar methods which can potentially be leveraged for code injection\r\n>   * **Process VM Write** - detect potential code injection attacks using the `process_vm_writev` syscall\r\n>   * **Scheduled Task Modification** - like cron\r\n>   * **Standard I/O Over Socket** - potential remote shell\r\n>   * **Many more...**\r\n> * Built-in signatures make it easier for users to identify and narrow down suspicious behaviours compared to sifting through many syscalls\r\n> * Tracee operates at the eBPF level, making it harder (but not impossible) to detect than `strace` by malware.\r\n> \r\n> ## Trying it out\r\n> To get started, use the branch theoleecj2/CAPEv2 -> tracee.\r\n> \r\n> Run `docker pull docker.io/aquasec/tracee:0.20.0` in a Ubuntu VM which already has the CAPE agent running. For best results, use Ubuntu 20.04.\r\n> \r\n> > **Side Note**: Some rootkits and malware you may find online may require `kallsyms_lookup_name` which is affected in Linux kernel versions > 5.7. See [here](https://github.com/xcellerator/linux_kernel_hacking/issues/3) for more information.\r\n> \r\n> Then `docker image tag aquasec/tracee:0.20.0 aquasec/tracee:latest` to record v0.20.0 as the latest.\r\n> \r\n> Add `tracee_linux = yes` to the auxiliary.conf's `[auxiliary_modules]` section and\r\n> \r\n> ```yaml\r\n> [tracee]\r\n> enabled = yes\r\n> ```\r\n> \r\n> into processing.conf.\r\n> \r\n> You can obtain a **live malware sample** for Linux to load into CAPEv2 from https://bazaar.abuse.ch/sample/bd0141e88a0d56b508bc52db4dab68a49b6027a486e4d9514ec0db006fe71eed/. Please be careful with this file as it's an actual malware. We do not take responsibility for anything that goes wrong.\r\n> \r\n> For further demonstration, you can try https://github.com/citronneur/pamspy which loads an eBPF program to steal credentials. The eBPF should be captured by Tracee in 'Dropped Files'.\r\n> \r\n> ## Limitations\r\n> Tracee sometimes does not de-reference pointers while `strace` can capture the contents. The Tracee implementation here is not 100% reliable, and we are working on improving it (for instance, we have added a health check).\r\n> \r\n> ## Common Issues\r\n> You need to have the `strace` auxiliary module enabled. Processing for `strace` need not be enabled, but you can enable it to observe the Tracee module's weaknesses and strengths compared to it.\r\n> \r\n> The event capturing is not 100% reliable. If a task's Tracee output looks incorrect, please try again.\r\n> \r\n> Check that you have `/opt/CAPEv2/data/linux/linux-syscalls.json`. If not, you can obtain it from https://raw.githubusercontent.com/mebeim/linux-syscalls/master/db/x86/64/x64/v6.5/table.json.\r\n\r\nMay I ask the step or guide for Linux Guest Setting. I've following the step from https://capev2.readthedocs.io/en/latest/installation/guest/linux.html but if I submit .ELF file the cape.service say like this:\r\n\r\nERROR: PE type not recognised: 'DOS Header magic not found'\r\n\r\nWhats the solution? Thanks\r\n\nComment: Seems like your issue may be tied to https://github.com/kevoreilly/CAPEv2/issues/2589.\r\n\r\nBumping your `sflock` version may be a solution for now:\r\nhttps://github.com/kevoreilly/CAPEv2/issues/2589#issuecomment-2886990614\nComment: > Seems like your issue may be tied to https://github.com/kevoreilly/CAPEv2/issues/2589.\n> \n> Bumping your `sflock` version may be a solution for now:\n> https://github.com/kevoreilly/CAPEv2/issues/2589#issuecomment-2886990614\n\nThanks for your comment. I've try it, but the error message is still show. The error say like as the CAPE service cannot identifying the .ELF binary or .ELF Header, then whats the solution? Is it because CAPE didn't support the . ELF analysis?\nComment: Have you tried submitting your sample with the selected `Analysis Package` option to be `bash`?\nComment: > Have you tried submitting your sample with the selected `Analysis Package` option to be `bash`?\r\n\r\nNo, I don't set the analysis package, bacause I think the .elf package is not available, so I choose the Detect Automatically Package\nComment: > Have you tried submitting your sample with the selected `Analysis Package` option to be `bash`?\r\n\r\nThanks for your recomendation, I will try it to change the Package option into bash execution\nComment: > Have you tried submitting your sample with the selected `Analysis Package` option to be `bash`?\r\n\r\nI've try to resubmit the malware then choose the package type, but, the process is still give error with message same lke before, like this\r\n\r\n![image](https://github.com/user-attachments/assets/faebc7bf-a1a7-4e7f-9610-dcedcd4c93bd)\r\n\nComment: Log:\r\n2025-09-22 14:10:45,005 [root] DEBUG: Starting analyzer from: /cr8mee3r\r\n2025-09-22 14:10:45,006 [root] DEBUG: Storing results at: /tmp/XFfABqotb\r\n2025-09-22 14:10:45,013 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.filecollector\"...\r\n2025-09-22 14:10:45,096 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.human\"...\r\n2025-09-22 14:10:45,249 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.screenshots\"...\r\n2025-09-22 14:10:45,295 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageChops'\r\n2025-09-22 14:10:45,297 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageDraw'\r\n2025-09-22 14:10:45,297 [lib.api.screenshot] INFO: Please upgrade Pillow to >= 5.4.1 for best performance\r\n2025-09-22 14:10:45,349 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.sysmon\"...\r\n2025-09-22 14:10:45,351 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.tracee\"...\r\n2025-09-22 14:10:45,355 [modules.auxiliary.filecollector] INFO: FileCollector run started\r\n2025-09-22 14:10:45,364 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir snap\r\n2025-09-22 14:10:46,644 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir root\r\n2025-09-22 14:10:46,692 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir s1p3_whz\r\n2025-09-22 14:10:46,696 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir 6tsmu_9i\r\n2025-09-22 14:10:46,700 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir mnt\r\n2025-09-22 14:10:46,701 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir ahjr7_14\r\n2025-09-22 14:10:46,704 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir media\r\n2025-09-22 14:10:46,705 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir sbin.usr-is-merged\r\n2025-09-22 14:10:46,705 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir cr8mee3r\r\n2025-09-22 14:10:46,706 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir srv\r\n2025-09-22 14:10:46,706 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir .Library\r\n2025-09-22 14:10:46,707 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir boot\r\n2025-09-22 14:10:46,709 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir d9w5qvow\r\n2025-09-22 14:10:46,713 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir etc\r\n2025-09-22 14:10:46,803 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir kpdzasrr\r\n2025-09-22 14:10:46,807 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir home\r\n2025-09-22 14:10:46,886 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir lib.usr-is-merged\r\n2025-09-22 14:10:46,886 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir sbin\r\n2025-09-22 14:10:46,886 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir bin.usr-is-merged\r\n2025-09-22 14:10:46,887 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir cdrom\r\n2025-09-22 14:10:46,887 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir bin\r\n2025-09-22 14:10:46,887 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir lost+found\r\n2025-09-22 14:10:46,888 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir xcz3xob1\r\n2025-09-22 14:10:46,892 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir tkgyvp3u\r\n2025-09-22 14:10:46,897 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir opt\r\n2025-09-22 14:10:46,898 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir tmp\r\n2025-09-22 14:10:46,900 [modules.auxiliary.filecollector] INFO: FileCollector setup complete\r\n2025-09-22 14:10:47,356 [root] DEBUG: Initialized auxiliary module \"FileCollector\"\r\n2025-09-22 14:10:47,358 [root] DEBUG: Trying to start auxiliary module \"FileCollector\"...\r\n2025-09-22 14:10:47,359 [root] DEBUG: Started auxiliary module \"FileCollector\"\r\n2025-09-22 14:10:47,362 [modules.auxiliary.human] DEBUG: Human init complete\r\n2025-09-22 14:10:47,364 [root] DEBUG: Initialized auxiliary module \"Human\"\r\n2025-09-22 14:10:47,366 [root] DEBUG: Trying to start auxiliary module \"Human\"...\r\n2025-09-22 14:10:47,366 [root] DEBUG: Started auxiliary module \"Human\"\r\n2025-09-22 14:10:47,367 [root] DEBUG: Initialized auxiliary module \"Screenshots\"\r\n2025-09-22 14:10:47,368 [root] DEBUG: Trying to start auxiliary module \"Screenshots\"...\r\n2025-09-22 14:10:47,371 [asyncio] DEBUG: Using selector: EpollSelector\r\n2025-09-22 14:10:47,374 [root] DEBUG: Started auxiliary module \"Screenshots\"\r\n2025-09-22 14:10:47,374 [root] DEBUG: Initialized auxiliary module \"Sysmon\"\r\n2025-09-22 14:10:47,376 [root] DEBUG: Trying to start auxiliary module \"Sysmon\"...\r\n2025-09-22 14:10:47,378 [root] DEBUG: Started auxiliary module \"Sysmon\"\r\n2025-09-22 14:10:47,380 [modules.auxiliary.tracee] INFO: docker start\r\n2025-09-22 14:10:47,390 [modules.auxiliary.tracee] INFO: True\r\n2025-09-22 14:10:47,392 [modules.auxiliary.tracee] INFO: Tracee\r\n2025-09-22 14:10:47,395 [root] DEBUG: Initialized auxiliary module \"Docker\"\r\n2025-09-22 14:10:47,398 [root] DEBUG: Trying to start auxiliary module \"Docker\"...\r\n2025-09-22 14:10:47,514 [modules.auxiliary.tracee] DEBUG: Starting docker container\r\n2025-09-22 14:10:47,515 [modules.auxiliary.tracee] DEBUG: sudo docker run --name tracee -d --pid=host --cgroupns=host --privileged -v /etc/os-release:/etc/os-release-host:ro -v /cr8mee3r/tracee-artifacts/:/tmp/tracee/out/host -v /var/run:/var/run:ro -v /cr8mee3r/modules/auxiliary/tracee:/policy aquasec/tracee:latest --output json --output option:parse-arguments,exec-env,exec-hash --policy /policy/policy.yml --cache cache-type=mem --cache mem-cache-size=1024 --capture bpf --capture module\r\n2025-09-22 14:10:48,152 [modules.auxiliary.tracee] DEBUG: Docker container started: 7ba9c5608d4a2868c0bc475b5f2ccca5cd25a335f44b68caa598f41f5bf9dd7f\r\n\r\n2025-09-22 14:10:58,220 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\r\n\r\n2025-09-22 14:10:58,274 [modules.auxiliary.tracee] INFO: \r\n2025-09-22 14:11:08,312 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\r\n\r\n2025-09-22 14:11:08,366 [modules.auxiliary.tracee] INFO: \r\n2025-09-22 14:11:18,387 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\r\n\r\n2025-09-22 14:11:18,449 [modules.auxiliary.tracee] INFO: \r\n2025-09-22 14:11:28,478 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\r\n\r\n2025-09-22 14:11:28,524 [modules.auxiliary.tracee] INFO: \r\n2025-09-22 14:11:38,533 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\r\n\r\n2025-09-22 14:11:38,579 [modules.auxiliary.tracee] INFO: \r\n2025-09-22 14:11:48,591 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\r\n\r\n2025-09-22 14:11:48,654 [modules.auxiliary.tracee] INFO: \r\n2025-09-22 14:11:58,707 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\r\n\r\n2025-09-22 14:11:58,756 [modules.auxiliary.tracee] INFO: \r\n2025-09-22 14:12:08,768 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\r\n\r\n2025-09-22 14:12:08,816 [modules.auxiliary.tracee] INFO: \r\n2025-09-22 14:12:18,825 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\r\n\r\n2025-09-22 14:12:18,869 [modules.auxiliary.tracee] INFO: \r\n2025-09-22 14:12:28,880 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\r\n\r\n2025-09-22 14:12:28,925 [modules.auxiliary.tracee] INFO: \r\n2025-09-22 14:12:38,936 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\r\n\r\n2025-09-22 14:12:38,990 [modules.auxiliary.tracee] INFO: \r\n2025-09-22 14:12:49,006 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\r\n\r\n2025-09-22 14:12:49,053 [modules.auxiliary.tracee] INFO: \r\n2025-09-22 14:12:59,074 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\r\n\r\n2025-09-22 14:12:59,126 [modules.auxiliary.tracee] INFO: \r\n2025-09-22 14:13:09,157 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\r\n\r\n2025-09-22 14:13:09,217 [modules.auxiliary.tracee] INFO: \r\n2025-09-22 14:13:19,267 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\r\n\r\n2025-09-22 14:13:19,313 [modules.auxiliary.tracee] INFO: \r\n2025-09-22 14:13:29,324 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\r\n\r\n2025-09-22 14:13:29,377 [modules.auxiliary.tracee] INFO: \r\n2025-09-22 14:13:39,390 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\r\n\r\n2025-09-22 14:13:39,440 [modules.auxiliary.tracee] INFO: \r\n2025-09-22 14:13:49,464 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\r\n\r\n2025-09-22 14:13:49,509 [modules.auxiliary.tracee] INFO: \r\n2025-09-22 14:13:59,559 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\r\n\r\n2025-09-22 14:13:59,611 [modules.auxiliary.tracee] INFO: \r\n2025-09-22 14:14:09,616 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\r\n\r\n2025-09-22 14:14:09,656 [modules.auxiliary.tracee] INFO: \r\n2025-09-22 14:14:19,677 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\r\n\r\n2025-09-22 14:14:19,736 [modules.auxiliary.tracee] INFO: \r\n2025-09-22 14:14:29,768 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\r\n\r\n2025-09-22 14:14:29,819 [modules.auxiliary.tracee] INFO: \r\n2025-09-22 14:14:39,861 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\r\n\r\n2025-09-22 14:14:39,913 [modules.auxiliary.tracee] INFO: \r\n2025-09-22 14:14:49,950 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\r\n\r\n2025-09-22 14:14:50,006 [modules.auxiliary.tracee] INFO: \r\n2025-09-22 14:15:00,011 [modules.auxiliary.tracee] INFO: tracee-health-check-1903ae\r\n\r\n2025-09-22 14:15:00,056 [modules.auxiliary.tracee] INFO: \r\n\r\n\r\n\r\nI've enabled tracee properly, made sure to install it correctly in the Linux VM, and properly configured it in the auxiliary.conf and processing.conf. Strace is also enabled. I'm not sure why I'm not getting back any signatures or meaningful data. For some reason, tracee just doesn't seem to work. I would appreciate any help or insight to fixing this. Thank you!",
+  "Title: Updates to detect-it-easy handling.\nBody: Don't require the diec binary to exist since we're now using the python bindings.\nComment: It doesn't work without diec installed right?at least when I tested it didn't work for me",
+  "Title: Add dynamic timeout for Azure operations in machinery module\nBody: # Add dynamic timeout and VM status check for Azure operations in machinery module\r\n\r\n## Overview\r\n\r\nThis pull request introduces two main improvements to the Azure machinery module in CAPE:\r\n\r\n1. A dynamic timeout mechanism for specific Azure operations (VMSS creation and reimaging).\r\n2. A VM status check to ensure machines are fully running before initialization.\r\n\r\nThese enhancements aim to improve the reliability and efficiency of Azure-related tasks, particularly during scale set operations and long-running processes.\r\n\r\n## Key Changes\r\n\r\n### 1. Dynamic Timeout Implementation\r\n\r\n- Implemented a new `_handle_poller_result` method that dynamically adjusts timeout durations based on the state of Azure operations.\r\n- Added an `_are_machines_still_upgrading` method to check the status of machines in a scale set.\r\n- The dynamic timeout is specifically applied to VMSS creation and reimaging operations.\r\n- Retained the fixed `AZURE_TIMEOUT` constant for other Azure operations where dynamic timing was not observed to be necessary.\r\n\r\n### 2. VM Status Check During Initialization\r\n\r\n- Added functionality to ensure CAPE only initializes Azure VMs when they are in the 'Running' state.\r\n- Implemented a waiting mechanism during initialization to check all VMs' status.\r\n- Modified the machine addition process to only add VMs that are fully running.\r\n- This change prevents issues arising from initializing machines that are still in the \"Updating(running)\" state.\r\n\r\n## Benefits\r\n\r\n- Improved handling of long-running Azure operations for VMSS creation and reimaging, reducing unnecessary timeouts.\r\n- Better adaptation to varying Azure response times and network conditions for critical VMSS operations.\r\n- Enhanced reliability for scale set operations, particularly during high-load scenarios.\r\n- Ensures that analysis tasks are only assigned to fully operational VMs.\r\n- Maintains compatibility with existing CAPE infrastructure and Azure module usage.\r\n- Preserves existing timeout behavior for Azure operations not related to VMSS creation and reimaging.\r\n\r\n## Implementation Details\r\n\r\n- The new timeout logic uses a base timeout of 280 seconds (same as the previous fixed timeout) and a maximum timeout of 30 minutes for VMSS creation and reimaging.\r\n- It periodically checks if machines are still upgrading and adjusts wait times accordingly for these specific operations.\r\n- Other Azure operations continue to use the fixed `AZURE_TIMEOUT`.\r\n- The implementation respects existing code structure and maintains the use of `Azure._azure_api_call()` for consistency.\r\n- New methods `_wait_for_vms_running`, `_are_all_vms_running`, and `_is_vm_running` have been added to manage VM status checks.\r\n- The `_add_machines_to_db` method has been updated to only add machines in the 'Running' state.\r\n\r\n## Testing\r\n\r\n- Tested VMSS creation, and reimaging operations. (not the scaling feature since i don't use it in my environment)\r\n- Verified improved handling of operations during high-load and network latency conditions.\r\n- Confirmed that CAPE correctly waits for VMs to be in the 'Running' state before initialization.\r\n- Ensured that other Azure operations maintain their existing timeout behavior.\r\n\r\n## Reviewer Notes\r\n\r\nReviewers, please pay particular attention to:\r\n\r\n- The logic in `_handle_poller_result` and `_are_machines_still_upgrading` methods, especially their application to VMSS creation and reimaging.\r\n- The new VM status checking methods and their integration with the initialization process.\r\n- Any potential impact on existing Azure operations or CAPE workflows.\r\n- The continued use of `AZURE_TIMEOUT` for non-VMSS operations and whether this approach is appropriate.\r\n- Edge cases that might need additional handling.\r\n\r\n## Conclusion\r\n\r\nThese changes aim to enhance the robustness of CAPE's Azure integration without introducing significant complexity or changing the overall architecture of the machinery module. They address important issues with timeout handling for specific VMSS operations and VM initialization, leading to a more stable and reliable Azure integration for CAPE, while maintaining existing behavior for other operations.\r\n\r\nYour feedback and suggestions are greatly appreciated!\nComment: Thank you for this work. I am going to run this in my setup now. I use the scaling feature, so I will be able to test that portion for you.\nComment: Perfect, let me know if you have any issues i will be more than happy to help you \nComment: @leoiancu21 I had hoped that your new timeout design would help with the issue I am dealing with in the auto-scaling, but it has the same end behavior of locking up the analysis machines. When I force CAPE to remain at a single instance, your timeouts work well for me.\r\n\r\nI have found the where the issues are with auto-scaling and am working on a clean fix. When I get that done, I will revisit these changes to give better feedback. Sorry I could not help out more.\nComment: > @leoiancu21 I had hoped that your new timeout design would help with the issue I am dealing with in the auto-scaling, but it has the same end behavior of locking up the analysis machines. When I force CAPE to remain at a single instance, your timeouts work well for me.\r\n> \r\n> I have found the where the issues are with auto-scaling and am working on a clean fix. When I get that done, I will revisit these changes to give better feedback. Sorry I could not help out more.\r\n\r\nI was having the same issue today (I also noticed that sometimes when the instances have the Update (Running) status the analysis start breaking the azsniffer), check this parameter on your VMSS \r\n![image](https://github.com/user-attachments/assets/0e49fa75-d4b4-4ea3-b914-e6dcfc18b316)\r\nThis broke my analyses too \nComment: The scheduler attempts to give a task to the machines before they have the agent up and running. This is an azure specific issue, I believe, because of how we have to start our agent on each reimaging. You will see that the same thing happens with new instances spun up. The `self.initializing` is going to be false, so they don't hit the `_thr_wait_for_ready_machine` on startup. _At least, that is my current assumption.._\r\n\r\nI think the scaling options there may be misleading, too. We are technically using a \"manual scale\" as far as Azure is concerned. We send a signal to update the `vmss.sku.capacity`, forcing it to go up or down, which changes the number of instances. It is auto scaling inside of CAPE, just not from Azure's perspective.\nComment: @leoiancu21 Another thing to note, as it is not in any documentation.. If you do not append your `pool_tag` to the end of your scale set name in az.conf, it will never scale correctly. The instances will be brought up and never be `relevant` machines. The offending line of code is this, where `tag` is the value from `pool_tag` in the config:\r\n`return [machine for machine in self.db.list_machines() if tag in machine.label]` You can see the problem. `machine.label` is set to the same value as `machine.name`, so the tag is never there unless you include it.\r\n\r\nBad naming: `cape-vmss`\r\nGood naming: `cape-vmss-win10x64`\r\n\r\nI am working on a backwards compatible PR for this now that will work for everyone.\nComment: > @leoiancu21 Another thing to note, as it is not in any documentation.. If you do not append your `pool_tag` to the end of your scale set name in az.conf, it will never scale correctly. The instances will be brought up and never be `relevant` machines. The offending line of code is this, where `tag` is the value from `pool_tag` in the config:\n> `return [machine for machine in self.db.list_machines() if tag in machine.label]` You can see the problem. `machine.label` is set to the same value as `machine.name`, so the tag is never there unless you include it.\n> \n> Bad naming: `cape-vmss`\n> Good naming: `cape-vmss-win10x64`\n> \n> I am working on a backwards compatible PR for this now that will work for everyone.\n\nThank you very much for that, on a previous issue this problem was discussed but i never dared to touch that part of the code \nComment: @ChrisThibodeaux gave a look at azure logs and i can confirm that after a VMSS instance delete (when cape deltes it from the db too) the instance SKU count gets edited too, from what i've seen it works in reverse too so maybe using the same function to rise the instance count with more machines could be our answer, seems like the overprovisioning declared in the configs with this build is not totally respected and since I didn't see this behaviour before my changes I think that it has something to do with what I've added. \r\n\r\n![image](https://github.com/user-attachments/assets/a9ca29d5-bdde-4251-82b2-a3267180a3db)\r\n\r\n\r\nWhat do you think about it, did this issue start after using my code or you had previous experiences with it ? Does it still happen when using the right tag naming convention ? Any feedback would be more than helpful \nComment: thank you for PR, can you plz fix\r\n\r\n```\r\nmodules/machinery/az.py:1155:17: F841 [*] Local variable `time_taken` is assigned to but never used\r\nmodules/machinery/az.py:1157:33: F841 [*] Local variable `e` is assigned to but never used\r\n```\nComment: > thank you for PR, can you plz fix\r\n> \r\n> ```\r\n> modules/machinery/az.py:1155:17: F841 [*] Local variable `time_taken` is assigned to but never used\r\n> modules/machinery/az.py:1157:33: F841 [*] Local variable `e` is assigned to but never used\r\n> ```\r\n\r\nAlways a pleasure, after i fix the scale set capacity issue described in the previous comments i will commit the code removing those unused variables too \nComment: @leoiancu21 For the increase/decrease in size of the scale set, look at the `try` block at this [line](https://github.com/kevoreilly/CAPEv2/blob/b21009b39b00a9611b8c667158c1a6decc89a5c6/modules/machinery/az.py#L1095). This will handle both scaling up and scaling down. What is important is the `vmss` dict being passed as an argument. This line right before it sets the size to change the scale set to: `vmss.sku.capacity = number_of_relevant_machines_required`.\r\n\r\nIt is my take that this is performing perfectly, and as expected.\r\n\r\nIf you haven't already, you can change this [line](https://github.com/kevoreilly/CAPEv2/blob/b21009b39b00a9611b8c667158c1a6decc89a5c6/modules/machinery/az.py#L1241) to be this: `return [machine for machine in self.db.list_machines(tags=[tag])]`. That fixes any issue with our code not recognizing existing scale set VMs as relevant to tasks with the `pool_tag` we have. Be warned though, I have not tested this change out a lot. It may cause sqalchemy issues somehow.\r\n\r\nThe real issue with all of this is the freezing that happens with added instances (beyond the first one) and reimaged instances. They are handed tasks before their agent is ready. I am hitting issues with my reworking of that part, but I may have a solution using `locked=True` as an arg when adding new machines to the database, like at this [line](https://github.com/kevoreilly/CAPEv2/blob/b21009b39b00a9611b8c667158c1a6decc89a5c6/modules/machinery/az.py#L633).\r\n\r\nThe hard part is going to be getting that concept to work when reimaging.\nComment: @ChrisThibodeaux Love it, thanks, I saw that there is a procedure for scaling down the scaleset that checks for the SKU cores \r\n```python\r\nif usage_to_look_for:\r\n                usage = next((item for item in usages if item.name.value == usage_to_look_for), None)\r\n\r\n                if usage:\r\n                    number_of_new_cpus_required = self.instance_type_cpus * (\r\n                        number_of_relevant_machines_required - number_of_machines\r\n                    )\r\n                    # Leaving at least five spaces in the usage quota for a spot VM, let's not push it!\r\n                    number_of_new_cpus_available = int(usage.limit) - usage.current_value - int(self.instance_type_cpus * 5)\r\n                    if number_of_new_cpus_available < 0:\r\n                        number_of_relevant_machines_required = machine_pools[vmss_name][\"size\"]\r\n                    elif number_of_new_cpus_required > number_of_new_cpus_available:\r\n                        old_number_of_relevant_machines_required = number_of_relevant_machines_required\r\n                        number_of_relevant_machines_required = (\r\n                            number_of_relevant_machines + number_of_new_cpus_available / self.instance_type_cpus\r\n                        )\r\n                        log.debug(\r\n                            f\"Quota could be exceeded with projected number of machines ({old_number_of_relevant_machines_required}). Setting new limit to {number_of_relevant_machines_required}\"\r\n                        )\r\n```\r\nThis could also be related to our issue since `vmss.sku.capacity = number_of_relevant_machines_required` takes the altered `number_of_relevant_machines_required` value. The sku cores value takes some time to be updated by Azure this leading to the downfall of our instance count, I will defenetly try your fix untill i find a better way of handling that limit\nComment: @leoiancu21 Are you using spot instances? I am not currently, as I am too unfamiliar with what they are. That would be the only way to enter that conditional.\nComment: @ChrisThibodeaux Yep, the only difference between spot instances and normal ones (leaving out the price) is that microsoft can kill your VM if they need some more computing resources, this logic also applies to the time needed to generate a new VM this is why I started working on a dynamic timeout, the price difference is too much to not use it. I'll find a way to make it wait for the updated SKU cores value that Azure provides, I just have to make some tests before  \nComment: @leoiancu21 Don't make the change to `return [machine for machine in self.db.list_machines(tags=[tag])]`. I have NO idea why, but this breaks sqalchemy and always gives this error:\r\n\r\nEdit: My initial comment here was wrong. There is nothing breaking anymore, I believe it had to have been other changes I made.\nComment: @leoiancu21 Update from my end. My assumptions about the agent not being in a ready state before a job is handed to it's machine was wrong. In reality, the ScalingBoundedSemaphore was not being released soon enough after a VMSS instance was reimaged. Once it got to the machine lock, it was getting permanently stuck. \r\n\r\nI am putting together a PR today with, hopefully, the fix to this. I have been able to run 30+ tasks in a row with 5 machines up, so there is progress.\nComment: @leoiancu21 Apologies for taking so long on figuring out the last of the bugs. I have a PR with the changes that allow me to use auto-scaling without issue now, [here](https://github.com/kevoreilly/CAPEv2/pull/2243). I placed in a fix for the `machines` key error, based entirely on the solution you provided me. If there is a cleaner way to do that, please let me know.\nComment: > @leoiancu21 Apologies for taking so long on figuring out the last of the bugs. I have a PR with the changes that allow me to use auto-scaling without issue now, [here](https://github.com/kevoreilly/CAPEv2/pull/2243). I placed in a fix for the `machines` key error, based entirely on the solution you provided me. If there is a cleaner way to do that, please let me know.\n\nThank you so much, I'll try this in the next few days, I'll proceed to close this pull request as soon as it works. Thanks again for your work\nComment: btw can you fix this 2?\r\n\r\n```\r\nmodules/machinery/az.py:1155:17: F841 [*] Local variable `time_taken` is assigned to but never used\r\nmodules/machinery/az.py:1157:33: F841 [*] Local variable `e` is assigned to but never used\r\n```\nComment: so is this ready?\nComment: @leoiancu21 I can pull this branch and test it out with the new changes I made in the other PR. Do you want me to send you a diff of any updates I make?\nComment: Sorry for my absence, I was out of office this week, I'll pull the new changes and fix my code asap\nComment: @ChrisThibodeaux \r\nI've tested the merged build, I still have the SKU capacity decreasing, since you don't use spot istances could you confirm to me that you don't have the same problem so I can set a patch only for spot instances ?\nComment: @leoiancu21 Sorry, I won't be able to test that for a few more days. Our little one came earlier than expected, so I am out of office for a while. I will try to find time to test this out though.\r\n\r\nIs there any way you could push a commit with the merges?\nComment: @ChrisThibodeaux I'd wait for it, for what I've seen at the moment when the scaleset is created it loads the machines inside the DB, assigns tasks and processes them, at the moment I also forced the scaleset sku capacity with Azure rules :\r\n\r\n![image](https://github.com/user-attachments/assets/02611d93-9486-4949-99a6-d12fa356f284)\r\n\r\nThe main issue now concerns tasks in pending that are assigned to old machines ids (when an analysis is completed a reimage is triggered that causes the machine to change it's id), apparently Azure treats a reimaged machine as a new one and our DB is not updated at that specific point : \r\n\r\n```\r\n2024-07-31 09:04:05,810 [modules.machinery.az] DEBUG: Trying <bound method VirtualMachineScaleSetsOperations.begin_reimage_all of <azure.mgmt.compute.v2024_03_01.operations._operations.VirtualMachineScaleSetsOperations object at 0x7fab7483dae0>>(('CSS-Sandbox-Cape', 'CSS-Sandbox-Cape-VMSS-1', <azure.mgmt.compute.v2024_03_01.models._models_py3.VirtualMachineScaleSetVMInstanceIDs object at 0x7fab747e6e60>),{'polling_interval': 1})\r\n2024-07-31 09:04:06,088 [modules.machinery.az] WARNING: Failed to <bound method VirtualMachineScaleSetsOperations.begin_reimage_all of <azure.mgmt.compute.v2024_03_01.operations._operations.VirtualMachineScaleSetsOperations object at 0x7fab7483dae0>>(('CSS-Sandbox-Cape', 'CSS-Sandbox-Cape-VMSS-1', <azure.mgmt.compute.v2024_03_01.models._models_py3.VirtualMachineScaleSetVMInstanceIDs object at 0x7fab747e6e60>),{'polling_interval': 1}) due to the Azure error '(InvalidParameter) The provided instanceId 44 is not an active Virtual Machine Scale Set VM instanceId.\r\nCode: InvalidParameter\r\nMessage: The provided instanceId 44 is not an active Virtual Machine Scale Set VM instanceId.\r\nTarget: instanceIds': '(InvalidParameter) The provided instanceId 44 is not an active Virtual Machine Scale Set VM instanceId.\r\nCode: InvalidParameter\r\nMessage: The provided instanceId 44 is not an active Virtual Machine Scale Set VM instanceId.\r\nTarget: instanceIds'.\r\n2024-07-31 09:04:06,088 [modules.machinery.az] ERROR: CuckooMachineError('(InvalidParameter) The provided instanceId 44 is not an active Virtual Machine Scale Set VM instanceId.\\nCode: InvalidParameter\\nMessage: The provided instanceId 44 is not an active Virtual Machine Scale Set VM instanceId.\\nTarget: instanceIds:(InvalidParameter) The provided instanceId 44 is not an active Virtual Machine Scale Set VM instanceId.\\nCode: InvalidParameter\\nMessage: The provided instanceId 44 is not an active Virtual Machine Scale Set VM instanceId.\\nTarget: instanceIds')\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/modules/machinery/az.py\", line 770, in _azure_api_call\r\n    results = operation(*args, **kwargs)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/azure/core/tracing/decorator.py\", line 78, in wrapper_use_tracer\r\n    return func(*args, **kwargs)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/azure/mgmt/compute/v2024_03_01/operations/_operations.py\", line 9602, in begin_reimage_all\r\n    raw_result = self._reimage_all_initial(  # type: ignore\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/azure/mgmt/compute/v2024_03_01/operations/_operations.py\", line 9507, in _reimage_all_initial\r\n    raise HttpResponseError(response=response, error_format=ARMErrorFormat)\r\nazure.core.exceptions.HttpResponseError: (InvalidParameter) The provided instanceId 44 is not an active Virtual Machine Scale Set VM instanceId.\r\nCode: InvalidParameter\r\nMessage: The provided instanceId 44 is not an active Virtual Machine Scale Set VM instanceId.\r\nTarget: instanceIds\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/modules/machinery/az.py\", line 1330, in _thr_reimage_list_reader\r\n    async_reimage_some_machines = Azure._azure_api_call(\r\n  File \"/opt/CAPEv2/modules/machinery/az.py\", line 782, in _azure_api_call\r\n    raise CuckooMachineError(f\"{error}:{exc.message if hasattr(exc, 'message') else repr(exc)}\")\r\nlib.cuckoo.common.exceptions.CuckooMachineError: (InvalidParameter) The provided instanceId 44 is not an active Virtual Machine Scale Set VM instanceId.\r\nCode: InvalidParameter\r\nMessage: The provided instanceId 44 is not an active Virtual Machine Scale Set VM instanceId.\r\nTarget: instanceIds:(InvalidParameter) The provided instanceId 44 is not an active Virtual Machine Scale Set VM instanceId.\r\nCode: InvalidParameter\r\nMessage: The provided instanceId 44 is not an active Virtual Machine Scale Set VM instanceId.\r\nTarget: instanceIds\r\n2024-07-31 09:04:06,089 [modules.machinery.az] WARNING: Machine CSS-Sandbox-Cape-VMSS-1_44 does not exist anymore. Deleting from database.\r\n2024-07-31 09:04:06,093 [lib.cuckoo.core.database] WARNING: CSS-Sandbox-Cape-VMSS-1_44 does not exist in the database.\r\n2024-07-31 09:04:10,856 [modules.machinery.az] DEBUG: Trying <bound method VirtualMachineScaleSetsOperations.begin_reimage_all of <azure.mgmt.compute.v2024_03_01.operations._operations.VirtualMachineScaleSetsOperations object at 0x7fab817e4070>>(('CSS-Sandbox-Cape', 'CSS-Sandbox-Cape-VMSS-1', <azure.mgmt.compute.v2024_03_01.models._models_py3.VirtualMachineScaleSetVMInstanceIDs object at 0x7fabae1c66b0>),{'polling_interval': 1})\r\n2024-07-31 09:04:11,240 [modules.machinery.az] WARNING: Failed to <bound method VirtualMachineScaleSetsOperations.begin_reimage_all of <azure.mgmt.compute.v2024_03_01.operations._operations.VirtualMachineScaleSetsOperations object at 0x7fab817e4070>>(('CSS-Sandbox-Cape', 'CSS-Sandbox-Cape-VMSS-1', <azure.mgmt.compute.v2024_03_01.models._models_py3.VirtualMachineScaleSetVMInstanceIDs object at 0x7fabae1c66b0>),{'polling_interval': 1}) due to the Azure error '(InvalidParameter) The provided instanceId 42 is not an active Virtual Machine Scale Set VM instanceId.\r\nCode: InvalidParameter\r\nMessage: The provided instanceId 42 is not an active Virtual Machine Scale Set VM instanceId.\r\nTarget: instanceIds': '(InvalidParameter) The provided instanceId 42 is not an active Virtual Machine Scale Set VM instanceId.\r\nCode: InvalidParameter\r\nMessage: The provided instanceId 42 is not an active Virtual Machine Scale Set VM instanceId.\r\nTarget: instanceIds'.\r\n2024-07-31 09:04:11,241 [modules.machinery.az] ERROR: CuckooMachineError('(InvalidParameter) The provided instanceId 42 is not an active Virtual Machine Scale Set VM instanceId.\\nCode: InvalidParameter\\nMessage: The provided instanceId 42 is not an active Virtual Machine Scale Set VM instanceId.\\nTarget: instanceIds:(InvalidParameter) The provided instanceId 42 is not an active Virtual Machine Scale Set VM instanceId.\\nCode: InvalidParameter\\nMessage: The provided instanceId 42 is not an active Virtual Machine Scale Set VM instanceId.\\nTarget: instanceIds')\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/modules/machinery/az.py\", line 770, in _azure_api_call\r\n    results = operation(*args, **kwargs)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/azure/core/tracing/decorator.py\", line 78, in wrapper_use_tracer\r\n    return func(*args, **kwargs)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/azure/mgmt/compute/v2024_03_01/operations/_operations.py\", line 9602, in begin_reimage_all\r\n    raw_result = self._reimage_all_initial(  # type: ignore\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/azure/mgmt/compute/v2024_03_01/operations/_operations.py\", line 9507, in _reimage_all_initial\r\n    raise HttpResponseError(response=response, error_format=ARMErrorFormat)\r\nazure.core.exceptions.HttpResponseError: (InvalidParameter) The provided instanceId 42 is not an active Virtual Machine Scale Set VM instanceId.\r\nCode: InvalidParameter\r\nMessage: The provided instanceId 42 is not an active Virtual Machine Scale Set VM instanceId.\r\nTarget: instanceIds\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/modules/machinery/az.py\", line 1330, in _thr_reimage_list_reader\r\n    async_reimage_some_machines = Azure._azure_api_call(\r\n  File \"/opt/CAPEv2/modules/machinery/az.py\", line 782, in _azure_api_call\r\n    raise CuckooMachineError(f\"{error}:{exc.message if hasattr(exc, 'message') else repr(exc)}\")\r\nlib.cuckoo.common.exceptions.CuckooMachineError: (InvalidParameter) The provided instanceId 42 is not an active Virtual Machine Scale Set VM instanceId.\r\nCode: InvalidParameter\r\nMessage: The provided instanceId 42 is not an active Virtual Machine Scale Set VM instanceId.\r\nTarget: instanceIds:(InvalidParameter) The provided instanceId 42 is not an active Virtual Machine Scale Set VM instanceId.\r\nCode: InvalidParameter\r\nMessage: The provided instanceId 42 is not an active Virtual Machine Scale Set VM instanceId.\r\nTarget: instanceIds\r\n2024-07-31 09:04:11,241 [modules.machinery.az] WARNING: Machine CSS-Sandbox-Cape-VMSS-1_42 does not exist anymore. Deleting from database.\r\n2024-07-31 09:05:53,750 [modules.machinery.az] DEBUG: Connecting to Azure for the region 'northeurope'.\r\n2024-07-31 09:05:53,755 [modules.machinery.az] DEBUG: Monitoring the machine pools...\r\n2024-07-31 09:05:53,759 [modules.machinery.az] DEBUG: Trying <bound method UsageOperations.list of <azure.mgmt.compute.v2024_03_01.operations._operations.UsageOperations object at 0x7fabae1df010>>(('northeurope',),{})\r\n2024-07-31 09:05:53,760 [msal.authority] INFO: Initializing with Entra authority: https://login.microsoftonline.com/[redacted]\r\n2024-07-31 09:05:54,562 [modules.machinery.az] DEBUG: Deleting machines from database if they do not exist in the VMSS CSS-Sandbox-Cape-VMSS-1.\r\n2024-07-31 09:05:54,563 [modules.machinery.az] DEBUG: Trying <bound method VirtualMachineScaleSetVMsOperations.list of <azure.mgmt.compute.v2024_03_01.operations._operations.VirtualMachineScaleSetVMsOperations object at 0x7fabae17f9d0>>(('CSS-Sandbox-Cape', 'CSS-Sandbox-Cape-VMSS-1'),{})\r\n2024-07-31 09:10:53,756 [modules.machinery.az] DEBUG: Monitoring the machine pools...\r\n2024-07-31 09:15:53,756 [modules.machinery.az] DEBUG: Monitoring the machine pools...\r\n2024-07-31 09:20:53,757 [modules.machinery.az] DEBUG: Monitoring the machine pools...\r\n2024-07-31 09:25:53,758 [modules.machinery.az] DEBUG: Monitoring the machine pools...\r\n2024-07-31 09:30:53,759 [modules.machinery.az] DEBUG: Monitoring the machine pools...\r\n2024-07-31 09:35:53,752 [modules.machinery.az] DEBUG: Connecting to Azure for the region 'northeurope'.\r\n2024-07-31 09:35:53,759 [modules.machinery.az] DEBUG: Monitoring the machine pools...\r\n2024-07-31 09:40:53,760 [modules.machinery.az] DEBUG: Monitoring the machine pools...\r\n``` \r\nAs you can see it proceeds to delete machines that don't match the current scaleset machine ids only after it fails binding the machine ID to the new task, this causes Cape to go into a loop where every 5 minutes checks `[modules.machinery.az] DEBUG: Monitoring the machine pools...`. \r\nNow even if the logs say that the machines have been deleted from the DB when uploading a new sample we still get the same machines we provided at startup : \r\n\r\n![image](https://github.com/user-attachments/assets/797f8e5e-85b6-401c-9798-d767dd75ae3f)\r\n\r\nMachines that, as I said and showed inside the debug logs before, don't match with the currently available hosts running in the scaleset (I belive there is something missinig in the update db function when machines are deleted after an analysis and when they are deleted after a failed bind for a new task) :\r\n\r\n![image](https://github.com/user-attachments/assets/44d8c3cb-4626-4d13-88e2-52eaa44303cc)\r\n\r\nThis causes new tasks to be assigned wrongly and either fail the analysis or get stuck inside the pending queue. \r\n\r\n![image](https://github.com/user-attachments/assets/e1106d56-e0d4-457a-97cd-a2fd7abc56a2)\r\n\r\n![image](https://github.com/user-attachments/assets/1cf9591d-f452-436e-8f88-a22d01247f8c)\r\n\r\n\r\nAt the moment I'm still investigating which function is not working properly, I'll publish a commit inside this thread as soon as I'm able to make it work, at the moment I don't think that publishing the broken merge would be useful in any way.\r\n\r\nSo take your time and congrats on your newborn baby \nComment: @leoiancu21 Compare these two sections from your branch and master's `az.py`\r\n\r\n1. Yours: https://github.com/leoiancu21/CAPEv2/blob/Azure-Dynamic-Timeout-/modules/machinery/az.py#L494-L520\r\n2. Master's (has my PR changes): https://github.com/kevoreilly/CAPEv2/blob/master/modules/machinery/az.py#L447-L478\r\n\r\nI am nearly positive you are experiencing the same issue I was and what lead to me creating that PR in the first place. I can't remember the exact details, but I had instances being deleted after jobs just like you describe.\r\n\r\nRebasing your branch to master (or atleast [this commit](3b4dfd7b0eae2e0abd4a1c2094f0a0cd85a171b5)) will _almost_ certainly fix the issue you are seeing.\nComment: > @leoiancu21 Compare these two sections from your branch and master's `az.py`\r\n> \r\n> 1. Yours: https://github.com/leoiancu21/CAPEv2/blob/Azure-Dynamic-Timeout-/modules/machinery/az.py#L494-L520\r\n> 2. Master's (has my PR changes): https://github.com/kevoreilly/CAPEv2/blob/master/modules/machinery/az.py#L447-L478\r\n> \r\n> I am nearly positive you are experiencing the same issue I was and what lead to me creating that PR in the first place. I can't remember the exact details, but I had instances being deleted after jobs just like you describe.\r\n> \r\n> Rebasing your branch to master (or atleast [this commit](3b4dfd7b0eae2e0abd4a1c2094f0a0cd85a171b5)) will _almost_ certainly fix the issue you are seeing.\r\n\r\nSorry for the long wait, got assigned to other projects after the summer holidays, I'm going to try rebasing az.py right now, I'll let you know what  comes out of it \r\n\nComment: any progres here?\nComment: > any progres here?\r\n\r\nAt the moment i switched to normal VMs instead of spot due to too many inconsistencies, and i'm working on fixing other small issues, once i'm back on my test environment i will provide some updates ",
+  "Title: Avoid unicorn exit in Emotet.py\nBody: Context:\r\n\r\n- https://github.com/unicorn-engine/unicorn/issues/1766\r\n- https://github.com/unicorn-engine/unicorn/pull/1629\r\n\r\nIt seems like will be fixed in unicorn 2.1",
+  "Title: Bump setuptools from 69.0.1 to 70.0.0\nBody: Bumps [setuptools](https://github.com/pypa/setuptools) from 69.0.1 to 70.0.0.\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/pypa/setuptools/blob/main/NEWS.rst\">setuptools's changelog</a>.</em></p>\n<blockquote>\n<h1>v70.0.0</h1>\n<h2>Features</h2>\n<ul>\n<li>Emit a warning when <code>[tools.setuptools]</code> is present in <code>pyproject.toml</code> and will be ignored. -- by :user:<code>SnoopJ</code> (<a href=\"https://redirect.github.com/pypa/setuptools/issues/4150\">#4150</a>)</li>\n<li>Improved <code>AttributeError</code> error message if <code>pkg_resources.EntryPoint.require</code> is called without extras or distribution\nGracefully &quot;do nothing&quot; when trying to activate a <code>pkg_resources.Distribution</code> with a <code>None</code> location, rather than raising a <code>TypeError</code>\n-- by :user:<code>Avasam</code> (<a href=\"https://redirect.github.com/pypa/setuptools/issues/4262\">#4262</a>)</li>\n<li>Typed the dynamically defined variables from <code>pkg_resources</code> -- by :user:<code>Avasam</code> (<a href=\"https://redirect.github.com/pypa/setuptools/issues/4267\">#4267</a>)</li>\n<li>Modernized and refactored VCS handling in package_index. (<a href=\"https://redirect.github.com/pypa/setuptools/issues/4332\">#4332</a>)</li>\n</ul>\n<h2>Bugfixes</h2>\n<ul>\n<li>In install command, use super to call the superclass methods. Avoids race conditions when monkeypatching from _distutils_system_mod occurs late. (<a href=\"https://redirect.github.com/pypa/setuptools/issues/4136\">#4136</a>)</li>\n<li>Fix finder template for lenient editable installs of implicit nested namespaces\nconstructed by using <code>package_dir</code> to reorganise directory structure. (<a href=\"https://redirect.github.com/pypa/setuptools/issues/4278\">#4278</a>)</li>\n<li>Fix an error with <code>UnicodeDecodeError</code> handling in <code>pkg_resources</code> when trying to read files in UTF-8 with a fallback -- by :user:<code>Avasam</code> (<a href=\"https://redirect.github.com/pypa/setuptools/issues/4348\">#4348</a>)</li>\n</ul>\n<h2>Improved Documentation</h2>\n<ul>\n<li>Uses RST substitution to put badges in 1 line. (<a href=\"https://redirect.github.com/pypa/setuptools/issues/4312\">#4312</a>)</li>\n</ul>\n<h2>Deprecations and Removals</h2>\n<ul>\n<li>\n<p>Further adoption of UTF-8 in <code>setuptools</code>.\nThis change regards mostly files produced and consumed during the build process\n(e.g. metadata files, script wrappers, automatically updated config files, etc..)\nAlthough precautions were taken to minimize disruptions, some edge cases might\nbe subject to backwards incompatibility.</p>\n<p>Support for <code>&quot;locale&quot;</code> encoding is now <strong>deprecated</strong>. (<a href=\"https://redirect.github.com/pypa/setuptools/issues/4309\">#4309</a>)</p>\n</li>\n<li>\n<p>Remove <code>setuptools.convert_path</code> after long deprecation period.\nThis function was never defined by <code>setuptools</code> itself, but rather a\nside-effect of an import for internal usage. (<a href=\"https://redirect.github.com/pypa/setuptools/issues/4322\">#4322</a>)</p>\n</li>\n<li>\n<p>Remove fallback for customisations of <code>distutils</code>' <code>build.sub_command</code> after long\ndeprecated period.\nUsers are advised to import <code>build</code> directly from <code>setuptools.command.build</code>. (<a href=\"https://redirect.github.com/pypa/setuptools/issues/4322\">#4322</a>)</p>\n</li>\n<li>\n<p>Removed <code>typing_extensions</code> from vendored dependencies -- by :user:<code>Avasam</code> (<a href=\"https://redirect.github.com/pypa/setuptools/issues/4324\">#4324</a>)</p>\n</li>\n<li>\n<p>Remove deprecated <code>setuptools.dep_util</code>.\nThe provided alternative is <code>setuptools.modified</code>. (<a href=\"https://redirect.github.com/pypa/setuptools/issues/4360\">#4360</a>)</p>\n</li>\n</ul>\n<!-- raw HTML omitted -->\n</blockquote>\n<p>... (truncated)</p>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/pypa/setuptools/commit/5cbf12a9b63fd37985a4525617b46576b8ac3a7b\"><code>5cbf12a</code></a> Workaround for release error in v70</li>\n<li><a href=\"https://github.com/pypa/setuptools/commit/9c1bcc3417bd12668123f7e731e241d9e57bfc57\"><code>9c1bcc3</code></a> Bump version: 69.5.1 \u2192 70.0.0</li>\n<li><a href=\"https://github.com/pypa/setuptools/commit/4dc0c31644b458ac43ce6148f6a9dc729a7e78b5\"><code>4dc0c31</code></a> Remove deprecated <code>setuptools.dep_util</code> (<a href=\"https://redirect.github.com/pypa/setuptools/issues/4360\">#4360</a>)</li>\n<li><a href=\"https://github.com/pypa/setuptools/commit/6c1ef5748dbd70c8c5423e12680345766ee101d9\"><code>6c1ef57</code></a> Remove xfail now that test passes. Ref <a href=\"https://redirect.github.com/pypa/setuptools/issues/4371\">#4371</a>.</li>\n<li><a href=\"https://github.com/pypa/setuptools/commit/d14fa0162c95450898c11534caf26a0f03553176\"><code>d14fa01</code></a> Add all site-packages dirs when creating simulated environment for test_edita...</li>\n<li><a href=\"https://github.com/pypa/setuptools/commit/6b7f7a18afc90007544092c446dc0cd856d86b17\"><code>6b7f7a1</code></a> Prevent <code>bin</code> folders to be taken as extern packages when vendoring (<a href=\"https://redirect.github.com/pypa/setuptools/issues/4370\">#4370</a>)</li>\n<li><a href=\"https://github.com/pypa/setuptools/commit/69141f69f8bf38da34cbea552d6fdaa9c8619c53\"><code>69141f6</code></a> Add doctest for vendorised bin folder</li>\n<li><a href=\"https://github.com/pypa/setuptools/commit/2a53cc1200ec4b14e08e84be3c042f8983dfb7d7\"><code>2a53cc1</code></a> Prevent 'bin' folders to be taken as extern packages</li>\n<li><a href=\"https://github.com/pypa/setuptools/commit/720862807dea012f3a0e7061880691025f736f11\"><code>7208628</code></a> Replace call to deprecated <code>validate_pyproject</code> command (<a href=\"https://redirect.github.com/pypa/setuptools/issues/4363\">#4363</a>)</li>\n<li><a href=\"https://github.com/pypa/setuptools/commit/96d681aa405460f724c62c00ca125ae722ad810a\"><code>96d681a</code></a> Remove call to deprecated validate_pyproject command</li>\n<li>Additional commits viewable in <a href=\"https://github.com/pypa/setuptools/compare/v69.0.1...v70.0.0\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=setuptools&package-manager=pip&previous-version=69.0.1&new-version=70.0.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: CAPE can't find the directory with logs\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nThe reporting module should write logs to the logs directory\r\n\r\n# Current Behavior\r\n\r\n1. There is no \"logs\" directory in /opt/CAPEv2/storage/analyzes/ID/.\r\n2. During URL analysis, directories are created: \"network\", \"reports\", \"scripts\", \"shots\" and files: \"dump.pcap, dump_sorted.pcap\".\r\n\r\n# Failure Information (for bugs)\r\n\r\n\r\n## Steps to Reproduce\r\n\r\n\r\n1. Start URL analysis (or file analysis)\r\n2. Wait for the end of the analysis\r\n\r\n## Context\r\n\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | -\r\n| OS version       | Ubuntu 22.04 - host, Windows 10 21H2 - guest, KVM - hypervisor\r\n\r\n## Failure Logs\r\n\r\n```\r\nJul 15 17:19:10 san-vm python3[9562]: 2024-07-15 17:19:10,602 [lib.cuckoo.core.guest] INFO: Task #54: End of analysis reached! (id=win10, ip=192.168.122.105)\r\nJul 15 17:19:10 san-vm python3[9562]: 2024-07-15 17:19:10,691 [lib.cuckoo.core.analysis_manager] INFO: Task #54: Disabled route 'internet'\r\nJul 15 17:19:11 san-vm python3[9562]: 2024-07-15 17:19:11,687 [lib.cuckoo.core.analysis_manager] INFO: Task #54: Completed analysis successfully.\r\nJul 15 17:19:11 san-vm python3[9562]: 2024-07-15 17:19:11,713 [lib.cuckoo.core.analysis_manager] INFO: Task #54: analysis procedure completed\r\nJul 15 17:19:14 san-vm python3[9560]: 2024-07-15 17:19:14,567 [root] INFO: Processing analysis data for Task #54\r\nJul 15 17:19:14 san-vm python3[11675]: 2024-07-15 17:19:14,722 [Task 54] [modules.processing.behavior] WARNING: Analysis results folder does not exist at path \"/opt/CAPEv2/storage/analyses/54/logs\"\r\nJul 15 17:19:15 san-vm python3[11675]: 2024-07-15 17:19:15,037 [Task 54] [lib.cuckoo.core.plugins] INFO: Logs folder doesn't exist, maybe something with with analyzer folder, any change?\r\nJul 15 17:19:15 san-vm python3[11696]: QStandardPaths: XDG_RUNTIME_DIR not set, defaulting to '/tmp/runtime-cape'\r\nJul 15 17:19:16 san-vm python3[9560]: 2024-07-15 17:19:16,729 [root] INFO: Reports generation completed for Task #54\r\n``` \r\n\nComment: i would suggest to read the `/opt/CAPEv2/storage/analyses/54/analysis.log` to see what is wrong with your analysis\nComment: > i would suggest to read the `/opt/CAPEv2/storage/analyses/54/analysis.log` to see what is wrong with your analysis\r\n\r\nUnfortunately, the analysis.log file is also not being created :(\nComment: Well that means that your cape is not properly build\nComment: I want to report that I am having the same issue as @MikeEffect and see the following in process.log -\r\n\r\n```\r\n2024-11-11 16:24:22,764 [Task 68] [modules.processing.behavior] WARNING: Analysis results folder does not exist at path \"/opt/CAPEv2/storage/analyses/68/logs\"\r\n2024-11-11 16:24:22,767 [Task 68] [lib.cuckoo.core.plugins] INFO: Logs folder doesn't exist, maybe something with with analyzer folder, any change?\r\n```\nComment: Do you have vm IP set statically? Do you have logs of cuckoo.log?\r\n\r\nEl lun, 11 nov 2024, 17:34, YungBinary ***@***.***> escribi\u00f3:\r\n\r\n> I want to report that I am having the same issue as @MikeEffect\r\n> <https://github.com/MikeEffect> see the following logs:\r\n>\r\n> 2024-11-11 16:24:22,764 [Task 68] [modules.processing.behavior] WARNING: Analysis results folder does not exist at path \"/opt/CAPEv2/storage/analyses/68/logs\"\r\n> 2024-11-11 16:24:22,767 [Task 68] [lib.cuckoo.core.plugins] INFO: Logs folder doesn't exist, maybe something with with analyzer folder, any change?\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2230#issuecomment-2468586834>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH37DD5GW7LSBIY34HKT2ADMBRAVCNFSM6AAAAABK4MAUZGVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDINRYGU4DMOBTGQ>\r\n> .\r\n> You are receiving this because you modified the open/close state.Message\r\n> ID: ***@***.***>\r\n>\r\n\nComment: > Do you have vm IP set statically? Do you have logs of cuckoo.log? El lun, 11 nov 2024, 17:34, YungBinary ***@***.***> escribi\u00f3:\r\n> [\u2026](#)\r\n> I want to report that I am having the same issue as @MikeEffect <https://github.com/MikeEffect> see the following logs: 2024-11-11 16:24:22,764 [Task 68] [modules.processing.behavior] WARNING: Analysis results folder does not exist at path \"/opt/CAPEv2/storage/analyses/68/logs\" 2024-11-11 16:24:22,767 [Task 68] [lib.cuckoo.core.plugins] INFO: Logs folder doesn't exist, maybe something with with analyzer folder, any change? \u2014 Reply to this email directly, view it on GitHub <[#2230 (comment)](https://github.com/kevoreilly/CAPEv2/issues/2230#issuecomment-2468586834)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAOFH37DD5GW7LSBIY34HKT2ADMBRAVCNFSM6AAAAABK4MAUZGVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDINRYGU4DMOBTGQ> . You are receiving this because you modified the open/close state.Message ID: ***@***.***>\r\n\r\nResolved! The issue wass because I was using a non-standard port in my configurations. I was using something other than 2042! Now it's all working.\r\n",
+  "Title: AzSniffer module not working properly when sniffing multiple VMSS instances \nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting **free** support so be friendly!\r\n\r\n# Prerequisites\r\nPlease answer the following questions for yourself before submitting an issue.\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n# Expected Behavior\r\nThe AzSniffer module should correctly create packet captures for multiple machines in a VM Scale Set (VMSS) environment.\r\n\r\n# Current Behavior\r\n1. When multiple machines are present inside a VMSS, the analysis module generates an incorrect folder structure:\r\n   `...network-watcher-logs/Packet_Capture_{task_id}/{machine_name}_Packet_Capture_{task_id}`\r\n   This structure is not correctly aligned with the code.\r\n\r\n2. The AzSniffer module fails to create packet captures for individual VMs within the VMSS, resulting in an \"UnsupportedTargetResourceId\" error.\r\n\r\n# Failure Information (for bugs)\r\n\r\n## Steps to Reproduce\r\n1. Set up a VMSS environment in Azure for CAPESandbox\r\n2. Attempt to run an analysis that involves packet capture using the AzSniffer module\r\n3. Observe the error in the logs and the incorrect folder structure\r\n\r\n## Context\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | (User needs to provide this information)\r\n| OS version       | (User needs to provide this information)\r\n\r\nAdditional context:\r\n- Environment: Azure VM Scale Set (VMSS)\r\n- Module: AzSniffer\r\n\r\nNetwork Watchers are based on:\r\n- VM\r\n- VirtualNetwork\r\n- Subnet\r\n- VMScaleSet\r\n\r\nThe current implementation seems to be targeting individual VMs within the VMSS, which is not supported.\r\n\r\n## Failure Logs\r\n```\r\n2024-07-13 17:41:45,263 [msal.authority] INFO: Initializing with Entra authority: https://login.microsoftonline.com/[TENANT_ID]\r\n2024-07-13 17:41:46,101 [modules.auxiliary.AzSniffer] ERROR: Azure error occurred while creating packet capture: (UnsupportedTargetResourceId) Target resource identifier /subscriptions/[SUBSCRIPTION_ID]/resourceGroups/[RESOURCE_GROUP]/providers/Microsoft.Compute/virtualMachineScaleSets/[VMSS_NAME]/virtualMachines/10/networkInterfaces/[NIC_NAME] is not an allowed target resource. The supported resource types for the target resource are VM, VirtualNetwork, Subnet, VMScaleSet.\r\nCode: UnsupportedTargetResourceId\r\nMessage: Target resource identifier /subscriptions/[SUBSCRIPTION_ID]/resourceGroups/[RESOURCE_GROUP]/providers/Microsoft.Compute/virtualMachineScaleSets/[VMSS_NAME]/virtualMachines/10/networkInterfaces/[NIC_NAME] is not an allowed target resource. The supported resource types for the target resource are VM, VirtualNetwork, Subnet, VMScaleSet.\r\n2024-07-13 17:41:46,101 [lib.cuckoo.core.plugins] WARNING: Unable to start auxiliary module AzSniffer: (UnsupportedTargetResourceId) Target resource identifier /subscriptions/[SUBSCRIPTION_ID]/resourceGroups/[RESOURCE_GROUP]/providers/Microsoft.Compute/virtualMachineScaleSets/[VMSS_NAME]/virtualMachines/10/networkInterfaces/[NIC_NAME] is not an allowed target resource. The supported resource types for the target resource are VM, VirtualNetwork, Subnet, VMScaleSet.\r\nCode: UnsupportedTargetResourceId\r\nMessage: Target resource identifier /subscriptions/[SUBSCRIPTION_ID]/resourceGroups/[RESOURCE_GROUP]/providers/Microsoft.Compute/virtualMachineScaleSets/[VMSS_NAME]/virtualMachines/10/networkInterfaces/[NIC_NAME] is not an allowed target resource. The supported resource types for the target resource are VM, VirtualNetwork, Subnet, VMScaleSet.\r\n```\r\n\r\nI'm opening this issue to track the fix and then publish it in the public repo too, I'm already working on this by myself so no help is expected, still if anyone has suggestions/ideas i will be more than happy to hear them\nComment: @doomedraven could you add the Azure tag, I can't figure out how to add it by myself",
+  "Title: Az.conf missing `machines` key.\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\nRunning the cape service or `poetry run python3 cuckoo.py` should bring up start CAPE using the Azure machinery.\r\n\r\n# Current Behavior\r\nStartup fails with a `KeyError: 'machines'`. The same error is present when running `sudo systemctl restart cape` or `poetry run python3 cuckoo.py` as the `cape` user.\r\n\r\n# Failure Information (for bugs)\r\nThe `az.conf` file has no key `machines`. It appears to be the only machinery file without it.\r\n\r\n## Steps to Reproduce\r\n\r\nSet your machinery in `cuckoo.conf` to `az`. Spin CAPE up.\r\n\r\n## Context\r\nDeploying via the Azure recommendation in the CAPE docs. I am using auto-scaling. I have been using a work-around for this issue by placing in `machines =` with an empty value as shown in `aws.conf` when auto-scaling, but I have not been able to scale beyond a single instance on the VMSS when doing so. Setting it to `machines = <my_vmss_name>`, the VMSS will scale and then immediately delete the new instances.\r\n\r\nI do not have the VMSS up and running before running CAPE, I am allowing the machinery to instantiate it instead.\r\n\r\nWhat am I missing here? I searched through the repo's issues and double checked the docs/changelog. I have not seen anyone mention this problem, so it feels like I must be doing something wrong.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | 722aced01eb7fbe976edb3ce372895deb0fb2106\r\n| OS version       | Windows 10\r\n\r\n## Failure Logs\r\n```\r\nJul 14 18:43:04 hostname systemd[1]: Started CAPE.\r\n...\r\nJul 14 18:43:07 hostname python3[27408]: Traceback (most recent call last):\r\nJul 14 18:43:07 hostname python3[27408]:   File \"/opt/CAPEv2/cuckoo.py\", line 143, in <module>\r\nJul 14 18:43:07 hostname python3[27408]:     cuckoo_main(max_analysis_count=args.max_analysis_count)\r\nJul 14 18:43:07 hostname python3[27408]:   File \"/opt/CAPEv2/cuckoo.py\", line 102, in cuckoo_main\r\nJul 14 18:43:07 hostname python3[27408]:     sched = Scheduler(max_analysis_count)\r\nJul 14 18:43:07 hostname python3[27408]:   File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 66, in __init__\r\nJul 14 18:43:07 hostname python3[27408]:     self.machinery_manager = MachineryManager() if categories_need_VM else None\r\nJul 14 18:43:07 hostname python3[27408]:   File \"/opt/CAPEv2/lib/cuckoo/core/machinery_manager.py\", line 150, in __init__\r\nJul 14 18:43:07 hostname python3[27408]:     self.machinery: Machinery = self.create_machinery()\r\nJul 14 18:43:07 hostname python3[27408]:   File \"/opt/CAPEv2/lib/cuckoo/core/machinery_manager.py\", line 204, in create_machinery\r\nJul 14 18:43:07 hostname python3[27408]:     machinery: Machinery = plugin()\r\nJul 14 18:43:07 hostname python3[27408]:   File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 118, in __init__\r\nJul 14 18:43:07 hostname python3[27408]:     self.set_options(self.read_config())\r\nJul 14 18:43:07 hostname python3[27408]:   File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 129, in set_options\r\nJul 14 18:43:07 hostname python3[27408]:     if not isinstance(mmanager_opts[\"machines\"], list):\r\nJul 14 18:43:07 hostname python3[27408]: KeyError: 'machines'\r\nJul 14 18:43:08 hostname systemd[1]: cape.service: Main process exited, code=exited, status=1/FAILURE\r\nJul 14 18:43:08 hostname systemd[1]: cape.service: Failed with result 'exit-code'.\r\n```\r\n\nComment: you will wait to someone from community to answer this\nComment: @ChrisThibodeaux could you print the postgres DB content (redact what you need), this could be similar to something that i fixed on my private fork weeks ago, if it's the same situation i think that i could help you \nComment: why do you not contribute fix from your fork to mainstream so that would be fixed for everyone? \nComment: I have to fix it in a clean way, I'm not an amazing coder but once I fix it completly I will contribute for sure, always a pleasure\nComment: we always can help to improve code\nComment: @leoiancu21 I will have to circle back with that later this evening. Am I correct in assuming that there should not be a `machines` key in the conf?\nComment: Yep, not in the `az.conf` at least, this is something added later in the DB by `az.py` \nComment: @leoiancu21 Here is the postgres DB printout. I uploaded some files to fill out a few of the tables, but this is an otherwise fresh DB.\r\n\r\n```\r\nTable: machines\r\n(1, 'cape-guest-vmss_0', 'cape-guest-vmss_0', 'x64', '10.2.2.5', 'windows', 'eth1', '/subscriptions/<sub>/resourceGroups/<rg>/providers/Microsoft.Compute/galleries/<img_gallery>/images/<win10_image>', True, datetime.datetime(2024, 7, 15, 18, 42, 6, 989599), 'running', datetime.datetime(2024, 7, 15, 18, 42, 6, 989607), '10.2.2.4', '2042', False)\r\n\r\n\r\nTable: machines_tags\r\n(1, 1)\r\n\r\n\r\nTable: tags\r\n(1, 'win10x64')\r\n(2, 'x86')\r\n\r\n\r\nTable: tasks\r\n(2, '/tmp/cuckoo-tmp/upload_nrxinrc3/8aaf4f7675fcef71e076324c', 'file', '', 200, 1, '', None, 'exe', 'none', '', '', 'windows', False, False, datetime.datetime(2024, 7, 15, 18, 42, 6), datetime.datetime(2024, 7, 15, 18, 42, 6, 617108), None, None, 'pending', None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, False, 2, None, None, None, None, None, None, '', 0, 'false')\r\n(3, '/tmp/cuckoo-tmp/upload_lqdx8txp/d2c8dd75fbcfe40951e5dc19', 'file', '', 200, 1, '', None, 'exe', 'none', '', '', 'windows', False, False, datetime.datetime(2024, 7, 15, 18, 42, 6), datetime.datetime(2024, 7, 15, 18, 42, 6, 630961), None, None, 'pending', None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, False, 3, None, None, None, None, None, None, '', 0, 'false')\r\n(4, '/tmp/cuckoo-tmp/upload_72jsh8tf/3cea42af2b2fa5b2e42516c4', 'file', '', 200, 1, '', None, 'exe', 'none', '', '', 'windows', False, False, datetime.datetime(2024, 7, 15, 18, 42, 6), datetime.datetime(2024, 7, 15, 18, 42, 6, 645081), None, None, 'pending', None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, False, 4, None, None, None, None, None, None, '', 0, 'false')\r\n(5, '/tmp/cuckoo-tmp/upload_iqy2ao7c/fe1d75d4b4de68a9ec944ae1', 'file', '', 200, 1, '', None, 'exe', 'none', '', '', 'windows', False, False, datetime.datetime(2024, 7, 15, 18, 42, 6), datetime.datetime(2024, 7, 15, 18, 42, 6, 658432), None, None, 'pending', None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, False, 5, None, None, None, None, None, None, '', 0, 'false')\r\n(1, '/tmp/cuckoo-tmp/upload_hy8qxfg9/ec6cd559f2966d6db5f4f734', 'file', '', 200, 1, '', 'cape-guest-vmss_0', 'exe', 'none', '', '', 'windows', False, False, datetime.datetime(2024, 7, 15, 18, 42, 6), datetime.datetime(2024, 7, 15, 18, 42, 6, 597768), datetime.datetime(2024, 7, 15, 18, 42, 6, 989458), None, 'running', None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, None, False, 1, 1, None, None, None, None, None, '', 0, 'false')\r\n\r\n\r\nTable: tasks_tags\r\n(1, 2)\r\n(1, 1)\r\n(2, 2)\r\n(2, 1)\r\n(3, 2)\r\n(3, 1)\r\n(4, 2)\r\n(4, 1)\r\n(5, 2)\r\n(5, 1)\r\n\r\n\r\nTable: guests\r\n(1, 'running', 'cape-guest-vmss_0', 'cape-guest-vmss_0', 'windows', 'Azure', datetime.datetime(2024, 7, 15, 18, 42, 6, 993422), None, 1)\r\n\r\n\r\nTable: errors\r\n\r\n```\r\n\r\nAnd in case it matters, the outputs for machines/machine tags when the VMSS brings up more instances:\r\n```\r\nTable: machines\r\n(1, 'cape-guest-vmss_0', 'cape-guest-vmss_0', 'x64', '10.2.2.5', 'windows', 'eth1', '/subscriptions/<sub>/resourceGroups/<rg>/providers/Microsoft.Compute/galleries/<img_gallery>/images/<win10_image>', True, datetime.datetime(2024, 7, 15, 18, 42, 6, 989599), 'running', datetime.datetime(2024, 7, 15, 18, 42, 6, 989607), '10.2.2.4', '2042', False)\r\n(4, 'cape-guest-vmss_3', 'cape-guest-vmss_3', 'x64', '10.2.2.8', 'windows', 'eth1', '/subscriptions/<sub>/resourceGroups/<rg>/providers/Microsoft.Compute/galleries/<img_gallery>/images/<win10_image>', True, datetime.datetime(2024, 7, 15, 18, 43, 23, 250052), 'running', datetime.datetime(2024, 7, 15, 18, 43, 23, 250059), '10.2.2.4', '2042', False)\r\n(3, 'cape-guest-vmss_2', 'cape-guest-vmss_2', 'x64', '10.2.2.7', 'windows', 'eth1', '/subscriptions/<sub>/resourceGroups/<rg>/providers/Microsoft.Compute/galleries/<img_gallery>/images/<win10_image>', True, datetime.datetime(2024, 7, 15, 18, 43, 23, 262671), 'running', datetime.datetime(2024, 7, 15, 18, 43, 23, 262678), '10.2.2.4', '2042', False)\r\n(2, 'cape-guest-vmss_1', 'cape-guest-vmss_1', 'x64', '10.2.2.6', 'windows', 'eth1', '/subscriptions/<sub>/resourceGroups/<rg>/providers/Microsoft.Compute/galleries/<img_gallery>/images/<win10_image>', True, datetime.datetime(2024, 7, 15, 18, 43, 23, 279389), 'running', datetime.datetime(2024, 7, 15, 18, 43, 23, 279397), '10.2.2.4', '2042', False)\r\n\r\n\r\nTable: machines_tags\r\n(1, 1)\r\n(2, 1)\r\n(3, 1)\r\n(4, 1)\r\n\r\n``` \r\n\r\nCurrent config in az.py:\r\n```\r\n...\r\nscale_set_limit = 5\r\ntotal_machines_limit = 5\r\n...\r\nscale_sets = cape-guest-vmss\r\n...\r\nmachines = cape-guest-vmss\r\n\r\n[cape-guest-vmss]\r\ngallery_image_name = <win10_image>\r\nplatform = windows\r\narch = x64\r\npool_tag = win10x64\r\ninitial_pool_size = 1\r\n```\r\n\r\nIs there something in particular that I can look into with the DB? If my print format is not ideal, I can add in the column names before the values (learning as I go).\nComment: I can also confirm that the DB is not removing the instances `cape-guest-vmss_` 1, 2, or 3 from the DB when Azure destroys them. Those machines and the tasks they were given remain with a `running` state, with the tasks never timing out. Any submissions made after this point remain always at pending. To get further submissions to run, I have to use the `cleaners.py` util and restart cape.\nComment: Could you try changing this function in `abstracts.py` :\r\n```\r\n    def set_options(self, options: dict) -> None:\r\n        \"\"\"Set machine manager options.\r\n        @param options: machine manager options dict.\r\n        \"\"\"\r\n        self.options = options\r\n        mmanager_opts = self.options.get(self.module_name)\r\n        log.debug(\"SFSG : mmanager_opts :\")\r\n        log.debug(mmanager_opts[\"scale_sets\"])\r\n        #if not isinstance(mmanager_opts[\"machines\"], list):\r\n        #    mmanager_opts[\"machines\"] = str(mmanager_opts[\"machines\"]).strip().split(\",\")\r\n        log.debug(\"SFSG : isinstance mmanager_opts r133:\")\r\n        log.debug(isinstance(mmanager_opts[\"scale_sets\"], str))\r\n        if not isinstance(mmanager_opts[\"scale_sets\"], str):\r\n            mmanager_opts[\"scale_sets\"] = str(mmanager_opts[\"scale_sets\"]).strip().split(\",\")\r\n```\r\ncheck the logging statements when launching `cuckoo.py -d` and clean the db correctly to remove broken relations \nComment: Added in the debug/commented lines and removed the `machines` key from my az.conf. With those changes, here is the output running `-d`:\r\n\r\n```\r\n2024-07-15 22:58:50,299 [root] DEBUG: Checking for locked tasks...\r\n/usr/bin/tcpdump\r\n2024-07-15 22:58:50,331 [lib.cuckoo.common.abstracts] DEBUG: SFSG : mmanager_opts :\r\n2024-07-15 22:58:50,332 [lib.cuckoo.common.abstracts] DEBUG: cape-guest-vmss\r\n2024-07-15 22:58:50,332 [lib.cuckoo.common.abstracts] DEBUG: SFSG : isinstance mmanager_opts r133:\r\n2024-07-15 22:58:50,332 [lib.cuckoo.common.abstracts] DEBUG: True\r\n2024-07-15 22:58:50,332 [lib.cuckoo.core.machinery_manager] INFO: Using MachineryManager[az] with max_machines_count=0\r\n2024-07-15 22:58:50,332 [lib.cuckoo.core.scheduler] INFO: Creating scheduler with max_analysis_count=unlimited\r\n...\r\n2024-07-15 22:59:09,172 [modules.machinery.az] DEBUG: Adding machines to database for cape-guest-vmss.\r\n...\r\n2024-07-15 22:59:10,521 [modules.machinery.az] DEBUG: cape-guest-vmss_0: Initializing...\r\n2024-07-15 22:59:20,533 [modules.machinery.az] DEBUG: cape-guest-vmss_0: Initializing...\r\n2024-07-15 22:59:30,545 [modules.machinery.az] DEBUG: cape-guest-vmss_0: Initializing...\r\n2024-07-15 22:59:40,557 [modules.machinery.az] DEBUG: Machine cape-guest-vmss_0 was created and available in 31s\r\n2024-07-15 22:59:40,569 [lib.cuckoo.core.machinery_manager] INFO: Loaded 1 machine\r\n2024-07-15 22:59:40,596 [lib.cuckoo.core.machinery_manager] INFO: upper limit for ScalingBoundedSemaphore = 5\r\n2024-07-15 22:59:40,599 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks\r\n```\r\n\r\nEdit: Probably obvious, but when I remove the `machines` key, the submission page on the web GUI breaks. Offending line is:\r\n```\r\nelse:\r\n    # Get VM names for machinery config elements\r\n    vms = [x.strip() for x in str(getattr(Config(machinery), machinery).get(\"machines\")).split(\",\") if x.strip()]\r\n```\nComment: Sure, forgot about it, use scale_sets instead of machines here too :\n\n`machinery).get(\"scale_sets\")).split(\",\")`\n\nInstead of machines in that too, since you have scale sets they will be treated differently than normal machines, i will work on something that matches az machinery and switches to this logic automatically so I won't break anything.\n\nTell me if this works for you \nComment: @leoiancu21 Working for me. I can now remove the `machines` key in the az.conf. Thank you very much for the help on that, it was driving me nuts!\nComment: Always a pleasure, I will work for a fix to push as soon as I can, still have to fix a module that is not working so I'll be a bit busy these days\nComment: @ChrisThibodeaux if this issue is now fixed i would ask you to close it since we already have the pull request of the edited az.py to work with, we can talk about it and fix it there ",
+  "Title: Update database.py\nBody: None",
+  "Title: Unable to Communicate with Inetsim after Merging #2216\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nI expect to be able to communicate normally with the Inetsim server.\r\n\r\n# Current Behavior\r\n\r\nAfter applying commit 23d325675040fea3fab27f416208d0d90c7a0de0, communication is no longer working properly. For example, when running a sample program that attempts to communicate with https://www.example.com, it results in a \"The remote could not be resolved\" error.\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nReproduction Steps:\r\n1. Apply the commits after 23d325675040fea3fab27f416208d0d90c7a0de0.\r\n2. Enable the Inetsim configuration.\r\n3. Submit a sample program that performs HTTP communication.\r\n4. Check the analysis results and confirm that HTTP communication is not occurring.\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | 9a61f5cf549abfdadc67cfb0106c1e1b48a14889 >= 23d325675040fea3fab27f416208d0d90c7a0de0\r\n| OS version       | Ubuntu 22.04, Windows 10 20H2\r\n\r\nSample Program:\r\n\r\n```cs\r\nusing System;\r\nusing System.Collections.Generic;\r\nusing System.Net;\r\n\r\nnamespace MalwareAnalysisSample\r\n{\r\n    internal class Program\r\n    {\r\n        static void Main(string[] args)\r\n        {\r\n            ServicePointManager.SecurityProtocol = SecurityProtocolType.Tls | SecurityProtocolType.Tls11 | SecurityProtocolType.Tls12;\r\n            ServicePointManager.ServerCertificateValidationCallback = delegate { return true; };\r\n            WebClient wc = new WebClient();\r\n\r\n            var urls = new List<string>() {\r\n                \"https://www.example.com/evil1.html\",\r\n                \"https://www.google.com/evil3.html\",\r\n                \"https://www.yahoo.com/evil4.html\",\r\n            };\r\n\r\n            foreach (var url in urls)\r\n            {\r\n                Console.WriteLine($\"connect to {url}\");\r\n                wc.OpenRead(url);\r\n            }\r\n        }\r\n    }\r\n}\r\n```\r\n\r\n## Failure Logs\r\n\r\ncape log\r\n\r\n```\r\n$ sudo journalctl -u cape\r\nJul 14 12:41:08 ubuntu2204.localdomain systemd[1]: Stopping CAPE...\r\nJul 14 12:41:08 ubuntu2204.localdomain python3[6126]: 2024-07-14 12:41:08,646 [lib.cuckoo.core.scheduler] INFO: received signal 'SIGTERM', waiting for remaining analysis to finish before stopping\r\nJul 14 12:41:09 ubuntu2204.localdomain python3[6126]: 2024-07-14 12:41:09,047 [lib.cuckoo.core.scheduler] INFO: Waiting for running analyses to finish.\r\nJul 14 12:41:09 ubuntu2204.localdomain python3[6126]: Missing machinery-required libraries.\r\nJul 14 12:41:09 ubuntu2204.localdomain python3[6126]: poetry run python -m pip install azure-identity msrest msrestazure azure-mgmt-compute azure-mgmt-network azure-mgmt-storage azure-storage-blob\r\nJul 14 12:41:09 ubuntu2204.localdomain python3[6126]: XLMMacroDeobfuscator: pywin32 is not installed (only is required if you want to use MS Excel)\r\nJul 14 12:41:10 ubuntu2204.localdomain systemd[1]: cape.service: Deactivated successfully.\r\nJul 14 12:41:10 ubuntu2204.localdomain systemd[1]: Stopped CAPE.\r\nJul 14 12:41:10 ubuntu2204.localdomain systemd[1]: cape.service: Consumed 12.788s CPU time.\r\nJul 14 12:41:10 ubuntu2204.localdomain systemd[1]: Started CAPE.\r\nJul 14 12:41:14 ubuntu2204.localdomain python3[6765]: \r\nJul 14 12:41:14 ubuntu2204.localdomain python3[6765]:                                ),-.     /\r\nJul 14 12:41:14 ubuntu2204.localdomain python3[6765]:   Cuckoo Sandbox              <(a  `---','\r\nJul 14 12:41:14 ubuntu2204.localdomain python3[6765]:      no chance for malwares!  ( `-, ._> )\r\nJul 14 12:41:14 ubuntu2204.localdomain python3[6765]:                                ) _>.___/\r\nJul 14 12:41:14 ubuntu2204.localdomain python3[6765]:                                    _/\r\nJul 14 12:41:14 ubuntu2204.localdomain python3[6765]:  Cuckoo Sandbox 2.4-CAPE\r\nJul 14 12:41:14 ubuntu2204.localdomain python3[6765]:  www.cuckoosandbox.org\r\nJul 14 12:41:14 ubuntu2204.localdomain python3[6765]:  Copyright (c) 2010-2015\r\nJul 14 12:41:14 ubuntu2204.localdomain python3[6765]:  CAPE: Config and Payload Extraction\r\nJul 14 12:41:14 ubuntu2204.localdomain python3[6765]:  github.com/kevoreilly/CAPEv2\r\nJul 14 12:41:17 ubuntu2204.localdomain python3[6917]: /usr/bin/tcpdump\r\nJul 14 12:41:17 ubuntu2204.localdomain python3[6765]: 2024-07-14 12:41:17,873 [lib.cuckoo.core.machinery_manager] INFO: Using MachineryManager[vmwarerest] with max_machines_count=10\r\nJul 14 12:41:17 ubuntu2204.localdomain python3[6765]: 2024-07-14 12:41:17,874 [lib.cuckoo.core.scheduler] INFO: Creating scheduler with max_analysis_count=unlimited\r\nJul 14 12:41:17 ubuntu2204.localdomain python3[6765]: 2024-07-14 12:41:17,878 [modules.machinery.vmwarerest] INFO: VMwareREST machinery module initialised (192.168.136.1:8697)\r\nJul 14 12:41:17 ubuntu2204.localdomain python3[6765]: 2024-07-14 12:41:17,912 [lib.cuckoo.core.machinery_manager] INFO: Loaded 1 machine\r\nJul 14 12:41:17 ubuntu2204.localdomain python3[6765]: 2024-07-14 12:41:17,991 [lib.cuckoo.core.machinery_manager] INFO: max_vmstartup_count for BoundedSemaphore = 5\r\nJul 14 12:41:17 ubuntu2204.localdomain python3[6765]: 2024-07-14 12:41:17,993 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks\r\nJul 14 12:41:37 ubuntu2204.localdomain python3[6765]: 2024-07-14 12:41:37,200 [lib.cuckoo.core.machinery_manager] INFO: Task #5: found useable machine sandbox1 (arch=x64, platform=windows)\r\nJul 14 12:41:37 ubuntu2204.localdomain python3[6765]: 2024-07-14 12:41:37,201 [lib.cuckoo.core.scheduler] INFO: Task #5: Processing task\r\nJul 14 12:41:37 ubuntu2204.localdomain python3[6765]: 2024-07-14 12:41:37,258 [lib.cuckoo.core.analysis_manager] INFO: Task #5: File already exists at '/opt/CAPEv2/storage/binaries/7304c9a23f334dbfd47bc19a45fc66358eea35f1aea1788ee971e6fceef68eed'\r\nJul 14 12:41:37 ubuntu2204.localdomain python3[6765]: 2024-07-14 12:41:37,258 [lib.cuckoo.core.analysis_manager] INFO: Task #5: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_vq5hbyij/MalwareAnalysisSample.exe'\r\nJul 14 12:41:37 ubuntu2204.localdomain python3[6765]: 2024-07-14 12:41:37,259 [modules.machinery.vmwarerest] INFO: Starting vm flarevm\r\nJul 14 12:41:37 ubuntu2204.localdomain python3[6765]: 2024-07-14 12:41:37,259 [modules.machinery.vmwarerest] INFO: Checking vm flarevm\r\nJul 14 12:41:37 ubuntu2204.localdomain python3[6765]: 2024-07-14 12:41:37,276 [modules.machinery.vmwarerest] INFO: Vm flarevm is not running\r\nJul 14 12:41:37 ubuntu2204.localdomain python3[6765]: 2024-07-14 12:41:37,293 [modules.machinery.vmwarerest] INFO: Powering on vm flarevm\r\nJul 14 12:41:38 ubuntu2204.localdomain python3[6765]: 2024-07-14 12:41:38,219 [lib.cuckoo.core.analysis_manager] INFO: Task #5: Enabled route 'false'.\r\nJul 14 12:41:38 ubuntu2204.localdomain python3[6987]: /usr/bin/tcpdump\r\nJul 14 12:41:38 ubuntu2204.localdomain python3[6765]: 2024-07-14 12:41:38,236 [modules.auxiliary.sniffer] INFO: Started sniffer with PID 6988 (interface=eth3, host=10.20.20.2, dump path=/opt/CAPEv2/storage/analyses/5/dump.pcap)\r\nJul 14 12:41:38 ubuntu2204.localdomain python3[6765]: 2024-07-14 12:41:38,238 [lib.cuckoo.common.objects] INFO: file type set using basic heuristics for: /tmp/cuckoo-tmp/upload_vq5hbyij/MalwareAnalysisSample.exe\r\nJul 14 12:41:38 ubuntu2204.localdomain sudo[6988]:     cape : PWD=/opt/CAPEv2 ; USER=root ; COMMAND=/usr/bin/tcpdump -U -q -s 0 -i eth3 -n -Z cape -w /opt/CAPEv2/storage/analyses/5/dump.pcap host 10.20.20.2 and not ( dst host 10.20.20.2 and dst port 8000 ) and not ( src host 10.20.20.2 and src port 8000 ) and not ( dst host 10.20.20.1 and dst port 2042 ) and not ( src host 10.20.20.1 and src port 2042 ) and ( 'not arp' )\r\nJul 14 12:41:38 ubuntu2204.localdomain sudo[6988]: pam_limits(sudo:session): unknown limit item 'hard'\r\nJul 14 12:41:38 ubuntu2204.localdomain sudo[6988]: pam_unix(sudo:session): session opened for user root(uid=0) by (uid=998)\r\nJul 14 12:41:38 ubuntu2204.localdomain python3[6765]: 2024-07-14 12:41:38,263 [lib.cuckoo.core.guest] INFO: Task #5: Starting analysis on guest (id=sandbox1, ip=10.20.20.2)\r\nJul 14 12:42:16 ubuntu2204.localdomain python3[6765]: 2024-07-14 12:42:16,965 [lib.cuckoo.core.guest] INFO: Task #5: Guest is running CAPE Agent 0.17 (id=sandbox1, ip=10.20.20.2)\r\nJul 14 12:42:19 ubuntu2204.localdomain python3[6765]: 2024-07-14 12:42:19,102 [lib.cuckoo.core.guest] INFO: Task #5: Uploading script files to guest (id=sandbox1, ip=10.20.20.2)\r\nJul 14 12:42:31 ubuntu2204.localdomain python3[6765]: 2024-07-14 12:42:31,888 [lib.cuckoo.core.resultserver] INFO: Task 5: Process 7964 (parent 6616): MalwareAnalysisSample.exe, path C:\\Users\\vagrant\\AppData\\Local\\Temp\\MalwareAnalysisSample.exe\r\nJul 14 12:43:13 ubuntu2204.localdomain python3[6765]: 2024-07-14 12:43:13,768 [lib.cuckoo.core.guest] INFO: Task #completed successfully: Analysis 5 (id=sandbox1, ip=10.20.20.2)\r\nJul 14 12:43:13 ubuntu2204.localdomain sudo[6988]: pam_unix(sudo:session): session closed for user root\r\nJul 14 12:43:13 ubuntu2204.localdomain python3[6765]: 2024-07-14 12:43:13,929 [modules.machinery.vmwarerest] INFO: Checking vm flarevm\r\nJul 14 12:43:14 ubuntu2204.localdomain python3[6765]: 2024-07-14 12:43:14,086 [modules.machinery.vmwarerest] INFO: Vm flarevm is running\r\nJul 14 12:43:14 ubuntu2204.localdomain python3[6765]: 2024-07-14 12:43:14,088 [modules.machinery.vmwarerest] INFO: Stopping vm flarevm\r\nJul 14 12:43:14 ubuntu2204.localdomain python3[6765]: 2024-07-14 12:43:14,098 [modules.machinery.vmwarerest] INFO: Powering off vm flarevm\r\nJul 14 12:43:15 ubuntu2204.localdomain python3[6765]: 2024-07-14 12:43:15,689 [lib.cuckoo.core.analysis_manager] INFO: Task #5: Completed analysis successfully.\r\nJul 14 12:43:15 ubuntu2204.localdomain python3[6765]: 2024-07-14 12:43:15,694 [lib.cuckoo.core.analysis_manager] INFO: Task #5: analysis procedure completed\r\n```\r\n\r\ncape-processor log\r\n\r\n```\r\n$ sudo journalctl -u cape-processor\r\nJul 14 12:41:08 ubuntu2204.localdomain systemd[1]: Stopping CAPE report processor...\r\nJul 14 12:41:08 ubuntu2204.localdomain systemd[1]: cape-processor.service: Deactivated successfully.\r\nJul 14 12:41:08 ubuntu2204.localdomain systemd[1]: Stopped CAPE report processor.\r\nJul 14 12:41:08 ubuntu2204.localdomain systemd[1]: cape-processor.service: Consumed 16.380s CPU time.\r\nJul 14 12:41:10 ubuntu2204.localdomain systemd[1]: Started CAPE report processor.\r\nJul 14 12:41:17 ubuntu2204.localdomain python3[6763]: 2024-07-14 12:41:17,880 [root] INFO: Processing analysis data\r\nJul 14 12:43:19 ubuntu2204.localdomain python3[6763]: 2024-07-14 12:43:19,118 [root] INFO: Processing analysis data for Task #5\r\nJul 14 12:43:19 ubuntu2204.localdomain python3[6763]: Missing machinery-required libraries.\r\nJul 14 12:43:19 ubuntu2204.localdomain python3[6763]: poetry run python -m pip install azure-identity msrest msrestazure azure-mgmt-compute azure-mgmt-network azure-mgmt-storage azure-storage-blob\r\nJul 14 12:43:19 ubuntu2204.localdomain python3[6763]: XLMMacroDeobfuscator: pywin32 is not installed (only is required if you want to use MS Excel)\r\nJul 14 12:43:19 ubuntu2204.localdomain python3[7076]: 2024-07-14 12:43:19,364 [Task 5] [lib.cuckoo.common.objects] INFO: file type set using basic heuristics for: /opt/CAPEv2/storage/binaries/7304c9a23f334dbfd47bc19a45fc66358eea35f1aea1788ee971e6fceef68eed\r\nJul 14 12:43:21 ubuntu2204.localdomain python3[7076]: 2024-07-14 12:43:21,086 [Task 5] [lib.cuckoo.common.objects] INFO: file type set using basic heuristics for: /tmp/cape-external/de4dot_48eef1d6/7304c9a23f334dbfd47bc19a45fc66358eea35f1aea1788ee971e6fceef68eed\r\nJul 14 12:43:21 ubuntu2204.localdomain python3[7076]: 2024-07-14 12:43:21,245 [Task 5] [lib.cuckoo.common.integrations.file_extra_info] ERROR: DIE error: name 'die' is not defined\r\nJul 14 12:43:21 ubuntu2204.localdomain python3[7076]: 2024-07-14 12:43:21,246 [Task 5] [lib.cuckoo.common.integrations.file_extra_info] ERROR: DIE error: local variable 'result_json' referenced before assignment\r\nJul 14 12:43:23 ubuntu2204.localdomain python3[7076]: 2024-07-14 12:43:23,811 [Task 5] [lib.cuckoo.common.objects] INFO: file type set using basic heuristics for: /opt/CAPEv2/storage/analyses/5/procdump/16cb6d904a71f6fbda1a9bf1e96813c58e7bdb6f6e77e04a2c1aa65ce327d3e3\r\nJul 14 12:43:23 ubuntu2204.localdomain python3[7156]: Error while trying to process /opt/CAPEv2/storage/analyses/5/procdump/16cb6d904a71f6fbda1a9bf1e96813c58e7bdb6f6e77e04a2c1aa65ce327d3e3\r\nJul 14 12:43:23 ubuntu2204.localdomain python3[7076]: 2024-07-14 12:43:23,837 [Task 5] [lib.cuckoo.common.integrations.parse_dotnet] ERROR: Monodis: Command '['/usr/bin/monodis', '--typeref', '/opt/CAPEv2/storage/analyses/5/procdump/16cb6d904a71f6fbda1a9bf1e96813c58e7bdb6f6e77e04a2c1aa65ce327d3e3']' returned non-zero exit status 1.\r\nJul 14 12:43:23 ubuntu2204.localdomain python3[7158]: Error while trying to process /opt/CAPEv2/storage/analyses/5/procdump/16cb6d904a71f6fbda1a9bf1e96813c58e7bdb6f6e77e04a2c1aa65ce327d3e3\r\nJul 14 12:43:23 ubuntu2204.localdomain python3[7076]: 2024-07-14 12:43:23,845 [Task 5] [lib.cuckoo.common.integrations.parse_dotnet] ERROR: Monodis: Command '['/usr/bin/monodis', '--assemblyref', '/opt/CAPEv2/storage/analyses/5/procdump/16cb6d904a71f6fbda1a9bf1e96813c58e7bdb6f6e77e04a2c1aa65ce327d3e3']' returned non-zero exit status 1.\r\nJul 14 12:43:23 ubuntu2204.localdomain python3[7160]: Error while trying to process /opt/CAPEv2/storage/analyses/5/procdump/16cb6d904a71f6fbda1a9bf1e96813c58e7bdb6f6e77e04a2c1aa65ce327d3e3\r\nJul 14 12:43:23 ubuntu2204.localdomain python3[7076]: 2024-07-14 12:43:23,853 [Task 5] [lib.cuckoo.common.integrations.parse_dotnet] ERROR: Monodis: Command '['/usr/bin/monodis', '--assembly', '/opt/CAPEv2/storage/analyses/5/procdump/16cb6d904a71f6fbda1a9bf1e96813c58e7bdb6f6e77e04a2c1aa65ce327d3e3']' returned non-zero exit status 1.\r\nJul 14 12:43:23 ubuntu2204.localdomain python3[7162]: Error while trying to process /opt/CAPEv2/storage/analyses/5/procdump/16cb6d904a71f6fbda1a9bf1e96813c58e7bdb6f6e77e04a2c1aa65ce327d3e3\r\nJul 14 12:43:23 ubuntu2204.localdomain python3[7076]: 2024-07-14 12:43:23,860 [Task 5] [lib.cuckoo.common.integrations.parse_dotnet] ERROR: Monodis: Command '['/usr/bin/monodis', '--customattr', '/opt/CAPEv2/storage/analyses/5/procdump/16cb6d904a71f6fbda1a9bf1e96813c58e7bdb6f6e77e04a2c1aa65ce327d3e3']' returned non-zero exit status 1.\r\nJul 14 12:43:32 ubuntu2204.localdomain python3[7076]: 2024-07-14 12:43:32,494 [Task 5] [lib.cuckoo.common.integrations.capa] ERROR: CAPA ValidationError 1 validation error for CapeReport\r\nJul 14 12:43:32 ubuntu2204.localdomain python3[7076]: behavior.processes.0.file_activities\r\nJul 14 12:43:32 ubuntu2204.localdomain python3[7076]:   Extra inputs are not permitted [type=extra_forbidden, input_value={'read_files': [], 'write... [], 'delete_files': []}, input_type=dict]\r\nJul 14 12:43:32 ubuntu2204.localdomain python3[7076]:     For further information visit https://errors.pydantic.dev/2.6/v/extra_forbidden\r\nJul 14 12:43:33 ubuntu2204.localdomain python3[6763]: 2024-07-14 12:43:33,449 [root] INFO: Reports generation completed for Task #5\r\n```\r\n\r\ncape-rooter log\r\n\r\n```\r\n$ sudo journalctl -u cape-rooter\r\nJul 14 12:41:10 ubuntu2204.localdomain systemd[1]: Stopping CAPE rooter...\r\nJul 14 12:41:10 ubuntu2204.localdomain systemd[1]: cape-rooter.service: Deactivated successfully.\r\nJul 14 12:41:10 ubuntu2204.localdomain systemd[1]: Stopped CAPE rooter.\r\n```\r\n\r\ncape-web log\r\n\r\n```\r\n$ sudo journalctl -u cape-web\r\nJul 14 12:41:08 ubuntu2204.localdomain systemd[1]: Stopping CAPE WSGI app...\r\nJul 14 12:41:09 ubuntu2204.localdomain systemd[1]: cape-web.service: Deactivated successfully.\r\nJul 14 12:41:09 ubuntu2204.localdomain systemd[1]: Stopped CAPE WSGI app.\r\nJul 14 12:41:09 ubuntu2204.localdomain systemd[1]: cape-web.service: Consumed 2min 43.491s CPU time.\r\nJul 14 12:41:10 ubuntu2204.localdomain systemd[1]: Started CAPE WSGI app.\r\nJul 14 12:41:16 ubuntu2204.localdomain python3[6764]: XLMMacroDeobfuscator: pywin32 is not installed (only is required if you want to use MS Excel)\r\nJul 14 12:41:18 ubuntu2204.localdomain python3[6764]: You have 33 unapplied migration(s). Your project may not work properly until you apply the migrations for app(s): account, admin, auth, authtoken, contenttypes, openid, sessions, sites, socialaccount, users.\r\nJul 14 12:41:18 ubuntu2204.localdomain python3[6764]: Run 'python manage.py migrate' to apply them.\r\nJul 14 12:41:18 ubuntu2204.localdomain python3[6764]: WARNING: This is a development server. Do not use it in a production deployment. Use a production WSGI server instead.\r\nJul 14 12:41:18 ubuntu2204.localdomain python3[6764]:  * Running on all addresses (0.0.0.0)\r\nJul 14 12:41:18 ubuntu2204.localdomain python3[6764]:  * Running on http://127.0.0.1:8000\r\nJul 14 12:41:18 ubuntu2204.localdomain python3[6764]:  * Running on http://192.168.5.145:8000\r\nJul 14 12:41:18 ubuntu2204.localdomain python3[6764]: Press CTRL+C to quit\r\nJul 14 12:41:18 ubuntu2204.localdomain python3[6764]:  * Restarting with stat\r\nJul 14 12:41:20 ubuntu2204.localdomain python3[6933]: Performing system checks...\r\nJul 14 12:41:21 ubuntu2204.localdomain python3[6933]: XLMMacroDeobfuscator: pywin32 is not installed (only is required if you want to use MS Excel)\r\nJul 14 12:41:22 ubuntu2204.localdomain python3[6933]: System check identified no issues (3 silenced).\r\nJul 14 12:41:22 ubuntu2204.localdomain python3[6933]: You have 33 unapplied migration(s). Your project may not work properly until you apply the migrations for app(s): account, admin, auth, authtoken, contenttypes, openid, sessions, sites, socialaccount, users.\r\nJul 14 12:41:22 ubuntu2204.localdomain python3[6933]: Run 'python manage.py migrate' to apply them.\r\nJul 14 12:41:22 ubuntu2204.localdomain python3[6933]: Django version 4.2.11, using settings 'web.settings'\r\nJul 14 12:41:22 ubuntu2204.localdomain python3[6933]: Development server is running at http://0.0.0.0:8000/\r\nJul 14 12:41:22 ubuntu2204.localdomain python3[6933]: Using the Werkzeug debugger (http://werkzeug.pocoo.org/)\r\nJul 14 12:41:22 ubuntu2204.localdomain python3[6933]: Quit the server with CONTROL-C.\r\nJul 14 12:41:22 ubuntu2204.localdomain python3[6933]:  * Debugger is active!\r\nJul 14 12:41:22 ubuntu2204.localdomain python3[6933]:  * Debugger PIN: 783-821-993\r\nJul 14 12:41:23 ubuntu2204.localdomain python3[6933]: 127.0.0.1 - - [14/Jul/2024 12:41:23] \"GET /submit/ HTTP/1.1\" 200 -\r\nJul 14 12:41:36 ubuntu2204.localdomain python3[6933]: INFO:lib.cuckoo.common.objects:file type set using basic heuristics for: b'/tmp/cuckoo-tmp/upload_vq5hbyij/MalwareAnalysisSample.exe'\r\nJul 14 12:41:36 ubuntu2204.localdomain python3[6933]: INFO:lib.cuckoo.common.objects:file type set using basic heuristics for: /tmp/cuckoo-tmp/upload_vq5hbyij/MalwareAnalysisSample.exe\r\nJul 14 12:41:36 ubuntu2204.localdomain python3[6933]: 127.0.0.1 - - [14/Jul/2024 12:41:36] \"POST /submit/ HTTP/1.1\" 200 -\r\nJul 14 12:43:31 ubuntu2204.localdomain python3[6933]: 127.0.0.1 - - [14/Jul/2024 12:43:31] \"GET /analysis/ HTTP/1.1\" 200 -\r\nJul 14 12:43:33 ubuntu2204.localdomain python3[6933]: 127.0.0.1 - - [14/Jul/2024 12:43:33] \"GET /submit/status/5/ HTTP/1.1\" 302 -\r\nJul 14 12:43:33 ubuntu2204.localdomain python3[6933]: 127.0.0.1 - - [14/Jul/2024 12:43:33] \"GET /analysis/5/ HTTP/1.1\" 200 -\r\nJul 14 12:43:33 ubuntu2204.localdomain python3[6933]: 127.0.0.1 - - [14/Jul/2024 12:43:33] \"GET /analysis/file_nl/screenshot/5/0001/ HTTP/1.1\" 200 -\r\nJul 14 12:43:33 ubuntu2204.localdomain python3[6933]: 127.0.0.1 - - [14/Jul/2024 12:43:33] \"GET /analysis/file_nl/screenshot/5/0002/ HTTP/1.1\" 200 -\r\nJul 14 12:43:33 ubuntu2204.localdomain python3[6933]: 127.0.0.1 - - [14/Jul/2024 12:43:33] \"GET /analysis/file_nl/screenshot/5/0003/ HTTP/1.1\" 200 -\r\nJul 14 12:43:33 ubuntu2204.localdomain python3[6933]: 127.0.0.1 - - [14/Jul/2024 12:43:33] \"GET /analysis/file_nl/screenshot/5/0005/ HTTP/1.1\" 200 -\r\nJul 14 12:43:33 ubuntu2204.localdomain python3[6933]: 127.0.0.1 - - [14/Jul/2024 12:43:33] \"GET /analysis/file_nl/screenshot/5/0006/ HTTP/1.1\" 200 -\r\nJul 14 12:43:33 ubuntu2204.localdomain python3[6933]: 127.0.0.1 - - [14/Jul/2024 12:43:33] \"GET /analysis/file_nl/screenshot/5/0004/ HTTP/1.1\" 200 -\r\nJul 14 12:43:33 ubuntu2204.localdomain python3[6933]: 127.0.0.1 - - [14/Jul/2024 12:43:33] \"GET /analysis/file_nl/screenshot/5/0007/ HTTP/1.1\" 200 -\r\n```\r\n\r\nAnalysis log \r\n\r\n```\r\n2024-07-14 21:42:18,331 [root] INFO: Date set to: 20240714T12:41:38, timeout set to: 200\r\n2024-07-14 12:41:38,007 [root] DEBUG: Starting analyzer from: C:\\tmppldvx8e6\r\n2024-07-14 12:41:38,007 [root] DEBUG: Storing results at: C:\\DFGlfijioB\r\n2024-07-14 12:41:38,007 [root] DEBUG: Pipe server name: \\\\.\\PIPE\\EKzqVPDafI\r\n2024-07-14 12:41:38,007 [root] DEBUG: Python path: C:\\Program Files (x86)\\Python312-32\r\n2024-07-14 12:41:38,007 [root] INFO: analysis running as an admin\r\n2024-07-14 12:41:38,007 [root] INFO: analysis package specified: \"exe\"\r\n2024-07-14 12:41:38,007 [root] DEBUG: importing analysis package module: \"modules.packages.exe\"...\r\n2024-07-14 12:41:38,023 [root] DEBUG: imported analysis package \"exe\"\r\n2024-07-14 12:41:38,023 [root] DEBUG: initializing analysis package \"exe\"...\r\n2024-07-14 12:41:38,023 [lib.common.common] INFO: wrapping\r\n2024-07-14 12:41:38,023 [lib.core.compound] INFO: C:\\Users\\vagrant\\AppData\\Local\\Temp already exists, skipping creation\r\n2024-07-14 12:41:38,023 [root] DEBUG: New location of moved file: C:\\Users\\vagrant\\AppData\\Local\\Temp\\MalwareAnalysisSample.exe\r\n2024-07-14 12:41:38,023 [root] INFO: Analyzer: Package modules.packages.exe does not specify a DLL option\r\n2024-07-14 12:41:38,023 [root] INFO: Analyzer: Package modules.packages.exe does not specify a DLL_64 option\r\n2024-07-14 12:41:38,023 [root] INFO: Analyzer: Package modules.packages.exe does not specify a loader option\r\n2024-07-14 12:41:38,023 [root] INFO: Analyzer: Package modules.packages.exe does not specify a loader_64 option\r\n2024-07-14 12:41:38,070 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.amsi\"...\r\n2024-07-14 12:41:38,133 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.amsi_collector\"...\r\n2024-07-14 12:41:38,133 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.autoruns\"...\r\n2024-07-14 12:41:38,148 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.browser\"...\r\n2024-07-14 12:41:38,164 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.curtain\"...\r\n2024-07-14 12:41:38,164 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.digisig\"...\r\n2024-07-14 12:41:38,164 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.disguise\"...\r\n2024-07-14 12:41:38,179 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.during_script\"...\r\n2024-07-14 12:41:38,195 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.evtx\"...\r\n2024-07-14 12:41:38,195 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.filepickup\"...\r\n2024-07-14 12:41:38,195 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.html_scraper\"...\r\n2024-07-14 12:41:38,210 [modules.auxiliary.html_scraper] ERROR: No module named 'selenium'\r\n2024-07-14 12:41:38,210 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.human\"...\r\n2024-07-14 12:41:38,226 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.permissions\"...\r\n2024-07-14 12:41:38,226 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.pre_script\"...\r\n2024-07-14 12:41:38,226 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.procmon\"...\r\n2024-07-14 12:41:38,242 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.recentfiles\"...\r\n2024-07-14 12:41:38,242 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.screenshots\"...\r\n2024-07-14 12:41:38,242 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageChops'\r\n2024-07-14 12:41:38,305 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageGrab'\r\n2024-07-14 12:41:38,305 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageDraw'\r\n2024-07-14 12:41:38,305 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.sysmon\"...\r\n2024-07-14 12:41:38,305 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.tlsdump\"...\r\n2024-07-14 12:41:38,320 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.usage\"...\r\n2024-07-14 12:41:38,320 [root] DEBUG: Initialized auxiliary module \"AMSICollector\"\r\n2024-07-14 12:41:38,320 [root] DEBUG: Trying to start auxiliary module \"AMSICollector\"...\r\n2024-07-14 12:41:38,320 [root] DEBUG: Started auxiliary module AMSICollector\r\n2024-07-14 12:41:38,320 [root] WARNING: Auxiliary module Autoruns was not implemented: 'Config' object has no attribute 'autoruns'\r\n2024-07-14 12:41:38,320 [root] DEBUG: Initialized auxiliary module \"Browser\"\r\n2024-07-14 12:41:38,320 [root] DEBUG: Trying to start auxiliary module \"Browser\"...\r\n2024-07-14 12:41:38,320 [root] DEBUG: Started auxiliary module Browser\r\n2024-07-14 12:41:38,320 [root] DEBUG: Initialized auxiliary module \"Curtain\"\r\n2024-07-14 12:41:38,320 [root] DEBUG: Trying to start auxiliary module \"Curtain\"...\r\n2024-07-14 12:41:38,320 [root] DEBUG: Started auxiliary module Curtain\r\n2024-07-14 12:41:38,320 [root] DEBUG: Initialized auxiliary module \"DigiSig\"\r\n2024-07-14 12:41:38,320 [root] DEBUG: Trying to start auxiliary module \"DigiSig\"...\r\n2024-07-14 12:41:38,320 [modules.auxiliary.digisig] DEBUG: Checking for a digital signature\r\n2024-07-14 12:41:38,570 [modules.auxiliary.digisig] DEBUG: File is not signed\r\n2024-07-14 12:41:38,570 [modules.auxiliary.digisig] INFO: Uploading signature results to aux/DigiSig.json\r\n2024-07-14 12:41:38,585 [root] DEBUG: Started auxiliary module DigiSig\r\n2024-07-14 12:41:38,585 [root] DEBUG: Initialized auxiliary module \"Disguise\"\r\n2024-07-14 12:41:38,585 [root] DEBUG: Trying to start auxiliary module \"Disguise\"...\r\n2024-07-14 12:41:38,585 [modules.auxiliary.disguise] INFO: Disguising GUID to 5b81a9de-632b-43cf-9178-4e4c27c582ae\r\n2024-07-14 12:41:38,585 [root] DEBUG: Started auxiliary module Disguise\r\n2024-07-14 12:41:38,585 [root] DEBUG: Initialized auxiliary module \"Evtx\"\r\n2024-07-14 12:41:38,585 [root] DEBUG: Trying to start auxiliary module \"Evtx\"...\r\n2024-07-14 12:41:38,585 [root] DEBUG: Started auxiliary module Evtx\r\n2024-07-14 12:41:38,585 [root] DEBUG: Initialized auxiliary module \"FilePickup\"\r\n2024-07-14 12:41:38,585 [root] DEBUG: Trying to start auxiliary module \"FilePickup\"...\r\n2024-07-14 12:41:38,585 [root] DEBUG: Started auxiliary module FilePickup\r\n2024-07-14 12:41:38,585 [root] DEBUG: Initialized auxiliary module \"HtmlScraper\"\r\n2024-07-14 12:41:38,585 [root] DEBUG: Trying to start auxiliary module \"HtmlScraper\"...\r\n2024-07-14 12:41:38,585 [root] DEBUG: Started auxiliary module HtmlScraper\r\n2024-07-14 12:41:38,601 [root] DEBUG: Initialized auxiliary module \"Human\"\r\n2024-07-14 12:41:38,601 [root] DEBUG: Trying to start auxiliary module \"Human\"...\r\n2024-07-14 12:41:38,601 [root] DEBUG: Started auxiliary module Human\r\n2024-07-14 12:41:38,601 [root] DEBUG: Initialized auxiliary module \"Permissions\"\r\n2024-07-14 12:41:38,601 [root] DEBUG: Trying to start auxiliary module \"Permissions\"...\r\n2024-07-14 12:41:38,601 [root] DEBUG: Started auxiliary module Permissions\r\n2024-07-14 12:41:38,617 [root] DEBUG: Initialized auxiliary module \"Pre_script\"\r\n2024-07-14 12:41:38,617 [root] DEBUG: Trying to start auxiliary module \"Pre_script\"...\r\n2024-07-14 12:41:38,617 [root] DEBUG: Started auxiliary module Pre_script\r\n2024-07-14 12:41:38,617 [root] DEBUG: Initialized auxiliary module \"Procmon\"\r\n2024-07-14 12:41:38,617 [root] DEBUG: Trying to start auxiliary module \"Procmon\"...\r\n2024-07-14 12:41:38,617 [root] DEBUG: Started auxiliary module Procmon\r\n2024-07-14 12:41:38,617 [root] DEBUG: Initialized auxiliary module \"RecentFiles\"\r\n2024-07-14 12:41:38,617 [root] DEBUG: Trying to start auxiliary module \"RecentFiles\"...\r\n2024-07-14 12:41:38,617 [root] DEBUG: Started auxiliary module RecentFiles\r\n2024-07-14 12:41:38,617 [root] DEBUG: Initialized auxiliary module \"Screenshots\"\r\n2024-07-14 12:41:38,617 [root] DEBUG: Trying to start auxiliary module \"Screenshots\"...\r\n2024-07-14 12:41:38,617 [root] DEBUG: Started auxiliary module Screenshots\r\n2024-07-14 12:41:38,617 [root] DEBUG: Initialized auxiliary module \"Sysmon\"\r\n2024-07-14 12:41:38,617 [root] DEBUG: Trying to start auxiliary module \"Sysmon\"...\r\n2024-07-14 12:41:38,617 [root] DEBUG: Started auxiliary module Sysmon\r\n2024-07-14 12:41:38,617 [root] DEBUG: Initialized auxiliary module \"TLSDumpMasterSecrets\"\r\n2024-07-14 12:41:38,617 [root] DEBUG: Trying to start auxiliary module \"TLSDumpMasterSecrets\"...\r\n2024-07-14 12:41:38,633 [modules.auxiliary.tlsdump] INFO: lsass.exe found, pid 652\r\n2024-07-14 12:41:38,773 [lib.api.process] INFO: Monitor config for <Process 652 lsass.exe>: C:\\tmppldvx8e6\\dll\\652.ini\r\n2024-07-14 12:41:38,773 [lib.api.process] INFO: Option 'tlsdump' with value '1' sent to monitor\r\n2024-07-14 12:41:38,773 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmppldvx8e6\\dll\\BkuHUjh.dll, loader C:\\tmppldvx8e6\\bin\\ZvtPHbcJ.exe\r\n2024-07-14 12:41:38,789 [root] DEBUG: Loader: Injecting process 652 with C:\\tmppldvx8e6\\dll\\BkuHUjh.dll.\r\n2024-07-14 12:41:38,804 [root] DEBUG: 652: Python path set to 'C:\\Program Files (x86)\\Python312-32'.\r\n2024-07-14 12:41:38,820 [root] DEBUG: 652: TLS secret dump mode enabled.\r\n2024-07-14 12:41:38,820 [root] INFO: Disabling sleep skipping.\r\n2024-07-14 12:41:38,835 [root] DEBUG: 652: InternalYaraScan: Scanning 0x00007FFA830B0000, size 0x1f553e\r\n2024-07-14 12:41:38,851 [root] DEBUG: 652: InternalYaraScan hit: RtlInsertInvertedFunctionTable\r\n2024-07-14 12:41:38,851 [root] DEBUG: 652: RtlInsertInvertedFunctionTable 0x00007FFA830E2F8A, LdrpInvertedFunctionTableSRWLock 0x00007FFA8321C4E0\r\n2024-07-14 12:41:38,851 [root] DEBUG: 652: Monitor initialised: 64-bit capemon loaded in process 652 at 0x00007FFA58810000, thread 6844, image base 0x00007FF7A6FF0000, stack from 0x0000006748374000-0x0000006748380000\r\n2024-07-14 12:41:38,851 [root] DEBUG: 652: Commandline: C:\\Windows\\system32\\lsass.exe\r\n2024-07-14 12:41:38,867 [root] DEBUG: 652: Hooked 5 functions\r\n2024-07-14 12:41:38,867 [root] DEBUG: InjectDllViaThread: Successfully injected Dll into process via RtlCreateUserThread.\r\n2024-07-14 12:41:38,867 [root] DEBUG: Successfully injected DLL C:\\tmppldvx8e6\\dll\\BkuHUjh.dll.\r\n2024-07-14 12:41:38,882 [lib.api.process] INFO: Injected into 64-bit <Process 652 lsass.exe>\r\n2024-07-14 12:41:38,882 [root] DEBUG: Started auxiliary module TLSDumpMasterSecrets\r\n2024-07-14 12:41:38,882 [root] DEBUG: Initialized auxiliary module \"Usage\"\r\n2024-07-14 12:41:38,882 [root] DEBUG: Trying to start auxiliary module \"Usage\"...\r\n2024-07-14 12:41:38,882 [root] DEBUG: Started auxiliary module Usage\r\n2024-07-14 12:41:38,882 [root] DEBUG: Initialized auxiliary module \"During_script\"\r\n2024-07-14 12:41:38,882 [root] DEBUG: Trying to start auxiliary module \"During_script\"...\r\n2024-07-14 12:41:38,882 [root] DEBUG: Started auxiliary module During_script\r\n2024-07-14 12:41:45,638 [root] INFO: Restarting WMI Service\r\n2024-07-14 12:41:47,740 [root] DEBUG: package modules.packages.exe does not support configure, ignoring\r\n2024-07-14 12:41:47,740 [root] WARNING: configuration error for package modules.packages.exe: error importing data.packages.exe: No module named 'data.packages'\r\n2024-07-14 12:41:47,740 [lib.core.compound] INFO: C:\\Users\\vagrant\\AppData\\Local\\Temp already exists, skipping creation\r\n2024-07-14 12:41:47,740 [lib.api.process] INFO: Successfully executed process from path \"C:\\Users\\vagrant\\AppData\\Local\\Temp\\MalwareAnalysisSample.exe\" with arguments \"\" with pid 7964\r\n2024-07-14 12:41:47,740 [lib.api.process] INFO: Monitor config for <Process 7964 MalwareAnalysisSample.exe>: C:\\tmppldvx8e6\\dll\\7964.ini\r\n2024-07-14 12:41:47,755 [lib.api.process] INFO: 32-bit DLL to inject is C:\\tmppldvx8e6\\dll\\vAwqnp.dll, loader C:\\tmppldvx8e6\\bin\\zrPsDgK.exe\r\n2024-07-14 12:41:47,771 [root] DEBUG: Loader: Injecting process 7964 (thread 7968) with C:\\tmppldvx8e6\\dll\\vAwqnp.dll.\r\n2024-07-14 12:41:47,771 [root] DEBUG: InjectDllViaIAT: Executable is .NET, injecting via queued APC.\r\n2024-07-14 12:41:47,771 [root] DEBUG: InjectDllViaQueuedAPC: APC injection queued.\r\n2024-07-14 12:41:47,771 [root] DEBUG: Successfully injected DLL C:\\tmppldvx8e6\\dll\\vAwqnp.dll.\r\n2024-07-14 12:41:47,771 [lib.api.process] INFO: Injected into 32-bit <Process 7964 MalwareAnalysisSample.exe>\r\n2024-07-14 12:41:49,797 [lib.api.process] INFO: Successfully resumed <Process 7964 MalwareAnalysisSample.exe>\r\n2024-07-14 12:41:50,015 [root] DEBUG: 7964: Python path set to 'C:\\Program Files (x86)\\Python312-32'.\r\n2024-07-14 12:41:50,015 [root] DEBUG: 7964: Dropped file limit defaulting to 100.\r\n2024-07-14 12:41:50,047 [root] DEBUG: 7964: YaraInit: Compiled 39 rule files\r\n2024-07-14 12:41:50,078 [root] DEBUG: 7964: YaraInit: Compiled rules saved to file C:\\tmppldvx8e6\\data\\yara\\capemon.yac\r\n2024-07-14 12:41:50,078 [root] DEBUG: 7964: InternalYaraScan: Scanning 0x779C0000, size 0x1a21b8\r\n2024-07-14 12:41:50,125 [root] DEBUG: 7964: YaraScan: Scanning 0x00B50000, size 0x1f0\r\n2024-07-14 12:41:50,125 [root] DEBUG: 7964: AmsiDumper initialised.\r\n2024-07-14 12:41:50,125 [root] DEBUG: 7964: Monitor initialised: 32-bit capemon loaded in process 7964 at 0x73040000, thread 7968, image base 0xb50000, stack from 0xef5000-0xf00000\r\n2024-07-14 12:41:50,125 [root] DEBUG: 7964: Commandline: \"C:\\Users\\vagrant\\AppData\\Local\\Temp\\MalwareAnalysisSample.exe\"\r\n2024-07-14 12:41:50,156 [root] DEBUG: 7964: hook_api: Warning - CreateRemoteThreadEx export address 0x76458442 differs from GetProcAddress -> 0x767A4340 (KERNELBASE.dll::0x124340)\r\n2024-07-14 12:41:50,156 [root] DEBUG: 7964: hook_api: Warning - CoCreateInstance export address 0x766456BD differs from GetProcAddress -> 0x7766E3D0 (combase.dll::0xbe3d0)\r\n2024-07-14 12:41:50,156 [root] DEBUG: 7964: hook_api: Warning - CoCreateInstanceEx export address 0x766456FC differs from GetProcAddress -> 0x776425F0 (combase.dll::0x925f0)\r\n2024-07-14 12:41:50,156 [root] DEBUG: 7964: hook_api: Warning - CoGetClassObject export address 0x76645C8C differs from GetProcAddress -> 0x776426F0 (combase.dll::0x926f0)\r\n2024-07-14 12:41:50,156 [root] DEBUG: 7964: hook_api: Warning - UpdateProcThreadAttribute export address 0x7645FD66 differs from GetProcAddress -> 0x7677C340 (KERNELBASE.dll::0xfc340)\r\n2024-07-14 12:41:50,172 [root] DEBUG: 7964: hook_api: Warning - SetWindowLongW export address 0x760E3760 differs from GetProcAddress -> 0x74BD5740 (apphelp.dll::0x35740)\r\n2024-07-14 12:41:50,172 [root] DEBUG: 7964: hook_api: Warning - EnumDisplayDevicesA export address 0x760D7890 differs from GetProcAddress -> 0x74BD64E0 (apphelp.dll::0x364e0)\r\n2024-07-14 12:41:50,172 [root] DEBUG: 7964: hook_api: Warning - EnumDisplayDevicesW export address 0x760EDF00 differs from GetProcAddress -> 0x74BFE230 (apphelp.dll::0x5e230)\r\n2024-07-14 12:41:50,172 [root] DEBUG: 7964: hook_api: Warning - CLSIDFromProgID export address 0x76644EF6 differs from GetProcAddress -> 0x776B78D0 (combase.dll::0x1078d0)\r\n2024-07-14 12:41:50,172 [root] DEBUG: 7964: hook_api: Warning - CLSIDFromProgIDEx export address 0x76644F33 differs from GetProcAddress -> 0x776E60B0 (combase.dll::0x1360b0)\r\n2024-07-14 12:41:50,188 [root] DEBUG: 7964: Hooked 490 functions\r\n2024-07-14 12:41:50,188 [root] DEBUG: 7964: Syscall hook installed, syscall logging level 1\r\n2024-07-14 12:41:50,188 [root] DEBUG: 7964: WoW64fix: Windows version 6.2 not supported.\r\n2024-07-14 12:41:50,203 [root] INFO: Loaded monitor into process with pid 7964\r\n2024-07-14 12:41:50,219 [root] DEBUG: 7964: DLL loaded at 0x72FB0000: C:\\Windows\\Microsoft.NET\\Framework\\v4.0.30319\\mscoreei (0x8d000 bytes).\r\n2024-07-14 12:41:50,250 [root] DEBUG: 7964: DLL loaded at 0x74B90000: C:\\Windows\\SYSTEM32\\kernel.appcore (0xf000 bytes).\r\n2024-07-14 12:41:50,250 [root] DEBUG: 7964: DLL loaded at 0x752E0000: C:\\Windows\\SYSTEM32\\VERSION (0x8000 bytes).\r\n2024-07-14 12:41:50,312 [root] DEBUG: 7964: DLL loaded at 0x72690000: C:\\Windows\\SYSTEM32\\ucrtbase_clr0400 (0xab000 bytes).\r\n2024-07-14 12:41:50,312 [root] DEBUG: 7964: DLL loaded at 0x72740000: C:\\Windows\\SYSTEM32\\VCRUNTIME140_CLR0400 (0x14000 bytes).\r\n2024-07-14 12:41:50,312 [root] DEBUG: 7964: DLL loaded at 0x72760000: C:\\Windows\\Microsoft.NET\\Framework\\v4.0.30319\\clr (0x847000 bytes).\r\n2024-07-14 12:41:50,390 [root] INFO: Disabling sleep skipping.\r\n2024-07-14 12:41:50,390 [root] DEBUG: 7964: AllocationHandler: Adding allocation to tracked region list: 0x02D23000, size: 0x1000.\r\n2024-07-14 12:41:50,390 [root] DEBUG: 7964: GetEntropy: Error - Supplied address inaccessible: 0x02D20000\r\n2024-07-14 12:41:50,390 [root] DEBUG: 7964: AddTrackedRegion: GetEntropy failed.\r\n2024-07-14 12:41:50,406 [root] DEBUG: 7964: DLL loaded at 0x77240000: C:\\Windows\\System32\\psapi (0x6000 bytes).\r\n2024-07-14 12:41:50,468 [root] DEBUG: 7964: InstrumentationCallback: Added region at 0x76680000 to tracked regions list (thread 7968).\r\n2024-07-14 12:41:50,468 [root] DEBUG: 7964: ProcessTrackedRegion: Region at 0x76680000 mapped as \\Device\\HarddiskVolume3\\Windows\\SysWOW64\\KernelBase.dll, skipping\r\n2024-07-14 12:41:50,515 [root] DEBUG: 7964: DLL loaded at 0x71280000: C:\\Windows\\assembly\\NativeImages_v4.0.30319_32\\mscorlib\\01f6936167b38afa142d4ec8a8e5fb01\\mscorlib.ni (0x140e000 bytes).\r\n2024-07-14 12:41:50,546 [root] DEBUG: 7964: AllocationHandler: Adding allocation to tracked region list: 0x055B0000, size: 0x1000.\r\n2024-07-14 12:41:50,546 [root] DEBUG: 7964: AddTrackedRegion: GetEntropy failed.\r\n2024-07-14 12:41:50,546 [root] DEBUG: 7964: AllocationHandler: Processing previous tracked region at: 0x02D20000.\r\n2024-07-14 12:41:50,546 [root] DEBUG: 7964: DumpPEsInRange: Scanning range 0x02D20000 - 0x02D20015.\r\n2024-07-14 12:41:50,546 [root] DEBUG: 7964: ScanForDisguisedPE: Size too small: 0x15 bytes\r\n2024-07-14 12:41:50,562 [lib.common.results] INFO: Uploading file C:\\DFGlfijioB\\CAPE\\7964_109598585041314072024 to CAPE\\9a6c30da35e9c09372ab3f1dab08fc1d5d6842ebeff7c07b4d17eff66bbc2338; Size is 21; Max size: 100000000\r\n2024-07-14 12:41:50,562 [root] DEBUG: 7964: DumpMemory: Payload successfully created: C:\\DFGlfijioB\\CAPE\\7964_109598585041314072024 (size 21 bytes)\r\n2024-07-14 12:41:50,562 [root] DEBUG: 7964: DumpRegion: Dumped entire allocation from 0x02D20000, size 4096 bytes.\r\n2024-07-14 12:41:50,562 [root] DEBUG: 7964: ProcessTrackedRegion: Dumped region at 0x02D20000.\r\n2024-07-14 12:41:50,562 [root] DEBUG: 7964: YaraScan: Scanning 0x02D20000, size 0x15\r\n2024-07-14 12:41:50,578 [root] DEBUG: 7964: DLL loaded at 0x75880000: C:\\Windows\\System32\\bcryptPrimitives (0x5d000 bytes).\r\n2024-07-14 12:41:50,594 [root] DEBUG: 7964: AllocationHandler: Adding allocation to tracked region list: 0x02D55000, size: 0x1000.\r\n2024-07-14 12:41:50,594 [root] DEBUG: 7964: GetEntropy: Error - Supplied address inaccessible: 0x02D50000\r\n2024-07-14 12:41:50,594 [root] DEBUG: 7964: AddTrackedRegion: GetEntropy failed.\r\n2024-07-14 12:41:50,594 [root] DEBUG: 7964: AllocationHandler: Processing previous tracked region at: 0x055B0000.\r\n2024-07-14 12:41:50,594 [root] DEBUG: 7964: DumpPEsInRange: Scanning range 0x055B0000 - 0x055B0112.\r\n2024-07-14 12:41:50,594 [root] DEBUG: 7964: ScanForDisguisedPE: Size too small: 0x112 bytes\r\n2024-07-14 12:41:50,594 [lib.common.results] INFO: Uploading file C:\\DFGlfijioB\\CAPE\\7964_79685105041314072024 to CAPE\\f02f88cfa24cbfb287e9c30e37dc5360f21b0f97ddd22fc58c9d6eedbbb1321f; Size is 274; Max size: 100000000\r\n2024-07-14 12:41:50,609 [root] DEBUG: 7964: DumpMemory: Payload successfully created: C:\\DFGlfijioB\\CAPE\\7964_79685105041314072024 (size 274 bytes)\r\n2024-07-14 12:41:50,609 [root] DEBUG: 7964: DumpRegion: Dumped entire allocation from 0x055B0000, size 4096 bytes.\r\n2024-07-14 12:41:50,609 [root] DEBUG: 7964: ProcessTrackedRegion: Dumped region at 0x055B0000.\r\n2024-07-14 12:41:50,609 [root] DEBUG: 7964: YaraScan: Scanning 0x055B0000, size 0x112\r\n2024-07-14 12:41:50,609 [root] DEBUG: 7964: AllocationHandler: Allocation already in tracked region list: 0x02D50000.\r\n2024-07-14 12:41:50,609 [root] DEBUG: 7964: AllocationHandler: Allocation already in tracked region list: 0x02D50000.\r\n2024-07-14 12:41:50,625 [root] DEBUG: 7964: DLL loaded at 0x774F0000: C:\\Windows\\System32\\OLEAUT32 (0x96000 bytes).\r\n2024-07-14 12:41:50,625 [root] DEBUG: 7964: hook_api: clrjit::compileMethod export address 0x711F3700 obtained via GetExportAddress\r\n2024-07-14 12:41:50,625 [root] DEBUG: 7964: DLL loaded at 0x711F0000: C:\\Windows\\Microsoft.NET\\Framework\\v4.0.30319\\clrjit (0x8a000 bytes).\r\n2024-07-14 12:41:50,672 [root] DEBUG: 7964: DLL loaded at 0x70790000: C:\\Windows\\assembly\\NativeImages_v4.0.30319_32\\System\\827465c25133ff582ff7ddaf85635407\\System.ni (0xa56000 bytes).\r\n2024-07-14 12:41:50,703 [root] DEBUG: 7964: .NET JIT native cache at 0x055B0000: scans and dumps active.\r\n2024-07-14 12:41:50,750 [root] DEBUG: 7964: AllocationHandler: Allocation already in tracked region list: 0x02D20000.\r\n2024-07-14 12:41:50,804 [root] DEBUG: 7964: AllocationHandler: Adding allocation to tracked region list: 0x02D4A000, size: 0x1000.\r\n2024-07-14 12:41:50,804 [root] DEBUG: 7964: GetEntropy: Error - Supplied address inaccessible: 0x02D40000\r\n2024-07-14 12:41:50,804 [root] DEBUG: 7964: AddTrackedRegion: GetEntropy failed.\r\n2024-07-14 12:41:50,804 [root] DEBUG: 7964: AllocationHandler: Processing previous tracked region at: 0x02D50000.\r\n2024-07-14 12:41:50,804 [root] DEBUG: 7964: DumpPEsInRange: Scanning range 0x02D50000 - 0x02D5008C.\r\n2024-07-14 12:41:50,819 [root] DEBUG: 7964: ScanForDisguisedPE: Size too small: 0x8c bytes\r\n2024-07-14 12:41:50,835 [lib.common.results] INFO: Uploading file C:\\DFGlfijioB\\CAPE\\7964_196175075041314072024 to CAPE\\bb0ac6361cd09fc6e569ad8a9adea713b94765f4cb2654ccef30d0bb395d6a3e; Size is 140; Max size: 100000000\r\n2024-07-14 12:41:50,851 [root] DEBUG: 7964: DumpMemory: Payload successfully created: C:\\DFGlfijioB\\CAPE\\7964_196175075041314072024 (size 140 bytes)\r\n2024-07-14 12:41:50,851 [root] DEBUG: 7964: DumpRegion: Dumped entire allocation from 0x02D50000, size 4096 bytes.\r\n2024-07-14 12:41:50,851 [root] DEBUG: 7964: ProcessTrackedRegion: Dumped region at 0x02D50000.\r\n2024-07-14 12:41:50,851 [root] DEBUG: 7964: YaraScan: Scanning 0x02D50000, size 0x8c\r\n2024-07-14 12:41:50,851 [root] DEBUG: 7964: AllocationHandler: Allocation already in tracked region list: 0x02D40000.\r\n2024-07-14 12:41:50,913 [root] DEBUG: 7964: DLL loaded at 0x6FF70000: C:\\Windows\\assembly\\NativeImages_v4.0.30319_32\\System.Core\\374ae62ebbde44ef97c7e898f1fdb21b\\System.Core.ni (0x818000 bytes).\r\n2024-07-14 12:41:50,913 [root] DEBUG: 7964: DLL loaded at 0x6FE60000: C:\\Windows\\assembly\\NativeImages_v4.0.30319_32\\System.Configuration\\b863adc9d550931e279ac7e2ee517d1f\\System.Configuration.ni (0x106000 bytes).\r\n2024-07-14 12:41:50,944 [root] DEBUG: 7964: AllocationHandler: Allocation already in tracked region list: 0x02D40000.\r\n2024-07-14 12:41:50,960 [root] DEBUG: 7964: DLL loaded at 0x6F6E0000: C:\\Windows\\assembly\\NativeImages_v4.0.30319_32\\System.Xml\\10879c5bddb2dd2399e2098d5ca5c9d1\\System.Xml.ni (0x774000 bytes).\r\n2024-07-14 12:41:50,991 [root] DEBUG: 7964: DLL loaded at 0x769A0000: C:\\Windows\\System32\\shell32 (0x5b4000 bytes).\r\n2024-07-14 12:41:50,991 [root] DEBUG: 7964: DLL loaded at 0x74C70000: C:\\Windows\\SYSTEM32\\Wldp (0x24000 bytes).\r\n2024-07-14 12:41:51,007 [root] DEBUG: 7964: DLL loaded at 0x74CA0000: C:\\Windows\\SYSTEM32\\windows.storage (0x609000 bytes).\r\n2024-07-14 12:41:51,007 [root] DEBUG: 7964: DLL loaded at 0x76FD0000: C:\\Windows\\System32\\SHCORE (0x87000 bytes).\r\n2024-07-14 12:41:51,022 [root] DEBUG: 7964: DLL loaded at 0x746D0000: C:\\Windows\\SYSTEM32\\profapi (0x1d000 bytes).\r\n2024-07-14 12:41:51,054 [root] DEBUG: 7964: DLL loaded at 0x746F0000: C:\\Windows\\SYSTEM32\\CRYPTSP (0x13000 bytes).\r\n2024-07-14 12:41:51,069 [root] DEBUG: 7964: DLL loaded at 0x6F6B0000: C:\\Windows\\system32\\rsaenh (0x2f000 bytes).\r\n2024-07-14 12:41:51,116 [root] DEBUG: 7964: api-rate-cap: NtReadVirtualMemory hook disabled due to rate\r\n2024-07-14 12:41:51,163 [root] DEBUG: 7964: DLL loaded at 0x6F5A0000: C:\\Windows\\SYSTEM32\\rasman (0x2b000 bytes).\r\n2024-07-14 12:41:51,163 [root] DEBUG: 7964: DLL loaded at 0x6F5D0000: C:\\Windows\\SYSTEM32\\rasapi32 (0xdb000 bytes).\r\n2024-07-14 12:41:51,178 [root] DEBUG: 7964: DLL loaded at 0x6F580000: C:\\Windows\\SYSTEM32\\rtutils (0x11000 bytes).\r\n2024-07-14 12:41:51,210 [root] DEBUG: 7964: DLL loaded at 0x74620000: C:\\Windows\\system32\\mswsock (0x52000 bytes).\r\n2024-07-14 12:41:51,225 [root] DEBUG: 7964: DLL loaded at 0x753A0000: C:\\Windows\\SYSTEM32\\winhttp (0xc2000 bytes).\r\n2024-07-14 12:41:51,225 [root] DEBUG: 7964: DLL loaded at 0x6F560000: C:\\Windows\\system32\\OnDemandConnRouteHelper (0x12000 bytes).\r\n2024-07-14 12:41:51,225 [root] DEBUG: 7964: DLL loaded at 0x745E0000: C:\\Windows\\SYSTEM32\\IPHLPAPI (0x32000 bytes).\r\n2024-07-14 12:41:51,241 [root] DEBUG: 7964: DLL loaded at 0x76FC0000: C:\\Windows\\System32\\NSI (0x7000 bytes).\r\n2024-07-14 12:41:51,241 [root] DEBUG: 7964: DLL loaded at 0x74520000: C:\\Windows\\SYSTEM32\\dhcpcsvc6 (0x14000 bytes).\r\n2024-07-14 12:41:51,257 [root] DEBUG: 7964: DLL loaded at 0x74500000: C:\\Windows\\SYSTEM32\\dhcpcsvc (0x16000 bytes).\r\n2024-07-14 12:41:51,272 [root] DEBUG: 7964: AllocationHandler: Allocation already in tracked region list: 0x055B0000.\r\n2024-07-14 12:41:51,288 [root] DEBUG: 7964: DLL loaded at 0x6F4E0000: C:\\Windows\\SYSTEM32\\DNSAPI (0x92000 bytes).\r\n2024-07-14 12:41:51,350 [root] DEBUG: 7964: DLL loaded at 0x745D0000: C:\\Windows\\SYSTEM32\\WINNSI (0x8000 bytes).\r\n2024-07-14 12:41:51,429 [root] DEBUG: 7964: DLL loaded at 0x6F4D0000: C:\\Windows\\System32\\rasadhlp (0x8000 bytes).\r\n2024-07-14 12:42:03,682 [root] DEBUG: 7964: DLL loaded at 0x6F3C0000: C:\\Windows\\Microsoft.NET\\Framework\\v4.0.30319\\diasymreader (0x105000 bytes).\r\n2024-07-14 12:42:05,206 [root] DEBUG: 652: DLL loaded at 0x00007FFA81490000: C:\\Windows\\System32\\OLEAUT32 (0xcd000 bytes).\r\n2024-07-14 12:42:05,206 [root] DEBUG: 652: DLL loaded at 0x00007FFA80AC0000: C:\\Windows\\System32\\cfgmgr32 (0x4e000 bytes).\r\n2024-07-14 12:42:05,206 [root] DEBUG: 652: DLL loaded at 0x00007FFA804C0000: C:\\Windows\\system32\\DEVOBJ (0x2c000 bytes).\r\n2024-07-14 12:42:05,206 [root] DEBUG: 652: DLL loaded at 0x00007FFA71FD0000: C:\\Windows\\System32\\ngcpopkeysrv (0x42000 bytes).\r\n2024-07-14 12:42:05,221 [root] DEBUG: 652: DLL loaded at 0x00007FFA7F530000: C:\\Windows\\SYSTEM32\\ntmarta (0x33000 bytes).\r\n2024-07-14 12:42:05,221 [root] DEBUG: 652: DLL loaded at 0x00007FFA603B0000: C:\\Windows\\system32\\PCPKsp (0x118000 bytes).\r\n2024-07-14 12:42:05,237 [root] DEBUG: 652: DLL loaded at 0x00007FFA81470000: C:\\Windows\\System32\\imagehlp (0x1d000 bytes).\r\n2024-07-14 12:42:05,237 [root] DEBUG: 652: DLL loaded at 0x00007FFA73520000: C:\\Windows\\system32\\tbs (0x1b000 bytes).\r\n2024-07-14 12:42:17,446 [root] INFO: Process with pid 7964 has terminated\r\n2024-07-14 12:42:17,446 [root] DEBUG: 7964: NtTerminateProcess hook: Attempting to dump process 7964\r\n2024-07-14 12:42:17,478 [root] DEBUG: 7964: VerifyCodeSection: Executable code does not match, 0xd46 of 0xd47 matching\r\n2024-07-14 12:42:17,509 [root] DEBUG: 7964: DoProcessDump: Code modification detected, dumping Imagebase at 0x00B50000.\r\n2024-07-14 12:42:17,509 [root] DEBUG: 7964: DumpImageInCurrentProcess: Attempting to dump virtual PE image.\r\n2024-07-14 12:42:17,524 [root] DEBUG: 7964: DumpProcess: Instantiating PeParser with address: 0x00B50000.\r\n2024-07-14 12:42:17,540 [root] DEBUG: 7964: DumpProcess: Module entry point VA is 0x00002D42.\r\n2024-07-14 12:42:17,540 [root] DEBUG: 7964: PeParser: readPeSectionsFromProcess: readSectionFromProcess failed offset 0xb52000, section 1\r\n2024-07-14 12:42:17,540 [root] DEBUG: 7964: PeParser: readPeSectionsFromProcess: readSectionFromProcess failed offset 0xb54000, section 2\r\n2024-07-14 12:42:17,556 [root] DEBUG: 7964: CAPEExceptionFilter: Exception 0xc0000005 accessing 0xd44 caught at RVA 0x1468e in capemon (expected in memory scans), passing to next handler.\r\n2024-07-14 12:42:17,556 [root] DEBUG: 7964: reBasePEImage: Exception rebasing image from 0x00B50000 to 0x00400000.\r\n2024-07-14 12:42:17,571 [root] DEBUG: 7964: readPeSectionsFromProcess: Failed to relocate image back to header image base 0x00400000.\r\n2024-07-14 12:42:17,587 [lib.common.results] INFO: Uploading file C:\\DFGlfijioB\\CAPE\\7964_75628951722814072024 to procdump\\16cb6d904a71f6fbda1a9bf1e96813c58e7bdb6f6e77e04a2c1aa65ce327d3e3; Size is 1536; Max size: 100000000\r\n2024-07-14 12:42:17,587 [root] DEBUG: 7964: DumpProcess: Module image dump success - dump size 0x600.\r\n2024-07-14 12:42:17,602 [root] DEBUG: 7964: DumpInterestingRegions: Dumping .NET JIT native cache at 0x055B0000.\r\n2024-07-14 12:42:17,602 [lib.common.results] INFO: Uploading file C:\\DFGlfijioB\\CAPE\\7964_145196381722814072024 to CAPE\\72a9dc93913007f3e63b9efdb8ad19f3854b6fc1057f4dc81ebb120cfc08045e; Size is 4138; Max size: 100000000\r\n2024-07-14 12:42:17,618 [root] DEBUG: 7964: DumpMemory: Payload successfully created: C:\\DFGlfijioB\\CAPE\\7964_145196381722814072024 (size 4138 bytes)\r\n2024-07-14 12:42:17,618 [root] DEBUG: 7964: DumpPEsInRange: Scanning range 0x02D40000 - 0x02D4008C.\r\n2024-07-14 12:42:17,618 [root] DEBUG: 7964: ScanForDisguisedPE: Size too small: 0x8c bytes\r\n2024-07-14 12:42:17,634 [lib.common.results] INFO: Uploading file C:\\DFGlfijioB\\CAPE\\7964_15038481722814072024 to CAPE\\b4c15aa1b5332bb2e9a30f55f16af3469c8641951b6e1b462086601c4e4763bf; Size is 140; Max size: 100000000\r\n2024-07-14 12:42:17,634 [root] DEBUG: 7964: DumpMemory: Payload successfully created: C:\\DFGlfijioB\\CAPE\\7964_15038481722814072024 (size 140 bytes)\r\n2024-07-14 12:42:17,634 [root] DEBUG: 7964: DumpRegion: Dumped entire allocation from 0x02D40000, size 4096 bytes.\r\n2024-07-14 12:42:17,649 [root] DEBUG: 7964: ProcessTrackedRegion: Dumped region at 0x02D40000.\r\n2024-07-14 12:42:17,649 [root] DEBUG: 7964: YaraScan: Scanning 0x02D40000, size 0x8c\r\n2024-07-14 12:42:23,239 [root] INFO: Process list is empty, terminating analysis\r\n2024-07-14 12:42:24,241 [root] INFO: Created shutdown mutex\r\n2024-07-14 12:42:25,253 [root] INFO: Shutting down package\r\n2024-07-14 12:42:25,253 [root] INFO: Stopping auxiliary modules\r\n2024-07-14 12:42:25,253 [root] INFO: Stopping auxiliary module: AMSICollector\r\n2024-07-14 12:42:25,253 [root] INFO: Stopping auxiliary module: Browser\r\n2024-07-14 12:42:25,253 [root] INFO: Stopping auxiliary module: Curtain\r\n2024-07-14 12:42:25,834 [lib.common.results] INFO: Uploading file C:\\curtain.log to curtain/1720928545.834706.curtain.log; Size is 12752012; Max size: 100000000\r\n2024-07-14 12:42:25,959 [root] INFO: Stopping auxiliary module: Evtx\r\n2024-07-14 12:42:25,959 [root] INFO: Stopping auxiliary module: FilePickup\r\n2024-07-14 12:42:25,959 [root] INFO: Stopping auxiliary module: HtmlScraper\r\n2024-07-14 12:42:25,959 [root] INFO: Stopping auxiliary module: Human\r\n2024-07-14 12:42:30,996 [root] INFO: Stopping auxiliary module: Pre_script\r\n2024-07-14 12:42:30,996 [root] INFO: Stopping auxiliary module: Procmon\r\n2024-07-14 12:42:30,996 [root] INFO: Stopping auxiliary module: Screenshots\r\n2024-07-14 12:42:31,289 [root] INFO: Stopping auxiliary module: Sysmon\r\n2024-07-14 12:42:31,304 [root] WARNING: Cannot terminate auxiliary module Sysmon: Thread.__init__() not called\r\n2024-07-14 12:42:31,304 [root] INFO: Stopping auxiliary module: Usage\r\n2024-07-14 12:42:31,304 [root] INFO: Stopping auxiliary module: During_script\r\n2024-07-14 12:42:31,304 [root] INFO: Finishing auxiliary modules\r\n2024-07-14 12:42:31,304 [root] INFO: Shutting down pipe server and dumping dropped files\r\n2024-07-14 12:42:31,304 [root] WARNING: Folder at path \"C:\\DFGlfijioB\\debugger\" does not exist, skipping\r\n2024-07-14 12:42:31,304 [root] WARNING: Folder at path \"C:\\DFGlfijioB\\tlsdump\" does not exist, skipping\r\n2024-07-14 12:42:31,304 [root] INFO: Analysis completed\r\n```\nComment: ups, thanks for headups, fixed here https://github.com/kevoreilly/CAPEv2/pull/2227\nComment: This issue has not yet been resolved. When I submitted a sample program, I selected \"inetsim\", but when I look at the analysis results, I see \"false\" instead of \"inetsim\".\r\n\r\n![image](https://github.com/user-attachments/assets/1ff6ba0d-1c0e-4d7d-83dc-73e547f0a96e)\r\n\r\n![image](https://github.com/user-attachments/assets/1cb77b71-6833-4443-a7fd-3abb5736d371)\r\n\nComment: ok, do git pull again, sorry there was many expected args, so i have moved it to kwargs instad of args, and did a test \nComment: Thank you very much. It is now working correctly.\nComment: thanks for headups, those new \"features\" :D ",
+  "Title: session.add(machine) in database.py unlock_machine function causes analysis to fail.\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [yes] I am running the latest version\r\n- [yes] I did read the README!\r\n- [yes] I checked the documentation and found no answer\r\n- [yes] I checked to make sure that this issue has not already been filed\r\n- [yes] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [yes] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nAnalysis is supposed to be completed.\r\n\r\n# Current Behavior\r\n\r\nAnalysis fails and then became inaccurate.\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Pulled current repo\r\n2. submit sample analysis\r\n3. Analysis status is completed but the analysis report is not returned as the task is not released from machine. \r\n\r\n## Context\r\nI tried to setup on a Ubuntu 22.04 machine and it worked but the when i tried to submit a sample for analysis, I received an error below which came from the unlock machine function. Apparently the session.add line is causing a race condition. As a result the analysis fails when the status is complete.:\r\n![image](https://github.com/user-attachments/assets/121e1ecd-a30e-4de1-9417-ab1cd767c3cd)\r\n\r\nOnce way I tried to fix the issue was by commenting out the session.add line in lock_machine and it worked but I had to restart my cape server  everytime I start another analysis because the analysis machine was still locked to the previous task.\r\n![image](https://github.com/user-attachments/assets/ba971dab-1914-40db-8f90-cb24eeced7ec)\r\n\r\nI then reset up a cleaned version of cape but cloned from the flare_capa_7 branch so the error is fixed because of it was using the working version of the database.py file. But then the results for a bumblebee sample i used for testing the setup changed from this:\r\n![image](https://github.com/user-attachments/assets/fbc0dc3f-285c-42a3-a768-2282a099a7bf)\r\n\r\nto this (on the new setup):\r\n![image](https://github.com/user-attachments/assets/defcc4c9-0f5a-4bfb-b7a0-7f6bdb92221f)\r\n\r\nIs it possible to revert the database.py to before session.add was used to unlock the machine ? \r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 22.04, win10 21H2 (for analysis machine)\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: Here is a clearer picture of the original error \r\n![image](https://github.com/user-attachments/assets/59a478d3-a098-4b77-9727-4dd779bb2cb3)\r\n\nComment: Hey what version of sqlachemy do you have?\nComment: sqlalchemy version 1.4.50\r\n![image](https://github.com/user-attachments/assets/ff45752a-7088-4f52-961f-4151602cc7b7)\r\n\nComment: @tbeadle just for sync, do we miss `with self.session.begin_nested():` here https://github.com/kevoreilly/CAPEv2/edit/master/lib/cuckoo/core/database.py#971? i don't think so, but just in case to sync\nComment: @Cassandra-Fu could you please enable the \"log_statements\" config item in the [database] section of cuckoo.conf, restart the cape-scheduler, and re-run the analysis? Then, attach the resulting logs from cape-scheduler.\nComment: ![image](https://github.com/user-attachments/assets/fae55edf-2698-484c-8222-448466ae47fb)\r\n\r\nThese are the logs I received on my end.\nComment: That is only the query for getting a pending task. I'm going to need much more than that. In particular, I'll need to see from this point up until you get the error.\nComment: I managed to resolve the problem by reverting to commit e89be36522a21b184b69fb446ecd2ceb211f5a79. \nComment: Thank you for the update. I've been trying to trace down odd sqalchemy issues for three days. I will give that commit a shot!\r\n\r\nEdit: Oh boy, that is a bit farther back than I thought. Dang.\nComment: well i can't reproduce it and as the author of the issue didn't provide info to try to fix it and just reverted to some \"random\" commit, closing it",
+  "Title: die python\nBody: None",
+  "Title: Getting false positives in signatures\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [Y] I am running the latest version\r\n- [Y] I did read the README!\r\n- [Y] I checked the documentation and found no answer\r\n- [Y] I checked to make sure that this issue has not already been filed\r\n- [Y] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [Y] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\nGetting low/appropriate signatures for legit files \r\n\r\n# Current Behavior\r\nGetting 10 malscore for every file im analyzing , including the legitimate/safe ones, with signatures that shouldn't be there as the file is not a malware, its happening with every file type including xls, word, exe etc\r\n\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Submit a safe file\r\n2. Observe the signatures\r\n\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 22.04\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: cape is done to analyze malware, if you see FP signature you are welcome to fix those, they are in community repo, but if legit binary does something that malware does too, we can't do nothing. \r\n\r\n+ please start provide more rich details about issues, is boring to have ask for what is wrong, saying something without proofs is useless, like what signature what binary etc etc\nComment: malscore is not enabled by default in cape - for good reason.\nComment: Also like doomed says the level of detail in this issue is ridiculous. Not even an example!\nComment: ![1](https://github.com/user-attachments/assets/670c8fd3-9dea-4f8f-be9f-7de708cb8afc)\r\nFor example this signatures appears to be in every single file analyzed , it appears to be from suricata after a bit digging \nComment: Well we can't control it\nComment: so i have found literally nothing by googling `\"udp scan by nmap terdeteksi!\"`. i never saw this signature(nmap) in my sandbox. I have feeling that you have a bad windows configuration. but once against the quality of details of the issue is bad. instead of this or as extra you could from network tab then suricata and where you have all the details about that match so we could see what generates that match. but `quality of issue details` == `quality of response`",
+  "Title: Missing debugger UI tab\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [yes ] I am running the latest version\r\n- [yes] I did read the README!\r\n- [yes] I checked the documentation and found no answer\r\n- [yes] I checked to make sure that this issue has not already been filed\r\n- [yes] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [yes] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nDebugger logs found in dedicated UI tab\r\n\r\n# Current Behavior\r\n\r\nDebugger logs not found in web UI after running analysis.\r\n\r\n# Failure Information (for bugs)\r\n\r\nThere does not seem to be an option to enable the debugger in cape web UI or view the debugger logs. I am new to cape and need to view the debugger logs to view how a malware sample behaves \r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 16.04, Windows 10, macOS 10.12.3\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: debugger log is not always presented, only if you specify specific capemon options or capemon yara is matched. is that explains why it not always there?\nComment: Yes the debugger tab only appears if the debugger hits a breakpoint - first the breakpoints must be set. As doomed says this can be done by yara, but the most simple way is a submission option. If you have not yet tried this then I recommend the most simple of options to set a breakpoint on the entry point of an executable:\r\n\r\n```\r\nbp0=ep\r\n```\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/22219888/4b9dbd2e-4bf7-4a69-b43d-d5234e5aa3c8)\r\n\nComment: Ah understand now. Tried the option bp0=ep and the debugger tab appeared thank you",
+  "Title: Bump django from 4.2.11 to 4.2.14\nBody: Bumps [django](https://github.com/django/django) from 4.2.11 to 4.2.14.\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/django/django/commit/98cf264c9cb0561e4ec305a621e9d58116e44aef\"><code>98cf264</code></a> [4.2.x] Bumped version for 4.2.14 release.</li>\n<li><a href=\"https://github.com/django/django/commit/17358fb35fb7217423d4c4877ccb6d1a3a40b1c3\"><code>17358fb</code></a> [4.2.x] Fixed CVE-2024-39614 -- Mitigated potential DoS in get_supported_lang...</li>\n<li><a href=\"https://github.com/django/django/commit/2b00edc0151a660d1eb86da4059904a0fc4e095e\"><code>2b00edc</code></a> [4.2.x] Fixed CVE-2024-39330 -- Added extra file name validation in Storage's...</li>\n<li><a href=\"https://github.com/django/django/commit/156d3186c96e3ec2ca73b8b25dc2ef366e38df14\"><code>156d318</code></a> [4.2.x] Fixed CVE-2024-39329 -- Standarized timing of verify_password() when ...</li>\n<li><a href=\"https://github.com/django/django/commit/79f368764295df109a37192f6182fb6f361d85b5\"><code>79f3687</code></a> [4.2.x] Fixed CVE-2024-38875 -- Mitigated potential DoS in urlize and urlizet...</li>\n<li><a href=\"https://github.com/django/django/commit/446cdab13485e99939f06b74c563d5bb992330b2\"><code>446cdab</code></a> [4.2.x] Added stub release notes for 4.2.14.</li>\n<li><a href=\"https://github.com/django/django/commit/d26c8838d0a447d5cba03a0b4eebd5fc2d27e9df\"><code>d26c883</code></a> [4.2.x]\ufffcPost-release version bump.</li>\n<li><a href=\"https://github.com/django/django/commit/3bf46e2e023904c825728267f3131c42f02ce696\"><code>3bf46e2</code></a> [4.2.x] Bumped version for 4.2.13 release.</li>\n<li><a href=\"https://github.com/django/django/commit/b46b94e66ccc81ac3586baac045f5bab50d8d6a9\"><code>b46b94e</code></a> [4.2.x] Added release notes for 4.2.13.</li>\n<li><a href=\"https://github.com/django/django/commit/1536833e93a72a24e7ad32c04a922be83c328756\"><code>1536833</code></a> [4.2.x] Post-release version bump.</li>\n<li>Additional commits viewable in <a href=\"https://github.com/django/django/compare/4.2.11...4.2.14\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=django&package-manager=pip&previous-version=4.2.11&new-version=4.2.14)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Added summary and description to packages\nBody: - Every package now will have a summary\r\n- Every package now will have a description\r\n- Many packages now will have a list of option names\nComment: thank you",
+  "Title: chore: Update doc references\nBody: We are updating the references to VirusTotal documentation from the old documentation to the current one in order to keep it updated.",
+  "Title: URL Submission not properly handling commas\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I did read the README!\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Issue\r\n\r\nThis is a pretty simple bug. When submitting URLs for analysis, if a url contains a comma it interprets it as two separate submissions. This may be by design for allowing multiple submissions from the same command, but it doesn't work particularly well in a production environment. \r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/95260807/35b8f15f-5021-4b81-b68f-dea70a8cc3b2)\r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/95260807/565be21b-694d-4e56-8698-d39138a29183)\r\n\r\nI'd recommend just handling input on submission as a string.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | commit 97eeb1cf71e3818ea24065df9a141de9b5a86f18\r\n| OS version       | Ubuntu 24.04\r\n\r\n\r\n\nComment: it does, it says URL, not urlS, you need to wrie extension to handly multiple urls\nComment: So this isn't intended behavior? We have seen legitimate url submissions that contain a comma character in them, but is interpreted as two separate submissions.\nComment: Idk, I never submitted more that one so can't speak of that\nComment: ok now that i read your issue properly, yes we do split by comma in urls to split them by comma, not sure which char to use to split them properly as i see that yes that allows to use comma, any suggestion? sorry misread your issue initially\nComment: no worries - can be tricky to find a good delimiting character. I'd suggest something that can't appear in normal URL, so say a space maybe? If that doesn't work for other user use case, maybe a better solution is to make multi submissions a toggle in the web GUI. \r\n\r\nOtherwise I'd use a Latin-American character but I've no idea how this would impact other users who aren't using our character set. \nComment: Space is legit as is %20 if not encoded\r\n\r\nEl mar, 23 jul 2024, 15:52, CarsonHrusovsky ***@***.***>\r\nescribi\u00f3:\r\n\r\n> no worries - can be tricky to find a good delimiting character. I'd\r\n> suggest something that can't appear in normal URL, so say a space maybe? If\r\n> that doesn't work for other user use case, maybe a better solution is to\r\n> make multi submissions a toggle in the web GUI.\r\n>\r\n> Otherwise I'd use a Latin-American character but I've no idea how this\r\n> would impact other users who aren't using our character set.\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2218#issuecomment-2245319746>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH36TMWBKHUSYS4JKORDZNZNYLAVCNFSM6AAAAABKU7PJ42VHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDENBVGMYTSNZUGY>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: hmm okay - maybe this a feature that isn't needed? Would be very easy to automate multiple submissions for users who need that - and by default just make only one submission at a time expected? \r\n\r\nI struggle to think of a character that a user would both expect to be a separator and also have regular access to. (\u241b) this character for example could be used but this isn't practical.\r\n\r\nI think the best choice is to have users who want to submit multiple URL at the same time to handle that in a script (and have a toggle in the GUI for them as well). I would be more than happy to write a script to submit multiple URL that can be kept in the /extra/ directory for manual use by users.\nComment: now you can customize that by yourself https://github.com/kevoreilly/CAPEv2/commit/0b8fe342b7bfaa46e4d8efadba91cab66ba43723",
+  "Title: Make lists in extracted configs not extend outside of the table cell.\nBody: Using the `<pre>` tag caused lists larger than 4 items to extend to the right outside of the extracted config table. This change fixes that, while maintaining the size & font that was being used previously.",
+  "Title: move recon\nBody: None",
+  "Title: AzSniffer module\nBody: # Description:\r\nFollowing https://github.com/kevoreilly/CAPEv2/issues/2209 issue.\r\nCurrently, the CAPE Sandbox doesn't utilize Azure Network Watchers to sniff traffic. To enhance the functionality and monitoring capabilities, I implemented Azure Network Watchers. This required me to update the configuration settings and ensuring the necessary resources are available in Azure. The proposed changes are described below.\r\n\r\n## Code details\r\nThe auxiliary module AzSniffer.py has been developed to handle packet captures using Azure Network Watchers. Below are the key components and functionalities of the module :\r\n\r\n\r\n### Initialization\r\n- Imports necessary Azure libraries and modules.\r\n- Sets up logging and configuration reading.\r\n- Initializes credentials and Azure management clients for network and storage operations.\r\n\r\n### `az.conf` configurations added\r\n```\r\n# Sniffer configurations\r\nresource_group = \r\nstorage_account =  # where the blob of the capture is created\r\nvmss_name = \r\nlocation = \r\ntenant_id = \r\nclient_secret = \r\nconnection_string =  # blob connection string\r\n```\r\n\r\n### Packet Capture Operations\r\n- Starts and stops packet capture using Azure Network Watcher.\r\n- Downloads and converts packet captures from .cap to .pcap format.\r\n- Handles error logging and fallback mechanisms for download operations.\r\n\r\n### Functionality\r\n- Uses ClientSecretCredential for authentication.\r\n- Manages packet capture lifecycle: creation, stopping, downloading, and deletion.\r\n- Converts captured files and stores them appropriately.\r\n\r\n### Additional Requirements\r\n- Azure Network Watcher must be configured to work with stored captures.\r\n- A storage account with blob capabilities must be added.\r\n\r\n### Future Enhancements:\r\nI am also working on adding the capability to store the capture files directly inside the guest VM instead of using a blob container. This will provide more flexibility in how captures are stored and managed.\nComment: hello, thank you, can you plz fix those 3 erros?\r\n\r\n```\r\nRun poetry run ruff . --line-length 132 --ignore E501,E402\r\nmodules/auxiliary/AzSniffer.py:3:8: F401 [*] `json` imported but unused\r\nmodules/auxiliary/AzSniffer.py:[12](https://github.com/kevoreilly/CAPEv2/actions/runs/9835914230/job/27152479329?pr=2215#step:6:13):51: F401 `azure.core.exceptions.HttpResponseError` imported but unused; consider using `importlib.util.find_spec` to test for availability\r\nmodules/auxiliary/AzSniffer.py:22:41: F401 [*] `lib.cuckoo.common.constants.CUCKOO_ROOT` imported but unused\r\nFound 3 errors.\r\n```\nComment: Checked the error locally, it seems that when Azure is not actually used it prints back these errors. Are you running the code with Azure correctly configured ? \r\nSince I understand that this could be very difficult to replicate we could approach the problem together and test it on my environment. Apart from that I'll work on setting error outputs that specify which conf is missing in orther to be more verbose on these errors. \r\n\r\nSince I can't send you my credentials and using this thread to fix it would result in a headache for both of as would you be so kind to reach me on my personal mail:\r\n- [redacted]\r\n\r\nor my work mail:\r\n- [redacted]\r\n\r\nso we can fix it together ? \r\n\r\nI'll be waiting for a message for you thank you for your time\nComment: thanks, i would suggest you to remove emails if you don't want to be spammed by bots. i don't use azure, it says it imported but not used. that it, see my pr how i fixed it by removing unused imports. thanks for the PR, i will merge this but i have pending to move all machinery from community to community repo, so people won't get confused what is 100% working and what might be broken",
+  "Title: cape options\nBody: None",
+  "Title: Analysis keeps on Processing leading to failed analysis\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [Y] I am running the latest version\r\n- [Y] I did read the README!\r\n- [Y] I checked the documentation and found no answer\r\n- [Y] I checked to make sure that this issue has not already been filed\r\n- [Y] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [Y] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\nTo be able to view report after analyses\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\r\n\r\n# Current Behavior\r\nAnalysis stuck at Processing\r\nWhat is the current behavior?\r\n\r\n# Failure Information (for bugs)\r\nAnalyzing a sample is leading to analyses getting stuck at processing leading to failed processing, I even tried to run the script utils/process.py -p7 auto it seems to show the report for the time being but that reports vanished after some time\r\n\r\n\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 22.04\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: hello i don't usee any useful details to see what is wrong, you can debug(`-d`) your issue with enabling debug mode to see log and see where you processing spends most of the time\nComment: Thanks for your reply.\r\nI ran the sandbox with (\"python3 cuckoo.py -d\") and have performed an analysis and after that everything seems to be working fine in logs, but as the analysis is completed (as indicated in the logs), it shows on the UI that it is still processing and after that when I run the script (\"python3 utils/process.py -p7 auto\") then it shows the report for a short period of time but then the task fails but mal. score is still shown and I am unable to see the analysis again.\nComment: well by parts. did you read readme? about different services? first command is just to run scheduler to pick and send tasks. second command is to run generated data from vm, but you can't just run it as that if you have service running as you missing critical details in that service log, so please read readme i have specified how to handle this if something doesn't work\nComment: is this solved?\nComment: Yeah ,sorry i couldn't update here, Processing service had some missed dependencies \nComment: next time please close issue if solved",
+  "Title: Update vmwarerest machinery module\nBody: The following items have been updated.\r\n- Added default configuration file.\r\n- Added HTTP/HTTPS toggle feature for the REST API.\r\n- Updated error handling.\r\n- Fixed an issue where a VM other than the specified one would start if a similarly named VM exists.\r\n\r\nReferences:\r\n- https://docs.vmware.com/jp/VMware-Workstation-Pro/17/com.vmware.ws.using.doc/GUID-9FAAA4DD-1320-450D-B684-2845B311640F.html\r\n- https://developer.broadcom.com/xapis/vmware-workstation-pro-api/latest/\r\n- https://github.com/ctxis/CAPE/blob/master/conf/vmwarerest.conf\r\n- https://capev2.readthedocs.io/en/latest/customization/machinery.html\nComment: Thanks a lot!",
+  "Title: Bump certifi from 2023.7.22 to 2024.7.4\nBody: Bumps [certifi](https://github.com/certifi/python-certifi) from 2023.7.22 to 2024.7.4.\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/certifi/python-certifi/commit/bd8153872e9c6fc98f4023df9c2deaffea2fa463\"><code>bd81538</code></a> 2024.07.04 (<a href=\"https://redirect.github.com/certifi/python-certifi/issues/295\">#295</a>)</li>\n<li><a href=\"https://github.com/certifi/python-certifi/commit/06a2cbf21f345563dde6c28b60e29d57e9b210b3\"><code>06a2cbf</code></a> Bump peter-evans/create-pull-request from 6.0.5 to 6.1.0 (<a href=\"https://redirect.github.com/certifi/python-certifi/issues/294\">#294</a>)</li>\n<li><a href=\"https://github.com/certifi/python-certifi/commit/13bba02b72bac97c432c277158bc04b4d2a6bc23\"><code>13bba02</code></a> Bump actions/checkout from 4.1.6 to 4.1.7 (<a href=\"https://redirect.github.com/certifi/python-certifi/issues/293\">#293</a>)</li>\n<li><a href=\"https://github.com/certifi/python-certifi/commit/e8abcd0e62b334c164b95d49fcabdc9ecbca0554\"><code>e8abcd0</code></a> Bump pypa/gh-action-pypi-publish from 1.8.14 to 1.9.0 (<a href=\"https://redirect.github.com/certifi/python-certifi/issues/292\">#292</a>)</li>\n<li><a href=\"https://github.com/certifi/python-certifi/commit/124f4adf171e15cd9a91a8b6e0325ecc97be8fe1\"><code>124f4ad</code></a> 2024.06.02 (<a href=\"https://redirect.github.com/certifi/python-certifi/issues/291\">#291</a>)</li>\n<li><a href=\"https://github.com/certifi/python-certifi/commit/c2196ce5d6ee675b27755a19948480a7823e2c6a\"><code>c2196ce</code></a> --- (<a href=\"https://redirect.github.com/certifi/python-certifi/issues/290\">#290</a>)</li>\n<li><a href=\"https://github.com/certifi/python-certifi/commit/fefdeec7588ff1c05214b85a552afcad5fdb51b2\"><code>fefdeec</code></a> Bump actions/checkout from 4.1.4 to 4.1.5 (<a href=\"https://redirect.github.com/certifi/python-certifi/issues/289\">#289</a>)</li>\n<li><a href=\"https://github.com/certifi/python-certifi/commit/3c5fb1560b826a7f83f1f9750173ff766492c9cf\"><code>3c5fb15</code></a> Bump actions/download-artifact from 4.1.6 to 4.1.7 (<a href=\"https://redirect.github.com/certifi/python-certifi/issues/286\">#286</a>)</li>\n<li><a href=\"https://github.com/certifi/python-certifi/commit/4a9569a3eb58db8548536fc16c5c5c7af946a5b1\"><code>4a9569a</code></a> Bump actions/checkout from 4.1.2 to 4.1.4 (<a href=\"https://redirect.github.com/certifi/python-certifi/issues/287\">#287</a>)</li>\n<li><a href=\"https://github.com/certifi/python-certifi/commit/1fc808626a895a916b1e4c2b63abae6c5eafdbe3\"><code>1fc8086</code></a> Bump peter-evans/create-pull-request from 6.0.4 to 6.0.5 (<a href=\"https://redirect.github.com/certifi/python-certifi/issues/288\">#288</a>)</li>\n<li>Additional commits viewable in <a href=\"https://github.com/certifi/python-certifi/compare/2023.07.22...2024.07.04\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=certifi&package-manager=pip&previous-version=2023.7.22&new-version=2024.7.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Fix missing interest arg\nBody: See firefox:\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/de34cf5aa6054104d149fb5319317f10fb30e1c4/analyzer/windows/modules/packages/firefox.py#L15-L18",
+  "Title: Implement Azure Network Watcher for Traffic Sniffing\nBody: [AzSniffer.txt](https://github.com/user-attachments/files/16096538/AzSniffer.txt)\r\n# Description:\r\n\r\nCurrently, the CAPE Sandbox doesn't utilize Azure Network Watchers to sniff traffic. To enhance the functionality and monitoring capabilities, I implemented Azure Network Watchers. This required me to update the configuration settings and ensuring the necessary resources are available in Azure. The proposed changes are described below.\r\n\r\n# Code details\r\nThe auxiliary module AzSniffer.py has been developed to handle packet captures using Azure Network Watchers. Below are the key components and functionalities of the module :\r\n\r\n### Initialization\r\n\r\n- Imports necessary Azure libraries and modules.\r\n- Sets up logging and configuration reading.\r\n- Initializes credentials and Azure management clients for network and storage operations.\r\n\r\n### `az.conf` configurations added\r\n```\r\n# Sniffer configurations\r\nresource_group = \r\nstorage_account =  # where the blob of the capture is created\r\nvmss_name = \r\nlocation = \r\ntenant_id = \r\nclient_secret = \r\nconnection_string =  # blob connection string\r\n```\r\n### Packet Capture Operations\r\n\r\n- Starts and stops packet capture using Azure Network Watcher.\r\n- Downloads and converts packet captures from .cap to .pcap format.\r\n- Handles error logging and fallback mechanisms for download operations.\r\n\r\n### Functionality\r\n\r\n- Uses ClientSecretCredential for authentication.\r\n- Manages packet capture lifecycle: creation, stopping, downloading, and deletion.\r\n- Converts captured files and stores them appropriately.\r\n\r\n### Additional Requirements\r\n\r\n- Azure Network Watcher must be configured to work with stored captures.\r\n- A storage account with blob capabilities must be added.\r\n- Future Enhancements:\r\n\r\nI am also working on adding the capability to store the capture files directly inside the guest VM instead of using a blob container. This will provide more flexibility in how captures are stored and managed.\r\n\r\n## Reason for Issue Instead of Pull Request:\r\nI am posting this as an issue instead of making a pull request because I am not sure if the maintainers are interested in such a feature. Additionally, since changes to az.conf have to be made, I would prefer to get confirmation before proceeding with a pull request. This will ensure that the proposed changes align with the maintainers' vision and requirements for the project. So tell me what you think and if you feel like I should make a pull request with it   \nComment: Wow \u2764\ufe0f while azure may not be the recommended hypervisor from a detectibility perspective, we nonetheless have a growing az user base who I am sure will really appreciate this enhancement. So please do pr, thank you \ud83d\ude4f \nComment: Thank you for the kind response, I will procede testing this feature on your latest commit and after I sure that I won't break anything I will procede with the pull request (it will take just a few days so i can organize with my personal work), it is a pleasure for me to contribute to this repository, hope to keep it up in the future ",
+  "Title: Distributed CAPE behavioral analysis not populating on the master webUI\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x ] I am running the latest version\r\n- [x ] I did read the README!\r\n- [ x] I checked the documentation and found no answer\r\n- [x ] I checked to make sure that this issue has not already been filed\r\n- [x ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nI am submitting a malware sample to a worker node from the master node webUI. The analysis completes and I can see all the expected analysis\r\n\r\n# Current Behavior\r\n\r\nThe behavoir analysis tab isn't populated on the master webUI, but is on the worker. \r\n\r\nThe view from the master:\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/56372006/c1f6d77f-7e8d-47f8-8e40-79ea158c7646)\r\n\r\nThe view from the worker:\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/56372006/7163a98c-9a7a-440b-b08a-06fb388f1c31)\r\n\nComment: hello, if you can see the data on worker but not on master that means that you have something wrong, as when master pushing task to worker it pushes in option `main_task_id=X` which is master task id, and stores that to mongo, review your configuration. as you didn't provide any useful detail to know what is wrong\nComment: So for my configuration, right now I just simply point the worker to the mongo instance on the master. Whats also interesting to me is when I submit a task to a linux machine I have on the worker, everything works fine, the behavioral analysis page is populated and all.\nComment: Ah ok so a misunderstanding on my part. Had to look at the main task ID one the worker for correct info (my apologies, still learning the system all the way). Now I realize the behavioral reports are not being generated at all on the worker. Looking at the processing logs I am seeing logs like this as an example:\r\n\r\n```\r\n2024-07-05 13:46:28,282 [Task 16 (88)] [modules.processing.strace] WARNING: Strace logs does not exist at path \"/opt/CAPEv2/storage/analyses/16/logs/strace.log\"\r\n2024-07-05 13:46:28,285 [Task 16 (88)] [modules.processing.suricata] WARNING: Failed to connect to socket and send command /tmp/suricata-command.socket: [Errno 2] No such file or directory\r\n2024-07-05 13:46:28,355 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed run on_complete() method for signature \"uac_bypass_cmstp\": 'summary'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 591, in run\r\n    result = sig.on_complete()\r\n  File \"/opt/CAPEv2/utils/../modules/signatures/windows/bypass_uac.py\", line 160, in on_complete\r\n    cmdlines = self.results[\"behavior\"][\"summary\"][\"executed_commands\"]\r\nKeyError: 'summary'\r\n2024-07-05 13:46:28,439 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed run on_complete() method for signature \"cryptopool_domains\": 'summary'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 591, in run\r\n    result = sig.on_complete()\r\n  File \"/opt/CAPEv2/utils/../modules/signatures/windows/cryptopools.py\", line 41, in on_complete\r\n    or self.check_executed_command(pattern=domain, regex=True)\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/abstracts.py\", line 1252, in check_executed_command\r\n    subject = self.results[\"behavior\"][\"summary\"][\"executed_commands\"]\r\nKeyError: 'summary'\r\n2024-07-05 13:46:28,441 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed run on_complete() method for signature \"modify_desktop_wallpaper\": 'summary'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 591, in run\r\n    result = sig.on_complete()\r\n  File \"/opt/CAPEv2/utils/../modules/signatures/windows/modifies_wallpaper.py\", line 46, in on_complete\r\n    if self.check_write_key(pattern=indicator, regex=True):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/abstracts.py\", line 1185, in check_write_key\r\n    subject = self.results[\"behavior\"][\"summary\"][\"write_keys\"]\r\nKeyError: 'summary'\r\n2024-07-05 13:46:28,442 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed run on_complete() method for signature \"network_tor\": 'summary'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 591, in run\r\n    result = sig.on_complete()\r\n  File \"/opt/CAPEv2/utils/../modules/signatures/windows/network_tor.py\", line 50, in on_complete\r\n    if self.check_file(pattern=indicator, regex=True):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/abstracts.py\", line 1107, in check_file\r\n    subject = self.results[\"behavior\"][\"summary\"][\"files\"]\r\nKeyError: 'summary'\r\n2024-07-05 13:46:28,442 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed run on_complete() method for signature \"persistence_autorun\": 'summary'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 591, in run\r\n    result = sig.on_complete()\r\n  File \"/opt/CAPEv2/utils/../modules/signatures/windows/persistence_autorun.py\", line 182, in on_complete\r\n    match_key = self.check_write_key(pattern=indicator, regex=True, all=True)\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/abstracts.py\", line 1185, in check_write_key\r\n    subject = self.results[\"behavior\"][\"summary\"][\"write_keys\"]\r\nKeyError: 'summary'\r\n2024-07-05 13:46:28,443 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed run on_complete() method for signature \"persistence_autorun_tasks\": 'summary'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 591, in run\r\n    result = sig.on_complete()\r\n  File \"/opt/CAPEv2/utils/../modules/signatures/windows/persistence_autorun.py\", line 74, in on_complete\r\n    match_key = self.check_write_key(pattern=indicator, regex=True, all=True)\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/abstracts.py\", line 1185, in check_write_key\r\n    subject = self.results[\"behavior\"][\"summary\"][\"write_keys\"]\r\nKeyError: 'summary'\r\n2024-07-05 13:46:28,444 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed run on_complete() method for signature \"persistence_bootexecute\": 'summary'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 591, in run\r\n    result = sig.on_complete()\r\n  File \"/opt/CAPEv2/utils/../modules/signatures/windows/persistence_bootexecute.py\", line 46, in on_complete\r\n    match_key = self.check_write_key(\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/abstracts.py\", line 1185, in check_write_key\r\n    subject = self.results[\"behavior\"][\"summary\"][\"write_keys\"]\r\nKeyError: 'summary'\r\n2024-07-05 13:46:28,445 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed run on_complete() method for signature \"ransomware_file_modifications\": 'summary'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 591, in run\r\n    result = sig.on_complete()\r\n  File \"/opt/CAPEv2/utils/../modules/signatures/windows/ransomware_filemodifications.py\", line 107, in on_complete\r\n    deletedfiles = self.results[\"behavior\"][\"summary\"][\"delete_files\"]\r\nKeyError: 'summary'\r\n2024-07-05 13:46:28,445 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed run on_complete() method for signature \"rat_nanocore\": 'summary'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 591, in run\r\n    result = sig.on_complete()\r\n  File \"/opt/CAPEv2/utils/../modules/signatures/windows/rat_nanocore.py\", line 65, in on_complete\r\n    if self.check_write_file(pattern=ioc, regex=True):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/abstracts.py\", line 1133, in check_write_file\r\n    subject = self.results[\"behavior\"][\"summary\"][\"write_files\"]\r\nKeyError: 'summary'\r\n2024-07-05 13:46:28,449 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"banker_zeus_p2p\": 'summary'\r\n2024-07-05 13:46:28,450 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"bot_athenahttp\": 'summary'\r\n2024-07-05 13:46:28,456 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"family_proxyback\": 'summary'\r\n2024-07-05 13:46:28,489 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"accesses_mailslot\": 'summary'\r\n2024-07-05 13:46:28,490 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"accesses_netlogon_regkey\": 'summary'\r\n2024-07-05 13:46:28,490 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"accesses_public_folder\": 'summary'\r\n2024-07-05 13:46:28,491 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"accesses_sysvol\": 'summary'\r\n2024-07-05 13:46:28,491 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"writes_sysvol\": 'summary'\r\n2024-07-05 13:46:28,492 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"adds_admin_user\": 'summary'\r\n2024-07-05 13:46:28,492 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"adds_user\": 'summary'\r\n2024-07-05 13:46:28,493 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"overwrites_admin_password\": 'summary'\r\n2024-07-05 13:46:28,493 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"antianalysis_detectfile\": 'summary'\r\n2024-07-05 13:46:28,494 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"antianalysis_detectreg\": 'summary'\r\n2024-07-05 13:46:28,494 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"modify_attachment_manager\": 'summary'\r\n2024-07-05 13:46:28,495 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"antiav_detectfile\": 'summary'\r\n2024-07-05 13:46:28,495 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"antiav_detectreg\": 'summary'\r\n2024-07-05 13:46:28,496 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"antiav_srp\": 'summary'\r\n2024-07-05 13:46:28,496 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"antiav_whitespace\": 'summary'\r\n2024-07-05 13:46:28,497 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"antidebug_devices\": 'summary'\r\n2024-07-05 13:46:28,497 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"antiemu_windefend\": 'summary'\r\n2024-07-05 13:46:28,498 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"antiemu_wine_reg\": 'summary'\r\n2024-07-05 13:46:28,498 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"antisandbox_cuckoo_files\": 'summary'\r\n2024-07-05 13:46:28,499 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"antisandbox_fortinet_files\": 'summary'\r\n2024-07-05 13:46:28,499 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"antisandbox_joe_anubis_files\": 'summary'\r\n2024-07-05 13:46:28,500 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"antisandbox_sboxie_mutex\": 'summary'\r\n2024-07-05 13:46:28,500 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"antisandbox_sunbelt_files\": 'summary'\r\n2024-07-05 13:46:28,501 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"antisandbox_threattrack_files\": 'summary'\r\n2024-07-05 13:46:28,501 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"antivm_bochs_keys\": 'summary'\r\n2024-07-05 13:46:28,502 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"antivm_generic_bios\": 'summary'\r\n2024-07-05 13:46:28,502 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"antivm_generic_diskreg\": 'summary'\r\n2024-07-05 13:46:28,503 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"antivm_hyperv_keys\": 'summary'\r\n2024-07-05 13:46:28,503 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"antivm_parallels_keys\": 'summary'\r\n2024-07-05 13:46:28,504 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"antivm_vbox_devices\": 'summary'\r\n2024-07-05 13:46:28,504 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"antivm_vbox_files\": 'summary'\r\n2024-07-05 13:46:28,505 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"antivm_vbox_keys\": 'summary'\r\n2024-07-05 13:46:28,505 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"antivm_vmware_devices\": 'summary'\r\n2024-07-05 13:46:28,506 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"antivm_vmware_files\": 'summary'\r\n2024-07-05 13:46:28,506 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"antivm_vmware_keys\": 'summary'\r\n2024-07-05 13:46:28,507 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"antivm_vmware_mutexes\": 'summary'\r\n2024-07-05 13:46:28,507 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"antivm_vpc_files\": 'summary'\r\n2024-07-05 13:46:28,508 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"antivm_vpc_keys\": 'summary'\r\n2024-07-05 13:46:28,508 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"antivm_vpc_mutex\": 'summary'\r\n2024-07-05 13:46:28,509 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"antivm_xen_keys\": 'summary'\r\n2024-07-05 13:46:28,509 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"asyncrat_mutex\": 'summary'\r\n2024-07-05 13:46:28,510 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"gulpix_behavior\": 'summary'\r\n2024-07-05 13:46:28,510 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"ketrican_regkeys\": 'summary'\r\n2024-07-05 13:46:28,511 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"okrum_mutexes\": 'summary'\r\n2024-07-05 13:46:28,511 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"banker_cridex\": 'summary'\r\n2024-07-05 13:46:28,512 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"geodo_banking_trojan\": 'summary'\r\n2024-07-05 13:46:28,512 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"banker_spyeye_mutexes\": 'summary'\r\n2024-07-05 13:46:28,513 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"banker_zeus_mutex\": 'summary'\r\n2024-07-05 13:46:28,513 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"bitcoin_opencl\": 'summary'\r\n2024-07-05 13:46:28,514 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"accesses_primary_patition\": 'summary'\r\n2024-07-05 13:46:28,514 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"direct_hdd_access\": 'summary'\r\n2024-07-05 13:46:28,515 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"enumerates_physical_drives\": 'summary'\r\n2024-07-05 13:46:28,516 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"physical_drive_access\": 'summary'\r\n2024-07-05 13:46:28,516 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"bot_russkill\": 'summary'\r\n2024-07-05 13:46:28,517 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"browser_addon\": 'summary'\r\n2024-07-05 13:46:28,517 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"chromium_browser_extension_directory\": 'summary'\r\n2024-07-05 13:46:28,517 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"browser_helper_object\": 'summary'\r\n2024-07-05 13:46:28,518 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"browser_security\": 'summary'\r\n2024-07-05 13:46:28,519 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"browser_startpage\": 'summary'\r\n2024-07-05 13:46:28,519 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"ie_disables_process_tab\": 'summary'\r\n2024-07-05 13:46:28,520 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"odbcconf_bypass\": 'summary'\r\n2024-07-05 13:46:28,520 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"squiblydoo_bypass\": 'summary'\r\n2024-07-05 13:46:28,521 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"squiblytwo_bypass\": 'summary'\r\n2024-07-05 13:46:28,521 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"bypass_firewall\": 'summary'\r\n2024-07-05 13:46:28,522 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"uac_bypass_cmstpcom\": 'summary'\r\n2024-07-05 13:46:28,522 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"uac_bypass_delegateexecute_sdclt\": 'summary'\r\n2024-07-05 13:46:28,523 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"uac_bypass_fodhelper\": 'summary'\r\n2024-07-05 13:46:28,523 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"carberp_mutex\": 'summary'\r\n2024-07-05 13:46:28,524 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"clears_logs\": 'summary'\r\n2024-07-05 13:46:28,524 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"cmdline_obfuscation\": 'summary'\r\n2024-07-05 13:46:28,525 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"cmdline_switches\": 'summary'\r\n2024-07-05 13:46:28,525 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"cmdline_terminate\": 'summary'\r\n2024-07-05 13:46:28,526 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"cmdline_forfiles_wildcard\": 'summary'\r\n2024-07-05 13:46:28,526 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"cmdline_http_link\": 'summary'\r\n2024-07-05 13:46:28,527 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"cmdline_long_string\": 'summary'\r\n2024-07-05 13:46:28,527 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"cmdline_reversed_http_link\": 'summary'\r\n2024-07-05 13:46:28,528 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"long_commandline\": 'summary'\r\n2024-07-05 13:46:28,528 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"powershell_renamed_commandline\": 'summary'\r\n2024-07-05 13:46:28,531 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"credwiz_credentialaccess\": 'summary'\r\n2024-07-05 13:46:28,531 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"enables_wdigest\": 'summary'\r\n2024-07-05 13:46:28,532 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"vaultcmd_credentialaccess\": 'summary'\r\n2024-07-05 13:46:28,532 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"file_credential_store_access\": 'summary'\r\n2024-07-05 13:46:28,533 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"file_credential_store_write\": 'summary'\r\n2024-07-05 13:46:28,533 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"registry_credential_dumping\": 'summary'\r\n2024-07-05 13:46:28,534 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"registry_credential_store_access\": 'summary'\r\n2024-07-05 13:46:28,534 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"registry_lsa_secrets_access\": 'summary'\r\n2024-07-05 13:46:28,535 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"comsvcs_credentialdump\": 'summary'\r\n2024-07-05 13:46:28,535 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"cryptomining_stratum_command\": 'summary'\r\n2024-07-05 13:46:28,536 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"cypherit_mutexes\": 'summary'\r\n2024-07-05 13:46:28,536 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"darkcomet_regkeys\": 'summary'\r\n2024-07-05 13:46:28,537 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"datop_loader\": 'summary'\r\n2024-07-05 13:46:28,537 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"deepfreeze_mutex\": 'summary'\r\n2024-07-05 13:46:28,538 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"deletes_executed_files\": 'summary'\r\n2024-07-05 13:46:28,538 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"disables_app_launch\": 'summary'\r\n2024-07-05 13:46:28,539 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"disables_auto_app_termination\": 'summary'\r\n2024-07-05 13:46:28,539 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"disables_appv_virtualization\": 'summary'\r\n2024-07-05 13:46:28,540 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"disables_backups\": 'summary'\r\n2024-07-05 13:46:28,540 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"disables_browser_warn\": 'summary'\r\n2024-07-05 13:46:28,541 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"disables_context_menus\": 'summary'\r\n2024-07-05 13:46:28,541 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"disables_cpl_disable\": 'summary'\r\n2024-07-05 13:46:28,542 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"disables_crashdumps\": 'summary'\r\n2024-07-05 13:46:28,542 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"disables_event_logging\": 'summary'\r\n2024-07-05 13:46:28,543 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"disables_folder_options\": 'summary'\r\n2024-07-05 13:46:28,543 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"disables_notificationcenter\": 'summary'\r\n2024-07-05 13:46:28,544 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"disables_power_options\": 'summary'\r\n2024-07-05 13:46:28,544 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"disables_restore_default_state\": 'summary'\r\n2024-07-05 13:46:28,545 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"disables_run_command\": 'summary'\r\n2024-07-05 13:46:28,546 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"disables_smartscreen\": 'summary'\r\n2024-07-05 13:46:28,546 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"disables_startmenu_search\": 'summary'\r\n2024-07-05 13:46:28,547 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"disables_system_restore\": 'summary'\r\n2024-07-05 13:46:28,547 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"disables_uac\": 'summary'\r\n2024-07-05 13:46:28,548 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"disables_wer\": 'summary'\r\n2024-07-05 13:46:28,548 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"disables_windows_defender\": 'summary'\r\n2024-07-05 13:46:28,549 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"disables_windows_defender_logging\": 'summary'\r\n2024-07-05 13:46:28,550 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"removes_windows_defender_contextmenu\": 'summary'\r\n2024-07-05 13:46:28,551 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"windows_defender_powershell\": 'summary'\r\n2024-07-05 13:46:28,551 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"disables_windows_file_protection\": 'summary'\r\n2024-07-05 13:46:28,552 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"disables_windowsupdate\": 'summary'\r\n2024-07-05 13:46:28,552 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"disables_winfirewall\": 'summary'\r\n2024-07-05 13:46:28,553 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"adfind_domain_enumeration\": 'summary'\r\n2024-07-05 13:46:28,553 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"domain_enumeration_commands\": 'summary'\r\n2024-07-05 13:46:28,554 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"andromut_mutexes\": 'summary'\r\n2024-07-05 13:46:28,554 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"downloader_cabby\": 'summary'\r\n2024-07-05 13:46:28,555 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"phorpiex_mutexes\": 'summary'\r\n2024-07-05 13:46:28,555 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"protonbot_mutexes\": 'summary'\r\n2024-07-05 13:46:28,556 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"driver_filtermanager\": 'summary'\r\n2024-07-05 13:46:28,556 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"dll_archive_execution\": 'summary'\r\n2024-07-05 13:46:28,557 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"lnk_archive_execution\": 'summary'\r\n2024-07-05 13:46:28,557 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"script_archive_execution\": 'summary'\r\n2024-07-05 13:46:28,558 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"spooler_access\": 'summary'\r\n2024-07-05 13:46:28,559 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"spooler_svc_start\": 'summary'\r\n2024-07-05 13:46:28,559 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"mapped_drives_uac\": 'summary'\r\n2024-07-05 13:46:28,560 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"hides_recycle_bin_icon\": 'summary'\r\n2024-07-05 13:46:28,560 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"apocalypse_stealer_file_behavior\": 'summary'\r\n2024-07-05 13:46:28,561 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"arkei_files\": 'summary'\r\n2024-07-05 13:46:28,561 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"azorult_mutexes\": 'summary'\r\n2024-07-05 13:46:28,562 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"infostealer_bitcoin\": 'summary'\r\n2024-07-05 13:46:28,562 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"cryptbot_files\": 'summary'\r\n2024-07-05 13:46:28,563 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"echelon_files\": 'summary'\r\n2024-07-05 13:46:28,563 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"infostealer_ftp\": 'summary'\r\n2024-07-05 13:46:28,564 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"infostealer_im\": 'summary'\r\n2024-07-05 13:46:28,564 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"infostealer_mail\": 'summary'\r\n2024-07-05 13:46:28,565 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"poullight_files\": 'summary'\r\n2024-07-05 13:46:28,565 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"purplewave_mutexes\": 'summary'\r\n2024-07-05 13:46:28,566 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"quilclipper_mutexes\": 'summary'\r\n2024-07-05 13:46:28,566 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"qulab_files\": 'summary'\r\n2024-07-05 13:46:28,567 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"qulab_mutexes\": 'summary'\r\n2024-07-05 13:46:28,567 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"asyncrat_mutex\": 'summary'\r\n2024-07-05 13:46:28,569 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"masquerade_process_name\": 'summary'\r\n2024-07-05 13:46:28,569 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"mimikatz_modules\": 'summary'\r\n2024-07-05 13:46:28,570 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"modify_certs\": 'summary'\r\n2024-07-05 13:46:28,570 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"dotnet_clr_usagelog_regkeys\": 'summary'\r\n2024-07-05 13:46:28,571 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"modify_hostfile\": 'summary'\r\n2024-07-05 13:46:28,571 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"modify_oem_information\": 'summary'\r\n2024-07-05 13:46:28,572 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"modify_security_center_warnings\": 'summary'\r\n2024-07-05 13:46:28,572 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"modify_uac_prompt\": 'summary'\r\n2024-07-05 13:46:28,586 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"network_tor_service\": 'summary'\r\n2024-07-05 13:46:28,587 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"office_addinloading\": 'summary'\r\n2024-07-05 13:46:28,588 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"office_perfkey\": 'summary'\r\n2024-07-05 13:46:28,588 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"changes_trust_center_settings\": 'summary'\r\n2024-07-05 13:46:28,589 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"disables_vba_trust_access\": 'summary'\r\n2024-07-05 13:46:28,592 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"office_security\": 'summary'\r\n2024-07-05 13:46:28,593 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"packer_armadillo_mutex\": 'summary'\r\n2024-07-05 13:46:28,593 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"packer_armadillo_regkey\": 'summary'\r\n2024-07-05 13:46:28,594 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"persistence_ads\": 'summary'\r\n2024-07-05 13:46:28,594 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"persistence_safeboot\": 'summary'\r\n2024-07-05 13:46:28,595 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"persistence_ifeo\": 'summary'\r\n2024-07-05 13:46:28,595 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"persistence_silent_process_exit\": 'summary'\r\n2024-07-05 13:46:28,596 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"persistence_rdp_registry\": 'summary'\r\n2024-07-05 13:46:28,596 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"persistence_rdp_shadowing\": 'summary'\r\n2024-07-05 13:46:28,597 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"persistence_service\": 'summary'\r\n2024-07-05 13:46:28,597 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"persistence_shim_database\": 'summary'\r\n2024-07-05 13:46:28,598 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"powerpool_mutexes\": 'summary'\r\n2024-07-05 13:46:28,598 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"powershell_command_suspicious\": 'summary'\r\n2024-07-05 13:46:28,599 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"powershell_renamed\": 'summary'\r\n2024-07-05 13:46:28,599 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"powershell_reversed\": 'summary'\r\n2024-07-05 13:46:28,600 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"powershell_variable_obfuscation\": 'summary'\r\n2024-07-05 13:46:28,600 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"prevents_safeboot\": 'summary'\r\n2024-07-05 13:46:28,601 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"cmdline_process_discovery\": 'summary'\r\n2024-07-05 13:46:28,602 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"cryptomix_mutexes\": 'summary'\r\n2024-07-05 13:46:28,602 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"dharma_mutexes\": 'summary'\r\n2024-07-05 13:46:28,603 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"ransomware_extensions\": 'summary'\r\n2024-07-05 13:46:28,603 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"ransomware_files\": 'summary'\r\n2024-07-05 13:46:28,604 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"fonix_mutexes\": 'summary'\r\n2024-07-05 13:46:28,604 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"gandcrab_mutexes\": 'summary'\r\n2024-07-05 13:46:28,605 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"germanwiper_mutexes\": 'summary'\r\n2024-07-05 13:46:28,605 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"medusalocker_mutexes\": 'summary'\r\n2024-07-05 13:46:28,606 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"medusalocker_regkeys\": 'summary'\r\n2024-07-05 13:46:28,606 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"nemty_mutexes\": 'summary'\r\n2024-07-05 13:46:28,607 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"nemty_regkeys\": 'summary'\r\n2024-07-05 13:46:28,607 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"pysa_mutexes\": 'summary'\r\n2024-07-05 13:46:28,608 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"ransomware_radamant\": 'summary'\r\n2024-07-05 13:46:28,608 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"ransomware_recyclebin\": 'summary'\r\n2024-07-05 13:46:28,609 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"revil_mutexes\": 'summary'\r\n2024-07-05 13:46:28,609 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"ransomware_revil_regkey\": 'summary'\r\n2024-07-05 13:46:28,610 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"satan_mutexes\": 'summary'\r\n2024-07-05 13:46:28,610 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"snake_ransom_mutexes\": 'summary'\r\n2024-07-05 13:46:28,611 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"stop_ransom_mutexes\": 'summary'\r\n2024-07-05 13:46:28,611 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"stop_ransomware_cmd\": 'summary'\r\n2024-07-05 13:46:28,612 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"rat_beebus_mutexes\": 'summary'\r\n2024-07-05 13:46:28,612 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"blacknet_mutexes\": 'summary'\r\n2024-07-05 13:46:28,613 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"blackrat_mutexes\": 'summary'\r\n2024-07-05 13:46:28,613 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"crat_mutexes\": 'summary'\r\n2024-07-05 13:46:28,614 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"dcrat_files\": 'summary'\r\n2024-07-05 13:46:28,614 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"dcrat_mutexes\": 'summary'\r\n2024-07-05 13:46:28,615 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"rat_fynloski_mutexes\": 'summary'\r\n2024-07-05 13:46:28,616 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"limerat_mutexes\": 'summary'\r\n2024-07-05 13:46:28,616 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"limerat_regkeys\": 'summary'\r\n2024-07-05 13:46:28,617 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"lodarat_file_behavior\": 'summary'\r\n2024-07-05 13:46:28,617 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"modirat_behavior\": 'summary'\r\n2024-07-05 13:46:28,618 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"njrat_regkeys\": 'summary'\r\n2024-07-05 13:46:28,618 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"obliquerat_files\": 'summary'\r\n2024-07-05 13:46:28,619 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"obliquerat_mutexes\": 'summary'\r\n2024-07-05 13:46:28,619 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"parallax_mutexes\": 'summary'\r\n2024-07-05 13:46:28,620 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"rat_pcclient\": 'summary'\r\n2024-07-05 13:46:28,620 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"rat_plugx_mutexes\": 'summary'\r\n2024-07-05 13:46:28,621 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"rat_poisonivy_mutexes\": 'summary'\r\n2024-07-05 13:46:28,621 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"rat_quasar_mutexes\": 'summary'\r\n2024-07-05 13:46:28,622 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"ratsnif_mutexes\": 'summary'\r\n2024-07-05 13:46:28,622 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"rat_spynet\": 'summary'\r\n2024-07-05 13:46:28,623 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"venomrat_mutexes\": 'summary'\r\n2024-07-05 13:46:28,623 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"warzonerat_files\": 'summary'\r\n2024-07-05 13:46:28,624 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"warzonerat_regkeys\": 'summary'\r\n2024-07-05 13:46:28,625 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"xpertrat_mutexes\": 'summary'\r\n2024-07-05 13:46:28,625 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"rat_xtreme_mutexes\": 'summary'\r\n2024-07-05 13:46:28,626 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"recon_fingerprint\": 'summary'\r\n2024-07-05 13:46:28,626 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"remcos_files\": 'summary'\r\n2024-07-05 13:46:28,627 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"remcos_mutexes\": 'summary'\r\n2024-07-05 13:46:28,627 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"remcos_regkeys\": 'summary'\r\n2024-07-05 13:46:28,628 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"rdptcp_key\": 'summary'\r\n2024-07-05 13:46:28,628 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"uses_rdp_clip\": 'summary'\r\n2024-07-05 13:46:28,629 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"uses_remote_desktop_session\": 'summary'\r\n2024-07-05 13:46:28,629 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"removes_networking_icon\": 'summary'\r\n2024-07-05 13:46:28,630 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"removes_pinned_programs\": 'summary'\r\n2024-07-05 13:46:28,630 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"removes_security_maintenance_icon\": 'summary'\r\n2024-07-05 13:46:28,631 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"removes_startmenu_defaults\": 'summary'\r\n2024-07-05 13:46:28,631 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"removes_username_startmenu\": 'summary'\r\n2024-07-05 13:46:28,632 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"spicyhotpot_behavior\": 'summary'\r\n2024-07-05 13:46:28,632 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"sniffer_winpcap\": 'summary'\r\n2024-07-05 13:46:28,633 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"spreading_autoruninf\": 'summary'\r\n2024-07-05 13:46:28,633 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"stealth_hidden_extension\": 'summary'\r\n2024-07-05 13:46:28,634 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"stealth_hiddenreg\": 'summary'\r\n2024-07-05 13:46:28,634 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"stealth_hide_notifications\": 'summary'\r\n2024-07-05 13:46:28,635 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"stealth_webhistory\": 'summary'\r\n2024-07-05 13:46:28,635 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"sysinternals_psexec\": 'summary'\r\n2024-07-05 13:46:28,636 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"sysinternals_tools\": 'summary'\r\n2024-07-05 13:46:28,636 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"tampers_etw\": 'summary'\r\n2024-07-05 13:46:28,637 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"lsa_tampering\": 'summary'\r\n2024-07-05 13:46:28,637 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"tampers_powershell_logging\": 'summary'\r\n2024-07-05 13:46:28,638 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"targeted_flame\": 'summary'\r\n2024-07-05 13:46:28,638 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"territorial_disputes_sigs\": 'summary'\r\n2024-07-05 13:46:28,639 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"trickbot_mutex\": 'summary'\r\n2024-07-05 13:46:28,639 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"fleercivet_mutex\": 'summary'\r\n2024-07-05 13:46:28,640 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"lokibot_mutexes\": 'summary'\r\n2024-07-05 13:46:28,640 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"ursnif_behavior\": 'summary'\r\n2024-07-05 13:46:28,641 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"uses_adfind\": 'summary'\r\n2024-07-05 13:46:28,642 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"uses_ms_protocol\": 'summary'\r\n2024-07-05 13:46:28,642 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"neshta_mutexes\": 'summary'\r\n2024-07-05 13:46:28,643 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"renamer_mutexes\": 'summary'\r\n2024-07-05 13:46:28,643 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"owa_web_shell_files\": 'summary'\r\n2024-07-05 13:46:28,644 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"web_shell_files\": 'summary'\r\n2024-07-05 13:46:28,644 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"web_shell_processes\": 'summary'\r\n2024-07-05 13:46:28,645 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"dotnet_csc_build\": 'summary'\r\n2024-07-05 13:46:28,646 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"multiple_explorer_instances\": 'summary'\r\n2024-07-05 13:46:28,646 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"script_tool_executed\": 'summary'\r\n2024-07-05 13:46:28,647 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"suspicious_certutil_use\": 'summary'\r\n2024-07-05 13:46:28,647 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"suspicious_command_tools\": 'summary'\r\n2024-07-05 13:46:28,648 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"suspicious_mpcmdrun_use\": 'summary'\r\n2024-07-05 13:46:28,648 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"suspicious_ping_use\": 'summary'\r\n2024-07-05 13:46:28,649 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"uses_powershell_copyitem\": 'summary'\r\n2024-07-05 13:46:28,649 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"uses_windows_utilities\": 'summary'\r\n2024-07-05 13:46:28,650 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"uses_windows_utilities_appcmd\": 'summary'\r\n2024-07-05 13:46:28,650 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"uses_windows_utilities_csvde_ldifde\": 'summary'\r\n2024-07-05 13:46:28,651 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"uses_windows_utilities_cipher\": 'summary'\r\n2024-07-05 13:46:28,651 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"uses_windows_utilities_clickonce\": 'summary'\r\n2024-07-05 13:46:28,652 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"uses_windows_utilities_curl\": 'summary'\r\n2024-07-05 13:46:28,652 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"uses_windows_utilities_dsquery\": 'summary'\r\n2024-07-05 13:46:28,653 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"uses_windows_utilities_esentutl\": 'summary'\r\n2024-07-05 13:46:28,653 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"uses_windows_utilities_finger\": 'summary'\r\n2024-07-05 13:46:28,654 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"uses_windows_utilities_mode\": 'summary'\r\n2024-07-05 13:46:28,654 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"uses_windows_utilities_ntdsutil\": 'summary'\r\n2024-07-05 13:46:28,655 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"uses_windows_utilities_nltest\": 'summary'\r\n2024-07-05 13:46:28,655 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"uses_windows_utilities_xcopy\": 'summary'\r\n2024-07-05 13:46:28,656 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"wmic_command_suspicious\": 'summary'\r\n2024-07-05 13:46:28,656 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"scrcons_wmi_script_consumer\": 'summary'\r\n2024-07-05 13:46:28,657 [Task 16 (88)] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"allaple_mutexes\": 'summary'\r\n2024-07-05 13:46:28,662 [Task 16 (88)] [lib.cuckoo.common.integrations.capa] ERROR: 3 validation errors for CapeReport\r\nbehavior.summary\r\n  Field required [type=missing, input_value={'processes': [], 'processtree': []}, input_type=dict]\r\n    For further information visit https://errors.pydantic.dev/2.4/v/missing\r\nbehavior.anomaly\r\n  Field required [type=missing, input_value={'processes': [], 'processtree': []}, input_type=dict]\r\n    For further information visit https://errors.pydantic.dev/2.4/v/missing\r\nbehavior.encryptedbuffers\r\n  Field required [type=missing, input_value={'processes': [], 'processtree': []}, input_type=dict]\r\n    For further information visit https://errors.pydantic.dev/2.4/v/missing\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/capa.py\", line 259, in flare_capa_details\r\n    extractor = capa.features.extractors.cape.extractor.CapeExtractor.from_report(results)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/capa/features/extractors/cape/extractor.py\", line 126, in from_report\r\n    cr = CapeReport.model_validate(report)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/pydantic/main.py\", line 503, in model_validate\r\n    return cls.__pydantic_validator__.validate_python(\r\npydantic_core._pydantic_core.ValidationError: 3 validation errors for CapeReport\r\nbehavior.summary\r\n  Field required [type=missing, input_value={'processes': [], 'processtree': []}, input_type=dict]\r\n    For further information visit https://errors.pydantic.dev/2.4/v/missing\r\nbehavior.anomaly\r\n  Field required [type=missing, input_value={'processes': [], 'processtree': []}, input_type=dict]\r\n    For further information visit https://errors.pydantic.dev/2.4/v/missing\r\nbehavior.encryptedbuffers\r\n  Field required [type=missing, input_value={'processes': [], 'processtree': []}, input_type=dict]\r\n```\nComment: did you disable summary in processing?\nComment: https://github.com/kevoreilly/CAPEv2/blob/master/conf/default/processing.conf.default#L54\nComment: No sir, it is on. Turned it off and still got the same error when running `poetry run python utils/process.py -r 17 -d`\nComment: i just pushed fix for signatures for that, but that are signatures, so you have some probelm with behavior processing, you need to spot why it fails as from log that youposted there is nothing that could help\nComment: wait is that linux binary?\nComment: also run `poetry run python3 utils/community.py -waf` so that will fix summary issues \nComment: Ok, I'll try and insert some debug messages in one of the sigatures see if I can spot where it fails. And no this is a .exe file. Ran the community.py script, no help. I'll let you know what I find\nComment: no,signatures are not the issue here at all, the problem is in your processing of behavior.py, there is problem to generate summary, for failing it i should have luck of details so i can't help, do you have some custom stuff etc etc? need some context as by default that doesn't happent\nComment: So the setup is as follows:\r\n\r\nI have 2 nodes, one master and one worker. The master is working completely fine. The worker is not successfully finishing processing when I submit work to its windows machine. It is finishing processing properly when I submit a sample to the linux machine running on the worker though. \r\n\r\nThe master is running an instance of mongoDB that I point the worker to in the configuration files. The master is also running the cape-dist service.  As far as custom configurations, I have a single windows 10 21h2 and single linux (ubuntu 22) machine on the worker. For the processing configuration, I have it setup like this same as on the master:\r\n\r\n```\r\n# Enable or disable the available processing modules [on/off].\r\n# If you add a custom processing module to your Cuckoo setup, you have to add\r\n# a dedicated entry in this file, or it won't be executed.\r\n# You can also add additional options under the section of your module and\r\n# they will be available in your Python class.\r\n\r\n# Community\r\n# exclude files that doesn't match safe extension and ignore their files from processing inside of other modules like CAPE.py\r\n[antiransomware]\r\nenabled = no\r\n# ignore all files with extension found more than X\r\nskip_number = 30\r\n\r\n# Community\r\n[curtain]\r\nenabled = no\r\n\r\n# Community\r\n[sysmon]\r\nenabled = no\r\n\r\n[analysisinfo]\r\nenabled = yes\r\n\r\n# Community\r\n# FLARE capa -> to update rules utils/community.py -cr\r\n# install -> cd /tmp && git clone --recurse-submodules https://github.com/fireeye/capa.git && cd capa && git submodule update --init rules && python -m poetry run pip install .\r\n[flare_capa]\r\nenabled = no\r\n# Generate it always or generate on demand only(user need to click button to generate it), still should be enabled to use this feature on demand\r\non_demand = no\r\n# Analyze binary payloads\r\nstatic = no\r\n# Analyze CAPE payloads\r\ncape = no\r\n# Analyze ProcDump\r\nprocdump = no\r\n\r\n# Community\r\n[decompression]\r\nenabled = no\r\n\r\n[dumptls]\r\nenabled = no\r\n\r\n[amsi]\r\nenabled = no\r\n\r\n[behavior]\r\nenabled = yes\r\n# Toggle specific modules within the BehaviorAnalysis class\r\nanomaly = yes\r\nprocesstree = yes\r\nsummary = yes\r\nenhanced = yes\r\nencryptedbuffers = yes\r\n# Should the server use a compressed version of behavioural logs? This helps\r\n# in saving space in Mongo, accelerates searchs and reduce the size of the\r\n# final JSON report.\r\nloop_detection = no\r\n# The number of calls per process to process. 0 switches the limit off.\r\n# 10000 api calls should be processed in less than 2 minutes\r\nanalysis_call_limit = 0\r\n# Use ram to boost processing speed. You will need more than 20GB of RAM for this feature.\r\n# Please read \"performance\" section in the documentation.\r\nram_boost = no\r\n# https://capev2.readthedocs.io/en/latest/usage/patterns_replacement.html\r\nreplace_patterns = no\r\n\r\n[strace]\r\nenabled = yes\r\n# Toggle specific modules within the StraceAnalysis class\r\nprocesstree = yes\r\nplatform = linux\r\n\r\n[debug]\r\nenabled = yes\r\n\r\n[detections]\r\nenabled = yes\r\n# Signatures\r\nbehavior = yes\r\nyara = yes\r\nsuricata = yes\r\nvirustotal = no\r\nclamav = no\r\n\r\n# ... but this mechanism may still be switched on\r\n[procmemory]\r\nenabled = yes\r\nstrings = yes\r\n\r\n[procmon]\r\nenabled = no\r\n\r\n[memory]\r\nenabled = no\r\n\r\n[usage]\r\nenabled = no\r\n\r\n[network]\r\nenabled = yes\r\nsort_pcap = no\r\n# DNS whitelisting to ignore domains/IPs configured in network.py\r\n# This should be disabled when utilizing InetSim/Remnux as we end up resolving\r\n# the IP from fakedns which would then remove all domains associated with that\r\n# resolved IP\r\ndnswhitelist = yes\r\n# additional entries\r\ndnswhitelist_file = extra/whitelist_domains.txt\r\nipwhitelist = yes\r\nipwhitelist_file = extra/whitelist_ips.txt\r\nnetwork_passlist = no\r\nnetwork_passlist_file = extra/whitelist_network.txt\r\n\r\n# Requires geoip2 and maxmind database\r\ncountry_lookup = no\r\n# Register and download for free from\r\n# https://www.maxmind.com/ or https://ipinfo.io/\r\n# For maxmind use: GeoLite2 Country\r\n# For ipinfo use: Free IP to Country + IP to ASN\r\nmaxmind_database = data/GeoLite2-Country.mmdb\r\n\r\n[url_analysis]\r\nenabled = yes\r\n# Enable a WHOIS lookup for the target domain of a URL analyses\r\nwhois = yes\r\n\r\n[strings]\r\nenabled = yes\r\non_demand = no\r\nnullterminated_only = no\r\nminchars = 5\r\n\r\n# Community\r\n[trid]\r\n# Specify the path to the trid binary to use for static analysis.\r\nenabled = no\r\nidentifier = data/trid/trid\r\ndefinitions = data/trid/triddefs.trd\r\n\r\n[die]\r\n# Detect it Easy\r\nenabled = no\r\nbinary = /usr/bin/diec\r\n\r\n[virustotal]\r\nenabled = yes\r\non_demand = no\r\ntimeout = 60\r\n# remove empty detections\r\nremove_empty = yes\r\n# Add your VirusTotal API key here. The default API key, kindly provided\r\n# by the VirusTotal team, should enable you with a sufficient throughput\r\n# and while being shared with all our users, it shouldn't affect your use.\r\nkey = a0283a2c3d55728300d064874239b5346fb991317e8449fe43c902879d758088\r\ndo_file_lookup = yes\r\ndo_url_lookup = yes\r\nurlscrub = (^http:\\/\\/serw\\.clicksor\\.com\\/redir\\.php\\?url=|&InjectedParam=.+$)\r\n\r\n[suricata]\r\n# Notes on getting this to work check install_suricata function:\r\n# https://github.com/kevoreilly/CAPEv2/blob/master/installer/cape2.sh\r\n\r\nenabled = yes\r\n#Runmode \"cli\" or \"socket\"\r\nrunmode = socket\r\n#Outputfiles\r\n# if evelog is specified, it will be used instead of the per-protocol log files\r\nevelog = eve.json\r\n\r\n# per-protocol log files\r\n#\r\n#alertlog = alert.json\r\n#httplog = http.json\r\n#tlslog = tls.json\r\n#sshlog = ssh.json\r\n#dnslog = dns.json\r\n\r\nfileslog = files-json.log\r\nfilesdir = files\r\n# Amount of text to carve from plaintext files (bytes)\r\nbuffer = 8192\r\n#Used for creating an archive of extracted files\r\n7zbin = /usr/bin/7z\r\nzippass = infected\r\n##Runmode \"cli\" options\r\nbin = /usr/bin/suricata\r\nconf = /etc/suricata/suricata.yaml\r\n##Runmode \"socket\" Options\r\nsocket_file = /tmp/suricata-command.socket\r\n\r\n# Community\r\n[cif]\r\nenabled = no\r\n# url of CIF server\r\nurl = https://your-cif-server.com/api\r\n# CIF API key\r\nkey = your-api-key-here\r\n# time to wait for server to respond, in seconds\r\ntimeout = 60\r\n# minimum confidence level of returned results:\r\n# 25=not confident, 50=automated, 75=somewhat confident, 85=very confident, 95=certain\r\n# defaults to 85\r\nconfidence = 85\r\n# don't log queries by default, set to 'no' to log queries\r\nnolog = yes\r\n# max number of results per query\r\nper_lookup_limit = 20\r\n# max number of queries per analysis\r\nper_analysis_limit = 200\r\n\r\n[CAPE]\r\nenabled = yes\r\n# Ex targetinfo standalone module\r\ntargetinfo = yes\r\n# Ex dropped standalone module\r\ndropped = yes\r\n# Ex procdump standalone module\r\nprocdump = yes\r\n# Amount of text to carve from plaintext files (bytes)\r\nbuffer = 8192\r\n# Process files not bigger than value below in Mb. We saw that after 90Mb it has biggest delay\r\nmax_file_size = 90\r\n# Scan for UserDB.TXT signature matches\r\nuserdb_signature = no\r\n# https://capev2.readthedocs.io/en/latest/usage/patterns_replacement.html\r\nreplace_patterns = no\r\n\r\n# Deduplicate screenshots - You need to install dependency ImageHash>=4.3.1\r\n[deduplication]\r\n#\r\n# Available hashs functions:\r\n#  ahash:      Average hash\r\n#  phash:      Perceptual hash\r\n#  dhash:      Difference hash\r\n#  whash-haar: Haar wavelet hash\r\n#  whash-db4:  Daubechies wavelet hash\r\nenabled = no\r\nhashmethod = ahash\r\n\r\n# Community\r\n[vba2graph]\r\n# Mac - brew install graphviz\r\n# Ubuntu - sudo apt-get install graphviz\r\n# Arch - sudo pacman -S graphviz+\r\n# sudo poetry run pip install networkx>=2.1 graphviz>=0.8.4 pydot>=1.2.4\r\nenabled = yes\r\non_demand = yes\r\n\r\n# ja3 finger print db with descriptions\r\n# https://github.com/trisulnsm/trisul-scripts/blob/master/lua/frontend_scripts/reassembly/ja3/prints/ja3fingerprint.json\r\n[ja3]\r\nja3_path = data/ja3/ja3fingerprint.json\r\n\r\n[maliciousmacrobot]\r\n# https://maliciousmacrobot.readthedocs.io\r\n# Install mmbot\r\n#   sudo poetry run pip install mmbot\r\n# Create/Set required paths\r\n# Populate benign_path and malicious_path with appropriate macro maldocs (try the tests/samples in the github)\r\n#   https://github.com/egaus/MaliciousMacroBot/tree/master/tests/samples\r\n# Create modeldata.pickle with your maldocs (this does not append to the model, it overwrites it)\r\n#\r\n#   mmb = MaliciousMacroBot(benign_path, malicious_path, model_path, retain_sample_contents=False)\r\n#   result = mmb.mmb_init_model(modelRebuild=True)\r\n#\r\n# Copy your model file and vocab.txt to your model_path\r\nenabled = no\r\nbenign_path = /opt/cuckoo/data/mmbot/benign\r\nmalicious_path = /opt/cuckoo/data/mmbot/malicious\r\nmodel_path = /opt/cuckoo/data/mmbot/model\r\n\r\n# Community\r\n[xlsdeobf]\r\n# poetry run pip install git+https://github.com/DissectMalware/XLMMacroDeobfuscator.git\r\nenabled = no\r\non_demand = no\r\n\r\n# Community\r\n[boxjs]\r\nenabled = no\r\ntimeout = 60\r\nurl = http://your_super_box_js:9000\r\n\r\n# Community\r\n# Extractors\r\n[mwcp]\r\nenabled = yes\r\nmodules_path = modules/processing/parsers/mwcp/\r\n\r\n# Community\r\n[ratdecoders]\r\nenabled = yes\r\nmodules_path = modules/processing/parsers/RATDecoders/\r\n\r\n# Community\r\n[malduck]\r\nenabled = yes\r\nmodules_path = modules/processing/parsers/malduck/\r\n\r\n[CAPE_extractors]\r\nenabled = yes\r\n# Must ends with /\r\nmodules_path = modules/processing/parsers/CAPE/\r\n\r\n# Community\r\n[reversinglabs]\r\nenabled = no\r\nurl =\r\nkey =\r\n\r\n# Community\r\n[script_log_processing]\r\nenabled = yes\r\n\r\n# Community\r\n# Dump PE's overlay info\r\n[overlay]\r\nenabled = no\r\n\r\n# Community\r\n[floss]\r\nenabled = no\r\non_demand = yes\r\nstatic_strings = no\r\nstack_strings = yes\r\ndecoded_strings = yes\r\ntight_strings = yes\r\nmin_length = 5\r\n# Download FLOSS signatures from https://github.com/mandiant/flare-floss/tree/master/sigs\r\nsigs_path = data/flare-signatures\r\n\r\n[html_scraper]\r\nenabled = no\r\n```\nComment: Do git pull, there were some platform related fixed recently, restar\r\ncervices and try again, maybe is something to have due to different arches,\r\nis ages since I don't run Linux, only pure windows.but so far you see\r\nmain_task_id on worker options to any task?\r\n\r\nEl vie, 5 jul 2024, 19:12, Joseph ***@***.***> escribi\u00f3:\r\n\r\n> So the setup is as follows:\r\n>\r\n> I have 2 nodes, one master and one worker. The master is working\r\n> completely fine. The worker is not successfully finishing processing when I\r\n> submit work to its windows machine. It is finishing processing properly\r\n> when I submit a sample to the linux machine running on the worker though.\r\n>\r\n> The master is running an instance of mongoDB that I point the worker to in\r\n> the configuration files. The master is also running the cape-dist service.\r\n> As far as custom configurations, I have a single windows 10 21h2 and single\r\n> linux (ubuntu 22) machine on the worker. For the processing configuration,\r\n> I have it setup like this same as on the master:\r\n>\r\n> # Enable or disable the available processing modules [on/off].\r\n> # If you add a custom processing module to your Cuckoo setup, you have to add\r\n> # a dedicated entry in this file, or it won't be executed.\r\n> # You can also add additional options under the section of your module and\r\n> # they will be available in your Python class.\r\n>\r\n> # Community\r\n> # exclude files that doesn't match safe extension and ignore their files from processing inside of other modules like CAPE.py\r\n> [antiransomware]\r\n> enabled = no\r\n> # ignore all files with extension found more than X\r\n> skip_number = 30\r\n>\r\n> # Community\r\n> [curtain]\r\n> enabled = no\r\n>\r\n> # Community\r\n> [sysmon]\r\n> enabled = no\r\n>\r\n> [analysisinfo]\r\n> enabled = yes\r\n>\r\n> # Community\r\n> # FLARE capa -> to update rules utils/community.py -cr\r\n> # install -> cd /tmp && git clone --recurse-submodules https://github.com/fireeye/capa.git && cd capa && git submodule update --init rules && python -m poetry run pip install .\r\n> [flare_capa]\r\n> enabled = no\r\n> # Generate it always or generate on demand only(user need to click button to generate it), still should be enabled to use this feature on demand\r\n> on_demand = no\r\n> # Analyze binary payloads\r\n> static = no\r\n> # Analyze CAPE payloads\r\n> cape = no\r\n> # Analyze ProcDump\r\n> procdump = no\r\n>\r\n> # Community\r\n> [decompression]\r\n> enabled = no\r\n>\r\n> [dumptls]\r\n> enabled = no\r\n>\r\n> [amsi]\r\n> enabled = no\r\n>\r\n> [behavior]\r\n> enabled = yes\r\n> # Toggle specific modules within the BehaviorAnalysis class\r\n> anomaly = yes\r\n> processtree = yes\r\n> summary = yes\r\n> enhanced = yes\r\n> encryptedbuffers = yes\r\n> # Should the server use a compressed version of behavioural logs? This helps\r\n> # in saving space in Mongo, accelerates searchs and reduce the size of the\r\n> # final JSON report.\r\n> loop_detection = no\r\n> # The number of calls per process to process. 0 switches the limit off.\r\n> # 10000 api calls should be processed in less than 2 minutes\r\n> analysis_call_limit = 0\r\n> # Use ram to boost processing speed. You will need more than 20GB of RAM for this feature.\r\n> # Please read \"performance\" section in the documentation.\r\n> ram_boost = no\r\n> # https://capev2.readthedocs.io/en/latest/usage/patterns_replacement.html\r\n> replace_patterns = no\r\n>\r\n> [strace]\r\n> enabled = yes\r\n> # Toggle specific modules within the StraceAnalysis class\r\n> processtree = yes\r\n> platform = linux\r\n>\r\n> [debug]\r\n> enabled = yes\r\n>\r\n> [detections]\r\n> enabled = yes\r\n> # Signatures\r\n> behavior = yes\r\n> yara = yes\r\n> suricata = yes\r\n> virustotal = no\r\n> clamav = no\r\n>\r\n> # ... but this mechanism may still be switched on\r\n> [procmemory]\r\n> enabled = yes\r\n> strings = yes\r\n>\r\n> [procmon]\r\n> enabled = no\r\n>\r\n> [memory]\r\n> enabled = no\r\n>\r\n> [usage]\r\n> enabled = no\r\n>\r\n> [network]\r\n> enabled = yes\r\n> sort_pcap = no\r\n> # DNS whitelisting to ignore domains/IPs configured in network.py\r\n> # This should be disabled when utilizing InetSim/Remnux as we end up resolving\r\n> # the IP from fakedns which would then remove all domains associated with that\r\n> # resolved IP\r\n> dnswhitelist = yes\r\n> # additional entries\r\n> dnswhitelist_file = extra/whitelist_domains.txt\r\n> ipwhitelist = yes\r\n> ipwhitelist_file = extra/whitelist_ips.txt\r\n> network_passlist = no\r\n> network_passlist_file = extra/whitelist_network.txt\r\n>\r\n> # Requires geoip2 and maxmind database\r\n> country_lookup = no\r\n> # Register and download for free from\r\n> # https://www.maxmind.com/ or https://ipinfo.io/\r\n> # For maxmind use: GeoLite2 Country\r\n> # For ipinfo use: Free IP to Country + IP to ASN\r\n> maxmind_database = data/GeoLite2-Country.mmdb\r\n>\r\n> [url_analysis]\r\n> enabled = yes\r\n> # Enable a WHOIS lookup for the target domain of a URL analyses\r\n> whois = yes\r\n>\r\n> [strings]\r\n> enabled = yes\r\n> on_demand = no\r\n> nullterminated_only = no\r\n> minchars = 5\r\n>\r\n> # Community\r\n> [trid]\r\n> # Specify the path to the trid binary to use for static analysis.\r\n> enabled = no\r\n> identifier = data/trid/trid\r\n> definitions = data/trid/triddefs.trd\r\n>\r\n> [die]\r\n> # Detect it Easy\r\n> enabled = no\r\n> binary = /usr/bin/diec\r\n>\r\n> [virustotal]\r\n> enabled = yes\r\n> on_demand = no\r\n> timeout = 60\r\n> # remove empty detections\r\n> remove_empty = yes\r\n> # Add your VirusTotal API key here. The default API key, kindly provided\r\n> # by the VirusTotal team, should enable you with a sufficient throughput\r\n> # and while being shared with all our users, it shouldn't affect your use.\r\n> key = a0283a2c3d55728300d064874239b5346fb991317e8449fe43c902879d758088\r\n> do_file_lookup = yes\r\n> do_url_lookup = yes\r\n> urlscrub = (^http:\\/\\/serw\\.clicksor\\.com\\/redir\\.php\\?url=|&InjectedParam=.+$)\r\n>\r\n> [suricata]\r\n> # Notes on getting this to work check install_suricata function:\r\n> # https://github.com/kevoreilly/CAPEv2/blob/master/installer/cape2.sh\r\n>\r\n> enabled = yes\r\n> #Runmode \"cli\" or \"socket\"\r\n> runmode = socket\r\n> #Outputfiles\r\n> # if evelog is specified, it will be used instead of the per-protocol log files\r\n> evelog = eve.json\r\n>\r\n> # per-protocol log files\r\n> #\r\n> #alertlog = alert.json\r\n> #httplog = http.json\r\n> #tlslog = tls.json\r\n> #sshlog = ssh.json\r\n> #dnslog = dns.json\r\n>\r\n> fileslog = files-json.log\r\n> filesdir = files\r\n> # Amount of text to carve from plaintext files (bytes)\r\n> buffer = 8192\r\n> #Used for creating an archive of extracted files\r\n> 7zbin = /usr/bin/7z\r\n> zippass = infected\r\n> ##Runmode \"cli\" options\r\n> bin = /usr/bin/suricata\r\n> conf = /etc/suricata/suricata.yaml\r\n> ##Runmode \"socket\" Options\r\n> socket_file = /tmp/suricata-command.socket\r\n>\r\n> # Community\r\n> [cif]\r\n> enabled = no\r\n> # url of CIF server\r\n> url = https://your-cif-server.com/api\r\n> # CIF API key\r\n> key = your-api-key-here\r\n> # time to wait for server to respond, in seconds\r\n> timeout = 60\r\n> # minimum confidence level of returned results:\r\n> # 25=not confident, 50=automated, 75=somewhat confident, 85=very confident, 95=certain\r\n> # defaults to 85\r\n> confidence = 85\r\n> # don't log queries by default, set to 'no' to log queries\r\n> nolog = yes\r\n> # max number of results per query\r\n> per_lookup_limit = 20\r\n> # max number of queries per analysis\r\n> per_analysis_limit = 200\r\n>\r\n> [CAPE]\r\n> enabled = yes\r\n> # Ex targetinfo standalone module\r\n> targetinfo = yes\r\n> # Ex dropped standalone module\r\n> dropped = yes\r\n> # Ex procdump standalone module\r\n> procdump = yes\r\n> # Amount of text to carve from plaintext files (bytes)\r\n> buffer = 8192\r\n> # Process files not bigger than value below in Mb. We saw that after 90Mb it has biggest delay\r\n> max_file_size = 90\r\n> # Scan for UserDB.TXT signature matches\r\n> userdb_signature = no\r\n> # https://capev2.readthedocs.io/en/latest/usage/patterns_replacement.html\r\n> replace_patterns = no\r\n>\r\n> # Deduplicate screenshots - You need to install dependency ImageHash>=4.3.1\r\n> [deduplication]\r\n> #\r\n> # Available hashs functions:\r\n> #  ahash:      Average hash\r\n> #  phash:      Perceptual hash\r\n> #  dhash:      Difference hash\r\n> #  whash-haar: Haar wavelet hash\r\n> #  whash-db4:  Daubechies wavelet hash\r\n> enabled = no\r\n> hashmethod = ahash\r\n>\r\n> # Community\r\n> [vba2graph]\r\n> # Mac - brew install graphviz\r\n> # Ubuntu - sudo apt-get install graphviz\r\n> # Arch - sudo pacman -S graphviz+\r\n> # sudo poetry run pip install networkx>=2.1 graphviz>=0.8.4 pydot>=1.2.4\r\n> enabled = yes\r\n> on_demand = yes\r\n>\r\n> # ja3 finger print db with descriptions\r\n> # https://github.com/trisulnsm/trisul-scripts/blob/master/lua/frontend_scripts/reassembly/ja3/prints/ja3fingerprint.json\r\n> [ja3 <https://github.com/trisulnsm/trisul-scripts/blob/master/lua/frontend_scripts/reassembly/ja3/prints/ja3fingerprint.json%5Bja3>]\r\n> ja3_path = data/ja3/ja3fingerprint.json\r\n>\r\n> [maliciousmacrobot]\r\n> # https://maliciousmacrobot.readthedocs.io\r\n> # Install mmbot\r\n> #   sudo poetry run pip install mmbot\r\n> # Create/Set required paths\r\n> # Populate benign_path and malicious_path with appropriate macro maldocs (try the tests/samples in the github)\r\n> #   https://github.com/egaus/MaliciousMacroBot/tree/master/tests/samples\r\n> # Create modeldata.pickle with your maldocs (this does not append to the model, it overwrites it)\r\n> #\r\n> #   mmb = MaliciousMacroBot(benign_path, malicious_path, model_path, retain_sample_contents=False)\r\n> #   result = mmb.mmb_init_model(modelRebuild=True)\r\n> #\r\n> # Copy your model file and vocab.txt to your model_path\r\n> enabled = no\r\n> benign_path = /opt/cuckoo/data/mmbot/benign\r\n> malicious_path = /opt/cuckoo/data/mmbot/malicious\r\n> model_path = /opt/cuckoo/data/mmbot/model\r\n>\r\n> # Community\r\n> [xlsdeobf]\r\n> # poetry run pip install git+https://github.com/DissectMalware/XLMMacroDeobfuscator.git\r\n> enabled = no\r\n> on_demand = no\r\n>\r\n> # Community\r\n> [boxjs]\r\n> enabled = no\r\n> timeout = 60\r\n> url = http://your_super_box_js:9000\r\n>\r\n> # Community\r\n> # Extractors\r\n> [mwcp]\r\n> enabled = yes\r\n> modules_path = modules/processing/parsers/mwcp/\r\n>\r\n> # Community\r\n> [ratdecoders]\r\n> enabled = yes\r\n> modules_path = modules/processing/parsers/RATDecoders/\r\n>\r\n> # Community\r\n> [malduck]\r\n> enabled = yes\r\n> modules_path = modules/processing/parsers/malduck/\r\n>\r\n> [CAPE_extractors]\r\n> enabled = yes\r\n> # Must ends with /\r\n> modules_path = modules/processing/parsers/CAPE/\r\n>\r\n> # Community\r\n> [reversinglabs]\r\n> enabled = no\r\n> url =\r\n> key =\r\n>\r\n> # Community\r\n> [script_log_processing]\r\n> enabled = yes\r\n>\r\n> # Community\r\n> # Dump PE's overlay info\r\n> [overlay]\r\n> enabled = no\r\n>\r\n> # Community\r\n> [floss]\r\n> enabled = no\r\n> on_demand = yes\r\n> static_strings = no\r\n> stack_strings = yes\r\n> decoded_strings = yes\r\n> tight_strings = yes\r\n> min_length = 5\r\n> # Download FLOSS signatures from https://github.com/mandiant/flare-floss/tree/master/sigs\r\n> sigs_path = data/flare-signatures\r\n>\r\n> [html_scraper]\r\n> enabled = no\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2208#issuecomment-2211177811>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH33UO7SA4YNM4AV3HJLZK3HW5AVCNFSM6AAAAABKJ7O5R6VHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDEMJRGE3TOOBRGE>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: any update here?\nComment: Ah yes apologies, got wrapped up in work. Did a gitpull and it fixed things up. Got everything working now. Thank you so much!\nComment: cool, glad to hear that",
+  "Title: Requirements.txt version too old for python 3.12\nBody: Please answer the following questions for yourself before submitting an issue.\r\n\r\n- [ ok] I am running the latest version: yes\r\n- [ok] I did read the README!: yes\r\n- [ok ] I checked the documentation and found no answer: still have problem\r\n- [ok] I checked to make sure that this issue has not already been filed\r\n- [ ok] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ ok] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\nNo problem at requirements.txt\r\nI using x64 machine and not a VM\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\nProblems while installing requirements.txt with Python 3.12 Example: ERROR: Could not find a version that satisfies the requirement python-flirt==0.8.6 (from versions: 0.8.9, 0.8.10)\r\nERROR: No matching distribution found for python-flirt==0.8.6\r\npsycopg2-binary==2.9.7 is not installing but psycopg2-binary==2.9.9 have no problem\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. step 1 install clean Windows 11 machine\r\n2. step 2 do pip install -r requirements.txt at python 3.12\r\n3. you get it same thing\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\nGit version git version 2.43.0.windows.1\r\n| OS version       | Windows 11\r\n\r\n## Failure Logs\r\nERROR: Could not find a version that satisfies the requirement python-flirt==0.8.6 (from versions: 0.8.9, 0.8.10)\r\nERROR: No matching distribution found for python-flirt==0.8.6\r\n\nComment: that should be external library dependency, as that is not in `pyproject.toml` so you can use `poetry` to install it just fine\nComment: Okay you can close the issue if you want. But if someone wants to compile like that it still going to get that issue.\nComment: Well we can't control 3rd party softwares you can go and complain to them, we just use it, I don't have time to figurate what software is that uses that deps\nComment: @HydraDragonAntivirus These commands may help you. I'm on Ubuntu 24.04.1 and it uses python 3.12 by default but you can downgrade to 3.10+ and then you can run pip3 install -r requirements.txt just fine. Here's some of the commands I used:\r\n\r\n```\r\nsudo add-apt-repository ppa:deadsnakes/ppa\r\nsudo apt update\r\nsudo apt-get install python3.10 python3.10-distutils python3.10-dev -y\r\nsudo update-alternatives --install /usr/bin/python3 python3 /usr/bin/python3.10 1\r\ncurl https://bootstrap.pypa.io/get-pip.py -o get-pip.py\r\nsudo python3 get-pip.py\r\n```\nComment: you don't need that at all. just change from 3.10 to 3.12 here https://github.com/kevoreilly/CAPEv2/blob/master/pyproject.toml#L9 and run `poetry lock --no-update`. Also if use use requirements.txt instead of poetry you need to edit all the systemd files, as they are prepared to be used with poetry\nComment: i have updated that, now it uses >=3.10, <4",
+  "Title: Add an option to fetch machine VNC port in machine view API\nBody: This PR adds the virtual machine's VNC port to the machine view API route, only when the corresponding flag is enabled in the route's configuration.\r\n\r\nThis allows users to dynamically connect to a virtual machine by querying the machine view API for the VNC port and using the provided port for the connection.\r\n\r\n\nComment: hello, thank you, can you allow edit to maintainers? `fetch_vnc_port = yes` need to uncomment this and set to no + some other changes\nComment: Unfortunately, it looks like this option isn't available when the fork is inside an organization...\r\nI\u2019ve made the configuration changes you requested, are there any other changes you'd like me to make? :)\r\n\r\n\nComment: the port is stored to options of the task, better would be to just get task details and parse options, i will change that once i have some spare time one of this days\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/de34cf5aa6054104d149fb5319317f10fb30e1c4/lib/cuckoo/core/database.py#L741\nComment: i still don't have permissions to edit your code\nComment: I can't add write permissions to maintainers since this fork is within our organization - it looks like this is a well-known issue:\r\nhttps://github.com/orgs/community/discussions/5634\r\n\r\nWould you rather I close this PR and you open a new one?\r\n\nComment: i guess so, i will just add func to database get_vnc_port, similar to set_vnc_port as port is added to option so you don't need to go and check the vm configuration\nComment: btw i see one issue here, why do you check the machine port using machine view? i mean, port can be changed per task, so is better to use `task_view` to get the port as it already exposed there. i just try to clarify \nComment: That's a good point. I initially thought it made sense for the VNC port to be part of the machine view since it's a property of the machine, but I agree that querying this data from the task itself makes a lot of sense...\r\n\r\nSince this feature is relatively new, I didn't notice that the port is already available in the task view. I think I'll use the options from the task view to fetch the VNC port.\r\n\r\nThis PR is no longer necessary, so I'll close it. Thanks for your help!\nComment: thats fine, well im open for new features, i just need to understand them :)",
+  "Title: CuckooCriticalError: Error initializing machines\nBody: ![image](https://github.com/kevoreilly/CAPEv2/assets/95679389/233457c7-9f19-4089-a0b2-596137c6fb79)\r\nhow i can fix this error knowing that these are my conf files \r\n[conf.zip](https://github.com/user-attachments/files/16067414/conf.zip)\r\n\nComment: It's hard to know what is going on if you don't fill out the issue template.\r\n\r\nHow did you install, using `cape2.sh`? Did you follow the docs for [installing](https://capev2.readthedocs.io/en/latest/installation/host/installation.html)?\nComment: yes always fill the template, to not force us asking the same questions over and over. of you using vmware, that is not maintained by us so no idea, we only officially support KVM. the rest is on community\nComment: closed as abandoned issue",
+  "Title: yara-x-metadata\nBody: None\nComment: yara-x >=0.4 supports metadata",
+  "Title: Fix permissions.py module causing analysis failure\nBody: This change allows `permissions` to be enabled in `auxiliary.conf` and not break analysis. Currently, when `self.options.get(\"permissions\", \"\")` returns `\"\"` in [permissions.py](https://github.com/kevoreilly/CAPEv2/blob/bc671524cc1a7f05481cb80ddb3d4f3a6749dd02/analyzer/windows/modules/auxiliary/permissions.py#L32), a `[Errno 13] Permission denied` occurs. Issue #2197 has more detailed information. This was an issue on Windows 10 and 11 machines.\r\n\r\nThe analysis breaking behavior occurred when `locations` was set to `\"\"` as a return from `self.options.get(\"permissions\", \"\")` and then again set to `locations = locations.split(\"|\")`, creating a list. As lists are iterable, the for loop uses the empty string as a `location`. I am not entirely sure what happens on the Windows machine, but my assumption is that permissions of the CAPE-created temp directory are changed in this scenario.",
+  "Title: modules.packages.exe unable to execute initial process\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ x] I am running the latest version\r\n- [ x] I did read the README!\r\n- [ x] I checked the documentation and found no answer\r\n- [ x] I checked to make sure that this issue has not already been filed\r\n- [ x I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x ] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nI am trying to submit some .exe files to my windows 10 vm for analysis. I am expecting the analysis to finish without exceptions being thrown.\r\n\r\n# Current Behavior\r\n\r\nI get some analysis information back, for example some network traffic and some signatures that were detected, but looking at the analysis log I can see that the package exe fails to execute. The log file is attached.\r\n\r\nI have ensured I am running 32 bit python and the task set up to run the agent is running with the highest privileges. \r\nIf it is any consequence, figure it might be. I am using Windows 10 22H2, but after reading this issue figured it wasn't a big issue:\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/issues/1376\r\n\r\n# Failure Information (for bugs)\r\n\r\n## Steps to Reproduce\r\n\r\n1. install CAPE and windows 10 22H2 vm and follow the setup documented on the capev2 docs\r\n2. submit an exe sample from malware bazaar (one I have used for my testing: https://bazaar.abuse.ch/sample/e80d50169fc57630d4b0c5c53a321ccd86797779bababefff31268224f1a4163/)\r\n3. Look at analysis log in the CAPE UI\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | 8727513a8c0494bd567ebddb9a5ca2874812ba0d\r\n| OS version       | Windows 10 vm on Ubuntu 22 server\r\n\r\n## Failure Logs\r\n\r\nanalysis log:\r\n```\r\n2024-07-01 14:07:21,558 [root] INFO: Date set to: 20240701T16:52:26, timeout set to: 200\r\n2024-07-01 16:52:30,009 [root] DEBUG: Target: C:\\Users\\joe\\AppData\\Local\\Temp\\e80d50169fc57630d4b0.exe\r\n2024-07-01 16:52:30,009 [root] DEBUG: Starting analyzer from: C:\\tmp5vef11xa\r\n2024-07-01 16:52:30,009 [root] DEBUG: Storing results at: C:\\VtdkEWY\r\n2024-07-01 16:52:30,017 [root] DEBUG: Pipe server name: \\\\.\\PIPE\\OLTdzfgwB\r\n2024-07-01 16:52:30,017 [root] DEBUG: Python path: C:\\Users\\joe\\AppData\\Local\\Programs\\Python\\Python310-32\r\n2024-07-01 16:52:30,017 [root] INFO: analysis running as an admin\r\n2024-07-01 16:52:30,020 [root] INFO: analysis package specified: \"exe\"\r\n2024-07-01 16:52:30,020 [root] DEBUG: importing analysis package module: \"modules.packages.exe\"...\r\n2024-07-01 16:52:33,502 [root] DEBUG: imported analysis package \"exe\"\r\n2024-07-01 16:52:33,502 [root] DEBUG: initializing analysis package \"exe\"...\r\n2024-07-01 16:52:33,505 [root] DEBUG: Created directory C:\\Users\\joe\\AppData\\Local\\Temp\\e80d50169fc57630d4b0.exe\r\n2024-07-01 16:52:33,505 [lib.common.common] INFO: wrapping\r\n2024-07-01 16:52:33,505 [lib.core.compound] INFO: C:\\Users\\joe\\AppData\\Local\\Temp already exists, skipping creation\r\n2024-07-01 16:52:33,505 [lib.common.abstracts] DEBUG: new curdir: C:\\Users\\joe\\AppData\\Local\\Temp\r\n2024-07-01 16:52:33,505 [lib.common.abstracts] DEBUG: newpath: C:\\Users\\joe\\AppData\\Local\\Temp\\e80d50169fc57630d4b0.exe\r\n2024-07-01 16:52:33,514 [root] DEBUG: New location of moved file: C:\\Users\\joe\\AppData\\Local\\Temp\\e80d50169fc57630d4b0.exe\r\n2024-07-01 16:52:33,526 [root] INFO: Analyzer: Package modules.packages.exe does not specify a DLL option\r\n2024-07-01 16:52:33,529 [root] INFO: Analyzer: Package modules.packages.exe does not specify a DLL_64 option\r\n2024-07-01 16:52:33,529 [root] INFO: Analyzer: Package modules.packages.exe does not specify a loader option\r\n2024-07-01 16:52:33,529 [root] INFO: Analyzer: Package modules.packages.exe does not specify a loader_64 option\r\n2024-07-01 16:52:34,722 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.amsi\"...\r\n2024-07-01 16:52:43,769 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.amsi_collector\"...\r\n2024-07-01 16:52:43,941 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.autoruns\"...\r\n2024-07-01 16:52:45,222 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.browser\"...\r\n2024-07-01 16:52:45,300 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.curtain\"...\r\n2024-07-01 16:52:45,410 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.digisig\"...\r\n2024-07-01 16:52:45,503 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.disguise\"...\r\n2024-07-01 16:52:45,613 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.during_script\"...\r\n2024-07-01 16:52:45,628 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.evtx\"...\r\n2024-07-01 16:52:45,644 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.filepickup\"...\r\n2024-07-01 16:52:45,644 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.html_scraper\"...\r\n2024-07-01 16:52:49,160 [modules.auxiliary.html_scraper] ERROR: No module named 'selenium'\r\n2024-07-01 16:52:49,160 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.human\"...\r\n2024-07-01 16:52:49,239 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.permissions\"...\r\n2024-07-01 16:52:49,271 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.pre_script\"...\r\n2024-07-01 16:52:49,271 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.procmon\"...\r\n2024-07-01 16:52:49,284 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.recentfiles\"...\r\n2024-07-01 16:52:49,363 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.screenshots\"...\r\n2024-07-01 16:52:49,378 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageChops'\r\n2024-07-01 16:52:49,378 [lib.api.screenshot] ERROR: No module named 'PIL'\r\n2024-07-01 16:52:49,378 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.sysmon\"...\r\n2024-07-01 16:52:49,456 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.tlsdump\"...\r\n2024-07-01 16:52:49,456 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.usage\"...\r\n2024-07-01 16:52:49,504 [root] DEBUG: Initialized auxiliary module \"AMSICollector\"\r\n2024-07-01 16:52:49,504 [root] DEBUG: Trying to start auxiliary module \"AMSICollector\"...\r\n2024-07-01 16:52:49,738 [root] DEBUG: Started auxiliary module AMSICollector\r\n2024-07-01 16:52:49,738 [root] WARNING: Auxiliary module Autoruns was not implemented: 'Config' object has no attribute 'autoruns'\r\n2024-07-01 16:52:49,753 [root] DEBUG: Initialized auxiliary module \"Browser\"\r\n2024-07-01 16:52:49,753 [root] DEBUG: Trying to start auxiliary module \"Browser\"...\r\n2024-07-01 16:52:49,880 [root] DEBUG: Started auxiliary module Browser\r\n2024-07-01 16:52:49,880 [root] DEBUG: Initialized auxiliary module \"Curtain\"\r\n2024-07-01 16:52:49,880 [root] DEBUG: Trying to start auxiliary module \"Curtain\"...\r\n2024-07-01 16:52:50,144 [root] DEBUG: Started auxiliary module Curtain\r\n2024-07-01 16:52:50,144 [root] DEBUG: Initialized auxiliary module \"DigiSig\"\r\n2024-07-01 16:52:50,144 [root] DEBUG: Trying to start auxiliary module \"DigiSig\"...\r\n2024-07-01 16:52:50,144 [modules.auxiliary.digisig] DEBUG: Checking for a digital signature\r\n2024-07-01 16:52:55,566 [modules.auxiliary.digisig] ERROR: Traceback (most recent call last):\r\n  File \"C:\\tmp5vef11xa\\modules\\auxiliary\\digisig.py\", line 134, in start\r\n    errmsg = b\" \".join(err.split(b\":\", 1)[1].split())\r\nIndexError: list index out of range\r\nTraceback (most recent call last):\r\n  File \"C:\\tmp5vef11xa\\modules\\auxiliary\\digisig.py\", line 134, in start\r\n    errmsg = b\" \".join(err.split(b\":\", 1)[1].split())\r\nIndexError: list index out of range\r\n2024-07-01 16:52:55,581 [root] DEBUG: Started auxiliary module DigiSig\r\n2024-07-01 16:52:55,581 [root] DEBUG: Initialized auxiliary module \"Disguise\"\r\n2024-07-01 16:52:55,581 [root] DEBUG: Trying to start auxiliary module \"Disguise\"...\r\n2024-07-01 16:52:56,785 [modules.auxiliary.disguise] INFO: Disguising GUID to bf890013-f5ea-4abb-9b7f-6e31f139269f\r\n2024-07-01 16:52:56,785 [root] DEBUG: Started auxiliary module Disguise\r\n2024-07-01 16:52:56,785 [root] DEBUG: Initialized auxiliary module \"Evtx\"\r\n2024-07-01 16:52:56,785 [root] DEBUG: Trying to start auxiliary module \"Evtx\"...\r\n2024-07-01 16:52:56,956 [root] DEBUG: Started auxiliary module Evtx\r\n2024-07-01 16:52:56,956 [root] DEBUG: Initialized auxiliary module \"FilePickup\"\r\n2024-07-01 16:52:56,956 [root] DEBUG: Trying to start auxiliary module \"FilePickup\"...\r\n2024-07-01 16:52:56,956 [root] DEBUG: Started auxiliary module FilePickup\r\n2024-07-01 16:52:56,956 [root] DEBUG: Initialized auxiliary module \"HtmlScraper\"\r\n2024-07-01 16:52:56,956 [root] DEBUG: Trying to start auxiliary module \"HtmlScraper\"...\r\n2024-07-01 16:52:57,082 [root] DEBUG: Started auxiliary module HtmlScraper\r\n2024-07-01 16:52:58,268 [root] DEBUG: Initialized auxiliary module \"Human\"\r\n2024-07-01 16:52:58,268 [root] DEBUG: Trying to start auxiliary module \"Human\"...\r\n2024-07-01 16:52:58,440 [root] DEBUG: Started auxiliary module Human\r\n2024-07-01 16:52:58,440 [root] DEBUG: Initialized auxiliary module \"Permissions\"\r\n2024-07-01 16:52:58,440 [root] DEBUG: Trying to start auxiliary module \"Permissions\"...\r\n2024-07-01 16:52:58,440 [root] DEBUG: Started auxiliary module Permissions\r\n2024-07-01 16:52:58,440 [root] DEBUG: Initialized auxiliary module \"Pre_script\"\r\n2024-07-01 16:52:58,440 [root] DEBUG: Trying to start auxiliary module \"Pre_script\"...\r\n2024-07-01 16:52:58,440 [root] DEBUG: Started auxiliary module Pre_script\r\n2024-07-01 16:52:58,440 [root] DEBUG: Initialized auxiliary module \"Procmon\"\r\n2024-07-01 16:52:58,440 [root] DEBUG: Trying to start auxiliary module \"Procmon\"...\r\n2024-07-01 16:52:58,815 [root] DEBUG: Started auxiliary module Procmon\r\n2024-07-01 16:52:58,815 [root] DEBUG: Initialized auxiliary module \"RecentFiles\"\r\n2024-07-01 16:52:58,815 [root] DEBUG: Trying to start auxiliary module \"RecentFiles\"...\r\n2024-07-01 16:52:58,815 [root] DEBUG: Started auxiliary module RecentFiles\r\n2024-07-01 16:52:58,815 [root] DEBUG: Initialized auxiliary module \"Screenshots\"\r\n2024-07-01 16:52:58,815 [root] DEBUG: Trying to start auxiliary module \"Screenshots\"...\r\n2024-07-01 16:52:58,956 [modules.auxiliary.screenshots] WARNING: Python Image Library is not installed, screenshots are disabled\r\n2024-07-01 16:52:58,956 [root] DEBUG: Started auxiliary module Screenshots\r\n2024-07-01 16:52:58,956 [root] DEBUG: Initialized auxiliary module \"Sysmon\"\r\n2024-07-01 16:52:58,956 [root] DEBUG: Trying to start auxiliary module \"Sysmon\"...\r\n2024-07-01 16:52:58,956 [root] DEBUG: Started auxiliary module Sysmon\r\n2024-07-01 16:52:58,972 [root] DEBUG: Initialized auxiliary module \"TLSDumpMasterSecrets\"\r\n2024-07-01 16:52:58,972 [root] DEBUG: Trying to start auxiliary module \"TLSDumpMasterSecrets\"...\r\n2024-07-01 16:52:58,972 [modules.auxiliary.tlsdump] INFO: lsass.exe found, pid 592\r\n2024-07-01 16:53:18,831 [lib.api.process] INFO: Monitor config for <Process 592 lsass.exe>: C:\\tmp5vef11xa\\dll\\592.ini\r\n2024-07-01 16:53:18,988 [lib.api.process] INFO: Option 'tlsdump' with value '1' sent to monitor\r\n2024-07-01 16:53:18,988 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmp5vef11xa\\dll\\sqNcbRKb.dll, loader C:\\tmp5vef11xa\\bin\\DbbZopaS.exe\r\n2024-07-01 16:53:19,769 [root] DEBUG: Loader: Injecting process 592 with C:\\tmp5vef11xa\\dll\\sqNcbRKb.dll.\r\n2024-07-01 16:53:20,347 [root] DEBUG: 592: Python path set to 'C:\\Users\\joe\\AppData\\Local\\Programs\\Python\\Python310-32'.\r\n2024-07-01 16:53:20,956 [root] DEBUG: 592: TLS secret dump mode enabled.\r\n2024-07-01 16:53:22,472 [root] INFO: Disabling sleep skipping.\r\n2024-07-01 16:53:22,612 [root] DEBUG: 592: InternalYaraScan: Scanning 0x00007FFC844B0000, size 0x1f754e\r\n2024-07-01 16:53:22,863 [root] DEBUG: 592: InternalYaraScan hit: RtlInsertInvertedFunctionTable\r\n2024-07-01 16:53:23,003 [root] DEBUG: 592: RtlInsertInvertedFunctionTable 0x00007FFC844C090E, LdrpInvertedFunctionTableSRWLock 0x00007FFC8461D500\r\n2024-07-01 16:53:23,159 [root] DEBUG: 592: Monitor initialised: 64-bit capemon loaded in process 592 at 0x00007FFC487A0000, thread 2796, image base 0x00007FF746550000, stack from 0x000000CA28474000-0x000000CA28480000\r\n2024-07-01 16:53:23,302 [root] DEBUG: 592: Commandline: C:\\Windows\\system32\\lsass.exe\r\n2024-07-01 16:53:23,691 [root] DEBUG: 592: Hooked 5 functions\r\n2024-07-01 16:53:23,784 [root] DEBUG: InjectDllViaThread: Successfully injected Dll into process via RtlCreateUserThread.\r\n2024-07-01 16:53:23,878 [root] DEBUG: Successfully injected DLL C:\\tmp5vef11xa\\dll\\sqNcbRKb.dll.\r\n2024-07-01 16:53:24,646 [lib.api.process] INFO: Injected into 64-bit <Process 592 lsass.exe>\r\n2024-07-01 16:53:24,646 [root] DEBUG: Started auxiliary module TLSDumpMasterSecrets\r\n2024-07-01 16:53:24,646 [root] DEBUG: Initialized auxiliary module \"Usage\"\r\n2024-07-01 16:53:24,646 [root] DEBUG: Trying to start auxiliary module \"Usage\"...\r\n2024-07-01 16:53:25,706 [root] DEBUG: Started auxiliary module Usage\r\n2024-07-01 16:53:25,706 [root] DEBUG: Initialized auxiliary module \"During_script\"\r\n2024-07-01 16:53:25,706 [root] DEBUG: Trying to start auxiliary module \"During_script\"...\r\n2024-07-01 16:53:25,972 [root] DEBUG: 592: TLS 1.2 secrets logged to: C:\\VtdkEWY\\tlsdump\\tlsdump.log\r\n2024-07-01 16:53:26,082 [root] DEBUG: Started auxiliary module During_script\r\n2024-07-01 16:53:53,050 [root] INFO: Restarting WMI Service\r\n2024-07-01 16:54:04,316 [root] DEBUG: package modules.packages.exe does not support configure, ignoring\r\n2024-07-01 16:54:04,347 [root] WARNING: configuration error for package modules.packages.exe: error importing data.packages.exe: No module named 'data.packages'\r\n2024-07-01 16:54:04,347 [lib.core.compound] INFO: C:\\Users\\joe\\AppData\\Local\\Temp already exists, skipping creation\r\n2024-07-01 16:54:04,347 [lib.api.process] ERROR: Failed to execute process from path \"C:\\Users\\joe\\AppData\\Local\\Temp\\e80d50169fc57630d4b0.exe\" with arguments \"None\" (Error: Access is denied (ERROR_ACCESS_DENIED))\r\n2024-07-01 16:54:04,347 [root] INFO: You probably submitted the job with wrong package\r\nTraceback (most recent call last):\r\n  File \"C:\\tmp5vef11xa\\analyzer.py\", line 616, in run\r\n    pids = self.package.start(self.target)\r\n  File \"C:\\tmp5vef11xa\\modules\\packages\\exe.py\", line 37, in start\r\n    return self.execute(path, args, path)\r\n  File \"C:\\tmp5vef11xa\\lib\\common\\abstracts.py\", line 170, in execute\r\n    raise CuckooPackageError(\"Unable to execute the initial process, analysis aborted\")\r\nlib.common.exceptions.CuckooPackageError: Unable to execute the initial process, analysis aborted\r\n\r\nThe above exception was the direct cause of the following exception:\r\n\r\nTraceback (most recent call last):\r\n  File \"C:\\tmp5vef11xa\\analyzer.py\", line 1526, in <module>\r\n    success = analyzer.run()\r\n  File \"C:\\tmp5vef11xa\\analyzer.py\", line 620, in run\r\n    raise CuckooError(f'The package \"{self.package_name}\" start function raised an error: {e}') from e\r\nlib.common.exceptions.CuckooError: The package \"modules.packages.exe\" start function raised an error: Unable to execute the initial process, analysis aborted\r\n2024-07-01 16:54:04,425 [root] WARNING: Folder at path \"C:\\VtdkEWY\\debugger\" does not exist, skipping\r\n2024-07-01 16:54:04,425 [root] INFO: Uploading files at path \"C:\\VtdkEWY\\tlsdump\"\r\n2024-07-01 16:54:04,425 [lib.common.results] INFO: Uploading file C:\\VtdkEWY\\tlsdump\\tlsdump.log to tlsdump\\tlsdump.log; Size is 2192; Max size: 100000000\r\n2024-07-01 16:54:04,487 [root] INFO: Analysis completed\r\n```\nComment: It says access denied - I bet it's being blocked by windows defender. Try a benign exe to test that.\r\n\r\nBut the docs say 21h2 for good reason, 22h2 isn't supported. Much functionality just won't work, anything dependent on services injection is doomed.\nComment: Thank you for the clarification. Just tried a benign exe and it still didn't work. Going to create a VM with 21h2. Thanks!",
+  "Title: Fix write_files for non existing files\nBody: `write_files` was not working if `ExistingFileName` was `None`\r\n\r\n```\r\n            \"category\": \"filesystem\",\r\n            \"api\": \"NtCreateFile\",\r\n            \"status\": true,\r\n            \"return\": \"0x00000000\",\r\n            \"arguments\": [\r\n              {\r\n                \"name\": \"FileHandle\",\r\n                \"value\": \"0x00000a10\"\r\n              },\r\n              {\r\n                \"name\": \"DesiredAccess\",\r\n                \"value\": \"0x40100080\",\r\n                \"pretty_value\": \"GENERIC_WRITE|FILE_READ_ATTRIBUTES|SYNCHRONIZE\"\r\n              },\r\n              {\r\n                \"name\": \"FileName\",\r\n                \"value\": \"C:\\\\Users\\\\Bruno\\\\AppData\\\\Local\\\\Temp\\\\new_file\"\r\n              },\r\n              {\r\n                \"name\": \"CreateDisposition\",\r\n                \"value\": \"5\",\r\n                \"pretty_value\": \"FILE_OVERWRITE_IF\"\r\n              },\r\n              {\r\n                \"name\": \"ShareAccess\",\r\n                \"value\": \"1\",\r\n                \"pretty_value\": \"FILE_SHARE_READ\"\r\n              },\r\n              {\r\n                \"name\": \"FileAttributes\",\r\n                \"value\": \"0x00000000\"\r\n              },\r\n              {\r\n                \"name\": \"ExistedBefore\",\r\n                \"value\": \"no\"\r\n              },\r\n              {\r\n                \"name\": \"StackPivoted\",\r\n                \"value\": \"no\"\r\n              }\r\n            ],\r\n```",
+  "Title: Improve sample architecture detection\nBody: - Samples are no longer automatically tagged with the x86 tag if they are not architecture specific\r\n- Adds darwin inference for Macho-O samples; preventing Mach-O samples from being detonated on Windows VMs\r\n- Consolidates architecture prediction and platform determination code by moving it into the File object\r\n- Fixes a bug where PE32/PE32+ samples are always assigned x86/x64 tags\r\n- Adds tests to validate platform and architecture detection code\r\n- Disables magic type emulation for any PE that was not compiled for x86 or x64\nComment: Going to test this in our environment for a few days before marking as ready. Please feel free to provide feedback in the meantime.\nComment: thank you",
+  "Title: Add optional process.file_activities to link pid with files\nBody: None\nComment: I know capa isn't used in your implementation, but am aware of some of the linkages and see some activity from you guys on the capa repo, so wanted to make you aware that this change breaks the cape model defined in the current version of capa https://github.com/mandiant/capa/blob/master/capa/features/extractors/cape/models.py#L301\r\n\r\nEither the results shouldn't contain the empty dict by default (two different models now that have to be accounted for if the file_activites option is enabled which will just be implemented through Optional qualifiers) or (ideally) the capa model needs to be updated. I apologize that I am unable to open a PR.",
+  "Title: Fixed problem with not displaying HTTP response when inetsim is enabled\nBody: I have solved the problem where the IP address of the inetsim server was added to the ip_passlist when inetsim was enabled. I also fixed the issue where all SMTP/HTTP(S) response results were not output if even one hostname was included in the domain_passlist.\nComment: thank you",
+  "Title: Permissions module causing \"[Errno 13] Permission denied\"\nBody: Firstly, thank you for everyone who is keeping CAPEv2 going. I am creating this to help anyone else who comes across the same issue, just as in this recent issue [#2133](https://github.com/kevoreilly/CAPEv2/issues/2133). It appears that the Permissions module has been known to cause issues before, as seen with [#1376](https://github.com/kevoreilly/CAPEv2/issues/1376). \r\n\r\nWhen running a Windows 10/11 guest VM, enabling permissions in `auxiliary.conf` causes `[Errno 13] Permission denied` and prevents analysis' running. You will only have static analysis returned from the submission. Setting the value to `permissions = no` in `auxiliary.conf` fixes this. The snippet below from `analysis.log` are examples of the issues caused.\r\n\r\n```\r\n...\r\nTLSDumpMasterSecrets: [Errno 13] Permission denied: 'C:\\\\tmpz4cchxn6\\\\dll\\\\820.ini'\r\n...\r\n2024-06-30 00:53:40,937 [lib.api.process] INFO: Successfully executed process from path \"C\\Users\\UNKNOW~1\\AppData\\Local\\Temp\\21f4898537276a069129133a.exe\" with arguments \"\" with pid 1516\r\n2024-06-30 00:53:40,937 [lib.api.process] INFO: Monitor config for <Process 1516 21f4898537276a069129133a.exe>: C:\\tmpz4cchxn6\\dll\\1516.ini\r\n2024-06-30 00:53:40,984 [root] INFO: You probably submitted the job with wrong package\r\nTraceback (most recent call last):\r\n  File \"C:\\tmpz4cchxn6\\analyzer.py\", line 612, in run\r\n    pids = self.package.start(self.target)\r\n           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\r\n  File \"C:\\tmpz4cchxn6\\modules\\packages\\exe.py\", line 37, in start\r\n    return self.execute(path, args, path)\r\n           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\r\n  File \"C:\\tmpz4cchxn6\\lib\\common\\abstracts.py\", line 176, in execute\r\n    p.inject(interest)\r\n  File \"C:\\tmpz4cchxn6\\lib\\api\\process.py\", line 649, in inject\r\n    self.write_monitor_config(interest, nosleepskip)\r\n  File \"C:\\tmpz4cchxn6\\lib\\api\\process.py\", line 569, in write_monitor_config\r\n    with open(config_path, \"w\", encoding=\"utf-8\") as config:\r\n         ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\r\nPermissionError: [Errno 13] Permission denied: 'C:\\\\tmpz4cchxn6\\\\dll\\\\1516.ini'\r\nThe above exception was the direct cause of the following exception:\r\nTraceback (most recent call last):\r\n  File \"C:\\tmpz4cchxn6\\analyzer.py\", line 1522, in <module>\r\n    success = analyzer.run()\r\n              ^^^^^^^^^^^^^^\r\n  File \"C:\\tmpz4cchxn6\\analyzer.py\", line 618, in run\r\n    raise CuckooError(\r\nlib.common.exceptions.CuckooError: The package \"modules.packages.exe\" start function encountered an unhandled exception: [Errno 13] Permission denied: 'C:\\\\tmpz4cchxn6\\\\dll\\\\1516.ini'\r\n```\r\n\r\nLooking at the [module](https://github.com/kevoreilly/CAPEv2/blob/master/analyzer/windows/modules/auxiliary/permissions.py#L28-L33), I am not sure whether the intent is to hard code the locations or have them passed along as options during submission. I could not find anything in the documentation about this, nor did I see anywhere that `self.options[\"permissions\"]` was being set in the code. Without a doubt, not giving explicit locations breaks analysis on Windows 10/11 VMs.\r\n\r\nPlease feel free to close this issue whenever.\nComment: thanks for headups, def need check this, main issue is spare time right now, so i will leave it open till I or someone else review this\nComment: I will take a closer look this evening and put up a PR if I find a good fix.\nComment: @doomedraven I have a PR for this. #2203 \r\n\r\nI do not have a Windows 7 install to test this on, so my approach may need to be adjusted.\nComment: Thanks for PR\r\n\r\nEl mar, 2 jul 2024, 4:08, ChrisThibodeaux ***@***.***>\r\nescribi\u00f3:\r\n\r\n> @doomedraven <https://github.com/doomedraven> I have a PR for this. #2203\r\n> <https://github.com/kevoreilly/CAPEv2/pull/2203>\r\n>\r\n> I do not have a Windows 7 install to test this on, so my approach may need\r\n> to be adjusted.\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2197#issuecomment-2201676556>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3ZEXDDBJ2MAU7SU7ITZKIDQDAVCNFSM6AAAAABKD2KLDWVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDEMBRGY3TMNJVGY>\r\n> .\r\n> You are receiving this because you were mentioned.Message ID:\r\n> ***@***.***>\r\n>\r\n",
+  "Title: Fix #2178\nBody: flask-sqlalchemy 3.0.5 would not conflict with SQLAlchemy 1.4.50, so I fixed it to that version.  \r\nhttps://github.com/pallets-eco/flask-sqlalchemy/blob/3.0.5/pyproject.toml#L19\nComment: Thanks",
+  "Title: How to change the port on which Cape web interface works?\nBody: ## Context\r\nI'm a master's student. I am trying to learn how to work with CapeV2. At the moment faced with a problem, port 8000, which is usually used by CapeV2 will be used for other tasks. Is it possible to deploy the Web interface on another port, and how to do it correctly so as not to destroy the complex organization of the sandbox.\r\nAnd one more question, is there any provision for issuing self-signed certificates for the Web part? I found only instructions for enabling captcha.\r\nThanks in advance and I apologize for possible errors English is not my native language.\r\n\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\nComment: change port in this service\r\nhttps://github.com/kevoreilly/CAPEv2/blob/27564920af198fc79f997826ec2f7e79c6bb5aad/systemd/cape-web.service\r\n\r\nRead readme of the project to become familiar with all services",
+  "Title: Resolved the issue with manual detonation \nBody: The renaming changes from manual_detonation to manual in other files (e.g., commit: 5673ecb) caused an issue with the manual detonation functionality. This change adjusted the file to reflect the changes in the code and restored the correct operation of manual detonation.\nComment: Thanks ",
+  "Title: remove unneeded code\nBody: None",
+  "Title: KVM unable to find libvirt.so\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I did read the README!\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nKVM default network comes up/goes `active` after post-installation reboot.\r\n\r\n# Current Behavior\r\n\r\nAfter rebooting, `virsh net-list` does not show any active virtual networks. The default network shows `inactive`. Inspection of network config reveals that no `virbr*` interfaces are present.\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\n1. Procure a bare metal Ubuntu 24.04 LTS server. \r\n2. `apt update && apt -y upgrade`\r\n3. Create new user and add to `sudo` group. In this example, the new user is `secops`.\r\n4. `su` to new user and clone CAPEv2\r\n5. Customise `kvm-qemu.sh` per instructions (for this example, `<WOOT>` was replaced with `DELL` throughout). \r\n6. Install KVM and QEMU thus: `sudo ./installer/kvm-qemu.sh All secops | tee kvm-qemu.log`\r\n7. Reboot\r\n8. Log back in, `su` to new user and run `sudo virsh net-list --all`.\r\n9. Observe that `default` network is set to inactive.\r\n10. Attempt to bring default network up: `sudo virsh net-start default`\r\n11. Observe the following error:\r\n\r\n```bash\r\nerror: internal error: Child process (VIR_BRIDGE_NAME=virbr0 /usr/sbin/dnsmasq --conf-file=/var/lib/libvirt/dnsmasq/default.conf --leasefile-ro --dhcp-script=/usr/libexec/libvirt_leaseshelper) unexpected exit status 3: /usr/libexec/libvirt_leaseshelper: error while loading shared libraries: libvirt.so.0: cannot open shared object file: No such file or directory\r\n\r\ndnsmasq: cannot run lease-init script /usr/libexec/libvirt_leaseshelper: No such file or directory\r\n```\r\n\r\n\r\n## Context\r\n\r\nCAPEv2 was installed on a Vultr bare metal host (Dell C6525 w/AMD EPYC CPU). The `kvm-qemu.sh` script was modified to reflect the use of AMD components instead of Intel. `libvirt.so.0` is symlinked as follows:\r\n\r\n```bash\r\nroot@secops:~# ls -lah /usr/local/lib/x86_64-linux-gnu\r\ntotal 22M\r\ndrwxr-xr-x 2 root root 4.0K Jun 28 13:48 .\r\ndrwxr-xr-x 4 root root 4.0K Jun 28 13:48 ..\r\nlrwxrwxrwx 1 root root   18 Jun 28 13:48 libvirt-admin.so -> libvirt-admin.so.0\r\nlrwxrwxrwx 1 root root   26 Jun 28 13:48 libvirt-admin.so.0 -> libvirt-admin.so.0.10003.0\r\n-rwxr-xr-x 1 root root 311K Jun 28 13:48 libvirt-admin.so.0.10003.0\r\nlrwxrwxrwx 1 root root   16 Jun 28 13:48 libvirt-lxc.so -> libvirt-lxc.so.0\r\nlrwxrwxrwx 1 root root   24 Jun 28 13:48 libvirt-lxc.so.0 -> libvirt-lxc.so.0.10003.0\r\n-rwxr-xr-x 1 root root  90K Jun 28 13:48 libvirt-lxc.so.0.10003.0\r\nlrwxrwxrwx 1 root root   17 Jun 28 13:48 libvirt-qemu.so -> libvirt-qemu.so.0\r\nlrwxrwxrwx 1 root root   25 Jun 28 13:48 libvirt-qemu.so.0 -> libvirt-qemu.so.0.10003.0\r\n-rwxr-xr-x 1 root root  91K Jun 28 13:48 libvirt-qemu.so.0.10003.0\r\nlrwxrwxrwx 1 root root   12 Jun 28 13:48 libvirt.so -> libvirt.so.0\r\nlrwxrwxrwx 1 root root   20 Jun 28 13:48 libvirt.so.0 -> libvirt.so.0.10003.0\r\n-rwxr-xr-x 1 root root  22M Jun 28 13:48 libvirt.so.0.10003.0\r\n```\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | `f45f0c9d7dad27ec406710c8b0853ff60ce3093b`\r\n| OS version       | Ubuntu 24.04 LTS\r\n\r\n## Failure Logs\r\n\r\n[kvm-qemu.log](https://github.com/user-attachments/files/16032924/kvm-qemu.log)\r\n\nComment: Verified that the issue addressed in #2162 does not exist here:\r\n\r\n```\r\nsecops@secops:~$ grep libvirt_version= CAPEv2/installer/kvm-qemu.sh\r\nlibvirt_version=10.3.0\r\nsecops@secops:~$ nm -D /lib/x86_64-linux-gnu/libvirt.so.0 | grep LIBVIRT_PRIVATE | head -n 10\r\n0000000000238d80 T cpuDecode@@LIBVIRT_PRIVATE_10.3.0\r\n0000000000238f30 T cpuEncode@@LIBVIRT_PRIVATE_10.3.0\r\n00000000000fa5d0 T dnsmasqAddDhcpHost@@LIBVIRT_PRIVATE_10.3.0\r\n00000000000fa850 T dnsmasqAddHost@@LIBVIRT_PRIVATE_10.3.0\r\n00000000000fb350 T dnsmasqCapsGetBinaryPath@@LIBVIRT_PRIVATE_10.3.0\r\n00000000000faf60 T dnsmasqCapsNewFromBinary@@LIBVIRT_PRIVATE_10.3.0\r\n00000000000fa3a0 T dnsmasqContextFree@@LIBVIRT_PRIVATE_10.3.0\r\n00000000000fa3f0 T dnsmasqContextNew@@LIBVIRT_PRIVATE_10.3.0\r\n00000000000fae50 T dnsmasqDelete@@LIBVIRT_PRIVATE_10.3.0\r\n00000000000fb360 T dnsmasqDhcpHostsToString@@LIBVIRT_PRIVATE_10.3.0\r\n```\r\n\r\nThe version specified in the install script, and the version in the existing shared library match.\nComment: Appears to be an AppArmor issue:\r\n\r\n```\r\nJun 28 17:13:10 secops kernel: audit: type=1400 audit(1719594790.970:156): apparmor=\"DENIED\" operation=\"open\" class=\"file\" profile=\"dnsmasq//libvirt_leaseshelper\" name=\"/usr/local/lib/x86_64-linux-gnu/libvirt.so.0.10003.0\" pid=1997 comm=\"libvirt_leasesh\" requested_mask=\"r\" denied_mask=\"r\" fsuid=0 ouid=0\r\nJun 28 17:13:10 secops kernel: audit: type=1400 audit(1719594790.970:157): apparmor=\"DENIED\" operation=\"open\" class=\"file\" profile=\"dnsmasq//libvirt_leaseshelper\" name=\"/usr/local/lib/x86_64-linux-gnu/libvirt.so.0.10003.0\" pid=1997 comm=\"libvirt_leasesh\" requested_mask=\"r\" denied_mask=\"r\" fsuid=0 ouid=0\r\nJun 28 17:13:10 secops kernel: audit: type=1400 audit(1719594790.970:158): apparmor=\"DENIED\" operation=\"open\" class=\"file\" profile=\"dnsmasq//libvirt_leaseshelper\" name=\"/usr/local/lib/x86_64-linux-gnu/libvirt.so.0.10003.0\" pid=1997 comm=\"libvirt_leasesh\" requested_mask=\"r\" denied_mask=\"r\" fsuid=0 ouid=0\r\nJun 28 17:25:11 secops kernel: audit: type=1400 audit(1719595511.010:159): apparmor=\"DENIED\" operation=\"open\" class=\"file\" profile=\"dnsmasq//libvirt_leaseshelper\" name=\"/usr/local/lib/x86_64-linux-gnu/libvirt.so.0.10003.0\" pid=2552 comm=\"libvirt_leasesh\" requested_mask=\"r\" denied_mask=\"r\" fsuid=0 ouid=0\r\nJun 28 17:25:11 secops kernel: audit: type=1400 audit(1719595511.010:160): apparmor=\"DENIED\" operation=\"open\" class=\"file\" profile=\"dnsmasq//libvirt_leaseshelper\" name=\"/usr/local/lib/x86_64-linux-gnu/libvirt.so.0.10003.0\" pid=2552 comm=\"libvirt_leasesh\" requested_mask=\"r\" denied_mask=\"r\" fsuid=0 ouid=0\r\nJun 28 17:25:11 secops kernel: audit: type=1400 audit(1719595511.010:161): apparmor=\"DENIED\" operation=\"open\" class=\"file\" profile=\"dnsmasq//libvirt_leaseshelper\" name=\"/usr/local/lib/x86_64-linux-gnu/libvirt.so.0.10003.0\" pid=2552 comm=\"libvirt_leasesh\" requested_mask=\"r\" denied_mask=\"r\" fsuid=0 ouid=0\r\nJun 28 17:27:13 secops kernel: audit: type=1400 audit(1719595633.434:162): apparmor=\"DENIED\" operation=\"open\" class=\"file\" profile=\"dnsmasq//libvirt_leaseshelper\" name=\"/usr/local/lib/x86_64-linux-gnu/libvirt.so.0.10003.0\" pid=2792 comm=\"libvirt_leasesh\" requested_mask=\"r\" denied_mask=\"r\" fsuid=0 ouid=0\r\nJun 28 17:27:13 secops kernel: audit: type=1400 audit(1719595633.434:163): apparmor=\"DENIED\" operation=\"open\" class=\"file\" profile=\"dnsmasq//libvirt_leaseshelper\" name=\"/usr/local/lib/x86_64-linux-gnu/libvirt.so.0.10003.0\" pid=2792 comm=\"libvirt_leasesh\" requested_mask=\"r\" denied_mask=\"r\" fsuid=0 ouid=0\r\nJun 28 17:27:13 secops kernel: audit: type=1400 audit(1719595633.434:164): apparmor=\"DENIED\" operation=\"open\" class=\"file\" profile=\"dnsmasq//libvirt_leaseshelper\" name=\"/usr/local/lib/x86_64-linux-gnu/libvirt.so.0.10003.0\" pid=2792 comm=\"libvirt_leasesh\" requested_mask=\"r\" denied_mask=\"r\" fsuid=0 ouid=0\r\nJun 28 17:29:45 secops kernel: audit: type=1400 audit(1719595785.739:165): apparmor=\"DENIED\" operation=\"open\" class=\"file\" profile=\"dnsmasq//libvirt_leaseshelper\" name=\"/usr/local/lib/x86_64-linux-gnu/libvirt.so.0.10003.0\" pid=3147 comm=\"libvirt_leasesh\" requested_mask=\"r\" denied_mask=\"r\" fsuid=0 ouid=0\r\nJun 28 17:29:45 secops kernel: audit: type=1400 audit(1719595785.739:166): apparmor=\"DENIED\" operation=\"open\" class=\"file\" profile=\"dnsmasq//libvirt_leaseshelper\" name=\"/usr/local/lib/x86_64-linux-gnu/libvirt.so.0.10003.0\" pid=3147 comm=\"libvirt_leasesh\" requested_mask=\"r\" denied_mask=\"r\" fsuid=0 ouid=0\r\nJun 28 17:29:45 secops kernel: audit: type=1400 audit(1719595785.739:167): apparmor=\"DENIED\" operation=\"open\" class=\"file\" profile=\"dnsmasq//libvirt_leaseshelper\" name=\"/usr/local/lib/x86_64-linux-gnu/libvirt.so.0.10003.0\" pid=3147 comm=\"libvirt_leasesh\" requested_mask=\"r\" denied_mask=\"r\" fsuid=0 ouid=0\r\nJun 28 17:33:31 secops kernel: audit: type=1400 audit(1719596011.023:168): apparmor=\"ALLOWED\" operation=\"open\" class=\"file\" profile=\"virt-aa-helper\" name=\"/usr/local/lib/x86_64-linux-gnu/libvirt.so.0.10003.0\" pid=3333 comm=\"virt-aa-helper\" requested_mask=\"r\" denied_mask=\"r\" fsuid=0 ouid=0\r\nJun 28 17:33:31 secops kernel: audit: type=1400 audit(1719596011.023:169): apparmor=\"ALLOWED\" operation=\"file_mmap\" class=\"file\" profile=\"virt-aa-helper\" name=\"/usr/local/lib/x86_64-linux-gnu/libvirt.so.0.10003.0\" pid=3333 comm=\"virt-aa-helper\" requested_mask=\"rm\" denied_mask=\"rm\" fsuid=0 ouid=0\r\nJun 28 17:33:35 secops kernel: audit: type=1400 audit(1719596015.872:170): apparmor=\"ALLOWED\" operation=\"open\" class=\"file\" profile=\"virt-aa-helper\" name=\"/usr/local/lib/x86_64-linux-gnu/libvirt.so.0.10003.0\" pid=3338 comm=\"virt-aa-helper\" requested_mask=\"r\" denied_mask=\"r\" fsuid=0 ouid=0\r\nJun 28 17:33:35 secops kernel: audit: type=1400 audit(1719596015.872:171): apparmor=\"ALLOWED\" operation=\"file_mmap\" class=\"file\" profile=\"virt-aa-helper\" name=\"/usr/local/lib/x86_64-linux-gnu/libvirt.so.0.10003.0\" pid=3338 comm=\"virt-aa-helper\" requested_mask=\"rm\" denied_mask=\"rm\" fsuid=0 ouid=0\r\nJun 28 17:34:07 secops kernel: audit: type=1400 audit(1719596047.529:172): apparmor=\"STATUS\" operation=\"profile_replace\" profile=\"unconfined\" name=\"dnsmasq\" pid=3360 comm=\"apparmor_parser\"\r\nJun 28 17:34:07 secops kernel: audit: type=1400 audit(1719596047.535:173): apparmor=\"STATUS\" operation=\"profile_replace\" profile=\"unconfined\" name=\"dnsmasq//libvirt_leaseshelper\" pid=3360 comm=\"apparmor_parser\"\r\nJun 28 17:34:30 secops kernel: audit: type=1400 audit(1719596070.333:174): apparmor=\"DENIED\" operation=\"open\" class=\"file\" profile=\"dnsmasq//libvirt_leaseshelper\" name=\"/usr/local/lib/x86_64-linux-gnu/libvirt.so.0.10003.0\" pid=3441 comm=\"libvirt_leasesh\" requested_mask=\"r\" denied_mask=\"r\" fsuid=0 ouid=0\r\nJun 28 17:34:30 secops kernel: audit: type=1400 audit(1719596070.333:175): apparmor=\"DENIED\" operation=\"open\" class=\"file\" profile=\"dnsmasq//libvirt_leaseshelper\" name=\"/usr/local/lib/x86_64-linux-gnu/libvirt.so.0.10003.0\" pid=3441 comm=\"libvirt_leasesh\" requested_mask=\"r\" denied_mask=\"r\" fsuid=0 ouid=0\r\nJun 28 17:34:30 secops kernel: audit: type=1400 audit(1719596070.333:176): apparmor=\"DENIED\" operation=\"open\" class=\"file\" profile=\"dnsmasq//libvirt_leaseshelper\" name=\"/usr/local/lib/x86_64-linux-gnu/libvirt.so.0.10003.0\" pid=3441 comm=\"libvirt_leasesh\" requested_mask=\"r\" denied_mask=\"r\" fsuid=0 ouid=0\r\n```\r\n\r\nBut the apparmor profile for dnsmasq is fine:\r\n\r\n```\r\nroot@secops:~# grep leaseshelper /etc/apparmor.d/usr.sbin.dnsmasq\r\n  /usr/lib{,64}/libvirt/libvirt_leaseshelper Cx -> libvirt_leaseshelper,\r\n  /usr/libexec/libvirt_leaseshelper Cx -> libvirt_leaseshelper,\r\n  profile libvirt_leaseshelper {\r\n    /usr/lib{,64}/libvirt/libvirt_leaseshelper mr,\r\n    /usr/libexec/libvirt_leaseshelper mr,\r\n    @{run}/leaseshelper.pid rwk,\r\n```\r\n\r\nthis appears to be the default AA profile shipped with dnsmasq for Ubuntu.\nComment: Fixed by interactively modifying the AA profile for dnsmasq using `aa-logprof` and rebooting the host. You also need to disable `systemd-resolved` so that dnsmasq can use port 53.\nComment: can you post the commands that you used? so those who has problems can use it to solve their problems\nComment: There aren't any specific commands - you run aa-logprof and it walks you\r\nthrough its proposed changes. I'll send a PR later to update docs.\u00a0\r\n\r\n--\r\ndurson\r\n\r\nOn June 28, 2024, Rickwo15 ***@***.***> wrote:\r\n> can you post the commands that you used? so those who has problems can\r\n> use it to solve their problems\r\n>\r\n\r\n\u2014\r\nReply to this email directly, view it on GitHub\r\n<https://github.com/kevoreilly/CAPEv2/issues/2192#issuecomment-\r\n2197491318>, or unsubscribe\r\n<https://github.com/notifications/unsubscribe-\r\nauth/AFCPBBCRDVORE3SYFZ4A7C3ZJWZENAVCNFSM6AAAAABKCEFJYWVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDCOJXGQ4TCMZRHA>.\r\nYou are receiving this because you modified the open/close state.Message\r\nID: ***@***.***>\r\n\nComment: thanks\nComment: I can confirm this works to fix the issue.",
+  "Title: Fix Group name parsing\nBody: None",
+  "Title: Bump djangorestframework from 3.14.0 to 3.15.2\nBody: Bumps [djangorestframework](https://github.com/encode/django-rest-framework) from 3.14.0 to 3.15.2.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a href=\"https://github.com/encode/django-rest-framework/releases\">djangorestframework's releases</a>.</em></p>\n<blockquote>\n<h2>Version 3.15.1</h2>\n<h2>What's Changed</h2>\n<ul>\n<li>Update the message to be consistent with the Django `HttpResponseBa\u2026 by <a href=\"https://github.com/maycuatroi\"><code>@\u200bmaycuatroi</code></a> in <a href=\"https://redirect.github.com/encode/django-rest-framework/pull/9287\">encode/django-rest-framework#9287</a></li>\n<li>Make <code>inflection</code> package truly optional by <a href=\"https://github.com/browniebroke\"><code>@\u200bbrowniebroke</code></a> in <a href=\"https://redirect.github.com/encode/django-rest-framework/pull/9303\">encode/django-rest-framework#9303</a></li>\n<li>Fix broken links in release notes for 3.15 by <a href=\"https://github.com/browniebroke\"><code>@\u200bbrowniebroke</code></a> in <a href=\"https://redirect.github.com/encode/django-rest-framework/pull/9305\">encode/django-rest-framework#9305</a></li>\n<li>TokenAdmin.autocomplete_fields Breaks Some Use Cases, Revert by <a href=\"https://github.com/alexdlaird\"><code>@\u200balexdlaird</code></a> in <a href=\"https://redirect.github.com/encode/django-rest-framework/pull/9301\">encode/django-rest-framework#9301</a></li>\n<li>Add drf-sendables to third-party-packages.md by <a href=\"https://github.com/amikrop\"><code>@\u200bamikrop</code></a> in <a href=\"https://redirect.github.com/encode/django-rest-framework/pull/9261\">encode/django-rest-framework#9261</a></li>\n<li>Revert &quot;feat: Add some changes to ValidationError to support django style vad\u2026&quot; by <a href=\"https://github.com/auvipy\"><code>@\u200bauvipy</code></a> in <a href=\"https://redirect.github.com/encode/django-rest-framework/pull/9326\">encode/django-rest-framework#9326</a></li>\n<li>Revert &quot;Re-prefetch related objects after updating&quot; by <a href=\"https://github.com/auvipy\"><code>@\u200bauvipy</code></a> in <a href=\"https://redirect.github.com/encode/django-rest-framework/pull/9327\">encode/django-rest-framework#9327</a></li>\n<li>Revert <a href=\"https://redirect.github.com/encode/django-rest-framework/issues/8863\">#8863</a> by <a href=\"https://github.com/tomchristie\"><code>@\u200btomchristie</code></a> in <a href=\"https://redirect.github.com/encode/django-rest-framework/pull/9330\">encode/django-rest-framework#9330</a></li>\n<li>Revert <a href=\"https://redirect.github.com/encode/django-rest-framework/issues/8009\">#8009</a> by <a href=\"https://github.com/tomchristie\"><code>@\u200btomchristie</code></a> in <a href=\"https://redirect.github.com/encode/django-rest-framework/pull/9332\">encode/django-rest-framework#9332</a></li>\n<li>Revert <a href=\"https://redirect.github.com/encode/django-rest-framework/issues/9030\">#9030</a> by <a href=\"https://github.com/tomchristie\"><code>@\u200btomchristie</code></a> in <a href=\"https://redirect.github.com/encode/django-rest-framework/pull/9333\">encode/django-rest-framework#9333</a></li>\n<li>Revert &quot;Fix NamespaceVersioning ignoring DEFAULT_VERSION on non-None namespaces&quot; by <a href=\"https://github.com/auvipy\"><code>@\u200bauvipy</code></a> in <a href=\"https://redirect.github.com/encode/django-rest-framework/pull/9335\">encode/django-rest-framework#9335</a></li>\n<li><code>SearchFilter.get_search_terms</code> returns list. by <a href=\"https://github.com/tomchristie\"><code>@\u200btomchristie</code></a> in <a href=\"https://redirect.github.com/encode/django-rest-framework/pull/9338\">encode/django-rest-framework#9338</a></li>\n<li>Version 3.15.1 by <a href=\"https://github.com/tomchristie\"><code>@\u200btomchristie</code></a> in <a href=\"https://redirect.github.com/encode/django-rest-framework/pull/9339\">encode/django-rest-framework#9339</a></li>\n</ul>\n<h2>New Contributors</h2>\n<ul>\n<li><a href=\"https://github.com/maycuatroi\"><code>@\u200bmaycuatroi</code></a> made their first contribution in <a href=\"https://redirect.github.com/encode/django-rest-framework/pull/9287\">encode/django-rest-framework#9287</a></li>\n<li><a href=\"https://github.com/alexdlaird\"><code>@\u200balexdlaird</code></a> made their first contribution in <a href=\"https://redirect.github.com/encode/django-rest-framework/pull/9301\">encode/django-rest-framework#9301</a></li>\n</ul>\n<p><strong>Full Changelog</strong>: <a href=\"https://github.com/encode/django-rest-framework/compare/3.15.0...3.15.1\">https://github.com/encode/django-rest-framework/compare/3.15.0...3.15.1</a></p>\n</blockquote>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/encode/django-rest-framework/commit/c7a7eae551528b6887614df816c8a26df70272d6\"><code>c7a7eae</code></a> Version 3.15.2 (<a href=\"https://redirect.github.com/encode/django-rest-framework/issues/9439\">#9439</a>)</li>\n<li><a href=\"https://github.com/encode/django-rest-framework/commit/3b41f0124194430da957b119712978fa2266b642\"><code>3b41f01</code></a> Fix potential XSS vulnerability in break_long_headers template filter (<a href=\"https://redirect.github.com/encode/django-rest-framework/issues/9435\">#9435</a>)</li>\n<li><a href=\"https://github.com/encode/django-rest-framework/commit/fe92f0dd0d4c587eed000c7de611ddbff241bd6a\"><code>fe92f0d</code></a> Add <code>__hash__</code> method for <code>permissions.OperandHolder</code> class (<a href=\"https://redirect.github.com/encode/django-rest-framework/issues/9417\">#9417</a>)</li>\n<li><a href=\"https://github.com/encode/django-rest-framework/commit/fbdab09c776d5ceef041793a7acd1c9e91695e5d\"><code>fbdab09</code></a> docs: Correct some evaluation results and a httpie option in Tutorial1 (<a href=\"https://redirect.github.com/encode/django-rest-framework/issues/9421\">#9421</a>)</li>\n<li><a href=\"https://github.com/encode/django-rest-framework/commit/36d5c0e74f562cbe3055f0d20818bd48d3c32359\"><code>36d5c0e</code></a> tests: Check urlpatterns after cleanups (<a href=\"https://redirect.github.com/encode/django-rest-framework/issues/9400\">#9400</a>)</li>\n<li><a href=\"https://github.com/encode/django-rest-framework/commit/9d4ed054bf8acfac6209b7e7f837fc97517affcc\"><code>9d4ed05</code></a> Don't use Windows line endings</li>\n<li><a href=\"https://github.com/encode/django-rest-framework/commit/b34bde47d7fff403df4143a35c71975d7c2e7763\"><code>b34bde4</code></a> Fix typo in setup.cfg setting</li>\n<li><a href=\"https://github.com/encode/django-rest-framework/commit/ab681f2d5e4a9645aa68eabf1ff18e41d0d5f642\"><code>ab681f2</code></a> Update requirements in docs</li>\n<li><a href=\"https://github.com/encode/django-rest-framework/commit/22377241a89c8233b45441b5adde5b858edef371\"><code>2237724</code></a> bump pygments (security hygiene)</li>\n<li><a href=\"https://github.com/encode/django-rest-framework/commit/d58b8da591120abedc94c1b71576cb9afb2d7868\"><code>d58b8da</code></a> Update deprecation hints</li>\n<li>Additional commits viewable in <a href=\"https://github.com/encode/django-rest-framework/compare/3.14.0...3.15.2\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=djangorestframework&package-manager=pip&previous-version=3.14.0&new-version=3.15.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Update comment about add_statistics_to_task.\nBody: None",
+  "Title: ERROR: Failed to run the reporting module \"MongoDB\"\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [X] I did read the README!\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I have read and checked all configs (with all optional parts)\r\n\r\n# Expected Behavior\r\n\r\nFinished analysis with reports.\r\n\r\n# Current Behavior\r\n\r\nWhen I submit a sample to analize, an unhandled exception is throwed. See Failure Logs section. I've installed Volatility3 to full memory dump analysis.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Submit a sample via web interface.\r\n2. Boom!\r\n\r\n## Context\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | 8727513a8c0494bd567ebddb9a5ca2874812ba0d\r\n| OS version       | Ubuntu 22.04.4 LTS, Windows 10 (VM guest)\r\n\r\nConfig files:\r\n\r\n**cuckoo.conf**\r\n```\r\n[cuckoo]\r\nmachinery_screenshots = on\r\nmemory_dump = on\r\nfreespace = 0\r\n    \r\n[resultserver]\r\nip = 192.168.2.1\r\n```\r\n**auxiliary.conf**\r\n```\r\n[auxiliary_modules]\r\nprocmon = yes\r\nsysmon_windows = yes\r\n\r\n[sniffer]\r\ninterface = virbr1\r\n```\r\n**kvm.conf**\r\n```\r\n[kvm]\r\nmachines = vm01\r\n\r\n[vm01]\r\nlabel = win10_msoffice\r\nip = 192.168.2.10\r\nplatform = windows\r\ntags = win10,msoffice\r\nsnapshot = snapshot1\r\narch = x64\r\n```\r\n**memory.conf**\r\n```\r\n[basic]\r\nguest_profile = Win10x64\r\ndelete_memdump = no\r\n\r\n[malfind]\r\nenabled = yes\r\n\r\n[pslist]\r\nenabled = yes\r\n\r\n[psscan]\r\nenabled = yes\r\n\r\n[callbacks]\r\nenabled = yes\r\n\r\n[svcscan]\r\nenabled = yes\r\n```\r\n**processing.conf**\r\n```\r\n[flare_capa]\r\nenabled = yes\r\nstatic = yes\r\ncape = yes\r\nprocdump = yes\r\n\r\n[detections]\r\nvirustotal = yes\r\n\r\n[procmon]\r\nenabled = yes\r\n\r\n[memory]\r\nenabled = yes\r\n\r\n[virustotal]\r\nenabled = yes\r\n# API Key omitida por confidencialidad en este documento.\r\nkey = 697P45....a59\r\n\r\n[deduplication]\r\nenabled = yes\r\n\r\n[xlsdeobf]\r\nenabled = yes\r\n```\r\n**reporting.conf**\r\n```\r\n[mitre]\r\nenabled = yes\r\n\r\n[reporthtml]\r\nenabled = yes\r\nscreenshots = yes\r\napicalls = yes\r\n\r\n[reporthtmlsummary]\r\nenabled = yes\r\nscreenshots = yes\r\n\r\n[reportpdf]\r\nenabled = yes\r\n```\r\n**web.conf**\r\n```\r\n[malscore]\r\nenabled = yes\r\n```\r\n\r\n## Failure Logs\r\n\r\n![cape](https://github.com/kevoreilly/CAPEv2/assets/14922220/227a5c06-3222-4d3e-9597-94c80b9a2b30)\r\n\nComment: Try to disable capa in processing and reprocess a job just as test\nComment: CAPA disabled in processing and submited new sample with default options. Now it has a timeout:\r\n\r\n![cape3](https://github.com/kevoreilly/CAPEv2/assets/14922220/79a252b2-ad9f-4d6b-be3a-64e729660c50)\r\n\r\nI think that CAPA is not the problem, since my sample is a .doc, so this error message is correct from CAPA. Anyway, I'm working with snapshots (CAPE-host is a VM) and I notice that this error starts since I installed Volatility3 and flare-floss via poetry:\r\n```\r\n$ sudo -u cape poetry run pip install -U volatility3 flare-floss\r\n```\r\nWill be it related?\nComment: could be, i don't use capa, floss neither volatility integrations so idk in which state those plugins are\nComment: So, if I understand the memory analysis with Volatility should be done outside CAPE-host, right?\nComment: well you can use that in cape, but the thing here is that i don't maintain things that i don't use, is just unreal, so sometime community or other people must help support updated version of those libraries, it should works with the versions that is in pyproject, but if you install newer, then that's not ensured by us.\nComment: Ok perfect. I confirm that if I install Volatility, the cape-processor crashes.\nComment: Hi again! I setup tmpfs for memory dump analysis with Volatility and it doesn't crash due to timeout now.\nComment: News... I check that some Volatility modules configured in memory.conf are crashing MongoDB reports (first log error in this issue).\nComment: what modules crashing it? yes tmpfs speedup a lot processing of memdumps, but bear in mind as much plugins you enable, you might need to consider increase timeout from 900 to higher value\nComment: _malfind_ is the first module that causes the crash. If you see the first screenshot in the issue, the exception is throwed at `deepcopy` function. Maybe there is a mismatch between libraries versions and expected data structures (?)\nComment: Probably it returns something that wasn't converted to json\nComment: Mm, not sure about that. I tried to replace the `deepcopy` with a JSON dump and load (only for test purposes) and it doesn't throw exceptions - errors. I've all modules enabled in `memory.conf` and it shows all information in web interface.\nComment: That's interesting, hm would need to investigate once I have some spare time\r\n\r\nEl jue, 27 jun 2024, 14:35, Alberto Sosa ***@***.***>\r\nescribi\u00f3:\r\n\r\n> Mm, not sure about that. I tried to replace the deepcopy with a JSON dump\r\n> and load (only for test purposes) and it doesn't throw exceptions - errors.\r\n> I've all modules enabled in memory.conf and it shows all information in\r\n> web interface.\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2188#issuecomment-2194565285>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3YYYGPLGMAVSWL47CTZJQBHTAVCNFSM6AAAAABJ5XJYRSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDCOJUGU3DKMRYGU>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: sorry for very long delay, i checked that last month but forgot to respond here, now this should be fixed, let me know if you still face this issue\nComment: Hi, sorry for digging this back up but I'm pretty sure I'm facing exactly the same issue, here's the log (I changed volatility's logging to debug, so it's more verbose):\n```\npoetry run python utils/process.py 1 -r\npip3 install certvalidator asn1crypto mscerts\nOPTIONAL! Missed dependency: poetry run pip install -U git+https://github.com/DissectMalware/batch_deobfuscator\nOPTIONAL! Missed dependency: poetry run pip install -U git+https://github.com/CAPESandbox/httpreplay\n2025-08-07 20:11:17,242 [Task 1] [volatility3.plugins.yarascan] DEBUG: Using yara-python module\n2025-08-07 20:11:17,425 [Task 1] [volatility3.framework.automagic] INFO: Detected a windows category plugin\n2025-08-07 20:11:17,429 [Task 1] [volatility3.framework.automagic] INFO: Running automagic: ConstructionMagic\n2025-08-07 20:11:17,456 [Task 1] [volatility3.framework.automagic] INFO: Running automagic: SymbolCacheMagic\n2025-08-07 20:11:17,549 [Task 1] [volatility3.framework.automagic] INFO: Running automagic: LayerStacker\n2025-08-07 20:11:17,669 [Task 1] [volatility3.schemas] INFO: Dependency for validation unavailable: jsonschema\n2025-08-07 20:11:17,669 [Task 1] [volatility3.schemas] DEBUG: All validations will report success, even with malformed input\n2025-08-07 20:11:17,684 [Task 1] [volatility3.framework.automagic.linux] INFO: No Linux banners found - if this is a linux plugin, please check your symbol files location\n2025-08-07 20:11:17,693 [Task 1] [volatility3.framework.automagic.mac] INFO: No Mac banners found - if this is a mac plugin, please check your symbol files location\n2025-08-07 20:11:17,699 [Task 1] [volatility3.framework.automagic.linux] INFO: No Linux banners found - if this is a linux plugin, please check your symbol files location\n2025-08-07 20:11:17,705 [Task 1] [volatility3.framework.automagic.windows] DEBUG: Detecting Self-referential pointer for recent windows\n2025-08-07 20:11:17,749 [Task 1] [volatility3.framework.automagic.windows] DEBUG: DtbSelfRef64bit test succeeded at 0x1aa000\n2025-08-07 20:11:17,753 [Task 1] [volatility3.framework.automagic.windows] DEBUG: DTB was found at: 0x1aa000\n2025-08-07 20:11:17,878 [Task 1] [volatility3.schemas] INFO: Dependency for validation unavailable: jsonschema\n2025-08-07 20:11:17,879 [Task 1] [volatility3.schemas] DEBUG: All validations will report success, even with malformed input\n2025-08-07 20:11:17,905 [Task 1] [volatility3.framework.automagic.stacker] DEBUG: physical_layer maximum_address: 2164461554\n2025-08-07 20:11:17,905 [Task 1] [volatility3.framework.automagic.stacker] DEBUG: Stacked layers: ['IntelLayer', 'Elf64Layer', 'FileLayer']\n2025-08-07 20:11:17,914 [Task 1] [volatility3.framework.automagic] INFO: Running automagic: WinSwapLayers\n2025-08-07 20:11:17,919 [Task 1] [volatility3.framework.automagic] INFO: Running automagic: KernelPDBScanner\n2025-08-07 20:11:18,046 [Task 1] [volatility3.framework.automagic.pdbscan] DEBUG: Kernel base determination - searching layer module list structure\n2025-08-07 20:11:28,001 [Task 1] [volatility3.framework.automagic.pdbscan] DEBUG: Kernel base determination - searching layer module list structure\n2025-08-07 20:11:28,181 [Task 1] [volatility3.framework.automagic.pdbscan] DEBUG: Setting kernel_virtual_offset to 0xf8055bc1c000\n2025-08-07 20:11:28,186 [Task 1] [volatility3.framework.symbols.windows.pdbutil] DEBUG: Using symbol library: ntkrnlmp.pdb/D9424FC4861E47C10FAD1B35DEC6DCC8-1\n2025-08-07 20:11:28,484 [Task 1] [volatility3.schemas] INFO: Dependency for validation unavailable: jsonschema\n2025-08-07 20:11:28,484 [Task 1] [volatility3.schemas] DEBUG: All validations will report success, even with malformed input\n2025-08-07 20:11:28,494 [Task 1] [volatility3.framework.automagic] INFO: Running automagic: SymbolFinder\n2025-08-07 20:11:28,494 [Task 1] [volatility3.framework.automagic] INFO: Running automagic: KernelModule\n2025-08-07 20:11:28,536 [Task 1] [volatility3.framework.symbols] DEBUG: Unresolved reference: symbol_table_name1!_PO_PROCESS_ENERGY_CONTEXT\n2025-08-07 20:11:28,549 [Task 1] [volatility3.framework.symbols] DEBUG: Unresolved reference: symbol_table_name1!_EPROCESS_QUOTA_BLOCK\n2025-08-07 20:11:28,554 [Task 1] [volatility3.framework.symbols] DEBUG: Unresolved reference: symbol_table_name1!_PAGEFAULT_HISTORY\n2025-08-07 20:11:28,567 [Task 1] [volatility3.framework.symbols] DEBUG: Unresolved reference: symbol_table_name1!_JOB_ACCESS_STATE\n2025-08-07 20:11:28,571 [Task 1] [volatility3.framework.symbols] DEBUG: Unresolved reference: symbol_table_name1!_JOB_CPU_RATE_CONTROL\n2025-08-07 20:11:28,575 [Task 1] [volatility3.framework.symbols] DEBUG: Unresolved reference: symbol_table_name1!_JOB_NET_RATE_CONTROL\n2025-08-07 20:11:28,579 [Task 1] [volatility3.framework.symbols] DEBUG: Unresolved reference: symbol_table_name1!_JOB_NOTIFICATION_INFORMATION\n2025-08-07 20:11:28,583 [Task 1] [volatility3.framework.symbols] DEBUG: Unresolved reference: symbol_table_name1!_PSP_STORAGE\n2025-08-07 20:11:28,599 [Task 1] [volatility3.framework.symbols] DEBUG: Unresolved reference: symbol_table_name1!_ACTIVATION_CONTEXT_DATA\n2025-08-07 20:11:28,603 [Task 1] [volatility3.framework.symbols] DEBUG: Unresolved reference: symbol_table_name1!_ASSEMBLY_STORAGE_MAP\n2025-08-07 20:11:28,616 [Task 1] [volatility3.framework.symbols] DEBUG: Unresolved reference: symbol_table_name1!_EXP_LICENSE_STATE\n2025-08-07 20:11:28,646 [Task 1] [volatility3.framework.symbols] DEBUG: Unresolved reference: symbol_table_name1!_DBGKP_ERROR_PORT\n2025-08-07 20:11:28,651 [Task 1] [volatility3.framework.symbols] DEBUG: Unresolved reference: symbol_table_name1!_CI_NGEN_PATHS\n2025-08-07 20:11:28,656 [Task 1] [volatility3.framework.symbols] DEBUG: Unresolved reference: symbol_table_name1!_EX_WNF_SUBSCRIPTION\n2025-08-07 20:11:28,692 [Task 1] [volatility3.framework.symbols] DEBUG: Unresolved reference: symbol_table_name1!_ETW_EVENT_CALLBACK_CONTEXT\n2025-08-07 20:11:28,698 [Task 1] [volatility3.framework.symbols] DEBUG: Unresolved reference: symbol_table_name1!_ETW_SOFT_RESTART_CONTEXT\n2025-08-07 20:11:28,701 [Task 1] [volatility3.framework.symbols] DEBUG: Unresolved reference: symbol_table_name1!_ETW_STACK_CACHE\n2025-08-07 20:11:28,719 [Task 1] [volatility3.framework.symbols] DEBUG: Unresolved reference: symbol_table_name1!_ETW_PERFECT_HASH_FUNCTION\n2025-08-07 20:11:28,725 [Task 1] [volatility3.framework.symbols] DEBUG: Unresolved reference: symbol_table_name1!_EX_TIMER\n2025-08-07 20:11:28,729 [Task 1] [volatility3.framework.symbols] DEBUG: Unresolved reference: symbol_table_name1!_HAL_PMC_COUNTERS\n2025-08-07 20:11:29,000 [Task 1] [volatility3.framework.symbols] DEBUG: Unresolved reference: symbol_table_name1!_DEVICE_NODE_IOMMU_EXTENSION\n2025-08-07 20:11:29,024 [Task 1] [volatility3.framework.symbols] DEBUG: Unresolved reference: symbol_table_name1!_SCSI_REQUEST_BLOCK\n2025-08-07 20:11:29,062 [Task 1] [volatility3.framework.symbols] DEBUG: Unresolved reference: symbol_table_name1!_AWEINFO\n2025-08-07 20:11:29,089 [Task 1] [volatility3.framework.symbols] DEBUG: Unresolved reference: symbol_table_name1!_MI_ZERO_THREAD_CONTEXT\n2025-08-07 20:11:29,097 [Task 1] [volatility3.framework.symbols] DEBUG: Unresolved reference: symbol_table_name1!_MI_SLAB_ALLOCATOR_ENTRY\n2025-08-07 20:12:22,909 [Task 1] [volatility3.plugins.windows.malware.malfind] DEBUG: [proc_id 3948] Found suspicious DIRTY + PAGE_EXECUTE_READ page at 0x2179a630000\n2025-08-07 20:13:49,515 [Task 1] [lib.cuckoo.core.plugins] ERROR: Failed to run the reporting module \"MongoDB\": BitField.__new__() missing 3 required positional arguments: 'type_name', 'object_info', and 'base_type'\nTraceback (most recent call last):\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 869, in process\n    current.run(self.results)\n  File \"/opt/CAPEv2/utils/../modules/reporting/mongodb.py\", line 110, in run\n    report = get_json_document(results, self.analysis_path)\n             ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/opt/CAPEv2/utils/../modules/reporting/report_doc.py\", line 61, in get_json_document\n    report = copy.deepcopy(results)\n             ^^^^^^^^^^^^^^^^^^^^^^\n  File \"/usr/lib/python3.12/copy.py\", line 136, in deepcopy\n    y = copier(x, memo)\n        ^^^^^^^^^^^^^^^\n  File \"/usr/lib/python3.12/copy.py\", line 221, in _deepcopy_dict\n    y[deepcopy(key, memo)] = deepcopy(value, memo)\n                             ^^^^^^^^^^^^^^^^^^^^^\n  File \"/usr/lib/python3.12/copy.py\", line 136, in deepcopy\n    y = copier(x, memo)\n        ^^^^^^^^^^^^^^^\n  File \"/usr/lib/python3.12/copy.py\", line 221, in _deepcopy_dict\n    y[deepcopy(key, memo)] = deepcopy(value, memo)\n                             ^^^^^^^^^^^^^^^^^^^^^\n  File \"/usr/lib/python3.12/copy.py\", line 136, in deepcopy\n    y = copier(x, memo)\n        ^^^^^^^^^^^^^^^\n  File \"/usr/lib/python3.12/copy.py\", line 196, in _deepcopy_list\n    append(deepcopy(a, memo))\n           ^^^^^^^^^^^^^^^^^\n  File \"/usr/lib/python3.12/copy.py\", line 136, in deepcopy\n    y = copier(x, memo)\n        ^^^^^^^^^^^^^^^\n  File \"/usr/lib/python3.12/copy.py\", line 221, in _deepcopy_dict\n    y[deepcopy(key, memo)] = deepcopy(value, memo)\n                             ^^^^^^^^^^^^^^^^^^^^^\n  File \"/usr/lib/python3.12/copy.py\", line 162, in deepcopy\n    y = _reconstruct(x, memo, *rv)\n        ^^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/usr/lib/python3.12/copy.py\", line 253, in _reconstruct\n    y = func(*args)\n        ^^^^^^^^^^^\n  File \"/usr/lib/python3.12/copyreg.py\", line 99, in __newobj__\n    return cls.__new__(cls, *args)\n           ^^^^^^^^^^^^^^^^^^^^^^^\nTypeError: BitField.__new__() missing 3 required positional arguments: 'type_name', 'object_info', and 'base_type'\n```\nI could probably try to provide the entire analysis folder if that helps, the mem dump itself is actually only 2GB. I'm also pretty sure this isn't *really* a CAPE issue and more likely a volatility issue, but since it's only a problem with the reporting module and not the processing module, I still think it's worth posting here.\n\nI tried to do this in the `get_json_document` function, and it did allow the processing to finish, with a valid-looking report, but I'm sure this might lose some information that could be importnant? Then again, since this seems to need to produce JSON-valid data, this approach would make sense?\n```python\nreport = json.loads(json.dumps(results))\n```\n\n\nComment: the issue is in malfind code as far as i remember, can you disable it and reprocess that job just to reduce the area of search?\nComment: It is very likely just malfind, I tried some of the other plugins separately and they work fine.\nComment: I checked the volaitility repository because I saw that the [renderer used in CAPE](https://github.com/kevoreilly/CAPEv2/blob/master/modules/processing/memory.py#L61) is basically just the [renderer from volatility](https://github.com/volatilityfoundation/volatility3/blob/develop/volatility3/cli/text_renderer.py#L569) but returned the output instead of printing it. This means that the output returned is originally meant to just be JSON, and so perhaps it should return `json.loads(json.dumps(final_output[1]))` (json.dumps is what the original renderer does, we're just loading it back as an object) instead of just `final_output[1]`.\n\nEdit: I did run the processor with this change and it does work with malfind.\nComment: like this right? https://github.com/kevoreilly/CAPEv2/pull/2663\nComment: Yep. It seems like one of the test failed, but I\u2019m guessing that\u2019s due to a Yara rule and not the actual change made here?\nComment: yes, thank you for help on this",
+  "Title: [processing] sqlalchemy.exc.InvalidRequestError: A transaction is already begun on this Session.\nBody: On a fresh installation (Ubuntu 22.04) on the latest master branch commit, with default DB settings, the following error occurs when processing any task:\r\n\r\n`process.py` ran with the following arguments:\r\n`sudo -u cape /usr/bin/python3 -m poetry run python process.py -d -p7 auto -pt 900`\r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/155625068/4538d891-3721-4a2d-a217-5f758e09d234)\r\n\r\nI've tried rebooting the server, restarting CAPE, manually clearing the transaction from postgres, but it seems it's happening every time and its not something leftover from a failed analysis or anything like that.\nComment: @tbeadle can you get a look plz?\nComment: This should be fixed with https://github.com/CAPESandbox/community/pull/437. So just update your checkout of the community repo.\nComment: thanks @tbeadle \nComment: Can confirm its working now, thanks.\nComment: After applying the updated community repo, it still throws an exception:\r\n![image](https://github.com/user-attachments/assets/a46659ae-562c-4fdf-8930-3a086f59e81e)\r\n\r\nReboot does not help, any ideas?\r\n\r\nThanks\nComment: Restart of service is needed for sure\nComment: Thank you for your quick reply!\r\n\r\nBut I'm running process.py by `sudo -u cape poetry run python /opt/CAPEv2/utils/process.py -p6 auto`, so I think there is no `cape-processor.service`.\r\n\r\nAnd `systemctl status cape-processor.service` return not found, maybe it is not a service issue?\nComment: Well if there is no service, then you installed cape in wrong way or installation failed",
+  "Title: [multimachinery] Remove split by comma from already processed machine list\nBody: With the current master branch commit, execution fails when using the multimachinery module as its trying to call split by comma on a list that has already been split somewhere else.\r\n\r\nLogs:\r\n```\r\n$ sudo -u cape /usr/bin/python3 -m poetry run python cuckoo.py -d\r\n\r\n...\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/cuckoo.py\", line 143, in <module>\r\n    cuckoo_main(max_analysis_count=args.max_analysis_count)\r\n  File \"/opt/CAPEv2/cuckoo.py\", line 102, in cuckoo_main\r\n    sched = Scheduler(max_analysis_count)\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 66, in __init__\r\n    self.machinery_manager = MachineryManager() if categories_need_VM else None\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/machinery_manager.py\", line 150, in __init__\r\n    self.machinery: Machinery = self.create_machinery()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/machinery_manager.py\", line 204, in create_machinery\r\n    machinery: Machinery = plugin()\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 118, in __init__\r\n    self.set_options(self.read_config())\r\n  File \"/opt/CAPEv2/modules/machinery/multi.py\", line 62, in set_options\r\n    for machine_name in [machine.strip() for machine in machinery_machines.split(\",\")]:\r\nAttributeError: 'list' object has no attribute 'split'\r\nException ignored in: <function ESX.__del__ at 0x7f30e057d000>\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/modules/machinery/esx.py\", line 68, in __del__\r\nAttributeError: 'ESX' object has no attribute 'global_conn'\r\n```",
+  "Title: Environment variables in az.conf causing error\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nPlacing an env variable as such to work: `subscription_id = %(ENV:SUBSCRIPTION_ID)s`\r\n\r\n# Current Behavior\r\n\r\nErrors out with a `configparser.InterpolationMissingOptionError`\r\n\r\n# Failure Information (for bugs)\r\n\r\nconfigparser.InterpolationMissingOptionError: Bad value substitution: option 'subscription_id' in section 'az' contains an interpolation key 'env:subscription_id' which is not a valid option name. Raw value: '%(ENV:SUBSCRIPTION_ID)s'\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Place env variable in the manner specified [in the docs](https://capev2.readthedocs.io/en/latest/installation/host/configuration.html#using-environment-variables-in-config-files).\r\n\r\n## Context\r\nDeploying in Azure while following the docs.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 16.04, Windows 10, macOS 10.12.3\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: `cape@hostname:~$ python3 --version`\r\n`Python 3.10.12`\r\n`cape@hostname:~$ env | grep \"SUBSCRIPTION_ID\"`\r\n`SUBSCRIPTION_ID=<redacted value>`\r\n\r\nThe environment variable exists and is correctly set.\r\n\r\nTo view spots where the error occurs, run `journalctl -u` for either `cape.service`, `cape-web.service`, or `cape-processor.service`.\nComment: az worker is community based, so you need to wait till community who has AZ fixes it or you can check how to fix it \nComment: @doomedraven Thank you for the reply. I will be looking into potential fixes until someone with more knowledge comes along.\nComment: I have entered a python shell in `/opt/CAPEv2` as `cape` user on the host machine and followed the code flow as it would execute in a running system. Oddly, it works perfectly fine. Not sure what the real issue is here.\r\n\r\nFound a work-around until a fix is in place. I used `replace`, similar to the linux command `sed`, in my ansible to place in the Azure subscription_id, client_id,  secret, and tenant. I keep those values in my ansible vault. If you are using anisble and pushing this to a repo, be sure to use `no_log: true` somewhere in the task.\nComment: @cccs-mog\nComment: Hi @ChrisThibodeaux, can you confirm if this is something only happening for this environment variable (namely subscription_id) you did face this for others as well ? Also could you give the full trace for the error in question ? \nComment: @cccs-mog I will try that for each env var In `az.conf` and report back. I'll also include the fullest trace I can for the issue.",
+  "Title: Distributed Cape not displaying reports in web UI\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ x] I am running the latest version\r\n- [ x] I did read the README!\r\n- [ x] I checked the documentation and found no answer\r\n- [x ] I checked to make sure that this issue has not already been filed\r\n- [x ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nI believe I should be able to view reports generated on a worker node in the master's web UI.\r\n\r\n# Current Behavior\r\n\r\nI have a distributed cape setup where I have one master and one worker node. I can submit tasks to both from the master's web UI. When I submit tasks to the master node, the report is displayed in the web UI as expected. When I submit to the worker node, I get the following error in the web UI:\r\n\r\n```\r\nERROR :-(\r\nThe specified analysis does not exist or not finished yet.\r\n```\r\n\r\nI don't believe this is a bug, I am wondering if it has to do with mongoDB from looking at previous issues this error appears when mongoDB isn't setup, but mongo is setup on both the master and worker nodes. \r\n\r\nThanks in advance!\r\n\nComment: How did you setup each mongo? As shard and master or pointing all workers to master mongodb?\nComment: Right now I haven't created a shard, I have tried to point the worker to the master through the reporting.conf file but the worker cannot connect apparently. Is it possible for me to simply point the worker to the master mongodb through the reporting.conf file? Or is there another step I'm missing?\nComment: it can't connect bcz by default mongo listen on hostonly and not 0.0.0.0, you need to configure mongodb to accept conection and if you have firewall allow connection to mongo from your workers, if is local dev you are fine to just listen, but if is somewhere in internet, you must put a proper protection as IP whitelist and db auth as example\nComment: I configured the worker to point directly to the mongo instance on the master, after sending a task to the worker and getting it back, I can see the report has been sent over to the master in storage/analyses, but I still get the same error:\r\n\r\n```\r\nERROR :-(\r\nThe specified analysis does not exist or not finished yet.\r\n```\nComment: Figured it out. I'm just stupid, forgot to restart the processor. Thank you @doomedraven for your help!!\nComment: \u2764\ufe0f ",
+  "Title: Distributed CAPE setup \nBody: Hello,\r\n\r\nThis isn't necessarily a problem/issue more of some general questions.\r\n\r\nI am trying to setup distributed CAPE, right now I have two servers each running cape standalone. The only changes to the configuration I have made is on the master node, I have enabled distributed cape, and filled out the db section of the config file to point to the capedist db on the master. \r\n\r\nI have followed the documentation and have successfully  added a worker node, and it is reachable from the master. When I run the dist.py script I get the following output soon after starting it up:\r\n\r\n```\r\n2024-06-24 16:53:16,454 INFO:dist:StatusThread - [-] ena dead\r\n2024-06-24 16:53:16,473 INFO:dist:StatusThread - [-] master dead\r\n```\r\n\r\nIs this intended behavior? On the worker side I can see constant requests to the tasks/list endpoint:\r\n\r\n```\r\nJun 24 16:58:51 ena python3[3932904]: 130.207.39.72 - - [24/Jun/2024 16:58:51] \"GET /apiv2/tasks/list/?status=reported&ids=True&completed_after=0 HTTP/1.1\" 200 -\r\nJun 24 16:58:51 ena python3[3932904]: 130.207.39.72 - - [24/Jun/2024 16:58:51] \"GET /apiv2/tasks/list/?status=reported&ids=True&completed_after=0 HTTP/1.1\" 200 -\r\nJun 24 16:58:52 ena python3[3932904]: 130.207.39.72 - - [24/Jun/2024 16:58:52] \"GET /apiv2/tasks/list/?status=reported&ids=True&completed_after=0 HTTP/1.1\" 200 -\r\nJun 24 16:58:52 ena python3[3932904]: 130.207.39.72 - - [24/Jun/2024 16:58:52] \"GET /apiv2/tasks/list/?status=reported&ids=True&completed_after=0 HTTP/1.1\" 200 -\r\nJun 24 16:58:52 ena python3[3932904]: 130.207.39.72 - - [24/Jun/2024 16:58:52] \"GET /apiv2/tasks/list/?status=reported&ids=True&completed_after=0 HTTP/1.1\" 200 -\r\nJun 24 16:58:52 ena python3[3932904]: 130.207.39.72 - - [24/Jun/2024 16:58:52] \"GET /apiv2/tasks/list/?status=reported&ids=True&completed_after=0 HTTP/1.1\" 200 -\r\nJun 24 16:58:52 ena python3[3932904]: 130.207.39.72 - - [24/Jun/2024 16:58:52] \"GET /apiv2/tasks/list/?status=reported&ids=True&completed_after=0 HTTP/1.1\" 200 -\r\nJun 24 16:58:52 ena python3[3932904]: 130.207.39.72 - - [24/Jun/2024 16:58:52] \"GET /apiv2/tasks/list/?status=reported&ids=True&completed_after=0 HTTP/1.1\" 200 -\r\nJun 24 16:58:52 ena python3[3932904]: 130.207.39.72 - - [24/Jun/2024 16:58:52] \"GET /apiv2/tasks/list/?status=reported&ids=True&completed_after=0 HTTP/1.1\" 200 -\r\nJun 24 16:58:52 ena python3[3932904]: 130.207.39.72 - - [24/Jun/2024 16:58:52] \"GET /apiv2/tasks/list/?status=reported&ids=True&completed_after=0 HTTP/1.1\" 200 -\r\n```\r\n\r\nI also cannot submit work directly to the worker with the \"node=\" option as described in this issue: \r\nhttps://github.com/kevoreilly/CAPEv2/issues/250\r\n\r\nIs there some configuration step I am missing?\r\n\r\nThanks in advance!\nComment: Figured it out. Had to enable cuckoo status API call. Apologies.\nComment: glad you spot the answer faster than i got to keyboard\nComment: my advice to use NFS for copy data from worker to master, over http is damn slow average 300seconds when on NFS is 1-4seconds",
+  "Title: Increase strace strsize\nBody: Avoids things like `[\"sh\", \"-c\", \"systemctl enable uplugplay.servi\"...]`",
+  "Title: <WOOT> replacement help!\nBody: ## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I did read the README!\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nNone.\r\n\r\n# Current Behavior\r\n\r\nI have read several times the official documentation and I am trying to understand the mechanism to replace the ACPI IDs in the kvm-qemu.sh script. I have searched for information and everywhere they say how to extract the ACPI tables and decompile them, but I can't find any step by step example. Once I have decompiled the DSDT table, I open it with a text editor and I can't find the ACPI IDs (_HID or _CID) for the devices that are indicated in the script with the default value <WOOT>. Could you provide a real example for extracting the ACPI IDs from real hardware?\r\n\r\nThanks in advance!\r\n\r\n# Failure Information (for bugs)\r\n\r\nNone.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. $ sudo acpidump -b\r\n2. $ iasl -d dsdt.dat\r\n3. $ nano dsdt.dsl\r\n4. Find for devices like \"SATA\", \"SCSI\", \"SSD\" (?)\r\n\r\n## Context\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | 8727513a8c0494bd567ebddb9a5ca2874812ba0d\r\n| OS version       | Ubuntu 22.04.4 LTS\r\n\r\n## Failure Logs\r\n\r\nNone.\r\n\nComment: https://github.com/kevoreilly/CAPEv2/issues/2162#issuecomment-2191734946",
+  "Title: Fix edge cases\nBody: - PDF: 313deea55903c3f497937bc5d9f7fd19de6ade46a36fdc5af843d76723755a88\r\n- DOC: 8e55a91da8ed3b0ee55ab3f58a7edb2b5cdbf056bec5f5137bd8d5365c4101b6",
+  "Title: Fix problem preventing automatic installation of cape2.sh\nBody: Fixed a problem in which the message 'rm: remove write-protected regular file' was displayed while installing CAPE with cape2.sh, waiting for user input.",
+  "Title: sqlalchemy.exc.IntegrityError\nBody: After installation success when i try to submit a binary for analysis  this happen \r\n\r\n\r\n\r\n\r\n\r\n![Screenshot from 2024-06-21 01-27-34](https://github.com/kevoreilly/CAPEv2/assets/95679389/878ec5ad-cc12-4faf-b65d-4f03e645bccc)\r\n![Screenshot from 2024-06-21 01-28-53](https://github.com/kevoreilly/CAPEv2/assets/95679389/c0b31f45-b706-43b3-a717-733bbbd8a2d3)\r\nIntegrityError\r\n\r\nsqlalchemy.exc.IntegrityError: (psycopg2.errors.ForeignKeyViolation) insert or update on table \"tasks_tags\" violates foreign key constraint \"tasks_tags_tag_id_fkey\"\r\nDETAIL:  Key (tag_id)=(14) is not present in table \"tags\".\r\n\r\n[SQL: INSERT INTO tasks_tags (task_id, tag_id) VALUES (%(task_id)s, %(tag_id)s)]\r\n[parameters: {'task_id': 14, 'tag_id': 14}]\r\n(Background on this error at: https://sqlalche.me/e/20/gkpj)\r\nTraceback (most recent call last)\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/base.py\", line 1967, in _exec_single_context\r\n\r\n    self.dialect.do_execute(\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/default.py\", line 924, in do_execute\r\n\r\n    cursor.execute(statement, parameters)\r\n\r\n    The above exception was the direct cause of the following exception:\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/contrib/staticfiles/handlers.py\", line 80, in __call__\r\n\r\n    return self.application(environ, start_response)\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/wsgi.py\", line 124, in __call__\r\n\r\n    response = self.get_response(request)\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/base.py\", line 140, in get_response\r\n\r\n    response = self._middleware_chain(request)\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/exception.py\", line 57, in inner\r\n\r\n    response = response_for_exception(request, exc)\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/exception.py\", line 140, in response_for_exception\r\n\r\n    response = handle_uncaught_exception(\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/exception.py\", line 181, in handle_uncaught_exception\r\n\r\n    return debug.technical_500_response(request, *exc_info)\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django_extensions/management/technical_response.py\", line 40, in null_technical_500_response\r\n\r\n    raise exc_value.with_traceback(tb)\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/exception.py\", line 55, in inner\r\n\r\n    response = get_response(request)\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/base.py\", line 197, in _get_response\r\n\r\n    response = wrapped_callback(request, *callback_args, **callback_kwargs)\r\n\r\n    File \"/opt/CAPEv2/web/submission/views.py\", line 417, in index\r\n\r\n    task_id = db.add_static(file_path=path, priority=priority, tlp=tlp, options=options, user_id=request.user.id or 0)\r\n\r\n    File \"/opt/CAPEv2/web/../lib/cuckoo/core/database.py\", line 1605, in add_static\r\n\r\n    task_id = self.add(\r\n\r\n    File \"/opt/CAPEv2/web/../lib/cuckoo/core/database.py\", line 1264, in add\r\n\r\n    with self.session.begin_nested():\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/util.py\", line 147, in __exit__\r\n\r\n    with util.safe_reraise():\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/util/langhelpers.py\", line 146, in __exit__\r\n\r\n    raise exc_value.with_traceback(exc_tb)\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/util.py\", line 145, in __exit__\r\n\r\n    self.commit()\r\n\r\n    File \"<string>\", line 2, in commit\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/state_changes.py\", line 139, in _go\r\n\r\n    ret_value = fn(self, *arg, **kw)\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 1302, in commit\r\n\r\n    self._prepare_impl()\r\n\r\n    File \"<string>\", line 2, in _prepare_impl\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/state_changes.py\", line 139, in _go\r\n\r\n    ret_value = fn(self, *arg, **kw)\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 1277, in _prepare_impl\r\n\r\n    self.session.flush()\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 4341, in flush\r\n\r\n    self._flush(objects)\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 4476, in _flush\r\n\r\n    with util.safe_reraise():\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/util/langhelpers.py\", line 146, in __exit__\r\n\r\n    raise exc_value.with_traceback(exc_tb)\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 4437, in _flush\r\n\r\n    flush_context.execute()\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/unitofwork.py\", line 466, in execute\r\n\r\n    rec.execute(self)\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/unitofwork.py\", line 591, in execute\r\n\r\n    self.dependency_processor.process_saves(uow, states)\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/dependency.py\", line 1197, in process_saves\r\n\r\n    self._run_crud(\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/dependency.py\", line 1260, in _run_crud\r\n\r\n    connection.execute(statement, secondary_insert)\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/base.py\", line 1418, in execute\r\n\r\n    return meth(\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/sql/elements.py\", line 515, in _execute_on_connection\r\n\r\n    return connection._execute_clauseelement(\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/base.py\", line 1640, in _execute_clauseelement\r\n\r\n    ret = self._execute_context(\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/base.py\", line 1846, in _execute_context\r\n\r\n    return self._exec_single_context(\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/base.py\", line 1986, in _exec_single_context\r\n\r\n    self._handle_dbapi_exception(\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/base.py\", line 2353, in _handle_dbapi_exception\r\n\r\n    raise sqlalchemy_exception.with_traceback(exc_info[2]) from e\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/base.py\", line 1967, in _exec_single_context\r\n\r\n    self.dialect.do_execute(\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/default.py\", line 924, in do_execute\r\n\r\n    cursor.execute(statement, parameters)\r\n\r\n    sqlalchemy.exc.IntegrityError: (psycopg2.errors.ForeignKeyViolation) insert or update on table \"tasks_tags\" violates foreign key constraint \"tasks_tags_tag_id_fkey\"\r\n    DETAIL:  Key (tag_id)=(14) is not present in table \"tags\".\r\n\r\n    [SQL: INSERT INTO tasks_tags (task_id, tag_id) VALUES (%(task_id)s, %(tag_id)s)]\r\n    [parameters: {'task_id': 14, 'tag_id': 14}]\r\n    (Background on this error at: https://sqlalche.me/e/20/gkpj)\r\n\r\nThe debugger caught an exception in your WSGI application. You can now look at the traceback which led to the error.\r\n\r\nTo switch between the interactive traceback and the plaintext one, you can click on the \"Traceback\" headline. From the text traceback you can also create a paste of it. For code execution mouse-over the frame you want to debug and click on the console icon on the right side.\r\n\r\nYou can execute arbitrary Python code in the stack frames and there are some extra helpers available for introspection:\r\n\r\n    dump() shows all variables in the frame\r\n    dump(obj) dumps all that's known about the object\r\n\r\n\r\n\r\n\nComment: idk what happens here, but i would suggest you to check the machinery tags, if there is bad char or similar thing\nComment: I have the same problem (using Azure with scaleset pool tags), @HUSMUS9999 could you please print the content of the following tables : \r\n\r\n  - machines;\r\n  - machines_tags;\r\n  - tags;\r\n  - tasks_tags; (should be empty but who knows)\r\n  \r\n For what i understand there is a problem in the submission related code where the tag id get's a +1, this causes the tags ids to rise (as you can see in your prints) with the same value as the tasks causing the obvious relation problem. \r\n\r\n\r\n \nComment: Following up to the previous comment, these are my DB tables related to this issue. I'll give some context here : \r\n\r\nmy `az.conf`  : \r\n ```\r\n[Sandbox-Cape-VMSS-1]\r\n\r\ngallery_image_name = Sandbox-Cape-Image-Definition-v8\r\nplatform = windows\r\narch = x64\r\n#tags = x64\r\npool_tag = x64\r\ninitial_pool_size = 1\r\n ```\r\n\r\n\r\n- My configuration is (Master) Cape on GCP <-Site to Site-> (Guests) in a VMSS on Azure\r\n- I started with a clean DB\r\n- Machine get's correctly initialized  \r\n\r\n```\r\n2024-06-21 09:34:32,203 [modules.machinery.az] DEBUG: Sandbox-Cape-VMSS-1_0: Initializing...\r\n2024-06-21 09:34:42,245 [modules.machinery.az] DEBUG: Machine Sandbox-Cape-VMSS-1_0 was created and available in 104s\r\n2024-06-21 09:34:42,475 [lib.cuckoo.core.machinery_manager] DEBUG: SFSG : available machines : [<Machine(1,'CSS-Sandbox-Cape-VMSS-1_0')>]\r\n2024-06-21 09:34:42,476 [lib.cuckoo.core.machinery_manager] INFO: Loaded 1 machine\r\n2024-06-21 09:34:42,496 [lib.cuckoo.core.machinery_manager] INFO: max_vmstartup_count for BoundedSemaphore = 5\r\n```\r\n\r\n### machines : \r\n\r\n| id  | name                  | label                 | arch | ip       | platform | interface                      | snapshot                                                              | locked | locked_changed_on | status | status_changed_on | resultserver_ip | resultserver_port | reserved |     |\r\n| --- | --------------------- | --------------------- | ---- | -------- | -------- | ------------------------------ | --------------------------------------------------------------------- | ------ | ----------------- | ------ | ----------------- | --------------- | ----------------- | -------- | --- |\r\n| 1   | Sandbox-Cape-VMSS-1_0 | Sandbox-Cape-VMSS-1_0 | x64  | 10.3.0.4 | windows  | Sandbox-Cape-VMSS-Subnet-nic01 | /subscriptions/<redacted>/images/CSS-Sandbox-Cape-Image-Definition-v8 | f      |                   |        |                   | 10.0.6.7        | 2042              | f        |     |\r\n### tags :\r\n\r\n| id  | name |\r\n| --- | ---- |\r\n| 1   | x64  |\r\n### machines_tags :\r\n\r\n| machine_id | tag_id |\r\n| ---------- | ------ |\r\n| 1          | 1      |\r\n### tasks_tags :\r\n\r\n| task_id | tag_id |\r\n| ------- | ------ |\r\n|         |        |\r\n### tasks : \r\n\r\n| id  | target | category | cape | timeout | priority | custom | machine | package | route | tags_tasks | options | platform | memory | enforce_timeout | clock | added_on | started_on | completed_on | status | dropped_files | running_processes | api_calls | domains | signatures_total | signatures_alert | files_written | registry_keys_modified | crash_issues | anti_issues | analysis_started_on | analysis_finished_on | processing_started_on | processing_finished_on | signatures_started_on | signatures_finished_on | reporting_started_on | reporting_finished_on | timedout | sample_id | machine_id | shrike_url | shrike_refer | shrike_msg | shrike_sid | parent_id | tlp | user_id | username |\r\n| --- | ------ | -------- | ---- | ------- | -------- | ------ | ------- | ------- | ----- | ---------- | ------- | -------- | ------ | --------------- | ----- | -------- | ---------- | ------------ | ------ | ------------- | ----------------- | --------- | ------- | ---------------- | ---------------- | ------------- | ---------------------- | ------------ | ----------- | ------------------- | -------------------- | --------------------- | ---------------------- | --------------------- | ---------------------- | -------------------- | --------------------- | -------- | --------- | ---------- | ---------- | ------------ | ---------- | ---------- | --------- | --- | ------- | -------- |\r\n|     |        |          |      |         |          |        |         |         |       |            |         |          |        |                 |       |          |            |              |        |               |                   |           |         |                  |                  |               |                        |              |             |                     |                      |                       |                        |                       |                        |                      |                       |          |           |            |            |              |            |            |           |     |         |          |\r\n\r\n\r\nSo tasks_tags and tasks are obviously empty due to the error reported by OP.\r\n\r\nAt this point when submitting a new task cape executes this insert :\r\n\r\n- `[SQL: INSERT INTO tasks_tags (task_id, tag_id) VALUES (%(task_id__0)s, %(tag_id__0)s), (%(task_id__1)s, %(tag_id__1)s)]`\r\n\r\nwhere in my test the parameter were set to :\r\n\r\n- `[parameters: {'task_id__0': 1, 'tag_id__0': 1, 'task_id__1': 1, 'tag_id__1': 2}]`\r\n\r\nAs you can see even with a clean DB the insert tries to use two sets of task_id and tag_id :\r\n\r\n- `task_id__0` & `tag_id__0`\r\n- `task_id__1` & `tag_id__1`\r\n\r\nIncrementing `tag_id__1` from 1 to 2, even with 2 tasks submitted this behaviour would likely result in a DB error due to the fact that the value incremented is the **tag_id** and not the **task_id**.\r\n\r\nAt this point I don't actually know where this action is performed inside the code neither why so I'll have to keep digging until it makes sense.\r\n\r\n@doomedraven @cccs-mog @tbeadle @cccs-kevin Since you guys have clearly more experience with the new logics of the machinery module could you please correct my hypothesis in case I got something wrong and follow up with the right logic when adding a task in the relation table tasks_tags ?\nComment: why do you comment out `#tags = x64` ? that might be problem, idk i don't have azure\nComment: i tried to use tags instead of pool_tags in a previous test, wasn't successfull tho (my bad I had to read the code). Anyway it's presence doesn't change anything i made some previous tests without it and i still get that issue.\r\n\r\nThe configurations i tried are the following : \r\n\r\n```\r\narch = x64\r\ntags = x64\r\npool_tag = x64\r\n```\r\n```\r\narch = x64\r\ntags = x64,x86\r\npool_tag = x64\r\n```\r\n```\r\narch = x64\r\n#tags = x64\r\npool_tag = x64,x86\r\n```\r\n\r\nAnd the final one that i saw in the previous post, none of these configurations prevented the tag_id to be incremented like I pointed out before \r\n\nComment: So your problem is with azure right? \nComment: No, the problem is not directly related to azure. \r\nI found a way to bypass task tag relation in database.py by commenting out the section of the code in the `add()` function that deals with tags format :\r\n\r\n``` \r\n        task.cape = cape\r\n        task.tags_tasks = tags_tasks\r\n        # Deal with tags format (i.e., foo,bar,baz)\r\n        if tags:\r\n            for tag in tags.split(\",\"):\r\n                tag_name = tag.strip()\r\n                if tag_name and tag_name not in [tag.name for tag in task.tags]:\r\n        #if tags:\r\n        #    for tag in tags.split(\",\"):\r\n        #        tag_name = tag.strip()\r\n        #        if tag_name and tag_name not in [tag.name for tag in task.tags]:\r\n                    # \"Task\" object is being merged into a Session along the backref cascade path for relationship \"Tag.tasks\"; in SQLAlchemy 2.0, this reverse cascade will not take place.\r\n                    # Set cascade_backrefs to False in either the relationship() or backref() function for the 2.0 behavior; or to set globally for the whole Session, set the future=True flag\r\n                    # (Background on this error at: https://sqlalche.me/e/14/s9r1) (Background on SQLAlchemy 2.0 at: https://sqlalche.me/e/b8d9)\r\n                    task.tags.append(self._get_or_create(Tag, name=tag_name))\r\n        #            task.tags.append(self._get_or_create(Tag, name=tag_name))\r\n\r\n        if clock:\r\n            if isinstance(clock, str):\r\n```\r\n\r\nbut of course this is not a solution to the problem, I'm trying to understand if during the for loop the tag id gets wrongly incremented.  \r\n\r\nCould someone follow up with the actual expected output of this section ? \r\n\nComment: This may or may not help, but here is my VMSS configuration in `az.conf`:\r\n```\r\n[vmss-dev-cape-win10x64]\r\ngallery_image_name = win10x64-cape\r\nplatform = windows\r\narch = x64\r\npool_tag = win10x64\r\n```\r\n\r\nSetting `pool_tag` ==  `arch` is odd, and may be the issue\nComment: > This may or may not help, but here is my VMSS configuration in `az.conf`:\r\n> \r\n> ```\r\n> [vmss-dev-cape-win10x64]\r\n> gallery_image_name = win10x64-cape\r\n> platform = windows\r\n> arch = x64\r\n> pool_tag = win10x64\r\n> ```\r\n> \r\n> Setting `pool_tag` == `arch` is odd, and may be the issue\r\n\r\nI'll try it right away \nComment: Well, it didn't work as expected : \r\n\r\nThis is the dump of what return self.add() has when submitting a file :  \r\n\r\n```\r\ncape | ''\r\n-- | --\r\nclock | '06-21-2024 12:50:31'\r\ncustom | ''\r\nenforce_timeout | False\r\nfile_md5 | '2401c281f6798633b66b2a4a14937354'\r\nfile_type | ('Composite Document File V2 Document, Little Endian, Os: Windows, Version '  '6.3, MSI Installer, Code page: 1252, Title: Installation Database, Subject: '  'Skype Meetings App, Author: Microsoft Corporation, Keywords: Installer, '  'Comments: This installer database contains the logic and data required to '  'install Skype Meetings App., Template: Intel;0, Revision Number: '  '{C6C0F413-901C-42A8-A7F1-D03BD40F9B12}, Create Time/Date: Sat Aug  3 '  '05:00:26 2019, Last Saved Time/Date: Sat Aug  3 05:00:26 2019, Number of '  'Pages: 300, Number of Words: 10, Name of Creating Application: Windows '  'Installer XML Toolset (3.11.1.2318), Security: 2')\r\nfileobj | <lib.cuckoo.common.objects.File object at 0x78d9d998c280>\r\nmachine | None\r\nmemory | False\r\nobj | <lib.cuckoo.common.objects.File object at 0x78d9d998ccd0>\r\noptions | ''\r\npackage | 'msi'\r\nparent_id | None\r\nplatform | 'windows'\r\npriority | 2\r\nroute | 'internet'\r\nsample | <Sample(1,'73fdfb85b80b81c87e78580dc5b46a73c73f7907f8e6cff0886dcb6493365255')>\r\nsample_parent_id | None\r\nself | <lib.cuckoo.core.database._Database object at 0x78d9fa166c80>\r\nshrike_msg | None\r\nshrike_refer | None\r\nshrike_sid | None\r\nshrike_url | None\r\nsource_url | False\r\nstatic | False\r\ntag | 'x86'\r\ntag_name | 'x86'\r\ntags | 'win10x64,x86'\r\ntags_tasks | ''\r\ntask | <Task(1,'/tmp/cuckoo-tmp/upload_v3_dh2v4/SkypeMeetingsApp.msi')>\r\ntimeout | 200\r\ntlp | None\r\nuser_id | 0\r\nusername | False\r\n```\r\n\r\nAs you can see it adds x86 following this logic in database.py \r\n\r\n```\r\nif isinstance(obj, (File, PCAP, Static)):\r\n            fileobj = File(obj.file_path)\r\n            file_type = fileobj.get_type()\r\n            file_md5 = fileobj.get_md5()\r\n            # check if hash is known already\r\n            try:\r\n                with self.session.begin_nested():\r\n                    sample = Sample(\r\n                        md5=file_md5,\r\n                        crc32=fileobj.get_crc32(),\r\n                        sha1=fileobj.get_sha1(),\r\n                        sha256=fileobj.get_sha256(),\r\n                        sha512=fileobj.get_sha512(),\r\n                        file_size=fileobj.get_size(),\r\n                        file_type=file_type,\r\n                        ssdeep=fileobj.get_ssdeep(),\r\n                        parent=sample_parent_id,\r\n                        source_url=source_url,\r\n                    )\r\n                    self.session.add(sample)\r\n            except IntegrityError:\r\n                sample = self.session.query(Sample).filter_by(md5=file_md5).first()\r\n\r\n            if DYNAMIC_ARCH_DETERMINATION:\r\n                # Assign architecture to task to fetch correct VM type\r\n                # This isn't 100% full proof\r\n                if \"PE32+\" in file_type or \"64-bit\" in file_type or package.endswith(\"_x64\"):\r\n                    if tags:\r\n                        tags += \",x64\"\r\n                    else:\r\n                        tags = \"x64\"\r\n                else:\r\n                    if LINUX_ENABLED and platform == \"linux\":\r\n                        linux_arch = _get_linux_vm_tag(file_type)\r\n                        if linux_arch:\r\n                            if tags:\r\n                                tags += f\",{linux_arch}\"\r\n                            else:\r\n                                tags = linux_arch\r\n                    else:\r\n                        if tags:\r\n                            tags += \",x86\"\r\n                        else:\r\n                            tags = \"x86\"\r\n            task = Task(obj.file_path)\r\n            task.sample_id = sample.id\r\n\r\n            if isinstance(obj, (PCAP, Static)):\r\n                # since no VM will operate on this PCAP\r\n                task.started_on = datetime.now()\r\n\r\n        elif isinstance(obj, URL):\r\n            task = Task(obj.url)\r\n            tags = \"x64\"\r\n\r\n        else:\r\n            return None    \r\n```\r\n\r\nthis results in the **sqlalchemy.exc.IntegrityError** error that OP posted, this is the error log from the webserver : \r\n\r\n```\r\n[21/Jun/2024 12:50:02] \"GET /submit/ HTTP/1.1\" 200 50025\r\n/opt/CAPEv2/web/../lib/cuckoo/core/database.py:1264: SAWarning: Object of type <Task> not in session, add operation along 'Tag.tasks' won't proceed\r\n  with self.session.begin_nested():\r\nInternal Server Error: /submit/\r\nTraceback (most recent call last):\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/base.py\", line 2108, in _exec_insertmany_context\r\n    dialect.do_execute(\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/default.py\", line 921, in do_execute\r\n    cursor.execute(statement, parameters)\r\npsycopg2.errors.ForeignKeyViolation: insert or update on table \"tasks_tags\" violates foreign key constraint \"tasks_tags_tag_id_fkey\"\r\nDETAIL:  Key (tag_id)=(2) is not present in table \"tags\".\r\n\r\n\r\nThe above exception was the direct cause of the following exception:\r\n\r\nTraceback (most recent call last):\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/exception.py\", line 55, in inner\r\n    response = get_response(request)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/base.py\", line 197, in _get_response\r\n    response = wrapped_callback(request, *callback_args, **callback_kwargs)\r\n  File \"/opt/CAPEv2/web/submission/views.py\", line 403, in index\r\n    status, task_ids_tmp = download_file(**details)\r\n  File \"/opt/CAPEv2/web/../lib/cuckoo/common/web_utils.py\", line 837, in download_file\r\n    task_ids_new, extra_details = db.demux_sample_and_add_to_db(\r\n  File \"/opt/CAPEv2/web/../lib/cuckoo/core/database.py\", line 1485, in demux_sample_and_add_to_db\r\n    task_id = self.add_path(\r\n  File \"/opt/CAPEv2/web/../lib/cuckoo/core/database.py\", line 1333, in add_path\r\n    return self.add(\r\n  File \"/opt/CAPEv2/web/../lib/cuckoo/core/database.py\", line 1264, in add\r\n    with self.session.begin_nested():\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/util.py\", line 146, in __exit__\r\n    with util.safe_reraise():\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/util/langhelpers.py\", line 147, in __exit__\r\n    raise exc_value.with_traceback(exc_tb)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/util.py\", line 144, in __exit__\r\n    self.commit()\r\n  File \"<string>\", line 2, in commit\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/state_changes.py\", line 136, in _go\r\n    ret_value = fn(self, *arg, **kw)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 1218, in commit\r\n    self._prepare_impl()\r\n  File \"<string>\", line 2, in _prepare_impl\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/state_changes.py\", line 136, in _go\r\n    ret_value = fn(self, *arg, **kw)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 1193, in _prepare_impl\r\n    self.session.flush()\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 4142, in flush\r\n    self._flush(objects)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 4277, in _flush\r\n    with util.safe_reraise():\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/util/langhelpers.py\", line 147, in __exit__\r\n    raise exc_value.with_traceback(exc_tb)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 4238, in _flush\r\n    flush_context.execute()\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/unitofwork.py\", line 466, in execute\r\n    rec.execute(self)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/unitofwork.py\", line 591, in execute\r\n    self.dependency_processor.process_saves(uow, states)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/dependency.py\", line 1178, in process_saves\r\n    self._run_crud(\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/dependency.py\", line 1241, in _run_crud\r\n    connection.execute(statement, secondary_insert)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/base.py\", line 1412, in execute\r\n    return meth(\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/sql/elements.py\", line 483, in _execute_on_connection\r\n    return connection._execute_clauseelement(\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/base.py\", line 1635, in _execute_clauseelement\r\n    ret = self._execute_context(\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/base.py\", line 1839, in _execute_context\r\n    return self._exec_insertmany_context(\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/base.py\", line 2116, in _exec_insertmany_context\r\n    self._handle_dbapi_exception(\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/base.py\", line 2339, in _handle_dbapi_exception\r\n    raise sqlalchemy_exception.with_traceback(exc_info[2]) from e\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/base.py\", line 2108, in _exec_insertmany_context\r\n    dialect.do_execute(\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/default.py\", line 921, in do_execute\r\n    cursor.execute(statement, parameters)\r\nsqlalchemy.exc.IntegrityError: (psycopg2.errors.ForeignKeyViolation) insert or update on table \"tasks_tags\" violates foreign key constraint \"tasks_tags_tag_id_fkey\"\r\nDETAIL:  Key (tag_id)=(2) is not present in table \"tags\".\r\n\r\n[SQL: INSERT INTO tasks_tags (task_id, tag_id) VALUES (%(task_id__0)s, %(tag_id__0)s), (%(task_id__1)s, %(tag_id__1)s)]\r\n[parameters: {'task_id__0': 1, 'tag_id__0': 1, 'task_id__1': 1, 'tag_id__1': 2}]\r\n(Background on this error at: https://sqlalche.me/e/20/gkpj)\r\nERROR:django.request:Internal Server Error: /submit/\r\nTraceback (most recent call last):\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/base.py\", line 2108, in _exec_insertmany_context\r\n    dialect.do_execute(\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/default.py\", line 921, in do_execute\r\n    cursor.execute(statement, parameters)\r\npsycopg2.errors.ForeignKeyViolation: insert or update on table \"tasks_tags\" violates foreign key constraint \"tasks_tags_tag_id_fkey\"\r\nDETAIL:  Key (tag_id)=(2) is not present in table \"tags\".\r\n\r\n\r\nThe above exception was the direct cause of the following exception:\r\n\r\nTraceback (most recent call last):\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/exception.py\", line 55, in inner\r\n    response = get_response(request)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/base.py\", line 197, in _get_response\r\n    response = wrapped_callback(request, *callback_args, **callback_kwargs)\r\n  File \"/opt/CAPEv2/web/submission/views.py\", line 403, in index\r\n    status, task_ids_tmp = download_file(**details)\r\n  File \"/opt/CAPEv2/web/../lib/cuckoo/common/web_utils.py\", line 837, in download_file\r\n    task_ids_new, extra_details = db.demux_sample_and_add_to_db(\r\n  File \"/opt/CAPEv2/web/../lib/cuckoo/core/database.py\", line 1485, in demux_sample_and_add_to_db\r\n    task_id = self.add_path(\r\n  File \"/opt/CAPEv2/web/../lib/cuckoo/core/database.py\", line 1333, in add_path\r\n    return self.add(\r\n  File \"/opt/CAPEv2/web/../lib/cuckoo/core/database.py\", line 1264, in add\r\n    with self.session.begin_nested():\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/util.py\", line 146, in __exit__\r\n    with util.safe_reraise():\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/util/langhelpers.py\", line 147, in __exit__\r\n    raise exc_value.with_traceback(exc_tb)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/util.py\", line 144, in __exit__\r\n    self.commit()\r\n  File \"<string>\", line 2, in commit\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/state_changes.py\", line 136, in _go\r\n    ret_value = fn(self, *arg, **kw)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 1218, in commit\r\n    self._prepare_impl()\r\n  File \"<string>\", line 2, in _prepare_impl\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/state_changes.py\", line 136, in _go\r\n    ret_value = fn(self, *arg, **kw)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 1193, in _prepare_impl\r\n    self.session.flush()\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 4142, in flush\r\n    self._flush(objects)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 4277, in _flush\r\n    with util.safe_reraise():\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/util/langhelpers.py\", line 147, in __exit__\r\n    raise exc_value.with_traceback(exc_tb)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/session.py\", line 4238, in _flush\r\n    flush_context.execute()\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/unitofwork.py\", line 466, in execute\r\n    rec.execute(self)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/unitofwork.py\", line 591, in execute\r\n    self.dependency_processor.process_saves(uow, states)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/dependency.py\", line 1178, in process_saves\r\n    self._run_crud(\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/orm/dependency.py\", line 1241, in _run_crud\r\n    connection.execute(statement, secondary_insert)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/base.py\", line 1412, in execute\r\n    return meth(\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/sql/elements.py\", line 483, in _execute_on_connection\r\n    return connection._execute_clauseelement(\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/base.py\", line 1635, in _execute_clauseelement\r\n    ret = self._execute_context(\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/base.py\", line 1839, in _execute_context\r\n    return self._exec_insertmany_context(\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/base.py\", line 2116, in _exec_insertmany_context\r\n    self._handle_dbapi_exception(\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/base.py\", line 2339, in _handle_dbapi_exception\r\n    raise sqlalchemy_exception.with_traceback(exc_info[2]) from e\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/base.py\", line 2108, in _exec_insertmany_context\r\n    dialect.do_execute(\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/default.py\", line 921, in do_execute\r\n    cursor.execute(statement, parameters)\r\nsqlalchemy.exc.IntegrityError: (psycopg2.errors.ForeignKeyViolation) insert or update on table \"tasks_tags\" violates foreign key constraint \"tasks_tags_tag_id_fkey\"\r\nDETAIL:  Key (tag_id)=(2) is not present in table \"tags\".\r\n\r\n[SQL: INSERT INTO tasks_tags (task_id, tag_id) VALUES (%(task_id__0)s, %(tag_id__0)s), (%(task_id__1)s, %(tag_id__1)s)]\r\n[parameters: {'task_id__0': 1, 'tag_id__0': 1, 'task_id__1': 1, 'tag_id__1': 2}]\r\n(Background on this error at: https://sqlalche.me/e/20/gkpj)\r\n``` \nComment: the problem is not related to machinery i guess even when trying to perform static analysis the same problem happen its not also related to cloud hosting im using local hosting \nComment: When if that happens in local you need to provide versions of db, sqlachemy etc as I have no issues \nComment: > When if that happens in local you need to provide versions of db, sqlachemy etc as I have no issues\r\n\r\nCould you elaborate on how this could be an issue relate to the db and sqlalchemy version, from my previous reply if you read the error log it seems like a logical issue inside the code. \r\nAnyway since I might (and hope) to be wrong these are the versions locally installed : \r\n\r\n-  PostgreSQL 16.3\r\n-  SQLAlchemy Version: 2.0.16\r\n\r\nSince OP has the same issue I think that it's higly unlikely that it could be related to the psql or sqlalchemy version.\nComment: > No, the problem is not directly related to azure. I found a way to bypass task tag relation in database.py by commenting out the section of the code in the `add()` function that deals with tags format :\r\n> \r\n> ```\r\n>         task.cape = cape\r\n>         task.tags_tasks = tags_tasks\r\n>         # Deal with tags format (i.e., foo,bar,baz)\r\n>         if tags:\r\n>             for tag in tags.split(\",\"):\r\n>                 tag_name = tag.strip()\r\n>                 if tag_name and tag_name not in [tag.name for tag in task.tags]:\r\n>         #if tags:\r\n>         #    for tag in tags.split(\",\"):\r\n>         #        tag_name = tag.strip()\r\n>         #        if tag_name and tag_name not in [tag.name for tag in task.tags]:\r\n>                     # \"Task\" object is being merged into a Session along the backref cascade path for relationship \"Tag.tasks\"; in SQLAlchemy 2.0, this reverse cascade will not take place.\r\n>                     # Set cascade_backrefs to False in either the relationship() or backref() function for the 2.0 behavior; or to set globally for the whole Session, set the future=True flag\r\n>                     # (Background on this error at: https://sqlalche.me/e/14/s9r1) (Background on SQLAlchemy 2.0 at: https://sqlalche.me/e/b8d9)\r\n>                     task.tags.append(self._get_or_create(Tag, name=tag_name))\r\n>         #            task.tags.append(self._get_or_create(Tag, name=tag_name))\r\n> \r\n>         if clock:\r\n>             if isinstance(clock, str):\r\n> ```\r\n> \r\n> but of course this is not a solution to the problem, I'm trying to understand if during the for loop the tag id gets wrongly incremented.\r\n> \r\n> Could someone follow up with the actual expected output of this section ?\r\n\r\nAt the moment i removed the comments from the previous reply and commented these lines instead : \r\n\r\n```\r\nif DYNAMIC_ARCH_DETERMINATION:\r\n                # Assign architecture to task to fetch correct VM type\r\n                # This isn't 100% full proof\r\n                if \"PE32+\" in file_type or \"64-bit\" in file_type or package.endswith(\"_x64\"):\r\n                    if tags:\r\n                        tags += \",x64\"\r\n                    else:\r\n                        tags = \"x64\"\r\n                else:\r\n                    if LINUX_ENABLED and platform == \"linux\":\r\n                        linux_arch = _get_linux_vm_tag(file_type)\r\n                        if linux_arch:\r\n                            if tags:\r\n                                tags += f\",{linux_arch}\"\r\n                            else:\r\n                                tags = linux_arch\r\n                    #else:\r\n                    #    if tags:\r\n                    #        tags += \",x86\"\r\n                    #    else:\r\n                    #        tags = \"x86\"              \r\n```\r\nNow the tasks_tags relation works correctly.  Any idea on how to fix that part of code without removing the section like I did ? \nComment: @leoiancu21  Thanks you for helping it worked for me  \nComment: > @leoiancu21 Thanks you for helping it worked for me\r\n\r\n\r\nMy pleasure, does your analysis work completely now ? I'm still stuck in the reporting procedure where the analysis gets stuck but i don't know if this is related to this issue\nComment: yes exactly \r\n![image](https://github.com/kevoreilly/CAPEv2/assets/95679389/4a9686bd-91ee-4b26-81a1-3a28574409f1)\r\n\r\nis this your case ?? \r\n\nComment: @HUSMUS9999 not exactly but it could be I have to debug a bit in order to understand it , I don't think that this could be related tho. \r\nI think it would be better to open another issue with that specific problem since the actual fix for this issue is still not found and I don't want to mix problems \nComment: alright thanks @leoiancu21  do i have to close this issue ?\nComment: Unfortunately it's not fixed, we just used a workaround so i would leave it open so if someone finds a way to solve the problem can reply with a commit and close it\nComment: > > When if that happens in local you need to provide versions of db, sqlachemy etc as I have no issues\r\n> \r\n> Could you elaborate on how this could be an issue relate to the db and sqlalchemy version, from my previous reply if you read the error log it seems like a logical issue inside the code. Anyway since I might (and hope) to be wrong these are the versions locally installed :\r\n> \r\n> * PostgreSQL 16.3\r\n> * SQLAlchemy Version: 2.0.16\r\n> \r\n> Since OP has the same issue I think that it's higly unlikely that it could be related to the psql or sqlalchemy version.\r\n\r\nbcz i don't have issue with tags, and i don't have to modify nothing at all. and my amount of cape servers is huge\nComment: i have the same software version, just checked it\r\n\r\n@tbeadle i just saw in log, maybe you can help here  a bit more(i have fly so my mind is pretty off)\r\n\r\n```\r\n/opt/CAPEv2/web/../lib/cuckoo/core/database.py:1264: SAWarning: Object of type <Task> not in session, add operation along 'Tag.tasks' won't proceed\r\n  with self.session.begin_nested():\r\n```\nComment: @HUSMUS9999 Could you please put the following in custom/conf/cuckoo.conf:\r\n\r\n```\r\n[database]\r\nlog_statements = on\r\n```\r\n\r\nrestart cape-web and try the submission again. I'm interested in SQL statements issued. They should be in /var/log/django/access.log. The `_get_or_create` call should be issuing a SELECT to see if the x86 Tag exists and, if it doesn't, it should create it at the start of the `begin_nested` call when the Task object is added to the session so that it has an ID that can be used to add it to the tags_tasks table.\r\n\r\nSo far, I have not been able to reproduce the problem.\nComment: I have the same problem.\r\n\r\nI changed the following settings and then checked the cape-web logs.\r\n```\r\n[database]\r\nlog_statements = on\r\n```\r\nAs you can see in the log below, the tag was deleted immediately after the new tag was inserted.\r\n```\r\nJun 28 02:43:47 ubuntu2204.localdomain python3[26908]: 2024-06-28 02:43:47,248 INFO sqlalchemy.engine.Engine SELECT tags.id AS tags_id, tags.name AS tags_name\r\nJun 28 02:43:47 ubuntu2204.localdomain python3[26908]: FROM tags\r\nJun 28 02:43:47 ubuntu2204.localdomain python3[26908]: WHERE tags.name = %(name_1)s\r\nJun 28 02:43:47 ubuntu2204.localdomain python3[26908]:  LIMIT %(param_1)s\r\nJun 28 02:43:47 ubuntu2204.localdomain python3[26908]: INFO:sqlalchemy.engine.Engine:SELECT tags.id AS tags_id, tags.name AS tags_name\r\nJun 28 02:43:47 ubuntu2204.localdomain python3[26908]: FROM tags\r\nJun 28 02:43:47 ubuntu2204.localdomain python3[26908]: WHERE tags.name = %(name_1)s\r\nJun 28 02:43:47 ubuntu2204.localdomain python3[26908]:  LIMIT %(param_1)s\r\nJun 28 02:43:47 ubuntu2204.localdomain python3[26908]: 2024-06-28 02:43:47,250 INFO sqlalchemy.engine.Engine [generated in 0.00126s] {'name_1': 'x86', 'param_1': 1}\r\nJun 28 02:43:47 ubuntu2204.localdomain python3[26908]: INFO:sqlalchemy.engine.Engine:[generated in 0.00126s] {'name_1': 'x86', 'param_1': 1}\r\nJun 28 02:43:47 ubuntu2204.localdomain python3[26908]: 2024-06-28 02:43:47,259 INFO sqlalchemy.engine.Engine INSERT INTO tags (name) VALUES (%(name)s) RETURNING tags.id\r\nJun 28 02:43:47 ubuntu2204.localdomain python3[26908]: INFO:sqlalchemy.engine.Engine:INSERT INTO tags (name) VALUES (%(name)s) RETURNING tags.id\r\nJun 28 02:43:47 ubuntu2204.localdomain python3[26908]: 2024-06-28 02:43:47,260 INFO sqlalchemy.engine.Engine [generated in 0.00082s] {'name': 'x86'}\r\nJun 28 02:43:47 ubuntu2204.localdomain python3[26908]: INFO:sqlalchemy.engine.Engine:[generated in 0.00082s] {'name': 'x86'}\r\nJun 28 02:43:47 ubuntu2204.localdomain python3[26908]: /opt/CAPEv2/web/../lib/cuckoo/core/database.py:1264: SAWarning: Object of type <Task> not in session, add operation along 'Tag.tasks' won't proceed\r\nJun 28 02:43:47 ubuntu2204.localdomain python3[26908]:   with self.session.begin_nested():\r\nJun 28 02:43:47 ubuntu2204.localdomain python3[26908]: 2024-06-28 02:43:47,265 INFO sqlalchemy.engine.Engine DELETE FROM tags WHERE NOT (EXISTS (SELECT 1\r\nJun 28 02:43:47 ubuntu2204.localdomain python3[26908]: FROM tasks, tasks_tags\r\nJun 28 02:43:47 ubuntu2204.localdomain python3[26908]: WHERE tags.id = tasks_tags.tag_id AND tasks.id = tasks_tags.task_id)) AND NOT (EXISTS (SELECT 1\r\nJun 28 02:43:47 ubuntu2204.localdomain python3[26908]: FROM machines, machines_tags\r\nJun 28 02:43:47 ubuntu2204.localdomain python3[26908]: WHERE tags.id = machines_tags.tag_id AND machines.id = machines_tags.machine_id))\r\nJun 28 02:43:47 ubuntu2204.localdomain python3[26908]: INFO:sqlalchemy.engine.Engine:DELETE FROM tags WHERE NOT (EXISTS (SELECT 1\r\nJun 28 02:43:47 ubuntu2204.localdomain python3[26908]: FROM tasks, tasks_tags\r\nJun 28 02:43:47 ubuntu2204.localdomain python3[26908]: WHERE tags.id = tasks_tags.tag_id AND tasks.id = tasks_tags.task_id)) AND NOT (EXISTS (SELECT 1\r\nJun 28 02:43:47 ubuntu2204.localdomain python3[26908]: FROM machines, machines_tags\r\nJun 28 02:43:47 ubuntu2204.localdomain python3[26908]: WHERE tags.id = machines_tags.tag_id AND machines.id = machines_tags.machine_id))\r\nJun 28 02:43:47 ubuntu2204.localdomain python3[26908]: 2024-06-28 02:43:47,267 INFO sqlalchemy.engine.Engine [cached since 0.02688s ago] {}\r\nJun 28 02:43:47 ubuntu2204.localdomain python3[26908]: INFO:sqlalchemy.engine.Engine:[cached since 0.02688s ago] {}\r\nJun 28 02:43:47 ubuntu2204.localdomain python3[26908]: 2024-06-28 02:43:47,270 INFO sqlalchemy.engine.Engine SAVEPOINT sa_savepoint_2\r\nJun 28 02:43:47 ubuntu2204.localdomain python3[26908]: INFO:sqlalchemy.engine.Engine:SAVEPOINT sa_savepoint_2\r\nJun 28 02:43:47 ubuntu2204.localdomain python3[26908]: 2024-06-28 02:43:47,270 INFO sqlalchemy.engine.Engine [no key 0.00078s] {}\r\nJun 28 02:43:47 ubuntu2204.localdomain python3[26908]: INFO:sqlalchemy.engine.Engine:[no key 0.00078s] {}\r\n```\r\n\r\nI also commented out the following process in CAPEv2/lib/cuckoo/core/database.py and it now works correctly.\r\n```python\r\n        # There should be a better way to clean up orphans. This runs after every flush, which is crazy.\r\n        # @event.listens_for(self.session, \"after_flush\")\r\n        # def delete_tag_orphans(session, ctx):\r\n        #     session.query(Tag).filter(~Tag.tasks.any()).filter(~Tag.machines.any()).delete(synchronize_session=False)\r\n```\r\n\r\nI suspect there is a problem with the above process for removing unused tags.\nComment: This appears to be due to a change in behavior between the version of SQLAlchemy that is required via pyproject.toml/poetry.lock or requirements.txt (1.4.50) and the version that you're running (2.0+). I was able to reproduce the error by running `poetry run pip install SQLAlchemy==2.0.16` and then submitting a sample. I'm not sure how you installed CAPE, but if you use `poetry install --sync`, it should install all the dependencies with the versions locked in poetry.lock. Please try this and let me know if that solves the problem.\nComment: Thank you. This problem was solved by downgrading from SQLAlchemy 2.0.31 to 1.4.50.\r\n\r\nIt was caused by running the following command according to the documentation.  \r\nhttps://capev2.readthedocs.io/en/latest/installation/host/installation.html#optional-dependencies\r\n```sh\r\nsudo -u cape poetry run pip install -r extra/optional_dependencies.txt\r\n```\r\n\r\nThe above command installed flask-sqlalchemy and upgraded SQLAlchemy 1.4.50 to 2.0.31.  \r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/extra/optional_dependencies.txt#L7C1-L7C17\nComment: ok commented that out, thanks Tommy for help",
+  "Title: Bump urllib3 from 2.0.7 to 2.2.2\nBody: Bumps [urllib3](https://github.com/urllib3/urllib3) from 2.0.7 to 2.2.2.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a href=\"https://github.com/urllib3/urllib3/releases\">urllib3's releases</a>.</em></p>\n<blockquote>\n<h2>2.2.2</h2>\n<h2>\ud83d\ude80 urllib3 is fundraising for HTTP/2 support</h2>\n<p><a href=\"https://sethmlarson.dev/urllib3-is-fundraising-for-http2-support\">urllib3 is raising ~$40,000 USD</a> to release HTTP/2 support and ensure long-term sustainable maintenance of the project after a sharp decline in financial support for 2023. If your company or organization uses Python and would benefit from HTTP/2 support in Requests, pip, cloud SDKs, and thousands of other projects <a href=\"https://opencollective.com/urllib3\">please consider contributing financially</a> to ensure HTTP/2 support is developed sustainably and maintained for the long-haul.</p>\n<p>Thank you for your support.</p>\n<h2>Changes</h2>\n<ul>\n<li>Added the <code>Proxy-Authorization</code> header to the list of headers to strip from requests when redirecting to a different host. As before, different headers can be set via <code>Retry.remove_headers_on_redirect</code>.</li>\n<li>Allowed passing negative integers as <code>amt</code> to read methods of <code>http.client.HTTPResponse</code> as an alternative to <code>None</code>. (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3122\">#3122</a>)</li>\n<li>Fixed return types representing copying actions to use <code>typing.Self</code>. (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3363\">#3363</a>)</li>\n</ul>\n<p><strong>Full Changelog</strong>: <a href=\"https://github.com/urllib3/urllib3/compare/2.2.1...2.2.2\">https://github.com/urllib3/urllib3/compare/2.2.1...2.2.2</a></p>\n<h2>2.2.1</h2>\n<h2>\ud83d\ude80 urllib3 is fundraising for HTTP/2 support</h2>\n<p><a href=\"https://sethmlarson.dev/urllib3-is-fundraising-for-http2-support\">urllib3 is raising ~$40,000 USD</a> to release HTTP/2 support and ensure long-term sustainable maintenance of the project after a sharp decline in financial support for 2023. If your company or organization uses Python and would benefit from HTTP/2 support in Requests, pip, cloud SDKs, and thousands of other projects <a href=\"https://opencollective.com/urllib3\">please consider contributing financially</a> to ensure HTTP/2 support is developed sustainably and maintained for the long-haul.</p>\n<p>Thank you for your support.</p>\n<h2>Changes</h2>\n<ul>\n<li>Fixed issue where <code>InsecureRequestWarning</code> was emitted for HTTPS connections when using Emscripten. (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3331\">#3331</a>)</li>\n<li>Fixed <code>HTTPConnectionPool.urlopen</code> to stop automatically casting non-proxy headers to <code>HTTPHeaderDict</code>. This change was premature as it did not apply to proxy headers and <code>HTTPHeaderDict</code> does not handle byte header values correctly yet. (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3343\">#3343</a>)</li>\n<li>Changed <code>ProtocolError</code> to <code>InvalidChunkLength</code> when response terminates before the chunk length is sent. (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/2860\">#2860</a>)</li>\n<li>Changed <code>ProtocolError</code> to be more verbose on incomplete reads with excess content. (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3261\">#3261</a>)</li>\n</ul>\n<h2>2.2.0</h2>\n<h2>\ud83d\udda5\ufe0f urllib3 now works in the browser</h2>\n<p>:tada: <strong>This release adds experimental support for <a href=\"https://urllib3.readthedocs.io/en/stable/reference/contrib/emscripten.html\">using urllib3 in the browser with Pyodide</a>!</strong> :tada:</p>\n<p>Thanks to Joe Marshall (<a href=\"https://github.com/joemarshall\"><code>@\u200bjoemarshall</code></a>) for contributing this feature. This change was possible thanks to work done in urllib3 v2.0 to detach our API from <code>http.client</code>. Please report all bugs to the <a href=\"https://github.com/urllib3/urllib3/issues\">urllib3 issue tracker</a>.</p>\n<h2>\ud83d\ude80 urllib3 is fundraising for HTTP/2 support</h2>\n<p><a href=\"https://sethmlarson.dev/urllib3-is-fundraising-for-http2-support\">urllib3 is raising ~$40,000 USD</a> to release HTTP/2 support and ensure long-term sustainable maintenance of the project after a sharp decline in financial support for 2023. If your company or organization uses Python and would benefit from HTTP/2 support in Requests, pip, cloud SDKs, and thousands of other projects <a href=\"https://opencollective.com/urllib3\">please consider contributing financially</a> to ensure HTTP/2 support is developed sustainably and maintained for the long-haul.</p>\n<p>Thank you for your support.</p>\n<h2>Changes</h2>\n<ul>\n<li>Added support for <a href=\"https://urllib3.readthedocs.io/en/latest/reference/contrib/emscripten.html\">Emscripten and Pyodide</a>, including streaming support in cross-origin isolated browser environments where threading is enabled. (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/2951\">#2951</a>)</li>\n<li>Added support for <code>HTTPResponse.read1()</code> method. (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3186\">#3186</a>)</li>\n<li>Added rudimentary support for HTTP/2. (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3284\">#3284</a>)</li>\n<li>Fixed issue where requests against urls with trailing dots were failing due to SSL errors\nwhen using proxy. (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/2244\">#2244</a>)</li>\n<li>Fixed <code>HTTPConnection.proxy_is_verified</code> and <code>HTTPSConnection.proxy_is_verified</code> to be always set to a boolean after connecting to a proxy. It could be <code>None</code> in some cases previously. (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3130\">#3130</a>)</li>\n</ul>\n<!-- raw HTML omitted -->\n</blockquote>\n<p>... (truncated)</p>\n</details>\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/urllib3/urllib3/blob/main/CHANGES.rst\">urllib3's changelog</a>.</em></p>\n<blockquote>\n<h1>2.2.2 (2024-06-17)</h1>\n<ul>\n<li>Added the <code>Proxy-Authorization</code> header to the list of headers to strip from requests when redirecting to a different host. As before, different headers can be set via <code>Retry.remove_headers_on_redirect</code>.</li>\n<li>Allowed passing negative integers as <code>amt</code> to read methods of <code>http.client.HTTPResponse</code> as an alternative to <code>None</code>. (<code>[#3122](https://github.com/urllib3/urllib3/issues/3122) &lt;https://github.com/urllib3/urllib3/issues/3122&gt;</code>__)</li>\n<li>Fixed return types representing copying actions to use <code>typing.Self</code>. (<code>[#3363](https://github.com/urllib3/urllib3/issues/3363) &lt;https://github.com/urllib3/urllib3/issues/3363&gt;</code>__)</li>\n</ul>\n<h1>2.2.1 (2024-02-16)</h1>\n<ul>\n<li>Fixed issue where <code>InsecureRequestWarning</code> was emitted for HTTPS connections when using Emscripten. (<code>[#3331](https://github.com/urllib3/urllib3/issues/3331) &lt;https://github.com/urllib3/urllib3/issues/3331&gt;</code>__)</li>\n<li>Fixed <code>HTTPConnectionPool.urlopen</code> to stop automatically casting non-proxy headers to <code>HTTPHeaderDict</code>. This change was premature as it did not apply to proxy headers and <code>HTTPHeaderDict</code> does not handle byte header values correctly yet. (<code>[#3343](https://github.com/urllib3/urllib3/issues/3343) &lt;https://github.com/urllib3/urllib3/issues/3343&gt;</code>__)</li>\n<li>Changed <code>InvalidChunkLength</code> to <code>ProtocolError</code> when response terminates before the chunk length is sent. (<code>[#2860](https://github.com/urllib3/urllib3/issues/2860) &lt;https://github.com/urllib3/urllib3/issues/2860&gt;</code>__)</li>\n<li>Changed <code>ProtocolError</code> to be more verbose on incomplete reads with excess content. (<code>[#3261](https://github.com/urllib3/urllib3/issues/3261) &lt;https://github.com/urllib3/urllib3/issues/3261&gt;</code>__)</li>\n</ul>\n<h1>2.2.0 (2024-01-30)</h1>\n<ul>\n<li>Added support for <code>Emscripten and Pyodide &lt;https://urllib3.readthedocs.io/en/latest/reference/contrib/emscripten.html&gt;</code><strong>, including streaming support in cross-origin isolated browser environments where threading is enabled. (<code>[#2951](https://github.com/urllib3/urllib3/issues/2951) &lt;https://github.com/urllib3/urllib3/issues/2951&gt;</code></strong>)</li>\n<li>Added support for <code>HTTPResponse.read1()</code> method. (<code>[#3186](https://github.com/urllib3/urllib3/issues/3186) &lt;https://github.com/urllib3/urllib3/issues/3186&gt;</code>__)</li>\n<li>Added rudimentary support for HTTP/2. (<code>[#3284](https://github.com/urllib3/urllib3/issues/3284) &lt;https://github.com/urllib3/urllib3/issues/3284&gt;</code>__)</li>\n<li>Fixed issue where requests against urls with trailing dots were failing due to SSL errors\nwhen using proxy. (<code>[#2244](https://github.com/urllib3/urllib3/issues/2244) &lt;https://github.com/urllib3/urllib3/issues/2244&gt;</code>__)</li>\n<li>Fixed <code>HTTPConnection.proxy_is_verified</code> and <code>HTTPSConnection.proxy_is_verified</code>\nto be always set to a boolean after connecting to a proxy. It could be\n<code>None</code> in some cases previously. (<code>[#3130](https://github.com/urllib3/urllib3/issues/3130) &lt;https://github.com/urllib3/urllib3/issues/3130&gt;</code>__)</li>\n<li>Fixed an issue where <code>headers</code> passed in a request with <code>json=</code> would be mutated (<code>[#3203](https://github.com/urllib3/urllib3/issues/3203) &lt;https://github.com/urllib3/urllib3/issues/3203&gt;</code>__)</li>\n<li>Fixed <code>HTTPSConnection.is_verified</code> to be set to <code>False</code> when connecting\nfrom a HTTPS proxy to an HTTP target. It was set to <code>True</code> previously. (<code>[#3267](https://github.com/urllib3/urllib3/issues/3267) &lt;https://github.com/urllib3/urllib3/issues/3267&gt;</code>__)</li>\n<li>Fixed handling of new error message from OpenSSL 3.2.0 when configuring an HTTP proxy as HTTPS (<code>[#3268](https://github.com/urllib3/urllib3/issues/3268) &lt;https://github.com/urllib3/urllib3/issues/3268&gt;</code>__)</li>\n<li>Fixed TLS 1.3 post-handshake auth when the server certificate validation is disabled (<code>[#3325](https://github.com/urllib3/urllib3/issues/3325) &lt;https://github.com/urllib3/urllib3/issues/3325&gt;</code>__)</li>\n<li>Note for downstream distributors: To run integration tests, you now need to run the tests a second\ntime with the <code>--integration</code> pytest flag. (<code>[#3181](https://github.com/urllib3/urllib3/issues/3181) &lt;https://github.com/urllib3/urllib3/issues/3181&gt;</code>__)</li>\n</ul>\n<h1>2.1.0 (2023-11-13)</h1>\n<ul>\n<li>Removed support for the deprecated urllib3[secure] extra. (<code>[#2680](https://github.com/urllib3/urllib3/issues/2680) &lt;https://github.com/urllib3/urllib3/issues/2680&gt;</code>__)</li>\n<li>Removed support for the deprecated SecureTransport TLS implementation. (<code>[#2681](https://github.com/urllib3/urllib3/issues/2681) &lt;https://github.com/urllib3/urllib3/issues/2681&gt;</code>__)</li>\n<li>Removed support for the end-of-life Python 3.7. (<code>[#3143](https://github.com/urllib3/urllib3/issues/3143) &lt;https://github.com/urllib3/urllib3/issues/3143&gt;</code>__)</li>\n<li>Allowed loading CA certificates from memory for proxies. (<code>[#3065](https://github.com/urllib3/urllib3/issues/3065) &lt;https://github.com/urllib3/urllib3/issues/3065&gt;</code>__)</li>\n<li>Fixed decoding Gzip-encoded responses which specified <code>x-gzip</code> content-encoding. (<code>[#3174](https://github.com/urllib3/urllib3/issues/3174) &lt;https://github.com/urllib3/urllib3/issues/3174&gt;</code>__)</li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/27e2a5c5a7ab6a517252cc8dcef3ffa6ffb8f61a\"><code>27e2a5c</code></a> Release 2.2.2 (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3406\">#3406</a>)</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/accff72ecc2f6cf5a76d9570198a93ac7c90270e\"><code>accff72</code></a> Merge pull request from GHSA-34jh-p97f-mpxf</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/34be4a57e59eb7365bcc37d52e9f8271b5b8d0d3\"><code>34be4a5</code></a> Pin CFFI to a new release candidate instead of a Git commit (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3398\">#3398</a>)</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/da410581b6b3df73da976b5ce5eb20a4bd030437\"><code>da41058</code></a> Bump browser-actions/setup-chrome from 1.6.0 to 1.7.1 (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3399\">#3399</a>)</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/b07a669bd970d69847801148286b726f0570b625\"><code>b07a669</code></a> Bump github/codeql-action from 2.13.4 to 3.25.6 (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3396\">#3396</a>)</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/b8589ec9f8c4da91511e601b632ac06af7e7c10e\"><code>b8589ec</code></a> Measure coverage with v4 of artifact actions (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3394\">#3394</a>)</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/f3bdc5585111429e22c81b5fb26c3ec164d98b81\"><code>f3bdc55</code></a> Allow triggering CI manually (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3391\">#3391</a>)</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/52392654b30183129cf3ec06010306f517d9c146\"><code>5239265</code></a> Fix HTTP version in debug log (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3316\">#3316</a>)</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/b34619f94ece0c40e691a5aaf1304953d88089de\"><code>b34619f</code></a> Bump actions/checkout to 4.1.4 (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3387\">#3387</a>)</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/9961d14de7c920091d42d42ed76d5d479b80064d\"><code>9961d14</code></a> Bump browser-actions/setup-chrome from 1.5.0 to 1.6.0 (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3386\">#3386</a>)</li>\n<li>Additional commits viewable in <a href=\"https://github.com/urllib3/urllib3/compare/2.0.7...2.2.2\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=urllib3&package-manager=pip&previous-version=2.0.7&new-version=2.2.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Update cape2.sh\nBody: added ninja-build to dependencies, required for pyre2 build.\r\n\r\n error: subprocess-exited-with-error\r\n  \r\n  \u00d7 Building wheel for pyre2 (pyproject.toml) did not run successfully.\r\n  \u2502 exit code: 1\r\n  \u2570\u2500> [58 lines of output]\r\n      running bdist_wheel\r\n      running build\r\n      running build_ext\r\n      CMake Error: CMake was unable to find a build program corresponding to \"Ninja\".  CMAKE_MAKE_PROGRAM is not set.  You probably need to select a different build tool.\nComment: thanks, pyre2 is dead, and not supported in upcoming versions of python, so i guess is better directly remove it instead of add it extra dependencies",
+  "Title: Update cape2.sh\nBody: added plocate (command locate) and libvirt-dev (python libvirt requirement)\nComment: hello, we don't need `libvirt-dev`, what os do you use that requires that library?\nComment: > hello, we don't need `libvirt-dev`, what os do you use that requires that library?\r\n\r\nubuntu 22.04\nComment: I needed the `libvirt-dev` package also\nComment: ok i did check, if you install `libvirt-dev` it forces install of `libvirt0`, any of my servers doesn't have that library. so i won't poison install script",
+  "Title: Update cape2.sh\nBody: added libyara-dev no requirements to fix (magic.h: no such file or directory)",
+  "Title: Update Quickbind yara\nBody: None",
+  "Title: FLOSS integration fails: ERROR: 'PosixPath' object has no attribute 'endswith'\nBody: ```\r\n2024-06-17 10:49:55,971 [Task 81] [lib.cuckoo.common.integrations.floss] ERROR: 'PosixPath' object has no attribute 'endswith'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/floss.py\", line 71, in run\r\n    vw = fm.load_vw(Path(self.file_path), fileformat, sigspath, False)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/floss/main.py\", line 372, in load_vw\r\n    vw = viv_utils.getWorkspace(sample_path, analyze=False, should_save=False)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/viv_utils/__init__.py\", line 102, in getWorkspace\r\n    if fp.endswith(\".viv\"):\r\nAttributeError: 'PosixPath' object has no attribute 'endswith'\r\n```\nComment: i think you have to open issue to them floss repo instead of cape\r\n\r\nhttps://github.com/mandiant/flare-floss/blob/master/floss/main.py#L394-L399\nComment: btw your error code lines doest match floss code lines, i guess you must upgrade to latest versioj",
+  "Title: fix dnfile 0.15 parsers\nBody: None",
+  "Title: Fix correct storage path for 7zip\nBody: everything else is `CUCKOO_ROOT, \"storage\", \"analyses\"`",
+  "Title: URL analysis\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ Y ] I am running the latest version\r\n- [ Y ] I did read the README!\r\n- [ Y ] I checked the documentation and found no answer\r\n- [ Y ] I checked to make sure that this issue has not already been filed\r\n- [ Y ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ Y ] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\nHi Team, I am currently running a CAPEv2 on Ubuntu 22.04 + Oracle VM Virtualbox (Win-7 32bit) as guest OS and everything works fine with the file submissions but I would like to also use CAPE for URL submission to analyze them automatically.\r\n\r\n# Current Behavior\r\nUnfortunately it is not working for me, console shows 0 errors while analysis is run but on the guest os actually is nothing happening.\r\nNo browser is started, just showing me Desktop during whole analysis.\r\n\r\nDo you have any tips what browsers should be used to run automatic URL analysis on the CAPE currently?\r\nIE is already blocked by many webpages as an outdated browser and even if it just do not run any analysis in my case.\r\nWhat are the recommended browser for Win7 and Win10 to have the ability to run a url analysis?\r\nBefore creating this issue I have read multiple threads regarding that matter but still I did not found a valid solution for my problem.\r\nI would be thankful for any tips on that.\r\n\r\n# Failure Information (for bugs)\r\n\r\nLogs from analysis (no errors):\r\n-------------------------------------------\r\n```\r\nJun 12 09:38:12 cape-vm1 python3[47249]: 2024-06-12 09:38:12,883 [lib.cuckoo.core.scheduler] INFO: Task #20: Starting analysis of URL 'https://www.youtube.com'\r\nJun 12 09:38:12 cape-vm1 python3[47249]: 2024-06-12 09:38:12,916 [lib.cuckoo.core.scheduler] INFO: Task #20: acquired machine Win7_32bit_ONE (label=Win7_32bit_ONE, arch=x86, platform=windows)\r\nJun 12 09:38:16 cape-vm1 python3[47249]: 2024-06-12 09:38:16,525 [lib.cuckoo.core.scheduler] INFO: Enabled route 'internet'.\r\nJun 12 09:38:16 cape-vm1 python3[51023]: /usr/bin/tcpdump\r\nJun 12 09:38:16 cape-vm1 python3[47249]: 2024-06-12 09:38:16,549 [modules.auxiliary.sniffer] INFO: Started sniffer with PID 51025 (interface=vboxnet0, host=192.168.56.101, dump path=/opt/CAPEv2/storage/analyses/20/dump.pcap)\r\nJun 12 09:38:16 cape-vm1 python3[47249]: 2024-06-12 09:38:16,560 [lib.cuckoo.core.guest] INFO: Task #20: Starting analysis on guest (id=Win7_32bit_ONE, ip=192.168.56.101)\r\nJun 12 09:38:16 cape-vm1 sudo[51025]:     cape : PWD=/opt/CAPEv2 ; USER=root ; COMMAND=/usr/bin/tcpdump -U -q -s 0 -i vboxnet0 -n -Z cape -w /opt/CAPEv2/storage/analyses/20/dump.pcap host 192.168.56.101 and not ( dst host 192.168.56.101 and dst port 8000 ) and not ( src host 192.168.56.101 and src port 8000 ) and not ( dst host 192.168.56.1 and dst port 2043 ) and not ( src host 192.168.56.1 and src port 2043 ) and ( 'not arp' )\r\nJun 12 09:38:16 cape-vm1 sudo[51025]: pam_limits(sudo:session): unknown limit item 'hard'\r\nJun 12 09:38:16 cape-vm1 sudo[51025]: pam_unix(sudo:session): session opened for user root(uid=0) by (uid=1001)\r\nJun 12 09:38:19 cape-vm1 python3[47249]: 2024-06-12 09:38:19,607 [lib.cuckoo.core.guest] INFO: Task #20: Guest is running CAPE Agent 0.17 (id=Win7_32bit_ONE, ip=192.168.56.101)\r\nJun 12 09:38:23 cape-vm1 python3[47249]: 2024-06-12 09:38:23,797 [lib.cuckoo.core.guest] INFO: Task #20: Uploading script files to guest (id=Win7_32bit_ONE, ip=192.168.56.101)\r\nJun 12 09:42:44 cape-vm1 python3[47249]: 2024-06-12 09:42:44,905 [lib.cuckoo.core.guest] INFO: Task #20: End of analysis reached! (id=Win7_32bit_ONE, ip=192.168.56.101)\r\nJun 12 09:42:44 cape-vm1 sudo[51025]: pam_unix(sudo:session): session closed for user root\r\nJun 12 09:42:46 cape-vm1 python3[47249]: 2024-06-12 09:42:46,252 [lib.cuckoo.core.scheduler] INFO: Disabled route 'internet'\r\nJun 12 09:42:46 cape-vm1 python3[47249]: 2024-06-12 09:42:46,272 [lib.cuckoo.core.scheduler] INFO: Task #20: analysis procedure completed\r\n```\r\n-----------------------------------------------------\r\n\r\n\r\n## Context\r\nCAPEv2 on Ubuntu 22.04 + Oracle VM Virtualbox (Win-7 32bit) + currently using default IE8 browser\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: see analysis.log inside of the analysis folder, that log is from VM, you posted server side log + plz use code block to properly post logs\nComment: Sorry for that, I've update the comment.\r\n\r\nAlso I have found the file that you were pointing to and looks like the automatic package detection pick up the 'Edge' package not the IE (I don't have Edge on my WIn7 guest os)\r\n\r\n`2024-06-12 09:38:12,030 [root] INFO: Analysis package \"edge\" has been specified\r\n2024-06-12 09:38:12,030 [root] DEBUG: Importing analysis package \"edge\"...\r\n2024-06-12 09:38:12,060 [root] DEBUG: Initializing analysis package \"edge\"...\r\n2024-06-12 09:38:12,060 [root] DEBUG: New location of moved file: https://www.youtube.com`\r\n\r\nSo there is no issues with starting up the IE by the cape automatically, thank you for your guidance on troubleshooting.\r\n\r\nUnfortunately as I thought YouTube did not open because of the outdated browser, do you have some specific browser builds for Edge that you would recommend to use along with CAPE?\r\n\r\n\r\n\nComment: Well if you are going to use Win7 I would probably recommend Firefox actually - not convinced Edge and Win7 were destined to be together.\r\n\r\nBut I would seriously recommend ditching Win7 vms and install Win10 21H2, from which any Edge version should work.\nComment: Great, thank you so much for all your tips.\r\nWould definitely try Win10 in such case.\r\nThanks! :)",
+  "Title: Fix bug when finding tasks not requiring machinery.\nBody: If max_machines_reached is True, then\r\nfind_pending_task_not_requiring_machinery can be called (if allow_static is True). Don't assert that there's no machinery_manager.",
+  "Title: cgi_replace\nBody: None",
+  "Title: Quarantined file does not get Decrypted\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ X ] I am running the latest version\r\n- [ X ] I did read the README!\r\n- [ X ] I checked the documentation and found no answer\r\n- [ X ] I checked to make sure that this issue has not already been filed\r\n- [ X ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ X ] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\r\n\r\nWhen I submit a quarantined file, it should decrypt the file and analyze the decrypted file. \r\n\r\n# Current Behavior\r\n\r\nWhen I submit a quarantined file, it does not get decrypted, and the encrypted file gets analyzed instead. \r\n\r\n# Failure Information (for bugs)\r\n\r\nAccording to this CAPE commit, there was a change which should detect that the file is quarantined from a normal file submit and try to decrypt it. \r\nhttps://github.com/kevoreilly/CAPEv2/pull/1399\r\n\r\nHere is the file I am trying to submit\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/23060454/94a0151f-59ff-43ff-a350-475f41ff5f1b)\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| OS version       | Ubuntu 22.04\r\n\r\n## Failure Logs\r\n\r\nAnalysis Log:\r\nhttps://pastebin.com/Kef7Kser\r\n\nComment: Attach file here, without that is dead end\nComment: Github won't let me attach it but you can find it here:\r\nhttps://file.io/XGmiZoaDqwmW\r\n\r\nIt is an EICAR test file\nComment: it works just fine here, you must be doing something wrong\r\n\r\n![Screenshot from 2024-06-11 08-57-39](https://github.com/kevoreilly/CAPEv2/assets/1856495/1c095d54-7c8d-412f-90fe-34c3c60f7234)\r\n\nComment: I'm glad it's working somewhere! I am uploading the file via the WebGUI and setting the Analysis Package to detect automatically. Here is the result of the analaysis:\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/23060454/36325f3d-5e2b-4848-b332-db6b41f740e9)\r\n\r\nAny idea where I should look to start debugging?\nComment: is the same that i do, but i dont touch packages as is already set to auto, but there is no much what you can dig into, https://github.com/search?q=repo%3Akevoreilly%2FCAPEv2+Quarantine&type=code see there is automaticall check for that, maybe you have some dependency problem if you didnt use cape2.sh to install it, you can view it here https://github.com/kevoreilly/CAPEv2/blob/master/lib/cuckoo/common/quarantine.py\nComment: Is set to auto also. Have all dependencies, no errors in log. Send your analysis log for the file so I can compare?\nComment: Analysis log is useless, file is preprocessed on submit, idk what is wrong,\r\nyou will have to put breakpoint on quarantine and debug from there to see\r\nwhat is wrong on your side\r\n\r\nEl mar, 11 jun 2024, 17:13, JTurn01 ***@***.***> escribi\u00f3:\r\n\r\n> Is set to auto also. Have all dependencies, no errors in log. Send your\r\n> analysis log for the file so I can compare?\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2166#issuecomment-2161016174>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH32YWIV4J2MKKGXCIV3ZG4HYFAVCNFSM6AAAAABJC34YSSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDCNRRGAYTMMJXGQ>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: I am actually running into this very same issue. I send quarantined files over a they just come in as 'general' files, so it seems that CAPE doesn't attempt to realize that it is a quarantined file. \r\n\r\n@doomedraven when you say to put a breakpoint on quarantine, do you mean to use pdb and import it in at the beginning of that quarantine file to debug it? Sorry, I am not super familiar with python, but am trying to get this last piece working.\nComment: yes any tool that allow you debug python, also bear in mind if you testing some file that was quarantined by tool X it wont be handled, so you need to ensure that it works, as attached file from original issue, that one works just fine.\r\n\r\ni just added posibility to call that file directly so you dont need to debug it, but you need to run it from `/opt/CAPEv2` something like(inside of the poetry shell): \r\n`PYTHON_PATH=$PWD python lib/cuckoo/common/quarantine.py <path to sample to test>`\nComment: Ran command provided to test file, got this:\r\n\r\ncybersecurity@FWM-CYBERSECURITY-CAPE1:/opt/CAPEv2$` PYTHONPATH=$PWD python3 lib/cuckoo/common/quarantine.py /home/cybersecurity/Downloads/213D8090764C8F777E5C373B1C5CB1E8D7B4C85A\r\nDEBUG:__main__:Trying unquarantine function mse_unquarantine for file /home/cybersecurity/Downloads/213D8090764C8F777E5C373B1C5CB1E8D7B4C85A\r\nDEBUG:__main__:Starting MSE unquarantine for file /home/cybersecurity/Downloads/213D8090764C8F777E5C373B1C5CB1E8D7B4C85A\r\nDEBUG:__main__:Trying unquarantine function kav_unquarantine for file /home/cybersecurity/Downloads/213D8090764C8F777E5C373B1C5CB1E8D7B4C85A\r\nDEBUG:__main__:Starting KAV unquarantine for file /home/cybersecurity/Downloads/213D8090764C8F777E5C373B1C5CB1E8D7B4C85A\r\nDEBUG:__main__:Trying unquarantine function trend_unquarantine for file /home/cybersecurity/Downloads/213D8090764C8F777E5C373B1C5CB1E8D7B4C85A\r\nDEBUG:__main__:Trying unquarantine function sep_unquarantine for file /home/cybersecurity/Downloads/213D8090764C8F777E5C373B1C5CB1E8D7B4C85A\r\nDEBUG:__main__:Starting SEP unquarantine for file /home/cybersecurity/Downloads/213D8090764C8F777E5C373B1C5CB1E8D7B4C85A\r\nDEBUG:__main__:Unsupported data offset: 2550181131\r\nUnsuported quarantine file format\r\n\r\nOdd how it works on your end. and not mine, with the same file too.\r\nAny advice based on the log?\nComment: i have no clue how it doest work on your side. I just added a bit more info to show hashes\r\n\r\n```\r\n/opt/CAPEv2$ PYTHONPATH=$PWD python3 lib/cuckoo/common/quarantine.py 213D8090764C8F777E5C373B1C5CB1E8D7B4C85A\r\nSuported quarantine file format: \r\n Original: de0b2f4fd6c8bae261a3bc5ae02d2936fcce23c3fcd834f790f3768511560910 - unqarantined: 275a021bbfb6489e54d471899f7db9d1663fc695ec2fe2a2c4538aabf651fd0f\r\n\r\n```\nComment: is those debug lines of logging added for you or you using some fork ?\nComment: func that unquarantine it is `mse_unquarantine`\nComment: so my main guess is that you guys has some problems with ARC4 library\r\n\r\njust tested on those 2 libraries, so verify your version and upgrade if required\r\n```\r\npycryptodomex==3.19.1\r\npycryptodomex==3.20.0\r\n\r\n```\nComment: > is those debug lines of logging added for you or you using some fork ?\r\n\r\nOnly for me, set logging to debug in quarantine.py using `logging.basicConfig(level=logging.DEBUG)`\nComment: Well the code works fine so I have no clue what is wrong on your side sadly\r\n\r\nEl mi\u00e9, 12 jun 2024, 17:37, JTurn01 ***@***.***> escribi\u00f3:\r\n\r\n> is those debug lines of logging added for you or you using some fork ?\r\n>\r\n> Only for me, set logging to debug in quarantine.py using\r\n> logging.basicConfig(level=logging.DEBUG)\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2166#issuecomment-2163347175>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH36HBVU5U7PIGKUPVODZHBTLHAVCNFSM6AAAAABJC34YSSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDCNRTGM2DOMJXGU>\r\n> .\r\n> You are receiving this because you were mentioned.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: It almost works, running your command does decrypt the file:\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/23060454/19f780f2-9599-44b6-a3cb-8263a1cf0e7e)\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/23060454/7d3f84ae-5817-4802-9b95-37ce11433e51)\r\n\r\nFile submit by Web UI is not decrypted\r\n\r\nOnly difference noticed is the owner of file in /tmp/cuckoo-tmp/\r\n\r\nDecrypted file:\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/23060454/4074a185-571c-4d20-bd5c-6b50a3212e0d)\r\n\r\nEncrypted file submitted from Web UI:\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/23060454/db186064-e2e7-4991-bc54-89a72d64bc69)\r\n\r\nDo you think there is an issue with the script that is run when file is submitted?\nComment: oh dear, do you run web as root?\nComment: Here is way I start CAPE\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/23060454/760f34a0-52d7-4b04-956b-1d9f2d68584a)\r\n\r\nDoes that answer?\r\n\r\nIf not, how do I check what user is running web?\nComment: that is totally not related to the web, did you read the readme? `systemctl status cape-web` but as you said, your file is under root after submission, so cape can't access files owner by root\nComment: Sorry for mixup, file gets decrypted by using command \r\nPYTHONPATH=$PWD python3 lib/cuckoo/common/quarantine.py /home/cybersecurity/Downloads/213D8090764C8F777E5C373B1C5CB1E8D7B4C85A \r\nand the decrypted file owner is root\r\n\r\nWhen submitting by web, it does not get decrypted and the file owner is cape\r\n\r\nHere is `systemctl status cape-web`:\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/23060454/4d1419c8-38cf-4894-8a80-d4c3bb8cf3ed)\r\n\nComment: that because you run it incorrectly, NEVER EVER use `sudo` with cape, you will break permissions on many things, ALWAYS `cape` user only. \r\n\r\nhow did you install cape? i see some stuff in this log that shouldn't fail and i have feeling that you didnt follow docs or used official scripts\nComment: What is the thing I run incorrectly? \r\n\r\nIf you would like to read the steps I followed here:\r\nhttps://github.com/JTurn01/capev2install/blob/main/README.md\r\nEverything from there follows docs and official scripts with few additions. Everything was installed using cape2.sh including the web service\r\n\r\nMy cape-web.service looks like this:\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/23060454/37b2016c-623b-45b7-aeb2-81ad48df26a9)\r\n\nComment: first image in this post https://github.com/kevoreilly/CAPEv2/issues/2166#issuecomment-2163675411\r\n\r\nso i did check in diagonal, server side instalation looks ok, but don't use my private repo, you have to use scripts only from cape2 for kvm-qemu.sh, i don't support public version of my repo\r\n\r\ni also see that you have some weird errors like yara, sflock, removing 2 lines of code is not fix, it means that install didn't work well, so you need to read the log that was generated by `| tee X`\r\n\r\nanother note, `running cape section` is not correct, well yes but no, cape and other services are executed by default, so you have just to restart cape services after edit configs\r\n\r\nwell as we can't reproduce this error, i spend a lot of time here, i tested that sample on many different cape servers that i have and it worked on all, so i would suggest go back and read log files generated on installation, closing this as not reproducible \nComment: Thank you for helping, at this point I am going to try reinstalling cape on a new VM and just seeing what happens, making sure to detail everything. \r\n\r\nOnce again, thank you.\nComment: pay a lot of attention to log, and store them as gold for future checks when something going wrong, is pure gold for debugging issues\nComment: ``reinstalling cape on a new VM``\r\n\r\nThis does not sound like a recommended setup. If cape is running in a vm then I hope you are running remote machinery e.g. ``kvm-remote`` rather than running nested Windows vms.\nComment: Want to give a little update, the problem is not occurring anymore upon the fresh install of CAPE. \r\nI am not sure what was wrong, but I know to make sure everything is run with CAPE user now.",
+  "Title: cgi\nBody: None",
+  "Title: replace CGI\nBody: None",
+  "Title: Can't delete pending task?\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n# Expected Behavior\r\n\r\nI've two pending tasks and my \"recent\" list doesn't get updated with the latest samples. Trying to delete the tasks but it fails.\r\n\r\n## Steps to Reproduce\r\n\r\n```\r\nGET /apiv2/tasks/delete/102/pending/\r\nHTTP 200 OK\r\nAllow: OPTIONS, GET\r\nContent-Type: application/json\r\nVary: Accept\r\n\r\n{\r\n    \"error\": true,\r\n    \"failed\": \"Task(s) ID(s) 102 failed to remove\"\r\n}\r\n```\nComment: As far as I remember over API you only can delete reported tasks\nComment: Ok, why a task could be in a pending state (and remain like this) if CAPE is idle?\nComment: Wrong tag? Check if is pe32+ but you don't have set arch or tags\r\n\r\nEl dom, 9 jun 2024, 7:23, Xavier Mertens ***@***.***>\r\nescribi\u00f3:\r\n\r\n> Ok, why a task could be in a pending state (and remain like this) if CAPE\r\n> is idle?\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2163#issuecomment-2156326190>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH34JUMOAAPCQBBN2VS3ZGPRFXAVCNFSM6AAAAABI7XOZ32VHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDCNJWGMZDMMJZGA>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: hey just tested this on my dev server, it works just fine with pending task\r\n\r\n```\r\nGET /apiv2/tasks/delete/54/pending/\r\nHTTP 200 OK\r\nAllow: GET, OPTIONS\r\nContent-Type: application/json\r\nVary: Accept\r\n\r\n{\r\n    \"data\": \"Task(s) ID(s) 54 has been deleted\"\r\n}\r\n```\nComment: any update here?\nComment: I was pretty busy these days, sorry. I found my problem... Out of disk space and new tasks were automatically a pending state. It happened because I had a huge peak of submissions in a short time :(\r\nJust expanded my filesystem. \nComment: great that it solved",
+  "Title: <WOOT> option is not installed in the KVM virtual instance\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ + ] I am running the latest version\r\n- [ + ] I did read the README!\r\n- [ + ] I checked the documentation and found no answer\r\n- [ + ] I checked to make sure that this issue has not already been filed\r\n- [ + ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ + ] I have read and checked all configs (with all optional parts)\r\n\r\n# Expected Behavior\r\n\r\nAfter modifying WOOT chars in the kvm-qemu.sh, the VM instance in the KVM should be created without standard Hard disk drives names such as QEMU, VIRTUAL HD but with the 4 chars which were set instead of the WOOT.\r\n\r\n# Current Behavior\r\n\r\nI have modified the kvm-qemu.sh with my following 4 chars received from the acpidump. After it, I have installed KVM using modified script and have created a new Win10 virtual instance inside the KVM. After installing Windows I looked for a current hard disk drives, dvd, etc. names using PowerShell command (Get-WmiObject Win32_PnPEntity | Select-Object DeviceID,Name\r\n), and I still see QEMU inside the path and the name.\r\n\r\nCurrent kvm-qemu.sh script:\r\n[kvm-qemu.txt](https://github.com/user-attachments/files/15740673/kvm-qemu.txt)\r\n\r\nScreenshot from Windows 10\r\n![Screenshot from 2024-06-07 14-35-55(1)](https://github.com/kevoreilly/CAPEv2/assets/151911915/fa93c77b-0a0c-44b0-9d36-511217f6a287)\r\n![Screenshot from 2024-06-07 14-31-24](https://github.com/kevoreilly/CAPEv2/assets/151911915/533dd953-329d-45c3-98b8-c7e60f1be0db)\r\n instance:\r\n\r\n## Context\r\n\r\nI have reinstalled fully KVM 2 times using kvm-qemu shell script and hardware patterns are still QEMU. I think that I might doing something wrong but in the Documentation I have not found details regarding that. If that is not a problem on your side, sorry for bothering.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| OS version       | Ubuntu 22.04 (Host machine), Windows 10 21H2 64-bit (Guest machine)\r\n\r\n## Failure Logs\r\n\r\nThere were errors for me during installation which were related to libvirtd, but I have fixed that and then kvm-qemu.sh script was executed without anu errors.\nComment: hey, can you post output of `dpkg -l|grep qemu`?\nComment: Hello, thank you for answering. Here it is:\r\n![Screenshot from 2024-06-09 17-49-13](https://github.com/kevoreilly/CAPEv2/assets/151911915/26fc96bb-d505-4934-9ab2-237a45c42ca0)\r\n\nComment: So you have poisoned system, i guess when you was fixing libvirt, you installed things from apt, as you can see too much qemu, specially `qemu-system-x86`, on my server i only have\r\n\r\n```\r\ndpkg -l|grep qemu\r\nhi  qemu                                                        8.2.1                                                                           amd64        Custom antivm qemu\r\n```\nComment: Aaaa, so the best decision I guess would be just to reset Ubuntu and start everything from scratch?\nComment: no, you can purge anytihng qemu related as first and faster test, then just use script, but be careful when installing something from apt, specially libvirt related it always trying to install default qemu. so just run script or ask for help here\nComment: Thanks, doing.\nComment: Let me know if that worked\r\n\r\nEl dom, 9 jun 2024, 20:24, artist740 ***@***.***> escribi\u00f3:\r\n\r\n> Thanks, doing.\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2162#issuecomment-2156727967>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH36ANBQPT4K4JEWZ6GLZGSMUHAVCNFSM6AAAAABI6ZL4KWVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDCNJWG4ZDOOJWG4>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: Hello! Here's an update on my issue: Yesterday, I removed all QEMU-related items and reran the script. I got the same single QEMU instance as you did. However, I'm now facing a new problem, which I've been trying to solve all day. Maybe because my computer is already like frankenstein.\r\n\r\nAt the beginning, I had an issue with the libvirtd:\r\n```\r\nvirsh: /usr/local/lib/x86_64-linux-gnu/libvirt.so.0: version `LIBVIRT_PRIVATE_9.0.0' not found (required by virsh)\r\n```\r\nI followed the suggested solution for that Error in kv-qemu.sh, but it didn't help.\r\n\r\nI checked the libvirt version with `dpkg`, but it showed nothing. I tried installing libvirt using `./kvm-qemu.sh libvirt`, but the error persisted. Then, I downloaded and compiled libvirt locally using `wget` and `ninja`. Here\u2019s what I did:\r\n\r\n```\r\nwget https://libvirt.org/sources/libvirt-9.0.0.tar.xz\r\ntar -xf libvirt-9.0.0.tar.xz\r\ncd ~/Desktop/CAPEv2/libvirt-9.0.0\r\nmkdir build\r\ncd build\r\nmeson setup .. --prefix=/usr/local\r\nninja\r\nsudo checkinstall --install=no --pkgname=libvirt --pkgversion=9.0.0 ninja install\r\nsudo dpkg -i libvirt_9.0.0-1_amd64.deb\r\ndpkg -l | grep libvirt\r\n```\r\n\r\nAfter compiling, I could finally see libvirt in `dpkg`:\r\n\r\n```\r\ndpkg -l | grep libvirt\r\nii  gir1.2-libvirt-glib-1.0:amd64     1.0.0-1     amd64     GObject introspection files for the libvirt-glib library\r\nii  libvirt                           9.0.0-1     amd64     Package created with checkinstall 1.6.3\r\nii  libvirt-glib-1.0-0                1.0.0       amd64     Custom libvirt-glib-1.0-0\r\n```\r\n\r\nBut now, when I try to launch virt-manager, it cannot find the libvirt Python module:\r\n\r\n```\r\nsudo virt-manager\r\nTraceback (most recent call last):\r\n  File \"/usr/bin/virt-manager\", line 6, in <module>\r\n    from virtManager import virtmanager\r\n  File \"/usr/share/virt-manager/virtManager/virtmanager.py\", line 19, in <module>\r\n    from virtinst import BuildConfig\r\n  File \"/usr/share/virt-manager/virtinst/__init__.py\", line 43, in <module>\r\n    _set_libvirt_error_handler()\r\n  File \"/usr/share/virt-manager/virtinst/__init__.py\", line 33, in _set_libvirt_error_handler\r\n    import libvirt\r\nModuleNotFoundError: No module named 'libvirt'\r\n```\r\n\r\nI know this is a different problem, but I have two questions:\r\n1. Can I download this module using `sudo apt-get install python3-libvirt`?\r\n2. Can you please share your output of `dpkg -l | grep libvirt`?\nComment: when you run script it says `do not install from APT`. so TLDR: NO!\r\n\r\ni would suggest review code related to libvirt in kvm-qemu. Why you just dont use our script that fixes all this https://github.com/kevoreilly/CAPEv2/blob/master/installer/kvm-qemu.sh ? it is v 9.6 for example, that script fixes those cases with  `libvirt.so.0: version `LIBVIRT_PRIVATE_9.0.0'` it sets PKG variable to build everything fine\r\n\r\nplease check this code till the end of the func https://github.com/kevoreilly/CAPEv2/blob/master/installer/kvm-qemu.sh#L529 it all what you need to have your system fixed, the thing is that you dont need to run virt-manager as root, as dependencies nowaday is installed to user, not to root\nComment: any update here?\nComment: Hey! When I was launching this script (https://github.com/kevoreilly/CAPEv2/blob/master/installer/kvm-qemu.sh#L529), after it I have encountered the same LIBVIRT_PRIVATE_9.0.0 error. I have tried to apply the fixes from https://github.com/kevoreilly/CAPEv2/blob/6b4d1ff5a93e038bad3e325f9790be45d1fbc198/installer/kvm-qemu.sh#L1099, but the error persisted. I tried downloading and compiling libvirt packages locally, but it caused issues with KVM launching. Finally, I've decided to wipe the OS and start over, because it is definitely strange that it works for others but not for me. And I'll work on this today and provide updates if successful.\nComment: get latest version of script i just pushed small update that works with newer versions of qemu and libvirt\nComment: any success?\nComment: Hello! I just got back to this today. I wiped Ubuntu and installed everything from scratch. The first installation using the script was unsuccessful because two dev libraries were missing (attached log1). I downloaded missing packagaes as deb packages from ubuntu.org and then installed them using dpkg. After that, I ran the script again, and it didn't show any errors, but after rebooting, I don't see the QEMU packages. I tried `dpkg -l | grep qemu` and `which qemu-system-x86_64`, but neither showed anything. Sorry but maybe you encountered / heard about similar problem before?\r\n[kvm-qemu1(first launch).log](https://github.com/user-attachments/files/15875937/kvm-qemu1.first.launch.log)\r\n[kvm-qemu2.log](https://github.com/user-attachments/files/15875938/kvm-qemu2.log)\r\n\nComment: hey, what packages you had to download? yes i see errors in logs, i did check on my servers i do have `gtk2-engines-murrine:amd64` which is v2 not v3, idk from quick search people suggests `sudo apt-get install build-essential libgtk-3-dev`. but do you use vanilla ubuntu 22.04 with gnome shell or you using different variant? is so strange that you have so many problems when normally is just run and forget\r\n\r\n\r\nabout qemu problem compilation from log2, \r\n```\r\nRun-time dependency gtk+-3.0 found: NO (tried pkgconfig)\r\n\r\n../meson.build:1740:8: ERROR: Dependency \"gtk+-3.0\" not found, tried pkgconfig\r\n\r\nA full log can be found at /tmp/qemu-9.0.0/build/meson-logs/meson-log.txt\r\n[-] Compilling failed\r\n```\nComment: I have next version of Ubuntu:\r\n\r\n~/Desktop$ lsb_release -a\r\nNo LSB modules are available.\r\nDistributor ID:\tUbuntu\r\nDescription:\tUbuntu 22.04.3 LTS\r\nRelease:\t22.04\r\nCodename:\tjammy\r\n~/Desktop$ echo $XDG_CURRENT_DESKTOP\r\nubuntu:GNOME\r\n\r\nAnd I have downloaded next packages:\r\n\r\nlibapparmor-dev_3.0.4-2ubuntu2_amd64.deb | http://archive.ubuntu.com/ubuntu/pool/main/a/apparmor/libapparmor-dev_3.0.4-2ubuntu2_amd64.deb\r\n\r\nlibacl1-dev_2.3.1-1_amd64.deb | http://archive.ubuntu.com/ubuntu/pool/main/a/acl/libacl1-dev_2.3.1-1_amd64.deb\r\n\r\n\nComment: Regarding Error with qemu, now I see, thanks for highlighting it, because I have not spotted it by myself, so will try to install gtk now.\nComment: why you download those debs? your ubuntu doesnt have it? libapparmor is listed here for installation https://github.com/kevoreilly/CAPEv2/edit/master/installer/kvm-qemu.sh#251\r\n\r\nsincerely, sadly you have super weird ubuntu problems that i never saw before, i personally already moved to ubuntu 24.04 for my dev, but all the production is on 22.04\r\n\r\n```\r\napt show libapparmor-dev\r\nPackage: libapparmor-dev\r\nVersion: 3.0.4-2ubuntu2.3\r\nPriority: extra\r\nSection: libdevel\r\nSource: apparmor\r\nOrigin: Ubuntu\r\nMaintainer: Ubuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com>\r\nOriginal-Maintainer: Debian AppArmor Team <pkg-apparmor-team@lists.alioth.debian.org>\r\nBugs: https://bugs.launchpad.net/ubuntu/+filebug\r\nInstalled-Size: 279 kB\r\nDepends: libapparmor1 (= 3.0.4-2ubuntu2.3)\r\nHomepage: https://apparmor.net/\r\nDownload-Size: 79.4 kB\r\nAPT-Manual-Installed: yes\r\nAPT-Sources: http://europe-west3.gce.archive.ubuntu.com/ubuntu jammy-updates/main amd64 Packages\r\nDescription: AppArmor development libraries and header files\r\n libapparmor-dev provides the development libraries and header\r\n files needed to link against libapparmor, as well as\r\n the manpages for library functions.\r\n\r\n\r\napt show libacl1-dev\r\nPackage: libacl1-dev\r\nVersion: 2.3.1-1\r\nPriority: extra\r\nSection: libdevel\r\nSource: acl\r\nOrigin: Ubuntu\r\nMaintainer: Ubuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com>\r\nOriginal-Maintainer: Guillem Jover <guillem@debian.org>\r\nBugs: https://bugs.launchpad.net/ubuntu/+filebug\r\nInstalled-Size: 236 kB\r\nProvides: acl-dev\r\nDepends: libc6-dev | libc-dev, libacl1 (= 2.3.1-1), libattr1-dev (>= 1:2.4.46-8)\r\nConflicts: acl-dev\r\nReplaces: acl-dev\r\nHomepage: https://savannah.nongnu.org/projects/acl/\r\nDownload-Size: 78.0 kB\r\nAPT-Sources: http://europe-west3.gce.archive.ubuntu.com/ubuntu jammy/main amd64 Packages\r\nDescription: access control list - static libraries and headers\r\n This package contains the static libraries and header files needed\r\n for developing programs which make use of the access control list\r\n programming interface defined in POSIX 1003.1e draft standard 17.\r\n\r\n```\nComment: I remember after I saw those errors after running kvm-qemu.sh script, I have checked those dev packages using apt show and it was nothing. That is why I have decided to install them on my own but using .deb and dpkg. So, now when I was tryhing to use this command \"sudo apt-get install build-essential libgtk-3-dev\", I am receiving dependency error problems:\r\n\r\n\"Reading package lists... Done\r\nBuilding dependency tree... Done\r\nReading state information... Done\r\nbuild-essential is already the newest version (12.9ubuntu3).\r\nbuild-essential set to manually installed.\r\nSome packages could not be installed. This may mean that you have\r\nrequested an impossible situation or if you are using the unstable\r\ndistribution that some required packages have not yet been created\r\nor been moved out of Incoming.\r\nThe following information may help to resolve the situation:\r\n\r\nThe following packages have unmet dependencies:\r\nlibpango1.0-dev : Depends: gir1.2-pango-1.0 (= 1.50.6+ds-2) but 1.50.6+ds-2ubuntu1 is to be installed\r\nDepends: libpango-1.0-0 (= 1.50.6+ds-2) but 1.50.6+ds-2ubuntu1 is to be installed\r\nDepends: libpangocairo-1.0-0 (= 1.50.6+ds-2) but 1.50.6+ds-2ubuntu1 is to be installed\r\nDepends: libpangoft2-1.0-0 (= 1.50.6+ds-2) but 1.50.6+ds-2ubuntu1 is to be installed\r\nDepends: libpangoxft-1.0-0 (= 1.50.6+ds-2) but 1.50.6+ds-2ubuntu1 is to be installed\r\nDepends: pango1.0-tools (= 1.50.6+ds-2)\r\nE: Unable to correct problems, you have held broken packages.\"\r\n\r\nWhen I am trying to solve them and install libpango packages, I caught another dependency error related to libpango and other packages. Its like matrioshka). So, I will ask now IT managers who did reinstall for my Ubuntu, maybe they are using some weird version of it (I have already asked before but just in a informal way, they said it is standard 22.04)\nComment: Hi,\r\n\r\nHere's an update on the issue. I installed Ubuntu 24.04 thinking it might work better. I managed to install KVM, libvirt, and virt-manager, but I can't add a new VM because of network problems. The error I got is:\r\n\r\n\"libvirt.libvirtError: Requested operation is not valid: network 'default' is not active.\"\r\n\r\nI've seen this problem before and usually, it's an easy fix, but this time the error is different:\r\n\r\nvbnet\r\n\r\nsudo virsh net-start default\r\nerror: Failed to start network default\r\nerror: internal error: Child process (VIR_BRIDGE_NAME=virbr0 /usr/sbin/dnsmasq --conf-file=/var/lib/libvirt/dnsmasq/default.conf --leasefile-ro --dhcp-script=/usr/libexec/libvirt_leaseshelper) unexpected exit status 11: /usr/libexec/libvirt_leaseshelper: /lib/x86_64-linux-gnu/libvirt.so.0: version 'LIBVIRT_PRIVATE_10.3.0' not found (required by /usr/libexec/libvirt_leaseshelper)\r\ndnsmasq: lease-init script returned exit code 1\r\n\r\nIt looks like it's trying to find LIBVIRT, not through virsh as usual, but through libvirt_leaseshelper. I tried purging and reinstalling everything, but no luck. What's weird is that virsh itself works fine without any errors. This might be an issue specific to Ubuntu 24.04. I couldn't find anything on Google about this \"leaseshelper\" problem.\r\n\r\nAny ideas?\nComment: the error is the same as before basically, some libs for some reason didn't get linked properly\nComment: Hey! I was able to finally fix it, and I have compiled the manual describing all the issues that I have encountered and the solution steps. Maybe it will be useful for somebody who will encounter similar problems. The problem itself was simple, but still unclear to me. \r\n\r\nThank you very much for your help!\r\n\r\n[manual.txt](https://github.com/user-attachments/files/15989239/manual.txt)\nComment: ![Screenshot from 2024-06-26 16-57-43](https://github.com/kevoreilly/CAPEv2/assets/151911915/d7aa9810-7a1a-4163-8396-20c8772b17bb)\r\n![Screenshot from 2024-06-26 16-58-10](https://github.com/kevoreilly/CAPEv2/assets/151911915/7778583e-26ea-4397-952e-3907fb76b105)\nComment: yey congrats\r\njust bear in mind that next comamnd might install libvirt0 and that poison your system, it not always happens but i saw that\r\n```\r\n```sudo apt update\r\n   sudo apt install virt-manager\r\n```",
+  "Title: Agent:  support streaming a file off the guest. \nBody: General idea is to add a handler that can support streaming out of the guest VM.  Something similar to doing   `tail -f <log-file>`\r\n\r\n You can test this by doing something like\r\n`curl.exe -v --no-buffer -d streaming=1 -d filepath=\"c:\\tmp\\sysmon.xml\" http://localhost:8000/retrieve`\r\n\r\nRationale:\r\n* streaming can provide resilience if guest is rebooted. \r\n* Will allow future work with real time feedback.\r\n \r\n\r\nAdded `ThreadingTCPServer`  because the existing tcp server can only support a single connection at a time.   `ThreadingTCPServer`  would allow multiple connections at the same time. ",
+  "Title: Add deb.py, fix strace.py\nBody: None",
+  "Title: Processing Error: \"Exception when processing task: 'info'\"\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\nAfter submitting a sample via the web interface, it reports analysis complete in the logs and completes the report processing.\r\n\r\n# Current Behavior\r\nSubmitting a sample via the web interface works, logs report analysis completes, but the web interface reports failed_processing.\r\nI do not understand how to solve the exception message thrown in the logs\r\n\r\n## Steps to Reproduce\r\n\r\n1. Installed fresh with default settings as recommended in the docs\r\n2. Configured confs as guided.\r\n3. Logs report everything is up and running.\r\n4. Uploaded sample https://bazaar.abuse.ch/sample/a775277953ea0daab3cbec4aa2b37c5e0052172c05f7d4d0e8c39894c58fabe0/ via the web interface, using default parameters.\r\n5. Fails with \"failed_processing\"\r\n\r\n\r\n## Context\r\n\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | commit 9765ef8e9e7e50bb7055dc1110c99c7eddad3240\r\n| Host OS version       | Ubuntu 22.04\r\n| Guest OS V | Windows 10 Home Premium\r\n| VM software | Qemu - KVM, Virt-Manager\r\n\r\n## Failure Logs\r\nfrom $ journalctl -u cape-processor: \r\n```\r\nJun 07 12:24:32 cape python3[4678]: 2024-06-07 12:24:32,897 [root] INFO: Processing analysis data for Task #9\r\nJun 07 12:24:33 cape python3[4678]: 2024-06-07 12:24:32,999 [root] ERROR: [9] Exception when processing task: 'info'\r\nJun 07 12:24:33 cape python3[4678]: pebble.common.RemoteTraceback: Traceback (most recent call last):\r\nJun 07 12:24:33 cape python3[4678]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/pebble/common.py\", line 174, in process_execute\r\nJun 07 12:24:33 cape python3[4678]:     return function(*args, **kwargs)\r\nJun 07 12:24:33 cape python3[4678]:   File \"/opt/CAPEv2/utils/process.py\", line 129, in process\r\nJun 07 12:24:33 cape python3[4678]:     RunSignatures(task=task_dict, results=results).run()\r\nJun 07 12:24:33 cape python3[4678]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 341, in __init__\r\nJun 07 12:24:33 cape python3[4678]:     self.signatures.append(signature(self.results))\r\nJun 07 12:24:33 cape python3[4678]:   File \"/opt/CAPEv2/utils/../modules/signatures/windows/injection_rwx.py\", line 27, in __init__\r\nJun 07 12:24:33 cape python3[4678]:     if self.results[\"info\"][\"package\"] not in [\"exe\", \"rar\", \"zip\", \"dll\", \"regsvr\"]:\r\nJun 07 12:24:33 cape python3[4678]: KeyError: 'info'\r\nJun 07 12:24:33 cape python3[4678]: The above exception was the direct cause of the following exception:\r\nJun 07 12:24:33 cape python3[4678]: Traceback (most recent call last):\r\nJun 07 12:24:33 cape python3[4678]:   File \"/opt/CAPEv2/utils/process.py\", line 277, in processing_finished\r\nJun 07 12:24:33 cape python3[4678]:     _ = future.result()\r\nJun 07 12:24:33 cape python3[4678]:   File \"/usr/lib/python3.10/concurrent/futures/_base.py\", line 451, in result\r\nJun 07 12:24:33 cape python3[4678]:     return self.__get_result()\r\nJun 07 12:24:33 cape python3[4678]:   File \"/usr/lib/python3.10/concurrent/futures/_base.py\", line 403, in __get_result\r\nJun 07 12:24:33 cape python3[4678]:     raise self._exception\r\nJun 07 12:24:33 cape python3[4678]: KeyError: 'info'\r\n```\r\n\r\nfrom $ journalctl -u cape:\r\n```\r\nJun 07 12:20:02 cape python3[1576]: 2024-06-07 12:20:02,978 [lib.cuckoo.core.machinery_manager] INFO: Task #9: found useable machine win10 (arch=x86, platform=windows)\r\nJun 07 12:20:02 cape python3[1576]: 2024-06-07 12:20:02,978 [lib.cuckoo.core.scheduler] INFO: Task #9: Processing task\r\nJun 07 12:20:03 cape python3[1576]: 2024-06-07 12:20:03,098 [lib.cuckoo.core.analysis_manager] INFO: Task #9: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_pa7rh2t3/a775277953ea0daab3cb.exe'\r\nJun 07 12:20:29 cape python3[1576]: 2024-06-07 12:20:29,301 [lib.cuckoo.core.analysis_manager] INFO: Task #9: Enabled route 'none'.\r\nJun 07 12:20:29 cape python3[1576]: 2024-06-07 12:20:29,350 [lib.cuckoo.core.guest] INFO: Task #9: Starting analysis on guest (id=win10, ip=192.168.122.105)\r\nJun 07 12:20:29 cape python3[1576]: 2024-06-07 12:20:29,391 [lib.cuckoo.core.guest] INFO: Task #9: Guest is running CAPE Agent 0.17 (id=win10, ip=192.168.122.105)\r\nJun 07 12:20:34 cape python3[1576]: 2024-06-07 12:20:34,677 [lib.cuckoo.core.guest] INFO: Task #9: Uploading script files to guest (id=win10, ip=192.168.122.105)\r\nJun 07 12:20:57 cape python3[1576]: 2024-06-07 12:20:57,187 [lib.cuckoo.core.resultserver] INFO: Task 9: Process 5400 (parent 5112): a775277953ea0daab3cb.exe, path C:\\Users\\MaskedBandit\\AppData\\Local\\Temp\\a7752>\r\nJun 07 12:21:18 cape python3[1576]: 2024-06-07 12:21:18,299 [lib.cuckoo.core.resultserver] INFO: Task 9: Process 756 (parent 624): svchost.exe, path C:\\Windows\\System32\\svchost.exe\r\nJun 07 12:21:21 cape python3[1576]: 2024-06-07 12:21:21,420 [lib.cuckoo.core.resultserver] INFO: Task 9: Process 5932 (parent 5400): powershell.exe, path C:\\Windows\\SysWOW64\\WindowsPowerShell\\v1.0\\powershell.exe\r\nJun 07 12:21:21 cape python3[1576]: 2024-06-07 12:21:21,555 [lib.cuckoo.core.resultserver] INFO: Task 9: Process 5028 (parent 5400): schtasks.exe, path C:\\Windows\\SysWOW64\\schtasks.exe\r\nJun 07 12:21:22 cape python3[1576]: 2024-06-07 12:21:22,017 [lib.cuckoo.core.resultserver] INFO: Task 9: Process 1064 (parent 624): svchost.exe, path C:\\Windows\\System32\\svchost.exe\r\nJun 07 12:21:33 cape python3[1576]: 2024-06-07 12:21:33,149 [lib.cuckoo.core.resultserver] INFO: Task 9: Process 4996 (parent 5400): a775277953ea0daab3cb.exe, path C:\\Users\\MaskedBandit\\AppData\\Local\\Temp\\a7752>\r\nJun 07 12:22:04 cape python3[1576]: 2024-06-07 12:22:04,744 [lib.cuckoo.core.resultserver] INFO: Task 9: Process 2632 (parent 624): svchost.exe, path C:\\Windows\\System32\\svchost.exe\r\nJun 07 12:24:31 cape python3[1576]: 2024-06-07 12:24:31,466 [lib.cuckoo.core.guest] INFO: Task #completed successfully: Analysis 9 (id=win10, ip=192.168.122.105)\r\nJun 07 12:24:32 cape python3[1576]: 2024-06-07 12:24:32,547 [lib.cuckoo.core.analysis_manager] INFO: Task #9: Completed analysis successfully.\r\nJun 07 12:24:32 cape python3[1576]: 2024-06-07 12:24:32,553 [lib.cuckoo.core.analysis_manager] INFO: Task #9: analysis procedure completed\r\n```\r\n\nComment: Sorry miss clicked the close issue button! \r\n\r\nHopefully I've supplied all the information needed. Thank you in advance for your time! :) \nComment: Try reprocess it by hand in debug mode(see readme )\r\n\r\nEl vie, 7 jun 2024, 15:00, Phoenix ***@***.***> escribi\u00f3:\r\n\r\n> Sorry miss clicked the close issue button!\r\n>\r\n> Hopefully I've supplied all the information needed. Thank you in advance\r\n> for your time! :)\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2159#issuecomment-2154788692>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH36TXB2FSGAIFFDUXGTZGGVGTAVCNFSM6AAAAABI6TZ2Q6VHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDCNJUG44DQNRZGI>\r\n> .\r\n> You are receiving this because you are subscribed to this thread.Message\r\n> ID: ***@***.***>\r\n>\r\n\nComment: Following your request, I ran the command \r\n$ poetry run python3 process.py -r 9 -d\r\nThis successfully processed and generated a report! Great :) (logs are rather large https://pastebin.com/cuYaHGhk )\r\n\r\nSo I submitted a new sample, and I got the same error that processing failed with the same log message for the error.\r\n\r\nThis lead me to test running the process.py again on that sample, and it successfully generated the process report when manually called with the command above. \r\n\r\nI then tested running the process.py without the -r flag. If I do not include this flag then the processing fails with the same original error from the logs.  \r\n```\r\n2024-06-07 13:36:47,673 [root] INFO: Processing analysis data for Task #13\r\nJun 07 13:36:47 cape python3[4678]: 2024-06-07 13:36:47,694 [root] ERROR: [13] Exception when processing task: 'info'\r\nJun 07 13:36:47 cape python3[4678]: pebble.common.RemoteTraceback: Traceback (most recent call last):\r\nJun 07 13:36:47 cape python3[4678]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/pebble/common.py\", line 174, in process_execute\r\nJun 07 13:36:47 cape python3[4678]:     return function(*args, **kwargs)\r\nJun 07 13:36:47 cape python3[4678]:   File \"/opt/CAPEv2/utils/process.py\", line 129, in process\r\nJun 07 13:36:47 cape python3[4678]:     RunSignatures(task=task_dict, results=results).run()\r\nJun 07 13:36:47 cape python3[4678]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 341, in __init__\r\nJun 07 13:36:47 cape python3[4678]:     self.signatures.append(signature(self.results))\r\nJun 07 13:36:47 cape python3[4678]:   File \"/opt/CAPEv2/utils/../modules/signatures/windows/injection_rwx.py\", line 27, in __init__\r\nJun 07 13:36:47 cape python3[4678]:     if self.results[\"info\"][\"package\"] not in [\"exe\", \"rar\", \"zip\", \"dll\", \"regsvr\"]:\r\nJun 07 13:36:47 cape python3[4678]: KeyError: 'info'\r\nJun 07 13:36:47 cape python3[4678]: The above exception was the direct cause of the following exception:\r\nJun 07 13:36:47 cape python3[4678]: Traceback (most recent call last):\r\nJun 07 13:36:47 cape python3[4678]:   File \"/opt/CAPEv2/utils/process.py\", line 277, in processing_finished\r\nJun 07 13:36:47 cape python3[4678]:     _ = future.result()\r\nJun 07 13:36:47 cape python3[4678]:   File \"/usr/lib/python3.10/concurrent/futures/_base.py\", line 451, in result\r\nJun 07 13:36:47 cape python3[4678]:     return self.__get_result()\r\nJun 07 13:36:47 cape python3[4678]:   File \"/usr/lib/python3.10/concurrent/futures/_base.py\", line 403, in __get_result\r\nJun 07 13:36:47 cape python3[4678]:     raise self._exception\r\nJun 07 13:36:47 cape python3[4678]: KeyError: 'info'\r\n```\r\n\r\nSo my guess is that I've not correctly configured something for the cape-process ?\nComment: Process and reprocess uses the same config, did you restar cape processing to try if that fixed?\nComment: @doomedraven Hi, sorry to update closed, but I have same issue. And my issue is more magic :)\r\nBecause it works ok last week but today does not. All I have done - just added new virtual machine to KVM.\r\nAnd now after submitting a sample its fails processing with the same keyerror 'info' in /utils/process.py\r\nPlease advise what should I inspect?\r\nEven the old sample analyses that ended ok, now when trying to `poetry run python3 process.py -r` give me a keyerror. I'm stuck. Should I pay attention to the network and the IP? Or is it most likely something in the configuration files?\nComment: it sound like something changed in configs, in processing.conf check analysisinfo or something like that, that module writes under \"info\", but also rerun or run proecessing in debug mode (-d)\nComment: Thanks!\r\nYou were right, I returned \"enabled = yes\" to the analysisinfo. And I reboot full host (instead of restarting cape-service).\r\nAs always, this is not magic, but unconcentration :)\nComment: Glad that worked",
+  "Title: Allow setting package in linux\nBody: None",
+  "Title: Allow plugins to run that do not have platform config value\nBody: Follow on from #2154; fix a bug where no results are returned if `options.plaform` exists but is `None`.",
+  "Title: Community.py cleanup option\nBody: None\nComment: oh yes this a good one",
+  "Title: Update Quickbind.py\nBody: Use lib for RC4 decryption",
+  "Title: Allow plugins to run that do not have platform config value\nBody: Replace the existing try/catch with a `hasattr` statement. This fixes a bug where attempting to access `options.platform` in the try for plugins without a platform value causes an AttributeError to be raised. The AttributeError is caught by the generic Exception clause and `None` is returned.",
+  "Title: Allow plugins to run that do not have platform config value\nBody: Replace the existing try/catch with a `hasattr` statement. This fixes a bug where attempting to access `options.platform` in the try for plugins without a platform value causes an AttributeError to be raised. The AttributeError is caught by the generic Exception clause and `None` is returned.",
+  "Title: Fix stop, use guest name\nBody: Use cuckoo context name instead of cape context machine name for stop\r\n\r\nLooks like since: https://github.com/kevoreilly/CAPEv2/pull/2037, (not sure if this is the actual PR)\r\n`task.machine` is now `machine.label` instead of `machine.name`",
+  "Title: Fix enforce_timeout\nBody: `enforce_timeout` logic was removed here:\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/pull/2070/files#diff-5b414b99a827dfb21077aedddb85b188d90b6aeb8f4889bf06262ff2a7f44bbeR631-L608\r\n\r\nBringing it back\nComment: thanks\nComment: self.pid_check is initialized as false, is this doing anything?\nComment: in our case is was set to true in\r\n\r\n```\r\nif self.options.get(\"manual\", False):\r\n    self.pid_check = True\r\n```\r\n\r\n@enzok ",
+  "Title: Staging\nBody: None",
+  "Title: Update Oyster yara and parsing\nBody: None\nComment: Can you fix test plz?",
+  "Title: Update Quickbind.yar\nBody: tighten up the rule to address some false positives and better coverage across variant samples",
+  "Title: Fix 7zip password being b'infected'\nBody: https://github.com/kevoreilly/CAPEv2/blob/5a033925c06b11f22e1b16038e7ea9750a9bbff7/web/web/settings.py#L85-L86",
+  "Title: prevent errors if module has not platform value\nBody: None",
+  "Title: \u3010False Positive\u3011- About the rule of UPX at https://github.com/kevoreilly/CAPEv2\nBody: Dear Author,\r\n\r\nI am a developer of a software named Game booster, which is a VPN for game only. Recently I found that our app was reported Malicious and matched the rule UPX from ruleset UPX at https://github.com/kevoreilly/CAPEv2 . In my mind it\u2019s a false positive report. \r\nIn the documentation  of CAPE it said that: \r\nCAPE was derived from Cuckoo v1 which features the following core capabilities on the Windows platform:\r\n\u2022\tBehavioral instrumentation based on API hooking\r\n\u2022\tCapture of files created, modified and deleted during execution\r\n\u2022\tNetwork traffic capture in PCAP format\r\nHowever, those above 3 actions is regular technical means of VPN or VPN for game only, which means that we cannot definite a software as malicious because of the above 3 rules. \r\nI am writing to seek for help and hope that rule can be modified accornigly. \r\nThank you very much. \r\nIf you need any factual  evidence or assistance for test, please don\u2019t hesitate to let me know. \r\n\r\n\nComment: Well upx is upx it will be always detected as UPX, it not set malicious due to upx, what sets malicious is community signatures. What says is malicious? malscore?\nComment: As doomed says this is a true-positive non-malicious detection of UPX.\r\n\r\nhttps://upx.github.io\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/analyzer/windows/data/yara/UPX.yar",
+  "Title: add platform for some exclusive OS modules\nBody: After a lot of testing, I was able to verify that the strace module breaks the summary creation in the processing module when you run Windows and Linux machines for analysis at the same time.\r\n\r\nThis PR is a suggestion, if you know another better solution I'm able to collaborate to solve.\r\n\r\n",
+  "Title: behavior tree rewrite\nBody: None\nComment: To prevent recursive errors on json reports, for some malware spawns a lot of processes, and we embed children into parent process\nComment: This works, but changing the schema of the json has some implications:\r\n- Will probably break things for users\r\n- Dynamic CAPA will break: https://github.com/mandiant/capa/blob/master/capa/features/extractors/cape/models.py#L312-L319\r\n\r\nI would prefer a conf that limits the depth of the tree with a sensible default or being able to disable it (users can rebuild the tree themselves from processes if needed).\r\n\r\n\nComment: well sometime progress requires breaking changes, this rarely happens, but would be nice to handle this properly without loosing details, but yes quick fix i guess will be configurable limit, but that limit should be the same as json limit, so is only on/off as is uniq field that breaks",
+  "Title: Scheduler fix\nBody: The previous change to find_next_serviceable_task has a bug if\r\nallow_static is True. In this case, we would only call\r\nfind_pending_task_not_requiring_machinery and never call\r\nfind_pending_task_to_service.\r\nInstead, we want to track if the maximum number of machines has been\r\nreached and use that information to make the determination of which\r\nfunction to call.\r\n\r\nThe calls to main_db.set_status in node_submit_task should not be\r\nin a begin() block because node_submit_task is already called from\r\nwithin a transaction.\nComment: thank you\nComment: Thanks Tommy",
+  "Title: Bug fix in qemu shutdown\nBody: - Modification of the \"stop\" function to patch unstoppable VM bug.\r\n- Adding \"-monitor stdio\" argument  to be able to send \"qemu monitor\" commands\nComment: thanks",
+  "Title: allow_static jobs when no available VMs\nBody: None",
+  "Title: \"failed_processing\": regexp is too large\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I did read the README!\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nCorrect ending of analysis (?).\r\n\r\n# Current Behavior\r\n\r\nI follow the docs (latest) to perform KVM and CAPEv2 installation. All ok, no errors. Default configs. When I submit a new file to analyze, it fails due a timeout at processing stage with \"failed_processing\" ending status on GUI.\r\n\r\n# Failure Information (for bugs)\r\n\r\n```bash\r\n2024-05-27 00:37:59,065 [Task 1] [root] DEBUG: Processing task\r\n2024-05-27 00:37:59,079 [Task 1] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"CAPE\" on analysis at \"/opt/CAPEv2/storage/analyses/1\"\r\n2024-05-27 00:37:59,122 [Task 1] [lib.cuckoo.common.objects] DEBUG: Initializing Yara...\r\nerror: invalid regular expression\r\n   --> line:385:25\r\n    |\r\n385 |                 $reg0 = /xref\\r?\\n?.{,8192}\\r?\\n?.{,8192}65535\\sf/\r\n    |                         ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ regexp is too large\r\n    | rule_binaries_2\r\n```\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Re-run process stage via cli: ```sudo -u cape poetry run python utils/process.py -r 1 -d```\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | fdc552d644481408f5a37db60ec29250fb125c87\r\n| OS version       | Ubuntu 22.04.4 LTS\r\n| VM version      | Windows 10\r\n\nComment: If I disable the \"CAPE\" module in `conf/processing.conf`, the analysis ends without errors. I guess that some YARA rule in this module is wrong.\nComment: you are not on latest my friend, it was fixed 4 days ago https://github.com/CAPESandbox/community/commit/71231c7ff64daaa6cbb7f2c333a5e0bf050d1048#diff-99329fd646bfd60741437fda9a5cca1be03420f63030bf116cc6ff53e81b3c5eR266. you need to pull community signatures again `poetry run utils/community.py -awf` && `sudo systemctl restart cape-processor`\nComment: > you are not on latest my friend, it was fixed 4 days ago [CAPESandbox/community@71231c7#diff-99329fd646bfd60741437fda9a5cca1be03420f63030bf116cc6ff53e81b3c5eR266](https://github.com/CAPESandbox/community/commit/71231c7ff64daaa6cbb7f2c333a5e0bf050d1048#diff-99329fd646bfd60741437fda9a5cca1be03420f63030bf116cc6ff53e81b3c5eR266). you need to pull community signatures again `poetry run utils/community.py -awf` && `sudo systemctl restart cape-processor`\r\n\r\nI just run `sudo -u cape poetry run python utils/community.py -awf -cr`, restarted the service and executed again with same results. I checked the affected file in the commit that you indicated and booth has same hash. In fact, I did the installation yesterday.\nComment: well that means you have some problems on your side, there is nothing else that matches `8192` and enabled\r\n\r\nhttps://github.com/search?q=repo%3ACAPESandbox%2Fcommunity%208192&type=code\r\nhttps://github.com/search?q=repo%3Akevoreilly%2FCAPEv2%208192&type=code\nComment: you can also uninstall yara-x, and it wont give this errors, you can use normal yara, but that was tested and is why i commented out that signature\nComment: Check the line 385 in the diff that you linked. This rule is what is crashing the processing `$reg0 = /xref\\r?\\n?.{,8192}\\r?\\n?.{,8192}65535\\sf/`.\nComment: lol ok you are right, grep didnt get it to me, disabled too, thanks\r\npoetry run utils/community.py -awf && sudo systemctl restart cape-processor\nComment: You're welcome. I force the download and it seems that now is working. Thanks!\nComment: but btw be aware that we observed negative performance with yara-x, so consider stay with normal yara\nComment: > but btw be aware that we observed negative performance with yara-x, so consider stay with normal yara\r\n\r\nI tried to uninstall `yara-x` and use `yara` package, but the `cape-processor.service` doesn`t start.\nComment: does it give you any error msg? o_O i have uninstalled yara-x by running `poetry run pip uninstall yara-x` and restarting service, you can try to start processing by hand to see the error easily, as cape user run `poetry run python utils/process.py -p4 auto`\nComment: Bad news! No rule error, but the processing finished due to timeout: `ERROR: [2] Processing Timeout ('Task timeout', 900). Function: 900`.\r\n\r\nThen, I tried this:\r\n```bash\r\nsudo -u cape poetry run pip uninstall yara-x\r\nsudo -u cape poetry run pip install yara\r\nsudo -u cape poetry run python utils/process.py -p4 auto\r\n```\r\n\r\nOutput:\r\n```bash\r\nFailed to import '/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/libyara.so'\r\nPATH = /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/snap/bin;/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/process.py\", line 35, in <module>\r\n    from lib.cuckoo.common.cleaners_utils import free_space_monitor\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/cleaners_utils.py\", line 17, in <module>\r\n    from lib.cuckoo.core.database import (\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/database.py\", line 18, in <module>\r\n    from sflock.abstracts import File as SflockFile\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sflock/__init__.py\", line 7, in <module>\r\n    from sflock.main import ident, unpack, supported, zipify\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sflock/main.py\", line 18, in <module>\r\n    from sflock.ident import identify\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sflock/ident.py\", line 13, in <module>\r\n    import yara\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/yara/__init__.py\", line 7, in <module>\r\n    from yara.rules import compile\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/yara/rules.py\", line 17, in <module>\r\n    from yara.libyara_wrapper import *\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/yara/libyara_wrapper.py\", line 315, in <module>\r\n    libyaradll = cdll.LoadLibrary(library)\r\n  File \"/usr/lib/python3.10/ctypes/__init__.py\", line 452, in LoadLibrary\r\n    return self._dlltype(name)\r\n  File \"/usr/lib/python3.10/ctypes/__init__.py\", line 374, in __init__\r\n    self._handle = _dlopen(self._name, mode)\r\nOSError: /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/libyara.so: cannot open shared object file: No such file or directory\r\n```\nComment: `sudo -u cape poetry run pip install yara` totally wrong comamnd see > https://pypi.org/project/yara/ proper project name is `python-yara`\r\n\r\nbut in cape you should run `poetry run extra/yara_installer.sh` for proper integration under poetry\nComment: about timeout, is depends on your hardware, you can increase timeout or add more resources, there i cant help as is your server side to optimize that bit\nComment: Sorry, you're right. If I run the service without `yara` package installed, it only shows a warning message `Missed library. Run: poetry install pip3 install yara-x`, but the task finalizes with report. \r\n\r\nAbout timeout, it's strange. No problem with CPU, memory or disk... but uninstalling `yara-x` solves the problem. Thanks!\nComment: so as i told we observed negative performance impact, so lets wait for newer version when this will be fixed, is why i disabled warning about missed yara-x dependency. let us know if you have any other issue, and sorry for initial confusion\nComment: No problem! Thanks for you support.",
+  "Title: Fix main database usage in dist.py.\nBody: None",
+  "Title: Quickbind config and yara\nBody: None",
+  "Title: Linux guest analysis\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [Y] I am running the latest version\r\n- [Y] I did read the README!\r\n- [Y] I checked the documentation and found no answer\r\n- [Y] I checked to make sure that this issue has not already been filed\r\n- [Y] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [Y] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\nComplete analysis in linux guest machine with screen shots of analysis\r\n# Current Behavior\r\nI am getting 0.6 malscore for all the bash scripts im analyzing , its giving very limited network analysis , and not analyzing elf files.\r\n# Failure Information (for bugs)\r\n\r\n\r\n## Steps to Reproduce\r\nThe following steps were given in the documentation:\r\n$ sudo dpkg --add-architecture i386\r\n$ sudo apt update\r\n$ sudo apt install python3:i386 -y\r\n$ sudo apt install python3-distutils -y\r\n$ sudo apt install systemtap-runtime -y\r\n$ curl -sSL https://bootstrap.pypa.io/get-pip.py -o get-pip.py\r\n$ python3 get-pip.py\r\n$ python3 -m pip install pyinotify\r\n$ python3 -m pip install Pillow       # optional\r\n$ python3 -m pip install pyscreenshot # optional\r\n$ python3 -m pip install pyautogui    # optional\r\nI did not added 32 bit architecture because it lead to loss of GUI , terminal etc ,and as its not crucial for ubuntu analysis,  I used 64 bit python 3.8.10 and installed all the above dependencies.\r\nAlso diabled firewall ,NTP etc\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|-----------------|--------------------\r\n| Git commit      | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 22.04\r\n| Guest OS         | Ubuntu 20.04\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: Malscore is useless feature\r\n\r\nEl vie, 24 may 2024, 12:13, MU-03 ***@***.***> escribi\u00f3:\r\n\r\n> About accounts on capesandbox.com\r\n>\r\n>    - Issues isn't the way to ask for account activation. Ping capesandbox\r\n>    in Twitter <https://twitter.com/capesandbox> with your username\r\n>\r\n> This is open source and you are getting *free* support so be friendly!\r\n> Prerequisites\r\n>\r\n> Please answer the following questions for yourself before submitting an\r\n> issue.\r\n>\r\n>    - [Y] I am running the latest version\r\n>    - [Y] I did read the README!\r\n>    - [Y] I checked the documentation and found no answer\r\n>    - [Y] I checked to make sure that this issue has not already been filed\r\n>    - [Y] I'm reporting the issue to the correct repository (for\r\n>    multi-repository projects)\r\n>    - [Y] I have read and checked all configs (with all optional parts)\r\n>\r\n> Expected Behavior\r\n>\r\n> Complete analysis in linux guest machine with screen shots of analysis\r\n> Current Behavior\r\n>\r\n> I am getting 0.6 malscore for all the bash scripts im analyzing , its\r\n> giving very limited network analysis , and not analyzing elf files.\r\n> Failure Information (for bugs) Steps to Reproduce\r\n>\r\n> The following steps were given in the documentation:\r\n> $ sudo dpkg --add-architecture i386\r\n> $ sudo apt update\r\n> $ sudo apt install python3:i386 -y\r\n> $ sudo apt install python3-distutils -y\r\n> $ sudo apt install systemtap-runtime -y\r\n> $ curl -sSL https://bootstrap.pypa.io/get-pip.py -o get-pip.py\r\n> $ python3 get-pip.py\r\n> $ python3 -m pip install pyinotify\r\n> $ python3 -m pip install Pillow # optional\r\n> $ python3 -m pip install pyscreenshot # optional\r\n> $ python3 -m pip install pyautogui # optional\r\n> I did not added 32 bit architecture because it lead to loss of GUI ,\r\n> terminal etc ,and as its not crucial for ubuntu analysis, I used 64 bit\r\n> python 3.8.10 and installed all the above dependencies.\r\n> Also diabled firewall ,NTP etc\r\n> Context\r\n>\r\n> Please provide any relevant information about your setup. This is\r\n> important in case the issue is not reproducible except for under certain\r\n> conditions. Operating system version, bitness, installed software versions,\r\n> test sample details/hash/binary (if applicable).\r\n> Question Answer\r\n> Git commit Type $ git log | head -n1 to find out\r\n> OS version Ubuntu 22.04\r\n> Guest OS Ubuntu 20.04 Failure Logs\r\n>\r\n> Please include any relevant log snippets or files here.\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2136>, or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH32JRVEVVVJBWIVIVKTZD4HCZAVCNFSM6AAAAABIHJFXB6VHI2DSMVQWIX3LMV43ASLTON2WKOZSGMYTKMBRGY3DGMA>\r\n> .\r\n> You are receiving this because you are subscribed to this thread.Message\r\n> ID: ***@***.***>\r\n>\r\n\nComment: Regardless of malscore , im getting same result for all the files im submitting, exactly same network activity and limited signatures , is there any dependency im missing in the guest OS?\nComment: no, there is lack of linux signatures, CAPE is windows focused sandbox, and community writes windows focused signatures more than linux",
+  "Title: add king rat extractors\nBody: None",
+  "Title: feat(linux): add linux packages to submission form\nBody: None",
+  "Title: [Errno 13] Permission denied: 'C:\\\\tmpnnvioog4\\\\dll\\\\536.ini'\nBody: Hi CAPEv2 team, i really need some support here\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\nI just finished setup my capev2 sandbox following the document, i tried submit some samples but all return error in analyze with the same Warning above. I'm using virtualbox guest machine with win 10 Pro OS. Bellow is a part of log file i get in the guest machine, from where i think having problem. \r\n\r\n## Failure Logs\r\n\r\n```\r\n2024-05-20 01:55:33,747 [root] DEBUG: Initialized auxiliary module \"Sysmon\"\r\n2024-05-20 01:55:33,747 [root] DEBUG: Trying to start auxiliary module \"Sysmon\"...\r\n2024-05-20 01:55:33,747 [root] WARNING: Cannot execute auxiliary module Sysmon: In order to use the Sysmon functionality, it is required to have the SMaster(64|32).exe file and sysmonconfig-export.xml file in the bin path. Note that the SMaster(64|32).exe files are just the standard Sysmon binaries renamed to avoid anti-analysis detection techniques.\r\n2024-05-20 01:55:33,747 [root] DEBUG: Initialized auxiliary module \"TLSDumpMasterSecrets\"\r\n2024-05-20 01:55:33,747 [root] DEBUG: Trying to start auxiliary module \"TLSDumpMasterSecrets\"...\r\n2024-05-20 01:55:33,747 [modules.auxiliary.tlsdump] INFO: lsass.exe found, pid 536\r\n2024-05-20 01:55:33,747 [lib.api.process] INFO: Monitor config for <Process 536 lsass.exe>: C:\\tmpnnvioog4\\dll\\536.ini\r\n2024-05-20 01:55:33,747 [root] WARNING: Cannot execute auxiliary module TLSDumpMasterSecrets: [Errno 13] Permission denied: 'C:\\\\tmpnnvioog4\\\\dll\\\\536.ini'\r\n2024-05-20 01:55:33,928 [root] DEBUG: Initialized auxiliary module \"Usage\"\r\n2024-05-20 01:55:33,942 [root] DEBUG: Trying to start auxiliary module \"Usage\"...\r\n2024-05-20 01:55:33,951 [root] DEBUG: Started auxiliary module Usage\r\n2024-05-20 01:55:33,951 [root] DEBUG: Initialized auxiliary module \"During_script\"\r\n2024-05-20 01:55:33,951 [root] DEBUG: Trying to start auxiliary module \"During_script\"...\r\n2024-05-20 01:55:33,996 [root] DEBUG: Started auxiliary module During_script\r\n2024-05-19 18:55:28,831 [root] INFO: Restarting WMI Service\r\n2024-05-19 18:55:28,831 [root] DEBUG: package modules.packages.exe does not support configure, ignoring\r\n2024-05-19 18:55:28,831 [root] WARNING: configuration error for package modules.packages.exe: error importing data.packages.exe: No module named 'data.packages'\r\n2024-05-19 18:55:29,161 [lib.core.compound] INFO: C:\\Users\\user\\AppData\\Local\\Temp already exists, skipping creation\r\n2024-05-19 18:55:29,161 [lib.api.process] INFO: Successfully executed process from path \"C:\\Users\\user\\AppData\\Local\\Temp\\ExplorerSuite.exe\" with arguments \"\" with pid 5188\r\n2024-05-19 18:55:29,161 [lib.api.process] INFO: Monitor config for <Process 5188 ExplorerSuite.exe>: C:\\tmpnnvioog4\\dll\\5188.ini\r\n2024-05-19 18:55:29,161 [root] INFO: You probably submitted the job with wrong package\r\nTraceback (most recent call last):\r\n  File \"C:\\tmpnnvioog4\\analyzer.py\", line 583, in run\r\n    pids = self.package.start(self.target)\r\n  File \"C:\\tmpnnvioog4\\modules\\packages\\exe.py\", line 37, in start\r\n    return self.execute(path, args, path)\r\n  File \"C:\\tmpnnvioog4\\lib\\common\\abstracts.py\", line 176, in execute\r\n    p.inject(interest)\r\n  File \"C:\\tmpnnvioog4\\lib\\api\\process.py\", line 652, in inject\r\n    self.write_monitor_config(interest, nosleepskip)\r\n  File \"C:\\tmpnnvioog4\\lib\\api\\process.py\", line 571, in write_monitor_config\r\n    with open(config_path, \"w\", encoding=\"utf-8\") as config:\r\nPermissionError: [Errno 13] Permission denied: 'C:\\\\tmpnnvioog4\\\\dll\\\\5188.ini'\r\n\r\nThe above exception was the direct cause of the following exception:\r\n\r\nTraceback (most recent call last):\r\n  File \"C:\\tmpnnvioog4\\analyzer.py\", line 1464, in <module>\r\n    success = analyzer.run()\r\n  File \"C:\\tmpnnvioog4\\analyzer.py\", line 589, in run\r\n    raise CuckooError(f'The package \"{package_name}\" start function encountered an unhandled exception: {e}') from e\r\nlib.common.exceptions.CuckooError: The package \"modules.packages.exe\" start function encountered an unhandled exception: [Errno 13] Permission denied: 'C:\\\\tmpnnvioog4\\\\dll\\\\5188.ini'\r\n2024-05-19 18:55:29,161 [root] WARNING: Folder at path \"C:\\JAOcmlBTV\\debugger\" does not exist, skipping\r\n2024-05-19 18:55:29,161 [root] WARNING: Folder at path \"C:\\JAOcmlBTV\\tlsdump\" does not exist, skipping\r\n2024-05-19 18:55:29,161 [root] INFO: Analysis completed\r\n\r\n```\nComment: My first guess would be the agent is not running with elevated/admin privs. Try ensuring this is the case. \nComment: I thought so, too, i ran again with admin right and replace snapshot but error still happen.\nComment: I read the Error 13, it's something related to missmatch file type when using open function. Hope this help\nComment: what version of python?\nComment: I'm using 3.8.10 for host and 3.9.5 for guest\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/47893240/e48803b9-edb1-440b-991b-750a04bbc748)\r\n\nComment: 32 or 64 bit?\nComment: Guest is 64-bit\nComment: Uh oh there it is. Read the docs\nComment: Can you point out where i'm wrong? I read the docs very careful. I don't see anything say about it, it suggest guest windows 10 64-bit as well\nComment: readme in bold\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/1856495/b0547abb-8ad0-4cd3-8a5c-fa00dbc82417)\r\n\nComment: oh, you mean python, i'm using 32-bit of course. I thought you asking about OS\nComment: ![image](https://github.com/kevoreilly/CAPEv2/assets/47893240/9c8bc736-f875-44e6-a6f3-460b914ad7b2)\nComment: can you post from that curl command ?\r\nhttps://capev2.readthedocs.io/en/latest/installation/guest/agent.html#installing-the-agent\nComment: ![image](https://github.com/kevoreilly/CAPEv2/assets/47893240/a64d9f1f-ba82-4aa9-878e-fa575e16df56)\r\nsure, here\nComment: upgrade your agent to latest 0.17 and post the output of the same command\nComment: oh, sure, wait me a sec, sorry to forgot update the agent in guest to newest\nComment: ![image](https://github.com/kevoreilly/CAPEv2/assets/47893240/d7961c14-a69d-46b0-b39b-8090ba1d3ee1)\r\nhere it is\nComment: i will try updating everything and run one again, if still error, i will let you guys know\nComment: btw https://github.com/kevoreilly/CAPEv2/issues/1376\nComment: If you're running the latest version, there's a lot of useful logs that get dumped out before Sysmon gets initialized. That includes a call to log the results of [IsUserAnAdmin](https://github.com/kevoreilly/CAPEv2/blob/477033b4b66d6f3ce978c7d708f87cf956576032/analyzer/windows/analyzer.py#L418). Those logs are real helpful debugging permission problems.\r\n\r\nSomething else to look for when you update everything and run again.\nComment: closing as abondoned",
+  "Title: potential signature confidence issue\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nI would expect certain signatures to have a lower confidence, for example `queries_keyboard_layout` and `antivm_checks_available_memory`.  This causes the signature to be treated as a malicious category rather than a suspicious category when calculating the malscore.  To me this would be a suspicious category unless I misunderstand the purpose of the confidence value.\r\n\r\n# Current Behavior\r\n\r\nSignatures that don't explicitly specify a confidence value are defaulted to 100, for example the [queries_keyboard_layout](https://github.com/CAPESandbox/community/blob/2bd2766d3a1464a1a32c73d0cfbc65a1834b1183/modules/signatures/windows/system_location_discovery.py#L20) signature does not specify confidence, and the result is a malscore of 10 for all office files, among other types.\r\n\r\nI believe this is caused by the base Signature class having a confidence value of 100.\r\n\r\nfrom the report:\r\n```\r\n{\r\n      \"name\": \"queries_keyboard_layout\",\r\n      \"description\": \"Queries the keyboard layout\",\r\n      \"categories\": [\"location_discovery\"],\r\n      \"severity\": 1,\r\n      \"weight\": 1,\r\n      \"confidence\": 100,\r\n      \"references\": [],\r\n      \"data\": [\r\n        { \"type\": \"call\", \"pid\": 4184, \"cid\": 1083 },\r\n        { \"type\": \"call\", \"pid\": 8580, \"cid\": 4347 },\r\n        { \"type\": \"call\", \"pid\": 8580, \"cid\": 4383 }\r\n      ],\r\n      \"new_data\": [],\r\n      \"alert\": false,\r\n      \"families\": []\r\n    }\r\n```\nComment: After reading https://github.com/kevoreilly/CAPEv2/issues/2086 I now have more context. I plan to try and improve some of these signatures confidence values and will open some PRs to the community repo. I'll leave this open for now for discussion. \nComment: any improvements are more than welcome\nComment: Any update here?",
+  "Title: small fix\nBody: Run() should return True",
+  "Title: Windows 11 guest machine\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [Y] I am running the latest version\r\n- [Y] I did read the README!\r\n- [Y] I checked the documentation and found no answer\r\n- [Y] I checked to make sure that this issue has not already been filed\r\n- [Y] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [Y] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\nI set up the analysis as guided in the capev2 documentation  run windows 11 as an analysis machine\r\n# Current Behavior\r\nAnalysis ends abruptly after 63 seconds \r\n\r\n# Failure Information (for bugs)\r\n\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. step 1\r\n2. step 2\r\n3. you get it...\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| Host OS version       |  ubuntu 22.04\r\nGuest                            Windows 11\r\n\r\n## Failure Logs\r\nTask #93: Analysis caught an exception (id=cuckoo3, ip=192.168.122.107)\r\nYou probably submitted the job with wrong package\r\n\r\n\nComment: there is no support for windows 11 yet",
+  "Title: Minor test fix.\nBody: Make sure we assert the condition.",
+  "Title: store_vnc_port is a possible attribute of self.machinery_manager.machinery, not self.machinery_manager.\nBody: None",
+  "Title: analyzer fix\nBody: None",
+  "Title: chore(deps): bump requests from 2.31.0 to 2.32.0\nBody: Bumps [requests](https://github.com/psf/requests) from 2.31.0 to 2.32.0.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a href=\"https://github.com/psf/requests/releases\">requests's releases</a>.</em></p>\n<blockquote>\n<h2>v2.32.0</h2>\n<h2>2.32.0 (2024-05-20)</h2>\n<h2>\ud83d\udc0d PYCON US 2024 EDITION \ud83d\udc0d</h2>\n<p><strong>Security</strong></p>\n<ul>\n<li>Fixed an issue where setting <code>verify=False</code> on the first request from a\nSession will cause subsequent requests to the <em>same origin</em> to also ignore\ncert verification, regardless of the value of <code>verify</code>.\n(<a href=\"https://github.com/psf/requests/security/advisories/GHSA-9wx4-h78v-vm56\">https://github.com/psf/requests/security/advisories/GHSA-9wx4-h78v-vm56</a>)</li>\n</ul>\n<p><strong>Improvements</strong></p>\n<ul>\n<li><code>verify=True</code> now reuses a global SSLContext which should improve\nrequest time variance between first and subsequent requests. It should\nalso minimize certificate load time on Windows systems when using a Python\nversion built with OpenSSL 3.x. (<a href=\"https://redirect.github.com/psf/requests/issues/6667\">#6667</a>)</li>\n<li>Requests now supports optional use of character detection\n(<code>chardet</code> or <code>charset_normalizer</code>) when repackaged or vendored.\nThis enables <code>pip</code> and other projects to minimize their vendoring\nsurface area. The <code>Response.text()</code> and <code>apparent_encoding</code> APIs\nwill default to <code>utf-8</code> if neither library is present. (<a href=\"https://redirect.github.com/psf/requests/issues/6702\">#6702</a>)</li>\n</ul>\n<p><strong>Bugfixes</strong></p>\n<ul>\n<li>Fixed bug in length detection where emoji length was incorrectly\ncalculated in the request content-length. (<a href=\"https://redirect.github.com/psf/requests/issues/6589\">#6589</a>)</li>\n<li>Fixed deserialization bug in JSONDecodeError. (<a href=\"https://redirect.github.com/psf/requests/issues/6629\">#6629</a>)</li>\n<li>Fixed bug where an extra leading <code>/</code> (path separator) could lead\nurllib3 to unnecessarily reparse the request URI. (<a href=\"https://redirect.github.com/psf/requests/issues/6644\">#6644</a>)</li>\n</ul>\n<p><strong>Deprecations</strong></p>\n<ul>\n<li>Requests has officially added support for CPython 3.12 (<a href=\"https://redirect.github.com/psf/requests/issues/6503\">#6503</a>)</li>\n<li>Requests has officially added support for PyPy 3.9 and 3.10 (<a href=\"https://redirect.github.com/psf/requests/issues/6641\">#6641</a>)</li>\n<li>Requests has officially dropped support for CPython 3.7 (<a href=\"https://redirect.github.com/psf/requests/issues/6642\">#6642</a>)</li>\n<li>Requests has officially dropped support for PyPy 3.7 and 3.8 (<a href=\"https://redirect.github.com/psf/requests/issues/6641\">#6641</a>)</li>\n</ul>\n<p><strong>Documentation</strong></p>\n<ul>\n<li>Various typo fixes and doc improvements.</li>\n</ul>\n<p><strong>Packaging</strong></p>\n<ul>\n<li>Requests has started adopting some modern packaging practices.\nThe source files for the projects (formerly <code>requests</code>) is now located\nin <code>src/requests</code> in the Requests sdist. (<a href=\"https://redirect.github.com/psf/requests/issues/6506\">#6506</a>)</li>\n<li>Starting in Requests 2.33.0, Requests will migrate to a PEP 517 build system\nusing <code>hatchling</code>. This should not impact the average user, but extremely old\nversions of packaging utilities may have issues with the new packaging format.</li>\n</ul>\n<h2>New Contributors</h2>\n<ul>\n<li><a href=\"https://github.com/matthewarmand\"><code>@\u200bmatthewarmand</code></a> made their first contribution in <a href=\"https://redirect.github.com/psf/requests/pull/6258\">psf/requests#6258</a></li>\n<li><a href=\"https://github.com/cpzt\"><code>@\u200bcpzt</code></a> made their first contribution in <a href=\"https://redirect.github.com/psf/requests/pull/6456\">psf/requests#6456</a></li>\n</ul>\n<!-- raw HTML omitted -->\n</blockquote>\n<p>... (truncated)</p>\n</details>\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/psf/requests/blob/main/HISTORY.md\">requests's changelog</a>.</em></p>\n<blockquote>\n<h2>2.32.0 (2024-05-20)</h2>\n<p><strong>Security</strong></p>\n<ul>\n<li>Fixed an issue where setting <code>verify=False</code> on the first request from a\nSession will cause subsequent requests to the <em>same origin</em> to also ignore\ncert verification, regardless of the value of <code>verify</code>.\n(<a href=\"https://github.com/psf/requests/security/advisories/GHSA-9wx4-h78v-vm56\">https://github.com/psf/requests/security/advisories/GHSA-9wx4-h78v-vm56</a>)</li>\n</ul>\n<p><strong>Improvements</strong></p>\n<ul>\n<li><code>verify=True</code> now reuses a global SSLContext which should improve\nrequest time variance between first and subsequent requests. It should\nalso minimize certificate load time on Windows systems when using a Python\nversion built with OpenSSL 3.x. (<a href=\"https://redirect.github.com/psf/requests/issues/6667\">#6667</a>)</li>\n<li>Requests now supports optional use of character detection\n(<code>chardet</code> or <code>charset_normalizer</code>) when repackaged or vendored.\nThis enables <code>pip</code> and other projects to minimize their vendoring\nsurface area. The <code>Response.text()</code> and <code>apparent_encoding</code> APIs\nwill default to <code>utf-8</code> if neither library is present. (<a href=\"https://redirect.github.com/psf/requests/issues/6702\">#6702</a>)</li>\n</ul>\n<p><strong>Bugfixes</strong></p>\n<ul>\n<li>Fixed bug in length detection where emoji length was incorrectly\ncalculated in the request content-length. (<a href=\"https://redirect.github.com/psf/requests/issues/6589\">#6589</a>)</li>\n<li>Fixed deserialization bug in JSONDecodeError. (<a href=\"https://redirect.github.com/psf/requests/issues/6629\">#6629</a>)</li>\n<li>Fixed bug where an extra leading <code>/</code> (path separator) could lead\nurllib3 to unnecessarily reparse the request URI. (<a href=\"https://redirect.github.com/psf/requests/issues/6644\">#6644</a>)</li>\n</ul>\n<p><strong>Deprecations</strong></p>\n<ul>\n<li>Requests has officially added support for CPython 3.12 (<a href=\"https://redirect.github.com/psf/requests/issues/6503\">#6503</a>)</li>\n<li>Requests has officially added support for PyPy 3.9 and 3.10 (<a href=\"https://redirect.github.com/psf/requests/issues/6641\">#6641</a>)</li>\n<li>Requests has officially dropped support for CPython 3.7 (<a href=\"https://redirect.github.com/psf/requests/issues/6642\">#6642</a>)</li>\n<li>Requests has officially dropped support for PyPy 3.7 and 3.8 (<a href=\"https://redirect.github.com/psf/requests/issues/6641\">#6641</a>)</li>\n</ul>\n<p><strong>Documentation</strong></p>\n<ul>\n<li>Various typo fixes and doc improvements.</li>\n</ul>\n<p><strong>Packaging</strong></p>\n<ul>\n<li>Requests has started adopting some modern packaging practices.\nThe source files for the projects (formerly <code>requests</code>) is now located\nin <code>src/requests</code> in the Requests sdist. (<a href=\"https://redirect.github.com/psf/requests/issues/6506\">#6506</a>)</li>\n<li>Starting in Requests 2.33.0, Requests will migrate to a PEP 517 build system\nusing <code>hatchling</code>. This should not impact the average user, but extremely old\nversions of packaging utilities may have issues with the new packaging format.</li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/psf/requests/commit/d6ebc4a2f1f68b7e355fb7e4dd5ffc0845547f9f\"><code>d6ebc4a</code></a> v2.32.0</li>\n<li><a href=\"https://github.com/psf/requests/commit/9a40d1277807f0a4f26c9a37eea8ec90faa8aadc\"><code>9a40d12</code></a> Avoid reloading root certificates to improve concurrent performance (<a href=\"https://redirect.github.com/psf/requests/issues/6667\">#6667</a>)</li>\n<li><a href=\"https://github.com/psf/requests/commit/0c030f78d24f29a459dbf39b28b4cc765e2153d7\"><code>0c030f7</code></a> Merge pull request <a href=\"https://redirect.github.com/psf/requests/issues/6702\">#6702</a> from nateprewitt/no_char_detection</li>\n<li><a href=\"https://github.com/psf/requests/commit/555b870eb19d497ddb67042645420083ec8efb02\"><code>555b870</code></a> Allow character detection dependencies to be optional in post-packaging steps</li>\n<li><a href=\"https://github.com/psf/requests/commit/d6dded3f00afcf56a7e866cb0732799045301eb0\"><code>d6dded3</code></a> Merge pull request <a href=\"https://redirect.github.com/psf/requests/issues/6700\">#6700</a> from franekmagiera/update-redirect-to-invalid-uri-test</li>\n<li><a href=\"https://github.com/psf/requests/commit/bf24b7d8d17da34be720c19e5978b2d3bf94a53b\"><code>bf24b7d</code></a> Use an invalid URI that will not cause httpbin to throw 500</li>\n<li><a href=\"https://github.com/psf/requests/commit/2d5f54779ad174035c5437b3b3c1146b0eaf60fe\"><code>2d5f547</code></a> Pin 3.8 and 3.9 runners back to macos-13 (<a href=\"https://redirect.github.com/psf/requests/issues/6688\">#6688</a>)</li>\n<li><a href=\"https://github.com/psf/requests/commit/f1bb07d39b74d6444e333879f8b8a3d9dd4d2311\"><code>f1bb07d</code></a> Merge pull request <a href=\"https://redirect.github.com/psf/requests/issues/6687\">#6687</a> from psf/dependabot/github_actions/github/codeql-act...</li>\n<li><a href=\"https://github.com/psf/requests/commit/60047ade64b0b882cbc94e047198818ab580911e\"><code>60047ad</code></a> Bump github/codeql-action from 3.24.0 to 3.25.0</li>\n<li><a href=\"https://github.com/psf/requests/commit/31ebb8102c00f8cf8b396a6356743cca4362e07b\"><code>31ebb81</code></a> Merge pull request <a href=\"https://redirect.github.com/psf/requests/issues/6682\">#6682</a> from frenzymadness/pytest8</li>\n<li>Additional commits viewable in <a href=\"https://github.com/psf/requests/compare/v2.31.0...v2.32.0\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=requests&package-manager=pip&previous-version=2.31.0&new-version=2.32.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: reapply tid kwarg bug fix used in thread inject\nBody: Reapply 90134aaaca07c89fda269a601f05c49a17977d78. The lib.api.process.Process class wants `thread_id`, not `tid`.",
+  "Title: yara x support\nBody: None",
+  "Title: trid files permissions\nBody: trid module complains about permissions:\r\n```\r\n2024-05-17 07:14:29,214 [Task 42] [lib.cuckoo.common.integrations.file_extra_info] ERROR: You have permission error. FIX IT! sudo chown cape:cape /opt/CAPEv2/data/trid -R\r\n```\r\nBut:\r\n```\r\n$ ll /opt/CAPEv2/data/trid/\r\ntotal 5956\r\ndrwxr-xr-x  2 cape cape    4096 Apr 16 16:02 ./\r\ndrwxr-xr-x 14 cape cape    4096 May 17 00:05 ../\r\n-rw-r--r--  1 cape cape  772312 May 17 00:05 trid\r\n-rw-r--r--  1 cape cape 5311200 May 17 00:05 triddefs.trd\r\n-rw-r--r--  1 cape cape    3148 May 17 00:05 tridupdate.py\r\n```\r\nI'm confused ;-)\nComment: `chmod a+x /opt/CAPEv2/data/trid/trid`\nComment: Stupid me! \ud83d\ude48\nComment: hehe well i need to improve description, but instead of trid my suggestion is to use DIE",
+  "Title: Azure instance lacking 4 character \nBody: # Expected Behavior\r\nI expect the ACPIDUMP command to give me a 4 character hardware ID that I can use in the [kvm-qemu.sh](https://github.com/kevoreilly/CAPEv2/blob/master/installer/kvm-qemu.sh) script.\r\n\r\n\r\n# Current Behavior\r\nI ran the commands to dump the acpi - \r\n\r\nsudo acpidump > acpidump.out\r\nsudo acpixtract -a acpidump.out\r\n\r\nwhich shows the following:\r\n  SPCR -      80 bytes written (0x00000050) - spcr.dat\r\n  APIC -     136 bytes written (0x00000088) - apic.dat\r\n  TPM2 -      52 bytes written (0x00000034) - tpm2.dat\r\n  WAET -      40 bytes written (0x00000028) - waet.dat\r\n  DSDT -  123268 bytes written (0x0001E184) - dsdt.dat\r\n  SRAT -     816 bytes written (0x00000330) - srat.dat\r\n  FACP -     276 bytes written (0x00000114) - facp.dat\r\n  FPDT -      52 bytes written (0x00000034) - fpdt.dat\r\n  OEM0 -     100 bytes written (0x00000064) - oem0.dat\r\n  FACS -      64 bytes written (0x00000040) - facs.dat\r\n  BGRT -      56 bytes written (0x00000038) - bgrt.dat\r\n\r\nI then run:\r\nsudo iasl -d dsdt.dat\r\n\r\nI am met with this info:\r\nBinary file appears to be a valid ACPI table, disassembling\r\nInput file dsdt.dat, Length 0x1E184 (123268) bytes\r\nACPI: DSDT 0x0000000000000000 01E184 (v02 MSFTVM DSDT01   00000001 MSFT 05000000)\r\nPass 1 parse of [DSDT]\r\nPass 2 parse of [DSDT]\r\nParsing Deferred Opcodes (Methods/Buffers/Packages/Regions)\r\n\r\nI believe the normal spot for the hardware characters would be the MSFTVM part, which is six characters instead of the four that is norma. For an Azure VM, is there something that I am missing for getting these 4 characters?\nComment: Get a real hardware with windows and search there, is out of scope of cape",
+  "Title: added nginx config enable in docs\nBody: I added 2 bash lines in the web Documentation, so that users know they also have to enable the newly created nginx config.  This is mandatory in order for the nginx config to work.\nComment: thanks, but i guess in this case better is to overwrite default from install script\nComment: Thanks for the feedback. Since Nginx is only needed for optional interactive sessions, modifying the main installation script isn't ideal. The documentation helps users configure Nginx only if they choose this feature, ensuring clarity and flexibility.\nComment: Hello everyone, I can only confirm this PR. The documentation for the interactive sessions describes that you have to create a configuration file at /etc/nginx/sites-available/cape but not that it has to be activated. For now, the nginx process is not automated, so this part should be included in the documentation to make this clear.\nComment: thanks for PR",
+  "Title: stop() module functions not executed/reached?\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nSome modules are enabled but no data is collected at the end of the analysis. the stop() function seems to not be executed.\r\n\r\n# Current Behavior\r\n\r\nThis has been seen with the following 3 modules: sysmon, evtx, procmon. They are initialized, I see some debugging info when the analysis is launched but no data is returned at the end of the analysis...\r\n\r\n## Steps to Reproduce\r\n\r\nAnalyse a file... Analysis is completed:\r\n```\r\n2024-05-15 12:48:14,071 [lib.cuckoo.core.guest] INFO: Task #38: End of analysis reached! (id=win10x64, ip=192.168.122.106)\r\n2024-05-15 12:48:55,802 [lib.cuckoo.core.scheduler] INFO: Disabled route 'internet'\r\n2024-05-15 12:48:55,850 [lib.cuckoo.core.scheduler] INFO: Task #38: analysis procedure completed\r\n```\r\nHowever data is not collected (directories are empty in the analysis subdir and no logs are generated. For example, for evtx, it should log something like (according to the source code):\r\n```\r\nlog.debug(\"Adding %s to zip dump\", full_path)\r\n```\nComment: probably due to subprocess in frond of stop, idk, i dont use those modules so i can't confirm why they doest work\nComment: Could it be that debug messages are not showing due to the lack of ``-d`` switch for ``cuckoo.py``? If you stop the cape service and run it manually with that switch, you might see more output.\nComment: @kevoreilly No, because I see the \"debug\" messages generated by start().\r\n\r\nHere is an example:\r\n$ grep evtx analysis.log\r\n```\r\n2024-05-15 12:41:05,674 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.evtx\"...\r\n2024-05-15 12:41:08,002 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Security State Change\" /success:enable /failure:enable\r\n2024-05-15 12:41:09,785 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Security System Extension\" /success:enable /failure:enable\r\n2024-05-15 12:41:10,192 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"System Integrity\" /success:enable /failure:enable\r\n2024-05-15 12:41:10,856 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"IPsec Driver\" /success:disable /failure:disable\r\n2024-05-15 12:41:11,611 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Other System Events\" /success:disable /failure:enable\r\n2024-05-15 12:41:11,805 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Logon\" /success:enable /failure:enable\r\n2024-05-15 12:41:12,168 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Logoff\" /success:enable /failure:enable\r\n2024-05-15 12:41:12,584 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Account Lockout\" /success:enable /failure:enable\r\n2024-05-15 12:41:12,898 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"IPsec Main Mode\" /success:disable /failure:disable\r\n2024-05-15 12:41:13,629 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"IPsec Quick Mode\" /success:disable /failure:disable\r\n2024-05-15 12:41:14,049 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"IPsec Extended Mode\" /success:disable /failure:disable\r\n2024-05-15 12:41:14,221 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Other Logon/Logoff Events\" /success:enable /failure:enable\r\n2024-05-15 12:41:14,718 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Network Policy Server\" /success:enable /failure:enable\r\n2024-05-15 12:41:15,871 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Special Logon\" /success:enable /failure:enable\r\n2024-05-15 12:41:16,183 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"File System\" /success:enable /failure:enable\r\n2024-05-15 12:41:17,294 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Registry\" /success:enable /failure:enable\r\n2024-05-15 12:41:19,725 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Kernel Object\" /success:enable /failure:enable\r\n2024-05-15 12:41:21,195 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"SAM\" /success:disable /failure:disable\r\n2024-05-15 12:41:21,647 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Certification Services\" /success:enable /failure:enable\r\n2024-05-15 12:41:22,210 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Handle Manipulation\" /success:disable /failure:disable\r\n2024-05-15 12:41:22,679 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Application Generated\" /success:enable /failure:enable\r\n2024-05-15 12:41:24,681 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"File Share\" /success:enable /failure:enable\r\n2024-05-15 12:41:26,881 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Filtering Platform Packet Drop\" /success:disable /failure:disable\r\n2024-05-15 12:41:29,702 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Filtering Platform Connection\" /success:disable /failure:disable\r\n2024-05-15 12:41:32,150 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Other Object Access Events\" /success:disable /failure:disable\r\n2024-05-15 12:41:32,574 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Sensitive Privilege Use\" /success:disable /failure:disable\r\n2024-05-15 12:41:33,928 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Non Sensitive Privilege Use\" /success:disable /failure:disable\r\n2024-05-15 12:41:35,253 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Other Privilege Use Events\" /success:disable /failure:disable\r\n2024-05-15 12:41:35,997 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"RPC Events\" /success:enable /failure:enable\r\n2024-05-15 12:41:37,172 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Audit Policy Change\" /success:enable /failure:enable\r\n2024-05-15 12:41:38,196 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Authentication Policy Change\" /success:enable /failure:enable\r\n2024-05-15 12:41:38,977 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"MPSSVC Rule-Level Policy Change\" /success:disable /failure:disable\r\n2024-05-15 12:41:39,868 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Filtering Platform Policy Change\" /success:disable /failure:disable\r\n2024-05-15 12:41:40,259 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Other Policy Change Events\" /success:disable /failure:enable\r\n2024-05-15 12:41:40,603 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"User Account Management\" /success:enable /failure:enable\r\n2024-05-15 12:41:41,018 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Computer Account Management\" /success:enable /failure:enable\r\n2024-05-15 12:41:41,695 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Security Group Management\" /success:enable /failure:enable\r\n2024-05-15 12:41:42,087 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Distribution Group Management\" /success:enable /failure:enable\r\n2024-05-15 12:41:42,449 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Application Group Management\" /success:enable /failure:enable\r\n2024-05-15 12:41:42,869 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Other Account Management Events\" /success:enable /failure:enable\r\n2024-05-15 12:41:44,212 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Directory Service Access\" /success:enable /failure:enable\r\n2024-05-15 12:41:45,328 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Directory Service Changes\" /success:enable /failure:enable\r\n2024-05-15 12:41:45,991 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Directory Service Replication\" /success:disable /failure:enable\r\n2024-05-15 12:41:46,477 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Detailed Directory Service Replication\" /success:disable /failure:disable\r\n2024-05-15 12:41:47,313 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Credential Validation\" /success:enable /failure:enable\r\n2024-05-15 12:41:47,626 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Kerberos Service Ticket Operations\" /success:enable /failure:enable\r\n2024-05-15 12:41:47,923 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Other Account Logon Events\" /success:enable /failure:enable\r\n2024-05-15 12:41:48,313 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Kerberos Authentication Service\" /success:enable /failure:enable\r\n2024-05-15 12:41:49,265 [modules.auxiliary.evtx] DEBUG: Wiping Application\r\n2024-05-15 12:41:50,613 [modules.auxiliary.evtx] DEBUG: Wiping HardwareEvents\r\n2024-05-15 12:41:50,973 [modules.auxiliary.evtx] DEBUG: Wiping Internet Explorer\r\n2024-05-15 12:41:51,207 [modules.auxiliary.evtx] DEBUG: Wiping Key Management Service\r\n2024-05-15 12:41:51,761 [modules.auxiliary.evtx] DEBUG: Wiping OAlerts\r\n2024-05-15 12:41:52,009 [modules.auxiliary.evtx] DEBUG: Wiping Security\r\n2024-05-15 12:41:52,336 [modules.auxiliary.evtx] DEBUG: Wiping Setup\r\n2024-05-15 12:41:52,602 [modules.auxiliary.evtx] DEBUG: Wiping System\r\n2024-05-15 12:41:53,146 [modules.auxiliary.evtx] DEBUG: Wiping Windows PowerShell\r\n2024-05-15 12:41:54,481 [modules.auxiliary.evtx] DEBUG: Wiping Microsoft-Windows-Sysmon/Operational\r\n```\r\n\r\nCould this be the reason?\r\n```\r\n2024-05-15 12:46:49,822 [root] INFO: Analysis timeout hit, terminating analysis\r\n```\nComment: There's a lot of analyzer changes that just merged yesterday as part of https://github.com/kevoreilly/CAPEv2/pull/2041.\r\n\r\nIt's worth trying this again as the analyzer has changed quite a bit, in an effort to improve scenarios like these.",
+  "Title: Azure NSG Setup\nBody: I am going through the setup and am trying to get an environment set up in Azure. However, I am looking at these two steps:\r\n\r\nAllow SOME inbound traffic from the Internet -> VNET2_SUB1 to allow the Azure machinery to communicate with Azure.\r\nAllow SOME outbound traffic from VNET2_SUB1 -> Internet to allow the Azure machinery to communicate with Azure.\r\n\r\nWith these two, what would you mean by SOME?\r\nDo you just pick a random source port for this to be SOME, or just set it to 443 or something?\r\n<img width=\"576\" alt=\"image\" src=\"https://github.com/kevoreilly/CAPEv2/assets/23264401/8019111a-5623-48fa-a9ee-0ffc9949bafe\">\r\n\nComment: @cccs-kevin can you clarify plz?\nComment: > @cccs-kevin can you clarify plz?\r\n\r\nIn the install docs for setting up CAPE in Azure, it says:\r\n\"Allow SOME inbound traffic from the Internet -> VNET2_SUB1 to allow the Azure machinery to communicate with Azure.\"\r\n\r\nI was hoping to see what they meant by SOME traffic.\nComment: that was asking another person if he can help you, not asking you clarify the question\nComment: Thanks @doomedraven \ud83c\udf55 \r\n\r\nHey sorry, coming in late here, \"SOME\" is the traffic between the IP of the primary network interface that the CAPE daemon would use to communicate with the Internet (and what the Azure machinery would use to connect to Azure), and the \"Internet\" service tag. I'm looking at my rules and it looks like I only have an outbound rule for IP -> Internet, so maybe the inbound rule mentioned in the documentation is not necessary, but for completeness' sake, I would include it. \r\n\r\nIf you have any other questions, let me know!\nComment: > Thanks @doomedraven \ud83c\udf55\r\n> \r\n> Hey sorry, coming in late here, \"SOME\" is the traffic between the IP of the primary network interface that the CAPE daemon would use to communicate with the Internet (and what the Azure machinery would use to connect to Azure), and the \"Internet\" service tag. I'm looking at my rules and it looks like I only have an outbound rule for IP -> Internet, so maybe the inbound rule mentioned in the documentation is not necessary, but for completeness' sake, I would include it.\r\n> \r\n> If you have any other questions, let me know!\r\n\r\nAwesome, thanks for the clarification here! I think the network admin in me was looking for a specific port to allow. This is how I set it up, and actually thought I might be doing it wrong, so I was just wanting to check before I got to the point where it needed that internet access and ended up breaking on me. \r\n\r\nAnd, if you happen to have any other Azure related documentation, I would love to take a look at it. Outside of the initial 'Deploying to the Cloud' documentation, there doesn't seem to be a ton out there in terms of setting this up in Azure, so I'd be willing to take a look at any other info you have!\nComment: > > Thanks @doomedraven \ud83c\udf55\r\n> > Hey sorry, coming in late here, \"SOME\" is the traffic between the IP of the primary network interface that the CAPE daemon would use to communicate with the Internet (and what the Azure machinery would use to connect to Azure), and the \"Internet\" service tag. I'm looking at my rules and it looks like I only have an outbound rule for IP -> Internet, so maybe the inbound rule mentioned in the documentation is not necessary, but for completeness' sake, I would include it.\r\n> > If you have any other questions, let me know!\r\n> \r\n> Awesome, thanks for the clarification here! I think the network admin in me was looking for a specific port to allow. This is how I set it up, and actually thought I might be doing it wrong, so I was just wanting to check before I got to the point where it needed that internet access and ended up breaking on me.\r\n> \r\n> And, if you happen to have any other Azure related documentation, I would love to take a look at it. Outside of the initial 'Deploying to the Cloud' documentation, there doesn't seem to be a ton out there in terms of setting this up in Azure, so I'd be willing to take a look at any other info you have!\r\n\r\nHaha fair enough, I wrote the \"Deploying to the Cloud\" documentation (hence why @doomedraven tagged me), and I tried to make it general enough for all users. Turns out it was too general! I don't have too much time right now to improve the docs, so if there is anything you would like to add based on your experience, I'll review it and compare it with my architecture :)\nComment: Closing this as solved, thanks Kevin, @MReprogle1 feel free to ask questions about azure in this closed issue",
+  "Title: [Bug] With URI extraction in peepdf==0.4.2 \nBody: # Prerequisites\r\n\r\n I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nI expected the peepdf tool to accurately extract URIs from PDF files.\r\n\r\n# Current Behavior\r\n\r\nHowever, when uploading certain PDF files, the URI extraction fails. I attempted to modify the URI extraction function to address this issue, but it did not seem to have any effect. Subsequently, I tried using a different version of peepdf (peepdf-3) and found that it successfully retrieved URIs from the PDF files!\r\n\r\n## Steps to Reproduce\r\n\r\n1. Upload a PDF Exactly this wikiloader, only pdf that have this issue [ https://bazaar.abuse.ch/sample/817613ad7b868e48120f79e6d971698ee7dcbb6bdca2e8958566e4895b634abf/ ] file to peepdf for URI extraction. \r\n2. Observe that URI extraction fails for certain PDF files.\r\n3. Attempt to modify the URI extraction function.\r\n4. Test with a different version of peepdf (peepdf-3) and observe successful URI extraction.\r\n\r\nRecommanded pdf version on your documentation:\r\n\r\n<img width=\"705\" alt=\"2\" src=\"https://github.com/kevoreilly/CAPEv2/assets/36480372/3040c463-7781-461e-a179-50a9b1c57de5\">\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/36480372/3eb52d85-9514-4c5e-b44d-a707aa45fd0e)\r\n\r\nFixed using peepdf-3\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/36480372/e6d8ad54-386d-46f5-84d3-ec018cbb7745)\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/36480372/8d6e64a4-adc8-400e-9229-b41e878e0418)\r\n\nComment: thanks, updated optional dependencies with peepdf-3",
+  "Title: I receive 429 for \u201ctasks/view\u201d api queries even I increased limits in api.conf  \nBody: I notice an issue with api.conf file in Cape sandbox. Even I increased limits in api.conf  I still receive 429 for \u201ctasks/view\u201d queries :\r\n\r\n\r\nMay  3 11:49:58 lab2 python3[3786]: 10.42.0.1 - - [03/May/2024 08:49:58] \"GET /apiv2/tasks/view/16/ HTTP/1.1\" 429 -\r\nMay  3 11:50:03 lab2 python3[3786]: 10.42.0.1 - - [03/May/2024 08:50:03] \"GET /apiv2/tasks/view/16/ HTTP/1.1\" 200 -\r\nMay  3 11:50:08 lab2 python3[3786]: 10.42.0.1 - - [03/May/2024 08:50:08] \"GET /apiv2/tasks/view/16/ HTTP/1.1\" 200 -\r\nMay  3 11:50:13 lab2 python3[3786]: 10.42.0.1 - - [03/May/2024 08:50:13] \"GET /apiv2/tasks/view/16/ HTTP/1.1\" 200 -\r\nMay  3 11:50:18 lab2 python3[3786]: 10.42.0.1 - - [03/May/2024 08:50:18] \"GET /apiv2/tasks/view/16/ HTTP/1.1\" 200 -\r\nMay  3 11:50:23 lab2 python3[3786]: 10.42.0.1 - - [03/May/2024 08:50:23] \"GET /apiv2/tasks/view/16/ HTTP/1.1\" 200 -\r\nMay  3 11:50:28 lab2 python3[3786]: 10.42.0.1 - - [03/May/2024 08:50:28] \"GET /apiv2/tasks/view/16/ HTTP/1.1\" 429 -\r\n\r\nLooks like it's still in place 5/m limit \r\n\r\nMy api.conf contain:\r\n\u201c\r\n[api]\r\n#IP-based rate limiting\r\nratelimit = no\r\n\r\n#Default throttle limits at the user and subscription-level.\r\n#token_auth_enabled must be enabled\r\n#default_user_ratelimit = 5/m\r\n#default_subscription_ratelimit = 5/m\r\ndefault_user_ratelimit = 99999999999999/s\r\ndefault_subscription_ratelimit = 99999999999999/s\r\ntoken_auth_enabled = yes\r\n\u2026\r\n[taskview]\r\nenabled = yes\r\nauth_only = no\r\nrps = 10/s\r\nrpm = 20/m\r\n\u201d\r\n\r\nVersions used:\r\n\r\nDjango                 4.2.11\r\ndjango-allauth         0.54.0\r\ndjango-crispy-forms    1.14.0\r\ndjango-csp             3.7\r\ndjango-extensions      3.2.1\r\ndjango-ratelimit       3.0.1\r\ndjango-recaptcha       3.0.0\r\ndjangorestframework    3.14.0\r\ndjango-settings-export 1.2.1\r\n\nComment: You enable token_auth, so you need to change subscription limit at website like http://127.0.0.1:8000/admin/auth/user/\nComment: good point @qux-bbb \nComment: as was reported, you need to edit that in webgui or web db",
+  "Title: Feature to ability monitor traffic between cape result server and sandbox.\nBody: None\nComment: fix conflicts plz, and do not modify `conf/routing.conf` those config shouldnt be touched, only .default\nComment: and what is adventage of using nat instead of hostonly?\nComment: Okay will resolve conflicts. Hostonly is still used, while MASQUERADE is not used in iptables. Another feature is the use of vrf so that traffic to resultserver passes by default gateway instead of through the interface lo.\nComment: Great idea @piolug93. There's a lot of interesting stuff going on behind the scenes - alongside the result server traffic, agent communication and layer 2 traffic would be helpful to expose in analyses.\r\n\r\nDid you consider adding an auxiliary module alongside the [existing sniffer](https://github.com/kevoreilly/CAPEv2/tree/master/modules/auxiliary)?\r\n\r\nThe existing sniffer [heavily filters traffic](https://github.com/kevoreilly/CAPEv2/blob/9c8d6da44b595f8140a5cd76edd8101f6812c3b0/modules/auxiliary/sniffer.py#L111) (also [#L139](https://github.com/kevoreilly/CAPEv2/blob/9c8d6da44b595f8140a5cd76edd8101f6812c3b0/modules/auxiliary/sniffer.py#L139), [auxiliary.conf](https://github.com/kevoreilly/CAPEv2/blob/9c8d6da44b595f8140a5cd76edd8101f6812c3b0/conf/default/auxiliary.conf.default#L61)) - having the ability to monitor result server, agent, and layer 2 traffic with auxiliary module and write out an analysis-debug.pcap to capture it all would be fantastic!\nComment: Good to know about it, I had no idea about it. I haven't plans for write auxiliary module because i no need  see that traffic in CAPE.",
+  "Title: Changes have been added for handling smtp with tls by httpreplay.\nBody: Changes in pull request https://github.com/CAPESandbox/httpreplay/pull/5\nComment: Looks good to me.",
+  "Title: tasks stuck in processing\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ ] I am running the latest version\r\n- [ x] I did read the README!\r\n- [ x] I checked the documentation and found no answer\r\n- [ x] I checked to make sure that this issue has not already been filed\r\n- [x ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x ] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nI am trying to setup cape on an ubuntu 22.04 server to submit some linux malware for analysis in my ubuntu 22.04 guest VM. I'm expecting the analysis to finish so I can review the reports.\r\n\r\n# Current Behavior\r\n\r\nThe task is stuck in processing, and the process logs indicate an error. Thank you in advance for any and all help!\r\n\r\n# Failure Information (for bugs)\r\n\r\nNot sure if it is a bug, but according to the process-1.log file for task 1: \r\n\r\n```\r\n2024-05-09 15:54:08,903 [Task 1] [lib.cuckoo.core.plugins] ERROR: Failed run on_complete() method for signature \"modify_desktop_wallpaper\": 'summary'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 591, in run\r\n    result = sig.on_complete()\r\n  File \"/opt/CAPEv2/utils/../modules/signatures/windows/modifies_wallpaper.py\", line 46, in on_complete\r\n    if self.check_write_key(pattern=indicator, regex=True):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/abstracts.py\", line 1185, in check_write_key\r\n    subject = self.results[\"behavior\"][\"summary\"][\"write_keys\"]\r\nKeyError: 'summary'\r\n2024-05-09 15:54:08,907 [Task 1] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"banker_zeus_p2p\": 'summary'\r\n2024-05-09 15:54:08,908 [Task 1] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"bot_athenahttp\": 'summary'\r\n2024-05-09 15:54:08,913 [Task 1] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"family_proxyback\": 'summary'\r\n2024-05-09 15:54:08,931 [Task 1] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"antivm_parallels_keys\": 'summary'\r\n2024-05-09 15:54:08,932 [Task 1] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"bypass_firewall\": 'summary'\r\n2024-05-09 15:54:08,932 [Task 1] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"disables_winfirewall\": 'summary'\r\n2024-05-09 15:54:08,933 [Task 1] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"parallax_mutexes\": 'summary'\r\n2024-05-09 15:54:08,933 [Task 1] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"allaple_mutexes\": 'summary'\r\n```\r\n## Steps to Reproduce\r\n\r\n1. install and run cuckoo.py: `poetry run python3 cuckoo.py -d`\r\n2. submit a linux malware for analysis with the default options in the web UI\r\n3. wait for analysis to finish and it is stuck in processing\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | 9d49d6175d0a9df4fefa3d862755817febd47c33\r\n| OS version       | Ubuntu 22.04\r\n\r\n## Failure Logs\r\n\r\nFor completeness, here is the output of running cuckoo.py in debug mode:\r\n\r\n```\r\n2024-05-09 15:45:40,463 [lib.cuckoo.core.scheduler] INFO: Loaded 1 machine/s\r\n2024-05-09 15:45:40,477 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks\r\n2024-05-09 15:46:18,894 [lib.cuckoo.core.scheduler] DEBUG: Task #1: Processing task\r\n2024-05-09 15:46:18,989 [lib.cuckoo.core.scheduler] INFO: Task #1: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_buj7v__v/f69de7425721056d577b152a'\r\n2024-05-09 15:46:19,096 [lib.cuckoo.core.scheduler] INFO: Task #1: acquired machine test_joseph (label=test_joseph, arch=x64, platform=linux)\r\n2024-05-09 15:46:19,158 [lib.cuckoo.common.abstracts] DEBUG: Starting machine test_joseph\r\n2024-05-09 15:46:19,160 [lib.cuckoo.common.abstracts] DEBUG: Getting status for test_joseph\r\n2024-05-09 15:46:19,248 [lib.cuckoo.common.abstracts] DEBUG: Using snapshot base_install for virtual machine test_joseph\r\n2024-05-09 15:46:38,612 [lib.cuckoo.common.abstracts] DEBUG: Getting status for test_joseph\r\n2024-05-09 15:46:38,742 [lib.cuckoo.common.integrations.parse_pe] ERROR: PE type not recognised: 'DOS Header magic not found.'\r\n2024-05-09 15:46:38,753 [lib.cuckoo.core.resultserver] DEBUG: Task #1: The associated machine IP is 192.168.122.154\r\n2024-05-09 15:46:38,806 [lib.cuckoo.core.scheduler] INFO: Enabled route 'none'.\r\n2024-05-09 15:46:38,810 [lib.cuckoo.core.plugins] DEBUG: Started auxiliary module: Sniffer\r\n2024-05-09 15:46:38,876 [lib.cuckoo.core.guest] INFO: Task #1: Starting analysis on guest (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:46:38,921 [lib.cuckoo.core.guest] INFO: Task #1: Guest is running CAPE Agent 0.17 (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:46:39,058 [lib.cuckoo.core.guest] DEBUG: Task #1: Uploading analyzer to guest (id=test_joseph, ip=192.168.122.154, size=265422)\r\n2024-05-09 15:46:39,220 [lib.cuckoo.core.guest] INFO: Task #1: Uploading script files to guest (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:46:39,744 [lib.cuckoo.core.resultserver] DEBUG: Task #1: live log analysis.log initialized\r\n2024-05-09 15:46:44,510 [lib.cuckoo.core.guest] DEBUG: Task #1: Analysis is still running (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:46:49,634 [lib.cuckoo.core.guest] DEBUG: Task #1: Analysis is still running (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:46:54,783 [lib.cuckoo.core.guest] DEBUG: Task #1: Analysis is still running (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:46:59,899 [lib.cuckoo.core.guest] DEBUG: Task #1: Analysis is still running (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:47:05,292 [lib.cuckoo.core.guest] DEBUG: Task #1: Analysis is still running (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:47:10,503 [lib.cuckoo.core.guest] DEBUG: Task #1: Analysis is still running (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:47:15,682 [lib.cuckoo.core.guest] DEBUG: Task #1: Analysis is still running (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:47:20,812 [lib.cuckoo.core.guest] DEBUG: Task #1: Analysis is still running (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:47:25,992 [lib.cuckoo.core.guest] DEBUG: Task #1: Analysis is still running (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:47:31,146 [lib.cuckoo.core.guest] DEBUG: Task #1: Analysis is still running (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:47:36,266 [lib.cuckoo.core.guest] DEBUG: Task #1: Analysis is still running (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:47:41,429 [lib.cuckoo.core.guest] DEBUG: Task #1: Analysis is still running (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:47:46,601 [lib.cuckoo.core.guest] DEBUG: Task #1: Analysis is still running (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:47:51,713 [lib.cuckoo.core.guest] DEBUG: Task #1: Analysis is still running (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:47:56,835 [lib.cuckoo.core.guest] DEBUG: Task #1: Analysis is still running (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:48:01,952 [lib.cuckoo.core.guest] DEBUG: Task #1: Analysis is still running (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:48:07,065 [lib.cuckoo.core.guest] DEBUG: Task #1: Analysis is still running (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:48:12,179 [lib.cuckoo.core.guest] DEBUG: Task #1: Analysis is still running (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:48:17,322 [lib.cuckoo.core.guest] DEBUG: Task #1: Analysis is still running (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:48:22,465 [lib.cuckoo.core.guest] DEBUG: Task #1: Analysis is still running (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:48:27,607 [lib.cuckoo.core.guest] DEBUG: Task #1: Analysis is still running (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:48:32,751 [lib.cuckoo.core.guest] DEBUG: Task #1: Analysis is still running (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:48:37,889 [lib.cuckoo.core.guest] DEBUG: Task #1: Analysis is still running (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:48:42,997 [lib.cuckoo.core.guest] DEBUG: Task #1: Analysis is still running (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:48:48,111 [lib.cuckoo.core.guest] DEBUG: Task #1: Analysis is still running (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:48:53,222 [lib.cuckoo.core.guest] DEBUG: Task #1: Analysis is still running (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:48:58,327 [lib.cuckoo.core.guest] DEBUG: Task #1: Analysis is still running (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:49:03,436 [lib.cuckoo.core.guest] DEBUG: Task #1: Analysis is still running (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:49:08,586 [lib.cuckoo.core.guest] DEBUG: Task #1: Analysis is still running (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:49:13,762 [lib.cuckoo.core.guest] DEBUG: Task #1: Analysis is still running (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:49:18,924 [lib.cuckoo.core.guest] DEBUG: Task #1: Analysis is still running (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:49:24,089 [lib.cuckoo.core.guest] DEBUG: Task #1: Analysis is still running (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:49:29,263 [lib.cuckoo.core.guest] DEBUG: Task #1: Analysis is still running (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:49:34,444 [lib.cuckoo.core.guest] DEBUG: Task #1: Analysis is still running (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:49:39,610 [lib.cuckoo.core.guest] DEBUG: Task #1: Analysis is still running (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:49:44,778 [lib.cuckoo.core.guest] DEBUG: Task #1: Analysis is still running (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:49:49,916 [lib.cuckoo.core.guest] DEBUG: Task #1: Analysis is still running (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:49:55,076 [lib.cuckoo.core.guest] DEBUG: Task #1: Analysis is still running (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:50:00,248 [lib.cuckoo.core.guest] DEBUG: Task #1: Analysis is still running (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:50:02,982 [lib.cuckoo.core.resultserver] DEBUG: Task #1: Trying to upload file logs/strace.log.1080\r\n2024-05-09 15:50:02,992 [lib.cuckoo.core.resultserver] DEBUG: Task #1: Trying to upload file logs/strace.log.1083\r\n2024-05-09 15:50:03,000 [lib.cuckoo.core.resultserver] DEBUG: Task #1: Trying to upload file logs/strace.log.1081\r\n2024-05-09 15:50:03,007 [lib.cuckoo.core.resultserver] DEBUG: Task #1: Trying to upload file logs/strace.log.1082\r\n2024-05-09 15:50:05,430 [lib.cuckoo.core.guest] DEBUG: Task #1: Analysis is still running (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:50:08,525 [lib.cuckoo.core.guest] INFO: Task #completed successfully: Analysis 1 (id=test_joseph, ip=192.168.122.154)\r\n2024-05-09 15:50:08,599 [lib.cuckoo.core.plugins] DEBUG: Stopped auxiliary module: Sniffer\r\n2024-05-09 15:50:08,602 [lib.cuckoo.common.abstracts] DEBUG: Stopping machine test_joseph\r\n2024-05-09 15:50:08,603 [lib.cuckoo.common.abstracts] DEBUG: Getting status for test_joseph\r\n2024-05-09 15:50:11,034 [lib.cuckoo.common.abstracts] DEBUG: Getting status for test_joseph\r\n2024-05-09 15:50:11,117 [lib.cuckoo.core.resultserver] DEBUG: Task #1: Stopped tracking machine 192.168.122.154\r\n2024-05-09 15:50:11,421 [lib.cuckoo.core.scheduler] DEBUG: Task #1: Released database task with status True\r\n2024-05-09 15:50:11,425 [lib.cuckoo.core.scheduler] INFO: Task #1: analysis procedure completed\r\n```\nComment: you marked that you checked issues, here is it, https://github.com/kevoreilly/CAPEv2/issues/2103 closing as duplicated.\r\n\r\nAbout summary missed you must have some error before or disabled some config options",
+  "Title: Update Yara CI config\nBody: Also found another CI issue in Qakbot parser test, but that's only partially fixed since the sample `0cb0d77ac38df36fff891e072dea96401a8c1e8ff40d6ac741d5a2942aaeddbb` is missing from https://github.com/CAPESandbox/CAPE-TestFiles/tree/main/malware and I can't find it on VT.\r\n\r\nSee https://github.com/kevoreilly/CAPEv2/actions/runs/9015622064/job/24770640690 for details",
+  "Title: Fix Zloader yara inside py\nBody: Introduced with #2098, partially fixed by 3c6d7d4f232e43db68ca2dd711f5e9d8e9e033cb\nComment: @doomedraven this should fix #2101 \nComment: Thank you",
+  "Title: Fix submit.py\nBody: Update submit.py so that it properly uses database transactions to commit the changes. Fixes the issue in https://github.com/kevoreilly/CAPEv2/pull/2041#issuecomment-2101251635\r\n\r\nPinging @cccs-mog for awareness.\nComment: Thanks ! Will be testing with that. ",
+  "Title: Cannot integrate MISP with CAPE\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [Y] I am running the latest version\r\n- [Y] I did read the README!\r\n- [Y] I checked the documentation and found no answer\r\n- [Y] I checked to make sure that this issue has not already been filed\r\n- [Y] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [Y] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nData from report of Cape sandbox to move to MISP in the form of an event\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\nHello,\r\nI am running two instances MISP and Cape sandbox as virtual machines.I have provided API key and IP of MISP instance in processing.conf and reporting.conf , data is not being sent to MISP, I have made similar changes for a different cape instance and it works fine, its not working for the latest cape version.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 22.04\r\n\r\n\nComment: are you sure that those capes using the same version of misp api?\nComment: as header says \r\n```\r\n# Disclaimer this code is not maintained by core devs\r\n# pymisp is known to break api on updates.\r\n# So you need it? You fix it!\r\n```\r\nhttps://github.com/CAPESandbox/community/blob/master/lib/cuckoo/common/integrations/misp.py\nComment: Yeah \r\nI narrowed it down to following log i got from running an analysis:\r\n [Task 82] [lib.cuckoo.core.plugins] ERROR: Failed to run the reporting module \"MISP\": name 'PyMISP' is not defined\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 715, in process\r\n    current.run(self.results)\r\n  File \"/opt/CAPEv2/utils/../modules/reporting/misp.py\", line 228, in run\r\n    self.misp = PyMISP(url, apikey, False, \"json\")\r\nNameError: name 'PyMISP' is not defined\r\n\r\nI also get following log while loading the sandbox:\r\n [modules.processing.network] INFO: Loading maxmind database from /data/GeoLite2-Country.mmdb\r\npip3 install pymisp=2.4.144\r\nI installed the requires version of pymisp but its still not working.\nComment: How did you install it? Just as pip or as poetry run pip?\r\n\r\nEl vie, 10 may 2024, 13:08, MU-03 ***@***.***> escribi\u00f3:\r\n\r\n> Yeah\r\n> I narrowed it down to following log i got from running an analysis:\r\n> [Task 82] [lib.cuckoo.core.plugins] ERROR: Failed to run the reporting\r\n> module \"MISP\": name 'PyMISP' is not defined\r\n> Traceback (most recent call last):\r\n> File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 715, in\r\n> process\r\n> current.run(self.results)\r\n> File \"/opt/CAPEv2/utils/../modules/reporting/misp.py\", line 228, in run\r\n> self.misp = PyMISP(url, apikey, False, \"json\")\r\n> NameError: name 'PyMISP' is not defined\r\n>\r\n> I also get following log while loading the sandbox:\r\n> [modules.processing.network] INFO: Loading maxmind database from\r\n> /data/GeoLite2-Country.mmdb\r\n> pip3 install pymisp=2.4.144\r\n> I installed the requires version of pymisp but its still not working.\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2110#issuecomment-2104418169>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH36HIJQHJJZM5HHWHKDZBSTDPAVCNFSM6AAAAABHMYLVTCVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDCMBUGQYTQMJWHE>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: Its added in poetry and i installed it through pip3 \r\nFollowing is pymisp in poetry:\r\npymisp 2.4.144 Python API for MISP.\r\n\u251c\u2500\u2500 deprecated >=1.2.12,<2.0.0\r\n\u2502   \u2514\u2500\u2500 wrapt >=1.10,<2\r\n\u251c\u2500\u2500 jsonschema >=3.2.0,<4.0.0\r\n\u2502   \u251c\u2500\u2500 attrs >=17.4.0\r\n\u2502   \u251c\u2500\u2500 pyrsistent >=0.14.0\r\n\u2502   \u251c\u2500\u2500 setuptools *\r\n\u2502   \u2514\u2500\u2500 six >=1.11.0\r\n\u251c\u2500\u2500 python-dateutil >=2.8.1,<3.0.0\r\n\u2502   \u2514\u2500\u2500 six >=1.5\r\n\u2514\u2500\u2500 requests >=2.25.1,<3.0.0\r\n    \u251c\u2500\u2500 certifi >=2017.4.17\r\n    \u251c\u2500\u2500 charset-normalizer >=2,<4\r\n    \u251c\u2500\u2500 idna >=2.5,<4\r\n    \u251c\u2500\u2500 pysocks >=1.5.6,<1.5.7 || >1.5.7\r\n\r\nand by command pip3 show pymisp I get :\r\nName: pymisp\r\nVersion: 2.4.144\nComment: then idk, you will need to figurate what is wrong, as disclaimer says, they update pymisp and breaks it frequently i got tired of supporting that over the years.\r\n\r\nas clue for start investigating, it might be that latest misp server is not compatible anymore with this pymisp version. You might try to install latest pymismp, but i can-t guarantee that it will work, due to what i told before\nComment: I tried latest installed also , anyways, i'll try to troubleshoot this. Thank you\nComment: let us know if you find the solution so that others can save time there\nComment: @MU-03 I am trying to troubleshoot this as well. Were you ever able to figure out how to get the MISP integration working?\nComment: > @MU-03 I am trying to troubleshoot this as well. Were you ever able to figure out how to get the MISP integration working?\r\n\r\nNo, I was occupied else where so i could not work on it dedicatedly , will share the solution if found.\nComment: as i told, we dont support misp integration due to their frequent break of api, so if you find solution and want to share with community you are welcome to update misp.py, closing this\nComment: For anyone running into this issue of pymisp still missing even after installing with pip try :\r\n\r\nsource /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/activate\r\npip install pymisp\r\nverify that is install with pip show pymisp \r\n\r\ndone\r\n\nComment: Instead of that you can just do poetry shell instead of source or poetry run pip install ditectly\nComment: as someone who has been trying to setup the misp integration for the last week , doing poetry run pip install pymisp doesnt actually work, I still get the error of pymisp not being installed.\r\nEven after going into poetry shell and verifying it is installed i still face the same error however when i do the command \r\n\"source /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/activate\" the venv inside doesnt have pymisp installed hence why I'm posting this just incase anyone faced a similar issue. that's all\r\n\r\nAppreciate the work you guys have done with capev2 \nComment: Wow that's interesting\r\n\r\nYa, we don't support/maintain misp due to to frequent API changes, at least in past, that gave us too much headache",
+  "Title: No Behavioral analysis (volatility instantiation failure)\nBody: Hello,\r\n\r\nFor now I am stuck with obtaining behavioral analysis for a sample. I did a reinstall of CAPEv2, volatility instantiation from python fails. Would be grateful for pointers where to dig.\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [+] I am running the latest version \r\n- [+] I did read the README!\r\n- [+] I checked the documentation and found no answer\r\n- [+] I checked to make sure that this issue has not already been filed (similar issue per logs #2075, but did not help)\r\n- [+] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [?] I have read and checked all configs (with all optional parts)\r\nMost likely I am missing something regarding memory.conf (diff from default attached)\r\n\r\n# Expected Behavior\r\n\r\nBehavioral analysis shows some process information.\r\n\r\n# Current Behavior\r\n\r\nBehavioral analysis tab does not show any information, Just text `Process Tree`, logs show that `volatility` execution failed.\r\n\r\n# Failure Information (for bugs)\r\n\r\n`poetry run vol -v -f storage/analyses/5/memory.dmp windows.info` works and shows information.\r\n\r\n## Steps to Reproduce\r\n\r\nSubmit a sample through the web interface, wait until completion.\r\n\r\n## Context\r\n\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | commit 15e7642cdf588559fa56c5a1d8daaaf94c20fb47\r\n| OS version       | Linux 6.5.0-27-generic #28~22.04.1-Ubuntu SMP PREEMPT_DYNAMIC Fri Mar 15 10:51:06 UTC 2 x86_64 x86_64 x86_64 GNU/Linux\r\n\r\nThe box has more than 64Gb of RAM.\r\n\r\n## Failure Logs\r\n\r\n```\r\n2024-05-08 08:32:55,312 [root] INFO: Processing analysis data for Task #5\r\n2024-05-08 08:39:01,337 [Task 5] [volatility3.framework.symbols.windows.pdbutil] WARNING: Symbol file could not be downloaded from remote server                                                                                                    \r\n2024-05-08 08:39:01,345 [Task 5] [root] ERROR: Generic error executing volatility\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../modules/processing/memory.py\", line 342, in run\r\n    results = vol.run()\r\n  File \"/opt/CAPEv2/utils/../modules/processing/memory.py\", line 245, in run\r\n    results[\"pslist\"] = vol3.run(\"windows.pslist.PsList\")\r\n  File \"/opt/CAPEv2/utils/../modules/processing/memory.py\", line 135, in run\r\n    constructed = plugins.construct_plugin(self.ctx, automagics, plugin, \"plugins\", None, None)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/volatility3/framework/plugins/__init__.py\", line 60, in construct_plugin\r\n    raise exceptions.UnsatisfiedException(unsatisfied)\r\nvolatility3.framework.exceptions.UnsatisfiedException\r\n2024-05-08 08:39:01,346 [Task 5] [lib.cuckoo.core.plugins] ERROR: Failed to run the processing module \"Memory\": 'NoneType' object has no attribute 'delete_memdump_on_exception'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../modules/processing/memory.py\", line 342, in run\r\n    results = vol.run()\r\n  File \"/opt/CAPEv2/utils/../modules/processing/memory.py\", line 245, in run\r\n    results[\"pslist\"] = vol3.run(\"windows.pslist.PsList\")\r\n  File \"/opt/CAPEv2/utils/../modules/processing/memory.py\", line 135, in run\r\n    constructed = plugins.construct_plugin(self.ctx, automagics, plugin, \"plugins\", None, None)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/volatility3/framework/plugins/__init__.py\", line 60, in construct_plugin\r\n    raise exceptions.UnsatisfiedException(unsatisfied)\r\nvolatility3.framework.exceptions.UnsatisfiedException\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 247, in process\r\n    data = current.run()\r\n  File \"/opt/CAPEv2/utils/../modules/processing/memory.py\", line 345, in run\r\n    if self.options.basic.delete_memdump_on_exception:\r\nAttributeError: 'NoneType' object has no attribute 'delete_memdump_on_exception'\r\n2024-05-08 08:39:51,615 [Task 5] [lib.cuckoo.core.plugins] ERROR: Failed to run the processing module \"extract_overlay_data\": 'extract_overlay_data' object has no attribute 'key'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 253, in process\r\n    return {current.key: data}\r\nAttributeError: 'extract_overlay_data' object has no attribute 'key'\r\n2024-05-08 08:39:51,805 [root] INFO: Reports generation completed for Task #5\r\n```\r\n\r\n```\r\n/opt/CAPEv2$ poetry run vol -v -f storage/analyses/5/memory.dmp windows.info\r\nVolatility 3 Framework 2.5.2\r\nINFO     volatility3.cli: Volatility plugins path: ['/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/volatility3/plugins', '/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/volatility3/framework/plugins']\r\nINFO     volatility3.cli: Volatility symbols path: ['/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/volatility3/symbols', '/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/volatility3/framework/symbols']\r\nINFO     volatility3.cli: The following plugins could not be loaded (use -vv to see why): volatility3.plugins.windows.cachedump, volatility3.plugins.windows.hashdump, volatility3.plugins.windows.lsadump\r\nINFO     volatility3.framework.automagic: Detected a windows category plugin\r\nINFO     volatility3.framework.automagic: Running automagic: ConstructionMagic\r\nINFO     volatility3.framework.automagic: Running automagic: SymbolCacheMagic\r\nINFO     volatility3.framework.automagic: Running automagic: LayerStacker\r\nINFO     volatility3.schemas: Dependency for validation unavailable: jsonschema\r\nINFO     volatility3.schemas: Dependency for validation unavailable: jsonschema\r\nINFO     volatility3.framework.automagic: Running automagic: WinSwapLayers\r\nINFO     volatility3.framework.automagic: Running automagic: KernelPDBScanner\r\nINFO     volatility3.framework.symbols.windows.pdbconv: Download PDB file...r  \r\nINFO     volatility3.schemas: Dependency for validation unavailable: jsonschemasymbols/ntkrnlmp.pdb/89284D0CA6ACC8274B9A44BD5AF9290B1/ntkrnlmp.pdb\r\nINFO     volatility3.schemas: Dependency for validation unavailable: jsonschema                                                                   \r\nINFO     volatility3.framework.automagic: Running automagic: SymbolFinder                                                                         \r\nINFO     volatility3.framework.automagic: Running automagic: KernelModule\r\n\r\nVariable\tValue\r\nINFO     volatility3.schemas: Dependency for validation unavailable: jsonschema\r\n\r\nKernel Base\t0xf80562a00000\r\nDTB\t0x1ad000\r\nSymbols\tfile:///home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/volatility3/symbols/windows/ntkrnlmp.pdb/89284D0CA6ACC8274B9A44BD5AF9290B-1.json.xz\r\nIs64Bit\tTrue\r\nIsPAE\tFalse\r\nlayer_name\t0 WindowsIntel32e\r\nmemory_layer\t1 Elf64Layer\r\nbase_layer\t2 FileLayer\r\nKdVersionBlock\t0xf8056360f3a0\r\nMajor/Minor\t15.19041\r\nMachineType\t34404\r\nKeNumberProcessors\t1\r\nSystemTime\t2024-05-08 05:28:11\r\nNtSystemRoot\tC:\\Windows\r\nNtProductType\tNtProductWinNt\r\nNtMajorVersion\t10\r\nNtMinorVersion\t0INFO     volatility3.schemas: Dependency for validation unavailable: jsonschema\r\n\r\nPE MajorOperatingSystemVersion\t10\r\nPE MinorOperatingSystemVersion\t0\r\nPE Machine\t34404\r\nPE TimeDateStamp\tFri May 20 08:24:42 2101\r\n```\r\n```\r\n$ diff -u default/memory.conf.default memory.conf \r\n--- default/memory.conf.default\t2024-05-07 12:56:20.000000000 +0000\r\n+++ memory.conf\t2024-05-08 06:49:10.626719023 +0000\r\n@@ -18,50 +18,43 @@\r\n # Scans for hidden/injected code and dlls\r\n # http://code.google.com/p/volatility/wiki/CommandReferenceMal23#malfind\r\n [malfind]\r\n-enabled = no\r\n+enabled = yes\r\n filter = on\r\n \r\n # Lists official processes. Does not detect hidden processes\r\n-# https://github.com/volatilityfoundation/volatility/wiki/Command-Reference#pslist\r\n+# http://code.google.com/p/volatility/wiki/CommandReference23#pslist\r\n [pslist]\r\n-enabled = no\r\n+enabled = yes\r\n filter = off\r\n \r\n-# Process listing in tree form. Does not detect hidden processes (Don't work currently in CAPE)\r\n-# https://github.com/volatilityfoundation/volatility/wiki/Command-Reference#pstree\r\n+# Lists hidden processes. Uses several tricks to identify them\r\n+# http://code.google.com/p/volatility/wiki/CommandReferenceMal23#psxview\r\n [pstree]\r\n enabled = no\r\n filter = off\r\n \r\n-# Lists hidden processes. Enumerate processes in the Kernel memory using pool tag scanning _POOL_HEADER\r\n-# https://github.com/volatilityfoundation/volatility/wiki/Command-Reference#psscan\r\n-[psscan]\r\n-enabled = no\r\n-filter = off\r\n-\r\n-\r\n # Show callbacks\r\n # http://code.google.com/p/volatility/wiki/CommandReferenceMal23#callbacks\r\n [callbacks]\r\n-enabled = no\r\n+enabled = yes\r\n filter = off\r\n \r\n # Show sids\r\n # http://code.google.com/p/volatility/wiki/CommandReference23#getsids\r\n [getsids]\r\n-enabled = no\r\n+enabled = yes\r\n filter = off\r\n \r\n # Show privileges\r\n # http://code.google.com/p/volatility/wiki/CommandReference23#privs\r\n [privs]\r\n-enabled = no\r\n+enabled = yes\r\n filter = off\r\n \r\n # Display processes' loaded DLLs- Does not display hidden DLLs\r\n # http://code.google.com/p/volatility/wiki/CommandReference23#dlllist\r\n [dlllist]\r\n-enabled = no\r\n+enabled = yes\r\n filter = on\r\n```\r\n\r\n\r\n\nComment: do `git pull` and restart processing `sudo systemctl restart cape-processor`. that should handle vol3 exception for pslist, why that happens idk, i don't use vol for long time already\nComment: Ok, thanks! (the exception is no more) Will try to figure out, what causes this for me..",
+  "Title: Failed_processing with Flare_capa\nBody:  This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x ] I am running the latest version\r\n- [ x] I did read the README!\r\n- [ x] I checked the documentation and found no answer\r\n- [ x] I checked to make sure that this issue has not already been filed\r\n- [ x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\nprocessing to be completed\r\n\r\n# Current Behavior\r\nafter running analysis it will start processing for a few seconds and then failed_processing shows up\r\n\r\n## Steps to Reproduce\r\n\r\n1. submit url / file for analysis \r\n2. analysis completes\r\n3. processing fails\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 22.04\r\n\r\n## Failure Logs\r\n\r\nprocess.log\r\n```\r\n2024-05-08 10:30:14,770 [Task 160] [lib.cuckoo.core.plugins] ERROR: Failed to run the reporting module \"CAPASummary\": 'target'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../modules/reporting/flare_capa_summary.py\", line 19, in generate_cape_analysis_summary\r\n    return flare_capa_details(results[\"target\"][\"file\"][\"path\"], \"static\", on_demand=True, backend=\"cape\", results=results)\r\nKeyError: 'target'\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 738, in process\r\n    current.run(self.results)\r\n  File \"/opt/CAPEv2/utils/../modules/reporting/flare_capa_summary.py\", line 31,  in run\r\n    report = generate_cape_analysis_summary(results)\r\n  File \"/opt/CAPEv2/utils/../modules/reporting/flare_capa_summary.py\", line 21, in generate_cape_analysis_summary\r\n    log.warning(\"Can't generate bingraph for %s: %s\", results[\"target\"][\"file\"][\"path\"], e)\r\nKeyError: 'target'\r\n```\r\n`\nComment: hello, thanks fixed here https://github.com/kevoreilly/CAPEv2/commit/4e1eca5b0bec0e52c464ed8d180ca210ffc8836f",
+  "Title: Interactive Session CAPE / Guacamole Connection\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [+] I am running the latest version\r\n- [+] I did read the README!\r\n- [+] I checked the documentation and found no answer\r\n- [+] I checked to make sure that this issue has not already been filed\r\n- [+] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [+] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\nWhen submitting a file and selecting interactive session, display the desktop of the VM while running the analysis\r\n\r\n# Current Behavior\r\nReceive the follow error:\r\n![CAPE-Error](https://github.com/kevoreilly/CAPEv2/assets/169159226/fe84551a-05d9-47ac-896a-356d542997fa)\r\n\r\n# Failure Information (for bugs)\r\n\r\n\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. When submitting a file for analysis, click interactive desktop\r\n2. Click Analyze\r\n3. Under the Remote Control Session, click on the task number\r\n4. Error\r\n\r\n## Context\r\n\r\nWhen trying to launch guacamole through CAPE it results in the error message displayed above. In the logs I don't see CAPE opening a guacamole session.\r\n\r\nI am able to connect to a running VM through the guacamole setup outside of cape using the method as described in the docs (detailed under Additional Information)\r\n\r\n**OS Version:** Ubuntu 22\r\n**Guacamole Version:** 1.5.5\r\n\r\n**/opt/CAPEv2/conf/web.conf**\r\n\r\n```\r\n[web_reporting]\r\nenabled = yes\r\n\r\n[guacamole]\r\nenabled = yes\r\nmode = vnc\r\nusername =\r\npassword =\r\nguacd_host = localhost\r\nguacd_port = 4822\r\n# Server that exposes the VNC ports (e.g., your KVM host)\r\nvnc_host = localhost\r\n# You might need to add your server IP to ALLOWED_HOSTS in web/web/settings.py if it not [\"*\"\"]\r\n# vnc or rdp\r\nguest_protocol = vnc\r\nguacd_recording_path = /opt/CAPEv2/storage/guacrecordings\r\nguest_width = 1280\r\nguest_height = 1024\r\n rdp settings\r\nguest_rdp_port = 3389\r\n```\r\n\r\n**VM VNC Settings**\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/169159226/270c2b1c-d13b-47b5-992c-baac28270787)\r\n\r\n**NGINX Config**\r\n\r\n```\r\nserver {\r\n    listen 80;\r\n    server_name \"cape-sandbox\";\r\n    client_max_body_size 101M;\r\n    proxy_connect_timeout 75;\r\n    proxy_send_timeout 200;\r\n    proxy_read_timeout 200;\r\n\r\n\r\n    location ^~ /.well-known/acme-challenge/ {\r\n      default_type \"text/plain\";\r\n      root         /var/www/html;\r\n      break;\r\n    }\r\n\r\n    location = /.well-known/acme-challenge/ {\r\n      return 404;\r\n    }\r\n\r\n    location / {\r\n        proxy_pass http://10.32.2.120:8000;\r\n        proxy_set_header Host $host;\r\n        proxy_set_header X-Remote-User $remote_user;\r\n        proxy_set_header X-Real-IP $remote_addr;\r\n        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;\r\n    }\r\n\r\n    location /static/ {\r\n        alias /opt/CAPEv2/web/static/;\r\n    }\r\n\r\n    location /static/admin/ {\r\n        proxy_pass http://10.32.2.120:8000;\r\n        proxy_set_header Host $host;\r\n        proxy_set_header X-Remote-User $remote_user;\r\n        proxy_set_header X-Real-IP $remote_addr;\r\n        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;\r\n    }\r\n\r\n    location /guac {\r\n        proxy_pass http://127.0.0.1:8008;\r\n        proxy_set_header X-Forwarded-Proto $scheme;\r\n        proxy_set_header Host $host;\r\n        proxy_set_header X-Real-IP $remote_addr;\r\n        proxy_buffering off;\r\n        proxy_http_version 1.1;\r\n        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;\r\n        proxy_set_header Upgrade $http_upgrade;\r\n        proxy_set_header Connection $http_connection;\r\n    }\r\n\r\n    location /recordings/playback/recfile {\r\n        alias /opt/CAPEv2/storage/guacrecordings/;\r\n        autoindex off;\r\n    }\r\n}\r\n```\r\n\r\n## Failure Logs\r\n\r\nThe guacd service status when choosing the interactive session during a file analysis\r\n\r\n```\r\nMay 06 17:46:29 CAPE systemd[1]: Started Guacamole Server.\r\nMay 06 17:46:30 CAPE guacd[2175]: Guacamole proxy daemon (guacd) version 1.5.5 started\r\nMay 06 17:46:30 CAPE guacd[2175]: guacd[2175]: INFO:        Guacamole proxy daemon (guacd) version 1.5.5 started\r\nMay 06 17:46:30 CAPE guacd[2175]: guacd[2175]: INFO:        Listening on host 127.0.0.1, port 4822\r\nMay 06 17:46:30 CAPE guacd[2175]: Listening on host 127.0.0.1, port 4822\r\nMay 06 17:49:38 CAPE systemd[1]: Stopping Guacamole Server...\r\nMay 06 17:49:38 CAPE systemd[1]: guacd.service: Deactivated successfully.\r\nMay 06 17:49:38 CAPE systemd[1]: Stopped Guacamole Server. \r\n```\r\n\r\nThe guac-server.log (/opt/CAPEv2/web/guac-server.log) is empty\r\n\r\nThe guac-web service logs\r\n\r\n```\r\nMay 06 17:46:28 CAPE systemd[1]: Started Guacamole ASGI app.\r\nMay 06 17:46:34 CAPE poetry[2008]: [2024-05-06 17:46:34 +0000] [2008] [INFO] Starting gunicorn 22.0.0\r\nMay 06 17:46:34 CAPE poetry[2008]: [2024-05-06 17:46:34 +0000] [2008] [INFO] Listening at: http://127.0.0.1:8008 (2008)\r\nMay 06 17:46:34 CAPE poetry[2008]: [2024-05-06 17:46:34 +0000] [2008] [INFO] Using worker: uvicorn.workers.UvicornWorker\r\nMay 06 17:46:34 CAPE poetry[3002]: [2024-05-06 17:46:34 +0000] [3002] [INFO] Booting worker with pid: 3002\r\nMay 06 17:46:34 CAPE poetry[3004]: [2024-05-06 17:46:34 +0000] [3004] [INFO] Booting worker with pid: 3004\r\nMay 06 17:46:34 CAPE poetry[3006]: [2024-05-06 17:46:34 +0000] [3006] [INFO] Booting worker with pid: 3006\r\nMay 06 17:46:34 CAPE poetry[3007]: [2024-05-06 17:46:34 +0000] [3007] [INFO] Booting worker with pid: 3007\r\nMay 06 17:46:36 CAPE poetry[3006]: [2024-05-06 17:46:36 +0000] [3006] [INFO] Started server process [3006]\r\nMay 06 17:46:36 CAPE poetry[3004]: [2024-05-06 17:46:36 +0000] [3004] [INFO] Started server process [3004]\r\nMay 06 17:46:36 CAPE poetry[3007]: [2024-05-06 17:46:36 +0000] [3007] [INFO] Started server process [3007]\r\nMay 06 17:46:36 CAPE poetry[3002]: [2024-05-06 17:46:36 +0000] [3002] [INFO] Started server process [3002]\r\nMay 06 17:46:36 CAPE poetry[3006]: [2024-05-06 17:46:36 +0000] [3006] [INFO] Waiting for application startup.\r\nMay 06 17:46:36 CAPE poetry[3007]: [2024-05-06 17:46:36 +0000] [3007] [INFO] Waiting for application startup.\r\nMay 06 17:46:36 CAPE poetry[3004]: [2024-05-06 17:46:36 +0000] [3004] [INFO] Waiting for application startup.\r\nMay 06 17:46:36 CAPE poetry[3002]: [2024-05-06 17:46:36 +0000] [3002] [INFO] Waiting for application startup.\r\nMay 06 17:46:36 CAPE poetry[3007]: [2024-05-06 17:46:36 +0000] [3007] [INFO] ASGI 'lifespan' protocol appears unsupported.\r\nMay 06 17:46:36 CAPE poetry[3004]: [2024-05-06 17:46:36 +0000] [3004] [INFO] ASGI 'lifespan' protocol appears unsupported.\r\nMay 06 17:46:36 CAPE poetry[3006]: [2024-05-06 17:46:36 +0000] [3006] [INFO] ASGI 'lifespan' protocol appears unsupported.\r\nMay 06 17:46:36 CAPE poetry[3002]: [2024-05-06 17:46:36 +0000] [3002] [INFO] ASGI 'lifespan' protocol appears unsupported.\r\nMay 06 17:46:36 CAPE poetry[3007]: [2024-05-06 17:46:36 +0000] [3007] [INFO] Application startup complete.\r\nMay 06 17:46:36 CAPE poetry[3004]: [2024-05-06 17:46:36 +0000] [3004] [INFO] Application startup complete.\r\nMay 06 17:46:36 CAPE poetry[3006]: [2024-05-06 17:46:36 +0000] [3006] [INFO] Application startup complete.\r\nMay 06 17:46:36 CAPE poetry[3002]: [2024-05-06 17:46:36 +0000] [3002] [INFO] Application startup complete.\r\n\r\n```\r\n\r\n## Additional information\r\n\r\nOutside of CAPE I run the VM, and get the encoded string for the VM and through a browser I can access the VM through guacamole with the connection established in the logs\r\n\r\n**Python script**\r\n\r\n```\r\n>>> from uuid import uuid3, NAMESPACE_DNS\r\n>>> from base64 import urlsafe_b64encode as ub64enc\r\n>>> sid = uuid3(NAMESPACE_DNS, \"0000\").hex[:16]\r\n>>> ip = \"10.32.2.120\" # Example 192.168.2.2\r\n>>> vm_name = \"win10x1\" # example win10\r\n>>> sd = ub64enc(f\"{sid}|{vm_name}|{ip}\".encode(\"utf8\")).decode(\"utf8\")\r\n>>> print(sd)\r\nNTNjMWQ5YzZiZmFiM2Q0Znx3aW4xMHgxfDEwLjMyLjIuMTIw\r\n>>>\r\n```\r\n\r\n**Guacamole VM**\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/169159226/3d5e78f6-8fc1-4ab9-a0e3-832a3c0231b4)\r\n\r\n**Guacd Logging VNC Connections outside of CAPE**\r\n\r\n`sudo journalctl -u guacd`\r\n\r\n```\r\nMay 07 16:45:26 CAPE guacd[2171]: Creating new client for protocol \"vnc\"\r\nMay 07 16:45:26 CAPE guacd[2171]: Connection ID is \"$93d96a47-2393-4f07-9a0b-1c4c7050ba3f\"\r\nMay 07 16:45:26 CAPE guacd[22970]: Cursor rendering: local\r\nMay 07 16:45:26 CAPE guacd[22970]: guacd[22970]: INFO:        Cursor rendering: local\r\nMay 07 16:45:26 CAPE guacd[22970]: guacd[22970]: INFO:        User \"@5fc0cd12-110d-4fa3-9088-dae48ed6d4ad\" joined connection \"$93d96a47-2393-4f07-9a0b-1c4c7050ba3f\" (1 users now present)\r\nMay 07 16:45:26 CAPE guacd[22970]: User \"@5fc0cd12-110d-4fa3-9088-dae48ed6d4ad\" joined connection \"$93d96a47-2393-4f07-9a0b-1c4c7050ba3f\" (1 users now present)\r\nMay 07 16:45:26 CAPE guacd[22970]: VNC server supports protocol version 3.8 (viewer 3.8)\r\nMay 07 16:45:26 CAPE guacd[22970]: We have 1 security types to read\r\nMay 07 16:45:26 CAPE guacd[22970]: 0) Received security type 1\r\nMay 07 16:45:26 CAPE guacd[22970]: Selecting security type 1 (0/1 in the list)\r\nMay 07 16:45:26 CAPE guacd[22970]: Selected Security Scheme 1\r\nMay 07 16:45:26 CAPE guacd[22970]: No authentication needed\r\nMay 07 16:45:26 CAPE guacd[22970]: VNC authentication succeeded\r\nMay 07 16:45:26 CAPE guacd[22970]: Desktop name \"QEMU (win10x1)\"\r\nMay 07 16:45:26 CAPE guacd[22970]: Connected to VNC server, using protocol version 3.8\r\nMay 07 16:45:26 CAPE guacd[22970]: VNC server default format:\r\nMay 07 16:45:26 CAPE guacd[22970]:   32 bits per pixel.\r\nMay 07 16:45:26 CAPE guacd[22970]:   Least significant byte first in each pixel.\r\nMay 07 16:45:26 CAPE guacd[22970]:   TRUE colour: max red 255 green 255 blue 255, shift red 16 green 8 blue 0\r\nMay 07 16:45:26 CAPE guacd[22970]: guacd[22970]: INFO:        Recording of session will be saved to \"/opt/CAPEv2/storage/guacrecordings/0000_53c1d9c6bfab3d4f.8\".\r\nMay 07 16:45:26 CAPE guacd[22970]: Recording of session will be saved to \"/opt/CAPEv2/storage/guacrecordings/0000_53c1d9c6bfab3d4f.8\".\r\nMay 07 16:45:54 CAPE guacd[22970]: User \"@5fc0cd12-110d-4fa3-9088-dae48ed6d4ad\" disconnected (0 users remain)\r\nMay 07 16:45:54 CAPE guacd[22970]: Last user of connection \"$93d96a47-2393-4f07-9a0b-1c4c7050ba3f\" disconnected\r\nMay 07 16:45:54 CAPE guacd[22970]: guacd[22970]: INFO:        User \"@5fc0cd12-110d-4fa3-9088-dae48ed6d4ad\" disconnected (0 users remain)\r\nMay 07 16:45:54 CAPE guacd[22970]: guacd[22970]: INFO:        Last user of connection \"$93d96a47-2393-4f07-9a0b-1c4c7050ba3f\" disconnected\r\nMay 07 16:45:55 CAPE guacd[22970]: Internal VNC client disconnected\r\nMay 07 16:45:55 CAPE guacd[22970]: guacd[22970]: INFO:        Internal VNC client disconnected\r\nMay 07 16:45:55 CAPE guacd[2171]: Connection \"$93d96a47-2393-4f07-9a0b-1c4c7050ba3f\" removed.\r\nMay 07 16:45:55 CAPE guacd[2171]: guacd[2171]: INFO:        Connection \"$93d96a47-2393-4f07-9a0b-1c4c7050ba3f\" removed.\r\n```\r\n\r\n`sudo journalctl -u guac-web`\r\n\r\n```\r\nMay 07 16:45:26 CAPE poetry[3134]: Client connected with guacd server (localhost, 4822, 20)\r\nMay 07 16:45:26 CAPE poetry[3134]: INFO:guacamole:Client connected with guacd server (localhost, 4822, 20)\r\nMay 07 16:45:26 CAPE poetry[3134]: [2024-05-07 16:45:26 +0000] [3134] [INFO] ('10.32.2.101', 0) - \"WebSocket /guac/websocket-tunnel/53c1d9c6bfab3d4f\" [accepted]\r\nMay 07 16:45:26 CAPE poetry[3134]: [2024-05-07 16:45:26 +0000] [3134] [INFO] connection open\r\nMay 07 16:45:54 CAPE poetry[3134]: [2024-05-07 16:45:54 +0000] [3134] [INFO] connection closed\r\nMay 07 16:45:54 CAPE poetry[3134]: Connection closed.\r\nMay 07 16:45:54 CAPE poetry[3134]: INFO:guacamole:Connection closed.\r\n```\r\n\r\nLast summer I did have the interactive session working with Guacamole 1.4 (as described in ticket [https://github.com/kevoreilly/CAPEv2/issues/1508](url)), I have just rebuilt the server to get the latest updates\r\n\r\nYour help would be appreciated, thank you\r\n\r\n\r\n\r\n\nComment: yes it doesnt work for some reason with latest, checking\nComment: just pushed fix, do `git pull` and `systemctl restart cape-web`",
+  "Title: Create python_whl package for linux\nBody: None",
+  "Title: chore(deps): bump jinja2 from 3.1.3 to 3.1.4\nBody: Bumps [jinja2](https://github.com/pallets/jinja) from 3.1.3 to 3.1.4.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a href=\"https://github.com/pallets/jinja/releases\">jinja2's releases</a>.</em></p>\n<blockquote>\n<h2>3.1.4</h2>\n<p>This is the Jinja 3.1.4 security release, which fixes security issues and bugs but does not otherwise change behavior and should not result in breaking changes.</p>\n<p>PyPI: <a href=\"https://pypi.org/project/Jinja2/3.1.4/\">https://pypi.org/project/Jinja2/3.1.4/</a>\nChanges: <a href=\"https://jinja.palletsprojects.com/en/3.1.x/changes/#version-3-1-4\">https://jinja.palletsprojects.com/en/3.1.x/changes/#version-3-1-4</a></p>\n<ul>\n<li>The <code>xmlattr</code> filter does not allow keys with <code>/</code> solidus, <code>&gt;</code> greater-than sign, or <code>=</code> equals sign, in addition to disallowing spaces. Regardless of any validation done by Jinja, user input should never be used as keys to this filter, or must be separately validated first. GHSA-h75v-3vvj-5mfj</li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/pallets/jinja/blob/main/CHANGES.rst\">jinja2's changelog</a>.</em></p>\n<blockquote>\n<h2>Version 3.1.4</h2>\n<p>Released 2024-05-05</p>\n<ul>\n<li>The <code>xmlattr</code> filter does not allow keys with <code>/</code> solidus, <code>&gt;</code>\ngreater-than sign, or <code>=</code> equals sign, in addition to disallowing spaces.\nRegardless of any validation done by Jinja, user input should never be used\nas keys to this filter, or must be separately validated first.\n:ghsa:<code>h75v-3vvj-5mfj</code></li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/pallets/jinja/commit/dd4a8b5466d8790540c181590b14db4d4d889d57\"><code>dd4a8b5</code></a> release version 3.1.4</li>\n<li><a href=\"https://github.com/pallets/jinja/commit/0668239dc6b44ef38e7a6c9f91f312fd4ca581cb\"><code>0668239</code></a> Merge pull request from GHSA-h75v-3vvj-5mfj</li>\n<li><a href=\"https://github.com/pallets/jinja/commit/d655030770081e2dfe46f90e27620472a502289d\"><code>d655030</code></a> disallow invalid characters in keys to xmlattr filter</li>\n<li><a href=\"https://github.com/pallets/jinja/commit/a7863ba9d3521f1450f821119c50d19d7ecea329\"><code>a7863ba</code></a> add ghsa links</li>\n<li><a href=\"https://github.com/pallets/jinja/commit/b5c98e78c2ee7d2bf0aa06d29ed9bf7082de9cf4\"><code>b5c98e7</code></a> start version 3.1.4</li>\n<li><a href=\"https://github.com/pallets/jinja/commit/da3a9f0b804199845fcb76f2e08748bdaeba93ee\"><code>da3a9f0</code></a> update project files (<a href=\"https://redirect.github.com/pallets/jinja/issues/1968\">#1968</a>)</li>\n<li><a href=\"https://github.com/pallets/jinja/commit/0ee5eb41d1a2d7d9a05a02dc26dd70e63aaaeeb1\"><code>0ee5eb4</code></a> satisfy formatter, linter, and strict mypy</li>\n<li><a href=\"https://github.com/pallets/jinja/commit/20477c63575175196bfc8103f223cc9f5642595d\"><code>20477c6</code></a> update project files (<a href=\"https://redirect.github.com/pallets/jinja/issues/5457\">#5457</a>)</li>\n<li><a href=\"https://github.com/pallets/jinja/commit/e491223739dedbb1f4fc6a71340c1484e149d947\"><code>e491223</code></a> update pyyaml dev dependency</li>\n<li><a href=\"https://github.com/pallets/jinja/commit/36f98854c721f98ba103f97f65a8a098da5af0d7\"><code>36f9885</code></a> fix pr link</li>\n<li>Additional commits viewable in <a href=\"https://github.com/pallets/jinja/compare/3.1.3...3.1.4\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=jinja2&package-manager=pip&previous-version=3.1.3&new-version=3.1.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: chore(deps): bump werkzeug from 3.0.1 to 3.0.3\nBody: Bumps [werkzeug](https://github.com/pallets/werkzeug) from 3.0.1 to 3.0.3.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a href=\"https://github.com/pallets/werkzeug/releases\">werkzeug's releases</a>.</em></p>\n<blockquote>\n<h2>3.0.3</h2>\n<p>This is the Werkzeug 3.0.3 security release, which fixes security issues and bugs but does not otherwise change behavior and should not result in breaking changes.</p>\n<p>PyPI: <a href=\"https://pypi.org/project/Werkzeug/3.0.3/\">https://pypi.org/project/Werkzeug/3.0.3/</a>\nChanges: <a href=\"https://werkzeug.palletsprojects.com/en/3.0.x/changes/#version-3-0-3\">https://werkzeug.palletsprojects.com/en/3.0.x/changes/#version-3-0-3</a>\nMilestone: <a href=\"https://github.com/pallets/werkzeug/milestone/35?closed=1\">https://github.com/pallets/werkzeug/milestone/35?closed=1</a></p>\n<ul>\n<li>Only allow <code>localhost</code>, <code>.localhost</code>, <code>127.0.0.1</code>, or the specified hostname when running the dev server, to make debugger requests. Additional hosts can be added by using the debugger middleware directly. The debugger UI makes requests using the full URL rather than only the path. GHSA-2g68-c3qc-8985</li>\n<li>Make reloader more robust when <code>&quot;&quot;</code> is in <code>sys.path</code>. <a href=\"https://redirect.github.com/pallets/werkzeug/issues/2823\">#2823</a></li>\n<li>Better TLS cert format with <code>adhoc</code> dev certs. <a href=\"https://redirect.github.com/pallets/werkzeug/issues/2891\">#2891</a></li>\n<li>Inform Python &lt; 3.12 how to handle <code>itms-services</code> URIs correctly, rather than using an overly-broad workaround in Werkzeug that caused some redirect URIs to be passed on without encoding. <a href=\"https://redirect.github.com/pallets/werkzeug/issues/2828\">#2828</a></li>\n<li>Type annotation for <code>Rule.endpoint</code> and other uses of <code>endpoint</code> is <code>Any</code>. <a href=\"https://redirect.github.com/pallets/werkzeug/issues/2836\">#2836</a></li>\n</ul>\n<h2>3.0.2</h2>\n<p>This is a fix release for the 3.0.x feature branch.</p>\n<ul>\n<li>Changes: <a href=\"https://werkzeug.palletsprojects.com/en/3.0.x/changes/#version-3-0-2\">https://werkzeug.palletsprojects.com/en/3.0.x/changes/#version-3-0-2</a></li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/pallets/werkzeug/blob/main/CHANGES.rst\">werkzeug's changelog</a>.</em></p>\n<blockquote>\n<h2>Version 3.0.3</h2>\n<p>Released 2024-05-05</p>\n<ul>\n<li>\n<p>Only allow <code>localhost</code>, <code>.localhost</code>, <code>127.0.0.1</code>, or the specified\nhostname when running the dev server, to make debugger requests. Additional\nhosts can be added by using the debugger middleware directly. The debugger\nUI makes requests using the full URL rather than only the path.\n:ghsa:<code>2g68-c3qc-8985</code></p>\n</li>\n<li>\n<p>Make reloader more robust when <code>&quot;&quot;</code> is in <code>sys.path</code>. :pr:<code>2823</code></p>\n</li>\n<li>\n<p>Better TLS cert format with <code>adhoc</code> dev certs. :pr:<code>2891</code></p>\n</li>\n<li>\n<p>Inform Python &lt; 3.12 how to handle <code>itms-services</code> URIs correctly, rather\nthan using an overly-broad workaround in Werkzeug that caused some redirect\nURIs to be passed on without encoding. :issue:<code>2828</code></p>\n</li>\n<li>\n<p>Type annotation for <code>Rule.endpoint</code> and other uses of <code>endpoint</code> is\n<code>Any</code>. :issue:<code>2836</code></p>\n</li>\n<li>\n<p>Make reloader more robust when <code>&quot;&quot;</code> is in <code>sys.path</code>. :pr:<code>2823</code></p>\n</li>\n</ul>\n<h2>Version 3.0.2</h2>\n<p>Released 2024-04-01</p>\n<ul>\n<li>Ensure setting <code>merge_slashes</code> to <code>False</code> results in <code>NotFound</code> for\nrepeated-slash requests against single slash routes. :issue:<code>2834</code></li>\n<li>Fix handling of <code>TypeError</code> in <code>TypeConversionDict.get()</code> to match\n<code>ValueError</code>. :issue:<code>2843</code></li>\n<li>Fix <code>response_wrapper</code> type check in test client. :issue:<code>2831</code></li>\n<li>Make the return type of <code>MultiPartParser.parse</code> more precise.\n:issue:<code>2840</code></li>\n<li>Raise an error if converter arguments cannot be parsed. :issue:<code>2822</code></li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/pallets/werkzeug/commit/f9995e967979eb694d6b31536cc65314fd7e9c8c\"><code>f9995e9</code></a> release version 3.0.3</li>\n<li><a href=\"https://github.com/pallets/werkzeug/commit/3386395b24c7371db11a5b8eaac0c91da5362692\"><code>3386395</code></a> Merge pull request from GHSA-2g68-c3qc-8985</li>\n<li><a href=\"https://github.com/pallets/werkzeug/commit/890b6b62634fa61224222aee31081c61b054ff01\"><code>890b6b6</code></a> only require trusted host for evalex</li>\n<li><a href=\"https://github.com/pallets/werkzeug/commit/71b69dfb7df3d912e66bab87fbb1f21f83504967\"><code>71b69df</code></a> restrict debugger trusted hosts</li>\n<li><a href=\"https://github.com/pallets/werkzeug/commit/d2d3869525a4ffb2c41dfb2c0e39d94dab2d870c\"><code>d2d3869</code></a> endpoint type is Any (<a href=\"https://redirect.github.com/pallets/werkzeug/issues/2895\">#2895</a>)</li>\n<li><a href=\"https://github.com/pallets/werkzeug/commit/7080b55acd48b68afdda65ee6c7f99e9afafb0ba\"><code>7080b55</code></a> endpoint type is Any</li>\n<li><a href=\"https://github.com/pallets/werkzeug/commit/7555eff296fbdf12f2e576b6bbb0b506df8417ed\"><code>7555eff</code></a> remove iri_to_uri redirect workaround (<a href=\"https://redirect.github.com/pallets/werkzeug/issues/2894\">#2894</a>)</li>\n<li><a href=\"https://github.com/pallets/werkzeug/commit/97fb2f722297ae4e12e36dab024e0acf8477b3c8\"><code>97fb2f7</code></a> remove _invalid_iri_to_uri workaround</li>\n<li><a href=\"https://github.com/pallets/werkzeug/commit/249527ff981e7aa22cd714825c5637cc92df7761\"><code>249527f</code></a> make cn field a valid single hostname, and use wildcard in SANs field. (<a href=\"https://redirect.github.com/pallets/werkzeug/issues/2892\">#2892</a>)</li>\n<li><a href=\"https://github.com/pallets/werkzeug/commit/793be472c9d145eb9be7d4200672d1806289d84a\"><code>793be47</code></a> update adhoc tls dev cert format</li>\n<li>Additional commits viewable in <a href=\"https://github.com/pallets/werkzeug/compare/3.0.1...3.0.3\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=werkzeug&package-manager=pip&previous-version=3.0.1&new-version=3.0.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Endless processing / Task #failed: Analysis X\nBody: # Prerequisites\r\n\r\n- [+] I am running the latest version\r\n- [+] I did read the README!\r\n- [+] I checked the documentation and found no answer\r\n- [-] I checked to make sure that this issue has not already been filed\r\nYes, but it didn't help me https://github.com/kevoreilly/CAPEv2/issues/2019\r\n- [+] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [+] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\nThe web interface will complete the scanning and I can check the scan report\r\n\r\n# Current Behavior\r\nIn the web interface in the Recent window the status is processing and I cannot view the scanning report. But in the Dashboard window it is listed as completed. The terminal displays INFO: Task #5: analysis procedure completed\r\n\r\n## Steps to Reproduce\r\n1. poetry run python3 cuckoo.py\r\n2. load file in web-interface (Submit)\r\n3. just \"processing\" in Recent, but \"completed\" in Dashboard\r\n4. poetry run python utils/process.py -r 5 -d\r\n5. \"reported\" in Recent and Dashboard\r\n\r\nAlso tried **sudo systemctl restart cape-processor**\r\nand this **poetry run python cleaners.py --clean**\r\n**sudo systemctl restart cape**\r\n\r\n## Context\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | commit 2248ab0458f6239b4696ec2d80196cefabcfcb2c (HEAD -> master)\r\n| OS version       | Ubuntu 22.04.4 LTS, Windows 10 21H2\r\n\r\n## Failure Logs\r\n\r\nTerminal from **poetry run python3 cuckoo.py**\r\n\r\nOPTIONAL! Missed dependency: pip3 install https://github.com/CAPESandbox/peepdf/archive/20eda78d7d77fc5b3b652ffc2d8a5b0af796e3dd.zip#egg=peepdf==0.4.2\r\nOPTIONAL! Missed dependency: poetry run pip install -U git+https://github.com/DissectMalware/batch_deobfuscator\r\nOPTIONAL! Missed dependency: poetry run pip install -U git+https://github.com/CAPESandbox/httpreplay\r\n/usr/bin/tcpdump\r\n2024-05-06 17:51:45,486 [lib.cuckoo.core.scheduler] INFO: Using \"kvm\" machine manager with max_analysis_count=0, max_machines_count=10, and max_vmstartup_count=5\r\n2024-05-06 17:51:45,494 [lib.cuckoo.core.scheduler] INFO: Loaded 1 machine/s\r\n2024-05-06 17:51:45,511 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks\r\n2024-05-06 17:52:54,972 [lib.cuckoo.core.scheduler] INFO: Task #5: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_atx723hk/b5e6dde637ff9dbc4dc8.exe'\r\n2024-05-06 17:52:55,016 [lib.cuckoo.core.scheduler] INFO: Task #5: acquired machine win10 (label=win10, arch=x64, platform=windows)\r\n2024-05-06 17:53:20,352 [lib.cuckoo.core.scheduler] INFO: Enabled route 'internet'.\r\n/usr/bin/tcpdump\r\n2024-05-06 17:53:20,414 [modules.auxiliary.sniffer] INFO: Started sniffer with PID 15295 (interface=virbr0, host=192.168.122.240, dump path=/opt/CAPEv2/storage/analyses/5/dump.pcap)\r\n2024-05-06 17:53:20,435 [lib.cuckoo.core.guest] INFO: Task #5: Starting analysis on guest (id=win10, ip=192.168.122.240)\r\n2024-05-06 17:53:20,461 [lib.cuckoo.core.guest] INFO: Task #5: Guest is running CAPE Agent 0.17 (id=win10, ip=192.168.122.240)\r\n2024-05-06 17:53:26,773 [lib.cuckoo.core.guest] INFO: Task #5: Uploading script files to guest (id=win10, ip=192.168.122.240)\r\n2024-05-06 17:53:32,047 [lib.cuckoo.core.guest] INFO: Task #failed: Analysis 5 (id=win10, ip=192.168.122.240)\r\n2024-05-06 17:53:33,289 [lib.cuckoo.core.scheduler] INFO: Disabled route 'internet'\r\n2024-05-06 17:53:33,343 [lib.cuckoo.core.scheduler] INFO: Task #5: analysis procedure completed\r\n^C\r\nSession terminated, killing shell... ...killed.\r\n\r\n\r\nTerminal from **poetry run python utils/process.py -r 5 -d**\r\n\r\n2024-05-06 18:37:18,932 [root] DEBUG: Importing modules...\r\nOPTIONAL! Missed dependency: pip3 install https://github.com/CAPESandbox/peepdf/archive/20eda78d7d77fc5b3b652ffc2d8a5b0af796e3dd.zip#egg=peepdf==0.4.2\r\nOPTIONAL! Missed dependency: poetry run pip install -U git+https://github.com/DissectMalware/batch_deobfuscator\r\nOPTIONAL! Missed dependency: poetry run pip install -U git+https://github.com/CAPESandbox/httpreplay\r\n2024-05-06 18:37:19,894 [capa.rules] DEBUG: reading rules from directory /opt/CAPEv2/data/capa-rules\r\n2024-05-06 18:37:19,933 [capa.rules.cache] DEBUG: loading rule set from cache: /home/cape/.cache/capa/capa-fa8c13d6.cache\r\n2024-05-06 18:37:19,993 [capa.loader] DEBUG: reading signatures from directory /opt/CAPEv2/data/flare-signatures\r\n2024-05-06 18:37:19,994 [capa.loader] DEBUG: found signature file: /opt/CAPEv2/data/flare-signatures/1_flare_msvc_rtf_32_64.sig\r\n2024-05-06 18:37:19,994 [capa.loader] DEBUG: found signature file: /opt/CAPEv2/data/flare-signatures/2_flare_msvc_atlmfc_32_64.sig\r\n2024-05-06 18:37:19,994 [capa.loader] DEBUG: found signature file: /opt/CAPEv2/data/flare-signatures/3_flare_common_libs.sig\r\n2024-05-06 18:37:19,996 [root] DEBUG: Imported \"auxiliary\" modules:\r\n2024-05-06 18:37:19,996 [root] DEBUG: \t `-- Sniffer\r\n2024-05-06 18:37:19,996 [root] DEBUG: Imported \"processing\" modules:\r\n2024-05-06 18:37:19,996 [root] DEBUG: \t |-- CAPE\r\n2024-05-06 18:37:19,996 [root] DEBUG: \t |-- AnalysisInfo\r\n.\r\n2024-05-06 18:37:20,039 [root] DEBUG: Imported \"machinery\" modules:\r\n2024-05-06 18:37:20,039 [root] DEBUG: \t `-- KVM\r\n2024-05-06 18:37:20,039 [Task 5] [root] DEBUG: Processing task\r\n2024-05-06 18:37:20,197 [Task 5] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"CAPE\" on analysis at \"/opt/CAPEv2/storage/analyses/5\"\r\n2024-05-06 18:37:20,218 [Task 5] [lib.cuckoo.common.objects] DEBUG: Initializing Yara...\r\n2024-05-06 18:37:20,301 [Task 5] [lib.cuckoo.common.objects] DEBUG: \t |-- binaries AutoIT.yar\r\n.\r\n2024-05-06 18:37:20,591 [Task 5] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE xRAT.yar\r\n2024-05-06 18:37:20,591 [Task 5] [lib.cuckoo.common.objects] DEBUG: \t |-- CAPE zgRAT.yar\r\n2024-05-06 18:37:21,998 [Task 5] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"AnalysisInfo\" on analysis at \"/opt/CAPEv2/storage/analyses/5\"\r\n2024-05-06 18:37:22,046 [Task 5] [lib.cuckoo.core.plugins] DEBUG: Processing module autoruns not found in configuration file\r\n2024-05-06 18:37:22,047 [Task 5] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"BehaviorAnalysis\" on analysis at \"/opt/CAPEv2/storage/analyses/5\"\r\n2024-05-06 18:37:22,047 [Task 5] [modules.processing.behavior] DEBUG: Analysis results folder does not contain any file or injection was disabled\r\n2024-05-06 18:37:22,047 [Task 5] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Debug\" on analysis at \"/opt/CAPEv2/storage/analyses/5\"\r\n2024-05-06 18:37:22,051 [Task 5] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"NetworkAnalysis\" on analysis at \"/opt/CAPEv2/storage/analyses/5\"\r\n2024-05-06 18:37:22,055 [Task 5] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Suricata\" on analysis at \"/opt/CAPEv2/storage/analyses/5\"\r\n2024-05-06 18:37:22,640 [Task 5] [modules.processing.suricata] DEBUG: pcapfile list: {'message': {'count': 0, 'files': []}, 'return': 'OK'} current pcap: {'message': '/opt/CAPEv2/storage/analyses/5/dump.pcap', 'return': 'OK'}\r\n2024-05-06 18:37:27,644 [Task 5] [modules.processing.suricata] DEBUG: pcapfile list: {'message': {'count': 0, 'files': []}, 'return': 'OK'} current pcap: {'message': 'None', 'return': 'OK'}\r\n2024-05-06 18:37:27,644 [Task 5] [modules.processing.suricata] DEBUG: Pcap not in list and not current pcap lets assume it's processed\r\n2024-05-06 18:37:27,688 [Task 5] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"UrlAnalysis\" on analysis at \"/opt/CAPEv2/storage/analyses/5\"\r\n2024-05-06 18:37:27,689 [Task 5] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"script_log_processing\" on analysis at \"/opt/CAPEv2/storage/analyses/5\"\r\n2024-05-06 18:37:27,690 [Task 5] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"ProcessMemory\" on analysis at \"/opt/CAPEv2/storage/analyses/5\"\r\n2024-05-06 18:37:27,749 [Task 5] [lib.cuckoo.core.plugins] DEBUG: Applying signature overlays for signatures: creates_exe\r\n2024-05-06 18:37:27,752 [Task 5] [lib.cuckoo.core.plugins] DEBUG: Running 252 evented signatures\r\n2024-05-06 18:37:27,752 [Task 5] [lib.cuckoo.core.plugins] DEBUG: \t |-- packer_themida\r\n.\r\n2024-05-06 18:37:27,953 [Task 5] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dharma_mutexes\"\r\n2024-05-06 18:37:27,953 [Task 5] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_extensions\"\r\n/opt/CAPEv2/utils/../lib/cuckoo/common/abstracts.py:1058: FutureWarning: Possible nested set at position 5\r\n  exp = re.compile(pattern, re.IGNORECASE)\r\n2024-05-06 18:37:27,962 [Task 5] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_files\"\r\n2024-05-06 18:37:27,975 [Task 5] [lib.cuckoo.core.plugins] DEBUG: Running signature \"fonix_mutexes\"\r\n2024-05-06 18:37:27,975 [Task 5] [lib.cuckoo.core.plugins] DEBUG: Running signature \"gandcrab_mutexes\"\r\n.\r\n2024-05-06 18:37:28,046 [Task 5] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"CAPASummary\"\r\n2024-05-06 18:37:28,058 [Task 5] [lib.cuckoo.common.integrations.capa] INFO: FLARE CAPA -> No process data available\r\n2024-05-06 18:37:28,060 [Task 5] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"PCAP2CERT\"\r\n2024-05-06 18:37:28,062 [Task 5] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"JsonDump\"\r\n2024-05-06 18:37:28,063 [Task 5] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"MongoDB\"\r\n2024-05-06 18:37:28,078 [Task 5] [modules.reporting.mongodb] DEBUG: Deleted previous MongoDB data for Task 5\r\n2024-05-06 18:37:28,235 [Task 5] [root] DEBUG: Finished processing task\r\n\nComment: cuckoo.conf \r\nip = 192.168.122.1\r\nfreespace = 45000 \r\n\r\nkvm.conf\r\nmachines = win10\r\ninterface = virbr0\r\nlabel = win10\r\nip = 192.168.122.240\r\narch = x64\r\n\r\nrouting.conf\r\nroute = internet\r\ninternet = virbr0\nComment: hey, yes we suspect the bug is here https://github.com/kevoreilly/CAPEv2/pull/2036/files we probably will revert that\nComment: @doomedraven \r\nI need any working version of the sandbox. \r\n(I don't get any information in behavioral and network analysis, none at all)\r\n\r\nwhere could I get it?\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/78794227/c621255f-ed6a-4278-99dc-feabeb7e1b22)\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/78794227/6fa25dab-5e8a-4563-b646-2a06b048f1f5)\r\n\nComment: you can revert that commit that i mention, i can-t guarantee that one cause the problem but is our suspicion. well is open source so you can help us dig into issue, is not our paid job so we have to first handle our job and then work on this  \nComment: I have been able to recreate this issue on an instance of mine, and found that reverting the changes in #2306 fixes the issue.\r\n\r\nI haven't had time to look into why it is occurring. @qux-bbb perhaps you can help diagnose this issue?\nComment: I'll diagnose this issue in a few days.\nComment: @wuuuw It's not a bug, you run the wrong process command.  \r\n`poetry run python utils/process.py -r 5 -d` is not a right command for this situation.  \r\n```\r\n  -d, --debug           Display debug messages\r\n  -r, --report          Re-generate report\r\n```\r\n\r\nYou should run process.py just like in cape-processor. service:  \r\n```\r\ncd /opt/CAPEv2/utils/\r\npoetry run python process.py -p7 auto -pt 900\r\n```\nComment: Er hang on. I use -d -r all the time in my daily work. It was working before, it needs to work.\nComment: > Er hang on. I use -d -r all the time in my daily work. It was working before, it needs to work.\r\n\r\nI want to know all the status about cape* services before you do anything.  \r\nYou can run this command: `systemctl status cape*.service`  \nComment: @wuuuw @kevoreilly If the cape-processor service is not running at the begining, the behavior is like that.  \r\nYou guys can give me more info, then I can verify it.  \nComment: @qux-bbb \r\n\u25cf cape-web.service - CAPE WSGI app\r\n     Loaded: loaded (/lib/systemd/system/cape-web.service; enabled; vendor preset: enabled)\r\n     Active: active (running) since Thu 2024-05-16 17:06:54 UTC; 8min ago\r\n       Docs: https://github.com/kevoreilly/CAPEv2\r\n   Main PID: 1401 (python)\r\n      Tasks: 3 (limit: 6938)\r\n     Memory: 480.7M\r\n        CPU: 1min 6.531s\r\n     CGroup: /system.slice/cape-web.service\r\n             \u251c\u25001401 /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python manage.py runserver_plus 0.0.0.0:8000 --traceback --keep-meta-shutdown\r\n             \u2514\u25002550 /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python manage.py runserver_plus 0.0.0.0:8000 --traceback --keep-meta-shutdown\r\n\r\n\u043c\u0430\u044f 16 17:07:04 nan-pc python3[2550]: Missed dependency flare-floss: poetry run pip install -U flare-floss\r\n\u043c\u0430\u044f 16 17:07:04 nan-pc python3[2550]: System check identified no issues (3 silenced).\r\n\u043c\u0430\u044f 16 17:07:04 nan-pc python3[2550]: You have 32 unapplied migration(s). Your project may not work properly until you apply the migrations for app(s): account, admin, auth, authtoken, cont>\r\n\u043c\u0430\u044f 16 17:07:04 nan-pc python3[2550]: Run 'python manage.py migrate' to apply them.\r\n\u043c\u0430\u044f 16 17:07:04 nan-pc python3[2550]: Django version 4.2.11, using settings 'web.settings'\r\n\u043c\u0430\u044f 16 17:07:04 nan-pc python3[2550]: Development server is running at http://0.0.0.0:8000/\r\n\u043c\u0430\u044f 16 17:07:04 nan-pc python3[2550]: Using the Werkzeug debugger (http://werkzeug.pocoo.org/)\r\n\u043c\u0430\u044f 16 17:07:04 nan-pc python3[2550]: Quit the server with CONTROL-C.\r\n\u043c\u0430\u044f 16 17:07:04 nan-pc python3[2550]:  * Debugger is active!\r\n\u043c\u0430\u044f 16 17:07:04 nan-pc python3[2550]:  * Debugger PIN: 968-109-742\r\n\r\n\u25cf cape-processor.service - CAPE report processor\r\n     Loaded: loaded (/lib/systemd/system/cape-processor.service; enabled; vendor preset: enabled)\r\n     Active: activating (auto-restart) since Thu 2024-05-16 17:12:04 UTC; 2min 50s ago\r\n       Docs: https://github.com/kevoreilly/CAPEv2\r\n    Process: 3484 ExecStart=/usr/bin/python3 -m poetry run python process.py -p7 auto -pt 900 (code=exited, status=0/SUCCESS)\r\n   Main PID: 3484 (code=exited, status=0/SUCCESS)\r\n        CPU: 3.653s\r\n\r\n\u25cf cape.service - CAPE\r\n     Loaded: loaded (/lib/systemd/system/cape.service; enabled; vendor preset: enabled)\r\n     Active: active (running) since Thu 2024-05-16 17:06:54 UTC; 8min ago\r\n       Docs: https://github.com/kevoreilly/CAPEv2\r\n   Main PID: 1402 (python)\r\n      Tasks: 58 (limit: 6938)\r\n     Memory: 266.0M\r\n        CPU: 6min 3.042s\r\n     CGroup: /system.slice/cape.service\r\n             \u2514\u25001402 /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python cuckoo.py\r\n\r\n\u043c\u0430\u044f 16 17:06:57 nan-pc python3[1402]:                          \\_.-'._i__i__i_.'\r\n\u043c\u0430\u044f 16 17:06:57 nan-pc python3[1402]:                                \"\"\"\"\"\"\"\"\"\r\n\u043c\u0430\u044f 16 17:06:57 nan-pc python3[1402]:  Cuckoo Sandbox 2.4-CAPE\r\n\u043c\u0430\u044f 16 17:06:57 nan-pc python3[1402]:  www.cuckoosandbox.org\r\n\u043c\u0430\u044f 16 17:06:57 nan-pc python3[1402]:  Copyright (c) 2010-2015\r\n\u043c\u0430\u044f 16 17:06:57 nan-pc python3[1402]:  CAPE: Config and Payload Extraction\r\n\u043c\u0430\u044f 16 17:06:57 nan-pc python3[1402]:  github.com/kevoreilly/CAPEv2\r\n\u043c\u0430\u044f 16 17:07:00 nan-pc python3[1402]: 2024-05-16 17:07:00,788 [lib.cuckoo.core.scheduler] INFO: Using \"kvm\" machine manager with max_analysis_count=0, max_machines_count=10, and max_vmstart>\r\n\u043c\u0430\u044f 16 17:07:00 nan-pc python3[1402]: 2024-05-16 17:07:00,796 [lib.cuckoo.core.scheduler] INFO: Loaded 1 machine/s\r\n\u043c\u0430\u044f 16 17:07:00 nan-pc python3[1402]: 2024-05-16 17:07:00,812 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks\r\n\r\n\u25cf cape-rooter.service - CAPE rooter\r\n     Loaded: loaded (/lib/systemd/system/cape-rooter.service; enabled; vendor preset: enabled)\r\n     Active: active (running) since Thu 2024-05-16 17:06:54 UTC; 8min ago\r\n       Docs: https://github.com/kevoreilly/CAPEv2\r\n    Process: 922 ExecStartPre=/usr/bin/python3 -m poetry config cache-dir /opt/CAPEv2/.cache/pypoetry (code=exited, status=0/SUCCESS)\r\n   Main PID: 1398 (python)\r\n      Tasks: 1 (limit: 6938)\r\n     Memory: 28.1M\r\n        CPU: 1.912s\r\n     CGroup: /system.slice/cape-rooter.service\r\n             \u2514\u25001398 /opt/CAPEv2/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python rooter.py -g cape\r\n\r\n\u043c\u0430\u044f 16 17:06:52 nan-pc systemd[1]: Starting CAPE rooter...\r\n\u043c\u0430\u044f 16 17:06:54 nan-pc systemd[1]: Started CAPE rooter.\nComment: @wuuuw Can your cape-processor.service be runing status?  \nComment: ~$ systemctl status cape-processor.service\r\n\u25cf cape-processor.service - CAPE report processor\r\n     Loaded: loaded (/lib/systemd/system/cape-processor.service; enabled; vendor preset: enabled)\r\n     Active: activating (auto-restart) since Fri 2024-05-17 10:10:03 UTC; 2min 33s ago\r\n       Docs: https://github.com/kevoreilly/CAPEv2\r\n    Process: 1378 ExecStart=/usr/bin/python3 -m poetry run python process.py -p7 auto -pt 900 (code=exited, status=0/SUCCESS)\r\n   Main PID: 1378 (code=exited, status=0/SUCCESS)\r\n        CPU: 5.530s\r\n\r\n\u043c\u0430\u044f 17 10:10:03 nan-pc systemd[1]: cape-processor.service: Consumed 5.530s CPU time.\r\n\r\n\r\n~$ sudo systemctl restart cape-processor.service\r\n\r\n\r\n~$ systemctl status cape-processor.service\r\n\u25cf cape-processor.service - CAPE report processor\r\n     Loaded: loaded (/lib/systemd/system/cape-processor.service; enabled; vendor preset: enabled)\r\n     Active: activating (auto-restart) since Fri 2024-05-17 10:13:12 UTC; 11s ago\r\n       Docs: https://github.com/kevoreilly/CAPEv2\r\n    Process: 4295 ExecStart=/usr/bin/python3 -m poetry run python process.py -p7 auto -pt 900 (code=exited, status=0/SUCCESS)\r\n   Main PID: 4295 (code=exited, status=0/SUCCESS)\r\n        CPU: 3.281s\nComment: @wuuuw Can you run these commands and give me the output?  \r\n```bash\r\nsudo systemctl stop cape-processor.service\r\ncd /opt/CAPEv2/utils/\r\nsudo su cape\r\n/usr/bin/python3 -m poetry run python process.py -p7 auto -pt 900 -d\r\n```\nComment: @AghaHannan You need to create a new issue.  \nComment: @qux-bbb \r\n2024-05-17 22:16:50,644 [root] DEBUG: Importing modules...\r\nOPTIONAL! Missed dependency: pip3 install https://github.com/CAPESandbox/peepdf/archive/20eda78d7d77fc5b3b652ffc2d8a5b0af796e3dd.zip#egg=peepdf==0.4.2\r\nOPTIONAL! Missed dependency: poetry run pip install -U git+https://github.com/DissectMalware/batch_deobfuscator\r\nOPTIONAL! Missed dependency: poetry run pip install -U git+https://github.com/CAPESandbox/httpreplay\r\n2024-05-17 22:16:51,639 [capa.rules] DEBUG: reading rules from directory /opt/CAPEv2/data/capa-rules\r\n2024-05-17 22:16:51,685 [capa.rules.cache] DEBUG: loading rule set from cache: /home/cape/.cache/capa/capa-fa8c13d6.cache\r\n2024-05-17 22:16:51,754 [capa.loader] DEBUG: reading signatures from directory /opt/CAPEv2/data/flare-signatures\r\n2024-05-17 22:16:51,754 [capa.loader] DEBUG: found signature file: /opt/CAPEv2/data/flare-signatures/1_flare_msvc_rtf_32_64.sig\r\n2024-05-17 22:16:51,754 [capa.loader] DEBUG: found signature file: /opt/CAPEv2/data/flare-signatures/2_flare_msvc_atlmfc_32_64.sig\r\n2024-05-17 22:16:51,754 [capa.loader] DEBUG: found signature file: /opt/CAPEv2/data/flare-signatures/3_flare_common_libs.sig\r\n2024-05-17 22:16:51,757 [root] DEBUG: Imported \"auxiliary\" modules:\r\n2024-05-17 22:16:51,757 [root] DEBUG: \t `-- Sniffer\r\n2024-05-17 22:16:51,757 [root] DEBUG: Imported \"processing\" modules:\r\n2024-05-17 22:16:51,757 [root] DEBUG: \t |-- CAPE\r\n2024-05-17 22:16:51,757 [root] DEBUG: \t |-- AnalysisInfo\r\n2024-05-17 22:16:51,757 [root] DEBUG: \t |-- Autoruns\r\n2024-05-17 22:16:51,757 [root] DEBUG: \t |-- BehaviorAnalysis\r\n2024-05-17 22:16:51,758 [root] DEBUG: \t |-- Debug\r\n2024-05-17 22:16:51,758 [root] DEBUG: \t |-- NetworkAnalysis\r\n2024-05-17 22:16:51,758 [root] DEBUG: \t |-- ProcessMemory\r\n2024-05-17 22:16:51,758 [root] DEBUG: \t |-- script_log_processing\r\n2024-05-17 22:16:51,758 [root] DEBUG: \t |-- Suricata\r\n2024-05-17 22:16:51,758 [root] DEBUG: \t `-- UrlAnalysis\r\n2024-05-17 22:16:51,758 [root] DEBUG: Imported \"signatures\" modules:\r\n2024-05-17 22:16:51,758 [root] DEBUG: \t |-- ClamAV\r\n2024-05-17 22:16:51,758 [root] DEBUG: \t |-- KnownVirustotal\r\n***\r\n2024-05-17 22:16:51,809 [root] DEBUG: \t |-- LinuxReadsFiles\r\n2024-05-17 22:16:51,809 [root] DEBUG: \t `-- LinuxWritesFiles\r\n2024-05-17 22:16:51,809 [root] DEBUG: Imported \"reporting\" modules:\r\n2024-05-17 22:16:51,809 [root] DEBUG: \t |-- BinGraph\r\n2024-05-17 22:16:51,809 [root] DEBUG: \t |-- CAPASummary\r\n2024-05-17 22:16:51,809 [root] DEBUG: \t |-- JsonDump\r\n2024-05-17 22:16:51,809 [root] DEBUG: \t |-- MongoDB\r\n2024-05-17 22:16:51,809 [root] DEBUG: \t `-- PCAP2CERT\r\n2024-05-17 22:16:51,809 [root] DEBUG: Imported \"feeds\" modules:\r\n2024-05-17 22:16:51,809 [root] DEBUG: \t `-- AbuseCH_SSL\r\n2024-05-17 22:16:51,809 [root] DEBUG: Imported \"machinery\" modules:\r\n2024-05-17 22:16:51,809 [root] DEBUG: \t `-- KVM\r\n2024-05-17 22:16:51,810 [root] INFO: Processing analysis data\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/process.py\", line 298, in autoprocess\r\n    with pebble.ProcessPool(max_workers=parallel, max_tasks=maxtasksperchild, initializer=init_worker) as pool:\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/pebble/pool/process.py\", line 61, in __init__\r\n    self._pool_manager = PoolManager(self._context, mp_context)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/pebble/pool/process.py\", line 200, in __init__\r\n    self.worker_manager = WorkerManager(context.workers,\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/pebble/pool/process.py\", line 342, in __init__\r\n    self.pool_channel, self.workers_channel = channels(mp_context)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/pebble/pool/channel.py\", line 34, in channels\r\n    WorkerChannel(read0, write1, (read1, write0), mp_context))\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/pebble/pool/channel.py\", line 86, in __init__\r\n    self.mutex = ChannelMutex(mp_context)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/pebble/pool/channel.py\", line 132, in __init__\r\n    self.reader_mutex = mp_context.RLock()\r\n  File \"/usr/lib/python3.10/multiprocessing/context.py\", line 73, in RLock\r\n    return RLock(ctx=self.get_context())\r\n  File \"/usr/lib/python3.10/multiprocessing/synchronize.py\", line 187, in __init__\r\n    SemLock.__init__(self, RECURSIVE_MUTEX, 1, 1, ctx=ctx)\r\n  File \"/usr/lib/python3.10/multiprocessing/synchronize.py\", line 57, in __init__\r\n    sl = self._semlock = _multiprocessing.SemLock(\r\nOSError: [Errno 12] Cannot allocate memory\nComment: @wuuuw Sorry, I pulled the latest code, but I can't reproduce that error.   \r\nDo all samples have that problem, or the special sample?  \r\nIf the special sample has the problem, can you provide the sample?  \nComment: @wuuuw Can you run the command and give me the output?  \r\n```bash\r\nfree -h\r\n```\nComment: Oh looks like someone doesn't have enought ram to run processing\nComment: @qux-bbb \r\nfree -h\r\n               total        used        free      shared  buff/cache   available\r\nMem:           5,7Gi       2,6Gi       982Mi       103Mi       2,2Gi       2,9Gi\r\nSwap:          2,0Gi          0B       2,0Gi\r\n\nComment: @wuuuw Can You try to install CAPE on a computer with more RAM, for example 16G?  \nComment: i have added better message in those cases with ram https://github.com/kevoreilly/CAPEv2/commit/b1df2192323ed5828e4d68880afe358eda81774e\nComment: @doomedraven Thanks!  \r\n@kevoreilly Do you also have the error \"Cannot allocate memory\"?  \nComment: ok i finally found some time to jump to this and test latest master on my side, i cant reproduce it.\nComment: To reproduce that \"Cannot allocate memory\", you can do like this:  \r\n\r\nFirst, stop cape-processor.service:  \r\n```bash\r\nsudo systemctl stop cape-processor.service\r\n```\r\n\r\nSecond, use many RAM, my computer RAM is 16G, so I will use 10G(10240M):  \r\n```bash\r\nmkdir /tmp/memory\r\nsudo mount -t tmpfs -o size=10240M tmpfs /tmp/memory\r\ndd if=/dev/zero of=/tmp/memory/block\r\n```\r\n\r\nThird, try to start process.py:  \r\n```bash\r\ncd /opt/CAPEv2/utils/\r\nsudo su cape\r\n/usr/bin/python3 -m poetry run python process.py -p7 auto -pt 900 -d\r\n```\r\n\r\nThen you can get the error message.  \r\n\r\nFinally, restore your RAM:  \r\n```bash\r\nrm /tmp/memory/block\r\nsudo umount /tmp/memory\r\nrm /tmp/memory -r\r\n```\r\n\r\nMaybe the issue can be closed.  \nComment: yes, i can't reproduce, and the user side low hardware, we cant do nothing there",
+  "Title: Clarification: Does CAPEv2 automatically create VMs?\nBody: Hello, \r\n\r\nI am new to cape and while setting it up in my environment I noticed there are some windows VMs that seem to have been created from CAPE, I tried to search the source code for the names of the VMs because I thought maybe CAPE creates these automatically. Below is the VM list:\r\n\r\n```\r\n~$ sudo virsh list --all\r\n Id   Name                 State\r\n-------------------------------------\r\n 1    myvm                 running\r\n -    windows10-cuckoo01   shut off\r\n -    windows10-cuckoo02   shut off\r\n -    windows10-cuckoo03   shut off\r\n -    windows10-cuckoo04   shut off\r\n -    windows10-cuckoo05   shut off\r\n -    windows10-cuckoo06   shut off\r\n -    windows7-cuckoo01    shut off\r\n -    windows7-cuckoo02    shut off\r\n -    windows7-cuckoo03    shut off\r\n -    windows7-cuckoo04    shut off\r\n -    windows7-cuckoo05    shut off\r\n -    windows7-cuckoo06    shut off\r\n -    windows7-cuckoo07    shut off\r\n -    windows7-cuckoo08    shut off\r\n -    windows7-cuckoo09    shut off\r\n -    windows7-cuckoo10    shut off\r\n -    windows7-cuckoo11    shut off\r\n -    windows7-cuckoo12    shut off\r\n -    windows7-cuckoo13    shut off\r\n -    windows7-cuckoo14    shut off\r\n -    windows7-cuckoo15    shut off\r\n -    windows7-cuckoo16    shut off\r\n -    windows7-cuckoo17    shut off\r\n -    windows7-cuckoo18    shut off\r\n -    windows7-cuckoo19    shut off\r\n -    windows7-cuckoo20    shut off\r\n```\r\n\r\nI am just looking for clarification on if CAPE does this be default. It should also be noted that these VMs seem to have snapshots in each of them. \r\n\r\nThank you in advance!\nComment: hello, no we don-t create any VM, is totally your job to do that",
+  "Title: CAPE parser: Zloader\nBody: When I start the CAPE using the command:\r\nsudo -u cape poetry run python3 cuckoo.py\r\nor\r\npoetry run python3 cuckoo.py\r\n\r\nI get an error at the moment of launch:\r\nCAPE parser: Fix your code in Zloader - line 17: syntax error, unexpected '(', expecting string identifier or string identifier with wildcard\r\n\r\nI already installed this system a month ago and then everything worked. The installation process has not changed in any way, but now I get this error\nComment: thanks for headups, fixed here https://github.com/kevoreilly/CAPEv2/blob/master/data/yara/CAPE/Zloader.yar, you can run `git pull`",
+  "Title: refine zloader yara\nBody: None\nComment: already fixed",
+  "Title: fix tests/data\nBody: None",
+  "Title: fix zloader yara\nBody: The condition was too loose and was resulting in false positive detections.",
+  "Title: fix options check in flare capa summary\nBody: None",
+  "Title: Cloning project runs into an error\nBody: Cloning cape runs into an error, because CAPE-TestFiles with commit id `79102bb73ed8dd888d5579424f33eb20f330ffc1` does not exist. Maybe someone forgot to push their commits?\nComment: Thanks for the report - now scratching my head on how to fix it...\nComment: this should be fixed now\nComment: thanks it works now.",
+  "Title: Small fix\nBody: None",
+  "Title: MongoDB reporting exception?\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nMongoDB report is enabled but it crashes since I installed a new guest VM. Reports are not available.\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       |  d46b1352cf67f69fcf84cd470052a29e13cc23c7\r\n| OS version       | Ubuntu 22.04, Windows 10 (guest)\r\n\r\n## Failure Logs\r\n\r\n```\r\n2024-04-30 11:11:24,012 [Task 28] [lib.cuckoo.core.plugins] ERROR: Failed to run the reporting module \"MongoDB\": BitField.__new__() missing 3 required positional arguments: 'type_name', 'object_info', and 'base_type'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 738, in process\r\n    current.run(self.results)\r\n  File \"/opt/CAPEv2/utils/../modules/reporting/mongodb.py\", line 110, in run\r\n    report = get_json_document(results, self.analysis_path)\r\n  File \"/opt/CAPEv2/utils/../modules/reporting/report_doc.py\", line 60, in get_json_document\r\n    report = copy.deepcopy(results)\r\n  File \"/usr/lib/python3.10/copy.py\", line 146, in deepcopy\r\n    y = copier(x, memo)\r\n  File \"/usr/lib/python3.10/copy.py\", line 231, in _deepcopy_dict\r\n    y[deepcopy(key, memo)] = deepcopy(value, memo)\r\n  File \"/usr/lib/python3.10/copy.py\", line 146, in deepcopy\r\n    y = copier(x, memo)\r\n  File \"/usr/lib/python3.10/copy.py\", line 231, in _deepcopy_dict\r\n    y[deepcopy(key, memo)] = deepcopy(value, memo)\r\n  File \"/usr/lib/python3.10/copy.py\", line 146, in deepcopy\r\n    y = copier(x, memo)\r\n  File \"/usr/lib/python3.10/copy.py\", line 206, in _deepcopy_list\r\n    append(deepcopy(a, memo))\r\n  File \"/usr/lib/python3.10/copy.py\", line 146, in deepcopy\r\n    y = copier(x, memo)\r\n  File \"/usr/lib/python3.10/copy.py\", line 231, in _deepcopy_dict\r\n    y[deepcopy(key, memo)] = deepcopy(value, memo)\r\n  File \"/usr/lib/python3.10/copy.py\", line 172, in deepcopy\r\n    y = _reconstruct(x, memo, *rv)\r\n  File \"/usr/lib/python3.10/copy.py\", line 265, in _reconstruct\r\n    y = func(*args)\r\n  File \"/usr/lib/python3.10/copyreg.py\", line 101, in __newobj__\r\n    return cls.__new__(cls, *args)\r\nTypeError: BitField.__new__() missing 3 required positional arguments: 'type_name', 'object_info', and 'base_type'\r\n```\nComment: Hey, what is the version of mongodb and pymongo?\nComment: Here we go!\r\n```\r\n# /usr/bin/mongod --version\r\ndb version v7.0.9\r\nBuild Info: {\r\n    \"version\": \"7.0.9\",\r\n    \"gitVersion\": \"3ff3a3925c36ed277cf5eafca5495f2e3728dd67\",\r\n    \"openSSLVersion\": \"OpenSSL 3.0.2 15 Mar 2022\",\r\n    \"modules\": [],\r\n    \"allocator\": \"tcmalloc\",\r\n    \"environment\": {\r\n        \"distmod\": \"ubuntu2204\",\r\n        \"distarch\": \"x86_64\",\r\n        \"target_arch\": \"x86_64\"\r\n    }\r\n}\r\n# sudo -u cape poetry run pip3 list|grep mongo\r\npymongo                4.6.3\r\n```\nComment: i guess is has something to do with v7 changes, im on 6.0.9. i just returned from PTO so i first need to sync with my dayjob and then i will try to see what changed\nComment: i just installed the same version, i don-t have any problem with 7.0.9, do you some something custom?\nComment: FYI i do have problems, different but works on pymongo 4.5.0 but fails on latest 4.7.2, fixed my problem with 4.7.2. if you don-t have any custom stuff, can you share sample that generates that problem?\nComment: Hi, sorry for the late reply, also busy on my side. I upgraded pymongo to 4.7.2 but still the same. It's not related to a sample, it's for all of them :(\r\n\r\n[Edit]\r\nI'm running MongoDB 7.0.9 and pymongo 4.5.0 like you. Now, I've this error:\r\n```\r\n2024-05-14 21:19:54,703 [Task 34] [lib.cuckoo.core.plugins] ERROR: Failed to run the reporting module \"MongoDB\":\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 738, in process\r\n    current.run(self.results)\r\n  File \"/opt/CAPEv2/utils/../modules/reporting/mongodb.py\", line 110, in run\r\n    report = get_json_document(results, self.analysis_path)\r\n  File \"/opt/CAPEv2/utils/../modules/reporting/report_doc.py\", line 60, in get_json_document\r\n    report = copy.deepcopy(results)\r\n  File \"/usr/lib/python3.10/copy.py\", line 146, in deepcopy\r\n    y = copier(x, memo)\r\n  File \"/usr/lib/python3.10/copy.py\", line 231, in _deepcopy_dict\r\n    y[deepcopy(key, memo)] = deepcopy(value, memo)\r\n  File \"/usr/lib/python3.10/copy.py\", line 146, in deepcopy\r\n    y = copier(x, memo)\r\n  File \"/usr/lib/python3.10/copy.py\", line 231, in _deepcopy_dict\r\n    y[deepcopy(key, memo)] = deepcopy(value, memo)\r\n  File \"/usr/lib/python3.10/copy.py\", line 146, in deepcopy\r\n    y = copier(x, memo)\r\n  File \"/usr/lib/python3.10/copy.py\", line 206, in _deepcopy_list\r\n    append(deepcopy(a, memo))\r\n  File \"/usr/lib/python3.10/copy.py\", line 146, in deepcopy\r\n    y = copier(x, memo)\r\n  File \"/usr/lib/python3.10/copy.py\", line 231, in _deepcopy_dict\r\n    y[deepcopy(key, memo)] = deepcopy(value, memo)\r\n  File \"/usr/lib/python3.10/copy.py\", line 161, in deepcopy\r\n    rv = reductor(4)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/volatility3/framework/objects/__init__.py\", line 184, in __getnewargs_ex__\r\n    kwargs[\"new_value\"] = self.__new_value\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/volatility3/framework/interfaces/objects.py\", line 136, in __getattr__\r\n    raise AttributeError\r\nAttributeError\r\n```\r\n\r\n[Edit2]\r\nI tried a full upgrade of all packages & dependencies. Now on pymongo 4.7.2 and got this error: CAPE does not start at all:\r\n```\r\nMay 14 21:31:45 cape python3[1085227]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/pymongo/logger.py\", line 96, in _info_log\r\nMay 14 21:31:45 cape python3[1085227]:     logger.info(LogMessage(**fields))\r\nMay 14 21:31:45 cape python3[1085227]:   File \"/usr/lib/python3.10/logging/__init__.py\", line 1477, in info\r\nMay 14 21:31:45 cape python3[1085227]:     self._log(INFO, msg, args, **kwargs)\r\nMay 14 21:31:45 cape python3[1085227]:   File \"/usr/lib/python3.10/logging/__init__.py\", line 1624, in _log\r\nMay 14 21:31:45 cape python3[1085227]:     self.handle(record)\r\nMay 14 21:31:45 cape python3[1085227]:   File \"/usr/lib/python3.10/logging/__init__.py\", line 1634, in handle\r\nMay 14 21:31:45 cape python3[1085227]:     self.callHandlers(record)\r\nMay 14 21:31:45 cape python3[1085227]:   File \"/usr/lib/python3.10/logging/__init__.py\", line 1696, in callHandlers\r\nMay 14 21:31:45 cape python3[1085227]:     hdlr.handle(record)\r\nMay 14 21:31:45 cape python3[1085227]:   File \"/usr/lib/python3.10/logging/__init__.py\", line 968, in handle\r\nMay 14 21:31:45 cape python3[1085227]:     self.emit(record)\r\nMay 14 21:31:45 cape python3[1085227]:   File \"/opt/CAPEv2/lib/cuckoo/core/log.py\", line 72, in emit\r\nMay 14 21:31:45 cape python3[1085227]:     if \"analysis procedure completed\" in record.msg:\r\nMay 14 21:31:45 cape python3[1085227]: TypeError: argument of type 'LogMessage' is not iterable\r\n```\nComment: could you share configs? it should be an plugin thaat im not using, as it happens on results copy\nComment: In the meantime, I disabled \"memory\" in reporting and can manually regenerate the reports via process.py. But CAPE does not start (always the \"LogMessage\" error. It seems to be related to indexed in Mongodb!?\r\n```\r\nMay 14 21:05:39 cape python3[1057758]: Traceback (most recent call last):\r\nMay 14 21:05:39 cape python3[1057758]:   File \"/opt/CAPEv2/cuckoo.py\", line 137, in <module>\r\nMay 14 21:05:39 cape python3[1057758]:     cuckoo_init(quiet=args.quiet, debug=args.debug, artwork=args.artwork, test=args.test)\r\nMay 14 21:05:39 cape python3[1057758]:   File \"/opt/CAPEv2/cuckoo.py\", line 79, in cuckoo_init\r\nMay 14 21:05:39 cape python3[1057758]:     check_webgui_mongo()\r\nMay 14 21:05:39 cape python3[1057758]:   File \"/opt/CAPEv2/lib/cuckoo/core/startup.py\", line 101, in check_webgui_mongo\r\nMay 14 21:05:39 cape python3[1057758]:     mongo_create_index(\"analysis\", \"info.id\", name=\"info.id_1\")\r\nMay 14 21:05:39 cape python3[1057758]:   File \"/opt/CAPEv2/dev_utils/mongodb.py\", line 55, in wrapper\r\nMay 14 21:05:39 cape python3[1057758]:     return mongo_op_func(*args, **kwargs)\r\nMay 14 21:05:39 cape python3[1057758]:   File \"/opt/CAPEv2/dev_utils/mongodb.py\", line 99, in mongo_create_index\r\nMay 14 21:05:39 cape python3[1057758]:     getattr(results_db, collection).create_index(index, background=background, name=name)\r\nMay 14 21:05:39 cape python3[1057758]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/pymongo/collection.py\", line 2120, in create_index\r\nMay 14 21:05:39 cape python3[1057758]:     return self.__create_indexes([index], session, **cmd_options)[0]\r\nMay 14 21:05:39 cape python3[1057758]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/pymongo/_csot.py\", line 108, in csot_wrapper\r\nMay 14 21:05:39 cape python3[1057758]:     return func(self, *args, **kwargs)\r\nMay 14 21:05:39 cape python3[1057758]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/pymongo/collection.py\", line 1973, in __create_indexes\r\nMay 14 21:05:39 cape python3[1057758]:     with self._conn_for_writes(session, operation=_Op.CREATE_INDEXES) as conn:\r\nMay 14 21:05:39 cape python3[1057758]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/pymongo/collection.py\", line 258, in _conn_for_writes\r\nMay 14 21:05:39 cape python3[1057758]:     return self.__database.client._conn_for_writes(session, operation)\r\nMay 14 21:05:39 cape python3[1057758]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/pymongo/mongo_client.py\", line 1333, in _conn_for_writes\r\nMay 14 21:05:39 cape python3[1057758]:     server = self._select_server(writable_server_selector, session, operation)\r\nMay 14 21:05:39 cape python3[1057758]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/pymongo/mongo_client.py\", line 1316, in _select_server\r\nMay 14 21:05:39 cape python3[1057758]:     server = topology.select_server(\r\nMay 14 21:05:39 cape python3[1057758]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/pymongo/topology.py\", line 369, in select_server\r\nMay 14 21:05:39 cape python3[1057758]:     server = self._select_server(\r\nMay 14 21:05:39 cape python3[1057758]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/pymongo/topology.py\", line 347, in _select_server\r\nMay 14 21:05:39 cape python3[1057758]:     servers = self.select_servers(\r\nMay 14 21:05:39 cape python3[1057758]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/pymongo/topology.py\", line 254, in select_servers\r\nMay 14 21:05:39 cape python3[1057758]:     server_descriptions = self._select_servers_loop(\r\nMay 14 21:05:39 cape python3[1057758]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/pymongo/topology.py\", line 309, in _select_servers_loop\r\nMay 14 21:05:39 cape python3[1057758]:     _info_log(\r\nMay 14 21:05:39 cape python3[1057758]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/pymongo/logger.py\", line 96, in _info_log\r\nMay 14 21:05:39 cape python3[1057758]:     logger.info(LogMessage(**fields))\r\n```\r\n[conf.tgz](https://github.com/kevoreilly/CAPEv2/files/15317369/conf.tgz)\r\n\nComment: did you update your cape? i have fixed this logging last week when i upgraded pymongo. ok so the problem comes from memory, which i guess is volatility, is ages since i dont use that, so it will take some time to prepare everything for proper testing\nComment: Yes, did a full upgrade yesterday.\nComment: can you try git pull again i just spot another place where that pymongo log was processed, now after `git pull` and `systemctl restart cape-processor` it should works\nComment: I disabled some modules, apply the last update and it seems to work pretty nicely now! \\o/\r\nI will re-enable modules one by one and see which ones are messing up the whole setup. Tx for the great help!\nComment: thanks that will help to spot problematic one\nComment: Hello, I've some problems with reporting and volatility. It seems that there is the same error log:\r\n\r\n![cape-error1](https://github.com/kevoreilly/CAPEv2/assets/14922220/7e3886fe-89af-4649-8163-0e6c5bdedb17)\r\n\r\n> Hi, sorry for the late reply, also busy on my side. I upgraded pymongo to 4.7.2 but still the same. It's not related to a sample, it's for all of them :(\r\n> \r\n> [Edit] I'm running MongoDB 7.0.9 and pymongo 4.5.0 like you. Now, I've this error:\r\n> \r\n> ```\r\n> 2024-05-14 21:19:54,703 [Task 34] [lib.cuckoo.core.plugins] ERROR: Failed to run the reporting module \"MongoDB\":\r\n> Traceback (most recent call last):\r\n>   File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 738, in process\r\n>     current.run(self.results)\r\n>   File \"/opt/CAPEv2/utils/../modules/reporting/mongodb.py\", line 110, in run\r\n>     report = get_json_document(results, self.analysis_path)\r\n>   File \"/opt/CAPEv2/utils/../modules/reporting/report_doc.py\", line 60, in get_json_document\r\n>     report = copy.deepcopy(results)\r\n>   File \"/usr/lib/python3.10/copy.py\", line 146, in deepcopy\r\n>     y = copier(x, memo)\r\n>   File \"/usr/lib/python3.10/copy.py\", line 231, in _deepcopy_dict\r\n>     y[deepcopy(key, memo)] = deepcopy(value, memo)\r\n>   File \"/usr/lib/python3.10/copy.py\", line 146, in deepcopy\r\n>     y = copier(x, memo)\r\n>   File \"/usr/lib/python3.10/copy.py\", line 231, in _deepcopy_dict\r\n>     y[deepcopy(key, memo)] = deepcopy(value, memo)\r\n>   File \"/usr/lib/python3.10/copy.py\", line 146, in deepcopy\r\n>     y = copier(x, memo)\r\n>   File \"/usr/lib/python3.10/copy.py\", line 206, in _deepcopy_list\r\n>     append(deepcopy(a, memo))\r\n>   File \"/usr/lib/python3.10/copy.py\", line 146, in deepcopy\r\n>     y = copier(x, memo)\r\n>   File \"/usr/lib/python3.10/copy.py\", line 231, in _deepcopy_dict\r\n>     y[deepcopy(key, memo)] = deepcopy(value, memo)\r\n>   File \"/usr/lib/python3.10/copy.py\", line 161, in deepcopy\r\n>     rv = reductor(4)\r\n>   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/volatility3/framework/objects/__init__.py\", line 184, in __getnewargs_ex__\r\n>     kwargs[\"new_value\"] = self.__new_value\r\n>   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/volatility3/framework/interfaces/objects.py\", line 136, in __getattr__\r\n>     raise AttributeError\r\n> AttributeError\r\n> ```\r\n> \r\n> [Edit2] I tried a full upgrade of all packages & dependencies. Now on pymongo 4.7.2 and got this error: CAPE does not start at all:\r\n> \r\n> ```\r\n> May 14 21:31:45 cape python3[1085227]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/pymongo/logger.py\", line 96, in _info_log\r\n> May 14 21:31:45 cape python3[1085227]:     logger.info(LogMessage(**fields))\r\n> May 14 21:31:45 cape python3[1085227]:   File \"/usr/lib/python3.10/logging/__init__.py\", line 1477, in info\r\n> May 14 21:31:45 cape python3[1085227]:     self._log(INFO, msg, args, **kwargs)\r\n> May 14 21:31:45 cape python3[1085227]:   File \"/usr/lib/python3.10/logging/__init__.py\", line 1624, in _log\r\n> May 14 21:31:45 cape python3[1085227]:     self.handle(record)\r\n> May 14 21:31:45 cape python3[1085227]:   File \"/usr/lib/python3.10/logging/__init__.py\", line 1634, in handle\r\n> May 14 21:31:45 cape python3[1085227]:     self.callHandlers(record)\r\n> May 14 21:31:45 cape python3[1085227]:   File \"/usr/lib/python3.10/logging/__init__.py\", line 1696, in callHandlers\r\n> May 14 21:31:45 cape python3[1085227]:     hdlr.handle(record)\r\n> May 14 21:31:45 cape python3[1085227]:   File \"/usr/lib/python3.10/logging/__init__.py\", line 968, in handle\r\n> May 14 21:31:45 cape python3[1085227]:     self.emit(record)\r\n> May 14 21:31:45 cape python3[1085227]:   File \"/opt/CAPEv2/lib/cuckoo/core/log.py\", line 72, in emit\r\n> May 14 21:31:45 cape python3[1085227]:     if \"analysis procedure completed\" in record.msg:\r\n> May 14 21:31:45 cape python3[1085227]: TypeError: argument of type 'LogMessage' is not iterable\r\n> ```\r\n\r\n\nComment: if you check last 3 lines from last code block, the code line there and in cape doesn't match https://github.com/kevoreilly/CAPEv2/blob/master/lib/cuckoo/core/log.py#L72\r\n\r\nare you on latest cape?\nComment: > Hello, I've some problems with reporting and volatility. It seems that there is the same error log:\r\n> \r\n\r\n@alb3rt0-cyb3r \r\nHello! Did you find any solution?\r\nI have AttributeError exactly like yours. I have no idea where to start searching. All I see - that this error related with Volatility.\r\n\r\nMy stack:\r\nCAPE 2.4 (with Hack for pymongo.logger.LogMessage)\r\nmongo 7.0.14\r\npymongo 4.6.3\r\nvolatility3 2.7.0\r\n\r\n\r\n\nComment: well then start disabling volatility modules, there were some added after my testing, so maybe they generate this problem\nComment: i did a quick check, and it looks like many data formats changed so would need to investigate that, but i don't use volatility for more than year, so someone will have to investigate/adapt it\nComment: Turning off   `memory` in `processing.conf` solve the problem for me.\nIs there any different way solve the solution?",
+  "Title: [Feature Request] Support for IP2Location.io API\nBody: It would be good to have an alternative geolocation provider [IP2Location.io](https://www.ip2location.io/) instead of just relying on IPInfo. Perhaps you can consider the use of the IP2Location.io API. It allows 500 free geolocation queries per day without an API key. If you sign up for a free API plan and use its API key, you can get 30,000 geolocation queries per month.\nComment: Hi @ip2location team,\r\n\r\nCan you provide some context around why IP2Location would be a better alternative to IPinfo?\r\n\r\nWe have a good relationship with the CAPEv2 project, and they have not raised any issues. We completely support the maintainers' and communities' decisions regarding their choice of geolocation data. We always follow and champion the OSS projects that use our data and make sure no maintainers or users of our data are having any issues with our data quality.\r\n\r\nIt was a great win for us when they included us in their project. CAPEv2 is one of our favorite OSS projects, and we showcased this in our community with pride: https://community.ipinfo.io/t/capev2-now-supports-ipinfos-free-ip-databases/4311.\r\n\r\nBased on the information you provide, If we compare our offering to yours:\r\n\r\nIP2Location | IPinfo | Note\r\n-|-|-\r\n500 queries/day without token | 1,000 queries/day without token | IPinfo offers double the limit\r\n30,000 queries/month with a free token | 50,000 queries/month with a free tier token | IPinfo offers 167% more than the limit\r\n\r\nI understand that there could be areas where we are not the best, but it will be genuinely constructive if you can help us identify them. I completely respect the CAPEv2 community's decision regarding their chosen data provider, and we appreciate being part of the project.\r\n\r\nThank you.\nComment: Hello. I personally don't want online dependencies, while is nice to have more different services, but we use offline mdbs from maxmind/ipinfo. if you can provide offline mdb, i can add an `if` for user preferences. As requests to online resource delays processing. And we only were getting IP's country code, aand now with ipinfo, ASN \nComment: let us know once you expose offline database, and then we can check that, till then, sorry i won't introduce online dependencies for something that we have offline",
+  "Title: synchronize strace reading execution across threads\nBody: https://github.com/kevoreilly/CAPEv2/pull/2078/files#r1574842663",
+  "Title: QakBot parser update\nBody: None",
+  "Title: Zloader update\nBody: None\nComment: This PR has broken all cape monitor sigs since it was merged as the monitor yara does not even compile!\r\n\r\n```\r\nerror: rule \"Zloader_2024\" in D:\\work\\CAPE\\CAPE\\master\\CAPEv2\\analyzer\\windows\\data\\yara\\Zloader.yar(25): undefined string \"$decrypt_conf*\"\r\n```",
+  "Title: Qakbot update\nBody: None\nComment: can you solve conflicts on both of the PRs?",
+  "Title: Zloader update\nBody: None",
+  "Title: Feature to ability monitor traffic between cape result server and sandbox.\nBody: None\nComment: why do you set VMs in NAT if docs says hostonly?\nComment: did you set that interface somewhere else? https://github.com/kevoreilly/CAPEv2/blob/master/modules/auxiliary/sniffer.py#L58C9-L58C76\nComment: Machine have set hostonly interface. I change behavior of rooter. Because i must identifing traffic from sandboxes per sandbox on my network monitoring.\nComment: I see that you closed the pull request without merging. Do you need any additional information about this functionality ? \nComment: what we close? this PR was closed by you\nComment: Actually I don't know how it happened, sorry :)  I will create a new pull request. Suspicion falls on new changes introduced and force push",
+  "Title:  False Positives in Safe PDF File Analysis\nBody: ## Expected Behavior:\r\n* The system should accurately analyze safe PDF files without triggering false positive alerts, score should not be 10/10. \r\n\r\n## Current Behavior:\r\n* The system is showing numerous false positives during the analysis of safe PDF files. These false positives include:\r\n\r\n ## Signatures:\r\n\r\n    Possible Heap Spray Exploit Detection:\r\n        Time: 2024-04-17 09:01:09\r\n        Caller: 0x7793553c\r\n        API: NtAllocateVirtualMemory\r\n        Arguments: ProcessHandle: 0xffffffffffffffff, BaseAddress: 0x00dd1000, RegionSize: 0x00001000, Protection: PAGE_READWRITE\r\n        Status: Success\r\n        Return: 0x00000000\r\n\r\n    [Additional similar instances...]\r\n\r\n    Collects and Encrypts Information:\r\n        Time: 2024-04-17 09:01:36\r\n        Caller: 0x008e7de7\r\n        API: CryptHashData\r\n        Arguments: CryptHash: 0x014ed7d8, Buffer: [Encrypted Data]\r\n        Status: Success\r\n        Return: 0x00000001\r\n\r\n    [Additional similar instances...]\r\n\r\n    Attempted Loading of File with Unusual Extension as DLL:\r\n        Time: 2024-04-17 09:01:14\r\n        Caller: 0x0050005c\r\n        API: LdrLoadDll\r\n        Arguments: Flags: 0x00000000, FileName: C:\\program files (x86)\\Adobe\\Reader 9.0\\Reader\\RdLang32.FRA, BaseAddress: 0x00000000\r\n        Status: Success\r\n        Return: 0x00000000\r\n\r\n    [Additional similar instances...]\r\n\r\n    CAPE Extracted Potentially Suspicious Content:\r\n        Suspicious Content: AcroRd32_exe: embedded_pe\r\n\r\n    Display of Potential Decoy Document to User:\r\n        Decoy Document: \"c:\\program files (x86)\\adobe\\reader 9.0\\reader\\acrord32.exe\" \"c:\\users\\admin\\appdata\\local\\temp\\safe.pdf\"\r\n        Time: 2024-04-17 09:01:09\r\n        Caller: 0x77941e7e\r\n        API: NtDelayExecution\r\n        Arguments: Milliseconds: 30, Status: Skipped\r\n\r\n    Creation of Hidden or System Files:\r\n        Files: C:\\ProgramData\\Adobe\\Reader\\9.2\\ARM\\BITAF7C.tmp, C:\\ProgramData\\Adobe\\Reader\\9.2\\ARM\\BITE84F.tmp\r\n        [Details of NtCreateFile calls...]\r\n\r\n    Access to Credential Storage Registry Keys:\r\n        Registry Key: HKEY_LOCAL_MACHINE\\System\r\n\r\n    System Fingerprinting Information Collection:\r\n        Registry Key: HKEY_LOCAL_MACHINE\\SOFTWARE\\WOW6432Node\\Microsoft\\Internet Explorer\\Registration\\ProductId\r\n\r\n    Yara Detections:\r\n        Yara Rule: embedded_pe\r\n        Process ID: 4272\r\n        \r\n## Steps to Reproduce:\r\n\r\n    Submit a safe PDF file for analysis.\r\n    Observe the generated alerts and false positives.\r\n \r\n## Additional Information:\r\n    \r\n   * Operating System: Win 10 Pro\r\n   *   CAPEV2 Version: [17.11.2023]\r\n   * Adobe Reader : 9.0\r\n   *  File Type  PDF document, version 1.3\r\n   *  PDF Information:\r\n\r\nKeyword | Count\r\n-- | --\r\nobj | 329\r\nendobj | 329\r\nstream | 99\r\nendstream | 91\r\nxref | 1\r\ntrailer | 1\r\nstartxref | 1\r\n/Page | 38\r\n/Encrypt | 0\r\n/ObjStm | 0\r\n/JS | 0\r\n/JavaScript | 0\r\n/AA | 0\r\n/OpenAction | 0\r\n/AcroForm | 0\r\n/JBIG2Decode | 0\r\n/RichMedia | 0\r\n/Launch | 0\r\n/EmbeddedFile | 0\r\n/XFA | 0\r\n/Colors > 2^24 | 0\r\n\nComment: Those are community signatures, you are welcome to improve them\r\n\r\nEl vie, 26 abr 2024, 12:07, XxCloudMindXx ***@***.***>\r\nescribi\u00f3:\r\n\r\n> Expected Behavior:\r\n>\r\n>    - The system should accurately analyze safe PDF files without\r\n>    triggering false positive alerts, score should not be 10/10.\r\n>\r\n> Current Behavior:\r\n>\r\n>    - The system is showing numerous false positives during the analysis\r\n>    of safe PDF files. These false positives include:\r\n>\r\n> Signatures:\r\n>\r\n> Possible Heap Spray Exploit Detection:\r\n>     Time: 2024-04-17 09:01:09\r\n>     Caller: 0x7793553c\r\n>     API: NtAllocateVirtualMemory\r\n>     Arguments: ProcessHandle: 0xffffffffffffffff, BaseAddress: 0x00dd1000, RegionSize: 0x00001000, Protection: PAGE_READWRITE\r\n>     Status: Success\r\n>     Return: 0x00000000\r\n>\r\n> [Additional similar instances...]\r\n>\r\n> Collects and Encrypts Information:\r\n>     Time: 2024-04-17 09:01:36\r\n>     Caller: 0x008e7de7\r\n>     API: CryptHashData\r\n>     Arguments: CryptHash: 0x014ed7d8, Buffer: [Encrypted Data]\r\n>     Status: Success\r\n>     Return: 0x00000001\r\n>\r\n> [Additional similar instances...]\r\n>\r\n> Attempted Loading of File with Unusual Extension as DLL:\r\n>     Time: 2024-04-17 09:01:14\r\n>     Caller: 0x0050005c\r\n>     API: LdrLoadDll\r\n>     Arguments: Flags: 0x00000000, FileName: C:\\program files (x86)\\Adobe\\Reader 9.0\\Reader\\RdLang32.FRA, BaseAddress: 0x00000000\r\n>     Status: Success\r\n>     Return: 0x00000000\r\n>\r\n> [Additional similar instances...]\r\n>\r\n> CAPE Extracted Potentially Suspicious Content:\r\n>     Suspicious Content: AcroRd32_exe: embedded_pe\r\n>\r\n> Display of Potential Decoy Document to User:\r\n>     Decoy Document: \"c:\\program files (x86)\\adobe\\reader 9.0\\reader\\acrord32.exe\" \"c:\\users\\admin\\appdata\\local\\temp\\safe.pdf\"\r\n>     Time: 2024-04-17 09:01:09\r\n>     Caller: 0x77941e7e\r\n>     API: NtDelayExecution\r\n>     Arguments: Milliseconds: 30, Status: Skipped\r\n>\r\n> Creation of Hidden or System Files:\r\n>     Files: C:\\ProgramData\\Adobe\\Reader\\9.2\\ARM\\BITAF7C.tmp, C:\\ProgramData\\Adobe\\Reader\\9.2\\ARM\\BITE84F.tmp\r\n>     [Details of NtCreateFile calls...]\r\n>\r\n> Access to Credential Storage Registry Keys:\r\n>     Registry Key: HKEY_LOCAL_MACHINE\\System\r\n>\r\n> System Fingerprinting Information Collection:\r\n>     Registry Key: HKEY_LOCAL_MACHINE\\SOFTWARE\\WOW6432Node\\Microsoft\\Internet Explorer\\Registration\\ProductId\r\n>\r\n> Yara Detections:\r\n>     Yara Rule: embedded_pe\r\n>     Process ID: 4272\r\n>\r\n> Steps to Reproduce:\r\n>\r\n> Submit a safe PDF file for analysis.\r\n> Observe the generated alerts and false positives.\r\n>\r\n> Additional Information:\r\n>\r\n>    - Operating System: Win 10 Pro\r\n>    - CAPEV2 Version: [17.11.2023]\r\n>    - Adobe Reader : 9.0\r\n>    - File Type PDF document, version 1.3\r\n>    - PDF Information:\r\n>\r\n> Keyword Count\r\n> obj 329\r\n> endobj 329\r\n> stream 99\r\n> endstream 91\r\n> xref 1\r\n> trailer 1\r\n> startxref 1\r\n> /Page 38\r\n> /Encrypt 0\r\n> /ObjStm 0\r\n> /JS 0\r\n> /JavaScript 0\r\n> /AA 0\r\n> /OpenAction 0\r\n> /AcroForm 0\r\n> /JBIG2Decode 0\r\n> /RichMedia 0\r\n> /Launch 0\r\n> /EmbeddedFile 0\r\n> /XFA 0\r\n> /Colors > 2^24 0\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2086>, or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH37BPMAQ26HIQM4FWXLY7IRPLAVCNFSM6AAAAABG2PYYUOVHI2DSMVQWIX3LMV43ASLTON2WKOZSGI3DKNBUGUYDINI>\r\n> .\r\n> You are receiving this because you are subscribed to this thread.Message\r\n> ID: ***@***.***>\r\n>\r\n\nComment: Which score are you referring to? If it's malscore, this is a legacy cuckoo feature which is not enabled in CAPE by default for exactly this reason.\r\n\r\nThe difficulty is in how to avoid scoring actions like these but still catch malicious actions that use the same or similar API. I would be interested to hear any proposal to solve this problem - failing that as I mentioned this is exactly why malscore is not enabled by default. My advice would be to disable it.\nComment: @kevoreilly I suggest to fix [Accessed credential storage registry keys] while analysing pdf using adobe reader is to reduce the severity using \r\n\r\n```\r\nclass RegistryCredentialStoreAccess(Signature):\r\n    name = \"registry_credential_store_access\"\r\n    description = \"Accessed credential storage registry keys\"\r\n    severity = 3\r\n    categories = [\"persistence\", \"lateral\", \"credential_dumping\"]\r\n    authors = [\"Kevin Ross\"]\r\n    minimum = \"1.3\"\r\n    evented = True\r\n    ttps = [\"T1003\"]  # MITRE v6,7,8\r\n    ttps += [\"T1003.002\"]  # MITRE v7,8\r\n    mbcs = [\"OB0005\"]\r\n\r\n    def run(self):\r\n        ret = False\r\n        reg_indicators = [\r\n            \"HKEY_LOCAL_MACHINE\\\\\\\\SAM$\",\r\n            \"HKEY_LOCAL_MACHINE\\\\\\\\SYSTEM$\",\r\n        ]\r\n\r\n        for indicator in reg_indicators:\r\n            match = self.check_key(pattern=indicator, regex=True)\r\n            if match:\r\n                self.data.append({\"regkey\": match})\r\n                ret = True\r\n        # Tweak\r\n        if \"PDF\" in self.results[\"target\"][\"file\"].get(\"type\", \"\"):\r\n            self.severity = 1\r\n        return ret\r\n```\r\n\r\nAnd also i created a new pdf annot url checker because the https://github.com/CAPESandbox/community/blob/master/modules/signatures/all/pdf_annot_urls.py not working anymore \r\n```\r\n\r\nfrom lib.cuckoo.common.abstracts import Signature\r\n\r\nclass PDF_Annot_URLs_Checker(Signature):\r\n    name = \"pdf_annot_urls_checker\"\r\n    description = \"The PDF contains a Link Annotation\"\r\n    severity = 2  # Default severity\r\n    categories = [\"static\"]\r\n    authors = [\"Wassime BATTA\"]\r\n    minimum = \"0.5\"\r\n\r\n    filter_analysistypes = set([\"file\",\"static\"])\r\n\r\n    malicious_tlds_file = \"/opt/CAPEv2/data/malicioustlds.txt\"\r\n\r\n    def __init__(self, *args, **kwargs):\r\n        super(PDF_Annot_URLs_Checker, self).__init__(*args, **kwargs)\r\n        self.malicious_tlds = self.load_malicious_tlds()\r\n\r\n    def load_malicious_tlds(self):\r\n        malicious_tlds = set()\r\n        with open(self.malicious_tlds_file, \"r\") as f:\r\n            for line in f:\r\n                line = line.strip()\r\n                if line.startswith(\".\"):\r\n                    malicious_tlds.add(line)\r\n        return malicious_tlds\r\n\r\n    def run(self):\r\n        found_malicious_extension = False\r\n        found_malicious_domain = False\r\n        found_domain_only = False\r\n        suspect = False\r\n\r\n        if \"PDF\" in self.results[\"target\"][\"file\"].get(\"type\", \"\"):\r\n            if \"Annot_URLs\" in self.results[\"target\"][\"file\"][\"pdf\"]:\r\n                for entry in self.results[\"target\"][\"file\"][\"pdf\"][\"Annot_URLs\"]:\r\n                    entry_lower = entry.lower()\r\n                    self.data.append({\"url\": entry})\r\n                    if entry_lower.endswith((\".exe\", \".php\", \".bat\", \".cmd\", \".js\", \".jse\", \".vbs\", \".vbe\", \".ps1\", \".psm1\", \".sh\")) \\\r\n                            and not entry_lower.startswith(\"mailto:\"):\r\n                        found_malicious_extension = True\r\n\r\n                    if entry_lower.startswith(\"http://\") or entry_lower.startswith(\"https://\"):\r\n                        domain_start = entry_lower.find(\"//\") + 2\r\n                        domain_end = entry_lower.find(\"/\", domain_start)\r\n                        if domain_end == -1:\r\n                            domain = entry_lower[domain_start:]\r\n                        else:\r\n                            domain = entry_lower[domain_start:domain_end]\r\n\r\n                        for malicious_tld in self.malicious_tlds:\r\n                            if domain.endswith(malicious_tld):\r\n                                found_malicious_domain = True\r\n                                break\r\n                        else:\r\n                            # If no malicious TLDs detected, set found_domain_only to True\r\n                            found_domain_only = True\r\n\r\n            if found_malicious_domain or found_malicious_extension:\r\n                self.severity = 6\r\n                self.description = \"The PDF contains a Malicious Link Annotation\"\r\n                suspect = True\r\n            elif found_domain_only:\r\n                self.severity = 2\r\n                self.description = \"The PDF contains a Link Annotation\"\r\n                suspect = True\r\n\r\n        return suspect\r\n\r\n\r\n```\r\n\r\nAnd a malicious/suspect tld in /opt/CAPEv2/data/malicioustlds.txt\r\n```\r\n.link\r\n.cam\r\n.bar\r\n.surf\r\n.xyz\r\n.click\r\n.buzz\r\n.gq\r\n.ga\r\n.rest\r\n.ml\r\n.cc\r\n.cfd\r\n.cyou\r\n.accountant\r\n.ar\r\n.bg\r\n.bid\r\n.biz\r\n.biz.ua\r\n.br\r\n.camera\r\n.cf\r\n.club\r\n.co\r\n.co.ua\r\n.co.in\r\n.co.mz\r\n.co.nz\r\n.com.au\r\n.com.tw\r\n.computer\r\n.cricket\r\n.date\r\n.diet\r\n.download\r\n.email\r\n.es\r\n.faith\r\n.gdn\r\n.global\r\n.guru\r\n.help\r\n.in\r\n.info\r\n.kz\r\n.lol\r\n.loan\r\n.media\r\n.men\r\n.news\r\n.ninja\r\n.nyc\r\n.party\r\n.photography\r\n.pt\r\n.pw\r\n.racing\r\n.reise\r\n.review\r\n.rocks\r\n.ru\r\n.science\r\n.site\r\n.solutions\r\n.space\r\n.stream\r\n.tech\r\n.today\r\n.top\r\n.tr\r\n.trade\r\n.uno\r\n.us\r\n.vn\r\n.webcam\r\n.website\r\n.win\r\n.work\r\n.africa\r\n.autos\r\n.best\r\n.bet\r\n.bio\r\n.boats\r\n.bond\r\n.boston\r\n.boutique\r\n.center\r\n.charity\r\n.christmas\r\n.coupons\r\n.dance\r\n.finance\r\n.fishing\r\n.giving\r\n.hair\r\n.haus\r\n.homes\r\n.icu\r\n.kim\r\n.lat\r\n.llp\r\n.loans\r\n.love\r\n.ltd\r\n.mom\r\n.motorcycles\r\n.name\r\n.okinawa\r\n.promo\r\n.rehab\r\n.rugby\r\n.run\r\n.sale\r\n.sew\r\n.skin\r\n.store\r\n.sz\r\n.tattoo\r\n.tokyo\r\n.voto\r\n.wang\r\n.wf\r\n.yachts\r\n.you\r\n```\r\n\r\nThe new script is working well with dyanmic and static scan (tested in Win10 and adobe reader 9)\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/36480372/d87feaaf-b0c1-4266-a77a-0d5af17909f2)\r\n\nComment: Sometimes CAPE suricata Alert trigger \"AKAMAI-AS\" as malicious severity 3, i suggest also to add  commenting \r\n`#alert http $HOME_NET any -> $EXTERNAL_NET any (msg:\"ET USER_AGENTS Microsoft Device Metadata Retrieval Client User-Agent\"; flow:established,to_server; http.user_agent; content:\"MICROSOFT_DEVICE_METADATA_RETRIEVAL_CLIENT\"; depth:42; endswith; nocase; fast_pattern; classtype:misc-activity; sid:2027390; rev:4; metadata:affected_product Web_Browsers, attack_target Client_Endpoint, created_at 2019_05_28, deployment Perimeter, former_category USER_AGENTS, performance_impact Low, signature_severity Informational, updated_at 2020_09_17;) `\r\nin suricata.rules will disable this false positive, in docs\nComment: @wasbt thank you for your suggestions - I have created a PR with these changes as I am very keen to welcome contributions. We would however appreciate PRs in future as it saves unnecessary effort.\r\n\r\nhttps://github.com/CAPESandbox/community/pull/430",
+  "Title: CAPE not sniffing the new interface set in Auxiliary conf\nBody: \r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ X] I am running the latest version\r\n- [ X] I did read the README!\r\n- [ X] I checked the documentation and found no answer\r\n- [ X] I checked to make sure that this issue has not already been filed\r\n- [ X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ X] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nI set a different interface in auxilary.conf for CAPE to run TCPDump on to sniff traffic. It should sniff the new interface since i did not see any references in the docs on anywhere else I needed to configure anything else.\r\n\r\n# Current Behavior\r\n\r\nCAPE is not sniffing traffic off the new interface I set in auxiliary.conf.\r\n\r\n## Steps to Reproduce\r\n\r\n1. Install a new usb NIC.\r\n2. Change interface name in auxiliary.conf to new NIC.\r\n3. Confirm interface is up before run.\r\n4. Run analysis.\r\n5. Looking at the tcpdump command when doing systemctl status cape.service during a run CAPE will choose the old interface to sniff.\r\n\r\n## Context\r\n\r\nI have a fully physical CAPE setup. I tried cating and grepping all the files in /opt/CAPEV2 to see where the tcpdump command is run so I could hard code in my new interface but, I didn't see any hits related to that. I can manually run TCPDump on the new interface and it works with no issues.\r\n\r\n![AuxiliaryConf](https://github.com/kevoreilly/CAPEv2/assets/29485001/65aa08f0-f12a-4ffe-b366-24b59d129484)\r\n\r\nNew NIC in auxiliary.conf set above.\r\n\r\n\r\n![CapeSniffing](https://github.com/kevoreilly/CAPEv2/assets/29485001/fba5d93d-2938-4874-8250-ad310f9329ab)\r\n\r\nPicture above is CAPE telling TCPDump to sniff the old interface even through it is no longer configured in auxiliary.conf.\r\n\r\n\r\nThanks for the help\r\n\nComment: Did you restart cape.service after modify the config?\nComment: I restarted the service and the machine with no luck.\nComment: did you set the interface in kvm.conf? https://github.com/kevoreilly/CAPEv2/blob/master/modules/auxiliary/sniffer.py#L58\nComment: I am a full physical setup so I didnt touch kvm.conf. Below is my cuckoo.conf and physical.conf.\r\n\r\n![cuckoo_conf](https://github.com/kevoreilly/CAPEv2/assets/29485001/deeb2f6f-db7c-4344-83db-947fc8870bfc)\r\n\r\ncuckoo.conf\r\n\r\n![physical_conf](https://github.com/kevoreilly/CAPEv2/assets/29485001/f798920d-4801-485c-a36f-8490262fa851)\r\n\r\nphysical.conf\r\n\nComment: well on physical, sniffing is useless as it cant sniff remote machine traffic\nComment: No worries. The network analysis can be done manually.",
+  "Title: Fix for Volatility and Floss\nBody: None\nComment: I see qemu here, once I will be with pc i Will solve everything anderge",
+  "Title: Added tests for analyzer; bug fix\nBody: Added a number of tests for the windows analyzer. Small improvements.\r\n- made is_protected_filename a classmethod\r\n- changed type hints to be python 3.8 compatible\r\n- changed some comments into docstring comments\r\n\r\nFixed a handful of small issues:\r\n- in _handle_ksubvert() we were iterating over the process list while modifying it, which did not work\r\n- in _handle_shutdown() we were trying to dump_files on the CommandPipeHandler instead of the analyzer\r\n- in _handle_process() we weren't properly updating the analyzer's LASTINJECT_TIME\r\n- in _handle_interop() we weren't checking if ANALYSIS_TIMED_OUT\r\n- in _inject_process() we weren't updating LASTINJECT_TIME\r\n- fixed typo in `in_protected_path()`\nComment: FYI @nbargnesi @tbeadle \nComment: Looks good to me, waiting for more confirm before merging\nComment: Looks great, nice work @rkoumis ",
+  "Title: Added more tests for the analyzer\nBody: - fixed a couple of bugs\r\n- had a couple of questions\r\n\r\nBugs:\r\n- `_handle_ksubvert()` was iterating over the process list while modifying it, which usually does not work\r\n- in `_handle_shutdown()` we were trying to `dump_files` on the CommandPipeHandler instead of the analyzer\r\n- in `_inject_process()` we weren't passing the thread_id properly to the new Process object\r\n- in `_handle_process()` we weren't properly updating the analyzer's `LASTINJECT_TIME`\r\n\r\nQuestions:\r\n- in `_handle_interop()` should we check if `ANALYSIS_TIMED_OUT` before we do anything?\r\n- in `_inject_process()` do we need to update `LASTINJECT_TIME` ?\r\n\r\nFYI @nbargnesi @tbeadle @josh-feather \nComment: Can you rebase these changes on the staging branch? There's a fair bit of changes between the master and staging branches inside the Windows analyzer. (e.g. https://github.com/kevoreilly/CAPEv2/commit/90134aaaca07c89fda269a601f05c49a17977d78)\nComment: There is no point in handling interop if the analysis has timed out so 1) yes\r\n\r\n2) yes \nComment: I'll close this and open a new one against staging.\nComment: Work in progress: https://github.com/rkoumis/CAPEv2/pull/15 - It should be ready for you tomorrow.\nComment: Instead of this PR, I opened https://github.com/kevoreilly/CAPEv2/pull/2083 against staging.",
+  "Title: Can you support Docker deployment?\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ ] I am running the latest version\r\n- [ ] I did read the README!\r\n- [ ] I checked the documentation and found no answer\r\n- [ ] I checked to make sure that this issue has not already been filed\r\n- [ ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ ] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. step 1\r\n2. step 2\r\n3. you get it...\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 16.04, Windows 10, macOS 10.12.3\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: Yes please test PR https://github.com/kevoreilly/CAPEv2/pull/2057",
+  "Title: fixing error in volatility, floss and qemu integration. Adding psscan\u2026\nBody: - Adding the possibility to use the memory module for QEMU machinery\r\n- Adding the psscan option for volatility\r\n- Patching volatility installation issue\r\n- Patching error in dependencies\r\n- Patching error in floss integration\r\n- Modifying QEMU machinery in order to be compatible with vmcloak \r\n- Adding a Rootkit functionality (making a diff between pslist and psscan. It's a work in progress though)\nComment: Thank you \u2764\ufe0f \nComment: hello, thank you, in general is very good PR, but i left 2 comments where i see problem. about `self.options` im working on that right now to fix properly, not doing patch by reading config\nComment: Thank you :) I don't see your comment.\r\n\r\nDo you want me to modify some stuff in my PR ? \nComment: ![image](https://github.com/kevoreilly/CAPEv2/assets/1856495/5cc926e5-440f-42dd-aa2a-6b63373eb172)\r\ndo you see that?\nComment: i have to verify why self.options fails, do you have configs inside of the conf folder?\nComment: > ![image](https://private-user-images.githubusercontent.com/1856495/324888354-5cc926e5-440f-42dd-aa2a-6b63373eb172.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJnaXRodWIuY29tIiwiYXVkIjoicmF3LmdpdGh1YnVzZXJjb250ZW50LmNvbSIsImtleSI6ImtleTUiLCJleHAiOjE3MTM4ODgwNjIsIm5iZiI6MTcxMzg4Nzc2MiwicGF0aCI6Ii8xODU2NDk1LzMyNDg4ODM1NC01Y2M5MjZlNS00NDBmLTQyZGQtYWEyYS02YjYzMzczZWIxNzIucG5nP1gtQW16LUFsZ29yaXRobT1BV1M0LUhNQUMtU0hBMjU2JlgtQW16LUNyZWRlbnRpYWw9QUtJQVZDT0RZTFNBNTNQUUs0WkElMkYyMDI0MDQyMyUyRnVzLWVhc3QtMSUyRnMzJTJGYXdzNF9yZXF1ZXN0JlgtQW16LURhdGU9MjAyNDA0MjNUMTU1NjAyWiZYLUFtei1FeHBpcmVzPTMwMCZYLUFtei1TaWduYXR1cmU9NTZiNGE2NzVjZWNiNzU3ZTUzZjc0ZTYxOWJhZGE2NmZkZjJmYmUzZTQ1MGViNmY5YTAzZGU2ODBkZGY0NTk4MCZYLUFtei1TaWduZWRIZWFkZXJzPWhvc3QmYWN0b3JfaWQ9MCZrZXlfaWQ9MCZyZXBvX2lkPTAifQ.I4xYZExIckD47hk9EZj2S7CdAirAswoTgww4BEhmqmk) do you see that?\r\n\r\nnot at all \nComment: > i have to verify why self.options fails, do you have configs inside of the conf folder?\r\n\r\nyes inside /opt/CAPEv2/conf. This CAPEv2 folder inside under /opt/ was created by the cape.sh installer script\nComment: > ![image](https://private-user-images.githubusercontent.com/1856495/324888354-5cc926e5-440f-42dd-aa2a-6b63373eb172.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.p5l4fLohnP8uauYhwxqmsV3Dv79oO8Z8vzySwcbGqrk) do you see that?\r\n\r\n@doomedraven Your comments are pending, that's why no one can see that.\nComment: > > ![image](https://private-user-images.githubusercontent.com/1856495/324888354-5cc926e5-440f-42dd-aa2a-6b63373eb172.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.p5l4fLohnP8uauYhwxqmsV3Dv79oO8Z8vzySwcbGqrk) do you see that?\r\n> \r\n> @doomedraven Your comments are pending, that's why no one can see that.\r\n\r\nthanks, didnt spot that\nComment: What do you think if we move capa and qemu thing to another pr and we merge\r\nthe rest here, so we can work the rest parts in their PRs\r\n\r\nEl mi\u00e9, 24 abr 2024, 13:46, Alice ***@***.***> escribi\u00f3:\r\n\r\n> ***@***.**** commented on this pull request.\r\n> ------------------------------\r\n>\r\n> In modules/reporting/flare_capa_summary.py\r\n> <https://github.com/kevoreilly/CAPEv2/pull/2080#discussion_r1577747888>:\r\n>\r\n> > @@ -6,6 +6,7 @@\r\n>\r\n>  from lib.cuckoo.common.abstracts import Report\r\n>  from lib.cuckoo.common.integrations.capa import HAVE_FLARE_CAPA, flare_capa_details\r\n> +reporting_conf = Config(\"reporting\")\r\n>\r\n> No problem.\r\n>\r\n> Yes i have [flare_capa_summary] in my reporting.conf file:\r\n>\r\n> ***@***.***:/opt/CAPEv2/conf# head reporting.conf\r\n> # Enable or disable the available reporting modules [on/off].\r\n> # If you add a custom reporting module to your Cuckoo setup, you have to add\r\n> # a dedicated entry in this file, or it won't be executed.\r\n> # You can also add additional options under the section of your module and\r\n> # they will be available in your Python class.\r\n>\r\n> # Generate CAPE's analysis summary by FLARE/Mandiant's CAPA\r\n> [flare_capa_summary]\r\n> enabled = yes\r\n> on_demand= no\r\n>\r\n> If I don't use my fix with reporting_conf = Config(\"reporting\") and uses\r\n> the original version of the modules/reporting/flare_capa_summary.py file,\r\n> I have the following error via process.py:\r\n>\r\n> 2024-04-24 11:40:34,901 [Task 32] [lib.cuckoo.core.plugins] ERROR: Failed\r\n> to run the reporting module \"CAPASummary\": 'NoneType' object has no\r\n> attribute 'enabled' Traceback (most recent call last): File\r\n> \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 738, in process\r\n> current.run(self.results) File\r\n> \"/opt/CAPEv2/utils/../modules/reporting/flare_capa_summary.py\", line 26, in\r\n> run if HAVE_FLARE_CAPA and self.options.flare_capa_summary.enabled and not\r\n> self.options.flare_capa_summary.on_demand: AttributeError: 'NoneType'\r\n> object has no attribute 'enabled'\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/pull/2080#discussion_r1577747888>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH34SZD3GYTMYVC7RGSDY66LQFAVCNFSM6AAAAABGS7ARMWVHI2DSMVQWIX3LMV43YUDVNRWFEZLROVSXG5CSMV3GSZLXHMZDAMJZGYZTGNZZG4>\r\n> .\r\n> You are receiving this because you were mentioned.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: > What do you think if we move capa and qemu thing to another pr and we merge the rest here, so we can work the rest parts in their PRs\r\n> \r\n\r\n@doomedraven I'm ok with it. Do you want me to do a create a new PR for QEMU+CAPA or one for QEMU and one for CAPA ? \nComment: separate would be better as we can go over each of them and that speedup normally merging\nComment: well you can skip capa, as the problem is with self.options which i need to fix, so we dont need to introduce config read there\nComment: New PR here : https://github.com/kevoreilly/CAPEv2/pull/2084",
+  "Title: Add MongoDB indices for analysis fields\nBody: This PR adds `keyword` indices for certain fields in the `analysis` collection. This massively improves load time when accessing an individual analysis result in CAPE on large MongoDB instances. \r\n\r\nCAPE uses one large OR-query when loading an analysis result which is why we opted for a separate index for every field on which the aggregation is run. The query also looks for exact matches so the fields are indexed as `keyword` instead of `text`.\nComment: this is obsolete now, i have added indexes for md5 and sha256 + rewrote the searching",
+  "Title: Refactor Linux strace\nBody: Previous implementation outputted strace logs onto the Linux guest VM. This refactor allows the strace logs to streamed directly to the CAPE result server on the host while the sample is running.\nComment: Great Job!!!! Thanks @winson0123 !\nComment: Wow!!! Amazing work! Thank you @winson0123 \nComment: this is fine to go right?\nComment: Unless there's an issue with not passing the tests, I think it is good to go \nComment: thank you",
+  "Title: no behavioral and network result.\nBody: # Expected Behavior\r\n\r\nAlong with static analysis i also expect also behavioral and network analysis, but got no result. I set up a win10 vm to kvm as the guide suggested.\r\n\r\n# Current Behavior\r\n\r\nI got only static analysis. it seems that the analysis is not started in the win10 virtual machine.\r\n\r\n## Steps to Reproduce\r\n\r\n1. i submitted sample to win10 VM with this command \r\n```\r\nsudo -u cape poetry run python utils/submit.py --machine win10 /tmp/rfqmemdump.exe \r\n```\r\n2. i got static analysis\r\n3. no result for behavioral and network analysis even with win10 machine up and running and even if a got this message `Success: File \"/tmp/rfqmemdump.exe\" added as task with ID 1`\r\n4. i found same error in the log file as reported below\r\n\r\n## Context\r\n\r\nSorry if i messed up with config files, btw i tried to following documentation in every part. I also tried to change the network configuration option from hostonly to nat, modifying the routing and cuckoo configurations, but no luck. the config files:\r\n\r\n**cuckoo**\r\n\r\n```\r\n\r\n[cuckoo]\r\n\r\n# Which category of tasks do you want to analyze?\r\ncategories = static, pcap, url, file\r\n\r\n# If turned on, Cuckoo will delete the original file after its analysis\r\n# has been completed.\r\ndelete_original = off\r\n\r\n# Archives are not deleted by default, as it extracts and \"original file\" become extracted file\r\ndelete_archive = on\r\n\r\n# If turned on, Cuckoo will delete the copy of the original file in the\r\n# local binaries repository after the analysis has finished. (On *nix this\r\n# will also invalidate the file called \"binary\" in each analysis directory,\r\n# as this is a symlink.)\r\ndelete_bin_copy = off\r\n\r\n# Specify the name of the machinery module to use, this module will\r\n# define the interaction between Cuckoo and your virtualization software\r\n# of choice.\r\nmachinery = kvm\r\n\r\n# Enable screenshots of analysis machines while running.\r\nmachinery_screenshots = off\r\n\r\n# Specify if a scaling bounded semaphore should be used by the scheduler for tasking the VMs.\r\n# This is only applicable to auto-scaling machineries such as Azure and AWS.\r\n# There is a specific configuration key in each machinery that is used to initialize the semaphore.\r\n# For Azure, this configuration key is \"total_machines_limit\"\r\n# For AWS, this configuration key is \"dynamic_machines_limit\"\r\nscaling_semaphore = off\r\n# A configurable wait time between updating the limit value of the scaling bounded semaphore\r\nscaling_semaphore_update_timer = 10\r\n# Allow more than one task scheduled to be assigned at once for better scaling\r\n# A switch to allow batch task assignment, a method that can more efficiently assign tasks to available machines\r\nbatch_scheduling = off\r\n# The maximum number of tasks assigned to machines per batch, optimal value dependent on deployment\r\nmax_batch_count = 20\r\n\r\n# Enable creation of memory dump of the analysis machine before shutting\r\n# down. Even if turned off, this functionality can also be enabled at\r\n# submission. Currently available for: VirtualBox and libvirt modules (KVM).\r\nmemory_dump = off\r\n\r\n# When the timeout of an analysis is hit, the VM is just killed by default.\r\n# For some long-running setups it might be interesting to terminate the\r\n# moinitored processes before killing the VM so that connections are closed.\r\nterminate_processes = off\r\n\r\n# Enable automatically re-schedule of \"broken\" tasks each startup.\r\n# Each task found in status \"processing\" is re-queued for analysis.\r\nreschedule = off\r\n\r\n# Fail \"unserviceable\" tasks as they are queued.\r\n# Any task found that will never be analyzed based on the available analysis machines\r\n# will have its status set to \"failed\".\r\nfail_unserviceable = on\r\n\r\n# Limit the amount of analysis jobs a Cuckoo process goes through.\r\n# This can be used together with a watchdog to mitigate risk of memory leaks.\r\nmax_analysis_count = 0\r\n\r\n# Limit the number of concurrently executing analysis machines.\r\n# This may be useful on systems with limited resources.\r\n# Set to 0 to disable any limits.\r\nmax_machines_count = 10\r\n\r\n# Limit the amount of VMs that are allowed to start in parallel. Generally\r\n# speaking starting the VMs is one of the more CPU intensive parts of the\r\n# actual analysis. This option tries to avoid maxing out the CPU completely.\r\n# This configuration option is only relevant for machineries that have a set\r\n# amount of VMs and are restricted by CPU usage.\r\n# If you are using an auto-scaling machinery such as Azure or AWS,\r\n# set this value to 0.\r\nmax_vmstartup_count = 5\r\n\r\n# Minimum amount of free space (in MB) available before starting a new task.\r\n# This tries to avoid failing an analysis because the reports can't be written\r\n# due out-of-diskspace errors. Setting this value to 0 disables the check.\r\n# (Note: this feature is currently not supported under Windows.)\r\nfreespace = 0\r\n# Process tasks, but not reach out of memory\r\nfreespace_processing = 15000\r\n\r\n# Temporary directory containing the files uploaded through Cuckoo interfaces\r\n# (web.py, api.py, Django web interface).\r\ntmppath = /tmp\r\n\r\n# Delta in days from current time to set the guest clocks to for file analyses\r\n# A negative value sets the clock back, a positive value sets it forward.\r\n# The default of 0 disables this option\r\n# Note that this can still be overridden by the per-analysis clock setting\r\n# and it is not performed by default for URL analysis as it will generally\r\n# result in SSL errors\r\ndaydelta = 0\r\n\r\n# Path to the unix socket for running root commands.\r\nrooter = /tmp/cuckoo-rooter\r\n\r\n# Enable if you want to see a DEBUG log periodically containing backlog of pending tasks, locked vs unlocked machines.\r\n# NOTE: Enabling this feature adds 4 database calls every 10 seconds.\r\nperiodic_log = off\r\n\r\n# Max filename length for submissions, before truncation. 196 is arbitrary.\r\nmax_len = 196\r\n\r\n# If it is greater than this, call truncate the filename further for sanitizing purposes.\r\n# Length truncated to is controlled by sanitize_to_len.\r\n#\r\n# This is to prevent long filenames such as files named by hash.\r\nsanitize_len = 32\r\nsanitize_to_len = 24\r\n\r\n[resultserver]\r\n# The Result Server is used to receive in real time the behavioral logs\r\n# produced by the analyzer.\r\n# Specify the IP address of the host. The analysis machines should be able\r\n# to contact the host through such address, so make sure it's valid.\r\n# NOTE: if you set resultserver IP to 0.0.0.0 you have to set the option\r\n# `resultserver_ip` for all your virtual machines in machinery configuration.\r\nip = 192.168.1.39\r\n\r\n# Specify a port number to bind the result server on.\r\nport = 2042\r\n\r\n# Force the port chosen above, don't try another one (we can select another\r\n# port dynamically if we can not bind this one, but that is not an option\r\n# in some setups)\r\nforce_port = yes\r\n\r\npool_size = 0\r\n\r\n# Should the server write the legacy CSV format?\r\n# (if you have any custom processing on those, switch this on)\r\nstore_csvs = off\r\n\r\n# Maximum size of uploaded files from VM (screenshots, dropped files, log)\r\n# The value is expressed in bytes, by default 100MB.\r\nupload_max_size = 500000000\r\n\r\n# To enable trimming of huge binaries go to -> web.conf -> general -> enable_trim\r\n# Prevent upload of files that passes upload_max_size?\r\ndo_upload_max_size = no\r\n\r\n[processing]\r\n# Set the maximum size of analyses generated files to process. This is used\r\n# to avoid the processing of big files which may take a lot of processing\r\n# time. The value is expressed in bytes, by default 200MB.\r\nanalysis_size_limit = 200000000\r\n\r\n# Enable or disable DNS lookups.\r\nresolve_dns = on\r\n\r\n# Enable or disable reverse DNS lookups\r\n# This information currently is not displayed in the web interface\r\nreverse_dns = off\r\n\r\n# Enable PCAP sorting, needed for the connection content view in the web interface.\r\nsort_pcap = on\r\n\r\n[database]\r\n# Specify the database connection string.\r\n# Examples, see documentation for more:\r\n# sqlite:///foo.db\r\n# postgresql://foo:bar@localhost:5432/mydatabase\r\n# mysql://foo:bar@localhost/mydatabase\r\n# If empty, default is a SQLite in db/cuckoo.db.\r\n# SQLite doens't support database upgrades!\r\n# For production we strongly suggest go with PostgreSQL\r\nconnection = postgresql://cape:SuperPuperSecret@localhost:5432/cape\r\n# If you use PostgreSQL: SSL mode\r\n# https://www.postgresql.org/docs/current/libpq-ssl.html#LIBPQ-SSL-SSLMODE-STATEMENTS\r\npsql_ssl_mode = disable\r\n\r\n# Database connection timeout in seconds.\r\n# If empty, default is set to 60 seconds.\r\ntimeout =\r\n\r\n# Log all SQL statements issued to the database.\r\nlog_statements = off\r\n\r\n[timeouts]\r\n# Set the default analysis timeout expressed in seconds. This value will be\r\n# used to define after how many seconds the analysis will terminate unless\r\n# otherwise specified at submission.\r\ndefault = 200\r\n\r\n# Set the critical timeout expressed in (relative!) seconds. It will be added\r\n# to the default timeout above and after this timeout is hit\r\n# Cuckoo will consider the analysis failed and it will shutdown the machine\r\n# no matter what. When this happens the analysis results will most likely\r\n# be lost.\r\ncritical = 60\r\n\r\n# Maximum time to wait for virtual machine status change. For example when\r\n# shutting down a vm. Default is 300 seconds.\r\nvm_state = 300\r\n\r\n[tmpfs]\r\n# only if you using volatility to speedup IO\r\n# mkdir -p /mnt/tmpfs\r\n# mount -t tmpfs -o size=50g ramfs /mnt/tmpfs\r\n# chown cape:cape /mnt/tmpfs\r\n#\r\n# vim /etc/fstab\r\n# tmpfs       /mnt/tmpfs tmpfs   nodev,nosuid,noexec,nodiratime,size=50g   0 0\r\n#\r\n# Add crontab with\r\n# @reboot chown cape:cape /mnt/tmpfs -R\r\nenabled = off\r\npath = /mnt/tmpfs/\r\n# in mb\r\nfreespace = 2000\r\n\r\n[cleaner]\r\n# Invoke cleanup if <= of free space detected. see/set freespace/freespace_processing\r\nenabled = no\r\n# set any value to 0 to disable it. In days\r\nbinaries_days = 5\r\ntmp_days = 5\r\n# Remove analysis folder\r\nanalysis_days = 5\r\n# Delete mongo data\r\nmongo = no\r\n```\r\n**kvm**\r\n\r\n```\r\n[kvm]\r\n# Specify a comma-separated list of available machines to be used. For each\r\n# specified ID you have to define a dedicated section containing the details\r\n# on the respective machine. (E.g. cuckoo1,cuckoo2,cuckoo3)\r\n\r\nmachines = cuckoo1\r\n\r\ninterface = virbr0\r\n# To connect to local or remote host\r\ndsn = qemu:///system\r\n\r\n# To allow copy & paste. For details see example below\r\n[cape1]\r\nlabel = cape1\r\nplatform = windows\r\nip = 192.168.122.105\r\narch = x86\r\n# tags = winxp,acrobat_reader_6\r\n# snapshot = Snapshot1\r\n# resultserver_ip = 192.168.122.101\r\n# reserved = no\r\n\r\n[cuckoo1]\r\n# Specify the label name of the current machine as specified in your\r\n# libvirt configuration.\r\nlabel = win10\r\n\r\n# Specify the operating system platform used by current machine\r\n# [windows/darwin/linux].\r\nplatform = windows\r\n\r\n# Specify the IP address of the current virtual machine. Make sure that the\r\n# IP address is valid and that the host machine is able to reach it. If not,\r\n# the analysis will fail. You may want to configure your network settings in\r\n# /etc/libvirt/<hypervisor>/networks/\r\nip = 192.168.122.127\r\n\r\n# Specify tags to display\r\n# Tags may be used to specify on which guest machines a sample should be run\r\n# NOTE - One of the following OS version tags MUST be included for Windows VMs:\r\n# winxp,win7, win10, win11\r\n# Some samples will only detonate on specific versions of Windows (see web.conf packages for more info)\r\n# Example: MSIX - Windows >= 10\r\n# tags = winxp,acrobat_reader_6\r\n\r\n# (Optional) Specify the snapshot name to use. If you do not specify a snapshot\r\n# name, the KVM MachineManager will use the current snapshot.\r\n# Example (Snapshot1 is the snapshot name):\r\n# snapshot = Snapshot1\r\n\r\n# (Optional) Specify the name of the network interface that should be used\r\n# when dumping network traffic from this machine with tcpdump. If specified,\r\n# overrides the default interface specified in auxiliary.conf\r\n# Example (virbr0 is the interface name):\r\n#interface = virbr1\r\n\r\n# (Optional) Specify the IP of the Result Server, as your virtual machine sees it.\r\n# The Result Server will always bind to the address and port specified in cuckoo.conf,\r\n# however you could set up your virtual network to use NAT/PAT, so you can specify here\r\n# the IP address for the Result Server as your machine sees it. If you don't specify an\r\n# address here, the machine will use the default value from cuckoo.conf.\r\n# NOTE: if you set this option you have to set result server IP to 0.0.0.0 in cuckoo.conf.\r\n# Example:\r\n# resultserver_ip = 192.168.122.101\r\n\r\n# (Optional) Specify the port for the Result Server, as your virtual machine sees it.\r\n# The Result Server will always bind to the address and port specified in cuckoo.conf,\r\n# however you could set up your virtual network to use NAT/PAT, so you can specify here\r\n# the port for the Result Server as your machine sees it. If you don't specify a port\r\n# here, the machine will use the default value from cuckoo.conf.\r\n# Example:\r\n# resultserver_port = 2042\r\n\r\n# Set the machine architecture\r\n# Required to auto select proper machine architecture for sample\r\n# x64 or x86\r\narch = x64\r\n\r\n# (Optional) Specify whether or not the machine should be reserved, meaning that it will\r\n# only be used for a detonation if specifically requested by its label.\r\n# reserved = no\r\n```\r\n**routing**\r\n\r\n[routing]\r\n```\r\n\r\n# Enable pcap generation for non live connections?\r\n# If you have huge number of VMs, pcap generation can be a bottleneck\r\nenable_pcap = no\r\n\r\n# Default network routing mode; \"none\", \"internet\", or \"vpn_name\".\r\n# In none mode we don't do any special routing - the VM doesn't have any\r\n# network access (this has been the default actually for quite a while).\r\n# In internet mode by default all the VMs will be routed through the network\r\n# interface configured below (the \"dirty line\").\r\n# And in VPN mode by default the VMs will be routed through the VPN identified\r\n# by the given name of the VPN.\r\n# Note that just like enabling VPN configuration setting this option to\r\n# anything other than \"none\" requires one to run utils/rooter.py as root next\r\n# to the CAPE instance (as it's required for setting up the routing).\r\nroute = internet\r\n\r\n# Network interface that allows a VM to connect to the entire internet, the\r\n# \"dirty line\" so to say. Note that, just like with the VPNs, this will allow\r\n# malicious traffic through your network. So think twice before enabling it.\r\n# (For example, to route all VMs through eth0 by default: \"internet = eth0\").\r\ninternet = none\r\n\r\n# Routing table name/id for \"dirty line\" interface. If \"dirty line\" is\r\n# also default gateway in the system you can leave \"main\" value. Otherwise add\r\n# new routing table by adding \"<id> <name>\" line to /etc/iproute2/rt_tables\r\n# (e.g., \"200 eth0\"). ID and name must be unique across the system (refer to\r\n# /etc/iproute2/rt_tables for existing names and IDs).\r\nrt_table = main\r\n\r\n# When using \"dirty line\", you can reject forwarding to a certain network segment.\r\n# For example, a request targeting 192.168.12.1/24,172.16.22.1/24 will not be\r\n# forwarded, but will be rejected:\r\n# \"reject_segments = 192.168.12.1/24,172.16.22.1/24\"\r\nreject_segments = none\r\n\r\n# When ussing \"dirty line\", you can reject guest access a certain port.\r\n# For example, a request targeting host's port 8000 and 8080 will be rejected:\r\n# \"reject_hostports = 8000,8080\"\r\nreject_hostports = none\r\n\r\n# To route traffic through multiple network interfaces CAPE uses\r\n# Policy Routing with separate routing table for each output interface\r\n# (VPN or \"dirty line\"). If this option is enabled CAPE on start will try\r\n# to automatically initialise routing tables by copying routing entries from\r\n# main routing table to the new routing tables. Depending on your network/vpn\r\n# configuration this might not be sufficient. In such case you would need to\r\n# initialise routing tables manually. Note that enabling this option won't\r\n# affect main routing table.\r\nauto_rt = no\r\n\r\n# The drop route basically drops any outgoing network (except for CAPE\r\n# traffic) whereas the regular none route still allows a VM to access its own\r\n# subnet (e.g., 192.168.122.1/24). It is disabled by default as it does require\r\n# the optional rooter to run (unlike the none route, where literally nothing\r\n# happens). One can either explicitly enable the drop route or if the rooter\r\n# is enabled anyway, it is automatically enabled.\r\ndrop = no\r\n\r\n# Should check if the inteface is up\r\nverify_interface = yes\r\n\r\n# Should check if rt_table exists before initializing\r\nverify_rt_table = yes\r\n\r\n[inetsim]\r\n# Inetsim quick deploy, chose your vm manager if is not kvm\r\n# wget https://googledrive.com/host/0B6fULLT_NpxMQ1Rrb1drdW42SkE/remnux-6.0-ova-public.ova\r\n# tar xvf remnux-6.0-ova-public.ova\r\n# qemu-img convert -O qcow2 REMnuxV6-disk1.vmdk remnux.qcow2\r\n\r\nenabled = no\r\nserver = 192.168.122.1\r\ndnsport = 53\r\ninterface = virbr0\r\n# Redirect TCP ports (should we also support UDP?). If specified, this should\r\n# represent whitespace-separated src:dst pairs. E.g., \"80:8080 443:8080\" will\r\n# redirect all 80/443 traffic to 8080 on the specified InetSim host.\r\n# Source port range redirection is also supported. E.g., \"996-2041:80\" will\r\n# redirect all traffic directed at ports between 996 and 2041 inclusive to port 80\r\n# on the specified InetSim host.\r\nports =\r\n\r\n\r\n[tor]\r\nenabled = no\r\ndnsport = 5353\r\nproxyport = 9040\r\ninterface = virbr1\r\n\r\n[vpn]\r\n# By default we disable VPN support as it requires running utils/rooter.py as\r\n# root next to cuckoo.py (which should run as regular user).\r\nenabled = no\r\n\r\n# select one of the configured vpns randomly\r\nrandom_vpn = no\r\n\r\n# Comma-separated list of the available VPNs.\r\nvpns = vpn0\r\n\r\n[vpn0]\r\n# Name of this VPN. The name is represented by the filepath to the\r\n# configuration file, e.g., cuckoo would represent /etc/openvpn/cuckoo.conf\r\n# Note that you can't assign the names \"none\" and \"internet\" as those would\r\n# conflict with the routing section in cuckoo.conf.\r\nname = vpn0\r\n\r\n# The description of this VPN which will be displayed in the web interface.\r\n# Can be used to for example describe the country where this VPN ends up.\r\ndescription = openvpn_tunnel\r\n\r\n# The tun device hardcoded for this VPN. Each VPN *must* be configured to use\r\n# a hardcoded/persistent tun device by explicitly adding the line \"dev tunX\"\r\n# to its configuration (e.g., /etc/openvpn/vpn1.conf) where X in tunX is a\r\n# unique number between 0 and your lucky number of choice.\r\ninterface = tun0\r\n\r\n# Routing table name/id for this VPN. If table name is used it *must* be\r\n# added to /etc/iproute2/rt_tables as \"<id> <name>\" line (e.g., \"201 tun0\").\r\n# ID and name must be unique across the system (refer /etc/iproute2/rt_tables\r\n# for existing names and IDs).\r\nrt_table = tun0\r\n\r\n\r\n[socks5]\r\n# By default we disable socks5 support as it requires running utils/rooter.py as\r\n# root next to cuckoo.py (which should run as regular user).\r\nenabled = no\r\n\r\n# select one of the configured socks5 proxies randomly\r\nrandom_socks5 = no\r\n\r\n# Comma-separated list of the available proxies.\r\nproxies = socks_ch\r\n\r\n[socks_ch]\r\nname = ch_socks\r\ndescription = ch_socks\r\nproxyport = 5008\r\ndnsport = 10053\r\n```\r\n\r\n## Failure Logs\r\n\r\ncuckoo log\r\n```\r\n2024-04-21 09:30:24,739 [lib.cuckoo.core.scheduler] INFO: Using \"kvm\" machine manager with max_analysis_count=0, max_machines_count=10, and max_vmstartup_count=5\r\n2024-04-21 09:30:24,744 [lib.cuckoo.core.scheduler] INFO: Loaded 1 machine/s\r\n2024-04-21 09:30:24,748 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks\r\n2024-04-21 09:36:27,688 [lib.cuckoo.core.scheduler] ERROR: Task #1: Analysis results folder already exists at path '/opt/CAPEv2/storage/analyses/1', analysis aborted\r\n2024-04-21 09:36:27,716 [lib.cuckoo.core.scheduler] INFO: Task #1: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_51n1fona/rfqmemdump.exe'\r\n2024-04-21 09:36:27,717 [lib.cuckoo.core.scheduler] INFO: Task #1: analysis procedure completed\r\n```\r\nprocess log\r\n```\r\n2024-04-21 09:36:46,886 [Task 1] [modules.processing.analysisinfo] CRITICAL: Failed to get start/end time from Task\r\n2024-04-21 09:36:46,904 [Task 1] [modules.processing.behavior] WARNING: Analysis results folder does not exist at path \"/opt/CAPEv2/storage/analyses/1/logs\"\r\n2024-04-21 09:36:46,907 [Task 1] [lib.cuckoo.core.plugins] INFO: Logs folder doesn't exist, maybe something with with analyzer folder, any change?\r\n```\r\n\r\nCan anyone help me?\r\n\r\n\r\n\nComment: Task #1: Analysis results folder already exists at path\r\n'/opt/CAPEv2/storage/analyses/1', analysis aborted\r\n\r\n\r\nthats all, you didn-t clean properly you cape\r\n\r\n\r\n\u043d\u0434, 21 \u043a\u0432\u0456\u0442. 2024\u202f\u0440. \u043e 12:14 br0pi ***@***.***> \u043f\u0438\u0448\u0435:\r\n\r\n> Expected Behavior\r\n>\r\n> Along with static analysis i also expect also behavioral and network\r\n> analysis, but got no result. I set up a win10 vm to kvm as the guide\r\n> suggested.\r\n> Current Behavior\r\n>\r\n> I got only static analysis. it seems that the analysis is not started in\r\n> the win10 virtual machine.\r\n> Steps to Reproduce\r\n>\r\n>    1. i submitted sample to win10 VM with this command\r\n>\r\n> sudo -u cape poetry run python utils/submit.py --machine win10 /tmp/rfqmemdump.exe\r\n>\r\n>\r\n>    2. i got static analysis\r\n>    3. no result for behavioral and network analysis even with win10\r\n>    machine up and running and even if a got this message Success: File\r\n>    \"/tmp/rfqmemdump.exe\" added as task with ID 1\r\n>    4. i found same error in the log file as reported below\r\n>\r\n> Context\r\n>\r\n> Sorry if i messed up with config files, btw i tried to following\r\n> documentation in every part. I also tried to change the network\r\n> configuration option from hostonly to nat, modifying the routing and cuckoo\r\n> configurations, but no luck. the config files:\r\n>\r\n> *cuckoo*\r\n>\r\n>\r\n> [cuckoo]\r\n>\r\n> # Which category of tasks do you want to analyze?\r\n> categories = static, pcap, url, file\r\n>\r\n> # If turned on, Cuckoo will delete the original file after its analysis\r\n> # has been completed.\r\n> delete_original = off\r\n>\r\n> # Archives are not deleted by default, as it extracts and \"original file\" become extracted file\r\n> delete_archive = on\r\n>\r\n> # If turned on, Cuckoo will delete the copy of the original file in the\r\n> # local binaries repository after the analysis has finished. (On *nix this\r\n> # will also invalidate the file called \"binary\" in each analysis directory,\r\n> # as this is a symlink.)\r\n> delete_bin_copy = off\r\n>\r\n> # Specify the name of the machinery module to use, this module will\r\n> # define the interaction between Cuckoo and your virtualization software\r\n> # of choice.\r\n> machinery = kvm\r\n>\r\n> # Enable screenshots of analysis machines while running.\r\n> machinery_screenshots = off\r\n>\r\n> # Specify if a scaling bounded semaphore should be used by the scheduler for tasking the VMs.\r\n> # This is only applicable to auto-scaling machineries such as Azure and AWS.\r\n> # There is a specific configuration key in each machinery that is used to initialize the semaphore.\r\n> # For Azure, this configuration key is \"total_machines_limit\"\r\n> # For AWS, this configuration key is \"dynamic_machines_limit\"\r\n> scaling_semaphore = off\r\n> # A configurable wait time between updating the limit value of the scaling bounded semaphore\r\n> scaling_semaphore_update_timer = 10\r\n> # Allow more than one task scheduled to be assigned at once for better scaling\r\n> # A switch to allow batch task assignment, a method that can more efficiently assign tasks to available machines\r\n> batch_scheduling = off\r\n> # The maximum number of tasks assigned to machines per batch, optimal value dependent on deployment\r\n> max_batch_count = 20\r\n>\r\n> # Enable creation of memory dump of the analysis machine before shutting\r\n> # down. Even if turned off, this functionality can also be enabled at\r\n> # submission. Currently available for: VirtualBox and libvirt modules (KVM).\r\n> memory_dump = off\r\n>\r\n> # When the timeout of an analysis is hit, the VM is just killed by default.\r\n> # For some long-running setups it might be interesting to terminate the\r\n> # moinitored processes before killing the VM so that connections are closed.\r\n> terminate_processes = off\r\n>\r\n> # Enable automatically re-schedule of \"broken\" tasks each startup.\r\n> # Each task found in status \"processing\" is re-queued for analysis.\r\n> reschedule = off\r\n>\r\n> # Fail \"unserviceable\" tasks as they are queued.\r\n> # Any task found that will never be analyzed based on the available analysis machines\r\n> # will have its status set to \"failed\".\r\n> fail_unserviceable = on\r\n>\r\n> # Limit the amount of analysis jobs a Cuckoo process goes through.\r\n> # This can be used together with a watchdog to mitigate risk of memory leaks.\r\n> max_analysis_count = 0\r\n>\r\n> # Limit the number of concurrently executing analysis machines.\r\n> # This may be useful on systems with limited resources.\r\n> # Set to 0 to disable any limits.\r\n> max_machines_count = 10\r\n>\r\n> # Limit the amount of VMs that are allowed to start in parallel. Generally\r\n> # speaking starting the VMs is one of the more CPU intensive parts of the\r\n> # actual analysis. This option tries to avoid maxing out the CPU completely.\r\n> # This configuration option is only relevant for machineries that have a set\r\n> # amount of VMs and are restricted by CPU usage.\r\n> # If you are using an auto-scaling machinery such as Azure or AWS,\r\n> # set this value to 0.\r\n> max_vmstartup_count = 5\r\n>\r\n> # Minimum amount of free space (in MB) available before starting a new task.\r\n> # This tries to avoid failing an analysis because the reports can't be written\r\n> # due out-of-diskspace errors. Setting this value to 0 disables the check.\r\n> # (Note: this feature is currently not supported under Windows.)\r\n> freespace = 0\r\n> # Process tasks, but not reach out of memory\r\n> freespace_processing = 15000\r\n>\r\n> # Temporary directory containing the files uploaded through Cuckoo interfaces\r\n> # (web.py, api.py, Django web interface).\r\n> tmppath = /tmp\r\n>\r\n> # Delta in days from current time to set the guest clocks to for file analyses\r\n> # A negative value sets the clock back, a positive value sets it forward.\r\n> # The default of 0 disables this option\r\n> # Note that this can still be overridden by the per-analysis clock setting\r\n> # and it is not performed by default for URL analysis as it will generally\r\n> # result in SSL errors\r\n> daydelta = 0\r\n>\r\n> # Path to the unix socket for running root commands.\r\n> rooter = /tmp/cuckoo-rooter\r\n>\r\n> # Enable if you want to see a DEBUG log periodically containing backlog of pending tasks, locked vs unlocked machines.\r\n> # NOTE: Enabling this feature adds 4 database calls every 10 seconds.\r\n> periodic_log = off\r\n>\r\n> # Max filename length for submissions, before truncation. 196 is arbitrary.\r\n> max_len = 196\r\n>\r\n> # If it is greater than this, call truncate the filename further for sanitizing purposes.\r\n> # Length truncated to is controlled by sanitize_to_len.\r\n> #\r\n> # This is to prevent long filenames such as files named by hash.\r\n> sanitize_len = 32\r\n> sanitize_to_len = 24\r\n>\r\n> [resultserver]\r\n> # The Result Server is used to receive in real time the behavioral logs\r\n> # produced by the analyzer.\r\n> # Specify the IP address of the host. The analysis machines should be able\r\n> # to contact the host through such address, so make sure it's valid.\r\n> # NOTE: if you set resultserver IP to 0.0.0.0 you have to set the option\r\n> # `resultserver_ip` for all your virtual machines in machinery configuration.\r\n> ip = 192.168.1.39\r\n>\r\n> # Specify a port number to bind the result server on.\r\n> port = 2042\r\n>\r\n> # Force the port chosen above, don't try another one (we can select another\r\n> # port dynamically if we can not bind this one, but that is not an option\r\n> # in some setups)\r\n> force_port = yes\r\n>\r\n> pool_size = 0\r\n>\r\n> # Should the server write the legacy CSV format?\r\n> # (if you have any custom processing on those, switch this on)\r\n> store_csvs = off\r\n>\r\n> # Maximum size of uploaded files from VM (screenshots, dropped files, log)\r\n> # The value is expressed in bytes, by default 100MB.\r\n> upload_max_size = 500000000\r\n>\r\n> # To enable trimming of huge binaries go to -> web.conf -> general -> enable_trim\r\n> # Prevent upload of files that passes upload_max_size?\r\n> do_upload_max_size = no\r\n>\r\n> [processing]\r\n> # Set the maximum size of analyses generated files to process. This is used\r\n> # to avoid the processing of big files which may take a lot of processing\r\n> # time. The value is expressed in bytes, by default 200MB.\r\n> analysis_size_limit = 200000000\r\n>\r\n> # Enable or disable DNS lookups.\r\n> resolve_dns = on\r\n>\r\n> # Enable or disable reverse DNS lookups\r\n> # This information currently is not displayed in the web interface\r\n> reverse_dns = off\r\n>\r\n> # Enable PCAP sorting, needed for the connection content view in the web interface.\r\n> sort_pcap = on\r\n>\r\n> [database]\r\n> # Specify the database connection string.\r\n> # Examples, see documentation for more:\r\n> # sqlite:///foo.db\r\n> # ***@***.***:5432/mydatabase\r\n> # ***@***.***/mydatabase\r\n> # If empty, default is a SQLite in db/cuckoo.db.\r\n> # SQLite doens't support database upgrades!\r\n> # For production we strongly suggest go with PostgreSQL\r\n> connection = ***@***.***:5432/cape\r\n> # If you use PostgreSQL: SSL mode\r\n> # https://www.postgresql.org/docs/current/libpq-ssl.html#LIBPQ-SSL-SSLMODE-STATEMENTS\r\n> psql_ssl_mode = disable\r\n>\r\n> # Database connection timeout in seconds.\r\n> # If empty, default is set to 60 seconds.\r\n> timeout =\r\n>\r\n> # Log all SQL statements issued to the database.\r\n> log_statements = off\r\n>\r\n> [timeouts]\r\n> # Set the default analysis timeout expressed in seconds. This value will be\r\n> # used to define after how many seconds the analysis will terminate unless\r\n> # otherwise specified at submission.\r\n> default = 200\r\n>\r\n> # Set the critical timeout expressed in (relative!) seconds. It will be added\r\n> # to the default timeout above and after this timeout is hit\r\n> # Cuckoo will consider the analysis failed and it will shutdown the machine\r\n> # no matter what. When this happens the analysis results will most likely\r\n> # be lost.\r\n> critical = 60\r\n>\r\n> # Maximum time to wait for virtual machine status change. For example when\r\n> # shutting down a vm. Default is 300 seconds.\r\n> vm_state = 300\r\n>\r\n> [tmpfs]\r\n> # only if you using volatility to speedup IO\r\n> # mkdir -p /mnt/tmpfs\r\n> # mount -t tmpfs -o size=50g ramfs /mnt/tmpfs\r\n> # chown cape:cape /mnt/tmpfs\r\n> #\r\n> # vim /etc/fstab\r\n> # tmpfs       /mnt/tmpfs tmpfs   nodev,nosuid,noexec,nodiratime,size=50g   0 0\r\n> #\r\n> # Add crontab with\r\n> # @reboot chown cape:cape /mnt/tmpfs -R\r\n> enabled = off\r\n> path = /mnt/tmpfs/\r\n> # in mb\r\n> freespace = 2000\r\n>\r\n> [cleaner]\r\n> # Invoke cleanup if <= of free space detected. see/set freespace/freespace_processing\r\n> enabled = no\r\n> # set any value to 0 to disable it. In days\r\n> binaries_days = 5\r\n> tmp_days = 5\r\n> # Remove analysis folder\r\n> analysis_days = 5\r\n> # Delete mongo data\r\n> mongo = no\r\n>\r\n> *kvm*\r\n>\r\n> [kvm]\r\n> # Specify a comma-separated list of available machines to be used. For each\r\n> # specified ID you have to define a dedicated section containing the details\r\n> # on the respective machine. (E.g. cuckoo1,cuckoo2,cuckoo3)\r\n>\r\n> machines = cuckoo1\r\n>\r\n> interface = virbr0\r\n> # To connect to local or remote host\r\n> dsn = qemu:///system\r\n>\r\n> # To allow copy & paste. For details see example below\r\n> [cape1]\r\n> label = cape1\r\n> platform = windows\r\n> ip = 192.168.122.105\r\n> arch = x86\r\n> # tags = winxp,acrobat_reader_6\r\n> # snapshot = Snapshot1\r\n> # resultserver_ip = 192.168.122.101\r\n> # reserved = no\r\n>\r\n> [cuckoo1]\r\n> # Specify the label name of the current machine as specified in your\r\n> # libvirt configuration.\r\n> label = win10\r\n>\r\n> # Specify the operating system platform used by current machine\r\n> # [windows/darwin/linux].\r\n> platform = windows\r\n>\r\n> # Specify the IP address of the current virtual machine. Make sure that the\r\n> # IP address is valid and that the host machine is able to reach it. If not,\r\n> # the analysis will fail. You may want to configure your network settings in\r\n> # /etc/libvirt/<hypervisor>/networks/\r\n> ip = 192.168.122.127\r\n>\r\n> # Specify tags to display\r\n> # Tags may be used to specify on which guest machines a sample should be run\r\n> # NOTE - One of the following OS version tags MUST be included for Windows VMs:\r\n> # winxp,win7, win10, win11\r\n> # Some samples will only detonate on specific versions of Windows (see web.conf packages for more info)\r\n> # Example: MSIX - Windows >= 10\r\n> # tags = winxp,acrobat_reader_6\r\n>\r\n> # (Optional) Specify the snapshot name to use. If you do not specify a snapshot\r\n> # name, the KVM MachineManager will use the current snapshot.\r\n> # Example (Snapshot1 is the snapshot name):\r\n> # snapshot = Snapshot1\r\n>\r\n> # (Optional) Specify the name of the network interface that should be used\r\n> # when dumping network traffic from this machine with tcpdump. If specified,\r\n> # overrides the default interface specified in auxiliary.conf\r\n> # Example (virbr0 is the interface name):\r\n> #interface = virbr1\r\n>\r\n> # (Optional) Specify the IP of the Result Server, as your virtual machine sees it.\r\n> # The Result Server will always bind to the address and port specified in cuckoo.conf,\r\n> # however you could set up your virtual network to use NAT/PAT, so you can specify here\r\n> # the IP address for the Result Server as your machine sees it. If you don't specify an\r\n> # address here, the machine will use the default value from cuckoo.conf.\r\n> # NOTE: if you set this option you have to set result server IP to 0.0.0.0 in cuckoo.conf.\r\n> # Example:\r\n> # resultserver_ip = 192.168.122.101\r\n>\r\n> # (Optional) Specify the port for the Result Server, as your virtual machine sees it.\r\n> # The Result Server will always bind to the address and port specified in cuckoo.conf,\r\n> # however you could set up your virtual network to use NAT/PAT, so you can specify here\r\n> # the port for the Result Server as your machine sees it. If you don't specify a port\r\n> # here, the machine will use the default value from cuckoo.conf.\r\n> # Example:\r\n> # resultserver_port = 2042\r\n>\r\n> # Set the machine architecture\r\n> # Required to auto select proper machine architecture for sample\r\n> # x64 or x86\r\n> arch = x64\r\n>\r\n> # (Optional) Specify whether or not the machine should be reserved, meaning that it will\r\n> # only be used for a detonation if specifically requested by its label.\r\n> # reserved = no\r\n>\r\n> *routing*\r\n>\r\n> [routing]\r\n>\r\n>\r\n> # Enable pcap generation for non live connections?\r\n> # If you have huge number of VMs, pcap generation can be a bottleneck\r\n> enable_pcap = no\r\n>\r\n> # Default network routing mode; \"none\", \"internet\", or \"vpn_name\".\r\n> # In none mode we don't do any special routing - the VM doesn't have any\r\n> # network access (this has been the default actually for quite a while).\r\n> # In internet mode by default all the VMs will be routed through the network\r\n> # interface configured below (the \"dirty line\").\r\n> # And in VPN mode by default the VMs will be routed through the VPN identified\r\n> # by the given name of the VPN.\r\n> # Note that just like enabling VPN configuration setting this option to\r\n> # anything other than \"none\" requires one to run utils/rooter.py as root next\r\n> # to the CAPE instance (as it's required for setting up the routing).\r\n> route = internet\r\n>\r\n> # Network interface that allows a VM to connect to the entire internet, the\r\n> # \"dirty line\" so to say. Note that, just like with the VPNs, this will allow\r\n> # malicious traffic through your network. So think twice before enabling it.\r\n> # (For example, to route all VMs through eth0 by default: \"internet = eth0\").\r\n> internet = none\r\n>\r\n> # Routing table name/id for \"dirty line\" interface. If \"dirty line\" is\r\n> # also default gateway in the system you can leave \"main\" value. Otherwise add\r\n> # new routing table by adding \"<id> <name>\" line to /etc/iproute2/rt_tables\r\n> # (e.g., \"200 eth0\"). ID and name must be unique across the system (refer to\r\n> # /etc/iproute2/rt_tables for existing names and IDs).\r\n> rt_table = main\r\n>\r\n> # When using \"dirty line\", you can reject forwarding to a certain network segment.\r\n> # For example, a request targeting 192.168.12.1/24,172.16.22.1/24 will not be\r\n> # forwarded, but will be rejected:\r\n> # \"reject_segments = 192.168.12.1/24,172.16.22.1/24\"\r\n> reject_segments = none\r\n>\r\n> # When ussing \"dirty line\", you can reject guest access a certain port.\r\n> # For example, a request targeting host's port 8000 and 8080 will be rejected:\r\n> # \"reject_hostports = 8000,8080\"\r\n> reject_hostports = none\r\n>\r\n> # To route traffic through multiple network interfaces CAPE uses\r\n> # Policy Routing with separate routing table for each output interface\r\n> # (VPN or \"dirty line\"). If this option is enabled CAPE on start will try\r\n> # to automatically initialise routing tables by copying routing entries from\r\n> # main routing table to the new routing tables. Depending on your network/vpn\r\n> # configuration this might not be sufficient. In such case you would need to\r\n> # initialise routing tables manually. Note that enabling this option won't\r\n> # affect main routing table.\r\n> auto_rt = no\r\n>\r\n> # The drop route basically drops any outgoing network (except for CAPE\r\n> # traffic) whereas the regular none route still allows a VM to access its own\r\n> # subnet (e.g., 192.168.122.1/24). It is disabled by default as it does require\r\n> # the optional rooter to run (unlike the none route, where literally nothing\r\n> # happens). One can either explicitly enable the drop route or if the rooter\r\n> # is enabled anyway, it is automatically enabled.\r\n> drop = no\r\n>\r\n> # Should check if the inteface is up\r\n> verify_interface = yes\r\n>\r\n> # Should check if rt_table exists before initializing\r\n> verify_rt_table = yes\r\n>\r\n> [inetsim]\r\n> # Inetsim quick deploy, chose your vm manager if is not kvm\r\n> # wget https://googledrive.com/host/0B6fULLT_NpxMQ1Rrb1drdW42SkE/remnux-6.0-ova-public.ova\r\n> # tar xvf remnux-6.0-ova-public.ova\r\n> # qemu-img convert -O qcow2 REMnuxV6-disk1.vmdk remnux.qcow2\r\n>\r\n> enabled = no\r\n> server = 192.168.122.1\r\n> dnsport = 53\r\n> interface = virbr0\r\n> # Redirect TCP ports (should we also support UDP?). If specified, this should\r\n> # represent whitespace-separated src:dst pairs. E.g., \"80:8080 443:8080\" will\r\n> # redirect all 80/443 traffic to 8080 on the specified InetSim host.\r\n> # Source port range redirection is also supported. E.g., \"996-2041:80\" will\r\n> # redirect all traffic directed at ports between 996 and 2041 inclusive to port 80\r\n> # on the specified InetSim host.\r\n> ports =\r\n>\r\n>\r\n> [tor]\r\n> enabled = no\r\n> dnsport = 5353\r\n> proxyport = 9040\r\n> interface = virbr1\r\n>\r\n> [vpn]\r\n> # By default we disable VPN support as it requires running utils/rooter.py as\r\n> # root next to cuckoo.py (which should run as regular user).\r\n> enabled = no\r\n>\r\n> # select one of the configured vpns randomly\r\n> random_vpn = no\r\n>\r\n> # Comma-separated list of the available VPNs.\r\n> vpns = vpn0\r\n>\r\n> [vpn0]\r\n> # Name of this VPN. The name is represented by the filepath to the\r\n> # configuration file, e.g., cuckoo would represent /etc/openvpn/cuckoo.conf\r\n> # Note that you can't assign the names \"none\" and \"internet\" as those would\r\n> # conflict with the routing section in cuckoo.conf.\r\n> name = vpn0\r\n>\r\n> # The description of this VPN which will be displayed in the web interface.\r\n> # Can be used to for example describe the country where this VPN ends up.\r\n> description = openvpn_tunnel\r\n>\r\n> # The tun device hardcoded for this VPN. Each VPN *must* be configured to use\r\n> # a hardcoded/persistent tun device by explicitly adding the line \"dev tunX\"\r\n> # to its configuration (e.g., /etc/openvpn/vpn1.conf) where X in tunX is a\r\n> # unique number between 0 and your lucky number of choice.\r\n> interface = tun0\r\n>\r\n> # Routing table name/id for this VPN. If table name is used it *must* be\r\n> # added to /etc/iproute2/rt_tables as \"<id> <name>\" line (e.g., \"201 tun0\").\r\n> # ID and name must be unique across the system (refer /etc/iproute2/rt_tables\r\n> # for existing names and IDs).\r\n> rt_table = tun0\r\n>\r\n>\r\n> [socks5]\r\n> # By default we disable socks5 support as it requires running utils/rooter.py as\r\n> # root next to cuckoo.py (which should run as regular user).\r\n> enabled = no\r\n>\r\n> # select one of the configured socks5 proxies randomly\r\n> random_socks5 = no\r\n>\r\n> # Comma-separated list of the available proxies.\r\n> proxies = socks_ch\r\n>\r\n> [socks_ch]\r\n> name = ch_socks\r\n> description = ch_socks\r\n> proxyport = 5008\r\n> dnsport = 10053\r\n>\r\n> Failure Logs\r\n>\r\n> cuckoo log\r\n>\r\n> 2024-04-21 09:30:24,739 [lib.cuckoo.core.scheduler] INFO: Using \"kvm\" machine manager with max_analysis_count=0, max_machines_count=10, and max_vmstartup_count=5\r\n> 2024-04-21 09:30:24,744 [lib.cuckoo.core.scheduler] INFO: Loaded 1 machine/s\r\n> 2024-04-21 09:30:24,748 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks\r\n> 2024-04-21 09:36:27,688 [lib.cuckoo.core.scheduler] ERROR: Task #1: Analysis results folder already exists at path '/opt/CAPEv2/storage/analyses/1', analysis aborted\r\n> 2024-04-21 09:36:27,716 [lib.cuckoo.core.scheduler] INFO: Task #1: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_51n1fona/rfqmemdump.exe'\r\n> 2024-04-21 09:36:27,717 [lib.cuckoo.core.scheduler] INFO: Task #1: analysis procedure completed\r\n>\r\n> process log\r\n>\r\n> 2024-04-21 09:36:46,886 [Task 1] [modules.processing.analysisinfo] CRITICAL: Failed to get start/end time from Task\r\n> 2024-04-21 09:36:46,904 [Task 1] [modules.processing.behavior] WARNING: Analysis results folder does not exist at path \"/opt/CAPEv2/storage/analyses/1/logs\"\r\n> 2024-04-21 09:36:46,907 [Task 1] [lib.cuckoo.core.plugins] INFO: Logs folder doesn't exist, maybe something with with analyzer folder, any change?\r\n>\r\n> Can anyone help me?\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2077>, or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH32HTGGYZJLOLIYOBO3Y6OGRBAVCNFSM6AAAAABGRICY5SVHI2DSMVQWIX3LMV43ASLTON2WKOZSGI2TKMBQGI2DINY>\r\n> .\r\n> You are receiving this because you are subscribed to this thread.Message\r\n> ID: ***@***.***>\r\n>\r\n\nComment: @doomedraven Thanks for the reply... I had an error with `poetry run python cleaners.py --clean` due to a permission denied error when the script tried to remove some pyc files in the __pycache__ folders. So I proceeded to remove those files manually and running the above command was successful. plus i checked postgres and all tasks was deleted. but nevertheless I get some error in process log:\r\n\r\n```\r\n2024-04-22 06:04:08,889 [Task 1] [modules.processing.analysisinfo] CRITICAL: Failed to get start/end time from Task\r\n2024-04-22 06:04:09,001 [Task 1] [modules.processing.behavior] WARNING: Analysis results folder does not exist at path \"/opt/CAPEv2/storage/analyses/1/logs\"\r\n2024-04-22 06:04:09,005 [Task 1] [lib.cuckoo.core.plugins] INFO: Logs folder doesn't exist, maybe something with with analyzer folder, any change?\r\n2024-04-22 06:04:09,228 [Task 1] [lib.cuckoo.core.plugins] ERROR: Failed to run the reporting module \"CAPASummary\": 'NoneType' object has no attribute 'enabled'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 738, in process\r\n    current.run(self.results)\r\n  File \"/opt/CAPEv2/utils/../modules/reporting/flare_capa_summary.py\", line 26, in run\r\n    if HAVE_FLARE_CAPA and self.options.flare_capa_summary.enabled and not self.options.flare_capa_summary.on_demand:\r\nAttributeError: 'NoneType' object has no attribute 'enabled'\r\n\r\n```\r\nand also same error in cuckoo log even if no analysis were already performed:\r\n\r\n```\r\n2024-04-22 05:33:27,587 [lib.cuckoo.core.scheduler] INFO: Using \"kvm\" machine manager with max_analysis_count=0, max_machines_count=10, and max_vmstartup_count=5\r\n2024-04-22 05:33:27,590 [lib.cuckoo.core.scheduler] INFO: Loaded 1 machine/s\r\n2024-04-22 05:33:27,592 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks\r\n2024-04-22 06:04:04,060 [lib.cuckoo.core.scheduler] ERROR: Task #1: Analysis results folder already exists at path '/opt/CAPEv2/storage/analyses/1', analysis aborted\r\n2024-04-22 06:04:04,075 [lib.cuckoo.core.scheduler] INFO: Task #1: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_8kpl83ir/rfqmemdump.exe'\r\n2024-04-22 06:04:04,099 [lib.cuckoo.core.scheduler] INFO: Task #1: analysis procedure completed\r\n```\r\n\r\ncould you please tell me if my configuration files are set correctly? or ther's something i missed?\r\nthanks in advance\r\n\nComment: do you have `conf/processing.conf`?\nComment: @doomedraven i didn't touch processing.config (execpt for vt key) so it is pretty the same as the default file. Anyway  i tried to lunch cape with debug option and i got two error generated by scheduler.py:\r\n\r\n- init storage: `Task #%s: Analysis results folder already exists at path '%s', analysis aborted\", self.task.id, self.storage)` **even if i proceeded to clean cape as i said before** and\r\n\r\n- acquire_machine: `Task #%s: no machine available yet for machine '%s', platform '%s' or tags '%s'. `\r\n\r\ni checked kvm and cuckoo cinfig files many times but no luck\nComment: No, the file does exist in conf folder or is in conf/defaults?\r\n\r\nEl mar, 23 abr 2024, 17:28, br0pi ***@***.***> escribi\u00f3:\r\n\r\n> @doomedraven <https://github.com/doomedraven> i didn't touch\r\n> processing.config (execpt for vt key) so it is pretty the same as the\r\n> default file. Anyway i tried to lunch cape with debug option and i got two\r\n> error generated by scheduler.py:\r\n>\r\n>    -\r\n>\r\n>    init storage: Task #%s: Analysis results folder already exists at path\r\n>    '%s', analysis aborted\", self.task.id, self.storage) *even if i\r\n>    proceeded to clean cape as i said before* and\r\n>    -\r\n>\r\n>    acquire_machine: Task #%s: no machine available yet for machine '%s',\r\n>    platform '%s' or tags '%s'.\r\n>\r\n> i checked kvm and cuckoo many times but no luck\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2077#issuecomment-2072706296>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH36ENAYW4FXLY3KC2ODY6Z42RAVCNFSM6AAAAABGRICY5SVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDANZSG4YDMMRZGY>\r\n> .\r\n> You are receiving this because you were mentioned.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: > No, the file does exist in conf folder or is in conf/defaults? El mar, 23 abr 2024, 17:28, br0pi ***@***.***> escribi\u00f3:\r\n> [\u2026](#)\r\n> @doomedraven <https://github.com/doomedraven> i didn't touch processing.config (execpt for vt key) so it is pretty the same as the default file. Anyway i tried to lunch cape with debug option and i got two error generated by scheduler.py: - init storage: Task #%s: Analysis results folder already exists at path '%s', analysis aborted\", self.task.id, self.storage) *even if i proceeded to clean cape as i said before* and - acquire_machine: Task #%s: no machine available yet for machine '%s', platform '%s' or tags '%s'. i checked kvm and cuckoo many times but no luck \u2014 Reply to this email directly, view it on GitHub <[#2077 (comment)](https://github.com/kevoreilly/CAPEv2/issues/2077#issuecomment-2072706296)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAOFH36ENAYW4FXLY3KC2ODY6Z42RAVCNFSM6AAAAABGRICY5SVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDANZSG4YDMMRZGY> . You are receiving this because you were mentioned.Message ID: ***@***.***>\r\n\r\nIt is under /config: /opt/CAPEv2/config/processing.conf\nComment: config is wrong name, rename folder to conf, I guess that part of the\r\nproblem, but still it should load original default config, I can't properly\r\ncheck this as I'm on phone only those days\r\n\r\nEl mar, 23 abr 2024, 19:30, br0pi ***@***.***> escribi\u00f3:\r\n\r\n> No, the file does exist in conf folder or is in conf/defaults? El mar, 23\r\n> abr 2024, 17:28, br0pi *@*.\r\n>\r\n> *> escribi\u00f3: \u2026 <#m_-6514755220629336508_m_2718037564909705231_>\r\n> @doomedraven <https://github.com/doomedraven>\r\n> https://github.com/doomedraven <https://github.com/doomedraven> i didn't\r\n> touch processing.config (execpt for vt key) so it is pretty the same as the\r\n> default file. Anyway i tried to lunch cape with debug option and i got two\r\n> error generated by scheduler.py: - init storage: Task #%s: Analysis results\r\n> folder already exists at path '%s', analysis aborted\", self.task.id\r\n> <http://self.task.id>, self.storage) even if i proceeded to clean cape as i\r\n> said before and - acquire_machine: Task #%s: no machine available yet for\r\n> machine '%s', platform '%s' or tags '%s'. i checked kvm and cuckoo many\r\n> times but no luck \u2014 Reply to this email directly, view it on GitHub <#2077\r\n> (comment)\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2077#issuecomment-2072706296>>,\r\n> or unsubscribe\r\n> https://github.com/notifications/unsubscribe-auth/AAOFH36ENAYW4FXLY3KC2ODY6Z42RAVCNFSM6AAAAABGRICY5SVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDANZSG4YDMMRZGY\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH36ENAYW4FXLY3KC2ODY6Z42RAVCNFSM6AAAAABGRICY5SVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDANZSG4YDMMRZGY>\r\n> . You are receiving this because you were mentioned.Message ID: @.*>\r\n>\r\n> It is under /config: /opt/CAPEv2/config/processing.conf\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2077#issuecomment-2072992759>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH35E65A4ENNH6MW4WKDY62LC7AVCNFSM6AAAAABGRICY5SVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDANZSHE4TENZVHE>\r\n> .\r\n> You are receiving this because you were mentioned.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: Sorry it was a typo.. it is under conf folder: conf/processing.py... i reproduced clean step again but i got same error:\r\n```\r\n Analysis results folder already exists at path '/opt/CAPEv2/storage/analyses/1', analysis aborted\r\n```\r\nbut the static analysis gets completed anyway. Meanwhile it entering this loop:\r\n  \r\n```\r\n# Starts a loop to acquire a machine on which to run the analysis.\r\n        while True:\r\n            machine_lock.acquire()\r\n\r\n```\r\ngenerates the error `not machinery.availables` as I posted earlier \nComment: You def has some problems with your setup, I would suggest to reinstall\r\n\r\nEl mi\u00e9, 24 abr 2024, 9:49, br0pi ***@***.***> escribi\u00f3:\r\n\r\n> Sorry it was a typo.. it is under conf folder: conf/processing.py... i\r\n> reproduced clean step again but i got same error:\r\n>\r\n>  Analysis results folder already exists at path '/opt/CAPEv2/storage/analyses/1', analysis aborted\r\n>\r\n> but the static analysis gets completed anyway. Meanwhile it entering this\r\n> loop:\r\n>\r\n> # Starts a loop to acquire a machine on which to run the analysis.\r\n>         while True:\r\n>             machine_lock.acquire()\r\n>\r\n>\r\n> generates the error not machinery.availables as I posted earlier\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2077#issuecomment-2074300645>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH35BLMMWIHEQMBN7FZDY65PW7AVCNFSM6AAAAABGRICY5SVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDANZUGMYDANRUGU>\r\n> .\r\n> You are receiving this because you were mentioned.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: I'm having this same exact error on a clean reinstall of CAPE (with my custom config), there seems to be an issue installing the flare-capa module, but even after disabling CAPA everywhere in the config this still happens.\r\n\r\nOn my prod installation which has an older version of CAPE it still works fine with the same config. I couldn't point out when exactly it broke, might have to do with things outside the repo (packages or something like that)\r\n\r\nIn cuckoo.py:\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/155625068/48537c5d-c19d-4c81-a87a-62a7b2b6b384)\r\n\r\nIn process.py:\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/155625068/6392338b-4326-4e6a-b8f0-0b437aeca45a)\r\n\r\nThe analysis goes into processing mode immediately after being launched and has no behavioral/network results.\r\n\r\nThe machine works and the agent is running, and the cape server has connectivity to it (checked with `curl agent_ip:8000`)\nComment: That's interesting, investigation will be delayed as we are at conference and after I'm on vacations \nComment: @dfr-fands Thanks for reply... at least I know it is not a problem with my config files.\r\n@doomedraven I will be waiting for your check.. thanks\nComment: For me the `no machine available yet for machine` is caused by bfce3fdda4803605a8e65bdbbd88cb062e8655d2 and 8ecbf33d84aeb0b23a82017dce0215534b37bb54. Reverting them fixes it for me. The problem is that these commits are skipping the `is_relevant_machine_available()` call that should set the `scheduled` status in the database\r\nhttps://github.com/kevoreilly/CAPEv2/blob/d93258abd35f4dfec4b43a5b228695916615ea69/lib/cuckoo/core/database.py#L908\r\nThat status is checked during `acquire()` and because the label is not set it can't acquire it.\r\nhttps://github.com/kevoreilly/CAPEv2/blob/d93258abd35f4dfec4b43a5b228695916615ea69/lib/cuckoo/core/database.py#L1179-L1180\nComment: oh thank you, there is a typo, \"file\" shouldnt be in that list, i have removed it from there, try to `git pull` and now it should be solved\nComment: It works for me, but the last word is @br0pi 's\nComment: I confirm that it works as expected, thanks to everyone who contributed to this issue.\r\n\r\nBefore I close the case, I would like to ask if anyone can clarify how to get the 4 digits that correspond with real hardware in order to replace the WOOT value on kvm install file. i got dsdt.dat file from acpidump than i ran `iasl -d dsdt.dat` command but I am not so sure that i've identified the correct value. thanks in advance",
+  "Title: Add disable monitor-timeout commands\nBody: disable monitor-timeout\r\nrefer: https://learn.microsoft.com/en-us/windows-hardware/design/device-experiences/powercfg-command-line-options#option_change",
+  "Title: Memory processing module crash\nBody: ## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I did read the README!\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nI enabled memory processing and many options in memory.conf. When a sample is analysed, the memory dmp file is properly stored on the server but I can't run the Volatility. \r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\n# Failure Information (for bugs)\r\n\r\n```\r\n2024-04-19 13:10:20,044 [root] INFO: Processing analysis data for Task #12\r\n2024-04-19 13:12:29,587 [Task 12] [root] ERROR: Generic error executing volatility\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../modules/processing/memory.py\", line 346, in run\r\n    results = vol.run()\r\n  File \"/opt/CAPEv2/utils/../modules/processing/memory.py\", line 277, in run\r\n    self.do_strings()\r\n  File \"/opt/CAPEv2/utils/../modules/processing/memory.py\", line 312, in do_strings\r\n    _ = Path(f\"{self.memfile}.strings\").write_bytes(b\"\\n\".join(strings))\r\nMemoryError\r\n2024-04-19 13:12:29,602 [Task 12] [lib.cuckoo.core.plugins] ERROR: Failed to run the processing module \"Memory\": 'NoneType' object has no attribute 'delete_memdump_on_exception'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../modules/processing/memory.py\", line 346, in run\r\n    results = vol.run()\r\n  File \"/opt/CAPEv2/utils/../modules/processing/memory.py\", line 277, in run\r\n    self.do_strings()\r\n  File \"/opt/CAPEv2/utils/../modules/processing/memory.py\", line 312, in do_strings\r\n    _ = Path(f\"{self.memfile}.strings\").write_bytes(b\"\\n\".join(strings))\r\nMemoryError\r\n```\r\n## Steps to Reproduce\r\n\r\n## Context\r\n\r\nStandard fresh setup... Reinstalled my CAPE instance from scratch!\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       |` 4234f86d15077c7b8074fdcc09b08af4fdf9f932`\r\n| OS version       | Ubuntu 22.04, Windows 7 guest\r\n\r\n## Failure Logs\r\n\nComment: hey, `delete_memdump_on_exception` is strange i will get a look on botconf, but  about memory error according to google is that you don't have enough ram, how much FREE ram does your server has?\nComment: Oh my god, I missed the \"MemoryError\"... It should not be a problem from a server memory point of view. Will check deeper. Going to Botconf?\nComment: Yep, all cape team and few core contributes coming, you will be around too\r\nright?\r\n\r\nEl lun, 22 abr 2024, 14:42, Xavier Mertens ***@***.***>\r\nescribi\u00f3:\r\n\r\n> Oh my god, I missed the \"MemoryError\"... It should not be a problem from a\r\n> server memory point of view. Will check deeper. Going to Botconf?\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2075#issuecomment-2069300001>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3YCPQMQG4OXH7PXOSTY6UAUJAVCNFSM6AAAAABGPF3SFSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDANRZGMYDAMBQGE>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: Flying to Nice today! See you there! Will be happy to have some beers with you!\nComment: Yep, see you soon, have a nice flight\r\n\r\nEl mar, 23 abr 2024, 7:24, Xavier Mertens ***@***.***>\r\nescribi\u00f3:\r\n\r\n> Flying to Nice today! See you there! Will be happy to have some beers with\r\n> you!\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2075#issuecomment-2071433052>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH357B5ZCMDMKIPDW7BLY6XWAHAVCNFSM6AAAAABGPF3SFSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDANZRGQZTGMBVGI>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n",
+  "Title: Update disable firewall command\nBody: This link says that we should use advfirewall rather than firewall:  \r\nhttps://learn.microsoft.com/en-us/troubleshoot/windows-server/networking/netsh-advfirewall-firewall-control-firewall-behavior\nComment: tnx",
+  "Title: [cuckoo] Cuckoo fails to start: AttributeError: 'Scheduler' object has no attribute 'task'\nBody: ```\r\n$ sudo -u cape /usr/bin/python3 -m poetry run python cuckoo.py -d\r\n...\r\n2024-04-18 10:54:38,659 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/cuckoo.py\", line 139, in <module>\r\n    cuckoo_main(max_analysis_count=args.max_analysis_count)\r\n  File \"/opt/CAPEv2/cuckoo.py\", line 100, in cuckoo_main\r\n    sched.start()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 1123, in start\r\n    if self.task.category in (\"file\", \"pcap\", \"static\"):\r\nAttributeError: 'Scheduler' object has no attribute 'task'\r\n```\r\n\r\nSeems related to this commit https://github.com/kevoreilly/CAPEv2/commit/bfce3fdda4803605a8e65bdbbd88cb062e8655d2 . `task` is not a class variable, its a local variable and therefore the line should be:\r\n```\r\nif task.category in (\"file\", \"pcap\", \"static\"):\r\n```\r\n\r\nAfter changing that cuckoo starts normally.\nComment: was working on that right now, pushed that, thanks for headups",
+  "Title: Url for sysmon.data on linux\nBody: Direct access to download sysmon data directly from Linux analysis, alternatively it might be possible to replace evtx.zip with its contents and store it in the evtx directory so that it can be accessed via the API.",
+  "Title: Getting flooded with logs\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I did read the README!\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\nnormal capev2 logs\r\n\r\n\r\n# Current Behavior\r\n`2024-04-18 14:51:36,986 [sqlalchemy.engine.Engine] INFO: [cached since 67.61s ago] {}\r\n2024-04-18 14:51:36,987 [sqlalchemy.engine.Engine] INFO: ROLLBACK\r\n2024-04-18 14:51:36,991 [sqlalchemy.engine.Engine] INFO: BEGIN (implicit)\r\n2024-04-18 14:51:36,991 [sqlalchemy.engine.Engine] INFO: SELECT machines.id AS machines_id, machines.name AS machines_name, machines.label AS machines_label, machines.arch AS machines_arch, machines.ip AS machines_ip, machines.platform AS machines_platform, machines.interface AS machines_interface, machines.snapshot AS machines_snapshot, machines.locked AS machines_locked, machines.locked_changed_on AS machines_locked_changed_on, machines.status AS machines_status, machines.status_changed_on AS machines_status_changed_on, machines.resultserver_ip AS machines_resultserver_ip, machines.resultserver_port AS machines_resultserver_port, machines.reserved AS machines_reserved\r\nFROM machines\r\nWHERE machines.label = %(label_1)s\r\n LIMIT %(param_1)s\r\n2024-04-18 14:51:36,992 [sqlalchemy.engine.Engine] INFO: [cached since 67.6s ago] {'label_1': 'cuckoo1', 'param_1': 1}\r\n2024-04-18 14:51:36,994 [sqlalchemy.engine.Engine] INFO: UPDATE machines SET status_changed_on=%(status_changed_on)s WHERE machines.id = %(machines_id)s\r\n2024-04-18 14:51:36,994 [sqlalchemy.engine.Engine] INFO: [generated in 0.00032s] {'status_changed_on': datetime.datetime(2024, 4, 18, 14, 51, 36, 993058), 'machines_id': 93}\r\n2024-04-18 14:51:36,997 [sqlalchemy.engine.Engine] INFO: DELETE FROM tags WHERE NOT (EXISTS (SELECT 1\r\nFROM tasks_tags, tasks\r\nWHERE tags.id = tasks_tags.tag_id AND tasks.id = tasks_tags.task_id)) AND NOT (EXISTS (SELECT 1\r\nFROM machines_tags, machines\r\nWHERE tags.id = machines_tags.tag_id AND machines.id = machines_tags.machine_id))\r\n2024-04-18 14:51:36,997 [sqlalchemy.engine.Engine] INFO: [cached since 67.63s ago] {}\r\n2024-04-18 14:51:36,998 [sqlalchemy.engine.Engine] INFO: COMMIT\r\n2024-04-18 14:51:37,000 [sqlalchemy.engine.Engine] INFO: BEGIN (implicit)\r\n2024-04-18 14:51:37,000 [sqlalchemy.engine.Engine] INFO: SELECT machines.id, machines.name, machines.label, machines.arch, machines.ip, machines.platform, machines.interface, machines.snapshot, machines.locked, machines.locked_changed_on, machines.status, machines.status_changed_on, machines.resultserver_ip, machines.resultserver_port, machines.reserved\r\nFROM machines\r\nWHERE machines.id = %(pk_1)s\r\n2024-04-18 14:51:37,001 [sqlalchemy.engine.Engine] INFO: [cached since 67.6s ago] {'pk_1': 93}\r\n2024-04-18 14:51:37,002 [sqlalchemy.engine.Engine] INFO: ROLLBACK\r\n`\r\n\r\n## Steps to Reproduce\r\nstart cape services\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. starting cape service\r\n2. check logs\r\n3. flooded by logs ^^\r\n\r\n## Context\r\n\r\nubuntu 22.04\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: hey, do you have this off? in cuckoo.conf\r\n```\r\n# Log all SQL statements issued to the database.\r\nlog_statements = off\r\n```\nComment: thanks for the help ",
+  "Title: Interactive mode: inject desktop (explorer) process\nBody: None",
+  "Title: Customisable ignore noisy files as drop files on Linux\nBody: Using sysmon together with strace will generate unnecessary files from sysmon's load and possibly other related files.\r\n\r\nWith this exclusion list, it can be configured as needed to clean up the scan result as discarded files.",
+  "Title: no need to shutil.move to tmp\nBody: None",
+  "Title: chore(deps): bump gunicorn from 20.1.0 to 22.0.0\nBody: Bumps [gunicorn](https://github.com/benoitc/gunicorn) from 20.1.0 to 22.0.0.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a href=\"https://github.com/benoitc/gunicorn/releases\">gunicorn's releases</a>.</em></p>\n<blockquote>\n<h2>Gunicorn 22.0 has been released</h2>\n<p><strong>Gunicorn 22.0.0 has been released.</strong> This version fix the numerous security vulnerabilities. You're invited to upgrade asap your own installation.</p>\n<p>Changes:</p>\n<pre><code>22.0.0 - 2024-04-17\n===================\n<ul>\n<li>use <code>utime</code> to notify workers liveness</li>\n<li>migrate setup to pyproject.toml</li>\n<li>fix numerous security vulnerabilities in HTTP parser (closing some request smuggling vectors)</li>\n<li>parsing additional requests is no longer attempted past unsupported request framing</li>\n<li>on HTTP versions &lt; 1.1 support for chunked transfer is refused (only used in exploits)</li>\n<li>requests conflicting configured or passed SCRIPT_NAME now produce a verbose error</li>\n<li>Trailer fields are no longer inspected for headers indicating secure scheme</li>\n<li>support Python 3.12</li>\n</ul>\n<p>** Breaking changes **</p>\n<ul>\n<li>minimum version is Python 3.7</li>\n<li>the limitations on valid characters in the HTTP method have been bounded to Internet Standards</li>\n<li>requests specifying unsupported transfer coding (order) are refused by default (rare)</li>\n<li>HTTP methods are no longer casefolded by default (IANA method registry contains none affected)</li>\n<li>HTTP methods containing the number sign (#) are no longer accepted by default (rare)</li>\n<li>HTTP versions &lt; 1.0 or &gt;= 2.0 are no longer accepted by default (rare, only HTTP/1.1 is supported)</li>\n<li>HTTP versions consisting of multiple digits or containing a prefix/suffix are no longer accepted</li>\n<li>HTTP header field names Gunicorn cannot safely map to variables are silently dropped, as in other software</li>\n<li>HTTP headers with empty field name are refused by default (no legitimate use cases, used in exploits)</li>\n<li>requests with both Transfer-Encoding and Content-Length are refused by default (such a message might indicate an attempt to perform request smuggling)</li>\n<li>empty transfer codings are no longer permitted (reportedly seen with really old &amp; broken proxies)</li>\n</ul>\n<p>** SECURITY **</p>\n<ul>\n<li>fix CVE-2024-1135\n</code></pre></li>\n</ul>\n<ol>\n<li>Documentation is available there: <a href=\"https://docs.gunicorn.org/en/stable/news.html\">https://docs.gunicorn.org/en/stable/news.html</a></li>\n<li>Packages: <a href=\"https://pypi.org/project/gunicorn/\">https://pypi.org/project/gunicorn/</a></li>\n</ol>\n<h2>Gunicorn 21.2.0 has been released</h2>\n<p><strong>Gunicorn 21.2.0 has been released.</strong> This version fix the issue introduced in the threaded worker.</p>\n<p>Changes:</p>\n<pre><code>21.2.0 - 2023-07-19\n===================\nfix thread worker: revert change considering connection as idle .\n&lt;/tr&gt;&lt;/table&gt; \n</code></pre>\n</blockquote>\n<p>... (truncated)</p>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/benoitc/gunicorn/commit/f63d59e4d73a8ee28748d2c700fb81c8780bc419\"><code>f63d59e</code></a> bump to 22.0</li>\n<li><a href=\"https://github.com/benoitc/gunicorn/commit/4ac81e0a1037ba5b570323be7430e09caa233e38\"><code>4ac81e0</code></a> Merge pull request <a href=\"https://redirect.github.com/benoitc/gunicorn/issues/3175\">#3175</a> from e-kwsm/typo</li>\n<li><a href=\"https://github.com/benoitc/gunicorn/commit/401cecfaed85d79236c7a9a1f7d8946b01c466fc\"><code>401cecf</code></a> Merge pull request <a href=\"https://redirect.github.com/benoitc/gunicorn/issues/3179\">#3179</a> from dhdaines/exclude-eventlet-0360</li>\n<li><a href=\"https://github.com/benoitc/gunicorn/commit/0243ec39ef4fc1b479ff4e1659e165f0b980b571\"><code>0243ec3</code></a> fix(deps): exclude eventlet 0.36.0</li>\n<li><a href=\"https://github.com/benoitc/gunicorn/commit/628a0bcb61ef3a211d67dfd68ad1ba161cccb3b8\"><code>628a0bc</code></a> chore: fix typos</li>\n<li><a href=\"https://github.com/benoitc/gunicorn/commit/88fc4a43152039c28096c8ba3eeadb3fbaa4aff9\"><code>88fc4a4</code></a> Merge pull request <a href=\"https://redirect.github.com/benoitc/gunicorn/issues/3131\">#3131</a> from pajod/patch-py12-rebased</li>\n<li><a href=\"https://github.com/benoitc/gunicorn/commit/deae2fc4c5f93bfce59be5363055d4cd4ab1b0b6\"><code>deae2fc</code></a> CI: back off the agressive timeout</li>\n<li><a href=\"https://github.com/benoitc/gunicorn/commit/f4703824c323fe6867dce0e2f11013b8de319353\"><code>f470382</code></a> docs: promise 3.12 compat</li>\n<li><a href=\"https://github.com/benoitc/gunicorn/commit/5e30bfa6b1a3e1f2bde7feb514d1734d28f39231\"><code>5e30bfa</code></a> add changelog to project.urls (updated for PEP621)</li>\n<li><a href=\"https://github.com/benoitc/gunicorn/commit/481c3f9522edc58806a3efc5b49be4f202cc7700\"><code>481c3f9</code></a> remove setup.cfg - overridden by pyproject.toml</li>\n<li>Additional commits viewable in <a href=\"https://github.com/benoitc/gunicorn/compare/20.1.0...22.0.0\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=gunicorn&package-manager=pip&previous-version=20.1.0&new-version=22.0.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Added support for IMDS authentication in the AWS machinery module\nBody: Using a secret and access key directly from an AWS EC2 instance is considered a bad security practice. \r\nIn addition to the option of authenticating using a secret and access key, I have added the option to use IMDS authentication. The machinery module will by default try to perform authentication using the secret and access key. \r\nHowever, if no access and secret key are provided, the boto3 library will attempt to use credentials from the Instance Metadata Service. If the user has attached an IAM role to the instance, it will work just like with the access and secret key.",
+  "Title: Support 7ZIP compression\nBody: None",
+  "Title: support 7z compression and streaming\nBody: None",
+  "Title: chore(deps): bump sqlparse from 0.4.4 to 0.5.0\nBody: Bumps [sqlparse](https://github.com/andialbrecht/sqlparse) from 0.4.4 to 0.5.0.\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/andialbrecht/sqlparse/blob/master/CHANGELOG\">sqlparse's changelog</a>.</em></p>\n<blockquote>\n<h2>Release 0.5.0 (Apr 13, 2024)</h2>\n<p>Notable Changes</p>\n<ul>\n<li>Drop support for Python 3.5, 3.6, and 3.7.</li>\n<li>Python 3.12 is now supported (pr725, by hugovk).</li>\n<li>IMPORTANT: Fixes a potential denial of service attack (DOS) due to recursion\nerror for deeply nested statements. Instead of recursion error a generic\nSQLParseError is raised. See the security advisory for details:\n<a href=\"https://github.com/andialbrecht/sqlparse/security/advisories/GHSA-2m57-hf25-phgg\">https://github.com/andialbrecht/sqlparse/security/advisories/GHSA-2m57-hf25-phgg</a>\nThe vulnerability was discovered by <a href=\"https://github.com/uriyay-jfrog\"><code>@\u200buriyay-jfrog</code></a>. Thanks for reporting!</li>\n</ul>\n<p>Enhancements:</p>\n<ul>\n<li>Splitting statements now allows to remove the semicolon at the end.\nSome database backends love statements without semicolon (issue742).</li>\n<li>Support TypedLiterals in get_parameters (pr649, by Khrol).</li>\n<li>Improve splitting of Transact SQL when using GO keyword (issue762).</li>\n<li>Support for some JSON operators (issue682).</li>\n<li>Improve formatting of statements containing JSON operators (issue542).</li>\n<li>Support for BigQuery and Snowflake keywords (pr699, by griffatrasgo).</li>\n<li>Support parsing of OVER clause (issue701, pr768 by r33s3n6).</li>\n</ul>\n<p>Bug Fixes</p>\n<ul>\n<li>Ignore dunder attributes when creating Tokens (issue672).</li>\n<li>Allow operators to precede dollar-quoted strings (issue763).</li>\n<li>Fix parsing of nested order clauses (issue745, pr746 by john-bodley).</li>\n<li>Thread-safe initialization of Lexer class (issue730).</li>\n<li>Classify TRUNCATE as DDL and GRANT/REVOKE as DCL keywords (based on pr719\nby josuc1, thanks for bringing this up!).</li>\n<li>Fix parsing of PRIMARY KEY (issue740).</li>\n</ul>\n<p>Other</p>\n<ul>\n<li>Optimize performance of matching function (pr799, by admachainz).</li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/andialbrecht/sqlparse/commit/ddbd0ec3592545c914fe71e47118c04582d8bfb0\"><code>ddbd0ec</code></a> Bump version.</li>\n<li><a href=\"https://github.com/andialbrecht/sqlparse/commit/29f2e0a6609ddc1fa248faef1bc41616043c544e\"><code>29f2e0a</code></a> Raise recursion limit for tests.</li>\n<li><a href=\"https://github.com/andialbrecht/sqlparse/commit/b4a39d9850969b4e1d6940d32094ee0b42a2cf03\"><code>b4a39d9</code></a> Raise SQLParseError instead of RecursionError.</li>\n<li><a href=\"https://github.com/andialbrecht/sqlparse/commit/f1bcf2f8a7ddf6854c99990c56ff5394f4981d58\"><code>f1bcf2f</code></a> Update AUHTORS and Changelog.</li>\n<li><a href=\"https://github.com/andialbrecht/sqlparse/commit/e03b74e608b71dd06824c2cb42421c0d790248e3\"><code>e03b74e</code></a> Fix Function.get_parameters(), add Funtion.get_window()</li>\n<li><a href=\"https://github.com/andialbrecht/sqlparse/commit/617b8f6cd3c55bacf2c80130901508518753f7e1\"><code>617b8f6</code></a> Add OVER clause, and group it into Function (fixes <a href=\"https://redirect.github.com/andialbrecht/sqlparse/issues/701\">#701</a>)</li>\n<li><a href=\"https://github.com/andialbrecht/sqlparse/commit/d8f81471cfc2c39ac43128e2a0c8cc67c313cc40\"><code>d8f8147</code></a> Update AUHTORS and Changelog.</li>\n<li><a href=\"https://github.com/andialbrecht/sqlparse/commit/012c9f10c8ddfa47ccf17ead28122492155cf6fc\"><code>012c9f1</code></a> Optimize sqlparse.utils.imt().</li>\n<li><a href=\"https://github.com/andialbrecht/sqlparse/commit/46971e5a804b29e7dbd437155a8ceffab8ef1cd5\"><code>46971e5</code></a> Fix parsing of PRIMARY KEY (fixes <a href=\"https://redirect.github.com/andialbrecht/sqlparse/issues/740\">#740</a>).</li>\n<li><a href=\"https://github.com/andialbrecht/sqlparse/commit/fc4b0beab89c5598d556572cb6db0165affb017b\"><code>fc4b0be</code></a> Code cleanup.</li>\n<li>Additional commits viewable in <a href=\"https://github.com/andialbrecht/sqlparse/compare/0.4.4...0.5.0\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=sqlparse&package-manager=pip&previous-version=0.4.4&new-version=0.5.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Create logszipall for linux strace logs\nBody: None\nComment: thanks",
+  "Title: chore(deps): bump dnspython from 2.1.0 to 2.6.1\nBody: Bumps [dnspython](https://github.com/rthalley/dnspython) from 2.1.0 to 2.6.1.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a href=\"https://github.com/rthalley/dnspython/releases\">dnspython's releases</a>.</em></p>\n<blockquote>\n<h2>dnspython 2.6.1</h2>\n<p>See <a href=\"https://dnspython.readthedocs.io/en/latest/whatsnew.html\">What's New</a> for details.</p>\n<p>This is a bug fix release for 2.6.0 where the &quot;TuDoor&quot; fix erroneously\nsuppressed legitimate Truncated exceptions.  This caused the stub\nresolver to timeout instead of failing over to TCP when a legitimate\ntruncated response was received over UDP.</p>\n<p>This release addresses the potential DoS issue discussed in the\n&quot;TuDoor&quot; paper (CVE-2023-29483).  The dnspython stub resolver is\nvulnerable to a potential DoS if a bad-in-some-way response from the\nright address and port forged by an attacker arrives before a\nlegitimate one on the UDP port dnspython is using for that query.  In\nthis situation, dnspython might switch to querying another resolver or\ngive up entirely, possibly denying service for that resolution.  This\nrelease addresses the issue by adopting the recommended mitigation,\nwhich is ignoring the bad packets and continuing to listen for a\nlegitimate response until the timeout for the query has expired.</p>\n<p>Thank you to all the contributors to this release, and, as usual,\nthanks to my co-maintainers: Tom\u00e1\u0161 K\u0159\u00ed\u017eek, Petr \u0160pa\u010dek, and Brian\nWellington.</p>\n<h2>dnspython 2.6.0</h2>\n<p>See <a href=\"https://dnspython.readthedocs.io/en/latest/whatsnew.html\">What's New</a> for details.</p>\n<p>This release addresses the potential DoS issue discussed in the &quot;TuDoor&quot; paper (CVE-2023-29483).  The dnspython stub resolver is vulnerable to a potential DoS if a bad-in-some-way response from the right address and port forged by an attacker arrives before a legitimate one on the UDP port dnspython is using for that query.  In this situation, dnspython might switch to querying another resolver or give up entirely, possibly denying service for that resolution.  This release addresses the issue by adopting the recommended mitigation, which is ignoring the bad packets and continuing to listen for a legitimate response until the timeout for the query has expired.</p>\n<p>Thank you to all the contributors to this release, and, as usual, thanks to my co-maintainers: Tom\u00e1\u0161 K\u0159\u00ed\u017eek, Petr \u0160pa\u010dek, and Brian Wellington.</p>\n<h2>dnspython 2.5.0</h2>\n<p>See the <a href=\"https://dnspython.readthedocs.io/en/stable/whatsnew.html\">What's New</a> page for a summary of this release.</p>\n<p>Thanks to all the contributors, and, as usual, thanks to my co-maintainers: Tom\u00e1\u0161 K\u0159\u00ed\u017eek, Petr \u0160pa\u010dek, and Brian Wellington.</p>\n<h2>dnspython 2.4.2</h2>\n<p>This is a bug fix release, see the <a href=\"https://dnspython.readthedocs.io/en/stable/whatsnew.html\">What's New</a> page in the documentation for a summary.</p>\n<p>Thanks to the people who reported the bugs and, as usual, thanks to my co-maintainers: Tom\u00e1\u0161 K\u0159\u00ed\u017eek, Petr \u0160pa\u010dek, and Brian Wellington.</p>\n</blockquote>\n</details>\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/rthalley/dnspython/blob/main/doc/whatsnew.rst\">dnspython's changelog</a>.</em></p>\n<blockquote>\n<h2>2.6.1</h2>\n<ul>\n<li>The Tudoor fix ate legitimate Truncated exceptions, preventing the resolver from\nfailing over to TCP and causing the query to timeout <a href=\"https://redirect.github.com/rthalley/dnspython/issues/1053\">#1053</a>.</li>\n</ul>\n<h2>2.6.0</h2>\n<ul>\n<li>\n<p>As mentioned in the &quot;TuDoor&quot; paper and the associated CVE-2023-29483, the dnspython\nstub resolver is vulnerable to a potential DoS if a bad-in-some-way response from the\nright address and port forged by an attacker arrives before a legitimate one on the\nUDP port dnspython is using for that query.</p>\n<p>This release addresses the issue by adopting the recommended mitigation, which is\nignoring the bad packets and continuing to listen for a legitimate response until\nthe timeout for the query has expired.</p>\n</li>\n<li>\n<p>Added support for the NSID EDNS option.</p>\n</li>\n<li>\n<p>Dnspython now looks for version metadata for optional packages and will not\nuse them if they are too old.  This prevents possible exceptions when a\nfeature like DoH is not desired in dnspython, but an old httpx is installed\nalong with dnspython for some other purpose.</p>\n</li>\n<li>\n<p>The DoHNameserver class now allows GET to be used instead of the default POST,\nand also passes source and source_port correctly to the underlying query\nmethods.</p>\n</li>\n</ul>\n<h2>2.5.0</h2>\n<ul>\n<li>\n<p>Dnspython now uses hatchling for builds.</p>\n</li>\n<li>\n<p>Asynchronous destinationless sockets now work on Windows.</p>\n</li>\n<li>\n<p>Cython is no longer supported due to various typing issues.</p>\n</li>\n<li>\n<p>Dnspython now explicitly canonicalizes IPv4 and IPv6 addresses.\nPreviously it was possible for non-canonical IPv6 forms to be stored\nin a AAAA address, which would work correctly but possibly cause\nproblmes if the address were used as a key in a dictionary.</p>\n</li>\n<li>\n<p>The number of messages in a section can be retrieved with\nsection_count().</p>\n</li>\n<li>\n<p>Truncation preferences for messages can be specified.</p>\n</li>\n<li>\n<p>The length of a message can be automatically prepended when\nrendering.</p>\n</li>\n</ul>\n<!-- raw HTML omitted -->\n</blockquote>\n<p>... (truncated)</p>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/rthalley/dnspython/commit/0a742b9658977175663dc30da902342a8c2bacac\"><code>0a742b9</code></a> update CI</li>\n<li><a href=\"https://github.com/rthalley/dnspython/commit/0ea5ad0a4583e1f519b9bcc67cfac381230d9cf2\"><code>0ea5ad0</code></a> The Tudoor fix should not eat valid Truncated exceptions <a href=\"https://redirect.github.com/rthalley/dnspython/issues/1053\">#1053</a> (<a href=\"https://redirect.github.com/rthalley/dnspython/issues/1054\">#1054</a>)</li>\n<li><a href=\"https://github.com/rthalley/dnspython/commit/f12d398a6991dfaad94d7fefaf7e2f55d1fda3cb\"><code>f12d398</code></a> 2.6.1 version prep</li>\n<li><a href=\"https://github.com/rthalley/dnspython/commit/cecb8534f61de16aaa1a1a84eaaeb14dfdf67448\"><code>cecb853</code></a> Further improve CVE fix coverage to 100% for sync and async.</li>\n<li><a href=\"https://github.com/rthalley/dnspython/commit/7952e311d47f6b34f5dc050681001fd34ab60d01\"><code>7952e31</code></a> test IgnoreErrors</li>\n<li><a href=\"https://github.com/rthalley/dnspython/commit/e093299a49967696b1c58b68e4767de5031a3e46\"><code>e093299</code></a> For the Tudoor fix, we also need the UDP nameserver to ignore_unexpected.</li>\n<li><a href=\"https://github.com/rthalley/dnspython/commit/3af9f78142084fff8523bc96b5f8cfd2b909dc18\"><code>3af9f78</code></a> 2.6.0 versioning</li>\n<li><a href=\"https://github.com/rthalley/dnspython/commit/ca63d95143e81975fc3fff4dff87b366dc661371\"><code>ca63d95</code></a> Require cryptography &gt;=41 instead of 42.</li>\n<li><a href=\"https://github.com/rthalley/dnspython/commit/902cbf3fcb11ddfd8625b4a071fe9f592f6fc753\"><code>902cbf3</code></a> Create CODE_OF_CONDUCT.md</li>\n<li><a href=\"https://github.com/rthalley/dnspython/commit/ed9795fa9b39c4a12f5a1a9e0eeea4240d1efb07\"><code>ed9795f</code></a> github contributing and pull request template</li>\n<li>Additional commits viewable in <a href=\"https://github.com/rthalley/dnspython/compare/v2.1.0...v2.6.1\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dnspython&package-manager=pip&previous-version=2.1.0&new-version=2.6.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: feat: ranged task delete for api\nBody: Allow deleting jobs from the API using ranges (easier), and update the documentation to reflect the current option/requirement\nComment: thanks\nComment: \ud83d\udc4c",
+  "Title: fix: allow partial api name, search button does not work, allow space between names\nBody: 1. Allow partial API names:\r\n> NtDelayExecution can now be searched using \"NtDel\" instead. This also resolved the case-sensitive issue ntdelayexecution = NtDelayExecution. \r\n\r\n2. Search button does not work:\r\n> Clicking the physical button did nothing\r\n\r\n3. Allow space between names:\r\n> In case of unintentional spaces in between api names, originally \"xx,xx\" and now allows for \"xx, xx\" as well\nComment: thank you, we had this in todo for so long, but never had time to put prior on this.\nComment: Thank you \ud83d\ude4f ",
+  "Title: chore(deps): bump idna from 3.4 to 3.7\nBody: Bumps [idna](https://github.com/kjd/idna) from 3.4 to 3.7.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a href=\"https://github.com/kjd/idna/releases\">idna's releases</a>.</em></p>\n<blockquote>\n<h2>v3.7</h2>\n<h2>What's Changed</h2>\n<ul>\n<li>Fix issue where specially crafted inputs to encode() could take exceptionally long amount of time to process. [CVE-2024-3651]</li>\n</ul>\n<p>Thanks to Guido Vranken for reporting the issue.</p>\n<p><strong>Full Changelog</strong>: <a href=\"https://github.com/kjd/idna/compare/v3.6...v3.7\">https://github.com/kjd/idna/compare/v3.6...v3.7</a></p>\n</blockquote>\n</details>\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/kjd/idna/blob/master/HISTORY.rst\">idna's changelog</a>.</em></p>\n<blockquote>\n<p>3.7 (2024-04-11)\n++++++++++++++++</p>\n<ul>\n<li>Fix issue where specially crafted inputs to encode() could\ntake exceptionally long amount of time to process. [CVE-2024-3651]</li>\n</ul>\n<p>Thanks to Guido Vranken for reporting the issue.</p>\n<p>3.6 (2023-11-25)\n++++++++++++++++</p>\n<ul>\n<li>Fix regression to include tests in source distribution.</li>\n</ul>\n<p>3.5 (2023-11-24)\n++++++++++++++++</p>\n<ul>\n<li>Update to Unicode 15.1.0</li>\n<li>String codec name is now &quot;idna2008&quot; as overriding the system codec\n&quot;idna&quot; was not working.</li>\n<li>Fix typing error for codec encoding</li>\n<li>&quot;setup.cfg&quot; has been added for this release due to some downstream\nlack of adherence to PEP 517. Should be removed in a future release\nso please prepare accordingly.</li>\n<li>Removed reliance on a symlink for the &quot;idna-data&quot; tool to comport\nwith PEP 517 and the Python Packaging User Guide for sdist archives.</li>\n<li>Added security reporting protocol for project</li>\n</ul>\n<p>Thanks Jon Ribbens, Diogo Teles Sant'Anna, Wu Tingfeng for contributions\nto this release.</p>\n</blockquote>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/kjd/idna/commit/1d365e17e10d72d0b7876316fc7b9ca0eebdd38d\"><code>1d365e1</code></a> Release v3.7</li>\n<li><a href=\"https://github.com/kjd/idna/commit/c1b3154939907fab67c5754346afaebe165ce8e6\"><code>c1b3154</code></a> Merge pull request <a href=\"https://redirect.github.com/kjd/idna/issues/172\">#172</a> from kjd/optimize-contextj</li>\n<li><a href=\"https://github.com/kjd/idna/commit/0394ec76ff022813e770ba1fd89658790ea35623\"><code>0394ec7</code></a> Merge branch 'master' into optimize-contextj</li>\n<li><a href=\"https://github.com/kjd/idna/commit/cd58a23173d2b0a40b95ee680baf3e59e8d33966\"><code>cd58a23</code></a> Merge pull request <a href=\"https://redirect.github.com/kjd/idna/issues/152\">#152</a> from elliotwutingfeng/dev</li>\n<li><a href=\"https://github.com/kjd/idna/commit/5beb28b9dd77912c0dd656d8b0fdba3eb80222e7\"><code>5beb28b</code></a> More efficient resolution of joiner contexts</li>\n<li><a href=\"https://github.com/kjd/idna/commit/1b121483ed04d9576a1291758f537e1318cddc8b\"><code>1b12148</code></a> Update ossf/scorecard-action to v2.3.1</li>\n<li><a href=\"https://github.com/kjd/idna/commit/d516b874c3388047934938a500c7488d52c4e067\"><code>d516b87</code></a> Update Github actions/checkout to v4</li>\n<li><a href=\"https://github.com/kjd/idna/commit/c095c75943413c75ebf8ac74179757031b7f80b7\"><code>c095c75</code></a> Merge branch 'master' into dev</li>\n<li><a href=\"https://github.com/kjd/idna/commit/60a0a4cb61ec6834d74306bd8a1fa46daac94c98\"><code>60a0a4c</code></a> Fix typo in GitHub Actions workflow key</li>\n<li><a href=\"https://github.com/kjd/idna/commit/5918a0ef8034379c2e409ae93ee11d24295bb201\"><code>5918a0e</code></a> Merge branch 'master' into dev</li>\n<li>Additional commits viewable in <a href=\"https://github.com/kjd/idna/compare/v3.4...v3.7\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=idna&package-manager=pip&previous-version=3.4&new-version=3.7)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Add docker stuff\nBody: CAPE can run in a docker container.\r\nWith the docker-compose.yml you can run the web-interface, result server and database with one command (`docker compose up`).\r\nYou should still adjust the configuration files in the 'docker/conf' directory which is mounted when using docker compose.\r\n\r\nThe only parameter that has changed from the defaults is the database connection string.\r\nAlso I've removed the comments from the kvm.conf file so the block can be copy-pasted easily.\r\n\r\nIt sure would be nice to have a settings interface in the web ui at some point.\r\nI'm looking forward to using this with Unraid.\nComment: Hello, thank you, this is nice add for dev server, so i will have add note, as it not exposes cape for \"production\" with nginx and other to handle load properly. Also kinda interesting is how it handles load of many vms and tcpdumps\r\n\r\nim a bit busy those days but i will hope to merge this next week with small changes, did you see also this one? https://github.com/CAPESandbox/CAHI ?\r\n\r\nabout configs, instead of create tons of new config, if you want im fine to add block to `kvm.conf.default` with no comments for easier c&p\nComment: Sorry, I did not and probably won't have any time for this in the future since I've shifted my focus to other projects. I'll close this PR since it has nearly been a year now.",
+  "Title: fix a few Windows analyzer bugs, add test coverage\nBody: Details are in the commit, but at a high-level this does the following:\r\n\r\n- starts to break up the huge `Analyzer.run()` method into small, testable chunks\r\n- fixed a handful of small bugs\r\n- adds lots of basic tests to ensure we don't break things in the future as we improve this even more\r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/1265294/c6abbf86-c140-445a-a8c9-8672041cbc3f)\r\n\nComment: ready to merge right?\nComment: yes, ready to go\nComment: thank you for this",
+  "Title: START the thr_maintain_scaling_bounded_semaphore thread.\nBody: Thanks to @cccs-mog for noticing this.",
+  "Title: Fill categories when fetching signature data for scoring\nBody: The current scoring script relies on signature categories, which currently are not filled when getting the signature info through `as_result()`. This fixes the score generation for executables on reports, and should not break if any signature doesn't define categories as it would simply provide an empty list.\r\n\r\nIt might be worth adding any of the other signature fields which aren't currently filled, but as I don't know if this should be the case and I currently only needed the malscore I haven't checked for the rest.\nComment: thanks",
+  "Title: Make the guest.platform column non-nullable.\nBody: The original migration to create this column set it to nullable until default values could be populated, but since it's not nullable as defined in database.py, the migration should set it back to non-nullable after filling the existing rows with the default value.\r\n\r\nNote: This fixes an issue in https://github.com/kevoreilly/CAPEv2/pull/2050 where applying migrations on a sqlite database would crash.",
+  "Title:  \"Make the guest.platform column non-nullable.\"\"\nBody: Reverts kevoreilly/CAPEv2#2051",
+  "Title: Revert \"Make the guest.platform column non-nullable.\"\nBody: Reverts kevoreilly/CAPEv2#2050",
+  "Title: Make the guest.platform column non-nullable.\nBody: The original migration to create this column set it to nullable until default values could be populated, but since it's not nullable as defined in database.py, the migration should set it back to non-nullable after filling the existing rows with the default value.\nComment: I just realized that this will not work on sqlite. It does not support `alter column`.",
+  "Title: fix issue with creation of the machinery lock.\nBody: For scaling machinery, we can't set up the scaling semaphore until after the machinery has been initialized, since that's when the database is synchronized with the state of the cloud infrastructure and we need to use that to determine the limit of the semaphore.\r\n\r\nThis is in response to the comment in https://github.com/kevoreilly/CAPEv2/pull/2041#discussion_r1556084681",
+  "Title: Since migrating to wsgi / gunicorn, I lost the webapi, it results in 404 errors.\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\nhello,\r\n\r\nSince migrating to wsgi / gunicorn, I lost the webapi, it results in 404 errors whereas the webgui works well\r\n\r\n# Expected Behavior\r\n- API must be exposed via NGINX just like with the development server\r\n\r\n# Current Behavior\r\n- If I follow the gunicorn / nginx tutorial, I cannot access anymore the API on the nginx endpoint\r\n- All requests seems to result in a 404. However, web interface works well\r\n\r\n# Failure Information (for bugs)\r\n\r\n`<html>\\r\\n<head><title>404 Not Found</title></head>\\r\\n<body>\\r\\n<center><h1>404 Not Found</h1></center>\\r\\n<hr><center>nginx/1.18.0 (Ubuntu)</center>\\r\\n</body>\\r\\n</html>\\r\\n`\r\n\r\n## Context\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | 26c7207f49f6d7c514fce628c35deec35e07dcb3\r\n| OS version       | Ubuntu 22.04.4 LTS\r\n\r\n## Failure Logs\r\n\r\nNo access / error logs concerning api on the gunicorn process\r\nLogs for this request shows well with 404 for nginx.\r\n\r\nThank you for your help\r\n\nComment: Well I see no steps what you have done, what tutorial? I don't have a clue\r\nwhat is wrong with your setup with this details\r\n\r\nEl mar, 9 abr 2024, 19:07, githule ***@***.***> escribi\u00f3:\r\n\r\n> Prerequisites\r\n>\r\n> Please answer the following questions for yourself before submitting an\r\n> issue.\r\n>\r\n>    - I am running the latest version\r\n>    - I did read the README!\r\n>    - I checked the documentation and found no answer\r\n>    - I checked to make sure that this issue has not already been filed\r\n>    - I'm reporting the issue to the correct repository (for\r\n>    multi-repository projects)\r\n>    - I have read and checked all configs (with all optional parts)\r\n>\r\n> Expected Behavior\r\n>\r\n>    - API must be exposed via NGINX just like with the development server\r\n>\r\n> Current Behavior\r\n>\r\n>    - If I follow the gunicorn / nginx tutorial, I cannot access anymore\r\n>    the API on the nginx endpoint\r\n>    - All requests seems to result in a 404. However, web interface works\r\n>    well\r\n>\r\n> Failure Information (for bugs)\r\n>\r\n> <html>\\r\\n<head><title>404 Not\r\n> Found</title></head>\\r\\n<body>\\r\\n<center><h1>404 Not\r\n> Found</h1></center>\\r\\n<hr><center>nginx/1.18.0\r\n> (Ubuntu)</center>\\r\\n</body>\\r\\n</html>\\r\\n\r\n> Context\r\n> Question Answer\r\n> Git commit 26c7207\r\n> <https://github.com/kevoreilly/CAPEv2/commit/26c7207f49f6d7c514fce628c35deec35e07dcb3>\r\n> OS version Ubuntu 22.04.4 LTS Failure Logs\r\n>\r\n> No access / error logs concerning api on the gunicorn process\r\n> Logs for this request shows well with 404 for nginx.\r\n>\r\n> Thank you for your help\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2048>, or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3452BA5QAMBEJGEQYTY4QN5LAVCNFSM6AAAAABF66UU6KVHI2DSMVQWIX3LMV43ASLTON2WKOZSGIZTGOJRHE3TCMQ>\r\n> .\r\n> You are receiving this because you are subscribed to this thread.Message\r\n> ID: ***@***.***>\r\n>\r\n\nComment: Sorry for the lack of details.\r\nThe guide I followed is this one : https://capev2.readthedocs.io/en/latest/usage/web.html#exposed-to-internet \nComment: great, but still i have no clue what is wrong on your side, without proper details is impossible to provide proper help.\nComment: Maybe I need to reword my issue. Sorry if its not clear.\r\n\r\nI need to expose **API** and the **Web Gui** via gunicorn and Nginx to avoid using the potentially unstable Django dev server.\r\n\r\nUnfortunately, once implemented (I followed the [doc](https://capev2.readthedocs.io/en/latest/usage/web.html#gunicorn)) **only the webgui is exposed**.\r\n\r\nAlso :\r\n- **Api** is enabled and worked before with the python dev server until I switched on gunicorn\r\n- The tested api endpoints are activated and were tested successfully with the dev server\r\n- Making API call, like below, **result in 404** when I run the Nginx/gunicorn  :\r\n\r\n```\r\nimport requests\r\nurl = 'http://127.0.0.1:80/apiv2/machines/list'\r\nheaders = {'Authorization': 'Token <YOUR_TOKEN>'}\r\nr = requests.get(url, headers=headers)\r\n```\r\n\r\nAlso tried similar endpoints without success such as : http://127.0.0.1:80/apiv2/machines/list, http://127.0.0.1/apiv2/machines/list/\r\n\r\nQuestions:\r\n- Is the API supposed to be exposed with nginx/gunicorn just like the web gui ?\r\n- Is the web.wsgi module expected to expose the API on the same nginx/gunicorn endpoint than the GUI ?\r\n- Should the api have it's own wsgi module ?\r\n- Do you have any starting point to investigate on this ?\r\n- Do I missed a specific doc to expose properly the api endpoint ?\r\n\r\nThank you for your help\r\n\nComment: webgui is exposed, api is part of webgui, that is confusing me.\r\n\r\nwhat about `http://127.0.0.1:8000/apiv2/machines/list/`\r\n\r\ni would would suggest to follow the problem in next way. i don't use gunicorn, im using uwsgi\r\n\r\n1. does it works with gunicorn ? if yes follow to next step\r\n2. is anything else works in nginx and only api is the problem?\r\n\r\ncan you also post how you run gunicorn? do you see something in gunicorn logs?\r\nanything about nginx log? what about nginx config?\nComment: answers\r\n* Is the API supposed to be exposed with nginx/gunicorn just like the web gui ?\r\n    * API is part of whole webgui\r\n* Is the web.wsgi module expected to expose the API on the same nginx/gunicorn endpoint than the GUI ?\r\n    * yes\r\n* Should the api have it's own wsgi module ?\r\n    * no, see first answer \r\n* Do you have any starting point to investigate on this ?\r\n    * watch your logs and show configs and how you run everything to maintainers, without that we have no clue \r\n* Do I missed a specific doc to expose properly the api endpoint ?\r\n     * see first answer\nComment: Thank you, I will do some additional checks soon. I keep you updated.\nComment: just step one by one, is hard to say where is the problem if you put all together, but logs should give a good idea where is the problem\nComment: Hello,\r\nI come back with good news. It works now. I should have see the issue before.\r\nUnfortunately, nginx came up with a default config I didn't expected and I was confused between the success accessing the GUI vs the failure on the api (finally I still expect that both should not have been working with that configuration).\r\nI close the ticket.\r\nThanks\nComment: glad that you fixed that",
+  "Title: chore(deps): bump pymongo from 4.5.0 to 4.6.3\nBody: Bumps [pymongo](https://github.com/mongodb/mongo-python-driver) from 4.5.0 to 4.6.3.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a href=\"https://github.com/mongodb/mongo-python-driver/releases\">pymongo's releases</a>.</em></p>\n<blockquote>\n<h2>PyMongo 4.6.2</h2>\n<p>Release notes: <a href=\"https://www.mongodb.com/community/forums/t/pymongo-4-6-2-released/267404\">https://www.mongodb.com/community/forums/t/pymongo-4-6-2-released/267404</a></p>\n<h2>PyMongo 4.6.1</h2>\n<p>Release notes: <a href=\"https://www.mongodb.com/community/forums/t/pymongo-4-6-1-released/255752\">https://www.mongodb.com/community/forums/t/pymongo-4-6-1-released/255752</a></p>\n<h2>PyMongo 4.6.0</h2>\n<p>Release notes: <a href=\"https://www.mongodb.com/community/forums/t/pymongo-4-6-0-released/251866\">https://www.mongodb.com/community/forums/t/pymongo-4-6-0-released/251866</a></p>\n</blockquote>\n</details>\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/mongodb/mongo-python-driver/blob/master/doc/changelog.rst\">pymongo's changelog</a>.</em></p>\n<blockquote>\n<h1>Changelog</h1>\n<h2>Changes in Version 4.7</h2>\n<p>PyMongo 4.7 brings a number of improvements including:</p>\n<ul>\n<li>\n<p>Added the :class:<code>pymongo.hello.Hello.connection_id</code>,\n:attr:<code>pymongo.monitoring.CommandStartedEvent.server_connection_id</code>,\n:attr:<code>pymongo.monitoring.CommandSucceededEvent.server_connection_id</code>, and\n:attr:<code>pymongo.monitoring.CommandFailedEvent.server_connection_id</code> properties.</p>\n</li>\n<li>\n<p>Fixed a bug where inflating a :class:<code>~bson.raw_bson.RawBSONDocument</code> containing a :class:<code>~bson.code.Code</code> would cause an error.</p>\n</li>\n<li>\n<p>Significantly improved the performance of encoding BSON documents to JSON.</p>\n</li>\n<li>\n<p>Support for named KMS providers for client side field level encryption.\nPreviously supported KMS providers were only: aws, azure, gcp, kmip, and local.\nThe KMS provider is now expanded to support name suffixes (e.g. local:myname).\nNamed KMS providers enables more than one of each KMS provider type to be configured.\nSee the docstring for :class:<code>~pymongo.encryption_options.AutoEncryptionOpts</code>.\nNote that named KMS providers requires pymongocrypt &gt;=1.9 and libmongocrypt &gt;=1.9.</p>\n</li>\n<li>\n<p>:meth:<code>~pymongo.encryption.ClientEncryption.encrypt</code> and\n:meth:<code>~pymongo.encryption.ClientEncryption.encrypt_expression</code> now allow <code>key_id</code>\nto be passed in as a :class:<code>uuid.UUID</code>.</p>\n</li>\n<li>\n<p>Fixed a bug where :class:<code>~bson.int64.Int64</code> instances could not always be encoded by <code>orjson</code>_. The following now\nworks::</p>\n<blockquote>\n<blockquote>\n<blockquote>\n<p>import orjson\nfrom bson import json_util\norjson.dumps({'a': Int64(1)}, default=json_util.default, option=orjson.OPT_PASSTHROUGH_SUBCLASS)</p>\n</blockquote>\n</blockquote>\n</blockquote>\n</li>\n</ul>\n<p>.. _orjson: <a href=\"https://github.com/ijl/orjson\">https://github.com/ijl/orjson</a></p>\n<ul>\n<li>Fixed a bug appearing in Python 3.12 where &quot;RuntimeError: can't create new thread at interpreter shutdown&quot;\ncould be written to stderr when a MongoClient's thread starts as the python interpreter is shutting down.</li>\n<li>Added a warning when connecting to DocumentDB and CosmosDB clusters.\nFor more information regarding feature compatibility and support please visit\n<code>mongodb.com/supportability/documentdb &lt;https://mongodb.com/supportability/documentdb&gt;</code>_ and\n<code>mongodb.com/supportability/cosmosdb &lt;https://mongodb.com/supportability/cosmosdb&gt;</code>_.</li>\n<li>Added the :attr:<code>pymongo.monitoring.ConnectionCheckedOutEvent.duration</code>,\n:attr:<code>pymongo.monitoring.ConnectionCheckOutFailedEvent.duration</code>, and\n:attr:<code>pymongo.monitoring.ConnectionReadyEvent.duration</code> properties.</li>\n<li>Added the <code>type</code> and <code>kwargs</code> arguments to :class:<code>~pymongo.operations.SearchIndexModel</code> to enable\ncreating vector search indexes in MongoDB Atlas.</li>\n<li>Fixed a bug where <code>read_concern</code> and <code>write_concern</code> were improperly added to\n:meth:<code>~pymongo.collection.Collection.list_search_indexes</code> queries.</li>\n</ul>\n<p>Unavoidable breaking changes\n............................</p>\n<!-- raw HTML omitted -->\n</blockquote>\n<p>... (truncated)</p>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/mongodb/mongo-python-driver/commit/8da192f9ca2d4f6464897b22b3029c227043f0cb\"><code>8da192f</code></a> BUMP 4.6.3</li>\n<li><a href=\"https://github.com/mongodb/mongo-python-driver/commit/56b6b6dbc267d365d97c037082369dabf37405d2\"><code>56b6b6d</code></a> PYTHON-4305 Fix bson size check (<a href=\"https://redirect.github.com/mongodb/mongo-python-driver/issues/1564\">#1564</a>)</li>\n<li><a href=\"https://github.com/mongodb/mongo-python-driver/commit/449d0f316cbcdea59d8b69b5e4fc34ac07949dc6\"><code>449d0f3</code></a> BUMP to 4.6.3.dev0</li>\n<li><a href=\"https://github.com/mongodb/mongo-python-driver/commit/e04576de22c06a4609b16db0f6e10e86ad5c8dad\"><code>e04576d</code></a> DEVPROD-3871 Use teardown_task when there is one function/command (<a href=\"https://redirect.github.com/mongodb/mongo-python-driver/issues/1533\">#1533</a>)</li>\n<li><a href=\"https://github.com/mongodb/mongo-python-driver/commit/cf1c6a11f76861fd6150b0df79a7ed70f2b2fea5\"><code>cf1c6a1</code></a> PYTHON-4219 Prep for 4.6.2 Release (<a href=\"https://redirect.github.com/mongodb/mongo-python-driver/issues/1530\">#1530</a>)</li>\n<li><a href=\"https://github.com/mongodb/mongo-python-driver/commit/d29b2b7cf405901a801591e475574b63aa81ac5c\"><code>d29b2b7</code></a> PYTHON-4147 [v4.6]: Silence noisy thread.start() RuntimeError at shutdown (<a href=\"https://redirect.github.com/mongodb/mongo-python-driver/issues/1\">#1</a>...</li>\n<li><a href=\"https://github.com/mongodb/mongo-python-driver/commit/0477b9bc0c59de311fbb6d6a157b97a4af8d0a23\"><code>0477b9b</code></a> PYTHON-4077 [v4.6]: Ensure there is a MacOS wheel for Python 3.7 (<a href=\"https://redirect.github.com/mongodb/mongo-python-driver/issues/1527\">#1527</a>)</li>\n<li><a href=\"https://github.com/mongodb/mongo-python-driver/commit/ecad17d24e8aafa374ab5fd194ce79b6861efcad\"><code>ecad17d</code></a> BUMP 4.6.2.dev0</li>\n<li><a href=\"https://github.com/mongodb/mongo-python-driver/commit/485e0a5e56f2d524b5cbc31538a0c455e3ddd858\"><code>485e0a5</code></a> BUMP 4.6.1</li>\n<li><a href=\"https://github.com/mongodb/mongo-python-driver/commit/995365c7128c3107b4f9ce1524220378176a3a96\"><code>995365c</code></a> PYTHON-4038 [v4.6]: Ensure retryable read <code>OperationFailure</code>s re-raise except...</li>\n<li>Additional commits viewable in <a href=\"https://github.com/mongodb/mongo-python-driver/compare/4.5.0...4.6.3\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pymongo&package-manager=pip&previous-version=4.5.0&new-version=4.6.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Update yara-python version\nBody: None\nComment: that requires rebuild lock, otherwise it break any new install for non consistent data. `poetry lock --no-update` FYI. im gonna generate that, but in future please add it\nComment: i should have added it requirements.txt, i don't use poetry\r\n\r\nOn Mon, Apr 8, 2024 at 4:08\u202fPM doomedraven ***@***.***> wrote:\r\n\r\n> that requires rebuild lock, otherwise it break any new install for non\r\n> consistent data. poetry lock --no-update FYI. im gonna generate that, but\r\n> in future please add it\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/pull/2046#issuecomment-2043554348>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AB3X3YBLQM3BDUSTNTYGWADY4L2LLAVCNFSM6AAAAABF43O3ROVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDANBTGU2TIMZUHA>\r\n> .\r\n> You are receiving this because you authored the thread.Message ID:\r\n> ***@***.***>\r\n>\r\n\r\n\r\n-- \r\nLorenzo\r\n\r\n\u201cHappiness is not the absence of problems, but the ability to deal with\r\nthem.\" - Albert Einstein\r\n\nComment: ok, good to know, well i will regenerate if needed in future",
+  "Title: Physical guest is not getting internet during analysis when internet routing is used\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ X] I am running the latest version\r\n- [ X] I did read the README!\r\n- [ X] I checked the documentation and found no answer\r\n- [ X] I checked to make sure that this issue has not already been filed\r\n- [ X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ X] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nGuest machine getting internet access during the analysis.\r\n\r\n# Current Behavior\r\n\r\nWhen running an analysis on a file using the guest machine it does not get internet access.\r\nI tried troubleshooting the internet connection issue with router_manager.py I get the error below.\r\n\r\n![router_py_error](https://github.com/kevoreilly/CAPEv2/assets/29485001/10521bd3-814f-45fd-94fc-e78cb7426252)\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Stop rooter service using systemctl.\r\n2. Run  sudo python3 router_manager.py -r internet -e --vm-name physical01 --verbose\r\n3. Error\r\n## Context\r\n\r\nI am running CAPE on a physical desktop running Ubuntu 22.04. The dirty line is enx0051bdb357b and the interface towards a switch that connects to the physical guest machine is enp0s31f6. Checked my configs multiple times against the Wiki. Confirmed my agent on the guest machine is running from an elevated privileges scheduled task. Cape-rooter and cape services start fine with no errors. No errors are seen during analysis.\r\n\r\nThanks for the help! Im really excited to use this sandbox and have had great results while testing.\r\n\r\nNet Plan:\r\n\r\n![net_plan](https://github.com/kevoreilly/CAPEv2/assets/29485001/56ee586e-8de9-4faf-86a5-9f6b95f6ac25)\r\n\r\nRoute Table:\r\n\r\n![route_table](https://github.com/kevoreilly/CAPEv2/assets/29485001/4ff3bb21-f4ab-4a68-aacb-68e868eb52b8)\r\n\r\nRouting.conf:\r\n\r\n![routing_conf](https://github.com/kevoreilly/CAPEv2/assets/29485001/9d711f4f-a300-4962-b0be-8e0ddc3d7876)\r\n\r\nPort Forwarding:\r\n\r\n![port_forwarding](https://github.com/kevoreilly/CAPEv2/assets/29485001/f04da8f3-0282-4dd5-9368-a0dbf7dc45b2)\r\n\r\n\nComment: hello, that is not how physical routing works. cape can't control routing of physical machines, so you need to handle that on your switch/router\nComment: Thanks for responding. Im confused my understanding of Cape router is that it routes traffic from the dirty line to the interface going to the guest machine temporarily. Both devices can seen each other fine. The analysis and re-imaging with FOG both work fine.  Why do you think its a physical routing issue?\r\n\r\nBelow is a diagram of my lab network. \r\n\r\n![HomeLabSetup](https://github.com/kevoreilly/CAPEv2/assets/29485001/05bef9c1-ea33-44e5-a27e-4e51026b79fa)\r\n\nComment: yes it does but for the VMs that are on CAPE server, not for the physical host. Physical hosts network is managed by router/managed switch, we can't `hack` each router and forward traffic, that is your task to set some firewall that will route all traffic from that machine to specific exit node, but if that just internet than it should works out of the box with basic windows configuration. So if you configured your  fog client with internet, it will have internet, but we can't do nothing there \nComment: I think I figured out a solution and wanted to post it here for other people. My CAPE guest machine only has one NIC going to the managed switch back to the CAPE host. I can add another NIC to the CAPE guest and using VLANs on the switch connect to the 4g router in an isolated manner. On my switch I can enable port mirroring and send that back to the CAPE host with an additional NIC on the CAPE host for this. In the Auxiliary conf I can tell tcpdump to monitor that NIC and see the network traffic from the guest host.\nComment: thanks for details, and glad that you solved it\nComment: > I think I figured out a solution and wanted to post it here for other people. My CAPE guest machine only has one NIC going to the managed switch back to the CAPE host. I can add another NIC to the CAPE guest and using VLANs on the switch connect to the 4g router in an isolated manner. On my switch I can enable port mirroring and send that back to the CAPE host with an additional NIC on the CAPE host for this. In the Auxiliary conf I can tell tcpdump to monitor that NIC and see the network traffic from the guest host.\r\n\r\n@ParkWork5 @doomedraven  please i have one question about this topic. i have this network configuration:\r\n\r\nCAPE ---> router5G <--- Windows Physical Host\r\n\r\nIf i set Physical guest  Default Gateway and DNS to point router, guest has internet access, but CAPE cannot analyze Network traffic..\r\n\r\nIt is possible to send network data to CAPE in another way?\r\n\r\n\r\n\nComment: Idk, no one of core devs using/used physical setup, so we can't suggest\r\nnothing here\r\n\r\nEl s\u00e1b, 26 oct 2024, 15:29, marsomx ***@***.***> escribi\u00f3:\r\n\r\n> I think I figured out a solution and wanted to post it here for other\r\n> people. My CAPE guest machine only has one NIC going to the managed switch\r\n> back to the CAPE host. I can add another NIC to the CAPE guest and using\r\n> VLANs on the switch connect to the 4g router in an isolated manner. On my\r\n> switch I can enable port mirroring and send that back to the CAPE host with\r\n> an additional NIC on the CAPE host for this. In the Auxiliary conf I can\r\n> tell tcpdump to monitor that NIC and see the network traffic from the guest\r\n> host.\r\n>\r\n> @ParkWork5 <https://github.com/ParkWork5> @doomedraven\r\n> <https://github.com/doomedraven> please i have one question about this\r\n> topic. i have this network configuration:\r\n>\r\n> CAPE ---> router5G <--- Windows Physical Host\r\n>\r\n> If i set Physical guest Default Gateway and DNS to point router, guest has\r\n> internet access, but CAPE cannot analyze Network traffic..\r\n>\r\n> It is possible to send network data to CAPE in another way?\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2045#issuecomment-2439584913>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH334XS27FANPN5HIMFTZ5OKKHAVCNFSM6AAAAABQUZ5CWWVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDIMZZGU4DIOJRGM>\r\n> .\r\n> You are receiving this because you were mentioned.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: Two ideas I have\r\n\r\n1. (Already tried and did not work for me) Buy a managed switch and use port mirroring to mirror traffic from CAPE guest.\r\n\r\n2. In the start() and finish() functions from the analysis packages run Tshark on the guest machine and then using SCP send the PCAP to the CAPE server when analysis is done.  Something like this:\r\n1. Run batch script to launch Tshark on guest in start() function.\r\n2. Run another batch script when analysis is done in finish() to end Tshark on guest and send pcap to CAPE host using SCP.\r\n\r\nPretty sure 2 will work have not looked into too much though.\r\nhttps://capev2.readthedocs.io/en/latest/customization/packages.html#start\nComment: @doomedraven @ParkWork5 firts of all thanks for reply.\r\n\r\nI was thinking about a LAN tap to sniff and collect guest network traffic and than analyze the pcap with Cape but your solution @ParkWork5 with a custom package could be a great idea.\r\n\r\nPerhaps @kevoreilly would like to suggest the best way to do this?",
+  "Title: fix/rework private package configuration\nBody: Some analyzer packages provide their own `__init__`. Rather than having to pass the package name to itself, rework private package configuration to derive the importable package from the package class module name.\r\n\r\nSo for example if the \"pdf\" package is used, `self.__class__.__module__` is:\r\n\r\n    modules.packages.pdf\r\n\r\nAnd the data module derived from it becomes:\r\n \r\n    data.packages.pdf",
+  "Title: windows analyzer tweaks for test capabilities\nBody: Adds [analyzer test cases](https://github.com/nbargnesi/CAPEv2/blob/win-analyzer-enshrinkening/analyzer/windows/tests/test_analyzer.py) and will include some changes to the analyzer code to make testing easier.\r\n\r\n<img width=\"934\" alt=\"Screenshot of Firefox at Apr 4, 2024 at 4_23_14\u202fPM\" src=\"https://github.com/kevoreilly/CAPEv2/assets/1265294/dd4ccbc2-6883-4e28-9b1e-39e45898b1fc\">\r\n\nComment: closing, will reopen with a fresh PR\nComment: opened in https://github.com/kevoreilly/CAPEv2/pull/2056",
+  "Title: chore(deps): bump pillow from 10.2.0 to 10.3.0\nBody: Bumps [pillow](https://github.com/python-pillow/Pillow) from 10.2.0 to 10.3.0.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a href=\"https://github.com/python-pillow/Pillow/releases\">pillow's releases</a>.</em></p>\n<blockquote>\n<h2>10.3.0</h2>\n<p><a href=\"https://pillow.readthedocs.io/en/stable/releasenotes/10.3.0.html\">https://pillow.readthedocs.io/en/stable/releasenotes/10.3.0.html</a></p>\n<h2>Changes</h2>\n<ul>\n<li>CVE-2024-28219: Use strncpy to avoid buffer overflow <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7928\">#7928</a> [<a href=\"https://github.com/hugovk\"><code>@\u200bhugovk</code></a>]</li>\n<li>Use <code>functools.lru_cache</code> for <code>hopper()</code> <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7912\">#7912</a> [<a href=\"https://github.com/hugovk\"><code>@\u200bhugovk</code></a>]</li>\n<li>Raise ValueError if seeking to greater than offset-sized integer in TIFF <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7883\">#7883</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Improve speed of loading QOI images <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7925\">#7925</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Added RGB to I;16N conversion <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7920\">#7920</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Add --report argument to <strong>main</strong>.py to omit supported formats <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7818\">#7818</a> [<a href=\"https://github.com/nulano\"><code>@\u200bnulano</code></a>]</li>\n<li>Added RGB to I;16, I;16L and I;16B conversion <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7918\">#7918</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Fix editable installation with custom build backend and configuration options <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7658\">#7658</a> [<a href=\"https://github.com/nulano\"><code>@\u200bnulano</code></a>]</li>\n<li>Fix putdata() for I;16N on big-endian <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7209\">#7209</a> [<a href=\"https://github.com/Yay295\"><code>@\u200bYay295</code></a>]</li>\n<li>Determine MPO size from markers, not EXIF data <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7884\">#7884</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Improved conversion from RGB to RGBa, LA and La <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7888\">#7888</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Support FITS images with GZIP_1 compression <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7894\">#7894</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Use I;16 mode for 9-bit JPEG 2000 images <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7900\">#7900</a> [<a href=\"https://github.com/scaramallion\"><code>@\u200bscaramallion</code></a>]</li>\n<li>Raise ValueError if kmeans is negative <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7891\">#7891</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Remove TIFF tag OSUBFILETYPE when saving using libtiff <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7893\">#7893</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Raise ValueError for negative values when loading P1-P3 PPM images <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7882\">#7882</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Added reading of JPEG2000 palettes <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7870\">#7870</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Added alpha_quality argument when saving WebP images <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7872\">#7872</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Fixed joined corners for ImageDraw rounded_rectangle() non-integer dimensions <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7881\">#7881</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Removed Python and NumPy pinning on Cygwin <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7880\">#7880</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Update UnidentifiedImageError and <strong>version</strong> imports <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7644\">#7644</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Stop reading EPS image at EOF marker <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7753\">#7753</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>PSD layer co-ordinates may be negative <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7706\">#7706</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Use subprocess with CREATE_NO_WINDOW flag in ImageShow WindowsViewer <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7791\">#7791</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>When saving GIF frame that restores to background color, do not fill identical pixels <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7788\">#7788</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Fixed reading PNG iCCP compression method <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7823\">#7823</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Allow writing IFDRational to UNDEFINED tag <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7840\">#7840</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Fix logged tag name when loading Exif data <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7842\">#7842</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Use maximum frame size in IHDR chunk when saving APNG images <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7821\">#7821</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Prevent opening P TGA images without a palette <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7797\">#7797</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Use palette when loading ICO images <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7798\">#7798</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Use consistent arguments for load_read and load_seek <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7713\">#7713</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Turn off nullability warnings for macOS SDK <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7827\">#7827</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Fix shift-sign issue in Convert.c <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7838\">#7838</a> [<a href=\"https://github.com/r-barnes\"><code>@\u200br-barnes</code></a>]</li>\n<li>winbuild: Refactor dependency versions into constants <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7843\">#7843</a> [<a href=\"https://github.com/hugovk\"><code>@\u200bhugovk</code></a>]</li>\n<li>Build macOS arm64 wheels natively <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7852\">#7852</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Fixed typo <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7855\">#7855</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Open 16-bit grayscale PNGs as I;16 <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7849\">#7849</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Handle truncated chunks at the end of PNG images <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7709\">#7709</a> [<a href=\"https://github.com/lajiyuan\"><code>@\u200blajiyuan</code></a>]</li>\n<li>Match mask size to pasted image size in GifImagePlugin <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7779\">#7779</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Changed SupportsGetMesh protocol to be public <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7841\">#7841</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Release GIL while calling <code>WebPAnimDecoderGetNext</code> <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7782\">#7782</a> [<a href=\"https://github.com/evanmiller\"><code>@\u200bevanmiller</code></a>]</li>\n<li>Fixed reading FLI/FLC images with a prefix chunk <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7804\">#7804</a> [<a href=\"https://github.com/twolife\"><code>@\u200btwolife</code></a>]</li>\n<li>Updated package name for Tidelift <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7810\">#7810</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Removed unused code <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7744\">#7744</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n</ul>\n<!-- raw HTML omitted -->\n</blockquote>\n<p>... (truncated)</p>\n</details>\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/python-pillow/Pillow/blob/main/CHANGES.rst\">pillow's changelog</a>.</em></p>\n<blockquote>\n<h2>10.3.0 (2024-04-01)</h2>\n<ul>\n<li>\n<p>CVE-2024-28219: Use <code>strncpy</code> to avoid buffer overflow <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7928\">#7928</a>\n[radarhere, hugovk]</p>\n</li>\n<li>\n<p>Deprecate <code>eval()</code>, replacing it with <code>lambda_eval()</code> and <code>unsafe_eval()</code> <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7927\">#7927</a>\n[radarhere, hugovk]</p>\n</li>\n<li>\n<p>Raise <code>ValueError</code> if seeking to greater than offset-sized integer in TIFF <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7883\">#7883</a>\n[radarhere]</p>\n</li>\n<li>\n<p>Add <code>--report</code> argument to <code>__main__.py</code> to omit supported formats <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7818\">#7818</a>\n[nulano, radarhere, hugovk]</p>\n</li>\n<li>\n<p>Added RGB to I;16, I;16L, I;16B and I;16N conversion <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7918\">#7918</a>, <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7920\">#7920</a>\n[radarhere]</p>\n</li>\n<li>\n<p>Fix editable installation with custom build backend and configuration options <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7658\">#7658</a>\n[nulano, radarhere]</p>\n</li>\n<li>\n<p>Fix putdata() for I;16N on big-endian <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7209\">#7209</a>\n[Yay295, hugovk, radarhere]</p>\n</li>\n<li>\n<p>Determine MPO size from markers, not EXIF data <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7884\">#7884</a>\n[radarhere]</p>\n</li>\n<li>\n<p>Improved conversion from RGB to RGBa, LA and La <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7888\">#7888</a>\n[radarhere]</p>\n</li>\n<li>\n<p>Support FITS images with GZIP_1 compression <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7894\">#7894</a>\n[radarhere]</p>\n</li>\n<li>\n<p>Use I;16 mode for 9-bit JPEG 2000 images <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7900\">#7900</a>\n[scaramallion, radarhere]</p>\n</li>\n<li>\n<p>Raise ValueError if kmeans is negative <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7891\">#7891</a>\n[radarhere]</p>\n</li>\n<li>\n<p>Remove TIFF tag OSUBFILETYPE when saving using libtiff <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7893\">#7893</a>\n[radarhere]</p>\n</li>\n<li>\n<p>Raise ValueError for negative values when loading P1-P3 PPM images <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7882\">#7882</a>\n[radarhere]</p>\n</li>\n<li>\n<p>Added reading of JPEG2000 palettes <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7870\">#7870</a>\n[radarhere]</p>\n</li>\n<li>\n<p>Added alpha_quality argument when saving WebP images <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7872\">#7872</a>\n[radarhere]</p>\n</li>\n</ul>\n<!-- raw HTML omitted -->\n</blockquote>\n<p>... (truncated)</p>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/5c89d88eee199ba53f64581ea39b6a1bc52feb1a\"><code>5c89d88</code></a> 10.3.0 version bump</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/63cbfcfdea2d163ec93bae8d283fcfe4b73b5dc7\"><code>63cbfcf</code></a> Update CHANGES.rst [ci skip]</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/2776126aa9af322b416eaca247f4f8ebefd08128\"><code>2776126</code></a> Merge pull request <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7928\">#7928</a> from python-pillow/lcms</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/aeb51cbb169eb3285818ba1390ddf2771d897e6e\"><code>aeb51cb</code></a> Merge branch 'main' into lcms</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/5beb0b66648db8b542bb5260eed79b25e33d643b\"><code>5beb0b6</code></a> Update CHANGES.rst [ci skip]</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/cac6ffa7b399ea79b6239984d1307056a0b19af2\"><code>cac6ffa</code></a> Merge pull request <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7927\">#7927</a> from python-pillow/imagemath</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/f5eeeacf7539eaa0d93a677d7666bc7c142c8d1c\"><code>f5eeeac</code></a> Name as 'options' in lambda_eval and unsafe_eval, but '_dict' in deprecated eval</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/facf3af93dabcbdd8cdbda8c3b50eefafa3bb04c\"><code>facf3af</code></a> Added release notes</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/2a93aba5cfcf6e241ab4f9392c13e3b74032c061\"><code>2a93aba</code></a> Use strncpy to avoid buffer overflow</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/a670597bc30e9d489656fc9d807170b8f3d7ca57\"><code>a670597</code></a> Update CHANGES.rst [ci skip]</li>\n<li>Additional commits viewable in <a href=\"https://github.com/python-pillow/Pillow/compare/10.2.0...10.3.0\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pillow&package-manager=pip&previous-version=10.2.0&new-version=10.3.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Staging\nBody: None\nComment: So far:\r\nScaling semaphore is not working with dynamic number of machines, basically the machine manager options as there is no machines parameter when using a autoscaling/dynamic number of machines. \r\n\r\nGetting a warning: `WARNING: Rooter returned error: inetsim_disable() missing 4 required positional arguments: 'inetsim_ip', 'dns_port', 'resultserver_port', and 'ports'`\r\n\r\nI was not yet able to test the rest as for unknown reasons the database seem not even initialized correctly ie get stuck at __getattr__ for every method call, seem incomplete to me should have the params of the function passed down as well in parenthesis like this getattr(_DATABASE, attr)(params) ? \r\n ? \r\n\r\nAm I missing something ? \nComment: i looked a bit into inetsim, but didn't see what is wrong, once i will have some spare time again i will check that\nComment: > So far: Scaling semaphore is not working with dynamic number of machines, basically the machine manager options as there is no machines parameter when using a autoscaling/dynamic number of machines.\r\n\r\nCould you please explain a little more about this? I don't quite understand.\r\n\r\n> I was not yet able to test the rest as for unknown reasons the database seem not even initialized correctly ie get stuck at **getattr** for every method call, seem incomplete to me should have the params of the function passed down as well in parenthesis like this getattr(_DATABASE, attr)(params) ? ?\r\n> \r\n> Am I missing something ?\r\n\r\nDo you have a traceback or any other information that you can give? `Database.__getattr__` should not be passing any other parameters. It is only proxying the getattr call to the _Database object. So if you do this:\r\n```\r\ndb = Database()\r\ndb.some_func(param1)\r\n```\r\naccessing `db.some_func` will call the `__getattr__` function, which will get that method from the _Database class and then pass `param1` to it.\nComment: Yes you are right regarding the Database class and __getattr__, it seem my call were not processing correctly because of Rooter returned error: inetsim_disable() missing 4 required positional arguments: 'inetsim_ip', 'dns_port', 'resultserver_port', and 'ports' which is now fixed. I will continue testing but so far work great minus small details like the one flagged below ! \nComment: More update:  I am also facing an issue with the number of pending tasks staying to 0 or just very few tasks are being processes/active at a time. Let me know if you need some more information to investigate and if this is something specific to AZ/dynamic ? The database is full of tasks. It also seem that the submit.py utility doesn't work anymore. I will investigate it in more detail. \nComment: @cccs-mog An update to staging has been applied to start the thread. Could you test it out again? I appreciate your patience on this!\nComment: Observation based on the last version: \r\n-Restarting cape is not cleaning up correctly, the process is not fully killed so the port is still in used.\r\n-Restarting cape on AZ give an error because I think it doesn't close correctly the vmss(s).\r\n-Still having issue with submitting tasks\r\n\r\nRegarding the thread and the semaphore, it seem fine now thanks for fixing it ! @tbeadle \nComment: @cccs-mog \r\n> -Restarting cape is not cleaning up correctly, the process is not fully killed so the port is still in used.\r\n\r\nWhich port are you referring to? How are you attempting to stop cape?\r\n\r\n> -Restarting cape on AZ give an error because I think it doesn't close correctly the vmss(s).\r\n\r\nCan you give more details about the error you're seeing (e.g. a traceback). I don't use azure at all. I've looked at the code again and everything *seems* sane, but I must be missing something.\r\n\r\n> -Still having issue with submitting tasks\r\n\r\nEarlier you said the database is full of tasks, but the pending count is 0. What state are those tasks in?\r\n\r\nWhat exactly happens when you try to use submit.py?\r\n\r\nThanks! Unfortunately, I won't be able to respond until after Sunday, though.\nComment: hello guys, not sure how this is relevant to this branch, but i see that on master it doesn-t work neither, i had pending \u00b4static\u00b4 tasks that wasn't processed and it wasnt going to task that need vm, looking into code what changed to try to spot where we changed that\nComment: 1) I am talking about port 2042 and I am killing the service via systemctl. From the process viewer it seem that some threads are still running. \r\n2)Regarding azure the only trace or hint of the problem is` [root] CRITICAL: CuckooCriticalError: No machines available `, which is solved by creating a new vmsss for Azure, note that I am using reset_pool_size=true. This behavior was not there consistently before trying this PR so this is why this is mentionned. I am trying to debug the issue but might take some time. \r\n```\r\nFile \"CAPEv2/cuckoo.py\", line 143, in <module>\r\n    cuckoo_main(max_analysis_count=args.max_analysis_count)\r\n  File \"CAPEv2/cuckoo.py\", line 104, in cuckoo_main\r\n    sched.start()\r\n  File \"CAPEv2/lib/cuckoo/core/scheduler.py\", line 289, in start\r\n    self.machinery_manager.initialize_machinery()\r\n  File \"CAPEv2/lib/cuckoo/core/machinery_manager.py\", line 241, in initialize_machinery\r\n    raise CuckooCriticalError(\"No machines available\")\r\nlib.cuckoo.common.exceptions.CuckooCriticalError: No machines available\r\n```\r\n3)The status is \"reported\" which I think is a new status ? The tasks get added to the DB, I get the tasks successfully created but the queue is still 0. The tasks in the DB are in the \"reported\" state. \nComment: i see a logic issue in general here and in master, about pending any that is not file category, like static, pcap\r\nIf this code is not satisfied `relevant_machine_is_available = self.db.is_relevant_machine_available(task)` it won't process task, but if task is static, pcap it wont get futher to another tasks, im trying to spot where code changed, i probably will add quick check of category. There is `category_checks` but is too late, and never really reaches to it\r\n\r\n`if self.task.category in (\"file\", \"pcap\", \"static\"):`\nComment: I saw that particular issue while I was working on the scheduler and think\r\nthat it should be addressed in staging.\r\n\r\nOn Wed, Apr 17, 2024, 2:19 PM doomedraven ***@***.***> wrote:\r\n\r\n> i see a logic issue in general here and in master, about pending any that\r\n> is not file category, like static, pcap\r\n> If this code is not satisfied relevant_machine_is_available =\r\n> self.db.is_relevant_machine_available(task) it won't process task, but if\r\n> task is static, pcap it wont get futher to another tasks, im trying to spot\r\n> where code changed, i probably will add quick check of category. There is\r\n> category_checks but is too late, and never really reaches to it\r\n>\r\n> if self.task.category in (\"file\", \"pcap\", \"static\"):\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/pull/2041#issuecomment-2062034597>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/ABADCROR3Y3BB2KJLJWEP2TY53DL7AVCNFSM6AAAAABFU3Y2HCVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDANRSGAZTINJZG4>\r\n> .\r\n> You are receiving this because you were mentioned.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: if you ask about my issues, yes for sure, but that one affects master, so i put temp fix in master right now, as i will be off for 2 w i will try to see where is the proper place to put that in staging, but can't promise nothing\nComment: ok i see here is solved\r\n```\r\nif task_candidate.category not in CATEGORIES_NEEDING_VM:\r\n                # This task can definitely be processed because it doesn't need a machine.\r\n                task = task_candidate\r\n                break\r\n```\nComment: but i would love if we could think about optimize case where we have static jobs, all VMs are running thats fine, but static jobs are not processed, and while tasks are in VM, servers are idling when they could process, but we maybe can do this once the main feature is done\nComment: > 1. I am talking about port 2042 and I am killing the service via systemctl. From the process viewer it seem that some threads are still running.\r\n\r\nCould it be that you have tasks running when you attempt to stop the service and just aren't waiting long enough? A normal SIGTERM, as issued by `systemctl stop` will allow the tasks that are currently running to finish and then the process will exit. See https://github.com/kevoreilly/CAPEv2/blob/cc4d767c96cf682a166f0ed7a69aed770959f303/lib/cuckoo/core/scheduler.py#L270. \r\n\r\n>    2)Regarding azure the only trace or hint of the problem is`[root] CRITICAL: CuckooCriticalError: No machines available`, which is solved by creating a new vmsss for Azure, note that I am using reset_pool_size=true. This behavior was not there consistently before trying this PR so this is why this is mentionned. I am trying to debug the issue but might take some time.\r\n\r\nAgain, I've never used Azure, but it would seem to me like having a vmss available for Cape to use (if I'm correctly understanding what a vmss is) is a reasonable requirement, so this may be a \"works as expected\" type of thing. I'm not sure.\r\n\r\n> 3)The status is \"reported\" which I think is a new status ? The tasks get added to the DB, I get the tasks successfully created but the queue is still 0. The tasks in the DB are in the \"reported\" state.\r\n\r\n\"reported\" is not a new status. It is what the task goes to after cape-processor is finished with it. Out of curiosity, are these tasks submitted for static analysis, as opposed to dynamic analysis that requires a VM?\nComment: @cccs-mog was you able to check this? It would be nice to merge with but ensuring that it works for you too\nComment: Hi @doomedraven and @tbeadle, I tested the new version and I am still facing the same issues. Haven't had much time to look into it yet, the issue seem to be the status not getting reflected correctly for tasks and machines.  Regarding the machines the status is NULL which is obviously not a valid status. Not sure how the machinery would be affecting the tasks status. Looking into it. \r\n\r\nPossible reason why the machines doesn't get a status on restart/ are not counted: AZ overload _initialize which is probably fine, the machine are found in the database so they are not added again, but somehow between the initialization and the prompt for machines, it get emptied out which make it fail. Could it be that the deletion is made in another thread and the timing is bad ? We could always just assume it's empty on az side for every restart which might solve that particular issue. \r\n\r\nRegarding tasks: Now I am totally unable to create tasks using submit utilities or anything else so perhaps the issue is in add() function. Not totally sure. Will continue exploring. \nComment: > Regarding tasks: Now I am totally unable to create tasks using submit utilities\r\n\r\nI see this as well. I think we just need to wrap a transaction around the db calls in `utils/submit.py`:\r\n1. [add_url](https://github.com/kevoreilly/CAPEv2/blob/791b0609a300b61b7ae3b52d5c3c2007597033ed/utils/submit.py#L208)\r\n2. [demux_sample_and_add_to_db](https://github.com/kevoreilly/CAPEv2/blob/791b0609a300b61b7ae3b52d5c3c2007597033ed/utils/submit.py#L342)\r\n\nComment: Thanks for fixing this. \r\nNow while running tasks I get this annoying messages:\r\n2024-05-08 21:03:55,649 [lib.cuckoo.core.machinery_manager] DEBUG: Task #XX: no machine available yet for task requiring machine '', platform '' or tags '[<Tag(2,'win10x64')>]'. It doesn't seem to affect the analysis. Is this an expected behavior with this new way of scheduling ? If so maybe this error message should be limited/disabled ? \r\n\r\nFound a few instances of theses as well: \r\nsqlalchemy.orm.exc.StaleDataError: UPDATE statement on table 'machines' expected to update 1 row(s); 0 were matched.\r\n\nComment: ouch is 2w since last commit, any progress here guys? i would love to merge it but dont want to break anyones sandbox\nComment: > 2024-05-08 21:03:55,649 [lib.cuckoo.core.machinery_manager] DEBUG: Task #XX: no machine available yet for task requiring machine '', platform '' or tags '[<Tag(2,'win10x64')>]'. It doesn't seem to affect the analysis. Is this an expected behavior with this new way of scheduling ? If so maybe this error message should be limited/disabled ?\r\n\r\nYou're seeing debugging messages which are going to be verbose.\r\n\r\nMaybe you're running with `-d/--debug`?\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/21c679f5001b661e001857c60633e6f885765987/cuckoo.py#L116\nComment: @cccs-mog im gonna merge this to master but please be on hold for 1-2w or test it on dev, we gonna help you to get it working on cloud, but i need this in as there a lot of good code\nComment: I am running with debug yes, so if there is no particular issue on that front this is fine with me. Only remaining issue is the machines not getting created on restart unless I switch vmss, its between the initialization and the prompt for machines, it get emptied out which make it fail.I think it's really the deletion which is happening between the machinery check. I will try assuming it's empty on az side for every restart to see if this resolve the issue. Otherwise it seem usable and will continue using it on dev for a few week and reach out for any issue. Thanks everyone ! ",
+  "Title: Updates to scheduler overhaul\nBody: This is for fixes to https://github.com/kevoreilly/CAPEv2/pull/2037",
+  "Title: invoke cleaning\nBody: None",
+  "Title: Staging\nBody: None",
+  "Title: Database and scheduler overhaul\nBody: First off, I apologize for the size of this diff.\r\n\r\nSee the individual commits for a little more detail about the specific changes, but this PR aims to do a few things:\r\n\r\n- Make maintenance of the scheduler simpler\r\n- Make interaction with the database use the \"unit of work\" pattern so that transactions can be rolled back easily if an error occurs during some piece of it.\r\n- Remove the need for the machine lock and \"scheduling\" of machines for tasks, while keeping it performant.\r\n- Improve test coverage and make testing easier because configs and the database will start at known, clean state.\r\n\r\nThis must not be merged without vetting it in the staging environment for a while. I would love it if people using a cloud environment for the VM's could try it out as well because I do not have a way to test that.\nComment: I am seeing:\r\n```\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 497, in run\r\n    self.launch_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 459, in launch_analysis\r\n    success = self.perform_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 445, in perform_analysis\r\n    self.run_analysis_on_guest()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 402, in run_analysis_on_guest\r\n    options = self.build_options()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/analysis_manager.py\", line 236, in build_options\r\n    \"options\": self.get_machine_specific_options(self.task.options),\r\nAttributeError: 'AnalysisManager' object has no attribute 'get_machine_specific_options'\r\n```\r\nCan't see ``get_machine_specific_options()`` in the code\nComment: I'll be pushing up another commit shortly.",
+  "Title: Fix process log\nBody: I found that the process.log doesn't have log, and each task's log such as process-123.log doesn't have log.  \r\nNow I know the process.log should have log. The autoprocess has \"log.info\", but the message cannot be logged.    \r\nIt's normal that the process-123.log doesn't have log, because there is no \"log.info\" in process func.  \r\n\r\nI fix this bug by separating init_logging func.  \nComment: thanks, i will check this on tuesday\nComment: Is there any problem?\nComment: lack of time\nComment: sorry for delay, had another priorities to handle first.\r\n\r\nthe log is done to be in logs or in analysis folder\r\n```\r\nif logconf.logger.process_analysis_folder:\r\n            path = os.path.join(CUCKOO_ROOT, \"storage\", \"analyses\", str(tid), \"process.log\")\r\n        else:\r\n            path = os.path.join(CUCKOO_ROOT, \"log\", \"process-%s.log\" % str(tid))\r\n```\r\n\r\nyou neither has it there? as it works for me just fine\nComment: > sorry for delay, had another priorities to handle first.\r\n> \r\n> the log is done to be in logs or in analysis folder\r\n> \r\n> ```\r\n> if logconf.logger.process_analysis_folder:\r\n>             path = os.path.join(CUCKOO_ROOT, \"storage\", \"analyses\", str(tid), \"process.log\")\r\n>         else:\r\n>             path = os.path.join(CUCKOO_ROOT, \"log\", \"process-%s.log\" % str(tid))\r\n> ```\r\n> \r\n> you neither has it there? as it works for me just fine\r\n\r\nI have those codes\uff0c but there is a problem.  \r\nBefore my pr, the init_logging  func is invoked by process func, so the log before the process func will not write to the process.log file, such as `log.info(\"Processing analysis data\")`, `log.info(\"Processing analysis data for Task #%d\", task.id)`\nComment: thanks for more info, will check again in a bit \nComment: > thanks for more info, will check again in a bit\r\n\r\nIf there is any question, please ask me.  \nComment: there are no questions, there is lack of time so i must manage priorities, and this one must be tested, don-t forget we doing this in our free time, we have our jobs who pays our salaries, i know is small PR, but there some stuff that I must verify before, but sadly this weeks not that much time\nComment: > there are no questions, there is lack of time so i must manage priorities, and this one must be tested, don-t forget we doing this in our free time, we have our jobs who pays our salaries, i know is small PR, but there some stuff that I must verify before, but sadly this weeks not that much time\r\n\r\nGot it. I also do this in my free time. So please relax and do it later.  \nComment: im relaxed lol, but as you push over and over i had to clarify you that is not our paid job. Trust me the latest thing that i want is to have PRs be on hold\nComment: thanks, sorry for delay",
+  "Title: Can't enable web interface, django not found\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- X] I am running the latest version\r\n- [X I did read the README!\r\n- [X I checked the documentation and found no answer\r\n- [X I checked to make sure that this issue has not already been filed\r\n- [ ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nI am just trying to set up the web interface to work locally, but I am missing the django module. However there are no missing dependencies to install or update\r\n\r\n# Current Behavior\r\n\r\nI am getting errors when running the following commands as Cape user:\r\npoetry run python manage.py createsuperuser\r\npython3 manage.py runserver_plus --traceback --keep-meta-shutdown\r\n\r\nI ensured I have mongodb enabled in reporting.conf\r\n\r\n## Steps to Reproduce\r\n\r\nOutput of \"poetry run python manage.py createsuperuser\":\r\n```\r\nTraceback (most recent call last):\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/base.py\", line 3371, in _wrap_pool_connect\r\n    return fn()\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/pool/base.py\", line 327, in connect\r\n    return _ConnectionFairy._checkout(self)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/pool/base.py\", line 894, in _checkout\r\n    fairy = _ConnectionRecord.checkout(pool)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/pool/base.py\", line 493, in checkout\r\n    rec = pool._do_get()\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/pool/impl.py\", line 145, in _do_get\r\n    with util.safe_reraise():\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/util/langhelpers.py\", line 70, in __exit__\r\n    compat.raise_(\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/util/compat.py\", line 211, in raise_\r\n    raise exception\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/pool/impl.py\", line 143, in _do_get\r\n    return self._create_connection()\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/pool/base.py\", line 273, in _create_connection\r\n    return _ConnectionRecord(self)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/pool/base.py\", line 388, in __init__\r\n    self.__connect()\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/pool/base.py\", line 690, in __connect\r\n    with util.safe_reraise():\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/util/langhelpers.py\", line 70, in __exit__\r\n    compat.raise_(\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/util/compat.py\", line 211, in raise_\r\n    raise exception\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/pool/base.py\", line 686, in __connect\r\n    self.dbapi_connection = connection = pool._invoke_creator(self)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/create.py\", line 574, in connect\r\n    return dialect.connect(*cargs, **cparams)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/default.py\", line 598, in connect\r\n    return self.dbapi.connect(*cargs, **cparams)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/psycopg2/__init__.py\", line 122, in connect\r\n    conn = _connect(dsn, connection_factory=connection_factory, **kwasync)\r\npsycopg2.OperationalError: connection to server at \"localhost\" (127.0.0.1), port 5432 failed: FATAL:  password authentication failed for user \"cape\"\r\n\r\n\r\nThe above exception was the direct cause of the following exception:\r\n\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/web/../lib/cuckoo/core/database.py\", line 589, in __init__\r\n    Base.metadata.create_all(self.engine)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/sql/schema.py\", line 4930, in create_all\r\n    bind._run_ddl_visitor(\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/base.py\", line 3237, in _run_ddl_visitor\r\n    with self.begin() as conn:\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/base.py\", line 3153, in begin\r\n    conn = self.connect(close_with_result=close_with_result)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/base.py\", line 3325, in connect\r\n    return self._connection_cls(self, close_with_result=close_with_result)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/base.py\", line 96, in __init__\r\n    else engine.raw_connection()\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/base.py\", line 3404, in raw_connection\r\n    return self._wrap_pool_connect(self.pool.connect, _connection)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/base.py\", line 3374, in _wrap_pool_connect\r\n    Connection._handle_dbapi_exception_noconnection(\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/base.py\", line 2208, in _handle_dbapi_exception_noconnection\r\n    util.raise_(\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/util/compat.py\", line 211, in raise_\r\n    raise exception\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/base.py\", line 3371, in _wrap_pool_connect\r\n    return fn()\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/pool/base.py\", line 327, in connect\r\n    return _ConnectionFairy._checkout(self)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/pool/base.py\", line 894, in _checkout\r\n    fairy = _ConnectionRecord.checkout(pool)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/pool/base.py\", line 493, in checkout\r\n    rec = pool._do_get()\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/pool/impl.py\", line 145, in _do_get\r\n    with util.safe_reraise():\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/util/langhelpers.py\", line 70, in __exit__\r\n    compat.raise_(\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/util/compat.py\", line 211, in raise_\r\n    raise exception\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/pool/impl.py\", line 143, in _do_get\r\n    return self._create_connection()\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/pool/base.py\", line 273, in _create_connection\r\n    return _ConnectionRecord(self)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/pool/base.py\", line 388, in __init__\r\n    self.__connect()\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/pool/base.py\", line 690, in __connect\r\n    with util.safe_reraise():\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/util/langhelpers.py\", line 70, in __exit__\r\n    compat.raise_(\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/util/compat.py\", line 211, in raise_\r\n    raise exception\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/pool/base.py\", line 686, in __connect\r\n    self.dbapi_connection = connection = pool._invoke_creator(self)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/create.py\", line 574, in connect\r\n    return dialect.connect(*cargs, **cparams)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/default.py\", line 598, in connect\r\n    return self.dbapi.connect(*cargs, **cparams)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/psycopg2/__init__.py\", line 122, in connect\r\n    conn = _connect(dsn, connection_factory=connection_factory, **kwasync)\r\nsqlalchemy.exc.OperationalError: (psycopg2.OperationalError) connection to server at \"localhost\" (127.0.0.1), port 5432 failed: FATAL:  password authentication failed for user \"cape\"\r\n\r\n(Background on this error at: https://sqlalche.me/e/14/e3q8)\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/web/manage.py\", line 14, in <module>\r\n    execute_from_command_line(sys.argv)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/management/__init__.py\", line 442, in execute_from_command_line\r\n    utility.execute()\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/management/__init__.py\", line 382, in execute\r\n    settings.INSTALLED_APPS\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/conf/__init__.py\", line 102, in __getattr__\r\n    self._setup(name)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/conf/__init__.py\", line 89, in _setup\r\n    self._wrapped = Settings(settings_module)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/conf/__init__.py\", line 217, in __init__\r\n    mod = importlib.import_module(self.SETTINGS_MODULE)\r\n  File \"/usr/lib/python3.10/importlib/__init__.py\", line 126, in import_module\r\n    return _bootstrap._gcd_import(name[level:], package, level)\r\n  File \"<frozen importlib._bootstrap>\", line 1050, in _gcd_import\r\n  File \"<frozen importlib._bootstrap>\", line 1027, in _find_and_load\r\n  File \"<frozen importlib._bootstrap>\", line 1006, in _find_and_load_unlocked\r\n  File \"<frozen importlib._bootstrap>\", line 688, in _load_unlocked\r\n  File \"<frozen importlib._bootstrap_external>\", line 883, in exec_module\r\n  File \"<frozen importlib._bootstrap>\", line 241, in _call_with_frames_removed\r\n  File \"/opt/CAPEv2/web/web/settings.py\", line 26, in <module>\r\n    from lib.cuckoo.core.startup import init_rooter, init_routing\r\n  File \"/opt/CAPEv2/web/../lib/cuckoo/core/startup.py\", line 33, in <module>\r\n    from lib.cuckoo.core.plugins import import_package, import_plugin, list_plugins\r\n  File \"/opt/CAPEv2/web/../lib/cuckoo/core/plugins.py\", line 34, in <module>\r\n    db = Database()\r\n  File \"/opt/CAPEv2/web/../lib/cuckoo/common/utils.py\", line 737, in __call__\r\n    self._instances[self] = super(Singleton, self).__call__(*args, **kwargs)\r\n  File \"/opt/CAPEv2/web/../lib/cuckoo/core/database.py\", line 591, in __init__\r\n    raise CuckooDatabaseError(f\"Unable to create or connect to database: {e}\")\r\nlib.cuckoo.common.exceptions.CuckooDatabaseError: Unable to create or connect to database: (psycopg2.OperationalError) connection to server at \"localhost\" (127.0.0.1), port 5432 failed: FATAL:  password authentication failed for user \"cape\"\r\n\r\n(Background on this error at: https://sqlalche.me/e/14/e3q8)\r\n```\r\n\r\nOutput of \"python3 manage.py runserver_plus --traceback --keep-meta-shutdown\":\r\n```\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/web/manage.py\", line 12, in <module>\r\n    from django.core.management import execute_from_command_line\r\nModuleNotFoundError: No module named 'django'\r\n```\r\n\r\n## Context\r\nTo try and fix this, I go to install missing dependencies from /opt/CAPEv2/ (including optional dependencies) but there is nothing else to install and get this output:\r\n\r\n```\r\nInstalling dependencies from lock file\r\n\r\nNo dependencies to install or update\r\n\r\nInstalling the current project: CAPEv2 (0.1.0)\r\nThe current project could not be installed: No file/folder found for package capev2\r\nIf you do not want to install the current project use --no-root\r\n```\r\nAny advice/help would be appreciated, thanks :)\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 22.04, Windows 10\r\n\nComment: hello, did you read your own output? read this again. Fix your database connection.\r\n```\r\npsycopg2.OperationalError: connection to server at \"localhost\" (127.0.0.1), port 5432 failed: FATAL:  password authentication failed for user \"cape\"\r\n```\r\n\r\nAnd if you are not in `poetry shell`. you must to run commands with prefix `poetry run`\nComment: i have updated docs for you for the webgui https://github.com/kevoreilly/CAPEv2/commit/d326ed5689f2df38b2b45f18f80579eb2c56db8a. But you still need to fix DB connection problem\nComment: Yeah just realised I was being dumb, it's all working now. Thanks",
+  "Title: Fix mongodb permission for data folder\nBody: None",
+  "Title: Fix setting tlsdump option\nBody: None",
+  "Title: Skip subprocess call if user STOP is sent.\nBody: state.get(\"async_subprocess\") is resetting back the status to RUNNING even if it was forcefully changed to COMPLETE.\nComment: thanks",
+  "Title: Fix for the scheduling problem on non batch scheduling\nBody: None\nComment: It fail the test because the function acquire_machine now look for scheduled machines only when assigning. Need to add this to the test. \nComment: Thanks for fixing the test ! \nComment: thanks for the logic fix",
+  "Title: Update kvm-qemu.sh\nBody: Change \"apt\" to \"apt-get\".\nComment: totally forgot about this one, thanks",
+  "Title: fix error message\nBody: None",
+  "Title: about apt to apt-get in installation scripts\nBody: In kvm-qemu.sh and cape2.sh, \"apt\" is used.  \r\nIs \"apt-get\" more appropriate than \"apt\"?  \nComment: No, is the same, is there any problem to use apt?\r\n\r\nEl jue, 28 mar 2024, 2:48, qux-bbb ***@***.***> escribi\u00f3:\r\n\r\n> In kvm-qemu.sh and cape2.sh, \"apt\" is used.\r\n> Is \"apt-get\" more appropriate than \"apt\"?\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/2028>, or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3Y4MUHTX5SKUNEG3Q3Y2NZGZAVCNFSM6AAAAABFL6C4KGVHI2DSMVQWIX3LMV43ASLTON2WKOZSGIYTEMJYGUZDCNQ>\r\n> .\r\n> You are receiving this because you are subscribed to this thread.Message\r\n> ID: ***@***.***>\r\n>\r\n\nComment: OK, I just hear that \"apt\" for human and \"apt-get\" for script.  \nComment: so apt is better\r\n\r\n> Key differences: apt vs. apt-get. The difference between apt and apt-get is not just that apt is a newer version of apt-get. The apt command was designed as a more user-friendly alternative to apt-get, combining the functionality of multiple package management tools for user convenience. \r\n\nComment: `man apt`, then you can find this:  \r\n```\r\nSCRIPT USAGE AND DIFFERENCES FROM OTHER APT TOOLS\r\n       The apt(8) commandline is designed as an end-user tool and it may change behavior between versions. While it\r\n       tries not to break backward compatibility this is not guaranteed either if a change seems beneficial for\r\n       interactive use.\r\n\r\n       All features of apt(8) are available in dedicated APT tools like apt-get(8) and apt-cache(8) as well.  apt(8)\r\n       just changes the default value of some options (see apt.conf(5) and specifically the Binary scope). So you\r\n       should prefer using these commands (potentially with some additional options enabled) in your scripts as they\r\n       keep backward compatibility as much as possible.\r\n```\nComment: good point, man FTW. updated https://github.com/kevoreilly/CAPEv2/commit/cde855b2129bffc84c6bc616b5f645842edefe73",
+  "Title: Fix typo\nBody: None",
+  "Title: web_utils: allow download via sample URLs containing hashes\nBody: None",
+  "Title: Update objects.py\nBody: None",
+  "Title: Processing Failed\nBody: ## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x ] I am running the latest version\r\n- [x ] I did read the README!\r\n- [ x] I checked the documentation and found no answer\r\n- [x ] I checked to make sure that this issue has not already been filed\r\n- [ x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x ] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\nfinishing processing \r\n\r\n# Current Behavior\r\n\r\nfailed_processing after analysis\r\n\r\n\r\n## Steps to Reproduce\r\n\r\n1. file analysis run\r\n2. check on status which shows running and its recording the processes\r\n3. finish analysis\r\n4. starts processing\r\n5. fails processing\r\n\r\n## Context\r\nwhen running a URL analysis its fully completes other then having the log `Task #failed: Analysis 41` but i still see the report with all the information. When i try to run a file analysis it kind of works but fails processing.\r\n\r\n\r\nubuntu 22.04\r\nvm running win10pro using kvm\r\n\r\n## Failure Logs\r\ncant find logs\r\n\nComment: logs are in `logs/process.log` you can reprocess task as cape user from `/opt/CAPEv2` with `poetry run python utils/process.py -r 41 -d` to see log in debug\nComment: sorry for the late reply , after running the command you gave me , its processed successfully, so i dont really know what would be the issue when it fails processing when i submit an analysis and it only can be processed after running the script manually. would you have any idea?\nComment: Have you tried restarting the processing service?\r\n\r\n`sudo systemctl restart cape-processor`\nComment: Or even check its status:\r\n\r\n`systemctl status cape-processor`\nComment: from the cape-processor status i just get a timeout error and dependency issues for flare-capa when i try to install flare-capa i just get this `ERROR: pip's dependency resolver does not currently take into account all the packages that are installed. This behaviour is the source of the following dependency conflicts.\r\nflare-floss 3.0.1 requires pydantic==1.10.9, but you have pydantic 2.4.0 which is incompatible.\r\nflare-floss 3.0.1 requires tqdm==4.65.0, but you have tqdm 4.66.1 which is incompatible.\r\n`\r\n\r\ntqdm and pydantic was installed using the script so how should i continue with this\r\n\nComment: And my previous message?\nComment: ive tried restarting multiple times just the dependency issue other then that no other errors\r\n\nComment: And as doomed asked:\r\n\r\n`logs/process.log`\nComment: Rather than asking us to guess, provide more info\nComment: by parts\r\n* to install any dependency you MUST to install it to poetry env, so you can run `poetry run pip install X` or `poetry shell` and then `pip install X`, but this won't break your analysis\r\n* `rom the cape-processor status i just get a timeout error` what is the problem to increase timeout?\nComment: currently the timeout is at 900 right now im running a new analysis to check for any other logs i can get from cape itself , cape-processor including the status\r\n\nComment: from cape i get `2024-03-27 16:27:31,564 [lib.cuckoo.core.guest] INFO: Task #failed: Analysis 49\r\n2024-03-27 16:27:33,824 [lib.cuckoo.core.scheduler] INFO: Disabled route 'internet'\r\n2024-03-27 16:27:33,868 [lib.cuckoo.core.scheduler] INFO: Task #49: analysis procedure completed`\r\n\r\nfrom log/process i got literally nothing \r\n\r\nand from cape-processor status i got `Mar 27 16:13:29 f12capev2 systemd[1]: Started CAPE report processor.\r\nMar 27 16:27:34 f12capev2 python3[1974]: Missed dependency: install pyattck library, see requirements for proper version\r\nMar 27 16:27:34 f12capev2 python3[1974]: Missed dependency: pip3 install volatility3 -U\r\nMar 27 16:27:34 f12capev2 python3[1974]: name 'interfaces' is not defined\r\nMar 27 16:27:34 f12capev2 python3[1974]: Unable to import plugin \"modules.processing.sysmon\": No module named 'xmltodict'\r\nMar 27 16:42:34 f12capev2 python3[1974]: Processing Timeout ('Task timeout', 900). Function: 900`\nComment: well there is nothing as by default is not executed in debug mode. so timeout 900, if you would search over issues i responded that tons of times. \r\n\r\nwhy timeout happens? well there is tons of reasons, old hardware, not enough resources, etc etc that is out of our way of recon, that is your tasks to adjust everything to your hardware or dissable not used modules, etc\r\n\r\n+ read readme there is steps to debug those problems. So as issue here is timeout, as i told is not really issue, just tune your server configs",
+  "Title: AgentTesla tweaks\nBody: -  Improvements for the dynamic handling of V4 \r\n-  AgentTesla yara rule optimization to match sample that are deobfuscated via de4dot. e.g. c8274e8e105104d68650a281fad995b46bf4e0a78f582058b3562fbcaa2c7c5b\nComment: Thank you \u2764\ufe0f ",
+  "Title: Ask the agent to create a directory that already exists\nBody: - If the directory already exists, this is no longer invalid\r\n- Added a TODO item for a test where we try to create an invalid directory that should fail",
+  "Title: Fix issues with looking for specific config files\nBody: There might not be a conf/cuckoo.conf file, i.e. if the user has simply created custom/conf/cuckoo.conf to override the defaults.\nComment: thanks",
+  "Title: chore(deps-dev): bump black from 22.12.0 to 24.3.0\nBody: Bumps [black](https://github.com/psf/black) from 22.12.0 to 24.3.0.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a href=\"https://github.com/psf/black/releases\">black's releases</a>.</em></p>\n<blockquote>\n<h2>24.3.0</h2>\n<h3>Highlights</h3>\n<p>This release is a milestone: it fixes Black's first CVE security vulnerability. If you\nrun Black on untrusted input, or if you habitually put thousands of leading tab\ncharacters in your docstrings, you are strongly encouraged to upgrade immediately to fix\n<a href=\"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21503\">CVE-2024-21503</a>.</p>\n<p>This release also fixes a bug in Black's AST safety check that allowed Black to make\nincorrect changes to certain f-strings that are valid in Python 3.12 and higher.</p>\n<h3>Stable style</h3>\n<ul>\n<li>Don't move comments along with delimiters, which could cause crashes (<a href=\"https://redirect.github.com/psf/black/issues/4248\">#4248</a>)</li>\n<li>Strengthen AST safety check to catch more unsafe changes to strings. Previous versions\nof Black would incorrectly format the contents of certain unusual f-strings containing\nnested strings with the same quote type. Now, Black will crash on such strings until\nsupport for the new f-string syntax is implemented. (<a href=\"https://redirect.github.com/psf/black/issues/4270\">#4270</a>)</li>\n<li>Fix a bug where line-ranges exceeding the last code line would not work as expected\n(<a href=\"https://redirect.github.com/psf/black/issues/4273\">#4273</a>)</li>\n</ul>\n<h3>Performance</h3>\n<ul>\n<li>Fix catastrophic performance on docstrings that contain large numbers of leading tab\ncharacters. This fixes\n<a href=\"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21503\">CVE-2024-21503</a>.\n(<a href=\"https://redirect.github.com/psf/black/issues/4278\">#4278</a>)</li>\n</ul>\n<h3>Documentation</h3>\n<ul>\n<li>Note what happens when <code>--check</code> is used with <code>--quiet</code> (<a href=\"https://redirect.github.com/psf/black/issues/4236\">#4236</a>)</li>\n</ul>\n<h2>24.2.0</h2>\n<h3>Stable style</h3>\n<ul>\n<li>Fixed a bug where comments where mistakenly removed along with redundant parentheses\n(<a href=\"https://redirect.github.com/psf/black/issues/4218\">#4218</a>)</li>\n</ul>\n<h3>Preview style</h3>\n<ul>\n<li>Move the <code>hug_parens_with_braces_and_square_brackets</code> feature to the unstable style\ndue to an outstanding crash and proposed formatting tweaks (<a href=\"https://redirect.github.com/psf/black/issues/4198\">#4198</a>)</li>\n<li>Fixed a bug where base expressions caused inconsistent formatting of ** in tenary\nexpression (<a href=\"https://redirect.github.com/psf/black/issues/4154\">#4154</a>)</li>\n<li>Checking for newline before adding one on docstring that is almost at the line limit\n(<a href=\"https://redirect.github.com/psf/black/issues/4185\">#4185</a>)</li>\n<li>Remove redundant parentheses in <code>case</code> statement <code>if</code> guards (<a href=\"https://redirect.github.com/psf/black/issues/4214\">#4214</a>).</li>\n</ul>\n<h3>Configuration</h3>\n<!-- raw HTML omitted -->\n</blockquote>\n<p>... (truncated)</p>\n</details>\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/psf/black/blob/main/CHANGES.md\">black's changelog</a>.</em></p>\n<blockquote>\n<h2>24.3.0</h2>\n<h3>Highlights</h3>\n<p>This release is a milestone: it fixes Black's first CVE security vulnerability. If you\nrun Black on untrusted input, or if you habitually put thousands of leading tab\ncharacters in your docstrings, you are strongly encouraged to upgrade immediately to fix\n<a href=\"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21503\">CVE-2024-21503</a>.</p>\n<p>This release also fixes a bug in Black's AST safety check that allowed Black to make\nincorrect changes to certain f-strings that are valid in Python 3.12 and higher.</p>\n<h3>Stable style</h3>\n<ul>\n<li>Don't move comments along with delimiters, which could cause crashes (<a href=\"https://redirect.github.com/psf/black/issues/4248\">#4248</a>)</li>\n<li>Strengthen AST safety check to catch more unsafe changes to strings. Previous versions\nof Black would incorrectly format the contents of certain unusual f-strings containing\nnested strings with the same quote type. Now, Black will crash on such strings until\nsupport for the new f-string syntax is implemented. (<a href=\"https://redirect.github.com/psf/black/issues/4270\">#4270</a>)</li>\n<li>Fix a bug where line-ranges exceeding the last code line would not work as expected\n(<a href=\"https://redirect.github.com/psf/black/issues/4273\">#4273</a>)</li>\n</ul>\n<h3>Performance</h3>\n<ul>\n<li>Fix catastrophic performance on docstrings that contain large numbers of leading tab\ncharacters. This fixes\n<a href=\"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21503\">CVE-2024-21503</a>.\n(<a href=\"https://redirect.github.com/psf/black/issues/4278\">#4278</a>)</li>\n</ul>\n<h3>Documentation</h3>\n<ul>\n<li>Note what happens when <code>--check</code> is used with <code>--quiet</code> (<a href=\"https://redirect.github.com/psf/black/issues/4236\">#4236</a>)</li>\n</ul>\n<h2>24.2.0</h2>\n<h3>Stable style</h3>\n<ul>\n<li>Fixed a bug where comments where mistakenly removed along with redundant parentheses\n(<a href=\"https://redirect.github.com/psf/black/issues/4218\">#4218</a>)</li>\n</ul>\n<h3>Preview style</h3>\n<ul>\n<li>Move the <code>hug_parens_with_braces_and_square_brackets</code> feature to the unstable style\ndue to an outstanding crash and proposed formatting tweaks (<a href=\"https://redirect.github.com/psf/black/issues/4198\">#4198</a>)</li>\n<li>Fixed a bug where base expressions caused inconsistent formatting of ** in tenary\nexpression (<a href=\"https://redirect.github.com/psf/black/issues/4154\">#4154</a>)</li>\n<li>Checking for newline before adding one on docstring that is almost at the line limit\n(<a href=\"https://redirect.github.com/psf/black/issues/4185\">#4185</a>)</li>\n<li>Remove redundant parentheses in <code>case</code> statement <code>if</code> guards (<a href=\"https://redirect.github.com/psf/black/issues/4214\">#4214</a>).</li>\n</ul>\n<!-- raw HTML omitted -->\n</blockquote>\n<p>... (truncated)</p>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/psf/black/commit/552baf822992936134cbd31a38f69c8cfe7c0f05\"><code>552baf8</code></a> Prepare release 24.3.0 (<a href=\"https://redirect.github.com/psf/black/issues/4279\">#4279</a>)</li>\n<li><a href=\"https://github.com/psf/black/commit/f00093672628d212b8965a8993cee8bedf5fe9b8\"><code>f000936</code></a> Fix catastrophic performance in lines_with_leading_tabs_expanded() (<a href=\"https://redirect.github.com/psf/black/issues/4278\">#4278</a>)</li>\n<li><a href=\"https://github.com/psf/black/commit/7b5a657285f38126bf28483478bbd9ea928077ec\"><code>7b5a657</code></a> Fix --line-ranges behavior when ranges are at EOF (<a href=\"https://redirect.github.com/psf/black/issues/4273\">#4273</a>)</li>\n<li><a href=\"https://github.com/psf/black/commit/1abcffc81816257985678f08c61584ed4287f22a\"><code>1abcffc</code></a> Use regex where we ignore case on windows (<a href=\"https://redirect.github.com/psf/black/issues/4252\">#4252</a>)</li>\n<li><a href=\"https://github.com/psf/black/commit/719e67462c80574c81a96faa144886de6da84489\"><code>719e674</code></a> Fix 4227: Improve documentation for --quiet --check (<a href=\"https://redirect.github.com/psf/black/issues/4236\">#4236</a>)</li>\n<li><a href=\"https://github.com/psf/black/commit/e5510afc06cd238cd0cba4095283943a870a7e7b\"><code>e5510af</code></a> update plugin url for Thonny (<a href=\"https://redirect.github.com/psf/black/issues/4259\">#4259</a>)</li>\n<li><a href=\"https://github.com/psf/black/commit/6af7d1109693c4ad3af08ecbc34649c232b47a6d\"><code>6af7d11</code></a> Fix AST safety check false negative (<a href=\"https://redirect.github.com/psf/black/issues/4270\">#4270</a>)</li>\n<li><a href=\"https://github.com/psf/black/commit/f03ee113c9f3dfeb477f2d4247bfb7de2e5f465c\"><code>f03ee11</code></a> Ensure <code>blib2to3.pygram</code> is initialized before use (<a href=\"https://redirect.github.com/psf/black/issues/4224\">#4224</a>)</li>\n<li><a href=\"https://github.com/psf/black/commit/e4bfedbec2e8b10cc6b7b31442478f05db0ce06d\"><code>e4bfedb</code></a> fix: Don't move comments while splitting delimiters (<a href=\"https://redirect.github.com/psf/black/issues/4248\">#4248</a>)</li>\n<li><a href=\"https://github.com/psf/black/commit/d0287e1f7558d97e6c0ebd6dc5bcb5b970e2bf8c\"><code>d0287e1</code></a> Make trailing comma logic more concise (<a href=\"https://redirect.github.com/psf/black/issues/4202\">#4202</a>)</li>\n<li>Additional commits viewable in <a href=\"https://github.com/psf/black/compare/22.12.0...24.3.0\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=black&package-manager=pip&previous-version=22.12.0&new-version=24.3.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Analysis timeout\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ x] I am running the latest version\r\n- [x ] I did read the README!\r\n- [x ] I checked the documentation and found no answer\r\n- [x ] I checked to make sure that this issue has not already been filed\r\n- [x ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x ] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\nto complete analysis\r\n\r\n# Current Behavior\r\nit will start the analysis as normal and after awhile it will timeout\r\n\r\n## Steps to Reproduce\r\n\r\nsubmitting URL for analysis \r\nweb gui timeout setting is 500\r\nwill timeout without producing any reports and still shows running on gui when vm is already shutdown\r\n\r\n## Context\r\nubuntu 22.04\r\nvm running win10pro using kvm\r\nlet me know if you need any other information as im relatively new to this\r\n\r\n## Failure Logs\r\n`2024-03-20 16:58:28,624 [lib.cuckoo.core.scheduler] ERROR: Machine cuckoo1: the guest initialization hit the critical timeout, analysis aborted\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 531, in launch_analysis\r\n    guest.start_analysis(options)\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/guest.py\", line 245, in start_analysis\r\n    self.wait_available()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/guest.py\", line 154, in wait_available\r\n    raise CuckooGuestCriticalTimeout(\r\nlib.cuckoo.common.exceptions.CuckooGuestCriticalTimeout: Machine cuckoo1: the guest initialization hit the critical timeout, analysis aborted\r\n2024-03-20 16:58:29,562 [lib.cuckoo.core.scheduler] ERROR:\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 623, in run\r\n    success = self.launch_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 598, in launch_analysis\r\n    raise CuckooDeadMachine()\r\nlib.cuckoo.core.scheduler.CuckooDeadMachine\r\n`\nComment: hello, as i see the problem is that VM is dead, so it not even started, probably you didn't took snapshot of vm in running state?\r\n\r\nhttps://capev2.readthedocs.io/en/latest/installation/guest/agent.html#installing-the-agent\r\n\r\n+ use code escape for log, as is hard to read\nComment: I do see the vm running from virt-manager and it does show that machine is found \nComment: what about agent? did you test it that it response when vm is up?\nComment: yes i am able to curl my vm and receive the response as shown in the guide\nComment: also getting this error when i submit any files like html \"PE type not recognised: 'DOS Header magic not found.'\" is there anything that can be done about it?\r\n\nComment: no, that is unrelated, is just your file is not a PE file. Well if snapshot is in running state, curl works, the uniq that i guess is wrong is the configuration. can you show your kvm.conf conf? and what is the ip of your vm? show me the output of curl plz\nComment: ip of vm is 192.168.122.137 \r\n\r\noutput of curl `{\"message\": \"CAPE Agent!\", \"version\": \"0.17\", \"features\": [\"execpy\", \"execute\", \"pinning\", \"logs\", \"largefile\", \"unicodepath\", \"mutex\"], \"is_user_admin\": true}f`\r\n\r\nkvm.conf \r\n[kvm]\r\nmachines = cuckoo1\r\ninterface = virbr0\r\ndsn = qemu:///system\r\n[cuckoo1]\r\nlabel = cuckoo1\r\nplatform = windows\r\nip = 192.168.122.137\r\ntags = win10,acrobat_reader11\r\nsnapshot = 21032024\r\ninterface = virbr0\r\nresultserver_ip = 10.100.2.176\r\nresultserver_port = 2042\r\narch = x86\r\nreserved = no\nComment: ok the problem is easy here. \r\n\r\n1. you using NAT, be careful with that.\r\n2. VM ip is 192.168.122.137\r\n3. result server is 10.100.2.176\r\n\r\n\r\nas you can see they are in different networks, why? fix that and it should works just fine\nComment: im using internet routing per the manual and as of a few hours ago the analysis started working properly after a reboot it does show me that task failed in the log but i do get the report generated with screenshots and different information\r\n\nComment: well is up to you, with hostonly internet will work too. but is more secure, but that is out of scope of CAPE. glad that issue solved, if you will get the same error, put both thing in the same network range",
+  "Title: chore(deps): bump django from 4.2.10 to 4.2.11\nBody: Bumps [django](https://github.com/django/django) from 4.2.10 to 4.2.11.\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/django/django/commit/61a986f53d805e4d359ab61af60a2dcd55befe25\"><code>61a986f</code></a> [4.2.x] Bumped version for 4.2.11 release.</li>\n<li><a href=\"https://github.com/django/django/commit/3c9a2771cc80821e041b16eb36c1c37af5349d4a\"><code>3c9a277</code></a> [4.2.x] Fixed CVE-2024-27351 -- Prevented potential ReDoS in Truncator.words().</li>\n<li><a href=\"https://github.com/django/django/commit/79739511397367c56d20393b93c5edd35f5cca53\"><code>7973951</code></a> [4.2.x] Added release date for 4.2.11 and 3.2.25.</li>\n<li><a href=\"https://github.com/django/django/commit/86d8034972db5014769cdd4832125067f31b3e8b\"><code>86d8034</code></a> [4.2.x] Refs <a href=\"https://redirect.github.com/django/django/issues/34900\">#34900</a>, Refs <a href=\"https://redirect.github.com/django/django/issues/34118\">#34118</a> -- Updated assertion in test_skip_class_unle...</li>\n<li><a href=\"https://github.com/django/django/commit/cb173bb088e32df3d9ee8bee3c579d88ea713e8f\"><code>cb173bb</code></a> [4.2.x] Fixed <a href=\"https://redirect.github.com/django/django/issues/35172\">#35172</a> -- Fixed intcomma for string floats.</li>\n<li><a href=\"https://github.com/django/django/commit/227ef29cff8ded8187c48b0aa955264cf83a01a4\"><code>227ef29</code></a> [4.2.x] Added CVE-2024-24680 to security archive.</li>\n<li><a href=\"https://github.com/django/django/commit/e2f1907642c311b21d45d85a0aca7d9c05ede5cd\"><code>e2f1907</code></a> [4.2.x] Post release version bump.</li>\n<li>See full diff in <a href=\"https://github.com/django/django/compare/4.2.10...4.2.11\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=django&package-manager=pip&previous-version=4.2.10&new-version=4.2.11)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Fix bug in sample_path_by_hash.\nBody: None\nComment: ouch, thanks",
+  "Title: Carbanak update\nBody: Use payload dump to decrypt",
+  "Title: Analysis machine doesn't automatically shutdown if analyzed program exits with non-zero code \nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [* ] I am running the latest version\r\n- [* ] I did read the README!\r\n- [* ] I checked the documentation and found no answer\r\n- [* ] I checked to make sure that this issue has not already been filed\r\n- [* ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [* ] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nThe analysis machine shuts down automatically after the analyzed process terminates.\r\n\r\n# Current Behavior\r\n\r\nAfter upgrading CAPE agent to the latest version, the machine no longer shuts down after the analyzed process exits if exit code is non-zero and it waits until the timeout forces shutdown.\r\n\r\n# Failure Information (for bugs)\r\n\r\n`agent.py` got changed and added different returned status codes:\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/agent/agent.py#L367\r\n\r\nHowever, `guest.py` is not handling them properly right now:\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/lib/cuckoo/core/guest.py#L387\r\n\r\nI have managed to fix the issue on my local installation by applying the following dirty patch (at line referenced above):\r\n\r\n```\r\nif status[\"status\"] == \"complete\" or status[\"status\"] == \"failed\":\r\n    log.info(\"Task #%s: Analysis completed successfully (id=%s, ip=%s)\", self.task_id, self.vmid, self.ipaddr)\r\n    db.guest_set_status(self.task_id, \"complete\")\r\n    return\r\n```\r\n\r\nHowever, this should probably be handled properly and report \"failed\" or \"non-zero exit code\" in the logs.\r\n\r\n\r\n## Steps to Reproduce\r\n\r\nAnalyze a binary that exits with non-zero exit code (e.g. `exit(1);`). If needed I can provide a binary which I have verified to cause the issue.\r\n\r\n## Context\r\n\r\nLatest commit on master branch, guest VM running on ESXi and a physical machine (former should force power-off, latter should reboot and trigger fog re-image). Guest OS are W7 and W10.\r\n## Failure Logs\r\n\r\nNothing relevant to the issue is logged even with every CAPE process running with the debug flag.\r\n\nComment: fixed here https://github.com/kevoreilly/CAPEv2/commit/71800831111ab88b2eded600f11b0f2299dff16d, thanks for headups ",
+  "Title: AWS non-autoscale single EC2 guest still relies on an AMI while snapshot is available.\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ * ] I am running the latest version\r\n- [ * ] I did read the README!\r\n- [ * ] I checked the documentation and found no answer\r\n- [ * ] I checked to make sure that this issue has not already been filed\r\n- [ * ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ * ] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nThe `aws.conf` has enough configuration steps to look into what instance ID and snapshot ID to launch the correct machine. This means, whenever you run `poetry run python3 cuckoo.py` and it gets ready for analysis, uploading a binary to test from the web UI, it should turn off the specified instance, re-launch it, and do the analysis.\r\n\r\n# Current Behavior\r\n\r\nOnce `poetry run python3 cuckoo.py` is ran, CAPEv2 turns off the instance and readies it up for analysis. It awaits user input from the web UI, and once that's done, it crashes with an error saying that the AMI is not placed in `aws.conf` even though `autoscale = no` is configured and commented out.\r\n\r\nEverything under `[machine_name]` for configuration is set where `machines = machine_name` is configured. It should follow up and use the snapshot, however, it gets stuck and throws this error:\r\n`\r\nFailure in AnalysisManager.run: An error occurred (InvalidAMIID.Malformed) when calling the RunInstances operation: Invalid id: \"ami-abcdefgh123456789\" (expecting \"ami-...\")\r\n`\r\n\r\n# Failure Information (for bugs)\r\n\r\nThere may be a configuration logic or parsing issue where it WANTS to create a new instance, regardless of autoscaling is turned off. So, it does not just turn on the existing EC2 with the hard coded instance ID, it just wants to make a new one for some reason due to the following error lines:\r\n\r\n```\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 355, in acquire_machine\r\n    machine = machinery.acquire(\r\n  File \"/opt/CAPEv2/modules/machinery/aws.py\", line 184, in acquire\r\n    self._start_or_create_machines()  # prepare another machine\r\n  File \"/opt/CAPEv2/modules/machinery/aws.py\", line 208, in _start_or_create_machines\r\n    if not self._allocate_new_machine():\r\n  File \"/opt/CAPEv2/modules/machinery/aws.py\", line 139, in _allocate_new_machine\r\n    instance = self._create_instance(\r\n  File \"/opt/CAPEv2/modules/machinery/aws.py\", line 315, in _create_instance\r\n    response = self.ec2_resource.create_instances(\r\n```\r\n\r\n## Steps to Reproduce\r\n\r\n1. Configure `aws.conf` by placing the credentials in addition in `~/.aws/credentials`\r\n2. Turn off the autoscaling feature, or comment out the entire thing\r\n3. Make sure that you have created your guest, and have made a snapshot out of it. Copy the Instance ID and snapshot ID\r\n4. Place the info from step 3 in the appropriate locations, in addition to the private IP of the host, including the SG and subnets.\r\n5. Make sure `arch` is also placed under the `[machine_name]` where `machines = machine_name` to force the `arch` to be seen by CAPE, otherwise, it does not, and is another issue.\r\n6. Launch `poetry run python3 cuckoo.py`, it will turn off the machine, and await an entry.\r\n7. Go to the web UI and upload a sample\r\n8. CAPE will complain that there is no AMI ID placed, even though in this configuration, it is not needed\r\n\r\nNote that I've tried placing the AMI ID, it did not work still. I'm assuming the source code of `scheduler.py` or `aws.py` need to be changed? I can look into it soon to see what I can do.\r\n\r\n## Context\r\n\r\nBasic AWS setup, default Windows AMI and Ubuntu 22.04 images.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | commit 2b9b122110856a9e5703c6b94757597f41a6d8bd\r\n| OS version       | Ubuntu 22.04 (host) , Windows 10 (guest)\r\n\r\n## Failure Logs\r\n\r\n```\r\ncape@ip-xxx-xxx-xxx-xxx:/opt/CAPEv2$ poetry run python3 cuckoo.py\r\n\r\n  .-----------------.\r\n  | Cuckoo Sandbox? |\r\n  |     OH NOES!    |\\  '-.__.-'\r\n  '-----------------' \\  /oo |--.--,--,--.\r\n                         \\_.-'._i__i__i_.'\r\n                               \"\"\"\"\"\"\"\"\"\r\n\r\n Cuckoo Sandbox 2.4-CAPE\r\n www.cuckoosandbox.org\r\n Copyright (c) 2010-2015\r\n\r\n CAPE: Config and Payload Extraction\r\n github.com/kevoreilly/CAPEv2\r\n\r\nOPTIONAL! Missed dependency: pip3 install https://github.com/CAPESandbox/peepdf/archive/20eda78d7d77fc5b3b652ffc2d8a5b0af796e3dd.zip#egg=peepdf==0.4.2\r\nOPTIONAL! Missed dependency: poetry run pip install -U git+https://github.com/DissectMalware/batch_deobfuscator\r\nOPTIONAL! Missed dependency: poetry run pip install -U git+https://github.com/CAPESandbox/httpreplay\r\n/usr/bin/tcpdump\r\n2024-03-14 23:43:29,336 [modules.machinery.aws] INFO: connecting to AWS:us-east-2\r\n2024-03-14 23:43:29,925 [modules.machinery.aws] INFO: instance state: poweroff\r\n2024-03-14 23:43:29,989 [modules.machinery.aws] INFO: instance state: poweroff\r\n2024-03-14 23:43:30,577 [lib.cuckoo.core.scheduler] INFO: Using \"aws\" machine manager with max_analysis_count=0, max_machines_count=10, and max_vmstartup_count=5\r\n2024-03-14 23:43:30,582 [lib.cuckoo.core.scheduler] INFO: Loaded 1 machine/s\r\n2024-03-14 23:43:30,586 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks\r\n2024-03-14 23:43:42,967 [lib.cuckoo.core.scheduler] INFO: Task #6: File already exists at '/opt/CAPEv2/storage/binaries/xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx'\r\n2024-03-14 23:43:42,968 [lib.cuckoo.core.scheduler] INFO: Task #6: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_ox8jqm0_/xxxxxxx.exe'\r\n2024-03-14 23:43:43,013 [modules.machinery.aws] INFO: All machines are busy, allocating new machine\r\n2024-03-14 23:43:43,285 [lib.cuckoo.core.scheduler] ERROR: Task #6: Failure in AnalysisManager.run: An error occurred (InvalidAMIID.Malformed) when calling the RunInstances operation: Invalid id: \"ami-abcdefgh123456789\" (expecting \"ami-...\")\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 623, in run\r\n    success = self.launch_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 478, in launch_analysis\r\n    self.acquire_machine()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 355, in acquire_machine\r\n    machine = machinery.acquire(\r\n  File \"/opt/CAPEv2/modules/machinery/aws.py\", line 184, in acquire\r\n    self._start_or_create_machines()  # prepare another machine\r\n  File \"/opt/CAPEv2/modules/machinery/aws.py\", line 208, in _start_or_create_machines\r\n    if not self._allocate_new_machine():\r\n  File \"/opt/CAPEv2/modules/machinery/aws.py\", line 139, in _allocate_new_machine\r\n    instance = self._create_instance(\r\n  File \"/opt/CAPEv2/modules/machinery/aws.py\", line 315, in _create_instance\r\n    response = self.ec2_resource.create_instances(\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/boto3/resources/factory.py\", line 581, in do_action\r\n    response = action(self, *args, **kwargs)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/boto3/resources/action.py\", line 88, in __call__\r\n    response = getattr(parent.meta.client, operation_name)(*args, **params)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/botocore/client.py\", line 553, in _api_call\r\n    return self._make_api_call(operation_name, kwargs)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/botocore/client.py\", line 1009, in _make_api_call\r\n    raise error_class(parsed_response, operation_name)\r\nbotocore.exceptions.ClientError: An error occurred (InvalidAMIID.Malformed) when calling the RunInstances operation: Invalid id: \"ami-abcdefgh123456789\" (expecting \"ami-...\")\r\nInvalidAMIID.Malformed^C2024-03-14 23:50:45,388 [root] INFO: Received keyboard interrupt, stopping.\r\n2024-03-14 23:50:45,403 [lib.cuckoo.common.abstracts] INFO: Still 1 guests still alive, shutting down...\r\n2024-03-14 23:50:45,599 [modules.machinery.aws] INFO: instance state: running\r\n2024-03-14 23:50:46,051 [modules.machinery.aws] INFO: instance state: stopping\r\n2024-03-14 23:50:47,127 [modules.machinery.aws] INFO: instance state: stopping\r\n```\nComment: Hello, AWS is community driven machinery, we can't help with this, so wait till someone with AWS comes to rescue o you will find to figurate yourself, as error comes from aws related library not cape\nComment: i would suggest to review this https://y4nush.com/posts/installation-of-capev2-sandbox-on-aws/\r\nbut as nobody response and we don't provide support to AWS im closing it",
+  "Title: Autoscaling Windows EC2 does not launch agent\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ * ] I am running the latest version\r\n- [ * ] I did read the README!\r\n- [ * ] I checked the documentation and found no answer\r\n- [ * ] I checked to make sure that this issue has not already been filed\r\n- [ * ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ * ] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nAWS Autoscaling to automatically spin up an EC2 and auto-run the agent in the guest.\r\n\r\n# Current Behavior\r\n\r\nAWS Autoscaling spins up the EC2 guests, however, it does not launch the agent.pyw. Following the instructions here: https://capev2.readthedocs.io/en/latest/installation/guest/agent.html\r\nFor windows 10 machines, the agent only runs when you RDP into the box. So the analysis only works when you manually RDP into the instance, instead of it launching on boot. This means you have to manually RDP all the time for an analysis to work.\r\n\r\nI've changed the scheduler to run on boot, but it did not work. I'll try more things later.\r\n\r\n\r\n## Steps to Reproduce\r\n\r\n1. Configure `aws.conf` to have the correct info. Leaving out `machines = ` blank.\r\n2. `autoscale = yes`, `image_id = ami-xxxxx`, `instance-type = tx-xxxx`, and also the rest like the subnet and the SG.\r\n3. Tags have to have something at least. Just do `tags = cuckoo` in addition to `arch = x64`\r\n4. Comment out the `[machine_name]` and the rest of the config.\r\n5. Make sure the AWS creds are also loaded at the top of the config, and in addition in `~/.aws/credentials` for botocore issues to be resolved.\r\n6. Make sure in `cuckoo.conf` that `machinery_screenshots = off` is set to off, since there was an issue of `NotImplementedError`\r\n7. Make sure you fill out any IPs in the config with the private IPs of the EC2s, such as the result server.\r\n\r\n1. Setup the guest instance by disabling all necessary securities\r\n2. Deploy the agent.pyw and rename it to something else. Place it in a random location\r\n3. Follow the instructions above from the docs on using the Scheduler to launch the agent.\r\n4. Reboot, notice by following the instructions, it does not launch the agent. You have to launch it with the following: Script: `\"C:\\Users\\Administrator\\AppData\\Local\\Programs\\Python\\Python311-32\\pythonw.exe\"` -> In arguments `C:\\Location\\agent.pyw`\r\n5. Run `poetry run python3 cuckoo.py` in the CAPEv2 host\r\n6. Wait for it to select a new EC2 to run this on and notice that it hangs\r\n8. Copy the IP of the new instance (since you made it from the same AMI, the password for the RDP will be the same)\r\n9. RDP in, it will now start the analysis\r\n\r\nTest out if the agent is launched by curling it from the CAPEv2 host `curl private.ip.of.ec2:8000`\r\n\r\nI think what's going on here is that, whenever a new instance is created from this AMI, it does not \"login\" to the machine to run the analysis when CAPE selects it for the analysis to run. There's no password or username config in `aws.conf` to perhaps run it that way. Once I RDP in manually, the mouse even moves on its own as well, so there's that control happening, which is successful. But it doesn't create that initial authentication whenever a new EC2 is spun up from the created guest AMI, then it hangs until timeout. Unless you RDP in, which starts the agent.pyw via scheduler.\r\n\r\n## Context\r\n\r\nBasic AWS Windows and Ubuntu 22.04 LTS\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | `commit 2b9b122110856a9e5703c6b94757597f41a6d8bd`\r\n| OS version       | Ubuntu 22.04 (host), Windows 10 (guest)\nComment: hello, we don't have AWS setup so that is community driven support, but if you run normal win10 there, follow steps in docs should works, the rdp is maybe bcz of not loggined user? you need to take snapshot of running VM\nComment: Hello, I can close this since I figured it out and it works fine now. Just gotta focus on configuration and getting some other issues sorted.\nComment: btw did you see this https://github.com/kevoreilly/CAPEv2/pull/1982? i have to port that to our docs, but that might help you\nComment: I saw but did not follow/try. I will do so and see if there are any odd issues with the latest version.\r\nFor example, one issue I've had with `poertry` is that it did not install `yara-python` so I had to modify the toml and re do `poetry lock` to get it to work with the latest version, ignoring the version being used by CAPE\nComment: that is not the issue, that is your own preference, we can't monitor and test each version release",
+  "Title: PikaBot ignore empty config\nBody: Add test",
+  "Title: Rozena/Swort (Metasploit) payload parser\nBody: During our Threat-Hunting process, we noticed many samples tagged with Rozena/Swort payloads, which are meterpreter reverse shell payloads; these payloads are encoded with a well-known encoder called **\"Shikata Ga Nai\"**.\r\nThe decoding process basically depends on XOR operations with hard-coded 4 bytes and could be 1 encoded block or many. I tried to decode it statically, but these blocks have no reliable pattern to analyze, so I have used **Unicorn** emulator to decode it. The payload itself uses [Dynamic API Resolution/API hashing](https://attack.mitre.org/techniques/T1027/007/) to call `connect` function with `IP:PORT` in runtime, so it's easy to find a common pattern of where it pushed the IP and the Port onto the stack. This should work fine with 32-bit files.\r\n\r\nI have tested it on the following hashes:\r\n0254ed6c06048d7094531ed34a066e0a03ab67d5cc4beace0dc5efa8a9a1d982\r\n034cf2b723753fd401b50906f222ce4933a811fe2625cb1d291f35e80dc7131c\r\n072b699a7863d018f0366b300c96bea4cbd9a4f13a99e8ca99321014e2911160\r\n094f051060f77d4ce45b00397dbc9c21632d43b59f4f7e7b161fb41a6d6ebcb6\r\n0a35d2dc8c47c245ff096993387e16a2f43fc83a33f26db47e2fe952ad38ce45\r\n0b5132488018b6644dc10ab00525c714aa03b13bc48a615e4981ba4811263c23\r\n1662df2a6a4801b705994cba1d6ea31e29807c551fb28555e355c70a65f3271a\r\n1cec5408893be1b8942c9164c41df9dea46494aa06a998ab1892354a112d6e00\r\n28eef580a9fa7e0b98491022d6f07c4ef59971ace90b994b4fbf52fa173d04f3\r\n3358536b67259eecd39ea7c7e17b2c7b83731ab87f89171837e863e2a2ecce53\r\n40919a5260caa74b183953fb8dc34e59e23d9e6dc7b1878dff67caf3b0f93230\r\n73e4c3bcc060ca9bc5cb9a13201029a03ae5fd131b84261a9ad8fbc59e22dac5\r\n7ec18aef23ca2381313a2d4c9bd46729c5d6ae81c580bd442483ac7a2d2c8257\r\na74a71ef2cef0dc90b066986cc022094154c1fe09e0bbdbcaefb0e30082207ee\r\naeb05df0b865df62cebceab0e5259d69d39a1c8d4f623a2491dc302ac56ee9f0\r\nb01651bfef7908d1f51b301aae0104711307be6c05b8384cb1167f2daeff520d\r\nb04231bab6484665dda078815ad1affb339959ffec4f14f8a7ddd6b5b6df5a1e\r\nbb12c5ce83970ae19ff59f146882e16f2911cd4fd43053d934e78d19c5327291\r\nc32ddf1ce6946115e2c3515299997d7263601a9c3ea0313eadf9f82c4c59d8f0\r\nda0acd72e3a321797a8d9c1a77b0aedcb8b8e0d675d889eec2911b5550051f4c\r\nee5af9b216c28c18011f644f4bffbd1bfb045f69b36b9fa1215b56831294d4f9\r\nf21ef6547b4c6099c7cf8c0efd569ed527d7919a7e7446753a49c623f38e27c3\nComment: Hi para0x0dise - firstly thank you for submitting this PR and and the work involved. As you probably know, since its inception cape has always had at its core a strong focus on dynamic extraction of 'payloads'. Therefore it may not surprise you to hear that the first thing I thought when I read your PR is that there must be a bug in cape. Why would we need to use emulation to decode something statically which is surely something cape should be capturing dynamically?!\r\n\r\nSo whilst I admire your solution to use emulation to solve this problem, there was actually a bug/issue in cape where the shellcode payload was not captured (example ``3358536b67259eecd39ea7c7e17b2c7b83731ab87f89171837e863e2a2ecce53``:\r\n\r\n```\r\n2024-03-14 10:43:44,220 [root] DEBUG: 2296: caller_dispatch: Added region at 0x00420000 to tracked regions list (ntdll::LdrLoadDll returns to 0x005BE55A, thread 404).\r\n2024-03-14 10:43:44,220 [root] DEBUG: 2296: ReverseScanForNonZero: Error - Supplied address inaccessible: 0x0041FFFF\r\n```\r\n\r\nI was able to resolve this issue with a refinement to capemon: https://github.com/kevoreilly/capemon/commit/7dc3a4dae2c300cff4c5b50415e1da731cb0256e\r\n\r\nThis results in the decrypted shellcode being captured as a 'payload' in line with cape's core design:\r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/22219888/6f3bccdb-7381-41b2-b5ff-2dc899fe00ec)\r\n\r\nAs you can see, this payload is already detected by an existing signature which is ultimately the same signature by Steven Miller of FireEye and can be found in the community repository in ``data\\yara\\binaries\\shellcodes.yar`` as ``shellcode_shikataganai_encoding``.\r\n\r\nI have pushed the updated monitor in https://github.com/kevoreilly/CAPEv2/commit/2b9b122110856a9e5703c6b94757597f41a6d8bd - please test this update to ensure it captures all the payloads you are interested in. Due to the dynamic mechanism this should theoretically include similar samples not covered by the yara signature. With this fix and the existing detection, hopefully this PR is unnecessary (whilst of course gratefully received!).\nComment: The parser to grab the IP address and port could of course still be useful - for this I think it would be better to use detection of the actual decoded code rather than the decoder. Something like:\r\n\r\n```\r\nrule Rozena\r\n{\r\n    meta:\r\n        cape_type = \"Rozena Payload\"\r\n    strings:\r\n        $ip_port = {FF D5 6A 0A 68 [4] 68 [4] 89 E6 50 50 50 50 40 50 40 50 68 [4] FF D5}\r\n    condition:\r\n        all of them\r\n}\r\n```\r\n\r\n... for example. This would obviously benefit from a few more choice functional code blocks.\nComment: Hello @kevoreilly, thanks a lot for the great tips, but unfortunately, I have re-tested CAPEMON, and it successfully extracted the shellcode on the following hashes only:\r\n3358536b67259eecd39ea7c7e17b2c7b83731ab87f89171837e863e2a2ecce53\r\n7ec18aef23ca2381313a2d4c9bd46729c5d6ae81c580bd442483ac7a2d2c8257\r\n40919a5260caa74b183953fb8dc34e59e23d9e6dc7b1878dff67caf3b0f93230\nComment: Ok thanks I'll try to see what's up with the others.\nComment: Damn. The others are falling foul of filters I added in the last few months to try and solve the problem of excessive payloads.\r\n\r\n```\r\n\tif (TrackedRegion->SubAllocation && Size < SystemInfo.dwPageSize)\r\n\t{\r\n\t\tDebugOutput(\"ProcessTrackedRegion: Sub-allocation at 0x%p skipped due to size 0x%x\", Address, Size);\r\n\t\tTrackedRegion->PagesDumped = TRUE;\r\n\t\treturn;\r\n\t}\r\n```\r\n\r\nHere the shellcode is both a 'sub-allocation' and its size is a fair bit smaller than the page size.\r\n\r\n```\r\n2024-03-14 21:32:11,096 [root] DEBUG: 1356: ProcessTrackedRegion: Sub-allocation at 0x02280000 skipped due to size 0x2f7\r\n```\r\n\r\nI will have to try and refine or scrap this filter.\nComment: Right I am happy to say I found a far better way to filter the unwanted .NET payloads that prompted me to add this terrible size filter a few months ago https://github.com/kevoreilly/capemon/commit/4daff8c7857e2ee9278f39a8a81f9a9e24e22651\r\n\r\nSo now all the payloads should be captured! Please test the latest update https://github.com/kevoreilly/CAPEv2/commit/9616452c936bf7c7dce2261ce3fdeb90af3ef5d7 and let me know if this results in success for all your samples. Thanks for your help and patience in getting to the bottom of this issue.\nComment: Incredible, now, CAPE could detect more samples, but there is still a problem in the following hashes:\r\n 73e4c3bcc060ca9bc5cb9a13201029a03ae5fd131b84261a9ad8fbc59e22dac5\r\n a74a71ef2cef0dc90b066986cc022094154c1fe09e0bbdbcaefb0e30082207ee\r\naeb05df0b865df62cebceab0e5259d69d39a1c8d4f623a2491dc302ac56ee9f0\r\nda0acd72e3a321797a8d9c1a77b0aedcb8b8e0d675d889eec2911b5550051f4c\r\nc32ddf1ce6946115e2c3515299997d7263601a9c3ea0313eadf9f82c4c59d8f0\r\n28eef580a9fa7e0b98491022d6f07c4ef59971ace90b994b4fbf52fa173d04f3\nComment: Hmm you are right these samples do not seem to run at all.... This doesn't appear to be related to any recent changes, looks like these don't run on any monitor version.... or even without a monitor! They appear to not even run on any.run! https://app.any.run/tasks/a0ea228f-8a33-48c1-8fab-987ffc81b26f\r\n\r\nSo I think these particular samples might be duff...\nComment: > Hmm you are right these samples do not seem to run at all.... This doesn't appear to be related to any recent changes, looks like these don't run on any monitor version.... or even without a monitor! They appear to not even run on any.run! https://app.any.run/tasks/a0ea228f-8a33-48c1-8fab-987ffc81b26f\r\n> \r\n> So I think these particular samples might be duff...\r\n\r\nTotally agreed, but here, it seems to be run successfully on other sandboxes in VirusTotal (it could be run once detected and now it's dead). The question is, what if we need to extract important configs from a dead sample?\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/62453654/f8513fc3-0e3b-494b-98aa-8e522063ffc3)\nComment: I think we need to get to the bottom of whether it can run or not... because if it can then it needs to in cape.\nComment: From what I can tell it looks to have bombed in 'zenbox' and 'sysinternals' too due to the only behavioral output being associated with werfault.\nComment: Ultimately if you can decode these statically then I suppose there is no harm in having a parser that does so. \nComment: > Ultimately if you can decode these statically then I suppose there is no harm in having a parser that does so.\r\n\r\nHmm, may be in another PR, but I think we are good with new results. Thanks a lot for a great work.\nComment: Thank you \u2764\ufe0f ",
+  "Title: fixed unrecognized bytes encoding in remcos parser\nBody: Hi, some days ago I noticed this error due to undecodable data in the ioc extractor config tab (`/apiv2/tasks/get/config/task_id/`): `UnicodeDecodeError: 'utf-8' codec can't decode byte 0x81 in position 1: invalid start byte`\r\n\r\nThe content of the keys with index 54 and 55 are similar to random bytes and DRF fails to display it because it tries to decode the content with the default utf8 encoding.\r\n\r\nAs with the following keys I have encoded the content as base64 to be able to display it in the view.\nComment: Thanks",
+  "Title: PikaBot parser update\nBody: None\nComment: what about test?",
+  "Title: Deprecation of cgi python module does not allow windows-less mode\nBody: Hi, \r\ninstalling the latest Python 3.11 release the agent is spawned in window mode also if it has the ```pyw``` extension because Python interpreter prints a deprecation warning about ```cgi``` module which will be deprecated starting from Python 3.13.\r\n\nComment: https://github.com/kevoreilly/CAPEv2/issues/1512",
+  "Title: EVTX single endpoint added\nBody: None\nComment: thanks",
+  "Title: Omit setting the length when in base64 transmission mode.\nBody: Omit setting the length when in base64 transmission mode.\r\n\r\nIt was setting the file length, which was the wrong length for the encoded data.\r\nThe received data were truncated.\r\n\r\n\nComment: thanks",
+  "Title: Improvement to process.py logging\nBody: Log the image name as well as the process ID; added tests. \r\nAlso, restore the process is_alive check, disabled 4 years ago.\r\n\r\nCredit: @nbargnesi\r\n\r\nSample log entries:\r\n```\r\n2024-03-10 12:12:13,411 [lib.api.process] DEBUG: getting exit code for <Process 17492 aspnet_compiler.exe>\r\n2024-03-10 12:12:13,411 [lib.api.process] DEBUG: <Process 17492 aspnet_compiler.exe> exit code is 259\r\n2024-03-10 12:12:13,411 [lib.api.process] DEBUG: <Process 17492 aspnet_compiler.exe> is still active\r\n```\nComment: LGTM, what about you @kevoreilly ?\nComment: I've just tested it and seen that the log spamming that apparently prompted me to disable the ``is_alive`` check 4 years ago is brought back with this PR:\r\n\r\n```\r\n2024-03-11 14:58:47,577 [lib.api.process] INFO: injected into 64-bit <Process 1496 svchost.exe>\r\n2024-03-11 14:58:48,265 [lib.api.process] DEBUG: getting exit code for <Process 3928 msiexec.exe>\r\n2024-03-11 14:58:48,265 [lib.api.process] DEBUG: <Process 3928 msiexec.exe> exit code is 259\r\n2024-03-11 14:58:48,265 [lib.api.process] DEBUG: <Process 3928 msiexec.exe> is still active\r\n2024-03-11 14:58:48,265 [lib.api.process] DEBUG: getting exit code for <Process 832 svchost.exe>\r\n2024-03-11 14:58:48,265 [lib.api.process] DEBUG: <Process 832 svchost.exe> exit code is 259\r\n2024-03-11 14:58:48,265 [lib.api.process] DEBUG: <Process 832 svchost.exe> is still active\r\n2024-03-11 14:58:48,265 [lib.api.process] WARNING: OpenProcess(PROCESS_ALL_ACCESS, ...) failed for process 696\r\n2024-03-11 14:58:48,265 [lib.api.process] DEBUG: opening process with limited info 696\r\n2024-03-11 14:58:48,265 [lib.api.process] DEBUG: getting exit code for <Process 696 services.exe>\r\n2024-03-11 14:58:48,265 [lib.api.process] DEBUG: <Process 696 services.exe> exit code is 259\r\n2024-03-11 14:58:48,265 [lib.api.process] DEBUG: <Process 696 services.exe> is still active\r\n2024-03-11 14:58:48,265 [lib.api.process] DEBUG: getting exit code for <Process 1804 msiexec.exe>\r\n2024-03-11 14:58:48,265 [lib.api.process] DEBUG: <Process 1804 msiexec.exe> exit code is 259\r\n2024-03-11 14:58:48,265 [lib.api.process] DEBUG: <Process 1804 msiexec.exe> is still active\r\n2024-03-11 14:58:48,265 [lib.api.process] DEBUG: getting exit code for <Process 1724 msiexec.exe>\r\n2024-03-11 14:58:48,265 [lib.api.process] DEBUG: <Process 1724 msiexec.exe> exit code is 259\r\n2024-03-11 14:58:48,265 [lib.api.process] DEBUG: <Process 1724 msiexec.exe> is still active\r\n2024-03-11 14:58:48,265 [lib.api.process] DEBUG: getting exit code for <Process 6104 MSIB284.tmp>\r\n2024-03-11 14:58:48,265 [lib.api.process] DEBUG: <Process 6104 MSIB284.tmp> exit code is 259\r\n2024-03-11 14:58:48,265 [lib.api.process] DEBUG: <Process 6104 MSIB284.tmp> is still active\r\n2024-03-11 14:58:48,265 [lib.api.process] DEBUG: getting exit code for <Process 4364 explorer.exe>\r\n2024-03-11 14:58:48,265 [lib.api.process] DEBUG: <Process 4364 explorer.exe> exit code is 259\r\n2024-03-11 14:58:48,265 [lib.api.process] DEBUG: <Process 4364 explorer.exe> is still active\r\n2024-03-11 14:58:48,265 [lib.api.process] DEBUG: getting exit code for <Process 1056 rundll32.exe>\r\n2024-03-11 14:58:48,265 [lib.api.process] DEBUG: <Process 1056 rundll32.exe> exit code is 259\r\n2024-03-11 14:58:48,265 [lib.api.process] DEBUG: <Process 1056 rundll32.exe> is still active\r\n2024-03-11 14:58:48,265 [lib.api.process] DEBUG: getting exit code for <Process 1496 svchost.exe>\r\n2024-03-11 14:58:48,265 [lib.api.process] DEBUG: <Process 1496 svchost.exe> exit code is 259\r\n2024-03-11 14:58:48,265 [lib.api.process] DEBUG: <Process 1496 svchost.exe> is still active\r\n2024-03-11 14:58:49,280 [lib.api.process] DEBUG: getting exit code for <Process 3928 msiexec.exe>\r\n2024-03-11 14:58:49,280 [lib.api.process] DEBUG: <Process 3928 msiexec.exe> exit code is 259\r\n2024-03-11 14:58:49,280 [lib.api.process] DEBUG: <Process 3928 msiexec.exe> is still active\r\n2024-03-11 14:58:49,280 [lib.api.process] DEBUG: getting exit code for <Process 832 svchost.exe>\r\n2024-03-11 14:58:49,280 [lib.api.process] DEBUG: <Process 832 svchost.exe> exit code is 259\r\n2024-03-11 14:58:49,280 [lib.api.process] DEBUG: <Process 832 svchost.exe> is still active\r\n2024-03-11 14:58:49,280 [lib.api.process] WARNING: OpenProcess(PROCESS_ALL_ACCESS, ...) failed for process 696\r\n2024-03-11 14:58:49,280 [lib.api.process] DEBUG: opening process with limited info 696\r\n2024-03-11 14:58:49,280 [lib.api.process] DEBUG: getting exit code for <Process 696 services.exe>\r\n2024-03-11 14:58:49,280 [lib.api.process] DEBUG: <Process 696 services.exe> exit code is 259\r\n2024-03-11 14:58:49,280 [lib.api.process] DEBUG: <Process 696 services.exe> is still active\r\n2024-03-11 14:58:49,280 [lib.api.process] DEBUG: getting exit code for <Process 1804 msiexec.exe>\r\n2024-03-11 14:58:49,280 [lib.api.process] DEBUG: <Process 1804 msiexec.exe> exit code is 259\r\n2024-03-11 14:58:49,280 [lib.api.process] DEBUG: <Process 1804 msiexec.exe> is still active\r\n2024-03-11 14:58:49,280 [lib.api.process] DEBUG: getting exit code for <Process 1724 msiexec.exe>\r\n2024-03-11 14:58:49,280 [lib.api.process] DEBUG: <Process 1724 msiexec.exe> exit code is 259\r\n2024-03-11 14:58:49,280 [lib.api.process] DEBUG: <Process 1724 msiexec.exe> is still active\r\n2024-03-11 14:58:49,280 [lib.api.process] DEBUG: getting exit code for <Process 6104 MSIB284.tmp>\r\n2024-03-11 14:58:49,280 [lib.api.process] DEBUG: <Process 6104 MSIB284.tmp> exit code is 259\r\n2024-03-11 14:58:49,280 [lib.api.process] DEBUG: <Process 6104 MSIB284.tmp> is still active\r\n2024-03-11 14:58:49,280 [lib.api.process] DEBUG: getting exit code for <Process 4364 explorer.exe>\r\n2024-03-11 14:58:49,280 [lib.api.process] DEBUG: <Process 4364 explorer.exe> exit code is 259\r\n2024-03-11 14:58:49,280 [lib.api.process] DEBUG: <Process 4364 explorer.exe> is still active\r\n2024-03-11 14:58:49,280 [lib.api.process] DEBUG: getting exit code for <Process 1056 rundll32.exe>\r\n2024-03-11 14:58:49,280 [lib.api.process] DEBUG: <Process 1056 rundll32.exe> exit code is 259\r\n2024-03-11 14:58:49,280 [lib.api.process] DEBUG: <Process 1056 rundll32.exe> is still active\r\n2024-03-11 14:58:49,280 [lib.api.process] DEBUG: getting exit code for <Process 1496 svchost.exe>\r\n2024-03-11 14:58:49,280 [lib.api.process] DEBUG: <Process 1496 svchost.exe> exit code is 259\r\n2024-03-11 14:58:49,280 [lib.api.process] DEBUG: <Process 1496 svchost.exe> is still active\r\n```\nComment: If we can quiten these messages down to an 'acceptable' level then I think it should be ok.\nComment: I've commented out the verbose / spammy logging, @kevoreilly @doomedraven \r\n\r\nI squashed the commits back down to one, and now I realize I probably shouldn't have, sorry. Anyhow, that's what I did. Let me know if any questions.\nComment: im not having time right now to test, was you able to test @kevoreilly latest commit? if no i will do that in 1-2 days\nComment: Yep I'll test it tomorrow\nComment: no rush but please take another look when you get a chance\nComment: I've been running this on my main server for the last few days - I just need to check the logs.\nComment: I wonder if this line is ok:\r\n\r\n```\r\nlog.debug(\"Failed getting exit code for %s\", self)\r\n```\r\n\r\nIs ``self`` not gonna bomb as not a string type?\nComment: The new `__str__()` method will take care of converting a `Process` to a string. That's how come in your first round of testing you saw messages like\r\n```\r\nDEBUG: <Process 4364 explorer.exe> is still active\r\n```\r\n\r\n```python\r\n    def __str__(self):\r\n        \"\"\"Get a string representation of this process.\"\"\"\r\n        image_name = self.get_image_name() or \"???\"\r\n        return f\"<{self.__class__.__name__} {self.pid} {image_name}>\"\r\n```\nComment: Thank you!",
+  "Title: Resultserver msgs about process creation\nBody: None",
+  "Title: Couldn't connect to vSphere host\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I did read the README!\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nUse Cape V2 with Vsphere, the host and analysis VM on Vsphere\r\n\r\n# Current Behavior\r\nHello,\r\n\r\nI'm writing about an issue I encountered while setting up Cape for usage with vSphere to manage analysis VMs and the host VM. Initially, I successfully tested Cape with VirtualBox, but later modified my configuration file to use vSphere without SSL certification (using a homemade certificate).\r\n\r\nI've verified that my configuration is correct by separately testing the vSphere API with curl to ensure the parameters I provided were accurate. However, currently Cape is unable to connect to vSphere. The error message I received was:\r\n\r\n```[root] CRITICAL: CuckooCriticalError: Couldn't connect to vSphere host: [Errno 110] Connection timed out```\r\n\r\nTo further diagnose the issue, I added a traceback to identify the source of the error, and encountered the following:\r\n\r\n```\r\n[modules.machinery.vsphere] WARNING: Turning off SSL certificate verification!\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/modules/machinery/vsphere.py\", line 95, in _initialize_check\r\n    with SmartConnection(**self.connect_opts) as conn:\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/pyVim/connect.py\", line 572, in __enter__\r\n    self.si = SmartConnect(*self.args, **self.kwargs)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/pyVim/connect.py\", line 843, in SmartConnect\r\n    supportedVersion = __FindSupportedVersion(protocol,\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/pyVim/connect.py\", line 721, in __FindSupportedVersion\r\n    serviceVersionDescription = __GetServiceVersionDescription(protocol,\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/pyVim/connect.py\", line 642, in __GetServiceVersionDescription\r\n    tree = __GetElementTree(protocol, server, port,\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/pyVim/connect.py\", line 609, in __GetElementTree\r\n    conn.request(\"GET\", path)\r\n  File \"/usr/lib/python3.10/http/client.py\", line 1283, in request\r\n    self._send_request(method, url, body, headers, encode_chunked)\r\n  File \"/usr/lib/python3.10/http/client.py\", line 1329, in _send_request\r\n    self.endheaders(body, encode_chunked=encode_chunked)\r\n  File \"/usr/lib/python3.10/http/client.py\", line 1278, in endheaders\r\n    self._send_output(message_body, encode_chunked=encode_chunked)\r\n  File \"/usr/lib/python3.10/http/client.py\", line 1038, in _send_output\r\n    self.send(msg)\r\n  File \"/usr/lib/python3.10/http/client.py\", line 976, in send\r\n    self.connect()\r\n  File \"/usr/lib/python3.10/http/client.py\", line 1448, in connect\r\n    super().connect()\r\n  File \"/usr/lib/python3.10/http/client.py\", line 942, in connect\r\n    self.sock = self._create_connection(\r\n  File \"/usr/lib/python3.10/socket.py\", line 845, in create_connection\r\n    raise err\r\n  File \"/usr/lib/python3.10/socket.py\", line 833, in create_connection\r\n    sock.connect(sa)\r\nTimeoutError: [Errno 110] Connection timed out\r\n[root] CRITICAL: CuckooCriticalError: Couldn't connect to vSphere host: [Errno 110] Connection timed out\r\n```\r\n\r\nI'm confident that the parameters I've provided to connect to the vSphere host are correct. Additionally, my VM hosting CAPEv2 is capable of pinging vSphere and using the API with Curl.\nComment: hello, sorry we only officially support KVM, you will need to search the solution or wait till someone fix that for you. if you find solution and you want to help to others, you are more than welcome to make PR fix for this\nComment: Set the logging to debug and try to add HTTP logging?\nComment: closing as abandoned ",
+  "Title: Automated unit tests for agent; monitoring of async python process; input validation when setting status; added support for mutexes\nBody: All these changes are backwards-compatible; in other words, there are\r\nno breaking changes.\r\n\r\nAgent version 13. Unit tests for agent\r\n==\r\n- Added file test_agent.py\r\n- Tests will be run in Windows and Linux\r\n- Tests will be run in github actions\r\n- Test most existing functionality of the agent\r\n- In send_file open the file in binary mode (bug fix)\r\n- Updates to the agent to make it testable, including:\r\n  - Pass a multiprocessing event to the run() method when under test, so the test knows when the agent process is ready\r\n  - Tweaks to the shutdown method enabling testing\r\n- Let jsonify not crash if values cannot be serialized\r\n- Add a new command-line parameter, -v, useful when testing interactively\r\n  - When -v is given, stdout and stderr will simply go to the console\r\n- Allow the 'date' command to be executed from localhost; for testing\r\n\r\n\r\nAgent version 14. Stricter checks when setting agent status\r\n==\r\n- Use an enum for the status. Only accept expected values.\r\n- Check that we can read a file before trying to send it.\r\n\r\n\r\nAgent version 15. Monitor a background process\r\n==\r\n- Monitor async python process spawned in background\r\n  - Be able to detect if background process completed ok or errored\r\n- Accurately report failure status on execution failures\r\n  - The agent used to report RUNNING when the process actually FAILED\r\n- Add base64 encoding capability to send_file\r\n- Detect and log errors that occur during send_file\r\n- Allow json_success to have status codes\r\n- Allow json_error to accept kwargs, like json_success already does\r\n- More detailed error messages for certain kinds of failure\r\n  - creating directory; storing file; extracting zip file\r\n\r\nAgent version 16. Added support for locking and releasing mutexes\r\n==\r\n- This feature only available in Windows\r\n- This can serve a variety of purposes\r\n- Via a POST request, the agent will open the named mutex\r\n  - If not immediately available, wait 500 ms\r\n- Via a DELETE request, the agent will release the named mutex\r\n- The mutex must already exist; the agent will not create a mutex\nComment: wow that a great work, thank you",
+  "Title: Linux support\nBody: Long awaited Linux support.\r\n\r\nDescription of how behavioral information is captured by Linux Machines:\r\n- [strace](https://strace.io/) is used to detonate the malware sample, and the logs are captured and uploaded to the host.\r\n- Strace logs are processed and outputted similarly to how the current implementation of windows behaviors are. \r\n- Strace information is stored onto the \"behaviors\" key in the CAPE report json (like how Windows would)\r\n- Information is fetched and retrieved from the database and is displayed on the behavioral tab\r\n- Behavioral tab showcases all the syscalls that are called by each process that is spawned by the sample\r\n- Syscalls are filtered by the root of the kernel source code (`mm`, `fs`, `crypto`, etc)\r\n- Small hiccup we've encountered running ransomware samples, it encrypts the strace log and prevents us from processing the logs for behavioral analysis\r\n\r\nDatabase changes:\r\n- Adds the column `platform` to the `guests` table in PostgreSQL\r\n- Required to run alembic migrations\r\n\r\nFuture work:\r\n- More signaturization for Linux samples is possible\nComment: hello amazing job on this, i got first quick look, i will check properly a bit later. but so far looks good, i have a question, to prevent ransom encrypt logs, maybe we should stream the strace log to the server side? it sound to me that we had something for that i will have to double check\nComment: And well-timed with the ability to run tests against the analyzer and agent! (CC @rkoumis )\nComment: > hello amazing job on this, i got first quick look, i will check properly a bit later. but so far looks good, i have a question, to prevent ransom encrypt logs, maybe we should stream the strace log to the server side? it sound to me that we had something for that i will have to double check\r\n\r\nI'll probably take a look into this next week, that suggestion does sound better to circumvent the encryption issue. Probably something along the lines of piping the output on the agent and streaming to the server side.\r\n\nComment: Thank you \u2764\ufe0f \nComment: > > hello amazing job on this, i got first quick look, i will check properly a bit later. but so far looks good, i have a question, to prevent ransom encrypt logs, maybe we should stream the strace log to the server side? it sound to me that we had something for that i will have to double check\r\n> \r\n> I'll probably take a look into this next week, that suggestion does sound better to circumvent the encryption issue. Probably something along the lines of piping the output on the agent and streaming to the server side.\r\n\r\nThis is a great PR as-is. It'd be great to have it merge even without addressing this.\nComment: i have one question, is not related to fully related to this PR, but as we nuke stap, we need to remove it from the `.conf` maybe we should already nuke all not `.conf.default` as we touch already one we can delete directly it maybe as it will be overwritten anyway on install, any thoughts to help me decide the proper way?",
+  "Title: Signature segregation\nBody: Splitting of signature processing for Windows and Linux. Separated to include an \"all\" categorization which will run common/static signaturization(e.g. network, strings, etc) for all OSes.\nComment: thank you very much",
+  "Title: Run ruff during pre-commit checks\nBody: I frequently get `ruff` finding issues and this causes CI jobs to abort.\r\n\r\nWould this be an improvement? I am not completely sure.\nComment: thank you for all your work on this",
+  "Title: Fix file name\nBody: None",
+  "Title: Update XWorm parser: add more configs\nBody: I have added new mutex pattern and 2 new configs\nComment: thanks\nComment: Much appreciated \u2764\ufe0f ",
+  "Title: public and private package configuration\nBody: This adds two new methods to [lib.common.abstracts.Package](https://github.com/kevoreilly/CAPEv2/blob/76754ee2d76e136285d85234ccdab79b3ff1e6e8/analyzer/windows/lib/common/abstracts.py#L21):\r\n1. [configure(target)](https://github.com/nbargnesi/CAPEv2/blob/8f8c4b08c7105f8c5fe11c2dec15c899235fbf30/analyzer/windows/lib/common/abstracts.py#L56)\r\n2. [configure_from_data(target)](https://github.com/nbargnesi/CAPEv2/blob/8f8c4b08c7105f8c5fe11c2dec15c899235fbf30/analyzer/windows/lib/common/abstracts.py#L70)\r\n\r\nBoth methods are optional.\r\n\r\nIf a package doesn't provide a configure method, it's [logged but ignored](https://github.com/nbargnesi/CAPEv2/blob/8f8c4b08c7105f8c5fe11c2dec15c899235fbf30/analyzer/windows/analyzer.py#L563). Likewise if no private configuration is importable from `data.packages.<package_name>`, it's also [logged but ignored](https://github.com/nbargnesi/CAPEv2/blob/8f8c4b08c7105f8c5fe11c2dec15c899235fbf30/analyzer/windows/analyzer.py#L573).\r\n\r\nWith this PR, packages like [DOC_ANTIVM](https://github.com/kevoreilly/CAPEv2/blob/master/analyzer/windows/modules/packages/doc_antivm.py) can separate 40 lines of configuration into a separate method, and provide a way to mask sensitive configuration.\nComment: for what do you need the name of the package?\nComment: > for what do you need the name of the package?\r\n\r\nThe package name identifies the module to import when `configure_from_data` is called.\r\n\r\nIn the test case, the [package name is `configuration_package`](https://github.com/nbargnesi/CAPEv2/blob/8f8c4b08c7105f8c5fe11c2dec15c899235fbf30/analyzer/windows/tests/lib/common/test_abstracts.py#L12). So the module we look for is [`data.packages.configuration_package`](https://github.com/nbargnesi/CAPEv2/blob/8f8c4b08c7105f8c5fe11c2dec15c899235fbf30/analyzer/windows/tests/lib/common/test_abstracts.py#L14).\nComment: nice feature thank you",
+  "Title: Better control of environment variable for nektos act\nBody: - Moved the setting of the `CAPE_AS_ROOT` environment variable to a new `.actrc` file\r\n  - This is automatically applied when running nektos act, and not otherwise\r\n- Removed the setting of the `CAPE_AS_ROOT` env.var from the github workflow definition files\r\n- Updated the documentation \nComment: thank you",
+  "Title: Update: XWorm Parser\nBody: I have tried this parser on the following hashes:\r\n01f5eafcf8d3e1c58db0d9a14427e3d9b95242a8229c5cb2550bc211e0785b9e\r\n0ce8cad4973e7d3a6ea76bc56206941fb4d7bbebe4c0924b3fbb157b1938b537\r\n11e622baa1481b2cc65c69b2cd93fa62e884dc33a680f907f6b079c735b790fe\r\n14fc6472dea182171f0a5f4b7f88c25d933c5f2044b8ef3038dcd2da312b4aaf\r\n1ec98dc02baa30cdf2c7b3d5971755329374ab7c982e2354445624f86333df48\r\n1fca737283cfeed110061cb2f1508397ad0dcff1bf572bad9b31810361c8b4f5\r\n2832174940c0dc1bf089b25411c553f93289d3683617b3a67f6f1e2de2ce4fc7\r\n31109bdcb38a507a126953c3abbbbd0df9e621e4748f3ac33c332c3989f0997f\r\n3134b8ccd158b31c28d489023ea9d62691d563f9b9dd107e8e64dda6088a6199\r\n3d300877b0436eb6544d83071be8abdf953d3e1f748f6d6a7a376ff71e71898b\r\n40e46407b549b2a594e3ac4e295d9eae1059fbc41c2603f1384146aa5983f26a\r\n4141c747d73cfc8eb98ff222667ed0a0fe889436d84a33c822d6da52afb2a96b\r\n57ea92d4bdea719c06cba145074b1a60e3689305c70fd8b4bcac88e0e94be932\r\n5a20321f1adfc736beb53ccd8166fc48c1dc3052d2481012b3009cde430fadae\r\n5d0bc5d770fe1f55489725c3d27f7f10b88f6e55c4832fb960bf01629bcbb7b4\r\n66bfee81b238730c9a07347766e57f59b5b706dc9107025720f30edac654af1a\r\n6ccdf2b9bb340096ec31eb9e12e0a651b20d5de5f642d91741dc754743ad07df\r\n76152074372521b93fc050bf561281cc31b1af50b4923bb06d60577fefc5c9a5\r\n8655899120c744232b6b01698a67afe4cf98307f92863c65b58b274bbee5433b\r\n87461669a61ceba107d99b3fcce650f1c669bfaa46224e76641d48b932f9f0c4\r\n8de925c3640585864cc563cceeb26c16893bb4e68e9ccd0fb69dffc0b4f3e689\r\n93c8db705f405b9145677f69b4a396369c39a04cf87502ea94ac56e373267aac\r\na6876f10a890dba219826fc9a340d26d7c5d63a2be6d96d2745abdc52753b99f\r\naf63227cb6a4fe78c3a4d1483f158cfe67e076a8ff2c3e9f7d801ca65536543c\r\nb04452cfb4d6c94c0459cd577156b03dae961965d5a560cd235add05001aa16c\r\nbbe4a92ed6e5160ea12f773002fb6862140c227be96196d6fe9c55c72ccb8123\r\nc2b995e4af6f53f5f2d7ebf28f3fdb6d45a56913cb57aa2f6c4e20addac400fb\r\nd03f9d61084c3a2bbdaa4e25f64a3fbb983797b84bae3323d31415543a9e21b5\r\nd36c53f7206f122420b2892b6f390c87979aa1e84839f2b07a12ddbea3c48c29\r\nd3edc0c9138863e8e19d5f2b0e237cf100582b4a3fd3030f0f2390f1f7e3af4b\r\ndcda17fb81239547dc552348c41f94a2eaccbc71da43d08d6c15f70d6b5157a4\r\ne1957d17110331b1b21e41383c9469e96cad0f9ce0e2097b878e18d6e77cd914\r\ne84da0f84bbcda5da566c85d64d618f90ad8dd4b742da88804b37015d11bcfe3\r\ne902865e90f56b9cb1f840db55af3bc74485ee5921ae436c7524c60bfe628330\r\neaf7c50421f98264231df1480698ea5af945fbd5be5ac03544700b955c7b2c63",
+  "Title: Run tests on the windows analyzer\nBody: - configure python\r\n- install pytest\r\n- run pytest in the analyzer/windows directory\nComment: > run pytest in the analyzer/windows directory\r\n\r\n:fire:",
+  "Title: Oyster extractor\nBody: None",
+  "Title: GitHub action refactoring\nBody: - Abstract common code into a composite local action under `.github/actions`\r\n- Document the ability to run github actions locally\r\n- Tweak actions / tests slightly to be able to run locally\nComment: thank you a lot on helping improving this",
+  "Title: Github action pip-audit needs requirements.txt as input\nBody: The github action for pip-audit needs us to specify the requirements.txt as input.\r\n\r\nOtherwise it's not really doing anything.\r\n\r\nPrevious runs have been failing to give any output.\r\nhttps://github.com/kevoreilly/CAPEv2/actions/workflows/pip-audit.yml\r\n\r\nRunning `pip-audit .` outside of github gives:\r\n```\r\nERROR:pip_audit._cli:pyproject file pyproject.toml does not contain `project` section\r\n```\r\n\r\nCreate an empty `[project]` section and you get this:\r\n```\r\nWARNING:pip_audit._dependency_source.pyproject:pyproject file pyproject.toml\r\n   does not contain `dependencies` list\r\n```\r\n\r\nInstead I ran `pip-audit -r requirements.txt` on yesterday's requirements.txt and got this:\r\n```\r\nFound 1 known vulnerability in 1 package\r\nName   Version ID            Fix Versions\r\n------ ------- ------------- ------------\r\norjson 3.8.5   PYSEC-2024-40 3.9.15\r\n```\r\n\r\nRequirements.txt has since been updated, and now we get the desired output:\r\n```\r\nNo known vulnerabilities found\r\n```\nComment: hello, thank you, hm i have changed that as it already was working with pyproject, i will try to review this properly tomorrow",
+  "Title: Show yara hit details\nBody: None",
+  "Title: Yara detail\nBody: None",
+  "Title: AgentTesla update\nBody:     AgentTesla Parser:\r\n\tAdded: MailTo for smtp exfil #sha256: 893f4dc8f8a1dcee05a0840988cf90bc93c1cda5b414f35a6adb5e9f40678ce9\r\n\tAdded: ExternalIPCheck: ipify.org, ip-api.com\r\n\tAdded: HTTP(S) exifl #sha256: 8907c9e3fdd73e8536cf04439b46137bc9fd52d3bb9774242e8ebd9df95c3c66\r\n\tFix: Discrod exfil\r\n    AgentTesla yara update:\r\n\tAdded V5 (no string encryption)\r\n\tAdded V3 JIT native string decryption",
+  "Title: Bump orjson from 3.8.5 to 3.9.15\nBody: Bumps [orjson](https://github.com/ijl/orjson) from 3.8.5 to 3.9.15.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a href=\"https://github.com/ijl/orjson/releases\">orjson's releases</a>.</em></p>\n<blockquote>\n<h2>3.9.15</h2>\n<h3>Fixed</h3>\n<ul>\n<li>Implement recursion limit of 1024 on <code>orjson.loads()</code>.</li>\n<li>Use byte-exact read on <code>str</code> formatting SIMD path to avoid crash.</li>\n</ul>\n<h2>3.9.14</h2>\n<h3>Fixed</h3>\n<ul>\n<li>Fix crash serializing <code>str</code> introduced in 3.9.11.</li>\n</ul>\n<h3>Changed</h3>\n<ul>\n<li>Build now depends on Rust 1.72 or later.</li>\n</ul>\n<h2>3.9.13</h2>\n<h3>Fixed</h3>\n<ul>\n<li>Serialization <code>str</code> escape uses only 128-bit SIMD.</li>\n<li>Fix compatibility with CPython 3.13 alpha 3.</li>\n</ul>\n<h3>Changed</h3>\n<ul>\n<li>Publish <code>musllinux_1_2</code> instead of <code>musllinux_1_1</code> wheels.</li>\n<li>Serialization uses small integer optimization in CPython 3.12 or later.</li>\n</ul>\n<h2>3.9.12</h2>\n<h3>Fixed</h3>\n<ul>\n<li>Minimal <code>musllinux_1_1</code> build due to sporadic CI failure.</li>\n</ul>\n<h3>Changed</h3>\n<ul>\n<li>Update benchmarks in README.</li>\n</ul>\n<h2>3.9.11</h2>\n<h3>Changed</h3>\n<ul>\n<li>Improve performance of serializing. <code>str</code> is significantly faster. Documents\nusing <code>dict</code>, <code>list</code>, and <code>tuple</code> are somewhat faster.</li>\n</ul>\n<h2>3.9.10</h2>\n<h3>Fixed</h3>\n<ul>\n<li>Fix debug assert failure on 3.12 <code>--profile=dev</code> build.</li>\n</ul>\n<h2>3.9.9</h2>\n<h3>Changed</h3>\n<ul>\n<li><code>orjson</code> module metadata explicitly marks subinterpreters as not supported.</li>\n</ul>\n<!-- raw HTML omitted -->\n</blockquote>\n<p>... (truncated)</p>\n</details>\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/ijl/orjson/blob/master/CHANGELOG.md\">orjson's changelog</a>.</em></p>\n<blockquote>\n<h2>3.9.15 - 2024-02-23</h2>\n<h3>Fixed</h3>\n<ul>\n<li>Implement recursion limit of 1024 on <code>orjson.loads()</code>.</li>\n<li>Use byte-exact read on <code>str</code> formatting SIMD path to avoid crash.</li>\n</ul>\n<h2>3.9.14 - 2024-02-14</h2>\n<h3>Fixed</h3>\n<ul>\n<li>Fix crash serializing <code>str</code> introduced in 3.9.11.</li>\n</ul>\n<h3>Changed</h3>\n<ul>\n<li>Build now depends on Rust 1.72 or later.</li>\n</ul>\n<h2>3.9.13 - 2024-02-03</h2>\n<h3>Fixed</h3>\n<ul>\n<li>Serialization <code>str</code> escape uses only 128-bit SIMD.</li>\n<li>Fix compatibility with CPython 3.13 alpha 3.</li>\n</ul>\n<h3>Changed</h3>\n<ul>\n<li>Publish <code>musllinux_1_2</code> instead of <code>musllinux_1_1</code> wheels.</li>\n<li>Serialization uses small integer optimization in CPython 3.12 or later.</li>\n</ul>\n<h2>3.9.12 - 2024-01-18</h2>\n<h3>Changed</h3>\n<ul>\n<li>Update benchmarks in README.</li>\n</ul>\n<h3>Fixed</h3>\n<ul>\n<li>Minimal <code>musllinux_1_1</code> build due to sporadic CI failure.</li>\n</ul>\n<h2>3.9.11 - 2024-01-18</h2>\n<h3>Changed</h3>\n<ul>\n<li>Improve performance of serializing. <code>str</code> is significantly faster. Documents\nusing <code>dict</code>, <code>list</code>, and <code>tuple</code> are somewhat faster.</li>\n</ul>\n<!-- raw HTML omitted -->\n</blockquote>\n<p>... (truncated)</p>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/ijl/orjson/commit/a348f59f0b55d92a1364523560f52f5b3cf9c12a\"><code>a348f59</code></a> 3.9.15</li>\n<li><a href=\"https://github.com/ijl/orjson/commit/b0e4d2c06ce06c6e63981bf0276e4b7c74e5845e\"><code>b0e4d2c</code></a> yyjson 0eca326, recursion limit</li>\n<li><a href=\"https://github.com/ijl/orjson/commit/5067eadc84cf516e4eb33bcb09ad756bb59dc42e\"><code>5067ead</code></a> impl_escape_unchecked() byte exact read</li>\n<li><a href=\"https://github.com/ijl/orjson/commit/e04ea735b087742b6cee738aa295d8b835c3a195\"><code>e04ea73</code></a> cargo update, build misc</li>\n<li><a href=\"https://github.com/ijl/orjson/commit/ba8c701292e4720b4e10210b266be5666d098fb6\"><code>ba8c701</code></a> 3.9.14</li>\n<li><a href=\"https://github.com/ijl/orjson/commit/a2f7b7bfa4987c102892793ab7c7483fcb8050a0\"><code>a2f7b7b</code></a> impl_format_simd!() lift create from loop, rotate left</li>\n<li><a href=\"https://github.com/ijl/orjson/commit/528220fb0d18bbf0212de7f0ce5c7aec209bc6e7\"><code>528220f</code></a> format_escaped_str() fast and slow paths depending on page boundary</li>\n<li><a href=\"https://github.com/ijl/orjson/commit/29884e617d35c6774f60b8fedf6de47d74edcd2f\"><code>29884e6</code></a> Fix buffer overread in format_escaped_str</li>\n<li><a href=\"https://github.com/ijl/orjson/commit/c825472198c20f40064af63d7ef7b21eb2e3aaef\"><code>c825472</code></a> cargo update</li>\n<li><a href=\"https://github.com/ijl/orjson/commit/4eb4f005a6f1b71609051770612a055b584b73d2\"><code>4eb4f00</code></a> 3.9.13</li>\n<li>Additional commits viewable in <a href=\"https://github.com/ijl/orjson/compare/3.8.5...3.9.15\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=orjson&package-manager=pip&previous-version=3.8.5&new-version=3.9.15)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Update github actions to new versions\nBody: Github actions showed warnings about node 16 being deprecated. Example: https://github.com/kevoreilly/CAPEv2/actions/runs/8055258257\r\n\r\nThe new versions of these actions use node 20.\nComment: thank you",
+  "Title: Update az.conf.default\nBody: Optimizing the wait_time_to_reimage parameter to a more realistic value",
+  "Title: Update DarkGate parser\nBody: None",
+  "Title: Add AWS Deployment guide to README.md\nBody: Hi, I noticed that there is no documentation on how to deploy to AWS, such as what you have for Azure. I have been working on a comprehensive guide that explains how to deploy CAPEv2 to AWS from scratch. I would appreciate it if you would agree to add it to the README or to another location in the repository. The source code of my website is available in that repository: https://github.com/Y4nush/y4nush.com.\r\nThank you!\nComment: hello, readme is not a place for that, but if that is ok, i will copy your work to cape docs specially mentioning that is your work and link your writeup. let me know if that is ok for you. You can see how we did that with wireguard from external blogpost https://capev2.readthedocs.io/en/latest/installation/host/routing.html#setup-wireguard\r\n\r\nPS thank you for blogpost, is always a help\nComment: FYI you not really to uncomment those, you only need to change ip/port if they are different from cuckoo.conf and tags shouldn't be empty or commented\r\n\r\n```\r\nUncomment #options =\r\nUncomment #tags = and add tags = none\r\nUncomment # resultserver_ip = and add your server ip\r\nUncomment #resultserver_port = 2042\r\n```\nComment: but so far, very good writeup for those who starts with CAPE on AWS \nComment: Hi, @doomedraven  sure! that's okay from my side. \r\nThank you for the feedback. I will update the blog post accordingly.\nComment: cool thanks, i will show you PR once that is done before merge\nComment: why do you remove it?\nComment: > why do you remove it?\r\n\r\n\nComment: Hi @doomedraven, I did that accidentally while I opened the IMDS pull request.\r\n\r\nBy the way, I would like to edit the blog post based on the IMDS authentication method. I will update once I complete that. Is that okay from your side?\nComment: yes, as you can see sadly those week not enough free time so i can't work on it, and the same will be at least for next 2w, but after that i hope to add it. so once you update the blog just let me know here plz, i keep this open to remember that i have to copy it to docs\nComment: Hi @doomedraven, I have updated the blog post, thanks!\nComment: thanks for headups and documenting this\nComment: i still have to add aws setup docs https://y4nush.com/posts/installation-of-capev2-sandbox-on-aws/",
+  "Title: Update Latrodectus.py\nBody: None",
+  "Title: Fixing AWS Deployment Bugs\nBody: This will fix out of the box AWS deployment issues\nComment: thank you, we can't mod `.conf`, only `.conf.default`. `.conf` will be overwritten on deployement by `.conf.default`. We do this to be able to introduce changes into .default and you can have your .conf withou conflicts on update",
+  "Title: Update Latrodectus parser\nBody: None\nComment: that breaks tests\nComment: thanks",
+  "Title: Can't use the aws machinery due to  KeyError: 'arch' in ./lib/cuckoo/common/abstracts.py\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ * ] I am running the latest version\r\n- [ * ] I did read the README!\r\n- [ * ] I checked the documentation and found no answer\r\n- [ * ] I checked to make sure that this issue has not already been filed\r\n- [ * ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ * ] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nHi, Im trting to run perform analysis with CAPE using aws machinery\r\n\r\n# Current Behavior\r\n\r\nWhile looking at the journalctl logs i have seen that i me getting the following KeyError machine.arch = machine_opts[\"arch\"]\r\nAltought i didn't saw any option to specify arch in the aws.conf such as in kvm.conf\r\n\r\n# Failure Information (for bugs)\r\n\r\n```\r\nFeb 22 16:34:25 ip-172-31-37-191 python3[3155]: Traceback (most recent call last):\r\nFeb 22 16:34:25 ip-172-31-37-191 python3[3155]:   File \"/opt/CAPEv2/cuckoo.py\", line 139, in <module>\r\nFeb 22 16:34:25 ip-172-31-37-191 python3[3155]:     cuckoo_main(max_analysis_count=args.max_analysis_count)\r\nFeb 22 16:34:25 ip-172-31-37-191 python3[3155]:   File \"/opt/CAPEv2/cuckoo.py\", line 100, in cuckoo_main\r\nFeb 22 16:34:25 ip-172-31-37-191 python3[3155]:     sched.start()\r\nFeb 22 16:34:25 ip-172-31-37-191 python3[3155]:   File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 967, in start\r\nFeb 22 16:34:25 ip-172-31-37-191 python3[3155]:     self.initialize()\r\nFeb 22 16:34:25 ip-172-31-37-191 python3[3155]:   File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 890, in initialize\r\nFeb 22 16:34:25 ip-172-31-37-191 python3[3155]:     machinery.initialize(machinery_name)\r\nFeb 22 16:34:25 ip-172-31-37-191 python3[3155]:   File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 132, in initialize\r\nFeb 22 16:34:25 ip-172-31-37-191 python3[3155]:     self._initialize(module_name)\r\nFeb 22 16:34:25 ip-172-31-37-191 python3[3155]:   File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 155, in _initialize\r\nFeb 22 16:34:25 ip-172-31-37-191 python3[3155]:     machine.arch = machine_opts[\"arch\"]\r\nFeb 22 16:34:25 ip-172-31-37-191 python3[3155]: KeyError: 'arch'\r\nFeb 22 16:34:25 ip-172-31-37-191 systemd[1]: cape.service: Main process exited, code=exited, status=1/FAILURE\r\nFeb 22 16:34:25 ip-172-31-37-191 systemd[1]: cape.service: Failed with result 'exit-code'.\r\nFeb 22 16:34:25 ip-172-31-37-191 systemd[1]: cape.service: Consumed 3.428s CPU time.\r\n\r\n```\r\n## Steps to Reproduce\r\n\r\nThat is the conf file that i have used:\r\n```\r\n[aws]\r\n# Specify the AWS Region (for example, us-west-1)\r\nregion_name = censored\r\n# Specify the Availability Zone(for example, us-west-1a) to create a new volume (used at machine's restoration).\r\navailability_zone = censored\r\n# Access keys consist of two parts: an access key ID (for example, AKIAIOSFODNN7EXAMPLE)\r\n# and a secret access key (for example, wJalrXUtnFEMI/K7MDENG/bPxRfiCYEXAMPLEKEY).\r\n# To create access keys for your AWS account root user, you must use the AWS Management Console.\r\naws_access_key_id = censored\r\naws_secret_access_key = censored\r\n\r\n# Specify a comma-separated list of available machines to be used.\r\n# Each machine will be represented by the instance-id (for example, i-05f07711c635f817f).\r\n# For each specified instance-id you have to define a dedicated section containing the details\r\n# on the respective machine. (E.g. i-05f07711c635f817f,i-04d465547cba1af5e)\r\n# For better performance, it is recommended to leave this empty and set autoscale = yes.\r\nmachines = censored\r\n\r\n# Default network interface.\r\ninterface = eth0\r\n\r\n# To improve the performance, running_machines_gap is number of machines that are ready to perform a task (up and running).\r\n# running_machines_gap is the size of a pool which contains machines that were already started in advance.\r\n# Whenever a machine from the pool starts a task, the machinery will start another new machine.\r\n# In a scenario where all the list of machines are occupied, and autoscale mode is on, the machinery will instantly\r\n# scale up by creating new machines.\r\n# Thus, there will always be a constant number of ready machines for the user's requests.\r\n# It is recommended to set this value to 1 and above.\r\nrunning_machines_gap = 1\r\n\r\n# In a scenario where all the configured machines are occupied, the machinery will instantly scale up by creating\r\n# new machines and adding them to the Cuckoo internal database (DB). The new machines will be terminated after use.\r\n\r\n# The user can choose to prepare any number of machines, but does not have to (if autoscale in on).\r\n\r\n[autoscale]\r\n\r\n# Enable auto-scale in cuckoo(by setting autoscale = yes). recommended for better performance.\r\nautoscale =\r\n\r\n# Specify the maximum number of online machines that was created as a result of auto-scale operation.\r\n# Once reaching that limit, cuckoo will create a new machine only if another was terminated.\r\n# This limit prevents a situation of creating machine beyond the subnet capacity.\r\ndynamic_machines_limit = 2\r\n\r\n# Specify the Amazon Machine Image (AMI). It required to launch a new instance.\r\n# You should create an image from the guest machine.\r\nimage_id = censored\r\n\r\n# Specify the machine's instance type(for example, t2.small)\r\ninstance_type = t2.medium\r\n\r\n# Specify the subnet id where the machines will be placed\r\nsubnet_id = censored\r\n\r\n# Specify a comma-separated list of security groups IDs that will be associated with the machines.\r\n# On the Cuckoo default settings ,the security groups must allow tcp ports 2042,8000 and 8090 on the inbound.\r\nsecurity_groups = censored\r\n\r\n# Specify the operating system platform used by the new machine\r\n# [windows/darwin/linux].\r\nplatform = windows\r\n\r\n# Default network interface.\r\ninterface = eth0\r\n\r\n# Mostly unused for now. Please don't fill it out.\r\noptions =\r\n\r\n# (Optional) Set your own tags. These are comma separated and help to identify\r\n# specific VMs. You can run samples on VMs with tag you require.\r\ntags =\r\n\r\n# Specify the IP of the Result Server, as your virtual machine sees it.\r\n# It should be the nest ip address.\r\nresultserver_ip = 172.31.37.191\r\n\r\n# Specify a port number to bind the result server on.\r\nresultserver_port = 2042\r\n\r\n\r\n\r\n# This section is just a template for one pre-configured machine, if you choose to use it.\r\n# For better performance, it is best to leave it blank and let the auto-scaling to control the machines.\r\n\r\n[censored]\r\n# Specify the label name.\r\n# Label would be the instance-id of the current machine as specified in your AWS account.\r\nlabel = censored\r\n\r\n# Specify the operating system platform used by current machine\r\n# [windows/darwin/linux].\r\nplatform = windows\r\n\r\n# Specify the IP address of the current virtual machine. Make sure that the\r\n# IP address is valid and that the host machine is able to reach it. If not,\r\n# the analysis will fail.\r\nip = 172.31.37.191\r\n\r\n# Specify the snapshot-id to use. it is used when creating a new volume when restoring a machine.\r\n# You should create a snapshot from the guest machine.\r\nsnapshot = censored\r\n\r\n# (Optional) Specify the name of the network interface that should be used\r\n# when dumping network traffic from this machine with tcpdump. If specified,\r\n# overrides the default interface specified above.\r\n# Example (eth0 is the interface name):\r\ninterface = eth0\r\n\r\n# (Optional) Specify the IP of the Result Server, as your virtual machine sees it.\r\n# The Result Server will always bind to the address and port specified in cuckoo.conf,\r\n# however you could set up your virtual network to use NAT/PAT, so you can specify here\r\n# the IP address for the Result Server as your machine sees it. If you don't specify an\r\n# address here, the machine will use the default value from cuckoo.conf.\r\n# NOTE: if you set this option you have to set result server IP to 0.0.0.0 in cuckoo.conf.\r\n# Example:\r\nresultserver_ip =\r\n\r\n# (Optional) Specify the port for the Result Server, as your virtual machine sees it.\r\n# The Result Server will always bind to the address and port specified in cuckoo.conf,\r\n# however you could set up your virtual network to use NAT/PAT, so you can specify here\r\n# the port for the Result Server as your machine sees it. If you don't specify a port\r\n# here, the machine will use the default value from cuckoo.conf.\r\nresultserver_port =\r\n\r\n# (Optional) Set your own tags. These are comma separated and help to identify\r\n# specific VMs. You can run samples on VMs with tag you require.\r\ntags =\r\n\r\n# Mostly unused for now. Please don't fill it out.\r\noptions =\r\n```\r\n\r\n\r\n1. Use the conf file with your recources, not on auto-scaling mode \r\n2. \r\n```\r\njournalctl -u cape.service -f\r\n```\r\n\r\n\r\n## Context\r\n\r\nIm using ubuntu 22.04 server on AWS, installed with the reguler installation script (base) and poetry. \r\nI managed to spin-up the EC2 by modifying /opt/CAPEv2/lib/cuckoo/common/abstracts.py but it breaked other componnets\r\n\r\nThank you for your support\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: just add `arch=X` where x is x64 or x86, we do not support aws officially as we don't have setup, that is community module\nComment: https://github.com/kevoreilly/CAPEv2/commit/7880b18aa014322019d6a10b82477f0e1db2025e\nComment: is this fixed?\nComment: @doomedraven Thank you so much for your quick response!\r\nUnfortunately, after doing that, it broke the web-server component: \"./web/submission/views.py\"\r\n```\r\nFile \"/opt/CAPEv2/web/submission/views.py\", line 550, in <listcomp>\r\nbreak\r\nelse:\r\n# Get VM names for machinery config elements\r\nvms = [x.strip() for x in str(getattr(Config(machinery), machinery).get(\"machines\")).split(\",\") if x.strip()]\r\n# Check each VM config element for tags\r\nif any([\"tags\" in list(getattr(Config(machinery), vmtag).keys()) for vmtag in vms]):\r\nenabledconf[\"tags\"] = True\r\npackages, machines = get_form_data(\"windows\")\r\n\r\nsocks5s = _load_socks5_operational()\r\nAttributeError: 'Config' object has no attribute 'none'\r\n\r\nThe debugger caught an exception in your WSGI application. You can now look at the traceback which led to the error.\r\nTo switch between the interactive traceback and the plaintext one, you can click on the \"Traceback\" headline. From the text traceback, you can also create a paste of it. For code execution, mouse-over the frame you want to debug and click on the console icon on the right side.\r\n```\r\nI managed to overcome this by changing the variable arch under the function acquire from the Class Machinery to None.\r\n\r\nAfter resolving that error, I had another error caused by lib/cuckoo/core/scheduler.py\r\n\r\n```\r\nFeb 22 20:26:26 ip-172-31-37-191 python3[1354]:   File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 618, in run\r\nFeb 22 20:26:26 ip-172-31-37-191 python3[1354]:     success = self.launch_analysis()\r\nFeb 22 20:26:26 ip-172-31-37-191 python3[1354]:   File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 478, in launch_analysis\r\nFeb 22 20:26:26 ip-172-31-37-191 python3[1354]:     self.acquire_machine()\r\nFeb 22 20:26:26 ip-172-31-37-191 python3[1354]:   File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 355, in acquire_machine\r\nFeb 22 20:26:26 ip-172-31-37-191 python3[1354]:     machine = machinery.acquire(\r\nFeb 22 20:26:26 ip-172-31-37-191 python3[1354]: TypeError: AWS.acquire() got an unexpected keyword argument 'arc\r\n\r\n```\r\nI have deleted all of the non-relevant tags (for my use case) and left only\r\n\r\n```\r\n            machine = machinery.acquire(\r\n                machine_id=self.task.machine,\r\n                platform=self.task.platform,\r\n                tags=task_tags,\r\n                arch=task_archs,\r\n                os_version=os_version,\r\n                need_scheduled=True,\r\n\r\n```\r\nUnfortunately, it didn't work as well, and I decided to go back in time to https://github.com/kevoreilly/CAPEv2/tree/a8298eaa8f7ecbd71163f0677972e60bc1408ca8 the last time JaminB has modified the aws.py component. I installed CAPEv2 using the repository at that point on Ubuntu 20.04 by making modifications to your old installation script and using that repo instead of the original.\r\n\r\nAfter completing the installation of the old version, I added the arch = x64 again, and this evrything worked as expected\r\n\r\n\r\n\r\n\nComment: yes nobody maintains the aws machinery, but that should be easy i guess just checking azure module if you want to be on latest \nComment: that issue fixed here https://github.com/kevoreilly/CAPEv2/commit/3bef033351d6d9bfc8f83ce264fffac76eaf2f64\r\nif tags are empty it shouldn't be uncommented\nComment: so is up to you, you can keep trying using latest version and help to fix, or use that old version without updates\nComment: https://github.com/kevoreilly/CAPEv2/pull/1980 Closing thia as issue is solved now, let us know if you find any other\nComment: I had the same issue with this, specifically when not using the `autoscaling = no`. I've placed the snapshot ID, the instance ID.\r\nYou can now place the `arch=x64` under the `[machinename]` config section in `aws.conf`. This will read the arch and continue working.\r\nHowever, now you'll get another issue with it relying on an AMI ID, which is not required, but it mandates it, giving an error like this:\r\n```Failure in AnalysisManager.run: An error occurred (InvalidAMIID.Malformed) when calling the RunInstances operation: Invalid id: \"ami-abcdefgh123456789\" (expecting \"ami-...\")```\r\nEven though AMI ID is not required when setting it with a specific machine name and ID, it still relies on it.\nComment: but this doesn't look like cape error, it looks like some configuration problem?",
+  "Title: Bump cryptography from 42.0.2 to 42.0.4\nBody: Bumps [cryptography](https://github.com/pyca/cryptography) from 42.0.2 to 42.0.4.\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst\">cryptography's changelog</a>.</em></p>\n<blockquote>\n<p>42.0.4 - 2024-02-20</p>\n<pre><code>\n* Fixed a null-pointer-dereference and segfault that could occur when creating\n  a PKCS#12 bundle. Credit to **Alexander-Programming** for reporting the\n  issue. **CVE-2024-26130**\n* Fixed ASN.1 encoding for PKCS7/SMIME signed messages. The fields ``SMIMECapabilities``\n  and ``SignatureAlgorithmIdentifier`` should now be correctly encoded according to the\n  definitions in :rfc:`2633` :rfc:`3370`.\n<p>.. _v42-0-3:</p>\n<p>42.0.3 - 2024-02-15\n</code></pre></p>\n<ul>\n<li>Fixed an initialization issue that caused key loading failures for some\nusers.</li>\n</ul>\n<p>.. _v42-0-2:</p>\n</blockquote>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/pyca/cryptography/commit/fe18470f7d05f963e7267e34fdf985d81ea6ceea\"><code>fe18470</code></a> Bump for 42.0.4 release (<a href=\"https://redirect.github.com/pyca/cryptography/issues/10445\">#10445</a>)</li>\n<li><a href=\"https://github.com/pyca/cryptography/commit/aaa2dd06ed470695de818405a982d4c459869803\"><code>aaa2dd0</code></a> Fix ASN.1 issues in PKCS#7 and S/MIME signing (<a href=\"https://redirect.github.com/pyca/cryptography/issues/10373\">#10373</a>) (<a href=\"https://redirect.github.com/pyca/cryptography/issues/10442\">#10442</a>)</li>\n<li><a href=\"https://github.com/pyca/cryptography/commit/7a4d012991061974da5d9cb7614de65eac94f49b\"><code>7a4d012</code></a> Fixes <a href=\"https://redirect.github.com/pyca/cryptography/issues/10422\">#10422</a> -- don't crash when a PKCS#12 key and cert don't match (<a href=\"https://redirect.github.com/pyca/cryptography/issues/10423\">#10423</a>) ...</li>\n<li><a href=\"https://github.com/pyca/cryptography/commit/df314bb182bdfd661333969a94325e4680d785f6\"><code>df314bb</code></a> backport actions m1 switch to 42.0.x (<a href=\"https://redirect.github.com/pyca/cryptography/issues/10415\">#10415</a>)</li>\n<li><a href=\"https://github.com/pyca/cryptography/commit/c49a7a5271178c6e8ef36fa1c499f62c63ec19b9\"><code>c49a7a5</code></a> changelog and version bump for 42.0.3 (<a href=\"https://redirect.github.com/pyca/cryptography/issues/10396\">#10396</a>)</li>\n<li><a href=\"https://github.com/pyca/cryptography/commit/396bcf64c5be826ec00e7d7f45838c858c049cbc\"><code>396bcf6</code></a> fix provider loading take two (<a href=\"https://redirect.github.com/pyca/cryptography/issues/10390\">#10390</a>) (<a href=\"https://redirect.github.com/pyca/cryptography/issues/10395\">#10395</a>)</li>\n<li><a href=\"https://github.com/pyca/cryptography/commit/0e0e46f5f73f477b8ee9682738c42129d5d60177\"><code>0e0e46f</code></a> backport: initialize openssl's legacy provider in rust (<a href=\"https://redirect.github.com/pyca/cryptography/issues/10323\">#10323</a>) (<a href=\"https://redirect.github.com/pyca/cryptography/issues/10333\">#10333</a>)</li>\n<li>See full diff in <a href=\"https://github.com/pyca/cryptography/compare/42.0.2...42.0.4\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=cryptography&package-manager=pip&previous-version=42.0.2&new-version=42.0.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: View remote session from status.html page\nBody: This change allows viewing the remote session from the status page as well. This is useful when submitting via API for example as the initial remote session button won't be accessible.\nComment: hey, thanks, i have to improve that as for those who doesn't use guacamole they don't need to see that + there is a bug in html code, url `here` is broken\nComment: Sounds good doomed\nComment: can you plz check my changes when you have oportunity?\nComment: I can look into this next week for testing - I will be away from keyboard for a bit.\nComment: merged to staging for a week",
+  "Title: Added access to the virtual session from the status.html page\nBody: This change allows users to still access their session's virtual link even if submitted via API or otherwise didn't interact with the initial virtual session link.\nComment: Ignore the initial views.py update - my repository was behind a few updates.",
+  "Title: No file/folder found for package cap   ev2\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n[#] I am running the latest version\r\n[#] I did read the README!\r\n[#] I checked the documentation and found no answer\r\n[#] I checked to make sure that this issue has not already been filed\r\n[#] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n[#] I have read and checked all configs (with all optional parts)\r\n\r\n# Failure Information (for bugs)\r\n\r\nError message: \r\nThe current project could not be installed: No file/folder found for package cap   ev2\r\nIf you do not want to install the current project use --no-root\r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/123061889/b1cc2aa3-5d01-4e15-94f6-fe2dfb574d68)\r\n\r\nIs this to be expected?\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. cd /opt/CAPEv2/\r\n2. sudo poetry install\r\n\r\n\r\n## Context\r\n\r\nInstalling on linux CLI headless server, ubuntu 22.04\nComment: i would suggest to start looking into issues, and instead of open new issues as i told, ask in the same issue, as that \"spams\" everyone who watching the repo\nComment: Sorry about that, thanks, I will.",
+  "Title: sudo: ./kvm-qemu.sh: command not found\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n[#] I am running the latest version\r\n[#] I did read the README!\r\n[#] I checked the documentation and found no answer\r\n[#] I checked to make sure that this issue has not already been filed\r\n[#] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n[#] I have read and checked all configs (with all optional parts)\r\n\r\n# Failure Information (for bugs)\r\n\r\nsudo: ./kvm-qemu.sh: command not found\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/123061889/a1198411-16ec-45e2-87f1-4456fefdd6d6)\r\n\r\nCurrent ls\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/123061889/96e718a0-c401-4d49-a8fb-fe74bc39f4af)\r\n\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\nAfter changing the <WOOT> appropriately, I ran\r\n1. sudo ./kvm-qemu.sh all <username> | tee kvm-qemu.log\r\n\r\n## Context\r\n\r\nInstalling on linux CLI headless server, ubuntu 22.04\r\n\r\n\nComment: what about `chmod a+x kvm-qemu.sh` before?\nComment: fixed. yes realised it needed chmod a+x kvm-qemu.sh thanks",
+  "Title: Expected query cape2.sh installation\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n[#] I am running the latest version\r\n[#] I did read the README!\r\n[#] I checked the documentation and found no answer\r\n[#] I checked to make sure that this issue has not already been filed\r\n[#] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n[#] I have read and checked all configs (with all optional parts)\r\n\r\n## Steps to Reproduce\r\n\r\n1. sudo ./cape2.sh all cape | tee cape.log\r\n\r\nThe installation ran smoothly, except for the following prompts, of which I input 'N' as seen:\r\n\r\nrm: remove write-protected regular file 'yara-python/.git/objects/pack/pack-3358f33339ebecbf81b8f73822509df796fd790f.idx'? N\r\nrm: remove write-protected regular file 'yara-python/.git/objects/pack/pack-3358f33339ebecbf81b8f73822509df796fd790f.pack'? N\r\nrm: cannot remove 'yara-python/.git/objects/pack': Directory not empty\r\nrm: remove write-protected regular file 'yara-python/.git/modules/yara/objects/pack/pack-3b12524f38606fec6b149c9d3bfc4316e608aef6.pack'? N\r\nrm: remove write-protected regular file 'yara-python/.git/modules/yara/objects/pack/pack-3b12524f38606fec6b149c9d3bfc4316e608aef6.idx'? N\r\nrm: cannot remove 'yara-python/.git/modules/yara/objects/pack': Directory not empty\r\n\r\nWanted to check if these are to be expected.\r\n\r\nIn addition, I see the following files after installation, is this to be expected?\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/123061889/447370ca-809f-4c4b-a362-17cabf5fc40a)\r\n\r\n\r\n## Context\r\n\r\nInstalling on linux CLI headless server\r\n\r\n\nComment: yes that is expected",
+  "Title: cape2.sh error\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ #] I am running the latest version\r\n- [# ] I did read the README!\r\n- [# ] I checked the documentation and found no answer\r\n- [# ] I checked to make sure that this issue has not already been filed\r\n- [ #] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [# ] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nAutomated installation of cape2.sh\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\nStill trying to install cape2.sh\r\n\r\n# Failure Information \r\n\r\nSyntax error: word unexpected (expecting \")\")\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1.  wget https://github.com/kevoreilly/CAPEv2/blob/master/installer/e2.sh\r\n--2024-02-20 06:41:39--  https://github.com/kevoreilly/CAPEv2/blob/master/insler/cape2.sh\r\n2. chmod a+x cape2.sh\r\n3. Tried BOTH, same error\r\nsudo ./cape2.sh all cape | tee cape.log\r\nsudo ./cape2.sh base cape | tee cape.log\r\n\r\n## Context\r\n\r\nI am installing CAPE via CLI to linux remote lab through SSH.\r\nUbuntu 22.04 LTS\r\n4GB Memory\r\n\r\n\nComment: hey, can you provide mode details about error? there for sure should be more info\nComment: I did the same mistake. \r\nDo a wget https://raw.githubusercontent.com/kevoreilly/CAPEv2/master/installer/cape2.sh \r\nfrom the raw version and not html (will fix the syntax issue). \nComment: ah good point, thank you @deusargon is the wrong url is somewhere in docs/readme i can't quickly find it",
+  "Title: Fix zip_compound package\nBody: `target_file` in `__configuration.json` expects string instead of list. Theoretically, there is no fuzzy logic needed what file is interesting as the `__configuration.json` or `target_file` option need to be specified explicitly by user.\r\n\r\nPython 3.10 complaint `not enough values to unpack` upon returning to the caller of `process_unzipped_contents`\nComment: @TheMythologist what do you think?\nComment: thank you",
+  "Title: Unable to install CAPE with Poetry\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nI should be able to install all dependencies using Poetry from /opt/CAPEv2, however it won't install capev2 project.\r\n\r\n# Current Behavior\r\n\r\nAfter running the cape2.sh installation script and rebooting I run the following:\r\ncd /opt/CAPEv2\r\npoetry install\r\n\r\nProduces the following error: \r\n\r\nInstalling dependencies from lock file\r\nNo dependencies to install or update\r\nInstalling the current project: CAPEv2 (0.1.0)\r\nThe current project could not be installed: No file/folder found for package capev2\r\nIf you do not want to install the current project use --no-root\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Run cape.sh\r\n2. Install using poetry in Cape's working directory\r\n\r\n## Context\r\n\r\nI was having issues running cape2.sh initially, when it got to installing yara-python, it would repeatedly prompt me to overwrite write protected files to which I answered \"y\" to all prompts. It then iterated through it again, asking me to remove other write protected files relating to \"yara-python\", and shortly after this the script ended. So I'm only assuming this ran correctly? I then carry on following the steps in the docs, by running \"poetry install\" which is where I got the error I described above. I have the same issues on separate PCs, using the same OS and version.\r\n\r\nI am using Ubuntu 22.04.3 LTS\r\n\r\nApologies if I'm missing something obvious, any help would be hugely appreciated.\nComment: hello, about `yara-python` yes. one day that will be improved. about the poetry install. i guess your problem is user, which which user do you run it? cape? you can run `sudo -u cape poetry install` from `/opt/CAPEv2/` if that doesn't work,post whole output of that command \nComment: I tried running the \"poetry install\" command as both cape user and my normal user, but I get the same output:\r\n\r\n```\r\nInstalling dependencies from lock file\r\n\r\nNo dependencies to install or update\r\n\r\nInstalling the current project: CAPEv2 (0.1.0)\r\nThe current project could not be installed: No file/folder found for package capev2\r\nIf you do not want to install the current project use --no-root\r\n```\r\nWhen I run \"sudo -u cape poetry install\" on my normal user, I get the same output as above. Running the command as the cape user, I get this:\r\n\r\n`Sorry, user cape is not allowed to execute '/usr/local/bin/poetry install' as cape on sandbox.`\nComment: that means everything is installed. we instal thst for you here https://github.com/kevoreilly/CAPEv2/blob/master/installer/cape2.sh#L1185\nComment: any update here?",
+  "Title: Bump cryptography from 42.0.0 to 42.0.2\nBody: Bumps [cryptography](https://github.com/pyca/cryptography) from 42.0.0 to 42.0.2.\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst\">cryptography's changelog</a>.</em></p>\n<blockquote>\n<p>42.0.2 - 2024-01-30</p>\n<pre><code>\n* Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.2.1.\n* Fixed an issue that prevented the use of Python buffer protocol objects in\n  ``sign`` and ``verify`` methods on asymmetric keys.\n* Fixed an issue with incorrect keyword-argument naming with ``EllipticCurvePrivateKey``\n  :meth:`~cryptography.hazmat.primitives.asymmetric.ec.EllipticCurvePrivateKey.exchange`,\n  ``X25519PrivateKey``\n  :meth:`~cryptography.hazmat.primitives.asymmetric.x25519.X25519PrivateKey.exchange`,\n  ``X448PrivateKey``\n  :meth:`~cryptography.hazmat.primitives.asymmetric.x448.X448PrivateKey.exchange`,\n  and ``DHPrivateKey``\n  :meth:`~cryptography.hazmat.primitives.asymmetric.dh.DHPrivateKey.exchange`.\n<p>.. _v42-0-1:</p>\n<p>42.0.1 - 2024-01-24\n</code></pre></p>\n<ul>\n<li>Fixed an issue with incorrect keyword-argument naming with <code>EllipticCurvePrivateKey</code>\n:meth:<code>~cryptography.hazmat.primitives.asymmetric.ec.EllipticCurvePrivateKey.sign</code>.</li>\n<li>Resolved compatibility issue with loading certain RSA public keys in\n:func:<code>~cryptography.hazmat.primitives.serialization.load_pem_public_key</code>.</li>\n</ul>\n<p>.. _v42-0-0:</p>\n</blockquote>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/pyca/cryptography/commit/2202123b50de1b8788f909a3e5afe350c56ad81e\"><code>2202123</code></a> changelog and version bump 42.0.2 (<a href=\"https://redirect.github.com/pyca/cryptography/issues/10268\">#10268</a>)</li>\n<li><a href=\"https://github.com/pyca/cryptography/commit/f7032bdd409838f67fc2b93343f897fb5f397d80\"><code>f7032bd</code></a> bump openssl in CI (<a href=\"https://redirect.github.com/pyca/cryptography/issues/10298\">#10298</a>) (<a href=\"https://redirect.github.com/pyca/cryptography/issues/10299\">#10299</a>)</li>\n<li><a href=\"https://github.com/pyca/cryptography/commit/002e886f16d8857151c09b11dc86b35f2ac9aec3\"><code>002e886</code></a> Fixes <a href=\"https://redirect.github.com/pyca/cryptography/issues/10294\">#10294</a> -- correct accidental change to exchange kwarg (<a href=\"https://redirect.github.com/pyca/cryptography/issues/10295\">#10295</a>) (<a href=\"https://redirect.github.com/pyca/cryptography/issues/10296\">#10296</a>)</li>\n<li><a href=\"https://github.com/pyca/cryptography/commit/92fa9f2f606caea5d499c825e832be5bac6f0c23\"><code>92fa9f2</code></a> support bytes-like consistently across our asym sign/verify APIs (<a href=\"https://redirect.github.com/pyca/cryptography/issues/10260\">#10260</a>) (<a href=\"https://redirect.github.com/pyca/cryptography/issues/1\">#1</a>...</li>\n<li><a href=\"https://github.com/pyca/cryptography/commit/6478f7e28be54b51931277235de01b249ceabd96\"><code>6478f7e</code></a> explicitly support bytes-like for signature/data in RSA sign/verify (<a href=\"https://redirect.github.com/pyca/cryptography/issues/10259\">#10259</a>) ...</li>\n<li><a href=\"https://github.com/pyca/cryptography/commit/4bb8596ae02d95bb054dbcf55e8771379dbe0c19\"><code>4bb8596</code></a> fix the release script (<a href=\"https://redirect.github.com/pyca/cryptography/issues/10233\">#10233</a>) (<a href=\"https://redirect.github.com/pyca/cryptography/issues/10254\">#10254</a>)</li>\n<li><a href=\"https://github.com/pyca/cryptography/commit/337437dc2e62772bde4ad5544f4b1db9ee7572d9\"><code>337437d</code></a> 42.0.1 bump (<a href=\"https://redirect.github.com/pyca/cryptography/issues/10252\">#10252</a>)</li>\n<li><a href=\"https://github.com/pyca/cryptography/commit/56255de6b2d1a2d2e502b0275231ca81907f33f1\"><code>56255de</code></a> allow SPKI RSA keys to be parsed even if they have an incorrect delimiter (<a href=\"https://redirect.github.com/pyca/cryptography/issues/1\">#1</a>...</li>\n<li><a href=\"https://github.com/pyca/cryptography/commit/12f038b38af76e36efe8cef09597010c97647e8f\"><code>12f038b</code></a> fixes <a href=\"https://redirect.github.com/pyca/cryptography/issues/10237\">#10237</a> -- correct EC sign parameter name (<a href=\"https://redirect.github.com/pyca/cryptography/issues/10239\">#10239</a>) (<a href=\"https://redirect.github.com/pyca/cryptography/issues/10240\">#10240</a>)</li>\n<li>See full diff in <a href=\"https://github.com/pyca/cryptography/compare/42.0.0...42.0.2\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=cryptography&package-manager=pip&previous-version=42.0.0&new-version=42.0.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: [SOLVED] Analysis does not work\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I did read the README!\r\n- [X] I checked the documentation and found no answer\r\n- [ ] I checked to make sure that this issue has not already been filed\r\n- [ ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__ --> _The analysis remains running and does not appear to be parsing the file. Yes I set the tag to x64._\r\n\r\n# Current Behavior\r\n\r\n_I am trying to run capev2 but I can't get it to work. From the web I import the file to be analyzed, select the vm where to test it and as soon as I select the analysis the process stays running without running._\r\n\r\n# Failure Information (for bugs)\r\n\r\n_I cannot tell whether it is a bug or an incorrect configuration of the environment_\r\n\r\n## Failure Logs\r\n\r\nfeb 15 15:18:35 cape-sandbox systemd[1]: Started CAPE.\r\nfeb 15 15:18:37 cape-sandbox python3[16900]: \r\nfeb 15 15:18:37 cape-sandbox python3[16900]:   .-----------------.\r\nfeb 15 15:18:37 cape-sandbox python3[16900]:   | Cuckoo Sandbox? |\r\nfeb 15 15:18:37 cape-sandbox python3[16900]:   |     OH NOES!    |\\  '-.__.-'\r\nfeb 15 15:18:37 cape-sandbox python3[16900]:   '-----------------' \\  /oo |--.--,--,--.\r\nfeb 15 15:18:37 cape-sandbox python3[16900]:                          \\_.-'._i__i__i_.'\r\nfeb 15 15:18:37 cape-sandbox python3[16900]:                                \"\"\"\"\"\"\"\"\"\r\nfeb 15 15:18:37 cape-sandbox python3[16900]:  Cuckoo Sandbox 2.4-CAPE\r\nfeb 15 15:18:37 cape-sandbox python3[16900]:  www.cuckoosandbox.org\r\nfeb 15 15:18:37 cape-sandbox python3[16900]:  Copyright (c) 2010-2015\r\nfeb 15 15:18:37 cape-sandbox python3[16900]:  CAPE: Config and Payload Extraction\r\nfeb 15 15:18:37 cape-sandbox python3[16900]:  github.com/kevoreilly/CAPEv2\r\nfeb 15 15:18:38 cape-sandbox python3[16900]: XLMMacroDeobfuscator: pywin32 is not installed (only is required if you want to use MS Excel)\r\nfeb 15 15:18:38 cape-sandbox python3[16900]: FLARE_CAPA InvalidRuleSet\r\nfeb 15 15:18:38 cape-sandbox python3[16900]: Unable to import plugin \"modules.processing.static\": multiple exception types must be parenthesized (static.py, line 936)\r\n\r\n\r\nfeb 15 15:18:39 cape-sandbox python3[16958]: /usr/bin/tcpdump\r\nfeb 15 15:18:39 cape-sandbox python3[16900]: 2024-02-15 15:18:39,756 [lib.cuckoo.core.scheduler] INFO: Using \"kvm\" machine manager with max_analysis_count=1, max_machines_count=10, and max_vmstartup_count=5\r\nfeb 15 15:18:39 cape-sandbox python3[16900]: 2024-02-15 15:18:39,760 [lib.cuckoo.core.scheduler] INFO: Loaded 3 machine/s\r\nfeb 15 15:18:39 cape-sandbox python3[16900]: 2024-02-15 15:18:39,765 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks\r\n\r\n\r\nfeb 15 15:24:12 cape-sandbox python3[16900]: 2024-02-15 15:24:12,202 [lib.cuckoo.core.scheduler] INFO: Task #18: Starting analysis of FILE '/tmp/cuckoo-sflock/tmpowxzjs31/25c7d6530d1b7b4e8fe1.pdf'\r\nfeb 15 15:24:12 cape-sandbox python3[16900]: 2024-02-15 15:24:12,252 [lib.cuckoo.core.scheduler] INFO: Task #18: acquired machine Win10x64 (label=Win10x64, arch=x64, platform=windows)\r\nfeb 15 15:30:31 cape-sandbox python3[16900]: 2024-02-15 15:30:31,527 [lib.cuckoo.core.scheduler] ERROR: Timeout hit while for machine Win10x64 to change status\r\nfeb 15 15:30:31 cape-sandbox python3[16900]: Traceback (most recent call last):\r\nfeb 15 15:30:31 cape-sandbox python3[16900]:   File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 491, in launch_analysis\r\nfeb 15 15:30:31 cape-sandbox python3[16900]:     machinery.start(self.machine.label)\r\nfeb 15 15:30:31 cape-sandbox python3[16900]:   File \"/opt/CAPEv2/modules/machinery/kvm.py\", line 35, in start\r\nfeb 15 15:30:31 cape-sandbox python3[16900]:     super(KVM, self).start(label)\r\nfeb 15 15:30:31 cape-sandbox python3[16900]:   File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 469, in start\r\nfeb 15 15:30:31 cape-sandbox python3[16900]:     self._wait_status(label, self.RUNNING)\r\nfeb 15 15:30:31 cape-sandbox python3[16900]:   File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 364, in _wait_status\r\nfeb 15 15:30:31 cape-sandbox python3[16900]:     raise CuckooMachineError(f\"Timeout hit while for machine {label} to change status\")\r\nfeb 15 15:30:31 cape-sandbox python3[16900]: lib.cuckoo.common.exceptions.CuckooMachineError: Timeout hit while for machine Win10x64 to change status\r\nfeb 15 15:30:31 cape-sandbox python3[16900]: 2024-02-15 15:30:31,561 [lib.cuckoo.core.scheduler] WARNING: Task #18: Unable to stop machine Win10x64: Trying to stop an already stopped machine Win10x64\r\nfeb 15 15:30:31 cape-sandbox python3[16900]: 2024-02-15 15:30:31,593 [lib.cuckoo.core.resultserver] WARNING: ResultServer did not have a task with ID 18 and IP 192.168.122.126\r\nfeb 15 15:30:31 cape-sandbox python3[16900]: 2024-02-15 15:30:31,624 [lib.cuckoo.core.scheduler] ERROR: \r\nfeb 15 15:30:31 cape-sandbox python3[16900]: Traceback (most recent call last):\r\nfeb 15 15:30:31 cape-sandbox python3[16900]:   File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 613, in run\r\nfeb 15 15:30:31 cape-sandbox python3[16900]:     success = self.launch_analysis()\r\nfeb 15 15:30:31 cape-sandbox python3[16900]:   File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 588, in launch_analysis\r\nfeb 15 15:30:31 cape-sandbox python3[16900]:     raise CuckooDeadMachine()\r\nfeb 15 15:30:31 cape-sandbox python3[16900]: lib.cuckoo.core.scheduler.CuckooDeadMachine\r\nfeb 15 15:30:31 cape-sandbox python3[16900]: 2024-02-15 15:30:31,642 [lib.cuckoo.core.scheduler] INFO: Task #18: File already exists at '/opt/CAPEv2/storage/binaries/25c7d6530d1b7b4e8fe1b262234ee8691434ee9ca24e12b3f3419681f0de7208'\r\nfeb 15 15:30:31 cape-sandbox python3[16900]: 2024-02-15 15:30:31,643 [lib.cuckoo.core.scheduler] INFO: Task #18: Starting analysis of FILE '/tmp/cuckoo-sflock/tmpowxzjs31/25c7d6530d1b7b4e8fe1.pdf'\r\n\r\n\r\nIf instead I launch the command: **journalctl -u cape-processor.service --follow** , I get the following messages:\r\n\r\nfeb 15 15:18:35 cape-sandbox systemd[1]: Started CAPE report processor.\r\nfeb 15 15:18:38 cape-sandbox python3[16898]: XLMMacroDeobfuscator: pywin32 is not installed (only is required if you want to use MS Excel)\r\nfeb 15 15:18:38 cape-sandbox python3[16898]: FLARE_CAPA InvalidRuleSet\r\nfeb 15 15:18:38 cape-sandbox python3[16898]: Unable to import plugin \"modules.processing.static\": multiple exception types must be parenthesized (static.py, line 936)\r\nfeb 15 15:18:39 cape-sandbox python3[16898]: INFO:root:Processing analysis data\r\n\r\n_via kvm web I see that the vms are not switched on and the file is not exploded.\r\n\r\nwhat could be the reason? Thank you in advance for your help.\r\n\r\nRegards\r\nEngel_\nComment: first of all, why do you remove issues template? there is important info that we need to ask over and over, restore issue template, fill the date and then i will check your issue, otherwise i will just ignore\nComment: but it looks like your vm is in wrong state or bad permissions\r\n\r\n```\r\n[lib.cuckoo.core.scheduler] ERROR: Timeout hit while for machine Win10x64 to change status\r\n```\r\n\r\ni have feeling that you didn't read the whole docs https://capev2.readthedocs.io/en/latest/installation/guest/index.html\nComment: Dear @doomedraven thank you for your support and patience. What do you mean by \"why do you remove issues template?\"?\r\n\r\nI stopped all services, then enabled the log view, then re-enabled all services and via web launched the file analysis. If more info is needed, can you tell me what files, commands, or anything else to provide?\r\n\r\nI apologize if the information provided was not complete.\r\n\r\nAre the VMs when I launch the analysis turned off, should they be turned on?\r\n\r\nI created the VMs using this link: https://www.doomedraven.com/2020/04/how-to-create-virtual-machine-with-virt.html, but I believe I did not perform the steps instead described on this other page: https://www.doomedraven.com/2016/05/kvm.html#modifying-kvm-qemu-kvm-settings-for-malware-analysis.\r\n\r\nThis could be the problem.\r\n\r\nRegards\r\nEngel\nComment: \r\nissues ->\r\n```\r\nHaving problem/bug/issue\r\nCreate a report to help us improve\r\n```\r\n\r\nall this info is critical for us and saves us a lot of time asking each user the same question over and over\r\n\r\n```\r\n## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ ] I am running the latest version\r\n- [ ] I did read the README!\r\n- [ ] I checked the documentation and found no answer\r\n- [ ] I checked to make sure that this issue has not already been filed\r\n- [ ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ ] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. step 1\r\n2. step 2\r\n3. you get it...\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 16.04, Windows 10, macOS 10.12.3\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n```\r\n\r\n\r\nabout vm. my guide is how to create VM not related to CAPE. as CAPE docs says VM should be in `running state` when you take snapshot. please go and read WHOLE cape docs. you doing very basic mistakes that are explained in docs\nComment: Dear @doomedraven, Thank you for the clarification and information. I updated the first post by including the problem template, I apologize for not filling it out.\r\n\r\nI will try to redo the VMs and related snapshots.\r\n\r\nIf it's not too much trouble, could you help me better understand how CAPE handles virtual machines before and after running a scan? Once the malicious object is launched in the VM and the analysis is provided, is the VM closed and deleted and then restored from the snapshot?\r\n\r\nRegards\r\nEngel\nComment: not exactly. You prepare a new clean VM, take snapshot in running state, cape restores that snapshot, submit malware, run it and turn off vm. on next sample run it restore clean running snapshot and so on in loop\nComment: please reread the documentation, if you have any question feel free to ask here\nComment: Dear @doomedraven,\r\n\r\nI rebuilt the cape server according to the documentation. Now the VM starts, I can also see on the Gui side that it is switched on, but no action is performed. Afterwards the VM is switched off. On the gui side the system stays running and then after a while it goes to failure. Below is the log of the last analysis test performed:\r\n\r\nfeb 22 09:42:57 capev2sandbox systemd[1]: cape.service: State 'stop-sigterm' timed out. Killing.\r\nfeb 22 09:42:57 capev2sandbox systemd[1]: cape.service: Killing process 11186 (python) with signal SIGKILL.\r\nfeb 22 09:42:57 capev2sandbox systemd[1]: cape.service: Killing process 11197 (python) with signal SIGKILL.\r\nfeb 22 09:42:57 capev2sandbox systemd[1]: cape.service: Main process exited, code=killed, status=9/KILL\r\nfeb 22 09:42:57 capev2sandbox systemd[1]: cape.service: Failed with result 'timeout'.\r\nfeb 22 09:42:57 capev2sandbox systemd[1]: Stopped CAPE.\r\nfeb 22 09:42:57 capev2sandbox systemd[1]: cape.service: Consumed 5min 12.499s CPU time.\r\n\r\n\r\nfeb 22 09:59:48 capev2sandbox systemd[1]: Started CAPE.\r\nfeb 22 09:59:50 capev2sandbox python3[11542]:\r\nfeb 22 09:59:50 capev2sandbox python3[11542]:   .-----------------.\r\nfeb 22 09:59:50 capev2sandbox python3[11542]:   | Cuckoo Sandbox? |\r\nfeb 22 09:59:50 capev2sandbox python3[11542]:   |     OH NOES!    |\\  '-.__.-'\r\nfeb 22 09:59:50 capev2sandbox python3[11542]:   '-----------------' \\  /oo |--.--,--,--.\r\nfeb 22 09:59:50 capev2sandbox python3[11542]:                          \\_.-'._i__i__i_.'\r\nfeb 22 09:59:50 capev2sandbox python3[11542]:                                \"\"\"\"\"\"\"\"\"\r\nfeb 22 09:59:50 capev2sandbox python3[11542]:  Cuckoo Sandbox 2.4-CAPE\r\nfeb 22 09:59:50 capev2sandbox python3[11542]:  www.cuckoosandbox.org\r\nfeb 22 09:59:50 capev2sandbox python3[11542]:  Copyright (c) 2010-2015\r\nfeb 22 09:59:50 capev2sandbox python3[11542]:  CAPE: Config and Payload Extraction\r\nfeb 22 09:59:50 capev2sandbox python3[11542]:  github.com/kevoreilly/CAPEv2\r\nfeb 22 09:59:51 capev2sandbox python3[11542]: Unable to import plugin \"modules.processing.sysmon\": No module named 'xmltodict'\r\nfeb 22 09:59:51 capev2sandbox python3[11542]: No module named 'pydantic.functional_validators'\r\nfeb 22 09:59:51 capev2sandbox python3[11542]: FLARE-CAPA missed: poetry install\r\nfeb 22 09:59:51 capev2sandbox python3[11542]: 2024-02-22 09:59:51,851 [root] INFO: Updated running task ID 1 status to failed_analysis\r\nfeb 22 09:59:51 capev2sandbox python3[11569]: /usr/bin/tcpdump\r\nfeb 22 09:59:51 capev2sandbox python3[11542]: 2024-02-22 09:59:51,961 [lib.cuckoo.core.scheduler] INFO: Using \"kvm\" machine manager with max_analysis_count=0, max_machines_count=0, and max_vmstartup_count=0\r\nfeb 22 09:59:51 capev2sandbox python3[11542]: 2024-02-22 09:59:51,965 [lib.cuckoo.core.scheduler] INFO: Loaded 2 machine/s\r\nfeb 22 09:59:51 capev2sandbox python3[11542]: 2024-02-22 09:59:51,969 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks\r\nfeb 22 10:00:53 capev2sandbox python3[11542]: 2024-02-22 10:00:53,816 [lib.cuckoo.core.scheduler] INFO: Task #3: File already exists at '/opt/CAPEv2/storage/binaries/d60df902cea410c6cecc6c0852b1ee001cd89e298b2376288dde406e0ea2c59a'\r\nfeb 22 10:00:53 capev2sandbox python3[11542]: 2024-02-22 10:00:53,818 [lib.cuckoo.core.scheduler] INFO: Task #3: Starting analysis of FILE '/tmp/cuckoo-sflock/tmp6hunvt3q/d60df902cea410c6cecc.msi'\r\nfeb 22 10:00:54 capev2sandbox python3[11542]: 2024-02-22 10:00:54,057 [lib.cuckoo.core.scheduler] INFO: Task #3: acquired machine win10x64 (label=win10x64, arch=x64, platform=windows)\r\nfeb 22 10:01:12 capev2sandbox python3[11542]: 2024-02-22 10:01:12,031 [lib.cuckoo.common.integrations.parse_pe] ERROR: PE type not recognised: 'DOS Header magic not found.'\r\nfeb 22 10:01:12 capev2sandbox python3[11542]: 2024-02-22 10:01:12,089 [lib.cuckoo.core.scheduler] INFO: Enabled route 'none'.\r\nfeb 22 10:01:12 capev2sandbox python3[11542]: 2024-02-22 10:01:12,152 [lib.cuckoo.core.guest] INFO: Task #3: Starting analysis on guest (id=win10x64, ip=192.168.55.2)\r\nfeb 22 10:17:12 capev2sandbox python3[11542]: 2024-02-22 10:17:12,884 [lib.cuckoo.core.scheduler] ERROR: Machine win10x64: the guest initialization hit the critical timeout, analysis aborted\r\nfeb 22 10:17:12 capev2sandbox python3[11542]: Traceback (most recent call last):\r\nfeb 22 10:17:12 capev2sandbox python3[11542]:   File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 526, in launch_analysis\r\nfeb 22 10:17:12 capev2sandbox python3[11542]:     guest.start_analysis(options)\r\nfeb 22 10:17:12 capev2sandbox python3[11542]:   File \"/opt/CAPEv2/lib/cuckoo/core/guest.py\", line 245, in start_analysis\r\nfeb 22 10:17:12 capev2sandbox python3[11542]:     self.wait_available()\r\nfeb 22 10:17:12 capev2sandbox python3[11542]:   File \"/opt/CAPEv2/lib/cuckoo/core/guest.py\", line 154, in wait_available\r\nfeb 22 10:17:12 capev2sandbox python3[11542]:     raise CuckooGuestCriticalTimeout(\r\nfeb 22 10:17:12 capev2sandbox python3[11542]: lib.cuckoo.common.exceptions.CuckooGuestCriticalTimeout: Machine win10x64: the guest initialization hit the critical timeout, analysis aborted\r\nfeb 22 10:22:17 capev2sandbox python3[11542]: 2024-02-22 10:22:17,197 [lib.cuckoo.core.scheduler] ERROR:\r\nfeb 22 10:22:17 capev2sandbox python3[11542]: Traceback (most recent call last):\r\nfeb 22 10:22:17 capev2sandbox python3[11542]:   File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 618, in run\r\nfeb 22 10:22:17 capev2sandbox python3[11542]:     success = self.launch_analysis()\r\nfeb 22 10:22:17 capev2sandbox python3[11542]:   File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 593, in launch_analysis\r\nfeb 22 10:22:17 capev2sandbox python3[11542]:     raise CuckooDeadMachine()\r\nfeb 22 10:22:17 capev2sandbox python3[11542]: lib.cuckoo.core.scheduler.CuckooDeadMachine\r\nfeb 22 10:22:18 capev2sandbox python3[11542]: 2024-02-22 10:22:18,516 [lib.cuckoo.core.scheduler] INFO: Task #3: File already exists at '/opt/CAPEv2/storage/binaries/d60df902cea410c6cecc6c0852b1ee001cd89e298b2376288dde406e0ea2c59a'\r\nfeb 22 10:22:18 capev2sandbox python3[11542]: 2024-02-22 10:22:18,662 [lib.cuckoo.core.scheduler] INFO: Task #3: Starting analysis of FILE '/tmp/cuckoo-sflock/tmp6hunvt3q/d60df902cea410c6cecc.msi'\r\n\r\nLet me know what other info, logs or captures you need so I can help. Thank you very much.\r\n\r\nNote: as execution time I set 900.\r\n\r\nRegards\r\nEngel\nComment: is your VM is in running state when you take snapshot?\nComment: yes I confirm, they were up and running when I ran the snapshot.\nComment: did you test this? https://capev2.readthedocs.io/en/latest/installation/guest/agent.html#installing-the-agent\nComment: The test fails:\r\ncurl: (7) Failed to connect to 192.168.55.2 port 8000 after 0 ms: Connection refused\r\n\r\nGoing up to the VM, and running the netstat command, I see no open ports on 8000. The agent is saved in the folder \"C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\StartUp\" and I have also configured the \"Task Scheduler\" but it doesn't seem to start. Python 3.12 is installed and the file is saved with the extension pyw\r\n\r\nWindows FIrewall: disable\r\nWindows Defender: disable\nComment: well congrats you found the problem. now is your job to fix that, see docs how we suggest to run agent, and always verify that before taking snapshot\nComment: Yeah, too bad it doesn't run. When I launch it, cmd opens and closes again immediately, and it does this with both .pyw and .py extensions. I'll try to find out why.\r\n\r\nCan you confirm that the file agent is: https://github.com/kevoreilly/CAPEv2/blob/master/agent/agent.py ?\r\n\r\nThanks :)\nComment: yes the file is correct, comment out those line to see the output https://github.com/kevoreilly/CAPEv2/blob/master/agent/agent.py#L58-L59, but later for production uncomment them\nComment: I uninstalled python 3.12 and installed the 32bit python 3.10.6 version, the 64bit version gives problems. Now running the command: curl VM_IP:8000 I get:\r\n\r\n{\"message\": \"CAPE Agent!\", \"version\": \"0.12\", \"features\": [\"execpy\", \"execute\", \"pinning\", \"logs\", \"largefile\", \"unicodepath\"], \"is_user_admin\": false}admcape@cape\r\n\r\nWe should be there, right?\nComment: I'd say it's working now. I am doing some tests but I should have solved it. Thank you very much for your support and patience\nComment: dude you def need to start reading better everything https://github.com/kevoreilly/CAPEv2\r\n",
+  "Title: Staging\nBody: None",
+  "Title: expose VNC port via options in task info\nBody: None",
+  "Title: A bunch of fixes for a bunch of tests\nBody: In collaboration with @tbeadle.\r\n\r\n- Fix file order precedence in `Config` load. Previously files in the `CUCKOO_ROOT` conf.d directories would be loaded after files in the `CUSTOM_CONF_DIR` directory. Let me know if this was intentional and I'll update the PR.\r\n    - As part of this, introduce a env var to allow tests to skip loading of custom configs. This should, hopefully, make testing more consistent across the board.\r\n- Flush the `Error` table on database test setup to prevent consecutive runs resulting in test failures.\r\n- Make tests use the default config files unless otherwise required.\r\n-  Add additional skip criteria for file_extra_info tests. Some of the samples aren't in the `tests/data` submodule, so they failed if it was present locally.\r\n- Move the `Config()` load out of `file_extra_info_modules/__init__` into the `file_extra_info_modules/__init__::extractor_ctx` function so config isn't loaded prematurely. This gives us the opportunity to manipulate the config that is used in the tests.",
+  "Title: Use a default wait_time_to_image value of 4 for best performance\nBody: None\nComment: this was merged https://github.com/kevoreilly/CAPEv2/pull/1984 thank you guys as always",
+  "Title: Add malstatus to results\nBody: None",
+  "Title: [SOLVED] Error run command \"poetry run python3 manage.py migrate\"\nBody: Dear Community,\r\n\r\nI wanted to activate the web interface auth on Capev2. When I try to run the command 'poetry run python3 manage.py migrate' I get all the following errors. Can you help me understand why? Thank you very much.\r\n\r\n/opt/CAPEv2/web$ poetry run python3 manage.py migrate\r\nOperations to perform:\r\n  Apply all migrations: account, admin, auth, authtoken, contenttypes, openid, sessions, sites, socialaccount, users\r\nRunning migrations:\r\nTraceback (most recent call last):\r\n  File \"/home/user/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/backends/utils.py\", line 87, in _execute\r\n    return self.cursor.execute(sql)\r\n  File \"/home/user/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/backends/sqlite3/base.py\", line 324, in execute\r\n    return super().execute(query)\r\nsqlite3.OperationalError: attempt to write a readonly database\r\n\r\nThe above exception was the direct cause of the following exception:\r\n\r\nTraceback (most recent call last):\r\n  File \"/home/user/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/migrations/recorder.py\", line 70, in ensure_schema\r\n    editor.create_model(self.Migration)\r\n  File \"/home/user/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/backends/base/schema.py\", line 451, in create_model\r\n    self.execute(sql, params or None)\r\n  File \"/home/user/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/backends/base/schema.py\", line 201, in execute\r\n    cursor.execute(sql, params)\r\n  File \"/home/user/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/backends/utils.py\", line 102, in execute\r\n    return super().execute(sql, params)\r\n  File \"/home/user/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/backends/utils.py\", line 67, in execute\r\n    return self._execute_with_wrappers(\r\n  File \"/home/user/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/backends/utils.py\", line 80, in _execute_with_wrappers\r\n    return executor(sql, params, many, context)\r\n  File \"/home/user/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/backends/utils.py\", line 84, in _execute\r\n    with self.db.wrap_database_errors:\r\n  File \"/home/user/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/utils.py\", line 91, in __exit__\r\n    raise dj_exc_value.with_traceback(traceback) from exc_value\r\n  File \"/home/user/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/backends/utils.py\", line 87, in _execute\r\n    return self.cursor.execute(sql)\r\n  File \"/home/user/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/backends/sqlite3/base.py\", line 324, in execute\r\n    return super().execute(query)\r\ndjango.db.utils.OperationalError: attempt to write a readonly database\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/web/manage.py\", line 14, in <module>\r\n    execute_from_command_line(sys.argv)\r\n  File \"/home/user/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/management/__init__.py\", line 442, in execute_from_command_line\r\n    utility.execute()\r\n  File \"/home/user/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/management/__init__.py\", line 436, in execute\r\n    self.fetch_command(subcommand).run_from_argv(self.argv)\r\n  File \"/home/user/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/management/base.py\", line 412, in run_from_argv\r\n    self.execute(*args, **cmd_options)\r\n  File \"/home/user/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/management/base.py\", line 458, in execute\r\n    output = self.handle(*args, **options)\r\n  File \"/home/user/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/management/base.py\", line 106, in wrapper\r\n    res = handle_func(*args, **kwargs)\r\n  File \"/home/user/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/management/commands/migrate.py\", line 356, in handle\r\n    post_migrate_state = executor.migrate(\r\n  File \"/home/user/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/migrations/executor.py\", line 107, in migrate\r\n    self.recorder.ensure_schema()\r\n  File \"/home/user/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/migrations/recorder.py\", line 72, in ensure_schema\r\n    raise MigrationSchemaMissing(\r\ndjango.db.migrations.exceptions.MigrationSchemaMissing: Unable to create the django_migrations table (attempt to write a readonly database)\r\n\nComment: `sqlite3.OperationalError: attempt to write a readonly database` that is permission problem, how did you run everything? you missed that byte of details\nComment: Dear @doomedraven,\r\n\r\nthank you for your reply, I used a user who is inside the sudo group but is not root.\r\n\r\nShould I run the command with sudo first?\r\n\r\nsudo poetry run python3 manage.py migrate\r\n\r\nRegards\r\nEngel\nComment: did you read docs? never as root, it should be executed only as cape user, if you run it with another users you will get into a lot of permission problems as you have now. https://capev2.readthedocs.io/en/latest/\nComment: Thank you, I have followed this guide: [https://capev2.readthedocs.io/en/latest/usage/web.html](https://capev2.readthedocs.io/en/latest/usage/web.html) and the command they say to run is not correct, using instead the command: sudo -u cape poetry run python3 manage.py migrate I get no errors. Thanks for the tip.\nComment: what command is wrong?\nComment: The web help instructs you to run the command like this:\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/82473625/90220bd7-59f1-4a1d-9a56-57f84fc2c7f1)\r\n\r\nbut it gave me an error. Instead, running the command by first entering 'sudo -u cape' then like this: 'sudo -u cape poetry run python3 manage.py migrate'\r\n\r\nI did not receive the error and was able to complete the procedure.\r\n\r\nEngel\nComment: that because you should run everything as `cape` user in `cape`. that your `sudo -u cape` is just change to cape user. so command is correct. read docs carefully please https://capev2.readthedocs.io/en/latest/installation/host/installation.html#attention-cape-user",
+  "Title: move capa summary results to improve aestethic\nBody: None",
+  "Title: Add more error handling\nBody: None",
+  "Title: Scoring must return a number value\nBody: Returning None breaks Capa as it requires malscore to be number",
+  "Title: Added njrat parser\nBody: A parser for NjRat family to extract the configs whether it's plaintext or base64 encoded with replaces or reversed.\nComment: Thank you \u2764\ufe0f Can you share samples to test with?\nComment: of course, here are the 23 hashes of samples having this type of configs:\r\n\r\n09bf19c00f3d8c63b8896edadd4622724a01f7d74de583733ee57a7d11eacd86\r\n2a5eb2f4bb25b89a9c3d325d893b87ed58fe87a6ada67c24f7cdef54b2138567\r\n2e18a6a4b191741e57d8fb63bddb498f769344130e0f658d8ef5d74bd95c5c9b\r\n4c8198288b00c70aeb7c9fcaae179873c618c1d5a804d36a54ac6e5c7fbacee2\r\n4e1a8dff073c5648dbeaf55a6b3320461bcb0252cee9f8f5624f46e6d05b6584\r\n55acd192c7cca3e46b8d1c0a24f98259ae093762722de3493a7da248e83ec07c\r\n59f0979f3123e02ee0a13e3afa6b45d27b2fdbae75edc339d57d473d340851d8\r\n5b147e624ad96d036c27aa9f526ed2e7daa9ca7bfe6639404dc8e71e1177a145\r\n614b15eaa2b19e4f9ddb26639dbf5574126f552ae48afd7899a77bd6c7b8980d\r\n646ed3f6856f58b90b4641ab24cdd1b6f9860b44243dfeaec952df7f0954b18a\r\n710507e1f3e61b7010a445728b3c414efe068e22cac28c1dd3b8db56968262d7\r\n77d1fcf6f8bea79cac80e284a9a5dbcc36b8b57eb86c9b74c538107d4baa2c1a\r\n8b1b215f6a6f9881bc2b76ab409b0dff080dca31c538147a9d273ba7d05919e9\r\na4e7f6de5b6c1514b5a4e3361191624127320bcff249ad16207ce79644ffb9c1\r\na6c954599bf0b6a3f4e5b1d8bed604a09d1115a6b35b7e9a6de66f11a9977b81\r\naeece6134d1a1f0789c8c35d2541164ebc6f23511e2d6781497a82e1bec73abd\r\naf2d5ae5ed7a72a3fa6a36cda93e163b84d8ad70a78afb08bcd1afa63d54f61e\r\nbb7efdb9cb3673c1768a0681989e2662d3f9683b45aded8f5b780a3310bec1bb\r\nc2c788ce1d3e55537c75684ceb961c01d9d9d0eb6b69c915c58433943320ffe5\r\ne5967d1012f24bad8914ecfbc79af2211ef491a4a16e2ac390d7d26089c5307a\r\ne69befafb01863bce3c730481fa21ff8e57c72351eec8002154538fe01e3cc9e\r\ne8636547c991ba1557cf0532a143ad2316427e773bcbe474a60d8ba2bcf3cea3\r\nf45abfb1e4d789528a7ce1469255a249a6cdf010045868992689d28c2b791719\nComment: thanks",
+  "Title: Suricata warning message is output to process.log\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ Y ] I am running the latest version\r\n- [ Y ] I did read the README!\r\n- [ Y ] I checked the documentation and found no answer\r\n- [ Y ] I checked to make sure that this issue has not already been filed\r\n- [ Y ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ Y ] I have read and checked all configs (with all optional parts)\r\n\r\n# Expected Behavior\r\n\r\n\r\nWhen cape analysis is executed, the following message is output to process.log.\r\n\r\n- /opt/CAPEv2/log/process.log\r\n```\r\n[Task 58] [modules.processing.suricata] WARNING: Failed to connect to socket and send command /tmp/suricata-command.socket: [Errno 104] Connection reset by peer\r\n[Task 66] [modules.processing.suricata] WARNING: Failed to get pcap status breaking out of loop: [Errno 104] Connection reset by peer\r\n[Task 65] [modules.processing.suricata] WARNING: Failed to connect to socket and send command /tmp/suricata-command.socket: [Errno 111] Connection refused\r\n```\r\n\r\nI modified suricata.yaml according to Isuues (https://github.com/kevoreilly/CAPEv2/issues/1717) and the suricata forum.\r\nhttps://forum.suricata.io/t/suricata-service-crashes-with-pthread-create-is-11-error-when-processing-pcap-with-capev2/3870/4\r\n\r\n- suricata.yaml\r\n```\r\n# Run Suricata with a specific user-id and group-id:\r\nrun-as:\r\n   user: root  //cape->root\r\n   group: cape\r\n\r\nsecurity:\r\n  # if true, prevents process creation from Suricata by calling\r\n  # setrlimit(RLIMIT_NPROC, 0)\r\n  limit-noproc: false  //true->false\r\n```\r\n\r\nBy changing suricata.yaml, the above message is no longer displayed, but the following message is now displayed instead.\r\n\r\n- /opt/CAPEv2/log/process.log\r\n```\r\n[Task 158] [modules.processing.suricata] WARNING: Suricata: Failed to find usable Suricata log file\r\n```\r\nWhen I checked /var/log/suricata.log to find out the cause, it appeared that there was no write permission to /opt/CAPEv2/storage/analyses/xxx/logs, and suricata log output was failing. Could you please tell me which part of the source is creating the directory /opt/CAPEv2/storage/analyses/xxx/logs? Also, if you have any other solutions, please let me know.\r\n\nComment: hello, i did fresh CAPE install yesterday suricata 7.0.1, works just fine with both group and user as `cape`.  you can't touch any folder inside of the cape folder as if you change permission that will breaks a lot of other things, so it just requires a proper fix for suricata. i would better see why your suricata can't create socket file in temp folder as cape:cape instead of root:cape. Try maybe commenting out `run-as` as suggested there and just leave user \nComment: also this is changed by us https://github.com/kevoreilly/CAPEv2/blob/master/installer/cape2.sh#L699 so i guess you have some problems with your instalation, i just upgraded suricata to 7.0.3 with the same config as in cape2.sh and 0 problems\r\n\r\ni have tested change cape:cape to root:cape and that gives me that `WARNING: Suricata: Failed to find usable Suricata log file`. Restoring back to `cape:cape` 0 issues\r\n\r\n* check permission of your socket, for me it creates it as cape:cape\r\n```\r\nls -lah /tmp/suricata-command.socket\r\n0 srw-rw---- 1 cape cape 0 feb  9 11:27 /tmp/suricata-command.socket\r\n```\nComment: any update here?",
+  "Title: Changing analysis packages\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I did read the README!\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nMaking changes within the packages.py file changes default packages.\r\n\r\n# Current Behavior\r\n\r\nPackages.py changes are not honored.\r\n\r\nFor example, if I were to go into /opt/CAPEv2/analyzer/windows/lib/core/packages.py and edit the following line\r\nline 124 - 125\r\n\r\n`elif \"PDF\" in file_type or file_name.endswith(\".pdf\"):\r\n     return \"edge\"`\r\n\r\nThis change will not set edge as the default pdf viewer for pdfs, it will still open and use acrobat. Of course you can manually change the analysis package to edge, and that works. However for automatic detection it would be nice if I could make this change so edge would open first over acrobat by default.\nComment: packages.py is \"dead\". long live sflock. for post sflock changes after identify packages, you can add your line here https://github.com/kevoreilly/CAPEv2/blob/master/lib/cuckoo/core/database.py#L1755-L1765. We considering how to deprecate packages.py but no easy way yet\nComment: Thanks doomed",
+  "Title: Staging\nBody: None",
+  "Title: Bump django from 4.2.7 to 4.2.10\nBody: Bumps [django](https://github.com/django/django) from 4.2.7 to 4.2.10.\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/django/django/commit/a684d73fc9ad94bbc535385d8b1d7c05ea06702f\"><code>a684d73</code></a> [4.2.x] Bumped version for 4.2.10 release.</li>\n<li><a href=\"https://github.com/django/django/commit/572ea07e84b38ea8de0551f4b4eda685d91d09d2\"><code>572ea07</code></a> [4.2.x] Fixed CVE-2024-24680 -- Mitigated potential DoS in intcomma template ...</li>\n<li><a href=\"https://github.com/django/django/commit/9fe7411235b7fb133eed5093fee714c4c7db4c98\"><code>9fe7411</code></a> [4.2.x] Pinned black == 23.12.1 for blacken-docs checks.</li>\n<li><a href=\"https://github.com/django/django/commit/71dd587da9b45f5b4cd4aa93f99a9b14d444801d\"><code>71dd587</code></a> [4.2.x] Pinned black == 23.12.1 in GitHub actions, pre-commit and test requir...</li>\n<li><a href=\"https://github.com/django/django/commit/74582b8d119a8c7d688538442b4149112b626057\"><code>74582b8</code></a> [4.2.x] Added stub release notes for 4.2.10 and 3.2.24.</li>\n<li><a href=\"https://github.com/django/django/commit/4198a5cb2d3516130c26cff7e4a58754ebf0a47e\"><code>4198a5c</code></a> [4.2.x] Post-release version bump.</li>\n<li><a href=\"https://github.com/django/django/commit/f339c4c8e4870f23d3ba8bf8ee68c57628739592\"><code>f339c4c</code></a> [4.2.x] Bumped version for 4.2.9 release.</li>\n<li><a href=\"https://github.com/django/django/commit/0a4c5e56b412a70d563b4bacfe068eb5af6c6b9c\"><code>0a4c5e5</code></a> [4.2.x] Added release date for 4.2.9.</li>\n<li><a href=\"https://github.com/django/django/commit/ca43990813b4c75f62b65adc2670d6baf50b57b7\"><code>ca43990</code></a> [4.2.x] Fixed <a href=\"https://redirect.github.com/django/django/issues/35012\">#35012</a> -- Restored wrapping admin fieldsets with multiple field...</li>\n<li><a href=\"https://github.com/django/django/commit/d9ba0ea6cb3e8d0ec11ed858314d369548da5353\"><code>d9ba0ea</code></a> [4.2.x] Added stub release notes for 4.2.9.</li>\n<li>Additional commits viewable in <a href=\"https://github.com/django/django/compare/4.2.7...4.2.10\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=django&package-manager=pip&previous-version=4.2.7&new-version=4.2.10)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Add missing button\nBody: None",
+  "Title: added multiple search clauses in behavioral search view\nBody: None\nComment: thank you i will try to review this this week\nComment: sorry forgot to merge this after test, thank you",
+  "Title: Fix: RedLine Parser\nBody: The parser failed due to key error of \"Authorization\", so I have removed it.\r\n\r\nAlso I have updated it to include RedLine samples with plaintext configs\nComment: Thank you! Will review tomorrow \ud83d\udc4d \nComment: can you share hashes to add unittests?\nComment: > can you share hashes to add unittests?\r\n\r\nSure, I've tested it on these hashes:\r\n\r\nb06a04969f5856d665a1e837f7aed8b1adfca9e44d06e7d5100b8c3adac4df79\r\nf94512d16e007efac1d3b7f4ee9409c081a7a5528d4a784b933b8fe137f60442\r\n000734d9a5bd493185af550286c43b8a3d75963186fd42ae87dea5bb980d7ece \r\n000ad9cb09358b645f4d749e5f0a2e156e6a788e23878e92ededeb0a7a23e8b8\r\n000608d875638ba7d6c467ece976c1496e6a6ec8ce3e7f79e0fd195ae3045078 \r\nfed976b2d134008fd6daec8edc00099935df756beb721034f71db33e4d675a6e \nComment: instead of remove is better to properly check, so i have reintroduced the field with proper check\nComment: Thanks both \u2764\ufe0f ",
+  "Title: Flare capa 7\nBody: None\nComment: get_signatures is loaded from capa.loader now, not capa.main - otherwise works, if it helps\r\n\nComment: thank you, i will update and test it, i still need to think about where to put the whole analysis summary generated by capa\nComment: already in master",
+  "Title: Shorten errors to what is allowed in the db.\nBody: Make sure that we don't try to insert an error message longer than what's allowed in the database. Provide the beginning and the end of the error.",
+  "Title: Allow the user to enable logging of SQL statements from cuckoo.conf.\nBody: None",
+  "Title: Skip tests that require data files if the data files are not present.\nBody: This makes it easier for teams that have forked the repo and don't have those test samples.",
+  "Title: Cape Web - AttributeError guest_ip error\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I did read the README!\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting.\r\n\r\nAnalysis with remote session starts uninterrupted.\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/95260807/a3609419-9201-417a-b815-85422bf38b8a)\r\n\r\n**NOTE**: This is a **rare** occurrence. It's been brought to my attention that this event can happen after clicking the view remote session button. I have **NOT** been able to recreate this issue. Has an issue like this arisen for anyone else in their environment? \r\n\r\n**NORMAL** behavior for this system is that it runs and works as expected. This is a **RARE** event.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| OS version       | Ubuntu 22.04, Windows 10\r\n\r\nI apologize for submitting this as an issue post, I would love it if there was another post option for community discussion? I am just curious if others have seen this before - I will investigate myself regardless. Also because this is an extremely rare occurrence, I am not worried about it, but if this is an issue others have noticed I would put in the time to solve it.\r\n\r\nThank you :P\nComment: hello, community discussion was closed due to abuse, as people don't want to fill template issues. from code perspective it looks like you have some problem with VM assignation for task \r\n```\r\nmachine = db.view_machine_by_label(task.machine)\r\nguest_ip = machine.ip\r\n```\nComment: i have pushed check for this https://github.com/kevoreilly/CAPEv2/commit/585d2b6fafc232943f68179ce7a0f803aecc4ffe. but no i never saw this problem before\nComment: thank you @doomedraven I will update in here if I find anything out myself. I have only seen it maybe twice in the 8 months we have been using it.\nComment: i guess there is some rare race condition between machine assignation and clicking views session\nComment: is 2w now, nobody else responded, as i have added check, im gonna close that, thanks for headups",
+  "Title: Cleanup\nBody: None",
+  "Title: Fix: Get the file type from \"type\" in metadata section instead of \"package\"\nBody: Related to #1941 ",
+  "Title: Fix package exclusion\nBody: None",
+  "Title: Construct Scoring Criteria for PE Files\nBody: I've implemented five methodologies similar to the Triage Sandbox scoring system https://tria.ge/docs/scoring:\r\n\r\n- Score 10/10 (Malicious-Known):\r\nDetection by YARA.\r\n\r\n- Score [7-9]/10 (Malicious-Unknown):\r\nIf the sample triggers specific malicious signatures categories like \"malware,\" \"ransomware,\" \"infostealer,\" \"rat,\" \"trojan,\" \"rootkit,\" etc.\r\n`**_Note:_** Adjusting the \"weight\" by 4 when detected by these categories to ensure that the finalscore will be >=7. I have also excluded any signature with confidence lower than 70%`\r\n\r\n- Score [4-6]/10 (Suspicious-Unknown):\r\nIf the sample triggers specific suspicious signatures categories like \"network\", \"encryption\", \"anti-vm\", \"anti-analysis\", \"anti-av\", \"anti-debug,\" etc.\r\n\r\n- Score [0-3]/10 (Benign):\r\nI had a problem here, the file hits many suspicious categories even if it's legitimate, so I've devised a temporary solution to address false positives, categorizing benign files suspiciously. By default, CAPE extracts embedded digital signatures within the PE file and verifies them using the Windows utility `signtool.exe`. If a benign file triggers any suspicious category, the system checks whether the file is digitally signed and verified.\r\n\r\n- Score n/a (Undetected/Failed)\r\nIf the file doesn't trigger any signatures (no malicious or suspicious hit), the processtree will decide if this file is Undetected or Failed\r\n\r\n\r\nThis flowchart includes all previous cases\r\n\r\n![Malscore Criteria](https://github.com/kevoreilly/CAPEv2/assets/62453654/e78251c1-bf5f-43e0-8326-97dca586f338)\r\n\nComment: hey, nice works ,thank so signed malware with stolen cert automatically become benign \nComment: > hey, nice works ,thank so signed malware with stolen cert automatically become benign\r\n\r\nNo, if malware is signed, it will activate at least one malicious category. If there is no YARA hit, it will be categorized as \"malicious-unknown,\" and if it's a new family, we will need to perform deep analysis to either modify or create new signatures and YARA rules. I implemented this verification when the file is flagged as \"suspicious-unknown.\"\nComment: ok thanks, i will review it in next days\nComment: thank you, it looks ok, i have merged that to staging to test that for 1w before it goes to master\nComment: > thank you, it looks ok, i have merged that to staging to test that for 1w before it goes to master\r\n\r\nThanks a lot, I appreciate that ",
+  "Title: Use zip instead of 7zip in Msix package\nBody: Simplify and use zipfile, \r\n - no passwords are needed with msix\r\n - get_file_names from 7zip listing returns empty list, most likely due to regex used\r\n - fix small bug to allow execution",
+  "Title: Enhance msix package\nBody: Handle msix packages created by Advanced Installer tool\nComment: i will apply my changes on top of yours a bit later for the no args part",
+  "Title: Msix\nBody: None",
+  "Title: Add dots for decimal separator\nBody: A simple visibility / readability improvement. This is **not tested**, it should work, but would be great if someone can test!\r\n\r\n\r\n_Example_\r\nWill change\r\n<img width=\"148\" alt=\"image\" src=\"https://github.com/kevoreilly/CAPEv2/assets/3075118/95d997b3-3053-48b9-946a-207736669327\">\r\n\r\n\r\ninto:\r\n<img width=\"177\" alt=\"image\" src=\"https://github.com/kevoreilly/CAPEv2/assets/3075118/ce2ee874-eb83-4e0e-865e-f6e3ff967714\">\r\n\nComment: Hmm not sure if it's a country-specific thing but in the UK we do no use dots like that. That reads to me as four hundred and thirty nine point three zero four. Here we use commas for that. So the fact that it's not universal means I don't think we should adopt it.\r\n\r\nIf you are submitting PRs that are not tested, please use the staging branch not master!\nComment: it easier to read i agree, in Ukraine we neither use it. but still i do like it :P \nComment: How about a comma instead of dot? Or maybe a space would be better.\nComment: > How about a comma instead of dot? Or maybe a space would be better.\r\n\r\nI like the \"space\" suggestion. Commas are used in Canada for this sort of thing\nComment: Thanks for the feedback all! \ud83d\ude04 Spaces sound good, but not sure if Django can handle it just like that? Anyone has an idea?\nComment: django can do that with custom filter, will add that in near future \nComment: > Thanks for the feedback all! \ud83d\ude04 Spaces sound good, but not sure if Django can handle it just like that? Anyone has an idea?\r\n\r\nUse the l10n support in Django. I think we're at Django 4.2, so should just be a straightforward filter:\r\n\r\n    {{ report.estimate_day | localize }}\r\n\r\nCheck out https://docs.djangoproject.com/en/4.2/topics/i18n/formatting/#std-templatefilter-localize.\r\n\r\nThough by rough count, I see 157 templates. Localizing just one of them probably isn't ideal.\nComment: \r\n> > Thanks for the feedback all! \ud83d\ude04 Spaces sound good, but not sure if Django can handle it just like that? Anyone has an idea?\r\n> \r\n> Use the l10n support in Django. I think we're at Django 4.2, so should just be a straightforward filter:\r\n> \r\n> ```\r\n> {{ report.estimate_day | localize }}\r\n> ```\r\n> \r\n> Check out https://docs.djangoproject.com/en/4.2/topics/i18n/formatting/#std-templatefilter-localize.\r\n> \r\n> Though by rough count, I see 157 templates. Localizing just one of them probably isn't ideal.\r\n\r\nProbs better to await @doomedraven's implementation / idea, depends on the preference \ud83d\ude04 \nComment: > > How about a comma instead of dot? Or maybe a space would be better.\n> \n> I like the \"space\" suggestion. Commas are used in Canada for this sort of thing\n\n+1 for comma.\nComment: done, here is a good explanation how to handle that with coma or make it locale https://stackoverflow.com/questions/1823058/how-to-print-a-number-using-commas-as-thousands-separators/10742904#10742904\nComment: ![image](https://github.com/kevoreilly/CAPEv2/assets/1856495/f71dff59-2436-4740-8157-23f0dca6b9be)\r\n\nComment: so i have put space as is more neutral and easier to read\nComment: Awesome \ud83d\udc4d ",
+  "Title: update 2dcb5ca makes CAPEv2 not running tasks on proxmox install\nBody: I just updated from git (as I've done before). Enabled the amsi aux, then tried too run a task. I uploaded a file via the UI, all looks good, but tasks are stuck on pending... And in the cuckoo.logs says nothing (just \"waiting for task\"). As if they do not receive any task? \r\n\r\nI must be doing a dumb mistake of some kind?\r\n\r\nI'm running CAPEv2 on proxmox. I did a snapshot before and after upgrade. \r\n\r\nAll I did was the git commands in the README.md under the \"with merge\" title, and changed my config files (auxillary.conf and processing conf ) to include the amsi aux changes.\nComment: did you restart `cape.service` and `cape-web.service`?\nComment: Yes, and rebooted the machine.\nComment: what about run all those by hand without services?\nComment: Would you be willing to test different commits by checking them out until you find the breaking commit?\nComment: before commits, always need to run all services by hand to see the logs properly\nComment: Sure, I'll do that tomorrow.\nComment: Breaks on git merge 2dcb5ca\r\n\r\n(Works with git merge c991d06)\nComment: that not enough details, im on latest without any problem, instead of search commit try to start all by hand, not services, python directly in screen/tmux in debug mode `-d` to get a better clue whats going on\nComment: Yes, I'm sorry about that. I'll try to provide more details tomorrow. \r\n\r\nFrom what I could tell there were some changes in some of the machinery modules in 2dcb5ca , but no changes for the proxmox machinery code. I tried to find a quick solution myself, but the proxmox machinery code seems a bit different, and it was not trivial to make corresponding changes.\r\n\r\nI'll continue tomorrow to gather necessary log output and try to fix code.\r\n\r\n@doomedraven  Are you running proxmox as machinery?\r\n\r\nI'd love to here if you or someone else is successfully running latest with proxmox as machinery.. If that is the case, the problem is me and not somewhere in the code.\nComment: im kvm evangelist xD. i found the problem, but the weird thing is that looks like affects only non kvm machinaries which is hard for me to replicate but testing code that is in charge of that\nComment: do `git pull` and restart cape.service, issue is solved now\nComment: any update here?\nComment: I can confirm that it is working as expected now. Great work! Thank you.\nComment: Thanks for confirmation\r\n\r\nEl mar, 30 ene 2024, 10:46, n00btotal ***@***.***> escribi\u00f3:\r\n\r\n> I can confirm that it is working as expected now. Great work! Thank you.\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1936#issuecomment-1916452135>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH33SFI5DZDU73ZG3LBLYRC6QXAVCNFSM6AAAAABCJAHTYKVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTSMJWGQ2TEMJTGU>\r\n> .\r\n> You are receiving this because you modified the open/close state.Message\r\n> ID: ***@***.***>\r\n>\r\n",
+  "Title: Add auxiliary module to CAPE analyzer to log AMSI events.\nBody: This (if enabled) causes an auxiliary module for the windows analyzer\r\ncalled AMSICollector to run during a detonation. This assumes that the\r\nanalyzer is running as an administrator in order to have access to AMSI\r\nevents.  As each event is received, the content of the event is uploaded\r\nto the CAPE host in \"aux/amsi/<event_hash>\" and metadata about the\r\nevent, such as whether or not it was detected as malicious\r\n(\"scanResult\") is logged to a jsonl formatted file that gets uploaded as\r\n\"aux/amsi/amsi.jsonl\" when the collector is shutting down after the\r\ndetonation is complete.  The content (i.e. payload) of text-based events\r\nis decoded from utf-16 and reencoded as utf-8 when storing the files on\r\nthe CAPE host. For non-text-based events, the .Net binary received as\r\nthe content of the event is stored as-is.  An additional processing\r\nmodule has been added as well. It takes the amsi.jsonl file and stores\r\nrelevant pieces, transforming values as necessary, in MongoDB under a\r\nnew top-level key called \"amsi\".\r\n\r\nThis PR does not attempt to present this data to the user in any way\r\nother than in MongoDB. That will require further work.\r\n\r\nI understand that there is already AMSI capability in capemon, but this\r\npure python, auxiliary module approach enables the capturing of AMSI\r\nevents even when capemon is not loaded.\nComment: thanks",
+  "Title: Systemd service files need comments on their own line.\nBody: I saw this line in the logs:\r\n```\r\nFailed to parse TimeoutStopSec= parameter, ignoring: 4m # send SIGKILL if analysis is still ongoing 4m after SIGTERM\r\n```",
+  "Title: msix\nBody: None",
+  "Title: syntax fix\nBody: None",
+  "Title: Staging\nBody: None",
+  "Title: Mbcs\nBody: None",
+  "Title: Bump pillow from 10.0.1 to 10.2.0\nBody: Bumps [pillow](https://github.com/python-pillow/Pillow) from 10.0.1 to 10.2.0.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a href=\"https://github.com/python-pillow/Pillow/releases\">pillow's releases</a>.</em></p>\n<blockquote>\n<h2>10.2.0</h2>\n<p><a href=\"https://pillow.readthedocs.io/en/stable/releasenotes/10.2.0.html\">https://pillow.readthedocs.io/en/stable/releasenotes/10.2.0.html</a></p>\n<h2>Changes</h2>\n<ul>\n<li>Add <code>keep_rgb</code> option when saving JPEG to prevent conversion of RGB colorspace <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7553\">#7553</a> [<a href=\"https://github.com/bgilbert\"><code>@\u200bbgilbert</code></a>]</li>\n<li>Trim negative glyph offsets in ImageFont.getmask() <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7672\">#7672</a> [<a href=\"https://github.com/nulano\"><code>@\u200bnulano</code></a>]</li>\n<li>Removed unnecessary &quot;pragma: no cover&quot; <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7668\">#7668</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Trim glyph size in ImageFont.getmask() <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7669\">#7669</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Fix loading IPTC images and update test <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7667\">#7667</a> [<a href=\"https://github.com/nulano\"><code>@\u200bnulano</code></a>]</li>\n<li>Allow uncompressed TIFF images to be saved in chunks <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7650\">#7650</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Concatenate multiple JPEG EXIF markers <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7496\">#7496</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Changed IPTC tile tuple to match other plugins <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7661\">#7661</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Do not assign new fp attribute when exiting context manager <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7566\">#7566</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Support arbitrary masks for uncompressed RGB DDS images <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7589\">#7589</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Support setting ROWSPERSTRIP tag <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7654\">#7654</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Apply ImageFont.MAX_STRING_LENGTH to ImageFont.getmask() <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7662\">#7662</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Optimise <code>ImageColor</code> using <code>functools.lru_cache</code> <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7657\">#7657</a> [<a href=\"https://github.com/hugovk\"><code>@\u200bhugovk</code></a>]</li>\n<li>Restricted environment keys for ImageMath.eval() <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7655\">#7655</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Optimise <code>ImageMode.getmode</code> using <code>functools.lru_cache</code> <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7641\">#7641</a> [<a href=\"https://github.com/hugovk\"><code>@\u200bhugovk</code></a>]</li>\n<li>Added trusted PyPI publishing <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7616\">#7616</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Compile FriBiDi for Windows ARM64 <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7629\">#7629</a> [<a href=\"https://github.com/nulano\"><code>@\u200bnulano</code></a>]</li>\n<li>Fix incorrect color blending for overlapping glyphs <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7497\">#7497</a> [<a href=\"https://github.com/ZachNagengast\"><code>@\u200bZachNagengast</code></a>]</li>\n<li>Add .git-blame-ignore-revs file <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7528\">#7528</a> [<a href=\"https://github.com/akx\"><code>@\u200bakx</code></a>]</li>\n<li>Attempt memory mapping when tile args is a string <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7565\">#7565</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Fill identical pixels with transparency in subsequent frames when saving GIF <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7568\">#7568</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Removed unnecessary string length check <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7560\">#7560</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Determine mask mode in Python instead of C <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7548\">#7548</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Corrected duration when combining multiple GIF frames into single frame <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7521\">#7521</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Handle disposing GIF background from outside palette <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7515\">#7515</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Seek past the data when skipping a PSD layer <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7483\">#7483</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>ImageMath: Inline <code>isinstance</code> check <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7623\">#7623</a> [<a href=\"https://github.com/hugovk\"><code>@\u200bhugovk</code></a>]</li>\n<li>Update actions/upload-artifact action to v4 <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7619\">#7619</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Import plugins relative to the module <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7576\">#7576</a> [<a href=\"https://github.com/deliangyang\"><code>@\u200bdeliangyang</code></a>]</li>\n<li>Translate encoder error codes to strings; deprecate <code>ImageFile.raise_oserror()</code> <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7609\">#7609</a> [<a href=\"https://github.com/bgilbert\"><code>@\u200bbgilbert</code></a>]</li>\n<li>Updated readthedocs to latest version of Python <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7611\">#7611</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Support reading BC4U and DX10 BC1 images <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/6486\">#6486</a> [<a href=\"https://github.com/REDxEYE\"><code>@\u200bREDxEYE</code></a>]</li>\n<li>Optimize ImageStat.Stat.extrema <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7593\">#7593</a> [<a href=\"https://github.com/florath\"><code>@\u200bflorath</code></a>]</li>\n<li>Handle pathlib.Path in FreeTypeFont <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7578\">#7578</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Use list comprehensions to create transformed lists <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7597\">#7597</a> [<a href=\"https://github.com/hugovk\"><code>@\u200bhugovk</code></a>]</li>\n<li>Added support for reading DX10 BC4 DDS images <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7603\">#7603</a> [<a href=\"https://github.com/sambvfx\"><code>@\u200bsambvfx</code></a>]</li>\n<li>Optimized ImageStat.Stat.count <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7599\">#7599</a> [<a href=\"https://github.com/florath\"><code>@\u200bflorath</code></a>]</li>\n<li>Moved error from truetype() to FreeTypeFont <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7587\">#7587</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Correct PDF palette size when saving <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7555\">#7555</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Fixed closing file pointer with olefile 0.47 <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7594\">#7594</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>ruff: Minor optimizations of list comprehensions, x in set, etc. <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7524\">#7524</a> [<a href=\"https://github.com/cclauss\"><code>@\u200bcclauss</code></a>]</li>\n<li>Build Windows wheels using cibuildwheel <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7580\">#7580</a> [<a href=\"https://github.com/nulano\"><code>@\u200bnulano</code></a>]</li>\n<li>Raise ValueError when TrueType font size is zero or less <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7584\">#7584</a> [<a href=\"https://github.com/akx\"><code>@\u200bakx</code></a>]</li>\n<li>Install cibuildwheel from requirements file <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7581\">#7581</a> [<a href=\"https://github.com/hugovk\"><code>@\u200bhugovk</code></a>]</li>\n</ul>\n<!-- raw HTML omitted -->\n</blockquote>\n<p>... (truncated)</p>\n</details>\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/python-pillow/Pillow/blob/main/CHANGES.rst\">pillow's changelog</a>.</em></p>\n<blockquote>\n<h2>10.2.0 (2024-01-02)</h2>\n<ul>\n<li>\n<p>Add <code>keep_rgb</code> option when saving JPEG to prevent conversion of RGB colorspace <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7553\">#7553</a>\n[bgilbert, radarhere]</p>\n</li>\n<li>\n<p>Trim glyph size in ImageFont.getmask() <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7669\">#7669</a>, <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7672\">#7672</a>\n[radarhere, nulano]</p>\n</li>\n<li>\n<p>Deprecate IptcImagePlugin helpers <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7664\">#7664</a>\n[nulano, hugovk, radarhere]</p>\n</li>\n<li>\n<p>Allow uncompressed TIFF images to be saved in chunks <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7650\">#7650</a>\n[radarhere]</p>\n</li>\n<li>\n<p>Concatenate multiple JPEG EXIF markers <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7496\">#7496</a>\n[radarhere]</p>\n</li>\n<li>\n<p>Changed IPTC tile tuple to match other plugins <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7661\">#7661</a>\n[radarhere]</p>\n</li>\n<li>\n<p>Do not assign new fp attribute when exiting context manager <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7566\">#7566</a>\n[radarhere]</p>\n</li>\n<li>\n<p>Support arbitrary masks for uncompressed RGB DDS images <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7589\">#7589</a>\n[radarhere, akx]</p>\n</li>\n<li>\n<p>Support setting ROWSPERSTRIP tag <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7654\">#7654</a>\n[radarhere]</p>\n</li>\n<li>\n<p>Apply ImageFont.MAX_STRING_LENGTH to ImageFont.getmask() <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7662\">#7662</a>\n[radarhere]</p>\n</li>\n<li>\n<p>Optimise <code>ImageColor</code> using <code>functools.lru_cache</code> <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7657\">#7657</a>\n[hugovk]</p>\n</li>\n<li>\n<p>Restricted environment keys for ImageMath.eval() <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7655\">#7655</a>\n[wiredfool, radarhere]</p>\n</li>\n<li>\n<p>Optimise <code>ImageMode.getmode</code> using <code>functools.lru_cache</code> <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7641\">#7641</a>\n[hugovk, radarhere]</p>\n</li>\n<li>\n<p>Fix incorrect color blending for overlapping glyphs <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7497\">#7497</a>\n[ZachNagengast, nulano, radarhere]</p>\n</li>\n<li>\n<p>Attempt memory mapping when tile args is a string <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7565\">#7565</a>\n[radarhere]</p>\n</li>\n<li>\n<p>Fill identical pixels with transparency in subsequent frames when saving GIF <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7568\">#7568</a>\n[radarhere]</p>\n</li>\n</ul>\n<!-- raw HTML omitted -->\n</blockquote>\n<p>... (truncated)</p>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/6956d0b2853f5c7ec5f6ec4c60725c5a7ee73aeb\"><code>6956d0b</code></a> 10.2.0 version bump</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/31c8dacdc727673e9099f1ac86019714cdccec67\"><code>31c8dac</code></a> Merge pull request <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7675\">#7675</a> from python-pillow/pre-commit-ci-update-config</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/40a3f91af2c78870676a13629b5902bab4ab4cf0\"><code>40a3f91</code></a> Merge pull request <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7674\">#7674</a> from nulano/url-example</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/cb41b0cc78eeefbd9ed2ce8c10f8d6d4c405a706\"><code>cb41b0c</code></a> [pre-commit.ci] pre-commit autoupdate</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/de62b25ed318f1604aa4ccd6f942a04c6b2c8b59\"><code>de62b25</code></a> fix image url in &quot;Reading from URL&quot; example</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/7c526a6c6bdc7cb947f0aee1d1ee17c266ff6c61\"><code>7c526a6</code></a> Update CHANGES.rst [ci skip]</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/d93a5ad70bf94dbb63bdbfb19491a02976574d6d\"><code>d93a5ad</code></a> Merge pull request <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7553\">#7553</a> from bgilbert/jpeg-rgb</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/aed764fe8404926472499208a39e5bf90d861b2a\"><code>aed764f</code></a> Update CHANGES.rst [ci skip]</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/f8df5303fa9daf40cf8bfe232403cb40389d8f8f\"><code>f8df530</code></a> Merge pull request <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7672\">#7672</a> from nulano/imagefont-negative-crop</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/24e9485e6bb733a1a816f228dc75fd0086a93e19\"><code>24e9485</code></a> Merge pull request <a href=\"https://redirect.github.com/python-pillow/Pillow/issues/7671\">#7671</a> from radarhere/imagetransform</li>\n<li>Additional commits viewable in <a href=\"https://github.com/python-pillow/Pillow/compare/10.0.1...10.2.0\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pillow&package-manager=pip&previous-version=10.0.1&new-version=10.2.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Update test_latrodectus.py\nBody: None",
+  "Title: Test latrodectus\nBody: None",
+  "Title: Update test_zloader.py\nBody: None",
+  "Title: Fixing Process.py to allow running on task absent from the DB\nBody: None\nComment: i have found few problems here, working on fix\nComment: ```\r\ntask[\"target\"] = sample\r\nTypeError: 'Task' object does not support item assignment\r\n```\nComment: is there any particular reason to change from `task.__setattr__(\"target\", sample)` to `task[\"target\"] = sample`? my guess is when task is none and \"object\" is dict not the database object right?\nComment: No particular reason other than it seemed equivalent but it's not. Yeah missed that mb. \nComment: ok then we are fine ",
+  "Title: Update Zloader parser and yara\nBody: None",
+  "Title: Add Latrodectus yara and config extractor\nBody: None",
+  "Title: Update carbanak\nBody: None",
+  "Title: Add manual task stop to remote session\nBody: Thanks to @doomedraven for adding the ability to stop a running task via API. A button is now available on the remote session screen to terminate the sesssion manually.\nComment: oh this amazing, thank you",
+  "Title: How can I build a past CAPE?\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ Y ] I am running the latest version\r\n- [ Y ] I did read the README!\r\n- [ Y ] I checked the documentation and found no answer\r\n- [ Y ] I checked to make sure that this issue has not already been filed\r\n- [ Y ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ Y ] I have read and checked all configs (with all optional parts)\r\n\r\n# Expected Behavior\r\n\r\nI am trying to build a CAPE server with the same OS and commit ID as the one I built in the past. If you know a method to build a CAPE server with past commit IDs, could you please tell me?\r\n```\r\nOS: Ubuntu 20.04 LTS\r\ncommitID: a07e80b5b4ecc5bd07d5ec29d11ca1358753f5cb\r\n```\r\nAfter running the latest cape2.sh, I used the git checkout command to match the previously built CPAE and commit ID, but because the python version was outdated, services other than cape-rooter did not start. (Need to upgrade from python3.8 to python3.10)\r\n\r\nTherefore, I reinstalled the OS and executed the latest cape2.sh after installing python3.10 from source, but this time CAPE installation did not go well due to a lack of python-related packages. Is there a list of packages required for CAPE somewhere? Or is python3.10 source installation not recommended? If I add the repository and run apt install, will the additional packages be installed without any problems?\nComment: you need to learn git how to restore commit X, but whats the problem with latest cape?\r\n\r\nby part, we do not support anymore ubuntu 20.04 so you might face a lot of problems that we won't able to help you. compile python from source can break the whole Ubuntu, so you must be advanced linux user for that. CAPE required packages are in cape2.sh you can read it\nComment: XY problem",
+  "Title: Evented signature filtering fix\nBody: Fixed the evented signature filtering to act like a AND instead of an OR which would falsely make some signature trigger their on_call.\nComment: oh thank you for work on that, i still recovering from flu so my brain was pretty off\nComment: so is still draft or as latest commit say is done?\nComment: Sorry for the confusion, the commit comment done meant ready for internal code review. Should be removed from draft very soon ! \nComment: thanks for your work on this\nComment: Sorry took longer than expected but here it is ! \nComment: thank you very much",
+  "Title: Scheduler signal handling improvements\nBody: Improve scheduler signal handling:\r\n- Pause/unpause the scheduler with USR1/USR2 signals\r\n- Scheduler now waits for analyses to finish before stopping (SIGTERM)\r\n- Updated Scheduler systemd configuration to wait 4 minutes before sending SIGKILL to allow analyses to finish\nComment: Node for myself, add docs\nComment: ok it will take a bit more time to merge as there are conflicts with batch scheduling, i will try to solve them this week\nComment: @cccs-mog @cccs-kevin can you please also get a look here to ensure that my conflict solving doesn't break nothing\nComment: First impression is it should be good, will be testing to make sure there is no conflict. Thanks ! \nComment: Line 1090 should probably have the added lines 1124 to 1126 added there as well ? There is two spot for analysis.start() in the loop. Appart from that no conflict found after testing sound good to me ! \nComment: added that, thank you for feedback, merging",
+  "Title: Terminate kill analysis\nBody: None",
+  "Title: Possible unexpected evented signatures behavior\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I did read the README!\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nIn the documentation I found the possibility to write evented signatures with filters: https://capev2.readthedocs.io/en/latest/customization/signatures.html#evented-signatures\r\nThe expected behavior in my opinion is that all the filters are applied in AND with the others.\r\nFor exemple, reading the signature PowershellDownload from this signature file: https://github.com/CAPESandbox/community/blob/master/modules/signatures/powershell_command.py we have:\r\n```python\r\nfilter_apinames = set([\"recv\"])\r\nfilter_processnames = set([\"powershell.exe\"])\r\n```\r\nSo from this signature I suppose that the expected behavior of the filters is a logical AND.\r\n\r\n# Current Behavior\r\nThe current behavior is just an UNION between all filters without any exclusion logic: https://github.com/kevoreilly/CAPEv2/blob/master/lib/cuckoo/core/plugins.py#L518.\r\nSo, the previous signature will be executed in all process named \"powershell.exe\" OR in all apicalls named \"recv\". \r\nI don't know if the signature is wrong or if the current runtime management is wrong.\r\nPlease let me know :+1: \r\n\r\n# Failure Information (for bugs)\r\nThe failure information is a matched signature for apicall \"send\" but for a process not named \"powershell.exe\": https://capesandbox.com/analysis/469429/ -> the \"send\" api is called by \"nslookup.exe\" not \"powershell.exe\" process name.\nComment: yes looks like, once i will have sometime i will check that, thanks for headups\nComment: it was designed to be more likely OR condition https://github.com/kevoreilly/CAPEv2/blob/master/lib/cuckoo/core/plugins.py#L366-L375\r\n\r\ni guess it comes from cuckoo times, for me it would make sense to be AND if we set both, but i don't have time right now to work on this, so will keep this open till some proper time is taken to rethink this part\nComment: @cccs-mog is working on this fix as we speak! Stay tuned!\nComment: https://github.com/kevoreilly/CAPEv2/pull/1919 here is the small fix which should have the expected behavior. Currently working on a pytest for robustness. \nComment: solved by CCCS :) thank you guys",
+  "Title: Bump jinja2 from 3.1.2 to 3.1.3\nBody: Bumps [jinja2](https://github.com/pallets/jinja) from 3.1.2 to 3.1.3.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a href=\"https://github.com/pallets/jinja/releases\">jinja2's releases</a>.</em></p>\n<blockquote>\n<h2>3.1.3</h2>\n<p>This is a fix release for the 3.1.x feature branch.</p>\n<ul>\n<li>Fix for <a href=\"https://github.com/pallets/jinja/security/advisories/GHSA-h5c8-rqwp-cp95\">GHSA-h5c8-rqwp-cp95</a>. You are affected if you are using <code>xmlattr</code> and passing user input as attribute keys.</li>\n<li>Changes: <a href=\"https://jinja.palletsprojects.com/en/3.1.x/changes/#version-3-1-3\">https://jinja.palletsprojects.com/en/3.1.x/changes/#version-3-1-3</a></li>\n<li>Milestone: <a href=\"https://github.com/pallets/jinja/milestone/15?closed=1\">https://github.com/pallets/jinja/milestone/15?closed=1</a></li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/pallets/jinja/blob/main/CHANGES.rst\">jinja2's changelog</a>.</em></p>\n<blockquote>\n<h2>Version 3.1.3</h2>\n<p>Released 2024-01-10</p>\n<ul>\n<li>Fix compiler error when checking if required blocks in parent templates are\nempty. :pr:<code>1858</code></li>\n<li><code>xmlattr</code> filter does not allow keys with spaces. GHSA-h5c8-rqwp-cp95</li>\n<li>Make error messages stemming from invalid nesting of <code>{% trans %}</code> blocks\nmore helpful. :pr:<code>1918</code></li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/pallets/jinja/commit/d9de4bb215fd1cc8092a410fb834c7c4060b1fc1\"><code>d9de4bb</code></a> release version 3.1.3</li>\n<li><a href=\"https://github.com/pallets/jinja/commit/50124e16561f17f6c1ec85a692f6551418971cdc\"><code>50124e1</code></a> skip test pypi</li>\n<li><a href=\"https://github.com/pallets/jinja/commit/9ea7222ef3f184480be0d0884e30ccfb4172b17b\"><code>9ea7222</code></a> use trusted publishing</li>\n<li><a href=\"https://github.com/pallets/jinja/commit/da703f7aae36b1e88baaa20de334d7ff6378fdde\"><code>da703f7</code></a> use trusted publishing</li>\n<li><a href=\"https://github.com/pallets/jinja/commit/bce174692547464512383ec40e0f8338b8811983\"><code>bce1746</code></a> use trusted publishing</li>\n<li><a href=\"https://github.com/pallets/jinja/commit/7277d8068be593deab3555c7c14f974ada373af1\"><code>7277d80</code></a> update pre-commit hooks</li>\n<li><a href=\"https://github.com/pallets/jinja/commit/5c8a10522421270f66376a24ec8e0d6812bc4b14\"><code>5c8a105</code></a> Make nested-trans-block exceptions nicer (<a href=\"https://redirect.github.com/pallets/jinja/issues/1918\">#1918</a>)</li>\n<li><a href=\"https://github.com/pallets/jinja/commit/19a55db3b411343309f2faaffaedbb089e841895\"><code>19a55db</code></a> Make nested-trans-block exceptions nicer</li>\n<li><a href=\"https://github.com/pallets/jinja/commit/716795349a41d4983a9a4771f7d883c96ea17be7\"><code>7167953</code></a> Merge pull request from GHSA-h5c8-rqwp-cp95</li>\n<li><a href=\"https://github.com/pallets/jinja/commit/7dd3680e6eea0d77fde024763657aa4d884ddb23\"><code>7dd3680</code></a> xmlattr filter disallows keys with spaces</li>\n<li>Additional commits viewable in <a href=\"https://github.com/pallets/jinja/compare/3.1.2...3.1.3\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=jinja2&package-manager=pip&previous-version=3.1.2&new-version=3.1.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Fix signature name whitelist\nBody: Hi, I am hoping to get a small fix added to the whitelist check in [CAPE.py](https://github.com/kevoreilly/CAPEv2/blob/c28fcc3dfe091e47bc52d1120e4f24b39376c0de/modules/signatures/CAPE.py#L273)\r\n\r\nThe fix just normalises the process name to lower for the check. If the process name is of mixed case (eg: AcroRd32.exe), it will not hit this whitelist check. \r\n\r\nMany thanks for considering. \nComment: thanks\nComment: Thank you\nComment: Really big thank you \ud83d\ude4f ",
+  "Title: fixed wrong migration management\nBody: None\nComment: thank you will review that tomorrow\nComment: I'm not done yet, I'll pin you \r\n\r\n\nComment: ok thank you\nComment: @doomedraven the problem in my case is that I have the database consistent with the old \"suscription\" migrations but on the django model side there is a different name \"subscription\".\r\n\r\nunfortunately django does not allow you to fix all possible cases, if someone has installed the project in the last two months unfortunately the third migration will be broken as there is no \"subscription\" field.\r\nall the others who installed the project before will have no problems as the migration order is consistent again.\r\n\r\n\nComment: interesting, i remember that there was typo fix PR sometime ago, so i guess that one generated this mess\nComment: @doomedraven I made it!\nComment: oh nice, thank you, yes sometime is pure old sql is easier than the abstraction, i will merge that to staging first as my server is running on that so i can check if all ok",
+  "Title: Bump pycryptodomex from 3.19.0 to 3.19.1\nBody: Bumps [pycryptodomex](https://github.com/Legrandin/pycryptodome) from 3.19.0 to 3.19.1.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a href=\"https://github.com/Legrandin/pycryptodome/releases\">pycryptodomex's releases</a>.</em></p>\n<blockquote>\n<h2>v3.19.1 - Zeil</h2>\n<h2>Resolved issues</h2>\n<ul>\n<li>Fixed a side-channel leakage with OAEP decryption that could be\nexploited to carry out a Manger attack. Thanks to Hubert Kario.</li>\n</ul>\n<h2>v3.19.1 - Zeil (pycryptodomex)</h2>\n<h2>Resolved issues</h2>\n<ul>\n<li>Fixed a side-channel leakage with OAEP decryption that could be\nexploited to carry out a Manger attack. Thanks to Hubert Kario.</li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/Legrandin/pycryptodome/blob/master/Changelog.rst\">pycryptodomex's changelog</a>.</em></p>\n<blockquote>\n<p>3.19.1 (28 December 2023)\n++++++++++++++++++++++++++</p>\n<h2>Resolved issues</h2>\n<ul>\n<li>Fixed a side-channel leakage with OAEP decryption that could be\nexploited to carry out a Manger attack. Thanks to Hubert Kario.</li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/Legrandin/pycryptodome/commit/ef270ab436bddb437f8de122085bcf26dc9ad904\"><code>ef270ab</code></a> Update wheels action</li>\n<li><a href=\"https://github.com/Legrandin/pycryptodome/commit/3278edd0e99d1a45231de4b4b2a77b50963431e9\"><code>3278edd</code></a> Update changelog and version</li>\n<li><a href=\"https://github.com/Legrandin/pycryptodome/commit/10e8216079e6965eddac4bf293c3049a8b76b5d7\"><code>10e8216</code></a> Update PSS verify signature code example.</li>\n<li><a href=\"https://github.com/Legrandin/pycryptodome/commit/4ec4b85c65210a2809974b2fd1e6677cf2b0fc57\"><code>4ec4b85</code></a> Bump version</li>\n<li><a href=\"https://github.com/Legrandin/pycryptodome/commit/0deea1bfe1489e8c80d2053bbb06a1aa0b181ebd\"><code>0deea1b</code></a> Use constant-time (faster) padding decoding also for OAEP</li>\n<li><a href=\"https://github.com/Legrandin/pycryptodome/commit/519e7aea6de4e8f03b62c6e1dba724aca738882e\"><code>519e7ae</code></a> Avoid changing signature of RSA._decrypt() method if possible</li>\n<li><a href=\"https://github.com/Legrandin/pycryptodome/commit/1aa9dca20cd9485c8bcef2ecfdd05d407ae9edb7\"><code>1aa9dca</code></a> Update changelog and bump version</li>\n<li><a href=\"https://github.com/Legrandin/pycryptodome/commit/afb5e27a15efe59e33c2825d40ef44995c13b8bc\"><code>afb5e27</code></a> Fix side-channel leakage in RSA decryption</li>\n<li><a href=\"https://github.com/Legrandin/pycryptodome/commit/ee91c677a0862914aa7c0bf5829dc59306a93630\"><code>ee91c67</code></a> Update CMAC.py</li>\n<li><a href=\"https://github.com/Legrandin/pycryptodome/commit/43a466d170a5e28187732b90b2a7594ab06b6c6d\"><code>43a466d</code></a> Fix small &quot;passes&quot; typo.</li>\n<li>Additional commits viewable in <a href=\"https://github.com/Legrandin/pycryptodome/compare/v3.19.0...v3.19.1\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pycryptodomex&package-manager=pip&previous-version=3.19.0&new-version=3.19.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Reyes magos\nBody: None",
+  "Title: Update cape2.sh\nBody: 1.5.2 install either isn't available anymore or was having issues. 1.5.3 seems to be working.\nComment: thank you, sound like we will have to make some generic check to get last version\nComment: there are 1.5.4 version already\r\ni have added automatical extraction of version `guacamole_version=$(curl -s https://downloads.apache.org/guacamole/|grep DIR|tail -1|cut -d\">\" -f 3| cut -d\"/\" -f 1)`",
+  "Title: Bugfix for break in finally clause prevents CuckooPackageError from b\u2026\nBody: \u2026eing raised\r\n\r\nRelated to https://github.com/kevoreilly/CAPEv2/pull/1900",
+  "Title: Fix AgentTesla.py\nBody: In some AgentTesla samples a \"true\" or \"false\" string appears after user-agent string \"Mozilla/5.0..\", in some it does not.\r\nThat breaks the parser/config.\r\nAdded search for filename.\r\nBelow are some examples.\r\n\r\n---\r\n![1295](https://github.com/kevoreilly/CAPEv2/assets/35531629/d0f340e4-c7f7-4328-8f3a-e546129ae024)\r\nnew:\r\n\r\n![1295_fixed](https://github.com/kevoreilly/CAPEv2/assets/35531629/45b61bd2-28f3-442f-883f-dcaf3be56298)\r\n---\r\n![1381](https://github.com/kevoreilly/CAPEv2/assets/35531629/62341952-2fb3-40dd-bdce-101ec85ae22f)\r\n new:\r\n\r\n![1381_fixed](https://github.com/kevoreilly/CAPEv2/assets/35531629/bf7e0546-59e8-4637-b16f-b7233f05b96e)\r\n---\r\n![1408](https://github.com/kevoreilly/CAPEv2/assets/35531629/8a56fddb-42c3-49f9-9ec1-68deee388c3d)\r\n new:\r\n\r\n![1408_fixed](https://github.com/kevoreilly/CAPEv2/assets/35531629/5fc67c9f-b26c-4225-a27d-e349026e3a8e)\r\n---\r\n![1413](https://github.com/kevoreilly/CAPEv2/assets/35531629/b08845a0-2542-4364-82b9-26353781437e)\r\n\r\n new:\r\n![1413_fixed](https://github.com/kevoreilly/CAPEv2/assets/35531629/1e9dd597-db70-4601-94e9-34a0313d47d3)\nComment: Thank you very much",
+  "Title: Directory \"shots\" under storage/analyses/[task_id] is not created [by scheduler.py]\nBody: Hi,\r\nI just did a fresh installation of CAPEv2 on Ubuntu 22.04.\r\nWhen I tried to test I got an error message that there is no storage/analyses/[task_id]/shots/0000.jpg\r\nThe problems seems to be that the \"shots\" directory is not created within the [task_id] directory.\r\nAfter I added that to scheduler.py everything seems to work fine now.\r\nPlease find the scheduler.py with my additional code attached.\r\nKind regards\r\n[scheduler.py.gz](https://github.com/kevoreilly/CAPEv2/files/13819782/scheduler.py.gz)\r\n\r\n\nComment: hello, that is not proper fix, it creates that folder just fine, you must see why it can't create the folder on your side, like if that is a permission issue or what is wrong, but here are tons of info missed, watch your logs for details\nComment: hello, unfortunately I don't find much more info in the log - even when cuckoo.py is run with \"-d\".\r\n[cuckoo.log.gz](https://github.com/kevoreilly/CAPEv2/files/13821519/cuckoo.log.gz)\r\nThe directory is owned by the cape user and group which also runs cuckoo.py. \r\nAs the scheduler.py can create the directory with the line I added (see above) a permission problem seems unlikely.\r\nIf you have any hints were to look further let me know, please.\r\nFor now I have a working solution but it would be nice to also fix this issue.\r\n\nComment: that folder should be created by default on start of each analysis here https://github.com/kevoreilly/CAPEv2/blob/9b72a9936ed9c1fd4302a047adbcf7cd20bdddd2/lib/cuckoo/core/resultserver.py#L364-L373\r\n\r\nhaz git pull que he pusheado un check si la carpeta existe, si no, la creara, aunque la carpeta deberia existir\nComment: Hello, after update and git pull everything runs smooth now. \r\nThank you for your support.\nComment: thanks for feedback",
+  "Title: System Manufacturer in Windows 10 Guest VM shows as QEMU via msinfo32.exe\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ ] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n**DISCLAIMER:** Not reporting an issue yet; just seeking additional information to help me debug our deployment. The `kvm-qemu.sh` file has only had 1 commit since my version and it had nothing to do with the modification of `<WOOT>` strings.\r\n\r\n# Context\r\n* Deployed a recent version of CAPE (Nov 27th,2023) and followed all steps as per Host/Guest installation guide.\r\n* Submitted some samples of SmokeLoader and they failed to detonate because of a System Manufacturer check\r\n* Booted up Analysis VM and ran `msinfo32.exe` and noticed a series of QEMU strings\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/59988567/bc33f9b8-2a72-4c49-9f35-ac9c48a38ecf)\r\n* I reviewed the build logs for `kvm-qemu.sh` and was able to find log lines indicating that `[+] Patching QEMU ...` and `[+] Fixing SeaBIOS antivms`, so on the surface it looks like they ran correctly. The host VM reboots during the automated build process, so I haven't been able to validate successful string replacement in the `/tmp` folder since it's deleted between reboots.\r\n\r\n# Question / Request\r\nWhat are the expected values for the following attributes post-patching of QEMU and SeaBIOS?\r\n* System Manufacturer\r\n* System Model\r\n\r\nIf someone can log into an existing Guest VM snapshot of `win10-1809` (what I am using for the above) or any other Win10+ image and confirm what the above values should be, that would be great. Any tips on how to debug this would be greatly appreciated.\r\n\r\nBefore anyone says anything, I am in the process of confirming this behavior against the latest upstream version ... it just takes a while to build and setup a test environment...\r\n\r\nIf questions of the sort have been asked before, apologies that I'm asking again - have not been able to find their answers.\r\n\r\n\nComment: Some additional context:\r\n- I created a \"Guest VM Builder\" VM, by only running the `kvm-qemu.sh` script (default +  VirtManager option)\r\n- All Windows 10 Guest VM images are built on the Guest VM Builder and exported to a artifact file server\r\n- Host CAPE VMs in the cluster pull the prebuilt Guest VM images locally and import them into KVM\r\n\r\nNOTE: Both \"Host CAPE VM\" and \"Guest VM Builder\" are based on identical versions of the QEMU from the same Git commit pull from Nov 27th, 2023.\nComment: hello here are few points to consider/investigate/bear in mind\r\nI just checked my win10 vm, and i don't have nothing of that that you have, nothing of Qemu, seabios, etc as all of those are antivm patterns\r\n\r\n1. normally this happens when your VM didn't pick properly bios, or bios wasn't patched properly(bios string is in msinfo32), in logs you see start of the process, but not end, but maybe it went correctly\r\n2. Could be due to CPU selection, default is QEMU\r\n3. `kvm-qemu.sh` is my public version there is way much more to patch if you want really 100% hardened version, but that shouldn't affect you here is for more advanced cases\r\n4. did you follow this xml [patching guide](https://www.doomedraven.com/2016/05/kvm.html#modifying-kvm-qemu-kvm-settings-for-malware-analysis)?\nComment: Thank you for the answers above! \ud83d\ude4f Definitely gives me some direction and guidance on how to get to the bottom of this.\r\n\r\nI will double check the BIOS settings & CPU selection (I think I used `host-passthrough`...). The patching guide is great, I don't remember seeing it before.\nComment: **Update:**\r\n\r\n1. It appears that the BIOS was patched correctly, since running `nm /usr/share/qemu/bios.bin` and `nm /usr/share/qemu/bios-256k.bin` contained the all replacement strings defined in `replace_seabios_clues_public()`. Didn't peek at the source code, but I'm fairly confident it worked as intended. What's more, the QEMU project specifies the default BIOS for chipset `q35` as `/usr/share/qemu/bios-256k.bin` (https://github.com/qemu/qemu/blob/7425b6277f12e82952cede1f531bfc689bf77fb1/hw/i386/pc_q35.c#L373)\r\n2. It turned out that using `qemu-system-x86_64 -cpu host` was causing an issue. As soon as I modified the KVM Domain XML files to use `SandyBridge`, everything started working.\r\n3. ACK - if you have any tips or links on where to look at some of these more advanced configs, I'm happy to dive through more of this stuff.\r\n4. I applied the changes you suggested - specifically `<REPLACEME>,-hypervisor,kvm=off`. I did have a question about `-L<path/to/bios>` due to info in # 1 above... because you're overriding the default BIOS files in `/usr/share/qemu/`, you probably don't need to explicitly use the `-L` switch?\r\n\r\nOverall, great tips and I was able to solve my problem \ud83d\ude01. Hope the above is helpful to anyone else who runs into this kind of problem.\nComment: glad you fixed that\r\n3. use grep for patterns like `QEMU`, `BXPC`, `BOCHS` that will give you a good start, just ignore docs/rst files\r\n4. Even if we place bios to proper folder in past i found cases that it was using side bios, don't ask me why, software, so i prefer to hardcode my bios to ensure that the proper bios file is used\r\n\r\nextra, about `host-passthrough` that option is fine if you are on desktop cpu, but if you have `xeon` or any other server cpu, some malware does check for that and quit, so always pretend to be desktop in case if you don't want to emulate \"windows server\"\nComment: closing as solved",
+  "Title: Auxiliary module running order\nBody: This is more of a organisational question that I have. So recently I added Pe sieve tool in cape as an auxiliary and managed to get results back. Now Im looking into adding another tool: Moneta https://github.com/forrest-orr/moneta\r\n\r\nI did research on it and it and the command also specifies with (-p) PID, the same as pe sieve:\r\ncommand: Moneta64.exe -m ioc -p 1234\r\n\r\nBut that isn't that important now. I tried to basically copy my code from Pesieve and implement Moneta the same way. During my testing period I saw that Moneta kept running and running and didnt let the other tool do its thing. \r\n\r\n**So my question is: is there in CapeV2 something/feature/service that looks after the order of which the auxiliaries get executed Should a new auxiliary implementation have a delay coded in it so that it doesn't interfere with the other aux's....**\r\n\r\nBelow is my implementation for Pesieve which i tried to copy for Moneta:\r\n\r\n```\r\nimport time\r\nimport os\r\nimport logging\r\nimport subprocess\r\nfrom threading import Thread\r\nfrom pathlib import Path\r\nfrom lib.common.abstracts import Auxiliary\r\nfrom lib.common.results import upload_to_host\r\n\r\nlog = logging.getLogger(__name__)\r\n\r\nclass PESieve(Auxiliary, Thread):\r\n    def __init__(self, options, config):\r\n        Auxiliary.__init__(self, options, config)\r\n        Thread.__init__(self)\r\n        self.pesieve_path = \"C:\\\\Users\\\\CapeUser\\\\Desktop\\\\pesieve\\\\pe-sieve64.exe\"\r\n        self.pids = []  # List to track PIDs\r\n        self.processed_pids = set()\r\n\r\n    def add_pid(self, pid):\r\n        \"\"\"Add a PID to the tracking list.\"\"\"\r\n        if pid not in self.pids:\r\n            self.pids.append(pid)\r\n            log.info(\"Added PID: %s to PESieve\", pid)\r\n\r\n    def del_pid(self, pid):\r\n        \"\"\"Remove a PID from the tracking list.\"\"\"\r\n        if pid in self.pids:\r\n            self.pids.remove(pid)\r\n            log.info(\"Removed PID from PESieve\")\r\n\r\n    def run(self):\r\n        log.info(\"Running PE-sieve on PIDs\")\r\n       \r\n        cwd = Path.cwd()  # Get the current working directory\r\n\r\n        while True:\r\n            for pid in self.pids:\r\n                if pid in self.processed_pids:\r\n                    continue  # Skip this PID if it has already been processed\r\n\r\n                \r\n                process = subprocess.Popen([self.pesieve_path, '/pid', str(pid)], shell=False)\r\n                process.wait()\r\n                log.info(\"PE-sieve run on PID: %s\", pid)\r\n                self.processed_pids.add(pid)  # Mark this PID as processed\r\n                \r\n\r\n                time.sleep(15)  # Pause between processing each PID\r\n\r\n            if self.processed_pids == set(self.pids):\r\n                self.stop()  # Call stop here to stop the scan\r\n\r\n    def stop(self):\r\n        log.info(\"Stopping PE-sieve.\")\r\n        # Wait for all PE-sieve processes to finish\r\n    \r\n        for pid in self.pids:\r\n            # Find and upload the output files for each PID\r\n            self.upload_output_files(pid)\r\n        log.info(\"Uploaded files for all PIDs and stopped PE-sieve.\")\r\n\r\n    def upload_output_files(self, pid):\r\n        # Find the process-specific output directory within the current working directory\r\n        cwd = Path.cwd()  \r\n        process_dir_path = cwd / f'process_{pid}'\r\n\r\n        if process_dir_path.exists() and process_dir_path.is_dir():\r\n            files_in_folder = os.listdir(process_dir_path)\r\n            log.info(f\"Listing the files inside {process_dir_path}\")\r\n\r\n            for file_name in files_in_folder:\r\n                file_path = process_dir_path / file_name\r\n                if file_path.is_file():\r\n                    # Use the existing upload function, assuming it takes the file path and destination path\r\n                    upload_to_host(str(file_path), os.path.join(\"pesieve\", file_name))\r\n                    log.info(f\"Uploaded {file_name} from {process_dir_path} to CAPE\")\r\n        else:\r\n            log.error(f\"No output directory found for PID {pid}\")\r\n\r\n```\r\nerror logs: basically moneta keeps running and running in the same time as my pe sieve code\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/114144180/e47dc6cd-e1cc-4474-9d3f-b15f6040b716)\r\n\r\nMy moneta solution is basically the same as the code above but instead searches for in the current working directory CWD for a folder that starts with memdmp: It looks like this\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/114144180/146072a8-3888-440d-8969-8a9e69e05f80)\r\n\r\n\r\n\r\n\r\n\nComment: hey, the main problem is how you design your aux module, order doesn't matter at all, you should just run it in background instead of force it wait https://docs.python.org/3/library/subprocess.html#subprocess.Popen.wait\nComment: alright. good to know, thanks for the info!\nComment: I'm curious why you appear to be so keen to bolt on alternative unpacking engines into cape.... If cape is doing its job well, these modules should not be needed. If cape isn't doing its job well then the solution is to fix cape, not bolt on something else.\nComment: I am doing an internship project and one of the requirements were to add external tools to the platform. The people I work with have experience with malware analysis and they work with these tools ( moneta, pe sieve, threatcheck). My goal in this project by using cape is to do payload validation. I already know that for example an exe file is suspicious, I want to confirm it does what is supposed to in a windows environment.\nComment: In which case... it would be very helpful if you would provide feedback for any cases you find where the above-mentioned tools are successful in producing useful output where cape fails... The original sample and any payloads from the other tools would be a big help to further improve cape's unpacking. It is my goal in this project to make cape the best it can be, which also includes being at least as good, if not better, than those other tools.\nComment: Alright, will do. ",
+  "Title: add credits to Andrew Blair Schenck\nBody: I'm currently preparing an older project of mine to publish on GitHub, I have the same file [renamed] in my repository, and while searching for keywords in order to find and attribute the original creator, I've stumbled upon this entry with the comment of \"find from where is file come and add here\".\r\n\r\nCredits added, as well as the repository where it originated from.\r\n\r\nBest\nComment: thanks",
+  "Title: add a very basic overview of setting up Suricata based ingestion pipeline\nBody: Shows a basic example of integrating remote Suricata instances for sucking files off the wire and submitting them for detonation.\r\n\nComment: thanks",
+  "Title: Docs/Enhancement: pin html_theme\nBody: First of all - thanks for that great project!\r\n\r\n## Issue\r\nBorn from a misunderstanding: **why the theme for docs has changed**.\r\nFor a long time (if not always) `read the docs` html theme was used.\r\nThen, at some point in time, it changed to sphinx `classic` (which is the `default`).\r\n\r\n_From my point of view,_ `read the docs` theme is much better for the user experience than sphinx `classic`.\r\n\r\nSo, here is the difference:\r\n- [Current version](https://capev2.readthedocs.io/en/latest/)\r\n- [Read The Docs theme version from WayBackMachine](https://web.archive.org/web/20230330233813/https://capev2.readthedocs.io/en/latest/index.html#)\r\n\r\n## Cause\r\nAs a result of my investigations, I found out that:\r\n- `conf.py` has not changed over time\r\n- but what changed is the `auto-created readthedocs.org specific configuration` code (`conf.py`)\r\n  - please, look at the `cat docs/book/src/conf.py` command output\r\n  - [Current build](https://readthedocs.org/projects/capev2/builds/22908931/)\r\n  - [Build where `read the docs` theme set automatically](https://readthedocs.org/projects/capev2/builds/19609515/)\r\n\r\n## Proposal\r\nIt seems like theme-changing occurred unintentionally.\r\n\r\nTo avoid that and improve the user experience:\r\n**I propose to** pin concrete `html_theme` (`read the docs`) in sphinx `conf.py`\r\n\r\n## Fix\r\nSteps to achieve it:\r\n- `html_theme=sphinx_rtd_theme`\r\n- declare `sphinx_rtd_theme` as a docs dependency\nComment: One more question to `conf.py`:\r\n\r\n`CAPE` version declared in the docs:\r\nhttps://github.com/kevoreilly/CAPEv2/blob/abead0ac72b8cd051e1a88435b97c2f7e78f0034/docs/book/src/conf.py#L46-L49\r\ndiffers from the real version:\r\nhttps://github.com/kevoreilly/CAPEv2/blob/abead0ac72b8cd051e1a88435b97c2f7e78f0034/lib/cuckoo/common/constants.py#L15\r\n\r\n---\r\nI think a good solution for it would be to import that constant in `conf.py` (optionally stripping the `CAPE` suffix). \nComment: Not to open another issue - will ask here:\r\nIt seems strange that after installing CAPE using `sudo ./cape2.sh base cape` - `mongodb` reporting is disabled (default).\r\nI saw https://github.com/kevoreilly/CAPEv2/issues/1729 as related to my question.\r\n\r\nBut my point is that it looks kinda inconsistent.\r\nIf mongodb setup is provided by script, maybe:\r\n- indicate in `reporting.conf` docs: if you used  `sudo ./cape2.sh base cape` then turn mongodb reporting on manually\r\n- or do this step above in installation script (smth like `sed enabled=on`)\r\n\nComment: 1. About theme, yes it was unintentional, i will test your proposal\r\n2. That conf version is just for docs and i guess it comes from old cuckoo, i will see how to change that in near future\r\n3. About mongo, well before we were activating that too, but after some discussion(can't remember context why) we decided to not force that to end user\r\n\r\nis totally fine to use the same issue for extra questions, so if you got any, let us know\nComment: pinned theme, but i guess im just sleepy as i don't see change\nComment: 1. Great job - `read the docs` has been applied\r\n2. OK, up to you\r\n\r\n3.\r\n> but after some discussion(can't remember context why) we decided to not force that to end user\r\n\r\nI decided to look across commits and find some more information.\r\nBut what I accidentally found is installer code that is opposing to reality:\r\nhttps://github.com/kevoreilly/CAPEv2/blob/c2dae18fdb8d9d1402b7782f9d3fe02b65fb4db4/installer/cape2.sh#L1205-L1208\r\nCause by default it is **disabled**:\r\nhttps://github.com/kevoreilly/CAPEv2/blob/c2dae18fdb8d9d1402b7782f9d3fe02b65fb4db4/conf/reporting.conf#L79-L80\r\n\r\nSo, it looks like we should invert the behavior of this `if` clause.\nComment: yes you know, when people PR stuff and they didn't change properly all places and you didn't remember that neither. so thanks for checking. updated cape2.sh\nComment: I apologize if my message sounded accusatory.\r\nI fully understand the nature of the code changes)\nComment: nah, thats totally fine, thanks again for spotting all those things. This is huge help for us\nComment: \u0442\u0435\u043f\u0435\u0440 \u043c\u043e\u044f \u0447\u0435\u0440\u0433\u0430 \u0434\u044f\u043a\u0443\u0432\u0430\u0442\u0438)\nComment: Big love \u2764\ufe0f ",
+  "Title: Docs: fix configuration routing links & fix sphinx warnings\nBody: - fixed link to `routing.conf` on the configuration page\r\n- fixed all sphinx warnings\nComment: \u0434\u044f\u043a\u0443\u044e)",
+  "Title: Adding ability to try a password list for archive files\nBody: Addresses https://cccs.atlassian.net/browse/AL-2600\r\n\r\nWe are currently able to support a single password being passed to an archive-related package. It would be great if we can just pass a list of possible passwords and the package will try all of them until it succeeds in extracting the file! This PR should do that :)\r\n\r\nCurrently only supporting Zip and Archive packages for this capability\nComment: thanks",
+  "Title: Bump paramiko from 3.3.1 to 3.4.0\nBody: Bumps [paramiko](https://github.com/paramiko/paramiko) from 3.3.1 to 3.4.0.\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/paramiko/paramiko/commit/f0881ba8af57d1a122ef19c40d144afdcb6e0824\"><code>f0881ba</code></a> Cut 3.4.0</li>\n<li><a href=\"https://github.com/paramiko/paramiko/commit/3e4bdf998f5b1508322234a527e8fa432220368b\"><code>3e4bdf9</code></a> Changelog/comment updates</li>\n<li><a href=\"https://github.com/paramiko/paramiko/commit/30b447b911c39460bbef5e7834e339c43a251316\"><code>30b447b</code></a> Linting</li>\n<li><a href=\"https://github.com/paramiko/paramiko/commit/33508c920309860c4a775be70f209c2a400e18ec\"><code>33508c9</code></a> Expand MessageOrderError use to handle more packet types</li>\n<li><a href=\"https://github.com/paramiko/paramiko/commit/96db1e2be856eac66631761bae41167a1ebd2b4e\"><code>96db1e2</code></a> Raise exception when sequence numbers rollover during initial kex</li>\n<li><a href=\"https://github.com/paramiko/paramiko/commit/58785d29c47570fa700e096d16b9a0d3a6069048\"><code>58785d2</code></a> Changelog tweak re: other new Transport kwarg</li>\n<li><a href=\"https://github.com/paramiko/paramiko/commit/8dcb237f0ee095b1d8b26765c3d41d0ab6963be9\"><code>8dcb237</code></a> Test-suite-only bugfix: defer did not actually imply skip_verify</li>\n<li><a href=\"https://github.com/paramiko/paramiko/commit/fa46de7feeeb8a01dc471581a0258252ce4f2db6\"><code>fa46de7</code></a> Reset sequence numbers on rekey</li>\n<li><a href=\"https://github.com/paramiko/paramiko/commit/75e311d3c0845a316b6e7b3fae2488d86ad5a270\"><code>75e311d</code></a> Enforce zero seqno on kexinit</li>\n<li><a href=\"https://github.com/paramiko/paramiko/commit/73f079f5a4bbba7f3048dadbe05b24242206745e\"><code>73f079f</code></a> Fill in CVE number for Terrapin attack</li>\n<li>Additional commits viewable in <a href=\"https://github.com/paramiko/paramiko/compare/3.3.1...3.4.0\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=paramiko&package-manager=pip&previous-version=3.3.1&new-version=3.4.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Archive refactor\nBody: The original goal was to just support running HTML files in archives, but then after looking at how we have multiple archive-related packages that could benefit from sharing logic, a refactor was in order.\r\n\r\nI haven't tested the rar package or the zip_compound package, but archive and zip work\r\n\r\nWill be running in prod for a bit before PR will be ready for review\nComment: can you check please if i didn't mess on fixing conflicts?\nComment: > can you check please if i didn't mess on fixing conflicts?\r\n\r\nConfirmed, you are perfect \ud83d\udcaf \nComment: thanks for verification",
+  "Title: Creation of custom processing module trouble\nBody:               Hey so I added my custom processing module in Cape by checking every requirement there is:\r\n\r\nadded to processing.conf as pesieve_parser_json:\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/119869815/a2ef5e8e-4628-4e89-b850-882547a334f2)\r\n\r\nNow that you clarified that the processing modules do not get run during the scan then my task will be abit simplified.\r\nThe goal for the JSON parser is to parse the 2 files that my tool generates after a scan and the auxiliary stores it in storage/analyses/1/pesieve  - the folder is created by the resultserver\r\n![Screenshot 2023-12-19 153412](https://github.com/kevoreilly/CAPEv2/assets/119869815/1b37d550-6a81-463c-a675-bdb9dd4c875b)\r\n\r\nI even have a code already for the json parse which shouldnt be too difficult,\r\nNow I would like to parse the data , make it human readable and display it in HTML page.\r\nI want to store the result of the parsing data in the storage/analyses/1/\r\n\r\n```\r\nimport os\r\nimport json\r\nfrom lib.cuckoo.common.abstracts import Processing\r\nfrom lib.cuckoo.common.path_utils import path_exists\r\n\r\nclass PeSieveJSONParser(Processing):\r\n    \"\"\"Parse Pe-sieve JSON reports and save results in HTML format.\"\"\"\r\n\r\n    def run(self):\r\n        self.key = \"pesieve_reports\"\r\n        reports = {}\r\n\r\n        # Define paths to the JSON files\r\n        scan_report_path = os.path.join(self.analysis_path, \"pesieve\", \"scan_report.json\")\r\n        dump_report_path = os.path.join(self.analysis_path, \"pesieve\", \"dump_report.json\")\r\n\r\n        # Check and parse the scan report\r\n        if path_exists(scan_report_path):\r\n            with open(scan_report_path, 'r') as file:\r\n                reports[\"scan_report\"] = json.load(file)\r\n\r\n        # Check and parse the dump report\r\n        if path_exists(dump_report_path):\r\n            with open(dump_report_path, 'r') as file:\r\n                reports[\"dump_report\"] = json.load(file)\r\n\r\n        # Convert parsed data to HTML\r\n        html_report = self.data_to_html(reports)\r\n\r\n        # Manually save the HTML report\r\n        html_report_filename = \"pesieve_html_report.html\"\r\n        html_report_path = os.path.join(self.analysis_path, \"pesieve\", html_report_filename)\r\n        with open(html_report_path, 'w') as file:\r\n            file.write(html_report)\r\n\r\n        # Return the path of the saved HTML report\r\n        return {\"html_report\": html_report_path}\r\n\r\n    def data_to_html(self, parsed_data):\r\n        \"\"\"Convert parsed data to HTML format.\"\"\"\r\n        html_content = \"<html><head><title>Pe-sieve Report</title></head><body>\"\r\n\r\n        # Iterate over each report in the parsed data\r\n        for report_type, data in parsed_data.items():\r\n            # Add a section for each report type\r\n            html_content += \"<h2>\" + report_type + \"</h2>\"\r\n\r\n            # Format the data as JSON and add it to the HTML content\r\n            formatted_json = json.dumps(data, indent=4)\r\n            html_content += \"<pre>\" + formatted_json + \"</pre>\"\r\n\r\n        html_content += \"</body></html>\"\r\n        return html_content\r\n\r\n```\r\n\r\nAm I doing the uploading correctly or should I use upload_to_host method, or what can you suggest me do?\r\n\r\n_Originally posted by @WiltedDeath in https://github.com/kevoreilly/CAPEv2/issues/1893#issuecomment-1862794736_\r\n            \nComment: if you got files on server side as on second screen shots then yes.\r\n\r\nAs i asked, please stay with one uniq issue, we receive comments about anything new even if issue is closed, you don't need to open new issue. as it spams everyone who watches the repo and is not a cape problem, so __please use one issue__ or we gonna start ignore it\nComment: did you solve your problem?",
+  "Title: Put MSOffice documents in to a \"trusted location\".\nBody: Excel, Word, and Powerpoint won't have macros enabled without interaction for documents that are outside one of its \"Trusted Locations\". Unless the user has provided a 'curdir' option, use MSOFFICE_TRUSTED_PATH as the directory where the document will be saved and executed from since that is a default trusted location for all 3 apps. See\r\nhttps://learn.microsoft.com/en-us/deployoffice/security/trusted-locations\r\n\r\nNote, I have only tested this with MSOffice LTSC 2021.",
+  "Title: Expectation when submitting a ransomware sample like lockbit for analysis.\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ X ] I am running the latest version\r\n- [ X ] I did read the README!\r\n- [ X ] I checked the documentation and found no answer\r\n- [ X ] I checked to make sure that this issue has not already been filed\r\n- [ X ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ X ] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nThis is more of a general question rather than a problem to set my expectations. Just built an instance following the official instructions and have configured a x64 windows 10 guest. \r\n\r\nI'm submitting this sample [https://bazaar.abuse.ch/sample/c165d80706ccb48e3d5f77a51068771dec247362a8726588c563f335a3df5b6e/](url) which is a lockbit ransomware sample. \r\n\r\nWhen watching the VM guest via virt-manager as the analysis is being conducted I would've thought I would see the typcial ransomware page of \"your files have been locked\" when the sample is being executed on the VM. \r\nIf I run the malware sample exe manually inside the VM (ie. via a double-click) I get the 'your files are locked, pay us bitcoin' money, but I'm not seeing it during the analysis.\r\n\r\nMy quesiton is, is this normal behaviour, is the malware sample being executed in the background via the agent and I'm just not simply seeing the actual activity on the VM guest or could there be something else happening that I'm not seeing.\r\n\r\n# Current Behavior\r\n\r\nThe analysis report shows signatures that seems to suggest that it has detected 'ransomware' activity, but doesn't show the usual page on the windows VM so no screen shot is captured showing that, I'm wondering if this is normal?\r\n\r\n```\r\nPerforms a large number of encryption calls using the same key possibly indicative of ransomware file encryption behavior\r\nencryption: The crypto key 0x2a6ad15a5b0 was used 903 times to encrypt data\r\n```\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Run cape using poetry\r\n`cape@capev2:/opt/CAPEv2$ poetry run python3 cuckoo.py -d`\r\n\r\n2. Submit the lockbit sample using poetry\r\n`cape@capev2:/opt/CAPEv2$ poetry run python3 utils/submit.py -d --platform windows /home/cape/c165d80706ccb48e3d5f77a51068771dec247362a8726588c563f335a3df5b6e.zip`\r\n\r\n3. Received the following error, but the job seems to submit successfully.\r\n```\r\nERROR:lib.cuckoo.common.demux:argument of type 'NoneType' is not iterable\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/demux.py\", line 213, in demux_sflock\r\n    retlist.extend(_sf_children(ch) for ch in sf_child.children)\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/demux.py\", line 213, in <genexpr>\r\n    retlist.extend(_sf_children(ch) for ch in sf_child.children)\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/demux.py\", line 175, in _sf_children\r\n    or is_valid_package(child.package)\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/demux.py\", line 166, in is_valid_package\r\n    return any(ptype in package for ptype in VALID_PACKAGES)\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/demux.py\", line 166, in <genexpr>\r\n    return any(ptype in package for ptype in VALID_PACKAGES)\r\nTypeError: argument of type 'NoneType' is not iterable\r\nSuccess: File \"/home/cape/c165d80706ccb48e3d5f77a51068771dec247362a8726588c563f335a3df5b6e.zip\" added as task with ID 1\r\n```\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | commit 16d61eb80ae3345bd03270453b21c0acedbae8cf\r\n| OS version       | Ubuntu 22.04.3 LTS\r\n\r\n## Analysis Logs\r\n\r\n```\r\n2023-12-19 10:48:15,616 [root] INFO: Date set to: 20231219T11:44:53, timeout set to: 300\r\n2023-12-19 11:44:53,006 [root] DEBUG: kernel.OpenProcess failed for PID: 0\r\n2023-12-19 11:44:53,038 [root] DEBUG: psapi.GetProcessImageFileNameA failed for PID: 4\r\n2023-12-19 11:44:53,053 [root] DEBUG: kernel.OpenProcess failed for PID: 0\r\n2023-12-19 11:44:53,053 [root] DEBUG: psapi.GetProcessImageFileNameA failed for PID: 4\r\n2023-12-19 11:44:53,070 [root] DEBUG: Starting analyzer from: C:\\tmp8nnuu52b\r\n2023-12-19 11:44:53,070 [root] DEBUG: Storing results at: C:\\nMhfbI\r\n2023-12-19 11:44:53,070 [root] DEBUG: Pipe server name: \\\\.\\PIPE\\lOKUXyzhpC\r\n2023-12-19 11:44:53,084 [root] DEBUG: Python path: C:\\Program Files (x86)\\Python312-32\r\n2023-12-19 11:44:53,084 [root] INFO: analysis running as an admin\r\n2023-12-19 11:44:53,084 [root] DEBUG: No analysis package specified, trying to detect it automagically\r\n2023-12-19 11:44:53,084 [root] INFO: Automatically selected analysis package \"zip\"\r\n2023-12-19 11:44:53,100 [root] DEBUG: Importing analysis package \"zip\"...\r\n2023-12-19 11:44:53,115 [root] DEBUG: Initializing analysis package \"zip\"...\r\n2023-12-19 11:44:53,133 [root] DEBUG: New location of moved file: C:\\Users\\John\\AppData\\Local\\Temp\\c165d80706ccb48e3d5f.zip\r\n2023-12-19 11:44:53,133 [root] INFO: Analyzer: Package modules.packages.zip does not specify a DLL option\r\n2023-12-19 11:44:53,133 [root] INFO: Analyzer: Package modules.packages.zip does not specify a DLL_64 option\r\n2023-12-19 11:44:53,133 [root] INFO: Analyzer: Package modules.packages.zip does not specify a loader option\r\n2023-12-19 11:44:53,147 [root] INFO: Analyzer: Package modules.packages.zip does not specify a loader_64 option\r\n2023-12-19 11:44:53,178 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.browser\"...\r\n2023-12-19 11:44:53,178 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.curtain\"...\r\n2023-12-19 11:44:53,193 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.digisig\"...\r\n2023-12-19 11:44:53,209 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.disguise\"...\r\n2023-12-19 11:44:53,225 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.during_script\"...\r\n2023-12-19 11:44:53,240 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.evtx\"...\r\n2023-12-19 11:44:53,256 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.filepickup\"...\r\n2023-12-19 11:44:53,256 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.html_scraper\"...\r\n2023-12-19 11:44:53,271 [modules.auxiliary.html_scraper] ERROR: No module named 'selenium'\r\n2023-12-19 11:44:53,271 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.human\"...\r\n2023-12-19 11:44:53,271 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.permissions\"...\r\n2023-12-19 11:44:53,287 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.pre_script\"...\r\n2023-12-19 11:44:53,287 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.procmon\"...\r\n2023-12-19 11:44:53,303 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.recentfiles\"...\r\n2023-12-19 11:44:53,303 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.screenshots\"...\r\n2023-12-19 11:44:53,319 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageChops'\r\n2023-12-19 11:44:53,365 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageGrab'\r\n2023-12-19 11:44:53,365 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageDraw'\r\n2023-12-19 11:44:53,381 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.sysmon\"...\r\n2023-12-19 11:44:53,396 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.tlsdump\"...\r\n2023-12-19 11:44:53,412 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.usage\"...\r\n2023-12-19 11:44:53,412 [root] DEBUG: Initialized auxiliary module \"Browser\"\r\n2023-12-19 11:44:53,412 [root] DEBUG: Trying to start auxiliary module \"Browser\"...\r\n2023-12-19 11:44:53,412 [root] DEBUG: Started auxiliary module \"Browser\"\r\n2023-12-19 11:44:53,412 [root] DEBUG: Started auxiliary module Browser\r\n2023-12-19 11:44:53,412 [root] DEBUG: Initialized auxiliary module \"Curtain\"\r\n2023-12-19 11:44:53,428 [root] DEBUG: Trying to start auxiliary module \"Curtain\"...\r\n2023-12-19 11:44:53,428 [root] DEBUG: Started auxiliary module \"Curtain\"\r\n2023-12-19 11:44:53,428 [root] DEBUG: Started auxiliary module Curtain\r\n2023-12-19 11:44:53,428 [root] DEBUG: Initialized auxiliary module \"DigiSig\"\r\n2023-12-19 11:44:53,428 [root] DEBUG: Trying to start auxiliary module \"DigiSig\"...\r\n2023-12-19 11:44:53,428 [modules.auxiliary.digisig] DEBUG: Checking for a digital signature\r\n2023-12-19 11:44:53,647 [modules.auxiliary.digisig] DEBUG: File format not recognized\r\n2023-12-19 11:44:53,647 [modules.auxiliary.digisig] INFO: Uploading signature results to aux/DigiSig.json\r\n2023-12-19 11:44:53,647 [root] DEBUG: Started auxiliary module \"DigiSig\"\r\n2023-12-19 11:44:53,647 [root] DEBUG: Started auxiliary module DigiSig\r\n2023-12-19 11:44:53,647 [root] DEBUG: Initialized auxiliary module \"Disguise\"\r\n2023-12-19 11:44:53,647 [root] DEBUG: Trying to start auxiliary module \"Disguise\"...\r\n2023-12-19 11:44:53,647 [modules.auxiliary.disguise] INFO: Disguising GUID to 84add49c-7f7f-40d6-acef-4f4288aae9fe\r\n2023-12-19 11:44:53,662 [root] DEBUG: Started auxiliary module \"Disguise\"\r\n2023-12-19 11:44:53,662 [root] DEBUG: Started auxiliary module Disguise\r\n2023-12-19 11:44:53,662 [root] DEBUG: Initialized auxiliary module \"Evtx\"\r\n2023-12-19 11:44:53,678 [root] DEBUG: Trying to start auxiliary module \"Evtx\"...\r\n2023-12-19 11:44:53,678 [root] DEBUG: Started auxiliary module \"Evtx\"\r\n2023-12-19 11:44:53,678 [root] DEBUG: Started auxiliary module Evtx\r\n2023-12-19 11:44:53,678 [root] DEBUG: Initialized auxiliary module \"FilePickup\"\r\n2023-12-19 11:44:53,678 [root] DEBUG: Trying to start auxiliary module \"FilePickup\"...\r\n2023-12-19 11:44:53,678 [root] DEBUG: Started auxiliary module \"FilePickup\"\r\n2023-12-19 11:44:53,693 [root] DEBUG: Started auxiliary module FilePickup\r\n2023-12-19 11:44:53,693 [root] DEBUG: Initialized auxiliary module \"HtmlScraper\"\r\n2023-12-19 11:44:53,693 [root] DEBUG: Trying to start auxiliary module \"HtmlScraper\"...\r\n2023-12-19 11:44:53,709 [root] DEBUG: Started auxiliary module \"HtmlScraper\"\r\n2023-12-19 11:44:53,802 [root] DEBUG: Started auxiliary module HtmlScraper\r\n2023-12-19 11:44:53,802 [root] DEBUG: Initialized auxiliary module \"Human\"\r\n2023-12-19 11:44:53,802 [root] DEBUG: Trying to start auxiliary module \"Human\"...\r\n2023-12-19 11:44:53,834 [root] DEBUG: Started auxiliary module \"Human\"\r\n2023-12-19 11:44:53,834 [root] DEBUG: Started auxiliary module Human\r\n2023-12-19 11:44:53,850 [root] DEBUG: Initialized auxiliary module \"Permissions\"\r\n2023-12-19 11:44:53,850 [root] DEBUG: Trying to start auxiliary module \"Permissions\"...\r\n2023-12-19 11:44:53,850 [root] DEBUG: Started auxiliary module \"Permissions\"\r\n2023-12-19 11:44:53,850 [root] DEBUG: Started auxiliary module Permissions\r\n2023-12-19 11:44:53,866 [root] DEBUG: Initialized auxiliary module \"Pre_script\"\r\n2023-12-19 11:44:53,866 [root] DEBUG: Trying to start auxiliary module \"Pre_script\"...\r\n2023-12-19 11:44:53,866 [root] DEBUG: Started auxiliary module \"Pre_script\"\r\n2023-12-19 11:44:53,866 [root] DEBUG: Started auxiliary module Pre_script\r\n2023-12-19 11:44:53,866 [root] DEBUG: Initialized auxiliary module \"Procmon\"\r\n2023-12-19 11:44:53,883 [root] DEBUG: Trying to start auxiliary module \"Procmon\"...\r\n2023-12-19 11:44:53,896 [root] DEBUG: Started auxiliary module \"Procmon\"\r\n2023-12-19 11:44:53,896 [root] DEBUG: Started auxiliary module Procmon\r\n2023-12-19 11:44:53,928 [root] DEBUG: Initialized auxiliary module \"RecentFiles\"\r\n2023-12-19 11:44:53,944 [root] DEBUG: Trying to start auxiliary module \"RecentFiles\"...\r\n2023-12-19 11:44:53,990 [root] DEBUG: Started auxiliary module \"RecentFiles\"\r\n2023-12-19 11:44:54,037 [root] DEBUG: Started auxiliary module RecentFiles\r\n2023-12-19 11:44:54,037 [root] DEBUG: Initialized auxiliary module \"Screenshots\"\r\n2023-12-19 11:44:54,037 [root] DEBUG: Trying to start auxiliary module \"Screenshots\"...\r\n2023-12-19 11:44:54,068 [root] DEBUG: Started auxiliary module \"Screenshots\"\r\n2023-12-19 11:44:54,068 [root] DEBUG: Started auxiliary module Screenshots\r\n2023-12-19 11:44:54,084 [root] DEBUG: Initialized auxiliary module \"Sysmon\"\r\n2023-12-19 11:44:54,084 [root] DEBUG: Trying to start auxiliary module \"Sysmon\"...\r\n2023-12-19 11:44:54,084 [root] DEBUG: Started auxiliary module \"Sysmon\"\r\n2023-12-19 11:44:54,084 [root] DEBUG: Started auxiliary module Sysmon\r\n2023-12-19 11:44:54,084 [root] DEBUG: Initialized auxiliary module \"TLSDumpMasterSecrets\"\r\n2023-12-19 11:44:54,084 [root] DEBUG: Trying to start auxiliary module \"TLSDumpMasterSecrets\"...\r\n2023-12-19 11:44:54,084 [modules.auxiliary.tlsdump] INFO: lsass.exe found, pid 616\r\n2023-12-19 11:44:54,381 [lib.api.process] INFO: Monitor config for process 616: C:\\tmp8nnuu52b\\dll\\616.ini\r\n2023-12-19 11:44:54,381 [lib.api.process] INFO: Option 'tlsdump' with value '1' sent to monitor\r\n2023-12-19 11:44:54,381 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmp8nnuu52b\\dll\\AKokyB.dll, loader C:\\tmp8nnuu52b\\bin\\iyFifwHZ.exe\r\n2023-12-19 11:44:54,412 [root] DEBUG: Loader: Injecting process 616 with C:\\tmp8nnuu52b\\dll\\AKokyB.dll.\r\n2023-12-19 11:44:54,443 [root] DEBUG: 616: Python path set to 'C:\\Program Files (x86)\\Python312-32'.\r\n2023-12-19 11:44:54,443 [root] DEBUG: 616: TLS secret dump mode enabled.\r\n2023-12-19 11:44:54,443 [root] INFO: Disabling sleep skipping.\r\n2023-12-19 11:44:54,459 [root] DEBUG: 616: InternalYaraScan: Scanning 0x00007FFCD3930000, size 0x1f4542\r\n2023-12-19 11:44:54,475 [root] DEBUG: 616: InternalYaraScan hit: RtlInsertInvertedFunctionTable\r\n2023-12-19 11:44:54,475 [root] DEBUG: 616: RtlInsertInvertedFunctionTable 0x00007FFCD394090E, LdrpInvertedFunctionTableSRWLock 0x00007FFCD3A9B4F0\r\n2023-12-19 11:44:54,490 [root] DEBUG: 616: Monitor initialised: 64-bit capemon loaded in process 616 at 0x00007FFC99A60000, thread 3668, image base 0x00007FF63CB40000, stack from 0x000000B33BC74000-0x000000B33BC80000\r\n2023-12-19 11:44:54,490 [root] DEBUG: 616: Commandline: C:\\Windows\\system32\\lsass.exe\r\n2023-12-19 11:44:54,506 [root] DEBUG: 616: Syscall hook installed, syscall logging level 1\r\n2023-12-19 11:44:54,506 [root] DEBUG: InjectDllViaThread: Successfully injected Dll into process via RtlCreateUserThread.\r\n2023-12-19 11:44:54,506 [root] DEBUG: Successfully injected DLL C:\\tmp8nnuu52b\\dll\\AKokyB.dll.\r\n2023-12-19 11:44:54,524 [lib.api.process] INFO: Injected into 64-bit process with pid 616\r\n2023-12-19 11:44:54,524 [root] DEBUG: Started auxiliary module \"TLSDumpMasterSecrets\"\r\n2023-12-19 11:44:54,524 [root] DEBUG: Started auxiliary module TLSDumpMasterSecrets\r\n2023-12-19 11:44:54,524 [root] DEBUG: Initialized auxiliary module \"Usage\"\r\n2023-12-19 11:44:54,524 [root] DEBUG: Trying to start auxiliary module \"Usage\"...\r\n2023-12-19 11:44:54,524 [root] DEBUG: Started auxiliary module \"Usage\"\r\n2023-12-19 11:44:54,524 [root] DEBUG: Started auxiliary module Usage\r\n2023-12-19 11:44:54,537 [root] DEBUG: Initialized auxiliary module \"During_script\"\r\n2023-12-19 11:44:54,537 [root] DEBUG: Trying to start auxiliary module \"During_script\"...\r\n2023-12-19 11:44:54,537 [root] DEBUG: Started auxiliary module \"During_script\"\r\n2023-12-19 11:44:54,537 [root] DEBUG: Started auxiliary module During_script\r\n2023-12-19 11:45:00,680 [root] INFO: Restarting WMI Service\r\n2023-12-19 11:45:02,761 [lib.common.zip_utils] DEBUG: Archive is encrypted, using default password value: infected\r\n2023-12-19 11:45:02,777 [lib.common.zip_utils] DEBUG: ['C:\\\\Program Files\\\\7-Zip\\\\7z.exe', 'l', 'C:\\\\Users\\\\John\\\\AppData\\\\Local\\\\Temp\\\\c165d80706ccb48e3d5f.zip']\r\n2023-12-19 11:45:02,823 [lib.common.zip_utils] DEBUG: ['C:\\\\Program Files\\\\7-Zip\\\\7z.exe', 'x', '-p', '-y', '-oC:\\\\Users\\\\John\\\\AppData\\\\Local\\\\Temp', 'C:\\\\Users\\\\John\\\\AppData\\\\Local\\\\Temp\\\\c165d80706ccb48e3d5f.zip']\r\n2023-12-19 11:45:02,839 [lib.common.zip_utils] DEBUG: b'\\r\\n7-Zip 23.01 (x64) : Copyright (c) 1999-2023 Igor Pavlov : 2023-06-20\\r\\n\\r\\nScanning the drive for archives:\\r\\n1 file, 111366 bytes (109 KiB)\\r\\n\\r\\nExtracting archive: C:\\\\Users\\\\John\\\\AppData\\\\Local\\\\Temp\\\\c165d80706ccb48e3d5f.zip\\r\\n--\\r\\nPath = C:\\\\Users\\\\John\\\\AppData\\\\Local\\\\Temp\\\\c165d80706ccb48e3d5f.zip\\r\\nType = zip\\r\\nPhysical Size = 111366\\r\\n\\r\\n\\r\\nSub items Errors: 1\\r\\n\\r\\nArchives with Errors: 1\\r\\n\\r\\nSub items Errors: 1\\r\\n' b'ERROR: Wrong password : c165d80706ccb48e3d5f77a51068771dec247362a8726588c563f335a3df5b6e.exe\\r\\n'\r\n2023-12-19 11:45:02,839 [lib.common.zip_utils] DEBUG: ['C:\\\\Program Files\\\\7-Zip\\\\7z.exe', 'x', '-pinfected', '-y', '-oC:\\\\Users\\\\John\\\\AppData\\\\Local\\\\Temp', 'C:\\\\Users\\\\John\\\\AppData\\\\Local\\\\Temp\\\\c165d80706ccb48e3d5f.zip']\r\n2023-12-19 11:45:02,870 [lib.common.zip_utils] DEBUG: b'\\r\\n7-Zip 23.01 (x64) : Copyright (c) 1999-2023 Igor Pavlov : 2023-06-20\\r\\n\\r\\nScanning the drive for archives:\\r\\n1 file, 111366 bytes (109 KiB)\\r\\n\\r\\nExtracting archive: C:\\\\Users\\\\John\\\\AppData\\\\Local\\\\Temp\\\\c165d80706ccb48e3d5f.zip\\r\\n--\\r\\nPath = C:\\\\Users\\\\John\\\\AppData\\\\Local\\\\Temp\\\\c165d80706ccb48e3d5f.zip\\r\\nType = zip\\r\\nPhysical Size = 111366\\r\\n\\r\\nEverything is Ok\\r\\n\\r\\nSize:       249856\\r\\nCompressed: 111366\\r\\n' b''\r\n2023-12-19 11:45:02,870 [modules.packages.zip] DEBUG: Missing file option, auto executing: ['c165d80706ccb48e3d5f77a51068771dec247362a8726588c563f335a3df5b6e.exe']\r\n2023-12-19 11:45:02,870 [modules.packages.zip] DEBUG: Interesting file_name: \"c165d80706ccb48e3d5f77a51068771dec247362a8726588c563f335a3df5b6e.exe\"\r\n2023-12-19 11:45:02,870 [lib.core.compound] INFO: C:\\Users\\John\\AppData\\Local\\Temp already exists, skipping creation\r\n2023-12-19 11:45:02,886 [lib.api.process] INFO: Successfully executed process from path \"C:\\Users\\John\\AppData\\Local\\Temp\\c165d80706ccb48e3d5f77a51068771dec247362a8726588c563f335a3df5b6e.exe\" with arguments \"\" with pid 6084\r\n2023-12-19 11:45:02,886 [lib.api.process] INFO: Monitor config for process 6084: C:\\tmp8nnuu52b\\dll\\6084.ini\r\n2023-12-19 11:45:02,901 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmp8nnuu52b\\dll\\AKokyB.dll, loader C:\\tmp8nnuu52b\\bin\\iyFifwHZ.exe\r\n2023-12-19 11:45:02,917 [root] DEBUG: Loader: Injecting process 6084 (thread 6944) with C:\\tmp8nnuu52b\\dll\\AKokyB.dll.\r\n2023-12-19 11:45:02,917 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\r\n2023-12-19 11:45:02,917 [root] DEBUG: Successfully injected DLL C:\\tmp8nnuu52b\\dll\\AKokyB.dll.\r\n2023-12-19 11:45:02,933 [lib.api.process] INFO: Injected into 64-bit process with pid 6084\r\n2023-12-19 11:45:04,948 [lib.api.process] INFO: Successfully resumed process with pid 6084\r\n2023-12-19 11:45:04,964 [root] DEBUG: 6084: Python path set to 'C:\\Program Files (x86)\\Python312-32'.\r\n2023-12-19 11:45:04,964 [root] DEBUG: 6084: Dropped file limit defaulting to 100.\r\n2023-12-19 11:45:04,979 [root] DEBUG: 6084: YaraInit: Compiled 32 rule files\r\n2023-12-19 11:45:04,995 [root] DEBUG: 6084: YaraInit: Compiled rules saved to file C:\\tmp8nnuu52b\\data\\yara\\capemon.yac\r\n2023-12-19 11:45:04,995 [root] DEBUG: 6084: InternalYaraScan: Scanning 0x00007FFCD3930000, size 0x1f4542\r\n2023-12-19 11:45:05,011 [root] DEBUG: 6084: InternalYaraScan hit: Syscall\r\n2023-12-19 11:45:05,011 [root] DEBUG: 6084: InternalYaraScan hit: RtlInsertInvertedFunctionTable\r\n2023-12-19 11:45:05,011 [root] DEBUG: 6084: RtlInsertInvertedFunctionTable 0x00007FFCD394090E, LdrpInvertedFunctionTableSRWLock 0x00007FFCD3A9B4F0\r\n2023-12-19 11:45:05,011 [root] DEBUG: 6084: YaraScan: Scanning 0x00007FF66AA50000, size 0x41658\r\n2023-12-19 11:45:05,026 [root] DEBUG: 6084: AmsiDumper initialised.\r\n2023-12-19 11:45:05,026 [root] DEBUG: 6084: Monitor initialised: 64-bit capemon loaded in process 6084 at 0x00007FFC99A60000, thread 6944, image base 0x00007FF66AA50000, stack from 0x000000E5E59A5000-0x000000E5E59B0000\r\n2023-12-19 11:45:05,026 [root] DEBUG: 6084: Commandline: \"C:\\Users\\John\\AppData\\Local\\Temp\\c165d80706ccb48e3d5f77a51068771dec247362a8726588c563f335a3df5b6e.exe\"\r\n2023-12-19 11:45:05,042 [root] DEBUG: 6084: hook_api: Warning - CoCreateInstance export address 0x00007FFCD24642EB differs from GetProcAddress -> 0x00007FFCD2A8C030 (combase.dll::0x2c030)\r\n2023-12-19 11:45:05,042 [root] DEBUG: 6084: hook_api: Warning - CoCreateInstanceEx export address 0x00007FFCD246432A differs from GetProcAddress -> 0x00007FFCD2B27B60 (combase.dll::0xc7b60)\r\n2023-12-19 11:45:05,058 [root] DEBUG: 6084: hook_api: Warning - CoGetClassObject export address 0x00007FFCD24648BA differs from GetProcAddress -> 0x00007FFCD2ABB340 (combase.dll::0x5b340)\r\n2023-12-19 11:45:05,058 [root] DEBUG: 6084: hook_api: Warning - UpdateProcThreadAttribute export address 0x00007FFCD36574B4 differs from GetProcAddress -> 0x00007FFCD13F4A30 (KERNELBASE.dll::0x74a30)\r\n2023-12-19 11:45:05,073 [root] DEBUG: 6084: hook_api: Warning - CLSIDFromProgID export address 0x00007FFCD2463B36 differs from GetProcAddress -> 0x00007FFCD2AF8380 (combase.dll::0x98380)\r\n2023-12-19 11:45:05,089 [root] DEBUG: 6084: Syscall hook installed, syscall logging level 1\r\n2023-12-19 11:45:05,104 [root] DEBUG: 6084: RestoreHeaders: Restored original import table.\r\n2023-12-19 11:45:05,104 [root] INFO: Loaded monitor into process with pid 6084\r\n2023-12-19 11:45:05,104 [root] DEBUG: 6084: caller_dispatch: Added region at 0x00007FF66AA50000 to tracked regions list (kernel32::LoadLibraryExW returns to 0x00007FF66AA730C5, thread 6944).\r\n2023-12-19 11:45:05,104 [root] DEBUG: 6084: YaraScan: Scanning 0x00007FF66AA50000, size 0x41658\r\n2023-12-19 11:45:05,120 [root] DEBUG: 6084: ProcessImageBase: Main module image at 0x00007FF66AA50000 unmodified.\r\n2023-12-19 11:45:05,120 [root] DEBUG: 6084: DLL loaded at 0x00007FFCD0920000: C:\\Windows\\SYSTEM32\\CRYPTSP (0x18000 bytes).\r\n2023-12-19 11:45:05,120 [root] DEBUG: 6084: DLL loaded at 0x00007FFCD00B0000: C:\\Windows\\system32\\rsaenh (0x34000 bytes).\r\n2023-12-19 11:45:05,136 [root] DEBUG: 6084: DLL loaded at 0x00007FFCD17B0000: C:\\Windows\\System32\\bcryptPrimitives (0x83000 bytes).\r\n2023-12-19 11:45:05,136 [root] DEBUG: 6084: DLL loaded at 0x00007FFCD0A40000: C:\\Windows\\SYSTEM32\\ncrypt (0x27000 bytes).\r\n2023-12-19 11:45:05,136 [root] DEBUG: 6084: DLL loaded at 0x00007FFCD2EB0000: C:\\Windows\\System32\\OLEAUT32 (0xcd000 bytes).\r\n2023-12-19 11:45:05,151 [root] DEBUG: 6084: DLL loaded at 0x00007FFCC7620000: C:\\Windows\\SYSTEM32\\Rstrtmgr (0x39000 bytes).\r\n2023-12-19 11:45:05,151 [root] DEBUG: 6084: DLL loaded at 0x00007FFCD0A00000: C:\\Windows\\SYSTEM32\\NTASN1 (0x3b000 bytes).\r\n2023-12-19 11:45:05,151 [root] DEBUG: 6084: hook_api: NetUserGetInfo address 0x00007FFCC2450E7E obtained via GetExportAddress\r\n2023-12-19 11:45:05,151 [root] DEBUG: 6084: hook_api: NetGetJoinInformation address 0x00007FFCC244FED3 obtained via GetExportAddress\r\n2023-12-19 11:45:05,167 [root] DEBUG: 6084: hook_api: NetUserGetLocalGroups address 0x00007FFCC2450EAA obtained via GetExportAddress\r\n2023-12-19 11:45:05,167 [root] DEBUG: 6084: hook_api: DsEnumerateDomainTrustsW address 0x00007FFCC244E93F obtained via GetExportAddress\r\n2023-12-19 11:45:05,167 [root] DEBUG: 6084: DLL loaded at 0x00007FFCC2440000: C:\\Windows\\SYSTEM32\\Netapi32 (0x18000 bytes).\r\n2023-12-19 11:45:05,167 [root] DEBUG: 6084: DLL loaded at 0x00007FFCD0420000: C:\\Windows\\SYSTEM32\\Iphlpapi (0x3b000 bytes).\r\n2023-12-19 11:45:05,183 [root] DEBUG: 6084: DLL loaded at 0x00007FFCD1B90000: C:\\Windows\\System32\\Shell32 (0x73f000 bytes).\r\n2023-12-19 11:45:05,183 [root] DEBUG: 6084: MapSectionViewHandler: Added section view with handle 0x230 and local view 0x0000029C396E0000 to global list.\r\n2023-12-19 11:45:05,214 [root] DEBUG: 6084: api-rate-cap: LdrGetProcedureAddressForCaller hook disabled due to rate\r\n2023-12-19 11:45:05,214 [root] DEBUG: 6084: MapSectionViewHandler: Added section view with handle 0x238 and local view 0x0000029C37320000 to global list.\r\n2023-12-19 11:45:05,229 [root] DEBUG: 6084: MapSectionViewHandler: Added section view with handle 0x240 and local view 0x0000029C397A0000 to global list.\r\n2023-12-19 11:45:05,245 [root] DEBUG: 6084: MapSectionViewHandler: Added section view with handle 0x248 and local view 0x0000029C37390000 to global list.\r\n2023-12-19 11:45:05,261 [root] DEBUG: 6084: MapSectionViewHandler: Added section view with handle 0x250 and local view 0x0000029C39850000 to global list.\r\n2023-12-19 11:45:05,276 [root] DEBUG: 6084: MapSectionViewHandler: Added section view with handle 0x258 and local view 0x0000029C39980000 to global list.\r\n2023-12-19 11:45:05,276 [root] DEBUG: 6084: MapSectionViewHandler: Added section view with handle 0x260 and local view 0x0000029C374E0000 to global list.\r\n2023-12-19 11:45:05,276 [root] DEBUG: 6084: MapSectionViewHandler: Added section view with handle 0x268 and local view 0x0000029C37500000 to global list.\r\n2023-12-19 11:45:05,292 [root] DEBUG: 6084: MapSectionViewHandler: Added section view with handle 0x270 and local view 0x0000029C38A80000 to global list.\r\n2023-12-19 11:45:05,292 [root] DEBUG: 6084: MapSectionViewHandler: Added section view with handle 0x274 and local view 0x00007FFCD3080000 to global list.\r\n2023-12-19 11:45:05,292 [root] DEBUG: 6084: DLL loaded at 0x00007FFCD3080000: C:\\Windows\\System32\\SHCORE (0xad000 bytes).\r\n2023-12-19 11:45:05,307 [root] DEBUG: 6084: MapSectionViewHandler: Added section view with handle 0x280 and local view 0x00007FFCC9E20000 to global list.\r\n2023-12-19 11:45:05,307 [root] DEBUG: 6084: DLL loaded at 0x00007FFCC9E20000: C:\\Windows\\SYSTEM32\\SHUNIMPL (0xa000 bytes).\r\n2023-12-19 11:45:05,307 [root] DEBUG: 6084: MapSectionViewHandler: Added section view with handle 0x284 and local view 0x00007FFCC9E20000 to global list.\r\n2023-12-19 11:45:05,307 [root] DEBUG: 6084: DLL loaded at 0x00007FFCC9E20000: C:\\Windows\\SYSTEM32\\SHUNIMPL (0xa000 bytes).\r\n2023-12-19 11:45:05,323 [root] DEBUG: 6084: DLL loaded at 0x00007FFCC9E20000: C:\\Windows\\SYSTEM32\\SHUNIMPL (0xa000 bytes).\r\n2023-12-19 11:45:05,323 [root] DEBUG: 6084: MapSectionViewHandler: Updated local view to 0x0000029C39AB0000 for section view with handle 0x280.\r\n2023-12-19 11:45:05,354 [root] DEBUG: 6084: MapSectionViewHandler: Updated local view to 0x0000029C3A200000 for section view with handle 0x284.\r\n2023-12-19 11:45:05,370 [root] DEBUG: 6084: RtlDispatchException: skipped instruction at 0x00007FF66AA51D68 writing to ntdll (0x00007FFCD39FC9E0 - 0x00000000000CC9E0)\r\n2023-12-19 11:45:05,448 [root] INFO: Disabling sleep skipping.\r\n2023-12-19 11:45:05,464 [root] DEBUG: 6084: MapSectionViewHandler: Added section view with handle 0x2ac and local view 0x0000029C38AE0000 to global list.\r\n2023-12-19 11:45:05,464 [root] DEBUG: 6084: DLL loaded at 0x00007FFCD0B60000: C:\\Windows\\SYSTEM32\\MSASN1 (0x12000 bytes).\r\n2023-12-19 11:45:05,464 [root] DEBUG: 6084: MapSectionViewHandler: Added section view with handle 0x2bc and local view 0x00007FFCCEF70000 to global list.\r\n2023-12-19 11:45:05,479 [root] DEBUG: 6084: DLL loaded at 0x00007FFCCEF70000: C:\\Windows\\SYSTEM32\\kernel.appcore (0x12000 bytes).\r\n2023-12-19 11:45:05,479 [root] DEBUG: 6084: DLL loaded at 0x00007FFCD3710000: C:\\Windows\\System32\\clbcatq (0xa9000 bytes).\r\n2023-12-19 11:45:05,495 [root] DEBUG: 6084: DLL loaded at 0x00007FFCC7950000: C:\\Windows\\SYSTEM32\\wbemcomn (0x92000 bytes).\r\n2023-12-19 11:45:05,495 [root] DEBUG: 6084: DLL loaded at 0x00007FFCC79F0000: C:\\Windows\\system32\\wbem\\wbemprox (0x11000 bytes).\r\n2023-12-19 11:45:05,513 [root] DEBUG: 6084: DLL loaded at 0x00007FFCC4600000: C:\\Windows\\system32\\wbem\\fastprox (0x10b000 bytes).\r\n2023-12-19 11:45:05,557 [root] DEBUG: 6084: DLL loaded at 0x00007FFCC4560000: C:\\Windows\\system32\\wbem\\wbemsvc (0x14000 bytes).\r\n2023-12-19 11:45:07,122 [root] DEBUG: 6084: DLL loaded at 0x00007FFCC3930000: C:\\Windows\\SYSTEM32\\amsi (0x19000 bytes).\r\n2023-12-19 11:45:07,122 [root] DEBUG: 6084: MapSectionViewHandler: Added section view with handle 0x378 and local view 0x00007FFCD0F10000 to global list.\r\n2023-12-19 11:45:07,137 [root] DEBUG: 6084: DLL loaded at 0x00007FFCD0F10000: C:\\Windows\\SYSTEM32\\USERENV (0x2e000 bytes).\r\n2023-12-19 11:45:07,137 [root] DEBUG: 6084: MapSectionViewHandler: Added section view with handle 0x37c and local view 0x00007FFCD0F90000 to global list.\r\n2023-12-19 11:45:07,153 [root] DEBUG: 6084: DLL loaded at 0x00007FFCD0F90000: C:\\Windows\\SYSTEM32\\profapi (0x1f000 bytes).\r\n2023-12-19 11:45:09,080 [root] DEBUG: 6084: DLL loaded at 0x00007FFCD0730000: C:\\Windows\\system32\\mswsock (0x6a000 bytes).\r\n2023-12-19 11:45:09,095 [root] DEBUG: 6084: DLL loaded at 0x00007FFCC2CC0000: C:\\Windows\\system32\\napinsp (0x17000 bytes).\r\n2023-12-19 11:45:09,095 [root] DEBUG: 6084: DLL loaded at 0x00007FFCC2B10000: C:\\Windows\\system32\\pnrpnsp (0x1b000 bytes).\r\n2023-12-19 11:45:09,111 [root] DEBUG: 6084: DLL loaded at 0x00007FFCBE3C0000: C:\\Windows\\system32\\wshbth (0x15000 bytes).\r\n2023-12-19 11:45:09,111 [root] DEBUG: 6084: DLL loaded at 0x00007FFCCCA30000: C:\\Windows\\system32\\NLAapi (0x1d000 bytes).\r\n2023-12-19 11:45:09,111 [root] DEBUG: 6084: DLL loaded at 0x00007FFCD0470000: C:\\Windows\\SYSTEM32\\DNSAPI (0xcc000 bytes).\r\n2023-12-19 11:45:09,111 [root] DEBUG: 6084: DLL loaded at 0x00007FFCD2DC0000: C:\\Windows\\System32\\NSI (0x8000 bytes).\r\n2023-12-19 11:45:09,126 [root] DEBUG: 6084: DLL loaded at 0x00007FFCC2AF0000: C:\\Windows\\System32\\winrnr (0x12000 bytes).\r\n2023-12-19 11:45:09,142 [root] DEBUG: 6084: DLL loaded at 0x00007FFCC8CF0000: C:\\Windows\\System32\\fwpuclnt (0x7f000 bytes).\r\n2023-12-19 11:45:09,142 [root] DEBUG: 6084: DLL loaded at 0x00007FFCC8670000: C:\\Windows\\System32\\rasadhlp (0xa000 bytes).\r\n2023-12-19 11:45:10,159 [root] DEBUG: 6084: DLL loaded at 0x00007FFCC5630000: C:\\Windows\\SYSTEM32\\SRVCLI (0x28000 bytes).\r\n2023-12-19 11:45:10,191 [root] DEBUG: 616: DLL loaded at 0x00007FFCC9CF0000: C:\\Windows\\SYSTEM32\\dhcpcsvc6 (0x17000 bytes).\r\n2023-12-19 11:45:10,191 [root] DEBUG: 616: DLL loaded at 0x00007FFCC9CD0000: C:\\Windows\\SYSTEM32\\dhcpcsvc (0x1d000 bytes).\r\n2023-12-19 11:45:10,222 [root] DEBUG: 6084: DLL loaded at 0x00007FFCC2410000: C:\\Windows\\SYSTEM32\\cscapi (0x12000 bytes).\r\n2023-12-19 11:45:10,222 [root] DEBUG: 6084: DLL loaded at 0x00007FFCD0460000: C:\\Windows\\SYSTEM32\\NETUTILS (0xc000 bytes).\r\n2023-12-19 11:45:10,488 [root] INFO: Added new file to list with pid None and path C:\\DumpStack.log\r\n2023-12-19 11:45:10,550 [root] INFO: Added new file to list with pid None and path C:\\ProgramData\\ntuser.pol\r\n2023-12-19 11:45:10,597 [root] INFO: Added new file to list with pid None and path C:\\Program Files\\7-Zip\\7-zip.chm\r\n2023-12-19 11:45:10,613 [root] INFO: Added new file to list with pid None and path C:\\Program Files\\7-Zip\\7z.sfx\r\n2023-12-19 11:45:10,644 [root] INFO: Added new file to list with pid None and path C:\\Program Files\\7-Zip\\7zCon.sfx\r\n2023-12-19 11:45:10,659 [root] INFO: Added new file to list with pid None and path C:\\Program Files\\7-Zip\\History.txt\r\n2023-12-19 11:45:10,691 [root] INFO: Added new file to list with pid None and path C:\\Program Files\\7-Zip\\License.txt\r\n2023-12-19 11:45:10,706 [root] INFO: Added new file to list with pid None and path C:\\Program Files\\7-Zip\\readme.txt\r\n2023-12-19 11:45:10,737 [root] INFO: Added new file to list with pid None and path C:\\Program Files (x86)\\Python312-32\\LICENSE.txt\r\n2023-12-19 11:45:10,769 [root] INFO: Added new file to list with pid None and path C:\\Program Files (x86)\\Python312-32\\NEWS.txt\r\n2023-12-19 11:45:10,800 [root] INFO: Added new file to list with pid None and path C:\\ProgramData\\regid.1991-06.com.microsoft\\regid.1991-06.com.microsoft_Windows-10-Pro.swidtag\r\n2023-12-19 11:45:10,831 [root] INFO: Added new file to list with pid None and path C:\\Users\\Default\\NTUSER.DAT\r\n2023-12-19 11:45:10,863 [root] INFO: Added new file to list with pid None and path C:\\Users\\Default\\NTUSER.DAT.LOG1\r\n2023-12-19 11:45:10,878 [root] INFO: Added new file to list with pid None and path C:\\Users\\Default\\NTUSER.DAT.LOG2\r\n2023-12-19 11:45:10,894 [root] INFO: Added new file to list with pid None and path C:\\Users\\Default\\NTUSER.DAT{53b39e88-18c4-11ea-a811-000d3aa4692b}.TM.blf\r\n2023-12-19 11:45:10,925 [root] INFO: Added new file to list with pid None and path C:\\Users\\Default\\NTUSER.DAT{53b39e88-18c4-11ea-a811-000d3aa4692b}.TMContainer00000000000000000001.regtrans-ms\r\n2023-12-19 11:45:10,940 [root] INFO: Added new file to list with pid None and path C:\\Users\\Default\\NTUSER.DAT{53b39e88-18c4-11ea-a811-000d3aa4692b}.TMContainer00000000000000000002.regtrans-ms\r\n2023-12-19 11:45:10,956 [root] INFO: Added new file to list with pid None and path C:\\Users\\John\\agent.py\r\n2023-12-19 11:45:10,988 [root] INFO: Added new file to list with pid None and path C:\\Program Files\\7-Zip\\Lang\\af.txt\r\n2023-12-19 11:45:11,019 [root] INFO: Added new file to list with pid None and path C:\\Program Files\\7-Zip\\Lang\\an.txt\r\n2023-12-19 11:45:11,019 [root] INFO: Added new file to list with pid None and path C:\\Program Files\\7-Zip\\Lang\\ar.txt\r\n2023-12-19 11:45:11,050 [root] INFO: Added new file to list with pid None and path C:\\Program Files\\7-Zip\\Lang\\ast.txt\r\n2023-12-19 11:45:11,050 [root] INFO: Added new file to list with pid None and path C:\\Program Files\\7-Zip\\Lang\\az.txt\r\n2023-12-19 11:45:11,066 [root] INFO: Added new file to list with pid None and path C:\\Program Files\\7-Zip\\Lang\\ba.txt\r\n2023-12-19 11:45:11,081 [root] INFO: Added new file to list with pid None and path C:\\Program Files\\7-Zip\\Lang\\be.txt\r\n2023-12-19 11:45:11,097 [root] INFO: Added new file to list with pid None and path C:\\Program Files\\7-Zip\\Lang\\bg.txt\r\n2023-12-19 11:45:11,113 [root] INFO: Added new file to list with pid None and path C:\\Program Files\\7-Zip\\Lang\\bn.txt\r\n2023-12-19 11:45:11,128 [root] INFO: Added new file to list with pid None and path C:\\Program Files\\7-Zip\\Lang\\br.txt\r\n2023-12-19 11:45:11,144 [root] INFO: Added new file to list with pid None and path C:\\Program Files\\7-Zip\\Lang\\ca.txt\r\n2023-12-19 11:45:11,160 [root] INFO: Added new file to list with pid None and path C:\\Program Files\\7-Zip\\Lang\\co.txt\r\n2023-12-19 11:45:11,224 [root] INFO: Added new file to list with pid None and path C:\\Program Files\\7-Zip\\Lang\\cs.txt\r\n2023-12-19 11:45:11,255 [root] INFO: Added new file to list with pid None and path C:\\Program Files\\7-Zip\\Lang\\cy.txt\r\n2023-12-19 11:45:11,287 [root] INFO: Added new file to list with pid None and path C:\\Program Files\\7-Zip\\Lang\\da.txt\r\n2023-12-19 11:45:11,302 [root] INFO: Added new file to list with pid None and path C:\\Program Files\\7-Zip\\Lang\\de.txt\r\n2023-12-19 11:45:11,318 [root] INFO: Added new file to list with pid None and path C:\\Program Files\\7-Zip\\Lang\\el.txt\r\n2023-12-19 11:45:11,334 [root] INFO: Added new file to list with pid None and path C:\\Program Files\\7-Zip\\Lang\\en.ttt\r\n2023-12-19 11:45:11,349 [root] INFO: Added new file to list with pid None and path C:\\Program Files\\7-Zip\\Lang\\eo.txt\r\n2023-12-19 11:45:11,365 [root] INFO: Added new file to list with pid None and path C:\\Program Files\\7-Zip\\Lang\\es.txt\r\n2023-12-19 11:45:11,380 [root] INFO: Added new file to list with pid None and path C:\\Program Files\\7-Zip\\Lang\\et.txt\r\n2023-12-19 11:45:11,396 [root] INFO: Added new file to list with pid None and path C:\\Program Files\\7-Zip\\Lang\\eu.txt\r\n2023-12-19 11:45:11,412 [root] INFO: Added new file to list with pid None and path C:\\Program Files\\7-Zip\\Lang\\ext.txt\r\n2023-12-19 11:45:11,427 [root] INFO: Added new file to list with pid None and path C:\\Program Files\\7-Zip\\Lang\\fa.txt\r\n2023-12-19 11:45:11,443 [root] INFO: Added new file to list with pid None and path C:\\Program Files\\7-Zip\\Lang\\fi.txt\r\n2023-12-19 11:45:11,474 [root] INFO: Added new file to list with pid None and path C:\\Program Files\\7-Zip\\Lang\\fr.txt\r\n2023-12-19 11:45:11,490 [root] INFO: Added new file to list with pid None and path C:\\Program Files\\7-Zip\\Lang\\fur.txt\r\n2023-12-19 11:45:11,506 [root] INFO: Added new file to list with pid None and path C:\\Program Files\\7-Zip\\Lang\\fy.txt\r\n2023-12-19 11:45:11,536 [root] INFO: Added new file to list with pid None and path C:\\Program Files\\7-Zip\\Lang\\ga.txt\r\n2023-12-19 11:45:11,552 [root] INFO: Added new file to list with pid None and path C:\\Program Files\\7-Zip\\Lang\\gl.txt\r\n2023-12-19 11:45:11,568 [root] INFO: Added new file to list with pid None and path C:\\Program Files\\7-Zip\\Lang\\gu.txt\r\n2023-12-19 11:45:11,599 [root] INFO: Added new file to list with pid None and path C:\\Program Files\\7-Zip\\Lang\\he.txt\r\n2023-12-19 11:45:11,599 [root] DEBUG: 6084: Dropped file limit reached.\r\n2023-12-19 11:45:12,426 [root] DEBUG: 6084: DLL loaded at 0x00007FFCCEA70000: C:\\Windows\\system32\\uxtheme (0x9e000 bytes).\r\n2023-12-19 11:45:16,765 [root] DEBUG: 6084: OpenProcessHandler: Injection info created for Pid 6040, handle 0x9cc.\r\n2023-12-19 11:45:16,765 [root] DEBUG: 6084: OpenProcessHandler: Image base for process 6040 (handle 0x9cc): 0x00007FF792910000.\r\n2023-12-19 11:45:16,781 [root] DEBUG: 6084: MapSectionViewHandler: Added section view with handle 0x9bc and local view 0x0000029C3C370000 to global list.\r\n2023-12-19 11:45:16,796 [root] DEBUG: 6084: OpenProcessHandler: Injection info created for Pid 3392, handle 0x9a8.\r\n2023-12-19 11:45:16,796 [root] DEBUG: 6084: OpenProcessHandler: Image base for process 3392 (handle 0x9a8): 0x00007FF792910000.\r\n2023-12-19 11:45:16,812 [root] DEBUG: 6084: OpenProcessHandler: Injection info created for Pid 976, handle 0x8c4.\r\n2023-12-19 11:45:16,812 [root] DEBUG: 6084: OpenProcessHandler: Image base for process 976 (handle 0x8c4): 0x00007FF792910000.\r\n2023-12-19 11:45:16,812 [root] DEBUG: 6084: OpenProcessHandler: Injection info created for Pid 6684, handle 0x8bc.\r\n2023-12-19 11:45:16,827 [root] DEBUG: 6084: OpenProcessHandler: Image base for process 6684 (handle 0x8bc): 0x00007FF792910000.\r\n2023-12-19 11:45:16,827 [root] DEBUG: 6084: OpenProcessHandler: Injection info created for Pid 6708, handle 0x9ac.\r\n2023-12-19 11:45:16,827 [root] DEBUG: 6084: OpenProcessHandler: Image base for process 6708 (handle 0x9ac): 0x00007FF792910000.\r\n2023-12-19 11:45:16,843 [root] DEBUG: 6084: OpenProcessHandler: Injection info created for Pid 4724, handle 0x8b8.\r\n2023-12-19 11:45:16,843 [root] DEBUG: 6084: OpenProcessHandler: Image base for process 4724 (handle 0x8b8): 0x00007FF792910000.\r\n2023-12-19 11:45:32,760 [root] INFO: Process with pid 3392 has terminated\r\n2023-12-19 11:45:32,775 [root] INFO: Process with pid 976 has terminated\r\n2023-12-19 11:45:32,775 [root] INFO: Process with pid 6684 has terminated\r\n2023-12-19 11:45:32,775 [root] INFO: Process with pid 6708 has terminated\r\n2023-12-19 11:45:32,775 [root] INFO: Process with pid 4724 has terminated\r\n2023-12-19 11:45:32,806 [root] DEBUG: 6084: MapSectionViewHandler: Added section view with handle 0x8bc and local view 0x0000029C3C370000 to global list.\r\n2023-12-19 11:45:35,940 [root] DEBUG: 6084: api-cap: NtSetInformationFile hook disabled due to count: 5000\r\n2023-12-19 11:45:36,643 [root] DEBUG: 6084: api-cap: NtQueryInformationFile hook disabled due to count: 5000\r\n2023-12-19 11:45:40,147 [root] DEBUG: 6084: api-cap: NtWriteFile hook disabled due to count: 5000\r\n2023-12-19 11:45:41,238 [root] DEBUG: 6084: api-cap: NtClose hook disabled due to count: 5000\r\n2023-12-19 11:45:41,519 [root] DEBUG: 6084: api-cap: NtCreateFile hook disabled due to count: 5000\r\n2023-12-19 11:45:42,381 [root] DEBUG: 6084: api-cap: NtReadFile hook disabled due to count: 5000\r\n2023-12-19 11:45:44,737 [root] DEBUG: 6084: api-cap: CryptGenRandom hook disabled due to count: 5000\r\n2023-12-19 11:45:47,712 [root] DEBUG: 6084: api-cap: FindNextFileW hook disabled due to count: 5000\r\n```\r\n\r\n## cuckoo.conf\r\nThe only change on in the cuckoo.conf file from the `cuckoo.conf.default` file is the ip address of the results server, which I've set to the host only KVM network of `10.10.1.1` \r\n\r\n## kvm.conf\r\nNothing too much change in this file, only specifiy the analysis VM guest\r\n```\r\ncape@capev2:/opt/CAPEv2$ diff conf/cuckoo.conf conf/cuckoo.conf.default\r\n118c118\r\n< ip = 10.10.1.1\r\n---\r\n> ip = 192.168.1.1\r\n167c167\r\n< connection = postgresql://cape:SuperPuperSecret@localhost:5432/cape\r\n---\r\n> connection =\r\n180c180\r\n< default = 300\r\n---\r\n> default = 200\r\ncape@capev2:/opt/CAPEv2$ diff conf/kvm.conf conf/kvm.conf.default\r\n7c7\r\n< interface = virbr1\r\n---\r\n> interface = virbr0\r\n12c12\r\n< label = win10\r\n---\r\n> label = cuckoo1\r\n22c22\r\n< ip = 10.10.1.10\r\n---\r\n> ip = 192.168.122.105\r\n30c30\r\n< tags = win10\r\n---\r\n> # tags = winxp,acrobat_reader_6\r\n35c35\r\n< snapshot = win10_base\r\n---\r\n> # snapshot = Snapshot1\r\n63c63\r\n< arch = x64\r\n---\r\n> arch = x86\r\n```\r\n\r\n## auxiliary.conf\r\nOnly thing changed was turning off the sniffer, I think that was causing some issues.\r\n```\r\n[sniffer]\r\n# Enable or disable the use of an external sniffer (tcpdump) [yes/no].\r\nenabled = no\r\n```\r\n\nComment: Hello, sorry for delay, i was able to reproduce it, thank you for reporting it, fixed here https://github.com/kevoreilly/CAPEv2/commit/c972a9b631119afd6671ab6417852d629e596670 \r\n\r\nupdate and restart web service `systemctl restart cape-web`",
+  "Title: Adding utility to download parsers, to be used with cronjob\nBody: Addresses https://cccs.atlassian.net/browse/AL-2719\r\n\r\nTesting in production for a bit before making PR ready for review\nComment: Curious as to what this addresses, alas I cannot access that link...\nComment: > Curious as to what this addresses, alas I cannot access that link...\r\n\r\nIt's a method of downloading the latest parsers, without updating CAPE itself, similar to the `download_yara.py` utility\nComment: hmm... would not it be better to maybe move that out into the other repo?\r\n\r\nThat said I may be wrong, don't these often times require possible upgrades/updates when it comes to the depends, so may not work well? May be wrong on that bit though.\r\n\nComment: that was discussed, yes they might have extra deps, so user that uses this utility uses it on his own risk :)\nComment: Yes fair point, I'll move this utility as well as the `download_yara.py` utility to the community repo!\nComment: Community PR: https://github.com/CAPESandbox/community/pull/390",
+  "Title: Question regarding processing modules/parsers?\nBody: Hi, I have a new goal which is to implement/create a processing module/parser to be able to parse JSON data from samples that are being uploaded to Cape.\r\nI have added PE sieve as an auxiliary and my code is perfect. Now the only I must do is basically parse the 2 JSON reports it generates, and I want to parse the data into a HTML page.\r\n\r\n**That is okay, but my question is if the processing modules get run during the scan? If that is correct, can I make the parser JSON script to interact with the current working directory with Path.cwd(), look for the 2 JSON reports, parsing them, and can I upload the report of the parsing using upload_to_host to the analyses' folder?**\r\n\r\npe sieve auxiliary code:\r\n```\r\nimport time\r\nimport os\r\nimport logging\r\nimport subprocess\r\nfrom threading import Thread\r\nfrom pathlib import Path\r\nfrom lib.common.abstracts import Auxiliary\r\nfrom lib.common.results import upload_to_host\r\n\r\nlog = logging.getLogger(__name__)\r\n\r\nclass PESieve(Auxiliary, Thread):\r\n    def __init__(self, options, config):\r\n        Auxiliary.__init__(self, options, config)\r\n        Thread.__init__(self)\r\n        self.pesieve_path = \"C:\\\\Users\\\\CapeUser\\\\Desktop\\\\pesieve\\\\pe-sieve64.exe\"\r\n        self.pids = []  # List to track PIDs\r\n        self.processed_pids = set()\r\n\r\n    def add_pid(self, pid):\r\n        \"\"\"Add a PID to the tracking list.\"\"\"\r\n        if pid not in self.pids:\r\n            self.pids.append(pid)\r\n            log.info(\"Added PID: %s to PESieve\", pid)\r\n\r\n    def del_pid(self, pid):\r\n        \"\"\"Remove a PID from the tracking list.\"\"\"\r\n        if pid in self.pids:\r\n            self.pids.remove(pid)\r\n            log.info(\"Removed PID from PESieve\")\r\n\r\n    def run(self):\r\n        log.info(\"Running PE-sieve on PIDs\")\r\n       \r\n        cwd = Path.cwd()  # Get the current working directory\r\n\r\n        while True:\r\n            for pid in self.pids:\r\n                if pid in self.processed_pids:\r\n                    continue  # Skip this PID if it has already been processed\r\n\r\n                \r\n                process = subprocess.Popen([self.pesieve_path, '/pid', str(pid)], shell=False)\r\n                process.wait()\r\n                log.info(\"PE-sieve run on PID: %s\", pid)\r\n                self.processed_pids.add(pid)  # Mark this PID as processed\r\n                \r\n\r\n                time.sleep(15)  # Pause between processing each PID\r\n\r\n            if self.processed_pids == set(self.pids):\r\n                self.stop()  # Call stop here to stop the scan\r\n\r\n    def stop(self):\r\n        log.info(\"Stopping PE-sieve.\")\r\n        # Wait for all PE-sieve processes to finish\r\n    \r\n        for pid in self.pids:\r\n            # Find and upload the output files for each PID\r\n            self.upload_output_files(pid)\r\n        log.info(\"Uploaded files for all PIDs and stopped PE-sieve.\")\r\n\r\n    def upload_output_files(self, pid):\r\n        # Find the process-specific output directory within the current working directory\r\n        cwd = Path.cwd()  \r\n        process_dir_path = cwd / f'process_{pid}'\r\n\r\n        if process_dir_path.exists() and process_dir_path.is_dir():\r\n            files_in_folder = os.listdir(process_dir_path)\r\n            log.info(f\"Listing the files inside {process_dir_path}\")\r\n\r\n            for file_name in files_in_folder:\r\n                file_path = process_dir_path / file_name\r\n                if file_path.is_file():\r\n                    # Use the existing upload function, assuming it takes the file path and destination path\r\n                    upload_to_host(str(file_path), os.path.join(\"pesieve\", file_name))\r\n                    log.info(f\"Uploaded {file_name} from {process_dir_path} to CAPE\")\r\n        else:\r\n            log.error(f\"No output directory found for PID {pid}\")\r\n\r\n```\r\n\r\n\r\nI will give you screenshots and explain.\r\nHere the uploading of results before my PE sieve code gets them back to Cape they get stored here:\r\n![Screenshot 2023-12-12 183736](https://github.com/kevoreilly/CAPEv2/assets/119869815/a34e3613-594f-4666-988c-6f09b6f22070)\r\n\r\nThen in my PE sieve code I am looking for the cwd and I upload every file in \"pesieve\" in cape\r\n![Screenshot 2023-12-13 125414](https://github.com/kevoreilly/CAPEv2/assets/119869815/1e6790e8-e589-4852-9e97-5ebd184b2f06)\r\n\r\n\nComment: To answer your question specifically, no, processing is not done during the 'scan' - if by 'scan' you mean performed inside the Windows vm along with the analyzer code.\r\n\r\nProcessing is done on the server side, within processing modules. Processing is performed by a separate service 'cape-processor'.\r\n\r\nhttps://capev2.readthedocs.io/en/latest/customization/processing.html\r\n\nComment: alright thank you so much!\nComment: Hey so I added my custom processing module in Cape by checking every requirement there is:\r\n\r\nadded to processing.conf as pesieve_parser_json:\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/119869815/a2ef5e8e-4628-4e89-b850-882547a334f2)\r\n\r\nNow that you clarified that the processing modules do not get run during the scan then my task will be abit simplified.\r\nThe goal for the JSON parser is to parse the 2 files that my tool generates after a scan and the auxiliary stores it in storage/analyses/1/pesieve  - the folder is created by the resultserver\r\n![Screenshot 2023-12-19 153412](https://github.com/kevoreilly/CAPEv2/assets/119869815/1b37d550-6a81-463c-a675-bdb9dd4c875b)\r\n\r\nI even have a code already for the json parse which shouldnt be too difficult,\r\nNow I would like to parse the data , make it human readable and display it in HTML page.\r\nI want to store the result of the parsing data in the storage/analyses/1/\r\n\r\n```\r\nimport os\r\nimport json\r\nfrom lib.cuckoo.common.abstracts import Processing\r\nfrom lib.cuckoo.common.path_utils import path_exists\r\n\r\nclass PeSieveJSONParser(Processing):\r\n    \"\"\"Parse Pe-sieve JSON reports and save results in HTML format.\"\"\"\r\n\r\n    def run(self):\r\n        self.key = \"pesieve_reports\"\r\n        reports = {}\r\n\r\n        # Define paths to the JSON files\r\n        scan_report_path = os.path.join(self.analysis_path, \"pesieve\", \"scan_report.json\")\r\n        dump_report_path = os.path.join(self.analysis_path, \"pesieve\", \"dump_report.json\")\r\n\r\n        # Check and parse the scan report\r\n        if path_exists(scan_report_path):\r\n            with open(scan_report_path, 'r') as file:\r\n                reports[\"scan_report\"] = json.load(file)\r\n\r\n        # Check and parse the dump report\r\n        if path_exists(dump_report_path):\r\n            with open(dump_report_path, 'r') as file:\r\n                reports[\"dump_report\"] = json.load(file)\r\n\r\n        # Convert parsed data to HTML\r\n        html_report = self.data_to_html(reports)\r\n\r\n        # Manually save the HTML report\r\n        html_report_filename = \"pesieve_html_report.html\"\r\n        html_report_path = os.path.join(self.analysis_path, \"pesieve\", html_report_filename)\r\n        with open(html_report_path, 'w') as file:\r\n            file.write(html_report)\r\n\r\n        # Return the path of the saved HTML report\r\n        return {\"html_report\": html_report_path}\r\n\r\n    def data_to_html(self, parsed_data):\r\n        \"\"\"Convert parsed data to HTML format.\"\"\"\r\n        html_content = \"<html><head><title>Pe-sieve Report</title></head><body>\"\r\n\r\n        # Iterate over each report in the parsed data\r\n        for report_type, data in parsed_data.items():\r\n            # Add a section for each report type\r\n            html_content += \"<h2>\" + report_type + \"</h2>\"\r\n\r\n            # Format the data as JSON and add it to the HTML content\r\n            formatted_json = json.dumps(data, indent=4)\r\n            html_content += \"<pre>\" + formatted_json + \"</pre>\"\r\n\r\n        html_content += \"</body></html>\"\r\n        return html_content\r\n\r\n```\r\n\r\nAm I doing the uploading correctly or should I use upload_to_host method, or what can you suggest me do?\r\n\r\n",
+  "Title: kvm dsn\nBody: None",
+  "Title: Update analyzer.py for type mismatch in exception\nBody: None",
+  "Title: Update pipe.py for set iteration error\nBody: None",
+  "Title: Update mongodb URL to .com to be able to download PGP key dur\u2026\nBody: During the mongo install phase the command to download the PGP key fails with \"No pgp data found\"\r\nAfter referring to the offical documentation is appears the URL is pgp.mongodb.com not .org\nComment: Thank you ",
+  "Title: Update database.py\nBody: @cccs-mog  @Buts94  can you both get a look on this? it should fix the issue + fix count\nComment: Yes seem to be fixing the issue. Wasn't having any issue with that previous syntax but like mentionned in #1861 there can be.\r\n\r\nBehavior is as following:\r\nCOUNT(*) will count all the rows in the table, including NULL values. On the other hand, COUNT(column name) will count all the rows in the specified column while excluding NULL values. \r\n\r\nAlready merged in so all good ! \nComment: Yes I neither had any issue",
+  "Title: don't use deduped shots from screenshot template\nBody: PR #1871 treats deduplicated_shots as processing module output, so don't use that in the template. This fixes screenshot rendering in UI reports.",
+  "Title: bump optional ImageHash to 4.3.1\nBody: This fixes messages like these in the processing logs:\r\n```\r\n    [Task 32818466] [root] ERROR: module 'PIL.Image' has no attribute 'ANTIALIAS'\r\n```\r\n\r\nFollow up on https://github.com/kevoreilly/CAPEv2/pull/1871\nComment: i can't merge that due to changes to not .default config which will generate problems on pull\nComment: i can't undo it\nComment: pushed that directly",
+  "Title: Database error\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nAnalysis.\r\n\r\n# Current Behavior\r\n\r\nMultiple debug error messages after submission thus analysis stuck on pending.\r\n\r\n_[lib.cuckoo.core.database] DEBUG: Database error counting tasks: The \"entities\" argument to Select.with_only_columns(), when referring to a sequence of items, is now passed as a series of positional elements, rather than as a list._\r\n\r\n# Failure Information (for bugs)\r\n\r\n_[lib.cuckoo.core.database] DEBUG: Database error counting tasks: The \"entities\" argument to Select.with_only_columns(), when referring to a sequence of items, is now passed as a series of positional elements, rather than as a list._\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Run python cuckoo.py -d\r\n2. Submit any sample for analysis\r\n3. Analysis stuck on 'pending' with multiple debug messages in cape.service\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | commit b59f5cf0db9a95389012394204f9cff0c2908aa4\r\n| OS version       | Canonical-Ubuntu-22.04\r\n\r\n## Failure Logs\r\n\r\n\u25cf cape.service - CAPE\r\n     Loaded: loaded (/lib/systemd/system/cape.service; enabled; vendor preset: enabled)\r\n     Active: active (running) since Wed 2023-12-13 18:05:29 UTC; 40min ago\r\n       Docs: https://github.com/kevoreilly/CAPEv2\r\n   Main PID: 21124 (python)\r\n      Tasks: 2 (limit: 618753)\r\n     Memory: 436.1M\r\n        CPU: 34min 35.787s\r\n     CGroup: /system.slice/cape.service\r\n             \u2514\u250021124 /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python cuckoo.py -d\r\n\r\n_Dec 13 18:46:07 cape python3[21124]: 2023-12-13 18:46:07,090 [lib.cuckoo.core.database] DEBUG: Database error counting tasks: The \"entities\" argument to Select.with_only_columns(), when referring to a sequence of items, is now passed as a series of positional elements, rather than as a list.\r\nDec 13 18:46:07 cape python3[21124]: 2023-12-13 18:46:07,093 [lib.cuckoo.core.database] DEBUG: Database error counting tasks: The \"entities\" argument to Select.with_only_columns(), when referring to a sequence of items, is now passed as a series of positional elements, rather than as a list.\r\nDec 13 18:46:07 cape python3[21124]: 2023-12-13 18:46:07,095 [lib.cuckoo.core.database] DEBUG: Database error counting tasks: The \"entities\" argument to Select.with_only_columns(), when referring to a sequence of items, is now passed as a series of positional elements, rather than as a list.\r\nDec 13 18:46:07 cape python3[21124]: 2023-12-13 18:46:07,097 [lib.cuckoo.core.database] DEBUG: Database error counting tasks: The \"entities\" argument to Select.with_only_columns(), when referring to a sequence of items, is now passed as a series of positional elements, rather than as a list.\r\nDec 13 18:46:07 cape python3[21124]: 2023-12-13 18:46:07,099 [lib.cuckoo.core.database] DEBUG: Database error counting tasks: The \"entities\" argument to Select.with_only_columns(), when referring to a sequence of items, is now passed as a series of positional elements, rather than as a list.\r\nDec 13 18:46:07 cape python3[21124]: 2023-12-13 18:46:07,102 [lib.cuckoo.core.database] DEBUG: Database error counting tasks: The \"entities\" argument to Select.with_only_columns(), when referring to a sequence of items, is now passed as a series of positional elements, rather than as a list.\r\nDec 13 18:46:07 cape python3[21124]: 2023-12-13 18:46:07,104 [lib.cuckoo.core.database] DEBUG: Database error counting tasks: The \"entities\" argument to Select.with_only_columns(), when referring to a sequence of items, is now passed as a series of positional elements, rather than as a list.\r\nDec 13 18:46:07 cape python3[21124]: 2023-12-13 18:46:07,106 [lib.cuckoo.core.database] DEBUG: Database error counting tasks: The \"entities\" argument to Select.with_only_columns(), when referring to a sequence of items, is now passed as a series of positional elements, rather than as a list.\r\nDec 13 18:46:07 cape python3[21124]: 2023-12-13 18:46:07,109 [lib.cuckoo.core.database] DEBUG: Database error counting tasks: The \"entities\" argument to Select.with_only_columns(), when referring to a sequence of items, is now passed as a series of positional elements, rather than as a list.\r\nDec 13 18:46:07 cape python3[21124]: 2023-12-13 18:46:07,111 [lib.cuckoo.core.database] DEBUG: Database error counting tasks: The \"entities\" argument to Select.with_only_columns(), when referring to a sequence of items, is now passed as a series of positional elements, rather than as a list._\r\n\r\n\nComment: duplicated https://github.com/kevoreilly/CAPEv2/issues/1885 it not happens to all users so i have no clue what is wrong + im on PTO\nComment: Found fix and downgrade to below python modules:\r\n\r\n**python -m pip install --force-reinstall Flask-SQLAlchemy==3.0.5\r\npython -m pip install --force-reinstall SQLAlchemy==1.4.50**\nComment: Why do you have flask-sqlalchemy?\r\n\r\nEl mi\u00e9, 13 dic 2023, 23:40, herij1979 ***@***.***> escribi\u00f3:\r\n\r\n> Found fix and downgrade to below python modules:\r\n>\r\n>\r\n> *python -m pip install --force-reinstall Flask-SQLAlchemy==3.0.5 python -m\r\n> pip install --force-reinstall SQLAlchemy==1.4.50*\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1885#issuecomment-1854808493>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH34WJPLQXVAJLO4ZTFLYJIVELAVCNFSM6AAAAABATUSJ6WVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTQNJUHAYDQNBZGM>\r\n> .\r\n> You are receiving this because you modified the open/close state.Message\r\n> ID: ***@***.***>\r\n>\r\n\nComment: ok nevermind i see https://github.com/search?q=repo%3Akevoreilly%2FCAPEv2%20Flask-SQLAlchemy&type=code\r\nthanks for feedback",
+  "Title: Update mongo pgp-key URL\nBody: None",
+  "Title: New installation cape.service error about missing pyvmomi\nBody: I'm in the process of building a new deployment using Ubuntu 22.04\r\n\r\nI've run the cape.2sh script with the 'all' option and also run the 'poetry install' to install the dependencies. \r\n\r\nI'm attempting to use CAPEv2 on a VMware vSphere ESXi host, I have modified the cuckoo.conf file in /opt/CAPEv2/conf to set the machine to vsphere and change vsphere.conf with the relevant details for my esxi host\r\n\r\nWhen I restart the cape.service and look at the output from the journalctl command I'm seeing the following error.\r\n\r\n`cape python3[26077]: Missed library: pip3 install pyvmomi` \r\n\r\nThe issue is, when I attempt to install pyvmomi either as root or the cape user it says it's already installed. \r\nDoes anyone have any thoughts about how to either fix this error or the proper procedure for configuring cape to use with a vSphere host?\nComment: What happened to the template?! There is not enough info here for us to know how to help - why do you think we bothered with creating that?!\r\n\r\nWe are nice helpful people working for free - throw us a frickin bone and some decent info to work with. You haven't even bothered to show the actual commands you are using, so how do we know if you are using poetry to install the dependencies, and not just running pip install as cape user but without poetry?!\nComment: im not using vSphere\r\n\r\nbut did you install pyvmomi via poetry?\r\n\r\ncd /opt/CAPEv2\r\nsudo -u cape poetry run pip install pyvmomi\r\n\r\nor add it to pyproject.toml\r\npoetry lock --no-update\r\npoetry install\nComment: Thanks @ClaudioWayne that was what I was missing, I hadn't installed via poetry.\r\n\r\n@kevoreilly I'm sorry, I'll remember to use the template next time. ",
+  "Title: MongoDB PGP-Key location changed\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n# Solution\r\n\r\nThe URL for the mongodb pgp-keys in cape2.sh is outdated. The keys are now in a new location.\r\n\r\nNew address for pgp keys:\r\nhttps://pgp.mongodb.org/server-${MONGO_VERSION}.asc\r\n\r\nReference:\r\nhttps://www.mongodb.com/docs/manual/tutorial/install-mongodb-on-ubuntu/\r\n\r\n\nComment: Thank you for this! Please feel free to submit PR!\nComment: yes PR would be faster way to fix that\nComment: solved",
+  "Title: Cape strange directory\nBody: Hey , so I m in the final phases of adding a new auxiiliary to Cape for a project of mine.\r\nWhen I was testing my code, pe sieve dumped the results in  folder I m not familiar with, can someone help?\r\nI cannot find information about it in Cape and its files:\r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/119869815/298e08b4-bed8-41d8-98f8-c84490001f4e)\r\nAt the end of the code - last 3 lines\nComment: That is the 'analyzer' directory which you will note contains a copy of the ``analyzer\\windows\\`` contents including the main Python module ``analyzer.py``. Since it is this module that loads auxiliary modules, this directory is the _current working directory_ and therefore should be accessible programmatically via ``Path.cwd()``.\nComment: alright \r\n\r\nso if i understood corectly the analyzer folder gets imported in the windows guest, executes the auxiliaries and they all dump their results in this same folder,\r\ncurrently pe sieve dumps the results in the current working directory but they dont go back to cape even though i dont see where is the mistake in my code: can you help me out?\r\n\r\nalso I see that this is a temporary directory where in analyzer is this being mentioned and how can i make my code interact with the temp directory the get the folder files from it?\r\n\r\nalso how does cape handle the temporary directory because I cannot see information about it?\r\n[pesieve_integration.txt](https://github.com/kevoreilly/CAPEv2/files/13651839/pesieve_integration.txt)\r\n",
+  "Title: [Feature] make clear split and warning of community modules.\nBody: While community doing amazing job to add their stuff, we need to make clear that those modules are `community driven` and most of those that are not used by core devs are not maintained/tested by core devs. \r\n\r\nSo probably the easier way is to create new configs as example: `X.community.conf` as example `processing.community.conf`. Each of the configs files in header must have warning about that as any 3rd part module it might be obsolete/not aligned with core features.\r\n\r\nAny thoughts/brainstorming are welcome.\nComment: Perhaps separate folder structure? The current `conf/` already seems to have a lot of files.\r\n```\r\n/opt/CAPEv2/conf/\r\n|-- core/\r\n|.     |-- *.conf\r\n|      |-- *.conf.default\r\n|--community/\r\n|.     |-- *community.conf\r\n```\r\nThe `community/` folder can have a very explicit README.md re: \"not maintained by core devs\" and maybe some links to community project or people who support the various *.community.conf files if that information is available somewhere.\nComment: thanks, yes we have too many configs already, so i guess i will just add warning in readme/docs for this\nComment: warning/clarification is added to docs https://capev2.readthedocs.io/en/latest/installation/host/configuration.html",
+  "Title: Improving scaling semaphore; Adding batch tasking capability  to the scheduler\nBody: Building on https://github.com/kevoreilly/CAPEv2/pull/1757 to further address https://github.com/kevoreilly/CAPEv2/pull/1107\r\n\r\nThe active_analysis_count was also fixed in this PR.\nComment: Is this batching feature exclusive to `aws` and `az` machinery?\nComment: Hi [rtkcgrantcharov](https://github.com/rtkcgrantcharov), the batch scheduling feature should in theory work with any machinery, the reason the change are only affecting AWS and AZ is because there is no overwrite of `acquire` in other machineries. I don't know if there is a use case for support of other machineries but either way this should work (haven't been tested however)\r\n\r\nNote that the feature of `scaling semaphore` is intended for only AWS and AZ however ( it could in theory work for any scaling machinery) as there would be no point running it for a static machinery. \r\n\r\nThe `cuckoo.conf` file provide a description for those options. Adding this to the documentation is probably a good idea, will be working toward that. \nComment: @cccs-mog Just curious, with the current state of this PR, were your tasks stuck in pending?\nComment: Hi [ethhart](https://github.com/ethhart), the PR is currently in final testing by abundance of caution.\r\n\r\n I assume your question is regarding : https://github.com/kevoreilly/CAPEv2/pull/1879/commits/1ec0693f11a078e82ef3a84176e8d2fa4dd14c29. The idea behind that is to prevent task to be kept pending in the scenario of the machinery scaling down/breaking, which can happen. A machinery breakage is a recoverable error so a mechanism for the scheduling to handle such situations is definitely required.\r\n\r\nIf the question is more regarding the need for this PR, yes at a certain rate/number of machines the scheduler can't keep up, some machine are kept unassigned. It came from the initial discussion there: https://github.com/kevoreilly/CAPEv2/pull/1107 and is the next logical step toward a faster scheduler(having the potential for batch scheduling) after scaling semaphore for dynamic machinery.\r\n\r\nThe inital PR is #1757 .\nComment: If anyone has any thoughts on this, let us know!\nComment: looks good for me\nComment: im gonna merge this to stating for 1w just in case as testing\nComment: thank you for such update btw",
+  "Title: Wrapping file writing in resultserver with try-catch; Catch exception from copy_to_fd call\nBody: None",
+  "Title: Account Activation Request\nBody: I know and understand that i am not supposed to ask for account activation on issues, but ive opened an issue about 3 days ago and it was instantly marked as solved, but my account still isnt activated. Ive pinged @CapeSandbox on twitter and got no response (about 8 days ago) Please help me solve this as i really want to use the sandbox. \r\n\r\n**The account name is: DefaultUser9148**\r\n![2023-12-09 11_16_08-CAPE Sandbox](https://github.com/kevoreilly/CAPEv2/assets/99608227/15dd8502-f427-4025-b0a3-69967a8857ec)\r\n",
+  "Title: Django error when submiting a .sh file \nBody: \r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\nI want to submit my testping.sh to CAPE to see how CAPE display the network interaction threw a VPN route. \r\n It's a simple ping script:\r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/147034826/a1e2d0c6-aa79-4830-9ef0-d16893d1a949)\r\n\r\nI expected the analysis to start when submiting this file to CAPE\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\nI get an error, this one \r\n![image](https://github.com/kevoreilly/CAPEv2/assets/147034826/97b116d4-b90a-4e0b-bfe9-85317ede640d)\r\n\r\nOtherwise, it works perfectly well with other file types.\r\n\r\nThanks :) \r\n\r\n\r\n\r\n\r\n\nComment: try to update to latest version with `git pull` and then restart web as root with `systemctl restart cape-web` as i jsut tested and i don't have any problem with the same .sh",
+  "Title: Carbanak extraction fix\nBody: None",
+  "Title: kvm-qemu.sh is not working for Debian 11\nBody: Traceback (most recent call last):\r\n  File \"/usr/local/bin/virt-manager\", line 6, in <module>\r\n    from virtManager import virtmanager\r\nModuleNotFoundError: No module named 'virtManager'\nComment: what about your instalation log?\nComment: thanks for replying @doomedraven \r\n[kvm-qemu.log](https://github.com/kevoreilly/CAPEv2/files/13599587/kvm-qemu.log)\r\n\r\nuploading the log file here\nComment: i don't see nothing wrong so far, \r\n1. restore issue template and answer questions as i need those answer to be able to help you and\r\n2. try to rerun with `virtmanager` arg only to reinstall it\nComment: oh i just saw about debian 11, yah it not expected to work there, only ubuntu 22\nComment: Can you please help me identify where I should make changes in the script file to make it work on a Debian 11-based system?\nComment: No, I don't have that much time to waste that on deb\u00edan, you will have many\r\nothers issues with cape on deb\u00edan, so follow our recommendation with Ubuntu\r\n22\r\n\r\nEl jue, 7 dic 2023, 17:54, thariqueajeez ***@***.***>\r\nescribi\u00f3:\r\n\r\n> Can you please help me identify where I should make changes in the script\r\n> file to make it work on a Debian 11-based system?\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1874#issuecomment-1845700250>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH37BPK6PQ4TYSAOSQTLYIHYDHAVCNFSM6AAAAABAK4SQMGVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTQNBVG4YDAMRVGA>\r\n> .\r\n> You are receiving this because you modified the open/close state.Message\r\n> ID: ***@***.***>\r\n>\r\n",
+  "Title: Reporting module error - mongodb binary object has no get\nBody: ## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ x] I am running the latest version\r\n- [ x] I did read the README!\r\n- [ x] I checked the documentation and found no answer\r\n- [ x] I checked to make sure that this issue has not already been filed\r\n- [ x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ x] I have read and checked all configs (with all optional parts)\r\n\r\nI'm looking for help with the following issue.\r\n\r\n# Current Behavior\r\n\r\nThe analysis task is started and being run on the configured VM. The processing module reports no issue, but the task is never reported and not visible in the web view.\r\n\r\nAfter looking into it, the MongoDB reporting module runs into the following error:\r\n\r\n`\r\n\r\n> 2023-12-01 09:39:24,172 [Task 5] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"MongoDB\"\r\n> 2023-12-01 09:39:24,184 [Task 5] [modules.reporting.mongodb] DEBUG: Deleted previous MongoDB data for Task 5\r\n> 2023-12-01 09:39:24,321 [Task 5] [lib.cuckoo.core.plugins] ERROR: Failed to run the reporting module \"MongoDB\": 'Binary' object has no attribute 'get'\r\n> Traceback (most recent call last):\r\n>   File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 715, in process\r\n>     current.run(self.results)\r\n>   File \"/opt/CAPEv2/utils/../modules/reporting/mongodb.py\", line 132, in run\r\n>     mongo_insert_one(\"analysis\", report)\r\n>   File \"/opt/CAPEv2/utils/../dev_utils/mongodb.py\", line 55, in wrapper\r\n>     return mongo_op_func(*args, **kwargs)\r\n>   File \"/opt/CAPEv2/utils/../dev_utils/mongodb.py\", line 107, in mongo_insert_one\r\n>     doc = hook(doc)\r\n>   File \"/opt/CAPEv2/utils/../dev_utils/mongodb.py\", line 82, in inner\r\n>     return f(*args, **kwargs)\r\n>   File \"/opt/CAPEv2/utils/../dev_utils/mongo_hooks.py\", line 81, in normalize_files\r\n>     for file_dict in collect_file_dicts(report):\r\n>   File \"/opt/CAPEv2/utils/../dev_utils/mongo_hooks.py\", line 173, in collect_file_dicts\r\n>     file_dicts.append(report.get(\"CAPE\", {}).get(\"payloads\", None) or [])\r\n> AttributeError: 'Binary' object has no attribute 'get\r\n\r\n'`\r\n\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Install CapeV2 onto a fresh Ubuntu 22.04.1 installation via the kvm-qemu.sh and cape2.sh scripts. As written in the readme under \"Installation recommendations [...]\" and turning on the mongodb module + applying the asked for migrations.\r\n\r\nOS: Ubuntu 22.04.1\r\nCapeV2-Version: Installed on 02. November 2023\r\nCapeV2 is installed in a virtual machine and the analysis VMs run as nested VMs. But this shouldn't cause this issue.\r\n\nComment: hello, can you share hash to try to reproduce that?\nComment: wow, that's a quick reply :D\r\nmany thanks!\r\n\r\nWhich hash do you mean?\nComment: file that generate that problem, in your case task n5, otherwise we can't help if we can't reproduce, md5/sha256 hash works, you can attach file zipped with password `infected` if you want\nComment: Sha256: 0490ceace858ff7949b90ab4acf4867878815d2557089c179c9971b2dd0918b9\r\n[0490ceace858ff7949b90ab4acf4867878815d2557089c179c9971b2dd0918b9.zip](https://github.com/kevoreilly/CAPEv2/files/13599000/0490ceace858ff7949b90ab4acf4867878815d2557089c179c9971b2dd0918b9.zip)\r\n\nComment: i can't reproduce your error so i have no idea what is wrong on your side\nComment: Thanks for looking into it.\r\nI gonna retry with a fresh setup and report back\nComment: do you frequently doing `git pull` and restart of required services?\nComment: no not at all\r\nthe sandbox is still undergoing setup and has always been at git-commit\r\n\r\n`/opt/CAPEv2$ git log\r\ncommit 3987ce591983e8e80ce97ccee156d490c0d565e8 (HEAD -> master, origin/master, origin/HEAD)\r\nAuthor: doomedraven\r\nDate:   Fri Nov 24 09:05:12 2023 +0100\r\n\r\n    sync`\r\n\r\nThe services needed to be restarted a couple of times, but no git pull at all.\nComment: well `git pull` is important always before open any issue as your issue + lying in questionary is bad start `[ x] I am running the latest version`\nComment: sorry about that, didn't thought that the version would get old so fast.\nComment: Bleeding edge sandbox \ud83d\ude0e \nComment: Working bleeding edge! Something rare nowadays\nComment: I've run into this issue as well. A regression was introduced when `dev_utils/mongodb.py` was split into:\r\n- `dev_utils/mongodb.py`\r\n- `dev_utils/mongo_hooks.py`\r\n\r\nI reverted these 4 commits from my fork to get it working again:\r\n- f631f67bc04564cd582778eecdb3cc0b87c7207b\r\n- 60bcb00b9c1a3adb84b99bf6e7dd0c00e3744395\r\n- 9f7294211c0090c2f6b0f3a7a4fdfb9e9fbac075\r\n- 0f420973eba2edaca3b9ae56f9f5e315ca3bf60b\r\n\r\nMy fork is based on: 8be0cc5ac4f699f4c96495e0440449edfae3d52b\r\n\r\nThe bug is in one of the above 4 commits - 100% sure.\r\n\r\ncc: @tbeadle \r\n\nComment: Personally, I think a little bit more quality control on commits generally speaking would be nice ... finding a \"working commit\" to install off of is not fun. Neither is figuring out what to revert to make it work.\nComment: Please take that attitude elsewhere. This is my life's work and reading comments like this after I've spent the last decade working hard on this project for free for others disgusts me quite frankly.\nComment: Buddy, I didn't come here to throw shade on your life's work or act unappreciative of all the hard work you've put into this project. Take emotions aside for a second and focus on the objective facts.\r\n\r\n1. If the above bug is a bug, it means that anybody who's tried to use your work for since Sept 19th hasn't been able to benefit from any of the subsequent value-add commits on new and updated signatures you've made since - simply because your project won't build correctly OR if it did build correctly, it then crapped out as soon as you ran an analysis on ANY piece of malware. Isn't the fact that you guys didn't know about this until now a concern at all?\r\n2. It's easy to sit on the sidelines and criticize someone else's work, but I'm not doing that ... I spent 2 hours debugging, compiling and testing a fix I then submitted into your cape2.sh logic 2 weeks ago because of change that appears went in entirely untested. I've personally done over 75+ builds of your code in the last 2 months.\r\n3. No matter how good a project is there is ALWAYS room for improvement. You got 2 comments above saying \"hey, we're having a hard time using this thing ... can we do something about it?\" Not asking for more than a build job that runs once a week or something to make sure this thing can install successfully and run an analysis without crapping out along\r\n the way. In fact, one might already exist and I don't know about it ... and there may be a bug there.\r\n\r\nI think this project is awesome, the work that is going into it is awesome and I'm simply asking for help from you guys to make it a bit more stable. Imagine this open source project was `git` and from one week to the next you lost the ability to commit code and it didn't get fixed for 3 months ... It's precisely because I find that what you guys are doing here valuable and awesome that I'm saying all this.\r\n\r\nIf you still find all this disgusting, I'm sorry to hear that ... but again ... no one came here to hurt anyones feelings or diminish/trivialize the work this project represents.\nComment: invoking me from PTO...\r\n\r\n>>If the above bug is a bug, it means that anybody who's tried to use your work for since Sept 19th hasn't been able to benefit from any of the subsequent value-add commits on new and updated signatures you've made since - simply because your project won't build correctly OR if it did build correctly, it then crapped out as soon as you ran an analysis on ANY piece of malware. Isn't the fact that you guys didn't know about this until now a concern at all?\r\n\r\n* That is so __FALSE__ dude, first go and see my initial answers, we can't reproduce that bug as I started to investigate that directly, we have a private slack with people from the world biggest IT companies, I personally own huge cluster on GCP, and 0 problems, running on latest always. So before coming and said that something is wrong and you need to search working commit is a bit funny, instead of search a working commit I would suggest you to review your setup as it sound mostly like you messed with it. Nobody from __advanced__ users have those problems, we tried to help to newcomer(who opened the issue), but if we can't reproduce it the same that issue doesn't exist aka user messed with his setup. \r\n\r\n*  About __value__ if you would be one of the advanced user you would see how much value it has. But each user case is different and is impossible to cover all cases.\r\n\r\nTL;DR:  investigate your setup, the project works just fine if you have proper skills. Found what is wrong? provide as much details as you can to help us reproduce  and fix anything or add warning for those who mess due to improper usage.\r\n\r\nAnyway detaching for the PTO again.\nComment: PS as curiosity I have dropped my mongodb, git clone master branch and did a fresh analysis of 1 tasks to not have any previous data in my cape to simulate fresh install. 0 issues, so for start of digging into your problems I would suggest to start doing diff of configs with repo and see what generate your problem and once again always try master before open issues\nComment: First off, not my intention to detract from your PTO ... sorry that it has ...\r\n\r\nI can appreciate you've tried to reproduce this bug, but just because you haven't been successful doesn't mean it's not there. I reproduced it consistently at least 5 times with installations from vanilla Ubuntu 22.04.3 LTS with latest updates. I've also automated the entire install, config, and launch process as per the instructions listed here: https://capev2.readthedocs.io/en/latest/installation/index.html  using a combination of Terraform, Packer and Ansible so the \"human error\" is mostly out. \r\n\r\nI haven't done anything advanced other than run the following on a single VM:\r\n 1. install `kvm-qemu.sh all cape`\r\n 2. install `kvm-qemu.sh virtmanager cape`\r\n 3. install `cape2.sh all cape`\r\n 4. poetry install\r\n 5. load 3 analysis vms with different versions of windows (w/ cape-agent installed)\r\n 6. systemctl restart cape*\r\n\r\nI will give the \"try latest master approach\" another try if you're confident it's my setup and do another pass at verifying that I've followed all the steps in `readthedocs.io` ... in the process of automating things, I was very thorough ...\r\n\r\nP.S. I have not modified my configs much w.r.t. mongodb other than enabling it in `reporting.conf` and enabling some of the report generations (i.e. litereport, reportsummary w/ screenshots, etc...). Why that would cause `cape-processor.service` to crap out accessing Mongo during the processing of an analysis run is beyond me.\r\nP.S.S. The exact config of `reporting.conf` (everything else is default):\r\n```\r\n    - {section: 'compressresults', key: 'enabled', value: 'yes'}\r\n    - {section: 'litereport', key: 'enabled', value: 'yes'}\r\n    - {section: 'mongodb', key: 'enabled', value: 'yes'}\r\n    - {section: 'reporthtml', key: 'enabled', value: 'yes'}\r\n    - {section: 'reporthtml', key: 'screenshots', value: 'yes'}\r\n    - {section: 'reporthtml', key: 'apicalls', value: 'yes'}\r\n    - {section: 'reporthtmlsummary', key: 'enabled', value: 'yes'}\r\n    - {section: 'reporthtmlsummary', key: 'screenshots', value: 'yes'}\r\n```\r\nP.S.S.S. Can you confirm that you're running Mongo 7 as per: https://github.com/kevoreilly/CAPEv2/commit/6607bff0fa02fd2f559dc0fe76dd0cd27c716d29? I doubt this is it .. but this upgrade from 6.0->7.0 also happened in the last 3 months ... just leaving no stone unturned.\nComment: i would say your problem is here `compressresults` disable that and you should not suffer this, i personally want to nuke `compressresults` and `retention` modules. Do you know what `compressresults` does? it make your cape useless :D\r\n\r\nits not mongo 6 or 7, as it not reaches there, is `compressresults` i would say. idk why you enable that, it makes cape useless you can't search later nothing at all. \nComment: confirmed\r\n\r\n```\r\ndef run(self, results):\r\n\r\n        for keyword in (\"CAPE\", \"procdump\"):\r\n            if keyword in results:\r\n                try:\r\n                    cape_json = json.dumps(results[keyword], ensure_ascii=False).encode()\r\n                    compressed_data = zlib.compress(cape_json)\r\n                    results[keyword] = Binary(compressed_data) <- your problem here\r\n```\r\n\r\nso about \"asking\" for better quality commits. as you might see it not our problem, yes CAPE has a lot of modules. We don't use all of them, some are there as some users might have weird user cases or not understand what those modules does\r\n\r\nand as you might see in configuration it marked as community module, which means we do not maintain this module\r\n```\r\n# Community\r\n# Compress results including CAPE output\r\n# to help avoid reaching the hard 16MB MongoDB limit.\r\n[compressresults]\r\nenabled = no\r\n```\r\n\r\nnuked compressresults from cape, `git pull` + `systemctl restart cape-processor` and you never will suffer this issue again.\r\n\r\nSo once again not just for you, but for everyone who comes over this, start with minimal config changes, if you have no clue what module does, __DISABLE__ it as it probably will give you just more problems than benefits\nComment: Do we want to remove references to `compressresults` in [compare.py](https://github.com/kevoreilly/CAPEv2/blob/4da7e97c03a9e2aef08e4159f64278322bcf0484/lib/cuckoo/common/compare.py#L136C16-L136C16) and [analysis/views.py](https://github.com/kevoreilly/CAPEv2/blob/4da7e97c03a9e2aef08e4159f64278322bcf0484/web/analysis/views.py#L1394C32-L1394C32)?\r\nI don't see any references in community to keep this logic in tact.\nComment: Thanks for following up on this @doomedraven - at least we're all on the same page now.\r\n\r\nIs it accurate to say that one of the 4 commits I referenced above introduced a side-effect bug in the `compressresults` feature? As I mentioned earlier, when I backed out the commits my setup resumed working as it had done before.\r\n\r\nw.r.t.\r\n> so about \"asking\" for better quality commits. as you might see it not our problem, yes CAPE has a lot of modules. We don't use all of them, some are there as some users might have weird user cases or not understand what those modules does\r\n\r\nMy asking for better quality commits is not entirely based on this bug - which was effectively a result from a sizeable database change that impacted various parts of the codebase, had an unintended side-effect on an \"unsupported feature\" (i.e. `compressresults`), and went in with no evidence of any automated testing (i.e. a passing build job) or anything of the sort.  Again, no clue what you guys do in the backend when vetting these changes (manual test?hidden automated tests?) ... the whole process is opaque from where I stand ... a lot of projects use **github-actions** automation for stuff like this. HOWEVER, my ask also comes on the heels of this fix that I put in a few weeks ago: https://github.com/kevoreilly/CAPEv2/pull/1850 ... you guys didn't catch it, I did, and I fixed it ... and I followed \"use the latest master\" branch which was broken at the time. Still took 2+ hours of trying to figure why my APT packages were all messed up and trace it up to a typo. We are all human, we all make mistakes ... not a big deal .. but things can be better with more testing and automation. That's all I'm going to say on this topic here as it's not related to this issue. I have 15+ years of dev/security experience from Fortune 500 companies and I given you my feedback - what you do with it from this point on is up to you.\nComment: well you can call it side effect if you want, but its a `community` module, as i told, we do not maintain those modules, so for us is not side effect, __is that community doesn't update their modules to align with core__. That would be a proper sentence.\r\n\r\nWe don't test and I personally don't care about maintaining community modules as it looks i need to say that lauder and harder. \r\n\r\nDude i spend years doing automation of those scripts and any small change in 3rd part software breaks it, when i push changes to those scripts __is when im doing deployment and it works__, it can break in any moment and i mention that in README, that __IS NOT A SILVER BULLET__. \r\n\r\nnow to the core msg of this all \r\n1. is software it changes = it might break\r\n2. there is no paid support and done by people in their free time, spot bug, help us to fix, we can't cover all user cases\r\n3. want a better core, help us to improve, that is more than welcome.\r\n4. using community modules = it can be broken, it's not our problem is [mentioned in readme first line too](https://github.com/kevoreilly/CAPEv2/tree/master/conf#readme)\r\n\r\nbut all this just sound like you complain about open source project where nobody gets moneys for doing that and safe time to others, its open source, help to improve or make your fork and have fun, is how open source works right? \r\n\r\n\nComment: @ethhart yes that will be removed",
+  "Title: Fix url extraction\nBody: URI can be something other than a binary string or string.",
+  "Title: *really* dedupe the screenshots, let's not pretend\nBody: This makes it so that the [deduplication module](https://github.com/kevoreilly/CAPEv2/blob/90681bf67ea5c900e190958caca2216f6195a224/modules/processing/deduplication.py) actually remove the duplicate screenshots when it's enabled. The screenshots will also be reindexed to match the xxxx.jpg scheme so we don't end up with gaps in the filenames.",
+  "Title: Account Activation Issue\nBody: I know i am not supposed to write an issue about account activation. \r\nBut i have pinged **@Capesandbox** on X with my account name a few days ago with no response and my account still isn't activated. \r\n\r\nI'm just a teen interested in malware and i understand why the manual account activation is required. I'm not gonna Scape the JSON or anything, just wanna analyze malware.\r\n\r\n****Thanks!****",
+  "Title: Add_pid_to_aux_modules resolved\nBody: Continuation to this issue: https://github.com/kevoreilly/CAPEv2/issues/1849\r\n\r\nSo I spent quite a while on looking why add_pid_to_aux didn't get called.....\r\nI added it in this line:\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/119869815/de7f37c3-f726-468b-8c9c-f948058cf4b0)\r\n\r\nAnd it fixed the issue. \r\n\r\nI have one more question regarding this because I am very close in implementing PEsieve as an axuliary module in Cape\r\nI wanted to ask whether I have implemented correctly the storing of the results for pesieve\r\n\r\nI copied Usage.py for storing the results in a log file\r\nHere is my code for pe sieve:\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/119869815/e8d676e8-0372-4a1b-b215-f723fd55cda0)\r\n\r\nI also get errors connected to result server.py handling the file uploading, is there a limit in Cape about the size of the files uploaded from the Guest?\r\nThe errors led me here: https://github.com/kevoreilly/CAPEv2/blob/master/lib/cuckoo/core/resultserver.py#L148C4-L157C19\r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/119869815/82a03a56-fd62-4403-a1b6-bba56c38c71e)\r\n\r\n\r\n\r\n\r\n\nComment: as i told you don't need to open new issues to continue. you can stay with closed issue as this is not real cape issue, is user side/code issue.\r\n\r\nyes cape has limit on submitted files i think is limited to 100mb, check cuckoo.conf for proper details. your error is because protocol is wrong, you can't use something that you don't know how it works as `NetLogFile`, why just not to use \r\n\r\n```\r\nfrom lib.common.results import upload_to_host\r\n\r\nupload_to_host(self.evtx_dump, \"Destinationpath_on_server side\")\r\n```\r\n\r\nmore examples https://github.com/search?q=repo%3Akevoreilly%2FCAPEv2%20upload_to_host&type=code\nComment: also please stay with one uniq issue",
+  "Title: Make sure file_data is defined.\nBody: We later check file_data, but we should make sure that it's always defined, not only if path_exists(file_info[\"path\"]).",
+  "Title: Added improvement config extraction for new Nighthawk variants\nBody: Some samples we have found from Nighthawk contains the profile data not in the `.profile` section, but also in another `.text` section.\r\nI'm not sure if there are other sections used, will add more if found.\r\n\r\nAlso, improved how we handle structured config, previously it would crash if there was a dict inside a list, so this is fixed now.\nComment: Awesome thank you \u2764\ufe0f \nComment: hello, thank you, can you please share any public hash? so we can add tests\nComment: Sorry @doomedraven , at least for the moment, the sample I have is not public yet. But will add it here once it is.\r\nBut I'll see if I can find public samples with same behavior (`.text` section starts with `00` and not very large)\nComment: Did this PR break carbanak somehow?\r\n\nComment: thats fine, thank you anyway, no Carbanak is another thing that for some reason started to break, need to investigate",
+  "Title: About account, already ping cape sandbox on Twitter.\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\nI'm so sorry to open this issue with respect to the account.\r\nI have already pinged cape sandbox on Twitter 8 days ago.\r\nBut I'm not sure whether it is correct or not, please forgive me to ask this stupid question.\r\nAnd also, I want to ask another question, it is possible to get the whole trace (.json ) file after submit the malware to the official CAPE website ?\r\n\r\nThank you for your free support.\r\n\r\nBR.\r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/49675917/e712a1ff-7073-42fd-8be9-fa34eba987ab)\r\n\nComment: than wait till response in twitter, about json no there is no way\nComment: The reason we enforce account activation on capesandbox.com is because of scrapers and other abuse. So upon reading that you are a cybrsecurity PhD student who wants json dumps from analyses, I suspected you were looking to scrape the site for json dumps.\r\n\r\nI have now activated your account. Please don't scrape the site as it just ruins it for others. If you want json dumps and you are a cybersecurity student then you (or your university) need to install your own instance and enable this feature! The public site is intended only for demo purposes, not to mention it's lacking Win10 vms.\r\n\r\n\nComment: > The reason we enforce account activation on capesandbox.com is because of scrapers and other abuse. So upon reading that you are a cybrsecurity PhD student who wants json dumps from analyses, I suspected you were looking to scrape the site for json dumps.\r\n> \r\n> I have now activated your account. Please don't scrape the site as it just ruins it for others. If you want json dumps and you are a cybersecurity student then you (or your university) need to install your own instance and enable this feature! The public site is intended only for demo purposes, not to mention it's lacking Win10 vms.\r\n\r\nHI Kevoreilly:\r\n\r\nThanks for your reply, Yes, I've already installed CAPEv2 in my server, and I can run to obtain the .JSON file after analysis.\r\nI'm not scrape anything about official website. \r\n\r\nI requested the .json file from the official website due to I am still uncertain about the reason why the Ubuntu kernel, which runs the cuckoo.py script, occasionally shuts down automatically.\r\n\r\nThanks for your help again.\r\nBR.\r\n\nComment: ubuntu kernel o_O \nComment: > ubuntu kernel o_O\r\n\r\nHI doomedraven :\r\n\r\nApologies for the confusion. It should be 'terminal'.  Sometimes, I open multiple terminals to run various processes such as cuckoo.py and access websites. After running for several hours, I noticed that some terminals close automatically.\r\nI still understand the reason.\r\n\r\nThanks for your help again.\r\nBR.\nComment: see system logs as syslog for those events\nComment: HI kevoreilly:\r\n\r\nI'm so apologized to ping you again.\r\nBut my account still shows the message \r\nThis account is inactive/Admin set manual approve.\r\nAm I missing something?\r\n\r\nThank you very much.\r\nBR.\r\n\r\n> The reason we enforce account activation on capesandbox.com is because of scrapers and other abuse. So upon reading that you are a cybrsecurity PhD student who wants json dumps from analyses, I suspected you were looking to scrape the site for json dumps.\r\n> \r\n> I have now activated your account. Please don't scrape the site as it just ruins it for others. If you want json dumps and you are a cybersecurity student then you (or your university) need to install your own instance and enable this feature! The public site is intended only for demo purposes, not to mention it's lacking Win10 vms.\r\n\r\n",
+  "Title: Enhancement OpenAI \nBody: idea to implement oepnai for automatic base analyses, maybe own LLM just an idea for you guys =)\r\n\r\n\r\n## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ ] I am running the latest version\r\n- [ ] I did read the README!\r\n- [ ] I checked the documentation and found no answer\r\n- [ ] I checked to make sure that this issue has not already been filed\r\n- [ ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ ] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. step 1\r\n2. step 2\r\n3. you get it...\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 16.04, Windows 10, macOS 10.12.3\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: not interested",
+  "Title: Update network.py\nBody: None",
+  "Title: ipinfo\nBody: None",
+  "Title: unify folders\nBody: None",
+  "Title: CapeV2 tasks don't start. Debug log shows an error \nBody: \r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [Y] I am running the latest version\r\n- [Y] I did read the README!\r\n- [Y] I checked the documentation and found no answer\r\n- [Y] I checked to make sure that this issue has not already been filed\r\n- [Y] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [Y] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nWhen I submit a new file for analysis the analysis should start.\r\n\r\n# Current Behavior\r\n\r\nAfter submission, the task  don't start. \r\n\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| OS version       | Ubuntu 22.04\r\n\r\nI've installed cape with the cape2.sh installer script. Cuckoo Sandbox 2.4-CAPE,\r\n\r\n## Failure Logs\r\n\r\n \r\n./log/cuckoo.log:2023-12-02 13:25:09,121 [lib.cuckoo.core.database] DEBUG: Database error counting tasks: The \"entities\" argument to Select.with_only_columns(), when referring to a sequence of items, is now passed as a series of positional elements, rather than as a list. \r\n./log/cuckoo.log:2023-12-02 13:25:09,123 [lib.cuckoo.core.database] DEBUG: Database error counting tasks: The \"entities\" argument to Select.with_only_columns(), when referring to a sequence of items, is now passed as a series of positional elements, rather than as a list. \r\n\r\n\r\nI could not find this issue in past issues or documentation, so I kindly request any guidance to solve it.\r\n\r\nThanks in advance\nComment: Hey, fill the issue template to avoid us asking the same for start + provide how you installed cape\nComment: Thanks.\r\nWhen running the UI manually noticed that some db migrations were pending.\r\n\r\n\"sudo -u cape poetry run /usr/bin/python3 -m poetry run python manage.py migrate\"\r\n\r\nRan this command. Restarted the cape instance and now it is working fine. \r\n\nComment: that doens't related to this at all. still have 0 info about how you installed cape\nComment: \r\n\r\ndownloaded cape2.sh \r\nand then executed \"./cape2.sh all cape | tee cape.log\"\nComment: that msg is more warning than error, how did you run cape? i need more details to try to get some basic idea about your setup first\nComment: Setup : Ubuntu 22.04 Desktop + QEMU - KVM, already loaded a WIN10 machine.\r\n\r\nSame error described by @s-ribeiro. \r\n\r\nInstalled CAPE with cape2.sh and executed with at first :\r\n\r\n`sudo ./cape2.sh base cape | sudo tee cape.log` and then : `sudo ./cape2.sh all cape | sudo tee cape.log`\r\n\r\nAll seems work fine the cape.service service load kvm machines correctly and the web interface is up. But tasks are stuck in pending and if launch : `sudo -u cape poetry run python3 cuckoo.py -d`. The following error is continually triggered:\r\n\r\n`[lib.cuckoo.core.database] DEBUG: Database error counting tasks: The \"entities\" argument to Select.with_only_columns(), when referring to a sequence of items, is now passed as a series of positional elements, rather than as a list.`\r\n\r\nI launched the command suggested : \r\n\r\n`sudo -u cape poetry run /usr/bin/python3 -m poetry run python manage.py migrate`\r\n\r\nsome migrations have been performed. I restarted CAPE services, cleaned the old tasks, but the new one are same stucked and pending and don't start. Can anyone help me ?\r\n\r\nIt's like the cuckoo service does not reach to take a pending task because trigger with some SQL query an error in SQL Alchemy lib.\nComment: Found the code bug. I had to restore the old code for function `count_tasks` in /lib/cuckoo/core/database because the commit https://github.com/kevoreilly/CAPEv2/commit/224714645fcf4f6f45900c5d445f143fb8f467a4 inserted a bug.\r\n\r\nThe new function get_count trigger an exception which leads to an infinite loop not fetching the pending tasks because return always 0.\nComment: nice finding, i can't test that(phone only), but that become interesting how that affect only some and not all. what is your `sqlalchemy` version? you can get it with `poetry run pip freeze|grep SQLAlchemy`\r\n\r\n```\r\nSQLAlchemy = \"1.4.22\"\r\nSQLAlchemy-Utils = \"0.37.8\"\r\n```\nComment: Just runned the poetry dependencies list, installed same version  :\r\n\r\n`SQLAlchemy = \"1.4.22\"\r\nSQLAlchemy-Utils = \"0.37.8\"`\r\n\r\n\nComment: btw provide info about your setup, i don't see anything related to your database \nComment: >> The new function get_count trigger an exception which leads to an infinite loop not fetching the pending tasks because return always 0.\r\n\r\ni would love to see the traceback as i can't reproduce it, my db is:`postgresql  16+256.pgdg22.04+1` you def should have some library or db different than most of us as i can't trigger that in any way with current code. So i will need all the details about your setup + that traceback error\nComment: + im not sure how it can impact that tasks doesn't start as that only used for webgui\r\n\r\n```\r\n./web/analysis/views.py:    tasks_files_number = db.count_matching_tasks(category=\"file\", not_status=TASK_PENDING) or 0\r\n./web/analysis/views.py:    tasks_static_number = db.count_matching_tasks(category=\"static\", not_status=TASK_PENDING) or 0\r\n./web/analysis/views.py:    tasks_urls_number = db.count_matching_tasks(category=\"url\", not_status=TASK_PENDING) or 0\r\n./web/analysis/views.py:    tasks_pcaps_number = db.count_matching_tasks(category=\"pcap\", not_status=TASK_PENDING) or 0\r\n./lib/cuckoo/core/database.py:    def count_matching_tasks(self, category=None, status=None, not_status=None):\r\n```\nComment: btw this should be a fix\r\n\r\n```\r\n-    count_q = q.statement.with_only_columns([func.count()]).order_by(None)\r\n+   count_q = q.statement.with_only_columns(func.count()).order_by(None)\r\n```\r\n\r\nif you can test that would be great\r\n\nComment: this should fix it https://github.com/kevoreilly/CAPEv2/pull/1888\nComment: btw as another user suggested you can try\r\npoetry run pip install --force-reinstall SQLAlchemy==1.4.50\nComment: I try to test as soon as possible. btw, just to clarify, the impacted code line was : \r\n\r\n`                    if not self.db.count_tasks(status=TASK_PENDING):\r\n                        continue\r\n`\r\nlocated in https://github.com/kevoreilly/CAPEv2/blob/master/lib/cuckoo/core/scheduler.py\nComment: yes i know i was able to locate that by error msg, but thanks, i have fixed that error that you was getting, i can't understand why it not fails to all users, but it should works now just fine for all with the fix, let me know once you test it\nComment: Confirm all working fine. \nComment: which of them? PR or dependency reinstaall? \nComment: No, I've only tested the branch https://github.com/kevoreilly/CAPEv2/pull/1888. All working with same dependencies.\nComment: great, thank you for feedback, closing this as solved, Merging that PR",
+  "Title: Delete monitor yara Carbanak.yar\nBody: No longer required due to monitor update",
+  "Title: Fix rule typo\nBody: None",
+  "Title: Adjust breakpoint\nBody: None",
+  "Title: Improve yara rules\nBody: None",
+  "Title: Update Carbanak Config Extraction\nBody: None\nComment: can you add test for it plz?\nComment: if you have file already can you put it here https://github.com/CAPESandbox/CAPE-TestFiles/tree/main/malware ?\nComment: thanks for the test",
+  "Title: unify 3rd part download services configs\nBody: None",
+  "Title: malware bazaar download tab\nBody: None",
+  "Title: Cape no longer recognizes the VM.\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ Y ] I am running the latest version\r\n- [ Y ] I did read the README!\r\n- [ Y ] I checked the documentation and found no answer\r\n- [ Y ] I checked to make sure that this issue has not already been filed\r\n- [ Y ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ Y ] I have read and checked all configs (with all optional parts)\r\n\r\n# Expected Behavior\r\n\r\nWhen I executed the curl command below, the analysis was not executed due to the error output. It seems that cape no longer recognizes the target VM (win10-22) when a problem occurs with sandbox.\r\n\r\n```\r\n$ curl --noproxy localhost -F \"file=@/home/cape/test.docx\" -F machine=\"win10-22\" http://localhost:8000/apiv2/tasks/create/file/\r\n{\"error\":true,\"error_value\":\"Machine 'win10-22' does not exist. Available: win10-1, win10-2, win10-3, win10-4, win10-5, win10-6, win10-9, win10-10, win10-11, win10-12, win10-13, win10-14, win10-16, win10-17, win10-18, win10-19, win10-21, win10-23, win10-24, win10-25, win10-26, win10-27, win10-29, win10-30\"}\r\n```\r\n\r\nAfter resolving the VM issue with sandbox, I ran the curl command again, but the target VM was not recognized by cape and I got the same result as above. I have confirmed that the target VM can be used by restarting the cape service, but please let me know if there is any recovery method other than restarting the cape service.\nComment: that is due probably that you have disable unserivible vms in config, disable that and restart `systemctl restart cape` and web\nComment: ok is not about vm https://github.com/kevoreilly/CAPEv2/blob/master/conf/cuckoo.conf#L38-L41\r\nso i have no idea\nComment: Currently, the `fail_unserviceable` setting is on, so I think it is no longer recognized when a problem occurs with the VM. cape(web) Is there a way to re-recognize the VM other than restarting the service?\nComment: Disabling inservible and check database probably in machines, check how it\r\ndisabled it, so you can revert that\r\n\r\nEl jue, 30 nov 2023, 4:02, 5470u2k ***@***.***> escribi\u00f3:\r\n\r\n> Currently, the fail_unserviceable setting is on, so I think it is no\r\n> longer recognized when a problem occurs with the VM. cape(web) Is there a\r\n> way to re-recognize the VM other than restarting the service?\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1853#issuecomment-1833032465>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3YCH24L23YQWUD3R7LYG7ZLZAVCNFSM6AAAAAA76Z76DCVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTQMZTGAZTENBWGU>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: Could you please let me know which options need to be disabled?\r\nAlso, which database should I check, mongodb or postgres? I would also like to know the table name and column name.\nComment: `fail_unserviceable` is for task not for vm. IDK i never had this problem so i can't remember what happens what yo u need to do in this cases is read readme how to debug problem, and enable debug mode for everything like `cuckoo.py` to see whats going on and why that VM getting disabled. the relevant code is probably this one, but as i told go and debug with executed in debug mode by hand(details in readme) https://github.com/kevoreilly/CAPEv2/blob/9ff29798abb9c7c9a8d1ab74f252aa4e71846d29/lib/cuckoo/core/database.py#L839-L852\nComment: When I checked cuckoo.log with debugging enabled, I noticed that there were frequent logs that appeared to indicate that the network connection had been lost. \r\nI have attached the log, but has something like this ever occurred before?\r\n[cuckoo.zip](https://github.com/kevoreilly/CAPEv2/files/13736855/cuckoo.zip)\r\n\nComment: so by parts, when you add task are you able to see that that machine is started? we don't use/maintain vbox hypervisor module, so i can't say exactly whats wrong but yes it looks like networking problem from quick check, so i would go in this way:\r\n\r\n1. add task and see if VM is restored and running\r\n2. check networking inside of the vm to see if it works + agent is running (https://capev2.readthedocs.io/en/latest/installation/guest/agent.html#installing-the-agent)\r\n\r\nif step 1 or 2 fails, for step 1 you probably will need to check the command line for your version of vbox and update machinery module for CAPE, if step 2 fails, just follow docs for agent or configure networking",
+  "Title: Bump cryptography from 41.0.4 to 41.0.6\nBody: Bumps [cryptography](https://github.com/pyca/cryptography) from 41.0.4 to 41.0.6.\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst\">cryptography's changelog</a>.</em></p>\n<blockquote>\n<p>41.0.6 - 2023-11-27</p>\n<pre><code>\n* Fixed a null-pointer-dereference and segfault that could occur when loading\n  certificates from a PKCS#7 bundle.  Credit to **pkuzco** for reporting the\n  issue. **CVE-2023-49083**\n<p>.. _v41-0-5:</p>\n<p>41.0.5 - 2023-10-24\n</code></pre></p>\n<ul>\n<li>Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.1.4.</li>\n<li>Added a function to support an upcoming <code>pyOpenSSL</code> release.</li>\n</ul>\n<p>.. _v41-0-4:</p>\n</blockquote>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/pyca/cryptography/commit/f09c261ca10a31fe41b1262306db7f8f1da0e48a\"><code>f09c261</code></a> 41.0.6 release (<a href=\"https://redirect.github.com/pyca/cryptography/issues/9927\">#9927</a>)</li>\n<li><a href=\"https://github.com/pyca/cryptography/commit/5012bedaef2dc60af3955306774b77ef379116e3\"><code>5012bed</code></a> bump for 41.0.5 release (<a href=\"https://redirect.github.com/pyca/cryptography/issues/9766\">#9766</a>)</li>\n<li><a href=\"https://github.com/pyca/cryptography/commit/563b1193997512836603777d31e2ea281b3dc79a\"><code>563b119</code></a> Added binding needed for pyOpenSSL (<a href=\"https://redirect.github.com/pyca/cryptography/issues/9739\">#9739</a>) (<a href=\"https://redirect.github.com/pyca/cryptography/issues/9740\">#9740</a>)</li>\n<li>See full diff in <a href=\"https://github.com/pyca/cryptography/compare/41.0.4...41.0.6\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=cryptography&package-manager=pip&previous-version=41.0.4&new-version=41.0.6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Fixed problem with Procmon module not working\nBody: Updated based on [CAPESandbox/community#389](https://github.com/CAPESandbox/community/pull/389)\nComment: thanks",
+  "Title: Fixed bug in CAPEv2/installer/kvm-qemu.sh\nBody: - a recent commit broke compilation of libvirt-glib-1.0-0\r\n- fixed typo in generation of *.deb file\r\n- adjusted values in /tmp/libvirt-glib_builded/DEBIAN/control\r\n  to work as needed\nComment: Link to breaking commit: https://github.com/kevoreilly/CAPEv2/commit/c7764d1e523e525d7c38a69be4cd3384b7d57031\nComment: Building is open thing, but proper name and version is another as APT searches for specific thing, once I will have some spare time I will review this properly,thanks\nComment: FWIW, I have successfully tested building CAPE several times against Ubuntu 22.04.3 with latest APT updates.\r\n\r\nWith the original implementation, `apt` was broken and was asking me to run `apt --fix-broken install`, which would have downloaded the APT version of the `libvirt-glib-1.0-0` library because the dependency for `gir1.2-libvirt-glib-1.0_1.0.0-1_amd64.deb` was not satisfied. However, once I made the changes in this PR (i.e. latest force-push), `apt` was working as expected.\nComment: sounds good, thank you",
+  "Title: Usage.py doesn't call add_pid function \nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ ] I am running the latest version\r\n- [ ] I did read the README!\r\n- [ ] I checked the documentation and found no answer\r\n- [ ] I checked to make sure that this issue has not already been filed\r\n- [ ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ ] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\nI am currently trying to add Pe sieve as an auxiliary module. I copied the add_pid functions from usage.py so that pe sieve recognizes which is the pid of the malware sample and run on it. When running pe sieve its required to give it a pid to scan the process. In Cape i want to integrate Pe-sieve by using pid functions to help it interact with the malware sample\r\n\r\n# Current Behavior\r\nI looked at usage.py and i saw it had lines about PID. I thought i could use that to help Pe sieve interact with the malware sample in order to run on it. But in usage.py that function does not get called why is that, does it wait for something or? Can you explain how does usage.py work for this.\r\n\r\n# Failure Information (for bugs)\r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/119869815/2f5d8652-ba59-4836-b90b-5fbe80a7317a)\r\n\r\n\r\n## Failure Logs\r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/119869815/583ca018-10dd-4fd4-b552-7bd6729b6d71)\r\n\r\nBelow is my code for Pesieve which i managed to build:\r\n\r\n```\r\nimport time\r\nimport logging\r\nimport os\r\nimport subprocess\r\nfrom threading import Thread\r\nfrom lib.common.abstracts import Auxiliary\r\nfrom lib.common.results import NetlogFile\r\n\r\nlog = logging.getLogger(__name__)\r\n\r\nclass PESieve(Auxiliary, Thread):\r\n    def __init__(self, options, config):\r\n        Auxiliary.__init__(self, options, config)\r\n        Thread.__init__(self)\r\n        #self.enabled = config.get(\"pesieve\", True)\r\n        self.pesieve_path = \"C:\\\\Users\\\\CapeUser\\\\Desktop\\\\pesieve\\\\pe-sieve64.exe\"\r\n        self.netlog_file = NetlogFile(\"aux/pesieve.log\")\r\n\r\n    def add_pid(self, pid):\r\n        log.info(\"Pid Check\") \r\n        print(\"Started PID checks\")\r\n        \r\n        pass\r\n    \r\n    def del_pid(self, pid):\r\n        log.info(\"Pid Check\") \r\n        print(\"Started PID checks\")\r\n    \r\n        \r\n    \r\n    def start(self):\r\n        self.run()\r\n        #if self.enabled:\r\n            \r\n\r\n    def run(self):\r\n        log.info(\"RUN CHECK\") \r\n        print(\"Running PID checks\")\r\n\r\n\r\n        \"\"\" try:\r\n            subprocess.Popen([self.pesieve_path], shell=False)\r\n            log.info(\"PE-sieve started successfully.\")\r\n            print(\"PE-sieve started successfully.\")  # Add print statement\r\n            self.collect_and_store_results()\r\n        except Exception as e:\r\n            log.error(f\"Failed to start PE-sieve: {e}\")\r\n            print(f\"Failed to start PE-sieve: {e}\")  # Add print statement \"\"\"\r\n        while False:\r\n            time.sleep(2)\r\n        return True\r\n\r\n    def collect_and_store_results(self):\r\n        pesieve_output_path = \"C:\\\\Users\\\\CapeUser\\\\Desktop\\\\pesieve\\\\output\\\\pesieve_output.json\"\r\n        try:\r\n            with open(pesieve_output_path, \"r\") as f:\r\n                results = f.read()\r\n            self.netlog_file.send(results.encode())\r\n            log.info(\"PE-sieve results collected and logged.\")\r\n            print(\"PE-sieve results collected and logged.\")  # Add print statement\r\n        except IOError:\r\n            log.error(\"PE-sieve output not found or could not be opened.\")\r\n            print(\"PE-sieve output not found or could not be opened.\")  # Add print statement\r\n\r\n    def stop(self):\r\n        pass\r\n``\nComment: Hi - I'm afraid that this particular component in CAPE originates from Brad Spengler's cuckoo-modified so I have absolutely no idea why it contains functions like ``add_pid`` which are never used. Perhaps studying the module's history in that repository might shed some light: https://github.com/spender-sandbox/cuckoo-modified/commit/b86da47f4ffd7bb1c05801886703b84e56ec4f39\r\n\r\nOr perhaps you can raise an issue there for Brad who wrote this code. Sorry I can't be of more help!\nComment: ok alright will look into it, meanwhile \r\nI have an add-on question towards **analyzer.py**\r\nWhen looking at the code I was focusing on how analyzer passes the pid of the sample I submit through the other auxiliaries.\r\nhttps://github.com/kevoreilly/CAPEv2/blob/8be0cc5ac4f699f4c96495e0440449edfae3d52b/analyzer/windows/analyzer.py#L138C1-L151C21\r\n\r\nI added print statements to the analyzer.py to see if this function works, but I get no output, this gives me an alert that something isn't right in the code itself ,can you give me some guidance about this?\r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/119869815/80b6dc0f-22bc-4da8-9bd2-89e42a5d7ee1)\r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/119869815/ca672402-1f91-4cde-ba91-3119dea18efb)\r\n\r\n\nComment: print won't be logged to analysis.log, only `logging` is written to file\nComment: ah thanks, this fixes the issue.  i have one more concern, so apparently these 2 functions:https://github.com/kevoreilly/CAPEv2/blob/8be0cc5ac4f699f4c96495e0440449edfae3d52b/analyzer/windows/analyzer.py#L138C1-L151C21\r\n for some reason give me no output even though I have enabled my custom auxiliary in auxiliary.conf. Something is wrong with the analyzer.py passing the pid to the auxiliaries....... I read the documentation where to enable my auxiliaries - in the auxiliary.conf but maybe I am missing something\r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/119869815/494b9dc9-ac63-4c20-8bbd-2298a1d10628)\r\n\nComment: last block is not required, only the first one, maybe there is any exception so add logging to log error before `continue`, something like:\r\n\r\n```\r\nexcept Exception as e:\r\n            log.exception(e)\r\n            continue\r\n```\nComment: for both functions?\r\n\nComment: for those that you care, most important for you is add not del \nComment: Hey, sorry for reopening the issue, but I can't seem to find why does the add_pid_to_aux_module in analyzer.py doesn't work: https://github.com/kevoreilly/CAPEv2/blob/master/analyzer/windows/analyzer.py#L138C1-L143C21\r\n\r\nI have added pe sieve in auxiliary.conf as it should be, my code for Pesieve as an auxiliary finally gets run by Cape, but it needs a pid to execute on.  Analyzer.py doesn't pass the pid to the auxiliary modules and I cannot determine why, it's getting frustrating\r\n[pesieve_code.txt](https://github.com/kevoreilly/CAPEv2/files/13513573/pesieve_code.txt)\r\n\r\nI have added a line where it prints the pid of the payload that is submitted by Cape.\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/119869815/efce933a-5953-4394-a234-e9d207478d6c)\r\n\r\nI have looked through the lines before the def add_pid_to_aux_modules, and I cannot determine what's the issue:\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/analyzer/windows/analyzer.py#L7C1-L144C1\r\n\r\n![Screenshot 2023-11-30 140859](https://github.com/kevoreilly/CAPEv2/assets/119869815/6140b4d0-acca-4682-9f6b-572dd61615fe)\r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/119869815/a0062152-981d-4bd1-b129-a60b9c44235b)\r\n\nComment: i have no idea why, i would need to go and dig into that but i don't have time and it's not priority for me. Some of the code coming from Cuckoo -> Cuckoo-modified -> CAPE so some of it might be obsoleted. I guess you will have to dig into that by your own. \r\n\r\nbut from quick look `add_pid` requires your module to have implemented `add_pid` function that receive PID and you need to transfer it to pesieve, but that is theorically, how it works on practice i have no clue\nComment: Hey, it's me again: I am having an issue retrieving the results as you suggested with upload_to_host.\r\nLet me explain with the photo - no need to know what PE sieve does and how it works....\r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/119869815/bd2003a0-4be2-481f-8702-9aa370e09b8c)\r\n\r\nSo in my code, PeSieve recognizes the PID of the sample I upload from Cape, \r\nthe thing of PE sieve is after a scan in the same folder where PE sieve is run, it generates reports with the results \r\n![image](https://github.com/kevoreilly/CAPEv2/assets/119869815/f36df717-3baf-4f96-ab71-9a20f0070ad2)\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/119869815/5e9eb098-9cce-432d-9040-1889be49265d)\r\n\r\nEverything is good, but im just no able to retrieve the results to the \"pesieve\" folder.\r\nI have added it in resultserver as needed.\r\nI am wondering if there is any syntax errors but I don't see any from this.\r\n\r\nCan you help me out?\r\n\nComment: uff this hard to help without errors, did you restart cape.service after you change the code? you can stop the cape service with `sudo systemctl stop cape` and then start it in terminal with debug enabled, `as cape user` `poetry run python cuckoo.py -d` and resubmit your job, maybe that will give you some clues what is wrong\nComment: One quick question, does upload_to_host support uploading whole folders?\nComment: no, call it in loop or compress and submit as zip, as you know what you submit, you will know how to process it, and im on PTO so till next year no more answers from me. have fun",
+  "Title: fixes\nBody: None",
+  "Title: Add module to parse NanoCore RAT\nBody: I created a module to extract NanoCore RAT configuration.\r\n\r\nThe following image shows the result of extracting the configuration from this sample.  \r\nhttps://bazaar.abuse.ch/sample/674427173a5e079caa90209387e6131f19ebafea2f2a0b7c580fa8ea7d4eaa45/\r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/77025706/8f319066-0821-40c6-a9dc-b76e9883a514)\r\n\nComment: Wow this looks awesome \u2764\ufe0f thanks a lot\nComment: i will add tests later and then merge, have to go right now\nComment: thanks for config extractor, i have added test for it + we don't use pycrypto or pycryptome, we do use pycryptodomex + small code improvements",
+  "Title: Tentative of human like mouse movement\nBody: This specfic pattern added which happen 25% of the time, is going to induce movement of the mouse at 50 milliseconds interval for 1 second of going in roughly a straight line with fuzziness in order to be more human like. It obviously respect the rules of https://thehackernews.com/2023/11/lummac2-malware-deploys-new.html since the angle is definitely under 45 degree. The idea is for it to be generic for more than this specific implementation. Might be an addition for what is appropriate for the specific case but it does solve that too, maybe both would be good. Happy for feedbacks.\nComment: After revisiting this, it seem that it doesn't work for `b14ddf64ace0b5f0d7452be28d07355c1c6865710dbed84938e2af48ccaa46cf`. It have been corrected and it seem to work correctly now.\nComment: It does indeed work \u2764\ufe0f thank you\nComment: I am happy to merge but see this was marked as draft - any reason to wait?\nComment: No reasons to wait, the reason for still being a draft is that I am working on more improvement for human.py which are related, which are still in final testing/code review but they will be on a separate PR. Can be merged without a problem ! \nComment: Fantastic\nComment: Thank you",
+  "Title: Update file_extra_info.py\nBody: None",
+  "Title: Behavioral analysis and data missing\nBody: Please answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I did read the README!\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nBehavioral analysis, process tree or something in there.\r\n\r\n# Current Behavior\r\n\r\nNo behavioral information returned from the analysis\r\n[modules.processing.behavior] INFO: Analysis results folder does not contain any file or injection was disabled.\r\n\r\n## Steps to Reproduce\r\n\r\nwindows 10 21h2, python 3.10 any windows exe\r\nany start method (startup, scheduled, services, manual) for agent as administator\r\nUAC disabled\r\n\r\n## Failure Logs\r\n\r\nattached\r\n[analysis.log](https://github.com/kevoreilly/CAPEv2/files/13453630/analysis.log)\r\n\nComment: I would say you haven't properly configured KVM or what you using for\r\nemulation\r\n\r\nEl jue, 23 nov 2023, 23:30, marvinuku ***@***.***> escribi\u00f3:\r\n\r\n> Please answer the following questions for yourself before submitting an\r\n> issue.\r\n>\r\n>    - I am running the latest version\r\n>    - I did read the README!\r\n>    - I checked the documentation and found no answer\r\n>    - I checked to make sure that this issue has not already been filed\r\n>    - I'm reporting the issue to the correct repository (for\r\n>    multi-repository projects)\r\n>    - I have read and checked all configs (with all optional parts)\r\n>\r\n> Expected Behavior\r\n>\r\n> Behavioral analysis, process tree or something in there.\r\n> Current Behavior\r\n>\r\n> No behavioral information returned from the analysis\r\n> [modules.processing.behavior] INFO: Analysis results folder does not\r\n> contain any file or injection was disabled.\r\n> Steps to Reproduce\r\n>\r\n> windows 10 21h2, python 3.10 any windows exe\r\n> any start method (startup, scheduled, services, manual) for agent as\r\n> administator\r\n> UAC disabled\r\n> Failure Logs\r\n>\r\n> attached\r\n> analysis.log\r\n> <https://github.com/kevoreilly/CAPEv2/files/13453630/analysis.log>\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1844>, or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH35ZQCOT5CFTD7COO6TYF7FAXAVCNFSM6AAAAAA7YKKP2WVHI2DSMVQWIX3LMV43ASLTON2WKOZSGAYDQOBWGAYTCMI>\r\n> .\r\n> You are receiving this because you are subscribed to this thread.Message\r\n> ID: ***@***.***>\r\n>\r\n\nComment: if this is related to the domain configuration of the KVM VM, then yes, i did not do that, because i could not get through  of the xml modification errors (for unknown reasons, i have been searching for days for the fix), also virt-manager did not allow me to \"allow XML editing\" from preferences\r\n\r\ndid host complete reinstall and was able to modify KVM guest domain values directly from /etc/libvirt/qemu/vmname.xml, so the values would actually be saved.\r\n\r\nmoral of this issue is that always start with clean machine and freshly installed machine as a host. i probably had somekind of issue with dependencies and versions, nevertheless i followed the guide 20 times, just my host os previously was old and upgrading it was a bit hustle.\r\n\r\nanyway, i got it working and yes, the issue was probably in the kvm configuration\r\n\r\nthanks a lot.\nComment: xml shouldn't be a problem here, more that you configure properly networking of VM and host, but glad that you got it working",
+  "Title: Update process.py\nBody: None",
+  "Title: UnAutoIt repository deleted.\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\nI tried to build UnAutoIt following the instructions in conf/selfextract.conf, but the UnAutoIt repository had been deleted.\r\n\r\nReferences:\r\n- https://github.com/kevoreilly/CAPEv2/blob/master/conf/selfextract.conf#L35-L38\r\n- https://github.com/x0r19x91/UnAutoIt (Page not found)\nComment: so what do you expect us to do about deleted repo?\nComment: I think it should be replaced by an alternative tool to UnAutoIt. You should also mention in conf/selfextract.conf that UnAutoIt is not available until an alternative tool is found.\nComment: well if you know the alternative you are welcome to propose that. Side note, we don't monitor 3rd part repos as you might understand, is the hell already to maintain 3rd part libraries \nComment: added msg in config.default that is become config on new instalation, if you spot any other good related tool let us know, closing this as there is no more that we can do here\nComment: Hi,\r\n\r\nthis could be a possible alternative: [https://github.com/warlomak/UnAutoIt](https://github.com/warlomak/UnAutoIt).\r\n\r\nRegards\r\nEngel\nComment: Someone can help me find the script of an EXE file that was hided script and could not be found in x64dbg.",
+  "Title: socket.gaierror: [Errno -2] Name or service not known\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X ] I am running the latest version\r\n- [ X] I did read the README!\r\n- [ X] I checked the documentation and found no answer\r\n- [ X] I checked to make sure that this issue has not already been filed\r\n- [ X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ X] I have read and checked all configs (with all optional parts)\r\n\r\n# Failure Information (for bugs)\r\n\r\ni have activate auth following the docs. (https://capev2.readthedocs.io/en/latest/usage/web.html#enable-web-interface-auth) i can log in and verified that if i insert bad credentials i get the error \"The username and/or password you specified are not correct.\".\r\n\r\nBut when i insert proper creds. i get the error:\r\n\r\n\r\n```\r\n    File \"/usr/lib/python3.10/socket.py\", line 955, in getaddrinfo\r\n\r\n        these arguments selects the full range of results.\r\n\r\n        \"\"\"\r\n\r\n        # We override this function since we want to translate the numeric family\r\n\r\n        # and socket type values to enum constants.\r\n\r\n        addrlist = []\r\n\r\n        for res in _socket.getaddrinfo(host, port, family, type, proto, flags):\r\n\r\n            af, socktype, proto, canonname, sa = res\r\n\r\n            addrlist.append((_intenum_converter(af, AddressFamily),\r\n\r\n                             _intenum_converter(socktype, SocketKind),\r\n\r\n                             proto, canonname, sa))\r\n\r\n        return addrlist\r\n\r\n    socket.gaierror: [Errno -2] Name or service not known\r\n```\r\n\r\nI have verified that dns resolution work fine and it gives me the host ip when i query the fqdn\r\n\r\n\r\n## Context\r\n\r\nI tested it with the nginx (reverse proxy) config that you provide in the docs. and with a regular apache2 reverse proxy and both of the gives the same error.\r\n\r\n\u00bfCan someone face the same error? \u00bfhow can i debug it?\r\n\nComment: hello, first time see this issue, i would suggest you to see the whole traceback as it might have extra context or put breakpoint in socket.py and inspect from where it was called. We have auth enabled but we don't have any of this issues, maybe review again `conf/web.conf` and `web/web/settings.py`\nComment: Hi:\r\n\r\nThanks for your quick response. I post the hole trace just to see if someone has an idea of what could be going on.\r\n\r\n`\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/contrib/staticfiles/handlers.py\", line 80, in __call__\r\n\r\n            self.base_url = urlparse(self.get_base_url())\r\n\r\n            super().__init__()\r\n\r\n     \r\n\r\n        def __call__(self, environ, start_response):\r\n\r\n            if not self._should_handle(get_path_info(environ)):\r\n\r\n                return self.application(environ, start_response)\r\n\r\n            return super().__call__(environ, start_response)\r\n\r\n     \r\n\r\n     \r\n\r\n    class ASGIStaticFilesHandler(StaticFilesHandlerMixin, ASGIHandler):\r\n\r\n        \"\"\"\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/wsgi.py\", line 124, in __call__\r\n\r\n    response = self.get_response(request)\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/base.py\", line 140, in get_response\r\n\r\n    response = self._middleware_chain(request)\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/exception.py\", line 57, in inner\r\n\r\n    response = response_for_exception(request, exc)\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/exception.py\", line 140, in response_for_exception\r\n\r\n    response = handle_uncaught_exception(\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/exception.py\", line 181, in handle_uncaught_exception\r\n\r\n    return debug.technical_500_response(request, *exc_info)\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django_extensions/management/technical_response.py\", line 40, in null_technical_500_response\r\n\r\n    raise exc_value.with_traceback(tb)\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/exception.py\", line 55, in inner\r\n\r\n    response = get_response(request)\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/handlers/base.py\", line 197, in _get_response\r\n\r\n    response = wrapped_callback(request, *callback_args, **callback_kwargs)\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/views/generic/base.py\", line 104, in view\r\n\r\n    return self.dispatch(request, *args, **kwargs)\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/utils/decorators.py\", line 46, in _wrapper\r\n\r\n    return bound_method(*args, **kwargs)\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/views/decorators/debug.py\", line 92, in sensitive_post_parameters_wrapper\r\n\r\n    return view(request, *args, **kwargs)\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/allauth/account/views.py\", line 149, in dispatch\r\n\r\n    return super(LoginView, self).dispatch(request, *args, **kwargs)\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/allauth/account/views.py\", line 77, in dispatch\r\n\r\n    response = super(RedirectAuthenticatedUserMixin, self).dispatch(\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/views/generic/base.py\", line 143, in dispatch\r\n\r\n    return handler(request, *args, **kwargs)\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/allauth/account/views.py\", line 105, in post\r\n\r\n    response = self.form_valid(form)\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/allauth/account/views.py\", line 162, in form_valid\r\n\r\n    return form.login(self.request, redirect_url=success_url)\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/allauth/account/forms.py\", line 196, in login\r\n\r\n    ret = perform_login(\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/allauth/account/utils.py\", line 168, in perform_login\r\n\r\n    response = adapter.pre_login(request, user, **hook_kwargs)\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/allauth/account/adapter.py\", line 412, in pre_login\r\n\r\n    send_email_confirmation(request, user, signup=signup, email=email)\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/allauth/account/utils.py\", line 319, in send_email_confirmation\r\n\r\n    email_address.send_confirmation(request, signup=signup)\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/allauth/account/models.py\", line 60, in send_confirmation\r\n\r\n    confirmation.send(request, signup=signup)\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/allauth/account/models.py\", line 168, in send\r\n\r\n    get_adapter(request).send_confirmation_mail(request, self, signup)\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/allauth/account/adapter.py\", line 549, in send_confirmation_mail\r\n\r\n    self.send_mail(email_template, emailconfirmation.email_address.email, ctx)\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/allauth/account/adapter.py\", line 140, in send_mail\r\n\r\n    msg.send()\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/mail/message.py\", line 298, in send\r\n\r\n    return self.get_connection(fail_silently).send_messages([self])\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/mail/backends/smtp.py\", line 127, in send_messages\r\n\r\n    new_conn_created = self.open()\r\n\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/mail/backends/smtp.py\", line 85, in open\r\n\r\n    self.connection = self.connection_class(\r\n\r\n    File \"/usr/lib/python3.10/smtplib.py\", line 255, in __init__\r\n\r\n    (code, msg) = self.connect(host, port)\r\n\r\n    File \"/usr/lib/python3.10/smtplib.py\", line 341, in connect\r\n\r\n    self.sock = self._get_socket(host, port, self.timeout)\r\n\r\n    File \"/usr/lib/python3.10/smtplib.py\", line 312, in _get_socket\r\n\r\n    return socket.create_connection((host, port), timeout,\r\n\r\n    File \"/usr/lib/python3.10/socket.py\", line 824, in create_connection\r\n\r\n    for res in getaddrinfo(host, port, 0, SOCK_STREAM):\r\n\r\n    File \"/usr/lib/python3.10/socket.py\", line 955, in getaddrinfo\r\n\r\n    for res in _socket.getaddrinfo(host, port, family, type, proto, flags):\r\n\r\n    socket.gaierror: [Errno -2] Name or service not known\r\n`\r\n\r\n\r\nI also post some modifications that we made to the web config, modifiying the default config. in /opt/CAPEv2/custom/conf\r\n\r\n\r\n`[web_auth]\r\nenabled=yes\r\n[general]\r\nhostname = my.machine.es\r\n; hostname = X.X.X.X`\r\n\r\nIf someone can help i will aprecciate it.\r\n\r\n\nComment: i would say you have problem with your hostname, so you need to configure that on OS level, is not related to cape. you can hardcode host/ip in `/etc/hosts`. google for other options\r\n\r\nalso this value is in 2 lines or 1? \r\nhostname = my.machine.es ; hostname = X.X.X.X\nComment: Hi:\r\n\r\nI have /etc/hosts modified like this:\r\n\r\n\r\n```\r\n127.0.0.1       localhost\r\n\r\n127.0.1.1       localhost\r\n\r\nX.X.X.X   my.machine.es\r\n```\r\n\r\n\r\nAnd the web.conf is set in two lines:\r\n\r\n\r\n```\r\n[web_auth]\r\n\r\nenabled=yes\r\n\r\n[general]\r\n\r\nhostname = my.machine.es\r\n\r\n; hostname = X.X.X.X\r\n\r\n\r\n```\r\nI've verified also with nslookup that the name resolution works fine\r\n\r\n\r\nnslookup my.machine.es\r\nServer:         127.0.0.53\r\nAddress:        127.0.0.53#53\r\n\r\nName:   my.machine.es\r\nAddress: X.X.X.X\r\n\nComment: well idk what is wrong here and how is your server configured, but that is def something that has something to do with that and not with cape. i just had to put hostname in web.conf and thats all, you probably need to dig into your server dns resolver config as it probably uses first public dns instead of local one\nComment: quizas quereras borrar el dominio de tu empresa de tu mensaje anterior ;) \nComment: but yes the name of the company is resolved, the subdomain isn't, so you must configure your dns to use local resolver first i guess\nComment: any update?\nComment: Hi:\r\n\r\nFinally i manage to solve this problem.\r\n\r\nYou're right when you said that is a dns resolution problem, i have to force systemd-resolv to use local dns resolution (since the machine is in an isolated enviroment and had no connectivity at all), also modifiying /etc/hosts and hostname the issue gets solved.\r\n\r\nBest regards.\nComment: Great, glad you solved that and thanks for confirming my theory",
+  "Title: Fix subscription typo\nBody: None\nComment: Thanks",
+  "Title: Fixed WOOT replacement bug.\nBody: Fixed kvm-qemu.sh in a place where double quotes were missing and WOOT string replacement failed.\nComment: thanks",
+  "Title: quiet down screenshot capture debug logs\nBody: Follow up to https://github.com/kevoreilly/CAPEv2/pull/1814, make logs quieter. The machinery based screenshots work well but logs are too noisy.",
+  "Title: Having trouble with retrieving the results from a scan to the host\nBody: #\r\n\r\n- [ ] I am running the latest version\r\n- [ ] I did read the README!\r\n- [ ] I checked the documentation and found no answer\r\n- [ ] I checked to make sure that this issue has not already been filed\r\n- [ ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ ] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\nAfter a scan pe-sieve should have a seperate folder in analysis directory and there i should have files as a result.\r\nSomething like procmon when it gets executed, it has its own folder with files inside:\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/148639402/043c2024-ed8a-4d5b-91d4-d8816765e94c)\r\n\r\n\r\n# Current Behavior\r\nSo I have issue with integrating Pe-Sieve as an auxiliary module. I wrote a python code for it but it doesn't store the results as expected I have copied the codes from digisig.py and evtx.py and tried to implement the uploading method in my code but still nothing, the auxiliary gets intitalized which is good but still nothing, i even places the execs of the tool in the /bin folder.\r\n\r\n# Failure Information (for bugs)\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/148639402/0c30d837-361e-4cc1-9ee2-7b30e644e01f)\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/148639402/07868766-cdc2-407a-9e5c-90ad2aa1ca20)\r\n\r\nCode:\r\n[pesievecode.txt](https://github.com/kevoreilly/CAPEv2/files/13366273/pesievecode.txt)\r\n\r\n\nComment: i would suggest you to become familiar with `grep`, i think i already told you that, that will speedup your workflow with any opensource project.\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/lib/cuckoo/core/resultserver.py#L47-L62 you need  to whitelist your `pe_sieve` and YOU MUST BECOME FAMILIAR with how to use logs, you have messages about your problem there! So you just could grep them and would get exactly to the place where you need to whitelist \nComment: solved?",
+  "Title: fixed clamav\nBody: None",
+  "Title: Analysis cannot be performed in Sandbox.\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ Y ] I am running the latest version\r\n- [ Y ] I did read the README!\r\n- [ Y ] I checked the documentation and found no answer\r\n- [ Y ] I checked to make sure that this issue has not already been filed\r\n- [ Y ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ Y ] I have read and checked all configs (with all optional parts)\r\n\r\n# Expected Behavior\r\n\r\nI am building a Sandbox environment with VirtualBox, but after the analysis is completed, the VM status does not change from \"stopped\". The following logs are output to cuckoo.log.\r\n\r\n```\r\n2023-11-02 12:14:51,805 [lib.cuckoo.core.scheduler] WARNING: Task #13111: Unable to stop machine win10-8: Timeout hit while for machine win10-8 to change status\r\n2023-11-02 12:14:55,596 [lib.cuckoo.core.scheduler] INFO: Task #13293: acquired machine win10-8 (label=win10-8, arch=x64, platform=windows)\r\n2023-11-02 12:21:08,663 [lib.cuckoo.core.scheduler] WARNING: Task #13293: Unable to stop machine win10-8: Timeout hit while for machine win10-8 to change status\r\n```\r\n\r\nIf you restart cape.service, the VM that was \"stopped\" will return to its original state, but unless you restart it, you will not be able to use the VM for analysis. Have you ever experienced a similar event? If you know the cause, please tell me how to solve it.\nComment: Hello, we don't support virtualbox, we don't have any issue like that with kvm, I would you suggest to see virtualbox logs for details\nComment: Thank you for your reply. Check the virtualbox logs.",
+  "Title: add config support for kvm-qemu.sh\nBody: - './kvm-config.sh' will be read in if exists now.\r\n- various instances of '<WOOT>' have been turned into variables with default values of '<WOOT>'\r\n\r\nThis allows easier rebuilds/builds via just dumping a config file in place and then running it. No editing of the file needed.\nComment: thanks",
+  "Title: Cape broke when i installed lib again\nBody: I was doing some coding on adding some tools to Cape and I got an error: no module named lib.cuckoo\r\nIt was strange because I installed everything accordingly. I decided to install lib again with poetry run pip install lib\r\n\r\nI rebooted the system and now cape dashboard cannot open. What could be the problem?\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/148639402/9a675eeb-4c2d-4335-8fdf-88f60e05ab14)\r\n\nComment: First I hate when people remove template but ask for help\r\nSecond read readme\nComment: by parts, go and read readme and docs to get familiar with cape. idk what is `lib` is, but is not related to cape at all",
+  "Title: match all subdomains of windowsupdate\nBody: For example: https://www.virustotal.com/gui/ip-address/209.197.3.8/relations\r\n\r\nThere are many subdomains of windows update\r\n```\r\n1b.au.download.windowsupdate.com\r\naupl.ds.download.windowsupdate.com\r\nopsmsedgeextensions.f.tlu.dl.delivery.mp.microsoft.com\r\nmp.aupn.ds.download.windowsupdate.com\r\nmp.aupl.ds.download.windowsupdate.com\r\n9.b1.download.windowsupdate.com\r\n```\nComment: Thanks\nComment: Thank you ",
+  "Title: Error: No module named xmltodict for sysmon.py\nBody: I was going through what tools I can add to Cape and stopped at Sysmon. Sysmon from what I have seen is already added as a module in Cape and all I needed to do is enable it in **proccessing.conf.**\r\nI got an error from sysmon.py in modules/proccessing :  No module named xmltodict. \r\n\r\nI installed it using **pip install xmltodict** and after that I rebooted the system. I still get it though,any idea behind it?\r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/148639402/231323e7-883b-4e15-a9bf-b300e9824b6b)\r\n\r\n\nComment: cape uses poetry, just pip isn-t how cape works, install it properly `poetry run pip install X` more in docs  as example https://capev2.readthedocs.io/en/latest/installation/host/installation.html#optional-dependencies\nComment: that comes from community, we do not maintain community things, so they might now work and you will need to fix it, so be aware of that\nComment: yeah, just tried it and worked, should have tried and if it didnt i should have asked. \r\nsorry for that\nComment: np, is how we learn \nComment: just one thing/ after an analysis what normally would be in the sysmon folder?\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/148639402/98748766-cd3a-4193-8396-47234a96e5b4)\r\n\nComment: you don't need to open issue to ask the question.\r\ni have no idea, as i told is community plugin and im personally don't use it at all",
+  "Title: temporary mongodb fix\nBody: Workaround for error encountered when storing behavior.processtree in mongodb\r\n\r\nBSONObj exceeds maximum nested object depth in element with field name 'behavior.processtree.0.children.0.children.0.....\"",
+  "Title: KVM/VirtManager doesn't auto-boot guest machine upon sample submission\nBody: I am not finding info on Cape Documentation about KVM guest auto-boot. When submitting a sample, cape should auto-boot the guest machine. In order for my sample submission to continue i need to manually turn on the guest Windows virtual machine. I assume it can be an issue with one of the .conf files but I may be wrong. Can you give me some guidance on the matter?\nComment: did you take snapshot of the vm in running state?\nComment: Unfortunately your stated assumption is incorrect. CAPE does not auto-boot virtual machines, it restores snapshots. It sounds like it would be worth reading the documentation!\nComment: https://capev2.readthedocs.io/en/latest/installation/guest/saving.html#kvm\nComment: yeah ok, so when i open disc image path my machine is already .qcow2.\r\ni try to virsh edit and do the configuration but im met with this:\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/148639402/7d3250d8-501a-415d-8167-fb3fd190aeaa)\r\n\r\n\nComment: read docs more closer, `virsh edit \"<Name of VM>\"` vm name, not disk name\nComment: but that is unrelated to taking snapshots, is just how to make it more stealth for malware analysis.\r\n so if your vm name is `win10` then when VM is running __and you verified that agent is working properly__. Run `virsh snapshot-create-as --domain \"<Name of VM>\" --name \"<Name of snapshot>\"`\nComment: yeah it worked, thanks so much.\nComment: you are welcome",
+  "Title: Staging\nBody: None",
+  "Title: Logs are not output to process.log\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ Y ] I am running the latest version\r\n- [ Y ] I did read the README!\r\n- [ Y ] I checked the documentation and found no answer\r\n- [ Y ] I checked to make sure that this issue has not already been filed\r\n- [ Y ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ Y ] I have read and checked all configs (with all optional parts)\r\n\r\n# Expected Behavior\r\n\r\nI am starting cape-processor.service and cape-processor-fp.service on Ubuntu. Both logs should be output to /opt/CAPEv2/log/process.log, but no logs are added to process.log.\r\nPlease let me know if there is a way to resolve this issue or to output to separate log files for each service. Please let me know if you need any additional information.\r\n\r\nEach service is started using the following method.\r\n- cape-processor.service\r\n`ExecStart=/usr/bin/python3 -m poetry run python process.py -p20 auto -pt 2000`\r\n- cape-processor-fp.service\r\n`ExecStart=/usr/bin/python3 -m poetry run python process.py -p2 -fp auto -pt 5000`\nComment: Did you enable that in conf/logging conf? Otherwise it is inside of\r\nanalysis folder probably\r\n\r\nEl lun, 6 nov 2023, 6:52, 5470u2k ***@***.***> escribi\u00f3:\r\n\r\n> About accounts on capesandbox.com\r\n>\r\n>    - Issues isn't the way to ask for account activation. Ping capesandbox\r\n>    in Twitter <https://twitter.com/capesandbox> with your username\r\n>\r\n> This is open source and you are getting *free* support so be friendly!\r\n> Prerequisites\r\n>\r\n> Please answer the following questions for yourself before submitting an\r\n> issue.\r\n>\r\n>    - [ Y ] I am running the latest version\r\n>    - [ Y ] I did read the README!\r\n>    - [ Y ] I checked the documentation and found no answer\r\n>    - [ Y ] I checked to make sure that this issue has not already been\r\n>    filed\r\n>    - [ Y ] I'm reporting the issue to the correct repository (for\r\n>    multi-repository projects)\r\n>    - [ Y ] I have read and checked all configs (with all optional parts)\r\n>\r\n> Expected Behavior\r\n>\r\n> I am starting cape-processor.service and cape-processor-fp.service on\r\n> Ubuntu. Both logs should be output to /opt/CAPEv2/log/process.log, but no\r\n> logs are added to process.log.\r\n> Please let me know if there is a way to resolve this issue or to output to\r\n> separate log files for each service. Please let me know if you need any\r\n> additional information.\r\n>\r\n> Each service is started using the following method.\r\n>\r\n>    - processing.service\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1827>, or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH33GVRNSKTOBYGIUOIDYDB3IDAVCNFSM6AAAAAA666O4AWVHI2DSMVQWIX3LMV43ASLTON2WKOZRHE3TQMZUGU4TKNY>\r\n> .\r\n> You are receiving this because you are subscribed to this thread.Message\r\n> ID: ***@***.***>\r\n>\r\n\nComment: Sorry for the late reply, but please let me know again.\r\nWhen I checked the event again, I found that the log that was supposed to be output to process.log was output to /var/log/syslog. If you find out the reason why logs are not output to log/process.log, please let me know.\r\nconf/logging remains as default. Also, what should I check in the conf/analysis folder that you taught me last time?\nComment: if log is inside of the analysis folder. about syslog, just configure your conf/logging.conf\nComment: I checked the analyzer/ folder and storage/analyses/taskID folder, but process.log was not output. If the folder to check is wrong, please let me know.\nComment: analyzer why?, `storage/analyses/taskID` is correct, it should be there or in logs, depending on cofngi ,but if everything iin logging.conf is off, it should be in logs. ok by parts\r\n\r\nwhat is `cape-processor-fp.service`? is not cape's if you run 2 processing you will have probably problems. does it exist if you run `as cape user`: `poetry run python process.py -p2 -fp auto -pt 5000`\nComment: When I run the `poetry run python process.py -p2 -fp auto -pt 5000` command as a cape user, the following appears.\r\n```\r\n$ poetry run python process.py -p2 -fp auto -pt 5000\r\nOPTIONAL! Missed dependency: pip3 install https://github.com/CAPESandbox/peepdf/archive/20eda78d7d77fc5b3b652ffc2d8a5b0af796e3dd.zip#egg=peepdf==0.4.2\r\nOPTIONAL! Missed dependency: pip3 install -U git+https://github.com/DissectMalware/batch_deobfuscator\r\nOPTIONAL! Missed dependency: poetry run pip install -U git+https://github.com/CAPESandbox/httpreplay\r\n2024-02-16 13:12:41,419 [root] INFO: Processing analysis data\r\n\r\n```\r\ncape-process-fp.service is running to reprocess tasks whose status is `failed-processing`. I started it with the \"-fp\" option referring to the help below, but maybe I'm using it incorrectly?\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/utils/process.py#L411-L413\nComment: ah ok, that detail was missing initially to understand your case. so after you run by hand you still don't have the log in `logs/processing.log`?\nComment: When I ran the analysis with cape-processor-fp.service stopped, it seems that logs are now being output to log/process.log.\r\n\r\nUp until now, cape-processor-fp.service was started to reprocess failed_processing, but is it better not to start two cape-processor services at the same time?\r\nIf there is a correct way to use the \"-fp\" option, please let me know.\nComment: my personal suggestion is to investigate why do you have those failed tasks. if that is timeout, change timeout on main processor. as that might be your wasting of resources, if you run second processor for processing and it can't handle that, it will be eternal loop. Each case is different so is hard to say, as i told if that is timeout, just find optimal timeout\nComment: The following was output to process.log, so it was in `failed_processing` due to a timeout.\r\n```\r\n2024-02-10 08:47:13,350 [root] ERROR: Processing Timeout ('Task timeout', 2000). Function: 2000\r\n```\r\nI changed the timeout value from 2,000 seconds to 10,000 seconds, but it still times out and `fails_processing`.\r\n```\r\n2024-02-21 22:25:24,297 [root] ERROR: Processing Timeout ('Task timeout', 10000). Function: 10000\r\n```\r\nIt seems that if you continue to analyze a large number of files, it may sometimes time out. Could you please tell me the cause of the timeout or how to investigate?\nComment: wow that is ultra insane timeout, my worst cases are 900seconds.\r\n\r\nwell i will give you general points but you will need to move from there\r\n1. do you have enough hardware resources?(cpu/ram/hdd->ssd->nvme?)\r\n2. process one of those tasks with debug `-d` flag to see where it waste the time to see where you need to optimize as this is not cape out of the box experience, generally this happens when people puts all the crap yaras from everywhere around internet\r\n\r\nwith this 2 points you have enough details to start digging, is hard to suggest something else as i know 0 about your setup\nComment: Thank you for suggesting how to investigate timeouts. We are still investigating.\r\n\r\nIf you start cape-processor (without `-fp` option) and cape-processor service (with `-fp` option) at the same time, processor.log will disappear. If there is a way to reprocess failed_processing tasks without starting cape-processor (with `-fp` option), please let me know.\nComment: hello, the `-fp` is just flag here https://github.com/kevoreilly/CAPEv2/blob/master/utils/process.py#L296-L299 \r\n```\r\n                if failed_processing:\r\n                    tasks = db.list_tasks(status=TASK_FAILED_PROCESSING, limit=parallel, order_by=Task.completed_on.asc())\r\n                else:\r\n                    tasks = db.list_tasks(status=TASK_COMPLETED, limit=parallel, order_by=Task.completed_on.asc())\r\n```\r\n\r\nidk how logs can disappear, there should be something else. We don't append those tasks together as it might be dead end, as some tasks won't get completed, maybe in future we could introduce retry number for those and join both type of tasks but right now i don't have time for that\nComment: I found out the reason why process.log is not output when two services, cape-processor.service and cape-processor-fp.service, are started at the same time. If you start two services at the same time, process.py rotates process.log twice a day. The process.log.YYYY-MM-DD file created during rotation was overwritten during the second rotation, causing the contents of process.log to be lost. When this event occurs, it seems that one of the services will no longer output logs to process.log.\r\n\r\nAs a countermeasure, if you disable rotation of process.py by setting enabled=off in logging.conf and set the rotation definition under /etc/logrotate.d/, log rotation will work normally and both The service now outputs logs to process.log.\nComment: thanks for headups, i think what could be an option is to introduce log name as argument",
+  "Title: Deficiencies in telemetry from Microsoft Edge\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I did read the README!\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nWe expect that telemetry from Microsoft Edge is captured and displayed correctly in the CAPE UI.\r\n\r\n# Current Behavior\r\n\r\nWe are not gather enough / correct TLS key information.\r\n\r\n# Failure Information (for bugs)\r\n\r\nThis is more an issue on a version of Microsoft Edge (I assume). Edge 115.0.1901.188 has proven to have issues with allowing TLSdump to capture enough session data for each connection. Currently we take the tlsdump.log and convert it to wireshark's CLIENT_RANDOM format, but I have noticed that some data is not present in the decrypted https GET and POST requests. If I were to run the same analysis on Internet Explorer, then we gather this data without issue. Of course IE is getting pretty old these days and it's preferred to use Edge. \r\n\r\n## Suggestion\r\n\r\nMy suggestion for this issue is to provide a download option for the most stable and predictable version of edge for users to download from the repo. This would eliminate future issues from end users as well as remove the headache of finding older versions of edge (This can be quite challenging.).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Updated yesterday from Master.\r\n| OS version       | Ubuntu 22.04.3 LTS Jammy, Windows 10 Pro 10.0.19045 N/A Build 19045.\r\n\r\nI am open to any other suggestions if my solution isn't feasible / worth time investment. I have tried a few other browsers without much success but I would rather keep us with Edge as this is the supported browser!\nComment: Bump\nComment: cape is open source done by volunteers, bump works in paid solutions ;) \nComment: :D\nComment: so DIY\nComment: To be blunt your suggestion sounds inachievable - we obviously can't host MIcrosoft code, and when have they ever provided a stable predictable link to a specific version of Edge (or anything)?! And why can't you PR your own suggestion?!",
+  "Title: Bump django from 4.2.5 to 4.2.7\nBody: Bumps [django](https://github.com/django/django) from 4.2.5 to 4.2.7.\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/django/django/commit/d254a54e7f65e83d8971bd817031bc6af32a7a46\"><code>d254a54</code></a> [4.2.x] Bumped version for 4.2.7 release.</li>\n<li><a href=\"https://github.com/django/django/commit/048a9ebb6ea468426cb4e57c71572cbbd975517f\"><code>048a9eb</code></a> [4.2.x] Fixed CVE-2023-46695 -- Fixed potential DoS in UsernameField on Windows.</li>\n<li><a href=\"https://github.com/django/django/commit/3fae5d92da84382483fe48cc62c1f57789b47196\"><code>3fae5d9</code></a> [4.2.x] Refs <a href=\"https://redirect.github.com/django/django/issues/30601\">#30601</a> -- Fixed typos in docs/topics/db/transactions.txt.</li>\n<li><a href=\"https://github.com/django/django/commit/a8aa94062b108bfca473e3263473ca926fee2f42\"><code>a8aa940</code></a> [4.2.x] Refs <a href=\"https://redirect.github.com/django/django/issues/15578\">#15578</a> -- Made cosmetic edits to fixtures docs.</li>\n<li><a href=\"https://github.com/django/django/commit/109f39a38bf62e350171d8e342788160af95d21a\"><code>109f39a</code></a> [4.2.x] Fixed <a href=\"https://redirect.github.com/django/django/issues/34932\">#34932</a> -- Restored varchar_pattern_ops/text_pattern_ops index c...</li>\n<li><a href=\"https://github.com/django/django/commit/61612990d8c31ec1d9a9e9e48ae642a6f8d88120\"><code>6161299</code></a> [4.2.x] Fixed typos in docs/ref/models/expressions.txt.</li>\n<li><a href=\"https://github.com/django/django/commit/696fbc32d6185283859b3a84277f49937a3012fc\"><code>696fbc3</code></a> [4.2.x] Fixed <a href=\"https://redirect.github.com/django/django/issues/30601\">#30601</a> -- Doc'd the need to manually revert all app state on tr...</li>\n<li><a href=\"https://github.com/django/django/commit/ffba63180c86a73527b7af4b31564c62788d60cd\"><code>ffba631</code></a> [4.2.x] Fixed typo in docs/ref/contrib/gis/geos.txt.</li>\n<li><a href=\"https://github.com/django/django/commit/43a36460703dfcf90dd309f0ff7306589b371e61\"><code>43a3646</code></a> [4.2.x] Fixed <a href=\"https://redirect.github.com/django/django/issues/15578\">#15578</a> -- Stated the processing order of fixtures in the fixtur...</li>\n<li><a href=\"https://github.com/django/django/commit/0cd8b867a000624d27776e195a05dd7fe0a438bd\"><code>0cd8b86</code></a> [4.2.x] Added stub release notes and release date for 4.2.7, 4.1.13, and 3.2.23.</li>\n<li>Additional commits viewable in <a href=\"https://github.com/django/django/compare/4.2.5...4.2.7\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=django&package-manager=pip&previous-version=4.2.5&new-version=4.2.7)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Bump twisted from 23.8.0 to 23.10.0\nBody: Bumps [twisted](https://github.com/twisted/twisted) from 23.8.0 to 23.10.0.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a href=\"https://github.com/twisted/twisted/releases\">twisted's releases</a>.</em></p>\n<blockquote>\n<h1>Twisted 23.10.0 (2023-10-31)</h1>\n<p>No changes since 23.10.0.rc1.</p>\n<h2>Features</h2>\n<ul>\n<li>twisted.python.filepath.FilePath and related classes (twisted.python.filepath.IFilepath, twisted.python.filepath.AbstractFilePath, twisted.python.zippath.ZipPath, and twisted.python.zippath.ZipArchive) now have type annotations.  Additionally, FilePath is now generic, describing its mode, so you can annotate variables as FilePath[str] or FilePath[bytes] depending on the types that you wish to get back from the 'path' attribute and related methods like 'basename'. (<a href=\"https://redirect.github.com/twisted/twisted/issues/11822\">#11822</a>)</li>\n<li>When using <code>CPython</code>, functions wrapped by <code>twisted.internet.defer.inlineCallbacks</code> can have their arguments and return values freed immediately after completion (due to there no longer being circular references). (<a href=\"https://redirect.github.com/twisted/twisted/issues/11885\">#11885</a>)</li>\n</ul>\n<h2>Bugfixes</h2>\n<ul>\n<li>Fix TypeError on t.i.cfreactor due to 3.10 type annotation syntax (<a href=\"https://redirect.github.com/twisted/twisted/issues/11965\">#11965</a>)</li>\n<li>Fix the type annotations of DeferredLock.run, DeferredSemaphore.run, maybeDeferred, ensureDeferred, inlineCallbacks and fromCoroutine that used to return Deferred[Any] to return the result of the passed Coroutine/Coroutine function (<a href=\"https://redirect.github.com/twisted/twisted/issues/11985\">#11985</a>)</li>\n<li>Fixed significant performance overhead (CPU and bandwidth) when doing small writes to a TLS transport. Specifically, small writes to a TLS transport are now buffered until the next reactor iteration. (<a href=\"https://redirect.github.com/twisted/twisted/issues/11989\">#11989</a>)</li>\n<li>fix mypy due to hypothesis 6.85 (<a href=\"https://redirect.github.com/twisted/twisted/issues/11995\">#11995</a>)</li>\n</ul>\n<h2>Improved Documentation</h2>\n<ul>\n<li>The search and version navigation for the documentation hosted on\nRead The Docs was fixed.\nThis was a regression introduced with 23.8.0. (<a href=\"https://redirect.github.com/twisted/twisted/issues/12012\">#12012</a>)</li>\n</ul>\n<h2>Deprecations and Removals</h2>\n<ul>\n<li>Drop support for Python 3.7. Remove twisted[contextvars] extra (contextvars are always available in Python 3.7+) (<a href=\"https://redirect.github.com/twisted/twisted/issues/11913\">#11913</a>)</li>\n</ul>\n<h2>Misc</h2>\n<ul>\n<li><a href=\"https://redirect.github.com/twisted/twisted/issues/5206\">#5206</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11583\">#11583</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11787\">#11787</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11871\">#11871</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11912\">#11912</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11921\">#11921</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11922\">#11922</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11926\">#11926</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11932\">#11932</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11934\">#11934</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11936\">#11936</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11938\">#11938</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11940\">#11940</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11942\">#11942</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11945\">#11945</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11948\">#11948</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11952\">#11952</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11953\">#11953</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11955\">#11955</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11957\">#11957</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11959\">#11959</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11961\">#11961</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11964\">#11964</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11973\">#11973</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11977\">#11977</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11980\">#11980</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11982\">#11982</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11993\">#11993</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11999\">#11999</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/12004\">#12004</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/12005\">#12005</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/12009\">#12009</a></li>\n</ul>\n<h2>Conch</h2>\n<p>No significant changes.</p>\n<h2>Web</h2>\n<!-- raw HTML omitted -->\n</blockquote>\n<p>... (truncated)</p>\n</details>\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/twisted/twisted/blob/trunk/NEWS.rst\">twisted's changelog</a>.</em></p>\n<blockquote>\n<h1>Twisted 23.10.0 (2023-10-31)</h1>\n<p>No changes since 23.10.0.rc1.</p>\n<h2>Features</h2>\n<ul>\n<li>twisted.python.filepath.FilePath and related classes (twisted.python.filepath.IFilepath, twisted.python.filepath.AbstractFilePath, twisted.python.zippath.ZipPath, and twisted.python.zippath.ZipArchive) now have type annotations.  Additionally, FilePath is now generic, describing its mode, so you can annotate variables as FilePath[str] or FilePath[bytes] depending on the types that you wish to get back from the 'path' attribute and related methods like 'basename'. (<a href=\"https://redirect.github.com/twisted/twisted/issues/11822\">#11822</a>)</li>\n<li>When using <code>CPython</code>, functions wrapped by <code>twisted.internet.defer.inlineCallbacks</code> can have their arguments and return values freed immediately after completion (due to there no longer being circular references). (<a href=\"https://redirect.github.com/twisted/twisted/issues/11885\">#11885</a>)</li>\n</ul>\n<h2>Bugfixes</h2>\n<ul>\n<li>Fix TypeError on t.i.cfreactor due to 3.10 type annotation syntax (<a href=\"https://redirect.github.com/twisted/twisted/issues/11965\">#11965</a>)</li>\n<li>Fix the type annotations of DeferredLock.run, DeferredSemaphore.run, maybeDeferred, ensureDeferred, inlineCallbacks and fromCoroutine that used to return Deferred[Any] to return the result of the passed Coroutine/Coroutine function (<a href=\"https://redirect.github.com/twisted/twisted/issues/11985\">#11985</a>)</li>\n<li>Fixed significant performance overhead (CPU and bandwidth) when doing small writes to a TLS transport. Specifically, small writes to a TLS transport are now buffered until the next reactor iteration. (<a href=\"https://redirect.github.com/twisted/twisted/issues/11989\">#11989</a>)</li>\n<li>fix mypy due to hypothesis 6.85 (<a href=\"https://redirect.github.com/twisted/twisted/issues/11995\">#11995</a>)</li>\n</ul>\n<h2>Improved Documentation</h2>\n<ul>\n<li>The search and version navigation for the documentation hosted on\nRead The Docs was fixed.\nThis was a regression introduced with 23.8.0. (<a href=\"https://redirect.github.com/twisted/twisted/issues/12012\">#12012</a>)</li>\n</ul>\n<h2>Deprecations and Removals</h2>\n<ul>\n<li>Drop support for Python 3.7. Remove twisted[contextvars] extra (contextvars are always available in Python 3.7+) (<a href=\"https://redirect.github.com/twisted/twisted/issues/11913\">#11913</a>)</li>\n</ul>\n<h2>Misc</h2>\n<ul>\n<li><a href=\"https://redirect.github.com/twisted/twisted/issues/5206\">#5206</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11583\">#11583</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11787\">#11787</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11871\">#11871</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11912\">#11912</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11921\">#11921</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11922\">#11922</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11926\">#11926</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11932\">#11932</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11934\">#11934</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11936\">#11936</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11938\">#11938</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11940\">#11940</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11942\">#11942</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11945\">#11945</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11948\">#11948</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11952\">#11952</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11953\">#11953</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11955\">#11955</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11957\">#11957</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11959\">#11959</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11961\">#11961</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11964\">#11964</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11973\">#11973</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11977\">#11977</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11980\">#11980</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11982\">#11982</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11993\">#11993</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/11999\">#11999</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/12004\">#12004</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/12005\">#12005</a>, <a href=\"https://redirect.github.com/twisted/twisted/issues/12009\">#12009</a></li>\n</ul>\n<h2>Conch</h2>\n<p>No significant changes.</p>\n<h2>Web</h2>\n<!-- raw HTML omitted -->\n</blockquote>\n<p>... (truncated)</p>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/twisted/twisted/commit/f3f3389b1ee2605fb6d4c6d9dfb3913e84b11cde\"><code>f3f3389</code></a> python -m incremental.update Twisted --newversion</li>\n<li><a href=\"https://github.com/twisted/twisted/commit/2d15c00ba2d0cc82eb0b0901bdbc24793329ca13\"><code>2d15c00</code></a> Add CVE id to bug.</li>\n<li><a href=\"https://github.com/twisted/twisted/commit/61c46d40eb65e7aaeaf4f2b10f6696427d1401b3\"><code>61c46d4</code></a> tox -e towncrier</li>\n<li><a href=\"https://github.com/twisted/twisted/commit/650c59df32840918fd3fd1027302ce2a4d421d72\"><code>650c59d</code></a> python -m incremental.update Twisted --rc</li>\n<li><a href=\"https://github.com/twisted/twisted/commit/157cd8e659705940e895d321339d467e76ae9d0a\"><code>157cd8e</code></a> <a href=\"https://redirect.github.com/twisted/twisted/issues/11985\">#11985</a> fix DeferredLock.run/Semaphore.run/maybeDeferred/ensureDeferred/inline...</li>\n<li><a href=\"https://github.com/twisted/twisted/commit/ed25d4ad078822de32eeaf36eafbf30ee3a3d3ed\"><code>ed25d4a</code></a> [pre-commit.ci] auto fixes from pre-commit.com hooks</li>\n<li><a href=\"https://github.com/twisted/twisted/commit/5eb20781105a39f1e482ca2e09d9824d4fb039c0\"><code>5eb2078</code></a> Merge branch 'trunk' into fix-concurrency-primative-type</li>\n<li><a href=\"https://github.com/twisted/twisted/commit/2df4c76a41e831202261cfe7254b6590f5a34345\"><code>2df4c76</code></a> Update src/twisted/test/test_defer.py</li>\n<li><a href=\"https://github.com/twisted/twisted/commit/105a9f5a2e9c68845aa1a9b20c24cff65fe94401\"><code>105a9f5</code></a> <a href=\"https://redirect.github.com/twisted/twisted/issues/11989\">#11989</a> Lots of small writes to the TLS transport use a lot of cpu (<a href=\"https://redirect.github.com/twisted/twisted/issues/11996\">#11996</a>)</li>\n<li><a href=\"https://github.com/twisted/twisted/commit/524a2fae10b77405847d025dd0158e0c59fdb2a4\"><code>524a2fa</code></a> Fix lint</li>\n<li>Additional commits viewable in <a href=\"https://github.com/twisted/twisted/compare/twisted-23.8.0...twisted-23.10.0\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=twisted&package-manager=pip&previous-version=23.8.0&new-version=23.10.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Having troubles with python adding Pe sieve as package \nBody: Hi, I am very new to python and I have a task from my internship for adding pe sieve.\r\nI rewrote my code for Pe-Sieve to be added as a package in Cape but I still have some troubles with it making it run:\r\n\r\n[pesieve.py.txt](https://github.com/kevoreilly/CAPEv2/files/13195742/pesieve.py.txt) - updated Python code\r\n![Screenshot 2023-10-24 150415](https://github.com/kevoreilly/CAPEv2/assets/148639402/cb608a70-e609-46f0-b794-4e8426ec0ee1)\r\n\r\nI have been stuck on it for the past week and cannot find a solution to the issue, can you guys help me out?\r\nThanks in advance!\r\n\r\n\nComment: The code looks fine, make it work standalone on your windows as python script and then put fixed version to python, we wont code that for you is not our job. But you have start and stop now so cape part is correct\nComment: Move back to auxiliar module package is totally different thing, go to docs!\nComment: just to clarify you.\r\n Package is to run malware itself. So if you go with package you must to handle each malware file format in your package, which is not what you want. But if you want to run side tool when malware is executed. you must run it as auxiliary module just have start/stop function \r\n\r\nhere is how is executed by cape\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/analyzer/windows/analyzer.py#L465-L503\r\n\r\nexamples are here: https://github.com/kevoreilly/CAPEv2/tree/master/analyzer/windows/modules/auxiliary\r\n\r\nyou still might need to add your aux module to [`conf/auxiliar`](https://github.com/kevoreilly/CAPEv2/blob/master/conf/auxiliary.conf#L19-L41)\nComment: Ahh, that makes sense. Yeah i spent 1 week figuring out whether it will be as a package or as an auxiliary module. That makes sense now, thanks for the help. Sorry for spamming the question 3 times.. Cape is very new for me and I got hooked so much but just got stuck on this ...\nComment: np, you can post in closed issue, we getting notification about new comments, as this is not really cape issues is why it closed. as i told my suggestion make your python script standalone to run properly pe-sieve, once you have it working put it in aux properly under `def start`, and on `def stop` do what you need, im not using pe-sieve so not familiar with how it working",
+  "Title: small fix\nBody: None",
+  "Title: Bugfix for bugfix in test_database\nBody: None",
+  "Title: Fixing bug in task tag test with .sort()\nBody: None\nComment: thanks",
+  "Title: Updating download_yara util to handle new GitHub responses\nBody: None",
+  "Title: Bump werkzeug from 2.2.3 to 3.0.1\nBody: Bumps [werkzeug](https://github.com/pallets/werkzeug) from 2.2.3 to 3.0.1.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a href=\"https://github.com/pallets/werkzeug/releases\">werkzeug's releases</a>.</em></p>\n<blockquote>\n<h2>3.0.1</h2>\n<p>This is a security release for the 3.0.x feature branch.</p>\n<ul>\n<li>Changes: <a href=\"https://werkzeug.palletsprojects.com/en/3.0.x/changes/#version-3-0-1\">https://werkzeug.palletsprojects.com/en/3.0.x/changes/#version-3-0-1</a></li>\n</ul>\n<h2>3.0.0</h2>\n<p>This is a feature release, which includes new features, removes previously deprecated code, and adds new deprecations. The 3.0.x branch is now the supported fix branch, the 2.3.x branch will become a tag marking the end of support for that branch. We encourage everyone to upgrade, and to use a tool such as <a href=\"https://pypi.org/project/pip-tools/\">pip-tools</a> to pin all dependencies and control upgrades. Test with warnings treated as errors to be able to adapt to deprecation warnings early.</p>\n<ul>\n<li>Changes: <a href=\"https://werkzeug.palletsprojects.com/en/3.0.x/changes/#version-3-0-0\">https://werkzeug.palletsprojects.com/en/3.0.x/changes/#version-3-0-0</a></li>\n<li>Milestone: <a href=\"https://github.com/pallets/werkzeug/milestone/21?closed=1\">https://github.com/pallets/werkzeug/milestone/21?closed=1</a></li>\n</ul>\n<h2>2.3.7</h2>\n<p>This is a fix release for the 2.3.x feature branch.</p>\n<ul>\n<li>Changes: <a href=\"https://werkzeug.palletsprojects.com/en/2.3.x/changes/#version-2-3-7\">https://werkzeug.palletsprojects.com/en/2.3.x/changes/#version-2-3-7</a></li>\n<li>Milestone: <a href=\"https://github.com/pallets/werkzeug/milestone/33?closed=1\">https://github.com/pallets/werkzeug/milestone/33?closed=1</a></li>\n</ul>\n<h2>2.3.6</h2>\n<p>This is a fix release for the 2.3.x feature branch.</p>\n<ul>\n<li>Changes: <a href=\"https://werkzeug.palletsprojects.com/en/2.3.x/changes/#version-2-3-6\">https://werkzeug.palletsprojects.com/en/2.3.x/changes/#version-2-3-6</a></li>\n<li>Milestone: <a href=\"https://github.com/pallets/werkzeug/milestone/32?closed=1\">https://github.com/pallets/werkzeug/milestone/32?closed=1</a></li>\n</ul>\n<h2>2.3.5</h2>\n<p>This is a fix release for the 2.3.x feature branch.</p>\n<ul>\n<li>Changes: <a href=\"https://werkzeug.palletsprojects.com/en/2.3.x/changes/#version-2-3-5\">https://werkzeug.palletsprojects.com/en/2.3.x/changes/#version-2-3-5</a></li>\n<li>Milestone: <a href=\"https://github.com/pallets/werkzeug/milestone/31?closed=1\">https://github.com/pallets/werkzeug/milestone/31?closed=1</a></li>\n</ul>\n<h2>2.3.4</h2>\n<p>This is a fix release for the 2.3.x release branch.</p>\n<ul>\n<li>Changes: <a href=\"https://werkzeug.palletsprojects.com/en/2.3.x/changes/#version-2-3-4\">https://werkzeug.palletsprojects.com/en/2.3.x/changes/#version-2-3-4</a></li>\n<li>Milestone: <a href=\"https://github.com/pallets/werkzeug/milestone/30?closed=1\">https://github.com/pallets/werkzeug/milestone/30?closed=1</a></li>\n</ul>\n<h2>2.3.3</h2>\n<p>This is a fix release for the 2.3.x release branch.</p>\n<ul>\n<li>Changes: <a href=\"https://werkzeug.palletsprojects.com/en/2.3.x/changes/#version-2-3-3\">https://werkzeug.palletsprojects.com/en/2.3.x/changes/#version-2-3-3</a></li>\n<li>Milestone: <a href=\"https://github.com/pallets/werkzeug/milestone/29?closed=1\">https://github.com/pallets/werkzeug/milestone/29?closed=1</a></li>\n</ul>\n<h2>2.3.2</h2>\n<p>This is a fix release for the 2.3.x release branch.</p>\n<ul>\n<li>Changes: <a href=\"https://werkzeug.palletsprojects.com/en/2.3.x/changes/#version-2-3-2\">https://werkzeug.palletsprojects.com/en/2.3.x/changes/#version-2-3-2</a></li>\n<li>Milestone: <a href=\"https://github.com/pallets/werkzeug/milestone/28?closed=1\">https://github.com/pallets/werkzeug/milestone/28?closed=1</a></li>\n</ul>\n<h2>2.3.1</h2>\n<p>This is a fix release for the 2.3.x release branch.</p>\n<!-- raw HTML omitted -->\n</blockquote>\n<p>... (truncated)</p>\n</details>\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/pallets/werkzeug/blob/main/CHANGES.rst\">werkzeug's changelog</a>.</em></p>\n<blockquote>\n<h2>Version 3.0.1</h2>\n<p>Released 2023-10-24</p>\n<ul>\n<li>Fix slow multipart parsing for large parts potentially enabling DoS\nattacks. :cwe:<code>CWE-407</code></li>\n</ul>\n<h2>Version 3.0.0</h2>\n<p>Released 2023-09-30</p>\n<ul>\n<li>Remove previously deprecated code. :pr:<code>2768</code></li>\n<li>Deprecate the <code>__version__</code> attribute. Use feature detection, or\n<code>importlib.metadata.version(&quot;werkzeug&quot;)</code>, instead. :issue:<code>2770</code></li>\n<li><code>generate_password_hash</code> uses scrypt by default. :issue:<code>2769</code></li>\n<li>Add the <code>&quot;werkzeug.profiler&quot;</code> item to the  WSGI <code>environ</code> dictionary\npassed to <code>ProfilerMiddleware</code>'s <code>filename_format</code> function. It contains\nthe <code>elapsed</code> and <code>time</code> values for the profiled request. :issue:<code>2775</code></li>\n<li>Explicitly marked the PathConverter as non path isolating. :pr:<code>2784</code></li>\n</ul>\n<h2>Version 2.3.8</h2>\n<p>Unreleased</p>\n<h2>Version 2.3.7</h2>\n<p>Released 2023-08-14</p>\n<ul>\n<li>Use <code>flit_core</code> instead of <code>setuptools</code> as build backend.</li>\n<li>Fix parsing of multipart bodies. :issue:<code>2734</code> Adjust index of last newline\nin data start. :issue:<code>2761</code></li>\n<li>Parsing ints from header values strips spacing first. :issue:<code>2734</code></li>\n<li>Fix empty file streaming when testing. :issue:<code>2740</code></li>\n<li>Clearer error message when URL rule does not start with slash. :pr:<code>2750</code></li>\n<li><code>Accept</code> <code>q</code> value can be a float without a decimal part. :issue:<code>2751</code></li>\n</ul>\n<h2>Version 2.3.6</h2>\n<p>Released 2023-06-08</p>\n<ul>\n<li><code>FileStorage.content_length</code> does not fail if the form data did not provide a\nvalue. :issue:<code>2726</code></li>\n</ul>\n<!-- raw HTML omitted -->\n</blockquote>\n<p>... (truncated)</p>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/pallets/werkzeug/commit/ce4eff5902d4a6b41a20ecc6e4029741284a87fd\"><code>ce4eff5</code></a> Release version 3.0.1</li>\n<li><a href=\"https://github.com/pallets/werkzeug/commit/b1916c0c083e0be1c9d887ee2f3d696922bfc5c1\"><code>b1916c0</code></a> Fix: slow multipart parsing for huge files with few CR/LF characters</li>\n<li><a href=\"https://github.com/pallets/werkzeug/commit/726eaa28593d859548da3477859c914732f012ef\"><code>726eaa2</code></a> Release version 3.0.0</li>\n<li><a href=\"https://github.com/pallets/werkzeug/commit/64275425888b6ca4f5ebdfa1a9df814317718290\"><code>6427542</code></a> Default the PathConverter (and descendants) to be non part isolating</li>\n<li><a href=\"https://github.com/pallets/werkzeug/commit/4820d8c487e5db9f43645c31c4123fce5ac5ad32\"><code>4820d8c</code></a> Provide elapsed and timestamp info to filename_format</li>\n<li><a href=\"https://github.com/pallets/werkzeug/commit/599993d7382eeb96add9f38b4431a2f50cd2c9f2\"><code>599993d</code></a> Bump pypa/gh-action-pypi-publish from 1.8.8 to 1.8.10 (<a href=\"https://redirect.github.com/pallets/werkzeug/issues/2780\">#2780</a>)</li>\n<li><a href=\"https://github.com/pallets/werkzeug/commit/a2394ed51ed8697b5523243acb10cb589c0f7834\"><code>a2394ed</code></a> Bump slsa-framework/slsa-github-generator from 1.7.0 to 1.9.0 (<a href=\"https://redirect.github.com/pallets/werkzeug/issues/2779\">#2779</a>)</li>\n<li><a href=\"https://github.com/pallets/werkzeug/commit/1efd6f3c2c31ec9479d8b8d9219bdb042e55bd15\"><code>1efd6f3</code></a> Bump actions/checkout from 3.5.3 to 3.6.0 (<a href=\"https://redirect.github.com/pallets/werkzeug/issues/2778\">#2778</a>)</li>\n<li><a href=\"https://github.com/pallets/werkzeug/commit/76a5419d2ee8b7785c0304d58a94d6c0387c976c\"><code>76a5419</code></a> Bump pypa/gh-action-pypi-publish from 1.8.8 to 1.8.10</li>\n<li><a href=\"https://github.com/pallets/werkzeug/commit/ce8cfe7dbb73b56c982a9c74162084cdb284c2f5\"><code>ce8cfe7</code></a> Bump slsa-framework/slsa-github-generator from 1.7.0 to 1.9.0</li>\n<li>Additional commits viewable in <a href=\"https://github.com/pallets/werkzeug/compare/2.2.3...3.0.1\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=werkzeug&package-manager=pip&previous-version=2.2.3&new-version=3.0.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: small cape.sh installer fixes\nBody: Following errors appeared, followed up by my suggestions:\r\n\r\ninstall_suricata:\r\n cp: cannot stat '/usr/share/suricata/rules/*': No such file or directory\r\n-> if source directory is set in quotes, * should be outside the quotes.\r\n\r\ninstall_CAPE (yara_installer.sh)\r\nyara/libyara/modules/cuckoo/cuckoo.c:31:10: fatal error: jansson.h: No such file or directory\r\n-> apt install libjansson-dev -y\r\nyara/libyara/modules/magic/magic.c:36:10: fatal error: magic.h: No such file or directory\r\n-> apt install libmagic1 libmagic-dev -y\r\nrm: remove write-protected regular file 'yara-python/.git/objects/pack/pack-6854d0fa261e050a13eaa61497e1ad74b3535e89.pack'? \r\n-> move rm -r /tmp/yara-python to cape.sh to fix permission\r\n\r\nGreetings\r\n\r\nClaudio\nComment: thank you, it still good to have rm inside yara installer, so added that if folder exist\nComment: Thank you",
+  "Title: KVM not installed after running the script\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [Y] I am running the latest version\r\n- [Y] I did read the README!\r\n- [Y] I checked the documentation and found no answer\r\n- [Y] I checked to make sure that this issue has not already been filed\r\n- [Y] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [Y] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nAfter running the kvm-qemu.sh, kvm should be present on the system.\r\n\r\n# Current Behavior\r\n\r\nkvm is not installed.\r\n\r\n\r\n## Steps to Reproduce\r\n\r\n1. Run sudo bash 'home/remnux/Downloads/kvm-qemu.sh' all remnux\r\n2. Try kvm after finishing and rebooting\r\n3. Get \"Command not found, but can be installed\" message\r\n\r\n## Context\r\n\r\nTrying nested virtualization, CAPEv2, and KVM, all for the first time (not a good combo, I'm sure).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Latest\r\n| OS version       | Ubuntu 20.04.6 LTS (Remnux), on VirtualBox\r\n\r\n## Failure Logs\r\n\r\n[kvm-acpi.log](https://github.com/kevoreilly/CAPEv2/files/13063833/kvm-acpi.log.txt)\r\n\nComment: you have the answer inside your log, just search for \"error\" + we don't support ubuntu 20 https://github.com/kevoreilly/CAPEv2#installation-recommendations-and-scripts-for-optimal-performance\nComment: > you have the answer inside your log, just search for \"error\" + we don't support ubuntu 20 https://github.com/kevoreilly/CAPEv2#installation-recommendations-and-scripts-for-optimal-performance\r\n\r\nMaybe I should get checked for dyslexia, I thought 20 and 22 were the same number for, like, an hour (or I'm just tired, sorry!)\nComment: normally ubuntu changes libraries naming between versions\nComment: Switched to a clean Ubuntu 22.04 and the script works with no (critical) problems.",
+  "Title: Error Auxiliary module not implemented for Pe-Sieve\nBody: Hello, so I have this code which I got from following the documentation for creating your own analysis packages and auxiliaries.\r\nI have been using Cape for a month and it is quite fun. I have as a task to add Pe-Sieve tool to Cape's arsenal. But I m not the best at Python and I haven't been able to fix the issue.  I want when the analysis is already running , Pe sieve to activate as well and also analyze the submitted sample.\r\n\r\nWhen I am running a sample with cape through the Windows guest I get the following error:\r\n**auxiliary module not implemented** . \r\n\r\n[pesieve.py.txt](https://github.com/kevoreilly/CAPEv2/files/13061058/pesieve.py.txt)\r\n\r\n\nComment: ```\r\n  def start(self):\r\n    raise NotImplementedError\r\n\r\n```\r\n\r\nthat is your problem, you need to see another auxility modules as example\nComment: Ok, can I use the basic one that is pointed in the documentation?\r\n\r\nfrom lib.cuckoo.common.abstracts import Auxiliary\r\n\r\nclass MyAuxiliary(Auxiliary):\r\n\r\n    def start(self):\r\n     \r\n def stop(self):\r\n       \nComment: Yes as I told see examples of others modules for examples\r\n\r\nEl dom, 22 oct 2023, 14:50, Wiltedd ***@***.***> escribi\u00f3:\r\n\r\n> Ok, can I use the basic one that is pointed in the documentation:\r\n>\r\n> from lib.cuckoo.common.abstracts import Auxiliary\r\n>\r\n> class MyAuxiliary(Auxiliary):\r\n>\r\n> def start(self):\r\n>     # Do something.\r\n>\r\n> def stop(self):\r\n>     # Stop the execution.\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1815#issuecomment-1774086616>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH36AN3F73OLDYHYDKKTYAUJBTAVCNFSM6AAAAAA6KGSBYOVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTONZUGA4DMNRRGY>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n",
+  "Title: add VM machinery screenshots\nBody: Let screenshots be generated inside the VM machinery instead of inside the individual VMs.\r\n\r\nIf the [machinery_screenshots setting](https://github.com/nbargnesi/CAPEv2/blob/3e1f4d5e3ea0381ff61b1beb740b41778d349c9e/conf/cuckoo.conf#L30) is enabled, any screenshots send by VMs are discarded. This will let folks migrate to machinery screenshots without changing VMs.\r\n\r\nOn startup if the setting is enabled, the machinery is checked to make sure it supports screenshots. Startup fails if it doesn't, so we let folks correct the configuration. \nComment: similar libvirt-specific PR was also added in https://github.com/kevoreilly/CAPEv2/pull/2255",
+  "Title: [Feature Request] Check if the scripts are running inside the poetry virtual environment\nBody: Yesterday I made a very simple mistake of running scripts outside the poetry environment #1809  . I want to implement a check in all scripts to see if it's running within the venv. Before starting. I want to make sure that this is within the scope of the project. \r\n\r\nDo you expect some users to be able to run the scripts outside the poetry environment? If not, I'll implement the check. Otherwise, I'll just warn them when there are unmet dependencies.\nComment: Alas I have a couple of instances that don't use poetry and capesandbox.com isn't using it yet \ud83d\ude15 \nComment: Okay then I'll just implement a warning when the scripts see unmet dependencies. How does that sound?\nComment: i think docs says everywhere and warns about poetry usage. not all user uses poetry, so i won't go that way. i have also servers that uses, and server that doesn't use it. so is complicated to do that properly\nComment: Thanks anyway, the thought is much appreciated!",
+  "Title: give mongo_find limit capabilities and use them\nBody: Fixes web_utils and cleaners calls to [sort() and limit()](https://github.com/kevoreilly/CAPEv2/blob/d1acb2ab1e9b881d5d118f887f7030589c659308/lib/cuckoo/common/web_utils.py#L1184) by adding them to the find query if provided as kwargs.",
+  "Title: Adding reserved keyword arg to aws machinery\nBody: Bugfix caused by https://github.com/kevoreilly/CAPEv2/pull/1373\r\n\r\nSimilar to PR https://github.com/kevoreilly/CAPEv2/pull/1411",
+  "Title: Update community.py\nBody: note proxy argument for capa-rules in --all switch",
+  "Title: Error when running submit.py: Name error: name 'sfFile' is not defined. Did you mean: 'File'?\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\nrun `submit.py` with the file path as argument to start the analysis\r\n\r\n# Current Behavior\r\n\r\n`submit.py` exits with the following error\r\n````\r\nMissed dependency: poetry run pip install -r extra/optiona_dependencies.txt\r\nCAPE parser: No module named Nighthawk - No module named 'regex'\r\nCAPE parser: No module named BumbleBee - No module named 'regex'\r\nYou must install sflock\r\nsudo apt-get install p7zip-full lzip rar unace-nonfree cabextract\r\npoetry install\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/submit.py\", line 26, in <module>\r\n    from lib.cuckoo.core.database import Database\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/database.py\", line 24, in <module>\r\n    from lib.cuckoo.common.demux import demux_sample\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/demux.py\", line 168, in <module>\r\n    def _sf_children(child: sfFile) -> bytes:\r\nNameError: name 'sfFile' is not defined. Did you mean: 'File'?\r\n````\r\n# Failure Information (for bugs)\r\n\r\nI have tried the things suggested in output such as running `poetry run pip install -r extra/optional_dependencies.txt` , `sudo apt install p7zip-full lzip rar unace-nonfree cabextract` and `poetry install`\r\n\r\nI tried installing sflock manually with both `poetry run pip install sflock` and just `pip install sflock` when that didn't work.\r\n\r\nOther information:\r\nWhen I run poetry install from the CAPEv2 directory, some packages change\r\n````\r\nInstalling dependencies from lock file\r\n\r\nPackage operations: 0 installs, 6 updates, 0 removals\r\n\r\n  \u2022 Updating pydantic (1.10.8 -> 1.10.9)\r\n  \u2022 Updating networkx (2.5.1 -> 3.1)\r\n  \u2022 Downgrading rich (13.3.4 -> 12.6.0)\r\n  \u2022 Downgrading sqlalchemy (2.0.22 -> 1.4.22)\r\n  \u2022 Downgrading maxminddb (2.4.0 -> 2.2.0)\r\n  \u2022 Downgrading werkzeug (3.0.0 -> 2.2.3)\r\n````\r\n\r\nIf I run the same again without doing anything, nothing changes which is to be expected\r\n````\r\nInstalling dependencies from lock file\r\n\r\nNo dependencies to install or update\r\n````\r\n\r\nBut when I run `pip install -r extra/optional_dependencies.txt`, package versions are changed again. After which running `poetry install` will upgrade and downgrade those few files again which leads me to believe that there is some discrepancy in what versions are mentioned in the `requirements.txt` and `poetry.lock` files.\r\n\r\nI am providing this information just in case, but I don't think this is related to the issue. I get the error either way. \r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Fresh installation of CAPE and its dependencies using poetry by following the steps given in the documentation. \r\n2. Check that cape.service is running\r\n3. Run `/opt/CAPEv2/utils/submit.py /path/to/file`\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | ce2b106f3580568b81291b199c1db50ec50d05c8\r\n| OS version       | Ubuntu 22.04\r\n\r\nThe most interesting thing about this issue is that I was able to solve it by replacing all instances of `sfFile` present in `/opt/CAPEv2/lib/cuckoo/common/demux.py` to just `File`\r\n\r\nAfter this fix, the submission is working correctly and the analysis is starting up. I wanted to raise the issue first before submitting a PR because surely so many instances of the sandbox are not running worldwide without being able to successfully submit samples for analysis. Perhaps something is wrong with my setup.\r\n\r\n## Failure Logs\r\n\r\nThere are no further failure logs. I am happy to provide any other details if needed\r\n\nComment: As error says you missing sflock2 library\nComment: 4-6 line of your error\r\n\r\n\r\nYou must install sflock\r\nsudo apt-get install p7zip-full lzip rar unace-nonfree cabextract\r\npoetry install\nComment: I have already done that\r\n````\r\nReading package lists... Done\r\nBuilding dependency tree... Done\r\nReading state information... Done\r\nlzip is already the newest version (1.23-1).\r\ncabextract is already the newest version (1.9-3).\r\np7zip-full is already the newest version (16.02+dfsg-8).\r\nrar is already the newest version (2:5.5.0-1.1).\r\nunace-nonfree is already the newest version (2.5-9).\r\n0 upgraded, 0 newly installed, 0 to remove and 26 not upgraded.\r\n````\r\n````\r\nInstalling dependencies from lock file\r\n\r\nNo dependencies to install or update\r\n````\r\n\r\nWhat do you think about how the issue got solved?\r\nIt's working if I replace all instances of sfFile to File in `demux.py`\nComment: replace that just make it useless as you don't have idea what you doing. you need to see why you getting that error, show me how you install dependencies and how you run submit.py\nComment: Here's how I run `submit.py`\r\n````\r\ncape@malware-analysis:/opt/CAPEv2$ python3 utils/submit.py /home/cape/no2.exe\r\nMissed dependency: poetry run pip install -r extra/optiona_dependencies.txt\r\nCAPE parser: No module named Nighthawk - No module named 'regex'\r\nCAPE parser: No module named BumbleBee - No module named 'regex'\r\nYou must install sflock\r\nsudo apt-get install p7zip-full lzip rar unace-nonfree cabextract\r\npoetry install\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/submit.py\", line 26, in <module>\r\n    from lib.cuckoo.core.database import Database\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/database.py\", line 24, in <module>\r\n    from lib.cuckoo.common.demux import demux_sample\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/demux.py\", line 168, in <module>\r\n    def _sf_children(child: sfFile) -> bytes:\r\nNameError: name 'sfFile' is not defined. Did you mean: 'File'?\r\n````\r\n\r\nI installed the dependencies by first running `poetry install` and then running `poetry run pip install - r extra/optional_dependencies.txt`\r\nHere's the log when I run it again:\r\n````\r\ncape@malware-analysis:/opt/CAPEv2$ poetry run pip install -r extra/optional_dependencies.txt\r\nDEPRECATION: https://github.com/CAPESandbox/peepdf/archive/20eda78d7d77fc5b3b652ffc2d8a5b0af796e3dd.zip#egg=peepdf==0.4.2 contains an egg fragment with a non-PEP 508 name pip 25.0 will enforce this behaviour change. A possible replacement is to use the req @ url syntax, and remove the egg fragment. Discussion can be found at https://github.com/pypa/pip/issues/11617\r\nCollecting git+https://github.com/CAPESandbox/binGraph (from -r extra/optional_dependencies.txt (line 8))\r\n  Cloning https://github.com/CAPESandbox/binGraph to /tmp/pip-req-build-enwwgrky\r\n  Running command git clone --filter=blob:none --quiet https://github.com/CAPESandbox/binGraph /tmp/pip-req-build-enwwgrky\r\n  Resolved https://github.com/CAPESandbox/binGraph to commit 1c0b4b23cb2af574f746d002f4960fc595791f69\r\n  Preparing metadata (setup.py) ... done\r\nCollecting git+https://github.com/CAPESandbox/httpreplay (from -r extra/optional_dependencies.txt (line 9))\r\n  Cloning https://github.com/CAPESandbox/httpreplay to /tmp/pip-req-build-qwmdfqpb\r\n  Running command git clone --filter=blob:none --quiet https://github.com/CAPESandbox/httpreplay /tmp/pip-req-build-qwmdfqpb\r\n  Resolved https://github.com/CAPESandbox/httpreplay to commit 60d4f47b52811788894904d3d919f57dcbe6b80d\r\n  Preparing metadata (setup.py) ... done\r\nCollecting git+https://github.com/CAPESandbox/socks5man (from -r extra/optional_dependencies.txt (line 10))\r\n  Cloning https://github.com/CAPESandbox/socks5man to /tmp/pip-req-build-092m4tkq\r\n  Running command git clone --filter=blob:none --quiet https://github.com/CAPESandbox/socks5man /tmp/pip-req-build-092m4tkq\r\n  Resolved https://github.com/CAPESandbox/socks5man to commit 0fbe2956ef533f7001c3f1684250baa8b7aabb4b\r\n  Preparing metadata (setup.py) ... done\r\nCollecting git+https://github.com/DissectMalware/XLMMacroDeobfuscator.git (from -r extra/optional_dependencies.txt (line 11))\r\n  Cloning https://github.com/DissectMalware/XLMMacroDeobfuscator.git to /tmp/pip-req-build-to2kz73r\r\n  Running command git clone --filter=blob:none --quiet https://github.com/DissectMalware/XLMMacroDeobfuscator.git /tmp/pip-req-build-to2kz73r\r\n  Resolved https://github.com/DissectMalware/XLMMacroDeobfuscator.git to commit 43114164d89b8b3b426144f1fdfeb2ca75d28b92\r\n  Preparing metadata (setup.py) ... done\r\nCollecting git+https://github.com/DissectMalware/batch_deobfuscator (from -r extra/optional_dependencies.txt (line 12))\r\n  Cloning https://github.com/DissectMalware/batch_deobfuscator to /tmp/pip-req-build-sfbj1sin\r\n  Running command git clone --filter=blob:none --quiet https://github.com/DissectMalware/batch_deobfuscator /tmp/pip-req-build-sfbj1sin\r\n  Resolved https://github.com/DissectMalware/batch_deobfuscator to commit f08059955fd69864c1dc9648935f807d4403b1f2\r\n  Preparing metadata (setup.py) ... done\r\nCollecting peepdf==0.4.2 (from -r extra/optional_dependencies.txt (line 14))\r\n  Using cached https://github.com/CAPESandbox/peepdf/archive/20eda78d7d77fc5b3b652ffc2d8a5b0af796e3dd.zip\r\n  Preparing metadata (setup.py) ... done\r\nRequirement already satisfied: ImageHash in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from -r extra/optional_dependencies.txt (line 3)) (4.3.1)\r\nRequirement already satisfied: deepdiff in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from -r extra/optional_dependencies.txt (line 4)) (6.6.0)\r\nRequirement already satisfied: flask in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from -r extra/optional_dependencies.txt (line 5)) (3.0.0)\r\nRequirement already satisfied: flask-restful in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from -r extra/optional_dependencies.txt (line 6)) (0.3.10)\r\nRequirement already satisfied: flask-sqlalchemy in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from -r extra/optional_dependencies.txt (line 7)) (3.1.1)\r\nRequirement already satisfied: graphviz>=0.8.4 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from -r extra/optional_dependencies.txt (line 13)) (0.20.1)\r\nRequirement already satisfied: mmh3 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from -r extra/optional_dependencies.txt (line 15)) (4.0.1)\r\nRequirement already satisfied: networkx[default,extra]>=2.1 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from -r extra/optional_dependencies.txt (line 16)) (3.1)\r\nRequirement already satisfied: olefile in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from -r extra/optional_dependencies.txt (line 17)) (0.46)\r\nRequirement already satisfied: pyclamd in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from -r extra/optional_dependencies.txt (line 18)) (0.4.0)\r\nRequirement already satisfied: pydot>=1.2.4 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from -r extra/optional_dependencies.txt (line 19)) (1.4.2)\r\nRequirement already satisfied: regex in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from -r extra/optional_dependencies.txt (line 20)) (2021.7.6)\r\nRequirement already satisfied: scp in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from -r extra/optional_dependencies.txt (line 21)) (0.14.5)\r\nRequirement already satisfied: urlextract==1.5.0 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from -r extra/optional_dependencies.txt (line 22)) (1.5.0)\r\nRequirement already satisfied: pdfminer==20191125 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from -r extra/optional_dependencies.txt (line 23)) (20191125)\r\nRequirement already satisfied: pg_activity in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from -r extra/optional_dependencies.txt (line 24)) (3.4.2)\r\nRequirement already satisfied: python-tlsh in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from -r extra/optional_dependencies.txt (line 25)) (4.5.0)\r\nRequirement already satisfied: idna in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from urlextract==1.5.0->-r extra/optional_dependencies.txt (line 22)) (3.4)\r\nRequirement already satisfied: uritools in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from urlextract==1.5.0->-r extra/optional_dependencies.txt (line 22)) (4.0.2)\r\nRequirement already satisfied: platformdirs in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from urlextract==1.5.0->-r extra/optional_dependencies.txt (line 22)) (3.10.0)\r\nRequirement already satisfied: filelock in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from urlextract==1.5.0->-r extra/optional_dependencies.txt (line 22)) (3.12.4)\r\nRequirement already satisfied: pycryptodome in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from pdfminer==20191125->-r extra/optional_dependencies.txt (line 23)) (3.19.0)\r\nRequirement already satisfied: PyWavelets in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from ImageHash->-r extra/optional_dependencies.txt (line 3)) (1.4.1)\r\nRequirement already satisfied: numpy in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from ImageHash->-r extra/optional_dependencies.txt (line 3)) (1.26.0)\r\nRequirement already satisfied: pillow in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from ImageHash->-r extra/optional_dependencies.txt (line 3)) (10.0.1)\r\nRequirement already satisfied: scipy in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from ImageHash->-r extra/optional_dependencies.txt (line 3)) (1.11.3)\r\nRequirement already satisfied: ordered-set<4.2.0,>=4.0.2 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from deepdiff->-r extra/optional_dependencies.txt (line 4)) (4.1.0)\r\nRequirement already satisfied: Werkzeug>=3.0.0 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from flask->-r extra/optional_dependencies.txt (line 5)) (3.0.0)\r\nRequirement already satisfied: Jinja2>=3.1.2 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from flask->-r extra/optional_dependencies.txt (line 5)) (3.1.2)\r\nRequirement already satisfied: itsdangerous>=2.1.2 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from flask->-r extra/optional_dependencies.txt (line 5)) (2.1.2)\r\nRequirement already satisfied: click>=8.1.3 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from flask->-r extra/optional_dependencies.txt (line 5)) (8.1.7)\r\nRequirement already satisfied: blinker>=1.6.2 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from flask->-r extra/optional_dependencies.txt (line 5)) (1.6.3)\r\nRequirement already satisfied: aniso8601>=0.82 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from flask-restful->-r extra/optional_dependencies.txt (line 6)) (9.0.1)\r\nRequirement already satisfied: six>=1.3.0 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from flask-restful->-r extra/optional_dependencies.txt (line 6)) (1.16.0)\r\nRequirement already satisfied: pytz in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from flask-restful->-r extra/optional_dependencies.txt (line 6)) (2021.1)\r\nRequirement already satisfied: sqlalchemy>=2.0.16 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from flask-sqlalchemy->-r extra/optional_dependencies.txt (line 7)) (2.0.22)\r\nRequirement already satisfied: matplotlib>=3.3.0 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from binGraph==3.3.1->-r extra/optional_dependencies.txt (line 8)) (3.8.0)\r\nRequirement already satisfied: pefile>=2021.9.3 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from binGraph==3.3.1->-r extra/optional_dependencies.txt (line 8)) (2023.2.7)\r\nRequirement already satisfied: dpkt>=1.9.2 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from HTTPReplay==0.3->-r extra/optional_dependencies.txt (line 9)) (1.9.6)\r\nRequirement already satisfied: tlslite-ng==0.7.6 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from HTTPReplay==0.3->-r extra/optional_dependencies.txt (line 9)) (0.7.6)\r\nRequirement already satisfied: brotli==1.0.7 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from HTTPReplay==0.3->-r extra/optional_dependencies.txt (line 9)) (1.0.7)\r\nRequirement already satisfied: future in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from HTTPReplay==0.3->-r extra/optional_dependencies.txt (line 9)) (0.18.3)\r\nRequirement already satisfied: ecdsa in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from tlslite-ng==0.7.6->HTTPReplay==0.3->-r extra/optional_dependencies.txt (line 9)) (0.18.0)\r\nRequirement already satisfied: PySocks>=1.7 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from Socks5man==0.3.0->-r extra/optional_dependencies.txt (line 10)) (1.7.1)\r\nRequirement already satisfied: geoip2>=2.9.0 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from Socks5man==0.3.0->-r extra/optional_dependencies.txt (line 10)) (4.7.0)\r\nRequirement already satisfied: alembic in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from Socks5man==0.3.0->-r extra/optional_dependencies.txt (line 10)) (1.9.4)\r\nRequirement already satisfied: pyxlsb2 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from XLMMacroDeobfuscator==0.2.7->-r extra/optional_dependencies.txt (line 11)) (0.0.9)\r\nRequirement already satisfied: lark-parser in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from XLMMacroDeobfuscator==0.2.7->-r extra/optional_dependencies.txt (line 11)) (0.12.0)\r\nRequirement already satisfied: xlrd2 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from XLMMacroDeobfuscator==0.2.7->-r extra/optional_dependencies.txt (line 11)) (1.3.4)\r\nRequirement already satisfied: untangle==1.2.1 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from XLMMacroDeobfuscator==0.2.7->-r extra/optional_dependencies.txt (line 11)) (1.2.1)\r\nRequirement already satisfied: msoffcrypto-tool in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from XLMMacroDeobfuscator==0.2.7->-r extra/optional_dependencies.txt (line 11)) (5.1.1)\r\nRequirement already satisfied: roman in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from XLMMacroDeobfuscator==0.2.7->-r extra/optional_dependencies.txt (line 11)) (4.1)\r\nRequirement already satisfied: defusedxml<0.8.0,>=0.7.1 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from untangle==1.2.1->XLMMacroDeobfuscator==0.2.7->-r extra/optional_dependencies.txt (line 11)) (0.7.1)\r\nRequirement already satisfied: jsbeautifier>=1.6.2 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from peepdf==0.4.2->-r extra/optional_dependencies.txt (line 14)) (1.14.9)\r\nRequirement already satisfied: colorama>=0.3.7 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from peepdf==0.4.2->-r extra/optional_dependencies.txt (line 14)) (0.4.6)\r\nRequirement already satisfied: pythonaes==1.0 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from peepdf==0.4.2->-r extra/optional_dependencies.txt (line 14)) (1.0)\r\nRequirement already satisfied: lxml>=4.6 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from networkx[default,extra]>=2.1->-r extra/optional_dependencies.txt (line 16)) (4.9.3)\r\nRequirement already satisfied: pygraphviz>=1.10 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from networkx[default,extra]>=2.1->-r extra/optional_dependencies.txt (line 16)) (1.11)\r\nRequirement already satisfied: sympy>=1.10 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from networkx[default,extra]>=2.1->-r extra/optional_dependencies.txt (line 16)) (1.12)\r\nRequirement already satisfied: pandas>=1.3 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from networkx[default,extra]>=2.1->-r extra/optional_dependencies.txt (line 16)) (2.1.1)\r\nRequirement already satisfied: pyparsing>=2.1.4 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from pydot>=1.2.4->-r extra/optional_dependencies.txt (line 19)) (2.4.7)\r\nRequirement already satisfied: paramiko in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from scp->-r extra/optional_dependencies.txt (line 21)) (3.3.1)\r\nRequirement already satisfied: attrs!=21.1,>=17.4 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from pg_activity->-r extra/optional_dependencies.txt (line 24)) (21.4.0)\r\nRequirement already satisfied: blessed>=1.15.0 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from pg_activity->-r extra/optional_dependencies.txt (line 24)) (1.20.0)\r\nRequirement already satisfied: humanize>=0.5.1 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from pg_activity->-r extra/optional_dependencies.txt (line 24)) (4.8.0)\r\nRequirement already satisfied: psutil>=2.0.0 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from pg_activity->-r extra/optional_dependencies.txt (line 24)) (5.8.0)\r\nRequirement already satisfied: wcwidth>=0.1.4 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from blessed>=1.15.0->pg_activity->-r extra/optional_dependencies.txt (line 24)) (0.2.6)\r\nRequirement already satisfied: aiohttp<4.0.0,>=3.6.2 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from geoip2>=2.9.0->Socks5man==0.3.0->-r extra/optional_dependencies.txt (line 10)) (3.8.6)\r\nRequirement already satisfied: maxminddb<3.0.0,>=2.3.0 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from geoip2>=2.9.0->Socks5man==0.3.0->-r extra/optional_dependencies.txt (line 10)) (2.4.0)\r\nRequirement already satisfied: requests<3.0.0,>=2.24.0 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from geoip2>=2.9.0->Socks5man==0.3.0->-r extra/optional_dependencies.txt (line 10)) (2.31.0)\r\nRequirement already satisfied: MarkupSafe>=2.0 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from Jinja2>=3.1.2->flask->-r extra/optional_dependencies.txt (line 5)) (2.1.3)\r\nRequirement already satisfied: editorconfig>=0.12.2 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from jsbeautifier>=1.6.2->peepdf==0.4.2->-r extra/optional_dependencies.txt (line 14)) (0.12.3)\r\nRequirement already satisfied: contourpy>=1.0.1 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from matplotlib>=3.3.0->binGraph==3.3.1->-r extra/optional_dependencies.txt (line 8)) (1.1.1)\r\nRequirement already satisfied: cycler>=0.10 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from matplotlib>=3.3.0->binGraph==3.3.1->-r extra/optional_dependencies.txt (line 8)) (0.12.1)\r\nRequirement already satisfied: fonttools>=4.22.0 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from matplotlib>=3.3.0->binGraph==3.3.1->-r extra/optional_dependencies.txt (line 8)) (4.43.1)\r\nRequirement already satisfied: kiwisolver>=1.0.1 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from matplotlib>=3.3.0->binGraph==3.3.1->-r extra/optional_dependencies.txt (line 8)) (1.4.5)\r\nRequirement already satisfied: packaging>=20.0 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from matplotlib>=3.3.0->binGraph==3.3.1->-r extra/optional_dependencies.txt (line 8)) (23.1)\r\nRequirement already satisfied: python-dateutil>=2.7 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from matplotlib>=3.3.0->binGraph==3.3.1->-r extra/optional_dependencies.txt (line 8)) (2.8.2)\r\nRequirement already satisfied: tzdata>=2022.1 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from pandas>=1.3->networkx[default,extra]>=2.1->-r extra/optional_dependencies.txt (line 16)) (2023.3)\r\nRequirement already satisfied: typing-extensions>=4.2.0 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from sqlalchemy>=2.0.16->flask-sqlalchemy->-r extra/optional_dependencies.txt (line 7)) (4.7.1)\r\nRequirement already satisfied: greenlet!=0.4.17 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from sqlalchemy>=2.0.16->flask-sqlalchemy->-r extra/optional_dependencies.txt (line 7)) (3.0.0rc3)\r\nRequirement already satisfied: mpmath>=0.19 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from sympy>=1.10->networkx[default,extra]>=2.1->-r extra/optional_dependencies.txt (line 16)) (1.3.0)\r\nRequirement already satisfied: Mako in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from alembic->Socks5man==0.3.0->-r extra/optional_dependencies.txt (line 10)) (1.2.4)\r\nRequirement already satisfied: cryptography>=35.0 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from msoffcrypto-tool->XLMMacroDeobfuscator==0.2.7->-r extra/optional_dependencies.txt (line 11)) (41.0.4)\r\nRequirement already satisfied: bcrypt>=3.2 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from paramiko->scp->-r extra/optional_dependencies.txt (line 21)) (4.0.1)\r\nRequirement already satisfied: pynacl>=1.5 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from paramiko->scp->-r extra/optional_dependencies.txt (line 21)) (1.5.0)\r\nRequirement already satisfied: charset-normalizer<4.0,>=2.0 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from aiohttp<4.0.0,>=3.6.2->geoip2>=2.9.0->Socks5man==0.3.0->-r extra/optional_dependencies.txt (line 10)) (3.2.0)\r\nRequirement already satisfied: multidict<7.0,>=4.5 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from aiohttp<4.0.0,>=3.6.2->geoip2>=2.9.0->Socks5man==0.3.0->-r extra/optional_dependencies.txt (line 10)) (6.0.4)\r\nRequirement already satisfied: async-timeout<5.0,>=4.0.0a3 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from aiohttp<4.0.0,>=3.6.2->geoip2>=2.9.0->Socks5man==0.3.0->-r extra/optional_dependencies.txt (line 10)) (4.0.3)\r\nRequirement already satisfied: yarl<2.0,>=1.0 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from aiohttp<4.0.0,>=3.6.2->geoip2>=2.9.0->Socks5man==0.3.0->-r extra/optional_dependencies.txt (line 10)) (1.9.2)\r\nRequirement already satisfied: frozenlist>=1.1.1 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from aiohttp<4.0.0,>=3.6.2->geoip2>=2.9.0->Socks5man==0.3.0->-r extra/optional_dependencies.txt (line 10)) (1.4.0)\r\nRequirement already satisfied: aiosignal>=1.1.2 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from aiohttp<4.0.0,>=3.6.2->geoip2>=2.9.0->Socks5man==0.3.0->-r extra/optional_dependencies.txt (line 10)) (1.3.1)\r\nRequirement already satisfied: cffi>=1.12 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from cryptography>=35.0->msoffcrypto-tool->XLMMacroDeobfuscator==0.2.7->-r extra/optional_dependencies.txt (line 11)) (1.15.1)\r\nRequirement already satisfied: urllib3<3,>=1.21.1 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from requests<3.0.0,>=2.24.0->geoip2>=2.9.0->Socks5man==0.3.0->-r extra/optional_dependencies.txt (line 10)) (2.0.6)\r\nRequirement already satisfied: certifi>=2017.4.17 in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from requests<3.0.0,>=2.24.0->geoip2>=2.9.0->Socks5man==0.3.0->-r extra/optional_dependencies.txt (line 10)) (2023.7.22)\r\nRequirement already satisfied: pycparser in /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages (from cffi>=1.12->cryptography>=35.0->msoffcrypto-tool->XLMMacroDeobfuscator==0.2.7->-r extra/optional_dependencies.txt (line 11)) (2.21)\r\n````\r\n\r\nAll the requirements are met\r\n\r\nNow, if I run `poetry install` again after the optional_dependencies.txt\r\n````\r\nInstalling dependencies from lock file\r\n\r\nPackage operations: 0 installs, 6 updates, 0 removals\r\n\r\n  \u2022 Updating pydantic (1.10.8 -> 1.10.9)\r\n  \u2022 Updating networkx (2.5.1 -> 3.1)\r\n  \u2022 Downgrading rich (13.3.4 -> 12.6.0)\r\n  \u2022 Downgrading sqlalchemy (2.0.22 -> 1.4.22)\r\n  \u2022 Downgrading maxminddb (2.4.0 -> 2.2.0)\r\n  \u2022 Downgrading werkzeug (3.0.0 -> 2.2.3)\r\n````\r\n\r\nIt's true that I don't fully understand what is happening but replacing sfFile with File works. It solves the problem. I just want to get to the root cause. It might help make this codebase robust too.\nComment: wrong usage my friend, poetry is like virtual env, and calling python directly doesn't use that venv. `poetry run python utils/submit.py /home/cape/no2.exe`",
+  "Title: Adding autoit package assignment via file extension\nBody: None",
+  "Title: clean job older than X hours and set cleaned job to failed\nBody: added possibility to delete jobs older than X hours and set a job to failed instead of canceling it\nComment: thanks",
+  "Title: File Details view in Quick Overvew doesn't show\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ x] I am running the latest version\r\n- [ x] I did read the README!\r\n- [ x] I checked the documentation and found no answer\r\n- [ x] I checked to make sure that this issue has not already been filed\r\n- [ x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nFile Details can be seen in Quick Overview.\r\n\r\n# Current Behavior\r\n\r\nIn Recent -> Filename -> Quick Overview I am not seeing File Details view. I used to see it when analysing PDF files. \r\nI rebooted server and did migrations with migrate.py in web folder.\r\nAlso now I don't see \"Payloads\" and \"Compare this analysis to...\" panes anymore. \r\n\r\nWhat I did previously: \r\nI tweaked config files. Was searching which module does what, enabled / disabled them. Now I have changed everything to defaults in config files. But File Details are still not showing.\r\n\r\nI ran this command aswell since I wanted to play with REST API:\r\npoetry run pip install djangorestframework\r\n\r\nAlso - previously my PDF malscores were constantly 5.7 - 5.9 which were false positives, but now I results are 1.9 - 2.2.\r\nReally hope that someone can help with this issue. Thank you.\r\n\r\n\r\n\nComment: malscore is useless is depends of community signatures(`utils/communiy.py`). i would say reprocess your task with debug `poetry run python utils/process.py -r <task_id> -d` to see debug output to see what is wrong on your side\nComment: This is the debug output:\r\n\r\nMissed dependey XLMMacroDeobfuscator: pip3 install -U git+https://github.com/DissectMalware/XLMMacroDeobfuscator.git\r\nOPTIONAL! Missed dependency: pip3 install https://github.com/CAPESandbox/peepdf/archive/20eda78d7d77fc5b3b652ffc2d8a5b0af796e3dd.zip#egg=peepdf==0.4.2\r\nOPTIONAL! Missed dependency: pip3 install -U git+https://github.com/DissectMalware/batch_deobfuscator\r\nOPTIONAL! Missed dependency: pip3 install -U git+https://github.com/CAPESandbox/httpreplay\r\nDEBUG:lib.cuckoo.core.plugins:Executing processing module \"CAPE\" on analysis at \"/opt/CAPEv2/storage/analyses/260\"\r\n2023-10-18 07:00:24,093 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"CAPE\" on analysis at \"/opt/CAPEv2/storage/analyses/260\"\r\nDEBUG:lib.cuckoo.common.integrations.parse_pdf:Starting to load PDF\r\n2023-10-18 07:00:24,531 [Task 260] [lib.cuckoo.common.integrations.parse_pdf] DEBUG: Starting to load PDF\r\nERROR:lib.cuckoo.core.plugins:Failed to run the processing module \"CAPE\": [Errno 13] Permission denied: '/opt/CAPEv2/data/trid/trid'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 243, in process\r\n    data = current.run()\r\n  File \"/opt/CAPEv2/utils/../modules/processing/CAPE.py\", line 352, in run\r\n    self.process_file(\r\n  File \"/opt/CAPEv2/utils/../modules/processing/CAPE.py\", line 192, in process_file\r\n    static_file_info(\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/file_extra_info.py\", line 232, in static_file_info\r\n    data_dictionary[\"trid\"] = trid_info(file_path)\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/file_extra_info.py\", line 289, in trid_info\r\n    output = subprocess.check_output(\r\n  File \"/usr/lib/python3.10/subprocess.py\", line 420, in check_output\r\n    return run(*popenargs, stdout=PIPE, timeout=timeout, check=True,\r\n  File \"/usr/lib/python3.10/subprocess.py\", line 501, in run\r\n    with Popen(*popenargs, **kwargs) as process:\r\n  File \"/usr/lib/python3.10/subprocess.py\", line 969, in __init__\r\n    self._execute_child(args, executable, preexec_fn, close_fds,\r\n  File \"/usr/lib/python3.10/subprocess.py\", line 1845, in _execute_child\r\n    raise child_exception_type(errno_num, err_msg, err_filename)\r\nPermissionError: [Errno 13] Permission denied: '/opt/CAPEv2/data/trid/trid'\r\n2023-10-18 07:00:40,380 [Task 260] [lib.cuckoo.core.plugins] ERROR: Failed to run the processing module \"CAPE\": [Errno 13] Permission denied: '/opt/CAPEv2/data/trid/trid'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 243, in process\r\n    data = current.run()\r\n  File \"/opt/CAPEv2/utils/../modules/processing/CAPE.py\", line 352, in run\r\n    self.process_file(\r\n  File \"/opt/CAPEv2/utils/../modules/processing/CAPE.py\", line 192, in process_file\r\n    static_file_info(\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/file_extra_info.py\", line 232, in static_file_info\r\n    data_dictionary[\"trid\"] = trid_info(file_path)\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/file_extra_info.py\", line 289, in trid_info\r\n    output = subprocess.check_output(\r\n  File \"/usr/lib/python3.10/subprocess.py\", line 420, in check_output\r\n    return run(*popenargs, stdout=PIPE, timeout=timeout, check=True,\r\n  File \"/usr/lib/python3.10/subprocess.py\", line 501, in run\r\n    with Popen(*popenargs, **kwargs) as process:\r\n  File \"/usr/lib/python3.10/subprocess.py\", line 969, in __init__\r\n    self._execute_child(args, executable, preexec_fn, close_fds,\r\n  File \"/usr/lib/python3.10/subprocess.py\", line 1845, in _execute_child\r\n    raise child_exception_type(errno_num, err_msg, err_filename)\r\nPermissionError: [Errno 13] Permission denied: '/opt/CAPEv2/data/trid/trid'\r\nDEBUG:lib.cuckoo.core.plugins:Executing processing module \"AnalysisInfo\" on analysis at \"/opt/CAPEv2/storage/analyses/260\"\r\n2023-10-18 07:00:40,382 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"AnalysisInfo\" on analysis at \"/opt/CAPEv2/storage/analyses/260\"\r\nDEBUG:lib.cuckoo.core.plugins:Executing processing module \"BehaviorAnalysis\" on analysis at \"/opt/CAPEv2/storage/analyses/260\"\r\n2023-10-18 07:00:40,401 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"BehaviorAnalysis\" on analysis at \"/opt/CAPEv2/storage/analyses/260\"\r\nDEBUG:lib.cuckoo.core.plugins:Executing processing module \"Debug\" on analysis at \"/opt/CAPEv2/storage/analyses/260\"\r\n2023-10-18 07:00:40,660 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Debug\" on analysis at \"/opt/CAPEv2/storage/analyses/260\"\r\nDEBUG:lib.cuckoo.core.plugins:Executing processing module \"MMBot\" on analysis at \"/opt/CAPEv2/storage/analyses/260\"\r\n2023-10-18 07:00:40,663 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"MMBot\" on analysis at \"/opt/CAPEv2/storage/analyses/260\"\r\nERROR:modules.processing.maliciousmacrobot:MaliciousMacroBot not installed, 'pip3 install mmbot', aborting mmbot analysis\r\n2023-10-18 07:00:40,668 [Task 260] [modules.processing.maliciousmacrobot] ERROR: MaliciousMacroBot not installed, 'pip3 install mmbot', aborting mmbot analysis\r\nDEBUG:lib.cuckoo.core.plugins:Executing processing module \"NetworkAnalysis\" on analysis at \"/opt/CAPEv2/storage/analyses/260\"\r\n2023-10-18 07:00:40,668 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"NetworkAnalysis\" on analysis at \"/opt/CAPEv2/storage/analyses/260\"\r\nWARNING:modules.processing.network:The PCAP file does not exist at path \"/opt/CAPEv2/storage/analyses/260/dump.pcap\"\r\n2023-10-18 07:00:40,668 [Task 260] [modules.processing.network] WARNING: The PCAP file does not exist at path \"/opt/CAPEv2/storage/analyses/260/dump.pcap\"\r\nDEBUG:lib.cuckoo.core.plugins:Executing processing module \"Procmon\" on analysis at \"/opt/CAPEv2/storage/analyses/260\"\r\n2023-10-18 07:00:40,668 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Procmon\" on analysis at \"/opt/CAPEv2/storage/analyses/260\"\r\nDEBUG:lib.cuckoo.core.plugins:Executing processing module \"Suricata\" on analysis at \"/opt/CAPEv2/storage/analyses/260\"\r\n2023-10-18 07:00:40,669 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Suricata\" on analysis at \"/opt/CAPEv2/storage/analyses/260\"\r\nDEBUG:modules.processing.suricata:Unable to Run Suricata: Pcap file /opt/CAPEv2/storage/analyses/260/dump.pcap does not exist. Did you run analysis with live connection?\r\n2023-10-18 07:00:40,669 [Task 260] [modules.processing.suricata] DEBUG: Unable to Run Suricata: Pcap file /opt/CAPEv2/storage/analyses/260/dump.pcap does not exist. Did you run analysis with live connection?\r\nDEBUG:lib.cuckoo.core.plugins:Executing processing module \"UrlAnalysis\" on analysis at \"/opt/CAPEv2/storage/analyses/260\"\r\n2023-10-18 07:00:40,669 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"UrlAnalysis\" on analysis at \"/opt/CAPEv2/storage/analyses/260\"\r\nDEBUG:lib.cuckoo.core.plugins:Executing processing module \"Usage\" on analysis at \"/opt/CAPEv2/storage/analyses/260\"\r\n2023-10-18 07:00:40,669 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Usage\" on analysis at \"/opt/CAPEv2/storage/analyses/260\"\r\nDEBUG:lib.cuckoo.core.plugins:Executing processing module \"extract_overlay_data\" on analysis at \"/opt/CAPEv2/storage/analyses/260\"\r\n2023-10-18 07:00:40,670 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"extract_overlay_data\" on analysis at \"/opt/CAPEv2/storage/analyses/260\"\r\nERROR:lib.cuckoo.core.plugins:Failed to run the processing module \"extract_overlay_data\": 'extract_overlay_data' object has no attribute 'key'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 249, in process\r\n    return {current.key: data}\r\nAttributeError: 'extract_overlay_data' object has no attribute 'key'\r\n2023-10-18 07:00:40,670 [Task 260] [lib.cuckoo.core.plugins] ERROR: Failed to run the processing module \"extract_overlay_data\": 'extract_overlay_data' object has no attribute 'key'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 249, in process\r\n    return {current.key: data}\r\nAttributeError: 'extract_overlay_data' object has no attribute 'key'\r\nDEBUG:lib.cuckoo.core.plugins:Executing processing module \"script_log_processing\" on analysis at \"/opt/CAPEv2/storage/analyses/260\"\r\n2023-10-18 07:00:40,670 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"script_log_processing\" on analysis at \"/opt/CAPEv2/storage/analyses/260\"\r\nDEBUG:lib.cuckoo.core.plugins:Executing processing module \"ProcessMemory\" on analysis at \"/opt/CAPEv2/storage/analyses/260\"\r\n2023-10-18 07:00:40,671 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"ProcessMemory\" on analysis at \"/opt/CAPEv2/storage/analyses/260\"\r\nDEBUG:lib.cuckoo.core.plugins:Applying signature overlays for signatures: creates_exe\r\n2023-10-18 07:00:40,685 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Applying signature overlays for signatures: creates_exe\r\nDEBUG:lib.cuckoo.core.plugins:Running 242 evented signatures\r\n2023-10-18 07:00:40,687 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running 242 evented signatures\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- compression\r\n2023-10-18 07:00:40,688 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- compression\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- decryption\r\n2023-10-18 07:00:40,688 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- decryption\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- doppelganging\r\n2023-10-18 07:00:40,688 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- doppelganging\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- evil_grab\r\n2023-10-18 07:00:40,688 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- evil_grab\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- injection_inter_process\r\n2023-10-18 07:00:40,688 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_inter_process\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- injection_create_remote_thread\r\n2023-10-18 07:00:40,688 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_create_remote_thread\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- injection_process_hollowing\r\n2023-10-18 07:00:40,688 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_process_hollowing\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- injection_set_window_long\r\n2023-10-18 07:00:40,688 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_set_window_long\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- PlugX\r\n2023-10-18 07:00:40,688 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- PlugX\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- reg_binary\r\n2023-10-18 07:00:40,688 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- reg_binary\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- transacted_hollowing\r\n2023-10-18 07:00:40,689 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- transacted_hollowing\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- Unpacker\r\n2023-10-18 07:00:40,689 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- Unpacker\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- anomalous_deletefile\r\n2023-10-18 07:00:40,689 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- anomalous_deletefile\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antiav_360_libs\r\n2023-10-18 07:00:40,689 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_360_libs\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antiav_ahnlab_libs\r\n2023-10-18 07:00:40,689 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_ahnlab_libs\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antiav_avast_libs\r\n2023-10-18 07:00:40,689 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_avast_libs\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antiav_bitdefender_libs\r\n2023-10-18 07:00:40,689 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_bitdefender_libs\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antiav_bullgaurd_libs\r\n2023-10-18 07:00:40,689 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_bullgaurd_libs\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antiav_emsisoft_libs\r\n2023-10-18 07:00:40,689 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_emsisoft_libs\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antiav_qurb_libs\r\n2023-10-18 07:00:40,689 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_qurb_libs\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antiav_servicestop\r\n2023-10-18 07:00:40,689 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_servicestop\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antidebug_addvectoredexceptionhandler\r\n2023-10-18 07:00:40,690 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_addvectoredexceptionhandler\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antiav_apioverride_libs\r\n2023-10-18 07:00:40,690 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_apioverride_libs\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antidebug_checkremotedebuggerpresent\r\n2023-10-18 07:00:40,690 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_checkremotedebuggerpresent\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antidebug_debugactiveprocess\r\n2023-10-18 07:00:40,690 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_debugactiveprocess\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antidebug_gettickcount\r\n2023-10-18 07:00:40,690 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_gettickcount\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antidebug_guardpages\r\n2023-10-18 07:00:40,690 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_guardpages\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antidebug_ntcreatethreadex\r\n2023-10-18 07:00:40,690 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_ntcreatethreadex\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antiav_nthookengine_libs\r\n2023-10-18 07:00:40,690 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_nthookengine_libs\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antidebug_ntsetinformationthread\r\n2023-10-18 07:00:40,690 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_ntsetinformationthread\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antidebug_outputdebugstring\r\n2023-10-18 07:00:40,690 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_outputdebugstring\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antidebug_setunhandledexceptionfilter\r\n2023-10-18 07:00:40,690 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_setunhandledexceptionfilter\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antidebug_windows\r\n2023-10-18 07:00:40,691 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_windows\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antiemu_wine_func\r\n2023-10-18 07:00:40,691 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiemu_wine_func\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antisandbox_check_userdomain\r\n2023-10-18 07:00:40,691 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_check_userdomain\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antisandbox_cuckoo\r\n2023-10-18 07:00:40,691 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_cuckoo\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antisandbox_cuckoocrash\r\n2023-10-18 07:00:40,691 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_cuckoocrash\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antisandbox_foregroundwindows\r\n2023-10-18 07:00:40,691 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_foregroundwindows\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antisandbox_mouse_hook\r\n2023-10-18 07:00:40,691 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_mouse_hook\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antisandbox_restart\r\n2023-10-18 07:00:40,691 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_restart\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antisandbox_sboxie_libs\r\n2023-10-18 07:00:40,691 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_sboxie_libs\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antisandbox_sboxie_objects\r\n2023-10-18 07:00:40,691 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_sboxie_objects\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antisandbox_script_timer\r\n2023-10-18 07:00:40,691 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_script_timer\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antisandbox_sleep\r\n2023-10-18 07:00:40,691 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_sleep\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antisandbox_sunbelt_libs\r\n2023-10-18 07:00:40,692 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_sunbelt_libs\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antisandbox_suspend\r\n2023-10-18 07:00:40,692 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_suspend\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antisandbox_unhook\r\n2023-10-18 07:00:40,692 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_unhook\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antivm_directory_objects\r\n2023-10-18 07:00:40,692 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_directory_objects\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antivm_generic_disk\r\n2023-10-18 07:00:40,692 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_generic_disk\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antivm_generic_disk_setupapi\r\n2023-10-18 07:00:40,692 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_generic_disk_setupapi\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antivm_generic_scsi\r\n2023-10-18 07:00:40,692 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_generic_scsi\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antivm_generic_services\r\n2023-10-18 07:00:40,692 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_generic_services\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antivm_network_adapters\r\n2023-10-18 07:00:40,692 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_network_adapters\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antivm_vbox_libs\r\n2023-10-18 07:00:40,692 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_vbox_libs\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antivm_vbox_provname\r\n2023-10-18 07:00:40,692 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_vbox_provname\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antivm_vbox_window\r\n2023-10-18 07:00:40,693 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_vbox_window\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antivm_vmware_events\r\n2023-10-18 07:00:40,693 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_vmware_events\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antivm_vmware_libs\r\n2023-10-18 07:00:40,693 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_vmware_libs\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- api_spamming\r\n2023-10-18 07:00:40,693 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- api_spamming\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- banker_prinimalka\r\n2023-10-18 07:00:40,693 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- banker_prinimalka\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- bcdedit_command\r\n2023-10-18 07:00:40,693 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- bcdedit_command\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- bootkit\r\n2023-10-18 07:00:40,693 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- bootkit\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- potential_overwrite_mbr\r\n2023-10-18 07:00:40,693 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- potential_overwrite_mbr\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- suspicious_ioctl_scsipassthough\r\n2023-10-18 07:00:40,693 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- suspicious_ioctl_scsipassthough\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- browser_needed\r\n2023-10-18 07:00:40,693 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- browser_needed\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- browser_scanbox\r\n2023-10-18 07:00:40,693 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- browser_scanbox\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- firefox_disables_process_tab\r\n2023-10-18 07:00:40,694 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- firefox_disables_process_tab\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- regsvr32_squiblydoo_dll_load\r\n2023-10-18 07:00:40,694 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- regsvr32_squiblydoo_dll_load\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- uac_bypass_cmstp\r\n2023-10-18 07:00:40,694 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- uac_bypass_cmstp\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- uac_bypass_eventvwr\r\n2023-10-18 07:00:40,694 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- uac_bypass_eventvwr\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- clickfraud_cookies\r\n2023-10-18 07:00:40,694 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- clickfraud_cookies\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- clickfraud_volume\r\n2023-10-18 07:00:40,694 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- clickfraud_volume\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- creates_largekey\r\n2023-10-18 07:00:40,694 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- creates_largekey\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- creates_nullvalue\r\n2023-10-18 07:00:40,694 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- creates_nullvalue\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- lsass_credential_dumping\r\n2023-10-18 07:00:40,694 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- lsass_credential_dumping\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- critical_process\r\n2023-10-18 07:00:40,694 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- critical_process\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- generates_crypto_key\r\n2023-10-18 07:00:40,694 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- generates_crypto_key\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- cve_2014_6332\r\n2023-10-18 07:00:40,695 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- cve_2014_6332\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- cve_2015_2419_js\r\n2023-10-18 07:00:40,695 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- cve_2015_2419_js\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- cve_2016-0189\r\n2023-10-18 07:00:40,695 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- cve_2016-0189\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- cve_2016_7200\r\n2023-10-18 07:00:40,695 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- cve_2016_7200\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- dead_connect\r\n2023-10-18 07:00:40,695 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- dead_connect\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- dead_link\r\n2023-10-18 07:00:40,695 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- dead_link\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- debugs_self\r\n2023-10-18 07:00:40,695 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- debugs_self\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- decoy_image\r\n2023-10-18 07:00:40,695 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- decoy_image\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- deletes_self\r\n2023-10-18 07:00:40,695 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- deletes_self\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- deletes_shadow_copies\r\n2023-10-18 07:00:40,695 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- deletes_shadow_copies\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- deletes_system_state_backup\r\n2023-10-18 07:00:40,695 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- deletes_system_state_backup\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- dep_bypass\r\n2023-10-18 07:00:40,696 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- dep_bypass\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- dep_disable\r\n2023-10-18 07:00:40,696 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- dep_disable\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- disables_mappeddrives_autodisconnect\r\n2023-10-18 07:00:40,696 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- disables_mappeddrives_autodisconnect\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- disables_spdy\r\n2023-10-18 07:00:40,696 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- disables_spdy\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- disables_wfp\r\n2023-10-18 07:00:40,696 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- disables_wfp\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- dll_load_uncommon_file_types\r\n2023-10-18 07:00:40,696 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- dll_load_uncommon_file_types\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- document_script_exe_drop\r\n2023-10-18 07:00:40,696 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- document_script_exe_drop\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- guloader_apis\r\n2023-10-18 07:00:40,696 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- guloader_apis\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- driver_load\r\n2023-10-18 07:00:40,696 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- driver_load\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- dynamic_function_loading\r\n2023-10-18 07:00:40,696 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- dynamic_function_loading\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- exec_crash\r\n2023-10-18 07:00:40,696 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- exec_crash\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- process_creation_suspicious_location\r\n2023-10-18 07:00:40,696 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- process_creation_suspicious_location\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- exploit_getbasekerneladdress\r\n2023-10-18 07:00:40,697 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- exploit_getbasekerneladdress\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- exploit_gethaldispatchtable\r\n2023-10-18 07:00:40,697 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- exploit_gethaldispatchtable\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- exploit_heapspray\r\n2023-10-18 07:00:40,697 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- exploit_heapspray\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- koadic_apis\r\n2023-10-18 07:00:40,697 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- koadic_apis\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- koadic_network_activity\r\n2023-10-18 07:00:40,697 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- koadic_network_activity\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- downloads_from_filehosting\r\n2023-10-18 07:00:40,697 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- downloads_from_filehosting\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- generic_phish\r\n2023-10-18 07:00:40,697 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- generic_phish\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- http_request\r\n2023-10-18 07:00:40,697 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- http_request\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- https_urls\r\n2023-10-18 07:00:40,697 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- https_urls\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- infostealer_browser\r\n2023-10-18 07:00:40,697 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- infostealer_browser\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- infostealer_browser_password\r\n2023-10-18 07:00:40,697 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- infostealer_browser_password\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- cryptbot_network\r\n2023-10-18 07:00:40,698 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- cryptbot_network\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- infostealer_keylog\r\n2023-10-18 07:00:40,698 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- infostealer_keylog\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- masslogger_artifacts\r\n2023-10-18 07:00:40,698 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- masslogger_artifacts\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- masslogger_version\r\n2023-10-18 07:00:40,698 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- masslogger_version\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- purplewave_network_activity\r\n2023-10-18 07:00:40,698 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- purplewave_network_activity\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- quilclipper_behavior\r\n2023-10-18 07:00:40,698 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- quilclipper_behavior\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- raccoon_behavior\r\n2023-10-18 07:00:40,698 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- raccoon_behavior\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- captures_screenshot\r\n2023-10-18 07:00:40,698 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- captures_screenshot\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- vidar_behavior\r\n2023-10-18 07:00:40,698 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- vidar_behavior\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- injection_createremotethread\r\n2023-10-18 07:00:40,698 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_createremotethread\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- injection_explorer\r\n2023-10-18 07:00:40,698 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_explorer\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- injection_needextension\r\n2023-10-18 07:00:40,699 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_needextension\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- injection_network_traffic\r\n2023-10-18 07:00:40,699 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_network_traffic\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- injection_runpe\r\n2023-10-18 07:00:40,699 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_runpe\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- injection_themeinitapihook\r\n2023-10-18 07:00:40,699 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_themeinitapihook\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- internet_dropper\r\n2023-10-18 07:00:40,699 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- internet_dropper\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- ipc_namedpipe\r\n2023-10-18 07:00:40,699 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- ipc_namedpipe\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- js_phish\r\n2023-10-18 07:00:40,699 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- js_phish\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- js_suspicious_redirect\r\n2023-10-18 07:00:40,699 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- js_suspicious_redirect\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- malicious_dynamic_function_loading\r\n2023-10-18 07:00:40,699 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- malicious_dynamic_function_loading\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- encrypt_pcinfo\r\n2023-10-18 07:00:40,699 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- encrypt_pcinfo\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- encrypt_data_agenttesla_http\r\n2023-10-18 07:00:40,699 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- encrypt_data_agenttesla_http\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- encrypt_data_agentteslat2_http\r\n2023-10-18 07:00:40,699 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- encrypt_data_agentteslat2_http\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- encrypt_data_nanocore\r\n2023-10-18 07:00:40,700 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- encrypt_data_nanocore\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- mimics_filetime\r\n2023-10-18 07:00:40,700 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- mimics_filetime\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- quilclipper_behavior\r\n2023-10-18 07:00:40,700 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- quilclipper_behavior\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- modify_desktop_wallpaper\r\n2023-10-18 07:00:40,700 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- modify_desktop_wallpaper\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- modify_zoneid_ads\r\n2023-10-18 07:00:40,700 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- modify_zoneid_ads\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- move_file_on_reboot\r\n2023-10-18 07:00:40,700 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- move_file_on_reboot\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- multiple_useragents\r\n2023-10-18 07:00:40,700 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- multiple_useragents\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_anomaly\r\n2023-10-18 07:00:40,700 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_anomaly\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_bind\r\n2023-10-18 07:00:40,700 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_bind\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_cnc_https_archive\r\n2023-10-18 07:00:40,700 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_archive\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_cnc_https_free_webshoting\r\n2023-10-18 07:00:40,700 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_free_webshoting\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_cnc_https_generic\r\n2023-10-18 07:00:40,701 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_generic\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_cnc_https_temp_urldns\r\n2023-10-18 07:00:40,701 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_temp_urldns\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_cnc_https_pastesite\r\n2023-10-18 07:00:40,701 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_pastesite\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_cnc_https_payload\r\n2023-10-18 07:00:40,701 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_payload\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_cnc_https_socialmedia\r\n2023-10-18 07:00:40,701 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_socialmedia\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_cnc_https_telegram\r\n2023-10-18 07:00:40,701 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_telegram\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_cnc_https_tempstorage\r\n2023-10-18 07:00:40,701 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_tempstorage\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_cnc_https_temp_urldns\r\n2023-10-18 07:00:40,701 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_temp_urldns\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_cnc_https_urlshortener\r\n2023-10-18 07:00:40,701 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_urlshortener\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_cnc_https_useragent\r\n2023-10-18 07:00:40,701 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_useragent\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_cnc_smtps_exfil\r\n2023-10-18 07:00:40,701 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_smtps_exfil\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_cnc_smtps_generic\r\n2023-10-18 07:00:40,702 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_smtps_generic\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_dns_idn\r\n2023-10-18 07:00:40,702 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_dns_idn\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_dns_suspicious_querytype\r\n2023-10-18 07:00:40,702 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_dns_suspicious_querytype\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_dns_tunneling_request\r\n2023-10-18 07:00:40,702 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_dns_tunneling_request\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- explorer_http\r\n2023-10-18 07:00:40,702 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- explorer_http\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_fake_useragent\r\n2023-10-18 07:00:40,702 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_fake_useragent\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_downloader_exe\r\n2023-10-18 07:00:40,702 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_downloader_exe\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_tor\r\n2023-10-18 07:00:40,702 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_tor\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- office_com_load\r\n2023-10-18 07:00:40,702 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_com_load\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- office_dotnet_load\r\n2023-10-18 07:00:40,702 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_dotnet_load\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- office_mshtml_load\r\n2023-10-18 07:00:40,702 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_mshtml_load\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- office_vb_load\r\n2023-10-18 07:00:40,703 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_vb_load\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- office_wmi_load\r\n2023-10-18 07:00:40,703 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_wmi_load\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- office_cve2017_11882_network\r\n2023-10-18 07:00:40,703 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_cve2017_11882_network\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- office_cve_2021_40444\r\n2023-10-18 07:00:40,703 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_cve_2021_40444\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- office_cve_2021_40444_m2\r\n2023-10-18 07:00:40,703 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_cve_2021_40444_m2\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- office_flash_load\r\n2023-10-18 07:00:40,703 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_flash_load\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- office_postscript\r\n2023-10-18 07:00:40,703 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_postscript\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- office_suspicious_processes\r\n2023-10-18 07:00:40,703 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_suspicious_processes\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- packer_themida\r\n2023-10-18 07:00:40,703 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- packer_themida\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- persistence_autorun\r\n2023-10-18 07:00:40,703 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- persistence_autorun\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- persistence_autorun_tasks\r\n2023-10-18 07:00:40,703 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- persistence_autorun_tasks\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- persistence_bootexecute\r\n2023-10-18 07:00:40,703 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- persistence_bootexecute\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- persistence_registry_script\r\n2023-10-18 07:00:40,704 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- persistence_registry_script\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- powershell_download\r\n2023-10-18 07:00:40,704 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- powershell_download\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- powershell_request\r\n2023-10-18 07:00:40,704 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- powershell_request\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- createtoolhelp32snapshot_module_enumeration\r\n2023-10-18 07:00:40,704 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- createtoolhelp32snapshot_module_enumeration\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- enumerates_running_processes\r\n2023-10-18 07:00:40,704 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- enumerates_running_processes\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- process_interest\r\n2023-10-18 07:00:40,704 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- process_interest\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- process_needed\r\n2023-10-18 07:00:40,704 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- process_needed\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- mass_data_encryption\r\n2023-10-18 07:00:40,704 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- mass_data_encryption\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- ransomware_dmalocker\r\n2023-10-18 07:00:40,704 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- ransomware_dmalocker\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- ransomware_file_modifications\r\n2023-10-18 07:00:40,704 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- ransomware_file_modifications\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- ransomware_message\r\n2023-10-18 07:00:40,704 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- ransomware_message\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- nemty_network_activity\r\n2023-10-18 07:00:40,705 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- nemty_network_activity\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- nemty_note\r\n2023-10-18 07:00:40,705 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- nemty_note\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- sodinokibi_behavior\r\n2023-10-18 07:00:40,705 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- sodinokibi_behavior\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- stop_ransomware_registry\r\n2023-10-18 07:00:40,705 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- stop_ransomware_registry\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- blackrat_apis\r\n2023-10-18 07:00:40,705 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- blackrat_apis\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- blackrat_network_activity\r\n2023-10-18 07:00:40,705 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- blackrat_network_activity\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- blackrat_registry_keys\r\n2023-10-18 07:00:40,705 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- blackrat_registry_keys\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- dcrat_behavior\r\n2023-10-18 07:00:40,705 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- dcrat_behavior\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- karagany_system_event_objects\r\n2023-10-18 07:00:40,705 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- karagany_system_event_objects\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- rat_luminosity\r\n2023-10-18 07:00:40,705 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- rat_luminosity\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- rat_nanocore\r\n2023-10-18 07:00:40,705 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- rat_nanocore\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- netwire_behavior\r\n2023-10-18 07:00:40,706 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- netwire_behavior\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- obliquerat_network_activity\r\n2023-10-18 07:00:40,706 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- obliquerat_network_activity\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- orcusrat_behavior\r\n2023-10-18 07:00:40,706 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- orcusrat_behavior\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- trochilusrat_apis\r\n2023-10-18 07:00:40,706 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- trochilusrat_apis\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- recon_beacon\r\n2023-10-18 07:00:40,706 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- recon_beacon\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- recon_programs\r\n2023-10-18 07:00:40,706 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- recon_programs\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- recon_systeminfo\r\n2023-10-18 07:00:40,706 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- recon_systeminfo\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- accesses_recyclebin\r\n2023-10-18 07:00:40,706 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- accesses_recyclebin\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- removes_zoneid_ads\r\n2023-10-18 07:00:40,706 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- removes_zoneid_ads\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- script_created_process\r\n2023-10-18 07:00:40,706 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- script_created_process\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- script_network_activity\r\n2023-10-18 07:00:40,706 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- script_network_activity\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- suspicious_js_script\r\n2023-10-18 07:00:40,706 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- suspicious_js_script\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- secure_login_phishing\r\n2023-10-18 07:00:40,707 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- secure_login_phishing\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- securityxploded_modules\r\n2023-10-18 07:00:40,707 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- securityxploded_modules\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- get_clipboard_data\r\n2023-10-18 07:00:40,707 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- get_clipboard_data\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- sets_autoconfig_url\r\n2023-10-18 07:00:40,707 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- sets_autoconfig_url\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- spoofs_procname\r\n2023-10-18 07:00:40,707 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- spoofs_procname\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- stack_pivot\r\n2023-10-18 07:00:40,707 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- stack_pivot\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- stack_pivot_file_created\r\n2023-10-18 07:00:40,707 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- stack_pivot_file_created\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- stack_pivot_process_create\r\n2023-10-18 07:00:40,707 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- stack_pivot_process_create\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- set_clipboard_data\r\n2023-10-18 07:00:40,707 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- set_clipboard_data\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- stealth_childproc\r\n2023-10-18 07:00:40,707 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- stealth_childproc\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- stealth_network\r\n2023-10-18 07:00:40,707 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- stealth_network\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- stealth_system_procname\r\n2023-10-18 07:00:40,707 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- stealth_system_procname\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- stealth_timeout\r\n2023-10-18 07:00:40,708 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- stealth_timeout\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- stealth_window\r\n2023-10-18 07:00:40,708 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- stealth_window\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- terminates_remote_process\r\n2023-10-18 07:00:40,708 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- terminates_remote_process\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- trickbot_task_delete\r\n2023-10-18 07:00:40,708 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- trickbot_task_delete\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- user_enum\r\n2023-10-18 07:00:40,708 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- user_enum\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- virus\r\n2023-10-18 07:00:40,708 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- virus\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- neshta_files\r\n2023-10-18 07:00:40,708 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- neshta_files\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- neshta_regkeys\r\n2023-10-18 07:00:40,708 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- neshta_regkeys\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- webmail_phish\r\n2023-10-18 07:00:40,708 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- webmail_phish\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- persists_dev_util\r\n2023-10-18 07:00:40,708 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- persists_dev_util\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- spawns_dev_util\r\n2023-10-18 07:00:40,708 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- spawns_dev_util\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- alters_windows_utility\r\n2023-10-18 07:00:40,709 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- alters_windows_utility\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- overwrites_accessibility_utility\r\n2023-10-18 07:00:40,709 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- overwrites_accessibility_utility\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- wiper_zeroedbytes\r\n2023-10-18 07:00:40,709 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- wiper_zeroedbytes\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- wmi_create_process\r\n2023-10-18 07:00:40,709 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- wmi_create_process\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- wmi_script_process\r\n2023-10-18 07:00:40,709 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t |-- wmi_script_process\r\nDEBUG:lib.cuckoo.core.plugins:\t `-- win32_process_create\r\n2023-10-18 07:00:40,709 [Task 260] [lib.cuckoo.core.plugins] DEBUG: \t `-- win32_process_create\r\nDEBUG:lib.cuckoo.core.plugins:Running non-evented signatures\r\n2023-10-18 07:00:41,000 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running non-evented signatures\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"cape_detected_threat\"\r\n2023-10-18 07:00:41,000 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cape_detected_threat\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"accesses_mailslot\"\r\n2023-10-18 07:00:41,001 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"accesses_mailslot\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"accesses_netlogon_regkey\"\r\n2023-10-18 07:00:41,001 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"accesses_netlogon_regkey\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"accesses_sysvol\"\r\n2023-10-18 07:00:41,002 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"accesses_sysvol\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"writes_sysvol\"\r\n2023-10-18 07:00:41,002 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"writes_sysvol\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"adds_admin_user\"\r\n2023-10-18 07:00:41,003 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"adds_admin_user\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"adds_user\"\r\n2023-10-18 07:00:41,003 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"adds_user\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"overwrites_admin_password\"\r\n2023-10-18 07:00:41,004 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"overwrites_admin_password\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antianalysis_detectfile\"\r\n2023-10-18 07:00:41,004 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antianalysis_detectfile\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antianalysis_detectreg\"\r\n2023-10-18 07:00:41,014 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antianalysis_detectreg\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"modify_attachment_manager\"\r\n2023-10-18 07:00:41,017 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_attachment_manager\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antiav_detectfile\"\r\n2023-10-18 07:00:41,018 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_detectfile\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antiav_detectreg\"\r\n2023-10-18 07:00:41,024 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_detectreg\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antiav_srp\"\r\n2023-10-18 07:00:41,038 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_srp\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antiav_whitespace\"\r\n2023-10-18 07:00:41,038 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_whitespace\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antidebug_devices\"\r\n2023-10-18 07:00:41,039 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antidebug_devices\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antiemu_windefend\"\r\n2023-10-18 07:00:41,040 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiemu_windefend\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antiemu_wine_reg\"\r\n2023-10-18 07:00:41,041 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiemu_wine_reg\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antisandbox_cuckoo_files\"\r\n2023-10-18 07:00:41,041 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_cuckoo_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antisandbox_fortinet_files\"\r\n2023-10-18 07:00:41,042 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_fortinet_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antisandbox_joe_anubis_files\"\r\n2023-10-18 07:00:41,043 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_joe_anubis_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antisandbox_sboxie_mutex\"\r\n2023-10-18 07:00:41,043 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_sboxie_mutex\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antisandbox_sunbelt_files\"\r\n2023-10-18 07:00:41,043 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_sunbelt_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antisandbox_threattrack_files\"\r\n2023-10-18 07:00:41,044 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_threattrack_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antivirus_clamav\"\r\n2023-10-18 07:00:41,045 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivirus_clamav\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antivirus_virustotal\"\r\n2023-10-18 07:00:41,045 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivirus_virustotal\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antivm_bochs_keys\"\r\n2023-10-18 07:00:41,045 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_bochs_keys\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antivm_generic_bios\"\r\n2023-10-18 07:00:41,046 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_generic_bios\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antivm_generic_cpu\"\r\n2023-10-18 07:00:41,046 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_generic_cpu\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antivm_generic_diskreg\"\r\n2023-10-18 07:00:41,047 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_generic_diskreg\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antivm_generic_system\"\r\n2023-10-18 07:00:41,048 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_generic_system\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antivm_hyperv_keys\"\r\n2023-10-18 07:00:41,049 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_hyperv_keys\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antivm_parallels_keys\"\r\n2023-10-18 07:00:41,049 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_parallels_keys\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antivm_vbox_devices\"\r\n2023-10-18 07:00:41,051 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vbox_devices\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antivm_vbox_files\"\r\n2023-10-18 07:00:41,051 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vbox_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antivm_vbox_keys\"\r\n2023-10-18 07:00:41,055 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vbox_keys\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antivm_vmware_devices\"\r\n2023-10-18 07:00:41,057 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vmware_devices\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antivm_vmware_files\"\r\n2023-10-18 07:00:41,057 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vmware_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antivm_vmware_keys\"\r\n2023-10-18 07:00:41,058 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vmware_keys\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antivm_vmware_mutexes\"\r\n2023-10-18 07:00:41,060 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vmware_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antivm_vpc_files\"\r\n2023-10-18 07:00:41,060 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vpc_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antivm_vpc_keys\"\r\n2023-10-18 07:00:41,061 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vpc_keys\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antivm_vpc_mutex\"\r\n2023-10-18 07:00:41,062 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vpc_mutex\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antivm_xen_keys\"\r\n2023-10-18 07:00:41,062 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_xen_keys\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"gulpix_behavior\"\r\n2023-10-18 07:00:41,063 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"gulpix_behavior\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"ketrican_regkeys\"\r\n2023-10-18 07:00:41,064 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ketrican_regkeys\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"okrum_mutexes\"\r\n2023-10-18 07:00:41,065 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"okrum_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"bad_certs\"\r\n2023-10-18 07:00:41,066 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bad_certs\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"bad_ssl_certs\"\r\n2023-10-18 07:00:41,066 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bad_ssl_certs\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"banker_cridex\"\r\n2023-10-18 07:00:41,066 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_cridex\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"geodo_banking_trojan\"\r\n2023-10-18 07:00:41,067 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"geodo_banking_trojan\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"banker_spyeye_mutexes\"\r\n2023-10-18 07:00:41,069 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_spyeye_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"banker_zeus_mutex\"\r\n2023-10-18 07:00:41,069 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_zeus_mutex\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"banker_zeus_p2p\"\r\n2023-10-18 07:00:41,070 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_zeus_p2p\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"banker_zeus_url\"\r\n2023-10-18 07:00:41,071 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_zeus_url\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"bitcoin_opencl\"\r\n2023-10-18 07:00:41,071 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bitcoin_opencl\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"accesses_primary_patition\"\r\n2023-10-18 07:00:41,072 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"accesses_primary_patition\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"direct_hdd_access\"\r\n2023-10-18 07:00:41,072 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"direct_hdd_access\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"enumerates_physical_drives\"\r\n2023-10-18 07:00:41,073 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"enumerates_physical_drives\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"physical_drive_access\"\r\n2023-10-18 07:00:41,073 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"physical_drive_access\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"bot_athenahttp\"\r\n2023-10-18 07:00:41,073 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_athenahttp\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"bot_dirtjumper\"\r\n2023-10-18 07:00:41,074 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_dirtjumper\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"bot_drive\"\r\n2023-10-18 07:00:41,074 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_drive\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"bot_drive2\"\r\n2023-10-18 07:00:41,075 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_drive2\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"bot_madness\"\r\n2023-10-18 07:00:41,076 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_madness\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"bot_russkill\"\r\n2023-10-18 07:00:41,077 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_russkill\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"browser_addon\"\r\n2023-10-18 07:00:41,077 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"browser_addon\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"browser_helper_object\"\r\n2023-10-18 07:00:41,078 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"browser_helper_object\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"browser_security\"\r\n2023-10-18 07:00:41,079 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"browser_security\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"browser_startpage\"\r\n2023-10-18 07:00:41,079 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"browser_startpage\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"ie_disables_process_tab\"\r\n2023-10-18 07:00:41,079 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ie_disables_process_tab\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"odbcconf_bypass\"\r\n2023-10-18 07:00:41,080 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"odbcconf_bypass\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"squiblydoo_bypass\"\r\n2023-10-18 07:00:41,080 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"squiblydoo_bypass\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"squiblytwo_bypass\"\r\n2023-10-18 07:00:41,080 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"squiblytwo_bypass\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"bypass_firewall\"\r\n2023-10-18 07:00:41,081 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bypass_firewall\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"uac_bypass_cmstpcom\"\r\n2023-10-18 07:00:41,081 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uac_bypass_cmstpcom\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"uac_bypass_delegateexecute_sdclt\"\r\n2023-10-18 07:00:41,082 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uac_bypass_delegateexecute_sdclt\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"uac_bypass_fodhelper\"\r\n2023-10-18 07:00:41,083 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uac_bypass_fodhelper\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"cape_extracted_content\"\r\n2023-10-18 07:00:41,083 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cape_extracted_content\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"cape_extracted_config\"\r\n2023-10-18 07:00:41,084 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cape_extracted_config\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"cape_extracted_content\"\r\n2023-10-18 07:00:41,084 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cape_extracted_content\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"carberp_mutex\"\r\n2023-10-18 07:00:41,084 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"carberp_mutex\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"clears_logs\"\r\n2023-10-18 07:00:41,084 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"clears_logs\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"cmdline_obfuscation\"\r\n2023-10-18 07:00:41,085 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_obfuscation\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"cmdline_switches\"\r\n2023-10-18 07:00:41,085 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_switches\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"cmdline_terminate\"\r\n2023-10-18 07:00:41,086 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_terminate\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"cmdline_forfiles_wildcard\"\r\n2023-10-18 07:00:41,086 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_forfiles_wildcard\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"cmdline_http_link\"\r\n2023-10-18 07:00:41,086 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_http_link\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"cmdline_long_string\"\r\n2023-10-18 07:00:41,086 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_long_string\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"cmdline_reversed_http_link\"\r\n2023-10-18 07:00:41,087 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_reversed_http_link\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"long_commandline\"\r\n2023-10-18 07:00:41,087 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"long_commandline\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"powershell_renamed_commandline\"\r\n2023-10-18 07:00:41,087 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_renamed_commandline\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"system_account_discovery_cmd\"\r\n2023-10-18 07:00:41,087 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_account_discovery_cmd\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"system_info_discovery_cmd\"\r\n2023-10-18 07:00:41,087 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_info_discovery_cmd\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"system_info_discovery_pwsh\"\r\n2023-10-18 07:00:41,088 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_info_discovery_pwsh\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"system_network_discovery_cmd\"\r\n2023-10-18 07:00:41,088 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_network_discovery_cmd\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"system_network_discovery_pwsh\"\r\n2023-10-18 07:00:41,088 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_network_discovery_pwsh\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"system_user_discovery_cmd\"\r\n2023-10-18 07:00:41,088 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_user_discovery_cmd\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"copies_self\"\r\n2023-10-18 07:00:41,089 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"copies_self\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"enables_wdigest\"\r\n2023-10-18 07:00:41,089 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"enables_wdigest\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"file_credential_store_access\"\r\n2023-10-18 07:00:41,089 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"file_credential_store_access\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"file_credential_store_write\"\r\n2023-10-18 07:00:41,090 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"file_credential_store_write\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"registry_credential_dumping\"\r\n2023-10-18 07:00:41,091 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"registry_credential_dumping\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"registry_credential_store_access\"\r\n2023-10-18 07:00:41,091 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"registry_credential_store_access\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"registry_lsa_secrets_access\"\r\n2023-10-18 07:00:41,091 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"registry_lsa_secrets_access\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"cryptomining_stratum_command\"\r\n2023-10-18 07:00:41,092 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cryptomining_stratum_command\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"cryptopool_domains\"\r\n2023-10-18 07:00:41,092 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cryptopool_domains\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"cypherit_mutexes\"\r\n2023-10-18 07:00:41,092 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cypherit_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"darkcomet_regkeys\"\r\n2023-10-18 07:00:41,093 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"darkcomet_regkeys\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"datop_loader\"\r\n2023-10-18 07:00:41,094 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"datop_loader\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"deepfreeze_mutex\"\r\n2023-10-18 07:00:41,094 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"deepfreeze_mutex\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"deletes_executed_files\"\r\n2023-10-18 07:00:41,095 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"deletes_executed_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_app_launch\"\r\n2023-10-18 07:00:41,095 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_app_launch\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_auto_app_termination\"\r\n2023-10-18 07:00:41,095 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_auto_app_termination\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_appv_virtualization\"\r\n2023-10-18 07:00:41,096 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_appv_virtualization\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_backups\"\r\n2023-10-18 07:00:41,096 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_backups\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_browser_warn\"\r\n2023-10-18 07:00:41,098 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_browser_warn\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_context_menus\"\r\n2023-10-18 07:00:41,100 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_context_menus\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_cpl_disable\"\r\n2023-10-18 07:00:41,101 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_cpl_disable\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_crashdumps\"\r\n2023-10-18 07:00:41,102 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_crashdumps\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_event_logging\"\r\n2023-10-18 07:00:41,102 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_event_logging\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_folder_options\"\r\n2023-10-18 07:00:41,103 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_folder_options\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_notificationcenter\"\r\n2023-10-18 07:00:41,103 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_notificationcenter\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_power_options\"\r\n2023-10-18 07:00:41,104 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_power_options\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_restore_default_state\"\r\n2023-10-18 07:00:41,105 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_restore_default_state\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_run_command\"\r\n2023-10-18 07:00:41,106 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_run_command\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_security\"\r\n2023-10-18 07:00:41,106 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_security\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_smartscreen\"\r\n2023-10-18 07:00:41,106 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_smartscreen\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_startmenu_search\"\r\n2023-10-18 07:00:41,107 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_startmenu_search\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_system_restore\"\r\n2023-10-18 07:00:41,108 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_system_restore\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_uac\"\r\n2023-10-18 07:00:41,109 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_uac\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_wer\"\r\n2023-10-18 07:00:41,110 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_wer\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_windows_defender\"\r\n2023-10-18 07:00:41,110 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_windows_defender\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_windows_defender_logging\"\r\n2023-10-18 07:00:41,111 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_windows_defender_logging\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"removes_windows_defender_contextmenu\"\r\n2023-10-18 07:00:41,112 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_windows_defender_contextmenu\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"windows_defender_powershell\"\r\n2023-10-18 07:00:41,112 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"windows_defender_powershell\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_windows_file_protection\"\r\n2023-10-18 07:00:41,113 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_windows_file_protection\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_windowsupdate\"\r\n2023-10-18 07:00:41,113 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_windowsupdate\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_winfirewall\"\r\n2023-10-18 07:00:41,114 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_winfirewall\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"andromut_mutexes\"\r\n2023-10-18 07:00:41,115 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"andromut_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"downloader_cabby\"\r\n2023-10-18 07:00:41,115 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"downloader_cabby\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"phorpiex_mutexes\"\r\n2023-10-18 07:00:41,115 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"phorpiex_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"protonbot_mutexes\"\r\n2023-10-18 07:00:41,116 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"protonbot_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"driver_filtermanager\"\r\n2023-10-18 07:00:41,116 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"driver_filtermanager\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"dropper\"\r\n2023-10-18 07:00:41,117 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dropper\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"excel4_macro_urls\"\r\n2023-10-18 07:00:41,117 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"excel4_macro_urls\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"spooler_access\"\r\n2023-10-18 07:00:41,117 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"spooler_access\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"spooler_svc_start\"\r\n2023-10-18 07:00:41,118 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"spooler_svc_start\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"family_proxyback\"\r\n2023-10-18 07:00:41,118 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"family_proxyback\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"mapped_drives_uac\"\r\n2023-10-18 07:00:41,118 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"mapped_drives_uac\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"hides_recycle_bin_icon\"\r\n2023-10-18 07:00:41,119 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"hides_recycle_bin_icon\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"apocalypse_stealer_file_behavior\"\r\n2023-10-18 07:00:41,120 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"apocalypse_stealer_file_behavior\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"arkei_files\"\r\n2023-10-18 07:00:41,121 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"arkei_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"azorult_mutexes\"\r\n2023-10-18 07:00:41,121 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"azorult_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"infostealer_bitcoin\"\r\n2023-10-18 07:00:41,123 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_bitcoin\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"infostealer_cookies\"\r\n2023-10-18 07:00:41,128 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_cookies\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"cryptbot_files\"\r\n2023-10-18 07:00:41,130 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cryptbot_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"echelon_files\"\r\n2023-10-18 07:00:41,131 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"echelon_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"infostealer_ftp\"\r\n2023-10-18 07:00:41,132 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_ftp\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"infostealer_im\"\r\n2023-10-18 07:00:41,139 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_im\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"infostealer_mail\"\r\n2023-10-18 07:00:41,143 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_mail\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"masslogger_files\"\r\n2023-10-18 07:00:41,147 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"masslogger_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"poullight_files\"\r\n2023-10-18 07:00:41,147 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"poullight_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"purplewave_mutexes\"\r\n2023-10-18 07:00:41,151 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"purplewave_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"quilclipper_mutexes\"\r\n2023-10-18 07:00:41,151 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"quilclipper_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"qulab_files\"\r\n2023-10-18 07:00:41,152 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"qulab_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"qulab_mutexes\"\r\n2023-10-18 07:00:41,153 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"qulab_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"ie_martian_children\"\r\n2023-10-18 07:00:41,153 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ie_martian_children\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"office_martian_children\"\r\n2023-10-18 07:00:41,154 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_martian_children\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"mimics_extension\"\r\n2023-10-18 07:00:41,154 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"mimics_extension\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"mimics_icon\"\r\n2023-10-18 07:00:41,154 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"mimics_icon\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"masquerade_process_name\"\r\n2023-10-18 07:00:41,154 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"masquerade_process_name\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"mimikatz_modules\"\r\n2023-10-18 07:00:41,159 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"mimikatz_modules\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"dotnet_clr_usagelog_regkeys\"\r\n2023-10-18 07:00:41,159 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dotnet_clr_usagelog_regkeys\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"modify_hostfile\"\r\n2023-10-18 07:00:41,160 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_hostfile\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"modify_oem_information\"\r\n2023-10-18 07:00:41,160 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_oem_information\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"modify_security_center_warnings\"\r\n2023-10-18 07:00:41,161 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_security_center_warnings\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"modify_uac_prompt\"\r\n2023-10-18 07:00:41,162 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_uac_prompt\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_ip_exe\"\r\n2023-10-18 07:00:41,163 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_ip_exe\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_dga\"\r\n2023-10-18 07:00:41,163 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dga\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_dga_fraunhofer\"\r\n2023-10-18 07:00:41,164 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dga_fraunhofer\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_dns_blockchain\"\r\n2023-10-18 07:00:41,164 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_blockchain\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_dns_opennic\"\r\n2023-10-18 07:00:41,164 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_opennic\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_dns_paste_site\"\r\n2023-10-18 07:00:41,164 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_paste_site\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_dns_reverse_proxy\"\r\n2023-10-18 07:00:41,165 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_reverse_proxy\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_dns_temp_file_storage\"\r\n2023-10-18 07:00:41,165 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_temp_file_storage\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_dns_temp_urldns\"\r\n2023-10-18 07:00:41,165 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_temp_urldns\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_dns_url_shortener\"\r\n2023-10-18 07:00:41,165 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_url_shortener\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_dns_doh_tls\"\r\n2023-10-18 07:00:41,166 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_doh_tls\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"suspicious_tld\"\r\n2023-10-18 07:00:41,166 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_tld\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_dyndns\"\r\n2023-10-18 07:00:41,166 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dyndns\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_icmp\"\r\n2023-10-18 07:00:41,166 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_icmp\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_irc\"\r\n2023-10-18 07:00:41,167 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_irc\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_open_proxy\"\r\n2023-10-18 07:00:41,167 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_open_proxy\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_smtp\"\r\n2023-10-18 07:00:41,167 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_smtp\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_tor_service\"\r\n2023-10-18 07:00:41,167 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_tor_service\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_torgateway\"\r\n2023-10-18 07:00:41,168 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_torgateway\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"office_code_page\"\r\n2023-10-18 07:00:41,168 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_code_page\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"office_addinloading\"\r\n2023-10-18 07:00:41,168 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_addinloading\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"office_perfkey\"\r\n2023-10-18 07:00:41,169 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_perfkey\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"office_macro\"\r\n2023-10-18 07:00:41,169 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"changes_trust_center_settings\"\r\n2023-10-18 07:00:41,169 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"changes_trust_center_settings\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_vba_trust_access\"\r\n2023-10-18 07:00:41,170 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_vba_trust_access\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"office_macro_autoexecution\"\r\n2023-10-18 07:00:41,170 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro_autoexecution\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"office_macro_ioc\"\r\n2023-10-18 07:00:41,171 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro_ioc\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"office_macro_malicious_prediction\"\r\n2023-10-18 07:00:41,171 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro_malicious_prediction\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"office_macro_suspicious\"\r\n2023-10-18 07:00:41,171 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro_suspicious\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"rtf_aslr_bypass\"\r\n2023-10-18 07:00:41,171 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_aslr_bypass\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"rtf_anomaly_characterset\"\r\n2023-10-18 07:00:41,172 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_anomaly_characterset\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"rtf_anomaly_version\"\r\n2023-10-18 07:00:41,172 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_anomaly_version\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"rtf_embedded_content\"\r\n2023-10-18 07:00:41,172 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_embedded_content\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"rtf_embedded_office_file\"\r\n2023-10-18 07:00:41,172 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_embedded_office_file\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"rtf_exploit_static\"\r\n2023-10-18 07:00:41,172 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_exploit_static\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"office_security\"\r\n2023-10-18 07:00:41,173 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_security\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"office_anomalous_feature\"\r\n2023-10-18 07:00:41,173 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_anomalous_feature\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"office_dde_command\"\r\n2023-10-18 07:00:41,174 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_dde_command\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"origin_langid\"\r\n2023-10-18 07:00:41,174 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"origin_langid\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"origin_resource_langid\"\r\n2023-10-18 07:00:41,174 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"origin_resource_langid\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"overlay\"\r\n2023-10-18 07:00:41,174 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"overlay\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"packer_unknown_pe_section_name\"\r\n2023-10-18 07:00:41,175 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_unknown_pe_section_name\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"packer_armadillo_mutex\"\r\n2023-10-18 07:00:41,175 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_armadillo_mutex\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"packer_armadillo_regkey\"\r\n2023-10-18 07:00:41,175 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_armadillo_regkey\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"packer_aspack\"\r\n2023-10-18 07:00:41,176 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_aspack\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"packer_aspirecrypt\"\r\n2023-10-18 07:00:41,176 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_aspirecrypt\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"packer_bedsprotector\"\r\n2023-10-18 07:00:41,176 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_bedsprotector\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"packer_confuser\"\r\n2023-10-18 07:00:41,176 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_confuser\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"packer_enigma\"\r\n2023-10-18 07:00:41,177 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_enigma\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"packer_entropy\"\r\n2023-10-18 07:00:41,177 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_entropy\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"packer_mpress\"\r\n2023-10-18 07:00:41,177 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_mpress\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"packer_nate\"\r\n2023-10-18 07:00:41,177 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_nate\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"packer_nspack\"\r\n2023-10-18 07:00:41,178 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_nspack\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"packer_smartassembly\"\r\n2023-10-18 07:00:41,178 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_smartassembly\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"packer_spices\"\r\n2023-10-18 07:00:41,178 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_spices\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"packer_themida\"\r\n2023-10-18 07:00:41,178 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_themida\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"packer_titan\"\r\n2023-10-18 07:00:41,178 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_titan\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"packer_upx\"\r\n2023-10-18 07:00:41,179 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_upx\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"packer_vmprotect\"\r\n2023-10-18 07:00:41,179 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_vmprotect\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"packer_yoda\"\r\n2023-10-18 07:00:41,179 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_yoda\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"persistence_ads\"\r\n2023-10-18 07:00:41,179 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_ads\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"persistence_safeboot\"\r\n2023-10-18 07:00:41,180 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_safeboot\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"persistence_ifeo\"\r\n2023-10-18 07:00:41,180 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_ifeo\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"persistence_slient_process_exit\"\r\n2023-10-18 07:00:41,181 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_slient_process_exit\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"persistence_rdp_registry\"\r\n2023-10-18 07:00:41,181 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_rdp_registry\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"persistence_rdp_shadowing\"\r\n2023-10-18 07:00:41,182 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_rdp_shadowing\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"persistence_service\"\r\n2023-10-18 07:00:41,182 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_service\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"persistence_shim_database\"\r\n2023-10-18 07:00:41,183 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_shim_database\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"powerpool_mutexes\"\r\n2023-10-18 07:00:41,184 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powerpool_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"powershell_scriptblock_logging\"\r\n2023-10-18 07:00:41,184 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_scriptblock_logging\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"powershell_command_suspicious\"\r\n2023-10-18 07:00:41,184 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_command_suspicious\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"powershell_renamed\"\r\n2023-10-18 07:00:41,185 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_renamed\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"powershell_reversed\"\r\n2023-10-18 07:00:41,185 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_reversed\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"powershell_variable_obfuscation\"\r\n2023-10-18 07:00:41,185 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_variable_obfuscation\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"punch_plus_plus_pcres\"\r\n2023-10-18 07:00:41,185 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"punch_plus_plus_pcres\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"prevents_safeboot\"\r\n2023-10-18 07:00:41,185 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"prevents_safeboot\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"cmdline_process_discovery\"\r\n2023-10-18 07:00:41,186 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_process_discovery\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"procmem_yara\"\r\n2023-10-18 07:00:41,186 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"procmem_yara\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"cryptomix_mutexes\"\r\n2023-10-18 07:00:41,186 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cryptomix_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"dharma_mutexes\"\r\n2023-10-18 07:00:41,187 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dharma_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"ransomware_extensions\"\r\n2023-10-18 07:00:41,187 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_extensions\"\r\n/opt/CAPEv2/utils/../lib/cuckoo/common/abstracts.py:991: FutureWarning: Possible nested set at position 5\r\n  exp = re.compile(pattern, re.IGNORECASE)\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"ransomware_files\"\r\n2023-10-18 07:00:41,196 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"fonix_mutexes\"\r\n2023-10-18 07:00:41,208 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"fonix_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"gandcrab_mutexes\"\r\n2023-10-18 07:00:41,209 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"gandcrab_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"germanwiper_mutexes\"\r\n2023-10-18 07:00:41,209 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"germanwiper_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"medusalocker_mutexes\"\r\n2023-10-18 07:00:41,210 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"medusalocker_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"medusalocker_regkeys\"\r\n2023-10-18 07:00:41,210 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"medusalocker_regkeys\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"nemty_mutexes\"\r\n2023-10-18 07:00:41,211 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"nemty_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"nemty_regkeys\"\r\n2023-10-18 07:00:41,212 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"nemty_regkeys\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"pysa_mutexes\"\r\n2023-10-18 07:00:41,212 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"pysa_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"ransomware_radamant\"\r\n2023-10-18 07:00:41,212 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_radamant\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"ransomware_recyclebin\"\r\n2023-10-18 07:00:41,213 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_recyclebin\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"revil_mutexes\"\r\n2023-10-18 07:00:41,213 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"revil_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"ransomware_revil_regkey\"\r\n2023-10-18 07:00:41,216 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_revil_regkey\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"satan_mutexes\"\r\n2023-10-18 07:00:41,216 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"satan_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"snake_ransom_mutexes\"\r\n2023-10-18 07:00:41,217 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"snake_ransom_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"stop_ransom_mutexes\"\r\n2023-10-18 07:00:41,217 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"stop_ransom_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"stop_ransomware_cmd\"\r\n2023-10-18 07:00:41,218 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"stop_ransomware_cmd\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"rat_beebus_mutexes\"\r\n2023-10-18 07:00:41,219 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_beebus_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"blacknet_mutexes\"\r\n2023-10-18 07:00:41,219 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"blacknet_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"blackrat_mutexes\"\r\n2023-10-18 07:00:41,220 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"blackrat_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"crat_mutexes\"\r\n2023-10-18 07:00:41,220 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"crat_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"dcrat_files\"\r\n2023-10-18 07:00:41,221 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dcrat_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"dcrat_mutexes\"\r\n2023-10-18 07:00:41,222 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dcrat_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"rat_fynloski_mutexes\"\r\n2023-10-18 07:00:41,222 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_fynloski_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"karagany_files\"\r\n2023-10-18 07:00:41,222 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"karagany_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"limerat_mutexes\"\r\n2023-10-18 07:00:41,223 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"limerat_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"limerat_regkeys\"\r\n2023-10-18 07:00:41,223 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"limerat_regkeys\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"lodarat_file_behavior\"\r\n2023-10-18 07:00:41,224 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"lodarat_file_behavior\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"modirat_behavior\"\r\n2023-10-18 07:00:41,225 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modirat_behavior\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"njrat_regkeys\"\r\n2023-10-18 07:00:41,227 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"njrat_regkeys\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"obliquerat_files\"\r\n2023-10-18 07:00:41,227 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"obliquerat_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"obliquerat_mutexes\"\r\n2023-10-18 07:00:41,228 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"obliquerat_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"parallax_mutexes\"\r\n2023-10-18 07:00:41,228 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"parallax_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"rat_pcclient\"\r\n2023-10-18 07:00:41,229 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_pcclient\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"rat_plugx_mutexes\"\r\n2023-10-18 07:00:41,230 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_plugx_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"rat_poisonivy_mutexes\"\r\n2023-10-18 07:00:41,231 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_poisonivy_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"rat_quasar_mutexes\"\r\n2023-10-18 07:00:41,231 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_quasar_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"ratsnif_mutexes\"\r\n2023-10-18 07:00:41,231 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ratsnif_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"rat_senna_mutexes\"\r\n2023-10-18 07:00:41,231 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_senna_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"rat_spynet\"\r\n2023-10-18 07:00:41,232 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_spynet\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"venomrat_mutexes\"\r\n2023-10-18 07:00:41,233 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"venomrat_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"warzonerat_files\"\r\n2023-10-18 07:00:41,233 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"warzonerat_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"warzonerat_regkeys\"\r\n2023-10-18 07:00:41,234 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"warzonerat_regkeys\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"xpertrat_files\"\r\n2023-10-18 07:00:41,235 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"xpertrat_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"xpertrat_mutexes\"\r\n2023-10-18 07:00:41,235 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"xpertrat_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"rat_xtreme_mutexes\"\r\n2023-10-18 07:00:41,236 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_xtreme_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"recon_checkip\"\r\n2023-10-18 07:00:41,236 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"recon_checkip\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"recon_fingerprint\"\r\n2023-10-18 07:00:41,237 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"recon_fingerprint\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"remcos_files\"\r\n2023-10-18 07:00:41,238 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"remcos_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"remcos_mutexes\"\r\n2023-10-18 07:00:41,239 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"remcos_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"remcos_regkeys\"\r\n2023-10-18 07:00:41,240 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"remcos_regkeys\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"rdptcp_key\"\r\n2023-10-18 07:00:41,240 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rdptcp_key\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"uses_rdp_clip\"\r\n2023-10-18 07:00:41,241 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_rdp_clip\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"uses_remote_desktop_session\"\r\n2023-10-18 07:00:41,241 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_remote_desktop_session\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"removes_networking_icon\"\r\n2023-10-18 07:00:41,242 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_networking_icon\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"removes_pinned_programs\"\r\n2023-10-18 07:00:41,242 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_pinned_programs\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"removes_security_maintenance_icon\"\r\n2023-10-18 07:00:41,243 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_security_maintenance_icon\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"removes_startmenu_defaults\"\r\n2023-10-18 07:00:41,243 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_startmenu_defaults\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"removes_username_startmenu\"\r\n2023-10-18 07:00:41,244 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_username_startmenu\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"spicyhotpot_behavior\"\r\n2023-10-18 07:00:41,245 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"spicyhotpot_behavior\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"sniffer_winpcap\"\r\n2023-10-18 07:00:41,246 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"sniffer_winpcap\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"spreading_autoruninf\"\r\n2023-10-18 07:00:41,246 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"spreading_autoruninf\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"static_authenticode\"\r\n2023-10-18 07:00:41,247 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_authenticode\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"invalid_authenticode_signature\"\r\n2023-10-18 07:00:41,247 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"invalid_authenticode_signature\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"static_dotnet_anomaly\"\r\n2023-10-18 07:00:41,247 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_dotnet_anomaly\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"static_java\"\r\n2023-10-18 07:00:41,247 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_java\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"static_pdf\"\r\n2023-10-18 07:00:41,248 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_pdf\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"static_pe_anomaly\"\r\n2023-10-18 07:00:41,248 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_pe_anomaly\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"pe_compile_timestomping\"\r\n2023-10-18 07:00:41,248 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"pe_compile_timestomping\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"static_pe_pdbpath\"\r\n2023-10-18 07:00:41,248 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_pe_pdbpath\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"static_rat_config\"\r\n2023-10-18 07:00:41,249 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_rat_config\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"static_versioninfo_anomaly\"\r\n2023-10-18 07:00:41,249 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_versioninfo_anomaly\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"stealth_hidden_extension\"\r\n2023-10-18 07:00:41,249 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_hidden_extension\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"stealth_hiddenreg\"\r\n2023-10-18 07:00:41,250 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_hiddenreg\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"stealth_hide_notifications\"\r\n2023-10-18 07:00:41,251 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_hide_notifications\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"stealth_webhistory\"\r\n2023-10-18 07:00:41,251 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_webhistory\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"suricata_alert\"\r\n2023-10-18 07:00:41,252 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suricata_alert\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"sysinternals_psexec\"\r\n2023-10-18 07:00:41,252 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"sysinternals_psexec\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"sysinternals_tools\"\r\n2023-10-18 07:00:41,253 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"sysinternals_tools\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"tampers_etw\"\r\n2023-10-18 07:00:41,253 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"tampers_etw\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"lsa_tampering\"\r\n2023-10-18 07:00:41,254 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"lsa_tampering\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"tampers_powershell_logging\"\r\n2023-10-18 07:00:41,255 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"tampers_powershell_logging\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"targeted_flame\"\r\n2023-10-18 07:00:41,255 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"targeted_flame\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"territorial_disputes_sigs\"\r\n2023-10-18 07:00:41,256 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"territorial_disputes_sigs\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"trickbot_mutex\"\r\n2023-10-18 07:00:41,263 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"trickbot_mutex\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"fleercivet_mutex\"\r\n2023-10-18 07:00:41,263 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"fleercivet_mutex\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"lokibot_mutexes\"\r\n2023-10-18 07:00:41,263 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"lokibot_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"ursnif_behavior\"\r\n2023-10-18 07:00:41,265 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ursnif_behavior\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"upatre_files\"\r\n2023-10-18 07:00:41,270 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"upatre_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"upatre_files\"\r\n2023-10-18 07:00:41,270 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"upatre_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"uses_adfind\"\r\n2023-10-18 07:00:41,270 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_adfind\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"uses_ms_protocol\"\r\n2023-10-18 07:00:41,270 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_ms_protocol\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"neshta_mutexes\"\r\n2023-10-18 07:00:41,271 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"neshta_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"renamer_mutexes\"\r\n2023-10-18 07:00:41,271 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"renamer_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"volatility_devicetree_1\"\r\n2023-10-18 07:00:41,271 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_devicetree_1\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"volatility_handles_1\"\r\n2023-10-18 07:00:41,272 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_handles_1\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"volatility_ldrmodules_1\"\r\n2023-10-18 07:00:41,272 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_ldrmodules_1\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"volatility_ldrmodules_2\"\r\n2023-10-18 07:00:41,272 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_ldrmodules_2\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"volatility_malfind_1\"\r\n2023-10-18 07:00:41,272 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_malfind_1\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"volatility_malfind_2\"\r\n2023-10-18 07:00:41,273 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_malfind_2\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"volatility_modscan_1\"\r\n2023-10-18 07:00:41,273 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_modscan_1\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"volatility_svcscan_1\"\r\n2023-10-18 07:00:41,273 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_svcscan_1\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"volatility_svcscan_2\"\r\n2023-10-18 07:00:41,273 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_svcscan_2\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"volatility_svcscan_3\"\r\n2023-10-18 07:00:41,273 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_svcscan_3\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"owa_web_shell_files\"\r\n2023-10-18 07:00:41,274 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"owa_web_shell_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"web_shell_files\"\r\n2023-10-18 07:00:41,274 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"web_shell_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"web_shell_processes\"\r\n2023-10-18 07:00:41,275 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"web_shell_processes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"whois_create\"\r\n2023-10-18 07:00:41,275 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"whois_create\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"dotnet_csc_build\"\r\n2023-10-18 07:00:41,275 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dotnet_csc_build\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"multiple_explorer_instances\"\r\n2023-10-18 07:00:41,275 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"multiple_explorer_instances\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"script_tool_executed\"\r\n2023-10-18 07:00:41,276 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"script_tool_executed\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"suspicious_certutil_use\"\r\n2023-10-18 07:00:41,276 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_certutil_use\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"suspicious_command_tools\"\r\n2023-10-18 07:00:41,276 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_command_tools\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"suspicious_mpcmdrun_use\"\r\n2023-10-18 07:00:41,276 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_mpcmdrun_use\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"suspicious_ping_use\"\r\n2023-10-18 07:00:41,277 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_ping_use\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"uses_powershell_copyitem\"\r\n2023-10-18 07:00:41,277 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_powershell_copyitem\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"uses_windows_utilities\"\r\n2023-10-18 07:00:41,277 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"uses_windows_utilities_appcmd\"\r\n2023-10-18 07:00:41,278 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_appcmd\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"uses_windows_utilities_csvde_ldifde\"\r\n2023-10-18 07:00:41,278 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_csvde_ldifde\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"uses_windows_utilities_cipher\"\r\n2023-10-18 07:00:41,278 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_cipher\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"uses_windows_utilities_clickonce\"\r\n2023-10-18 07:00:41,278 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_clickonce\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"uses_windows_utilities_dsquery\"\r\n2023-10-18 07:00:41,279 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_dsquery\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"uses_windows_utilities_esentutl\"\r\n2023-10-18 07:00:41,279 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_esentutl\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"uses_windows_utilities_finger\"\r\n2023-10-18 07:00:41,279 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_finger\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"uses_windows_utilities_mode\"\r\n2023-10-18 07:00:41,279 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_mode\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"uses_windows_utilities_ntdsutil\"\r\n2023-10-18 07:00:41,280 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_ntdsutil\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"uses_windows_utilities_nltest\"\r\n2023-10-18 07:00:41,280 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_nltest\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"uses_windows_utilities_to_create_scheduled_task\"\r\n2023-10-18 07:00:41,280 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_to_create_scheduled_task\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"uses_windows_utilities_xcopy\"\r\n2023-10-18 07:00:41,280 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_xcopy\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"wmic_command_suspicious\"\r\n2023-10-18 07:00:41,280 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"wmic_command_suspicious\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"scrcons_wmi_script_consumer\"\r\n2023-10-18 07:00:41,281 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"scrcons_wmi_script_consumer\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"allaple_mutexes\"\r\n2023-10-18 07:00:41,281 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Running signature \"allaple_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Analysis matched signature \"antidebug_setunhandledexceptionfilter\"\r\n2023-10-18 07:00:41,281 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"antidebug_setunhandledexceptionfilter\"\r\nDEBUG:lib.cuckoo.core.plugins:Analysis matched signature \"exec_crash\"\r\n2023-10-18 07:00:41,282 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"exec_crash\"\r\nDEBUG:lib.cuckoo.core.plugins:Executing reporting module \"BinGraph\"\r\n2023-10-18 07:00:41,518 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"BinGraph\"\r\nDEBUG:lib.cuckoo.core.plugins:Executing reporting module \"MITRE_TTPS\"\r\n2023-10-18 07:00:41,518 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"MITRE_TTPS\"\r\nDEBUG:Base.Attck:Calling MITRE Enterprise ATT&CK Framework\r\n2023-10-18 07:00:42,176 [Task 260] [Base.Attck] DEBUG: Calling MITRE Enterprise ATT&CK Framework\r\nDEBUG:lib.cuckoo.core.plugins:Executing reporting module \"PCAP2CERT\"\r\n2023-10-18 07:00:58,368 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"PCAP2CERT\"\r\nDEBUG:lib.cuckoo.core.plugins:Executing reporting module \"ReportHTMLSummary\"\r\n2023-10-18 07:00:58,369 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"ReportHTMLSummary\"\r\nWARNING:lib.cuckoo.core.plugins:The reporting module \"ReportHTMLSummary\" returned the following error: Failed to generate summary HTML report: 'dict object' has no attribute 'CAPE'\r\n2023-10-18 07:00:58,402 [Task 260] [lib.cuckoo.core.plugins] WARNING: The reporting module \"ReportHTMLSummary\" returned the following error: Failed to generate summary HTML report: 'dict object' has no attribute 'CAPE'\r\nDEBUG:lib.cuckoo.core.plugins:Executing reporting module \"JsonDump\"\r\n2023-10-18 07:00:58,402 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"JsonDump\"\r\nDEBUG:lib.cuckoo.core.plugins:Executing reporting module \"ReportPDF\"\r\n2023-10-18 07:00:58,413 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"ReportPDF\"\r\nWARNING:lib.cuckoo.core.plugins:The reporting module \"ReportPDF\" returned the following error: Unable to open summary HTML report to convert to PDF: Ensure reporthtmlsummary is enabled in reporting.conf\r\n2023-10-18 07:00:58,414 [Task 260] [lib.cuckoo.core.plugins] WARNING: The reporting module \"ReportPDF\" returned the following error: Unable to open summary HTML report to convert to PDF: Ensure reporthtmlsummary is enabled in reporting.conf\r\nDEBUG:lib.cuckoo.core.plugins:Executing reporting module \"MongoDB\"\r\n2023-10-18 07:00:58,414 [Task 260] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"MongoDB\"\r\nDEBUG:modules.reporting.mongodb:Deleted previous MongoDB data for Task 260\r\n2023-10-18 07:00:58,464 [Task 260] [modules.reporting.mongodb] DEBUG: Deleted previous MongoDB data for Task 260\r\nDEBUG:root:Finished processing task\r\n\r\nI see error related to CAPE module but I am not sure if it's related to \"File Details\" information.\r\nCouldn't it be related with installed \"djangoframework\"? Some version issues? Thanks in advance.\r\n\nComment: djangoframework is just rest api, is not related i would say your permission error is more related here, try to do this\r\n\r\n`sudo chown cape:cape /opt/CAPEv2/data/trid -R` and then rerun analysis as you just did and reload after that web report to see if fixed\nComment: Hmm.. nothing changes. I still get the same permission error:\r\n\r\n2023-10-18 07:28:35,035 [Task 260] [lib.cuckoo.common.integrations.parse_pdf] DEBUG: Starting to load PDF\r\nERROR:lib.cuckoo.core.plugins:Failed to run the processing module \"CAPE\": [Errno 13] Permission denied: '/opt/CAPEv2/data/trid/trid'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 243, in process\r\n    data = current.run()\r\n  File \"/opt/CAPEv2/utils/../modules/processing/CAPE.py\", line 352, in run\r\n    self.process_file(\r\n  File \"/opt/CAPEv2/utils/../modules/processing/CAPE.py\", line 192, in process_file\r\n    static_file_info(\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/file_extra_info.py\", line 232, in static_file_info\r\n    data_dictionary[\"trid\"] = trid_info(file_path)\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/file_extra_info.py\", line 289, in trid_info\r\n    output = subprocess.check_output(\r\n  File \"/usr/lib/python3.10/subprocess.py\", line 420, in check_output\r\n    return run(*popenargs, stdout=PIPE, timeout=timeout, check=True,\r\n  File \"/usr/lib/python3.10/subprocess.py\", line 501, in run\r\n    with Popen(*popenargs, **kwargs) as process:\r\n  File \"/usr/lib/python3.10/subprocess.py\", line 969, in __init__\r\n    self._execute_child(args, executable, preexec_fn, close_fds,\r\n  File \"/usr/lib/python3.10/subprocess.py\", line 1845, in _execute_child\r\n    raise child_exception_type(errno_num, err_msg, err_filename)\r\nPermissionError: [Errno 13] Permission denied: '/opt/CAPEv2/data/trid/trid'\r\n2023-10-18 07:28:50,875 [Task 260] [lib.cuckoo.core.plugins] ERROR: Failed to run the processing module \"CAPE\": [Errno 13] Permission denied: '/opt/CAPEv2/data/trid/trid'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 243, in process\r\n    data = current.run()\r\n  File \"/opt/CAPEv2/utils/../modules/processing/CAPE.py\", line 352, in run\r\n    self.process_file(\r\n  File \"/opt/CAPEv2/utils/../modules/processing/CAPE.py\", line 192, in process_file\r\n    static_file_info(\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/file_extra_info.py\", line 232, in static_file_info\r\n    data_dictionary[\"trid\"] = trid_info(file_path)\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/file_extra_info.py\", line 289, in trid_info\r\n    output = subprocess.check_output(\r\n  File \"/usr/lib/python3.10/subprocess.py\", line 420, in check_output\r\n    return run(*popenargs, stdout=PIPE, timeout=timeout, check=True,\r\n  File \"/usr/lib/python3.10/subprocess.py\", line 501, in run\r\n    with Popen(*popenargs, **kwargs) as process:\r\n  File \"/usr/lib/python3.10/subprocess.py\", line 969, in __init__\r\n    self._execute_child(args, executable, preexec_fn, close_fds,\r\n  File \"/usr/lib/python3.10/subprocess.py\", line 1845, in _execute_child\r\n    raise child_exception_type(errno_num, err_msg, err_filename)\r\nPermissionError: [Errno 13] Permission denied: '/opt/CAPEv2/data/trid/trid'\r\n\r\nJust for my own understanding: is CAPE module in charge of \"File Details\" box and \"Payloads\" page?\r\nAnd what is interesting, I haven't changed any permissions since I installed CAPE. Everything was working flawlessly.\nComment: Update:\r\nDid chmod +x * for files in \"triad\" directory.\r\nNow \"File Details\" shows. AND - \"Payloads\" and \"Compare this analysis to...\" also shows.\r\n\r\nUnfortunately the PDF score is still 1.9, but previously it was 5.7. I understand that those are community signatures for malscore, but still I would like to have some consistency.\r\n\r\nEDIT:\r\nSomething is not working with PDF analysis. I checked previous reports on analysis and I could get for example JSON with /JavaScript and /OpenAction entries which I am not mistaken I would get from pdfid or peepdf.\nComment: well about score you need to see matches where it was highest and now, but that is crap feature.\r\n\r\nabout pdf the same, idk you need to see what changed on your side\nComment: >> Just for my own understanding: is CAPE module in charge of \"File Details\" box and \"Payloads\" page?\r\n\r\nyes \r\n\r\n>>And what is interesting, I haven't changed any permissions since I installed CAPE. Everything was working flawlessly.\r\n\r\ndo you have put/run trid update maybe idk, is your system you must know what accessed trid, i don't use trid, im using detect it easy\nComment: Seems like the issue is solved. Basically changed perms on trid and updated FLARE capa rules.\r\nNow I have all the views and PDF parsing is also working since I checked JSON export and I could search for \"/JavaScript\" and other related keywords.\r\nI am sorry if my questions were trivial and have a great day! :)\nComment: np, 3rd part software dependencies are always the most problematic as we don't have control over them\nComment: Sorry to bother. I noticed that the same issue persists. When I use command line in server and run `sudo -u cape poetry run python utils/process.py -r 27 -d` I get File Details view, Payload pane etc. I also added virustotal module and everything works just fine.\r\nBut, when I submit the same sample from web interface results are different. \r\nThis is analysis log when ran from web interface:\r\n\r\n2023-10-19 06:48:30,374 [root] INFO: Date set to: 20231019T11:51:05, timeout set to: 200\r\n2023-10-19 11:51:05,031 [root] DEBUG: Starting analyzer from: C:\\tmpz162qo78\r\n2023-10-19 11:51:05,031 [root] DEBUG: Storing results at: C:\\mUVXgKYC\r\n2023-10-19 11:51:05,031 [root] DEBUG: Pipe server name: \\\\.\\PIPE\\DzVUmO\r\n2023-10-19 11:51:05,031 [root] DEBUG: Python path: C:\\Users\\win7\\AppData\\Local\\Programs\\Python\\Python36-32\r\n2023-10-19 11:51:05,031 [root] INFO: Analysis package \"exe\" has been specified\r\n2023-10-19 11:51:05,031 [root] DEBUG: Importing analysis package \"exe\"...\r\n2023-10-19 11:51:05,046 [root] DEBUG: Initializing analysis package \"exe\"...\r\n2023-10-19 11:51:05,046 [root] DEBUG: New location of moved file: C:\\Users\\win7\\AppData\\Local\\Temp\\malicious_file_blad.exe\r\n2023-10-19 11:51:05,046 [root] INFO: Analyzer: Package modules.packages.exe does not specify a DLL option\r\n2023-10-19 11:51:05,046 [root] INFO: Analyzer: Package modules.packages.exe does not specify a DLL_64 option\r\n2023-10-19 11:51:05,046 [root] INFO: Analyzer: Package modules.packages.exe does not specify a loader option\r\n2023-10-19 11:51:05,046 [root] INFO: Analyzer: Package modules.packages.exe does not specify a loader_64 option\r\n2023-10-19 11:51:05,140 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.browser\"...\r\n2023-10-19 11:51:05,140 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.curtain\"...\r\n2023-10-19 11:51:05,140 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.digisig\"...\r\n2023-10-19 11:51:05,156 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.disguise\"...\r\n2023-10-19 11:51:05,171 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.during_script\"...\r\n2023-10-19 11:51:05,171 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.evtx\"...\r\n2023-10-19 11:51:05,171 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.filepickup\"...\r\n2023-10-19 11:51:05,187 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.human\"...\r\n2023-10-19 11:51:05,187 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.permissions\"...\r\n2023-10-19 11:51:05,187 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.pre_script\"...\r\n2023-10-19 11:51:05,187 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.procmon\"...\r\n2023-10-19 11:51:05,203 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.screenshots\"...\r\n2023-10-19 11:51:05,203 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageChops'\r\n2023-10-19 11:51:05,203 [lib.api.screenshot] ERROR: No module named 'PIL'\r\n2023-10-19 11:51:05,203 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.sysmon\"...\r\n2023-10-19 11:51:05,203 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.tlsdump\"...\r\n2023-10-19 11:51:05,218 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.usage\"...\r\n2023-10-19 11:51:05,218 [root] DEBUG: Initialized auxiliary module \"Browser\"\r\n2023-10-19 11:51:05,218 [root] DEBUG: Trying to start auxiliary module \"Browser\"...\r\n2023-10-19 11:51:05,218 [root] DEBUG: Started auxiliary module \"Browser\"\r\n2023-10-19 11:51:05,218 [root] DEBUG: Started auxiliary module Browser\r\n2023-10-19 11:51:05,218 [root] DEBUG: Initialized auxiliary module \"Curtain\"\r\n2023-10-19 11:51:05,218 [root] DEBUG: Trying to start auxiliary module \"Curtain\"...\r\n2023-10-19 11:51:05,218 [root] DEBUG: Started auxiliary module \"Curtain\"\r\n2023-10-19 11:51:05,218 [root] DEBUG: Started auxiliary module Curtain\r\n2023-10-19 11:51:05,218 [root] DEBUG: Initialized auxiliary module \"DigiSig\"\r\n2023-10-19 11:51:05,218 [root] DEBUG: Trying to start auxiliary module \"DigiSig\"...\r\n2023-10-19 11:51:05,218 [modules.auxiliary.digisig] DEBUG: Checking for a digital signature\r\n2023-10-19 11:51:05,390 [modules.auxiliary.digisig] DEBUG: File is not signed\r\n2023-10-19 11:51:05,390 [modules.auxiliary.digisig] INFO: Uploading signature results to aux/DigiSig.json\r\n2023-10-19 11:51:05,390 [root] DEBUG: Started auxiliary module \"DigiSig\"\r\n2023-10-19 11:51:05,390 [root] DEBUG: Started auxiliary module DigiSig\r\n2023-10-19 11:51:05,390 [root] DEBUG: Initialized auxiliary module \"Disguise\"\r\n2023-10-19 11:51:05,390 [root] DEBUG: Trying to start auxiliary module \"Disguise\"...\r\n2023-10-19 11:51:05,406 [modules.auxiliary.disguise] INFO: Disguising GUID to 0eb78908-5770-4a32-9914-64198877fd6e\r\n2023-10-19 11:51:05,406 [root] DEBUG: Started auxiliary module \"Disguise\"\r\n2023-10-19 11:51:05,406 [root] DEBUG: Started auxiliary module Disguise\r\n2023-10-19 11:51:05,406 [root] DEBUG: Initialized auxiliary module \"Evtx\"\r\n2023-10-19 11:51:05,406 [root] DEBUG: Trying to start auxiliary module \"Evtx\"...\r\n2023-10-19 11:51:05,406 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Security State Change\" /success:enable /failure:enable\r\n2023-10-19 11:51:05,406 [root] DEBUG: Started auxiliary module \"Evtx\"\r\n2023-10-19 11:51:05,406 [root] DEBUG: Started auxiliary module Evtx\r\n2023-10-19 11:51:05,406 [root] DEBUG: Initialized auxiliary module \"FilePickup\"\r\n2023-10-19 11:51:05,406 [root] DEBUG: Trying to start auxiliary module \"FilePickup\"...\r\n2023-10-19 11:51:05,406 [root] DEBUG: Started auxiliary module \"FilePickup\"\r\n2023-10-19 11:51:05,406 [root] DEBUG: Started auxiliary module FilePickup\r\n2023-10-19 11:51:05,406 [root] DEBUG: Initialized auxiliary module \"Human\"\r\n2023-10-19 11:51:05,406 [root] DEBUG: Trying to start auxiliary module \"Human\"...\r\n2023-10-19 11:51:05,406 [root] DEBUG: Started auxiliary module \"Human\"\r\n2023-10-19 11:51:05,406 [root] DEBUG: Started auxiliary module Human\r\n2023-10-19 11:51:05,406 [root] DEBUG: Initialized auxiliary module \"Permissions\"\r\n2023-10-19 11:51:05,406 [root] DEBUG: Trying to start auxiliary module \"Permissions\"...\r\n2023-10-19 11:51:05,406 [root] DEBUG: Started auxiliary module \"Permissions\"\r\n2023-10-19 11:51:05,406 [root] DEBUG: Started auxiliary module Permissions\r\n2023-10-19 11:51:05,421 [root] DEBUG: Initialized auxiliary module \"Pre_script\"\r\n2023-10-19 11:51:05,421 [root] DEBUG: Trying to start auxiliary module \"Pre_script\"...\r\n2023-10-19 11:51:05,421 [root] DEBUG: Started auxiliary module \"Pre_script\"\r\n2023-10-19 11:51:05,421 [root] DEBUG: Started auxiliary module Pre_script\r\n2023-10-19 11:51:05,421 [root] DEBUG: Initialized auxiliary module \"Procmon\"\r\n2023-10-19 11:51:05,421 [root] DEBUG: Trying to start auxiliary module \"Procmon\"...\r\n2023-10-19 11:51:05,421 [root] DEBUG: Started auxiliary module \"Procmon\"\r\n2023-10-19 11:51:05,421 [root] DEBUG: Started auxiliary module Procmon\r\n2023-10-19 11:51:05,421 [root] DEBUG: Initialized auxiliary module \"Screenshots\"\r\n2023-10-19 11:51:05,421 [root] DEBUG: Trying to start auxiliary module \"Screenshots\"...\r\n2023-10-19 11:51:05,421 [modules.auxiliary.screenshots] WARNING: Python Image Library is not installed, screenshots are disabled\r\n2023-10-19 11:51:05,421 [root] DEBUG: Started auxiliary module \"Screenshots\"\r\n2023-10-19 11:51:05,421 [root] DEBUG: Started auxiliary module Screenshots\r\n2023-10-19 11:51:05,421 [root] DEBUG: Initialized auxiliary module \"Sysmon\"\r\n2023-10-19 11:51:05,421 [root] DEBUG: Trying to start auxiliary module \"Sysmon\"...\r\n2023-10-19 11:51:05,484 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Security System Extension\" /success:enable /failure:enable\r\n2023-10-19 11:51:05,500 [root] WARNING: Cannot execute auxiliary module Sysmon: In order to use the Sysmon functionality, it is required to have the SMaster(64|32).exe file and sysmonconfig-export.xml file in the bin path. Note that the SMaster(64|32).exe files are just the standard Sysmon binaries renamed to avoid anti-analysis detection techniques.\r\n2023-10-19 11:51:05,500 [root] DEBUG: Initialized auxiliary module \"TLSDumpMasterSecrets\"\r\n2023-10-19 11:51:05,500 [root] DEBUG: Trying to start auxiliary module \"TLSDumpMasterSecrets\"...\r\n2023-10-19 11:51:05,500 [modules.auxiliary.tlsdump] INFO: lsass.exe found, pid 480\r\n2023-10-19 11:51:05,500 [lib.api.process] INFO: Monitor config for process 480: C:\\tmpz162qo78\\dll\\480.ini\r\n2023-10-19 11:51:05,500 [lib.api.process] INFO: Option 'tlsdump' with value '1' sent to monitor\r\n2023-10-19 11:51:05,500 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmpz162qo78\\dll\\ELgSwhu.dll, loader C:\\tmpz162qo78\\bin\\ybaDovEn.exe\r\n2023-10-19 11:51:05,531 [root] DEBUG: Loader: Injecting process 480 with C:\\tmpz162qo78\\dll\\ELgSwhu.dll.\r\n2023-10-19 11:51:05,531 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"System Integrity\" /success:enable /failure:enable\r\n2023-10-19 11:51:05,546 [root] DEBUG: Python path set to 'C:\\Users\\win7\\AppData\\Local\\Programs\\Python\\Python36-32'.\r\n2023-10-19 11:51:05,546 [root] DEBUG: TLS secret dump mode enabled.\r\n2023-10-19 11:51:05,562 [root] INFO: Disabling sleep skipping.\r\n2023-10-19 11:51:05,562 [root] DEBUG: Monitor initialised: 64-bit capemon loaded in process 480 at 0x000007FEF2020000, thread 1208, image base 0x00000000FFA30000, stack from 0x00000000018D4000-0x00000000018E0000\r\n2023-10-19 11:51:05,562 [root] DEBUG: Commandline: C:\\Windows\\system32\\lsass.exe\r\n2023-10-19 11:51:05,562 [root] DEBUG: InjectDllViaThread: Successfully injected Dll into process via RtlCreateUserThread.\r\n2023-10-19 11:51:05,562 [root] DEBUG: Successfully injected DLL C:\\tmpz162qo78\\dll\\ELgSwhu.dll.\r\n2023-10-19 11:51:05,562 [lib.api.process] INFO: Injected into suspended 64-bit process with pid 480\r\n2023-10-19 11:51:05,578 [root] DEBUG: Started auxiliary module \"TLSDumpMasterSecrets\"\r\n2023-10-19 11:51:05,578 [root] DEBUG: Started auxiliary module TLSDumpMasterSecrets\r\n2023-10-19 11:51:05,578 [root] DEBUG: Initialized auxiliary module \"Usage\"\r\n2023-10-19 11:51:05,578 [root] DEBUG: Trying to start auxiliary module \"Usage\"...\r\n2023-10-19 11:51:05,578 [root] DEBUG: Started auxiliary module \"Usage\"\r\n2023-10-19 11:51:05,578 [root] DEBUG: Started auxiliary module Usage\r\n2023-10-19 11:51:05,578 [root] DEBUG: Initialized auxiliary module \"During_script\"\r\n2023-10-19 11:51:05,578 [root] DEBUG: Trying to start auxiliary module \"During_script\"...\r\n2023-10-19 11:51:05,578 [root] DEBUG: Started auxiliary module \"During_script\"\r\n2023-10-19 11:51:05,578 [root] DEBUG: Started auxiliary module During_script\r\n2023-10-19 11:51:05,609 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"IPsec Driver\" /success:disable /failure:disable\r\n2023-10-19 11:51:05,718 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Other System Events\" /success:disable /failure:enable\r\n2023-10-19 11:51:05,781 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Logon\" /success:enable /failure:enable\r\n2023-10-19 11:51:05,828 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Logoff\" /success:enable /failure:enable\r\n2023-10-19 11:51:05,875 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Account Lockout\" /success:enable /failure:enable\r\n2023-10-19 11:51:05,921 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"IPsec Main Mode\" /success:disable /failure:disable\r\n2023-10-19 11:51:05,984 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"IPsec Quick Mode\" /success:disable /failure:disable\r\n2023-10-19 11:51:06,031 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"IPsec Extended Mode\" /success:disable /failure:disable\r\n2023-10-19 11:51:06,093 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Other Logon/Logoff Events\" /success:enable /failure:enable\r\n2023-10-19 11:51:06,156 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Network Policy Server\" /success:enable /failure:enable\r\n2023-10-19 11:51:06,218 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Special Logon\" /success:enable /failure:enable\r\n2023-10-19 11:51:06,296 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"File System\" /success:enable /failure:enable\r\n2023-10-19 11:51:06,359 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Registry\" /success:enable /failure:enable\r\n2023-10-19 11:51:06,421 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Kernel Object\" /success:enable /failure:enable\r\n2023-10-19 11:51:06,500 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"SAM\" /success:disable /failure:disable\r\n2023-10-19 11:51:06,562 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Certification Services\" /success:enable /failure:enable\r\n2023-10-19 11:51:06,625 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Handle Manipulation\" /success:disable /failure:disable\r\n2023-10-19 11:51:06,703 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Application Generated\" /success:enable /failure:enable\r\n2023-10-19 11:51:06,765 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"File Share\" /success:enable /failure:enable\r\n2023-10-19 11:51:06,828 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Filtering Platform Packet Drop\" /success:disable /failure:disable\r\n2023-10-19 11:51:06,890 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Filtering Platform Connection\" /success:disable /failure:disable\r\n2023-10-19 11:51:06,953 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Other Object Access Events\" /success:disable /failure:disable\r\n2023-10-19 11:51:07,015 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Sensitive Privilege Use\" /success:disable /failure:disable\r\n2023-10-19 11:51:07,062 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Non Sensitive Privilege Use\" /success:disable /failure:disable\r\n2023-10-19 11:51:07,125 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Other Privilege Use Events\" /success:disable /failure:disable\r\n2023-10-19 11:51:07,218 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"RPC Events\" /success:enable /failure:enable\r\n2023-10-19 11:51:07,296 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Audit Policy Change\" /success:enable /failure:enable\r\n2023-10-19 11:51:07,359 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Authentication Policy Change\" /success:enable /failure:enable\r\n2023-10-19 11:51:07,406 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"MPSSVC Rule-Level Policy Change\" /success:disable /failure:disable\r\n2023-10-19 11:51:07,468 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Filtering Platform Policy Change\" /success:disable /failure:disable\r\n2023-10-19 11:51:07,531 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Other Policy Change Events\" /success:disable /failure:enable\r\n2023-10-19 11:51:07,593 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"User Account Management\" /success:enable /failure:enable\r\n2023-10-19 11:51:07,656 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Computer Account Management\" /success:enable /failure:enable\r\n2023-10-19 11:51:07,718 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Security Group Management\" /success:enable /failure:enable\r\n2023-10-19 11:51:07,765 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Distribution Group Management\" /success:enable /failure:enable\r\n2023-10-19 11:51:07,828 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Application Group Management\" /success:enable /failure:enable\r\n2023-10-19 11:51:07,890 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Other Account Management Events\" /success:enable /failure:enable\r\n2023-10-19 11:51:07,953 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Directory Service Access\" /success:enable /failure:enable\r\n2023-10-19 11:51:08,015 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Directory Service Changes\" /success:enable /failure:enable\r\n2023-10-19 11:51:08,078 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Directory Service Replication\" /success:disable /failure:enable\r\n2023-10-19 11:51:08,140 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Detailed Directory Service Replication\" /success:disable /failure:disable\r\n2023-10-19 11:51:08,187 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Credential Validation\" /success:enable /failure:enable\r\n2023-10-19 11:51:08,249 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Kerberos Service Ticket Operations\" /success:enable /failure:enable\r\n2023-10-19 11:51:08,312 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Other Account Logon Events\" /success:enable /failure:enable\r\n2023-10-19 11:51:08,375 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Kerberos Authentication Service\" /success:enable /failure:enable\r\n2023-10-19 11:51:08,437 [modules.auxiliary.evtx] DEBUG: Wiping Application\r\n2023-10-19 11:51:08,500 [modules.auxiliary.evtx] DEBUG: Wiping HardwareEvents\r\n2023-10-19 11:51:08,546 [modules.auxiliary.evtx] DEBUG: Wiping Internet Explorer\r\n2023-10-19 11:51:08,593 [modules.auxiliary.evtx] DEBUG: Wiping Key Management Service\r\n2023-10-19 11:51:08,640 [modules.auxiliary.evtx] DEBUG: Wiping OAlerts\r\n2023-10-19 11:51:08,687 [modules.auxiliary.evtx] DEBUG: Wiping Security\r\n2023-10-19 11:51:08,734 [modules.auxiliary.evtx] DEBUG: Wiping Setup\r\n2023-10-19 11:51:08,781 [modules.auxiliary.evtx] DEBUG: Wiping System\r\n2023-10-19 11:51:08,843 [modules.auxiliary.evtx] DEBUG: Wiping Windows PowerShell\r\n2023-10-19 11:51:08,890 [modules.auxiliary.evtx] DEBUG: Wiping Microsoft-Windows-Sysmon/Operational\r\n2023-10-19 11:51:13,328 [root] INFO: Restarting WMI Service\r\n2023-10-19 11:51:15,406 [lib.core.compound] INFO: C:\\Users\\win7\\AppData\\Local\\Temp already exists, skipping creation\r\n2023-10-19 11:51:15,421 [lib.api.process] INFO: Successfully executed process from path \"C:\\Users\\win7\\AppData\\Local\\Temp\\malicious_file_blad.exe\" with arguments \"\" with pid 2304\r\n2023-10-19 11:51:15,421 [lib.api.process] INFO: Monitor config for process 2304: C:\\tmpz162qo78\\dll\\2304.ini\r\n2023-10-19 11:51:15,437 [lib.api.process] INFO: 32-bit DLL to inject is C:\\tmpz162qo78\\dll\\kCCCVFS.dll, loader C:\\tmpz162qo78\\bin\\WzjAugi.exe\r\n2023-10-19 11:51:15,468 [root] DEBUG: Loader: Injecting process 2304 (thread 2732) with C:\\tmpz162qo78\\dll\\kCCCVFS.dll.\r\n2023-10-19 11:51:15,468 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\r\n2023-10-19 11:51:15,468 [root] DEBUG: Successfully injected DLL C:\\tmpz162qo78\\dll\\kCCCVFS.dll.\r\n2023-10-19 11:51:15,468 [lib.api.process] INFO: Injected into suspended 32-bit process with pid 2304\r\n2023-10-19 11:51:17,468 [lib.api.process] INFO: Successfully resumed process with pid 2304\r\n2023-10-19 11:51:17,515 [root] DEBUG: Python path set to 'C:\\Users\\win7\\AppData\\Local\\Programs\\Python\\Python36-32'.\r\n2023-10-19 11:51:17,515 [root] DEBUG: Dropped file limit defaulting to 100.\r\n2023-10-19 11:51:17,515 [root] DEBUG: Initialising Yara...\r\n2023-10-19 11:51:17,531 [root] DEBUG: YaraInit: Compiled 24 rule files\r\n2023-10-19 11:51:17,531 [root] DEBUG: YaraInit: Compiled rules saved to file C:\\tmpz162qo78\\data\\yara\\capemon.yac\r\n2023-10-19 11:51:17,531 [root] DEBUG: Monitor initialised: 32-bit capemon loaded in process 2304 at 0x74ba0000, thread 2732, image base 0x400000, stack from 0x186000-0x190000\r\n2023-10-19 11:51:17,531 [root] DEBUG: Commandline: \"C:\\Users\\win7\\AppData\\Local\\Temp\\malicious_file_blad.exe\"\r\n2023-10-19 11:51:17,562 [root] DEBUG: WoW64 detected: 64-bit ntdll base: 0x772e0000, KiUserExceptionDispatcher: 0x0, NtSetContextThread: 0x7733124a, Wow64PrepareForException: 0x0\r\n2023-10-19 11:51:17,562 [root] DEBUG: WoW64 workaround: KiUserExceptionDispatcher hook installed at: 0x340000\r\n2023-10-19 11:51:17,578 [root] DEBUG: api-rate-cap: NtDelayExecution hook disabled due to rate\r\n2023-10-19 11:51:17,578 [root] DEBUG: api-rate-cap: NtDelayExecution hook disabled due to rate\r\n2023-10-19 11:51:17,578 [root] DEBUG: RestoreHeaders: Restored original import table.\r\n2023-10-19 11:51:17,578 [root] DEBUG: api-rate-cap: NtDelayExecution hook disabled due to rate\r\n2023-10-19 11:51:17,593 [root] DEBUG: api-rate-cap: NtDelayExecution hook disabled due to rate\r\n2023-10-19 11:51:17,593 [root] INFO: Loaded monitor into process with pid 2304\r\n2023-10-19 11:51:17,593 [root] DEBUG: caller_dispatch: Added region at 0x00400000 to tracked regions list (kernel32::FindResourceExW returns to 0x00401585, thread 2732).\r\n2023-10-19 11:51:17,593 [root] DEBUG: YaraScan: Scanning 0x00400000, size 0x22613\r\n2023-10-19 11:51:17,593 [root] DEBUG: AllocationHandler: Adding allocation to tracked region list: 0x00350000, size: 0x18000.\r\n2023-10-19 11:51:17,609 [root] DEBUG: AllocationHandler: Adding allocation to tracked region list: 0x003F0000, size: 0x1000.\r\n2023-10-19 11:51:17,609 [root] DEBUG: AllocationHandler: Processing previous tracked region at: 0x00350000.\r\n2023-10-19 11:51:17,609 [root] DEBUG: YaraScan: Scanning 0x00350000, size 0x17b04\r\n2023-10-19 11:51:17,609 [root] DEBUG: DumpPEsInRange: Scanning range 0x00350000 - 0x00367B04.\r\n2023-10-19 11:51:17,609 [root] DEBUG: ScanForDisguisedPE: No PE image located in range 0x00350000-0x00367B04.\r\n2023-10-19 11:51:17,640 [lib.common.results] INFO: Uploading file C:\\mUVXgKYC\\CAPE\\2304_1481875017518194102023 to CAPE\\ca25aa5d88c4b4529c4f3f878999b18a88d5f7683a8ff0cf3c90a1f47231c03c; Size is 97028; Max size: 10000000000\r\n2023-10-19 11:51:17,656 [root] DEBUG: DumpMemory: Payload successfully created: C:\\mUVXgKYC\\CAPE\\2304_1481875017518194102023 (size 97028 bytes)\r\n2023-10-19 11:51:17,656 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x00350000, size 98304 bytes.\r\n2023-10-19 11:51:17,656 [root] DEBUG: ProcessTrackedRegion: Dumped region at 0x00350000.\r\n2023-10-19 11:51:17,671 [root] DEBUG: AllocationHandler: Adding allocation to tracked region list: 0x00470000, size: 0x1b000.\r\n2023-10-19 11:51:17,671 [root] DEBUG: AllocationHandler: Processing previous tracked region at: 0x003F0000.\r\n2023-10-19 11:51:17,671 [root] DEBUG: YaraScan: Scanning 0x003F0000, size 0xee\r\n2023-10-19 11:51:17,671 [root] DEBUG: DumpPEsInRange: Scanning range 0x003F0000 - 0x003F00EE.\r\n2023-10-19 11:51:17,671 [root] DEBUG: ScanForDisguisedPE: Size too small.\r\n2023-10-19 11:51:17,671 [lib.common.results] INFO: Uploading file C:\\mUVXgKYC\\CAPE\\2304_1995956617518194102023 to CAPE\\47cc8d939f0138854bf1017d1dacda1cc7aa81d821c41bb726e10220263cac5f; Size is 238; Max size: 10000000000\r\n2023-10-19 11:51:17,687 [root] DEBUG: DumpMemory: Payload successfully created: C:\\mUVXgKYC\\CAPE\\2304_1995956617518194102023 (size 238 bytes)\r\n2023-10-19 11:51:17,687 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x003F0000, size 4096 bytes.\r\n2023-10-19 11:51:17,687 [root] DEBUG: ProcessTrackedRegion: Dumped region at 0x003F0000.\r\n2023-10-19 11:51:17,687 [root] DEBUG: YaraScan: Scanning 0x00470000, size 0x17d40\r\n2023-10-19 11:51:17,687 [root] DEBUG: DumpPEsInRange: Scanning range 0x00470000 - 0x00487D40.\r\n2023-10-19 11:51:17,687 [root] DEBUG: ScanForDisguisedPE: No PE image located in range 0x00470000-0x00487D40.\r\n2023-10-19 11:51:17,703 [lib.common.results] INFO: Uploading file C:\\mUVXgKYC\\CAPE\\2304_7585158255114194102023 to CAPE\\7c8a5de386104c54868d8c0573ef139c338febbb61b27666785888e1f73c60a2; Size is 97600; Max size: 10000000000\r\n2023-10-19 11:51:17,718 [root] DEBUG: DumpMemory: Payload successfully created: C:\\mUVXgKYC\\CAPE\\2304_7585158255114194102023 (size 97600 bytes)\r\n2023-10-19 11:51:17,718 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x00470000, size 110592 bytes.\r\n2023-10-19 11:51:17,718 [root] DEBUG: ProcessTrackedRegion: Dumped region at 0x00470000.\r\n2023-10-19 11:51:17,734 [root] DEBUG: api-rate-cap: LdrGetDllHandle hook disabled due to rate\r\n2023-10-19 11:51:17,750 [root] DEBUG: api-rate-cap: LdrGetProcedureAddress hook disabled due to rate\r\n2023-10-19 11:51:17,750 [root] DEBUG: api-rate-cap: memcpy hook disabled due to rate\r\n2023-10-19 11:51:17,750 [root] DEBUG: api-rate-cap: memcpy hook disabled due to rate\r\n2023-10-19 11:51:17,750 [root] DEBUG: AllocationHandler: Adding allocation to tracked region list: 0x00490000, size: 0x1a000.\r\n2023-10-19 11:51:17,750 [root] DEBUG: AllocationHandler: Processing previous tracked region at: 0x00470000.\r\n2023-10-19 11:51:17,750 [root] DEBUG: DLL loaded at 0x75760000: C:\\Windows\\syswow64\\shell32 (0xc4a000 bytes).\r\n2023-10-19 11:51:17,765 [root] DEBUG: DLL loaded at 0x752E0000: C:\\Windows\\syswow64\\wininet (0xf5000 bytes).\r\n2023-10-19 11:51:17,765 [root] DEBUG: DLL loaded at 0x75550000: C:\\Windows\\syswow64\\urlmon (0x136000 bytes).\r\n2023-10-19 11:51:17,765 [root] DEBUG: DLL loaded at 0x76F80000: C:\\Windows\\syswow64\\OLEAUT32 (0x8f000 bytes).\r\n2023-10-19 11:51:17,765 [root] DEBUG: DLL loaded at 0x750E0000: C:\\Windows\\syswow64\\iertutil (0x1fb000 bytes).\r\n2023-10-19 11:51:17,765 [root] DEBUG: DLL loaded at 0x74B70000: C:\\Windows\\system32\\wsock32 (0x7000 bytes).\r\n2023-10-19 11:51:17,765 [root] DEBUG: DLL loaded at 0x74A50000: C:\\Windows\\system32\\userenv (0x17000 bytes).\r\n2023-10-19 11:51:17,765 [root] DEBUG: DLL loaded at 0x74B60000: C:\\Windows\\system32\\profapi (0xb000 bytes).\r\n2023-10-19 11:51:17,765 [root] DEBUG: AllocationHandler: Previously reserved region at 0x00400000, committing at: 0x00400000.\r\n2023-10-19 11:51:17,765 [root] DEBUG: AllocationHandler: Processing previous tracked region at: 0x00490000.\r\n2023-10-19 11:51:17,765 [root] DEBUG: YaraScan: Scanning 0x00490000, size 0x18ae1\r\n2023-10-19 11:51:17,781 [root] DEBUG: DumpPEsInRange: Scanning range 0x00490000 - 0x004A8AE1.\r\n2023-10-19 11:51:17,781 [root] DEBUG: ScanForDisguisedPE: PE image located at: 0x00490000\r\n2023-10-19 11:51:17,781 [root] DEBUG: DumpImageInCurrentProcess: Attempting to dump virtual PE image.\r\n2023-10-19 11:51:17,781 [root] DEBUG: DumpProcess: Instantiating PeParser with address: 0x00490000.\r\n2023-10-19 11:51:17,781 [root] DEBUG: DumpProcess: Module entry point VA is 0x0001072C.\r\n2023-10-19 11:51:17,781 [root] DEBUG: readPeSectionsFromProcess: Failed to relocate image back to header image base 0x00400000.\r\n2023-10-19 11:51:17,796 [lib.common.results] INFO: Uploading file C:\\mUVXgKYC\\CAPE\\2304_1604252117518194102023 to CAPE\\9b2da4cf1d974669b8804012fe91a55a5b3b1d733d1129c468944a9413387227; Size is 93696; Max size: 10000000000\r\n2023-10-19 11:51:17,812 [root] DEBUG: DumpProcess: Module image dump success - dump size 0x16e00.\r\n2023-10-19 11:51:17,812 [root] DEBUG: ScanForDisguisedPE: No PE image located in range 0x00491000-0x004A8AE1.\r\n2023-10-19 11:51:17,812 [root] DEBUG: DumpRegion: Dumped PE image(s) from base address 0x00490000, size 106496 bytes.\r\n2023-10-19 11:51:17,812 [root] DEBUG: ProcessTrackedRegion: Dumped region at 0x00490000.\r\n2023-10-19 11:51:17,812 [root] DEBUG: DLL loaded at 0x74E40000: C:\\Windows\\system32\\uxtheme (0x80000 bytes).\r\n2023-10-19 11:51:17,828 [root] DEBUG: DLL unloaded from 0x74E40000.\r\n2023-10-19 11:51:17,828 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x12c and local view 0x044C0000 to global list.\r\n2023-10-19 11:51:17,828 [root] DEBUG: DLL loaded at 0x74A20000: C:\\Windows\\system32\\SAMCLI (0xf000 bytes).\r\n2023-10-19 11:51:17,828 [root] DEBUG: hook_api: Warning - NetUserGetInfo export address 0x74A3528E differs from GetProcAddress -> 0x74A21BE2\r\n2023-10-19 11:51:17,828 [root] DEBUG: DLL loaded at 0x74A10000: C:\\Windows\\system32\\WKSCLI (0xf000 bytes).\r\n2023-10-19 11:51:17,828 [root] DEBUG: hook_api: Warning - NetGetJoinInformation export address 0x74A34AD2 differs from GetProcAddress -> 0x74A12C3F\r\n2023-10-19 11:51:17,828 [root] DEBUG: hook_api: Warning - NetUserGetLocalGroups export address 0x74A352A4 differs from GetProcAddress -> 0x74A228AA\r\n2023-10-19 11:51:17,843 [root] DEBUG: DLL loaded at 0x749E0000: C:\\Windows\\system32\\LOGONCLI (0x22000 bytes).\r\n2023-10-19 11:51:17,843 [root] DEBUG: hook_api: Warning - DsEnumerateDomainTrustsW export address 0x74A33C9E differs from GetProcAddress -> 0x749EB1FA\r\n2023-10-19 11:51:17,843 [root] DEBUG: DLL loaded at 0x74A30000: C:\\Windows\\system32\\netapi32 (0x11000 bytes).\r\n2023-10-19 11:51:17,843 [root] DEBUG: DLL loaded at 0x749D0000: C:\\Windows\\system32\\netutils (0x9000 bytes).\r\n2023-10-19 11:51:17,843 [root] DEBUG: DLL loaded at 0x749B0000: C:\\Windows\\system32\\srvcli (0x19000 bytes).\r\n2023-10-19 11:51:17,843 [root] DEBUG: DLL loaded at 0x74770000: C:\\Windows\\system32\\msi (0x240000 bytes).\r\n2023-10-19 11:51:17,859 [root] DEBUG: DLL loaded at 0x74760000: C:\\Windows\\system32\\pstorec (0xd000 bytes).\r\n2023-10-19 11:51:17,859 [root] DEBUG: DLL loaded at 0x74740000: C:\\Windows\\system32\\ATL (0x14000 bytes).\r\n2023-10-19 11:51:18,968 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x18c and local view 0x047A0000 to global list.\r\n2023-10-19 11:51:20,156 [root] DEBUG: DLL loaded at 0x000007FEFAF00000: C:\\Windows\\system32\\pstorsvc (0xd000 bytes).\r\n2023-10-19 11:51:20,156 [root] DEBUG: DLL loaded at 0x000007FEF93F0000: C:\\Windows\\system32\\psbase (0x11000 bytes).\r\n2023-10-19 11:51:25,140 [root] INFO: Disabling sleep skipping.\r\n2023-10-19 11:51:25,140 [root] DEBUG: DLL loaded at 0x76B50000: C:\\Windows\\syswow64\\CLBCatQ (0x83000 bytes).\r\n2023-10-19 11:51:25,156 [root] DEBUG: DLL loaded at 0x72790000: C:\\Windows\\SysWOW64\\ieframe (0xa80000 bytes).\r\n2023-10-19 11:51:25,156 [root] DEBUG: DLL loaded at 0x76500000: C:\\Windows\\syswow64\\PSAPI (0x5000 bytes).\r\n2023-10-19 11:51:25,156 [root] DEBUG: DLL loaded at 0x74700000: C:\\Windows\\SysWOW64\\OLEACC (0x3c000 bytes).\r\n2023-10-19 11:51:25,156 [root] DEBUG: DLL loaded at 0x74560000: C:\\Windows\\WinSxS\\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\\comctl32 (0x19e000 bytes).\r\n2023-10-19 11:51:25,171 [root] DEBUG: DLL loaded at 0x74530000: C:\\Windows\\system32\\MLANG (0x2e000 bytes).\r\n2023-10-19 11:51:25,187 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x214 and local view 0x00730000 to global list.\r\n2023-10-19 11:51:25,203 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x220 and local view 0x03710000 to global list.\r\n2023-10-19 11:51:25,203 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x22c and local view 0x03720000 to global list.\r\n2023-10-19 11:51:25,234 [root] DEBUG: DLL loaded at 0x74500000: C:\\Windows\\system32\\ntmarta (0x21000 bytes).\r\n2023-10-19 11:51:25,234 [root] DEBUG: DLL loaded at 0x76D00000: C:\\Windows\\syswow64\\WLDAP32 (0x45000 bytes).\r\n2023-10-19 11:51:25,234 [root] DEBUG: DLL loaded at 0x73BC0000: C:\\Windows\\system32\\VERSION (0x9000 bytes).\r\n2023-10-19 11:51:25,234 [root] DEBUG: DLL unloaded from 0x75550000.\r\n2023-10-19 11:51:25,328 [root] DEBUG: DLL loaded at 0x744B0000: C:\\Windows\\system32\\dnsapi (0x44000 bytes).\r\n2023-10-19 11:51:25,328 [root] DEBUG: DLL loaded at 0x74490000: C:\\Windows\\system32\\iphlpapi (0x1c000 bytes).\r\n2023-10-19 11:51:25,328 [root] DEBUG: DLL loaded at 0x74480000: C:\\Windows\\system32\\WINNSI (0x7000 bytes).\r\n2023-10-19 11:51:25,343 [root] DEBUG: DLL loaded at 0x73220000: C:\\Windows\\system32\\mswsock (0x3c000 bytes).\r\n2023-10-19 11:51:25,343 [root] DEBUG: DLL loaded at 0x73210000: C:\\Windows\\System32\\wshtcpip (0x5000 bytes).\r\n2023-10-19 11:51:25,343 [root] DEBUG: DLL loaded at 0x74470000: C:\\Windows\\system32\\NLAapi (0x10000 bytes).\r\n2023-10-19 11:51:25,343 [root] DEBUG: DLL loaded at 0x74460000: C:\\Windows\\system32\\napinsp (0x10000 bytes).\r\n2023-10-19 11:51:25,343 [root] DEBUG: DLL loaded at 0x74440000: C:\\Windows\\system32\\pnrpnsp (0x12000 bytes).\r\n2023-10-19 11:51:25,359 [root] DEBUG: DLL loaded at 0x74430000: C:\\Windows\\System32\\winrnr (0x8000 bytes).\r\n2023-10-19 11:51:37,359 [root] DEBUG: DLL loaded at 0x74420000: C:\\Windows\\system32\\rasadhlp (0x6000 bytes).\r\n2023-10-19 11:54:38,468 [root] INFO: Analysis timeout hit, terminating analysis\r\n2023-10-19 11:54:38,468 [lib.api.process] INFO: Terminate event set for process 2304\r\n2023-10-19 11:54:38,468 [root] DEBUG: Terminate Event: Attempting to dump process 2304\r\n2023-10-19 11:54:38,468 [root] DEBUG: DoProcessDump: Dumping Imagebase at 0x00400000.\r\n2023-10-19 11:54:38,468 [root] DEBUG: DumpImageInCurrentProcess: Attempting to dump virtual PE image.\r\n2023-10-19 11:54:38,468 [root] DEBUG: DumpProcess: Instantiating PeParser with address: 0x00400000.\r\n2023-10-19 11:54:38,468 [root] DEBUG: DumpProcess: Module entry point VA is 0x0001072C.\r\n2023-10-19 11:54:38,484 [lib.common.results] INFO: Uploading file C:\\mUVXgKYC\\CAPE\\2304_1918838548194102023 to procdump\\66ef8132e519913c291c3ca1112dd083552e92612ead22f83e70be72eaad3b2d; Size is 94720; Max size: 10000000000\r\n2023-10-19 11:54:38,500 [root] DEBUG: DumpProcess: Module image dump success - dump size 0x17200.\r\n2023-10-19 11:54:38,500 [root] INFO: Added new file to list with pid None and path C:\\Users\\win7\\AppData\\Local\\Microsoft\\Windows\\History\\History.IE5\\index.dat\r\n2023-10-19 11:54:38,500 [root] INFO: Added new file to list with pid None and path C:\\Users\\win7\\AppData\\Roaming\\Microsoft\\Windows\\Cookies\\index.dat\r\n2023-10-19 11:54:38,515 [root] INFO: Added new file to list with pid None and path C:\\Users\\win7\\AppData\\Local\\Microsoft\\Windows\\Temporary Internet Files\\Content.IE5\\index.dat\r\n2023-10-19 11:54:38,515 [lib.api.process] INFO: Termination confirmed for process 2304\r\n2023-10-19 11:54:38,515 [root] INFO: Terminate event set for process 2304\r\n2023-10-19 11:54:38,515 [root] DEBUG: Terminate Event: CAPE shutdown complete for process 2304\r\n2023-10-19 11:54:38,515 [root] INFO: Created shutdown mutex\r\n2023-10-19 11:54:39,515 [root] INFO: Shutting down package\r\n2023-10-19 11:54:39,515 [root] INFO: Stopping auxiliary modules\r\n2023-10-19 11:54:39,515 [root] INFO: Stopping auxiliary module: Browser\r\n2023-10-19 11:54:39,515 [root] INFO: Stopping auxiliary module: Curtain\r\n2023-10-19 11:54:39,578 [lib.common.results] INFO: Uploading file C:\\curtain.log to curtain/1697705679.578125.curtain.log; Size is 36; Max size: 10000000000\r\n2023-10-19 11:54:39,593 [root] INFO: Stopping auxiliary module: Evtx\r\n2023-10-19 11:54:39,593 [modules.auxiliary.evtx] DEBUG: Adding C:/windows/Sysnative/winevt/Logs\\Application.evtx to zip dump\r\n2023-10-19 11:54:39,593 [modules.auxiliary.evtx] DEBUG: Adding C:/windows/Sysnative/winevt/Logs\\HardwareEvents.evtx to zip dump\r\n2023-10-19 11:54:39,609 [modules.auxiliary.evtx] DEBUG: Adding C:/windows/Sysnative/winevt/Logs\\Internet Explorer.evtx to zip dump\r\n2023-10-19 11:54:39,609 [modules.auxiliary.evtx] DEBUG: Adding C:/windows/Sysnative/winevt/Logs\\Key Management Service.evtx to zip dump\r\n2023-10-19 11:54:39,609 [modules.auxiliary.evtx] DEBUG: Adding C:/windows/Sysnative/winevt/Logs\\Security.evtx to zip dump\r\n2023-10-19 11:54:39,609 [modules.auxiliary.evtx] DEBUG: Adding C:/windows/Sysnative/winevt/Logs\\Setup.evtx to zip dump\r\n2023-10-19 11:54:39,609 [modules.auxiliary.evtx] DEBUG: Adding C:/windows/Sysnative/winevt/Logs\\System.evtx to zip dump\r\n2023-10-19 11:54:39,625 [modules.auxiliary.evtx] DEBUG: Adding C:/windows/Sysnative/winevt/Logs\\Windows PowerShell.evtx to zip dump\r\n2023-10-19 11:54:39,625 [modules.auxiliary.evtx] DEBUG: Uploading evtx.zip to host\r\n2023-10-19 11:54:39,625 [lib.common.results] INFO: Uploading file evtx.zip to evtx/evtx.zip; Size is 32672; Max size: 10000000000\r\n2023-10-19 11:54:39,640 [root] INFO: Stopping auxiliary module: FilePickup\r\n2023-10-19 11:54:39,640 [root] INFO: Stopping auxiliary module: Human\r\n2023-10-19 11:54:39,640 [root] INFO: Stopping auxiliary module: Pre_script\r\n2023-10-19 11:54:39,640 [root] INFO: Stopping auxiliary module: Procmon\r\n2023-10-19 11:54:39,718 [lib.common.results] WARNING: File C:\\mUVXgKYC\\bin\\procmon.xml doesn't exist anymore\r\n2023-10-19 11:54:39,718 [root] INFO: Stopping auxiliary module: Screenshots\r\n2023-10-19 11:54:39,734 [root] INFO: Stopping auxiliary module: Usage\r\n2023-10-19 11:54:39,734 [root] INFO: Stopping auxiliary module: During_script\r\n2023-10-19 11:54:39,734 [root] INFO: Finishing auxiliary modules\r\n2023-10-19 11:54:39,734 [root] INFO: Shutting down pipe server and dumping dropped files\r\n2023-10-19 11:54:39,734 [lib.common.results] INFO: Uploading file C:\\Users\\win7\\AppData\\Local\\Microsoft\\Windows\\History\\History.IE5\\index.dat to files\\cf6dfb6e7ac48cb9d7a22dc09c070c177e13d7a9d43e15727a0b34ee6991805c; Size is 32768; Max size: 10000000000\r\n2023-10-19 11:54:39,750 [lib.common.results] INFO: Uploading file C:\\Users\\win7\\AppData\\Roaming\\Microsoft\\Windows\\Cookies\\index.dat to files\\75d0b1743f61b76a35b1fedd32378837805de58d79fa950cb6e8164bfa72073a; Size is 16384; Max size: 10000000000\r\n2023-10-19 11:54:39,765 [lib.common.results] INFO: Uploading file C:\\Users\\win7\\AppData\\Local\\Microsoft\\Windows\\Temporary Internet Files\\Content.IE5\\index.dat to files\\f29f8fd58b8e4845331ebb8887f3223b02c0c33fb60651d24586fcf21221fb18; Size is 32768; Max size: 10000000000\r\n2023-10-19 11:54:39,781 [root] WARNING: Folder at path \"C:\\mUVXgKYC\\debugger\" does not exist, skipping\r\n2023-10-19 11:54:39,781 [root] WARNING: Folder at path \"C:\\mUVXgKYC\\tlsdump\" does not exist, skipping\r\n2023-10-19 11:54:39,781 [root] INFO: Analysis completed\r\n\r\nWeb is run with cape user. Also checked modules directory everything is chown by cape user.\r\nAny thoughts what could be the problem?\r\nThank you in advance.\r\n\nComment: Problem solved again. \r\nI added cape user to www-data group. Reloaded daemons and restarted nginx service.\r\nEverything works now.\nComment: Dear @meldzhaLV,\r\n\r\nI also encounter the following errors:\r\n\r\nfeb 22 18:26:52 capev2sandbox python3[32074]: 2024-02-22 18:26:52,007 [Task 6] [lib.cuckoo.common.integrations.file_extra_info] ERROR: You have permission error. FIX IT! sudo chown cape:cape /opt/CAPEv2/data/trid -R\r\nfeb 22 18:26:53 capev2sandbox python3[32074]: 2024-02-22 18:26:53,050 [Task 6] [lib.cuckoo.common.integrations.file_extra_info] ERROR: You have permission error. FIX IT! sudo chown cape:cape /opt/CAPEv2/data/trid -R\r\nfeb 22 18:26:53 capev2sandbox python3[32074]: 2024-02-22 18:26:53,742 [Task 6] [lib.cuckoo.common.integrations.file_extra_info] ERROR: You have permission error. FIX IT! sudo chown cape:cape /opt/CAPEv2/data/trid -R\r\nfeb 22 18:26:54 capev2sandbox python3[32074]: 2024-02-22 18:26:54,774 [Task 6] [lib.cuckoo.common.integrations.file_extra_info] ERROR: You have permission error. FIX IT! sudo chown cape:cape /opt/CAPEv2/data/trid -R\r\nfeb 22 18:26:55 capev2sandbox python3[32074]: 2024-02-22 18:26:55,423 [Task 6] [lib.cuckoo.common.integrations.file_extra_info] ERROR: You have permission error. FIX IT! sudo chown cape:cape /opt/CAPEv2/data/trid -R\r\nfeb 22 18:26:56 capev2sandbox python3[32074]: 2024-02-22 18:26:56,174 [Task 6] [lib.cuckoo.common.integrations.file_extra_info] ERROR: You have permission error. FIX IT! sudo chown cape:cape /opt/CAPEv2/data/trid -R\r\nfeb 22 18:26:56 capev2sandbox python3[32074]: 2024-02-22 18:26:56,888 [Task 6] [lib.cuckoo.common.integrations.file_extra_info] ERROR: You have permission error. FIX IT! sudo chown cape:cape /opt/CAPEv2/data/trid -R\r\nfeb 22 18:26:57 capev2sandbox python3[32074]: 2024-02-22 18:26:57,658 [Task 6] [lib.cuckoo.common.integrations.file_extra_info] ERROR: You have permission error. FIX IT! sudo chown cape:cape /opt/CAPEv2/data/trid -R\r\nfeb 22 18:26:58 capev2sandbox python3[32074]: 2024-02-22 18:26:58,437 [Task 6] [lib.cuckoo.common.integrations.file_extra_info] ERROR: You have permission error. FIX IT! sudo chown cape:cape /opt/CAPEv2/data/trid -R\r\n\r\ncan you help me understand how you solved it? I gave the command but it keeps coming out. :(\r\n\r\nRegards\r\nEngel\r\n\nComment: @eingel86 https://linux.die.net/man/8/usermod\nComment: Dear @doomedraven , I know it is an open product and the support you provide is free of charge, for which I thank you and apologise for the inconvenience. But could you point me to the specific command to give since the one indicated in cli (sudo chown cape:cape /opt/CAPEv2/data/trid -R) does not solve the problem? I would be very grateful, thank you.\nComment: before ask for help provide useful details for faster help, to save you and me time. i have feeling that you running cape wtih non cape user right?\nComment: I installed cape following the guide 'https://capev2.readthedocs.io/en/latest/index.html'. I use a different user to connect in ssh or via desktop on Ubuntu. I don't know the password of the cape user that was created when I ran the command: \"sudo ./cape2.sh all cape | tee cape.log\" but I don't think I should use it to log in in ssh or via desktop. When I run the commands: journalctl -u SERVICE --follow I do it with the no cape user, but only that. The analysis is performed from the web page and not from the cli. Below are the active processes:\r\n\r\nuserssh@capev2sandbox:~$ top | grep cape\r\n  42601 cape      20   0  897088 276968  41724 R  82,4   0,8 260:41.23 python\r\n  47624 userssh   20   0   13636   4416   3264 R  11,8   0,0   0:00.05 top\r\n  42601 cape      20   0  897088 276968  41724 R  78,9   0,8 260:43.62 python\r\n  42630 cape      20   0 1321868 294504  47232 S  21,8   0,9  59:09.59 python\r\n   1538 cape      20   0  475416   3284   2688 S   0,7   0,0   4:06.78 Suricata-Main\r\n  47624 userssh   20   0   13636   4416   3264 R   0,7   0,0   0:00.07 top\r\n   4257 userssh   20   0 2385620 182456  51520 S   0,3   0,6   7:33.55 virt-manager\r\n  42601 cape      20   0  897088 276968  41724 S  79,9   0,8 260:46.04 python\r\n  42630 cape      20   0 1321868 294504  47232 S  14,5   0,9  59:10.03 python\r\n  47624 userssh   20   0   13636   4416   3264 R   1,3   0,0   0:00.11 top\r\n  42599 cape      20   0  666492  83004  40320 S   0,7   0,3   0:30.83 /home/cape/.cac\r\n  \r\n  I noticed that while having the error: [lib.cuckoo.common.integrations.file_extra_info] ERROR: You have permission error. FIX IT! sudo chown cape:cape /opt/CAPEv2/data/trid -R\r\n\r\nThe analysis is performed and the report is generated.\nComment: well a bit better but still has lack of details.\r\nwhat about? post outpt of next commands(when posting output use code escape block by using \\`\\`\\`output here\\`\\`\\`):\r\n\r\n* `ls -lah /opt/CAPEv2/data/trid`\r\n* `ls -lah /opt/CAPEv2`\r\n\r\nso your UNIQUE problem is that output about permission? do you know what is trid?\nComment: Looking at the logs in realtime, I found the trid permission error. No I don't know what trid is, I apologise for my ignorance.\r\n\r\nuserssh@capev2sandbox:~$ ls -lah /opt/CAPEv2/data/trid\r\ntotal 5,9M\r\ndrwxr-xr-x  2 cape cape 4,0K feb 21 00:19 .\r\ndrwxr-xr-x 13 cape cape 4,0K feb 23 00:05 ..\r\n-rw-r--r--  1 cape cape 755K feb 23 00:05 trid\r\n-rw-r--r--  1 cape cape 5,1M feb 23 00:05 triddefs.trd\r\n-rw-r--r--  1 cape cape 3,1K feb 23 00:05 tridupdate.py\r\nuserssh@capev2sandbox:~$ ls -lah /opt/CAPEv2\r\ntotal 740K\r\ndrwxr-xr-x 25 cape cape 4,0K feb 22 09:24 .\r\ndrwxr-xr-x  3 root root 4,0K feb 21 00:15 ..\r\n-rw-r--r--  1 cape cape 1,7K feb 21 00:16 acknowledgment.md\r\ndrwxr-xr-x  2 cape cape 4,0K feb 21 00:16 admin\r\ndrwxr-xr-x  2 cape cape 4,0K feb 21 00:16 agent\r\ndrwxr-xr-x  4 cape cape 4,0K feb 21 00:16 analyzer\r\ndrwxr-xr-x  3 root root 4,0K feb 21 00:26 .cache\r\n-rw-r--r--  1 cape cape  50K feb 21 00:16 changelog.md\r\n-rw-r--r--  1 cape cape  605 feb 21 00:16 CITATION.cff\r\ndrwxr-xr-x  2 cape cape 4,0K feb 23 10:55 conf\r\n-rw-r--r--  1 cape cape 4,5K feb 21 00:16 cuckoo.py\r\ndrwxr-xr-x  5 cape cape 4,0K feb 21 00:16 custom\r\ndrwxr-xr-x 13 cape cape 4,0K feb 23 00:05 data\r\ndrwxr-xr-x  3 cape cape 4,0K feb 21 00:26 dev_utils\r\ndrwxr-xr-x  3 cape cape 4,0K feb 21 00:16 docs\r\ndrwxr-xr-x  5 cape cape 4,0K feb 21 00:16 extra\r\ndrwxr-xr-x  8 cape cape 4,0K feb 21 00:16 .git\r\ndrwxr-xr-x  4 cape cape 4,0K feb 21 00:16 .github\r\n-rw-r--r--  1 cape cape  252 feb 21 00:16 .gitignore\r\n-rw-r--r--  1 cape cape  101 feb 21 00:16 .gitmodules\r\ndrwxr-xr-x  2 cape cape 4,0K feb 21 00:16 installer\r\ndrwxr-xr-x  4 cape cape 4,0K feb 21 00:19 lib\r\n-rw-r--r--  1 cape cape  34K feb 21 00:16 LICENSE\r\ndrwxr-xr-x  2 cape cape 4,0K feb 23 10:29 log\r\ndrwxr-xr-x  9 cape cape 4,0K feb 21 00:26 modules\r\n-rw-r--r--  1 cape cape 338K feb 21 00:16 poetry.lock\r\n-rw-r--r--  1 cape cape  677 feb 21 00:16 .pre-commit-config.yaml\r\n-rw-r--r--  1 cape cape 3,5K feb 21 00:16 pyproject.toml\r\n-rw-r--r--  1 cape cape  11K feb 21 00:16 README.md\r\n-rw-r--r--  1 cape cape  757 feb 21 00:16 .readthedocs.yaml\r\n-rw-r--r--  1 cape cape 155K feb 21 00:16 requirements.txt\r\n-rw-r--r--  1 cape cape  483 feb 21 00:16 SECURITY.md\r\ndrwxr-xr-x  5 cape cape 4,0K feb 22 09:24 storage\r\ndrwxr-xr-x  2 cape cape 4,0K feb 21 00:16 systemd\r\ndrwxr-xr-x  6 cape cape 4,0K feb 21 00:16 tests\r\ndrwxr-xr-x  2 cape cape 4,0K feb 21 00:16 tests_parsers\r\ndrwxr-xr-x  5 cape cape 4,0K feb 21 00:19 utils\r\ndrwxr-xr-x  2 cape cape 4,0K feb 21 00:16 uwsgi\r\ndrwxr-xr-x 13 cape cape 4,0K feb 22 08:47 web\r\n-rw-r--r--  1 cape cape  205 feb 21 00:16 .yara-ci.yml\r\n\r\nI have noticed other errors, but I don't think it is correct to include them here, or perhaps they are related to the lack of trid permission.\nComment: please start using the code block for formatting output. so i don't see any issue here. i guess your problem is that trid is not executable. `sudo chmod a+x /opt/CAPEv2/data/trid/trid`. Is hard to help you if you describe the problem, i have guess all the time, that is not how i will follow\nComment: Dear @doomedraven , thanks for the command: `sudo chmod a+x /opt/CAPEv2/data/trid/trid` solved the problem.\nComment: small advice, do no activate parts that you don't have no idea what they are. Google them first otherwise with limited experience you might get into bigger problems",
+  "Title: Bump urllib3 from 2.0.6 to 2.0.7\nBody: Bumps [urllib3](https://github.com/urllib3/urllib3) from 2.0.6 to 2.0.7.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a href=\"https://github.com/urllib3/urllib3/releases\">urllib3's releases</a>.</em></p>\n<blockquote>\n<h2>2.0.7</h2>\n<ul>\n<li>Made body stripped from HTTP requests changing the request method to GET after HTTP 303 &quot;See Other&quot; redirect responses. (GHSA-g4mx-q9vg-27p4)</li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/urllib3/urllib3/blob/main/CHANGES.rst\">urllib3's changelog</a>.</em></p>\n<blockquote>\n<h1>2.0.7 (2023-10-17)</h1>\n<ul>\n<li>Made body stripped from HTTP requests changing the request method to GET after HTTP 303 &quot;See Other&quot; redirect responses.</li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/56f01e088dc006c03d4ee6ea9da4ab810f1ed700\"><code>56f01e0</code></a> Release 2.0.7</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/4e50fbc5db74e32cabd5ccc1ab81fc103adfe0b3\"><code>4e50fbc</code></a> Merge pull request from GHSA-g4mx-q9vg-27p4</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/80808b04bfa68fbd099828848c96ee25df185f1d\"><code>80808b0</code></a> Fix docs build on Python 3.12 (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3144\">#3144</a>)</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/f28deff1cf162c673b50d88d3552e91bda6d68a8\"><code>f28deff</code></a> Add 1.26.17 to the current changelog</li>\n<li>See full diff in <a href=\"https://github.com/urllib3/urllib3/compare/2.0.6...2.0.7\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=urllib3&package-manager=pip&previous-version=2.0.6&new-version=2.0.7)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: fix typo in condition\nBody: None",
+  "Title: Update UnAutoIt_extract\nBody: Add AutoIT_Script rule, requires updated yara rule from community repo",
+  "Title: Fix issue of missing file data from calls to mongo_find\nBody: - Simplify _load_report.\r\n  This function was never getting called without 'return_one' set to True, so just remove the unused code.\r\n- Add mongo hook for mongo_find to denormalize files in the results.",
+  "Title: Staging\nBody: None",
+  "Title: Small fix\nBody: The dictionary can be empty which will cause an error.",
+  "Title: PPLinject.exe - Cannot find entry point\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?  \r\nWhen I submit an exe to win7 machine, a window popup:  \r\n```\r\nPPLinject.exe - Cannot find entry point\r\nUnable to locate the program entry point GetProcessInformation in the dynamic link library KERNEL32.dll.\r\n```\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\nJust submit an exe to win7 machine  \r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | latest\r\n| OS version       | Ubuntu 22.04, Windows 7\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: Same problem,\r\nAnd I find that it may cased by Windows 7 didn't include \"GetProcessInformation \" in KERNEL32.dll\nComment: Unfortunately there isn't enough information here to allow me to understand the problem. Pplinject should not be invoked upon launching a simple exe, and is only intended for more complex detonations on win10. Therefore \"an exe\" and the lack of the relevant analysis log there isnt enough for me to see what might be going on. \nComment: > Unfortunately there isn't enough information here to allow me to understand the problem. Pplinject should not be invoked upon launching a simple exe, and is only intended for more complex detonations on win10. Therefore \"an exe\" and the lack of the relevant analysis log there isnt enough for me to see what might be going on.\r\n\r\nThank you for your reply, If I upload the kvm virtual file, will it help you to make sure what happend? thank you\r\n\nComment: What is kvm virtual file?kvm vm? No, just share analysis.log it is inside\r\nof analysis folder/web\r\n\r\nEl dom, 29 oct 2023, 9:06, Irish-kw ***@***.***> escribi\u00f3:\r\n\r\n> Unfortunately there isn't enough information here to allow me to\r\n> understand the problem. Pplinject should not be invoked upon launching a\r\n> simple exe, and is only intended for more complex detonations on win10.\r\n> Therefore \"an exe\" and the lack of the relevant analysis log there isnt\r\n> enough for me to see what might be going on.\r\n>\r\n> Thank you for your reply, If I upload the kvm virtual file, will it help\r\n> you to make sure what happend? thank you\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1799#issuecomment-1784028636>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH35357OL3EFJAVMGNYDYBYE7VAVCNFSM6AAAAAA6EBF63CVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTOOBUGAZDQNRTGY>\r\n> .\r\n> You are receiving this because you are subscribed to this thread.Message\r\n> ID: ***@***.***>\r\n>\r\n\nComment: [analysis.log](https://github.com/kevoreilly/CAPEv2/files/13197565/analysis.log)\r\nis this corret?\r\n\r\nI just upload the installation of chrome.exe to WIN7 32 bit\r\n\r\n![IMG_2068](https://github.com/kevoreilly/CAPEv2/assets/49675917/e6d92e6b-c528-4dde-aff5-1676dcffd675)\r\n![IMG_2069](https://github.com/kevoreilly/CAPEv2/assets/49675917/46cb4cfb-cffe-4812-8e46-387399c6e88c)\r\n\nComment: [analysis.log](https://github.com/kevoreilly/CAPEv2/files/13197575/analysis.log)  \r\n![0001](https://github.com/kevoreilly/CAPEv2/assets/18598419/96c6aaf9-9027-498a-8c02-22889e5e4670)  \r\n\nComment: Ok so this is a failure of the tlsdump auxiliary module. It's not an essential part of the detonation so it could just be removed but the failure suggests a lack of necessary privileges in the launch of the agent.\nComment: Kev maybe we can add check of win version and if is win7 we just return\r\nfrom tlsdump?\r\n\r\nEl dom, 29 oct 2023, 9:47, kevoreilly ***@***.***> escribi\u00f3:\r\n\r\n> Ok so this is a failure of the tlsdump auxiliary module. It's not an\r\n> essential part of the detonation so it could just be removed but the\r\n> failure suggests a lack of necessary privileges in the launch of the agent.\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1799#issuecomment-1784037224>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH32CY2DPL55CMMRPOYTYBYCZJAVCNFSM6AAAAAA6EBF63CVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTOOBUGAZTOMRSGQ>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: Yeah I can do that in the loader.\r\n\r\nStill here they lack the sedebug privilege from launching as admin, possibly uac enabled.\nComment: @kevoreilly You are right. It's UAC problem. After I disable UAC, all things are fine.  \r\nThank you very much!  \nComment: > Yeah I can do that in the loader.\r\n> \r\n> Still here they lack the sedebug privilege from launching as admin, possibly uac enabled.\r\n\r\nThank you for your reply, I turn off the UAC, now my chrome.exe will be auto install, but still show the error message, \r\nam I missing something ?\r\n\r\nthank you\r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/49675917/5f2d5e81-498c-4470-b213-0970303eee36)\r\n\nComment: > > Yeah I can do that in the loader.\r\n> > Still here they lack the sedebug privilege from launching as admin, possibly uac enabled.\r\n> \r\n> Thank you for your reply, I turn off the UAC, now my chrome.exe will be auto install, but still show the error message, am I missing something ?\r\n> \r\n> thank you\r\n> \r\n> ![image](https://user-images.githubusercontent.com/49675917/278862001-5f2d5e81-498c-4470-b213-0970303eee36.png)\r\n\r\nOK, It works, not show the error message:\r\n\r\n1. Turn off the UAC.\r\n2. Reboot win7\r\n3. create snapshot\r\n4. send sample.exe via CAPE website.\r\n5. cuckoo upload sample.exe to guest.\r\n6. no error message and auto start the sample.exe.\nComment: Great, I think is time to close this issue no?\nComment: > Great, I think is time to close this issue no?\r\n\r\nI'm OK, thank you very much !!\nComment: Yeah, I will close this issue.  \r\nThe core reason is that I download a wrong disable_win7noise.bat by my mistake, just run it but I didn't check the result.  \r\n@Irish-kw You can use https://github.com/kevoreilly/CAPEv2/blob/master/installer/disable_win7noise.bat to do many config for win7.  \r\n\r\nThank you very much!  \nComment: > Yeah, I will close this issue. The core reason is that I download a wrong disable_win7noise.bat by my mistake, just run it but I didn't check the result. @Irish-kw You can use https://github.com/kevoreilly/CAPEv2/blob/master/installer/disable_win7noise.bat to do many config for win7.\r\n> \r\n> Thank you very much!\r\n\r\nok thank you!",
+  "Title: Add package exclusion for web form\nBody: # Remove packages from submission page. Useful when the package application is not available\r\n# Example: packages = chrome,chromium,firefox\nComment: please remove changes from `conf/web.conf` as only default should be touched",
+  "Title: autoit\nBody: None",
+  "Title: nginx build failing\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I did read the README!\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nNginx installed and working\r\n\r\n# Current Behavior\r\n\r\nCompilation and installation fails\r\n\r\n# Failure Information (for bugs)\r\n\r\nNeither pcre nor zlib source links work, I have changed:\r\n`wget https://ftp.pcre.org/pub/pcre/pcre-8.42.tar.gz && tar xzvf pcre-8.42.tar.gz`\r\nto\r\n`wget https://ftp.exim.org/pub/pcre/pcre-8.42.tar.gz && tar xzvf pcre-8.42.tar.gz`\r\nand\r\n`wget https://www.zlib.net/zlib-1.2.11.tar.gz && tar xzvf zlib-1.2.11.tar.gz`\r\nto\r\n`wget https://www.zlib.net/zlib-1.3.tar.gz && tar xzvf zlib-1.3.tar.gz`\r\nand the corresponding line in the configure to:\r\n`--with-zlib=../zlib-1.3 \\`\r\nto make it work, I don't know if I may create a PR...\r\n\r\n## Steps to Reproduce\r\n\r\nsudo ./cape2.sh nginx localhost\r\n\nComment: pushed fix, thanks",
+  "Title: failed after update the cape monitoring DLLs\nBody: # Expected Behavior\r\n\r\ni cloned the CAPEv2 in 2023/10/9 and i setup every thing (poetry install ,data install,windows 10 guest setup,...).\r\n after this clone ,i manually update the clone project with the [commits](https://github.com/kevoreilly/CAPEv2/commits/master) day by day. \r\n\r\n every thing is OK , i can analysis malware and display the report.\r\n\r\ni using : ubuntu 22.04 LTS, KVM, Windows 10  Home as guest.\r\n\r\n\r\n# Current Behavior\r\nuntil i updated the cape monitoring DLLs in this [commit](https://github.com/kevoreilly/CAPEv2/commit/9c5df87b134555ac101943da92e4f138b3f5f7fe), it is not return report as same as before i update DLLs.\r\nthe malware does not executed to return the full report.\r\n\r\n\r\n# Failure Information\r\n\r\ni see in report screenshots (error window) that say:\r\n\r\nAssertion failed:\r\nProgram:C:\\tmpjieau02\\dll\\oYTxcpQs.dll\r\nFile: d:\\work\\3rdparty\\yara\\libyara\\compiler.c\r\nLine: 576\r\n\r\nExpression compiler->errors == 0\r\n\r\nFor information on how your program can cause an assertion failure, see the Visual C++ documentation on asserts\r\n\r\n(press Retry to debug the application - JIT must be enabled)\r\n\r\n# What i did after Failure?\r\ni install in my windows 10 guest : \r\n1- [Microsoft Visual C++ Redistributable 2015, 2017, 2019, and 2022](https://learn.microsoft.com/en-us/cpp/windows/latest-supported-vc-redist?view=msvc-170#visual-studio-2015-2017-2019-and-2022).\r\n 2- .Net using [choco.bat](https://github.com/kevoreilly/CAPEv2/blob/master/installer/choco.bat).\r\n\r\n and i still get same window error.\r\n\nComment: Thanks for the report - sounds like a bad monitor yara. I am afk but will check soon \nComment: I just tested the latest pull and didn't see any issue. Can you please check that the contents of `analyzer/windows/data/yara/` are correct? If that doesn't work, you could maybe try clearing that directory, then testing again. The only yara that has changed is the Formbook one so you could try removing just that as well. Let me know if a bit of trial and error will allow you to pin down which yara is causing your issue.\nComment: i review the `analyzer/windows/data/yara/Formbook.yar`.\r\n\r\nmy mistake was:\r\nadding [this commit code ](https://github.com/kevoreilly/CAPEv2/commit/e4c5d7696bd685cabb5c8517d6fbe0d511e075ce#diff-9f0c79260d33930b425acc8cefb1187a38c716095597ec95bc6750a6556121c6) to `analyzer/windows/data/yara/Formbook.yar`, and it must be added to `data/yara/CAPE/Formbook.yar`.\r\n\r\nthanks for your time kevoreilly.\nComment: Yeah be careful - not sure why you would mod those manually!\nComment: I mean do not modify manually, just use git pull!",
+  "Title: Fixed small typos in the docs\nBody: None",
+  "Title: Updated the routing docs\nBody: I've updated the docs regarding the routing configuration. I've included some troubleshooting information and a couple of examples and helping commands. Also fixed a couple of typos found while skimming through the docs.\r\n\r\nModify the docs as you deem necessary.",
+  "Title: Update views.py\nBody: None",
+  "Title: Bug fix to scheduler.py\nBody: An intended error occurs when there is an exception thrown on `machinery.start(self.machine.label)`. This is because it is trying to start a virtual machine that has not been turned off.\r\nhttps://github.com/kevoreilly/CAPEv2/blob/23f92b58338679d1db8a60b66aee1f5da2acb3ed/lib/cuckoo/core/scheduler.py#L383-#L385\r\n\r\nHowever, this causes the try-except-finally block in this section to stop auxiliary modules before they are being initialized. \r\nhttps://github.com/kevoreilly/CAPEv2/blob/23f92b58338679d1db8a60b66aee1f5da2acb3ed/lib/cuckoo/core/scheduler.py#L436-#L438\r\n\r\nThis throws an unintended exception:\r\n```\r\nOct 11 15:51:43 bobby python3[7291]: 2023-10-11 15:51:43,406 [lib.cuckoo.core.scheduler] ERROR: Task #396: Failure in AnalysisManager.run: local variable 'aux' referenced before assignment\r\nOct 11 15:51:43 bobby python3[7291]: Traceback (most recent call last):\r\nOct 11 15:51:43 bobby python3[7291]:   File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 520, in run\r\nOct 11 15:51:43 bobby python3[7291]:     success = self.launch_analysis()\r\nOct 11 15:51:43 bobby python3[7291]:   File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 446, in launch_analysis\r\nOct 11 15:51:43 bobby python3[7291]:     aux.stop()\r\nOct 11 15:51:43 bobby python3[7291]: UnboundLocalError: local variable 'aux' referenced before assignment\r\nOct 11 15:51:43 bobby python[7291]: 2023-10-11 15:51:43,406 [lib.cuckoo.core.scheduler] ERROR: Task #396: Failure in AnalysisManager.run: local variable 'aux' referenced before assignment\r\n                                    Traceback (most recent call last):\r\n                                      File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 520, in run\r\n                                        success = self.launch_analysis()\r\n                                      File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 446, in launch_analysis\r\n                                        aux.stop()\r\n                                    UnboundLocalError: local variable 'aux' referenced before assignment\r\n```\r\nThis unintended exception would be fixed if we shift `aux` initialization before the try-except block.\nComment: thank you for bring our attention to this, there is better solution, we don't need to start aux if there is any problem with task itself so have properly fixed it here https://github.com/kevoreilly/CAPEv2/commit/bb541c5265eb790e521894a9dea49cc7d028c8b8",
+  "Title: Add more descriptive error messages with possible fixes for some beginner errors\nBody: As suggested, I have added more context to the error messages in resultserver.py for some errors that beginners might encounter. This is in addition to my previous PR #1789 which documented these errors.",
+  "Title: Fix typos and add Troubleshooting Documentation\nBody: I found typos in two places while I was installing this myself so I have fixed it in this PR. I also ran into some errors that took a while to troubleshoot and that mistake can be made by any beginner so I have added how I fixed the issues in `/docs/book/src/start.rst`\r\n\r\nSpecifically, I have documented two errors:\r\n- CuckooCriticalError : Cannot bind ResultServer on port 2042 because it was in use, bailing\r\n- CuckooCriticalError: Unable to bind ResultServer on <IP> [Errno 99]\nComment: thank you\nComment: one tip, it nice to have it in docs, but would maybe make it even better to improve error msgs in code?\nComment: I didn't touch the actual code too much because I'm still not familiar with the codebase. I will change the error messages once I understand the code more.\nComment: Do you know how to use tool called grep?\r\n\r\nEl mar, 10 oct 2023, 19:54, SrivatsaSJoshi ***@***.***>\r\nescribi\u00f3:\r\n\r\n> I didn't touch the actual code too much because I'm still not familiar\r\n> with the codebase. I will change the error messages once I understand the\r\n> code more.\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/pull/1789#issuecomment-1755950703>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH34W6LH23DNLMO2P5HTX6WDWLAVCNFSM6AAAAAA52W6VGKVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTONJVHE2TANZQGM>\r\n> .\r\n> You are receiving this because you modified the open/close state.Message\r\n> ID: ***@***.***>\r\n>\r\n\nComment: example:\r\n\r\n```\r\n\u279c  CAPEv2 git:(staging) \u2717 grep -r \"Cannot bind ResultServer\" .\r\n./lib/cuckoo/core/resultserver.py:                raise CuckooCriticalError(f\"Cannot bind ResultServer on port {port} because it was in use, bailing\")\r\n```\r\n\r\nso that helps you to spot which msg from which file comes",
+  "Title: How to Contribute?\nBody: I just started using this amazing sandbox and I'd like to contribute to the documentation by fixing some typos I found and add some troubleshooting tips in there that I had to solve. How would I go about doing it? Can I just fork the repo, make the changes and submit a PR directly to the `master` branch? Or should it be merged to the `staging` branch first?\r\n\r\nAlso, what is the process to fix bugs in the code? Should I open an issue first? Or can I directly submit a PR with the fix?\r\n\r\nIt'd be helpful if this information was available in the README.\nComment: hello, glad that you found it useful. You can submit PR directly as it removes duplication of job, so you can put description in PR what it fixes/improves/whatever needed. you can tag master, we can always change it to staging if we not sure about that funcionality, so just go the way is comfortable for you to start\nComment: Thank you for the response. I hope I can be useful for the project. \nComment: @doomedraven I forgot to ask one more thing before closing the issue. Is it possible to add this repo as part of Hacktoberfest?\nComment: You don't really need to open, we still getting emails about comments in closed issues.JFYI\r\n\r\nAs you can see in merged PRs there is hacktober stuff yes. Just what I won't respect is submitting like 1typo per PR as that and any other abuse left us without proper swag. You aware that this year is just digital stickers and planting tree right?\nComment: Yes I know. I am becoming interested in this repo and was going to contribute anyway so it'll be great it that also counted towards the Hacktoberfest. I don't plan to abuse this just for the sake of that event",
+  "Title: Fixes\nBody: None",
+  "Title: Make PowerShell Core optional.\nBody: Previously it would default to PowerShell Core (pwsh.exe) if available. With this change, powershell.exe is the default. Submitters can use the option 'pwsh' to select PowerShell Core.",
+  "Title: Update download_yara.py to delete old rules\nBody: The download_yara utility doesn't remove the old rules which are no longer in the repo. Deleting the files before writing the new set of rules.",
+  "Title: Improve DarkGate Config Extractor\nBody: Add more fields and add support for zlib compressed config string",
+  "Title: Bump urllib3 from 2.0.4 to 2.0.6\nBody: Bumps [urllib3](https://github.com/urllib3/urllib3) from 2.0.4 to 2.0.6.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a href=\"https://github.com/urllib3/urllib3/releases\">urllib3's releases</a>.</em></p>\n<blockquote>\n<h2>2.0.6</h2>\n<ul>\n<li>Added the <code>Cookie</code> header to the list of headers to strip from requests when redirecting to a different host. As before, different headers can be set via <code>Retry.remove_headers_on_redirect</code>. (GHSA-v845-jxx5-vc9f)</li>\n</ul>\n<h2>2.0.5</h2>\n<ul>\n<li>Allowed pyOpenSSL third-party module without any deprecation warning. <a href=\"https://redirect.github.com/urllib3/urllib3/issues/3126\">#3126</a></li>\n<li>Fixed default <code>blocksize</code> of <code>HTTPConnection</code> classes to match high-level classes. Previously was 8KiB, now 16KiB. <a href=\"https://redirect.github.com/urllib3/urllib3/issues/3066%3E\">#3066</a></li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/urllib3/urllib3/blob/main/CHANGES.rst\">urllib3's changelog</a>.</em></p>\n<blockquote>\n<h1>2.0.6 (2023-10-02)</h1>\n<ul>\n<li>Added the <code>Cookie</code> header to the list of headers to strip from requests when redirecting to a different host. As before, different headers can be set via <code>Retry.remove_headers_on_redirect</code>.</li>\n</ul>\n<h1>2.0.5 (2023-09-20)</h1>\n<ul>\n<li>Allowed pyOpenSSL third-party module without any deprecation warning. (<code>[#3126](https://github.com/urllib3/urllib3/issues/3126) &lt;https://github.com/urllib3/urllib3/issues/3126&gt;</code>__)</li>\n<li>Fixed default <code>blocksize</code> of <code>HTTPConnection</code> classes to match high-level classes. Previously was 8KiB, now 16KiB. (<code>[#3066](https://github.com/urllib3/urllib3/issues/3066) &lt;https://github.com/urllib3/urllib3/issues/3066&gt;</code>__)</li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/262e3e332209ee93ff70e2b13502c8f20c105ac8\"><code>262e3e3</code></a> Release 2.0.6</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/644124ecd0b6e417c527191f866daa05a5a2056d\"><code>644124e</code></a> Merge pull request from GHSA-v845-jxx5-vc9f</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/740380c59ca2a7c2dceca19e5dba99f6b7060e62\"><code>740380c</code></a> Bump cryptography from 41.0.3 to 41.0.4 (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3131\">#3131</a>)</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/d9f85a749488188c286cd50606d159874db94d5f\"><code>d9f85a7</code></a> Release 2.0.5</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/d41f4122966f7f4f5f92001ad518e5d9dafcc886\"><code>d41f412</code></a> Undeprecate pyOpenSSL module (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3127\">#3127</a>)</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/b6c04cb3e62ef5a0e4947d037c12fb3ca79e024a\"><code>b6c04cb</code></a> Fix a link to &quot;absolute URI&quot; definition (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3128\">#3128</a>)</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/af7c78fa30f5a4e265911371d0c59b6baeddca0f\"><code>af7c78f</code></a> refactor: change double conditional to one (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3118\">#3118</a>)</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/34c13c8e68df6f89890ba08b9fc4fbf87ed21669\"><code>34c13c8</code></a> Refer to current internet standards in docs on proxies (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3124\">#3124</a>)</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/a3e94f218cd8297db73302eadae235f0c832a809\"><code>a3e94f2</code></a> Fix a name of an attribute in docs (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3125\">#3125</a>)</li>\n<li><a href=\"https://github.com/urllib3/urllib3/commit/da69d4f4f95bc7ef9307fc8e0499c2121f1e4791\"><code>da69d4f</code></a> Fix docs build (<a href=\"https://redirect.github.com/urllib3/urllib3/issues/3123\">#3123</a>)</li>\n<li>Additional commits viewable in <a href=\"https://github.com/urllib3/urllib3/compare/2.0.4...2.0.6\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=urllib3&package-manager=pip&previous-version=2.0.4&new-version=2.0.6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: sl\nBody: None",
+  "Title: Add excel to interesting files\nBody: None",
+  "Title: More unpacked file type validation\nBody: None",
+  "Title: Refine darkgate yara and extractor\nBody: None\nComment: Review underway\nComment: Beautiful \u2764\ufe0f ",
+  "Title: improve html package auto selection\nBody: requires sflock2 v0.3.53 or newer",
+  "Title: Fix JS extraction\nBody: None",
+  "Title: Update test_smokeloader.py\nBody: None",
+  "Title: fix sl dup cncs\nBody: None",
+  "Title: If CAPE detected a specific malware threat, this severity should be m\u2026\nBody: \u2026uch higher",
+  "Title: Improved error verbosity\nBody: Slightly improved some error messages in startup.py.",
+  "Title: Staging\nBody: None",
+  "Title: Update test_file_extra_info.py\nBody: None",
+  "Title: Update views.py\nBody: None",
+  "Title: Fix searching by file hashes.\nBody: - For documents whose file information has been normalized to the \"files\"\r\ncollection, we need to search there to find the sha256 of those files\r\nand then do our normal search using that.\r\n- Add back searching by crc32. I think it was mistakenly taken out.\r\n- Remove \"string\" from search page documentation since it was never\r\ncorrectly implemented. There is no top-level \"strings\" field.\r\n- Don't apply the hash suffixes to \"extracted_files_tool\" keys. The\r\ncorresponding value is just the name of the tool. It does not have\r\nsub-keys for the hash types.\r\n- Submit searches using HTTP GET so that they're easy to share. Continue\r\nto accept POST requests, though.\nComment: Thank you ",
+  "Title: Fix searching by file hashes.\nBody: - For documents whose file information has been normalized to the \"files\" collection, we need to search there to find the sha256 of those files and then do our normal search using that.\r\n- Add back searching by crc32. I think it was mistakenly taken out.\r\n- Remove \"string\" from search page documentation since it was never correctly implemented. There is no top-level \"strings\" field.\r\n- Don't apply the hash suffixes to \"extracted_files_tool\" keys. The corresponding value is just the name of the tool. It does not have sub-keys for the hash types.\r\n- Submit searches using HTTP GET so that they're easy to share. Continue to accept POST requests, though.",
+  "Title: merge pytest_async into cape\nBody: from my private fork",
+  "Title: Staging\nBody: None",
+  "Title: dl files matched by yara\nBody: Useful for when you doing parser update and want to get all missed configs instead of reprocess all jobs\nComment: Lovely",
+  "Title: When getting the number of dropped files, payloads, etc. make sure to count files that have been stored in the 'files' collection.\nBody: Without this, new samples would not display the 'dropped' or 'payloads' tabs in the UI because it was returning 0 for the count of that type of file since the sha256 key is not stored in the \"analysis\" collection any more.",
+  "Title: Allow the Dictionary class to be deepcopied.\nBody: None",
+  "Title: Bump cryptography from 41.0.3 to 41.0.4\nBody: Bumps [cryptography](https://github.com/pyca/cryptography) from 41.0.3 to 41.0.4.\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst\">cryptography's changelog</a>.</em></p>\n<blockquote>\n<p>41.0.4 - 2023-09-19</p>\n<pre><code>\n* Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.1.3.\n<p>.. _v41-0-3:\n</code></pre></p>\n</blockquote>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/pyca/cryptography/commit/fc11bce6930e591ce26a2317b31b9ce2b3e25512\"><code>fc11bce</code></a> bump for 41.0.4 (<a href=\"https://redirect.github.com/pyca/cryptography/issues/9629\">#9629</a>)</li>\n<li>See full diff in <a href=\"https://github.com/pyca/cryptography/compare/41.0.3...41.0.4\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=cryptography&package-manager=pip&previous-version=41.0.3&new-version=41.0.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Added some comments to the scaling bounded semaphore usage\nBody: None",
+  "Title: Adding dynamic refresh timer to semaphore,hardening config difference\u2026\nBody: \u2026 and updating the semaphore to available machine to prevent being stuck in scheduler waiting loop",
+  "Title: Make sure to run the suricata naming tests.\nBody: None\nComment: thanks",
+  "Title: Strip things in brackets from determination of detection based on suricata rules.\nBody: Several ET suricata rules have things in brackets, like in \"ET MALWARE [SEKOIA.IO] Win32/Stealc C2 Check-in\". This would cause the detection to be \"Sekoia\" instead of \"Stealc\". Although there is no formal format for the msg field in rules, it seems that things in brackets can, for the most part, be disregarded.\nComment: can you please add a test here? https://github.com/kevoreilly/CAPEv2/blob/master/tests/test_suricata_naming.py im from phone\nComment: Thank you \u2764\ufe0f ",
+  "Title: Implementation of scaling bounded semaphore and improving of the task\u2026\nBody: \u2026ing method(s) in the scheduler\nComment: I will fix test later\nComment: Closes https://github.com/kevoreilly/CAPEv2/pull/1107",
+  "Title: csrf_list\nBody: None",
+  "Title: Staging\nBody: None",
+  "Title: Fix ruff errors.\nBody: None",
+  "Title: Normalize files\nBody: Insert the detonation-independent fields for files in to a separate collection and reference it from the analysis document.\r\n\r\nMany of the fields stored for file objects with the same hash (target.file, dropped, CAPE.payloads, and procdump) are the same, regardless of the detonation. These can take a significant amount of space in the mongo database, so store them in a separate collection holding just those attributes once for each unique file. Keep track of the task ID's that reference them, so that they can be cleaned up later.\nComment: nice stuff\nComment: @tbeadle @doomedraven and how to \"clean them later\"? what's the new workflow?\r\n\r\nAFAICS, currently the `/apiv2/tasks/delete/<task_id>/` has changed the behavior (i.e. it is broken compared to before) as those extra collections are being filled (e.g. `files`), even though the tasks are explicitly deleted\r\n\r\nTL;DR: before, `delete/<task_id>` deleted everything, now junk is pilled up in these separate collections\nComment: yes i spot yesterday more broken stuff like find_sample_by_hash in database\nComment: @stamparm \r\n\r\n> @tbeadle @doomedraven and how to \"clean them later\"? what's the new workflow?\r\n> \r\n> AFAICS, currently the `/apiv2/tasks/delete/<task_id>/` has changed the behavior (i.e. it is broken compared to before) as those extra collections are being filled (e.g. `files`), even though the tasks are explicitly deleted\r\n> \r\n> TL;DR: before, `delete/<task_id>` deleted everything, now junk is pilled up in these separate collections\r\n\r\nFrom https://github.com/kevoreilly/CAPEv2/blob/master/changelog.md#1992023:\r\n\r\n```\r\nIt is recommended to add a regular cron job to call cd /opt/CAPEv2 && sudo -u cape poetry run python ./utils/cleaners.py --delete-unused-file-data-in-mongo to prune these entries that are no longer needed.\r\n```\r\n\r\nWe track which tasks have references to which file objects using the `_task_ids` key of the `files` collection. Using `cleaners.py --delete-unused-file-data-in-mongo` as described above will find ones that have no tasks that reference them any more and delete them. This is done to optimize for deleting large ranges of tasks, such as with `cleaners.py -drs ### -dre ###`. Since Mongo, AFAIK, does not have a way to update the `_task_ids` key and return its new value in the same call (like `UPDATE .... RETURNING ...` in SQL), we'd have to do a separate query after each file being deleted to see if its `_task_ids` key is empty. This could significantly slow down that operation of cleaning many tasks.\r\n\r\nUsing this asynchronous operation of cleaning those unused file objects is able to be done in 1 mongodb call that should be relatively quick, given that an index for `_task_ids` is created in startup.py.\r\n\r\n@doomedraven can you explain more about the find_sample issue you're seeing?\nComment: Can I ask why there was a need for such drastic changes? Everything was\r\nworking fine, and now this seems to me like an overengineering (i.e. too\r\nmuch complications for little to no gain IMHO)\r\n\r\nOn Mon, Oct 16, 2023, 19:49 Tommy Beadle ***@***.***> wrote:\r\n\r\n> @stamparm <https://github.com/stamparm>\r\n>\r\n> @tbeadle <https://github.com/tbeadle> @doomedraven\r\n> <https://github.com/doomedraven> and how to \"clean them later\"? what's\r\n> the new workflow?\r\n>\r\n> AFAICS, currently the /apiv2/tasks/delete/<task_id>/ has changed the\r\n> behavior (i.e. it is broken compared to before) as those extra collections\r\n> are being filled (e.g. files), even though the tasks are explicitly\r\n> deleted\r\n>\r\n> TL;DR: before, delete/<task_id> deleted everything, now junk is pilled up\r\n> in these separate collections\r\n>\r\n> From https://github.com/kevoreilly/CAPEv2/blob/master/changelog.md#1992023\r\n> :\r\n>\r\n> It is recommended to add a regular cron job to call cd /opt/CAPEv2 && sudo -u cape poetry run python ./utils/cleaners.py --delete-unused-file-data-in-mongo to prune these entries that are no longer needed.\r\n>\r\n> We track which tasks have references to which file objects using the\r\n> _task_ids key of the files collection. Using cleaners.py\r\n> --delete-unused-file-data-in-mongo as described above will find ones that\r\n> have no tasks that reference them any more and delete them. This is done to\r\n> optimize for deleting large ranges of tasks, such as with cleaners.py\r\n> -drs ### -dre ###. Since Mongo, AFAIK, does not have a way to update the\r\n> _task_ids key and return its new value in the same call (like UPDATE ....\r\n> RETURNING ... in SQL), we'd have to do a separate query after each file\r\n> being deleted to see if its _task_ids key is empty. This could\r\n> significantly slow down that operation of cleaning many tasks.\r\n>\r\n> Using this asynchronous operation of cleaning those unused file objects is\r\n> able to be done in 1 mongodb call that should be relatively quick, given\r\n> that an index for _task_ids is created in startup.py.\r\n>\r\n> @doomedraven <https://github.com/doomedraven> can you explain more about\r\n> the find_sample issue you're seeing?\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/pull/1753#issuecomment-1764979941>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAHA7UYQG7MQIWPIIE4LPHTX7VXQ7AVCNFSM6AAAAAA46ZUZN2VHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTONRUHE3TSOJUGE>\r\n> .\r\n> You are receiving this because you were mentioned.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: > @stamparm\r\n> \r\n> > @tbeadle @doomedraven and how to \"clean them later\"? what's the new workflow?\r\n> > AFAICS, currently the `/apiv2/tasks/delete/<task_id>/` has changed the behavior (i.e. it is broken compared to before) as those extra collections are being filled (e.g. `files`), even though the tasks are explicitly deleted\r\n> > TL;DR: before, `delete/<task_id>` deleted everything, now junk is pilled up in these separate collections\r\n> \r\n> From https://github.com/kevoreilly/CAPEv2/blob/master/changelog.md#1992023:\r\n> \r\n> ```\r\n> It is recommended to add a regular cron job to call cd /opt/CAPEv2 && sudo -u cape poetry run python ./utils/cleaners.py --delete-unused-file-data-in-mongo to prune these entries that are no longer needed.\r\n> ```\r\n> \r\n> We track which tasks have references to which file objects using the `_task_ids` key of the `files` collection. Using `cleaners.py --delete-unused-file-data-in-mongo` as described above will find ones that have no tasks that reference them any more and delete them. This is done to optimize for deleting large ranges of tasks, such as with `cleaners.py -drs ### -dre ###`. Since Mongo, AFAIK, does not have a way to update the `_task_ids` key and return its new value in the same call (like `UPDATE .... RETURNING ...` in SQL), we'd have to do a separate query after each file being deleted to see if its `_task_ids` key is empty. This could significantly slow down that operation of cleaning many tasks.\r\n> \r\n> Using this asynchronous operation of cleaning those unused file objects is able to be done in 1 mongodb call that should be relatively quick, given that an index for `_task_ids` is created in startup.py.\r\n> \r\n> @doomedraven can you explain more about the find_sample issue you're seeing?\r\n\r\nit just was checking directly instead of add ref_file, my idea is to replace it with just search function from web_utils.py but i don't have free time those days to do that properly\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/lib/cuckoo/core/database.py#L2495-L2564\nComment: > Can I ask why there was a need for such drastic changes? Everything was working fine, and now this seems to me like an overengineering (i.e. too much complications for little to no gain IMHO)\r\n\r\nWe were regularly having detonation documents that would fail to be inserted into Mongo because they exceeded Mongo's document size limit. This was a way to reduce not only the document size but also the overall Mongo storage due to the deduplication.\nComment: @tbeadle you sure about \"deduplication\"? do you have some numbers on reduction, as to be honest, I have doubts on such statement (i.e. I expect that vast majority of files stuffed into mongodb from CAPE is fairly unique)\nComment: I just did a quick check on one of our systems and you are correct, the vast majority are unique--just over 2% of the entries in the 'files' collection have multiple task_ids associated with them.\r\nThe deduplication, however, was really only a secondary outcome of this work. The primary goal was to reduce the size of documents being inserted into the 'analysis' collection so that they don't fail.\nComment: files are uniq if you don't use a lot of `file_extra_info` features(selfextract.conf and custom modules), we do use it a lot at my $dayjob and i saw tons of duplicated files coming from different \"parents\"\nComment: btw speaking of duplicated, we got rid of them in mongo, but we didn't get rid of them on storage. would be nice to develop solution for that too, i will ping you later tbeadle to discuss some ideas",
+  "Title: Rest API docs update\nBody: Ensure that we execute as cape and using 'poetry run' to avoid dependency errors.",
+  "Title: Make sure that we don't process the same plugin multiple times.\nBody: In the case where one plugin module imports another one, it's possible that the same class could be inserted in to the plugin list multiple times. This prevents that from happening.",
+  "Title: Staging\nBody: None",
+  "Title: Staging\nBody: None",
+  "Title: expose tasks reprocess\nBody: Useful when you deploy a fix for extractor and don't want to go to server to reprocess task\nComment: <img width=\"278\" alt=\"Captura de pantalla 2023-09-16 a las 16 53 38\" src=\"https://github.com/kevoreilly/CAPEv2/assets/1856495/ff8d6855-c12d-48a2-bef4-a2afab0c7652\">\r\n\nComment: Beautiful \u2764\ufe0f ",
+  "Title: Don't store an entire text file in \"strings\".\nBody: For text files, the first X bytes (as defined in\r\nprocessing.conf:CAPE->buffer) are stored in the \"data\" key of the data dictionary. We don't need to also store that data in \"strings\". In fact, for large text files, previously we could be storing the entire file in \"strings\". This could result in the document to be inserted in to MongoDB being >16MB, which MongoDB doesn't allow. Don't display the \"strings\" button in the UI in this case.",
+  "Title: Failed to Upload Sample to Linux OS\nBody: # Prerequisites\r\n\r\n- [*] I am running the latest version\r\n- [*] I did read the README!\r\n- [*] I checked the documentation and found no answer\r\n- [*] I checked to make sure that this issue has not already been filed\r\n- [*] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [*] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nin web.conf I change it to enable which I think it releated to upload linux sample files\r\n\r\n![web.conf](https://i.ibb.co/p27kTLg/web-config.png)\r\n\r\n# Current Behavior\r\n\r\nWhen I try to upload sample file that is in .elf format inside .zip file it says \"b'47a78d33ff2b214b026b.zip' - {'error': 'Wrong platform, linux VM selected for windows sample'}\" even if I extract the file and upload .elf file it shows the same error \r\n\r\n# Failure Information (for bugs)\r\n\r\n![Wrong Platform](https://i.ibb.co/Csg55qd/wrong-platform.png)\r\n\r\n## Context\r\n\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| OS version       | Ubuntu 20.04.6 Server AMD 64\r\n\r\n## Failure Logs\r\n\r\nNo Logs found\nComment: did you restart web service after your change?\nComment: Prob I forgot to do it.\r\nNow it didn't show me  \"Submission Failed!\", but it shows \"failed_analysis\". I believe it's related to the agent.\r\n\r\nClose the issue\r\nThank you!\nComment: logs will have the answer",
+  "Title: Add feature toggle for checking path safety\nBody: We encountered an issue that since we store our `analyses` folder in a separate mount and create a symlink to `/opt/CAPEv2/storage`, we couldn't serve content on cape web UI since we would fail the `path_safe` function.\r\n\r\nWe added an option to toggle off this feature (default is that the feature is **enabled**)\nComment: as i don't have permissions to edit your PRs\r\n\r\n```\r\n[security]\r\n# When using mounted folder you might want to set to no\r\ncheck_path_safe = yes\r\n```\r\n\r\nanother file, restore license header + \r\n```\r\n-    if not web_cfg.security or web_cfg.security.get('check_path_safe', True):\r\n+    if web_cfg.security.check_path_safe:\r\n```\nComment: Thanks, I did the changes you suggested\nComment: license header still missed\nComment: Right, brought it back. Sorry about that\nComment: thanks, idk why i don't have permissions, otherwise i would change it by myself",
+  "Title: Small fix for office parsing\nBody: Handle a case where the child object is `xml.dom.minidom.Text` and does not have `_get_tagName` function",
+  "Title: Add pdfminer integration\nBody: Use the [pdf miner package](https://pypi.org/project/pdfminer/) to extract more urls statically from pdf files ",
+  "Title: Always run last export when running dll with ordinal range\nBody: Always include the last export in the dll even if `max_dll_exports < available_exports` (relevant for ordinal runs only)",
+  "Title: Add option to filter networks using cidr\nBody: Add an option to put CIDR in `whitelist_network.txt` file in order to whitelist all the ip addresses in that CIDR range\nComment: thanks",
+  "Title: Add wmplayer package\nBody: Some of our users uploaded mp3 files and complained the behavior report was lacking.. so we added support for it\nComment: what? malware in mp3? is that for some exploit or what?\nComment: Yeah I agree that it is very unlikely for an mp3 file to contain malware, and I'll understand if you close this PR. \r\nSome of our users are sending all kinds of files without preliminary checks and just want to \"see\" the file running in the sandbox without harm.\nComment: Os why we started to introduce filtering as we got spam of pictures on\r\ncapesandbox.com, we can't just add useless things that will waste resources\r\nI would suggest you to start rejecting those as there is no threat\r\n\r\nEl mi\u00e9, 13 sept 2023, 11:58, Jonathan Abrahamy ***@***.***>\r\nescribi\u00f3:\r\n\r\n> Yeah I agree that it is very unlikely for an mp3 file to contain malware,\r\n> and I'll understand if you close this PR.\r\n> Some of our users are sending all kinds of files without preliminary\r\n> checks and just want to \"see\" the file running in the sandbox without harm.\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/pull/1740#issuecomment-1717322918>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH346IJGA6LS6JF3YT2TX2F7VXANCNFSM6AAAAAA4WDUJZY>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: Very well, I'll close this PR. Thanks.",
+  "Title: Add utility script to clone guest machines using virtsh\nBody: A utility script that helps with cloning guest machines on kvm using `virtsh` commands.\r\n\r\nThe script input is:\r\n\r\n- original: The name of the virtual machine to clone from\r\n- original-disk: The location of the disk file of the virtual machine to clone from\r\n- prefix: The prefix for the new machine names (e.g for `prefix=win7-` the script will create `win7-1`, `win7-2` etc..)\r\n- storage-path: The directory in which to create all of the new machine's disk files\r\n- count: How many machine should be created\r\n- count-offset: At what number should the count start\r\n- ip: The base IP address machines should start to be created (e.g for base ip 192.168.122.1 the first machine will get the ip 192.168.122.1, the second machine 192.168.122.2 and so forth..)\r\n- machine-type: which machines are being created (win7 or win10)\r\n- dry-run: Only print out the intended work, doesn't really change anything\r\n\r\nThe script will:\r\n- Clone the machines\r\n- Run them for 10 mins\r\n- Take a snapshot and shut them down\r\n- Print out the configuration blocks to place in `kvm.conf`\nComment: Weird, I swear this utility script used to exist in the `utils/` directory\r\n\r\nIntezer has a version of it: https://github.com/intezer/CAPEv2/blob/c7d3ab7be334ba41667bd917cea700f9e9b334b4/utils/clone-machines.py\r\n\r\nEdit:\r\nFound it: https://github.com/kevoreilly/CAPEv2/commits/b81cf7a750c74086063dbd49110b1e6734a7dded/utils/clone-machines.py\nComment: thanks but i don't what this code in main repo, it is in community, everything that is not core related, and not maintained by core devs \r\n\r\nthat script can be found here https://github.com/CAPESandbox/community/tree/master/utils\nComment: Ah I apologize @doomedraven and @cccs-kevin I didn't realize that we already provided the script to the community repo\nComment: np, thats fine :) is just easier for us to separate user code from our code, as normally people drop their code and stop to update it, and in future other users just complain, so i want to have clear separation between core and not core parts. But thanks the script ",
+  "Title: Add html scrapper auxiliary\nBody: - Rendering html using Selenium on the sandbox machines and uploading them back to the cape server for processing\r\n- Cape report will have a new section -html_scrap - which will contain information extracted from the html scrap (will currently only have urls)\r\n- Add an auxiliary module and processing module (see diagram)\r\n- Add geckodriver as one of the auxiliary executables we send to the virtual machine to be used by selenium\r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/10047833/0b833573-1b01-4260-83a5-49548c7ccd89)\r\n\nComment: thanks, this is similar this should go to community repository, and dependency in extra/additional_dependencies.txt\r\nalso, we can't modify x.conf, ONLY x.conf.default\nComment: Thanks @yoniabrahamy this looks like an interesting feature.\r\n\r\nFrom a pure language perspective I thought it might be worth pointing out that 'scrapper' is related to the verb 'to scrap' which means to throw something away as rubbish. I assume here the intended meaning is 'to scrape' websites for which the appropriate noun would be 'scraper' with a single p. Obviously this does not affect the technical output but I thought it might be worth getting the nomenclature right from the start.\nComment: Thanks for the feedback @doomedraven. I'll create a PR in the community repo with the auxiliary and processing module, and organize the dependency and config in this PR.\r\n\r\nIs it ok to leave the geckodriver.exe as part of this PR?\nComment: no, everything should go there as we don't need those files in core, they are not core and its pretty big file, you can leave the resultserver folder part here and `conf/processing.conf.default` part, the rest to community, but remember we don't touch `conf/processing.conf` so you need to remove those changes\nComment: this looks good thanks, once the rest is merged into community i will merge this\nComment: Thanks @doomedraven!\r\n\r\nThe community PR is here: https://github.com/CAPESandbox/community/pull/382\r\n\r\n@kevoreilly I also changed the naming of the module as you suggested :)\nComment: thanks for helping to split and move this to community",
+  "Title: the guest initialization hit the critical timeout, analysis aborted\nBody: Hey!\r\n\r\nI created two VMs on VMV (1st is Windows 10 21H2 and 2nd is Windows 10 22H2). Created a snapshot, installed python3 on both of them, gave them static IP in hostonly mode, put agent.py on Task Scheduler when log on with high privilege. When I ping them work perfect.\r\n\r\nBut when I submit the malware from UI  and choose any of these Windows 10 vm I see it turn vm on and look good but after 3-5 minutes I see the result in UI \"failed_analysis\" and command line \"ERROR: Win10: the guest initialization hit the critical timeout, analysis aborted\"\r\n\r\nWhat is the problem?\r\n\r\nBTW I only run \"poetry run python3 cuckoo.py\" no other command \nComment: ping is not curl\r\nhttps://capev2.readthedocs.io/en/latest/installation/guest/agent.html?highlight=curl#installing-the-agent\nComment: curl: (7) Failed to connect to 192.168.122.190 port 8000: Connection refused\r\n\r\nTo make it clear:\r\n1- I removed the default network and just keep hostonly network \"192.168.122.0/24\" \r\n2- I put agent.pyw on Task Scheduler.\r\n\r\nDo you think the issue related to the network the I deleted?\r\n\r\nThank you!\nComment: 122 is nat, not hostonly, if ping to VM works then no, go and check in task admin if you can see your agent running, does it listen in local on port 8000? i dont remember netstat equivalent for windows \nComment: Not listening. But I read the agent it looks like I have to install python x86 version not x64 even my windows 10 is x64!\r\nIf yes, then the problem is related to the python app that I downloaded must be x84 version not x64\nComment: yes x86!\nComment: + next time don't remove issue template, fill it properly, otherwise i will close issue directly without respond\nComment: > * next time don't remove issue template, fill it properly, otherwise i will close issue directly without respond\r\n\r\nSure, but in this issue I chose \"Open a blank issue.\" which has no template. \r\nThank you for your help!",
+  "Title: Fix analysis task link for recovered task\nBody: None",
+  "Title: Update reschedule route\nBody: reschedule should use old task route\nComment: This pr will disrupt add_pcap and add_static. Please do not merge temporarily.\nComment: Now this pr will not disrupt add_pcap and add_static.  \nComment: Hello, is there anything wrong with this pr?  \nComment: yes need to use tuples instead of lists, but im on PTO so can't update it\nComment: I adjust it. You can check when you go back. Have a good time!  \nComment: Thank you",
+  "Title: Update python-package.yml\nBody: None",
+  "Title: Update reschedule api\nBody: Let reschedule api return new_task_id",
+  "Title: Bugfix in github CI\nBody: None",
+  "Title: Sanitize filename and use appropriate path separator\nBody: Building off of the commit here: https://github.com/kevoreilly/CAPEv2/commit/09a4d35c734aae98812f71411b5145c7b1ba36ea",
+  "Title: clamav\nBody: None",
+  "Title: Mongodb reporting\nBody: If you need to view the report on the web interface, mongodb in reporting.conf should be enabled. Why is mongodb disabled by default in the reporting.conf? What are the considerations?  \r\nhttps://github.com/kevoreilly/CAPEv2/blob/d71eee52f75ee5f357ce9ef636c178f494051ab5/conf/reporting.conf#L80  \r\n\nComment: Bcz for web elastic can be used too\r\n\r\nEl jue, 7 sept 2023, 17:03, qux-bbb ***@***.***> escribi\u00f3:\r\n\r\n> If you need to view the report on the web interface, mongodb in\r\n> reporting.conf should be enabled. Why is mongodb disabled by default in the\r\n> reporting.conf? What are the considerations?\r\n>\r\n> https://github.com/kevoreilly/CAPEv2/blob/d71eee52f75ee5f357ce9ef636c178f494051ab5/conf/reporting.conf#L80\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1729>, or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH35DU7ETCKSCNJURWG3XZHO4TANCNFSM6AAAAAA4PBO53U>\r\n> .\r\n> You are receiving this because you are subscribed to this thread.Message\r\n> ID: ***@***.***>\r\n>\r\n\nComment: We don't support elastic officialy, but i know people that uses it for that. is why mongo is disabled as ES by default is disabled too. \nComment: Thanks. I know.  \r\n\r\nWhen a task finished, I want to view report on web, but it show:  \r\n```\r\nERROR :-(\r\nThe specified analysis does not exist or not finished yet\r\n```\r\n\r\nThat error message is not easy to understand. I check the reporting.conf and find mongodb is disabled.   \r\nI just got used to thinking it was on by default. Maybe I should check conf carefully.  \r\n\nComment: Or follow the changes, but yes I have to update that msg\r\n\r\nEl vie, 8 sept 2023, 1:28, qux-bbb ***@***.***> escribi\u00f3:\r\n\r\n> Thanks. I know.\r\n>\r\n> When a task finished, I want to view report on web, but it show:\r\n>\r\n> ERROR :-(\r\n> The specified analysis does not exist or not finished yet\r\n>\r\n> That error message is not easy to understand. I check the reporting.conf\r\n> and find mongodb is disabled.\r\n> I just got used to thinking it was on by default. Maybe I should check\r\n> conf carefully.\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1729#issuecomment-1710883860>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH32IZOUKJE3ZW7KSKKDXZJKC3ANCNFSM6AAAAAA4PBO53U>\r\n> .\r\n> You are receiving this because you modified the open/close state.Message\r\n> ID: ***@***.***>\r\n>\r\n\nComment: https://github.com/kevoreilly/CAPEv2/commit/a9f155f29d6d6833d47776f7c42f7817f7f69c9b\nComment: hey Cape v2 team \n\nI am facing exact same error here \n\nERROR :-(\nThe specified analysis does not exist or not finished yet\n\n\nand in my reporting.conf mongodb = yes , i checked all file mongodb status everything is working fine reports generates as json form stores in stoorage -> analysese but on WEBGUI i got this error \n\"ERROR :-(\nThe specified analysis does not exist or not finished yet\"",
+  "Title: CobaltStrikeBeacon does not work for http BeaconType\nBody: \r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I did read the README!\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nI would expect that the CobaltStrikeBeacon parser works for all BeaconTypes.\r\n\r\n# Current Behavior\r\n\r\nThe parser does not properly handle BeaconType http.\r\n\r\n# Failure Information (for bugs)\r\n\r\nThis problem was found by using https://github.com/cccs-rs/CAPEv2/blob/master/modules/processing/parsers/CAPE/CobaltStrikeBeacon.py which is a forked copy. Specifically on line https://github.com/cccs-rs/CAPEv2/blob/master/modules/processing/parsers/CAPE/CobaltStrikeBeacon.py#L507 \r\n\r\nThe root cause of this is the commit introduced here: https://github.com/kevoreilly/CAPEv2/commit/15afdd71304a857b386112b50cfe949450bde378\r\n\r\nSince the BeaconType for http is `0`, The code now returns, versus returning the value 0. Which causes the beacon-type field to be None. Later the cccs-rs tries to access the BeaconType field which is now None.\r\n\r\n## Steps to Reproduce\r\n\r\nRun a cobaltstrike sample through this where the beacontype is http and you can see that BeaconType does not show up in the resulting dictionary. When running the same sample through assemblyline and the cccs-rs fork, you end up with an exception.\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 16.04, Windows 10, macOS 10.12.3\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: the proper fix should be `is not None` i guess. can you share any hash for testing?\nComment: fixed here https://github.com/kevoreilly/CAPEv2/commit/b748db339832d4d9662e8393058c7de0cb4d30ad thanks for headups",
+  "Title: Agent not working on Windows XP\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [Y ] I am running the latest version\r\n- [ Y] I did read the README!\r\n- [ Y] I checked the documentation and found no answer\r\n- [ Y] I checked to make sure that this issue has not already been filed\r\n- [ Y] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ Y] I have read and checked all configs (with all optional parts)\r\n\r\n\r\nI'm trying with the last version to run an windows xp sandox. Sadly, the agent script don't work on python 4.4 which is the last suport version of python on Windows XP.\r\n\r\nI'm trying to find a way to compile python 3.6 on windows xp but I don't find any easy solution. \r\n\r\nAny help ? \r\n\r\nSincerely,\r\n\nComment: Nah forget is too old and obsolete\r\n\r\nEl mi\u00e9, 6 sept 2023, 18:53, naurandir01 ***@***.***> escribi\u00f3:\r\n\r\n> About accounts on capesandbox.com\r\n>\r\n>    - Issues isn't the way to ask for account activation. Ping capesandbox\r\n>    in Twitter <https://twitter.com/capesandbox> with your username\r\n>\r\n> This is open source and you are getting *free* support so be friendly!\r\n> Prerequisites\r\n>\r\n> Please answer the following questions for yourself before submitting an\r\n> issue.\r\n>\r\n>    - [Y ] I am running the latest version\r\n>    - [ Y] I did read the README!\r\n>    - [ Y] I checked the documentation and found no answer\r\n>    - [ Y] I checked to make sure that this issue has not already been\r\n>    filed\r\n>    - [ Y] I'm reporting the issue to the correct repository (for\r\n>    multi-repository projects)\r\n>    - [ Y] I have read and checked all configs (with all optional parts)\r\n>\r\n> I'm trying with the last version to run an windows xp sandox. Sadly, the\r\n> agent script don't work on python 4.4 which is the last suport version of\r\n> python on Windows XP.\r\n>\r\n> I'm trying to find a way to compile python 3.6 on windows xp but I don't\r\n> find any easy solution.\r\n>\r\n> Any help ?\r\n>\r\n> Sincerely,\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1727>, or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH36WA7IKR25CKNL4OXLXZCS73ANCNFSM6AAAAAA4NUIHO4>\r\n> .\r\n> You are receiving this because you are subscribed to this thread.Message\r\n> ID: ***@***.***>\r\n>\r\n\nComment: I can't forget, I'm working in the industry and windows xp are still use a lot. \nComment: Well we won't help on this one sorry,nobody pays is for that\nComment: Ok thanks for the reply , I will try any way.But you should considere removing all windows xp from the documentation,\nComment: Your best bet is to use an older version of CAPE for Python 2: https://github.com/ctxis/CAPE\nComment: Regarding use in the industry, I would be impressed to see a current malware sample that works on Windows XP but which does not work on Windows 7!\nComment: It not about if the malware will work only on XP and not 7. Since between XP and 7 you don't have the same architecture, IOC on windows 7 can not work  on windows XP.\nComment: V1 for the win.",
+  "Title: Fix poetry_libvirt_installer.sh renaming\nBody: Fix poetry_libvirt_installer.sh renaming in this commit:  \r\nhttps://github.com/kevoreilly/CAPEv2/commit/5c9cdc5d1f018f27c4241b0ddda80e4d7949c6ed  ",
+  "Title: Fixed formatting for netplan example in routing.rst\nBody: Removed the extra space character.",
+  "Title: No report being generated\nBody: Hello,\r\n\r\nI'm having a lot of trouble installing CAPEv2 Sandbox into my VMWare, tried so many times almost over 15+ times and I finally managed to get it to work however I'm facing an issue upon submitting a file/virus it doesn't report back I don't know why. Although I am using the latest version of CAPE.\r\n\r\n**Things to note:**\r\n- Using latest version of CAPE Sandbox\r\n- OS: Ubuntu 22.04\r\n- Guest machine: Windows 10\r\n\r\n* When I try to run cape with the following command, I get this error:\r\n**sudo -u cape poetry run python3 cuckoo.py** \r\n\r\nit gives me the following error:\r\n**[root] CRITICAL: CuckooDependencyError: Unable to import libvirt**\r\n![1](https://github.com/kevoreilly/CAPEv2/assets/10081102/de001d7d-e472-49a8-9519-ee3de1b15869)\r\n\r\n--------\r\nInstead, I use the following command and it does work:\r\n**python3 cuckoo.py**\r\n![2](https://github.com/kevoreilly/CAPEv2/assets/10081102/2b93fada-227d-4513-a350-6d834a274cb4)\r\n\r\n--------\r\n\r\nMy problem is there is no report generated, I do see the file is being worked on my guest machine (windows 10) and upon completion it doesn't give me any report back but instead this error:\r\n![3](https://github.com/kevoreilly/CAPEv2/assets/10081102/4efd35b7-dc9b-4658-bba9-4a41cc653747)\r\n\r\nI've followed the installation guide using github and the following site:\r\nhttps://capev2.readthedocs.io/_/downloads/en/latest/pdf/\r\n\r\nI'm desperately in need of help, I've really tried everything walkthrough so many guides and asked a lot of people.\r\n\nComment: hello, check extras/poetry_installer.sh it has example command line how to run it properly to install the dependency. In case the rest of the services is running with poetry. \r\n\r\nAbout the report itself, did you activate mongodb in `conf/reporting.conf`? is mongo up`sudo systemctl status mongodb`?\r\n\r\n\nComment: I feel it's worth asking the question: why are you using an unsupported hypervisor when the installation guides strongly recommend using kvm?\nComment: Since when KVM is unsupported? \ud83d\ude31, if you asking about VMware is different thing\nComment: @doomedraven @kevoreilly \r\n\r\nThanks a lot for your quick response, it really means a lot!\r\n\r\nI've firstly done what @doomedraven asked to do, I've checked \"extra\" folder and found both libvirt_installer.sh and yara_installer.sh, found in file it self how to run them and I've done so.\r\n\r\nThe commands I ran were:\r\n`cd /opt/CAPEv2/ ; sudo -u cape poetry run extra/libvirt_installer.sh`\r\n`cd /opt/CAPEv2/ ; sudo -u cape poetry run extra/yara_installer.sh`\r\n\r\nAbout report, yes, mongodb is up and status of it showing below:\r\n![r1](https://github.com/kevoreilly/CAPEv2/assets/10081102/6c2e25fd-3bdf-4113-ba1f-fbdb4415494d)\r\n![mongo](https://github.com/kevoreilly/CAPEv2/assets/10081102/9ea6aaac-1043-4bfd-96a3-d911b90b52b1)\r\n\r\nAfterwards I tried running `sudo -u cape poetry run python3 cuckoo.py` and it worked and tried submitting another file for analysis and finally I got a report back (Probably the missing part for me was the poetry commands which I mentioned above).\r\n![report](https://github.com/kevoreilly/CAPEv2/assets/10081102/6658e03d-3659-41f8-98b4-ee7b446a4dee)\r\n\r\n----------\r\n\r\n@kevoreilly I think that I'm using the correct one, isn't it that one mentioned by the guide, it was installed with kvm-qemu.sh\r\n![kvm](https://github.com/kevoreilly/CAPEv2/assets/10081102/664e06c7-fd7c-4e7c-8b92-bc9d5c490309)\r\n\nComment: great that you got, it, those scripts are called from cape2.sh and kmv-qemu.sh so i suggest you review the logs to see fi something else is broken. I guess Kev was asking about vmware. so issue can be closed?\nComment: @doomedraven Thanks a lot, for now I'm good! Can I reach you guys for any future issues?\nComment: you are welcome. For sure, is why github has issues ;)  you also can ask here generic questions without opening another issue\nComment: Yes I was asking about VMware... it says that is the hypervisor in the first line or am I missing something?\nComment: VMware is the core hypervisor, and then vm with KVM aka nested\r\n\r\nEl jue, 31 ago 2023, 23:34, kevoreilly ***@***.***> escribi\u00f3:\r\n\r\n> Yes I was asking about VMware... it says that is the hypervisor in the\r\n> first line or am I missing something?\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1724#issuecomment-1701815669>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH37MFPM7Y7BUCZF3PK3XYD7PRANCNFSM6AAAAAA4GIGB2E>\r\n> .\r\n> You are receiving this because you modified the open/close state.Message\r\n> ID: ***@***.***>\r\n>\r\n\nComment: Well it's up to you but to me that's a terrible Idea. \nComment: > Well it's up to you but to me that's a terrible Idea. \n\nI see, Umm so what would be the your recommendation for running cape?\n\n@doomedraven ive recently been trying it out today, was working fine all long but suddenly started to slow down and website takes long time to launch, what could be the issue?\nComment: Let me first say that when I began the CAPE project, I used VMware. I even created the `vmwareserver` and `vmwarerest` machinery modules in CAPE to allow it to run on VMware Workstation 12 and 15, in addition to the existing `vmware` machinery module for ESX.\r\n\r\nHowever, I ran the Windows VMs directly on a single hypervisor. After a few years on VMware someone known as doomedraven introduced me to custom KVM and I realised that a massive slew of anti-virtualisation techniques in malware did not work against KVM like they did against VMware. That was enough for me as the top priority is malware detonation.\r\n\r\nBut actually here, my first recommendation isn't against VMware per-se, it's the nested setup. Running a Windows VM nested on two hypervisors can only increase the chances of malware detecting it's running in a vm. To boot you will have massive performance penalty for nesting, and for what? \r\n\r\nThere is no technical reason to nest here, CAPE can in theory run in VMware alone with the Ubuntu VM runnning side by side with Windows running directly under VMware too - a single hypervisor.\r\n\r\nBut since the quality of the results should be the main metric, closely followed by performance, we recommend Ubuntu on bare-metal with KVM only. To me the question is, why wouldn't you just use this setup?\nComment: nested setup is fine when you trying to build that first time and can take snapshots, to revert to previous stage. for best performance is obviously the best to run without any other hypervisor behind, due to double virtualization. \r\n\r\nabout slow gui, is probably due to mongodb, idk how much resources you gave to cape server on vmware, so if it doesn't have enough resources everything goes slow. In production my mongo servers takes 300gb of storage and 128gb of ram and that is less than 1w of data. So it all relative and depends of the loads. But as less layers of virtualization you have, more pure resources you can dedicate. \r\n\r\nIf you can move mongo to separate VM/host(with proper resources) and point CAPE to it maybe it will help to speedup, but it alos depends of the features that you have enabled, check `web.conf` for existing_results and similar things, i would suggest disable everything that you don't need for optimisations of resources\nComment: I used snapshots in VMware for the cape server back in the day - yes it is very useful, I may not have been able to succeed without it. But it didn't require nesting.",
+  "Title: Update resultserver.py\nBody: None",
+  "Title: Update human.py\nBody: None",
+  "Title: fix getting data from smtp\nBody: None\nComment: thanks",
+  "Title: file_extra_info: Prefer custom modules over the built-in ones.\nBody: Only 1 is allowed to be stored as the extracted tool, so prefer custom ones.\r\nBy putting the items in the 'futures' dict first, they will be iterated over first when processing the results and thus be preferred.",
+  "Title: Staging\nBody: None",
+  "Title: private folder integration\nBody: None",
+  "Title: Suricata.service crashes when processing PCAP from samples.\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [\u2713] I am running the latest version\r\n- [\u2713] I did read the README!\r\n- [\u2713] I checked the documentation and found no answer\r\n- [\u2713] I checked to make sure that this issue has not already been filed\r\n- [\u2713] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [\u2713] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nAfter fresh deployment with CAPEv2, I expect the PCAP files to be processed without errors.\r\n\r\n# Current Behavior\r\n\r\nWhen attempting to process the sample report after analysis, the UI fails, as shown in the image below:\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/5830788/10d48ecb-5cfc-4f9e-b3eb-33bccb448c42)\r\n\r\nManual processing of the report (utils/process.py) attempt fails as well:\r\nFirst Run:![image](https://github.com/kevoreilly/CAPEv2/assets/5830788/3f96ab87-08b8-4298-a18e-512998e6f824)\r\nSecond Run:![image](https://github.com/kevoreilly/CAPEv2/assets/5830788/871a30ac-29e5-4b22-8972-abfe80ad531c)\r\n\r\n# Failure Information (for bugs)\r\n\r\n1. Further investigation discovered that when a PCAP was submitted to Suricata by CAPE, the Suricata service crashes (with the result 'exit-code'.), making the socket inaccessible by the cape-processor.\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/5830788/34305b19-be3d-421b-aa3d-2e18e8bf4400)\r\n\r\n2. /var/log/suricata/suricata.log has recorded \"Unable to create thread with pthread_create() is 11\" error.\r\n\r\n3. [modules.processing.suricata] would return either error 104 (Connection reset by peer) or error 111 (Connection refused).\r\n\r\n4. Suricata was installed from the cape.sh and is running as cape user and cape group.\r\n/etc/suricata/suricata.yaml\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/5830788/5052b9a0-8192-4f9d-ad73-9c012e774244)\r\n\r\nps aux | grep suricata\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/5830788/98623bfa-34df-450b-86db-9138ff022105)\r\n\r\nls -la /etc/suricata\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/5830788/8bd77bc8-89d7-483b-9700-bfb6acfb1b4e)\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. After Fresh deployment: Start all Cape services.\r\n2. Submit a sample with network routing enabled.\r\n4. Bug occurs, and report fails to generate.\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | commit 616c05523b942370c4db95e0999d298a1b918c2f\r\n| OS version       | Ubuntu 22.04.3 LTS (jammy) x86_64\r\n| Allocated Resource       | Disk Size: 3TB RAM: 48GB Processor: 8 \r\n| Config Files     | processing.conf: default out-of-the-box version\r\n| Suricata Version | v7.0.0\r\n\r\n## Failure Logs\r\n\r\njournalctl -e -u cape-processor\r\n> -- Boot 82881c1b95df40c19562c88c1427c345 --\r\nOgos 26 13:19:59 capev2-virtual-machine systemd[1]: Started CAPE report processor.\r\nOgos 26 13:20:02 capev2-virtual-machine python3[1777]: 2023-08-26 13:20:02,477 [root] INFO: Processing analysis data\r\nOgos 26 13:25:17 capev2-virtual-machine python3[1777]: 2023-08-26 13:25:17,852 [root] INFO: Processing analysis data for Task #1\r\nOgos 26 13:25:17 capev2-virtual-machine python3[1777]: OPTIONAL! Missed dependency: pip3 install https://github.com/CAPESandbox/peepdf/archive/20eda78d7d77fc5b3b652ffc2d8a5b0af796e3dd.zip#egg=peepdf==0.4.2\r\nOgos 26 13:25:17 capev2-virtual-machine python3[1777]: OPTIONAL! Missed dependency: pip3 install -U git+https://github.com/DissectMalware/batch_deobfuscator\r\nOgos 26 13:25:17 capev2-virtual-machine python3[1777]: OPTIONAL! Missed dependency: poetry run pip install -U git+https://github.com/CAPESandbox/httpreplay\r\nOgos 26 13:25:22 capev2-virtual-machine python3[6665]: 2023-08-26 13:25:22,118 [Task 1] [modules.processing.suricata] WARNING: Failed to get pcap status breaking out of loop: [Errno 104] Connection reset >\r\nOgos 26 13:25:22 capev2-virtual-machine python3[6665]: 2023-08-26 13:25:22,118 [Task 1] [modules.processing.suricata] WARNING: Failed to get pcap status breaking out of loop: [Errno 104] Connection reset >\r\nOgos 26 13:25:22 capev2-virtual-machine python3[6665]: /opt/CAPEv2/utils/../lib/cuckoo/common/abstracts.py:987: FutureWarning: Possible nested set at position 5\r\nOgos 26 13:25:22 capev2-virtual-machine python3[6665]:   exp = re.compile(pattern, re.IGNORECASE)\r\nOgos 26 13:25:22 capev2-virtual-machine python3[1777]: 2023-08-26 13:25:22,977 [root] INFO: Reports generation completed\r\nOgos 26 13:33:33 capev2-virtual-machine python3[1777]: 2023-08-26 13:33:33,461 [root] INFO: Processing analysis data for Task #2\r\nOgos 26 13:33:41 capev2-virtual-machine python3[6661]: 2023-08-26 13:33:41,423 [Task 2] [modules.processing.suricata] WARNING: Failed to get pcap status breaking out of loop: [Errno 104] Connection reset >\r\nOgos 26 13:33:41 capev2-virtual-machine python3[6661]: 2023-08-26 13:33:41,423 [Task 2] [modules.processing.suricata] WARNING: Failed to get pcap status breaking out of loop: [Errno 104] Connection reset >\r\nOgos 26 13:33:42 capev2-virtual-machine python3[6661]: /opt/CAPEv2/utils/../lib/cuckoo/common/abstracts.py:987: FutureWarning: Possible nested set at position 5\r\nOgos 26 13:33:42 capev2-virtual-machine python3[6661]:   exp = re.compile(pattern, re.IGNORECASE)\r\nOgos 26 13:33:43 capev2-virtual-machine python3[1777]: 2023-08-26 13:33:43,212 [root] INFO: Reports generation completed\r\nOgos 26 13:43:49 capev2-virtual-machine python3[1777]: 2023-08-26 13:43:49,221 [root] INFO: Processing analysis data for Task #3\r\nOgos 26 13:44:03 capev2-virtual-machine python3[6660]: 2023-08-26 13:44:03,174 [Task 3] [modules.processing.suricata] WARNING: Failed to connect to socket and send command /tmp/suricata-command.socket: [E>\r\nOgos 26 13:44:03 capev2-virtual-machine python3[6660]: 2023-08-26 13:44:03,174 [Task 3] [modules.processing.suricata] WARNING: Failed to connect to socket and send command /tmp/suricata-command.socket: [E>\r\nOgos 26 13:44:06 capev2-virtual-machine python3[6660]: /opt/CAPEv2/utils/../lib/cuckoo/common/abstracts.py:987: FutureWarning: Possible nested set at position 5\r\nOgos 26 13:44:06 capev2-virtual-machine python3[6660]:   exp = re.compile(pattern, re.IGNORECASE)\r\nOgos 26 13:44:08 capev2-virtual-machine python3[1777]: 2023-08-26 13:44:08,231 [root] INFO: Reports generation completed\r\n\r\njournalctl -e -u suricata.service\r\n\r\n> -- Boot 82881c1b95df40c19562c88c1427c345 --\r\n> Ogos 26 13:19:58 capev2-virtual-machine systemd[1]: Starting Suricata IDS/IDP daemon...\r\n> Ogos 26 13:19:58 capev2-virtual-machine suricata[1132]: i: suricata: This is Suricata version 7.0.0 RELEASE running in SYSTEM mode\r\n> Ogos 26 13:19:58 capev2-virtual-machine systemd[1]: Started Suricata IDS/IDP daemon.\r\n> Ogos 26 13:25:22 capev2-virtual-machine systemd[1]: suricata.service: Main process exited, code=exited, status=1/FAILURE\r\n> Ogos 26 13:25:22 capev2-virtual-machine systemd[1]: suricata.service: Failed with result 'exit-code'.\r\n> Ogos 26 13:30:30 capev2-virtual-machine systemd[1]: Starting Suricata IDS/IDP daemon...\r\n> Ogos 26 13:30:30 capev2-virtual-machine suricata[8134]: i: suricata: This is Suricata version 7.0.0 RELEASE running in SYSTEM mode\r\n> Ogos 26 13:30:30 capev2-virtual-machine systemd[1]: Started Suricata IDS/IDP daemon.\r\n> Ogos 26 13:33:41 capev2-virtual-machine systemd[1]: suricata.service: Main process exited, code=exited, status=1/FAILURE\r\n> Ogos 26 13:33:41 capev2-virtual-machine systemd[1]: suricata.service: Failed with result 'exit-code'.\r\n> Ogos 26 13:49:20 capev2-virtual-machine systemd[1]: Starting Suricata IDS/IDP daemon...\r\n> Ogos 26 13:49:20 capev2-virtual-machine suricata[9438]: i: suricata: This is Suricata version 7.0.0 RELEASE running in SYSTEM mode\r\n> Ogos 26 13:49:20 capev2-virtual-machine systemd[1]: Started Suricata IDS/IDP daemon.\r\n> Ogos 26 13:49:59 capev2-virtual-machine systemd[1]: suricata.service: Main process exited, code=exited, status=1/FAILURE\r\n> Ogos 26 13:49:59 capev2-virtual-machine systemd[1]: suricata.service: Failed with result 'exit-code'.\r\n> Ogos 26 14:20:56 capev2-virtual-machine systemd[1]: Starting Suricata IDS/IDP daemon...\r\n> Ogos 26 14:20:56 capev2-virtual-machine suricata[10534]: i: suricata: This is Suricata version 7.0.0 RELEASE running in SYSTEM mode\r\n> Ogos 26 14:20:56 capev2-virtual-machine systemd[1]: Started Suricata IDS/IDP daemon.\r\n\r\ncat /var/log/suricata/suricata.log\r\n\r\n> [9438 - Suricata-Main] 2023-08-26 13:49:20 Notice: suricata: This is Suricata version 7.0.0 RELEASE running in SYSTEM mode\r\n[9438 - Suricata-Main] 2023-08-26 13:49:20 Info: cpu: CPUs/cores online: 8\r\n[9438 - Suricata-Main] 2023-08-26 13:49:20 Info: suricata: Setting engine mode to IDS mode by default\r\n[9438 - Suricata-Main] 2023-08-26 13:49:20 Info: exception-policy: master exception-policy set to: auto\r\n[9438 - Suricata-Main] 2023-08-26 13:49:20 Info: suricata: Use pid file /tmp/suricata.pid from config file.\r\n[9440 - Suricata-Main] 2023-08-26 13:49:20 Info: privs: dropped the caps for main thread\r\n[9440 - Suricata-Main] 2023-08-26 13:49:20 Info: logopenfile: fast output device (regular) initialized: fast.log\r\n[9440 - Suricata-Main] 2023-08-26 13:49:20 Info: logopenfile: eve-log output device (regular) initialized: eve.json\r\n[9440 - Suricata-Main] 2023-08-26 13:49:20 Info: logopenfile: stats output device (regular) initialized: stats.log\r\n[9440 - Suricata-Main] 2023-08-26 13:49:20 Info: counters: Alerts: 0\r\n[9440 - Suricata-Main] 2023-08-26 13:49:20 Warning: detect: No rule files match the pattern /etc/suricata/rules/suricata.rules\r\n[9440 - Suricata-Main] 2023-08-26 13:49:20 Warning: detect: 1 rule files specified, but no rules were loaded!\r\n[9440 - Suricata-Main] 2023-08-26 13:49:20 Info: threshold-config: Threshold config parsed: 0 rule(s) found\r\n[9440 - Suricata-Main] 2023-08-26 13:49:20 Info: detect: 0 signatures processed. 0 are IP-only rules, 0 are inspecting packet payload, 0 inspect application layer, 0 are decoder event only\r\n[9440 - Suricata-Main] 2023-08-26 13:49:20 Info: unix-manager: unix socket '/tmp/suricata-command.socket'\r\n[9440 - Suricata-Main] 2023-08-26 13:49:20 Notice: threads: Threads created ->   Engine started.\r\n[9441 - US] 2023-08-26 13:49:59 Info: unix-socket: Added file '/opt/CAPEv2/storage/analyses/3/dump.pcap' to list\r\n[9441 - US] 2023-08-26 13:49:59 Info: unix-socket: pcap-file.tenant-id not set\r\n[9441 - US] 2023-08-26 13:49:59 Info: unix-socket: Starting run for '/opt/CAPEv2/storage/analyses/3/dump.pcap'\r\n[9441 - US] 2023-08-26 13:49:59 Info: logopenfile: fast output device (regular) initialized: fast.log\r\n[9441 - US] 2023-08-26 13:49:59 Info: logopenfile: eve-log output device (regular) initialized: eve.json\r\n[9441 - US] 2023-08-26 13:49:59 Info: logopenfile: stats output device (regular) initialized: stats.log\r\n[9441 - US] 2023-08-26 13:49:59 Error: threads: Unable to create thread with pthread_create() is 11\r\n\r\n\nComment: hello thanks for the detailed info. It looks like there is some suricata problem, that is not related to cape, i would suggest to start google this error:\r\n> /var/log/suricata/suricata.log has recorded \"Unable to create thread with pthread_create() is 11\" error. \r\n\r\n\r\n\r\n\nComment: Hi @doomedraven , thanks for your swift response.\r\n\r\nYes, I believe it is related to Suricata as well. I have been googling for a while on this issue and found that this is related to resource limitation or availability for Suricata to create threads or access threads. Resource limitation could not be an issue here. \r\nIf I run Suricata as root, it executes the command. However, when it runs as cape user, it doesn\u2019t.\r\n\r\n![Picture1](https://github.com/kevoreilly/CAPEv2/assets/5830788/07584e93-2a6e-4eb3-b84e-2dcd4f4e4f54)\r\n\r\nUser permission shouldn\u2019t be the issue here since this is a fresh copy of Suricata installed from ./cape.sh and running as cape user (user and group).\r\n\r\nI have also tried reinstalling cape in Ubuntu 20.04, 22.04.1 with this commit, failed as well.\r\n\nComment: Suricata is installed from apt, so is not custom suricata, maybe your\r\nsystem is low on resources?idk I first time see this issue\r\n\r\nEl dom, 27 ago 2023, 6:18, jackers ***@***.***> escribi\u00f3:\r\n\r\n> Hi @doomedraven <https://github.com/doomedraven> , thanks for your swift\r\n> response.\r\n>\r\n> Yes, I believe it is related to Suricata as well. I have been googling for\r\n> a while on this issue and found that this is related to resource limitation\r\n> or availability for Suricata to create threads or access threads. Resource\r\n> limitation could not be an issue here.\r\n> If I run Suricata as root, it executes the command. However, when it runs\r\n> as cape user, it doesn\u2019t.\r\n>\r\n> [image: Picture1]\r\n> <https://user-images.githubusercontent.com/5830788/263508025-07584e93-2a6e-4eb3-b84e-2dcd4f4e4f54.png>\r\n>\r\n> User permission shouldn\u2019t be the issue here since this is a fresh copy of\r\n> Suricata installed from ./cape.sh and running as cape user (user and group).\r\n>\r\n> I have also tried reinstalling cape in Ubuntu 20.04, 22.04.1 with this\r\n> commit, failed as well.\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1717#issuecomment-1694565723>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH32N7TS3HRWH4AC37ZDXXLDBJANCNFSM6AAAAAA37ZSJGA>\r\n> .\r\n> You are receiving this because you were mentioned.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: I guess 48GB RAM + i9 is sufficient for Suricata. \r\nI will test out more fixes and post here if any are working.\r\n\r\nThanks.\r\n\r\n\nComment: Yes more than enough,maybe there is some new limitation idk, let us know\r\nwhat you find\r\n\r\nEl dom, 27 ago 2023, 9:25, jackers ***@***.***> escribi\u00f3:\r\n\r\n> I guess 48GB RAM + i9 is sufficient for Suricata.\r\n> I will test out more fixes and post here if any are working.\r\n>\r\n> Thanks.\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1717#issuecomment-1694593632>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH352SDJW4SASDJVYOTTXXLY7TANCNFSM6AAAAAA37ZSJGA>\r\n> .\r\n> You are receiving this because you were mentioned.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: So I have tried the following, but resulted with no luck:\r\n\r\n1. Re-installation of fresh copies of VM.\r\n2. Install on other laptops.\r\n3. Install on 22.04.01 / 02 and 20.04 (with python 3.11)\r\n4. Downgrade Suricata to 6.0.13.\r\n\r\nUpdate: I have posted the issue and found the solution here: https://forum.suricata.io/t/suricata-service-crashes-with-pthread-create-is-11-error-when-processing-pcap-with-capev2/3870/3\nComment: thank you, interesting, run-as was there for years working fine\nComment: ok is not run-as as we run suricata as root. so run-as should be more than fine\nComment: I did both solution and test things out, limit-noproc is more likely to be the issue.\nComment: yes im gonna add that to configuration, thanks for posting solution\nComment: Sure thing, thanks. \r\n\r\nThe issue for Suricata has been solved, but i still cannot get the report generated. No error etc from the processor. \nComment: btw i just spot in your how you run suricata in cape and spot a problem, you should use this https://github.com/kevoreilly/CAPEv2/blob/master/systemd/suricata.service as you can see it runs as root and systemd.\r\n\r\ndo you get failed_analysis or something like that? did you try process in debug mode? `-d`\nComment: Sure thing, will use that. \r\n\r\nMost of the setups i did were out-of-the-box with some essential confirg (i.e kvm.conf, cuckoo.conf) to get it run before further tweaks were done.\r\n\r\n**do you get failed_analysis or something like that? did you try process in debug mode? -d**\r\nI just ran a fresh analysis, but don't see any error in analysis.log. Same thing with the \"-d\"\r\nThe \"failed\" keywords I found from the debug mode were only these (not in all case):\r\n> 2023-08-30 07:14:16,917 [Task 6] [modules.processing.suricata] WARNING: Suricata returned a Exit Value Other than Zero: b'E: privs: capng_change_id for main thread failed\\n'\r\n\r\n\r\n\nComment: so with no report generation can you describe a bit more what do you expect? no data in webgui? mongo enabled? is data in folder `storage/analyses/<task_id>?`\nComment: So what happened with the report generation was weird, \r\n\r\nAfter the analysis, the status field was updated to \"reported\"\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/5830788/e40449b9-5f78-4af4-85d4-e1cca5c664bd)\r\n\r\nHowever, when clicked, it says\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/5830788/30965ce9-8631-4448-8154-4e915b115dbe)\r\n\r\nSo i checked with` journalctl -e -u cape-processor` and found that there were no error, all was fine.\r\n\r\n> Ogos 30 07:28:56 jphd-virtual-machine python3[1674]: 2023-08-30 07:28:56,626 [root] INFO: Processing analysis data for Task #9\r\n> Ogos 30 07:28:59 jphd-virtual-machine python3[2422]: 2023-08-30 07:28:59,445 [Task 9] [modules.processing.suricata] WARNING: Suricata returned a Exit Value Other than Zero: b'E: privs: capng_change_id f>\r\n> Ogos 30 07:28:59 jphd-virtual-machine python3[2422]: 2023-08-30 07:28:59,445 [Task 9] [modules.processing.suricata] WARNING: Suricata returned a Exit Value Other than Zero: b'E: privs: capng_change_id f>\r\n> Ogos 30 07:28:59 jphd-virtual-machine python3[1674]: 2023-08-30 07:28:59,561 [root] INFO: Reports generation completed\r\n> \r\n\r\nI investigated the analysis.log and `sudo -u cape poetry run python3 utils/process.py 9` and found nothing alarming.\r\n\r\n> capev2@CAPEv2-virtual-machine:/opt/CAPEv2$ sudo -u cape poetry run python3 utils/process.py 9\r\n> XLMMacroDeobfuscator: pywin32 is not installed (only is required if you want to use MS Excel)\r\n\r\nI `ls -la` the folder and found that there were artifacts indeed . \r\n\r\n> capev2@CAPEv2-virtual-machine:/opt/CAPEv2$ ls -la storage/analyses/9\r\n> total 156\r\n> drwxr-xr-x 19 cape cape  4096 Ogos 30 07:28 .\r\n> drwxr-xr-x 11 cape cape  4096 Ogos 30 07:28 ..\r\n> -rw-r--r--  1 cape cape 17252 Ogos 30 07:28 analysis.log\r\n> drwxr-xr-x  2 cape cape  4096 Ogos 30 07:25 aux\r\n> lrwxrwxrwx  1 cape cape    93 Ogos 30 07:24 binary -> /opt/CAPEv2/storage/binaries/9e7d694ed87ae95f9c25af5f3a5cea76188cd7c1c91ce49c92e25585f232d98e\r\n> drwxr-xr-x  2 cape cape  4096 Ogos 30 07:25 CAPE\r\n> -rw-r--r--  1 cape cape     0 Ogos 30 07:25 cuckoo.log\r\n> drwxr-xr-x  2 cape cape  4096 Ogos 30 07:28 curtain\r\n> drwxr-xr-x  2 cape cape  4096 Ogos 30 07:25 debugger\r\n> -rw-r--r--  1 cape cape 47643 Ogos 30 07:28 dump.pcap\r\n> drwxr-xr-x  2 cape cape  4096 Ogos 30 07:25 evtx\r\n> drwxr-xr-x  2 cape cape  4096 Ogos 30 07:28 files\r\n> -rw-r--r--  1 cape cape   207 Ogos 30 07:28 files.json\r\n> drwxr-xr-x  2 cape cape  4096 Ogos 30 08:15 logs\r\n> drwxr-xr-x  2 cape cape  4096 Ogos 30 07:25 memory\r\n> drwxr-xr-x  2 cape cape  4096 Ogos 30 07:28 network\r\n> drwxr-xr-x  2 cape cape  4096 Ogos 30 07:25 procdump\r\n> drwxr-xr-x  2 cape cape  4096 Ogos 30 07:28 reports\r\n> drwxr-xr-x  2 cape cape  4096 Ogos 30 07:25 scripts\r\n> drwxr-xr-x  2 cape cape  4096 Ogos 30 07:28 selfextracted\r\n> drwxr-xr-x  2 cape cape  4096 Ogos 30 07:26 shots\r\n> drwxr-xr-x  2 cape cape  4096 Ogos 30 07:25 stap\r\n> drwxr-xr-x  2 cape cape  4096 Ogos 30 07:25 sysmon\r\n> drwxr-xr-x  2 cape cape  4096 Ogos 30 07:25 tlsdump\r\n>\nComment: ok yes, this is tipically bcz it can't insert data into mongo, did you enable mongo in conf/reporting.conf? also is mongo up? `systemctl status mongodb.service`\nComment: You are right,\r\n\r\nso it turns out that my mongo-db was installed, but rather broken (probably after poking left and right for the previous issue with services and permissions).\r\n\r\nI re-installed and refreshed the reporting.conf, it works now.\r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/5830788/6f04eb4b-e8a2-431f-8e74-bdf60a157ec2)\r\n\r\n**BIG** thanks for the help! @doomedraven \nComment: you are welcome, let me know if you have any other issue\nComment: btw instead of pafish, use al-khaser is way much better ;) \nComment: Will look into that, i got Pafish pulled out from my old note from the cuckoo era. So, were using it for testing the initial setup. ",
+  "Title: [Feature Request] CAPE Extractor Output Standardization\nBody: Hey guys! Long time no see \ud83e\udd13\r\n\r\n# Expected Behavior\r\n\r\nWhen running a CAPE extractor located in `./modules/processing/parsers/CAPE/`, we'd like to know what format to expect certain information in a deterministic manner. Similar to other extractor frameworks like MWCP and MACO.\r\n\r\n\r\n# Current Behavior\r\n\r\nCurrently there's no way to tell the output format of the extractor without examining the source code which is inconvenient if trying to run multiple extractors in an automated system like Assemblyline.\r\n\r\n\r\n# Possible Solutions?\r\n - CAPE creates its own output standard for it's extractors that are documented\r\n - CAPE could adopt an existing standard (like MACO) similar to the PR created a year ago, but this would imply there are also UI changes to account for the data in new format if used in `capesandbox.com`\r\n - The extractors could implement a secondary function that we can call manually to translate the configuration into another structured format \r\n\r\n## Context\r\n\r\nOld PR: https://github.com/kevoreilly/CAPEv2/pull/1037\r\n\r\nI look forward to picking up on our discussion!\nComment: leaving this to @kevoreilly  as i don't use/care about public extractors :)\nComment: @kevoreilly any spare time to discuss this??\nComment: I am planning to implement MACO output in addition to 'raw' output. I plan to achieve this by the addition of a conversion function that can be called from a distinct entrypoint than the current `extract_config()`.\r\n\r\nThe idea is for the conversion to internally call `extract_config` to obtain the 'raw' config dict then iterate through the fields converting to the MACO standard.\nComment: That sounds great! Is there anything I can do on my side to help further along the implementation? Maybe add this new entrypoint to the existing parsers that you have?\nComment: someone need to review all the parsers and make standard naming of things like: cnc, cncs, c2, c2s,  and being strings and lists etc. that would be first step, second step is easy wrapper that transforms that\nComment: As an aside, not super important, what do you guys think about putting the extractors in a separate repository and submoduling it into this repository. Similar to what you guys do with the test data?\r\n\r\nOnly reason why I ask is because we currently have to clone the whole repository just to get the extractors, which is a bit much but isn't the end of world if we have to.\nComment: > someone need to review all the parsers and make standard naming of things like: cnc, cncs, c2, c2s, and being strings and lists etc. that would be first step, second step is easy wrapper that transforms that\r\n\r\nWe can start doing a review on our side and try to start creating a standard for naming for things. Once we have that settled, we'll reach out to you guys to see what you guys think.\r\n\r\nIf everyone is happy with the naming, then we can start implementing the MACO conversion entrypoint in each parser and PR it. \r\n\r\nHow does that sound?\nComment: About review sound good, about side repo I don't care, that's Kevin's bit\r\n\r\nEl vie, 8 sept 2023, 16:47, cccs-rs ***@***.***> escribi\u00f3:\r\n\r\n> someone need to review all the parsers and make standard naming of things\r\n> like: cnc, cncs, c2, c2s, and being strings and lists etc. that would be\r\n> first step, second step is easy wrapper that transforms that\r\n>\r\n> We can start doing a review on our side and try to start creating a\r\n> standard for naming for things. Once we have that settled, we'll reach out\r\n> to you guys to see what you guys think.\r\n>\r\n> If everyone is happy with the naming, then we can start implementing the\r\n> MACO conversion entrypoint in each parser and PR it.\r\n>\r\n> How does that sound?\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1716#issuecomment-1711791607>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH366K3EJJUFYDB7LP4LXZMVXNANCNFSM6AAAAAA362LNQA>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: The review and MACO stuff sounds good to me too, happy to help with some conversion functions to get it going.\r\n\r\nThe idea of putting the extractors separate to the main repo doesn't sound unreasonable, the only problem with that is the parsers that depend on dynamic config extraction - obviously they won't be any good to anyone outside of cape! While there may only be a couple of these currently (Ursnif and AgentTesla off the top of my head) I am hoping to make many more like this in the near future!\nComment: Here's something we've whipped up. \r\n\r\nThe idea would be that the extractors would be written following MACO, and would probably go into a `maco` subdirectory rather than the `cape` directory, and from the output you would be able to call `flattened()` to condense the model into something that's more friendly for the UI + other people that prefer a flatter representation of the output.\r\n\r\n### Example 1 - RedLineStealer:\r\n![CAPE_RLS](https://github.com/kevoreilly/CAPEv2/assets/62077998/34c9975d-a014-47e6-952b-89e28675ebea)\r\n\r\n1. Is the current representation of the RLS configuration \r\n2. Is the RLS configuration in the MACO format\r\n3. Is the RLS configution in the MACO format after it's been `flattened()`\r\n\r\nOur thoughts we were to keep as much detail as possible while condensing the output.\r\n\r\n### Example 2 - AgentTesla\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/62077998/1e1d2f97-1bd8-4566-9e27-cfaa2beba96a)\r\nSimilar representation when converting from MACO to `flattened()` in the previous example but highlights how we would show some nested types like [SMTP](https://github.com/CybercentreCanada/Maco/blob/1f5dec4d3b38e37d9918a92668fdce2f63477056/maco/model/model.py#L244)\r\n\r\n### Example 3 - Qakbot\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/62077998/7031c811-240e-4409-ad38-f3a36beb75d8)\r\nIn this particular example, the obvious diff is how we handle multiple C2s while maintaining the context of the network requests (User Agent, request method, headers) and correlating the data by using an identifier when calling `flattened()`.\r\n\r\nWould love to hear your thoughts and would appreciate any feedback you can provide \ud83d\ude00\nComment: hello, well i have suggestion, we had the same problem few years ago at $dayjob. And our own solution was different. \r\n1. We enforce standard of the naming\r\n2. Write a wrapper that traduces config to any other formats(different ingesti\u00f3n tools wants diferente formats)\r\n3. We had different entry poins. Ex:\r\n    1. raw: `config_extract`\r\n    2. maco: `config_extract_maco` - would call to `config_extract` inside to get the raw config, run wrapper on it for transformation and return MACO formatted config\r\n4. This worked very well for us and makes it super easy to integrate to any other tools our extractors with easy mod for their expected output\r\n\r\njust my 2 cents :) \nComment: Yep that is my preferred way too as I am a stickler for the 'raw' config output in addition to a normalised one.\nComment: moved to internal chat",
+  "Title: Add export check to regsvr32 in archive package\nBody: None\nComment: \ud83d\udc4f ",
+  "Title: [Feature Request] Support for IPinfo's IP to Country ASN database\nBody: Requesting the integration of IPinfo's [IP to Country ASN database](https://ipinfo.io/products/free-ip-database). Features of the database:\r\n\r\n- Free as in CC-BY-SA 4.0\r\n- Full accuracy and daily updates\r\n- Includes IPv4 and IPv6 addresses in a single db\r\n- Country + ASN in a single db\r\n- Comes in MMDB format\r\n\r\nMoreover, as the ASN information is included with the database, it could add a new dimension to the malware to the analysis as from our experience we have seen ASN tends to be a more common attribute in group malicious attacks.\r\n\r\nAs far as adopting the database, the IP to Country ASN database is flat you don't need to do deep indexing to get IP information and the database is more predictable.\r\n\r\nPlease let me know what you what you think. If you need any assistance, please let me know. Thanks.\r\n\r\nSchema: https://ipinfo.io/developers/ip-to-country-asn-database\r\n\r\n| FIELD NAME     | EXAMPLE                      | DATA TYPE | DESCRIPTION                                       |\r\n|----------------|------------------------------|-----------|---------------------------------------------------|\r\n| start_ip       | 1.0.16.0                     | TEXT      | Starting IP address of an IP address range        |\r\n| end_ip         | 1.0.31.255                   | TEXT      | Ending IP address of an IP address range          |\r\n| country        | JP                           | TEXT      | ISO 3166 country code of the location             |\r\n| country_name   | Japan                        | TEXT      | Name of the country                               |\r\n| continent      | AS                           | TEXT      | Continent code of the country                     |\r\n| continent_name | Asia                         | TEXT      | Name of the continent                             |\r\n| asn            | AS2519                       | TEXT      | Autonomous System Number                          |\r\n| as_name        | ARTERIA Networks Corporation | TEXT      | Name of the AS (Autonomous System) organization   |\r\n| as_domain      | arteria-net.com              | TEXT      | Official domain or website of the AS organization |\r\n\r\n\r\n\r\n\r\n\nComment: Why not use the current max mind DBS?they are supported already\r\n\r\nEl jue, 24 ago 2023, 16:25, Abdullah ***@***.***> escribi\u00f3:\r\n\r\n> Requesting the integration of IPinfo's IP to Country ASN database\r\n> <https://ipinfo.io/products/free-ip-database>. Features of the database:\r\n>\r\n>    - Free as in CC-BY-SA 4.0\r\n>    - Full accuracy and daily updates\r\n>    - Includes IPv4 and IPv6 addresses in a single db\r\n>    - Country + ASN in a single db\r\n>    - Comes in MMDB format\r\n>\r\n> Moreover, as the ASN information is included with the database, it could\r\n> add a new dimension to the malware to the analysis as from our experience\r\n> we have seen ASN tends to be a more common attribute in group malicious\r\n> attacks.\r\n>\r\n> As far as adopting the database, the IP to Country ASN database is flat\r\n> you don't need to do deep indexing to get IP information and the database\r\n> is more predictable.\r\n>\r\n> Please let me know what you what you think. If you need any assistance,\r\n> please let me know. Thanks.\r\n>\r\n> Schema: https://ipinfo.io/developers/ip-to-country-asn-database\r\n> FIELD NAME EXAMPLE DATA TYPE DESCRIPTION\r\n> start_ip 1.0.16.0 TEXT Starting IP address of an IP address range\r\n> end_ip 1.0.31.255 TEXT Ending IP address of an IP address range\r\n> country JP TEXT ISO 3166 country code of the location\r\n> country_name Japan TEXT Name of the country\r\n> continent AS TEXT Continent code of the country\r\n> continent_name Asia TEXT Name of the continent\r\n> asn AS2519 TEXT Autonomous System Number\r\n> as_name ARTERIA Networks Corporation TEXT Name of the AS (Autonomous\r\n> System) organization\r\n> as_domain arteria-net.com TEXT Official domain or website of the AS\r\n> organization\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1714>, or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH35RCYZWK757DDRT22LXW5P7BANCNFSM6AAAAAA35DXGYM>\r\n> .\r\n> You are receiving this because you are subscribed to this thread.Message\r\n> ID: ***@***.***>\r\n>\r\n\nComment: we only use geoip location to get country code. the structure of data to access CC is different, which could be just an if, but still, i don't see what value it adds. im missing something some context?\r\n```\r\ndef _get_cn(self, ip):\r\n        if proc_cfg.network.country_lookup:\r\n            maxminddb_client = get_maxminddb_client()\r\n            if maxminddb_client:\r\n                try:\r\n                    return maxminddb_client.get(ip).get(\"country\", {}).get(\"names\", {}).get(\"en\", \"unknown\")\r\n                except Exception:\r\n                    log.error(\"Unable to resolve GEOIP for %s\", ip)\r\n        return \"unknown\"\r\n```\r\n\r\nso im not sure which benefits we will get from integrating another one\nComment: @doomedraven That is a good question.\r\n\r\n- Daily updates with full accuracy. That is the main benefit. MaxMind's data is updated on a biweekly basis. Also, we don't do range clustering, which is a common way to reduce accuracy for some free databases. For example, some providers geolocate down to `/24`  ranges for individual countries. Our free IP to Country database is a subset of the geolocation database with no compromise to accuracy. \r\n- Inclusion of ASN information. If you are analyzing malware origins, you will find that ASN provides a [more interesting insight into the source](https://twitter.com/reincdr/status/1687440483755450368). Country to IP does provide some context. However, with TOR, VPN and hosting services being used, you can find common patterns by looking into ASN data. ASN provides information on who owns an IP range. With one db, you get both ASN and country information.\r\n\r\nIf you can share an IP log db with me, I can look into common patterns using ASN and country data.\r\n\r\nFor integrating the database, you need to use the [MMDB reader library](https://github.com/maxmind/MaxMind-DB-Reader-python) and not the client library. As the database is flat in nature, querying field information is as simple as this:\r\n\r\n```python\r\nimport maxminddb # pip install maxminddb\r\n\r\n# initializing the mmdb reader object\r\nipinfo_reader = maxminddb.open_database(\"./country_asn.mmdb\")\r\n\r\ninput_ip = \"65.54.77.238\"\r\nipinfo_data = ipinfo_reader.get(input_ip)\r\n\r\n# ipinfo_data\r\n'''\r\n{'as_domain': 'microsoft.com',\r\n 'as_name': 'Microsoft Corporation',\r\n 'asn': 'AS8075',\r\n 'continent': 'NA',\r\n 'continent_name': 'North America',\r\n 'country': 'US',\r\n 'country_name': 'United States'}\r\n'''\r\n\r\nipinfo_data[\"country\"]\r\n# US\r\n\r\nipinfo_data[\"asn\"]\r\n# AS8075\r\n\r\nipinfo_data[\"as_name\"]\r\n# 'Microsoft Corporation'\r\n```\nComment: ok thanks, well this change will break all existing setups to all the users, as i don't see this as ultra important feature that should be done NOW, i will consider/play with this when i will have some spare time\nComment: Oh yeah, of course. This is just a feature request. There is absolutely no rush in implementing it. Please explore the db, and if there is any question, please do not hesitate to ask. I really appreciate you considering the proposal.\r\n\r\nI have written some posts on our community that feature the database that you might find interesting: https://community.ipinfo.io/latest\r\n\r\nTools to explore the db:\r\n\r\n- https://github.com/ipinfo/python-db\r\n- https://github.com/ipinfo/mmdbctl\nComment: Hello, with huge delay, i was able to check the databases and I love ipinfo's free database. about to merge after some testing https://github.com/kevoreilly/CAPEv2/pull/1863. Thank you for headups\nComment: @doomedraven Thank you very much! We are so happy to be part of CAPEv2's ecosystem. It really means a lot to us. Thank you very much for the effort and support in integrating our database into the project.",
+  "Title: Added ninja-build dependency, as required by some packages\nBody: None\nComment: i would aprpeciate to know which packages requires them? as qemu bring their own version of ninja\nComment: i did deploy yesterday on new servers, no issues, no need to install it, so need context",
+  "Title: Update cape_type for Rhadamanthys\nBody: I changed it to `RhadamanthysLoader` as the rule is not for core stelaer.",
+  "Title: No machine available of analysis\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ yes] I am running the latest version\r\n- [ yes] I did read the README!\r\n- [ yes] I checked the documentation and found no answer\r\n- [ yes] I checked to make sure that this issue has not already been filed\r\n- [ yes] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ yes] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nI made **win10**  in kvm virtmanager which i installed by using steps mentioned in  cape docs https://capev2.readthedocs.io/en/latest/installation/host/installation.html#to-install-kvm  and i also do a required setting in kvm.conf but i dont know why cuckoo is not getting it but in kvm win10 is working properly\r\n\r\nand  scripts available at your github  https://github.com/kevoreilly/CAPEv2/tree/master/installer\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n023-08-22 11:20:59,234 [lib.cuckoo.core.scheduler] INFO: Using \"kvm\" machine manager with max_analysis_count=0, max_machines_count=10, and max_vmstartup_count=5\r\n2023-08-22 11:20:59,238 [lib.cuckoo.common.abstracts] WARNING: Configuration details about machine win10 are missing: Option win10 is not found in configuration, error: 'Config' object has no attribute **'win10'**\r\n2023-08-22 11:20:59,248 [root] CRITICAL: CuckooCriticalError: **No machines available**\r\n\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 22.04, Windows 10,\r\n\r\n## Failure Logs\r\n023-08-22 11:20:59,248 [root] CRITICAL: CuckooCriticalError: No machines available\r\n2023-08-22 11:22:23,367 [root] ERROR: Can't compile YARA rule: /opt/CAPEv2/data/yara/CAPE/XorStringsNET.yar. Maybe is bad yara but can be missing module.\r\n2023-08-22 11:22:23,552 [lib.cuckoo.core.scheduler] INFO: Using \"kvm\" machine manager with max_analysis_count=0, max_machines_count=10, and max_vmstartup_count=5\r\n2023-08-22 11:22:23,556 [lib.cuckoo.common.abstracts] WARNING: Configuration details about machine win10 are missing: Option win10 is not found in configuration, error: 'Config' object has no attribute 'win10'\r\n2023-08-22 11:22:23,565 [root] CRITICAL: CuckooCriticalError: No machines available\r\n2023-08-22 11:27:25,532 [root] ERROR: Can't compile YARA rule: /opt/CAPEv2/data/yara/CAPE/XorStringsNET.yar. Maybe is bad yara but can be missing module.\r\n2023-08-22 11:27:25,667 [lib.cuckoo.core.scheduler] INFO: Using \"kvm\" machine manager with max_analysis_count=0, max_machines_count=10, and max_vmstartup_count=5\r\n2023-08-22 11:27:25,671 [lib.cuckoo.common.abstracts] WARNING: Configuration details about machine win10 are missing: Option win10 is not found in configuration, error: 'Config' object has no attribute 'win10'\r\n2023-08-22 11:27:25,679 [root] CRITICAL: CuckooCriticalError: No machines available\r\n\r\nPlease include any relevant log snippets or files here.\r\n\r\n\r\n##kvm.conf \r\n\r\n\r\n[kvm]\r\n Specify a comma-separated list of available machines to be used. For each\r\n specified ID you have to define a dedicated section containing the details\r\n on the respective machine. (E.g. cuckoo1,cuckoo2,cuckoo3)\r\n**machines = win10**\r\n\r\ninterface = virbr0\r\n\r\n**[win10]\t\t\t\t\t\t\t]\r\n Specify the label name of the current machine as specified in your\r\n libvirt configuration.\r\nlabel = win10**\r\n\r\n **Specify the operating system platform used by current machine\r\n [windows/darwin/linux].\r\nplatform = windows**\r\n\r\n Specify the IP address of the current virtual machine. Make sure that the\r\n IP address is valid and that the host machine is able to reach it. If not,\r\n the analysis will fail. You may want to configure your network settings in\r\n/etc/libvirt/<hypervisor>/networks/\r\n**ip = 192.168.122.130**\r\n\r\n Specify tags to display\r\n Tags may be used to specify on which guest machines a sample should be run\r\n NOTE - One of the following OS version tags MUST be included for Windows VMs:\r\n winxp,win7, win10, win11\r\n Some samples will only detonate on specific versions of Windows (see web.conf packages for more info)\r\n Example: MSIX - Windows >= 10\r\n tags = winxp,acrobat_reader_6\r\n\r\n (Optional) Specify the snapshot name to use. If you do not specify a snapshot\r\n name, the KVM MachineManager will use the current snapshot.\r\n Example (Snapshot1 is the snapshot name):\r\n snapshot = Snapshot1\r\n\r\n (Optional) Specify the name of the network interface that should be used\r\n when dumping network traffic from this machine with tcpdump. If specified,\r\n overrides the default interface specified in auxiliary.conf\r\n Example (virbr0 is the interface name):\r\n interface = virbr0\r\n\r\n (Optional) Specify the IP of the Result Server, as your virtual machine sees it.\r\n![Screenshot from 2023-08-22 11-40-22](https://github.com/kevoreilly/CAPEv2/assets/113498180/868b2cf2-b37f-41ca-bfc2-1e85438ced22)\r\n\r\n The Result Server will always bind to the address and port specified in cuckoo.conf,\r\n however you could set up your virtual network to use NAT/PAT, so you can specify here\r\n the IP address for the Result Server as your machine sees it. If you don't specify an\r\n address here, the machine will use the default value from cuckoo.conf.\r\n NOTE: if you set this option you have to set result server IP to 0.0.0.0 in cuckoo.conf.\r\nExample:\r\n resultserver_ip = 192.168.122.101\r\n\r\n (Optional) Specify the port for the Result Server, as your virtual machine sees it.\r\n The Result Server will always bind to the address and port specified in cuckoo.conf,\r\n however you could set up your virtual network to use NAT/PAT, so you can specify here\r\n the port for the Result Server as your machine sees it. If you don't specify a port\r\n here, the machine will use the default value from cuckoo.conf.\r\n Example:\r\n resultserver_port = 2042\r\n\r\n Set the machine architecture\r\n Required to auto select proper machine architecture for sample\r\n x64 or x86\r\narch = x64\r\n\r\n (Optional) Specify whether or not the machine should be reserved, meaning that it will\r\n only be used for a detonation if specifically requested by its label.\r\n reserved = no\nComment: hello\r\n\r\n1.  Option win10 is not found in configuration, error: 'Config' object has no attribute 'win10'\r\n2. `[win10] ]` < you see something wrong here right? \r\n3. I don't know in which location is your `kvm.conf` but ensure that you don't have it in `custom/conf/kvm.conf`. but it looks like bad char in step 2 is the problem\nComment: hey I hope you are fine and thanks for your reply  . my issued is resolved now  **]** \nComment: please close issues in future, as you have permission to close your own issues\nComment: hello \r\nI just make a win 7 VM in kvm and trying to install python3.10.6 (32bits) for agent working but 32bit version cannot be installed on  win7 how i can run the agent\nComment: win7 is out of MS support, so you need to insall latest supported python version for win7\nComment: hey I hope you are fine.\r\ni want to know that can cape sandbox analyze apk/android files?\r\nif yes then how I can config it .\r\n\r\nOn Tue, 22 Aug 2023 at 00:38, doomedraven ***@***.***> wrote:\r\n\r\n> hello\r\n>\r\n>    1. Option win10 is not found in configuration, error: 'Config' object\r\n>    has no attribute 'win10'\r\n>    2. [win10] ] < you see something wrong here right?\r\n>    3. I don't know in which location is your kvm.conf but ensure that you\r\n>    don't have it in custom/conf/kvm.conf. but it looks like bad char in\r\n>    step 2 is the problem\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1711#issuecomment-1687639197>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/A3B5QREUZ2OXDE37JRFW3PDXWROWNANCNFSM6AAAAAA3ZNFAMY>\r\n> .\r\n> You are receiving this because you modified the open/close state.Message\r\n> ID: ***@***.***>\r\n>\r\n\nComment: no\nComment: Forget win7, win10 is the only way to go these days",
+  "Title: Bug fix to during_script.py\nBody: Currently there's a bug where the sandbox will wait for the During-Execution Script to complete instead of running it concurrently with the uploaded file.\r\n\r\nThis is because of this line in the `start()` method which blocks the execution of the uploaded file until the During-Execution Script terminates\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/1b9fd7f7a95a509c22d2ce86d7030d2a812409cc/analyzer/windows/modules/auxiliary/during_script.py#L72\r\n\r\nThe auxiliary module will work as intended if we shift the waiting and processing code to the `stop()` method\nComment: @TheMythologist what do you think?\nComment: Upon further testing, the sandbox won't show the stdout output of During-Execution scripts that don't explicitly flush their output or terminate gracefully, so I added a commit to disable buffering in the child process so that the output will be captured\nComment: We're still in the midst of testing the fix, but the bug is there",
+  "Title: only URL submission works on the interface\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ ] I am running the latest version\r\n- [*] I did read the README!\r\n- [*] I checked the documentation and found no answer\r\n- [*] I checked to make sure that this issue has not already been filed\r\n- [*] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [*] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nsubmit files, pcap and perform static analysis from the web interface\r\n\r\n\r\n# Current Behavior\r\nonly url analysis on web interface works. I try to submit files, pcap and run a static analysis; Nothing happens. I have a database and tmp_folder out of space error. But when I tried with submit.py on the command line, there was no problem. \r\n\r\nthe error:\r\n![Capture d\u2019\u00e9cran 2023-08-21 134027](https://github.com/kevoreilly/CAPEv2/assets/118971995/e5daba6e-9d41-45cd-b78d-4ff1f11ab152)\r\n\r\n\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n#restart services\r\nsudo systemctl restart cape.service, cape-web, cape-rooter, cape-processor\r\n\r\n#start for analysis\r\nsudo python3 utils/rooter.py -g cape\r\nsudo -u cape poetry run python3 utils/process.py -p7 auto\r\nsudo -u cape poetry run python3 cuckoo.py -d\r\nsudo -u cape poetry run python3 manage.py runserver 10.128.10.28:8000\r\n\r\n#on the interface \r\n\"files\"/\"pacp\" tab --> choose file to analyze --> submit >> get error\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | 3470e8474decac4de8af887f3a6271f82af36828\r\n| OS version       | Ubuntu 20.04, Windows 10, windows 7\r\n\r\n## Failure Logs\r\n\r\nSince my last attempt:\r\n\r\n**web_server_submission\r\n[web_server.txt](https://github.com/kevoreilly/CAPEv2/files/12396803/web_server.txt)\r\n\r\n**jounalctl -u cape.service\r\n[journal_cape.txt](https://github.com/kevoreilly/CAPEv2/files/12396811/journal_cape.txt)\r\n\r\n**journalctl -u cape-web.service\r\n[journal_cape_web.txt](https://github.com/kevoreilly/CAPEv2/files/12396812/journal_cape_web.txt)\r\n\r\n**journalctl -u cape-processor\r\n[journal_cape_processor.txt](https://github.com/kevoreilly/CAPEv2/files/12396815/journal_cape_processor.txt)\r\n\r\n**cuckoo.log\r\n[cuckoo.log](https://github.com/kevoreilly/CAPEv2/files/12396816/cuckoo.log)\r\n\r\n***process.log\r\n[process.log](https://github.com/kevoreilly/CAPEv2/files/12396818/process.log)\r\n\r\n**postgresql.log\r\n[postgresql-15-main_log.txt](https://github.com/kevoreilly/CAPEv2/files/12396874/postgresql-15-main_log.txt)\r\n\r\n\r\nI don't know where is the real problem bcz there is not serious error in logs. PLSE help me!\r\n\r\nPlease include any relevant log snippets or files here.\r\nMy config\r\n\r\n**kvm.conf\r\n[kvm_conf.txt](https://github.com/kevoreilly/CAPEv2/files/12396716/kvm_conf.txt)\r\n\r\n\r\n**cuckoo.conf\r\n[cuckoo_conf.txt](https://github.com/kevoreilly/CAPEv2/files/12396730/cuckoo_conf.txt)\r\n\r\n**web.conf\r\n[web_conf.txt](https://github.com/kevoreilly/CAPEv2/files/12396733/web_conf.txt)\r\n\r\n\nComment: hello. first of all you don't need to open new issue, you could respond in old one. The second, did you read the error? __READ IT!__ it clearly says temp folder is out of space, so you need to fix that. check your `/tmp`\nComment: hi, i saw the error and tried to fix it before asking for help, with no luck. In fact, I don't understand why , when using submit.py (CLI), i don't get any error. Even for 2kb files on web interface,  it doesn't work!\nComment: idk i don't use submit.py, only web, and if you always get the same error. post output `sudo df -h`\nComment: hi, here is the output:\r\n[output.txt](https://github.com/kevoreilly/CAPEv2/files/12410851/output.txt)\r\n\r\nI don't have a partition mounted on /tmp everything is in (/)\nComment: lol, so please go and read configs, it won't allow you to analyze tasks if there is less than 50Gb of free space on disk. as is production ready out of the box, for the local testing you need to trick those values to anything that you want like 1 or so\nComment: yes I know this constraint but I changed it in cuckoo.conf by decreasing the value. Or do I absolutely need 50GB?\r\n\r\n\r\n\r\n\nComment: You don't need 50, if you don't have a lot of VMS and memdumps enabled, put\r\nreasonable number, as you have 41gb, put 2 or 3, as if you get out of space\r\nall services will crash and you won't be able to do almost nothing on that\r\nserver\r\n\r\nEl mar, 22 ago 2023, 19:16, Iris89-K ***@***.***> escribi\u00f3:\r\n\r\n> yes I know this constraint but I changed it in cuckoo.conf by decreasing\r\n> the value. Or do I absolutely need 50GB?\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1709#issuecomment-1688609336>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3ZNYPRXCQWEHEBTB5LXWTSO5ANCNFSM6AAAAAA3YOTSQ4>\r\n> .\r\n> You are receiving this because you modified the open/close state.Message\r\n> ID: ***@***.***>\r\n>\r\n\nComment: ok so if I recap what you said, for 41gb and memdumps=on ;  \"freespace\" value in cuckoo.conf must be 2 or 3, to be able to use without crash.\r\n\r\nI think I'll disable memory_dump in conf for now and try without it. \nComment: I hope it'll work, thanks for the hint!\nComment: yes you need to restart services to pick the changes",
+  "Title: Gracefully reload the maxmind db at most once every 5 minutes when it has changed\nBody: Testing:\r\nI temporarily changed the cape-processor systemd command to use `-p1` since each process.py process maintains its own latest timestamp for the geolite database. Then, after enabling country_lookup and putting the geolite country database in data/, I reprocessed a sample and verified that it loaded the country info correctly. I then reprocessed the sample and verified that it did not log that it was loading the database again. Then, I 'touch'ed the database to update the mtime and reprocessed the sample again, confirming that the 'loading maxmind database' log message was present again.\nComment: nice, i had something like this in mind for another things in CAPE, this a nice start for me. thanks",
+  "Title: AttributeError: module 'PIL.Image' has no attribute 'ANTIALIAS'\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [#] I am running the latest version\r\n- [#] I did read the README!\r\n- [#] I checked the documentation and found no answer\r\n- [#] I checked to make sure that this issue has not already been filed\r\n- [#] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [#] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\n`lib.cuckoo.common.integrations.parse_pe` does not error on the PIL.Image module not having a attribute.\r\n\r\n# Current Behavior\r\n\r\n```\r\n2023-08-18 08:18:29,707 [Task 100063] [lib.cuckoo.common.integrations.parse_pe] ERROR: module 'PIL.Image' has no attribute 'ANTIALIAS'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/parse_pe.py\", line 622, in get_icon_info\r\n    dhash = self.generate_icon_dhash(img)\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/parse_pe.py\", line 548, in generate_icon_dhash\r\n    image = image.convert(\"L\").resize((hash_size + 1, hash_size), Image.ANTIALIAS)\r\nAttributeError: module 'PIL.Image' has no attribute 'ANTIALIAS'\r\n```\r\n\r\n# Failure Information (for bugs)\r\n\r\nLooks like the version PIL being installed by Poetry does not mesh with how it is being called.\r\n\r\nMaybe the bump of Pillow from 9.4.0 to 9.5.0? Been like two months since I've updated this box and looking at the change logs not seeing anything that appears to be relavent for `lib/cuckoo/common/integrations/parse_pe.py`. Looking at `requirements.txt` the bump in the version of pillow installed is the only thing I am seeing.\r\n\r\n## Steps to Reproduce\r\n\r\n1. Update to the current git version and do the usual.\r\n2. Detonate a pe file.\r\n3. Re-run `sudo -u cape poetry update`\r\n4. Notice there is no change even after re-running it and it not finding anything and restarting cape and cape-processor.\r\n\r\n## Context\r\n\r\nNoticed this while view logs post updating and poetry update reports all the depends as being up to date.\r\n\r\n```\r\n> sudo -u cape poetry update\r\nUpdating dependencies\r\nResolving dependencies... (6.2s)\r\n\r\nNo dependencies to install or update\r\n```\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | 8702bcd21fa6d3b914ccbc0ac583548959160f83\r\n| OS version       | Ubuntu 22.04\r\n\r\n## Failure Logs\r\n\r\n```\r\n2023-08-18 08:19:13,639 [Task 100064] [lib.cuckoo.common.integrations.parse_pe] ERROR: module 'PIL.Image' has no attribute 'ANTIALIAS'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/parse_pe.py\", line 622, in get_icon_info\r\n    dhash = self.generate_icon_dhash(img)\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/parse_pe.py\", line 548, in generate_icon_dhash\r\n    image = image.convert(\"L\").resize((hash_size + 1, hash_size), Image.ANTIALIAS)\r\nAttributeError: module 'PIL.Image' has no attribute 'ANTIALIAS'\r\n```\r\n\nComment: ok since 9.1.0 https://pillow.readthedocs.io/en/stable/releasenotes/9.1.0.html#constants \r\n\r\n\r\ndeprecated | use instead\r\nImage.LANCZOS | Image.Resampling.LANCZOS\r\nImage.ANTIALIAS | Image.Resampling.LANCZOS\r\n\r\n\nComment: pushed to masater, you can git pull and let me know if issue despairs, thanks for headups \nComment: @doomedraven thanks! That seemed to have fixed it. :)\nComment: great",
+  "Title: Is it possible to run windows 2016 server as analysis machine?\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [Y] I am running the latest version\r\n- [Y] I did read the README!\r\n- [Y] I checked the documentation and found no answer\r\n- [Y] I checked to make sure that this issue has not already been filed\r\n- [Y] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [Y] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nI want to know if its possible to run windows 2016 server as  analysis machine in cape sandbox. \r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. step 1\r\n2. step 2\r\n3. you get it...\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 22.04,\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: we don't know, we don't use it, try it :) \nComment: sure :)\nComment: Possible? Yes!\r\n\r\nSupport from us if things don't work? No!\r\n\r\nGood luck \ud83d\udc4d ",
+  "Title: CAPE Agent Failure\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I did read the README!\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nCape agent executes correctly.\r\n\r\n# Current Behavior\r\n\r\nCape agent failure without error status. This can happen on its own but overwhelmingly seems to happen when a lot of activity is seen at the same time by the processor. \r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Submit a few analysis at the same time. Usually all the same type. Can also appear if I submit the same URL again after the first analysis.\r\n2. CAPE Agent failure / Connection reset by peer.\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       Updated today - 08/15/2023 from master.\r\n| OS version       | Ubuntu 22.04, Windows 10s Virtual Machines, VMWare ESXI\r\n\r\n```\r\n2023-08-15 21:06:48,757 [lib.cuckoo.core.guest] INFO: Task #615: Starting analysis on guest (id=REDACTED, ip=X.X.X.X)\r\n2023-08-15 21:06:58,994 [lib.cuckoo.core.guest] INFO: Task #614: Guest is running CAPE Agent 0.11 (id=REDACTED, ip=X.X.X.X)\r\n2023-08-15 21:06:59,699 [lib.cuckoo.core.scheduler] ERROR: CAPE Agent failed without error status, please try upgrading to the latest version of agent.py (>= 0.10) and notify us if the issue persists\r\nTraceback (most recent call last):\r\nFile \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/urllib3/connectionpool.py\", line 790, in urlopen\r\n[2102]:     response = self._make_request(\r\n[2102]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/urllib3/connectionpool.py\", line 496, in _make_request\r\n[2102]:     conn.request(\r\n[2102]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/urllib3/connection.py\", line 402, in request\r\n[2102]:     self.send(chunk)\r\n[2102]:   File \"/usr/lib/python3.10/http/client.py\", line 999, in send\r\n[2102]:     self.sock.sendall(data)\r\n[2102]: ConnectionResetError: [Errno 104] Connection reset by peer\r\n[2102]: During handling of the above exception, another exception occurred:\r\n[2102]: Traceback (most recent call last):\r\n[2102]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/requests/adapters.py\", line 486, in send\r\n[2102]:     resp = conn.urlopen(\r\n[2102]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/urllib3/connectionpool.py\", line 844, in urlopen\r\n[2102]:     retries = retries.increment(\r\n[2102]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/urllib3/util/retry.py\", line 470, in increment\r\n[2102]:     raise reraise(type(error), error, _stacktrace)\r\n[2102]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/urllib3/util/util.py\", line 38, in reraise\r\n[2102]:     raise value.with_traceback(tb)\r\n[2102]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/urllib3/connectionpool.py\", line 790, in urlopen\r\n[2102]:     response = self._make_request(\r\n[2102]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/urllib3/connectionpool.py\", line 496, in _make_request\r\n[2102]:     conn.request(\r\n[2102]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/urllib3/connection.py\", line 402, in request\r\n[2102]:     self.send(chunk)\r\n[2102]:   File \"/usr/lib/python3.10/http/client.py\", line 999, in send\r\n[2102]:     self.sock.sendall(data)\r\n[2102]: urllib3.exceptions.ProtocolError: ('Connection aborted.', ConnectionResetError(104, 'Connection reset by peer'))\r\n[2102]: During handling of the above exception, another exception occurred:\r\n[2102]: Traceback (most recent call last):\r\n[2102]:   File \"/opt/CAPEv2/lib/cuckoo/core/guest.py\", line 126, in post\r\n[2102]:     r = session.post(url, *args, **kwargs)\r\n[2102]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/requests/sessions.py\", line 637, in post\r\n[2102]:     return self.request(\"POST\", url, data=data, json=json, **kwargs)\r\n[2102]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/requests/sessions.py\", line 589, in request\r\n[2102]:     resp = self.send(prep, **send_kwargs)\r\n[2102]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/requests/sessions.py\", line 703, in send\r\n[2102]:     r = adapter.send(request, **kwargs)\r\n[2102]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/requests/adapters.py\", line 501, in send\r\n[2102]:     raise ConnectionError(err, request=request)\r\n[2102]: requests.exceptions.ConnectionError: ('Connection aborted.', ConnectionResetError(104, 'Connection reset by peer'))\r\n[2102]: During handling of the above exception, another exception occurred:\r\n[2102]: Traceback (most recent call last):\r\n[2102]:   File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 355, in launch_analysis\r\n[2102]:     guest.start_analysis(options)\r\n[2102]:   File \"/opt/CAPEv2/lib/cuckoo/core/guest.py\", line 291, in start_analysis\r\n[2102]:     self.upload_analyzer()\r\n[2102]:   File \"/opt/CAPEv2/lib/cuckoo/core/guest.py\", line 196, in upload_analyzer\r\n[2102]:     self.post(\"/extract\", files={\"zipfile\": zip_data}, data=data)\r\n[2102]:   File \"/opt/CAPEv2/lib/cuckoo/core/guest.py\", line 128, in post\r\n[2102]:     raise CuckooGuestError(\r\n[2102]: lib.cuckoo.common.exceptions.CuckooGuestError: CAPE Agent failed without error status, please try upgrading to the latest version of agent.py (>= 0.10) and notify us if the issue persists\r\n```\r\n\r\nThis is my second post on here addressing this issue - my initial post did not gain much traction. Finally got around to making sure everything is up to date and yet this error still persists. Usually if submitting one or two links every few minutes there is no problem, but a few too many in close succession and we are met with this. Thank you for any help!\r\n\r\n\nComment: that is the server side problem that for some reason closes connection, but why it closes it i have no idea. as i rarely see this issue. you will have to invistegate on your own\nComment: Server side meaning on the side of the virtual host or on the side of the Cape host machine? \nComment: cape host machine, aka result server. reasons for that can be 100, like if you have docker for example, it installs it own network driver and in past it was messing a lot with cape's networking, etc. so it really depends on the extra things that you have on your host\nComment: but as we don't experience this, we won't be able to help\nComment: thank you @doomedraven always very helpful and you've given me a good place to start looking",
+  "Title: Fix mongodb too many open files error\nBody: None\nComment: thanks, not saw this one in long time, do you have some custom setup that leaks FDs?\nComment: I should not have any custom settings that cause file descriptor leaks.  \r\nWhen running many tasks, sandbox becomes stuck and MongoDB service has stopped. The mongodb log shows \"too many open files\" error.  \r\nAfter checking cape.sh, I found that the limitNOFILE for MongoDB has been restricted.  \r\nMaybe that is not real cause, but I can not find other error. Do you have any idea?  \nComment: no, in past this was a huge headache in cuckoo and supervisor. is why i moved to systemd. i didn't experienced anymore too many open files but im fine to merge, was just curious about details \nComment: part of error log:  \r\n```log\r\n02:15:54 alice-ubuntu mongodb[2187808]: {\"t\":{\"$date\":\"2023-08-06T02:15:54.001+00:00\"},\"s\":\"E\",  \"c\":\"ASSERT\",   \"id\":23077,   \"ctx\":\"ftdc\",\"msg\":\"Assertion\",\"attr\":{\"error\":\"Location13538: couldn't open [/proc/2187808/stat] Too many open files in system\",\"file\":\"src/mongo/util/processinfo_linux.cpp\",\"line\":79}}\r\n02:15:54 alice-ubuntu mongodb[2187808]: {\"t\":{\"$date\":\"2023-08-06T02:15:54.652+00:00\"},\"s\":\"E\",  \"c\":\"WT\",       \"id\":22435,   \"ctx\":\"thread313\",\"msg\":\"WiredTiger error message\",\"attr\":{\"error\":23,\"message\":{\"ts_sec\":1691288154,\"ts_usec\":652177,\"thread\":\"2187808:0x7f64c5a41640\",\"session_name\":\"log-server\",\"category\":\"WT_VERB_DEFAULT\",\"category_id\":9,\"verbose_level\":\"ERROR\",\"verbose_level_id\":-3,\"msg\":\"__directory_list_worker:46:/data/db/journal: directory-list: opendir\",\"error_str\":\"Too many open files in system\",\"error_code\":23}}}\r\n02:15:54 alice-ubuntu mongodb[2187808]: {\"t\":{\"$date\":\"2023-08-06T02:15:54.652+00:00\"},\"s\":\"E\",  \"c\":\"WT\",       \"id\":22435,   \"ctx\":\"thread313\",\"msg\":\"WiredTiger error message\",\"attr\":{\"error\":23,\"message\":{\"ts_sec\":1691288154,\"ts_usec\":652450,\"thread\":\"2187808:0x7f64c5a41640\",\"session_name\":\"log-server\",\"category\":\"WT_VERB_DEFAULT\",\"category_id\":9,\"verbose_level\":\"ERROR\",\"verbose_level_id\":-3,\"msg\":\"__log_prealloc_once:514:log pre-alloc server error\",\"error_str\":\"Too many open files in system\",\"error_code\":23}}}\r\n```",
+  "Title: Fix filename\nBody: The file could not be found because the name was lowercased before the File object was created.",
+  "Title: Update startup.py\nBody: Handle custom username and default to 'cape'",
+  "Title: Staging\nBody: None",
+  "Title: update Blister Loader yara rule\nBody: None\nComment: Thank you \nComment: this yara doens't match specified sample\nComment: Reasons for rejection:\r\n\r\n- yara didn't match sample\r\n- two original patterns still exist in modified form but unaltered\r\n- one of two new patterns applies to old sample (unnecessary)\r\n- other new pattern is the only pattern to detect new sample, so signature would become effectively a single pattern\nComment: > yara didn't match sample\r\n\r\nPartially correct. \r\nThe mentioned sample did match the string `$xor_dec_new` (which was my intention), the problem was with the condition `2 of them`, which was why the yara didn't match. Only two of those XOR variants found ITW. I would like to have those XOR-based hex strings in YARA.",
+  "Title: Fix: Zipped files defaults to windows platform\nBody: When submitting a zipped elf file, it goes to the windows platform. This fix will return the platform accordingly\nComment: hello interesting, i think we should probably change that to set file - platform relation not only all files and platform, as if you submit different fileformats it will still be a problem\nComment: @kenleejl \r\nI have the same issue when submitting a python file, it goes to Linux platform\nComment: this is not proper implementation as you add platform only in one place to return, that will fail on other returns. i have properly implemented this here https://github.com/kevoreilly/CAPEv2/pull/1701 should be merged on Wednesday, thanks guys for headups about this issue\nComment: merged to master now",
+  "Title: A few things\nBody: - `az.py`: Scale VMSS up on start if # of VMs is 0\r\n- `routing.rst`: Correcting the routing docs\r\n- Adding `verify_rt_table` option in `routing.conf` which affects how CAPE starts up in `startup.py`\nComment: thanks, fixed config",
+  "Title: Update configuration to support multiple DNS servers\nBody: None",
+  "Title: Add config option for if multiple CAPE deployments share the same resource group in Azure\nBody: None",
+  "Title: Fix Yara tests\nBody: - Remove Redline test as rule is no longer present in the repo\r\n- Change `test_yara()` assert to use `yara.StringMatch` to support yara 4.3.1\nComment: thanks",
+  "Title: Incorrect permissions, need help with fixing rooter connexion\nBody: Hi, I'm trying to work on the tool as part of a final year project. And I'm not very familiar with it yet.\r\n\r\nI have a problem with the rooter, I tried to configure internet but after making the changes and launching cape-web I get an error. \r\nI'm stuck here and have no idea what to do, any help would be appreciated plse.\r\n\r\nEnvironment:\r\nGuest VM: Win7 and Win10 - KVM hypervisor\r\nHost VM: Ubuntu 20.04. LTS\r\n\r\nCurrent behavior:\r\nI start the various services (rooter, cuckoo.py, process and web) in order with the following commands:\r\n1.sudo python3 utils/rooter.py -g cape\r\n2. sudo -u cape poetry run python3 cuckoo.py -d\r\n3. sudo -u cape poetry run python3 utils/process.py -p7 auto\r\n4. python3 manage.py runserver 10.128.10.28 :8000\r\n\r\nThen the error occurs at runserver level.\r\n\r\n#cape-rooter.service\r\n![Capture d\u2019\u00e9cran 2023-08-10 163701](https://github.com/kevoreilly/CAPEv2/assets/118971995/89aeba31-19eb-40e6-9462-4fabcb83fe5c)\r\n\r\n#cuckoo.py\r\n![Capture d\u2019\u00e9cran 2023-08-10 163836](https://github.com/kevoreilly/CAPEv2/assets/118971995/3495b4a3-4d5a-4318-9db3-bd969873b45a)\r\n\r\n#rooter.py\r\n![Capture d\u2019\u00e9cran 2023-08-10 164337](https://github.com/kevoreilly/CAPEv2/assets/118971995/21bfee86-b7dd-42e0-b2e7-b10797adf981)\r\n\r\n#process.py\r\n![Capture d\u2019\u00e9cran 2023-08-10 163818](https://github.com/kevoreilly/CAPEv2/assets/118971995/31324a91-0a46-4a5a-befc-42f85676b198)\r\n\r\n#runserver\r\n![Capture d\u2019\u00e9cran 2023-08-10 164149](https://github.com/kevoreilly/CAPEv2/assets/118971995/3be084cc-7c17-45b5-9110-cfb97dbf2cd1)\r\n![Capture d\u2019\u00e9cran 2023-08-10 164228](https://github.com/kevoreilly/CAPEv2/assets/118971995/4031cd27-2890-4afb-a6fa-55a7c59ea614)\r\n\r\n\r\nHere are my different configurations:\r\n\r\n#routing.conf\r\n[routing_conf.txt](https://github.com/kevoreilly/CAPEv2/files/12315850/routing_conf.txt)\r\n\r\n\r\n#netplan\r\n![Capture d\u2019\u00e9cran 2023-08-10 173621](https://github.com/kevoreilly/CAPEv2/assets/118971995/d0fb6f5c-9325-4f0b-80c9-96d9affae383)\r\n\r\n\r\nThe logs \r\nthere's nothing strange in process.log\r\n#cuckoo.log\r\n\r\n2023-08-10 13:33:05,977 [lib.cuckoo.core.scheduler] INFO: Using \"kvm\" machine manager with max_analysis_count=0, max_machines_count=2, and max_vmstartup_count=2\r\n2023-08-10 13:33:06,070 [lib.cuckoo.core.scheduler] INFO: Loaded 2 machine/s\r\n2023-08-10 13:33:06,075 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks\r\n2023-08-10 15:46:01,253 [root] CRITICAL: CuckooStartupError: The rooter is required but we can't connect to it as the rooter is not actually running. (In order to disable the use of rooter, please set route and internet to none in routing.conf)\r\n2023-08-10 15:47:03,078 [root] DEBUG: Importing modules...\r\n2023-08-10 15:47:03,738 [root] DEBUG: Imported \"auxiliary\" modules:\r\n2023-08-10 15:47:03,738 [root] DEBUG: \t `-- Sniffer\r\n2023-08-10 15:47:03,739 [root] DEBUG: Imported \"processing\" modules:\r\n2023-08-10 15:47:03,739 [root] DEBUG: \t |-- CAPE\r\n2023-08-10 15:47:03,739 [root] DEBUG: \t |-- AnalysisInfo\r\n2023-08-10 15:47:03,739 [root] DEBUG: \t |-- BehaviorAnalysis\r\n2023-08-10 15:47:03,739 [root] DEBUG: \t |-- Debug\r\n2023-08-10 15:47:03,740 [root] DEBUG: \t |-- NetworkAnalysis\r\n2023-08-10 15:47:03,740 [root] DEBUG: \t |-- ProcessMemory\r\n2023-08-10 15:47:03,740 [root] DEBUG: \t |-- script_log_processing\r\n2023-08-10 15:47:03,740 [root] DEBUG: \t |-- Suricata\r\n2023-08-10 15:47:03,741 [root] DEBUG: \t `-- UrlAnalysis\r\n2023-08-10 15:47:03,741 [root] DEBUG: Imported \"signatures\" modules:\r\n2023-08-10 15:47:03,741 [root] DEBUG: \t |-- CAPEDetectedThreat\r\n2023-08-10 15:47:03,741 [root] DEBUG: \t |-- CAPE_Compression\r\n2023-08-10 15:47:03,741 [root] DEBUG: \t |-- CAPE_Decryption\r\n2023-08-10 15:47:03,742 [root] DEBUG: \t |-- CAPE_Doppelganging\r\n2023-08-10 15:47:03,742 [root] DEBUG: \t |-- CAPE_EvilGrab\r\n2023-08-10 15:47:03,742 [root] DEBUG: \t |-- CAPE_Injection\r\n2023-08-10 15:47:03,742 [root] DEBUG: \t |-- CAPE_InjectionCreateRemoteThread\r\n2023-08-10 15:47:03,742 [root] DEBUG: \t |-- CAPE_InjectionProcessHollowing\r\n2023-08-10 15:47:03,743 [root] DEBUG: \t |-- CAPE_InjectionSetWindowLong\r\n2023-08-10 15:47:03,743 [root] DEBUG: \t |-- CAPE_PlugX\r\n2023-08-10 15:47:03,743 [root] DEBUG: \t |-- CAPE_RegBinary\r\n2023-08-10 15:47:03,743 [root] DEBUG: \t |-- CAPE_TransactedHollowing\r\n2023-08-10 15:47:03,743 [root] DEBUG: \t |-- CAPE_Unpacker\r\n2023-08-10 15:47:03,744 [root] DEBUG: \t |-- AccessesMailslot\r\n2023-08-10 15:47:03,744 [root] DEBUG: \t |-- AccessesNetlogonRegkey\r\n2023-08-10 15:47:03,744 [root] DEBUG: \t |-- AccessesPublicFolder\r\n.......\r\n\r\n2023-08-10 15:47:04,773 [lib.cuckoo.core.scheduler] INFO: Using \"kvm\" machine manager with max_analysis_count=0, max_machines_count=2, and max_vmstartup_count=2\r\n2023-08-10 15:47:04,827 [lib.cuckoo.common.abstracts] DEBUG: Getting status for win7\r\n2023-08-10 15:47:04,843 [lib.cuckoo.common.abstracts] DEBUG: Getting status for win10\r\n2023-08-10 15:47:04,859 [lib.cuckoo.core.scheduler] INFO: Loaded 2 machine/s\r\n2023-08-10 15:47:04,880 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks\r\n\r\n\r\n\nComment: you have problem\r\n\r\n```\r\n1.sudo python3 utils/rooter.py -g cape\r\n2. sudo -u cape poetry run python3 cuckoo.py -d\r\n3. sudo -u cape poetry run python3 utils/process.py -p7 auto\r\n4. python3 manage.py runserver 10.128.10.28 :8000\r\n```\r\n\r\nlast step __why not__ `sudo -u cape poetry run`? you using it as different user which breaks permissions on some critical folders\nComment: also you running old code, as your error is in line 391. which doesn't exist anymore, DO NOT REMOVE ISSUE TEMPLATE\nComment: hello, sorry for having replied so late.  It wasn't possible to do it this weekend because it's not a local configuration that I'm doing (enterprise server). Is it possible to continue plse?\nComment: is not about late, __is about to removed issue template__ and you not on latest code. as i told you run web with wrong user.\nComment: thanks a lot, I've just tried it and it works.\nComment: Newer anymore remove issue template,or issue will be closed without\r\nanswering it\r\n\r\nEl lun, 14 ago 2023, 9:26, Iris89-K ***@***.***> escribi\u00f3:\r\n\r\n> thanks a lot, I've just tried it and it works.\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1694#issuecomment-1676813437>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH36PRCLVEUG2RNAZEV3XVHHLTANCNFSM6AAAAAA3L3HYDA>\r\n> .\r\n> You are receiving this because you modified the open/close state.Message\r\n> ID: ***@***.***>\r\n>\r\n\nComment: ok\r\nI'd like to ask you a few questions about how URL submissions work, if that's possible, because I have some misunderstandings. \r\n\r\ncape can't communicate with Postgresql when I submit files (which I'm trying to solve). But with simple Url it works. Aren't URLs also stored in Postgresql?\nComment: First of all you are on old code and as you removed issue template I have\r\nno idea on how old code are you. So from there there can be tons of\r\nproblems, like configs in custom/conf or you unproperly configured\r\ncuckoo.conf and is why it does the incorrect db connection.\r\n\r\nAll is stored is psql\r\n\r\nEl lun, 14 ago 2023, 9:46, Iris89-K ***@***.***> escribi\u00f3:\r\n\r\n> ok\r\n> I'd like to ask you a few questions about how URL submissions work, if\r\n> that's possible, because I have some misunderstandings.\r\n>\r\n> cape can't communicate with Postgresql when I submit files (which I'm\r\n> trying to solve). But with simple Url it works. Aren't URLs also stored in\r\n> Postgresql?\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1694#issuecomment-1676838585>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH355YKCPHRLX5DUO673XVHJXBANCNFSM6AAAAAA3L3HYDA>\r\n> .\r\n> You are receiving this because you modified the open/close state.Message\r\n> ID: ***@***.***>\r\n>\r\n\nComment: sorry, i don't understand what you mean by old code.\r\n\r\nbut I did all config in custom/conf. The agent is running properly in guests. \r\ni can ping the host machine from guest and versa.\r\nufw on ubuntu is inactive. \r\n\r\n#Config:\r\n[cuckoo_conf.txt](https://github.com/kevoreilly/CAPEv2/files/12332867/cuckoo_conf.txt)\r\n[kvm_conf.txt](https://github.com/kevoreilly/CAPEv2/files/12332869/kvm_conf.txt)\r\n[web_conf.txt](https://github.com/kevoreilly/CAPEv2/files/12333228/web_conf.txt)\r\n\r\n#db\r\n![mongodb](https://github.com/kevoreilly/CAPEv2/assets/118971995/ebbe9da9-7e77-4219-8a70-072c27763003)\r\n![postgres](https://github.com/kevoreilly/CAPEv2/assets/118971995/e5c54b00-dc30-452e-b552-9e81195e6ad8)\r\n\r\nit doesn't running with files analysis. ( on web gui: error adding task to CAPE's database) \r\n\r\n\nComment: mongo is not db, is just a nosql db for drawing webgui. posgres is db\r\nabout old code. your permission error was in line 391. which doesn't match actual code of that file. you need to update\r\ni have no clue why you have problems, connection is set properly in cuckoo.conf. but maybe you have mess in configs\nComment: Oh! you're right, I didn't notice this detail. I'll try to fix it and get back to you.\nComment: Is why you MUST follow issues template,otherwise you wasting your and our\r\ntime trying to figurate where to start\r\n\r\nEl lun, 14 ago 2023, 12:17, Iris89-K ***@***.***> escribi\u00f3:\r\n\r\n> Oh! you're right, I didn't notice this detail. I'll try to fix it and get\r\n> back to you.\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1694#issuecomment-1677059316>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3ZOCOP4TJCPTHKKJ4DXVH3NBANCNFSM6AAAAAA3L3HYDA>\r\n> .\r\n> You are receiving this because you modified the open/close state.Message\r\n> ID: ***@***.***>\r\n>\r\n\nComment: okay I'll do it, thanks for replying me anyway",
+  "Title: Set route to empty string when not specified\nBody: When a route is not specified in an API request to create an analysis, the route would be set to None, eventually resulting in the string 'false', which would then result in no route to be specified, instead of the default specified in the configuration settings:\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/a0769ed88c6a92b1cb4d8422b05c2138dfe7dfe7/lib/cuckoo/core/scheduler.py#L505-L510\r\n\r\nSetting it to an empty string if not specified resolves this issue. Setting to the string 'none' is still possible to explicitly disable routing.\nComment: thank you",
+  "Title: Update DarkGate add test\nBody: None",
+  "Title: Package change doesn't affect browser for URL analysis \nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nVM to use specified browser for URL analysis.\r\n\r\n# Current Behavior\r\n\r\nEdge browser is used when analysing URLs even though firefox or chrome package was chosen. I also changed default package for URL analysis to chrome in `web.conf` but still edge is getting executed.\r\n\r\n## Steps to Reproduce\r\n\r\n1. Select URL analysis and change analysis package to chrome or firefox.\r\n2. Start analysis.\r\n\r\n## Context\r\n\r\nCAPE is running on Ubuntu 22.04 in a VMWare VM. Did a full installation (`sudo ./cape2.sh all cape`). I'm using KVM for the analysis with Windows 10.\r\n\r\n## Failure Logs\r\nAnalysis page:\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/74200804/dc16ac42-ab15-49c6-9a11-f406ccd21c4c)\r\n\r\nScreenshots from VM:\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/74200804/19e63cf1-0af5-42da-82e8-75025c5c57d7)\r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/74200804/c6c2539a-b105-4266-a7af-09d7a32dffe5)\r\n\r\n\r\nFull analysis log:\r\n```\r\n2023-08-10 08:30:21,341 [root] INFO: Date set to: 20230810T09:41:27, timeout set to: 60\r\n2023-08-10 09:41:27,857 [root] DEBUG: Starting analyzer from: C:\\tmpmm_fhjgk\r\n2023-08-10 09:41:27,857 [root] DEBUG: Storing results at: C:\\BZUTGP\r\n2023-08-10 09:41:27,857 [root] DEBUG: Pipe server name: \\\\.\\PIPE\\DlzQPDe\r\n2023-08-10 09:41:27,857 [root] DEBUG: Python path: C:\\Users\\win10\\AppData\\Local\\Programs\\Python\\Python310-32\r\n2023-08-10 09:41:27,857 [root] DEBUG: No analysis package specified, trying to detect it automagically\r\n2023-08-10 09:41:27,857 [root] INFO: Automatically selected analysis package \"ie\"\r\n2023-08-10 09:41:27,857 [root] DEBUG: Importing analysis package \"ie\"...\r\n2023-08-10 09:41:27,919 [root] DEBUG: Initializing analysis package \"ie\"...\r\n2023-08-10 09:41:27,919 [root] DEBUG: New location of moved file: google.com\r\n2023-08-10 09:41:27,919 [root] INFO: Analyzer: Package modules.packages.ie does not specify a DLL option\r\n2023-08-10 09:41:27,919 [root] INFO: Analyzer: Package modules.packages.ie does not specify a DLL_64 option\r\n2023-08-10 09:41:27,919 [root] INFO: Analyzer: Package modules.packages.ie does not specify a loader option\r\n2023-08-10 09:41:27,919 [root] INFO: Analyzer: Package modules.packages.ie does not specify a loader_64 option\r\n2023-08-10 09:41:28,092 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.browser\"...\r\n2023-08-10 09:41:28,110 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.curtain\"...\r\n2023-08-10 09:41:28,110 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.digisig\"...\r\n2023-08-10 09:41:28,204 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.disguise\"...\r\n2023-08-10 09:41:28,344 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.during_script\"...\r\n2023-08-10 09:41:28,376 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.evtx\"...\r\n2023-08-10 09:41:28,423 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.filepickup\"...\r\n2023-08-10 09:41:28,514 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.human\"...\r\n2023-08-10 09:41:28,560 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.permissions\"...\r\n2023-08-10 09:41:28,582 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.pre_script\"...\r\n2023-08-10 09:41:28,582 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.procmon\"...\r\n2023-08-10 09:41:28,594 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.recentfiles\"...\r\n2023-08-10 09:41:28,594 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.screenshots\"...\r\n2023-08-10 09:41:28,608 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageChops'\r\n2023-08-10 09:41:28,935 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageGrab'\r\n2023-08-10 09:41:28,935 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageDraw'\r\n2023-08-10 09:41:28,951 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.sysmon\"...\r\n2023-08-10 09:41:28,951 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.tlsdump\"...\r\n2023-08-10 09:41:28,967 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.usage\"...\r\n2023-08-10 09:41:28,985 [root] DEBUG: Initialized auxiliary module \"Browser\"\r\n2023-08-10 09:41:28,985 [root] DEBUG: Trying to start auxiliary module \"Browser\"...\r\n2023-08-10 09:41:28,985 [root] DEBUG: Started auxiliary module \"Browser\"\r\n2023-08-10 09:41:28,985 [root] DEBUG: Started auxiliary module Browser\r\n2023-08-10 09:41:28,985 [root] DEBUG: Initialized auxiliary module \"Curtain\"\r\n2023-08-10 09:41:28,985 [root] DEBUG: Trying to start auxiliary module \"Curtain\"...\r\n2023-08-10 09:41:28,985 [root] DEBUG: Started auxiliary module \"Curtain\"\r\n2023-08-10 09:41:28,985 [root] DEBUG: Started auxiliary module Curtain\r\n2023-08-10 09:41:28,985 [root] DEBUG: Initialized auxiliary module \"DigiSig\"\r\n2023-08-10 09:41:28,985 [root] DEBUG: Trying to start auxiliary module \"DigiSig\"...\r\n2023-08-10 09:41:28,985 [modules.auxiliary.digisig] DEBUG: Skipping authenticode validation, analysis is not a file\r\n2023-08-10 09:41:28,985 [root] DEBUG: Started auxiliary module \"DigiSig\"\r\n2023-08-10 09:41:28,985 [root] DEBUG: Started auxiliary module DigiSig\r\n2023-08-10 09:41:28,985 [root] DEBUG: Initialized auxiliary module \"Disguise\"\r\n2023-08-10 09:41:28,985 [root] DEBUG: Trying to start auxiliary module \"Disguise\"...\r\n2023-08-10 09:41:28,985 [modules.auxiliary.disguise] INFO: Disguising GUID to 7bc6f61d-e580-415e-a794-6a9d2863e711\r\n2023-08-10 09:41:28,985 [root] DEBUG: Started auxiliary module \"Disguise\"\r\n2023-08-10 09:41:28,985 [root] DEBUG: Started auxiliary module Disguise\r\n2023-08-10 09:41:28,985 [root] DEBUG: Initialized auxiliary module \"Evtx\"\r\n2023-08-10 09:41:28,985 [root] DEBUG: Trying to start auxiliary module \"Evtx\"...\r\n2023-08-10 09:41:28,998 [root] DEBUG: Started auxiliary module \"Evtx\"\r\n2023-08-10 09:41:28,998 [root] DEBUG: Started auxiliary module Evtx\r\n2023-08-10 09:41:28,998 [root] DEBUG: Initialized auxiliary module \"FilePickup\"\r\n2023-08-10 09:41:28,998 [root] DEBUG: Trying to start auxiliary module \"FilePickup\"...\r\n2023-08-10 09:41:28,998 [root] DEBUG: Started auxiliary module \"FilePickup\"\r\n2023-08-10 09:41:28,998 [root] DEBUG: Started auxiliary module FilePickup\r\n2023-08-10 09:41:28,998 [root] DEBUG: Initialized auxiliary module \"Human\"\r\n2023-08-10 09:41:28,998 [root] DEBUG: Trying to start auxiliary module \"Human\"...\r\n2023-08-10 09:41:29,014 [root] DEBUG: Started auxiliary module \"Human\"\r\n2023-08-10 09:41:29,014 [root] DEBUG: Started auxiliary module Human\r\n2023-08-10 09:41:29,014 [root] DEBUG: Initialized auxiliary module \"Permissions\"\r\n2023-08-10 09:41:29,014 [root] DEBUG: Trying to start auxiliary module \"Permissions\"...\r\n2023-08-10 09:41:29,014 [root] DEBUG: Started auxiliary module \"Permissions\"\r\n2023-08-10 09:41:29,014 [root] DEBUG: Started auxiliary module Permissions\r\n2023-08-10 09:41:29,014 [root] DEBUG: Initialized auxiliary module \"Pre_script\"\r\n2023-08-10 09:41:29,014 [root] DEBUG: Trying to start auxiliary module \"Pre_script\"...\r\n2023-08-10 09:41:29,014 [root] DEBUG: Started auxiliary module \"Pre_script\"\r\n2023-08-10 09:41:29,014 [root] DEBUG: Started auxiliary module Pre_script\r\n2023-08-10 09:41:29,014 [root] DEBUG: Initialized auxiliary module \"Procmon\"\r\n2023-08-10 09:41:29,014 [root] DEBUG: Trying to start auxiliary module \"Procmon\"...\r\n2023-08-10 09:41:29,014 [root] DEBUG: Started auxiliary module \"Procmon\"\r\n2023-08-10 09:41:29,014 [root] DEBUG: Started auxiliary module Procmon\r\n2023-08-10 09:41:29,014 [root] DEBUG: Initialized auxiliary module \"RecentFiles\"\r\n2023-08-10 09:41:29,014 [root] DEBUG: Trying to start auxiliary module \"RecentFiles\"...\r\n2023-08-10 09:41:29,014 [root] DEBUG: Started auxiliary module \"RecentFiles\"\r\n2023-08-10 09:41:29,014 [root] DEBUG: Started auxiliary module RecentFiles\r\n2023-08-10 09:41:29,014 [root] DEBUG: Initialized auxiliary module \"Screenshots\"\r\n2023-08-10 09:41:29,029 [root] DEBUG: Trying to start auxiliary module \"Screenshots\"...\r\n2023-08-10 09:41:29,029 [root] DEBUG: Started auxiliary module \"Screenshots\"\r\n2023-08-10 09:41:29,029 [root] DEBUG: Started auxiliary module Screenshots\r\n2023-08-10 09:41:29,029 [root] DEBUG: Initialized auxiliary module \"Sysmon\"\r\n2023-08-10 09:41:29,029 [root] DEBUG: Trying to start auxiliary module \"Sysmon\"...\r\n2023-08-10 09:41:29,029 [root] DEBUG: Started auxiliary module \"Sysmon\"\r\n2023-08-10 09:41:29,029 [root] DEBUG: Started auxiliary module Sysmon\r\n2023-08-10 09:41:29,029 [root] DEBUG: Initialized auxiliary module \"TLSDumpMasterSecrets\"\r\n2023-08-10 09:41:29,029 [root] DEBUG: Trying to start auxiliary module \"TLSDumpMasterSecrets\"...\r\n2023-08-10 09:41:29,029 [modules.auxiliary.tlsdump] INFO: lsass.exe found, pid 660\r\n2023-08-10 09:41:29,623 [lib.api.process] INFO: Monitor config for process 660: C:\\tmpmm_fhjgk\\dll\\660.ini\r\n2023-08-10 09:41:29,623 [lib.api.process] INFO: Option 'tlsdump' with value '1' sent to monitor\r\n2023-08-10 09:41:29,623 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmpmm_fhjgk\\dll\\OpRLxWTX.dll, loader C:\\tmpmm_fhjgk\\bin\\RHKorGHe.exe\r\n2023-08-10 09:41:29,670 [root] DEBUG: Loader: Injecting process 660 with C:\\tmpmm_fhjgk\\dll\\OpRLxWTX.dll.\r\n2023-08-10 09:41:29,748 [root] DEBUG: Python path set to 'C:\\Users\\win10\\AppData\\Local\\Programs\\Python\\Python310-32'.\r\n2023-08-10 09:41:29,748 [root] DEBUG: TLS secret dump mode enabled.\r\n2023-08-10 09:41:29,748 [root] INFO: Disabling sleep skipping.\r\n2023-08-10 09:41:29,764 [root] DEBUG: InternalYaraScan: Scanning 0x00007FF8E3330000, size 0x1f7546\r\n2023-08-10 09:41:29,795 [root] DEBUG: InternalYaraScan hit: RtlInsertInvertedFunctionTable\r\n2023-08-10 09:41:29,795 [root] DEBUG: RtlInsertInvertedFunctionTable 0x00007FF8E334090E, LdrpInvertedFunctionTableSRWLock 0x00007FF8E349D500\r\n2023-08-10 09:41:29,795 [root] DEBUG: Monitor initialised: 64-bit capemon loaded in process 660 at 0x00007FF8B05F0000, thread 2040, image base 0x00007FF789140000, stack from 0x00000036C28F4000-0x00000036C2900000\r\n2023-08-10 09:41:29,795 [root] DEBUG: Commandline: C:\\Windows\\system32\\lsass.exe\r\n2023-08-10 09:41:29,826 [root] DEBUG: Syscall hook installed, syscall logging level 1\r\n2023-08-10 09:41:29,842 [root] DEBUG: InjectDllViaThread: Successfully injected Dll into process via RtlCreateUserThread.\r\n2023-08-10 09:41:29,842 [root] DEBUG: Successfully injected DLL C:\\tmpmm_fhjgk\\dll\\OpRLxWTX.dll.\r\n2023-08-10 09:41:29,842 [lib.api.process] INFO: Injected into 64-bit process with pid 660\r\n2023-08-10 09:41:29,859 [root] DEBUG: Started auxiliary module \"TLSDumpMasterSecrets\"\r\n2023-08-10 09:41:29,859 [root] DEBUG: Started auxiliary module TLSDumpMasterSecrets\r\n2023-08-10 09:41:29,859 [root] DEBUG: Initialized auxiliary module \"Usage\"\r\n2023-08-10 09:41:29,859 [root] DEBUG: Trying to start auxiliary module \"Usage\"...\r\n2023-08-10 09:41:29,859 [root] DEBUG: Started auxiliary module \"Usage\"\r\n2023-08-10 09:41:29,859 [root] DEBUG: Started auxiliary module Usage\r\n2023-08-10 09:41:29,859 [root] DEBUG: Initialized auxiliary module \"During_script\"\r\n2023-08-10 09:41:29,859 [root] DEBUG: Trying to start auxiliary module \"During_script\"...\r\n2023-08-10 09:41:29,859 [root] DEBUG: Started auxiliary module \"During_script\"\r\n2023-08-10 09:41:29,859 [root] DEBUG: Started auxiliary module During_script\r\n2023-08-10 09:41:30,452 [root] DEBUG: TLS 1.2 secrets logged to: C:\\BZUTGP\\tlsdump\\tlsdump.log\r\n2023-08-10 09:41:36,529 [root] INFO: Restarting WMI Service\r\n2023-08-10 09:41:38,766 [lib.core.compound] INFO: C:\\Users\\win10\\AppData\\Local\\Temp already exists, skipping creation\r\n2023-08-10 09:41:38,797 [lib.api.process] INFO: Successfully executed process from path \"C:\\Program Files (x86)\\Internet Explorer\\iexplore.exe\" with arguments \"\"google.com\"\" with pid 3504\r\n2023-08-10 09:41:38,797 [lib.api.process] INFO: Monitor config for process 3504: C:\\tmpmm_fhjgk\\dll\\3504.ini\r\n2023-08-10 09:41:38,797 [lib.api.process] INFO: 32-bit DLL to inject is C:\\tmpmm_fhjgk\\dll\\iUmdqw.dll, loader C:\\tmpmm_fhjgk\\bin\\zUITMoT.exe\r\n2023-08-10 09:41:38,857 [root] DEBUG: Loader: Injecting process 3504 (thread 5600) with C:\\tmpmm_fhjgk\\dll\\iUmdqw.dll.\r\n2023-08-10 09:41:38,857 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\r\n2023-08-10 09:41:38,857 [root] DEBUG: Successfully injected DLL C:\\tmpmm_fhjgk\\dll\\iUmdqw.dll.\r\n2023-08-10 09:41:38,888 [lib.api.process] INFO: Injected into 32-bit process with pid 3504\r\n2023-08-10 09:41:40,906 [lib.api.process] INFO: Successfully resumed process with pid 3504\r\n2023-08-10 09:41:40,906 [root] INFO: Enabled timeout enforce, running for the full timeout\r\n2023-08-10 09:41:40,969 [root] DEBUG: Python path set to 'C:\\Users\\win10\\AppData\\Local\\Programs\\Python\\Python310-32'.\r\n2023-08-10 09:41:40,969 [root] DEBUG: Dropped file limit defaulting to 100.\r\n2023-08-10 09:41:41,025 [root] DEBUG: YaraInit: Compiled 25 rule files\r\n2023-08-10 09:41:41,030 [root] DEBUG: YaraInit: Compiled rules saved to file C:\\tmpmm_fhjgk\\data\\yara\\capemon.yac\r\n2023-08-10 09:41:41,030 [root] DEBUG: InternalYaraScan: Scanning 0x77AA0000, size 0x1a31c8\r\n2023-08-10 09:41:41,159 [root] DEBUG: YaraScan: Scanning 0x002D0000, size 0xcb70a\r\n2023-08-10 09:41:41,248 [root] DEBUG: AmsiDumper initialised.\r\n2023-08-10 09:41:41,248 [root] DEBUG: Monitor initialised: 32-bit capemon loaded in process 3504 at 0x72ba0000, thread 5600, image base 0x2d0000, stack from 0x212000-0x220000\r\n2023-08-10 09:41:41,248 [root] DEBUG: Commandline: \"C:\\Program Files (x86)\\Internet Explorer\\iexplore.exe\" \"google.com\"\r\n2023-08-10 09:41:41,248 [root] DEBUG: Internet Explorer-specific hook-set enabled.\r\n2023-08-10 09:41:41,312 [root] DEBUG: hook_api: Warning - CoCreateInstance export address 0x762956BD differs from GetProcAddress -> 0x75D088C0\r\n2023-08-10 09:41:41,312 [root] DEBUG: hook_api: Warning - CoCreateInstanceEx export address 0x762956FC differs from GetProcAddress -> 0x75D43020\r\n2023-08-10 09:41:41,312 [root] DEBUG: hook_api: Warning - CoGetClassObject export address 0x76295C8C differs from GetProcAddress -> 0x75D3D870\r\n2023-08-10 09:41:41,326 [root] DEBUG: hook_api: Warning - CLSIDFromProgID export address 0x76294EF6 differs from GetProcAddress -> 0x75CB4F80\r\n2023-08-10 09:41:41,326 [root] DEBUG: Syscall hook installed, syscall logging level 1\r\n2023-08-10 09:41:41,352 [root] DEBUG: WoW64fix: Windows version 10.0 not supported.\r\n2023-08-10 09:41:41,360 [root] DEBUG: RestoreHeaders: Restored original import table.\r\n2023-08-10 09:41:41,360 [root] INFO: Loaded monitor into process with pid 3504\r\n2023-08-10 09:41:41,360 [root] DEBUG: DLL unloaded from 0x73D40000.\r\n2023-08-10 09:41:41,360 [root] DEBUG: caller_dispatch: Added region at 0x002D0000 to tracked regions list (ntdll::NtClose returns to 0x002D2A68, thread 5600).\r\n2023-08-10 09:41:41,360 [root] DEBUG: DLL loaded at 0x77A30000: C:\\Windows\\System32\\bcryptPrimitives (0x5f000 bytes).\r\n2023-08-10 09:41:41,390 [root] DEBUG: DLL loaded at 0x73350000: C:\\Windows\\SYSTEM32\\msIso (0x46000 bytes).\r\n2023-08-10 09:41:41,451 [root] DEBUG: InstrumentationCallback: Added region at 0x762D0000 to tracked regions list (thread 5600).\r\n2023-08-10 09:41:41,451 [root] DEBUG: ProcessTrackedRegion: Region at 0x762D0000 mapped as \\Device\\HarddiskVolume2\\Windows\\SysWOW64\\KernelBase.dll, skipping\r\n2023-08-10 09:41:41,451 [root] DEBUG: DLL loaded at 0x74550000: C:\\Windows\\SYSTEM32\\kernel.appcore (0xf000 bytes).\r\n2023-08-10 09:41:41,568 [root] DEBUG: CreateProcessHandler: Injection info set for new process 5768: C:\\Program Files\\Internet Explorer\\IEXPLORE.EXE, ImageBase: 0x00000000\r\n2023-08-10 09:41:41,579 [root] INFO: Announced 64-bit process name: iexplore.exe pid: 5768\r\n2023-08-10 09:41:41,579 [lib.api.process] INFO: Monitor config for process 5768: C:\\tmpmm_fhjgk\\dll\\5768.ini\r\n2023-08-10 09:41:41,597 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmpmm_fhjgk\\dll\\OpRLxWTX.dll, loader C:\\tmpmm_fhjgk\\bin\\RHKorGHe.exe\r\n2023-08-10 09:41:41,670 [root] DEBUG: Loader: Injecting process 5768 (thread 5740) with C:\\tmpmm_fhjgk\\dll\\OpRLxWTX.dll.\r\n2023-08-10 09:41:41,670 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\r\n2023-08-10 09:41:41,670 [root] DEBUG: Successfully injected DLL C:\\tmpmm_fhjgk\\dll\\OpRLxWTX.dll.\r\n2023-08-10 09:41:41,670 [lib.api.process] INFO: Injected into 64-bit process with pid 5768\r\n2023-08-10 09:41:41,670 [root] INFO: Disabling sleep skipping.\r\n2023-08-10 09:41:41,670 [root] DEBUG: DLL unloaded from 0x77AA0000.\r\n2023-08-10 09:41:41,688 [root] DEBUG: ProcessTrackedRegion: Region at 0x762D0000 mapped as \\Device\\HarddiskVolume2\\Windows\\SysWOW64\\KernelBase.dll, skipping\r\n2023-08-10 09:41:41,734 [root] DEBUG: Python path set to 'C:\\Users\\win10\\AppData\\Local\\Programs\\Python\\Python310-32'.\r\n2023-08-10 09:41:41,734 [root] DEBUG: Dropped file limit defaulting to 100.\r\n2023-08-10 09:41:41,748 [root] INFO: Disabling sleep skipping.\r\n2023-08-10 09:41:41,767 [root] DEBUG: YaraInit: Compiled rules loaded from existing file C:\\tmpmm_fhjgk\\data\\yara\\capemon.yac\r\n2023-08-10 09:41:41,767 [root] DEBUG: InternalYaraScan: Scanning 0x00007FF8E3330000, size 0x1f7546\r\n2023-08-10 09:41:41,767 [root] DEBUG: YaraScan: Scanning 0x00007FF7AA600000, size 0xce07a\r\n2023-08-10 09:41:41,781 [root] DEBUG: AmsiDumper initialised.\r\n2023-08-10 09:41:41,781 [root] DEBUG: Monitor initialised: 64-bit capemon loaded in process 5768 at 0x00007FF8B05F0000, thread 5740, image base 0x00007FF7AA600000, stack from 0x000000C698972000-0x000000C698980000\r\n2023-08-10 09:41:41,799 [root] DEBUG: Commandline: \"C:\\Program Files\\Internet Explorer\\IEXPLORE.EXE\" \"google.com\"\r\n2023-08-10 09:41:41,799 [root] DEBUG: Internet Explorer-specific hook-set enabled.\r\n2023-08-10 09:41:41,827 [root] DEBUG: hook_api: Warning - CoCreateInstance export address 0x00007FF8E1A742EB differs from GetProcAddress -> 0x00007FF8E2817E30\r\n2023-08-10 09:41:41,827 [root] DEBUG: hook_api: Warning - CoCreateInstanceEx export address 0x00007FF8E1A7432A differs from GetProcAddress -> 0x00007FF8E27991E0\r\n2023-08-10 09:41:41,853 [root] DEBUG: hook_api: Warning - CoGetClassObject export address 0x00007FF8E1A748BA differs from GetProcAddress -> 0x00007FF8E2814FF0\r\n2023-08-10 09:41:41,859 [root] DEBUG: hook_api: Warning - CLSIDFromProgID export address 0x00007FF8E1A73B36 differs from GetProcAddress -> 0x00007FF8E27A66D0\r\n2023-08-10 09:41:41,873 [root] DEBUG: Syscall hook installed, syscall logging level 1\r\n2023-08-10 09:41:41,967 [root] DEBUG: RestoreHeaders: Restored original import table.\r\n2023-08-10 09:41:41,987 [root] INFO: Loaded monitor into process with pid 5768\r\n2023-08-10 09:41:42,015 [root] DEBUG: DLL unloaded from 0x00007FF8DE3C0000.\r\n2023-08-10 09:41:42,158 [root] DEBUG: caller_dispatch: Added region at 0x00007FF7AA600000 to tracked regions list (ntdll::NtClose returns to 0x00007FF7AA601737, thread 5740).\r\n2023-08-10 09:41:42,173 [root] DEBUG: DLL loaded at 0x00007FF8E0AF0000: C:\\Windows\\System32\\bcryptPrimitives (0x82000 bytes).\r\n2023-08-10 09:41:42,237 [root] DEBUG: DLL loaded at 0x00007FF8CF140000: C:\\Windows\\SYSTEM32\\msIso (0x58000 bytes).\r\n2023-08-10 09:41:42,263 [root] DEBUG: DLL loaded at 0x00007FF8DE970000: C:\\Windows\\SYSTEM32\\kernel.appcore (0x12000 bytes).\r\n2023-08-10 09:41:42,607 [root] DEBUG: DLL loaded at 0x00007FF8E31C0000: C:\\Windows\\System32\\OLEAUT32 (0xcd000 bytes).\r\n2023-08-10 09:41:42,607 [root] DEBUG: DLL loaded at 0x00007FF8E1DB0000: C:\\Windows\\System32\\SHELL32 (0x744000 bytes).\r\n2023-08-10 09:41:42,638 [root] DEBUG: DLL loaded at 0x00007FF8D4630000: C:\\Windows\\SYSTEM32\\NETAPI32 (0x1a000 bytes).\r\n2023-08-10 09:41:42,638 [root] DEBUG: DLL loaded at 0x00007FF8D8CA0000: C:\\Windows\\SYSTEM32\\VERSION (0xa000 bytes).\r\n2023-08-10 09:41:42,638 [root] DEBUG: DLL loaded at 0x00007FF8E0950000: C:\\Windows\\SYSTEM32\\USERENV (0x2e000 bytes).\r\n2023-08-10 09:41:42,827 [root] DEBUG: DLL loaded at 0x00007FF8DA550000: C:\\Windows\\SYSTEM32\\WINHTTP (0x10a000 bytes).\r\n2023-08-10 09:41:42,827 [root] DEBUG: DLL loaded at 0x00007FF8DFBE0000: C:\\Windows\\SYSTEM32\\WKSCLI (0x19000 bytes).\r\n2023-08-10 09:41:42,942 [root] DEBUG: DLL loaded at 0x00007FF8DFF40000: C:\\Windows\\SYSTEM32\\NETUTILS (0xc000 bytes).\r\n2023-08-10 09:41:42,972 [root] DEBUG: DLL loaded at 0x00007FF8C2910000: C:\\Windows\\SYSTEM32\\IEFRAME (0x768000 bytes).\r\n2023-08-10 09:41:43,094 [root] DEBUG: DLL loaded at 0x00007FF8CB5C0000: C:\\Windows\\WinSxS\\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1110_none_60b5254171f9507e\\comctl32 (0x29a000 bytes).\r\n2023-08-10 09:41:43,263 [root] DEBUG: DLL loaded at 0x00007FF8DE490000: C:\\Windows\\system32\\uxtheme (0x9e000 bytes).\r\n2023-08-10 09:41:43,467 [root] DEBUG: DLL loaded at 0x00007FF8E2AC0000: C:\\Windows\\System32\\clbcatq (0xa9000 bytes).\r\n2023-08-10 09:41:43,607 [root] DEBUG: DLL loaded at 0x00007FF8D7140000: C:\\Program Files\\Internet Explorer\\IEShims (0x6e000 bytes).\r\n2023-08-10 09:41:43,843 [root] DEBUG: DLL loaded at 0x00007FF8E2C10000: C:\\Windows\\System32\\comdlg32 (0xda000 bytes).\r\n2023-08-10 09:41:44,066 [root] DEBUG: DLL loaded at 0x00007FF8D5DD0000: C:\\Windows\\SYSTEM32\\srvcli (0x28000 bytes).\r\n2023-08-10 09:41:44,093 [root] DEBUG: DLL loaded at 0x00007FF8D5E00000: C:\\Windows\\SYSTEM32\\urlmon (0x1ec000 bytes).\r\n2023-08-10 09:41:44,142 [root] DEBUG: DLL loaded at 0x00007FF8E2D50000: C:\\Windows\\System32\\MSCTF (0x115000 bytes).\r\n2023-08-10 09:41:44,311 [root] DEBUG: DLL loaded at 0x00007FF8DFE30000: C:\\Windows\\SYSTEM32\\IPHLPAPI (0x3b000 bytes).\r\n2023-08-10 09:41:44,377 [root] DEBUG: DLL loaded at 0x00007FF8E1CF0000: C:\\Windows\\System32\\NSI (0x8000 bytes).\r\n2023-08-10 09:41:44,513 [root] DEBUG: DLL loaded at 0x00007FF8DBB40000: C:\\Windows\\SYSTEM32\\dhcpcsvc6 (0x17000 bytes).\r\n2023-08-10 09:41:44,624 [root] DEBUG: DLL loaded at 0x00007FF8DBB20000: C:\\Windows\\SYSTEM32\\dhcpcsvc (0x1d000 bytes).\r\n2023-08-10 09:41:44,936 [root] DEBUG: DLL loaded at 0x00007FF8B0060000: C:\\Windows\\System32\\vaultsvc (0x60000 bytes).\r\n2023-08-10 09:41:45,079 [root] DEBUG: DLL loaded at 0x00007FF8E2AC0000: C:\\Windows\\System32\\clbcatq (0xa9000 bytes).\r\n2023-08-10 09:41:45,248 [root] DEBUG: DLL loaded at 0x00007FF8E0140000: C:\\Windows\\system32\\mswsock (0x6a000 bytes).\r\n2023-08-10 09:41:45,576 [root] DEBUG: DLL loaded at 0x00007FF8D0050000: C:\\Windows\\System32\\OneCoreCommonProxyStub (0x7d000 bytes).\r\n2023-08-10 09:41:45,939 [root] DEBUG: DLL unloaded from 0x00007FF8E3330000.\r\n2023-08-10 09:41:45,957 [root] DEBUG: DLL loaded at 0x00007FF8DFE70000: C:\\Windows\\SYSTEM32\\DNSAPI (0xca000 bytes).\r\n2023-08-10 09:41:46,007 [root] DEBUG: DLL loaded at 0x00007FF8D7A90000: C:\\Windows\\System32\\rasadhlp (0xa000 bytes).\r\n2023-08-10 09:41:46,187 [root] DEBUG: DLL loaded at 0x00007FF8E0340000: C:\\Windows\\SYSTEM32\\CRYPTSP (0x18000 bytes).\r\n2023-08-10 09:41:46,219 [root] DEBUG: DLL loaded at 0x00007FF8AFF00000: C:\\Windows\\SYSTEM32\\ieapfltr (0xe0000 bytes).\r\n2023-08-10 09:41:46,269 [root] DEBUG: DLL loaded at 0x00007FF8DA940000: C:\\Windows\\System32\\fwpuclnt (0x80000 bytes).\r\n2023-08-10 09:41:46,329 [root] DEBUG: DLL loaded at 0x00007FF8E03E0000: C:\\Windows\\SYSTEM32\\Wldp (0x30000 bytes).\r\n2023-08-10 09:41:46,378 [root] DEBUG: DLL loaded at 0x00007FF8DEB70000: C:\\Windows\\SYSTEM32\\windows.storage (0x794000 bytes).\r\n2023-08-10 09:41:46,378 [root] DEBUG: DLL unloaded from 0x00007FF8E0C30000.\r\n2023-08-10 09:41:46,566 [root] DEBUG: DLL loaded at 0x00007FF8E0990000: C:\\Windows\\SYSTEM32\\profapi (0x1f000 bytes).\r\n2023-08-10 09:41:46,737 [root] DEBUG: DLL loaded at 0x00007FF8AFE10000: C:\\Windows\\System32\\ieproxy (0xe8000 bytes).\r\n2023-08-10 09:41:48,271 [root] DEBUG: DLL loaded at 0x00007FF8D0290000: C:\\Windows\\SYSTEM32\\WININET (0x4d6000 bytes).\r\n2023-08-10 09:41:48,842 [root] DEBUG: DLL loaded at 0x00007FF8DF5A0000: C:\\Windows\\SYSTEM32\\sppc (0x25000 bytes).\r\n2023-08-10 09:41:48,876 [root] DEBUG: DLL loaded at 0x00007FF8DF5D0000: C:\\Windows\\SYSTEM32\\slc (0x29000 bytes).\r\n2023-08-10 09:41:48,910 [root] DEBUG: DLL unloaded from 0x00007FF8DF5D0000.\r\n2023-08-10 09:41:48,968 [root] DEBUG: DLL loaded at 0x00007FF8DF5A0000: C:\\Windows\\SYSTEM32\\sppc (0x25000 bytes).\r\n2023-08-10 09:41:49,001 [root] DEBUG: DLL loaded at 0x00007FF8DF5D0000: C:\\Windows\\SYSTEM32\\slc (0x29000 bytes).\r\n2023-08-10 09:41:49,110 [root] DEBUG: DLL loaded at 0x00007FF8CBCB0000: C:\\Windows\\SYSTEM32\\ondemandconnroutehelper (0x17000 bytes).\r\n2023-08-10 09:41:49,156 [root] DEBUG: DLL unloaded from 0x00007FF8CBCB0000.\r\n2023-08-10 09:41:49,216 [root] DEBUG: DLL unloaded from 0x00007FF8DA550000.\r\n2023-08-10 09:41:49,248 [root] DEBUG: DLL loaded at 0x00007FF8DBFB0000: C:\\Windows\\SYSTEM32\\WINNSI (0xb000 bytes).\r\n2023-08-10 09:41:49,362 [root] DEBUG: DLL unloaded from 0x00007FF8C2910000.\r\n2023-08-10 09:41:49,362 [root] DEBUG: CreateProcessHandler: Injection info set for new process 2848: C:\\Program Files (x86)\\Internet Explorer\\IEXPLORE.EXE, ImageBase: 0x00000000002D0000\r\n2023-08-10 09:41:49,376 [root] DEBUG: ProcessMessage: Skipping monitoring process 2848\r\n2023-08-10 09:41:49,376 [root] DEBUG: DLL unloaded from 0x00007FF8E3330000.\r\n2023-08-10 09:41:49,591 [root] DEBUG: DLL loaded at 0x00007FF8DFAC0000: C:\\Windows\\system32\\rsaenh (0x34000 bytes).\r\n2023-08-10 09:41:49,876 [root] DEBUG: DLL loaded at 0x00007FF8E05E0000: C:\\Windows\\SYSTEM32\\DPAPI (0xa000 bytes).\r\n2023-08-10 09:41:49,920 [root] DEBUG: DLL loaded at 0x00007FF8DF5A0000: C:\\Windows\\SYSTEM32\\sppc (0x25000 bytes).\r\n2023-08-10 09:41:49,967 [root] DEBUG: DLL loaded at 0x00007FF8DF5D0000: C:\\Windows\\SYSTEM32\\slc (0x29000 bytes).\r\n2023-08-10 09:41:49,999 [root] DEBUG: DLL unloaded from 0x00007FF8DF5D0000.\r\n2023-08-10 09:41:50,029 [root] DEBUG: DLL loaded at 0x00007FF8DF5A0000: C:\\Windows\\SYSTEM32\\sppc (0x25000 bytes).\r\n2023-08-10 09:41:50,078 [root] DEBUG: DLL loaded at 0x00007FF8DF5D0000: C:\\Windows\\SYSTEM32\\slc (0x29000 bytes).\r\n2023-08-10 09:41:50,313 [root] DEBUG: DLL loaded at 0x00007FF8AFD10000: C:\\Windows\\SYSTEM32\\IEUI (0x91000 bytes).\r\n2023-08-10 09:41:50,407 [root] DEBUG: NtTerminateProcess hook: Attempting to dump process 3504\r\n2023-08-10 09:41:50,420 [root] DEBUG: DoProcessDump: Dumping Imagebase at 0x002D0000.\r\n2023-08-10 09:41:50,470 [root] DEBUG: DumpImageInCurrentProcess: Attempting to dump virtual PE image.\r\n2023-08-10 09:41:50,513 [root] DEBUG: DumpProcess: Instantiating PeParser with address: 0x002D0000.\r\n2023-08-10 09:41:50,513 [root] DEBUG: DLL loaded at 0x00007FF8E1D30000: C:\\Windows\\System32\\coml2 (0x79000 bytes).\r\n2023-08-10 09:41:50,513 [root] DEBUG: DumpProcess: Module entry point VA is 0x00003A50.\r\n2023-08-10 09:41:50,816 [lib.common.results] INFO: Uploading file C:\\BZUTGP\\CAPE\\3504_144907205041610482023 to procdump\\bc49fed9da997713e5cbe51075a0fe9f7edcae4e8b76d0f18feee8556d32bf43; Size is 820736; Max size: 100000000\r\n2023-08-10 09:41:50,816 [root] DEBUG: DLL loaded at 0x00007FF8C3440000: C:\\Windows\\system32\\mssprxy (0x28000 bytes).\r\n2023-08-10 09:41:50,844 [root] DEBUG: DumpProcess: Module image dump success - dump size 0xc8600.\r\n2023-08-10 09:41:50,906 [root] DEBUG: DLL unloaded from 0x76DF0000.\r\n2023-08-10 09:41:50,970 [root] INFO: Process with pid 3504 has terminated\r\n2023-08-10 09:41:51,062 [root] DEBUG: DLL loaded at 0x00007FF8D3AF0000: C:\\Windows\\system32\\windowscodecs (0x1b4000 bytes).\r\n2023-08-10 09:41:51,265 [root] DEBUG: DLL loaded at 0x00007FF8CA2C0000: C:\\Windows\\System32\\oleacc (0x66000 bytes).\r\n2023-08-10 09:41:51,546 [root] DEBUG: DLL loaded at 0x00007FF8DF470000: C:\\Windows\\system32\\dxgi (0xf3000 bytes).\r\n2023-08-10 09:41:51,570 [root] DEBUG: DLL loaded at 0x00007FF8DCED0000: C:\\Windows\\system32\\d3d11 (0x263000 bytes).\r\n2023-08-10 09:41:51,596 [root] DEBUG: DLL loaded at 0x00007FF8DD860000: C:\\Windows\\system32\\dcomp (0x1e4000 bytes).\r\n2023-08-10 09:41:51,624 [root] DEBUG: DLL loaded at 0x00007FF8CA280000: C:\\Windows\\system32\\dataexchange (0x3e000 bytes).\r\n2023-08-10 09:41:51,717 [root] DEBUG: DLL loaded at 0x00007FF8D3840000: C:\\Windows\\system32\\twinapi.appcore (0x200000 bytes).\r\n2023-08-10 09:41:51,780 [root] DEBUG: DLL loaded at 0x00007FF8D0920000: C:\\Windows\\SYSTEM32\\TextShaping (0xac000 bytes).\r\n2023-08-10 09:41:52,092 [root] DEBUG: DLL loaded at 0x00007FF8DE760000: C:\\Windows\\SYSTEM32\\dwmapi (0x2f000 bytes).\r\n2023-08-10 09:41:52,726 [root] DEBUG: DLL loaded at 0x00007FF8CA060000: C:\\Windows\\system32\\explorerframe (0x220000 bytes).\r\n2023-08-10 09:41:52,998 [root] DEBUG: DLL loaded at 0x00007FF8DBDA0000: C:\\Windows\\SYSTEM32\\MSIMG32 (0x7000 bytes).\r\n2023-08-10 09:41:53,204 [root] DEBUG: DLL loaded at 0x00007FF8DF790000: C:\\Windows\\SYSTEM32\\ntmarta (0x33000 bytes).\r\n2023-08-10 09:41:53,220 [root] DEBUG: DLL loaded at 0x00007FF8DE190000: C:\\Windows\\System32\\CoreMessaging (0xf2000 bytes).\r\n2023-08-10 09:41:53,267 [root] DEBUG: DLL loaded at 0x00007FF8DD700000: C:\\Windows\\SYSTEM32\\wintypes (0x154000 bytes).\r\n2023-08-10 09:41:53,296 [root] DEBUG: DLL loaded at 0x00007FF8DDE30000: C:\\Windows\\System32\\CoreUIComponents (0x35e000 bytes).\r\n2023-08-10 09:41:53,314 [root] DEBUG: DLL loaded at 0x00007FF8D29F0000: C:\\Windows\\SYSTEM32\\textinputframework (0xf9000 bytes).\r\n2023-08-10 09:41:54,561 [root] DEBUG: DLL unloaded from 0x00007FF8C2910000.\r\n2023-08-10 09:41:56,705 [root] DEBUG: DLL loaded at 0x00007FF8D0050000: C:\\Windows\\System32\\OneCoreCommonProxyStub (0x7d000 bytes).\r\n2023-08-10 09:42:00,644 [root] DEBUG: DLL loaded at 0x00007FF8D58D0000: C:\\Windows\\SYSTEM32\\Secur32 (0xc000 bytes).\r\n2023-08-10 09:42:00,698 [root] DEBUG: DLL loaded at 0x00007FF8CFFE0000: C:\\Windows\\SYSTEM32\\MLANG (0x42000 bytes).\r\n2023-08-10 09:42:00,730 [root] DEBUG: DLL loaded at 0x00007FF8DAF00000: C:\\Windows\\SYSTEM32\\PROPSYS (0xf6000 bytes).\r\n2023-08-10 09:42:00,754 [root] DEBUG: DLL unloaded from 0x00007FF8E3330000.\r\n2023-08-10 09:42:00,802 [root] DEBUG: DLL loaded at 0x00007FF8DFB50000: C:\\Windows\\SYSTEM32\\msvcp110_win (0x8a000 bytes).\r\n2023-08-10 09:42:00,830 [root] DEBUG: DLL loaded at 0x00007FF8DC0A0000: C:\\Windows\\SYSTEM32\\policymanager (0xa0000 bytes).\r\n2023-08-10 09:42:00,847 [root] DEBUG: DLL unloaded from 0x00007FF8DC0A0000.\r\n2023-08-10 09:42:01,097 [root] DEBUG: DLL loaded at 0x00007FF8E0F00000: C:\\Windows\\System32\\CFGMGR32 (0x4e000 bytes).\r\n2023-08-10 09:42:01,186 [root] DEBUG: DLL unloaded from 0x00007FF8DEB70000.\r\n2023-08-10 09:42:01,263 [root] DEBUG: DLL unloaded from 0x00007FF8DEB70000.\r\n2023-08-10 09:42:01,287 [root] DEBUG: DLL unloaded from 0x00007FF8E26B0000.\r\n2023-08-10 09:42:01,764 [root] DEBUG: DLL unloaded from 0x00007FF8E3330000.\r\n2023-08-10 09:42:01,812 [root] DEBUG: DLL loaded at 0x00007FF8DFB50000: C:\\Windows\\SYSTEM32\\msvcp110_win (0x8a000 bytes).\r\n2023-08-10 09:42:01,840 [root] DEBUG: DLL loaded at 0x00007FF8DC0A0000: C:\\Windows\\SYSTEM32\\policymanager (0xa0000 bytes).\r\n2023-08-10 09:42:01,869 [root] DEBUG: DLL unloaded from 0x00007FF8DC0A0000.\r\n2023-08-10 09:42:02,403 [root] DEBUG: DLL unloaded from 0x00007FF8D3840000.\r\n2023-08-10 09:42:02,536 [root] DEBUG: DLL unloaded from 0x00007FF8E3330000.\r\n2023-08-10 09:42:02,661 [root] DEBUG: DLL loaded at 0x00007FF8DFB50000: C:\\Windows\\SYSTEM32\\msvcp110_win (0x8a000 bytes).\r\n2023-08-10 09:42:02,725 [root] DEBUG: DLL loaded at 0x00007FF8DC0A0000: C:\\Windows\\SYSTEM32\\policymanager (0xa0000 bytes).\r\n2023-08-10 09:42:02,741 [root] DEBUG: DLL unloaded from 0x00007FF8DC0A0000.\r\n2023-08-10 09:42:02,872 [root] DEBUG: DLL unloaded from 0x00007FF8E3330000.\r\n2023-08-10 09:42:03,065 [root] DEBUG: DLL unloaded from 0x00007FF8D3840000.\r\n2023-08-10 09:42:03,266 [root] DEBUG: DLL unloaded from 0x00007FF8C2910000.\r\n2023-08-10 09:42:03,299 [root] DEBUG: DLL unloaded from 0x00007FF8D3840000.\r\n2023-08-10 09:42:03,568 [root] DEBUG: DLL loaded at 0x00007FF8D8BD0000: C:\\Windows\\System32\\Bcp47Langs (0x5b000 bytes).\r\n2023-08-10 09:42:03,634 [root] DEBUG: DLL loaded at 0x00007FF8DF5A0000: C:\\Windows\\System32\\sppc (0x25000 bytes).\r\n2023-08-10 09:42:03,699 [root] DEBUG: DLL loaded at 0x00007FF8DF5D0000: C:\\Windows\\System32\\SLC (0x29000 bytes).\r\n2023-08-10 09:42:04,085 [root] DEBUG: DLL loaded at 0x00007FF8CB470000: C:\\Windows\\System32\\appresolver (0x90000 bytes).\r\n2023-08-10 09:42:04,496 [root] DEBUG: DLL unloaded from 0x00007FF8C2910000.\r\n2023-08-10 09:42:04,573 [root] DEBUG: DLL unloaded from 0x00007FF8AFD10000.\r\n2023-08-10 09:42:04,618 [root] DEBUG: DLL unloaded from 0x00007FF8CB5C0000.\r\n2023-08-10 09:42:04,631 [root] DEBUG: DLL unloaded from 0x00007FF8CA060000.\r\n2023-08-10 09:42:04,664 [root] INFO: Added new file to list with pid None and path C:\\Users\\win10\\AppData\\Local\\Microsoft\\Internet Explorer\\Recovery\\High\\Active\\{FD938EF2-3748-11EE-B63B-525400008449}.dat\r\n2023-08-10 09:42:04,743 [root] DEBUG: DLL unloaded from 0x00007FF8C2910000.\r\n2023-08-10 09:42:05,053 [lib.common.results] INFO: Uploading file C:\\Users\\win10\\AppData\\Local\\Microsoft\\Internet Explorer\\Recovery\\High\\Active\\{FD938EF2-3748-11EE-B63B-525400008449}.dat to files\\fbbcdb01fa83ca7f97d056d99bf71c194a0162b7e57f584eae8f45e2c5c63c53; Size is 3584; Max size: 100000000\r\n2023-08-10 09:42:05,116 [root] INFO: Added new file to list with pid None and path C:\\Users\\win10\\AppData\\Local\\Microsoft\\Internet Explorer\\Recovery\\High\\Active\\RecoveryStore.{F6A74C38-3748-11EE-B63B-525400008449}.dat\r\n2023-08-10 09:42:05,240 [lib.common.results] INFO: Uploading file C:\\Users\\win10\\AppData\\Local\\Microsoft\\Internet Explorer\\Recovery\\High\\Active\\RecoveryStore.{F6A74C38-3748-11EE-B63B-525400008449}.dat to files\\438685020665cf6dd4e8e4d7c4f4cdf20c776bdebef9c4037804de07c230bacf; Size is 5632; Max size: 100000000\r\n2023-08-10 09:42:05,524 [root] DEBUG: DLL unloaded from 0x00007FF8CA2C0000.\r\n2023-08-10 09:42:05,649 [root] DEBUG: DLL unloaded from 0x00007FF8E2760000.\r\n2023-08-10 09:42:05,677 [root] DEBUG: DLL unloaded from 0x00007FF8E2760000.\r\n2023-08-10 09:42:05,695 [root] DEBUG: DLL unloaded from 0x00007FF8E31C0000.\r\n2023-08-10 09:42:05,695 [root] DEBUG: DLL unloaded from 0x00007FF8C3440000.\r\n2023-08-10 09:42:05,695 [root] DEBUG: DLL unloaded from 0x00007FF8DAF00000.\r\n2023-08-10 09:42:05,740 [root] DEBUG: DLL unloaded from 0x00007FF8AFE10000.\r\n2023-08-10 09:42:05,740 [root] DEBUG: DLL unloaded from 0x00007FF8D0050000.\r\n2023-08-10 09:42:05,762 [root] DEBUG: DLL unloaded from 0x00007FF8DEB70000.\r\n2023-08-10 09:42:05,779 [root] DEBUG: DLL unloaded from 0x00007FF8D3AF0000.\r\n2023-08-10 09:42:05,779 [root] DEBUG: DLL unloaded from 0x00007FF8C2910000.\r\n2023-08-10 09:42:05,779 [root] DEBUG: DLL unloaded from 0x00007FF8CA280000.\r\n2023-08-10 09:42:05,826 [root] DEBUG: DLL loaded at 0x00007FF8D7C00000: C:\\Windows\\SYSTEM32\\dxcore (0x3b000 bytes).\r\n2023-08-10 09:42:05,851 [root] DEBUG: DLL unloaded from 0x00007FF8E1390000.\r\n2023-08-10 09:42:05,898 [root] DEBUG: DLL unloaded from 0x00007FF8E1DB0000.\r\n2023-08-10 09:42:05,914 [root] DEBUG: DLL unloaded from 0x00007FF8CB470000.\r\n2023-08-10 09:42:05,948 [root] DEBUG: NtTerminateProcess hook: Attempting to dump process 5768\r\n2023-08-10 09:42:05,979 [root] DEBUG: DoProcessDump: Dumping Imagebase at 0x00007FF7AA600000.\r\n2023-08-10 09:42:05,995 [root] DEBUG: DumpImageInCurrentProcess: Attempting to dump virtual PE image.\r\n2023-08-10 09:42:06,026 [root] DEBUG: DumpProcess: Instantiating PeParser with address: 0x00007FF7AA600000.\r\n2023-08-10 09:42:06,071 [root] DEBUG: DumpProcess: Module entry point VA is 0x0000000000002870.\r\n2023-08-10 09:42:06,196 [lib.common.results] INFO: Uploading file C:\\BZUTGP\\CAPE\\5768_2473416642610482023 to procdump\\8fa4fe2a248dc5370a0b4d189262fe395d470cd3c79f377b23561823ccfd071e; Size is 828416; Max size: 100000000\r\n2023-08-10 09:42:06,227 [root] DEBUG: DumpProcess: Module image dump success - dump size 0xca400.\r\n2023-08-10 09:42:06,319 [root] DEBUG: DLL unloaded from 0x00007FF8DAF00000.\r\n2023-08-10 09:42:06,546 [root] DEBUG: DLL unloaded from 0x00007FF8E1D00000.\r\n2023-08-10 09:42:06,572 [root] INFO: Process with pid 5768 has terminated\r\n2023-08-10 09:42:41,550 [root] INFO: Analysis timeout hit, terminating analysis\r\n2023-08-10 09:42:41,550 [root] INFO: Created shutdown mutex\r\n2023-08-10 09:42:42,563 [root] INFO: Shutting down package\r\n2023-08-10 09:42:42,563 [root] INFO: Stopping auxiliary modules\r\n2023-08-10 09:42:42,563 [root] INFO: Stopping auxiliary module: Browser\r\n2023-08-10 09:42:42,563 [root] INFO: Stopping auxiliary module: Curtain\r\n2023-08-10 09:42:42,735 [lib.common.results] INFO: Uploading file C:\\curtain.log to curtain/1691649762.7356899.curtain.log; Size is 13970; Max size: 100000000\r\n2023-08-10 09:42:42,756 [root] INFO: Stopping auxiliary module: Evtx\r\n2023-08-10 09:42:42,756 [root] INFO: Stopping auxiliary module: FilePickup\r\n2023-08-10 09:42:42,756 [root] INFO: Stopping auxiliary module: Human\r\n2023-08-10 09:42:42,769 [root] INFO: Stopping auxiliary module: Pre_script\r\n2023-08-10 09:42:42,769 [root] INFO: Stopping auxiliary module: Procmon\r\n2023-08-10 09:42:42,769 [root] INFO: Stopping auxiliary module: Screenshots\r\n2023-08-10 09:42:42,769 [root] INFO: Stopping auxiliary module: Sysmon\r\n2023-08-10 09:42:42,769 [root] INFO: Stopping auxiliary module: Usage\r\n2023-08-10 09:42:42,769 [root] INFO: Stopping auxiliary module: During_script\r\n2023-08-10 09:42:42,769 [root] INFO: Finishing auxiliary modules\r\n2023-08-10 09:42:42,769 [root] INFO: Shutting down pipe server and dumping dropped files\r\n2023-08-10 09:42:42,769 [root] WARNING: Folder at path \"C:\\BZUTGP\\debugger\" does not exist, skipping\r\n2023-08-10 09:42:42,769 [root] INFO: Uploading files at path \"C:\\BZUTGP\\tlsdump\"\r\n2023-08-10 09:42:42,769 [lib.common.results] INFO: Uploading file C:\\BZUTGP\\tlsdump\\tlsdump.log to tlsdump\\tlsdump.log; Size is 1644; Max size: 100000000\r\n2023-08-10 09:42:42,785 [root] INFO: Analysis completed\r\n```\nComment: Which commit are you running/when did you last pull?\nComment: Installation log file for CAPE was created 03/08/2023 at 12:49 GMT. Didn't pull after that.\nComment: ...\nComment: You've ticked the box to say you're running the latest version. You're not, so you're wasting my time.",
+  "Title: Add DarkGate payload dump and detection\nBody: None\nComment: Looks beautiful \u2764\ufe0f \r\n\r\nSeems to have failed ruff due to `modules/processing/parsers/CAPE/DarkGate.py:33:5: F841 [*] Local variable `config_data` is assigned to but never used`\nComment: Could always add a 'packed' example hash to the yara metadata, i.e.:\r\n\r\n```\r\npacked = \"4bd54d05abeb59dcf2b4d1bf9dd51c26049a0d012da85ec8f93430751bf52050\"\r\n```\r\n\nComment: Ooh and a changelog entry for this!\nComment: So proud \u2764\ufe0f \nComment: and a test :)",
+  "Title: Remove sudo error message\nBody: None",
+  "Title: Can't enable web interface auth: Django related errors\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nEnable web interface auth.\r\n\r\n# Current Behavior\r\n\r\nWas trying to enable web interface auth using documentation. Unable to execute `poetry run python manage.py createsuperuser`.\r\n\r\n## Steps to Reproduce\r\n\r\nExecute `poetry run python manage.py createsuperuser`.\r\n\r\n## Context\r\n\r\nCAPE is running on Ubuntu 22.04 in a VMWare VM. Did a full fresh installation (`sudo ./cape2.sh all cape`). I'm using KVM for the analysis with Windows 10.\r\n\r\n## Failure Logs\r\n\r\n```\r\nOPTIONAL! Missed dependency: poetry run pip install -U git+https://github.com/CAPESandbox/httpreplay\r\nMissed dependency flare-floss: poetry run pip install -U flare-floss\r\n\r\nYou have 31 unapplied migration(s). Your project may not work properly until you apply the migrations for app(s): account, admin, auth, authtoken, contenttypes, openid, sessions, sites, socialaccount, users.\r\nRun 'python manage.py migrate' to apply them.\r\nTraceback (most recent call last):\r\n  File \"/home/cape-adm/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/backends/utils.py\", line 89, in _execute\r\n    return self.cursor.execute(sql, params)\r\n  File \"/home/cape-adm/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/backends/sqlite3/base.py\", line 357, in execute\r\n    return Database.Cursor.execute(self, query, params)\r\nsqlite3.OperationalError: no such table: auth_user\r\n\r\nThe above exception was the direct cause of the following exception:\r\n\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/web/manage.py\", line 14, in <module>\r\n    execute_from_command_line(sys.argv)\r\n  File \"/home/cape-adm/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/management/__init__.py\", line 446, in execute_from_command_line\r\n    utility.execute()\r\n  File \"/home/cape-adm/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/management/__init__.py\", line 440, in execute\r\n    self.fetch_command(subcommand).run_from_argv(self.argv)\r\n  File \"/home/cape-adm/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/management/base.py\", line 402, in run_from_argv\r\n    self.execute(*args, **cmd_options)\r\n  File \"/home/cape-adm/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/contrib/auth/management/commands/createsuperuser.py\", line 88, in execute\r\n    return super().execute(*args, **options)\r\n  File \"/home/cape-adm/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/management/base.py\", line 448, in execute\r\n    output = self.handle(*args, **options)\r\n  File \"/home/cape-adm/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/contrib/auth/management/commands/createsuperuser.py\", line 109, in handle\r\n    default_username = get_default_username(database=database)\r\n  File \"/home/cape-adm/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/contrib/auth/management/__init__.py\", line 163, in get_default_username\r\n    auth_app.User._default_manager.db_manager(database).get(\r\n  File \"/home/cape-adm/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/models/manager.py\", line 85, in manager_method\r\n    return getattr(self.get_queryset(), name)(*args, **kwargs)\r\n  File \"/home/cape-adm/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/models/query.py\", line 646, in get\r\n    num = len(clone)\r\n  File \"/home/cape-adm/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/models/query.py\", line 376, in __len__\r\n    self._fetch_all()\r\n  File \"/home/cape-adm/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/models/query.py\", line 1867, in _fetch_all\r\n    self._result_cache = list(self._iterable_class(self))\r\n  File \"/home/cape-adm/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/models/query.py\", line 87, in __iter__\r\n    results = compiler.execute_sql(\r\n  File \"/home/cape-adm/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/models/sql/compiler.py\", line 1398, in execute_sql\r\n    cursor.execute(sql, params)\r\n  File \"/home/cape-adm/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/backends/utils.py\", line 102, in execute\r\n    return super().execute(sql, params)\r\n  File \"/home/cape-adm/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/backends/utils.py\", line 67, in execute\r\n    return self._execute_with_wrappers(\r\n  File \"/home/cape-adm/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/backends/utils.py\", line 80, in _execute_with_wrappers\r\n    return executor(sql, params, many, context)\r\n  File \"/home/cape-adm/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/backends/utils.py\", line 84, in _execute\r\n    with self.db.wrap_database_errors:\r\n  File \"/home/cape-adm/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/utils.py\", line 91, in __exit__\r\n    raise dj_exc_value.with_traceback(traceback) from exc_value\r\n  File \"/home/cape-adm/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/backends/utils.py\", line 89, in _execute\r\n    return self.cursor.execute(sql, params)\r\n  File \"/home/cape-adm/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/backends/sqlite3/base.py\", line 357, in execute\r\n    return Database.Cursor.execute(self, query, params)\r\ndjango.db.utils.OperationalError: no such table: auth_user\r\n```\r\n\r\nAlso tried to migrate using `poetry run python3 manage.py migrate`. However, got an error too:\r\n```\r\nOPTIONAL! Missed dependency: poetry run pip install -U git+https://github.com/CAPESandbox/httpreplay\r\nMissed dependency flare-floss: poetry run pip install -U flare-floss\r\nOperations to perform:\r\n  Apply all migrations: account, admin, auth, authtoken, contenttypes, openid, sessions, sites, socialaccount, users\r\nRunning migrations:\r\nTraceback (most recent call last):\r\n  File \"/home/cape-adm/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/backends/utils.py\", line 87, in _execute\r\n    return self.cursor.execute(sql)\r\n  File \"/home/cape-adm/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/backends/sqlite3/base.py\", line 355, in execute\r\n    return Database.Cursor.execute(self, query)\r\nsqlite3.OperationalError: attempt to write a readonly database\r\n\r\nThe above exception was the direct cause of the following exception:\r\n\r\nTraceback (most recent call last):\r\n  File \"/home/cape-adm/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/migrations/recorder.py\", line 70, in ensure_schema\r\n    editor.create_model(self.Migration)\r\n  File \"/home/cape-adm/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/backends/base/schema.py\", line 447, in create_model\r\n    self.execute(sql, params or None)\r\n  File \"/home/cape-adm/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/backends/base/schema.py\", line 199, in execute\r\n    cursor.execute(sql, params)\r\n  File \"/home/cape-adm/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/backends/utils.py\", line 102, in execute\r\n    return super().execute(sql, params)\r\n  File \"/home/cape-adm/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/backends/utils.py\", line 67, in execute\r\n    return self._execute_with_wrappers(\r\n  File \"/home/cape-adm/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/backends/utils.py\", line 80, in _execute_with_wrappers\r\n    return executor(sql, params, many, context)\r\n  File \"/home/cape-adm/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/backends/utils.py\", line 84, in _execute\r\n    with self.db.wrap_database_errors:\r\n  File \"/home/cape-adm/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/utils.py\", line 91, in __exit__\r\n    raise dj_exc_value.with_traceback(traceback) from exc_value\r\n  File \"/home/cape-adm/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/backends/utils.py\", line 87, in _execute\r\n    return self.cursor.execute(sql)\r\n  File \"/home/cape-adm/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/backends/sqlite3/base.py\", line 355, in execute\r\n    return Database.Cursor.execute(self, query)\r\ndjango.db.utils.OperationalError: attempt to write a readonly database\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/web/manage.py\", line 14, in <module>\r\n    execute_from_command_line(sys.argv)\r\n  File \"/home/cape-adm/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/management/__init__.py\", line 446, in execute_from_command_line\r\n    utility.execute()\r\n  File \"/home/cape-adm/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/management/__init__.py\", line 440, in execute\r\n    self.fetch_command(subcommand).run_from_argv(self.argv)\r\n  File \"/home/cape-adm/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/management/base.py\", line 402, in run_from_argv\r\n    self.execute(*args, **cmd_options)\r\n  File \"/home/cape-adm/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/management/base.py\", line 448, in execute\r\n    output = self.handle(*args, **options)\r\n  File \"/home/cape-adm/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/management/base.py\", line 96, in wrapped\r\n    res = handle_func(*args, **kwargs)\r\n  File \"/home/cape-adm/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/management/commands/migrate.py\", line 349, in handle\r\n    post_migrate_state = executor.migrate(\r\n  File \"/home/cape-adm/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/migrations/executor.py\", line 107, in migrate\r\n    self.recorder.ensure_schema()\r\n  File \"/home/cape-adm/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/migrations/recorder.py\", line 72, in ensure_schema\r\n    raise MigrationSchemaMissing(\r\ndjango.db.migrations.exceptions.MigrationSchemaMissing: Unable to create the django_migrations table (attempt to write a readonly database)\r\n```\nComment: as i don't see how you executed them, i mean which user etc, i guess there is some permission problem due to read only database errors. try to fix them with `cd /opt/CAPEv2 && sudo chown cape:cape . -R` and than rerun those commands `AS cape user`\nComment: Works fine now. Thanks for helping out!",
+  "Title: Account activation\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ ] I am running the latest version\r\n- [ ] I did read the README!\r\n- [ ] I checked the documentation and found no answer\r\n- [ ] I checked to make sure that this issue has not already been filed\r\n- [ ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ ] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. step 1\r\n2. step 2\r\n3. you get it...\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 16.04, Windows 10, macOS 10.12.3\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\r\n\r\nHello, I'm sorry to bother you, but Twitter won't let me message your account to ask for activation. My username on the website is Fra\nComment: Hi Fra, try now\nComment: Hi, now it's solved, thanks! I know it's not the right place to ask this, but is there a way to use the API to submit a sample and then retrieve information (name, etc...) about the executed processes after analysis?\nComment: Glsd to hear it works - I recommend you install your own instance, then you can use the api to do this. The public instance is limited so not ideal for this purpose!",
+  "Title: partial fix for #1680, rewrite proc enum\nBody: This fixes the crash mentioned in #1680 with an architecture-agnostic strategy to process enumeration without NTDLL and struct unpacking. The backing struct was removed and the method was made into a function.\nComment: thank you Nick",
+  "Title: Fix AgentTesla yara rule\nBody: It turned out that decoding routing is unique to XorStringsNET obfuscation.",
+  "Title: Any analysis I start is immediately routed to failed analysis\nBody: Whenever I start CAPE, with the web server open, any file submitted is immediately sent to failed analysis.\r\n\r\nWhen I run the debugger, it says that 1 machine is loaded (I'm using only one guest for now), and it's ready for analysis. I'm using virtualbox. However, every task is deemed unserviceable and immediately fails. Any ideas as to possibly why? Thank you so much for the help in advance.\nComment: why did you remove the template questions? there are important information even for you in there what could be wrong. you need to provide logs, configs etc otherwise is pure guessing and asking the same questions over and over",
+  "Title: Bump cryptography from 41.0.2 to 41.0.3\nBody: Bumps [cryptography](https://github.com/pyca/cryptography) from 41.0.2 to 41.0.3.\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst\">cryptography's changelog</a>.</em></p>\n<blockquote>\n<p>41.0.3 - 2023-08-01</p>\n<pre><code>\n* Fixed performance regression loading DH public keys.\n* Fixed a memory leak when using\n  :class:`~cryptography.hazmat.primitives.ciphers.aead.ChaCha20Poly1305`.\n* Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.1.2.\n<p>.. _v41-0-2:\n</code></pre></p>\n</blockquote>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/pyca/cryptography/commit/b22271cf3c3dd8dc8978f8f4b00b5c7060b6538d\"><code>b22271c</code></a> bump for 41.0.3 (<a href=\"https://redirect.github.com/pyca/cryptography/issues/9330\">#9330</a>)</li>\n<li><a href=\"https://github.com/pyca/cryptography/commit/774a4a16cbd22a89fdb4195ade9e4fcee27a7afa\"><code>774a4a1</code></a> Only check DH key validity when loading a private key. (<a href=\"https://redirect.github.com/pyca/cryptography/issues/9071\">#9071</a>) (<a href=\"https://redirect.github.com/pyca/cryptography/issues/9319\">#9319</a>)</li>\n<li><a href=\"https://github.com/pyca/cryptography/commit/bfa4d95f0f356f2d535efd5c775e0fb3efe90ef2\"><code>bfa4d95</code></a> changelog for 41.0.3 (<a href=\"https://redirect.github.com/pyca/cryptography/issues/9320\">#9320</a>)</li>\n<li><a href=\"https://github.com/pyca/cryptography/commit/0da7165aa73c0a4865b0a4d9e019db3c16eea55a\"><code>0da7165</code></a> backport fix the memory leak in fixedpool (<a href=\"https://redirect.github.com/pyca/cryptography/issues/9272\">#9272</a>) (<a href=\"https://redirect.github.com/pyca/cryptography/issues/9309\">#9309</a>)</li>\n<li>See full diff in <a href=\"https://github.com/pyca/cryptography/compare/41.0.2...41.0.3\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=cryptography&package-manager=pip&previous-version=41.0.2&new-version=41.0.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Web Interface Reports : ERROR :-( The specified analysis does not exist or not finished yet\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I did read the README!\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\nWhen I'm doing an analysis I would expect to have the report on the webservice.\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\n1. Submit sample using either submit.py or the web interface. \r\n2. Wait for the analysis to be ran\r\n3. Process the analysis\r\n4. Get the report\r\n\r\nI ran process.py with the debug mode on to see if it would catch any error but couldn't find anything related to the report section.\r\nThe last line of the output are :\r\nINFO:root:Reports generation completed\r\n2023-08-01 07:23:32,616 [root] INFO: Reports generation completed\r\n\r\nWhen I go in /opt/CAPEV2/storage/analysis/{id}/reports/ I can see both report.html and report.json\r\nBut I still have this error on the webpage :\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/95937827/e5850b7f-6034-451f-bddc-c91d721ced61)\r\n\r\n\r\n\r\n## Context\r\n\r\nI'm running Ubuntu 22.04 in a VMWare VM. \r\nI did a fresh base install\r\nI'm using KVM for the analysis with Windows 10.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | commit 50e4492ca2dafe795ac9a59cb783fd1797bc4b01\r\n| OS version       | Ubuntu 22.04.2 LTS\r\n\r\n## Failure Logs\r\n\r\nThose are the only error I have when I run `sudo -u cape poetry run python3 utils/process.py -d auto` :\r\n\r\n\r\n```\r\nOPTIONAL! Missed dependency: pip3 install https://github.com/CAPESandbox/peepdf/archive/20eda78d7d77fc5b3b652ffc2d8a5b0af796e3dd.zip#egg=peepdf==0.4.2\r\nOPTIONAL! Missed dependency: pip3 install -U git+https://github.com/DissectMalware/batch_deobfuscator\r\nMissed dependency: pip3 install volatility3 -U\r\nname 'JsonRenderer' is not defined\r\nOPTIONAL! Missed dependency: poetry run pip install -U git+https://github.com/CAPESandbox/httpreplay\r\nUnable to import plugin \"modules.processing.sysmon\": No module named 'xmltodict'\r\nINFO:root:Processing analysis data\r\n2023-08-01 07:19:18,075 [root] INFO: Processing analysis data\r\n```\r\n\r\n\r\n```\r\nERROR:lib.cuckoo.core.plugins:Failed to run signature \"uses_windows_utilities\": 'NoneType' object has no attribute 'lower'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 465, in process\r\n    data = signature.run()\r\n  File \"/opt/CAPEv2/utils/../modules/signatures/windows_utilities.py\", line 479, in run\r\n    if init_cmd.lower().startswith(GENERIC_CMD):\r\nAttributeError: 'NoneType' object has no attribute 'lower'\r\n2023-08-01 07:23:32,255 [Task 7] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"uses_windows_utilities\": 'NoneType' object has no attribute 'lower'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 465, in process\r\n    data = signature.run()\r\n  File \"/opt/CAPEv2/utils/../modules/signatures/windows_utilities.py\", line 479, in run\r\n    if init_cmd.lower().startswith(GENERIC_CMD):\r\nAttributeError: 'NoneType' object has no attribute 'lower'\r\n2023-08-01 07:23:32,255 [Task 7] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"uses_windows_utilities\": 'NoneType' object has no attribute 'lower'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 465, in process\r\n    data = signature.run()\r\n  File \"/opt/CAPEv2/utils/../modules/signatures/windows_utilities.py\", line 479, in run\r\n    if init_cmd.lower().startswith(GENERIC_CMD):\r\nAttributeError: 'NoneType' object has no attribute 'lower'\r\n```\nComment: hello, did you enable the mongodb in reporting.conf? did you install mongo also and configured it properly?\nComment: Hello, I did enable mongodb in reporting.conf, I ran the cape2.sh installer in base mode so yes mongodb is installed. I didn't edit the configuration for mongodb, should I modify something?\r\n\r\nAlso when I'm trying to run sudo -u cape poetry run python web/manage.py runserver_plus 0.0.0.0:8000 --traceback --keep-meta-shutdown\r\nI get this : \r\n\r\n```\r\nTraceback (most recent call last):\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/management/__init__.py\", line 259, in fetch_command\r\n    app_name = commands[subcommand]\r\nKeyError: 'runserver_plus'\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/web/manage.py\", line 14, in <module>\r\n    execute_from_command_line(sys.argv)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/management/__init__.py\", line 446, in execute_from_command_line\r\n    utility.execute()\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/management/__init__.py\", line 440, in execute\r\n    self.fetch_command(subcommand).run_from_argv(self.argv)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/management/__init__.py\", line 266, in fetch_command\r\n    settings.INSTALLED_APPS\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/conf/__init__.py\", line 92, in __getattr__\r\n    self._setup(name)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/conf/__init__.py\", line 79, in _setup\r\n    self._wrapped = Settings(settings_module)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/conf/__init__.py\", line 190, in __init__\r\n    mod = importlib.import_module(self.SETTINGS_MODULE)\r\n  File \"/usr/lib/python3.10/importlib/__init__.py\", line 126, in import_module\r\n    return _bootstrap._gcd_import(name[level:], package, level)\r\n  File \"<frozen importlib._bootstrap>\", line 1050, in _gcd_import\r\n  File \"<frozen importlib._bootstrap>\", line 1027, in _find_and_load\r\n  File \"<frozen importlib._bootstrap>\", line 1006, in _find_and_load_unlocked\r\n  File \"<frozen importlib._bootstrap>\", line 688, in _load_unlocked\r\n  File \"<frozen importlib._bootstrap_external>\", line 883, in exec_module\r\n  File \"<frozen importlib._bootstrap>\", line 241, in _call_with_frames_removed\r\n  File \"/opt/CAPEv2/web/web/settings.py\", line 20, in <module>\r\n    from lib.cuckoo.common.config import Config\r\nModuleNotFoundError: No module named 'lib.cuckoo'\r\n```\r\nDid I messed something up?\r\n\r\n\nComment: Yes, google this KeyError: 'runserver_plus'\r\n You have missed dependencies, +try torun from inside of web folder\r\n\r\nEl mar, 1 ago 2023, 12:18, v1ctorp1vert ***@***.***> escribi\u00f3:\r\n\r\n> Hello, I did enable mongodb in reporting.conf, I ran the cape2.sh\r\n> installer in base mode so yes mongodb is installed. I didn't edit the\r\n> configuration for mongodb, should I modify something?\r\n>\r\n> Also when I'm trying to run sudo -u cape poetry run python web/manage.py\r\n> runserver_plus 0.0.0.0:8000 --traceback --keep-meta-shutdown\r\n> I get this :\r\n>\r\n> Traceback (most recent call last):\r\n>   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/management/__init__.py\", line 259, in fetch_command\r\n>     app_name = commands[subcommand]\r\n> KeyError: 'runserver_plus'\r\n>\r\n> During handling of the above exception, another exception occurred:\r\n>\r\n> Traceback (most recent call last):\r\n>   File \"/opt/CAPEv2/web/manage.py\", line 14, in <module>\r\n>     execute_from_command_line(sys.argv)\r\n>   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/management/__init__.py\", line 446, in execute_from_command_line\r\n>     utility.execute()\r\n>   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/management/__init__.py\", line 440, in execute\r\n>     self.fetch_command(subcommand).run_from_argv(self.argv)\r\n>   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/management/__init__.py\", line 266, in fetch_command\r\n>     settings.INSTALLED_APPS\r\n>   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/conf/__init__.py\", line 92, in __getattr__\r\n>     self._setup(name)\r\n>   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/conf/__init__.py\", line 79, in _setup\r\n>     self._wrapped = Settings(settings_module)\r\n>   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/conf/__init__.py\", line 190, in __init__\r\n>     mod = importlib.import_module(self.SETTINGS_MODULE)\r\n>   File \"/usr/lib/python3.10/importlib/__init__.py\", line 126, in import_module\r\n>     return _bootstrap._gcd_import(name[level:], package, level)\r\n>   File \"<frozen importlib._bootstrap>\", line 1050, in _gcd_import\r\n>   File \"<frozen importlib._bootstrap>\", line 1027, in _find_and_load\r\n>   File \"<frozen importlib._bootstrap>\", line 1006, in _find_and_load_unlocked\r\n>   File \"<frozen importlib._bootstrap>\", line 688, in _load_unlocked\r\n>   File \"<frozen importlib._bootstrap_external>\", line 883, in exec_module\r\n>   File \"<frozen importlib._bootstrap>\", line 241, in _call_with_frames_removed\r\n>   File \"/opt/CAPEv2/web/web/settings.py\", line 20, in <module>\r\n>     from lib.cuckoo.common.config import Config\r\n> ModuleNotFoundError: No module named 'lib.cuckoo'\r\n>\r\n> Did I messed something up?\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1682#issuecomment-1660014915>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH36XFSLIMZ4JTRCOC63XTDJYZANCNFSM6AAAAAA27LIOAQ>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: I tried to run from the web dir but wasn't successful. The error seems to be related to the missing module lib.cuckoo.\r\nIs there any way I can install it? I ran the poetry install but didn't find any updates or new dependencies to run.\nComment: That module is part of cape, and is inside of the lib/cuckoo/common/config\r\nso it cant be missed\r\n\r\nEl mar, 1 ago 2023, 12:32, v1ctorp1vert ***@***.***> escribi\u00f3:\r\n\r\n> I tried to run from the web dir but wasn't successful. The error seems to\r\n> be related to the missing module lib.cuckoo.\r\n> Is there any way I can install it? I ran the poetry install but didn't\r\n> find any updates or new dependencies to run.\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1682#issuecomment-1660037701>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH34U5G3OWZCQSG2RNA3XTDLNPANCNFSM6AAAAAA27LIOAQ>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: cd /opt/CAPEv2\r\npoetry run pip install django-extensions\r\nThen try to start the web\r\n\r\nEl mar, 1 ago 2023, 12:33, Andriy Brukhovetskyy ***@***.***>\r\nescribi\u00f3:\r\n\r\n> That module is part of cape, and is inside of the lib/cuckoo/common/config\r\n> so it cant be missed\r\n>\r\n> El mar, 1 ago 2023, 12:32, v1ctorp1vert ***@***.***>\r\n> escribi\u00f3:\r\n>\r\n>> I tried to run from the web dir but wasn't successful. The error seems to\r\n>> be related to the missing module lib.cuckoo.\r\n>> Is there any way I can install it? I ran the poetry install but didn't\r\n>> find any updates or new dependencies to run.\r\n>>\r\n>> \u2014\r\n>> Reply to this email directly, view it on GitHub\r\n>> <https://github.com/kevoreilly/CAPEv2/issues/1682#issuecomment-1660037701>,\r\n>> or unsubscribe\r\n>> <https://github.com/notifications/unsubscribe-auth/AAOFH34U5G3OWZCQSG2RNA3XTDLNPANCNFSM6AAAAAA27LIOAQ>\r\n>> .\r\n>> You are receiving this because you commented.Message ID:\r\n>> ***@***.***>\r\n>>\r\n>\r\n\nComment: All the requirements were already satisfied. but still the same error ModuleNotFoundError: No module named 'lib.cuckoo'\r\n\nComment: That not make any sense\r\n\r\nEl mar, 1 ago 2023, 13:07, v1ctorp1vert ***@***.***> escribi\u00f3:\r\n\r\n> All the requirements were already satisfied. but still the same error\r\n> ModuleNotFoundError: No module named 'lib.cuckoo'\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1682#issuecomment-1660095204>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3Y4G7OWQKYL7HAH6ILXTDPO5ANCNFSM6AAAAAA27LIOAQ>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: Had the same issue. I also had an error in `cape-web` logs while performing analysis: `WARNING:root:PyMongo auto-reconnecting...127.0.0.1:27017: [Errno 111] Connection refused, Timeout: 30s, Topology Description: <TopologyDescription id: 64c9250c3f2bec1a22e7da16, topology_type: Unknown, servers: [<ServerDescription ('127.0.0.1', 27017) server_type: Unknown, rtt: None, error=AutoReconnect('127.0.0.1:27017: [Errno 111] Connection refused')>]>. Waiting 1.0 seconds`\r\n\r\nI used [this answer](https://stackoverflow.com/a/68973140) to reinstall MongoDB. Then I:\r\n- Changed `bindIp` value from `127.0.0.1` to `0.0.0.0` in `/etc/mongod.conf`\r\n- Restarted mongod service: `sudo systemctl restart mongod`\r\n- Restarted all cape services: `sudo systemctl restart cape*`\r\nAnd it solved the problem - can now view data from analysis using web interface.\nComment: here is the problem, mongod is not our systemd file, our one is mongodb, we remove systemd as we use it only in clustered cape\nComment: my main suggestion in case if you have mongo problem, is to investigate mongo log, otherwise on long run you can generate more problem on conflicting services, but thanks for tip\nComment: @v1ctorp1vert what if you run just like this? `cd /opt/CAPEv2/web && sudo -u cape poetry run python manage.py runserver 0.0.0.0:8000`\nComment: Still the same error, it's really weird.\r\n\r\n```\r\ncd /opt/CAPEv2/web && sudo -u cape poetry run python manage.py runserver 0.0.0.0:8000\r\n[sudo] password for user: \r\nTraceback (most recent call last):\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/management/base.py\", line 402, in run_from_argv\r\n    self.execute(*args, **cmd_options)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/management/commands/runserver.py\", line 74, in execute\r\n    super().execute(*args, **options)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/management/base.py\", line 448, in execute\r\n    output = self.handle(*args, **options)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/management/commands/runserver.py\", line 81, in handle\r\n    if not settings.DEBUG and not settings.ALLOWED_HOSTS:\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/conf/__init__.py\", line 92, in __getattr__\r\n    self._setup(name)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/conf/__init__.py\", line 79, in _setup\r\n    self._wrapped = Settings(settings_module)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/conf/__init__.py\", line 190, in __init__\r\n    mod = importlib.import_module(self.SETTINGS_MODULE)\r\n  File \"/usr/lib/python3.10/importlib/__init__.py\", line 126, in import_module\r\n    return _bootstrap._gcd_import(name[level:], package, level)\r\n  File \"<frozen importlib._bootstrap>\", line 1050, in _gcd_import\r\n  File \"<frozen importlib._bootstrap>\", line 1027, in _find_and_load\r\n  File \"<frozen importlib._bootstrap>\", line 1006, in _find_and_load_unlocked\r\n  File \"<frozen importlib._bootstrap>\", line 688, in _load_unlocked\r\n  File \"<frozen importlib._bootstrap_external>\", line 883, in exec_module\r\n  File \"<frozen importlib._bootstrap>\", line 241, in _call_with_frames_removed\r\n  File \"/opt/CAPEv2/web/web/settings.py\", line 20, in <module>\r\n    from lib.cuckoo.common.config import Config\r\nModuleNotFoundError: No module named 'lib.cuckoo'\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/web/manage.py\", line 14, in <module>\r\n    execute_from_command_line(sys.argv)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/management/__init__.py\", line 446, in execute_from_command_line\r\n    utility.execute()\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/management/__init__.py\", line 440, in execute\r\n    self.fetch_command(subcommand).run_from_argv(self.argv)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/management/base.py\", line 415, in run_from_argv\r\n    connections.close_all()\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/utils/connection.py\", line 84, in close_all\r\n    for conn in self.all(initialized_only=True):\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/utils/connection.py\", line 76, in all\r\n    return [\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/utils/connection.py\", line 73, in __iter__\r\n    return iter(self.settings)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/utils/functional.py\", line 57, in __get__\r\n    res = instance.__dict__[self.name] = self.func(instance)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/utils/connection.py\", line 45, in settings\r\n    self._settings = self.configure_settings(self._settings)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/utils.py\", line 148, in configure_settings\r\n    databases = super().configure_settings(databases)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/utils/connection.py\", line 50, in configure_settings\r\n    settings = getattr(django_settings, self.settings_name)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/conf/__init__.py\", line 92, in __getattr__\r\n    self._setup(name)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/conf/__init__.py\", line 79, in _setup\r\n    self._wrapped = Settings(settings_module)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/conf/__init__.py\", line 190, in __init__\r\n    mod = importlib.import_module(self.SETTINGS_MODULE)\r\n  File \"/usr/lib/python3.10/importlib/__init__.py\", line 126, in import_module\r\n    return _bootstrap._gcd_import(name[level:], package, level)\r\n  File \"<frozen importlib._bootstrap>\", line 1050, in _gcd_import\r\n  File \"<frozen importlib._bootstrap>\", line 1027, in _find_and_load\r\n  File \"<frozen importlib._bootstrap>\", line 1006, in _find_and_load_unlocked\r\n  File \"<frozen importlib._bootstrap>\", line 688, in _load_unlocked\r\n  File \"<frozen importlib._bootstrap_external>\", line 883, in exec_module\r\n  File \"<frozen importlib._bootstrap>\", line 241, in _call_with_frames_removed\r\n  File \"/opt/CAPEv2/web/web/settings.py\", line 20, in <module>\r\n    from lib.cuckoo.common.config import Config\r\nModuleNotFoundError: No module named 'lib.cuckoo'\r\n```\r\n\r\nI reinstalled everything from scratch on another machine and everything went smoothly. I must have f*cked smth during the install of this one.\r\nThanks for your time. \r\n \nComment: np, yes something is messed here",
+  "Title: improve x86 Python requirements docs; #1680\nBody: The x86 Python requirement in Windows VMs isn't documented very well. Improve that a bit and reference #1680.",
+  "Title: Python x64 versions crash the analysis process\nBody: Both the [docs](https://capev2.readthedocs.io/en/latest/installation/guest/requirements.html#install-python) and [agent module](https://github.com/kevoreilly/CAPEv2/blob/c04cc401c18c08ca5227de37fdfd4316b432c8c6/agent/agent.py#L33) say an x86 version of Python is required.\r\n\r\nUnder the covers the analysis process calls a bunch of low-level Windows libraries, unpacking the results of these calls into a series of [structures defined in lib.common.defines](https://github.com/kevoreilly/CAPEv2/blob/master/analyzer/windows/lib/common/defines.py). The analyzer assumes the structures use 32-bit sizes, and will crash if running under a 64-bit Python.\r\n\r\nThere are architecture independent ways of doing most of what the analyzer needs to do, but for now the x86 requirement is there based on how the analyzer is written.\r\n\r\nNote, the agent module doesn't need to run under an x86 Python, only the analyzer process. CAPE [just happens to use the same `sys.executable` for both](https://github.com/kevoreilly/CAPEv2/blob/c04cc401c18c08ca5227de37fdfd4316b432c8c6/agent/agent.py#L420).\nComment: This [commit ](https://github.com/nbargnesi/CAPEv2/commit/d41c9fec6269e594155bdb458b0077a33330fe05) fixes the struct unpacking crash when a 64-bit Python is used.\nComment: can you PR this commit?\nComment: Done. I think we should keep this issue open for some time - there will be more crashes and issues running under a x64 Python analyzer.\nComment: The following commit implements the changes made to CAPEsolo (https://github.com/CAPESandbox/CAPEsolo) to enable 64-bit Python guests.\n\nhttps://github.com/kevoreilly/CAPEv2/commit/43d5881bfdadbe2a6b8fa5f9cf9b923bcc96eec0\n\nIt still needs to be tested on a CAPE instance, if anyone has the spare cycles.",
+  "Title: Fix issue in architecture determination when linux support is enabled.\nBody: Previously, if LINUX_ENABLED is True, then 32-bit PE samples would still get tagged with x64 and thus only run on x64 VM's, because _get_linux_vm_tag would get called and always return x64. This makes it so that we only call that function if the platform is actually linux in order that x86 might still get applied to the 32-bit PE.",
+  "Title: vSphere VM without name attribute\nBody: closes #1669 \nComment: thanks",
+  "Title: Adding context behind the generic package cmd\nBody: None",
+  "Title: Fix typo; Print signature result output\nBody: None",
+  "Title: Wrong File Package\nBody: # Main Issue:\r\nCAPE typically identifies the file type using its `CONTENT-TYPE` MIME **(as I understand)**, with assistance from the CAPE agent, and then proceeds to determine the appropriate package for executing the file. If the file type is not detected correctly, it will be identified based on its magic bytes.\r\n\r\nUnfortunately, JAR files without their extension are treated as ZIP files. To solve this, I have modified the file type detection logic to be more specific, selecting based on the magic bytes **_ONLY_**.\r\n\r\nfilehash: 7f4e1b678de5191288c8e74a64c82d60\r\nhttps://www.virustotal.com/gui/file/c55ba1aa7a57b772f0108cd8f90a36787468ef0e2a53ef9fc2bcf689d109a95c/\nComment: as i told packages.py is dead, and all changes should go to sflock, thanks anyway i will keep this open till i add it to sflock\nComment: sflock 0.3.52 is released with proper identification, thank you\nComment: i had to revert the analyzer code due to problems reported by community\nComment: Could you discuss these problems with me, please?\nComment: There's a report that shellcode packages are broken by this commit, the revert is prudent whilst we investigate, please do not take offence at this.\nComment: the problem with your changes was forcing to identify package inside of the vm and totally ignore the user specified. that is not the way to go, i have missed somehow that. the `packages.py` is just there for legacy purposes but now all logic should be defined in sflock. so if you set package on submission it wasn't used and could be set to different things. is definitely not what we want. but well at least i have refreshed the understanding of that part of code. i guess we should review again packages.py ensure that everything is in packages and remove packages.py",
+  "Title: Don't lose data when multiple configs for the same family are found.\nBody: Keep them separate and maintain the file_obj hashes associated with each one.\nComment: Hmm I'm not sure about this - currently the design is that if it's a single family name, the config should be merged non-destructively. If they need to be separated they should be classified differerently.\nComment: The problem we ran in to was that the original sample had a config extracted. Then a payload had a config extracted for the same family. Due to a bug in the extractor, it returned all empty strings for the fields that had been extracted from the sample, which led to data loss because those overwrote the original ones. That got me thinking that distinct configs should always just be stored separately, so that it looks like this: \r\n![image](https://github.com/kevoreilly/CAPEv2/assets/4206917/45c47b17-663c-49fd-b0d7-229ba9dc4b1a)\r\nNote that this was taken after the bug in the config extractor was fixed and you'll notice that the payload does not have the Mutex field.\nComment: looks fine to me, but i will leave this to Kevin to decide \nComment: This caters for what I perceive as a very unlikely scenario - two distinct variants from the same family with different configs in the same job. \r\n\r\nThe issue I have is that what is a far more common scenario is that there are often multiple payloads from a single sample which may each contain the config. There are other scenarios where the whole config for a sample may be split across payloads. Finally there is the scenario in dynamic (debugger-based) config extraction where by its very nature it often involves capturing a single config item field in a dump, where the assumption is they will all be merged in the end.\r\n\r\nIt is for the above three scenarios that I had designed the current system of merging, and unfortunately to fix it for the scenario you mention of multiple variants in a single job seems to break the handling of the others which are far more common.\nComment: Self update, is frequent thing\r\n\r\nEl mi\u00e9, 26 jul 2023, 15:25, kevoreilly ***@***.***> escribi\u00f3:\r\n\r\n> This caters for what I perceive as a very unlikely scenario - two distinct\r\n> variants from the same family with different configs in the same job.\r\n>\r\n> The issue I have is that what is a far more common scenario is that there\r\n> are often multiple payloads from a single sample which may each contain the\r\n> config. There are other scenarios where the whole config for a sample may\r\n> be split across payloads. Finally there is the scenario in dynamic\r\n> (debugger-based) config extraction where by its very nature it often\r\n> involves capturing a single config item field in a dump, where the\r\n> assumption is they will all be merged in the end.\r\n>\r\n> It is for the above three scenarios that I had designed the current system\r\n> of merging, and unfortunately to fix it for the scenario you mention of\r\n> multiple variants in a single job seems to break the handling of the others\r\n> which are far more common.\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/pull/1674#issuecomment-1651801475>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3Z5M5CP7QYOV4LS2ELXSELC5ANCNFSM6AAAAAA2XCZBDE>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: I am open to suggestions on how to handle all these cases concurrently. And although I'd be keen to keep it on by default, I would also be happy to make the merging a configurable option.",
+  "Title: pdf files to  large\nBody: I just got a short question, why does the reportpdf.py creates the pdf with images and not plain text? \r\n\r\nThe PDF size is big, because of that issue. I try to figure out why, but in the pdfreport.py there is nothing that tends to create a pdf with images out of a html file\r\n\r\n```\r\n\r\n> import logging\r\n> import os\r\n> from subprocess import call\r\n> \r\n> from lib.cuckoo.common.abstracts import Report\r\n> from lib.cuckoo.common.exceptions import CuckooReportError\r\n> from lib.cuckoo.common.path_utils import path_exists\r\n> \r\n> try:\r\n>     from weasyprint import HTML\r\n> \r\n>     HAVE_WEASYPRINT = True\r\n> except ImportError:\r\n>     HAVE_WEASYPRINT = False\r\n> \r\n> \r\n> class ReportPDF(Report):\r\n>     \"\"\"Stores report in PDF format.\"\"\"\r\n> \r\n>     # ensure we run after the summary HTML report\r\n>     order = 10\r\n> \r\n>     def run(self, results):\r\n>         if not os.path.isfile(os.path.join(self.reports_path, \"summary-report.html\")):\r\n>             raise CuckooReportError(\r\n>                 \"Unable to open summary HTML report to convert to PDF: Ensure reporthtmlsummary is enabled in reporting.conf\"\r\n>             )\r\n> \r\n>         if path_exists(\"/usr/bin/xvfb-run\") and path_exists(\"/usr/bin/wkhtmltopdf\"):\r\n>             call(\r\n>                 [\r\n>                     \"/usr/bin/xvfb-run\",\r\n>                     \"--auto-servernum\",\r\n>                     \"--server-num\",\r\n>                     \"1\",\r\n>                     \"/usr/bin/wkhtmltopdf\",\r\n>                     \"-q\",\r\n>                     os.path.join(self.reports_path, \"summary-report.html\"),\r\n>                     os.path.join(self.reports_path, \"report.pdf\"),\r\n>                 ]\r\n>             )\r\n>             return True\r\n> \r\n>         if not HAVE_WEASYPRINT:\r\n>             raise CuckooReportError(\r\n>                 \"Failed to generate PDF report: Neither wkhtmltopdf nor Weasyprint Python library are installed\"\r\n>             )\r\n> \r\n>         logger = logging.getLogger(\"weasyprint\")\r\n>         logger.handlers = []\r\n>         logger.setLevel(logging.ERROR)\r\n> \r\n>         HTML(os.path.join(self.reports_path, \"summary-report.html\")).write_pdf(os.path.join(self.reports_path, \"report.pdf\"))\r\n> \r\n>         return True\"\r\n```\nComment: you can disable them here https://github.com/kevoreilly/CAPEv2/blob/master/conf/reporting.conf#L56\nComment: Thanks for reply i tried it restart everything. Still PDF document pages are pictures, and too large idk what im doing wrong.\r\n\r\nmy config \r\n```\r\n\r\n# Enable or disable the available reporting modules [on/off].\r\n# If you add a custom reporting module to your Cuckoo setup, you have to add\r\n# a dedicated entry in this file, or it won't be executed.\r\n# You can also add additional options under the section of your module and\r\n# they will be available in your Python class.\r\n\r\n[cents]\r\nenabled = no\r\non_demand = no\r\n# starting signature id for created Suricata rules\r\nstart_sid = 1000000\r\n\r\n[mitre]\r\nenabled = no\r\n\r\n# https://github.com/geekscrapy/binGraph\r\n# requires -> apt-get install python-tk\r\n[bingraph]\r\nenabled = yes\r\non_demand = yes\r\nbinary = yes\r\n# geenrate bingraphs for cape/procdumps\r\ncape = yes\r\nprocdump = yes\r\n\r\n[pcap2cert]\r\n# jk edit, hat bei processing 200, sek dedauert...\r\nenabled = no\r\n\r\n[litereport]\r\nenabled = no\r\nkeys_to_copy = CAPE procdump info signatures dropped static target network shot malscore ttps\r\nbehavior_keys_to_copy = processtree summary\r\n\r\n[jsondump]\r\nenabled = yes\r\n# use the c-optimized JSON encoder, requires fitting entire JSON results in memory\r\nram_boost = no\r\nindent = 4\r\nencoding = latin-1\r\n\r\n[reporthtml]\r\n# required for the WSGI interface\r\nenabled = yes\r\n\r\n[reporthtmlsummary]\r\n# much smaller, faster report generation, omits API logs and is non-interactive\r\nenabled = yes\r\nscreenshots = no\r\n[reportpdf]\r\n# Note that this requires reporthtmlsummary to be enabled above as well\r\nenabled = yes\r\nscreenshots = no\"\r\n\r\n```\r\n\r\n\r\nsorry, when i oversee something \"easy\" \nComment: ah yes it will be as image, is the tool used to convert html to pdf, is legacy cuckoo code, we don't maintain html/pdf reporting modules, so you are welcome to research and improve the code if you need it. i thought you were speaking about screenshots in pdf file",
+  "Title: Dropped files not gathering all dropped files.\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I did read the README!\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nEasy access to all files found within an analysis. \r\n\r\n# Current Behavior\r\n\r\nCurrently, our instance will detect dropped files that actually dropped on disk, but doesn't detect or show files that are downloaded via URL. \r\n\r\nThis isn't necessarily a bug, as dropped files does what it is supposed to do - detect dropped files. This is more of a question / comment, is there an easier way to show downloaded files rather then search through the network pcap?\r\n\nComment: This is something that needs fixing - I would definitely expect to see downloaded files appear in dropped files. Are you able to elaborate by what mechanism they are downloaded/written to disk? For example using  `URLDownloadToFile` they should indeed be captured:\r\n\r\n```\r\nHOOKDEF(HRESULT, WINAPI, URLDownloadToFileW,\r\n\tLPUNKNOWN pCaller,\r\n\tLPWSTR szURL,\r\n\tLPWSTR szFileName,\r\n\tDWORD dwReserved,\r\n\tLPVOID lpfnCB\r\n) {\r\n\tHRESULT ret = Old_URLDownloadToFileW(pCaller, szURL, szFileName, dwReserved, lpfnCB);\r\n\tLOQ_hresult(\"network\", \"uFs\", \"URL\", szURL, \"FileName\", szFileName, \"StackPivoted\", is_stack_pivoted() ? \"yes\" : \"no\");\r\n\tif (ret == S_OK && dropped_count < g_config.dropped_limit) {\r\n\t\tpipe(\"FILE_NEW:%Z\", szFileName);\r\n\t\tdropped_count++;\r\n\t}\r\n\r\n\treturn ret;\r\n}\r\n```\r\n\r\nNote the `pipe(\"FILE_NEW:%Z\", szFileName);` line which is where the message to capture this file in dropped is sent.\nComment: If I were to browse to any URL and download a file, that file won't appear in the dropped file section. Sounds like an error in my setup by what you've mentioned. \nComment: You haven't given me much detail! It could have been a malware sample downloading, not a browser. Now I have to ask which browser. Please supply more information in your issues as per the template, such as browser version, os, example url etc so that I can recreate your issue exactly.\nComment: I apologize, in my initial post I didn't actually think this was an issue so I did not provide as much information. Here is my setup:\r\n\r\n### CAPE:\r\nRunning on Ubuntu 22.04. (Updated last week Monday)\r\n\r\n### Analysis Machines:\r\nBrowser: Microsoft Edge 114.0.1823.82\r\nOS: Windows 10 Pro 10.0.19045\r\n(I've confirmed that this behavior is consistent with Firefox (Latest Version)).\r\n\r\nAdditionally, I have confirmed that dropped files by other means (such as excel VBA code) show up in the dropped files section.  This behavior is consistent in both viewing the CAPE site and under the /analyses/###/ page.\r\nI will attach my analysis.log here. This was simply a download from a URL - nothing even malicious about this product, once downloaded the file does not appear in the dropped files section.\r\n\r\n\r\n```\r\n2023-07-20 09:52:49,732 [root] INFO: Date set to: 20230724T15:06:05, timeout set to: 60\r\n2023-07-24 15:06:05,450 [root] DEBUG: Starting analyzer from: C:\\tmpr1ubf8pk\r\n2023-07-24 15:06:05,450 [root] DEBUG: Storing results at: C:\\jXEeyE\r\n2023-07-24 15:06:05,450 [root] DEBUG: Pipe server name: \\\\.\\PIPE\\ZbDZEI\r\n2023-07-24 15:06:05,450 [root] DEBUG: Python path: C:\\Users\\Cape\\AppData\\Local\\Programs\\Python\\Python312-32\r\n2023-07-24 15:06:05,450 [root] INFO: Analysis package \"edge\" has been specified\r\n2023-07-24 15:06:05,450 [root] DEBUG: Importing analysis package \"edge\"...\r\n2023-07-24 15:06:05,450 [root] DEBUG: Initializing analysis package \"edge\"...\r\n2023-07-24 15:06:05,450 [root] DEBUG: New location of moved file: https://install.trimble.com/datatransfer/index.html\r\n2023-07-24 15:06:05,450 [root] INFO: Analyzer: Package modules.packages.edge does not specify a DLL option\r\n2023-07-24 15:06:05,450 [root] INFO: Analyzer: Package modules.packages.edge does not specify a DLL_64 option\r\n2023-07-24 15:06:05,450 [root] INFO: Analyzer: Package modules.packages.edge does not specify a loader option\r\n2023-07-24 15:06:05,450 [root] INFO: Analyzer: Package modules.packages.edge does not specify a loader_64 option\r\n2023-07-24 15:06:05,840 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.browser\"...\r\n2023-07-24 15:06:05,840 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.curtain\"...\r\n2023-07-24 15:06:05,840 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.digisig\"...\r\n2023-07-24 15:06:05,903 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.disguise\"...\r\n2023-07-24 15:06:05,934 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.during_script\"...\r\n2023-07-24 15:06:05,949 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.evtx\"...\r\n2023-07-24 15:06:05,949 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.filepickup\"...\r\n2023-07-24 15:06:05,949 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.human\"...\r\n2023-07-24 15:06:05,996 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.permissions\"...\r\n2023-07-24 15:06:05,996 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.pre_script\"...\r\n2023-07-24 15:06:05,996 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.procmon\"...\r\n2023-07-24 15:06:06,012 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.recentfiles\"...\r\n2023-07-24 15:06:06,231 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.screenshots\"...\r\n2023-07-24 15:06:06,231 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageChops'\r\n2023-07-24 15:06:06,934 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageGrab'\r\n2023-07-24 15:06:06,949 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageDraw'\r\n2023-07-24 15:06:06,949 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.sysmon\"...\r\n2023-07-24 15:06:06,949 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.tlsdump\"...\r\n2023-07-24 15:06:06,965 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.usage\"...\r\n2023-07-24 15:06:07,028 [root] DEBUG: Initialized auxiliary module \"Browser\"\r\n2023-07-24 15:06:07,028 [root] DEBUG: Trying to start auxiliary module \"Browser\"...\r\n2023-07-24 15:06:07,043 [root] DEBUG: Started auxiliary module \"Browser\"\r\n2023-07-24 15:06:07,043 [root] DEBUG: Started auxiliary module Browser\r\n2023-07-24 15:06:07,043 [root] DEBUG: Initialized auxiliary module \"Curtain\"\r\n2023-07-24 15:06:07,043 [root] DEBUG: Trying to start auxiliary module \"Curtain\"...\r\n2023-07-24 15:06:07,153 [root] DEBUG: Started auxiliary module \"Curtain\"\r\n2023-07-24 15:06:07,153 [root] DEBUG: Started auxiliary module Curtain\r\n2023-07-24 15:06:07,153 [root] DEBUG: Initialized auxiliary module \"DigiSig\"\r\n2023-07-24 15:06:07,153 [root] DEBUG: Trying to start auxiliary module \"DigiSig\"...\r\n2023-07-24 15:06:07,153 [modules.auxiliary.digisig] DEBUG: Skipping authenticode validation, analysis is not a file\r\n2023-07-24 15:06:07,153 [root] DEBUG: Started auxiliary module \"DigiSig\"\r\n2023-07-24 15:06:07,153 [root] DEBUG: Started auxiliary module DigiSig\r\n2023-07-24 15:06:07,153 [root] DEBUG: Initialized auxiliary module \"Disguise\"\r\n2023-07-24 15:06:07,153 [root] DEBUG: Trying to start auxiliary module \"Disguise\"...\r\n2023-07-24 15:06:07,153 [modules.auxiliary.disguise] INFO: Disguising GUID to 850b4d72-b474-41bb-8a76-b852453027b8\r\n2023-07-24 15:06:07,153 [root] DEBUG: Started auxiliary module \"Disguise\"\r\n2023-07-24 15:06:07,153 [root] DEBUG: Started auxiliary module Disguise\r\n2023-07-24 15:06:07,153 [root] DEBUG: Initialized auxiliary module \"Evtx\"\r\n2023-07-24 15:06:07,153 [root] DEBUG: Trying to start auxiliary module \"Evtx\"...\r\n2023-07-24 15:06:07,168 [root] DEBUG: Started auxiliary module \"Evtx\"\r\n2023-07-24 15:06:07,168 [root] DEBUG: Started auxiliary module Evtx\r\n2023-07-24 15:06:07,168 [root] DEBUG: Initialized auxiliary module \"FilePickup\"\r\n2023-07-24 15:06:07,168 [root] DEBUG: Trying to start auxiliary module \"FilePickup\"...\r\n2023-07-24 15:06:07,168 [root] DEBUG: Started auxiliary module \"FilePickup\"\r\n2023-07-24 15:06:07,168 [root] DEBUG: Started auxiliary module FilePickup\r\n2023-07-24 15:06:07,168 [root] DEBUG: Initialized auxiliary module \"Human\"\r\n2023-07-24 15:06:07,168 [root] DEBUG: Trying to start auxiliary module \"Human\"...\r\n2023-07-24 15:06:07,168 [root] DEBUG: Started auxiliary module \"Human\"\r\n2023-07-24 15:06:07,168 [root] DEBUG: Started auxiliary module Human\r\n2023-07-24 15:06:07,168 [root] DEBUG: Initialized auxiliary module \"Permissions\"\r\n2023-07-24 15:06:07,168 [root] DEBUG: Trying to start auxiliary module \"Permissions\"...\r\n2023-07-24 15:06:07,168 [root] DEBUG: Started auxiliary module \"Permissions\"\r\n2023-07-24 15:06:07,168 [root] DEBUG: Started auxiliary module Permissions\r\n2023-07-24 15:06:07,168 [root] DEBUG: Initialized auxiliary module \"Pre_script\"\r\n2023-07-24 15:06:07,168 [root] DEBUG: Trying to start auxiliary module \"Pre_script\"...\r\n2023-07-24 15:06:07,168 [root] DEBUG: Started auxiliary module \"Pre_script\"\r\n2023-07-24 15:06:07,168 [root] DEBUG: Started auxiliary module Pre_script\r\n2023-07-24 15:06:07,168 [root] DEBUG: Initialized auxiliary module \"Procmon\"\r\n2023-07-24 15:06:07,168 [root] DEBUG: Trying to start auxiliary module \"Procmon\"...\r\n2023-07-24 15:06:07,184 [root] DEBUG: Started auxiliary module \"Procmon\"\r\n2023-07-24 15:06:07,184 [root] DEBUG: Started auxiliary module Procmon\r\n2023-07-24 15:06:07,184 [root] DEBUG: Initialized auxiliary module \"RecentFiles\"\r\n2023-07-24 15:06:07,184 [root] DEBUG: Trying to start auxiliary module \"RecentFiles\"...\r\n2023-07-24 15:06:07,184 [root] DEBUG: Started auxiliary module \"RecentFiles\"\r\n2023-07-24 15:06:07,184 [root] DEBUG: Started auxiliary module RecentFiles\r\n2023-07-24 15:06:07,184 [root] DEBUG: Initialized auxiliary module \"Screenshots\"\r\n2023-07-24 15:06:07,184 [root] DEBUG: Trying to start auxiliary module \"Screenshots\"...\r\n2023-07-24 15:06:07,184 [root] DEBUG: Started auxiliary module \"Screenshots\"\r\n2023-07-24 15:06:07,184 [root] DEBUG: Started auxiliary module Screenshots\r\n2023-07-24 15:06:07,184 [root] DEBUG: Initialized auxiliary module \"Sysmon\"\r\n2023-07-24 15:06:07,184 [root] DEBUG: Trying to start auxiliary module \"Sysmon\"...\r\n2023-07-24 15:06:07,184 [root] DEBUG: Started auxiliary module \"Sysmon\"\r\n2023-07-24 15:06:07,184 [root] DEBUG: Started auxiliary module Sysmon\r\n2023-07-24 15:06:07,184 [root] DEBUG: Initialized auxiliary module \"TLSDumpMasterSecrets\"\r\n2023-07-24 15:06:07,184 [root] DEBUG: Trying to start auxiliary module \"TLSDumpMasterSecrets\"...\r\n2023-07-24 15:06:07,184 [modules.auxiliary.tlsdump] INFO: lsass.exe found, pid 656\r\n2023-07-24 15:06:07,371 [lib.api.process] INFO: Monitor config for process 656: C:\\tmpr1ubf8pk\\dll\\656.ini\r\n2023-07-24 15:06:07,371 [lib.api.process] INFO: Option 'tlsdump' with value '1' sent to monitor\r\n2023-07-24 15:06:07,371 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmpr1ubf8pk\\dll\\dELRsvZ.dll, loader C:\\tmpr1ubf8pk\\bin\\nmbrtJzd.exe\r\n2023-07-24 15:06:07,403 [root] DEBUG: Loader: Injecting process 656 with C:\\tmpr1ubf8pk\\dll\\dELRsvZ.dll.\r\n2023-07-24 15:06:07,418 [root] DEBUG: Python path set to 'C:\\Users\\Cape\\AppData\\Local\\Programs\\Python\\Python312-32'.\r\n2023-07-24 15:06:07,418 [root] DEBUG: TLS secret dump mode enabled.\r\n2023-07-24 15:06:07,418 [root] INFO: Disabling sleep skipping.\r\n2023-07-24 15:06:07,418 [root] DEBUG: InternalYaraScan: Scanning 0x00007FFBB0510000, size 0x1f7546\r\n2023-07-24 15:06:07,449 [root] DEBUG: InternalYaraScan hit: RtlInsertInvertedFunctionTable\r\n2023-07-24 15:06:07,449 [root] DEBUG: RtlInsertInvertedFunctionTable 0x00007FFBB052090E, LdrpInvertedFunctionTableSRWLock 0x00007FFBB067D510\r\n2023-07-24 15:06:07,449 [root] DEBUG: Monitor initialised: 64-bit capemon loaded in process 656 at 0x00007FFB78320000, thread 404, image base 0x00007FF76EB20000, stack from 0x00000080F32F4000-0x00000080F3300000\r\n2023-07-24 15:06:07,449 [root] DEBUG: Commandline: C:\\Windows\\system32\\lsass.exe\r\n2023-07-24 15:06:07,512 [root] DEBUG: TLS 1.2 secrets logged to: C:\\jXEeyE\\tlsdump\\tlsdump.log\r\n2023-07-24 15:06:07,512 [root] DEBUG: InjectDllViaThread: Successfully injected Dll into process via RtlCreateUserThread.\r\n2023-07-24 15:06:07,512 [root] DEBUG: Successfully injected DLL C:\\tmpr1ubf8pk\\dll\\dELRsvZ.dll.\r\n2023-07-24 15:06:07,512 [lib.api.process] INFO: Injected into 64-bit process with pid 656\r\n2023-07-24 15:06:07,512 [root] DEBUG: Started auxiliary module \"TLSDumpMasterSecrets\"\r\n2023-07-24 15:06:07,512 [root] DEBUG: Started auxiliary module TLSDumpMasterSecrets\r\n2023-07-24 15:06:07,512 [root] DEBUG: Initialized auxiliary module \"Usage\"\r\n2023-07-24 15:06:07,512 [root] DEBUG: Trying to start auxiliary module \"Usage\"...\r\n2023-07-24 15:06:07,512 [root] DEBUG: Started auxiliary module \"Usage\"\r\n2023-07-24 15:06:07,512 [root] DEBUG: Started auxiliary module Usage\r\n2023-07-24 15:06:07,512 [root] DEBUG: Initialized auxiliary module \"During_script\"\r\n2023-07-24 15:06:07,512 [root] DEBUG: Trying to start auxiliary module \"During_script\"...\r\n2023-07-24 15:06:07,512 [root] DEBUG: Started auxiliary module \"During_script\"\r\n2023-07-24 15:06:07,528 [root] DEBUG: Started auxiliary module During_script\r\n2023-07-24 15:06:13,508 [root] INFO: Restarting WMI Service\r\n2023-07-24 15:06:13,805 [lib.core.compound] INFO: C:\\Users\\Cape\\AppData\\Local\\Temp already exists, skipping creation\r\n2023-07-24 15:06:13,930 [lib.api.process] INFO: Successfully executed process from path \"C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\msedge.exe\" with arguments \"\"https://install.trimble.com/datatransfer/index.html\"\" with pid 3464\r\n2023-07-24 15:06:13,930 [lib.api.process] INFO: Monitor config for process 3464: C:\\tmpr1ubf8pk\\dll\\3464.ini\r\n2023-07-24 15:06:13,977 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmpr1ubf8pk\\dll\\dELRsvZ.dll, loader C:\\tmpr1ubf8pk\\bin\\nmbrtJzd.exe\r\n2023-07-24 15:06:14,055 [root] DEBUG: Loader: Injecting process 3464 (thread 3040) with C:\\tmpr1ubf8pk\\dll\\dELRsvZ.dll.\r\n2023-07-24 15:06:14,055 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\r\n2023-07-24 15:06:14,055 [root] DEBUG: Successfully injected DLL C:\\tmpr1ubf8pk\\dll\\dELRsvZ.dll.\r\n2023-07-24 15:06:14,070 [lib.api.process] INFO: Injected into 64-bit process with pid 3464\r\n2023-07-24 15:06:16,088 [lib.api.process] INFO: Successfully resumed process with pid 3464\r\n2023-07-24 15:06:16,088 [root] DEBUG: Python path set to 'C:\\Users\\Cape\\AppData\\Local\\Programs\\Python\\Python312-32'.\r\n2023-07-24 15:06:16,088 [root] DEBUG: Dropped file limit defaulting to 100.\r\n2023-07-24 15:06:16,104 [root] DEBUG: YaraInit: Compiled 25 rule files\r\n2023-07-24 15:06:16,104 [root] DEBUG: YaraInit: Compiled rules saved to file C:\\tmpr1ubf8pk\\data\\yara\\capemon.yac\r\n2023-07-24 15:06:16,104 [root] DEBUG: InternalYaraScan: Scanning 0x00007FFBB0510000, size 0x1f7546\r\n2023-07-24 15:06:16,119 [root] DEBUG: InternalYaraScan hit: RtlInsertInvertedFunctionTable\r\n2023-07-24 15:06:16,119 [root] DEBUG: RtlInsertInvertedFunctionTable 0x00007FFBB052090E, LdrpInvertedFunctionTableSRWLock 0x00007FFBB067D510\r\n2023-07-24 15:06:16,119 [root] DEBUG: YaraScan: Scanning 0x00007FF7B4CD0000, size 0x367350\r\n2023-07-24 15:06:16,150 [root] DEBUG: AmsiDumper initialised.\r\n2023-07-24 15:06:16,150 [root] DEBUG: Monitor initialised: 64-bit capemon loaded in process 3464 at 0x00007FFB78320000, thread 3040, image base 0x00007FF7B4CD0000, stack from 0x0000008B831F5000-0x0000008B83200000\r\n2023-07-24 15:06:16,150 [root] DEBUG: Commandline: \"C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\msedge.exe\" \"https://install.trimble.com/datatransfer/index.html\"\r\n2023-07-24 15:06:16,166 [root] DEBUG: hook_api: Warning - CoCreateInstance export address 0x00007FFBAF6242CB differs from GetProcAddress -> 0x00007FFBAE63A420\r\n2023-07-24 15:06:16,182 [root] DEBUG: hook_api: Warning - CoCreateInstanceEx export address 0x00007FFBAF62430A differs from GetProcAddress -> 0x00007FFBAE6B4180\r\n2023-07-24 15:06:16,182 [root] DEBUG: hook_api: Warning - CoGetClassObject export address 0x00007FFBAF62489A differs from GetProcAddress -> 0x00007FFBAE63EB00\r\n2023-07-24 15:06:16,182 [root] DEBUG: hook_api: Warning - UpdateProcThreadAttribute export address 0x00007FFBAF517644 differs from GetProcAddress -> 0x00007FFBADDCB520\r\n2023-07-24 15:06:16,182 [root] DEBUG: hook_api: Warning - CLSIDFromProgID export address 0x00007FFBAF623B16 differs from GetProcAddress -> 0x00007FFBAE6B8570\r\n2023-07-24 15:06:16,213 [root] DEBUG: RestoreHeaders: Restored original import table.\r\n2023-07-24 15:06:16,213 [root] INFO: Loaded monitor into process with pid 3464\r\n2023-07-24 15:06:16,244 [root] DEBUG: caller_dispatch: Added region at 0x00007FFB8DE70000 to tracked regions list (ntdll::LdrLoadDll returns to 0x00007FFB8E01E203, thread 3040).\r\n2023-07-24 15:06:16,244 [root] DEBUG: caller_dispatch: Scanning calling region at 0x00007FFB8DE70000...\r\n2023-07-24 15:06:16,244 [root] DEBUG: YaraScan: Scanning 0x00007FFB8DE70000, size 0x35ee70\r\n2023-07-24 15:06:16,260 [root] DEBUG: ProcessTrackedRegion: Region at 0x00007FFB8DE70000 mapped as \\Device\\HarddiskVolume2\\Program Files (x86)\\Microsoft\\Edge\\Application\\114.0.1823.82\\msedge_elf.dll, skipping\r\n2023-07-24 15:06:16,260 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x1d0 and local view 0x00007FFBAE190000 to global list.\r\n2023-07-24 15:06:16,275 [root] DEBUG: DLL loaded at 0x00007FFBAE190000: C:\\Windows\\System32\\bcryptPrimitives (0x82000 bytes).\r\n2023-07-24 15:06:16,275 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x1dc and local view 0x0000024115700000 to global list.\r\n2023-07-24 15:06:16,291 [root] DEBUG: ProtectionHandler: New code detected at 0x00007FFB8DE70000, dumping.\r\n2023-07-24 15:06:16,291 [root] DEBUG: YaraScan: Scanning 0x00007FFB8DE70000, size 0x35f006\r\n2023-07-24 15:06:16,307 [root] DEBUG: ProcessTrackedRegion: Region at 0x00007FFB8DE70000 mapped as \\Device\\HarddiskVolume2\\Program Files (x86)\\Microsoft\\Edge\\Application\\114.0.1823.82\\msedge_elf.dll, skipping\r\n2023-07-24 15:06:16,322 [root] DEBUG: caller_dispatch: Added region at 0x00007FF7B4CD0000 to tracked regions list (ntdll::LdrLoadDll returns to 0x00007FF7B4E58C4B, thread 3040).\r\n2023-07-24 15:06:16,322 [root] DEBUG: YaraScan: Scanning 0x00007FF7B4CD0000, size 0x367350\r\n2023-07-24 15:06:16,354 [root] DEBUG: DLL loaded at 0x00007FFB9F000000: C:\\Windows\\SYSTEM32\\version (0xa000 bytes).\r\n2023-07-24 15:06:16,354 [root] DEBUG: DLL unloaded from 0x00007FF7B4CD0000.\r\n2023-07-24 15:06:16,354 [root] DEBUG: DLL loaded at 0x00007FFBACD10000: C:\\Windows\\system32\\ntmarta (0x33000 bytes).\r\n2023-07-24 15:06:16,369 [root] INFO: Disabling sleep skipping.\r\n2023-07-24 15:06:16,369 [root] DEBUG: CreateProcessHandler: Injection info set for new process 600: C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\msedge.exe, ImageBase: 0x00007FF7B4CD0000\r\n2023-07-24 15:06:16,369 [root] INFO: Announced 64-bit process name: msedge.exe pid: 600\r\n2023-07-24 15:06:16,369 [lib.api.process] INFO: Monitor config for process 600: C:\\tmpr1ubf8pk\\dll\\600.ini\r\n2023-07-24 15:06:16,369 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmpr1ubf8pk\\dll\\dELRsvZ.dll, loader C:\\tmpr1ubf8pk\\bin\\nmbrtJzd.exe\r\n2023-07-24 15:06:16,369 [root] INFO: Added new file to list with pid None and path C:\\Users\\Cape\\AppData\\Local\\Microsoft\\Edge\\User Data\\Crashpad\\throttle_store.dat\r\n2023-07-24 15:06:16,369 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x24c and local view 0x00007FFBABAD0000 to global list.\r\n2023-07-24 15:06:16,369 [root] DEBUG: DLL loaded at 0x00007FFBABAD0000: C:\\Windows\\SYSTEM32\\kernel.appcore (0x12000 bytes).\r\n2023-07-24 15:06:16,385 [root] DEBUG: DLL loaded at 0x00007FFBAB600000: C:\\Windows\\system32\\uxtheme (0x9e000 bytes).\r\n2023-07-24 15:06:16,385 [root] DEBUG: Loader: Injecting process 600 (thread 1308) with C:\\tmpr1ubf8pk\\dll\\dELRsvZ.dll.\r\n2023-07-24 15:06:16,385 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\r\n2023-07-24 15:06:16,385 [root] DEBUG: Successfully injected DLL C:\\tmpr1ubf8pk\\dll\\dELRsvZ.dll.\r\n2023-07-24 15:06:16,385 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x26c and local view 0x0000024113F70000 to global list.\r\n2023-07-24 15:06:16,385 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x274 and local view 0x00007FFBAF6B0000 to global list.\r\n2023-07-24 15:06:16,385 [lib.api.process] INFO: Injected into 64-bit process with pid 600\r\n2023-07-24 15:06:16,385 [root] DEBUG: DLL unloaded from 0x00007FFBB0510000.\r\n2023-07-24 15:06:16,385 [root] DEBUG: DLL loaded at 0x00007FFBAF6B0000: C:\\Windows\\System32\\clbcatq (0xa9000 bytes).\r\n2023-07-24 15:06:16,385 [root] DEBUG: WriteMemoryHandler: shellcode at 0x0000024112429A50 (size 0x11c0) injected into process 600.\r\n2023-07-24 15:06:16,385 [lib.common.results] INFO: Uploading file C:\\jXEeyE\\CAPE\\3464_157851662324172023 to CAPE\\7fed68a67eb0c18b4af512b8f8e8a9738c65b67b632344569a84b382c0a59161; Size is 4449; Max size: 100000000\r\n2023-07-24 15:06:16,385 [root] DEBUG: DLL loaded at 0x00007FFBA2430000: C:\\Windows\\System32\\Windows.System.Profile.PlatformDiagnosticsAndUsageDataSettings (0x16000 bytes).\r\n2023-07-24 15:06:16,400 [root] DEBUG: DumpMemory: Payload successfully created: C:\\jXEeyE\\CAPE\\3464_157851662324172023 (size 4449 bytes)\r\n2023-07-24 15:06:16,400 [root] DEBUG: DLL loaded at 0x00007FFBACC80000: C:\\Windows\\SYSTEM32\\msvcp110_win (0x8a000 bytes).\r\n2023-07-24 15:06:16,400 [root] DEBUG: WriteMemoryHandler: Dumped injected code/data from buffer.\r\n2023-07-24 15:06:16,400 [root] INFO: Announced 64-bit process name: msedge.exe pid: 600\r\n2023-07-24 15:06:16,400 [lib.api.process] INFO: Monitor config for process 600: C:\\tmpr1ubf8pk\\dll\\600.ini\r\n2023-07-24 15:06:16,400 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmpr1ubf8pk\\dll\\dELRsvZ.dll, loader C:\\tmpr1ubf8pk\\bin\\nmbrtJzd.exe\r\n2023-07-24 15:06:16,400 [root] DEBUG: DLL loaded at 0x00007FFBA7060000: C:\\Windows\\SYSTEM32\\policymanager (0xa3000 bytes).\r\n2023-07-24 15:06:16,400 [root] DEBUG: DLL unloaded from 0x00007FFBA7060000.\r\n2023-07-24 15:06:16,400 [root] DEBUG: Loader: Injecting process 600 (thread 1308) with C:\\tmpr1ubf8pk\\dll\\dELRsvZ.dll.\r\n2023-07-24 15:06:16,400 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\r\n2023-07-24 15:06:16,400 [root] DEBUG: Successfully injected DLL C:\\tmpr1ubf8pk\\dll\\dELRsvZ.dll.\r\n2023-07-24 15:06:16,400 [root] DEBUG: DLL unloaded from 0x00007FFBA2430000.\r\n2023-07-24 15:06:16,416 [lib.api.process] INFO: Injected into 64-bit process with pid 600\r\n2023-07-24 15:06:16,416 [root] INFO: Announced 64-bit process name: msedge.exe pid: 600\r\n2023-07-24 15:06:16,416 [lib.api.process] INFO: Monitor config for process 600: C:\\tmpr1ubf8pk\\dll\\600.ini\r\n2023-07-24 15:06:16,416 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmpr1ubf8pk\\dll\\dELRsvZ.dll, loader C:\\tmpr1ubf8pk\\bin\\nmbrtJzd.exe\r\n2023-07-24 15:06:16,416 [root] INFO: Added new file to list with pid None and path C:\\Users\\Cape\\AppData\\Local\\Microsoft\\Edge\\User Data\\Crashpad\\settings.dat\r\n2023-07-24 15:06:16,416 [root] DEBUG: Loader: Injecting process 600 (thread 1308) with C:\\tmpr1ubf8pk\\dll\\dELRsvZ.dll.\r\n2023-07-24 15:06:16,416 [root] DEBUG: InjectDllViaIAT: This image has already been patched.\r\n2023-07-24 15:06:16,416 [root] DEBUG: Successfully injected DLL C:\\tmpr1ubf8pk\\dll\\dELRsvZ.dll.\r\n2023-07-24 15:06:16,416 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x260 and local view 0x00007FFBAFC40000 to global list.\r\n2023-07-24 15:06:16,416 [lib.api.process] INFO: Injected into 64-bit process with pid 600\r\n2023-07-24 15:06:16,432 [root] DEBUG: DLL loaded at 0x00007FFBAFC40000: C:\\Windows\\System32\\shcore (0xad000 bytes).\r\n2023-07-24 15:06:16,432 [root] DEBUG: DLL unloaded from 0x00007FFBAFC40000.\r\n2023-07-24 15:06:16,432 [root] DEBUG: DLL loaded at 0x00007FFBAFD80000: C:\\Windows\\System32\\SHELL32 (0x744000 bytes).\r\n2023-07-24 15:06:16,432 [root] DEBUG: DLL loaded at 0x00007FFBAD570000: C:\\Windows\\SYSTEM32\\Wldp (0x2e000 bytes).\r\n2023-07-24 15:06:16,432 [root] DEBUG: Python path set to 'C:\\Users\\Cape\\AppData\\Local\\Programs\\Python\\Python312-32'.\r\n2023-07-24 15:06:16,432 [root] DEBUG: DLL loaded at 0x00007FFBABCD0000: C:\\Windows\\SYSTEM32\\windows.storage (0x793000 bytes).\r\n2023-07-24 15:06:16,432 [root] DEBUG: Dropped file limit defaulting to 100.\r\n2023-07-24 15:06:16,432 [root] DEBUG: DLL unloaded from 0x00007FFBADD50000.\r\n2023-07-24 15:06:16,432 [root] INFO: Disabling sleep skipping.\r\n2023-07-24 15:06:16,447 [root] DEBUG: DLL loaded at 0x00007FFBAFC40000: C:\\Windows\\System32\\SHCORE (0xad000 bytes).\r\n2023-07-24 15:06:16,447 [root] DEBUG: YaraInit: Compiled rules loaded from existing file C:\\tmpr1ubf8pk\\data\\yara\\capemon.yac\r\n2023-07-24 15:06:16,447 [root] DEBUG: InternalYaraScan: Scanning 0x00007FFBB0510000, size 0x1f7546\r\n2023-07-24 15:06:16,463 [root] DEBUG: InternalYaraScan hit: RtlInsertInvertedFunctionTable\r\n2023-07-24 15:06:16,998 [root] DEBUG: NtTerminateProcess hook: Attempting to dump process 3464\r\n2023-07-24 15:06:17,000 [root] DEBUG: RtlInsertInvertedFunctionTable 0x00007FFBB052090E, LdrpInvertedFunctionTableSRWLock 0x00007FFBB067D510\r\n2023-07-24 15:06:17,017 [root] DEBUG: DoProcessDump: Dumping Imagebase at 0x00007FF7B4CD0000.\r\n2023-07-24 15:06:17,018 [root] DEBUG: YaraScan: Scanning 0x00007FF7B4CD0000, size 0x367350\r\n2023-07-24 15:06:17,057 [root] DEBUG: DumpImageInCurrentProcess: Attempting to dump virtual PE image.\r\n2023-07-24 15:06:17,058 [root] DEBUG: AmsiDumper initialised.\r\n2023-07-24 15:06:17,062 [root] DEBUG: DumpProcess: Instantiating PeParser with address: 0x00007FF7B4CD0000.\r\n2023-07-24 15:06:17,063 [root] DEBUG: Monitor initialised: 64-bit capemon loaded in process 600 at 0x00007FFB78320000, thread 1308, image base 0x00007FF7B4CD0000, stack from 0x00000050A9BF5000-0x00000050A9C00000\r\n2023-07-24 15:06:17,064 [root] DEBUG: DumpProcess: Module entry point VA is 0x000000000014E500.\r\n2023-07-24 15:06:17,070 [root] DEBUG: Commandline: \"C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\msedge.exe\" --type=crashpad-handler \"--user-data-dir=C:\\Users\\Cape\\AppData\\Local\\Microsoft\\Edge\\User Data\" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler \"--database=C:\\Users\\\r\n2023-07-24 15:06:17,113 [root] DEBUG: PeParser: readPeSectionsFromProcess: readSectionFromProcess failed offset 0xb5038000, section 7\r\n2023-07-24 15:06:17,121 [root] DEBUG: hook_api: Warning - CoCreateInstance export address 0x00007FFBAF6242CB differs from GetProcAddress -> 0x00007FFBAE63A420\r\n2023-07-24 15:06:17,122 [root] DEBUG: hook_api: Warning - CoCreateInstanceEx export address 0x00007FFBAF62430A differs from GetProcAddress -> 0x00007FFBAE6B4180\r\n2023-07-24 15:06:17,123 [root] DEBUG: hook_api: Warning - CoGetClassObject export address 0x00007FFBAF62489A differs from GetProcAddress -> 0x00007FFBAE63EB00\r\n2023-07-24 15:06:17,125 [root] DEBUG: hook_api: Warning - UpdateProcThreadAttribute export address 0x00007FFBAF517644 differs from GetProcAddress -> 0x00007FFBADDCB520\r\n2023-07-24 15:06:17,151 [root] DEBUG: hook_api: Warning - CLSIDFromProgID export address 0x00007FFBAF623B16 differs from GetProcAddress -> 0x00007FFBAE6B8570\r\n2023-07-24 15:06:17,178 [root] DEBUG: RestoreHeaders: Restored original import table.\r\n2023-07-24 15:06:17,184 [root] INFO: Loaded monitor into process with pid 600\r\n2023-07-24 15:06:17,248 [root] DEBUG: caller_dispatch: Added region at 0x00007FFB8DE70000 to tracked regions list (ntdll::LdrLoadDll returns to 0x00007FFB8E01E203, thread 1308).\r\n2023-07-24 15:06:17,248 [root] DEBUG: caller_dispatch: Scanning calling region at 0x00007FFB8DE70000...\r\n2023-07-24 15:06:17,250 [root] DEBUG: YaraScan: Scanning 0x00007FFB8DE70000, size 0x35ee70\r\n2023-07-24 15:06:17,268 [lib.common.results] INFO: Uploading file C:\\jXEeyE\\CAPE\\3464_6579001762324172023 to procdump\\f178b5744fd8ba53d05ffde020ad7060ed7f251ea24765f7fc2e54be84cb60a7; Size is 4159488; Max size: 100000000\r\n2023-07-24 15:06:17,285 [root] DEBUG: ProcessTrackedRegion: Region at 0x00007FFB8DE70000 mapped as \\Device\\HarddiskVolume2\\Program Files (x86)\\Microsoft\\Edge\\Application\\114.0.1823.82\\msedge_elf.dll, skipping\r\n2023-07-24 15:06:17,288 [root] DEBUG: DumpProcess: Module image dump success - dump size 0x3f7800.\r\n2023-07-24 15:06:17,328 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x1cc and local view 0x00007FFBAE190000 to global list.\r\n2023-07-24 15:06:17,333 [root] DEBUG: DLL unloaded from 0x00007FFBAF440000.\r\n2023-07-24 15:06:17,336 [root] DEBUG: DLL loaded at 0x00007FFBAE190000: C:\\Windows\\System32\\bcryptPrimitives (0x82000 bytes).\r\n2023-07-24 15:06:17,357 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x1dc and local view 0x000001E570B00000 to global list.\r\n2023-07-24 15:06:17,390 [root] INFO: Process with pid 3464 has terminated\r\n2023-07-24 15:06:17,394 [root] DEBUG: caller_dispatch: Added region at 0x00007FF7B4CD0000 to tracked regions list (ntdll::LdrLoadDll returns to 0x00007FF7B4E58C4B, thread 1308).\r\n2023-07-24 15:06:17,395 [root] DEBUG: YaraScan: Scanning 0x00007FF7B4CD0000, size 0x367350\r\n2023-07-24 15:06:17,435 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x1f0 and local view 0x00007FFBAFC40000 to global list.\r\n2023-07-24 15:06:17,440 [root] DEBUG: DLL loaded at 0x00007FFBAFC40000: C:\\Windows\\System32\\shcore (0xad000 bytes).\r\n2023-07-24 15:06:17,443 [root] DEBUG: DLL unloaded from 0x00007FFBAFC40000.\r\n2023-07-24 15:06:17,461 [root] DEBUG: DLL loaded at 0x00007FFBAB600000: C:\\Windows\\system32\\uxtheme (0x9e000 bytes).\r\n2023-07-24 15:06:17,475 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x254 and local view 0x00007FFBAF240000 to global list.\r\n2023-07-24 15:06:17,493 [root] DEBUG: DLL loaded at 0x00007FFBAF240000: C:\\Windows\\System32\\MSCTF (0x114000 bytes).\r\n2023-07-24 15:06:17,504 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x000001E56F740000 for section view with handle 0x254.\r\n2023-07-24 15:06:17,506 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x21c and local view 0x000001E570E40000 to global list.\r\n2023-07-24 15:06:17,509 [root] INFO: Added new file to list with pid None and path C:\\Users\\Cape\\AppData\\Local\\Microsoft\\Edge\\User Data\\Crashpad\\metadata\r\n2023-07-24 15:06:17,512 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x258 and local view 0x000001E572200000 to global list.\r\n2023-07-24 15:06:17,516 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x26c and local view 0x000001E56F740000 to global list.\r\n2023-07-24 15:06:17,521 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x200 and local view 0x00007FFBABAD0000 to global list.\r\n2023-07-24 15:06:17,536 [root] DEBUG: DLL loaded at 0x00007FFBABAD0000: C:\\Windows\\SYSTEM32\\kernel.appcore (0x12000 bytes).\r\n2023-07-24 15:06:17,537 [root] DEBUG: NtTerminateProcess hook: Attempting to dump process 600\r\n2023-07-24 15:06:17,539 [root] DEBUG: DoProcessDump: Dumping Imagebase at 0x00007FF7B4CD0000.\r\n2023-07-24 15:06:17,540 [root] DEBUG: DumpImageInCurrentProcess: Attempting to dump virtual PE image.\r\n2023-07-24 15:06:17,541 [root] DEBUG: DumpProcess: Instantiating PeParser with address: 0x00007FF7B4CD0000.\r\n2023-07-24 15:06:17,542 [root] DEBUG: DumpProcess: Module entry point VA is 0x000000000014E500.\r\n2023-07-24 15:06:17,548 [root] DEBUG: PeParser: readPeSectionsFromProcess: readSectionFromProcess failed offset 0xb5038000, section 7\r\n2023-07-24 15:06:17,714 [lib.common.results] INFO: Uploading file C:\\jXEeyE\\CAPE\\600_794094057302324172023 to procdump\\b66f6a0716a0f82d633e0fdbc91f230dba9f876dc453fc850c3d1e059242dfba; Size is 4159488; Max size: 100000000\r\n2023-07-24 15:06:17,734 [root] DEBUG: DumpProcess: Module image dump success - dump size 0x3f7800.\r\n2023-07-24 15:06:17,745 [root] DEBUG: DLL unloaded from 0x00007FFBAF440000.\r\n2023-07-24 15:06:17,747 [root] INFO: Process with pid 600 has terminated\r\n2023-07-24 08:06:43,420 [modules.auxiliary.screenshots] ERROR: Cannot take screenshot: screen grab failed\r\n2023-07-24 08:06:52,126 [root] INFO: Process list is empty, terminating analysis\r\n2023-07-24 08:06:53,138 [root] INFO: Created shutdown mutex\r\n2023-07-24 08:06:54,148 [root] INFO: Shutting down package\r\n2023-07-24 08:06:54,148 [root] INFO: Stopping auxiliary modules\r\n2023-07-24 08:06:54,148 [root] INFO: Stopping auxiliary module: Browser\r\n2023-07-24 08:06:54,148 [root] INFO: Stopping auxiliary module: Curtain\r\n2023-07-24 08:06:54,877 [lib.common.results] INFO: Uploading file C:\\curtain.log to curtain/1690211214.8775861.curtain.log; Size is 20576; Max size: 100000000\r\n2023-07-24 08:06:54,877 [root] INFO: Stopping auxiliary module: Evtx\r\n2023-07-24 08:06:54,877 [root] INFO: Stopping auxiliary module: FilePickup\r\n2023-07-24 08:06:54,877 [root] INFO: Stopping auxiliary module: Human\r\n2023-07-24 08:06:54,877 [root] INFO: Stopping auxiliary module: Pre_script\r\n2023-07-24 08:06:54,877 [root] INFO: Stopping auxiliary module: Procmon\r\n2023-07-24 08:06:54,877 [root] INFO: Stopping auxiliary module: Screenshots\r\n2023-07-24 08:06:54,877 [root] INFO: Stopping auxiliary module: Sysmon\r\n2023-07-24 08:06:54,877 [root] INFO: Stopping auxiliary module: Usage\r\n2023-07-24 08:06:54,877 [root] INFO: Stopping auxiliary module: During_script\r\n2023-07-24 08:06:54,877 [root] INFO: Finishing auxiliary modules\r\n2023-07-24 08:06:54,877 [root] INFO: Shutting down pipe server and dumping dropped files\r\n2023-07-24 08:06:54,877 [lib.common.results] INFO: Uploading file C:\\Users\\Cape\\AppData\\Local\\Microsoft\\Edge\\User Data\\Crashpad\\throttle_store.dat to files\\41c91a9c93d76295746a149dce7ebb3b9ee2cb551d84365fff108e59a61cc304; Size is 20; Max size: 100000000\r\n2023-07-24 08:06:54,877 [lib.common.results] INFO: Uploading file C:\\Users\\Cape\\AppData\\Local\\Microsoft\\Edge\\User Data\\Crashpad\\settings.dat to files\\5058f499edcf472fcc440777df6f390fd0ee44179456e970a2de2e4be1be1a5c; Size is 280; Max size: 100000000\r\n2023-07-24 08:06:54,877 [root] WARNING: Folder at path \"C:\\jXEeyE\\debugger\" does not exist, skipping\r\n2023-07-24 08:06:54,877 [root] INFO: Uploading files at path \"C:\\jXEeyE\\tlsdump\"\r\n2023-07-24 08:06:54,877 [lib.common.results] INFO: Uploading file C:\\jXEeyE\\tlsdump\\tlsdump.log to tlsdump\\tlsdump.log; Size is 10960; Max size: 100000000\r\n2023-07-24 08:06:54,877 [root] INFO: Analysis completed\r\n```\r\n\r\nIf any of this behavior does not sound uncommon for a CAPE installation - then I have ideas as our infrastructure is somewhat unique. However I haven't changed anything about the core processing functions or modules imported within an analysis itself.\nComment: This is a browser-specific issue caused by the fact that it is no longer possible for cape to fully monitor all browser processes (particularly 'sandboxed' processes) due to their internal security and complexity.\r\n\r\nThe current solution is to selectively monitor only certain browser child processes, but this is still a young idea and may need further work to tackle issues such as this. I will need to research which child processes does the downloading (per browser family) and ensure that process is monitored with the relevant hooks active.\nComment: Thank you @kevoreilly, I can put some time into this during this week as well and see if I find a work around. Is this something other users have noticed? I could downgrade to an older version of Edge - something I was already looking at anyway because of another post I saw on here mentioning that newer versions of Edge crash. \nComment: If you are willing to invest time then I will be grateful as it is a scarce commodity for me. What I would first of all like to establish is: which process is writing the file to disk? The quickest way to work this out is probably to use Sysinternal Process Monitor to catch the file being created - if you can do this is will save me some time.\nComment: Hello Kev I have some time to revisit this issue. I would like to understand the dropped file collection mechanism better but have had some trouble finding where this part of analysis is handled. What scripts handle this (either URL or XLS, just so I can understand it)?\nComment: Hi Carson - sorry not to reply earlier - only just spotted your most recent message.\r\n\r\nThe mechanism for collecting dropped files starts with the file-related API hooks such as ``CreateFile``, ``NtCreateFileEx``, etc. This is where at the moment the files are being missed as the process that is downloading them is not running those hooks.\r\n\r\n```\r\n\telse if (g_config.chrome || g_config.firefox || g_config.edge) {\r\n\t\thooks = browser_hooks;\r\n\t\thooks_size = sizeof(browser_hooks);\r\n\t\thooks_arraysize = ARRAYSIZE(browser_hooks);\r\n\t}\r\n```\r\n\r\nSo to tackle this properly I will need to prevent the monitor from assigning the ``browser_hooks`` for the process which writes these files to disk. Of course this means I need to know how to identify the process responsible among the myriad edge processes. I am hopeful this can be done on the basis of the process command line such as in the following example (for an unrelated component):\r\n\r\n```\r\n(!_stricmp(our_process_name, \"WmiPrvSE.exe\") && !can_open_parent() && wcsstr(our_commandline, L\"-Embedding\"))\r\n```\r\n\r\nSo if you have time, a capture of the command line or other identifying characteristics of the edge process responsible for writing the downloads to disk would be useful. I would think by far the best way of gathering this information is use of Sysinternals Process Monitor.\nComment: Thanks Kev I will try and look into\nComment: Thinking we can close this now after nearly 2 years!\nComment: > Thinking we can close this now after nearly 2 years!\r\n\r\n1 year 4 months \ud83d\ude1d\r\n\r\nYes lets close it!\nComment: hello @CarsonHrusovsky  @kevoreilly  just saw that discussion as I am facing same kind of issue.\r\nYou changed the issue to the completed status. Did you managed to find a solution or did you gave up ? As I reread all of this I am not sure to see if a solution was found or not.\r\nElse why dont just dump newly created files in the download folder ? At least, It would help to handle mandatory user interacted download jobs  then we would be able to rerun as a file submission from dropped menu ? \r\nThank you so much\r\n\nComment: This was never solved due to lack of research into which of the many edge child processes writes to disk. I left that for someone else to do, it was never done.\r\n\r\nI see no reason why this could not be done in theory, but I don't use edge and have a todo list longer than my arm. Please feel free to help.\r\n\r\nIt does need to be done via the existing mechanism though (api hooking) - the downloads folder idea is a non-starter I'm afraid.\nComment: hello back, I understand your point of view to do that with hooks but my goal was also to be able to distinguish a file created with user approval (from a browser mostly in the downloaded folder),  versus a file that is potentially result of an exploit in the browser or from browsing.\r\nAs well, flagging that file download user interaction was interesting for me from a technique analysis perspective.\r\nBack to work soon, I will try to investigate that hook during some analysis. However, don't know if it's within my capabilities . Do you have a best browser option than edge to capture that events/files and to be used in html/url scenarios ?\r\nthank you so much !\nComment: If you pick your favourite browser and can establish via procmon or similar how to identify the process which downloads, then I will do the rest and it will be optimal.\nComment: I was able to get dropped files from chrome by making this change to https://github.com/kevoreilly/capemon/blob/capemon/config.c: \n```\n1557c1557\n< \t\t\tg_config.chrome = 1;\n---\n> \t\t\tg_config.min_hooks = 1\n```\n\nI haven't seen any adverse consequences yet in my testing on Win10 and Win11. @kevoreilly is there any documentation on why `browser_hooks` contains such a limited set of functions to hook?\n\nI should also not that I've modified how chrome gets launched in chrome.py:\n```\n        chrome = self.get_path(\"chrome.exe\")\n        args = [\n            \"--disable-features=RendererCodeIntegrity,PartitionAlloc,Win32kLockDownDefault,SigninPromo,AccountConsistency,BlockInsecureDownloads,SafeBrowsingEnhancedProtection,SafeBrowsingProceedAnyway\",\n            \"--disable-web-security\",\n            \"--disable-popup-blocking\",\n            \"--allow-running-insecure-content\",\n            \"--disable-client-side-phishing-detection\",\n            \"--safebrowsing-disable-download-protection\",\n            \"--disable-component-update\",\n            \"--start-maximized\",\n            \"--disable-signin-frame\"\n        ]\n```\nComment: Hi boundprometheus! Thank you for this feedback - this could be a gem more than worthy of its own issue.\n\nI made the decision to create a browser hookset after coming to the realisation that it was no longer really feasible or desirable to inject, hook and monitor every process in an 'instance' of chrome. But this was mostly because I was finding a ton of hook and other issues with some chrome processes like locked-down or 'sandboxed' processes.\n\nBut... I was too noobish to properly research these command-line options which could be a game changer.  Maybe it's time to re-evaulate those decisions if these options allow a fuller hookset to be used.\n\nThe questions then back in focus are: do we want to inject all chrome child processes or some subset? And do we want to hook more or all functions? We could easily expand the broswer hookset to be a superset of 'minhooks', with the addition of some networking hooks for example. Let me know your thoughts.\nComment: Unfortunately this does not work as well as I thought. It works in the scenario where chrome initially \"blocks\" the download followed by the user clicking on \"Keep unverified file\".  But it does not work when chrome saves the downloaded file with no prompt to the user.\n\nI will try to dig into the process behavior some more to figure out the difference in behavior. \nComment: Well you may be in a position to help with what I asked of the OP which is to identify which child process is responsible for the actual downloading of files. If we can identify it by its command line or similar, then we can target that specific process with a hookset that allows downloaded file capture.\nComment: I tested a couple difference scenarios using Chrome 139.0.7258.128 (Official Build) (64-bit) on Win10:\n\nScenario 1: Right click download file (filetype was html). Got \"Insecure download blocked\". Clicked \"Keep\":\n1. Initial `CreateFile` and `WriteFile` calls came from the parent chrome process (chrome.exe with no arguments) for a file named \\<UUID4\\>.tmp\n2. Same chrome process renamed the file from \\<UUID4\\>.tmp to \\<original_file_name\\>.crdownload\n3. Child chrome process called `CreateFile` w/ `GenericWrite` access on \\<original_file_name\\>. The command line for this chrome instance was: ```--type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --message-loop-type-ui --video-capture-use-gpu-memory-buffer --no-pre-read-main-dll --metrics-shmem-handle=6120,i,16122028359520496310,2466812432199481108,524288 --field-trial-handle=1968,i,12170023716304816171,10576054035405516135,262144 --variations-seed-version=20250818-050049.156000 --mojo-platform-channel-handle=4752 /prefetch:8```\n4. Same child chrome process (from step3) called `SetDispositionInformationEx` on \\<original_file_name\\> with `FILE_DISPOSITION_DELETE` flag\n5. Parent chrome process renamed \\<original_file_name\\>.crdownload to \\<original_file_name\\> with `ReplaceIfExists` flag set to True\n\nScenario 2: Click on file for automatic download (filetype was 7z). Got \"Insecure download blocked\". Did not click \"Keep\"\n1. Initial `CreateFile` and `WriteFile` calls came from the parent chrome process (chrome.exe with no arguments) for a file named \\<UUID4\\>.tmp\n2. Same chrome process renamed the file from \\<UUID4\\>.tmp to \\<original_file_name\\>.crdownload\n3. Same chrome process called `SetDispositionInformationEx` on \\<original_file_name\\>.crdownload with `FILE_DISPOSITION_DELETE` flag\nComment: Back on CAPE - with `g_config.min_hooks = 1`, I see the NtCreateFile call in the call log for the original chrome process, but we don't get the dropped file:\n```          \n{\n            \"timestamp\": \"2025-08-19 16:17:13,497\",\n            \"thread_id\": \"7796\",\n            \"caller\": \"0x7fff72719a78\",\n            \"parentcaller\": \"0x7fff72719766\",\n            \"category\": \"filesystem\",\n            \"api\": \"NtCreateFile\",\n            \"status\": true,\n            \"return\": \"0x00000000\",\n            \"arguments\": [\n              {\n                \"name\": \"FileHandle\",\n                \"value\": \"0x00000c88\"\n              },\n              {\n                \"name\": \"DesiredAccess\",\n                \"value\": \"0xc0110080\",\n                \"pretty_value\": \"GENERIC_READ|GENERIC_WRITE|FILE_READ_ATTRIBUTES|DELETE|SYNCHRONIZE\"\n              },\n              {\n                \"name\": \"FileName\",\n                \"value\": \"C:\\\\Users\\\\John Doe\\\\Downloads\\\\755377c7-1a7d-4c0c-9d87-eea50c654cde.tmp\"\n              },\n              {\n                \"name\": \"CreateDisposition\",\n                \"value\": \"2\",\n                \"pretty_value\": \"FILE_CREATE\"\n              },\n              {\n                \"name\": \"ShareAccess\",\n                \"value\": \"0\"\n              },\n              {\n                \"name\": \"FileAttributes\",\n                \"value\": \"0x00000000\"\n              },\n              {\n                \"name\": \"ExistedBefore\",\n                \"value\": \"no\"\n              },\n              {\n                \"name\": \"StackPivoted\",\n                \"value\": \"no\"\n              }\n            ],\n            \"repeated\": 0,\n            \"id\": 9884\n          },\n```\nComment: It's worth checking the analysis log to see if the file was marked as dropped:\n\n```\n...\n2025-08-27 11:19:55,143 [root] INFO: Added new file to list with pid None and path C:\\Config.Msi\\df82e.rbs\n...\n2025-08-27 11:19:57,518 [lib.common.results] INFO: Uploading file C:\\Config.Msi\\df82e.rbs to files\\f03580ebb72d32e4f70d7240ad19d8cfe4ed81e73698f226931c66731b82f641; Size is 1975; Max size: 500000000\n...\n```\n\nThe file is marked first then uploaded later at the end of the analysis so a couple of points of failure.\n\nComment: No, neither of those are in the log. But I do have these (after enabling debug logging in capemon):\n```\n2025-08-27 21:33:03,803 [root] DEBUG: 7384: cache_file: Adding file handle to tracking: 0x1464, C:\\Users\\John Doe\\Downloads\\bfc14230-17c8-4013-9d91-1fbd128b405c.tmp\n2025-08-27 21:33:04,247 [root] DEBUG: 7384: cache_file: Adding file handle to tracking: 0xbfc, C:\\Users\\John Doe\\Downloads\\Unconfirmed 720849.crdownload\n2025-08-27 21:33:31,937 [root] DEBUG: 7384: file_handle_terminate: new_file C:\\Users\\John Doe\\Downloads\\bfc14230-17c8-4013-9d91-1fbd128b405c.tmp\n2025-08-27 21:33:31,305 [root] DEBUG: 7384: file_handle_terminate: new_file C:\\Users\\John Doe\\Downloads\\Unconfirmed 720849.crdownload\n```\n\nIn the report I see that `DeleteFileW` is called on C:\\Users\\John Doe\\Downloads\\Unconfirmed 720849.crdownload at 21:33:14. Is it possible that it's not getting captured because it gets deleted before analysis completes? \n\n",
+  "Title: Question: What's the purpose of \"NSIS Integrity Check function\"\nBody: I used virustotal to scan my app and it shows this message:\r\n![obraz](https://github.com/kevoreilly/CAPEv2/assets/33355238/54e86e69-dfb5-46cb-a07b-29e2f79dcc3a)\r\n\r\nWarning is thrown because of this file:\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/analyzer/windows/data/yara/NSIS.yar\r\n\r\nBut for what is it that rule? What's the purpose of this?\nComment: It is a detection for NSIS archives, that is all. This yara allows NSIS-packed executables to detonate in CAPE.",
+  "Title: Cape Processing takes time\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ Y ] I am running the latest version\r\n- [ Y ] I did read the README!\r\n- [ Y ] I checked the documentation and found no answer\r\n- [ Y ] I checked to make sure that this issue has not already been filed\r\n- [ Y ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ Y ] I have read and checked all configs (with all optional parts)\r\n\r\n# Current Behavior\r\n\r\nI stopped unnecessary processes referring to the comments at the URL below, but it takes a while to process the Cape.\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/issues/1645\r\n\r\nWe prepared two Capes with different commit IDs and compared the processing time for a 10KB docx file.\r\nCape (`commitID: a8e8d706ed23d19fb54e62c8ac5fc983e06cab71`) completed processing in about 1 minute, but Cape (`commitID: a07e80b5b4ecc5bd07d5ec29d11ca1358753f5cb`) took more than 10 minutes to complete processing.\r\n\r\nIs it normal for Cape `commitID: a07e80b5b4ecc5bd07d5ec29d11ca1358753f5cb` to take a long time to process?\r\nPlease let me know if you have any thoughts on the cause of the long processing time.\r\nAlso, please let me know if any information is missing.\r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/138567592/2fc29085-353f-43ed-b6b9-154f1e4d2886)\r\n\r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/138567592/2a0eb678-dbde-45a1-beb2-d757262020f2)\r\n\nComment: hello, no, is insane that it takes that long.  well i would say that you need to disable everything that you don't need inside of this config https://github.com/kevoreilly/CAPEv2/blob/master/conf/selfextract.conf\r\n\r\nyou are comparing 2y old cape with latest cape, i would say the answer is in what you have enabled, which modules, get a look around CAPE and selfextract as it is executed from inside of CAPE processing. We have added a lot of nice stuff, but not everyone needs all of that. Let us know if you find what takes that long. Maybe i will try to include processing time per file for stats info so we can find in future problematic files and will see how to optimize that\nComment: Thank you for your reply.\r\n\r\nI'm trying to disable unnecessary parameters in the selfextract.conf file, but since I'm seeing the selfextract.conf file for the first time, I'm not sure which parameters to disable.\r\nAre there any parameters in the selfextract.conf file that must be enabled?\r\n\r\nIf you know the page that describes each parameter in the selfextract.conf file, please let me know.\nComment: Those are plugins, if you dont know any of them i guess you dont need any\r\nof them, so disable all\r\n\r\nEl lun, 24 jul 2023, 10:41, 5470u2k ***@***.***> escribi\u00f3:\r\n\r\n> Thank you for your reply.\r\n>\r\n> I'm trying to disable unnecessary parameters in the selfextract.conf file,\r\n> but since I'm seeing the selfextract.conf file for the first time, I'm not\r\n> sure which parameters to disable.\r\n> Are there any parameters in the selfextract.conf file that must be enabled?\r\n>\r\n> If you know the page that describes each parameter in the selfextract.conf\r\n> file, please let me know.\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1670#issuecomment-1647474258>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3ZKMUMPUB2OZKVHKFLXRYYMHANCNFSM6AAAAAA2RA4SZI>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: Thank you for your reply.\r\n\r\nAfter invalidating all the parameters of the selfextract.conf file, I checked the analysis time.\r\nCompared to when all parameters are enabled, the processing time is shorter, but it still takes about 10 minutes.\r\n\r\nPlease let me know if you have any other ideas about the cause of the long processing time.\r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/138567592/98cb678f-6d61-49a6-9fc9-af8318677a96)\r\n\nComment: i have no idea, the best what i can suggest you is to reprocess that analysis in debug mode `poetry run python utils/process.py -r <task_id> -d` to try to get some extra context. Maybe you have too many slow yaras, try to remove them all as test\nComment: Thank you for your reply.\r\n\r\nAs a test, when I restarted the service with only one yara rule, the service did not start.\r\nIf you know the yara rule that is required when starting a service, please let me know.\r\n\r\nFor the above reason, when I tried restarting the service with only the yara rules that exist in the repository below, the service started.\r\nhttps://github.com/kevoreilly/CAPEv2/tree/master/data/yara/CAPE\r\nI compared the analysis time before and after changing the number of yara rules, but unfortunately there was no change in processing time.\r\n\r\nI also tried the debug mode you mentioned.\r\nWhen I specified the task number for which the analysis was completed and executed debugging, the processing time displayed in the Statistics column was updated, and it was clearly faster than before debugging.\r\n\r\n\r\n- before debugging\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/138567592/9dc1405f-b157-4000-be12-1df466c087b3)\r\n\r\n\r\n- After debugging\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/138567592/4393024a-74fd-4ed9-b990-5a1877082c1e)\r\n\r\n\r\nIt would be helpful if you could let me know if you know anything from the information so far.\r\n\nComment: About yara, it not make sense that it not starts, see logs what problem do\r\nyou have. I have no idea why is slow for you, you need to start\r\ninvestigating that by yourself as im out of ideas\r\n\r\nEl jue, 27 jul 2023, 9:49, 5470u2k ***@***.***> escribi\u00f3:\r\n\r\n> Thank you for your reply.\r\n>\r\n> As a test, when I restarted the service with only one yara rule, the\r\n> service did not start.\r\n> If you know the yara rule that is required when starting a service, please\r\n> let me know.\r\n>\r\n> For the above reason, when I tried restarting the service with only the\r\n> yara rules that exist in the repository below, the service started.\r\n> https://github.com/kevoreilly/CAPEv2/tree/master/data/yara/CAPE\r\n> I compared the analysis time before and after changing the number of yara\r\n> rules, but unfortunately there was no change in processing time.\r\n>\r\n> I also tried the debug mode you mentioned.\r\n> When I specified the task number for which the analysis was completed and\r\n> executed debugging, the processing time displayed in the Statistics column\r\n> was updated, and it was clearly faster than before debugging.\r\n>\r\n>    -\r\n>\r\n>    before debugging\r\n>    [image: image]\r\n>    <https://user-images.githubusercontent.com/138567592/256462808-9dc1405f-b157-4000-be12-1df466c087b3.png>\r\n>    -\r\n>\r\n>    After debugging\r\n>    [image: image]\r\n>    <https://user-images.githubusercontent.com/138567592/256462936-4393024a-74fd-4ed9-b990-5a1877082c1e.png>\r\n>\r\n> It would be helpful if you could let me know if you know anything from the\r\n> information so far.\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1670#issuecomment-1653081026>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3Y5H5DJGT2XWVRXHGTXSIMPHANCNFSM6AAAAAA2RA4SZI>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: as this is something that we can't reproduce, im closing the issue, feel free to still asking questions here. but i would suggest you to use some performance debugger like pygraph from uber to see where the time is spent\nComment: Thank you for your reply.\r\nI'm not sure how to find a solution, so please feel free to continue asking questions here.\r\n\r\nI upload the docx file I used in my analysis and the execution log in debug mode.\r\n\r\nI'm continuing my investigation, but if you notice anything, please let me know.\r\n[cape.zip](https://github.com/kevoreilly/CAPEv2/files/12182402/cape.zip)\r\n\nComment: sorry i don't have time for that. and as i told im out of ideas, for that kind of problems you can use the proper debug tool to investigate that, but is out of scope of cape, you have many tutorials how to use such tools\r\n\r\nhttps://capesandbox.com/analysis/434767/ - tooks 215.257 CAPE. but we don't have everything enabled on CAPE. But 47 dropped files is pretty a lot \r\n\r\n\nComment: i guess is ransomware? as i see it creates a lot of random files, you maybe can enable this https://github.com/kevoreilly/CAPEv2/blob/master/conf/processing.conf#L8 with setting lower number\nComment: Thank you for your reply.\r\n\r\nI changed [antiransomware] in processing.conf and compared the processing time.\r\nWith enabled=no and enable=yes,skip_number=1 there was a big difference in processing time.\r\n\r\nDo you know what kind of effect you get by changing to skip_number=1?\r\n\r\n```\r\n[antiransomware]\r\nenabled=no\r\n```\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/138567592/842220b6-6450-4625-9d31-104b2a9aa8b8)\r\n\r\n\r\n```\r\n[antiransomware]\r\nenable=yes\r\nskip_number=1\r\n```\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/138567592/66fcf566-5d9a-40fe-8ea9-bf9c0faaec3c)\r\n\nComment: count of not passlist extensions, so it only will allow X number of files that you specified in skiplist, as your file generates a lot of useless files\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/modules/processing/antiransomware.py#L137-L139\nComment: If you know, could you tell me the information of the CAPE server that analyzed the docx file last time?\r\nI would like to know the following information, but difficult information can be kept private.\r\n\r\n- CAPE version\r\n- The OS of the server that built CAPE\r\n    - OS version\r\n    - resource information (CPU, memory, disk)\r\n- The OS that built the SandBox\r\n    - OS version\r\n    - resource information (CPU, memory, disk)\nComment: Ubuntu 20/22,all\u00ed my servers are different starting from 4 CPU top 40 CPUs, memory is the same there are classical hdd, ssd and nvme. so there is no classical standard on hardware, the same for ram from 32 to 256gb of ram per server\r\n\r\nEl vie, 4 ago 2023, 2:14, 5470u2k ***@***.***> escribi\u00f3:\r\n\r\n> If you know, could you tell me the information of the CAPE server that\r\n> analyzed the docx file last time?\r\n> I would like to know the following information, but difficult information\r\n> can be kept private.\r\n>\r\n>    - CAPE version\r\n>    - The OS of the server that built CAPE\r\n>       - OS version\r\n>       - resource information (CPU, memory, disk)\r\n>    - The OS that built the SandBox\r\n>       - OS version\r\n>       - resource information (CPU, memory, disk)\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1670#issuecomment-1664786647>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH35YVZMKYOW2CF2EHRLXTQ5IDANCNFSM6AAAAAA2RA4SZI>\r\n> .\r\n> You are receiving this because you modified the open/close state.Message\r\n> ID: ***@***.***>\r\n>\r\n\nComment: It is stated that upon reprocessing a job with process.py -d -r the processing time went from 790 seconds to 128 seconds. The latter time is not that unusual. I would be interested in investigating why there is such a difference. What was the machine doing the first time to explain why it took 692 seconds longer that when reprocessed?\nComment: kevin that was first commit of capev2 and actual one, if i understood correctly\nComment: Thank you for your reply.\r\n\r\nIs the information such as specifications that you have answered published somewhere?\r\nI couldn't find any, so please let me know if there is a page with information about specs.\r\n\r\n> Ubuntu 20/22,all\u00ed my servers are different starting from 4 CPU top 40 CPUs, memory is the same there are classical hdd, ssd and nvme. so there is no classical standard on hardware, the same for ram from 32 to 256gb of ram per server\r\n\r\n\nComment: The OS in docs. Hardware not make sensei to puta there as each servers is\r\ndiferent\r\n\r\nEl mar, 8 ago 2023, 7:06, 5470u2k ***@***.***> escribi\u00f3:\r\n\r\n> Thank you for your reply.\r\n>\r\n> Is the information such as specifications that you have answered published\r\n> somewhere?\r\n> I couldn't find any, so please let me know if there is a page with\r\n> information about specs.\r\n>\r\n> Ubuntu 20/22,all\u00ed my servers are different starting from 4 CPU top 40\r\n> CPUs, memory is the same there are classical hdd, ssd and nvme. so there is\r\n> no classical standard on hardware, the same for ram from 32 to 256gb of ram\r\n> per server\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1670#issuecomment-1668915459>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3YH4H4JCAFU32KWV6DXUHCMRANCNFSM6AAAAAA2RA4SZI>\r\n> .\r\n> You are receiving this because you modified the open/close state.Message\r\n> ID: ***@***.***>\r\n>\r\n\nComment: Thank you for your reply.\r\n\r\nI ran the API from the Cape server with the curl command below to analyze the docx file.\r\n`curl --noproxy localhost -F \"file=@cape_test1-1.docx\" -F machine=\"win10-1\" http://localhost:8000/apiv2/tasks/create/file/`\r\n\r\nAfter that I am reprocessing the job using the process.py -d -r command.\r\nThe parsed docx file uses the one attached before. (cape.zip)\r\n\r\nIf there is necessary information, I will provide it to the extent possible. What else do you need?\r\n\r\n> It is stated that upon reprocessing a job with process.py -d -r the processing time went from 790 seconds to 128 seconds. The latter time is not that unusual. I would be interested in investigating why there is such a difference. What was the machine doing the first time to explain why it took 692 seconds longer that when reprocessed?\nComment: I run a cape instance on my old laptop, even there the processing is not that bad. Spec is a red herring here.\nComment: Thank you for your reply.\r\n\r\nCurrently, we are investigating which processing takes time using pygraph etc.\r\nI'll share the results as soon as I know them, but could you tell me if there's any information I should provide at this point?\nComment: from the stats you told that is CAPE module. Just dig into modules/processing/CAPE.py and try to understand what it does and add some details to see timing\nComment: I would suggest you look carefully at the detonation. The CAPE processing module processes things like dropped files, extracted payloads and process dumps. Therefore focusing on more than just one sample would be instructive. Word documents are possibly a poor choice as their detonation can result in so many processes and large behavior logs for the Word process. An executable sample that spawned less activity might provide a contrasting result from which something can be inferred.\nComment: Thank you both for your reply.\r\n\r\nI investigated the place where CAPE.py processing takes time by the following method, but it does not go well. Could you please let me know if there is a recommended research method?\r\n\r\n- line_profiler\r\n- cProfile\r\n- py-spy\r\n\r\nAlso, we are considering a method to check the processing time by adding a timestamp output process to the start/end timing of each process of CAPE.py. Is this method valid?\nComment: All depends of your skills so use the appropriate method which makes you\r\nfeel comfortable\r\n\r\nEl lun, 21 ago 2023, 6:38, 5470u2k ***@***.***> escribi\u00f3:\r\n\r\n> Thank you both for your reply.\r\n>\r\n> I investigated the place where CAPE.py processing takes time by the\r\n> following method, but it does not go well. Could you please let me know if\r\n> there is a recommended research method?\r\n>\r\n>    - line_profiler\r\n>    - cProfile\r\n>    - py-spy\r\n>\r\n> Also, we are considering a method to check the processing time by adding a\r\n> timestamp output process to the start/end timing of each process of\r\n> CAPE.py. Is this method valid?\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1670#issuecomment-1685628898>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH34MB6MUBNS5ZH4HNFLXWLQ47ANCNFSM6AAAAAA2RA4SZI>\r\n> .\r\n> You are receiving this because you modified the open/close state.Message\r\n> ID: ***@***.***>\r\n>\r\n\nComment: Thank you for your reply.\r\n\r\nI was able to identify the place where the processing time was taking in CAPE.py. \r\n\r\nWhen CAPE.py was executed, `process_file` was executed multiple times (about 10 to 30 times), and it was found that the processing of `static_file_info` executed in it took about 60 seconds each time. Other processing of CAPE.py is completed in a few milliseconds, so the cause seems to be `static_file_info` processing.\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/modules/processing/CAPE.py#L196\r\n\r\nIf you can figure out the cause from these information, please let me know.\nComment: It sounds like you have found the right path, why don't you follow it to the conclusion?\r\n\r\nYou have the `static_file_info()` function in `lib/cuckoo/common/integrations/file_extra_info.py` so you just need to profile that function to find where it spends so much time. Since this function is highly dependent on configuration and installed dependencies, we can't just look at it and know from where your problem originates. But you have all the information at your fingertips.\r\n\r\nAlso there wasn't much acknowledgement of my previous comments regarding the detonation details. So this function is not just called \"about 10 or 30 times\" as if this is some random black box number, it's the number of files that have resulted from that particular detonation that need processing. So the test sample and the resulting dropped files, payloads, process dumps etc are what are being processed here.\nComment: Thank you for your reply.\r\n\r\nI found the part where the `static_file_info()` function in `file_extra_info.py` took a long time to process. It seems that it takes about 60 seconds each time the following process is executed.\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/lib/cuckoo/common/integrations/file_extra_info.py#L228\r\n\r\nCan you tell me if you can understand anything from this result?\nComment: Again you have found the answer yourself. The obvious interpretation if the vt_lookup() function is the culprit, and this is enabled by a configuration item in processing.conf called 'virustotal', is that disabling this configuration item should solve your problem.\nComment: Thank you for your reply.\r\n\r\nAfter disabling virustotal in processing.conf, I was able to confirm that CAPE processing time was reduced to a few seconds.\r\nI have a question, will disabling virustotal affect the analysis accuracy?\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/138567592/5e0dca61-20e6-4154-860f-34f1aef64ce2)\r\n\r\n\r\nAlso, when I tried to analyze about 30 files, the processing time was about 2 to 30 minutes.\r\nWhen trying to analyze a large number of files, CAPE processing ends in a few seconds, but this time Sricata processing seems to take time.\r\nIs it normal for Sricata processing to take a long time?\r\n\r\n- Pattern with short processing time\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/138567592/1f7c56e7-900b-47e7-a1f4-1ab9ac8470a2)\r\n\r\n- Pattern with long processing time (Sricata processing takes time)\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/138567592/7770747e-2996-4078-8cf4-b82ef35800a0)\r\n\r\nBy the way, the startup options are set as follows in /lib/systemd/system/cape-processor.service.\r\n`ExecStart=/usr/bin/python3 -m poetry run python process.py -p20 auto -pt 18000`\nComment: hello, i would suggest you to start reading code to understand what it does to become more familiar and get answers faster and start gaining deep understanding.\r\n\r\n1. VT is just VT detection results, so is just extra info\r\n2. suricata takes long, well if there is a lot of traffic thats normal, reduce noise, make your VMs noise free, disable background services autoupdates etc to remove noise, google for the rest of the path\nComment: Thank you for your reply.\r\n\r\nThe reason why the vt_lookup() function was taking a long time in my previous question was due to insufficient proxy settings. By configuring the proxy settings, it is now possible to communicate with virustotal, and CAPE processing can now be completed in a few seconds.\r\n\r\nI'm currently investigating the reason why Suricata processing takes so long. I removed sandbox noise, but the Suricata processing time takes about 2 to 30 minutes. (I started cape-processor with 20 threads and analyzed 30 files)\r\n\r\nWhen we investigated the processing time of suricata.py and suricatasc.py, we found that connect() and send_command() took a long time.\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/lib/cuckoo/common/suricatasc.py#L135\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/lib/cuckoo/common/suricatasc.py#L149\r\n\r\nIt is taking a long time to process socket communication, but if there is a way to improve the processing time, could you please let me know?\nComment: probably decrease number of threads would be good start as it consumes a lot of resources, start with something like 5-7. on my side its super fast as all the way to improve what i found is already there. so you will need to dig, as it can be anything, as with case of vt, each system is different\nComment: Thank you for your reply.\r\n\r\nAfter changing the number of cape-processor threads from 20 to 5, we analyzed 30 files and checked the processing time of Suricata. When the number of threads was 20, the Suricata processing time took about 2 minutes to 30 minutes, but when the number of threads was changed to 5, the Suricata processing time decreased from 5 seconds to about 10 minutes.\r\n\r\nHowever, although the processing time of Suricata became shorter, the overall processing time did not change significantly because the number of threads was reduced.\r\n\r\n- 30 file processing time\r\n  - 20 threads: 50 minutes 30 seconds\r\n  - 5 threads: 43 minutes 25 seconds\r\n\r\nIs it normal for it to take this long to analyze 30 files?\r\nIf there is any other way to improve Suricata processing time, please let me know.\nComment: as i told if there would be known ways to optimize i would implement that. \r\neach system is different, you have configuration of everything that you use as suricata etc, read them and disable everything that you don't need, is your job to tune your tools, OS.\r\n\r\ntiming is kinda ok, everything depends on tons of factors that already was mentioned in this thread. Is time to grow and get into real internals of everything to get the best performance with your hardware ;) \nComment: It may be obvious but possibly worth stating nonetheless: to minimise suricata times, the pcap size should be minimised. This can be done by ensuring all non-sample-related network noise is eliminated from the vms. Worth checking the pcaps aren't full of noise.\nComment: Thank you both for your replies.\r\nLet me ask you one question. Is successful Name Resolution on Sandbox correct behavior?\nComment: Do you know what is DNS?\r\n\r\nEl mar, 26 sept 2023, 9:27, 5470u2k ***@***.***> escribi\u00f3:\r\n\r\n> Thank you both for your replies.\r\n> Let me ask you one question. Is successful Name Resolution on Sandbox\r\n> correct behavior?\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1670#issuecomment-1734980372>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH36FDKILX6JDAURKGH3X4J7XXANCNFSM6AAAAAA2RA4SZI>\r\n> .\r\n> You are receiving this because you modified the open/close state.Message\r\n> ID: ***@***.***>\r\n>\r\n\nComment: Thank you for your reply.\r\n\r\nI know about DNS, but when I was doing some research to reduce noise in my sandbox, I noticed that name resolution was failing and causing a lot of traffic. I asked this question thinking that if Sandbox does not need to resolve names during analysis, I would like to delete the DNS settings to reduce noise.\nComment: Dude you have no idea about how network connection works, google that, that\r\nis out of scope of cape already to explain how internet works\r\n\r\nEl mar, 26 sept 2023, 9:52, 5470u2k ***@***.***> escribi\u00f3:\r\n\r\n> Thank you for your reply.\r\n>\r\n> I know about DNS, but when I was doing some research to reduce noise in my\r\n> sandbox, I noticed that name resolution was failing and causing a lot of\r\n> traffic. I asked this question thinking that if Sandbox does not need to\r\n> resolve names during analysis, I would like to delete the DNS settings to\r\n> reduce noise.\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1670#issuecomment-1735015024>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3ZEPNS7LW5LH2FIRFDX4KCTNANCNFSM6AAAAAA2RA4SZI>\r\n> .\r\n> You are receiving this because you modified the open/close state.Message\r\n> ID: ***@***.***>\r\n>\r\n\nComment: I'm sorry, my way of asking the question was poor. What I want to know is not how to successfully resolve DNS names in the Sandbox, but rather, whether it is the proper state for Cape's Sandbox to be able to successfully resolve names. Currently, our Cape's Sandbox has been configured to not allow external communication, thus we cannot resolve names. If it's acceptable for the Cape's Sandbox to not be able to resolve names, then we're planning to remove DNS from the network settings.\nComment: Is up to you, is your sandbox you can do whatever is required for your goal\r\n\r\nEl mi\u00e9, 27 sept 2023, 3:11, 5470u2k ***@***.***> escribi\u00f3:\r\n\r\n> I'm sorry, my way of asking the question was poor. What I want to know is\r\n> not how to successfully resolve DNS names in the Sandbox, but rather,\r\n> whether it is the proper state for Cape's Sandbox to be able to\r\n> successfully resolve names. Currently, our Cape's Sandbox has been\r\n> configured to not allow external communication, thus we cannot resolve\r\n> names. If it's acceptable for the Cape's Sandbox to not be able to resolve\r\n> names, then we're planning to remove DNS from the network settings.\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1670#issuecomment-1736517301>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH332O3ESEOGZUTA4LUDX4N4NVANCNFSM6AAAAAA2RA4SZI>\r\n> .\r\n> You are receiving this because you modified the open/close state.Message\r\n> ID: ***@***.***>\r\n>\r\n",
+  "Title: AttributeError: 'vim.ResourceConfigSpec' object has no attribute 'name'\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nStarting CAPE using `poetry run python3 cuckoo.py` should load the machinery config `vsphere`, fetch the list of VMs from our vSphere host, and power on the configured guest VMs.\r\n\r\n# Current Behavior\r\n\r\nAfter starting CAPE by running the command above, the script fails execution with the following stacktrace after fetching the list of VMs from the vSphere host:\r\n```\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/cuckoo.py\", line 140, in <module>\r\n    cuckoo_main(max_analysis_count=args.max_analysis_count)\r\n  File \"/opt/CAPEv2/cuckoo.py\", line 103, in cuckoo_main\r\n    sched.start()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 774, in start\r\n    self.initialize()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 726, in initialize\r\n    machinery.initialize(machinery_name)\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 131, in initialize\r\n    self._initialize_check()\r\n  File \"/opt/CAPEv2/modules/machinery/vsphere.py\", line 118, in _initialize_check\r\n    super(vSphere, self)._initialize_check()\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 206, in _initialize_check\r\n    configured_vms = self._list()\r\n  File \"/opt/CAPEv2/modules/machinery/vsphere.py\", line 163, in _list\r\n    vmlist = [vm.summary.config.name for vm in self._get_virtual_machines(conn)]\r\n  File \"/opt/CAPEv2/modules/machinery/vsphere.py\", line 163, in <listcomp>\r\n    vmlist = [vm.summary.config.name for vm in self._get_virtual_machines(conn)]\r\n  File \"/opt/CAPEv2/modules/machinery/vsphere.py\", line 202, in _get_virtual_machines\r\n    if vm.summary.config.name:\r\nAttributeError: 'vim.ResourceConfigSpec' object has no attribute 'name'\r\n```\r\n\r\n# Failure Information (for bugs)\r\n\r\nIt looks like that on our vSphere host/data center, there exist VMs without a `name` attribute as accessed by `modules/machinery/vsphere.py` via `vm.summary.config`. At least, when I debug `modules/machinery/vsphere.py` and output the list of VM objects, some of them do not include the `name` attribute.\r\n\r\nI temporarily solved the issue by adding `if hasattr(vm.summary.config, \"name\"):` to line 201 in `modules/machinery/vsphere.py`. Updated code in lines 199-203: \r\n```\r\nfor dc, dcpath in traverseDCFolders(conn, conn.content.rootFolder.childEntity):\r\n    for vm in traverseVMFolders(conn, dc.vmFolder.childEntity):\r\n        if hasattr(vm.summary.config, \"name\"):\r\n            self.VMtoDC[vm.summary.config.name] = dcpath\r\n            yield vm\r\n```\r\nHowever, I don't know if this is the cleanest solution...\r\n\r\n\r\n## Context\r\n\r\nThe CAPE host runs on Ubuntu 22.04.2 LTS, machinery in `cuckoo.conf` is `vsphere`, the latest code was pulled and all dependencies (including optional) were updated on 19th July, 2023.\nComment: hello, we do not maintain `vSphere` machinery, so you are more than welcome to submit PR. does your suggested solution works? \nComment: Alright! Yes it works",
+  "Title: Use pre tag to display file text\nBody: None",
+  "Title: Question on network analysis\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [X] I did read the README!\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I have read and checked all configs (with all optional parts)\r\n\r\nApologies in advance if there is a better way to ask questions to this community, please let me know if there is! \r\n\r\nI had an analyst bring to my attention that on an analysis they ran, the DNS record for the malicious site was not in the DNS section of the 'Quick Overview' page. Ended up being that the final page was accessed via redirect DNS wasn't collecting all data. Additionally, the site is accessed via HTTPs so is not viewable anywhere outside of TCP connections and Host connections (Had to manually figure out IP address for this case to verify). Is there an easy way to have the 'Hosts' tab on the Quick Overview page set up to display DNS Names for IP addresses there? \r\n\r\nAlternatively any suggestions for some modules I can activate for this issue, I realize setting up DNS resolution for every host will be time consuming per analysis, but it will be something I probably look at setting up myself if there aren't any suggestions here. Thank you again :)\r\n\nComment: I think u can look into inetsim to help resolve the DNS\r\nhttps://capev2.readthedocs.io/en/latest/installation/host/routing.html?highlight=inetsim\r\n\nComment: yes just instead of inetsim i would use fakenet-ng tool from flare, is modernish, but both tools abondoned, but doing very well their job\nComment: > yes just instead of inetsim i would use fakenet-ng tool from flare, is modernish, but both tools abondoned, but doing very well their job\r\n\r\nI will look into that thank you doomedraven!\nComment: @doomedraven is there a good way to interact with the community outside of this github page? Something like a discord? \nComment: no, we don't want to create another place as happened with cuckoo slack, people just come and ask questions having the answers in docs. \nComment: Okay very well that makes sense. ",
+  "Title: FLARE CAPA v6\nBody: None",
+  "Title: Fix exception handling for missing sudo\nBody: subprocess throws FileNotFoundError when the binary does not exist.\nComment: thanks",
+  "Title: vbs analysis package\nBody: # Main Issue:\r\nCAPE determines whether the submitted is a `vbs` or not either by examining the file's extension or by searching for the presence of the `Dim` keyword within the script's content.\r\n\r\nHowever, a significant issue arises when the contents of the file are encoded in Unicode. In such cases, CAPE incorrectly categorizes the package as `generic`.\r\n\r\n![qwers](https://github.com/kevoreilly/CAPEv2/assets/62453654/01ad2e3f-fd05-4289-9a59-fb514b476832)\nComment: can you post filehash here please? now recon is done in [sflock](https://github.com/CAPESandbox/sflock), the packages.py is legacy\nComment: MD5: `9ac8d11420ec4abc97622ccf2b52389c`\r\nhttps://www.virustotal.com/gui/file/02630420cf48b66a74b99279982eec92f8b6656609b7b95946c42b8ff8c13935\r\n\r\nTo be noted, `sflock` cannot identify the correct package.\nComment: yes sflock can't as cape can't is why we need to update sflock, packages.py is legacy and is better to handle this in sflock\nComment: but i will merge this after verify nd update sflock\nComment: i have updated your implementation. thanks for headups and PR",
+  "Title: Bump cryptography from 41.0.1 to 41.0.2\nBody: Bumps [cryptography](https://github.com/pyca/cryptography) from 41.0.1 to 41.0.2.\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst\">cryptography's changelog</a>.</em></p>\n<blockquote>\n<p>41.0.2 - 2023-07-10</p>\n<pre><code>\n* Fixed bugs in creating and parsing SSH certificates where critical options\n  with values were handled incorrectly. Certificates are now created correctly\n  and parsing accepts correct values as well as the previously generated\n  invalid forms with a warning. In the next release, support for parsing these\n  invalid forms will be removed.\n<p>.. _v41-0-1:\n</code></pre></p>\n</blockquote>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/pyca/cryptography/commit/7431db737cf0407560fac689d24f1d2e5efc349d\"><code>7431db7</code></a> bump for 41.0.2 (<a href=\"https://redirect.github.com/pyca/cryptography/issues/9215\">#9215</a>)</li>\n<li><a href=\"https://github.com/pyca/cryptography/commit/e190ef190525999d1f599cf8c3aef5cb7f3a8bc4\"><code>e190ef1</code></a> Backport ssh cert fix (<a href=\"https://redirect.github.com/pyca/cryptography/issues/9211\">#9211</a>)</li>\n<li><a href=\"https://github.com/pyca/cryptography/commit/bb204c8ca7bc0df0c24b6f6c1f59ed5f5bee9226\"><code>bb204c8</code></a> Backport: Added PyPy 3.10 to CI (<a href=\"https://redirect.github.com/pyca/cryptography/issues/8933\">#8933</a>) (<a href=\"https://redirect.github.com/pyca/cryptography/issues/9210\">#9210</a>)</li>\n<li>See full diff in <a href=\"https://github.com/pyca/cryptography/compare/41.0.1...41.0.2\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=cryptography&package-manager=pip&previous-version=41.0.1&new-version=41.0.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Passing kwargs in Azure api calls\nBody: As per https://github.com/kevoreilly/CAPEv2/pull/1661#issuecomment-1635853127",
+  "Title: az: rscrc_skus.list: remove invalid parameter\nBody: This change removes the additional parameter which shouldn't be present in the code, as its presence leads to the error:\r\n```log\r\n2023-07-14 11:36:45,147 [modules.machinery.az] DEBUG: Trying <bound method ResourceSkusOperations.list of <azure.mgmt.compute.v2021_07_01.operations._operations.ResourceSkusOperations object at 0x7fbe127d35b0>>(('WestEurope',))\r\n2023-07-14 11:36:45,147 [modules.machinery.az] WARNING: Failed to <bound method ResourceSkusOperations.list of <azure.mgmt.compute.v2021_07_01.operations._operations.ResourceSkusOperations object at 0x7fbe127d35b0>>(('WestEurope',)) due to the Azure error 'ResourceSkusOperations.list() takes 1 positional argument but 2 were given': 'TypeError('ResourceSkusOperations.list() takes 1 positional argument but 2 were given')'.\r\n2023-07-14 11:36:45,148 [root] CRITICAL: CuckooCriticalError: Error initializing machines: ResourceSkusOperations.list() takes 1 positional argument but 2 were given:TypeError('ResourceSkusOperations.list() takes 1 positional argument but 2 were given')\r\n```\r\n\r\nAs you may see in the [docs](https://learn.microsoft.com/en-us/python/api/azure-mgmt-compute/azure.mgmt.compute.v2021_07_01.operations.resourceskusoperations?view=azure-python#azure-mgmt-compute-v2021-07-01-operations-resourceskusoperations-list) `list` function expects only `kwargs`, but in this case the unnecessary parameter were passed using `args`\nComment: Thank you very much for raising this. It looks like `kwargs` are actually never used by the `_azure_api_call` operation. I'll make a PR to fix this. In the meantime, approved!",
+  "Title: HTML template fixes\nBody: simplify virustotal results - also fixes html reporting module\r\nremove unused template - _url.html\r\nfix some templates",
+  "Title: az: Add support for cert auth\nBody: Adds support for alternative way for authenticating to Azure Application: by using Certificate Auth\nComment: thank you both, i have removed az.conf mods as only .default should be modified",
+  "Title: Reimaging time of analysis machine\nBody: # Main Issue:\r\nAfter the analysis reaches its timeout, CAPE initiates a request to the FOG server, triggering the reimaging process of the VM. It then proceeds to process the collected results to activate run signatures and release the final report.\r\n\r\nHowever, a challenge arises due to the time required to reimage the VM back to its clean state. This process typically takes between 1.5 to 3 minutes or even longer if multiple reimaging tasks are running concurrently.\r\n\r\nTo address this issue, an initial solution involves proceeding to the next phase even if the VM has not yet started. However, a problem arises when submitting another task to CAPE, as it assumes the VM is already running and attempts to submit the task to it. CAPE manages this situation by utilizing the following mechanism:\r\n```\r\n[modules.machinery.physical] DEBUG: Getting status for machine: win7_1\r\n[lib.cuckoo.common.abstracts] DEBUG: Waiting 0 cuckooseconds for machine 1_win7_1 to switch to status ['running']\r\n[modules.machinery.physical] DEBUG: Getting status for machine: win7_1\r\n[lib.cuckoo.common.abstracts] DEBUG: Waiting 1 cuckooseconds for machine 1_win7_1 to switch to status ['running']\r\n```\r\n~I made a temporary solution by pinging the acquired machine first using `ping3` library, if it's pingable, submit the new task to it.~\r\n\r\nI used the traditional way to get machine status before acquiring new task to it.",
+  "Title: Add CSS to create readable PDF reports when using reportpdf module\nBody: # Issue: Improper PDF generation\r\nAs reported in issue #1210 and #1543, PDF generated with the ``reportpdf`` reporting modules are not readable because\r\nof white-on-white text.\r\n\r\nThis PR contains a quick CSS fix that make the PDF readable and that should only affect the PDF generation.\r\n\r\nAs @kevoreilly said in #1210, the PDF reports might be missing Cape-specific information as it hasn't been maintained.\r\nIf this is effectively the case, this is an issue that I might try to resolve later on.\r\n\r\n## PDF before changes\r\n![PDF-before](https://github.com/kevoreilly/CAPEv2/assets/67320645/3761b13c-9bad-4ec0-93ca-88fc31e3db42)\r\n## PDF after changes\r\n![PDF-after](https://github.com/kevoreilly/CAPEv2/assets/67320645/20c1034a-d235-4424-8cc2-5f29200206ae)\r\n",
+  "Title: VM is frozen after analysis is complete\nBody: # Setup Environment:\r\nI am currently utilizing physical machinery due to encountering several issues with nested virtualization using KVM. I have my own server that has equipped with Proxmox and I have installed CAPE sandbox, a FOG server responsible for VMs re-imaging to restore them to a clean state once analysis is finalized, and multiple VMs. Each machine has its own name in the FOG server and ID in Proxmox.\r\n\r\n![CAPE Design](https://github.com/kevoreilly/CAPEv2/assets/62453654/1e672c07-d7bb-4f4b-b7a3-5aea1af22efa)\r\n\r\n# Main Issue: VM is frozen\r\nBy default, CAPE sandbox is configured with an analysis duration of **200 seconds**. After the analysis is finished, CAPE sends a force reboot command to the virtual machine (VM) to initiate the shutdown process. However, in some cases, the VM may encounter an issue where it remains stuck in the \"Shutting Down\" state without successfully completing the shutdown.\r\n\r\nTo solve this issue, we have to reset the whole machine instead of just rebooting it, so we have to communicate with the hypervisor server to make a reset request. It has several REST APIs to send and receive requests. First, I need to send my credentials to receive an access ticket, then I need to parse the ticket to get CSRF token and authentication cookie that will be sent in another request with VM-ID and action (reset request) \r\n\r\nThis concept can be implemented on any hypervisor that provides its own set of APIs.\r\n\r\n![PROXMOX APIs](https://github.com/kevoreilly/CAPEv2/assets/62453654/d564aad4-f094-4b3a-a9bd-475d7845fbdc)\r\n\nComment: Hello, love your explanations. The uniq thing that this defeats the pure FOG, which shouldn't relay on proxmon i guess. maybe add one config so in physical it could know if is pure or if is proxmon based? what do you think\nComment: @doomedraven \r\nYes, you're right, but my point is for hypervisor-based (Proxmox, VMware ESXi, etc.) I will try to find a way to determine if it's hypervisor-based, or just pure setup.\r\n\r\nThanks for your review.\nComment: maybe just add an entry in physical.conf.default for something like idk, external_manager, idk not super creative for name now, and then if yes then import proxmon and use shutdown instead of direct rest api request\nComment: @doomedraven \r\nDone.\nComment: Thank you for your job on this. I have merged proxmon configs. so you just need to put those settings in original config and thats all. can you test and if that works im fine to merge this\nComment: @doomedraven \r\nIt worked successfully, but I modified `proxmox` identifier in `physical.py`\nComment: amazing, thank you a lot for your work. merging, i forgot to remove `conf/proxmoxVMs.conf.default` can you move your conf to proxmox.conf ?\nComment: i still considering to move that aux func to abstracts.py but later when i have time to think about that",
+  "Title: Account Inactive\nBody: Hi,\r\nI registered an account on capesandbox.com and verified my e-mail but the account has been set to inactive;\r\nwould it be possible to get it activated?\r\n\r\nMy username: a1668784325@outlook.com\r\n\r\nThanks in advance!\nComment: read the template that you removed",
+  "Title: Ensure that when a timeout is reached, the SIGTERM is passed to the grandchild process.\nBody: When running extraction tools, we use a pebble.ProcessPool. Each tool is run by calling a function in a fork of the parent process. When a configured timeout is reached, that process is sent a SIGTERM. Pebble allows 3 seconds for the process to finish before then sending a SIGKILL if it's still alive.\r\n\r\nIf the forked process creates another child, such as by the use of subprocess.check_output, it would not get the SIGTERM signal. This change makes sure that that subprocess also gets the signal to terminate.\nComment: nice stuff thank you",
+  "Title: Bump django from 4.1.9 to 4.1.10\nBody: Bumps [django](https://github.com/django/django) from 4.1.9 to 4.1.10.\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/django/django/commit/f9a14b8f0668029fb7e0aebcae57b60dcec4a529\"><code>f9a14b8</code></a> [4.1.x] Bumped version for 4.1.10 release.</li>\n<li><a href=\"https://github.com/django/django/commit/beb3f3d55940d9aa7198bf9d424ab74e873aec3d\"><code>beb3f3d</code></a> [4.1.x] Fixed CVE-2023-36053 -- Prevented potential ReDoS in EmailValidator a...</li>\n<li><a href=\"https://github.com/django/django/commit/3b48fe413f91612fb8c43fe9d489860d10c84bf7\"><code>3b48fe4</code></a> [4.1.x] Added stub release notes for 4.1.10 and 3.2.20.</li>\n<li><a href=\"https://github.com/django/django/commit/0e5948b8df5d25deb48a505cbf16f010d9dc603c\"><code>0e5948b</code></a> [4.1.x] Fixed MultipleFileFieldTest.test_file_multiple_validation() test if P...</li>\n<li><a href=\"https://github.com/django/django/commit/66e1e9b006618ba00e804d18bd90d3a9e94801b3\"><code>66e1e9b</code></a> [4.1.x] Added CVE-2023-31047 to security archive.</li>\n<li><a href=\"https://github.com/django/django/commit/d1385cc51b142b05b21b721d9d68fc461bc7241f\"><code>d1385cc</code></a> [4.1.x] Post-release version bump.</li>\n<li>See full diff in <a href=\"https://github.com/django/django/compare/4.1.9...4.1.10\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=django&package-manager=pip&previous-version=4.1.9&new-version=4.1.10)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Pillow will no longer install with 'python -m pip install --upgrade Pillow' on Windows\nBody: Currently the documentation for setting up a Windows guest VM say, after installing 32-bit python, to run `python -m pip install --upgrade Pillow`. 32-bit wheels are no longer provided for Pillow >= 10.0.0 (https://pillow.readthedocs.io/en/stable/releasenotes/10.0.0.html#bit-wheels) so that command will attempt to build Pillow from source and will fail unless you have zlib and libjpeg libraries installed and configured properly, which is not a simple task on windows and not really conducive to a malware analysis guest. To be able to install Pillow from binary you now need to run the command `python -m pip install Pillow --only-binary=:all:` This will install the last available binary version of Pillow for 32-bit which is 9.5.0\r\n\r\nThe documentation should be updated to reflect the removal of 32-bit wheel support in Pillow\nComment: hello thanks, you could directly provide updaates to docs as pull request :)\nComment: updated docs, thanks",
+  "Title: Error compiling built-in YARA rule:\nBody: I have installed the latest CapeV2 using the cape2.sh script from the documentation. When I look at the logs using `journalctl -u cape.service` I get the error `[root] ERROR: Can't compile YARA rule: /opt/CAPEv2/data/yara/CAPE/XorStringsNET.yar. Maybe is bad yara but can be missing module.`\r\n\r\nThis rule was installed by the cape2.sh script so I'm not sure what is going wrong or how to fix it.\nComment: before posting issue please do search in issues as this is duplicated https://github.com/search?q=repo%3Akevoreilly%2FCAPEv2+XorStringsNET&type=issues\r\n\r\njust run `./extra/poetry_yara_installer.sh` and restart processing with systemd restart cape-processor",
+  "Title: Adding support for 7zip files in zips\nBody: None",
+  "Title: Yara Detections\nBody: # Main Issue: CAPE Check\r\nCAPE performs a check by searching for an identifier called `cape_type` within the meta section of the **YARA** rule. If this variable contains specific words such as `payload`, `loader`, or `config`, CAPE adds the `\"Detections\"` section, which includes the name of the malware family.\r\n\r\n![image12](https://github.com/kevoreilly/CAPEv2/assets/62453654/694eabe1-a617-4bc0-b898-902f29e67d8b)\r\n\r\n\r\nWhat if we want to download additional rules from multiple sources, it doesn't make any sense to add this identifier to all of them. To overcome this limitation, I modified this condition in the code to include the \"Detections\" section whenever a **YARA** hit is found.\r\n\r\n![image14](https://github.com/kevoreilly/CAPEv2/assets/62453654/b4d46db4-a92d-486e-ab7d-e206acffc8e5)\r\n\nComment: that is the beauty of the opensource, you can change whatever you want. I don't want to see all crap yara rules names in detection. but if you can extend conf/processing.conf.default [CAPE] to be able to on/off this feature. then i will merge it. if you don't know how, i will do that for you, just let me know\nComment: @doomedraven \r\nDone.\r\nTo be noted, during analysis, CAPE uploads rules that only exist on `data/yara/CAPE` which contains all rules related to malware families and makes the detections section from it, so I think it will not be noisy.\nComment: @doomedraven \r\nI think we are good in this PR, may you review and merge it?\nComment: we have some internal discussion about this, i was asked to hold on \nComment: Apologies for the delay in responding - ultimately this PR was not acceptable as it undermines one of the key design principles in cape: malware categorisation by family. The problem is that we need a single malware family name, but multiple signatures might classify the family. The design of cape is to have just the family, not the version or any other extraneous information. So for example in the case of, say, AgentTesla, the classification needs to have just this and not `AgentTeslaV3` or `AgentTeslaV4`. To solve this problem, `cape_type` was introduced to specify the family name separately to the signature name.\r\n\r\nThanks for the PR nonetheless, I am always open to suggestions that might improve cape. But I tried it this way in the beginning and it became a sprawling nightmare of myriad yara signature names (incidentally often with all sorts of undesirable characters or differing forms) and a lack of clear classification.",
+  "Title: Update parsers for yara\nBody: None",
+  "Title: update parsers for new yara\nBody: None",
+  "Title: Fix yara\nBody: Return all strings and address matches",
+  "Title: If you parse multiple docx files at the same time, the status will be failed_processing.\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ Y ] I am running the latest version\r\n- [ Y ] I did read the README!\r\n- [ Y ] I checked the documentation and found no answer\r\n- [ Y ] I checked to make sure that this issue has not already been filed\r\n- [ Y ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ Y ] I have read and checked all configs (with all optional parts)\r\n\r\n# Current Behavior\r\nI changed ram_boost to yes in processing.conf and changed the timeout to 1800 seconds in ExecStart of cape-processor.service by referring to the following page, but it did not solve the problem.\r\nCape-processor.service and cape.service are started in debug mode with the -d option to understand the problem.\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/issues/1024\r\nhttps://github.com/kevoreilly/CAPEv2/issues/331\r\nhttps://capev2.readthedocs.io/en/latest/usage/performance.html#processing\r\n\r\n- /opt/CAPEv2/conf/processing.conf\r\n  [behavior]\r\n  ram_boost = yes\r\n\r\n- /lib/systemd/system/cape-processor.service\r\n  [Service]\r\n  ExecStart=/usr/bin/python3 -m poetry run python process.py -d -p20 auto -pt 1800\r\n\r\n- /lib/systemd/system/cape.service\r\n  [Service]\r\n  ExecStart=/usr/bin/python3 -m poetry run python cuckoo.py -d\r\n\r\n# Failure Information (for bugs)\r\n\r\nThe following log is output during analysis.\r\n\r\n- /opt/CAPEv2/log/cuckoo.log\r\n2023-07-04 16:44:25,917 [lib.cuckoo.core.resultserver] DEBUG: Task #149: Cancel <Context for b'BSON'>\r\n2023-07-04 16:44:25,917 [lib.cuckoo.core.resultserver] DEBUG: Task #149: Cancel <Context for b'BSON'>\r\n2023-07-04 16:44:25,917 [lib.cuckoo.core.resultserver] DEBUG: Task #149: Cancel <Context for b'BSON'>\r\n2023-07-04 16:44:25,917 [lib.cuckoo.core.resultserver] DEBUG: Task #149: Cancel <Context for b'BSON'>\r\n2023-07-04 16:44:25,917 [lib.cuckoo.core.resultserver] DEBUG: Task #149: Cancel <Context for b'BSON'>\r\n2023-07-04 16:44:25,918 [lib.cuckoo.core.resultserver] DEBUG: Task #149: Cancel <Context for b'LOG'>\r\n2023-07-04 16:44:25,918 [lib.cuckoo.core.resultserver] DEBUG: Task #149: Cancel <Context for b'BSON'>\r\n2023-07-04 16:44:25,918 [lib.cuckoo.core.resultserver] DEBUG: Task #149: Cancel <Context for b'BSON'>\r\n2023-07-04 16:44:25,918 [lib.cuckoo.core.resultserver] DEBUG: Task #149: Cancel <Context for b'BSON'>\r\n2023-07-04 16:44:25,918 [lib.cuckoo.core.resultserver] DEBUG: Task #149: Cancel <Context for b'BSON'>\r\n2023-07-04 16:44:25,918 [lib.cuckoo.core.resultserver] DEBUG: Task #149: Cancel <Context for b'BSON'>\r\n\r\n- /opt/CAPEv2/log/process.log\r\n2023-07-04 17:14:22,946 [root] ERROR: Processing Timeout ('Task timeout', 1800). Function: 1800\nComment: so why you just not increasing timeout to satisfy your hardware load?\nComment: It seems that only the extensions docx and docm took a long time to process.\r\nOther extensions finish processing in about 100 seconds, but docx and docm take more than 1000 seconds to complete.\r\nChecking the log does not show any errors that could be the cause.\r\n\r\nAny idea what's causing this?\r\n\r\nThis is the Statistics screen that I checked on the web.\r\n![cape-statistics](https://github.com/kevoreilly/CAPEv2/assets/138567592/722efe51-2901-404a-b13e-55d1f7a0fa6a)\r\n\nComment: do you have a lot of different yaras? how many files are in general in that analysis like dropped/payloads/etc?\nComment: The amount of time spent processing is directly proportional to the amount of data captured during the run, yet there is no mention of what is happening inside the sandbox, nor any example sample hash so we can attempt to recreate.\r\n\r\nTake a look at the process tree. The number of processes spawned, the number of pages of behavior captured. How many dropped files, payloads just doomed says. This is where the answer lies.\nComment: The timeout is also very relevant for a sample that spawns a ton of activity. Try a timeout of say 30 seconds and you will see a big difference.\nComment: Thank you both for your reply.\r\n\r\nI checked the number of Yara rules.\r\n```\r\n$ pwd\r\n/opt/CAPEv2/data/yara/CAPE\r\n$ find . -type f | wc -l\r\n487\r\n```\r\n\r\nI also checked the process tree.\r\nWhat information can I get from this screen?\r\n![cape-processtree](https://github.com/kevoreilly/CAPEv2/assets/138567592/e6058598-26e2-4c37-a7a7-0da59a65a5e5)\nComment: 28 files + initial one. that is a lot. but still not that much, i guess you have just a lot of random yara putted into cape?, that is the most common problem\nComment: try to scan with yara just directly that analysis  dropped folder, you will probably see which yara is time to wipe\nComment: The capture of Edge Update & 'Security Health Host' services is definitely not desirable. These could be contributing to the oversized output. I recommend you disable these services aggressively in your snaphot.\nComment: Thank you both for your reply.\r\n\r\nI need to investigate yara, so I stopped EdgeUpdate on the VM and checked the docx processing time.\r\nAs a result, the required time was cut in half.\r\n820 seconds with the service disabled and 1561 seconds with the service enabled.\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/138567592/2b40e6f0-567d-4381-aee3-da82ad1adc9b)\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/138567592/27d0ac14-42be-4a3a-bbf9-896e3ff969d5)\r\n\r\nCheck to see if there are any other services that should be disabled.\r\n\nComment: Yes hpu have to disable all the noise, as you can see your suricata\r\nprocesing time is 2.5min\r\n\r\nEl jue, 6 jul 2023, 13:34, 5470u2k ***@***.***> escribi\u00f3:\r\n\r\n> Thank you both for your reply.\r\n>\r\n> I need to investigate yara, so I stopped EdgeUpdate on the VM and checked\r\n> the docx processing time.\r\n> As a result, the required time was cut in half.\r\n> 820 seconds with the service disabled and 1561 seconds with the service\r\n> enabled.\r\n> [image: image]\r\n> <https://user-images.githubusercontent.com/138567592/251437302-2b40e6f0-567d-4381-aee3-da82ad1adc9b.png>\r\n> [image: image]\r\n> <https://user-images.githubusercontent.com/138567592/251437393-27d0ac14-42be-4a3a-bbf9-896e3ff969d5.png>\r\n>\r\n> Check to see if there are any other services that should be disabled.\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1645#issuecomment-1623522277>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH33N5M35LNUQUAGTXFTXO2PC5ANCNFSM6AAAAAAZ5Q47AI>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: im going close this as this is VM configuration problems more than cape problem as you can see, but feel free to post your msgs in this thread",
+  "Title: Update Emotet.py\nBody: None",
+  "Title: Added CITATION.cff file to make it easier to cite CAPE\nBody: GitHub automatically parses the file and transforms it in both APA and BibTeX formats:\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/41084837/e4267666-b24e-42f2-9e92-be94e5b16bc1)\r\n\nComment: thank you",
+  "Title: Task tags fix\nBody: This addresses getting Task tags when querying for machines list.",
+  "Title: Add webgui config hint\nBody: None\nComment: only .default configs",
+  "Title: Don't assume sudo exists.\nBody: If sudo doesn't exist, then a FileNotFoundError is raised, not CalledProcessError.\r\n\r\nThis is in response to https://github.com/kevoreilly/CAPEv2/pull/1610#issuecomment-1614820122",
+  "Title: fix guacamole installation\nBody: - guacamole installer adds a service file to /etc which prevents guacd from running as cape user\r\n- remove unneeded mount command",
+  "Title: AnalysisManager.Run Connection broken\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X ] I am running the latest version\r\n- [ X] I did read the README!\r\n- [ X] I checked the documentation and found no answer\r\n- [ X] I checked to make sure that this issue has not already been filed\r\n- [ X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ X] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nCape analysis completes correctly\r\n\r\n# Current Behavior\r\n\r\ncape.service will return an analysis bug about 10% of the time. There is really no consistency and it doesn't seem to matter if the analysis was submitted via API call or directly from site.  \r\n\r\n> Jun 29 13:39:39 user-virtual-machine python3[2274]: 2023-06-29 13:39:39,307 [lib.cuckoo.core.scheduler] INFO: Loaded 3 machine/s\r\nJun 29 13:39:39 user-virtual-machine python3[2274]: 2023-06-29 13:39:39,341 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks\r\nJun 29 13:40:23 user-virtual-machine python3[2274]: 2023-06-29 13:40:23,824 [lib.cuckoo.core.scheduler] INFO: Task #9: Starting analysis of URL 'youtube.com'\r\nJun 29 13:40:23 user-virtual-machine python3[2274]: 2023-06-29 13:40:23,854 [lib.cuckoo.core.scheduler] INFO: Task #9: acquired machine Windows10Vanilla2 (label=Windows10Vanilla2, arch=x64, platform=windows)\r\nJun 29 13:40:25 user-virtual-machine python3[2274]: 2023-06-29 13:40:25,290 [lib.cuckoo.core.scheduler] INFO: Enabled route 'internet'.\r\nJun 29 13:40:25 user-virtual-machine python3[2274]: 2023-06-29 13:40:25,310 [modules.auxiliary.sniffer] INFO: Started sniffer with PID 3661 (interface=ens192, host=10.135.100.19, dump path=/opt/CAPEv2/storage/analyses/9/dump.pcap)\r\nJun 29 13:40:25 user-virtual-machine python3[2274]: 2023-06-29 13:40:25,338 [lib.cuckoo.core.guest] INFO: Task #9: Starting analysis on guest (id=Windows10Vanilla2, ip=10.135.100.19)\r\nJun 29 13:40:33 user-virtual-machine python3[2274]: 2023-06-29 13:40:33,423 [lib.cuckoo.core.scheduler] INFO: Disabled route 'internet'\r\nJun 29 13:40:33 user-virtual-machine python3[2274]: 2023-06-29 13:40:33,447 [lib.cuckoo.core.scheduler] ERROR: Task #9: Failure in AnalysisManager.run: (\"Connection broken: ConnectionResetError(104, 'Connection reset by peer')\", ConnectionResetError(104, 'Connection reset by peer'))\r\nJun 29 13:40:33 user-virtual-machine python3[2274]: Traceback (most recent call last):\r\nJun 29 13:40:33 user-virtual-machine python3[2274]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/urllib3/response.py\", line 710, in _error_catcher\r\nJun 29 13:40:33 user-virtual-machine python3[2274]:     yield\r\nJun 29 13:40:33 user-virtual-machine python3[2274]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/urllib3/response.py\", line 814, in _raw_read\r\nJun 29 13:40:33 user-virtual-machine python3[2274]:     data = self._fp_read(amt) if not fp_closed else b\"\"\r\nJun 29 13:40:33 user-virtual-machine python3[2274]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/urllib3/response.py\", line 799, in _fp_read\r\nJun 29 13:40:33 user-virtual-machine python3[2274]:     return self._fp.read(amt) if amt is not None else self._fp.read()\r\nJun 29 13:40:33 user-virtual-machine python3[2274]:   File \"/usr/lib/python3.10/http/client.py\", line 465, in read\r\nJun 29 13:40:33 user-virtual-machine python3[2274]:     s = self.fp.read(amt)\r\nJun 29 13:40:33 user-virtual-machine python3[2274]:   File \"/usr/lib/python3.10/socket.py\", line 705, in readinto\r\nJun 29 13:40:33 user-virtual-machine python3[2274]:     return self._sock.recv_into(b)\r\nJun 29 13:40:33 user-virtual-machine python3[2274]: ConnectionResetError: [Errno 104] Connection reset by peer\r\nJun 29 13:40:33 user-virtual-machine python3[2274]: The above exception was the direct cause of the following exception:\r\nJun 29 13:40:33 user-virtual-machine python3[2274]: Traceback (most recent call last):\r\nJun 29 13:40:33 user-virtual-machine python3[2274]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/requests/models.py\", line 816, in generate\r\nJun 29 13:40:33 user-virtual-machine python3[2274]:     yield from self.raw.stream(chunk_size, decode_content=True)\r\nJun 29 13:40:33 user-virtual-machine python3[2274]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/urllib3/response.py\", line 940, in stream\r\nJun 29 13:40:33 user-virtual-machine python3[2274]:     data = self.read(amt=amt, decode_content=decode_content)\r\nJun 29 13:40:33 user-virtual-machine python3[2274]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/urllib3/response.py\", line 879, in read\r\nJun 29 13:40:33 user-virtual-machine python3[2274]:     data = self._raw_read(amt)\r\nJun 29 13:40:33 user-virtual-machine python3[2274]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/urllib3/response.py\", line 813, in _raw_read\r\nJun 29 13:40:33 user-virtual-machine python3[2274]:     with self._error_catcher():\r\nJun 29 13:40:33 user-virtual-machine python3[2274]:   File \"/usr/lib/python3.10/contextlib.py\", line 153, in __exit__\r\nJun 29 13:40:33 user-virtual-machine python3[2274]:     self.gen.throw(typ, value, traceback)\r\nJun 29 13:40:33 user-virtual-machine python3[2274]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/urllib3/response.py\", line 727, in _error_catcher\r\nJun 29 13:40:33 user-virtual-machine python3[2274]:     raise ProtocolError(f\"Connection broken: {e!r}\", e) from e\r\nJun 29 13:40:33 user-virtual-machine python3[2274]: urllib3.exceptions.ProtocolError: (\"Connection broken: ConnectionResetError(104, 'Connection reset by peer')\", ConnectionResetError(104, 'Connection reset by peer'))\r\nJun 29 13:40:33 user-virtual-machine python3[2274]: During handling of the above exception, another exception occurred:\r\nJun 29 13:40:33 user-virtual-machine python3[2274]: Traceback (most recent call last):\r\nJun 29 13:40:33 user-virtual-machine python3[2274]:   File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 452, in run\r\nJun 29 13:40:33 user-virtual-machine python3[2274]:     success = self.launch_analysis()\r\nJun 29 13:40:33 user-virtual-machine python3[2274]:   File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 355, in launch_analysis\r\nJun 29 13:40:33 user-virtual-machine python3[2274]:     guest.start_analysis(options)\r\nJun 29 13:40:33 user-virtual-machine python3[2274]:   File \"/opt/CAPEv2/lib/cuckoo/core/guest.py\", line 252, in start_analysis\r\nJun 29 13:40:33 user-virtual-machine python3[2274]:     r = self.get(\"/\", do_raise=False)\r\nJun 29 13:40:33 user-virtual-machine python3[2274]:   File \"/opt/CAPEv2/lib/cuckoo/core/guest.py\", line 107, in get\r\nJun 29 13:40:33 user-virtual-machine python3[2274]:     r = session.get(url, *args, **kwargs)\r\nJun 29 13:40:33 user-virtual-machine python3[2274]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/requests/sessions.py\", line 602, in get\r\nJun 29 13:40:33 user-virtual-machine python3[2274]:     return self.request(\"GET\", url, **kwargs)\r\nJun 29 13:40:33 user-virtual-machine python3[2274]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/requests/sessions.py\", line 589, in request\r\nJun 29 13:40:33 user-virtual-machine python3[2274]:     resp = self.send(prep, **send_kwargs)\r\nJun 29 13:40:33 user-virtual-machine python3[2274]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/requests/sessions.py\", line 747, in send\r\nJun 29 13:40:33 user-virtual-machine python3[2274]:     r.content\r\nJun 29 13:40:33 user-virtual-machine python3[2274]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/requests/models.py\", line 899, in content\r\nJun 29 13:40:33 user-virtual-machine python3[2274]:     self._content = b\"\".join(self.iter_content(CONTENT_CHUNK_SIZE)) or b\"\"\r\nJun 29 13:40:33 user-virtual-machine python3[2274]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/requests/models.py\", line 818, in generate\r\nJun 29 13:40:33 user-virtual-machine python3[2274]:     raise ChunkedEncodingError(e)\r\nJun 29 13:40:33 user-virtual-machine python3[2274]: requests.exceptions.ChunkedEncodingError: (\"Connection broken: ConnectionResetError(104, 'Connection reset by peer')\", ConnectionResetError(104, 'Connection reset by peer'))\r\n\r\n\r\nAny ideas on this error? It happens maybe 10% of the time, for awhile I thought it was to do with my nginx redirector but I don't believe that now. \r\n\r\nActual error message: AnalysisManager.run: (\"Connection broken: ConnectionResetError(104, 'Connection reset by peer')\", ConnectionResetError(104, 'Connection reset by peer'))\r\n\r\nI should also mention that I can simply resubmit the analysis and it will usually work right away the second time. There is no real correlation between virtual machine resets or CAPE restarts and this error. \nComment: no idea what is wrong\nComment: Closing issue as it was fixed by tinkering with / removing OneNote from the windows 10 vms. \nComment: Interesting, thank you for update\r\n\r\nEl lun, 17 jul 2023, 23:31, CarsonHrusovsky ***@***.***>\r\nescribi\u00f3:\r\n\r\n> Closing issue at it was fixed by tinkering with / removing OneNote from\r\n> the windows 10 vms.\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1638#issuecomment-1638914382>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH35TUAFDA64D5KT43ZTXQWVK5ANCNFSM6AAAAAAZY72FKQ>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n",
+  "Title: Updating MITRE TTPs\nBody: # Main Issue: Outdated TTPs\r\nThe hardcoded TTPs within the signatures, specifically in versions V6 and V7, have become outdated. The manual modification of each individual TTP poses a cumbersome task. Therefore, I have implemented a solution where I parse all the TTPs within these signatures, update them accordingly, and consolidate them into a configuration file named `TTPs.conf`. \r\n\r\nDuring the signature triggering process, I intercept the collection of all TTPs and update them using the config file. Then, I dump the updated results into the JSON report, ensuring accuracy and relevance.\r\n\r\n![2023-07-01 17_19_50-111](https://github.com/kevoreilly/CAPEv2/assets/62453654/3a62fbe5-97b3-4544-b24f-3b6b6917fa1b)\r\n\r\n## UPDATE-1: Duplicated Signatures\r\nMultiple TTPs could be associated with a single signature, resulting in duplication when generating reports. To address this issue effectively, I devised a solution by grouping each signature together with its corresponding list of TTPs, thereby eliminating any redundant information and enhancing the clarity and conciseness of the reports.\r\n\r\n![2023-07-01 20_03_06-1111](https://github.com/kevoreilly/CAPEv2/assets/62453654/04253ff7-3c50-48ea-bb67-834e8a31d990)\r\n\r\n## UPDATE-2: Inclusion of Sub-Technique IDs\r\nI have included a test file that serves the purpose of mapping old TTPs to their corresponding new ones, while also incorporating sub-techniques into the mapping process.\r\n\r\n![11](https://github.com/kevoreilly/CAPEv2/assets/62453654/d26fb9ab-fc29-446f-bf4c-4706953015fd)\r\n\nComment: hello thank you ,but i see a lot of missing things here, so please review your PR again\nComment: @doomedraven \r\nI'm sorry, I modified the PR and waiting for your review.\r\nThanks\nComment: np, thanks for update, i will check that later today/this week, just went back from PTO\nComment: let me know once you done to check this \nComment: @doomedraven \r\nI'm done. You can review it.\nComment: so by parts. \r\nsome parts are moved to community as we won't maintain them. you just need to run `poetry run python utils/community.py -wa` to fetch them\r\n\r\ntests/test_update_MITRE.py is now ->\r\nhttps://github.com/CAPESandbox/community/blob/master/utils/TTPmap_updater.py as it doesn't have nothing to see with tests\r\n\r\nthe ttp config is here and is in json format, as i don't see reason to complicate it with config parsing when it can be that simple\r\nhttps://github.com/CAPESandbox/community/commit/8cdfb42d54a84974d965890dc9a7d8984677b11a\r\n\r\nfetch updates from community and your PR and check it, i did check of updater, still have to do last check on TTP map in core, but once that tested and it looks good for you im fine to merge that\nComment: ok so now there is another problem, as we had ttp and not ttps, mitre.py is broken fixing it\nComment: ok that fixed, what im not sure, why do you ignore the X.Y ttps?\nComment: ok this is well tested by me, if you are fine with my changes i will merge. or if you have any suggestions let me know\nComment: @doomedraven \r\nI think we are good to merge. Thanks a lot for your tips.",
+  "Title: capemon causes Chrome and Chromium to freeze or crash\nBody: Similar to issue #1608 with Firefox, Chrome and Chromium will freeze or crash if they are started while `capemon` is running, including when passing the `--disable-features=RendererCodeIntegrity` argument to `chrome.exe` to bypass the \"Aw snap! `STATUS_INVALID_IMAGE_HASH` error.\r\n\r\nTested with:\r\n\r\nWindows 10 Pro 21H2 with 2023-06 patches (Build 10.0.19044.2086)\r\nGoogle Chrome 114.0.5735.110\r\nChromium 104.0.5109.0\r\n\r\nThis is problematic, because this means that Microsoft Edge version 92.0.902.67 is the only browser other than Internet Explorer that will work with CAPE. More modern versions of Microsoft Edge will crash the system if its update services are disabled (see #1635), but that is not caused by `capemon`.\nComment: I believe we too are running into this issue with Edge version 112.0.1722.58.  As a workaround, trying to use the older (pre-chromium) version of Edge has also been problematic.  It does not seem to want to start a browser window via the command line.  If anyone has got this to work, please share the command used in `edge.py` :pray: .\r\n\r\nIndeed IE is the only browser I've been able to get working for analyzing HTML files and URLs.\nComment: This should be fixed now via the sands of time. Let me know if not!",
+  "Title: Modern versions of Microsoft Edge will crash the system if its update services are disabled\nBody: This isn't a CAPE issue, but I'm documenting and closing the issue here for anyone who has the same problem.\r\n\r\nThe Group Policy options for automatic updates in Microsoft Edge only apply to domain-joined systems, not when local Group Policy settings are used.\r\n\r\nSo, the only way to stop Microsoft Edge from updating to a system that is not joined to a domain is to disable the following services:\r\n\r\n- Microsoft Edge Elevation Service (MicrosoftEdgeElevationService)\r\n- Microsoft Edge Update Service (edgeupdate)\r\n- Microsoft Edge Update Service (edgeupdatem)\r\n\r\nHowever, on modern versions of Microsoft Edge, the entire system will crash when Microsoft Edge attempts to update itself when these services are disabled, including when reloading to the latest version of the Developer Tools, even if `capemon` is not running.\r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/44679/a8a9c010-4292-4eec-a2a9-2579a7fcea6f)\r\n\r\nIt is not which version of Microsoft Edge starts the issue.\r\n\r\nA workaround is to use the version of Microsoft Edge that is included in Windows 10 21H2 (i.e., Microsoft Edge 92.0.902.67) and disable the aforementioned services to prevent Microsoft Edge from updating itself.",
+  "Title: Update kvm-qemu.sh to address #1618\nBody: Exclude `paravirt.c` from patching to work around the issue described in #1618. I'm not sure if there is a better fix, but this will at least prevent VMs from crashing due to insufficient memory.\nComment: thanks, the proper fix is to use the same MAGIC, but this works, thanks",
+  "Title: Updating CAPE's debugger documentation\nBody: None\nComment: Sorry it took so long but quite a few things had changed so needed further updates.\r\n\r\nThank you for your contribution.",
+  "Title: fix check_user_permisions\nBody: Use `cape` as the default value for the nonexistent `cuckoo.cuckoo.username` setting. Fixes `submit.py`.",
+  "Title: Sflock 2 causes cape-web to crash\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [Y ] I am running the latest version\r\n- [Y] I did read the README!\r\n- [Y] I checked the documentation and found no answer\r\n- [Y] I checked to make sure that this issue has not already been filed\r\n- [Y] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [Y] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nAllow Sflock2 to recognise that it is a jpeg file?\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\nCape web just crashes when submitting a JFIF or JPEG file\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Just any random JPEG or JFIF file\r\n2. Submit with Detect Automatically from Analysis Package\r\n3. The whole cape-web crashes\r\n\r\nTested on capesandbox.com can be used as DOS\r\n\nComment: thanks, just got report in PM about that, working on it\nComment: that looks like is due to unicorn problem with that fileformat, i have added handle and reject it, but some other fileformats can generate the same, in case if you don't care about shellcode detections just change in database.py check_shellcode to False and it won't run unicorn for any file\r\n`tmp_package = sflock_identify(f, check_shellcode=False)` \r\n\r\nto fix that just upgrade `sflock2` to latest version 0.3.51 and restart webgui",
+  "Title: Staging\nBody: None",
+  "Title: Missing process in process tree.\nBody: - [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n\r\n# Expected Behavior\r\nAfter analysis the sample. The process tree should be full like this (This is the result if i ran the malware on capesandbox.com).\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/36282595/c4578517-2c2a-427f-8c47-9ad6383cfaad)\r\n\r\n# Current Behavior\r\nI dont get full process tree. I use gui-vbox, and checked Task Manager. The process EQNEDT32.EXE is create but cape not log and show in Behavioral Analysis.\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/36282595/95f25328-2e06-4dfd-b8b6-de12b4eaf24f)\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | commit dce8f4d60aa45cc06a4b527016b1bd238668f28f\r\n| OS version       | Ubuntu 22.04\r\n| Sample - MD5 | 7e6c5e608ef0f8d770870b342c6c6121\r\n\r\nWhy is this happend and how can i fix this. Thanks a lot !!\r\nRegards,\nComment: hello, you need to post analysis.log to at least try to understand whats going on on your side, the log is in analysis folder. without that the rest is useless\nComment: > hello, you need to post analysis.log to at least try to understand whats going on on your side, the log is in analysis folder. without that the rest is useless\r\n\r\nplease give me 30 min, I will change my office from 2007 -> 2010, then run the sample again. If it still happend i will post the analysis.log, thanks\nComment: [analysis.log](https://github.com/kevoreilly/CAPEv2/files/11864393/analysis.log)\r\nhere is the log\nComment: i don't see nothing, there is tons of possible reason for bad execution. first of them is that doc does checks for some antivm and as you using Vbox it detects it. It also can be that you have something wrongly configured/installed, for example you have problems with screenshots, it not related to detonation, but is really hard to say what is wrong there. If you have proper skills my suggestion is to get macros out of file and try to analyze them by hand to understand what it does. We proactively suggest using only KVM due to easy antivm bypasses. So i guess you are on your own here\nComment: Thanks for quick quick answer, maybe i should reinstall, this sample doesnt have anti. so i think something wrong in install-stage\nComment: small advice, maybe is not related but in case if you can see vm during the execution is there any error window? if you can't see vm, fix screenshots and try again. maybe you will get any tip.\nComment: > \r\n\r\ni tried to run the agent in service for system-priv. Maybe thats why the agent cant take any screenshort\nComment: it should be system privs. i think the problems is different but sadly output doesn't say too much about the problem\nComment: > it should be system privs. i think the problems is different but sadly output doesn't say too much about the problem\r\n\r\ni just fix the screenshot module, can you take a look at my analysis.log ? i try to compare this file from my local cape and online cape. The online log EQNEDT32.EXE but the local dont. Here is the log.\r\nI noticed in my local cape, there only 2 procdump. But online cape has 7 procdump. Do you think permission is the key? i create task scheduler for my agent and tick Run as highest priv.\r\n[analysis.log](https://github.com/kevoreilly/CAPEv2/files/11865856/analysis.log)\r\n\nComment: i would suggest you to watch the screenshots for details\r\n```\r\n2023-06-26 00:52:18,305 [modules.auxiliary.human] INFO: Found button \"OK\", clicking it\r\n2023-06-26 00:52:19,327 [modules.auxiliary.human] INFO: Found button \"OK\", clicking it\r\n```\nComment: > i would suggest you to watch the screenshots for details\r\n> \r\n> ```\r\n> 2023-06-26 00:52:18,305 [modules.auxiliary.human] INFO: Found button \"OK\", clicking it\r\n> 2023-06-26 00:52:19,327 [modules.auxiliary.human] INFO: Found button \"OK\", clicking it\r\n> ```\r\n\r\nah the vm open setting app and click something. i just disable human and run but still, no luck\nComment: is why i told you to watch the screenshots",
+  "Title: Custom extra file info modules\nBody: None",
+  "Title: Adding option to permissions to accept passed in args\nBody: None",
+  "Title: Malware but malscore is 0.0 and no signatures found\nBody: # Prerequisites\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\nAfter processing, the report will have info about signatures, and malscore will be greater than 0.\r\n\r\n# Current Behavior\r\n\r\nNo signatures found, malscore = 0.0 (it only greate than 0.0 when cape detect it is one of malware families (remcos, redline,...)). \r\nBut on orther capev2 sandbox, the sample will have 9.2 score and many signatures.\r\n\r\n## Context\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | commit 4dccd3b89a7d52b0dab2244306d438373afbb738\r\n| OS version       | Ubuntu 20.04\r\n| sample - md5 | 84357e51f150e2c152b439fc689599e2\r\n| conf files         | [link](https://mega.nz/file/EPsFQQSL#Lf48vLQ_-SHj10O__mYdn5Vb1D8c3GDzTvnzNGP40CY)\r\n\r\n## Screenshort\r\nThis is remcos malware, malscore = 2.0 because cape detected it.\r\n<img width=\"931\" alt=\"image\" src=\"https://github.com/kevoreilly/CAPEv2/assets/36282595/f06d6f71-c18f-4107-ae1b-73664205be03\">\r\n\r\nThis is redline malware in zip file, malscore = 0.0.\r\n<img width=\"624\" alt=\"image\" src=\"https://github.com/kevoreilly/CAPEv2/assets/36282595/04d088fd-43f8-4341-a053-49afd1291186\">\r\n\nComment: malscore is useless. but it looks like you didn't pull community repo. use docs and utils/community.py\nComment: Thanks for answer, i will try it.\nComment: `poetry run python utils/community.py -waf` then as root `systemctl restart cape-processor`\nComment: > malscore is useless. but it looks like you didn't pull community repo. use docs and utils/community.py\r\n\r\nIs there any reason malscore is returning very high scores on word and excel documents that are blank?\nComment: See the community repo, if communitybdoesnt wrote sigs to cover something\r\nis not covered, means 0,is why i told is useless\r\n\r\nEl jue, 29 jun 2023, 17:22, CarsonHrusovsky ***@***.***>\r\nescribi\u00f3:\r\n\r\n> malscore is useless. but it looks like you didn't pull community repo. use\r\n> docs and utils/community.py\r\n>\r\n> Is there any reason malscore is returning very high scores on word and\r\n> excel documents that are blank?\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1626#issuecomment-1613378872>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3YARLEVTWJTJKVD2RLXNWMSFANCNFSM6AAAAAAZP7ZCJQ>\r\n> .\r\n> You are receiving this because you modified the open/close state.Message\r\n> ID: ***@***.***>\r\n>\r\n\nComment: Because it's useless as doomed said. ",
+  "Title: yara fix\nBody: None",
+  "Title: -\nBody: pp(diff)\n\nimport code;code.interact(local=dict(locals(), **globals()))\n\nprint(to_remove)\n\nexecute_command_on_all(f\"rm {' '.join(list(to_remove))}\", servers, ssh_proxy)\n\nToDo finish visualization\n\nNeed to add option to redeploy new/modified files\n\ncompare here now\n\nserver_files = glob(\"*_cape_hashed.json\")\n\nif Path(\"upstream.json\").exists():\n\nserver_files.append(\"upstream.json\")\n\ncompare_hashed_files(server_files)\n\nhttps://github.com/kevoreilly/CAPEv2/blob/0e9f971d4e3977a73857f60f1303d19fb9e3c420/lib/cuckoo/common/admin_utils.py#L140\n\n```python\n\nimport re\nimport os\nimport sys\nimport json\nimport urllib3\nimport logging\nfrom socket import if_nameindex\nfrom hashlib import sha256\nfrom queue import Queue\nfrom threading import Thread\nfrom pathlib import Path\n\nfrom contextlib import suppress\n\n# from glob import glob\nimport shutil\n\ntry:\n    from deepdiff import DeepDiff  #  extract as diffextract\n\n    HAVE_DEEPDIFF = True\nexcept ImportError:\n    HAVE_DEEPDIFF = False\n    print(\"poetry run pip install mmh3 deepdiff\")\n\ntry:\n    from paramiko import SSHClient, AutoAddPolicy\n    from scp import SCPClient, SCPException\n    from paramiko.ssh_exception import BadHostKeyException, PasswordRequiredException, AuthenticationException\n\n    HAVE_PARAMIKO = True\nexcept ImportError:\n    print(\"poetry run pip install -U paramiko scp\")\n    HAVE_PARAMIKO = False\n\nfrom lib.cuckoo.common.colors import red, green\n\ntry:\n    from admin_conf import (\n        REMOTE_SERVER_USER,\n        CAPE_PATH,\n        VOL_PATH,\n        MASTER_NODE,\n        CAPE_DIST_URL,\n        JUMP_BOX_USERNAME,\n        EXCLUDE_DIRS,\n        EXCLUDE_FILENAMES,\n        EXCLUDE_EXTENSIONS,\n        # EXCLUDE_PREFIX,\n        EXCLUDE_CAPE_FILES,\n        NUM_THREADS,\n        # POSTPROCESS,\n        UPSTREAM_REPO_PATH,\n        PRIVATE_REPO_PATH,\n    )\nexcept ModuleNotFoundError:\n    sys.exit(\"[-] You need to create admin_conf.py, see admin_conf.py_example\")\n\nfrom lib.cuckoo.common.sshclient import SSHJumpClient\n\nurllib3.disable_warnings()\n\n# this is bad, but getLogger doesn't work, this can be cause of duplication of log entries if used outside\nlogging.basicConfig(level=logging.INFO)\nlog = logging.getLogger()\n\nssh = SSHClient()\nssh.load_system_host_keys()\nssh.set_missing_host_key_policy(AutoAddPolicy())\n\nurllib3.disable_warnings()\n\n\ndef load_workers_list():\n    servers = []\n    # Need to add some check as it do this if we don't provide args\n    try:\n        http = urllib3.PoolManager()\n        r = http.request(\"GET\", CAPE_DIST_URL)\n        if r.status == 200:\n            res = json.loads(r.data.decode(\"utf-8\")).get(\"nodes\", [])\n            servers = [res[server][\"url\"].split(\"://\")[1].split(\":\")[0] for server in res] + [MASTER_NODE]\n    except (urllib3.exceptions.NewConnectionError, urllib3.exceptions.MaxRetryError):\n        sys.exit(\"Can't retrieve list of servers\")\n\n    return servers\n\n\ndef compare_hashed_files(files: list, servers: list, ssh_proxy: SSHClient, private_repo: bool = False):\n    # TODO find a way to do left join/set\n\n    left, right = files\n    diff = {}\n    added_or_modified = []\n\n    if not os.path.exists(left) or not os.path.exists(right):\n        log.error(\"Ensure that files to compare does exist\")\n        return\n\n    # server = p.name.replace(\"_cape_hashed.json\", \"\").replace(\".json\", \"\")\n    right = json.loads(Path(right).read_bytes())\n\n    # server = p.name.replace(\"_cape_hashed.json\", \"\").replace(\".json\", \"\")\n    left = json.loads(Path(left).read_bytes())\n\n    # generate list of missed\n    # generate list of where hash doesn't match, support file exclusion as file_extra_info with custom modules\n    folders = set()\n    to_remove = set()\n    dd = DeepDiff(left, right)\n    for k in (\"dictionary_item_added\", \"dictionary_item_removed\", \"values_changed\"):\n        for value in dd.get(k, []):\n            path = value.split(\"'\")[-2]\n            # print(value)\n            # path = diffextract(dd, value)\n            if path.endswith(EXCLUDE_CAPE_FILES):\n                continue\n            diff.setdefault(k, []).append(path)\n\n            # folders to create on server side\n            if k in (\"dictionary_item_added\", \"values_changed\"):\n                folders.add(Path(path).parent.__str__())\n                added_or_modified.append(path)\n            else:\n                to_remove.add(path)\n\n    from pprint import pprint as pp\n\n    if private_repo:\n        pp(added_or_modified)\n        copy_files = input(\"Do you want to copy files to your local fork? y/n \").lower()\n        if copy_files == \"y\":\n            # we copy files from upstream CAPE to our private fork\n            for path in added_or_modified:\n                origin_path = os.path.join(UPSTREAM_REPO_PATH, path)\n                # import code;code.interact(local=dict(locals(), **globals()))\n                if not os.path.exists(origin_path):\n                    print(f\"[-] File doesn't exist: {origin_path}\")\n                    continue\n                # TODO import files from ignore list /Users/Do_Not_Scan/github/1cuckoo/CAPEv2/utils/community_blocklist.py\n                print(origin_path, os.path.join(PRIVATE_REPO_PATH, path))\n                with suppress(shutil.SameFileError):\n                    shutil.copy(origin_path, os.path.join(PRIVATE_REPO_PATH, path))\n\n    # Create folders? get paths, make uniq, run command on all before deploy to server\n    # pp(diff)\n    # import code;code.interact(local=dict(locals(), **globals()))\n    # print(to_remove)\n    # execute_command_on_all(f\"rm {' '.join(list(to_remove))}\", servers, ssh_proxy)\n    # ToDo finish visualization\n    # Need to add option to redeploy new/modified files\n\n\ndef enumerate_files_on_all_servers(servers: list, ssh_proxy: SSHClient, dir_folder: str, filename: str):\n    cmd = f\"python3 {CAPE_PATH}/admin/admin.py --generate-files-listening {dir_folder} -f /tmp/{filename}\"\n    execute_command_on_all(cmd, servers, ssh_proxy)\n    get_file(f\"/tmp/{filename}.json\", servers, ssh_proxy)\n\n    # ToDo add support for workers to enumerate over NFS for faster results\n    # compare here now\n    # server_files = glob(\"*_cape_hashed.json\")\n    # if Path(\"upstream.json\").exists():\n    #    server_files.append(\"upstream.json\")\n    # compare_hashed_files(server_files)\n\n\ndef gen_hashfile(folder, json_filename):\n    all_files = dict()\n\n    if not os.path.exists(folder):\n        log.error(\"Folder: %s doesn't exist\", folder)\n        return\n\n    for root, dirs, files in os.walk(folder, topdown=True):\n        dirs[:] = set(dirs) - EXCLUDE_DIRS\n        for filename in files:\n            if filename in EXCLUDE_FILENAMES or filename.endswith(EXCLUDE_EXTENSIONS):  # or filename.startswith(EXCLUDE_PREFIX):\n                continue\n            file_path = os.path.join(root, filename)\n            p = Path(file_path)\n            if p.is_symlink:\n                file_path = p.resolve().__str__()\n            if not p.exists():\n                continue\n            file_hash = sha256(p.read_bytes()).hexdigest()\n            all_files.setdefault(file_path.replace(CAPE_PATH, \"\").split(\"CAPEv2/\")[-1], file_hash)\n\n    log.info(\"Writing dump file to: %s.json\", json_filename)\n    with open(f\"{json_filename}.json\", \"w\") as f:\n        f.write(json.dumps(all_files, indent=4))\n\n\ndef file_recon(file, yara_category=\"CAPE\"):\n    if not Path(file).exists():\n        return\n\n    global POSTPROCESS\n    LOCAL_SHA256 = False\n    filename = os.path.basename(file)\n    OWNER = \"cape:cape\"\n    # Requires read as Bytes due to different hashes if encodes\n    with open(file, \"rb\") as ff:\n        f = ff.read()\n\n    LOCAL_SHA256 = sha256(f).hexdigest()\n    # print(file, \"file\", os.path.exists(file))\n    if b\"SignatureMock.run\" in f:\n        return\n    if b\"(Signature)\" in f:\n        TARGET = f\"{CAPE_PATH}modules/signatures/{filename}\"\n    elif filename in (\"loader.exe\", \"loader_x64.exe\"):\n        TARGET = f\"{CAPE_PATH}/analyzer/windows/bin/{filename}\"\n        POSTPROCESS = False\n    elif b\"def _generator(self\" in f:\n        TARGET = f\"{VOL_PATH}{filename}\"\n        OWNER = \"root:staff\"\n    elif re.findall(rb\"class .*\\(Report\\):\", f):\n        TARGET = f\"{CAPE_PATH}/modules/reporting/{filename}\"\n    elif re.findall(rb\"class .*\\(Processing\\):\", f):\n        TARGET = f\"{CAPE_PATH}/modules/processing/{filename}\"\n    elif filename.endswith(\".yar\") and b\"rule \" in f and b\"condition:\" in f:\n        # capemon yara\n        if \"/analyzer/\" in file:\n            TARGET = f\"{CAPE_PATH}analyzer/windows/data/yara/{filename}\"\n        else:\n            # server side rule\n            TARGET = f\"{CAPE_PATH}data/yara/{yara_category}/{filename}\"\n    elif re.findall(rb\"class .*\\(Package\\):\", f):\n        folder = \"windows\"\n        if \"/linux/\" in file:\n            folder = \"linux\"\n        TARGET = f\"{CAPE_PATH}/analyzer/{folder}/modules/packages/{filename}\"\n    elif b\"def choose_package(file_type, file_name, exports, target)\" in f:\n        TARGET = f\"{CAPE_PATH}/analyzer/windows/lib/core/{filename}\"\n    elif b\"class Signature(object):\" in f and b\"class Processing(object):\" in f:\n        TARGET = f\"{CAPE_PATH}/lib/cuckoo/common/{filename}\"\n    elif b\"class Analyzer:\" in f and b\"class PipeHandler(Thread):\" in f and b\"class PipeServer(Thread):\" in f:\n        TARGET = f\"{CAPE_PATH}analyzer/windows/{filename}\"\n        POSTPROCESS = False\n    elif filename in (\"capemon.dll\", \"capemon_x64.dll\"):\n        TARGET = f\"{CAPE_PATH}analyzer/windows/dll/{filename}\"\n        POSTPROCESS = False\n    # generic deployer of files\n    elif file.startswith(\"CAPEv2/\"):\n        # Remove CAPEv2/ from path to build new path\n        TARGET = f\"{CAPE_PATH}\" + file[7:]\n    elif filename.endswith(\".service\"):\n        TARGET = \"/lib/systemd/system/{filename}\"\n        OWNER = \"root:root\"\n        POSTPROCESS = \"systemctl daemon-reload\"\n    elif file.endswith(\"admin.py\") and \"/web/\" not in file:\n        print(\"Ignoring admin.py\")\n        return False\n    elif file.startswith(\"CAPEv2/\"):\n        TARGET = file\n    else:\n        print(f\"I'm sorry, I don't know how to deploy this kind of file.: {filename}, {file}\")\n        return False\n\n    # build command to be executed remotely\n    REMOTE_COMMAND = f\"chown {OWNER} {TARGET}; chmod 644 {TARGET};\"\n    if filename.endswith(\".py\") and TARGET:\n        REMOTE_COMMAND += \"rm -f {0}.pyc; ls -la {0}.*\".format(TARGET.replace(\".py\", \"\"))\n    return TARGET, REMOTE_COMMAND, LOCAL_SHA256\n\n\n# For session reuse\nsockets = {}\n\n\ndef _connect_via_jump_box(server: str, ssh_proxy: SSHClient):\n    try:\n        \"\"\"\n        This is SSH pivoting it ssh to host Y via host X, can be used due to different networks\n        We doing direct-tcpip channel and pasing it as socket to be used\n        \"\"\"\n        if ssh_proxy and JUMP_BOX_USERNAME:\n            if server not in sockets:\n                ssh = SSHJumpClient(jump_session=ssh_proxy if ssh_proxy else None)\n                ssh.set_missing_host_key_policy(AutoAddPolicy())\n                ssh.connect(\n                    server,\n                    username=REMOTE_SERVER_USER,\n                    look_for_keys=True,\n                    allow_agent=True,\n                    disabled_algorithms=dict(pubkeys=[\"rsa-sha2-512\", \"rsa-sha2-256\"]),\n                )\n                sockets[server] = ssh\n            else:\n                # ToDo check if alive and reconnect\n                ssh = sockets[server]\n\n        else:\n            ssh = SSHJumpClient()\n            ssh.load_system_host_keys()\n            ssh.set_missing_host_key_policy(AutoAddPolicy())\n\n            ssh.connect(server, username=REMOTE_SERVER_USER, look_for_keys=False, allow_agent=True)\n    except (BadHostKeyException, AuthenticationException, PasswordRequiredException) as e:\n        sys.exit(\n            f\"Connect error: {str(e)}. Also pay attention to this log for more details /var/log/auth.log and paramiko might need update\"\n        )\n    return ssh\n\n\ndef execute_command_on_all(remote_command, servers: list, ssh_proxy: SSHClient):\n    for server in servers:\n        try:\n            ssh = _connect_via_jump_box(server, ssh_proxy)\n            _, ssh_stdout, _ = ssh.exec_command(remote_command)\n            ssh_out = ssh_stdout.read().decode(\"utf-8\").strip()\n            if \"Active: active (running)\" in ssh_out and \"systemctl status\" not in remote_command:\n                log.info(\"[+] Service \" + green(\"restarted successfully and is UP\"))\n            else:\n                if ssh_out:\n                    log.info(green(f\"[+] {server} - {ssh_out}\"))\n                else:\n                    log.info(green(f\"[+] {server}\"))\n            ssh.close()\n        except TimeoutError as e:\n            sys.exit(\"Did you forget to use jump box? %s\", str(e))\n        except Exception as e:\n            log.error(e, exc_info=True)\n\n\ndef bulk_deploy(files, yara_category, dry_run=False, servers: list = [], ssh_proxy: SSHClient = False):\n    # You are not permitted to remove elements from the list while iterating over it using a for loop.\n    for file in files[:]:\n        original_name = file\n        if not file.startswith((\"CAPE\", \"Custom\", \"Extractors\")):\n            files.remove(original_name)\n            continue\n\n        if file.endswith((\"processor_tests.py\", \"reporter_tests.py\", \"admin.py\")):\n            files.remove(original_name)\n            continue\n\n        if \"/custom/\" in file and \"/conf/\" in file and file.endswith(\".conf\"):\n            files.remove(original_name)\n            continue\n\n        if not Path(original_name).exists():\n            print(f\"File doesn't exists: {original_name}. Skipping\")\n            files.remove(original_name)\n            continue\n\n    if dry_run:\n        print(files)\n        return\n\n    queue = Queue()\n    for file in files:\n        parameters = file_recon(file, yara_category)\n        if not parameters:\n            print(parameters, file)\n            continue\n        queue.put([servers, file] + list(parameters))\n\n    for _ in range(NUM_THREADS):\n        worker = Thread(target=deploy_file, args=(queue, ssh_proxy))\n        worker.daemon = True\n        worker.start()\n    queue.join()\n\n\ndef get_file(path, servers: list, ssh_proxy: SSHClient):\n    for server in servers:\n        try:\n            ssh = _connect_via_jump_box(server, ssh_proxy)\n            with SCPClient(ssh.get_transport()) as scp:\n                try:\n                    scp.get(path, f\"{server}_{os.path.basename(path)}\")\n                    print(f\"Copied {os.path.basename(path)} from {server}\")\n                except SCPException as e:\n                    print(e)\n        except Exception as e:\n            print(e)\n\n\ndef deploy_file(queue, ssh_proxy: SSHClient):\n    error_list = list()\n\n    while not queue.empty():\n        servers, local_file, remote_file, remote_command, local_sha256 = queue.get()\n\n        error = False\n        print(servers, local_file, remote_file, remote_command, local_sha256)\n        for server in servers:\n            try:\n                ssh = _connect_via_jump_box(server, ssh_proxy)\n                with SCPClient(ssh.get_transport()) as scp:\n                    try:\n                        scp.put(local_file, remote_file)\n                    except SCPException as e:\n                        print(e)\n\n                if remote_command:\n                    _, ssh_stdout, _ = ssh.exec_command(remote_command)\n\n                    ssh_out = ssh_stdout.read().decode(\"utf-8\")\n                    log.info(ssh_out)\n\n                _, ssh_stdout, _ = ssh.exec_command(f\"sha256sum {remote_file} | cut -d' ' -f1\")\n                remote_sha256 = ssh_stdout.read().strip().decode(\"utf-8\")\n                if local_sha256 == remote_sha256:\n                    log.info(\"[+] %s - Hashes are %s: %s - %s\", server, green(\"correct\"), local_sha256, remote_file)\n                else:\n                    log.info(\n                        \"[-] %s - Hashes are %s: \\n\\tLocal: %s\\n\\tRemote: %s - %s\",\n                        server,\n                        red(\"incorrect\"),\n                        local_sha256,\n                        remote_sha256,\n                        remote_file,\n                    )\n                    error = 1\n                    error_list.append(remote_file)\n                ssh.close()\n            except TimeoutError as e:\n                log.error(e)\n\n        if not error:\n            log.info(green(f\"Completed! {remote_file}\\n\"))\n        else:\n            log.info(red(f\"Completed with errors. {remote_file}\\n\"))\n        queue.task_done()\n\n    return error_list\n\n\ndef delete_file(queue, ssh_proxy: SSHClient):\n    error_list = list()\n\n    while not queue.empty():\n        servers, remote_file = queue.get()\n\n        error = False\n        for server in servers:\n            try:\n                ssh = _connect_via_jump_box(server, ssh_proxy)\n                _, ssh_stdout, _ = ssh.exec_command(f\"rm {remote_file}\")\n                ssh_out = ssh_stdout.read().decode(\"utf-8\")\n                if ssh_out:\n                    log.info(ssh_out)\n                ssh.close()\n            except TimeoutError as e:\n                log.error(e)\n                error = 1\n\n        if not error:\n            log.info(green(f\"Completed! {remote_file}\\n\"))\n        else:\n            log.info(red(f\"Completed with errors. {remote_file}\\n\"))\n        queue.task_done()\n\n    return error_list\n\n\ndef delete_file_recon(path: str) -> str:\n    base_path = CAPE_PATH\n    f_name = Path(path).name\n    if \"yara/CAPE\" in path and path.endswith((\".yar\", \".yara\")):\n        return f\"{base_path}/data/yara/CAPE/{f_name}\"\n    elif \"modules/signatures\" in path:\n        return f\"{base_path}/modules/signatures/{f_name}\"\n\n\ndef check_net_iface():\n    for _, device in if_nameindex():\n        if device.startswith(\"utun\"):\n            return True\n\n```",
+  "Title: find a way to do left join/set\nBody: generate list of where hash doesn't match, support file exclusion as file_extra_info with custom modules\n\npath = diffextract(dd, value)\n\nhttps://github.com/kevoreilly/CAPEv2/blob/0e9f971d4e3977a73857f60f1303d19fb9e3c420/lib/cuckoo/common/admin_utils.py#L90\n\n```python\n\nimport re\nimport os\nimport sys\nimport json\nimport urllib3\nimport logging\nfrom socket import if_nameindex\nfrom hashlib import sha256\nfrom queue import Queue\nfrom threading import Thread\nfrom pathlib import Path\n\nfrom contextlib import suppress\n\n# from glob import glob\nimport shutil\n\ntry:\n    from deepdiff import DeepDiff  #  extract as diffextract\n\n    HAVE_DEEPDIFF = True\nexcept ImportError:\n    HAVE_DEEPDIFF = False\n    print(\"poetry run pip install mmh3 deepdiff\")\n\ntry:\n    from paramiko import SSHClient, AutoAddPolicy\n    from scp import SCPClient, SCPException\n    from paramiko.ssh_exception import BadHostKeyException, PasswordRequiredException, AuthenticationException\n\n    HAVE_PARAMIKO = True\nexcept ImportError:\n    print(\"poetry run pip install -U paramiko scp\")\n    HAVE_PARAMIKO = False\n\nfrom lib.cuckoo.common.colors import red, green\n\ntry:\n    from admin_conf import (\n        REMOTE_SERVER_USER,\n        CAPE_PATH,\n        VOL_PATH,\n        MASTER_NODE,\n        CAPE_DIST_URL,\n        JUMP_BOX_USERNAME,\n        EXCLUDE_DIRS,\n        EXCLUDE_FILENAMES,\n        EXCLUDE_EXTENSIONS,\n        # EXCLUDE_PREFIX,\n        EXCLUDE_CAPE_FILES,\n        NUM_THREADS,\n        # POSTPROCESS,\n        UPSTREAM_REPO_PATH,\n        PRIVATE_REPO_PATH,\n    )\nexcept ModuleNotFoundError:\n    sys.exit(\"[-] You need to create admin_conf.py, see admin_conf.py_example\")\n\nfrom lib.cuckoo.common.sshclient import SSHJumpClient\n\nurllib3.disable_warnings()\n\n# this is bad, but getLogger doesn't work, this can be cause of duplication of log entries if used outside\nlogging.basicConfig(level=logging.INFO)\nlog = logging.getLogger()\n\nssh = SSHClient()\nssh.load_system_host_keys()\nssh.set_missing_host_key_policy(AutoAddPolicy())\n\nurllib3.disable_warnings()\n\n\ndef load_workers_list():\n    servers = []\n    # Need to add some check as it do this if we don't provide args\n    try:\n        http = urllib3.PoolManager()\n        r = http.request(\"GET\", CAPE_DIST_URL)\n        if r.status == 200:\n            res = json.loads(r.data.decode(\"utf-8\")).get(\"nodes\", [])\n            servers = [res[server][\"url\"].split(\"://\")[1].split(\":\")[0] for server in res] + [MASTER_NODE]\n    except (urllib3.exceptions.NewConnectionError, urllib3.exceptions.MaxRetryError):\n        sys.exit(\"Can't retrieve list of servers\")\n\n    return servers\n\n\ndef compare_hashed_files(files: list, servers: list, ssh_proxy: SSHClient, private_repo: bool = False):\n    # TODO find a way to do left join/set\n\n    left, right = files\n    diff = {}\n    added_or_modified = []\n\n    if not os.path.exists(left) or not os.path.exists(right):\n        log.error(\"Ensure that files to compare does exist\")\n        return\n\n    # server = p.name.replace(\"_cape_hashed.json\", \"\").replace(\".json\", \"\")\n    right = json.loads(Path(right).read_bytes())\n\n    # server = p.name.replace(\"_cape_hashed.json\", \"\").replace(\".json\", \"\")\n    left = json.loads(Path(left).read_bytes())\n\n    # generate list of missed\n    # generate list of where hash doesn't match, support file exclusion as file_extra_info with custom modules\n    folders = set()\n    to_remove = set()\n    dd = DeepDiff(left, right)\n    for k in (\"dictionary_item_added\", \"dictionary_item_removed\", \"values_changed\"):\n        for value in dd.get(k, []):\n            path = value.split(\"'\")[-2]\n            # print(value)\n            # path = diffextract(dd, value)\n            if path.endswith(EXCLUDE_CAPE_FILES):\n                continue\n            diff.setdefault(k, []).append(path)\n\n            # folders to create on server side\n            if k in (\"dictionary_item_added\", \"values_changed\"):\n                folders.add(Path(path).parent.__str__())\n                added_or_modified.append(path)\n            else:\n                to_remove.add(path)\n\n    from pprint import pprint as pp\n\n    if private_repo:\n        pp(added_or_modified)\n        copy_files = input(\"Do you want to copy files to your local fork? y/n \").lower()\n        if copy_files == \"y\":\n            # we copy files from upstream CAPE to our private fork\n            for path in added_or_modified:\n                origin_path = os.path.join(UPSTREAM_REPO_PATH, path)\n                # import code;code.interact(local=dict(locals(), **globals()))\n                if not os.path.exists(origin_path):\n                    print(f\"[-] File doesn't exist: {origin_path}\")\n                    continue\n                # TODO import files from ignore list /Users/Do_Not_Scan/github/1cuckoo/CAPEv2/utils/community_blocklist.py\n                print(origin_path, os.path.join(PRIVATE_REPO_PATH, path))\n                with suppress(shutil.SameFileError):\n                    shutil.copy(origin_path, os.path.join(PRIVATE_REPO_PATH, path))\n\n    # Create folders? get paths, make uniq, run command on all before deploy to server\n    # pp(diff)\n    # import code;code.interact(local=dict(locals(), **globals()))\n    # print(to_remove)\n    # execute_command_on_all(f\"rm {' '.join(list(to_remove))}\", servers, ssh_proxy)\n    # ToDo finish visualization\n    # Need to add option to redeploy new/modified files\n\n\ndef enumerate_files_on_all_servers(servers: list, ssh_proxy: SSHClient, dir_folder: str, filename: str):\n    cmd = f\"python3 {CAPE_PATH}/admin/admin.py --generate-files-listening {dir_folder} -f /tmp/{filename}\"\n    execute_command_on_all(cmd, servers, ssh_proxy)\n    get_file(f\"/tmp/{filename}.json\", servers, ssh_proxy)\n\n    # ToDo add support for workers to enumerate over NFS for faster results\n    # compare here now\n    # server_files = glob(\"*_cape_hashed.json\")\n    # if Path(\"upstream.json\").exists():\n    #    server_files.append(\"upstream.json\")\n    # compare_hashed_files(server_files)\n\n\ndef gen_hashfile(folder, json_filename):\n    all_files = dict()\n\n    if not os.path.exists(folder):\n        log.error(\"Folder: %s doesn't exist\", folder)\n        return\n\n    for root, dirs, files in os.walk(folder, topdown=True):\n        dirs[:] = set(dirs) - EXCLUDE_DIRS\n        for filename in files:\n            if filename in EXCLUDE_FILENAMES or filename.endswith(EXCLUDE_EXTENSIONS):  # or filename.startswith(EXCLUDE_PREFIX):\n                continue\n            file_path = os.path.join(root, filename)\n            p = Path(file_path)\n            if p.is_symlink:\n                file_path = p.resolve().__str__()\n            if not p.exists():\n                continue\n            file_hash = sha256(p.read_bytes()).hexdigest()\n            all_files.setdefault(file_path.replace(CAPE_PATH, \"\").split(\"CAPEv2/\")[-1], file_hash)\n\n    log.info(\"Writing dump file to: %s.json\", json_filename)\n    with open(f\"{json_filename}.json\", \"w\") as f:\n        f.write(json.dumps(all_files, indent=4))\n\n\ndef file_recon(file, yara_category=\"CAPE\"):\n    if not Path(file).exists():\n        return\n\n    global POSTPROCESS\n    LOCAL_SHA256 = False\n    filename = os.path.basename(file)\n    OWNER = \"cape:cape\"\n    # Requires read as Bytes due to different hashes if encodes\n    with open(file, \"rb\") as ff:\n        f = ff.read()\n\n    LOCAL_SHA256 = sha256(f).hexdigest()\n    # print(file, \"file\", os.path.exists(file))\n    if b\"SignatureMock.run\" in f:\n        return\n    if b\"(Signature)\" in f:\n        TARGET = f\"{CAPE_PATH}modules/signatures/{filename}\"\n    elif filename in (\"loader.exe\", \"loader_x64.exe\"):\n        TARGET = f\"{CAPE_PATH}/analyzer/windows/bin/{filename}\"\n        POSTPROCESS = False\n    elif b\"def _generator(self\" in f:\n        TARGET = f\"{VOL_PATH}{filename}\"\n        OWNER = \"root:staff\"\n    elif re.findall(rb\"class .*\\(Report\\):\", f):\n        TARGET = f\"{CAPE_PATH}/modules/reporting/{filename}\"\n    elif re.findall(rb\"class .*\\(Processing\\):\", f):\n        TARGET = f\"{CAPE_PATH}/modules/processing/{filename}\"\n    elif filename.endswith(\".yar\") and b\"rule \" in f and b\"condition:\" in f:\n        # capemon yara\n        if \"/analyzer/\" in file:\n            TARGET = f\"{CAPE_PATH}analyzer/windows/data/yara/{filename}\"\n        else:\n            # server side rule\n            TARGET = f\"{CAPE_PATH}data/yara/{yara_category}/{filename}\"\n    elif re.findall(rb\"class .*\\(Package\\):\", f):\n        folder = \"windows\"\n        if \"/linux/\" in file:\n            folder = \"linux\"\n        TARGET = f\"{CAPE_PATH}/analyzer/{folder}/modules/packages/{filename}\"\n    elif b\"def choose_package(file_type, file_name, exports, target)\" in f:\n        TARGET = f\"{CAPE_PATH}/analyzer/windows/lib/core/{filename}\"\n    elif b\"class Signature(object):\" in f and b\"class Processing(object):\" in f:\n        TARGET = f\"{CAPE_PATH}/lib/cuckoo/common/{filename}\"\n    elif b\"class Analyzer:\" in f and b\"class PipeHandler(Thread):\" in f and b\"class PipeServer(Thread):\" in f:\n        TARGET = f\"{CAPE_PATH}analyzer/windows/{filename}\"\n        POSTPROCESS = False\n    elif filename in (\"capemon.dll\", \"capemon_x64.dll\"):\n        TARGET = f\"{CAPE_PATH}analyzer/windows/dll/{filename}\"\n        POSTPROCESS = False\n    # generic deployer of files\n    elif file.startswith(\"CAPEv2/\"):\n        # Remove CAPEv2/ from path to build new path\n        TARGET = f\"{CAPE_PATH}\" + file[7:]\n    elif filename.endswith(\".service\"):\n        TARGET = \"/lib/systemd/system/{filename}\"\n        OWNER = \"root:root\"\n        POSTPROCESS = \"systemctl daemon-reload\"\n    elif file.endswith(\"admin.py\") and \"/web/\" not in file:\n        print(\"Ignoring admin.py\")\n        return False\n    elif file.startswith(\"CAPEv2/\"):\n        TARGET = file\n    else:\n        print(f\"I'm sorry, I don't know how to deploy this kind of file.: {filename}, {file}\")\n        return False\n\n    # build command to be executed remotely\n    REMOTE_COMMAND = f\"chown {OWNER} {TARGET}; chmod 644 {TARGET};\"\n    if filename.endswith(\".py\") and TARGET:\n        REMOTE_COMMAND += \"rm -f {0}.pyc; ls -la {0}.*\".format(TARGET.replace(\".py\", \"\"))\n    return TARGET, REMOTE_COMMAND, LOCAL_SHA256\n\n\n# For session reuse\nsockets = {}\n\n\ndef _connect_via_jump_box(server: str, ssh_proxy: SSHClient):\n    try:\n        \"\"\"\n        This is SSH pivoting it ssh to host Y via host X, can be used due to different networks\n        We doing direct-tcpip channel and pasing it as socket to be used\n        \"\"\"\n        if ssh_proxy and JUMP_BOX_USERNAME:\n            if server not in sockets:\n                ssh = SSHJumpClient(jump_session=ssh_proxy if ssh_proxy else None)\n                ssh.set_missing_host_key_policy(AutoAddPolicy())\n                ssh.connect(\n                    server,\n                    username=REMOTE_SERVER_USER,\n                    look_for_keys=True,\n                    allow_agent=True,\n                    disabled_algorithms=dict(pubkeys=[\"rsa-sha2-512\", \"rsa-sha2-256\"]),\n                )\n                sockets[server] = ssh\n            else:\n                # ToDo check if alive and reconnect\n                ssh = sockets[server]\n\n        else:\n            ssh = SSHJumpClient()\n            ssh.load_system_host_keys()\n            ssh.set_missing_host_key_policy(AutoAddPolicy())\n\n            ssh.connect(server, username=REMOTE_SERVER_USER, look_for_keys=False, allow_agent=True)\n    except (BadHostKeyException, AuthenticationException, PasswordRequiredException) as e:\n        sys.exit(\n            f\"Connect error: {str(e)}. Also pay attention to this log for more details /var/log/auth.log and paramiko might need update\"\n        )\n    return ssh\n\n\ndef execute_command_on_all(remote_command, servers: list, ssh_proxy: SSHClient):\n    for server in servers:\n        try:\n            ssh = _connect_via_jump_box(server, ssh_proxy)\n            _, ssh_stdout, _ = ssh.exec_command(remote_command)\n            ssh_out = ssh_stdout.read().decode(\"utf-8\").strip()\n            if \"Active: active (running)\" in ssh_out and \"systemctl status\" not in remote_command:\n                log.info(\"[+] Service \" + green(\"restarted successfully and is UP\"))\n            else:\n                if ssh_out:\n                    log.info(green(f\"[+] {server} - {ssh_out}\"))\n                else:\n                    log.info(green(f\"[+] {server}\"))\n            ssh.close()\n        except TimeoutError as e:\n            sys.exit(\"Did you forget to use jump box? %s\", str(e))\n        except Exception as e:\n            log.error(e, exc_info=True)\n\n\ndef bulk_deploy(files, yara_category, dry_run=False, servers: list = [], ssh_proxy: SSHClient = False):\n    # You are not permitted to remove elements from the list while iterating over it using a for loop.\n    for file in files[:]:\n        original_name = file\n        if not file.startswith((\"CAPE\", \"Custom\", \"Extractors\")):\n            files.remove(original_name)\n            continue\n\n        if file.endswith((\"processor_tests.py\", \"reporter_tests.py\", \"admin.py\")):\n            files.remove(original_name)\n            continue\n\n        if \"/custom/\" in file and \"/conf/\" in file and file.endswith(\".conf\"):\n            files.remove(original_name)\n            continue\n\n        if not Path(original_name).exists():\n            print(f\"File doesn't exists: {original_name}. Skipping\")\n            files.remove(original_name)\n            continue\n\n    if dry_run:\n        print(files)\n        return\n\n    queue = Queue()\n    for file in files:\n        parameters = file_recon(file, yara_category)\n        if not parameters:\n            print(parameters, file)\n            continue\n        queue.put([servers, file] + list(parameters))\n\n    for _ in range(NUM_THREADS):\n        worker = Thread(target=deploy_file, args=(queue, ssh_proxy))\n        worker.daemon = True\n        worker.start()\n    queue.join()\n\n\ndef get_file(path, servers: list, ssh_proxy: SSHClient):\n    for server in servers:\n        try:\n            ssh = _connect_via_jump_box(server, ssh_proxy)\n            with SCPClient(ssh.get_transport()) as scp:\n                try:\n                    scp.get(path, f\"{server}_{os.path.basename(path)}\")\n                    print(f\"Copied {os.path.basename(path)} from {server}\")\n                except SCPException as e:\n                    print(e)\n        except Exception as e:\n            print(e)\n\n\ndef deploy_file(queue, ssh_proxy: SSHClient):\n    error_list = list()\n\n    while not queue.empty():\n        servers, local_file, remote_file, remote_command, local_sha256 = queue.get()\n\n        error = False\n        print(servers, local_file, remote_file, remote_command, local_sha256)\n        for server in servers:\n            try:\n                ssh = _connect_via_jump_box(server, ssh_proxy)\n                with SCPClient(ssh.get_transport()) as scp:\n                    try:\n                        scp.put(local_file, remote_file)\n                    except SCPException as e:\n                        print(e)\n\n                if remote_command:\n                    _, ssh_stdout, _ = ssh.exec_command(remote_command)\n\n                    ssh_out = ssh_stdout.read().decode(\"utf-8\")\n                    log.info(ssh_out)\n\n                _, ssh_stdout, _ = ssh.exec_command(f\"sha256sum {remote_file} | cut -d' ' -f1\")\n                remote_sha256 = ssh_stdout.read().strip().decode(\"utf-8\")\n                if local_sha256 == remote_sha256:\n                    log.info(\"[+] %s - Hashes are %s: %s - %s\", server, green(\"correct\"), local_sha256, remote_file)\n                else:\n                    log.info(\n                        \"[-] %s - Hashes are %s: \\n\\tLocal: %s\\n\\tRemote: %s - %s\",\n                        server,\n                        red(\"incorrect\"),\n                        local_sha256,\n                        remote_sha256,\n                        remote_file,\n                    )\n                    error = 1\n                    error_list.append(remote_file)\n                ssh.close()\n            except TimeoutError as e:\n                log.error(e)\n\n        if not error:\n            log.info(green(f\"Completed! {remote_file}\\n\"))\n        else:\n            log.info(red(f\"Completed with errors. {remote_file}\\n\"))\n        queue.task_done()\n\n    return error_list\n\n\ndef delete_file(queue, ssh_proxy: SSHClient):\n    error_list = list()\n\n    while not queue.empty():\n        servers, remote_file = queue.get()\n\n        error = False\n        for server in servers:\n            try:\n                ssh = _connect_via_jump_box(server, ssh_proxy)\n                _, ssh_stdout, _ = ssh.exec_command(f\"rm {remote_file}\")\n                ssh_out = ssh_stdout.read().decode(\"utf-8\")\n                if ssh_out:\n                    log.info(ssh_out)\n                ssh.close()\n            except TimeoutError as e:\n                log.error(e)\n                error = 1\n\n        if not error:\n            log.info(green(f\"Completed! {remote_file}\\n\"))\n        else:\n            log.info(red(f\"Completed with errors. {remote_file}\\n\"))\n        queue.task_done()\n\n    return error_list\n\n\ndef delete_file_recon(path: str) -> str:\n    base_path = CAPE_PATH\n    f_name = Path(path).name\n    if \"yara/CAPE\" in path and path.endswith((\".yar\", \".yara\")):\n        return f\"{base_path}/data/yara/CAPE/{f_name}\"\n    elif \"modules/signatures\" in path:\n        return f\"{base_path}/modules/signatures/{f_name}\"\n\n\ndef check_net_iface():\n    for _, device in if_nameindex():\n        if device.startswith(\"utun\"):\n            return True\n\n```",
+  "Title: new admin.py\nBody: None",
+  "Title: Inf detonation euskalhack\nBody: None",
+  "Title: interactive esxi\nBody: None\nComment: also @enzok what do you think about this update?\nComment: i won't merge this, as libvirt allows to fetch all the data, but as i don't have ESXI access/setup, someone who wants to use it will need to extend it properly",
+  "Title: Fix the stopping of tcpdump when sudo is used.\nBody: Previously, it would try to kill the sudo process, which is owned by root and not able to be killed by the cape user.",
+  "Title: VM cannot use more than 2-3 GB of memory when the seabios patched by kvm-qemu.sh is used\nBody: I think I've finally figured out the root cause of my VMs crashing - and why it didn't happen consistently when I changed different things to troubleshoot the issue - the guest OS does not see enough RAM.\r\n\r\nThe host has 64 GB of RAM.\r\n\r\nWindows 10 64 bit only sees 2 GB of RAM on a VM configured with a Q35 chipset and 4 GB of RAM.\r\n\r\nWindows 7 64 bit only sees 3 GB of RAM on a VM configured with an i440FX chipset and current and maximum amount of RAM set to 4 GB.\r\n\r\nThis happens with or without the virtio balloon driver installed (I'd prefer it to not have any virtio drivers installed, to make it harder to identify the system as a VM.\r\n\r\nI realize this isn't a CAPE issue, but I'm hoping someone here has some idea of what's going wrong, because even after lots of Googling, and updating the BIOS of the host system, I still haven't figured this out.\r\n\r\nFWIW, I also posted on the KVM Subreddit.  \r\n\r\nAny idea what's going wrong?\nComment: that is always bios, do grep on your bios file + watch the command like of qemu when vm start https://www.reddit.com/r/qemu_kvm/comments/phsrw8/cant_use_more_than_3gb_ram_on_x64_win10/\nComment: im don't really like having not cape related problems in cape repo. \r\n\r\n```\r\n* Error:\r\n        * VM can't use more than 2-3Gb of ram for x64 VM\r\n* Solution:\r\n        * Ensure that you not using default QEMU bios.bin, use next command to check, it shouldn't find coincidences\r\n            * grep \"prebuild.qemu.org\" /usr/share/qemu/bios.bin\r\n```\nComment: @doomedraven No incidences from that grep command. I'm using the `bios.bin` built by the `seabios` command of the `kvm-qemu.sh` included with CAPE .\r\n\r\nNow that you've pointed me in the direction of the BIOS though, I just tried using the default `bios.bin` and the VMs now show all 4 GB of RAM., so this does seem to be the opposite of what the help you quoted says .\r\n\r\nBy changing the smbios libvirt settings and adding the `qemu:commandline` element, like you mention in your [blog post](https://www.doomedraven.com/2016/05/kvm.html#2-add-cpuid-bit-vm-detect-patching-and-acpi-tables) I can pass just as many of the phfish VM checks, So what is the point of the custom BIOS build? \r\n\r\n\nComment: 1 software evolution maybe? They dropped al the antivm patterns\r\n\r\n2 the point is to defeat all antivms, obviously we wont check each release\r\nof seabios\r\n\r\n3 as my reddit says, in my case then it was the problem that the latest\r\neasnt working, but previous worked perfectly\r\n\r\nWelcome to software  updates hell \ud83e\udd23\r\n\r\nEl mi\u00e9, 21 jun 2023, 3:13, Sean Whalen ***@***.***> escribi\u00f3:\r\n\r\n> @doomedraven <https://github.com/doomedraven> No incidences from that\r\n> grep command. I'm using the bios.bin built by the seabios command of the\r\n> kvm-qemu.sh included with CAPE .\r\n>\r\n> Now that you've pointed me in the direction of the BIOS though, I just\r\n> tried using the default bios.bin and the VMs now show all 4 GB of RAM.,\r\n> so this does seem to be the opposite of what the help you quoted says .\r\n>\r\n> By changing the smbios libvirt settings and adding the qemu:commandline\r\n> element, like you mention in your blog post\r\n> <https://www.doomedraven.com/2016/05/kvm.html#2-add-cpuid-bit-vm-detect-patching-and-acpi-tables>\r\n> I can pass just as many of the phfish VM checks, So what is the point of\r\n> the custom BIOS build?\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1618#issuecomment-1599922573>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH35XEVB7EVYRS6DMB5DXMJDEHANCNFSM6AAAAAAZNT35HU>\r\n> .\r\n> You are receiving this because you were mentioned.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: Hi,\r\nIf I remember correctly, i had a similar problem.\r\nIt was related to the antivm string replacement in replace_seabios_clues_public().\r\nI think the replacement in src/fw/paravirt.c causes the problem. \r\nMaybe you skip this file for testing or use a different replacement string (e.g. length of the string)\nComment: btw @seanthegeek forget about pafish, is past, use modern vm detection as al-khaser and you will understand why custom is build, i see all their VM patterns in there https://github.com/coreboot/seabios/blob/master/src/config.h#L12-L15\r\n\r\ninteresting point @ClaudioWayne, there should be something in the build log right?\nComment: Yes could be. But it's been quite a long time since I've dealt with it.\r\nMaybe I'm wrong, but it's worth a try.\r\nI can not test it at the moment, because I am busy.\r\nBut i think the only replacement in paravirt.c is in these lines:\r\n\r\n```\r\n    // Detect fw_cfg interface.\r\n    qemu_cfg_select(QEMU_CFG_SIGNATURE);\r\n    char *sig = \"QEMU\";\r\n    int i;\r\n    for (i = 0; i < 4; i++)\r\n        if (inb(PORT_QEMU_CFG_DATA) != sig[i])\r\n            return 0;\r\n```\r\n\r\nPORT_QEMU_CFG_DATA is defined in paravirt.h\r\n\r\n`#define PORT_QEMU_CFG_DATA          0x0511`\r\n\r\nI do not have much experience in this field, but if its really related to paravirt.c we maybe could ignore the for-loop check and use the 4 char string from the installer script anyway. I'm not sure what the syscall inb for Port 0x0511 returns. But if it is also \"QEMU\", that should also be patched somehow.\nComment: > there should be something in the build log right?\r\n\r\nI don't see anything odd.\r\n\r\n[seabios-build-log.txt](https://github.com/kevoreilly/CAPEv2/files/11826536/seabios-build-log.txt)\nComment: Then get a previous version of seabios. Is what happend to me and is whatvi\r\nmentioned in that reddit\r\n\r\nEl mi\u00e9, 21 jun 2023, 23:55, Sean Whalen ***@***.***> escribi\u00f3:\r\n\r\n> there should be something in the build log right?\r\n>\r\n> I don't see anything odd.\r\n>\r\n> seabios-build-log.txt\r\n> <https://github.com/kevoreilly/CAPEv2/files/11826536/seabios-build-log.txt>\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1618#issuecomment-1601733010>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH37Z7ESBBLKRLNFH2L3XMNUTPANCNFSM6AAAAAAZNT35HU>\r\n> .\r\n> You are receiving this because you were mentioned.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: > I don't see anything odd.\r\n\r\nHave you tried if you can allocate more memory if you don't patch paravirt.c? The user in this issue (https://github.com/doomedraven/Tools/issues/132#issuecomment-1443799093) was able to allocate more memory when he ignored paravirt.c\nComment: @ClaudioWayne Yes. I just tried skipping patching `paravirt.c`, and the system can use all 4 GB of RAM I allocated to it. Hopefully that helps narrow down the problem.\r\n\r\n@doomedraven I just tried with `seabios` 1.14.0, and it had the same problem. I'd rather not use a very old version of `seabios`. I want to avoid any unpatched vulnerabilities that might be leveraged for a VM escape. \r\n\r\nWhen I tried to build `seabios` 1.13.0, I got a linking error\r\n\r\n```text\r\n[+] Generating SeaBios Kconfig\r\n[+] Fixing SeaBios antivms\r\nscripts/kconfig/conf --olddefconfig /tmp/seabios/src/Kconfig\r\n#\r\n# configuration written to /tmp/seabios/.config\r\n#\r\n  Compiling to assembler out/src/asm-offsets.s\r\n  Build Kconfig config file\r\n  Compile checking out/src/misc.o\r\n  Compile checking out/src/stacks.o\r\n  Compile checking out/src/output.o\r\n  Compile checking out/src/string.o\r\n  Compile checking out/src/block.o\r\n  Compile checking out/src/cdrom.o\r\n  Compile checking out/src/disk.o\r\n  Compile checking out/src/mouse.o\r\n  Compile checking out/src/kbd.o\r\n  Compile checking out/src/system.o\r\n  Compile checking out/src/serial.o\r\n  Compile checking out/src/sercon.o\r\n  Compile checking out/src/clock.o\r\n  Compile checking out/src/resume.o\r\n  Compile checking out/src/pnpbios.o\r\n  Compile checking out/src/vgahooks.o\r\n  Compile checking out/src/pcibios.o\r\n  Compile checking out/src/apm.o\r\n  Compile checking out/src/cp437.o\r\n  Compile checking out/src/hw/pci.o\r\n  Compile checking out/src/hw/timer.o\r\n  Compile checking out/src/hw/rtc.o\r\n  Compile checking out/src/hw/dma.o\r\n  Compile checking out/src/hw/pic.o\r\n  Compile checking out/src/hw/ps2port.o\r\n  Compile checking out/src/hw/serialio.o\r\n  Compile checking out/src/hw/usb.o\r\n  Compile checking out/src/hw/usb-uhci.o\r\n  Compile checking out/src/hw/usb-ohci.o\r\n  Compile checking out/src/hw/usb-ehci.o\r\n  Compile checking out/src/hw/usb-hid.o\r\n  Compile checking out/src/hw/usb-msc.o\r\n  Compile checking out/src/hw/usb-uas.o\r\n  Compile checking out/src/hw/blockcmd.o\r\n  Compile checking out/src/hw/floppy.o\r\n  Compile checking out/src/hw/ata.o\r\n  Compile checking out/src/hw/ramdisk.o\r\n  Compile checking out/src/hw/lsi-scsi.o\r\n  Compile checking out/src/hw/esp-scsi.o\r\n  Compile checking out/src/hw/megasas.o\r\n  Compile checking out/src/hw/mpt-scsi.o\r\n  Compile checking out/src/post.o\r\n  Compile checking out/src/e820map.o\r\n  Compile checking out/src/malloc.o\r\n  Compile checking out/src/romfile.o\r\n  Compile checking out/src/x86.o\r\n  Compile checking out/src/optionroms.o\r\n  Compile checking out/src/pmm.o\r\n  Compile checking out/src/font.o\r\n  Compile checking out/src/boot.o\r\n  Compile checking out/src/bootsplash.o\r\n  Compile checking out/src/jpeg.o\r\n  Compile checking out/src/bmp.o\r\n  Compile checking out/src/tcgbios.o\r\n  Compile checking out/src/sha1.o\r\n  Compile checking out/src/hw/pcidevice.o\r\n  Compile checking out/src/hw/ahci.o\r\n  Compile checking out/src/hw/pvscsi.o\r\n  Compile checking out/src/hw/usb-xhci.o\r\n  Compile checking out/src/hw/usb-hub.o\r\n  Compile checking out/src/hw/sdcard.o\r\n  Compile checking out/src/fw/coreboot.o\r\n  Compile checking out/src/fw/lzmadecode.o\r\n  Compile checking out/src/fw/multiboot.o\r\n  Compile checking out/src/fw/csm.o\r\n  Compile checking out/src/fw/biostables.o\r\n  Compile checking out/src/fw/paravirt.o\r\n  Compile checking out/src/fw/shadow.o\r\n  Compile checking out/src/fw/pciinit.o\r\n  Compile checking out/src/fw/smm.o\r\n  Compile checking out/src/fw/smp.o\r\n  Compile checking out/src/fw/mtrr.o\r\n  Compile checking out/src/fw/xen.o\r\n  Compile checking out/src/fw/acpi.o\r\n  Compile checking out/src/fw/mptable.o\r\n  Compile checking out/src/fw/pirtable.o\r\n  Compile checking out/src/fw/smbios.o\r\n  Compile checking out/src/fw/romfile_loader.o\r\n  Compile checking out/src/hw/virtio-ring.o\r\n  Compile checking out/src/hw/virtio-pci.o\r\n  Compile checking out/src/hw/virtio-blk.o\r\n  Compile checking out/src/hw/virtio-scsi.o\r\n  Compile checking out/src/hw/tpm_drivers.o\r\n  Compile checking out/src/hw/nvme.o\r\n  Compiling whole program out/code32seg.o\r\n  Generating offset file out/asm-offsets.h\r\n  Compiling whole program out/ccode16.o\r\n  Compiling (16bit) out/romlayout.o\r\n  Compiling whole program out/ccode32flat.o\r\n  Building ld scripts\r\n  Compiling IASL src/fw/acpi-dsdt.hex\r\nmake[1]: warning: jobserver unavailable: using -j1.  Add '+' to parent make rule.\r\n  Compiling IASL src/fw/ssdt-proc.hex\r\n  Build Kconfig config file\r\n  Compiling IASL src/fw/ssdt-misc.hex\r\n  Compiling IASL src/fw/ssdt-pcihp.hex\r\n  Compile checking out/src/misc.o\r\n  Compile checking out/src/stacks.o\r\n  Compile checking out/src/output.o\r\n  Compile checking out/src/string.o\r\n  Compile checking out/src/block.o\r\n  Compile checking out/src/cdrom.o\r\n  Compile checking out/src/disk.o\r\n  Compile checking out/src/mouse.o\r\n  Compile checking out/src/kbd.o\r\n  Compile checking out/src/system.o\r\n  Compile checking out/src/serial.o\r\n  Compile checking out/src/sercon.o\r\n  Compile checking out/src/clock.o\r\n  Compile checking out/src/resume.o\r\n  Compile checking out/src/pnpbios.o\r\n  Compile checking out/src/vgahooks.o\r\n  Compile checking out/src/pcibios.o\r\n  Compile checking out/src/apm.o\r\n  Compile checking out/src/cp437.o\r\n  Compile checking out/src/hw/pci.o\r\nout/src/fw/ssdt-proc.dsl.i     15:     Proce  Compile checking out/src/hw/timer.o\r\nssor(CPAA, 0xAA, 0x0000b010, 0x06) {\r\nWarning  3168 -                                    ^ Legacy Processor() keyword detected. Use Device() keyword instead.\r\n\r\nASL Input:     out/src/fw/ssdt-proc.dsl.i -     762 bytes      8 keywords     36 source lines\r\nAML Output:    out/src/fw/ssdt-proc.aml -     162 bytes      2 opcodes       6 named objects\r\nListing File:  out/src/fw/ssdt-proc.lst -    3369 bytes\r\nHex Dump:      out/src/fw/ssdt-proc.hex -    1995 bytes\r\n\r\nCompilation successful. 0 Errors, 1 Warnings, 0 Remarks, 0 Optimizations\r\nASL Input:     out/src/fw/ssdt-misc.dsl.i -    2565 bytes     35 keywords    102 source lines\r\nAML Output:    out/src/fw/ssdt-misc.aml -     388 bytes     11 opcodes      24 named objects\r\nListing File:  out/src/fw/ssdt-misc.lst -    7622 bytes\r\nHex Dump:      out/src/fw/ssdt-misc.hex -    4096 bytes\r\n\r\nCompilation successful. 0 Errors, 0 Warnings, 0 Remarks, 2 Optimizations\r\n  Compile checking out/src/hw/rtc.o\r\nASL Input:     out/src/fw/ssdt-pcihp.dsl.i -     755 bytes      5 keywords     37 source lines\r\nAML Output:    out/src/fw/ssdt-pcihp.aml -     121 bytes      0 opcodes       5 named objects\r\nListing File:  out/src/fw/ssdt-pcihp.lst -    2727 bytes\r\nHex Dump:      out/src/fw/ssdt-pcihp.hex -    1624 bytes\r\n\r\nCompilation successful. 0 Errors, 0 Warnings, 0 Remarks, 0 Optimizations\r\n  Compile checking out/src/hw/dma.o\r\nout/src/fw/acpi-dsdt.dsl.i     31:         Device(PCI0) {\r\nWarning  3073 -                      Multiple types ^  (Device object requires either a _HID or _ADR, but not both)\r\n\r\nout/src/fw/acpi-dsdt.dsl.i    361:             Name(PRR0, ResourceTemplate() {\r\nRemark   2173 -                                       ^ Creation of named objects within a method is highly inefficient, use globals or method local variables instead (\\_SB.IQCR)\r\n\r\nout/src/fw/acpi-dsdt.dsl.i    405:     Method(CPEJ, 2, NotSerialized) {\r\nRemark   2146 -   Method Argument is never used ^  (Arg0)\r\n\r\nout/src/fw/acpi-dsdt.dsl.i    405:     Method(CPEJ, 2, NotSerialized) {\r\nRemark   2146 -   Method Argument is never used ^  (Arg1)\r\n\r\nASL Input:     out/src/fw/acpi-dsdt.dsl.i -   19153 bytes    315 keywords    475 source lines\r\nAML Output:    out/src/fw/acpi-dsdt.aml -    4585 bytes    156 opcodes     159 named objects\r\nListing File:  out/src/fw/acpi-dsdt.lst -   67530 bytes\r\nHex Dump:      out/src/fw/acpi-dsdt.hex -   43472 bytes\r\n\r\nCompilation successful. 0 Errors, 1 Warnings, 3 Remarks, 246 Optimizations\r\n  Compile checking out/src/hw/pic.o\r\n  Compile checking out/src/hw/ps2port.o\r\n  Compile checking out/src/hw/serialio.o\r\n  Compile checking out/src/hw/usb.o\r\n  Compile checking out/src/hw/usb-uhci.o\r\n  Compile checking out/src/hw/usb-ohci.o\r\n  Compile checking out/src/hw/usb-ehci.o\r\n  Compile checking out/src/hw/usb-hid.o\r\n  Compile checking out/src/hw/usb-msc.o\r\n  Compile checking out/src/hw/usb-uas.o\r\n  Compile checking out/src/hw/blockcmd.o\r\n  Compile checking out/src/hw/floppy.o\r\n  Compile checking out/src/hw/ata.o\r\n  Compile checking out/src/hw/ramdisk.o\r\n  Compile checking out/src/hw/lsi-scsi.o\r\n  Compile checking out/src/hw/esp-scsi.o\r\n  Compile checking out/src/hw/megasas.o\r\n  Compile checking out/src/hw/mpt-scsi.o\r\n  Compile checking out/src/post.o\r\n  Compile checking out/src/e820map.o\r\n  Compile checking out/src/malloc.o\r\n  Compile checking out/src/romfile.o\r\n  Compile checking out/src/x86.o\r\n  Compile checking out/src/optionroms.o\r\n  Compile checking out/src/pmm.o\r\n  Compile checking out/src/font.o\r\n  Compile checking out/src/boot.o\r\n  Compile checking out/src/bootsplash.o\r\n  Compile checking out/src/jpeg.o\r\n  Compile checking out/src/bmp.o\r\n  Compile checking out/src/tcgbios.o\r\n  Compile checking out/src/sha1.o\r\nsrc/post.c: In function 'reloc_preinit':\r\nsrc/post.c:248:34: warning: array subscript 'u32 {aka unsigned int}[0]' is partly outside array bounds of 'char[1]' [-Warray-bounds]\r\n  248 |         *((u32*)(dest + *reloc)) += delta;\r\n      |                                  ^~\r\nIn file included from src/biosvar.h:11,\r\n                 from src/post.c:8:\r\nsrc/post.c:278:26: note: while referencing 'code32flat_start'\r\n  278 |     updateRelocs(VSYMBOL(code32flat_start), VSYMBOL(_reloc_init_start)\r\n      |                          ^~~~~~~~~~~~~~~~\r\nsrc/memmap.h:18:36: note: in definition of macro 'SYMBOL'\r\n   18 | #define SYMBOL(SYM) ({ extern char SYM; (u32)&SYM; })\r\n      |                                    ^~~\r\nsrc/post.c:278:18: note: in expansion of macro 'VSYMBOL'\r\n  278 |     updateRelocs(VSYMBOL(code32flat_start), VSYMBOL(_reloc_init_start)\r\n      |                  ^~~~~~~\r\nsrc/post.c:248:34: warning: array subscript 'u32 {aka unsigned int}[0]' is partly outside array bounds of 'char[1]' [-Warray-bounds]\r\n  248 |         *((u32*)(dest + *reloc)) += delta;\r\n      |         ~~~~~~~~~~~~~~~~~~~~~~~~~^~~~~~~~\r\nIn file included from src/biosvar.h:11,\r\n                 from src/post.c:8:\r\nsrc/post.c:278:26: note: while referencing 'code32flat_start'\r\n  278 |     updateRelocs(VSYMBOL(code32flat_start), VSYMBOL(_reloc_init_start)\r\n      |                          ^~~~~~~~~~~~~~~~\r\nsrc/memmap.h:18:36: note: in definition of macro 'SYMBOL'\r\n   18 | #define SYMBOL(SYM) ({ extern char SYM; (u32)&SYM; })\r\n      |                                    ^~~\r\nsrc/post.c:278:18: note: in expansion of macro 'VSYMBOL'\r\n  278 |     updateRelocs(VSYMBOL(code32flat_start), VSYMBOL(_reloc_init_start)\r\n      |                  ^~~~~~~\r\n  Compile checking out/src/hw/pcidevice.o\r\n  Compile checking out/src/hw/ahci.o\r\n  Compile checking out/src/hw/pvscsi.o\r\n  Compile checking out/src/hw/usb-xhci.o\r\n  Compile checking out/src/hw/usb-hub.o\r\n  Compile checking out/src/hw/sdcard.o\r\n  Compile checking out/src/fw/coreboot.o\r\n  Compile checking out/src/fw/lzmadecode.o\r\n  Compile checking out/src/fw/multiboot.o\r\n  Compile checking out/src/fw/csm.o\r\n  Compile checking out/src/fw/biostables.o\r\n  Compile checking out/src/fw/paravirt.o\r\n  Compile checking out/src/fw/shadow.o\r\n  Compile checking out/src/fw/pciinit.o\r\n  Compile checking out/src/fw/smm.o\r\n  Compile checking out/src/fw/smp.o\r\n  Compile checking out/src/fw/mtrr.o\r\n  Compile checking out/src/fw/xen.o\r\n  Compile checking out/src/fw/acpi.o\r\n  Compile checking out/src/fw/mptable.o\r\n  Compile checking out/src/fw/pirtable.o\r\n  Compile checking out/src/fw/smbios.o\r\n  Compile checking out/src/fw/romfile_loader.o\r\n  Compile checking out/src/hw/virtio-ring.o\r\n  Compile checking out/src/hw/virtio-pci.o\r\nsrc/tcgbios.c: In function 'tpm20_write_EfiSpecIdEventStruct':\r\nsrc/tcgbios.c:290:30: warning: array subscript 'be32_to_cpu (_19) + 4294967295' is outside the bounds of an interior zero-length array 'struct TCG_EfiSpecIdEventAlgorithmSize[0]' [-Wzero-length-bounds]\r\n  290 |         event.hdr.digestSizes[count].algorithmId = be16_to_cpu(sel->hashAlg);\r\n      |         ~~~~~~~~~~~~~~~~~~~~~^~~~~~~\r\nIn file included from src/tcgbios.c:22:\r\nsrc/std/tcg.h:527:7: note: while referencing 'digestSizes'\r\n  527 |     } digestSizes[0];\r\n      |       ^~~~~~~~~~~\r\n  Compile checking out/src/hw/virtio-blk.o\r\nsrc/tcgbios.c:291:30: warning: array subscript 'be32_to_cpu (_19) + 4294967295' is outside the bounds of an interior zero-length array 'struct TCG_EfiSpecIdEventAlgorithmSize[0]' [-Wzero-length-bounds]\r\n  291 |         event.hdr.digestSizes[count].digestSize = hsize;\r\n      |         ~~~~~~~~~~~~~~~~~~~~~^~~~~~~\r\nIn file included from src/tcgbios.c:22:\r\nsrc/std/tcg.h:527:7: note: while referencing 'digestSizes'\r\n  527 |     } digestSizes[0];\r\n      |       ^~~~~~~~~~~\r\nIn file included from src/fw/mptable.c:17:\r\nsrc/fw/mptable.c: In function 'mptable_setup':\r\nsrc/string.h:23:16: warning: '__builtin_memcpy' forming offset 7 is out of the bounds [0, 7] [-Warray-bounds]\r\n   23 | #define memcpy __builtin_memcpy\r\nsrc/fw/mptable.c:38:5: note: in expansion of macro 'memcpy'\r\n   38 |     memcpy(config->oemid, BUILD_CPUNAME8, sizeof(config->oemid));\r\n      |     ^~~~~~\r\n  Compile checking out/src/hw/virtio-scsi.o\r\n  Compile checking out/src/hw/tpm_drivers.o\r\n  Compile checking out/src/hw/nvme.o\r\n  Compiling whole program out/code32seg.o\r\n  Compiling (16bit) out/romlayout.o\r\n  Compiling whole program out/ccode16.o\r\nIn file included from src/fw/acpi.c:21:\r\nsrc/fw/acpi.c: In function 'build_header.constprop':\r\nsrc/string.h:23:16: warning: '__builtin_memcpy' forming offset 5 is out of the bounds [0, 5] [-Warray-bounds]\r\n   23 | #define memcpy __builtin_memcpy\r\nsrc/fw/acpi.c:33:5: note: in expansion of macro 'memcpy'\r\n   33 |     memcpy(h->oem_id, BUILD_APPNAME6, 6);\r\n      |     ^~~~~~\r\nsrc/fw/acpi.c: In function 'acpi_setup':\r\nsrc/string.h:23:16: warning: '__builtin_memcpy' forming offset 5 is out of the bounds [0, 5] [-Warray-bounds]\r\n   23 | #define memcpy __builtin_memcpy\r\nsrc/fw/acpi.c:681:5: note: in expansion of macro 'memcpy'\r\n  681 |     memcpy(rsdp.oem_id, BUILD_APPNAME6, 6);\r\n      |     ^~~~~~\r\n  Compiling whole program out/ccode32flat.o\r\nIn file included from out/ccode32flat.o.tmp.c:54:\r\n./src/tcgbios.c: In function 'tpm20_write_EfiSpecIdEventStruct':\r\n./src/tcgbios.c:290:30: warning: array subscript 'be32_to_cpu (_19) + 4294967295' is outside the bounds of an interior zero-length array 'struct TCG_EfiSpecIdEventAlgorithmSize[0]' [-Wzero-length-bounds]\r\n  290 |         event.hdr.digestSizes[count].algorithmId = be16_to_cpu(sel->hashAlg);\r\n      |         ~~~~~~~~~~~~~~~~~~~~~^~~~~~~\r\nIn file included from ./src/tcgbios.c:22,\r\n                 from out/ccode32flat.o.tmp.c:54:\r\n./src/std/tcg.h:527:7: note: while referencing 'digestSizes'\r\n  527 |     } digestSizes[0];\r\n      |       ^~~~~~~~~~~\r\nIn file included from out/ccode32flat.o.tmp.c:54:\r\n./src/tcgbios.c:291:30: warning: array subscript 'be32_to_cpu (_19) + 4294967295' is outside the bounds of an interior zero-length array 'struct TCG_EfiSpecIdEventAlgorithmSize[0]' [-Wzero-length-bounds]\r\n  291 |         event.hdr.digestSizes[count].digestSize = hsize;\r\n      |         ~~~~~~~~~~~~~~~~~~~~~^~~~~~~\r\nIn file included from ./src/tcgbios.c:22,\r\n                 from out/ccode32flat.o.tmp.c:54:\r\n./src/std/tcg.h:527:7: note: while referencing 'digestSizes'\r\n  527 |     } digestSizes[0];\r\n      |       ^~~~~~~~~~~\r\nIn file included from out/ccode32flat.o.tmp.c:4:\r\n./src/fw/acpi.c: In function 'build_header.constprop':\r\n./src/string.c:156:16: warning: '__builtin_memcpy' forming offset 5 is out of the bounds [0, 5] [-Warray-bounds]\r\n  156 | #define memcpy __builtin_memcpy\r\n./src/fw/acpi.c:33:5: note: in expansion of macro 'memcpy'\r\n   33 |     memcpy(h->oem_id, BUILD_APPNAME6, 6);\r\n      |     ^~~~~~\r\nIn function 'mptable_setup',\r\n    inlined from 'qemu_platform_setup' at ./src/fw/paravirt.c:180:9:\r\n./src/string.c:156:16: warning: '__builtin_memcpy' forming offset 7 is out of the bounds [0, 7] [-Warray-bounds]\r\n  156 | #define memcpy __builtin_memcpy\r\n./src/fw/mptable.c:38:5: note: in expansion of macro 'memcpy'\r\n   38 |     memcpy(config->oemid, BUILD_CPUNAME8, sizeof(config->oemid));\r\n      |     ^~~~~~\r\nIn function 'acpi_setup',\r\n    inlined from 'qemu_platform_setup' at ./src/fw/paravirt.c:204:5:\r\n./src/string.c:156:16: warning: '__builtin_memcpy' forming offset 5 is out of the bounds [0, 5] [-Warray-bounds]\r\n  156 | #define memcpy __builtin_memcpy\r\n./src/fw/acpi.c:681:5: note: in expansion of macro 'memcpy'\r\n  681 |     memcpy(rsdp.oem_id, BUILD_APPNAME6, 6);\r\n      |     ^~~~~~\r\nIn file included from out/ccode32flat.o.tmp.c:42:\r\n./src/post.c: In function 'dopost':\r\n./src/post.c:248:34: warning: array subscript 'u32 {aka unsigned int}[0]' is partly outside array bounds of 'char[1]' [-Warray-bounds]\r\n  248 |         *((u32*)(dest + *reloc)) += delta;\r\n      |                                  ^~\r\nIn file included from ./src/biosvar.h:11,\r\n                 from ./src/misc.c:8,\r\n                 from out/ccode32flat.o.tmp.c:1:\r\n./src/fw/shadow.c:190:29: note: while referencing 'code32flat_start'\r\n  190 |         u32 cstart = SYMBOL(code32flat_start), cend = SYMBOL(code32flat_end);\r\n      |                             ^~~~~~~~~~~~~~~~\r\n./src/memmap.h:18:36: note: in definition of macro 'SYMBOL'\r\n   18 | #define SYMBOL(SYM) ({ extern char SYM; (u32)&SYM; })\r\n      |                                    ^~~\r\nIn file included from out/ccode32flat.o.tmp.c:42:\r\n./src/post.c:248:34: warning: array subscript 'u32 {aka unsigned int}[0]' is partly outside array bounds of 'char[1]' [-Warray-bounds]\r\n  248 |         *((u32*)(dest + *reloc)) += delta;\r\n      |         ~~~~~~~~~~~~~~~~~~~~~~~~~^~~~~~~~\r\nIn file included from ./src/biosvar.h:11,\r\n                 from ./src/misc.c:8,\r\n                 from out/ccode32flat.o.tmp.c:1:\r\n./src/fw/shadow.c:190:29: note: while referencing 'code32flat_start'\r\n  190 |         u32 cstart = SYMBOL(code32flat_start), cend = SYMBOL(code32flat_end);\r\n      |                             ^~~~~~~~~~~~~~~~\r\n./src/memmap.h:18:36: note: in definition of macro 'SYMBOL'\r\n   18 | #define SYMBOL(SYM) ({ extern char SYM; (u32)&SYM; })\r\n      |                                    ^~~\r\n  Building ld scripts\r\nVersion: rel-1.13.0-0-gf21b5a4-dirty-20230626_175724-sandbox\r\nFixed space: 0xe05b-0x10000  total: 8101  slack: 11  Percent slack: 0.1%\r\n16bit size:           37952\r\n32bit segmented size: 2221\r\n32bit flat size:      43667\r\n32bit flat init size: 77760\r\nLowmem size:          2240\r\nf-segment var size:   1248\r\n  Linking out/rom16.o\r\n  Linking out/rom32seg.o\r\n  Stripping out/rom32seg.strip.o\r\n  Stripping out/rom16.strip.o\r\n  Linking out/rom.o\r\nld: cannot use executable file 'out/rom16.strip.o' as input to a link\r\nmake: *** [Makefile:187: out/rom.o] Error 1\r\n[-] Bios compilation failed\r\n```\r\n\nComment: Thanks for feedback, will see how to exclude that file\r\n\r\nEl mar, 27 jun 2023, 0:06, Sean Whalen ***@***.***> escribi\u00f3:\r\n\r\n> @ClaudioWayne <https://github.com/ClaudioWayne> Yes. I just tried\r\n> skipping patching paravirt.c, and the system can use all 4 GB of RAM I\r\n> allocated to it. Hopefully that helps narrow down the problem.\r\n>\r\n> @doomedraven <https://github.com/doomedraven> I just tried with seabios\r\n> 1.14.0, and it had the same problem. I'd rather not use a very old version\r\n> of seabios. I want to avoid any unpatched vulnerabilities that might be\r\n> leveraged for a VM escape.\r\n>\r\n> When I tried to build seabios 1.13.0, I got a linking error\r\n>\r\n> [+] Generating SeaBios Kconfig\r\n> [+] Fixing SeaBios antivms\r\n> scripts/kconfig/conf --olddefconfig /tmp/seabios/src/Kconfig\r\n> #\r\n> # configuration written to /tmp/seabios/.config\r\n> #\r\n>   Compiling to assembler out/src/asm-offsets.s\r\n>   Build Kconfig config file\r\n>   Compile checking out/src/misc.o\r\n>   Compile checking out/src/stacks.o\r\n>   Compile checking out/src/output.o\r\n>   Compile checking out/src/string.o\r\n>   Compile checking out/src/block.o\r\n>   Compile checking out/src/cdrom.o\r\n>   Compile checking out/src/disk.o\r\n>   Compile checking out/src/mouse.o\r\n>   Compile checking out/src/kbd.o\r\n>   Compile checking out/src/system.o\r\n>   Compile checking out/src/serial.o\r\n>   Compile checking out/src/sercon.o\r\n>   Compile checking out/src/clock.o\r\n>   Compile checking out/src/resume.o\r\n>   Compile checking out/src/pnpbios.o\r\n>   Compile checking out/src/vgahooks.o\r\n>   Compile checking out/src/pcibios.o\r\n>   Compile checking out/src/apm.o\r\n>   Compile checking out/src/cp437.o\r\n>   Compile checking out/src/hw/pci.o\r\n>   Compile checking out/src/hw/timer.o\r\n>   Compile checking out/src/hw/rtc.o\r\n>   Compile checking out/src/hw/dma.o\r\n>   Compile checking out/src/hw/pic.o\r\n>   Compile checking out/src/hw/ps2port.o\r\n>   Compile checking out/src/hw/serialio.o\r\n>   Compile checking out/src/hw/usb.o\r\n>   Compile checking out/src/hw/usb-uhci.o\r\n>   Compile checking out/src/hw/usb-ohci.o\r\n>   Compile checking out/src/hw/usb-ehci.o\r\n>   Compile checking out/src/hw/usb-hid.o\r\n>   Compile checking out/src/hw/usb-msc.o\r\n>   Compile checking out/src/hw/usb-uas.o\r\n>   Compile checking out/src/hw/blockcmd.o\r\n>   Compile checking out/src/hw/floppy.o\r\n>   Compile checking out/src/hw/ata.o\r\n>   Compile checking out/src/hw/ramdisk.o\r\n>   Compile checking out/src/hw/lsi-scsi.o\r\n>   Compile checking out/src/hw/esp-scsi.o\r\n>   Compile checking out/src/hw/megasas.o\r\n>   Compile checking out/src/hw/mpt-scsi.o\r\n>   Compile checking out/src/post.o\r\n>   Compile checking out/src/e820map.o\r\n>   Compile checking out/src/malloc.o\r\n>   Compile checking out/src/romfile.o\r\n>   Compile checking out/src/x86.o\r\n>   Compile checking out/src/optionroms.o\r\n>   Compile checking out/src/pmm.o\r\n>   Compile checking out/src/font.o\r\n>   Compile checking out/src/boot.o\r\n>   Compile checking out/src/bootsplash.o\r\n>   Compile checking out/src/jpeg.o\r\n>   Compile checking out/src/bmp.o\r\n>   Compile checking out/src/tcgbios.o\r\n>   Compile checking out/src/sha1.o\r\n>   Compile checking out/src/hw/pcidevice.o\r\n>   Compile checking out/src/hw/ahci.o\r\n>   Compile checking out/src/hw/pvscsi.o\r\n>   Compile checking out/src/hw/usb-xhci.o\r\n>   Compile checking out/src/hw/usb-hub.o\r\n>   Compile checking out/src/hw/sdcard.o\r\n>   Compile checking out/src/fw/coreboot.o\r\n>   Compile checking out/src/fw/lzmadecode.o\r\n>   Compile checking out/src/fw/multiboot.o\r\n>   Compile checking out/src/fw/csm.o\r\n>   Compile checking out/src/fw/biostables.o\r\n>   Compile checking out/src/fw/paravirt.o\r\n>   Compile checking out/src/fw/shadow.o\r\n>   Compile checking out/src/fw/pciinit.o\r\n>   Compile checking out/src/fw/smm.o\r\n>   Compile checking out/src/fw/smp.o\r\n>   Compile checking out/src/fw/mtrr.o\r\n>   Compile checking out/src/fw/xen.o\r\n>   Compile checking out/src/fw/acpi.o\r\n>   Compile checking out/src/fw/mptable.o\r\n>   Compile checking out/src/fw/pirtable.o\r\n>   Compile checking out/src/fw/smbios.o\r\n>   Compile checking out/src/fw/romfile_loader.o\r\n>   Compile checking out/src/hw/virtio-ring.o\r\n>   Compile checking out/src/hw/virtio-pci.o\r\n>   Compile checking out/src/hw/virtio-blk.o\r\n>   Compile checking out/src/hw/virtio-scsi.o\r\n>   Compile checking out/src/hw/tpm_drivers.o\r\n>   Compile checking out/src/hw/nvme.o\r\n>   Compiling whole program out/code32seg.o\r\n>   Generating offset file out/asm-offsets.h\r\n>   Compiling whole program out/ccode16.o\r\n>   Compiling (16bit) out/romlayout.o\r\n>   Compiling whole program out/ccode32flat.o\r\n>   Building ld scripts\r\n>   Compiling IASL src/fw/acpi-dsdt.hex\r\n> make[1]: warning: jobserver unavailable: using -j1.  Add '+' to parent make rule.\r\n>   Compiling IASL src/fw/ssdt-proc.hex\r\n>   Build Kconfig config file\r\n>   Compiling IASL src/fw/ssdt-misc.hex\r\n>   Compiling IASL src/fw/ssdt-pcihp.hex\r\n>   Compile checking out/src/misc.o\r\n>   Compile checking out/src/stacks.o\r\n>   Compile checking out/src/output.o\r\n>   Compile checking out/src/string.o\r\n>   Compile checking out/src/block.o\r\n>   Compile checking out/src/cdrom.o\r\n>   Compile checking out/src/disk.o\r\n>   Compile checking out/src/mouse.o\r\n>   Compile checking out/src/kbd.o\r\n>   Compile checking out/src/system.o\r\n>   Compile checking out/src/serial.o\r\n>   Compile checking out/src/sercon.o\r\n>   Compile checking out/src/clock.o\r\n>   Compile checking out/src/resume.o\r\n>   Compile checking out/src/pnpbios.o\r\n>   Compile checking out/src/vgahooks.o\r\n>   Compile checking out/src/pcibios.o\r\n>   Compile checking out/src/apm.o\r\n>   Compile checking out/src/cp437.o\r\n>   Compile checking out/src/hw/pci.o\r\n> out/src/fw/ssdt-proc.dsl.i     15:     Proce  Compile checking out/src/hw/timer.o\r\n> ssor(CPAA, 0xAA, 0x0000b010, 0x06) {\r\n> Warning  3168 -                                    ^ Legacy Processor() keyword detected. Use Device() keyword instead.\r\n>\r\n> ASL Input:     out/src/fw/ssdt-proc.dsl.i -     762 bytes      8 keywords     36 source lines\r\n> AML Output:    out/src/fw/ssdt-proc.aml -     162 bytes      2 opcodes       6 named objects\r\n> Listing File:  out/src/fw/ssdt-proc.lst -    3369 bytes\r\n> Hex Dump:      out/src/fw/ssdt-proc.hex -    1995 bytes\r\n>\r\n> Compilation successful. 0 Errors, 1 Warnings, 0 Remarks, 0 Optimizations\r\n> ASL Input:     out/src/fw/ssdt-misc.dsl.i -    2565 bytes     35 keywords    102 source lines\r\n> AML Output:    out/src/fw/ssdt-misc.aml -     388 bytes     11 opcodes      24 named objects\r\n> Listing File:  out/src/fw/ssdt-misc.lst -    7622 bytes\r\n> Hex Dump:      out/src/fw/ssdt-misc.hex -    4096 bytes\r\n>\r\n> Compilation successful. 0 Errors, 0 Warnings, 0 Remarks, 2 Optimizations\r\n>   Compile checking out/src/hw/rtc.o\r\n> ASL Input:     out/src/fw/ssdt-pcihp.dsl.i -     755 bytes      5 keywords     37 source lines\r\n> AML Output:    out/src/fw/ssdt-pcihp.aml -     121 bytes      0 opcodes       5 named objects\r\n> Listing File:  out/src/fw/ssdt-pcihp.lst -    2727 bytes\r\n> Hex Dump:      out/src/fw/ssdt-pcihp.hex -    1624 bytes\r\n>\r\n> Compilation successful. 0 Errors, 0 Warnings, 0 Remarks, 0 Optimizations\r\n>   Compile checking out/src/hw/dma.o\r\n> out/src/fw/acpi-dsdt.dsl.i     31:         Device(PCI0) {\r\n> Warning  3073 -                      Multiple types ^  (Device object requires either a _HID or _ADR, but not both)\r\n>\r\n> out/src/fw/acpi-dsdt.dsl.i    361:             Name(PRR0, ResourceTemplate() {\r\n> Remark   2173 -                                       ^ Creation of named objects within a method is highly inefficient, use globals or method local variables instead (\\_SB.IQCR)\r\n>\r\n> out/src/fw/acpi-dsdt.dsl.i    405:     Method(CPEJ, 2, NotSerialized) {\r\n> Remark   2146 -   Method Argument is never used ^  (Arg0)\r\n>\r\n> out/src/fw/acpi-dsdt.dsl.i    405:     Method(CPEJ, 2, NotSerialized) {\r\n> Remark   2146 -   Method Argument is never used ^  (Arg1)\r\n>\r\n> ASL Input:     out/src/fw/acpi-dsdt.dsl.i -   19153 bytes    315 keywords    475 source lines\r\n> AML Output:    out/src/fw/acpi-dsdt.aml -    4585 bytes    156 opcodes     159 named objects\r\n> Listing File:  out/src/fw/acpi-dsdt.lst -   67530 bytes\r\n> Hex Dump:      out/src/fw/acpi-dsdt.hex -   43472 bytes\r\n>\r\n> Compilation successful. 0 Errors, 1 Warnings, 3 Remarks, 246 Optimizations\r\n>   Compile checking out/src/hw/pic.o\r\n>   Compile checking out/src/hw/ps2port.o\r\n>   Compile checking out/src/hw/serialio.o\r\n>   Compile checking out/src/hw/usb.o\r\n>   Compile checking out/src/hw/usb-uhci.o\r\n>   Compile checking out/src/hw/usb-ohci.o\r\n>   Compile checking out/src/hw/usb-ehci.o\r\n>   Compile checking out/src/hw/usb-hid.o\r\n>   Compile checking out/src/hw/usb-msc.o\r\n>   Compile checking out/src/hw/usb-uas.o\r\n>   Compile checking out/src/hw/blockcmd.o\r\n>   Compile checking out/src/hw/floppy.o\r\n>   Compile checking out/src/hw/ata.o\r\n>   Compile checking out/src/hw/ramdisk.o\r\n>   Compile checking out/src/hw/lsi-scsi.o\r\n>   Compile checking out/src/hw/esp-scsi.o\r\n>   Compile checking out/src/hw/megasas.o\r\n>   Compile checking out/src/hw/mpt-scsi.o\r\n>   Compile checking out/src/post.o\r\n>   Compile checking out/src/e820map.o\r\n>   Compile checking out/src/malloc.o\r\n>   Compile checking out/src/romfile.o\r\n>   Compile checking out/src/x86.o\r\n>   Compile checking out/src/optionroms.o\r\n>   Compile checking out/src/pmm.o\r\n>   Compile checking out/src/font.o\r\n>   Compile checking out/src/boot.o\r\n>   Compile checking out/src/bootsplash.o\r\n>   Compile checking out/src/jpeg.o\r\n>   Compile checking out/src/bmp.o\r\n>   Compile checking out/src/tcgbios.o\r\n>   Compile checking out/src/sha1.o\r\n> src/post.c: In function 'reloc_preinit':\r\n> src/post.c:248:34: warning: array subscript 'u32 {aka unsigned int}[0]' is partly outside array bounds of 'char[1]' [-Warray-bounds]\r\n>   248 |         *((u32*)(dest + *reloc)) += delta;\r\n>       |                                  ^~\r\n> In file included from src/biosvar.h:11,\r\n>                  from src/post.c:8:\r\n> src/post.c:278:26: note: while referencing 'code32flat_start'\r\n>   278 |     updateRelocs(VSYMBOL(code32flat_start), VSYMBOL(_reloc_init_start)\r\n>       |                          ^~~~~~~~~~~~~~~~\r\n> src/memmap.h:18:36: note: in definition of macro 'SYMBOL'\r\n>    18 | #define SYMBOL(SYM) ({ extern char SYM; (u32)&SYM; })\r\n>       |                                    ^~~\r\n> src/post.c:278:18: note: in expansion of macro 'VSYMBOL'\r\n>   278 |     updateRelocs(VSYMBOL(code32flat_start), VSYMBOL(_reloc_init_start)\r\n>       |                  ^~~~~~~\r\n> src/post.c:248:34: warning: array subscript 'u32 {aka unsigned int}[0]' is partly outside array bounds of 'char[1]' [-Warray-bounds]\r\n>   248 |         *((u32*)(dest + *reloc)) += delta;\r\n>       |         ~~~~~~~~~~~~~~~~~~~~~~~~~^~~~~~~~\r\n> In file included from src/biosvar.h:11,\r\n>                  from src/post.c:8:\r\n> src/post.c:278:26: note: while referencing 'code32flat_start'\r\n>   278 |     updateRelocs(VSYMBOL(code32flat_start), VSYMBOL(_reloc_init_start)\r\n>       |                          ^~~~~~~~~~~~~~~~\r\n> src/memmap.h:18:36: note: in definition of macro 'SYMBOL'\r\n>    18 | #define SYMBOL(SYM) ({ extern char SYM; (u32)&SYM; })\r\n>       |                                    ^~~\r\n> src/post.c:278:18: note: in expansion of macro 'VSYMBOL'\r\n>   278 |     updateRelocs(VSYMBOL(code32flat_start), VSYMBOL(_reloc_init_start)\r\n>       |                  ^~~~~~~\r\n>   Compile checking out/src/hw/pcidevice.o\r\n>   Compile checking out/src/hw/ahci.o\r\n>   Compile checking out/src/hw/pvscsi.o\r\n>   Compile checking out/src/hw/usb-xhci.o\r\n>   Compile checking out/src/hw/usb-hub.o\r\n>   Compile checking out/src/hw/sdcard.o\r\n>   Compile checking out/src/fw/coreboot.o\r\n>   Compile checking out/src/fw/lzmadecode.o\r\n>   Compile checking out/src/fw/multiboot.o\r\n>   Compile checking out/src/fw/csm.o\r\n>   Compile checking out/src/fw/biostables.o\r\n>   Compile checking out/src/fw/paravirt.o\r\n>   Compile checking out/src/fw/shadow.o\r\n>   Compile checking out/src/fw/pciinit.o\r\n>   Compile checking out/src/fw/smm.o\r\n>   Compile checking out/src/fw/smp.o\r\n>   Compile checking out/src/fw/mtrr.o\r\n>   Compile checking out/src/fw/xen.o\r\n>   Compile checking out/src/fw/acpi.o\r\n>   Compile checking out/src/fw/mptable.o\r\n>   Compile checking out/src/fw/pirtable.o\r\n>   Compile checking out/src/fw/smbios.o\r\n>   Compile checking out/src/fw/romfile_loader.o\r\n>   Compile checking out/src/hw/virtio-ring.o\r\n>   Compile checking out/src/hw/virtio-pci.o\r\n> src/tcgbios.c: In function 'tpm20_write_EfiSpecIdEventStruct':\r\n> src/tcgbios.c:290:30: warning: array subscript 'be32_to_cpu (_19) + 4294967295' is outside the bounds of an interior zero-length array 'struct TCG_EfiSpecIdEventAlgorithmSize[0]' [-Wzero-length-bounds]\r\n>   290 |         event.hdr.digestSizes[count].algorithmId = be16_to_cpu(sel->hashAlg);\r\n>       |         ~~~~~~~~~~~~~~~~~~~~~^~~~~~~\r\n> In file included from src/tcgbios.c:22:\r\n> src/std/tcg.h:527:7: note: while referencing 'digestSizes'\r\n>   527 |     } digestSizes[0];\r\n>       |       ^~~~~~~~~~~\r\n>   Compile checking out/src/hw/virtio-blk.o\r\n> src/tcgbios.c:291:30: warning: array subscript 'be32_to_cpu (_19) + 4294967295' is outside the bounds of an interior zero-length array 'struct TCG_EfiSpecIdEventAlgorithmSize[0]' [-Wzero-length-bounds]\r\n>   291 |         event.hdr.digestSizes[count].digestSize = hsize;\r\n>       |         ~~~~~~~~~~~~~~~~~~~~~^~~~~~~\r\n> In file included from src/tcgbios.c:22:\r\n> src/std/tcg.h:527:7: note: while referencing 'digestSizes'\r\n>   527 |     } digestSizes[0];\r\n>       |       ^~~~~~~~~~~\r\n> In file included from src/fw/mptable.c:17:\r\n> src/fw/mptable.c: In function 'mptable_setup':\r\n> src/string.h:23:16: warning: '__builtin_memcpy' forming offset 7 is out of the bounds [0, 7] [-Warray-bounds]\r\n>    23 | #define memcpy __builtin_memcpy\r\n> src/fw/mptable.c:38:5: note: in expansion of macro 'memcpy'\r\n>    38 |     memcpy(config->oemid, BUILD_CPUNAME8, sizeof(config->oemid));\r\n>       |     ^~~~~~\r\n>   Compile checking out/src/hw/virtio-scsi.o\r\n>   Compile checking out/src/hw/tpm_drivers.o\r\n>   Compile checking out/src/hw/nvme.o\r\n>   Compiling whole program out/code32seg.o\r\n>   Compiling (16bit) out/romlayout.o\r\n>   Compiling whole program out/ccode16.o\r\n> In file included from src/fw/acpi.c:21:\r\n> src/fw/acpi.c: In function 'build_header.constprop':\r\n> src/string.h:23:16: warning: '__builtin_memcpy' forming offset 5 is out of the bounds [0, 5] [-Warray-bounds]\r\n>    23 | #define memcpy __builtin_memcpy\r\n> src/fw/acpi.c:33:5: note: in expansion of macro 'memcpy'\r\n>    33 |     memcpy(h->oem_id, BUILD_APPNAME6, 6);\r\n>       |     ^~~~~~\r\n> src/fw/acpi.c: In function 'acpi_setup':\r\n> src/string.h:23:16: warning: '__builtin_memcpy' forming offset 5 is out of the bounds [0, 5] [-Warray-bounds]\r\n>    23 | #define memcpy __builtin_memcpy\r\n> src/fw/acpi.c:681:5: note: in expansion of macro 'memcpy'\r\n>   681 |     memcpy(rsdp.oem_id, BUILD_APPNAME6, 6);\r\n>       |     ^~~~~~\r\n>   Compiling whole program out/ccode32flat.o\r\n> In file included from out/ccode32flat.o.tmp.c:54:\r\n> ./src/tcgbios.c: In function 'tpm20_write_EfiSpecIdEventStruct':\r\n> ./src/tcgbios.c:290:30: warning: array subscript 'be32_to_cpu (_19) + 4294967295' is outside the bounds of an interior zero-length array 'struct TCG_EfiSpecIdEventAlgorithmSize[0]' [-Wzero-length-bounds]\r\n>   290 |         event.hdr.digestSizes[count].algorithmId = be16_to_cpu(sel->hashAlg);\r\n>       |         ~~~~~~~~~~~~~~~~~~~~~^~~~~~~\r\n> In file included from ./src/tcgbios.c:22,\r\n>                  from out/ccode32flat.o.tmp.c:54:\r\n> ./src/std/tcg.h:527:7: note: while referencing 'digestSizes'\r\n>   527 |     } digestSizes[0];\r\n>       |       ^~~~~~~~~~~\r\n> In file included from out/ccode32flat.o.tmp.c:54:\r\n> ./src/tcgbios.c:291:30: warning: array subscript 'be32_to_cpu (_19) + 4294967295' is outside the bounds of an interior zero-length array 'struct TCG_EfiSpecIdEventAlgorithmSize[0]' [-Wzero-length-bounds]\r\n>   291 |         event.hdr.digestSizes[count].digestSize = hsize;\r\n>       |         ~~~~~~~~~~~~~~~~~~~~~^~~~~~~\r\n> In file included from ./src/tcgbios.c:22,\r\n>                  from out/ccode32flat.o.tmp.c:54:\r\n> ./src/std/tcg.h:527:7: note: while referencing 'digestSizes'\r\n>   527 |     } digestSizes[0];\r\n>       |       ^~~~~~~~~~~\r\n> In file included from out/ccode32flat.o.tmp.c:4:\r\n> ./src/fw/acpi.c: In function 'build_header.constprop':\r\n> ./src/string.c:156:16: warning: '__builtin_memcpy' forming offset 5 is out of the bounds [0, 5] [-Warray-bounds]\r\n>   156 | #define memcpy __builtin_memcpy\r\n> ./src/fw/acpi.c:33:5: note: in expansion of macro 'memcpy'\r\n>    33 |     memcpy(h->oem_id, BUILD_APPNAME6, 6);\r\n>       |     ^~~~~~\r\n> In function 'mptable_setup',\r\n>     inlined from 'qemu_platform_setup' at ./src/fw/paravirt.c:180:9:\r\n> ./src/string.c:156:16: warning: '__builtin_memcpy' forming offset 7 is out of the bounds [0, 7] [-Warray-bounds]\r\n>   156 | #define memcpy __builtin_memcpy\r\n> ./src/fw/mptable.c:38:5: note: in expansion of macro 'memcpy'\r\n>    38 |     memcpy(config->oemid, BUILD_CPUNAME8, sizeof(config->oemid));\r\n>       |     ^~~~~~\r\n> In function 'acpi_setup',\r\n>     inlined from 'qemu_platform_setup' at ./src/fw/paravirt.c:204:5:\r\n> ./src/string.c:156:16: warning: '__builtin_memcpy' forming offset 5 is out of the bounds [0, 5] [-Warray-bounds]\r\n>   156 | #define memcpy __builtin_memcpy\r\n> ./src/fw/acpi.c:681:5: note: in expansion of macro 'memcpy'\r\n>   681 |     memcpy(rsdp.oem_id, BUILD_APPNAME6, 6);\r\n>       |     ^~~~~~\r\n> In file included from out/ccode32flat.o.tmp.c:42:\r\n> ./src/post.c: In function 'dopost':\r\n> ./src/post.c:248:34: warning: array subscript 'u32 {aka unsigned int}[0]' is partly outside array bounds of 'char[1]' [-Warray-bounds]\r\n>   248 |         *((u32*)(dest + *reloc)) += delta;\r\n>       |                                  ^~\r\n> In file included from ./src/biosvar.h:11,\r\n>                  from ./src/misc.c:8,\r\n>                  from out/ccode32flat.o.tmp.c:1:\r\n> ./src/fw/shadow.c:190:29: note: while referencing 'code32flat_start'\r\n>   190 |         u32 cstart = SYMBOL(code32flat_start), cend = SYMBOL(code32flat_end);\r\n>       |                             ^~~~~~~~~~~~~~~~\r\n> ./src/memmap.h:18:36: note: in definition of macro 'SYMBOL'\r\n>    18 | #define SYMBOL(SYM) ({ extern char SYM; (u32)&SYM; })\r\n>       |                                    ^~~\r\n> In file included from out/ccode32flat.o.tmp.c:42:\r\n> ./src/post.c:248:34: warning: array subscript 'u32 {aka unsigned int}[0]' is partly outside array bounds of 'char[1]' [-Warray-bounds]\r\n>   248 |         *((u32*)(dest + *reloc)) += delta;\r\n>       |         ~~~~~~~~~~~~~~~~~~~~~~~~~^~~~~~~~\r\n> In file included from ./src/biosvar.h:11,\r\n>                  from ./src/misc.c:8,\r\n>                  from out/ccode32flat.o.tmp.c:1:\r\n> ./src/fw/shadow.c:190:29: note: while referencing 'code32flat_start'\r\n>   190 |         u32 cstart = SYMBOL(code32flat_start), cend = SYMBOL(code32flat_end);\r\n>       |                             ^~~~~~~~~~~~~~~~\r\n> ./src/memmap.h:18:36: note: in definition of macro 'SYMBOL'\r\n>    18 | #define SYMBOL(SYM) ({ extern char SYM; (u32)&SYM; })\r\n>       |                                    ^~~\r\n>   Building ld scripts\r\n> Version: rel-1.13.0-0-gf21b5a4-dirty-20230626_175724-sandbox\r\n> Fixed space: 0xe05b-0x10000  total: 8101  slack: 11  Percent slack: 0.1%\r\n> 16bit size:           37952\r\n> 32bit segmented size: 2221\r\n> 32bit flat size:      43667\r\n> 32bit flat init size: 77760\r\n> Lowmem size:          2240\r\n> f-segment var size:   1248\r\n>   Linking out/rom16.o\r\n>   Linking out/rom32seg.o\r\n>   Stripping out/rom32seg.strip.o\r\n>   Stripping out/rom16.strip.o\r\n>   Linking out/rom.o\r\n> ld: cannot use executable file 'out/rom16.strip.o' as input to a link\r\n> make: *** [Makefile:187: out/rom.o] Error 1\r\n> [-] Bios compilation failed\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1618#issuecomment-1608382974>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH35MYN4KXS62N523AODXNIBV3ANCNFSM6AAAAAAZNT35HU>\r\n> .\r\n> You are receiving this because you were mentioned.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: @doomedraven Thanks. In the meantime, can you reopen this issue so others are aware of the issue and the workaround without digging through closed tickets? That would help prevent duplicate issue reports too.",
+  "Title: We should free the memory with CoTaskMemFree().\nBody: https://github.com/kevoreilly/CAPEv2/blob/ff3cdbe06f4a99f3b7433146f79cc7d4c27f4e67/analyzer/windows/modules/auxiliary/recentfiles.py#L57\n\n```python\n\n# Copyright (C) 2016-2017 Cuckoo Foundation.\n# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org\n# See the file 'docs/LICENSE' for copying permission.\n\nimport ctypes\nimport logging\nimport os\nimport random\nfrom uuid import UUID\n\nfrom lib.common.abstracts import Auxiliary\nfrom lib.common.defines import SHELL32, SHARD_PATHA, PWSTR\nfrom lib.common.rand import random_string\nfrom lib.common.registry import set_regkey_full\nfrom lib.core.config import Config\n\nlog = logging.getLogger(__name__)\n\n\nclass RecentFiles(Auxiliary):\n    \"\"\"Populate the Desktop with recent files in order to combat recent\n    anti-sandbox measures.\"\"\"\n\n    extensions = [\n        \"txt\", \"rtf\", \"doc\", \"docx\", \"docm\", \"ppt\", \"pptx\",\n    ]\n\n    locations = {\n        \"desktop\": \"{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}\",\n        \"documents\": \"{FDD39AD0-238F-46AF-ADB4-6C85480369C7}\",\n        \"downloads\": \"{374DE290-123F-4565-9164-39C4925E467B}\",\n    }\n\n    def __init__(self, options, config):\n        Auxiliary.__init__(self, options, config)\n        self.config = Config(cfg=\"analysis.conf\")\n        self.enabled = self.config.recentfiles\n\n    def get_path(self):\n        location = self.options.get(\"recentfiles\", \"documents\")\n        if location not in self.locations:\n            log.warning(\n                \"Unknown RecentFiles location specified, \"\n                \"defaulting to 'documents'.\"\n            )\n            location = \"documents\"\n\n        dirpath = PWSTR()\n        r = SHELL32.SHGetKnownFolderPath(\n            UUID(self.locations[location]).bytes_le,\n            0, None, ctypes.byref(dirpath)\n        )\n        if r:\n            log.warning(\"Error obtaining user directory: 0x%08x\", r)\n            return\n\n        # TODO We should free the memory with CoTaskMemFree().\n        return dirpath.value\n\n    def start(self):\n        if not self.enabled:\n            return\n\n        dirpath = self.get_path()\n        if not dirpath:\n            return\n\n        for idx in range(random.randint(5, 10)):\n            filename = random_string(10, random.randint(10, 20))\n            ext = random.choice(self.extensions)\n            filepath = os.path.join(dirpath, \"%s.%s\" % (filename, ext))\n            open(filepath, \"wb\").write(os.urandom(random.randint(30, 999999)))\n            log.debug(\"Wrote 'recentfile' %s to disk.\" % filepath)\n\n            SHELL32.SHAddToRecentDocs(SHARD_PATHA, filepath)\n\n            set_regkey_full(\n                \"HKEY_CURRENT_USER\\\\Software\\\\Microsoft\\\\Office\\\\14.0\\\\\"\n                \"Word\\\\File MRU\\\\Item %d\" % (idx + 1),\n                \"REG_SZ\", \"[F00000000][T01D1C40000000000]*%s\" % filepath,\n            )\n\n\n```",
+  "Title: Update check_tcpdump_permissions.\nBody: Follow-up to https://github.com/kevoreilly/CAPEv2/pull/1610",
+  "Title: Update/recentfiles\nBody: Migrating the `recentfiles` auxiliary module from Cuckoo\nComment: Thanks, we dont need to modify not default configs ",
+  "Title: auxiliary_modules settings in conf/auxiliary.conf are not honored\nBody: While I was trying to debug issue #1588 and https://github.com/kevoreilly/CAPEv2/issues/1587#issuecomment-1595346103, I noticed that a bunch of auxiliary modules that I had set to `no` were still running anyway (including `tlsdump`), according to the analysis log with `debug=2` set\r\n\r\n```ini\r\n[auxiliary_modules]\r\nbrowser = yes\r\ncurtain = no\r\ndigisig = yes\r\ndisguise = yes\r\nevtx = no\r\nhuman_windows = no\r\nhuman_linux = no\r\nprocmon = no\r\nscreenshots_windows = yes\r\nscreenshots_linux = yes\r\nsysmon_windows = no\r\nsysmon_linux = no\r\ntlsdump = no\r\nusage = no\r\nfile_pickup = no\r\npermissions = no\r\npre_script = no\r\nduring_script = no\r\nstap = no\r\nfilecollector = yes\r\n```\r\n\r\n```log\r\n2023-06-16 20:16:44,111 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.browser\"...\r\n2023-06-16 20:16:44,111 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.curtain\"...\r\n2023-06-16 20:16:44,127 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.digisig\"...\r\n2023-06-16 20:16:44,127 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.disguise\"...\r\n2023-06-16 20:16:44,158 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.during_script\"...\r\n2023-06-16 20:16:44,158 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.evtx\"...\r\n2023-06-16 20:16:44,174 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.filepickup\"...\r\n2023-06-16 20:16:44,174 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.human\"...\r\n2023-06-16 20:16:44,174 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.permissions\"...\r\n2023-06-16 20:16:44,190 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.pre_script\"...\r\n2023-06-16 20:16:44,190 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.procmon\"...\r\n2023-06-16 20:16:44,190 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.screenshots\"...\r\n2023-06-16 20:16:44,190 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageChops'\r\n2023-06-16 20:16:44,564 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageGrab'\r\n2023-06-16 20:16:44,564 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageDraw'\r\n2023-06-16 20:16:45,080 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.sysmon\"...\r\n2023-06-16 20:16:45,096 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.tlsdump\"...\r\n2023-06-16 20:16:45,096 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.usage\"...\r\n2023-06-16 20:16:45,236 [root] DEBUG: Initialized auxiliary module \"Browser\"\r\n2023-06-16 20:16:45,236 [root] DEBUG: Trying to start auxiliary module \"Browser\"...\r\n2023-06-16 20:16:45,283 [root] DEBUG: Started auxiliary module \"Browser\"\r\n2023-06-16 20:16:45,283 [root] DEBUG: Started auxiliary module Browser\r\n2023-06-16 20:16:45,283 [root] DEBUG: Initialized auxiliary module \"Curtain\"\r\n2023-06-16 20:16:45,283 [root] DEBUG: Trying to start auxiliary module \"Curtain\"...\r\n2023-06-16 20:16:45,299 [root] DEBUG: Started auxiliary module \"Curtain\"\r\n2023-06-16 20:16:45,299 [root] DEBUG: Started auxiliary module Curtain\r\n2023-06-16 20:16:45,299 [root] DEBUG: Initialized auxiliary module \"DigiSig\"\r\n2023-06-16 20:16:45,299 [root] DEBUG: Trying to start auxiliary module \"DigiSig\"...\r\n2023-06-16 20:16:45,299 [modules.auxiliary.digisig] DEBUG: Skipping authenticode validation, analysis is not a file\r\n2023-06-16 20:16:45,299 [root] DEBUG: Started auxiliary module \"DigiSig\"\r\n2023-06-16 20:16:45,299 [root] DEBUG: Started auxiliary module DigiSig\r\n2023-06-16 20:16:45,299 [root] DEBUG: Initialized auxiliary module \"Disguise\"\r\n2023-06-16 20:16:45,299 [root] DEBUG: Trying to start auxiliary module \"Disguise\"...\r\n2023-06-16 20:16:45,346 [modules.auxiliary.disguise] INFO: Disguising GUID to 69070c12-0780-4a92-bf8d-85e694b91e8e\r\n2023-06-16 20:16:45,346 [root] DEBUG: Started auxiliary module \"Disguise\"\r\n2023-06-16 20:16:45,346 [root] DEBUG: Started auxiliary module Disguise\r\n2023-06-16 20:16:45,346 [root] DEBUG: Initialized auxiliary module \"Evtx\"\r\n2023-06-16 20:16:45,346 [root] DEBUG: Trying to start auxiliary module \"Evtx\"...\r\n2023-06-16 20:16:45,346 [root] DEBUG: Started auxiliary module \"Evtx\"\r\n2023-06-16 20:16:45,346 [root] DEBUG: Started auxiliary module Evtx\r\n2023-06-16 20:16:45,346 [root] DEBUG: Initialized auxiliary module \"FilePickup\"\r\n2023-06-16 20:16:45,346 [root] DEBUG: Trying to start auxiliary module \"FilePickup\"...\r\n2023-06-16 20:16:45,346 [root] DEBUG: Started auxiliary module \"FilePickup\"\r\n2023-06-16 20:16:45,346 [root] DEBUG: Started auxiliary module FilePickup\r\n2023-06-16 20:16:45,346 [root] DEBUG: Initialized auxiliary module \"Human\"\r\n2023-06-16 20:16:45,346 [root] DEBUG: Trying to start auxiliary module \"Human\"...\r\n2023-06-16 20:16:45,377 [root] DEBUG: Started auxiliary module \"Human\"\r\n2023-06-16 20:16:45,377 [root] DEBUG: Started auxiliary module Human\r\n2023-06-16 20:16:45,377 [root] DEBUG: Initialized auxiliary module \"Permissions\"\r\n2023-06-16 20:16:45,377 [root] DEBUG: Trying to start auxiliary module \"Permissions\"...\r\n2023-06-16 20:16:45,377 [root] DEBUG: Started auxiliary module \"Permissions\"\r\n2023-06-16 20:16:45,377 [root] DEBUG: Started auxiliary module Permissions\r\n2023-06-16 20:16:45,377 [root] DEBUG: Initialized auxiliary module \"Pre_script\"\r\n2023-06-16 20:16:45,377 [root] DEBUG: Trying to start auxiliary module \"Pre_script\"...\r\n2023-06-16 20:16:45,377 [root] DEBUG: Started auxiliary module \"Pre_script\"\r\n2023-06-16 20:16:45,377 [root] DEBUG: Started auxiliary module Pre_script\r\n2023-06-16 20:16:45,377 [root] DEBUG: Initialized auxiliary module \"Procmon\"\r\n2023-06-16 20:16:45,377 [root] DEBUG: Trying to start auxiliary module \"Procmon\"...\r\n2023-06-16 20:16:45,377 [root] DEBUG: Started auxiliary module \"Procmon\"\r\n2023-06-16 20:16:45,377 [root] DEBUG: Started auxiliary module Procmon\r\n2023-06-16 20:16:45,377 [root] DEBUG: Initialized auxiliary module \"Screenshots\"\r\n2023-06-16 20:16:45,377 [root] DEBUG: Trying to start auxiliary module \"Screenshots\"...\r\n2023-06-16 20:16:45,392 [root] DEBUG: Started auxiliary module \"Screenshots\"\r\n2023-06-16 20:16:45,392 [root] DEBUG: Started auxiliary module Screenshots\r\n2023-06-16 20:16:45,392 [root] DEBUG: Initialized auxiliary module \"Sysmon\"\r\n2023-06-16 20:16:45,392 [root] DEBUG: Trying to start auxiliary module \"Sysmon\"...\r\n2023-06-16 20:16:45,392 [root] DEBUG: Started auxiliary module \"Sysmon\"\r\n2023-06-16 20:16:45,392 [root] DEBUG: Started auxiliary module Sysmon\r\n2023-06-16 20:16:45,392 [root] DEBUG: Initialized auxiliary module \"TLSDumpMasterSecrets\"\r\n2023-06-16 20:16:45,392 [root] DEBUG: Trying to start auxiliary module \"TLSDumpMasterSecrets\"...\r\n2023-06-16 20:16:45,392 [modules.auxiliary.tlsdump] INFO: lsass.exe found, pid 592\r\n2023-06-16 20:16:45,471 [lib.api.process] INFO: Monitor config for process 592: C:\\tmp4fh9kuj9\\dll\\592.ini\r\n2023-06-16 20:16:45,471 [lib.api.process] INFO: Option 'tlsdump' with value '1' sent to monitor\r\n2023-06-16 20:16:45,471 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmp4fh9kuj9\\dll\\QMadyS.dll, loader C:\\tmp4fh9kuj9\\bin\\LjlXTnzd.exe\r\n2023-06-16 20:16:45,486 [root] DEBUG: Loader: Injecting process 592 with C:\\tmp4fh9kuj9\\dll\\QMadyS.dll.\r\n2023-06-16 20:16:45,486 [root] DEBUG: Python path set to 'C:\\Program Files (x86)\\Python311-32'.\r\n2023-06-16 20:16:45,486 [root] DEBUG: TLS secret dump mode enabled.\r\n2023-06-16 20:16:45,486 [root] INFO: Disabling sleep skipping.\r\n2023-06-16 20:16:45,486 [root] DEBUG: Monitor initialised: 64-bit capemon loaded in process 592 at 0x00007FFA19AD0000, thread 5364, image base 0x00007FF6C0360000, stack from 0x000000B6A5C74000-0x000000B6A5C80000\r\n2023-06-16 20:16:45,502 [root] DEBUG: Commandline: C:\\Windows\\system32\\lsass.exe\r\n2023-06-16 20:16:45,502 [root] DEBUG: InjectDllViaThread: Successfully injected Dll into process via RtlCreateUserThread.\r\n2023-06-16 20:16:45,502 [root] DEBUG: Successfully injected DLL C:\\tmp4fh9kuj9\\dll\\QMadyS.dll.\r\n2023-06-16 20:16:45,502 [lib.api.process] INFO: Injected into 64-bit process with pid 592\r\n2023-06-16 20:16:45,502 [root] DEBUG: Started auxiliary module \"TLSDumpMasterSecrets\"\r\n2023-06-16 20:16:45,502 [root] DEBUG: Started auxiliary module TLSDumpMasterSecrets\r\n2023-06-16 20:16:45,502 [root] DEBUG: Initialized auxiliary module \"Usage\"\r\n2023-06-16 20:16:45,502 [root] DEBUG: Trying to start auxiliary module \"Usage\"...\r\n2023-06-16 20:16:45,502 [root] DEBUG: Started auxiliary module \"Usage\"\r\n2023-06-16 20:16:45,502 [root] DEBUG: Started auxiliary module Usage\r\n2023-06-16 20:16:45,502 [root] DEBUG: Initialized auxiliary module \"During_script\"\r\n2023-06-16 20:16:45,502 [root] DEBUG: Trying to start auxiliary module \"During_script\"...\r\n2023-06-16 20:16:45,502 [root] DEBUG: Started auxiliary module \"During_script\"\r\n2023-06-16 20:16:45,502 [root] DEBUG: Started auxiliary module During_script\r\n2023-06-16 20:16:45,533 [root] DEBUG: TLS 1.2 secrets logged to: C:\\oXUgVQmtBY\\tlsdump\\tlsdump.log\r\n2023-06-16 20:16:51,247 [root] INFO: Restarting WMI Service\r\n```\r\n\nComment: Do you happen to have another auxiliary conf in custom/conf?\r\n\nComment: Nope. Nothing in custom/conf other than README.md\nComment: Turns out it is being honored, just logged incorrectly.",
+  "Title: A simple guide to configuring Guacamole to work with ESXi virtualization.\nBody: This is a simple guide on how to configure Guacamole to work with ESXi within CAPEv2. Even if you are NOT using ESXi, a lot of this information can help you to configure it manually yourself as well so don't turn away! By default, after running the guacamole installation script (and following the read docs page found here: https://capev2.readthedocs.io/en/latest/usage/interactive_desktop.html) Guacamole's Interactive session will not be able to connect to your virtual machine. This is because unlike with the analysis portion of CAPE, Guacamole is really only developed to look through localhost for connections. The following adjustments must be made to remediate this issue and allow an external connection for interactive session:\r\n\r\nYou will have to make changes to the following files found within /CAPEv2/web/guac/. \r\n\r\nviews.py:\r\n[views.txt](https://github.com/kevoreilly/CAPEv2/files/11775813/views.txt)\r\n\r\n```\r\nfrom base64 import urlsafe_b64decode\r\nfrom xml.etree import ElementTree as ET\r\nfrom lib.cuckoo.common.config import Config\r\n\r\nfrom django.shortcuts import render\r\n\r\nweb_cfg = Config(\"web\")\r\n\r\ntry:\r\n    import libvirt\r\nexcept ImportError:\r\n    print(\"Missed python-libvirt. Use extra/poetry_libvirt_installer.sh\")\r\n\r\ndef index(request, task_id, session_data):\r\n    machines_and_ports = web_cfg.guacamole.labels_and_ports\r\n    machine_list = machines_and_ports.split()\r\n    machine_pairings = []\r\n    machine_pairings = [item.split(\":\") for item in machine_list]\r\n    labelSize = len(machine_pairings)\r\n    vncport = 0\r\n    try:\r\n        session_id, label, guest_ip = urlsafe_b64decode(session_data).decode(\"utf8\").split(\"|\")\r\n        recording_name = f\"{task_id}_{session_id}\"\r\n        for x in range(labelSize):\r\n            if (label == machine_pairings[x][0]):\r\n                vncport = int(machine_pairings[x][1])\r\n        if (vncport == 0):\r\n            print(\"======================\")\r\n            print(label)\r\n            print(machine_pairings[x][0])\r\n            print(\"Machine Label not found. Check configuration within /opt/CAPEv2/custom/conf/web.conf and ensure the name is provided there correctly. Expected format is VirtualMachineName:VNCPortNumber.\")\r\n            print(\"======================\")\r\n    except Exception as e:\r\n        return render(\r\n            request,\r\n            \"guac/error.html\",\r\n            {\"error_msg\": f\"{e}\", \"error\": \"remote session\", \"task_id\": task_id},\r\n        )\r\n    return render(\r\n        request,\r\n        \"guac/index.html\",\r\n           {\r\n                \"vncport\": vncport,\r\n                \"session_id\": session_id,\r\n                \"task_id\": task_id,\r\n                \"recording_name\": recording_name,\r\n                \"guest_ip\": guest_ip,\r\n            },\r\n        )\r\n```\r\n\r\nAt the time of uploading this, you can simply replace your views.py within that folder with the one I have provided and that will fix all your issues. Additional configuration is required within the web.conf folder to allow Guacamole to bridge the connection to your analysis virtual machine shown below. Keep in mind this is a bit of an ugly hack, but for the purposes I require it works perfectly! If you are reading this far in the future, there may be small changes you need to make to fix this implementation, but most of the logic that this script sends out is identical to what was originally found in views.py, the only change is how we get that data. \r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/95260807/2191af8a-a3a1-4866-98c5-527ea3a149c7)\r\n\r\nThe highlighted lines will have to be added and configured to mirror your actual setup of course. MachineName is the actual name of the virtual machine. The VNC port will have to be allowed not only within ESXi's firewall but through each individual machine. Remember that each VNC port must be different. An example of this configuration in action is 'win10:5901'.  \r\n\r\nIf you are having any troubles with this still after making these changes, make sure to watch the guac-web.services terminal for error information as I have added some additional logging that can be helpful in bug-fixing.  \r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/95260807/aad08c71-f636-43d2-9b86-d4874137e6c3)\r\n\r\nYou can create the following script to shortcut this process on your own system, simply copy that text into a .sh file, make sure to deactivate the guac-web.service (using systemctl stop guac-web.service) and then execute the following command from within a terminal in the same directory as the saved script.\r\n\r\nsudo -u cape ./testScript.sh\r\n\r\nFollowing these steps, you should be able to now start an analysis with interactive session and be able to make the connection! My one piece of advice is if multiple analysis are running at the same time, do not spam refresh the page as sometimes this can confuse guacamole, but if you simply open the window and interact with the session as normal, all functions should be good to go! Hope this helps!\r\n\r\nAdditional Guides and Issue posts that helped me can be found here: \r\nhttps://github.com/cuckoosandbox/cuckoo/issues/2319\r\nhttps://github.com/kevoreilly/CAPEv2/issues/1508\nComment: Big thank you to @doomedraven and @MarioRL0 would not have figured this out without them :)\nComment: Glad that you got it working, once im back from festival y will check your info and update scripts/docs.\r\n\r\nThank for info and Mario for helping you \nComment: @CarsonHrusovsky added it here so it should be out of the box https://github.com/kevoreilly/CAPEv2/pull/1620\r\ncan you please test that file before i merge to ensure that i didn't do anything wrong\nComment: i still thing that this implementation would be the best so far https://libvirt.org/drvesx.html#connections-to-the-vmware-esx-driver\r\n\r\nwhat version of esxi do you use? do you think you would be able to help us to setup that in this way?\nComment: thank you for the guide. closing as it more for future users of ESXi than actual issue\nComment: > @CarsonHrusovsky added it here so it should be out of the box #1620 can you please test that file before i merge to ensure that i didn't do anything wrong\r\n\r\nI will give this a try in my set up. Looked good from a glance but I can properly test it in a couple of days here.\r\n\r\n> i still thing that this implementation would be the best so far https://libvirt.org/drvesx.html#connections-to-the-vmware-esx-driver\r\n> \r\n> what version of esxi do you use? do you think you would be able to help us to setup that in this way?\r\n\r\nI believe we use VMWare ESXi 6.0. I had a lot of trouble bridging that gap for making a dsn connection, not really sure why. I can attempt to look at that again when I do testing for the part above. \nComment: maybe is not supported, but i see bug report in redhad from 2015 that should works. Anyway, if you want to bring that to rest of ESXi users amazing, if no, don't worry, they have your guide, is way much more that most of the users collaboration",
+  "Title: Update whitelist_domains.txt\nBody: None",
+  "Title: AWS Machinery\nBody: Hello,\r\nI am trying to use cape with a public cloud provider, I have choosen AWS. I installed all as the documentation describe. I set up the aws.py file. Cape is able to create ec2 based on my parameters and the template but it blows .. It's a bit weird\r\nThe only log I have is: \" \r\n[modules.machinery.aws] WARNING: Failed while creating new instance 'NoneType' object has no attribute 'id'. Trying again\r\n\r\nDo you have an idea ? Does someone as a config that work in a public cloud environement ?\nComment: Hey @Renizmy a few other users and myself use the Azure machinery for my CAPE setup (`az.py`). I can't speak to the AWS machinery other than it was last touched a year ago https://github.com/kevoreilly/CAPEv2/commit/a8298eaa8f7ecbd71163f0677972e60bc1408ca8. Maybe @JaminB  can assist?\nComment: Thank you for your answer. Good news ! I am not against an other cloud provider \r\nWould it be possible to find out if any features are not compatible with Azure ?\nComment: @Renizmy I'm running CAPE in a production-level system using the Azure machinery and am able to use a subset of the full CAPE feature set that fits my use case, so I can't speak to the compatibility of every feature, but I know that memory dumps of the entire VM are not available (unless there was an Azure update recently that I am not aware of)\nComment: Thank you so much for the informations. I still have a few questions. Is the use of guacamole for interactive analysis working on Azure? \r\nWhat type of deployment is preferable? \r\nDoes the \"distributed\" function of cape work well? \r\nFor the reporting database, is it better to use elasticsearch or mongodb?\nComment: 1. I haven't tried to use guacamole for interactive analysis with the Azure machinery, but I doubt it works out of the box.\r\n2. What do you mean by \"what type of deployment is preferable\"?\r\n3. I have not tested the \"distributed\" function of CAPE, but in theory it should work well independent of the machinery being used.\r\n4. Depends on your use case, I use CAPE as an intermediate system for my malware analysis, so data is never stored there for longer than an hour and I use the mongodb setup for the reporting database.\nComment: distributed cape works amazingly well as im running it in production. mongodb as we don't maintain ES\r\npreferable deployment is where you understand what are you doing, you know the technology that you use and that you can fix when you have problems, we suggest to use KVM, but if you have enough skills for others setups, you can go with that.\r\n\r\nKVM is the uniq hypervisor that is officially supported by cape devs, the rest is on community\nComment: Ok thank you so much for all the informations, I will give a try for KVM. Last question, does remote KVM works well \"as it is\" ?  (https://github.com/kevoreilly/CAPEv2/blob/master/conf/kvmremote.conf)\r\nNow I \"juste\" need a cloud provider who provide me KVM features wich do not cost 2 arms. \r\nIt could be interesting to provide the infrastructure code to set up a test platform (I will try to work on it).\nComment: I have no idea how remote kvm works, but i guess it should, i just use pure\r\nkvm. You can build a normal server in cloud with local kvm, at least on gcp\r\ni have it in that way\r\n\r\nEl mi\u00e9, 21 jun 2023, 18:57, Renizmy ***@***.***> escribi\u00f3:\r\n\r\n> Ok thank you so much for all the informations, I will give a try for KVM.\r\n> Last question, does remote KVM works well \"as it is\" ? (\r\n> https://github.com/kevoreilly/CAPEv2/blob/master/conf/kvmremote.conf)\r\n> Now I \"juste\" need a cloud provider who provide me KVM features wich do\r\n> not cost 2 arms.\r\n> It could be interesting to provide the infrastructure code to set up a\r\n> test platform (I will try to work on it).\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1611#issuecomment-1601231280>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH36VXVKQ7BQJM2ULFTTXMMRZNANCNFSM6AAAAAAZINLUQE>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: I can confirm, this setup with local KVM on a cloud server is also possible with Azure\nComment: as core devs doesn't have support to AWS, we can't fix this issue, closing. community who uses AWS must fix that",
+  "Title: Use sudo to invoke tcpdump, if possible.\nBody: Rather than having to worry about the capabilities set on tcpdump and maintaining it whenever tcpdump gets upgraded, just use sudo to invoke it. This retains backwards compatibility, so it will fall back to check if tcpdump is suid if it can't be run via sudo.\r\nUpdate the installer script to add a file to /etc/sudoers.d to configure it.\nComment: @tbeadle This broke our deployment. You shouldn't assume that `sudo` is installed (we're running CAPE containerized and there it's not available). Can you please follow up with a fix handling that case?\r\n\r\n```\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/cuckoo.py\", line 138, in <module>\r\n    cuckoo_init(quiet=args.quiet, debug=args.debug, artwork=args.artwork, test=args.test)\r\n  File \"/opt/CAPEv2/cuckoo.py\", line 86, in cuckoo_init\r\n    check_tcpdump_permissions()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/startup.py\", line 539, in check_tcpdump_permissions\r\n    subprocess.check_call([\"/usr/bin/sudo\", \"--list\", \"--non-interactive\", tcpdump])\r\n  File \"/usr/local/lib/python3.10/subprocess.py\", line 364, in check_call\r\n    retcode = call(*popenargs, **kwargs)\r\n  File \"/usr/local/lib/python3.10/subprocess.py\", line 345, in call\r\n    with Popen(*popenargs, **kwargs) as p:\r\n  File \"/usr/local/lib/python3.10/subprocess.py\", line 971, in __init__\r\n    self._execute_child(args, executable, preexec_fn, close_fds,\r\n  File \"/usr/local/lib/python3.10/subprocess.py\", line 1863, in _execute_child\r\n    raise child_exception_type(errno_num, err_msg, err_filename)\r\nFileNotFoundError: [Errno 2] No such file or directory: '/usr/bin/sudo'\r\n```",
+  "Title: Add Chromium package\nBody: - Update `Package.enum_paths()` to support arbitrary environment variables as the path `basename`\r\n- Add `chromium` package for Chromium browsers installed using the mini installer\r\n  - See https://vikyd.github.io/download-chromium-history-version/ for release history and official download links\r\n- Add `--disable-features=RendererCodeIntegrity` as a command line argument to `chrome.exe` to bypass the \"Aw snap! `STATUS_INVALID_IMAGE_HASH` error\r\n- Add chromium as a fallback browser for the chrome package, and chrome as the fallback for chromium\r\n  -  Useful if a user accidently selects a package for a browser that is not installed\nComment: Apparently the cached venv for the workflow does not include pytest.\nComment: This PR is ready to be merged. However, with or without this PR, Chrome and Chromium are crashing when `capemon` is used. See issue #1636 \nComment: Monitor issue should be fixed now - thanks for your contribution.",
+  "Title: capemon causes Firefox to crash\nBody: When capemon is running, Firefox will open, and load the page, then the analysis will end prematurely a few seconds later.\r\n\r\nBy enforcing the timeout, I was able to extend the analysis enough to observe these crash messages.\r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/44679/36831b88-dcb9-4c18-8aa1-67f23f07c110)\r\n\r\nReproduced on Firefox 91.9.1esr and 102.12.0esr.\nComment: Should be a way around this with the private package configuration work in https://github.com/kevoreilly/CAPEv2/pull/1996\nComment: fixed now",
+  "Title: SMTP-analyze\nBody: Hi\r\nWho can tell me how to add to the standard installation the ability to pick up letters from the mail server with attachments or how to enable the smtp_sinkhole.conf functionality?\nComment: Check community repo for code and use examples, it still might be outdated as we dont maintaining not core parts if we dont use them https://github.com/CAPESandbox/community/blob/30f76f61560944ac9711abd602cbd6276372e4f4/utils/smtp_sinkhole.sh",
+  "Title: retention log does not exist\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nI expect the retention log to be created together together with the retention folder\r\n\r\n# Current Behavior\r\n\r\nIt seems to not create the retention log when submitting the first file, causing the rest of the retention to fail.\r\nI tried manually creating the file, but couldnt understand what should be inside of the file to create it. So couldnt debug it either.\r\n\r\n# Failure Information (for bugs)\r\n\r\nfirst submission:\r\n```\r\n2023-05-31 15:18:34,417 [Task 1] [lib.cuckoo.core.plugins] ERROR: Failed to run the processing module \"extract_overlay_data\": 'extract_overlay_data' object has no attribute 'key'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 249, in process\r\n    return {current.key: data}\r\nAttributeError: 'extract_overlay_data' object has no attribute 'key'\r\n2023-05-31 15:22:54,710 [Task 1] [modules.reporting.retention] WARNING: Retention log directory doesn't exist, creating it now\r\n2023-05-31 15:22:54,744 [Task 1] [lib.cuckoo.core.plugins] ERROR: Failed to run the reporting module \"Retention\": unsupported operand type(s) for /: 'str' and 'str'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 715, in process\r\n    current.run(self.results)\r\n  File \"/opt/CAPEv2/utils/../modules/reporting/retention.py\", line 151, in run\r\n    _ = Path(retPath / \"task_check.log\").write_text(json.dumps(saveTaskLogged))\r\nTypeError: unsupported operand type(s) for /: 'str' and 'str\r\n```\r\n2nd submission:\r\n```\r\n2023-05-31 15:31:01,153 [Task 3] [lib.cuckoo.core.plugins] ERROR: Failed to run the processing module \"extract_overlay_data\": 'extract_overlay_data' object has no attribute 'key'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 249, in process\r\n    return {current.key: data}\r\nAttributeError: 'extract_overlay_data' object has no attribute 'key'\r\n2023-05-31 15:37:20,461 [Task 3] [modules.reporting.retention] WARNING: Failed to load retention log, if this is not the time running retention, review the error: [Errno 2] No such file or directory: '/opt/CAPEv2/storage/retention/task_check.log'\r\n2023-05-31 15:37:20,462 [Task 3] [lib.cuckoo.core.plugins] ERROR: Failed to run the reporting module \"Retention\": [Errno 2] No such file or directory: '/opt/CAPEv2/storage/retention/task_check.log'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 715, in process\r\n    current.run(self.results)\r\n  File \"/opt/CAPEv2/utils/../modules/reporting/retention.py\", line 91, in run\r\n    since_retlog_modified = curtime - datetime.fromtimestamp(os.path.getmtime(taskFile))\r\n  File \"/usr/lib/python3.10/genericpath.py\", line 55, in getmtime\r\n    return os.stat(filename).st_mtime\r\nFileNotFoundError: [Errno 2] No such file or directory: '/opt/CAPEv2/storage/retention/task_check.log'\r\n```\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Enable `retention` in `reporting.conf`\r\n2. run the cleaner\r\n3. submit a file\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | d889fe97dbd711251fed602c53ec952fccdbe525\r\n| OS version       | Ubuntu 22.04\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: pushed fix for this, but i won't use this module at all, is old, and not make sense run cleaner on each analysis, is old cuckoo-mod module and i guess is time to deprecate it or move to community repo and forget about it",
+  "Title: Documentation improvements\nBody: - Replaced `iproute2` example with `netplan` example\r\n- Added `ufw` firewall configuration\r\n- Moved NGINX configuration details from `usage/interactive_desktop.rst` to `usage/interactive_desktop.rst` and add a reference back\r\n  - Add `proxy_timeout` directives to prevent NGINX from timing out during long-lived requests\r\n  - Updated NGINX configuration to support the `HTTP-01` ACME challenge used by Let's Encrypt\r\n  - Added documentation for using `certbot` to obtain certificates for NGINX from Let's Encrypt\r\n  - Updated `extra/guac related/nginx-site-config.txt`\r\n- Removed `html` from the list of packages\r\n- Fixed every `RST` syntax error reference error identified by the linter included in the reStructuredText extension for Visual Studio Code\r\n- Corrected many typos\r\n- Removed obsolete `nginx.md` documentation leftover from Cuckoo\nComment: Thanks, once im back from PTO i will review it",
+  "Title: pdf report generation\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ ] I am running the latest version\r\n- [ ] yes i am running the latest version\r\n- [ ] \r\n- [ ] I did read the README!\r\n- [ ] yes i did\r\n- [ ] \r\n- [ ] I checked the documentation and found no answer\r\n- [ ] yes no answer\r\n- [ ] \r\n- [ ] I checked to make sure that this issue has not already been filed\r\n- [ ] yup not filed\r\n- [ ] \r\n- [ ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ ] yes\r\n- [ ] \r\n- [ ] I have read and checked all configs (with all optional parts)\r\n when i download the report in pdf form it downloads like this. no information is visible only white empty table is formed \r\n\r\n# Expected Behavior\r\n[167_report-2.pdf](https://github.com/kevoreilly/CAPEv2/files/11719561/167_report-2.pdf)\r\n\r\n\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. step 1\r\n2. step 2\r\n3. you get it...\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu Release 20.04.4 LTS (Focal Fossa) 64-bit\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: 0 information at all\nComment: > ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n> \r\n>     * Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n> \r\n> \r\n> ## This is open source and you are getting **free** support so be friendly!\r\n> # Prerequisites\r\n> \r\n> Please answer the following questions for yourself before submitting an issue.\r\n> \r\n>     * [ ]  I am running the latest version\r\n> \r\n>     * [ ]  yes i am running the latest version\r\n> \r\n>     * [ ]\r\n> \r\n>     * [ ]  I did read the README!\r\n> \r\n>     * [ ]  yes i did\r\n> \r\n>     * [ ]\r\n> \r\n>     * [ ]  I checked the documentation and found no answer\r\n> \r\n>     * [ ]  yes no answer\r\n> \r\n>     * [ ]\r\n> \r\n>     * [ ]  I checked to make sure that this issue has not already been filed\r\n> \r\n>     * [ ]  yup not filed\r\n> \r\n>     * [ ]\r\n> \r\n>     * [ ]  I'm reporting the issue to the correct repository (for multi-repository projects)\r\n> \r\n>     * [ ]  yes\r\n> \r\n>     * [ ]\r\n> \r\n>     * [ ]  I have read and checked all configs (with all optional parts)\r\n>       when i download the report in pdf form it downloads like this. no information is visible only white empty table is formed\r\n> \r\n> \r\n> # Expected Behavior\r\n> \r\n> [167_report-2.pdf](https://github.com/kevoreilly/CAPEv2/files/11719561/167_report-2.pdf)\r\n> \r\n> Please describe the behavior you are expecting. **If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms**\r\n> # Current Behavior\r\n> \r\n> What is the current behavior?\r\n> # Failure Information (for bugs)\r\n> \r\n> Please help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n> ## Steps to Reproduce\r\n> \r\n> Please provide detailed steps for reproducing the issue.\r\n> \r\n>     1. step 1\r\n> \r\n>     2. step 2\r\n> \r\n>     3. you get it...\r\n> \r\n> \r\n> ## Context\r\n> \r\n> Please provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n> Question \tAnswer\r\n> Git commit \tType `$ git log | head -n1` to find out\r\n> OS version \tUbuntu Release 20.04.4 LTS (Focal Fossa) 64-bit\r\n> ## Failure Logs\r\n> \r\n> Please include any relevant log snippets or files here.\r\n\r\nhey can you please guide me about how you generate pdf report. can you please share all your configuration setting with me because I'm facing problem **file not found** \r\n\r\n\r\n![Screenshot from 2023-06-22 05-17-01](https://github.com/kevoreilly/CAPEv2/assets/113498180/73ca64b7-2919-4933-9543-83afc582db0c)\r\n\nComment: you need to pay attention to logs about cape-processing service. no i won't share my configs they are useless here, is just on/off\nComment: > you need to pay attention to logs about cape-processing service. no i won't share my configs they are useless here, is just on/off\r\n\r\nyeah I know its just on or off but I was unable to find a proper reason for this problem but let me try one more time . if I don't get any solution I'll share logs with you\nComment: all the answers are in log\nComment: > all the answers are in log\r\n\r\n\r\n**These are the logs** \r\n\r\n2023-06-22 07:35:33,411 [Task 97] [lib.cuckoo.core.plugins] WARNING: The reporting module \"ReportHTML\" returned the following error: Failed to generate summary HTML report: 'dict object' has no attribute 'CAPE'\r\n2023-06-22 07:35:33,697 [Task 97] [lib.cuckoo.core.plugins] WARNING: The reporting module \"ReportHTMLSummary\" returned the following error: Failed to generate summary HTML report: 'dict object' has no attribute 'CAPE'\r\n2023-06-22 07:35:33,700 [Task 97] [lib.cuckoo.core.plugins] WARNING: The reporting module \"ReportPDF\" returned the following error: Unable to open summary HTML report to convert to PDF: Ensure reporthtmlsummary is enabled in reporting.conf\r\n\r\nhow I can set this? \r\n\r\n**note**\r\n**Configuration file** \r\n\r\n[reporthtml]\r\n #Standalone report, not requires CAPE webgui\r\nenabled = yes\r\n #Include screenshots in report\r\nscreenshots = no\r\napicalls = no\r\n\r\n[reporthtmlsummary]\r\n much smaller, faster report generation, omits API logs and is non-interactive\r\nenabled = yes\r\n #Include screenshots in report\r\nscreenshots = yes\r\n\r\n[reportpdf]\r\n #Note that this requires reporthtmlsummary to be enabled above as well\r\nenabled = yes\nComment: set what? i would say not even waste your time with pdf if you not about to update pdf reporting, we don't maintain that module, if you would do search in issue you would see that. you need to dig on your own here\nComment: > set what? i would say not even waste your time with pdf if you not about to update pdf reporting, we don't maintain that module, if you would do search in issue you would see that. you need to dig on your own here\r\n\r\nhave you  moloch(arkime) configured ?\r\n\r\n#process_log\r\n\r\n2023-06-23 07:03:57,779 [Task 66] [lib.cuckoo.core.plugins] ERROR: Failed to run the processing module \"CAPE\": [Errno 13] **Permission denied: '/opt/CAPEv2/data/trid/trid'**\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 243, in process\r\n    data = current.run()\r\n  File \"/opt/CAPEv2/utils/../modules/processing/CAPE.py\", line 355, in run\r\n    self.process_file(\r\n  File \"/opt/CAPEv2/utils/../modules/processing/CAPE.py\", line 193, in process_file\r\n    static_file_info(\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/file_extra_info.py\", line 232, in static_file_info\r\n    data_dictionary[\"trid\"] = trid_info(file_path)\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/file_extra_info.py\", line 289, in trid_info\r\n    output = subprocess.check_output(\r\n  File \"/usr/lib/python3.10/subprocess.py\", line 420, in check_output\r\n    return run(*popenargs, stdout=PIPE, timeout=timeout, check=True,\r\n  File \"/usr/lib/python3.10/subprocess.py\", line 501, in run\r\n    with Popen(*popenargs, **kwargs) as process:\r\n  File \"/usr/lib/python3.10/subprocess.py\", line 969, in __init__\r\n    self._execute_child(args, executable, preexec_fn, close_fds,\r\n  File \"/usr/lib/python3.10/subprocess.py\", line 1845, in _execute_child\r\n    raise child_exception_type(errno_num, err_msg, err_filename)\r\nPermissionError: [Errno 13] Permission denied: '/opt/CAPEv2/data/trid/trid'\r\n2023-06-23 07:04:28,481 [Task 66] [modules.reporting.moloch] WARNING: Unable to Run moloch-capture: BIN File **/data/moloch/bin/moloch-capture Does Not Exist**\r\n\r\n\r\nThis error is showing BIN file doesnot exist but i put this file in **/data/moloch/bin** i'wll attach screen sht which will show that the file is present on that path  .\r\n\r\n\r\none thing i also wan to know what king of permission do **trid** need to run?\r\n![Screenshot from 2023-06-23 07-10-33](https://github.com/kevoreilly/CAPEv2/assets/113498180/618b3f58-7533-4f7b-9682-bd59c0c3a2a0)\r\n\r\n\r\n\nComment: I dont use it at all\r\n\r\nEl vie, 23 jun 2023, 9:12, musman12362 ***@***.***> escribi\u00f3:\r\n\r\n> set what? i would say not even waste your time with pdf if you not about\r\n> to update pdf reporting, we don't maintain that module, if you would do\r\n> search in issue you would see that. you need to dig on your own here\r\n>\r\n> have you moloch(arkime) configured ?\r\n>\r\n> #process_log\r\n>\r\n> 2023-06-23 07:03:57,779 [Task 66] [lib.cuckoo.core.plugins] ERROR: Failed\r\n> to run the processing module \"CAPE\": [Errno 13] Permission denied:\r\n> '/opt/CAPEv2/data/trid/trid'\r\n> Traceback (most recent call last):\r\n> File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 243, in\r\n> process\r\n> data = current.run()\r\n> File \"/opt/CAPEv2/utils/../modules/processing/CAPE.py\", line 355, in run\r\n> self.process_file(\r\n> File \"/opt/CAPEv2/utils/../modules/processing/CAPE.py\", line 193, in\r\n> process_file\r\n> static_file_info(\r\n> File\r\n> \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/file_extra_info.py\",\r\n> line 232, in static_file_info\r\n> data_dictionary[\"trid\"] = trid_info(file_path)\r\n> File\r\n> \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/file_extra_info.py\",\r\n> line 289, in trid_info\r\n> output = subprocess.check_output(\r\n> File \"/usr/lib/python3.10/subprocess.py\", line 420, in check_output\r\n> return run(*popenargs, stdout=PIPE, timeout=timeout, check=True,\r\n> File \"/usr/lib/python3.10/subprocess.py\", line 501, in run\r\n> with Popen(*popenargs, **kwargs) as process:\r\n> File \"/usr/lib/python3.10/subprocess.py\", line 969, in *init*\r\n> self._execute_child(args, executable, preexec_fn, close_fds,\r\n> File \"/usr/lib/python3.10/subprocess.py\", line 1845, in _execute_child\r\n> raise child_exception_type(errno_num, err_msg, err_filename)\r\n> PermissionError: [Errno 13] Permission denied: '/opt/CAPEv2/data/trid/trid'\r\n> 2023-06-23 07:04:28,481 [Task 66] [modules.reporting.moloch] WARNING:\r\n> Unable to Run moloch-capture: BIN File */data/moloch/bin/moloch-capture\r\n> Does Not Exist*\r\n>\r\n> This error is showing BIN file doesnot exist but i put this file in\r\n> */data/moloch/bin* i'wll attach screen sht which will show that the file\r\n> is present on that path .\r\n>\r\n> one thing i also wan to know what king of permission do *trid* need to\r\n> run?\r\n> [image: Screenshot from 2023-06-23 07-10-33]\r\n> <https://user-images.githubusercontent.com/113498180/248198235-618b3f58-7533-4f7b-9682-bd59c0c3a2a0.png>\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1604#issuecomment-1603794739>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH35MEXYRADXDLMI3VMTXMU6VVANCNFSM6AAAAAAZC7AVBQ>\r\n> .\r\n> You are receiving this because you modified the open/close state.Message\r\n> ID: ***@***.***>\r\n>\r\n\nComment: But your path is wrong is /data should be /opt/CAPEv2/data i guess\r\n\r\nEl vie, 23 jun 2023, 9:16, Andriy Brukhovetskyy ***@***.***>\r\nescribi\u00f3:\r\n\r\n> I dont use it at all\r\n>\r\n> El vie, 23 jun 2023, 9:12, musman12362 ***@***.***>\r\n> escribi\u00f3:\r\n>\r\n>> set what? i would say not even waste your time with pdf if you not about\r\n>> to update pdf reporting, we don't maintain that module, if you would do\r\n>> search in issue you would see that. you need to dig on your own here\r\n>>\r\n>> have you moloch(arkime) configured ?\r\n>>\r\n>> #process_log\r\n>>\r\n>> 2023-06-23 07:03:57,779 [Task 66] [lib.cuckoo.core.plugins] ERROR: Failed\r\n>> to run the processing module \"CAPE\": [Errno 13] Permission denied:\r\n>> '/opt/CAPEv2/data/trid/trid'\r\n>> Traceback (most recent call last):\r\n>> File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 243, in\r\n>> process\r\n>> data = current.run()\r\n>> File \"/opt/CAPEv2/utils/../modules/processing/CAPE.py\", line 355, in run\r\n>> self.process_file(\r\n>> File \"/opt/CAPEv2/utils/../modules/processing/CAPE.py\", line 193, in\r\n>> process_file\r\n>> static_file_info(\r\n>> File\r\n>> \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/file_extra_info.py\",\r\n>> line 232, in static_file_info\r\n>> data_dictionary[\"trid\"] = trid_info(file_path)\r\n>> File\r\n>> \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/file_extra_info.py\",\r\n>> line 289, in trid_info\r\n>> output = subprocess.check_output(\r\n>> File \"/usr/lib/python3.10/subprocess.py\", line 420, in check_output\r\n>> return run(*popenargs, stdout=PIPE, timeout=timeout, check=True,\r\n>> File \"/usr/lib/python3.10/subprocess.py\", line 501, in run\r\n>> with Popen(*popenargs, **kwargs) as process:\r\n>> File \"/usr/lib/python3.10/subprocess.py\", line 969, in *init*\r\n>> self._execute_child(args, executable, preexec_fn, close_fds,\r\n>> File \"/usr/lib/python3.10/subprocess.py\", line 1845, in _execute_child\r\n>> raise child_exception_type(errno_num, err_msg, err_filename)\r\n>> PermissionError: [Errno 13] Permission denied:\r\n>> '/opt/CAPEv2/data/trid/trid'\r\n>> 2023-06-23 07:04:28,481 [Task 66] [modules.reporting.moloch] WARNING:\r\n>> Unable to Run moloch-capture: BIN File */data/moloch/bin/moloch-capture\r\n>> Does Not Exist*\r\n>>\r\n>> This error is showing BIN file doesnot exist but i put this file in\r\n>> */data/moloch/bin* i'wll attach screen sht which will show that the file\r\n>> is present on that path .\r\n>>\r\n>> one thing i also wan to know what king of permission do *trid* need to\r\n>> run?\r\n>> [image: Screenshot from 2023-06-23 07-10-33]\r\n>> <https://user-images.githubusercontent.com/113498180/248198235-618b3f58-7533-4f7b-9682-bd59c0c3a2a0.png>\r\n>>\r\n>> \u2014\r\n>> Reply to this email directly, view it on GitHub\r\n>> <https://github.com/kevoreilly/CAPEv2/issues/1604#issuecomment-1603794739>,\r\n>> or unsubscribe\r\n>> <https://github.com/notifications/unsubscribe-auth/AAOFH35MEXYRADXDLMI3VMTXMU6VVANCNFSM6AAAAAAZC7AVBQ>\r\n>> .\r\n>> You are receiving this because you modified the open/close state.Message\r\n>> ID: ***@***.***>\r\n>>\r\n>\r\n\nComment: > But your path is wrong is /data should be /opt/CAPEv2/data i guess El vie, 23 jun 2023, 9:16, Andriy Brukhovetskyy ***@***.***> escribi\u00f3:\r\n> [\u2026](#)\r\n> I dont use it at all El vie, 23 jun 2023, 9:12, musman12362 ***@***.***> escribi\u00f3: > set what? i would say not even waste your time with pdf if you not about > to update pdf reporting, we don't maintain that module, if you would do > search in issue you would see that. you need to dig on your own here > > have you moloch(arkime) configured ? > > #process_log > > 2023-06-23 07:03:57,779 [Task 66] [lib.cuckoo.core.plugins] ERROR: Failed > to run the processing module \"CAPE\": [Errno 13] Permission denied: > '/opt/CAPEv2/data/trid/trid' > Traceback (most recent call last): > File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 243, in > process > data = current.run() > File \"/opt/CAPEv2/utils/../modules/processing/CAPE.py\", line 355, in run > self.process_file( > File \"/opt/CAPEv2/utils/../modules/processing/CAPE.py\", line 193, in > process_file > static_file_info( > File > \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/file_extra_info.py\", > line 232, in static_file_info > data_dictionary[\"trid\"] = trid_info(file_path) > File > \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/file_extra_info.py\", > line 289, in trid_info > output = subprocess.check_output( > File \"/usr/lib/python3.10/subprocess.py\", line 420, in check_output > return run(*popenargs, stdout=PIPE, timeout=timeout, check=True, > File \"/usr/lib/python3.10/subprocess.py\", line 501, in run > with Popen(*popenargs, **kwargs) as process: > File \"/usr/lib/python3.10/subprocess.py\", line 969, in *init* > self._execute_child(args, executable, preexec_fn, close_fds, > File \"/usr/lib/python3.10/subprocess.py\", line 1845, in _execute_child > raise child_exception_type(errno_num, err_msg, err_filename) > PermissionError: [Errno 13] Permission denied: > '/opt/CAPEv2/data/trid/trid' > 2023-06-23 07:04:28,481 [Task 66] [modules.reporting.moloch] WARNING: > Unable to Run moloch-capture: BIN File */data/moloch/bin/moloch-capture > Does Not Exist* > > This error is showing BIN file doesnot exist but i put this file in > */data/moloch/bin* i'wll attach screen sht which will show that the file > is present on that path . > > one thing i also wan to know what king of permission do *trid* need to > run? > [image: Screenshot from 2023-06-23 07-10-33] > <https://user-images.githubusercontent.com/113498180/248198235-618b3f58-7533-4f7b-9682-bd59c0c3a2a0.png> > > \u2014 > Reply to this email directly, view it on GitHub > <[#1604 (comment)](https://github.com/kevoreilly/CAPEv2/issues/1604#issuecomment-1603794739)>, > or unsubscribe > <https://github.com/notifications/unsubscribe-auth/AAOFH35MEXYRADXDLMI3VMTXMU6VVANCNFSM6AAAAAAZC7AVBQ> > . > You are receiving this because you modified the open/close state.Message > ID: ***@***.***> >\r\n\r\ni also tried with opt/Capev2/data/moloch/bin \r\n\r\nbut this give same error\nComment: > I dont use it at all El vie, 23 jun 2023, 9:12, musman12362 ***@***.***> escribi\u00f3:\r\n> [\u2026](#)\r\n> set what? i would say not even waste your time with pdf if you not about to update pdf reporting, we don't maintain that module, if you would do search in issue you would see that. you need to dig on your own here have you moloch(arkime) configured ? #process_log 2023-06-23 07:03:57,779 [Task 66] [lib.cuckoo.core.plugins] ERROR: Failed to run the processing module \"CAPE\": [Errno 13] Permission denied: '/opt/CAPEv2/data/trid/trid' Traceback (most recent call last): File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 243, in process data = current.run() File \"/opt/CAPEv2/utils/../modules/processing/CAPE.py\", line 355, in run self.process_file( File \"/opt/CAPEv2/utils/../modules/processing/CAPE.py\", line 193, in process_file static_file_info( File \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/file_extra_info.py\", line 232, in static_file_info data_dictionary[\"trid\"] = trid_info(file_path) File \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/file_extra_info.py\", line 289, in trid_info output = subprocess.check_output( File \"/usr/lib/python3.10/subprocess.py\", line 420, in check_output return run(*popenargs, stdout=PIPE, timeout=timeout, check=True, File \"/usr/lib/python3.10/subprocess.py\", line 501, in run with Popen(*popenargs, **kwargs) as process: File \"/usr/lib/python3.10/subprocess.py\", line 969, in *init* self._execute_child(args, executable, preexec_fn, close_fds, File \"/usr/lib/python3.10/subprocess.py\", line 1845, in _execute_child raise child_exception_type(errno_num, err_msg, err_filename) PermissionError: [Errno 13] Permission denied: '/opt/CAPEv2/data/trid/trid' 2023-06-23 07:04:28,481 [Task 66] [modules.reporting.moloch] WARNING: Unable to Run moloch-capture: BIN File */data/moloch/bin/moloch-capture Does Not Exist* This error is showing BIN file doesnot exist but i put this file in */data/moloch/bin* i'wll attach screen sht which will show that the file is present on that path . one thing i also wan to know what king of permission do *trid* need to run? [image: Screenshot from 2023-06-23 07-10-33] <https://user-images.githubusercontent.com/113498180/248198235-618b3f58-7533-4f7b-9682-bd59c0c3a2a0.png> \u2014 Reply to this email directly, view it on GitHub <[#1604 (comment)](https://github.com/kevoreilly/CAPEv2/issues/1604#issuecomment-1603794739)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAOFH35MEXYRADXDLMI3VMTXMU6VVANCNFSM6AAAAAAZC7AVBQ> . You are receiving this because you modified the open/close state.Message ID: ***@***.***>\r\n\r\ndo you know anyone who did this? can you please mention him here if you know anyone who did this. i'm trying for it for last two weeks but unable to get the result\r\n\nComment: No i dont i guess it comes from cuckoo or cuckoo-modified, so you need to\r\ndig on your own\r\n\r\nEl vie, 23 jun 2023, 9:32, musman12362 ***@***.***> escribi\u00f3:\r\n\r\n> I dont use it at all El vie, 23 jun 2023, 9:12, musman12362 *@*.***>\r\n> escribi\u00f3:\r\n> \u2026 <#m_4243659878128948888_>\r\n> set what? i would say not even waste your time with pdf if you not about\r\n> to update pdf reporting, we don't maintain that module, if you would do\r\n> search in issue you would see that. you need to dig on your own here have\r\n> you moloch(arkime) configured ? #process_log 2023-06-23 07:03:57,779 [Task\r\n> 66] [lib.cuckoo.core.plugins] ERROR: Failed to run the processing module\r\n> \"CAPE\": [Errno 13] Permission denied: '/opt/CAPEv2/data/trid/trid'\r\n> Traceback (most recent call last): File\r\n> \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 243, in process\r\n> data = current.run() File\r\n> \"/opt/CAPEv2/utils/../modules/processing/CAPE.py\", line 355, in run\r\n> self.process_file( File \"/opt/CAPEv2/utils/../modules/processing/CAPE.py\",\r\n> line 193, in process_file static_file_info( File\r\n> \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/file_extra_info.py\",\r\n> line 232, in static_file_info data_dictionary[\"trid\"] =\r\n> trid_info(file_path) File\r\n> \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/file_extra_info.py\",\r\n> line 289, in trid_info output = subprocess.check_output( File\r\n> \"/usr/lib/python3.10/subprocess.py\", line 420, in check_output return\r\n> run(*popenargs, stdout=PIPE, timeout=timeout, check=True, File\r\n> \"/usr/lib/python3.10/subprocess.py\", line 501, in run with Popen(*popenargs,\r\n> kwargs) as process: File \"/usr/lib/python3.10/subprocess.py\", line 969, in\r\n> init self._execute_child(args, executable, preexec_fn, close_fds, File\r\n> \"/usr/lib/python3.10/subprocess.py\", line 1845, in _execute_child raise\r\n> child_exception_type(errno_num, err_msg, err_filename) PermissionError:\r\n> [Errno 13] Permission denied: '/opt/CAPEv2/data/trid/trid' 2023-06-23\r\n> 07:04:28,481 [Task 66] [modules.reporting.moloch] WARNING: Unable to Run\r\n> moloch-capture: BIN File /data/moloch/bin/moloch-capture Does Not Exist\r\n> This error is showing BIN file doesnot exist but i put this file in\r\n> /data/moloch/bin i'wll attach screen sht which will show that the file is\r\n> present on that path . one thing i also wan to know what king of permission\r\n> do trid need to run? [image: Screenshot from 2023-06-23 07-10-33]\r\n> https://user-images.githubusercontent.com/113498180/248198235-618b3f58-7533-4f7b-9682-bd59c0c3a2a0.png\r\n> <https://user-images.githubusercontent.com/113498180/248198235-618b3f58-7533-4f7b-9682-bd59c0c3a2a0.png>\r\n> \u2014 Reply to this email directly, view it on GitHub <#1604 (comment)\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1604#issuecomment-1603794739>>,\r\n> or unsubscribe\r\n> https://github.com/notifications/unsubscribe-auth/AAOFH35MEXYRADXDLMI3VMTXMU6VVANCNFSM6AAAAAAZC7AVBQ\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH35MEXYRADXDLMI3VMTXMU6VVANCNFSM6AAAAAAZC7AVBQ>\r\n> . You are receiving this because you modified the open/close state.Message\r\n> ID: @.*>\r\n>\r\n> do you know anyone who did this? can you please mention him here if you\r\n> know anyone who did this. i'm trying for it for last two weeks but unable\r\n> to get the result\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1604#issuecomment-1603856478>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3YJPLPFR7B3RWKED2LXMVBBBANCNFSM6AAAAAAZC7AVBQ>\r\n> .\r\n> You are receiving this because you modified the open/close state.Message\r\n> ID: ***@***.***>\r\n>\r\n\nComment: > No i dont i guess it comes from cuckoo or cuckoo-modified, so you need to dig on your own El vie, 23 jun 2023, 9:32, musman12362 ***@***.***> escribi\u00f3:\r\n> [\u2026](#)\r\n> I dont use it at all El vie, 23 jun 2023, 9:12, musman12362 *@*.***> escribi\u00f3: \u2026 <#m_4243659878128948888_> set what? i would say not even waste your time with pdf if you not about to update pdf reporting, we don't maintain that module, if you would do search in issue you would see that. you need to dig on your own here have you moloch(arkime) configured ? #process_log 2023-06-23 07:03:57,779 [Task 66] [lib.cuckoo.core.plugins] ERROR: Failed to run the processing module \"CAPE\": [Errno 13] Permission denied: '/opt/CAPEv2/data/trid/trid' Traceback (most recent call last): File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 243, in process data = current.run() File \"/opt/CAPEv2/utils/../modules/processing/CAPE.py\", line 355, in run self.process_file( File \"/opt/CAPEv2/utils/../modules/processing/CAPE.py\", line 193, in process_file static_file_info( File \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/file_extra_info.py\", line 232, in static_file_info data_dictionary[\"trid\"] = trid_info(file_path) File \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/file_extra_info.py\", line 289, in trid_info output = subprocess.check_output( File \"/usr/lib/python3.10/subprocess.py\", line 420, in check_output return run(*popenargs, stdout=PIPE, timeout=timeout, check=True, File \"/usr/lib/python3.10/subprocess.py\", line 501, in run with Popen(*popenargs, kwargs) as process: File \"/usr/lib/python3.10/subprocess.py\", line 969, in init self._execute_child(args, executable, preexec_fn, close_fds, File \"/usr/lib/python3.10/subprocess.py\", line 1845, in _execute_child raise child_exception_type(errno_num, err_msg, err_filename) PermissionError: [Errno 13] Permission denied: '/opt/CAPEv2/data/trid/trid' 2023-06-23 07:04:28,481 [Task 66] [modules.reporting.moloch] WARNING: Unable to Run moloch-capture: BIN File /data/moloch/bin/moloch-capture Does Not Exist This error is showing BIN file doesnot exist but i put this file in /data/moloch/bin i'wll attach screen sht which will show that the file is present on that path . one thing i also wan to know what king of permission do trid need to run? [image: Screenshot from 2023-06-23 07-10-33] https://user-images.githubusercontent.com/113498180/248198235-618b3f58-7533-4f7b-9682-bd59c0c3a2a0.png <https://user-images.githubusercontent.com/113498180/248198235-618b3f58-7533-4f7b-9682-bd59c0c3a2a0.png> \u2014 Reply to this email directly, view it on GitHub <#1604 (comment) <[#1604 (comment)](https://github.com/kevoreilly/CAPEv2/issues/1604#issuecomment-1603794739)>>, or unsubscribe https://github.com/notifications/unsubscribe-auth/AAOFH35MEXYRADXDLMI3VMTXMU6VVANCNFSM6AAAAAAZC7AVBQ <https://github.com/notifications/unsubscribe-auth/AAOFH35MEXYRADXDLMI3VMTXMU6VVANCNFSM6AAAAAAZC7AVBQ> . You are receiving this because you modified the open/close state.Message ID: @.*> do you know anyone who did this? can you please mention him here if you know anyone who did this. i'm trying for it for last two weeks but unable to get the result \u2014 Reply to this email directly, view it on GitHub <[#1604 (comment)](https://github.com/kevoreilly/CAPEv2/issues/1604#issuecomment-1603856478)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAOFH3YJPLPFR7B3RWKED2LXMVBBBANCNFSM6AAAAAAZC7AVBQ> . You are receiving this because you modified the open/close state.Message ID: ***@***.***>\r\n\r\nokay thank you for your response i'm trying to dig it for last two weeks but i'm unable to solve this problem thats why I need some assitance\nComment: The main problem that i see is wrong permissions +wrong path, fix those 2\r\nand ypu will have them fixed\r\n\r\nEl vie, 23 jun 2023, 9:47, musman12362 ***@***.***> escribi\u00f3:\r\n\r\n> No i dont i guess it comes from cuckoo or cuckoo-modified, so you need to\r\n> dig on your own El vie, 23 jun 2023, 9:32, musman12362 *@*.\r\n>\r\n> *> escribi\u00f3: \u2026 <#m_-9001130548919936103_> I dont use it at all El vie, 23\r\n> jun 2023, 9:12, musman12362 @.*> escribi\u00f3: \u2026 <#m_4243659878128948888_>\r\n> set what? i would say not even waste your time with pdf if you not about to\r\n> update pdf reporting, we don't maintain that module, if you would do search\r\n> in issue you would see that. you need to dig on your own here have you\r\n> moloch(arkime) configured ? #process_log 2023-06-23 07:03:57,779 [Task 66]\r\n> [lib.cuckoo.core.plugins] ERROR: Failed to run the processing module\r\n> \"CAPE\": [Errno 13] Permission denied: '/opt/CAPEv2/data/trid/trid'\r\n> Traceback (most recent call last): File\r\n> \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 243, in process\r\n> data = current.run() File\r\n> \"/opt/CAPEv2/utils/../modules/processing/CAPE.py\", line 355, in run\r\n> self.process_file( File \"/opt/CAPEv2/utils/../modules/processing/CAPE.py\",\r\n> line 193, in process_file static_file_info( File\r\n> \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/file_extra_info.py\",\r\n> line 232, in static_file_info data_dictionary[\"trid\"] =\r\n> trid_info(file_path) File\r\n> \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/file_extra_info.py\",\r\n> line 289, in trid_info output = subprocess.check_output( File\r\n> \"/usr/lib/python3.10/subprocess.py\", line 420, in check_output return run(*popenargs,\r\n> stdout=PIPE, timeout=timeout, check=True, File\r\n> \"/usr/lib/python3.10/subprocess.py\", line 501, in run with Popen(popenargs,\r\n> kwargs) as process: File \"/usr/lib/python3.10/subprocess.py\", line 969, in\r\n> init self._execute_child(args, executable, preexec_fn, close_fds, File\r\n> \"/usr/lib/python3.10/subprocess.py\", line 1845, in _execute_child raise\r\n> child_exception_type(errno_num, err_msg, err_filename) PermissionError:\r\n> [Errno 13] Permission denied: '/opt/CAPEv2/data/trid/trid' 2023-06-23\r\n> 07:04:28,481 [Task 66] [modules.reporting.moloch] WARNING: Unable to Run\r\n> moloch-capture: BIN File /data/moloch/bin/moloch-capture Does Not Exist\r\n> This error is showing BIN file doesnot exist but i put this file in\r\n> /data/moloch/bin i'wll attach screen sht which will show that the file is\r\n> present on that path . one thing i also wan to know what king of permission\r\n> do trid need to run? [image: Screenshot from 2023-06-23 07-10-33]\r\n> https://user-images.githubusercontent.com/113498180/248198235-618b3f58-7533-4f7b-9682-bd59c0c3a2a0.png\r\n> <https://user-images.githubusercontent.com/113498180/248198235-618b3f58-7533-4f7b-9682-bd59c0c3a2a0.png>\r\n> https://user-images.githubusercontent.com/113498180/248198235-618b3f58-7533-4f7b-9682-bd59c0c3a2a0.png\r\n> <https://user-images.githubusercontent.com/113498180/248198235-618b3f58-7533-4f7b-9682-bd59c0c3a2a0.png>\r\n> \u2014 Reply to this email directly, view it on GitHub <#1604\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1604> (comment) <#1604\r\n> (comment)\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1604#issuecomment-1603794739>>>,\r\n> or unsubscribe\r\n> https://github.com/notifications/unsubscribe-auth/AAOFH35MEXYRADXDLMI3VMTXMU6VVANCNFSM6AAAAAAZC7AVBQ\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH35MEXYRADXDLMI3VMTXMU6VVANCNFSM6AAAAAAZC7AVBQ>\r\n> https://github.com/notifications/unsubscribe-auth/AAOFH35MEXYRADXDLMI3VMTXMU6VVANCNFSM6AAAAAAZC7AVBQ\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH35MEXYRADXDLMI3VMTXMU6VVANCNFSM6AAAAAAZC7AVBQ>\r\n> . You are receiving this because you modified the open/close state.Message\r\n> ID: @.> do you know anyone who did this? can you please mention him here if\r\n> you know anyone who did this. i'm trying for it for last two weeks but\r\n> unable to get the result \u2014 Reply to this email directly, view it on GitHub\r\n> <#1604 (comment)\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1604#issuecomment-1603856478>>,\r\n> or unsubscribe\r\n> https://github.com/notifications/unsubscribe-auth/AAOFH3YJPLPFR7B3RWKED2LXMVBBBANCNFSM6AAAAAAZC7AVBQ\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3YJPLPFR7B3RWKED2LXMVBBBANCNFSM6AAAAAAZC7AVBQ>\r\n> . You are receiving this because you modified the open/close state.Message\r\n> ID: @.***>\r\n>\r\n> okay thank you for your response i'm trying to dig it for last two weeks\r\n> but i'm unable to solve this problem thats why I need some assitance\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1604#issuecomment-1603871139>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH35NNYEVR7XNE77CAM3XMVCYJANCNFSM6AAAAAAZC7AVBQ>\r\n> .\r\n> You are receiving this because you modified the open/close state.Message\r\n> ID: ***@***.***>\r\n>\r\n\nComment: okay I'LL WORK ON IT than you for you response. \ud83d\ude0a\ud83d\ude0a\r\n\r\nOn Fri, Jun 23, 2023, 12:53 PM doomedraven ***@***.***> wrote:\r\n\r\n> The main problem that i see is wrong permissions +wrong path, fix those 2\r\n> and ypu will have them fixed\r\n>\r\n> El vie, 23 jun 2023, 9:47, musman12362 ***@***.***> escribi\u00f3:\r\n>\r\n> > No i dont i guess it comes from cuckoo or cuckoo-modified, so you need\r\n> to\r\n> > dig on your own El vie, 23 jun 2023, 9:32, musman12362 *@*.\r\n> >\r\n> > *> escribi\u00f3: \u2026 <#m_-9001130548919936103_> I dont use it at all El vie,\r\n> 23\r\n> > jun 2023, 9:12, musman12362 @.*> escribi\u00f3: \u2026 <#m_4243659878128948888_>\r\n> > set what? i would say not even waste your time with pdf if you not about\r\n> to\r\n> > update pdf reporting, we don't maintain that module, if you would do\r\n> search\r\n> > in issue you would see that. you need to dig on your own here have you\r\n> > moloch(arkime) configured ? #process_log 2023-06-23 07:03:57,779 [Task\r\n> 66]\r\n> > [lib.cuckoo.core.plugins] ERROR: Failed to run the processing module\r\n> > \"CAPE\": [Errno 13] Permission denied: '/opt/CAPEv2/data/trid/trid'\r\n> > Traceback (most recent call last): File\r\n> > \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 243, in process\r\n> > data = current.run() File\r\n> > \"/opt/CAPEv2/utils/../modules/processing/CAPE.py\", line 355, in run\r\n> > self.process_file( File\r\n> \"/opt/CAPEv2/utils/../modules/processing/CAPE.py\",\r\n> > line 193, in process_file static_file_info( File\r\n> >\r\n> \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/file_extra_info.py\",\r\n> > line 232, in static_file_info data_dictionary[\"trid\"] =\r\n> > trid_info(file_path) File\r\n> >\r\n> \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/file_extra_info.py\",\r\n> > line 289, in trid_info output = subprocess.check_output( File\r\n> > \"/usr/lib/python3.10/subprocess.py\", line 420, in check_output return\r\n> run(*popenargs,\r\n> > stdout=PIPE, timeout=timeout, check=True, File\r\n> > \"/usr/lib/python3.10/subprocess.py\", line 501, in run with\r\n> Popen(popenargs,\r\n> > kwargs) as process: File \"/usr/lib/python3.10/subprocess.py\", line 969,\r\n> in\r\n> > init self._execute_child(args, executable, preexec_fn, close_fds, File\r\n> > \"/usr/lib/python3.10/subprocess.py\", line 1845, in _execute_child raise\r\n> > child_exception_type(errno_num, err_msg, err_filename) PermissionError:\r\n> > [Errno 13] Permission denied: '/opt/CAPEv2/data/trid/trid' 2023-06-23\r\n> > 07:04:28,481 [Task 66] [modules.reporting.moloch] WARNING: Unable to Run\r\n> > moloch-capture: BIN File /data/moloch/bin/moloch-capture Does Not Exist\r\n> > This error is showing BIN file doesnot exist but i put this file in\r\n> > /data/moloch/bin i'wll attach screen sht which will show that the file\r\n> is\r\n> > present on that path . one thing i also wan to know what king of\r\n> permission\r\n> > do trid need to run? [image: Screenshot from 2023-06-23 07-10-33]\r\n> >\r\n> https://user-images.githubusercontent.com/113498180/248198235-618b3f58-7533-4f7b-9682-bd59c0c3a2a0.png\r\n> > <\r\n> https://user-images.githubusercontent.com/113498180/248198235-618b3f58-7533-4f7b-9682-bd59c0c3a2a0.png>\r\n>\r\n> >\r\n> https://user-images.githubusercontent.com/113498180/248198235-618b3f58-7533-4f7b-9682-bd59c0c3a2a0.png\r\n> > <\r\n> https://user-images.githubusercontent.com/113498180/248198235-618b3f58-7533-4f7b-9682-bd59c0c3a2a0.png>\r\n>\r\n> > \u2014 Reply to this email directly, view it on GitHub <#1604\r\n> > <https://github.com/kevoreilly/CAPEv2/issues/1604> (comment) <#1604\r\n> > (comment)\r\n> > <\r\n> https://github.com/kevoreilly/CAPEv2/issues/1604#issuecomment-1603794739>>>,\r\n>\r\n> > or unsubscribe\r\n> >\r\n> https://github.com/notifications/unsubscribe-auth/AAOFH35MEXYRADXDLMI3VMTXMU6VVANCNFSM6AAAAAAZC7AVBQ\r\n> > <\r\n> https://github.com/notifications/unsubscribe-auth/AAOFH35MEXYRADXDLMI3VMTXMU6VVANCNFSM6AAAAAAZC7AVBQ>\r\n>\r\n> >\r\n> https://github.com/notifications/unsubscribe-auth/AAOFH35MEXYRADXDLMI3VMTXMU6VVANCNFSM6AAAAAAZC7AVBQ\r\n> > <\r\n> https://github.com/notifications/unsubscribe-auth/AAOFH35MEXYRADXDLMI3VMTXMU6VVANCNFSM6AAAAAAZC7AVBQ>\r\n>\r\n> > . You are receiving this because you modified the open/close\r\n> state.Message\r\n> > ID: @.> do you know anyone who did this? can you please mention him here\r\n> if\r\n> > you know anyone who did this. i'm trying for it for last two weeks but\r\n> > unable to get the result \u2014 Reply to this email directly, view it on\r\n> GitHub\r\n> > <#1604 (comment)\r\n> > <\r\n> https://github.com/kevoreilly/CAPEv2/issues/1604#issuecomment-1603856478>>,\r\n>\r\n> > or unsubscribe\r\n> >\r\n> https://github.com/notifications/unsubscribe-auth/AAOFH3YJPLPFR7B3RWKED2LXMVBBBANCNFSM6AAAAAAZC7AVBQ\r\n> > <\r\n> https://github.com/notifications/unsubscribe-auth/AAOFH3YJPLPFR7B3RWKED2LXMVBBBANCNFSM6AAAAAAZC7AVBQ>\r\n>\r\n> > . You are receiving this because you modified the open/close\r\n> state.Message\r\n> > ID: @.***>\r\n> >\r\n> > okay thank you for your response i'm trying to dig it for last two weeks\r\n> > but i'm unable to solve this problem thats why I need some assitance\r\n> >\r\n> > \u2014\r\n> > Reply to this email directly, view it on GitHub\r\n> > <\r\n> https://github.com/kevoreilly/CAPEv2/issues/1604#issuecomment-1603871139>,\r\n>\r\n> > or unsubscribe\r\n> > <\r\n> https://github.com/notifications/unsubscribe-auth/AAOFH35NNYEVR7XNE77CAM3XMVCYJANCNFSM6AAAAAAZC7AVBQ>\r\n>\r\n> > .\r\n> > You are receiving this because you modified the open/close state.Message\r\n> > ID: ***@***.***>\r\n> >\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1604#issuecomment-1603877957>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/A3B5QRGVNDXU57QSIKEPBC3XMVDQBANCNFSM6AAAAAAZC7AVBQ>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n",
+  "Title: Update whitelist_domains.txt\nBody: Add Firefox and Mozilla domains",
+  "Title: Use  browser set in web.conf for .htm/.html files\nBody: None",
+  "Title: Keep IPv6 enabled on the loopback interface\nBody: This change fixes compatibility with xrdp on the host system. xrdp's session manager, `xrdp-sesman` exclusively binds to a `tcp6` socket on the loopback interface, so disabling IPv6 on the loopback interface prevents xrdp from connecting to its session manager.\r\n\r\nThis change does not break per-analysis routing or cause leaks because it only applies to the loopback interface of the host system.\nComment: hey im fine to merge this, but just as for context, what uses xrdp-sesman?\nComment: xrdp (a RDP server for Linux) uses it as a backend process to start X sessions. I use it to access my Xubuntu-based sandbox from Windows, so I can use VMWare Workstation Pro (SANS likes it over KVM \ud83d\ude1d) and other GUI tools in an isolated environment.\nComment: thanks for context",
+  "Title: Two small bug fixes\nBody: Bug 1:\r\n\r\nThe variable pool is referenced outside of its scope in the finally section of the function autoprocess. An unhandled exception from pebble.ProcessPool of type OSError can be thrown, which happens before pool is declared originally. This causes the finally clause to be executed, only pool does not exist yet.\r\n\r\nHere is an example of a crash that I had caused by low memory resources:\r\n```\r\nJun 05 00:05:19 CAPEv2-Server python3[6180]: Traceback (most recent call last):\r\nJun 05 00:05:19 CAPEv2-Server python3[6180]:   File \"/opt/CAPEv2/utils/process.py\", line 254, in autoprocess\r\nJun 05 00:05:19 CAPEv2-Server python3[6180]:     with pebble.ProcessPool(max_workers=parallel, max_tasks=maxtasksperchild, initializer=init_worker) as pool:\r\nJun 05 00:05:19 CAPEv2-Server python3[6180]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/pebble/pool/process.py\", line 61, in __init__\r\nJun 05 00:05:19 CAPEv2-Server python3[6180]:     self._pool_manager = PoolManager(self._context, mp_context)\r\nJun 05 00:05:19 CAPEv2-Server python3[6180]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/pebble/pool/process.py\", line 200, in __init__\r\nJun 05 00:05:19 CAPEv2-Server python3[6180]:     self.worker_manager = WorkerManager(context.workers,\r\nJun 05 00:05:19 CAPEv2-Server python3[6180]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/pebble/pool/process.py\", line 342, in __init__\r\nJun 05 00:05:19 CAPEv2-Server python3[6180]:     self.pool_channel, self.workers_channel = channels(mp_context)\r\nJun 05 00:05:19 CAPEv2-Server python3[6180]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/pebble/pool/channel.py\", line 34, in channels\r\nJun 05 00:05:19 CAPEv2-Server python3[6180]:     WorkerChannel(read0, write1, (read1, write0), mp_context))\r\nJun 05 00:05:19 CAPEv2-Server python3[6180]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/pebble/pool/channel.py\", line 86, in __init__\r\nJun 05 00:05:19 CAPEv2-Server python3[6180]:     self.mutex = ChannelMutex(mp_context)\r\nJun 05 00:05:19 CAPEv2-Server python3[6180]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/pebble/pool/channel.py\", line 132, in __init__\r\nJun 05 00:05:19 CAPEv2-Server python3[6180]:     self.reader_mutex = mp_context.RLock()\r\nJun 05 00:05:19 CAPEv2-Server python3[6180]:   File \"/usr/lib/python3.10/multiprocessing/context.py\", line 73, in RLock\r\nJun 05 00:05:19 CAPEv2-Server python3[6180]:     return RLock(ctx=self.get_context())\r\nJun 05 00:05:19 CAPEv2-Server python3[6180]:   File \"/usr/lib/python3.10/multiprocessing/synchronize.py\", line 187, in __init__\r\nJun 05 00:05:19 CAPEv2-Server python3[6180]:     SemLock.__init__(self, RECURSIVE_MUTEX, 1, 1, ctx=ctx)\r\nJun 05 00:05:19 CAPEv2-Server python3[6180]:   File \"/usr/lib/python3.10/multiprocessing/synchronize.py\", line 57, in __init__\r\nJun 05 00:05:19 CAPEv2-Server python3[6180]:     sl = self._semlock = _multiprocessing.SemLock(\r\nJun 05 00:05:19 CAPEv2-Server python3[6180]: OSError: [Errno 12] Cannot allocate memory\r\n\r\n...\r\n\r\nJun 05 00:05:19 CAPEv2-Server python3[6180]: Traceback (most recent call last):\r\nJun 05 00:05:19 CAPEv2-Server python3[6180]:   File \"/opt/CAPEv2/utils/process.py\", line 504, in <module>\r\nJun 05 00:05:19 CAPEv2-Server python3[6180]:     main()\r\nJun 05 00:05:19 CAPEv2-Server python3[6180]:   File \"/opt/CAPEv2/utils/process.py\", line 447, in main\r\nJun 05 00:05:19 CAPEv2-Server python3[6180]:     autoprocess(\r\nJun 05 00:05:19 CAPEv2-Server python3[6180]:   File \"/opt/CAPEv2/utils/process.py\", line 323, in autoprocess\r\nJun 05 00:05:19 CAPEv2-Server python3[6180]:     pool.close()\r\nJun 05 00:05:19 CAPEv2-Server python3[6180]: UnboundLocalError: local variable 'pool' referenced before assignment\r\nJun 05 00:05:19 CAPEv2-Server systemd[1]: cape-processor.service: Main process exited, code=exited, status=1/FAILURE\r\nJun 05 00:05:19 CAPEv2-Server systemd[1]: cape-processor.service: Failed with result 'exit-code'.\r\n```\r\n\r\nBug 2:\r\nWhen an ISO is submitted without an extension in the file name, CAPE tries to process it with a package called \"iso\", but there is no such package. This seems to be caused by a bug in the function checking for archive types which compares the type to a tuple instead of checking if the type is in the tuple. \r\n\r\nYou can see an example in this submission:\r\nhttps://capesandbox.com/analysis/397799/\nComment: Thinking about the fix for Bug 1 again, perhaps its a better idea to handle OSError similar to MemoryException to clarify in the logs that the issue is memory. That way CAPE will still exit after catching the error and write to the logs the memory that is being used. Let me know if that is a preferable solution.\nComment: thanks",
+  "Title: Update objects.py\nBody: None",
+  "Title: Catch AttributeError when attempting to get DIRECTORY_ENTRY_COM_DESCIPTOR on non-CLR files\nBody: None\nComment: i prefer this solution, but thank you https://github.com/kevoreilly/CAPEv2/commit/a5db416a14bcbb64041a7193c2e5a0518b876eb4",
+  "Title: Update the html package to use Microsoft Edge by default\nBody: with IE as a fallback",
+  "Title: Update whitelist_domains.txt\nBody: Add domains contacted by modern versions of Microsoft Edge",
+  "Title: Microsoft Office 2021 applications exit shortly after opening a file while capemon is running\nBody: CAPE will launch the Office application, and the file will open, but then close a second later if capemon is monitoring, even if human simulation is disabled. I'm thinking Office must be crashing.\r\n\r\nI know that the CAPE documentation [recommends](https://capev2.readthedocs.io/en/latest/installation/guest/requirements.html#additional-software) using Microsoft Office 2010 SP2, but I don't have that version, and it is very difficult, if not impossible to find untainted ISOs for old versions of Microsoft Office.\r\n\r\nThankfully, I have a copy of Office 2016, which works well with CAPE. Other users might not be so lucky.\nComment: :D dude you will need to start developing cape if you are going that bleeding edge, is not paid sandbox where you have on salary a lot of devs\nComment: Yep I hate to be harsh but that version of office is 'not supported'.\nComment: I will however update the documentation to reflect that Office 2016 is another version that should work.\nComment: Docs updated: https://github.com/kevoreilly/CAPEv2/commit/8c57f5505a6c52d9114e04abb53191e9c31777e1\nComment: Totally get it. Just wanted to document it. I'll try other versions too so I can build a list of what works and what doesn't.\r\n\r\nI'm also going to work on making the signatures less noisy for modern versions of office. I've got a personal todo list of PRs I want to do eventually, ranging from signatures to documentation. I just don't know anything about Windows internals (or C really - Python is my jam) to help at all with `capemon`. That said, I'd love to learn if either of you have pointers on where to start.\nComment: all the contributions are more than welcome. My personal policy here is that if i don't use that feature, i don't care about it :D the good open source life ahahahah",
+  "Title: Updated docs to reflect pyw preference and some troubleshooting with poetry upgrade\nBody: I think it is important to warn the users that the **standard, preferred** agent.py version is the cmd-windows-less *.pyw one.\r\nAdded some indications that may come handy when upgrading with poetry.\nComment: thanks",
+  "Title: Fix for rescheduling tasks and updates to tests.\nBody: See the individual commit messages for more info.",
+  "Title: A question on CAPE's usage of Guacamole\nBody: Hello all, I recently opened a ticket that was closed as it was not using the supported hypervisor. I have made some progress on this issue on my own and am near a resolution I believe, but I am having trouble navigating through all the configuration files for guacamole. I am planning on doing some heavy customization, where are the guacamole configuration files that contain information that you would typically find in a guacamole.properties standalone installation of guacamole? If this isn't part of a configuration file, is there anywhere else containing python code that interacts with guacamole besides web/web/guac_settings and guac_urls? I will keep looking on my own but if any of the developers know some other locations where I can access these files that would be greatly appreciate. Thank you very much!\nComment: you could use the same closed ticket, everyone receives notification about comments there FYI. only those files from CAPE side\nComment: > you could use the same closed ticket, everyone receives notification about comments there FYI. only those files from CAPE side\r\n\r\nSo you're saying that those are only the files CAPE uses in relation to guac? I've had a lot of trouble locating any of the other configuration files for guacamole on my system...\nComment: that is guacd files, you need to referer to their oficial docs for the rest how they handle the rest",
+  "Title: Recent analysis table tab bug\nBody: I stumbled on a minor UI bug that is confusing for new users.\r\n\r\n1. Start on the Files tab of the table in the recent analysis page, which is the initial tab \r\n2. Click on a tab other than File (e.g., Static, URLs, or PCAPs)\r\n3. Click on an analysis task or refresh the current page\r\n4. Click on Recent in the navigation bar\r\n5. Click on the Files tab\r\n\r\nThe Files tab will be selected, but the table content will be for the previously selected tab until you refresh the page or click on another tab and then click on the Files tab again.\r\n\r\nHere is a GIF of the issue.\r\n\r\n![2023-06-08_09-27-58](https://github.com/kevoreilly/CAPEv2/assets/44679/8ea780e0-9fd0-47fb-81b1-902c09c226c4)\r\n\r\nI know most of us are not web devs, so I'm not sure how to fix this Hopefully someone else knows.\nComment: you can research how to fix it and submit PR ;) \nComment: ok found whaat was wrong, thanks",
+  "Title: dotnet\nBody: None",
+  "Title: Installer improvements\nBody: ## installer/kvm-qemu.sh\r\n\r\n- Bump `libvirt` version from `9.0.0` to `9.4.0`\r\n  - See https://www.libvirt.org/news.html for improvements (nothing that breaks CAPE)\r\n\r\n- Bump QEMU version from `7.0.0` to `8.0.2`\r\n  - See https://wiki.qemu.org/ChangeLog/8.0 for improvements (nothing that breaks CAPE)\r\n  - Addresses `CVE-2023-0330` (Could also just upgrade `QEMU` to `7.2.3` instead)\r\n  - Accommodate changes in the `QEMU` 8 `configure` script by replacing the `--enable-jemalloc` option with `--enable-malloc=jemalloc`\r\n  - Added `apt-mark hold qemu` command\r\n    - This is the only method of holding the `qemu`  package version that worked for me on Ubuntu 22.04 LTS\r\n\r\n- Move the commands to remove old versions of `libvirt` from the `install_kvm_linux()` function to the `install_libvirt()` function\r\n  - Add `libvirt` to the list of existing packages to attempt to remove and hold, because the `libvirt0` package was renamed `libvirt` in Ubuntu 22.04 LTS\r\n  - Remove any existing `libvirt` library binaries that might have been left over after the removal of the old packages\r\n  - Remove the `ibvirt-python-$libvirt_version`  directory after installing `libvirt-python` to avoid permission errors if `cd /opt/CAPEv2/ ; sudo -u cape poetry run extra/poetry_libvirt_installer.sh` is ran later\r\n\r\n- Remove `openbios-sparc` `openbios-ppc` packages as build dependencies for `QEMU`\r\n  - These are metapackages for `qemu-system-data`, which conflicts with the content of the bundled `qemu` package that will be built and installed by `kvm-qemu.sh` (This applies to both `QEMU` 7 and 8)\r\n\r\n## extra/poetry_libvirt_installer.sh\r\n\r\n- Bump `libvirt` version from `9.0.0` to `9.4.0`\r\n  - See https://www.libvirt.org/news.html for improvements (nothing that breaks CAPE)\r\n  - Separate ZIP download and extraction into two steps, and always extract the ZIP if the extracted folder does not exist\r\n\r\n## installer/cape2.sh\r\n\r\n- Remove the `yara-python` directory after installing it to avoid permission issues if `cd /opt/CAPEv2/ ; sudo -u cape poetry run extra/poetry_yara_installer.sh` needs to be ran again\r\n\nComment: thank you, nice summary also <3",
+  "Title: capemon causes OS crashes in unpatched Windows 10 21H2 build 10.0.19041.1288 (WinBuild.160101.0800)\nBody: It turns out the \"black screen\" and random OS crashing had nothing to do with the configuration or build of libvirt/KVM/QEMU, but was caused by come kind of conflict between `capemon` with some versions of Windows 10. Affter so many rebuilds and testing I wasn't sure of that until now. Unfortunately, I wasn't able to identify a specific combination of builds of Windows 10 and `capemon` that fixed the issue, due to the cumulative nature of Windows 10+ updates. All I know is that once I applied the latest Windows 10 21 H2 patches at this time (which brought my build up to 19044.2965, the crashing during analysis stopped. \r\n\r\n@kevoreilly Not sure if you want to debug this or just put a warning about this in the documentation, I don't know enough about `capemon` or Windows internals to offer a fix, but I did manage to grab a minidump once when I got an actual BSOD instead of a full-on crash. I could also provide my full VM image if you like. I'd rather not share either of those things publicly for OPSEC reasons, but let me know if you have a way I can get them to you privately. \nComment: Here's the report from BSOD viewer\r\n\r\n```text\r\n==================================================\r\nDump File         : 060723-8015-01.dmp\r\nCrash Time        : 6/7/2023 6:24:00 PM\r\nBug Check String  : CRITICAL_PROCESS_DIED\r\nBug Check Code    : 0x000000ef\r\nParameter 1       : ffffc901`200e0080\r\nParameter 2       : 00000000`00000000\r\nParameter 3       : 00000000`00000000\r\nParameter 4       : 00000000`00000000\r\nCaused By Driver  : ntoskrnl.exe\r\nCaused By Address : ntoskrnl.exe+3f71b0\r\nFile Description  : NT Kernel & System\r\nProduct Name      : Microsoft\u00ae Windows\u00ae Operating System\r\nCompany           : Microsoft Corporation\r\nFile Version      : 10.0.19041.1288 (WinBuild.160101.0800)\r\nProcessor         : x64\r\nCrash Address     : ntoskrnl.exe+3f71b0\r\nStack Address 1   : \r\nStack Address 2   : \r\nStack Address 3   : \r\nComputer Name     : \r\nFull Path         : C:\\Windows\\Minidump\\060723-8015-01.dmp\r\nProcessors Count  : 2\r\nMajor Version     : 15\r\nMinor Version     : 19041\r\nDump File Size    : 510,268\r\nDump File Time    : 6/7/2023 6:24:30 PM\r\n==================================================\r\n```\nComment: I am interested in trying to find the source of the issues but I am afraid that this information is not going to be enough to help...\r\n\r\nThere are two likely candidates when it comes to bsod - as capemon is a usermode dll it has limited opportunities to cause full system crashes. The two most likely possibilities are after injection into services.exe (for certain types of detonation) or injection into lsass.exe as part of the tldump feature implemented in an auxiliary module.\r\n\r\nTherefore if you are able to reproduce these crashes currently with the latest monitor I would ask you to try and determine whether either of these might be a factor. services.exe will only be monitored during some detonations/file types and tlsdump aux module can easily be switched off to quickly determine whether this is a factor.\nComment: Thanks. I'll do more testing this weekend.\nComment: Turns out the root cause was insufficient memory due to the issue described in #1618. I guess the issue didn't happen as much in newer builds of Windows because they are more memory efficient.   ",
+  "Title: Microsoft Edge fails to launch properly when using capemon 8aa7e30\nBody: # Expected Behavior\r\n\r\nMicrosoft Edge should launch correctly when a URL analysis is requested.\r\n\r\n# Current Behavior\r\n\r\nMicrosoft Edge does not launch when `capemon` from commit 8aa7e30 is used.\r\n\r\n# Failure Information (for bugs)\r\n\r\nReverting to `capemon` from commit e1caf4f fixes the issue.\r\n\r\n## Steps to Reproduce\r\n\r\n1. Run a URL analysis\r\n\r\n## Context\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | 8aa7e30\r\n| OS version       | Windows 10 \r\n\r\n## Failure Logs\r\n\r\n\r\n[27_analysis.log](https://github.com/kevoreilly/CAPEv2/files/11682135/27_analysis.log)\r\n[27_report.json.txt](https://github.com/kevoreilly/CAPEv2/files/11682137/27_report.json.txt)\r\n\nComment: I have moved to firefox and have not found any issues yet with it\nComment: I've just confirmed that this occurs in both Edge 94 and 114 \nComment: Thanks for the report - fixed with the commit mentioned above\nComment: Well, this is interesting. After I upgraded to this release of `capemon` I started having issues with crashes and black screens either shortly after the URL analysis starts, or near the end of a 200 second analysis using the version of Edge that comes with the Windows 10 21H2 install ISO (92.0.902.67). I think it was something to do with the injection into `services.exe` that you talked about.\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/issues/1588#issuecomment-1589288367\r\n\r\n> There are two likely candidates when it comes to bsod - as capemon is a usermode dll it has limited opportunities to cause full system crashes. The two most likely possibilities are after injection into services.exe (for certain types of detonation) or injection into lsass.exe as part of the tldump feature implemented in an auxiliary module.\r\n\r\nI have several update-related services for Microsoft Edge disabled, because the update GPO policies are only monitored on domain-joined systems.\r\n\r\n- Microsoft Edge Elevation Service (MicrosoftEdgeElevationService)\r\n- Microsoft Edge Update Service (edgeupdate)\r\n- Microsoft Edge Update Service (edgeupdatem)\r\n\r\nEdge really hates it when you do that, to the point where on newer builds of Edge, the entire system will crash if you try to use the browser with those services disabled, even without CAPE running at all. ",
+  "Title: Fix potential UnboundLocalError in linux analyzer.\nBody: If an exception was raised in the call to `module()`, it would result in an UnboundLocalError in the finally block because aux would not have been assigned. Likewise, the `except` blocks were referencing `aux`, which might not exist.",
+  "Title: Fix issue with pre-commit hook.\nBody: newer versions of poetry detect an issue with the pyproject.toml in older versions of isort. See https://github.com/PyCQA/isort/issues/2077.",
+  "Title: W10 KVM requieres Domain LogIn Data for \"JRS Ltd\"\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n\r\n# Expected Behavior\r\n\r\nSetup Dialog for Windows 10 User \r\n\r\n# Current Behavior\r\n\r\nAfter setting Up the ISO File the W10 Sandbox requieres a Domain Login for a company called  \"JRS LTD\". I found nothing in the configs. Its obvisually a dummy user but the credentials a unknown for me. \r\n\r\n\r\n\nComment: we have no idea what is that and is not related to cape. google it\nComment: alright thank you\nComment: I had that problem when I first installed Windows. The cause was the hotspot internet connection I had at the time. Keep the VM off the internet during setup and it will work fine.",
+  "Title: Address conflict with QEMU package, bump QEMU to 8.0.2, and bump libvirt to 9.4.0\nBody: - Remove `openbios-sparc` `openbios-ppc` APT packages as build dependencies for `QEMU`\r\n  - These are metapackages for `qemu-system-data`, which conflicts with the content of the bundled `qemu` package that will be built by `kvm-qemu.sh` (This applies `QEMU` 7 and 8)\r\n  - Bump `libvirt` version from `9.0.0` to `9.4.0` in `installer/kvm-qemu.sh` and `extras/poetry_libvirt_installer.sh`\r\n    - See https://www.libvirt.org/news.html for changes\r\n  - Bump `QEMU` version from `7.0.0` to `8.0.2`\r\n    - See https://wiki.qemu.org/ChangeLog/8.0 for changes\r\n    - Addresses `CVE-2023-0330` (Could also just upgrade `QEMU` to `7.2.3` instead)\r\n    - Accommodate changes in the `QEMU` 8 `configure` script by replacing the `--enable-jemalloc` option with `--enable-malloc=jemalloc`\r\n\nComment: Converting this to a draft PR because I need to solve this error when I try to start VMs.\r\n\r\n>  Failed to parse xml document '/usr/share/libvirt/cpu_map/index.xml'\r\n\r\nThe file does not exist.\nComment: Turns out, all I had to do was rerun `installer/kvm-qemu.sh all` and reboot.  This PR is fine after all.\r\n\r\nThe upgrade did change my NIC model, so I had to redo the static IP addresses of al of my VMs and recreate my snapshots. A minor inconvenience, but worth calling out.\nComment: Never mind. The upgrade to QEMU 8.0 seems to have broken the anti-anti VM patches. I'll roll it back to 7.2.3\nComment: Actually, the PR is fine. I accidently ran `installer/kvm-qemu.sh qemu` in my testing, instead of `installer/kvm-qemu.sh all`, so the `seabios` patches didn't get applied. Once that was fixed, everything was fine. no changes to network adaptors either.\r\n\r\nThis is what happens when I try to multitask. \ud83e\udd26\ud83c\udffc\u200d\u2642\ufe0f \nComment: Every time I think I have the black screen issue fixed, it happens worse than before! I'm going to do some testing with QEMU 7.2.3 and see if that's any better.",
+  "Title: Failed to run the processing module \"CAPE\": 'PDFReference' object has no attribute 'hasElement'\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ ] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n(couple of commits behind the latest commit as I set up my instance 3 days ago, none of the newer ones as of submitting of this issue address this)\r\n# Expected Behavior\r\n\r\nI'm expecting that the main processing module CAPE does not error out completely when analyzing a malware sample and that the File Details section shows up like here\r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/71756551/bd8a6071-bc30-4223-bbc4-be3ed6a1b2d1)\r\n\r\n# Current Behavior\r\n\r\nBut it does error out, and File Details are missing\r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/71756551/eae34f33-3370-406f-b694-892026948df0)\r\n# Failure Information (for bugs)\r\n\r\nWhen processing analysis results of a .pdf file I got from MalwareBazaar (https://bazaar.abuse.ch/sample/293ad4950baf9f25ff33af94191618aab9a25e9e9ec7ab84861509348121122f/), the processing module CAPE encounters an exception, and as a result, the File Details section (which I assume includes static analysis results) is missing.\r\n\r\n\r\n## Steps to Reproduce\r\n\r\nJust submit the pdf for analysis and wait for the results to show up.\r\n\r\n## Context\r\n\r\nI assume the problem is with analyzing JavaScript, as the process log of the analysis mentions it.\r\nI don't have an account on capesandbox.com so I couldn't test the sample on the public instance, though I did find one analysis which also has File Details missing https://www.capesandbox.com/analysis/391162/\r\n\r\nI did try to install peepdf on my instance as well, since it is mentioned as an optional dependency, and it also seemed like a good idea to have it for analyzing .pdf files. I am however unsure if I even installed it correctly. I tried to follow the instructions here https://github.com/CAPESandbox/peepdf  but the setup.py files errored out on me, and since CAPE now uses Poetry, I figured I'd add the dependencies using Poetry\r\n\r\nFirst I added the peepdf dependency using poetry (in /opt/CAPEv2/ as the user \"cape\")\r\n\r\npoetry add https://github.com/CAPESandbox/peepdf/archive/20eda78d7d77fc5b3b652ffc2d8a5b0af796e3dd.zip#egg=peepdf==0.4.2\r\n\r\nThen I cloned the stpyv8 library, copied the directory to /opt/CAPEv2 and added it to CAPE\r\n\r\nsudo cp -r stpyv8-ubuntu-22.04-3.10 /opt/CAPEv2 (ran this command in a different directory as the user \"user\")\r\npoetry add stpyv8-ubuntu-22.04-3.10/stpyv8-11.2.214.9-cp310-cp310-linux_x86_64.whl (ran this command as the user \"cape\")\r\n\r\nAnd lastly I installed libemu (ran the first two commands as \"user\") on the system so I could then add the pylibemu dependency (as \"cape\")\r\n\r\nwget http://archive.ubuntu.com/ubuntu/pool/universe/libe/libemu/libemu2_0.2.0+git20120122-1.2build1_amd64.deb http://archive.ubuntu.com/ubuntu/pool/universe/libe/libemu/libemu-dev_0.2.0+git20120122-1.2build1_amd64.deb\r\nsudo apt install ./libemu2_0.2.0+git20120122-1.2build1_amd64.deb ./libemu-dev_0.2.0+git20120122-1.2build1_amd64.deb\r\n\r\npoetry add pylibemu\r\n\r\nI'm not sure if this was the way to install peepdf and all its dependencies, so the issue is either in my setup, or something's wrong with the CAPE processing module, and I'm not that skilled yet to go and debug the issue there. Any ideas where lies the issue, or even recommendations on how to analyze .pdf files using CAPE?\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | 8746cc04e6c06b567f4a791827629f1ab0f6491a\r\n| OS version       | Ubuntu 22.04.02 LTS host, Windows 10 20H2 guest\r\n\r\n## Failure Logs\r\nanalysis log to show that nothing went wrong during the analysis\r\n\r\n[analysis.log](https://github.com/kevoreilly/CAPEv2/files/11666373/analysis.log)\r\n\r\nprocess log of the analysis of the sample used\r\n\r\n[process-8.log](https://github.com/kevoreilly/CAPEv2/files/11666303/process-8.log)\r\n\r\npyproject.toml where all Poetry dependencies used are listed since I tried to install peepdf\r\n\r\n[pyproject.txt](https://github.com/kevoreilly/CAPEv2/files/11666331/pyproject.txt)\r\n\nComment: all those pdfs modules are dead and obsolete\nComment: I'm not sure if I understand what you mean, you're saying that I just shouldn't bother with peepdf and remove it along with pylibemu and stpyv8 from my install? Do you have any recommendations for any other libraries or anything that might help with analyzing pdfs using CAPE?\nComment: Yes, in case if you wont dig into code and update the code. No im not aware\nof any decente nowaday\n\nEl mi\u00e9, 7 jun 2023, 10:54, SuvakSamuel ***@***.***> escribi\u00f3:\n\n> I'm not sure if I understand what you mean, you're saying that I just\n> shouldn't bother with peepdf and remove it along with pylibemu and stpyv8\n> from my install? Do you have any recommendations for any other libraries or\n> anything that might help with analyzing pdfs using CAPE?\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1582#issuecomment-1580233823>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3ZAN35EBV7DWHXO2ULXKA6U5ANCNFSM6AAAAAAY4S5O7A>\n> .\n> You are receiving this because you commented.Message ID:\n> ***@***.***>\n>\n\nComment: Okay, so I ran poetry remove on everything related to peepdf, reloaded the processor and ran analyses on two samples which had this issue. Thankfully both of them now show the File Details section.\r\nMight dig into the peepdf code in the future, gotta wrap up my bachelor thesis first (:\r\nBefore I close this issue, if I have any questions regarding CAPE or if I want to ask if I set up something correctly and all that kind of stuff that isn't really an issue with CAPE, should I send an email to someone or how should I proceed?\nComment: you can ask it here, everyone who is watching repo will see it, and if they want they will respond",
+  "Title: extra/poetry_libvirt_installer.sh does not work beyond 9.3.0\nBody: As I was trying out the existing install scripts with newer versions of dependencies, I noticed that `libvirt` 9.4.0 installs correctly on a system level using `installer/kvm-qemu.sh`, but using `extra/poetry_libvirt_installer.sh` to install `libvirt` in the Poetry environment only works up to `libvirt` 9.3.0 (the script is currently configured to install `libvirt` 9.0.0) not sure if/when `libvirt` >=9.4.0 will be needed though. Just thought I'd call it out.\r\n\r\n```python\r\nrunning build\r\nrunning build_py\r\nTraceback (most recent call last):\r\n  File \"/tmp/libvirt-python-9.4.0/generator.py\", line 1794, in <module>\r\n    emit_py_code(sys.argv[1])\r\n  File \"/tmp/libvirt-python-9.4.0/generator.py\", line 1319, in emit_py_code\r\n    classes = open(classes_file, \"w\")\r\nPermissionError: [Errno 13] Permission denied: 'build/libvirt.py'\r\nTraceback (most recent call last):\r\n  File \"/tmp/libvirt-python-9.4.0/setup.py\", line 337, in <module>\r\n    setup(name = 'libvirt-python',\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/setuptools/__init__.py\", line 108, in setup\r\n    return distutils.core.setup(**attrs)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/setuptools/_distutils/core.py\", line 185, in setup\r\n    return run_commands(dist)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/setuptools/_distutils/core.py\", line 201, in run_commands\r\n    dist.run_commands()\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/setuptools/_distutils/dist.py\", line 969, in run_commands\r\n    self.run_command(cmd)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/setuptools/dist.py\", line 1221, in run_command\r\n    super().run_command(command)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/setuptools/_distutils/dist.py\", line 988, in run_command\r\n    cmd_obj.run()\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/setuptools/_distutils/command/build.py\", line 131, in run\r\n    self.run_command(cmd_name)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/setuptools/_distutils/cmd.py\", line 318, in run_command\r\n    self.distribution.run_command(command)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/setuptools/dist.py\", line 1221, in run_command\r\n    super().run_command(command)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/setuptools/_distutils/dist.py\", line 988, in run_command\r\n    cmd_obj.run()\r\n  File \"/tmp/libvirt-python-9.4.0/setup.py\", line 155, in run\r\n    subprocess.check_call([sys.executable, \"generator.py\", \"libvirt\", apis[0], \"py\"])\r\n  File \"/usr/lib/python3.10/subprocess.py\", line 369, in check_call\r\n    raise CalledProcessError(retcode, cmd)\r\nsubprocess.CalledProcessError: Command '['/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python3', 'generator.py', 'libvirt', '/usr/share/libvirt/api/libvirt-api.xml', 'py']' returned non-zero exit status 1.\r\nProcessing /tmp/libvirt-python-9.4.0\r\n  Preparing metadata (setup.py) ... done\r\nBuilding wheels for collected packages: libvirt-python\r\n  Building wheel for libvirt-python (setup.py) ... error\r\n  error: subprocess-exited-with-error\r\n  \r\n  \u00d7 python setup.py bdist_wheel did not run successfully.\r\n  \u2502 exit code: 1\r\n  \u2570\u2500> [47 lines of output]\r\n      running bdist_wheel\r\n      running build\r\n      running build_py\r\n      Traceback (most recent call last):\r\n        File \"/tmp/libvirt-python-9.4.0/generator.py\", line 1794, in <module>\r\n          emit_py_code(sys.argv[1])\r\n        File \"/tmp/libvirt-python-9.4.0/generator.py\", line 1319, in emit_py_code\r\n          classes = open(classes_file, \"w\")\r\n      PermissionError: [Errno 13] Permission denied: 'build/libvirt.py'\r\n      Traceback (most recent call last):\r\n        File \"<string>\", line 2, in <module>\r\n        File \"<pip-setuptools-caller>\", line 34, in <module>\r\n        File \"/tmp/libvirt-python-9.4.0/setup.py\", line 337, in <module>\r\n          setup(name = 'libvirt-python',\r\n        File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/setuptools/__init__.py\", line 108, in setup\r\n          return distutils.core.setup(**attrs)\r\n        File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/setuptools/_distutils/core.py\", line 185, in setup\r\n          return run_commands(dist)\r\n        File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/setuptools/_distutils/core.py\", line 201, in run_commands\r\n          dist.run_commands()\r\n        File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/setuptools/_distutils/dist.py\", line 969, in run_commands\r\n          self.run_command(cmd)\r\n        File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/setuptools/dist.py\", line 1221, in run_command\r\n          super().run_command(command)\r\n        File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/setuptools/_distutils/dist.py\", line 988, in run_command\r\n          cmd_obj.run()\r\n        File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/wheel/bdist_wheel.py\", line 343, in run\r\n          self.run_command(\"build\")\r\n        File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/setuptools/_distutils/cmd.py\", line 318, in run_command\r\n          self.distribution.run_command(command)\r\n        File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/setuptools/dist.py\", line 1221, in run_command\r\n          super().run_command(command)\r\n        File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/setuptools/_distutils/dist.py\", line 988, in run_command\r\n          cmd_obj.run()\r\n        File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/setuptools/_distutils/command/build.py\", line 131, in run\r\n          self.run_command(cmd_name)\r\n        File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/setuptools/_distutils/cmd.py\", line 318, in run_command\r\n          self.distribution.run_command(command)\r\n        File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/setuptools/dist.py\", line 1221, in run_command\r\n          super().run_command(command)\r\n        File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/setuptools/_distutils/dist.py\", line 988, in run_command\r\n          cmd_obj.run()\r\n        File \"/tmp/libvirt-python-9.4.0/setup.py\", line 155, in run\r\n          subprocess.check_call([sys.executable, \"generator.py\", \"libvirt\", apis[0], \"py\"])\r\n        File \"/usr/lib/python3.10/subprocess.py\", line 369, in check_call\r\n          raise CalledProcessError(retcode, cmd)\r\n      subprocess.CalledProcessError: Command '['/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python', 'generator.py', 'libvirt', '/usr/share/libvirt/api/libvirt-api.xml', 'py']' returned non-zero exit status 1.\r\n      [end of output]\r\n  \r\n  note: This error originates from a subprocess, and is likely not a problem with pip.\r\n  ERROR: Failed building wheel for libvirt-python\r\n  Running setup.py clean for libvirt-python\r\nFailed to build libvirt-python\r\nERROR: Could not build wheels for libvirt-python, which is required to install pyproject.toml-based projects\r\n```\nComment: D'oh! I'm an idiot. Imade a mistake when running the script the first time, which messsed up the permissions in /tmp\nComment: how u sloved this problem?",
+  "Title: Bump QEMU version to 7.2.3\nBody: I cant find a list of security specific changes, but 7.2.3 builds fine with the existing install script\nComment: I did find one CVE in 7.2.0 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0330",
+  "Title: Bump Guacamole version to 1.5.2\nBody: 1.5.2 is the only version available at https://downloads.apache.org/guacamole/ now",
+  "Title: Update default location of tcpdump in  auxiliary.conf.default\nBody: Ubuntu 22.04 LTS stores `tcpdump` in `/usr/bin`, not `/usr/sbin`",
+  "Title: Add passport.net to whitelist_domains.txt\nBody: None",
+  "Title: Page not found : Guac issue\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I did read the README!\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nView virtual machine over VNC using guac.\r\n\r\n# Current Behavior\r\n\r\nCAPE Sandbox redirects to Page not found upon trying to resolve 127.0.0.1:8000/guac/00/<sd>\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. step 1\r\nFollowed set-up procedure described in Read the docs for interactive session. Run installation script for guacamole. Within web.conf, activate guacamole. Within ESXi config, set up remoteconnection as detailed in this report for cuckoo-sandbox.\r\nhttps://github.com/cuckoosandbox/cuckoo/issues/2319\r\nAllowed connection to Windows 10 analysis machine over VNC.\r\n2. step 2\r\nconfirm guacd and guac-web.service are running and functional.\r\n3. you get it...\r\nUpon attempting to access the interactive desktop mode, you are met with this:\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/95260807/963b5f86-122d-44ae-b136-608fa3f09db2)\r\n(Essentially states: Using the URLconf defined in web.urls, Django tried these url patterns, in this order.)\r\nNo path is discovered.\r\n\r\nConfiguration:\r\n[guacamole]\r\nenabled = yes\r\nmode = vnc\r\nusername =\r\npassword =\r\nguacd_host = localhost\r\nguacd_port = 4822\r\nguest_protocol = vnc\r\nguacd_recording_path = /opt/CAPEv2/storage/guacrecordings\r\nguest_rdp_port = 3389\r\n\r\nguacd.service \r\nJune 02 19:20:14 userv systemd[1]: Started Guacamole Server.\r\nJune 02 19:20:14 userv guacd[232629]: Guacamole proxy daemon (guacd) version 1.5.0 started\r\nJune 02 19:20:14 userv guacd[232629]: guacd[232629]: INFO:        Guacamole proxy daemon (guacd) version 1.5.0 started\r\nJune 02 19:20:14 userv guacd[232629]: guacd[232629]: INFO:        Listening on host 127.0.0.1, port 4822\r\nJune 02 19:20:14 userv guacd[232629]: Listening on host 127.0.0.1, port 4822\r\n\r\nguacd-web.service\r\nNo errors and application start up completes, running on 127.0.0.1:8008\r\n\r\n## Context\r\n\r\nI suspect my issues lay in the fact that I am using this through ESXi instead of KVM. I know this set up is possible with cuckoo and esxi using the setup I linked above. My next step will be to utilize KVM over ESXi as I believe this will be easiest solution, however if anyone has any advice on this setup for me to try I would be very thankful. \r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 22.04, Windows 10, VMware ESXi\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\nThere are no logs generated by the guac service, and no failure logs are detected within CAPE when I run an analysis. No mention of any issues with CAPE Debug unrecognized_key are found. \r\n\r\nVirtual Machine is using VNCViewer and I have confirmed that it can be connected to via VNC. Is this a guacamole issue, django issue or VNC issue?\r\n\r\nAny advice or help at all is greatly appreciated. Thank you!\nComment: ![image](https://github.com/kevoreilly/CAPEv2/assets/95260807/ad504dd3-b44f-4d1f-801a-9c9831a1883b)\r\nFor reference guac-web.service\nComment: Are you using NGINX?\r\nI had a similar issue weeks ago, maybe this can be useful to you https://github.com/kevoreilly/CAPEv2/issues/1508\nComment: > Are you using NGINX? I had a similar issue weeks ago, maybe this can be useful to you #1508\r\n\r\nHello yes I saw your post and it did help me quite a bit, but I am still having the same issue. Maybe you can help me understand here, NGINX server is a proxy that wants to pass the localhost 127.0.0.1:8000 (CAPE Page) to gunicorn 127.0.0.1:8008 when you \"browse\" to the /guac page correct? My CAPE installation is running on localhost and I know gunicorn is running on localhost:8008, shouldn't this mean that if I manually browse to that interface, I should be greeted with either an error.html page or wait.html page? I had set up NGINX a few times and rewrote my config twice, but was still having the same issue, unsure if it could be NGINX but my config is essentially the same thing you see from the \"Interactive Session\" portion of the Readthedocs. \nComment: Can you share the settings for your nginx config?\nComment: ![image](https://github.com/kevoreilly/CAPEv2/assets/95260807/d957fbc4-2ad5-42af-90f5-e798bad3bb66)\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/95260807/0dcaa14b-3ae1-4987-9fae-c4adaba5cfd1)\r\n\r\nHere is my current config for nginx. I believe this seems to be functional.\nComment: Are you accessing the web through your browser from 127.0.0.1:8000 or from 127.0.0.1:80?\r\n\r\nIt appears that you are currently accessing the web from 127.0.0.1:8000, whereas you should be accessing it from 127.0.0.1:80 as per your NGINX configuration.\r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/91615276/b8a929f4-24af-4600-83ca-ffd20ca9b443)\r\n\nComment: Thank you that was an issue I did not notice. However now it has thrown a few errors in my face, the most directly relevant is the following error message that is proposed after the fix you recommended above. Appreciate all the help on this! \r\n\r\nEdit: I've confirmed that that file exists and that all files referenced in my nginx config exists and SHOULD be accessible. \r\n![image](https://github.com/kevoreilly/CAPEv2/assets/95260807/dd9f8397-bdcc-4d59-8f59-e8e0d5f4291d)\r\n\nComment: Is there any extra info in cape-web or guac-web logs?\nComment: ![image](https://github.com/kevoreilly/CAPEv2/assets/95260807/14243d41-e863-4bc6-86f2-ea6601625c9b)\r\nI assume this will take some digging but at least it is attempting to pull that vm (the rest of the cutoff text is just the name of the virtual machine).\r\n\r\nEDIT: It would appear there is no external configuration needed to get this working for ESXI as I have confirmed it is functional outside of guac. This is simply an issue of guac-web.service as any other VNC service can reach and make the connection to said virtual machine.\nComment: you are welcome to extend that, we only suggest to use kvm and is uniq hypervisor that we support and focus on. Thanks @MarioRL0 for helping here \nComment: @MarioRL0 any ideas on this issue here? Seems like maybe an issue of permissions but not completely sure. Had an issue with nginx too where my 127.0.0.1:80 page kept slowly losing CSS, started with favicons then completely lost css. Rewrote the config copying yours seems to be fixed (for now). If no ideas on my issue no worries I understand this is outside of the scope of what CAPE is officially developed for, appreciate all the help regardless :-)\r\n\r\nEDIT:  To me this error message that I get should be an issue regardless of what hypervisor I am using but maybe I am mistaken. Being unable to access the error.html page would be an issue of permissions?\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/95260807/af8d9ca9-bccd-4f6e-8639-74b8fa2ac6ea)\nComment: I don't think I can help you with the error you're getting because in all the time I've been using CAPE, I haven't come across the same error. I'm sorry about that.\nComment: > I don't think I can help you with the error you're getting because in all the time I've been using CAPE, I haven't come across the same error. I'm sorry about that.\r\n\r\nNo problem friend, thank you anyway. \nComment: > I don't think I can help you with the error you're getting because in all the time I've been using CAPE, I haven't come across the same error. I'm sorry about that.\r\n\r\nHello again :) I have decided to completely scrap ESXi as I don't think my issue is getting resolved any time soon. I have set up KVM locally and everything seems okay except I am having the same error you encountered, blank screen instead of rendered VM through guacamole. Here is my nginx config (running on port 80 like you mentioned). No action is seen in guacamole console ever (I tried using the websocket-tunnel test but got nothing back). Finally here as well is the virtual machine configuration.\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/95260807/abf97896-20c3-4231-b33d-f8fbb5a7b3e2)\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/95260807/722fc333-0d9d-41cc-b082-160fa135f413)\nComment: in docs there is how to test this without nginx, so do that first so you can ensure that problems is not way much deeper\nComment: > in docs there is how to test this without nginx, so do that first so you can ensure that problems is not way much deeper\r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/95260807/d2826f21-2cd2-4822-8bdf-f1d5b8c72c3c)\r\n\r\nI am met with this screen. Interestingly if I stop the nginx service and then attempt to make that connection via the same process but over port 8000 I am met with this. \r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/95260807/f2fcbbc4-e425-4a4a-ba3a-86c3d51238cc)\r\n\r\n\r\nI've noticed with my django application that sometimes it doesn't have the correct permissions to display pages due to an icon on the page. For example, earlier it attempted to show me error.html when I was setting CAPE up with ESXi but the page couldn't load because it had an invalid block tag for \"static\". Upon just removing that line, which I will provide a screenshot of below, I was able to connect to the page without any CSS present. Do you think this may be related to my current issue? \r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/95260807/2e51b528-5af6-4789-aea3-f98265458f3f)\r\n\r\nUpon removing all these elements from all those pages (error, wait and index), I am able to use a View Task button on the page, but that is it. Guacd.service shows no connection attempts at all. The most interesting thing that I will deep dive into is the guac-web.service status message upon attempting to open that connection (regardless of either being a real analysis or a test one using the test script you recommended). I will log into my github on my virtual machine and copy out the entire message as it doesn't fit on my screen currently, and will respond with that as well. \r\n\r\nCouldn't log in on my VM for some reason here you go however, I am only showing the relevant error messages as there are no other errors present besides this below. \r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/95260807/1571fbba-3e07-45f5-9e0d-5b47e0c84217)\r\n\r\nEDIT: Some addition items of interest. \r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/95260807/28444932-a86b-441d-9e55-1018a88c0eef)\r\n\nComment: Update my issue has been resolved! For anyone experiencing that same issue, here are the steps I took and how they resolved my issue. The most important part of this was that at least something loads on the guac page when you open interactive session. If anything except a blank screen opens you have additional issues. If the page opens blank, check the pages console like I did above, and see if you are getting that same error. If you aren't able to load the page and receive any errors in reference to \"static\" remove all CSS from all of the html pages found in the directory /opt/CAPEv2/web/guac/templates/guac. \r\n(Just comment out anything with the <link header). This helped me to fix my issue, additionally triple check your [ guacamole ] config found in the web.conf folder. I made changes to this in my testing that ended up causing me an additional day of headache. \r\n\r\nIf you are reading this forum in hopes of getting ESXi to work, bad news for you I still have no idea what is wrong with that, its like guacamole cannot find that virtual machine despite having access for the analysis and all connection information is the same between them. Not sure if I will ever resolve that may take a look some time this week but for now KVM is the best move in my opinion! \nComment: Thanks for feedback, i guess you need to check the guac-main.js or\r\nsomething like thay, as it was coded for kvm, so maybe the problem is there\r\nwith hour hypervisor\r\n\r\nEl mar, 13 jun 2023, 15:53, CarsonHrusovsky ***@***.***>\r\nescribi\u00f3:\r\n\r\n> Update my issue has been resolved! For anyone experiencing that same\r\n> issue, here are the steps I took and how they resolved my issue. The most\r\n> important part of this was that at least something loads on the guac page\r\n> when you open interactive session. If anything except a blank screen opens\r\n> you have additional issues. If the page opens blank, check the pages\r\n> console like I did above, and see if you are getting that same error. If\r\n> you aren't able to load the page and receive any errors in reference to\r\n> \"static\" remove all CSS from all of the html pages found in the directory\r\n> /opt/CAPEv2/web/guac/templates/guac.\r\n> (Just comment out anything with the <link header). This helped me to fix\r\n> my issue, additionally triple check your [ guacamole ] config found in the\r\n> web.conf folder. I made changes to this in my testing that ended up causing\r\n> me an additional day of headache.\r\n>\r\n> If you are reading this forum in hopes of getting ESXi to work, bad news\r\n> for you I still have no idea what is wrong with that, its like guacamole\r\n> cannot find that virtual machine despite having access for the analysis and\r\n> all connection information is the same between them. Not sure if I will\r\n> ever resolve that may take a look some time this week but for now KVM is\r\n> the best move in my opinion!\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1576#issuecomment-1589363982>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH36GTXTOXK2UQ3TUMZTXLBWD7ANCNFSM6AAAAAAYYZTOZY>\r\n> .\r\n> You are receiving this because you modified the open/close state.Message\r\n> ID: ***@***.***>\r\n>\r\n\nComment: > Thanks for feedback, i guess you need to check the guac-main.js or something like thay, as it was coded for kvm, so maybe the problem is there with hour hypervisor El mar, 13 jun 2023, 15:53, CarsonHrusovsky ***@***.***> escribi\u00f3:\r\n\r\nI was actually able to get guac working with ESXi by modifying a few of the python files found within /opt/CAPEv2/web/guac/. Namely consumers.py and views.py are needed to be edited to allow guac to make this connection. I can already make this connection in an ugly fashion by changing a few parts of the guac's GET request and running my KVM virtual machine locally at the same time as the actual machine used for analysis. I plan to put a post up here once I am done with a comprehensive guide on how to do this as I was unable to find any documentation before. \r\n\r\nI do have one question however, specifically within views.py, how does getting a DSN record go when making a connection to host? As a reference, if you go into /opt/CAPEv2/modules/machinery/esx.py you we see the following information in regards to making a connection. \r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/95260807/577b750f-4616-4710-ba6f-f651c20a9bbb)\r\n\r\nI've tried to mirror this within guac's views.py but am not sure if this is exactly the correct format. Clearly this connection is already made once so it is possible. This connection is only needed by guac to tell if the virtual machine is on or off, and know what name to look for. I can make a VERY ugly hack to get this to work without needing this check, but it would be more smooth obviously if I could get guac working normally. Here is the code that I've modified (not working correctly yet) within /opt/CAPEv2/web/guac/views.py.\r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/95260807/65697c79-7231-405b-937b-9efc9e7271e8)\r\n\r\nI have ideas and will be testing, but if you have any additional insight I am all ears!\r\n\r\nEDIT: Got it figured out, will post my findings on a new post here soon. :)",
+  "Title: Update guac install and recordings config\nBody: Latest guacd now adds group permissions to session recordings, so no need for fstab workaround.\nComment: `guacamole_version` also needs bumped to `1.5.2` because it is the only available version now.",
+  "Title: Web UI navigation bar disappears in mobile/narrow browsers \nBody: If a browser is too narrow (a window or a phone), the main navigation bar of the web UI disappears. The CAPE Web UI uses Bootstrap 4.5 as the UI framework. According to the [documentation and demo page](https://getbootstrap.com/docs/4.5/components/navbar/) for that release, the navigation bar should be responsive to narrow/mobile browsers and turn into a \"hamburger menu\". I don't have much experience with frontend web development, so I'm not sure why this is happening.\r\n\r\nHere is a GIF recording of the issue on Microsoft Edge on Windows. I can reproduce the same issue on Firefox for Windows, Linux, and Android as well.\r\n\r\n![2023-06-01_21-05-39](https://github.com/kevoreilly/CAPEv2/assets/44679/60b16476-270f-4246-afb3-dbda78450099)\r\n\nComment: Nobody of us os webdev, so we wont investigar\u00e9 that as is not suppoused to use on phone",
+  "Title: Revert recording path to match cape.sh install.\nBody: None\nComment: @enzok I'm a little confused about the relationship between `/opt/CAPEv2/storage/guacrecordings` and \r\n`/var/www/guacrecordings`, and why the default `guacd_recording_path` in `conf/web.conf.default` [points to](https://github.com/kevoreilly/CAPEv2/blob/087b0eaf386e757c96cf8173b0ec201bd91290fc/conf/web.conf.default#L180) `/opt/CAPEv2/storage/guacrecordings`, but the example NGINX config points to ` /var/www/guacrecordings`. It looks like it has something to do with this `/etc/fstab` line added by the `capev2/sh` installer, but I'm not sure what that line does. \r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/b938b60709ca31c35ef4442e6b4ad59ed723f2fb/installer/cape2.sh#LL1295C50-L1295C73\r\n\r\nCan you explain? Thanks.\nComment: Sure.     \r\n    \r\nWe use bindf to create a link to the CAPE recordings directory so we can control the user/group ownership and permissions of the guacd recordings in the CAPE directory, so they are available to web service. I haven't checked, but at the time guacd was ignoring user/group when writing files. If that's changed, then it's certainly unnecessary to use this workaround.\nComment: During my troubleshooting of problems, I found that `guacd` sets the owner and group of the recordings to the user it is running , and ignores the group setting in the `systemd` file. It sets the file permissions to `u=rw,g=r,o=,` so with `guacd` running as the `cape` user, the simplest solution I've found is to add `www-data` to the `cape` group.\r\n\r\nI guess either way works.\nComment: Then there must have been a change with the new version. Simple is better.\nI'll test it out.\n\n\nOn Fri, Jun 2, 2023 at 11:21 AM Sean Whalen ***@***.***>\nwrote:\n\n> During my troubleshooting of problems, I found that guacd sets the owner\n> and group of the recordings to the user it is running , and ignores the\n> group setting in the systemd file. It sets the file permissions to\n> u=rw,g=r,o=, so with guacd running as the cape user, the simplest\n> solution I've found is to add www-data to the cape group.\n>\n> I guess either way works.\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/pull/1573#issuecomment-1573911049>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AB3X3YETL2ULDFPSVYSX3HTXJIAGDANCNFSM6AAAAAAYYIMLHY>\n> .\n> You are receiving this because you were mentioned.Message ID:\n> ***@***.***>\n>\n-- \nLorenzo\n\n\u201cHappiness is not the absence of problems, but the ability to deal with\nthem.\" - Albert Einstein\n\nComment: OK so it seems that group permissions are added to the recording files. This wasn't the case before, I can see my older files are user only. Given this development, I will go ahead and update the installer and revert this commit.\nComment: Thanks! I was looking at the code for the player, and it looks like `guac-playback.js` is custom built on top of guacamole-common-js. Did you write that? If so, could you add a button that would expand the player's size without going full screen? That would make it easier to observe small details while taking notes in another window.\nComment: Yes I cobbled that together. I can take a look at that, not sure when\nthough.\n\nOn Fri, Jun 2, 2023 at 3:54\u202fPM Sean Whalen ***@***.***> wrote:\n\n> Thanks! I was looking at the code for the player, and it looks like\n> guac-playback.js is custom built on top of guacamole-common-js. Did you\n> write that? If so, could you add a button that would expand the player's\n> size without going full screen? That would make it easier to observe small\n> details while taking notes in another window.\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/pull/1573#issuecomment-1574240301>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AB3X3YE5CVUEBGUF2HWVGBLXJJAG3ANCNFSM6AAAAAAYYIMLHY>\n> .\n> You are receiving this because you were mentioned.Message ID:\n> ***@***.***>\n>\n\n\n-- \nLorenzo\n\n\u201cHappiness is not the absence of problems, but the ability to deal with\nthem.\" - Albert Einstein\n",
+  "Title: Staging\nBody: None",
+  "Title: Use actual analysis counts per hour and day instead of estiments\nBody: This is a to-do item and notes for myself to complete when I have time and finally get all of my VM issues fixed. I think it should be a pretty simple code change, so if someone wants to tackle this before me, go for it.\r\n\r\nThe current method of estimating analysis counts is very inaccurate.\r\n \r\n![image](https://github.com/kevoreilly/CAPEv2/assets/44679/d24421be-2ad8-478e-ab8e-0775738b685d)\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/1d988832390dbe5238146fffc348d90e963a4f1c/web/dashboard/views.py#L68\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/1d988832390dbe5238146fffc348d90e963a4f1c/web/templates/dashboard/index.html#L5\r\n\r\nRather than estimating the number of tasks per hour and day, it would be better to the actual counts. CAPE uses SQLAlchemy for database abstraction. We could filter tasks based on the `completed_on` field.\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/lib/cuckoo/core/database.py#L424\r\n\r\nThis Stack Overflow [answer](https://stackoverflow.com/questions/51451768/sqlalchemy-querying-with-datetime-columns-to-filter-by-month-day-year) explains how SQLAlchemy  queries can be filtered by a timestamp.\r\n\r\nSo, theoretically, functions similar to these could be added to the `Database` class in the `lib.cuckoo.core.database` module to get accurate counts.\r\n\r\n```python\r\ndef count_completed_tasks_last_hour(self):\r\n    filter_after = datetime.today() - timedelta(hours = 1)\r\n    return len(payments = Task.query.filter(Task.completed_on >= filter_after).all())\r\n\r\ndef count_completed_tasks_last_day(self):\r\n    filter_after = datetime.today() - timedelta(days = 1)\r\n    return len(payments = Task.query.filter(Task.completed_on >= filter_after).all())\r\n```\nComment: hm well is depend on the preference i guess, my sandbox is sometime is on fire, sometime is ultra boring, so estimated is better for me. maybe config option in web.conf which stat you prefer? but it should be DIY, i won't do it\nComment: Understood. I'll submit a PR to add an option when I have time.\nComment: Tnx\nComment: Looking forward to the PR",
+  "Title: Update/sysmon linux\nBody: The PR lays the foundation for using the Linux analyzer with the Sysmon auxiliary module (https://github.com/CAPESandbox/community/pull/361) in the community repo\nComment: Thanks\nComment: confs become a mess again. i just added conf/*.conf to gitignore so in 1-2 weeks we should wipe *.conf and create a copy on deployment",
+  "Title: Update NGINX instructions\nBody: - Add `www-data` to `cape` group so NGINX can read recording files created by `guacd`\r\n- Add warning about the lack of authentication on the CAPE `guac-web` service and recording files\r\n-  Add optional NGINX HTTP basic authentication instructions\r\n- Set `guacd.service` group back to cape\r\n  - Revert change from https://github.com/kevoreilly/CAPEv2/commit/d722d7367ebed8ce72546fb1ffbff53d539ea8f0 because `guacd` will write files owned by the same group as the user either way\r\n\r\nI understand that even without authentication, the risk of unauthorized access to Guacamole console and records are low, because the CAPE session ID and the Guacamole session GUID must be known to build the URL. That said, the ideal situation would be to build the functionality of the `guac-web` Django application into the main Django application, so the same authentication mechanism could be used for everything, and the recording files could be served behind that instead of being served directly by NGINX as static files.\r\n\r\nI don't know enough about Django right now to do that myself but thought I should call out the (small) risk, and hope that maybe someone will take up the task of combining the web apps before I can, because I don't think I'll be able to get to it anytime soon.\nComment: to merge it I need @enzok approve\nComment: It's fine. Please see https://github.com/kevoreilly/CAPEv2/pull/1573 as well.",
+  "Title: intro parsers tests\nBody: None",
+  "Title: Fix broken CAPA\nBody: Fix invalid import added in https://github.com/kevoreilly/CAPEv2/commit/38de7de6bb5b90aac703e7bd7d5bad96406b13b6",
+  "Title: Clicking on the FLARE CAPA, BinGraph, Vba2Graph or VirusTotal buttons on dropped/dumped/payload files doesn't generate results\nBody: Clicking on the FLARE CAPA, BinGraph, Vba2Graph or VirusTotal buttons on dropped/dumped/payload files doesn't generate results. Instead, the page browser starts to load a page, and then returns the user to the Quick Overview tab.\r\n\r\nThis bug is repeatable in the public instance of CAPE.\r\n\r\nhttps://capesandbox.com/analysis/393763/\nComment: just tested in local bingraph on demand, works just fine, on capesandbox not everything is enabled\nComment: bear in mind that if there is no result, it not stores nothing, so it will be \"infinite loop\" of possible clicking i know that is not perfect solution, but i didn't know what to store there to show that there is no results. maybe will introduce `msg` one day\r\n\r\n\r\ncheck payloads, i just generated bingraph there \nComment: In my case BinGraph button doesn't work. \r\nI've seen the first lines of modules/reporting/bingraph.py\r\n\r\nHAVE_BINGRAPH = False\r\nif not reporting_conf.bingraph.on_demand:\r\n    try:\r\n        from binGraph.binGraph import generate_graphs as bingraph_gen\r\n\r\n        HAVE_BINGRAPH = True\r\n    except ImportError:\r\n        HAVE_BINGRAPH = False\r\n\r\n\r\nconf/reporting.conf has the following related lines:\r\n\r\n# https://github.com/geekscrapy/binGraph\r\n# requires -> apt-get install python-tk\r\n[bingraph]\r\nenabled = yes\r\non_demand = yes\r\nbinary = yes\r\n# geenrate bingraphs for cape/procdumps\r\ncape = yes\r\nprocdump = yes\r\n\r\n\r\nIf I try to import binGraph from python the package is not available:\r\n\r\ninfected@cape-srv:/opt/CAPEv2$ poetry run python\r\nPython 3.10.6 (main, May 29 2023, 11:10:38) [GCC 11.3.0] on linux\r\nType \"help\", \"copyright\", \"credits\" or \"license\" for more information.\r\n>>> from binGraph.binGraph import generate_graphs as bingraph_gen\r\nTraceback (most recent call last):\r\n  File \"<stdin>\", line 1, in <module>\r\nModuleNotFoundError: No module named 'binGraph'\r\n\r\n\r\nThe package does not get listed with pip neither:\r\n\r\ninfected@cape-srv:/opt/CAPEv2$ poetry run pip list | grep -i graph\r\ncryptography           39.0.1\r\n\r\n\nComment: Because you need to run poetry as the cape user with `sudo -u cape poetry`\nComment: Running poetry from cape user has the same effect:\r\n\r\ninfected@cape-srv:~$ cd /opt/CAPEv2/\r\ninfected@cape-srv:/opt/CAPEv2$ sudo -u cape poetry run python\r\nPython 3.10.6 (main, May 29 2023, 11:10:38) [GCC 11.3.0] on linux\r\nType \"help\", \"copyright\", \"credits\" or \"license\" for more information.\r\n>>> from binGraph.binGraph import generate_graphs as bingraph_gen\r\nTraceback (most recent call last):\r\n  File \"<stdin>\", line 1, in <module>\r\nModuleNotFoundError: **No module named 'binGraph'**\r\n\r\nI think that it must be installed separately as changelog.md says...\r\n\r\n* Bingraph:\r\n    * matplotlib `forward` deprication fixed\r\n    * moved to external dependency, we host CAPE's version here https://github.com/CAPESandbox/binGraph.\r\n    * __ACTION REQUIRED__\r\n        * `poetry run pip install -U git+https://github.com/CAPESandbox/binGraph`\r\n\r\n\nComment: Ah yes, I forgot it must be the CAPE specific fork of BinGraph. I have an existing pending PR to add that detail to documentation.\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/pull/1605/files#diff-f25187ef69ca65250a58d579384220ce0ef221b95eb4e7d2555568233a395bd1R110",
+  "Title: Unhandled CAPA exceptions when not on demand cause entire processing of the task to fail\nBody: When the `on_demand` setting is set to `no` in the `CAPA` section of `processing.conf`, CAPA in ran on every sample, payload and dump as a part of the final processing of the analysis, before the results are displayed to the user. It turns out that if unhandled CAPA exceptions occur during this time, the entire task will fail with the status of `failed_processing`.\r\n\r\nThe configuration file hints that the `on_demand` setting should be kept set to `yes`, but the English isn't clear.\r\n\r\n> still should be enabled to use this feature on demand\r\n\r\nFor example, this sample triggers this condition. https://capesandbox.com/analysis/393763/ 60711919ef00c7bff67dbeb8dfa743525c23a10becdf14d1214ce6dbf94d2f5b\r\n\r\n```python\r\n2023-05-30 20:19:20,349 [Task 2] [lib.cuckoo.common.integrations.capa] ERROR: \r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/capa.py\", line 240, in flare_capa_details\r\n    extractor = capa.main.get_extractor(file_path, \"auto\", capa.main.BACKEND_VIV, [], False, disable_progress=True)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/capa/main.py\", line 503, in get_extractor\r\n    raise UnsupportedFormatError()\r\ncapa.exceptions.UnsupportedFormatError\r\n023-05-30 20:20:41,645 [Task 2] [lib.cuckoo.common.cape_utils] DEBUG: Running CAPE on /opt/CAPEv2/storage/analyses/2/CAPE/aca1a538b04254feb5844ddb3ab55aadc39d5959799ba7cdc8ce996ddd76fb21\r\n2023-05-30 20:20:41,661 [Task 2] [modules.processing.CAPE] WARNING: CAPE: data loss may occur, existing config found for: QakBot\r\n2023-05-30 20:20:41,662 [Task 2] [lib.cuckoo.common.cape_utils] DEBUG: CAPE duplicate output file skipped: matching entrypoint\r\n2023-05-30 20:21:15,516 [Task 2] [lib.cuckoo.common.cape_utils] DEBUG: Running CAPE on /opt/CAPEv2/storage/analyses/2/CAPE/80d17f8066f5a467a0bb92f64e07eb8a1e779adba5651819da07243e7fa2b45e\r\n2023-05-30 20:21:15,533 [Task 2] [modules.processing.CAPE] WARNING: CAPE: data loss may occur, existing config found for: QakBot\r\n2023-05-30 20:21:15,534 [Task 2] [lib.cuckoo.common.cape_utils] DEBUG: CAPE duplicate output file skipped: matching entrypoint\r\n2023-05-30 20:21:16,647 [Task 2] [lib.cuckoo.common.cape_utils] DEBUG: Running CAPE on /opt/CAPEv2/storage/analyses/2/CAPE/2200078132d0e03deb0c48e785b614c1b68e7b8cc21ee0efc71809f7637a83fb\r\n2023-05-30 20:21:16,647 [Task 2] [modules.processing.CAPE] INFO: CAPE: config returned for: QakBot\r\n2023-05-30 20:21:16,647 [Task 2] [modules.processing.CAPE] WARNING: CAPE: data loss may occur, existing config found for: QakBot\r\n2023-05-30 20:21:17,532 [Task 2] [lib.cuckoo.common.cape_utils] DEBUG: Duplicate payload skipped: ssdeep grade 99, threshold 95\r\n2023-05-30 20:21:52,360 [Task 2] [lib.cuckoo.common.cape_utils] DEBUG: Running CAPE on /opt/CAPEv2/storage/analyses/2/CAPE/cf6735a437e3970e330b63a645f0f0ba49098b536ef1342bd4ef49fba38b8ac1\r\n2023-05-30 20:21:52,375 [Task 2] [modules.processing.CAPE] WARNING: CAPE: data loss may occur, existing config found for: QakBot\r\n2023-05-30 20:21:52,375 [Task 2] [lib.cuckoo.common.cape_utils] DEBUG: CAPE duplicate output file skipped: matching entrypoint\r\n2023-05-30 20:21:53,169 [Task 2] [capa.features.extractors.common] DEBUG: unsupported file format: 00000000\r\n2023-05-30 20:21:53,170 [Task 2] [lib.cuckoo.common.integrations.capa] ERROR: \r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/capa.py\", line 240, in flare_capa_details\r\n    extractor = capa.main.get_extractor(file_path, \"auto\", capa.main.BACKEND_VIV, [], False, disable_progress=True)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/capa/main.py\", line 503, in get_extractor\r\n    raise UnsupportedFormatError()\r\ncapa.exceptions.UnsupportedFormatError\r\n2023-05-30 20:21:54,131 [Task 2] [capa.features.extractors.common] DEBUG: unsupported file format: 00000000\r\n2023-05-30 20:21:54,132 [Task 2] [lib.cuckoo.common.integrations.capa] ERROR: \r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/capa.py\", line 240, in flare_capa_details\r\n    extractor = capa.main.get_extractor(file_path, \"auto\", capa.main.BACKEND_VIV, [], False, disable_progress=True)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/capa/main.py\", line 503, in get_extractor\r\n    raise UnsupportedFormatError()\r\ncapa.exceptions.UnsupportedFormatError\r\n2023-05-30 20:22:28,148 [Task 2] [lib.cuckoo.common.cape_utils] DEBUG: Running CAPE on /opt/CAPEv2/storage/analyses/2/CAPE/09e646ad3a928d4508932c0aec8d7debdc7829cc1cbe29c0637b9691687108c9\r\n2023-05-30 20:22:28,165 [Task 2] [modules.processing.CAPE] WARNING: CAPE: data loss may occur, existing config found for: QakBot\r\n2023-05-30 20:22:28,165 [Task 2] [lib.cuckoo.common.cape_utils] DEBUG: CAPE duplicate output file skipped: matching entrypoint\r\n2023-05-30 20:22:28,927 [Task 2] [capa.features.extractors.common] DEBUG: unsupported file format: 00000000\r\n2023-05-30 20:22:28,927 [Task 2] [lib.cuckoo.common.integrations.capa] ERROR: \r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/capa.py\", line 240, in flare_capa_details\r\n    extractor = capa.main.get_extractor(file_path, \"auto\", capa.main.BACKEND_VIV, [], False, disable_progress=True)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/capa/main.py\", line 503, in get_extractor\r\n    raise UnsupportedFormatError()\r\ncapa.exceptions.UnsupportedFormatError\r\n2023-05-30 20:23:06,425 [Task 2] [lib.cuckoo.common.cape_utils] DEBUG: Running CAPE on /opt/CAPEv2/storage/analyses/2/CAPE/171f538bdb25ad588a6fcbc3e98995c02b3371a4e2540fe738326f4d9d73c66e\r\n2023-05-30 20:23:06,443 [Task 2] [modules.processing.CAPE] WARNING: CAPE: data loss may occur, existing config found for: QakBot\r\n2023-05-30 20:23:06,443 [Task 2] [lib.cuckoo.common.cape_utils] DEBUG: Duplicate payload skipped: ssdeep grade 99, threshold 95\r\n2023-05-30 20:23:06,444 [Task 2] [lib.cuckoo.common.cape_utils] DEBUG: CAPE duplicate output file skipped: matching entrypoint\r\n2023-05-30 20:23:07,345 [Task 2] [capa.features.extractors.common] DEBUG: unsupported file format: 00000000\r\n2023-05-30 20:23:07,346 [Task 2] [lib.cuckoo.common.integrations.capa] ERROR: \r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/capa.py\", line 240, in flare_capa_details\r\n    extractor = capa.main.get_extractor(file_path, \"auto\", capa.main.BACKEND_VIV, [], False, disable_progress=True)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/capa/main.py\", line 503, in get_extractor\r\n    raise UnsupportedFormatError()\r\ncapa.exceptions.UnsupportedFormatError\r\n2023-05-30 20:23:08,107 [Task 2] [capa.features.extractors.common] DEBUG: unsupported file format: 00000000\r\n2023-05-30 20:23:08,107 [Task 2] [lib.cuckoo.common.integrations.capa] ERROR: \r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/capa.py\", line 240, in flare_capa_details\r\n    extractor = capa.main.get_extractor(file_path, \"auto\", capa.main.BACKEND_VIV, [], False, disable_progress=True)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/capa/main.py\", line 503, in get_extractor\r\n    raise UnsupportedFormatError()\r\ncapa.exceptions.UnsupportedFormatError\r\n2023-05-30 20:23:08,842 [Task 2] [lib.cuckoo.common.cape_utils] DEBUG: Duplicate payload skipped: ssdeep grade 99, threshold 95\r\n2023-05-30 20:23:43,834 [Task 2] [lib.cuckoo.common.cape_utils] DEBUG: Running CAPE on /opt/CAPEv2/storage/analyses/2/CAPE/c665558c79e96adae87e50b95ac319e9557266429416fb8c3b12f8052919fdfe\r\n2023-05-30 20:23:43,862 [Task 2] [modules.processing.CAPE] WARNING: CAPE: data loss may occur, existing config found for: QakBot\r\n2023-05-30 20:23:43,879 [Task 2] [capa] DEBUG: generating vivisect workspace for: /opt/CAPEv2/storage/analyses/2/CAPE/c665558c79e96adae87e50b95ac319e9557266429416fb8c3b12f8052919fdfe\r\n2023-05-30 20:23:47,953 [Task 2] [capa] DEBUG: format: pe, platform: windows, architecture: i386, number of functions: 595\r\n2023-05-30 20:23:47,953 [Task 2] [capa] DEBUG: CAPA_SAVE_WORKSPACE unset, not saving workspace\r\n2023-05-30 20:23:55,204 [Task 2] [capa] DEBUG: analyzed function 0x100194c0 and extracted 41 features\r\n2023-05-30 20:23:55,226 [Task 2] [capa] DEBUG: analyzed file and extracted 1260 features\r\n2023-05-30 20:23:56,363 [Task 2] [capa.features.extractors.common] DEBUG: unsupported file format: e99f0000\r\n2023-05-30 20:23:56,363 [Task 2] [lib.cuckoo.common.integrations.capa] ERROR: \r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/capa.py\", line 240, in flare_capa_details\r\n    extractor = capa.main.get_extractor(file_path, \"auto\", capa.main.BACKEND_VIV, [], False, disable_progress=True)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/capa/main.py\", line 503, in get_extractor\r\n    raise UnsupportedFormatError()\r\ncapa.exceptions.UnsupportedFormatError\r\n2023-05-30 20:24:32,286 [Task 2] [lib.cuckoo.common.cape_utils] DEBUG: Running CAPE on /opt/CAPEv2/storage/analyses/2/CAPE/a356c36ed5d40ccee3a07504d816029342ada0de6e80f1418ae192fdb493316c\r\n2023-05-30 20:24:32,302 [Task 2] [modules.processing.CAPE] WARNING: CAPE: data loss may occur, existing config found for: QakBot\r\n2023-05-30 20:24:32,302 [Task 2] [lib.cuckoo.common.cape_utils] DEBUG: Duplicate payload skipped: ssdeep grade 99, threshold 95\r\n2023-05-30 20:24:32,302 [Task 2] [lib.cuckoo.common.cape_utils] DEBUG: CAPE duplicate output file skipped: matching entrypoint\r\n2023-05-30 20:24:33,096 [Task 2] [lib.cuckoo.common.cape_utils] DEBUG: Duplicate payload skipped: ssdeep grade 99, threshold 95\r\n2023-05-30 20:25:06,479 [Task 2] [lib.cuckoo.common.cape_utils] DEBUG: Running CAPE on /opt/CAPEv2/storage/analyses/2/CAPE/7453b55235dc1ef218da1f3ab459b898f8cb39c6fe634208001ba96c03c1c0bd\r\n2023-05-30 20:25:06,496 [Task 2] [modules.processing.CAPE] WARNING: CAPE: data loss may occur, existing config found for: QakBot\r\n2023-05-30 20:25:06,496 [Task 2] [lib.cuckoo.common.cape_utils] DEBUG: CAPE duplicate output file skipped: matching entrypoint\r\n2023-05-30 20:25:07,393 [Task 2] [capa.features.extractors.common] DEBUG: unsupported file format: 00000000\r\n2023-05-30 20:25:07,393 [Task 2] [lib.cuckoo.common.integrations.capa] ERROR: \r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/capa.py\", line 240, in flare_capa_details\r\n    extractor = capa.main.get_extractor(file_path, \"auto\", capa.main.BACKEND_VIV, [], False, disable_progress=True)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/capa/main.py\", line 503, in get_extractor\r\n    raise UnsupportedFormatError()\r\ncapa.exceptions.UnsupportedFormatError\r\n2023-05-30 20:25:13,304 [Task 2] [capa] DEBUG: generating vivisect workspace for: /opt/CAPEv2/storage/analyses/2/procdump/986df92535657d5337e356081eb833d8a26e3187e04b12083f0a742543dd1479\r\n2023-05-30 20:25:13,470 [Task 2] [capa] DEBUG: format: pe, platform: windows, architecture: i386, number of functions: 31\r\n2023-05-30 20:25:13,470 [Task 2] [capa] DEBUG: CAPA_SAVE_WORKSPACE unset, not saving workspace\r\n\r\n2023-05-30 20:31:24,761 [Task 2] [capa] DEBUG: analyzed file and extracted 464 features\r\n```\nComment: idk how it can break if is under generic try/except, anyway added also UnsupportedFormatError handler here https://github.com/kevoreilly/CAPEv2/commit/38de7de6bb5b90aac703e7bd7d5bad96406b13b6",
+  "Title: human.py automated interaction will often start the Settings app and/or Microsoft Store in Windows 10 Pro 21H2 build 19044.2965\nBody: # Expected Behavior\r\n\r\n`human.py` automated interaction should not cause applications other than the sample to launch.\r\n\r\n# Current Behavior\r\n\r\nThe Windows 10 Settings app and/or the Microsoft store will often (but not always!) launch at some point while the analysis is running, even after removing `%USERPROFILE%\\AppData\\Local\\Microsoft\\WindowsApps` from the user `PATH` environment variable as described here https://github.com/kevoreilly/CAPEv2/issues/1237#issuecomment-1308208474 , and setting multiple Group Policy settings to try and disable the Microsoft Store.\r\n\r\n# Failure Information (for bugs)\r\n\r\nThis particular analysis was a JavaScript file that attempts to drop QuakBot, but it happens with almost any and every analysis when automated interaction is not disabled (e.g., pafish).\r\n\r\nThe Windows Store opens almost immediately after the sample is detonated, without even touching the Start menu (not sure why it is complaining about the internet connection when you can see the icon in the system tray shows an active internet connection). \r\n\r\n![005](https://github.com/kevoreilly/CAPEv2/assets/44679/4fcd6acf-859a-4615-99d5-6647eab0a197)\r\n\r\nRight after that, the Settings app opens.\r\n\r\n![007](https://github.com/kevoreilly/CAPEv2/assets/44679/184d8a28-2e6f-4af6-84e9-fc414b1033f7)\r\n\r\nSomehow, CAPE navigates to the Display options, despite that option not being visible in the small size of the settings window. \r\n\r\n![0012](https://github.com/kevoreilly/CAPEv2/assets/44679/12ee7580-33ec-4041-9a96-e14b2dcd66d6)\r\n\r\nThen the Microsoft Store window behind the Settings window is closed.\r\n\r\n![0015](https://github.com/kevoreilly/CAPEv2/assets/44679/96d745f5-ace8-46a6-a8a7-322c1c08fa36)\r\n\r\n![0017](https://github.com/kevoreilly/CAPEv2/assets/44679/9c97d8e2-63d3-4c8b-b771-0a2330aa201c)\r\n\r\nThen somehow, the Settings app is back to the main page before the analysis ends\r\n\r\n![0018](https://github.com/kevoreilly/CAPEv2/assets/44679/1a265e23-748b-45a6-a650-00df9b080f7d)\r\n\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Set up a CAPE VM running Windows 10 21H2 (possibly newer versions too, but I have not tested that yet. I can provide install ISOs if needed), with or without all current Windows update patches applied\r\n2. Remove `%USERPROFILE%\\AppData\\Local\\Microsoft\\WindowsApps` from the user `PATH` environment variable\r\n3. Set the `Computer Configuration\\Administrative Templates\\System\\Internet Communication Management\\Internet Communication settings\\Turn off access to the Store` Group Policy setting to `Enabled`\r\n4. Set the `Computer Configuration\\Administrative Templates\\Windows Components\\Store\\Disable all apps from Microsoft Store` Group Policy setting to `Enabled`\r\n5. Set the `Computer Configuration\\Administrative Templates\\Windows Components\\Store\\Turn off Automatic Download and Install of updates` Group Policy setting to `Enabled`\r\n6. Set the `Computer Configuration\\Administrative Templates\\Windows Components\\Store\\Turn off the Store application Group Policy setting to `Enabled`\r\n7. Reboot the VM\r\n8. Take a running snapshot for use with CAPE\r\n9. Run multiple files and/or URLs through the analysis VM with automated interaction enabled\r\n10. Run the same samples with automated interaction disabled for comparison\r\n\r\n\r\n## Context\r\n\r\n| Question         | Answer\r\n|-----------------|------------------------------------------------------\r\n| Git commit      | 2868a2f6337bd343568211f1a0893c3add71035c\r\n| OS version       | Windows 10 Pro 21H2 build 19044.2965\r\n\r\nThe problem of complications introduced by new Windows builds is only going to get worse. Microsoft does not provide ISOs for older releases of Windows 10 or 11 anymore unless you are a MSDN subscriber. This means that people building new sandbox VMs will be forced to use the latest release ISO or download potentially tainted older ISOs from third party mirrors. I'm lucky that I horded old ISOs back when Microsoft offered those ISOs for anyone to download directly.\nComment: i have the same version, just following that comment from another issue sovled that for me so i guess you will need to dig into how to solve that or wait till someone will solve that for you.\r\n\r\nPS thanks for improving a lot issue descriptions <3\nComment: You also need to remove `%USERPROFILE%\\AppData\\Local\\Microsoft\\WindowsApps` in the public folder, not just the account folder\nComment: > You also need to remove `%USERPROFILE%\\AppData\\Local\\Microsoft\\WindowsApps` in the public folder, not just the account folder\r\n\r\n@RoemIko  Do you mean delete the actual folder? Not just removing it from the PATH of the user?\nComment: Yes delete the entire folder\nComment: @RoemIko I don't see any `AppData` folder under `C:\\Users\\Public`. I just tried deleting the `WindowsApp` folder for my actual user, and that did not resolve the problem.\r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/44679/c4a8abd0-1356-4632-9f6e-c385e27dbfcd)\r\n\r\n@doomedraven Looking around the settings, it looks like there isn't a way to disable clicking? That might have a side effect of working around this issue. I'd like to allow it to move the mouse, but not click on random things. That can do other unexpected things when analyzing a an Office document or a URL in a browser.\nComment: idk, i did that long time ago, took snapshot and forgot about this, so i can't really help here much more\nComment: @seanthegeek is there another user account that can have that folder? I removed the appdata folder on the sandbox user and the public folder one. Which solved the problem on my end.\r\n\r\nAs for disabling clicking, you have to look in human.py where the function `click_mouse` is defined. Removing or altering it should help with your issue.\nComment: Also did you reboot the vm after removing the map?\nComment: I see what I did, I removed the folder out of the default user, try removing `C:\\Users\\Default\\AppData\\Local\\Microsoft\\WindowsApp`\nComment: Thanks. I just tried that and it didn't work either. \r\n \r\nEven before that change, I'm seeing the return of the black screen issue I described in #1562 that I thought I had fixed, even after reverting to a known good snapshot. These issues (that no one else sems to have) are making me question the integrity of my SSD...and my sanity. \ud83d\ude05\r\n\r\nI think my next step will be trying to rebuild everything from scratch on a new SSD. I'm not looking forward to going through phone activation for Windows and Office again.  I'm absolutly backing up that new VM right after I do that, before I touch anything else.\ud83e\udd26\ud83c\udffc\u200d\u2642\ufe0f\nComment: Yep! it was a faulty SSD. I rebuilt my entire sandbox from scratch and the Windows Store and black screen issues did not pop up again.\r\n\r\nI highly recommend the WD Red SN700 4 TB NVMe SSD (WDS400T1R0C) It is intended for NAS use and has a high durability rating of 5100 terabytes written (TBW). \nComment: I spoke too soon. The random black screen issue is fixed, but the Microsoft Store and/or Windows Settings keeps popping up close to the end of a 200 second analysis run. Nore of the above suggestions worked, so I decided to fully remove the Microsoft store app using PowerShell as Administrator.\r\n\r\n```powershell\r\nGet-AppxPackage -alluser *WindowsStore* | Remove-Appxpackage\r\nClear-History\r\n```\r\n\r\nHowever, the Settings app still opened up. Interestingly, pafish is the only sample that has done this that I've noticed so far.\r\n\r\n@doomedraven @RoemIko Can you try running pafish64.exe in your CAPE instance for 200 seconds and let me know what happens?\r\n\r\nhttps://github.com/a0rtega/pafish/releases/download/v0.6/pafish64.exe\r\n\nComment: pafish is not the only sample that does this after all. a js dropper opened the Settttings app too\nComment: I have reverted to a snapshot from before I removed the Microsoft Store. For now, I have set `human_windows` to `no` in the `auxiliary_modules` section of `conf/auxiliary.conf`. In a way it's nice, because it's one less thing our analysists have to remember when investigating a URL with live interaction. \ud83d\ude05\nComment: Sorry for the late reply, but my instance does not open the microsoft store or settings apps after removing the directory mentioned above. I tested with PaFish and with the following samples \r\n```\r\n123EDD3964EACCD437E0FF8405468F93C5FC27C509E39E402D878FEAC5772123\r\n27581AB44D1EA9116059D6D244296669E618E9D82B85D3B8FC699401EE244BC8\r\n67C3FF85084673708DE653609B8DA8E577C894D0670C16E4C5CB757DC40E5D50\r\n758BABB4A9A5FE4B8C01249407865B66D21151853EF0D89CBCDB5C4094381C27\r\n7E8C547FCC86E26B973E4C974DA8EE2C4CFE84846E2CDFCD7F265929D27602F9\r\n859A131B0865317EBF58FE6AEBFEA8F1C930D087A365CAA1C38286F4A2DA05DA\r\n95D144A3F878347C96562AF564FA54BBA59E451845AEC4EC328B342564917E4C\r\n966CFB695ADAA54A40C5306273DE74F5DE0924A7E874EE498591818C5A963B35\r\n9B60EF3F360061599935DCBCF4AA96F13B4121F7AD88D5B8CEA0CECABC2281A6\r\nA1653F99E47125596487D61C3C66D5D865BA3F0991203203660F51DA24CF0F4A\r\nAAE59FCE5C67C5EE3574F440E65A31889F081832DB3E214D7110FA0F52640FF4\r\nC58F4A0F76ACACB9CC4FCCED3DA5F60583277490FFFADB6BC0B7F94DCFE75595\r\nEDC15A47B8012E8B5C579865336EAAED2F458DAC3C46F341BC2956F49823F373\r\nF4784D48CD2A8CC765E9FCEDD275C97BB1261B0355386C0E6A7F31FC9A0DBF17\r\n```\nComment: ```\r\n2023-06-01 08:34:26,780 [root] INFO: Date set to: 20230613T07:58:49, timeout set to: 200\r\n```\nComment: Hmm. The only other possible difference I can think of is the Windows patch level. I had to install Windows patches to avoid the crashing issue I described in #1588, and with Windows 10+ patches being cumulative, I have no idea when a patch might have been introduced that breaks or fixes something with CAPE.\r\n\r\n@RoemIko @doomedraven Can you please try cloning one of your known good Windows 10 VMs, install the latest Windows patches, and see if you can reproduce the problem?\nComment: I dont have time for that and im not interested in that testing sorry\r\n\r\nEl mi\u00e9, 14 jun 2023, 16:23, Sean Whalen ***@***.***> escribi\u00f3:\r\n\r\n> Hmm. The only other possible difference I can think of is the Windows\r\n> patch level. I had to install Windows patches to avoid the crashing issue I\r\n> described in #1588 <https://github.com/kevoreilly/CAPEv2/issues/1588>,\r\n> and with Windows 10+ patches being cumulative, I have no idea when a patch\r\n> might have been introduced that breaks or fixes something with CAPE.\r\n>\r\n> @RoemIko <https://github.com/RoemIko> @doomedraven\r\n> <https://github.com/doomedraven> Can you please try cloning one of your\r\n> known good Windows 10 VMs, install the latest Windows patches, and see if\r\n> you can reproduce the problem?\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1564#issuecomment-1591322349>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH35AWPEQ6SCTBRCOXCLXLHCONANCNFSM6AAAAAAYUWEAKY>\r\n> .\r\n> You are receiving this because you were mentioned.Message ID:\r\n> ***@***.***>\r\n>\r\n\nComment: Apparently this was also caused by #1618 because it hasn't happened since I fixed that.",
+  "Title: Improvements to NGINX and guacd configuration\nBody: - Improvements to the example NGINX config file\r\n  - Make the `/recordings/playback/recfile` URI point to the correct file path\r\n  - Turn off auto indexing of the `/recordings/playback/recfile` URI for added privacy\r\n  - Support serving static files for the Django admin application\r\n  - Simplify the configuration by removing the `map` and `upstream` directives and moving the settings into the `location` directives\r\n  - Provide examples on how to prevent users from changing their own passwords and/or email addresses\r\n- `guacd` service improvements\r\n  -  Set `guacd.service` `group` to `www-data` so NGINX can read the recording files ",
+  "Title: Black screen during analysis on unpatched Windows 10 21H2 build 19044 on KVM \nBody: The issue was caused by #1618",
+  "Title: Update whitelist_domains.txt\nBody: - Move `\\.res\\.office365\\.com$` to the Office 365 domains list\r\n- Add `$` to the end of `crl\\.microsoft\\.com`\r\n- Add `msn-com\\.akamaized\\.net$` to the list of Microsoft domains\r\n- Add `\\.microsoft.net$` to the list of Microsoft domains\r\n- Add `\\.virtualearth\\.net$` to the list of Microsoft domains\r\n- Add `devtools\\.azureedge\\.net$` to the list of Microsoft domains (queried when the Developer Tools are opened in Microsoft Edge)\r\n- Add `_googlecast\\._tcp\\.local$` to the list of Google domains (Queried when programs like Chrome and related browsers like Edge are searching for Google Cast devices on the local network)\r\n- Add `\\.local$` to the list of Microsoft domains. It is a reserved TLD, so no external domains can use it. For some reason Edge (and possibly Chrome query three random non-existent `.local` domain names when the developer tools are opened.",
+  "Title: Fix registry write summary results\nBody: None",
+  "Title: Windows 7 installer prompting for a missing CD/DVD device driver on KVM\nBody: I'm still having some issues with Windows 10 that I need to do more troubleshooting on, so I decided to build a Windows 7 VM instead. When attempting to install Windows 7 using a Windows 7 Pro SP1 English ISO in KVM I received an error message before the EULA even loads.\r\n\r\nHost OS: Ubuntu 22.04 LTS\r\nQEMU: 7.2.0 (Installed from the CAPE `kvm-qemu.sh` install script)\r\nLibvirt: 9.0.0 (Installed from the CAPE `kvm-qemu.sh` install script)\r\n\r\n> A required CD/DVD drive device driver is missing. If you have a driver floppy disk, CD, DVD, or USB flash drive, please insert it now.\r\n>\r\n> Note: If the Windows installation media is in the CD/DVD drive, you can safely remove it for this step.\r\n\r\n![Screenshot of the Windows 7 installer error message](https://github.com/kevoreilly/CAPEv2/assets/44679/27b6fb71-3923-4460-8350-78860314e018)\r\n\r\nThe KVM device type for ISOs defaults to SATA. I have also tried SCSI USB and attaching the KVM virtio ISO as a second CDROM drive. \r\n\r\nAccording to this VMWare [support article](https://kb.vmware.com/s/article/1032711), this error can be caused by a truncated ISO download. However, I have used this ISO (SHA256 sum `3dae1a531b90fa72e59b4a86b20216188d398c8c070da4a5c5a44fe08b1b6e55`, which matches the hash of the download [provided by](https://archive.org/details/win-7-pro-sp1-english) the Internet Archive) successfully in VirtualBox and VMWare Workstation Pro, and if I recall correctly, I got it directly from Microsoft at the time. Because Windows 7 is no longer supported by Microsoft, they no longer provide ISO downloads of Windows 7, so the only place to find downloads is via third party mirrors where the ISOs may have been tampered with.\r\n\r\nDoes anyone know of a way to avoid this error, or where I can find a trustworthy Windows 7 ISO?\r\n\nComment: just select the IDE driver for win7, win7 doesn't support modernish driver as far as i remember, you can update that later once installed\nComment: @doomedraven Looks like the QEMU package built by `kvm-qemu.sh` does not include support for IDE.\r\n\r\n> Error changing VM configuration: unsupported configuration: IDE controllers are unsupported for this QEMU binary or machine type\nComment: Ah, nevermind. I had to select a different chipset (`i440FX` instead of `Q35`) manually at VM creation. virt-manager picks the wrong one even when I tell it what OS I'm using.",
+  "Title: Adding missing method definition for ts\nBody: Post-PR for https://github.com/kevoreilly/CAPEv2/pull/1556",
+  "Title: Hanging at running status, then failed_analysis !!\nBody: # Prerequisites\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n# Expected Behavior\r\n\r\nRun and get report for a redline malware sample.\r\n\r\n# Current Behavior\r\n\r\nHang at status *running* for 3 - 4 min and change to *failed_analysis*\r\nSometime the status is *reported*, but there is an error \"The specified analysis does not exist or not finished yet\" \r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. run cuckoo.py with cli: \"python3 cuckoo.py\"\r\n2. go to web interface and submit\r\n3. wait and more wait\r\n4. *failed_analysis*\r\n\r\n## Context\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| OS version       | Ubuntu 22.04 LTS\r\n\r\n## Failure Logs\r\n\r\ncuckoo.py:\r\n```\r\nOPTIONAL! Missed dependency: pip3 install https://github.com/CAPESandbox/peepdf/archive/20eda78d7d77fc5b3b652ffc2d8a5b0af796e3dd.zip#egg=peepdf==0.4.2\r\nOPTIONAL! Missed dependency: pip3 install -U git+https://github.com/DissectMalware/batch_deobfuscator\r\nOPTIONAL! Missed dependency: poetry run pip install -U git+https://github.com/CAPESandbox/httpreplay\r\n2023-05-30 09:29:32,507 [root] INFO: Updated running task ID 13 status to failed_analysis\r\n2023-05-30 09:29:32,606 [lib.cuckoo.core.scheduler] INFO: Using \"virtualbox\" machine manager with max_analysis_count=0, max_machines_count=10, and max_vmstartup_count=5\r\n2023-05-30 09:29:32,874 [lib.cuckoo.core.scheduler] INFO: Loaded 1 machine/s\r\n2023-05-30 09:29:32,876 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks\r\n2023-05-30 09:29:53,064 [lib.cuckoo.core.scheduler] INFO: Task #14: File already exists at '/opt/CAPEv2/storage/binaries/7ec9f0098df015190615ac77ffdfb043c93e2c91326c1be3316a1d00ee8b1154'\r\n2023-05-30 09:29:53,064 [lib.cuckoo.core.scheduler] INFO: Task #14: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_ip9wdaa2/inject.exe'\r\n2023-05-30 09:29:53,079 [lib.cuckoo.core.scheduler] INFO: Task #14: acquired machine cuckoo1 (label=Win10, arch=x64, platform=windows)\r\n2023-05-30 09:35:25,203 [lib.cuckoo.core.scheduler] ERROR: Timeout hit while for machine Win10 to change status\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 337, in launch_analysis\r\n    machinery.start(self.machine.label)\r\n  File \"/opt/CAPEv2/modules/machinery/virtualbox.py\", line 73, in start\r\n    self._wait_status(label, self.SAVED)\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 334, in _wait_status\r\n    raise CuckooMachineError(f\"Timeout hit while for machine {label} to change status\")\r\nlib.cuckoo.common.exceptions.CuckooMachineError: Timeout hit while for machine Win10 to change status\r\n2023-05-30 09:35:25,311 [lib.cuckoo.core.scheduler] WARNING: Task #14: Unable to stop machine Win10: Trying to stop an already stopped vm Win10\r\n2023-05-30 09:35:25,322 [lib.cuckoo.core.scheduler] ERROR: \r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 452, in run\r\n    success = self.launch_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 428, in launch_analysis\r\n    raise CuckooDeadMachine()\r\nlib.cuckoo.core.scheduler.CuckooDeadMachine\r\n2023-05-30 09:35:25,330 [lib.cuckoo.core.scheduler] INFO: Task #14: File already exists at '/opt/CAPEv2/storage/binaries/7ec9f0098df015190615ac77ffdfb043c93e2c91326c1be3316a1d00ee8b1154'\r\n2023-05-30 09:35:25,330 [lib.cuckoo.core.scheduler] INFO: Task #14: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_ip9wdaa2/inject.exe\r\n```\nComment: your vm is not configured properly. or your took snapshot in wrong state or agent is not running \nComment: Thanks for quick answer !\r\nI see, i can run the sample now.\r\nThe report appear in storage/<id> folder but dont show up on web\r\n\nComment: for that you need to check web or processing output, maybe you didn't enable/install mongo/es? maybe you added something that breaks it, there is tons of possibilities. i need more details\r\n\r\ncheck out `logs` for processing logs\nComment: I will do some debug at background first. Thanks for the answer\nComment: you are welcome, let us know what it was, so other maybe can find that useful",
+  "Title: Adding timestamps to DNS and HTTP calls;\nBody: Also:\r\n- Only run signatures if config asks",
+  "Title: Update database.py\nBody: None",
+  "Title: Revert \"Merge branch 'staging' of https://github.com/kevoreilly/CAPEv\u2026\nBody: \u20262 into staging\"\r\n\r\nThis reverts commit 5d0201ac97ee1c77e42be85f38592c9ebaabbb5a, reversing changes made to 33a1470e67b0bdb6a0b9ed3278fa964708fcc91b.",
+  "Title: testing\nBody: https://github.com/kevoreilly/CAPEv2/blob/843488e61cb8247af0efbb5e2ab8650344547844/lib/cuckoo/core/database.py#L661\n\n```python\n\n        \"\"\"Clean old stored machines and related tables.\"\"\"\n        # Secondary table.\n        # TODO: this is better done via cascade delete.\n        # TODO: sqlalchemy2\n        # self.engine.execute(machines_tags.delete())\n\n        with self.Session() as session:\n            # TODO testing\n            session.execute(machines_tags.delete())\n            try:\n                session.query(Machine).delete()\n                session.commit()\n            except SQLAlchemyError as e:\n                log.debug(\"Database error cleaning machines: %s\", e)\n                session.rollback()\n\n    @classlock\n    def delete_machine(self, name) -> bool:\n        \"\"\"Delete a single machine entry from DB.\"\"\"\n\n        with self.Session() as session:\n            try:\n                machine = session.query(Machine).filter_by(name=name).first()\n                if machine:\n                    session.delete(machine)\n                    session.commit()\n                    return True\n                else:\n                    log.warning(f\"{name} does not exist in the database.\")\n                    return False\n            except SQLAlchemyError as e:\n                log.debug(\"Database error deleting machine: %s\", e)\n                session.rollback()\n\n    @classlock\n    def add_machine(self, name, label, arch, ip, platform, tags, interface, snapshot, resultserver_ip, resultserver_port, reserved):\n\n```",
+  "Title: sqlalchemy2\nBody: self.engine.execute(machines_tags.delete())\n\nhttps://github.com/kevoreilly/CAPEv2/blob/843488e61cb8247af0efbb5e2ab8650344547844/lib/cuckoo/core/database.py#L657\n\n```python\n\n        \"\"\"Clean old stored machines and related tables.\"\"\"\n        # Secondary table.\n        # TODO: this is better done via cascade delete.\n        # TODO: sqlalchemy2\n        # self.engine.execute(machines_tags.delete())\n\n        with self.Session() as session:\n            # TODO testing\n            session.execute(machines_tags.delete())\n            try:\n                session.query(Machine).delete()\n                session.commit()\n            except SQLAlchemyError as e:\n                log.debug(\"Database error cleaning machines: %s\", e)\n                session.rollback()\n\n    @classlock\n    def delete_machine(self, name) -> bool:\n        \"\"\"Delete a single machine entry from DB.\"\"\"\n\n        with self.Session() as session:\n            try:\n                machine = session.query(Machine).filter_by(name=name).first()\n                if machine:\n                    session.delete(machine)\n                    session.commit()\n                    return True\n                else:\n                    log.warning(f\"{name} does not exist in the database.\")\n                    return False\n            except SQLAlchemyError as e:\n                log.debug(\"Database error deleting machine: %s\", e)\n                session.rollback()\n\n    @classlock\n    def add_machine(self, name, label, arch, ip, platform, tags, interface, snapshot, resultserver_ip, resultserver_port, reserved):\n\n```",
+  "Title: Staging\nBody: None",
+  "Title: Remove the protocol from the hostname value in web.conf\nBody: `CSRF_TRUSTED_ORIGINS` in `web/web/settings.py` expects the `hostname` value in `conf/web.conf` to be the hostname, not the full URL.\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/web/web/settings.py#L40\nComment: that is user task, we doing only mods in web.conf.default which is modified\nComment: This is a PR to modify `web.conf.default`, which has an incorrect value.\nComment: thanks, missed somehow default when was checking the filename \nComment: i guess is time to review CENTS, as this value was introduced for cents",
+  "Title: url analysis package\nBody: None\nComment: @seanthegeek \nComment: That's exactly what I wanted! Thanks! I figured I was overthinking the code changes that needed to be made for that. I ned to learn more about the code structure.\r\n\r\nTwo things\r\n\r\nMaybe make the default value `edge` instead of `chrome`? Although Chrome is more popular, Edge is included as a part of Windows 10 (and also has a release that supports Windows 7).\r\n\r\nWhy change the `web.conf.default` file and not also change the `web.conf` file for new clones/installs? users should be using the `custom/conf` directory to store their customized configuration, and if they changed the original config file, they could always stash their changes before pulling.\r\n\r\nI've noticed a few other `.conf` and `.conf.default` files that are out of sync (I only checked the ones I use. There might be more.)\r\n\r\ndiff conf/cuckoo.conf conf/cuckoo.conf.default \r\n\r\n```diff\r\n150a151,153\r\n> # If you use PostgreSQL: SSL mode\r\n> # https://www.postgresql.org/docs/current/libpq-ssl.html#LIBPQ-SSL-SSLMODE-STATEMENTS\r\n> psql_ssl_mode = disable\r\n```\r\ndiff conf/processing.conf conf/processing.conf.default \r\n\r\n```diff\r\n116,117d115\r\n< # Extract dotnet strings\r\n< dotnet = no\r\n```\r\n\r\ndiff conf/web.conf conf/web.conf.default \r\n\r\n```diff\r\n40c40\r\n< existent_tasks = yes\r\n---\r\n> existent_tasks = no\r\n170a171,172\r\n> # Server that exposes the VNC ports (e.g., your KVM host)\r\n> vnc_host = localhost\r\n```\nComment: 1. Ok\n2. You are wrong. .Default is base config that always will be modded by new fields. The x.conf is modified by user. Custom/conf is backward compatibility. As it was confusing so many user, we become with conf.default so on gitpul it not generate headache\nThey are not out of sync. All base or how you call them missed are loaded from default config. That is your job to mod whatever you want in .conf to not suffer on sandbox updates\n\n> El 28 may 2023, a las 14:57, Sean Whalen ***@***.***> escribi\u00f3:\n> \n> \n> That's exactly what I wanted! Thanks! I figured I was overthinking the code changes that needed to be made for that. I ned to learn more about the code structure.\n> \n> Two things\n> \n> Maybe make the default value edge instead of chrome? Although Chrome is more popular, Edge is included as a part of Windows 10 (and also has a release that supports Windows 7).\n> \n> Why change the web.conf.default file and not also change the web.conf file for new clones/installs? users should be using the custom/conf directory to store their customized configuration, and if they changed the original config file, they could always stash their changes before pulling.\n> \n> I've noticed a few other .conf and .conf.default files that are out of sync (I only checked the ones I use. There might be more.)\n> \n> diff conf/cuckoo.conf conf/cuckoo.conf.default\n> \n> 150a151,153\n> > # If you use PostgreSQL: SSL mode\n> > # https://www.postgresql.org/docs/current/libpq-ssl.html#LIBPQ-SSL-SSLMODE-STATEMENTS\n> > psql_ssl_mode = disable\n> diff conf/processing.conf conf/processing.conf.default\n> \n> 116,117d115\n> < # Extract dotnet strings\n> < dotnet = no\n> diff conf/web.conf conf/web.conf.default\n> \n> 40c40\n> < existent_tasks = yes\n> ---\n> > existent_tasks = no\n> 170a171,172\n> > # Server that exposes the VNC ports (e.g., your KVM host)\n> > vnc_host = localhost\n> \u2014\n> Reply to this email directly, view it on GitHub <https://github.com/kevoreilly/CAPEv2/pull/1549#issuecomment-1566132484>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAOFH36VKCHPCCWBDKYJF53XINDS3ANCNFSM6AAAAAAYRLGPW4>.\n> You are receiving this because you modified the open/close state.\n> \n\n\nComment: Ah, ok.",
+  "Title: Setting the default URL analysis package\nBody: I'd like the default analysis package for URLs to be something more modern than the `ie` package, such as `edge` or `chrome`. I found where this is hard coded.\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/analyzer/windows/analyzer.py#L342\r\n\r\nBut ideally, this should be a user configurable setting.\r\n\r\nCreating a new `default_analysis_package` setting under the `url_analysis` section of `web.conf` seems like a reasonable place to me.\r\n\r\nSomething around this line\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/web/web/settings.py#LL75C17-L75C17\r\n\r\n```python\r\nweb_cfg.url_analysis.get(\"default_analysis_package\", \"ie\")\r\n```\r\n\r\nI'm planning on submitting a PR for this, as it seems like it should be a simple addition, but I'm having a little trouble understanding the code for the configuration of the analyzer.\r\n\r\n`analyzer.py` uses `analysis.conf` for its configuration options, which is apparently dynamically generated by the CAPE agent.\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/analyzer/windows/analyzer.py#L232\r\n\r\nI've looked around the code and documentation to try and figure out where and how `analysis.conf` is generated, and so far, the only reference I've found is in this documentation written by @doomedraven.\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/conf/readme.md?plain=1#L18\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/lib/cuckoo/common/config.py#L129\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/lib/cuckoo/core/plugins.py#LL707C46-L707C55\r\n\r\nWhat am I not understanding?\r\n\nComment: the conf is generated here https://github.com/kevoreilly/CAPEv2/blob/master/lib/cuckoo/core/scheduler.py#L251-L253\nComment: implemented here https://github.com/kevoreilly/CAPEv2/pull/1549",
+  "Title: Update IP and domain whitelists\nBody: Add alternate DNS resolver IP addresses\r\n\r\n- Cloudflare - `1.0.0.1`\r\n- Google - `8.8.8.8`\r\n\r\nAdd more Microsoft domains\r\n\r\n`-microsoft-com\\.akamaized\\.net$` - Akamai CDN for Microsoft that device information is sent to for driver lookups\r\n`\\.s-microsoft\\.com$` - gets queried when opening Settings and some other built-in Windows 10 apps\r\n`\\.msedge\\.net$` - Microsoft Edge background things\r\n`\\.res\\.office365\\.com$` - Office 365/ Office 2016+ updates\r\n`\\.licdn\\.com$` - LinkedIn CDN that gets queried by modern versions of Office (Microsoft owns LinkedIn) \r\n",
+  "Title: Update objects.py\nBody: None",
+  "Title: WIP:sqlalchemy2\nBody: None\nComment: to activate all warnings we need to run cape as : `SQLALCHEMY_WARN_20=1 poetry run python -W always::DeprecationWarning X.py`",
+  "Title: KVM display goes black and CPU usage stays at 50% shortly after analysis starts\nBody: Has anyone else seen this issue?\nComment: useless\nComment: sometime is useful to google before post issues not related to cape, is your display configuration problem, QXL if i remember correctly\nComment: I did quite a bit of Google searching before creating this issue. I also tried changing the video adaptor model from `qxl` to `vga` or `virtio`. I also tried adjusting the `vram` value. None of that fixed the issue.\r\n\r\nAfter spending all day troubleshooting, I finally traced the cause to a set of GPO settings that I had configured to prevent device metadata from being sent to Microsoft and creating noise. Specifically, these settings under `Computer Configuration\\Administrative Templates\\System\\Device Installation` Once I changed these policy values from ` Enabled` back to `Not Configured` and rebooted the display did not turn black again.\r\n\r\n- `Prevent device metadata retrieval from the internet`\r\n- `Do not send a Windows error report when a generic driver is installed`\r\n- `Prevent Windows from sending an error report when a device driver requests additional software during installation.\r\n\r\nNo idea why this was an issue. I added the noisy Microsoft domains to the domain whitelist in PR #1547 so those GPO settings are not needed.\nComment: Scratch that. Once I get 4 samples going at once, the black screen returns. I'm thinking I might need a better GPU than the tiny old NVidia one I have in there now. Luckily a friend is coming by so I can see if his old AMD RX 480 does any better. It has a lot more vram and much better drivers.\nComment: Cool, always provide that much info when open issue as that issue where you\ndo something without say what you did as you under stand that is not\nhelpful, glad you fixed that\n\nEl s\u00e1b, 27 may 2023 6:41, Sean Whalen ***@***.***> escribi\u00f3:\n\n> Scratch that. Once I get 4 samples going at once, the black screen\n> returns. I'm thinking I might need a better GPU than the tiny old NVidia\n> one I have in there now. Luckily a friend is coming by so I can see if his\n> old AMD RX 480 does any better. It has a lot more vram and much better\n> drivers.\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1544#issuecomment-1565204711>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH35JGERIVXY6S6MQYETXIGAV7ANCNFSM6AAAAAAYPTLRHY>\n> .\n> You are receiving this because you modified the open/close state.Message\n> ID: ***@***.***>\n>\n\nComment: The issue was caused by #1618",
+  "Title: Improper colors in the summary report PDF\nBody: # Expected Behavior\r\n\r\nThe summary report PDF should be readable and printer-friendly.\r\n\r\n# Current Behavior\r\n\r\nThe PDF has a black background and white-on-white text in the tables.\r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/44679/26afe2d7-429d-475c-ba79-76fc9c7bebfb)\r\n\r\nA workaround is to open the HTML summary report file in a web browser and use the browser to generate a PDF.\r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/44679/ec80720e-ae5c-44d6-9c7e-22a3d6789026)\r\n\nComment: the same we do not maintain pdf/html reporting modules, if you need them, you are more than welcome to improve it\nComment: > # Expected Behavior\r\n> The summary report PDF should be readable and printer-friendly.\r\n> \r\n> # Current Behavior\r\n> The PDF has a black background and white-on-white text in the tables.\r\n> \r\n> ![image](https://user-images.githubusercontent.com/44679/240971739-26afe2d7-429d-475c-ba79-76fc9c7bebfb.png)\r\n> \r\n> A workaround is to open the HTML summary report file in a web browser and use the browser to generate a PDF.\r\n> \r\n> ![image](https://user-images.githubusercontent.com/44679/240972124-ec80720e-ae5c-44d6-9c7e-22a3d6789026.png)\r\n\r\nhey I hope you are fine can you please share you configuration file for generating pdf report ?\r\n\r\n# In reporting module \r\n\r\n I enabled \r\n**pdf report** and **html summary report** module to generate pdf report but  when i click on it , it shows file not found  ",
+  "Title: Feature request: More natural mouse movement in automated interactions\nBody: One of the few `pafish` sandbox detections that fire on CAPE is `Sandbox traced by missing mouse movement or supernatural speed` The source code for this detection is https://github.com/a0rtega/pafish/blob/b497899ff355ea7b9ecc1f5cd34a9fd1def02aec/pafish/rtt.c#L72\nComment: I just took a look at Pafish, latest 32-bit release ``9e7d694ed87ae95f9c25af5f3a5cea76188cd7c1c91ce49c92e25585f232d98e``.\r\n\r\nMy first observation is that the mouse movement function fails for both zero movement and 'supernatural' movement, so it's difficult to differentiate based solely on the tool's output. I considered recompiling with more output, but instead opted for an instruction trace to see exactly what happens during experimentation:\r\n\r\n```\r\nyarascan=0,bp0=0x4F63,bp1=0x5080,action1=stop\r\n```\r\n\r\nThe ``yarascan`` option is just to suppress the existing bypass yara from interfering. The other options capture the entire execution of the ``rtt_mouse_speed_limit()`` function.\r\n\r\nUnfortunately I observed that even with ``Disable automated interaction`` selected to suppress the auxiliary ``human.py`` this function still fails with 'supernatural' speed:\r\n\r\n```\r\nCAPE Sandbox - Debugger log: Tue Feb  6 14:43:08 2024\r\nBreakpoint 0 hit by instruction at 0x00404F63 (thread 4564) EAX=0x404f63 \"U\" EBX=0x2000800 ECX=0xffffffff EDX=0x1d ESI=0x2f EDI=0x26911c4 ESP=0x62f93c *ESP=0x402788 EBP=0x62f968\r\nBreak at 0x00404F63 in pafish.exe (RVA 0x4f63, thread 4564, ImageBase 0x00400000)\r\n0x00404F63  55                       PUSH      EBP                            ESP=0x62f938 \"h\" *ESP=0x62f968\r\n0x00404F64  89E5                     MOV       EBP, ESP                       EBP=0x62f938 \"h\"\r\n0x00404F66  83EC48                   SUB       ESP, 0x48                      ESP=0x62f8f0 *ESP=0x0\r\n0x00404F69  C745F4B80B0000           MOV       DWORD [EBP-0xc], 0xbb8        \r\n0x00404F70  C745EC0A000000           MOV       DWORD [EBP-0x14], 0xa         \r\n0x00404F77  C745F000000000           MOV       DWORD [EBP-0x10], 0x0         \r\n0x00404F7E  C7042410000000           MOV       DWORD [ESP], 0x10             \r\n0x00404F85  A130854100               MOV       EAX, [0x418530]                EAX=0x76874d10\r\n0x00404F8A  FFD0                     CALL      GetSystemMetrics               EAX=0x500 ECX=0x500 EDX=0x30 ESP=0x62f8f4 *ESP=0x0\r\n0x00404F8C  83EC04                   SUB       ESP, 0x4                       ESP=0x62f8f0 *ESP=0x0\r\n0x00404F8F  89C1                     MOV       ECX, EAX                      \r\n0x00404F91  BA67666666               MOV       EDX, 0x66666667                EDX=0x66666667\r\n0x00404F96  89C8                     MOV       EAX, ECX                      \r\n0x00404F98  F7EA                     IMUL      EDX                            EAX=0x300 EDX=0x200\r\n0x00404F9A  89D0                     MOV       EAX, EDX                       EAX=0x200\r\n0x00404F9C  D1F8                     SAR       EAX, 0x1                       EAX=0x100\r\n0x00404F9E  C1F91F                   SAR       ECX, 0x1f                      ECX=0x0\r\n0x00404FA1  89CA                     MOV       EDX, ECX                       EDX=0x0\r\n0x00404FA3  29D0                     SUB       EAX, EDX                      \r\n0x00404FA5  8945E8                   MOV       [EBP-0x18], EAX               \r\n0x00404FA8  C7042411000000           MOV       DWORD [ESP], 0x11             \r\n0x00404FAF  A130854100               MOV       EAX, [0x418530]                EAX=0x76874d10\r\n0x00404FB4  FFD0                     CALL      GetSystemMetrics               EAX=0x2e1 ECX=0x2e1 EDX=0x2e1 ESP=0x62f8f4 *ESP=0x0\r\n0x00404FB6  83EC04                   SUB       ESP, 0x4                       ESP=0x62f8f0 *ESP=0x0\r\n0x00404FB9  89C1                     MOV       ECX, EAX                      \r\n0x00404FBB  BA67666666               MOV       EDX, 0x66666667                EDX=0x66666667\r\n0x00404FC0  89C8                     MOV       EAX, ECX                      \r\n0x00404FC2  F7EA                     IMUL      EDX                            EAX=0xccccce87 EDX=0x126\r\n0x00404FC4  89D0                     MOV       EAX, EDX                       EAX=0x126\r\n0x00404FC6  D1F8                     SAR       EAX, 0x1                       EAX=0x93\r\n0x00404FC8  C1F91F                   SAR       ECX, 0x1f                      ECX=0x0\r\n0x00404FCB  89CA                     MOV       EDX, ECX                       EDX=0x0\r\n0x00404FCD  29D0                     SUB       EAX, EDX                      \r\n0x00404FCF  8945E4                   MOV       [EBP-0x1c], EAX               \r\n0x00404FD2  8D45D4                   LEA       EAX, [EBP-0x2c]                EAX=0x62f90c\r\n0x00404FD5  890424                   MOV       [ESP], EAX                    \r\n0x00404FD8  A120854100               MOV       EAX, [0x418520]                EAX=0x76865750\r\n0x00404FDD  FFD0                     CALL      GetCursorPos                   EAX=0x1 ECX=0x2a410001 EDX=0xc0000029 ESP=0x62f8f4 *ESP=0x0\r\n0x00404FDF  83EC04                   SUB       ESP, 0x4                       ESP=0x62f8f0 *ESP=0x0\r\n0x00404FE2  EB7F                     JMP       0x81                          \r\n0x00405063  837DF400                 CMP       DWORD [EBP-0xc], 0x0          \r\n0x00405067  0F8577FFFFFF             JNZ       0xffffff7d                    \r\n0x00404FE4  8B45EC                   MOV       EAX, [EBP-0x14]                EAX=0xa\r\n0x00404FE7  890424                   MOV       [ESP], EAX                    \r\n0x00404FEA  A1EC834100               MOV       EAX, [0x4183ec]                EAX=0x754f0f00\r\n0x00404FEF  FFD0                     CALL      Sleep                          EAX=0x0 ECX=0x2df3a281 EDX=0x2b8000 \"P\" ESP=0x62f8f4 *ESP=0x0\r\n0x00404FF1  83EC04                   SUB       ESP, 0x4                       ESP=0x62f8f0 *ESP=0x0\r\n0x00404FF4  8D45CC                   LEA       EAX, [EBP-0x34]                EAX=0x62f904\r\n0x00404FF7  890424                   MOV       [ESP], EAX                    \r\n0x00404FFA  A120854100               MOV       EAX, [0x418520]                EAX=0x76865750\r\n0x00404FFF  FFD0                     CALL      GetCursorPos                   EAX=0x1 ECX=0x2a410001 EDX=0xc00002f8 ESP=0x62f8f4 *ESP=0x0\r\n0x00405001  83EC04                   SUB       ESP, 0x4                       ESP=0x62f8f0 *ESP=0x0\r\n0x00405004  8B45D4                   MOV       EAX, [EBP-0x2c]                EAX=0x2de\r\n0x00405007  8B55CC                   MOV       EDX, [EBP-0x34]                EDX=0x44f\r\n0x0040500A  29D0                     SUB       EAX, EDX                       EAX=0xfffffe8f\r\n0x0040500C  8945E0                   MOV       [EBP-0x20], EAX               \r\n0x0040500F  8B45D8                   MOV       EAX, [EBP-0x28]                EAX=0x8\r\n0x00405012  8B55D0                   MOV       EDX, [EBP-0x30]                EDX=0x2f8\r\n0x00405015  29D0                     SUB       EAX, EDX                       EAX=0xfffffd10\r\n0x00405017  8945DC                   MOV       [EBP-0x24], EAX               \r\n0x0040501A  837DE000                 CMP       DWORD [EBP-0x20], 0x0         \r\n0x0040501E  7506                     JNZ       0x8                           \r\n0x00405026  8345F001                 ADD       DWORD [EBP-0x10], 0x1         \r\n0x0040502A  8B45E0                   MOV       EAX, [EBP-0x20]                EAX=0xfffffe8f\r\n0x0040502D  99                       CDQ                                      EDX=0xffffffff\r\n0x0040502E  89D0                     MOV       EAX, EDX                       EAX=0xffffffff\r\n0x00405030  3345E0                   XOR       EAX, [EBP-0x20]                EAX=0x170\r\n0x00405033  29D0                     SUB       EAX, EDX                       EAX=0x171\r\n0x00405035  3945E8                   CMP       [EBP-0x18], EAX               \r\n0x00405038  7D17                     JGE       0x19                          \r\n0x0040503A  8B45DC                   MOV       EAX, [EBP-0x24]                EAX=0xfffffd10\r\n0x0040503D  99                       CDQ                                     \r\n0x0040503E  89D0                     MOV       EAX, EDX                       EAX=0xffffffff\r\n0x00405040  3345DC                   XOR       EAX, [EBP-0x24]                EAX=0x2ef\r\n0x00405043  29D0                     SUB       EAX, EDX                       EAX=0x2f0\r\n0x00405045  3945E4                   CMP       [EBP-0x1c], EAX               \r\n0x00405048  7D07                     JGE       0x9                           \r\n0x0040504A  B801000000               MOV       EAX, 0x1                       EAX=0x1\r\n0x0040504F  EB2E                     JMP       0x30                          \r\n0x0040507F  C9                       LEAVE                                   Breakpoint 1 hit by instruction at 0x00405080 (thread 4564) ESP=0x62f93c *ESP=0x402788 EBP=0x62f968\r\n0x00405080  C3                       RET                                     \r\nActionDispatcher: stopping trace.\r\n```\r\n\r\nHere the ``jge`` at the end corresponds to the source ``abs(dy) > my`` which shows that the checks for excessive movement between subsequent calls to ``GetCursorPos`` is failing, despite there being no automated interaction at all!\r\n\r\nI am currently stumped as to why this is occurring which has temporarily scuppered my attempts to fix this with changes to ``human.py``.\nComment: Hi, [this may be of interest to you](https://research.checkpoint.com/2025/the-cat-and-mouse-game-exploiting-statistical-weaknesses-in-human-interaction-anti-evasions/). The text includes code and visual demonstrations for more natural mouse movement (Appendix A) which you may find useful for providing some inspiration. Thank you for the very important work you do in maintaining this project.\nComment: Hi Ben! Thanks for the link, it looks like this code would be an improvement on what we have currently. I'll see if I can integrate it, thanks",
+  "Title: Feature request: Include collapsible signature details in the HTML report\nBody: It would be nice if the signature list in the HTML report included collapsible signature details, just like the web UI currently does. That way, key details could be found without hunting them down elsewhere in the report, and notable API calls could still be included even if `apicalls` is set to `no`.\nComment: DYI. we do not maintain PDF/HTML reporting modules, if you need them, you are more than welcome to improve them. Is time to move those to community repo",
+  "Title: Prevent exceptions in guac-web app\nBody: After authentication is enabled in the main Django app, the `guac-web` app will raise exceptions when trying to load a Guacamole console page. This PR updates `guac_settings.py` to avoid these issues.\r\n\r\nExceptions addressed.\r\n\r\n> Model class django.contrib.sessions.models.Session doesn't declare an explicit app_label and isn't in an application in INSTALLED_APPS\r\n\r\n> django.core.exceptions.ImproperlyConfigured: settings.DATABASES is improperly configured. Please supply the ENGINE value. Check settings documentation.\nComment: @enzok any thought?\nComment: To add more context, these exceptions occur after setting `enabled = yes` in the `web_auth` section of `conf/web.conf` ,  and then running \r\n\r\n```text\r\npoetry run python3 manage.py migrate\r\npoetry run python manage.py createsuperuser\r\n```\r\n\r\nThe exceptions persist after the database migration, even if `web_auth` is disabled in the configuration file later.\r\n\r\nThis PR just adds two missing settings to `web/web/guac_settings.py` that are the same as `web/web/settings.py`, which don't cause any issues with either Django application, even when web authentication isn't enabled.\nComment: thanks",
+  "Title: QBot sample evades sandboxing\nBody: After setting up a CAPE instance for the first time in a long time I grabbed some samples from VirusTotal and ran it through my sandbox to test it. I noticed that a QBot DLL failed to execute completely in both my CAPE instance and the public CAPE instance.\r\n\r\nhttps://capesandbox.com/analysis/391160/\r\n\r\nHowever, the sample did detonate properly in Joe Sandbox\r\n\r\nhttps://www.joesandbox.com/analysis/872857/0/html\nComment: This is not so much an issue with cape as an anti-sandbox strategy by Qakbot - note that there are 648 exported functions in this DLL. cape detonates this sample just fine if the correct export is specified (which by the way is 'Time'):\r\n\r\nhttps://capesandbox.com/analysis/391405\r\n\r\nThe method used by Joe here is just to brute-force the exports with many failed attempts resulting in crashes until it hits the right one:\r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/22219888/dc2c6bff-567d-48d1-91c2-39ecfc1764dd)\r\n\r\ncape does not currently use this approach to detonating dlls, although I am considering it. Instead the approach I have implemented is to use yara signatures to identify the correct export to detonate - however this approach has obviously been \r\ntested beyond breaking point by the code obfuscation used in Qakbot. For what it's worth I have just pushed an update to the signature in cape to handle this sample:\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/commit/79d2c7525a8acd37eabbddd08808fb9ea113615b\r\n\r\nI fear this is likely to be too brittle to be particularly future-proof, but for now I am afraid it will have to do! Unless of course you have a better solution. In the meantime, pull the latest yara and see that hopefully the sample will now detonate for you.\r\n\nComment: >  pull the latest yara and see that hopefully the sample will now detonate for you\r\n\r\nThat worked! Thanks! I suspected it was not executing the right export, but I had no idea how to find the right one. Any pointers to how/where I can learn to di static analysis and update yara rules like that? I took the SANS Reverse Engineering Malware course by Lenny Zeltzer through work, and while I learned a lot and earned the GREM certification, I was disappointed by the lack of static analysis on modern, heavily obfuscated samples like this one. \r\n\r\n> cape does not currently use this approach to detonating dlls, although I am considering it.\r\n\r\nThat approach is defiantly more future-proof, and probably the better approach, but of course it generates lots of noise in the dynamic analysis output.",
+  "Title: Add --enable-dotnet to yara build\nBody: None\nComment: is not enabled bcz is enabled by default, please read docs properly\r\n \"dotnet\" module is enabled by default. It can be disabled with --disable-dotnet. https://github.com/VirusTotal/yara/blob/master/configure.ac#L215",
+  "Title: Volatility configuration issue fix\nBody: ERROR: Generic error executing volatility\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../modules/processing/memory.py\", line 339, in run\r\n    vol = VolatilityManager(self.memory_path)\r\n  File \"/opt/CAPEv2/utils/../modules/processing/memory.py\", line 196, in __init__\r\n    if isinstance(self.options.mask.pid_generic, int):\r\nAttributeError: 'VolatilityManager' object has no attribute 'options'\r\n\r\n\r\nIt seems like the config for volatility is never fetched, adding the following lines resolves the issue. \nComment: thank you",
+  "Title: Bump requests from 2.28.0 to 2.31.0\nBody: Bumps [requests](https://github.com/psf/requests) from 2.28.0 to 2.31.0.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a href=\"https://github.com/psf/requests/releases\">requests's releases</a>.</em></p>\n<blockquote>\n<h2>v2.31.0</h2>\n<h2>2.31.0 (2023-05-22)</h2>\n<p><strong>Security</strong></p>\n<ul>\n<li>\n<p>Versions of Requests between v2.3.0 and v2.30.0 are vulnerable to potential\nforwarding of <code>Proxy-Authorization</code> headers to destination servers when\nfollowing HTTPS redirects.</p>\n<p>When proxies are defined with user info (<a href=\"https://user:pass@proxy:8080\">https://user:pass@proxy:8080</a>), Requests\nwill construct a <code>Proxy-Authorization</code> header that is attached to the request to\nauthenticate with the proxy.</p>\n<p>In cases where Requests receives a redirect response, it previously reattached\nthe <code>Proxy-Authorization</code> header incorrectly, resulting in the value being\nsent through the tunneled connection to the destination server. Users who rely on\ndefining their proxy credentials in the URL are <em>strongly</em> encouraged to upgrade\nto Requests 2.31.0+ to prevent unintentional leakage and rotate their proxy\ncredentials once the change has been fully deployed.</p>\n<p>Users who do not use a proxy or do not supply their proxy credentials through\nthe user information portion of their proxy URL are not subject to this\nvulnerability.</p>\n<p>Full details can be read in our <a href=\"https://github.com/psf/requests/security/advisories/GHSA-j8r2-6x86-q33q\">Github Security Advisory</a>\nand <a href=\"https://nvd.nist.gov/vuln/detail/CVE-2023-32681\">CVE-2023-32681</a>.</p>\n</li>\n</ul>\n<h2>v2.30.0</h2>\n<h2>2.30.0 (2023-05-03)</h2>\n<p><strong>Dependencies</strong></p>\n<ul>\n<li>\n<p>\u26a0\ufe0f Added support for urllib3 2.0. \u26a0\ufe0f</p>\n<p>This may contain minor breaking changes so we advise careful testing and\nreviewing <a href=\"https://urllib3.readthedocs.io/en/latest/v2-migration-guide.html\">https://urllib3.readthedocs.io/en/latest/v2-migration-guide.html</a>\nprior to upgrading.</p>\n<p>Users who wish to stay on urllib3 1.x can pin to <code>urllib3&lt;2</code>.</p>\n</li>\n</ul>\n<h2>v2.29.0</h2>\n<h2>2.29.0 (2023-04-26)</h2>\n<p><strong>Improvements</strong></p>\n<ul>\n<li>Requests now defers chunked requests to the urllib3 implementation to improve\nstandardization. (<a href=\"https://redirect.github.com/psf/requests/issues/6226\">#6226</a>)</li>\n<li>Requests relaxes header component requirements to support bytes/str subclasses. (<a href=\"https://redirect.github.com/psf/requests/issues/6356\">#6356</a>)</li>\n</ul>\n<!-- raw HTML omitted -->\n</blockquote>\n<p>... (truncated)</p>\n</details>\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/psf/requests/blob/main/HISTORY.md\">requests's changelog</a>.</em></p>\n<blockquote>\n<h2>2.31.0 (2023-05-22)</h2>\n<p><strong>Security</strong></p>\n<ul>\n<li>\n<p>Versions of Requests between v2.3.0 and v2.30.0 are vulnerable to potential\nforwarding of <code>Proxy-Authorization</code> headers to destination servers when\nfollowing HTTPS redirects.</p>\n<p>When proxies are defined with user info (<a href=\"https://user:pass@proxy:8080\">https://user:pass@proxy:8080</a>), Requests\nwill construct a <code>Proxy-Authorization</code> header that is attached to the request to\nauthenticate with the proxy.</p>\n<p>In cases where Requests receives a redirect response, it previously reattached\nthe <code>Proxy-Authorization</code> header incorrectly, resulting in the value being\nsent through the tunneled connection to the destination server. Users who rely on\ndefining their proxy credentials in the URL are <em>strongly</em> encouraged to upgrade\nto Requests 2.31.0+ to prevent unintentional leakage and rotate their proxy\ncredentials once the change has been fully deployed.</p>\n<p>Users who do not use a proxy or do not supply their proxy credentials through\nthe user information portion of their proxy URL are not subject to this\nvulnerability.</p>\n<p>Full details can be read in our <a href=\"https://github.com/psf/requests/security/advisories/GHSA-j8r2-6x86-q33q\">Github Security Advisory</a>\nand <a href=\"https://nvd.nist.gov/vuln/detail/CVE-2023-32681\">CVE-2023-32681</a>.</p>\n</li>\n</ul>\n<h2>2.30.0 (2023-05-03)</h2>\n<p><strong>Dependencies</strong></p>\n<ul>\n<li>\n<p>\u26a0\ufe0f Added support for urllib3 2.0. \u26a0\ufe0f</p>\n<p>This may contain minor breaking changes so we advise careful testing and\nreviewing <a href=\"https://urllib3.readthedocs.io/en/latest/v2-migration-guide.html\">https://urllib3.readthedocs.io/en/latest/v2-migration-guide.html</a>\nprior to upgrading.</p>\n<p>Users who wish to stay on urllib3 1.x can pin to <code>urllib3&lt;2</code>.</p>\n</li>\n</ul>\n<h2>2.29.0 (2023-04-26)</h2>\n<p><strong>Improvements</strong></p>\n<ul>\n<li>Requests now defers chunked requests to the urllib3 implementation to improve\nstandardization. (<a href=\"https://redirect.github.com/psf/requests/issues/6226\">#6226</a>)</li>\n<li>Requests relaxes header component requirements to support bytes/str subclasses. (<a href=\"https://redirect.github.com/psf/requests/issues/6356\">#6356</a>)</li>\n</ul>\n<h2>2.28.2 (2023-01-12)</h2>\n<!-- raw HTML omitted -->\n</blockquote>\n<p>... (truncated)</p>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/psf/requests/commit/147c8511ddbfa5e8f71bbf5c18ede0c4ceb3bba4\"><code>147c851</code></a> v2.31.0</li>\n<li><a href=\"https://github.com/psf/requests/commit/74ea7cf7a6a27a4eeb2ae24e162bcc942a6706d5\"><code>74ea7cf</code></a> Merge pull request from GHSA-j8r2-6x86-q33q</li>\n<li><a href=\"https://github.com/psf/requests/commit/302225334678490ec66b3614a9dddb8a02c5f4fe\"><code>3022253</code></a> test on pypy 3.8 and pypy 3.9 on windows and macos (<a href=\"https://redirect.github.com/psf/requests/issues/6424\">#6424</a>)</li>\n<li><a href=\"https://github.com/psf/requests/commit/b639e66c816514e40604d46f0088fbceec1a5149\"><code>b639e66</code></a> test on py3.12 (<a href=\"https://redirect.github.com/psf/requests/issues/6448\">#6448</a>)</li>\n<li><a href=\"https://github.com/psf/requests/commit/d3d504436ef0c2ac7ec8af13738b04dcc8c694be\"><code>d3d5044</code></a> Fixed a small typo (<a href=\"https://redirect.github.com/psf/requests/issues/6452\">#6452</a>)</li>\n<li><a href=\"https://github.com/psf/requests/commit/2ad18e0e10e7d7ecd5384c378f25ec8821a10a29\"><code>2ad18e0</code></a> v2.30.0</li>\n<li><a href=\"https://github.com/psf/requests/commit/f2629e9e3c7ce3c3c8c025bcd8db551101cbc773\"><code>f2629e9</code></a> Remove strict parameter (<a href=\"https://redirect.github.com/psf/requests/issues/6434\">#6434</a>)</li>\n<li><a href=\"https://github.com/psf/requests/commit/87d63de8739263bbe17034fba2285c79780da7e8\"><code>87d63de</code></a> v2.29.0</li>\n<li><a href=\"https://github.com/psf/requests/commit/51716c4ef390136b0d4b800ec7665dd5503e64fc\"><code>51716c4</code></a> enable the warnings plugin (<a href=\"https://redirect.github.com/psf/requests/issues/6416\">#6416</a>)</li>\n<li><a href=\"https://github.com/psf/requests/commit/a7da1ab3498b10ec3a3582244c94b2845f8a8e71\"><code>a7da1ab</code></a> try on ubuntu 22.04 (<a href=\"https://redirect.github.com/psf/requests/issues/6418\">#6418</a>)</li>\n<li>Additional commits viewable in <a href=\"https://github.com/psf/requests/compare/v2.28.0...v2.31.0\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=requests&package-manager=pip&previous-version=2.28.0&new-version=2.31.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: analyzer.py raises MemoryError exception when analyzing QBot DLLs\nBody: # Expected Behavior\r\n\r\nTo make sure my new instance of CAPE is working correctly, I downloaded a few samples of QBot from VirusTotal and ran them through the sandbox.\r\n\r\nhttps://www.virustotal.com/gui/file/60711919ef00c7bff67dbeb8dfa743525c23a10becdf14d1214ce6dbf94d2f5b/\r\nhttps://www.virustotal.com/gui/file/daeb738bde541678e8728c0b5cbb41e8d640b987771e5623c700868adaa516f3/\r\n\r\n# Current Behavior\r\n\r\n# Failure Information (for bugs)\r\n\r\n`analyzer.py` raises a `MemoryError` exception (see the logs below)\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Submit the sample to the sandbox\r\n\r\n## Context\r\n\r\n| Question                     | Answer\r\n|-------------------------|--------------------\r\n| Git commit                  | 705ea08c24b069fa2bb609b5f9f643fd9479bc4e\r\n| Host OS version          | Ubuntu 22.04 LTS\r\n| Guest OS version        | Windows 10 build 19044\r\n| Guest Python version | 3.11.3\r\n\r\n## Failure Logs\r\n\r\n```text\r\n2023-05-20 22:02:47,723 [root] INFO: Date set to: 20230522T15:51:03, timeout set to: 200\r\n2023-05-22 15:51:03,000 [root] DEBUG: Starting analyzer from: C:\\tmpyg6psi76\r\n2023-05-22 15:51:03,000 [root] DEBUG: Storing results at: C:\\PFzRUz\r\n2023-05-22 15:51:03,000 [root] DEBUG: Pipe server name: \\\\.\\PIPE\\PyouPaNpR\r\n2023-05-22 15:51:03,000 [root] DEBUG: Python path: C:\\Program Files (x86)\\Python311-32\r\n2023-05-22 15:51:03,000 [root] INFO: Analysis package \"dll\" has been specified\r\n2023-05-22 15:51:03,000 [root] DEBUG: Importing analysis package \"dll\"...\r\n2023-05-22 15:51:03,012 [root] DEBUG: Initializing analysis package \"dll\"...\r\n2023-05-22 15:51:03,012 [root] DEBUG: New location of moved file: C:\\Users\\resacted\\AppData\\Local\\Temp\\daeb738bde541678e872.dll\r\n2023-05-22 15:51:03,012 [root] INFO: Analyzer: Package modules.packages.dll does not specify a DLL option\r\n2023-05-22 15:51:03,012 [root] INFO: Analyzer: Package modules.packages.dll does not specify a DLL_64 option\r\n2023-05-22 15:51:03,012 [root] INFO: Analyzer: Package modules.packages.dll does not specify a loader option\r\n2023-05-22 15:51:03,012 [root] INFO: Analyzer: Package modules.packages.dll does not specify a loader_64 option\r\n2023-05-22 15:51:03,012 [root] ERROR: Traceback (most recent call last):\r\n```\r\n```python\r\n  File \"C:\\tmpyg6psi76\\analyzer.py\", line 1379, in <module>\r\n    success = analyzer.run()\r\n              ^^^^^^^^^^^^^^\r\n  File \"C:\\tmpyg6psi76\\analyzer.py\", line 422, in run\r\n    copy(\"dll\\\\capemon.dll\", CAPEMON32_NAME)\r\n  File \"C:\\Program Files (x86)\\Python311-32\\Lib\\shutil.py\", line 419, in copy\r\n    copyfile(src, dst, follow_symlinks=follow_symlinks)\r\n  File \"C:\\Program Files (x86)\\Python311-32\\Lib\\shutil.py\", line 276, in copyfile\r\n    _copyfileobj_readinto(fsrc, fdst, min(file_size, COPY_BUFSIZE))\r\n  File \"C:\\Program Files (x86)\\Python311-32\\Lib\\shutil.py\", line 178, in _copyfileobj_readinto\r\n    with memoryview(bytearray(length)) as mv:\r\n                    ^^^^^^^^^^^^^^^^^\r\nMemoryError\r\nTraceback (most recent call last):\r\n  File \"C:\\tmpyg6psi76\\analyzer.py\", line 1379, in <module>\r\n    success = analyzer.run()\r\n              ^^^^^^^^^^^^^^\r\n  File \"C:\\tmpyg6psi76\\analyzer.py\", line 422, in run\r\n    copy(\"dll\\\\capemon.dll\", CAPEMON32_NAME)\r\n  File \"C:\\Program Files (x86)\\Python311-32\\Lib\\shutil.py\", line 419, in copy\r\n    copyfile(src, dst, follow_symlinks=follow_symlinks)\r\n  File \"C:\\Program Files (x86)\\Python311-32\\Lib\\shutil.py\", line 276, in copyfile\r\n    _copyfileobj_readinto(fsrc, fdst, min(file_size, COPY_BUFSIZE))\r\n  File \"C:\\Program Files (x86)\\Python311-32\\Lib\\shutil.py\", line 178, in _copyfileobj_readinto\r\n    with memoryview(bytearray(length)) as mv:\r\n                    ^^^^^^^^^^^^^^^^^\r\nMemoryError\r\n```\r\n```text\r\n2023-05-22 15:51:03,012 [root] WARNING: Folder at path \"C:\\PFzRUz\\debugger\" does not exist, skipping\r\n2023-05-22 15:51:03,012 [root] WARNING: Folder at path \"C:\\PFzRUz\\tlsdump\" does not exist, skipping\r\n2023-05-22 15:51:03,012 [root] INFO: Analysis completed\r\n```\r\n\nComment: Ignore me. Somehow my conf files got overwritten.",
+  "Title: Use CAPE username from config\nBody: None",
+  "Title: Need help with fixing network configuration, DNS does not work\nBody: Need help with fixing network configuration, DNS does not work\r\n\r\nI'm having problem with DNS on Guest machine, i can ping any ip perfectly however pinging domains doesnt work .\r\nCan someone please help me fix this issue? I have been stuck here and I'm out of ideas what to do, any help would be amazing [\u2764\ufe0f](https://emojipedia.org/red-heart/)\r\n\r\nEnvironment:\r\nGuest VM: Win10 - KVM hypervisor\r\nHost VM: Ubuntu 22.04.2 LTS\r\n\r\nCuckoo log:\r\n```\r\n2023-05-22 09:37:02,450 [lib.cuckoo.core.scheduler] INFO: Task #42: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_qgdycx1k/test-cape-ping.bat'\r\n2023-05-22 09:37:02,453 [lib.cuckoo.core.scheduler] INFO: Task #42: File already exists at '/opt/CAPEv2/storage/binaries/7afb1d17a68698ab3519a59f4c60f00d776409f3106555d5a2274895100c7e26'\r\n2023-05-22 09:37:02,465 [lib.cuckoo.core.scheduler] INFO: Task #42: acquired machine cuckoo1 (label=cuckoo1, arch=x64, platform=windows)\r\n2023-05-22 09:37:02,476 [lib.cuckoo.common.integrations.parse_pe] ERROR: PE type not recognised: 'Unable to read the DOS Header, possibly a truncated file.'\r\n2023-05-22 09:37:14,076 [lib.cuckoo.core.scheduler] INFO: Enabled route 'internet'. Bear in mind that routes none and drop won't generate PCAP file\r\n2023-05-22 09:37:14,085 [modules.auxiliary.sniffer] INFO: Started sniffer with PID 5684 (interface=virbr2, host=192.168.1.158, dump path=/opt/CAPEv2/storage/analyses/42/dump.pcap)\r\n2023-05-22 09:37:14,099 [lib.cuckoo.core.guest] INFO: Task #42: Starting analysis on guest (id=cuckoo1, ip=192.168.1.158)\r\n2023-05-22 09:37:14,455 [lib.cuckoo.core.guest] INFO: Task #42: Guest is running CAPE Agent 0.11 (id=cuckoo1, ip=192.168.1.158)\r\n2023-05-22 09:37:23,253 [lib.cuckoo.core.guest] INFO: Task #42: Uploading support files to guest (id=cuckoo1, ip=192.168.1.158)\r\n2023-05-22 09:37:23,254 [lib.cuckoo.core.guest] INFO: Task #42: Uploading script files to guest (id=cuckoo1, ip=192.168.1.158)\r\n2023-05-22 09:41:10,636 [lib.cuckoo.core.guest] INFO: Task #42: Analysis completed successfully (id=cuckoo1, ip=192.168.1.158)\r\n2023-05-22 09:41:11,703 [lib.cuckoo.core.scheduler] INFO: Disabled route 'internet'\r\n2023-05-22 09:41:11,725 [lib.cuckoo.core.scheduler] INFO: Task #42: analysis procedure completed\r\n```\r\n\r\n\r\nMore information:\r\n-I am able to ping host from guest and guest from host.\r\n-Guest VM - Firewall OFF, Virus&Threat detection OFF, machine prepared as in the documentation\r\n-Agent installed via task scheduler\r\n-I am able to run analysis with network routing \"Drop\", everything works ok\r\n-For now i configured **internet = ens33** in routing.conf , im not planing on running malware for now, just want to fix network on Guest\r\n\r\nConfig files:\r\n\r\nifconfig - host\r\n```\r\nvirbr2: flags=4099<UP,BROADCAST,MULTICAST>  mtu 1500\r\n        inet 192.168.1.1  netmask 255.255.255.0  broadcast 192.168.1.255\r\n        ether 52:54:00:18:b0:7e  txqueuelen 1000  (Ethernet)\r\n        RX packets 5728  bytes 4500955 (4.5 MB)\r\n        RX errors 0  dropped 0  overruns 0  frame 0\r\n        TX packets 5846  bytes 27193557 (27.1 MB)\r\n        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0\r\n```\r\n```\r\nens33: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500\r\n        inet 192.168.0.46  netmask 255.255.255.0  broadcast 192.168.0.255\r\n        ether 00:0c:29:1b:46:91  txqueuelen 1000  (Ethernet)\r\n        RX packets 1726  bytes 668303 (668.3 KB)\r\n        RX errors 0  dropped 0  overruns 0  frame 0\r\n        TX packets 1688  bytes 262402 (262.4 KB)\r\n        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0\r\n```\r\n\r\n\r\ncuckoo.conf\r\n\r\n```\r\n[cuckoo]\r\n\r\n# Which category of tasks do you want to analyze?\r\ncategories = static, pcap, url, file\r\n\r\n# If turned on, Cuckoo will delete the original file after its analysis\r\n# has been completed.\r\ndelete_original = off\r\n\r\n# Archives are not deleted by default, as it extracts and \"original file\" become extracted file\r\ndelete_archive = on\r\n\r\n# If turned on, Cuckoo will delete the copy of the original file in the\r\n# local binaries repository after the analysis has finished. (On *nix this\r\n# will also invalidate the file called \"binary\" in each analysis directory,\r\n# as this is a symlink.)\r\ndelete_bin_copy = off\r\n\r\n# Specify the name of the machinery module to use, this module will\r\n# define the interaction between Cuckoo and your virtualization software\r\n# of choice.\r\nmachinery = kvm\r\n\r\n# Enable creation of memory dump of the analysis machine before shutting\r\n# down. Even if turned off, this functionality can also be enabled at\r\n# submission. Currently available for: VirtualBox and libvirt modules (KVM).\r\nmemory_dump = off\r\n\r\n# When the timeout of an analysis is hit, the VM is just killed by default.\r\n# For some long-running setups it might be interesting to terminate the\r\n# moinitored processes before killing the VM so that connections are closed.\r\nterminate_processes = off\r\n\r\n# Enable automatically re-schedule of \"broken\" tasks each startup.\r\n# Each task found in status \"processing\" is re-queued for analysis.\r\nreschedule = off\r\n\r\n# Fail \"unserviceable\" tasks as they are queued.\r\n# Any task found that will never be analyzed based on the available analysis machines\r\n# will have its status set to \"failed\".\r\nfail_unserviceable = on\r\n\r\n# Limit the amount of analysis jobs a Cuckoo process goes through.\r\n# This can be used together with a watchdog to mitigate risk of memory leaks.\r\nmax_analysis_count = 0\r\n\r\n# Limit the number of concurrently executing analysis machines.\r\n# This may be useful on systems with limited resources.\r\n# Set to 0 to disable any limits.\r\nmax_machines_count = 10\r\n\r\n# Limit the amount of VMs that are allowed to start in parallel. Generally\r\n# speaking starting the VMs is one of the more CPU intensive parts of the\r\n# actual analysis. This option tries to avoid maxing out the CPU completely.\r\nmax_vmstartup_count = 5\r\n\r\n# Minimum amount of free space (in MB) available before starting a new task.\r\n# This tries to avoid failing an analysis because the reports can't be written\r\n# due out-of-diskspace errors. Setting this value to 0 disables the check.\r\n# (Note: this feature is currently not supported under Windows.)\r\nfreespace = 50000\r\n# Process tasks, but not reach out of memory\r\nfreespace_processing = 15000\r\n\r\n# Temporary directory containing the files uploaded through Cuckoo interfaces\r\n# (web.py, api.py, Django web interface).\r\ntmppath = /tmp\r\n\r\n# Delta in days from current time to set the guest clocks to for file analyses\r\n# A negative value sets the clock back, a positive value sets it forward.\r\n# The default of 0 disables this option\r\n# Note that this can still be overridden by the per-analysis clock setting\r\n# and it is not performed by default for URL analysis as it will generally\r\n# result in SSL errors\r\ndaydelta = 0\r\n\r\n# Path to the unix socket for running root commands.\r\nrooter = /tmp/cuckoo-rooter\r\n\r\n# Enable if you want to see a DEBUG log periodically containing backlog of pending tasks, locked vs unlocked machines.\r\n# NOTE: Enabling this feature adds 4 database calls every 10 seconds.\r\nperiodic_log = off\r\n\r\n# Max filename length for submissions, before truncation. 196 is arbitrary.\r\nmax_len = 196\r\n\r\n# If it is greater than this, call truncate the filename further for sanitizing purposes.\r\n# Length truncated to is controlled by sanitize_to_len.\r\n#\r\n# This is to prevent long filenames such as files named by hash.\r\nsanitize_len = 32\r\nsanitize_to_len = 24\r\n\r\n[resultserver]\r\n# The Result Server is used to receive in real time the behavioral logs\r\n# produced by the analyzer.\r\n# Specify the IP address of the host. The analysis machines should be able\r\n# to contact the host through such address, so make sure it's valid.\r\n# NOTE: if you set resultserver IP to 0.0.0.0 you have to set the option\r\n# `resultserver_ip` for all your virtual machines in machinery configuration.\r\nip = 192.168.1.1\r\n\r\n# Specify a port number to bind the result server on.\r\nport = 2042\r\n\r\n# Force the port chosen above, don't try another one (we can select another\r\n# port dynamically if we can not bind this one, but that is not an option\r\n# in some setups)\r\nforce_port = yes\r\n\r\npool_size = 0\r\n\r\n# Should the server write the legacy CSV format?\r\n# (if you have any custom processing on those, switch this on)\r\nstore_csvs = off\r\n\r\n# Maximum size of uploaded files from VM (screenshots, dropped files, log)\r\n# The value is expressed in bytes, by default 100MB.\r\nupload_max_size = 100000000\r\n\r\n# To enable trimming of huge binaries go to -> web.conf -> general -> enable_trim\r\n# Prevent upload of files that passes upload_max_size?\r\ndo_upload_max_size = no\r\n\r\n[processing]\r\n# Set the maximum size of analyses generated files to process. This is used\r\n# to avoid the processing of big files which may take a lot of processing\r\n# time. The value is expressed in bytes, by default 200MB.\r\nanalysis_size_limit = 200000000\r\n\r\n# The number of calls per process to process. 0 switches the limit off.\r\n# 10000 api calls should be processed in less than 2 minutes\r\nanalysis_call_limit = 0\r\n\r\n# Enable or disable DNS lookups.\r\nresolve_dns = on\r\n\r\n# Enable or disable reverse DNS lookups\r\n# This information currently is not displayed in the web interface\r\nreverse_dns = off\r\n\r\n# Use ram to boost processing speed. You will need more than 20GB of RAM for this feature.\r\n# Please read \"performance\" section in the documentation.\r\nram_boost = no\r\n\r\n# Enable PCAP sorting, needed for the connection content view in the web interface.\r\nsort_pcap = on\r\n\r\n[database]\r\n# Specify the database connection string.\r\n# Examples, see documentation for more:\r\n# sqlite:///foo.db\r\n# postgresql://foo:bar@localhost:5432/mydatabase\r\n# mysql://foo:bar@localhost/mydatabase\r\n# If empty, default is a SQLite in db/cuckoo.db.\r\n# SQLite doens't support database upgrades!\r\n# For production we strongly suggest go with PostgreSQL\r\nconnection = postgresql://cape:SuperPuperSecret@localhost:5432/cape\r\n\r\n# Database connection timeout in seconds.\r\n# If empty, default is set to 60 seconds.\r\ntimeout =\r\n\r\n[timeouts]\r\n# Set the default analysis timeout expressed in seconds. This value will be\r\n# used to define after how many seconds the analysis will terminate unless\r\n# otherwise specified at submission.\r\ndefault = 200\r\n\r\n# Set the critical timeout expressed in (relative!) seconds. It will be added\r\n# to the default timeout above and after this timeout is hit\r\n# Cuckoo will consider the analysis failed and it will shutdown the machine\r\n# no matter what. When this happens the analysis results will most likely\r\n# be lost.\r\ncritical = 60\r\n\r\n# Maximum time to wait for virtual machine status change. For example when\r\n# shutting down a vm. Default is 300 seconds.\r\nvm_state = 300\r\n\r\n[log_rotation]\r\n# Activate log rotation for cuckoo.log and process.log.\r\nenabled = on\r\n# Keep 30 days of log history (default is 7).\r\nbackup_count = 30\r\n\r\n[tmpfs]\r\n# only if you using volatility to speedup IO\r\n# mkdir -p /mnt/tmpfs\r\n# mount -t tmpfs -o size=50g ramfs /mnt/tmpfs\r\n# chown cape:cape /mnt/tmpfs\r\n#\r\n# vim /etc/fstab\r\n# tmpfs       /mnt/tmpfs tmpfs   nodev,nosuid,noexec,nodiratime,size=50g   0 0\r\n#\r\n# Add crontab with\r\n# @reboot chown cape:cape /mnt/tmpfs -R\r\nenabled = off\r\npath = /mnt/tmpfs/\r\n# in mb\r\nfreespace = 2000\r\n```\r\nkvm.conf\r\n```\r\n[kvm]\r\n# Specify a comma-separated list of available machines to be used. For each\r\n# specified ID you have to define a dedicated section containing the details\r\n# on the respective machine. (E.g. cuckoo1,cuckoo2,cuckoo3)\r\nmachines = cuckoo1,ubuntu_x64\r\n\r\ninterface = virbr2\r\n\r\n[ubuntu_x64]\r\n\r\nlabel = ubuntu_x64\r\nplatform = linux\r\nip = 192.168.100.2\r\narch = x64 \r\nsnapshot = ubuntu64-snap8\r\n\r\n[cuckoo1]\r\n# Specify the label name of the current machine as specified in your\r\n# libvirt configuration.\r\nlabel = cuckoo1\r\n\r\n# Specify the operating system platform used by current machine\r\n# [windows/darwin/linux].\r\nplatform = windows\r\n\r\n# Specify the IP address of the current virtual machine. Make sure that the\r\n# IP address is valid and that the host machine is able to reach it. If not,\r\n# the analysis will fail. You may want to configure your network settings in\r\n# /etc/libvirt/<hypervisor>/networks/\r\nip = 192.168.1.158\r\n\r\n# (Optional) Specify tags to display\r\n# Tags may be used to specify on which guest machines a sample should be run\r\n# tags = windows_xp_sp3,acrobat_reader_6\r\n\r\n# (Optional) Specify the snapshot name to use. If you do not specify a snapshot\r\n# name, the KVM MachineManager will use the current snapshot.\r\n# Example (Snapshot1 is the snapshot name):\r\nsnapshot = snapshot3\r\n\r\n# (Optional) Specify the name of the network interface that should be used\r\n# when dumping network traffic from this machine with tcpdump. If specified,\r\n# overrides the default interface specified in auxiliary.conf\r\n# Example (virbr0 is the interface name):\r\ninterface = virbr2\r\n\r\n# (Optional) Specify the IP of the Result Server, as your virtual machine sees it.\r\n# The Result Server will always bind to the address and port specified in cuckoo.conf,\r\n# however you could set up your virtual network to use NAT/PAT, so you can specify here\r\n# the IP address for the Result Server as your machine sees it. If you don't specify an\r\n# address here, the machine will use the default value from cuckoo.conf.\r\n# NOTE: if you set this option you have to set result server IP to 0.0.0.0 in cuckoo.conf.\r\n# Example:\r\nresultserver_ip = 192.168.1.1\r\n\r\n# (Optional) Specify the port for the Result Server, as your virtual machine sees it.\r\n# The Result Server will always bind to the address and port specified in cuckoo.conf,\r\n# however you could set up your virtual network to use NAT/PAT, so you can specify here\r\n# the port for the Result Server as your machine sees it. If you don't specify a port\r\n# here, the machine will use the default value from cuckoo.conf.\r\n# Example:\r\nresultserver_port = 2042\r\n\r\n# Set the machine architecture\r\n# Required to auto select proper machine architecture for sample\r\n# x64 or x86\r\narch = x64\r\n\r\n# (Optional) Specify whether or not the machine should be reserved, meaning that it will\r\n# only be used for a detonation if specifically requested by its label.\r\n# reserved = no\r\n\r\n```\r\nrouting.conf \r\n```\r\n[routing]\r\n\r\n# Enable pcap generation for non live connections?\r\n# If you have huge number of VMs, pcap generation can be a bottleneck\r\nenable_pcap = no\r\n\r\n# Default network routing mode; \"none\", \"internet\", or \"vpn_name\".\r\n# In none mode we don't do any special routing - the VM doesn't have any\r\n# network access (this has been the default actually for quite a while).\r\n# In internet mode by default all the VMs will be routed through the network\r\n# interface configured below (the \"dirty line\").\r\n# And in VPN mode by default the VMs will be routed through the VPN identified\r\n# by the given name of the VPN.\r\n# Note that just like enabling VPN configuration setting this option to\r\n# anything other than \"none\" requires one to run utils/rooter.py as root next\r\n# to the CAPE instance (as it's required for setting up the routing).\r\nroute = internet\r\n\r\n# Network interface that allows a VM to connect to the entire internet, the\r\n# \"dirty line\" so to say. Note that, just like with the VPNs, this will allow\r\n# malicious traffic through your network. So think twice before enabling it.\r\n# (For example, to route all VMs through eth0 by default: \"internet = eth0\").\r\ninternet = ens33\r\n\r\n# Routing table name/id for \"dirty line\" interface. If \"dirty line\" is\r\n# also default gateway in the system you can leave \"main\" value. Otherwise add\r\n# new routing table by adding \"<id> <name>\" line to /etc/iproute2/rt_tables\r\n# (e.g., \"200 eth0\"). ID and name must be unique across the system (refer to\r\n# /etc/iproute2/rt_tables for existing names and IDs).\r\nrt_table = main\r\n\r\n# When using \"dirty line\", you can reject forwarding to a certain network segment.\r\n# For example, a request targeting 192.168.12.1/24,172.16.22.1/24 will not be\r\n# forwarded, but will be rejected:\r\n# \"reject_segments = 192.168.12.1/24,172.16.22.1/24\"\r\nreject_segments = none\r\n\r\n# When ussing \"dirty line\", you can reject guest access a certain port.\r\n# For example, a request targeting host's port 8000 and 8080 will be rejected:\r\n# \"reject_hostports = 8000,8080\"\r\nreject_hostports = none\r\n\r\n# To route traffic through multiple network interfaces CAPE uses\r\n# Policy Routing with separate routing table for each output interface\r\n# (VPN or \"dirty line\"). If this option is enabled CAPE on start will try\r\n# to automatically initialise routing tables by copying routing entries from\r\n# main routing table to the new routing tables. Depending on your network/vpn\r\n# configuration this might not be sufficient. In such case you would need to\r\n# initialise routing tables manually. Note that enabling this option won't\r\n# affect main routing table.\r\nauto_rt = no\r\n\r\n# The drop route basically drops any outgoing network (except for CAPE\r\n# traffic) whereas the regular none route still allows a VM to access its own\r\n# subnet (e.g., 192.168.122.1/24). It is disabled by default as it does require\r\n# the optional rooter to run (unlike the none route, where literally nothing\r\n# happens). One can either explicitly enable the drop route or if the rooter\r\n# is enabled anyway, it is automatically enabled.\r\ndrop = no\r\n\r\n# Should check if the inteface is up\r\nverify_interface = yes\r\n\r\n[inetsim]\r\n# Inetsim quick deploy, chose your vm manager if is not kvm\r\n# wget https://googledrive.com/host/0B6fULLT_NpxMQ1Rrb1drdW42SkE/remnux-6.0-ova-public.ova\r\n# tar xvf remnux-6.0-ova-public.ova\r\n# qemu-img convert -O qcow2 REMnuxV6-disk1.vmdk remnux.qcow2\r\n\r\nenabled = no\r\nserver = 192.168.1.2\r\ndnsport = 53\r\ninterface = virbr1\r\n# Redirect TCP ports (should we also support UDP?). If specified, this should\r\n# represent whitespace-separated src:dst pairs. E.g., \"80:8080 443:8080\" will\r\n# redirect all 80/443 traffic to 8080 on the specified InetSim host.\r\n# Source port range redirection is also supported. E.g., \"996-2041:80\" will\r\n# redirect all traffic directed at ports between 996 and 2041 inclusive to port 80\r\n# on the specified InetSim host.\r\nports =\r\n\r\n\r\n[tor]\r\nenabled = no\r\ndnsport = 5353\r\nproxyport = 9040\r\ninterface = virbr1\r\n\r\n[vpn]\r\n# By default we disable VPN support as it requires running utils/rooter.py as\r\n# root next to cuckoo.py (which should run as regular user).\r\nenabled = no\r\n\r\n# select one of the configured vpns randomly\r\nrandom_vpn = no\r\n\r\n# Comma-separated list of the available VPNs.\r\nvpns = vpn0\r\n\r\n[vpn0]\r\n# Name of this VPN. The name is represented by the filepath to the\r\n# configuration file, e.g., cuckoo would represent /etc/openvpn/cuckoo.conf\r\n# Note that you can't assign the names \"none\" and \"internet\" as those would\r\n# conflict with the routing section in cuckoo.conf.\r\nname = vpn0\r\n\r\n# The description of this VPN which will be displayed in the web interface.\r\n# Can be used to for example describe the country where this VPN ends up.\r\ndescription = openvpn_tunnel\r\n\r\n# The tun device hardcoded for this VPN. Each VPN *must* be configured to use\r\n# a hardcoded/persistent tun device by explicitly adding the line \"dev tunX\"\r\n# to its configuration (e.g., /etc/openvpn/vpn1.conf) where X in tunX is a\r\n# unique number between 0 and your lucky number of choice.\r\ninterface = tun0\r\n\r\n# Routing table name/id for this VPN. If table name is used it *must* be\r\n# added to /etc/iproute2/rt_tables as \"<id> <name>\" line (e.g., \"201 tun0\").\r\n# ID and name must be unique across the system (refer /etc/iproute2/rt_tables\r\n# for existing names and IDs).\r\nrt_table = tun0\r\n\r\n\r\n[socks5]\r\n# By default we disable socks5 support as it requires running utils/rooter.py as\r\n# root next to cuckoo.py (which should run as regular user).\r\nenabled = no\r\n\r\n# select one of the configured socks5 proxies randomly\r\nrandom_socks5 = no\r\n\r\n# Comma-separated list of the available proxies.\r\nproxies = socks_ch\r\n\r\n[socks_ch]\r\nname = ch_socks\r\ndescription = ch_socks\r\nproxyport = 5008\r\ndnsport = 10053\r\n```\r\n\r\nNetwork in virt-manager\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/100945246/99bd2f13-6e61-4121-890d-7d42c4bdec69)\r\n\r\nNetwork in VM settings\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/100945246/82360bef-be33-47a1-b7a7-ebc36fc88c4d)\r\n\r\nifconfig Guest VM:\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/100945246/14d209f7-e30e-4d4c-b55e-e1943b635408)\r\n\r\nNetwork settings Guest VM\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/100945246/78ae026c-4dc2-48ae-a39d-6c88314207d1)\r\n\r\nsystemctl status dnsmasq\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/100945246/f6377e18-460c-4729-b61d-fe62b9317342)\r\n\r\nsystemctl status  cape-rooter.service\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/100945246/8ec1fc55-8484-43c9-b9dd-3aa4a150ddae)\r\n\r\nTest ping form GuestVM\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/100945246/b1be0e0b-c5fa-484e-b237-51a1bb39dc75)\r\n\nComment: First of all you madre me happy, didnt see in long time any proper issue filled with useful info.\r\n\r\nI wont set dns to cape box if you dont want to configure your own dns forwarder, just set it to public dns inside of the  vm\nComment: Ok, i get it now, everything works fine on google dns. Thank you :)",
+  "Title: Fix CAPA output in HTML summary report - Closes #1523\nBody: Updates the `filters` environment variable in `reporthtml.py` and `reporthtmlsummary.py` to reflect the actual name of the filter for CAPA. The filter name for the function `flare_capa_capabilities` is `flare_capa_capability`, not `flare_capa_capabilities`. See https://github.com/kevoreilly/CAPEv2/blob/705ea08c24b069fa2bb609b5f9f643fd9479bc4e/web/analysis/templatetags/analysis_tags.py#L113\nComment: Hglad you was able to fix that",
+  "Title: Email verification should not be required for the web interface to work\nBody: # Expected Behavior\r\n\r\nAfter following the instructions at https://capev2.readthedocs.io/en/latest/usage/web.html, a user should be able to login with the newly created superuser account. The documentation does not mention email validation and requiring it would break a use case where authentication is used but an email server is not configured, either because the server is not on the internet, or the server does not have access to a mail server.\r\n\r\n# Current Behavior\r\n\r\nWhen `enabled` is set to `yes` in the `web_auth` section of `web.conf`:\r\n\r\nIf the email field was left blank when running the `createsuperuser` command, the user receives the following message when logging into the web UI for the first time.\r\n\r\n> We have sent an e-mail to you for verification. Follow the link provided to finalize the signup process. Please contact us if you do not receive it within a few minutes.\r\n\r\nIf an email address was provided when running the `createsuperuser` command and an email server is not configured in the  `registration` section of `web.conf`, an exception occurs at login.\r\n\r\n```python\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/allauth/account/utils.py\", line 168, in perform_login\r\n    response = adapter.pre_login(request, user, **hook_kwargs)\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/allauth/account/adapter.py\", line 412, in pre_login\r\n    send_email_confirmation(request, user, signup=signup, email=email)\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/allauth/account/utils.py\", line 319, in send_email_confirmation\r\n    email_address.send_confirmation(request, signup=signup)\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/allauth/account/models.py\", line 60, in send_confirmation\r\n    confirmation.send(request, signup=signup)\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/allauth/account/models.py\", line 168, in send\r\n    get_adapter(request).send_confirmation_mail(request, self, signup)\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/allauth/account/adapter.py\", line 549, in send_confirmation_mail\r\n    self.send_mail(email_template, emailconfirmation.email_address.email, ctx)\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/allauth/account/adapter.py\", line 140, in send_mail\r\n    msg.send()\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/mail/message.py\", line 298, in send\r\n    return self.get_connection(fail_silently).send_messages([self])\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/mail/backends/smtp.py\", line 124, in send_messages\r\n    new_conn_created = self.open()\r\n    File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/core/mail/backends/smtp.py\", line 80, in open\r\n    self.connection = self.connection_class(\r\n    File \"/usr/lib/python3.10/smtplib.py\", line 255, in __init__\r\n    (code, msg) = self.connect(host, port)\r\n    File \"/usr/lib/python3.10/smtplib.py\", line 341, in connect\r\n    self.sock = self._get_socket(host, port, self.timeout)\r\n    File \"/usr/lib/python3.10/smtplib.py\", line 312, in _get_socket\r\n    return socket.create_connection((host, port), timeout,\r\n    File \"/usr/lib/python3.10/socket.py\", line 824, in create_connection\r\n    for res in getaddrinfo(host, port, 0, SOCK_STREAM):\r\n    File \"/usr/lib/python3.10/socket.py\", line 955, in getaddrinfo\r\n    for res in _socket.getaddrinfo(host, port, family, type, proto, flags):\r\n    socket.gaierror: [Errno -2] Name or service not known\r\n```\r\n\r\nIf `email_required` in the `registration` section of `web.conf` is set to `no` instead of the default `yes`, the Django web server will fail to start.\r\n\r\n```python\r\nFile \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/allauth/account/models.py\", line 9, in <module>\r\n    from . import app_settings, signals\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/allauth/account/app_settings.py\", line 373, in <module>\r\n    app_settings = AppSettings(\"ACCOUNT_\")\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/allauth/account/app_settings.py\", line 27, in __init__\r\n    assert (\r\nAssertionError\r\n```\r\nBased on this Stack Overflow [question](https://stackoverflow.com/questions/45864715/how-to-disable-verification-step-for-all-auth-sending-verification-email), I tried adding `email_verification = none` to the `registration` section of `web.conf`, but that did not change anything.\r\n\r\nFor now,  I have resorted to putting the web server behind HTP basic authentication on NGINX, instead of using authentication in Django.",
+  "Title: Rename doomedraven config files to cape in install scripts and prevent writing duplicate config lines\nBody: None\nComment: You dont want to be backdoored by dommed and prefer cape? \ud83e\udd23\nComment: @doomedraven  haha. Just making it clearer to new users what wrote the config files. Also, I just pushed another commit with more installer improvements.\nComment: Thanks for updating it",
+  "Title: Fix Additional Filter in Behavioral Analysis\nBody: This MR:\r\n* Fixes using the Additional Filter in process tabs (it only worked in the first tab due to non-unique IDs).\r\n* Fixes a bug where tid was casted to `int` but `call[\"thread_id\"]` is always `str`.\r\n* Removes requirement to specify both, caller and tid, allowing you to filter for just one of the two.\nComment: Thank you, merged to staging branch for 1w",
+  "Title: community.py --all/-a does not include the CENTS modules\nBody: # Expected Behavior\r\n\r\nNo processor warnings after running `sudo -u cape poetry run python utils/community.py -a`\r\n\r\n# Current Behavior\r\n\r\nUpon starting, the CAPE processor issues a warning.\r\n\r\n> Missed CENTS modules, fetch community to get available modules\r\n\r\nThe CLI help in `community.py` doesn't mention CENTS at all. Is it deprecated?\nComment: fixed here https://github.com/kevoreilly/CAPEv2/commit/6afd3097f6531e9847d51911711a987f1656c735\r\ncents are not deprecated, but that is community integration that is not maintained by us\nComment: Thanks for the fix",
+  "Title: Broken yara rule: /opt/CAPEv2/data/yara/CAPE/XorStringsNET.yar\nBody: # Expected Behavior\r\n\r\nThe processor should start without yara errors\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\n> Deleted broken yara rule: /opt/CAPEv2/data/yara/CAPE/XorStringsNET.yar\r\n\nComment: This level of issue is ridiculous. That yara is not even in this report.\nComment: @seanthegeek please start checking things properly, that yara is in community repo which obviously can be broken or your yara just don't have dotnet module. \r\n\r\nbut being in cuckoo land for that long time and still didn't learn to provide proper logs. saying something is broken without provide proper logs is uselss. Always provide proof or you force us ask request the log and explanation\nComment: That was the only log line that was generated. In hindsight I should have tried to compile the rule. Apologies to you both.\nComment: @doomedraven \r\n\r\nTo clarify what I mean,\r\n\r\n> Deleted broken yara rule: /opt/CAPEv2/data/yara/CAPE/XorStringsNET.yar\r\n\r\nIs a direct quote from the output of the processor. I wasn't just saying is broken. It is literally the only log line that was generated. I agree I agree that log entry isn't helpful. I just wanted to give a heads up about the output. I know better than just stating something is broken.\r\n\r\nIt is also worth noting that the error says that the rule was deleted, but it was not.\nComment: but that could be bcz your ara isn't compiled with dotnet and is why is broken for you\nComment: it deletes from compiled list, it not deletes from disk, as if you fix your yara it won't be broken\nComment: i will update that msg to improve it\nComment: I'll also submit a PR for install.sh to compile and install yara from source with checkinstall so that all modules are installed.  I think the script currently just installs yara from apt, which I thought included all modules.\nComment: no, we don't install yara from apt, and we ensure that all installed\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/installer/cape2.sh#L700-L744\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/extra/poetry_yara_installer.sh\r\n\nComment: I have no idea what happened to my install than. I just ran `sudo -u cape poetry run extra/poetry_yara_installer.sh` which as you note the installer calls anyway, and yara installed correctly. Weird.\nComment: is why you need to save instalation log as gold. as -h says `| tee -a cape.log ` or similar\nComment: I made the foolish mistake of deleting mine when I thought everything was working. Do you think there is any harm in running the installer again? Keeping the logs this time of course). I can do a full rebuild if I must.\nComment: it will probably overwite your CAPEv2 folder, but apart of that is fine\nComment: is this better? https://github.com/kevoreilly/CAPEv2/commit/705ea08c24b069fa2bb609b5f9f643fd9479bc4e\nComment: Yes. Thanks.\nComment: I've just installed with capev2.sh and got the same error with the same yara rule. \r\nCould it be resolved adding `--enable-dotnet` on the line 724 of capev2.sh ( `./configure --enable-cuckoo --enable-magic --enable-profiling` ) ? \r\nIt apparently seems the soluciotn after looking at [https://yara.readthedocs.io/en/stable/gettingstarted.html]\nComment: Nah, dotnet is enabled by default in yara compilation, use file from\r\nextra/yara whatever is called for proper instalation\r\n\r\nEl mi\u00e9, 14 jun 2023, 16:03, chirrindul ***@***.***> escribi\u00f3:\r\n\r\n> I've just installed with capev2.sh and got the same error with the same\r\n> yara rute.\r\n> Could it be resolved adding --enable-dotnet on the line 724 of capev2.sh\r\n> ( ./configure --enable-cuckoo --enable-magic --enable-profiling ) ?\r\n> It apparently seems the soluciotn after looking at [(\r\n> https://yara.readthedocs.io/en/stable/gettingstarted.html)]\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1527#issuecomment-1591275011>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH33L7XUJE256LINPQVDXLHACXANCNFSM6AAAAAAYHEGQC4>\r\n> .\r\n> You are receiving this because you were mentioned.Message ID:\r\n> ***@***.***>\r\n>\r\n",
+  "Title: Add msix extraction\nBody: None",
+  "Title: cape.service keeps old confiuration data!\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* The cape service keeps old configurations data even after changing the conf files and restarting the services.\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x ] I am running the latest version\r\n- [ x] I did read the README!\r\n- [ x] I checked the documentation and found no answer\r\n- [x ] I checked to make sure that this issue has not already been filed\r\n- [ x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x ] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\r\n\r\n# Current Behavior:\r\nAfter changing the conf file to use a different machinery, the cape. service keeps loading old conf files. I have tried even to delete and recreate the virtual environment with poetry. Nevertheless, this behavior is persistent. \r\n\r\nWhat is the current behavior?\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\nThis behavior was not encountered with older capev2 versions! \r\n## Steps to Reproduce\r\nChange the machinery from kvm to physical in cuckoo.conf file for instance. Restart all cape services. You will still see cape service loading the old kvm conf file data.  \r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. step 1\r\n2. step 2\r\n3. you get it...\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 16.04, Windows 10, macOS 10.12.3\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: details or didn't happend",
+  "Title: fix vpns route\nBody: None",
+  "Title: Summary reports cannot be generated if CAPA is enabled - jinja2.exceptions.TemplateRuntimeError: No filter named 'flare_capa_capability' found\nBody: # Expected Behavior\r\n\r\nUsers should be able to use CAPA and have still have summary reports generated.\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\nCreation of the summary HTML content (which is also used for summary report PDFs) fail\r\n\r\n# Failure Information (for bugs)\r\n\r\n```text\r\nMay 16 00:26:53 sandbox python3[65267]: ERROR:lib.cuckoo.core.plugins:Failed to run the reporting module \"ReportHTMLSummary\": No filter named 'flare_capa_capability' found.\r\nMay 16 00:26:53 sandbox python3[65267]: Traceback (most recent call last):\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 712, in process\r\nMay 16 00:26:53 sandbox python3[65267]:     current.run(self.results)\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/opt/CAPEv2/utils/../modules/reporting/reporthtmlsummary.py\", line 94, in run\r\nMay 16 00:26:53 sandbox python3[65267]:     html = tpl.render({\"results\": results, \"summary_report\": True})\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/jinja2/environment.py\", line 1301, in render\r\nMay 16 00:26:53 sandbox python3[65267]:     self.environment.handle_exception()\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/jinja2/environment.py\", line 936, in handle_except>\r\nMay 16 00:26:53 sandbox python3[65267]:     raise rewrite_traceback_stack(source=source)\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/opt/CAPEv2/data/html/report.html\", line 1, in top-level template code\r\nMay 16 00:26:53 sandbox python3[65267]:     {% extends \"base-report.html\" %}\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/opt/CAPEv2/data/html/base-report.html\", line 63, in top-level template code\r\nMay 16 00:26:53 sandbox python3[65267]:     {% block content %}{% endblock %}\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/opt/CAPEv2/data/html/report.html\", line 6, in block 'content'\r\nMay 16 00:26:53 sandbox python3[65267]:     {% include \"sections/file.html\" %}\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/opt/CAPEv2/data/html/sections/file.html\", line 18, in top-level template code\r\nMay 16 00:26:53 sandbox python3[65267]:     {% include \"generic/_file_info.html\" %}\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/opt/CAPEv2/data/html/generic/_file_info.html\", line 280, in top-level template code\r\nMay 16 00:26:53 sandbox python3[65267]:     {{file.flare_capa|flare_capa_capability}}\r\nMay 16 00:26:53 sandbox python3[65267]: jinja2.exceptions.TemplateRuntimeError: No filter named 'flare_capa_capability' found.\r\nMay 16 00:26:53 sandbox python3[65267]: 2023-05-16 00:26:53,003 [Task 1] [lib.cuckoo.core.plugins] ERROR: Failed to run the reporting module \"ReportHTMLSummary\": No filter named 'flare_capa>\r\nMay 16 00:26:53 sandbox python3[65267]: Traceback (most recent call last):\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 712, in process\r\nMay 16 00:26:53 sandbox python3[65267]:     current.run(self.results)\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/opt/CAPEv2/utils/../modules/reporting/reporthtmlsummary.py\", line 94, in run\r\nMay 16 00:26:53 sandbox python3[65267]:     html = tpl.render({\"results\": results, \"summary_report\": True})\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/jinja2/environment.py\", line 1301, in render\r\nMay 16 00:26:53 sandbox python3[65267]:     self.environment.handle_exception()\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/jinja2/environment.py\", line 936, in handle_except>\r\nMay 16 00:26:53 sandbox python3[65267]:     raise rewrite_traceback_stack(source=source)\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/opt/CAPEv2/data/html/report.html\", line 1, in top-level template code\r\nMay 16 00:26:53 sandbox python3[65267]:     {% extends \"base-report.html\" %}\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/opt/CAPEv2/data/html/base-report.html\", line 63, in top-level template code\r\nMay 16 00:26:53 sandbox python3[65267]:     {% block content %}{% endblock %}\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/opt/CAPEv2/data/html/report.html\", line 6, in block 'content'\r\nMay 16 00:26:53 sandbox python3[65267]:     {% include \"sections/file.html\" %}\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/opt/CAPEv2/data/html/sections/file.html\", line 18, in top-level template code\r\nMay 16 00:26:53 sandbox python3[65267]:     {% include \"generic/_file_info.html\" %}\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/opt/CAPEv2/data/html/generic/_file_info.html\", line 280, in top-level template code\r\nMay 16 00:26:53 sandbox python3[65267]:     {{file.flare_capa|flare_capa_capability}}\r\nMay 16 00:26:53 sandbox python3[65267]: jinja2.exceptions.TemplateRuntimeError: No filter named 'flare_capa_capability' found.\r\nMay 16 00:26:53 sandbox python3[65267]: 2023-05-16 00:26:53,003 [Task 1] [lib.cuckoo.core.plugins] ERROR: Failed to run the reporting module \"ReportHTMLSummary\": No filter named 'flare_capa>\r\nMay 16 00:26:53 sandbox python3[65267]: Traceback (most recent call last):\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 712, in process\r\nMay 16 00:26:53 sandbox python3[65267]:     current.run(self.results)\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/opt/CAPEv2/utils/../modules/reporting/reporthtmlsummary.py\", line 94, in run\r\nMay 16 00:26:53 sandbox python3[65267]:     html = tpl.render({\"results\": results, \"summary_report\": True})\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/jinja2/environment.py\", line 1301, in render\r\nMay 16 00:26:53 sandbox python3[65267]:     self.environment.handle_exception()\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/jinja2/environment.py\", line 936, in handle_except>\r\nMay 16 00:26:53 sandbox python3[65267]:     raise rewrite_traceback_stack(source=source)\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/opt/CAPEv2/data/html/report.html\", line 1, in top-level template code\r\nMay 16 00:26:53 sandbox python3[65267]:     {% extends \"base-report.html\" %}\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/opt/CAPEv2/data/html/base-report.html\", line 63, in top-level template code\r\nMay 16 00:26:53 sandbox python3[65267]:     {% block content %}{% endblock %}\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/opt/CAPEv2/data/html/report.html\", line 6, in block 'content'\r\nMay 16 00:26:53 sandbox python3[65267]:     {% include \"sections/file.html\" %}\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/opt/CAPEv2/data/html/sections/file.html\", line 18, in top-level template code\r\nMay 16 00:26:53 sandbox python3[65267]:     {% include \"generic/_file_info.html\" %}\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/opt/CAPEv2/data/html/generic/_file_info.html\", line 280, in top-level template code\r\nMay 16 00:26:53 sandbox python3[65267]:     {{file.flare_capa|flare_capa_capability}}\r\nMay 16 00:26:53 sandbox python3[65267]: jinja2.exceptions.TemplateRuntimeError: No filter named 'flare_capa_capability' found.\r\nMay 16 00:26:53 sandbox python3[65267]: 2023-05-16 00:26:53,003 [Task 1] [lib.cuckoo.core.plugins] ERROR: Failed to run the reporting module \"ReportHTMLSummary\": No filter named 'flare_capa>\r\nMay 16 00:26:53 sandbox python3[65267]: Traceback (most recent call last):\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 712, in process\r\nMay 16 00:26:53 sandbox python3[65267]:     current.run(self.results)\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/opt/CAPEv2/utils/../modules/reporting/reporthtmlsummary.py\", line 94, in run\r\nMay 16 00:26:53 sandbox python3[65267]:     html = tpl.render({\"results\": results, \"summary_report\": True})\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/jinja2/environment.py\", line 1301, in render\r\nMay 16 00:26:53 sandbox python3[65267]:     self.environment.handle_exception()\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/jinja2/environment.py\", line 936, in handle_except>\r\nMay 16 00:26:53 sandbox python3[65267]:     raise rewrite_traceback_stack(source=source)\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/opt/CAPEv2/data/html/report.html\", line 1, in top-level template code\r\nMay 16 00:26:53 sandbox python3[65267]:     {% extends \"base-report.html\" %}\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/opt/CAPEv2/data/html/base-report.html\", line 63, in top-level template code\r\nMay 16 00:26:53 sandbox python3[65267]:     {% block content %}{% endblock %}\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/opt/CAPEv2/data/html/report.html\", line 6, in block 'content'\r\nMay 16 00:26:53 sandbox python3[65267]:     {% include \"sections/file.html\" %}\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/opt/CAPEv2/data/html/sections/file.html\", line 18, in top-level template code\r\nMay 16 00:26:53 sandbox python3[65267]:     {% include \"generic/_file_info.html\" %}\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/opt/CAPEv2/data/html/generic/_file_info.html\", line 280, in top-level template code\r\nMay 16 00:26:53 sandbox python3[65267]:     {{file.flare_capa|flare_capa_capability}}\r\nMay 16 00:26:53 sandbox python3[65267]: jinja2.exceptions.TemplateRuntimeError: No filter named 'flare_capa_capability' found.\r\nMay 16 00:26:53 sandbox python3[65267]: 2023-05-16 00:26:53,003 [Task 1] [lib.cuckoo.core.plugins] ERROR: Failed to run the reporting module \"ReportHTMLSummary\": No filter named 'flare_capa>\r\nMay 16 00:26:53 sandbox python3[65267]: Traceback (most recent call last):\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 712, in process\r\nMay 16 00:26:53 sandbox python3[65267]:     current.run(self.results)\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/opt/CAPEv2/utils/../modules/reporting/reporthtmlsummary.py\", line 94, in run\r\nMay 16 00:26:53 sandbox python3[65267]:     html = tpl.render({\"results\": results, \"summary_report\": True})\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/jinja2/environment.py\", line 1301, in render\r\nMay 16 00:26:53 sandbox python3[65267]:     self.environment.handle_exception()\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/jinja2/environment.py\", line 936, in handle_except>\r\nMay 16 00:26:53 sandbox python3[65267]:     raise rewrite_traceback_stack(source=source)\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/opt/CAPEv2/data/html/report.html\", line 1, in top-level template code\r\nMay 16 00:26:53 sandbox python3[65267]:     {% extends \"base-report.html\" %}\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/opt/CAPEv2/data/html/base-report.html\", line 63, in top-level template code\r\nMay 16 00:26:53 sandbox python3[65267]:     {% block content %}{% endblock %}\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/opt/CAPEv2/data/html/report.html\", line 6, in block 'content'\r\nMay 16 00:26:53 sandbox python3[65267]:     {% include \"sections/file.html\" %}\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/opt/CAPEv2/data/html/sections/file.html\", line 18, in top-level template code\r\nMay 16 00:26:53 sandbox python3[65267]:     {% include \"generic/_file_info.html\" %}\r\nMay 16 00:26:53 sandbox python3[65267]:   File \"/opt/CAPEv2/data/html/generic/_file_info.html\", line 280, in top-level template code\r\nMay 16 00:26:53 sandbox python3[65267]:     {{file.flare_capa|flare_capa_capability}}\r\nMay 16 00:26:53 sandbox python3[65267]: jinja2.exceptions.TemplateRuntimeError: No filter named 'flare_capa_capability' found.\r\nMay 16 00:26:53 sandbox python3[65267]: WARNING:lib.cuckoo.core.plugins:The reporting module \"ReportPDF\" returned the following error: Unable to open summary HTML report to convert to PDF: >\r\nMay 16 00:26:53 sandbox python3[65267]: 2023-05-16 00:26:53,021 [Task 1] [lib.cuckoo.core.plugins] WARNING: The reporting module \"ReportPDF\" returned the following error: Unable to open sum>\r\nMay 16 00:26:53 sandbox python3[65267]: 2023-05-16 00:26:53,021 [Task 1] [lib.cuckoo.core.plugins] WARNING: The reporting module \"ReportPDF\" returned the following error: Unable to open sum>\r\nMay 16 00:26:53 sandbox python3[65256]: INFO:root:Reports generation completed\r\nMay 16 00:26:53 sandbox python3[65256]: 2023-05-16 00:26:53,458 [root] INFO: Reports generation completed\r\n```\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Enable CAPA in `processing.conf`\r\n2. Enable `reporthtmlsummary` and `reportpdf in reporting.conf`\r\n3. Upload a PE sample for analysis\r\n\r\n## Context\r\n\r\n| Question         | Answer\r\n|-----------------|--------------------\r\n| Git commit      | 9296021e104c2a53da49195bdacb1bd83626539d\r\n| OS version       | Ubuntu 22.04\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: it works just fine here. module is there, so i guess is something wrong on your side\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/modules/reporting/reporthtmlsummary.py#L19\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/modules/reporting/reporthtmlsummary.py#LL85C44-L85C59\nComment: Weird. I'm trying to think of what that could be. What version of Jinja2 are you using?\nComment: https://github.com/kevoreilly/CAPEv2/blob/master/pyproject.toml#L42, that sound more as import error than jinja error, try import by hand\nComment: Manual imports work fine. Also looking at the code again, that import isn't part of the try/except block, so I wouldn't be able to generate any report at all if it was an import issue. Weird. I asked about the version what because I haven't  seen ^ used in a version specification before, and couldn't find where that is defined after some Googling (for what it's worth 3.1.2 is installed in my environment. Also, are you running the latest commit, like I am? Just trying to figure out what could be different with my instance that would cause this...\nComment: ^ means start with\n\nYes but im on staging branch, which is kinda the same, we merge ir to\nm\u00e1ster each wednesday\n\nEl mar, 16 may 2023 17:03, Sean Whalen ***@***.***> escribi\u00f3:\n\n> Manual imports work fine. Also looking at the code again, that import\n> isn't part of the try/except block, so I wouldn't be able to generate any\n> report at all if it was an import issue. Weird. I asked about the version\n> what because I haven't seen ^ used in a version specification before, and\n> couldn't find where that is defined after some Googling (for what it's\n> worth 3.1.2 is installed in my environment. Also, are you running the\n> latest commit, like I am? Just trying to figure out what could be different\n> with my instance that would cause this...\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1523#issuecomment-1549852964>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH36PIFZW77RMYN2Z5NLXGOJNTANCNFSM6AAAAAAYC5D3FA>\n> .\n> You are receiving this because you commented.Message ID:\n> ***@***.***>\n>\n\nComment: Hmm. I'd like to tun the `run` method in `reporthtmlsummary.py` through a debugger. What's the best way to get the `results`  `dict``that is expected as input?\nComment: if you go with debugger put breakpoint and you will see it as self.results or just results or report i don't remember, just use `dir()`\nComment: This was my first time using `pdb` directly, instead of using an IDE, so I'm probably doing something wrong here. Any ideas?\r\n\r\nWhat I did:\r\n\r\n1. Stopped my `cape-processing` service\r\n2. Added `breakpoint()` as line 91 of `reporthtmlsummary.py`\r\n3. Executed `sudo -u cape python3 -m poetry run python process.py -p7 auto -pt 900```\r\n4. Submitted a sample\r\n\r\nWhat happened\r\n\r\n```python\r\n /opt/CAPEv2/modules/reporting/reporthtmlsummary.py(92)run()\r\n-> env.loader = FileSystemLoader(os.path.join(CUCKOO_ROOT, \"data\", \"html\"))\r\n(Pdb) \r\nERROR:lib.cuckoo.core.plugins:Failed to run the reporting module \"ReportHTMLSummary\": \r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 712, in process\r\n    current.run(self.results)\r\n  File \"/opt/CAPEv2/utils/../modules/reporting/reporthtmlsummary.py\", line 92, in run\r\n    env.loader = FileSystemLoader(os.path.join(CUCKOO_ROOT, \"data\", \"html\"))\r\n  File \"/opt/CAPEv2/utils/../modules/reporting/reporthtmlsummary.py\", line 92, in run\r\n    env.loader = FileSystemLoader(os.path.join(CUCKOO_ROOT, \"data\", \"html\"))\r\n  File \"/usr/lib/python3.10/bdb.py\", line 90, in trace_dispatch\r\n    return self.dispatch_line(frame)\r\n  File \"/usr/lib/python3.10/bdb.py\", line 115, in dispatch_line\r\n    if self.quitting: raise BdbQuit\r\nbdb.BdbQuit\r\n2023-05-17 18:15:54,415 [Task 7] [lib.cuckoo.core.plugins] ERROR: Failed to run the reporting module \"ReportHTMLSummary\": \r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 712, in process\r\n    current.run(self.results)\r\n  File \"/opt/CAPEv2/utils/../modules/reporting/reporthtmlsummary.py\", line 92, in run\r\n    env.loader = FileSystemLoader(os.path.join(CUCKOO_ROOT, \"data\", \"html\"))\r\n  File \"/opt/CAPEv2/utils/../modules/reporting/reporthtmlsummary.py\", line 92, in run\r\n    env.loader = FileSystemLoader(os.path.join(CUCKOO_ROOT, \"data\", \"html\"))\r\n  File \"/usr/lib/python3.10/bdb.py\", line 90, in trace_dispatch\r\n    return self.dispatch_line(frame)\r\n  File \"/usr/lib/python3.10/bdb.py\", line 115, in dispatch_line\r\n    if self.quitting: raise BdbQuit\r\nbdb.BdbQuit\r\n2023-05-17 18:15:54,415 [Task 7] [lib.cuckoo.core.plugins] ERROR: Failed to run the reporting module \"ReportHTMLSummary\": \r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 712, in process\r\n    current.run(self.results)\r\n  File \"/opt/CAPEv2/utils/../modules/reporting/reporthtmlsummary.py\", line 92, in run\r\n    env.loader = FileSystemLoader(os.path.join(CUCKOO_ROOT, \"data\", \"html\"))\r\n  File \"/opt/CAPEv2/utils/../modules/reporting/reporthtmlsummary.py\", line 92, in run\r\n    env.loader = FileSystemLoader(os.path.join(CUCKOO_ROOT, \"data\", \"html\"))\r\n  File \"/usr/lib/python3.10/bdb.py\", line 90, in trace_dispatch\r\n    return self.dispatch_line(frame)\r\n  File \"/usr/lib/python3.10/bdb.py\", line 115, in dispatch_line\r\n    if self.quitting: raise BdbQuit\r\nbdb.BdbQuit\r\n```\nComment: that not related at all to your problem, instead of `breakpoint()` i personally use oneliner in most of the cases `import code;code.interact(local=dict(locals(), **globals()))` will give you a bit easier to control over than breakpoint. i will try to test it again but till july im having almost no spare time\nComment: ok i was able to enable capa and summaryhtmlreport and with reprocess i don't have any problem. i have verified jinja version, capa is 5.1.0. \nComment: The only other potential difference I can think of is Ubuntu and Python version. I'm running Ubuntu 22.04, which uses Python 3.10. You?\nComment: The same, python 3.10.6\n\nEl vie, 19 may 2023 3:16, Sean Whalen ***@***.***> escribi\u00f3:\n\n> The only other potential difference I can think of is Ubuntu and Python\n> version. I'm running Ubuntu 22.04, which uses Python 3.10. You?\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1523#issuecomment-1553879627>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3YHDG7CXSII2EGLC4TXG3CXRANCNFSM6AAAAAAYC5D3FA>\n> .\n> You are receiving this because you commented.Message ID:\n> ***@***.***>\n>\n\nComment: If you need that reporte, just remove html data with that problematic code\nin data/html/\n\nEl vie, 19 may 2023 8:10, Andriy Brukhovetskyy ***@***.***>\nescribi\u00f3:\n\n> The same, python 3.10.6\n>\n> El vie, 19 may 2023 3:16, Sean Whalen ***@***.***> escribi\u00f3:\n>\n>> The only other potential difference I can think of is Ubuntu and Python\n>> version. I'm running Ubuntu 22.04, which uses Python 3.10. You?\n>>\n>> \u2014\n>> Reply to this email directly, view it on GitHub\n>> <https://github.com/kevoreilly/CAPEv2/issues/1523#issuecomment-1553879627>,\n>> or unsubscribe\n>> <https://github.com/notifications/unsubscribe-auth/AAOFH3YHDG7CXSII2EGLC4TXG3CXRANCNFSM6AAAAAAYC5D3FA>\n>> .\n>> You are receiving this because you commented.Message ID:\n>> ***@***.***>\n>>\n>\n",
+  "Title: Exception when attempting to use FLOSS\nBody: # Expected Behavior\r\n\r\nClicking the FLOSS button should display FLOSS output\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\nAn exception occurs.\r\n\r\n```text\r\nFile \"/opt/CAPEv2/web/../lib/cuckoo/common/integrations/floss.py\", line 123, in run\r\nfm.set_log_config(fm.DebugLevel.DEFAULT, False)\r\nNameError: name 'fm' is not defined\r\n```\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Enable `floss` in `reporting.conf` \r\n2. Restart CAPE\r\n3. Submit a file for analysis\r\n4. Click on the FLOSS button in the Quick Overview of tab of the analysis \r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|-----------------|--------------------\r\n| Git commit      | 9296021e104c2a53da49195bdacb1bd83626539d\r\n| OS version       | Ubuntu 22.04\r\n\r\n\nComment: i would really appreciate if you would start posting proper logs apart of the issue\r\n\r\n```\r\ntry:\r\n    HAVE_FLOSS = True\r\n    import floss.main as fm\r\nexcept ImportError:\r\n    print(\"Missed dependency flare-floss: pip3 install -U flare-floss\")\r\n```\nComment: https://github.com/kevoreilly/CAPEv2/commit/05c15e50c529880893c798b8c4dd5dc4bef30dcd\nComment: Shit. I found that and forgot to close the issue.\nComment: I have improved handling of this anyway so shoulsnt happen if not installed, thanks",
+  "Title: Key UI elopements are missing in the analysis results page\nBody: # Expected Behavior\r\n\r\nMy instance of CAPE should show most of the same output as the public instance of CAPE.\r\n\r\nhttps://capesandbox.com/analysis/390204/\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\n# Failure Information (for bugs)\r\n\r\nThe File Details table and Dropped Files tab are missing on the analysis results page.\r\n\r\n![screenshot](https://github.com/kevoreilly/CAPEv2/assets/44679/df764bd1-bcf1-4dc7-bd70-4de18bbeb005)\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Upload the latest version of `pafish` for analysis\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|-----------------|--------------------\r\n| Git commit      | 9296021e104c2a53da49195bdacb1bd83626539d\r\n| OS version       | Ubuntu 22.04 host, Windows 10 analysis VM\r\n\r\n\nComment: read your logs!\nComment: I did, and noting is jumping out to me. The analysis logs show that dropped files were dumped.\r\n\r\n```text\r\n-05-13 17:43:19,796 [lib.common.results] INFO: Uploading file C:\\Users\\redacted\\AppData\\Local\\Temp\\pafish.log to files\\65d5d12f7d27f41298fd1a47bafe3fe0221733551b1233bae84593a2\r\n```\r\n\r\nAnd the file does show up in the files directory of the analysis.\r\n\r\nHere are the full analysis logs. Nothing jumps out at me., which makes me think this a Django problem.\r\n\r\n```text\r\n2023-05-13 15:42:31,293 [root] INFO: Date set to: 20230513T17:39:48, timeout set to: 200\r\n2023-05-13 17:39:48,169 [root] DEBUG: Starting analyzer from: C:\\tmpwg158eb0\r\n2023-05-13 17:39:48,169 [root] DEBUG: Storing results at: C:\\yiplHAu\r\n2023-05-13 17:39:48,169 [root] DEBUG: Pipe server name: \\\\.\\PIPE\\PMUGRtvqt\r\n2023-05-13 17:39:48,169 [root] DEBUG: Python path: C:\\Program Files (x86)\\Python311-32\r\n2023-05-13 17:39:48,169 [root] INFO: Analysis package \"exe\" has been specified\r\n2023-05-13 17:39:48,169 [root] DEBUG: Importing analysis package \"exe\"...\r\n2023-05-13 17:39:48,169 [root] DEBUG: Initializing analysis package \"exe\"...\r\n2023-05-13 17:39:48,169 [root] DEBUG: New location of moved file: C:\\Users\\redacted\\AppData\\Local\\Temp\\pafish64.exe\r\n2023-05-13 17:39:48,169 [root] INFO: Analyzer: Package modules.packages.exe does not specify a DLL option\r\n2023-05-13 17:39:48,169 [root] INFO: Analyzer: Package modules.packages.exe does not specify a DLL_64 option\r\n2023-05-13 17:39:48,169 [root] INFO: Analyzer: Package modules.packages.exe does not specify a loader option\r\n2023-05-13 17:39:48,169 [root] INFO: Analyzer: Package modules.packages.exe does not specify a loader_64 option\r\n2023-05-13 17:39:48,185 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.browser\"...\r\n2023-05-13 17:39:48,200 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.curtain\"...\r\n2023-05-13 17:39:48,232 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.digisig\"...\r\n2023-05-13 17:39:48,247 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.disguise\"...\r\n2023-05-13 17:39:48,294 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.during_script\"...\r\n2023-05-13 17:39:48,294 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.evtx\"...\r\n2023-05-13 17:39:48,294 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.filepickup\"...\r\n2023-05-13 17:39:48,294 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.human\"...\r\n2023-05-13 17:39:48,310 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.permissions\"...\r\n2023-05-13 17:39:48,310 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.pre_script\"...\r\n2023-05-13 17:39:48,310 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.procmon\"...\r\n2023-05-13 17:39:48,372 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.screenshots\"...\r\n2023-05-13 17:39:48,372 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageChops'\r\n2023-05-13 17:39:48,482 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageGrab'\r\n2023-05-13 17:39:48,482 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageDraw'\r\n2023-05-13 17:39:48,482 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.sysmon\"...\r\n2023-05-13 17:39:48,482 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.tlsdump\"...\r\n2023-05-13 17:39:48,482 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.usage\"...\r\n2023-05-13 17:39:48,482 [root] DEBUG: Initialized auxiliary module \"Browser\"\r\n2023-05-13 17:39:48,482 [root] DEBUG: Trying to start auxiliary module \"Browser\"...\r\n2023-05-13 17:39:48,482 [root] DEBUG: Started auxiliary module \"Browser\"\r\n2023-05-13 17:39:48,482 [root] DEBUG: Started auxiliary module Browser\r\n2023-05-13 17:39:48,482 [root] DEBUG: Initialized auxiliary module \"Curtain\"\r\n2023-05-13 17:39:48,482 [root] DEBUG: Trying to start auxiliary module \"Curtain\"...\r\n2023-05-13 17:39:48,482 [root] DEBUG: Started auxiliary module \"Curtain\"\r\n2023-05-13 17:39:48,482 [root] DEBUG: Started auxiliary module Curtain\r\n2023-05-13 17:39:48,482 [root] DEBUG: Initialized auxiliary module \"DigiSig\"\r\n2023-05-13 17:39:48,482 [root] DEBUG: Trying to start auxiliary module \"DigiSig\"...\r\n2023-05-13 17:39:48,482 [modules.auxiliary.digisig] DEBUG: Checking for a digital signature\r\n2023-05-13 17:39:48,591 [modules.auxiliary.digisig] DEBUG: File is not signed\r\n2023-05-13 17:39:48,591 [modules.auxiliary.digisig] INFO: Uploading signature results to aux/DigiSig.json\r\n2023-05-13 17:39:48,591 [root] DEBUG: Started auxiliary module \"DigiSig\"\r\n2023-05-13 17:39:48,591 [root] DEBUG: Started auxiliary module DigiSig\r\n2023-05-13 17:39:48,591 [root] DEBUG: Initialized auxiliary module \"Disguise\"\r\n2023-05-13 17:39:48,591 [root] DEBUG: Trying to start auxiliary module \"Disguise\"...\r\n2023-05-13 17:39:48,606 [modules.auxiliary.disguise] INFO: Disguising GUID to b72342b2-33a5-43fa-a379-0fa9463d1f98\r\n2023-05-13 17:39:48,606 [root] DEBUG: Started auxiliary module \"Disguise\"\r\n2023-05-13 17:39:48,606 [root] DEBUG: Started auxiliary module Disguise\r\n2023-05-13 17:39:48,606 [root] DEBUG: Initialized auxiliary module \"Evtx\"\r\n2023-05-13 17:39:48,606 [root] DEBUG: Trying to start auxiliary module \"Evtx\"...\r\n2023-05-13 17:39:48,606 [root] DEBUG: Started auxiliary module \"Evtx\"\r\n2023-05-13 17:39:48,606 [root] DEBUG: Started auxiliary module Evtx\r\n2023-05-13 17:39:48,606 [root] DEBUG: Initialized auxiliary module \"FilePickup\"\r\n2023-05-13 17:39:48,606 [root] DEBUG: Trying to start auxiliary module \"FilePickup\"...\r\n2023-05-13 17:39:48,606 [root] DEBUG: Started auxiliary module \"FilePickup\"\r\n2023-05-13 17:39:48,606 [root] DEBUG: Started auxiliary module FilePickup\r\n2023-05-13 17:39:48,606 [root] DEBUG: Initialized auxiliary module \"Human\"\r\n2023-05-13 17:39:48,606 [root] DEBUG: Trying to start auxiliary module \"Human\"...\r\n2023-05-13 17:39:48,606 [root] DEBUG: Started auxiliary module \"Human\"\r\n2023-05-13 17:39:48,606 [root] DEBUG: Started auxiliary module Human\r\n2023-05-13 17:39:48,606 [root] DEBUG: Initialized auxiliary module \"Permissions\"\r\n2023-05-13 17:39:48,606 [root] DEBUG: Trying to start auxiliary module \"Permissions\"...\r\n2023-05-13 17:39:48,606 [root] DEBUG: Started auxiliary module \"Permissions\"\r\n2023-05-13 17:39:48,606 [root] DEBUG: Started auxiliary module Permissions\r\n2023-05-13 17:39:48,606 [root] DEBUG: Initialized auxiliary module \"Pre_script\"\r\n2023-05-13 17:39:48,606 [root] DEBUG: Trying to start auxiliary module \"Pre_script\"...\r\n2023-05-13 17:39:48,606 [root] DEBUG: Started auxiliary module \"Pre_script\"\r\n2023-05-13 17:39:48,606 [root] DEBUG: Started auxiliary module Pre_script\r\n2023-05-13 17:39:48,606 [root] DEBUG: Initialized auxiliary module \"Procmon\"\r\n2023-05-13 17:39:48,606 [root] DEBUG: Trying to start auxiliary module \"Procmon\"...\r\n2023-05-13 17:39:48,606 [root] DEBUG: Started auxiliary module \"Procmon\"\r\n2023-05-13 17:39:48,606 [root] DEBUG: Started auxiliary module Procmon\r\n2023-05-13 17:39:48,606 [root] DEBUG: Initialized auxiliary module \"Screenshots\"\r\n2023-05-13 17:39:48,606 [root] DEBUG: Trying to start auxiliary module \"Screenshots\"...\r\n2023-05-13 17:39:48,606 [root] DEBUG: Started auxiliary module \"Screenshots\"\r\n2023-05-13 17:39:48,606 [root] DEBUG: Started auxiliary module Screenshots\r\n2023-05-13 17:39:48,606 [root] DEBUG: Initialized auxiliary module \"Sysmon\"\r\n2023-05-13 17:39:48,606 [root] DEBUG: Trying to start auxiliary module \"Sysmon\"...\r\n2023-05-13 17:39:48,606 [root] DEBUG: Started auxiliary module \"Sysmon\"\r\n2023-05-13 17:39:48,606 [root] DEBUG: Started auxiliary module Sysmon\r\n2023-05-13 17:39:48,606 [root] DEBUG: Initialized auxiliary module \"TLSDumpMasterSecrets\"\r\n2023-05-13 17:39:48,606 [root] DEBUG: Trying to start auxiliary module \"TLSDumpMasterSecrets\"...\r\n2023-05-13 17:39:48,606 [modules.auxiliary.tlsdump] INFO: lsass.exe found, pid 596\r\n2023-05-13 17:39:48,653 [lib.api.process] INFO: Monitor config for process 596: C:\\tmpwg158eb0\\dll\\596.ini\r\n2023-05-13 17:39:48,653 [lib.api.process] INFO: Option 'tlsdump' with value '1' sent to monitor\r\n2023-05-13 17:39:48,653 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmpwg158eb0\\dll\\SDUIKzz.dll, loader C:\\tmpwg158eb0\\bin\\pCtQtrdb.exe\r\n2023-05-13 17:39:48,653 [root] DEBUG: Loader: Injecting process 596 with C:\\tmpwg158eb0\\dll\\SDUIKzz.dll.\r\n2023-05-13 17:39:48,669 [root] DEBUG: Python path set to 'C:\\Program Files (x86)\\Python311-32'.\r\n2023-05-13 17:39:48,669 [root] DEBUG: TLS secret dump mode enabled.\r\n2023-05-13 17:39:48,669 [root] INFO: Disabling sleep skipping.\r\n2023-05-13 17:39:48,669 [root] DEBUG: Monitor initialised: 64-bit capemon loaded in process 596 at 0x00007FF9C37E0000, thread 4988, image base 0x00007FF7BC300000, stack from 0x00000054805F4000-0x0000005480600000\r\n2023-05-13 17:39:48,669 [root] DEBUG: Commandline: C:\\Windows\\system32\\lsass.exe\r\n2023-05-13 17:39:48,669 [root] DEBUG: InjectDllViaThread: Successfully injected Dll into process via RtlCreateUserThread.\r\n2023-05-13 17:39:48,669 [root] DEBUG: Successfully injected DLL C:\\tmpwg158eb0\\dll\\SDUIKzz.dll.\r\n2023-05-13 17:39:48,669 [lib.api.process] INFO: Injected into 64-bit process with pid 596\r\n2023-05-13 17:39:48,669 [root] DEBUG: Started auxiliary module \"TLSDumpMasterSecrets\"\r\n2023-05-13 17:39:48,669 [root] DEBUG: Started auxiliary module TLSDumpMasterSecrets\r\n2023-05-13 17:39:48,669 [root] DEBUG: Initialized auxiliary module \"Usage\"\r\n2023-05-13 17:39:48,669 [root] DEBUG: Trying to start auxiliary module \"Usage\"...\r\n2023-05-13 17:39:48,669 [root] DEBUG: Started auxiliary module \"Usage\"\r\n2023-05-13 17:39:48,669 [root] DEBUG: Started auxiliary module Usage\r\n2023-05-13 17:39:48,669 [root] DEBUG: Initialized auxiliary module \"During_script\"\r\n2023-05-13 17:39:48,669 [root] DEBUG: Trying to start auxiliary module \"During_script\"...\r\n2023-05-13 17:39:48,669 [root] DEBUG: Started auxiliary module \"During_script\"\r\n2023-05-13 17:39:48,669 [root] DEBUG: Started auxiliary module During_script\r\n2023-05-13 17:39:48,982 [root] DEBUG: TLS 1.2 secrets logged to: C:\\yiplHAu\\tlsdump\\tlsdump.log\r\n2023-05-13 17:39:50,900 [root] DEBUG: DLL loaded at 0x00007FF9E9410000: C:\\Windows\\SYSTEM32\\wtsapi32 (0x14000 bytes).\r\n2023-05-13 17:39:53,868 [root] INFO: Restarting WMI Service\r\n2023-05-13 17:39:56,025 [lib.core.compound] INFO: C:\\Users\\redacted\\AppData\\Local\\Temp already exists, skipping creation\r\n2023-05-13 17:39:56,025 [lib.api.process] INFO: Successfully executed process from path \"C:\\Users\\redacted\\AppData\\Local\\Temp\\pafish64.exe\" with arguments \"\" with pid 2500\r\n2023-05-13 17:39:56,025 [lib.api.process] INFO: Monitor config for process 2500: C:\\tmpwg158eb0\\dll\\2500.ini\r\n2023-05-13 17:39:56,055 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmpwg158eb0\\dll\\SDUIKzz.dll, loader C:\\tmpwg158eb0\\bin\\pCtQtrdb.exe\r\n2023-05-13 17:39:56,055 [root] DEBUG: Loader: Injecting process 2500 (thread 2644) with C:\\tmpwg158eb0\\dll\\SDUIKzz.dll.\r\n2023-05-13 17:39:56,055 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\r\n2023-05-13 17:39:56,055 [root] DEBUG: Successfully injected DLL C:\\tmpwg158eb0\\dll\\SDUIKzz.dll.\r\n2023-05-13 17:39:56,055 [lib.api.process] INFO: Injected into 64-bit process with pid 2500\r\n2023-05-13 17:39:58,082 [lib.api.process] INFO: Successfully resumed process with pid 2500\r\n2023-05-13 17:39:58,175 [root] DEBUG: Python path set to 'C:\\Program Files (x86)\\Python311-32'.\r\n2023-05-13 17:39:58,207 [root] DEBUG: Dropped file limit defaulting to 100.\r\n2023-05-13 17:39:58,207 [root] DEBUG: Initialising Yara...\r\n2023-05-13 17:39:58,207 [root] DEBUG: YaraInit: Compiled 25 rule files\r\n2023-05-13 17:39:58,207 [root] DEBUG: YaraInit: Compiled rules saved to file C:\\tmpwg158eb0\\data\\yara\\capemon.yac\r\n2023-05-13 17:39:58,207 [root] DEBUG: InternalYaraScan: Scanning 0x00007FF9EE670000, size 0x1f4542\r\n2023-05-13 17:39:58,222 [root] DEBUG: InternalYaraScan hit: RtlInsertInvertedFunctionTable\r\n2023-05-13 17:39:58,222 [root] DEBUG: RtlInsertInvertedFunctionTable 0x00007FF9EE68090E, LdrpInvertedFunctionTableSRWLock 0x00007FF9EE7DB4F0\r\n2023-05-13 17:39:58,222 [root] DEBUG: YaraScan: Scanning 0x0000000000400000, size 0x24ef0\r\n2023-05-13 17:39:58,222 [root] DEBUG: AmsiDumper initialised.\r\n2023-05-13 17:39:58,222 [root] DEBUG: Monitor initialised: 64-bit capemon loaded in process 2500 at 0x00007FF9C37E0000, thread 2644, image base 0x0000000000400000, stack from 0x0000000000625000-0x0000000000630000\r\n2023-05-13 17:39:58,222 [root] DEBUG: Commandline: \"C:\\Users\\redacted\\AppData\\Local\\Temp\\pafish64.exe\"\r\n2023-05-13 17:39:58,288 [root] DEBUG: hook_api: Warning - CoCreateInstance export address 0x00007FF9ED6B42EB differs from GetProcAddress -> 0x00007FF9EE24C030\r\n2023-05-13 17:39:58,288 [root] DEBUG: hook_api: Warning - CoCreateInstanceEx export address 0x00007FF9ED6B432A differs from GetProcAddress -> 0x00007FF9EE2E7B60\r\n2023-05-13 17:39:58,288 [root] DEBUG: hook_api: Warning - CoGetClassObject export address 0x00007FF9ED6B48BA differs from GetProcAddress -> 0x00007FF9EE27B340\r\n2023-05-13 17:39:58,288 [root] DEBUG: hook_api: Warning - CLSIDFromProgID export address 0x00007FF9ED6B3B36 differs from GetProcAddress -> 0x00007FF9EE2B8380\r\n2023-05-13 17:39:58,304 [root] DEBUG: RestoreHeaders: Restored original import table.\r\n2023-05-13 17:39:58,304 [root] INFO: Loaded monitor into process with pid 2500\r\n2023-05-13 17:39:58,304 [root] DEBUG: caller_dispatch: Added region at 0x00007FF9EE670000 to tracked regions list (ntdll::LdrUnloadDll returns to 0x00007FF9EE743D88, thread 2644).\r\n2023-05-13 17:39:58,304 [root] DEBUG: YaraScan: Scanning 0x00007FF9EE670000, size 0x1f4542\r\n2023-05-13 17:39:58,320 [root] DEBUG: YaraScan hit: RtlInsertInvertedFunctionTable\r\n2023-05-13 17:39:58,320 [root] DEBUG: DLL unloaded from 0x00007FF9E9350000.\r\n2023-05-13 17:39:58,320 [root] DEBUG: caller_dispatch: Added region at 0x0000000000400000 to tracked regions list (kernel32::SetUnhandledExceptionFilter returns to 0x000000000040126E, thread 2644).\r\n2023-05-13 17:39:58,320 [root] DEBUG: YaraScan: Scanning 0x0000000000400000, size 0x24ef0\r\n2023-05-13 17:39:58,320 [root] DEBUG: YaraScan: Scanning 0x00007FF9EC360000, size 0x2c8a64\r\n2023-05-13 17:39:58,320 [root] DEBUG: caller_dispatch: Added region at 0x00007FF9EC360000 to tracked regions list (ntdll::NtDeviceIoControlFile returns to 0x00007FF9EC371751, thread 2368).\r\n2023-05-13 17:39:58,320 [root] DEBUG: caller_dispatch: Scanning calling region at 0x00007FF9EC360000...\r\n2023-05-13 17:39:58,320 [root] DEBUG: YaraScan: Scanning 0x00007FF9EC360000, size 0x2c8a64\r\n2023-05-13 17:39:58,351 [root] DEBUG: caller_dispatch: Added region at 0x00007FF9ED170000 to tracked regions list (msvcrt::memcpy returns to 0x00007FF9ED1BE07F, thread 2644).\r\n2023-05-13 17:39:58,351 [root] DEBUG: YaraScan: Scanning 0x00007FF9ED170000, size 0x9d4a8\r\n2023-05-13 17:39:58,351 [root] INFO: Added new file to list with pid None and path C:\\Users\\redacted\\AppData\\Local\\Temp\\pafish.log\r\n2023-05-13 17:39:58,445 [root] INFO: Added new file to list with pid None and path C:\\Users\\redacted\\AppData\\Local\\Temp\\hi_CPU_VM_rdtsc_force_vm_exit\r\n2023-05-13 17:39:58,460 [root] DEBUG: DLL loaded at 0x00007FF9E97D0000: C:\\Windows\\system32\\uxtheme (0x9e000 bytes).\r\n2023-05-13 17:39:58,476 [root] DEBUG: DLL loaded at 0x00007FF9EC630000: C:\\Windows\\System32\\bcryptPrimitives (0x83000 bytes).\r\n2023-05-13 17:39:58,476 [root] INFO: Added new file to list with pid None and path C:\\Users\\redacted\\AppData\\Local\\Temp\\hi_sandbox_rtt_mouse_speed_limit\r\n2023-05-13 17:40:01,500 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x22c and local view 0x00007FF9EE050000 to global list.\r\n2023-05-13 17:40:01,500 [root] DEBUG: DLL loaded at 0x00007FF9EE050000: C:\\Windows\\System32\\MSCTF (0x115000 bytes).\r\n2023-05-13 17:40:01,515 [root] DEBUG: caller_dispatch: Added region at 0x00007FF9ECDA0000 to tracked regions list (user32::SetWindowLongPtrW returns to 0x00007FF9ECDAC773, thread 2644).\r\n2023-05-13 17:40:01,515 [root] DEBUG: YaraScan: Scanning 0x00007FF9ECDA0000, size 0x1a0438\r\n2023-05-13 17:40:01,531 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x238 and local view 0x00000000001C0000 to global list.\r\n2023-05-13 17:40:01,547 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x234 and local view 0x00000000050B0000 to global list.\r\n2023-05-13 17:40:01,547 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x23c and local view 0x00000000001C0000 to global list.\r\n2023-05-13 17:40:01,547 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x24c and local view 0x0000000005250000 to global list.\r\n2023-05-13 17:40:01,547 [root] DEBUG: caller_dispatch: Added region at 0x00007FF9ED4E0000 to tracked regions list (ntdll::NtOpenKey returns to 0x00007FF9ED4EB459, thread 2644).\r\n2023-05-13 17:40:01,547 [root] DEBUG: YaraScan: Scanning 0x00007FF9ED4E0000, size 0xbd30a\r\n2023-05-13 17:40:01,562 [root] DEBUG: caller_dispatch: Added region at 0x00007FF9ECCF0000 to tracked regions list (user32::GetKeyboardLayout returns to 0x00007FF9ECCF24C4, thread 2644).\r\n2023-05-13 17:40:01,562 [root] DEBUG: YaraScan: Scanning 0x00007FF9ECCF0000, size 0x2f0d6\r\n2023-05-13 17:40:01,562 [root] DEBUG: caller_dispatch: Added region at 0x00007FF9EE220000 to tracked regions list (ntdll::NtQuerySystemInformation returns to 0x00007FF9EE2C4F14, thread 2644).\r\n2023-05-13 17:40:01,562 [root] DEBUG: YaraScan: Scanning 0x00007FF9EE220000, size 0x35477a\r\n2023-05-13 17:40:01,578 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x258 and local view 0x00007FF9E9CB0000 to global list.\r\n2023-05-13 17:40:01,594 [root] DEBUG: DLL loaded at 0x00007FF9E9CB0000: C:\\Windows\\SYSTEM32\\kernel.appcore (0x12000 bytes).\r\n2023-05-13 17:40:01,594 [root] INFO: Disabling sleep skipping.\r\n2023-05-13 17:40:01,594 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x00000000001F0000 for section view with handle 0x258.\r\n2023-05-13 17:40:01,594 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x280 and local view 0x00007FF9DC8F0000 to global list.\r\n2023-05-13 17:40:01,594 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x28c and local view 0x00007FF9E8CB0000 to global list.\r\n2023-05-13 17:40:01,594 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x290 and local view 0x00007FF9EE170000 to global list.\r\n2023-05-13 17:40:01,594 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x00007FF9E9010000 for section view with handle 0x28c.\r\n2023-05-13 17:40:01,594 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x00007FF9EAA80000 for section view with handle 0x28c.\r\n2023-05-13 17:40:01,594 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x00007FF9E87D0000 for section view with handle 0x28c.\r\n2023-05-13 17:40:01,594 [root] DEBUG: DLL loaded at 0x00007FF9EAA80000: C:\\Windows\\SYSTEM32\\ntmarta (0x33000 bytes).\r\n2023-05-13 17:40:01,609 [root] DEBUG: DLL loaded at 0x00007FF9E9010000: C:\\Windows\\System32\\CoreMessaging (0xf2000 bytes).\r\n2023-05-13 17:40:01,609 [root] DEBUG: DLL loaded at 0x00007FF9E87D0000: C:\\Windows\\SYSTEM32\\wintypes (0x154000 bytes).\r\n2023-05-13 17:40:01,609 [root] DEBUG: DLL loaded at 0x00007FF9EE170000: C:\\Windows\\System32\\SHCORE (0xad000 bytes).\r\n2023-05-13 17:40:01,609 [root] DEBUG: DLL loaded at 0x00007FF9E8CB0000: C:\\Windows\\System32\\CoreUIComponents (0x35e000 bytes).\r\n2023-05-13 17:40:01,609 [root] DEBUG: DLL loaded at 0x00007FF9DC8F0000: C:\\Windows\\SYSTEM32\\textinputframework (0xf9000 bytes).\r\n2023-05-13 17:40:01,609 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x2c4 and local view 0x0000000005690000 to global list.\r\n2023-05-13 17:40:01,609 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x2bc and local view 0x00007FF9DA8E0000 to global list.\r\n2023-05-13 17:40:01,609 [root] DEBUG: DLL loaded at 0x00007FF9DA8E0000: C:\\Windows\\SYSTEM32\\TextShaping (0xac000 bytes).\r\n2023-05-13 17:40:01,625 [root] DEBUG: caller_dispatch: Added region at 0x00007FF9EBD90000 to tracked regions list (msvcrt::memcpy returns to 0x00007FF9EBD96960, thread 2644).\r\n2023-05-13 17:40:01,625 [root] DEBUG: YaraScan: Scanning 0x00007FF9EBD90000, size 0x10a47a\r\n2023-05-13 17:40:01,703 [modules.auxiliary.human] INFO: Found button \"OK\", clicking it\r\n2023-05-13 17:40:03,910 [modules.auxiliary.human] INFO: Found button \"OK\", clicking it\r\n2023-05-13 17:40:04,945 [root] INFO: Added new file to list with pid None and path C:\\Users\\redacted\\AppData\\Local\\Temp\\hi_sandbox_rtt_implausible_confirm_dialog\r\n2023-05-13 17:40:05,624 [root] DEBUG: DLL loaded at 0x00007FF9ED210000: C:\\Windows\\System32\\NSI (0x8000 bytes).\r\n2023-05-13 17:40:05,624 [root] DEBUG: DLL loaded at 0x00007FF9E5120000: C:\\Windows\\SYSTEM32\\dhcpcsvc6 (0x17000 bytes).\r\n2023-05-13 17:40:05,628 [root] DEBUG: DLL loaded at 0x00007FF9E50F0000: C:\\Windows\\SYSTEM32\\dhcpcsvc (0x1d000 bytes).\r\n2023-05-13 17:40:05,628 [root] DEBUG: DLL loaded at 0x00007FF9EB210000: C:\\Windows\\SYSTEM32\\DNSAPI (0xcc000 bytes).\r\n2023-05-13 17:40:05,639 [root] DEBUG: AddTrackedRegion: DEBUG Warning - number of tracked regions 11.\r\n2023-05-13 17:40:05,639 [root] DEBUG: caller_dispatch: Added region at 0x00007FF9D9180000 to tracked regions list (mpr::WNetGetProviderNameW returns to 0x00007FF9D918D606, thread 2644).\r\n2023-05-13 17:40:05,639 [root] DEBUG: YaraScan: Scanning 0x00007FF9D9180000, size 0x1c0a8\r\n2023-05-13 17:40:05,644 [root] DEBUG: DLL loaded at 0x00007FF9EB030000: C:\\Windows\\System32\\WINSTA (0x5a000 bytes).\r\n2023-05-13 17:40:05,644 [root] DEBUG: DLL loaded at 0x00007FF9E25E0000: C:\\Windows\\System32\\drprov (0xb000 bytes).\r\n2023-05-13 17:40:05,644 [root] DEBUG: DLL loaded at 0x00007FF9E2200000: C:\\Windows\\System32\\ntlanman (0x22000 bytes).\r\n2023-05-13 17:40:05,644 [root] DEBUG: DLL loaded at 0x00007FF9E25D0000: C:\\Windows\\System32\\DAVHLPR (0xd000 bytes).\r\n2023-05-13 17:40:05,649 [root] DEBUG: DLL loaded at 0x00007FF9E21E0000: C:\\Windows\\System32\\davclnt (0x1e000 bytes).\r\n2023-05-13 17:40:05,669 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x2ec and local view 0x0000000000640000 to global list.\r\n2023-05-13 17:40:05,669 [root] DEBUG: DLL loaded at 0x00007FF9ECC30000: C:\\Windows\\System32\\clbcatq (0xa9000 bytes).\r\n2023-05-13 17:40:05,674 [root] DEBUG: DLL loaded at 0x00007FF9E29E0000: C:\\Windows\\SYSTEM32\\wbemcomn (0x92000 bytes).\r\n2023-05-13 17:40:05,674 [root] DEBUG: DLL loaded at 0x00007FF9E2A80000: C:\\Windows\\system32\\wbem\\wbemprox (0x11000 bytes).\r\n2023-05-13 17:40:05,679 [root] DEBUG: DLL loaded at 0x00007FF9E1FB0000: C:\\Windows\\system32\\wbem\\wbemsvc (0x14000 bytes).\r\n2023-05-13 17:40:05,684 [root] DEBUG: AddTrackedRegion: DEBUG Warning - number of tracked regions 12.\r\n2023-05-13 17:40:05,684 [root] DEBUG: caller_dispatch: Added region at 0x00007FF9ED280000 to tracked regions list (ntdll::NtQuerySystemTime returns to 0x00007FF9ED2C2140, thread 2644).\r\n2023-05-13 17:40:05,684 [root] DEBUG: YaraScan: Scanning 0x00007FF9ED280000, size 0x1297bc\r\n2023-05-13 17:40:05,767 [root] DEBUG: DLL loaded at 0x00007FF9E2050000: C:\\Windows\\system32\\wbem\\fastprox (0x10b000 bytes).\r\n2023-05-13 17:40:05,774 [root] DEBUG: DLL loaded at 0x00007FF9E1A50000: C:\\Windows\\SYSTEM32\\amsi (0x19000 bytes).\r\n2023-05-13 17:40:05,774 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x40c and local view 0x00007FF9EBC50000 to global list.\r\n2023-05-13 17:40:05,779 [root] DEBUG: DLL loaded at 0x00007FF9EBC50000: C:\\Windows\\SYSTEM32\\USERENV (0x2e000 bytes).\r\n2023-05-13 17:40:05,779 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x410 and local view 0x00007FF9EBCD0000 to global list.\r\n2023-05-13 17:40:05,779 [root] DEBUG: DLL loaded at 0x00007FF9EBCD0000: C:\\Windows\\SYSTEM32\\profapi (0x1f000 bytes).\r\n2023-05-13 17:40:06,074 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x0000000000680000 for section view with handle 0x410.\r\n2023-05-13 17:40:06,124 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x0000000000160000 for section view with handle 0x410.\r\n2023-05-13 17:40:09,425 [root] DEBUG: DLL unloaded from 0x00007FF9E1FB0000.\r\n2023-05-13 17:40:09,425 [root] DEBUG: DLL unloaded from 0x00007FF9E2A80000.\r\n2023-05-13 17:40:09,425 [root] DEBUG: DLL unloaded from 0x00007FF9E2050000.\r\n2023-05-13 17:40:09,456 [root] DEBUG: DLL loaded at 0x00007FF9E29E0000: C:\\Windows\\SYSTEM32\\wbemcomn (0x92000 bytes).\r\n2023-05-13 17:40:09,472 [root] DEBUG: DLL loaded at 0x00007FF9E2A80000: C:\\Windows\\system32\\wbem\\wbemprox (0x11000 bytes).\r\n2023-05-13 17:40:09,472 [root] DEBUG: DLL loaded at 0x00007FF9E1FB0000: C:\\Windows\\system32\\wbem\\wbemsvc (0x14000 bytes).\r\n2023-05-13 17:40:09,660 [root] DEBUG: DLL loaded at 0x00007FF9E2050000: C:\\Windows\\system32\\wbem\\fastprox (0x10b000 bytes).\r\n2023-05-13 17:40:09,941 [root] DEBUG: DLL unloaded from 0x00007FF9E1FB0000.\r\n2023-05-13 17:40:09,941 [root] DEBUG: DLL unloaded from 0x00007FF9E2A80000.\r\n2023-05-13 17:40:09,941 [root] DEBUG: DLL unloaded from 0x00007FF9E2050000.\r\n2023-05-13 17:40:20,499 [modules.auxiliary.screenshots] ERROR: Cannot take screenshot: screen grab failed\r\n2023-05-13 17:40:25,726 [modules.auxiliary.screenshots] ERROR: Cannot take screenshot: screen grab failed\r\n2023-05-13 17:40:26,728 [modules.auxiliary.screenshots] ERROR: Cannot take screenshot: screen grab failed\r\n2023-05-13 17:40:27,729 [modules.auxiliary.screenshots] ERROR: Cannot take screenshot: screen grab failed\r\n2023-05-13 17:40:28,731 [modules.auxiliary.screenshots] ERROR: Cannot take screenshot: screen grab failed\r\n2023-05-13 17:42:08,390 [root] DEBUG: DLL unloaded from 0x00007FF9EE220000.\r\n2023-05-13 17:43:18,687 [root] INFO: Analysis timeout hit, terminating analysis\r\n2023-05-13 17:43:18,687 [lib.api.process] INFO: Terminate event set for process 2500\r\n2023-05-13 17:43:18,687 [root] DEBUG: Terminate Event: Attempting to dump process 2500\r\n2023-05-13 17:43:18,687 [root] DEBUG: DoProcessDump: Dumping Imagebase at 0x0000000000400000.\r\n2023-05-13 17:43:18,687 [root] DEBUG: DumpImageInCurrentProcess: Attempting to dump virtual PE image.\r\n2023-05-13 17:43:18,687 [root] DEBUG: DumpProcess: Instantiating PeParser with address: 0x0000000000400000.\r\n2023-05-13 17:43:18,687 [root] DEBUG: DumpProcess: Module entry point VA is 0x00000000000014E0.\r\n2023-05-13 17:43:18,687 [lib.common.results] INFO: Uploading file C:\\yiplHAu\\CAPE\\2500_1268682918432113652023 to procdump\\e2031a854054004340999c3f389dd10a8f35e014062914468135b886a2361d04; Size is 125952; Max size: 100000000\r\n2023-05-13 17:43:18,703 [root] DEBUG: DumpProcess: Module image dump success - dump size 0x1ec00.\r\n2023-05-13 17:43:18,703 [lib.api.process] INFO: Termination confirmed for process 2500\r\n2023-05-13 17:43:18,703 [root] INFO: Terminate event set for process 2500\r\n2023-05-13 17:43:18,703 [root] INFO: Created shutdown mutex\r\n2023-05-13 17:43:18,703 [root] DEBUG: Terminate Event: CAPE shutdown complete for process 2500\r\n2023-05-13 17:43:19,718 [root] INFO: Shutting down package\r\n2023-05-13 17:43:19,718 [root] INFO: Stopping auxiliary modules\r\n2023-05-13 17:43:19,718 [root] INFO: Stopping auxiliary module: Browser\r\n2023-05-13 17:43:19,718 [root] INFO: Stopping auxiliary module: Curtain\r\n2023-05-13 17:43:19,796 [lib.common.results] INFO: Uploading file C:\\curtain.log to curtain/1684014199.7968786.curtain.log; Size is 29808; Max size: 100000000\r\n2023-05-13 17:43:19,796 [root] INFO: Stopping auxiliary module: Evtx\r\n2023-05-13 17:43:19,796 [root] INFO: Stopping auxiliary module: FilePickup\r\n2023-05-13 17:43:19,796 [root] INFO: Stopping auxiliary module: Human\r\n2023-05-13 17:43:19,796 [root] INFO: Stopping auxiliary module: Pre_script\r\n2023-05-13 17:43:19,796 [root] INFO: Stopping auxiliary module: Procmon\r\n2023-05-13 17:43:19,796 [root] INFO: Stopping auxiliary module: Screenshots\r\n2023-05-13 17:43:19,796 [root] INFO: Stopping auxiliary module: Sysmon\r\n2023-05-13 17:43:19,796 [root] INFO: Stopping auxiliary module: Usage\r\n2023-05-13 17:43:19,796 [root] INFO: Stopping auxiliary module: During_script\r\n2023-05-13 17:43:19,796 [root] INFO: Finishing auxiliary modules\r\n2023-05-13 17:43:19,796 [root] INFO: Shutting down pipe server and dumping dropped files\r\n2023-05-13 17:43:19,796 [lib.common.results] INFO: Uploading file C:\\Users\\redacted\\AppData\\Local\\Temp\\pafish.log to files\\65d5d12f7d27f41298fd1a47bafe3fe0221733551b1233bae84593a2ba00902f; Size is 394; Max size: 100000000\r\n2023-05-13 17:43:19,812 [root] WARNING: Folder at path \"C:\\yiplHAu\\debugger\" does not exist, skipping\r\n2023-05-13 17:43:19,812 [root] INFO: Uploading files at path \"C:\\yiplHAu\\tlsdump\"\r\n2023-05-13 17:43:19,812 [lib.common.results] INFO: Uploading file C:\\yiplHAu\\tlsdump\\tlsdump.log to tlsdump\\tlsdump.log; Size is 24660; Max size: 100000000\r\n2023-05-13 17:43:19,812 [root] INFO: Analysis completed\r\n```\r\nI don't see any errors in the cape-web service logs either.\r\n\r\n```text\r\n\u25cf cape-web.service - CAPE WSGI app\r\n     Loaded: loaded (/lib/systemd/system/cape-web.service; enabled; vendor preset: enabled)\r\n     Active: active (running) since Sat 2023-05-13 19:00:16 UTC; 1 day 20h ago\r\n       Docs: https://github.com/kevoreilly/CAPEv2\r\n   Main PID: 17798 (python)\r\n      Tasks: 6 (limit: 76920)\r\n     Memory: 363.9M\r\n        CPU: 1h 49min 40.476s\r\n     CGroup: /system.slice/cape-web.service\r\n             \u251c\u250017798 /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python manage.py runserver_plus 127.0.0.1:8000 -v 3 --traceback --keep-meta-shutdown\r\n             \u2514\u250017847 /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python /opt/CAPEv2/web/manage.py runserver_plus 127.0.0.1:8000 -v 3 --traceback --keep-meta-shutdown\r\n\r\nMay 15 15:06:52 sandbox python3[17847]: 127.0.0.1 - - [15/May/2023 15:06:52] \"GET /analysis/file_nl/screenshot/1/0008/ HTTP/1.1\" 200 -\r\nMay 15 15:06:52 sandbox python3[17847]: 127.0.0.1 - - [15/May/2023 15:06:52] \"GET /analysis/file_nl/screenshot/1/0009/ HTTP/1.1\" 200 -\r\nMay 15 15:06:52 sandbox python3[17847]: 127.0.0.1 - - [15/May/2023 15:06:52] \"GET /analysis/file_nl/screenshot/1/0010/ HTTP/1.1\" 200 -\r\nMay 15 15:06:52 sandbox python3[17847]: 127.0.0.1 - - [15/May/2023 15:06:52] \"GET /analysis/file_nl/screenshot/1/0011/ HTTP/1.1\" 200 -\r\nMay 15 15:06:52 sandbox python3[17847]: 127.0.0.1 - - [15/May/2023 15:06:52] \"GET /static/img/prev.png HTTP/1.1\" 304 -\r\nMay 15 15:06:52 sandbox python3[17847]: 127.0.0.1 - - [15/May/2023 15:06:52] \"GET /static/img/next.png HTTP/1.1\" 304 -\r\nMay 15 15:06:52 sandbox python3[17847]: 127.0.0.1 - - [15/May/2023 15:06:52] \"GET /static/img/loading.gif HTTP/1.1\" 304 -\r\nMay 15 15:06:52 sandbox python3[17847]: 127.0.0.1 - - [15/May/2023 15:06:52] \"GET /static/img/close.png HTTP/1.1\" 304 -\r\nMay 15 15:07:57 sandbox python3[17847]: 127.0.0.1 - - [15/May/2023 15:07:57] \"GET /analysis/load_files/1/behavior/ HTTP/1.1\" 200 -\r\nMay 15 15:07:57 sandbox python3[17847]: 127.0.0.1 - - [15/May/2023 15:07:57] \"GET /analysis/chunk/1/2500/1/ HTTP/1.1\" 200\r\n```\r\n\nComment: you need to read processing logs\nComment: Ah, I forgot there are separate logs for that. For anyone else who is wondering about where to find those logs, they are in the `CAPEV2/logs/` Turns out several dependencies were not installed. I'm not sure why.  Unfortunately ,I no longer have the installation logs, so I don't know what happened.\r\n\r\nThere are the commands I used to install the missing dependencies:\r\n\r\n```bash\r\nsudo -u cape poetry run pip3 install -U https://github.com/CAPESandbox/peepdf/archive/20eda78d7d77fc5b3b652ffc2d8a5b0af796e3dd.zip#egg=peepdf==0.4.2\r\nsudo -u cape poetry run pip3 install -U git+https://github.com/DissectMalware/batch_deobfuscator\r\nsudo -u cape poetry run pip3 install -U volatility3\r\nsudo -u cape poetry run pip3 install -U git+https://github.com/CAPESandbox/httpreplay\r\n```\r\n\r\nAfter running the sample through again, I noticed that another error was occurring. `trid` was failing to run because it was not marked as executable. That was a simple fix.\r\n\r\n```bash\r\nsudo chmod +x /opt/CAPEv2/data/trid/trid\r\n```\r\n\r\nAfter all of that was fixed, most of the analysis UI worked fine. However, I got an error about trid that is also breaking HTML and PDF summary report generation downstream (until I turned trid off in `processing.conf`).\r\n\r\n```text\r\n2023-05-15 18:52:41,921 [Task 2] [lib.cuckoo.common.integrations.file_extra_info] WARNING: You need to configure your server to make TrID work properly\r\n2023-05-15 18:52:41,921 [Task 2] [lib.cuckoo.common.integrations.file_extra_info] WARNING: sudo rm -f /usr/lib/locale/locale-archive && sudo locale-gen --no-archive\r\n2023-05-15 18:52:43,055 [Task 2] [lib.cuckoo.common.integrations.file_extra_info] ERROR: file_extra_info: 'NoneType' object is not iterable\r\n```\r\n\r\nI have no idea what \"You need to configure your server to make TrID work properly\" means, and there isn't any mention of TrID in CAPE's documentation. Any thoughts?\nComment: Your problem is here, see l\u00eden at the end, as that None breaks processing\nof all files. Idk i dont use tris, i only use die\n\n2023-05-15 18:52:43,055 [Task 2]\n[lib.cuckoo.common.integrations.file_extra_info] ERROR: file_extra_info:\n'NoneType' object is not iterable\n\nEl lun, 15 may 2023 21:57, Sean Whalen ***@***.***> escribi\u00f3:\n\n> Ah, I forgot there are separate logs for that. For anyone else who is\n> wondering about where to find those logs, they are in the CAPEV2logs/\n> Turns out several dependencies were not installed. I'm not sure why.\n> Unfortunately ,I no longer have the installation logs, so I don't know what\n> happened.\n>\n> There are the commands I used to install the missing dependencies:\n>\n> sudo -u cape poetry run pip3 install -U https://github.com/CAPESandbox/peepdf/archive/20eda78d7d77fc5b3b652ffc2d8a5b0af796e3dd.zip#egg=peepdf==0.4.2\n> sudo -u cape poetry run pip3 install -U git+https://github.com/DissectMalware/batch_deobfuscator\n> sudo -u cape poetry run pip3 install -U volatility3\n> sudo -u cape poetry run pip3 install -U git+https://github.com/CAPESandbox/httpreplay\n>\n> After running the sample through again, I noticed that another error was\n> occurring. trid was failing to run because it was not marked as\n> executable. That was a simple fix.\n>\n> udo chmod +x /opt/CAPEv2/data/trid/trid\n>\n> After all of that was fixed, most of the analysis UI worked fine. However,\n> I an error about trid that were also breaking HTML and PDF summary report\n> generation downstream (until I turned trid off in processing.conf.\n>\n> 2023-05-15 18:52:41,921 [Task 2] [lib.cuckoo.common.integrations.file_extra_info] WARNING: You need to configure your server to make TrID work properly\n> 2023-05-15 18:52:41,921 [Task 2] [lib.cuckoo.common.integrations.file_extra_info] WARNING: sudo rm -f /usr/lib/locale/locale-archive && sudo locale-gen --no-archive\n> 2023-05-15 18:52:43,055 [Task 2] [lib.cuckoo.common.integrations.file_extra_info] ERROR: file_extra_info: 'NoneType' object is not iterable\n>\n> I have no idea what \"You need to configure your server to make TrID work\n> properly\" means, and there isn't any mention of TrID in CAPE's\n> documentation. Any thoughts?\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1521#issuecomment-1548488177>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3ZDP76WLG7CUMKUGYDXGKDCNANCNFSM6AAAAAAYCL45NM>\n> .\n> You are receiving this because you commented.Message ID:\n> ***@***.***>\n>\n",
+  "Title: Web: Fix Download All function\nBody: \"Download all as zip\" is broken on various sub-pages. The `send_filename` needs to be determined differently if `paths` is a list.\nComment: thanks",
+  "Title: cape2.sh installs the required mongodb service, but does not enable it in reporting.conf\nBody: # Expected Behavior\r\n\r\nAnalysis details should be displayed in the web interface after the analysis is complete. \r\n\r\n# Current Behavior\r\n\r\nAt the end of the processing phase after submitting a file or URL, the analysis page for a submission shows an error message appears that states:\r\n\r\n> ERROR :-( \r\n> The specified analysis does not exist or not finished yet\r\n\r\nBut the VM did start and the sample was executed correctly.\r\n\r\n# Failure Information (for bugs)\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Submit the file or URL for analysis\r\n2. Wait for the analysis to complete\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|-----------------|--------------------\r\n| Git commit      | commit 28cab4dc60ef17bd1598df7046282ca373542ff1\r\n| OS version       | Host: Ubuntu 22.04 LTS VM: Windows 10\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\r\nThe main `cuckoo.log` file states that the analysis completed successfully.\r\n\r\n```text\r\n023-05-13 11:46:09,862 [lib.cuckoo.core.scheduler] INFO: Task #13: Starting analysis of URL 'http://example.com'\r\n2023-05-13 11:46:09,872 [lib.cuckoo.core.scheduler] INFO: Task #13: acquired machine win10 (label=win10, arch=x64, platform=windows)\r\n2023-05-13 11:46:17,266 [lib.cuckoo.core.scheduler] INFO: Enabled route 'internet'.\r\n2023-05-13 11:46:17,270 [modules.auxiliary.sniffer] INFO: Started sniffer with PID 13837 (interface=virbr1, host=REDACTED, dump path=/opt/CAPEv2/storage/analyses/13/dump.pcap)\r\n2023-05-13 11:46:17,286 [lib.cuckoo.core.guest] INFO: Task #13: Starting analysis on guest (id=win10, ip=REDACTED)\r\n2023-05-13 11:46:17,296 [lib.cuckoo.core.guest] INFO: Task #13: Guest is running CAPE Agent 0.11 (id=win10, ip=REDACTED)\r\n2023-05-13 11:46:17,964 [lib.cuckoo.core.guest] INFO: Task #13: Uploading script files to guest (id=win10, ip=REDACTED)\r\n2023-05-13 11:46:45,105 [lib.cuckoo.core.guest] INFO: Task #13: Analysis completed successfully (id=win10, ip=REDACTED)\r\n2023-05-13 11:46:45,756 [lib.cuckoo.core.scheduler] INFO: Disabled route 'internet'\r\n2023-05-13 11:46:45,778 [lib.cuckoo.core.scheduler] INFO: Task #13: analysis procedure completed\r\n\r\n2023-05-13 12:02:11,955 [lib.cuckoo.core.scheduler] INFO: Task #14: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_bngtd730/pafish64.exe'\r\n2023-05-13 12:02:11,966 [lib.cuckoo.core.scheduler] INFO: Task #14: acquired machine win10 (label=win10, arch=x64, platform=windows)\r\n2023-05-13 12:02:18,899 [lib.cuckoo.core.scheduler] INFO: Enabled route 'internet'.\r\n2023-05-13 12:02:18,902 [modules.auxiliary.sniffer] INFO: Started sniffer with PID 14366 (interface=virbr1, host=REDACTED, dump path=/opt/CAPEv2/storage/analyses/14/dump.pcap)\r\n2023-05-13 12:02:18,913 [lib.cuckoo.core.guest] INFO: Task #14: Starting analysis on guest (id=win10, ip=REDACTED)\r\n2023-05-13 12:02:18,923 [lib.cuckoo.core.guest] INFO: Task #14: Guest is running CAPE Agent 0.11 (id=win10, ip=REDACTED)\r\n2023-05-13 12:02:19,609 [lib.cuckoo.core.guest] INFO: Task #14: Uploading script files to guest (id=win10, ip=REDACTED)\r\n2023-05-13 12:05:51,668 [lib.cuckoo.core.guest] INFO: Task #14: Analysis completed successfully (id=win10, ip=REDACTED)\r\n2023-05-13 12:05:52,304 [lib.cuckoo.core.scheduler] INFO: Disabled route 'internet'\r\n2023-05-13 12:05:52,328 [lib.cuckoo.core.scheduler] INFO: Task #14: analysis procedure completed\r\n```\r\n\r\nAll expected files exist in the analysis directory.\r\n\r\n![screenshot of a directory listing](https://github.com/kevoreilly/CAPEv2/assets/44679/26594ec0-fa52-42d1-ad7f-0fcd4659b70d)\r\n\r\nThe file task is listed in the web UI with the status `reported` in the recent files list\r\n\r\n![Screenshot of the results list](https://github.com/kevoreilly/CAPEv2/assets/44679/825e9727-1c3a-445c-a70f-4c1525071f27)\r\n\r\nBut the error appears when trying to actually view the analysis\r\n\r\n![Screenshot of the error message](https://github.com/kevoreilly/CAPEv2/assets/44679/9ce6265c-0a6f-48b3-93d1-cdd85020b183)\r\n\r\nAdding `-v 3` to the `cuckoo-web` service command for very, very verbose output did not return useful information, other than missing image files.\r\n\r\n```text\r\nMay 13 16:50:02 sandbox python3[15329]: Development server is running at http://127.0.0.1:8000/\r\nMay 13 16:50:02 sandbox python3[15329]: Using the Werkzeug debugger (http://werkzeug.pocoo.org/)\r\nMay 13 16:50:02 sandbox python3[15329]: Quit the server with CONTROL-C.\r\nMay 13 16:50:02 sandbox python3[15329]:  * Debugger is active!\r\nMay 13 16:50:02 sandbox python3[15329]:  * Debugger PIN: 101-011-494\r\nMay 13 16:50:17 sandbox python3[15329]: 127.0.0.1 - - [13/May/2023 16:50:17] \"GET /analysis/14/ HTTP/1.1\" 200 -\r\nMay 13 16:50:17 sandbox python3[15329]: 127.0.0.1 - - [13/May/2023 16:50:17] \"GET /analysis/img/next.png HTTP/1.1\" 404 -\r\nMay 13 16:50:17 sandbox python3[15329]: 127.0.0.1 - - [13/May/2023 16:50:17] \"GET /analysis/img/close.png HTTP/1.1\" 404 -\r\nMay 13 16:50:17 sandbox python3[15329]: 127.0.0.1 - - [13/May/2023 16:50:17] \"GET /analysis/img/loading.gif HTTP/1.1\" 404 -\r\nMay 13 16:50:17 sandbox python3[15329]: 127.0.0.1 - - [13/May/2023 16:50:17] \"GET /analysis/img/prev.png HTTP/1.1\" 404 -\r\n```\nComment: Yes we do not force users to enable it if they dont need it, but we install it as We need \nComment: How do we fix this issue ? Even after enabling it in reporting.conf I am getting issues\nComment: did you restart cape-processor service?\nComment: Oh yeah that worked, I was restarting cape-web and cape \ud83e\udd72.\r\n\r\nOn Fri, Jun 9, 2023, 20:27 doomedraven ***@***.***> wrote:\r\n\r\n> did you restart cape-processor service?\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1519#issuecomment-1584721938>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AZXM4ZRFULPZFGCWAJZNCHDXKM2WBANCNFSM6AAAAAAYATEL6M>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n",
+  "Title: Weird API behaviour - Problems and weird responses!\nBody: - [y ] I am running the latest version\r\n- [y ] I did read the README!\r\n- [y ] I checked the documentation and found no answer\r\n- [y ] I checked to make sure that this issue has not already been filed\r\n- [ y] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ y] I have read and checked all configs (with all optional parts)\r\n\r\n# Current Behavior\r\n\r\nUnaible to use the REST API of capesandbox.com with cloudflare worker, its weird and buggy\r\n\r\n# Failure Information (for bugs)\r\n\r\nHello so i want to use the Capev2 OPEN api and i already made me an apikey, i tested on my home and main pc with \"javascript\" and nodejs (fetch and axios) to just search for file reports with the sha256 hash, all worked fine so far. \r\nBut i also tried before requesting the api endpoints with curl, Invoke-WebRequest, postman and more but always got an \"502\" report from cloudflare. \r\n\r\nNow with the nodejs script it worked and i got the reports and good responses, then i noticed that some UserAgents are blocked as it seems, if i set an custom useragent i can request the reports if i use f.ex the postman default useragent its blocked!\r\n\r\nNow i put my code into my cloudflare worker and i always got this error:\r\n\r\nbut what does that mean i cant find anything wrong with my code\r\nthis is my code\r\n\r\n```js\r\nconst options = {\r\n  method: \"POST\",\r\n  headers: {\r\n    'User-Agent': 'CapeSandbox API Client',\r\n    \"Authorization\": `Token ${this.apikey}`,\r\n  },\r\n  body: body: new URLSearchParams({\r\n         'option': 'sha256',\r\n         'argument': sha256hash\r\n   })\r\n};\r\nconsole.log('Request options:', options);\r\nconst response = await fetch(`https://www.capesandbox.com/apiv2/tasks/extendedsearch/`, options);\r\n```\r\n\r\n## Failure Logs\r\n\r\n```json\r\n\"status\": 415,\r\n\"statusText\": \"Unsupported Media Type\",\r\n\"test\": \"{\\\"detail\\\":\\\"Unsupported media type \\\\\\\"text/plain;charset=UTF-8\\\\\\\" in request.\\\"}\"\r\n```\r\n\r\nwhy does that happen?!?!? i want to use the api and upload files i got alot of malware and stuff i want to upload and use the capesandbox etc also get already existing reports. please help me\nComment: Update i managed to get reports by hash, i needed to set a custom ContentType header... but i cant still upload files and it gets the same error back to me, i want to upload exes and it just doesnt work for me dont know.\r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/67499407/dc6375ff-a4dc-4f11-822a-208e453f6f33)\r\n\r\nf.ex an file i want to upload and as you can see its valid!\r\n\r\nmy code i use:\r\n\r\n```ts\r\nconst form = new FormData();\r\nform.append(\"file\", file)\r\nform.append(\"timeout\", \"180\")\r\nform.append('memory', \"true\")\r\nform.append('platform', \"windows\")\r\n\r\nconst response = await fetch('https://www.capesandbox.com/apiv2/tasks/create/file/', {\r\n       method: 'POST',\r\n       headers: {\r\n       'User-Agent': 'NeikiDev API Client',\r\n        \"Authorization\": `Token ${this.apikey}`,\r\n         ...form.getHeaders()\r\n        },\r\n        body: form as any\r\n  })\r\n```\r\nand the \"file\" is type of File so the uploaded file. it all works fine because i upload the file to other stuff and its all perfect just to cape its not working.... \nComment: fixed ... sorry \nComment: Glad you fixed it \ud83d\ude03 ",
+  "Title: Networking documentation needs updated\nBody: As I was setting up an instance of CAPE for the first time in a long time, I noticed a few places where the networking documentation could be improved. Rather than opening up a bunch of small PRs or one big PR, I figured it would be better to document them all in this issue to the project maintainers can look at this advice and adapt it as they see fit.\r\n\r\n## Default configuration of the path to tcpdump is incorrect\r\n\r\nAt least in Ubuntu 22.04 LTS, `tcpdump` is located at `/usr/bin/tcpdump`, not `/usr/sbin/tcpdump`.\r\n\r\n## instructions for \"dirty line\" internet connection are outdated\r\n\r\nThe current [Per-Analysis Network Routing](https://capev2.readthedocs.io/en/latest/installation/host/routing.html) documentation for an internet \"dirty line\" states to add an entry to `/etc/iproute2/rt_tables`. In modern releases of Ubuntu, all network configuration is handled by `netplan`, including routing tables.\r\n\r\nFirst, disable `cloud-init`, which is used by Ubuntu Server by default.\r\n\r\nDo this by writing a file at `/etc/cloud/cloud.cfg.d/99-disable-network-config.cfg`, with the content `{config: disabled}`, then delete `/etc/netplan/50-cloud-init.yaml`.\r\n\r\nIf, for some reason you are using a desktop version of Ubuntu instead, you will need to disable `NetworkManager` and enable `networkd`.\r\n\r\n```text\r\nsudo systemctl stop NetworkManager\r\nsudo systemctl disable NetworkManager\r\nsudo systemctl mask NetworkManager\r\n\r\nsudo systemctl unmask systemd-networkd\r\nsudo systemctl enable systemd-networkd\r\nsudo systemctl start systemd-networkd\r\n```\r\n\r\nNext, create your own `netplan` configuration file manually at `/etc/netplan/99-manual.yaml`\r\n\r\nFor example, here is my `netplan` configuration, which has a 5G hotspot connected via USB as the default gateway, and a management interface for hosting SSH and the CAPE web interface on an isolated VLAN.\r\n\r\n```yaml\r\nnetwork:\r\n    version: 2\r\n    renderer: networkd\r\n    ethernets:\r\n        lo:\r\n            addresses: [ \"127.0.0.1/8\", \"::1/128\", \"7.7.7.7/32\" ]\r\n        enx00a0c6000000:\r\n            dhcp4: no\r\n            addresses: [ \"192.168.1.2/24\" ]\r\n            nameservers:\r\n                addresses: [ \"192.168.1.1\" ]\r\n            routes:\r\n                - to: default\r\n                  via: 192.168.1.1\r\n                - to: 192.168.1.0/24\r\n                  via: 192.168.1.1\r\n                  table: 101\r\n            routing-policy:\r\n             - from: 192.168.1.0/24\r\n               table: 101\r\n        enp8s0:\r\n            dhcp4: no\r\n            addresses: [ \"10.23.6.66/24\" ]\r\n            routes:\r\n                - to: 10.23.6.0/24\r\n                  via: 10.23.6.1\r\n                  table: 102\r\n            routing-policy:\r\n                - from: 10.23.6.0/24\r\n                  table: 102\r\n```\r\n\r\n## Windows DNS server settings are inaccurate or incomplete\r\n\r\nThe screenshot of the Windows IPv4 configuration setting shows the primary DNS server set to the IP address of the host interface. In my testing this does not work when an internet or VPN route is used. A public DNS resolver such as Cloudflare's `1.1.1.1` and `1.0.0.1` or Google's `8.8.8.8` and `4.4.4.4` must be used instead.\r\n\r\nIs there a better way to to this? Having a static IP manually set in Windows and/or DNS manually set to known public resolvers would be a good antisandboxing check for malware.\r\n\r\nLibvirt does support setting a static IP via DHCP in as a `host` XML element, but I don't think there's a way to set custom DNS servers that way. Upstream DNS servers could be added to the configuration of the `libvirt` instance of `dnsmasq`, but that could cause DNS leaks.\r\n\r\n## Updating trusted root certificates\r\n\r\nIdeally, a Windows sandbox VM should be created, activated, and configured without ever connecting to the internet. However, this means that trusted root certificates are not updated, which leads to certificate warnings when trying to access  many HTTPS//TLS servers.\r\n\r\nThe trusted root certificates can be updated manually by exporting the certificates from Windows Update on a non-isolated system and importing them in the sandbox VM.\r\n\r\nExport the certificates.\r\n\r\n```powershell\r\ncertutil.exe \u2013generateSSTFromWU roots.sst\r\n```\r\n\r\nCopy `roots.sst` to the sandbox VM, then import the certificates in PowerShell as Administrator.\r\n\r\n```powershell\r\nImport-Certificate roots.sst -CertStoreLocation Cert:\\LocalMachine\\Root\r\n```\r\n\r\n## Missing documentation on how tlsdump works\r\n\r\nHow does `tcpdump` work? What are its limitations?\r\n\nComment: i would prefer PR for docs instead of issues, it proven that most of the user don't care about issues and never searches in them\nComment: about how tcpdump works, im pretty surprised about that question, you used cuckoo for long time it exactly the same usage\nComment: That last question should have said `tlsdump`, not `tcpdump`.\nComment: also in 22.04 everything works just fine with current documentation. you not required to use netplan. My question are you gonna PR docs or we can close this issue?\nComment: I'll submit a PR\nComment: thanks",
+  "Title: Agenttesla\nBody: None\nComment: Thank you",
+  "Title: Agent not working in win10 guest vm\nBody: The cape sandbox never returns any behavioral analysis result. The malware sample seems not to be executed, and the agent never communicates back any data. \r\n\r\nThe troubleshooting I have tried is listed later.  \r\n\r\nEnvironment:\r\nGuest VM: win10 under KVM hypervisor\r\nHost VM: Ubuntu 22.04.2 LTS (I'm logging into the server using VNCserver)\r\n\r\nCuckoo log:\r\n```\r\n2023-05-12 16:10:37,296 [lib.cuckoo.core.scheduler] INFO: Task #50: Starting analysis of FILE '/tmp/cuckoo-sflock/tmpey536hvw/MiniBase.dll'\r\n2023-05-12 16:10:37,320 [lib.cuckoo.core.scheduler] INFO: Task #50: acquired machine win10 (label=win10, arch=x86, platform=windows)\r\n2023-05-12 16:11:12,368 [lib.cuckoo.core.scheduler] INFO: Enabled route 'none'.\r\n2023-05-12 16:11:12,396 [lib.cuckoo.core.guest] INFO: Task #50: Starting analysis on guest (id=win10, ip=192.168.122.106)\r\n2023-05-12 16:11:12,482 [lib.cuckoo.core.guest] INFO: Task #50: Guest is running CAPE Agent 0.11 (id=win10, ip=192.168.122.106)\r\n2023-05-12 16:11:13,618 [lib.cuckoo.core.guest] INFO: Task #50: Uploading support files to guest (id=win10, ip=192.168.122.106)\r\n2023-05-12 16:11:13,618 [lib.cuckoo.core.guest] INFO: Task #50: Uploading script files to guest (id=win10, ip=192.168.122.106)\r\n2023-05-12 16:15:33,900 [lib.cuckoo.core.guest] INFO: Task #50: End of analysis reached! (id=win10, ip=192.168.122.106)\r\n2023-05-12 16:15:36,231 [lib.cuckoo.core.scheduler] INFO: Task #50: analysis procedure completed\r\n```\r\nIt stucks at `Uploading script files to guest` and never proceeding with the analysis. The malware sample and Cape analysis files have been sent to the VM. I tried to execute the sample manually, but still no analysis result is sent back to the host. Meanwhile, I also noticed localhost:8000 returns `ERR_EMPTY_RESPONSE`. (In the VM's snapshot, this gives back the response, the JSON data.) Via task manager, I can see that the python3 process is still running. \r\n\r\nThe things I have checked & more information:\r\n32-bit Python 3.8 is running the agent. \r\nI am able to ping host from guest, and ping guest from host. \r\nAgent has been set up via task scheduler, and I am able to visit localhost:8000 in the snapshot. \r\nFirewall on the VM is turned off. Virus & threat detection's real-time protection is turned off. \r\n\r\n\r\nI have been stuck on this for several days, any help or hint would be very appreciated \ud83d\ude4f\ud83d\ude4f \ud83d\ude4f\nComment: 122 range is nat range, i guess you need to dig into the bad network configuration, review virtbr1 ip range\nComment: \r\n\r\n\r\n\r\n> 122 range is nat range, i guess you need to dig into the bad network configuration, review virtbr1 ip range\r\n\r\n@doomedraven Thanks for the quick reply! I have tried to change the network to 55 range (host:192.168.55.1, guest:192.168.55.231), but the problem remains the same. \r\nFurthermore, this is the output from the agent in the guest, it sends several GET and POST requests, and then forever loops `GET /status`, which all requests return 200. Is this expected behavior?\r\n\r\n\r\n![IMG_5463](https://github.com/kevoreilly/CAPEv2/assets/55062168/b41d53af-dcf3-4d07-b2cf-d1ff41a61a00)\r\n![IMG_5464](https://github.com/kevoreilly/CAPEv2/assets/55062168/bd1eb12e-9094-4aae-9f1c-619b898e42ce)\r\n\nComment: Yes expected, ok range is fine, but what about network interfaces in kvm.conf and virt-manager/libvirt for that vm? \nComment: Here are the relevant conf files: \r\n\r\n### ifconfig from the host:\r\n\r\n```\r\nvirbr2: flags=4099<UP,BROADCAST,MULTICAST>  mtu 1500\r\n        inet 192.168.55.1  netmask 255.255.255.0  broadcast 192.168.55.255\r\n        ether 52:54:00:1c:11:b5  txqueuelen 1000  (Ethernet)\r\n        RX packets 10293  bytes 1764983 (1.7 MB)\r\n        RX errors 0  dropped 0  overruns 0  frame 0\r\n        TX packets 11604  bytes 125261291 (125.2 MB)\r\n        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0\r\n```\r\n### cuckoo.conf: \r\n\r\n```\r\n[cuckoo]\r\n\r\n# Which category of tasks do you want to analyze?\r\ncategories = static, pcap, url, file\r\n\r\n# If turned on, Cuckoo will delete the original file after its analysis\r\n# has been completed.\r\ndelete_original = off\r\n\r\n# Archives are not deleted by default, as it extracts and \"original file\" become extracted file\r\ndelete_archive = on\r\n\r\n# If turned on, Cuckoo will delete the copy of the original file in the\r\n# local binaries repository after the analysis has finished. (On *nix this\r\n# will also invalidate the file called \"binary\" in each analysis directory,\r\n# as this is a symlink.)\r\ndelete_bin_copy = off\r\n\r\n# Specify the name of the machinery module to use, this module will\r\n# define the interaction between Cuckoo and your virtualization software\r\n# of choice.\r\nmachinery = kvm\r\n\r\n# Enable creation of memory dump of the analysis machine before shutting\r\n# down. Even if turned off, this functionality can also be enabled at\r\n# submission. Currently available for: VirtualBox and libvirt modules (KVM).\r\nmemory_dump = off\r\n\r\n# When the timeout of an analysis is hit, the VM is just killed by default.\r\n# For some long-running setups it might be interesting to terminate the\r\n# moinitored processes before killing the VM so that connections are closed.\r\nterminate_processes = off\r\n\r\n# Enable automatically re-schedule of \"broken\" tasks each startup.\r\n# Each task found in status \"processing\" is re-queued for analysis.\r\nreschedule = off\r\n\r\n# Fail \"unserviceable\" tasks as they are queued.\r\n# Any task found that will never be analyzed based on the available analysis machines\r\n# will have its status set to \"failed\".\r\nfail_unserviceable = on\r\n\r\n# Limit the amount of analysis jobs a Cuckoo process goes through.\r\n# This can be used together with a watchdog to mitigate risk of memory leaks.\r\nmax_analysis_count = 0\r\n\r\n# Limit the number of concurrently executing analysis machines.\r\n# This may be useful on systems with limited resources.\r\n# Set to 0 to disable any limits.\r\nmax_machines_count = 10\r\n\r\n# Limit the amount of VMs that are allowed to start in parallel. Generally\r\n# speaking starting the VMs is one of the more CPU intensive parts of the\r\n# actual analysis. This option tries to avoid maxing out the CPU completely.\r\nmax_vmstartup_count = 5\r\n\r\n# Minimum amount of free space (in MB) available before starting a new task.\r\n# This tries to avoid failing an analysis because the reports can't be written\r\n# due out-of-diskspace errors. Setting this value to 0 disables the check.\r\n# (Note: this feature is currently not supported under Windows.)\r\nfreespace = 50000\r\n# Process tasks, but not reach out of memory\r\nfreespace_processing = 15000\r\n\r\n# Temporary directory containing the files uploaded through Cuckoo interfaces\r\n# (web.py, api.py, Django web interface).\r\ntmppath = /tmp\r\n\r\n# Delta in days from current time to set the guest clocks to for file analyses\r\n# A negative value sets the clock back, a positive value sets it forward.\r\n# The default of 0 disables this option\r\n# Note that this can still be overridden by the per-analysis clock setting\r\n# and it is not performed by default for URL analysis as it will generally\r\n# result in SSL errors\r\ndaydelta = 0\r\n\r\n# Path to the unix socket for running root commands.\r\nrooter = /tmp/cuckoo-rooter\r\n\r\n# Enable if you want to see a DEBUG log periodically containing backlog of pending tasks, locked vs unlocked machines.\r\n# NOTE: Enabling this feature adds 4 database calls every 10 seconds.\r\nperiodic_log = off\r\n\r\n# Max filename length for submissions, before truncation. 196 is arbitrary.\r\nmax_len = 196\r\n\r\n# If it is greater than this, call truncate the filename further for sanitizing purposes.\r\n# Length truncated to is controlled by sanitize_to_len.\r\n#\r\n# This is to prevent long filenames such as files named by hash.\r\nsanitize_len = 32\r\nsanitize_to_len = 24\r\n\r\n[resultserver]\r\n# The Result Server is used to receive in real time the behavioral logs\r\n# produced by the analyzer.\r\n# Specify the IP address of the host. The analysis machines should be able\r\n# to contact the host through such address, so make sure it's valid.\r\n# NOTE: if you set resultserver IP to 0.0.0.0 you have to set the option\r\n# `resultserver_ip` for all your virtual machines in machinery configuration.\r\nip = 192.168.55.1\r\n\r\n# Specify a port number to bind the result server on.\r\nport = 3042\r\n\r\n# Force the port chosen above, don't try another one (we can select another\r\n# port dynamically if we can not bind this one, but that is not an option\r\n# in some setups)\r\nforce_port = yes\r\n\r\npool_size = 0\r\n\r\n# Should the server write the legacy CSV format?\r\n# (if you have any custom processing on those, switch this on)\r\nstore_csvs = off\r\n\r\n# Maximum size of uploaded files from VM (screenshots, dropped files, log)\r\n# The value is expressed in bytes, by default 100MB.\r\nupload_max_size = 100000000\r\n\r\n# To enable trimming of huge binaries go to -> web.conf -> general -> enable_trim\r\n# Prevent upload of files that passes upload_max_size?\r\ndo_upload_max_size = no\r\n\r\n[processing]\r\n# Set the maximum size of analyses generated files to process. This is used\r\n# to avoid the processing of big files which may take a lot of processing\r\n# time. The value is expressed in bytes, by default 200MB.\r\nanalysis_size_limit = 200000000\r\n\r\n# Enable or disable DNS lookups.\r\nresolve_dns = on\r\n\r\n# Enable or disable reverse DNS lookups\r\n# This information currently is not displayed in the web interface\r\nreverse_dns = off\r\n\r\n# Enable PCAP sorting, needed for the connection content view in the web interface.\r\nsort_pcap = on\r\n\r\n[database]\r\n# Specify the database connection string.\r\n# Examples, see documentation for more:\r\n# sqlite:///foo.db\r\n# postgresql://foo:bar@localhost:5432/mydatabase\r\n# mysql://foo:bar@localhost/mydatabase\r\n# If empty, default is a SQLite in db/cuckoo.db.\r\n# SQLite doens't support database upgrades!\r\n# For production we strongly suggest go with PostgreSQL\r\nconnection =\r\n\r\n# Database connection timeout in seconds.\r\n# If empty, default is set to 60 seconds.\r\ntimeout =\r\n\r\n[timeouts]\r\n# Set the default analysis timeout expressed in seconds. This value will be\r\n# used to define after how many seconds the analysis will terminate unless\r\n# otherwise specified at submission.\r\ndefault = 200\r\n\r\n# Set the critical timeout expressed in (relative!) seconds. It will be added\r\n# to the default timeout above and after this timeout is hit\r\n# Cuckoo will consider the analysis failed and it will shutdown the machine\r\n# no matter what. When this happens the analysis results will most likely\r\n# be lost.\r\ncritical = 60\r\n\r\n# Maximum time to wait for virtual machine status change. For example when\r\n# shutting down a vm. Default is 300 seconds.\r\nvm_state = 300\r\n\r\n[tmpfs]\r\n# only if you using volatility to speedup IO\r\n# mkdir -p /mnt/tmpfs\r\n# mount -t tmpfs -o size=50g ramfs /mnt/tmpfs\r\n# chown cape:cape /mnt/tmpfs\r\n#\r\n# vim /etc/fstab\r\n# tmpfs       /mnt/tmpfs tmpfs   nodev,nosuid,noexec,nodiratime,size=50g   0 0\r\n#\r\n# Add crontab with\r\n# @reboot chown cape:cape /mnt/tmpfs -R\r\nenabled = off\r\npath = /mnt/tmpfs/\r\n# in mb\r\nfreespace = 2000\r\n```\r\n\r\n### kvm.conf\r\n\r\n```\r\n[kvm]\r\n# Specify a comma-separated list of available machines to be used. For each\r\n# specified ID you have to define a dedicated section containing the details\r\n# on the respective machine. (E.g. cuckoo1,cuckoo2,cuckoo3)\r\nmachines = win10\r\n\r\ninterface = virbr2\r\n\r\n[win10]\r\n# Specify the label name of the current machine as specified in your\r\n# libvirt configuration.\r\nlabel = win10\r\n\r\n# Specify the operating system platform used by current machine\r\n# [windows/darwin/linux].\r\nplatform = windows\r\n\r\n# Specify the IP address of the current virtual machine. Make sure that the\r\n# IP address is valid and that the host machine is able to reach it. If not,\r\n# the analysis will fail. You may want to configure your network settings in\r\n# /etc/libvirt/<hypervisor>/networks/\r\nip = 192.168.55.231\r\n\r\n# Specify tags to display\r\n# Tags may be used to specify on which guest machines a sample should be run\r\n# NOTE - One of the following OS version tags MUST be included for Windows VMs:\r\n# winxp,win7, win10, win11\r\n# Some samples will only detonate on specific versions of Windows (see web.conf packages for more info)\r\n# Example: MSIX - Windows >= 10\r\n# tags = winxp,acrobat_reader_6\r\n\r\n# (Optional) Specify the snapshot name to use. If you do not specify a snapshot\r\n# name, the KVM MachineManager will use the current snapshot.\r\n# Example (Snapshot1 is the snapshot name):\r\n# snapshot = Snapshot1\r\n\r\n# (Optional) Specify the name of the network interface that should be used\r\n# when dumping network traffic from this machine with tcpdump. If specified,\r\n# overrides the default interface specified in auxiliary.conf\r\n# Example (virbr0 is the interface name):\r\ninterface = virbr2\r\n\r\n# (Optional) Specify the IP of the Result Server, as your virtual machine sees it.\r\n# The Result Server will always bind to the address and port specified in cuckoo.conf,\r\n# however you could set up your virtual network to use NAT/PAT, so you can specify here\r\n# the IP address for the Result Server as your machine sees it. If you don't specify an\r\n# address here, the machine will use the default value from cuckoo.conf.\r\n# NOTE: if you set this option you have to set result server IP to 0.0.0.0 in cuckoo.conf.\r\n# Example:\r\nresultserver_ip = 192.168.55.1\r\n\r\n# (Optional) Specify the port for the Result Server, as your virtual machine sees it.\r\n# The Result Server will always bind to the address and port specified in cuckoo.conf,\r\n# however you could set up your virtual network to use NAT/PAT, so you can specify here\r\n# the port for the Result Server as your machine sees it. If you don't specify a port\r\n# here, the machine will use the default value from cuckoo.conf.\r\n# Example:\r\nresultserver_port = 3042\r\n\r\n# Set the machine architecture\r\n# Required to auto select proper machine architecture for sample\r\n# x64 or x86\r\narch = x86\r\n\r\n# (Optional) Specify whether or not the machine should be reserved, meaning that it will\r\n# only be used for a detonation if specifically requested by its label.\r\n# reserved = no\r\n```\r\n\r\n### routing.conf\r\n\r\n```\r\n[routing]\r\n\r\n# Enable pcap generation for non live connections?\r\n# If you have huge number of VMs, pcap generation can be a bottleneck\r\nenable_pcap = no\r\n\r\n# Default network routing mode; \"none\", \"internet\", or \"vpn_name\".\r\n# In none mode we don't do any special routing - the VM doesn't have any\r\n# network access (this has been the default actually for quite a while).\r\n# In internet mode by default all the VMs will be routed through the network\r\n# interface configured below (the \"dirty line\").\r\n# And in VPN mode by default the VMs will be routed through the VPN identified\r\n# by the given name of the VPN.\r\n# Note that just like enabling VPN configuration setting this option to\r\n# anything other than \"none\" requires one to run utils/rooter.py as root next\r\n# to the CAPE instance (as it's required for setting up the routing).\r\nroute = internet\r\n\r\n# Network interface that allows a VM to connect to the entire internet, the\r\n# \"dirty line\" so to say. Note that, just like with the VPNs, this will allow\r\n# malicious traffic through your network. So think twice before enabling it.\r\n# (For example, to route all VMs through eth0 by default: \"internet = eth0\").\r\ninternet = enp0s31f6\r\n\r\n\r\n# Routing table name/id for \"dirty line\" interface. If \"dirty line\" is\r\n# also default gateway in the system you can leave \"main\" value. Otherwise add\r\n# new routing table by adding \"<id> <name>\" line to /etc/iproute2/rt_tables\r\n# (e.g., \"200 eth0\"). ID and name must be unique across the system (refer to\r\n# /etc/iproute2/rt_tables for existing names and IDs).\r\nrt_table = main\r\n\r\n# When using \"dirty line\", you can reject forwarding to a certain network segment.\r\n# For example, a request targeting 192.168.12.1/24,172.16.22.1/24 will not be\r\n# forwarded, but will be rejected:\r\n# \"reject_segments = 192.168.12.1/24,172.16.22.1/24\"\r\nreject_segments = none\r\n\r\n# When ussing \"dirty line\", you can reject guest access a certain port.\r\n# For example, a request targeting host's port 8000 and 8080 will be rejected:\r\n# \"reject_hostports = 8000,8080\"\r\nreject_hostports = none\r\n\r\n# To route traffic through multiple network interfaces CAPE uses\r\n# Policy Routing with separate routing table for each output interface\r\n# (VPN or \"dirty line\"). If this option is enabled CAPE on start will try\r\n# to automatically initialise routing tables by copying routing entries from\r\n# main routing table to the new routing tables. Depending on your network/vpn\r\n# configuration this might not be sufficient. In such case you would need to\r\n# initialise routing tables manually. Note that enabling this option won't\r\n# affect main routing table.\r\nauto_rt = no\r\n\r\n# The drop route basically drops any outgoing network (except for CAPE\r\n# traffic) whereas the regular none route still allows a VM to access its own\r\n# subnet (e.g., 192.168.122.1/24). It is disabled by default as it does require\r\n# the optional rooter to run (unlike the none route, where literally nothing\r\n# happens). One can either explicitly enable the drop route or if the rooter\r\n# is enabled anyway, it is automatically enabled.\r\ndrop = no\r\n\r\n# Should check if the inteface is up\r\nverify_interface = yes\r\n\r\n[inetsim]\r\n# Inetsim quick deploy, chose your vm manager if is not kvm\r\n# wget https://googledrive.com/host/0B6fULLT_NpxMQ1Rrb1drdW42SkE/remnux-6.0-ova-public.ova\r\n# tar xvf remnux-6.0-ova-public.ova\r\n# qemu-img convert -O qcow2 REMnuxV6-disk1.vmdk remnux.qcow2\r\n\r\nenabled = no\r\nserver = 192.168.1.2\r\ndnsport = 53\r\ninterface = virbr1\r\n# Redirect TCP ports (should we also support UDP?). If specified, this should\r\n# represent whitespace-separated src:dst pairs. E.g., \"80:8080 443:8080\" will\r\n# redirect all 80/443 traffic to 8080 on the specified InetSim host.\r\n# Source port range redirection is also supported. E.g., \"996-2041:80\" will\r\n# redirect all traffic directed at ports between 996 and 2041 inclusive to port 80\r\n# on the specified InetSim host.\r\nports =\r\n\r\n\r\n[tor]\r\nenabled = no\r\ndnsport = 5353\r\nproxyport = 9040\r\ninterface = virbr1\r\n\r\n[vpn]\r\n# By default we disable VPN support as it requires running utils/rooter.py as\r\n# root next to cuckoo.py (which should run as regular user).\r\nenabled = no\r\n\r\n# select one of the configured vpns randomly\r\nrandom_vpn = no\r\n\r\n# Comma-separated list of the available VPNs.\r\nvpns = vpn0\r\n\r\n[vpn0]\r\n# Name of this VPN. The name is represented by the filepath to the\r\n# configuration file, e.g., cuckoo would represent /etc/openvpn/cuckoo.conf\r\n# Note that you can't assign the names \"none\" and \"internet\" as those would\r\n# conflict with the routing section in cuckoo.conf.\r\nname = vpn0\r\n\r\n# The description of this VPN which will be displayed in the web interface.\r\n# Can be used to for example describe the country where this VPN ends up.\r\ndescription = openvpn_tunnel\r\n\r\n# The tun device hardcoded for this VPN. Each VPN *must* be configured to use\r\n# a hardcoded/persistent tun device by explicitly adding the line \"dev tunX\"\r\n# to its configuration (e.g., /etc/openvpn/vpn1.conf) where X in tunX is a\r\n# unique number between 0 and your lucky number of choice.\r\ninterface = tun0\r\n\r\n# Routing table name/id for this VPN. If table name is used it *must* be\r\n# added to /etc/iproute2/rt_tables as \"<id> <name>\" line (e.g., \"201 tun0\").\r\n# ID and name must be unique across the system (refer /etc/iproute2/rt_tables\r\n# for existing names and IDs).\r\nrt_table = tun0\r\n\r\n\r\n[socks5]\r\n# By default we disable socks5 support as it requires running utils/rooter.py as\r\n# root next to cuckoo.py (which should run as regular user).\r\nenabled = no\r\n\r\n# select one of the configured socks5 proxies randomly\r\nrandom_socks5 = no\r\n\r\n# Comma-separated list of the available proxies.\r\nproxies = socks_ch\r\n\r\n[socks_ch]\r\nname = ch_socks\r\ndescription = ch_socks\r\nproxyport = 5008\r\ndnsport = 10053\r\n```\r\n\r\n### The network in virt-manager:\r\n<img width=\"808\" alt=\"Screen Shot 2023-05-12 at 22 16 00\" src=\"https://github.com/kevoreilly/CAPEv2/assets/55062168/31384341-f9e4-4039-8520-41f1dc8f478f\">\r\n\r\n### ipconfig in the guest:\r\n<img width=\"804\" alt=\"Screen Shot 2023-05-12 at 22 17 18\" src=\"https://github.com/kevoreilly/CAPEv2/assets/55062168/2869f8f2-ef7b-4ac6-96cb-13414e8677d5\">\r\n\r\n\nComment: Everything looks correcto to me\n\nEl vie, 12 may 2023 22:22, Cassie Xu ***@***.***> escribi\u00f3:\n\n> Here are the relevant conf files:\n> ifconfig from the host:\n>\n> virbr2: flags=4099<UP,BROADCAST,MULTICAST>  mtu 1500\n>         inet 192.168.55.1  netmask 255.255.255.0  broadcast 192.168.55.255\n>         ether 52:54:00:1c:11:b5  txqueuelen 1000  (Ethernet)\n>         RX packets 10293  bytes 1764983 (1.7 MB)\n>         RX errors 0  dropped 0  overruns 0  frame 0\n>         TX packets 11604  bytes 125261291 (125.2 MB)\n>         TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0\n>\n> cuckoo.conf:\n>\n> [cuckoo]\n>\n> # Which category of tasks do you want to analyze?\n> categories = static, pcap, url, file\n>\n> # If turned on, Cuckoo will delete the original file after its analysis\n> # has been completed.\n> delete_original = off\n>\n> # Archives are not deleted by default, as it extracts and \"original file\" become extracted file\n> delete_archive = on\n>\n> # If turned on, Cuckoo will delete the copy of the original file in the\n> # local binaries repository after the analysis has finished. (On *nix this\n> # will also invalidate the file called \"binary\" in each analysis directory,\n> # as this is a symlink.)\n> delete_bin_copy = off\n>\n> # Specify the name of the machinery module to use, this module will\n> # define the interaction between Cuckoo and your virtualization software\n> # of choice.\n> machinery = kvm\n>\n> # Enable creation of memory dump of the analysis machine before shutting\n> # down. Even if turned off, this functionality can also be enabled at\n> # submission. Currently available for: VirtualBox and libvirt modules (KVM).\n> memory_dump = off\n>\n> # When the timeout of an analysis is hit, the VM is just killed by default.\n> # For some long-running setups it might be interesting to terminate the\n> # moinitored processes before killing the VM so that connections are closed.\n> terminate_processes = off\n>\n> # Enable automatically re-schedule of \"broken\" tasks each startup.\n> # Each task found in status \"processing\" is re-queued for analysis.\n> reschedule = off\n>\n> # Fail \"unserviceable\" tasks as they are queued.\n> # Any task found that will never be analyzed based on the available analysis machines\n> # will have its status set to \"failed\".\n> fail_unserviceable = on\n>\n> # Limit the amount of analysis jobs a Cuckoo process goes through.\n> # This can be used together with a watchdog to mitigate risk of memory leaks.\n> max_analysis_count = 0\n>\n> # Limit the number of concurrently executing analysis machines.\n> # This may be useful on systems with limited resources.\n> # Set to 0 to disable any limits.\n> max_machines_count = 10\n>\n> # Limit the amount of VMs that are allowed to start in parallel. Generally\n> # speaking starting the VMs is one of the more CPU intensive parts of the\n> # actual analysis. This option tries to avoid maxing out the CPU completely.\n> max_vmstartup_count = 5\n>\n> # Minimum amount of free space (in MB) available before starting a new task.\n> # This tries to avoid failing an analysis because the reports can't be written\n> # due out-of-diskspace errors. Setting this value to 0 disables the check.\n> # (Note: this feature is currently not supported under Windows.)\n> freespace = 50000\n> # Process tasks, but not reach out of memory\n> freespace_processing = 15000\n>\n> # Temporary directory containing the files uploaded through Cuckoo interfaces\n> # (web.py, api.py, Django web interface).\n> tmppath = /tmp\n>\n> # Delta in days from current time to set the guest clocks to for file analyses\n> # A negative value sets the clock back, a positive value sets it forward.\n> # The default of 0 disables this option\n> # Note that this can still be overridden by the per-analysis clock setting\n> # and it is not performed by default for URL analysis as it will generally\n> # result in SSL errors\n> daydelta = 0\n>\n> # Path to the unix socket for running root commands.\n> rooter = /tmp/cuckoo-rooter\n>\n> # Enable if you want to see a DEBUG log periodically containing backlog of pending tasks, locked vs unlocked machines.\n> # NOTE: Enabling this feature adds 4 database calls every 10 seconds.\n> periodic_log = off\n>\n> # Max filename length for submissions, before truncation. 196 is arbitrary.\n> max_len = 196\n>\n> # If it is greater than this, call truncate the filename further for sanitizing purposes.\n> # Length truncated to is controlled by sanitize_to_len.\n> #\n> # This is to prevent long filenames such as files named by hash.\n> sanitize_len = 32\n> sanitize_to_len = 24\n>\n> [resultserver]\n> # The Result Server is used to receive in real time the behavioral logs\n> # produced by the analyzer.\n> # Specify the IP address of the host. The analysis machines should be able\n> # to contact the host through such address, so make sure it's valid.\n> # NOTE: if you set resultserver IP to 0.0.0.0 you have to set the option\n> # `resultserver_ip` for all your virtual machines in machinery configuration.\n> ip = 192.168.55.1\n>\n> # Specify a port number to bind the result server on.\n> port = 3042\n>\n> # Force the port chosen above, don't try another one (we can select another\n> # port dynamically if we can not bind this one, but that is not an option\n> # in some setups)\n> force_port = yes\n>\n> pool_size = 0\n>\n> # Should the server write the legacy CSV format?\n> # (if you have any custom processing on those, switch this on)\n> store_csvs = off\n>\n> # Maximum size of uploaded files from VM (screenshots, dropped files, log)\n> # The value is expressed in bytes, by default 100MB.\n> upload_max_size = 100000000\n>\n> # To enable trimming of huge binaries go to -> web.conf -> general -> enable_trim\n> # Prevent upload of files that passes upload_max_size?\n> do_upload_max_size = no\n>\n> [processing]\n> # Set the maximum size of analyses generated files to process. This is used\n> # to avoid the processing of big files which may take a lot of processing\n> # time. The value is expressed in bytes, by default 200MB.\n> analysis_size_limit = 200000000\n>\n> # Enable or disable DNS lookups.\n> resolve_dns = on\n>\n> # Enable or disable reverse DNS lookups\n> # This information currently is not displayed in the web interface\n> reverse_dns = off\n>\n> # Enable PCAP sorting, needed for the connection content view in the web interface.\n> sort_pcap = on\n>\n> [database]\n> # Specify the database connection string.\n> # Examples, see documentation for more:\n> # sqlite:///foo.db\n> # ***@***.***:5432/mydatabase\n> # ***@***.***/mydatabase\n> # If empty, default is a SQLite in db/cuckoo.db.\n> # SQLite doens't support database upgrades!\n> # For production we strongly suggest go with PostgreSQL\n> connection =\n>\n> # Database connection timeout in seconds.\n> # If empty, default is set to 60 seconds.\n> timeout =\n>\n> [timeouts]\n> # Set the default analysis timeout expressed in seconds. This value will be\n> # used to define after how many seconds the analysis will terminate unless\n> # otherwise specified at submission.\n> default = 200\n>\n> # Set the critical timeout expressed in (relative!) seconds. It will be added\n> # to the default timeout above and after this timeout is hit\n> # Cuckoo will consider the analysis failed and it will shutdown the machine\n> # no matter what. When this happens the analysis results will most likely\n> # be lost.\n> critical = 60\n>\n> # Maximum time to wait for virtual machine status change. For example when\n> # shutting down a vm. Default is 300 seconds.\n> vm_state = 300\n>\n> [tmpfs]\n> # only if you using volatility to speedup IO\n> # mkdir -p /mnt/tmpfs\n> # mount -t tmpfs -o size=50g ramfs /mnt/tmpfs\n> # chown cape:cape /mnt/tmpfs\n> #\n> # vim /etc/fstab\n> # tmpfs       /mnt/tmpfs tmpfs   nodev,nosuid,noexec,nodiratime,size=50g   0 0\n> #\n> # Add crontab with\n> # @reboot chown cape:cape /mnt/tmpfs -R\n> enabled = off\n> path = /mnt/tmpfs/\n> # in mb\n> freespace = 2000\n>\n> kvm.conf\n>\n> [kvm]\n> # Specify a comma-separated list of available machines to be used. For each\n> # specified ID you have to define a dedicated section containing the details\n> # on the respective machine. (E.g. cuckoo1,cuckoo2,cuckoo3)\n> machines = win10\n>\n> interface = virbr2\n>\n> [win10]\n> # Specify the label name of the current machine as specified in your\n> # libvirt configuration.\n> label = win10\n>\n> # Specify the operating system platform used by current machine\n> # [windows/darwin/linux].\n> platform = windows\n>\n> # Specify the IP address of the current virtual machine. Make sure that the\n> # IP address is valid and that the host machine is able to reach it. If not,\n> # the analysis will fail. You may want to configure your network settings in\n> # /etc/libvirt/<hypervisor>/networks/\n> ip = 192.168.55.231\n>\n> # Specify tags to display\n> # Tags may be used to specify on which guest machines a sample should be run\n> # NOTE - One of the following OS version tags MUST be included for Windows VMs:\n> # winxp,win7, win10, win11\n> # Some samples will only detonate on specific versions of Windows (see web.conf packages for more info)\n> # Example: MSIX - Windows >= 10\n> # tags = winxp,acrobat_reader_6\n>\n> # (Optional) Specify the snapshot name to use. If you do not specify a snapshot\n> # name, the KVM MachineManager will use the current snapshot.\n> # Example (Snapshot1 is the snapshot name):\n> # snapshot = Snapshot1\n>\n> # (Optional) Specify the name of the network interface that should be used\n> # when dumping network traffic from this machine with tcpdump. If specified,\n> # overrides the default interface specified in auxiliary.conf\n> # Example (virbr0 is the interface name):\n> interface = virbr2\n>\n> # (Optional) Specify the IP of the Result Server, as your virtual machine sees it.\n> # The Result Server will always bind to the address and port specified in cuckoo.conf,\n> # however you could set up your virtual network to use NAT/PAT, so you can specify here\n> # the IP address for the Result Server as your machine sees it. If you don't specify an\n> # address here, the machine will use the default value from cuckoo.conf.\n> # NOTE: if you set this option you have to set result server IP to 0.0.0.0 in cuckoo.conf.\n> # Example:\n> resultserver_ip = 192.168.55.1\n>\n> # (Optional) Specify the port for the Result Server, as your virtual machine sees it.\n> # The Result Server will always bind to the address and port specified in cuckoo.conf,\n> # however you could set up your virtual network to use NAT/PAT, so you can specify here\n> # the port for the Result Server as your machine sees it. If you don't specify a port\n> # here, the machine will use the default value from cuckoo.conf.\n> # Example:\n> resultserver_port = 3042\n>\n> # Set the machine architecture\n> # Required to auto select proper machine architecture for sample\n> # x64 or x86\n> arch = x86\n>\n> # (Optional) Specify whether or not the machine should be reserved, meaning that it will\n> # only be used for a detonation if specifically requested by its label.\n> # reserved = no\n>\n> routing.conf\n>\n> [routing]\n>\n> # Enable pcap generation for non live connections?\n> # If you have huge number of VMs, pcap generation can be a bottleneck\n> enable_pcap = no\n>\n> # Default network routing mode; \"none\", \"internet\", or \"vpn_name\".\n> # In none mode we don't do any special routing - the VM doesn't have any\n> # network access (this has been the default actually for quite a while).\n> # In internet mode by default all the VMs will be routed through the network\n> # interface configured below (the \"dirty line\").\n> # And in VPN mode by default the VMs will be routed through the VPN identified\n> # by the given name of the VPN.\n> # Note that just like enabling VPN configuration setting this option to\n> # anything other than \"none\" requires one to run utils/rooter.py as root next\n> # to the CAPE instance (as it's required for setting up the routing).\n> route = internet\n>\n> # Network interface that allows a VM to connect to the entire internet, the\n> # \"dirty line\" so to say. Note that, just like with the VPNs, this will allow\n> # malicious traffic through your network. So think twice before enabling it.\n> # (For example, to route all VMs through eth0 by default: \"internet = eth0\").\n> internet = enp0s31f6\n>\n>\n> # Routing table name/id for \"dirty line\" interface. If \"dirty line\" is\n> # also default gateway in the system you can leave \"main\" value. Otherwise add\n> # new routing table by adding \"<id> <name>\" line to /etc/iproute2/rt_tables\n> # (e.g., \"200 eth0\"). ID and name must be unique across the system (refer to\n> # /etc/iproute2/rt_tables for existing names and IDs).\n> rt_table = main\n>\n> # When using \"dirty line\", you can reject forwarding to a certain network segment.\n> # For example, a request targeting 192.168.12.1/24,172.16.22.1/24 will not be\n> # forwarded, but will be rejected:\n> # \"reject_segments = 192.168.12.1/24,172.16.22.1/24\"\n> reject_segments = none\n>\n> # When ussing \"dirty line\", you can reject guest access a certain port.\n> # For example, a request targeting host's port 8000 and 8080 will be rejected:\n> # \"reject_hostports = 8000,8080\"\n> reject_hostports = none\n>\n> # To route traffic through multiple network interfaces CAPE uses\n> # Policy Routing with separate routing table for each output interface\n> # (VPN or \"dirty line\"). If this option is enabled CAPE on start will try\n> # to automatically initialise routing tables by copying routing entries from\n> # main routing table to the new routing tables. Depending on your network/vpn\n> # configuration this might not be sufficient. In such case you would need to\n> # initialise routing tables manually. Note that enabling this option won't\n> # affect main routing table.\n> auto_rt = no\n>\n> # The drop route basically drops any outgoing network (except for CAPE\n> # traffic) whereas the regular none route still allows a VM to access its own\n> # subnet (e.g., 192.168.122.1/24). It is disabled by default as it does require\n> # the optional rooter to run (unlike the none route, where literally nothing\n> # happens). One can either explicitly enable the drop route or if the rooter\n> # is enabled anyway, it is automatically enabled.\n> drop = no\n>\n> # Should check if the inteface is up\n> verify_interface = yes\n>\n> [inetsim]\n> # Inetsim quick deploy, chose your vm manager if is not kvm\n> # wget https://googledrive.com/host/0B6fULLT_NpxMQ1Rrb1drdW42SkE/remnux-6.0-ova-public.ova\n> # tar xvf remnux-6.0-ova-public.ova\n> # qemu-img convert -O qcow2 REMnuxV6-disk1.vmdk remnux.qcow2\n>\n> enabled = no\n> server = 192.168.1.2\n> dnsport = 53\n> interface = virbr1\n> # Redirect TCP ports (should we also support UDP?). If specified, this should\n> # represent whitespace-separated src:dst pairs. E.g., \"80:8080 443:8080\" will\n> # redirect all 80/443 traffic to 8080 on the specified InetSim host.\n> # Source port range redirection is also supported. E.g., \"996-2041:80\" will\n> # redirect all traffic directed at ports between 996 and 2041 inclusive to port 80\n> # on the specified InetSim host.\n> ports =\n>\n>\n> [tor]\n> enabled = no\n> dnsport = 5353\n> proxyport = 9040\n> interface = virbr1\n>\n> [vpn]\n> # By default we disable VPN support as it requires running utils/rooter.py as\n> # root next to cuckoo.py (which should run as regular user).\n> enabled = no\n>\n> # select one of the configured vpns randomly\n> random_vpn = no\n>\n> # Comma-separated list of the available VPNs.\n> vpns = vpn0\n>\n> [vpn0]\n> # Name of this VPN. The name is represented by the filepath to the\n> # configuration file, e.g., cuckoo would represent /etc/openvpn/cuckoo.conf\n> # Note that you can't assign the names \"none\" and \"internet\" as those would\n> # conflict with the routing section in cuckoo.conf.\n> name = vpn0\n>\n> # The description of this VPN which will be displayed in the web interface.\n> # Can be used to for example describe the country where this VPN ends up.\n> description = openvpn_tunnel\n>\n> # The tun device hardcoded for this VPN. Each VPN *must* be configured to use\n> # a hardcoded/persistent tun device by explicitly adding the line \"dev tunX\"\n> # to its configuration (e.g., /etc/openvpn/vpn1.conf) where X in tunX is a\n> # unique number between 0 and your lucky number of choice.\n> interface = tun0\n>\n> # Routing table name/id for this VPN. If table name is used it *must* be\n> # added to /etc/iproute2/rt_tables as \"<id> <name>\" line (e.g., \"201 tun0\").\n> # ID and name must be unique across the system (refer /etc/iproute2/rt_tables\n> # for existing names and IDs).\n> rt_table = tun0\n>\n>\n> [socks5]\n> # By default we disable socks5 support as it requires running utils/rooter.py as\n> # root next to cuckoo.py (which should run as regular user).\n> enabled = no\n>\n> # select one of the configured socks5 proxies randomly\n> random_socks5 = no\n>\n> # Comma-separated list of the available proxies.\n> proxies = socks_ch\n>\n> [socks_ch]\n> name = ch_socks\n> description = ch_socks\n> proxyport = 5008\n> dnsport = 10053\n>\n> The network in virt-manager: [image: Screen Shot 2023-05-12 at 22 16 00]\n> <https://user-images.githubusercontent.com/55062168/238071215-31384341-f9e4-4039-8520-41f1dc8f478f.png> ipconfig\n> in the guest: [image: Screen Shot 2023-05-12 at 22 17 18]\n> <https://user-images.githubusercontent.com/55062168/238071282-2869f8f2-ef7b-4ac6-96cb-13414e8677d5.png>\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1515#issuecomment-1546249765>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH32MZIDKCGJNWKOF47DXF2LZZANCNFSM6AAAAAAX7Y7WKI>\n> .\n> You are receiving this because you were mentioned.Message ID:\n> ***@***.***>\n>\n\nComment: > Everything looks correcto to me\r\n\r\n@doomedraven Do you have any more suggestions about why this is happening and where I should check? This really has been costing me a significant amount of time :(\nComment: Not real y, im from phone and is almost midnight here. Maybe someone el se\ngonna check the issue\n\nEl vie, 12 may 2023 22:40, Cassie Xu ***@***.***> escribi\u00f3:\n\n> Everything looks correcto to me El vie, 12 may 2023 22:22, Cassie Xu *@*.\n>\n> *> escribi\u00f3: \u2026 <#m_6677696466823429644_> Here are the relevant conf files:\n> ifconfig from the host: virbr2: flags=4099<UP,BROADCAST,MULTICAST> mtu 1500\n> inet 192.168.55.1 netmask 255.255.255.0 broadcast 192.168.55.255 ether\n> 52:54:00:1c:11:b5 txqueuelen 1000 (Ethernet) RX packets 10293 bytes 1764983\n> (1.7 MB) RX errors 0 dropped 0 overruns 0 frame 0 TX packets 11604 bytes\n> 125261291 (125.2 MB) TX errors 0 dropped 0 overruns 0 carrier 0 collisions\n> 0 cuckoo.conf: [cuckoo] # Which category of tasks do you want to analyze?\n> categories = static, pcap, url, file # If turned on, Cuckoo will delete the\n> original file after its analysis # has been completed. delete_original =\n> off # Archives are not deleted by default, as it extracts and \"original\n> file\" become extracted file delete_archive = on # If turned on, Cuckoo will\n> delete the copy of the original file in the # local binaries repository\n> after the analysis has finished. (On nix this # will also invalidate the\n> file called \"binary\" in each analysis directory, # as this is a symlink.)\n> delete_bin_copy = off # Specify the name of the machinery module to use,\n> this module will # define the interaction between Cuckoo and your\n> virtualization software # of choice. machinery = kvm # Enable creation of\n> memory dump of the analysis machine before shutting # down. Even if turned\n> off, this functionality can also be enabled at # submission. Currently\n> available for: VirtualBox and libvirt modules (KVM). memory_dump = off #\n> When the timeout of an analysis is hit, the VM is just killed by default. #\n> For some long-running setups it might be interesting to terminate the #\n> moinitored processes before killing the VM so that connections are closed.\n> terminate_processes = off # Enable automatically re-schedule of \"broken\"\n> tasks each startup. # Each task found in status \"processing\" is re-queued\n> for analysis. reschedule = off # Fail \"unserviceable\" tasks as they are\n> queued. # Any task found that will never be analyzed based on the available\n> analysis machines # will have its status set to \"failed\".\n> fail_unserviceable = on # Limit the amount of analysis jobs a Cuckoo\n> process goes through. # This can be used together with a watchdog to\n> mitigate risk of memory leaks. max_analysis_count = 0 # Limit the number of\n> concurrently executing analysis machines. # This may be useful on systems\n> with limited resources. # Set to 0 to disable any limits.\n> max_machines_count = 10 # Limit the amount of VMs that are allowed to start\n> in parallel. Generally # speaking starting the VMs is one of the more CPU\n> intensive parts of the # actual analysis. This option tries to avoid maxing\n> out the CPU completely. max_vmstartup_count = 5 # Minimum amount of free\n> space (in MB) available before starting a new task. # This tries to avoid\n> failing an analysis because the reports can't be written # due\n> out-of-diskspace errors. Setting this value to 0 disables the check. #\n> (Note: this feature is currently not supported under Windows.) freespace =\n> 50000 # Process tasks, but not reach out of memory freespace_processing =\n> 15000 # Temporary directory containing the files uploaded through Cuckoo\n> interfaces # (web.py, api.py, Django web interface). tmppath = /tmp # Delta\n> in days from current time to set the guest clocks to for file analyses # A\n> negative value sets the clock back, a positive value sets it forward. # The\n> default of 0 disables this option # Note that this can still be overridden\n> by the per-analysis clock setting # and it is not performed by default for\n> URL analysis as it will generally # result in SSL errors daydelta = 0 #\n> Path to the unix socket for running root commands. rooter =\n> /tmp/cuckoo-rooter # Enable if you want to see a DEBUG log periodically\n> containing backlog of pending tasks, locked vs unlocked machines. # NOTE:\n> Enabling this feature adds 4 database calls every 10 seconds. periodic_log\n> = off # Max filename length for submissions, before truncation. 196 is\n> arbitrary. max_len = 196 # If it is greater than this, call truncate the\n> filename further for sanitizing purposes. # Length truncated to is\n> controlled by sanitize_to_len. # # This is to prevent long filenames such\n> as files named by hash. sanitize_len = 32 sanitize_to_len = 24\n> [resultserver] # The Result Server is used to receive in real time the\n> behavioral logs # produced by the analyzer. # Specify the IP address of the\n> host. The analysis machines should be able # to contact the host through\n> such address, so make sure it's valid. # NOTE: if you set resultserver IP\n> to 0.0.0.0 you have to set the option # resultserver_ip for all your\n> virtual machines in machinery configuration. ip = 192.168.55.1 # Specify a\n> port number to bind the result server on. port = 3042 # Force the port\n> chosen above, don't try another one (we can select another # port\n> dynamically if we can not bind this one, but that is not an option # in\n> some setups) force_port = yes pool_size = 0 # Should the server write the\n> legacy CSV format? # (if you have any custom processing on those, switch\n> this on) store_csvs = off # Maximum size of uploaded files from VM\n> (screenshots, dropped files, log) # The value is expressed in bytes, by\n> default 100MB. upload_max_size = 100000000 # To enable trimming of huge\n> binaries go to -> web.conf -> general -> enable_trim # Prevent upload of\n> files that passes upload_max_size? do_upload_max_size = no [processing] #\n> Set the maximum size of analyses generated files to process. This is used #\n> to avoid the processing of big files which may take a lot of processing #\n> time. The value is expressed in bytes, by default 200MB.\n> analysis_size_limit = 200000000 # Enable or disable DNS lookups.\n> resolve_dns = on # Enable or disable reverse DNS lookups # This information\n> currently is not displayed in the web interface reverse_dns = off # Enable\n> PCAP sorting, needed for the connection content view in the web interface.\n> sort_pcap = on [database] # Specify the database connection string. #\n> Examples, see documentation for more: # sqlite:///foo.db #\n> @.:5432/mydatabase # @.**/mydatabase # If empty, default is a SQLite in\n> db/cuckoo.db. # SQLite doens't support database upgrades! # For production\n> we strongly suggest go with PostgreSQL connection = # Database connection\n> timeout in seconds. # If empty, default is set to 60 seconds. timeout =\n> [timeouts] # Set the default analysis timeout expressed in seconds. This\n> value will be # used to define after how many seconds the analysis will\n> terminate unless # otherwise specified at submission. default = 200 # Set\n> the critical timeout expressed in (relative!) seconds. It will be added #\n> to the default timeout above and after this timeout is hit # Cuckoo will\n> consider the analysis failed and it will shutdown the machine # no matter\n> what. When this happens the analysis results will most likely # be lost.\n> critical = 60 # Maximum time to wait for virtual machine status change. For\n> example when # shutting down a vm. Default is 300 seconds. vm_state = 300\n> [tmpfs] # only if you using volatility to speedup IO # mkdir -p /mnt/tmpfs\n> # mount -t tmpfs -o size=50g ramfs /mnt/tmpfs # chown cape:cape /mnt/tmpfs\n> # # vim /etc/fstab # tmpfs /mnt/tmpfs tmpfs\n> nodev,nosuid,noexec,nodiratime,size=50g 0 0 # # Add crontab with # @reboot\n> <https://github.com/reboot> chown cape:cape /mnt/tmpfs -R enabled = off\n> path = /mnt/tmpfs/ # in mb freespace = 2000 kvm.conf [kvm] # Specify a\n> comma-separated list of available machines to be used. For each # specified\n> ID you have to define a dedicated section containing the details # on the\n> respective machine. (E.g. cuckoo1,cuckoo2,cuckoo3) machines = win10\n> interface = virbr2 [win10] # Specify the label name of the current machine\n> as specified in your # libvirt configuration. label = win10 # Specify the\n> operating system platform used by current machine # [windows/darwin/linux].\n> platform = windows # Specify the IP address of the current virtual machine.\n> Make sure that the # IP address is valid and that the host machine is able\n> to reach it. If not, # the analysis will fail. You may want to configure\n> your network settings in # /etc/libvirt//networks/ ip = 192.168.55.231 #\n> Specify tags to display # Tags may be used to specify on which guest\n> machines a sample should be run # NOTE - One of the following OS version\n> tags MUST be included for Windows VMs: # winxp,win7, win10, win11 # Some\n> samples will only detonate on specific versions of Windows (see web.conf\n> packages for more info) # Example: MSIX - Windows >= 10 # tags =\n> winxp,acrobat_reader_6 # (Optional) Specify the snapshot name to use. If\n> you do not specify a snapshot # name, the KVM MachineManager will use the\n> current snapshot. # Example (Snapshot1 is the snapshot name): # snapshot =\n> Snapshot1 # (Optional) Specify the name of the network interface that\n> should be used # when dumping network traffic from this machine with\n> tcpdump. If specified, # overrides the default interface specified in\n> auxiliary.conf # Example (virbr0 is the interface name): interface = virbr2\n> # (Optional) Specify the IP of the Result Server, as your virtual machine\n> sees it. # The Result Server will always bind to the address and port\n> specified in cuckoo.conf, # however you could set up your virtual network\n> to use NAT/PAT, so you can specify here # the IP address for the Result\n> Server as your machine sees it. If you don't specify an # address here, the\n> machine will use the default value from cuckoo.conf. # NOTE: if you set\n> this option you have to set result server IP to 0.0.0.0 in cuckoo.conf. #\n> Example: resultserver_ip = 192.168.55.1 # (Optional) Specify the port for\n> the Result Server, as your virtual machine sees it. # The Result Server\n> will always bind to the address and port specified in cuckoo.conf, #\n> however you could set up your virtual network to use NAT/PAT, so you can\n> specify here # the port for the Result Server as your machine sees it. If\n> you don't specify a port # here, the machine will use the default value\n> from cuckoo.conf. # Example: resultserver_port = 3042 # Set the machine\n> architecture # Required to auto select proper machine architecture for\n> sample # x64 or x86 arch = x86 # (Optional) Specify whether or not the\n> machine should be reserved, meaning that it will # only be used for a\n> detonation if specifically requested by its label. # reserved = no\n> routing.conf [routing] # Enable pcap generation for non live connections? #\n> If you have huge number of VMs, pcap generation can be a bottleneck\n> enable_pcap = no # Default network routing mode; \"none\", \"internet\", or\n> \"vpn_name\". # In none mode we don't do any special routing - the VM doesn't\n> have any # network access (this has been the default actually for quite a\n> while). # In internet mode by default all the VMs will be routed through\n> the network # interface configured below (the \"dirty line\"). # And in VPN\n> mode by default the VMs will be routed through the VPN identified # by the\n> given name of the VPN. # Note that just like enabling VPN configuration\n> setting this option to # anything other than \"none\" requires one to run\n> utils/rooter.py as root next # to the CAPE instance (as it's required for\n> setting up the routing). route = internet # Network interface that allows a\n> VM to connect to the entire internet, the # \"dirty line\" so to say. Note\n> that, just like with the VPNs, this will allow # malicious traffic through\n> your network. So think twice before enabling it. # (For example, to route\n> all VMs through eth0 by default: \"internet = eth0\"). internet = enp0s31f6 #\n> Routing table name/id for \"dirty line\" interface. If \"dirty line\" is # also\n> default gateway in the system you can leave \"main\" value. Otherwise add #\n> new routing table by adding \" \" line to /etc/iproute2/rt_tables # (e.g.,\n> \"200 eth0\"). ID and name must be unique across the system (refer to #\n> /etc/iproute2/rt_tables for existing names and IDs). rt_table = main # When\n> using \"dirty line\", you can reject forwarding to a certain network segment.\n> # For example, a request targeting 192.168.12.1/24,172.16.22.1/24\n> <http://192.168.12.1/24,172.16.22.1/24> will not be # forwarded, but will\n> be rejected: # \"reject_segments = 192.168.12.1/24,172.16.22.1/24\n> <http://192.168.12.1/24,172.16.22.1/24>\" reject_segments = none # When\n> ussing \"dirty line\", you can reject guest access a certain port. # For\n> example, a request targeting host's port 8000 and 8080 will be rejected: #\n> \"reject_hostports = 8000,8080\" reject_hostports = none # To route traffic\n> through multiple network interfaces CAPE uses # Policy Routing with\n> separate routing table for each output interface # (VPN or \"dirty line\").\n> If this option is enabled CAPE on start will try # to automatically\n> initialise routing tables by copying routing entries from # main routing\n> table to the new routing tables. Depending on your network/vpn #\n> configuration this might not be sufficient. In such case you would need to\n> # initialise routing tables manually. Note that enabling this option won't\n> # affect main routing table. auto_rt = no # The drop route basically drops\n> any outgoing network (except for CAPE # traffic) whereas the regular none\n> route still allows a VM to access its own # subnet (e.g., 192.168.122.1/24\n> <http://192.168.122.1/24>). It is disabled by default as it does require #\n> the optional rooter to run (unlike the none route, where literally nothing\n> # happens). One can either explicitly enable the drop route or if the\n> rooter # is enabled anyway, it is automatically enabled. drop = no # Should\n> check if the inteface is up verify_interface = yes [inetsim] # Inetsim\n> quick deploy, chose your vm manager if is not kvm # wget\n> https://googledrive.com/host/0B6fULLT_NpxMQ1Rrb1drdW42SkE/remnux-6.0-ova-public.ova\n> <https://googledrive.com/host/0B6fULLT_NpxMQ1Rrb1drdW42SkE/remnux-6.0-ova-public.ova>\n> # tar xvf remnux-6.0-ova-public.ova # qemu-img convert -O qcow2\n> REMnuxV6-disk1.vmdk remnux.qcow2 enabled = no server = 192.168.1.2 dnsport\n> = 53 interface = virbr1 # Redirect TCP ports (should we also support UDP?).\n> If specified, this should # represent whitespace-separated src:dst pairs.\n> E.g., \"80:8080 443:8080\" will # redirect all 80/443 traffic to 8080 on the\n> specified InetSim host. # Source port range redirection is also supported.\n> E.g., \"996-2041:80\" will # redirect all traffic directed at ports between\n> 996 and 2041 inclusive to port 80 # on the specified InetSim host. ports =\n> [tor] enabled = no dnsport = 5353 proxyport = 9040 interface = virbr1 [vpn]\n> # By default we disable VPN support as it requires running utils/rooter.py\n> as # root next to cuckoo.py (which should run as regular user). enabled =\n> no # select one of the configured vpns randomly random_vpn = no #\n> Comma-separated list of the available VPNs. vpns = vpn0 [vpn0] # Name of\n> this VPN. The name is represented by the filepath to the # configuration\n> file, e.g., cuckoo would represent /etc/openvpn/cuckoo.conf # Note that you\n> can't assign the names \"none\" and \"internet\" as those would # conflict with\n> the routing section in cuckoo.conf. name = vpn0 # The description of this\n> VPN which will be displayed in the web interface. # Can be used to for\n> example describe the country where this VPN ends up. description =\n> openvpn_tunnel # The tun device hardcoded for this VPN. Each VPN must be\n> configured to use # a hardcoded/persistent tun device by explicitly adding\n> the line \"dev tunX\" # to its configuration (e.g., /etc/openvpn/vpn1.conf)\n> where X in tunX is a # unique number between 0 and your lucky number of\n> choice. interface = tun0 # Routing table name/id for this VPN. If table\n> name is used it must be # added to /etc/iproute2/rt_tables as \" \" line\n> (e.g., \"201 tun0\"). # ID and name must be unique across the system (refer\n> /etc/iproute2/rt_tables # for existing names and IDs). rt_table = tun0\n> [socks5] # By default we disable socks5 support as it requires running\n> utils/rooter.py as # root next to cuckoo.py (which should run as regular\n> user). enabled = no # select one of the configured socks5 proxies randomly\n> random_socks5 = no # Comma-separated list of the available proxies. proxies\n> = socks_ch [socks_ch] name = ch_socks description = ch_socks proxyport =\n> 5008 dnsport = 10053 The network in virt-manager: [image: Screen Shot\n> 2023-05-12 at 22 16 00]\n> https://user-images.githubusercontent.com/55062168/238071215-31384341-f9e4-4039-8520-41f1dc8f478f.png\n> <https://user-images.githubusercontent.com/55062168/238071215-31384341-f9e4-4039-8520-41f1dc8f478f.png>\n> ipconfig in the guest: [image: Screen Shot 2023-05-12 at 22 17 18]\n> https://user-images.githubusercontent.com/55062168/238071282-2869f8f2-ef7b-4ac6-96cb-13414e8677d5.png\n> <https://user-images.githubusercontent.com/55062168/238071282-2869f8f2-ef7b-4ac6-96cb-13414e8677d5.png>\n> \u2014 Reply to this email directly, view it on GitHub <#1515 (comment)\n> <https://github.com/kevoreilly/CAPEv2/issues/1515#issuecomment-1546249765>>,\n> or unsubscribe\n> https://github.com/notifications/unsubscribe-auth/AAOFH32MZIDKCGJNWKOF47DXF2LZZANCNFSM6AAAAAAX7Y7WKI\n> <https://github.com/notifications/unsubscribe-auth/AAOFH32MZIDKCGJNWKOF47DXF2LZZANCNFSM6AAAAAAX7Y7WKI>\n> . You are receiving this because you were mentioned.Message ID: @.**>\n>\n> @doomedraven <https://github.com/doomedraven> Do you have any more\n> suggestions about why this is happening and where I should check? This\n> really has been costing me a significant amount of time :(\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1515#issuecomment-1546269215>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3ZX7ESQWX3RXYN76XTXF2N3ZANCNFSM6AAAAAAX7Y7WKI>\n> .\n> You are receiving this because you were mentioned.Message ID:\n> ***@***.***>\n>\n\nComment: > Not real y, im from phone and is almost midnight here. Maybe someone el se gonna check the issue \r\n\r\nOkay, thank you already! :) \nComment: Is your Windows guest operating system 32-bit or 64-bit? If it is a 64-bit system, you should change the 'arch' value to 'x64' in the 'kvm.conf' file\nComment: > Is your Windows guest operating system 32-bit or 64-bit? If it is a 64-bit system, you should change the 'arch' value to 'x64' in the 'kvm.conf' file\r\n\r\n@MarioRL0 Thanks a lot for pointing this out! I guess this was indeed one of the problems. After I modified this to x64, there was still no data sent back, but I can see the sample getting executed in the guest VM and network connection errors.\r\n![IMG_5471](https://github.com/kevoreilly/CAPEv2/assets/55062168/b5f812cf-e88d-4474-af40-4b7dc915debb)\r\n\r\nI also checked the Syslog. \r\n![IMG_5469](https://github.com/kevoreilly/CAPEv2/assets/55062168/25b6c429-1e5a-4a73-9514-866fa30fd657)\r\nAnd then specify allowing connection from 192.168.55.231 in ufw, and also changed the libvirtd.conf set max_client_requests = 5, then it works. The problem is solved now!\r\n\nComment: Happy days \u2764\ufe0f thank you @MarioRL0 ",
+  "Title: handle any server port\nBody: None",
+  "Title: How do you handle license keys?\nBody: I'm running into a problem where I've rebuilt lab VMs trying different configurations of KVM and VMWare in my home lab that my license keys for Windows and Office have been banned for too many activations.\r\n\r\nFor Windows 10 I could purchase a new OEM copy to get a new license key, but I'm not sure what to do about Office, with everything moving to a subscription model.\r\n\r\nSo I'm wondering, how do you deal with this problem in production, especially as you scale up the number of VMs to allow for multiple jobs at once? Do you have a special arrangement with Microsoft?\nComment: activation by phone and no suscription version of office lol(see recommended office in docs)\nComment: Ah. It looks like the public instance of CAPE is only using Windows 7? I was trying Windows 10, which doesn't have a phone activation option. My thought process was to use more modern versions of software. I'll rebuild my VMs with Windows 7 and Office 2010.\nComment: windows 10 has another very similar ways, but this is not related to the CAPE and i won't discuss how to handle licenses here. That is subject to each group/company/person how they handle it",
+  "Title: agent.py:6: DeprecationWarning: 'cgi' is deprecated and slated for removal in Python 3.13\nBody: I was playing with `agent.py` and I noticed this warning when running on Python 3.10.11\r\n\r\n> agent.py:6: DeprecationWarning: 'cgi' is deprecated and slated for removal in Python 3.13\r\n\r\nObviously 3.13 is a ways away, and we could always install an older version, but I thought I'd still call it out.\nComment: this one will be a bit problematic at it looks like no native solution for this one https://peps.python.org/pep-0594/#cgi. More dependencies coming. This will be fun :D\nComment: Probably worth us revisiting the agent module and analyzer. There's a lot of improvements to be made (see #1680 for example).",
+  "Title: Staging\nBody: None",
+  "Title: Bump django from 4.1.7 to 4.1.9\nBody: Bumps [django](https://github.com/django/django) from 4.1.7 to 4.1.9.\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/django/django/commit/dceb634ba42d3a182ea653dce31a529017f75a95\"><code>dceb634</code></a> [4.1.x] Bumped version for 4.1.9 release.</li>\n<li><a href=\"https://github.com/django/django/commit/e7c3a2ccc3a562328600be05068ed9149e12ce64\"><code>e7c3a2c</code></a> [4.1.x] Fixed CVE-2023-31047, Fixed <a href=\"https://redirect.github.com/django/django/issues/31710\">#31710</a> -- Prevented potential bypass of v...</li>\n<li><a href=\"https://github.com/django/django/commit/491dccec1aa10e829539e4e4fcd8cca606a57ebc\"><code>491dcce</code></a> [4.1.x] Added missing backticks in docs/releases/1.7.txt.</li>\n<li><a href=\"https://github.com/django/django/commit/6d334a0ca54f2f8b3cce28070367110497d8d82c\"><code>6d334a0</code></a> [4.1.x] Added stub release notes for 4.1.9 and 3.2.19.</li>\n<li><a href=\"https://github.com/django/django/commit/f55bcff9dcac1d0cb1f927f9fd543cfd567400c4\"><code>f55bcff</code></a> [4.1.x] Refs <a href=\"https://redirect.github.com/django/django/issues/34118\">#34118</a> -- Fixed CustomChoicesTests.test_uuid_unsupported on Pyth...</li>\n<li><a href=\"https://github.com/django/django/commit/685721b4c5551c3ef755421c2f64c164e809c3b7\"><code>685721b</code></a> [4.1.x] Post-release version bump.</li>\n<li><a href=\"https://github.com/django/django/commit/bbce0153919c6e9ec7886f5ef3ce76463fae57c6\"><code>bbce015</code></a> [4.1.x] Bumped version for 4.1.8 release.</li>\n<li><a href=\"https://github.com/django/django/commit/67a79dcf5b245f6cb0a77e232243c6b4033dea5c\"><code>67a79dc</code></a> [4.1.x] Added release date for 4.1.8.</li>\n<li><a href=\"https://github.com/django/django/commit/ba1654cb54eccef3ba29e455cd5065aed84e1f90\"><code>ba1654c</code></a> [4.1.x] Fixed <a href=\"https://redirect.github.com/django/django/issues/34384\">#34384</a> -- Fixed session validation when rotation secret keys.</li>\n<li><a href=\"https://github.com/django/django/commit/ff3e3eb2bd6c259807e5409a8e7299d00a42687e\"><code>ff3e3eb</code></a> [4.1.x] Added stub release notes for 4.1.8.</li>\n<li>Additional commits viewable in <a href=\"https://github.com/django/django/compare/4.1.7...4.1.9\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=django&package-manager=pip&previous-version=4.1.7&new-version=4.1.9)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Fix remote session\nBody: Get machine info by machine label not name.",
+  "Title: Interactive session not working - Server Error 404\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nGet interactive session working\r\n\r\n# Current Behavior\r\n\r\nError 404 from the server\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\n1. Enable the Guacamole app in web.conf and configure it\r\n2. Submit a sample checking the interactive session\r\n3. Click the interactive session id to be redirected to the guacamole app\r\n4. The server gives 404\r\n\r\n## Context\r\n\r\nI have activated guacamole on 'web.conf' and followed the steps on the website to use it. However, when I click on the link to the remote session, the server returns a 404 error and there is no log displayed in the guac-web/guacd services. I have CAPE installed on an Ubuntu 22.04 server and am wondering if there is any additional software that needs to be downloaded, which is not included in \"./cape2.sh guacamole\" command, or if there are any other steps that are not mentioned on the website. The server uses WSGI and I have enabled VNC on my guests. I also checked ALLOWED_HOSTS in web/web/settings.py.\r\n\r\nI have attempted to troubleshoot the issue by checking the guacamole logs (but there are no logs :( ) and restarting the guac-web/guacd/cape services, but the problem persists. I am unsure if there is a configuration issue with Guacamole or an underlying problem that is causing the error.\r\n\r\nCould someone please provide guidance on how to resolve this issue or suggest any additional steps that need to be taken to configure Guacamole properly on CAPE?\r\n\r\nHere is the guacamole web.conf:\r\n\r\n\r\n```\r\n[guacamole]\r\nenabled = yes\r\nmode = vnc\r\nusername =\r\npassword = mysecretpassword\r\nguacd_host = localhost\r\nguacd_port = 4822\r\nguest_protocol = vnc\r\nguacd_recording_path = /opt/CAPEv2/storage/guacrecordings\r\nguest_width = 1280\r\nguest_height = 1024\r\nguest_rdp_port = 3389\r\n```\r\nHere are the guacd.service and guac-web.service logs:\r\n\r\n```\r\nguacd.service \r\nMay 05 19:20:14 userv systemd[1]: Started Guacamole Server.\r\nMay 05 19:20:14 userv guacd[232629]: Guacamole proxy daemon (guacd) version 1.5.0 started\r\nMay 05 19:20:14 userv guacd[232629]: guacd[232629]: INFO:        Guacamole proxy daemon (guacd) version 1.5.0 started\r\nMay 05 19:20:14 userv guacd[232629]: guacd[232629]: INFO:        Listening on host 127.0.0.1, port 4822\r\nMay 05 19:20:14 userv guacd[232629]: Listening on host 127.0.0.1, port 4822\r\n```\r\n```\r\nguac-web.service\r\nMay 05 19:20:15 userv systemd[1]: Started Guacamole ASGI app.\r\nMay 05 19:20:16 userv poetry[232637]: [2023-05-05 19:20:16 +0000] [232637] [INFO] Starting gunicorn 20.1.0\r\nMay 05 19:20:16 userv poetry[232637]: [2023-05-05 19:20:16 +0000] [232637] [INFO] Listening at: http://127.0.0.1:8008 (232637)\r\nMay 05 19:20:16 userv poetry[232637]: [2023-05-05 19:20:16 +0000] [232637] [INFO] Using worker: uvicorn.workers.UvicornWorker\r\nMay 05 19:20:16 userv poetry[232646]: [2023-05-05 19:20:16 +0000] [232646] [INFO] Booting worker with pid: 232646\r\nMay 05 19:20:16 userv poetry[232647]: [2023-05-05 19:20:16 +0000] [232647] [INFO] Booting worker with pid: 232647\r\nMay 05 19:20:16 userv poetry[232648]: [2023-05-05 19:20:16 +0000] [232648] [INFO] Booting worker with pid: 232648\r\nMay 05 19:20:16 userv poetry[232649]: [2023-05-05 19:20:16 +0000] [232649] [INFO] Booting worker with pid: 232649\r\nMay 05 19:20:16 userv poetry[232646]: [2023-05-05 19:20:16 +0000] [232646] [INFO] Started server process [232646]\r\nMay 05 19:20:16 userv poetry[232646]: [2023-05-05 19:20:16 +0000] [232646] [INFO] Waiting for application startup.\r\nMay 05 19:20:16 userv poetry[232646]: [2023-05-05 19:20:16 +0000] [232646] [INFO] ASGI 'lifespan' protocol appears unsupported.\r\nMay 05 19:20:16 userv poetry[232646]: [2023-05-05 19:20:16 +0000] [232646] [INFO] Application startup complete.\r\nMay 05 19:20:16 userv poetry[232647]: [2023-05-05 19:20:16 +0000] [232647] [INFO] Started server process [232647]\r\nMay 05 19:20:16 userv poetry[232647]: [2023-05-05 19:20:16 +0000] [232647] [INFO] Waiting for application startup.\r\nMay 05 19:20:16 userv poetry[232647]: [2023-05-05 19:20:16 +0000] [232647] [INFO] ASGI 'lifespan' protocol appears unsupported.\r\nMay 05 19:20:16 userv poetry[232647]: [2023-05-05 19:20:16 +0000] [232647] [INFO] Application startup complete.\r\nMay 05 19:20:17 userv poetry[232648]: [2023-05-05 19:20:17 +0000] [232648] [INFO] Started server process [232648]\r\nMay 05 19:20:17 userv poetry[232648]: [2023-05-05 19:20:17 +0000] [232648] [INFO] Waiting for application startup.\r\nMay 05 19:20:17 userv poetry[232648]: [2023-05-05 19:20:17 +0000] [232648] [INFO] ASGI 'lifespan' protocol appears unsupported.\r\nMay 05 19:20:17 userv poetry[232648]: [2023-05-05 19:20:17 +0000] [232648] [INFO] Application startup complete.\r\nMay 05 19:20:17 userv poetry[232649]: [2023-05-05 19:20:17 +0000] [232649] [INFO] Started server process [232649]\r\nMay 05 19:20:17 userv poetry[232649]: [2023-05-05 19:20:17 +0000] [232649] [INFO] Waiting for application startup.\r\nMay 05 19:20:17 userv poetry[232649]: [2023-05-05 19:20:17 +0000] [232649] [INFO] ASGI 'lifespan' protocol appears unsupported.\r\nMay 05 19:20:17 userv poetry[232649]: [2023-05-05 19:20:17 +0000] [232649] [INFO] Application startup complete.\r\n```\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Host: Ubuntu 22.04 Guest: Windows 10 Hypervisor: KVM\r\n\r\n## Failure Logs\r\n\r\nIn analysis.log I get \"unrecognised key interactive_desktop\"\r\n\r\n```\r\n2023-05-07 07:14:54,854 [lib.api.process] INFO: Monitor config for process 5560: C:\\tmpk3rssz9y\\dll\\5560.ini\r\n2023-05-07 07:14:54,869 [lib.api.process] INFO: Option 'interactive_desktop' with value 'yes' sent to monitor\r\n2023-05-07 07:14:54,869 [lib.api.process] INFO: 32-bit DLL to inject is C:\\tmpk3rssz9y\\dll\\MoBUiZeV.dll, loader C:\\tmpk3rssz9y\\bin\\lPFdMwX.exe\r\n2023-05-07 07:14:54,932 [root] DEBUG: Loader: Injecting process 5560 (thread 5420) with C:\\tmpk3rssz9y\\dll\\MoBUiZeV.dll.\r\n2023-05-07 07:14:54,948 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\r\n2023-05-07 07:14:54,948 [root] DEBUG: Successfully injected DLL C:\\tmpk3rssz9y\\dll\\MoBUiZeV.dll.\r\n2023-05-07 07:14:54,948 [lib.api.process] INFO: Injected into 32-bit process with pid 5560\r\n2023-05-07 07:14:56,963 [lib.api.process] INFO: Successfully resumed process with pid 5560\r\n2023-05-07 07:14:57,151 [root] DEBUG: Python path set to 'C:\\Users\\capev\\AppData\\Local\\Programs\\Python\\Python310-32'.\r\n2023-05-07 07:14:57,166 [root] DEBUG: CAPE debug - unrecognised key interactive_desktop.\r\n2023-05-07 07:14:57,166 [root] DEBUG: Dropped file limit defaulting to 100.\r\n2023-05-07 07:14:57,182 [root] DEBUG: Initialising Yara...\r\n```\r\n\nComment: hey, you need to use nginx to integrate that properly, follow documentation for that https://capev2.readthedocs.io/en/latest/usage/interactive_desktop.html?highlight=interactive\nComment: also do a git pull as Enzok fixed one thing\nComment: Thanks, I will try it!\nComment: Hey, I have used NGINX as a proxy to access the guac-web.service and cape-web.service. However, when I access the Remote session tab, the wait.html page appears, and when the virtual machine is booted, the index.html page appears completely blank. I have tried to find the error by starting the machine and accessing the link with the ID generated by the documentation script, but no errors are shown in the logs. I have done the git pull also.\r\n\r\nAlso, when trying to access the web application from the browser, I receive the following error message: \r\n\r\n`\"WebSocket connection to 'ws://MY_SRC_IP/guac/websocket-tunnel/53c1d9c6bfab3d4f?guest_ip=MY_GUEST_IP&vncport=5901&recording_name=0000_53c1d9c6bfab3d4f' failed\"`\r\n\r\nDo you know what could be causing this error?\r\n\r\nI have been reading and maybe the `ASGI 'lifespan' protocol appears unsupported` log on the guac-web.service is the cause, but I have not found any solution yet.\r\n\nComment: @enzok did you try guacamole 1.5.0? i have tried to quickly set it yesterday but it doesn't work, it was working just fine with 1.4.0\nComment: yes i have 1.5 installed on two instances\n\n\nOn Mon, May 8, 2023 at 4:10\u202fPM doomedraven ***@***.***> wrote:\n\n> @enzok <https://github.com/enzok> did you try guacamole 1.5.0? i have\n> tried to quickly set it yesterday but it doesn't work, it was working just\n> fine with 1.4.0\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1508#issuecomment-1538980290>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AB3X3YD476K2AYJIPB5IF6DXFFHJ5ANCNFSM6AAAAAAXXQYFYE>\n> .\n> You are receiving this because you were mentioned.Message ID:\n> ***@***.***>\n>\n\n\n-- \nLorenzo\n\n\u201cHappiness is not the absence of problems, but the ability to deal with\nthem.\" - Albert Einstein\n\nComment: actually - i just checked and it looks like 1.4 is running even though i thought i updated\nComment: although it is running 1.5 on the other instance \nComment: upgraded the other instance to 1.5 and it is running fine\nComment: @MarioRL0  try running developer tools and check the javascript console - it may give more details \nComment: also ensure that your graphic is set to VNC and not to spice\nComment: @doomedraven I have my VNC display configure as it is shown in the image, but I still having a Spice display, because I can't delete it. Could this be the problem source?\r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/91615276/dfd0395b-06b7-4a00-a0d7-bd575bd2d730)\r\n\nComment: try without a password, to rule that out. verify you can connect to the vnc ports with a vnc viewer. just make sure the viewer is running after you test or it will prevent other connections.\nComment: yes can be a problem, \r\n\r\n1. the usb redirectors at the bottom is spicevm that you need to remove(all of them if it says spicevm ) \r\n2. save \r\n3. then go to overview and press `xml`. \r\n4. Go to the bottom and you will see `oneliner` something like `<sound spicevm`. Remove that whole line and search for graphics(don't remember exact field out of memory) or spicevm again and replace it with `vnc`\r\n5. save\r\n6. all removed\r\n\r\nthe best is to configure this properly when you creating the VM\nComment: @doomedraven I have followed all the steps that you told me, however, the issue still persists and I am unable to use the VM from the browser. @enzok I also checked whether I was able to connect through VNC using Remmina, and I was able to successfully connect to my VM. Perhaps I should create my VM from scratch?\nComment: nah you don't need to create another vm. Some other spanish guys working on this issue and they had the same white screen but they got a bit futher, so try on your own or wait till someone else solve that. i don't use this feature, neither sadly have spare time right now to investigate\nComment: I will try and let you know if I am able to resolve the issue. Thank you for trying to help.\nComment: did you see any messages on the console in dev tools?\nComment: you can also run guacd from the command line instead of as running the service, use -L debug args and see if that gives you more clues\r\n\r\nthat white screen usually means that guacd traffic isn't getting proxied by nginx websocket properly -\r\n\r\nyou can increase logging for nginx as well\r\n\nComment: Using the console in the DevTools, I received the following error message\r\n\r\n```\r\n(WebSocket connection to 'ws://192.168.100.52/guac/websocket-tunnel/53c1d9c6bfab3d4f?guest_ip=192.168.50.91&vncport=5900&recording_name=0000_53c1d9c6bfab3d4f' failed: \r\nconnect @ guacamole-1.4.0-all.min.js:148 on line)\r\n```\r\n\r\nThis error is related to the following section of code in the guacamole-1.4.0-all.min.js file\r\n\r\n```\r\n    this.connect = function(f) {\r\n        a();\r\n        c.setState(Guacamole.Tunnel.State.CONNECTING);\r\n        e = new WebSocket(b + \"?\" + f,\"guacamole\"); <--- this line\r\n        e.onopen = function(b) {\r\n            a();\r\n            m = setInterval(function() {\r\n                c.sendMessage(Guacamole.Tunnel.INTERNAL_DATA_OPCODE, \"ping\", (new Date).getTime())\r\n            }, 500)\r\n        }\r\n        ;\r\n```\r\n\r\nI will attempt to debug guacd since I do not believe that NGINX is the cause of the issue. I have already tried using it without NGINX by binding an address on guac-web.service, but it still isn't working.\nComment: enable debug in web/web/local_settings.py you can copy variable from settings.py and put it in local_settings.py with set to True maybe that will tell you why it returns error 500\nComment: do you see the connection attempt in guacd log? should look something like this\r\n\r\nMay 10 14:41:17 cfc-cuckoo01 guacd[1801771]: Creating new client for protocol \"vnc\"\r\nMay 10 14:41:17 cfc-cuckoo01 guacd[1801771]: guacd[1801771]: INFO:#011Creating new client for protocol \"vnc\"\r\nMay 10 14:41:17 cfc-cuckoo01 guacd[1801771]: guacd[1801771]: INFO:#011Connection ID is \"$caae0f93-86df-416f-b246-d6dc35b80140\"\r\nMay 10 14:41:17 cfc-cuckoo01 guacd[1801771]: Connection ID is \"$caae0f93-86df-416f-b246-d6dc35b80140\"\r\nMay 10 14:41:17 cfc-cuckoo01 guacd[1831075]: Cursor rendering: local\r\nMay 10 14:41:17 cfc-cuckoo01 guacd[1831075]: guacd[1831075]: INFO:#011Cursor rendering: local\r\nMay 10 14:41:17 cfc-cuckoo01 guacd[1831075]: guacd[1831075]: INFO:#011User \"@17471ec3-0093-4f00-b0ea-ff152540361e\" joined connection \"$caae0f93-86df-416f-b246-d6dc35b80140\" (1 users now present)\r\nMay 10 14:41:17 cfc-cuckoo01 guacd[1831075]: User \"@17471ec3-0093-4f00-b0ea-ff152540361e\" joined connection \"$caae0f93-86df-416f-b246-d6dc35b80140\" (1 users now present)\nComment: https://chrome.google.com/webstore/detail/websocket-test-client/fgponpodhbmadfljofbimhhlengambbn\r\n\r\nyou can use this to test the websocket \nComment: > do you see the connection attempt in guacd log? should look something like this\r\n> \r\n> May 10 14:41:17 cfc-cuckoo01 guacd[1801771]: Creating new client for protocol \"vnc\" May 10 14:41:17 cfc-cuckoo01 guacd[1801771]: guacd[1801771]: INFO:#011Creating new client for protocol \"vnc\" May 10 14:41:17 cfc-cuckoo01 guacd[1801771]: guacd[1801771]: INFO:#011Connection ID is \"$caae0f93-86df-416f-b246-d6dc35b80140\" May 10 14:41:17 cfc-cuckoo01 guacd[1801771]: Connection ID is \"$caae0f93-86df-416f-b246-d6dc35b80140\" May 10 14:41:17 cfc-cuckoo01 guacd[1831075]: Cursor rendering: local May 10 14:41:17 cfc-cuckoo01 guacd[1831075]: guacd[1831075]: INFO:#011Cursor rendering: local May 10 14:41:17 cfc-cuckoo01 guacd[1831075]: guacd[1831075]: INFO:#011User \"@17471ec3-0093-4f00-b0ea-ff152540361e\" joined connection \"$caae0f93-86df-416f-b246-d6dc35b80140\" (1 users now present) May 10 14:41:17 cfc-cuckoo01 guacd[1831075]: User \"@17471ec3-0093-4f00-b0ea-ff152540361e\" joined connection \"$caae0f93-86df-416f-b246-d6dc35b80140\" (1 users now present)\r\n\r\nUsing the web and test web-socket (`ws://192.168.100.52/guac/websocket-tunnel/53c1d9c6bfab3d4f?guest_ip=192.168.50.121&vncport=5900&recording_name=0000_53c1d9c6bfab3d4f`) I don't find any connection attempts in the guacd log. It seems as though the connection to guacd.service don't even initialize. \r\n\r\n```\r\nMay 10 14:26:41 userv guacd[329002]: Guacamole proxy daemon (guacd) version 1.5.0 started\r\nMay 10 14:26:41 userv guacd[329002]: guacd[329002]: INFO:        Guacamole proxy daemon (guacd) version 1.5.0 started\r\nMay 10 14:26:41 userv guacd[329002]: guacd[329002]: INFO:        Listening on host 127.0.0.1, port 4822\r\nMay 10 14:26:41 userv guacd[329002]: Listening on host 127.0.0.1, port 4822\r\n\r\n```\r\n\r\nBut if I test the web-socket, specifying the web port (ws://192.168.100.52:8000/guac/websocket-tunnel/53c1d9c6bfab3d4f?guest_ip=192.168.50.121&vncport=5900&recording_name=0000_53c1d9c6bfab3d4f). I connection attempts on guacd.service:\r\n\r\n```\r\nMay 10 15:48:59 userv guacd[359647]: guacd[359647]: INFO:        Listening on host 127.0.0.1, port 4822\r\nMay 10 15:49:38 userv guacd[359647]: Creating new client for protocol \"vnc\"\r\nMay 10 15:49:38 userv guacd[359647]: guacd[359647]: INFO:        Creating new client for protocol \"vnc\"\r\nMay 10 15:49:38 userv guacd[359647]: guacd[359647]: INFO:        Connection ID is \"$0303440c-2009-411a-9448-196a963a97eb\"\r\nMay 10 15:49:38 userv guacd[359647]: Connection ID is \"$0303440c-2009-411a-9448-196a963a97eb\"\r\nMay 10 15:49:38 userv guacd[359885]: Cursor rendering: local\r\nMay 10 15:49:38 userv guacd[359885]: guacd[359885]: INFO:        Cursor rendering: local\r\nMay 10 15:49:38 userv guacd[359885]: guacd[359885]: INFO:        User \"@3b182083-b713-47a1-945e-592f2c2f25da\" joined connection \"$0303440c-2009-411a-9448-196a963a97eb\" (1 users now present)\r\nMay 10 15:49:38 userv guacd[359885]: User \"@3b182083-b713-47a1-945e-592f2c2f25da\" joined connection \"$0303440c-2009-411a-9448-196a963a97eb\" (1 users now present)\r\nMay 10 15:49:38 userv guacd[359885]: VNC server supports protocol version 3.8 (viewer 3.8)\r\nMay 10 15:49:38 userv guacd[359885]: We have 1 security types to read\r\nMay 10 15:49:38 userv guacd[359885]: 0) Received security type 1\r\nMay 10 15:49:38 userv guacd[359885]: Selecting security type 1 (0/1 in the list)\r\nMay 10 15:49:38 userv guacd[359885]: Selected Security Scheme 1\r\nMay 10 15:49:38 userv guacd[359885]: No authentication needed\r\nMay 10 15:49:38 userv guacd[359885]: VNC authentication succeeded\r\nMay 10 15:49:38 userv guacd[359885]: Desktop name \"QEMU (win10)\"\r\nMay 10 15:49:38 userv guacd[359885]: Connected to VNC server, using protocol version 3.8\r\nMay 10 15:49:38 userv guacd[359885]: VNC server default format:\r\nMay 10 15:49:38 userv guacd[359885]:   32 bits per pixel.\r\nMay 10 15:49:38 userv guacd[359885]:   Least significant byte first in each pixel.\r\nMay 10 15:49:38 userv guacd[359885]:   TRUE colour: max red 255 green 255 blue 255, shift red 16 green 8 blue 0\r\nMay 10 15:49:38 userv guacd[359885]: Creation of recording failed: Permission denied\r\nMay 10 15:49:38 userv guacd[359885]: guacd[359885]: ERROR:        Creation of recording failed: Permission denied\r\nMay 10 15:49:53 userv guacd[359885]: User is not responding.\r\nMay 10 15:49:53 userv guacd[359885]: guacd[359885]: ERROR:        User is not responding.\r\nMay 10 15:49:53 userv guacd[359885]: guacd[359885]: INFO:        User \"@3b182083-b713-47a1-945e-592f2c2f25da\" disconnected (0 users remain)\r\nMay 10 15:49:53 userv guacd[359885]: guacd[359885]: INFO:        Last user of connection \"$0303440c-2009-411a-9448-196a963a97eb\" disconnected\r\nMay 10 15:49:53 userv guacd[359885]: User \"@3b182083-b713-47a1-945e-592f2c2f25da\" disconnected (0 users remain)\r\nMay 10 15:49:53 userv guacd[359885]: Last user of connection \"$0303440c-2009-411a-9448-196a963a97eb\" disconnected\r\nMay 10 15:49:53 userv guacd[359885]: Internal VNC client disconnected\r\nMay 10 15:49:53 userv guacd[359885]: guacd[359885]: INFO:        Internal VNC client disconnected\r\nMay 10 15:49:53 userv guacd[359647]: Connection \"$0303440c-2009-411a-9448-196a963a97eb\" removed.\r\nMay 10 15:49:53 userv guacd[359647]: guacd[359647]: INFO:        Connection \"$0303440c-2009-411a-9448-196a963a97eb\" removed.\r\n```\r\n\r\n\nComment: Hello, \r\n\r\nI'm the other spanish guy looking for a solution of the interactive session in cape. \r\n\r\nIn my case digging into de guacd logs the following error is shown:\r\n\r\nguacd[613283]: INFO:\tCreating new client for protocol \"vnc\"\r\nguacd[613283]: INFO:\tConnection ID is \"$52a6f714-9dcc-43b5-9124-22b2fef7c55c\"\r\nguacd[614881]: DEBUG:\tProcessing instruction: size\r\nguacd[614881]: DEBUG:\tProcessing instruction: audio\r\nguacd[614881]: DEBUG:\tProcessing instruction: video\r\nguacd[614881]: DEBUG:\tProcessing instruction: image\r\nguacd[614881]: INFO:\tCursor rendering: local\r\nguacd[614881]: DEBUG:\tParameter \"swap-red-blue\" omitted. Using default value of 0.\r\nguacd[614881]: DEBUG:\tParameter \"read-only\" omitted. Using default value of 0.\r\nguacd[614881]: DEBUG:\tParameter \"color-depth\" omitted. Using default value of 0.\r\nguacd[614881]: DEBUG:\tParameter \"force-lossless\" omitted. Using default value of 0.\r\nguacd[614881]: DEBUG:\tParameter \"dest-port\" omitted. Using default value of 0.\r\nguacd[614881]: DEBUG:\tParameter \"encodings\" omitted. Using default value of \"zrle ultra copyrect hextile zlib corre rre raw\".\r\nguacd[614881]: DEBUG:\tParameter \"autoretry\" omitted. Using default value of 0.\r\nguacd[614881]: DEBUG:\tParameter \"reverse-connect\" omitted. Using default value of 0.\r\nguacd[614881]: DEBUG:\tParameter \"listen-timeout\" omitted. Using default value of 5000.\r\nguacd[614881]: DEBUG:\tParameter \"enable-audio\" omitted. Using default value of 0.\r\nguacd[614881]: DEBUG:\tParameter \"enable-sftp\" omitted. Using default value of 0.\r\nguacd[614881]: DEBUG:\tParameter \"sftp-hostname\" omitted. Using default value of \"localhost\".\r\nguacd[614881]: DEBUG:\tParameter \"sftp-port\" omitted. Using default value of \"22\".\r\nguacd[614881]: DEBUG:\tParameter \"sftp-username\" omitted. Using default value of \"\".\r\nguacd[614881]: DEBUG:\tParameter \"sftp-password\" omitted. Using default value of \"\".\r\nguacd[614881]: DEBUG:\tParameter \"sftp-passphrase\" omitted. Using default value of \"\".\r\nguacd[614881]: DEBUG:\tParameter \"sftp-root-directory\" omitted. Using default value of \"/\".\r\nguacd[614881]: DEBUG:\tParameter \"sftp-server-alive-interval\" omitted. Using default value of 0.\r\nguacd[614881]: DEBUG:\tParameter \"sftp-disable-download\" omitted. Using default value of 0.\r\nguacd[614881]: DEBUG:\tParameter \"sftp-disable-upload\" omitted. Using default value of 0.\r\nguacd[614881]: DEBUG:\tParameter \"recording-exclude-output\" omitted. Using default value of 0.\r\nguacd[614881]: DEBUG:\tParameter \"recording-exclude-mouse\" omitted. Using default value of 0.\r\nguacd[614881]: DEBUG:\tParameter \"recording-include-keys\" omitted. Using default value of 0.\r\nguacd[614881]: DEBUG:\tParameter \"create-recording-path\" omitted. Using default value of 0.\r\nguacd[614881]: DEBUG:\tParameter \"disable-copy\" omitted. Using default value of 0.\r\nguacd[614881]: DEBUG:\tParameter \"disable-paste\" omitted. Using default value of 0.\r\nguacd[614881]: DEBUG:\tParameter \"wol-send-packet\" omitted. Using default value of 0.\r\nguacd[614881]: INFO:\tUser \"@15d1198d-470f-4751-975a-4026b9fe80d0\" joined connection \"$52a6f714-9dcc-43b5-9124-22b2fef7c55c\" (1 users now present)\r\nguacd[614881]: DEBUG:\tClient has not defined its protocol version.\r\nguacd[614881]: ERROR:\tUnable to connect to VNC server.\r\nguacd[614881]: ERROR:\tUser is not responding.\r\nguacd[614881]: INFO:\tUser \"@15d1198d-470f-4751-975a-4026b9fe80d0\" disconnected (0 users remain)\r\nguacd[614881]: INFO:\tLast user of connection \"$52a6f714-9dcc-43b5-9124-22b2fef7c55c\" disconnected\r\nguacd[614881]: DEBUG:\tRequesting termination of client...\r\nguacd[614881]: DEBUG:\tClient terminated successfully.\r\nguacd[613283]: INFO:\tConnection \"$52a6f714-9dcc-43b5-9124-22b2fef7c55c\" removed\r\n\r\nthis connection is made with the chrome extension \nComment: Sound like you just need to add port to nginx?\n\nEl mi\u00e9, 10 may 2023 17:56, Mario Romeo L\u00e1zaro ***@***.***>\nescribi\u00f3:\n\n> do you see the connection attempt in guacd log? should look something like\n> this\n>\n> May 10 14:41:17 cfc-cuckoo01 guacd[1801771]: Creating new client for\n> protocol \"vnc\" May 10 14:41:17 cfc-cuckoo01 guacd[1801771]: guacd[1801771]:\n> INFO:#011Creating new client for protocol \"vnc\" May 10 14:41:17\n> cfc-cuckoo01 guacd[1801771]: guacd[1801771]: INFO:#011Connection ID is\n> \"$caae0f93-86df-416f-b246-d6dc35b80140\" May 10 14:41:17 cfc-cuckoo01\n> guacd[1801771]: Connection ID is \"$caae0f93-86df-416f-b246-d6dc35b80140\"\n> May 10 14:41:17 cfc-cuckoo01 guacd[1831075]: Cursor rendering: local May 10\n> 14:41:17 cfc-cuckoo01 guacd[1831075]: guacd[1831075]: INFO:#011Cursor\n> rendering: local May 10 14:41:17 cfc-cuckoo01 guacd[1831075]:\n> guacd[1831075]: INFO:#011User ***@***.***\"\n> joined connection \"$caae0f93-86df-416f-b246-d6dc35b80140\" (1 users now\n> present) May 10 14:41:17 cfc-cuckoo01 guacd[1831075]: User\n> ***@***.***\" joined connection\n> \"$caae0f93-86df-416f-b246-d6dc35b80140\" (1 users now present)\n>\n> Using the web and test web-socket (ws://\n> 192.168.100.52/guac/websocket-tunnel/53c1d9c6bfab3d4f?guest_ip=192.168.50.121&vncport=5900&recording_name=0000_53c1d9c6bfab3d4f)\n> I don't find any connection attempts in the guacd log. It seems as though\n> the connection to guacd.service don't even initialize.\n>\n> May 10 14:26:41 userv guacd[329002]: Guacamole proxy daemon (guacd) version 1.5.0 started\n> May 10 14:26:41 userv guacd[329002]: guacd[329002]: INFO:        Guacamole proxy daemon (guacd) version 1.5.0 started\n> May 10 14:26:41 userv guacd[329002]: guacd[329002]: INFO:        Listening on host 127.0.0.1, port 4822\n> May 10 14:26:41 userv guacd[329002]: Listening on host 127.0.0.1, port 4822\n>\n>\n> But if I test the web-socket, specifying the web port (ws://\n> 192.168.100.52:8000/guac/websocket-tunnel/53c1d9c6bfab3d4f?guest_ip=192.168.50.121&vncport=5900&recording_name=0000_53c1d9c6bfab3d4f).\n> I connection attempts on guacd.service:\n>\n> May 10 15:48:59 userv guacd[359647]: guacd[359647]: INFO:        Listening on host 127.0.0.1, port 4822\n> May 10 15:49:38 userv guacd[359647]: Creating new client for protocol \"vnc\"\n> May 10 15:49:38 userv guacd[359647]: guacd[359647]: INFO:        Creating new client for protocol \"vnc\"\n> May 10 15:49:38 userv guacd[359647]: guacd[359647]: INFO:        Connection ID is \"$0303440c-2009-411a-9448-196a963a97eb\"\n> May 10 15:49:38 userv guacd[359647]: Connection ID is \"$0303440c-2009-411a-9448-196a963a97eb\"\n> May 10 15:49:38 userv guacd[359885]: Cursor rendering: local\n> May 10 15:49:38 userv guacd[359885]: guacd[359885]: INFO:        Cursor rendering: local\n> May 10 15:49:38 userv guacd[359885]: guacd[359885]: INFO:        User ***@***.***\" joined connection \"$0303440c-2009-411a-9448-196a963a97eb\" (1 users now present)\n> May 10 15:49:38 userv guacd[359885]: User ***@***.***\" joined connection \"$0303440c-2009-411a-9448-196a963a97eb\" (1 users now present)\n> May 10 15:49:38 userv guacd[359885]: VNC server supports protocol version 3.8 (viewer 3.8)\n> May 10 15:49:38 userv guacd[359885]: We have 1 security types to read\n> May 10 15:49:38 userv guacd[359885]: 0) Received security type 1\n> May 10 15:49:38 userv guacd[359885]: Selecting security type 1 (0/1 in the list)\n> May 10 15:49:38 userv guacd[359885]: Selected Security Scheme 1\n> May 10 15:49:38 userv guacd[359885]: No authentication needed\n> May 10 15:49:38 userv guacd[359885]: VNC authentication succeeded\n> May 10 15:49:38 userv guacd[359885]: Desktop name \"QEMU (win10)\"\n> May 10 15:49:38 userv guacd[359885]: Connected to VNC server, using protocol version 3.8\n> May 10 15:49:38 userv guacd[359885]: VNC server default format:\n> May 10 15:49:38 userv guacd[359885]:   32 bits per pixel.\n> May 10 15:49:38 userv guacd[359885]:   Least significant byte first in each pixel.\n> May 10 15:49:38 userv guacd[359885]:   TRUE colour: max red 255 green 255 blue 255, shift red 16 green 8 blue 0\n> May 10 15:49:38 userv guacd[359885]: Creation of recording failed: Permission denied\n> May 10 15:49:38 userv guacd[359885]: guacd[359885]: ERROR:        Creation of recording failed: Permission denied\n> May 10 15:49:53 userv guacd[359885]: User is not responding.\n> May 10 15:49:53 userv guacd[359885]: guacd[359885]: ERROR:        User is not responding.\n> May 10 15:49:53 userv guacd[359885]: guacd[359885]: INFO:        User ***@***.***\" disconnected (0 users remain)\n> May 10 15:49:53 userv guacd[359885]: guacd[359885]: INFO:        Last user of connection \"$0303440c-2009-411a-9448-196a963a97eb\" disconnected\n> May 10 15:49:53 userv guacd[359885]: User ***@***.***\" disconnected (0 users remain)\n> May 10 15:49:53 userv guacd[359885]: Last user of connection \"$0303440c-2009-411a-9448-196a963a97eb\" disconnected\n> May 10 15:49:53 userv guacd[359885]: Internal VNC client disconnected\n> May 10 15:49:53 userv guacd[359885]: guacd[359885]: INFO:        Internal VNC client disconnected\n> May 10 15:49:53 userv guacd[359647]: Connection \"$0303440c-2009-411a-9448-196a963a97eb\" removed.\n> May 10 15:49:53 userv guacd[359647]: guacd[359647]: INFO:        Connection \"$0303440c-2009-411a-9448-196a963a97eb\" removed.\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1508#issuecomment-1542446281>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH36K25V6L2FBGJLF2V3XFO3EDANCNFSM6AAAAAAXXQYFYE>\n> .\n> You are receiving this because you were mentioned.Message ID:\n> ***@***.***>\n>\n\nComment: > \r\nI think that in the case of @MarioRL0 there is a permission problem:\r\n\r\nMay 10 15:49:38 userv guacd[359885]: Creation of recording failed: Permission denied\r\nMay 10 15:49:38 userv guacd[359885]: guacd[359885]: ERROR:        Creation of recording failed: Permission denied\r\n\nComment: can you share the websocket settings for your nginx config?\r\n\r\nI think maybe you're proxying to the wrong port\r\n\r\nthat permission denied error for recordings is related to the account that guacd is starting with\r\n\nComment: @doomedraven @enzok On nginx I just follow the documentation template:\r\n\r\n```\r\nmap $http_upgrade $connection_upgrade {\r\n    default upgrade;\r\n    ''      close;\r\n}\r\nupstream nodeserver1 {\r\n    # CAPE\r\n    server 127.0.0.1:8000;\r\n}\r\nupstream nodeserver2 {\r\n    # guac-session\r\n    server 127.0.0.1:8008;\r\n}\r\nserver {\r\n    listen 192.168.153.5:8000;\r\n    client_max_body_size 1g;\r\n    location / {\r\n\r\n        proxy_pass http://nodeserver1;\r\n        proxy_set_header Host $http_host;\r\n        proxy_set_header X-Remote-User $remote_user;\r\n        proxy_set_header X-Real-IP $remote_addr;\r\n        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;\r\n    }\r\n    location /static/ {\r\n        alias /opt/CAPEv2/web/static/;\r\n    }\r\n    location /guac {\r\n        proxy_pass http://nodeserver2;\r\n        proxy_set_header Host $http_host;\r\n        proxy_set_header X-Real-IP $remote_addr;\r\n        proxy_buffering off;\r\n        proxy_http_version 1.1;\r\n        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;\r\n        proxy_set_header Upgrade $http_upgrade;\r\n        proxy_set_header Connection $http_connection;\r\n        client_max_body_size 1g;\r\n    }\r\n    location /guac/playback/recfile {\r\n        alias /var/www/guacrecordings/;\r\n        autoindex on;\r\n        autoindex_exact_size off;\r\n        autoindex_localtime on;\r\n    }\r\n}\r\n```\nComment: here is mine, but at the moment white screen\r\n--------------------------------------------------------------------\r\n```\r\n\r\nmap $http_upgrade $connection_upgrade {\r\n    default upgrade;\r\n    ''      close;\r\n}\r\nupstream nodeserver1 {\r\n    # CAPE\r\n    server 127.0.0.1:8000;\r\n}\r\nupstream nodeserver2 {\r\n    # guac-session\r\n    server 127.0.0.1:8008;\r\n}\r\n\r\nserver {\r\n    listen 80;\r\n    server_name _;\r\n    return 404;\r\n}\r\n\r\nserver {\r\n    listen 443;\r\n    server_name _;\r\n    return 404;\r\n}\r\n\r\nserver {\r\n    # SSL best practices from https://mozilla.github.io/server-side-tls/ssl-config-generator/\r\n    listen <INTERNAL_IP>:443 ssl http2 default_server;\r\n    ssl_certificate /etc/nginx/ssl/cape.crt;\r\n    ssl_certificate_key /etc/nginx/ssl/cape.key;\r\n    ssl_session_cache shared:SSL:20m;\r\n    ssl_session_timeout 60m;\r\n    ssl_ciphers 'ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256';\r\n    ssl_prefer_server_ciphers on;\r\n    ssl_dhparam /etc/nginx/ssl/dhparam.pem;\r\n    ssl_protocols TLSv1 TLSv1.1 TLSv1.2 TLSv1.3;\r\n    add_header Strict-Transport-Security \"max-age=31536000\" always;\r\n    client_max_body_size 101M;\r\n\r\n    # Uncomment this next line if you are using a signed, trusted cert\r\n    #add_header Strict-Transport-Security \"max-age=63072000; includeSubdomains; preload\";\r\n    #add_header X-Frame-Options SAMEORIGIN;\r\n    #add_header X-Content-Type-Options nosniff;\r\n    #root /usr/share/nginx/html;\r\n    #index index.html index.htm;\r\n    #client_max_body_size 101M;\r\n    #auth_basic \"Login required\";\r\n    #auth_basic_user_file /etc/nginx/htpasswd;\r\n    \r\n    location / {\r\n        proxy_pass http://nodeserver1;\r\n        #client_max_body_size 32M;\r\n        #client_body_buffer_size 512k;\r\n        proxy_send_timeout 90;\r\n        proxy_read_timeout 300;\r\n        proxy_buffers 32 4k;\r\n        proxy_connect_timeout 90;\r\n        proxy_set_header Host $http_host;\r\n        proxy_set_header X-Remote-User $remote_user;\r\n        proxy_set_header X-Real-IP $remote_addr;\r\n        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;\r\n        proxy_set_header X-Forwarded-Proto $scheme;\r\n\r\n    }\r\n    location /static/ {\r\n        alias /opt/CAPEv2/web/static/;\r\n    }\r\n    location /guac {\r\n        proxy_pass http://nodeserver2;\r\n        proxy_set_header Host $host;\r\n        proxy_set_header X-Real-IP $remote_addr;\r\n        proxy_buffering off;\r\n        proxy_http_version 1.1;\r\n        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;\r\n        proxy_set_header Upgrade $http_upgrade;\r\n        proxy_set_header Connection $http_connection;\r\n    }\r\n    location /guac/playback/recfile {\r\n        alias /var/www/guacrecordings/;\r\n        autoindex on;\r\n        autoindex_exact_size off;\r\n        autoindex_localtime on;\r\n    }\r\n\r\n\r\n}\r\n\r\nserver {\r\n    listen <INTERNAL_IP>:80;\r\n    return 301 https://$server_name$request_uri;\r\n}\r\n```\nComment: from your post -> ws://192.168.100.52:8000\r\nthat shouldn't have connected\r\n\r\nwhat does your guac-web.service look like?\nComment: guac-web should be running on 8008\r\n\nComment: is that service running?\r\nwhat do you see from the following:\r\njournalctl -u guac-web\nComment: > from your post -> ws://192.168.100.52:8000 that shouldn't have connected\r\n> \r\n> what does your guac-web.service look like?\r\n\r\nWhen I test the web-sock it looks like this, but when I connect from the web there aren't logs:\r\n```\r\nMay 10 16:16:39 userv poetry[369493]: Client connected with guacd server (localhost, 4822, 20)\r\nMay 10 16:16:39 userv poetry[369493]: INFO:guacamole:Client connected with guacd server (localhost, 4822, 20)\r\nMay 10 16:16:39 userv poetry[369493]: [2023-05-10 16:16:39 +0000] [369493] [INFO] ('192.168.100.250', 0) - \"WebSocket /guac/websocket-tunnel/53c1d9c6bfab3d4f\" [accepted]\r\nMay 10 16:16:39 userv poetry[369493]: [2023-05-10 16:16:39 +0000] [369493] [INFO] connection open\r\nMay 10 16:16:39 userv poetry[369493]: [2023-05-10 16:16:39 +0000] [369493] [INFO] connection closed\r\nMay 10 16:16:39 userv poetry[369493]: Connection closed.\r\nMay 10 16:16:39 userv poetry[369493]: INFO:guacamole:Connection closed.\r\n\r\n```\nComment: \r\n> guac-web should be running on 8008\r\n\r\nIt is running on localhost:8008\nComment: stop the service and run from command line\r\n\r\ncd /opt/CAPEv2/web\r\npoetry run python3 manage.py  runserver --settings=web.guac_settings localhost:8008\r\n\r\nthis should give you better logging\r\n\nComment: if you're using the websocket extension, you need to specify the port (8008)\r\n\r\nalso make sure you have allowed the traffic to virbr interface\r\n\r\n\nComment: for that permissions issue on the recording file, make sure you don't have a guacd.conf file anywhere in /etc\r\n\r\nI seem to remember that being an issue\nComment: > \r\n\r\nI think the issue is that the web interface is not specifying the port to use for the socket-web. When connecting from the web interface, I don't see any logs in the guacd and guac-web services, and the connection that gives an error is the following: `ws://SERVER_IP/guac/websocket-tunnel/53c1d9c6bfab3d4f?guest_ip=192.168.50.121&vncport=5900&recording_name=0000_53c1d9c6bfab3d4f`. However, when I test the connection using the extension recommended by @enzok and **specifying the web socket with my web port** `ws://SERVER_IP:8000/guac/websocket-tunnel/53c1d9c6bfab3d4f?guest_ip=192.168.50.121&vncport=5900&recording_name=0000_53c1d9c6bfab3d4f`, I do get connection logs in the guacd and guac-web services. I don't believe the issue is with NGINX since the configuration matches that of @enzok.\r\n\r\nAlso I don't have a guacd.conf file in /etc:\r\n\r\n```\r\nroot@userver:~$ find / -type f -name \"*guacd.conf*\"\r\n/tmp/guacamole-1.5.0_builded/usr/local/share/man/man5/guacd.conf.5\r\n/tmp/guac-build/guacamole-server-1.5.0/src/guacd/man/guacd.conf.5.in\r\n/tmp/guac-build/guacamole-server-1.5.0/src/guacd/man/guacd.conf.5\r\n/usr/local/share/man/man5/guacd.conf.5\r\n```\r\n\nComment: Guac-web is not listening on 8000 and won't serve the session. \r\nNginx will proxy to localhost:8008/guac if its working properly. \nComment: I understand that Guac-web is listening on port 8008 on the localhost, but I opened a session on port 8000 because I configured NGINX to proxy it to port 8008, isn't that correct?\nComment: No. It's based on the path /guac goes to 8008 over and / goes to 8000.\r\n\r\nOn Wed, May 10, 2023 at 1:26 PM Mario Romeo L\u00e1zaro ***@***.***>\r\nwrote:\r\n\r\n> I understand that Guac-web is listening on port 8008 on the localhost, but\r\n> I opened a session on port 8000 because I configured NGINX to proxy it to\r\n> port 8008, isn't that correct?\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/1508#issuecomment-1542562053>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AB3X3YFWOV4R6AZFGJS3WFLXFPFVRANCNFSM6AAAAAAXXQYFYE>\r\n> .\r\n> You are receiving this because you were mentioned.Message ID:\r\n> ***@***.***>\r\n>\r\n\r\n\nComment: Sorry, I didn't explain myself properly. I have nginx translating MYSERVER_IP:8000 to localhost:8000 for / and to localhost:8008 for /guac. I use port 8000 with two IPs --> MYSERVER_IP and localhost.\r\n\r\nWhat I meant to say is that when I make a connection to MYSERVER_IP:8000/guac, it seems that the web socket is not being opened (I say this because of the absence of logs), while when I use the web socket extension, a connection is established. It could be that the browser is blocking the web socket connection that is being attempted to be opened from MYSERVER_IP:8000/guac (I have tried with Edge and Mozilla and it doesn't work on either).\r\n\r\n> No. It's based on the path /guac goes to 8008 over and / goes to 8000.\r\n> On Wed, May 10, 2023 at 1:26 PM Mario Romeo L\u00e1zaro ***@***.***> wrote: I understand that Guac-web is listening on port 8008 on the localhost, but I opened a session on port 8000 because I configured NGINX to proxy it to port 8008, isn't that correct? \u2014 Reply to this email directly, view it on GitHub <[#1508 (comment)](https://github.com/kevoreilly/CAPEv2/issues/1508#issuecomment-1542562053)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AB3X3YFWOV4R6AZFGJS3WFLXFPFVRANCNFSM6AAAAAAXXQYFYE> . You are receiving this because you were mentioned.Message ID: ***@***.***>\r\n> -- Lorenzo \u201cHappiness is not the absence of problems, but the ability to deal with them.\" - Albert Einstein\r\n\r\n\nComment: Set the nginx error log to debug and see if there's anything there.\r\n\r\nI would tackle it like so:\r\n\r\n1. verify the request is getting to the guac-web server listening on 8008\r\n2. verify the request to guacamole js client is being generated (you can set a break point in guac-main.js)\r\n3. verify the js client connection is being being made to guacd server\r\n\r\nI would also try changing cape-web service to 8001 so it's not the same as your external port, and make sure that the servers are listening on the specific IP and not on 0.0.0.0\nComment: I no longer have a blank screen and can use the interactive session. The problem was that from the web interface, a web-socket was opened to port 80 of the server, and as I had configured this port in the NGINX proxy I use without specifying it, no response was obtained.\r\nI just had to change the configuration on the nginx port 80 and it works:\r\n```\r\nserver {\r\n        listen 80 \r\n        server_name _;\r\n\r\n        location / {\r\n                try_files $uri $uri/ =404;\r\n        }\r\n        location /guac {\r\n                proxy_pass http://nodeserver2;\r\n                proxy_set_header Host $host;\r\n                proxy_set_header X-Real-IP $remote_addr;\r\n                proxy_buffering off;\r\n                proxy_http_version 1.1;\r\n                proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;\r\n                proxy_set_header Upgrade $http_upgrade;\r\n                proxy_set_header Connection $http_connection;\r\n                client_max_body_size 1g;\r\n        }\r\n        location /guac/playback/recfile {\r\n                alias /var/www/guacrecordings/;\r\n                autoindex on;\r\n                autoindex_exact_size off;\r\n                autoindex_localtime on;\r\n        }\r\n}\r\n```\r\n\r\nIt still logging this error, but I just want to interact with the sandbox meanwhile the analysis was being done.\r\n\r\n```\r\nMay 11 13:24:29 userv guacd[438596]: Creation of recording failed: Permission denied\r\nMay 11 13:24:29 userv guacd[438596]: guacd[438596]: ERROR:        Creation of recording failed: Permission denied\r\n```\r\n\r\nThanks @enzok @doomedraven !\nComment: Oh is what i was thinking, permission is probably about save recordings?\n\nEl jue, 11 may 2023 15:38, Mario Romeo L\u00e1zaro ***@***.***>\nescribi\u00f3:\n\n> I no longer have a blank screen and can use the interactive session. The\n> problem was that from the web interface, a web-socket was opened to port 80\n> of the server, and as I had configured this port in the NGINX proxy I use\n> without specifying it, no response was obtained.\n> I just had to change the configuration on the nginx port 80 and it works:\n>\n> server {\n>         listen 80\n>         server_name _;\n>\n>         location / {\n>                 try_files $uri $uri/ =404;\n>         }\n>         location /guac {\n>                 proxy_pass http://nodeserver2;\n>                 proxy_set_header Host $host;\n>                 proxy_set_header X-Real-IP $remote_addr;\n>                 proxy_buffering off;\n>                 proxy_http_version 1.1;\n>                 proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;\n>                 proxy_set_header Upgrade $http_upgrade;\n>                 proxy_set_header Connection $http_connection;\n>                 client_max_body_size 1g;\n>         }\n>         location /guac/playback/recfile {\n>                 alias /var/www/guacrecordings/;\n>                 autoindex on;\n>                 autoindex_exact_size off;\n>                 autoindex_localtime on;\n>         }\n> }\n>\n> It still logging this error, but I just want to interact with the sandbox\n> meanwhile the analysis was being done.\n>\n> May 11 13:24:29 userv guacd[438596]: Creation of recording failed: Permission denied\n> May 11 13:24:29 userv guacd[438596]: guacd[438596]: ERROR:        Creation of recording failed: Permission denied\n>\n> Thanks @enzok <https://github.com/enzok> @doomedraven\n> <https://github.com/doomedraven> !\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1508#issuecomment-1544023447>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH36SWZZER22WCUE6T5LXFTTWXANCNFSM6AAAAAAXXQYFYE>\n> .\n> You are receiving this because you were mentioned.Message ID:\n> ***@***.***>\n>\n\nComment: > Oh is what i was thinking, permission is probably about save recordings? El jue, 11 may 2023 15:38, Mario Romeo L\u00e1zaro ***@***.***> escribi\u00f3:\r\n> [\u2026](#)\r\n> I no longer have a blank screen and can use the interactive session. The problem was that from the web interface, a web-socket was opened to port 80 of the server, and as I had configured this port in the NGINX proxy I use without specifying it, no response was obtained. I just had to change the configuration on the nginx port 80 and it works: server { listen 80 server_name _; location / { try_files $uri $uri/ =404; } location /guac { proxy_pass http://nodeserver2; proxy_set_header Host $host; proxy_set_header X-Real-IP $remote_addr; proxy_buffering off; proxy_http_version 1.1; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_set_header Upgrade $http_upgrade; proxy_set_header Connection $http_connection; client_max_body_size 1g; } location /guac/playback/recfile { alias /var/www/guacrecordings/; autoindex on; autoindex_exact_size off; autoindex_localtime on; } } It still logging this error, but I just want to interact with the sandbox meanwhile the analysis was being done. May 11 13:24:29 userv guacd[438596]: Creation of recording failed: Permission denied May 11 13:24:29 userv guacd[438596]: guacd[438596]: ERROR: Creation of recording failed: Permission denied Thanks @enzok <https://github.com/enzok> @doomedraven <https://github.com/doomedraven> ! \u2014 Reply to this email directly, view it on GitHub <[#1508 (comment)](https://github.com/kevoreilly/CAPEv2/issues/1508#issuecomment-1544023447)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAOFH36SWZZER22WCUE6T5LXFTTWXANCNFSM6AAAAAAXXQYFYE> . You are receiving this because you were mentioned.Message ID: ***@***.***>\r\n\r\nI think so\nComment: ok so if you would like to use a non-standard server port you can test this:\r\n\r\nin guac-main.js:\r\n\r\nreplace \r\n\r\n        var prot_map = {\r\n            \"http:\":  \"ws:\",\r\n            \"https:\": \"wss:\",\r\n        }\r\n        var terminal_ws_url = prot_map[location.protocol] + '//' + location.hostname;\r\n        \r\nwith\r\n\r\n     var terminal_ws_url = location.origin.replace(/^http(s?):/, function(match, p1) {return (p1 ? 'wss:' : 'ws:');});\r\n     \r\nif this works I can PR it.\nComment: one important note. at least that happens to me \r\n\r\n```\r\nnginx -V\r\nnginx version: nginx/1.23.4 (nginx-quic-def8e398d7c5)\r\n```\r\n\r\nso solution for me is:\r\n1. test on port 80. if it works then you fine to go TLS/SSL if you want\r\n2. ensure the config load. before at least we always was putting it in `sites-enabled`, but now i had to put it in `config.d/default`\nComment: https://github.com/kevoreilly/CAPEv2/pull/1514\r\n\r\n\nComment: ok i just tested everything, both works http/https, the problem was with nginx problem. so once nginx is properly listening on 80 or 443. It works just fine\nComment: @MarioRL0 did you solve it?\nComment: Yes, I can interact with the analysis, which was the main issue. Thanks both @doomedraven @enzok. \nComment: Glad to hear that, even i did learn things here. Let us know if there is any other issue\nComment: Hello, \r\n\r\nI've news about this issue. In my case I've configured a DNS entry to reach the CAPE.  If I open the interactive session using the IP instead the DNS name it works correctly. \r\n\r\nI think @enzok  & @MarioRL0 uses cape through IP instead of DNS name \r\n\r\nI use Firefox and sometimes Chrome.\r\n\r\nHere, I paste the error thown by guac-web when I reach the interactive using DNS name:\r\n\r\n```\r\n/opt/CAPEv2/web$ poetry run python3 manage.py runserver --settings=web.guac_settings localhost:8008\r\nPerforming system checks...\r\n\r\nSystem check identified no issues (0 silenced).\r\nMay 12, 2023 - 08:51:03\r\nDjango version 4.1.7, using settings 'web.guac_settings'\r\nStarting ASGI/Channels version 3.0.5 development server at http://localhost:8008/\r\nQuit the server with CONTROL-C.\r\n\r\n\r\n\r\n\r\n\r\nERROR:daphne.server:Exception inside application: Model class django.contrib.sessions.models.Session doesn't declare an explicit app_label and isn't in an application in INSTALLED_APPS.\r\nTraceback (most recent call last):\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/contrib/sessions/backends/base.py\", line 187, in _get_session\r\n    return self._session_cache\r\nAttributeError: 'SessionStore' object has no attribute '_session_cache'\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/contrib/sessions/backends/db.py\", line 32, in _get_session_from_db\r\n    return self.model.objects.get(\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/utils/functional.py\", line 57, in __get__\r\n    res = instance.__dict__[self.name] = self.func(instance)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/contrib/sessions/backends/db.py\", line 28, in model\r\n    return self.get_model_class()\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/contrib/sessions/backends/db.py\", line 22, in get_model_class\r\n    from django.contrib.sessions.models import Session\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/contrib/sessions/models.py\", line 8, in <module>\r\n    class Session(AbstractBaseSession):\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/models/base.py\", line 132, in __new__\r\n    raise RuntimeError(\r\nRuntimeError: Model class django.contrib.sessions.models.Session doesn't declare an explicit app_label and isn't in an application in INSTALLED_APPS.\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/channels/staticfiles.py\", line 44, in __call__\r\n    return await self.application(scope, receive, send)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/channels/routing.py\", line 71, in __call__\r\n    return await application(scope, receive, send)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/channels/sessions.py\", line 47, in __call__\r\n    return await self.inner(dict(scope, cookies=cookies), receive, send)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/channels/sessions.py\", line 263, in __call__\r\n    return await self.inner(wrapper.scope, receive, wrapper.send)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/channels/auth.py\", line 183, in __call__\r\n    await self.resolve_scope(scope)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/channels/auth.py\", line 176, in resolve_scope\r\n    scope[\"user\"]._wrapped = await get_user(scope)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/asgiref/sync.py\", line 448, in __call__\r\n    ret = await asyncio.wait_for(future, timeout=None)\r\n  File \"/usr/lib/python3.10/asyncio/tasks.py\", line 408, in wait_for\r\n    return await fut\r\n  File \"/usr/lib/python3.10/concurrent/futures/thread.py\", line 58, in run\r\n    result = self.fn(*self.args, **self.kwargs)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/channels/db.py\", line 13, in thread_handler\r\n    return super().thread_handler(loop, *args, **kwargs)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/asgiref/sync.py\", line 490, in thread_handler\r\n    return func(*args, **kwargs)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/channels/auth.py\", line 38, in get_user\r\n    user_id = _get_user_session_key(session)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/channels/auth.py\", line 145, in _get_user_session_key\r\n    return get_user_model()._meta.pk.to_python(session[SESSION_KEY])\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/utils/functional.py\", line 268, in inner\r\n    return func(_wrapped, *args)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/contrib/sessions/backends/base.py\", line 53, in __getitem__\r\n    return self._session[key]\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/contrib/sessions/backends/base.py\", line 192, in _get_session\r\n    self._session_cache = self.load()\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/contrib/sessions/backends/db.py\", line 42, in load\r\n    s = self._get_session_from_db()\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/contrib/sessions/backends/db.py\", line 35, in _get_session_from_db\r\n    except (self.model.DoesNotExist, SuspiciousOperation) as e:\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/utils/functional.py\", line 57, in __get__\r\n    res = instance.__dict__[self.name] = self.func(instance)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/contrib/sessions/backends/db.py\", line 28, in model\r\n    return self.get_model_class()\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/contrib/sessions/backends/db.py\", line 22, in get_model_class\r\n    from django.contrib.sessions.models import Session\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/contrib/sessions/models.py\", line 8, in <module>\r\n    class Session(AbstractBaseSession):\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/django/db/models/base.py\", line 132, in __new__\r\n    raise RuntimeError(\r\nRuntimeError: Model class django.contrib.sessions.models.Session doesn't declare an explicit app_label and isn't in an application in INSTALLED_APPS.\r\n\r\n```\r\n\r\nBut if I reach it using IP It works fine: \r\n\r\nClient connected with guacd server (localhost, 4822, 20)\r\nINFO:guacamole:Client connected with guacd server (localhost, 4822, 20)\r\n\r\n\r\n![imagen](https://github.com/kevoreilly/CAPEv2/assets/89637300/6b464fdf-0f2d-4681-b286-8c6e68e66300)\r\n\r\nAnd If look for the guacd logs, they are fine:\r\n\r\n```\r\n\r\nguacd[670453]: INFO:\tCreating new client for protocol \"vnc\"\r\nguacd[670453]: INFO:\tConnection ID is \"$1267d166-9d15-4943-866c-cc545256194c\"\r\nguacd[677573]: DEBUG:\tProcessing instruction: size\r\nguacd[677573]: DEBUG:\tProcessing instruction: audio\r\nguacd[677573]: DEBUG:\tProcessing instruction: video\r\nguacd[677573]: DEBUG:\tProcessing instruction: image\r\nguacd[677573]: INFO:\tCursor rendering: local\r\nguacd[677573]: DEBUG:\tParameter \"swap-red-blue\" omitted. Using default value of 0.\r\nguacd[677573]: DEBUG:\tParameter \"read-only\" omitted. Using default value of 0.\r\nguacd[677573]: DEBUG:\tParameter \"color-depth\" omitted. Using default value of 0.\r\nguacd[677573]: DEBUG:\tParameter \"force-lossless\" omitted. Using default value of 0.\r\nguacd[677573]: DEBUG:\tParameter \"dest-port\" omitted. Using default value of 0.\r\nguacd[677573]: DEBUG:\tParameter \"encodings\" omitted. Using default value of \"zrle ultra copyrect hextile zlib corre rre raw\".\r\nguacd[677573]: DEBUG:\tParameter \"autoretry\" omitted. Using default value of 0.\r\nguacd[677573]: DEBUG:\tParameter \"reverse-connect\" omitted. Using default value of 0.\r\nguacd[677573]: DEBUG:\tParameter \"listen-timeout\" omitted. Using default value of 5000.\r\nguacd[677573]: DEBUG:\tParameter \"enable-audio\" omitted. Using default value of 0.\r\nguacd[677573]: DEBUG:\tParameter \"enable-sftp\" omitted. Using default value of 0.\r\nguacd[677573]: DEBUG:\tParameter \"sftp-hostname\" omitted. Using default value of \"localhost\".\r\nguacd[677573]: DEBUG:\tParameter \"sftp-port\" omitted. Using default value of \"22\".\r\nguacd[677573]: DEBUG:\tParameter \"sftp-username\" omitted. Using default value of \"\".\r\nguacd[677573]: DEBUG:\tParameter \"sftp-password\" omitted. Using default value of \"\".\r\nguacd[677573]: DEBUG:\tParameter \"sftp-passphrase\" omitted. Using default value of \"\".\r\nguacd[677573]: DEBUG:\tParameter \"sftp-root-directory\" omitted. Using default value of \"/\".\r\nguacd[677573]: DEBUG:\tParameter \"sftp-server-alive-interval\" omitted. Using default value of 0.\r\nguacd[677573]: DEBUG:\tParameter \"sftp-disable-download\" omitted. Using default value of 0.\r\nguacd[677573]: DEBUG:\tParameter \"sftp-disable-upload\" omitted. Using default value of 0.\r\nguacd[677573]: DEBUG:\tParameter \"recording-exclude-output\" omitted. Using default value of 0.\r\nguacd[677573]: DEBUG:\tParameter \"recording-exclude-mouse\" omitted. Using default value of 0.\r\nguacd[677573]: DEBUG:\tParameter \"recording-include-keys\" omitted. Using default value of 0.\r\nguacd[677573]: DEBUG:\tParameter \"create-recording-path\" omitted. Using default value of 0.\r\nguacd[677573]: DEBUG:\tParameter \"disable-copy\" omitted. Using default value of 0.\r\nguacd[677573]: DEBUG:\tParameter \"disable-paste\" omitted. Using default value of 0.\r\nguacd[677573]: DEBUG:\tParameter \"wol-send-packet\" omitted. Using default value of 0.\r\nguacd[677573]: INFO:\tUser \"@9498c119-1c1e-484e-824d-ac7dc4e57dba\" joined connection \"$1267d166-9d15-4943-866c-cc545256194c\" (1 users now present)\r\nguacd[677573]: DEBUG:\tClient has not defined its protocol version.\r\nguacd[677573]: INFO:\tRecording of session will be saved to \"/opt/CAPEv2/storage/guacrecordings/287_d60c0f3602073506.2\".\r\nguacd[677573]: DEBUG:\tHandler not found for \"\"\r\n\r\n```\r\n\nComment: I have an instance running that uses domain name without issue. This is likely related to your nginx configuration. \nComment: thanks @enzok I'll review all config files in the installation and I'll comment if I find the problem.\r\n\r\nI think I'll follow the recommended steps from @doomedraven: \r\n\r\nCheck if it works in HTTP without TLS and later if it works correctly, activate it. ",
+  "Title: Vba2graph Fixed VBA2GRAPH integration\nBody: After some digging and debugging found out that the vba2graph.py integration was deleted, It used to be in `lib/cuckoo/common/office/vba2graph.py` and was deleted in a commit, could not find the exact commit however.\r\n\r\nI have tested it with the following file: `sha256:5b81f8f1208d2dfccb4dd6946102b61ad8f220c7b1c0a80f7be3ca23e6e59b3e`\nComment: hm nice spot, thank you\nComment: i have merged this to staging branch",
+  "Title: sample submission shows error \" TypeError: 'NoneType' object is not iterable\"\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [yes ] I am running the latest version\r\n- [ yes ] I did read the README! \r\n- I read README completely but didnot get solution\r\n- [ yes] I checked the documentation and found no answer\r\n- [ yes] I checked to make sure that this issue has not already been filed\r\n- This issue is filed by someone else but he didnot provide complete information about error due to which you guys were unable to ans.\r\n- [yes ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ yes] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\r\n\r\nI'm expectiing that when I should submit a sample file cape should process it and provide me a analysis report but when i submit a sample I get error \"**TypeError: 'NoneType' object is not iterable**\" \r\n\r\n**when we click on error it shows details like this** \r\n\r\n**\"\"\" File \"/opt/CAPEv2/web/submission/views.py\", line 396, in index\r\n\r\n                if status == \"error\":\r\n\r\n                    details[\"errors\"].append({os.path.basename(path): task_ids_tmp})\r\n\r\n                else:\r\n\r\n                    if web_conf.general.get(\"existent_tasks\", False):\r\n\r\n                        records = perform_search(\"target_sha256\", sha256, search_limit=5)\r\n\r\n                        for record in records:\r\n\r\n                            if record.get(\"target\").get(\"file\", {}).get(\"sha256\"):\r\n\r\n                                existent_tasks.setdefault(record[\"target\"][\"file\"][\"sha256\"], []).append(record)\r\n\r\n                    details[\"task_ids\"] = task_ids_tmp\r\n\r\n  [Open an interactive python shell in this frame] \r\n\r\n        elif task_category == \"static\":**\r\n\r\n\r\n\r\n\r\n\"\"\r\n\r\ni'll also share its screenshot . but i back end terminal cape shows that sample is running on guest machine. \r\nin terminal it shows that sample is submitted also do processing and shows report but when i go to web interface it shows nothing. \r\n\r\nin recent tab it shows that task is report but when i click on it for anlaysis report it shows error\r\n\r\n \"**ERROR :-(\r\nThe specified analysis does not exist or not finished yet \"** \r\n\r\ni want solution please help me out in this I'll be very thankful to you  \r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\nwhen i submit sample file i get an error **TypeError: 'NoneType' object is not iterable**\" \r\n  \r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. step 1\r\n2. step 2\r\n3. you get it...\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | **Ubuntu 22.04 as host** , **Windows 10 as analysis machine**\r\n\r\n## Failure Logs\r\n\r\n2023-05-05 06:49:15,652 [lib.cuckoo.core.scheduler] INFO: Using \"kvm\" machine manager with max_analysis_count=10, max_machines_count=5, and max_vmstartup_count=5\r\n2023-05-05 06:49:15,676 [lib.cuckoo.common.abstracts] DEBUG: Getting status for win10\r\n2023-05-05 06:49:15,689 [lib.cuckoo.core.scheduler] INFO: Loaded 1 machine/s\r\n2023-05-05 06:49:15,696 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks\r\n2023-05-05 06:54:10,943 [lib.cuckoo.core.scheduler] DEBUG: Task #4: Processing task\r\n2023-05-05 06:54:11,016 [lib.cuckoo.core.scheduler] INFO: Task #4: File already exists at '/opt/CAPEv2/storage/binaries/20c96b7d59f0c3cfaf7d4d712a8b7defb21d901dd53c910e27fdef15e85b0836'\r\n2023-05-05 06:54:11,017 [lib.cuckoo.core.scheduler] INFO: Task #4: **Starting analysis of FILE '/tmp/cuckoo-sflock/tmpw_v6pkh7/20c96b7d59f0c3cfaf7d.exe'\r\n2023-05-05 06:54:11,030 [lib.cuckoo.core.scheduler] INFO: Task #4: acquir**ed machine win10 (label=win10, arch=x64, platform=windows)\r\n2023-05-05 06:54:11,073 [lib.cuckoo.core.resultserver] DEBUG: Task #4: The associated machine IP is 192.168.122.100\r\n2023-05-05 06:54:11,135 [lib.cuckoo.common.abstracts] DEBUG: Starting machine win10\r\n2023-05-05 06:54:11,136 [lib.cuckoo.common.abstracts] DEBUG: Getting status for win10\r\n2023-05-05 06:54:11,172 [lib.cuckoo.common.abstracts] DEBUG: Using snapshot snapshot2 for virtual machine win10\r\n2023-05-05 06:54:34,914 [lib.cuckoo.common.abstracts] DEBUG: Getting status for win10\r\n2023-05-05 06:54:35,123 [lib.cuckoo.core.scheduler] INFO: Enabled route 'internet'.\r\n2023-05-05 06:54:35,173 [modules.auxiliary.sniffer] **ERROR: Tcpdump does not exist at path \"/usr/sbin/tcpdump\", network capture aborted**\r\n2023-05-05 06:54:35,174 [lib.cuckoo.core.plugins] DEBUG: Started auxiliary module: Sniffer\r\n2023-05-05 06:54:35,192 [lib.cuckoo.core.guest] INFO: Task #4: Starting analysis on guest (id=win10, ip=192.168.122.100)\r\n2023-05-05 06:54:35,539 [lib.cuckoo.core.guest] INFO: Task #4: Guest is running CAPE Agent 0.11 (id=win10, ip=192.168.122.100)\r\n2023-05-05 06:54:37,853 [lib.cuckoo.core.guest] DEBUG: Task #4: Uploading analyzer to guest (id=win10, ip=192.168.122.100, size=26822422)\r\n2023-05-05 06:54:58,210 [lib.cuckoo.core.guest] INFO: Task #4: Uploading support files to guest (id=win10, ip=192.168.122.100)\r\n2023-05-05 06:54:58,210 [lib.cuckoo.core.guest] INFO: Task #4: Uploading script files to guest (id=win10, ip=192.168.122.100)\r\n2023-05-05 06:55:03,514 [lib.cuckoo.core.guest] DEBUG: Task #4: Analysis is still running (id=win10, ip=192.168.122.100)\r\n2023-05-05 06:55:04,339 [lib.cuckoo.core.resultserver] DEBUG: Task #4: live log analysis.log initialized\r\n2023-05-05 06:55:08,579 [lib.cuckoo.core.guest] DEBUG: Task #4: Analysis is still running (id=win10, ip=192.168.122.100)\r\n2023-05-05 06:55:10,842 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file aux/DigiSig.json\r\n2023-05-05 06:55:10,845 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file aux/DigiSig.json of length: 116\r\n2023-05-05 06:55:12,489 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file aux/usage.log\r\n2023-05-05 06:55:12,489 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file aux/usage.log of length: 0\r\n2023-05-05 06:55:13,645 [lib.cuckoo.core.guest] DEBUG: Task #4: Analysis is still running (id=win10, ip=192.168.122.100)\r\n2023-05-05 06:55:14,731 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0001.jpg\r\n2023-05-05 06:55:14,795 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0001.jpg of length: 167195\r\n2023-05-05 06:55:15,936 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0002.jpg\r\n2023-05-05 06:55:15,963 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0002.jpg of length: 168973\r\n2023-05-05 06:55:17,036 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0003.jpg\r\n2023-05-05 06:55:17,181 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0003.jpg of length: 154038\r\n2023-05-05 06:55:18,420 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0004.jpg\r\n2023-05-05 06:55:18,448 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0004.jpg of length: 169234\r\n2023-05-05 06:55:18,699 [lib.cuckoo.core.guest] DEBUG: Task #4: Analysis is still running (id=win10, ip=192.168.122.100)\r\n2023-05-05 06:55:23,775 [lib.cuckoo.core.guest] DEBUG: Task #4: Analysis is still running (id=win10, ip=192.168.122.100)\r\n2023-05-05 06:55:28,820 [lib.cuckoo.core.guest] DEBUG: Task #4: Analysis is still running (id=win10, ip=192.168.122.100)\r\n2023-05-05 06:55:33,864 [lib.cuckoo.core.guest] DEBUG: Task #4: Analysis is still running (id=win10, ip=192.168.122.100)\r\n2023-05-05 06:55:38,927 [lib.cuckoo.core.guest] DEBUG: Task #4: Analysis is still running (id=win10, ip=192.168.122.100)\r\n2023-05-05 06:55:44,091 [lib.cuckoo.core.guest] DEBUG: Task #4: Analysis is still running (id=win10, ip=192.168.122.100)\r\n2023-05-05 06:55:44,611 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0005.jpg\r\n2023-05-05 06:55:44,717 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0005.jpg of length: 169392\r\n2023-05-05 06:55:49,148 [lib.cuckoo.core.guest] DEBUG: Task #4: Analysis is still running (id=win10, ip=192.168.122.100)\r\n2023-05-05 06:55:54,228 [lib.cuckoo.core.guest] DEBUG: Task #4: Analysis is still running (id=win10, ip=192.168.122.100)\r\n2023-05-05 06:55:56,939 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0006.jpg\r\n2023-05-05 06:55:56,988 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0006.jpg of length: 121532\r\n2023-05-05 06:55:58,115 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0007.jpg\r\n2023-05-05 06:55:58,193 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0007.jpg of length: 116828\r\n2023-05-05 06:55:59,272 [lib.cuckoo.core.guest] DEBUG: Task #4: Analysis is still running (id=win10, ip=192.168.122.100)\r\n2023-05-05 06:55:59,777 [lib.cuckoo.core.resultserver] DEBUG: Task #4 is sending a BSON stream for pid 7044\r\n2023-05-05 06:56:00,432 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0008.jpg\r\n2023-05-05 06:56:00,515 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0008.jpg of length: 147436\r\n2023-05-05 06:56:01,674 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0009.jpg\r\n2023-05-05 06:56:01,726 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0009.jpg of length: 160631\r\n2023-05-05 06:56:02,845 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0010.jpg\r\n2023-05-05 06:56:02,877 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0010.jpg of length: 148913\r\n2023-05-05 06:56:03,067 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file CAPE/30d9396e4f7d59aba9a79f0827c0316612f2519442685d9e1e6ccc5c1843ad2e\r\n2023-05-05 06:56:03,070 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file CAPE/30d9396e4f7d59aba9a79f0827c0316612f2519442685d9e1e6ccc5c1843ad2e of length: 47\r\n2023-05-05 06:56:03,690 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file CAPE/de11664d22faf336380af6c0fc248edd41165cbb64fb1d02c765c8d07069bd64\r\n2023-05-05 06:56:03,698 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file CAPE/de11664d22faf336380af6c0fc248edd41165cbb64fb1d02c765c8d07069bd64 of length: 28354\r\n2023-05-05 06:56:04,103 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0011.jpg\r\n2023-05-05 06:56:04,159 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0011.jpg of length: 192403\r\n2023-05-05 06:56:04,394 [lib.cuckoo.core.guest] DEBUG: Task #4: Analysis is still running (id=win10, ip=192.168.122.100)\r\n2023-05-05 06:56:05,344 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0012.jpg\r\n2023-05-05 06:56:05,533 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0012.jpg of length: 177074\r\n2023-05-05 06:56:05,615 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file CAPE/d969a386c474f3c765c7ea6458554c4ef60496eebd0be5a3f8c2896d7724e4d9\r\n2023-05-05 06:56:05,618 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file CAPE/d969a386c474f3c765c7ea6458554c4ef60496eebd0be5a3f8c2896d7724e4d9 of length: 139\r\n2023-05-05 06:56:05,809 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file CAPE/a82ad8d4b2e000aa2c25b071ddb73d2fcf8f3aa1bda9f81dc74300a02ea31789\r\n2023-05-05 06:56:05,815 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file CAPE/a82ad8d4b2e000aa2c25b071ddb73d2fcf8f3aa1bda9f81dc74300a02ea31789 of length: 12232\r\n2023-05-05 06:56:06,399 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file CAPE/869bdab0a7fd8975a959be403c846487981e4cda83d845e7edb592e38b5d7ea7\r\n2023-05-05 06:56:06,405 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file CAPE/869bdab0a7fd8975a959be403c846487981e4cda83d845e7edb592e38b5d7ea7 of length: 3092\r\n2023-05-05 06:56:06,761 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0013.jpg\r\n2023-05-05 06:56:06,821 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0013.jpg of length: 192892\r\n2023-05-05 06:56:08,098 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0014.jpg\r\n2023-05-05 06:56:08,166 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0014.jpg of length: 182792\r\n2023-05-05 06:56:08,468 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file CAPE/19d6c05433a446d8529639ff398674d7e1bd4c985150af16898ae05ddb8f574c\r\n2023-05-05 06:56:08,469 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file CAPE/19d6c05433a446d8529639ff398674d7e1bd4c985150af16898ae05ddb8f574c of length: 267\r\n2023-05-05 06:56:08,980 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file CAPE/b2086d437110803366a739d00b4351dbabc9b8e4e61343657fa9835dcced2c2c\r\n2023-05-05 06:56:08,986 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file CAPE/b2086d437110803366a739d00b4351dbabc9b8e4e61343657fa9835dcced2c2c of length: 9243\r\n2023-05-05 06:56:09,335 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0015.jpg\r\n2023-05-05 06:56:09,377 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0015.jpg of length: 195210\r\n2023-05-05 06:56:09,445 [lib.cuckoo.core.guest] DEBUG: Task #4: Analysis is still running (id=win10, ip=192.168.122.100)\r\n2023-05-05 06:56:09,582 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file CAPE/5073b4c71f3fa49c3ba95e21f872c165dc1fdbb839b09d25046d6c00c62e1c06\r\n2023-05-05 06:56:09,583 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file CAPE/5073b4c71f3fa49c3ba95e21f872c165dc1fdbb839b09d25046d6c00c62e1c06 of length: 2572\r\n2023-05-05 06:56:10,164 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file CAPE/ffbfd78261940f0175ae30e3d987e29660353b2c3503db3f8fa5901ce4886205\r\n2023-05-05 06:56:10,167 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file CAPE/ffbfd78261940f0175ae30e3d987e29660353b2c3503db3f8fa5901ce4886205 of length: 302\r\n2023-05-05 06:56:10,539 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0016.jpg\r\n2023-05-05 06:56:10,600 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0016.jpg of length: 202812\r\n2023-05-05 06:56:10,903 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file CAPE/c90bfb000e0df8edee7800e7e57fe83aece0cbd011a54c75eed4aa22a02e616e\r\n2023-05-05 06:56:10,909 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file CAPE/c90bfb000e0df8edee7800e7e57fe83aece0cbd011a54c75eed4aa22a02e616e of length: 5129\r\n2023-05-05 06:56:11,655 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0017.jpg\r\n2023-05-05 06:56:11,711 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0017.jpg of length: 203719\r\n2023-05-05 06:56:11,877 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file CAPE/e38126f60972c67cfac44208dfc4881dead0742cf1d9f4f3377de54e3760b214\r\n2023-05-05 06:56:11,880 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file CAPE/e38126f60972c67cfac44208dfc4881dead0742cf1d9f4f3377de54e3760b214 of length: 38770\r\n2023-05-05 06:56:11,942 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file CAPE/9ee0f8cbdc5c8fbf251454f19064cf0b17c23c8996b58855b6510ff71e16963e\r\n2023-05-05 06:56:11,948 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file CAPE/9ee0f8cbdc5c8fbf251454f19064cf0b17c23c8996b58855b6510ff71e16963e of length: 1165\r\n2023-05-05 06:56:12,961 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0018.jpg\r\n2023-05-05 06:56:13,092 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0018.jpg of length: 192751\r\n2023-05-05 06:56:13,515 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file CAPE/ec480dd6f1be618dba816e03298691a37016cfdc060d86a5a97f8824f6935b08\r\n2023-05-05 06:56:13,518 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file CAPE/ec480dd6f1be618dba816e03298691a37016cfdc060d86a5a97f8824f6935b08 of length: 1823\r\n2023-05-05 06:56:14,207 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0019.jpg\r\n2023-05-05 06:56:14,312 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0019.jpg of length: 202266\r\n2023-05-05 06:56:14,364 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file CAPE/f54800a26d4b5b5e8dba0d3a35afa7678f6bb465dc73d3fce666f05de4e7ca82\r\n2023-05-05 06:56:14,367 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file CAPE/f54800a26d4b5b5e8dba0d3a35afa7678f6bb465dc73d3fce666f05de4e7ca82 of length: 559\r\n2023-05-05 06:56:14,592 [lib.cuckoo.core.guest] DEBUG: Task #4: Analysis is still running (id=win10, ip=192.168.122.100)\r\n2023-05-05 06:56:15,422 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0020.jpg\r\n2023-05-05 06:56:15,520 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0020.jpg of length: 192751\r\n2023-05-05 06:56:16,105 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file CAPE/c23ef247acdfa2a865389eee031da8e7dc496f7ce84a83de4f4d35d88e7c3953\r\n2023-05-05 06:56:16,106 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file CAPE/c23ef247acdfa2a865389eee031da8e7dc496f7ce84a83de4f4d35d88e7c3953 of length: 1297\r\n2023-05-05 06:56:16,640 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0021.jpg\r\n2023-05-05 06:56:16,828 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0021.jpg of length: 187803\r\n2023-05-05 06:56:17,977 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0022.jpg\r\n2023-05-05 06:56:18,047 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0022.jpg of length: 191929\r\n2023-05-05 06:56:19,170 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file CAPE/c7f13332e1e31f29216476567a151e3944abf5ce0e8297466420d26de183f02a\r\n![Screenshot from 2023-05-05 06-59-07](https://user-images.githubusercontent.com/113498180/236398372-5781f8ae-e65b-4d64-85a4-2d8d796b5488.png)\r\n![Screenshot from 2023-05-05 06-58-45](https://user-images.githubusercontent.com/113498180/236398393-9f0e30c2-67bc-42c8-9aef-a45522bf6ac7.png)\r\n![Screenshot from 2023-05-05 06-55-32](https://user-images.githubusercontent.com/113498180/236398395-3b72910c-d5ae-4356-ad41-c641fa563f4d.png)\r\n![Screenshot from 2023-05-05 06-55-01](https://user-images.githubusercontent.com/113498180/236398398-a2c558d0-4245-4e14-b4da-679588be829c.png)\r\n![Screenshot from 2023-05-05 06-53-51](https://user-images.githubusercontent.com/113498180/236398402-49cdc972-394d-44af-8060-d655d6c821ec.png)\r\n![Screenshot from 2023-05-05 06-53-09](https://user-images.githubusercontent.com/113498180/236398407-e640d0b0-87b4-4545-948f-00d2efcff98b.png)\r\n2023-05-05 06:56:19,177 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file CAPE/c7f13332e1e31f29216476567a151e3944abf5ce0e8297466420d26de183f02a of length: 11300\r\n2023-05-05 06:56:19,240 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0023.jpg\r\n2023-05-05 06:56:19,267 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0023.jpg of length: 178507\r\n2023-05-05 06:56:19,677 [lib.cuckoo.core.guest] DEBUG: Task #4: Analysis is still running (id=win10, ip=192.168.122.100)\r\n2023-05-05 06:56:20,384 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0024.jpg\r\n2023-05-05 06:56:20,419 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0024.jpg of length: 184976\r\n2023-05-05 06:56:24,722 [lib.cuckoo.core.guest] DEBUG: Task #4: Analysis is still running (id=win10, ip=192.168.122.100)\r\n2023-05-05 06:56:29,389 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0025.jpg\r\n2023-05-05 06:56:29,450 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0025.jpg of length: 184822\r\n2023-05-05 06:56:29,770 [lib.cuckoo.core.guest] DEBUG: Task #4: Analysis is still running (id=win10, ip=192.168.122.100)\r\n2023-05-05 06:56:34,911 [lib.cuckoo.core.guest] DEBUG: Task #4: Analysis is still running (id=win10, ip=192.168.122.100)\r\n2023-05-05 06:56:40,044 [lib.cuckoo.core.guest] DEBUG: Task #4: Analysis is still running (id=win10, ip=192.168.122.100)\r\n2023-05-05 06:56:45,095 [lib.cuckoo.core.guest] DEBUG: Task #4: Analysis is still running (id=win10, ip=192.168.122.100)\r\n2023-05-05 06:56:50,170 [lib.cuckoo.core.guest] DEBUG: Task #4: Analysis is still running (id=win10, ip=192.168.122.100)\r\n2023-05-05 06:56:51,083 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file CAPE/ea9e39764862ee27d72e9aee10e8bbc48f80c882114fd2be4e877625dece22dd\r\n2023-05-05 06:56:51,085 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file CAPE/ea9e39764862ee27d72e9aee10e8bbc48f80c882114fd2be4e877625dece22dd of length: 1993\r\n2023-05-05 06:56:51,730 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0026.jpg\r\n2023-05-05 06:56:51,743 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0026.jpg of length: 187826\r\n2023-05-05 06:56:52,795 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0027.jpg\r\n2023-05-05 06:56:52,849 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0027.jpg of length: 188372\r\n2023-05-05 06:56:52,907 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file CAPE/0d93a6db6d07f31e4fc6ad66b5ca73e60539c7cb0587a0b57150470476d326d8\r\n2023-05-05 06:56:52,911 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file CAPE/0d93a6db6d07f31e4fc6ad66b5ca73e60539c7cb0587a0b57150470476d326d8 of length: 5296\r\n2023-05-05 06:56:53,321 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file CAPE/218af67f72359cd72626dd67bd8decfd64bdc700219872ea8a367e9adec4fda7\r\n2023-05-05 06:56:53,323 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file CAPE/218af67f72359cd72626dd67bd8decfd64bdc700219872ea8a367e9adec4fda7 of length: 4449\r\n2023-05-05 06:56:53,924 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0028.jpg\r\n2023-05-05 06:56:53,998 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0028.jpg of length: 188336\r\n2023-05-05 06:56:54,950 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file CAPE/505beb291d3e7ba256422c3eaed348a490ed262cc99cf00f975c8fd6cad91c14\r\n2023-05-05 06:56:54,959 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file CAPE/505beb291d3e7ba256422c3eaed348a490ed262cc99cf00f975c8fd6cad91c14 of length: 648\r\n2023-05-05 06:56:55,073 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0029.jpg\r\n2023-05-05 06:56:55,100 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0029.jpg of length: 190564\r\n2023-05-05 06:56:55,215 [lib.cuckoo.core.guest] DEBUG: Task #4: Analysis is still running (id=win10, ip=192.168.122.100)\r\n2023-05-05 06:56:55,286 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file CAPE/1708d7719d5711f84b722a475ae642d1d4a4a55fee6c7ab928b8a1391eaaedf8\r\n2023-05-05 06:56:55,292 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file CAPE/1708d7719d5711f84b722a475ae642d1d4a4a55fee6c7ab928b8a1391eaaedf8 of length: 79707\r\n2023-05-05 06:56:55,458 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file CAPE/c018e4e43582fc9ead01ef3e4d0f29407d33d6c111d74d605179c29c379dc5ac\r\n2023-05-05 06:56:55,460 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file CAPE/c018e4e43582fc9ead01ef3e4d0f29407d33d6c111d74d605179c29c379dc5ac of length: 16478\r\n2023-05-05 06:56:55,606 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file CAPE/3f521a3a874e45846610b68640d2a719736c476a6d69d4f0adc1cc58e964d7c6\r\n2023-05-05 06:56:55,608 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file CAPE/3f521a3a874e45846610b68640d2a719736c476a6d69d4f0adc1cc58e964d7c6 of length: 16\r\n2023-05-05 06:56:55,742 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file CAPE/015ee8e68c5502891441c1747d5527af856573aa3304f475ca2d2bcad54d1ab2\r\n2023-05-05 06:56:55,743 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file CAPE/015ee8e68c5502891441c1747d5527af856573aa3304f475ca2d2bcad54d1ab2 of length: 168\r\n2023-05-05 06:56:56,253 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0030.jpg\r\n2023-05-05 06:56:56,284 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0030.jpg of length: 186902\r\n2023-05-05 06:56:56,800 [lib.cuckoo.core.resultserver] DEBUG: Task #4 is sending a BSON stream for pid 3972\r\n2023-05-05 06:56:57,451 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0031.jpg\r\n2023-05-05 06:56:57,672 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0031.jpg of length: 163202\r\n2023-05-05 06:56:57,681 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file CAPE/7f2a395db9dcc38b2941e464eafb56e5529d39571be2b01e3094f15f58e6e276\r\n2023-05-05 06:56:57,687 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file CAPE/7f2a395db9dcc38b2941e464eafb56e5529d39571be2b01e3094f15f58e6e276 of length: 300\r\n2023-05-05 06:56:57,691 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file procdump/c5ab602bbbb59d81477c09ce41fd4c1cbed204ceb6d62d42894e1779e39634b8\r\n2023-05-05 06:56:57,710 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file procdump/c5ab602bbbb59d81477c09ce41fd4c1cbed204ceb6d62d42894e1779e39634b8 of length: 70656\r\n2023-05-05 06:56:58,418 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file CAPE/b175ae7d56f7603078af5bbaca562537e8d46af623974e44f8b0d00b66aaa2ac\r\n2023-05-05 06:56:58,420 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file CAPE/b175ae7d56f7603078af5bbaca562537e8d46af623974e44f8b0d00b66aaa2ac of length: 300\r\n2023-05-05 06:56:58,420 [lib.cuckoo.core.resultserver] DEBUG: Task #4: **Trying to upload file CAPE/74b2935b9dfe4ba397fd0507ae3c36abb77193041f2e7c43c55dc4e7b33de61c**\r\n2023-05-05 06:56:58,429 [lib.cuckoo.core.resultserver] DEBUG: Task #4: **Uploaded file** CAPE/74b2935b9dfe4ba397fd0507ae3c36abb77193041f2e7c43c55dc4e7b33de61c of length: 57344\r\n2023-05-05 06:56:58,777 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0032.jpg\r\n2023-05-05 06:56:58,799 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0032.jpg of length: 188758\r\n2023-05-05 06:56:58,997 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file CAPE/8038aef40e3f8eaf89a1cf7666448452249638645fec5c2a386cbb3b2fdbf7c9\r\n2023-05-05 06:56:59,011 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file CAPE/8038aef40e3f8eaf89a1cf7666448452249638645fec5c2a386cbb3b2fdbf7c9 of length: 566784\r\n2023-05-05 06:56:59,056 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file CAPE/0487dda344642d3b6005ad176dc275a3da765b1658348e949f326236360739e7\r\n2023-05-05 06:56:59,057 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file CAPE/0487dda344642d3b6005ad176dc275a3da765b1658348e949f326236360739e7 of length: 300\r\n2023-05-05 06:56:59,214 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file CAPE/cde33a5884984ad35db25a6fae524cf8c64751cc175bf671a7c16715400e97e9\r\n2023-05-05 06:56:59,272 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file CAPE/cde33a5884984ad35db25a6fae524cf8c64751cc175bf671a7c16715400e97e9 of length: 250880\r\n2023-05-05 06:56:59,324 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file CAPE/98d0cd9310f89a044bf50e1315aa59da8eb6c51765d9b7d4b331d26166a351f3\r\n2023-05-05 06:56:59,326 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file CAPE/98d0cd9310f89a044bf50e1315aa59da8eb6c51765d9b7d4b331d26166a351f3 of length: 300\r\n2023-05-05 06:56:59,470 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file CAPE/3fcc497e73cb59063a11496c79f23c8b7cfd6c3e44e1ba0cf8a360343520ae16\r\n2023-05-05 06:56:59,472 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file CAPE/3fcc497e73cb59063a11496c79f23c8b7cfd6c3e44e1ba0cf8a360343520ae16 of length: 300\r\n2023-05-05 06:56:59,781 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file CAPE/e11320ffabe59a2595bfd2e9834aa346511c1b260d97e55c2b35728ed9e3f326\r\n2023-05-05 06:56:59,784 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file CAPE/e11320ffabe59a2595bfd2e9834aa346511c1b260d97e55c2b35728ed9e3f326 of length: 300\r\n2023-05-05 06:56:59,905 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0033.jpg\r\n2023-05-05 06:57:00,020 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0033.jpg of length: 174988\r\n2023-05-05 06:57:00,281 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file CAPE/a5c3d14cea6657dbddd5dcd5dd423a0ae034ed0ad105f88c8fd134daf88063a8\r\n2023-05-05 06:57:00,287 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file CAPE/a5c3d14cea6657dbddd5dcd5dd423a0ae034ed0ad105f88c8fd134daf88063a8 of length: 300\r\n2023-05-05 06:57:00,299 [lib.cuckoo.core.guest] DEBUG: Task #4: Analysis is still running (id=win10, ip=192.168.122.100)\r\n2023-05-05 06:57:00,840 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file CAPE/f3d2e2f5e9d5513b8a665e985c666e22016c13aea4dbadc93de7918fe4ff4b11\r\n2023-05-05 06:57:00,846 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file CAPE/f3d2e2f5e9d5513b8a665e985c666e22016c13aea4dbadc93de7918fe4ff4b11 of length: 300\r\n2023-05-05 06:57:01,101 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0034.jpg\r\n2023-05-05 06:57:01,133 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0034.jpg of length: 183543\r\n2023-05-05 06:57:01,441 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file CAPE/a7d18d27201fe2caff1da2d756902b128d7dadff6da464be0d7398316938d4af\r\n2023-05-05 06:57:01,442 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file CAPE/a7d18d27201fe2caff1da2d756902b128d7dadff6da464be0d7398316938d4af of length: 300\r\n2023-05-05 06:57:02,248 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0035.jpg\r\n2023-05-05 06:57:02,321 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0035.jpg of length: 182300\r\n2023-05-05 06:57:03,387 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0036.jpg\r\n2023-05-05 06:57:03,455 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0036.jpg of length: 187408\r\n2023-05-05 06:57:04,584 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0037.jpg\r\n2023-05-05 06:57:04,671 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0037.jpg of length: 182674\r\n2023-05-05 06:57:05,343 [lib.cuckoo.core.guest] DEBUG: Task #4: Analysis is still running (id=win10, ip=192.168.122.100)\r\n2023-05-05 06:57:05,467 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file files/6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b\r\n2023-05-05 06:57:05,470 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file files/6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b of length: 1\r\n2023-05-05 06:57:05,767 [lib.cuckoo.core.resultserver] DEBUG: Task #4: T**rying to upload file shots/0038.jpg**\r\n2023-05-05 06:57:05,883 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0038.jpg of length: 193406\r\n2023-05-05 06:57:07,015 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0039.jpg\r\n2023-05-05 06:57:07,089 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0039.jpg of length: 188370\r\n2023-05-05 06:57:08,512 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0040.jpg\r\n2023-05-05 06:57:08,591 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0040.jpg of length: 182060\r\n2023-05-05 06:57:10,519 [lib.cuckoo.core.guest] DEBUG: Task #4: Analysis is still running (id=win10, ip=192.168.122.100)\r\n2023-05-05 06:57:12,221 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0041.jpg\r\n2023-05-05 06:57:12,579 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0041.jpg of length: 189117\r\n2023-05-05 06:57:13,682 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0042.jpg\r\n2023-05-05 06:57:13,766 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0042.jpg of length: 190157\r\n2023-05-05 06:57:14,906 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0043.jpg\r\n2023-05-05 06:57:14,934 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0043.jpg of length: 191497\r\n2023-05-05 06:57:15,613 [lib.cuckoo.core.guest] DEBUG: Task #4: Analysis is still running (id=win10, ip=192.168.122.100)\r\n2023-05-05 06:57:15,996 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0044.jpg\r\n2023-05-05 06:57:16,040 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0044.jpg of length: 192183\r\n2023-05-05 06:57:20,583 [lib.cuckoo.core.resultserver] DEBUG: Task #4: **Trying to upload file shots/0045.jpg**\r\n2023-05-05 06:57:20,639 [lib.cuckoo.core.resultserver] DEBUG: Task #4: **Uploaded file shots/0045.jpg of length: 190438**\r\n2023-05-05 06:57:20,686 [lib.cuckoo.core.guest] DEBUG: Task #4: Analysis is still running (id=win10, ip=192.168.122.100)\r\n2023-05-05 06:57:21,711 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file shots/0046.jpg\r\n2023-05-05 06:57:21,767 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file shots/0046.jpg of length: 181533\r\n2023-05-05 06:57:22,099 [lib.cuckoo.core.resultserver] DEBUG: Task #4: **Trying to upload file files/7a40d47d3a4d89db89e8d307d03ed81598ecde55eda40ac09053beba6708c62c**\r\n2023-05-05 06:57:22,100 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file files/7a40d47d3a4d89db89e8d307d03ed81598ecde55eda40ac09053beba6708c62c of length: 755\r\n2023-05-05 06:57:22,152 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Trying to upload file files/20c96b7d59f0c3cfaf7d4d712a8b7defb21d901dd53c910e27fdef15e85b0836\r\n2023-05-05 06:57:22,209 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Uploaded file files/20c96b7d59f0c3cfaf7d4d712a8b7defb21d901dd53c910e27fdef15e85b0836 of length: 768512\r\n2023-05-05 06:57:22,711 [lib.cuckoo.core.guest] INFO: Task #4: **Analysis completed successfully (id=win10, ip=192.168.122.100)**\r\n2023-05-05 06:57:22,718 [lib.cuckoo.core.plugins] DEBUG: Stopped auxiliary module: Sniffer\r\n2023-05-05 06:57:22,719 [lib.cuckoo.common.abstracts] DEBUG: Stopping machine win10\r\n2023-05-05 06:57:22,719 [lib.cuckoo.common.abstracts] DEBUG: Getting status for win10\r\n2023-05-05 06:57:25,455 [lib.cuckoo.common.abstracts] DEBUG: Getting status for win10\r\n2023-05-05 06:57:25,467 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Stopped tracking machine 192.168.122.100\r\n2023-05-05 06:57:25,467 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Cancel <Context for b'BSON'>\r\n2023-05-05 06:57:25,467 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Cancel <Context for b'LOG'>\r\n2023-05-05 06:57:25,467 [lib.cuckoo.core.resultserver] DEBUG: Task #4: Cancel <Context for b'BSON'>\r\n2023-05-05 06:57:25,581 [lib.cuckoo.core.scheduler] INFO: Disabled route 'internet'\r\n2023-05-05 06:57:25,605 [lib.cuckoo.core.scheduler] DEBUG: Task #4: Released database task with status True\r\n2023-05-05 06:57:25,682 [lib.cuckoo.core.scheduler] INFO: Task #4: analysis procedure completed\r\n****\r\n\nComment: I have the same behavior thos morning after a git pull\nComment: Hi Guys,\r\n\r\ntry the following config settings:\r\n\r\nin web.conf:\r\n`existent_tasks = no`\r\n\r\nin reporting.conf\r\n`[mongodb]`   \r\n`enabled = yes`\nComment: @ClaudioWayne thanks, it worked!\nComment: also do git pull\nComment: > Hi Guys,\r\n> \r\n> try the following config settings:\r\n> \r\n> in web.conf: `existent_tasks = no`\r\n> \r\n> in reporting.conf `[mongodb]` `enabled = yes`\r\n\r\nThank you it worked for me \nComment: ![Screenshot from 2023-05-08 05-04-23](https://user-images.githubusercontent.com/113498180/236739113-b918611f-e635-41c7-9d7a-a7e182073ca4.png)\r\n\r\n**[db703fad83de57168d5cfb5320fa14e4eb7a0e5243884ebac061e02e52c00d48.zip](https://github.com/kevoreilly/CAPEv2/files/11417940/db703fad83de57168d5cfb5320fa14e4eb7a0e5243884ebac061e02e52c00d48.zip)**\r\n\r\nwhen i submit this file i got this result\r\n\r\n\r\n\r\n\r\ni'm facing this issue with this files while many other files are working properly \nComment: that is an ELF file aka linux, for that you need to have enabled linux in web.conf\nComment: > that is an ELF file aka linux, for that you need to have enabled linux in web.conf\r\n\r\nThank you for your guidance\nComment: yaw, but for those samples you need linux VMs, and linux analysis is pretty bad, there is no behavior, is just to see to see network traffic, and is not developed/maintained by core devs. \nComment: thanks a lot, I've stuck in this trap for nearly a week.\nComment: I'm trying to run cleaners.py but its not running and showing error please help me how i can resolve this error . I'm attaching screenshot just to show commands that is used to run cleaners.py. \r\n![Screenshot from 2023-05-18 05-15-04](https://github.com/kevoreilly/CAPEv2/assets/113498180/fc643343-a3f0-4940-96b5-d2a15b1362fc)\r\n\r\n\nComment: Use cape properly as cape user, with poetry and thats all\n\nEl jue, 18 may 2023 7:33, musman12362 ***@***.***> escribi\u00f3:\n\n> I'm trying to run cleaners.py but its not running and showing error please\n> help me how i can resolve this error . I'm attaching screenshot just to\n> show commands that is used to run cleaners.py.\n> [image: Screenshot from 2023-05-18 05-15-04]\n> <https://user-images.githubusercontent.com/113498180/239147653-fc643343-a3f0-4940-96b5-d2a15b1362fc.png>\n>\n> here are my configuration files\n>\n>    1. *cuckoo.conf*\n>    [cuckoo]\n>\n> Which category of tasks do you want to analyze?\n>\n> categories = static, pcap, url, file\n> If turned on, Cuckoo will delete the original file after its analysis has\n> been completed.\n>\n> delete_original = off\n> Archives are not deleted by default, as it extracts and \"original file\"\n> become extracted file\n>\n> delete_archive = on\n> If turned on, Cuckoo will delete the copy of the original file in the local\n> binaries repository after the analysis has finished. (On *nix this will\n> also invalidate the file called \"binary\" in each analysis directory, as\n> this is a symlink.)\n>\n> delete_bin_copy = off\n> Specify the name of the machinery module to use, this module will define\n> the interaction between Cuckoo and your virtualization software of choice.\n>\n> machinery = kvm\n> Enable creation of memory dump of the analysis machine before shutting down.\n> Even if turned off, this functionality can also be enabled at submission.\n> Currently available for: VirtualBox and libvirt modules (KVM).\n>\n> memory_dump = off\n> When the timeout of an analysis is hit, the VM is just killed by default. For\n> some long-running setups it might be interesting to terminate the moinitored\n> processes before killing the VM so that connections are closed.\n>\n> terminate_processes = off\n> Enable automatically re-schedule of \"broken\" tasks each startup. Each\n> task found in status \"processing\" is re-queued for analysis.\n>\n> reschedule = off\n> Fail \"unserviceable\" tasks as they are queued. Any task found that will\n> never be analyzed based on the available analysis machines will have its\n> status set to \"failed\".\n>\n> fail_unserviceable = on\n> Limit the amount of analysis jobs a Cuckoo process goes through. This can\n> be used together with a watchdog to mitigate risk of memory leaks.\n>\n> max_analysis_count = 10\n> Limit the number of concurrently executing analysis machines. This may be\n> useful on systems with limited resources. Set to 0 to disable any limits.\n>\n> max_machines_count = 5\n> Limit the amount of VMs that are allowed to start in parallel. Generally speaking\n> starting the VMs is one of the more CPU intensive parts of the actual\n> analysis. This option tries to avoid maxing out the CPU completely.\n>\n> max_vmstartup_count = 5\n> Minimum amount of free space (in MB) available before starting a new task. This\n> tries to avoid failing an analysis because the reports can't be written due\n> out-of-diskspace errors. Setting this value to 0 disables the check. (Note:\n> this feature is currently not supported under Windows.)\n>\n> freespace = 50000\n> Process tasks, but not reach out of memory\n>\n> freespace_processing = 15000\n> Temporary directory containing the files uploaded through Cuckoo interfaces (web.py,\n> api.py, Django web interface).\n>\n> tmppath = /tmp\n> Delta in days from current time to set the guest clocks to for file\n> analyses A negative value sets the clock back, a positive value sets it\n> forward. The default of 0 disables this option Note that this can still\n> be overridden by the per-analysis clock setting and it is not performed\n> by default for URL analysis as it will generally result in SSL errors\n>\n> daydelta = 0\n> Path to the unix socket for running root commands.\n>\n> rooter = /tmp/cuckoo-rooter\n> Enable if you want to see a DEBUG log periodically containing backlog of\n> pending tasks, locked vs unlocked machines. NOTE: Enabling this feature\n> adds 4 database calls every 10 seconds.\n>\n> periodic_log = off\n> Max filename length for submissions, before truncation. 196 is arbitrary.\n>\n> max_len = 196\n> If it is greater than this, call truncate the filename further for\n> sanitizing purposes. Length truncated to is controlled by sanitize_to_len. This\n> is to prevent long filenames such as files named by hash.\n>\n> sanitize_len = 32\n> sanitize_to_len = 24\n>\n> [resultserver]\n> The Result Server is used to receive in real time the behavioral logs produced\n> by the analyzer. Specify the IP address of the host. The analysis\n> machines should be able to contact the host through such address, so make\n> sure it's valid. NOTE: if you set resultserver IP to 0.0.0.0 you have to\n> set the option resultserver_ip for all your virtual machines in machinery\n> configuration.\n>\n> ip = 192.168.10.129\n> Specify a port number to bind the result server on.\n>\n> port = 2042\n> Force the port chosen above, don't try another one (we can select another port\n> dynamically if we can not bind this one, but that is not an option in\n> some setups)\n>\n> force_port = yes\n>\n> pool_size = 0\n> Should the server write the legacy CSV format? (if you have any custom\n> processing on those, switch this on)\n>\n> store_csvs = off\n> Maximum size of uploaded files from VM (screenshots, dropped files, log) The\n> value is expressed in bytes, by default 100MB.\n>\n> upload_max_size = 100000000\n> To enable trimming of huge binaries go to -> web.conf -> general ->\n> enable_trim Prevent upload of files that passes upload_max_size?\n>\n> do_upload_max_size = no\n>\n> [processing]\n> Set the maximum size of analyses generated files to process. This is used to\n> avoid the processing of big files which may take a lot of processing time.\n> The value is expressed in bytes, by default 200MB.\n>\n> analysis_size_limit = 200000000\n> Enable or disable DNS lookups.\n>\n> resolve_dns = on\n> Enable or disable reverse DNS lookups This information currently is not\n> displayed in the web interface\n>\n> reverse_dns = off\n> Enable PCAP sorting, needed for the connection content view in the web\n> interface.\n>\n> sort_pcap = on\n>\n> [database]\n> Specify the database connection string. Examples, see documentation for\n> more: sqlite:///foo.db ***@***.***:5432/mydatabase\n> ***@***.***/mydatabase If empty, default is a SQLite in\n> db/cuckoo.db. SQLite doens't support database upgrades! For production we\n> strongly suggest go with PostgreSQL\n>\n> connection = ***@***.***:5432/cape\n> Database connection timeout in seconds. If empty, default is set to 60\n> seconds.\n>\n> timeout =\n>\n> [timeouts]\n> Set the default analysis timeout expressed in seconds. This value will be used\n> to define after how many seconds the analysis will terminate unless otherwise\n> specified at submission.\n>\n> default = 200\n> Set the critical timeout expressed in (relative!) seconds. It will be added to\n> the default timeout above and after this timeout is hit Cuckoo will\n> consider the analysis failed and it will shutdown the machine no matter\n> what. When this happens the analysis results will most likely be lost.\n>\n> critical = 60\n> Maximum time to wait for virtual machine status change. For example when shutting\n> down a vm. Default is 300 seconds.\n>\n> vm_state = 300\n>\n> [tmpfs]\n> only if you using volatility to speedup IO mkdir -p /mnt/tmpfs mount -t\n> tmpfs -o size=50g ramfs /mnt/tmpfs chown cape:cape /mnt/tmpfs vim\n> /etc/fstab tmpfs /mnt/tmpfs tmpfs nodev,nosuid,noexec,nodiratime,size=50g\n> 0 0 Add crontab with @reboot <https://github.com/reboot> chown cape:cape\n> /mnt/tmpfs -R\n>\n> enabled = off\n> path = /mnt/tmpfs/\n> in mb\n>\n> freespace = 2000\n>\n>    1. *auxiliary.conf*\n>\n> Requires dependencies of software in vm as by:\n> https://www.fireeye.com/blog/threat-research/2016/02/greater_visibilityt.html Windows\n> 7 SP1, .NET at least 4.5, powershell 5 preferly over v4 KB3109118 -\n> Script block logging back port update for WMF4 x64 -\n> https://cuckoo.sh/vmcloak/Windows6.1-KB3109118-v4-x64.msu x32 -\n> https://cuckoo.sh/vmcloak/Windows6.1-KB3109118-v4-x86.msu KB2819745 - WMF\n> 4 (Windows Management Framework version 4) update for Windows 7 x64 -\n> https://cuckoo.sh/vmcloak/Windows6.1-KB2819745-x64-MultiPkg.msu x32 -\n> https://cuckoo.sh/vmcloak/Windows6.1-KB2819745-x86-MultiPkg.msu KB3191566\n> - https://www.microsoft.com/en-us/download/details.aspx?id=54616 You\n> should create following registry entries reg add\n> \"HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\PowerShell\\ModuleLogging\\ModuleNames\"\n> /v * /t REG_SZ /d * /f /reg:64 reg add\n> \"HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\PowerShell\\ScriptBlockLogging\"\n> /v EnableScriptBlockLogging /t REG_DWORD /d 00000001 /f /reg:64 reg add\n> \"HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\PowerShell\\Transcription\"\n> /v EnableTranscripting /t REG_DWORD /d 00000001 /f /reg:64 reg add\n> \"HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\PowerShell\\Transcription\"\n> /v OutputDirectory /t REG_SZ /d C:\\PSTranscipts /f /reg:64 reg add\n> \"HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\PowerShell\\Transcription\"\n> /v EnableInvocationHeader /t REG_DWORD /d 00000001 /f /reg:64 Modules to\n> be enabled or not inside of the VM\n>\n> [auxiliary_modules]\n> browser = yes\n> curtain = no\n> digisig = yes\n> disguise = yes\n> evtx = no\n> human_windows = yes\n> human_linux = no\n> procmon = no\n> screenshots_windows = yes\n> screenshots_linux = yes\n> sysmon = no\n> tlsdump = yes\n> usage = no\n> file_pickup = no\n> permissions = no\n> pre_script = no\n> during_script = no\n> stap = no\n> filecollector = yes\n> This is only useful in case you use KVM's dnsmasq. You need to change your\n> range inside of analyzer/windows/modules/auxiliary/disguise.py. Disguise\n> must be enabled\n>\n> windows_static_route = no\n>\n> [sniffer]\n> Enable or disable the use of an external sniffer (tcpdump) [yes/no].\n>\n> enabled = yes\n> enable remote tcpdump support\n>\n> remote = no\n> host = ***@***.***\n> Specify the path to your local installation of tcpdump. Make sure this path\n> is correct.\n>\n> tcpdump = /usr/bin/tcpdump\n> Specify the network interface name on which tcpdump should monitor the traffic.\n> Make sure the interface is active.\n>\n> interface = ens33\n> #virbr1\n> Specify a Berkeley packet filter to pass to tcpdump.\n>\n> bpf = not arp\n>\n> [gateways]\n> #RTR1 = 192.168.1.254\n> #RTR2 = 192.168.1.1\n> #INETSIM = 192.168.1.2\n>\n> [virustotaldl]\n> adds an option in the web interface to upload samples via VirusTotal downloads\n> for a comma-separated list of MD5/SHA1/SHA256 hashes\n>\n> enabled = no\n> note that unlike the VirusTotal processing module, the key required here\n> is a Intelligence API key, not a Public API key\n>\n> #dlintelkey = SomeKeyWithDLAccess\n> dlpath = /tmp/\n>\n>    1. *processing.conf* Enable or disable the available processing\n>    modules [on/off].\n>\n> If you add a custom processing module to your Cuckoo setup, you have to add a\n> dedicated entry in this file, or it won't be executed. You can also add\n> additional options under the section of your module and they will be\n> available in your Python class. exclude files that doesn't match safe\n> extension and ignore their files from processing inside of other modules\n> like CAPE.py\n>\n> [antiransomware]\n> enabled = no\n> ignore all files with extension found more than X\n>\n> skip_number = 30\n>\n> [curtain]\n> enabled = no\n>\n> [sysmon]\n> enabled = no\n>\n> [analysisinfo]\n> enabled = yes\n> FLARE capa -> to update rules utils/community.py -cr install -> cd /tmp\n> && git clone --recurse-submodules https://github.com/fireeye/capa.git &&\n> cd capa && git submodule update --init rules && python -m pip3 install .\n>\n> [flare_capa]\n> enabled = no\n> Generate it always or generate on demand only(user need to click button to\n> generate it), still should be enabled to use this feature on demand\n>\n> on_demand = no\n> Analyze binary payloads\n>\n> static = no\n> Analyze CAPE payloads\n>\n> cape = no\n> Analyze ProcDump\n>\n> procdump = no\n>\n> [decompression]\n> enabled = no\n>\n> [dumptls]\n> enabled = no\n>\n> [behavior]\n> enabled = yes\n> Toggle specific modules within the BehaviorAnalysis class\n>\n> anomaly = yes\n> processtree = yes\n> summary = yes\n> enhanced = yes\n> encryptedbuffers = yes\n> Should the server use a compressed version of behavioural logs? This helps in\n> saving space in Mongo, accelerates searchs and reduce the size of the final\n> JSON report.\n>\n> loop_detection = no\n> The number of calls per process to process. 0 switches the limit off. 10000\n> api calls should be processed in less than 2 minutes\n>\n> analysis_call_limit = 0\n> Use ram to boost processing speed. You will need more than 20GB of RAM for\n> this feature. Please read \"performance\" section in the documentation.\n>\n> ram_boost = no\n> https://capev2.readthedocs.io/en/latest/usage/patterns_replacement.html\n>\n> replace_patterns = no\n>\n> [debug]\n> enabled = yes\n>\n> [detections]\n> enabled = yes\n> Signatures\n>\n> behavior = yes\n> yara = yes\n> suricata = yes\n> virustotal = yes\n> clamav = no\n> ... but this mechanism may still be switched on\n>\n> [procmemory]\n> enabled = yes\n> strings = yes\n>\n> [procmon]\n> enabled = no\n>\n> [memory]\n> enabled = no\n>\n> [usage]\n> enabled = no\n>\n> [network]\n> enabled = yes\n> sort_pcap = no\n> DNS whitelisting to ignore domains/IPs configured in network.py This\n> should be disabled when utilizing InetSim/Remnux as we end up resolving the\n> IP from fakedns which would then remove all domains associated with that resolved\n> IP\n>\n> dnswhitelist = yes\n> additional entries\n>\n> dnswhitelist_file = extra/whitelist_domains.txt\n> ipwhitelist = yes\n> ipwhitelist_file = extra/whitelist_ips.txt\n> Requires geoip2 and maxmind database\n>\n> country_lookup = no\n> Register and download for free from https://www.maxmind.com/\n>\n> maxmind_database = data/GeoLite2-Country.mmdb\n>\n> [url_analysis]\n> enabled = yes\n> Enable a WHOIS lookup for the target domain of a URL analyses\n>\n> whois = yes\n>\n> [strings]\n> enabled = yes\n> on_demand = no\n> nullterminated_only = no\n> minchars = 5\n>\n> [trid]\n> Specify the path to the trid binary to use for static analysis.\n>\n> enabled = no\n> identifier = data/trid/trid\n> definitions = data/trid/triddefs.trd\n>\n> [die]\n> Detect it Easy\n>\n> enabled = no\n> binary = /usr/bin/diec\n>\n> [virustotal]\n> enabled = yes\n> on_demand = no\n> timeout = 60\n> remove empty detections\n>\n> remove_empty = yes\n> Add your VirusTotal API key here. The default API key, kindly provided by\n> the VirusTotal team, should enable you with a sufficient throughput and\n> while being shared with all our users, it shouldn't affect your use.\n>\n> key = abc61e5746de30f16bbff4d3c8e4ea177b6f6be0da14b66e02543786a6fd9ad4\n> do_file_lookup = yes\n> do_url_lookup = yes\n> urlscrub = (^http://serw.clicksor.com/redir.php?url=|&InjectedParam=.+$\n> <http://serw.clicksor.com/redir.php?url=%7C&InjectedParam=.+$>)\n>\n> [suricata]\n> Notes on getting this to work check install_suricata function:\n> https://github.com/doomedraven/Tools/blob/master/Sandbox/cape2.sh\n>\n> enabled = yes\n> #Runmode \"cli\" or \"socket\"\n> runmode = socket\n> #Outputfiles\n> if evelog is specified, it will be used instead of the per-protocol log\n> files\n>\n> evelog = eve.json\n> per-protocol log files\n>\n> #alertlog = alert.json\n> #httplog = http.json\n> #tlslog = tls.json\n> #sshlog = ssh.json\n> #dnslog = dns.json\n>\n> fileslog = files-json.log\n> filesdir = files\n> Amount of text to carve from plaintext files (bytes)\n>\n> buffer = 8192\n> #Used for creating an archive of extracted files\n> 7zbin = /usr/bin/7z\n> zippass = infected\n> ##Runmode \"cli\" options\n> bin = /usr/bin/suricata\n> conf = /etc/suricata/suricata.yaml\n> ##Runmode \"socket\" Options\n> socket_file = /tmp/suricata-command.socket\n>\n> [cif]\n> enabled = no\n> url of CIF server\n>\n> url = https://your-cif-server.com/api\n> CIF API key\n>\n> key = your-api-key-here\n> time to wait for server to respond, in seconds\n>\n> timeout = 60\n> minimum confidence level of returned results: 25=not confident,\n> 50=automated, 75=somewhat confident, 85=very confident, 95=certain defaults\n> to 85\n>\n> confidence = 85\n> don't log queries by default, set to 'no' to log queries\n>\n> nolog = yes\n> max number of results per query\n>\n> per_lookup_limit = 20\n> max number of queries per analysis\n>\n> per_analysis_limit = 200\n>\n> [CAPE]\n> enabled = yes\n> Ex targetinfo standalone module\n>\n> targetinfo = yes\n> Ex dropped standalone module\n>\n> dropped = yes\n> Ex procdump standalone module\n>\n> procdump = yes\n> Amount of text to carve from plaintext files (bytes)\n>\n> buffer = 8192\n> Process files not bigger than value below in Mb. We saw that after 90Mb it\n> has biggest delay\n>\n> max_file_size = 90\n> Scan for UserDB.TXT signature matches\n>\n> userdb_signature = no\n> https://capev2.readthedocs.io/en/latest/usage/patterns_replacement.html\n>\n> replace_patterns = no\n> Deduplicate screenshots You need to install dependency ImageHash>=4.2.1\n>\n> [deduplication]\n> Available hashs functions: ahash: Average hash phash: Perceptual hash dhash:\n> Difference hash whash-haar: Haar wavelet hash whash-db4: Daubechies\n> wavelet hash\n>\n> enabled = no\n> hashmethod = ahash\n>\n> [vba2graph]\n> Mac - brew install graphviz Ubuntu - sudo apt-get install graphviz Arch -\n> sudo pacman -S graphviz+ sudo pip3 install networkx>=2.1 graphviz>=0.8.4\n> pydot>=1.2.4\n>\n> enabled = yes\n> on_demand = yes\n> ja3 finger print db with descriptions\n> https://github.com/trisulnsm/trisul-scripts/blob/master/lua/frontend_scripts/reassembly/ja3/prints/ja3fingerprint.json\n>\n> [ja3]\n> ja3_path = data/ja3/ja3fingerprint.json\n>\n> [maliciousmacrobot]\n> https://maliciousmacrobot.readthedocs.io Install mmbot sudo pip3 install\n> mmbot Create/Set required paths Populate benign_path and malicious_path\n> with appropriate macro maldocs (try the tests/samples in the github)\n> https://github.com/egaus/MaliciousMacroBot/tree/master/tests/samples Create\n> modeldata.pickle with your maldocs (this does not append to the model, it\n> overwrites it) mmb = MaliciousMacroBot(benign_path, malicious_path,\n> model_path, retain_sample_contents=False) result =\n> mmb.mmb_init_model(modelRebuild=True) Copy your model file and vocab.txt\n> to your model_path\n>\n> enabled = no\n> benign_path = /opt/cuckoo/data/mmbot/benign\n> malicious_path = /opt/cuckoo/data/mmbot/malicious\n> model_path = /opt/cuckoo/data/mmbot/model\n>\n> [xlsdeobf]\n> pip3 install git+\n> https://github.com/DissectMalware/XLMMacroDeobfuscator.git\n>\n> enabled = no\n> on_demand = no\n>\n> [boxjs]\n> enabled = no\n> timeout = 60\n> url = http://your_super_box_js:9000\n> Extractors\n>\n> [mwcp]\n> enabled = yes\n> modules_path = modules/processing/parsers/mwcp/\n>\n> [ratdecoders]\n> enabled = yes\n> modules_path = modules/processing/parsers/RATDecoders/\n>\n> [malduck]\n> enabled = yes\n> modules_path = modules/processing/parsers/malduck/\n>\n> [CAPE_extractors]\n> enabled = yes\n> Must ends with /\n>\n> modules_path = modules/processing/parsers/CAPE/\n>\n> [reversinglabs]\n> enabled = no\n> url =\n> key =\n>\n> [script_log_processing]\n> enabled = yes\n> Dump PE's overlay info\n>\n> [overlay]\n> enabled = no\n>\n> [floss]\n> enabled = no\n> on_demand = yes\n> static_strings = no\n> stack_strings = yes\n> decoded_strings = yes\n> tight_strings = yes\n> min_length = 5\n> Download FLOSS signatures from\n> https://github.com/mandiant/flare-floss/tree/master/sigs\n>\n> sigs_path = data/flare-signatures\n>\n>    1. *reporting.conf*\n>\n> Enable or disable the available reporting modules [on/off]. If you add a\n> custom reporting module to your Cuckoo setup, you have to add a dedicated\n> entry in this file, or it won't be executed. You can also add additional\n> options under the section of your module and they will be available in\n> your Python class.\n>\n> [cents]\n> enabled = no\n> on_demand = no\n> starting signature id for created Suricata rules\n>\n> start_sid = 1000000\n>\n> [mitre]\n> enabled = no\n> https://github.com/geekscrapy/binGraph requires -> apt-get install\n> python-tk\n>\n> [bingraph]\n> enabled = yes\n> on_demand = yes\n> binary = yes\n> geenrate bingraphs for cape/procdumps\n>\n> cape = yes\n> procdump = yes\n>\n> [pcap2cert]\n> enabled = yes\n>\n> [litereport]\n> enabled = no\n> keys_to_copy = CAPE procdump info signatures dropped static target network\n> shot malscore ttps\n> behavior_keys_to_copy = processtree summary\n>\n> [reportbackup]\n> enabled = no\n> External service to use\n>\n> googledrive = no\n> Specify the ID of the shared Google Drive Folder where reports will be\n> backed up to Replace folder ID with own Google Drive shared folder (share\n> access to created service account) Without service account, upload\n> process cannot complete due to browser not being able to launch\n>\n> drive_folder_id = id_here\n> drive_credentials_location = data/google_creds.json\n>\n> [jsondump]\n> enabled = yes\n> indent = 4\n> encoding = latin-1\n>\n> [reporthtml]\n> Standalone report, not requires CAPE webgui\n>\n> enabled = no\n> Include screenshots in report\n>\n> screenshots = no\n> apicalls = no\n>\n> [reporthtmlsummary]\n> much smaller, faster report generation, omits API logs and is\n> non-interactive\n>\n> enabled = no\n> Include screenshots in report\n>\n> screenshots = no\n>\n> [reportpdf]\n> Note that this requires reporthtmlsummary to be enabled above as well\n>\n> enabled = no\n>\n> [maec41]\n> enabled = no\n> mode = overview\n> processtree = true\n> output_handles = false\n> static = true\n> strings = true\n> virustotal = true\n> deduplicate = true\n>\n> [maec5]\n> enabled = no\n>\n> [mongodb]\n> enabled = yes\n> host = 127.0.0.1\n> port = 27017\n> db = cuckoo\n> Set those values if you are using mongodb authentication username = password\n> = authsource = cuckoo Set this value if you are using mongodb with TLS\n> enabled tlscafile = Automatically delete large dict values that exceed\n> mongos 16MB limitation Note: This only deletes dict keys from data stored\n> in MongoDB. You would still get the full dataset if you parsed the\n> results dict in another reporting module or from the jsondump module.\n>\n> fix_large_docs = yes\n> ES is not officially supported by core dev and relays on community Latest\n> known working version is 7.16.2 Use ElasticSearch as the \"database\" which\n> powers Django. NOTE: If this is enabled, MongoDB should not be enabled,\n> unless search only option is set to yes. Then elastic search is only used\n> for /search web page.\n>\n> [elasticsearchdb]\n> enabled = no\n> searchonly = no\n> host = 127.0.0.1\n> port = 9200\n> The report data is indexed in the form of {{index-yyyy.mm.dd}} so the\n> below index configuration option is actually an index 'prefix'.\n>\n> index = cuckoo\n> username = password = use_ssl = verify_certs =\n>\n> [retention]\n> enabled = no\n> run at most once every this many hours (unless reporting.conf is modified)\n>\n> run_every = 6\n> The amount of days old a task needs to be before deleting data Set a\n> value to no to never delete it\n>\n> memory = 14\n> procmemory = 62\n> pcap = 62\n> sortedpcap = 14\n> bsonlogs = 62\n> dropped = 62\n> screencaps = 62\n> reports = 62\n> mongo = 731\n> elastic = no\n>\n> [syslog]\n> enabled = no\n> IP of your syslog server/listener\n>\n> host = x.x.x.x\n> Port of your syslog server/listener\n>\n> port = 514\n> Protocol to send data over\n>\n> protocol = tcp\n> Store a logfile? [in reports directory]\n>\n> logfile = yes\n> if yes, what logname? [Default: syslog.txt]\n>\n> logname = syslog.log\n>\n> [moloch]\n> enabled = no\n> base = https://172.18.100.105:8005/\n> node = cuckoo3\n> capture = /data/moloch/bin/moloch-capture\n> captureconf = /data/moloch/etc/config.ini\n> user = admin\n> pass = admin\n> realm = Moloch\n>\n> [resubmitexe]\n> enabled = no\n> resublimit = 5\n>\n> [compression]\n> enabled = no\n> zipmemdump = yes\n> zipmemstrings = yes\n> zipprocdump = yes\n> zipprocstrings = yes\n>\n> [misp]\n> enabled = no\n> apikey =\n> url =\n> #Make event published after creation?\n> published = no\n> minimal malscore, by default all\n>\n> min_malscore = 0\n> by default 5 threads\n>\n> threads =\n> this will retrieve information for iocs and activate misp report download\n> from webgui\n>\n> extend_context = no\n> upload iocs from cuckoo to MISP\n>\n> upload_iocs = no\n> distribution = 0\n> threat_level_id = 2\n> analysis = 2\n> Sections to report Analysis ID will be appended, change\n>\n> title = Iocs from cuckoo analysis:\n> network = no\n> ids_files = no\n> dropped = no\n> registry = no\n> mutexes = no\n>\n> [callback]\n> enabled = no\n> will send as post data {\"task_id\":X} can be coma separated urls\n>\n> url = http://IP/callback\n> Compress results including CAPE output to help avoid reaching the hard\n> 16MB MongoDB limit.\n>\n> [compressresults]\n> enabled = no\n>\n> [tmpfsclean]\n> enabled = no\n> key = tr_extractor\n> This calls the specified command, pointing it at the report.json as well\n> as setting $ENV{CAPE_TASK_ID} to the task ID of the run in question.\n>\n> [zexecreport]\n> enabled=no\n> command=/foo/bar.pl\n> run statistics, this may take more times.\n>\n> [runstatistics]\n> enabled = no\n>\n> [malheur]\n> enabled = no\n>\n>    1. *web.conf*\n>\n> Enable Django authentication/signup for website\n>\n> [web_auth]\n> enabled = no\n> You will also need to add django admin to make it working by running: poetry\n> run python manage.py createsuperuser ReCaptcha protected admin login\n>\n> captcha = no\n> 2fa = no\n> To enable Oauth check https://django-allauth.readthedocs.io and\n> web/web/settings.py.\n>\n> [registration]\n> enabled = no\n> manual_approve = yes\n> email_required = yes\n> email_confirmation = yes\n> email_prefix_subject = \"[CAPE Sandbox]\"\n> email_host = \"\"\n> email_user = \"\"\n> email_password = \"\"\n> email_port = 465\n> use_ssl = 0\n> use_tls = 0\n> captcha_enabled = no\n> Do you want to ban temporal email services?\n>\n> disposable_email_disable = yes\n> disposable_domain_list = data/safelist/disposable_domain_list.txt\n>\n> [general]\n> max_sample_size = 30000000\n> Try to trim huge binaries that bigger than max_sample_size or enable\n> allow_ingore_size and specify that option\n>\n> enable_trim = no\n> Required to be enabled and option set to ignore_size_check=1\n>\n> allow_ignore_size = no\n> Number of results to show on webgui on search action Intermediate\n> solution, the ideal solution is pagination with cursor .skip(X).limit(Y)\n>\n> search_limit = 50\n> Allow anon users to browser site but not submit/download\n>\n> anon_viewable = no\n> existent_tasks = yes\n> top_detections = yes\n> hostname of the cape instance\n>\n> hostname = https://127.0.0.1/\n> ;hostname = https://www.capesandbox.com/\n> Check if config exists or try to extract before accept task as static\n>\n> check_config_exists = no\n> Assign architecture to task to fetch correct VM type\n>\n> dynamic_arch_determination = yes\n> Assign platform to task to fetch correct VM type\n>\n> dynamic_platform_determination = yes\n> Allow to download reports only to specific users, need to be activated in\n> user profile, select checkbox near to \"Reports\" and set to \"no\" here\n>\n> reports_dl_allowed_to_all = yes\n> Expose process log per task if enabled\n>\n> expose_process_log = no\n> ratelimit for anon users\n>\n> [ratelimit]\n> enabled = no\n> rps = 1/rps\n> rpm = 5/rpm\n> Show submit to all VMs on webgui\n>\n> [all_vms]\n> enabled = no\n>\n> [admin]\n> enabled = no\n>\n> [comments]\n> enabled = no\n>\n> #enable linux fields on webgui\n> [linux]\n> #For advanced users only, can be buggy, linux analysis is work in progress\n> for fun\n> enabled = no\n>\n> [malscore]\n> enabled = yes\n>\n> [vtupload]\n> Don't forget to set VT key in aux.conf under virustotaldl\n>\n> enabled = no\n>\n> #No means delete is disabled on webgui\n> [delete]\n> enabled = no\n>\n> #Dl'n'Exec analysis tab on submission\n> [dlnexec]\n> enabled = no\n>\n> #url analysis tab on submission\n> [url_analysis]\n> enabled = yes\n>\n> #TLP markings on submission and webgui\n> [tlp]\n> enabled = no\n>\n> #AMSI dump submission checkbox: can be useful to disable if no Win10+\n> instances\n> #(amsidump is enabled by default in the monitor for Win10+)\n> [amsidump]\n> enabled = yes\n> Limitation for public instances, api has no limits\n>\n> [public]\n> enabled = no\n> priority = 1\n> timeout = 300\n> Disable duplicated submissions for X hours\n>\n> [uniq_submission]\n> enabled = no\n> hours = 24\n> All providers can be found here\n> https://django-allauth.readthedocs.io/en/latest/providers.html\n>\n> [oauth]\n> amazon = no\n> github = no\n> gitlab = no\n> twitter = no\n>\n> [display_browser_martians]\n> enabled = no\n>\n> [display_office_martians]\n> enabled = no\n>\n> [display_shrike]\n> enabled = no\n>\n> [display_task_tags]\n> displays custom tags, if set during sample submission\n>\n> enabled = no\n>\n> [expanded_dashboard]\n> displays package, custom field, malfamily, clamav, PCAP link, and extended\n> suricata results\n>\n> enabled = no\n>\n> [display_et_portal]\n> enabled = no\n>\n> [display_pt_portal]\n> enabled = no\n>\n> [zipped_download]\n> enabled = yes\n> zip_pwd = infected\n> Allow to download all Dropped/Procdump/etc\n>\n> download_all = no\n>\n> [evtx_download]\n> enabled = no\n>\n> [pre_script]\n> enabled = yes\n>\n> [during_script]\n> enabled = yes\n>\n> [web_reporting]\n> enabled = no\n>\n> [guacamole]\n> enabled = no\n> mode = vnc\n> username =\n> password =\n> guacd_host = localhost\n> guacd_port = 4822\n> You might need to add your server IP to ALLOWED_HOSTS in\n> web/web/settings.py if it not [\"*\"\"] vnc or rdp\n>\n> guest_protocol = vnc\n> guacd_recording_path = /opt/CAPEv2/storage/guacrecordings\n> guest_width = 1280\n> guest_height = 1024\n> rdp settings\n>\n> guest_rdp_port = 3389\n>\n> [packages]\n> VM tags may be used to specify on which guest machines a sample should be\n> run NOTE - One of the following OS version tags MUST be included for\n> Windows VMs: winxp, win7, win8, win10, win11 Some samples will only\n> detonate on specific versions of Windows (see web.conf packages for more\n> info) Example: MSIX - Windows >= 10\n>\n> msix = win10,win11\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1506#issuecomment-1552427949>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH346NXLRYRI3KUJ4TYLXGWYEJANCNFSM6AAAAAAXWXZHVA>\n> .\n> You are receiving this because you modified the open/close state.Message\n> ID: ***@***.***>\n>\n\nComment: > Use cape properly as cape user, with poetry and thats all El jue, 18 may 2023 7:33, musman12362 ***@***.***> escribi\u00f3:\r\n> [\u2026](#)\r\n> I'm trying to run cleaners.py but its not running and showing error please help me how i can resolve this error . I'm attaching screenshot just to show commands that is used to run cleaners.py. [image: Screenshot from 2023-05-18 05-15-04] <https://user-images.githubusercontent.com/113498180/239147653-fc643343-a3f0-4940-96b5-d2a15b1362fc.png> here are my configuration files 1. *cuckoo.conf* [cuckoo] Which category of tasks do you want to analyze? categories = static, pcap, url, file If turned on, Cuckoo will delete the original file after its analysis has been completed. delete_original = off Archives are not deleted by default, as it extracts and \"original file\" become extracted file delete_archive = on If turned on, Cuckoo will delete the copy of the original file in the local binaries repository after the analysis has finished. (On *nix this will also invalidate the file called \"binary\" in each analysis directory, as this is a symlink.) delete_bin_copy = off Specify the name of the machinery module to use, this module will define the interaction between Cuckoo and your virtualization software of choice. machinery = kvm Enable creation of memory dump of the analysis machine before shutting down. Even if turned off, this functionality can also be enabled at submission. Currently available for: VirtualBox and libvirt modules (KVM). memory_dump = off When the timeout of an analysis is hit, the VM is just killed by default. For some long-running setups it might be interesting to terminate the moinitored processes before killing the VM so that connections are closed. terminate_processes = off Enable automatically re-schedule of \"broken\" tasks each startup. Each task found in status \"processing\" is re-queued for analysis. reschedule = off Fail \"unserviceable\" tasks as they are queued. Any task found that will never be analyzed based on the available analysis machines will have its status set to \"failed\". fail_unserviceable = on Limit the amount of analysis jobs a Cuckoo process goes through. This can be used together with a watchdog to mitigate risk of memory leaks. max_analysis_count = 10 Limit the number of concurrently executing analysis machines. This may be useful on systems with limited resources. Set to 0 to disable any limits. max_machines_count = 5 Limit the amount of VMs that are allowed to start in parallel. Generally speaking starting the VMs is one of the more CPU intensive parts of the actual analysis. This option tries to avoid maxing out the CPU completely. max_vmstartup_count = 5 Minimum amount of free space (in MB) available before starting a new task. This tries to avoid failing an analysis because the reports can't be written due out-of-diskspace errors. Setting this value to 0 disables the check. (Note: this feature is currently not supported under Windows.) freespace = 50000 Process tasks, but not reach out of memory freespace_processing = 15000 Temporary directory containing the files uploaded through Cuckoo interfaces (web.py, api.py, Django web interface). tmppath = /tmp Delta in days from current time to set the guest clocks to for file analyses A negative value sets the clock back, a positive value sets it forward. The default of 0 disables this option Note that this can still be overridden by the per-analysis clock setting and it is not performed by default for URL analysis as it will generally result in SSL errors daydelta = 0 Path to the unix socket for running root commands. rooter = /tmp/cuckoo-rooter Enable if you want to see a DEBUG log periodically containing backlog of pending tasks, locked vs unlocked machines. NOTE: Enabling this feature adds 4 database calls every 10 seconds. periodic_log = off Max filename length for submissions, before truncation. 196 is arbitrary. max_len = 196 If it is greater than this, call truncate the filename further for sanitizing purposes. Length truncated to is controlled by sanitize_to_len. This is to prevent long filenames such as files named by hash. sanitize_len = 32 sanitize_to_len = 24 [resultserver] The Result Server is used to receive in real time the behavioral logs produced by the analyzer. Specify the IP address of the host. The analysis machines should be able to contact the host through such address, so make sure it's valid. NOTE: if you set resultserver IP to 0.0.0.0 you have to set the option resultserver_ip for all your virtual machines in machinery configuration. ip = 192.168.10.129 Specify a port number to bind the result server on. port = 2042 Force the port chosen above, don't try another one (we can select another port dynamically if we can not bind this one, but that is not an option in some setups) force_port = yes pool_size = 0 Should the server write the legacy CSV format? (if you have any custom processing on those, switch this on) store_csvs = off Maximum size of uploaded files from VM (screenshots, dropped files, log) The value is expressed in bytes, by default 100MB. upload_max_size = 100000000 To enable trimming of huge binaries go to -> web.conf -> general -> enable_trim Prevent upload of files that passes upload_max_size? do_upload_max_size = no [processing] Set the maximum size of analyses generated files to process. This is used to avoid the processing of big files which may take a lot of processing time. The value is expressed in bytes, by default 200MB. analysis_size_limit = 200000000 Enable or disable DNS lookups. resolve_dns = on Enable or disable reverse DNS lookups This information currently is not displayed in the web interface reverse_dns = off Enable PCAP sorting, needed for the connection content view in the web interface. sort_pcap = on [database] Specify the database connection string. Examples, see documentation for more: sqlite:///foo.db ***@***.***:5432/mydatabase ***@***.***/mydatabase If empty, default is a SQLite in db/cuckoo.db. SQLite doens't support database upgrades! For production we strongly suggest go with PostgreSQL connection = ***@***.***:5432/cape Database connection timeout in seconds. If empty, default is set to 60 seconds. timeout = [timeouts] Set the default analysis timeout expressed in seconds. This value will be used to define after how many seconds the analysis will terminate unless otherwise specified at submission. default = 200 Set the critical timeout expressed in (relative!) seconds. It will be added to the default timeout above and after this timeout is hit Cuckoo will consider the analysis failed and it will shutdown the machine no matter what. When this happens the analysis results will most likely be lost. critical = 60 Maximum time to wait for virtual machine status change. For example when shutting down a vm. Default is 300 seconds. vm_state = 300 [tmpfs] only if you using volatility to speedup IO mkdir -p /mnt/tmpfs mount -t tmpfs -o size=50g ramfs /mnt/tmpfs chown cape:cape /mnt/tmpfs vim /etc/fstab tmpfs /mnt/tmpfs tmpfs nodev,nosuid,noexec,nodiratime,size=50g 0 0 Add crontab with @reboot <https://github.com/reboot> chown cape:cape /mnt/tmpfs -R enabled = off path = /mnt/tmpfs/ in mb freespace = 2000 1. *auxiliary.conf* Requires dependencies of software in vm as by: https://www.fireeye.com/blog/threat-research/2016/02/greater_visibilityt.html Windows 7 SP1, .NET at least 4.5, powershell 5 preferly over v4 KB3109118 - Script block logging back port update for WMF4 x64 - https://cuckoo.sh/vmcloak/Windows6.1-KB3109118-v4-x64.msu x32 - https://cuckoo.sh/vmcloak/Windows6.1-KB3109118-v4-x86.msu KB2819745 - WMF 4 (Windows Management Framework version 4) update for Windows 7 x64 - https://cuckoo.sh/vmcloak/Windows6.1-KB2819745-x64-MultiPkg.msu x32 - https://cuckoo.sh/vmcloak/Windows6.1-KB2819745-x86-MultiPkg.msu KB3191566 - https://www.microsoft.com/en-us/download/details.aspx?id=54616 You should create following registry entries reg add \"HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\PowerShell\\ModuleLogging\\ModuleNames\" /v * /t REG_SZ /d * /f /reg:64 reg add \"HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\PowerShell\\ScriptBlockLogging\" /v EnableScriptBlockLogging /t REG_DWORD /d 00000001 /f /reg:64 reg add \"HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\PowerShell\\Transcription\" /v EnableTranscripting /t REG_DWORD /d 00000001 /f /reg:64 reg add \"HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\PowerShell\\Transcription\" /v OutputDirectory /t REG_SZ /d C:\\PSTranscipts /f /reg:64 reg add \"HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\PowerShell\\Transcription\" /v EnableInvocationHeader /t REG_DWORD /d 00000001 /f /reg:64 Modules to be enabled or not inside of the VM [auxiliary_modules] browser = yes curtain = no digisig = yes disguise = yes evtx = no human_windows = yes human_linux = no procmon = no screenshots_windows = yes screenshots_linux = yes sysmon = no tlsdump = yes usage = no file_pickup = no permissions = no pre_script = no during_script = no stap = no filecollector = yes This is only useful in case you use KVM's dnsmasq. You need to change your range inside of analyzer/windows/modules/auxiliary/disguise.py. Disguise must be enabled windows_static_route = no [sniffer] Enable or disable the use of an external sniffer (tcpdump) [yes/no]. enabled = yes enable remote tcpdump support remote = no host = ***@***.*** Specify the path to your local installation of tcpdump. Make sure this path is correct. tcpdump = /usr/bin/tcpdump Specify the network interface name on which tcpdump should monitor the traffic. Make sure the interface is active. interface = ens33 #virbr1 Specify a Berkeley packet filter to pass to tcpdump. bpf = not arp [gateways] #RTR1 = 192.168.1.254 #RTR2 = 192.168.1.1 #INETSIM = 192.168.1.2 [virustotaldl] adds an option in the web interface to upload samples via VirusTotal downloads for a comma-separated list of MD5/SHA1/SHA256 hashes enabled = no note that unlike the VirusTotal processing module, the key required here is a Intelligence API key, not a Public API key #dlintelkey = SomeKeyWithDLAccess dlpath = /tmp/ 1. *processing.conf* Enable or disable the available processing modules [on/off]. If you add a custom processing module to your Cuckoo setup, you have to add a dedicated entry in this file, or it won't be executed. You can also add additional options under the section of your module and they will be available in your Python class. exclude files that doesn't match safe extension and ignore their files from processing inside of other modules like CAPE.py [antiransomware] enabled = no ignore all files with extension found more than X skip_number = 30 [curtain] enabled = no [sysmon] enabled = no [analysisinfo] enabled = yes FLARE capa -> to update rules utils/community.py -cr install -> cd /tmp && git clone --recurse-submodules https://github.com/fireeye/capa.git && cd capa && git submodule update --init rules && python -m pip3 install . [flare_capa] enabled = no Generate it always or generate on demand only(user need to click button to generate it), still should be enabled to use this feature on demand on_demand = no Analyze binary payloads static = no Analyze CAPE payloads cape = no Analyze ProcDump procdump = no [decompression] enabled = no [dumptls] enabled = no [behavior] enabled = yes Toggle specific modules within the BehaviorAnalysis class anomaly = yes processtree = yes summary = yes enhanced = yes encryptedbuffers = yes Should the server use a compressed version of behavioural logs? This helps in saving space in Mongo, accelerates searchs and reduce the size of the final JSON report. loop_detection = no The number of calls per process to process. 0 switches the limit off. 10000 api calls should be processed in less than 2 minutes analysis_call_limit = 0 Use ram to boost processing speed. You will need more than 20GB of RAM for this feature. Please read \"performance\" section in the documentation. ram_boost = no https://capev2.readthedocs.io/en/latest/usage/patterns_replacement.html replace_patterns = no [debug] enabled = yes [detections] enabled = yes Signatures behavior = yes yara = yes suricata = yes virustotal = yes clamav = no ... but this mechanism may still be switched on [procmemory] enabled = yes strings = yes [procmon] enabled = no [memory] enabled = no [usage] enabled = no [network] enabled = yes sort_pcap = no DNS whitelisting to ignore domains/IPs configured in network.py This should be disabled when utilizing InetSim/Remnux as we end up resolving the IP from fakedns which would then remove all domains associated with that resolved IP dnswhitelist = yes additional entries dnswhitelist_file = extra/whitelist_domains.txt ipwhitelist = yes ipwhitelist_file = extra/whitelist_ips.txt Requires geoip2 and maxmind database country_lookup = no Register and download for free from https://www.maxmind.com/ maxmind_database = data/GeoLite2-Country.mmdb [url_analysis] enabled = yes Enable a WHOIS lookup for the target domain of a URL analyses whois = yes [strings] enabled = yes on_demand = no nullterminated_only = no minchars = 5 [trid] Specify the path to the trid binary to use for static analysis. enabled = no identifier = data/trid/trid definitions = data/trid/triddefs.trd [die] Detect it Easy enabled = no binary = /usr/bin/diec [virustotal] enabled = yes on_demand = no timeout = 60 remove empty detections remove_empty = yes Add your VirusTotal API key here. The default API key, kindly provided by the VirusTotal team, should enable you with a sufficient throughput and while being shared with all our users, it shouldn't affect your use. key = abc61e5746de30f16bbff4d3c8e4ea177b6f6be0da14b66e02543786a6fd9ad4 do_file_lookup = yes do_url_lookup = yes urlscrub = (^[http://serw.clicksor.com/redir.php?url=|&InjectedParam=.+$](http://serw.clicksor.com/redir.php?url=%7C&InjectedParam=.+%24) <[http://serw.clicksor.com/redir.php?url=%7C&InjectedParam=.+$](http://serw.clicksor.com/redir.php?url=%7C&InjectedParam=.+%24)>) [suricata] Notes on getting this to work check install_suricata function: https://github.com/doomedraven/Tools/blob/master/Sandbox/cape2.sh enabled = yes #Runmode \"cli\" or \"socket\" runmode = socket #Outputfiles if evelog is specified, it will be used instead of the per-protocol log files evelog = eve.json per-protocol log files #alertlog = alert.json #httplog = http.json #tlslog = tls.json #sshlog = ssh.json #dnslog = dns.json fileslog = files-json.log filesdir = files Amount of text to carve from plaintext files (bytes) buffer = 8192 #Used for creating an archive of extracted files 7zbin = /usr/bin/7z zippass = infected ##Runmode \"cli\" options bin = /usr/bin/suricata conf = /etc/suricata/suricata.yaml ##Runmode \"socket\" Options socket_file = /tmp/suricata-command.socket [cif] enabled = no url of CIF server url = https://your-cif-server.com/api CIF API key key = your-api-key-here time to wait for server to respond, in seconds timeout = 60 minimum confidence level of returned results: 25=not confident, 50=automated, 75=somewhat confident, 85=very confident, 95=certain defaults to 85 confidence = 85 don't log queries by default, set to 'no' to log queries nolog = yes max number of results per query per_lookup_limit = 20 max number of queries per analysis per_analysis_limit = 200 [CAPE] enabled = yes Ex targetinfo standalone module targetinfo = yes Ex dropped standalone module dropped = yes Ex procdump standalone module procdump = yes Amount of text to carve from plaintext files (bytes) buffer = 8192 Process files not bigger than value below in Mb. We saw that after 90Mb it has biggest delay max_file_size = 90 Scan for UserDB.TXT signature matches userdb_signature = no https://capev2.readthedocs.io/en/latest/usage/patterns_replacement.html replace_patterns = no Deduplicate screenshots You need to install dependency ImageHash>=4.2.1 [deduplication] Available hashs functions: ahash: Average hash phash: Perceptual hash dhash: Difference hash whash-haar: Haar wavelet hash whash-db4: Daubechies wavelet hash enabled = no hashmethod = ahash [vba2graph] Mac - brew install graphviz Ubuntu - sudo apt-get install graphviz Arch - sudo pacman -S graphviz+ sudo pip3 install networkx>=2.1 graphviz>=0.8.4 pydot>=1.2.4 enabled = yes on_demand = yes ja3 finger print db with descriptions https://github.com/trisulnsm/trisul-scripts/blob/master/lua/frontend_scripts/reassembly/ja3/prints/ja3fingerprint.json [ja3] ja3_path = data/ja3/ja3fingerprint.json [maliciousmacrobot] https://maliciousmacrobot.readthedocs.io Install mmbot sudo pip3 install mmbot Create/Set required paths Populate benign_path and malicious_path with appropriate macro maldocs (try the tests/samples in the github) https://github.com/egaus/MaliciousMacroBot/tree/master/tests/samples Create modeldata.pickle with your maldocs (this does not append to the model, it overwrites it) mmb = MaliciousMacroBot(benign_path, malicious_path, model_path, retain_sample_contents=False) result = mmb.mmb_init_model(modelRebuild=True) Copy your model file and vocab.txt to your model_path enabled = no benign_path = /opt/cuckoo/data/mmbot/benign malicious_path = /opt/cuckoo/data/mmbot/malicious model_path = /opt/cuckoo/data/mmbot/model [xlsdeobf] pip3 install git+ https://github.com/DissectMalware/XLMMacroDeobfuscator.git enabled = no on_demand = no [boxjs] enabled = no timeout = 60 url = http://your_super_box_js:9000 Extractors [mwcp] enabled = yes modules_path = modules/processing/parsers/mwcp/ [ratdecoders] enabled = yes modules_path = modules/processing/parsers/RATDecoders/ [malduck] enabled = yes modules_path = modules/processing/parsers/malduck/ [CAPE_extractors] enabled = yes Must ends with / modules_path = modules/processing/parsers/CAPE/ [reversinglabs] enabled = no url = key = [script_log_processing] enabled = yes Dump PE's overlay info [overlay] enabled = no [floss] enabled = no on_demand = yes static_strings = no stack_strings = yes decoded_strings = yes tight_strings = yes min_length = 5 Download FLOSS signatures from https://github.com/mandiant/flare-floss/tree/master/sigs sigs_path = data/flare-signatures 1. *reporting.conf* Enable or disable the available reporting modules [on/off]. If you add a custom reporting module to your Cuckoo setup, you have to add a dedicated entry in this file, or it won't be executed. You can also add additional options under the section of your module and they will be available in your Python class. [cents] enabled = no on_demand = no starting signature id for created Suricata rules start_sid = 1000000 [mitre] enabled = no https://github.com/geekscrapy/binGraph requires -> apt-get install python-tk [bingraph] enabled = yes on_demand = yes binary = yes geenrate bingraphs for cape/procdumps cape = yes procdump = yes [pcap2cert] enabled = yes [litereport] enabled = no keys_to_copy = CAPE procdump info signatures dropped static target network shot malscore ttps behavior_keys_to_copy = processtree summary [reportbackup] enabled = no External service to use googledrive = no Specify the ID of the shared Google Drive Folder where reports will be backed up to Replace folder ID with own Google Drive shared folder (share access to created service account) Without service account, upload process cannot complete due to browser not being able to launch drive_folder_id = id_here drive_credentials_location = data/google_creds.json [jsondump] enabled = yes indent = 4 encoding = latin-1 [reporthtml] Standalone report, not requires CAPE webgui enabled = no Include screenshots in report screenshots = no apicalls = no [reporthtmlsummary] much smaller, faster report generation, omits API logs and is non-interactive enabled = no Include screenshots in report screenshots = no [reportpdf] Note that this requires reporthtmlsummary to be enabled above as well enabled = no [maec41] enabled = no mode = overview processtree = true output_handles = false static = true strings = true virustotal = true deduplicate = true [maec5] enabled = no [mongodb] enabled = yes host = 127.0.0.1 port = 27017 db = cuckoo Set those values if you are using mongodb authentication username = password = authsource = cuckoo Set this value if you are using mongodb with TLS enabled tlscafile = Automatically delete large dict values that exceed mongos 16MB limitation Note: This only deletes dict keys from data stored in MongoDB. You would still get the full dataset if you parsed the results dict in another reporting module or from the jsondump module. fix_large_docs = yes ES is not officially supported by core dev and relays on community Latest known working version is 7.16.2 Use ElasticSearch as the \"database\" which powers Django. NOTE: If this is enabled, MongoDB should not be enabled, unless search only option is set to yes. Then elastic search is only used for /search web page. [elasticsearchdb] enabled = no searchonly = no host = 127.0.0.1 port = 9200 The report data is indexed in the form of {{index-yyyy.mm.dd}} so the below index configuration option is actually an index 'prefix'. index = cuckoo username = password = use_ssl = verify_certs = [retention] enabled = no run at most once every this many hours (unless reporting.conf is modified) run_every = 6 The amount of days old a task needs to be before deleting data Set a value to no to never delete it memory = 14 procmemory = 62 pcap = 62 sortedpcap = 14 bsonlogs = 62 dropped = 62 screencaps = 62 reports = 62 mongo = 731 elastic = no [syslog] enabled = no IP of your syslog server/listener host = x.x.x.x Port of your syslog server/listener port = 514 Protocol to send data over protocol = tcp Store a logfile? [in reports directory] logfile = yes if yes, what logname? [Default: syslog.txt] logname = syslog.log [moloch] enabled = no base = https://172.18.100.105:8005/ node = cuckoo3 capture = /data/moloch/bin/moloch-capture captureconf = /data/moloch/etc/config.ini user = admin pass = admin realm = Moloch [resubmitexe] enabled = no resublimit = 5 [compression] enabled = no zipmemdump = yes zipmemstrings = yes zipprocdump = yes zipprocstrings = yes [misp] enabled = no apikey = url = #Make event published after creation? published = no minimal malscore, by default all min_malscore = 0 by default 5 threads threads = this will retrieve information for iocs and activate misp report download from webgui extend_context = no upload iocs from cuckoo to MISP upload_iocs = no distribution = 0 threat_level_id = 2 analysis = 2 Sections to report Analysis ID will be appended, change title = Iocs from cuckoo analysis: network = no ids_files = no dropped = no registry = no mutexes = no [callback] enabled = no will send as post data {\"task_id\":X} can be coma separated urls url = http://IP/callback Compress results including CAPE output to help avoid reaching the hard 16MB MongoDB limit. [compressresults] enabled = no [tmpfsclean] enabled = no key = tr_extractor This calls the specified command, pointing it at the report.json as well as setting $ENV{CAPE_TASK_ID} to the task ID of the run in question. [zexecreport] enabled=no command=/foo/bar.pl run statistics, this may take more times. [runstatistics] enabled = no [malheur] enabled = no 1. *web.conf* Enable Django authentication/signup for website [web_auth] enabled = no You will also need to add django admin to make it working by running: poetry run python manage.py createsuperuser ReCaptcha protected admin login captcha = no 2fa = no To enable Oauth check https://django-allauth.readthedocs.io and web/web/settings.py. [registration] enabled = no manual_approve = yes email_required = yes email_confirmation = yes email_prefix_subject = \"[CAPE Sandbox]\" email_host = \"\" email_user = \"\" email_password = \"\" email_port = 465 use_ssl = 0 use_tls = 0 captcha_enabled = no Do you want to ban temporal email services? disposable_email_disable = yes disposable_domain_list = data/safelist/disposable_domain_list.txt [general] max_sample_size = 30000000 Try to trim huge binaries that bigger than max_sample_size or enable allow_ingore_size and specify that option enable_trim = no Required to be enabled and option set to ignore_size_check=1 allow_ignore_size = no Number of results to show on webgui on search action Intermediate solution, the ideal solution is pagination with cursor .skip(X).limit(Y) search_limit = 50 Allow anon users to browser site but not submit/download anon_viewable = no existent_tasks = yes top_detections = yes hostname of the cape instance hostname = https://127.0.0.1/ ;hostname = https://www.capesandbox.com/ Check if config exists or try to extract before accept task as static check_config_exists = no Assign architecture to task to fetch correct VM type dynamic_arch_determination = yes Assign platform to task to fetch correct VM type dynamic_platform_determination = yes Allow to download reports only to specific users, need to be activated in user profile, select checkbox near to \"Reports\" and set to \"no\" here reports_dl_allowed_to_all = yes Expose process log per task if enabled expose_process_log = no ratelimit for anon users [ratelimit] enabled = no rps = 1/rps rpm = 5/rpm Show submit to all VMs on webgui [all_vms] enabled = no [admin] enabled = no [comments] enabled = no #enable linux fields on webgui [linux] #For advanced users only, can be buggy, linux analysis is work in progress for fun enabled = no [malscore] enabled = yes [vtupload] Don't forget to set VT key in aux.conf under virustotaldl enabled = no #No means delete is disabled on webgui [delete] enabled = no #Dl'n'Exec analysis tab on submission [dlnexec] enabled = no #url analysis tab on submission [url_analysis] enabled = yes #TLP markings on submission and webgui [tlp] enabled = no #AMSI dump submission checkbox: can be useful to disable if no Win10+ instances #(amsidump is enabled by default in the monitor for Win10+) [amsidump] enabled = yes Limitation for public instances, api has no limits [public] enabled = no priority = 1 timeout = 300 Disable duplicated submissions for X hours [uniq_submission] enabled = no hours = 24 All providers can be found here https://django-allauth.readthedocs.io/en/latest/providers.html [oauth] amazon = no github = no gitlab = no twitter = no [display_browser_martians] enabled = no [display_office_martians] enabled = no [display_shrike] enabled = no [display_task_tags] displays custom tags, if set during sample submission enabled = no [expanded_dashboard] displays package, custom field, malfamily, clamav, PCAP link, and extended suricata results enabled = no [display_et_portal] enabled = no [display_pt_portal] enabled = no [zipped_download] enabled = yes zip_pwd = infected Allow to download all Dropped/Procdump/etc download_all = no [evtx_download] enabled = no [pre_script] enabled = yes [during_script] enabled = yes [web_reporting] enabled = no [guacamole] enabled = no mode = vnc username = password = guacd_host = localhost guacd_port = 4822 You might need to add your server IP to ALLOWED_HOSTS in web/web/settings.py if it not [\"*\"\"] vnc or rdp guest_protocol = vnc guacd_recording_path = /opt/CAPEv2/storage/guacrecordings guest_width = 1280 guest_height = 1024 rdp settings guest_rdp_port = 3389 [packages] VM tags may be used to specify on which guest machines a sample should be run NOTE - One of the following OS version tags MUST be included for Windows VMs: winxp, win7, win8, win10, win11 Some samples will only detonate on specific versions of Windows (see web.conf packages for more info) Example: MSIX - Windows >= 10 msix = win10,win11 \u2014 Reply to this email directly, view it on GitHub <[#1506 (comment)](https://github.com/kevoreilly/CAPEv2/issues/1506#issuecomment-1552427949)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAOFH346NXLRYRI3KUJ4TYLXGWYEJANCNFSM6AAAAAAXWXZHVA> . You are receiving this because you modified the open/close state.Message ID: ***@***.***>\r\n\r\nThank you for clearing my confusion .\r\ni read document and they didnot show that we have to use poetry to run this script thats why I was executing it directly\nComment: You need to use poetry for anything in cape now, some partes of docs sadly\nis outdated\n\nEl jue, 18 may 2023 8:39, musman12362 ***@***.***> escribi\u00f3:\n\n> Use cape properly as cape user, with poetry and thats all El jue, 18 may\n> 2023 7:33, musman12362 *@*.\n>\n> *> escribi\u00f3: \u2026 <#m_-7659273266048413530_> I'm trying to run cleaners.py\n> but its not running and showing error please help me how i can resolve this\n> error . I'm attaching screenshot just to show commands that is used to run\n> cleaners.py. [image: Screenshot from 2023-05-18 05-15-04]\n> https://user-images.githubusercontent.com/113498180/239147653-fc643343-a3f0-4940-96b5-d2a15b1362fc.png\n> <https://user-images.githubusercontent.com/113498180/239147653-fc643343-a3f0-4940-96b5-d2a15b1362fc.png>\n> here are my configuration files 1. cuckoo.conf [cuckoo] Which category of\n> tasks do you want to analyze? categories = static, pcap, url, file If\n> turned on, Cuckoo will delete the original file after its analysis has been\n> completed. delete_original = off Archives are not deleted by default, as it\n> extracts and \"original file\" become extracted file delete_archive = on If\n> turned on, Cuckoo will delete the copy of the original file in the local\n> binaries repository after the analysis has finished. (On nix this will also\n> invalidate the file called \"binary\" in each analysis directory, as this is\n> a symlink.) delete_bin_copy = off Specify the name of the machinery module\n> to use, this module will define the interaction between Cuckoo and your\n> virtualization software of choice. machinery = kvm Enable creation of\n> memory dump of the analysis machine before shutting down. Even if turned\n> off, this functionality can also be enabled at submission. Currently\n> available for: VirtualBox and libvirt modules (KVM). memory_dump = off When\n> the timeout of an analysis is hit, the VM is just killed by default. For\n> some long-running setups it might be interesting to terminate the\n> moinitored processes before killing the VM so that connections are closed.\n> terminate_processes = off Enable automatically re-schedule of \"broken\"\n> tasks each startup. Each task found in status \"processing\" is re-queued for\n> analysis. reschedule = off Fail \"unserviceable\" tasks as they are queued.\n> Any task found that will never be analyzed based on the available analysis\n> machines will have its status set to \"failed\". fail_unserviceable = on\n> Limit the amount of analysis jobs a Cuckoo process goes through. This can\n> be used together with a watchdog to mitigate risk of memory leaks.\n> max_analysis_count = 10 Limit the number of concurrently executing analysis\n> machines. This may be useful on systems with limited resources. Set to 0 to\n> disable any limits. max_machines_count = 5 Limit the amount of VMs that are\n> allowed to start in parallel. Generally speaking starting the VMs is one of\n> the more CPU intensive parts of the actual analysis. This option tries to\n> avoid maxing out the CPU completely. max_vmstartup_count = 5 Minimum amount\n> of free space (in MB) available before starting a new task. This tries to\n> avoid failing an analysis because the reports can't be written due\n> out-of-diskspace errors. Setting this value to 0 disables the check. (Note:\n> this feature is currently not supported under Windows.) freespace = 50000\n> Process tasks, but not reach out of memory freespace_processing = 15000\n> Temporary directory containing the files uploaded through Cuckoo interfaces\n> (web.py, api.py, Django web interface). tmppath = /tmp Delta in days from\n> current time to set the guest clocks to for file analyses A negative value\n> sets the clock back, a positive value sets it forward. The default of 0\n> disables this option Note that this can still be overridden by the\n> per-analysis clock setting and it is not performed by default for URL\n> analysis as it will generally result in SSL errors daydelta = 0 Path to the\n> unix socket for running root commands. rooter = /tmp/cuckoo-rooter Enable\n> if you want to see a DEBUG log periodically containing backlog of pending\n> tasks, locked vs unlocked machines. NOTE: Enabling this feature adds 4\n> database calls every 10 seconds. periodic_log = off Max filename length for\n> submissions, before truncation. 196 is arbitrary. max_len = 196 If it is\n> greater than this, call truncate the filename further for sanitizing\n> purposes. Length truncated to is controlled by sanitize_to_len. This is to\n> prevent long filenames such as files named by hash. sanitize_len = 32\n> sanitize_to_len = 24 [resultserver] The Result Server is used to receive in\n> real time the behavioral logs produced by the analyzer. Specify the IP\n> address of the host. The analysis machines should be able to contact the\n> host through such address, so make sure it's valid. NOTE: if you set\n> resultserver IP to 0.0.0.0 you have to set the option resultserver_ip for\n> all your virtual machines in machinery configuration. ip = 192.168.10.129\n> Specify a port number to bind the result server on. port = 2042 Force the\n> port chosen above, don't try another one (we can select another port\n> dynamically if we can not bind this one, but that is not an option in some\n> setups) force_port = yes pool_size = 0 Should the server write the legacy\n> CSV format? (if you have any custom processing on those, switch this on)\n> store_csvs = off Maximum size of uploaded files from VM (screenshots,\n> dropped files, log) The value is expressed in bytes, by default 100MB.\n> upload_max_size = 100000000 To enable trimming of huge binaries go to ->\n> web.conf -> general -> enable_trim Prevent upload of files that passes\n> upload_max_size? do_upload_max_size = no [processing] Set the maximum size\n> of analyses generated files to process. This is used to avoid the\n> processing of big files which may take a lot of processing time. The value\n> is expressed in bytes, by default 200MB. analysis_size_limit = 200000000\n> Enable or disable DNS lookups. resolve_dns = on Enable or disable reverse\n> DNS lookups This information currently is not displayed in the web\n> interface reverse_dns = off Enable PCAP sorting, needed for the connection\n> content view in the web interface. sort_pcap = on [database] Specify the\n> database connection string. Examples, see documentation for more:\n> sqlite:///foo.db @.:5432/mydatabase @.**/mydatabase If empty, default is\n> a SQLite in db/cuckoo.db. SQLite doens't support database upgrades! For\n> production we strongly suggest go with PostgreSQL connection = @.**:5432/cape\n> Database connection timeout in seconds. If empty, default is set to 60\n> seconds. timeout = [timeouts] Set the default analysis timeout expressed in\n> seconds. This value will be used to define after how many seconds the\n> analysis will terminate unless otherwise specified at submission. default =\n> 200 Set the critical timeout expressed in (relative!) seconds. It will be\n> added to the default timeout above and after this timeout is hit Cuckoo\n> will consider the analysis failed and it will shutdown the machine no\n> matter what. When this happens the analysis results will most likely be\n> lost. critical = 60 Maximum time to wait for virtual machine status change.\n> For example when shutting down a vm. Default is 300 seconds. vm_state = 300\n> [tmpfs] only if you using volatility to speedup IO mkdir -p /mnt/tmpfs\n> mount -t tmpfs -o size=50g ramfs /mnt/tmpfs chown cape:cape /mnt/tmpfs vim\n> /etc/fstab tmpfs /mnt/tmpfs tmpfs nodev,nosuid,noexec,nodiratime,size=50g 0\n> 0 Add crontab with @reboot <https://github.com/reboot>\n> https://github.com/reboot <https://github.com/reboot> chown cape:cape\n> /mnt/tmpfs -R enabled = off path = /mnt/tmpfs/ in mb freespace = 2000 1.\n> auxiliary.conf Requires dependencies of software in vm as by:\n> https://www.fireeye.com/blog/threat-research/2016/02/greater_visibilityt.html\n> <https://www.fireeye.com/blog/threat-research/2016/02/greater_visibilityt.html>\n> Windows 7 SP1, .NET at least 4.5, powershell 5 preferly over v4 KB3109118 -\n> Script block logging back port update for WMF4 x64 -\n> https://cuckoo.sh/vmcloak/Windows6.1-KB3109118-v4-x64.msu\n> <https://cuckoo.sh/vmcloak/Windows6.1-KB3109118-v4-x64.msu> x32 -\n> https://cuckoo.sh/vmcloak/Windows6.1-KB3109118-v4-x86.msu\n> <https://cuckoo.sh/vmcloak/Windows6.1-KB3109118-v4-x86.msu> KB2819745 - WMF\n> 4 (Windows Management Framework version 4) update for Windows 7 x64 -\n> https://cuckoo.sh/vmcloak/Windows6.1-KB2819745-x64-MultiPkg.msu\n> <https://cuckoo.sh/vmcloak/Windows6.1-KB2819745-x64-MultiPkg.msu> x32 -\n> https://cuckoo.sh/vmcloak/Windows6.1-KB2819745-x86-MultiPkg.msu\n> <https://cuckoo.sh/vmcloak/Windows6.1-KB2819745-x86-MultiPkg.msu> KB3191566\n> - https://www.microsoft.com/en-us/download/details.aspx?id=54616\n> <https://www.microsoft.com/en-us/download/details.aspx?id=54616> You should\n> create following registry entries reg add\n> \"HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\PowerShell\\ModuleLogging\\ModuleNames\"\n> /v * /t REG_SZ /d * /f /reg:64 reg add\n> \"HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\PowerShell\\ScriptBlockLogging\"\n> /v EnableScriptBlockLogging /t REG_DWORD /d 00000001 /f /reg:64 reg add\n> \"HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\PowerShell\\Transcription\"\n> /v EnableTranscripting /t REG_DWORD /d 00000001 /f /reg:64 reg add\n> \"HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\PowerShell\\Transcription\"\n> /v OutputDirectory /t REG_SZ /d C:\\PSTranscipts /f /reg:64 reg add\n> \"HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\PowerShell\\Transcription\"\n> /v EnableInvocationHeader /t REG_DWORD /d 00000001 /f /reg:64 Modules to be\n> enabled or not inside of the VM [auxiliary_modules] browser = yes curtain =\n> no digisig = yes disguise = yes evtx = no human_windows = yes human_linux =\n> no procmon = no screenshots_windows = yes screenshots_linux = yes sysmon =\n> no tlsdump = yes usage = no file_pickup = no permissions = no pre_script =\n> no during_script = no stap = no filecollector = yes This is only useful in\n> case you use KVM's dnsmasq. You need to change your range inside of\n> analyzer/windows/modules/auxiliary/disguise.py. Disguise must be enabled\n> windows_static_route = no [sniffer] Enable or disable the use of an\n> external sniffer (tcpdump) [yes/no]. enabled = yes enable remote tcpdump\n> support remote = no host = @.*** Specify the path to your local\n> installation of tcpdump. Make sure this path is correct. tcpdump =\n> /usr/bin/tcpdump Specify the network interface name on which tcpdump should\n> monitor the traffic. Make sure the interface is active. interface = ens33\n> #virbr1 Specify a Berkeley packet filter to pass to tcpdump. bpf = not arp\n> [gateways] #RTR1 = 192.168.1.254 #RTR2 = 192.168.1.1 #INETSIM = 192.168.1.2\n> [virustotaldl] adds an option in the web interface to upload samples via\n> VirusTotal downloads for a comma-separated list of MD5/SHA1/SHA256 hashes\n> enabled = no note that unlike the VirusTotal processing module, the key\n> required here is a Intelligence API key, not a Public API key #dlintelkey =\n> SomeKeyWithDLAccess dlpath = /tmp/ 1. *processing.conf* Enable or disable\n> the available processing modules [on/off]. If you add a custom processing\n> module to your Cuckoo setup, you have to add a dedicated entry in this\n> file, or it won't be executed. You can also add additional options under\n> the section of your module and they will be available in your Python class.\n> exclude files that doesn't match safe extension and ignore their files from\n> processing inside of other modules like CAPE.py [antiransomware] enabled =\n> no ignore all files with extension found more than X skip_number = 30\n> [curtain] enabled = no [sysmon] enabled = no [analysisinfo] enabled = yes\n> FLARE capa -> to update rules utils/community.py -cr install -> cd /tmp &&\n> git clone --recurse-submodules https://github.com/fireeye/capa.git && cd\n> capa && git submodule update --init rules && python -m pip3 install .\n> [flare_capa] enabled = no Generate it always or generate on demand\n> only(user need to click button to generate it), still should be enabled to\n> use this feature on demand on_demand = no Analyze binary payloads static =\n> no Analyze CAPE payloads cape = no Analyze ProcDump procdump = no\n> [decompression] enabled = no [dumptls] enabled = no [behavior] enabled =\n> yes Toggle specific modules within the BehaviorAnalysis class anomaly = yes\n> processtree = yes summary = yes enhanced = yes encryptedbuffers = yes\n> Should the server use a compressed version of behavioural logs? This helps\n> in saving space in Mongo, accelerates searchs and reduce the size of the\n> final JSON report. loop_detection = no The number of calls per process to\n> process. 0 switches the limit off. 10000 api calls should be processed in\n> less than 2 minutes analysis_call_limit = 0 Use ram to boost processing\n> speed. You will need more than 20GB of RAM for this feature. Please read\n> \"performance\" section in the documentation. ram_boost = no\n> https://capev2.readthedocs.io/en/latest/usage/patterns_replacement.html\n> replace_patterns = no [debug] enabled = yes [detections] enabled = yes\n> Signatures behavior = yes yara = yes suricata = yes virustotal = yes clamav\n> = no ... but this mechanism may still be switched on [procmemory] enabled =\n> yes strings = yes [procmon] enabled = no [memory] enabled = no [usage]\n> enabled = no [network] enabled = yes sort_pcap = no DNS whitelisting to\n> ignore domains/IPs configured in network.py This should be disabled when\n> utilizing InetSim/Remnux as we end up resolving the IP from fakedns which\n> would then remove all domains associated with that resolved IP dnswhitelist\n> = yes additional entries dnswhitelist_file = extra/whitelist_domains.txt\n> ipwhitelist = yes ipwhitelist_file = extra/whitelist_ips.txt Requires\n> geoip2 and maxmind database country_lookup = no Register and download for\n> free from https://www.maxmind.com/ maxmind_database =\n> data/GeoLite2-Country.mmdb [url_analysis] enabled = yes Enable a WHOIS\n> lookup for the target domain of a URL analyses whois = yes [strings]\n> enabled = yes on_demand = no nullterminated_only = no minchars = 5 [trid]\n> Specify the path to the trid binary to use for static analysis. enabled =\n> no identifier = data/trid/trid definitions = data/trid/triddefs.trd [die]\n> Detect it Easy enabled = no binary = /usr/bin/diec [virustotal] enabled =\n> yes on_demand = no timeout = 60 remove empty detections remove_empty = yes\n> Add your VirusTotal API key here. The default API key, kindly provided by\n> the VirusTotal team, should enable you with a sufficient throughput and\n> while being shared with all our users, it shouldn't affect your use. key =\n> abc61e5746de30f16bbff4d3c8e4ea177b6f6be0da14b66e02543786a6fd9ad4\n> do_file_lookup = yes do_url_lookup = yes urlscrub = (^\n> http://serw.clicksor.com/redir.php?url=|&InjectedParam=.+$\n> <http://serw.clicksor.com/redir.php?url=%7C&InjectedParam=.+%24> <\n> http://serw.clicksor.com/redir.php?url=%7C&InjectedParam=.+$\n> <http://serw.clicksor.com/redir.php?url=%7C&InjectedParam=.+%24>>)\n> [suricata] Notes on getting this to work check install_suricata function:\n> https://github.com/doomedraven/Tools/blob/master/Sandbox/cape2.sh enabled\n> = yes #Runmode \"cli\" or \"socket\" runmode = socket #Outputfiles if evelog is\n> specified, it will be used instead of the per-protocol log files evelog =\n> eve.json per-protocol log files #alertlog = alert.json #httplog = http.json\n> #tlslog = tls.json #sshlog = ssh.json #dnslog = dns.json fileslog =\n> files-json.log filesdir = files Amount of text to carve from plaintext\n> files (bytes) buffer = 8192 #Used for creating an archive of extracted\n> files 7zbin = /usr/bin/7z zippass = infected ##Runmode \"cli\" options bin =\n> /usr/bin/suricata conf = /etc/suricata/suricata.yaml ##Runmode \"socket\"\n> Options socket_file = /tmp/suricata-command.socket [cif] enabled = no url\n> of CIF server url = https://your-cif-server.com/api CIF API key key =\n> your-api-key-here time to wait for server to respond, in seconds timeout =\n> 60 minimum confidence level of returned results: 25=not confident,\n> 50=automated, 75=somewhat confident, 85=very confident, 95=certain defaults\n> to 85 confidence = 85 don't log queries by default, set to 'no' to log\n> queries nolog = yes max number of results per query per_lookup_limit = 20\n> max number of queries per analysis per_analysis_limit = 200 [CAPE] enabled\n> = yes Ex targetinfo standalone module targetinfo = yes Ex dropped\n> standalone module dropped = yes Ex procdump standalone module procdump =\n> yes Amount of text to carve from plaintext files (bytes) buffer = 8192\n> Process files not bigger than value below in Mb. We saw that after 90Mb it\n> has biggest delay max_file_size = 90 Scan for UserDB.TXT signature matches\n> userdb_signature = no\n> https://capev2.readthedocs.io/en/latest/usage/patterns_replacement.html\n> replace_patterns = no Deduplicate screenshots You need to install\n> dependency ImageHash>=4.2.1 [deduplication] Available hashs functions:\n> ahash: Average hash phash: Perceptual hash dhash: Difference hash\n> whash-haar: Haar wavelet hash whash-db4: Daubechies wavelet hash enabled =\n> no hashmethod = ahash [vba2graph] Mac - brew install graphviz Ubuntu - sudo\n> apt-get install graphviz Arch - sudo pacman -S graphviz+ sudo pip3 install\n> networkx>=2.1 graphviz>=0.8.4 pydot>=1.2.4 enabled = yes on_demand = yes\n> ja3 finger print db with descriptions\n> https://github.com/trisulnsm/trisul-scripts/blob/master/lua/frontend_scripts/reassembly/ja3/prints/ja3fingerprint.json\n> [ja3] ja3_path = data/ja3/ja3fingerprint.json [maliciousmacrobot]\n> https://maliciousmacrobot.readthedocs.io Install mmbot sudo pip3 install\n> mmbot Create/Set required paths Populate benign_path and malicious_path\n> with appropriate macro maldocs (try the tests/samples in the github)\n> https://github.com/egaus/MaliciousMacroBot/tree/master/tests/samples\n> Create modeldata.pickle with your maldocs (this does not append to the\n> model, it overwrites it) mmb = MaliciousMacroBot(benign_path,\n> malicious_path, model_path, retain_sample_contents=False) result =\n> mmb.mmb_init_model(modelRebuild=True) Copy your model file and vocab.txt to\n> your model_path enabled = no benign_path = /opt/cuckoo/data/mmbot/benign\n> malicious_path = /opt/cuckoo/data/mmbot/malicious model_path =\n> /opt/cuckoo/data/mmbot/model [xlsdeobf] pip3 install git+\n> https://github.com/DissectMalware/XLMMacroDeobfuscator.git enabled = no\n> on_demand = no [boxjs] enabled = no timeout = 60 url =\n> http://your_super_box_js:9000 Extractors [mwcp] enabled = yes\n> modules_path = modules/processing/parsers/mwcp/ [ratdecoders] enabled = yes\n> modules_path = modules/processing/parsers/RATDecoders/ [malduck] enabled =\n> yes modules_path = modules/processing/parsers/malduck/ [CAPE_extractors]\n> enabled = yes Must ends with / modules_path =\n> modules/processing/parsers/CAPE/ [reversinglabs] enabled = no url = key =\n> [script_log_processing] enabled = yes Dump PE's overlay info [overlay]\n> enabled = no [floss] enabled = no on_demand = yes static_strings = no\n> stack_strings = yes decoded_strings = yes tight_strings = yes min_length =\n> 5 Download FLOSS signatures from\n> https://github.com/mandiant/flare-floss/tree/master/sigs sigs_path =\n> data/flare-signatures 1. *reporting.conf* Enable or disable the available\n> reporting modules [on/off]. If you add a custom reporting module to your\n> Cuckoo setup, you have to add a dedicated entry in this file, or it won't\n> be executed. You can also add additional options under the section of your\n> module and they will be available in your Python class. [cents] enabled =\n> no on_demand = no starting signature id for created Suricata rules\n> start_sid = 1000000 [mitre] enabled = no\n> https://github.com/geekscrapy/binGraph requires -> apt-get install\n> python-tk [bingraph] enabled = yes on_demand = yes binary = yes geenrate\n> bingraphs for cape/procdumps cape = yes procdump = yes [pcap2cert] enabled\n> = yes [litereport] enabled = no keys_to_copy = CAPE procdump info\n> signatures dropped static target network shot malscore ttps\n> behavior_keys_to_copy = processtree summary [reportbackup] enabled = no\n> External service to use googledrive = no Specify the ID of the shared\n> Google Drive Folder where reports will be backed up to Replace folder ID\n> with own Google Drive shared folder (share access to created service\n> account) Without service account, upload process cannot complete due to\n> browser not being able to launch drive_folder_id = id_here\n> drive_credentials_location = data/google_creds.json [jsondump] enabled =\n> yes indent = 4 encoding = latin-1 [reporthtml] Standalone report, not\n> requires CAPE webgui enabled = no Include screenshots in report screenshots\n> = no apicalls = no [reporthtmlsummary] much smaller, faster report\n> generation, omits API logs and is non-interactive enabled = no Include\n> screenshots in report screenshots = no [reportpdf] Note that this requires\n> reporthtmlsummary to be enabled above as well enabled = no [maec41] enabled\n> = no mode = overview processtree = true output_handles = false static =\n> true strings = true virustotal = true deduplicate = true [maec5] enabled =\n> no [mongodb] enabled = yes host = 127.0.0.1 port = 27017 db = cuckoo Set\n> those values if you are using mongodb authentication username = password =\n> authsource = cuckoo Set this value if you are using mongodb with TLS\n> enabled tlscafile = Automatically delete large dict values that exceed\n> mongos 16MB limitation Note: This only deletes dict keys from data stored\n> in MongoDB. You would still get the full dataset if you parsed the results\n> dict in another reporting module or from the jsondump module.\n> fix_large_docs = yes ES is not officially supported by core dev and relays\n> on community Latest known working version is 7.16.2 Use ElasticSearch as\n> the \"database\" which powers Django. NOTE: If this is enabled, MongoDB\n> should not be enabled, unless search only option is set to yes. Then\n> elastic search is only used for /search web page. [elasticsearchdb] enabled\n> = no searchonly = no host = 127.0.0.1 port = 9200 The report data is\n> indexed in the form of {{index-yyyy.mm.dd}} so the below index\n> configuration option is actually an index 'prefix'. index = cuckoo username\n> = password = use_ssl = verify_certs = [retention] enabled = no run at most\n> once every this many hours (unless reporting.conf is modified) run_every =\n> 6 The amount of days old a task needs to be before deleting data Set a\n> value to no to never delete it memory = 14 procmemory = 62 pcap = 62\n> sortedpcap = 14 bsonlogs = 62 dropped = 62 screencaps = 62 reports = 62\n> mongo = 731 elastic = no [syslog] enabled = no IP of your syslog\n> server/listener host = x.x.x.x Port of your syslog server/listener port =\n> 514 Protocol to send data over protocol = tcp Store a logfile? [in reports\n> directory] logfile = yes if yes, what logname? [Default: syslog.txt]\n> logname = syslog.log [moloch] enabled = no base =\n> https://172.18.100.105:8005/ node = cuckoo3 capture =\n> /data/moloch/bin/moloch-capture captureconf = /data/moloch/etc/config.ini\n> user = admin pass = admin realm = Moloch [resubmitexe] enabled = no\n> resublimit = 5 [compression] enabled = no zipmemdump = yes zipmemstrings =\n> yes zipprocdump = yes zipprocstrings = yes [misp] enabled = no apikey = url\n> = #Make event published after creation? published = no minimal malscore, by\n> default all min_malscore = 0 by default 5 threads threads = this will\n> retrieve information for iocs and activate misp report download from webgui\n> extend_context = no upload iocs from cuckoo to MISP upload_iocs = no\n> distribution = 0 threat_level_id = 2 analysis = 2 Sections to report\n> Analysis ID will be appended, change title = Iocs from cuckoo analysis:\n> network = no ids_files = no dropped = no registry = no mutexes = no\n> [callback] enabled = no will send as post data {\"task_id\":X} can be coma\n> separated urls url = http://IP/callback Compress results including CAPE\n> output to help avoid reaching the hard 16MB MongoDB limit.\n> [compressresults] enabled = no [tmpfsclean] enabled = no key = tr_extractor\n> This calls the specified command, pointing it at the report.json as well as\n> setting $ENV{CAPE_TASK_ID} to the task ID of the run in question.\n> [zexecreport] enabled=no command=/foo/bar.pl run statistics, this may\n> take more times. [runstatistics] enabled = no [malheur] enabled = no 1.\n> *web.conf* Enable Django authentication/signup for website [web_auth]\n> enabled = no You will also need to add django admin to make it working by\n> running: poetry run python manage.py createsuperuser ReCaptcha protected\n> admin login captcha = no 2fa = no To enable Oauth check\n> https://django-allauth.readthedocs.io and web/web/settings.py.\n> [registration] enabled = no manual_approve = yes email_required = yes\n> email_confirmation = yes email_prefix_subject = \"[CAPE Sandbox]\" email_host\n> = \"\" email_user = \"\" email_password = \"\" email_port = 465 use_ssl = 0\n> use_tls = 0 captcha_enabled = no Do you want to ban temporal email\n> services? disposable_email_disable = yes disposable_domain_list =\n> data/safelist/disposable_domain_list.txt [general] max_sample_size =\n> 30000000 Try to trim huge binaries that bigger than max_sample_size or\n> enable allow_ingore_size and specify that option enable_trim = no Required\n> to be enabled and option set to ignore_size_check=1 allow_ignore_size = no\n> Number of results to show on webgui on search action Intermediate solution,\n> the ideal solution is pagination with cursor .skip(X).limit(Y) search_limit\n> = 50 Allow anon users to browser site but not submit/download anon_viewable\n> = no existent_tasks = yes top_detections = yes hostname of the cape\n> instance hostname = https://127.0.0.1/ ;hostname =\n> https://www.capesandbox.com/ Check if config exists or try to extract\n> before accept task as static check_config_exists = no Assign architecture\n> to task to fetch correct VM type dynamic_arch_determination = yes Assign\n> platform to task to fetch correct VM type dynamic_platform_determination =\n> yes Allow to download reports only to specific users, need to be activated\n> in user profile, select checkbox near to \"Reports\" and set to \"no\" here\n> reports_dl_allowed_to_all = yes Expose process log per task if enabled\n> expose_process_log = no ratelimit for anon users [ratelimit] enabled = no\n> rps = 1/rps rpm = 5/rpm Show submit to all VMs on webgui [all_vms] enabled\n> = no [admin] enabled = no [comments] enabled = no #enable linux fields on\n> webgui [linux] #For advanced users only, can be buggy, linux analysis is\n> work in progress for fun enabled = no [malscore] enabled = yes [vtupload]\n> Don't forget to set VT key in aux.conf under virustotaldl enabled = no #No\n> means delete is disabled on webgui [delete] enabled = no #Dl'n'Exec\n> analysis tab on submission [dlnexec] enabled = no #url analysis tab on\n> submission [url_analysis] enabled = yes #TLP markings on submission and\n> webgui [tlp] enabled = no #AMSI dump submission checkbox: can be useful to\n> disable if no Win10+ instances #(amsidump is enabled by default in the\n> monitor for Win10+) [amsidump] enabled = yes Limitation for public\n> instances, api has no limits [public] enabled = no priority = 1 timeout =\n> 300 Disable duplicated submissions for X hours [uniq_submission] enabled =\n> no hours = 24 All providers can be found here\n> https://django-allauth.readthedocs.io/en/latest/providers.html [oauth]\n> amazon = no github = no gitlab = no twitter = no [display_browser_martians]\n> enabled = no [display_office_martians] enabled = no [display_shrike]\n> enabled = no [display_task_tags] displays custom tags, if set during sample\n> submission enabled = no [expanded_dashboard] displays package, custom\n> field, malfamily, clamav, PCAP link, and extended suricata results enabled\n> = no [display_et_portal] enabled = no [display_pt_portal] enabled = no\n> [zipped_download] enabled = yes zip_pwd = infected Allow to download all\n> Dropped/Procdump/etc download_all = no [evtx_download] enabled = no\n> [pre_script] enabled = yes [during_script] enabled = yes [web_reporting]\n> enabled = no [guacamole] enabled = no mode = vnc username = password =\n> guacd_host = localhost guacd_port = 4822 You might need to add your server\n> IP to ALLOWED_HOSTS in web/web/settings.py if it not [\"*\"\"] vnc or rdp\n> guest_protocol = vnc guacd_recording_path =\n> /opt/CAPEv2/storage/guacrecordings guest_width = 1280 guest_height = 1024\n> rdp settings guest_rdp_port = 3389 [packages] VM tags may be used to\n> specify on which guest machines a sample should be run NOTE - One of the\n> following OS version tags MUST be included for Windows VMs: winxp, win7,\n> win8, win10, win11 Some samples will only detonate on specific versions of\n> Windows (see web.conf packages for more info) Example: MSIX - Windows >= 10\n> msix = win10,win11 \u2014 Reply to this email directly, view it on GitHub <#1506\n> (comment)\n> <https://github.com/kevoreilly/CAPEv2/issues/1506#issuecomment-1552427949>>,\n> or unsubscribe\n> https://github.com/notifications/unsubscribe-auth/AAOFH346NXLRYRI3KUJ4TYLXGWYEJANCNFSM6AAAAAAXWXZHVA\n> <https://github.com/notifications/unsubscribe-auth/AAOFH346NXLRYRI3KUJ4TYLXGWYEJANCNFSM6AAAAAAXWXZHVA>\n> . You are receiving this because you modified the open/close state.Message\n> ID: @.***>\n>\n> Thank you for clearing my confusion .\n> i read document and they didnot show that we have to use poetry to run\n> this script thats why I was executing it directly\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1506#issuecomment-1552542520>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3YB5KR2BJWC65U3KA3XGW7ZXANCNFSM6AAAAAAXWXZHVA>\n> .\n> You are receiving this because you modified the open/close state.Message\n> ID: ***@***.***>\n>\n\nComment: I just submiited a BARAKAT.xlsx file but my analyzer suddenly get stop by showing this warning and its not giving me proper result can you please help me out because i want to get deep analysis of this file. \r\n\r\ni'm also attaching file here \r\n\r\n\r\n\r\n# LOG\r\n2023-05-25 06:32:33,042 [lib.cuckoo.core.resultserver] DEBUG: Task #11: Trying to upload file shots/0001.jpg\r\nDEBUG:lib.cuckoo.core.resultserver:Task #11: Uploaded file shots/0001.jpg of length: 170347\r\n2023-05-25 06:32:33,122 [lib.cuckoo.core.resultserver] DEBUG: Task #11: Uploaded file shots/0001.jpg of length: 170347\r\nWARNING:lib.cuckoo.core.guest:Task #11: Analysis caught an exception (id=win10, ip=192.168.122.100)\r\n**You probably submitted the job with wrong package\r\n2023-05-25 06:32:33,894 [lib.cuckoo.core.guest] WARNING: Task #11: Analysis caught an exception (id=win10, ip=192.168.122.100)\r\nYou probably submitted the job with wrong package**\r\nDEBUG:lib.cuckoo.core.plugins:Stopped auxiliary module: Sniffer\r\n2023-05-25 06:32:33,996 [lib.cuckoo.core.plugins] DEBUG: Stopped auxiliary module: Sniffer\r\nDEBUG:lib.cuckoo.common.abstracts:Stopping machine win10\r\n2023-05-25 06:32:34,002 [lib.cuckoo.common.abstracts] DEBUG: Stopping machine win10\r\nDEBUG:lib.cuckoo.common.abstracts:Getting status for win10\r\n2023-05-25 06:32:34,004 [lib.cuckoo.common.abstracts] DEBUG: Getting status for win10\r\nDEBUG:lib.cuckoo.common.abstracts:Getting status for win10\r\n2023-05-25 06:32:36,824 [lib.cuckoo.common.abstracts] DEBUG: Getting status for win10\r\nDEBUG:lib.cuckoo.core.resultserver:Task #11: Stopped tracking machine 192.168.122.100\r\n2023-05-25 06:32:36,838 [lib.cuckoo.core.resultserver] DEBUG: Task #11: Stopped tracking machine 192.168.122.100\r\nDEBUG:lib.cuckoo.core.resultserver:Task #11: Cancel <Context for b'LOG'>\r\n2023-05-25 06:32:36,839 [lib.cuckoo.core.resultserver] DEBUG: Task #11: Cancel <Context for b'LOG'>\r\nINFO:lib.cuckoo.core.scheduler:Disabled route 'internet'\r\n2023-05-25 06:32:36,866 [lib.cuckoo.core.scheduler] INFO: Disabled route 'internet'\r\nDEBUG:lib.cuckoo.core.scheduler:Task #11: Released database task with status True\r\n2023-05-25 06:32:36,898 [lib.cuckoo.core.scheduler] DEBUG: Task #11: Released database task with status True\r\nINFO:lib.cuckoo.core.scheduler:Task #11: analysis procedure completed\r\n2023-05-25 06:32:36,899 [lib.cuckoo.core.scheduler] INFO: Task #11: analysis procedure completed\r\n[8c86faf2875b1b94de7948f687cb80cf50d71f93f3f23262f8203e7d1e141b43.zip](https://github.com/kevoreilly/CAPEv2/files/11561809/8c86faf2875b1b94de7948f687cb80cf50d71f93f3f23262f8203e7d1e141b43.zip)\r\n\r\n\r\n# I dowload this file from here\r\n\r\n**https://app.docguard.io/8c86faf2875b1b94de7948f687cb80cf50d71f93f3f23262f8203e7d1e141b43/results/dashboard**\r\n\nComment: check your analysis log inside of the storage/analyses/11/analysis.log something like that\nComment: hey I hope you are fine . I need your assistant , actually i have one file which 100% confirmed malicious. but the issue is that this file is anti-sandbox and when i submit this file for analysis it detect that it is under analysis and doesnot allow us to run analyze it . \r\n\r\ncan you please guide me someway to analyze this file . and can you please check this file in your sandbox to check the result. \r\nI'll be very thankful to you for your support .\r\n\r\n**here is the file:**\r\n[8c86faf2875b1b94de7948f687cb80cf50d71f93f3f23262f8203e7d1e141b43.zip](https://github.com/kevoreilly/CAPEv2/files/11661376/8c86faf2875b1b94de7948f687cb80cf50d71f93f3f23262f8203e7d1e141b43.zip)\r\n\nComment: use al-khaser for generic detection, but you must have bases of malware analysis to see what it checks to understand how to defeat it\nComment: it works just fine in capesandbox https://capesandbox.com/analysis/396022/ so use al-khaser and if that doesn't work, you need to do manual analysis\nComment: i configured cape on my machine . but it doesnot show much details like your sandbox analysis . It just detect single signature but your sandbox detect multiple signatures and my cape sanbox doesnot \r\n![Screenshot from 2023-06-06 12-47-30](https://github.com/kevoreilly/CAPEv2/assets/113498180/cc31708d-1cfd-493b-9f44-ad9057fa7074)\r\nprovide me a single summary detail I'm attaching screenshot of my analysis report . I cannot share pdf report because i'm also facing problem in generating pdf report **file not found**.\r\n\r\n**should i share my configuration files with you?**\r\n\r\n\r\n![Screenshot from 2023-06-06 12-43-19](https://github.com/kevoreilly/CAPEv2/assets/113498180/0848ef08-5fa4-4816-acd9-07e6dd8766b7)\r\n \r\n![Screenshot from 2023-06-06 12-42-50](https://github.com/kevoreilly/CAPEv2/assets/113498180/4cef2a0f-a5e7-4390-b882-969b6c0fd969)\nComment: Did you use utils/community.py?\n\nEl mi\u00e9, 7 jun 2023, 6:34, musman12362 ***@***.***> escribi\u00f3:\n\n> i configured cape on my machine . but it doesnot show much details like\n> your sandbox analysis . It just detect single signature but your sandbox\n> detect multiple signatures and my cape sanbox doesnot\n> [image: Screenshot from 2023-06-06 12-47-30]\n> <https://user-images.githubusercontent.com/113498180/243911688-cc31708d-1cfd-493b-9f44-ad9057fa7074.png>\n> provide me a single summary detail I'm attaching screenshot of my analysis\n> report . I cannot share pdf report because i'm also facing problem in\n> generating pdf report *file not found*.\n>\n> *should i share my configuration files with you?*\n>\n> [image: Screenshot from 2023-06-06 12-43-19]\n> <https://user-images.githubusercontent.com/113498180/243911717-0848ef08-5fa4-4816-acd9-07e6dd8766b7.png>\n>\n> [image: Screenshot from 2023-06-06 12-42-50]\n> <https://user-images.githubusercontent.com/113498180/243911719-4cef2a0f-a5e7-4390-b882-969b6c0fd969.png>\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1506#issuecomment-1579868519>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH33WAAQH7PN7QAICKBDXKAAHHANCNFSM6AAAAAAXWXZHVA>\n> .\n> You are receiving this because you modified the open/close state.Message\n> ID: ***@***.***>\n>\n\nComment: > Did you use utils/community.py? El mi\u00e9, 7 jun 2023, 6:34, musman12362 ***@***.***> escribi\u00f3:\r\n> [\u2026](#)\r\n> i configured cape on my machine . but it doesnot show much details like your sandbox analysis . It just detect single signature but your sandbox detect multiple signatures and my cape sanbox doesnot [image: Screenshot from 2023-06-06 12-47-30] <https://user-images.githubusercontent.com/113498180/243911688-cc31708d-1cfd-493b-9f44-ad9057fa7074.png> provide me a single summary detail I'm attaching screenshot of my analysis report . I cannot share pdf report because i'm also facing problem in generating pdf report *file not found*. *should i share my configuration files with you?* [image: Screenshot from 2023-06-06 12-43-19] <https://user-images.githubusercontent.com/113498180/243911717-0848ef08-5fa4-4816-acd9-07e6dd8766b7.png> [image: Screenshot from 2023-06-06 12-42-50] <https://user-images.githubusercontent.com/113498180/243911719-4cef2a0f-a5e7-4390-b882-969b6c0fd969.png> \u2014 Reply to this email directly, view it on GitHub <[#1506 (comment)](https://github.com/kevoreilly/CAPEv2/issues/1506#issuecomment-1579868519)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAOFH33WAAQH7PN7QAICKBDXKAAHHANCNFSM6AAAAAAXWXZHVA> . You are receiving this because you modified the open/close state.Message ID: ***@***.***>\r\n\r\nno i didnot used that .\r\nhow i can use that ?\r\n should i have to run it manually by using poetry?\r\n\nComment: Poetry run python utils/community.py -waf\nRead docs\n\nEl mi\u00e9, 7 jun 2023, 7:36, musman12362 ***@***.***> escribi\u00f3:\n\n> Did you use utils/community.py? El mi\u00e9, 7 jun 2023, 6:34, musman12362 *@*.\n>\n> *> escribi\u00f3: \u2026 <#m_3068504836886773427_> i configured cape on my machine .\n> but it doesnot show much details like your sandbox analysis . It just\n> detect single signature but your sandbox detect multiple signatures and my\n> cape sanbox doesnot [image: Screenshot from 2023-06-06 12-47-30]\n> https://user-images.githubusercontent.com/113498180/243911688-cc31708d-1cfd-493b-9f44-ad9057fa7074.png\n> <https://user-images.githubusercontent.com/113498180/243911688-cc31708d-1cfd-493b-9f44-ad9057fa7074.png>\n> provide me a single summary detail I'm attaching screenshot of my analysis\n> report . I cannot share pdf report because i'm also facing problem in\n> generating pdf report file not found. should i share my configuration files\n> with you? [image: Screenshot from 2023-06-06 12-43-19]\n> https://user-images.githubusercontent.com/113498180/243911717-0848ef08-5fa4-4816-acd9-07e6dd8766b7.png\n> <https://user-images.githubusercontent.com/113498180/243911717-0848ef08-5fa4-4816-acd9-07e6dd8766b7.png>\n> [image: Screenshot from 2023-06-06 12-42-50]\n> https://user-images.githubusercontent.com/113498180/243911719-4cef2a0f-a5e7-4390-b882-969b6c0fd969.png\n> <https://user-images.githubusercontent.com/113498180/243911719-4cef2a0f-a5e7-4390-b882-969b6c0fd969.png>\n> \u2014 Reply to this email directly, view it on GitHub <#1506 (comment)\n> <https://github.com/kevoreilly/CAPEv2/issues/1506#issuecomment-1579868519>>,\n> or unsubscribe\n> https://github.com/notifications/unsubscribe-auth/AAOFH33WAAQH7PN7QAICKBDXKAAHHANCNFSM6AAAAAAXWXZHVA\n> <https://github.com/notifications/unsubscribe-auth/AAOFH33WAAQH7PN7QAICKBDXKAAHHANCNFSM6AAAAAAXWXZHVA>\n> . You are receiving this because you modified the open/close state.Message\n> ID: @.*>\n>\n> no i didnot used that .\n> how i can use that ?\n> should i have to run it manually by using poetry?\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1506#issuecomment-1579934170>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH35ZPRG6HMSGIVP57ALXKAHMVANCNFSM6AAAAAAXWXZHVA>\n> .\n> You are receiving this because you modified the open/close state.Message\n> ID: ***@***.***>\n>\n\nComment: > Poetry run python utils/community.py -waf Read docs El mi\u00e9, 7 jun 2023, 7:36, musman12362 ***@***.***> escribi\u00f3:\r\n> [\u2026](#)\r\n> Did you use utils/community.py? El mi\u00e9, 7 jun 2023, 6:34, musman12362 *@*. *> escribi\u00f3: \u2026 <#m_3068504836886773427_> i configured cape on my machine . but it doesnot show much details like your sandbox analysis . It just detect single signature but your sandbox detect multiple signatures and my cape sanbox doesnot [image: Screenshot from 2023-06-06 12-47-30] https://user-images.githubusercontent.com/113498180/243911688-cc31708d-1cfd-493b-9f44-ad9057fa7074.png <https://user-images.githubusercontent.com/113498180/243911688-cc31708d-1cfd-493b-9f44-ad9057fa7074.png> provide me a single summary detail I'm attaching screenshot of my analysis report . I cannot share pdf report because i'm also facing problem in generating pdf report file not found. should i share my configuration files with you? [image: Screenshot from 2023-06-06 12-43-19] https://user-images.githubusercontent.com/113498180/243911717-0848ef08-5fa4-4816-acd9-07e6dd8766b7.png <https://user-images.githubusercontent.com/113498180/243911717-0848ef08-5fa4-4816-acd9-07e6dd8766b7.png> [image: Screenshot from 2023-06-06 12-42-50] https://user-images.githubusercontent.com/113498180/243911719-4cef2a0f-a5e7-4390-b882-969b6c0fd969.png <https://user-images.githubusercontent.com/113498180/243911719-4cef2a0f-a5e7-4390-b882-969b6c0fd969.png> \u2014 Reply to this email directly, view it on GitHub <#1506 (comment) <[#1506 (comment)](https://github.com/kevoreilly/CAPEv2/issues/1506#issuecomment-1579868519)>>, or unsubscribe https://github.com/notifications/unsubscribe-auth/AAOFH33WAAQH7PN7QAICKBDXKAAHHANCNFSM6AAAAAAXWXZHVA <https://github.com/notifications/unsubscribe-auth/AAOFH33WAAQH7PN7QAICKBDXKAAHHANCNFSM6AAAAAAXWXZHVA> . You are receiving this because you modified the open/close state.Message ID: @.*> no i didnot used that . how i can use that ? should i have to run it manually by using poetry? \u2014 Reply to this email directly, view it on GitHub <[#1506 (comment)](https://github.com/kevoreilly/CAPEv2/issues/1506#issuecomment-1579934170)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAOFH35ZPRG6HMSGIVP57ALXKAHMVANCNFSM6AAAAAAXWXZHVA> . You are receiving this because you modified the open/close state.Message ID: ***@***.***>\r\n\r\nThank you for your support let me try this.\nComment: > Poetry run python utils/community.py -waf Read docs El mi\u00e9, 7 jun 2023, 7:36, musman12362 ***@***.***> escribi\u00f3:\r\n> [\u2026](#)\r\n> Did you use utils/community.py? El mi\u00e9, 7 jun 2023, 6:34, musman12362 *@*. *> escribi\u00f3: \u2026 <#m_3068504836886773427_> i configured cape on my machine . but it doesnot show much details like your sandbox analysis . It just detect single signature but your sandbox detect multiple signatures and my cape sanbox doesnot [image: Screenshot from 2023-06-06 12-47-30] https://user-images.githubusercontent.com/113498180/243911688-cc31708d-1cfd-493b-9f44-ad9057fa7074.png <https://user-images.githubusercontent.com/113498180/243911688-cc31708d-1cfd-493b-9f44-ad9057fa7074.png> provide me a single summary detail I'm attaching screenshot of my analysis report . I cannot share pdf report because i'm also facing problem in generating pdf report file not found. should i share my configuration files with you? [image: Screenshot from 2023-06-06 12-43-19] https://user-images.githubusercontent.com/113498180/243911717-0848ef08-5fa4-4816-acd9-07e6dd8766b7.png <https://user-images.githubusercontent.com/113498180/243911717-0848ef08-5fa4-4816-acd9-07e6dd8766b7.png> [image: Screenshot from 2023-06-06 12-42-50] https://user-images.githubusercontent.com/113498180/243911719-4cef2a0f-a5e7-4390-b882-969b6c0fd969.png <https://user-images.githubusercontent.com/113498180/243911719-4cef2a0f-a5e7-4390-b882-969b6c0fd969.png> \u2014 Reply to this email directly, view it on GitHub <#1506 (comment) <[#1506 (comment)](https://github.com/kevoreilly/CAPEv2/issues/1506#issuecomment-1579868519)>>, or unsubscribe https://github.com/notifications/unsubscribe-auth/AAOFH33WAAQH7PN7QAICKBDXKAAHHANCNFSM6AAAAAAXWXZHVA <https://github.com/notifications/unsubscribe-auth/AAOFH33WAAQH7PN7QAICKBDXKAAHHANCNFSM6AAAAAAXWXZHVA> . You are receiving this because you modified the open/close state.Message ID: @.*> no i didnot used that . how i can use that ? should i have to run it manually by using poetry? \u2014 Reply to this email directly, view it on GitHub <[#1506 (comment)](https://github.com/kevoreilly/CAPEv2/issues/1506#issuecomment-1579934170)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAOFH35ZPRG6HMSGIVP57ALXKAHMVANCNFSM6AAAAAAXWXZHVA> . You are receiving this because you modified the open/close state.Message ID: ***@***.***>\r\n\r\nI used community.py but I still got same result as mentioned in the previous \r\n\r\n> i configured cape on my machine . but it doesnot show much details like your sandbox analysis . It just detect single signature but your sandbox detect multiple signatures and my cape sanbox doesnot ![Screenshot from 2023-06-06 12-47-30](https://user-images.githubusercontent.com/113498180/243911688-cc31708d-1cfd-493b-9f44-ad9057fa7074.png) provide me a single summary detail I'm attaching screenshot of my analysis report . I cannot share pdf report because i'm also facing problem in generating pdf report **file not found**.\r\n> \r\n> **should i share my configuration files with you?**\r\n> \r\n> ![Screenshot from 2023-06-06 12-43-19](https://user-images.githubusercontent.com/113498180/243911717-0848ef08-5fa4-4816-acd9-07e6dd8766b7.png)\r\n> \r\n> ![Screenshot from 2023-06-06 12-42-50](https://user-images.githubusercontent.com/113498180/243911719-4cef2a0f-a5e7-4390-b882-969b6c0fd969.png)\r\n\r\nnow I used community.py but I still got same result as mentioned above \nComment: Well idk if you restarted processing, if your vm is bad, there is many\nreason, you need to investiga te your side\n\nEl mi\u00e9, 7 jun 2023, 8:22, musman12362 ***@***.***> escribi\u00f3:\n\n> Poetry run python utils/community.py -waf Read docs El mi\u00e9, 7 jun 2023,\n> 7:36, musman12362 *@*.\n>\n> *> escribi\u00f3: \u2026 <#m_5563946040685360809_> Did you use utils/community.py?\n> El mi\u00e9, 7 jun 2023, 6:34, musman12362 @. > escribi\u00f3: \u2026\n> <#m_3068504836886773427_> i configured cape on my machine . but it doesnot\n> show much details like your sandbox analysis . It just detect single\n> signature but your sandbox detect multiple signatures and my cape sanbox\n> doesnot [image: Screenshot from 2023-06-06 12-47-30]\n> https://user-images.githubusercontent.com/113498180/243911688-cc31708d-1cfd-493b-9f44-ad9057fa7074.png\n> <https://user-images.githubusercontent.com/113498180/243911688-cc31708d-1cfd-493b-9f44-ad9057fa7074.png>\n> https://user-images.githubusercontent.com/113498180/243911688-cc31708d-1cfd-493b-9f44-ad9057fa7074.png\n> <https://user-images.githubusercontent.com/113498180/243911688-cc31708d-1cfd-493b-9f44-ad9057fa7074.png>\n> provide me a single summary detail I'm attaching screenshot of my analysis\n> report . I cannot share pdf report because i'm also facing problem in\n> generating pdf report file not found. should i share my configuration files\n> with you? [image: Screenshot from 2023-06-06 12-43-19]\n> https://user-images.githubusercontent.com/113498180/243911717-0848ef08-5fa4-4816-acd9-07e6dd8766b7.png\n> <https://user-images.githubusercontent.com/113498180/243911717-0848ef08-5fa4-4816-acd9-07e6dd8766b7.png>\n> https://user-images.githubusercontent.com/113498180/243911717-0848ef08-5fa4-4816-acd9-07e6dd8766b7.png\n> <https://user-images.githubusercontent.com/113498180/243911717-0848ef08-5fa4-4816-acd9-07e6dd8766b7.png>\n> [image: Screenshot from 2023-06-06 12-42-50]\n> https://user-images.githubusercontent.com/113498180/243911719-4cef2a0f-a5e7-4390-b882-969b6c0fd969.png\n> <https://user-images.githubusercontent.com/113498180/243911719-4cef2a0f-a5e7-4390-b882-969b6c0fd969.png>\n> https://user-images.githubusercontent.com/113498180/243911719-4cef2a0f-a5e7-4390-b882-969b6c0fd969.png\n> <https://user-images.githubusercontent.com/113498180/243911719-4cef2a0f-a5e7-4390-b882-969b6c0fd969.png>\n> \u2014 Reply to this email directly, view it on GitHub <#1506\n> <https://github.com/kevoreilly/CAPEv2/issues/1506> (comment) <#1506\n> (comment)\n> <https://github.com/kevoreilly/CAPEv2/issues/1506#issuecomment-1579868519>>>,\n> or unsubscribe\n> https://github.com/notifications/unsubscribe-auth/AAOFH33WAAQH7PN7QAICKBDXKAAHHANCNFSM6AAAAAAXWXZHVA\n> <https://github.com/notifications/unsubscribe-auth/AAOFH33WAAQH7PN7QAICKBDXKAAHHANCNFSM6AAAAAAXWXZHVA>\n> https://github.com/notifications/unsubscribe-auth/AAOFH33WAAQH7PN7QAICKBDXKAAHHANCNFSM6AAAAAAXWXZHVA\n> <https://github.com/notifications/unsubscribe-auth/AAOFH33WAAQH7PN7QAICKBDXKAAHHANCNFSM6AAAAAAXWXZHVA>\n> . You are receiving this because you modified the open/close state.Message\n> ID: @.> no i didnot used that . how i can use that ? should i have to run\n> it manually by using poetry? \u2014 Reply to this email directly, view it on\n> GitHub <#1506 (comment)\n> <https://github.com/kevoreilly/CAPEv2/issues/1506#issuecomment-1579934170>>,\n> or unsubscribe\n> https://github.com/notifications/unsubscribe-auth/AAOFH35ZPRG6HMSGIVP57ALXKAHMVANCNFSM6AAAAAAXWXZHVA\n> <https://github.com/notifications/unsubscribe-auth/AAOFH35ZPRG6HMSGIVP57ALXKAHMVANCNFSM6AAAAAAXWXZHVA>\n> . You are receiving this because you modified the open/close state.Message\n> ID: @.*>\n>\n> I used community.py but I still got same result as mentioned in the\n> previous\n>\n> i configured cape on my machine . but it doesnot show much details like\n> your sandbox analysis . It just detect single signature but your sandbox\n> detect multiple signatures and my cape sanbox doesnot [image: Screenshot\n> from 2023-06-06 12-47-30]\n> <https://user-images.githubusercontent.com/113498180/243911688-cc31708d-1cfd-493b-9f44-ad9057fa7074.png>\n> provide me a single summary detail I'm attaching screenshot of my analysis\n> report . I cannot share pdf report because i'm also facing problem in\n> generating pdf report *file not found*.\n>\n> *should i share my configuration files with you?*\n>\n> [image: Screenshot from 2023-06-06 12-43-19]\n> <https://user-images.githubusercontent.com/113498180/243911717-0848ef08-5fa4-4816-acd9-07e6dd8766b7.png>\n>\n> [image: Screenshot from 2023-06-06 12-42-50]\n> <https://user-images.githubusercontent.com/113498180/243911719-4cef2a0f-a5e7-4390-b882-969b6c0fd969.png>\n>\n> now I used community.py but I still got same result as mentioned above\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1506#issuecomment-1579974019>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH34PIW6JILYB2FNOLALXKAM2RANCNFSM6AAAAAAXWXZHVA>\n> .\n> You are receiving this because you modified the open/close state.Message\n> ID: ***@***.***>\n>\n\nComment: hey  i hope you are fine. I need little information please guide me.\r\nQ1. which technique(methods/modules/3rd party integration) do cape sandbox use in dynamic analysis?\r\nQ2.  how do cape sandbox do static analysis ? which data base and techniques do it use for static malware  analysis ?\r\ni was searching for ans to these question and I already read documentation but I didnot understand and finds a proper answer \r\n\r\ni will be very thankful to you if you can give answer to these question.\nComment: go over the configs they have most self explanatory and read the pyproject.toml to see dependencies. you will get almost everything about Q2\nComment: Q1: capemon: https://github.com/kevoreilly/capemon\nComment: > go over the configs they have most self explanatory and read the pyproject.toml to see dependencies. you will get almost everything about Q2\r\n\r\nThank you I'll check it\nComment: > Q1: capemon: https://github.com/kevoreilly/capemon\r\n\r\nThanks for your supports \nComment: ![Capture](https://github.com/kevoreilly/CAPEv2/assets/113498180/a04d0a05-b9e2-4ba2-8401-55b4524a138c)\r\n\r\nhey i hope you are fine actually I want to generate bin graph and I also enabled it in **reporting.conf** but when i click on the give  **bingraph** button it just simple reload the page and doesn't generate it what can be the reason\r\n\r\n#reporting.conf\r\n\r\n\r\n https://github.com/geekscrapy/binGraph\r\n requires -> apt-get install python-tk\r\n[bingraph]\r\nenabled = yes\r\non_demand = yes\r\nbinary = yes\r\n geenrate bingraphs for cape/procdumps\r\ncape = yes\r\nprocdump = yes\r\n\r\n\r\n\r\n\r\n\r\n##process log \r\n",
+  "Title: guac-session improvements\nBody: This PR contains some minor improvements for guac-session.\nComment: hey, thank you, can you please enable option that maintainers can edit PR?\nComment: thanks\nComment: @doomedraven I couldn't find a way to enable the option you mentioned, possibly because I forked into an organization.\nComment: np, thanks for pushing requested changes",
+  "Title: Poetry env list command blank output\nBody: Hello guys,\r\n\r\nI'm following the manual for installing capev2, it all went good, I'm in the part where I installed poetry dependencies and all good, but when I do the command poetry env list, does not give me the output as the manual shows:\r\n\r\nOutput of the command in the manual\r\n$ poetry env list\r\ncapev2-t2x27zRb-py3.10 (Activated)\r\n\r\nBut my output is blank\r\ncape-sandbox:/opt/CAPEv2$ poetry env list\r\ncape-sandbox:/opt/CAPEv2$ \r\n\r\nMy poetry env info is this\r\ncape-sandbox:/opt/CAPEv2$ poetry env info\r\n\r\nVirtualenv\r\nPython:         3.10.6\r\nImplementation: CPython\r\nPath:           NA\r\nExecutable:     NA\r\n\r\nSystem\r\nPlatform:   linux\r\nOS:         posix\r\nPython:     3.10.6\r\nPath:       /usr\r\nExecutable: /usr/bin/python3.10\r\n\r\nCan you help please?\r\n\r\nThanks in advance.\r\nBest regards\r\n\nComment: hey, what about `cd /opt/CAPEv2 && poetry shell`?\nComment: Here goes the output\r\n\r\n/opt/CAPEv2$ poetry shell\r\nCreating virtualenv capev2-t2x27zRb-py3.10 in /home/ghost/.cache/pypoetry/virtualenvs\r\nSpawning shell within /home/ghost/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10\r\n. /home/ghost/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/activate\r\nghost@cape-sandbox:/opt/CAPEv2$ . /home/ghost/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/activate\r\n(capev2-py3.10) ghost@cape-sandbox:/opt/CAPEv2$ poetry env list\r\ncapev2-t2x27zRb-py3.10 (Activated)\r\n(capev2-py3.10) ghost@cape-sandbox:/opt/CAPEv2$ \r\n\r\nIs this ok?\r\n\nComment: so now you have it\nComment: but idk how you was installing dependencies and it wasn't created, so dependencies are not installed\nComment: No, no it looks like it did it all, look:\r\n\r\nsudo poetry install\r\n[sudo] password for ghost: \r\nInstalling dependencies from lock file\r\nWarning: poetry.lock is not consistent with pyproject.toml. You may be getting improper dependencies. Run `poetry lock [--no-update]` to fix it.\r\n\r\nPackage operations: 172 installs, 1 update, 0 removals\r\n\r\n  \u2022 Installing pycparser (2.21)\r\n  \u2022 Installing cffi (1.15.1)\r\n  \u2022 Installing pyasn1 (0.4.8)\r\n  \u2022 Installing attrs (21.4.0)\r\n  \u2022 Installing cryptography (39.0.1)\r\n  \u2022 Installing idna (3.4)\r\n  \u2022 Installing pyasn1-modules (0.2.8)\r\n  \u2022 Updating setuptools (67.6.1 -> 67.6.0)\r\n  \u2022 Installing six (1.16.0)\r\n  \u2022 Installing automat (22.10.0)\r\n  \u2022 Installing certifi (2022.12.7)\r\n  \u2022 Installing charset-normalizer (2.0.12)\r\n  \u2022 Installing colorama (0.4.5)\r\n  \u2022 Installing constantly (15.1.0)\r\n  \u2022 Installing cxxfilt (0.2.2)\r\n  \u2022 Installing et-xmlfile (1.1.0)\r\n  \u2022 Installing future (0.18.3)\r\n  \u2022 Installing hyperlink (21.0.0)\r\n  \u2022 Installing incremental (22.10.0)\r\n  \u2022 Installing msgpack (1.0.5)\r\n  \u2022 Installing pyopenssl (23.0.0)\r\n  \u2022 Installing service-identity (21.1.0)\r\n  \u2022 Installing sniffio (1.3.0)\r\n  \u2022 Installing sortedcontainers (2.4.0)\r\n  \u2022 Installing txaio (23.1.1)\r\n  \u2022 Installing typing-extensions (4.2.0)\r\n  \u2022 Installing urllib3 (1.26.14)\r\n  \u2022 Installing zipp (3.15.0)\r\n  \u2022 Installing zope-interface (5.5.2)\r\n  \u2022 Installing anyio (3.6.2)\r\n  \u2022 Installing asgiref (3.6.0)\r\n  \u2022 Installing autobahn (23.1.2): Preparing...\r\n  \u2022 Installing commonmark (0.9.1)\r\n  \u2022 Installing decorator (4.4.2)\r\n  \u2022 Installing defusedxml (0.7.1)\r\n  \u2022 Installing distlib (0.3.6)\r\n  \u2022 Installing exceptiongroup (1.1.0)\r\n  \u2022 Installing funcy (1.17)\r\n  \u2022 Installing filelock (3.9.0)\r\n  \u2022 Installing greenlet (2.0.1)\r\n  \u2022 Installing ida-netnode (3.0)\r\n  \u2022 Installing importlib-metadata (3.3.0)\r\n  \u2022 Installing iniconfig (2.0.0)\r\n  \u2022 Installing commonmark (0.9.1)\r\n  \u2022 Installing decorator (4.4.2)\r\n  \u2022 Installing defusedxml (0.7.1)\r\n  \u2022 Installing distlib (0.3.6)\r\n  \u2022 Installing exceptiongroup (1.1.0)\r\n  \u2022 Installing funcy (1.17)\r\n  \u2022 Installing filelock (3.9.0)\r\n  \u2022 Installing greenlet (2.0.1)\r\n  \u2022 Installing ida-netnode (3.0)\r\n  \u2022 Installing importlib-metadata (3.3.0)\r\n  \u2022 Installing iniconfig (2.0.0)\r\n  \u2022 Installing autobahn (23.1.2): Installing...\r\n  \u2022 Installing commonmark (0.9.1)\r\n  \u2022 Installing decorator (4.4.2)\r\n  \u2022 Installing defusedxml (0.7.1)\r\n  \u2022 Installing distlib (0.3.6)\r\n  \u2022 Installing exceptiongroup (1.1.0)\r\n  \u2022 Installing funcy (1.17)\r\n  \u2022 Installing filelock (3.9.0)\r\n  \u2022 Installing greenlet (2.0.1)\r\n  \u2022 Installing ida-netnode (3.0)\r\n  \u2022 Installing importlib-metadata (3.3.0)\r\n  \u2022 Installing iniconfig (2.0.0)\r\n  \u2022 Installing commonmark (0.9.1)\r\n  \u2022 Installing decorator (4.4.2)\r\n  \u2022 Installing defusedxml (0.7.1)\r\n  \u2022 Installing distlib (0.3.6)\r\n  \u2022 Installing exceptiongroup (1.1.0)\r\n  \u2022 Installing funcy (1.17)\r\n  \u2022 Installing filelock (3.9.0)\r\n  \u2022 Installing greenlet (2.0.1)\r\n  \u2022 Installing ida-netnode (3.0)\r\n  \u2022 Installing importlib-metadata (3.3.0)\r\n  \u2022 Installing iniconfig (2.0.0)\r\n  \u2022 Installing autobahn (23.1.2)\r\n  \u2022 Installing commonmark (0.9.1)\r\n  \u2022 Installing decorator (4.4.2)\r\n  \u2022 Installing defusedxml (0.7.1)\r\n  \u2022 Installing distlib (0.3.6)\r\n  \u2022 Installing exceptiongroup (1.1.0)\r\n  \u2022 Installing funcy (1.17)\r\n  \u2022 Installing filelock (3.9.0)\r\n  \u2022 Installing greenlet (2.0.1)\r\n  \u2022 Installing ida-netnode (3.0)\r\n  \u2022 Installing importlib-metadata (3.3.0)\r\n  \u2022 Installing iniconfig (2.0.0)\r\n  \u2022 Installing intervaltree (3.1.0)\r\n  \u2022 Installing log-symbols (0.0.14)\r\n  \u2022 Installing markupsafe (2.1.2)\r\n  \u2022 Installing oauthlib (3.2.2)\r\n  \u2022 Installing olefile (0.46)\r\n  \u2022 Installing openpyxl (3.1.1)\r\n  \u2022 Installing packaging (23.0)\r\n  \u2022 Installing pefile (2022.5.30)\r\n  \u2022 Installing platformdirs (3.1.0)\r\n  \u2022 Installing pluggy (1.0.0)\r\n  \u2022 Installing pydantic (1.10.4)\r\n  \u2022 Installing pygments (2.14.0)\r\n  \u2022 Installing python-flirt (0.8.6)\r\n  \u2022 Installing pyyaml (6.0)\r\n  \u2022 Installing requests (2.28.0)\r\n  \u2022 Installing ruamel-yaml-clib (0.2.7)\r\n  \u2022 Installing soupsieve (2.4)\r\n  \u2022 Installing spinners (0.0.24)\r\n  \u2022 Installing sqlparse (0.4.3)\r\n  \u2022 Installing termcolor (2.2.0)\r\n  \u2022 Installing tomli (2.0.1)\r\n  \u2022 Installing twisted (22.10.0)\r\n  \u2022 Installing vivisect (1.0.8)\r\n  \u2022 Installing beautifulsoup4 (4.11.2)\r\n  \u2022 Installing cfgv (3.3.1)\r\n  \u2022 Installing click (8.1.3)\r\n  \u2022 Installing colorclass (2.2.2)\r\n  \u2022 Installing coverage (7.2.1)\r\n  \u2022 Installing daphne (3.0.2)\r\n  \u2022 Installing django (4.1.7): Installing...\r\n  \u2022 Installing dncil (1.0.2)\r\n  \u2022 Installing dnfile (0.13.0)\r\n  \u2022 Installing dnspython (2.1.0)\r\n  \u2022 Installing easygui (0.98.3)\r\n  \u2022 Installing execnet (1.9.0)\r\n  \u2022 Installing fire (0.4.0): Preparing...\r\n  \u2022 Installing h11 (0.14.0)\r\n  \u2022 Installing halo (0.0.31): Preparing...\r\n  \u2022 Installing ida-settings (2.1.0): Preparing...\r\n  \u2022 Installing ida-settings (2.1.0): Installing...\r\n  \u2022 Installing ida-settings (2.1.0)\r\n  \u2022 Installing identify (2.5.19)\r\n  \u2022 Installing httptools (0.5.0)\r\n  \u2022 Installing h11 (0.14.0)\r\n  \u2022 Installing halo (0.0.31): Preparing...\r\n  \u2022 Installing ida-settings (2.1.0)\r\n  \u2022 Installing identify (2.5.19)\r\n  \u2022 Installing httptools (0.5.0)\r\n  \u2022 Installing fire (0.4.0): Installing...\r\n  \u2022 Installing h11 (0.14.0)\r\n  \u2022 Installing halo (0.0.31): Preparing...\r\n  \u2022 Installing ida-settings (2.1.0)\r\n  \u2022 Installing identify (2.5.19)\r\n  \u2022 Installing httptools (0.5.0)\r\n  \u2022 Installing ida-settings (2.1.0)\r\n  \u2022 Installing identify (2.5.19)\r\n  \u2022 Installing httptools (0.5.0)\r\n  \u2022 Installing halo (0.0.31): Installing...\r\n  \u2022 Installing ida-settings (2.1.0)\r\n  \u2022 Installing identify (2.5.19)\r\n  \u2022 Installing httptools (0.5.0)\r\n  \u2022 Installing ida-settings (2.1.0)\r\n  \u2022 Installing identify (2.5.19)\r\n  \u2022 Installing httptools (0.5.0)\r\n  \u2022 Installing halo (0.0.31)\r\n  \u2022 Installing ida-settings (2.1.0)\r\n  \u2022 Installing identify (2.5.19)\r\n  \u2022 Installing httptools (0.5.0)\r\n  \u2022 Installing mako (1.2.4)\r\n  \u2022 Installing msoffcrypto-tool (5.0.1)\r\n  \u2022 Installing h11 (0.14.0)\r\n  \u2022 Installing halo (0.0.31)\r\n  \u2022 Installing ida-settings (2.1.0)\r\n  \u2022 Installing identify (2.5.19)\r\n  \u2022 Installing httptools (0.5.0)\r\n  \u2022 Installing mako (1.2.4)\r\n  \u2022 Installing msoffcrypto-tool (5.0.1)\r\n  \u2022 Installing fire (0.4.0)\r\n  \u2022 Installing h11 (0.14.0)\r\n  \u2022 Installing halo (0.0.31)\r\n  \u2022 Installing ida-settings (2.1.0)\r\n  \u2022 Installing identify (2.5.19)\r\n  \u2022 Installing httptools (0.5.0)\r\n  \u2022 Installing mako (1.2.4)\r\n  \u2022 Installing msoffcrypto-tool (5.0.1)\r\n  \u2022 Installing mypy-extensions (1.0.0)\r\n  \u2022 Installing networkx (2.5.1)\r\n  \u2022 Installing nodeenv (1.7.0)\r\n  \u2022 Installing pathspec (0.11.0)\r\n  \u2022 Installing pcodedmp (1.2.6)\r\n  \u2022 Installing dncil (1.0.2)\r\n  \u2022 Installing dnfile (0.13.0)\r\n  \u2022 Installing dnspython (2.1.0)\r\n  \u2022 Installing easygui (0.98.3)\r\n  \u2022 Installing execnet (1.9.0)\r\n  \u2022 Installing fire (0.4.0)\r\n  \u2022 Installing h11 (0.14.0)\r\n  \u2022 Installing halo (0.0.31)\r\n  \u2022 Installing ida-settings (2.1.0)\r\n  \u2022 Installing identify (2.5.19)\r\n  \u2022 Installing httptools (0.5.0)\r\n  \u2022 Installing mako (1.2.4)\r\n  \u2022 Installing msoffcrypto-tool (5.0.1)\r\n  \u2022 Installing mypy-extensions (1.0.0)\r\n  \u2022 Installing networkx (2.5.1)\r\n  \u2022 Installing nodeenv (1.7.0)\r\n  \u2022 Installing pathspec (0.11.0)\r\n  \u2022 Installing pcodedmp (1.2.6)\r\n  \u2022 Installing django (4.1.7)\r\n  \u2022 Installing dncil (1.0.2)\r\n  \u2022 Installing dnfile (0.13.0)\r\n  \u2022 Installing dnspython (2.1.0)\r\n  \u2022 Installing easygui (0.98.3)\r\n  \u2022 Installing execnet (1.9.0)\r\n  \u2022 Installing fire (0.4.0)\r\n  \u2022 Installing h11 (0.14.0)\r\n  \u2022 Installing halo (0.0.31)\r\n  \u2022 Installing ida-settings (2.1.0)\r\n  \u2022 Installing identify (2.5.19)\r\n  \u2022 Installing httptools (0.5.0)\r\n  \u2022 Installing mako (1.2.4)\r\n  \u2022 Installing msoffcrypto-tool (5.0.1)\r\n  \u2022 Installing mypy-extensions (1.0.0)\r\n  \u2022 Installing networkx (2.5.1)\r\n  \u2022 Installing nodeenv (1.7.0)\r\n  \u2022 Installing pathspec (0.11.0)\r\n  \u2022 Installing pcodedmp (1.2.6)\r\n  \u2022 Installing pyattck-data (2.6.2)\r\n  \u2022 Installing pycryptodomex (3.14.0)\r\n  \u2022 Installing pyelftools (0.29)\r\n  \u2022 Installing pyjwt (2.6.0)\r\n  \u2022 Installing pyparsing (2.4.7)\r\n  \u2022 Installing pysocks (1.7.1)\r\n  \u2022 Installing pytest (7.2.0)\r\n  \u2022 Installing python-dotenv (1.0.0)\r\n  \u2022 Installing python-magic (0.4.27)\r\n  \u2022 Installing python3-openid (3.2.0)\r\n  \u2022 Installing pytz (2021.1)\r\n  \u2022 Installing requests-file (1.5.1)\r\n  \u2022 Installing requests-oauthlib (1.3.1)\r\n  \u2022 Installing rich (12.6.0)\r\n  \u2022 Installing ruamel-yaml (0.17.21)\r\n  \u2022 Installing sqlalchemy (1.4.22)\r\n  \u2022 Installing tabulate (0.9.0)\r\n  \u2022 Installing tqdm (4.64.1)\r\n  \u2022 Installing unicorn (2.0.1.post1)\r\n  \u2022 Installing uvloop (0.17.0)\r\n  \u2022 Installing virtualenv (20.20.0)\r\n  \u2022 Installing viv-utils (0.7.7)\r\n  \u2022 Installing watchfiles (0.18.1)\r\n  \u2022 Installing wcwidth (0.2.6)\r\n  \u2022 Installing websockets (10.4)\r\n  \u2022 Installing yara-python (4.2.3)\r\n  \u2022 Installing zope-event (4.6)\r\n  \u2022 Installing alembic (1.9.4)\r\n  \u2022 Installing black (22.12.0)\r\n  \u2022 Installing bs4 (0.0.1)\r\n  \u2022 Installing capstone (4.0.2)\r\n  \u2022 Installing channels (3.0.5)\r\n  \u2022 Installing chardet (4.0.0)\r\n  \u2022 Installing cython (0.29.24)\r\n  \u2022 Installing django-allauth (0.54.0): Preparing...\r\n  \u2022 Installing django-crispy-forms (1.14.0)\r\n  \u2022 Installing django-csp (3.7)\r\n  \u2022 Installing django-extensions (3.2.1)\r\n  \u2022 Installing django-ratelimit (3.0.1)\r\n  \u2022 Installing django-recaptcha (3.0.0)\r\n  \u2022 Installing django-settings-export (1.2.1)\r\n  \u2022 Installing djangorestframework (3.14.0)\r\n  \u2022 Installing dpkt (1.9.6)\r\n  \u2022 Installing flare-capa (5.0.0)\r\n  \u2022 Installing func-timeout (4.3.5)\r\n  \u2022 Installing gevent (22.10.2)\r\n  \u2022 Installing gunicorn (20.1.0)\r\n  \u2022 Installing httpretty (1.1.4)\r\n  \u2022 Installing isort (5.12.0)\r\n  \u2022 Installing jinja2 (3.1.2)\r\n  \u2022 Installing lnkparse3 (1.2.0)\r\n  \u2022 Installing maxminddb (2.2.0)\r\n  \u2022 Installing netstruct (1.1.2)\r\n  \u2022 Installing oletools (0.60)\r\n  \u2022 Installing django-crispy-forms (1.14.0)\r\n  \u2022 Installing django-csp (3.7)\r\n  \u2022 Installing django-extensions (3.2.1)\r\n  \u2022 Installing django-ratelimit (3.0.1)\r\n  \u2022 Installing django-recaptcha (3.0.0)\r\n  \u2022 Installing django-settings-export (1.2.1)\r\n  \u2022 Installing djangorestframework (3.14.0)\r\n  \u2022 Installing dpkt (1.9.6)\r\n  \u2022 Installing flare-capa (5.0.0)\r\n  \u2022 Installing func-timeout (4.3.5)\r\n  \u2022 Installing gevent (22.10.2)\r\n  \u2022 Installing gunicorn (20.1.0)\r\n  \u2022 Installing httpretty (1.1.4)\r\n  \u2022 Installing isort (5.12.0)\r\n  \u2022 Installing jinja2 (3.1.2)\r\n  \u2022 Installing lnkparse3 (1.2.0)\r\n  \u2022 Installing maxminddb (2.2.0)\r\n  \u2022 Installing netstruct (1.1.2)\r\n  \u2022 Installing oletools (0.60)\r\n  \u2022 Installing django-allauth (0.54.0): Installing...\r\n  \u2022 Installing django-crispy-forms (1.14.0)\r\n  \u2022 Installing django-csp (3.7)\r\n  \u2022 Installing django-extensions (3.2.1)\r\n  \u2022 Installing django-ratelimit (3.0.1)\r\n  \u2022 Installing django-recaptcha (3.0.0)\r\n  \u2022 Installing django-settings-export (1.2.1)\r\n  \u2022 Installing djangorestframework (3.14.0)\r\n  \u2022 Installing dpkt (1.9.6)\r\n  \u2022 Installing flare-capa (5.0.0)\r\n  \u2022 Installing func-timeout (4.3.5)\r\n  \u2022 Installing gevent (22.10.2)\r\n  \u2022 Installing gunicorn (20.1.0)\r\n  \u2022 Installing httpretty (1.1.4)\r\n  \u2022 Installing isort (5.12.0)\r\n  \u2022 Installing jinja2 (3.1.2)\r\n  \u2022 Installing lnkparse3 (1.2.0)\r\n  \u2022 Installing maxminddb (2.2.0)\r\n  \u2022 Installing netstruct (1.1.2)\r\n  \u2022 Installing oletools (0.60)\r\n  \u2022 Installing django-crispy-forms (1.14.0)\r\n  \u2022 Installing django-csp (3.7)\r\n  \u2022 Installing django-extensions (3.2.1)\r\n  \u2022 Installing django-ratelimit (3.0.1)\r\n  \u2022 Installing django-recaptcha (3.0.0)\r\n  \u2022 Installing django-settings-export (1.2.1)\r\n  \u2022 Installing djangorestframework (3.14.0)\r\n  \u2022 Installing dpkt (1.9.6)\r\n  \u2022 Installing flare-capa (5.0.0)\r\n  \u2022 Installing func-timeout (4.3.5)\r\n  \u2022 Installing gevent (22.10.2)\r\n  \u2022 Installing gunicorn (20.1.0)\r\n  \u2022 Installing httpretty (1.1.4)\r\n  \u2022 Installing isort (5.12.0)\r\n  \u2022 Installing jinja2 (3.1.2)\r\n  \u2022 Installing lnkparse3 (1.2.0)\r\n  \u2022 Installing maxminddb (2.2.0)\r\n  \u2022 Installing netstruct (1.1.2)\r\n  \u2022 Installing oletools (0.60)\r\n  \u2022 Installing django-allauth (0.54.0)\r\n  \u2022 Installing django-crispy-forms (1.14.0)\r\n  \u2022 Installing django-csp (3.7)\r\n  \u2022 Installing django-extensions (3.2.1)\r\n  \u2022 Installing django-ratelimit (3.0.1)\r\n  \u2022 Installing django-recaptcha (3.0.0)\r\n  \u2022 Installing django-settings-export (1.2.1)\r\n  \u2022 Installing djangorestframework (3.14.0)\r\n  \u2022 Installing dpkt (1.9.6)\r\n  \u2022 Installing flare-capa (5.0.0)\r\n  \u2022 Installing func-timeout (4.3.5)\r\n  \u2022 Installing gevent (22.10.2)\r\n  \u2022 Installing gunicorn (20.1.0)\r\n  \u2022 Installing httpretty (1.1.4)\r\n  \u2022 Installing isort (5.12.0)\r\n  \u2022 Installing jinja2 (3.1.2)\r\n  \u2022 Installing lnkparse3 (1.2.0)\r\n  \u2022 Installing maxminddb (2.2.0)\r\n  \u2022 Installing netstruct (1.1.2)\r\n  \u2022 Installing oletools (0.60)\r\n  \u2022 Installing orjson (3.8.5)\r\n  \u2022 Installing pebble (4.6.3)\r\n  \u2022 Installing pillow (9.4.0)\r\n  \u2022 Installing pre-commit (2.21.0)\r\n  \u2022 Installing psutil (5.8.0): Preparing...\r\n  \u2022 Installing psutil (5.8.0): Installing...\r\n  \u2022 Installing psutil (5.8.0)\r\n  \u2022 Installing psycopg2-binary (2.9.5)\r\n  \u2022 Installing pyattck (7.1.1)\r\n  \u2022 Installing pydeep2 (0.5.1)\r\n  \u2022 Installing pygal (2.4.0)\r\n  \u2022 Installing pyguacamole (0.11)\r\n  \u2022 Installing pymongo (4.3.3)\r\n  \u2022 Installing pytest-asyncio (0.18.3)\r\n  \u2022 Installing pytest-cov (3.0.0)\r\n  \u2022 Installing pytest-django (4.5.2)\r\n  \u2022 Installing pytest-mock (3.7.0)\r\n  \u2022 Installing pytest-pretty (1.1.0)\r\n  \u2022 Installing pytest-xdist (3.0.2)\r\n  \u2022 Installing python-tlsh (4.5.0)\r\n  \u2022 Installing python-whois (0.7.3)\r\n  \u2022 Installing pyzipper (0.3.5)\r\n  \u2022 Installing regex (2021.7.6)\r\n  \u2022 Installing setproctitle (1.3.2)\r\n  \u2022 Installing sflock2 (0.3.49)\r\n  \u2022 Installing sqlalchemy-utils (0.37.8)\r\n  \u2022 Installing tenacity (8.1.0)\r\n  \u2022 Installing tldextract (3.1.0)\r\n  \u2022 Installing uvicorn (0.18.3)\r\n  \u2022 Installing werkzeug (2.2.3)\r\n\r\nI just follow your manual Installing CAPE\r\n\r\nIs this good also?\nComment: `sudo poetry install` <- installs for root, not cape user, duplicated like this https://github.com/kevoreilly/CAPEv2/issues/1501 but with requirements\nComment: i see error in docs, fixing, thanks\nComment: So what should I do now?\r\n\r\nCan you help? Or may I continue with the setup?\nComment: cd /opt/CAPEv2 && poetry install\nComment: docs updated, removed `sudo` from `poetry install` after install deps without sudo you can follow\nComment: @doomedraven \r\n\r\nThank you very much for your help, I think we may close this issue for now.\r\n\r\nBest regards.\nComment: you are welcome\nComment: Now it looks good:\r\n\r\ncape-sandbox:/opt/CAPEv2$ poetry env list\r\ncapev2-t2x27zRb-py3.10 (Activated)\r\nghost@cape-sandbox:/opt/CAPEv2$ \r\n",
+  "Title: Staging\nBody: None",
+  "Title: small fix\nBody: None",
+  "Title: Unable to successfully start a cape (pls help)\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. step 1\r\n2. step 2\r\n3. you get it...\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 16.04, Windows 10, macOS 10.12.3\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\r\n\r\n\r\n\r\n\r\n\r\nHello Team,\r\n\r\nSorry for bothering you but I have tried multiple solutions to finally start up my environment and still I cannot succeed on that.\r\nI am currently struggling with creating an operational CAPEv2 sandbox.\r\nHere are some details about my config:\r\n\r\nHost: Ubuntu 22.04 LTS\r\nused as nested environment vendor: VirtualBox Version 6.1.38_Ubuntu r153438\r\n(yes I know that the recommended one is kvm/qemu but I prefer a VirtualBox and want to test it with this vendor)\r\nGuests: 4xWin7x64\r\n\r\nWherever I am trying to start up my cape instance there is just a list of logs with an error that:\r\n#######################################################\r\ncape@cape-AP:/opt/CAPEv2$ python3 cuckoo.py -q\r\n\r\n Cuckoo Sandbox 2.4-CAPE\r\n www.cuckoosandbox.org\r\n Copyright (c) 2010-2015\r\n\r\n CAPE: Config and Payload Extraction\r\n github.com/kevoreilly/CAPEv2\r\n\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/cuckoo.py\", line 121, in <module>\r\n    cuckoo_main(max_analysis_count=args.max_analysis_count)\r\n  File \"/opt/CAPEv2/cuckoo.py\", line 101, in cuckoo_main\r\n    sched.start()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 792, in start\r\n    self.initialize()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 723, in initialize\r\n    machinery = plugin()\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 115, in __init__\r\n    self.db.clean_machines()\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/utils.py\", line 843, in inner\r\n    return f(self, *args, **kwargs)\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/database.py\", line 651, in clean_machines\r\n    self.engine.execute(machines_tags.delete())\r\nAttributeError: 'Engine' object has no attribute 'execute'\r\n#################################################################\r\n\r\nCan you please help me to resolve this issue to finally start the CAPE up? Any kind of tips will be a good help.\r\nThank you.\r\n\r\n![error-cape](https://user-images.githubusercontent.com/48366374/233832214-4a914877-af14-4e0f-9299-ae1e274790b7.png)\r\n\nComment: how did you install python libraries? poetry? it looks like some problem with sqlalchemy or related to\nComment: Hi Chief,\r\n\r\nThank you very much fro your prompt response!\r\n\r\nUnfortunately I didn\u2019t use the installation path with the poetry.\r\nI followed some old manual from the link below:\r\nhttps://notes.netbytesec.com/2020/12/cape-sandbox-installation-from-0-to-hero.html\r\n\r\nThen I had to apply some fixes with missed dependencies and the final one was:\r\nsudo pip install -r requirements.txt\r\n\r\nAfter this one there was no issues like \u201cyou have to install this and this\u2026\u201d\r\n\r\nDo you know any steps how to resolve the issue with the sql alchemy?\r\nI am so close to finally start it up that I don\u2019t wanna to end it here.\r\n\r\n\nComment: Keep going - it is worth the effort (although obviously I would say that!)\nComment: the steps is to not follow those blogs, that one was for long time in readme as not to follow for their suggestions. use official scripts at least cape2.sh. so no, i don't have idea what is wrong as i don't have idea what you did. Follow official docs.\r\n\r\nPS installing deps as root installs them for root and sometime not for cape user, so you should install it as cape user so far\nComment: Tested the tip and it worked perfectly.\r\n(for the record just run: pip install -r requirements.txt or just follow the official documentation)\r\n\r\nThank you so much guys for your help with resolving this issue \u1566( \u0361\u00b0 \u035c\u0296 \u0361\u00b0)\u1564\r\n\r\nCase closed.\nComment: glad that solved your problem",
+  "Title: Bump sqlparse from 0.4.3 to 0.4.4\nBody: Bumps [sqlparse](https://github.com/andialbrecht/sqlparse) from 0.4.3 to 0.4.4.\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/andialbrecht/sqlparse/blob/master/CHANGELOG\">sqlparse's changelog</a>.</em></p>\n<blockquote>\n<h2>Release 0.4.4 (Apr 18, 2023)</h2>\n<p>Notable Changes</p>\n<ul>\n<li>IMPORTANT: This release fixes a security vulnerability in the\nparser where a regular expression vulnerable to ReDOS (Regular\nExpression Denial of Service) was used. See the security advisory\nfor details: <a href=\"https://github.com/andialbrecht/sqlparse/security/advisories/GHSA-rrm6-wvj7-cwh2\">https://github.com/andialbrecht/sqlparse/security/advisories/GHSA-rrm6-wvj7-cwh2</a>\nThe vulnerability was discovered by <a href=\"https://github.com/erik-krogh\"><code>@\u200berik-krogh</code></a> from GitHub\nSecurity Lab (GHSL). Thanks for reporting!</li>\n</ul>\n<p>Bug Fixes</p>\n<ul>\n<li>Revert a change from 0.4.0 that changed IN to be a comparison (issue694).\nThe primary expectation is that IN is treated as a keyword and not as a\ncomparison operator. That also follows the definition of reserved keywords\nfor the major SQL syntax definitions.</li>\n<li>Fix regular expressions for string parsing.</li>\n</ul>\n<p>Other</p>\n<ul>\n<li>sqlparse now uses pyproject.toml instead of setup.cfg (issue685).</li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/andialbrecht/sqlparse/commit/647d1457acf7d88614215841eb15d423df2a1895\"><code>647d145</code></a> Update Changelog.</li>\n<li><a href=\"https://github.com/andialbrecht/sqlparse/commit/58dae6fcd2a51209aeccd4fff3b923bf37714e19\"><code>58dae6f</code></a> Bump version.</li>\n<li><a href=\"https://github.com/andialbrecht/sqlparse/commit/d9d69f47ed13a583c81473211f44ae320470a58b\"><code>d9d69f4</code></a> Removed test file</li>\n<li><a href=\"https://github.com/andialbrecht/sqlparse/commit/64bb91f4880b46f73b4cc9207ae9ccc180d56d1b\"><code>64bb91f</code></a> Testing branch</li>\n<li><a href=\"https://github.com/andialbrecht/sqlparse/commit/c457abd5f097dd13fb21543381e7cfafe7d31cfb\"><code>c457abd</code></a> Remove unnecessary parts in regex for bad escaping.</li>\n<li><a href=\"https://github.com/andialbrecht/sqlparse/commit/b949fdf9a1538f98b57612bef6306fc38f32aaf7\"><code>b949fdf</code></a> CI: Use codecov action.</li>\n<li><a href=\"https://github.com/andialbrecht/sqlparse/commit/fc76056fb8f0ec713a3f2a2b6206a3336932c382\"><code>fc76056</code></a> Cleanup regex for detecting keywords (fixes <a href=\"https://redirect.github.com/andialbrecht/sqlparse/issues/709\">#709</a>).</li>\n<li><a href=\"https://github.com/andialbrecht/sqlparse/commit/7fdb2da82d51a9a02baaefb5c7fe5cbbaac4329e\"><code>7fdb2da</code></a> Merge pull request <a href=\"https://redirect.github.com/andialbrecht/sqlparse/issues/633\">#633</a> from shikanime/master</li>\n<li><a href=\"https://github.com/andialbrecht/sqlparse/commit/dd9d5b91d7aa30e4a000d5370f09dc99378891dc\"><code>dd9d5b9</code></a> Fix get_type with comments between WITH keyword</li>\n<li><a href=\"https://github.com/andialbrecht/sqlparse/commit/907fb496f90f2719095a1f01fe24db1e5c0e15a8\"><code>907fb49</code></a> change singleton behavior</li>\n<li>Additional commits viewable in <a href=\"https://github.com/andialbrecht/sqlparse/compare/0.4.3...0.4.4\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=sqlparse&package-manager=pip&previous-version=0.4.3&new-version=0.4.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Update .yara-ci.yml\nBody: None",
+  "Title: Update dist.py\nBody: None",
+  "Title: tcpdump not generating PCAP files for analysis\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ x ] I am running the latest version\r\n- [ x ] I did read the README!\r\n- [ x ] I checked the documentation and found no answer\r\n- [ x ] I checked to make sure that this issue has not already been filed\r\n- [ x ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ x ] I have read and checked all configs (with all optional parts)\r\n- [ x ] I'm aware that configs now are in `custom/conf/`\r\n\r\n\r\n# Expected Behavior\r\n\r\nThe `[modules.auxiliary.sniffer]` should launch a `tcpdump` process with configured network interface, and a TCP dump (PCAP) file should be saved at `storage/analyses/<TASK_ID>/dump.pcap`, which is then used by `cape-processor` to extract network IOCs.\r\n\r\n# Current Behavior\r\n\r\nThe `[modules.auxiliary.sniffer]` launches a `tcpdump` process, with output file path as `storage/analyses/<TASK_ID>/dump.pcap`, but `cape-processor` says \"PCAP file does not exits\" and it is true. PCAP file doesn't exist in the expected location.\r\n\r\n# Failure Information (for bugs)\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Update to latest git commit of CAPEv2\r\n2. Restore the configuration file. \r\n3. Start an analysis\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | commit 3dfe70c65b51bc012eece0081ebc8b48fa4ac71e\r\n| OS version       | Ubuntu 22.04.2 LTS\r\n## Failure Logs\r\n\r\n`journalctl` log from `cape.service`\r\n\r\n```\r\nApr 20 06:32:41 mostwanted002-ThreatIntel-DB python3[50166]: 2023-04-20 06:32:41,396 [lib.cuckoo.core.scheduler] INFO: Task #17528: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_mvpju8_c/DNSBench.exe'\r\nApr 20 06:32:41 mostwanted002-ThreatIntel-DB python3[50166]: 2023-04-20 06:32:41,412 [lib.cuckoo.core.scheduler] INFO: Task #17528: acquired machine cape_guest (label=cape_guest, arch=x64, platform=windows)\r\nApr 20 06:32:49 mostwanted002-ThreatIntel-DB python3[50166]: 2023-04-20 06:32:49,314 [lib.cuckoo.core.scheduler] INFO: Enabled route 'inetsim'.\r\nApr 20 06:32:49 mostwanted002-ThreatIntel-DB python3[50166]: 2023-04-20 06:32:49,317 [modules.auxiliary.sniffer] INFO: Started sniffer with PID 53677 (interface=virbr1, host=172.24.69.69, dump path=/opt/CAPEv2/storage/analyses/17528/dump.pcap)\r\nApr 20 06:32:49 mostwanted002-ThreatIntel-DB python3[50166]: 2023-04-20 06:32:49,332 [lib.cuckoo.core.guest] INFO: Task #17528: Starting analysis on guest (id=cape_guest, ip=172.24.69.69)\r\nApr 20 06:32:49 mostwanted002-ThreatIntel-DB python3[50166]: 2023-04-20 06:32:49,356 [lib.cuckoo.core.guest] INFO: Task #17528: Guest is running CAPE Agent 0.11 (id=cape_guest, ip=172.24.69.69)\r\nApr 20 06:32:51 mostwanted002-ThreatIntel-DB python3[50166]: 2023-04-20 06:32:51,880 [lib.cuckoo.core.guest] INFO: Task #17528: Uploading support files to guest (id=cape_guest, ip=172.24.69.69)\r\nApr 20 06:32:51 mostwanted002-ThreatIntel-DB python3[50166]: 2023-04-20 06:32:51,880 [lib.cuckoo.core.guest] INFO: Task #17528: Uploading script files to guest (id=cape_guest, ip=172.24.69.69)\r\nApr 20 06:36:51 mostwanted002-ThreatIntel-DB python3[50166]: 2023-04-20 06:36:51,494 [lib.cuckoo.core.guest] INFO: Task #17528: Analysis completed successfully (id=cape_guest, ip=172.24.69.69)\r\nApr 20 06:36:52 mostwanted002-ThreatIntel-DB python3[50166]: 2023-04-20 06:36:52,798 [lib.cuckoo.core.scheduler] INFO: Disabled route 'inetsim'\r\nApr 20 06:36:53 mostwanted002-ThreatIntel-DB python3[50166]: 2023-04-20 06:36:53,242 [lib.cuckoo.core.scheduler] INFO: Task #17528: analysis procedure completed\r\n```\r\n\r\n\r\n`journalctl` log from `cape-processor.service`\r\n\r\n```\r\nApr 20 06:27:21 mostwanted002-ThreatIntel-DB python3[50165]: 2023-04-20 06:27:21,636 [root] INFO: Processing analysis data\r\nApr 20 06:36:57 mostwanted002-ThreatIntel-DB python3[50165]: 2023-04-20 06:36:57,501 [root] INFO: Processing analysis data for Task #17528\r\nApr 20 06:36:57 mostwanted002-ThreatIntel-DB python3[50165]: OPTIONAL! Missed dependency: pip3 install https://github.com/CAPESandbox/peepdf/archive/20eda78d7d77fc5b3b652ffc2d8a5b0af796e3dd.zip#egg=peepdf==0.4.2\r\nApr 20 06:36:57 mostwanted002-ThreatIntel-DB python3[50165]: OPTIONAL! Missed dependency: pip3 install -U git+https://github.com/DissectMalware/batch_deobfuscator\r\nApr 20 06:36:57 mostwanted002-ThreatIntel-DB python3[50165]: OPTIONAL! Missed dependency: pip3 install -U git+https://github.com/CAPESandbox/httpreplay\r\nApr 20 06:37:01 mostwanted002-ThreatIntel-DB python3[56307]: 2023-04-20 06:37:01,456 [Task 17528] [modules.processing.network] WARNING: The PCAP file does not exist at path \"/opt/CAPEv2/storage/analyses/17528/dump.pcap\"\r\nApr 20 06:37:01 mostwanted002-ThreatIntel-DB python3[56307]: 2023-04-20 06:37:01,456 [Task 17528] [modules.processing.network] WARNING: The PCAP file does not exist at path \"/opt/CAPEv2/storage/analyses/17528/dump.pcap\"\r\nApr 20 06:37:01 mostwanted002-ThreatIntel-DB python3[56307]: /opt/CAPEv2/utils/../lib/cuckoo/common/abstracts.py:991: FutureWarning: Possible nested set at position 5\r\nApr 20 06:37:01 mostwanted002-ThreatIntel-DB python3[56307]:   exp = re.compile(pattern, re.IGNORECASE)\r\nApr 20 06:37:02 mostwanted002-ThreatIntel-DB python3[50165]: 2023-04-20 06:37:02,037 [root] INFO: Reports generation completed\r\n```\r\n\nComment: Type in `which tcpdump` in your linux terminal. And see if the path matches the configuration path of `custom/conf/auxilary.conf`. \nComment: The path in the configuration is correct.\r\n\r\nOutput of `which tcpdump` :\r\n\r\n```\r\n/usr/sbin/tcpdump\r\n```\r\n\r\nOutput of `cat custom/conf/auxiliary.conf | grep tcpdump`:\r\n\r\n```\r\n# Enable or disable the use of an external sniffer (tcpdump) [yes/no].\r\n# enable remote tcpdump support\r\n# Specify the path to your local installation of tcpdump. Make sure this\r\ntcpdump = /usr/sbin/tcpdump\r\n# Specify the network interface name on which tcpdump should monitor the\r\n# Specify a Berkeley packet filter to pass to tcpdump.\r\n```\r\n\r\n\r\n\nComment: did you enable generation of pcaps in routing.conf?\nComment: Yes. Everything was working until I performed a `git pull` 2 days ago. \r\nJust to be sure, I pulled latest commits before opening this bug.\nComment: Never mind. I found the error. Somehow, my `enable_pcap = yes` was set to `enable_pcap = no`.\r\n\r\nApologies. Closing the issue with this comment. \nComment: Hey! Umm... That flag is for non-live network. I'm using `inetsim` routing, and it doesn't require that flag to be set. Regardless, I set it to `yes` and submitted the same sample. I still got `PCAP does not exist` in the logs. \nComment: to generate pcaps it requires it to be enabled. did you restart cape.service after change the config?\nComment: Yes. I did restart all the cape related services.\nComment: when you run analysis, in another termina as root run: `ps aux|grep tcpdump`, if there is `defunc` it means that you don't have proper permissions, run those\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/installer/cape2.sh#L922-L927\nComment: In fact, it was a permission error.\r\n\r\nRe-running the commands from the script fixed the issue. Thank you. Closing it now. \r\n\r\n\nComment: yaw, i will try to see how to detect it automatically, as this is is one of the most frequent problems\nComment: check implemented https://github.com/kevoreilly/CAPEv2/commit/6b024f2583947ccf16f716883e7072900b73affe\nComment: Thank you \u2764\ufe0f \nComment: Just a small typo at https://github.com/kevoreilly/CAPEv2/commit/6b024f2583947ccf16f716883e7072900b73affe#diff-135674f4191a6723a6ab937ce790475b731dfe7a12ee14700831cb9715e76b41R545\r\n\r\n\"won't\" ",
+  "Title: Generalizing human click behavior in documents\nBody: None",
+  "Title: Generalizing the doc human behavior\nBody: None",
+  "Title: Improving PDF human simulation behavior and general one\nBody: Improving human behavior for pdf files analysis.\r\nImproving default mouse behavior for analysis with more random clicks without breaking the current arrangement.",
+  "Title: Staging\nBody: None",
+  "Title: Improve dll detonation\nBody: None",
+  "Title: Add domain whitelisting to Suricata\nBody: None",
+  "Title: Changing pool size to be per VMSS\nBody: Rather than having a general initial pool size for all scale sets, we want a customized one per scale set",
+  "Title: rewrite binaries handling with delete_original and delete_bin\nBody: None",
+  "Title: Loosen vidar yara condition\nBody: None\nComment: current yara gives a lot of FP, if we lose it more, that will be already a nightmare\nComment: problem was on my side, just tested no fps \nComment: Excellent - thank you r0ny!",
+  "Title: add random string.\nBody: set to default value\n\nhttps://github.com/kevoreilly/CAPEv2/blob/7576cc9bcd171baede7a8c787445ecbf3a8475a8/analyzer/windows/lib/common/zip_utils.py#L107\n\n```python\n\nimport logging\nimport os\nimport shutil\nimport subprocess\nfrom pathlib import Path\nfrom zipfile import BadZipfile, ZipFile\n\ntry:\n    import re2 as re\nexcept ImportError:\n    import re\n\nfrom lib.common.exceptions import CuckooPackageError\n\nlog = logging.getLogger(__name__)\n\nFILE_NAME_REGEX = re.compile(\"[\\s]{2}((?:[a-zA-Z0-9\\.\\-,_\\\\\\\\]+( [a-zA-Z0-9\\.\\-,_\\\\\\\\]+)?)+)\\\\r\")\n\n\ndef extract_archive(seven_zip_path, archive_path, extract_path, password=\"infected\"):\n    \"\"\"Extracts a nested archive file.\n    @param seven_zip_path: path to 7z binary\n    @param archive_path: archive path\n    @param extract_path: where to extract\n    @param password: archive password\n    \"\"\"\n    log.debug([seven_zip_path, \"x\", \"-p\", \"-y\", f\"-o{extract_path}\", archive_path])\n    p = subprocess.run(\n        [seven_zip_path, \"x\", \"-p\", \"-y\", f\"-o{extract_path}\", archive_path],\n        stdin=subprocess.DEVNULL,\n        stderr=subprocess.PIPE,\n        stdout=subprocess.PIPE,\n    )\n    stdoutput, stderr = p.stdout, p.stderr\n    log.debug(f\"{p.stdout} {p.stderr}\")\n    if b\"Wrong password\" in stderr:\n        if not Path(extract_path).match(\"local\\\\temp\"):\n            shutil.rmtree(extract_path, ignore_errors=True)\n        log.debug([seven_zip_path, \"x\", f\"-p{password}\", \"-y\", f\"-o{extract_path}\", archive_path])\n        p = subprocess.run(\n            [seven_zip_path, \"x\", f\"-p{password}\", \"-y\", f\"-o{extract_path}\", archive_path],\n            stdin=subprocess.DEVNULL,\n            stderr=subprocess.PIPE,\n            stdout=subprocess.PIPE,\n        )\n        stdoutput, stderr = p.stdout, p.stderr\n        log.debug(f\"{p.stdout} {p.stderr}\")\n        if b\"Wrong password\" in stderr:\n            raise Exception(\"Wrong password provided\")\n    elif b\"Can not open the file as archive\" in stdoutput:\n        raise TypeError(\"Unable to open the file as archive\")\n\n\ndef get_file_names(seven_zip_path, archive_path):\n    \"\"\"Get the file names from archive file.\n    @param seven_zip_path: path to 7z binary\n    @param archive_path: archive file path\n    @return: A list of file names\n    \"\"\"\n    log.debug([seven_zip_path, \"l\", archive_path])\n    p = subprocess.run(\n        [seven_zip_path, \"l\", archive_path], stdin=subprocess.DEVNULL, stderr=subprocess.PIPE, stdout=subprocess.PIPE\n    )\n    stdoutput = p.stdout.decode()\n    stdoutput_lines = stdoutput.split(\"\\n\")\n\n    in_table = False\n    items_under_header = False\n    file_names = []\n    for line in stdoutput_lines:\n        if in_table:\n            # This is a line in the table (header or footer separators)\n            if \"-----\" in line:\n                if items_under_header:\n                    items_under_header = False\n                else:\n                    items_under_header = True\n                continue\n\n            # These are the lines that we care about, since they contain the file names\n            if items_under_header:\n                # Find the end of the line (\\r), note the carriage return since 7zip will run on Windows\n                file_name = re.search(FILE_NAME_REGEX, line)\n                if file_name:\n                    # The first capture group is the whole file name + returns\n                    # The second capture group is just the file name\n                    file_name = file_name.group(1)\n                    file_names.append(file_name)\n        else:\n            # Table Headers\n            if all(item.lower() in line.lower() for item in (\"Date\", \"Time\", \"Attr\", \"Size\", \"Compressed\", \"Name\")):\n                in_table = True\n\n    return file_names\n\n\ndef extract_zip(zip_path, extract_path, password=b\"infected\", recursion_depth=1):\n    \"\"\"Extracts a nested ZIP file.\n    @param zip_path: ZIP path\n    @param extract_path: where to extract\n    @param password: ZIP password\n    @param recursion_depth: how deep we are in a nested archive\n    \"\"\"\n    # Test if zip file contains a file named as itself.\n    if is_overwritten(zip_path):\n        log.debug(\"ZIP file contains a file with the same name, original will be overwritten\")\n        # TODO: add random string.\n        new_zip_path = f\"{zip_path}.old\"\n        shutil.move(zip_path, new_zip_path)\n        zip_path = new_zip_path\n\n    # requires bytes not str\n    if not isinstance(password, bytes):\n        password = password.encode()\n\n    # Extraction.\n    with ZipFile(zip_path, \"r\") as archive:\n\n        # Check if the archive is encrypted\n        for zip_info in archive.infolist():\n            is_encrypted = zip_info.flag_bits & 0x1\n            # If encrypted and the user didn't provide a password\n            # set to default value\n            if is_encrypted and password == b\"\":\n                log.debug(\"Archive is encrypted and user did not provide a password, using default value: infected\")\n                password = b\"infected\"\n            # Else, either password stays as user specified or archive is not encrypted\n\n        try:\n            archive.extractall(path=extract_path, pwd=password)\n        except BadZipfile as e:\n            raise CuckooPackageError(\"Invalid Zip file\") from e\n        except RuntimeError:\n            try:\n                archive.extractall(path=extract_path, pwd=password)\n            except RuntimeError as e:\n                raise CuckooPackageError(f\"Unable to extract Zip file: {e}\") from e\n        finally:\n            if recursion_depth < 4:\n                # Extract nested archives.\n                for name in archive.namelist():\n                    if name.endswith(\".zip\"):\n                        # Recurse.\n                        try:\n                            extract_zip(\n                                os.path.join(extract_path, name),\n                                extract_path,\n                                password=password,\n                                recursion_depth=recursion_depth + 1,\n                            )\n                        except BadZipfile:\n                            log.warning(\n                                \"Nested file '%s' name ends with .zip extension is not a valid Zip. Skip extraction\",\n                                name\n                            )\n                        except RuntimeError as run_err:\n                            log.error(\"Error extracting nested Zip file %s with details: %s\", name, run_err)\n\n\ndef is_overwritten(zip_path):\n    \"\"\"Checks if the ZIP file contains another file with the same name, so it is going to be overwritten.\n    @param zip_path: zip file path\n    @return: comparison boolean\n    \"\"\"\n    with ZipFile(zip_path, \"r\") as archive:\n        try:\n            # Test if zip file contains a file named as itself.\n            return any(name == os.path.basename(zip_path) for name in archive.namelist())\n        except BadZipfile as e:\n            raise CuckooPackageError(\"Invalid Zip file\") from e\n\n\ndef get_infos(zip_path):\n    \"\"\"Get information from ZIP file.\n    @param zip_path: zip file path\n    @return: ZipInfo class\n    \"\"\"\n    try:\n        with ZipFile(zip_path, \"r\") as archive:\n            return archive.infolist()\n    except BadZipfile as e:\n        raise CuckooPackageError(\"Invalid Zip file\") from e\n\n\ndef winrar_extractor(winrar_binary, extract_path, archive_path):\n    log.debug([winrar_binary, \"x\", archive_path, extract_path])\n    p = subprocess.run(\n        [winrar_binary, \"x\", archive_path, extract_path],\n        stdin=subprocess.DEVNULL,\n        stderr=subprocess.PIPE,\n        stdout=subprocess.PIPE,\n    )\n    # stdoutput, stderr = p.stdout, p.stderr\n    log.debug(p.stdout + p.stderr)\n\n    return os.listdir(extract_path)\n\n```",
+  "Title: Staging\nBody: None",
+  "Title: sample lookup\nBody: None",
+  "Title: proxy/vpn selection feature\nBody: Hi, in my use case it is convenient for me to be able to select which route to submit to the analysis and therefore I have added this feature. I hope it can be useful for others too :)\r\n\r\nI also have a question: which socks5 transparent proxy do you use? I tried several socks5 transparent proxies (redsocks, redsocks2, gost, danted...) but your `iptables` double REDIRECT target for UDP and TCP traffic only works with: https://github.com/n1nj4sec/pr0cks.\r\n\r\nNOTES: I also modified the `utils/submit.py` file because I couldn't submit the analysis correctly, if I touched something wrong, tell me and I'll change it back :+1:\nComment: hey redsocks2+dante works fine for me with current setup\nComment: So you use redsocks2 as local socks5 transparent proxy and dante as remote socks5 proxy right? You listen with redsocks2 on the same interface as libvirt and with the double iptables REDIRECT you forward both UDP and TCP traffic.\r\nRedsocks2 always gave me \"dropping client\" errors for all UDP traffic but works fine with TCP traffic, may I see your UDP configuration? :)\nComment:  >So you use redsocks2 as local socks5 transparent proxy and dante as remote socks5 proxy right?\r\n\r\nyes\r\n\r\n> You listen with redsocks2 on the same interface as libvirt \r\n\r\nno, they are on remote servers, but still it all kinda transparent as it works as tor socks5 socks, so it shouldn't really matter where they are\r\n\r\n```\r\nredudp {\r\n    // `local_ip' should not be 0.0.0.0 as it's also used for outgoing\r\n    // packets that are sent as replies - and it should be fixed\r\n    // if we want NAT to work properly.\r\n    local_ip = X;\r\n    local_port = X;\r\n\r\n    // `ip' and `port' of socks5 proxy server.\r\n    ip = X;\r\n    port = X;\r\n    //login = username;\r\n    //password = pazzw0rd;\r\n    type = socks5;\r\n    dest_ip = X;\r\n    dest_port = 53;\r\n    udp_timeout = 30;\r\n    udp_timeout_stream = 180;\r\n}\r\n```\nComment: > no, they are on remote servers, but still it all kinda transparent as it works as tor socks5 socks, so it shouldn't really matter where they are\r\n\r\n@doomedraven _I'll try to explain myself better, if I'm doing something wrong please tell me._\r\n\r\nBy \"local\" I'm referring to the \"local_ip\" and \"local_port\" clause which must necessarily listen on the IP of the virtual network created by libvirt, for example `192.168.100.1/24` port `12345`. Necessarily because the REDIRECT target of iptables changes the destination IP to the primary address of the incoming interface -> libvirt iface.\r\nSo redsocks2 manages to act as a local transparent socks5 proxy sending all traffic to the remote server specified below.\r\n\r\nA small schema of the networking path:\r\n1. **sandbox vm** (`192.168.100.111/24`) try to connet to `8.8.8.8:53`\r\n2. **iptables REDIRECT** changes dest to `192.168.100.1/24` and port `12345`\r\n3. **local transparent socks5 proxy** (`192.168.100.1/24` and port `12345`) makes a UDP associate request over TCP to the remote socks5 proxy server `IP:PORT`, the remote server choose the port and finally the real UDP datagram is sent\r\n4. **remote socks5 proxy** (`IP:PORT`) has received the real UDP datagram and sends it to the real destination `8.8.8.8:53`\nComment: next time please enable option to allow owners edit your code, i can't push fixes here \r\n\r\n```\r\n# Copyright (C) 2010-2013 Claudio Guarnieri.\r\n# Copyright (C) 2014-2016 Cuckoo Foundation.\r\n# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org\r\n# See the file 'docs/LICENSE' for copying permission.\r\n\r\nimport logging\r\nfrom contextlib import suppress\r\n\r\nfrom lib.cuckoo.common.config import Config\r\nfrom lib.cuckoo.common.socket_utils import send_socket_command\r\n\r\ncfg = Config()\r\nrouter_cfg = Config(\"routing\")\r\nlog = logging.getLogger(__name__)\r\n\r\nvpns = {}\r\nsocks5s = {}\r\n\r\ndef _load_socks5_operational():\r\n\r\n    socks5s = {}\r\n\r\n    if not router_cfg.socks5.enabled:\r\n        return socks5s\r\n\r\n    try:\r\n        from socks5man.exceptions import Socks5manDatabaseError\r\n        from socks5man.manager import Manager\r\n    except (ImportError, OSError):\r\n        return socks5s\r\n    except Exception as e:\r\n        log.error(e)\r\n        return socks5s\r\n\r\n    try:\r\n        for socks5 in Manager().list_socks5(operational=True):\r\n            if not hasattr(socks5, \"description\"):\r\n                continue\r\n\r\n            name = socks5.description\r\n            if not name:\r\n                continue\r\n\r\n            socks5s[name] = socks5.to_dict()\r\n\r\n            # decode utf-8 socks5man database data\r\n            for k, v in socks5s[name].items():\r\n                if isinstance(v, (bytes, bytearray)):\r\n                    with suppress(UnicodeDecodeError, AttributeError):\r\n                        socks5s[name][k] = v.decode()\r\n\r\n    except Socks5manDatabaseError as e:\r\n        print(e, \"you migth have an outdated database at $HOME/.socks5man\")\r\n\r\n    return socks5s\r\n\r\n\r\ndef rooter(command, *args, **kwargs):\r\n    ret = send_socket_command(cfg.cuckoo.rooter, command, *args, **kwargs)\r\n    if ret and ret.get(\"exception\"):\r\n        log.warning(\"Rooter returned error: %s\", ret[\"exception\"])\r\n    return ret\r\n\r\n```\nComment: yes local should be in the libvirt network, so if your virbr1 is 192.168.100.0/24 then listen on .1 and port X\nComment: Exactly, I have the same setup but redsocks2 for UDP traffic still doesn't work.\r\nI keep investigating...\nComment: I also tried more exotic/complicated setups with TPROXY but that didn't work either.\r\nOnly double iptables REDIRECT (TCP and UDP) + [pr0cks](https://github.com/n1nj4sec/pr0cks) works for me.",
+  "Title: Human.py does not open embedded OneNote files\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n- [x] I'm aware that configs now are in `custom/conf/`\r\n\r\n\r\n# Expected Behavior\r\n\r\nWhen submitting an OneNote file I expected embedded files to be opened aswell, since QakNote/bot can spread through onenote.\r\n\r\n# Current Behavior\r\n\r\nOneNote is opened but nothing embedded is triggered\r\n\r\n# Failure Information (for bugs)\r\n\r\nSee: https://capesandbox.com/analysis/381757/\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. step 1\r\n2. step 2\r\n3. you get it...\r\n\r\n## Context\r\n\r\nUsed the public instance of CAPEv2\r\n\r\n## Failure Logs\r\n\r\nThere is none, but I suspect the bug being in https://github.com/kevoreilly/CAPEv2/blob/master/analyzer/windows/modules/auxiliary/human.py.\r\nLooking at the code I suspect it does not open embedded one notes since these do not count as macro's\r\n\nComment: office doesn't expose anything to do that. so you will need to research how to interact with office if they added something recently. otherwise use interactive mode\nComment: Alright, I'll see what I can come up with.\nComment: I might have found a workaround for it but it does require some change in code, but long story short. We can extract the files out of an OneNote with `office_one.py` and then resubmit the file for analyis. Ill see how far i can get with that\nComment: Since I don't have the time to improve this functionality i'll close this issue. Maybe someone else will find a way to improve this \ud83d\ude42",
+  "Title: unable to import libvirt\nBody: \r\n![Screenshot from 2023-04-12 06-49-20](https://user-images.githubusercontent.com/113498180/231374646-2f83caea-83ab-44d5-909b-38a9cca788d4.png)\r\n## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ yes] I am running the latest version\r\n- [ yes] I did read the README!\r\n- [ yes] I checked the documentation and found no answer\r\n- [ yes] I checked to make sure that this issue has not already been filed\r\n- [ no] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ yes] I have read and checked all configs (with all optional parts)\r\n- [ yes] I'm aware that configs now are in `custom/conf/`\r\n\r\n\r\n# Expected Behavior\r\nI am net to cape sandbox and tryoing to configure it  but i got this error and I'm unable to find the solution for this please help me out in this what should i do to resolve this error  \r\n\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\nUnable to import libvirt\r\n# Failure Information (for bugs)\r\n\r\n\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. step 1\r\n2. step 2\r\n3. you get it...\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 16.04, Windows 10, macOS 10.12.3\r\n\r\n## Failure Logs\r\nubuntu@ubuntu:~$ cd /opt/CAPEv2/\r\nubuntu@ubuntu:/opt/CAPEv2$ sudo -u cape poetry run python3 cuckoo.py\r\n[sudo] password for ubuntu: \r\n\r\n                               ),-.     /\r\n  Cuckoo Sandbox              <(a  `---','\r\n     no chance for malwares!  ( `-, ._> )\r\n                               ) _>.___/\r\n                                   _/\r\n\r\n Cuckoo Sandbox 2.4-CAPE\r\n www.cuckoosandbox.org\r\n Copyright (c) 2010-2015\r\n\r\n CAPE: Config and Payload Extraction\r\n github.com/kevoreilly/CAPEv2\r\n\r\nOPTIONAL! Missed dependency: pip3 install https://github.com/CAPESandbox/peepdf/archive/20eda78d7d77fc5b3b652ffc2d8a5b0af796e3dd.zip#egg=peepdf==0.4.2\r\nOPTIONAL! Missed dependency: pip3 install -U git+https://github.com/DissectMalware/batch_deobfuscator\r\nOPTIONAL! Missed dependency: pip3 install -U git+https://github.com/CAPESandbox/httpreplay\r\n2023-04-12 06:47:52,386 [lib.cuckoo.core.scheduler] INFO: Using \"kvm\" machine manager with max_analysis_count=10, max_machines_count=10, and max_vmstartup_count=5\r\n2023-04-12 06:47:52,386 [root] CRITICAL: CuckooDependencyError: Unable to import libvirt\r\n\nComment: It is recommended not to use apt for installing libvirt - the documentation https://capev2.readthedocs.io/en/latest/installation/host/installation.html includes a link to the kvm-qemu.sh script:https://github.com/doomedraven/Tools/blob/master/Virtualization/kvm-qemu.sh - this script has libvirt option dedicated to installing this.\r\n\r\n```\r\n    Usage: ./kvm-qemu.sh <func_name> <args> | tee ./kvm-qemu.sh.log\r\n    Commands - are case insensitive:\r\n        All - <username_optional> - Execs QEMU/SeaBios/KVM, username is optional\r\n        QEMU - Install QEMU from source,\r\n            DEFAULT support are x86 and x64, set ENV var QEMU_TARGERS=all to install for all arches\r\n        SeaBios - Install SeaBios and repalce QEMU bios file\r\n        Libvirt <username_optional> - install libvirt, username is optional\r\n...\r\n```\nComment: solved?\nComment: > solved?\r\n\r\nsorry for late reply actually it was solved but I missed out your message to give a response.\r\nnow I'm facing one problem with pdf report generation . I enabled html summary and pdf report in reporting.conf but when i click on it i get message **file not found**  . it give same result for for html summary and simple html report\r\nwhat can be the problem with that ?\r\n\r\n# reporting.conf \r\n\r\n Enable or disable the available reporting modules [on/off].\r\n If you add a custom reporting module to your Cuckoo setup, you have to add\r\n a dedicated entry in this file, or it won't be executed.\r\n You can also add additional options under the section of your module and\r\n they will be available in your Python class.\r\n\r\n[cents]\r\nenabled = no\r\non_demand = no\r\n starting signature id for created Suricata rules\r\nstart_sid = 1000000\r\n\r\n[mitre]\r\nenabled = yes\r\n\r\n https://github.com/geekscrapy/binGraph\r\n requires -> apt-get install python-tk\r\n[bingraph]\r\nenabled = yes\r\non_demand = yes\r\nbinary = yes\r\n geenrate bingraphs for cape/procdumps\r\ncape = yes\r\nprocdump = yes\r\n\r\n[pcap2cert]\r\nenabled = yes\r\n\r\n[litereport]\r\nenabled = no\r\nkeys_to_copy = CAPE procdump info signatures dropped static target network shot malscore ttps\r\nbehavior_keys_to_copy = processtree summary\r\n\r\n[reportbackup]\r\nenabled = no\r\n External service to use\r\ngoogledrive = no\r\n Specify the ID of the shared Google Drive Folder where reports will be backed up to\r\n Replace folder ID with own Google Drive shared folder (share access to created service account)\r\n Without service account, upload process cannot complete due to browser not being able to launch\r\ndrive_folder_id = id_here\r\ndrive_credentials_location = data/google_creds.json\r\n\r\n[jsondump]\r\nenabled = yes\r\nindent = 4\r\nencoding = latin-1\r\n\r\n**\r\n[reporthtml]\r\n Standalone report, not requires CAPE webgui\r\nenabled = yes\r\n Include screenshots in report\r\nscreenshots = no\r\napicalls = no\r\n\r\n[reporthtmlsummary]\r\n much smaller, faster report generation, omits API logs and is non-interactive\r\nenabled = yes\r\n Include screenshots in report\r\nscreenshots = no\r\n\r\n[reportpdf]\r\n Note that this requires reporthtmlsummary to be enabled above as well\r\nenabled = yes\r\n**\r\n\r\n[maec41]\r\nenabled = no\r\nmode = overview\r\nprocesstree = true\r\noutput_handles = false\r\nstatic = true\r\nstrings = true\r\nvirustotal = true\r\ndeduplicate = true\r\n\r\n[maec5]\r\nenabled = no\r\n\r\n[mongodb]\r\nenabled = yes\r\nhost = 127.0.0.1\r\nport = 27017\r\ndb = cuckoo\r\n Set those values if you are using mongodb authentication\r\n username =\r\n password =\r\n authsource = cuckoo\r\n\r\n Set this value if you are using mongodb with TLS enabled\r\n tlscafile =\r\n\r\n Automatically delete large dict values that exceed mongos 16MB limitation\r\n Note: This only deletes dict keys from data stored in MongoDB. You would\r\n still get the full dataset if you parsed the results dict in another\r\n reporting module or from the jsondump module.\r\nfix_large_docs = yes\r\n\r\n ES is not officially supported by core dev and relays on community\r\n Latest known working version is 7.16.2\r\n Use ElasticSearch as the \"database\" which powers Django.\r\n NOTE: If this is enabled, MongoDB should not be enabled, unless\r\n search only option is set to yes. Then elastic search is only used for /search web page.\r\n[elasticsearchdb]\r\nenabled = no\r\nsearchonly = no\r\nhost = 127.0.0.1\r\nport = 9200\r\n The report data is indexed in the form of {{index-yyyy.mm.dd}}\r\n so the below index configuration option is actually an index 'prefix'.\r\nindex = cuckoo\r\n username =\r\n password =\r\n use_ssl =\r\n verify_certs =\r\n\r\n[retention]\r\nenabled = no\r\n run at most once every this many hours (unless reporting.conf is modified)\r\nrun_every = 6\r\nThe amount of days old a task needs to be before deleting data\r\n Set a value to no to never delete it\r\nmemory = 14\r\nprocmemory = 62\r\npcap = 62\r\nsortedpcap = 14\r\nbsonlogs = 62\r\ndropped = 62\r\nscreencaps = 62\r\nreports = 62\r\nmongo = 731\r\nelastic = no\r\n\r\n[syslog]\r\nenabled = no\r\n IP of your syslog server/listener\r\nhost = x.x.x.x\r\n Port of your syslog server/listener\r\nport = 514\r\n Protocol to send data over\r\nprotocol = tcp\r\n Store a logfile? [in reports directory]\r\nlogfile = yes\r\n if yes, what logname? [Default: syslog.txt]\r\nlogname = syslog.log\r\n\r\n[moloch]\r\nenabled = yes\r\nbase = https://localhost:8005/\r\nnode = win10\r\ncapture = /data/moloch/bin/moloch-capture\r\ncaptureconf = /data/moloch/etc/config.ini\r\nuser = admin\r\npass = ncsael\r\nrealm = Moloch\r\n\r\n[resubmitexe]\r\nenabled = no\r\nresublimit = 5\r\n\r\n\r\n[compression]\r\nenabled = no\r\nzipmemdump = yes\r\nzipmemstrings = yes\r\nzipprocdump = yes\r\nzipprocstrings = yes\r\n\r\n[misp]\r\nenabled = no\r\napikey =\r\nurl =\r\nMake event published after creation?\r\npublished = no\r\n minimal malscore, by default all\r\nmin_malscore = 0\r\n by default 5 threads\r\nthreads =\r\n this will retrieve information for iocs\r\n and activate misp report download from webgui\r\nextend_context = no\r\n upload iocs from cuckoo to MISP\r\nupload_iocs = no\r\ndistribution = 0\r\nthreat_level_id = 2\r\nanalysis = 2\r\n Sections to report\r\n Analysis ID will be appended, change\r\ntitle = Iocs from cuckoo analysis:\r\nnetwork = no\r\nids_files = no\r\ndropped = no\r\nregistry = no\r\nmutexes = no\r\n\r\n[callback]\r\nenabled = no\r\n will send as post data {\"task_id\":X}\r\n can be coma separated urls\r\nurl = http://IP/callback\r\n\r\n Compress results including CAPE output\r\n to help avoid reaching the hard 16MB MongoDB limit.\r\n[compressresults]\r\nenabled = no\r\n\r\n[tmpfsclean]\r\nenabled = no\r\nkey = tr_extractor\r\n\r\n This calls the specified command, pointing it at the report.json as\r\n well as setting $ENV{CAPE_TASK_ID} to the task ID of the run in question.\r\n\r\n[zexecreport]\r\nenabled=no\r\ncommand=/foo/bar.pl\r\n\r\n run statistics, this may take more times.\r\n[runstatistics]\r\nenabled = yes\r\n\r\n[malheur]\r\nenabled = no \r\n\r\n\r\n\r\n\r\n![image](https://github.com/kevoreilly/CAPEv2/assets/113498180/779ad939-da30-42f0-9144-6134bfaabe5b)\r\n",
+  "Title: fix intermittent APIv2 IOC route failures\nBody: Most of these keys can be missing in entry, so for consitency make them all calls to get() with default values of False.",
+  "Title: Fix Service DLL Package\nBody: None\nComment: I notices that there are log in the `disable_wow64_redirection`. For example, `log.info(\"wow64_redirection\")`. It is better to remove them before merging it?\nComment: Yes I must have made a mess of git yet again - in order to simply add just the wanted changes, I resorted to just pushing them in a single commit: https://github.com/kevoreilly/CAPEv2/commit/6437b84965ee0ca5d9918978a78b332524290105\r\n\r\nThanks for your contribution and sorry about the delay getting it merged,",
+  "Title: Memory analysis not working\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [Y] I am running the latest version\r\n- [Y] I did read the README!\r\n- [Y] I checked the documentation and found no answer\r\n- [Y] I checked to make sure that this issue has not already been filed\r\n- [Y] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [Y] I have read and checked all configs (with all optional parts)\r\n- [Y] I'm aware that configs now are in `custom/conf/`\r\n\r\n\r\n# Expected Behavior\r\n\r\nMemory analysis successfully performed on the submitted samples using volatility3.\r\n\r\n# Current Behavior\r\n\r\nThe analysis report currently does not generate process memory and process dumps report despite procmemdump=1.\r\n\r\n# Failure Information (for bugs)\r\n\r\nFrom journalctl -u cape.service, I can see 1 (one) missed dependencies and 1 (one) error pertaining to JsonRenderer.\r\n\r\n```\r\nApr 11 03:59:00 cape-sandbox python3[1880]:  Copyright (c) 2010-2015\r\nApr 11 03:59:00 cape-sandbox python3[1880]:  CAPE: Config and Payload Extraction\r\nApr 11 03:59:00 cape-sandbox python3[1880]:  github.com/kevoreilly/CAPEv2\r\nApr 11 03:59:01 cape-sandbox python3[1880]: OPTIONAL! Missed dependency: pip3 install https://github.com/CAPESandbox/peepdf/archive/20eda78d7d77fc5b3b652ffc2d8a5b0af796e3dd.zip#egg=peepdf==0.4.2\r\nApr 11 03:59:01 cape-sandbox python3[1880]: OPTIONAL! Missed dependency: pip3 install -U git+https://github.com/DissectMalware/batch_deobfuscator\r\nApr 11 03:59:01 cape-sandbox python3[1880]: Missed dependency: pip3 install volatility3 -U\r\nApr 11 03:59:01 cape-sandbox python3[1880]: name 'JsonRenderer' is not defined\r\nApr 11 03:59:01 cape-sandbox python3[1880]: OPTIONAL! Missed dependency: pip3 install -U git+https://github.com/CAPESandbox/httpreplay\r\nApr 11 03:59:02 cape-sandbox python3[1880]: INFO:lib.cuckoo.core.scheduler:Using \"kvm\" machine manager with max_analysis_count=0, max_machines_count=10, and max_vmstartup_count=5\r\n```\r\n\r\n\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Setup CAPEv2 following the steps outlined in capev2.readthedocs.io\r\n2. Setup the guest VM with CAPE agent installed.\r\n3. Ensure memory analysis is enabled in the config file in the 'custom/conf'\r\n4. Submit a true positive sample to through the web interface with the option \"Full process memory dumps\" enabled. Network not enabled.\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| Host OS version       | Ubuntu 22.04.2 LTS\r\n| Guest OS version       | Windows 10 x64\r\n\r\n### **custom/conf/Processing.conf**\r\n```\r\n#Enable or disable the available processing modules [on/off].\r\n# If you add a custom processing module to your Cuckoo setup, you have to add\r\n# a dedicated entry in this file, or it won't be executed.\r\n# You can also add additional options under the section of your module and\r\n# they will be available in your Python class.\r\n\r\n# exclude files that doesn't match safe extension and ignore their files from processing inside of other modules like CAPE.py\r\n[antiransomware]\r\nenabled = no\r\n# ignore all files with extension found more than X\r\nskip_number = 30\r\n\r\n[curtain]\r\nenabled = no\r\n\r\n[sysmon]\r\nenabled = no\r\n\r\n[analysisinfo]\r\nenabled = yes\r\n\r\n# FLARE capa -> to update rules utils/community.py -cr\r\n# install -> cd /tmp && git clone --recurse-submodules https://github.com/fireeye/capa.git && cd capa && git submodule update --init rules && python -m pip3 install .\r\n[flare_capa]\r\nenabled = yes\r\n# Generate it always or generate on demand only(user need to click button to generate it), still should be enabled to use this feature on demand\r\non_demand = no\r\n# Analyze binary payloads\r\nstatic = yes\r\n# Analyze CAPE payloads\r\ncape = no\r\n# Analyze ProcDump\r\nprocdump = yes\r\n\r\n[decompression]\r\nenabled = no\r\n\r\n[dumptls]\r\nenabled = no\r\n\r\n[behavior]\r\nenabled = yes\r\n# Toggle specific modules within the BehaviorAnalysis class\r\nanomaly = yes\r\nprocesstree = yes\r\nsummary = yes\r\nenhanced = yes\r\nencryptedbuffers = yes\r\n\r\n[debug]\r\nenabled = yes\r\n\r\n[detections]\r\nenabled = yes\r\n# Signatures\r\nbehavior = yes\r\nyara = yes\r\nsuricata = yes\r\nvirustotal = no\r\nclamav = no\r\n\r\n# ... but this mechanism may still be switched on\r\n[procmemory]\r\nenabled = yes\r\nstrings = yes\r\n\r\n[procmon]\r\nenabled = yes\r\n\r\n[memory]\r\nenabled = yes\r\n\r\n[usage]\r\nenabled = no\r\n\r\n[network]\r\nenabled = yes\r\nsort_pcap = no\r\n# DNS whitelisting to ignore domains/IPs configured in network.py\r\n# This should be disabled when utilizing InetSim/Remnux as we end up resolving\r\n# the IP from fakedns which would then remove all domains associated with that\r\n# resolved IP\r\ndnswhitelist = yes\r\n# additional entries\r\ndnswhitelist_file = extra/whitelist_domains.txt\r\nipwhitelist = yes\r\nipwhitelist_file = extra/whitelist_ips.txt\r\n\r\n# Requires geoip2 and maxmind database\r\ncountry_lookup = no\r\n# Register and download for free from https://www.maxmind.com/\r\nmaxmind_database = data/GeoLite2-Country.mmdb\r\n\r\n\r\n# Should the server use a compressed version of behavioural logs? This helps\r\n# in saving space in Mongo, accelerates searchs and reduce the size of the\r\n# final JSON report.\r\n[loop_detection]\r\nenabled = no\r\n\r\n[url_analysis]\r\nenabled = yes\r\n# Enable a WHOIS lookup for the target domain of a URL analyses\r\nwhois = yes\r\n\r\n[strings]\r\nenabled = yes\r\non_demand = no\r\nnullterminated_only = no\r\nminchars = 5\r\n\r\n[trid]\r\n# Specify the path to the trid binary to use for static analysis.\r\nenabled = no\r\nidentifier = data/trid/trid\r\ndefinitions = data/trid/triddefs.trd\r\n\r\n[die]\r\n# Detect it Easy\r\nenabled = no\r\nbinary = /usr/bin/diec\r\n\r\n[virustotal]\r\nenabled = yes\r\non_demand = no\r\ntimeout = 60\r\n# remove empty detections\r\nremove_empty = yes\r\n# Add your VirusTotal API key here. The default API key, kindly provided\r\n# by the VirusTotal team, should enable you with a sufficient throughput\r\n# and while being shared with all our users, it shouldn't affect your use.\r\nkey = a0283a2c3d55728300d064874239b5346fb991317e8449fe43c902879d758088\r\ndo_file_lookup = yes\r\ndo_url_lookup = yes\r\nurlscrub = (^http:\\/\\/serw\\.clicksor\\.com\\/redir\\.php\\?url=|&InjectedParam=.+$)\r\n\r\n[suricata]\r\n# Notes on getting this to work check install_suricata function:\r\n# https://github.com/doomedraven/Tools/blob/master/Sandbox/cape2.sh\r\n\r\nenabled = yes\r\n#Runmode \"cli\" or \"socket\"\r\nrunmode = socket\r\n#Outputfiles\r\n# if evelog is specified, it will be used instead of the per-protocol log files\r\nevelog = eve.json\r\n\r\n# per-protocol log files\r\n#\r\n#alertlog = alert.json\r\n#httplog = http.json\r\n#tlslog = tls.json\r\n#sshlog = ssh.json\r\n#dnslog = dns.json\r\n\r\nfileslog = files-json.log\r\nfilesdir = files\r\n# Amount of text to carve from plaintext files (bytes)\r\nbuffer = 8192\r\n#Used for creating an archive of extracted files\r\n7zbin = /usr/bin/7z\r\nzippass = infected\r\n##Runmode \"cli\" options\r\nbin = /usr/bin/suricata\r\nconf = /etc/suricata/suricata.yaml\r\n##Runmode \"socket\" Options\r\nsocket_file = /tmp/suricata-command.socket\r\n\r\n[cif]\r\nenabled = no\r\n# url of CIF server\r\nurl = https://your-cif-server.com/api\r\n# CIF API key\r\nkey = your-api-key-here\r\n# time to wait for server to respond, in seconds\r\ntimeout = 60\r\n# minimum confidence level of returned results:\r\n# 25=not confident, 50=automated, 75=somewhat confident, 85=very confident, 95=certain\r\n# defaults to 85\r\nconfidence = 85\r\n# don't log queries by default, set to 'no' to log queries\r\nnolog = yes\r\n# max number of results per query\r\nper_lookup_limit = 20\r\n# max number of queries per analysis\r\nper_analysis_limit = 200\r\n\r\n[CAPE]\r\nenabled = yes\r\n# Ex targetinfo standalone module\r\ntargetinfo = yes\r\n# Ex dropped standalone module\r\ndropped = yes\r\n# Ex procdump standalone module\r\nprocdump = yes\r\n# Amount of text to carve from plaintext files (bytes)\r\nbuffer = 8192\r\n# Process files not bigger than value below in Mb. We saw that after 90Mb it has biggest delay\r\nmax_file_size = 90\r\n# Scan for UserDB.TXT signature matches\r\nuserdb_signature = no\r\n\r\n# Deduplicate screenshots\r\n# You need to install dependency ImageHash = \"4.2.1\" or newer\r\n[deduplication]\r\n#\r\n# Available hashs functions:\r\n#  ahash:      Average hash\r\n#  phash:      Perceptual hash\r\n#  dhash:      Difference hash\r\n#  whash-haar: Haar wavelet hash\r\n#  whash-db4:  Daubechies wavelet hash\r\nenabled = no\r\nhashmethod = ahash\r\n\r\n[vba2graph]\r\n# Mac - brew install graphviz\r\n# Ubuntu - sudo apt-get install graphviz\r\n# Arch - sudo pacman -S graphviz+\r\n# sudo pip3 install networkx>=2.1 graphviz>=0.8.4 pydot>=1.2.4\r\nenabled = yes\r\non_demand = yes\r\n\r\n# ja3 finger print db with descriptions\r\n# https://github.com/trisulnsm/trisul-scripts/blob/master/lua/frontend_scripts/reassembly/ja3/prints/ja3fingerprint.json\r\n[ja3]\r\nja3_path = data/ja3/ja3fingerprint.json\r\n\r\n[maliciousmacrobot]\r\n# https://maliciousmacrobot.readthedocs.io\r\n# Install mmbot\r\n#   sudo pip3 install mmbot\r\n# Create/Set required paths\r\n# Populate benign_path and malicious_path with appropriate macro maldocs (try the tests/samples in the github)\r\n#   https://github.com/egaus/MaliciousMacroBot/tree/master/tests/samples\r\n# Create modeldata.pickle with your maldocs (this does not append to the model, it overwrites it)\r\n#\r\n#   mmb = MaliciousMacroBot(benign_path, malicious_path, model_path, retain_sample_contents=False)\r\n#   result = mmb.mmb_init_model(modelRebuild=True)\r\n#\r\n# Copy your model file and vocab.txt to your model_path\r\nenabled = no\r\nbenign_path = /opt/cuckoo/data/mmbot/benign\r\nmalicious_path = /opt/cuckoo/data/mmbot/malicious\r\nmodel_path = /opt/cuckoo/data/mmbot/model\r\n\r\n[xlsdeobf]\r\n# pip3 install git+https://github.com/DissectMalware/XLMMacroDeobfuscator.git\r\nenabled = no\r\non_demand = no\r\n\r\n[boxjs]\r\nenabled = no\r\ntimeout = 60\r\nurl = http://your_super_box_js:9000\r\n\r\n# Extractors\r\n[mwcp]\r\nenabled = yes\r\nmodules_path = modules/processing/parsers/mwcp/\r\n\r\n[ratdecoders]\r\nenabled = yes\r\nmodules_path = modules/processing/parsers/RATDecoders/\r\n\r\n[malduck]\r\nenabled = yes\r\nmodules_path = modules/processing/parsers/malduck/\r\n\r\n[CAPE_extractors]\r\nenabled = yes\r\n# Must ends with /\r\nmodules_path = modules/processing/parsers/CAPE/\r\n\r\n[reversinglabs]\r\nenabled = no\r\nurl =\r\nkey =\r\n\r\n[script_log_processing]\r\nenabled = yes\r\n\r\n# Dump PE's overlay info\r\n[overlay]\r\nenabled = no\r\n\r\n[floss]\r\nenabled = no\r\non_demand = no\r\nstatic_strings = no\r\nstack_strings = yes\r\ndecoded_strings = yes\r\ntight_strings = yes\r\nmin_length = 5\r\n# Download FLOSS signatures from https://github.com/mandiant/flare-floss/tree/master/sigs\r\nsigs_path = data/flare-signatures\r\n\r\n```\r\n\r\n### **custom/conf/Reporting.conf**\r\n```\r\n# Enable or disable the available reporting modules [on/off].\r\n# If you add a custom reporting module to your Cuckoo setup, you have to add\r\n# a dedicated entry in this file, or it won't be executed.\r\n# You can also add additional options under the section of your module and\r\n# they will be available in your Python class.\r\n\r\n[cents]\r\nenabled = no\r\non_demand = no\r\n# starting signature id for created Suricata rules\r\nstart_sid = 1000000\r\n\r\n[mitre]\r\nenabled = yes\r\n\r\n# https://github.com/geekscrapy/binGraph\r\n# requires -> apt-get install python-tk\r\n[bingraph]\r\nenabled = yes\r\non_demand = yes\r\nbinary = yes\r\n# geenrate bingraphs for cape/procdumps\r\ncape = yes\r\nprocdump = yes\r\n\r\n[pcap2cert]\r\nenabled = yes\r\n\r\n[litereport]\r\nenabled = no\r\nkeys_to_copy = CAPE procdump info signatures dropped static target network shot malscore ttps\r\nbehavior_keys_to_copy = processtree summary\r\n\r\n[reportbackup]\r\nenabled = no\r\n# External service to use\r\ngoogledrive = no\r\n# Specify the ID of the shared Google Drive Folder where reports will be backed up to\r\n# Replace folder ID with own Google Drive shared folder (share access to created service account)\r\n# Without service account, upload process cannot complete due to browser not being able to launch\r\ndrive_folder_id = id_here\r\ndrive_credentials_location = data/google_creds.json\r\n\r\n[jsondump]\r\nenabled = yes\r\n# use the c-optimized JSON encoder, requires fitting entire JSON results in memory\r\nram_boost = no\r\nindent = 4\r\nencoding = latin-1\r\n\r\n[reporthtml]\r\n# required for the WSGI interface\r\nenabled = no\r\n\r\n[reporthtmlsummary]\r\n# much smaller, faster report generation, omits API logs and is non-interactive\r\nenabled = no\r\n\r\n[reportpdf]\r\n# Note that this requires reporthtmlsummary to be enabled above as well\r\nenabled = no\r\n\r\n[maec41]\r\nenabled = no\r\nmode = overview\r\nprocesstree = true\r\noutput_handles = false\r\nstatic = true\r\nstrings = true\r\nvirustotal = true\r\ndeduplicate = true\r\n\r\n[maec5]\r\nenabled = no\r\n\r\n[mongodb]\r\nenabled = yes\r\nhost = 127.0.0.1\r\nport = 27017\r\ndb = cuckoo\r\n# Set those values if you are using mongodb authentication\r\n# username =\r\n# password =\r\n# authsource = cuckoo\r\n\r\n# Set this value if you are using mongodb with TLS enabled\r\n# tlscafile =\r\n\r\n# Automatically delete large dict values that exceed mongos 16MB limitation\r\n# Note: This only deletes dict keys from data stored in MongoDB. You would\r\n# still get the full dataset if you parsed the results dict in another\r\n# reporting module or from the jsondump module.\r\nfix_large_docs = yes\r\n\r\n# ES is not officially supported by core dev and relays on community\r\n# Latest known working version is 7.16.2\r\n# Use ElasticSearch as the \"database\" which powers Django.\r\n# NOTE: If this is enabled, MongoDB should not be enabled, unless\r\n# search only option is set to yes. Then elastic search is only used for /search web page.\r\n[elasticsearchdb]\r\nenabled = no\r\nsearchonly = no\r\nhost = 127.0.0.1\r\nport = 9200\r\n# The report data is indexed in the form of {{index-yyyy.mm.dd}}\r\n# so the below index configuration option is actually an index 'prefix'.\r\nindex = cuckoo\r\n# username =\r\n# password =\r\n# use_ssl =\r\n# verify_certs =\r\n\r\n[retention]\r\nenabled = no\r\n# run at most once every this many hours (unless reporting.conf is modified)\r\nrun_every = 6\r\n# The amount of days old a task needs to be before deleting data\r\n# Set a value to no to never delete it\r\nmemory = 14\r\nprocmemory = 62\r\npcap = 62\r\nsortedpcap = 14\r\nbsonlogs = 62\r\ndropped = 62\r\nscreencaps = 62\r\nreports = 62\r\nmongo = 731\r\nelastic = no\r\n\r\n[syslog]\r\nenabled = no\r\n# IP of your syslog server/listener\r\nhost = x.x.x.x\r\n# Port of your syslog server/listener\r\nport = 514\r\n# Protocol to send data over\r\nprotocol = tcp\r\n# Store a logfile? [in reports directory]\r\nlogfile = yes\r\n# if yes, what logname? [Default: syslog.txt]\r\nlogname = syslog.log\r\n\r\n[moloch]\r\nenabled = no\r\nbase = https://172.18.100.105:8005/\r\nnode = cuckoo3\r\ncapture = /data/moloch/bin/moloch-capture\r\ncaptureconf = /data/moloch/etc/config.ini\r\nuser = admin\r\npass = admin\r\nrealm = Moloch\r\n\r\n[resubmitexe]\r\nenabled = no\r\nresublimit = 5\r\n\r\n\r\n[compression]\r\nenabled = yes\r\nzipmemdump = yes\r\nzipmemstrings = yes\r\nzipprocdump = yes\r\nzipprocstrings = yes\r\n\r\n[misp]\r\nenabled = no\r\napikey =\r\nurl =\r\n#Make event published after creation?\r\npublished = no\r\n# minimal malscore, by default all\r\nmin_malscore = 0\r\n# by default 5 threads\r\nthreads =\r\n# this will retrieve information for iocs\r\n# and activate misp report download from webgui\r\nextend_context = no\r\n# upload iocs from cuckoo to MISP\r\nupload_iocs = no\r\ndistribution = 0\r\nthreat_level_id = 2\r\nanalysis = 2\r\n# Sections to report\r\n# Analysis ID will be appended, change\r\ntitle = Iocs from cuckoo analysis:\r\nnetwork = no\r\nids_files = no\r\ndropped = no\r\nregistry = no\r\nmutexes = no\r\n\r\n[callback]\r\nenabled = no\r\n# will send as post data {\"task_id\":X}\r\n# can be coma separated urls\r\nurl = http://IP/callback\r\n\r\n# Compress results including CAPE output\r\n# to help avoid reaching the hard 16MB MongoDB limit.\r\n[compressresults]\r\nenabled = yes\r\n\r\n[tmpfsclean]\r\nenabled = no\r\nkey = tr_extractor\r\n\r\n# This calls the specified command, pointing it at the report.json as\r\n# well as setting $ENV{CAPE_TASK_ID} to the task ID of the run in question.\r\n#\r\n[zexecreport]\r\nenabled=no\r\ncommand=/foo/bar.pl\r\n\r\n# run statistics, this may take more times.\r\n[runstatistics]\r\nenabled = no\r\n\r\n[malheur]\r\nenabled = no\r\n```\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\r\n### **process.log**\r\n```\r\n2023-04-11 03:59:01,801 [root] INFO: Processing analysis data\r\n2023-04-11 04:46:01,318 [root] INFO: Processing analysis data for Task #10\r\n2023-04-11 04:46:01,787 [Task 10] [vivisect.analysis] INFO: Vivisect Analysis Setup Hooks Complete\r\n2023-04-11 04:46:01,788 [Task 10] [vivisect] INFO: Beginning analysis...\r\n2023-04-11 04:46:01,788 [Task 10] [vivisect] INFO: Extended Analysis: vivisect.analysis.generic.entrypoints\r\n2023-04-11 04:46:01,797 [Task 10] [envi.codeflow] WARNING: parseOpcode error at 0x0040165a (addCodeFlow(0x4013a0)): InvalidInstruction(\"'ffff080000000100000002000000e900' at 0x40165a\")\r\n2023-04-11 04:46:01,802 [Task 10] [vivisect.tools.graphutil] WARNING: FB is None in graph building!??!\r\n2023-04-11 04:46:01,802 [Task 10] [vivisect.tools.graphutil] WARNING: (fva: 0x004013a0  fallva: 0x0040165a\r\n2023-04-11 04:46:01,802 [Task 10] [vivisect.tools.graphutil] WARNING: FB is None in graph building!??!\r\n2023-04-11 04:46:01,802 [Task 10] [vivisect.tools.graphutil] WARNING: (fva: 0x004013a0  fallva: 0x0040165a\r\n2023-04-11 04:46:01,803 [Task 10] [vivisect.analysis.generic.noret] INFO: Marking 0x004013a0 as no return\r\n2023-04-11 04:46:01,803 [Task 10] [vivisect] INFO: Extended Analysis: vivisect.analysis.pe\r\n2023-04-11 04:46:01,803 [Task 10] [vivisect] INFO: Extended Analysis: vivisect.analysis.generic.relocations\r\n2023-04-11 04:46:01,803 [Task 10] [vivisect] INFO: Extended Analysis: vivisect.analysis.ms.vftables\r\n2023-04-11 04:46:01,980 [Task 10] [vivisect] INFO: Extended Analysis: vivisect.analysis.generic.emucode\r\n2023-04-11 04:46:01,980 [Task 10] [vivisect] INFO: emucode: 0 new functions defined (now total: 2)\r\n2023-04-11 04:46:01,980 [Task 10] [vivisect] INFO: Extended Analysis: vivisect.analysis.i386.importcalls\r\n2023-04-11 04:46:01,988 [Task 10] [vivisect] INFO: 0x00402695: Emulation Found 0x00401250 (from func: 0x00402680) via call eax\r\n2023-04-11 04:46:01,997 [Task 10] [envi.codeflow] WARNING: parseOpcode error at 0x0041e2d9 (addCodeFlow(0x41db6c)): InvalidInstruction(\"'feffff518d95fcfeffff528d850cffff' at 0x41e2d9\")\r\n2023-04-11 04:46:02,698 [Task 10] [vivisect] INFO: Extended Analysis: vivisect.analysis.i386.golang\r\n2023-04-11 04:46:02,698 [Task 10] [vivisect] INFO: Extended Analysis: vivisect.analysis.ms.localhints\r\n2023-04-11 04:46:02,698 [Task 10] [vivisect] INFO: Extended Analysis: vivisect.analysis.generic.funcentries\r\n2023-04-11 04:46:02,928 [Task 10] [vivisect.tools.graphutil] WARNING: FB is None in graph building!??!\r\n2023-04-11 04:46:02,928 [Task 10] [vivisect.tools.graphutil] WARNING: (fva: 0x0041da40  fallva: 0x0041e2d9\r\n2023-04-11 04:46:03,120 [Task 10] [vivisect] INFO: Extended Analysis: vivisect.analysis.ms.msvcfunc\r\n2023-04-11 04:46:03,120 [Task 10] [vivisect] INFO: Extended Analysis: vivisect.analysis.generic.thunks\r\n2023-04-11 04:46:03,120 [Task 10] [vivisect] INFO: Extended Analysis: vivisect.analysis.generic.strconst\r\n2023-04-11 04:46:03,142 [Task 10] [vivisect] INFO: ...analysis complete! (1 sec)\r\n2023-04-11 04:46:03,187 [Task 10] [vivisect] INFO: Percentage of discovered executable surface area: 34.0% (59893 / 176128)\r\n2023-04-11 04:46:03,188 [Task 10] [vivisect] INFO:    Xrefs/Blocks/Funcs:                             (6129 / 833 / 15)\r\n2023-04-11 04:46:03,188 [Task 10] [vivisect] INFO:    Locs,  Ops/Strings/Unicode/Nums/Ptrs/Vtables:   (16430:  16204 / 0 / 122 / 13 / 0 / 0)\r\n2023-04-11 04:46:10,723 [Task 10] [modules.processing.network] WARNING: The PCAP file does not exist at path \"/opt/CAPEv2/storage/analyses/10/dump.pcap\"\r\n2023-04-11 04:47:30,696 [root] INFO: Reports generation completed\r\n```\r\n\r\n\nComment: I think there is some confusion here. \"Full process memory dumps\" (procmemdump) are not the same thing as a full system dump of the vm memory which is what is required for volatility analysis.\r\n\r\nThe full process memory dump submission option causes each process to be dumped in full which is displayed in the \"Process Memory\" tab:\r\n\r\n![image](https://user-images.githubusercontent.com/22219888/231242893-65a1fd52-9aec-4d56-b8f7-644c58ab159b.png)\r\n\r\nFor volatility analysis I am not an expert as this is not part of cape that I use. However, the full system dumps that are required for volatility are enabled in `cuckoo.conf` as follows:\r\n\r\n```\r\n# Enable creation of memory dump of the analysis machine before shutting\r\n# down. Even if turned off, this functionality can also be enabled at\r\n# submission. Currently available for: VirtualBox and libvirt modules (KVM).\r\nmemory_dump = on\r\n```\r\n\r\nThen the configuration of volatility is done in `memory.conf`.\nComment: what volatility version do you use? as you might see in errors there is 2 things, vol is not installed msg and render error as it can't import due to not installed or bad version\nComment: Hi doomedraven,\r\n\r\nIt is volatility version 2.4.2.\r\n\r\nI attempted to run the command suggested in the error `pip3 install volatility3 -U`, and this is the result:\r\n\r\n```\r\nDefaulting to user installation because normal site-packages is not writeable\r\nRequirement already satisfied: volatility3 in /usr/local/lib/python3.10/dist-packages (2.4.2)\r\nRequirement already satisfied: pefile>=2017.8.1 in /usr/local/lib/python3.10/dist-packages (from volatility3) (2022.5.30)\r\nRequirement already satisfied: future in /usr/lib/python3/dist-packages (from pefile>=2017.8.1->volatility3) (0.18.2)\r\n```\r\n\nComment: somehow i missed that, you can't install package with pip if you using `poetry`, you need to install it with `poetry run pip install volatility3` ",
+  "Title: Add \"processed_on\" field to analysis info.\nBody: This field will help determine if a task has been reprocessed, allowing external systems to know if the document may have been updated since the last time it was polled.\nComment: No good?\nComment: It could certainly go in, but it doesn't actually suit our needs at the moment. I had to approach it a different way.",
+  "Title: Update domains.py to remove noise during analysis\nBody: None",
+  "Title: Service DLL not working in Windows 10\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n- [x] I'm aware that configs now are in `custom/conf/`\r\n\r\n\r\n# Expected Behavior\r\n\r\nI want to run service dll, but it failed.\r\n\r\n# Current Behavior\r\n\r\nI write a simple service dll that will run calc.exe in user session. If the service dll successfully executed, calc.exe will pop up. But it failed to execute the service dll. \r\n\r\n# Failure Information (for bugs)\r\n\r\nI have investigated this issue myself and managed to fix it. However, I am not sure how to merge the solution upstream, and it is also related to capemon. My test sample is a 64-bit service DLL, so I haven't handled the 32-bit case. Additionally, I don't know how to run a 32-bit service DLL in Windows 10. I have tried several times but failed to start a 32-bit service DLL in Windows 10.\r\n\r\n## TL;DR\r\n\r\nI managed to fix some code and make 64-bit service dll works in Windows 10. Here is my fix\r\n1. Fix WoW64 redirection, since our python is 32-bit program.\r\n2. Fix capemon bugs.\r\n    - inject mode parameter not working in capemon loader (can't specify inject mode)\r\n    - unknown bugs in `CreateThreadBreakpoints`\r\n\r\n## Fix WoW64 redirection\r\n\r\nSince our python.exe is a 32-bit program (as the documentation suggests), there will be WoW64 redirection for all operations in python.exe, including file moving and registry setting. Regardless of whether the submitted samples are 32-bit or 64-bit, they will all be placed under C:\\Windows\\SysWOW64, and the registry will be in WOW6432NODE. If the submitted sample is a 32-bit service DLL and all the settings are for 32-bit, it should work. However, as I mentioned earlier, I couldn't get the service DLL to run successfully in Windows 10, even when testing on my machine. Therefore, I decided to focus on fixing the 64-bit service DLL issue. I tried to disable all the WoW64 redirection in our Python script, which includes the following three steps:\r\n\r\n1. Disable WoW64 in https://github.com/kevoreilly/CAPEv2/blob/4d65838dfed81065c718bb95c68aaba029b06ae3/analyzer/windows/lib/common/abstracts.py#L166\r\n4. Disable WoW64 in https://github.com/kevoreilly/CAPEv2/blob/4d65838dfed81065c718bb95c68aaba029b06ae3/analyzer/windows/modules/packages/service_dll.py#L93\r\n5. In the following two lines, change `KEY_ALL_ACCESS` to `KEY_ALL_ACCESS | KEY_WOW64_64KEY` https://github.com/kevoreilly/CAPEv2/blob/4d65838dfed81065c718bb95c68aaba029b06ae3/analyzer/windows/modules/packages/service_dll.py#L76 https://github.com/kevoreilly/CAPEv2/blob/4d65838dfed81065c718bb95c68aaba029b06ae3/analyzer/windows/modules/packages/service_dll.py#L86\r\n6. Delete the WOW64 value created by CreateServiceA, which will make the Service Control Manager (SCM) attempt to run the service in a 32-bit manner. See the code below.\r\n\r\nI have provided the modified code in analyzer/windows/modules/packages/service_dll.py and analyzer/windows/lib/common/abstracts.py below, as well as the Python decorator I used to disable WoW64 redirection.\r\n\r\n```python\r\n...\r\n\r\ndef set_keys(self, servicename, dllpath):\r\n        svchost_path = r\"Software\\Microsoft\\Windows NT\\CurrentVersion\\Svchost\"\r\n        service_path = rf\"System\\CurrentControlSet\\Services\\{servicename}\"\r\n        parameter_path = rf\"System\\CurrentControlSet\\Services\\{servicename}\\Parameters\"\r\n\r\n        try:\r\n            log.info(\"Adding Parameters value: %s -> ServiceDll = %s\", parameter_path, dllpath)\r\n            with CreateKeyEx(HKEY_LOCAL_MACHINE, parameter_path, 0, KEY_ALL_ACCESS | KEY_WOW64_64KEY) as key:\r\n                SetValueEx(key, \"ServiceDll\", 0, REG_EXPAND_SZ, dllpath)\r\n        except Exception as e:\r\n            log.info(\"Error setting registry value: %s\", e)\r\n            return\r\n\r\n        # try to remove the WOW64 field in service registry, which is created by CreateServiceA\r\n        try:\r\n            with OpenKeyEx(HKEY_LOCAL_MACHINE, service_path, 0, KEY_ALL_ACCESS | KEY_WOW64_64KEY) as key:\r\n                DeleteValue(key, \"WOW64\")\r\n        except Exception as e:\r\n            log.info(\"Error deleting registry value: %s\", e)\r\n            return\r\n\r\n        try:\r\n            log.info(\"Adding capegroup value: capegroup = %s\", servicename)\r\n            with CreateKeyEx(HKEY_LOCAL_MACHINE, svchost_path, 0, KEY_ALL_ACCESS | KEY_WOW64_64KEY) as key:\r\n                SetValueEx(key, \"capegroup\", 0, REG_MULTI_SZ, [servicename])\r\n        except Exception as e:\r\n            log.info(\"Error setting registry value: %s\", e)\r\n            return\r\n\r\n@disable_wow64_redirection\r\ndef start(self, path):\r\n    ...\r\n```\r\n\r\n```python\r\n...\r\n\r\n@disable_wow64_redirection\r\ndef move_curdir(self, filepath):\r\n    ...\r\n```\r\n\r\n```python\r\nimport os\r\nimport sys\r\nimport ctypes\r\nfrom ctypes import wintypes, windll, POINTER\r\nfrom ctypes.wintypes import BOOL, HANDLE\r\nfrom functools import wraps\r\n\r\n\r\ndef disable_wow64_redirection(func):\r\n    if os.name == 'nt' and sys.maxsize == 2**31 - 1:\r\n        kernel32 = ctypes.windll.kernel32\r\n\r\n        Wow64DisableWow64FsRedirection = kernel32.Wow64DisableWow64FsRedirection\r\n        Wow64DisableWow64FsRedirection.restype = BOOL\r\n        Wow64DisableWow64FsRedirection.argtypes = [POINTER(HANDLE)]\r\n\r\n        Wow64RevertWow64FsRedirection = kernel32.Wow64RevertWow64FsRedirection\r\n        Wow64RevertWow64FsRedirection.restype = BOOL\r\n        Wow64RevertWow64FsRedirection.argtypes = [HANDLE]\r\n\r\n    @wraps(func)\r\n    def wrapper(*args, **kwargs):\r\n        if os.name == 'nt' and sys.maxsize == 2**31 - 1:\r\n            old_value = wintypes.HANDLE()\r\n            Wow64DisableWow64FsRedirection(ctypes.byref(old_value))\r\n\r\n            result = func(*args, **kwargs)\r\n\r\n            Wow64RevertWow64FsRedirection(old_value)\r\n            return result\r\n        else:\r\n            return func(*args, **kwargs)\r\n\r\n    return wrapper\r\n```\r\n\r\nI also notice that `\"%SystemRoot%\\system32\"` will not be interpret by python and will simply create a \"%SystemRoot%\" folder when calling `os.makedirs` and `os.path.exists` in `create_custom_folders`. We can simply change it to `C:\\\\Windows\\\\System32`.\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/4d65838dfed81065c718bb95c68aaba029b06ae3/analyzer/windows/modules/packages/service_dll.py#L63\r\n\r\n## capemon issues\r\n\r\nAfter fixing all the issues related to WoW64, we can successfully run a 64-bit service DLL properly. However, this is not the end of the problem, as I still couldn't see the calc.exe pop up. I suspected this might be due to a capemon monitoring issue, and I discovered several problems in capemon.\r\n\r\nFirst, when calling Process.inject, even though we can specify the injectmode, the parameter is not used at all in the function. This is also the case in the capemon loader, where __argv[5] is not used in the function. To fix this, I temporarily set DisableIATPatching to TRUE. In practice, we should properly handle the inject mode parameters.\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/4d65838dfed81065c718bb95c68aaba029b06ae3/analyzer/windows/lib/api/process.py#L595\r\n\r\nhttps://github.com/kevoreilly/capemon/blob/3d07de774acbfd5c3ff7d2c2d41dc8e7c1f0ceef/loader/loader/Loader.c#L1390\r\n\r\nNext, I attached a debugger to svchost to determine where the program crashed. I found that it crashed in [capemon - CAPE/Debugger.c - CreateThreadBreakpoints](https://github.com/kevoreilly/capemon/blob/3d07de774acbfd5c3ff7d2c2d41dc8e7c1f0ceef/CAPE/Debugger.c#L145) and raised an `INVALID_HANDLE` error. After disabling it by modifying the `InitNewThreadBreakpoints` function to return FALSE at the beginning, it finally worked, and I could see the calc.exe pop up. But I don't know why this error happened.\r\n\r\n![image](https://user-images.githubusercontent.com/18167730/230579076-db5abec6-3fda-4f8f-9a56-4344d53d95e2.png)\r\n\r\n## Steps to Reproduce\r\n\r\nhttps://capesandbox.com/analysis/378048/#\r\n\r\n## Context\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       |  c2600596ade8e3ec9ebbb960cc34a7e8da8d9489 (this is the latest commit I merge into my project, but I have some custom modification on the code)\r\n| OS version       | Ubuntu 20.04, Windows 10\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: Thank you for this detailed work - very much appreciated. I will work through these issues and get back to you!\nComment: For the INVALID_HANDLE error, you could use the INVALID_HANDLE_VALUE constant to check for an invalid handle before calling GetThreadId, and then GetLastError to check the error code that caused the handle to be invalid. As a workaround, instead of editing InitNewThreadBreakpoints, just skip the thread with the invalid handle.\nComment: I will respond in more detail in time but cape's loader does not use the injectmode parameter, this is a remnant from cuckoo which will be removed from the analyzer in time. The loader is designed to pick the appropriate loading mechanism, in this case since the service process is already running the injection should be remote thread creation (neither queued APC or IAT patching are appropriate for existing processes) and this is always picked in the cases where there is no thread id supplied, Since we should not have a thread id for the pre-existing services.exe process, then thread creation should in theory be picked here - I will need to look into why this is not the case. However, I am on leave today so will not be able to look at this until tomorrow.\nComment: Thanks @enzok for your reply - my plan is to solve the root problem rather than just work around it. Again, until I have time to look in detail, there isn't much point in saying too much other than there shouldn't be an invalid handle value stored there.\nComment: Of course, I figured you'd squash it in due time. My response was intended\nfor the submitter in case he wanted to troubleshoot on his own some more.\n\nOn Mon, Apr 10, 2023 at 11:10\u202fAM kevoreilly ***@***.***>\nwrote:\n\n> Thanks @enzok <https://github.com/enzok> for your reply - my plan is to\n> solve the root problem rather than just work around it. Again, until I have\n> time to look in detail, there isn't much point in saying too much other\n> than there shouldn't be an invalid handle value stored there.\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1476#issuecomment-1501936230>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AB3X3YASZMMS2TM7KQXNPVDXAQPHJANCNFSM6AAAAAAWWM3444>\n> .\n> You are receiving this because you were mentioned.Message ID:\n> ***@***.***>\n>\n\n\n-- \nLorenzo\n\n\u201cHappiness is not the absence of problems, but the ability to deal with\nthem.\" - Albert Einstein\n\nComment: Initially, I suspected that there might be an issue with the IAT injection method when spawning svchost.exe. However, after successfully executing my service DLL and testing it again, I discovered that the issue was not related to the IAT injection method. Therefore, there is no need to set DisableIATPatching or use any other approach.\r\nAbout injecting services.exe, I guess it works correctly since I don't encounter issue with it.\nComment: Thank you for the response, @enzok. I have updated the code as follows to check for `INVALID_HANDLE_VALUE` before calling `GetThreadId`. However, it still crashes in the same manner, leading me to believe that the `CurrentThreadBreakpoints->ThreadHandle` is neither 0 nor `INVALID_HANDLE_VALUE`. Further investigation will be required to resolve this issue.\r\n\r\n```c\r\nif (CurrentThreadBreakpoints->ThreadHandle && \r\n    CurrentThreadBreakpoints->ThreadHandle != INVALID_HANDLE_VALUE && \r\n    GetThreadId(CurrentThreadBreakpoints->ThreadHandle) == ThreadId)\r\n```\nComment: Unfortunately I have not been able to successfully recreate your wow64 redirection from these code snippets. Whilst I am grateful for the code you have supplied in the issue, in order to be able to work properly and efficiently it would be preferable for this type of work to be put into a pull request rather than an issue. That way there is no time wasted copying and pasting code and failing to get to the same codebase.\r\n\r\nSo I have created a pull request on your behalf and attempted to put together the code you have posted: https://github.com/kevoreilly/CAPEv2/pull/1480. It wasn't stated where the disable_wow64_redirection() function was actually implemented in file, so I picked lib/api/common/common.py.\r\n\r\nWould you be able to check this pull request to get the code to the same state you have yours? Currently I am seeing a 32-bit process being created by services.exe suggesting the redirection disabling has not worked.\r\n\r\n ```\r\n2023-04-11 11:03:45,940 [modules.packages.service_dll] INFO: Created service CAPEService (handle: 0x24072576)\r\n2023-04-11 11:03:45,940 [modules.packages.service_dll] INFO: Adding Parameters value: System\\CurrentControlSet\\Services\\CAPEService\\Parameters -> ServiceDll = C:\\Windows\\system32\\service_dll.dll\r\n2023-04-11 11:03:45,940 [modules.packages.service_dll] INFO: Adding capegroup value: capegroup = CAPEService\r\n...\r\n2023-04-11 11:03:46,471 [root] INFO: Loaded monitor into process with pid 676\r\n2023-04-11 11:03:46,487 [root] DEBUG: CreateProcessHandler: Injection info set for new process 7880: C:\\Windows\\SysWOW64\\svchost.exe, ImageBase: 0x0000000000B20000\r\n2023-04-11 11:03:46,487 [root] INFO: Announced 32-bit process name: svchost.exe pid: 7880\r\n```\r\n\r\nThank you\nComment: It looks like I have got it working just by fixing up a couple of missing imports... I will move onto looking into the monitor issue.\nComment: I've got the service dll running now but the call to `WTSQueryUserToken` appears to be failing...\r\n\r\n```\r\nCAPE Sandbox - Debugger log: Tue Apr 11 14:27:48 2023\r\nBreakpoint 0 hit by instruction at 0x00007FFC3B081060 (thread 2576) RAX=0x7ffc3b081060 RCX=0x1 RDX=0x19e2ec1a928 RSI=0xffffffffffffffff RDI=0x19e2ec14af0 RSP=0x953e37fd98 *RSP=0x7ff744f94140 RBP=0x953e37fe69 R8=0x7ff744f99070 R9=0x8000000000000000 R10=0xfff8761020c R11=0xffffffffffffffff R12=0x19e2ec1a928 R13=0x19e2ec1a930 L\"CAPEService\" R15=0x7ffc3b081060 Xmm0.Low=0x31120000 Xmm0.High=0x32120000000000 Xmm1.Low=0x1d4003212000000\r\nBreak at 0x00007FFC3B081060 in service_dll.dll::ServiceMain (RVA 0x1060, thread 2576, ImageBase 0x00007FFC3B080000)\r\n0x00007FFC3B081060  4057                     PUSH      RDI                            RSP=0x953e37fd90 *RSP=0x19e2ec14af0\r\n0x00007FFC3B081062  4881EC00010000           SUB       RSP, 0x100                     RSP=0x953e37fc90 *RSP=0x953e37fe69\r\n0x00007FFC3B081069  488B05982F0000           MOV       RAX, [RIP+0x2f98]              RAX=0x3e253715383c\r\n0x00007FFC3B081070  4833C4                   XOR       RAX, RSP                       RAX=0x3eb00922c4ac\r\n0x00007FFC3B081073  48898424F0000000         MOV       [RSP+0xf0], RAX               \r\n0x00007FFC3B08107B  488D157EFFFFFF           LEA       RDX, [RIP-0x82]                RDX=0x7ffc3b081000\r\n0x00007FFC3B081082  488D0DA7210000           LEA       RCX, [RIP+0x21a7]              RCX=0x7ffc3b083230 L\"EvilSvc\"\r\n0x00007FFC3B081089  FF15811F0000             CALL      RegisterServiceCtrlHandlerW    RAX=0x19e2ec15c80 RCX=0x953e37fc70 RDX=0x7ffc3b083230 L\"EvilSvc\" R8=0 R9=0\r\n0x00007FFC3B08108F  33FF                     XOR       EDI, EDI                       RDI=0\r\n0x00007FFC3B081091  C705A535000020000000     MOV       DWORD [RIP+0x35a5], 0x20      \r\n0x00007FFC3B08109B  488BC8                   MOV       RCX, RAX                       RCX=0x19e2ec15c80\r\n0x00007FFC3B08109E  48890593350000           MOV       [RIP+0x3593], RAX             \r\n0x00007FFC3B0810A5  488D1594350000           LEA       RDX, [RIP+0x3594]              RDX=0x7ffc3b084640\r\n0x00007FFC3B0810AC  893D9E350000             MOV       [RIP+0x359e], EDI             \r\n0x00007FFC3B0810B2  C7058835000002000000     MOV       DWORD [RIP+0x3588], 0x2       \r\n0x00007FFC3B0810BC  FF15461F0000             CALL      SetServiceStatus               RAX=0x1 RCX=0x405e501c736e0000 RDX=0xa10 R8=0x19e2ec057d0 R9=0x953e37f608 R10=0xfff89276ccc R11=0x1000 Xmm0.Low=0 Xmm0.High=0 Xmm1.Low=0\r\n0x00007FFC3B0810C2  4533C9                   XOR       R9D, R9D                       R9=0\r\n0x00007FFC3B0810C5  8D5701                   LEA       EDX, [RDI+0x1]                 RDX=0x1\r\n0x00007FFC3B0810C8  4533C0                   XOR       R8D, R8D                       R8=0\r\n0x00007FFC3B0810CB  33C9                     XOR       ECX, ECX                       RCX=0\r\n0x00007FFC3B0810CD  FF15751F0000             CALL      CreateEventW                   RAX=0x1f0 RCX=0x48cbb439dd400000 RDX=0 R8=0x953e37fb78 R9=0x953e37fc38 R10=0 R11=0x953e37fc80\r\n0x00007FFC3B0810D3  488B0D5E350000           MOV       RCX, [RIP+0x355e]              RCX=0x19e2ec15c80\r\n0x00007FFC3B0810DA  488D155F350000           LEA       RDX, [RIP+0x355f]              RDX=0x7ffc3b084640\r\n0x00007FFC3B0810E1  48890548350000           MOV       [RIP+0x3548], RAX             \r\n0x00007FFC3B0810E8  C7055235000004000000     MOV       DWORD [RIP+0x3552], 0x4       \r\n0x00007FFC3B0810F2  FF15101F0000             CALL      SetServiceStatus               RAX=0x1 RCX=0x405e501c736e0000 RDX=0xa10 R8=0x19e2ec057d0 R9=0x953e37f608 R10=0xfff89276ccc R11=0x1000\r\n0x00007FFC3B0810F8  0F57C0                   XORPS     XMM0, XMM0                    \r\n0x00007FFC3B0810FB  C784248000000068000000   MOV       DWORD [RSP+0x80], 0x68        \r\n0x00007FFC3B081106  33C0                     XOR       EAX, EAX                       RAX=0\r\n0x00007FFC3B081108  0F11842484000000         MOVUPS    [RSP+0x84], XMM0              \r\n0x00007FFC3B081110  898424E4000000           MOV       [RSP+0xe4], EAX               \r\n0x00007FFC3B081117  0F11842494000000         MOVUPS    [RSP+0x94], XMM0              \r\n0x00007FFC3B08111F  4889442478               MOV       [RSP+0x78], RAX               \r\n0x00007FFC3B081124  0F118424A4000000         MOVUPS    [RSP+0xa4], XMM0              \r\n0x00007FFC3B08112C  0F118424B4000000         MOVUPS    [RSP+0xb4], XMM0              \r\n0x00007FFC3B081134  0F118424C4000000         MOVUPS    [RSP+0xc4], XMM0              \r\n0x00007FFC3B08113C  0F118424D4000000         MOVUPS    [RSP+0xd4], XMM0              \r\n0x00007FFC3B081144  0F11442468               MOVUPS    [RSP+0x68], XMM0              \r\n0x00007FFC3B081149  FF15D11E0000             CALL      WTSGetActiveConsoleSessionId   RAX=0x3\r\n0x00007FFC3B08114F  83F8FF                   CMP       EAX, -0x1                     \r\n0x00007FFC3B081152  747D                     JZ        0x7f                          \r\n0x00007FFC3B081154  488D542460               LEA       RDX, [RSP+0x60]                RDX=0x953e37fcf0\r\n0x00007FFC3B081159  48897C2460               MOV       [RSP+0x60], RDI               \r\n0x00007FFC3B08115E  8BC8                     MOV       ECX, EAX                       RCX=0x3\r\n0x00007FFC3B081160  FF158A1F0000             CALL      QueryUserToken                \r\nException 0x800703f0 at 0x00007FFC48184F69 in KERNELBASE.dll (RVA 0x34f69, thread 2576), flags 0x1 RAX=0 RCX=0x5d158db13dce0000 RDX=0 R8=0 R9=0x7f67095eb2c3 R10=0 R11=0x200 Xmm0.Low=0x7ffc4951f0a0 Xmm0.High=0x19e2ed02fa0\r\n0x00007FFC3B081166  85C0                     TEST      EAX, EAX                      \r\n0x00007FFC3B081168  7467                     JZ        0x69                          \r\n0x00007FFC3B0811D1  488B0D58340000           MOV       RCX, [RIP+0x3458]              RCX=0x1f0\r\n0x00007FFC3B0811D8  BAFFFFFFFF               MOV       EDX, 0xffffffff                RDX=0xffffffff\r\n0x00007FFC3B0811DD  FF15451E0000             CALL      WaitForSingleObject \r\n```\nComment: Right I've pushed a test monitor to the PR branch `service_dll` along with a few small code changes - everything now seems to be working other than the failing `QueryUserToken` call from the compiled sample dll.\r\n\r\nPlease could you test this branch to see how it fares on your instance.\nComment: I realised the `QueryUserToken` issue was down to my hyper-v instance which I was testing on for convenience. I've tested on my main instance and it works.\r\n\r\n![image](https://user-images.githubusercontent.com/22219888/231222447-8a8a4e60-bf11-4bf0-ac95-a504708bc1c6.png)\r\n\nComment: Apologies for the delayed response. I've tested your pull request, and it works on my instance as well. However, this is only a quick fix for 64-bit service DLLs. Is it acceptable to ignore 32-bit service DLLs, or should we change the submission option to service_dll(x64)?\nComment: The big question is whether it is possible to run a 32-bit service dll on a 64-bit operating system. I was of the impression that it is not, but I cannot seem to find any definitive evidence either way...\r\n\r\nOnce this is established, we can test for bitness of the dll within the package and either handle each separately, or if it's not possible to run the dll, return an appropriate error.\nComment: These changes were merged in https://github.com/kevoreilly/CAPEv2/commit/6437b84965ee0ca5d9918978a78b332524290105 - thanks for this contribution.\r\n\r\nI haven't come across any evidence of 32-bit service dlls running on 64-bit Windows - we can cross that bridge when we come to it.\nComment: Hi @kevoreilly, I was trying to run a `service_dll` and noticed that `disable_wow64_redirection` does not seem to be implemented: [/analyzer/windows/lib/common/common.py](/kevoreilly/CAPEv2/blob/master/analyzer/windows/lib/common/common.py), although but is imported from `service_dll.py`.\nComment: Fix is in staging",
+  "Title: drop traffic for interface unavailable\nBody: Instead of raising an error when a network interface is unavailable, which leads to a dead machine status that removes it from the pool, fall back to 'drop' network route.",
+  "Title: small typo fix\nBody: None",
+  "Title: Improve zip package\nBody: None",
+  "Title: Improve msi extraction\nBody: None\nComment: Looks like there are some failed unit tests - anything you are able to address?\nComment: the test file needs to be updated \nComment: are you gonna to update test?\nComment: I thought I updated in the PR.\n\nOn Mon, Apr 17, 2023 at 11:33\u202fAM doomedraven ***@***.***>\nwrote:\n\n> are you gonna to update test?\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/pull/1472#issuecomment-1511607393>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AB3X3YG5M2ZWR7BCRSCTSVLXBVPGJANCNFSM6AAAAAAWUCGTQI>\n> .\n> You are receiving this because you authored the thread.Message ID:\n> ***@***.***>\n>\n\n\n-- \nLorenzo\n\n\u201cHappiness is not the absence of problems, but the ability to deal with\nthem.\" - Albert Einstein\n\nComment: doesn't look like this works",
+  "Title: Improve 'file=' handling for archive files\nBody: Remove obsolete code",
+  "Title: Configs\nBody: None",
+  "Title: ToDo Improve configs\nBody: keep allowing `custom/conf` but all default config should be `<name>.conf.example` \r\n* Loading should be similar to next\r\n1. `<name>.conf.example` \r\n2. `<name>.conf`\r\n3. `<name>.conf.d`\r\n4. `custom/conf/<name>.conf`  # backward friendly\r\n5. `custom/conf/<name>.conf.d/*` # backward friendly",
+  "Title: ToDo rewrite binary storage\nBody: Binary storage is a mess, it requires whole rewrite of all logics and tests",
+  "Title: Fix case where demux unpacking PE file\nBody: None",
+  "Title: fixed fixed buffer_size, reads config file to grab buffer input, replace import path in vba2graph\nBody: None",
+  "Title: Hancitor update\nBody: Implemented code from OALabs (source: https://github.com/OALabs/Lab-Notes/blob/main/Hancitor/hancitor.ipynb) to use regex to find the encryption key instead of hard coded offset from the  .data section.\r\n\r\nA few samples have the key in the .text section causing the extractor to fail: 137ae44ea6f625a3dae762a668b68c96b10f953e5b407d3f5600da096a014f46 1a495667c6a44520eaa6f284a254973e0ea0cf222e37ab4bb06a9b5cf930d89c\nComment: This looks great - thanks a lot! Will test & merge asap.\nComment: isn't chanitor/hancitor is dead family?\nComment: I am working on this PR but unfortunately the 2 samples mentioned do not detonate (tested both in cape and triage) and are also missing detection so I'm doing a more thorough survey before merging to make sure detection/unpacking are also working. So far the most recent sample I can find is from about a year ago in https://www.malware-traffic-analysis.net/2022/03/21/index2.html. I am yet to find a working original sample that does not already have its config extracted in cape.\nComment: Unfortunately I have discovered that these changes break config extraction for previously working samples, for example `abc91dfef90476ff6e3406b62b085ef1e84585aea3e9d80dbe3aa21597ff5995` which is the sample from https://www.malware-traffic-analysis.net/2022/02/01/index.html\r\n\r\nAlso as noted above, the sample hashes supplied with this PR do not detonate, and appear more likely to be unpacked/memory dumps than original samples. I would ideally like to find the original packed samples, or other working examples of samples for which the old parser failed, in order to test the full chain of config extraction.\nComment: > \r\n\r\nnot very active, but I wouldn't call this completely dead either:\r\nhttps://bazaar.abuse.ch/browse.php?search=tag%3Ahancitor\r\nlast dll on there is 2022-03-21: 446322c5499d41edee0ca0b83aba36f0cc74ed4743a2e50e6eb36d2a3469d85f\nComment: The samples were obtained from a retrohunt for injected samples only\nComment: Right I've integrated this new key extraction method into the parser, so thank you for contributing this code. I found that the regular expression search failed to find the key in the unpacked payload from `abc91dfef90476ff6e3406b62b085ef1e84585aea3e9d80dbe3aa21597ff5995`. I also found that for the two retrohunt samples there was nothing in the hard-coded location in `.data`. Therefore to keep things working that were previously, but also handle the retrohunt samples, I added a check for empty key data from the hardcoded location, which invokes the new key search.\r\n\r\nThis now works for all previous samples and the mentioned retrohunt samples. I made a mess of attempting to update the PR so decided to keep that mess from the main repo and just push the changes directly in https://github.com/kevoreilly/CAPEv2/commit/fbafc08deba346405388eed98d24b6f559b70eaa\r\n\r\nThanks again for contributing to cape.",
+  "Title: File buffer is fixed, instead of it being changeable\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ \u2714] I am running the latest version\r\n- [ \u2714] I did read the README!\r\n- [ \u2714] I checked the documentation and found no answer\r\n- [ \u2714] I checked to make sure that this issue has not already been filed\r\n- [ \u2714] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ \u2714] I have read and checked all configs (with all optional parts)\r\n- [ \u2714] I'm aware that configs now are in `custom/conf/`\r\n\r\n\r\n# Expected Behavior\r\n\r\nWhen changing the buffersize in [`/custom/conf/](https://github.com/kevoreilly/CAPEv2/blob/master/conf/processing.conf)\r\n```\r\n# Amount of text to carve from plaintext files (bytes)\r\nbuffer = 8192\r\n```\r\nI expect the buffer to change from 8192 to let us say 10000, however looking at the source code it seems that this is not the case and is a fixed value on 8192.\r\n\r\n# Current Behavior\r\n\r\nThe value is fixed to 8192.\r\n\r\n# Failure Information (for bugs)\r\n\r\nI think the bug is in: https://github.com/kevoreilly/CAPEv2/blob/d79661414cbfe0619662ef5782d2af101999af69/lib/cuckoo/common/integrations/file_extra_info.py#L229. Line 229 has a fixed buffer_size of 8192 same applies to line https://github.com/kevoreilly/CAPEv2/blob/d79661414cbfe0619662ef5782d2af101999af69/lib/cuckoo/common/integrations/file_extra_info.py#L362\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. step 1\r\n2. step 2\r\n3. you get it...\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 16.04, Windows 10, macOS 10.12.3\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: If you could distill this into a PR that would be appreciated.\nComment: @kevoreilly will do!\nComment: PR created: https://github.com/kevoreilly/CAPEv2/pull/1466\r\n\nComment: There seems to be another bug in https://github.com/kevoreilly/CAPEv2/blob/841b714d54798293cb1113d10a96a10bcc0f744a/lib/cuckoo/common/integrations/vba2graph.py#L18 the path it is trying to import from does not exist. I changed this to `from lib.cuckoo.common.integrations.vba2graph import vba2graph_from_vba_object, vba2graph_gen` I added this to the previous PR.\nComment: I know this isn't the place to ask, but if you have time. Can you activate my account on capesanbox.com? `FalconPunch`, I have been waiting for a while \ud83d\ude05 \nComment: activated, thanks for PR",
+  "Title: Staging\nBody: None",
+  "Title: Staging\nBody: None",
+  "Title: few tests fixes\nBody: None",
+  "Title: If free=yes, a pid in pids returned from analysis package can be None\nBody: This was causing the analyzer to crash and not perform analysis cleanup.\nComment: Thank you",
+  "Title: Minor fixes\nBody: - CSRF_TRUSTED_ORIGINS django SystemCheckError\r\n- suricata cannot write log files\r\n- fixed wrong f-string in TLS master secrets file\nComment: Thanks for this!",
+  "Title: Unable to process files\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ X ] I am running the latest version\r\n- [ X ] I did read the README!\r\n- [ X ] I checked the documentation and found no answer\r\n- [ X ] I checked to make sure that this issue has not already been filed\r\n- [ X ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ X ] I have read and checked all configs (with all optional parts)\r\n- [ X ] I'm aware that configs now are in `custom/conf/`\r\n\r\n\r\n# Expected Behavior\r\n\r\nHaving the files processed and the results of processing in the `storage/analysis` folder or in the ip address I configured.  \r\n\r\n# Current Behavior\r\n\r\nWhen I run the application with `poetry run python3 cuckoo.py` and then submit a analysis with `sudo -u cape poetry run python3 submit.py /path/to/binary/test.exe` nothing happens. When I tried to reload the address where I configured the results to be(192.168.56.1:2042), it gives me a `WARNING: ResultServer did not have a task for IP 192.168.56.1`. After several minute I got a critical error `CRITICAL: CuckooCriticalError: Please update your configuration. Unable to shut 'Win7' down or find the machine in its proper state: Timeout hit while for machine Win7 to change status`.\r\n\r\n### cuckoo.conf\r\n\r\n```\r\n[cuckoo]\r\n\r\n# Which category of tasks do you want to analyze?\r\ncategories = static, pcap, url, file\r\n\r\n# If turned on, Cuckoo will delete the original file after its analysis\r\n# has been completed.\r\ndelete_original = off\r\n\r\n# Archives are not deleted by default, as it extracts and \"original file\" become extracted file\r\ndelete_archive = on\r\n\r\n# If turned on, Cuckoo will delete the copy of the original file in the\r\n# local binaries repository after the analysis has finished. (On *nix this\r\n# will also invalidate the file called \"binary\" in each analysis directory,\r\n# as this is a symlink.)\r\ndelete_bin_copy = off\r\n\r\n# Specify the name of the machinery module to use, this module will\r\n# define the interaction between Cuckoo and your virtualization software\r\n# of choice.\r\nmachinery = virtualbox\r\n\r\n# Enable creation of memory dump of the analysis machine before shutting\r\n# down. Even if turned off, this functionality can also be enabled at\r\n# submission. Currently available for: VirtualBox and libvirt modules (KVM).\r\nmemory_dump = off\r\n\r\n# When the timeout of an analysis is hit, the VM is just killed by default.\r\n# For some long-running setups it might be interesting to terminate the\r\n# moinitored processes before killing the VM so that connections are closed.\r\nterminate_processes = off\r\n\r\n# Enable automatically re-schedule of \"broken\" tasks each startup.\r\n# Each task found in status \"processing\" is re-queued for analysis.\r\nreschedule = off\r\n\r\n# Fail \"unserviceable\" tasks as they are queued.\r\n# Any task found that will never be analyzed based on the available analysis machines\r\n# will have its status set to \"failed\".\r\nfail_unserviceable = on\r\n\r\n# Limit the amount of analysis jobs a Cuckoo process goes through.\r\n# This can be used together with a watchdog to mitigate risk of memory leaks.\r\nmax_analysis_count = 0\r\n\r\n# Limit the number of concurrently executing analysis machines.\r\n# This may be useful on systems with limited resources.\r\n# Set to 0 to disable any limits.\r\nmax_machines_count = 10\r\n\r\n# Limit the amount of VMs that are allowed to start in parallel. Generally\r\n# speaking starting the VMs is one of the more CPU intensive parts of the\r\n# actual analysis. This option tries to avoid maxing out the CPU completely.\r\nmax_vmstartup_count = 5\r\n\r\n# Minimum amount of free space (in MB) available before starting a new task.\r\n# This tries to avoid failing an analysis because the reports can't be written\r\n# due out-of-diskspace errors. Setting this value to 0 disables the check.\r\n# (Note: this feature is currently not supported under Windows.)\r\nfreespace = 0\r\n# Process tasks, but not reach out of memory\r\nfreespace_processing = 15000\r\n\r\n# Temporary directory containing the files uploaded through Cuckoo interfaces\r\n# (web.py, api.py, Django web interface).\r\ntmppath = /tmp\r\n\r\n# Delta in days from current time to set the guest clocks to for file analyses\r\n# A negative value sets the clock back, a positive value sets it forward.\r\n# The default of 0 disables this option\r\n# Note that this can still be overridden by the per-analysis clock setting\r\n# and it is not performed by default for URL analysis as it will generally\r\n# result in SSL errors\r\ndaydelta = 0\r\n\r\n# Path to the unix socket for running root commands.\r\nrooter = /tmp/cuckoo-rooter\r\n\r\n# Enable if you want to see a DEBUG log periodically containing backlog of pending tasks, locked vs unlocked machines.\r\n# NOTE: Enabling this feature adds 4 database calls every 10 seconds.\r\nperiodic_log = off\r\n\r\n# Max filename length for submissions, before truncation. 196 is arbitrary.\r\nmax_len = 196\r\n\r\n# If it is greater than this, call truncate the filename further for sanitizing purposes.\r\n# Length truncated to is controlled by sanitize_to_len.\r\n#\r\n# This is to prevent long filenames such as files named by hash.\r\nsanitize_len = 32\r\nsanitize_to_len = 24\r\n\r\n[resultserver]\r\n# The Result Server is used to receive in real time the behavioral logs\r\n# produced by the analyzer.\r\n# Specify the IP address of the host. The analysis machines should be able\r\n# to contact the host through such address, so make sure it's valid.\r\n# NOTE: if you set resultserver IP to 0.0.0.0 you have to set the option\r\n# `resultserver_ip` for all your virtual machines in machinery configuration.\r\nip = 192.168.56.1\r\n\r\n# Specify a port number to bind the result server on.\r\nport = 2042\r\n\r\n# Force the port chosen above, don't try another one (we can select another\r\n# port dynamically if we can not bind this one, but that is not an option\r\n# in some setups)\r\nforce_port = yes\r\n\r\npool_size = 0\r\n\r\n# Should the server write the legacy CSV format?\r\n# (if you have any custom processing on those, switch this on)\r\nstore_csvs = off\r\n\r\n# Maximum size of uploaded files from VM (screenshots, dropped files, log)\r\n# The value is expressed in bytes, by default 100MB.\r\nupload_max_size = 100000000\r\n\r\n# To enable trimming of huge binaries go to -> web.conf -> general -> enable_trim\r\n# Prevent upload of files that passes upload_max_size?\r\ndo_upload_max_size = no\r\n\r\n[processing]\r\n# Set the maximum size of analyses generated files to process. This is used\r\n# to avoid the processing of big files which may take a lot of processing\r\n# time. The value is expressed in bytes, by default 200MB.\r\nanalysis_size_limit = 200000000\r\n\r\n# The number of calls per process to process. 0 switches the limit off.\r\n# 10000 api calls should be processed in less than 2 minutes\r\nanalysis_call_limit = 0\r\n\r\n# Enable or disable DNS lookups.\r\nresolve_dns = on\r\n\r\n# Enable or disable reverse DNS lookups\r\n# This information currently is not displayed in the web interface\r\nreverse_dns = off\r\n\r\n# Use ram to boost processing speed. You will need more than 20GB of RAM for this feature.\r\n# Please read \"performance\" section in the documentation.\r\nram_boost = no\r\n\r\n# Enable PCAP sorting, needed for the connection content view in the web interface.\r\nsort_pcap = on\r\n\r\n[database]\r\n# Specify the database connection string.\r\n# Examples, see documentation for more:\r\n# sqlite:///foo.db\r\n# postgresql://foo:bar@localhost:5432/mydatabase\r\n# mysql://foo:bar@localhost/mydatabase\r\n# If empty, default is a SQLite in db/cuckoo.db.\r\n# SQLite doens't support database upgrades!\r\n# For production we strongly suggest go with PostgreSQL\r\nconnection = postgresql://cape:SuperPuperSecret@localhost:5432/cape\r\n\r\n# Database connection timeout in seconds.\r\n# If empty, default is set to 60 seconds.\r\ntimeout =\r\n\r\n[timeouts]\r\n# Set the default analysis timeout expressed in seconds. This value will be\r\n# used to define after how many seconds the analysis will terminate unless\r\n# otherwise specified at submission.\r\ndefault = 200\r\n\r\n# Set the critical timeout expressed in (relative!) seconds. It will be added\r\n# to the default timeout above and after this timeout is hit\r\n# Cuckoo will consider the analysis failed and it will shutdown the machine\r\n# no matter what. When this happens the analysis results will most likely\r\n# be lost.\r\ncritical = 60\r\n\r\n# Maximum time to wait for virtual machine status change. For example when\r\n# shutting down a vm. Default is 300 seconds.\r\nvm_state = 300\r\n\r\n[tmpfs]\r\n# only if you using volatility to speedup IO\r\n# mkdir -p /mnt/tmpfs\r\n# mount -t tmpfs -o size=50g ramfs /mnt/tmpfs\r\n# chown cape:cape /mnt/tmpfs\r\n#\r\n# vim /etc/fstab\r\n# tmpfs       /mnt/tmpfs tmpfs   nodev,nosuid,noexec,nodiratime,size=50g   0 0\r\n#\r\n# Add crontab with\r\n# @reboot chown cape:cape /mnt/tmpfs -R\r\nenabled = off\r\npath = /mnt/tmpfs/\r\n# in mb\r\nfreespace = 2000\r\n\r\n```\r\n### virtualbox.conf\r\n\r\n```\r\n\r\n[virtualbox]\r\n# Specify which VirtualBox mode you want to run your machines on.\r\n# Can be \"gui\", \"sdl\" or \"headless\". Refer to VirtualBox's official\r\n# documentation to understand the differences.\r\nmode = gui\r\n\r\n# Path to the local installation of the VBoxManage utility.\r\npath = /usr/bin/VBoxManage\r\n\r\ninterface = vboxnet0\r\n# Specify a comma-separated list of available machines to be used. For each\r\n# specified ID you have to define a dedicated section containing the details\r\n# on the respective machine. (E.g. cuckoo1,cuckoo2,cuckoo3)\r\nmachines = Win7\r\n\r\n[Win7]\r\n# Specify the label name of the current machine as specified in your\r\n# VirtualBox configuration.\r\nlabel = Win7\r\n\r\n# Specify the operating system platform used by current machine\r\n# [windows/darwin/linux].\r\nplatform = windows\r\n\r\n# Specify the IP address of the current virtual machine. Make sure that the\r\n# IP address is valid and that the host machine is able to reach it. If not,\r\n# the analysis will fail.\r\nip = 192.168.56.2\r\n\r\n# Set the machine architecture\r\n# Required to auto select proper machine architecture for sample\r\n# x64 or x86\r\narch = x64\r\n\r\n# (Optional) Specify tags to display\r\n# Tags may be used to specify on which guest machines a sample should be run\r\n# tags = windows_xp_sp3,acrobat_reader_6\r\n\r\n# (Optional) Specify the snapshot name to use. If you do not specify a snapshot\r\n# name, the VirtualBox MachineManager will use the current snapshot.\r\n# Example (Snapshot1 is the snapshot name):\r\n#snapshot = \r\n\r\n# (Optional) Specify the name of the network interface that should be used\r\n# when dumping network traffic from this machine with tcpdump. If specified,\r\n# overrides the default interface specified in auxiliary.conf\r\n# Example (vboxnet0 is the interface name):\r\n# interface = vboxnet0\r\n\r\n# (Optional) Specify the IP of the Result Server, as your virtual machine sees it.\r\n# The Result Server will always bind to the address and port specified in cuckoo.conf,\r\n# however you could set up your virtual network to use NAT/PAT, so you can specify here\r\n# the IP address for the Result Server as your machine sees it. If you don't specify an\r\n# address here, the machine will use the default value from cuckoo.conf.\r\n# NOTE: if you set this option you have to set result server IP to 0.0.0.0 in cuckoo.conf.\r\n# Example:\r\n# resultserver_ip = 192.168.56.1\r\n\r\n# (Optional) Specify the port for the Result Server, as your virtual machine sees it.\r\n# The Result Server will always bind to the address and port specified in cuckoo.conf,\r\n# however you could set up your virtual network to use NAT/PAT, so you can specify here\r\n# the port for the Result Server as your machine sees it. If you don't specify a port\r\n# here, the machine will use the default value from cuckoo.conf.\r\n# Example:\r\n# resultserver_port = 2042\r\n\r\n# (Optional) Specify a memory profile to be used by volatility for this\r\n# virtual machine. This will override the guest_profile variable in\r\n# memory.conf which solves the problem of having multiple types of VM's\r\n# and properly determining which profile to use. Examples below:\r\n#mem_profile = WinXPSP2x86\r\n#mem_profile = Win7SP0x86\r\n#mem_profile = Win7SP1x64\r\n```\r\n\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. step 1\r\n2. step 2\r\n3. you get it...\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 16.04, Windows 10, macOS 10.12.3\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: hey did you ensure that agent is running inside of the VM? the confs are correct, we don't use vbox so idk if that is some vbox problems\nComment: https://capev2.readthedocs.io/en/latest/installation/guest/agent.html?highlight=curl#installing-the-agent\nComment: Hi, thank you for your reply.\r\nI had the agent.py running already, here's a screenshot of the agent output in the vm ip adress:\r\n\r\n![image](https://user-images.githubusercontent.com/57421498/228375284-8455be57-018e-4f85-94bc-5e6b90445a7c.png)\r\n\r\nOne thing I forgot to mention, is that every time I execute the `poetry run python3 cuckoo.py` command, it print a message saying that the alias \"CAPE_SERVICE\" is already defined. I didn't understand what that message means, and I couldn't say if it is connected to the error I am having. \r\n\r\n![image](https://user-images.githubusercontent.com/57421498/228376568-902db391-1f2e-47e0-b333-40d0f7b6f33c.png)\r\n\nComment: if your vm is running, then it sound like vbox changed some of the apis maybe to get state etc, if you want to dig into that here is the code for vbox https://github.com/kevoreilly/CAPEv2/blob/master/modules/machinery/virtualbox.py\r\n\r\nwe don't use vbox so you will need to handle that by yourself or wait till someone who uses that tries to find the problem\nComment: Sorry, random person who just happened to install CAPE with vbox haha. I ran into a similar warning message about the VM state being unable to be found. Mine was a networking issue, so I would double check that all the networking stuff is in order. \r\n\r\n1. When you type `ip addr` are you seeing vboxnet0?\r\n2. Did you assign your guest VM to vboxnet0?\r\n3. Did you _completely_ disable the Windows firewall? <-- This is what tripped me up, public firewall was still on.\r\n4. Is the Ubuntu firewall off?\r\n5. Can you send pings from guest -> 192.168.56.1 and host -> guest IP?\r\n6. Tried assigning a different IP address? (If you don't pay attention to the Virtual network adapter settings, the adapter only supports 192.168.56.101 - 192.168.56.254, so that could also be an issue; this one also got me)\r\n\r\nOnce I got all that sorted, I was able to start analyses. Sorry if it isn't that much help, but since I was also plagued by this error message, I figured I would throw some troubleshooting steps out :)\nComment: thank you @mjdepuy. any extra input is useful for area where devs can't help. lets see if that helps him\nComment: Thanks for the replies @doomedraven @mjdepuy. I'll give it a try now and let you know how it goes ASAP.\nComment: ### Updates\r\n\r\nI was unable to make it work with VBox, so I ended up installing KVM and setting up Cape to run with it. Although I am no longer encountering the same errors as before, I am still having trouble in obtaining results.\r\n\r\n#### Issue\r\n\r\nAfter running Cape for several minutes, I receive the following error message: `ERROR: Machine win10: the guest initialization hit the critical timeout, analysis aborted\r\n`. It appears that the error is occurring in this session of the code (guest.py):\r\n\r\n![image](https://user-images.githubusercontent.com/57421498/231803546-de3ea55a-8481-420d-a802-cfe4ca16d389.png)\r\n\r\nI attempted to debug with Python console to determine whether the connection is happening or not, and apparently it is.\r\n\r\n![image](https://user-images.githubusercontent.com/57421498/231803170-117a072e-5663-4ce5-a9bb-edac3874faaa.png)\r\n\r\nI've run out of ideas on what I could do to solve this.\r\n\r\n---\r\nAnother error is occurring with the database when I attempt to submit an .exe file. Which is strange because this issue does not occur with a .dll file. Sadly, I don't have a clue what's causing this error.\r\n`Error: adding task to database`\nComment: ### Updates\r\n\r\nI have successfully resolved the error with the guest initialization. However, although my code can now process .dll files(I am still unable to submit .exe files), the logs of execution are not being sent to the result server. When I refreshed the result server IP, I received the message: WARNING: ResultServer did not have a task for IP 192.168.122.1.\r\n\r\nWhile debugging, I discovered that this issue is occurring because the code is attempting to retrieve the value of the host's IP address, while the task_id value is stored in the guest IP. I am not sure if this is intentional or not, and I cannot locate where this function is called. I would appreciate any help in resolving this issue.\r\n\r\n![image](https://user-images.githubusercontent.com/57421498/232145743-40d21d40-b4e6-4994-8805-d0e618f4ebd9.png)\r\n![image](https://user-images.githubusercontent.com/57421498/232145829-282ba7cd-e18e-4217-ad5d-d944e7db71ae.png)\r\n\nComment: well it works just fine for us, so you should have something bad in configuration of kvm or vm, not sure",
+  "Title: WIP: initial work on patterns replacement\nBody: None",
+  "Title: Update how sample hashes are associated with extracted configs and display them in the UI.\nBody: If more than one artifact from a detonation has the same config extracted from it, associated the hashes for each of them with the config. This requires the _associated_config_hashes to be stored as a list of dicts instead of a single dict.\r\n\r\nRename associated_config_hashes and associated_analysis_hashes to each have a leading underscore. This makes it easier to identify what is a malware family (no leading underscore) from something that is more like meta data. The alternative would've been to include the hashes inside the family's config dict, but I think it's better to keep that to only the actual config pieces that were extracted.\r\n\r\nUI: For each extracted config, display the sha256 of each artifact it was extracted from. Clicking on it will expand to show the other hashes for the artifact.\r\n\r\nHere's what the UI looks like with the hashes collapsed:\r\n<img width=\"815\" alt=\"collapsed\" src=\"https://user-images.githubusercontent.com/4206917/226948028-747f6a0b-b56b-4714-b4e8-b249901dbb24.png\">\r\nNote that there could be more than one sha256 listed.\r\n\r\nClicking on the sha256 expands it out like this:\r\n<img width=\"1201\" alt=\"expanded\" src=\"https://user-images.githubusercontent.com/4206917/226948037-8e16b5b2-7ed0-49da-91f7-05da21c8739f.png\">\r\n\nComment: thanks, i will merge that to staging at the moment",
+  "Title: Improve msi extraction\nBody: None\nComment: ups, that was closed by accident",
+  "Title: Cookie csrftoken has a Secure flag set in http:// cases too\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n- [x] I'm aware that configs now are in `custom/conf/`\r\n\r\n\r\n# Expected Behavior\r\n\r\nCSRF token flag shouldn't have `Secure` flag set to `True` in all cases (e.g. if CAPE server is run locally via non-HTTPS server instance) via setting `CSRF_COOKIE_SECURE`\r\n\r\n# Current Behavior\r\n\r\nNotice the combination of `http://` in request and `Secure` flag set in the `Set-Cookie` header in response\r\n\r\n```\r\n$ curl -I \"http://10.32.8.169:9000/\"\r\nHTTP/1.1 200 OK\r\n[...]\r\nSet-Cookie:  csrftoken=ug8EKP8FkkUaH34hYa4YpYNujZKqwWdB; [...]; Secure\r\n```\r\n\r\n# Failure Information (for bugs)\r\n\r\n* https://github.com/kevoreilly/CAPEv2/pull/1413 <- introduced the \"bug\"\r\n\r\n* [problematic line](https://github.com/kevoreilly/CAPEv2/blob/f0e496209914c1de4ff2500913fbc560247da37c/web/web/settings.py#L41)\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. clear browser cookies in HTTP CAPE server instance\r\n2. revisit the page (to get fresh cookies)\r\n3. try to submit a sample\r\n4. you'll get something like:\r\n\r\n![image](https://user-images.githubusercontent.com/921555/226876422-b66659ac-cb83-4a55-aa37-12e856a7547a.png)\r\n\r\n\r\n## Context\r\n\r\n`CSRF_COOKIE_SECURE` should not be hardcoded to `True`. There should be an opportunity for the user to set it through the configuration files OR it should be done in some heuristical way (e.g. check if HTTPS instance is running or not)\nComment: @stamparm: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: oh man, i am also running some open-source projects, but this automatic closing of your issues is like too harsh IMHO. i played my best to fill the template\nComment: I reopened it as quickly as I could.\nComment: yep template is not perfect, but it expect whole info as your git commit which is not relevant for your issue, but you know is damn boring to ask each user the same question over and over, we see all issues even closed, we just don't care about those who don't care about at least provide some basic info. in case if you know better solution for those who come and remove whole template, let us know\nComment: commented it there https://github.com/kevoreilly/CAPEv2/commit/448adb4dd96373fe537fa043febfb62061834583 as default is False, so users can enable that on their need \nComment: @doomedraven \r\n\r\n> but it expect whole info as your git commit which is not relevant for your issue\r\n\r\ni believe that i've left a pretty decent info here in this issue, so, not sure why there has to be a further discussion in this matter\r\n\r\n> in case if you know better solution for those who come and remove whole template, let us know\r\n\r\nfor starter, either reduce the template requirements, as right now it looks like over-extended and boring to fill OR you disable/remove the bot. in projects where i participate, if there is a template, and user doesn't fill it, i have a damn good reason to **manually** close it. using over-restrictive trigger-happy bot is not user friendly IMHO\nComment: i just told what is missed from your template and why CI closed it.\nComment: does that commit solve your issue?\nComment: you mean https://github.com/kevoreilly/CAPEv2/commit/448adb4dd96373fe537fa043febfb62061834583? there has been no back-reference to this issue inside the `git commit` message, thus, it is not appearing here (i.e. there is no way to find \"that commit\")\r\n\r\nAFAIK, it should solve the issue, though, I have a feeling that somebody will notice that the `Secure` flag is missing from the `HTTPS` configuration or at least will ask for the configurable `Secure` flag\r\n\r\nanyhow, closing this down\nComment: well is impossible to get everyone happy, any local hardening should be done in local_settings.py that overwrites parent settings.py",
+  "Title: replace config import by self.options\nBody: None",
+  "Title: Fix guacamole version and poetry path for guac-web.service\nBody: Current version 1.4.0 is not available on the remote server anymore, throwing a 404 error and effectively not installing guacamole.\r\nAdditionally add a check for poetry path, since the guac-web.service will not work out of the box\nComment: thanks",
+  "Title: Update suricata processing module to not use the string \"None\".\nBody: Several fields are intended to be ints, so using the string \"None\" in cases where it's a falsey value seems odd.",
+  "Title: Fix DLL export chooser\nBody: None",
+  "Title: Fix name of script used by installer.sh\nBody: None",
+  "Title: bugfix: azure - don't set spot_restore_policy unless using Spot\nBody: Azure machinery is setting the spot_restore_policy setting even when az.spot_instances option is set to false. This causes Azure to return an error and the VM scale set to not be created.\r\n\r\nUpdate az.py to set spot_restore_policy to None if not using spot instances.\nComment: @cccs-kevin can you review please?\nComment: Cheers \ud83d\udc4d",
+  "Title: The signature is triggered even if the path into a whitelist\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [\u2713] I am running the latest version\r\n- [\u2713] I did read the README!\r\n- [\u2713] I checked the documentation and found no answer\r\n- [\u2713] I checked to make sure that this issue has not already been filed\r\n- [\u2713] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [\u2713] I have read and checked all configs (with all optional parts)\r\n- [\u2713] I'm aware that configs now are in `custom/conf/`\r\n\r\n\r\n# Expected Behavior\r\n\r\nI expect that this signature won't be triggered for this path any more.\r\n\r\n# Current Behavior\r\n\r\nThe signature is triggered again even after adding the path to a whitelist, as shown.\r\n\r\n![2](https://user-images.githubusercontent.com/62453654/226205174-41a81367-d268-4483-af40-490c61c5a5a7.JPG)\r\n\r\n![1](https://user-images.githubusercontent.com/62453654/226205176-250989e5-0768-4c6f-bf13-7d2339e87584.JPG)\r\n\nComment: @para0x0dise: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.",
+  "Title: typo\nBody: None",
+  "Title: The signature is triggered even if it's into a whitelist\nBody: When I submit a PDF file to analyse, it triggers a signature called `stealth_file`. I just added the alerted path into the whitelist as shown, but it didn't solve the problem.\r\n\r\nHow to resolve it?\r\n\r\n![2](https://user-images.githubusercontent.com/62453654/226175098-5dba2850-0c55-4662-b620-d1633fab81bc.JPG)\r\n\r\n![1](https://user-images.githubusercontent.com/62453654/226175166-a8a6cc59-1aa8-4ae7-b78f-b25abb83c403.JPG)\r\n\nComment: @para0x0dise: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.",
+  "Title: fix html\nBody: None",
+  "Title: Fix small bug and add valid file type\nBody: None",
+  "Title: Submit page on web isn't working anymore\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ v] I am running the latest version\r\n- [ v] I did read the README!\r\n- [ v] I checked the documentation and found no answer\r\n- [ v] I checked to make sure that this issue has not already been filed\r\n- [v ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ v] I have read and checked all configs (with all optional parts)\r\n- [v ] I'm aware that configs now are in `custom/conf/`\r\n\r\n\r\n# Expected Behavior\r\n\r\nOpen the web submit page to submit a file, url or pcap. The submit.py in utils is working well.\r\n\r\n# Current Behavior\r\n\r\nCape web interface is working except the submit page. \r\n\r\n# Failure Information (for bugs)\r\n\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. step 1\r\n2. step 2\r\n3. you get it...\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 16.04, Windows 10, macOS 10.12.3\r\n\r\n## Failure Logs\r\n\r\n```\r\nMar 14 16:56:42 CAPE-SANDBOX systemd[1]: Started CAPE WSGI app.\r\nMar 14 16:56:45 CAPE-SANDBOX python3[30676]: Traceback (most recent call last):\r\nMar 14 16:56:45 CAPE-SANDBOX python3[30676]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/base.py\", line >\r\nMar 14 16:56:45 CAPE-SANDBOX python3[30676]:     self.dialect.do_execute(\r\nMar 14 16:56:45 CAPE-SANDBOX python3[30676]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/default.py\", li>\r\nMar 14 16:56:45 CAPE-SANDBOX python3[30676]:     cursor.execute(statement, parameters)\r\nMar 14 16:56:45 CAPE-SANDBOX python3[30676]: psycopg2.errors.UniqueViolation: duplicate key value violates unique constraint \"pg_type_typname_nsp_index\"\r\nMar 14 16:56:45 CAPE-SANDBOX python3[30676]: DETAIL:  Key (typname, typnamespace)=(status_type, 2200) already exists.\r\nMar 14 16:56:45 CAPE-SANDBOX python3[30676]: The above exception was the direct cause of the following exception:\r\nMar 14 16:56:45 CAPE-SANDBOX python3[30676]: Traceback (most recent call last):\r\nMar 14 16:56:45 CAPE-SANDBOX python3[30676]:   File \"/opt/CAPEv2/web/../lib/cuckoo/core/database.py\", line 566, in __init__\r\nMar 14 16:56:45 CAPE-SANDBOX python3[30676]:     Base.metadata.create_all(self.engine)\r\nMar 14 16:56:45 CAPE-SANDBOX python3[30676]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/sql/schema.py\", line 4>\r\nMar 14 16:56:45 CAPE-SANDBOX python3[30676]:     bind._run_ddl_visitor(\r\nMar 14 16:56:45 CAPE-SANDBOX python3[30676]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/base.py\", line >\r\nMar 14 16:56:45 CAPE-SANDBOX python3[30676]:     conn._run_ddl_visitor(visitorcallable, element, **kwargs)\r\nMar 14 16:56:45 CAPE-SANDBOX python3[30676]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/base.py\", line >\r\nMar 14 16:56:45 CAPE-SANDBOX python3[30676]:     visitorcallable(self.dialect, self, **kwargs).traverse_single(element)\r\nMar 14 16:56:45 CAPE-SANDBOX python3[30676]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/sql/visitors.py\", line>\r\nMar 14 16:56:45 CAPE-SANDBOX python3[30676]:     return meth(obj, **kw)\r\nMar 14 16:56:45 CAPE-SANDBOX python3[30676]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/sql/ddl.py\", line 833,>\r\nMar 14 16:56:45 CAPE-SANDBOX python3[30676]:     metadata.dispatch.before_create(\r\nMar 14 16:56:45 CAPE-SANDBOX python3[30676]:   File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/event/attr.py\", line 3>\r\n```\r\n\nComment: that is your database error, not CAPE's error\nComment: Which log do i need for the submit page?\nComment: you already see it  in uwsgi, you literally provided 0 info about all your setup, throwing just piece of log is useless\nComment: Hi @MattBlacKK85 , did you solve it?. I have exactly the same problem.\r\n\r\nThank you.\nComment: I also have the same issue. \r\n\r\nPlease find below the error when I submit any sample.\r\n\r\nI had to restore an old backup with a previous Capev2 commit (I don't remember which one). Could it is due to some small change in last commits?\r\n\r\n<img width=\"785\" alt=\"submit-error\" src=\"https://user-images.githubusercontent.com/62158084/229505600-c1176273-b94a-4ec0-97d2-3f181f5548f0.png\">\r\n",
+  "Title: Staging\nBody: None",
+  "Title: syslog and log per task\nBody: None",
+  "Title: VM Not automatically starting once file is sent for analysis\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n- [x] I'm aware that configs now are in `custom/conf/`\r\n\r\n\r\n# Expected Behavior\r\n\r\nAfter uploading a file for analysis (Web interface/CLI), the configured VM will automatically switch on and run the uploaded file. \r\n\r\n# Current Behavior\r\n\r\nAfter uploading a file for analysis, the latest log will just be that the machine has been acquired, but the VM will not open on its own. If left alone, the analysis will fail. However, if the VM is manually started (and logged in), the analysis will proceed as normal.\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Submit file for analysis (Web/CLI)\r\n2. Wait for VM to open after analysis\r\n3. VM does not open and analysis fails\r\n\r\n## Context\r\n\r\nOperating system: Ubuntu 22.04 TLS\r\nFile uploaded: Simple windows executable file\r\nLibvirtd.service is not running, when it is restarted/started, qemu-kvm is not connected. When qemu-kvm is connected, then libvirtd.service stops.\r\n\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | 47e89bc1fbadf29d95fd74bb4531cf5ca6730942\r\n| OS version       | Ubuntu 22.04.2 TLS\r\n| VM OS             | Windows 7\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n2023-03-16 11:20:59,082 [lib.cuckoo.core.scheduler] INFO: Using \"kvm\" machine manager with max_analysis_count=0, max_machines_count=10, and max_vmstartup_count=5\r\n2023-03-16 11:20:59,107 [lib.cuckoo.core.scheduler] INFO: Loaded 1 machine/s\r\n2023-03-16 11:20:59,109 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks\r\n2023-03-16 11:21:28,594 [lib.cuckoo.core.scheduler] INFO: Task #23: File already exists at '/opt/CAPEv2/storage/binaries/b776a6a3603507d6f9bab2956c917acb9da14196d9fca4bdf8d88391bed270b0'\r\n2023-03-16 11:21:28,594 [lib.cuckoo.core.scheduler] INFO: Task #23: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_0qvp1c6h/test1.exe'\r\n2023-03-16 11:21:28,605 [lib.cuckoo.core.scheduler] INFO: Task #23: acquired machine cuckoo1 (label=cuckoo1, arch=x86, platform=windows)\r\n2023-03-16 11:26:34,211 [lib.cuckoo.core.scheduler] ERROR: Timeout hit while for machine cuckoo1 to change status\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 353, in launch_analysis\r\n    machinery.start(self.machine.label)\r\n  File \"/opt/CAPEv2/modules/machinery/kvm.py\", line 28, in start\r\n    super(KVM, self).start(label)\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 437, in start\r\n    self._wait_status(label, self.RUNNING)\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 334, in _wait_status\r\n    raise CuckooMachineError(f\"Timeout hit while for machine {label} to change status\")\r\nlib.cuckoo.common.exceptions.CuckooMachineError: Timeout hit while for machine cuckoo1 to change status\r\nlibvirt: Domain Config error : Requested operation is not valid: domain is not running\r\n2023-03-16 11:26:34,219 [lib.cuckoo.core.scheduler] ERROR: Error dumping memory virtual machine cuckoo1: Requested operation is not valid: domain is not running\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 482, in dump_memory\r\n    self.vms[label].coreDump(path, flags=libvirt.VIR_DUMP_MEMORY_ONLY)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/libvirt.py\", line 1337, in coreDump\r\n    raise libvirtError('virDomainCoreDump() failed')\r\nlibvirt.libvirtError: Requested operation is not valid: domain is not running\nComment:  Requested operation is not valid: domain is not running",
+  "Title: Follow-up on unfinished features (WHOIS enhancement, MISP and Memory snapshot))\nBody: Hi, earlier in the year, my colleague contributed some enhancements to the features mentioned in the title, but they were not finished by the time the project was handed to me. May I know what is needed to be added/changed regarding these features? I will provide the links to the pull requests that he has made for reference.\r\n\r\nWHOIS: https://github.com/kevoreilly/CAPEv2/pull/1351\r\nMISP: https://github.com/kevoreilly/CAPEv2/pull/1349\r\nMemory snapshot: https://github.com/kevoreilly/CAPEv2/pull/1348\r\n\r\nI apologise if this is not the correct channel to ask about this as I am still new to working on open-source projects such as this. Thank you!\nComment: @Dylan818: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: hello, watch those threads and ask your colleague about details, i have answered him in each thread \nComment: Hi, so can I confirm that the improvements needed are as follows? \r\n1) Parsing whois data (dictionary) on server side and not n django\r\n2) Edit HTML code to support that\r\n",
+  "Title: tlsdump can decrypt SSL/TLS traffic?\nBody: Hi, today I was looking at this really interesting feature in the file: `analyzer/windows/modules/auxiliary/tlsdump.py`.\r\nAt the end of the analysis I can download the pcap and log files containing respectively the whole network traffic and the dumped keys. CAPEv2 is able to decrypt the traffic? In this way the suricata signatures will be more effective!\r\n\r\nI also tried to import these two files to wireshark in order to decrypt the traffic. This feature of wireshark [is supported only for TLS <=1.2 versions](https://wiki.wireshark.org/TLS) but also in this legacy communication version I can\u2019t see clear traffic. Maybe not all keys are collected?\r\n_I did a test by analyzing my exe file that contacts (HTTP GET) to this URL: https://tls-v1-2.badssl.com:1012/_\r\n\r\n\r\nP.S. I know I'm not using templates but I don't know if these issues I'm opening are \"bug\" or \"feature request\" or something else... I hope it's not a problem.\r\n\r\nThanks in advance!\r\n\nComment: @federicofantini: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: Yes indeed the tlsdump feature should mean that the encrypted traffic in the pcap gets decrypted and thus seen by suricata - you should therefore see the results of this in the network tab when you run your test exe - is this the case?\nComment: Yes, that would be my use case!\r\nSo I intend to both see the decrypted traffic in the pcap in the network tab and apply suricata to the decrypted traffic to get a better vision.\r\nI thought it was already like this but actually reading the sources I can't find the point where the decryption is done, I only see the `tlsdump.log` file is saved and proposed in the gui.\r\n\r\nAlso, trying to decrypt the traffic manually from wireshark (need to convert the `tlsdump.log` file to the CLIENT_RANDOM supported format by wireshark), I can't see the decrypted traffic for TLSv1.2 connections.\nComment: No I didn't mean \"is this your use case?\" - I meant \"is it the case that your exe produces the expected output in the network tab?\"!\nComment: Nope, the pcap still encrypted and I'm unable to decrypt with wireshark. The tabs in the network tab are:\r\n- Hosts (7)\r\n- DNS (8)\r\n- TCP (18)\r\n- UDP (33)\r\n- HTTP (0)\r\n- SMTP (0)\r\n- IRC (0)\r\n- ICMP (1)\r\n- Suricata Alerts (0)\r\n- Suricata TLS (0)\r\n- Suricata HTTP (0)\r\n- Suricata Files (0) \r\n\r\nAnd my test exe is just a py2exe conversion of this script:\r\n```python\r\nimport requests\r\nimport time\r\n\r\nurls = [\r\n    \"https://www.google.com\",\r\n    \"https://www.apple.com\",\r\n    \"https://www.aruba.it\",\r\n    \"https://www.repubblica.it\",\r\n    \"https://tls-v1-2.badssl.com:1012/\",\r\n    \"https://tls-v1-1.badssl.com:1011/\",\r\n    \"https://tls-v1-0.badssl.com:1010/\"\r\n]\r\n\r\nfor u in urls:\r\n    r = requests.get(u)\r\n    print(r.status_code)\r\n    time.sleep(5)\r\n```\r\n\r\nI was looking at the public instance and I saw that this feature is already present and that it works on win7: https://capesandbox.com/analysis/374610/ (sorry for the misunderstanding).\r\nHowever I have a question: why some traffic is not decrypted on that analysis? I see some TCP communications on port 443.\r\n\nComment: Hi, I went a little bit deeper and I want to update you about this issue.\r\n\r\nThanks to this script https://github.com/lbirchler/tls-decryption I was able to see the decrypted version of the `dump.pcap` file by passing in input `client_random`/`server_random` bytes and the `master_secret key`.\r\nThe decrypted traffic contains stuff about windows noisy telemetry and updates but nothing about my forged requests. I don't understand why this decrypted but noisy traffic, which contains some HTTP requests, is not visible on the Network HTTP(s) tab.\r\n\r\nFuthermore in the `journalctl` of cape-processor I can see this skipped errors:\r\n```\r\n[Task 104] [modules.processing.dumptls] DEBUG: Was unable to extract TLS master secret for server random b'd\\x14\\x9d[g?\\xee(\\xb3\\x92\\xbc\\xd9\\x9a\\xc7*\\xb1\\x81KM\\xb6*\\xf1\\xb1\\xe1\\xd0F\\xb0\\x93\\x9f4+\\x>\r\n[Task 104] [modules.processing.dumptls] DEBUG: Was unable to extract TLS master secret for server random b'd\\x14\\x9d\\\\\\x83=Vw\\xb4\\x91_\\x89@L\\xe8\\xb2e\\x9dCU\\x96\\x83\\xe3\\xcb\\x8f\\xb4\\xc5\\x04+;\\xdaR', >\r\n[Task 104] [modules.processing.dumptls] DEBUG: Was unable to extract TLS master secret for server random b'd\\x14\\x9d]\\xb1\\xef0\\t\\xe7K\\xf2,3\\xa1\\xf15g\\xa1\\xd5\\xa5AQ\\xb6]0\\xccm;W\\x82|\\xed', skipping >\r\n[Task 104] [modules.processing.dumptls] DEBUG: Was unable to extract TLS master secret for server random b'd\\x14\\x9d`H\\x9aT\\x8609\\\\\\x12\\x0c0%?\\x9e\\xa3\\xf6\\xe5\\xeb\\xaeB{\\xd8ua]\\x0b\\x81Q\\xa1', skippi>\r\n[Task 104] [modules.processing.dumptls] DEBUG: Was unable to extract TLS master secret for server random b\"d\\x14\\x9d`\\x8a\\xcb\\x0b\\xbfzL\\x82}\\xe4\\x91N\\n\\x15\\xda\\xd9V\\x98\\x98zaCr\\x85\\xe2\\xb1'\\x16\\xc8>\r\n[Task 104] [modules.processing.dumptls] DEBUG: Was unable to extract TLS master secret for server random b\"d\\x14\\x9d`\\xaf~]`\\xd2\\xd9b\\x13z\\x98\\xdfc\\\\\\x9ay\\xd0\\x90\\x17m\\x8b6\\xb5\\r'\\xa8\\xbb\\xfd\\x93\",>\r\n[Task 104] [modules.processing.dumptls] DEBUG: Was unable to extract TLS master secret for server random b'd\\x14\\x9dhXE\\xd7\\x85\\x83k1\\xb2a~\\x0b\\xf5I\\x94\\xcc\\x89Y\\xce\\x84}\\xde3e\\x9b\\xc5\\xf9\\x8fn', s>\r\n[Task 104] [modules.processing.dumptls] DEBUG: Was unable to extract TLS master secret for server random b'd\\x14\\x9di\\x85\\xf6,f?\\xd7\\xfe\\xb5\\\\Z\\xc3\\x96\\x1e:\\xabW\\xe1\\xe7\\xd1\\xa5?\\xc5/\\x85\\x049\\xb7\\>\r\n[Task 104] [modules.processing.dumptls] DEBUG: Was unable to extract TLS master secret for server random b'd\\x14\\x9diO\\x87\\xe8I \\xc5\\xe1\\xb4\\xe2N8\\xf3^`Vu\\x9a_A\\xfb\\xde\\x1bU9<\\xf9l\\xe6', skipping it\r\n[Task 104] [modules.processing.dumptls] DEBUG: Was unable to extract TLS master secret for server random b'd\\x14\\x9dii\\xb8G\\x99\\xa2S%\\x84\\xacA\\x88\\xbe\\xaa\\x99\\x8f\\\\\\x84\\xc9\\xa2\\x8a\\x8f\\xec\\xae\\x7f;>\r\n[Task 104] [modules.processing.dumptls] DEBUG: Was unable to extract TLS master secret for server random b'd\\x14\\x9d\\x917T(1\\xa1P\\xab\\xe3W\\x88_ZoCOb\\xee\\xe5\\x97\\x0c8\\xc4\\xe8\\\\=\\xee\\xb0\\xdd', skippi>\r\n[Task 104] [modules.processing.dumptls] DEBUG: Was unable to extract TLS master secret for server random b'd\\x14\\x9d\\x92=\\xb3\\xe9*6\\xa3\\x15\\xa9\\x13\\x8ea\\xf01a\\xd2\\x84\\xf4\\xff\\x82x`G\\xe5\\x00Wr\\xac\\x>\r\n[Task 104] [modules.processing.dumptls] DEBUG: Was unable to extract TLS master secret for server random b'd\\x14\\x9d\\x92[\\xba\\xb5\\x87\\x1e\\x17\\xe5\\xe0\\xb7#=\\x18\\x05\\x96L\\xd0)z\\xbf\\x85m\\xe0\\x94\\x97\\x>\r\n[Task 104] [modules.processing.dumptls] DEBUG: Was unable to extract TLS master secret for server random b'd\\x14\\x9d\\x95\\xd6\\xa0g\\xd3U\\x8aM\\xe8\\xa1\\xd3\\xf6\\x94\\xear\\x8fJ\\x1e\\x01\\x9f\\xe0[bF&>t\\xd3\\x>\r\n[Task 104] [modules.processing.dumptls] DEBUG: Was unable to extract TLS master secret for server random b'd\\x14\\x9d\\x9e\\xd6^\\x91\\x1e\\xf8\\x92\\x8a\\x91\\x19\\xc2x\\x92 \\xc8M3(B\\x9a\\x1b\\xf2\\x7f\\xb9\\xbc>w>\r\n[Task 104] [modules.processing.dumptls] DEBUG: Was unable to extract TLS master secret for server random b'd\\x14\\x9d\\x9fwq\\xa8U\\xa3\\x05v\\x13\\x9b6H\\xdaW\\xc7\\xf5L\\xda\\xdf\\xafx\\x8fY\\xf0\\xbc\\xcb\\x82l\\x>\r\n[Task 104] [modules.processing.dumptls] DEBUG: Was unable to extract TLS master secret for server random b'd\\x14\\x9d\\xa2&\\xd2\\xb9i\\xbe\\x97\\x8b\\xe0\\xa0\\xb7\\x92\\xce\\xc1\"\\xecV\\xb0J\\xb9192<\\xbc\\x16\\x80>\r\n[Task 104] [modules.processing.dumptls] DEBUG: Was unable to extract TLS master secret for server random b\"d\\x14\\x9d\\xa2\\x9dt\\x1c\\xb3\\xad\\xf8\\xfc\\xdc\\xd6\\xcb,\\xb8'\\x8d]\\xae|\\xb8\\xec\\xb5 \\xc4\\xef*=v>\r\n```\r\n\r\nI think this analysis https://capesandbox.com/analysis/374610/ may have something like mine for the TCP 443 requests.\nComment: Hi @federicofantini, Can you show me the configuration of INETSIM for CAPE?, i can't find any instructions :(\nComment: @daothinh you need to install inetsim on a dedicated VM inside the libvirt network: https://www.techanarchy.net/installing-and-configuring-inetsim/\r\nWhen the installation is completed insert the IP address of the machine here: https://capev2.readthedocs.io/en/latest/installation/host/routing.html?highlight=inetsim#inetsim-routing\r\n\nComment: > Yes indeed the tlsdump feature should mean that the encrypted traffic in the pcap gets decrypted and thus seen by suricata\r\n\r\n@kevoreilly i'm not sure how this feature works - are there any specific CAPE configuration requirements for this to work? \r\nDoes suricata have to work in socket mode ? Does it work in cli mode as well?\r\nI've looked through the documentation and haven't found anything related to this.\r\n\r\nIn my scenario, i have some HTTPs traffic (that i can see in the CAPE networking tab under HTTP(s) - but does not appear under  Suricata HTTP tab  or Suricata alerts - regardless of the suricata rules that i wrote)\r\n\r\n\r\n\nComment: The HTTP(s) field is straight from the pcap whereas the suricata fields depend on suricata processing the pcap. So it sounds like the capture to pcap and decryption is fine, suricata side is not working.\nComment: Hi @kevoreilly  - appreciate you taking the time to respond.\r\n\r\nI've also added some \"test\" rules for suricata for that pcap - and i see them in the report.\r\nI was not able however to get a suricata signature to trigger on HTTP(s) decrypted traffic. \r\nI saw your reply - and was wondering how is this actually done?\r\n> Yes indeed the tlsdump feature should mean that the encrypted traffic in the pcap gets decrypted and thus seen by suricata\r\nMy understanding is that for a HTTPs request that is normally encrypted in a PCAP - it actually gets decrypted and passed to suricata. i don't understand how to get this working.\r\n\r\ne.g.\r\nalert http $HOME_NET any -> $EXTERNAL_NET any (msg:\"test rule\"; flow:established,from_client; http.method; content:\"GET\"; http.uri; content:\"prof\"; sid:99999997;)\r\nthis will trigger on a HTTP request but not on a HTTPs decrypted request.\r\n\r\nIs there anything i'm missing?\r\nThanks!\nComment: we don't decrypt pcap. we decrypt them for us to show in cape in network data processing, if you need that to be working with suricata, you can write extension for cape to decrypt pcap and save updated pcap, as far as i know you just need to supply certificate, maybe even you can do that with suricata if they support that\nComment: Hi @doomedraven - thanks for the update.\r\nThat sounds more like what i thought it would be.\r\nSuricata does not do any decryption - if you want to run signatures on that traffic - you need to decrypt it beforehand. \r\nSo yeah, probably the decrypt pcap extension sounds the best path for now.\nComment: i know that people has code for that, but they don't share code, i don't need this feature so i don't do it by myself. but if you want to contribute you are more than welcome to implement it\nComment: I will be making a PR for this soon - watch this space.\nComment: > Nope, the pcap still encrypted and I'm unable to decrypt with wireshark. The tabs in the network tab are:\r\n> \r\n> * Hosts (7)\r\n> * DNS (8)\r\n> * TCP (18)\r\n> * UDP (33)\r\n> * HTTP (0)\r\n> * SMTP (0)\r\n> * IRC (0)\r\n> * ICMP (1)\r\n> * Suricata Alerts (0)\r\n> * Suricata TLS (0)\r\n> * Suricata HTTP (0)\r\n> * Suricata Files (0)\r\n> \r\n> And my test exe is just a py2exe conversion of this script:\r\n> \r\n> ```python\r\n> import requests\r\n> import time\r\n> \r\n> urls = [\r\n>     \"https://www.google.com\",\r\n>     \"https://www.apple.com\",\r\n>     \"https://www.aruba.it\",\r\n>     \"https://www.repubblica.it\",\r\n>     \"https://tls-v1-2.badssl.com:1012/\",\r\n>     \"https://tls-v1-1.badssl.com:1011/\",\r\n>     \"https://tls-v1-0.badssl.com:1010/\"\r\n> ]\r\n> \r\n> for u in urls:\r\n>     r = requests.get(u)\r\n>     print(r.status_code)\r\n>     time.sleep(5)\r\n> ```\r\n> \r\n> I was looking at the public instance and I saw that this feature is already present and that it works on win7: https://capesandbox.com/analysis/374610/ (sorry for the misunderstanding). However I have a question: why some traffic is not decrypted on that analysis? I see some TCP communications on port 443.\r\n\r\nHello did you ever get this to work with your setup? I see now that official CAPE doesn't contain any http or https traffic anymore - I hope this is still possible. Is it as simple as taking the tlsdump.log and using that to decrypt the pcap - then just feed that pcap to the mechanism responsible for populating the Network Analysis tab on the UI?\nComment: It works just fine on my private setup, I would think of public cape sandbox as demo version, if you have skills you can do black magic with code ;) \r\n\r\n> El 15 sept 2023, a las 21:47, CarsonHrusovsky ***@***.***> escribi\u00f3:\r\n> \r\n> \r\n> Nope, the pcap still encrypted and I'm unable to decrypt with wireshark. The tabs in the network tab are:\r\n> \r\n> Hosts (7)\r\n> DNS (8)\r\n> TCP (18)\r\n> UDP (33)\r\n> HTTP (0)\r\n> SMTP (0)\r\n> IRC (0)\r\n> ICMP (1)\r\n> Suricata Alerts (0)\r\n> Suricata TLS (0)\r\n> Suricata HTTP (0)\r\n> Suricata Files (0)\r\n> And my test exe is just a py2exe conversion of this script:\r\n> \r\n> import requests\r\n> import time\r\n> \r\n> urls = [\r\n>     \"https://www.google.com\",\r\n>     \"https://www.apple.com\",\r\n>     \"https://www.aruba.it\",\r\n>     \"https://www.repubblica.it\",\r\n>     \"https://tls-v1-2.badssl.com:1012/\",\r\n>     \"https://tls-v1-1.badssl.com:1011/\",\r\n>     \"https://tls-v1-0.badssl.com:1010/\"\r\n> ]\r\n> \r\n> for u in urls:\r\n>     r = requests.get(u)\r\n>     print(r.status_code)\r\n>     time.sleep(5)\r\n> I was looking at the public instance and I saw that this feature is already present and that it works on win7: https://capesandbox.com/analysis/374610/ (sorry for the misunderstanding). However I have a question: why some traffic is not decrypted on that analysis? I see some TCP communications on port 443.\r\n> \r\n> Hello did you ever get this to work with your setup? I see now that official CAPE doesn't contain any http or https traffic anymore - I hope this is still possible. Is it as simple as taking the tlsdump.log and using that to decrypt the pcap - then just feed that pcap to the mechanism responsible for populating the Network Analysis tab on the UI?\r\n> \r\n> \u2014\r\n> Reply to this email directly, view it on GitHub <https://github.com/kevoreilly/CAPEv2/issues/1437#issuecomment-1721761411>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAOFH3Y5XOMGUIANQFF2XB3X2SWFVANCNFSM6AAAAAAV36IAZ4>.\r\n> You are receiving this because you were mentioned.\r\n> \r\n\r\n\nComment: This is still very much a feature, nothing has been removed from 'official' cape!\nComment: Kev is due that VPN is down",
+  "Title: Malware not executing on vm, cape assumes its still running past deadline\nBody: ## This is open source and you are getting __free__ support so be friendly!\r\n\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I did read the README!\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [ ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I have read and checked all configs (with all optional parts)\r\n- [X] I'm aware that configs now are in `custom/conf/`\r\n\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\n# Failure Information (for bugs)\r\n\r\nI have nuked my standalone pc many times to get this to work, I am not sure where I am going wrong..  I am following the guide listed in the README on this repository. I have checked the docs and ran the automated script. \r\n\r\nRunning Ubuntu 22.04 LTS, guest VM win10, when I upload a sample it will \"execute\" as in turn on the vm from the previous snapshot (that is not logged in and will not login) \r\nMonitor is running when I curl I get a response.\r\n\r\n\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Upload sample to cape\r\n2. Watch logs for sample to be uploaded to vm\r\n3. forever stuck in processing/vm dies after 20 minutes\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       |  76b801b9cba4f40bf117efe28f9fbd61d993e085\r\n| OS version       | Ubuntu 22.04, Windows 10,\r\n\r\n## Failure Logs\r\nPlease include any relevant log snippets or files here.\r\n\r\nFrom cuckoo.conf\r\n```\r\n: Task #5: File already exists at '/opt/CAPEv2/storage/binaries/5/36cea9a517889dd607921a87d2bd9ed04b2de4c465f17d52bd1e399aa979da83'\r\n2023-03-15 03:38:49,499 [lib.cuckoo.core.scheduler] INFO: Task #5: File already exists at '/opt/CAPEv2/storage/binaries/36cea9a517889dd607921a87d2bd9ed04b2de4c465f17d52bd1e399aa979da83'\r\n2023-03-15 03:38:49,499 [lib.cuckoo.core.scheduler] INFO: Task #5: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_2wcefdri/36cea9a517889dd60792.exe'\r\n```\r\nFrom process.log\r\n```\r\n[lib.cuckoo.core.plugins] INFO: Logs folder doesn't exist, maybe something with with analyzer folder, any change?\r\n2023-03-15 03:24:46,370 [Task 3] [root] INFO: Reports generation completed\r\n2023-03-15 03:24:46,382 [root] INFO: Reports generation completed\r\n```\r\n\r\nBoth located under `/opt/capev2/`\r\n\r\n\nComment: @kylemc4321: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: Weirdly using vmware on both host and guest setups and following the guide again it now works\nComment: > Weirdly using vmware on both host and guest setups and following the guide again it now works\r\n\r\ndo u can writeup instruction install CAPE with KVM ?\nComment: https://capev2.readthedocs.io/en/latest/installation/index.html\nComment: thank u, i installed ^.^",
+  "Title: Checking for application in `get_path_glob`\nBody: This PR could break analysis. I'm creating it since it is a definite bug fix in `get_path_glob`. Previously, all of the analysis packages that use this method would not check for the application in the path, but rather the first of the PATHS that existed. With this patch at least the method will do what it is supposed to do, but could break multiple analysis packages.\r\n\r\nI currently don't have time to test this, but wanted to bring it everyone's attention :)\r\n\r\nUpdate: I have tested the doc_antivm, ppt, excel, zip, pdf, and archive packages with the get_path_glob and it works correctly.\r\n\r\nUpdate: I have released this PR to my production environments, so it could go to staging\r\n",
+  "Title: Yara audit test\nBody: None",
+  "Title: Update yara-audit.yml\nBody: None",
+  "Title: Update cape2.sh\nBody: fix for broken master branch of yara-python\nComment: thanks",
+  "Title: File trimming - PE, OLE Doc\nBody: None\nComment: about hashes, i guess the best would be register original file as parent and then link the trimmed one so in that case we would keep relation between them\nComment: Reworked this quite a bit. All trimming is done in demux.py since all submissions are passed through it anyway, and we are downloading the original file and linking its details if trim is enabled. Comments or additional improvements are welcome.\nComment: last word is on @kevoreilly , btw removing `sample_parent_id` we lose track of initial binary and will have only trimmed, wouldn't it be good to set sample_parent_id? \nComment: Yes it would. Also I hope to add the doc trimming to the in-vm code. \nComment: We still keep the parent. The only time trim parent will be lost is if the large doc is submitted in a zip that is demux'd. In this case the parent will be the zip(or other archive.) ",
+  "Title: Fix path type\nBody: None",
+  "Title: File trimming\nBody: trim PE and OLE Doc files\r\nFix identify_aux_func - filepath: bytes",
+  "Title: Checking for application in `get_path_glob`\nBody: WARNING: This PR could break analysis. I'm creating it since it is a definite bug fix in `get_path_glob`. Previously, all of the analysis packages that use this method would not check for the application in the path, but rather the first of the `PATHS` that existed. With this patch at least the method will do what it is supposed to do, but could break multiple analysis packages.\r\n\r\nI currently don't have time to test this, but wanted to bring it everyone's attention :)\r\n\r\nUpdate: I have tested the doc_antivm, ppt, excel, zip, pdf, and archive packages with the `get_path_glob` and it works correctly.\r\n\r\nUpdate: I have released this PR to my production environments, so it could go to staging",
+  "Title: Adding the os_version kw to overloaded abstract methods\nBody: Bugfix caused by https://github.com/kevoreilly/CAPEv2/commit/b387b75fe08abc11a9d362a6eaff92fa82f2d683#diff-842d5ac54e999bd860cb253148ca2e72dd9bd1ca3e0d0f570eb05c8a2ed9668e",
+  "Title: socks5man - outdated dependency, unable to add sock5 proxies\nBody: Hi, I'm Federico and I recently started using CAPEv2 sandbox on my laptop. I was looking at the following feature because I would like to try it: https://capev2.readthedocs.io/en/latest/installation/host/routing.html#socks-routing.\r\nUnfortunately the https://github.com/RicoVZ/socks5man/ project supports only outdated python versions:  **Python >=2.7,  <3.0**.\r\nHow can I run it? Should I install and old python version specifically for this task?\r\n\r\nThanks in advance and congratulations for your work!\nComment: @federicofantini: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: https://github.com/CAPESandbox/socks5man\nComment: \u2764\ufe0f \nComment: I completely missed that repo...\r\nThanks a lot guys! \ud83e\udef6",
+  "Title: allow tuples\nBody: https://github.com/kevoreilly/CAPEv2/blob/398f17a64c8f2b4bb62b186f48d21c44f5fa9371/analyzer/linux/dbus_next/signature.py#L232\n\n```python\n\nfrom .validators import is_object_path_valid\nfrom .errors import InvalidSignatureError, SignatureBodyMismatchError\n\nfrom typing import Any, List, Union\n\n\nclass SignatureType:\n    \"\"\"A class that represents a single complete type within a signature.\n\n    This class is not meant to be constructed directly. Use the :class:`SignatureTree`\n    class to parse signatures.\n\n    :ivar ~.signature: The signature of this complete type.\n    :vartype ~.signature: str\n\n    :ivar children: A list of child types if this is a container type. Arrays \\\n    have one child type, dict entries have two child types (key and value), and \\\n    structs have child types equal to the number of struct members.\n    :vartype children: list(:class:`SignatureType`)\n    \"\"\"\n    _tokens = 'ybnqiuxtdsogavh({'\n\n    def __init__(self, token):\n        self.token = token\n        self.children = []\n        self._signature = None\n\n    def __eq__(self, other):\n        if type(other) is SignatureType:\n            return self.signature == other.signature\n        else:\n            return super().__eq__(other)\n\n    def _collapse(self):\n        if self.token not in 'a({':\n            return self.token\n\n        signature = [self.token]\n\n        for child in self.children:\n            signature.append(child._collapse())\n\n        if self.token == '(':\n            signature.append(')')\n        elif self.token == '{':\n            signature.append('}')\n\n        return ''.join(signature)\n\n    @property\n    def signature(self) -> str:\n        if self._signature is not None:\n            return self._signature\n        self._signature = self._collapse()\n        return self._signature\n\n    @staticmethod\n    def _parse_next(signature):\n        if not signature:\n            return (None, '')\n\n        token = signature[0]\n\n        if token not in SignatureType._tokens:\n            raise InvalidSignatureError(f'got unexpected token: \"{token}\"')\n\n        # container types\n        if token == 'a':\n            self = SignatureType('a')\n            (child, signature) = SignatureType._parse_next(signature[1:])\n            if not child:\n                raise InvalidSignatureError('missing type for array')\n            self.children.append(child)\n            return (self, signature)\n        elif token == '(':\n            self = SignatureType('(')\n            signature = signature[1:]\n            while True:\n                (child, signature) = SignatureType._parse_next(signature)\n                if not signature:\n                    raise InvalidSignatureError('missing closing \")\" for struct')\n                self.children.append(child)\n                if signature[0] == ')':\n                    return (self, signature[1:])\n        elif token == '{':\n            self = SignatureType('{')\n            signature = signature[1:]\n            (key_child, signature) = SignatureType._parse_next(signature)\n            if not key_child or len(key_child.children):\n                raise InvalidSignatureError('expected a simple type for dict entry key')\n            self.children.append(key_child)\n            (value_child, signature) = SignatureType._parse_next(signature)\n            if not value_child:\n                raise InvalidSignatureError('expected a value for dict entry')\n            if not signature or signature[0] != '}':\n                raise InvalidSignatureError('missing closing \"}\" for dict entry')\n            self.children.append(value_child)\n            return (self, signature[1:])\n\n        # basic type\n        return (SignatureType(token), signature[1:])\n\n    def _verify_byte(self, body):\n        BYTE_MIN = 0x00\n        BYTE_MAX = 0xff\n        if not isinstance(body, int):\n            raise SignatureBodyMismatchError(\n                f'DBus BYTE type \"y\" must be Python type \"int\", got {type(body)}')\n        if body < BYTE_MIN or body > BYTE_MAX:\n            raise SignatureBodyMismatchError(\n                f'DBus BYTE type must be between {BYTE_MIN} and {BYTE_MAX}')\n\n    def _verify_boolean(self, body):\n        if not isinstance(body, bool):\n            raise SignatureBodyMismatchError(\n                f'DBus BOOLEAN type \"b\" must be Python type \"bool\", got {type(body)}')\n\n    def _verify_int16(self, body):\n        INT16_MIN = -0x7fff - 1\n        INT16_MAX = 0x7fff\n        if not isinstance(body, int):\n            raise SignatureBodyMismatchError(\n                f'DBus INT16 type \"n\" must be Python type \"int\", got {type(body)}')\n        elif body > INT16_MAX or body < INT16_MIN:\n            raise SignatureBodyMismatchError(\n                f'DBus INT16 type \"n\" must be between {INT16_MIN} and {INT16_MAX}')\n\n    def _verify_uint16(self, body):\n        UINT16_MIN = 0\n        UINT16_MAX = 0xffff\n        if not isinstance(body, int):\n            raise SignatureBodyMismatchError(\n                f'DBus UINT16 type \"q\" must be Python type \"int\", got {type(body)}')\n        elif body > UINT16_MAX or body < UINT16_MIN:\n            raise SignatureBodyMismatchError(\n                f'DBus UINT16 type \"q\" must be between {UINT16_MIN} and {UINT16_MAX}')\n\n    def _verify_int32(self, body):\n        INT32_MIN = -0x7fffffff - 1\n        INT32_MAX = 0x7fffffff\n        if not isinstance(body, int):\n            raise SignatureBodyMismatchError(\n                f'DBus INT32 type \"i\" must be Python type \"int\", got {type(body)}')\n        elif body > INT32_MAX or body < INT32_MIN:\n            raise SignatureBodyMismatchError(\n                f'DBus INT32 type \"i\" must be between {INT32_MIN} and {INT32_MAX}')\n\n    def _verify_uint32(self, body):\n        UINT32_MIN = 0\n        UINT32_MAX = 0xffffffff\n        if not isinstance(body, int):\n            raise SignatureBodyMismatchError(\n                f'DBus UINT32 type \"u\" must be Python type \"int\", got {type(body)}')\n        elif body > UINT32_MAX or body < UINT32_MIN:\n            raise SignatureBodyMismatchError(\n                f'DBus UINT32 type \"u\" must be between {UINT32_MIN} and {UINT32_MAX}')\n\n    def _verify_int64(self, body):\n        INT64_MAX = 9223372036854775807\n        INT64_MIN = -INT64_MAX - 1\n        if not isinstance(body, int):\n            raise SignatureBodyMismatchError(\n                f'DBus INT64 type \"x\" must be Python type \"int\", got {type(body)}')\n        elif body > INT64_MAX or body < INT64_MIN:\n            raise SignatureBodyMismatchError(\n                f'DBus INT64 type \"x\" must be between {INT64_MIN} and {INT64_MAX}')\n\n    def _verify_uint64(self, body):\n        UINT64_MIN = 0\n        UINT64_MAX = 18446744073709551615\n        if not isinstance(body, int):\n            raise SignatureBodyMismatchError(\n                f'DBus UINT64 type \"t\" must be Python type \"int\", got {type(body)}')\n        elif body > UINT64_MAX or body < UINT64_MIN:\n            raise SignatureBodyMismatchError(\n                f'DBus UINT64 type \"t\" must be between {UINT64_MIN} and {UINT64_MAX}')\n\n    def _verify_double(self, body):\n        if not isinstance(body, float) and not isinstance(body, int):\n            raise SignatureBodyMismatchError(\n                f'DBus DOUBLE type \"d\" must be Python type \"float\" or \"int\", got {type(body)}')\n\n    def _verify_unix_fd(self, body):\n        try:\n            self._verify_uint32(body)\n        except SignatureBodyMismatchError:\n            raise SignatureBodyMismatchError('DBus UNIX_FD type \"h\" must be a valid UINT32')\n\n    def _verify_object_path(self, body):\n        if not is_object_path_valid(body):\n            raise SignatureBodyMismatchError(\n                'DBus OBJECT_PATH type \"o\" must be a valid object path')\n\n    def _verify_string(self, body):\n        if not isinstance(body, str):\n            raise SignatureBodyMismatchError(\n                f'DBus STRING type \"s\" must be Python type \"str\", got {type(body)}')\n\n    def _verify_signature(self, body):\n        # I guess we could run it through the SignatureTree parser instead\n        if not isinstance(body, str):\n            raise SignatureBodyMismatchError(\n                f'DBus SIGNATURE type \"g\" must be Python type \"str\", got {type(body)}')\n        if len(body.encode()) > 0xff:\n            raise SignatureBodyMismatchError('DBus SIGNATURE type \"g\" must be less than 256 bytes')\n\n    def _verify_array(self, body):\n        child_type = self.children[0]\n\n        if child_type.token == '{':\n            if not isinstance(body, dict):\n                raise SignatureBodyMismatchError(\n                    f'DBus ARRAY type \"a\" with DICT_ENTRY child must be Python type \"dict\", got {type(body)}'\n                )\n            for key, value in body.items():\n                child_type.children[0].verify(key)\n                child_type.children[1].verify(value)\n        elif child_type.token == 'y':\n            if not isinstance(body, bytes):\n                raise SignatureBodyMismatchError(\n                    f'DBus ARRAY type \"a\" with BYTE child must be Python type \"bytes\", got {type(body)}'\n                )\n                # no need to verify children\n        else:\n            if not isinstance(body, list):\n                raise SignatureBodyMismatchError(\n                    f'DBus ARRAY type \"a\" must be Python type \"list\", got {type(body)}')\n            for member in body:\n                child_type.verify(member)\n\n    def _verify_struct(self, body):\n        # TODO allow tuples\n        if not isinstance(body, list):\n            raise SignatureBodyMismatchError(\n                f'DBus STRUCT type \"(\" must be Python type \"list\", got {type(body)}')\n\n        if len(body) != len(self.children):\n            raise SignatureBodyMismatchError(\n                'DBus STRUCT type \"(\" must have Python list members equal to the number of struct type members'\n            )\n\n        for i, member in enumerate(body):\n            self.children[i].verify(member)\n\n    def _verify_variant(self, body):\n        # a variant signature and value is valid by construction\n        if not isinstance(body, Variant):\n            raise SignatureBodyMismatchError(\n                f'DBus VARIANT type \"v\" must be Python type \"Variant\", got {type(body)}')\n\n    def verify(self, body: Any) -> bool:\n        \"\"\"Verify that the body matches this type.\n\n        :returns: True if the body matches this type.\n        :raises:\n            :class:`SignatureBodyMismatchError` if the body does not match this type.\n        \"\"\"\n        if body is None:\n            raise SignatureBodyMismatchError('Cannot serialize Python type \"None\"')\n        elif self.token == 'y':\n            self._verify_byte(body)\n        elif self.token == 'b':\n            self._verify_boolean(body)\n        elif self.token == 'n':\n            self._verify_int16(body)\n        elif self.token == 'q':\n            self._verify_uint16(body)\n        elif self.token == 'i':\n            self._verify_int32(body)\n        elif self.token == 'u':\n            self._verify_uint32(body)\n        elif self.token == 'x':\n            self._verify_int64(body)\n        elif self.token == 't':\n            self._verify_uint64(body)\n        elif self.token == 'd':\n            self._verify_double(body)\n        elif self.token == 'h':\n            self._verify_unix_fd(body)\n        elif self.token == 'o':\n            self._verify_object_path(body)\n        elif self.token == 's':\n            self._verify_string(body)\n        elif self.token == 'g':\n            self._verify_signature(body)\n        elif self.token == 'a':\n            self._verify_array(body)\n        elif self.token == '(':\n            self._verify_struct(body)\n        elif self.token == 'v':\n            self._verify_variant(body)\n        else:\n            raise Exception(f'cannot verify type with token {self.token}')\n\n        return True\n\n\nclass SignatureTree:\n    \"\"\"A class that represents a signature as a tree structure for conveniently\n    working with DBus signatures.\n\n    This class will not normally be used directly by the user.\n\n    :ivar types: A list of parsed complete types.\n    :vartype types: list(:class:`SignatureType`)\n\n    :ivar ~.signature: The signature of this signature tree.\n    :vartype ~.signature: str\n\n    :raises:\n        :class:`InvalidSignatureError` if the given signature is not valid.\n    \"\"\"\n\n    _cache = {}\n\n    @staticmethod\n    def _get(signature: str = ''):\n        if signature in SignatureTree._cache:\n            return SignatureTree._cache[signature]\n        SignatureTree._cache[signature] = SignatureTree(signature)\n        return SignatureTree._cache[signature]\n\n    def __init__(self, signature: str = ''):\n        self.signature = signature\n\n        self.types = []\n\n        if len(signature) > 0xff:\n            raise InvalidSignatureError('A signature must be less than 256 characters')\n\n        while signature:\n            (type_, signature) = SignatureType._parse_next(signature)\n            self.types.append(type_)\n\n    def __eq__(self, other):\n        if type(other) is SignatureTree:\n            return self.signature == other.signature\n        else:\n            return super().__eq__(other)\n\n    def verify(self, body: List[Any]):\n        \"\"\"Verifies that the give body matches this signature tree\n\n        :param body: the body to verify for this tree\n        :type body: list(Any)\n\n        :returns: True if the signature matches the body or an exception if not.\n\n        :raises:\n            :class:`SignatureBodyMismatchError` if the signature does not match the body.\n        \"\"\"\n        if not isinstance(body, list):\n            raise SignatureBodyMismatchError(f'The body must be a list (got {type(body)})')\n        if len(body) != len(self.types):\n            raise SignatureBodyMismatchError(\n                f'The body has the wrong number of types (got {len(body)}, expected {len(self.types)})'\n            )\n        for i, type_ in enumerate(self.types):\n            type_.verify(body[i])\n\n        return True\n\n\nclass Variant:\n    \"\"\"A class to represent a DBus variant (type \"v\").\n\n    This class is used in message bodies to represent variants. The user can\n    expect a value in the body with type \"v\" to use this class and can\n    construct this class directly for use in message bodies sent over the bus.\n\n    :ivar signature: The signature for this variant. Must be a single complete type.\n    :vartype signature: str\n\n    :ivar signature_type: The parsed signature of this variant.\n    :vartype signature_type: :class:`SignatureType`\n\n    :ivar value: The value of this variant. Must correspond to the signature.\n    :vartype value: Any\n\n    :raises:\n        :class:`InvalidSignatureError` if the signature is not valid.\n        :class:`SignatureBodyMismatchError` if the signature does not match the body.\n    \"\"\"\n    def __init__(self, signature: Union[str, SignatureTree, SignatureType], value: Any):\n        signature_str = ''\n        signature_tree = None\n        signature_type = None\n\n        if type(signature) is SignatureTree:\n            signature_tree = signature\n        elif type(signature) is SignatureType:\n            signature_type = signature\n            signature_str = signature.signature\n        elif type(signature) is str:\n            signature_tree = SignatureTree._get(signature)\n        else:\n            raise TypeError('signature must be a SignatureTree, SignatureType, or a string')\n\n        if signature_tree:\n            if len(signature_tree.types) != 1:\n                raise ValueError('variants must have a signature for a single complete type')\n            signature_str = signature_tree.signature\n            signature_type = signature_tree.types[0]\n\n        signature_type.verify(value)\n\n        self.type = signature_type\n        self.signature = signature_str\n        self.value = value\n\n    def __eq__(self, other):\n        if type(other) is Variant:\n            return self.signature == other.signature and self.value == other.value\n        else:\n            return super().__eq__(other)\n\n    def __repr__(self):\n        return \"<dbus_next.signature.Variant ('%s', %s)>\" % (self.type.signature, self.value)\n\n```",
+  "Title: cannot be overridden by a dbus member\nBody: large. We could optimize this by only copying what we change\n\nhere.\n\nhttps://github.com/kevoreilly/CAPEv2/blob/398f17a64c8f2b4bb62b186f48d21c44f5fa9371/analyzer/linux/dbus_next/service.py#L318\n\n```python\n\nfrom .constants import PropertyAccess\nfrom .signature import SignatureTree, SignatureBodyMismatchError, Variant\nfrom . import introspection as intr\nfrom .errors import SignalDisabledError\nfrom ._private.util import signature_contains_type, replace_fds_with_idx, replace_idx_with_fds, parse_annotation\n\nfrom functools import wraps\nimport inspect\nfrom typing import no_type_check_decorator, Dict, List, Any\nimport copy\nimport asyncio\n\n\nclass _Method:\n    def __init__(self, fn, name, disabled=False):\n        in_signature = ''\n        out_signature = ''\n\n        inspection = inspect.signature(fn)\n\n        in_args = []\n        for i, param in enumerate(inspection.parameters.values()):\n            if i == 0:\n                # first is self\n                continue\n            annotation = parse_annotation(param.annotation)\n            if not annotation:\n                raise ValueError(\n                    'method parameters must specify the dbus type string as an annotation')\n            in_args.append(intr.Arg(annotation, intr.ArgDirection.IN, param.name))\n            in_signature += annotation\n\n        out_args = []\n        out_signature = parse_annotation(inspection.return_annotation)\n        if out_signature:\n            for type_ in SignatureTree._get(out_signature).types:\n                out_args.append(intr.Arg(type_, intr.ArgDirection.OUT))\n\n        self.name = name\n        self.fn = fn\n        self.disabled = disabled\n        self.introspection = intr.Method(name, in_args, out_args)\n        self.in_signature = in_signature\n        self.out_signature = out_signature\n        self.in_signature_tree = SignatureTree._get(in_signature)\n        self.out_signature_tree = SignatureTree._get(out_signature)\n\n\ndef method(name: str = None, disabled: bool = False):\n    \"\"\"A decorator to mark a class method of a :class:`ServiceInterface` to be a DBus service method.\n\n    The parameters and return value must each be annotated with a signature\n    string of a single complete DBus type.\n\n    This class method will be called when a client calls the method on the DBus\n    interface. The parameters given to the function come from the calling\n    client and will conform to the dbus-next type system. The parameters\n    returned will be returned to the calling client and must conform to the\n    dbus-next type system. If multiple parameters are returned, they must be\n    contained within a :class:`list`.\n\n    The decorated method may raise a :class:`DBusError <dbus_next.DBusError>`\n    to return an error to the client.\n\n    :param name: The member name that DBus clients will use to call this method. Defaults to the name of the class method.\n    :type name: str\n    :param disabled: If set to true, the method will not be visible to clients.\n    :type disabled: bool\n\n    :example:\n\n    ::\n\n        @method()\n        def echo(self, val: 's') -> 's':\n            return val\n\n        @method()\n        def echo_two(self, val1: 's', val2: 'u') -> 'su':\n            return [val1, val2]\n    \"\"\"\n    if name is not None and type(name) is not str:\n        raise TypeError('name must be a string')\n    if type(disabled) is not bool:\n        raise TypeError('disabled must be a bool')\n\n    @no_type_check_decorator\n    def decorator(fn):\n        @wraps(fn)\n        def wrapped(*args, **kwargs):\n            fn(*args, **kwargs)\n\n        fn_name = name if name else fn.__name__\n        wrapped.__dict__['__DBUS_METHOD'] = _Method(fn, fn_name, disabled=disabled)\n\n        return wrapped\n\n    return decorator\n\n\nclass _Signal:\n    def __init__(self, fn, name, disabled=False):\n        inspection = inspect.signature(fn)\n\n        args = []\n        signature = ''\n        signature_tree = None\n\n        return_annotation = parse_annotation(inspection.return_annotation)\n\n        if return_annotation:\n            signature = return_annotation\n            signature_tree = SignatureTree._get(signature)\n            for type_ in signature_tree.types:\n                args.append(intr.Arg(type_, intr.ArgDirection.OUT))\n        else:\n            signature = ''\n            signature_tree = SignatureTree._get('')\n\n        self.signature = signature\n        self.signature_tree = signature_tree\n        self.name = name\n        self.disabled = disabled\n        self.introspection = intr.Signal(self.name, args)\n\n\ndef signal(name: str = None, disabled: bool = False):\n    \"\"\"A decorator to mark a class method of a :class:`ServiceInterface` to be a DBus signal.\n\n    The signal is broadcast on the bus when the decorated class method is\n    called by the user.\n\n    If the signal has an out argument, the class method must have a return type\n    annotation with a signature string of a single complete DBus type and the\n    return value of the class method must conform to the dbus-next type system.\n    If the signal has multiple out arguments, they must be returned within a\n    ``list``.\n\n    :param name: The member name that will be used for this signal. Defaults to\n        the name of the class method.\n    :type name: str\n    :param disabled: If set to true, the signal will not be visible to clients.\n    :type disabled: bool\n\n    :example:\n\n    ::\n\n        @signal()\n        def string_signal(self, val) -> 's':\n            return val\n\n        @signal()\n        def two_strings_signal(self, val1, val2) -> 'ss':\n            return [val1, val2]\n    \"\"\"\n    if name is not None and type(name) is not str:\n        raise TypeError('name must be a string')\n    if type(disabled) is not bool:\n        raise TypeError('disabled must be a bool')\n\n    @no_type_check_decorator\n    def decorator(fn):\n        fn_name = name if name else fn.__name__\n        signal = _Signal(fn, fn_name, disabled)\n\n        @wraps(fn)\n        def wrapped(self, *args, **kwargs):\n            if signal.disabled:\n                raise SignalDisabledError('Tried to call a disabled signal')\n            result = fn(self, *args, **kwargs)\n            ServiceInterface._handle_signal(self, signal, result)\n            return result\n\n        wrapped.__dict__['__DBUS_SIGNAL'] = signal\n\n        return wrapped\n\n    return decorator\n\n\nclass _Property(property):\n    def set_options(self, options):\n        self.options = getattr(self, 'options', {})\n        for k, v in options.items():\n            self.options[k] = v\n\n        if 'name' in options and options['name'] is not None:\n            self.name = options['name']\n        else:\n            self.name = self.prop_getter.__name__\n\n        if 'access' in options:\n            self.access = PropertyAccess(options['access'])\n        else:\n            self.access = PropertyAccess.READWRITE\n\n        if 'disabled' in options:\n            self.disabled = options['disabled']\n        else:\n            self.disabled = False\n\n        self.introspection = intr.Property(self.name, self.signature, self.access)\n\n        self.__dict__['__DBUS_PROPERTY'] = True\n\n    def __init__(self, fn, *args, **kwargs):\n        self.prop_getter = fn\n        self.prop_setter = None\n\n        inspection = inspect.signature(fn)\n        if len(inspection.parameters) != 1:\n            raise ValueError('the property must only have the \"self\" input parameter')\n\n        return_annotation = parse_annotation(inspection.return_annotation)\n\n        if not return_annotation:\n            raise ValueError(\n                'the property must specify the dbus type string as a return annotation string')\n\n        self.signature = return_annotation\n        tree = SignatureTree._get(return_annotation)\n\n        if len(tree.types) != 1:\n            raise ValueError('the property signature must be a single complete type')\n\n        self.type = tree.types[0]\n\n        if 'options' in kwargs:\n            options = kwargs['options']\n            self.set_options(options)\n            del kwargs['options']\n\n        super().__init__(fn, *args, **kwargs)\n\n    def setter(self, fn, **kwargs):\n        # XXX The setter decorator seems to be recreating the class in the list\n        # of class members and clobbering the options so we need to reset them.\n        # Why does it do that?\n        result = super().setter(fn, **kwargs)\n        result.prop_setter = fn\n        result.set_options(self.options)\n        return result\n\n\ndef dbus_property(access: PropertyAccess = PropertyAccess.READWRITE,\n                  name: str = None,\n                  disabled: bool = False):\n    \"\"\"A decorator to mark a class method of a :class:`ServiceInterface` to be a DBus property.\n\n    The class method must be a Python getter method with a return annotation\n    that is a signature string of a single complete DBus type. When a client\n    gets the property through the ``org.freedesktop.DBus.Properties``\n    interface, the getter will be called and the resulting value will be\n    returned to the client.\n\n    If the property is writable, it must have a setter method that takes a\n    single parameter that is annotated with the same signature. When a client\n    sets the property through the ``org.freedesktop.DBus.Properties``\n    interface, the setter will be called with the value from the calling\n    client.\n\n    The parameters of the getter and the setter must conform to the dbus-next\n    type system. The getter or the setter may raise a :class:`DBusError\n    <dbus_next.DBusError>` to return an error to the client.\n\n    :param name: The name that DBus clients will use to interact with this\n        property on the bus.\n    :type name: str\n    :param disabled: If set to true, the property will not be visible to\n        clients.\n    :type disabled: bool\n\n    :example:\n\n    ::\n\n        @dbus_property()\n        def string_prop(self) -> 's':\n            return self._string_prop\n\n        @string_prop.setter\n        def string_prop(self, val: 's'):\n            self._string_prop = val\n    \"\"\"\n    if type(access) is not PropertyAccess:\n        raise TypeError('access must be a PropertyAccess class')\n    if name is not None and type(name) is not str:\n        raise TypeError('name must be a string')\n    if type(disabled) is not bool:\n        raise TypeError('disabled must be a bool')\n\n    @no_type_check_decorator\n    def decorator(fn):\n        options = {'name': name, 'access': access, 'disabled': disabled}\n        return _Property(fn, options=options)\n\n    return decorator\n\n\nclass ServiceInterface:\n    \"\"\"An abstract class that can be extended by the user to define DBus services.\n\n    Instances of :class:`ServiceInterface` can be exported on a path of the bus\n    with the :class:`export <dbus_next.message_bus.BaseMessageBus.export>`\n    method of a :class:`MessageBus <dbus_next.message_bus.BaseMessageBus>`.\n\n    Use the :func:`@method <dbus_next.service.method>`, :func:`@dbus_property\n    <dbus_next.service.dbus_property>`, and :func:`@signal\n    <dbus_next.service.signal>` decorators to mark class methods as DBus\n    methods, properties, and signals respectively.\n\n    :ivar name: The name of this interface as it appears to clients. Must be a\n        valid interface name.\n    :vartype name: str\n    \"\"\"\n    def __init__(self, name: str):\n        # TODO cannot be overridden by a dbus member\n        self.name = name\n        self.__methods = []\n        self.__properties = []\n        self.__signals = []\n        self.__buses = set()\n\n        for name, member in inspect.getmembers(type(self)):\n            member_dict = getattr(member, '__dict__', {})\n            if type(member) is _Property:\n                # XXX The getter and the setter may show up as different\n                # members if they have different names. But if they have the\n                # same name, they will be the same member. So we try to merge\n                # them together here. I wish we could make this cleaner.\n                found = False\n                for prop in self.__properties:\n                    if prop.prop_getter is member.prop_getter:\n                        found = True\n                        if member.prop_setter is not None:\n                            prop.prop_setter = member.prop_setter\n\n                if not found:\n                    self.__properties.append(member)\n            elif '__DBUS_METHOD' in member_dict:\n                method = member_dict['__DBUS_METHOD']\n                assert type(method) is _Method\n                self.__methods.append(method)\n            elif '__DBUS_SIGNAL' in member_dict:\n                signal = member_dict['__DBUS_SIGNAL']\n                assert type(signal) is _Signal\n                self.__signals.append(signal)\n\n        # validate that writable properties have a setter\n        for prop in self.__properties:\n            if prop.access.writable() and prop.prop_setter is None:\n                raise ValueError(f'property \"{prop.name}\" is writable but does not have a setter')\n\n    def emit_properties_changed(self,\n                                changed_properties: Dict[str, Any],\n                                invalidated_properties: List[str] = []):\n        \"\"\"Emit the ``org.freedesktop.DBus.Properties.PropertiesChanged`` signal.\n\n        This signal is intended to be used to alert clients when a property of\n        the interface has changed.\n\n        :param changed_properties: The keys must be the names of properties exposed by this bus. The values must be valid for the signature of those properties.\n        :type changed_properties: dict(str, Any)\n        :param invalidated_properties: A list of names of properties that are now invalid (presumably for clients who cache the value).\n        :type invalidated_properties: list(str)\n        \"\"\"\n        # TODO cannot be overridden by a dbus member\n        variant_dict = {}\n\n        for prop in ServiceInterface._get_properties(self):\n            if prop.name in changed_properties:\n                variant_dict[prop.name] = Variant(prop.signature, changed_properties[prop.name])\n\n        body = [self.name, variant_dict, invalidated_properties]\n        for bus in ServiceInterface._get_buses(self):\n            bus._interface_signal_notify(self, 'org.freedesktop.DBus.Properties',\n                                         'PropertiesChanged', 'sa{sv}as', body)\n\n    def introspect(self) -> intr.Interface:\n        \"\"\"Get introspection information for this interface.\n\n        This might be useful for creating clients for the interface or examining the introspection output of an interface.\n\n        :returns: The introspection data for the interface.\n        :rtype: :class:`dbus_next.introspection.Interface`\n        \"\"\"\n        # TODO cannot be overridden by a dbus member\n        return intr.Interface(self.name,\n                              methods=[\n                                  method.introspection\n                                  for method in ServiceInterface._get_methods(self)\n                                  if not method.disabled\n                              ],\n                              signals=[\n                                  signal.introspection\n                                  for signal in ServiceInterface._get_signals(self)\n                                  if not signal.disabled\n                              ],\n                              properties=[\n                                  prop.introspection\n                                  for prop in ServiceInterface._get_properties(self)\n                                  if not prop.disabled\n                              ])\n\n    @staticmethod\n    def _get_properties(interface):\n        return interface.__properties\n\n    @staticmethod\n    def _get_methods(interface):\n        return interface.__methods\n\n    @staticmethod\n    def _get_signals(interface):\n        return interface.__signals\n\n    @staticmethod\n    def _get_buses(interface):\n        return interface.__buses\n\n    @staticmethod\n    def _add_bus(interface, bus):\n        interface.__buses.add(bus)\n\n    @staticmethod\n    def _remove_bus(interface, bus):\n        interface.__buses.remove(bus)\n\n    @staticmethod\n    def _msg_body_to_args(msg):\n        if signature_contains_type(msg.signature_tree, msg.body, 'h'):\n            # XXX: This deep copy could be expensive if messages are very\n            # large. We could optimize this by only copying what we change\n            # here.\n            return replace_idx_with_fds(msg.signature_tree, copy.deepcopy(msg.body), msg.unix_fds)\n        else:\n            return msg.body\n\n    @staticmethod\n    def _fn_result_to_body(result, signature_tree):\n        '''The high level interfaces may return single values which may be\n        wrapped in a list to be a message body. Also they may return fds\n        directly for type 'h' which need to be put into an external list.'''\n        out_len = len(signature_tree.types)\n        if result is None:\n            result = []\n        else:\n            if out_len == 1:\n                result = [result]\n            else:\n                if type(result) is not list:\n                    raise SignatureBodyMismatchError(\n                        'Expected signal to return a list of arguments')\n\n        if out_len != len(result):\n            raise SignatureBodyMismatchError(\n                f\"Signature and function return mismatch, expected {len(signature_tree.types)} arguments but got {len(result)}\"\n            )\n\n        return replace_fds_with_idx(signature_tree, result)\n\n    @staticmethod\n    def _handle_signal(interface, signal, result):\n        body, fds = ServiceInterface._fn_result_to_body(result, signal.signature_tree)\n        for bus in ServiceInterface._get_buses(interface):\n            bus._interface_signal_notify(interface, interface.name, signal.name, signal.signature,\n                                         body, fds)\n\n    @staticmethod\n    def _get_property_value(interface, prop, callback):\n        # XXX MUST CHECK TYPE RETURNED BY GETTER\n        try:\n            if asyncio.iscoroutinefunction(prop.prop_getter):\n                task = asyncio.ensure_future(prop.prop_getter(interface))\n\n                def get_property_callback(task):\n                    try:\n                        result = task.result()\n                    except Exception as e:\n                        callback(interface, prop, None, e)\n                        return\n\n                    callback(interface, prop, result, None)\n\n                task.add_done_callback(get_property_callback)\n                return\n\n            callback(interface, prop, getattr(interface, prop.prop_getter.__name__), None)\n        except Exception as e:\n            callback(interface, prop, None, e)\n\n    @staticmethod\n    def _set_property_value(interface, prop, value, callback):\n        # XXX MUST CHECK TYPE TO SET\n        try:\n            if asyncio.iscoroutinefunction(prop.prop_setter):\n                task = asyncio.ensure_future(prop.prop_setter(interface, value))\n\n                def set_property_callback(task):\n                    try:\n                        task.result()\n                    except Exception as e:\n                        callback(interface, prop, e)\n                        return\n\n                    callback(interface, prop, None)\n\n                task.add_done_callback(set_property_callback)\n                return\n\n            setattr(interface, prop.prop_setter.__name__, value)\n            callback(interface, prop, None)\n        except Exception as e:\n            callback(interface, prop, e)\n\n    @staticmethod\n    def _get_all_property_values(interface, callback, user_data=None):\n        result = {}\n        result_error = None\n\n        for prop in ServiceInterface._get_properties(interface):\n            if prop.disabled or not prop.access.readable():\n                continue\n            result[prop.name] = None\n\n        if not result:\n            callback(interface, result, user_data, None)\n            return\n\n        def get_property_callback(interface, prop, value, e):\n            nonlocal result_error\n            if e is not None:\n                result_error = e\n                del result[prop.name]\n            else:\n                try:\n                    result[prop.name] = Variant(prop.signature, value)\n                except SignatureBodyMismatchError as e:\n                    result_error = e\n                    del result[prop.name]\n\n            if any(v is None for v in result.values()):\n                return\n\n            callback(interface, result, user_data, result_error)\n\n        for prop in ServiceInterface._get_properties(interface):\n            if prop.disabled or not prop.access.readable():\n                continue\n            ServiceInterface._get_property_value(interface, prop, get_property_callback)\n\n```",
+  "Title: cannot be overridden by a dbus member\nBody: https://github.com/kevoreilly/CAPEv2/blob/398f17a64c8f2b4bb62b186f48d21c44f5fa9371/analyzer/linux/dbus_next/service.py#L318\n\n```python\n\nfrom .constants import PropertyAccess\nfrom .signature import SignatureTree, SignatureBodyMismatchError, Variant\nfrom . import introspection as intr\nfrom .errors import SignalDisabledError\nfrom ._private.util import signature_contains_type, replace_fds_with_idx, replace_idx_with_fds, parse_annotation\n\nfrom functools import wraps\nimport inspect\nfrom typing import no_type_check_decorator, Dict, List, Any\nimport copy\nimport asyncio\n\n\nclass _Method:\n    def __init__(self, fn, name, disabled=False):\n        in_signature = ''\n        out_signature = ''\n\n        inspection = inspect.signature(fn)\n\n        in_args = []\n        for i, param in enumerate(inspection.parameters.values()):\n            if i == 0:\n                # first is self\n                continue\n            annotation = parse_annotation(param.annotation)\n            if not annotation:\n                raise ValueError(\n                    'method parameters must specify the dbus type string as an annotation')\n            in_args.append(intr.Arg(annotation, intr.ArgDirection.IN, param.name))\n            in_signature += annotation\n\n        out_args = []\n        out_signature = parse_annotation(inspection.return_annotation)\n        if out_signature:\n            for type_ in SignatureTree._get(out_signature).types:\n                out_args.append(intr.Arg(type_, intr.ArgDirection.OUT))\n\n        self.name = name\n        self.fn = fn\n        self.disabled = disabled\n        self.introspection = intr.Method(name, in_args, out_args)\n        self.in_signature = in_signature\n        self.out_signature = out_signature\n        self.in_signature_tree = SignatureTree._get(in_signature)\n        self.out_signature_tree = SignatureTree._get(out_signature)\n\n\ndef method(name: str = None, disabled: bool = False):\n    \"\"\"A decorator to mark a class method of a :class:`ServiceInterface` to be a DBus service method.\n\n    The parameters and return value must each be annotated with a signature\n    string of a single complete DBus type.\n\n    This class method will be called when a client calls the method on the DBus\n    interface. The parameters given to the function come from the calling\n    client and will conform to the dbus-next type system. The parameters\n    returned will be returned to the calling client and must conform to the\n    dbus-next type system. If multiple parameters are returned, they must be\n    contained within a :class:`list`.\n\n    The decorated method may raise a :class:`DBusError <dbus_next.DBusError>`\n    to return an error to the client.\n\n    :param name: The member name that DBus clients will use to call this method. Defaults to the name of the class method.\n    :type name: str\n    :param disabled: If set to true, the method will not be visible to clients.\n    :type disabled: bool\n\n    :example:\n\n    ::\n\n        @method()\n        def echo(self, val: 's') -> 's':\n            return val\n\n        @method()\n        def echo_two(self, val1: 's', val2: 'u') -> 'su':\n            return [val1, val2]\n    \"\"\"\n    if name is not None and type(name) is not str:\n        raise TypeError('name must be a string')\n    if type(disabled) is not bool:\n        raise TypeError('disabled must be a bool')\n\n    @no_type_check_decorator\n    def decorator(fn):\n        @wraps(fn)\n        def wrapped(*args, **kwargs):\n            fn(*args, **kwargs)\n\n        fn_name = name if name else fn.__name__\n        wrapped.__dict__['__DBUS_METHOD'] = _Method(fn, fn_name, disabled=disabled)\n\n        return wrapped\n\n    return decorator\n\n\nclass _Signal:\n    def __init__(self, fn, name, disabled=False):\n        inspection = inspect.signature(fn)\n\n        args = []\n        signature = ''\n        signature_tree = None\n\n        return_annotation = parse_annotation(inspection.return_annotation)\n\n        if return_annotation:\n            signature = return_annotation\n            signature_tree = SignatureTree._get(signature)\n            for type_ in signature_tree.types:\n                args.append(intr.Arg(type_, intr.ArgDirection.OUT))\n        else:\n            signature = ''\n            signature_tree = SignatureTree._get('')\n\n        self.signature = signature\n        self.signature_tree = signature_tree\n        self.name = name\n        self.disabled = disabled\n        self.introspection = intr.Signal(self.name, args)\n\n\ndef signal(name: str = None, disabled: bool = False):\n    \"\"\"A decorator to mark a class method of a :class:`ServiceInterface` to be a DBus signal.\n\n    The signal is broadcast on the bus when the decorated class method is\n    called by the user.\n\n    If the signal has an out argument, the class method must have a return type\n    annotation with a signature string of a single complete DBus type and the\n    return value of the class method must conform to the dbus-next type system.\n    If the signal has multiple out arguments, they must be returned within a\n    ``list``.\n\n    :param name: The member name that will be used for this signal. Defaults to\n        the name of the class method.\n    :type name: str\n    :param disabled: If set to true, the signal will not be visible to clients.\n    :type disabled: bool\n\n    :example:\n\n    ::\n\n        @signal()\n        def string_signal(self, val) -> 's':\n            return val\n\n        @signal()\n        def two_strings_signal(self, val1, val2) -> 'ss':\n            return [val1, val2]\n    \"\"\"\n    if name is not None and type(name) is not str:\n        raise TypeError('name must be a string')\n    if type(disabled) is not bool:\n        raise TypeError('disabled must be a bool')\n\n    @no_type_check_decorator\n    def decorator(fn):\n        fn_name = name if name else fn.__name__\n        signal = _Signal(fn, fn_name, disabled)\n\n        @wraps(fn)\n        def wrapped(self, *args, **kwargs):\n            if signal.disabled:\n                raise SignalDisabledError('Tried to call a disabled signal')\n            result = fn(self, *args, **kwargs)\n            ServiceInterface._handle_signal(self, signal, result)\n            return result\n\n        wrapped.__dict__['__DBUS_SIGNAL'] = signal\n\n        return wrapped\n\n    return decorator\n\n\nclass _Property(property):\n    def set_options(self, options):\n        self.options = getattr(self, 'options', {})\n        for k, v in options.items():\n            self.options[k] = v\n\n        if 'name' in options and options['name'] is not None:\n            self.name = options['name']\n        else:\n            self.name = self.prop_getter.__name__\n\n        if 'access' in options:\n            self.access = PropertyAccess(options['access'])\n        else:\n            self.access = PropertyAccess.READWRITE\n\n        if 'disabled' in options:\n            self.disabled = options['disabled']\n        else:\n            self.disabled = False\n\n        self.introspection = intr.Property(self.name, self.signature, self.access)\n\n        self.__dict__['__DBUS_PROPERTY'] = True\n\n    def __init__(self, fn, *args, **kwargs):\n        self.prop_getter = fn\n        self.prop_setter = None\n\n        inspection = inspect.signature(fn)\n        if len(inspection.parameters) != 1:\n            raise ValueError('the property must only have the \"self\" input parameter')\n\n        return_annotation = parse_annotation(inspection.return_annotation)\n\n        if not return_annotation:\n            raise ValueError(\n                'the property must specify the dbus type string as a return annotation string')\n\n        self.signature = return_annotation\n        tree = SignatureTree._get(return_annotation)\n\n        if len(tree.types) != 1:\n            raise ValueError('the property signature must be a single complete type')\n\n        self.type = tree.types[0]\n\n        if 'options' in kwargs:\n            options = kwargs['options']\n            self.set_options(options)\n            del kwargs['options']\n\n        super().__init__(fn, *args, **kwargs)\n\n    def setter(self, fn, **kwargs):\n        # XXX The setter decorator seems to be recreating the class in the list\n        # of class members and clobbering the options so we need to reset them.\n        # Why does it do that?\n        result = super().setter(fn, **kwargs)\n        result.prop_setter = fn\n        result.set_options(self.options)\n        return result\n\n\ndef dbus_property(access: PropertyAccess = PropertyAccess.READWRITE,\n                  name: str = None,\n                  disabled: bool = False):\n    \"\"\"A decorator to mark a class method of a :class:`ServiceInterface` to be a DBus property.\n\n    The class method must be a Python getter method with a return annotation\n    that is a signature string of a single complete DBus type. When a client\n    gets the property through the ``org.freedesktop.DBus.Properties``\n    interface, the getter will be called and the resulting value will be\n    returned to the client.\n\n    If the property is writable, it must have a setter method that takes a\n    single parameter that is annotated with the same signature. When a client\n    sets the property through the ``org.freedesktop.DBus.Properties``\n    interface, the setter will be called with the value from the calling\n    client.\n\n    The parameters of the getter and the setter must conform to the dbus-next\n    type system. The getter or the setter may raise a :class:`DBusError\n    <dbus_next.DBusError>` to return an error to the client.\n\n    :param name: The name that DBus clients will use to interact with this\n        property on the bus.\n    :type name: str\n    :param disabled: If set to true, the property will not be visible to\n        clients.\n    :type disabled: bool\n\n    :example:\n\n    ::\n\n        @dbus_property()\n        def string_prop(self) -> 's':\n            return self._string_prop\n\n        @string_prop.setter\n        def string_prop(self, val: 's'):\n            self._string_prop = val\n    \"\"\"\n    if type(access) is not PropertyAccess:\n        raise TypeError('access must be a PropertyAccess class')\n    if name is not None and type(name) is not str:\n        raise TypeError('name must be a string')\n    if type(disabled) is not bool:\n        raise TypeError('disabled must be a bool')\n\n    @no_type_check_decorator\n    def decorator(fn):\n        options = {'name': name, 'access': access, 'disabled': disabled}\n        return _Property(fn, options=options)\n\n    return decorator\n\n\nclass ServiceInterface:\n    \"\"\"An abstract class that can be extended by the user to define DBus services.\n\n    Instances of :class:`ServiceInterface` can be exported on a path of the bus\n    with the :class:`export <dbus_next.message_bus.BaseMessageBus.export>`\n    method of a :class:`MessageBus <dbus_next.message_bus.BaseMessageBus>`.\n\n    Use the :func:`@method <dbus_next.service.method>`, :func:`@dbus_property\n    <dbus_next.service.dbus_property>`, and :func:`@signal\n    <dbus_next.service.signal>` decorators to mark class methods as DBus\n    methods, properties, and signals respectively.\n\n    :ivar name: The name of this interface as it appears to clients. Must be a\n        valid interface name.\n    :vartype name: str\n    \"\"\"\n    def __init__(self, name: str):\n        # TODO cannot be overridden by a dbus member\n        self.name = name\n        self.__methods = []\n        self.__properties = []\n        self.__signals = []\n        self.__buses = set()\n\n        for name, member in inspect.getmembers(type(self)):\n            member_dict = getattr(member, '__dict__', {})\n            if type(member) is _Property:\n                # XXX The getter and the setter may show up as different\n                # members if they have different names. But if they have the\n                # same name, they will be the same member. So we try to merge\n                # them together here. I wish we could make this cleaner.\n                found = False\n                for prop in self.__properties:\n                    if prop.prop_getter is member.prop_getter:\n                        found = True\n                        if member.prop_setter is not None:\n                            prop.prop_setter = member.prop_setter\n\n                if not found:\n                    self.__properties.append(member)\n            elif '__DBUS_METHOD' in member_dict:\n                method = member_dict['__DBUS_METHOD']\n                assert type(method) is _Method\n                self.__methods.append(method)\n            elif '__DBUS_SIGNAL' in member_dict:\n                signal = member_dict['__DBUS_SIGNAL']\n                assert type(signal) is _Signal\n                self.__signals.append(signal)\n\n        # validate that writable properties have a setter\n        for prop in self.__properties:\n            if prop.access.writable() and prop.prop_setter is None:\n                raise ValueError(f'property \"{prop.name}\" is writable but does not have a setter')\n\n    def emit_properties_changed(self,\n                                changed_properties: Dict[str, Any],\n                                invalidated_properties: List[str] = []):\n        \"\"\"Emit the ``org.freedesktop.DBus.Properties.PropertiesChanged`` signal.\n\n        This signal is intended to be used to alert clients when a property of\n        the interface has changed.\n\n        :param changed_properties: The keys must be the names of properties exposed by this bus. The values must be valid for the signature of those properties.\n        :type changed_properties: dict(str, Any)\n        :param invalidated_properties: A list of names of properties that are now invalid (presumably for clients who cache the value).\n        :type invalidated_properties: list(str)\n        \"\"\"\n        # TODO cannot be overridden by a dbus member\n        variant_dict = {}\n\n        for prop in ServiceInterface._get_properties(self):\n            if prop.name in changed_properties:\n                variant_dict[prop.name] = Variant(prop.signature, changed_properties[prop.name])\n\n        body = [self.name, variant_dict, invalidated_properties]\n        for bus in ServiceInterface._get_buses(self):\n            bus._interface_signal_notify(self, 'org.freedesktop.DBus.Properties',\n                                         'PropertiesChanged', 'sa{sv}as', body)\n\n    def introspect(self) -> intr.Interface:\n        \"\"\"Get introspection information for this interface.\n\n        This might be useful for creating clients for the interface or examining the introspection output of an interface.\n\n        :returns: The introspection data for the interface.\n        :rtype: :class:`dbus_next.introspection.Interface`\n        \"\"\"\n        # TODO cannot be overridden by a dbus member\n        return intr.Interface(self.name,\n                              methods=[\n                                  method.introspection\n                                  for method in ServiceInterface._get_methods(self)\n                                  if not method.disabled\n                              ],\n                              signals=[\n                                  signal.introspection\n                                  for signal in ServiceInterface._get_signals(self)\n                                  if not signal.disabled\n                              ],\n                              properties=[\n                                  prop.introspection\n                                  for prop in ServiceInterface._get_properties(self)\n                                  if not prop.disabled\n                              ])\n\n    @staticmethod\n    def _get_properties(interface):\n        return interface.__properties\n\n    @staticmethod\n    def _get_methods(interface):\n        return interface.__methods\n\n    @staticmethod\n    def _get_signals(interface):\n        return interface.__signals\n\n    @staticmethod\n    def _get_buses(interface):\n        return interface.__buses\n\n    @staticmethod\n    def _add_bus(interface, bus):\n        interface.__buses.add(bus)\n\n    @staticmethod\n    def _remove_bus(interface, bus):\n        interface.__buses.remove(bus)\n\n    @staticmethod\n    def _msg_body_to_args(msg):\n        if signature_contains_type(msg.signature_tree, msg.body, 'h'):\n            # XXX: This deep copy could be expensive if messages are very\n            # large. We could optimize this by only copying what we change\n            # here.\n            return replace_idx_with_fds(msg.signature_tree, copy.deepcopy(msg.body), msg.unix_fds)\n        else:\n            return msg.body\n\n    @staticmethod\n    def _fn_result_to_body(result, signature_tree):\n        '''The high level interfaces may return single values which may be\n        wrapped in a list to be a message body. Also they may return fds\n        directly for type 'h' which need to be put into an external list.'''\n        out_len = len(signature_tree.types)\n        if result is None:\n            result = []\n        else:\n            if out_len == 1:\n                result = [result]\n            else:\n                if type(result) is not list:\n                    raise SignatureBodyMismatchError(\n                        'Expected signal to return a list of arguments')\n\n        if out_len != len(result):\n            raise SignatureBodyMismatchError(\n                f\"Signature and function return mismatch, expected {len(signature_tree.types)} arguments but got {len(result)}\"\n            )\n\n        return replace_fds_with_idx(signature_tree, result)\n\n    @staticmethod\n    def _handle_signal(interface, signal, result):\n        body, fds = ServiceInterface._fn_result_to_body(result, signal.signature_tree)\n        for bus in ServiceInterface._get_buses(interface):\n            bus._interface_signal_notify(interface, interface.name, signal.name, signal.signature,\n                                         body, fds)\n\n    @staticmethod\n    def _get_property_value(interface, prop, callback):\n        # XXX MUST CHECK TYPE RETURNED BY GETTER\n        try:\n            if asyncio.iscoroutinefunction(prop.prop_getter):\n                task = asyncio.ensure_future(prop.prop_getter(interface))\n\n                def get_property_callback(task):\n                    try:\n                        result = task.result()\n                    except Exception as e:\n                        callback(interface, prop, None, e)\n                        return\n\n                    callback(interface, prop, result, None)\n\n                task.add_done_callback(get_property_callback)\n                return\n\n            callback(interface, prop, getattr(interface, prop.prop_getter.__name__), None)\n        except Exception as e:\n            callback(interface, prop, None, e)\n\n    @staticmethod\n    def _set_property_value(interface, prop, value, callback):\n        # XXX MUST CHECK TYPE TO SET\n        try:\n            if asyncio.iscoroutinefunction(prop.prop_setter):\n                task = asyncio.ensure_future(prop.prop_setter(interface, value))\n\n                def set_property_callback(task):\n                    try:\n                        task.result()\n                    except Exception as e:\n                        callback(interface, prop, e)\n                        return\n\n                    callback(interface, prop, None)\n\n                task.add_done_callback(set_property_callback)\n                return\n\n            setattr(interface, prop.prop_setter.__name__, value)\n            callback(interface, prop, None)\n        except Exception as e:\n            callback(interface, prop, e)\n\n    @staticmethod\n    def _get_all_property_values(interface, callback, user_data=None):\n        result = {}\n        result_error = None\n\n        for prop in ServiceInterface._get_properties(interface):\n            if prop.disabled or not prop.access.readable():\n                continue\n            result[prop.name] = None\n\n        if not result:\n            callback(interface, result, user_data, None)\n            return\n\n        def get_property_callback(interface, prop, value, e):\n            nonlocal result_error\n            if e is not None:\n                result_error = e\n                del result[prop.name]\n            else:\n                try:\n                    result[prop.name] = Variant(prop.signature, value)\n                except SignatureBodyMismatchError as e:\n                    result_error = e\n                    del result[prop.name]\n\n            if any(v is None for v in result.values()):\n                return\n\n            callback(interface, result, user_data, result_error)\n\n        for prop in ServiceInterface._get_properties(interface):\n            if prop.disabled or not prop.access.readable():\n                continue\n            ServiceInterface._get_property_value(interface, prop, get_property_callback)\n\n```",
+  "Title: cannot be overridden by a dbus member\nBody: members if they have different names. But if they have the\n\nsame name, they will be the same member. So we try to merge\n\nthem together here. I wish we could make this cleaner.\n\nhttps://github.com/kevoreilly/CAPEv2/blob/398f17a64c8f2b4bb62b186f48d21c44f5fa9371/analyzer/linux/dbus_next/service.py#L318\n\n```python\n\nfrom .constants import PropertyAccess\nfrom .signature import SignatureTree, SignatureBodyMismatchError, Variant\nfrom . import introspection as intr\nfrom .errors import SignalDisabledError\nfrom ._private.util import signature_contains_type, replace_fds_with_idx, replace_idx_with_fds, parse_annotation\n\nfrom functools import wraps\nimport inspect\nfrom typing import no_type_check_decorator, Dict, List, Any\nimport copy\nimport asyncio\n\n\nclass _Method:\n    def __init__(self, fn, name, disabled=False):\n        in_signature = ''\n        out_signature = ''\n\n        inspection = inspect.signature(fn)\n\n        in_args = []\n        for i, param in enumerate(inspection.parameters.values()):\n            if i == 0:\n                # first is self\n                continue\n            annotation = parse_annotation(param.annotation)\n            if not annotation:\n                raise ValueError(\n                    'method parameters must specify the dbus type string as an annotation')\n            in_args.append(intr.Arg(annotation, intr.ArgDirection.IN, param.name))\n            in_signature += annotation\n\n        out_args = []\n        out_signature = parse_annotation(inspection.return_annotation)\n        if out_signature:\n            for type_ in SignatureTree._get(out_signature).types:\n                out_args.append(intr.Arg(type_, intr.ArgDirection.OUT))\n\n        self.name = name\n        self.fn = fn\n        self.disabled = disabled\n        self.introspection = intr.Method(name, in_args, out_args)\n        self.in_signature = in_signature\n        self.out_signature = out_signature\n        self.in_signature_tree = SignatureTree._get(in_signature)\n        self.out_signature_tree = SignatureTree._get(out_signature)\n\n\ndef method(name: str = None, disabled: bool = False):\n    \"\"\"A decorator to mark a class method of a :class:`ServiceInterface` to be a DBus service method.\n\n    The parameters and return value must each be annotated with a signature\n    string of a single complete DBus type.\n\n    This class method will be called when a client calls the method on the DBus\n    interface. The parameters given to the function come from the calling\n    client and will conform to the dbus-next type system. The parameters\n    returned will be returned to the calling client and must conform to the\n    dbus-next type system. If multiple parameters are returned, they must be\n    contained within a :class:`list`.\n\n    The decorated method may raise a :class:`DBusError <dbus_next.DBusError>`\n    to return an error to the client.\n\n    :param name: The member name that DBus clients will use to call this method. Defaults to the name of the class method.\n    :type name: str\n    :param disabled: If set to true, the method will not be visible to clients.\n    :type disabled: bool\n\n    :example:\n\n    ::\n\n        @method()\n        def echo(self, val: 's') -> 's':\n            return val\n\n        @method()\n        def echo_two(self, val1: 's', val2: 'u') -> 'su':\n            return [val1, val2]\n    \"\"\"\n    if name is not None and type(name) is not str:\n        raise TypeError('name must be a string')\n    if type(disabled) is not bool:\n        raise TypeError('disabled must be a bool')\n\n    @no_type_check_decorator\n    def decorator(fn):\n        @wraps(fn)\n        def wrapped(*args, **kwargs):\n            fn(*args, **kwargs)\n\n        fn_name = name if name else fn.__name__\n        wrapped.__dict__['__DBUS_METHOD'] = _Method(fn, fn_name, disabled=disabled)\n\n        return wrapped\n\n    return decorator\n\n\nclass _Signal:\n    def __init__(self, fn, name, disabled=False):\n        inspection = inspect.signature(fn)\n\n        args = []\n        signature = ''\n        signature_tree = None\n\n        return_annotation = parse_annotation(inspection.return_annotation)\n\n        if return_annotation:\n            signature = return_annotation\n            signature_tree = SignatureTree._get(signature)\n            for type_ in signature_tree.types:\n                args.append(intr.Arg(type_, intr.ArgDirection.OUT))\n        else:\n            signature = ''\n            signature_tree = SignatureTree._get('')\n\n        self.signature = signature\n        self.signature_tree = signature_tree\n        self.name = name\n        self.disabled = disabled\n        self.introspection = intr.Signal(self.name, args)\n\n\ndef signal(name: str = None, disabled: bool = False):\n    \"\"\"A decorator to mark a class method of a :class:`ServiceInterface` to be a DBus signal.\n\n    The signal is broadcast on the bus when the decorated class method is\n    called by the user.\n\n    If the signal has an out argument, the class method must have a return type\n    annotation with a signature string of a single complete DBus type and the\n    return value of the class method must conform to the dbus-next type system.\n    If the signal has multiple out arguments, they must be returned within a\n    ``list``.\n\n    :param name: The member name that will be used for this signal. Defaults to\n        the name of the class method.\n    :type name: str\n    :param disabled: If set to true, the signal will not be visible to clients.\n    :type disabled: bool\n\n    :example:\n\n    ::\n\n        @signal()\n        def string_signal(self, val) -> 's':\n            return val\n\n        @signal()\n        def two_strings_signal(self, val1, val2) -> 'ss':\n            return [val1, val2]\n    \"\"\"\n    if name is not None and type(name) is not str:\n        raise TypeError('name must be a string')\n    if type(disabled) is not bool:\n        raise TypeError('disabled must be a bool')\n\n    @no_type_check_decorator\n    def decorator(fn):\n        fn_name = name if name else fn.__name__\n        signal = _Signal(fn, fn_name, disabled)\n\n        @wraps(fn)\n        def wrapped(self, *args, **kwargs):\n            if signal.disabled:\n                raise SignalDisabledError('Tried to call a disabled signal')\n            result = fn(self, *args, **kwargs)\n            ServiceInterface._handle_signal(self, signal, result)\n            return result\n\n        wrapped.__dict__['__DBUS_SIGNAL'] = signal\n\n        return wrapped\n\n    return decorator\n\n\nclass _Property(property):\n    def set_options(self, options):\n        self.options = getattr(self, 'options', {})\n        for k, v in options.items():\n            self.options[k] = v\n\n        if 'name' in options and options['name'] is not None:\n            self.name = options['name']\n        else:\n            self.name = self.prop_getter.__name__\n\n        if 'access' in options:\n            self.access = PropertyAccess(options['access'])\n        else:\n            self.access = PropertyAccess.READWRITE\n\n        if 'disabled' in options:\n            self.disabled = options['disabled']\n        else:\n            self.disabled = False\n\n        self.introspection = intr.Property(self.name, self.signature, self.access)\n\n        self.__dict__['__DBUS_PROPERTY'] = True\n\n    def __init__(self, fn, *args, **kwargs):\n        self.prop_getter = fn\n        self.prop_setter = None\n\n        inspection = inspect.signature(fn)\n        if len(inspection.parameters) != 1:\n            raise ValueError('the property must only have the \"self\" input parameter')\n\n        return_annotation = parse_annotation(inspection.return_annotation)\n\n        if not return_annotation:\n            raise ValueError(\n                'the property must specify the dbus type string as a return annotation string')\n\n        self.signature = return_annotation\n        tree = SignatureTree._get(return_annotation)\n\n        if len(tree.types) != 1:\n            raise ValueError('the property signature must be a single complete type')\n\n        self.type = tree.types[0]\n\n        if 'options' in kwargs:\n            options = kwargs['options']\n            self.set_options(options)\n            del kwargs['options']\n\n        super().__init__(fn, *args, **kwargs)\n\n    def setter(self, fn, **kwargs):\n        # XXX The setter decorator seems to be recreating the class in the list\n        # of class members and clobbering the options so we need to reset them.\n        # Why does it do that?\n        result = super().setter(fn, **kwargs)\n        result.prop_setter = fn\n        result.set_options(self.options)\n        return result\n\n\ndef dbus_property(access: PropertyAccess = PropertyAccess.READWRITE,\n                  name: str = None,\n                  disabled: bool = False):\n    \"\"\"A decorator to mark a class method of a :class:`ServiceInterface` to be a DBus property.\n\n    The class method must be a Python getter method with a return annotation\n    that is a signature string of a single complete DBus type. When a client\n    gets the property through the ``org.freedesktop.DBus.Properties``\n    interface, the getter will be called and the resulting value will be\n    returned to the client.\n\n    If the property is writable, it must have a setter method that takes a\n    single parameter that is annotated with the same signature. When a client\n    sets the property through the ``org.freedesktop.DBus.Properties``\n    interface, the setter will be called with the value from the calling\n    client.\n\n    The parameters of the getter and the setter must conform to the dbus-next\n    type system. The getter or the setter may raise a :class:`DBusError\n    <dbus_next.DBusError>` to return an error to the client.\n\n    :param name: The name that DBus clients will use to interact with this\n        property on the bus.\n    :type name: str\n    :param disabled: If set to true, the property will not be visible to\n        clients.\n    :type disabled: bool\n\n    :example:\n\n    ::\n\n        @dbus_property()\n        def string_prop(self) -> 's':\n            return self._string_prop\n\n        @string_prop.setter\n        def string_prop(self, val: 's'):\n            self._string_prop = val\n    \"\"\"\n    if type(access) is not PropertyAccess:\n        raise TypeError('access must be a PropertyAccess class')\n    if name is not None and type(name) is not str:\n        raise TypeError('name must be a string')\n    if type(disabled) is not bool:\n        raise TypeError('disabled must be a bool')\n\n    @no_type_check_decorator\n    def decorator(fn):\n        options = {'name': name, 'access': access, 'disabled': disabled}\n        return _Property(fn, options=options)\n\n    return decorator\n\n\nclass ServiceInterface:\n    \"\"\"An abstract class that can be extended by the user to define DBus services.\n\n    Instances of :class:`ServiceInterface` can be exported on a path of the bus\n    with the :class:`export <dbus_next.message_bus.BaseMessageBus.export>`\n    method of a :class:`MessageBus <dbus_next.message_bus.BaseMessageBus>`.\n\n    Use the :func:`@method <dbus_next.service.method>`, :func:`@dbus_property\n    <dbus_next.service.dbus_property>`, and :func:`@signal\n    <dbus_next.service.signal>` decorators to mark class methods as DBus\n    methods, properties, and signals respectively.\n\n    :ivar name: The name of this interface as it appears to clients. Must be a\n        valid interface name.\n    :vartype name: str\n    \"\"\"\n    def __init__(self, name: str):\n        # TODO cannot be overridden by a dbus member\n        self.name = name\n        self.__methods = []\n        self.__properties = []\n        self.__signals = []\n        self.__buses = set()\n\n        for name, member in inspect.getmembers(type(self)):\n            member_dict = getattr(member, '__dict__', {})\n            if type(member) is _Property:\n                # XXX The getter and the setter may show up as different\n                # members if they have different names. But if they have the\n                # same name, they will be the same member. So we try to merge\n                # them together here. I wish we could make this cleaner.\n                found = False\n                for prop in self.__properties:\n                    if prop.prop_getter is member.prop_getter:\n                        found = True\n                        if member.prop_setter is not None:\n                            prop.prop_setter = member.prop_setter\n\n                if not found:\n                    self.__properties.append(member)\n            elif '__DBUS_METHOD' in member_dict:\n                method = member_dict['__DBUS_METHOD']\n                assert type(method) is _Method\n                self.__methods.append(method)\n            elif '__DBUS_SIGNAL' in member_dict:\n                signal = member_dict['__DBUS_SIGNAL']\n                assert type(signal) is _Signal\n                self.__signals.append(signal)\n\n        # validate that writable properties have a setter\n        for prop in self.__properties:\n            if prop.access.writable() and prop.prop_setter is None:\n                raise ValueError(f'property \"{prop.name}\" is writable but does not have a setter')\n\n    def emit_properties_changed(self,\n                                changed_properties: Dict[str, Any],\n                                invalidated_properties: List[str] = []):\n        \"\"\"Emit the ``org.freedesktop.DBus.Properties.PropertiesChanged`` signal.\n\n        This signal is intended to be used to alert clients when a property of\n        the interface has changed.\n\n        :param changed_properties: The keys must be the names of properties exposed by this bus. The values must be valid for the signature of those properties.\n        :type changed_properties: dict(str, Any)\n        :param invalidated_properties: A list of names of properties that are now invalid (presumably for clients who cache the value).\n        :type invalidated_properties: list(str)\n        \"\"\"\n        # TODO cannot be overridden by a dbus member\n        variant_dict = {}\n\n        for prop in ServiceInterface._get_properties(self):\n            if prop.name in changed_properties:\n                variant_dict[prop.name] = Variant(prop.signature, changed_properties[prop.name])\n\n        body = [self.name, variant_dict, invalidated_properties]\n        for bus in ServiceInterface._get_buses(self):\n            bus._interface_signal_notify(self, 'org.freedesktop.DBus.Properties',\n                                         'PropertiesChanged', 'sa{sv}as', body)\n\n    def introspect(self) -> intr.Interface:\n        \"\"\"Get introspection information for this interface.\n\n        This might be useful for creating clients for the interface or examining the introspection output of an interface.\n\n        :returns: The introspection data for the interface.\n        :rtype: :class:`dbus_next.introspection.Interface`\n        \"\"\"\n        # TODO cannot be overridden by a dbus member\n        return intr.Interface(self.name,\n                              methods=[\n                                  method.introspection\n                                  for method in ServiceInterface._get_methods(self)\n                                  if not method.disabled\n                              ],\n                              signals=[\n                                  signal.introspection\n                                  for signal in ServiceInterface._get_signals(self)\n                                  if not signal.disabled\n                              ],\n                              properties=[\n                                  prop.introspection\n                                  for prop in ServiceInterface._get_properties(self)\n                                  if not prop.disabled\n                              ])\n\n    @staticmethod\n    def _get_properties(interface):\n        return interface.__properties\n\n    @staticmethod\n    def _get_methods(interface):\n        return interface.__methods\n\n    @staticmethod\n    def _get_signals(interface):\n        return interface.__signals\n\n    @staticmethod\n    def _get_buses(interface):\n        return interface.__buses\n\n    @staticmethod\n    def _add_bus(interface, bus):\n        interface.__buses.add(bus)\n\n    @staticmethod\n    def _remove_bus(interface, bus):\n        interface.__buses.remove(bus)\n\n    @staticmethod\n    def _msg_body_to_args(msg):\n        if signature_contains_type(msg.signature_tree, msg.body, 'h'):\n            # XXX: This deep copy could be expensive if messages are very\n            # large. We could optimize this by only copying what we change\n            # here.\n            return replace_idx_with_fds(msg.signature_tree, copy.deepcopy(msg.body), msg.unix_fds)\n        else:\n            return msg.body\n\n    @staticmethod\n    def _fn_result_to_body(result, signature_tree):\n        '''The high level interfaces may return single values which may be\n        wrapped in a list to be a message body. Also they may return fds\n        directly for type 'h' which need to be put into an external list.'''\n        out_len = len(signature_tree.types)\n        if result is None:\n            result = []\n        else:\n            if out_len == 1:\n                result = [result]\n            else:\n                if type(result) is not list:\n                    raise SignatureBodyMismatchError(\n                        'Expected signal to return a list of arguments')\n\n        if out_len != len(result):\n            raise SignatureBodyMismatchError(\n                f\"Signature and function return mismatch, expected {len(signature_tree.types)} arguments but got {len(result)}\"\n            )\n\n        return replace_fds_with_idx(signature_tree, result)\n\n    @staticmethod\n    def _handle_signal(interface, signal, result):\n        body, fds = ServiceInterface._fn_result_to_body(result, signal.signature_tree)\n        for bus in ServiceInterface._get_buses(interface):\n            bus._interface_signal_notify(interface, interface.name, signal.name, signal.signature,\n                                         body, fds)\n\n    @staticmethod\n    def _get_property_value(interface, prop, callback):\n        # XXX MUST CHECK TYPE RETURNED BY GETTER\n        try:\n            if asyncio.iscoroutinefunction(prop.prop_getter):\n                task = asyncio.ensure_future(prop.prop_getter(interface))\n\n                def get_property_callback(task):\n                    try:\n                        result = task.result()\n                    except Exception as e:\n                        callback(interface, prop, None, e)\n                        return\n\n                    callback(interface, prop, result, None)\n\n                task.add_done_callback(get_property_callback)\n                return\n\n            callback(interface, prop, getattr(interface, prop.prop_getter.__name__), None)\n        except Exception as e:\n            callback(interface, prop, None, e)\n\n    @staticmethod\n    def _set_property_value(interface, prop, value, callback):\n        # XXX MUST CHECK TYPE TO SET\n        try:\n            if asyncio.iscoroutinefunction(prop.prop_setter):\n                task = asyncio.ensure_future(prop.prop_setter(interface, value))\n\n                def set_property_callback(task):\n                    try:\n                        task.result()\n                    except Exception as e:\n                        callback(interface, prop, e)\n                        return\n\n                    callback(interface, prop, None)\n\n                task.add_done_callback(set_property_callback)\n                return\n\n            setattr(interface, prop.prop_setter.__name__, value)\n            callback(interface, prop, None)\n        except Exception as e:\n            callback(interface, prop, e)\n\n    @staticmethod\n    def _get_all_property_values(interface, callback, user_data=None):\n        result = {}\n        result_error = None\n\n        for prop in ServiceInterface._get_properties(interface):\n            if prop.disabled or not prop.access.readable():\n                continue\n            result[prop.name] = None\n\n        if not result:\n            callback(interface, result, user_data, None)\n            return\n\n        def get_property_callback(interface, prop, value, e):\n            nonlocal result_error\n            if e is not None:\n                result_error = e\n                del result[prop.name]\n            else:\n                try:\n                    result[prop.name] = Variant(prop.signature, value)\n                except SignatureBodyMismatchError as e:\n                    result_error = e\n                    del result[prop.name]\n\n            if any(v is None for v in result.values()):\n                return\n\n            callback(interface, result, user_data, result_error)\n\n        for prop in ServiceInterface._get_properties(interface):\n            if prop.disabled or not prop.access.readable():\n                continue\n            ServiceInterface._get_property_value(interface, prop, get_property_callback)\n\n```",
+  "Title: maximum message size is 134217728 (128 MiB)\nBody: https://github.com/kevoreilly/CAPEv2/blob/398f17a64c8f2b4bb62b186f48d21c44f5fa9371/analyzer/linux/dbus_next/message.py#L214\n\n```python\n\nfrom ._private.marshaller import Marshaller\nfrom .constants import MessageType, MessageFlag, ErrorType\nfrom ._private.constants import PROTOCOL_VERSION, HeaderField, LITTLE_ENDIAN\nfrom .validators import assert_bus_name_valid, assert_member_name_valid, assert_object_path_valid, assert_interface_name_valid\nfrom .errors import InvalidMessageError\nfrom .signature import SignatureTree, Variant\n\nfrom typing import List, Any\n\n\nclass Message:\n    \"\"\"A class for sending and receiving messages through the\n    :class:`MessageBus <dbus_next.message_bus.BaseMessageBus>` with the\n    low-level api.\n\n    A ``Message`` can be constructed by the user to send over the message bus.\n    When messages are received, such as from method calls or signal emissions,\n    they will use this class as well.\n\n    :ivar destination: The address of the client for which this message is intended.\n    :vartype destination: str\n    :ivar path: The intended object path exported on the destination bus.\n    :vartype path: str\n    :ivar interface: The intended interface on the object path.\n    :vartype interface: str\n    :ivar member: The intended member on the interface.\n    :vartype member: str\n    :ivar message_type: The type of this message. A method call, signal, method return, or error.\n    :vartype message_type: :class:`MessageType`\n    :ivar flags: Flags that affect the behavior of this message.\n    :vartype flags: :class:`MessageFlag`\n    :ivar error_name: If this message is an error, the name of this error. Must be a valid interface name.\n    :vartype error_name: str\n    :ivar reply_serial: If this is a return type, the serial this message is in reply to.\n    :vartype reply_serial: int\n    :ivar sender: The address of the sender of this message. Will be a unique name.\n    :vartype sender: str\n    :ivar unix_fds: A list of unix fds that were sent in the header of this message.\n    :vartype unix_fds: list(int)\n    :ivar signature: The signature of the body of this message.\n    :vartype signature: str\n    :ivar signature_tree: The signature parsed as a signature tree.\n    :vartype signature_tree: :class:`SignatureTree`\n    :ivar body: The body of this message. Must match the signature.\n    :vartype body: list(Any)\n    :ivar serial: The serial of the message. Will be automatically set during message sending if not present. Use the ``new_serial()`` method of the bus to generate a serial.\n    :vartype serial: int\n\n    :raises:\n        - :class:`InvalidMessageError` - If the message is malformed or missing fields for the message type.\n        - :class:`InvalidSignatureError` - If the given signature is not valid.\n        - :class:`InvalidObjectPathError` - If ``path`` is not a valid object path.\n        - :class:`InvalidBusNameError` - If ``destination`` is not a valid bus name.\n        - :class:`InvalidMemberNameError` - If ``member`` is not a valid member name.\n        - :class:`InvalidInterfaceNameError` - If ``error_name`` or ``interface`` is not a valid interface name.\n    \"\"\"\n    def __init__(self,\n                 destination: str = None,\n                 path: str = None,\n                 interface: str = None,\n                 member: str = None,\n                 message_type: MessageType = MessageType.METHOD_CALL,\n                 flags: MessageFlag = MessageFlag.NONE,\n                 error_name: str = None,\n                 reply_serial: int = None,\n                 sender: str = None,\n                 unix_fds: List[int] = [],\n                 signature: str = '',\n                 body: List[Any] = [],\n                 serial: int = 0):\n        self.destination = destination\n        self.path = path\n        self.interface = interface\n        self.member = member\n        self.message_type = message_type\n        self.flags = flags if type(flags) is MessageFlag else MessageFlag(bytes([flags]))\n        self.error_name = error_name if type(error_name) is not ErrorType else error_name.value\n        self.reply_serial = reply_serial\n        self.sender = sender\n        self.unix_fds = unix_fds\n        self.signature = signature.signature if type(signature) is SignatureTree else signature\n        self.signature_tree = signature if type(signature) is SignatureTree else SignatureTree._get(\n            signature)\n        self.body = body\n        self.serial = serial\n\n        if self.destination is not None:\n            assert_bus_name_valid(self.destination)\n        if self.interface is not None:\n            assert_interface_name_valid(self.interface)\n        if self.path is not None:\n            assert_object_path_valid(self.path)\n        if self.member is not None:\n            assert_member_name_valid(self.member)\n        if self.error_name is not None:\n            assert_interface_name_valid(self.error_name)\n\n        def require_fields(*fields):\n            for field in fields:\n                if not getattr(self, field):\n                    raise InvalidMessageError(f'missing required field: {field}')\n\n        if self.message_type == MessageType.METHOD_CALL:\n            require_fields('path', 'member')\n        elif self.message_type == MessageType.SIGNAL:\n            require_fields('path', 'member', 'interface')\n        elif self.message_type == MessageType.ERROR:\n            require_fields('error_name', 'reply_serial')\n        elif self.message_type == MessageType.METHOD_RETURN:\n            require_fields('reply_serial')\n        else:\n            raise InvalidMessageError(f'got unknown message type: {self.message_type}')\n\n    @staticmethod\n    def new_error(msg: 'Message', error_name: str, error_text: str) -> 'Message':\n        \"\"\"A convenience constructor to create an error message in reply to the given message.\n\n        :param msg: The message this error is in reply to.\n        :type msg: :class:`Message`\n        :param error_name: The name of this error. Must be a valid interface name.\n        :type error_name: str\n        :param error_text: Human-readable text for the error.\n\n        :returns: The error message.\n        :rtype: :class:`Message`\n\n        :raises:\n            - :class:`InvalidInterfaceNameError` - If the error_name is not a valid interface name.\n        \"\"\"\n        return Message(message_type=MessageType.ERROR,\n                       reply_serial=msg.serial,\n                       destination=msg.sender,\n                       error_name=error_name,\n                       signature='s',\n                       body=[error_text])\n\n    @staticmethod\n    def new_method_return(msg: 'Message',\n                          signature: str = '',\n                          body: List[Any] = [],\n                          unix_fds: List[int] = []) -> 'Message':\n        \"\"\"A convenience constructor to create a method return to the given method call message.\n\n        :param msg: The method call message this is a reply to.\n        :type msg: :class:`Message`\n        :param signature: The signature for the message body.\n        :type signature: str\n        :param body: The body of this message. Must match the signature.\n        :type body: list(Any)\n        :param unix_fds: List integer file descriptors to send with this message.\n        :type body: list(int)\n\n        :returns: The method return message\n        :rtype: :class:`Message`\n\n        :raises:\n            - :class:`InvalidSignatureError` - If the signature is not a valid signature.\n        \"\"\"\n        return Message(message_type=MessageType.METHOD_RETURN,\n                       reply_serial=msg.serial,\n                       destination=msg.sender,\n                       signature=signature,\n                       body=body,\n                       unix_fds=unix_fds)\n\n    @staticmethod\n    def new_signal(path: str,\n                   interface: str,\n                   member: str,\n                   signature: str = '',\n                   body: List[Any] = None,\n                   unix_fds: List[int] = None) -> 'Message':\n        \"\"\"A convenience constructor to create a new signal message.\n\n        :param path: The path of this signal.\n        :type path: str\n        :param interface: The interface of this signal.\n        :type interface: str\n        :param member: The member name of this signal.\n        :type member: str\n        :param signature: The signature of the signal body.\n        :type signature: str\n        :param body: The body of this signal message.\n        :type body: list(Any)\n        :param unix_fds: List integer file descriptors to send with this message.\n        :type body: list(int)\n\n        :returns: The signal message.\n        :rtype: :class:`Message`\n\n        :raises:\n            - :class:`InvalidSignatureError` - If the signature is not a valid signature.\n            - :class:`InvalidObjectPathError` - If ``path`` is not a valid object path.\n            - :class:`InvalidInterfaceNameError` - If ``interface`` is not a valid interface name.\n            - :class:`InvalidMemberNameError` - If ``member`` is not a valid member name.\n        \"\"\"\n        body = body if body else []\n        return Message(message_type=MessageType.SIGNAL,\n                       interface=interface,\n                       path=path,\n                       member=member,\n                       signature=signature,\n                       body=body,\n                       unix_fds=unix_fds)\n\n    def _matches(self, **kwargs):\n        for attr, val in kwargs.items():\n            if getattr(self, attr) != val:\n                return False\n\n        return True\n\n    def _marshall(self, negotiate_unix_fd=False):\n        # TODO maximum message size is 134217728 (128 MiB)\n        body_block = Marshaller(self.signature, self.body)\n        body_block.marshall()\n\n        fields = []\n\n        if self.path:\n            fields.append([HeaderField.PATH.value, Variant('o', self.path)])\n        if self.interface:\n            fields.append([HeaderField.INTERFACE.value, Variant('s', self.interface)])\n        if self.member:\n            fields.append([HeaderField.MEMBER.value, Variant('s', self.member)])\n        if self.error_name:\n            fields.append([HeaderField.ERROR_NAME.value, Variant('s', self.error_name)])\n        if self.reply_serial:\n            fields.append([HeaderField.REPLY_SERIAL.value, Variant('u', self.reply_serial)])\n        if self.destination:\n            fields.append([HeaderField.DESTINATION.value, Variant('s', self.destination)])\n        if self.signature:\n            fields.append([HeaderField.SIGNATURE.value, Variant('g', self.signature)])\n        if self.unix_fds and negotiate_unix_fd:\n            fields.append([HeaderField.UNIX_FDS.value, Variant('u', len(self.unix_fds))])\n\n        header_body = [\n            LITTLE_ENDIAN, self.message_type.value, self.flags.value, PROTOCOL_VERSION,\n            len(body_block.buffer), self.serial, fields\n        ]\n        header_block = Marshaller('yyyyuua(yv)', header_body)\n        header_block.marshall()\n        header_block.align(8)\n        return header_block.buffer + body_block.buffer\n\n```",
+  "Title: annotations\nBody: https://github.com/kevoreilly/CAPEv2/blob/398f17a64c8f2b4bb62b186f48d21c44f5fa9371/analyzer/linux/dbus_next/introspection.py#L11\n\n```python\n\nfrom .constants import PropertyAccess, ArgDirection\nfrom .signature import SignatureTree, SignatureType\nfrom .validators import assert_member_name_valid, assert_interface_name_valid\nfrom .errors import InvalidIntrospectionError\n\nfrom typing import List, Union\n\nimport xml.etree.ElementTree as ET\n\n# https://dbus.freedesktop.org/doc/dbus-specification.html#introspection-format\n# TODO annotations\n\n\nclass Arg:\n    \"\"\"A class that represents an input or output argument to a signal or a method.\n\n    :ivar name: The name of this arg.\n    :vartype name: str\n    :ivar direction: Whether this is an input or an output argument.\n    :vartype direction: :class:`ArgDirection <dbus_next.ArgDirection>`\n    :ivar type: The parsed signature type of this argument.\n    :vartype type: :class:`SignatureType <dbus_next.SignatureType>`\n    :ivar signature: The signature string of this argument.\n    :vartype signature: str\n\n    :raises:\n        - :class:`InvalidMemberNameError <dbus_next.InvalidMemberNameError>` - If the name of the arg is not valid.\n        - :class:`InvalidSignatureError <dbus_next.InvalidSignatureError>` - If the signature is not valid.\n        - :class:`InvalidIntrospectionError <dbus_next.InvalidIntrospectionError>` - If the signature is not a single complete type.\n    \"\"\"\n    def __init__(self,\n                 signature: Union[SignatureType, str],\n                 direction: List[ArgDirection] = None,\n                 name: str = None):\n        if name is not None:\n            assert_member_name_valid(name)\n\n        type_ = None\n        if type(signature) is SignatureType:\n            type_ = signature\n            signature = signature.signature\n        else:\n            tree = SignatureTree._get(signature)\n            if len(tree.types) != 1:\n                raise InvalidIntrospectionError(\n                    f'an argument must have a single complete type. (has {len(tree.types)} types)')\n            type_ = tree.types[0]\n\n        self.type = type_\n        self.signature = signature\n        self.name = name\n        self.direction = direction\n\n    def from_xml(element: ET.Element, direction: ArgDirection) -> 'Arg':\n        \"\"\"Convert a :class:`xml.etree.ElementTree.Element` into a\n        :class:`Arg`.\n\n        The element must be valid DBus introspection XML for an ``arg``.\n\n        :param element: The parsed XML element.\n        :type element: :class:`xml.etree.ElementTree.Element`\n        :param direction: The direction of this arg. Must be specified because it can default to different values depending on if it's in a method or signal.\n        :type direction: :class:`ArgDirection <dbus_next.ArgDirection>`\n\n        :raises:\n            - :class:`InvalidIntrospectionError <dbus_next.InvalidIntrospectionError>` - If the XML tree is not valid introspection data.\n        \"\"\"\n        name = element.attrib.get('name')\n        signature = element.attrib.get('type')\n\n        if not signature:\n            raise InvalidIntrospectionError('a method argument must have a \"type\" attribute')\n\n        return Arg(signature, direction, name)\n\n    def to_xml(self) -> ET.Element:\n        \"\"\"Convert this :class:`Arg` into an :class:`xml.etree.ElementTree.Element`.\n        \"\"\"\n        element = ET.Element('arg')\n        if self.name:\n            element.set('name', self.name)\n\n        if self.direction:\n            element.set('direction', self.direction.value)\n        element.set('type', self.signature)\n\n        return element\n\n\nclass Signal:\n    \"\"\"A class that represents a signal exposed on an interface.\n\n    :ivar name: The name of this signal\n    :vartype name: str\n    :ivar args: A list of output arguments for this signal.\n    :vartype args: list(Arg)\n    :ivar signature: The collected signature of the output arguments.\n    :vartype signature: str\n\n    :raises:\n        - :class:`InvalidMemberNameError <dbus_next.InvalidMemberNameError>` - If the name of the signal is not a valid member name.\n    \"\"\"\n    def __init__(self, name: str, args: List[Arg] = None):\n        if name is not None:\n            assert_member_name_valid(name)\n\n        self.name = name\n        self.args = args or []\n        self.signature = ''.join(arg.signature for arg in self.args)\n\n    def from_xml(element):\n        \"\"\"Convert an :class:`xml.etree.ElementTree.Element` to a :class:`Signal`.\n\n        The element must be valid DBus introspection XML for a ``signal``.\n\n        :param element: The parsed XML element.\n        :type element: :class:`xml.etree.ElementTree.Element`\n        :param is_root: Whether this is the root node\n        :type is_root: bool\n\n        :raises:\n            - :class:`InvalidIntrospectionError <dbus_next.InvalidIntrospectionError>` - If the XML tree is not valid introspection data.\n        \"\"\"\n        name = element.attrib.get('name')\n        if not name:\n            raise InvalidIntrospectionError('signals must have a \"name\" attribute')\n\n        args = []\n        for child in element:\n            if child.tag == 'arg':\n                args.append(Arg.from_xml(child, ArgDirection.OUT))\n\n        signal = Signal(name, args)\n\n        return signal\n\n    def to_xml(self) -> ET.Element:\n        \"\"\"Convert this :class:`Signal` into an :class:`xml.etree.ElementTree.Element`.\n        \"\"\"\n        element = ET.Element('signal')\n        element.set('name', self.name)\n\n        for arg in self.args:\n            element.append(arg.to_xml())\n\n        return element\n\n\nclass Method:\n    \"\"\"A class that represents a method exposed on an :class:`Interface`.\n\n    :ivar name: The name of this method.\n    :vartype name: str\n    :ivar in_args: A list of input arguments to this method.\n    :vartype in_args: list(Arg)\n    :ivar out_args: A list of output arguments to this method.\n    :vartype out_args: list(Arg)\n    :ivar in_signature: The collected signature string of the input arguments.\n    :vartype in_signature: str\n    :ivar out_signature: The collected signature string of the output arguments.\n    :vartype out_signature: str\n\n    :raises:\n        - :class:`InvalidMemberNameError <dbus_next.InvalidMemberNameError>` - If the name of this method is not valid.\n    \"\"\"\n    def __init__(self, name: str, in_args: List[Arg] = [], out_args: List[Arg] = []):\n        assert_member_name_valid(name)\n\n        self.name = name\n        self.in_args = in_args\n        self.out_args = out_args\n        self.in_signature = ''.join(arg.signature for arg in in_args)\n        self.out_signature = ''.join(arg.signature for arg in out_args)\n\n    def from_xml(element: ET.Element) -> 'Method':\n        \"\"\"Convert an :class:`xml.etree.ElementTree.Element` to a :class:`Method`.\n\n        The element must be valid DBus introspection XML for a ``method``.\n\n        :param element: The parsed XML element.\n        :type element: :class:`xml.etree.ElementTree.Element`\n        :param is_root: Whether this is the root node\n        :type is_root: bool\n\n        :raises:\n            - :class:`InvalidIntrospectionError <dbus_next.InvalidIntrospectionError>` - If the XML tree is not valid introspection data.\n        \"\"\"\n        name = element.attrib.get('name')\n        if not name:\n            raise InvalidIntrospectionError('interfaces must have a \"name\" attribute')\n\n        in_args = []\n        out_args = []\n\n        for child in element:\n            if child.tag == 'arg':\n                direction = ArgDirection(child.attrib.get('direction', 'in'))\n                arg = Arg.from_xml(child, direction)\n                if direction == ArgDirection.IN:\n                    in_args.append(arg)\n                elif direction == ArgDirection.OUT:\n                    out_args.append(arg)\n\n        return Method(name, in_args, out_args)\n\n    def to_xml(self) -> ET.Element:\n        \"\"\"Convert this :class:`Method` into an :class:`xml.etree.ElementTree.Element`.\n        \"\"\"\n        element = ET.Element('method')\n        element.set('name', self.name)\n\n        for arg in self.in_args:\n            element.append(arg.to_xml())\n        for arg in self.out_args:\n            element.append(arg.to_xml())\n\n        return element\n\n\nclass Property:\n    \"\"\"A class that represents a DBus property exposed on an\n    :class:`Interface`.\n\n    :ivar name: The name of this property.\n    :vartype name: str\n    :ivar signature: The signature string for this property. Must be a single complete type.\n    :vartype signature: str\n    :ivar access: Whether this property is readable and writable.\n    :vartype access: :class:`PropertyAccess <dbus_next.PropertyAccess>`\n    :ivar type: The parsed type of this property.\n    :vartype type: :class:`SignatureType <dbus_next.SignatureType>`\n\n    :raises:\n        - :class:`InvalidIntrospectionError <dbus_next.InvalidIntrospectionError>` - If the property is not a single complete type.\n        - :class `InvalidSignatureError <dbus_next.InvalidSignatureError>` - If the given signature is not valid.\n        - :class: `InvalidMemberNameError <dbus_next.InvalidMemberNameError>` - If the member name is not valid.\n    \"\"\"\n    def __init__(self,\n                 name: str,\n                 signature: str,\n                 access: PropertyAccess = PropertyAccess.READWRITE):\n        assert_member_name_valid(name)\n\n        tree = SignatureTree._get(signature)\n        if len(tree.types) != 1:\n            raise InvalidIntrospectionError(\n                f'properties must have a single complete type. (has {len(tree.types)} types)')\n\n        self.name = name\n        self.signature = signature\n        self.access = access\n        self.type = tree.types[0]\n\n    def from_xml(element):\n        \"\"\"Convert an :class:`xml.etree.ElementTree.Element` to a :class:`Property`.\n\n        The element must be valid DBus introspection XML for a ``property``.\n\n        :param element: The parsed XML element.\n        :type element: :class:`xml.etree.ElementTree.Element`\n\n        :raises:\n            - :class:`InvalidIntrospectionError <dbus_next.InvalidIntrospectionError>` - If the XML tree is not valid introspection data.\n        \"\"\"\n        name = element.attrib.get('name')\n        signature = element.attrib.get('type')\n        access = PropertyAccess(element.attrib.get('access', 'readwrite'))\n\n        if not name:\n            raise InvalidIntrospectionError('properties must have a \"name\" attribute')\n        if not signature:\n            raise InvalidIntrospectionError('properties must have a \"type\" attribute')\n\n        return Property(name, signature, access)\n\n    def to_xml(self) -> ET.Element:\n        \"\"\"Convert this :class:`Property` into an :class:`xml.etree.ElementTree.Element`.\n        \"\"\"\n        element = ET.Element('property')\n        element.set('name', self.name)\n        element.set('type', self.signature)\n        element.set('access', self.access.value)\n        return element\n\n\nclass Interface:\n    \"\"\"A class that represents a DBus interface exported on on object path.\n\n    Contains information about the methods, signals, and properties exposed on\n    this interface.\n\n    :ivar name: The name of this interface.\n    :vartype name: str\n    :ivar methods: A list of methods exposed on this interface.\n    :vartype methods: list(:class:`Method`)\n    :ivar signals: A list of signals exposed on this interface.\n    :vartype signals: list(:class:`Signal`)\n    :ivar properties: A list of properties exposed on this interface.\n    :vartype properties: list(:class:`Property`)\n\n    :raises:\n        - :class:`InvalidInterfaceNameError <dbus_next.InvalidInterfaceNameError>` - If the name is not a valid interface name.\n    \"\"\"\n    def __init__(self,\n                 name: str,\n                 methods: List[Method] = None,\n                 signals: List[Signal] = None,\n                 properties: List[Property] = None):\n        assert_interface_name_valid(name)\n\n        self.name = name\n        self.methods = methods if methods is not None else []\n        self.signals = signals if signals is not None else []\n        self.properties = properties if properties is not None else []\n\n    @staticmethod\n    def from_xml(element: ET.Element) -> 'Interface':\n        \"\"\"Convert a :class:`xml.etree.ElementTree.Element` into a\n        :class:`Interface`.\n\n        The element must be valid DBus introspection XML for an ``interface``.\n\n        :param element: The parsed XML element.\n        :type element: :class:`xml.etree.ElementTree.Element`\n\n        :raises:\n            - :class:`InvalidIntrospectionError <dbus_next.InvalidIntrospectionError>` - If the XML tree is not valid introspection data.\n        \"\"\"\n        name = element.attrib.get('name')\n        if not name:\n            raise InvalidIntrospectionError('interfaces must have a \"name\" attribute')\n\n        interface = Interface(name)\n\n        for child in element:\n            if child.tag == 'method':\n                interface.methods.append(Method.from_xml(child))\n            elif child.tag == 'signal':\n                interface.signals.append(Signal.from_xml(child))\n            elif child.tag == 'property':\n                interface.properties.append(Property.from_xml(child))\n\n        return interface\n\n    def to_xml(self) -> ET.Element:\n        \"\"\"Convert this :class:`Interface` into an :class:`xml.etree.ElementTree.Element`.\n        \"\"\"\n        element = ET.Element('interface')\n        element.set('name', self.name)\n\n        for method in self.methods:\n            element.append(method.to_xml())\n        for signal in self.signals:\n            element.append(signal.to_xml())\n        for prop in self.properties:\n            element.append(prop.to_xml())\n\n        return element\n\n\nclass Node:\n    \"\"\"A class that represents a node in an object path in introspection data.\n\n    A node contains information about interfaces exported on this path and\n    child nodes. A node can be converted to and from introspection XML exposed\n    through the ``org.freedesktop.DBus.Introspectable`` standard DBus\n    interface.\n\n    This class is an essential building block for a high-level DBus interface.\n    This is the underlying data structure for the :class:`ProxyObject\n    <dbus_next.proxy_object.BaseProxyInterface>`.  A :class:`ServiceInterface\n    <dbus_next.service.ServiceInterface>` definition is converted to this class\n    to expose XML on the introspectable interface.\n\n    :ivar interfaces: A list of interfaces exposed on this node.\n    :vartype interfaces: list(:class:`Interface <dbus_next.introspection.Interface>`)\n    :ivar nodes: A list of child nodes.\n    :vartype nodes: list(:class:`Node`)\n    :ivar name: The object path of this node.\n    :vartype name: str\n    :ivar is_root: Whether this is the root node. False if it is a child node.\n    :vartype is_root: bool\n\n    :raises:\n        - :class:`InvalidIntrospectionError <dbus_next.InvalidIntrospectionError>` - If the name is not a valid node name.\n    \"\"\"\n    def __init__(self, name: str = None, interfaces: List[Interface] = None, is_root: bool = True):\n        if not is_root and not name:\n            raise InvalidIntrospectionError('child nodes must have a \"name\" attribute')\n\n        self.interfaces = interfaces if interfaces is not None else []\n        self.nodes = []\n        self.name = name\n        self.is_root = is_root\n\n    @staticmethod\n    def from_xml(element: ET.Element, is_root: bool = False):\n        \"\"\"Convert an :class:`xml.etree.ElementTree.Element` to a :class:`Node`.\n\n        The element must be valid DBus introspection XML for a ``node``.\n\n        :param element: The parsed XML element.\n        :type element: :class:`xml.etree.ElementTree.Element`\n        :param is_root: Whether this is the root node\n        :type is_root: bool\n\n        :raises:\n            - :class:`InvalidIntrospectionError <dbus_next.InvalidIntrospectionError>` - If the XML tree is not valid introspection data.\n        \"\"\"\n        node = Node(element.attrib.get('name'), is_root=is_root)\n\n        for child in element:\n            if child.tag == 'interface':\n                node.interfaces.append(Interface.from_xml(child))\n            elif child.tag == 'node':\n                node.nodes.append(Node.from_xml(child))\n\n        return node\n\n    @staticmethod\n    def parse(data: str) -> 'Node':\n        \"\"\"Parse XML data as a string into a :class:`Node`.\n\n        The string must be valid DBus introspection XML.\n\n        :param data: The XMl string.\n        :type data: str\n\n        :raises:\n            - :class:`InvalidIntrospectionError <dbus_next.InvalidIntrospectionError>` - If the string is not valid introspection data.\n        \"\"\"\n        element = ET.fromstring(data)\n        if element.tag != 'node':\n            raise InvalidIntrospectionError(\n                'introspection data must have a \"node\" for the root element')\n\n        return Node.from_xml(element, is_root=True)\n\n    def to_xml(self) -> ET.Element:\n        \"\"\"Convert this :class:`Node` into an :class:`xml.etree.ElementTree.Element`.\n        \"\"\"\n        element = ET.Element('node')\n\n        if self.name:\n            element.set('name', self.name)\n\n        for interface in self.interfaces:\n            element.append(interface.to_xml())\n        for node in self.nodes:\n            element.append(node.to_xml())\n\n        return element\n\n    def tostring(self) -> str:\n        \"\"\"Convert this :class:`Node` into a DBus introspection XML string.\n        \"\"\"\n        header = '<!DOCTYPE node PUBLIC \"-//freedesktop//DTD D-BUS Object Introspection 1.0//EN\"\\n\"http://www.freedesktop.org/standards/dbus/1.0/introspect.dtd\">\\n'\n\n        def indent(elem, level=0):\n            i = \"\\n\" + level * \"    \"\n            if len(elem):\n                if not elem.text or not elem.text.strip():\n                    elem.text = i + \"  \"\n                if not elem.tail or not elem.tail.strip():\n                    elem.tail = i\n                for elem in elem:\n                    indent(elem, level + 1)\n                if not elem.tail or not elem.tail.strip():\n                    elem.tail = i\n            else:\n                if level and (not elem.tail or not elem.tail.strip()):\n                    elem.tail = i\n\n        xml = self.to_xml()\n        indent(xml)\n        return header + ET.tostring(xml, encoding='unicode').rstrip()\n\n    @staticmethod\n    def default(name: str = None) -> 'Node':\n        \"\"\"Create a :class:`Node` with the default interfaces supported by this library.\n\n        The default interfaces include:\n\n        * ``org.freedesktop.DBus.Introspectable``\n        * ``org.freedesktop.DBus.Peer``\n        * ``org.freedesktop.DBus.Properties``\n        * ``org.freedesktop.DBus.ObjectManager``\n        \"\"\"\n        return Node(name,\n                    is_root=True,\n                    interfaces=[\n                        Interface('org.freedesktop.DBus.Introspectable',\n                                  methods=[\n                                      Method('Introspect',\n                                             out_args=[Arg('s', ArgDirection.OUT, 'data')])\n                                  ]),\n                        Interface('org.freedesktop.DBus.Peer',\n                                  methods=[\n                                      Method('GetMachineId',\n                                             out_args=[Arg('s', ArgDirection.OUT, 'machine_uuid')]),\n                                      Method('Ping')\n                                  ]),\n                        Interface('org.freedesktop.DBus.Properties',\n                                  methods=[\n                                      Method('Get',\n                                             in_args=[\n                                                 Arg('s', ArgDirection.IN, 'interface_name'),\n                                                 Arg('s', ArgDirection.IN, 'property_name')\n                                             ],\n                                             out_args=[Arg('v', ArgDirection.OUT, 'value')]),\n                                      Method('Set',\n                                             in_args=[\n                                                 Arg('s', ArgDirection.IN, 'interface_name'),\n                                                 Arg('s', ArgDirection.IN, 'property_name'),\n                                                 Arg('v', ArgDirection.IN, 'value')\n                                             ]),\n                                      Method('GetAll',\n                                             in_args=[Arg('s', ArgDirection.IN, 'interface_name')],\n                                             out_args=[Arg('a{sv}', ArgDirection.OUT, 'props')])\n                                  ],\n                                  signals=[\n                                      Signal('PropertiesChanged',\n                                             args=[\n                                                 Arg('s', ArgDirection.OUT, 'interface_name'),\n                                                 Arg('a{sv}', ArgDirection.OUT,\n                                                     'changed_properties'),\n                                                 Arg('as', ArgDirection.OUT,\n                                                     'invalidated_properties')\n                                             ])\n                                  ]),\n                        Interface('org.freedesktop.DBus.ObjectManager',\n                                  methods=[\n                                      Method('GetManagedObjects',\n                                             out_args=[\n                                                 Arg('a{oa{sa{sv}}}', ArgDirection.OUT,\n                                                     'objpath_interfaces_and_properties')\n                                             ]),\n                                  ],\n                                  signals=[\n                                      Signal('InterfacesAdded',\n                                             args=[\n                                                 Arg('o', ArgDirection.OUT, 'object_path'),\n                                                 Arg('a{sa{sv}}', ArgDirection.OUT,\n                                                     'interfaces_and_properties'),\n                                             ]),\n                                      Signal('InterfacesRemoved',\n                                             args=[\n                                                 Arg('o', ArgDirection.OUT, 'object_path'),\n                                                 Arg('as', ArgDirection.OUT, 'interfaces'),\n                                             ])\n                                  ]),\n                    ])\n\n```",
+  "Title: max array size is 64MiB (67108864 bytes)\nBody: https://github.com/kevoreilly/CAPEv2/blob/398f17a64c8f2b4bb62b186f48d21c44f5fa9371/analyzer/linux/dbus_next/_private/marshaller.py#L108\n\n```python\n\nfrom ..signature import SignatureTree\nfrom struct import pack\n\n\nclass Marshaller:\n    def __init__(self, signature, body):\n        self.signature_tree = SignatureTree._get(signature)\n        self.signature_tree.verify(body)\n        self.buffer = bytearray()\n        self.body = body\n\n        self.writers = {\n            'y': self.write_byte,\n            'b': self.write_boolean,\n            'n': self.write_int16,\n            'q': self.write_uint16,\n            'i': self.write_int32,\n            'u': self.write_uint32,\n            'x': self.write_int64,\n            't': self.write_uint64,\n            'd': self.write_double,\n            'h': self.write_uint32,\n            'o': self.write_string,\n            's': self.write_string,\n            'g': self.write_signature,\n            'a': self.write_array,\n            '(': self.write_struct,\n            '{': self.write_dict_entry,\n            'v': self.write_variant\n        }\n\n    def align(self, n):\n        offset = n - len(self.buffer) % n\n        if offset == 0 or offset == n:\n            return 0\n        self.buffer.extend(bytes(offset))\n        return offset\n\n    def write_byte(self, byte, _=None):\n        self.buffer.append(byte)\n        return 1\n\n    def write_boolean(self, boolean, _=None):\n        if boolean:\n            return self.write_uint32(1)\n        else:\n            return self.write_uint32(0)\n\n    def write_int16(self, int16, _=None):\n        written = self.align(2)\n        self.buffer.extend(pack('<h', int16))\n        return written + 2\n\n    def write_uint16(self, uint16, _=None):\n        written = self.align(2)\n        self.buffer.extend(pack('<H', uint16))\n        return written + 2\n\n    def write_int32(self, int32, _):\n        written = self.align(4)\n        self.buffer.extend(pack('<i', int32))\n        return written + 4\n\n    def write_uint32(self, uint32, _=None):\n        written = self.align(4)\n        self.buffer.extend(pack('<I', uint32))\n        return written + 4\n\n    def write_int64(self, int64, _=None):\n        written = self.align(8)\n        self.buffer.extend(pack('<q', int64))\n        return written + 8\n\n    def write_uint64(self, uint64, _=None):\n        written = self.align(8)\n        self.buffer.extend(pack('<Q', uint64))\n        return written + 8\n\n    def write_double(self, double, _=None):\n        written = self.align(8)\n        self.buffer.extend(pack('<d', double))\n        return written + 8\n\n    def write_signature(self, signature, _=None):\n        signature = signature.encode()\n        signature_len = len(signature)\n        self.buffer.append(signature_len)\n        self.buffer.extend(signature)\n        self.buffer.append(0)\n        return signature_len + 2\n\n    def write_string(self, value, _=None):\n        value = value.encode()\n        value_len = len(value)\n        written = self.write_uint32(value_len)\n        self.buffer.extend(value)\n        written += value_len\n        self.buffer.append(0)\n        written += 1\n        return written\n\n    def write_variant(self, variant, _=None):\n        written = self.write_signature(variant.signature)\n        written += self.write_single(variant.type, variant.value)\n        return written\n\n    def write_array(self, array, type_):\n        # TODO max array size is 64MiB (67108864 bytes)\n        written = self.align(4)\n        # length placeholder\n        offset = len(self.buffer)\n        written += self.write_uint32(0)\n        child_type = type_.children[0]\n\n        if child_type.token in 'xtd{(':\n            # the first alignment is not included in array size\n            written += self.align(8)\n\n        array_len = 0\n        if child_type.token == '{':\n            for key, value in array.items():\n                array_len += self.write_dict_entry([key, value], child_type)\n        elif child_type.token == 'y':\n            array_len = len(array)\n            self.buffer.extend(array)\n        else:\n            for value in array:\n                array_len += self.write_single(child_type, value)\n\n        array_len_packed = pack('<I', array_len)\n        for i in range(offset, offset + 4):\n            self.buffer[i] = array_len_packed[i - offset]\n\n        return written + array_len\n\n    def write_struct(self, array, type_):\n        written = self.align(8)\n        for i, value in enumerate(array):\n            written += self.write_single(type_.children[i], value)\n        return written\n\n    def write_dict_entry(self, dict_entry, type_):\n        written = self.align(8)\n        written += self.write_single(type_.children[0], dict_entry[0])\n        written += self.write_single(type_.children[1], dict_entry[1])\n        return written\n\n    def write_single(self, type_, body):\n        t = type_.token\n\n        if t not in self.writers:\n            raise NotImplementedError(f'type isnt implemented yet: \"{t}\"')\n\n        return self.writers[t](body, type_)\n\n    def marshall(self):\n        self.buffer.clear()\n        for i, type_ in enumerate(self.signature_tree.types):\n            self.write_single(type_, self.body[i])\n        return self.buffer\n\n```",
+  "Title: Fix package submission\nBody: None\nComment: i have merged it here, thank you https://github.com/kevoreilly/CAPEv2/commit/0a97ad43a1accbc0a264b7722b54f85d5ba5c9f3",
+  "Title: Linux screenshots\nBody: Add ability to take screenshots in Linux guests without using PIL to do it.\r\n\r\nThe ways that PIL (and Pillow) do screenshotting in certain desktop\r\nenvironments does not work. The technique implemented here uses a\r\npure-python interface to DBus and is supported on all of the systems that\r\nI tested:\r\n- Ubuntu 20.04\r\n- Ubuntu 22.04\r\n- Ubuntu 22.10\r\n- Kubuntu 22.04\r\n- Kubuntu 22.10\r\n- Fedora 36\r\n- Oracle Linux 9",
+  "Title: Staging  8.3.2023\nBody: None",
+  "Title: deps: remove unnecessary dependencies\nBody: These dependencies were already commented. Those that are completely not referenced at all (both in https://github.com/kevoreilly/CAPEv2 and https://github.com/CAPESandbox/community) are removed.\r\n\r\nOther changes: verbose print statement in `vbadeobf.py` was removed.\nComment: Thank you",
+  "Title: check platform on extracted files\nBody: None",
+  "Title: Added: CSRF Protection\nBody: I had some problems during the submit of the files using dns-name:\r\n\r\nWith this code you can get rid of the CSRF error if you set the allowed hostname in `CAPEv2/config/web.conf` as follows:\r\n```\r\n# hostname of the cape instance\r\nhostname = https://example.com\r\n```\r\n\r\nI hope that helps\nComment: Thanks this is useful, but should go into settings and not local, can you move it? Local is for overwrite/extend settings. Py\nComment: Yes, no worries. I'm going to do it!\nComment: That should be it!\nComment: thank you",
+  "Title: msix\nBody: None",
+  "Title: Adding reserved keyword arg to az machinery\nBody: Bugfix caused by https://github.com/kevoreilly/CAPEv2/pull/1373\nComment: thanks",
+  "Title: style: Automatic code formatting\nBody: None",
+  "Title: FIXED bug .xlsx\nBody: This is the code working in my prod env prod\nComment: that was already fixed in different and better way, thanks for headups",
+  "Title: Create xlsx.py\nBody: I noticed that when you upload a file with .xlsx it will be renamed in file.xlsx.xls;\r\n\r\nIn my production env I edited the xls.py as following:\r\n\r\n```\r\n# Copyright (C) 2010-2015 Cuckoo Foundation.\r\n# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org\r\n# See the file 'docs/LICENSE' for copying permission.\r\n\r\nimport os\r\nfrom lib.common.abstracts import Package\r\nfrom lib.common.common import check_file_extension\r\n\r\n\r\nclass XLS(Package):\r\n    \"\"\"Excel analysis package.\"\"\"\r\n\r\n    def __init__(self, options=None, config=None):\r\n        if options is None:\r\n            options = {}\r\n        self.config = config\r\n        self.options = options\r\n\r\n    PATHS = [\r\n        (\"ProgramFiles\", \"Microsoft Office\", \"EXCEL.EXE\"),\r\n        (\"ProgramFiles\", \"Microsoft Office\", \"Office*\", \"EXCEL.EXE\"),\r\n        (\"ProgramFiles\", \"Microsoft Office*\", \"root\", \"Office*\", \"EXCEL.EXE\"),\r\n    ]\r\n\r\n    def start(self, path):\r\n        if os.path.splitext(path)[-1].lower() != \".xlsx\":\r\n            path = check_file_extension(path, \".xls\")\r\n        excel = self.get_path_glob(\"Microsoft Office Excel\")\r\n        return self.execute(excel, f'\"{path}\" /dde', path)\r\n```\r\n\r\nBut the most elegant way I think is to create a new class for that extension.\r\n\r\nI don't know how to fully implementing it but I hope it could help.\nComment: I actually prefer your first suggestion of changing the existing code in xls.py - we want the packages to handle classes of files and not end up with a package for every possible variation of an extension.\nComment: hello yes i also prefer check of extension, i will work on this a bit later, once i have done another task\nComment: super simple solution, pushed to staging branch\r\n```\r\nif not path.endswith((\".xls, xlsx\")):\r\n            path = check_file_extension(path, \".xls\")\r\n```",
+  "Title: test quarantine\nBody: None",
+  "Title: Missing module 'elasticsearch' when enabling elasticsearchdb under reporting.conf\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n* Free support from doomedraven ended - no whiskey, no support. For updates check the documentation.\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n- [x] I'm aware that configs now are in `custom/conf/`\r\n\r\n\r\n# Expected Behavior\r\n\r\nThe CAPEv2 sandbox should start and web service should be available.\r\n\r\n# Current Behavior\r\n\r\nThe cape service cannot start. The following is the output from terminal:\r\n\r\n```\r\nsudo -u cape poetry run python3 cuckoo.py\r\nERROR: Missing dependency: No module named 'elasticsearch'\r\n```\r\n\r\n# Failure Information (for bugs)\r\n\r\nPython module `elasticsearch` isn't available either in `requirements.txt` nor in poetry files.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Edit `conf/reporting.conf` with setting `enabled = no` under `[mongodb]` and setting `enabled = yes` under `[elasticsearchdb]` along with appropriate configuration parameter. Also, set `searchonly = no` under `[elasticsearchdb]`\r\n\r\n## Context\r\n\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | f839df7762c4353b2dab63c25172d512742b5bf1\r\n| OS version       | Ubuntu 22.04.1 LTS\r\n\r\n## Failure Logs\r\n\r\n```\r\nsudo -u cape poetry run python3 cuckoo.py\r\nERROR: Missing dependency: No module named 'elasticsearch'\r\n```\r\n\nComment: @mostwanted002: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: You must to install it as we dont support ES officially so we cant ensure\nthat it works as expected, we only officialy suport mongo\n\nEl jue, 2 mar 2023 1:29, github-actions[bot] ***@***.***>\nescribi\u00f3:\n\n> Reopened #1406 <https://github.com/kevoreilly/CAPEv2/issues/1406>.\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1406#event-8644124882>, or\n> unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH37S75T7HFLZER3R5Y3WZ7SVRANCNFSM6AAAAAAVMW6A4A>\n> .\n> You are receiving this because you are subscribed to this thread.Message\n> ID: ***@***.***>\n>\n\nComment: I see. \r\nI indeed, tried to install the module, but there seems to be some version incompatibility because I tried 2 different versions: `7.11` and `8.6.2` and both of them gave further errors while opening the web page. \r\n\r\nBut I guess for now, I'll just migrate the data from MongoDB to ES manually or via third party utility. \r\n\r\n\r\nRight now, a batch of executables is running, so I am not able to fetch the error output after installing `elasticsearch` python module. \r\nIs it possible to get the version of the module in which the Elasticsearch's functions were written?\nComment: if you would search elatci you would get this \r\n\r\n7.16.2 works for me as you might see from my comments https://github.com/kevoreilly/CAPEv2/pull/688\nComment: Great! I'll give this a try and will update.\r\n\r\nAnd can this be mentioned in the documentation with a disclaimer about no official support?\nComment: i will add it in config later",
+  "Title: Merge pull request #1404 from kevoreilly/master\nBody: Merge master to staging",
+  "Title: Merge master to staging\nBody: None",
+  "Title: Merge fixes in Staging\nBody: None",
+  "Title: Use ARC4\nBody: None",
+  "Title: Adobe Acrobat DC pdf reader\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n* Free support from doomedraven ended - no whiskey, no support. For updates check the documentation.\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ Y ] I am running the latest version\r\n- [ Y ] I did read the README!\r\n- [ Y ] I checked the documentation and found no answer\r\n- [ Y ] I checked to make sure that this issue has not already been filed\r\n- [ Y ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ Y ] I have read and checked all configs (with all optional parts)\r\n- [ Y ] I'm aware that configs now are in `custom/conf/`\r\n\r\n\r\n# Expected Behavior\r\n\r\nWhen submitting a pdf i expect the pdf to be opened with Adobe Acrobat DC, but it seems the `pdf.py` file looks for a different executeable.\r\n\r\n# Current Behavior\r\n\r\nGenerates an error after submitting a pdf. It says Adobe could no be found.\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\nLooking at [pdf.py](https://github.com/kevoreilly/CAPEv2/tree/master/analyzer/windows/modules/packages/pdf.py) the bug seems to be in the path. `(\"ProgramFiles\", \"Adobe\", \"*a*\", \"Reader\", \"AcroRd32.exe\")` the new PDF reader is in `C:\\Program Files\\Adobe\\Acrobat DC\\Acrobat\\Acrobat.exe` \r\n\r\nI assume if I add a different path this bug could be resolved?\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. step 1\r\n2. step 2\r\n3. you get it...\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       |  9a73a7f207f3c6d8116b6a227ec9246a6b82ea9e\r\n| OS version       | Ubuntu 22.04\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n```\r\n2023-03-01 12:39:15,342 [root] INFO: You probably submitted the job with wrong package\r\nTraceback (most recent call last):\r\n  File \"C:\\tmpeoh1ctk8\\analyzer.py\", line 523, in run\r\n    pids = self.package.start(self.target)\r\n           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\r\n  File \"C:\\tmpeoh1ctk8\\modules\\packages\\pdf.py\", line 24, in start\r\n    reader = self.get_path_glob(\"Adobe Reader\")\r\n             ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\r\n  File \"C:\\tmpeoh1ctk8\\lib\\common\\abstracts.py\", line 91, in get_path_glob\r\n    raise CuckooPackageError(f\"Unable to find any {application} executable\")\r\nlib.common.exceptions.CuckooPackageError: Unable to find any Adobe Reader executable\r\n\r\nThe above exception was the direct cause of the following exception:\r\n\r\nTraceback (most recent call last):\r\n  File \"C:\\tmpeoh1ctk8\\analyzer.py\", line 1389, in <module>\r\n    success = analyzer.run()\r\n              ^^^^^^^^^^^^^^\r\n  File \"C:\\tmpeoh1ctk8\\analyzer.py\", line 527, in run\r\n    raise CuckooError(f'The package \"{package_name}\" start function raised an error: {e}') from e\r\nlib.common.exceptions.CuckooError: The package \"modules.packages.pdf\" start function raised an error: Unable to find any Adobe Reader executable\r\n2023-03-01 12:39:15,444 [root] WARNING: Folder at path \"C:\\nLoQqa\\debugger\" does not exist, skipping\r\n2023-03-01 12:39:15,444 [root] WARNING: Folder at path \"C:\\nLoQqa\\tlsdump\" does not exist, skipping\r\n```\nComment: well that is acrobat DC not acrobat reader, you need to update the package to add path of acrobat DC executable https://github.com/kevoreilly/CAPEv2/blob/master/analyzer/windows/modules/packages/pdf.py\nComment: I'll see if i can edit the code so that both the old and new one can be used.\nComment: is so easy as just add new path, to contain both\nComment: something similar to this\r\n\r\n```\r\nPATHS = [\r\n        (\"ProgramFiles\", \"Adobe\", \"*a*\", \"Reader\", \"AcroRd32.exe\"),\r\n    ]\r\n```\nComment: ah thanks for path i was blind, updating that package\nComment: do git pull and you should be fine to go\nComment: @doomedraven thanks you were a bit quicker than me in publishing it \ud83d\ude00\nComment: you are welcome, thanks for the path in issue description",
+  "Title: Cape Sandbox Linux Analysis\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n* Free support from doomedraven ended - no whiskey, no support. For updates check the documentation.\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [Y ] I am running the latest version\r\n- [Y] I did read the README!\r\n- [Y ] I checked the documentation and found no answer\r\n- [ Y] I checked to make sure that this issue has not already been filed\r\n- [ Y] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ Y] I have read and checked all configs (with all optional parts)\r\n- [ Y] I'm aware that configs now are in `custom/conf/`\r\n\r\n\r\n# Expected Behavior\r\nI want to be able to do analysis in linux guest machine.\r\n\r\n# Current Behavior\r\n\r\nI am unable to find the linux version that is compatible , Whenever I try to shift python architecture to 32 bit to run agent.py I seem\r\nto lose internet and have some display errors on my nested vm.\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nI used following commands from cape documentation on x64 bit linux:\r\n\r\n$ sudo dpkg --add-architecture i386\r\n$ sudo apt update\r\n$ sudo apt install python3:i386 -y\r\n$ sudo apt install python3-distutils -y\r\n$ sudo apt install systemtap-runtime -y\r\n$ curl -sSL https://bootstrap.pypa.io/get-pip.py -o get-pip.py\r\n$ python3 get-pip.py\r\n$ python3 -m pip install pyinotify\r\n$python3 /path/to/agent.py\r\n\r\nFollowing are the commands I used to in 32bit OS:\r\n$ sudo apt update\r\n$ sudo apt install python3-pip systemtap-runtime\r\n$ pip3 install pyinotify\r\nAnd also changed python version to 3.7.9 that is compatible with the agent.\r\n\r\n## Context\r\n I am currently running CAPEv2 for doing malware analysis, I have been doing analysis on windows 10 guest machine but I want to enable a linux machine for analysis. I have tried a number of liunx OS like ubuntu 16.04, 18.04, 20.04 but as we know that agent of cape runs on 32 bit python so by running the commands given in cape documentation I seem to lose functionalities in the machines like loss of terminal or loss of internet etc , I can make the agent run but lose internet access in the machine due to changing python architecture.\r\n\r\nCan you suggest me which ubuntu version or any other linux to use, and why am I getting these kind of problems even by following the commands on cape document.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 16.04, Ubuntu 18.04, Ubuntu 20.04 \r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: if i remember correctly you can run x64 python agent just fine, x32 is required for windows, i will add check for that. the x32 was some systemtap libraries, test it with x64 and let me know if that works\nComment: I took the agent.py file from agent folder in cape sandbox there is only one agent.py , and when I try to run it on x64 OS I get error that you need x86 python version.\nComment: yes you can remove that check\nComment: can you please elaborate how, cause it is not executing agent.py at x64. Thank you in advance \nComment: just remove those lines https://github.com/kevoreilly/CAPEv2/blob/master/agent/agent.py#L32-L34\nComment: Okay let me try and get back to you.\nComment: i have updated agent, you can use new agent it now checks that only on windows\nComment: Okay thank you.\nComment: works?\nComment: Yes the agent file did not gave the same error as before but it kept on running without giving an output. I checked its status by\r\n \"ps aux | grep agent.py\" command and got this output \r\n\" 1626  0.0  0.0  14936   720 pts/0    S+   10:13   0:00 grep --color=auto agent.py\"\r\nI think that means its running?\r\nbut when I tried to submit a sample to it for analysis I still seem to get the same error as before, as shown in image attached.\r\n\r\n![01](https://user-images.githubusercontent.com/118333194/222337437-1e9961b7-34eb-48a9-acd0-741200ec3679.PNG)\r\n\nComment: No that is just finding your grep\n\nEl jue, 2 mar 2023 6:16, MU-03 ***@***.***> escribi\u00f3:\n\n> Yes the agent file did not gave the same error as before but it kept on\n> running without giving an output. I checked its status by\n> \"ps aux | grep agent.py\" command and got this output\n> \" 1626 0.0 0.0 14936 720 pts/0 S+ 10:13 0:00 grep --color=auto agent.py\"\n> I think that means its running?\n> but when I tried to submit a sample to it for analysis I still seem to get\n> the same error as before, as shown in image attached.\n>\n> [image: 01]\n> <https://user-images.githubusercontent.com/118333194/222337437-1e9961b7-34eb-48a9-acd0-741200ec3679.PNG>\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1400#issuecomment-1451314709>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH34MRDYXALZB3KARIBTW2AULHANCNFSM6AAAAAAVLU626E>\n> .\n> You are receiving this because you commented.Message ID:\n> ***@***.***>\n>\n\nComment: Oh, it kept running for a long time without any output.\nComment: how did you start agent inside of the vm? + the error msg of cape says that you need to enable linux analysis in config if i remember correctly is in web.conf\nComment: By running \"python3 path/to/agent.py\"\r\n\r\nyeah I found this in web.conf\r\n#enable linux fields on webgui\r\n[linux]\r\n#For advanced users only, can be buggy, linux analysis is work in progress for fun\r\nenabled = no\nComment: and did you test that host can reach the agent as docs says by using curl? + docs says how to run agent, is way much better to run it as root's cron on `@reboot`\nComment: Yeah the host can reach guest agent when the command is running ,as in when I get no output. Yeah I have put this in crontab but wanted to make sure it runs first. \r\nI enabled the linux field in web.conf but still getting same output in cape GUI that linux binary analysis is not enabled.\r\n\nComment: give me full path of config in which you enabled it\nComment: /opt/CAPEv2/conf/web.conf \nComment: then why did you mark as try this? `[ Y] I'm aware that configs now are in custom/conf/`\nComment: I am sorry I think I miss read this, my custom folder only has a readme file. \r\nThank you for your help.\nComment: NEVER lie in those questions they could save us a lot of time as you see. for some reason we put them",
+  "Title: Change quarantine file submission\nBody: None\nComment: thanks",
+  "Title: Unable to bind ResultServer on wrong IP\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n* Free support from doomedraven ended - no whiskey, no support. For updates check the documentation.\r\n\r\n# Prerequisites\r\n\r\n- Install and configure all services\r\n- Install and snapshot VM\r\n- Launch cape.service or manualy launch cuckoo.py\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [X] I did read the README!\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nCape should read and bind my IP 192.168.122.1 as setup in conf file\r\n\r\n# Current Behavior\r\n\r\nCape won't bind ResultServer on my host IP, it tries to bind on IP 192.168.1.1:2042\r\n\r\n# Failure Information (for bugs)\r\n\r\nI correctly setuped Result server ip in cuckoo.conf that points to 192.168.122.1:2042\r\nI restarted all services and rebooted too.\r\n\r\nThen i tried to set result server IP to 0.0.0.0 and put it manually on kvm.conf (current setup)\r\n\r\nI found a issue that hasn't been resolved about my problem : https://github.com/CheckPointSW/Cuckoo-AWS/issues/8\r\n\r\nI tried to manually boot and stop vm to enable interface but doesn't work too\r\n\r\n## Steps to Reproduce\r\n\r\n1. Install and configure all services\r\n2. Install and snapshot VM\r\n3. Launch cape.service or manually launch cuckoo.py\r\n\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | latest\r\n| OS version       | Ubuntu 22.04 LTS x64\r\n\r\n## Failure Logs\r\n\r\n```\r\ncape.service trace : \r\n\r\n2023-02-28 14:24:23,206 [root] CRITICAL: CuckooCriticalError: Unable to bind ResultServer on 192.168.1.1:2042 [Errno 99] Cannot assign requested address. This usually happens when you start Cuckoo without bringing up the virtual interface associated with the ResultServer IP address. Please refer to https://cuckoo.sh/docs/faq/#troubles-problem for more information\r\n```\r\n\r\n```\r\ncuckoo.conf :\r\n\r\n[resultserver]\r\n\r\n# The Result Server is used to receive in real time the behavioral logs\r\n# produced by the analyzer.\r\n# Specify the IP address of the host. The analysis machines should be able\r\n# to contact the host through such address, so make sure it's valid.\r\n# NOTE: if you set resultserver IP to 0.0.0.0 you have to set the option\r\n# `resultserver_ip` for all your virtual machines in machinery configuration.\r\nip = 0.0.0.0\r\n\r\n# Specify a port number to bind the result server on.\r\nport = 2042\r\n```\r\n\r\n```\r\nkvm.conf :\r\n\r\n# (Optional) Specify the IP of the Result Server, as your virtual machine sees it.\r\n# The Result Server will always bind to the address and port specified in cuckoo.conf,\r\n# however you could set up your virtual network to use NAT/PAT, so you can specify here\r\n# the IP address for the Result Server as your machine sees it. If you don't specify an\r\n# address here, the machine will use the default value from cuckoo.conf.\r\n# NOTE: if you set this option you have to set result server IP to 0.0.0.0 in cuckoo.conf.\r\n# Example:\r\nresultserver_ip = 192.168.122.1\r\n\r\n# (Optional) Specify the port for the Result Server, as your virtual machine sees it.\r\n# The Result Server will always bind to the address and port specified in cuckoo.conf,\r\n# however you could set up your virtual network to use NAT/PAT, so you can specify here\r\n# the port for the Result Server as your machine sees it. If you don't specify a port\r\n# here, the machine will use the default value from cuckoo.conf.\r\n# Example:\r\n# resultserver_port = 2042\r\n```\r\n\r\n\r\n\nComment: Thanks for your help.\nComment: Find out, the good config files were under custom/\r\nI edited them and it works properly.\nComment: i suggest you to watch changelog.md \nComment: > Find out, the good config files were under custom/ I edited them and it works properly.\r\n\r\nMay i know which file and in where directory that you edit? Thank you",
+  "Title: SignUp issue! ReCaptcha!\nBody: I have problem with Sign Up to your service. To be precise, I have problem seeing reCatcha. So, could you tell me why is this happening?\nComment: @baya007: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: I am pretty new to GIT, so could you tell me what do you mean by this: \"Not following issue template\"? Thank you and sorry for my boring questions.\nComment: when you creating issue there was questions, you just removed them instead of fill them properly\nComment: captcha now is visible, but again as template says this is NOT a place to ask for capesandbox account. you need to read template always before fully remove it",
+  "Title: Changing the column type of Task.options to Text with no length limit\nBody: When submitting multiple exports to be executed in a Dll (fixed in https://github.com/kevoreilly/CAPEv2/pull/1392 and https://github.com/kevoreilly/CAPEv2/pull/1390/commits/8c9e9182ec8c1ef8b97b2908e44a0027fb6d18d4), the \"options\" field can get larger than 1024, therefore convert to Text so that we can add these tasks to the database.\r\n\r\nThis is on par with how Cuckoo handles the options column https://github.com/cuckoosandbox/cuckoo/blob/master/cuckoo/core/database.py#L331\nComment: I will review once im back, i also need to drop the parent id field\nComment: ok here we have a small problem, fixing it\r\n\r\n```\r\n02af0b0ec686 -> a8441ab0fd0f (head), 2_4_0_change_options_to_text\r\n02af0b0ec686 -> d6aa5d949b70 (head), Add 'reserved' column for machines\r\n```",
+  "Title: Bug fix\nBody: Remove extra </div>",
+  "Title: Cape sandbox unable to run agent.py in Linux nested vm\nBody: \r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [Yes ] I am running the latest version\r\n- [ Yes] I did read the README!\r\n- [ Yes] I checked the documentation and found no answer\r\n- [Yes] I checked to make sure that this issue has not already been filed\r\n- [ Yes] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ yes] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nI want to able to run analysis through linux nested vm in cape sandbox.\r\n\r\n# Current Behavior\r\nI am trying to run linux machine in cape sandbox for analysis , I tried using ubuntu 16.04, 18.04, 20.04 but by changing python version and architecture to 32 bit I get functionality limitation and agent still does not run.\r\n\r\n\r\nCan I get guidance on which ubuntu version to use that can easily run agent.py.\r\n\r\n\r\n\r\n\r\n\r\n\nComment: @MU-03: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.",
+  "Title: Update uwsgi cape.ini\nBody: update the uwsgi .ini file to have parity with the config in the documentation: https://capev2.readthedocs.io/en/latest/usage/web.html#best-practices-for-production\nComment: thanks, for production it better to put nginx in front of uwsgi, specially if is internet facing\nComment: thanks",
+  "Title: Using pipes instead of commas since get_options cannot handle comma d\u2026\nBody: \u2026elimiters per option\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/9f252cc4817977055188a4590a106e5229243bfb/lib/cuckoo/common/utils.py#L853\nComment: so that would be function=1|2|3?\nComment: > so that would be function=1|2|3?\r\n\r\nCorrect!\nComment: But aren't colons used for this elsewhere, e.g. exclude-apis=func1:func2\nComment: ah yes that true\nComment: i have replaced pipe by colon to keep it consistent \nComment: Thanks \ud83d\udc4d \nComment: Thanks team!\nComment: I do wonder if some more brainstorming could be useful on the tricky subject of 'hidden' exports - looks like my recent feature for using yara to select an export will be undermined by the AL solution picking another export first.\nComment: > I do wonder if some more brainstorming could be useful on the tricky subject of 'hidden' exports - looks like my recent feature for using yara to select an export will be undermined by the AL solution picking another export first.\r\n\r\nThis commit? https://github.com/kevoreilly/CAPEv2/commit/0b1a634709535ce004475806968382fe349ef780\nComment: Well that is one example of the technique. To understand its mechanism the relevanr capemon commit is: https://github.com/kevoreilly/capemon/commit/64d21309ad498819a678e640324c71c5feeba93b\r\n\r\nThis mechanism relies on the dll being submitted with the default export '#1' and then allowing an address set by monitor yara to override the return value from the LdrGetProcedureAddress hook.\nComment: @doomedraven also uses another solution at his $dayjob whereby multiple exports are executed in multi-threaded fashion by a custom compiled loader - this is more similar to the AL logic as it relies on brute force or other more generic tests. The ideal would surely be to allow for both mechanisms to work alongside each other harmoniously. \nComment: Right right. The AL solution is what our reverse engineering team came up with to cover all Dlls that we receive for analysis. I agree, it would ideal to have a \"best of both worlds\" solution.",
+  "Title: Adding community flag for pulling only YARA\nBody: None",
+  "Title: CAPE 2.4\nBody: None",
+  "Title: Config files aren't being update after restart/reboot\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n* Free support from doomedraven ended - no whiskey, no support. For updates check the documentation.\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x ] I am running the latest version\r\n- [ x] I did read the README!\r\n- [ x] I checked the documentation and found no answer\r\n- [ x] I checked to make sure that this issue has not already been filed\r\n- [ x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nChanging the config files of the api and web should allow me to delete tasks and submit url's for analysis\r\n\r\n# Current Behavior\r\n\r\nI do not see an url tab or see that deleting tasks is enabled in the api tab.\r\n\r\n# Failure Information (for bugs)\r\n\r\napi.conf:\r\n```[taskdelete]\r\nenabled = yes\r\nauth_only = no\r\nrps = 1/s\r\nrpm = 5/m\r\n```\r\nresults after restarting cape:\r\n![image](https://user-images.githubusercontent.com/45184251/220872142-bfcfcea0-d9b5-4ee7-bff1-a0dd93f6c177.png)\r\n\r\nweb.conf\r\n```[malscore]\r\nenabled = yes\r\n\r\n[url_analysis]\r\nenabled = yes\r\n```\r\nresults after restaring cape\r\n![image](https://user-images.githubusercontent.com/45184251/220872257-b5319ddf-ce13-4999-980c-6490b9e0a072.png)\r\nand no malscore is given\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. alter api.conf and web.conf\r\n2. restart cape\r\n3. check the dashboard of the api tab\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | commit https://github.com/kevoreilly/CAPEv2/commit/9cca711f4f7c250f2b150c4ea9e62dd6b5e35cc0\r\n| OS version       | Ubuntu 22.04\r\n\r\n## Failure Logs\r\n\r\nHavent found any, checked cape.service, cape-webservice and cape-processing havent found any errors.\r\n\nComment: There seems to be some issue with terminology here. You say 'after restarting cape' and even use the word reboot in the title. Let's be specific as it will facilitate concise communication and understanding.\r\n\r\nYou don't need to reboot anything for starters. When you say 'restart cape' I can only assume you mean restart the cape service with something like `sudo systemctl restart cape`. The problem here is you need to start the web service. So this is 'sudo systemctl restart cape-web'.\r\n\r\nPlease use more precise and specific language when describing your actions so we can understand exactly what you have done rather than your stated intention.\nComment: for web things you only have to restart cape-web.service, but check if you don't have copy of those configs under `custom/conf`\nComment: @kevoreilly i was stating i rebooted the OS and restarted the service to make sure i wasnt missing anything \ud83d\ude13 \r\n\nComment: i ran the full command to restart all the services with `sudo systemctl restart cape-processor.service cape-rooter.service cape-web.service cape.service`\nComment: what about custom folder configs?\nComment: Aha well that is one way of restarting everything \ud83d\ude04 \nComment: @doomedraven I do have files in there \ud83e\udd26\u200d\u2642\ufe0f, i didnt notice these files. Must also explain why the resultserver config didn't change after i edited it.\nComment: there is a readme in config folder and there is entry in CAPE's changelog, update those, never touch anymore /conf/ and you won't have problems on update, so only use custom/conf for all your mods",
+  "Title: Proccessing errors\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n* Free support from doomedraven ended - no whiskey, no support. For updates check the documentation.\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [\u2714 ] I am running the latest version\r\n- [ \u2714] I did read the README!\r\n- [\u2714 ] I checked the documentation and found no answer\r\n- [\u2714 ] I checked to make sure that this issue has not already been filed\r\n- [\u2714 ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ \u2714] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nI wanted to see the same results as the public cape instance, like file details and downloading sysmon/evtx files. but they dont appear for me. I think its because of the processing errors i have been getting.\r\n\r\n# Current Behavior\r\n\r\nIt generates some errors and i think thats the reason why i cant download the collected data. However if cd into the dir where analysis results are i can see the zip files of the evtx files and such.\r\n\r\n# Failure Information (for bugs)\r\n\r\nI think some of the errors are caused by a pcap file which doesnt exists\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. step 1\r\n2. step 2\r\n3. you get it...\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | commit 9cca711f4f7c250f2b150c4ea9e62dd6b5e35cc0\r\n| OS version       | Ubuntu 22.04\r\n\r\n## Failure Logs\r\n`/opt/CAPEv2/logs/processing.log\r\n```\r\n2023-02-22 15:01:48,140 [root] INFO: Processing analysis data\r\n2023-02-22 15:06:53,660 [Task 1] [root] INFO: Processing analysis data for Task #1\r\n2023-02-22 15:06:53,704 [Task 1] [lib.cuckoo.core.plugins] ERROR: Failed to load the processing module \"<class 'modules.processing.CAPE.CAPE'>\": CAPE.__init__() takes 1 positional argument but 2 were given\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 211, in process\r\n    current = module(self.results)\r\nTypeError: CAPE.__init__() takes 1 positional argument but 2 were given\r\n2023-02-22 15:06:54,186 [Task 1] [modules.processing.network] WARNING: The PCAP file does not exist at path \"/opt/CAPEv2/storage/analyses/1/dump.pcap\"\r\n2023-02-22 15:06:54,187 [Task 1] [modules.processing.suricata] WARNING: Unable to Run Suricata: Pcap file /opt/CAPEv2/storage/analyses/1/dump.pcap does not exist. Did you run analysis with live connection?\r\n2023-02-22 15:06:54,188 [Task 1] [lib.cuckoo.core.plugins] ERROR: Failed to run the processing module \"extract_overlay_data\": 'extract_overlay_data' object has no attribute 'key'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 249, in process\r\n    return {current.key: data}\r\nAttributeError: 'extract_overlay_data' object has no attribute 'key'\r\n2023-02-22 15:08:34,697 [Task 1] [lib.cuckoo.core.plugins] ERROR: Failed to run the reporting module \"Malheur\": 'target'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 719, in process\r\n    current.run(self.results)\r\n  File \"/opt/CAPEv2/utils/../modules/reporting/malheur.py\", line 153, in run\r\n    if results[\"target\"][\"category\"] in [\"pcap\"]:\r\nKeyError: 'target'\r\n2023-02-22 15:08:52,983 [Task 1] [lib.cuckoo.core.plugins] WARNING: The reporting module \"ReportHTML\" returned the following error: Failed to generate summary HTML report: 'dict object' has no attribute 'CAPE'\r\n2023-02-22 15:08:53,039 [Task 1] [lib.cuckoo.core.plugins] WARNING: The reporting module \"ReportHTMLSummary\" returned the following error: Failed to generate summary HTML report: 'dict object' has no attribute 'CAPE'\r\n2023-02-22 15:08:53,531 [Task 1] [root] INFO: Reports generation completed\r\n```\r\n\nComment: all the problem is due to `CAPE.__init__()` but that is old code. you linking that you are on latest commit and that you updated, but code that runs in your project is 2 weeks old https://github.com/kevoreilly/CAPEv2/commit/a0ef25e879cddf536583eca4811e2e1dbf7ef775. update your side properly\nComment: i deleted the /opt/capev2/ folder, is there something else i have to do in order to update it properly?\r\n\r\nedit: i also ran the cape2.sh after deleting the folder\nComment: normally `git pull` is enough. if you have some private mods you have more instructions in readme\nComment: you mean a `git pull` from the `/opt/CAPEv2` directory?\nComment: Yes\n\nEl mi\u00e9, 22 feb 2023 16:39, RoemIko ***@***.***> escribi\u00f3:\n\n> you mean a git pull from the /opt/CAPEv2 directory?\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1388#issuecomment-1440273997>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3367PO4GRXX3KV2OITWYYXKNANCNFSM6AAAAAAVEOXSOA>\n> .\n> You are receiving this because you commented.Message ID:\n> ***@***.***>\n>\n",
+  "Title: Update Crypto to Cryptodome\nBody: None",
+  "Title: Pytest pretty\nBody: None",
+  "Title: Tests2\nBody: None",
+  "Title: fix: retrieving mongodb config file\nBody: Apologies, but ConfigParser parses configuration files case-insensitively. I had set this behaviour globally on my testing environment and only saw the error when pushing to my production.\r\n\r\n_Reference_: https://stackoverflow.com/a/19359720/19723226",
+  "Title: feat: add TLS support for mongodb\nBody: From pymongo's `MongoClient` class documentation:\r\n\r\n```\r\n          | **TLS/SSL configuration:**\r\n\r\n          - `tlsCAFile`: A file containing a single or a bundle of\r\n            \"certification authority\" certificates, which are used to validate\r\n            certificates passed from the other end of the connection.\r\n            Implies ``tls=True``. Defaults to ``None``.\r\n```",
+  "Title: Update test_file_extra_info.py\nBody: None",
+  "Title: Bug fix\nBody: None\nComment: Write test to not spot bug \ud83e\udd23",
+  "Title: Put locations here that you want to protect. Do NOT put Path.cwd() or \"C:\\\\tmp*\"...\nBody: as this will crash CAPE. Type to cherry-pick directories that are important to your analysis.\n\nhttps://github.com/kevoreilly/CAPEv2/blob/139061a495482ed45c1fde0452dd76c77d1b5ae3/analyzer/windows/modules/auxiliary/permissions.py#L29\n\n```python\n\n    def start(self):\n        if not self.enabled:\n            return False\n\n        # TODO: Put locations here that you want to protect. Do NOT put Path.cwd() or \"C:\\\\tmp*\" in the locations list,\n        # as this will crash CAPE. Type to cherry-pick directories that are important to your analysis.\n        locations = []\n\n        log.debug(\"Adjusting permissions for %s\", locations)\n        for location in locations:\n\n\n```",
+  "Title: upx and vbe\nBody: None",
+  "Title: Removing default locations to have permissins modified for, adding wa\u2026\nBody: \u2026rning\r\n\r\nRelative to https://github.com/kevoreilly/CAPEv2/issues/1376#issuecomment-1433742494\nComment: thank you",
+  "Title: remove unused parameters\nBody: None\nComment: already done in tests PR, but thanks",
+  "Title: [Win 10] Permssion denied error\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n* Free support from doomedraven ended - no whiskey, no support. For updates check the documentation.\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [\u2714] I am running the latest version\r\n- [\u2714 ] I did read the README!\r\n- [\u2714 ] I checked the documentation and found no answer\r\n- [\u2714 ] I checked to make sure that this issue has not already been filed\r\n- [\u2714 ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [\u2714 ] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nExpect the agent to work correctly with right permissions.\r\n\r\n# Current Behavior\r\n\r\nWhenever i upload a sample it fails, because of permissions\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Upload sample\r\n2. Choose Win 10\r\n3. Submit\r\n\r\n## Context\r\n\r\nCape is running on Ubuntu 22.04 with KVM machinery which has Windows 10 64 bit device with python 3.10 32 bit running python has been added to path and the host is isolated and there is communication. The agent is running with highest priviliges from a scheduled task. Whenever i upload an sample it seems to fail at a certain point. I have tried many ways to get the agent running as admin which i assume is. I have set the C:/ drive for anyone to be accesible. \r\nI have connected to the VM and see the directories being made, but it seems to fail the moment it tries to read the PID.ini file in /dll/.\r\nThe firewall has been shutoff and windows defender has also been turned off.\r\n\r\nAny tips or ideas would be appreciated\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| OS version       | Ubuntu 22.04\r\n\r\n## Failure Logs\r\n\r\nLogs from the web interface\r\n```\r\n2023-02-15 15:18:35,104 [root] INFO: Date set to: 20230216T12:49:15, timeout set to: 200\r\n2023-02-16 12:49:17,366 [root] DEBUG: Starting analyzer from: C:\\tmpxc7l_qzp\r\n2023-02-16 12:49:17,366 [root] DEBUG: Storing results at: C:\\SahBbkKy\r\n2023-02-16 12:49:17,366 [root] DEBUG: Pipe server name: \\\\.\\PIPE\\pYQZHPmtE\r\n2023-02-16 12:49:17,366 [root] DEBUG: Python path: C:\\Users\\ApaTolos\\AppData\\Local\\Programs\\Python\\Python311-32\r\n2023-02-16 12:49:17,382 [root] INFO: Analysis package \"exe\" has been specified\r\n2023-02-16 12:49:17,382 [root] DEBUG: Importing analysis package \"exe\"...\r\n2023-02-16 12:49:17,382 [root] DEBUG: Initializing analysis package \"exe\"...\r\n2023-02-16 12:49:17,382 [root] DEBUG: New location of moved file: C:\\Users\\ApaTolos\\AppData\\Local\\Temp\\HelloWorld.exe\r\n2023-02-16 12:49:17,382 [root] INFO: Analyzer: Package modules.packages.exe does not specify a DLL option\r\n2023-02-16 12:49:17,382 [root] INFO: Analyzer: Package modules.packages.exe does not specify a DLL_64 option\r\n2023-02-16 12:49:17,382 [root] INFO: Analyzer: Package modules.packages.exe does not specify a loader option\r\n2023-02-16 12:49:17,382 [root] INFO: Analyzer: Package modules.packages.exe does not specify a loader_64 option\r\n2023-02-16 12:49:17,994 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.browser\"...\r\n2023-02-16 12:49:18,024 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.curtain\"...\r\n2023-02-16 12:49:18,056 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.digisig\"...\r\n2023-02-16 12:49:18,151 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.disguise\"...\r\n2023-02-16 12:49:18,304 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.during_script\"...\r\n2023-02-16 12:49:18,304 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.evtx\"...\r\n2023-02-16 12:49:18,335 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.filepickup\"...\r\n2023-02-16 12:49:18,366 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.human\"...\r\n2023-02-16 12:49:18,382 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.permissions\"...\r\n2023-02-16 12:49:18,398 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.pre_script\"...\r\n2023-02-16 12:49:18,398 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.procmon\"...\r\n2023-02-16 12:49:18,398 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.screenshots\"...\r\n2023-02-16 12:49:18,429 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageChops'\r\n2023-02-16 12:49:18,638 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageGrab'\r\n2023-02-16 12:49:18,638 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageDraw'\r\n2023-02-16 12:49:18,648 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.sysmon\"...\r\n2023-02-16 12:49:18,663 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.tlsdump\"...\r\n2023-02-16 12:49:18,663 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.usage\"...\r\n2023-02-16 12:49:18,663 [root] DEBUG: Initialized auxiliary module \"Browser\"\r\n2023-02-16 12:49:18,663 [root] DEBUG: Trying to start auxiliary module \"Browser\"...\r\n2023-02-16 12:49:18,679 [root] DEBUG: Started auxiliary module \"Browser\"\r\n2023-02-16 12:49:18,679 [root] DEBUG: Started auxiliary module Browser\r\n2023-02-16 12:49:18,679 [root] DEBUG: Initialized auxiliary module \"Curtain\"\r\n2023-02-16 12:49:18,679 [root] DEBUG: Trying to start auxiliary module \"Curtain\"...\r\n2023-02-16 12:49:18,679 [root] DEBUG: Started auxiliary module \"Curtain\"\r\n2023-02-16 12:49:18,679 [root] DEBUG: Started auxiliary module Curtain\r\n2023-02-16 12:49:18,679 [root] DEBUG: Initialized auxiliary module \"DigiSig\"\r\n2023-02-16 12:49:18,679 [root] DEBUG: Trying to start auxiliary module \"DigiSig\"...\r\n2023-02-16 12:49:18,679 [modules.auxiliary.digisig] DEBUG: Checking for a digital signature\r\n2023-02-16 12:49:19,366 [modules.auxiliary.digisig] DEBUG: File is not signed\r\n2023-02-16 12:49:19,366 [modules.auxiliary.digisig] INFO: Uploading signature results to aux/DigiSig.json\r\n2023-02-16 12:49:19,383 [root] DEBUG: Started auxiliary module \"DigiSig\"\r\n2023-02-16 12:49:19,383 [root] DEBUG: Started auxiliary module DigiSig\r\n2023-02-16 12:49:19,383 [root] DEBUG: Initialized auxiliary module \"Disguise\"\r\n2023-02-16 12:49:19,383 [root] DEBUG: Trying to start auxiliary module \"Disguise\"...\r\n2023-02-16 12:49:19,383 [modules.auxiliary.disguise] INFO: Disguising GUID to 25e78f6a-04e3-4faa-b061-6ed0aed275b2\r\n2023-02-16 12:49:19,383 [root] DEBUG: Started auxiliary module \"Disguise\"\r\n2023-02-16 12:49:19,383 [root] DEBUG: Started auxiliary module Disguise\r\n2023-02-16 12:49:19,383 [root] DEBUG: Initialized auxiliary module \"Evtx\"\r\n2023-02-16 12:49:19,383 [root] DEBUG: Trying to start auxiliary module \"Evtx\"...\r\n2023-02-16 12:49:19,383 [root] DEBUG: Started auxiliary module \"Evtx\"\r\n2023-02-16 12:49:19,383 [root] DEBUG: Started auxiliary module Evtx\r\n2023-02-16 12:49:19,383 [root] DEBUG: Initialized auxiliary module \"FilePickup\"\r\n2023-02-16 12:49:19,383 [root] DEBUG: Trying to start auxiliary module \"FilePickup\"...\r\n2023-02-16 12:49:19,383 [root] DEBUG: Started auxiliary module \"FilePickup\"\r\n2023-02-16 12:49:19,383 [root] DEBUG: Started auxiliary module FilePickup\r\n2023-02-16 12:49:19,383 [root] DEBUG: Initialized auxiliary module \"Human\"\r\n2023-02-16 12:49:19,383 [root] DEBUG: Trying to start auxiliary module \"Human\"...\r\n2023-02-16 12:49:19,398 [root] DEBUG: Started auxiliary module \"Human\"\r\n2023-02-16 12:49:19,398 [root] DEBUG: Started auxiliary module Human\r\n2023-02-16 12:49:19,398 [root] DEBUG: Initialized auxiliary module \"Permissions\"\r\n2023-02-16 12:49:19,398 [root] DEBUG: Trying to start auxiliary module \"Permissions\"...\r\n2023-02-16 12:49:19,398 [modules.auxiliary.permissions] DEBUG: Adjusting permissions for [WindowsPath('C:/tmpxc7l_qzp'), 'C:\\\\tmp*']\r\n2023-02-16 12:49:35,320 [modules.auxiliary.permissions] WARNING: 'Modify admin' call was unable to complete in 15 seconds\r\n2023-02-16 12:49:50,335 [modules.auxiliary.permissions] WARNING: 'Inheritance' call was unable to complete in 15 seconds\r\n2023-02-16 12:49:50,335 [root] DEBUG: Started auxiliary module \"Permissions\"\r\n2023-02-16 12:49:50,356 [root] DEBUG: Started auxiliary module Permissions\r\n2023-02-16 12:49:50,398 [root] DEBUG: Initialized auxiliary module \"Pre_script\"\r\n2023-02-16 12:49:50,398 [root] DEBUG: Trying to start auxiliary module \"Pre_script\"...\r\n2023-02-16 12:49:50,429 [root] DEBUG: Started auxiliary module \"Pre_script\"\r\n2023-02-16 12:49:50,446 [root] DEBUG: Started auxiliary module Pre_script\r\n2023-02-16 12:49:50,460 [root] DEBUG: Initialized auxiliary module \"Procmon\"\r\n2023-02-16 12:49:50,460 [root] DEBUG: Trying to start auxiliary module \"Procmon\"...\r\n2023-02-16 12:49:50,460 [root] DEBUG: Started auxiliary module \"Procmon\"\r\n2023-02-16 12:49:50,460 [root] DEBUG: Started auxiliary module Procmon\r\n2023-02-16 12:49:50,460 [root] DEBUG: Initialized auxiliary module \"Screenshots\"\r\n2023-02-16 12:49:50,460 [root] DEBUG: Trying to start auxiliary module \"Screenshots\"...\r\n2023-02-16 12:49:50,477 [root] DEBUG: Started auxiliary module \"Screenshots\"\r\n2023-02-16 12:49:50,477 [root] DEBUG: Started auxiliary module Screenshots\r\n2023-02-16 12:49:50,477 [root] DEBUG: Initialized auxiliary module \"Sysmon\"\r\n2023-02-16 12:49:50,477 [root] DEBUG: Trying to start auxiliary module \"Sysmon\"...\r\n2023-02-16 12:49:50,477 [root] DEBUG: Started auxiliary module \"Sysmon\"\r\n2023-02-16 12:49:50,477 [root] DEBUG: Started auxiliary module Sysmon\r\n2023-02-16 12:49:50,477 [root] DEBUG: Initialized auxiliary module \"TLSDumpMasterSecrets\"\r\n2023-02-16 12:49:50,477 [root] DEBUG: Trying to start auxiliary module \"TLSDumpMasterSecrets\"...\r\n2023-02-16 12:49:50,491 [modules.auxiliary.tlsdump] INFO: lsass.exe found, pid 688\r\n2023-02-16 12:49:50,757 [lib.api.process] INFO: Monitor config for process 688: C:\\tmpxc7l_qzp\\dll\\688.ini\r\n2023-02-16 12:49:50,789 [root] WARNING: Cannot execute auxiliary module TLSDumpMasterSecrets: [Errno 13] Permission denied: 'C:\\\\tmpxc7l_qzp\\\\dll\\\\688.ini'\r\n2023-02-16 12:49:50,804 [root] DEBUG: Initialized auxiliary module \"Usage\"\r\n2023-02-16 12:49:50,804 [root] DEBUG: Trying to start auxiliary module \"Usage\"...\r\n2023-02-16 12:49:50,804 [root] DEBUG: Started auxiliary module \"Usage\"\r\n2023-02-16 12:49:50,804 [root] DEBUG: Started auxiliary module Usage\r\n2023-02-16 12:49:50,820 [root] DEBUG: Initialized auxiliary module \"During_script\"\r\n2023-02-16 12:49:50,820 [root] DEBUG: Trying to start auxiliary module \"During_script\"...\r\n2023-02-16 12:49:50,820 [root] DEBUG: Started auxiliary module \"During_script\"\r\n2023-02-16 12:49:50,820 [root] DEBUG: Started auxiliary module During_script\r\n2023-02-16 12:49:56,979 [root] INFO: Restarting WMI Service\r\n2023-02-16 12:49:59,443 [lib.core.compound] INFO: C:\\Users\\ApaTolos\\AppData\\Local\\Temp already exists, skipping creation\r\n2023-02-16 12:49:59,521 [lib.api.process] INFO: Successfully executed process from path \"C:\\Users\\ApaTolos\\AppData\\Local\\Temp\\HelloWorld.exe\" with arguments \"\" with pid 772\r\n2023-02-16 12:49:59,521 [lib.api.process] INFO: Monitor config for process 772: C:\\tmpxc7l_qzp\\dll\\772.ini\r\n2023-02-16 12:49:59,536 [root] INFO: You probably submitted the job with wrong package\r\nTraceback (most recent call last):\r\n  File \"C:\\tmpxc7l_qzp\\analyzer.py\", line 523, in run\r\n    pids = self.package.start(self.target)\r\n           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\r\n  File \"C:\\tmpxc7l_qzp\\modules\\packages\\exe.py\", line 37, in start\r\n    return self.execute(path, args, path)\r\n           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\r\n  File \"C:\\tmpxc7l_qzp\\lib\\common\\abstracts.py\", line 124, in execute\r\n    p.inject(INJECT_QUEUEUSERAPC, interest)\r\n  File \"C:\\tmpxc7l_qzp\\lib\\api\\process.py\", line 633, in inject\r\n    self.write_monitor_config(interest, nosleepskip)\r\n  File \"C:\\tmpxc7l_qzp\\lib\\api\\process.py\", line 551, in write_monitor_config\r\n    with open(config_path, \"w\", encoding=\"utf-8\") as config:\r\n         ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\r\nPermissionError: [Errno 13] Permission denied: 'C:\\\\tmpxc7l_qzp\\\\dll\\\\772.ini'\r\n\r\nThe above exception was the direct cause of the following exception:\r\n\r\nTraceback (most recent call last):\r\n  File \"C:\\tmpxc7l_qzp\\analyzer.py\", line 1389, in <module>\r\n    success = analyzer.run()\r\n              ^^^^^^^^^^^^^^\r\n  File \"C:\\tmpxc7l_qzp\\analyzer.py\", line 529, in run\r\n    raise CuckooError(f'The package \"{package_name}\" start function encountered an unhandled exception: {e}') from e\r\nlib.common.exceptions.CuckooError: The package \"modules.packages.exe\" start function encountered an unhandled exception: [Errno 13] Permission denied: 'C:\\\\tmpxc7l_qzp\\\\dll\\\\772.ini'\r\n2023-02-16 12:49:59,599 [root] WARNING: Folder at path \"C:\\SahBbkKy\\debugger\" does not exist, skipping\r\n2023-02-16 12:49:59,599 [root] WARNING: Folder at path \"C:\\SahBbkKy\\tlsdump\" does not exist, skipping\r\n2023-02-16 12:49:59,599 [root] INFO: Analysis completed\r\n```\r\n\nComment: the answer is here https://github.com/kevoreilly/CAPEv2/issues/1371\nComment: @doomedraven you mean update CAPEv2 again?\nComment: no, due to the problem to run agent.py with proper permissions, looks like latest win10 broke something and you have to do research how to run it properly, or could be case that you didn't disable properly ms defender.\nComment: @doomedraven could the problem not be windows 10 since both of us have had the same issue of running as admin or system but the agent itself?\nComment: I'll see if adding the agent to the HKLM registry key changes something\r\n\r\nEdit: the agent is now running as a service and from the HKLM registry\r\n\nComment: @RoemIko so when i run just as administrator i get alot of permission denied. However this last one i ran as system i got a permission denied but also got an error for modules.packages.exe\nComment: I dont have that problem i only receive a permission denied in the folder that the cape agent creates, where the <PID>.ini file is located. Even if i run the agent as a system account which is the highest account within Windows.\r\n\r\nBoth windows defender and windows firewall are turned off.\r\n\nComment: i have done the following on the windows host\r\n\r\n```\r\nreg add \"HKEY_LOCAL_MACHINE\\Software\\Microsoft\\Windows\\CurrentVersion\\Run\" /v pizzatime /t REG_SZ /d \"C:\\tmp\\agent.pyw\"\r\nreg add \"HKEY_LOCAL_MACHINE\\Software\\Microsoft\\Windows\\CurrentVersion\\RunOnce\" /v pizzatime /t REG_SZ /d \"C:\\tmp\\agent.pyw\"\r\nreg add \"HKEY_LOCAL_MACHINE\\Software\\Microsoft\\Windows\\CurrentVersion\\RunServices\" /v pizzatime /t REG_SZ /d \"C:\\tmp\\agent.pyw\"\r\nreg add \"HKEY_LOCAL_MACHINE\\Software\\Microsoft\\Windows\\CurrentVersion\\RunServicesOnce\" /v pizzatime /t REG_SZ /d \"C:\\tmp\\agent.pyw\"\r\n```\nComment: What about winfows defender?\n\nEl jue, 16 feb 2023 16:00, RoemIko ***@***.***> escribi\u00f3:\n\n> i have done the following on the windows host\n>\n> reg add \"HKEY_LOCAL_MACHINE\\Software\\Microsoft\\Windows\\CurrentVersion\\Run\" /v pizzatime /t REG_SZ /d \"C:\\tmp\\agent.pyw\"\n> reg add \"HKEY_LOCAL_MACHINE\\Software\\Microsoft\\Windows\\CurrentVersion\\RunOnce\" /v pizzatime /t REG_SZ /d \"C:\\tmp\\agent.pyw\"\n> reg add \"HKEY_LOCAL_MACHINE\\Software\\Microsoft\\Windows\\CurrentVersion\\RunServices\" /v pizzatime /t REG_SZ /d \"C:\\tmp\\agent.pyw\"\n> reg add \"HKEY_LOCAL_MACHINE\\Software\\Microsoft\\Windows\\CurrentVersion\\RunServicesOnce\" /v pizzatime /t REG_SZ /d \"C:\\tmp\\agent.pyw\"\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1376#issuecomment-1433220369>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH34S5KYYJUAJR4JPXXDWXY6JRANCNFSM6AAAAAAU6FJ6SU>\n> .\n> You are receiving this because you were mentioned.Message ID:\n> ***@***.***>\n>\n\nComment: That one is also disabled @doomedraven \r\n\nComment: What win10 build? Latest?\n\nEl jue, 16 feb 2023 16:15, RoemIko ***@***.***> escribi\u00f3:\n\n> That one is also disabled @doomedraven <https://github.com/doomedraven>\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1376#issuecomment-1433245688>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH37DS5EAJRPCGX4OIMLWXY77TANCNFSM6AAAAAAU6FJ6SU>\n> .\n> You are receiving this because you were mentioned.Message ID:\n> ***@***.***>\n>\n\nComment: ![image](https://user-images.githubusercontent.com/45184251/219416944-6b5cdfb7-2e74-4d02-8377-49b922ef172a.png)\r\nversion 22h2 OS build 19045.2006\nComment: I'm running\r\nEdition - Windows 10 Home\r\nVersion - 1903\r\nOS Build - 18362.356\nComment: This one should be working just fine weird\n\nEl jue, 16 feb 2023 16:49, RoemIko ***@***.***> escribi\u00f3:\n\n> [image: image]\n> <https://user-images.githubusercontent.com/45184251/219416944-6b5cdfb7-2e74-4d02-8377-49b922ef172a.png>\n> version 22h2 OS build 19045.2006\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1376#issuecomment-1433302419>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH37PYUIUNCFPM3IRFR3WXZD7RANCNFSM6AAAAAAU6FJ6SU>\n> .\n> You are receiving this because you were mentioned.Message ID:\n> ***@***.***>\n>\n\nComment: I still havent found a solution to this. However quick question for you @RoemIko how did you setup sysmon did you install it on your windows snapshot or does the exe and xml just sit in the bin folder.\r\n\r\nEDIT: I got sysmon working now back to trying to get this permission denied working\nComment: I believe i found where the issue stems from. But i do not know how to fix it.\r\n\r\n2023-02-16 12:49:35,320 [modules.auxiliary.permissions] WARNING: 'Modify admin' call was unable to complete in 15 seconds\r\n2023-02-16 12:49:50,335 [modules.auxiliary.permissions] WARNING: 'Inheritance' call was unable to complete in 15 seconds\r\n\r\nThese errors make me think that the permissions.py is not working correctly.\r\n\r\nEDIT: Also if you look at the properties of the TMP directory that cape is creating. System does not have full control over the folder. With this in mind, it points me towards the permissions.py even more.\r\n\r\nEdit2: Permissions.py uses icacls to make it Administrator not system....\nComment: @C0WB0Y-Ducky what happens if you alter the icacls to system?\r\n\nComment: @RoemIko I have not tried yet, I went to the auxiliary.conf and turned off permissions, re running now so ill let you know if that was work around.\r\n\nComment: @RoemIko I got farther by just turning the permissions auxiliary off than i have yet so in book thats a win.\r\n\nComment: Ah so there is a bug in permissions.py :) \r\n\nComment: Yeah, I got a couple of access denied for disguise.\r\nPermission denied for curtain, evtx and sysmon logs but am getting somewhere.\r\nProbably need to snapshot and try to change the permssions.py for icacls to system.\r\n\r\nEdit: To be honest I have no idea where to start on the icacls thing to change. I don't write in python much.\nComment: @doomedraven I have tried it too and can confirm it works now. Setting permissions to no makes the sandbox work properly\r\n\nComment: Cool, thanks for headups, no idea what permissions.py does \ud83e\udd23\n\nEl jue, 16 feb 2023 21:18, RoemIko ***@***.***> escribi\u00f3:\n\n> @doomedraven <https://github.com/doomedraven> I have tried it too and can\n> confirm it works now. Setting permissions to no makes the sandbox work\n> properly\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1376#issuecomment-1433663790>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH35MJBEGPMYHUFDW45LWX2DQZANCNFSM6AAAAAAU6FJ6SU>\n> .\n> You are receiving this because you were mentioned.Message ID:\n> ***@***.***>\n>\n\nComment: If yall ever fix whatever permissions.py does please comment in here XD\r\n\nComment: @cccs-kevin i see that you is author of that aux module, any tip for them? https://github.com/kevoreilly/CAPEv2/blob/master/analyzer/windows/modules/auxiliary/permissions.py\nComment: Hey all, this auxiliary module was migrated over from a Cuckoo PR https://github.com/cuckoosandbox/cuckoo/pull/3136 and the sole focus of this aux module was to prevent Ransomeware from having the permissions required to encrypt the Python and Cuckoo+CAPE analysis directory. Looks like the permissions are handled differently for these directories https://github.com/kevoreilly/CAPEv2/blob/master/analyzer/windows/modules/auxiliary/permissions.py#L29 with CAPE so I'll revise the module. PR coming soon\r\n\r\n\nComment: Thanks Kevin\n\n> On 16 Feb 2023, at 22:34, cccs-kevin ***@***.***> wrote:\n> \n> \n> Hey all, this auxiliary module was migrated over from a Cuckoo PR cuckoosandbox/cuckoo#3136 <https://github.com/cuckoosandbox/cuckoo/pull/3136> and the sole focus of this aux module was to prevent Ransomeware from having the permissions required to encrypt the Python and Cuckoo+CAPE analysis directory. Looks like the permissions are handled differently for these directories https://github.com/kevoreilly/CAPEv2/blob/master/analyzer/windows/modules/auxiliary/permissions.py#L29 with CAPE so I'll revise the module. PR coming soon\n> \n> \u2014\n> Reply to this email directly, view it on GitHub <https://github.com/kevoreilly/CAPEv2/issues/1376#issuecomment-1433742494>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAOFH3563YT3OTW26NHYRRTWX2MNLANCNFSM6AAAAAAU6FJ6SU>.\n> You are receiving this because you were mentioned.\n> \n\n\nComment: do `git pull`, Kevin pushed fix for you. i guess we can close the issue now?",
+  "Title: Bump werkzeug from 2.2.2 to 2.2.3\nBody: Bumps [werkzeug](https://github.com/pallets/werkzeug) from 2.2.2 to 2.2.3.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a href=\"https://github.com/pallets/werkzeug/releases\">werkzeug's releases</a>.</em></p>\n<blockquote>\n<h2>2.2.3</h2>\n<p>This is a fix release for the 2.2.x release branch.</p>\n<ul>\n<li>Changes: <a href=\"https://werkzeug.palletsprojects.com/en/2.2.x/changes/#version-2-2-3\">https://werkzeug.palletsprojects.com/en/2.2.x/changes/#version-2-2-3</a></li>\n<li>Milestone: <a href=\"https://github.com/pallets/werkzeug/milestone/26?closed=1\">https://github.com/pallets/werkzeug/milestone/26?closed=1</a></li>\n</ul>\n<p>This release contains security fixes for:</p>\n<ul>\n<li><a href=\"https://github.com/pallets/werkzeug/security/advisories/GHSA-xg9f-g7g7-2323\">https://github.com/pallets/werkzeug/security/advisories/GHSA-xg9f-g7g7-2323</a></li>\n<li><a href=\"https://github.com/pallets/werkzeug/security/advisories/GHSA-px8h-6qxv-m22q\">https://github.com/pallets/werkzeug/security/advisories/GHSA-px8h-6qxv-m22q</a></li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/pallets/werkzeug/blob/main/CHANGES.rst\">werkzeug's changelog</a>.</em></p>\n<blockquote>\n<h2>Version 2.2.3</h2>\n<p>Released 2023-02-14</p>\n<ul>\n<li>Ensure that URL rules using path converters will redirect with strict slashes when\nthe trailing slash is missing. :issue:<code>2533</code></li>\n<li>Type signature for <code>get_json</code> specifies that return type is not optional when\n<code>silent=False</code>. :issue:<code>2508</code></li>\n<li><code>parse_content_range_header</code> returns <code>None</code> for a value like <code>bytes */-1</code>\nwhere the length is invalid, instead of raising an <code>AssertionError</code>. :issue:<code>2531</code></li>\n<li>Address remaining <code>ResourceWarning</code> related to the socket used by <code>run_simple</code>.\nRemove <code>prepare_socket</code>, which now happens when creating the server. :issue:<code>2421</code></li>\n<li>Update pre-existing headers for <code>multipart/form-data</code> requests with the test\nclient. :issue:<code>2549</code></li>\n<li>Fix handling of header extended parameters such that they are no longer quoted.\n:issue:<code>2529</code></li>\n<li><code>LimitedStream.read</code> works correctly when wrapping a stream that may not return\nthe requested size in one <code>read</code> call. :issue:<code>2558</code></li>\n<li>A cookie header that starts with <code>=</code> is treated as an empty key and discarded,\nrather than stripping the leading <code>==</code>.</li>\n<li>Specify a maximum number of multipart parts, default 1000, after which a\n<code>RequestEntityTooLarge</code> exception is raised on parsing. This mitigates a DoS\nattack where a larger number of form/file parts would result in disproportionate\nresource use.</li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/pallets/werkzeug/commit/22a254fca2ad0130adbbcbd11d3de51bcb04a08b\"><code>22a254f</code></a> release version 2.2.3</li>\n<li><a href=\"https://github.com/pallets/werkzeug/commit/517cac5a804e8c4dc4ed038bb20dacd038e7a9f1\"><code>517cac5</code></a> Merge pull request from GHSA-xg9f-g7g7-2323</li>\n<li><a href=\"https://github.com/pallets/werkzeug/commit/babc8d9e8c9fa995ef26050698bc9b5a92803664\"><code>babc8d9</code></a> rewrite docs about request data limits</li>\n<li><a href=\"https://github.com/pallets/werkzeug/commit/09449ee77934a0c883f5959785864ecae6aaa2c9\"><code>09449ee</code></a> clean up docs</li>\n<li><a href=\"https://github.com/pallets/werkzeug/commit/fe899d0cdf767a7289a8bf746b7f72c2907a1b4b\"><code>fe899d0</code></a> limit the maximum number of multipart form parts</li>\n<li><a href=\"https://github.com/pallets/werkzeug/commit/cf275f42acad1b5950c50ffe8ef58fe62cdce028\"><code>cf275f4</code></a> Merge pull request from GHSA-px8h-6qxv-m22q</li>\n<li><a href=\"https://github.com/pallets/werkzeug/commit/8c2b4b82d0cade0d37e6a88e2cd2413878e8ebd4\"><code>8c2b4b8</code></a> don't strip leading = when parsing cookie</li>\n<li><a href=\"https://github.com/pallets/werkzeug/commit/7c7ce5cb73f3f7d3b9c09340e4f322aeb583dbc5\"><code>7c7ce5c</code></a> [pre-commit.ci] pre-commit autoupdate (<a href=\"https://github-redirect.dependabot.com/pallets/werkzeug/issues/2585\">#2585</a>)</li>\n<li><a href=\"https://github.com/pallets/werkzeug/commit/19ae03e6a39b3f63fd08fef4fddae4385cdddf25\"><code>19ae03e</code></a> [pre-commit.ci] auto fixes from pre-commit.com hooks</li>\n<li><a href=\"https://github.com/pallets/werkzeug/commit/a83d3b8bf070810874c8e8d03dcce270666e10fe\"><code>a83d3b8</code></a> [pre-commit.ci] pre-commit autoupdate</li>\n<li>Additional commits viewable in <a href=\"https://github.com/pallets/werkzeug/compare/2.2.2...2.2.3\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=werkzeug&package-manager=pip&previous-version=2.2.2&new-version=2.2.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language\n- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language\n- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language\n- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language\n\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: tests\nBody: None",
+  "Title: Allow a machine to be marked as \"reserved\" so that it can only be used if specifically requested.\nBody: It a machine has a config that includes \"reserved = yes\" in the <machinery>.conf file, then that machine will only be used for a task if that machine was selected specifically for that task by the user. This could be useful if you have, say, a new VM that you want to be able to try out but you don't want it in the normal pool.\r\n\r\nNote that this includes a database migration that adds a uniqueness constraint to the 'name' and 'label' columns in the 'machines' table. This seems logical to me, although it did require some test modifications and I'm not sure if users have multiple machines with the same name/label. It seems like other things would break if that were the case.\r\n\r\nAn alternate possible solution to this is using tags. I opted not to do that because it would likely require the use of a special tag like \"reserved\" that behaves unlike any other tag, which seemed like it could cause confusion.\nComment: I've got a small fix to the DB schema in this PR: https://github.com/tbeadle/CAPEv2/pull/1\nComment: Hello both, i like this idea, once i will feel better i will test that on my dev server(bug bulletproof :D)\nComment: thank you, looks good to me, at the moment it goes to staging branch",
+  "Title: Bump django from 4.0.9 to 4.1.7\nBody: Bumps [django](https://github.com/django/django) from 4.0.9 to 4.1.7.\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/django/django/commit/c57ff9ba5e251cd4c2761105a6046662c08f951e\"><code>c57ff9b</code></a> [4.1.x] Bumped version for 4.1.7 release.</li>\n<li><a href=\"https://github.com/django/django/commit/628b33a854a9c68ec8a0c51f382f304a0044ec92\"><code>628b33a</code></a> [4.1.x] Fixed CVE-2023-24580 -- Prevented DoS with too many uploaded files.</li>\n<li><a href=\"https://github.com/django/django/commit/425c75f56f4f05950826e7e7022ea764f8627eb1\"><code>425c75f</code></a> [4.1.x] Fixed <a href=\"https://github-redirect.dependabot.com/django/django/issues/34318\">#34318</a> -- Added release note for 4bfe8c0eec835b8eaffcda7dc1e3b2...</li>\n<li><a href=\"https://github.com/django/django/commit/590a92e4562c8ebd3eb25dc1e878bd1e3eb758d4\"><code>590a92e</code></a> [4.1.x] Fixed <a href=\"https://github-redirect.dependabot.com/django/django/issues/34319\">#34319</a> -- Fixed Model.validate_constraints() crash on Validatio...</li>\n<li><a href=\"https://github.com/django/django/commit/ae53649b38e103e2f3297da2292f136694feddd8\"><code>ae53649</code></a> [4.1.x] Added stub release notes for 4.0.10 and 3.2.18.</li>\n<li><a href=\"https://github.com/django/django/commit/83c88af9f85e8b9f833e76c37932fd415169cd60\"><code>83c88af</code></a> [4.1.x] Added stub release notes for 4.1.7.</li>\n<li><a href=\"https://github.com/django/django/commit/9ac634ff26806ed64ef69acad1f1c44cfd158dc6\"><code>9ac634f</code></a> [4.1.x] Added CVE-2023-23969 to security archive.</li>\n<li><a href=\"https://github.com/django/django/commit/f3b6a4f1f3f9edbed805e62f070221a5eb163d1a\"><code>f3b6a4f</code></a> [4.1.x] Ignored a637d0bd22665edfe7af40b4da3297462ec3c9cf formatting changes i...</li>\n<li><a href=\"https://github.com/django/django/commit/a637d0bd22665edfe7af40b4da3297462ec3c9cf\"><code>a637d0b</code></a> [4.1.x] Refs <a href=\"https://github-redirect.dependabot.com/django/django/issues/33476\">#33476</a> -- Applied Black's 2023 stable style.</li>\n<li><a href=\"https://github.com/django/django/commit/c629c7891a756f2b870363ad3d3041e6b825b7d5\"><code>c629c78</code></a> [4.1.x] Post-release version bump.</li>\n<li>Additional commits viewable in <a href=\"https://github.com/django/django/compare/4.0.9...4.1.7\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=django&package-manager=pip&previous-version=4.0.9&new-version=4.1.7)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language\n- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language\n- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language\n- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language\n\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Packages Modules error\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n* Free support from doomedraven ended - no whiskey, no support. For updates check the documentation.\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nI am running malware through CAPEv2 selecting Detect packages automatically and receiving an error on the windows vm. \r\n\r\n\r\n## Context\r\n\r\nRunning on ubuntu 22.04\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 22.04, Windows 10\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\nApologies in advance for the photos. The Box is on a limited internet basis and cannot log into anything. \r\n\r\nMain snipper of the error. If other files are needed please let me know \r\n![IMG_1908](https://user-images.githubusercontent.com/51971356/219114898-a208680d-ac5d-4450-9b07-38289c752eb7.JPG)\r\n\nComment: @C0WB0Y-Ducky: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: How does this not follow your template\nComment: As it says there is permission problem indide your windows.\nYou didnt share what was solution for your another problem so community\ncould learn, but ask for help to community lol\n\nEl mi\u00e9, 15 feb 2023 19:08, C0WB0Y-Ducky ***@***.***> escribi\u00f3:\n\n> How does this not follow your template\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1371#issuecomment-1431795460>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH36JETZKRLICIIPIPCLWXULQJANCNFSM6AAAAAAU5FLVZA>\n> .\n> You are receiving this because you are subscribed to this thread.Message\n> ID: ***@***.***>\n>\n\nComment: The agent.py is being executed from an admin command line. I haven't found a fix so did not put one. I'm asking for help to find a solution.\r\n\nComment: Did you check the docs for win10? Permission is classical problem when not\nexecuted properly\n\nEl mi\u00e9, 15 feb 2023 19:28, C0WB0Y-Ducky ***@***.***> escribi\u00f3:\n\n> The agent.py is being executed from an admin command line. I haven't found\n> a fix so did not put one. I'm asking for help to find a solution.\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1371#issuecomment-1431822543>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH32NYGIZJ6IPVJGTKCDWXUN3PANCNFSM6AAAAAAU5FLVZA>\n> .\n> You are receiving this because you commented.Message ID:\n> ***@***.***>\n>\n\nComment: Yes I have checked the Docs. I was running into another permission error when running it via the scheduled task method. So I opened a new Command Line as Administrator, and ran the agent.\r\n![IMG_1911](https://user-images.githubusercontent.com/51971356/219120914-94e5a25d-1611-4a49-9111-8f814b807a80.JPG)\r\n\nComment: admin cmd always will give you permission problem, as it expect system permission not admins. so if your win10 is the latest, you will need to research what is newer way to replace schedule task\nComment: I went back to the task scheduler running the agent from C:\\users\\defender\\desktop\\agent.py with run with highest privileges\r\n and still get more of the permission denied errors.  So you want me to replace the scheduled task even though the docs for win10 says use a scheduled task?\r\n  https://capev2.readthedocs.io/en/latest/installation/guest/agent.html\nComment: do you know that windows 10 is updated every 3 or 6m, we are not doing update of win10 and test on each build. We did that when we did tests. So what i wan't from you is take your time for your research!\nComment: I just ran the agent.py as a service which is system, and received 10x more access is denied. Any other ideas? I really am not trying to be rude, I apologize if it seems that way. I have been working on building this CAPE machine for a week and a half now and have fixed a lot of my issues via research.\nComment: Research means google it till you give with solution, system account cant\nget permission denied. You should be do something wrong or as i told is\nlatest win10 and they have changed something that you need to spot what it\nis. Im not windows user, for me what is in docs worked when i did deploy\n\nEl mi\u00e9, 15 feb 2023 20:24, C0WB0Y-Ducky ***@***.***> escribi\u00f3:\n\n> I just ran the agent.py as a service which is system, and received 10x\n> more access is denied. Any other ideas? I really am not trying to be rude,\n> I apologize if it seems that way. I have been working on building this CAPE\n> machine for a week and a half now and have fixed a lot of my issues via\n> research.\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1371#issuecomment-1431897347>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3ZNWWKT7YMV2OOKHJDWXUUPPANCNFSM6AAAAAAU5FLVZA>\n> .\n> You are receiving this because you modified the open/close state.Message\n> ID: ***@***.***>\n>\n\nComment: Ok outside of the Permission issues. what about these errors from the proccess.log\r\n\r\n![IMG_1914](https://user-images.githubusercontent.com/51971356/219144276-5e017f17-ed51-41d1-8917-12b192c0464a.JPG)\r\n\nComment: what about learn to do `git pull`?\nComment: now i know that you lying in issue, `I am running the latest version` is set to try and you not on latest",
+  "Title: Fix msi extraction bug\nBody: None\nComment: thanks, we have to add some tests",
+  "Title: Add missing guest names for dropped files\nBody: None\nComment: we will need to add tests for CAPE.py, as is become a core of many parts",
+  "Title: router doc and is_sfx\nBody: None",
+  "Title: More VT lookup fixes\nBody: None",
+  "Title: Improve handling of signature call data.\nBody: - Unconditionally *don't* store the call details in the \"signatures\" key of the analysis collection. Instead, only store the pid (process ID) and cid (chunk ID) of the call. That information alone allows us to query the behavior.processes.calls object for the ObjectID of the chunk and the index of the specific call within that chunk that triggered the signature.\r\n- When rendering the signatures, don't immediately render the call data. Instead, use an AJAX call when a signature is expanded to query for its rendered HTML. To maintain backwards compatibility with documents that already contain the embedded call details, return the rendered HTML using the same template as before. Otherwise, we'll query Mongo or ES for the signature's call details first.\r\n- Note that this also changes the display of signatures' call details to show it in tabular form like on the \"Behavioral Analysis\" tab.\r\n\r\n![Screenshot_20230213_162824](https://user-images.githubusercontent.com/4206917/218578595-83c33acc-a062-4f2b-8e1f-c9da9e91492f.png)\r\n\nComment: thank you for rewriting it, i will give it a shot tomorrow\nComment: \u2764\ufe0f \nComment: This is cool!\nComment: tested",
+  "Title: Fix VT lookup\nBody: None\nComment: Time to dd tests",
+  "Title: Add script that downloads YARA from CAPE repo, can be turned into a c\u2026\nBody: \u2026ronjob if you wish\r\n\r\nUsing this, you don't have to update the whole repo\nComment: Looks good, although worth noting the analyzer yaras are sometimes dependent on recent monitor builds, if a new feature has been added like the recent automated export picking for example.",
+  "Title: Fix flare/capa signatures path\nBody: from changelog:\r\n### [11-7-2022]\r\n* __ACTION REQUIRED__ * Now that CAPA and Floss uses the same signatures we renamed `capa-signatures` to `flare-signatures` * `python3 utils/community.py -cr`",
+  "Title: Update CAPE.py\nBody: None",
+  "Title: follow up on #1360, link to analysis too\nBody: #1360 added links to the config hashes. This extends that PR with links to the analysis hashes, which may or may not be different.",
+  "Title: link configs to the file hashes they come from\nBody: Adds a \"associated_config_hashes\" key to the configs that are generated, to directly connect the config to the hash it came from.\r\n\r\n![image](https://user-images.githubusercontent.com/1265294/217891284-3f5c1cab-ef02-4dcf-89d6-798f16f3bc71.png)\r\n",
+  "Title: Pre and during scripts added to file resubmit\nBody: None",
+  "Title: Fix eziriz deobfuscation binary path\nBody: None",
+  "Title: add tests for config updates, simplify the update, and log the potential for data loss\nBody: When multiple configs are generated for a specific family, there's a potential for data loss when keys collide.\r\n\r\nFor example, with these two separate configs the last one wins:\r\n\r\n```json\r\n{\"SomeFamily\": {\"Encryption Type\": \"0 - everything\"}\r\n```\r\n\r\n```json\r\n{\"SomeFamily\": {\"Encryption Type\": \"1 - partial\"}\r\n```\r\n\r\nThis PR adds test coverage for this behavior, makes the code behind it more straightforward, and emits warnings if the potential for data loss is encountered. There's no functional change in the configs that are generated.\nComment: thank you",
+  "Title: Fix DNS tab results\nBody: None",
+  "Title: [Migration] Export and reprocess certain analyses\nBody: Can an analysis be exported and reprocessed across different CAPE instances? \r\nWhat would be the files required and the process for this? \nComment: @enceladus3: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: you need to have psql database entry for that task on each server, then place those files in proper task id folder and you can reprocess it",
+  "Title: Bump cryptography from 39.0.0 to 39.0.1\nBody: Bumps [cryptography](https://github.com/pyca/cryptography) from 39.0.0 to 39.0.1.\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst\">cryptography's changelog</a>.</em></p>\n<blockquote>\n<p>39.0.1 - 2023-02-07</p>\n<pre><code>\n* **SECURITY ISSUE** - Fixed a bug where ``Cipher.update_into`` accepted Python\n  buffer protocol objects, but allowed immutable buffers. **CVE-2023-23931**\n* Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.0.8.\n<p>.. _v39-0-0:\n</code></pre></p>\n</blockquote>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/pyca/cryptography/commit/d6951dca25de45abd52da51b608055371fbcde4e\"><code>d6951dc</code></a> changelog + security fix backport (<a href=\"https://github-redirect.dependabot.com/pyca/cryptography/issues/8231\">#8231</a>)</li>\n<li><a href=\"https://github.com/pyca/cryptography/commit/138da90c8450446b19619e3faa77b9da54c34be3\"><code>138da90</code></a> workaround scapy bug in downstream tests (<a href=\"https://github-redirect.dependabot.com/pyca/cryptography/issues/8218\">#8218</a>) (<a href=\"https://github-redirect.dependabot.com/pyca/cryptography/issues/8228\">#8228</a>)</li>\n<li><a href=\"https://github.com/pyca/cryptography/commit/69527bc79095c9646d7e839121f0783477892ecc\"><code>69527bc</code></a> bookworm is py311 now (<a href=\"https://github-redirect.dependabot.com/pyca/cryptography/issues/8200\">#8200</a>)</li>\n<li><a href=\"https://github.com/pyca/cryptography/commit/111deefb659b8d73c56d3ce89458f2df973d60e4\"><code>111deef</code></a> backport main branch CI to 39.0.x (<a href=\"https://github-redirect.dependabot.com/pyca/cryptography/issues/8153\">#8153</a>)</li>\n<li>See full diff in <a href=\"https://github.com/pyca/cryptography/compare/39.0.0...39.0.1\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=cryptography&package-manager=pip&previous-version=39.0.0&new-version=39.0.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language\n- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language\n- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language\n- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language\n\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Update BumbleBee.yar\nBody: None\nComment: Not sure why this replaces an existing working pattern $antivm3 instead of adding a new patter $antivm4. Also there is no update to the monitor yara to bypass the anti-vm which is the reason these patterns are picked, so replacing antivm3 in the monitor yara would break detonation for those samples that depended on it.\nComment: That was not working. Also, in this line https://github.com/kevoreilly/CAPEv2/blob/14917bbfecff83b0a8b1690bb293abf8034612f4/analyzer/windows/data/yara/BumbleBee.yar#L23 `bp1=$antivm3+38` is not needed anymore.\nComment: @kevoreilly, fixed the payload part. Can confirm nothing breaks. \nComment: Fixed in f21668c5",
+  "Title: refurb2\nBody: None",
+  "Title: Enhancement: WHOIS Lookup of Domains Contacted By Malware\nBody: Files Added/Changed\r\n\r\n1) \r\nIn /opt/CAPEv2/modules/processing/network.py\r\n\r\n![photo_6269093690588903133_y](https://user-images.githubusercontent.com/77826239/216918822-2a9215ef-d94a-4c41-943d-bedc54fcbe9e.jpg)\r\n\r\nModified this processing module to add a function to query the WHOIS API and obtain the JSON output containing domain information.\r\n\r\n2) \r\nIn /opt/CAPEv2/conf/processing.conf\r\n![photo_6269093690588903134_x](https://user-images.githubusercontent.com/77826239/216918900-1bbe505d-399c-4f38-b08c-49d661b5d625.jpg)\r\n\r\nAdded the necessary configuration fields for /opt/CAPEv2/modules/processing/network.py to obtain the WHOISXML Account API Key and query the WHOIS API for domain information.\r\nFill \u201cwhois_query\u201d with yes/no depending on whether you want WHOIS query to be enabled/disabled, and fill \u201cwhois_apikey\u201d with the API key copied earlier.\r\n\r\n3) \r\n/opt/CAPEv2/web/templates/analysis/network/_whois_hosts.html\r\n/opt/CAPEv2/web/templates/analysis/network/_whois_hosts_not_ajax.html\r\nAdded HTML templates to display the domain information obtained from WHOISXML API in a table format.\r\n\r\n![photo_6269093690588903135_y](https://user-images.githubusercontent.com/77826239/216918975-a2f8e9b0-e198-4837-8362-75a9a924cbb0.jpg)\r\n\r\n![photo_6269093690588903136_y](https://user-images.githubusercontent.com/77826239/216919011-da5252f1-623b-468e-988c-3a31164a08e1.jpg)\r\n\r\n4) \r\n/opt/CAPEv2/web/templates/analysis/overview/index.html\r\n/opt/CAPEv2/web/templates/analysis/network/index.html\r\nAdded \u201cincludes\u201d section in both index files to include the _whois_hosts.html and _whois_hosts_not_ajax.html files in the template.\r\n![photo_6269093690588903137_y](https://user-images.githubusercontent.com/77826239/216919073-2a8db700-97c4-40ff-9aa3-f2132315489b.jpg)\r\n\r\n\r\nSteps to set up WHOISXMLAPI Account\r\n*** For a free account, there is a one-time limit of only 500 WHOIS API Requests.\r\n\r\n3) Sign up for a WHOISXML API Account at https://main.whoisxmlapi.com/signup. \r\n![photo_6269093690588903130_y](https://user-images.githubusercontent.com/77826239/216918672-4e9c3b9a-e96a-4c44-86e1-9316ddef5c13.jpg)\r\n\r\n4) Enter the relevant information and click on \u201cSign Up\u201d\r\n*** Use an actual email address as the sign up process requires email verification\r\n![photo_6269093690588903132_y](https://user-images.githubusercontent.com/77826239/216918697-af09e46f-dfa8-40fc-b842-8540e9599ebc.jpg)\r\n\r\n5) Upon receiving the verification email, click on the account activation link:\r\n\r\n6)**Navigate to https://user.whoisxmlapi.com/products and copy your API Key. It will be needed later on in the CAPEv2 configuration file.**\nComment: Hello please start making a proper pull requests, nobody will review 132 not related files. instead of posting link to path and image in comments. you could post path and markdown escaped code. as otherwise till you fix all those PR they will be pending for your correction\nComment: I have removed unrelated files\nComment: thank you, could you review network.py as you removing/restoring to old code. once that done we are fine to go i think\nComment: @doomedraven I have edited it, thanks\nComment: thanks, im receiving emails about each commit so i see everything\nComment: you have \r\n\r\n```\r\nRun # stop the build if there are Python syntax errors or undefined names\r\n./modules/processing/network.py:112:8: E999 IndentationError: unexpected indent\r\n        for domain in f.splitlines():\r\n       ^\r\n1     E999 IndentationError: unexpected indent\r\n1\r\nError: Process completed with exit code 1.\r\n```\nComment: Hello i have updated your code, check it. about parsing dictionary over and over inside templates is BAD PRACTICE!, data should be parsed when you retrieve it. check how enrich_hosts returns data. example below, and make similar for this one\r\n\r\n```\r\nenriched_hosts.append({\"ip\": ip, \"country_name\": self._get_cn(ip), \"hostname\": hostname, \"inaddrarpa\": inaddrarpa})\r\n```\nComment: if you need both you can keep append it as `{raw:result, parsed:{x:y}}`\nComment: So im fine to merge this once html code will be properly done, i don't want any parsing on django side, they should be done on server side. in case if you wont  update it, just close this PR\nComment: Amazing thank you for wasting my time on your code\nComment: > Amazing thank you for wasting my time on your code\r\n\r\nI thought you pushed this to community?\r\n\nComment: May I ask why did you edited the externalservices.conf that way?\r\n\r\nlib/cuckoo/common/integration/whoisxml.py\r\n```\r\nimport logging\r\n\r\nimport requests\r\nfrom lib.cuckoo.common.config import Config\r\n\r\nlog = logging.getLogger()\r\nexternalservices_cfg = Config(\"externalservices\")\r\napikey = externalservices_cfg.whoisxmlapi.apikey\r\n\r\n\r\ndef whoisxmlapi_lookup(host):\r\n    if not externalservices_cfg.whoisxmlapi.enabled or not apikey:\r\n        return {}\r\n\r\n    result = {}\r\n    log.debug(\"Performing WHOIS Query for IP/Domain: %s\", host)\r\n    url = f\"https://www.whoisxmlapi.com/whoisserver/WhoisService?apiKey={apikey}&domainName={host}&outputFormat=json\"\r\n    try:\r\n        r = requests.get(url, verify=False)\r\n        if r.ok:\r\n            result = r.json()\r\n    except Exception as e:\r\n        log.error(\"whoismlapi.com exception: %s\", str(e))\r\n\r\n    return result\r\n```\r\n\r\nconf/externalservices.conf\r\n```\r\n[misp]\r\nenabled = no\r\nurl =\r\napikey =\r\nhash_lookup = no\r\n\r\n```\r\n\nComment: if you close without comments that means that you abondone your work.\r\nconfig modified in that way because we don't need that as part of networking, is external service, so it should be in that file.\r\n\r\nabout community, in community is all code that is not maintained by core devs, but is autointegrable by running `utils/community.py -waf`\r\n\r\nwill you rewrite the html code? bear in mind that storing the whole json to mongo, if there are lot of data for many hosts, it might reach limit of 16mb and mongo can remove it, so better add parsed data and option to store raw on disk\nComment: so when we test it our work, we use conf/externalservices.conf?\r\n\r\nI am confused with touching that since that is for misp and not whois. Do I edit conf/externalservices.conf or create a new one?\nComment: you probaably working again on old code. in this PR there is nothing related to that config, the config is itself in repo with misp and whois https://github.com/kevoreilly/CAPEv2/blob/master/conf/externalservices.conf\nComment: My fellow colleague will complete my work, thus I will close this PR\nComment: Ok, then pr that to community repo\nComment: Hi, I am the colleague that will take over Eesheng's work, may I know what is needed to be followed up on and changed?\nComment: please read the whole thread to see all my replays that contains examples\nComment: Hi, so can I confirm that the improvements needed are as follows?\r\n\r\n1) Parsing whois data (dictionary) on server side and not n django\r\n2) Edit HTML code to support that\nComment: Sorry for the spam, but I cannot find the files\r\n/opt/CAPEv2/web/templates/analysis/network/_whois_hosts.html\r\n/opt/CAPEv2/web/templates/analysis/network/_whois_hosts_not_ajax.html\nComment: No worries, I am not sure about this so will wait to ask doomed next week when he's back from his holiday - thank you for your efforts thus far.\nComment: Hi, are there any updates on this? Thank you!\nComment: totally missed this one, those templates only exist in this PR, yes parsing in django is awful and bad. everything should be done on server side",
+  "Title: Introduced Google Backup Feature\nBody: Files Added/Changed\r\nWith the MISP Docker instance set up, the following files were changed to extract the threat intelligence from MISP into CAPEv2 for threat attribution\r\n\r\n1)\r\nIn /opt/CAPEv2/modules/processing/targetinfo.py\r\n\r\n![photo_6269093690588903125_x](https://user-images.githubusercontent.com/77826239/216907358-c38c6df4-f595-45ec-870a-5f2f344e7700.jpg)\r\n\r\nAdded a compare_to_misp function in this existing file which collects information about the submitted sample. The function was added here as it requires the SHA256 hash to query MISP, and targetinfo.py is the script that obtains the different hashes of the submitted sample.\r\n\r\n2) \r\nIn /opt/CAPEv2/utils/<name_of_credentials_file>.json\r\nIn our setup, we named the credentials file fypj.json. It contains the data needed for connection to the Google Service Account.\r\n\r\n![Screenshot 2023-02-06 151513](https://user-images.githubusercontent.com/77826239/216907501-64f20872-d50a-456f-bf15-e94620f78f7f.png)\r\n\r\n3) In /opt/CAPEv2/conf/reporting.conf\r\n![Screenshot 2023-02-06 151611](https://user-images.githubusercontent.com/77826239/216907680-a4a1f13e-f4dc-4a36-acdf-6195c3068d63.png)\r\n\r\nAdded the necessary configuration fields for /opt/CAPEv2/modules/reporting/reportbackup.py to obtain the Google Service Account Credentials (should be a JSON file) and upload the reports to the specified folder (provide the Folder ID).\r\nFill \u201ccredentials_location\u201d with the name of the JSON key file (which should be moved to /opt/CAPEv2/utils\u201d. Fill \u201cfolder_id\u201d with the folder ID. If everything is configured correctly, then the Google Drive Shared Folder will be populated with the analysis reports named \u201creport<analysis number>.<report format>\u201d:\r\n\r\n![photo_6269093690588903129_w](https://user-images.githubusercontent.com/77826239/216907810-ccc0a98a-42a7-441f-91be-e54f486a68ce.jpg)\r\n\nComment: Thank you, but this PR includes the memory feature from another PRs, i can't merge or start working on that till you solve this problem\nComment: acording to you there is 3 files changed, but in your PR there is 131\nComment: There was a lot of changes in my PR because I update my files from your repo\nComment: well when you update from main repo, number of changes decreases due to less changes. \r\n\r\nBut here we have for example google backup reporting module + html files that re not related to the PR, and the similar situation  is in each PR. Can you fix it? \nComment: + things ke those should be pushed to https://github.com/kevoreilly/community as is community features and won't be maintained by lead devs\r\n\r\nalso as point 1 you speak about misp which is not related to this one neither, that confusing \nComment: I have removed unrelated files\nComment: Few notes here.\r\n1. do not use f-strings for logging, it has performance impact, you can search that discussion in issues\r\n2. CWD is not utils, is `/opt/CAPEv2`.\r\n3. When you add new module, use HAVE_X + try/except to properly handle it for the rest of the user, check out my commit with those changes\r\n4. Don't use your related stuff like `fypj`, `fypj.json` says literally nothing to others users.\r\n5. i did it more generic, in case someone wants to add some other service. as ` report backup` is not the same as `report backup to google drive`\r\n\r\ncheck it please and let me know\nComment: thanks\nComment: Thanks for your help!\nComment: you are welcome\nComment: Thanks for your contribution, much appreciated.",
+  "Title: Introduced MISP features\nBody: Files Added/Changed\r\nWith the MISP Docker instance set up, the following files were changed to extract the threat intelligence from MISP into CAPEv2 for threat attribution.\r\n\r\n1)\r\nIn /opt/CAPEv2/modules/processing/targetinfo.py\r\nAdded a compare_to_misp function in this existing file which collects information about the submitted sample. The function was added here as it requires the SHA256 hash to query MISP, and targetinfo.py is the script that obtains the different hashes of the submitted sample.\r\n\r\n![photo_6269093690588903103_y](https://user-images.githubusercontent.com/77826239/216898001-59dd6374-638b-4b4a-ac45-0f081e08b1e2.jpg)\r\n\r\nThe above codes initialize multiple variables, connect to the MISP instance, and query MISP for any events with attributes matching the SHA256 hash of the submitted sample.\r\n\r\nIn the event there is a match, we would fetch the JSON response and parse it to extract information such as threat actors, tools used, malware types, relevant event tags, external analysis links, etc. This information would then be returned to the run() function\r\n\r\n![photo_6269093690588903104_x](https://user-images.githubusercontent.com/77826239/216898114-04924f38-ab4e-40d7-823d-446e14638cb1.jpg)\r\n\r\nThe above is a segment of the run() function, which will take the returned values and store it in report.json results file.\r\n\r\n![photo_6269093690588903104_x](https://user-images.githubusercontent.com/77826239/216898201-6feaafcf-c874-4d58-a939-f367475538d9.jpg)\r\n\r\n*** As the compare_to_misp function obtains information based on the galaxy cluster IDs, the script may not behave as expected if the galaxy cluster IDs are changed with updates. Hence if changes to the IDs need to be made, replace the IDs in misp.search_galaxy_clusters() with the relevant cluster ID.\r\n\r\n2)\r\nIn /opt/CAPEv2/conf/processing.conf\r\nAdded the necessary configuration fields for /opt/CAPEv2/modules/processing/targetinfo.py to be able to connect to and query the MISP instance. To disable MISP comparison, leave misp_comparison_enabled blank. Fill in misp_url with the MISP_BASEURL and the misp_api_key with the generated API key.\r\n\r\n![photo_6269093690588903104_x](https://user-images.githubusercontent.com/77826239/216898385-6dda8fbf-300a-4aaa-b6fb-442ed209e817.jpg)\r\n\r\n3)\r\n/opt/CAPEv2/web/templates/analysis/generic/_file_info.html\r\nAdded an \u201cincludes\u201d section to include an expandable section on the MISP information obtained\r\n![photo_6269093690588903104_x](https://user-images.githubusercontent.com/77826239/216898421-1183fe42-0524-4387-a313-32651f416e48.jpg)\r\n![photo_6269093690588903104_x](https://user-images.githubusercontent.com/77826239/216898473-2d9a40f4-e938-4320-898a-be6ee93e6015.jpg)\r\n\r\n4)\r\n/opt/CAPEv2/web/templates/analysis/generic/_misp.html\r\nAdded this HTML file to format the information obtained from MISP for display in the web interface. (Edit the to your own MISP_BASEURL: 192.168.122.185 )\r\n\r\n![photo_6269093690588903104_x](https://user-images.githubusercontent.com/77826239/216898530-f735e5fc-8a01-40bb-9304-cb442e277d83.jpg)\r\n\r\n![photo_6269093690588903104_x](https://user-images.githubusercontent.com/77826239/216898622-f9665b27-745a-485d-b9c5-c447ac8b5d16.jpg)\r\n![photo_6269093690588903104_x](https://user-images.githubusercontent.com/77826239/216898681-8aee39e6-5650-438b-9140-b84ee471b98e.jpg)\r\n\r\nSome of the data can be hovered on to provide additional information. Relevant hyperlinks are also attached for easy navigation to information about the MISP event, threat actors etc.\r\ne.g. clicking on the OSINT - Threat Spotlight\u2026 would direct the user to this interface:\r\n\r\n![photo_6269093690588903104_x](https://user-images.githubusercontent.com/77826239/216898681-8aee39e6-5650-438b-9140-b84ee471b98e.jpg)\r\n\r\n\r\ne.g. clicking on [View MISP Threat Actor Information Here] would direct the user to this interface:\r\n\r\n![photo_6269093690588903104_x](https://user-images.githubusercontent.com/77826239/216898715-1a4b4a5d-fba3-479c-86f3-29e4d7acf1bb.jpg)\r\n\r\n5)\r\nIn /opt/CAPEv2/web/analysis/templatetags/key_tags.py\r\nAdded additional django template filters which were needed for formatting the information displayed\r\n\r\n![photo_6269093690588903104_x](https://user-images.githubusercontent.com/77826239/216898759-c8cc549c-224e-41c4-9240-82176befd769.jpg)\r\n\r\n==================================================================================\r\nSteps to set up MISP Instance\r\n*** MISP can be installed via multiple ways, but we set it up in an Ubuntu VM [KVM] as a Docker instance\r\n\r\n1) Create an Ubuntu 20.04 VM (NAT connection) using KVM\r\n2) After setting it up, update the system and install necessary packages:\r\n            sudo apt-get update\r\n            sudo apt-get upgrade\r\n            sudo apt-get install net-tools \r\n            sudo apt-get install git\r\n            sudo apt-get install curl\r\n\r\n3) Install Docker and its required packages:\r\n            sudo apt-get install \\\r\n                    ca-certificates \\\r\n                    curl \\\r\n                    gnupg \\\r\n                    lsb-release\r\n           sudo mkdir -p /etc/apt/keyrings\r\n          curl -fsSL https://download.docker.com/linux/ubuntu/gpg | sudo gpg --dearmor -o /etc/apt/keyrings/docker.gpg\r\n          echo \\ \"deb [arch=$(dpkg --print-architecture) signed-by=/etc/apt/keyrings/docker.gpg] https://download.docker.com/linux/ubuntu \\ $(lsb_release -cs) stable\" | sudo tee /etc/apt/sources.list.d/docker.list > /dev/null\r\n                    sudo apt update\r\n                    sudo apt install apt-transport-https ca-certificates curl software-properties-common\r\n                    curl -fsSL https://download.docker.com/linux/ubuntu/gpg | sudo gpg --dearmor -o /usr/share/keyrings/docker-archive-keyring.gpg\r\n                    echo \"deb [arch=$(dpkg --print-architecture) signed-by=/usr/share/keyrings/docker-archive-keyring.gpg] https://download.docker.com/linux/ubuntu $(lsb_release -cs) stable\" | sudo tee /etc/apt/sources.list.d/docker.list > /dev/null\r\n                    sudo apt update\r\n                    apt-cache policy docker-ce\r\n                    sudo apt install docker-ce\r\n                    sudo systemctl status docker\r\n\r\n4) Download latest Docker DEB from https://desktop.docker.com/linux/main/amd64/docker-desktop-4.12.0-amd64.deb?utm_source=docker&utm_medium=webreferral&utm_campaign=docs-driven-download-linux-amd64 \r\n\r\n5) Install and check Docker is running successfully:\r\n                  sudo apt-get install ./docker-desktop-<version>-<arch>.deb\r\n                  sudo service docker start\r\n                  sudo docker run hello-world\r\n\r\n6) Once Docker is running successfully, clone the MISP-Docker Repository by running:\r\n\r\n                git clone https://github.com/MISP/misp-docker \r\n                cd misp-docker\r\n                cp template.env .env\r\n                nano .env (Change MISP_BASEURL to the IP Address of the VM) e.g. (Ee Sheng FYP Address: 192.168.122.185)\r\n\r\n![photo_6269093690588903104_x](https://user-images.githubusercontent.com/77826239/216899264-ea74368e-cd01-469d-a5b4-ce4820e540fd.jpg)\r\n\r\n7) Build MISP by running:\r\n                 sudo docker compose build\r\n\r\n8) Bring up the MISP Instance by running\r\n                sudo docker compose up\r\n\r\n![photo_6269093690588903104_x](https://user-images.githubusercontent.com/77826239/216899386-a9403094-ccfb-458b-8b2d-c911f5e156b6.jpg)\r\n\r\n9)Once MISP is running, access MISP_BASEURL set in the .env file earlier from the host machine (e.g. https://192.168.122.195/) and login with username admin@admin.test and password admin\r\n\r\n10) Navigate to Sync Actions > List Feeds. Check feed ID 1 and feed ID 2, then click on \u201cFetch and store all feed data\u201d. \r\n\r\n      - If it does not fetch data like the picture below, carry on this steps.\r\n\r\n        ![photo_6269093690588903104_x](https://user-images.githubusercontent.com/77826239/216899499-631af231-c496-4825-9f9c-26ae99fd9743.jpg)\r\n\r\n      - Afterwards, navigate to Administration > Jobs and check the event importing processes. *** If the processes are not running, try to navigate to Administration > Server & Settings Maintenance > Workers, scroll down and click on \u201cRestart all dead workers\u201d. Then, go back to Administration > Jobs and the jobs should be running.\r\n      -\r\n      - *** The fetching of feeds will take hours as there are many attributes and events (in JSON format) to import.\r\n      -\r\n      - Navigate to Galaxies > List Galaxies and click on \u201cUpdate Galaxies\u201d. These galaxies are classifications made by MISP with regards to the different attributes.\r\n      \r\n![photo_6269093690588903104_x](https://user-images.githubusercontent.com/77826239/216899630-81985e4d-4a37-471b-8a72-384e36d1ada8.jpg)\r\n\r\n      - Note that the galaxy ID may change with updates and this may affect the performance of the MISP threat attribution codes we have developed. It will be highlighted later on in this documentation.\r\n      \r\n      - Navigate to Event Actions > List Events. This will allow the checking of currently loaded events and details like the tags, event information, etc. As of the time this documentation was written, there were ~1500 events generated from the 2 default feeds. The fetching process took slightly less than 2 hours\r\n\r\n      - Navigate to Sync Actions > List Feeds. Check feed ID 1 and feed ID 2, then click on \u201cFetch and store all feed data\u201d. \r\n     \r\n      - Generate the API key to be able to query MISP later on via CAPEv2. Navigate to Administration > List Auth Keys. Then, click on + Add authentication key and click Submit. Copy the API key and store it somewhere secure. This API key will be placed in the CAPEv2 processing.conf later on.\r\n     \r\n      - Lastly, run \u201csudo -u cape poetry run pip3 install pymisp\u201d on the host.\r\n\nComment: targetinfo is dead. It was fully replaced with CAPE.py due to double processing of the same files. My suggestion is to put logic of misp inside of for example `lib/cuckoo/common/integrations/misp.py` and then can be imported where it needed, but i didn't checked the rest of PR due to many unrelated files\nComment: I have removed the unrelated files\nComment: please review and keep only your code and restore original CAPE's code where is not related to your changes\nComment: > please review and keep only your code and restore original CAPE's code where is not related to your changes\r\n\r\nOkay thanks for your input\r\n\nComment: thanks for fixing it. i will rewrite it as targetinfo is deprecated, but having code cleaned that helps a lot, later i will show you how we do it. but check out `lib/cuckoo/common/integrations` we trying to put all stuff there that can be reused in many placed, but i will handle that later for you\nComment: This is my first time trying to contribute to open source project. Thank you for being patient with me\nComment: till you fine to learn and improve, Im fine to be patient :)\r\nbut from time to time i will give you tips\nComment: plase stop adding everywhere `#Added: X` is useless once merged\nComment: So the code itself is done, but i will move it to community repo, as we won't maintain it and we can't test it properly due to misp. Also i can't improve some parts of code due to that we don't have access to any misp and we won't setup misp just for that. Sou can see template here https://github.com/CAPESandbox/community/pull/342",
+  "Title: Updated the memory analysis with new features\nBody: Preview:\r\n![photo_6269093690588903046_w](https://user-images.githubusercontent.com/77826239/216869852-cd23b979-b94a-4175-82d1-18694022f755.jpg)\r\n\r\n1)\r\nDirectory: CAPEv2/lib/cuckoo/core/scheduler.py\r\nAdded codes to dump memory before the start of the analysis process (snapshot state) as befmemory.dmp\r\n![1](https://user-images.githubusercontent.com/77826239/216498158-b4e6f7ab-af7a-46b1-ba8e-e2c8081ca034.png)\r\n\r\nAdded codes to dump memory during the malware execution as midmemory.dmp and midmemory2.dmp ; the time interval between these 2 dumps can be configured in /opt/CAPEv2/conf/cuckoo.conf\r\n\r\n![2](https://user-images.githubusercontent.com/77826239/216498204-15dd40e7-650e-4e86-9591-bd73ff6bc406.png)\r\n\r\n2)\r\nAdded midmemory and befmemory.conf  (Copied & edited from the memory.conf)\r\n\r\n3)\r\nIn /opt/CAPEv2/conf/cuckoo.conf\r\nAdded time interval section to control the time interval between the memory dumps taken during malware execution\r\n\r\n![3](https://user-images.githubusercontent.com/77826239/216498509-f7c1175d-7e59-4c6c-8737-804165bdc257.png)\r\n\r\n4)\r\nIn /opt/CAPEv2/conf/processing.conf\r\nAdded befmemory, midmemory, midmemory2 sections to enable/disable \tVolatility processing for the memory dumps produced before and during the malware execution; e.g. if enabled = yes for [befmemory] \u2192processor will process befmemory.dmp and produce befmemory.dmp.strings for readability\r\n\r\n![4](https://user-images.githubusercontent.com/77826239/216498553-e761bbe4-dd0c-4250-97c0-a1d688b3b63b.png)\r\n\r\n5) \r\nIn /opt/CAPEv2/modules/processing/befmemory.py\r\nIn /opt/CAPEv2/modules/processing/midmemory.py\r\nIn /opt/CAPEv2/modules/processing/midmemory2.py\r\n\t\t\r\nIn /opt/CAPEv2/web/templates/analysis/befmemory/\u2026\r\nIn /opt/CAPEv2/web/templates/analysis/midmemory/\u2026\r\nIn /opt/CAPEv2/web/templates/analysis/midmemory2/\u2026\r\nIn /opt/CAPEv2/web/templates/befmemory/\u2026\r\nIn /opt/CAPEv2/web/templates/midmemory/\u2026\r\nIn /opt/CAPEv2/web/templates/midmemory2/\u2026\r\n\r\nAdded these directories (which are copies of /opt/CAPEv2/web/templates/memory/\u2026) to display the Volatility-processed information in the web interface for memory dumps before and during the malware execution\r\n\r\n6)\r\nCd to /opt/CAPEv2/conf copy the memory.conf to a newly created befmemory.conf and midmemory.conf. Enable all of the features\r\n\r\n7)\r\nIn /opt/CAPEv2/web/templates/analysis/report.html\r\nAdded befmemory, midmemory and midmemory2 tabs to toggle views for Volatility-processed information in the web interface\r\n![5](https://user-images.githubusercontent.com/77826239/216498935-6c377ae5-371b-46c6-be98-237ab419e6f3.png)\r\n![6](https://user-images.githubusercontent.com/77826239/216498943-7d7c115d-f222-4398-94c4-c5ce6e072a40.png)\r\n\r\n8) \r\nIn /opt/CAPEv2/web/web/urls.py\r\nAdded URLs to download the memory dump and memory dump strings file for memory dumps before and during malware execution\r\n![7](https://user-images.githubusercontent.com/77826239/216499076-2225333b-1923-4895-bf3e-bd40f0432bb6.png)\r\n\r\n9)\r\nIn /opt/CAPEv2/web/analysis/views.py\r\nAdded functions to download the memory dump and memory dump strings file for memory dumps before and during malware execution. Also added functions to allow viewing of memory dump information on web interface\r\n\r\n![8](https://user-images.githubusercontent.com/77826239/216499118-0f94edc8-7b11-45b8-b0cf-75692440f1db.png)\r\n![9](https://user-images.githubusercontent.com/77826239/216499125-dac5d8d8-6452-4bdd-9e07-8ea8ce8b4b83.png)\r\n\r\nThere were also some inconsistencies with the page navigation (after navigating to page 2, the navigation bar disappears), so we added the relevant codes for the navigation to work smoothly\r\n\r\n![10](https://user-images.githubusercontent.com/77826239/216499157-05a2680d-00d4-4aed-a4bc-a0e0516ab7ec.png)\r\n(The else block was not present previously, hence the navigation will always be hidden even for pages after page 1)\r\n\r\n10)\r\nIn /opt/CAPEv2/lib/cuckoo/core/guest.py\r\nModified to use the time interval from the /opt/CAPEv2/conf/cuckoo.conf for the sake of dumping memory during malware execution. Also added additional parameters (which are passed from /opt/CAPEv2/lib/cuckoo/core/scheduler.py) to dump the memory at the specified interval at the correct file path. *midmemory.dmp and midmemory2.dmp will not be produced if the analysis ends before the specified time interval\r\n\r\n![11](https://user-images.githubusercontent.com/77826239/216499232-0a6b0aed-ecb9-42f3-8909-53fd4f633810.png)\r\n\r\n\r\n\r\n\r\n\nComment: Hello is better than previous one. i see 2 PRs from you. i still see that you restore old code and removes some core parts of CAPE, WHY?\nComment: ok looks like this commit is where the feature is https://github.com/kevoreilly/CAPEv2/pull/1348/commits/527807388f535700fd75452a9dc59bbddfb37380\r\n\r\nbut this should be configurable from configuration\r\n\r\n```\r\n<a href=\"https://192.168.122.18 5/galaxy_clusters/view/{{threat_actor_value.1}}\" target=\"_blank\" style=\"color: #e74c3c\">[View MISP Threat Actor Information Here]</a><br>{{threat_actor_value.0}}<br><br>\r\nh\r\n```\nComment: oh that is memory not misp, what a mess\nComment: > Hello is better than previous one. i see 2 PRs from you. i still see that you restore old code and removes some core parts of CAPE, WHY?\r\n\r\nWhich are the old codes? Can you kindly highlight them?\nComment: The most file changes are just additional HTML pages to be rendered\nComment: Please click on \"Files changed\" and you will see a lot of files not related to your PR\r\n<img width=\"779\" alt=\"Screenshot 2023-02-06 at 14 15 45\" src=\"https://user-images.githubusercontent.com/1856495/216980864-6489fc80-02d8-4459-871a-e293aced81cb.png\">\r\n\r\n\r\n### deletion of files, code restoring to old in many files specially `lib/cuckoo/core/scheduler.py`\r\n<img width=\"1147\" alt=\"Screenshot 2023-02-06 at 14 15 20\" src=\"https://user-images.githubusercontent.com/1856495/216981078-b24702ee-d273-4211-8673-a3d588874470.png\">\r\n\nComment: The number of commits in this PR is absolutely ridiculous \nComment: Hello this PR still contains problematic changes. are you gonna fix them? + Why do you need to take snapshot of each VM over and over, i mean before analysis? why not just take it once, generate that data and store it? That would remove unnecessary delay of analysis as with each plugin/extension that delays analysis that impacts drastically sandbox. if you gonna follow with this i will help you make templates generic. ",
+  "Title: Bump django from 4.0.8 to 4.0.9\nBody: Bumps [django](https://github.com/django/django) from 4.0.8 to 4.0.9.\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/django/django/commit/ca891ef44b27eb93890846615e0121037e6c8a35\"><code>ca891ef</code></a> [4.0.x] Bumped version for 4.0.9 release.</li>\n<li><a href=\"https://github.com/django/django/commit/4452642f193533e288a52c02efb5bbc766a68f95\"><code>4452642</code></a> [4.0.x] Fixed CVE-2023-23969 -- Prevented DoS with pathological values for Ac...</li>\n<li><a href=\"https://github.com/django/django/commit/b880e20876fec670e11db8b42f754fbbbfd8055c\"><code>b880e20</code></a> [4.0.x] Fixed E501 flake8 error.</li>\n<li><a href=\"https://github.com/django/django/commit/2990e6fe8f5bf9152b97111724235c1c5959f41f\"><code>2990e6f</code></a> [4.0.x] Fixed inspectdb.tests.InspectDBTestCase.test_custom_fields() on SQLit...</li>\n<li><a href=\"https://github.com/django/django/commit/8fe7bdc29d4c898c4acd4ca1d2b0cfc6b327513e\"><code>8fe7bdc</code></a> [4.0.x] Bumped versions in pre-commit and npm configurations.</li>\n<li><a href=\"https://github.com/django/django/commit/9d39b0f19e20056131914dca076e0d686395fe93\"><code>9d39b0f</code></a> [4.0.x] Added packaging tools to GitHub actions.</li>\n<li><a href=\"https://github.com/django/django/commit/78aa12e3344444501b8136bc01cfe7af4a85893e\"><code>78aa12e</code></a> [4.0.x] Used GitHub actions for Windows tests.</li>\n<li><a href=\"https://github.com/django/django/commit/ca8c5bd69065d6bff8bff61e12f4b52072a06007\"><code>ca8c5bd</code></a> [4.0.x] Skipped GitHub actions for linters and JavaScript tests on purely doc...</li>\n<li><a href=\"https://github.com/django/django/commit/2d13db1b4ad2e742f99ed7245f727ec5b1144187\"><code>2d13db1</code></a> [4.0.x] Adjusted release notes for 4.0.9, and 3.2.17.</li>\n<li><a href=\"https://github.com/django/django/commit/d8767c8d2510f99d586f29b9e8f66d1e02097d33\"><code>d8767c8</code></a> [4.0.x] Added stub release notes for 4.0.9 and 3.2.17.</li>\n<li>Additional commits viewable in <a href=\"https://github.com/django/django/compare/4.0.8...4.0.9\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=django&package-manager=pip&previous-version=4.0.8&new-version=4.0.9)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language\n- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language\n- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language\n- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language\n\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: fix: \"RuntimeWarning: line buffering (buffering=1) isn't supported in\u2026\nBody: \u2026 binary mode, the default buffer size will be used\"\r\n\r\nfixes\r\n```\r\nRuntimeWarning: line buffering (buffering=1) isn't supported in binary mode, the default buffer size will be used\r\n```",
+  "Title: Master4\nBody: 1)\r\nDirectory: CAPEv2/lib/cuckoo/core/scheduler.py\r\nAdded codes to dump memory before the start of the analysis process (snapshot state) as befmemory.dmp\r\n![1](https://user-images.githubusercontent.com/77826239/216498158-b4e6f7ab-af7a-46b1-ba8e-e2c8081ca034.png)\r\n\r\nAdded codes to dump memory during the malware execution as midmemory.dmp and midmemory2.dmp ; the time interval between these 2 dumps can be configured in /opt/CAPEv2/conf/cuckoo.conf\r\n\r\n![2](https://user-images.githubusercontent.com/77826239/216498204-15dd40e7-650e-4e86-9591-bd73ff6bc406.png)\r\n\r\n2)\r\nAdded midmemory and befmemory.conf  (Copied & edited from the memory.conf)\r\n\r\n3)\r\nIn /opt/CAPEv2/conf/cuckoo.conf\r\nAdded time interval section to control the time interval between the memory dumps taken during malware execution\r\n\r\n![3](https://user-images.githubusercontent.com/77826239/216498509-f7c1175d-7e59-4c6c-8737-804165bdc257.png)\r\n\r\n4)\r\nIn /opt/CAPEv2/conf/processing.conf\r\nAdded befmemory, midmemory, midmemory2 sections to enable/disable \tVolatility processing for the memory dumps produced before and during the malware execution; e.g. if enabled = yes for [befmemory] \u2192processor will process befmemory.dmp and produce befmemory.dmp.strings for readability\r\n\r\n![4](https://user-images.githubusercontent.com/77826239/216498553-e761bbe4-dd0c-4250-97c0-a1d688b3b63b.png)\r\n\r\n5) \r\nIn /opt/CAPEv2/modules/processing/befmemory.py\r\nIn /opt/CAPEv2/modules/processing/midmemory.py\r\nIn /opt/CAPEv2/modules/processing/midmemory2.py\r\n\t\t\r\nIn /opt/CAPEv2/web/templates/analysis/befmemory/\u2026\r\nIn /opt/CAPEv2/web/templates/analysis/midmemory/\u2026\r\nIn /opt/CAPEv2/web/templates/analysis/midmemory2/\u2026\r\nIn /opt/CAPEv2/web/templates/befmemory/\u2026\r\nIn /opt/CAPEv2/web/templates/midmemory/\u2026\r\nIn /opt/CAPEv2/web/templates/midmemory2/\u2026\r\n\r\nAdded these directories (which are copies of /opt/CAPEv2/web/templates/memory/\u2026) to display the Volatility-processed information in the web interface for memory dumps before and during the malware execution\r\n\r\n6)\r\nCd to /opt/CAPEv2/conf copy the memory.conf to a newly created befmemory.conf and midmemory.conf. Enable all of the features\r\n\r\n7)\r\nIn /opt/CAPEv2/web/templates/analysis/report.html\r\nAdded befmemory, midmemory and midmemory2 tabs to toggle views for Volatility-processed information in the web interface\r\n![5](https://user-images.githubusercontent.com/77826239/216498935-6c377ae5-371b-46c6-be98-237ab419e6f3.png)\r\n![6](https://user-images.githubusercontent.com/77826239/216498943-7d7c115d-f222-4398-94c4-c5ce6e072a40.png)\r\n\r\n8) \r\nIn /opt/CAPEv2/web/web/urls.py\r\nAdded URLs to download the memory dump and memory dump strings file for memory dumps before and during malware execution\r\n![7](https://user-images.githubusercontent.com/77826239/216499076-2225333b-1923-4895-bf3e-bd40f0432bb6.png)\r\n\r\n9)\r\nIn /opt/CAPEv2/web/analysis/views.py\r\nAdded functions to download the memory dump and memory dump strings file for memory dumps before and during malware execution. Also added functions to allow viewing of memory dump information on web interface\r\n\r\n![8](https://user-images.githubusercontent.com/77826239/216499118-0f94edc8-7b11-45b8-b0cf-75692440f1db.png)\r\n![9](https://user-images.githubusercontent.com/77826239/216499125-dac5d8d8-6452-4bdd-9e07-8ea8ce8b4b83.png)\r\n\r\nThere were also some inconsistencies with the page navigation (after navigating to page 2, the navigation bar disappears), so we added the relevant codes for the navigation to work smoothly\r\n\r\n![10](https://user-images.githubusercontent.com/77826239/216499157-05a2680d-00d4-4aed-a4bc-a0e0516ab7ec.png)\r\n(The else block was not present previously, hence the navigation will always be hidden even for pages after page 1)\r\n\r\n10)\r\nIn /opt/CAPEv2/lib/cuckoo/core/guest.py\r\nModified to use the time interval from the /opt/CAPEv2/conf/cuckoo.conf for the sake of dumping memory during malware execution. Also added additional parameters (which are passed from /opt/CAPEv2/lib/cuckoo/core/scheduler.py) to dump the memory at the specified interval at the correct file path. *midmemory.dmp and midmemory2.dmp will not be produced if the analysis ends before the specified time interval\r\n\r\n![11](https://user-images.githubusercontent.com/77826239/216499232-0a6b0aed-ecb9-42f3-8909-53fd4f633810.png)\r\n\r\n\r\n\r\n\r\n\nComment: hello for start before even starting checking your feature. please update code from master branch properly. You reverting a lot of code to old code that will break many parts. you have more than 2k files modified is insane for the PR",
+  "Title: Master2\nBody: None",
+  "Title: Cannot import extra module in submit.py\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n* Free support from doomedraven ended - no whiskey, no support. For updates check the documentation.\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I did read the README!\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nI try to install a pip3 module named mail-parser. It's installed successfully by python. \r\nSo i try to import it in the file submit.py via \"import mailparser\" how normally the modules a imported in a .py script.\r\n\r\nKnow the module should be import in that script.\r\n\r\n# Current Behavior\r\n\r\nCurrent it throws an error, that the module cannot be found\r\n\r\n# Failure Information (for bugs)\r\n\r\nI want to modify a littlebit of the submit.py\r\nI've tried, how its described in the manual to import it via \"from lib import mailparser\" but it also not works. (and yes I moved the mailparser to the lib folder)\r\n\r\nerror image:\r\n![grafik](https://user-images.githubusercontent.com/26329784/216424510-407459fa-932e-47ef-8fc2-658aba134e15.png)\r\n\r\n\r\n## Steps to Reproduce\r\n\r\n1. install mail-parser via pip3 install mail-parser\r\n2. open submit.py and add the line import mailparser (yes, mailparser without an \"-\")\r\n3. try to run the submit.py like in the image above\r\n\r\n## Context\r\n\r\nNo context needed.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 16.04, Windows 10, macOS 10.12.3\r\n\r\n## Failure Logs\r\n\r\n![grafik](https://user-images.githubusercontent.com/26329784/216424941-02d95174-3fe7-4dfe-8d1e-509f3e073d4f.png)\r\n\r\nThis is in the submit.py\r\n![grafik](https://user-images.githubusercontent.com/26329784/216425052-07a03cb2-ea4e-4cb6-9ced-355deb294d88.png)\r\n\r\n\r\nThanks in advance for answers, I need really help!\nComment: I'm sorry. Im dump. \r\nFor everyone who had the same problem installing extra modules:\r\nYou need to install it like this: sudo -u cape poetry run pip3 install _modulename_\nComment: Thanks for the update - glad you got it sorted",
+  "Title: link to #1340 when configuring apicall_details\nBody: Link people to the open #1340 bug when reading apicall_details configuration.",
+  "Title: allow apicall details from signature to be on/off\nBody: None",
+  "Title: signatures save API call data to MongoDB in the wrong spot, resulting in data loss\nBody: - [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nAPI call data should go in the MongoDB \"calls\" collection, regardless of where they come from (signatures, behavioral, etc.).\r\n\r\n# Current Behavior\r\n\r\nAPI call data from signatures gets embedded in the \"signatures\" key.\r\n\r\nThis can make the MongoDB document huge, which will trigger the [fix_large_docs](https://github.com/kevoreilly/CAPEv2/blob/7954d80a03db7016c303bda544d27d51941eb425/conf/reporting.conf#L81) configuration setting kicks in, and [data gets dropped](https://github.com/kevoreilly/CAPEv2/blob/7954d80a03db7016c303bda544d27d51941eb425/modules/reporting/mongodb.py#L158) from the MongoDB document.\r\n\r\nCompare that to behavioral API call data that **does** go into the MongoDB \"calls\" collection and is handled by [report_doc](https://github.com/kevoreilly/CAPEv2/blob/7954d80a03db7016c303bda544d27d51941eb425/modules/reporting/report_doc.py#L108).\r\n\r\n# Failure Information (for bugs)\r\n\r\n## Steps to Reproduce\r\n\r\n1. submit a sample that will generate a lot of API call data from signatures ([anomalous_deletefile](https://github.com/kevoreilly/community/blob/master/modules/signatures/anomalous_deletefile.py) is a good one)\r\n2. if you're lucky, the data that will be lost is the signature data API calls, but it could be another key (like \"behavior\" or something equally as valuable)\r\n\r\n## Context\r\n\r\nUsing the latest version of both CAPE and the community rules.\r\n\r\n## Failure Logs\r\n\r\nSome examples of random keys getting dropped:\r\n\r\n```\r\n[Task 2407154] [modules.reporting.mongodb] WARNING: Largest parent key: signatures (7 MB)\r\n[Task 2407266] [modules.reporting.mongodb] WARNING: Largest parent key: dropped (8 MB)\r\n[Task 2407503] [modules.reporting.mongodb] WARNING: Largest parent key: procdump (11 MB)\r\n[Task 2407532] [modules.reporting.mongodb] WARNING: Largest parent key: behavior (6 MB)\r\n[Task 2407593] [modules.reporting.mongodb] WARNING: Largest parent key: target (9 MB)\r\n```\nComment: @nbargnesi: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: i have suggestion, not sure if the best, but i personally don't need those calls in signatures, we can add config option to enable them for users that need it. what do you think?\nComment: https://github.com/kevoreilly/CAPEv2/pull/1341\nComment: It's a good change right now, particularly because of the potential for data loss. But I'd suggest we leave this open and link to it in the changes in #1341.\r\n\r\nI'll comment there.\nComment: if you have a better solution let us know\nComment: To fix the bug, we can drop those API calls in the \"calls\" collection which is identical to how [behavioral API calls are stored by report_doc](https://github.com/kevoreilly/CAPEv2/blob/7954d80a03db7016c303bda544d27d51941eb425/modules/reporting/report_doc.py#L122).\r\n\r\nBut it's worth keeping the configuration setting you added as well. Like you said, not everyone needs those calls.\r\n\nComment: https://github.com/kevoreilly/CAPEv2/pull/1366\nComment: thank you both",
+  "Title: mitre test\nBody: None\nComment: ok mitre 7.0.0 is tested, changing test to test only on different version",
+  "Title: Fix file trimming\nBody: None",
+  "Title: lib/cuckoo/common/integrations not pulling from community repo\nBody: Hello\r\n\r\nI was encountering an issue where PDF parsing broke on a recent pull. From my investigation it became apparent that PDFID/pdftools was moved in a recent commit. When community.py runs, it does not use the lib/cuckoo/common/* folder at all. As a result, [the following files](https://github.com/kevoreilly/community/tree/master/lib/cuckoo/common) are not copied down.\r\n\r\n\r\n\r\nIf this bug can be confirmed and you're happy with this fix (assuming I do it more robustly), I will submit a PR.\r\n\r\n# My Fix\r\nI fixed this for myself by adding a 'folder' for integrations in community.py as follows:\r\n````\r\nfolders = {\r\n        \"feeds\": \"modules/feeds\",\r\n        \"signatures\": \"modules/signatures\",\r\n        \"processing\": \"modules/processing\",\r\n        \"reporting\": \"modules/reporting\",\r\n        \"machinery\": \"modules/machinery\",\r\n        \"analyzer\": \"analyzer\",\r\n        \"data\": \"data\",\r\n        \"integrations\":\"lib/cuckoo/common/integrations\",\r\n  }\r\n````\r\nI then added this to the \"all\" invocation by appending it to the end of the array:\r\n```\r\n    if args.all:\r\n        enabled = [\"feeds\", \"processing\", \"signatures\", \"reporting\", \"machinery\", \"analyzer\", \"data\", \"integrations\"]\r\n```\r\n\r\nTo make this fix more comprehensive a method for just adding the integrations, or even the whole lib/cuckoo/common folder would need to be added in addition to adding this to the \"all\". I am happy to do this if you're in agreement.\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nOn a fresh install, the required pdftools folder is copied down from the community repo when community.py runs.\r\n\r\n# Current Behavior\r\n\r\nThe pdftools folder is not copied down\r\n\r\n# Failure Information (for bugs)\r\nThis will fail whenever a PDF is submitted or when the processor starts up. However, it fails silently. By default this try except doesn't produce any output, so I threw in a print for my own debugging:\r\n```\r\ntry:\r\n    HAVE_PDF = True\r\n    from lib.cuckoo.common.integrations.pdftools.pdfid import PDFiD, PDFiD2JSON\r\nexcept ImportError:\r\n    print(\"help! I lost pdftools\")\r\n    HAVE_PDF = False\r\n```\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n* Perform a fresh reinstall\r\n* Stop the cape-processor so you can run it manually\r\n`sudo service cape-processor stop`\r\n* Run the cape processor manually:\r\n`poetry run python  process.py -p7 auto -pt 900`\r\n* View the message you put into the except above:\r\n```\r\nhelp! I lost pdftools\r\n```\r\n\r\nAn alternative way to reproduce is as follows:\r\n```\r\npoetry run python  community.py -a | grep -i integrations\r\n```\r\n\r\n\r\n## Context\r\n\r\nI'm not sure context is relevant here, I am using the base install not the all install. But I think the issue is with the way community.py parses the master.tar.gz archive file. Happy to provide context if it is required.\r\n\r\n\r\n## Failure Logs\r\n\r\nThe easiest way to tell you're impacted is to see if parsing pdfs results in a pdf object in the report.json. You can confirm the same check in the UI too by checking if the PDF button is clickable:\r\n<img width=\"241\" alt=\"pdf-button\" src=\"https://user-images.githubusercontent.com/123940670/215552435-8c6b4437-7ab1-4d7c-83d2-b3d0305ad960.png\">\nComment: @vitalgingerbread: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: the pull request with solution would be useful. will add that thanks for headups\nComment: fixed\nComment: Ah, legend, thanks a bunch @doomedraven!",
+  "Title: simplify rooter socket \nBody: None",
+  "Title: add fstab utils for NFS dist mode\nBody: None",
+  "Title: add items to ignore that are created by utils/community.py to .gitignore\nBody: Minor cleanup here so git ignores stuff pulled in via utils/community.py -waf\nComment: Also pushed a small fix for the install scripted as well where I used if ( ... ) instead of if [ ... ].\r\n\r\nThanks @ethhart .\nComment: Can we use wildcards for the .gitignore to keep it cleaner and automatically include future files?\nComment: > Can we use wildcards for the .gitignore to keep it cleaner and automatically include future files?\r\n\r\nVery much agreed.\r\n\r\nThat said as it currently stands, not aware of any directory that that does not also have stuff included in it from the base.\r\n\r\nIf you know of any or spot any, definitely point it out. :)\nComment: yeah. Realized that once I posted. Eventually we should shove those in their own community directory and traverse or copy them to keep them separate. \nComment: so what is the reason to have community in cape's ignore?\nComment: i have fixed installer by hand\nComment: > so what is the reason to have community in cape's ignore?\r\n\r\nIMHO it is nice as so if you do a `git status` you don't get this bombed with a bunch of items you don't care that about not being in git.\r\n\nComment: You can manually add it `.git/info/exclude`, but I don't think this should be part of `.gitignore`\nComment: > You can manually add it `.git/info/exclude`, but I don't think this should be part of `.gitignore`\r\n\r\n\nComment: > You can manually add it `.git/info/exclude`, but I don't think this should be part of `.gitignore`\r\n\r\nRight, but there is no good reason not to have to manually do this though as it just makes in every manner to work on/manage as you have to keep closer track of what you've added or the like v. what was dumped into place via the community script.\r\n\r\nThat said may be possibly a better idea to auto generate that via community script.\nComment: Here are my main concerns:\r\n\r\n1. This is the wrong usage of `.gitignore`\r\n    > .gitignore file lists all of the files that are local to a project that Git should not push to GitHub\r\n\r\n    What if someone is working on the community signatures and not on CAPE itself? If this script is automatically done in cape's installer, he/she would be pretty confused\r\n\r\n2. Even if this isn't done automatically and instead the user has to explicitly allow this adding to `.git/info/exclude`, who will be checking the community repo to update this \"automatic\" updating?\r\n3. What if, for whatever reason, there are files in community that overwrite CAPEv2's files? (this has happened before, and it probably won't be the last time)\r\n\r\nThe best solution would be to use a proper project structure where we don't have to rely on writing files to the same directory structure that is handled by git (e.g. symlinking / pointing modules/signatures to `/opt/capev2_signatures` and other directories instead), but at this point I think the project structure is way too messy to configure this. And there are other tasks that require higher priority.\nComment: 1: The community repo and this repo are two different items. So this is not relevant.\r\n\r\n2/3: You seem to be missing the point of automatic generation. It handles both of these if you integrate it with the update script. In fact this enables nice automated detection and avoidance for three.\r\n\r\nThat said closing as this should be automated.",
+  "Title: add more options to the installer\nBody: ClamAV support can now be enabled via an option instead of having to call separately.\r\n\r\nMongoDB(and by extension the web stuff) can now be disabled. Defaults to on.\r\n\r\nLibreNMS support is now available for it. Various options for that. This will enabled snmpd.\r\n\r\nOn a related note, finalizing Sneck support in LibreNMS is on my todo list, but this does configure it. Sneck basically exists to get around the massive short comings of NRPE as well as provide something that integrates nicely with LibreNMS.",
+  "Title: Fixing broken Submission Page \nBody: See commit 6adb1a84e87f400599d9037fa3b6e0c10ee5a813\nComment: thanks, funny that test didn't catch it",
+  "Title: something broke in regards to the plugins, looks to appear to be related to one note\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n* Free support from doomedraven ended - no whiskey, no support. For updates check the documentation.\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I did read the README!\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\n.CAPE is generated in the report.json as well as pdf generation etc works.\r\n\r\n# Current Behavior\r\n\r\nAppears that this is breaking lots of other modules futher down the line. Been looking through this and I am fairly certain this was a change some place in the last two or three weeks. Been looking through and nothing has stood our yet.  But definitely some change in the last few weeks since it did not break when I updated earlier this month.\r\n\r\n```\r\n2023-01-25 16:07:49,286 [Task 95108] [lib.cuckoo.core.plugins] ERROR: Failed to run the processing module \"CAPE\": 'Config' object has no attribute 'office_one'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 243, in process\r\n    data = current.run()\r\n  File \"/opt/CAPEv2/utils/../modules/processing/CAPE.py\", line 362, in run\r\n    self.process_file(\r\n  File \"/opt/CAPEv2/utils/../modules/processing/CAPE.py\", line 193, in process_file\r\n    static_file_info(\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/file_extra_info.py\", line 246, in static_file_info\r\n    generic_file_extractors(\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/file_extra_info.py\", line 433, in generic_file_extractors\r\n    if not getattr(selfextract_conf, funcname).get(\"enabled\", False):\r\nAttributeError: 'Config' object has no attribute 'office_one'\r\n```\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\n1. Update to the newest from git.\r\n2. Run the relevant poetry commands to make sure everything is up to date.\r\n3. Enable PDF or lite json.\r\n4. Restart and watch the logs.\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | a5f5a23ec9e209ad2f0983413444489f798f543b\r\n| OS version       | Ubuntu 20.04, Windows 10\r\n\r\n## Failure Logs\r\n\r\nAll the subsequent errors appear to be releated to the first.\r\n\r\nThe Suricata PCAP errors can be ignored. No dirty line or the like in use, so no PCAPs is to be expected.\r\n\r\n```\r\n2023-01-25 15:50:24,796 [Task 95093] [root] INFO: Reports generation completed\r\n2023-01-25 15:51:08,956 [Task 95090] [root] INFO: Processing analysis data for Task #95090\r\n2023-01-25 15:51:10,011 [Task 95090] [lib.cuckoo.core.plugins] ERROR: Failed to run the processing module \"CAPE\": 'Config' object has no attribute 'office_one'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 243, in process\r\n    data = current.run()\r\n  File \"/opt/CAPEv2/utils/../modules/processing/CAPE.py\", line 362, in run\r\n    self.process_file(\r\n  File \"/opt/CAPEv2/utils/../modules/processing/CAPE.py\", line 193, in process_file\r\n    static_file_info(\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/file_extra_info.py\", line 246, in static_file_info\r\n    generic_file_extractors(\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/file_extra_info.py\", line 433, in generic_file_extractors\r\n    if not getattr(selfextract_conf, funcname).get(\"enabled\", False):\r\nAttributeError: 'Config' object has no attribute 'office_one'\r\n2023-01-25 15:51:13,121 [Task 95090] [modules.processing.network] WARNING: The PCAP file does not exist at path \"/opt/CAPEv2/storage/analyses/95090/dump.pcap\"\r\n2023-01-25 15:51:13,122 [Task 95090] [modules.processing.suricata] WARNING: Unable to Run Suricata: Pcap file /opt/CAPEv2/storage/analyses/95090/dump.pcap does not exist. Did you run analysi\r\ns with live connection?\r\n2023-01-25 15:51:17,906 [Task 95090] [lib.cuckoo.core.plugins] ERROR: Failed to run the reporting module \"Malheur\": 'target'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 715, in process\r\n    current.run(self.results)\r\n  File \"/opt/CAPEv2/utils/../modules/reporting/malheur.py\", line 153, in run\r\n    if results[\"target\"][\"category\"] in [\"pcap\"]:\r\nKeyError: 'target'\r\n2023-01-25 15:51:17,951 [Task 95090] [lib.cuckoo.core.plugins] WARNING: The reporting module \"ReportHTML\" returned the following error: Failed to generate summary HTML report: 'dict object' \r\nhas no attribute 'CAPE'\r\n2023-01-25 15:51:18,093 [Task 95090] [lib.cuckoo.core.plugins] WARNING: The reporting module \"ReportHTMLSummary\" returned the following error: Failed to generate summary HTML report: 'dict o\r\nbject' has no attribute 'CAPE'\r\n2023-01-25 15:51:18,171 [Task 95090] [lib.cuckoo.core.plugins] WARNING: The reporting module \"ReportPDF\" returned the following error: Unable to open summary HTML report to convert to PDF: E\r\nnsure reporthtmlsummary is enabled in reporting.conf\r\n2023-01-25 15:51:18,172 [Task 95090] [lib.cuckoo.core.plugins] ERROR: Failed to run the reporting module \"RunStatistics\": object of type 'NoneType' has no len()\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 715, in process\r\n    current.run(self.results)\r\n  File \"/opt/CAPEv2/utils/../modules/reporting/runstatistics.py\", line 93, in run\r\n    detail[\"dropped_files\"] = self.getDroppedFileCount(results)\r\n  File \"/opt/CAPEv2/utils/../modules/reporting/runstatistics.py\", line 19, in getDroppedFileCount\r\n    return len(results.get(\"dropped\"))\r\nTypeError: object of type 'NoneType' has no len()\r\n2023-01-25 15:51:18,263 [Task 95090] [root] INFO: Reports generation completed\r\n\r\n```\r\n\nComment: Ohh! Derp!\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/commit/30128f1d6143d1c75570d592dd4ac7bc8e96b278\r\n\r\nWhen copying config stuff into place post update accidentally missed that item being added.\r\n\r\nApparently it does not handle undef nicely.\nComment: yeah those configs are headache. so please read readme that i added yesterday in conf folder to simplify your life https://github.com/kevoreilly/CAPEv2/tree/master/conf\nComment: @doomedraven Ohh! Cool. Need to look into that.\r\n\r\nOn a related note, apparently it looks like the missing config item was not causing the latter dropped file errors. Looks like in some cases if nothing is dropped, then that hash is not created, resulting in that alert.\r\n\r\nGot a PR to fix that here... https://github.com/kevoreilly/community/pull/336  :)",
+  "Title: dist.py with GCP support\nBody: None",
+  "Title: Fix pagination bug\nBody: While the first page has the page navigation bar, it disappears on the second page. This was due to missing codes in Python file \"views.py\" which controlled the information displayed on the HTML templates.\r\n\r\n![navigationbug](https://user-images.githubusercontent.com/77826239/214457285-e11cebf6-35a6-4e36-a365-875e1dc77b99.png)\r\n\r\n\r\nAfter rectifying the error and improving the Python script, the page navigation bar appears on the second page as well.\r\n\r\n\r\n![navigation_bug](https://user-images.githubusercontent.com/77826239/214456955-d55b6dce-bfb9-4a51-9722-a00761c58c69.png)\r\n\nComment: interesting, thank you",
+  "Title: how to use rooter on macOS\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nrooter.py supports compatibility with macOS\r\n\r\n# Current Behavior\r\n\r\nAfter starting cape and submitting a sample, I get the following error: \r\n\r\n`[lib.cuckoo.core.rooter] CRITICAL: Unable to passthrough root command (drop_enable) as the rooter unix socket doesn't exist`\r\n\r\nThe rooter.py script couldn't run on macOS.  It's based on `iptables`, and macOS utilize a similar but different firewall called `pf`.\r\n\r\nThe samples could successfully run on the guest VM and I can see this from the cuckoo log. But the analysis is forever under `processing` and never generates any report. \r\n\r\nCould you please give some workaround/suggestions on how to set up the network routing on macOS? I would be very grateful!\r\n\r\n## Context\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | commit ac3fabcfa53dac2dbe7b6b4abd80a1a3aa6101ce\r\n| OS version       | macOS 10.12.3\r\n\r\n\nComment: @CassieXx0215: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: we don't support anything else that is not Ubuntu",
+  "Title: cape-processor: Add task ID to process listing.\nBody: This makes it easier to identity which task a forked process is processing, particularly when it's consuming tons of memory/CPU.\r\n\r\ncape     2682298 2681236  0 21:19 ?        00:00:00 /opt/CAPEv2/.venv/bin/python process.py -p14 auto -pt 1800\r\ncape     2682301 2681236 99 21:19 ?        00:00:18 /opt/CAPEv2/.venv/bin/python process.py -p14 auto -pt 1800 [Task 384385]\r\ncape     2682302 2681236 40 21:19 ?        00:00:07 /opt/CAPEv2/.venv/bin/python process.py -p14 auto -pt 1800 [Task 384366]\nComment: interesting one, thank you",
+  "Title: document LibreNMS monitoring integration for CAPEv2\nBody: CAPEv2 support has now been committed to LibreNMS.\r\n\r\nMonitors....\r\n\r\n- pending (this one is especially handy... will give 25th/50th/75th percentile and 2hr/daily/weekly averages)\r\n- log line count/type\r\n- run status types\r\n- run stats(anti_issues etc) by both total and by package\r\n- package type\r\n- malscore\r\n\nComment: The LibreNMS PR for any one curious... https://github.com/librenms/librenms/pull/14801\nComment: thank you",
+  "Title: Fix VT download\nBody: None",
+  "Title: Fix path_safe()\nBody: None",
+  "Title: onenote import fix\nBody: None",
+  "Title: This account is inactive/Admin set manual approve.\nBody: \r\n\r\nI wanted to log on your website ( https://capesandbox.com/) but when i try this message error happend : \"This account is inactive/Admin set manual approve\" \r\nmy username is mkutu. \r\n Can you please unblock me.\r\n\r\nBest regards \nComment: @MichelKutu: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.",
+  "Title: check max size for extracted files\nBody: None",
+  "Title: One file extract\nBody: None",
+  "Title: refurb\nBody: None",
+  "Title: Small fix\nBody: None",
+  "Title: Fix bug memory Analysis Information\nBody: Notice that the Path and Load Times do not have the proper information.\r\n\r\nWe rectified the HTML templates such that the Path and Load Times would be properly displayed.\r\n\r\n![memory_analysis_info](https://user-images.githubusercontent.com/77826239/213397395-b25786d4-3386-4e20-9463-b875bc299d11.jpeg)\r\n\nComment: thank you",
+  "Title: Report not generate\nBody: OS: Ubuntu 22.04\r\nreport not generate, but report.json it's ok \r\n\r\n[Task 3] [lib.cuckoo.core.plugins] WARNING: The reporting module \"ReportHTML\" returned the following error: Failed to generate summary HTML report: expected token 'end of print statement', got ':' on generic/_file_info.html, line 267\r\n[Task 3] [lib.cuckoo.core.plugins] WARNING: The reporting module \"ReportHTMLSummary\" returned the following error: Failed to generate summary HTML report: expected token 'end of print statement', got ':' on generic/_file_info.html, line 267\r\n[Task 3] [lib.cuckoo.core.plugins] WARNING: The reporting module \"ReportPDF\" returned the following error: Unable to open summary HTML report to convert to PDF: Ensure reporthtmlsummary is enabled in reporting.conf\r\n[Task 2] [root] INFO: Reports generation completed\nComment: @tionosaja: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.",
+  "Title: tweak installer/cape2.sh so it will read in a config file if present\nBody: Modded this for making it easier to spin up a instance via Ansible. Don't need to deal with tracking this file or modding. Drop the config file in the directory, give it a kick, and one is good to go.",
+  "Title: BytesIO with\nBody: None",
+  "Title: add Cobalt Strike Stager parser\nBody: Handles HTTP(S), DNS, and SMB Stagers\r\n\r\ntest files:\r\nhttps://www.virustotal.com/gui/file/daccaaa8703bfd18b451c7309dcae8a211f3ff1f418ac8bfdee173ec8aa2ec58/\r\nhttps://www.virustotal.com/gui/file/1a9759c01260f57537fc1b9f2ca57cb4f93b2d70da47bd6129c3748dd564f433/\r\nhttps://www.virustotal.com/gui/file/0be943d5af7b6fe044a54edc0dbf8b08185e0088ecf6d3b5a4d006a31b1ac3ab/",
+  "Title: make max filename len chomping tweakable\nBody: This allows the max filename length as well as the length it will be sanitized to tweakable via config file.\r\n\nComment: just spotted, so FYI\r\n`config = Config()` == `cuckoo_cfg = Config(\"cuckoo\")`",
+  "Title: Fix bugs/speed up/clean up generic file extractors.\nBody: This addresses some issues with how the generic file extractors were being handled and cleans up the code to make them behave a bit more consistently.\r\n - It was often the case, on a somewhat loaded system, that the first task to be checked for \"ready()\" status would not be ready and the timeout would not have elapsed. In this case, we would sleep for 5 seconds. For samples where there are many files to process, we would end up waiting these extra 5 seconds for every one. This adds up quickly. The method for handling the child processes is improved so that we don't need to do that.\r\n - The \"took_seconds\" calculation was inaccurate because it would be counting from when the process pool was created, not from when we starting trying to run the tool, which could be later based on how many workers are in the pool.\r\n - Factored out lots of code so that the unique tool-handling functions are limited to their specific duties.\r\n - Go back to using a ProcessPool but fix how the 'results' and 'duplicated' objects are being handled. They were previously being updated in child processes. These updates would not be reflected in the parent process, essentially losing this data. This was recently addressed by using a ThreadPool instead, which is certainly one way to do it, but this addresses the other issues mentioned above as well and cleans up how the 'results' and 'duplicated' objects are being handled without having to deal with race conditions, which, I believe, are possible in the ThreadPool version.\r\n - Add some additional logging.\nComment: thank you",
+  "Title: py3\nBody: None",
+  "Title: After updating dirty line route not found\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n* Free support from doomedraven ended - no whiskey, no support. For updates check the documentation.\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\r\n\r\n# Current Behavior\r\n\r\nPython3 cuckoo.py failed to run. \r\n\r\n# Failure Information (for bugs)\r\n\r\n2023-01-10 17:34:59,521 [root] CRITICAL: CuckooStartupError: The routing table that has been configured for dirty line interface is not available\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Did an update\r\n2. Rooter\r\n3. Python3 cuckoo.py -d\r\n4. Checked /etc/iproute2/rt_tables for 200 eth1 ---> Good\r\n5. Checked Routing.conf for 200 eth1 ---> Good\r\n\r\n## Context\r\n\r\nNot sure?\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Azure,Ubuntu 20.04, Windows 10\r\n\r\n## Failure Logs\r\n\r\n2023-01-10 17:34:59,521 [root] CRITICAL: CuckooStartupError: The routing table that has been configured for dirty line interface is not available\r\n\nComment: what about `ip addr` and `ip route`?\nComment: Well, none of that should have changed. Do you need the ip address of the node and the ip route? I have had this issue before it always happens when I update cape. This is running in Azure btw. \nComment: i don't need ip, i need to see network interfaces. but if you always have this issue then is Azure issue not cape's as we don't touch that part for years ",
+  "Title: Having issues running CAPE (Physical machinery)\nBody: Hello, I'm having issues starting CAPE. Followed all the CAPE instruction/installing guide for Physical machinery but I get the below error, please advise. I'm able to run the web server without any errors. I run cuckoo using physical machinery with FOG and I have no issues. \r\n\r\nERROR:\r\ncapeuser@CAPE:/opt/CAPEv2$ sudo -u cape poetry run python3 cuckoo.py\r\nCAPE parser: No module named Nighthawk - No module named 'Crypto'\r\n\r\n                               ),-.     /\r\n  Cuckoo Sandbox              <(a  `---','\r\n     no chance for malwares!  ( `-, ._> )\r\n                               ) _>.___/\r\n                                   _/\r\n\r\n Cuckoo Sandbox 2.2-CAPE\r\n www.cuckoosandbox.org\r\n Copyright (c) 2010-2015\r\n\r\n CAPE: Config and Payload Extraction\r\n github.com/kevoreilly/CAPEv2\r\n\r\nOPTIONAL! Missed dependency: pip3 install https://github.com/CAPESandbox/peepdf/archive/20eda78d7d77fc5b3b652ffc2d8a5b0af796e3dd.zip#egg=peepdf==0.4.2\r\nOPTIONAL! Missed dependency: pip3 install -U git+https://github.com/DissectMalware/batch_deobfuscator\r\nOPTIONAL! Missed dependency: pip3 install -U git+https://github.com/CAPESandbox/httpreplay\r\n2023-01-10 04:16:15,625 [lib.cuckoo.core.scheduler] INFO: Using \"physical\" machine manager with max_analysis_count=0, max_machines_count=10, and max_vmstartup_count=5\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/cuckoo.py\", line 121, in <module>\r\n    cuckoo_main(max_analysis_count=args.max_analysis_count)\r\n  File \"/opt/CAPEv2/cuckoo.py\", line 101, in cuckoo_main\r\n    sched.start()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 788, in start\r\n    self.initialize()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 735, in initialize\r\n    machinery.initialize(machinery_name)\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 150, in initialize\r\n    self._initialize(module_name)\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 169, in _initialize\r\n    machine.label = machine_opts[self.LABEL]\r\nKeyError: 'lable'\r\ncapeuser@CAPE:/opt/CAPEv2$ \r\n\nComment: @contractor007: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.",
+  "Title: Microsoft Onenote\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n* Free support from doomedraven ended - no whiskey, no support. For updates check the documentation.\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x ] I am running the latest version\r\n- [x ] I did read the README!\r\n- [x ] I checked the documentation and found no answer\r\n- [x ] I checked to make sure that this issue has not already been filed\r\n- [x ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x ] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nThe expected behavior would be running [Invoice _00198683.one] for analysis. This is malware that we captured today. It seems this is a MS OneNote file.  \r\n\r\n# Current Behavior\r\n\r\nDetected as .vbs script. Are there any analysis packages for MS OneNote? If not is there a possible way to execute this malware to be analyzed running inside the onenote process with Cape? \r\n\r\n# Failure Information (for bugs)\r\n\r\nNo failure\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Ran as expected. \r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Azure, Ubuntu 20.04, Windows 10\r\n\r\n## Failure Logs\r\n\r\nN/A\r\n\nComment: what about https://github.com/kevoreilly/CAPEv2/blob/master/analyzer/windows/modules/packages/one.py ?\nComment: i guess it needs some detection for proper package selection\nComment: I just noticed that. Thank you. \nComment: Just looking at this now - my test ended up running as hta despite correct .one extension and selection code in analyzer/lib/core/packages.py\nComment: @WVAuditors can you share magic signature from ms one file to add it to sflock?\nComment: @doomedraven I sure can just fill me in on what magic signature is. Are you referring the 256SHA hash? Or do I need to look elsewhere? \r\n \nComment: ```\r\nmagic = open(self.sample_path, \"rb\").read(16)\r\n    if magic == b\"\\xE4\\x52\\x5C\\x7B\\x8C\\xD8\\xA7\\x4D\\xAE\\xB1\\x53\\x78\\xD0\\x29\\x96\\xD3\":\r\n        # it's onenote\r\n```\nComment: I am sorry not a clue. \r\n\nComment: I was able to add the analysis package one.py. Ran it through analysis and lots of bad behavior. I wish I could help you more on the magic signature part. Please pardon my ignorance I am just not familiar enough with what you are referring to. \nComment: Analysis on my private sandbox\r\n\r\nTimestamp\tSource IP\tSource Port\tDestination IP\tDestination Port\tProtocol\tGID\tSID\tREV\tSignature\tCategory\tSeverity\r\n2023-01-09 17:37:30.831129+0000\t10.14.2.5 [VT]\t50419\t8.8.8.8 [VT]\t53\tUDP\t1\t2034316\t1\tET POLICY Observed DNS Query to File Transfer Service Domain (transfer .sh)\tPotentially Bad Traffic\t2\r\n2023-01-09 17:37:30.831129+0000\t10.14.2.5 [VT]\t50419\t8.8.8.8 [VT]\t53\tUDP\t1\t2035139\t1\tET INFO Commonly Abused File Sharing Site Domain Observed (transfer .sh in DNS Lookup)\tMisc activity\t3\r\n2023-01-09 17:37:30.855537+0000\t10.14.2.5 [VT]\t50419\t8.8.8.8 [VT]\t53\tUDP\t1\t2034316\t1\tET POLICY Observed DNS Query to File Transfer Service Domain (transfer .sh)\tPotentially Bad Traffic\t2\r\n\r\nSignatures\r\nCAPE extracted potentially suspicious content\r\nMultiple direct IP connections\r\nDNS query to anonymous/temporary file storage service detected\r\nCreated network traffic indicative of malicious activity\r\n\r\n\r\n\r\nAnalysis on public sandbox\r\nNo Detections - Ran as vbs package\r\n\r\n\r\nhttps://capesandbox.com/analysis/351206/\r\n\r\nFilename\t\r\nInvoice _00198683.one\r\nFile Type\tdata\r\nFile Size\t20584 bytes\r\nMD5\taf9e5a25e7ce6b5cdfbb8ebbede5de0c\r\nSHA1\tc87208e439945d3a15111475dce7a763fef75438\r\nSHA256\t15212428deeeabcd5b11a1b8383c654476a3ea1b19b804e4aca606fac285387f [VT] [MWDB] [Bazaar]\r\nSHA3-384\t7ff3b722fd4efa69ad4033a18d2cdbca395e2596a8ad071f654e6b510a392cbc5a21a64e88e12b0545d694fce3d3a0ed\r\nCRC32\t71EAF22C\r\nTLSH\tT179927C253BD19159C5F968325AD3EB09656AFB112662070FFB89268C4F34340CEA1FEF\r\nSsdeep\t384:itxsi54pydQRlAueAr+KDfx+ZJOEgJ+6eAL:itxsiWpDRlwkkwEgJ7\nComment: filetype/magic but i see that is data in cape\r\n\r\n```\r\nfile --mime yaraQA.py\r\nyaraQA.py: text/x-script.python; charset=us-ascii\r\n\r\nfile yaraQA.py\r\nyaraQA.py: Python script text executable, ASCII text\r\n```\nComment: i have released sflock2 with ms one detection, upgrade it to latest version\r\npip3 install -U SFlock2 or poetry run pip install -U SFlock2\nComment: I was able to get the output below if that helps anything for magic signature. \r\n\r\nb'\\xe4R\\\\{'\nComment: Installing collected packages: SFlock2\r\n  Attempting uninstall: SFlock2\r\n    Found existing installation: SFlock2 0.3.34\r\n    Uninstalling SFlock2-0.3.34:\r\n      Successfully uninstalled SFlock2-0.3.34\r\nSuccessfully installed SFlock2-0.3.41\nComment: Kevin provided proper magic for that. so now it should be autodetected and set to one package\nComment: ```\r\n>>> from sflock import unpack\r\n>>> q = unpack(b\"file.cab\")\r\nKeyboardInterrupt\r\n>>> a = unpack(b\"15212428deeeabcd5b11a1b8383c654476a3ea1b19b804e4aca606fac285387f\")\r\n>>> a.package\r\n'one'\r\n```\r\n\r\nso that sets now proper package",
+  "Title: Typo and adding onenote to packages doc\nBody: None",
+  "Title: Fix jinja2 error creating html report\nBody: None",
+  "Title: Fix KeyError\nBody: fix condition where raw_value key may not exist, also raw_value_string was introduced, not sure if this also needs to be checked here, but added just in case\nComment: can you check my changes?\nComment: Looks good.",
+  "Title: test python3.11\nBody: None",
+  "Title: Unhandled exception in vbe_extract->decode_file\nBody: ```\r\nTraceback (most recent call last):                                                                                                                                                                         \r\n  File \"/capev2/utils/../lib/cuckoo/common/integrations/file_extra_info.py\", line 457, in vbe_extract                                                                            \r\n    decoded = vbe_decode_file(file, data)                                                                                                                                                                  \r\n  File \"/capev2/utils/../lib/cuckoo/common/integrations/vbe_decoder.py\", line 277, in decode_file                                                                                \r\n    encoded_data = re.findall(r\"#@~\\^......==(.+)......==\\^#~@\", contents)                                                                                                                                 \r\n  File \"/usr/lib/python3.8/re.py\", line 241, in findall                                                                                                                                                    \r\n    return _compile(pattern, flags).findall(string)                                                                                                                                                        \r\nTypeError: cannot use a string pattern on a bytes-like object \r\n```\nComment: @stamparm: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: thanks fix is part of https://github.com/kevoreilly/CAPEv2/pull/1299",
+  "Title: Adding the dump path to the upload_to_host log\nBody: It is difficult to trace files in the debug logs that have been uploaded to the host with a path that renames the file to it's SHA256 hash. This should solve that.",
+  "Title: Recents tabs fix\nBody: Don't show URLs tab in recents if disabled in web.conf",
+  "Title: code cleanup\nBody: None",
+  "Title: Address issue storing integers larger than what MongoDB supports.\nBody: For call arguments whose raw_value is an int larger than 0x7fffffffffffffff (int64_max), store the value as a string using the key \"raw_value_string\".",
+  "Title: Fixing bugs to allow debugging of a single signature\nBody: When attempting to debug a single signature with the latest code, I ran into several bugs.\r\n\r\nIf a test signature was provided, `self.evented_lis`t and `self.non_evented_list` were no longer lists, `stats` did not contain every signature name as a key, and the `statistics` key had the potential to not present in `self.results`.\r\n\r\nThese are all fixed in this PR.",
+  "Title: malscore config in search results\nBody: None",
+  "Title: Libvirt Install Issue \nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\ncape\r\n## This is open source and you are getting __free__ support so be friendly!\r\n* Free support from doomedraven ended - no whiskey, no support. For updates check the documentation.\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\nRunning cuckoo.py\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\r\n\r\n# Current Behavior\r\n```\r\nubuntu@ip-172-31-21-22:/opt/CAPEv2/extra$ pip3 install libvirt-python\r\nDefaulting to user installation because normal site-packages is not writeable\r\nCollecting libvirt-python\r\n  Using cached libvirt-python-8.10.0.tar.gz (240 kB)\r\n  Preparing metadata (setup.py) ... done\r\nBuilding wheels for collected packages: libvirt-python\r\n  Building wheel for libvirt-python (setup.py) ... error\r\n  error: subprocess-exited-with-error\r\n\r\n  \u00d7 python setup.py bdist_wheel did not run successfully.\r\n  \u2502 exit code: 1\r\n  \u2570\u2500> [47 lines of output]\r\n      Package libvirt was not found in the pkg-config search path.\r\n      Perhaps you should add the directory containing `libvirt.pc'\r\n      to the PKG_CONFIG_PATH environment variable\r\n      No package 'libvirt' found\r\n      Package libvirt was not found in the pkg-config search path.\r\n      Perhaps you should add the directory containing `libvirt.pc'\r\n      to the PKG_CONFIG_PATH environment variable\r\n      No package 'libvirt' found\r\n      running bdist_wheel\r\n      running build\r\n      running build_py\r\n      Package libvirt was not found in the pkg-config search path.\r\n      Perhaps you should add the directory containing `libvirt.pc'\r\n      to the PKG_CONFIG_PATH environment variable\r\n      No package 'libvirt' found\r\n      Traceback (most recent call last):\r\n        File \"<string>\", line 2, in <module>\r\n        File \"<pip-setuptools-caller>\", line 34, in <module>\r\n        File \"/tmp/pip-install-hzjjfmi1/libvirt-python_c0346843f95645659538cd817c3074e4/setup.py\", line 337, in <module>\r\n          setup(name = 'libvirt-python',\r\n        File \"/usr/lib/python3/dist-packages/setuptools/__init__.py\", line 153, in setup\r\n          return distutils.core.setup(**attrs)\r\n        File \"/usr/lib/python3.10/distutils/core.py\", line 148, in setup\r\n          dist.run_commands()\r\n        File \"/usr/lib/python3.10/distutils/dist.py\", line 966, in run_commands\r\n          self.run_command(cmd)\r\n        File \"/usr/lib/python3.10/distutils/dist.py\", line 985, in run_command\r\n          cmd_obj.run()\r\n        File \"/usr/lib/python3/dist-packages/wheel/bdist_wheel.py\", line 299, in run\r\n          self.run_command('build')\r\n        File \"/usr/lib/python3.10/distutils/cmd.py\", line 313, in run_command\r\n          self.distribution.run_command(command)\r\n        File \"/usr/lib/python3.10/distutils/dist.py\", line 985, in run_command\r\n          cmd_obj.run()\r\n        File \"/usr/lib/python3.10/distutils/command/build.py\", line 135, in run\r\n          self.run_command(cmd_name)\r\n        File \"/usr/lib/python3.10/distutils/cmd.py\", line 313, in run_command\r\n          self.distribution.run_command(command)\r\n        File \"/usr/lib/python3.10/distutils/dist.py\", line 985, in run_command\r\n          cmd_obj.run()\r\n        File \"/tmp/pip-install-hzjjfmi1/libvirt-python_c0346843f95645659538cd817c3074e4/setup.py\", line 152, in run\r\n          check_minimum_libvirt_version()\r\n        File \"/tmp/pip-install-hzjjfmi1/libvirt-python_c0346843f95645659538cd817c3074e4/setup.py\", line 43, in check_minimum_libvirt_version\r\n          subprocess.check_call([\"pkg-config\",\r\n        File \"/usr/lib/python3.10/subprocess.py\", line 369, in check_call\r\n          raise CalledProcessError(retcode, cmd)\r\n      subprocess.CalledProcessError: Command '['pkg-config', '--print-errors', '--atleast-version=0.9.11', 'libvirt']' returned non-zero exit status 1.\r\n      [end of output]\r\n\r\n  note: This error originates from a subprocess, and is likely not a problem with pip.\r\n  ERROR: Failed building wheel for libvirt-python\r\n  Running setup.py clean for libvirt-python\r\nFailed to build libvirt-python\r\nInstalling collected packages: libvirt-python\r\n  Running setup.py install for libvirt-python ... error\r\n  error: subprocess-exited-with-error\r\n\r\n  \u00d7 Running setup.py install for libvirt-python did not run successfully.\r\n  \u2502 exit code: 1\r\n  \u2570\u2500> [51 lines of output]\r\n      Package libvirt was not found in the pkg-config search path.\r\n      Perhaps you should add the directory containing `libvirt.pc'\r\n      to the PKG_CONFIG_PATH environment variable\r\n      No package 'libvirt' found\r\n      Package libvirt was not found in the pkg-config search path.\r\n      Perhaps you should add the directory containing `libvirt.pc'\r\n      to the PKG_CONFIG_PATH environment variable\r\n      No package 'libvirt' found\r\n      running install\r\n      /usr/lib/python3/dist-packages/setuptools/command/install.py:34: SetuptoolsDeprecationWarning: setup.py install is deprecated. Use build and pip and other standards-based tools.\r\n        warnings.warn(\r\n      running build\r\n      running build_py\r\n      Package libvirt was not found in the pkg-config search path.\r\n      Perhaps you should add the directory containing `libvirt.pc'\r\n      to the PKG_CONFIG_PATH environment variable\r\n      No package 'libvirt' found\r\n      Traceback (most recent call last):\r\n        File \"<string>\", line 2, in <module>\r\n        File \"<pip-setuptools-caller>\", line 34, in <module>\r\n        File \"/tmp/pip-install-hzjjfmi1/libvirt-python_c0346843f95645659538cd817c3074e4/setup.py\", line 337, in <module>\r\n          setup(name = 'libvirt-python',\r\n        File \"/usr/lib/python3/dist-packages/setuptools/__init__.py\", line 153, in setup\r\n          return distutils.core.setup(**attrs)\r\n        File \"/usr/lib/python3.10/distutils/core.py\", line 148, in setup\r\n          dist.run_commands()\r\n        File \"/usr/lib/python3.10/distutils/dist.py\", line 966, in run_commands\r\n          self.run_command(cmd)\r\n        File \"/usr/lib/python3.10/distutils/dist.py\", line 985, in run_command\r\n          cmd_obj.run()\r\n        File \"/usr/lib/python3/dist-packages/setuptools/command/install.py\", line 68, in run\r\n          return orig.install.run(self)\r\n        File \"/usr/lib/python3.10/distutils/command/install.py\", line 619, in run\r\n          self.run_command('build')\r\n        File \"/usr/lib/python3.10/distutils/cmd.py\", line 313, in run_command\r\n          self.distribution.run_command(command)\r\n        File \"/usr/lib/python3.10/distutils/dist.py\", line 985, in run_command\r\n          cmd_obj.run()\r\n        File \"/usr/lib/python3.10/distutils/command/build.py\", line 135, in run\r\n          self.run_command(cmd_name)\r\n        File \"/usr/lib/python3.10/distutils/cmd.py\", line 313, in run_command\r\n          self.distribution.run_command(command)\r\n        File \"/usr/lib/python3.10/distutils/dist.py\", line 985, in run_command\r\n          cmd_obj.run()\r\n        File \"/tmp/pip-install-hzjjfmi1/libvirt-python_c0346843f95645659538cd817c3074e4/setup.py\", line 152, in run\r\n          check_minimum_libvirt_version()\r\n        File \"/tmp/pip-install-hzjjfmi1/libvirt-python_c0346843f95645659538cd817c3074e4/setup.py\", line 43, in check_minimum_libvirt_version\r\n          subprocess.check_call([\"pkg-config\",\r\n        File \"/usr/lib/python3.10/subprocess.py\", line 369, in check_call\r\n          raise CalledProcessError(retcode, cmd)\r\n      subprocess.CalledProcessError: Command '['pkg-config', '--print-errors', '--atleast-version=0.9.11', 'libvirt']' returned non-zero exit status 1.\r\n      [end of output]\r\n\r\n  note: This error originates from a subprocess, and is likely not a problem with pip.\r\nerror: legacy-install-failure\r\n\r\n\u00d7 Encountered error while trying to install package.\r\n\u2570\u2500> libvirt-python\r\n\r\nnote: This is an issue with the package mentioned above, not pip.\r\nhint: See above for output from the failure.\r\n```\r\n\r\n\r\nWhat is the current behavior?\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. I am running Cukoo.py as listed in the documentation : \"sudo -u cape poetry run python cuckoo.py\"\r\n ```\r\nCuckoo Sandbox 2.2-CAPE\r\n www.cuckoosandbox.org\r\n Copyright (c) 2010-2015\r\n\r\n CAPE: Config and Payload Extraction\r\n github.com/kevoreilly/CAPEv2\r\n\r\nOPTIONAL! Missed dependency: pip3 install https://github.com/CAPESandbox/peepdf/archive/20eda78d7d77fc5b3b652ffc2d8a5b0af796e3dd.zip#egg=peepdf==0.4.2\r\nOPTIONAL! Missed dependency: pip3 install -U git+https://github.com/DissectMalware/batch_deobfuscator\r\nOPTIONAL! Missed dependency: pip3 install -U git+https://github.com/CAPESandbox/httpreplay\r\n2023-01-03 11:23:39,039 [lib.cuckoo.core.scheduler] INFO: Using \"kvm\" machine manager with max_analysis_count=0, max_machines_count=10, and max_vmstartup_count=5\r\n2023-01-03 11:23:39,040 [root] CRITICAL: CuckooDependencyError: Unable to import libvirt\r\n```\r\n2. I tried to install the missing library via pip3 install libvirt-python and getting the reported above error\r\n## Context\r\nI tried to read this issue here but unfortunately was removed \r\nhttps://github.com/kevoreilly/CAPEv2/discussions/949 the same steps https://github.com/doomedraven/Tools/blob/master/Sandbox/cape2.sh#L964\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 22.04, Windows 10, macOS 10.12.3\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n```\r\nI might be screwed because I am using ubuntu 22.04 ? instead of 20 ?\r\n```\r\n\r\n\r\nThank you heaps for your help.\nComment: @phoenixml: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: you are totally wrong on what you doing. go and read kvm-qemu and cape2 scripts to uinderstand what are you doing. ubuntu 22 is fine\nComment: https://github.com/kevoreilly/CAPEv2/blob/master/installer/cape2.sh#L994\nComment: I saw this script and tried to running manually from extra folder. Hmm I will try to run the command from the cape.sh It might didn't executed when I ran it on the first install, anyway I will run it again as mentioned in the script thanks @doomedraven for pointing it out cheers.\nComment: It dosent have anything to do with the script or the which command executed , from the downloaded libvirt it is failing while it is in the building process.\r\nIts still showing the same problem and it is related to the pkg.\r\n \r\nI was able to replicate that by building manually and having the same error:\r\n\r\n\r\n```\r\nlibvirt-python$ sudo python3 setup.py build\r\nPackage libvirt was not found in the pkg-config search path.\r\nPerhaps you should add the directory containing `libvirt.pc'\r\nto the PKG_CONFIG_PATH environment variable\r\nNo package 'libvirt' found\r\nPackage libvirt was not found in the pkg-config search path.\r\nPerhaps you should add the directory containing `libvirt.pc'\r\nto the PKG_CONFIG_PATH environment variable\r\nNo package 'libvirt' found\r\nrunning build\r\nrunning build_py\r\nPackage libvirt was not found in the pkg-config search path.\r\nPerhaps you should add the directory containing `libvirt.pc'\r\nto the PKG_CONFIG_PATH environment variable\r\nNo package 'libvirt' found\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/libvirt-python/setup.py\", line 337, in <module>\r\n    setup(name = 'libvirt-python',\r\n  File \"/usr/lib/python3/dist-packages/setuptools/__init__.py\", line 153, in setup\r\n    return distutils.core.setup(**attrs)\r\n  File \"/usr/lib/python3.10/distutils/core.py\", line 148, in setup\r\n    dist.run_commands()\r\n  File \"/usr/lib/python3.10/distutils/dist.py\", line 966, in run_commands\r\n    self.run_command(cmd)\r\n  File \"/usr/lib/python3.10/distutils/dist.py\", line 985, in run_command\r\n    cmd_obj.run()\r\n  File \"/usr/lib/python3.10/distutils/command/build.py\", line 135, in run\r\n    self.run_command(cmd_name)\r\n  File \"/usr/lib/python3.10/distutils/cmd.py\", line 313, in run_command\r\n    self.distribution.run_command(command)\r\n  File \"/usr/lib/python3.10/distutils/dist.py\", line 985, in run_command\r\n    cmd_obj.run()\r\n  File \"/opt/CAPEv2/libvirt-python/setup.py\", line 152, in run\r\n    check_minimum_libvirt_version()\r\n  File \"/opt/CAPEv2/libvirt-python/setup.py\", line 43, in check_minimum_libvirt_version\r\n    subprocess.check_call([\"pkg-config\",\r\n  File \"/usr/lib/python3.10/subprocess.py\", line 369, in check_call\r\n    raise CalledProcessError(retcode, cmd)\r\nsubprocess.CalledProcessError: Command '['pkg-config', '--print-errors', '--atleast-version=0.9.11', 'libvirt']' returned non-zero exit status 1.\r\n```\r\nSince this is not directly related to this project I will close this issue here and check with the libvirt module developers. Thanks\nComment: that just doesn't work that way, devs here and there doesn't have nothing to see with your bug. see kvm-qemu it does preconfiguration before you can install python version, you can't just jump and run one random command\nComment: as example https://github.com/doomedraven/Tools/blob/master/Virtualization/kvm-qemu.sh#L510-L531\r\nis why i told before go and read those screen, start understand what it does before using it \nComment: Agreed that's why I ran the kvm-qemu.sh before and then I ran pip libvirt-python but also didnt work.\r\nWhat actually worked for me and installed libvirt is:\r\n Fixes from https://github.com/doomedraven/Tools/blob/master/Virtualization/kvm-qemu.sh\r\n    1. ImportError: No module named libvirt\r\n    $ ./kvm-qemu.sh libvirt\r\nand I have the service running successfully. \r\n![image](https://user-images.githubusercontent.com/14360476/210463230-4f496b13-904e-4884-ac20-dcd214a4d50d.png)\r\n\r\nBut still after I ran:\r\n`sudo -u cape poetry run python3 cuckoo.py --debug`\r\nI am getting: \r\n```\r\n2023-01-04 00:22:55,564 [lib.cuckoo.core.scheduler] INFO: Using \"kvm\" machine manager with max_analysis_count=0, max_machines_count=10, and max_vmstartup_count=5\r\n2023-01-04 00:22:55,565 [root] CRITICAL: CuckooDependencyError: Unable to import libvirt\r\n```\r\nI will continue reading with the documentation and I think I must first prepare the windows host and then I will come back to tackle this error which might be resolved once the virtual manager found a supported host.\r\nthanks @doomedraven  \ud83d\udc4d \nComment: sorry for that, but your link is \"garbage\" due to that it goes against what im doing in my scripts. so you even probably got the qemu or libvirt from apt and that defeated all anti purpose that i have implemented\r\n\r\nall the answers are in scripts, you just can't go and install random tool from apt or pip, there is a huge banner in kvm-qemu against that. is why i pointed to read the scripts. that is my last answer here\nComment: I updated the link was not the correct one and I didn't use apt or pip, but sorry for that \"Your assumption is wrong\". I used the script and I pass it the option libvirt to it with the user as I showed in the steps above. \r\nI leave this final comment here for future reference since the documentation is lacking of pointing to the troubleshooting notes in the script you shared earlier https://github.com/doomedraven/Tools/blob/master/Virtualization/kvm-qemu.sh ",
+  "Title: Issue permission denied pyproject.toml\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n* Free support from doomedraven ended - no whiskey, no support. For updates check the documentation.\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- YES\r\n- [x] I did read the README!\r\n- Offcourse\r\n- [x] I checked the documentation and found no answer\r\n- 100%\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- No Previous issue similar\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- I think so\r\n- [x] I have read and checked all configs (with all optional parts)\r\n- Not A conf issue\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\r\nRun the Command without any problems\r\n# Current Behavior\r\nHi I am trying to install CapeV2:\r\n\r\nWhat is the current behavior?\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\nDon't Think it is a bug\r\n\r\n## Steps to Reproduce\r\nI create poetry env:\r\nand running this command \" sudo -u cape poetry run python3 cuckoo.py'\r\nI am getting this error:\r\n![image](https://user-images.githubusercontent.com/14360476/210329029-83d5c91a-a06c-4d13-93d8-1478dc5349f2.png)\r\n\r\nI checked the permission -rw-rw-r--\r\n\r\nCan someone please advise what is the issue? \r\nif i run it as ubuntu use it is complaining \"no module bson\"\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 22.04, Windows 10, macOS 10.12.3\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\r\n\r\nThank you in advance\r\n\nComment: @phoenixml: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: Hmm I also logged as cape and provided ownsership to the file dosent makes sense \nComment: I also recreated the file while login as cape and same problem Nice!!\nComment: why just not checking the permission properly like\r\n`ls -lah /opt/CAPEv2` or fixing them as `sudo chown cape:cape /opt/CAPEv2 -R`\nComment: my bad the setup for hours make you do crazy things, I was running the script from the git files I downloaded while I should instead run it from opt/Cape where cape user have all the required permissions it is running properly have an interface issue but I should update it from the conf thanks @doomedraven  I should send u a beer ;) thank you for your help and dedication for this project.\nComment: enjoy ;) ",
+  "Title: selfextract cache\nBody: Due to that CAPE.py process all the files we were processing files twice, in CAPE.py and then by each individual module as targetinfo, dropped, etc so to speedup the analysis some base info is cached",
+  "Title: Clean cape_name when have exception or yara rule do not have cape_type\nBody: UPX rule do not have cape_type, so if sample packed by UPX, will mess up config extract result.\r\n\r\nTest sample : d607e4cf6254db79c5a50a6e59c25f9387951f545da0b1475719209d8d357f64\nComment: thank you, i did small change\nComment: Sure, Thanks for maintenance this amazing project.",
+  "Title: Eziriz deobfuscate\nBody: ```\r\n.NET Reactor Slayer by CS-RET\r\n  Website: [www.CodeStrikers.org](https://www.codestrikers.org/)\r\n  Latest version on Github: https://github.com/SychicBoy/NETReactorSlayer\r\n  Version: v6.4.0\r\n  Supported .NET Reactor versions: (From 6.0 To 6.9)\r\n  ==========================================================\r\n  [INFO] 15/15 Modules loaded...\r\n  [WARN] Couldn't load assembly using reflection.\r\n  [WARN] Couldn't find any encrypted method.\r\n  [WARN] Couldn't find any equation to resolve.\r\n  [INFO] Anti debugger removed.\r\n  [WARN] Couldn't find anti tamper method.\r\n  [INFO] 2301 Proxied calls fixed.\r\n  [INFO] 197 Strings decrypted.\r\n  [INFO] Assembly resources decrypted\r\n  [WARN] Couldn't found any obfuscated metadata token.\r\n  [INFO] 48 Calls to obfuscator types removed.\r\n  [INFO] Renaming obfuscated symbols...\r\n  [INFO] 56 Methods inlined.\r\n  [INFO] Saved to: X\r\n```",
+  "Title: Ruff2\nBody: None",
+  "Title: ruff 2\nBody: None",
+  "Title: ruff\nBody: None",
+  "Title: Fix file copy\nBody: None\nComment: @cccs-kevin ?\nComment: Wow @enzok , so you're saying that if the archive had a flat structure, that those files weren't being copied to C:?\nComment: Thanks all \ud83d\ude4f \nComment: @enzok is \ud83c\udf85 \nComment: > Wow @enzok , so you're saying that if the archive had a flat structure, that those files weren't being copied to C:?\r\n\r\nYes the root files were excluded. Only sub dirs where copied. ",
+  "Title: fix the mess of bytes + str in demux.py\nBody: None",
+  "Title: Bump libvirt-python version to 8.10.0\nBody: To keep it the same version as \r\nhttps://github.com/doomedraven/Tools/blob/master/Virtualization/kvm-qemu.sh#L65 as mentioned in\r\nhttps://github.com/kevoreilly/CAPEv2/pull/952#issuecomment-1163430794\r\n\r\nFixes the following error:\r\n```\r\nMissing type converters:\r\nvirTypedParameterPtr:2\r\nERROR: failed virDomainRestoreParams\r\nERROR: failed virDomainSaveParams\r\n```\nComment: thanks",
+  "Title: Path filepath is a string\nBody: None",
+  "Title: refurb2\nBody: None",
+  "Title: Update cape2.sh\nBody: fix deb-src for tor\nComment: thanks",
+  "Title: Cannot import name 'submit_task' from 'lib.cuckoo.common.cape_utils'\nBody: # Failure Information\r\n\r\nErrors \"Cannot import name 'submit_task' from 'lib.cuckoo.common.cape_utils'\" in cape service logs.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. git clone (latest version)\r\n2. run setup install\r\n3. restart cape service\r\n4. read 'cape' service logs\r\n\r\n## Context\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | caa322fe919692c52e326221703137d36d01223b\r\n| OS version       | Ubuntu 22.04\r\n\r\n## Failure Logs\r\n\r\n![logs](https://i.imgur.com/WxJmgpB.png)\r\n\nComment: @Maxou56800: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: thanks will be fixed in few mins",
+  "Title: Error installing libvirt from CAPEv2.sh (templated)\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n* Free support from doomedraven ended - no whiskey, no support. For updates check the documentation.\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [v] I am running the latest version\r\n- [v] I did read the README!\r\n- [v] I checked the documentation and found no answer\r\n- [v] I checked to make sure that this issue has not already been filed\r\n- [v] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [v] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nExecution of CAPEv2.sh without errors. Particulary, installing libvirt and adding que user cape to the group \"libvirt\".\r\n\r\n# Current Behavior\r\n\r\nWhen executing the script (after editing the variables NETWORK_IFACE, IFACE_IP and PASSWD) with the following sentence:\r\n`sudo ./cape2.sh base cape | tee cape2.sh.log`\r\n\r\nthe followin error is shown in console:\r\n```\r\n  \u00d7 Running setup.py install for libvirt-python did not run successfully.\r\n  \u2502 exit code: 1\r\n  \u2570\u2500> [18 lines of output]\r\n      Package libvirt was not found in the pkg-config search path.\r\n      Perhaps you should add the directory containing `libvirt.pc'\r\n      to the PKG_CONFIG_PATH environment variable\r\n      No package 'libvirt' found\r\n      Package libvirt was not found in the pkg-config search path.\r\n      Perhaps you should add the directory containing `libvirt.pc'\r\n      to the PKG_CONFIG_PATH environment variable\r\n      No package 'libvirt' found\r\n      running install\r\n      /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/command/install.py:34: SetuptoolsDeprecationWarning: setup.py install is deprecated. Use build and pip and other standards-based tools.\r\n        warnings.warn(\r\n      running build\r\n      /usr/bin/pkg-config --print-errors --atleast-version=0.9.11 libvirt\r\n      Package libvirt was not found in the pkg-config search path.\r\n      Perhaps you should add the directory containing `libvirt.pc'\r\n      to the PKG_CONFIG_PATH environment variable\r\n      No package 'libvirt' found\r\n      error: command '/usr/bin/pkg-config' failed with exit code 1\r\n      [end of output]\r\n  \r\n  note: This error originates from a subprocess, and is likely not a problem with pip.\r\nerror: legacy-install-failure\r\n\r\n\u00d7 Encountered error while trying to install package.\r\n\u2570\u2500> libvirt-python\r\n\r\n```\r\n\r\n# Failure Information (for bugs)\r\n\r\nAs suggested in https://stackoverflow.com/questions/45473463/pip-install-libvirt-python-fails-in-virtualenv, I installed the package ```\r\nlibvirt-dev with\r\napt-get install libvirt-dev\r\n```\r\n\r\nthen repeated the following single line from CAPEv2.sh:\r\n`sudo -u cape bash -c 'export PYTHON_KEYRING_BACKEND=keyring.backends.null.Keyring; poetry run extra/poetry_libvirt_installer.sh'\r\n`\r\nThis time, all works as expected, and if finishes with those comments:\r\n```\r\nSuccessfully built libvirt-python\r\nInstalling collected packages: libvirt-python\r\nSuccessfully installed libvirt-python-8.2.0\r\n```\r\n\r\nUnfortunatel\u00fd, the following line from CAPEv2.sh gives an error:\r\n```\r\nhostuser@ubuntu:/opt/CAPEv2$ sudo usermod -aG libvirt cape\r\nusermod: group 'libvirt' does not exist\r\n\r\n```\r\nwhich I don't know if is an expected error or not (I can't find where the group libvirt is created)\r\n\r\n## Steps to Reproduce\r\n\r\n```\r\ncd Downloads\r\nwget https://github.com/kevoreilly/CAPEv2/blob/master/installer/cape2.sh\r\nchmod u+x cape2.sh\r\nsudo ./cape2.sh base cape | tee cape2.sh.log\r\n\r\n```\r\n\r\n## Context\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | commit a311fcf5ad324a78552ee912143d30a48ee2d0fd (HEAD -> master, origin/master, origin/HEAD)\r\n| OS version       | Linux ubuntu 5.15.0-56-generic #62~20.04.1-Ubuntu SMP Tue Nov 22 21:24:20 UTC 2022 x86_64 x86_64 x86_64 GNU/Linux\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n[cape2.sh.log](https://github.com/kevoreilly/CAPEv2/files/10235604/cape2.sh.log)\r\n\nComment: @chirrindul: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: you messed with your system installing by apt. you should use kvm-qemu.sh and then cape2 as readme says\nComment: Thanks doomedraven. \r\nI didn't take the step because I wanted VirtualBox as the machinery. Actually, I am using virtualbox and CAPE is working more or less, with some problems. For example, I created a win7 VM with the OS main user (the one has sudo) and needed to move files to the cape user home in order to be able to manage it by the cape user.\r\nI am understanding now that qemu is the prefered machiney.\r\n\r\nOne question, please, which documentation you recommend. The PDF generated by https://github.com/kevoreilly/CAPEv2/files/10294831/capev2-readthedocs-io-en-latest.pdf or the one in https://capev2.readthedocs.io/en/latest/ \r\n\nComment: looks like they are the same, i prefer online due to easier navigation. About vbox i can't help as we totally against that crap for malware analysis so can't help much there",
+  "Title: Error installing libvirt from CAPEv2.sh\nBody: # Expected Behavior\r\nExecution of CAPEv2.sh without errors. Particulary, installing libvirt and adding que user cape to the group \"libvirt\".\r\n\r\n# Current Behavior\r\nWhen executing the script (after editing the variables NETWORK_IFACE, IFACE_IP and PASSWD) with the following sentence:\r\n`sudo ./cape2.sh base cape | tee cape2.sh.log`\r\n\r\nthe followin error is shown in console:\r\n```\r\n  \u00d7 Running setup.py install for libvirt-python did not run successfully.\r\n  \u2502 exit code: 1\r\n  \u2570\u2500> [18 lines of output]\r\n      Package libvirt was not found in the pkg-config search path.\r\n      Perhaps you should add the directory containing `libvirt.pc'\r\n      to the PKG_CONFIG_PATH environment variable\r\n      No package 'libvirt' found\r\n      Package libvirt was not found in the pkg-config search path.\r\n      Perhaps you should add the directory containing `libvirt.pc'\r\n      to the PKG_CONFIG_PATH environment variable\r\n      No package 'libvirt' found\r\n      running install\r\n      /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/command/install.py:34: SetuptoolsDeprecationWarning: setup.py install is deprecated. Use build and pip and other standards-based tools.\r\n        warnings.warn(\r\n      running build\r\n      /usr/bin/pkg-config --print-errors --atleast-version=0.9.11 libvirt\r\n      Package libvirt was not found in the pkg-config search path.\r\n      Perhaps you should add the directory containing `libvirt.pc'\r\n      to the PKG_CONFIG_PATH environment variable\r\n      No package 'libvirt' found\r\n      error: command '/usr/bin/pkg-config' failed with exit code 1\r\n      [end of output]\r\n  \r\n  note: This error originates from a subprocess, and is likely not a problem with pip.\r\nerror: legacy-install-failure\r\n\r\n\u00d7 Encountered error while trying to install package.\r\n\u2570\u2500> libvirt-python\r\n```\r\n\r\n# Failure Information (for bugs)\r\nAs suggested in https://stackoverflow.com/questions/45473463/pip-install-libvirt-python-fails-in-virtualenv, I installed the package libvirt-dev with\r\n`apt-get install libvirt-dev`\r\n\r\nthen repeated the following single line from CAPEv2.sh:\r\n`sudo -u cape bash -c 'export PYTHON_KEYRING_BACKEND=keyring.backends.null.Keyring; poetry run extra/poetry_libvirt_installer.sh'\r\n`\r\n\r\nThis time, all works as expected, and if finishes with those comments:\r\n```\r\nSuccessfully built libvirt-python\r\nInstalling collected packages: libvirt-python\r\nSuccessfully installed libvirt-python-8.2.0\r\n```\r\n\r\nUnfortunatel\u00fd, the following line from CAPEv2.sh gives an error:\r\n```\r\nhostuser@ubuntu:/opt/CAPEv2$ sudo usermod -aG libvirt cape\r\nusermod: group 'libvirt' does not exist\r\n```\r\n\r\nwhich I don't know if is an expected error or not (I can't find where the group libvirt is created)\r\n\r\n## Steps to Reproduce\r\n```\r\ncd Downloads\r\nwget https://github.com/kevoreilly/CAPEv2/blob/master/installer/cape2.sh\r\nchmod u+x cape2.sh\r\nsudo ./cape2.sh base cape | tee cape2.sh.log\r\n```\r\n\r\n## Context\r\n\r\nGit commit:\r\n```\r\ncommit a311fcf5ad324a78552ee912143d30a48ee2d0fd (HEAD -> master, origin/master, origin/HEAD)\r\nMerge: 10244990 1fbeed14\r\nAuthor: Kevin O'Reilly <kevoreilly@gmail.com>\r\nDate:   Tue Dec 13 14:17:24 2022 +0000\r\n```\r\n\r\nOS version\r\n```\r\nhostuser@ubuntu:/opt/CAPEv2$ uname -a\r\nLinux ubuntu 5.15.0-56-generic #62~20.04.1-Ubuntu SMP Tue Nov 22 21:24:20 UTC 2022 x86_64 x86_64 x86_64 GNU/Linux\r\n```\r\n\r\n## Failure Logs\r\n[cape2.sh.log](https://github.com/kevoreilly/CAPEv2/files/10235380/cape2.sh.log)\r\n\nComment: @chirrindul: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: duplicated",
+  "Title: Handle process and full process dump options properly\nBody: None",
+  "Title: Add white domain ocsp.globalsign.com\nBody: None\nComment: Thank you",
+  "Title: Fix pagination key name\nBody: None",
+  "Title: Compatible tcpdump path\nBody: /usr/sbin/tcpdump in ubuntu20  \r\n/usr/bin/tcpdump in ubuntu22  \r\n`which tcpdump` can get right path  ",
+  "Title: Updating docs\nBody: Added some troubleshooting sections and fixed a couple typos I found on the way.\nComment: Thank you \u2764\ufe0f ",
+  "Title: I have used pip3 install pyinotify succeeded in the ubuntu16.04 guest machine,but it prompts \"name 'pyinotify' is not defined\"\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n* Free support from doomedraven ended - no whiskey, no support. For updates check the documentation.\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ \u221a] I am running the latest version\r\n- [ \u221a] I did read the README!\r\n- [ \u221a] I checked the documentation and found no answer\r\n- [\u221a ] I checked to make sure that this issue has not already been filed\r\n- [ \u221a] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ \u221a] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nit should know the ubuntu16.04_X86 guest machine environment is ok, and run the python file sample \r\n\r\n# Current Behavior\r\n\r\ncape analysis encountered an error, and say name 'pyinotify' is not defined, finaly. Finally, the analysis was interrupted\r\n\r\n# Failure Information (for bugs)\r\n\r\nFile \"/tmp9d8n2kzf/analyzer.py\", line 358, in <module>\r\n    success = analyzer.run()\r\n  File \"/tmp9d8n2kzf/analyzer.py\", line 184, in run\r\n    __import__(name, globals(), locals(), [\"dummy\"], 0)\r\n  File \"/tmp9d8n2kzf/modules/auxiliary/filecollector.py\", line 159, in <module>\r\n    class EventProcessor(pyinotify.ProcessEvent):\r\nNameError: name 'pyinotify' is not defined\r\nTraceback (most recent call last):\r\n  File \"/tmp9d8n2kzf/analyzer.py\", line 358, in <module>\r\n    success = analyzer.run()\r\n  File \"/tmp9d8n2kzf/analyzer.py\", line 184, in run\r\n    __import__(name, globals(), locals(), [\"dummy\"], 0)\r\n  File \"/tmp9d8n2kzf/modules/auxiliary/filecollector.py\", line 159, in <module>\r\n    class EventProcessor(pyinotify.ProcessEvent):\r\nNameError: name 'pyinotify' is not defined\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. step 1 I submitted a python file, specifying that the client is ubuntu16.04_X86.\r\n[analysis.log](https://github.com/kevoreilly/CAPEv2/files/10193833/analysis.log)\r\n\r\n2. step 2 In tasks_tags table, it always judges my ubuntu16.04 client as a 64 bit system. I have to manually change it to a 32-bit system in mongodb. Obviously, in the machines table, ubuntu16.04 shows that it is indeed a 32-bit system.\r\n3. step 3 Then it starts to start the client. After tens of seconds, the client shuts down and the log displays an error message.\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 16.04_X86\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: In this /analyzer/linux/modules/packages/python.py file. I purposely changed the '/usr/bin/python' to '/usr/bin/python3' to prevent clients from using the python 2 environment. I'm sure the ubuntu16.04 have pyinotify packages, the/usr/bin/python3 also start python3.5 and the pip3 belong to python3.5. the \r\nagent.py file is used by python3.7.9 in the ubuntu16.04. The terminal inputs python 3 to run python 3.5. To be safe, I also downloaded pyinotify with pip3 of python 3.7.9. \nComment: did you try just open python3 console and type? `import pyinotify`?\nComment: > did you try just open python3 console and type? `import pyinotify`?\n\n\nYes,I open python3 console and type,input 'import pyinotify','a=pyinotify.processevent' to test . The output came out perfectly fine.\nComment: Because I've run a lot of tests and found that my virtual machine environment is fine, I'm really wondering, and I want someone to know why that is\nComment: well you will have to investigate it on your own, but that sound like a mess with pythons versions even if installed in both, looks like agent/analyzer doesn't run with that version. i have added extra line of error that it can't import that library for you. add some debug prints to that file header to show you python version and other required info for your debug\nComment: > well you will have to investigate it on your own, but that sound like a mess with pythons versions even if installed in both, looks like agent/analyzer doesn't run with that version. i have added extra line of error that it can't import that library for you. add some debug prints to that file header to show you python version and other required info for your debug\n\nOK. That's one idea, and I'm going to try to solve it\nComment: any update?\nComment: > any update?\n\nI found that it uses python3.7 in the client,python3.7 also pip3.7 install pyinotify, and I still don't know why I can't find it. The progress has been slow because I have been infected with COVID-19 for the last two days.\nComment: ouch, get better\nComment: > ouch, get better\n\nThank you very much for your blessing.I recovered, but I had to stop studying this problem because of other work. I wonder if anyone can repeat my test to see if the results are different. Submit a python file and select ubuntu16.04 of X86 as the client system. See if the cape can wake up the virtual machine. My result is that the cape has associated the task with the X64 system in the 'task_tags' table, causing the task to be in the waiting state all the time.\nComment: In addition, infection with COVID-19 is more painful than common cold. It caused me a sore throat and no appetite for three days. Cough for a long time even after recovery.\nComment: @doomedraven  Oh yeah\uff01I found a bug in the code.When I submit the python file to cape, there is no python script option in this /lib/cuckoo/core/database.py file, so it is assigned to x64.  _get_linux_vm_tag(mgtype) does not support python files.![mmexport1672395013963.png](https://user-images.githubusercontent.com/55627281/210058994-96e00392-0512-4ff0-9f0c-8ccc9421a9ee.png)\nComment: hey, that is not related that one is just to set arch from ELF file. for linux you must set package + tag to proper usage. Nobody seriously uses linux part due to that systemtap module is dead and no new implementation. So no maintenance.\r\n\r\nSet arch and/or tags in config. restart cape-web and submit new task specifying vm or tags and package and that should work just fine.\r\n\r\nAs it can't know which vm to use just from submitting file `VALID_LINUX_TYPES = (\"Bourne-Again\", \"POSIX shell script\", \"ELF\", \"Python\")` you have that line just before of that function \nComment: I really don't use tags very often. When I submit a task, I usually select a virtual machine and then select the file package. Linux system really has too many unstable factors. I still haven't studied the principles of Cape in Windows system. I plan to give up the Linux part completely first, and this question can be ended.\r\nThank you for your patience. In addition, I noticed that the capesandbox.com website server did not respond a while ago. Did you run into some trouble at that time? Fortunately, it has recovered. I wish you could develop this project into you\nComment: hm capesandbox.com works just fine here, maybe you got cloudflare ban? \r\nThe linux part as i told is not used so community doesn't give too much love to this part, it was backported from cuckoo and extended a bit. But is pretty obsolete. We only maintain properly windows part\nComment: Last Thursday, I found that I could not access capesandbox.com. After using VPN, I found that it was still useless. I thought there was a problem with the server,\ud83d\ude05\uff0cbut today I can visit the website normally.\r\nMaybe last week was caused by some changes in China's network restriction policies. Well, you know, there are often some small problems when visiting websites in other countries in China.\nComment: capesandbox.com was down for a couple of weeks with issues due to scraping and some other error I could not fix. Thankfully doomed was able to get it working again.\nComment: Oh, that's why.\nComment: So im going to close this. in summary to make properly run not ELF files, everyone should specify tag or vm manually. there is no another way to properly send task to desired architecture VM\nComment: > Nobody seriously uses linux part due to that systemtap module is dead and no new implementation. So no maintenance.\r\n\r\nNew implementation \u2192 https://github.com/nbargnesi/CAPEv2/commit/5f88636b3698d89cb5effb2407b61fab663aa007\r\n\r\nWe'll get there. :)\nComment: > Linux system really has too many unstable factors.\r\n\r\nAlso related: https://github.com/kevoreilly/CAPEv2/issues/1166#issuecomment-1344609389",
+  "Title: Bump certifi from 2022.9.24 to 2022.12.7\nBody: Bumps [certifi](https://github.com/certifi/python-certifi) from 2022.9.24 to 2022.12.7.\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/certifi/python-certifi/commit/9e9e840925d7b8e76c76fdac1fab7e6e88c1c3b8\"><code>9e9e840</code></a> 2022.12.07</li>\n<li>See full diff in <a href=\"https://github.com/certifi/python-certifi/compare/2022.09.24...2022.12.07\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=certifi&package-manager=pip&previous-version=2022.9.24&new-version=2022.12.7)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language\n- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language\n- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language\n- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language\n\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Only one name will be displayed for the same malware family\nBody: Only one name will be displayed for the same malware family\r\nbefore\r\n<img width=\"406\" alt=\"image\" src=\"https://user-images.githubusercontent.com/52570947/206512820-987d4485-d3d0-47b7-b7a4-5c0d3bd9f148.png\">\r\n<img width=\"944\" alt=\"image\" src=\"https://user-images.githubusercontent.com/52570947/206512919-84bb407e-43e9-4364-a43f-6372bba451be.png\">\r\n\r\nafter \r\n<img width=\"176\" alt=\"image\" src=\"https://user-images.githubusercontent.com/52570947/206512997-2707cec1-8fe3-44c9-b988-9a13445bf72b.png\">\r\n<img width=\"1213\" alt=\"image\" src=\"https://user-images.githubusercontent.com/52570947/206513022-e0d77986-4ec8-4664-be1a-666a5ad49d88.png\">\r\n\nComment: I'm not a fan of this approach - it seems to me it's just masking the underlying problem of having multiple detection names for the same family. Why is there a 'Cobalt' detection and why can't it be fixed to be 'CobaltStrikeBeacon'? And if Meterpreter is not CobaltStrike, why call it that in the detection and fix the incorrect name? \nComment: > I'm not a fan of this approach - it seems to me it's just masking the underlying problem of having multiple detection names for the same family. Why is there a 'Cobalt' detection and why can't it be fixed to be 'CobaltStrikeBeacon'? And if Meterpreter is not CobaltStrike, why call it that in the detection and fix the incorrect name?\r\n\r\nThis is just an example and can be configured according to your own habits. What I want to solve is the problem of malicious files of the same family showing Multiple on the nearest page",
+  "Title: Nighthawk yara rule triggered but configuration wasn't extracted\nBody: # Expected Behavior\r\n\r\nAfter server restart, CAPE correctly triggers the yara rule on the sample. The configuration is expected to be extracted even statically from the submitted hash: `0551ca07f05c2a8278229c1dc651a2b1273a39914857231b075733753cb2b988`\r\n\r\n```\r\n$ git rev-parse --short HEAD\r\n96a2c0ca\r\n\r\nIn [1]: with open(\"0551ca07f05c2a8278229c1dc651a2b1273a39914857231b075733753cb2b988\", \"rb\") as f:\r\n   ...:     data = f.read()\r\n   ...: \r\n\r\nIn [2]: from Nighthawk import extract_config\r\n\r\nIn [3]: cfg = extract_config(data)\r\n\r\nIn [4]: cfg\r\nOut[4]: \r\n{'Plaintext Alphabet': b'K:sPZv2oAH,MkB_Ow)?pa$ b{F0V-YC4<uUJ^TQG6+ytz;=iqL9IW.ng/S7X1R(rxc5]elD[*8hfE>3m&Nj!d}\\x00',\r\n 'Ciphertext Alphabet': b'JCljOF5fN?TZLyuBt6x-[nYe,E42U.)wD+Qh$zIGVK_]rm9A}{d(c3^=>17g!P&SMW:Xsk iq;Rop/v0<a8Hb*\\x00',\r\n 'Config AES-128 CBC Decryption Key': b'8CVKEWJUVHSW4CBC',\r\n 'Implant Config': {'implant-config': {'general-config': {'code-modules': {'encoders': [],\r\n     'p2p-transports': [],\r\n     'egress-transports': []},\r\n    'injector': {'methods': {'ProtectMemory': 'VirtualProtectNative',\r\n      'ExecuteMemory': 'CreateThreadNative',\r\n      'ProcessOpen': 'OpenProcessNative',\r\n      'WriteMemory': 'WriteProcMemNative',\r\n      'ProcessCreate': 'CreateProcessWinApi',\r\n      'AllocMemory': 'VirtualAllocNative'},\r\n     'spawn-to': 'C:\\\\windows\\\\system32\\\\browser_broker.exe',\r\n     'parent-process': 'C:\\\\windows\\\\explorer.exe'},\r\n    'opsec': {'unhook-dlls': ['kernel32.dll',\r\n      'ntdll.dll',\r\n      'kernelbase.dll',\r\n      'winhttp.dll'],\r\n     'clear-veh-on-imp-res': True,\r\n     'unhook-syscalls': True,\r\n     'use-syscalls': True,\r\n     'loader-export': 'ReadFile',\r\n     'self-encrypt-while-listening': True,\r\n     'disable-pi-callback': True,\r\n     'indirect-syscalls': True,\r\n     'masquerade-thread-stacks': True,\r\n     'self-encrypt': True,\r\n     'ordinary-export': '',\r\n     'clear-hwbp-on-imp-res': True,\r\n     'clear-veh-on-unhook': True,\r\n     'unhook-using-wpm': True,\r\n     'self-encrypt-after': 5000,\r\n     'encrypt-heap-mode': 'implant',\r\n     'report-self-encrypt-status': True,\r\n     'hide-windows': False,\r\n     'clear-hwbp-on-unhook': True,\r\n     'self-encrypt-no-rx-stub': True,\r\n     'unhook-on-self-encrypt': True,\r\n     'clear-dll-notifications': True,\r\n     'stomp-pe-header': True,\r\n     'stack-commit-size': 262144,\r\n     '--backing-module': {'x86': 'chakra.dll', 'x64': 'chakra.dll'},\r\n     'thread-start-addresses': ['ntdll!RtlUserThreadStart']},\r\n    'settings': {'interval': 10000, 'expire-after': 1640998861, 'jitter': 40}},\r\n   'p2p-config': {'p2p-listener-uri': ['smb://googlecrashpad'],\r\n    'aes-128-iv': 'Vnzix2bnX2cpeCw4',\r\n    'promote-after': 1,\r\n    'aes-128-key': 'TZNZ4PdCXeu3Aq7i',\r\n    'promote': False},\r\n   'mode': 'p2p'}}}\r\n```\r\n\r\n# Current Behavior\r\n\r\nWhile the yara rule triggers correctly, configuration isn't extracted from the submitted hash.\r\n\r\n* Static extraction submission: https://capesandbox.com/analysis/343568/\r\n* Dynamic extraction submission: https://capesandbox.com/analysis/343575/\r\n\r\nI don't see any interesting failures in the \"Show Log\" field content. Do you have any idea why the parser works standalone but not in CAPE?\r\n\r\n\nComment: @nikhilh-20: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: > but not in CAPE?\r\n\r\nThe parser works in CAPE. I tested it before merging, and wouldn't have merged it if it didn't.\r\n\r\nWhat you are describing is not an issue. It is simply that I didn't update capesandbox.com in time for your first submission, then I needed to update a Python crypto library to get the parser to work, but due to current site issues with scrapers (timeouts viewing pages) I wasn't aware of this when I first updated.\r\n\r\nI have now reprocessed 343557, 323568 and 3443575 so they all show the parser output. I am doing my best to maintain that site in my free time but an issue with the site is not necessarily an issue 'in CAPE'.\nComment: > What you are describing is not an issue\r\n\r\nI submitted those tasks after you restarted the server (#1269) - you see them having yara detections which was initially (before you updated the server) not the case. So, I assumed the parser was active during the time of those submissions. And absolutely, I wasn't trying to say there's an issue with CAPE; just that I don't know of another way to ask a question without creating a issue. If there's another way to ask a question, please let me know :)\r\n\r\nThanks for your efforts! I didn't mean to push you. I just didn't realize the server wasn't updated.",
+  "Title: Nighthawk yara rule did not trigger and configuration not extracted\nBody: # Expected Behavior\r\n\r\nI have a Nighthawk DLL hash: `0551ca07f05c2a8278229c1dc651a2b1273a39914857231b075733753cb2b988` on which CAPE's Nighthawk yara rule triggers locally:\r\n\r\n```\r\n$ git rev-parse --short HEAD\r\n018bb060\r\n\r\n$ file 0551ca07f05c2a8278229c1dc651a2b1273a39914857231b075733753cb2b988\r\n0551ca07f05c2a8278229c1dc651a2b1273a39914857231b075733753cb2b988: PE32+ executable (DLL) (GUI) x86-64, for MS Windows\r\n\r\n$ yara ~/tools/CAPEv2/data/yara/CAPE/Nighthawk.yar 0551ca07f05c2a8278229c1dc651a2b1273a39914857231b075733753cb2b988\r\nNighthawk 0551ca07f05c2a8278229c1dc651a2b1273a39914857231b075733753cb2b988\r\n```\r\n\r\nI'm running yara 4.1.3\r\n\r\n```\r\n$ yara --version\r\n4.1.3\r\n```\r\n\r\nThis issue is related to https://github.com/kevoreilly/CAPEv2/pull/1267\r\n\r\n# Current Behavior\r\n\r\nI submitted the hash to capesandbox.com for static config extraction, but the yara rule doesn't trigger: https://capesandbox.com/analysis/343557/\r\n\r\nAny idea why the yara rule doesn't trigger in CAPE?\r\n\nComment: @nikhilh-20: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: Yes because I hadn't updated the server! I've updated and reprocessed now.",
+  "Title: Remcos update to handle bytes and new separators\nBody: Updated the Remcos config extractor to handle new changes observed where config values are written in bytes and new delimiter values were found.\r\n\r\nRemcos files requiring this update:\r\nb55e1430bc8fd56b53d40e8dc1bb4a176f37f5d5b202fdbd6ea7ced8b73434ba 5dbd9e97623ea5b18acf4afd5d92bdb46aeffe6c171941d148265b760b20fafe ec5f7db58c48312ab849212f2f0cff6375ad5bcc8d08cac26beb31b67a0e3e55 7ea782b723c88e2124c389baacdc503d95938ac1991ebd69f0195e7ed78dd02e 76518f1a30196708a3e2e9bfa561adc3abb2b942058325c453add5f5e7a39304\nComment: Thank you!",
+  "Title: NightHawk C2 DLL configuration parser\nBody: Came across this NightHawk C2 framework about a week ago, and finally got some time today to work on a config extractor. Got the DLL payload from Malpedia (https://malpedia.caad.fkie.fraunhofer.de/details/win.nighthawk).\r\n\r\nI've tried to copy the format of parsers in `modules/processing/parsers/CAPE`. The Yara rule that I added detects the sample\r\n\r\n```\r\n$ yara ~/tools/CAPEv2/data/yara/CAPE/Nighthawk.yar 0551ca07f05c2a8278229c1dc651a2b1273a39914857231b075733753cb2b988\r\nNighthawkDLLC2 0551ca07f05c2a8278229c1dc651a2b1273a39914857231b075733753cb2b988\r\n```\r\n\r\nTesting done: the config extractor works standalone:\r\n\r\n```\r\nIn [1]: with open(\"0551ca07f05c2a8278229c1dc651a2b1273a39914857231b075733753cb2b988\", \"rb\") as f:\r\n   ...:     data = f.read()\r\n   ...: \r\n\r\nIn [2]: from Nighthawk import extract_config\r\n\r\nIn [3]: cfg = extract_config(data)\r\n\r\nIn [4]: cfg\r\nOut[4]: \r\n{'Plaintext Alphabet': b'K:sPZv2oAH,MkB_Ow)?pa$ b{F0V-YC4<uUJ^TQG6+ytz;=iqL9IW.ng/S7X1R(rxc5]elD[*8hfE>3m&Nj!d}\\x00',\r\n 'Ciphertext Alphabet': b'JCljOF5fN?TZLyuBt6x-[nYe,E42U.)wD+Qh$zIGVK_]rm9A}{d(c3^=>17g!P&SMW:Xsk iq;Rop/v0<a8Hb*\\x00',\r\n 'Config AES-128 CBC Decryption Key': b'8CVKEWJUVHSW4CBC',\r\n 'Implant Config': {'implant-config': {'general-config': {'code-modules': {'encoders': [],\r\n     'p2p-transports': [],\r\n     'egress-transports': []},\r\n    'injector': {'methods': {'ProtectMemory': 'VirtualProtectNative',\r\n      'ExecuteMemory': 'CreateThreadNative',\r\n      'ProcessOpen': 'OpenProcessNative',\r\n      'WriteMemory': 'WriteProcMemNative',\r\n      'ProcessCreate': 'CreateProcessWinApi',\r\n      'AllocMemory': 'VirtualAllocNative'},\r\n     'spawn-to': 'C:\\\\windows\\\\system32\\\\browser_broker.exe',\r\n     'parent-process': 'C:\\\\windows\\\\explorer.exe'},\r\n    'opsec': {'unhook-dlls': ['kernel32.dll',\r\n      'ntdll.dll',\r\n      'kernelbase.dll',\r\n      'winhttp.dll'],\r\n     'clear-veh-on-imp-res': True,\r\n     'unhook-syscalls': True,\r\n     'use-syscalls': True,\r\n     'loader-export': 'ReadFile',\r\n     'self-encrypt-while-listening': True,\r\n     'disable-pi-callback': True,\r\n     'indirect-syscalls': True,\r\n     'masquerade-thread-stacks': True,\r\n     'self-encrypt': True,\r\n     'ordinary-export': '',\r\n     'clear-hwbp-on-imp-res': True,\r\n     'clear-veh-on-unhook': True,\r\n     'unhook-using-wpm': True,\r\n     'self-encrypt-after': 5000,\r\n     'encrypt-heap-mode': 'implant',\r\n     'report-self-encrypt-status': True,\r\n     'hide-windows': False,\r\n     'clear-hwbp-on-unhook': True,\r\n     'self-encrypt-no-rx-stub': True,\r\n     'unhook-on-self-encrypt': True,\r\n     'clear-dll-notifications': True,\r\n     'stomp-pe-header': True,\r\n     'stack-commit-size': 262144,\r\n     '--backing-module': {'x86': 'chakra.dll', 'x64': 'chakra.dll'},\r\n     'thread-start-addresses': ['ntdll!RtlUserThreadStart']},\r\n    'settings': {'interval': 10000, 'expire-after': 1640998861, 'jitter': 40}},\r\n   'p2p-config': {'p2p-listener-uri': ['smb://googlecrashpad'],\r\n    'aes-128-iv': 'Vnzix2bnX2cpeCw4',\r\n    'promote-after': 1,\r\n    'aes-128-key': 'TZNZ4PdCXeu3Aq7i',\r\n    'promote': False},\r\n   'mode': 'p2p'}}}\r\n```\nComment: Wow awesome. It's not every day I get golden contributions like this!\r\n\r\nWill test and merge asap. Thank you.\nComment: Merged - ideally now we need a few more samples to test on.\nComment: @kevoreilly Do you have a link to a public CAPE analysis that you tested that shows the extracted config? I've been trying to search the hash (`0551ca07f05c2a8278229c1dc651a2b1273a39914857231b075733753cb2b988`) but it keeps timing out...",
+  "Title: Error when downloading payloads\nBody: I submitted a sample today and I'm getting the attached error when trying to download the payload.\r\nUsername: dakar111\r\n\r\nThanks a lot for this amazing tool!\r\n![image](https://user-images.githubusercontent.com/49763879/205445720-76d74507-c47a-4387-b102-4994db10351b.png)\r\n\nComment: @dakar111: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.",
+  "Title: Update 01\nBody: Add trim files from demuxed container\r\nUpdate/fix logic for files over max size\r\nFix task_id type in on_demand()\r\n",
+  "Title: protobuf report\nBody: None",
+  "Title: Path() expects a str or os.PathLike object\nBody: None",
+  "Title: html report update and report suscription per user\nBody: None",
+  "Title: Signature spawns_dev_util crashing after update\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n* Free support from doomedraven ended - no whiskey, no support. For updates check the documentation.\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I did read the README!\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I have read and checked all configs (with all optional parts)\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\r\n\r\n# Current Behavior\r\n\r\nErrors with **lib.cuckoo.core.plugins**. Specifically: `ERROR: Failed to run signature spawns_dev_util: int() can't convert non-string with explicit base`.\r\n\r\n# Failure Information (for bugs)\r\n\r\nI have recently updated my CAPEv2 instance to https://github.com/kevoreilly/CAPEv2/commit/a9714a8422e1db32dfd72dc254225255de821a8d and started getting the following error whenever I submit a new sample or I just use `process.py` to launch the processing modules:\r\n```\r\n[...]\r\n2022-11-30 07:38:16,380 [Task 86] [lib.cuckoo.core.plugins] ERROR: Failed to run signature spawns_dev_util: int() can't convert non-string with explicit base\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 536, in run\r\n    result = sig.on_call(call, proc)\r\n  File \"/opt/CAPEv2/utils/../modules/signatures/whitelisting_bypass_dev_utils.py\", line 123, in on_call\r\n    flags = int(self.get_argument(call, \"CreationFlags\"), 16)\r\nTypeError: int() can't convert non-string with explicit base\r\n[...]\r\n```\r\nSo far, I didn't notice anything breaking, regardless of the error. However, the error wasn't there before the update. The error is shown in `process.log`.\r\n## Steps to Reproduce\r\n\r\nUpload a new sample or resubmit an older one or relaunch processing modules. \r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 16.04, Windows 10, macOS 10.12.3\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: Hi @RazviOverflow , this bugfix has already been resolved in the community repo: https://github.com/kevoreilly/community/commit/f5fcbfb70336d779d0e72e595184571d29777124. Please update your signatures with the `community` utility and restart the `cape-processor.service`.",
+  "Title: does lmms have icedID\nBody: https://www.virustotal.com/gui/file/5f20af1d782468507417d0785826b1f064fadba88ed1691e2def269922ace56b\r\nit says IcedID \r\nis my bank account at risk???\nComment: @dpe0: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: > @dpe0: hello! \ud83d\udc4b\r\n> \r\n> This issue is being automatically closed because it does not follow the issue template.\r\n> \r\n> This is open source project! So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\r\n\r\ni am sorry if bank account compromise is boring\nComment: my bank account got compomised just kidding or am i you will never know ",
+  "Title: Refactoring 'processes' package\nBody: - `processes_simple` and `processes` were pretty much the sample thing in theory, other than the commented out code. So I removed `processes_simple`.\r\n- The `processes` package essentially was the winword equivalent of the `js_antivm` package, so I renamed it to `doc_antivm`.\r\n- There were some applications that are not installed at default or had the incorrect path, so I removed their execution during startup.\r\n- Updating the comments in the `js_antivm` package, as well as only creating 20 calcs vs the original 50 since 50 is overkill.",
+  "Title: Updated the packages documentation\nBody: Closes https://github.com/kevoreilly/CAPEv2/issues/1182\r\n\r\nI also renamed the xlst package to xslt because I believe this is a typo.\nComment: Thanks! But is it intended to duplicate, for example, `procmemdump` so many times?\nComment: > Thanks! But is it intended to duplicate, for example, `procmemdump` so many times?\r\n\r\nGood question, it seems like `procmemdump`, `free` and `dll` were options for every analysis package prior to this change. So I just kept with that theme. I can include these options at the top of the doc with a blurb and remove them from the rest of the doc?",
+  "Title: Wrapping the reimage and delete threads in a try-catch\nBody: We don't want these threads to crash, ever!\nComment: Thank you \ud83d\ude4f ",
+  "Title: Troubleshooting\nBody: I created two pages based on recent issues:\r\n\r\n- Additional Configuration for the guest OS (at the moment only Windows)\r\n- Troubleshooting, mentioning several issues from GitHub and some steps to follow to solve problems related with Internet connection and PCAPs\r\n\r\n\nComment: Legend! Thank you \u2764\ufe0f \nComment: You are most welcome @kevoreilly :) \r\nGlad to help making the docs as exhaustive as possible. ",
+  "Title: fix #1254; submissions stay in pending\nBody: A lot of the problems with submissions stuck in the pending state is due to the available machinery. Tweak the scheduler slightly to check the machinery is capable of processing a task and use a default configuration that sends these tasks to a failed processing state.\nComment: thank you",
+  "Title: Submissions stay in pending when the right machinery isn't available\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n* Free support from doomedraven ended - no whiskey, no support. For updates check the documentation.\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nAny task not capable of being serviced will fail analysis.\r\n\r\n# Current Behavior\r\n\r\nWhen the scheduler picks up tasks, it checks for unlocked machines by tags, architecture, and platform. If for example, there are no Linux machines available, an ELF sample will be stuck in the pending state forever.\r\nis a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. setup machinery with Windows platforms only\r\n2. submit a Linux sample\r\n\r\n## Context\r\n\r\nN/A; will have a PR up shortly\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: fix for this is up in https://github.com/kevoreilly/CAPEv2/pull/1255",
+  "Title: [physical] - Windows 10 - Hangs on Restarting after successful analysis\nBody: Windows 10 - Hangs on Restarting after successful analysis. \r\n\r\nRecently I started to have fun with Capev2. \r\n\r\nI am using the physical machinery, and physical machine (hp elite desk 800 g8).\r\n\r\nWhen analysis is complete, the restore task is sent to Fog server, and the shutdown command is sent from cape server to cape agent via \u201c/execute\u201d route, and it does trigger well on the agent side; however, the machine hangs on a blue screen (not BSOD) with \u201cRestarting\u201d information and it keeps like that forever. \r\n\r\nRemarks:\r\n-I tried the newest capemon dlls (it did not fix the issue)\r\n-I wrote a powershell script that is triggered before shutdown.exe which checks the status of WMI services (as those are restarted during analysis process) and look for any potentially suspended or non-responding processes or so \u2026 but all is always OK.\r\n-When analysis is not in progress, the machine can reboot normally \r\n\r\nAlways when shutdown is called (via shutdown.exe -r -f -t 0 or via \u201cRestart-Computer -Force\u201d, the reboot hangs \u2026 this is the moment when I started to suspect that the issue might be related to capemon.\r\n\r\nIn hook_misc.c, we can see that capemon would hook system shutdown/reboot API calls:\r\nRef: https://github.com/kevoreilly/capemon/blob/a1f5bf8e9cb904f32da8ff4801691fbfef2f87e3/hook_misc.c#:~:text=InitiateSystemShutdownExW\r\n\r\nExample:\r\n\r\nHOOKDEF_NOTAIL(WINAPI, InitiateSystemShutdownExW,\r\n   _In_opt_ LPWSTR lpMachineName,\r\n   _In_opt_ LPWSTR lpMessage,\r\n   _In_   DWORD  dwTimeout,\r\n   _In_   BOOL bForceAppsClosed,\r\n   _In_   BOOL bRebootAfterShutdown,\r\n   _In_   DWORD   dwReason\r\n) {\r\n   DWORD ret = 0;\r\n   LOQ_zero(\"system\", \"uuiiih\", \"MachineName\", lpMachineName, \"Message\", lpMessage, \"Timeout\", dwTimeout, \"ForceAppsClosed\", bForceAppsClosed, \"RebootAfterShutdown\", bRebootAfterShutdown, \"Reason\", dwReason);\r\n   pipe(\"SHUTDOWN:\"); \r\n   return ret;\r\n}\r\n\r\nFollowing system shutdown/reboot functions are hooked in \u201chooks.c\u201d with the same pipe function.\r\nRef: https://github.com/kevoreilly/capemon/blob/da546e668081089480e17755ec83c32cfd53e09f/hooks.c \r\n\r\n#define HOOK_NOTAIL(library, funcname, numargs) {L###library, #funcname, NULL, NULL, \\\r\n   &New_##funcname, NULL, NULL, TRUE, FALSE, numargs, TRUE}\r\n\r\n   HOOK_NOTAIL(ntdll, NtShutdownSystem, 1),\r\n   HOOK_NOTAIL(ntdll, NtSetSystemPowerState, 3),\r\n   HOOK_NOTAIL(user32, ExitWindowsEx, 2),\r\n   HOOK_NOTAIL(advapi32, InitiateShutdownW, 5),\r\n   HOOK_NOTAIL(advapi32, InitiateSystemShutdownW, 5),\r\n   HOOK_NOTAIL(advapi32, InitiateSystemShutdownExW, 6),\r\n\r\nSuspected Root Cause:\r\n\r\nInitially I wasted lot of time and evidently missed the fact that new function to be called is declared within the hook itself (dumb me).\r\nHence all shutdown/reboot requests are sent to a named pipe, instead of being executed.\r\n\r\nOnce I was able to keep the session in state allowing to execute Process Explorer, and I was looking for CAPEMon DLLs.\r\n\r\nIt seems it always remains hooked in the same processes: lsass.exe, svchost.exe and in the process started by the sample (in this case procexp\u2026)\r\n\r\n<img width=\"422\" alt=\"image\" src=\"https://user-images.githubusercontent.com/117591603/203568690-1526caf6-7c45-4d0d-b20e-525a8bae1904.png\">\r\n\r\nOnce I killed the svchost process, I was able to issue reboot command again which was successfully rebooting the machine.\r\n\r\nI think the root cause is capemon, which eats the restart requests \u2026 For some reason the DLL was not unloaded from svchost which seems to be crucial for some reason to perform the reboot. \r\n\r\nNote: Setting \u201cterminate_processes = off to on\u201d in cuckoo.conf + cape restart,  does not fix the issue, it brings more problems \u2026 there were some errors related to agent or analyzer not being able to stop the process (in a loop until timeout)\r\n\r\nThis issue was not previously spotted I guess cause guys are mainly using VMs which are restored from snapshot , not rebooted\u2026\r\n\r\n\r\nI started to dig, and capemon would look for specific shutdown mutex\u2026 In log.c:\r\nhttps://github.com/kevoreilly/capemon/blob/52377d9be0e3597bca4ee4a0d6bf1a3726d5a8f1/log.c#:~:text=static%20DWORD%20WINAPI-,_logwatcher_thread,-(LPVOID%20param)\r\n\u2026\r\n\r\nif (is_shutting_down() == 0) {\r\n      pipe(\"CRITICAL:Logging thread was terminated!\");\r\n   }\r\n\r\nThe function \u201cis_shutting_down()\u201d:\r\nhttps://github.com/kevoreilly/capemon/blob/a4c6cde30c12ff35de8c79823542bd2c27224ae4/misc.c#:~:text=int%20is_shutting_down()\r\n\u2026\r\nmutex_handle = OpenMutex(SYNCHRONIZE, FALSE, g_config.shutdown_mutex);\r\n   if (mutex_handle != NULL) {\r\n      log_flush();\r\n      CloseHandle(mutex_handle);\r\n      ret = 1;\r\n   }\r\n\r\nThe \u201cg_config.shutdown_mutex\u201d is assigned a value in config.c by \u201cparse_config_line\u201d function:\r\nhttps://github.com/kevoreilly/capemon/blob/113b1a6d37ffd1f24d0337b361a62d69b90d6baa/config.c#:~:text=strcmp(key%2C-,%22shutdown%2Dmutex%22,-))%20%7B\r\n\r\nelse if (!strcmp(key, \"shutdown-mutex\")) {\r\n         strncpy(g_config.shutdown_mutex, value,\r\n            ARRAYSIZE(g_config.shutdown_mutex));\r\n      }\r\n\r\nThe \u201cvalue\u201d\u2019s value is read from config file line by line in \u201cread_config\u201d function and processed/assigned to g_config object accordingly depending on the key (as above): \r\n\r\nchar buf[32768], config_fname[MAX_PATH], analyzer_path[MAX_PATH];\r\n   FILE *fp;\r\n\r\n   // look for the config in monitor directory\r\n   strncpy(analyzer_path, our_dll_path, strlen(our_dll_path));\r\n   PathRemoveFileSpec(analyzer_path); // remove filename\r\n   sprintf(config_fname, \"%s\\\\%u.ini\", analyzer_path, GetCurrentProcessId());\r\n\r\n   fp = fopen(config_fname, \"r\");\r\n\r\n....\r\n\r\nmemset(buf, 0, sizeof(buf));\r\n   while (fgets(buf, sizeof(buf), fp) != NULL)\r\n   {\r\n      // cut off the newline\r\n      char *p = strchr(buf, '\\r');\r\n      if (p != NULL) *p = 0;\r\n      p = strchr(buf, '\\n');\r\n      if (p != NULL) *p = 0;\r\n\r\n      parse_config_line(buf);\r\n   }\r\n\r\nFrom another hand, the cape analyzer.py creates the shutdown mutex:\r\nhttps://github.com/kevoreilly/CAPEv2/blob/ab30a65ef1aa71a068a811b1501c57abe90598ad/analyzer/windows/analyzer.py#:~:text=KERNEL32.CreateMutexA\r\n\r\n     KERNEL32.CreateMutexA(None, False, SHUTDOWN_MUTEX)\r\n        log.info(\"Created shutdown mutex\")\r\n\r\nThe mutex will be random per each execution SHUTDOWN_MUTEX = f\"Global\\\\{random_string(6, 10)}\"\r\n\r\nSo I do not know why CAPEmon DLLS won\u2019t unload, if shutdown mutex is present \u2026\r\n\r\nThank you in advance for any recommendations.\r\n\r\nP.S I will try with Windows 7 later on, but would prefer to have it with more decent system.\r\n\r\n\nComment: @wlmitra: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: Interesting issue - thanks for the detailed report and apologies about the auto-close. It protects us from most lame issues but occasionally closes good ones.\r\n\r\nIt seems your research has led you in the same direction as I would expect - my initial reaction to reading 'blue screen' was to consider which system-critical processes capemon might be loaded in. I would recommend a few tests to see if we can't pin it down a bit further.\r\n\r\nThe first one is to test whether it's the hooks you mention or not. Try running a job with the following options: ``exclude-apis=NtShutdownSystem:NtSetSystemPowerState:ExitWindowsEx:InitiateShutdownW:InitiateSystemShutdownW:InitiateSystemShutdownExW:NtRaiseHardError``\r\n\r\nTo make sure ``svchost`` processes aren't monitored you could try ``single-process=1``.\r\n\r\nTo test to see if it's injection in lsass (although it shouldn't be as here only a handful of TLS encryption-specific hooks are used). Nonetheless to rule it out, temporarily delete the auxiliary module from ``analyzer/windows/modules/auxiliary/tlsdump.py``\r\n\r\nLet me know how you get on with these tests.\nComment: I modified the \"exclude-apis\" list by adding WTSShutdownSystem:\r\n\r\nexclude-apis=NtShutdownSystem:NtSetSystemPowerState:ExitWindowsEx:InitiateShutdownW:InitiateSystemShutdownW:InitiateSystemShutdownExW:NtRaiseHardError:WTSShutdownSystem\r\n\r\n --> The system hangs, in process explorer (started prior analysis with python.exe name to avoid injection, so still not hanged) i can see that capemon remains injected into processes despite analysis complete status\r\n --> The python process hosting analyzer, and python process hosting agent both do not exit (They keep running)\r\n --> I have crafted quickly a reboot utlity using unhooked function \"WTSShutdownSystem\", but this one ends up on hanging on Restarting as well ... i guess still the svchost.exe with injected module is preventing the reboot... maybe exclude-apis does not work ? \r\n\r\n![image](https://user-images.githubusercontent.com/117591603/203825153-b1eb39d4-252e-46c7-b890-abfe5e4606a5.png)\r\n...\r\n![image](https://user-images.githubusercontent.com/117591603/203825322-9d02008b-fb63-49b1-8306-426d77e9a314.png)\r\n\r\nsingle-process=1\r\n --> The system hangs on Restarting (I guess this time both python processes related to agent and analyzer either exited properly or killed by reboot or something else)\r\n ---> I can confirm if needed (tomorrow)\r\n\r\nRemoving analyzer/windows/modules/auxiliary/tlsdump.py + exclude-apis=... same as above, \r\n--> the machine hangs on Restarting ... So the lsass injection seems not relevant to reboot process\r\n\r\nInstead of shutdown.exe, i pointed to another non-existent exe file + cape restart and sent the submission again (hoping to be able to run process explorer and see injected processes).\r\n--> In the result i can see that without tlsdump.py the lsass is not injected ... Only svchost and the process started by the sample \r\n\r\n![image](https://user-images.githubusercontent.com/117591603/203825409-6d5f6788-8cbf-456c-b724-3568d25db2a8.png)\r\n\r\n\r\nWhen i try to execute new task from procexplorer -> cmd -> powershell, right after running powershell everything hangs... hence i loose the posibility to try a manual restart (Start menu is not responsive)\r\n\r\n---> Sometimes more processes are still injected, but not lsass.\r\n\r\n![image](https://user-images.githubusercontent.com/117591603/203825456-6aa86197-cab3-4c71-a2c9-b7c861994f65.png)\r\n\r\n\r\nThe workaround again appears to be:\r\n\r\n--> Issue reboot command \r\n--> Kill the svchost.exe process having the capemon dll in modules ... but following powershell script cannot locate svchost prcoess...\r\n\r\nNote: The file capemon_paths contains the list of x86 and x64 paths to capemon files (like data\\blabla.dll)... i am outputing it from analyzer.py...\r\n\r\n<pre>\r\nGet-Content \"capemon_paths\" | ForEach-Object {\r\n  $InjectedModuleName = $_ -replace \"dll\\\\\",\"\"; # The output would be in format <current_cape_mon_file_name>.dll\r\n  Write-Host \"Looking for CAPEMon module: '$InjectedModuleName'\"\r\n  $Injected_Processes = Get-Process svchost -ErrorAction SilentlyContinue | where {$_.Modules -like \"*($InjectedModuleName)\"}\r\n  $Injected_Processes | ForEach-Object {\r\n        Write-Host \"Killing: \"$_;\r\n        kill -Force $_.Id -ErrorAction Continue -WarningAction Continue;\r\n  }\r\n}\r\n</pre>\r\nNote: The powershell interpreter was running from renamed powershell.exe to python.exe to avoid injection.\r\n\r\nConclusion:\r\n\r\n- It would be nice to verify if exclude-apis actually work (Does it prevent from loading hooks to these functions?)\r\n- It's crucial to make sure that all injected DLLs unload when shutdown mutex is populated (this is initial root cause in my opinion)\r\n\r\nIs there anything else i can do to help?\r\n\r\nWitold \r\n\r\n-I won't test on Windows 7, this hardware is apparently not working well with Windows 7\r\n-I need to figure out why process explorer (started prior analysis) can see the capemon modules and powershell (started after analysis) cannot \r\n \nComment: And yes almost forgot, the working code (it reboots the system without capemon) of small utility (must be executed as admin to get shutdown privilege) ... it's probably another function to hook in the future:\r\n\r\n<pre>\r\nusing System;\r\nusing System.Collections.Generic;\r\nusing System.Linq;\r\nusing System.Text;\r\nusing System.Runtime.InteropServices;\r\n\r\nnamespace shutdown\r\n{\r\n    class Program\r\n    {\r\n        private const int WTS_WSD_REBOOT = 0x00000004;\r\n        private const int WTS_WSD_SHUTDOWN = 0x00000002;\r\n        \r\n        public static readonly IntPtr LocalServerHandle = IntPtr.Zero;\r\n\r\n        [DllImport(\"wtsapi32.dll\", SetLastError = true)]\r\n        public static extern int WTSShutdownSystem(IntPtr hServer, int shutdownFlag);\r\n\r\n        [DllImport(\"wtsapi32.dll\", CharSet = CharSet.Auto, SetLastError = true)]\r\n        public static extern IntPtr WTSOpenServer(string serverName);\r\n\r\n        static void Main(string[] args)\r\n        {\r\n            IntPtr hServer = WTSOpenServer(\"127.0.0.1\");\r\n            WTSShutdownSystem(hServer, WTS_WSD_REBOOT);\r\n        }\r\n    }\r\n}\r\n</pre>",
+  "Title: Adding .temp to DLL check\nBody: For this sample: https://www.virustotal.com/gui/file/f90681a3c5525abdc8c0c0ec190f001ac79786c72fc23d5cf2b6ba8e6579a538",
+  "Title: The pcap does not exists\nBody: None\nComment: @Loky85: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.",
+  "Title: Handle AttributeError while parsing Office docs\nBody: None",
+  "Title: The PCAP file does not exist \nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n* Free support from doomedraven ended - no whiskey, no support. For updates check the documentation.\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n\u2714 I did read the README!\r\n\u2714 I checked the documentation and found no answer\r\n\u2714 I checked to make sure that this issue has not already been filed\r\n\u2714 I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\u2714 I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nI expect to be no errors within the logs.\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\nI have problem with start suricata and pcap file. I followed similar errors, but I did not manage to solve it, and i need a help to resolve the issue.\r\n\r\n\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. step 1\r\n2. step 2\r\n3. you get it...\r\n\r\n## Context\r\n\r\n022-11-16 23:05:09,272 [Task 45] [modules.processing.behavior] INFO: Analysis results folder does not contain any file or injection was disabled\r\n2022-11-16 23:05:09,279 [Task 45] [modules.processing.network] WARNING: The PCAP file does not exist at path \"/opt/CAPEv2/storage/analyses/45/dump.pcap\"\r\n2022-11-16 23:05:09,280 [Task 45] [modules.processing.suricata] WARNING: Unable to Run Suricata: Pcap file /opt/CAPEv2/storage/analyses/45/dump.pcap does not exist\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 20.04\r\n\r\n## Failure Logs\r\n022-11-16 23:05:09,272 [Task 45] [modules.processing.behavior] INFO: Analysis results folder does not contain any file or injection was disabled\r\n2022-11-16 23:05:09,279 [Task 45] [modules.processing.network] WARNING: The PCAP file does not exist at path \"/opt/CAPEv2/storage/analyses/45/dump.pcap\"\r\n2022-11-16 23:05:09,280 [Task 45] [modules.processing.suricata] WARNING: Unable to Run Suricata: Pcap file /opt/CAPEv2/storage/analyses/45/dump.pcap does not exist\r\n\nComment: @Loky85: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: if you don't route your traffic over live connection there is pcap\nComment: I solved the pcap problem, but suricata does not start, I get the following error:\r\n\r\n<pre>2022-11-23 07:17:50,359 [Task 48] [modules.processing.suricata] WARNING: <font color=\"#C4A000\">Failed to connect to socket and send command /tmp/suricata-command.socket: [Errno 13] Permission denied</font></pre>\nComment: @Loky85 were you able to fix the suricata permission error?\nComment: > I solved the pcap problem, but suricata does not start, I get the following error:\r\n> \r\n> 2022-11-23 07:17:50,359 [Task 48] [modules.processing.suricata] WARNING: Failed to connect to socket and send command /tmp/suricata-command.socket: [Errno 13] Permission denied\r\n\r\nMay I ask how it was resolved?\nComment: do you guys have pcap enabled in routing.conf? if route is Drop/none there are no pcap generation\nComment: > do you guys have pcap enabled in routing.conf? if route is Drop/none there are no pcap generation\r\n\r\n[routing.conf.txt](https://github.com/kevoreilly/CAPEv2/files/14782879/routing.conf.txt)\r\nI have mine set up like a file (changed the suffix for a successful upload)\nComment: your config does match cape's config, there is missing this just after `[routing]` , you can add it and set to `yes`, then `sudo systemctl restart cape`\r\n\r\n```\r\n# Enable pcap generation for non live connections?\r\n# If you have huge number of VMs, pcap generation can be a bottleneck\r\nenable_pcap = no\r\n```",
+  "Title: The PCAP file does not exist\nBody: Hello, \r\nI have problem with start suricata and pcap file.  I followed similar errors, but I did not manage to solve it, and i need a help to resolve the issue. \r\n\r\n\r\n022-11-16 23:05:09,272 [Task 45] [modules.processing.behavior] INFO: Analysis results folder does not contain any file or injection was disabled\r\n2022-11-16 23:05:09,279 [Task 45] [modules.processing.network] WARNING: The PCAP file does not exist at path \"/opt/CAPEv2/storage/analyses/45/dump.pcap\"\r\n2022-11-16 23:05:09,280 [Task 45] [modules.processing.suricata] WARNING: Unable to Run Suricata: Pcap file /opt/CAPEv2/storage/analyses/45/dump.pcap does not exist\r\n\r\n\nComment: @Loky85: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.",
+  "Title: Add support for dll files ending with .tmp\nBody: This will allow the execution of all interesting files in this archive sample https://www.virustotal.com/gui/file/e6a2e75a6b2a3f2ac324ed063728d53dd0ff40e24e2abe11a725c41a54aabfe9\nComment: Thank you!",
+  "Title: Bump pillow from 9.2.0 to 9.3.0\nBody: Bumps [pillow](https://github.com/python-pillow/Pillow) from 9.2.0 to 9.3.0.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a href=\"https://github.com/python-pillow/Pillow/releases\">pillow's releases</a>.</em></p>\n<blockquote>\n<h2>9.3.0</h2>\n<p><a href=\"https://pillow.readthedocs.io/en/stable/releasenotes/9.3.0.html\">https://pillow.readthedocs.io/en/stable/releasenotes/9.3.0.html</a></p>\n<h2>Changes</h2>\n<ul>\n<li>Initialize libtiff buffer when saving <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6699\">#6699</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Limit SAMPLESPERPIXEL to avoid runtime DOS <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6700\">#6700</a> [<a href=\"https://github.com/wiredfool\"><code>@\u200bwiredfool</code></a>]</li>\n<li>Inline fname2char to fix memory leak <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6329\">#6329</a> [<a href=\"https://github.com/nulano\"><code>@\u200bnulano</code></a>]</li>\n<li>Fix memory leaks related to text features <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6330\">#6330</a> [<a href=\"https://github.com/nulano\"><code>@\u200bnulano</code></a>]</li>\n<li>Use double quotes for version check on old CPython on Windows <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6695\">#6695</a> [<a href=\"https://github.com/hugovk\"><code>@\u200bhugovk</code></a>]</li>\n<li>GHA: replace deprecated set-output command with GITHUB_OUTPUT file <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6697\">#6697</a> [<a href=\"https://github.com/nulano\"><code>@\u200bnulano</code></a>]</li>\n<li>Remove backup implementation of Round for Windows platforms <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6693\">#6693</a> [<a href=\"https://github.com/cgohlke\"><code>@\u200bcgohlke</code></a>]</li>\n<li>Upload fribidi.dll to GitHub Actions <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6532\">#6532</a> [<a href=\"https://github.com/nulano\"><code>@\u200bnulano</code></a>]</li>\n<li>Fixed set_variation_by_name offset <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6445\">#6445</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Windows build improvements <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6562\">#6562</a> [<a href=\"https://github.com/nulano\"><code>@\u200bnulano</code></a>]</li>\n<li>Fix malloc in _imagingft.c:font_setvaraxes <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6690\">#6690</a> [<a href=\"https://github.com/cgohlke\"><code>@\u200bcgohlke</code></a>]</li>\n<li>Only use ASCII characters in C source file <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6691\">#6691</a> [<a href=\"https://github.com/cgohlke\"><code>@\u200bcgohlke</code></a>]</li>\n<li>Release Python GIL when converting images using matrix operations <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6418\">#6418</a> [<a href=\"https://github.com/hmaarrfk\"><code>@\u200bhmaarrfk</code></a>]</li>\n<li>Added ExifTags enums <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6630\">#6630</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Do not modify previous frame when calculating delta in PNG <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6683\">#6683</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Added support for reading BMP images with RLE4 compression <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6674\">#6674</a> [<a href=\"https://github.com/npjg\"><code>@\u200bnpjg</code></a>]</li>\n<li>Decode JPEG compressed BLP1 data in original mode <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6678\">#6678</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>pylint warnings <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6659\">#6659</a> [<a href=\"https://github.com/marksmayo\"><code>@\u200bmarksmayo</code></a>]</li>\n<li>Added GPS TIFF tag info <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6661\">#6661</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Added conversion between RGB/RGBA/RGBX and LAB <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6647\">#6647</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Do not attempt normalization if mode is already normal <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6644\">#6644</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Fixed seeking to an L frame in a GIF <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6576\">#6576</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Consider all frames when selecting mode for PNG save_all <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6610\">#6610</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Don't reassign crc on ChunkStream close <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6627\">#6627</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Raise a warning if NumPy failed to raise an error during conversion <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6594\">#6594</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Only read a maximum of 100 bytes at a time in IMT header <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6623\">#6623</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Show all frames in ImageShow <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6611\">#6611</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Allow FLI palette chunk to not be first <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6626\">#6626</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>If first GIF frame has transparency for RGB_ALWAYS loading strategy, use RGBA mode <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6592\">#6592</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Round box position to integer when pasting embedded color <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6517\">#6517</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Removed EXIF prefix when saving WebP <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6582\">#6582</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Pad IM palette to 768 bytes when saving <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6579\">#6579</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Added DDS BC6H reading <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6449\">#6449</a> [<a href=\"https://github.com/ShadelessFox\"><code>@\u200bShadelessFox</code></a>]</li>\n<li>Added support for opening WhiteIsZero 16-bit integer TIFF images <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6642\">#6642</a> [<a href=\"https://github.com/JayWiz\"><code>@\u200bJayWiz</code></a>]</li>\n<li>Raise an error when allocating translucent color to RGB palette <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6654\">#6654</a> [<a href=\"https://github.com/jsbueno\"><code>@\u200bjsbueno</code></a>]</li>\n<li>Moved mode check outside of loops <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6650\">#6650</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Added reading of TIFF child images <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6569\">#6569</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Improved ImageOps palette handling <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6596\">#6596</a> [<a href=\"https://github.com/PososikTeam\"><code>@\u200bPososikTeam</code></a>]</li>\n<li>Defer parsing of palette into colors <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6567\">#6567</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Apply transparency to P images in ImageTk.PhotoImage <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6559\">#6559</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Use rounding in ImageOps contain() and pad() <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6522\">#6522</a> [<a href=\"https://github.com/bibinhashley\"><code>@\u200bbibinhashley</code></a>]</li>\n<li>Fixed GIF remapping to palette with duplicate entries <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6548\">#6548</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Allow remap_palette() to return an image with less than 256 palette entries <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6543\">#6543</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Corrected BMP and TGA palette size when saving <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6500\">#6500</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n</ul>\n<!-- raw HTML omitted -->\n</blockquote>\n<p>... (truncated)</p>\n</details>\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/python-pillow/Pillow/blob/main/CHANGES.rst\">pillow's changelog</a>.</em></p>\n<blockquote>\n<h2>9.3.0 (2022-10-29)</h2>\n<ul>\n<li>\n<p>Limit SAMPLESPERPIXEL to avoid runtime DOS <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6700\">#6700</a>\n[wiredfool]</p>\n</li>\n<li>\n<p>Initialize libtiff buffer when saving <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6699\">#6699</a>\n[radarhere]</p>\n</li>\n<li>\n<p>Inline fname2char to fix memory leak <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6329\">#6329</a>\n[nulano]</p>\n</li>\n<li>\n<p>Fix memory leaks related to text features <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6330\">#6330</a>\n[nulano]</p>\n</li>\n<li>\n<p>Use double quotes for version check on old CPython on Windows <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6695\">#6695</a>\n[hugovk]</p>\n</li>\n<li>\n<p>Remove backup implementation of Round for Windows platforms <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6693\">#6693</a>\n[cgohlke]</p>\n</li>\n<li>\n<p>Fixed set_variation_by_name offset <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6445\">#6445</a>\n[radarhere]</p>\n</li>\n<li>\n<p>Fix malloc in _imagingft.c:font_setvaraxes <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6690\">#6690</a>\n[cgohlke]</p>\n</li>\n<li>\n<p>Release Python GIL when converting images using matrix operations <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6418\">#6418</a>\n[hmaarrfk]</p>\n</li>\n<li>\n<p>Added ExifTags enums <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6630\">#6630</a>\n[radarhere]</p>\n</li>\n<li>\n<p>Do not modify previous frame when calculating delta in PNG <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6683\">#6683</a>\n[radarhere]</p>\n</li>\n<li>\n<p>Added support for reading BMP images with RLE4 compression <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6674\">#6674</a>\n[npjg, radarhere]</p>\n</li>\n<li>\n<p>Decode JPEG compressed BLP1 data in original mode <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6678\">#6678</a>\n[radarhere]</p>\n</li>\n<li>\n<p>Added GPS TIFF tag info <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6661\">#6661</a>\n[radarhere]</p>\n</li>\n<li>\n<p>Added conversion between RGB/RGBA/RGBX and LAB <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6647\">#6647</a>\n[radarhere]</p>\n</li>\n<li>\n<p>Do not attempt normalization if mode is already normal <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6644\">#6644</a>\n[radarhere]</p>\n</li>\n</ul>\n<!-- raw HTML omitted -->\n</blockquote>\n<p>... (truncated)</p>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/d594f4cb8dc47fb0c69ae58d9fff86faae4515bd\"><code>d594f4c</code></a> Update CHANGES.rst [ci skip]</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/909dc64ed5f676169aa3d9b0c26f132a06321b83\"><code>909dc64</code></a> 9.3.0 version bump</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/1a51ce7b955c65c8f2c6bc7772735b197b8a6aa3\"><code>1a51ce7</code></a> Merge pull request <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6699\">#6699</a> from hugovk/security-libtiff_buffer</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/2444cddab2f83f28687c7c20871574acbb6dbcf3\"><code>2444cdd</code></a> Merge pull request <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6700\">#6700</a> from hugovk/security-samples_per_pixel-sec</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/744f455830871d61a8de0a5e629d4c2e33817cbb\"><code>744f455</code></a> Added release notes</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/0846bfae48513f2f51ca8547ed3b8954fa501fda\"><code>0846bfa</code></a> Add to release notes</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/799a6a01052cea3f417a571d7c64cd14acc18c64\"><code>799a6a0</code></a> Fix linting</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/00b25fd3ac3648bc28eff5d4c4d816e605e3f05f\"><code>00b25fd</code></a> Hide UserWarning in logs</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/05b175ef88c22f5c416bc9b8d5b897dea1abbf2c\"><code>05b175e</code></a> Tighter test case</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/13f2c5ae14901c89c38f898496102afd9daeaf6d\"><code>13f2c5a</code></a> Prevent DOS with large SAMPLESPERPIXEL in Tiff IFD</li>\n<li>Additional commits viewable in <a href=\"https://github.com/python-pillow/Pillow/compare/9.2.0...9.3.0\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pillow&package-manager=pip&previous-version=9.2.0&new-version=9.3.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language\n- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language\n- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language\n- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language\n\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Need help in configuring the Internet/dirty line and Inetsim\nBody: **About accounts on [capesandbox.com](https://capesandbox.com/)**\r\n    \u2022 Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username \r\n\r\n**This is open source and you are getting free support so be friendly!**\r\n    \u2022 Free support from doomedraven ended - no whiskey, no support. For updates check the documentation. \r\n\r\n**Prerequisites**\r\nPlease answer the following questions for yourself before submitting an issue. \r\n    \u2022 I am running the latest version \r\n    \u2022 I did read the README! \r\n    \u2022 I checked the documentation and found no answer \r\n    \u2022 I checked to make sure that this issue has not already been filed \r\n    \u2022 I'm reporting the issue to the correct repository (for multi-repository projects) \r\n    \u2022 I have read and checked all configs (with all optional parts)\r\n\r\n**Expected Behavior**\r\nI would like to use the internet/dirty line for the analysis but I am unable to find the relevant option in the web/GUI view.  Ideally, I want a setup that would provide me options to run analysis through the internet or Inetsim depending on the sample/analysis type.  I am not sure if my CAPE configuration is updated with the correct parameters.\r\n\r\n**Current Behavior**\r\n\r\nWeb/GUI View\r\n\r\n![cape_int](https://user-images.githubusercontent.com/68076608/201742364-ef78bfac-1462-44d4-a203-a5c1ad7a34ab.PNG)\r\n\r\nI tried to analyze a sample (bat file that I created) that would perform a \u201cnslookup\u201d and use PowerShell to save a webpage on the analysis machine.\r\n\r\n![image](https://user-images.githubusercontent.com/68076608/201742797-61ddbea1-3407-44fb-b93d-6ab8d4c08c4d.png)\r\n\r\nWhen the analysis was run using the \u201cinetsim/fakenet-ng\u201d option, I could see information about the requested DNS lookup but the requested webpage couldn\u2019t be fetched from the internet/Inetsim.  FYI, I am running Inetsim on a different (Remnux) VM and don\u2019t see any relevant entries in service.log and in reports.\r\n\r\nEnclosing relevant information that would help you in assessing the problem.\r\n    1. System setup\r\n       a. Physical machine (Windows 10) -> VirtualBox Linux VM (Ubuntu 20.04.4 LTS) running CAPEv2 -> KVM Windows 10 analysis VM\r\n       b. I am able to access the internet on the Linux VM\r\n    \r\n     2. Network information\r\n        a. Linux VM\r\n                \r\n![image](https://user-images.githubusercontent.com/68076608/201743741-c476f61a-afa9-43e2-aa32-5d0d4ab49cc6.png)\r\n         \r\n        b. KVM Windows analysis VM\r\n          \r\n![image](https://user-images.githubusercontent.com/68076608/201743988-9918f628-d46f-45db-96ae-c21178a98683.png)\r\n![image](https://user-images.githubusercontent.com/68076608/201744018-49ed506e-47d9-4e86-9936-e8864a5f594f.png)\r\n\r\n        c. KVM virtual networks\r\n\r\n![image](https://user-images.githubusercontent.com/68076608/201744132-f756e4a6-e4b9-47f4-a78e-89efd7caadf8.png)\r\n![image](https://user-images.githubusercontent.com/68076608/201744180-eb5ac7cf-b5a6-40a9-b683-13d82bc3a2b1.png)\r\n\r\n        d. Remnux VM\r\n\r\n![image](https://user-images.githubusercontent.com/68076608/201744294-15967ede-1f32-4866-8c11-8425fdff338c.png)\r\n\r\n    3. Excerpts from relevant config files\r\n         \r\n        a. kvm.conf\r\n          `machines = win10\r\n           interface = virbr1\r\n           label = win10\r\n           platform = windows\r\n           ip = 192.168.100.131\r\n           snapshot = cape_to_use`\r\n\r\n         b. auxiliary.conf\r\n             `[auxiliary_modules]\r\n                  browser = yes\r\n                  curtain = no\r\n                  digisig = yes\r\n                  disguise = yes\r\n                  evtx = no\r\n                  human = yes\r\n                  procmon = no\r\n                  screenshots = yes\r\n                  sysmon = no\r\n                  tlsdump = yes\r\n                  usage = no\r\n                  filepickup = no\r\n                  permissions = no\r\n                  pre_script = no\r\n                  during_script = no\r\n\r\n            [sniffer]\r\n                enabled = yes\r\n           \r\n            interface = virbr1\r\n\r\n             [gateways]\r\n                  RTR1 = 192.168.122.1\r\n                  RTR2 = 192.168.100.1\r\n                  RTR3 = 10.0.2.15\r\n                  INETSIM = 192.168.100.130`\r\n        \r\n           c. routing.conf\r\n             ` route = internet\r\n                internet = enp0s3\r\n                rt_table = enp0s3\r\n                verify_interface = yes\r\n\r\n                [inetsim]\r\n                enabled = yes\r\n                server = 192.168.100.130\r\n                dnsport = 53\r\n                interface = virbr1`\r\n\r\n         d. cuckoo.conf\r\n             `machinery = kvm\r\n              rooter = /tmp/cuckoo-rooter     \r\n              ip = 192.168.100.1\r\n              port = 2042\r\n              resolve_dns = on`\r\n\r\nKindly provide inputs and let me know should you need more information.  Thank you for all the efforts!\r\n\r\n\nComment: @vijayakumarcfis: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: did you solve your issue?",
+  "Title: Install issues\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n* Free support from doomedraven ended - no whiskey, no support. For updates check the documentation.\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version - I am \r\n- [x] I did read the README! - Many times\r\n- [x] I checked the documentation and found no answer - Many times\r\n- [x] I checked to make sure that this issue has not already been filed - tried that\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects) - yes\r\n- [x] I have read and checked all configs (with all optional parts) - yes\r\n\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\r\n\r\nCan never get it running.\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\nWill not start. I've reinstalled and gone through every install method you have listed (the ordering is different in the docs compared to github readme) on Ubuntu 22.04 LTS with current updates. Also tried one time with apt install KVM before cape2.sh install. Was getting lots of pyre2 errors on fresh 22.04 but that was remedied by installing cmake and build-essential before launching cape2.sh.\r\n\r\nThis is what I get every time when trying to start. Tried manually adding modules in one install, same issue. Another person tried to install, same issue. Looks to be a DB permission issue, so I tried to open up the permissions. I've worked on this on and off for 50+ hours at this point and 20+ fresh installs. Journalctl -u cape.service produces the same log entries as below.\r\n\r\nHere is the log:\r\n\r\npython3 -m poetry run python cuckoo.py\r\nTraceback (most recent call last):\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/base.py\", line 1771, in _execute_context\r\n    self.dialect.do_execute(\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/default.py\", line 717, in do_execute\r\n    cursor.execute(statement, parameters)\r\npsycopg2.errors.InsufficientPrivilege: permission denied for schema public\r\n\r\n\r\nThe above exception was the direct cause of the following exception:\r\n\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/database.py\", line 560, in __init__\r\n    Base.metadata.create_all(self.engine)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/sql/schema.py\", line 4740, in create_all\r\n    bind._run_ddl_visitor(\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/base.py\", line 3079, in _run_ddl_visitor\r\n    conn._run_ddl_visitor(visitorcallable, element, **kwargs)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/base.py\", line 2082, in _run_ddl_visitor\r\n    visitorcallable(self.dialect, self, **kwargs).traverse_single(element)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/sql/visitors.py\", line 520, in traverse_single\r\n    return meth(obj, **kw)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/sql/ddl.py\", line 833, in visit_metadata\r\n    metadata.dispatch.before_create(\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/event/attr.py\", line 343, in __call__\r\n    fn(*args, **kw)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/util/langhelpers.py\", line 875, in __call__\r\n    return getattr(self.target, self.name)(*arg, **kw)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/sql/sqltypes.py\", line 1210, in _on_metadata_create\r\n    t._on_metadata_create(target, bind, **kw)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/dialects/postgresql/base.py\", line 2016, in _on_metadata_create\r\n    self.create(bind=bind, checkfirst=checkfirst)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/dialects/postgresql/base.py\", line 1909, in create\r\n    bind._run_ddl_visitor(self.EnumGenerator, self, checkfirst=checkfirst)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/base.py\", line 2082, in _run_ddl_visitor\r\n    visitorcallable(self.dialect, self, **kwargs).traverse_single(element)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/sql/visitors.py\", line 520, in traverse_single\r\n    return meth(obj, **kw)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/dialects/postgresql/base.py\", line 1950, in visit_enum\r\n    self.connection.execute(CreateEnumType(enum))\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/base.py\", line 1263, in execute\r\n    return meth(self, multiparams, params, _EMPTY_EXECUTION_OPTS)\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/sql/ddl.py\", line 77, in _execute_on_connection\r\n    return connection._execute_ddl(\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/base.py\", line 1353, in _execute_ddl\r\n    ret = self._execute_context(\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/base.py\", line 1814, in _execute_context\r\n    self._handle_dbapi_exception(\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/base.py\", line 1995, in _handle_dbapi_exception\r\n    util.raise_(\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/util/compat.py\", line 207, in raise_\r\n    raise exception\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/base.py\", line 1771, in _execute_context\r\n    self.dialect.do_execute(\r\n  File \"/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/sqlalchemy/engine/default.py\", line 717, in do_execute\r\n    cursor.execute(statement, parameters)\r\nsqlalchemy.exc.ProgrammingError: (psycopg2.errors.InsufficientPrivilege) permission denied for schema public\r\n\r\n[SQL: CREATE TYPE status_type AS ENUM ('banned', 'pending', 'running', 'completed', 'distributed', 'reported', 'recovered', 'failed_analysis', 'failed_processing', 'failed_reporting')]\r\n(Background on this error at: https://sqlalche.me/e/14/f405)\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/cuckoo.py\", line 25, in <module>\r\n    from lib.cuckoo.core.scheduler import Scheduler\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 28, in <module>\r\n    from lib.cuckoo.core.guest import GuestManager\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/guest.py\", line 27, in <module>\r\n    db = Database()\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/utils.py\", line 716, in __call__\r\n    self._instances[self] = super(Singleton, self).__call__(*args, **kwargs)\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/database.py\", line 562, in __init__\r\n    raise CuckooDatabaseError(f\"Unable to create or connect to database: {e}\")\r\nlib.cuckoo.common.exceptions.CuckooDatabaseError: Unable to create or connect to database: (psycopg2.errors.InsufficientPrivilege) permission denied for schema public\r\n\r\n[SQL: CREATE TYPE status_type AS ENUM ('banned', 'pending', 'running', 'completed', 'distributed', 'reported', 'recovered', 'failed_analysis', 'failed_processing', 'failed_reporting')]\r\n(Background on this error at: https://sqlalche.me/e/14/f405)\r\n# Failure Information (for bugs)\r\n\r\nNever been this stuck on an issue before.\nComment: @rebaker501: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: Found solution in issues...\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/issues/1204",
+  "Title: Can you consider supporting Chinese for the legal character range of the file name?\nBody: As shown in the red box in the picture, I noticed that you have processed the ASCII character range of file names, excluding all uppercase and lowercase letters, numbers and characters other than \"_ -\". Can you consider GBK coding for official projects? I hope Chinese can also be a legal file name range. Inside.\r\n![\u4f01\u4e1a\u5fae\u4fe1\u622a\u56fe_16681606742426](https://user-images.githubusercontent.com/55627281/201317018-49284665-4e48-4f1b-a4ee-3257c2cbbb4f.png)\r\n\nComment: @Yesisyes: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: Pull requests are welcome!\nComment: > \u6b22\u8fce\u8bf7\u6c42\u8bf7\u6c42\uff01\r\n\r\nI now use the latest code. I have rewritten the legal range of file names in the code I pulled myself to support Chinese file name recognition. But what I think is that there will be other Chinese people studying this project. If you can change the range of legal file names in the source code to support Chinese file names, I think many Chinese people studying this project will be happy with this change.\nComment: Can you please share your work so I don't have to repeat it?\nComment: > Can you please share your work so I don't have to repeat it?\n\nSure, I'd love to. But I've gone home for the weekend, and I'll show my code on Monday.\nComment: In/lib/cuckoo/common/utils.py In this file, I changed line 823 so that Chinese characters are also within the legal range of the sample file name. The changes are shown in the screenshot.\r\n![screenshot](https://user-images.githubusercontent.com/55627281/201567285-03624d21-ccd6-4a3e-9b47-62fdd7eed703.png)\r\n\r\n\nComment: > In/lib/cuckoo/common/utils.py In this file, I changed line 823 so that Chinese characters are also within the legal range of the sample file name. The changes are shown in the screenshot. ![screenshot](https://user-images.githubusercontent.com/55627281/201567285-03624d21-ccd6-4a3e-9b47-62fdd7eed703.png)\r\n\r\nToday, I tested the same sample again, and found that although the Chinese name can be recognized, the analysis log will be lost in the analysis report. I think there may be a place where the sample file name is not aligned, so the capa analysis log will not be generated. The changes in the screenshot I just took are not enough. Let me think about what needs to be changed. i 'm sorry.\nComment: @kevoreilly \r\nAfter the above changes, I carefully tested and found that when analyzing the samples containing Chinese names It seems that agent.py file does not work, so there is no log analysis. Everything is normal when analyzing samples without Chinese names.  Is there any place in the agent.py file where you want to change the range of sample file names? I'm still too weak to solve this problem. If you have time, can you solve it? In order to analyze the sample files containing Chinese names, everything can be normal. thank you very much indeed\nComment: @kevoreilly \r\nOh yeah, the problem is that when I read analysis.conf in the config.py file, I haven't set it to \"utf-8-sig\" format for encoding and reading. In the lib/cuckoo/common/utils.py file, there are five changes in my screenshot, as well as in analyzer/windows/lib/core/config.py After one change in the screenshot in the file, when submitting a sample file with a Chinese file name, everything returns to normal.\r\n![1-utils py file](https://user-images.githubusercontent.com/55627281/201821802-61e8340d-bca0-4b43-8f4d-081b0ee10986.png)\r\n![2-utils py file](https://user-images.githubusercontent.com/55627281/201821810-62c06847-0dc4-4f59-8fe0-80c6a552869b.png)\r\n![3-utils py file](https://user-images.githubusercontent.com/55627281/201821812-4db3aeeb-52a8-409e-9443-585df7d80a6c.png)\r\n![4-utils py file](https://user-images.githubusercontent.com/55627281/201821815-dd260380-869c-480a-8dd0-d540b7dc2aa6.png)\r\n![5-utils py file](https://user-images.githubusercontent.com/55627281/201821820-45228e89-f211-4d7c-ac8b-26a4952da919.png)\r\n![6-config py file](https://user-images.githubusercontent.com/55627281/201821821-5f296441-3fad-4af0-89c4-bb96d6a14a06.png)\r\n\r\n",
+  "Title: Failure in AnalysisManager.run: encoding with 'idna' codec failed (UnicodeError: label empty or too long)\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n* Free support from doomedraven ended - no whiskey, no support. For updates check the documentation.\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I did read the README!\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nHi everyone, I have been trying to get cape running now for about a months time. Ive managed to figure out all of the problems I have run into from either previous posts on here or troubleshooting via error logs. \r\n\r\nRight now my current setup is having an updated version of Ubuntu 22.04 running CapeV2 using KVM and Virtual Machine Manager to create the VMs and snapshots. I followed all of the docs and after a few reinstall attempts I managed to get a Windows 10 VM working with the agent and proper configurations as described in the documents. I am able to curl and communicate between the VM and server no problem. I edited all of the configs required to get the host and server to chat to one another. \r\n\r\nI would assume since the agents on the server and host can communicate and the files being uploaded to the webgui correctly, the file should be run and installed on the host etc. Sadly that is not taking place. \r\n\r\n\r\n# Current Behavior\r\n\r\nThe issues I am running into is during the actual file submission via the Cape webgui. The file will successfully upload, I will see the KVM startup for a short time (5 - 10 seconds max) and things appear to be functional. When looking at the cuckoo.log it seems that things are good but right as the host \"analysis\" should run it seems to error out with the following. \r\n\r\n```\r\n2022-11-10 11:00:14,399 [lib.cuckoo.core.scheduler] ERROR: Task #71: Failure in AnalysisManager.run: encoding with 'idna' codec failed (UnicodeError: label empty or too long)\r\nTraceback (most recent call last):\r\n  File \"/usr/lib/python3.10/encodings/idna.py\", line 165, in encode\r\n    raise UnicodeError(\"label empty or too long\")\r\nUnicodeError: label empty or too long\r\n\r\nThe above exception was the direct cause of the following exception:\r\n\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 461, in run\r\n    success = self.launch_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 364, in launch_analysis\r\n    guest.start_analysis(options)\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/guest.py\", line 268, in start_analysis\r\n    self.wait_available()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/guest.py\", line 149, in wait_available\r\n    socket.create_connection((self.ipaddr, self.port), 1).close()\r\n  File \"/usr/lib/python3.10/socket.py\", line 824, in create_connection\r\n    for res in getaddrinfo(host, port, 0, SOCK_STREAM):\r\n  File \"/usr/lib/python3.10/socket.py\", line 955, in getaddrinfo\r\n    for res in _socket.getaddrinfo(host, port, family, type, proto, flags):\r\nUnicodeError: encoding with 'idna' codec failed (UnicodeError: label empty or too long)\r\n```\r\n![Screen Shot 2022-11-10 at 11 02 11 AM](https://user-images.githubusercontent.com/37845669/201154326-1fb98382-34ef-4f02-a40d-8d6d7d31b1a5.png)\r\n\r\nI know that \"idna\" is a python module that is installed and present in the list of required modules when running 'poetry list'. Therefore I have tried updating this many times as well as purging and reinstalling with no luck. I checked permissions and confirmed that everything is owned by the proper 'cape' user inside of '/opt/CAPEv2'. \r\n\r\nThe file uploaded will be listed as \"reported\" in the gui, (see attached screenshots) but when looking in the actual directory where the data lives I dont see any pcaps or any data implicating that it is running on the host at all. \r\n![Screen Shot 2022-11-10 at 11 06 34 AM](https://user-images.githubusercontent.com/37845669/201154300-2a27a68d-93c4-42de-93ea-ab2976bf7077.png)\r\n\r\nI am really stumped as to what is wrong. I am really hoping someone here has run into the same issues and knows what needs to get done to resolve the issue or can lead me in the right direction on what to troubleshoot next. I have googled for days and dont really know how to troubleshoot this any further. \r\n\r\nHopefully I am allowed to post this problem here. Regardless if I get help or not, thanks for forking cuckoo and activity keeping this project alive. \r\n\r\nImages showing what I see when the \"analysis\" completes.\r\n\r\n![Screen Shot 2022-11-10 at 11 34 05 AM](https://user-images.githubusercontent.com/37845669/201154274-03102aeb-1625-40a2-9158-05914979f575.png)\r\n![Screen Shot 2022-11-10 at 11 33 52 AM](https://user-images.githubusercontent.com/37845669/201154281-9752cdf9-9723-4f5e-9c7c-9f5248736f9a.png)\r\n![Screen Shot 2022-11-10 at 11 03 00 AM](https://user-images.githubusercontent.com/37845669/201154315-22ac1965-ed48-458f-b99b-9b00cffba0ff.png)\r\n![Screen Shot 2022-11-10 at 11 03 15 AM](https://user-images.githubusercontent.com/37845669/201154303-cd36e454-ff25-4a00-8331-acf0e41b2b06.png)\r\n![Screen Shot 2022-11-10 at 11 03 10 AM](https://user-images.githubusercontent.com/37845669/201154309-e66c6543-8b35-4d32-9abf-32ab013ccb4c.png)\nComment: @kwolfe14: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: that because you have bad char as new line in your config file. remove it and it will fix your problem\r\n<img width=\"1198\" alt=\"Screenshot 2022-11-22 at 17 21 17\" src=\"https://user-images.githubusercontent.com/1856495/203366792-eade7aac-cc24-40b2-ac02-10577c4b3bbe.png\">\r\n",
+  "Title: Update pdf parser\nBody: None\nComment: Thank you",
+  "Title: Set base_uri to empty string to prevent TypeError\nBody: None",
+  "Title: fix typo in README.md\nBody: fix typo in README.md\nComment: Thank you",
+  "Title: errors from ubuntu 22 lts minimal installation fixed\nBody: a few corrections due to errors with an ubuntu 22 lts minimal installation\r\n\r\nadditional a few repository couldnt used during installation",
+  "Title: Why does the Microsoft Store always open when the virtual machine analyzes samples\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n* Free support from doomedraven ended - no whiskey, no support. For updates check the documentation.\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ \u221a] I am running the latest version\r\n- [ \u221a] I did read the README!\r\n- [ \u221a] I checked the documentation and found no answer\r\n- [ \u221a] I checked to make sure that this issue has not already been filed\r\n- [ \u221a] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ \u221a] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nWhen the virtual machine analyzes the .exe file, the Microsoft Store should not be opened.\r\n\r\n# Current Behavior\r\n\r\nAnalyze an .exe file, and then open the Microsoft Store after the screen display program exits in the virtual machine. The sample file is just a software installation program, and it does not need to open the Microsoft Store.\r\n\r\n# Failure Information (for bugs)\r\nI updated the cape last week. My virtual machine system is Win10. The sample file is a common software installation program.\r\n\r\n\r\n\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. step 1\r\n2. step 2\r\n3. you get it...\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 18.04.\r\n\r\n## Failure Logs\r\nThis is my analysis log and virtual machine running screenshot.\r\n[analysis.log](https://github.com/kevoreilly/CAPEv2/files/9957021/analysis.log)\r\n![0001](https://user-images.githubusercontent.com/55627281/200457428-9f9f7dd9-47a5-41c6-af72-7d163a620bdf.jpg)\r\n![0002](https://user-images.githubusercontent.com/55627281/200457433-ba30c2b1-c5b5-4a2f-9900-00d48c4ddd85.jpg)\r\n![0003](https://user-images.githubusercontent.com/55627281/200457435-5ef43b03-ce51-4beb-a96c-c7b68615e172.jpg)\r\n![0004](https://user-images.githubusercontent.com/55627281/200457437-3b211eae-76b9-4b80-bbef-fd56da35fd5c.jpg)\r\n![0005](https://user-images.githubusercontent.com/55627281/200457440-c1b7de8e-7b1c-4e87-a322-20e537c70ac9.jpg)\r\n![0006](https://user-images.githubusercontent.com/55627281/200457443-f5d95bba-2c1e-4836-9773-2aa12f6b8cf7.jpg)\r\n![0007](https://user-images.githubusercontent.com/55627281/200457452-cc5d2351-6ce0-4305-8284-9cc633446880.jpg)\r\n\r\n\r\n\nComment: I experience the same issue. I think its due to the environment variable in the user path. \r\nRemove this %USERPROFILE%\\AppData\\Local\\Microsoft\\WindowsApps\nComment: > \u6211\u9047\u5230\u540c\u6837\u7684\u95ee\u9898\u3002\u6211\u8ba4\u4e3a\u8fd9\u662f\u7531\u4e8e\u7528\u6237\u8def\u5f84\u4e2d\u7684\u73af\u5883\u53d8\u91cf\u3002 \u5220\u9664\u6b64 %USERPROFILE%\\AppData\\Local\\Microsoft\\WindowsApps\r\n\r\nI deleted the path as you said, and then I ran the same sample again. This time, the Microsoft Store was not opened. It seems that this is the correct solution. Great suggestion! Thank you. \ud83d\ude00\nComment: Thank you kenleejl!",
+  "Title: Fix config variable for filepickup.py and permissions.py\nBody: Permissions.py was configured to use the file_pickup configuration variable for enablement, which is used by filepickup.py.\r\n\r\nThe default variable on the auxiliary.conf configuration file was filepickup, the filepickup.py module looks for file_pickup as the variable name to determine if it's enabled or not.\nComment: Good catch @chriswalkerc !",
+  "Title: Stopped auxiliary modules inside guest VM (Windows 10)\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n* Free support from doomedraven ended - no whiskey, no support. For updates check the documentation.\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I did read the README!\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nI expect to be no errors within the logs of the virtual machine while performing the analysis. \r\n\r\n# Current Behavior\r\n\r\nThe screenshot module crashes during some of the analyses. It is the last screenshot I see (obviously, given that it crashes) and **oddly enough** the error is not reflected in any of the logs of my host. I'm only able to see the error in the logs in the VM:\r\n\r\n![image](https://user-images.githubusercontent.com/41084837/200198656-d9d35195-9b5b-4c32-91cb-55ef295273a8.png)\r\n\r\nAs far as I was able to dig into it, my guess is that the error is produced here: https://github.com/kevoreilly/CAPEv2/blob/200a80818f82f5b9487e9242f8da32ae969aa27c/lib/cuckoo/core/log.py#L171\r\n\r\ncuckoo.log:\r\n```\r\n2022-11-06 22:32:09,232 [lib.cuckoo.core.scheduler] INFO: Task #46: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_gao2t1jj/8fe888167e7096db5d6aa3d3'\r\n2022-11-06 22:32:09,238 [lib.cuckoo.core.scheduler] INFO: Task #46: File already exists at '/opt/CAPEv2/storage/binaries/8fe888167e7096db5d6aa3d3bc64998cd8fd43bef3a83fc6d3c40ffa903891f6'\r\n2022-11-06 22:32:09,245 [lib.cuckoo.core.scheduler] INFO: Task #46: acquired machine cuckoo1 (label=win10, arch=x64, platform=windows)\r\n2022-11-06 22:32:17,213 [lib.cuckoo.core.scheduler] INFO: Enabled route 'internet'\r\n2022-11-06 22:32:17,218 [modules.auxiliary.sniffer] INFO: Started sniffer with PID 562535 (interface=virbr1, host=192.168.55.133, dump path=/opt/CAPEv2/storage/analyses/46/dump.pcap)\r\n2022-11-06 22:32:17,227 [lib.cuckoo.core.guest] INFO: Task #46: Starting analysis on guest (id=cuckoo1, ip=192.168.55.133)\r\n2022-11-06 22:32:17,962 [lib.cuckoo.core.guest] INFO: Task #46: Guest is running CAPE Agent 0.11 (id=cuckoo1, ip=192.168.55.133)\r\n2022-11-06 22:32:32,558 [lib.cuckoo.core.guest] INFO: Task #46: Uploading support files to guest (id=cuckoo1, ip=192.168.55.133)\r\n2022-11-06 22:32:32,558 [lib.cuckoo.core.guest] INFO: Task #46: Uploading script files to guest (id=cuckoo1, ip=192.168.55.133)\r\n2022-11-06 22:36:24,600 [lib.cuckoo.core.guest] INFO: Task #46: Analysis completed successfully (id=cuckoo1, ip=192.168.55.133)\r\n2022-11-06 22:36:25,454 [lib.cuckoo.core.scheduler] INFO: Disabled route 'internet'\r\n2022-11-06 22:36:25,476 [lib.cuckoo.core.scheduler] INFO: Task #46: analysis procedure completed\r\n```\r\n\r\nThe log of the analysis itself:\r\n```\r\n022-08-17 09:27:32,041 [root] INFO: Date set to: 20221106T22:32:08, timeout set to: 200\r\n2022-11-06 21:32:08,105 [root] DEBUG: Starting analyzer from: C:\\tmp9jl3q2fi\r\n2022-11-06 21:32:08,105 [root] DEBUG: Storing results at: C:\\BITuZJq\r\n2022-11-06 21:32:08,120 [root] DEBUG: Pipe server name: \\\\.\\PIPE\\MySuLTI\r\n2022-11-06 21:32:08,120 [root] DEBUG: Python path: C:\\Users\\razv\\AppData\\Local\\Programs\\Python\\Python310-32\r\n2022-11-06 21:32:08,120 [root] INFO: Analysis package \"exe\" has been specified\r\n2022-11-06 21:32:08,120 [root] DEBUG: Importing analysis package \"exe\"...\r\n2022-11-06 21:32:10,027 [root] DEBUG: Initializing analysis package \"exe\"...\r\n2022-11-06 21:32:10,027 [root] DEBUG: New location of moved file: C:\\Users\\razv\\AppData\\Local\\Temp\\8fe888167e7096db5d6aa3d3\r\n2022-11-06 21:32:10,027 [root] INFO: Analyzer: Package modules.packages.exe does not specify a DLL option\r\n2022-11-06 21:32:10,027 [root] INFO: Analyzer: Package modules.packages.exe does not specify a DLL_64 option\r\n2022-11-06 21:32:10,027 [root] INFO: Analyzer: Package modules.packages.exe does not specify a loader option\r\n2022-11-06 21:32:10,027 [root] INFO: Analyzer: Package modules.packages.exe does not specify a loader_64 option\r\n2022-11-06 21:32:21,406 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.browser\"...\r\n2022-11-06 21:32:21,422 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.curtain\"...\r\n2022-11-06 21:32:21,578 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.digisig\"...\r\n2022-11-06 21:32:21,687 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.disguise\"...\r\n2022-11-06 21:32:21,765 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.during_script\"...\r\n2022-11-06 21:32:21,781 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.evtx\"...\r\n2022-11-06 21:32:22,109 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.filepickup\"...\r\n2022-11-06 21:32:22,390 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.human\"...\r\n2022-11-06 21:32:22,625 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.permissions\"...\r\n2022-11-06 21:32:22,640 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.pre_script\"...\r\n2022-11-06 21:32:22,781 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.procmon\"...\r\n2022-11-06 21:32:22,828 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.screenshots\"...\r\n2022-11-06 21:32:22,969 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageChops'\r\n2022-11-06 21:32:23,687 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageGrab'\r\n2022-11-06 21:32:23,687 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageDraw'\r\n2022-11-06 21:32:23,750 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.sysmon\"...\r\n2022-11-06 21:32:23,781 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.tlsdump\"...\r\n2022-11-06 21:32:23,797 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.usage\"...\r\n2022-11-06 21:32:23,813 [root] DEBUG: Initialized auxiliary module \"Browser\"\r\n2022-11-06 21:32:23,813 [root] DEBUG: Trying to start auxiliary module \"Browser\"...\r\n2022-11-06 21:32:23,813 [root] DEBUG: Started auxiliary module \"Browser\"\r\n2022-11-06 21:32:23,813 [root] DEBUG: Started auxiliary module Browser\r\n2022-11-06 21:32:23,813 [root] DEBUG: Initialized auxiliary module \"Curtain\"\r\n2022-11-06 21:32:23,813 [root] DEBUG: Trying to start auxiliary module \"Curtain\"...\r\n2022-11-06 21:32:23,813 [root] DEBUG: Started auxiliary module \"Curtain\"\r\n2022-11-06 21:32:23,813 [root] DEBUG: Started auxiliary module Curtain\r\n2022-11-06 21:32:23,813 [root] DEBUG: Initialized auxiliary module \"DigiSig\"\r\n2022-11-06 21:32:23,813 [root] DEBUG: Trying to start auxiliary module \"DigiSig\"...\r\n2022-11-06 21:32:23,813 [modules.auxiliary.digisig] DEBUG: Checking for a digital signature\r\n2022-11-06 21:32:24,844 [modules.auxiliary.digisig] DEBUG: File is not signed\r\n2022-11-06 21:32:24,844 [modules.auxiliary.digisig] INFO: Uploading signature results to aux/DigiSig.json\r\n2022-11-06 21:32:24,859 [root] DEBUG: Started auxiliary module \"DigiSig\"\r\n2022-11-06 21:32:24,859 [root] DEBUG: Started auxiliary module DigiSig\r\n2022-11-06 21:32:24,859 [root] DEBUG: Initialized auxiliary module \"Disguise\"\r\n2022-11-06 21:32:24,859 [root] DEBUG: Trying to start auxiliary module \"Disguise\"...\r\n2022-11-06 21:32:24,859 [modules.auxiliary.disguise] INFO: Disguising GUID to 399877ac-67b0-4d04-850a-98a766981897\r\n2022-11-06 21:32:24,859 [root] DEBUG: Started auxiliary module \"Disguise\"\r\n2022-11-06 21:32:24,859 [root] DEBUG: Started auxiliary module Disguise\r\n2022-11-06 21:32:24,875 [root] DEBUG: Initialized auxiliary module \"Evtx\"\r\n2022-11-06 21:32:24,875 [root] DEBUG: Trying to start auxiliary module \"Evtx\"...\r\n2022-11-06 21:32:24,875 [root] DEBUG: Started auxiliary module \"Evtx\"\r\n2022-11-06 21:32:24,875 [root] DEBUG: Started auxiliary module Evtx\r\n2022-11-06 21:32:24,875 [root] WARNING: Auxiliary module FilePickup was not implemented: 'Config' object has no attribute 'file_pickup'\r\n2022-11-06 21:32:24,875 [root] DEBUG: Initialized auxiliary module \"Human\"\r\n2022-11-06 21:32:24,875 [root] DEBUG: Trying to start auxiliary module \"Human\"...\r\n2022-11-06 21:32:24,875 [root] DEBUG: Started auxiliary module \"Human\"\r\n2022-11-06 21:32:24,875 [root] DEBUG: Started auxiliary module Human\r\n2022-11-06 21:32:24,875 [root] WARNING: Auxiliary module Permissions was not implemented: 'Config' object has no attribute 'file_pickup'\r\n2022-11-06 21:32:24,875 [root] DEBUG: Initialized auxiliary module \"Pre_script\"\r\n2022-11-06 21:32:24,875 [root] DEBUG: Trying to start auxiliary module \"Pre_script\"...\r\n2022-11-06 21:32:24,875 [root] DEBUG: Started auxiliary module \"Pre_script\"\r\n2022-11-06 21:32:24,875 [root] DEBUG: Started auxiliary module Pre_script\r\n2022-11-06 21:32:24,875 [root] DEBUG: Initialized auxiliary module \"Procmon\"\r\n2022-11-06 21:32:24,875 [root] DEBUG: Trying to start auxiliary module \"Procmon\"...\r\n2022-11-06 21:32:24,875 [root] DEBUG: Started auxiliary module \"Procmon\"\r\n2022-11-06 21:32:24,875 [root] DEBUG: Started auxiliary module Procmon\r\n2022-11-06 21:32:24,875 [root] DEBUG: Initialized auxiliary module \"Screenshots\"\r\n2022-11-06 21:32:24,875 [root] DEBUG: Trying to start auxiliary module \"Screenshots\"...\r\n2022-11-06 21:32:24,875 [root] DEBUG: Started auxiliary module \"Screenshots\"\r\n2022-11-06 21:32:24,875 [root] DEBUG: Started auxiliary module Screenshots\r\n2022-11-06 21:32:24,875 [root] DEBUG: Initialized auxiliary module \"Sysmon\"\r\n2022-11-06 21:32:24,875 [root] DEBUG: Trying to start auxiliary module \"Sysmon\"...\r\n2022-11-06 21:32:24,875 [root] DEBUG: Started auxiliary module \"Sysmon\"\r\n2022-11-06 21:32:24,875 [root] DEBUG: Started auxiliary module Sysmon\r\n2022-11-06 21:32:24,875 [root] DEBUG: Initialized auxiliary module \"TLSDumpMasterSecrets\"\r\n2022-11-06 21:32:24,875 [root] DEBUG: Trying to start auxiliary module \"TLSDumpMasterSecrets\"...\r\n2022-11-06 21:32:24,891 [modules.auxiliary.tlsdump] INFO: lsass.exe found, pid 608\r\n2022-11-06 21:32:24,891 [lib.api.process] INFO: Monitor config for process 608: C:\\tmp9jl3q2fi\\dll\\608.ini\r\n2022-11-06 21:32:26,063 [lib.api.process] INFO: Option 'tlsdump' with value '1' sent to monitor\r\n2022-11-06 21:32:26,063 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmp9jl3q2fi\\dll\\MrXCore.dll, loader C:\\tmp9jl3q2fi\\bin\\lnNUHKVs.exe\r\n2022-11-06 21:32:26,140 [root] DEBUG: Loader: Injecting process 608 with C:\\tmp9jl3q2fi\\dll\\MrXCore.dll.\r\n2022-11-06 21:32:26,140 [root] DEBUG: Python path set to 'C:\\Users\\razv\\AppData\\Local\\Programs\\Python\\Python310-32'.\r\n2022-11-06 21:32:26,140 [root] DEBUG: TLS secret dump mode enabled.\r\n2022-11-06 21:32:26,156 [root] INFO: Disabling sleep skipping.\r\n2022-11-06 21:32:26,156 [root] DEBUG: Monitor initialised: 64-bit capemon loaded in process 608 at 0x00007FFDB6390000, thread 5948, image base 0x00007FF728100000, stack from 0x00000039C4B74000-0x00000039C4B80000\r\n2022-11-06 21:32:26,156 [root] DEBUG: Commandline: C:\\Windows\\system32\\lsass.exe\r\n2022-11-06 21:32:26,172 [root] DEBUG: Post-init: Failed to initialise debugger.\r\n2022-11-06 21:32:26,172 [root] DEBUG: InjectDllViaThread: Successfully injected Dll into process via RtlCreateUserThread.\r\n2022-11-06 21:32:26,172 [root] DEBUG: Successfully injected DLL C:\\tmp9jl3q2fi\\dll\\MrXCore.dll.\r\n2022-11-06 21:32:26,172 [lib.api.process] INFO: Injected into suspended 64-bit process with pid 608\r\n2022-11-06 21:32:26,172 [root] DEBUG: Started auxiliary module \"TLSDumpMasterSecrets\"\r\n2022-11-06 21:32:26,172 [root] DEBUG: Started auxiliary module TLSDumpMasterSecrets\r\n2022-11-06 21:32:26,172 [root] DEBUG: Initialized auxiliary module \"Usage\"\r\n2022-11-06 21:32:26,172 [root] DEBUG: Trying to start auxiliary module \"Usage\"...\r\n2022-11-06 21:32:26,172 [root] DEBUG: Started auxiliary module \"Usage\"\r\n2022-11-06 21:32:26,172 [root] DEBUG: Started auxiliary module Usage\r\n2022-11-06 21:32:26,172 [root] DEBUG: Initialized auxiliary module \"During_script\"\r\n2022-11-06 21:32:26,172 [root] DEBUG: Trying to start auxiliary module \"During_script\"...\r\n2022-11-06 21:32:26,187 [root] DEBUG: Started auxiliary module \"During_script\"\r\n2022-11-06 21:32:26,187 [root] DEBUG: Started auxiliary module During_script\r\n2022-11-06 21:32:31,406 [root] INFO: Restarting WMI Service\r\n2022-11-06 21:32:33,469 [lib.common.common] INFO: Submitted file is missing extension, adding .exe\r\n2022-11-06 21:32:33,469 [lib.core.compound] INFO: C:\\Users\\razv\\AppData\\Local\\Temp already exists, skipping creation\r\n2022-11-06 21:32:34,422 [lib.api.process] INFO: Successfully executed process from path \"C:\\Users\\razv\\AppData\\Local\\Temp\\8fe888167e7096db5d6aa3d3.exe\" with arguments \"\" with pid 4392\r\n2022-11-06 21:32:34,422 [lib.api.process] INFO: Monitor config for process 4392: C:\\tmp9jl3q2fi\\dll\\4392.ini\r\n2022-11-06 21:32:34,484 [lib.api.process] INFO: 32-bit DLL to inject is C:\\tmp9jl3q2fi\\dll\\EDqBVzl.dll, loader C:\\tmp9jl3q2fi\\bin\\CZzWVVV.exe\r\n2022-11-06 21:32:34,641 [root] DEBUG: Loader: Injecting process 4392 (thread 4404) with C:\\tmp9jl3q2fi\\dll\\EDqBVzl.dll.\r\n2022-11-06 21:32:34,641 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\r\n2022-11-06 21:32:34,641 [root] DEBUG: Successfully injected DLL C:\\tmp9jl3q2fi\\dll\\EDqBVzl.dll.\r\n2022-11-06 21:32:34,641 [lib.api.process] INFO: Injected into suspended 32-bit process with pid 4392\r\n2022-11-06 21:32:36,672 [lib.api.process] INFO: Successfully resumed process with pid 4392\r\n2022-11-06 21:32:36,906 [root] DEBUG: Python path set to 'C:\\Users\\razv\\AppData\\Local\\Programs\\Python\\Python310-32'.\r\n2022-11-06 21:32:36,906 [root] DEBUG: Dropped file limit defaulting to 100.\r\n2022-11-06 21:32:36,922 [root] DEBUG: Initialising Yara...\r\n2022-11-06 21:32:37,000 [root] DEBUG: YaraInit: Compiled 18 rule files\r\n2022-11-06 21:32:37,000 [root] DEBUG: YaraInit: Compiled rules saved to file C:\\tmp9jl3q2fi\\data\\yara\\capemon.yac\r\n2022-11-06 21:32:37,000 [root] DEBUG: InternalYaraScan: Scanning 0x77820000, size 0x1a31c8\r\n2022-11-06 21:32:37,015 [root] DEBUG: AmsiDumper initialised.\r\n2022-11-06 21:32:37,015 [root] DEBUG: Monitor initialised: 32-bit capemon loaded in process 4392 at 0x73a40000, thread 4404, image base 0x400000, stack from 0x196000-0x1a0000\r\n2022-11-06 21:32:37,015 [root] DEBUG: Commandline: \"C:\\Users\\razv\\AppData\\Local\\Temp\\8fe888167e7096db5d6aa3d3.exe\"\r\n2022-11-06 21:32:37,031 [root] DEBUG: hook_api: Warning - CoCreateInstance export address 0x762A56BD differs from GetProcAddress -> 0x759A88C0\r\n2022-11-06 21:32:37,031 [root] DEBUG: hook_api: Warning - CoCreateInstanceEx export address 0x762A56FC differs from GetProcAddress -> 0x759E3020\r\n2022-11-06 21:32:37,031 [root] DEBUG: hook_api: Warning - CoGetClassObject export address 0x762A5C8C differs from GetProcAddress -> 0x759DD870\r\n2022-11-06 21:32:37,078 [root] DEBUG: hook_api: Warning - SetWindowLongW export address 0x76315960 differs from GetProcAddress -> 0x740559E0\r\n2022-11-06 21:32:37,125 [root] DEBUG: hook_api: Warning - CLSIDFromProgID export address 0x762A4EF6 differs from GetProcAddress -> 0x75954F80\r\n2022-11-06 21:32:37,156 [root] DEBUG: WoW64fix: Windows version 6.2 not supported.\r\n2022-11-06 21:32:37,156 [root] DEBUG: RestoreHeaders: Restored original import table.\r\n2022-11-06 21:32:37,156 [root] INFO: Loaded monitor into process with pid 4392\r\n2022-11-06 21:32:37,156 [root] DEBUG: caller_dispatch: Adding region at 0x00400000 to caller regions list (kernel32::GetSystemTimeAsFileTime returns to 0x0040863C, thread 4404).\r\n2022-11-06 21:32:37,156 [root] DEBUG: YaraScan: Scanning 0x00400000, size 0x3aaba\r\n2022-11-06 21:32:37,156 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00400000 skipped (kernel32::GetSystemTimeAsFileTime returns to 0x0040863C mapped as \\Device\\HarddiskVolume2\\Users\\razv\\AppData\\Local\\Temp\\8fe888167e7096db5d6aa3d3.exe).\r\n2022-11-06 21:32:38,969 [root] DEBUG: DLL loaded at 0x73A30000: C:\\Windows\\SYSTEM32\\msimg32 (0x6000 bytes).\r\n2022-11-06 21:32:38,969 [root] DEBUG: caller_dispatch: Adding region at 0x00560000 to caller regions list (ntdll::LdrLoadDll returns to 0x00591C95, thread 4404).\r\n2022-11-06 21:32:38,969 [root] DEBUG: YaraScan: Scanning 0x00560000, size 0x48fff\r\n2022-11-06 21:32:38,969 [root] DEBUG: DumpPEsInRange: Scanning range 0x00560000 - 0x005A8FFF.\r\n2022-11-06 21:32:38,969 [root] DEBUG: ScanForDisguisedPE: PE image located at: 0x005A6E18\r\n2022-11-06 21:32:38,969 [root] DEBUG: DumpImageInCurrentProcess: Attempting to dump 'raw' PE image (process 4392)\r\n2022-11-06 21:32:38,969 [root] DEBUG: DumpPE: Instantiating PeParser with address: 0x005A6E18.\r\n2022-11-06 21:32:38,969 [root] DEBUG: DumpPE: Empty or inaccessible last section, file image seems incomplete (from 0x005A8818 to 0x005A8A18).\r\n2022-11-06 21:32:39,031 [lib.common.results] INFO: File C:\\BITuZJq\\CAPE\\4392_111134613832971112022 size is 7168, Max size: 100000000\r\n2022-11-06 21:32:39,047 [root] DEBUG: DumpPE: PE file in memory dumped successfully - dump size 0x1c00.\r\n2022-11-06 21:32:39,047 [root] DEBUG: ScanForDisguisedPE: No PE image located in range 0x005A7E18-0x005A8FFF.\r\n2022-11-06 21:32:39,047 [root] DEBUG: DumpRegion: Dumped PE image(s) from base address 0x00560000, size 299008 bytes.\r\n2022-11-06 21:32:39,219 [root] DEBUG: caller_dispatch: Adding region at 0x02360000 to caller regions list (ntdll::LdrGetProcedureAddressForCaller returns to 0x02360A22, thread 4404).\r\n2022-11-06 21:32:39,219 [root] DEBUG: YaraScan: Scanning 0x02360000, size 0x807b\r\n2022-11-06 21:32:39,219 [root] DEBUG: DumpPEsInRange: Scanning range 0x02360000 - 0x0236807B.\r\n2022-11-06 21:32:39,219 [root] DEBUG: ScanForDisguisedPE: PE image located at: 0x02360E67\r\n2022-11-06 21:32:39,219 [root] DEBUG: DumpImageInCurrentProcess: Attempting to dump 'raw' PE image (process 4392)\r\n2022-11-06 21:32:39,219 [root] DEBUG: DumpPE: Instantiating PeParser with address: 0x02360E67.\r\n2022-11-06 21:32:39,625 [lib.common.results] INFO: File C:\\BITuZJq\\CAPE\\4392_64740783932971112022 size is 29696, Max size: 100000000\r\n2022-11-06 21:32:39,625 [root] DEBUG: DumpPE: PE file in memory dumped successfully - dump size 0x7400.\r\n2022-11-06 21:32:39,625 [root] DEBUG: ScanForDisguisedPE: No PE image located in range 0x02361E67-0x0236807B.\r\n2022-11-06 21:32:39,625 [root] DEBUG: DumpRegion: Dumped PE image(s) from base address 0x02360000, size 36864 bytes.\r\n2022-11-06 21:32:39,625 [root] DEBUG: NtProtectVirtualMemory: Rescinding caller region at 0x00400000 due to protection change.\r\n2022-11-06 21:32:39,641 [root] DEBUG: caller_dispatch: Adding region at 0x00400000 to caller regions list (ntdll::LdrLoadDll returns to 0x004026DE, thread 4404).\r\n2022-11-06 21:32:39,641 [root] DEBUG: YaraScan: Scanning 0x00400000, size 0x3aaba\r\n2022-11-06 21:32:39,641 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00400000 skipped (ntdll::LdrLoadDll returns to 0x004026DE mapped as \\Device\\HarddiskVolume2\\Users\\razv\\AppData\\Local\\Temp\\8fe888167e7096db5d6aa3d3.exe).\r\n2022-11-06 21:32:39,641 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x22c and local view 0x75BD0000 to global list.\r\n2022-11-06 21:32:39,656 [root] DEBUG: DLL loaded at 0x75BD0000: C:\\Windows\\System32\\shell32 (0x5b6000 bytes).\r\n2022-11-06 21:32:39,656 [root] INFO: Disabling sleep skipping.\r\n2022-11-06 21:32:39,656 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x26c and local view 0x04A80000 to global list.\r\n2022-11-06 21:32:39,656 [root] DEBUG: Sample attempted to remap module 'C:\\Windows\\SysWOW64\\ntdll.dll' at 0x04A80000, returning original module address instead: 0x77820000\r\n2022-11-06 21:32:44,687 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 2932, handle 0x270.\r\n2022-11-06 21:32:44,687 [root] DEBUG: OpenProcessHandler: Handle insufficient to obtain target process name.\r\n2022-11-06 21:32:44,687 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x278 and local view 0x03AE0000 to global list.\r\n2022-11-06 21:32:44,687 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x278 to existing target process 2932.\r\n2022-11-06 21:32:44,687 [root] INFO: Announced 64-bit process name: explorer.exe pid: 2932\r\n2022-11-06 21:32:44,687 [lib.api.process] INFO: Monitor config for process 2932: C:\\tmp9jl3q2fi\\dll\\2932.ini\r\n2022-11-06 21:32:44,687 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmp9jl3q2fi\\dll\\MrXCore.dll, loader C:\\tmp9jl3q2fi\\bin\\lnNUHKVs.exe\r\n2022-11-06 21:32:44,703 [root] DEBUG: Loader: Injecting process 2932 with C:\\tmp9jl3q2fi\\dll\\MrXCore.dll.\r\n2022-11-06 21:32:45,734 [root] DEBUG: Python path set to 'C:\\Users\\razv\\AppData\\Local\\Programs\\Python\\Python310-32'.\r\n2022-11-06 21:32:45,734 [root] DEBUG: Dropped file limit defaulting to 100.\r\n2022-11-06 21:32:45,828 [root] INFO: Disabling sleep skipping.\r\n2022-11-06 21:32:45,953 [root] DEBUG: Initialising Yara...\r\n2022-11-06 21:32:45,953 [root] DEBUG: YaraInit: Compiled rules loaded from existing file C:\\tmp9jl3q2fi\\data\\yara\\capemon.yac\r\n2022-11-06 21:32:45,953 [root] DEBUG: InternalYaraScan: Scanning 0x00007FFDF0070000, size 0x1f7546\r\n2022-11-06 21:32:45,953 [root] DEBUG: Error 5 (0x5) - AmsiDumper: Is CAPE agent running elevated? Initialisation failed: Access is denied.\r\n2022-11-06 21:32:45,953 [root] DEBUG: Monitor initialised: 64-bit capemon loaded in process 2932 at 0x00007FFDB6390000, thread 6116, image base 0x00007FF7599C0000, stack from 0x0000000008B42000-0x0000000008B50000\r\n2022-11-06 21:32:45,953 [root] DEBUG: Commandline: C:\\Windows\\Explorer.EXE\r\n2022-11-06 21:32:45,969 [root] DEBUG: hook_api: Warning - CoCreateInstance export address 0x00007FFDEFE542EB differs from GetProcAddress -> 0x00007FFDEE287E30\r\n2022-11-06 21:32:45,969 [root] DEBUG: hook_api: Warning - CoCreateInstanceEx export address 0x00007FFDEFE5432A differs from GetProcAddress -> 0x00007FFDEE2091E0\r\n2022-11-06 21:32:45,969 [root] DEBUG: hook_api: Warning - CoGetClassObject export address 0x00007FFDEFE548BA differs from GetProcAddress -> 0x00007FFDEE284FF0\r\n2022-11-06 21:32:46,063 [root] DEBUG: hook_api: Warning - CLSIDFromProgID export address 0x00007FFDEFE53B36 differs from GetProcAddress -> 0x00007FFDEE2166D0\r\n2022-11-06 21:32:46,109 [root] INFO: Loaded monitor into process with pid 2932\r\n2022-11-06 21:32:46,125 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFDF0070000 to caller regions list (ntdll::NtQueryInformationThread returns to 0x00007FFDF00C461E, thread 6116).\r\n2022-11-06 21:32:46,125 [root] DEBUG: YaraScan: Scanning 0x00007FFDF0070000, size 0x1f7546\r\n2022-11-06 21:32:46,125 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FFDF0070000 skipped (ntdll::NtQueryInformationThread returns to 0x00007FFDF00C461E mapped as \\Device\\HarddiskVolume2\\Windows\\System32\\ntdll.dll).\r\n2022-11-06 21:32:46,125 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFDED8F0000 to caller regions list (ntdll::NtClose returns to 0x00007FFDED91A405, thread 6116).\r\n2022-11-06 21:32:46,140 [root] DEBUG: caller_dispatch: Scanning calling region at 0x00007FFDED8F0000...\r\n2022-11-06 21:32:46,140 [root] DEBUG: YaraScan: Scanning 0x00007FFDED8F0000, size 0x2cdc40\r\n2022-11-06 21:32:46,140 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FFDED8F0000 skipped (ntdll::NtClose returns to 0x00007FFDED91A405 mapped as \\Device\\HarddiskVolume2\\Windows\\System32\\KernelBase.dll).\r\n2022-11-06 21:32:46,140 [root] DEBUG: InjectDllViaThread: Successfully injected Dll into process via RtlCreateUserThread.\r\n2022-11-06 21:32:46,140 [root] DEBUG: Successfully injected DLL C:\\tmp9jl3q2fi\\dll\\MrXCore.dll.\r\n2022-11-06 21:32:46,140 [lib.api.process] INFO: Injected into suspended 64-bit process with pid 2932\r\n2022-11-06 21:32:46,140 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x27c and local view 0x03AF0000 to global list.\r\n2022-11-06 21:32:46,140 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x27c to existing target process 2932.\r\n2022-11-06 21:32:46,156 [root] DEBUG: DumpSectionViewsForPid: Shared section view found with pid 2932, size 20480 (accessible 20480), local address 0x03AE0000.\r\n2022-11-06 21:32:46,156 [root] DEBUG: caller_dispatch: Adding region at 0x0000000002F00000 to caller regions list (kernel32::CreateThread returns to 0x0000000002F01C54, thread 4924).\r\n2022-11-06 21:32:46,219 [root] DEBUG: ScanForDisguisedPE: No PE image located in range 0x03AE0000-0x03AE5000.\r\n2022-11-06 21:32:46,266 [root] DEBUG: YaraScan: Scanning 0x0000000002F00000, size 0x700c\r\n2022-11-06 21:32:46,266 [root] DEBUG: DumpSectionViewsForPid: no PE file found in shared section view, attempting raw dump.\r\n2022-11-06 21:32:46,266 [root] DEBUG: DumpPEsInRange: Scanning range 0x0000000002F00000 - 0x0000000002F0700C.\r\n2022-11-06 21:32:46,266 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 3452, handle 0x10f0.\r\n2022-11-06 21:32:46,266 [root] DEBUG: ScanForDisguisedPE: No PE image located in range 0x0000000002F00000-0x0000000002F0700C.\r\n2022-11-06 21:32:46,266 [root] DEBUG: OpenProcessHandler: Handle insufficient to obtain target process name.\r\n2022-11-06 21:32:46,266 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 3228, handle 0x173c.\r\n2022-11-06 21:32:46,266 [root] DEBUG: OpenProcessHandler: Handle insufficient to obtain target process name.\r\n2022-11-06 21:32:46,266 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFDD5C10000 to caller regions list (msvcrt::memcpy returns to 0x00007FFDD5C433FB, thread 3812).\r\n2022-11-06 21:32:46,297 [root] DEBUG: YaraScan: Scanning 0x00007FFDD5C10000, size 0x5f2576\r\n2022-11-06 21:32:46,297 [root] DEBUG: DLL unloaded from 0x00007FFDD5C10000.\r\n2022-11-06 21:32:46,297 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FFDD5C10000 skipped (msvcrt::memcpy returns to 0x00007FFDD5C433FB mapped as \\Device\\HarddiskVolume2\\Windows\\System32\\twinui.dll).\r\n2022-11-06 21:32:46,297 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFDEF0D0000 to caller regions list (user32::MsgWaitForMultipleObjectsEx returns to 0x00007FFDEF0E7580, thread 1516).\r\n2022-11-06 21:32:48,047 [root] DEBUG: YaraScan: Scanning 0x00007FFDEF0D0000, size 0xac36c\r\n2022-11-06 21:32:48,204 [lib.common.results] INFO: File C:\\BITuZJq\\CAPE\\2932_51892274632571112022 size is 28684, Max size: 100000000\r\n2022-11-06 21:32:48,343 [root] DEBUG: caller_dispatch: Adding region at 0x00007FF7599C0000 to caller regions list (cryptsp::CryptAcquireContextW returns to 0x00007FF759A04F05, thread 2916).\r\n2022-11-06 21:32:49,096 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFDD6E20000 to caller regions list (user32::GetCursorPos returns to 0x00007FFDD6E6DCDC, thread 744).\r\n2022-11-06 21:34:00,978 [root] DEBUG: DLL loaded at 0x00007FFDE25C0000: C:\\Windows\\SYSTEM32\\secur32 (0xc000 bytes).\r\n2022-11-06 21:34:02,986 [root] DEBUG: DLL loaded at 0x00007FFDDE0D0000: C:\\Windows\\System32\\OneCoreCommonProxyStub (0x7d000 bytes).\r\n2022-11-06 21:35:57,512 [root] INFO: Analysis timeout hit, terminating analysis\r\n2022-11-06 21:35:57,512 [lib.api.process] ERROR: Failed to open terminate event for pid 4392\r\n2022-11-06 21:35:57,512 [root] INFO: Terminate event set for process 4392\r\n2022-11-06 21:35:57,512 [lib.api.process] ERROR: Failed to open terminate event for pid 2932\r\n2022-11-06 21:35:57,512 [root] INFO: Terminate event set for process 2932\r\n2022-11-06 21:35:57,512 [root] INFO: Created shutdown mutex\r\n2022-11-06 21:35:58,528 [root] INFO: Shutting down package\r\n2022-11-06 21:35:58,528 [root] INFO: Stopping auxiliary modules\r\n2022-11-06 21:35:58,528 [root] INFO: Stopped auxiliary modules: <Browser(Thread-3, stopped 5412)>\r\n2022-11-06 21:35:58,777 [lib.common.results] INFO: File C:\\curtain.log size is 120508, Max size: 100000000\r\n2022-11-06 21:35:58,809 [root] INFO: Stopped auxiliary modules: <Curtain(Thread-4, stopped 4756)>\r\n2022-11-06 21:35:58,809 [root] INFO: Stopped auxiliary modules: <Evtx(Thread-7, stopped 5888)>\r\n2022-11-06 21:35:58,809 [root] INFO: Stopped auxiliary modules: <Human(Thread-8, started 5892)>\r\n2022-11-06 21:35:58,809 [root] INFO: Stopped auxiliary modules: <Pre_script(Thread-9, initial)>\r\n2022-11-06 21:35:58,856 [lib.common.results] WARNING: File C:\\BITuZJq\\bin\\procmon.xml doesn't exist anymore\r\n2022-11-06 21:35:58,856 [root] INFO: Stopped auxiliary modules: <Procmon(Thread-10, stopped 5876)>\r\n2022-11-06 21:35:58,871 [root] INFO: Stopped auxiliary modules: <Screenshots(Thread-11, started 5852)>\r\n2022-11-06 21:35:58,918 [root] WARNING: Cannot terminate auxiliary module Sysmon: Thread.__init__() was not called\r\n2022-11-06 21:35:58,934 [root] INFO: Stopped auxiliary modules: <Usage(Thread-23, stopped 5916)>\r\n2022-11-06 21:35:58,934 [root] INFO: Stopped auxiliary modules: <During_script(Thread-24, initial)>\r\n2022-11-06 21:35:58,934 [root] INFO: Finishing auxiliary modules\r\n2022-11-06 21:35:58,949 [root] INFO: Shutting down pipe server and dumping dropped files\r\n2022-11-06 21:35:58,949 [root] WARNING: Folder at path \"C:\\BITuZJq\\debugger\" does not exist, skipping\r\n2022-11-06 21:35:58,949 [root] WARNING: Folder at path \"C:\\BITuZJq\\tlsdump\" does not exist, skipping\r\n2022-11-06 21:35:58,949 [root] INFO: Analysis completed\r\n```\r\n\r\nThe VM is a Windows 10 running over KVM.\r\n![image](https://user-images.githubusercontent.com/41084837/200199501-517626bb-f2bd-4938-930e-5e4af7a56233.png)\r\n\r\nThe error is not logged. \r\nWhat could be causing this error? Is it important or should I ignore it?\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. step 1\r\n2. step 2\r\n3. you get it...\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Windows 10 with KVM\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: error is in line 692 as logs says, i have changed that line. test it now",
+  "Title: No internet access during analysis. No network results. No PCAP dumps. \nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n* Free support from doomedraven ended - no whiskey, no support. For updates check the documentation.\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nI expect the VM to have internet access during the analysis and the 'Network' tab to reflect the results. \r\n\r\n# Current Behavior\r\n\r\nThere is no Internet connection during the analysis. During configuration I followed the steps at https://capev2.readthedocs.io/en/latest/installation/guest/network.html#virtual-networking. I have carefully read #229 trying to understand what is wrong, but I don't get it.\r\n\r\nMy `cape-rooter.service` seems ok:\r\n```\r\n$ systemctl status cape-rooter.service \r\n\u25cf cape-rooter.service - CAPE rooter\r\n     Loaded: loaded (/lib/systemd/system/cape-rooter.service; enabled; vendor preset: enabled)\r\n     Active: active (running) since Fri 2022-11-04 12:24:20 UTC; 20h ago\r\n       Docs: https://github.com/kevoreilly/CAPEv2\r\n    Process: 520133 ExecStartPre=/usr/bin/python3 -m poetry config cache-dir /opt/CAPEv2/.cache/pypoetry (code=exited, status=0/SUCCESS)\r\n   Main PID: 520135 (python)\r\n      Tasks: 1 (limit: 18844)\r\n     Memory: 9.1M\r\n        CPU: 713ms\r\n     CGroup: /system.slice/cape-rooter.service\r\n             \u2514\u2500520135 /opt/CAPEv2/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python rooter.py -g cape\r\n```\r\n\r\nI've successfully created a `virb1` network within the HOST OS:\r\n```\r\nvirbr1: flags=4099<UP,BROADCAST,MULTICAST>  mtu 1500\r\n        inet 192.168.55.1  netmask 255.255.255.0  broadcast 192.168.55.255\r\n        ether 52:54:00:17:31:d0  txqueuelen 1000  (Ethernet)\r\n        RX packets 3859  bytes 2654508 (2.6 MB)\r\n        RX errors 0  dropped 0  overruns 0  frame 0\r\n        TX packets 4070  bytes 27023207 (27.0 MB)\r\n        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0\r\n```\r\nI'm using KVM, and this is the `kvm.conf` file:\r\n```\r\n[kvm]\r\nmachines = cuckoo1\r\n\r\ninterface = virbr1\r\n\r\n[cuckoo1]\r\nlabel = win10\r\nplatform = windows\r\nip = 192.168.55.133\r\narch = x64\r\n```\r\nIn `auxiliary.conf` I've set `interface = virbr1`\r\n\r\nIn `virt-manager` (QEMU/KVM) I've disabled the `default` virtual network, leaving only `hostonly` enabled. This is the XML configuration:\r\n```\r\nnetwork>\r\n  <name>hostonly</name>\r\n  <uuid>146d8162-0f35-4b50-a2a7-cf06e51c5bac</uuid>\r\n  <bridge name=\"virbr1\" stp=\"on\" delay=\"0\"/>\r\n  <mac address=\"52:54:00:17:31:d0\"/>\r\n  <domain name=\"hostonly\"/>\r\n  <ip address=\"192.168.55.1\" netmask=\"255.255.255.0\">\r\n    <dhcp>\r\n      <range start=\"192.168.55.128\" end=\"192.168.55.254\"/>\r\n      <host mac=\"52:54:00:00:58:e8\" name=\"win10\" ip=\"192.168.55.133\"/> <-- I have manually added this line after reading issue #229 , even though I'm not sure whether it is needed\r\n    </dhcp>\r\n  </ip>\r\n</network>\r\n```\r\n\r\nWithin the GUEST OS (Windwos 10), I've set the same address as static IP. \r\n![image](https://user-images.githubusercontent.com/41084837/200112130-695cce71-90dd-44a7-a85c-dba61ccefa9e.png)\r\n\r\nThe `cuckoo.log` file contains the following information (I used the -d flag with submit.py):\r\n```\r\n2022-11-05 09:14:01,732 [lib.cuckoo.core.scheduler] INFO: Task #34: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_f703lf4z/check_internet_connection.exe'\r\n2022-11-05 09:14:01,737 [lib.cuckoo.core.scheduler] INFO: Task #34: File already exists at '/opt/CAPEv2/storage/binaries/18594b34352aeef5939d698d74662132ff24496958cdcb900814d72d6b4e63c5'\r\n2022-11-05 09:14:01,753 [lib.cuckoo.core.scheduler] INFO: Task #34: acquired machine cuckoo1 (label=win10, arch=x64, platform=windows)\r\n2022-11-05 09:14:30,290 [lib.cuckoo.core.scheduler] WARNING: Unknown network routing destination specified, ignoring routing for this analysis: 0 **<---- I guess this is the main problem, but I don't seem to be able to find the reason this happens**\r\n2022-11-05 09:14:30,291 [lib.cuckoo.core.scheduler] INFO: Enabled route '0'\r\n2022-11-05 09:14:30,293 [modules.auxiliary.sniffer] INFO: Started sniffer with PID 537184 (interface=virbr1, host=192.168.55.133, dump path=/opt/CAPEv2/storage/analyses/34/dump.pcap) **<--- This file is never created**.\r\n2022-11-05 09:14:30,314 [lib.cuckoo.core.guest] INFO: Task #34: Starting analysis on guest (id=cuckoo1, ip=192.168.55.133)\r\n2022-11-05 09:14:31,232 [lib.cuckoo.core.guest] INFO: Task #34: Guest is running CAPE Agent 0.11 (id=cuckoo1, ip=192.168.55.133)\r\n2022-11-05 09:14:50,140 [lib.cuckoo.core.guest] INFO: Task #34: Uploading support files to guest (id=cuckoo1, ip=192.168.55.133)\r\n2022-11-05 09:14:50,140 [lib.cuckoo.core.guest] INFO: Task #34: Uploading script files to guest (id=cuckoo1, ip=192.168.55.133)\r\n2022-11-05 09:18:43,228 [lib.cuckoo.core.guest] INFO: Task #34: Analysis completed successfully (id=cuckoo1, ip=192.168.55.133)\r\n2022-11-05 09:18:44,010 [lib.cuckoo.core.scheduler] INFO: Task #34: analysis procedure completed\r\n```\r\nI've checked whether tcpdump is correctly specified in the `auxiliary.conf` file, and it is. The `Network Analysis` tab is empty, showing the \"No hosts contacted.\" message. During the analysis, I tried to connect to any given website within the GUEST, and there is no internet connection at all. This is a screenshot of the VM while performing the analysis of a toy binary. No Internet at all.\r\n![image](https://user-images.githubusercontent.com/41084837/200113391-ca821ab1-42ce-4224-ba93-bcb8b9fda0bf.png)\r\n\r\nThe only **strange** thing I noted is that, while using the Web interface, the only options I'm allowed to select when (re)submitting a sample are 'dirtyline, eno1' and 'Drop all'. As fas as I know, 'drityline' should be 'virbr1', not 'eno1'. However, I get the very same errors when using the `submit.py` utility, regardless of the Web interface. \r\n![image](https://user-images.githubusercontent.com/41084837/200113304-19e159d7-c590-4146-840b-1cf2c9946a4a.png)\r\n\r\nWhat am I missing? Is there any (miss)configuration I skipped? And most importantly, Is there any easy/reliable way to check whether the routing and Internet connection are working as intended during an analysis? Could it be related with a permissions problem given that the CAPE user has no permission to execute tcpdump at all?\r\n\r\n```\r\n$ sudo -u cape tcpdump -i virbr1\r\ntcpdump: virbr1: You don't have permission to capture on that device\r\n(socket: Operation not permitted)\r\n```\r\n\r\nThank you in advance. I know there is a lot of info and it can be difficult to diagnose, but this problem is driving me mad. \r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. step 1\r\n2. step 2\r\n3. you get it...\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 22.04 LTS (HOST), Windows 10 (GUEST)\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: >  As fas as I know, 'drityline' should be 'virbr1', not 'eno1\r\n\r\nJust because you mentioned that, it should be your network interface that provides the internet access. Did you configure your route and interface in routing.conf correctly?\r\n\r\n`WARNING: Unknown network routing destination specified, ignoring routing for this analysis: 0`\r\nThis Warning also indicates a possible misconfiguration.\r\nSee: https://github.com/cuckoosandbox/cuckoo/blob/master/cuckoo/core/scheduler.py - route_network function - Line 252-259\r\n\r\nCheck:\r\nhttps://capev2.readthedocs.io/en/latest/installation/host/routing.html#routing\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/conf/routing.conf\r\nExample:\r\n```\r\n[routing]\r\n# Default network routing mode; \"none\", \"internet\", or \"vpn_name\".\r\n# In none mode we don't do any special routing - the VM doesn't have any\r\n# network access (this has been the default actually for quite a while).\r\n# In internet mode by default all the VMs will be routed through the network\r\n# interface configured below (the \"dirty line\").\r\n# And in VPN mode by default the VMs will be routed through the VPN identified\r\n# by the given name of the VPN.\r\n# Note that just like enabling VPN configuration setting this option to\r\n# anything other than \"none\" requires one to run utils/rooter.py as root next\r\n# to the CAPE instance (as it's required for setting up the routing).\r\nroute = internet\r\n\r\n# Network interface that allows a VM to connect to the entire internet, the\r\n# \"dirty line\" so to say. Note that, just like with the VPNs, this will allow\r\n# malicious traffic through your network. So think twice before enabling it.\r\n# (For example, to route all VMs through eth0 by default: \"internet = eth0\").\r\ninternet = eth0\r\n```\r\nFor other possible pcap-dump issues :\r\n- Check the path to your local installation of tcpdump in auxiliary.conf\r\n- Check if the group pcap exists and if your user (i guess cape) has been added to the group (eventually repeat lines 774-777 cape.sh)\r\n\r\nMore:\r\n- You can check if agent.py is running with elevated permissions (I cannot determine it from your screenshot)\r\n- I personally do not use DHPC for hostonly cape virtual network\r\n\r\n\r\n\nComment: > Just because you mentioned that, it should be your network interface that provides the internet access. Did you configure your route and interface in routing.conf correctly? \r\n\r\nYou nailed it. My `routing.conf` file was incorrect. I changed the _interface_ variable to _virbr1_ and after restarting cape-web.service now it shows the correct interface. \r\n\r\n![image](https://user-images.githubusercontent.com/41084837/200167556-5e2d3a64-86f3-401e-8935-5b09fee16b9e.png)\r\n\r\n> Check the path to your local installation of tcpdump in auxiliary.conf\r\n\r\nDone, it is the same as the output of `which tcpdump`. \r\n\r\n> Check if the group pcap exists and if your user (i guess cape) has been added to the group (eventually repeat lines 774-777 cape.sh)\r\n\r\nYes, you guess is correct. I checked the croups of the cape user and it belongs to pcap already:\r\n```\r\n$ sudo -u cape groups\r\ncape kvm pcap\r\n```\r\n\r\nHowever, I'm still concerned about permission problems. Is this the expected behavior?\r\n```\r\n$ sudo -u cape tcpdump\r\ntcpdump: eno1: You don't have permission to capture on that device\r\n(socket: Operation not permitted)\r\n$ sudo -u cape tcpdump -i virbr1\r\ntcpdump: virbr1: You don't have permission to capture on that device\r\n(socket: Operation not permitted)\r\n```\r\nI tried performing a new analysis and now the error about the routing destination has disappeared. However, the .pcap file is still not generated.\r\n```\r\n2022-11-06 11:25:11,825 [lib.cuckoo.core.scheduler] INFO: Task #39: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_uomlvovg/check_internet_connection.exe'\r\n2022-11-06 11:25:11,828 [lib.cuckoo.core.scheduler] INFO: Task #39: File already exists at '/opt/CAPEv2/storage/binaries/18594b34352aeef5939d698d74662132ff24496958cdcb900814d72d6b4e63c5'\r\n2022-11-06 11:25:11,838 [lib.cuckoo.core.scheduler] INFO: Task #39: acquired machine cuckoo1 (label=win10, arch=x64, platform=windows)\r\n2022-11-06 11:25:19,195 [lib.cuckoo.core.scheduler] INFO: Enabled route 'internet'\r\n2022-11-06 11:25:19,200 [modules.auxiliary.sniffer] INFO: Started sniffer with PID 553111 (interface=virbr1, host=192.168.55.133, dump path=/opt/CAPEv2/storage/analyses/39/dump.pcap)\r\n2022-11-06 11:25:19,211 [lib.cuckoo.core.guest] INFO: Task #39: Starting analysis on guest (id=cuckoo1, ip=192.168.55.133)\r\n2022-11-06 11:25:19,692 [lib.cuckoo.core.guest] INFO: Task #39: Guest is running CAPE Agent 0.11 (id=cuckoo1, ip=192.168.55.133)\r\n2022-11-06 11:25:38,896 [lib.cuckoo.core.guest] INFO: Task #39: Uploading support files to guest (id=cuckoo1, ip=192.168.55.133)\r\n2022-11-06 11:25:38,896 [lib.cuckoo.core.guest] INFO: Task #39: Uploading script files to guest (id=cuckoo1, ip=192.168.55.133)\r\n2022-11-06 11:29:37,005 [lib.cuckoo.core.guest] INFO: Task #39: Analysis completed successfully (id=cuckoo1, ip=192.168.55.133)\r\n2022-11-06 11:29:37,797 [lib.cuckoo.core.scheduler] INFO: Disabled route 'internet'\r\n2022-11-06 11:29:37,818 [lib.cuckoo.core.scheduler] INFO: Task #39: analysis procedure completed\r\n```\r\n`[modules.auxiliary.sniffer] INFO: Started sniffer with PID 553111 (interface=virbr1, host=192.168.55.133, dump path=/opt/CAPEv2/storage/analyses/39/dump.pcap)` seems to never happen.\r\n\r\n> You can check if agent.py is running with elevated permissions (I cannot determine it from your screenshot)\r\n\r\nI followed the steps as mentioned here: https://capev2.readthedocs.io/en/latest/installation/guest/agent.html?highlight=agent.py#windows-10\r\n\r\n> I personally do not use DHPC for hostonly cape virtual network\r\n\r\nAs far as I understand, I'm not using DHCP either. In the `ipconfig /all` screenshot I attached in the OP, it says _DHCP Enabled: NO_. However, I'm not quite sure how my XML should look like. Could you point me in the right direction?\r\n\r\nThank you so much!\r\n\nComment: > You nailed it. My routing.conf file was incorrect. I changed the interface variable to virbr1 and after restarting cape-web.service now it shows the correct interface.\r\n\r\nThere seems to be a little misunderstanding here. It should be the interface, that provides the internet access for your host. \r\nFind your correct interface via `ip a`\r\nExample:\r\nip a -> enp10s0\r\nrouting.conf: internet = enp10s0\r\ngui:\r\n![Screenshot from 2022-11-06 13-26-15](https://user-images.githubusercontent.com/35531629/200173385-8d87c51a-5481-4e24-9c86-37000e7a4a1b.png)\r\n\r\ni don't know your sampel that you use for testing.\r\nFor testing you can possibly use this one: ef2ce641a4e9f270eea626e8e4800b0b97b4a436c40e7af30aeb6f02566b809c and compare.\r\nShould be something like this:\r\n![image](https://user-images.githubusercontent.com/35531629/200173541-c2c59b85-4ea7-4495-a40e-a1fcc89080ac.png)\r\n![image](https://user-images.githubusercontent.com/35531629/200173571-5c9153fa-5ca0-485a-b9ab-3d1aa928dd82.png)\r\n\r\n> $ sudo -u cape groups\r\n> cape kvm pcap\r\n\r\nIf you installed cape correctly via cape.sh and kvm-qemu.sh, at least one additional group would appear for cape-user\r\nhttps://github.com/kevoreilly/CAPEv2/blob/c2ac229d0429654ea062c95f606fc8f20522ecba/installer/cape2.sh#L779\r\n\r\nSo i am not sure if your installation is correct. \r\n\r\n> tcpdump: eno1: You don't have permission to capture on that device\r\n> (socket: Operation not permitted)\r\n\r\nCheck if permissions for tcpdump are correct\r\n```\r\nll /usr/bin/tcpdump \r\n-rwxr-xr-x 1 root pcap 1331320 M\u00e4r 25  2022 /usr/bin/tcpdump\r\n```\r\nhttps://github.com/kevoreilly/CAPEv2/blob/c2ac229d0429654ea062c95f606fc8f20522ecba/installer/cape2.sh#L776\r\n\r\nand check\r\nhttps://github.com/kevoreilly/CAPEv2/blob/c2ac229d0429654ea062c95f606fc8f20522ecba/installer/cape2.sh#L777\r\n\r\nBut normally cape.sh did this for you.\r\n\r\nDont forget to restart your cape-services if you change .conf files \nComment: > It should be the interface, that provides the internet access for your host.\r\n\r\nIf that's the way you say it is, then yes, I misunderstood. My host has only 2 interfaces. The virtual one created for KVM and the one that provides Internet access. Then I will switch it back to eno1.\r\n```\r\n$ ip a\r\n1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000\r\n    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00\r\n    inet 127.0.0.1/8 scope host lo\r\n       valid_lft forever preferred_lft forever\r\n2: eno1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq state UP group default qlen 1000\r\n    link/ether XX brd ff:ff:ff:ff:ff:ff\r\n    altname eno1f\r\n    inet XXX brd XXX scope global noprefixroute eno1\r\n       valid_lft forever preferred_lft forever\r\n    inet6 XXX scope link noprefixroute \r\n       valid_lft forever preferred_lft forever\r\n31: virbr1: <NO-CARRIER,BROADCAST,MULTICAST,UP> mtu 1500 qdisc noqueue state DOWN group default qlen 1000\r\n    link/ether 52:54:00:17:31:d0 brd ff:ff:ff:ff:ff:ff\r\n    inet 192.168.55.1/24 brd 192.168.55.255 scope global virbr1\r\n       valid_lft forever preferred_lft forever\r\n```\r\nI will switch back to `interface = eno1` then. \r\n\r\n> If you installed cape correctly via cape.sh and kvm-qemu.sh, at least one additional group would appear for cape-user\r\n\r\nYes, I installed everything with the scripts created by doomedraven. \r\n\r\n> Check if permissions for tcpdump are correct.\r\n\r\nOnce again you were right. The permissions of my tcpdump binary were different, for some reason I do not know. I manually performed the following actions:\r\n```\r\n$ usermod -a -G systemd-journal cape\r\n$ chown root:pcap /usr/bin/tcpdump\r\n$ setcap cap_net_raw,cap_net_admin=eip /usr/bin/tcpdump\r\n```\r\n\r\nI tried executing [ef2ce641a4e9f270eea626e8e4800b0b97b4a436c40e7af30aeb6f02566b809c](https://bazaar.abuse.ch/sample/ef2ce641a4e9f270eea626e8e4800b0b97b4a436c40e7af30aeb6f02566b809c/) but nothing happened given that I haven't installed Office in the Virtual Machine. I'll do it tomorrow, save a new snapshot and try once again to see the results. I'll reach back to you once done. \r\n\r\n`2022-11-06 19:44:12,753 [lib.cuckoo.common.integrations.parse_pe] ERROR: PE type not recognised: 'DOS Header magic not found.'`\r\n```\r\n2022-11-06 18:44:41,323 [root] INFO: You probably submitted the job with wrong package\r\nTraceback (most recent call last):\r\n  File \"C:\\tmp681633k0\\analyzer.py\", line 528, in run\r\n    pids = self.package.start(self.target)\r\n  File \"C:\\tmp681633k0\\modules\\packages\\xls.py\", line 26, in start\r\n    excel = self.get_path_glob(\"Microsoft Office Excel\")\r\n  File \"C:\\tmp681633k0\\lib\\common\\abstracts.py\", line 91, in get_path_glob\r\n    raise CuckooPackageError(f\"Unable to find any {application} executable\")\r\nlib.common.exceptions.CuckooPackageError: Unable to find any Microsoft Office Excel executable\r\n\r\nThe above exception was the direct cause of the following exception:\r\n\r\nTraceback (most recent call last):\r\n  File \"C:\\tmp681633k0\\analyzer.py\", line 1397, in <module>\r\n    success = analyzer.run()\r\n  File \"C:\\tmp681633k0\\analyzer.py\", line 532, in run\r\n    raise CuckooError(f'The package \"{package_name}\" start function raised an error: {e}') from e\r\nlib.common.exceptions.CuckooError: The package \"modules.packages.xls\" start function raised an error: Unable to find any Microsoft Office Excel executable\r\n```\r\n\r\n![image](https://user-images.githubusercontent.com/41084837/200192045-5fe56644-1b6f-417b-aa13-e79fbbf49a7b.png)\r\n\r\n**HOWEVER**, there are also some good news. The .pcap file is now generated. The problem with tcpdump seems solved! Thank you!\r\n\r\nLast, but not least, I'd like to ask you about the DHCP configuration you told me about some posts ago. How should I configure the virtual network for the KVM instance(s)?\r\n\r\n\nComment: Yes if you don't have Office installed, this sample doesn't work. Sorry i forgot that you need to install Office first, but i set up my VMs long ago. My fault, maybe the sample is not the best for testing, because there might be more questions when it comes to Office :)\r\n\r\nPick a sample that you are familiar with (eventually from capesandbox.com) and make sure that it detonets correctly.\r\n\r\nRegarding DHCP, your settings should be fine.  Just make sure you have a static ip.\r\nExample host only network without DHCP:\r\n```\r\n<network>\r\n  <name>HostOnly_CAPE</name>\r\n  <uuid>59da4f9c-b576-4546-9617-e7bdcf36d210</uuid>\r\n  <bridge name=\"virbr1\" stp=\"on\" delay=\"0\"/>\r\n  <mac address=\"44:8a:5b:8b:17:66\"/>\r\n  <domain name=\"HostOnly_CAPE\"/>\r\n  <ip address=\"192.168.170.1\" netmask=\"255.255.255.0\">\r\n  </ip>\r\n</network>\r\n```\nComment: Hello once again. I'm executing the Emotet sample you mentioned. \r\n\r\n- The Excel executable is now available (spectating the VM it opens the Microsoft Store, not Excel itself. I don't know if thats the behavior of the sample). However, I'm still getting the following error in the logs: `[lib.cuckoo.common.integrations.parse_pe] ERROR: PE type not recognised: 'DOS Header magic not found`. I suspect it should not be there, but I'm not quite sure why the `parse_pe` integration is failing. **Is this an actual error of my CAPE installation** or is the Emotet sample itself using a malicious, crafted header?\r\nFull execution log from `cuckoo.log`.\r\n```\r\n2022-11-07 13:30:09,871 [lib.cuckoo.core.scheduler] INFO: Task #56: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_vl6gkion/ef2ce641a4e9f270eea6.xls'\r\n2022-11-07 13:30:09,877 [lib.cuckoo.core.scheduler] INFO: Task #56: File already exists at '/opt/CAPEv2/storage/binaries/ef2ce641a4e9f270eea626e8e4800b0b97b4a436c40e7af30aeb6f02566b809c'\r\n2022-11-07 13:30:09,884 [lib.cuckoo.core.scheduler] INFO: Task #56: acquired machine cuckoo1 (label=win10, arch=x64, platform=windows)\r\n2022-11-07 13:30:09,897 [lib.cuckoo.common.integrations.parse_pe] ERROR: PE type not recognised: 'DOS Header magic not found.'\r\n2022-11-07 13:30:57,004 [lib.cuckoo.core.scheduler] INFO: Enabled route 'internet'\r\n2022-11-07 13:30:57,009 [modules.auxiliary.sniffer] INFO: Started sniffer with PID 581642 (interface=virbr1, host=192.168.55.133, dump path=/opt/CAPEv2/storage/analyses/56/dump.pcap)\r\n2022-11-07 13:30:57,022 [lib.cuckoo.core.guest] INFO: Task #56: Starting analysis on guest (id=cuckoo1, ip=192.168.55.133)\r\n2022-11-07 13:30:57,030 [lib.cuckoo.core.guest] INFO: Task #56: Guest is running CAPE Agent 0.11 (id=cuckoo1, ip=192.168.55.133)\r\n2022-11-07 13:31:00,182 [lib.cuckoo.core.guest] INFO: Task #56: Uploading support files to guest (id=cuckoo1, ip=192.168.55.133)\r\n2022-11-07 13:31:00,182 [lib.cuckoo.core.guest] INFO: Task #56: Uploading script files to guest (id=cuckoo1, ip=192.168.55.133)\r\n2022-11-07 13:35:01,296 [lib.cuckoo.core.guest] INFO: Task #56: Analysis completed successfully (id=cuckoo1, ip=192.168.55.133)\r\n2022-11-07 13:35:01,956 [lib.cuckoo.core.scheduler] INFO: Disabled route 'internet'\r\n2022-11-07 13:35:01,979 [lib.cuckoo.core.scheduler] INFO: Task #56: analysis procedure completed\r\n```\r\nDespite the Excel executable being available, I think something is not detonating as expected.\r\n![image](https://user-images.githubusercontent.com/41084837/200323978-12c55209-ce3b-4139-9992-340f8f8a24a0.png)\r\n\r\nFull analysis log:\r\n```\r\n2022-11-07 13:25:02,579 [root] INFO: Date set to: 20221107T13:30:09, timeout set to: 200\r\n2022-11-07 13:30:09,056 [root] DEBUG: Starting analyzer from: C:\\tmpjqmx5b1s\r\n2022-11-07 13:30:09,056 [root] DEBUG: Storing results at: C:\\HIRsWXjZm\r\n2022-11-07 13:30:09,056 [root] DEBUG: Pipe server name: \\\\.\\PIPE\\FuiymdJz\r\n2022-11-07 13:30:09,056 [root] DEBUG: Python path: C:\\Users\\razv\\AppData\\Local\\Programs\\Python\\Python310-32\r\n2022-11-07 13:30:09,056 [root] INFO: Analysis package \"xls\" has been specified\r\n2022-11-07 13:30:09,056 [root] DEBUG: Importing analysis package \"xls\"...\r\n2022-11-07 13:30:09,072 [root] DEBUG: Initializing analysis package \"xls\"...\r\n2022-11-07 13:30:09,072 [root] DEBUG: New location of moved file: C:\\Users\\razv\\AppData\\Local\\Temp\\ef2ce641a4e9f270eea6.xls\r\n2022-11-07 13:30:09,072 [root] INFO: Analyzer: Package modules.packages.xls does not specify a DLL option\r\n2022-11-07 13:30:09,072 [root] INFO: Analyzer: Package modules.packages.xls does not specify a DLL_64 option\r\n2022-11-07 13:30:09,087 [root] INFO: Analyzer: Package modules.packages.xls does not specify a loader option\r\n2022-11-07 13:30:09,087 [root] INFO: Analyzer: Package modules.packages.xls does not specify a loader_64 option\r\n2022-11-07 13:30:10,009 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.browser\"...\r\n2022-11-07 13:30:10,025 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.curtain\"...\r\n2022-11-07 13:30:10,244 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.digisig\"...\r\n2022-11-07 13:30:10,290 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.disguise\"...\r\n2022-11-07 13:30:10,353 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.during_script\"...\r\n2022-11-07 13:30:10,353 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.evtx\"...\r\n2022-11-07 13:30:10,369 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.filepickup\"...\r\n2022-11-07 13:30:10,369 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.human\"...\r\n2022-11-07 13:30:10,384 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.permissions\"...\r\n2022-11-07 13:30:10,384 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.pre_script\"...\r\n2022-11-07 13:30:10,400 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.procmon\"...\r\n2022-11-07 13:30:10,400 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.screenshots\"...\r\n2022-11-07 13:30:10,416 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageChops'\r\n2022-11-07 13:30:23,214 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageGrab'\r\n2022-11-07 13:30:23,214 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageDraw'\r\n2022-11-07 13:30:23,229 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.sysmon\"...\r\n2022-11-07 13:30:23,229 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.tlsdump\"...\r\n2022-11-07 13:30:23,245 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.usage\"...\r\n2022-11-07 13:30:23,245 [root] DEBUG: Initialized auxiliary module \"Browser\"\r\n2022-11-07 13:30:23,245 [root] DEBUG: Trying to start auxiliary module \"Browser\"...\r\n2022-11-07 13:30:23,245 [root] DEBUG: Started auxiliary module \"Browser\"\r\n2022-11-07 13:30:23,245 [root] DEBUG: Started auxiliary module Browser\r\n2022-11-07 13:30:23,245 [root] DEBUG: Initialized auxiliary module \"Curtain\"\r\n2022-11-07 13:30:23,245 [root] DEBUG: Trying to start auxiliary module \"Curtain\"...\r\n2022-11-07 13:30:23,245 [root] DEBUG: Started auxiliary module \"Curtain\"\r\n2022-11-07 13:30:23,245 [root] DEBUG: Started auxiliary module Curtain\r\n2022-11-07 13:30:23,245 [root] DEBUG: Initialized auxiliary module \"DigiSig\"\r\n2022-11-07 13:30:23,261 [root] DEBUG: Trying to start auxiliary module \"DigiSig\"...\r\n2022-11-07 13:30:23,261 [modules.auxiliary.digisig] DEBUG: Checking for a digital signature\r\n2022-11-07 13:30:25,058 [modules.auxiliary.digisig] DEBUG: File has an invalid signature\r\n2022-11-07 13:30:25,183 [modules.auxiliary.digisig] INFO: Uploading signature results to aux/DigiSig.json\r\n2022-11-07 13:30:25,198 [root] DEBUG: Started auxiliary module \"DigiSig\"\r\n2022-11-07 13:30:25,198 [root] DEBUG: Started auxiliary module DigiSig\r\n2022-11-07 13:30:25,198 [root] DEBUG: Initialized auxiliary module \"Disguise\"\r\n2022-11-07 13:30:25,198 [root] DEBUG: Trying to start auxiliary module \"Disguise\"...\r\n2022-11-07 13:30:25,276 [modules.auxiliary.disguise] INFO: Disguising GUID to 010f87f7-cc11-43c5-8902-4b8d36805ae1\r\n2022-11-07 13:30:25,276 [root] DEBUG: Started auxiliary module \"Disguise\"\r\n2022-11-07 13:30:25,276 [root] DEBUG: Started auxiliary module Disguise\r\n2022-11-07 13:30:25,276 [root] DEBUG: Initialized auxiliary module \"Evtx\"\r\n2022-11-07 13:30:25,292 [root] DEBUG: Trying to start auxiliary module \"Evtx\"...\r\n2022-11-07 13:30:25,292 [root] DEBUG: Started auxiliary module \"Evtx\"\r\n2022-11-07 13:30:25,292 [root] DEBUG: Started auxiliary module Evtx\r\n2022-11-07 13:30:25,292 [root] WARNING: Auxiliary module FilePickup was not implemented: 'Config' object has no attribute 'file_pickup'\r\n2022-11-07 13:30:25,292 [root] DEBUG: Initialized auxiliary module \"Human\"\r\n2022-11-07 13:30:25,292 [root] DEBUG: Trying to start auxiliary module \"Human\"...\r\n2022-11-07 13:30:25,292 [root] DEBUG: Started auxiliary module \"Human\"\r\n2022-11-07 13:30:25,292 [root] DEBUG: Started auxiliary module Human\r\n2022-11-07 13:30:25,292 [root] WARNING: Auxiliary module Permissions was not implemented: 'Config' object has no attribute 'file_pickup'\r\n2022-11-07 13:30:25,292 [root] DEBUG: Initialized auxiliary module \"Pre_script\"\r\n2022-11-07 13:30:25,292 [root] DEBUG: Trying to start auxiliary module \"Pre_script\"...\r\n2022-11-07 13:30:25,292 [root] DEBUG: Started auxiliary module \"Pre_script\"\r\n2022-11-07 13:30:25,292 [root] DEBUG: Started auxiliary module Pre_script\r\n2022-11-07 13:30:25,292 [root] DEBUG: Initialized auxiliary module \"Procmon\"\r\n2022-11-07 13:30:25,292 [root] DEBUG: Trying to start auxiliary module \"Procmon\"...\r\n2022-11-07 13:30:25,292 [root] DEBUG: Started auxiliary module \"Procmon\"\r\n2022-11-07 13:30:25,292 [root] DEBUG: Started auxiliary module Procmon\r\n2022-11-07 13:30:25,308 [root] DEBUG: Initialized auxiliary module \"Screenshots\"\r\n2022-11-07 13:30:25,308 [root] DEBUG: Trying to start auxiliary module \"Screenshots\"...\r\n2022-11-07 13:30:25,464 [root] DEBUG: Started auxiliary module \"Screenshots\"\r\n2022-11-07 13:30:25,480 [root] DEBUG: Started auxiliary module Screenshots\r\n2022-11-07 13:30:25,480 [root] DEBUG: Initialized auxiliary module \"Sysmon\"\r\n2022-11-07 13:30:25,480 [root] DEBUG: Trying to start auxiliary module \"Sysmon\"...\r\n2022-11-07 13:30:25,480 [root] DEBUG: Started auxiliary module \"Sysmon\"\r\n2022-11-07 13:30:25,480 [root] DEBUG: Started auxiliary module Sysmon\r\n2022-11-07 13:30:25,480 [root] DEBUG: Initialized auxiliary module \"TLSDumpMasterSecrets\"\r\n2022-11-07 13:30:25,480 [root] DEBUG: Trying to start auxiliary module \"TLSDumpMasterSecrets\"...\r\n2022-11-07 13:30:25,511 [modules.auxiliary.tlsdump] INFO: lsass.exe found, pid 632\r\n2022-11-07 13:30:25,723 [lib.api.process] INFO: Monitor config for process 632: C:\\tmpjqmx5b1s\\dll\\632.ini\r\n2022-11-07 13:30:25,723 [lib.api.process] INFO: Option 'tlsdump' with value '1' sent to monitor\r\n2022-11-07 13:30:25,723 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmpjqmx5b1s\\dll\\HnfbLqD.dll, loader C:\\tmpjqmx5b1s\\bin\\cFxsoIRV.exe\r\n2022-11-07 13:30:25,855 [root] DEBUG: Loader: Injecting process 632 with C:\\tmpjqmx5b1s\\dll\\HnfbLqD.dll.\r\n2022-11-07 13:30:25,892 [root] DEBUG: Python path set to 'C:\\Users\\razv\\AppData\\Local\\Programs\\Python\\Python310-32'.\r\n2022-11-07 13:30:25,908 [root] DEBUG: TLS secret dump mode enabled.\r\n2022-11-07 13:30:25,908 [root] INFO: Disabling sleep skipping.\r\n2022-11-07 13:30:25,908 [root] DEBUG: Monitor initialised: 64-bit capemon loaded in process 632 at 0x00007FF8A8340000, thread 3300, image base 0x00007FF62A4B0000, stack from 0x000000691A2F4000-0x000000691A300000\r\n2022-11-07 13:30:25,908 [root] DEBUG: Commandline: C:\\Windows\\system32\\lsass.exe\r\n2022-11-07 13:30:25,923 [root] DEBUG: Post-init: Failed to initialise debugger.\r\n2022-11-07 13:30:25,939 [root] DEBUG: InjectDllViaThread: Successfully injected Dll into process via RtlCreateUserThread.\r\n2022-11-07 13:30:25,939 [root] DEBUG: Successfully injected DLL C:\\tmpjqmx5b1s\\dll\\HnfbLqD.dll.\r\n2022-11-07 13:30:25,939 [lib.api.process] INFO: Injected into suspended 64-bit process with pid 632\r\n2022-11-07 13:30:25,939 [root] DEBUG: Started auxiliary module \"TLSDumpMasterSecrets\"\r\n2022-11-07 13:30:25,939 [root] DEBUG: Started auxiliary module TLSDumpMasterSecrets\r\n2022-11-07 13:30:25,939 [root] DEBUG: Initialized auxiliary module \"Usage\"\r\n2022-11-07 13:30:25,939 [root] DEBUG: Trying to start auxiliary module \"Usage\"...\r\n2022-11-07 13:30:25,939 [root] DEBUG: Started auxiliary module \"Usage\"\r\n2022-11-07 13:30:25,939 [root] DEBUG: Started auxiliary module Usage\r\n2022-11-07 13:30:25,939 [root] DEBUG: Initialized auxiliary module \"During_script\"\r\n2022-11-07 13:30:25,939 [root] DEBUG: Trying to start auxiliary module \"During_script\"...\r\n2022-11-07 13:30:25,939 [root] DEBUG: Started auxiliary module \"During_script\"\r\n2022-11-07 13:30:25,939 [root] DEBUG: Started auxiliary module During_script\r\n2022-11-07 13:30:43,780 [root] INFO: Restarting WMI Service\r\n2022-11-07 13:30:44,374 [lib.core.compound] INFO: C:\\Users\\razv\\AppData\\Local\\Temp already exists, skipping creation\r\n2022-11-07 13:30:44,608 [lib.api.process] INFO: Successfully executed process from path \"C:\\Program Files\\Microsoft Office\\root\\Office16\\EXCEL.EXE\" with arguments \"\"C:\\Users\\razv\\AppData\\Local\\Temp\\ef2ce641a4e9f270eea6.xls\" /dde\" with pid 5972\r\n2022-11-07 13:30:44,655 [lib.api.process] INFO: Monitor config for process 5972: C:\\tmpjqmx5b1s\\dll\\5972.ini\r\n2022-11-07 13:30:44,796 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmpjqmx5b1s\\dll\\HnfbLqD.dll, loader C:\\tmpjqmx5b1s\\bin\\cFxsoIRV.exe\r\n2022-11-07 13:30:44,843 [root] DEBUG: Loader: Injecting process 5972 (thread 2708) with C:\\tmpjqmx5b1s\\dll\\HnfbLqD.dll.\r\n2022-11-07 13:30:44,843 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\r\n2022-11-07 13:30:44,843 [root] DEBUG: Successfully injected DLL C:\\tmpjqmx5b1s\\dll\\HnfbLqD.dll.\r\n2022-11-07 13:30:44,858 [lib.api.process] INFO: Injected into suspended 64-bit process with pid 5972\r\n2022-11-07 13:30:46,874 [lib.api.process] INFO: Successfully resumed process with pid 5972\r\n2022-11-07 13:30:47,046 [root] DEBUG: Python path set to 'C:\\Users\\razv\\AppData\\Local\\Programs\\Python\\Python310-32'.\r\n2022-11-07 13:30:47,077 [root] DEBUG: Dropped file limit defaulting to 100.\r\n2022-11-07 13:30:47,171 [root] DEBUG: Initialising Yara...\r\n2022-11-07 13:30:47,327 [root] DEBUG: YaraInit: Compiled 18 rule files\r\n2022-11-07 13:30:47,327 [root] DEBUG: YaraInit: Compiled rules saved to file C:\\tmpjqmx5b1s\\data\\yara\\capemon.yac\r\n2022-11-07 13:30:47,358 [root] DEBUG: InternalYaraScan: Scanning 0x00007FF8CD050000, size 0x1f7546\r\n2022-11-07 13:30:47,453 [root] DEBUG: InternalYaraScan hit: RtlInsertInvertedFunctionTable\r\n2022-11-07 13:30:47,453 [root] DEBUG: RtlInsertInvertedFunctionTable 0x00007FF8CD06090E, LdrpInvertedFunctionTableSRWLock 0x00007FF8CD1BD500\r\n2022-11-07 13:30:47,453 [root] DEBUG: AmsiDumper initialised.\r\n2022-11-07 13:30:47,453 [root] DEBUG: Monitor initialised: 64-bit capemon loaded in process 5972 at 0x00007FF8A8340000, thread 2708, image base 0x00007FF706180000, stack from 0x0000002AEDAF5000-0x0000002AEDB00000\r\n2022-11-07 13:30:47,453 [root] DEBUG: Commandline: \"C:\\Program Files\\Microsoft Office\\root\\Office16\\EXCEL.EXE\" \"C:\\Users\\razv\\AppData\\Local\\Temp\\ef2ce641a4e9f270eea6.xls\" /dde\r\n2022-11-07 13:30:47,453 [root] DEBUG: Microsoft Office settings enabled.\r\n2022-11-07 13:30:47,468 [root] DEBUG: hook_api: Warning - CoCreateInstance export address 0x00007FF8CCBF42EB differs from GetProcAddress -> 0x00007FF8CBF57E30\r\n2022-11-07 13:30:47,468 [root] DEBUG: hook_api: Warning - CoCreateInstanceEx export address 0x00007FF8CCBF432A differs from GetProcAddress -> 0x00007FF8CBED91E0\r\n2022-11-07 13:30:47,468 [root] DEBUG: hook_api: Warning - CoGetClassObject export address 0x00007FF8CCBF48BA differs from GetProcAddress -> 0x00007FF8CBF54FF0\r\n2022-11-07 13:30:47,577 [root] DEBUG: hook_api: Warning - CLSIDFromProgID export address 0x00007FF8CCBF3B36 differs from GetProcAddress -> 0x00007FF8CBEE66D0\r\n2022-11-07 13:30:47,749 [root] DEBUG: RestoreHeaders: Restored original import table.\r\n2022-11-07 13:30:47,749 [root] INFO: Loaded monitor into process with pid 5972\r\n2022-11-07 13:30:47,749 [root] DEBUG: caller_dispatch: Adding region at 0x00007FF8A9C20000 to caller regions list (ntdll::LdrLoadDll returns to 0x00007FF8A9C42D16, thread 2708).\r\n2022-11-07 13:30:47,749 [root] DEBUG: caller_dispatch: Scanning calling region at 0x00007FF8A9C20000...\r\n2022-11-07 13:30:47,764 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FF8A9C20000 skipped (ntdll::LdrLoadDll returns to 0x00007FF8A9C42D16 mapped as \\Device\\HarddiskVolume2\\Program Files\\Common Files\\microsoft shared\\ClickToRun\\C2R64.dll).\r\n2022-11-07 13:30:47,780 [root] DEBUG: DLL unloaded from 0x00007FF8CAC70000.\r\n2022-11-07 13:30:47,796 [root] INFO: Disabling sleep skipping.\r\n2022-11-07 13:30:47,796 [root] DEBUG: caller_dispatch: Adding region at 0x00007FF8BA300000 to caller regions list (ntdll::LdrLoadDll returns to 0x00007FF8BA313EA1, thread 2708).\r\n2022-11-07 13:30:47,796 [root] DEBUG: caller_dispatch: Scanning calling region at 0x00007FF8BA300000...\r\n2022-11-07 13:30:47,796 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FF8BA300000 skipped (ntdll::LdrLoadDll returns to 0x00007FF8BA313EA1 mapped as \\Device\\HarddiskVolume2\\Program Files\\Common Files\\microsoft shared\\ClickToRun\\AppvIsvSubsystems64.dll).\r\n2022-11-07 13:34:07,355 [root] INFO: Analysis timeout hit, terminating analysis\r\n2022-11-07 13:34:07,355 [lib.api.process] ERROR: Failed to open terminate event for pid 5972\r\n2022-11-07 13:34:07,355 [root] INFO: Terminate event set for process 5972\r\n2022-11-07 13:34:07,355 [root] INFO: Created shutdown mutex\r\n2022-11-07 13:34:08,370 [root] INFO: Shutting down package\r\n2022-11-07 13:34:08,370 [root] INFO: Stopping auxiliary modules\r\n2022-11-07 13:34:08,370 [root] INFO: Stopped auxiliary modules: <Browser(Thread-3, stopped 3168)>\r\n2022-11-07 13:34:08,495 [lib.common.results] INFO: File C:\\curtain.log size is 160082, Max size: 100000000\r\n2022-11-07 13:34:08,558 [root] INFO: Stopped auxiliary modules: <Curtain(Thread-4, stopped 6080)>\r\n2022-11-07 13:34:08,574 [root] INFO: Stopped auxiliary modules: <Evtx(Thread-7, stopped 5044)>\r\n2022-11-07 13:34:08,574 [root] INFO: Stopped auxiliary modules: <Human(Thread-8, started 6120)>\r\n2022-11-07 13:34:08,574 [root] INFO: Stopped auxiliary modules: <Pre_script(Thread-9, initial)>\r\n2022-11-07 13:34:08,637 [lib.common.results] WARNING: File C:\\HIRsWXjZm\\bin\\procmon.xml doesn't exist anymore\r\n2022-11-07 13:34:08,637 [root] INFO: Stopped auxiliary modules: <Procmon(Thread-10, stopped 3004)>\r\n2022-11-07 13:34:08,637 [root] INFO: Stopped auxiliary modules: <Screenshots(Thread-11, started 3280)>\r\n2022-11-07 13:34:08,699 [root] WARNING: Cannot terminate auxiliary module Sysmon: Thread.__init__() was not called\r\n2022-11-07 13:34:08,699 [root] INFO: Stopped auxiliary modules: <Usage(Thread-23, stopped 4892)>\r\n2022-11-07 13:34:08,699 [root] INFO: Stopped auxiliary modules: <During_script(Thread-24, initial)>\r\n2022-11-07 13:34:08,699 [root] INFO: Finishing auxiliary modules\r\n2022-11-07 13:34:08,699 [root] INFO: Shutting down pipe server and dumping dropped files\r\n2022-11-07 13:34:08,699 [root] WARNING: Folder at path \"C:\\HIRsWXjZm\\debugger\" does not exist, skipping\r\n2022-11-07 13:34:08,699 [root] WARNING: Folder at path \"C:\\HIRsWXjZm\\tlsdump\" does not exist, skipping\r\n2022-11-07 13:34:08,699 [root] INFO: Analysis completed\r\n```\r\n\r\n\r\n\r\n- I wanted to also ask about DNS. While executing a sample, the internet routing option seems to be working. However, DNS requests are either dropped or not working at all. I tried browsing to some URL (google.com) while analyzing a sample and it does not work. Pinging the IP, on the other side, does work. **Is this behavior correct?** Is CAPEv2 intented to just capture DNS requests but not solve them? My configuration in the VM for the DNS server is the gateway, just like specified in the docs.\r\n\r\n![image](https://user-images.githubusercontent.com/41084837/200317794-58ea1478-5684-40ef-bdd8-d4219f5e5e5d.png)\r\nThe capture was made during an actual submission/analysis (not the Emotet sample). \r\n![image](https://user-images.githubusercontent.com/41084837/200319182-de92a31d-1062-4a22-9ff0-944f59c69298.png)\r\n![image](https://user-images.githubusercontent.com/41084837/200319254-14b1a6af-ebc5-46b3-a926-c649ac184c2d.png)\r\n\r\n\r\n\r\n\r\n\nComment: > spectating the VM it opens the Microsoft Store, not Excel itself.\r\n\r\nNo its not. As i said, the new emotet sample is not a good example for testing, because it requires additional Offices configuration (allow macros by default, set trusted locations etc)\r\nGenerally you have to setup a good sandbox environment for malware analysis and reduce windows noise (e.g get rid of MSStore). But this is your job. You can check out https://github.com/doomedraven/Tools/blob/master/Windows/disable_win7noise.bat as an entry point. But maybe there is more to do for WIN10.\r\n\r\n> No internet access during analysis. No network results. No PCAP dumps\r\n\r\nYour initial problems seem to be solved. So maybe you you open another issue for further problems. \r\nI'm out here for now :)  \nComment: Thank you Claudio!",
+  "Title: Add conf whether to open top_detections\nBody: When there are a large number of reports, top_detections spends too much time.  \r\nAdd a conf so that top_detections can be disabled by modifying the conf.  ",
+  "Title: Processing module not triggering.\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n* Free support from doomedraven ended - no whiskey, no support. For updates check the documentation.\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I did read the README!\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I have read and checked all configs (with all optional parts)\r\n\r\n# Expected Behavior\r\n\r\nI expect the application to run all processing modules when submitting from the web interface. \r\n\r\n# Current Behavior\r\n\r\nI created a custom processing module that performs several computations based on the `self.results` variable. However, I don't seem to get it running while submitting a sample either from the web interface or using the `submit.py` utility. I can only get the module running if I `submit.py -r task_id` the specific analysis. The behavior analysis, however, does work. \r\n\r\nIsn't the processing module supposed to be running with every single submit or am I missing something?\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nJust submit a sample and the processing module does not work. \r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 16.04, Windows 10, macOS 10.12.3\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: Yes each processing module should be run for each job.\r\n\r\nHave you tried checking the processing log?! log/process.log\r\n\r\nHave you tried reprocessing with debug output?\r\npython utils/process.py -d -r <id>\nComment: Yes, I've been taking a look at the logs but nothing seems to be related with the problem. There are, however, other modules like `suricata` crashing, but I assume one module crashing doesn't imply stopping the execution of consecutive ones.\r\n\r\nFor example, when executing `submit.py test.exe -d`, this is `cuckoo.log`:\r\n```\r\n$ cat cuckoo.log\r\n2022-11-04 08:48:32,243 [lib.cuckoo.core.scheduler] INFO: Task #20: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_8icl9v6k/test.exe'\r\n2022-11-04 08:48:32,246 [lib.cuckoo.core.scheduler] INFO: Task #20: File already exists at '/opt/CAPEv2/storage/binaries/62b79a7bc5d79a13539b24d782965b5f71d3af3006cfb0fbdbd81f7f12f78521'\r\n2022-11-04 08:48:32,254 [lib.cuckoo.core.scheduler] INFO: Task #20: acquired machine cuckoo1 (label=win10, arch=x64, platform=windows)\r\n2022-11-04 08:48:38,565 [lib.cuckoo.core.scheduler] WARNING: Unknown network routing destination specified, ignoring routing for this analysis: 0\r\n2022-11-04 08:48:38,565 [lib.cuckoo.core.scheduler] INFO: Enabled route '0'\r\n2022-11-04 08:48:38,566 [modules.auxiliary.sniffer] ERROR: Tcpdump does not exist at path \"/usr/sbin/tcpdump\", network capture aborted\r\n2022-11-04 08:48:38,581 [lib.cuckoo.core.guest] INFO: Task #20: Starting analysis on guest (id=cuckoo1, ip=192.168.55.133)\r\n2022-11-04 08:48:39,423 [lib.cuckoo.core.guest] INFO: Task #20: Guest is running CAPE Agent 0.11 (id=cuckoo1, ip=192.168.55.133)\r\n2022-11-04 08:48:53,031 [lib.cuckoo.core.guest] INFO: Task #20: Uploading support files to guest (id=cuckoo1, ip=192.168.55.133)\r\n2022-11-04 08:48:53,032 [lib.cuckoo.core.guest] INFO: Task #20: Uploading script files to guest (id=cuckoo1, ip=192.168.55.133)\r\n2022-11-04 08:49:29,202 [lib.cuckoo.core.guest] INFO: Task #20: Analysis completed successfully (id=cuckoo1, ip=192.168.55.133)\r\n2022-11-04 08:49:29,970 [lib.cuckoo.core.scheduler] INFO: Task #20: analysis procedure completed\r\n```\r\n\r\nThen, `process.log`:\r\n```\r\n$ cat process.log\r\n2022-11-04 08:49:32,403 [Task 20] [modules.processing.network] WARNING: The PCAP file does not exist at path \"/opt/CAPEv2/storage/analyses/20/dump.pcap\"\r\n2022-11-04 08:49:32,739 [Task 20] [modules.processing.suricata] WARNING: Unable to Run Suricata: Pcap file /opt/CAPEv2/storage/analyses/20/dump.pcap does not exist\r\n```\r\n\r\nAnd this is the full log I see in the `show log` section of the web interface (which I assume is the .bson log file associated with the task):\r\n```\r\n2022-08-17 09:27:31,010 [root] INFO: Date set to: 20221104T08:48:38, timeout set to: 200\r\n2022-11-04 08:48:38,166 [root] DEBUG: Starting analyzer from: C:\\tmpjf_aene3\r\n2022-11-04 08:48:38,291 [root] DEBUG: Storing results at: C:\\qdVUOyW\r\n2022-11-04 08:48:38,291 [root] DEBUG: Pipe server name: \\\\.\\PIPE\\dLxkeODv\r\n2022-11-04 08:48:38,323 [root] DEBUG: Python path: C:\\Users\\razv\\AppData\\Local\\Programs\\Python\\Python310-32\r\n2022-11-04 08:48:38,323 [root] INFO: Analysis package \"exe\" has been specified\r\n2022-11-04 08:48:38,323 [root] DEBUG: Importing analysis package \"exe\"...\r\n2022-11-04 08:48:39,385 [root] DEBUG: Initializing analysis package \"exe\"...\r\n2022-11-04 08:48:39,510 [root] DEBUG: New location of moved file: C:\\Users\\razv\\AppData\\Local\\Temp\\test.exe\r\n2022-11-04 08:48:39,510 [root] INFO: Analyzer: Package modules.packages.exe does not specify a DLL option\r\n2022-11-04 08:48:39,525 [root] INFO: Analyzer: Package modules.packages.exe does not specify a DLL_64 option\r\n2022-11-04 08:48:39,525 [root] INFO: Analyzer: Package modules.packages.exe does not specify a loader option\r\n2022-11-04 08:48:39,525 [root] INFO: Analyzer: Package modules.packages.exe does not specify a loader_64 option\r\n2022-11-04 08:48:50,557 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.browser\"...\r\n2022-11-04 08:48:50,729 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.curtain\"...\r\n2022-11-04 08:48:50,916 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.digisig\"...\r\n2022-11-04 08:48:50,963 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.disguise\"...\r\n2022-11-04 08:48:51,135 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.during_script\"...\r\n2022-11-04 08:48:51,150 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.evtx\"...\r\n2022-11-04 08:48:51,182 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.filepickup\"...\r\n2022-11-04 08:48:51,463 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.human\"...\r\n2022-11-04 08:48:51,479 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.permissions\"...\r\n2022-11-04 08:48:51,494 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.pre_script\"...\r\n2022-11-04 08:48:51,510 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.procmon\"...\r\n2022-11-04 08:48:51,557 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.screenshots\"...\r\n2022-11-04 08:48:51,572 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageChops'\r\n2022-11-04 08:48:52,338 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageGrab'\r\n2022-11-04 08:48:52,369 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageDraw'\r\n2022-11-04 08:48:52,557 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.sysmon\"...\r\n2022-11-04 08:48:52,635 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.tlsdump\"...\r\n2022-11-04 08:48:52,651 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.usage\"...\r\n2022-11-04 08:48:52,666 [root] DEBUG: Initialized auxiliary module \"Browser\"\r\n2022-11-04 08:48:52,666 [root] DEBUG: Trying to start auxiliary module \"Browser\"...\r\n2022-11-04 08:48:52,666 [root] DEBUG: Started auxiliary module \"Browser\"\r\n2022-11-04 08:48:52,666 [root] DEBUG: Started auxiliary module Browser\r\n2022-11-04 08:48:52,666 [root] DEBUG: Initialized auxiliary module \"Curtain\"\r\n2022-11-04 08:48:52,666 [root] DEBUG: Trying to start auxiliary module \"Curtain\"...\r\n2022-11-04 08:48:52,666 [root] DEBUG: Started auxiliary module \"Curtain\"\r\n2022-11-04 08:48:52,666 [root] DEBUG: Started auxiliary module Curtain\r\n2022-11-04 08:48:52,666 [root] DEBUG: Initialized auxiliary module \"DigiSig\"\r\n2022-11-04 08:48:52,666 [root] DEBUG: Trying to start auxiliary module \"DigiSig\"...\r\n2022-11-04 08:48:52,666 [modules.auxiliary.digisig] DEBUG: Checking for a digital signature\r\n2022-11-04 08:48:53,151 [modules.auxiliary.digisig] DEBUG: File is not signed\r\n2022-11-04 08:48:53,151 [modules.auxiliary.digisig] INFO: Uploading signature results to aux/DigiSig.json\r\n2022-11-04 08:48:53,166 [root] DEBUG: Started auxiliary module \"DigiSig\"\r\n2022-11-04 08:48:53,166 [root] DEBUG: Started auxiliary module DigiSig\r\n2022-11-04 08:48:53,166 [root] DEBUG: Initialized auxiliary module \"Disguise\"\r\n2022-11-04 08:48:53,166 [root] DEBUG: Trying to start auxiliary module \"Disguise\"...\r\n2022-11-04 08:48:53,166 [modules.auxiliary.disguise] INFO: Disguising GUID to 0cba9617-7038-431c-9426-b627440239d7\r\n2022-11-04 08:48:53,166 [root] DEBUG: Started auxiliary module \"Disguise\"\r\n2022-11-04 08:48:53,166 [root] DEBUG: Started auxiliary module Disguise\r\n2022-11-04 08:48:53,166 [root] DEBUG: Initialized auxiliary module \"Evtx\"\r\n2022-11-04 08:48:53,166 [root] DEBUG: Trying to start auxiliary module \"Evtx\"...\r\n2022-11-04 08:48:53,166 [root] DEBUG: Started auxiliary module \"Evtx\"\r\n2022-11-04 08:48:53,166 [root] DEBUG: Started auxiliary module Evtx\r\n2022-11-04 08:48:53,166 [root] WARNING: Auxiliary module FilePickup was not implemented: 'Config' object has no attribute 'file_pickup'\r\n2022-11-04 08:48:53,166 [root] DEBUG: Initialized auxiliary module \"Human\"\r\n2022-11-04 08:48:53,166 [root] DEBUG: Trying to start auxiliary module \"Human\"...\r\n2022-11-04 08:48:53,166 [root] DEBUG: Started auxiliary module \"Human\"\r\n2022-11-04 08:48:53,166 [root] DEBUG: Started auxiliary module Human\r\n2022-11-04 08:48:53,166 [root] WARNING: Auxiliary module Permissions was not implemented: 'Config' object has no attribute 'file_pickup'\r\n2022-11-04 08:48:53,166 [root] DEBUG: Initialized auxiliary module \"Pre_script\"\r\n2022-11-04 08:48:53,166 [root] DEBUG: Trying to start auxiliary module \"Pre_script\"...\r\n2022-11-04 08:48:53,166 [root] DEBUG: Started auxiliary module \"Pre_script\"\r\n2022-11-04 08:48:53,166 [root] DEBUG: Started auxiliary module Pre_script\r\n2022-11-04 08:48:53,166 [root] DEBUG: Initialized auxiliary module \"Procmon\"\r\n2022-11-04 08:48:53,166 [root] DEBUG: Trying to start auxiliary module \"Procmon\"...\r\n2022-11-04 08:48:53,166 [root] DEBUG: Started auxiliary module \"Procmon\"\r\n2022-11-04 08:48:53,166 [root] DEBUG: Started auxiliary module Procmon\r\n2022-11-04 08:48:53,166 [root] DEBUG: Initialized auxiliary module \"Screenshots\"\r\n2022-11-04 08:48:53,166 [root] DEBUG: Trying to start auxiliary module \"Screenshots\"...\r\n2022-11-04 08:48:53,166 [root] DEBUG: Started auxiliary module \"Screenshots\"\r\n2022-11-04 08:48:53,166 [root] DEBUG: Started auxiliary module Screenshots\r\n2022-11-04 08:48:53,166 [root] DEBUG: Initialized auxiliary module \"Sysmon\"\r\n2022-11-04 08:48:53,166 [root] DEBUG: Trying to start auxiliary module \"Sysmon\"...\r\n2022-11-04 08:48:53,182 [root] DEBUG: Started auxiliary module \"Sysmon\"\r\n2022-11-04 08:48:53,182 [root] DEBUG: Started auxiliary module Sysmon\r\n2022-11-04 08:48:53,182 [root] DEBUG: Initialized auxiliary module \"TLSDumpMasterSecrets\"\r\n2022-11-04 08:48:53,182 [root] DEBUG: Trying to start auxiliary module \"TLSDumpMasterSecrets\"...\r\n2022-11-04 08:48:53,182 [modules.auxiliary.tlsdump] INFO: lsass.exe found, pid 608\r\n2022-11-04 08:48:53,198 [lib.api.process] INFO: Monitor config for process 608: C:\\tmpjf_aene3\\dll\\608.ini\r\n2022-11-04 08:48:54,213 [lib.api.process] INFO: Option 'tlsdump' with value '1' sent to monitor\r\n2022-11-04 08:48:54,213 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmpjf_aene3\\dll\\YoUAYwO.dll, loader C:\\tmpjf_aene3\\bin\\sDWtcGia.exe\r\n2022-11-04 08:48:54,260 [root] DEBUG: Loader: Injecting process 608 with C:\\tmpjf_aene3\\dll\\YoUAYwO.dll.\r\n2022-11-04 08:48:54,275 [root] DEBUG: Python path set to 'C:\\Users\\razv\\AppData\\Local\\Programs\\Python\\Python310-32'.\r\n2022-11-04 08:48:54,275 [root] DEBUG: TLS secret dump mode enabled.\r\n2022-11-04 08:48:54,275 [root] INFO: Disabling sleep skipping.\r\n2022-11-04 08:48:54,275 [root] DEBUG: Monitor initialised: 64-bit capemon loaded in process 608 at 0x00007FFDB7CC0000, thread 4728, image base 0x00007FF728100000, stack from 0x00000039C4B74000-0x00000039C4B80000\r\n2022-11-04 08:48:54,291 [root] DEBUG: Commandline: C:\\Windows\\system32\\lsass.exe\r\n2022-11-04 08:48:54,291 [root] DEBUG: Post-init: Failed to initialise debugger.\r\n2022-11-04 08:48:54,291 [root] DEBUG: InjectDllViaThread: Successfully injected Dll into process via RtlCreateUserThread.\r\n2022-11-04 08:48:54,291 [root] DEBUG: Successfully injected DLL C:\\tmpjf_aene3\\dll\\YoUAYwO.dll.\r\n2022-11-04 08:48:54,307 [lib.api.process] INFO: Injected into suspended 64-bit process with pid 608\r\n2022-11-04 08:48:54,307 [root] DEBUG: Started auxiliary module \"TLSDumpMasterSecrets\"\r\n2022-11-04 08:48:54,307 [root] DEBUG: Started auxiliary module TLSDumpMasterSecrets\r\n2022-11-04 08:48:54,307 [root] DEBUG: Initialized auxiliary module \"Usage\"\r\n2022-11-04 08:48:54,307 [root] DEBUG: Trying to start auxiliary module \"Usage\"...\r\n2022-11-04 08:48:54,307 [root] DEBUG: Started auxiliary module \"Usage\"\r\n2022-11-04 08:48:54,307 [root] DEBUG: Started auxiliary module Usage\r\n2022-11-04 08:48:54,307 [root] DEBUG: Initialized auxiliary module \"During_script\"\r\n2022-11-04 08:48:54,307 [root] DEBUG: Trying to start auxiliary module \"During_script\"...\r\n2022-11-04 08:48:54,307 [root] DEBUG: Started auxiliary module \"During_script\"\r\n2022-11-04 08:48:54,307 [root] DEBUG: Started auxiliary module During_script\r\n2022-11-04 08:48:59,604 [root] INFO: Restarting WMI Service\r\n2022-11-04 08:49:01,666 [lib.core.compound] INFO: C:\\Users\\razv\\AppData\\Local\\Temp already exists, skipping creation\r\n2022-11-04 08:49:01,713 [lib.api.process] INFO: Successfully executed process from path \"C:\\Users\\razv\\AppData\\Local\\Temp\\test.exe\" with arguments \"\" with pid 5884\r\n2022-11-04 08:49:01,713 [lib.api.process] INFO: Monitor config for process 5884: C:\\tmpjf_aene3\\dll\\5884.ini\r\n2022-11-04 08:49:01,713 [lib.api.process] INFO: 32-bit DLL to inject is C:\\tmpjf_aene3\\dll\\NeKcFs.dll, loader C:\\tmpjf_aene3\\bin\\YSaQTmJ.exe\r\n2022-11-04 08:49:01,776 [root] DEBUG: Loader: Injecting process 5884 (thread 4060) with C:\\tmpjf_aene3\\dll\\NeKcFs.dll.\r\n2022-11-04 08:49:01,776 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\r\n2022-11-04 08:49:01,776 [root] DEBUG: Successfully injected DLL C:\\tmpjf_aene3\\dll\\NeKcFs.dll.\r\n2022-11-04 08:49:01,776 [lib.api.process] INFO: Injected into suspended 32-bit process with pid 5884\r\n2022-11-04 08:49:03,791 [lib.api.process] INFO: Successfully resumed process with pid 5884\r\n2022-11-04 08:49:04,197 [root] DEBUG: Python path set to 'C:\\Users\\razv\\AppData\\Local\\Programs\\Python\\Python310-32'.\r\n2022-11-04 08:49:04,197 [root] DEBUG: Dropped file limit defaulting to 100.\r\n2022-11-04 08:49:04,197 [root] DEBUG: Initialising Yara...\r\n2022-11-04 08:49:04,276 [root] DEBUG: YaraInit: Compiled 18 rule files\r\n2022-11-04 08:49:04,276 [root] DEBUG: YaraInit: Compiled rules saved to file C:\\tmpjf_aene3\\data\\yara\\capemon.yac\r\n2022-11-04 08:49:04,276 [root] DEBUG: InternalYaraScan: Scanning 0x77820000, size 0x1a31c8\r\n2022-11-04 08:49:04,291 [root] DEBUG: AmsiDumper initialised.\r\n2022-11-04 08:49:04,291 [root] DEBUG: Monitor initialised: 32-bit capemon loaded in process 5884 at 0x73a40000, thread 4060, image base 0x400000, stack from 0x616000-0x620000\r\n2022-11-04 08:49:04,291 [root] DEBUG: Commandline: \"C:\\Users\\razv\\AppData\\Local\\Temp\\test.exe\"\r\n2022-11-04 08:49:04,307 [root] DEBUG: hook_api: Warning - CoCreateInstance export address 0x762A56BD differs from GetProcAddress -> 0x759A88C0\r\n2022-11-04 08:49:04,307 [root] DEBUG: hook_api: Warning - CoCreateInstanceEx export address 0x762A56FC differs from GetProcAddress -> 0x759E3020\r\n2022-11-04 08:49:04,307 [root] DEBUG: hook_api: Warning - CoGetClassObject export address 0x762A5C8C differs from GetProcAddress -> 0x759DD870\r\n2022-11-04 08:49:04,354 [root] DEBUG: hook_api: Warning - SetWindowLongW export address 0x76315960 differs from GetProcAddress -> 0x73D459E0\r\n2022-11-04 08:49:04,400 [root] DEBUG: hook_api: Warning - CLSIDFromProgID export address 0x762A4EF6 differs from GetProcAddress -> 0x75954F80\r\n2022-11-04 08:49:04,432 [root] DEBUG: WoW64fix: Windows version 6.2 not supported.\r\n2022-11-04 08:49:04,432 [root] DEBUG: RestoreHeaders: Restored original import table.\r\n2022-11-04 08:49:04,432 [root] INFO: Loaded monitor into process with pid 5884\r\n2022-11-04 08:49:04,432 [root] DEBUG: caller_dispatch: Adding region at 0x00400000 to caller regions list (kernel32::SetUnhandledExceptionFilter returns to 0x004011E8, thread 4060).\r\n2022-11-04 08:49:04,432 [root] DEBUG: YaraScan: Scanning 0x00400000, size 0x10036\r\n2022-11-04 08:49:04,432 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00400000 skipped (kernel32::SetUnhandledExceptionFilter returns to 0x004011E8 mapped as \\Device\\HarddiskVolume2\\Users\\razv\\AppData\\Local\\Temp\\test.exe).\r\n2022-11-04 08:49:04,432 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 600, handle 0x234.\r\n2022-11-04 08:49:04,432 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 608, handle 0x234.\r\n2022-11-04 08:49:04,432 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 756, handle 0x234.\r\n2022-11-04 08:49:04,432 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 764, handle 0x234.\r\n2022-11-04 08:49:04,432 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 772, handle 0x234.\r\n2022-11-04 08:49:04,432 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 872, handle 0x234.\r\n2022-11-04 08:49:04,432 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 976, handle 0x234.\r\n2022-11-04 08:49:04,447 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 8, handle 0x234.\r\n2022-11-04 08:49:04,447 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 492, handle 0x234.\r\n2022-11-04 08:49:04,447 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 712, handle 0x234.\r\n2022-11-04 08:49:04,447 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 916, handle 0x234.\r\n2022-11-04 08:49:04,447 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 1096, handle 0x234.\r\n2022-11-04 08:49:04,447 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 1244, handle 0x234.\r\n2022-11-04 08:49:04,447 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 1452, handle 0x234.\r\n2022-11-04 08:49:04,447 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 1556, handle 0x234.\r\n2022-11-04 08:49:04,447 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 1580, handle 0x234.\r\n2022-11-04 08:49:04,447 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 1612, handle 0x234.\r\n2022-11-04 08:49:04,447 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 1784, handle 0x234.\r\n2022-11-04 08:49:04,447 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 1992, handle 0x234.\r\n2022-11-04 08:49:04,447 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 1568, handle 0x234.\r\n2022-11-04 08:49:04,447 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 2688, handle 0x234.\r\n2022-11-04 08:49:04,447 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 3000, handle 0x234.\r\n2022-11-04 08:49:04,447 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 3024, handle 0x234.\r\n2022-11-04 08:49:04,463 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 2296, handle 0x234.\r\n2022-11-04 08:49:04,463 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 1124, handle 0x234.\r\n2022-11-04 08:49:04,463 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 820, handle 0x234.\r\n2022-11-04 08:49:04,463 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 2444, handle 0x234.\r\n2022-11-04 08:49:04,463 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 2720, handle 0x234.\r\n2022-11-04 08:49:04,463 [root] DEBUG: OpenProcessHandler: Image base for process 2720 (handle 0x234): 0x00A70000.\r\n2022-11-04 08:49:04,463 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 880, handle 0x234.\r\n2022-11-04 08:49:04,463 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 2932, handle 0x234.\r\n2022-11-04 08:49:04,463 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 2056, handle 0x234.\r\n2022-11-04 08:49:04,463 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 3132, handle 0x234.\r\n2022-11-04 08:49:04,463 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 3228, handle 0x234.\r\n2022-11-04 08:49:04,463 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 3304, handle 0x234.\r\n2022-11-04 08:49:04,478 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 3452, handle 0x234.\r\n2022-11-04 08:49:04,478 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 3676, handle 0x234.\r\n2022-11-04 08:49:04,478 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 4012, handle 0x234.\r\n2022-11-04 08:49:04,478 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 3220, handle 0x234.\r\n2022-11-04 08:49:04,478 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 3896, handle 0x234.\r\n2022-11-04 08:49:04,478 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 3108, handle 0x254.\r\n2022-11-04 08:49:04,478 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 4236, handle 0x254.\r\n2022-11-04 08:49:04,478 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 4252, handle 0x254.\r\n2022-11-04 08:49:04,478 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 4484, handle 0x254.\r\n2022-11-04 08:49:04,478 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 4492, handle 0x254.\r\n2022-11-04 08:49:04,478 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 4544, handle 0x254.\r\n2022-11-04 08:49:04,478 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 4756, handle 0x244.\r\n2022-11-04 08:49:04,478 [root] DEBUG: OpenProcessHandler: Image base for process 4756 (handle 0x244): 0x001F0000.\r\n2022-11-04 08:49:04,478 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 4976, handle 0x244.\r\n2022-11-04 08:49:04,478 [root] DEBUG: OpenProcessHandler: Image base for process 4976 (handle 0x244): 0x001F0000.\r\n2022-11-04 08:49:04,494 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 4872, handle 0x244.\r\n2022-11-04 08:49:04,494 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 4868, handle 0x244.\r\n2022-11-04 08:49:04,494 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 3940, handle 0x244.\r\n2022-11-04 08:49:04,494 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 5220, handle 0x244.\r\n2022-11-04 08:49:04,494 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 5276, handle 0x244.\r\n2022-11-04 08:49:04,494 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 5412, handle 0x244.\r\n2022-11-04 08:49:04,494 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 5496, handle 0x244.\r\n2022-11-04 08:49:04,494 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 5712, handle 0x254.\r\n2022-11-04 08:49:04,494 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 5876, handle 0x254.\r\n2022-11-04 08:49:04,494 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 6040, handle 0x254.\r\n2022-11-04 08:49:04,494 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 3372, handle 0x254.\r\n2022-11-04 08:49:04,494 [root] DEBUG: TerminateHandler: Dumping hollowed process 2720, image base 0x00A70000.\r\n2022-11-04 08:49:04,666 [root] DEBUG: DumpProcess: Instantiating PeParser with address: 0x00A70000.\r\n2022-11-04 08:49:04,666 [root] DEBUG: CAPEExceptionFilter: Exception 0xc0000005 caught at RVA 0x49a5a in capemon caught accessing 0xa7003c (expected in memory scans), passing to next handler.\r\n2022-11-04 08:49:04,666 [root] DEBUG: CAPEExceptionFilter: Exception 0xc0000005 caught at RVA 0x4f220 in capemon caught accessing 0xa70000 (expected in memory scans), passing to next handler.\r\n2022-11-04 08:49:04,666 [root] DEBUG: TerminateHandler: Failed to dump PE image.\r\n2022-11-04 08:49:04,666 [root] DEBUG: TerminateHandler: Dumping hollowed process 4756, image base 0x001F0000.\r\n2022-11-04 08:49:04,666 [root] DEBUG: DumpProcess: Instantiating PeParser with address: 0x001F0000.\r\n2022-11-04 08:49:04,666 [root] DEBUG: DumpProcess: Disguised PE image (bad MZ and/or PE headers) at 0x001F0000.\r\n2022-11-04 08:49:04,666 [root] DEBUG: CAPEExceptionFilter: Exception 0xc0000005 caught at RVA 0x4f307 in capemon caught accessing 0x1f003c (expected in memory scans), passing to next handler.\r\n2022-11-04 08:49:04,666 [root] DEBUG: TerminateHandler: Failed to dump PE image.\r\n2022-11-04 08:49:04,666 [root] DEBUG: TerminateHandler: Dumping hollowed process 4976, image base 0x001F0000.\r\n2022-11-04 08:49:04,666 [root] DEBUG: DumpProcess: Instantiating PeParser with address: 0x001F0000.\r\n2022-11-04 08:49:04,666 [root] DEBUG: DumpProcess: Disguised PE image (bad MZ and/or PE headers) at 0x001F0000.\r\n2022-11-04 08:49:04,666 [root] DEBUG: CAPEExceptionFilter: Exception 0xc0000005 caught at RVA 0x4f307 in capemon caught accessing 0x1f003c (expected in memory scans), passing to next handler.\r\n2022-11-04 08:49:04,666 [root] DEBUG: TerminateHandler: Failed to dump PE image.\r\n2022-11-04 08:49:04,682 [root] DEBUG: NtTerminateProcess hook: Debugger shutdown (process 5884).\r\n2022-11-04 08:49:04,682 [root] DEBUG: NtTerminateProcess hook: Attempting to dump process 5884\r\n2022-11-04 08:49:04,682 [root] DEBUG: GetHookCallerBase: thread 4060, return address 0x73A8A44E, allocation base 0x73A40000.\r\n2022-11-04 08:49:04,682 [root] DEBUG: DoProcessDump: Dumping Imagebase at 0x00400000.\r\n2022-11-04 08:49:04,682 [root] DEBUG: DumpImageInCurrentProcess: Attempting to dump virtual PE image.\r\n2022-11-04 08:49:04,682 [root] DEBUG: DumpProcess: Instantiating PeParser with address: 0x00400000.\r\n2022-11-04 08:49:04,682 [root] DEBUG: DumpProcess: Module entry point VA is 0x000012E0.\r\n2022-11-04 08:49:04,729 [lib.common.results] INFO: File C:\\qdVUOyW\\CAPE\\5884_174244184291745112022 size is 30208, Max size: 100000000\r\n2022-11-04 08:49:04,745 [root] DEBUG: DumpProcess: Module image dump success - dump size 0x7600.\r\n2022-11-04 08:49:04,745 [root] DEBUG: CAPEExceptionFilter: Exception 0x80000001 caught at RVA 0x49998 in capemon caught accessing 0x65503c (expected in memory scans), passing to next handler.\r\n2022-11-04 08:49:04,745 [root] DEBUG: CAPEExceptionFilter: Exception 0x80000001 caught at RVA 0x49998 in capemon caught accessing 0x7c503c (expected in memory scans), passing to next handler.\r\n2022-11-04 08:49:04,745 [root] DEBUG: CAPEExceptionFilter: Exception 0x80000001 caught at RVA 0x49998 in capemon caught accessing 0x80503c (expected in memory scans), passing to next handler.\r\n2022-11-04 08:49:04,745 [root] DEBUG: CAPEExceptionFilter: Exception 0x80000001 caught at RVA 0x49998 in capemon caught accessing 0xa1d03c (expected in memory scans), passing to next handler.\r\n2022-11-04 08:49:04,745 [root] DEBUG: CAPEExceptionFilter: Exception 0x80000001 caught at RVA 0x49998 in capemon caught accessing 0xc1d03c (expected in memory scans), passing to next handler.\r\n2022-11-04 08:49:04,745 [root] DEBUG: CAPEExceptionFilter: Exception 0x80000001 caught at RVA 0x49998 in capemon caught accessing 0x23f503c (expected in memory scans), passing to next handler.\r\n2022-11-04 08:49:04,745 [root] DEBUG: CAPEExceptionFilter: Exception 0x80000001 caught at RVA 0x49998 in capemon caught accessing 0x243503c (expected in memory scans), passing to next handler.\r\n2022-11-04 08:49:04,745 [root] DEBUG: CAPEExceptionFilter: Exception 0x80000001 caught at RVA 0x49998 in capemon caught accessing 0x247503c (expected in memory scans), passing to next handler.\r\n2022-11-04 08:49:04,745 [root] DEBUG: CAPEExceptionFilter: Exception 0x80000001 caught at RVA 0x49998 in capemon caught accessing 0x3c0c03c (expected in memory scans), passing to next handler.\r\n2022-11-04 08:49:04,745 [root] DEBUG: CAPEExceptionFilter: Exception 0x80000001 caught at RVA 0x49998 in capemon caught accessing 0x3e0c03c (expected in memory scans), passing to next handler.\r\n2022-11-04 08:49:04,745 [root] DEBUG: CAPEExceptionFilter: Exception 0x80000001 caught at RVA 0x49998 in capemon caught accessing 0x400c03c (expected in memory scans), passing to next handler.\r\n2022-11-04 08:49:04,745 [root] DEBUG: CAPEExceptionFilter: Exception 0x80000001 caught at RVA 0x49998 in capemon caught accessing 0x420c03c (expected in memory scans), passing to next handler.\r\n2022-11-04 08:49:04,745 [root] DEBUG: DLL unloaded from 0x77430000.\r\n2022-11-04 08:49:04,745 [root] DEBUG: TerminateHandler: Dumping hollowed process 2720, image base 0x00A70000.\r\n2022-11-04 08:49:04,745 [root] DEBUG: DumpProcess: Instantiating PeParser with address: 0x00A70000.\r\n2022-11-04 08:49:04,745 [root] DEBUG: CAPEExceptionFilter: Exception 0xc0000005 caught at RVA 0x49a5a in capemon caught accessing 0xa7003c (expected in memory scans), passing to next handler.\r\n2022-11-04 08:49:04,745 [root] DEBUG: CAPEExceptionFilter: Exception 0xc0000005 caught at RVA 0x4f220 in capemon caught accessing 0xa70000 (expected in memory scans), passing to next handler.\r\n2022-11-04 08:49:04,760 [root] DEBUG: TerminateHandler: Failed to dump PE image.\r\n2022-11-04 08:49:04,760 [root] DEBUG: TerminateHandler: Dumping hollowed process 4756, image base 0x001F0000.\r\n2022-11-04 08:49:04,760 [root] DEBUG: DumpProcess: Instantiating PeParser with address: 0x001F0000.\r\n2022-11-04 08:49:04,760 [root] DEBUG: DumpProcess: Disguised PE image (bad MZ and/or PE headers) at 0x001F0000.\r\n2022-11-04 08:49:04,760 [root] DEBUG: CAPEExceptionFilter: Exception 0xc0000005 caught at RVA 0x4f307 in capemon caught accessing 0x1f003c (expected in memory scans), passing to next handler.\r\n2022-11-04 08:49:04,760 [root] DEBUG: TerminateHandler: Failed to dump PE image.\r\n2022-11-04 08:49:04,760 [root] DEBUG: TerminateHandler: Dumping hollowed process 4976, image base 0x001F0000.\r\n2022-11-04 08:49:04,760 [root] DEBUG: DumpProcess: Instantiating PeParser with address: 0x001F0000.\r\n2022-11-04 08:49:04,760 [root] DEBUG: DumpProcess: Disguised PE image (bad MZ and/or PE headers) at 0x001F0000.\r\n2022-11-04 08:49:04,760 [root] DEBUG: CAPEExceptionFilter: Exception 0xc0000005 caught at RVA 0x4f307 in capemon caught accessing 0x1f003c (expected in memory scans), passing to next handler.\r\n2022-11-04 08:49:04,854 [root] DEBUG: TerminateHandler: Failed to dump PE image.\r\n2022-11-04 08:49:04,963 [root] INFO: Process with pid 5884 has terminated\r\n2022-11-04 08:49:10,948 [root] INFO: Process list is empty, terminating analysis\r\n2022-11-04 08:49:11,963 [root] INFO: Created shutdown mutex\r\n2022-11-04 08:49:12,979 [root] INFO: Shutting down package\r\n2022-11-04 08:49:12,979 [root] INFO: Stopping auxiliary modules\r\n2022-11-04 08:49:12,979 [root] INFO: Stopped auxiliary modules: <Browser(Thread-3, stopped 4188)>\r\n2022-11-04 08:49:13,135 [lib.common.results] INFO: File C:\\curtain.log size is 120508, Max size: 100000000\r\n2022-11-04 08:49:13,150 [root] INFO: Stopped auxiliary modules: <Curtain(Thread-4, stopped 2156)>\r\n2022-11-04 08:49:13,150 [root] INFO: Stopped auxiliary modules: <Evtx(Thread-7, stopped 3360)>\r\n2022-11-04 08:49:13,150 [root] INFO: Stopped auxiliary modules: <Human(Thread-8, started 2548)>\r\n2022-11-04 08:49:13,150 [root] INFO: Stopped auxiliary modules: <Pre_script(Thread-9, initial)>\r\n2022-11-04 08:49:13,182 [lib.common.results] WARNING: File C:\\qdVUOyW\\bin\\procmon.xml doesn't exist anymore\r\n2022-11-04 08:49:13,182 [root] INFO: Stopped auxiliary modules: <Procmon(Thread-10, stopped 5736)>\r\n2022-11-04 08:49:13,182 [root] INFO: Stopped auxiliary modules: <Screenshots(Thread-11, started 1640)>\r\n2022-11-04 08:49:13,213 [root] WARNING: Cannot terminate auxiliary module Sysmon: Thread.__init__() was not called\r\n2022-11-04 08:49:13,213 [root] INFO: Stopped auxiliary modules: <Usage(Thread-23, stopped 5332)>\r\n2022-11-04 08:49:13,213 [root] INFO: Stopped auxiliary modules: <During_script(Thread-24, initial)>\r\n2022-11-04 08:49:13,213 [root] INFO: Finishing auxiliary modules\r\n2022-11-04 08:49:13,213 [root] INFO: Shutting down pipe server and dumping dropped files\r\n2022-11-04 08:49:13,213 [root] WARNING: Folder at path \"C:\\qdVUOyW\\debugger\" does not exist, skipping\r\n2022-11-04 08:49:13,213 [root] WARNING: Folder at path \"C:\\qdVUOyW\\tlsdump\" does not exist, skipping\r\n2022-11-04 08:49:13,213 [root] INFO: Analysis completed\r\n```\r\nOne thing I noted is that **up to this point**, there is no `process-task_id.log` file, like it was never triggered. After executing the `process.py` utility, the file is created.\r\nNow, if I'm to manually process the task again (task id is 20):\r\n```\r\n$ sudo -u cape poetry run python3 process.py 20 -d\r\nXLMMacroDeobfuscator: pywin32 is not installed (only is required if you want to use MS Excel)\r\nOPTIONAL! Missed dependency: pip3 install https://github.com/CAPESandbox/peepdf/archive/20eda78d7d77fc5b3b652ffc2d8a5b0af796e3dd.zip#egg=peepdf==0.4.2\r\n2022-11-04 08:58:38,812 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"CAPE\" on analysis at \"/opt/CAPEv2/storage/analyses/20\"\r\n2022-11-04 08:58:39,709 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"AnalysisInfo\" on analysis at \"/opt/CAPEv2/storage/analyses/20\"\r\n2022-11-04 08:58:39,746 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"BehaviorAnalysis\" on analysis at \"/opt/CAPEv2/storage/analyses/20\"\r\n2022-11-04 08:58:39,781 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Debug\" on analysis at \"/opt/CAPEv2/storage/analyses/20\"\r\n2022-11-04 08:58:39,783 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Dropped\" on analysis at \"/opt/CAPEv2/storage/analyses/20\"\r\n2022-11-04 08:58:39,783 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Markov\" on analysis at \"/opt/CAPEv2/storage/analyses/20\" <------ This is my module\r\n[...] (debug messages)\r\n2022-11-04 08:58:40,040 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"NetworkAnalysis\" on analysis at \"/opt/CAPEv2/storage/analyses/20\"\r\n2022-11-04 08:58:40,040 [Task 20] [modules.processing.network] WARNING: The PCAP file does not exist at path \"/opt/CAPEv2/storage/analyses/20/dump.pcap\"\r\n2022-11-04 08:58:40,040 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"ProcDump\" on analysis at \"/opt/CAPEv2/storage/analyses/20\"\r\n2022-11-04 08:58:40,453 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Suricata\" on analysis at \"/opt/CAPEv2/storage/analyses/20\"\r\n2022-11-04 08:58:40,454 [Task 20] [modules.processing.suricata] WARNING: Unable to Run Suricata: Pcap file /opt/CAPEv2/storage/analyses/20/dump.pcap does not exist\r\n2022-11-04 08:58:40,454 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"TargetInfo\" on analysis at \"/opt/CAPEv2/storage/analyses/20\"\r\n2022-11-04 08:58:40,836 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"script_log_processing\" on analysis at \"/opt/CAPEv2/storage/analyses/20\"\r\n2022-11-04 08:58:40,836 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"ProcessMemory\" on analysis at \"/opt/CAPEv2/storage/analyses/20\"\r\n2022-11-04 08:58:40,851 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Applying signature overlays for signatures: creates_exe\r\n2022-11-04 08:58:40,852 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running 289 evented signatures\r\n2022-11-04 08:58:40,852 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- compression\r\n2022-11-04 08:58:40,853 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- decryption\r\n2022-11-04 08:58:40,853 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- doppelganging\r\n2022-11-04 08:58:40,853 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- evil_grab\r\n2022-11-04 08:58:40,853 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_inter_process\r\n2022-11-04 08:58:40,853 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_create_remote_thread\r\n2022-11-04 08:58:40,853 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_process_hollowing\r\n2022-11-04 08:58:40,854 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_set_window_long\r\n2022-11-04 08:58:40,854 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- plugx\r\n2022-11-04 08:58:40,854 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- reg_binary\r\n2022-11-04 08:58:40,854 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- transacted_hollowing\r\n2022-11-04 08:58:40,854 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- unpacker\r\n2022-11-04 08:58:40,854 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- alphacrypt_behavior\r\n2022-11-04 08:58:40,854 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- andromeda_behavior\r\n2022-11-04 08:58:40,854 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- anomalous_deletefile\r\n2022-11-04 08:58:40,854 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_360_libs\r\n2022-11-04 08:58:40,854 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_ahnlab_libs\r\n2022-11-04 08:58:40,854 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_avast_libs\r\n2022-11-04 08:58:40,854 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_bitdefender_libs\r\n2022-11-04 08:58:40,854 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_bullgaurd_libs\r\n2022-11-04 08:58:40,854 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_emsisoft_libs\r\n2022-11-04 08:58:40,854 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_qurb_libs\r\n2022-11-04 08:58:40,854 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_servicestop\r\n2022-11-04 08:58:40,854 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_addvectoredexceptionhandler\r\n2022-11-04 08:58:40,854 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_apioverride_libs\r\n2022-11-04 08:58:40,854 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_checkremotedebuggerpresent\r\n2022-11-04 08:58:40,854 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_debugactiveprocess\r\n2022-11-04 08:58:40,854 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_gettickcount\r\n2022-11-04 08:58:40,854 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_guardpages\r\n2022-11-04 08:58:40,854 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_ntcreatethreadex\r\n2022-11-04 08:58:40,854 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_nthookengine_libs\r\n2022-11-04 08:58:40,854 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_ntsetinformationthread\r\n2022-11-04 08:58:40,854 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_outputdebugstring\r\n2022-11-04 08:58:40,854 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_setunhandledexceptionfilter\r\n2022-11-04 08:58:40,855 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_windows\r\n2022-11-04 08:58:40,855 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiemu_wine_func\r\n2022-11-04 08:58:40,855 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_check_userdomain\r\n2022-11-04 08:58:40,855 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_cuckoo\r\n2022-11-04 08:58:40,855 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_cuckoocrash\r\n2022-11-04 08:58:40,855 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_foregroundwindows\r\n2022-11-04 08:58:40,855 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_mouse_hook\r\n2022-11-04 08:58:40,855 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_restart\r\n2022-11-04 08:58:40,855 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_sboxie_libs\r\n2022-11-04 08:58:40,855 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_sboxie_objects\r\n2022-11-04 08:58:40,855 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_script_timer\r\n2022-11-04 08:58:40,855 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_sleep\r\n2022-11-04 08:58:40,855 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_sunbelt_libs\r\n2022-11-04 08:58:40,855 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_suspend\r\n2022-11-04 08:58:40,855 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_unhook\r\n2022-11-04 08:58:40,855 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_directory_objects\r\n2022-11-04 08:58:40,855 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_generic_disk\r\n2022-11-04 08:58:40,855 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_generic_disk_setupapi\r\n2022-11-04 08:58:40,855 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_generic_scsi\r\n2022-11-04 08:58:40,855 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_generic_services\r\n2022-11-04 08:58:40,855 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_network_adapters\r\n2022-11-04 08:58:40,855 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_vbox_libs\r\n2022-11-04 08:58:40,855 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_vbox_provname\r\n2022-11-04 08:58:40,855 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_vbox_window\r\n2022-11-04 08:58:40,856 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_vmware_events\r\n2022-11-04 08:58:40,856 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_vmware_libs\r\n2022-11-04 08:58:40,856 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- api_spamming\r\n2022-11-04 08:58:40,856 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- banker_prinimalka\r\n2022-11-04 08:58:40,856 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- bcdedit_command\r\n2022-11-04 08:58:40,856 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- betabot_behavior\r\n2022-11-04 08:58:40,856 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- bootkit\r\n2022-11-04 08:58:40,856 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- potential_overwrite_mbr\r\n2022-11-04 08:58:40,856 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- suspicious_ioctl_scsipassthough\r\n2022-11-04 08:58:40,856 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- browser_needed\r\n2022-11-04 08:58:40,856 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- browser_scanbox\r\n2022-11-04 08:58:40,856 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- firefox_disables_process_tab\r\n2022-11-04 08:58:40,856 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- regsvr32_squiblydoo_dll_load\r\n2022-11-04 08:58:40,856 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- uac_bypass_cmstp\r\n2022-11-04 08:58:40,856 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- uac_bypass_eventvwr\r\n2022-11-04 08:58:40,856 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- cerber_behavior\r\n2022-11-04 08:58:40,856 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- chimera_behavior\r\n2022-11-04 08:58:40,856 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- clickfraud_cookies\r\n2022-11-04 08:58:40,856 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- clickfraud_volume\r\n2022-11-04 08:58:40,856 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- dotnet_code_compile\r\n2022-11-04 08:58:40,856 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- creates_largekey\r\n2022-11-04 08:58:40,856 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- creates_nullvalue\r\n2022-11-04 08:58:40,856 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- lsass_credential_dumping\r\n2022-11-04 08:58:40,856 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- critical_process\r\n2022-11-04 08:58:40,856 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- generates_crypto_key\r\n2022-11-04 08:58:40,856 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- cryptowall_behavior\r\n2022-11-04 08:58:40,856 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- cve_2014_6332\r\n2022-11-04 08:58:40,857 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- cve_2015_2419_js\r\n2022-11-04 08:58:40,857 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- cve_2016-0189\r\n2022-11-04 08:58:40,857 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- cve_2016_7200\r\n2022-11-04 08:58:40,857 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- dead_connect\r\n2022-11-04 08:58:40,857 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- dead_link\r\n2022-11-04 08:58:40,857 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- debugs_self\r\n2022-11-04 08:58:40,857 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- decoy_document\r\n2022-11-04 08:58:40,857 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- decoy_image\r\n2022-11-04 08:58:40,857 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- deletes_self\r\n2022-11-04 08:58:40,857 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- deletes_shadow_copies\r\n2022-11-04 08:58:40,857 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- deletes_system_state_backup\r\n2022-11-04 08:58:40,857 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- dep_bypass\r\n2022-11-04 08:58:40,857 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- dep_disable\r\n2022-11-04 08:58:40,857 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- disables_mappeddrives_autodisconnect\r\n2022-11-04 08:58:40,857 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- disables_spdy\r\n2022-11-04 08:58:40,857 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- disables_wfp\r\n2022-11-04 08:58:40,857 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- dll_load_uncommon_file_types\r\n2022-11-04 08:58:40,857 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- document_script_exe_drop\r\n2022-11-04 08:58:40,857 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- guloader_apis\r\n2022-11-04 08:58:40,857 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- dridex_behavior\r\n2022-11-04 08:58:40,857 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- driver_load\r\n2022-11-04 08:58:40,857 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- exe_dropper_js\r\n2022-11-04 08:58:40,857 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- dynamic_function_loading\r\n2022-11-04 08:58:40,857 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- angler_js\r\n2022-11-04 08:58:40,857 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- gondad_js\r\n2022-11-04 08:58:40,857 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- heapspray_js\r\n2022-11-04 08:58:40,857 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- java_js\r\n2022-11-04 08:58:40,857 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- neutrino_js\r\n2022-11-04 08:58:40,858 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- nuclear_js\r\n2022-11-04 08:58:40,858 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- rig_js\r\n2022-11-04 08:58:40,858 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- silverlight_js\r\n2022-11-04 08:58:40,858 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- sundown_js\r\n2022-11-04 08:58:40,858 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- virtualcheck_js\r\n2022-11-04 08:58:40,858 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- encrypted_ioc\r\n2022-11-04 08:58:40,858 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- exec_crash\r\n2022-11-04 08:58:40,858 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- process_creation_suspicious_location\r\n2022-11-04 08:58:40,858 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- exploit_getbasekerneladdress\r\n2022-11-04 08:58:40,858 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- exploit_gethaldispatchtable\r\n2022-11-04 08:58:40,858 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- exploit_heapspray\r\n2022-11-04 08:58:40,858 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- koadic_apis\r\n2022-11-04 08:58:40,858 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- koadic_network_activity\r\n2022-11-04 08:58:40,858 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- downloads_from_filehosting\r\n2022-11-04 08:58:40,858 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- generic_phish\r\n2022-11-04 08:58:40,858 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- gootkit_behavior\r\n2022-11-04 08:58:40,858 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- h1n1_behavior\r\n2022-11-04 08:58:40,858 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- hancitor_behavior\r\n2022-11-04 08:58:40,858 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- hawkeye_behavior\r\n2022-11-04 08:58:40,858 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- http_request\r\n2022-11-04 08:58:40,858 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- https_urls\r\n2022-11-04 08:58:40,858 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- infostealer_browser\r\n2022-11-04 08:58:40,858 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- infostealer_browser_password\r\n2022-11-04 08:58:40,858 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- cryptbot_network\r\n2022-11-04 08:58:40,858 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- infostealer_keylog\r\n2022-11-04 08:58:40,858 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- masslogger_artifacts\r\n2022-11-04 08:58:40,858 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- masslogger_version\r\n2022-11-04 08:58:40,859 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- purplewave_network_activity\r\n2022-11-04 08:58:40,859 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- quilclipper_behavior\r\n2022-11-04 08:58:40,859 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- raccoon_behavior\r\n2022-11-04 08:58:40,859 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- captures_screenshot\r\n2022-11-04 08:58:40,859 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- vidar_behavior\r\n2022-11-04 08:58:40,859 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_createremotethread\r\n2022-11-04 08:58:40,859 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_explorer\r\n2022-11-04 08:58:40,859 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_needextension\r\n2022-11-04 08:58:40,859 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_network_traffic\r\n2022-11-04 08:58:40,859 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_runpe\r\n2022-11-04 08:58:40,859 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_rwx\r\n2022-11-04 08:58:40,859 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_themeinitapihook\r\n2022-11-04 08:58:40,859 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- internet_dropper\r\n2022-11-04 08:58:40,859 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- ipc_namedpipe\r\n2022-11-04 08:58:40,859 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- js_phish\r\n2022-11-04 08:58:40,859 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- js_suspicious_redirect\r\n2022-11-04 08:58:40,859 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- kazybot_behavior\r\n2022-11-04 08:58:40,859 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- kelihos_behavior\r\n2022-11-04 08:58:40,859 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- kibex_behavior\r\n2022-11-04 08:58:40,859 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- kovter_behavior\r\n2022-11-04 08:58:40,859 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- locky_behavior\r\n2022-11-04 08:58:40,859 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- malicious_dynamic_function_loading\r\n2022-11-04 08:58:40,859 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- encrypt_pcinfo\r\n2022-11-04 08:58:40,859 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- encrypt_data_agenttesla_http\r\n2022-11-04 08:58:40,859 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- encrypt_data_agentteslat2_http\r\n2022-11-04 08:58:40,860 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- encrypt_data_nanocore\r\n2022-11-04 08:58:40,860 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- mimics_agent\r\n2022-11-04 08:58:40,860 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- mimics_filetime\r\n2022-11-04 08:58:40,860 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- quilclipper_behavior\r\n2022-11-04 08:58:40,860 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- modify_desktop_wallpaper\r\n2022-11-04 08:58:40,860 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- modify_zoneid_ads\r\n2022-11-04 08:58:40,860 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- move_file_on_reboot\r\n2022-11-04 08:58:40,860 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- multiple_useragents\r\n2022-11-04 08:58:40,860 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_anomaly\r\n2022-11-04 08:58:40,860 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_bind\r\n2022-11-04 08:58:40,860 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_archive\r\n2022-11-04 08:58:40,860 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_free_webshoting\r\n2022-11-04 08:58:40,860 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_generic\r\n2022-11-04 08:58:40,860 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_temp_urldns\r\n2022-11-04 08:58:40,860 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_pastesite\r\n2022-11-04 08:58:40,860 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_payload\r\n2022-11-04 08:58:40,860 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_socialmedia\r\n2022-11-04 08:58:40,860 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_telegram\r\n2022-11-04 08:58:40,860 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_tempstorage\r\n2022-11-04 08:58:40,860 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_temp_urldns\r\n2022-11-04 08:58:40,860 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_urlshortener\r\n2022-11-04 08:58:40,860 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_useragent\r\n2022-11-04 08:58:40,860 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_smtps_exfil\r\n2022-11-04 08:58:40,860 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_smtps_generic\r\n2022-11-04 08:58:40,860 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_dns_idn\r\n2022-11-04 08:58:40,860 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_dns_suspicious_querytype\r\n2022-11-04 08:58:40,860 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_dns_tunneling_request\r\n2022-11-04 08:58:40,861 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_document_http\r\n2022-11-04 08:58:40,861 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- explorer_http\r\n2022-11-04 08:58:40,861 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_fake_useragent\r\n2022-11-04 08:58:40,861 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_document_file\r\n2022-11-04 08:58:40,861 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_downloader_exe\r\n2022-11-04 08:58:40,861 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_tor\r\n2022-11-04 08:58:40,861 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- nymaim_behavior\r\n2022-11-04 08:58:40,861 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_com_load\r\n2022-11-04 08:58:40,861 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_dotnet_load\r\n2022-11-04 08:58:40,861 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_mshtml_load\r\n2022-11-04 08:58:40,861 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_vb_load\r\n2022-11-04 08:58:40,861 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_wmi_load\r\n2022-11-04 08:58:40,861 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_cve2017_11882\r\n2022-11-04 08:58:40,861 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_cve2017_11882_network\r\n2022-11-04 08:58:40,861 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_cve_2021_40444\r\n2022-11-04 08:58:40,861 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_cve_2021_40444_m2\r\n2022-11-04 08:58:40,861 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_flash_load\r\n2022-11-04 08:58:40,861 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_postscript\r\n2022-11-04 08:58:40,861 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_suspicious_processes\r\n2022-11-04 08:58:40,861 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_write_exe\r\n2022-11-04 08:58:40,861 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- packer_themida\r\n2022-11-04 08:58:40,861 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- persistence_autorun\r\n2022-11-04 08:58:40,861 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- persistence_autorun_tasks\r\n2022-11-04 08:58:40,861 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- persistence_bootexecute\r\n2022-11-04 08:58:40,861 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- persistence_registry_script\r\n2022-11-04 08:58:40,862 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- pony_behavior\r\n2022-11-04 08:58:40,862 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- powershell_network_connection\r\n2022-11-04 08:58:40,862 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- powershell_download\r\n2022-11-04 08:58:40,862 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- powershell_request\r\n2022-11-04 08:58:40,862 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- createtoolhelp32snapshot_module_enumeration\r\n2022-11-04 08:58:40,862 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- enumerates_running_processes\r\n2022-11-04 08:58:40,862 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- process_interest\r\n2022-11-04 08:58:40,862 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- process_needed\r\n2022-11-04 08:58:40,862 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- mass_data_encryption\r\n2022-11-04 08:58:40,862 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- ransomware_dmalocker\r\n2022-11-04 08:58:40,862 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- ransomware_file_modifications\r\n2022-11-04 08:58:40,862 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- ransomware_message\r\n2022-11-04 08:58:40,862 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- nemty_network_activity\r\n2022-11-04 08:58:40,862 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- nemty_note\r\n2022-11-04 08:58:40,862 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- sodinokibi_behavior\r\n2022-11-04 08:58:40,862 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- stop_ransomware_registry\r\n2022-11-04 08:58:40,862 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- blackrat_apis\r\n2022-11-04 08:58:40,862 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- blackrat_network_activity\r\n2022-11-04 08:58:40,862 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- blackrat_registry_keys\r\n2022-11-04 08:58:40,862 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- dcrat_behavior\r\n2022-11-04 08:58:40,862 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- karagany_system_event_objects\r\n2022-11-04 08:58:40,862 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- rat_luminosity\r\n2022-11-04 08:58:40,862 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- rat_nanocore\r\n2022-11-04 08:58:40,862 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- netwire_behavior\r\n2022-11-04 08:58:40,862 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- obliquerat_network_activity\r\n2022-11-04 08:58:40,862 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- orcusrat_behavior\r\n2022-11-04 08:58:40,862 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- trochilusrat_apis\r\n2022-11-04 08:58:40,863 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- reads_self\r\n2022-11-04 08:58:40,863 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- recon_beacon\r\n2022-11-04 08:58:40,863 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- recon_programs\r\n2022-11-04 08:58:40,863 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- recon_systeminfo\r\n2022-11-04 08:58:40,863 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- accesses_recyclebin\r\n2022-11-04 08:58:40,863 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- removes_zoneid_ads\r\n2022-11-04 08:58:40,863 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- script_created_process\r\n2022-11-04 08:58:40,863 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- script_network_activity\r\n2022-11-04 08:58:40,863 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- suspicious_js_script\r\n2022-11-04 08:58:40,863 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- secure_login_phishing\r\n2022-11-04 08:58:40,863 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- securityxploded_modules\r\n2022-11-04 08:58:40,863 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- get_clipboard_data\r\n2022-11-04 08:58:40,863 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- sets_autoconfig_url\r\n2022-11-04 08:58:40,863 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- shifu_behavior\r\n2022-11-04 08:58:40,863 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- spoofs_procname\r\n2022-11-04 08:58:40,863 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- stack_pivot\r\n2022-11-04 08:58:40,863 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- stack_pivot_file_created\r\n2022-11-04 08:58:40,863 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- stack_pivot_process_create\r\n2022-11-04 08:58:40,863 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- set_clipboard_data\r\n2022-11-04 08:58:40,863 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- stealth_childproc\r\n2022-11-04 08:58:40,863 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- stealth_file\r\n2022-11-04 08:58:40,863 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- stealth_network\r\n2022-11-04 08:58:40,863 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- stealth_system_procname\r\n2022-11-04 08:58:40,863 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- stealth_timeout\r\n2022-11-04 08:58:40,863 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- stealth_window\r\n2022-11-04 08:58:40,863 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- terminates_remote_process\r\n2022-11-04 08:58:40,864 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- tinba_behavior\r\n2022-11-04 08:58:40,864 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- trickbot_task_delete\r\n2022-11-04 08:58:40,864 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- upatre_behavior\r\n2022-11-04 08:58:40,864 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- ursnif_behavior\r\n2022-11-04 08:58:40,864 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- user_enum\r\n2022-11-04 08:58:40,864 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- vawtrak_behavior\r\n2022-11-04 08:58:40,864 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- vawtrak_behavior\r\n2022-11-04 08:58:40,864 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- virus\r\n2022-11-04 08:58:40,864 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- neshta_files\r\n2022-11-04 08:58:40,864 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- neshta_regkeys\r\n2022-11-04 08:58:40,864 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- webmail_phish\r\n2022-11-04 08:58:40,864 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- persists_dev_util\r\n2022-11-04 08:58:40,864 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- spawns_dev_util\r\n2022-11-04 08:58:40,864 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- alters_windows_utility\r\n2022-11-04 08:58:40,864 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- overwrites_accessibility_utility\r\n2022-11-04 08:58:40,864 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- wiper_zeroedbytes\r\n2022-11-04 08:58:40,864 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- wmi_create_process\r\n2022-11-04 08:58:40,864 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t |-- wmi_script_process\r\n2022-11-04 08:58:40,864 [Task 20] [lib.cuckoo.core.plugins] DEBUG: \t `-- win32_process_create\r\n2022-11-04 08:58:40,898 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running non-evented signatures\r\n2022-11-04 08:58:40,898 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cape_detected_threat\"\r\n2022-11-04 08:58:40,898 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"accesses_mailslot\"\r\n2022-11-04 08:58:40,898 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"accesses_netlogon_regkey\"\r\n2022-11-04 08:58:40,898 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"accesses_sysvol\"\r\n2022-11-04 08:58:40,899 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"writes_sysvol\"\r\n2022-11-04 08:58:40,899 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"adds_admin_user\"\r\n2022-11-04 08:58:40,899 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"adds_user\"\r\n2022-11-04 08:58:40,899 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"overwrites_admin_password\"\r\n2022-11-04 08:58:40,899 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antianalysis_detectfile\"\r\n2022-11-04 08:58:40,900 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antianalysis_detectreg\"\r\n2022-11-04 08:58:40,901 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_attachment_manager\"\r\n2022-11-04 08:58:40,902 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_detectfile\"\r\n2022-11-04 08:58:40,903 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_detectreg\"\r\n2022-11-04 08:58:40,906 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_srp\"\r\n2022-11-04 08:58:40,906 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_whitespace\"\r\n2022-11-04 08:58:40,906 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antidebug_devices\"\r\n2022-11-04 08:58:40,906 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiemu_windefend\"\r\n2022-11-04 08:58:40,907 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiemu_wine_reg\"\r\n2022-11-04 08:58:40,907 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_cuckoo_files\"\r\n2022-11-04 08:58:40,907 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_fortinet_files\"\r\n2022-11-04 08:58:40,907 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_joe_anubis_files\"\r\n2022-11-04 08:58:40,907 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_sboxie_mutex\"\r\n2022-11-04 08:58:40,908 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_sunbelt_files\"\r\n2022-11-04 08:58:40,908 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_threattrack_files\"\r\n2022-11-04 08:58:40,908 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivirus_clamav\"\r\n2022-11-04 08:58:40,908 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivirus_virustotal\"\r\n2022-11-04 08:58:40,908 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_bochs_keys\"\r\n2022-11-04 08:58:40,908 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_generic_bios\"\r\n2022-11-04 08:58:40,909 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_generic_cpu\"\r\n2022-11-04 08:58:40,909 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_generic_diskreg\"\r\n2022-11-04 08:58:40,909 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_generic_system\"\r\n2022-11-04 08:58:40,909 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_hyperv_keys\"\r\n2022-11-04 08:58:40,909 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_parallels_keys\"\r\n2022-11-04 08:58:40,910 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vbox_devices\"\r\n2022-11-04 08:58:40,910 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vbox_files\"\r\n2022-11-04 08:58:40,911 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vbox_keys\"\r\n2022-11-04 08:58:40,911 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vmware_devices\"\r\n2022-11-04 08:58:40,911 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vmware_files\"\r\n2022-11-04 08:58:40,912 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vmware_keys\"\r\n2022-11-04 08:58:40,912 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vmware_mutexes\"\r\n2022-11-04 08:58:40,912 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vpc_files\"\r\n2022-11-04 08:58:40,912 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vpc_keys\"\r\n2022-11-04 08:58:40,913 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vpc_mutex\"\r\n2022-11-04 08:58:40,913 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_xen_keys\"\r\n2022-11-04 08:58:40,913 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"gulpix_behavior\"\r\n2022-11-04 08:58:40,913 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ketrican_regkeys\"\r\n2022-11-04 08:58:40,914 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"okrum_mutexes\"\r\n2022-11-04 08:58:40,914 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bad_certs\"\r\n2022-11-04 08:58:40,914 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bad_ssl_certs\"\r\n2022-11-04 08:58:40,914 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_cridex\"\r\n2022-11-04 08:58:40,914 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"geodo_banking_trojan\"\r\n2022-11-04 08:58:40,915 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_spyeye_mutexes\"\r\n2022-11-04 08:58:40,915 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_zeus_mutex\"\r\n2022-11-04 08:58:40,916 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_zeus_p2p\"\r\n2022-11-04 08:58:40,916 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_zeus_url\"\r\n2022-11-04 08:58:40,916 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bitcoin_opencl\"\r\n2022-11-04 08:58:40,916 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"accesses_primary_patition\"\r\n2022-11-04 08:58:40,916 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"direct_hdd_access\"\r\n2022-11-04 08:58:40,917 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"physical_drive_access\"\r\n2022-11-04 08:58:40,917 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_athenahttp\"\r\n2022-11-04 08:58:40,917 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_dirtjumper\"\r\n2022-11-04 08:58:40,917 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_drive\"\r\n2022-11-04 08:58:40,917 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_drive2\"\r\n2022-11-04 08:58:40,918 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_madness\"\r\n2022-11-04 08:58:40,918 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_russkill\"\r\n2022-11-04 08:58:40,918 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"browser_addon\"\r\n2022-11-04 08:58:40,918 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"browser_helper_object\"\r\n2022-11-04 08:58:40,918 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_proxy\"\r\n2022-11-04 08:58:40,919 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"browser_security\"\r\n2022-11-04 08:58:40,920 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"browser_startpage\"\r\n2022-11-04 08:58:40,920 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ie_disables_process_tab\"\r\n2022-11-04 08:58:40,920 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"odbcconf_bypass\"\r\n2022-11-04 08:58:40,920 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"squiblydoo_bypass\"\r\n2022-11-04 08:58:40,920 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"squiblytwo_bypass\"\r\n2022-11-04 08:58:40,920 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bypass_firewall\"\r\n2022-11-04 08:58:40,920 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uac_bypass_cmstpcom\"\r\n2022-11-04 08:58:40,921 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uac_bypass_delegateexecute_sdclt\"\r\n2022-11-04 08:58:40,921 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uac_bypass_fodhelper\"\r\n2022-11-04 08:58:40,921 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cape_extracted_content\"\r\n2022-11-04 08:58:40,921 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cape_extracted_config\"\r\n2022-11-04 08:58:40,921 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cape_extracted_content\"\r\n2022-11-04 08:58:40,921 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"carberp_mutex\"\r\n2022-11-04 08:58:40,922 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"clears_logs\"\r\n2022-11-04 08:58:40,922 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_obfuscation\"\r\n2022-11-04 08:58:40,922 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_switches\"\r\n2022-11-04 08:58:40,922 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_terminate\"\r\n2022-11-04 08:58:40,922 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_forfiles_wildcard\"\r\n2022-11-04 08:58:40,922 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_http_link\"\r\n2022-11-04 08:58:40,922 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_long_string\"\r\n2022-11-04 08:58:40,923 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_reversed_http_link\"\r\n2022-11-04 08:58:40,923 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"long_commandline\"\r\n2022-11-04 08:58:40,923 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_renamed_commandline\"\r\n2022-11-04 08:58:40,923 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"codelux_behavior\"\r\n2022-11-04 08:58:40,923 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_account_discovery_cmd\"\r\n2022-11-04 08:58:40,923 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_info_discovery_cmd\"\r\n2022-11-04 08:58:40,923 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_info_discovery_pwsh\"\r\n2022-11-04 08:58:40,924 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_network_discovery_cmd\"\r\n2022-11-04 08:58:40,924 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_network_discovery_pwsh\"\r\n2022-11-04 08:58:40,924 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_user_discovery_cmd\"\r\n2022-11-04 08:58:40,924 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"copies_self\"\r\n2022-11-04 08:58:40,924 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"enables_wdigest\"\r\n2022-11-04 08:58:40,924 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"file_credential_store_access\"\r\n2022-11-04 08:58:40,924 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"file_credential_store_write\"\r\n2022-11-04 08:58:40,925 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"registry_credential_dumping\"\r\n2022-11-04 08:58:40,925 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"registry_credential_store_access\"\r\n2022-11-04 08:58:40,925 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"registry_lsa_secrets_access\"\r\n2022-11-04 08:58:40,925 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cryptomining_stratum_command\"\r\n2022-11-04 08:58:40,925 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cryptopool_domains\"\r\n2022-11-04 08:58:40,925 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cypherit_mutexes\"\r\n2022-11-04 08:58:40,926 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"darkcomet_regkeys\"\r\n2022-11-04 08:58:40,926 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"datop_loader\"\r\n2022-11-04 08:58:40,926 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"deepfreeze_mutex\"\r\n2022-11-04 08:58:40,926 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"deletes_executed_files\"\r\n2022-11-04 08:58:40,926 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_app_launch\"\r\n2022-11-04 08:58:40,927 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_auto_app_termination\"\r\n2022-11-04 08:58:40,927 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_appv_virtualization\"\r\n2022-11-04 08:58:40,927 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_backups\"\r\n2022-11-04 08:58:40,927 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_browser_warn\"\r\n2022-11-04 08:58:40,928 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_context_menus\"\r\n2022-11-04 08:58:40,928 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_cpl_disable\"\r\n2022-11-04 08:58:40,928 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_event_logging\"\r\n2022-11-04 08:58:40,929 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_folder_options\"\r\n2022-11-04 08:58:40,929 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_notificationcenter\"\r\n2022-11-04 08:58:40,929 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_power_options\"\r\n2022-11-04 08:58:40,929 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_restore_default_state\"\r\n2022-11-04 08:58:40,930 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_run_command\"\r\n2022-11-04 08:58:40,930 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_security\"\r\n2022-11-04 08:58:40,930 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_smartscreen\"\r\n2022-11-04 08:58:40,930 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_startmenu_search\"\r\n2022-11-04 08:58:40,931 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_system_restore\"\r\n2022-11-04 08:58:40,931 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_uac\"\r\n2022-11-04 08:58:40,931 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_wer\"\r\n2022-11-04 08:58:40,931 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_windows_defender\"\r\n2022-11-04 08:58:40,931 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_windows_defender_logging\"\r\n2022-11-04 08:58:40,932 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_windows_defender_contextmenu\"\r\n2022-11-04 08:58:40,932 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"windows_defender_powershell\"\r\n2022-11-04 08:58:40,932 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_windows_file_protection\"\r\n2022-11-04 08:58:40,933 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_windowsupdate\"\r\n2022-11-04 08:58:40,933 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_winfirewall\"\r\n2022-11-04 08:58:40,933 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"andromut_mutexes\"\r\n2022-11-04 08:58:40,933 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"downloader_cabby\"\r\n2022-11-04 08:58:40,934 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"phorpiex_mutexes\"\r\n2022-11-04 08:58:40,934 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"protonbot_mutexes\"\r\n2022-11-04 08:58:40,934 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"driver_filtermanager\"\r\n2022-11-04 08:58:40,934 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dropper\"\r\n2022-11-04 08:58:40,934 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"excel4_macro_urls\"\r\n2022-11-04 08:58:40,935 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"spooler_access\"\r\n2022-11-04 08:58:40,935 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"spooler_svc_start\"\r\n2022-11-04 08:58:40,935 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"family_proxyback\"\r\n2022-11-04 08:58:40,935 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"mapped_drives_uac\"\r\n2022-11-04 08:58:40,935 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"hides_recycle_bin_icon\"\r\n2022-11-04 08:58:40,936 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"apocalypse_stealer_file_behavior\"\r\n2022-11-04 08:58:40,936 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"arkei_files\"\r\n2022-11-04 08:58:40,936 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"azorult_mutexes\"\r\n2022-11-04 08:58:40,936 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_bitcoin\"\r\n2022-11-04 08:58:40,937 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_cookies\"\r\n2022-11-04 08:58:40,938 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cryptbot_files\"\r\n2022-11-04 08:58:40,938 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"echelon_files\"\r\n2022-11-04 08:58:40,939 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_ftp\"\r\n2022-11-04 08:58:40,940 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_im\"\r\n2022-11-04 08:58:40,941 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_mail\"\r\n2022-11-04 08:58:40,941 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"masslogger_files\"\r\n2022-11-04 08:58:40,941 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"poullight_files\"\r\n2022-11-04 08:58:40,942 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"purplewave_mutexes\"\r\n2022-11-04 08:58:40,942 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"quilclipper_mutexes\"\r\n2022-11-04 08:58:40,942 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"qulab_files\"\r\n2022-11-04 08:58:40,943 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"qulab_mutexes\"\r\n2022-11-04 08:58:40,943 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_kraken_mutexes\"\r\n2022-11-04 08:58:40,943 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"locker_regedit\"\r\n2022-11-04 08:58:40,943 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"locker_taskmgr\"\r\n2022-11-04 08:58:40,944 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ie_martian_children\"\r\n2022-11-04 08:58:40,944 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_martian_children\"\r\n2022-11-04 08:58:40,944 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"mimics_extension\"\r\n2022-11-04 08:58:40,944 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"mimics_icon\"\r\n2022-11-04 08:58:40,944 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"masquerade_process_name\"\r\n2022-11-04 08:58:40,945 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"mimikatz_modules\"\r\n2022-11-04 08:58:40,945 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_certs\"\r\n2022-11-04 08:58:40,945 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dotnet_clr_usagelog_regkeys\"\r\n2022-11-04 08:58:40,945 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_hostfile\"\r\n2022-11-04 08:58:40,946 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_oem_information\"\r\n2022-11-04 08:58:40,946 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_security_center_warnings\"\r\n2022-11-04 08:58:40,946 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_uac_prompt\"\r\n2022-11-04 08:58:40,947 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_country_distribution\"\r\n2022-11-04 08:58:40,947 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_multiple_direct_ip_connections\"\r\n2022-11-04 08:58:40,947 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_cnc_http\"\r\n2022-11-04 08:58:40,947 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_http_post\"\r\n2022-11-04 08:58:40,947 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_ip_exe\"\r\n2022-11-04 08:58:40,947 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dga\"\r\n2022-11-04 08:58:40,947 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dga_fraunhofer\"\r\n2022-11-04 08:58:40,948 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_blockchain\"\r\n2022-11-04 08:58:40,948 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_opennic\"\r\n2022-11-04 08:58:40,948 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_paste_site\"\r\n2022-11-04 08:58:40,948 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_reverse_proxy\"\r\n2022-11-04 08:58:40,948 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_temp_file_storage\"\r\n2022-11-04 08:58:40,948 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_temp_urldns\"\r\n2022-11-04 08:58:40,948 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_url_shortener\"\r\n2022-11-04 08:58:40,948 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_doh_tls\"\r\n2022-11-04 08:58:40,948 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_tld\"\r\n2022-11-04 08:58:40,949 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dyndns\"\r\n2022-11-04 08:58:40,949 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_excessive_udp\"\r\n2022-11-04 08:58:40,949 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_http\"\r\n2022-11-04 08:58:40,949 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_icmp\"\r\n2022-11-04 08:58:40,949 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_irc\"\r\n2022-11-04 08:58:40,949 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_open_proxy\"\r\n2022-11-04 08:58:40,949 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_p2p\"\r\n2022-11-04 08:58:40,949 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_questionable_http_path\"\r\n2022-11-04 08:58:40,949 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_questionable_https_path\"\r\n2022-11-04 08:58:40,950 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_smtp\"\r\n2022-11-04 08:58:40,950 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_tor_service\"\r\n2022-11-04 08:58:40,950 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_torgateway\"\r\n2022-11-04 08:58:40,950 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_code_page\"\r\n2022-11-04 08:58:40,950 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_addinloading\"\r\n2022-11-04 08:58:40,950 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_perfkey\"\r\n2022-11-04 08:58:40,950 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro\"\r\n2022-11-04 08:58:40,951 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"changes_trust_center_settings\"\r\n2022-11-04 08:58:40,951 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_vba_trust_access\"\r\n2022-11-04 08:58:40,951 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro_autoexecution\"\r\n2022-11-04 08:58:40,951 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro_ioc\"\r\n2022-11-04 08:58:40,951 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro_malicious_prediction\"\r\n2022-11-04 08:58:40,951 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro_suspicious\"\r\n2022-11-04 08:58:40,951 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_aslr_bypass\"\r\n2022-11-04 08:58:40,951 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_anomaly_characterset\"\r\n2022-11-04 08:58:40,952 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_anomaly_version\"\r\n2022-11-04 08:58:40,952 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_embedded_content\"\r\n2022-11-04 08:58:40,952 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_embedded_office_file\"\r\n2022-11-04 08:58:40,952 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_exploit_static\"\r\n2022-11-04 08:58:40,952 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_security\"\r\n2022-11-04 08:58:40,952 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_anomalous_feature\"\r\n2022-11-04 08:58:40,952 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_dde_command\"\r\n2022-11-04 08:58:40,952 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"origin_langid\"\r\n2022-11-04 08:58:40,953 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"origin_resource_langid\"\r\n2022-11-04 08:58:40,953 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"overlay\"\r\n2022-11-04 08:58:40,953 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_unknown_pe_section_name\"\r\n2022-11-04 08:58:40,953 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_armadillo_mutex\"\r\n2022-11-04 08:58:40,953 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_armadillo_regkey\"\r\n2022-11-04 08:58:40,953 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_aspack\"\r\n2022-11-04 08:58:40,953 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_aspirecrypt\"\r\n2022-11-04 08:58:40,953 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_bedsprotector\"\r\n2022-11-04 08:58:40,954 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_confuser\"\r\n2022-11-04 08:58:40,954 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_enigma\"\r\n2022-11-04 08:58:40,954 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_entropy\"\r\n2022-11-04 08:58:40,954 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_mpress\"\r\n2022-11-04 08:58:40,954 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_nate\"\r\n2022-11-04 08:58:40,954 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_nspack\"\r\n2022-11-04 08:58:40,954 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_smartassembly\"\r\n2022-11-04 08:58:40,954 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_spices\"\r\n2022-11-04 08:58:40,954 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_themida\"\r\n2022-11-04 08:58:40,954 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_titan\"\r\n2022-11-04 08:58:40,955 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_upx\"\r\n2022-11-04 08:58:40,955 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_vmprotect\"\r\n2022-11-04 08:58:40,955 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_yoda\"\r\n2022-11-04 08:58:40,955 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"pdf_annot_urls\"\r\n2022-11-04 08:58:40,955 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_ads\"\r\n2022-11-04 08:58:40,955 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_safeboot\"\r\n2022-11-04 08:58:40,955 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_ifeo\"\r\n2022-11-04 08:58:40,956 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_slient_process_exit\"\r\n2022-11-04 08:58:40,956 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_rdp_registry\"\r\n2022-11-04 08:58:40,956 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_rdp_shadowing\"\r\n2022-11-04 08:58:40,956 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_service\"\r\n2022-11-04 08:58:40,956 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_shim_database\"\r\n2022-11-04 08:58:40,957 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"polymorphic\"\r\n2022-11-04 08:58:40,957 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powerpool_mutexes\"\r\n2022-11-04 08:58:40,957 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_scriptblock_logging\"\r\n2022-11-04 08:58:40,957 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_command_suspicious\"\r\n2022-11-04 08:58:40,957 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_renamed\"\r\n2022-11-04 08:58:40,957 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_reversed\"\r\n2022-11-04 08:58:40,957 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_variable_obfuscation\"\r\n2022-11-04 08:58:40,958 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"punch_plus_plus_pcres\"\r\n2022-11-04 08:58:40,958 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"prevents_safeboot\"\r\n2022-11-04 08:58:40,958 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_process_discovery\"\r\n2022-11-04 08:58:40,958 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"procmem_yara\"\r\n2022-11-04 08:58:40,958 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cryptomix_mutexes\"\r\n2022-11-04 08:58:40,958 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dharma_mutexes\"\r\n2022-11-04 08:58:40,958 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_extensions\"\r\n2022-11-04 08:58:40,960 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_files\"\r\n2022-11-04 08:58:40,963 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"fonix_mutexes\"\r\n2022-11-04 08:58:40,963 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"gandcrab_mutexes\"\r\n2022-11-04 08:58:40,963 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"germanwiper_mutexes\"\r\n2022-11-04 08:58:40,964 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"medusalocker_mutexes\"\r\n2022-11-04 08:58:40,964 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"medusalocker_regkeys\"\r\n2022-11-04 08:58:40,964 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"nemty_mutexes\"\r\n2022-11-04 08:58:40,964 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"nemty_regkeys\"\r\n2022-11-04 08:58:40,965 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"pysa_mutexes\"\r\n2022-11-04 08:58:40,965 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_radamant\"\r\n2022-11-04 08:58:40,965 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_recyclebin\"\r\n2022-11-04 08:58:40,965 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"revil_mutexes\"\r\n2022-11-04 08:58:40,966 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_revil_regkey\"\r\n2022-11-04 08:58:40,966 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"satan_mutexes\"\r\n2022-11-04 08:58:40,967 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"snake_ransom_mutexes\"\r\n2022-11-04 08:58:40,967 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"stop_ransom_mutexes\"\r\n2022-11-04 08:58:40,967 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"stop_ransomware_cmd\"\r\n2022-11-04 08:58:40,967 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_beebus_mutexes\"\r\n2022-11-04 08:58:40,968 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"blacknet_mutexes\"\r\n2022-11-04 08:58:40,968 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"blackrat_mutexes\"\r\n2022-11-04 08:58:40,968 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"crat_mutexes\"\r\n2022-11-04 08:58:40,968 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dcrat_files\"\r\n2022-11-04 08:58:40,968 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dcrat_mutexes\"\r\n2022-11-04 08:58:40,969 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_fynloski_mutexes\"\r\n2022-11-04 08:58:40,969 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"karagany_files\"\r\n2022-11-04 08:58:40,969 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"limerat_mutexes\"\r\n2022-11-04 08:58:40,969 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"limerat_regkeys\"\r\n2022-11-04 08:58:40,969 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"lodarat_file_behavior\"\r\n2022-11-04 08:58:40,969 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modirat_behavior\"\r\n2022-11-04 08:58:40,970 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"njrat_regkeys\"\r\n2022-11-04 08:58:40,970 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"obliquerat_files\"\r\n2022-11-04 08:58:40,970 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"obliquerat_mutexes\"\r\n2022-11-04 08:58:40,970 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"parallax_mutexes\"\r\n2022-11-04 08:58:40,971 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_pcclient\"\r\n2022-11-04 08:58:40,971 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_plugx_mutexes\"\r\n2022-11-04 08:58:40,971 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_poisonivy_mutexes\"\r\n2022-11-04 08:58:40,971 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_quasar_mutexes\"\r\n2022-11-04 08:58:40,971 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ratsnif_mutexes\"\r\n2022-11-04 08:58:40,971 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_senna_mutexes\"\r\n2022-11-04 08:58:40,972 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_spynet\"\r\n2022-11-04 08:58:40,972 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"venomrat_mutexes\"\r\n2022-11-04 08:58:40,972 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"warzonerat_files\"\r\n2022-11-04 08:58:40,972 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"warzonerat_regkeys\"\r\n2022-11-04 08:58:40,973 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"xpertrat_files\"\r\n2022-11-04 08:58:40,973 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"xpertrat_mutexes\"\r\n2022-11-04 08:58:40,973 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_xtreme_mutexes\"\r\n2022-11-04 08:58:40,973 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"recon_checkip\"\r\n2022-11-04 08:58:40,973 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"recon_fingerprint\"\r\n2022-11-04 08:58:40,974 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"remcos_files\"\r\n2022-11-04 08:58:40,974 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"remcos_mutexes\"\r\n2022-11-04 08:58:40,974 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"remcos_regkeys\"\r\n2022-11-04 08:58:40,974 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rdptcp_key\"\r\n2022-11-04 08:58:40,974 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_rdp_clip\"\r\n2022-11-04 08:58:40,975 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_remote_desktop_session\"\r\n2022-11-04 08:58:40,975 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_networking_icon\"\r\n2022-11-04 08:58:40,975 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_pinned_programs\"\r\n2022-11-04 08:58:40,975 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_security_maintenance_icon\"\r\n2022-11-04 08:58:40,975 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_startmenu_defaults\"\r\n2022-11-04 08:58:40,976 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_username_startmenu\"\r\n2022-11-04 08:58:40,976 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"spicyhotpot_behavior\"\r\n2022-11-04 08:58:40,976 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"sniffer_winpcap\"\r\n2022-11-04 08:58:40,977 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"spreading_autoruninf\"\r\n2022-11-04 08:58:40,977 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_authenticode\"\r\n2022-11-04 08:58:40,977 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"invalid_authenticode_signature\"\r\n2022-11-04 08:58:40,977 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_dotnet_anomaly\"\r\n2022-11-04 08:58:40,977 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_java\"\r\n2022-11-04 08:58:40,977 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_pdf\"\r\n2022-11-04 08:58:40,977 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_pe_anomaly\"\r\n2022-11-04 08:58:40,977 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"pe_compile_timestomping\"\r\n2022-11-04 08:58:40,977 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_pe_pdbpath\"\r\n2022-11-04 08:58:40,978 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_rat_config\"\r\n2022-11-04 08:58:40,978 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_versioninfo_anomaly\"\r\n2022-11-04 08:58:40,978 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_hidden_extension\"\r\n2022-11-04 08:58:40,978 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_hiddenreg\"\r\n2022-11-04 08:58:40,978 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_hide_notifications\"\r\n2022-11-04 08:58:40,979 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_webhistory\"\r\n2022-11-04 08:58:40,979 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suricata_alert\"\r\n2022-11-04 08:58:40,979 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"sysinternals_psexec\"\r\n2022-11-04 08:58:40,979 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"sysinternals_tools\"\r\n2022-11-04 08:58:40,979 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"tampers_etw\"\r\n2022-11-04 08:58:40,980 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"lsa_tampering\"\r\n2022-11-04 08:58:40,980 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"tampers_powershell_logging\"\r\n2022-11-04 08:58:40,980 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"targeted_flame\"\r\n2022-11-04 08:58:40,980 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"territorial_disputes_sigs\"\r\n2022-11-04 08:58:40,982 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"trickbot_mutex\"\r\n2022-11-04 08:58:40,982 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"fleercivet_mutex\"\r\n2022-11-04 08:58:40,982 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"lokibot_mutexes\"\r\n2022-11-04 08:58:40,982 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ursnif_behavior\"\r\n2022-11-04 08:58:40,983 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"troldesh_behavior\"\r\n2022-11-04 08:58:40,983 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"upatre_files\"\r\n2022-11-04 08:58:40,983 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"upatre_files\"\r\n2022-11-04 08:58:40,983 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_adfind\"\r\n2022-11-04 08:58:40,984 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_ms_protocol\"\r\n2022-11-04 08:58:40,984 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"neshta_mutexes\"\r\n2022-11-04 08:58:40,984 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"renamer_mutexes\"\r\n2022-11-04 08:58:40,984 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_devicetree_1\"\r\n2022-11-04 08:58:40,984 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_handles_1\"\r\n2022-11-04 08:58:40,984 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_ldrmodules_1\"\r\n2022-11-04 08:58:40,984 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_ldrmodules_2\"\r\n2022-11-04 08:58:40,984 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_malfind_1\"\r\n2022-11-04 08:58:40,985 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_malfind_2\"\r\n2022-11-04 08:58:40,985 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_modscan_1\"\r\n2022-11-04 08:58:40,985 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_svcscan_1\"\r\n2022-11-04 08:58:40,985 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_svcscan_2\"\r\n2022-11-04 08:58:40,985 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_svcscan_3\"\r\n2022-11-04 08:58:40,985 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"owa_web_shell_files\"\r\n2022-11-04 08:58:40,985 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"web_shell_files\"\r\n2022-11-04 08:58:40,985 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"web_shell_processes\"\r\n2022-11-04 08:58:40,986 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"whois_create\"\r\n2022-11-04 08:58:40,986 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dotnet_csc_build\"\r\n2022-11-04 08:58:40,986 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"multiple_explorer_instances\"\r\n2022-11-04 08:58:40,986 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"script_tool_executed\"\r\n2022-11-04 08:58:40,986 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_certutil_use\"\r\n2022-11-04 08:58:40,986 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_command_tools\"\r\n2022-11-04 08:58:40,986 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_mpcmdrun_use\"\r\n2022-11-04 08:58:40,986 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_ping_use\"\r\n2022-11-04 08:58:40,986 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_powershell_copyitem\"\r\n2022-11-04 08:58:40,987 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities\"\r\n2022-11-04 08:58:40,987 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_appcmd\"\r\n2022-11-04 08:58:40,987 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_csvde_ldifde\"\r\n2022-11-04 08:58:40,987 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_cipher\"\r\n2022-11-04 08:58:40,987 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_clickonce\"\r\n2022-11-04 08:58:40,987 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_dsquery\"\r\n2022-11-04 08:58:40,987 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_esentutl\"\r\n2022-11-04 08:58:40,987 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_finger\"\r\n2022-11-04 08:58:40,988 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_mode\"\r\n2022-11-04 08:58:40,988 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_ntdsutil\"\r\n2022-11-04 08:58:40,988 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_nltest\"\r\n2022-11-04 08:58:40,988 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_to_create_scheduled_task\"\r\n2022-11-04 08:58:40,988 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_xcopy\"\r\n2022-11-04 08:58:40,988 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"wmic_command_suspicious\"\r\n2022-11-04 08:58:40,988 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"scrcons_wmi_script_consumer\"\r\n2022-11-04 08:58:40,988 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Running signature \"allaple_mutexes\"\r\n2022-11-04 08:58:40,988 [Task 20] [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"antidebug_setunhandledexceptionfilter\"\r\n2022-11-04 08:58:40,989 [Task 20] [root] DEBUG: Finished processing task\r\n```\r\nIt seems to me like the process.py is never triggered for some reason, unless I manually do so with `process.py`. What could be causing this problem?\r\n\nComment: The only log that is relevant is the process log. The tip I gave you would produce debug output which would have been helpful. cuckoo log and bson are irrelevant.\r\n\r\nThe processing should run as a distinct service - sounds like it's not running.\r\n\r\nsystemctl status cape-processor\r\n\r\nsudo systemctl start cape-processor\nComment: Understood. I checked the status of the service, restarted it and resubmitted. \r\n```\r\n$ systemctl status cape-processor.service \r\n\u25cf cape-processor.service - CAPE report processor\r\n     Loaded: loaded (/lib/systemd/system/cape-processor.service; enabled; vendor preset: enabled)\r\n     Active: active (running) since Tue 2022-10-04 14:25:08 UTC; 1 month 0 days ago\r\n       Docs: https://github.com/kevoreilly/CAPEv2\r\n   Main PID: 1712 (python)\r\n      Tasks: 20 (limit: 18844)\r\n     Memory: 585.2M\r\n        CPU: 2h 5min 51.702s\r\n     CGroup: /system.slice/cape-processor.service\r\n             \u251c\u2500  1712 /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python process.py -p7 auto -pt 900\r\n             \u251c\u2500297487 /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python process.py -p7 auto -pt 900\r\n             \u251c\u2500297488 /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python process.py -p7 auto -pt 900\r\n             \u251c\u2500297489 /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python process.py -p7 auto -pt 900\r\n             \u251c\u2500297490 /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python process.py -p7 auto -pt 900\r\n             \u251c\u2500297491 /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python process.py -p7 auto -pt 900\r\n             \u251c\u2500297492 /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python process.py -p7 auto -pt 900\r\n             \u2514\u2500510428 /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python process.py -p7 auto -pt 900\r\n\r\nnov 03 16:49:51 rdp05 python3[1712]: 2022-11-03 16:49:51,805 [Task 19] [root] INFO: Processing analysis data for Task #19\r\nnov 03 16:49:52 rdp05 python3[297492]: 2022-11-03 16:49:52,781 [Task 19] [modules.processing.network] WARNING: The PCAP file does >\r\nnov 03 16:49:53 rdp05 python3[297492]: 2022-11-03 16:49:53,230 [Task 19] [modules.processing.suricata] WARNING: Unable to Run Suri>\r\nnov 03 16:49:54 rdp05 python3[499345]: QStandardPaths: XDG_RUNTIME_DIR not set, defaulting to '/tmp/runtime-cape'\r\nnov 03 16:49:55 rdp05 python3[1712]: 2022-11-03 16:49:55,051 [Task 19] [root] INFO: Reports generation completed\r\nnov 04 08:49:31 rdp05 python3[1712]: 2022-11-04 08:49:31,429 [Task 20] [root] INFO: Processing analysis data for Task #20\r\nnov 04 08:49:32 rdp05 python3[297493]: 2022-11-04 08:49:32,403 [Task 20] [modules.processing.network] WARNING: The PCAP file does >\r\nnov 04 08:49:32 rdp05 python3[297493]: 2022-11-04 08:49:32,739 [Task 20] [modules.processing.suricata] WARNING: Unable to Run Suri>\r\nnov 04 08:49:33 rdp05 python3[510414]: QStandardPaths: XDG_RUNTIME_DIR not set, defaulting to '/tmp/runtime-cape'\r\nnov 04 08:49:34 rdp05 python3[1712]: 2022-11-04 08:49:34,282 [Task 20] [root] INFO: Reports generation completed\r\n```\r\nStatus seems ok. I restarted it. \r\n```\r\n$ sudo systemctl restart cape-processor.service \r\n$ systemctl status cape-processor.service \r\n\u25cf cape-processor.service - CAPE report processor\r\n     Loaded: loaded (/lib/systemd/system/cape-processor.service; enabled; vendor preset: enabled)\r\n     Active: active (running) since Fri 2022-11-04 09:26:08 UTC; 2s ago\r\n       Docs: https://github.com/kevoreilly/CAPEv2\r\n   Main PID: 511091 (python)\r\n      Tasks: 16 (limit: 18844)\r\n     Memory: 247.0M\r\n        CPU: 3.124s\r\n     CGroup: /system.slice/cape-processor.service\r\n             \u2514\u2500511091 /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python process.py -p7 auto -pt 900\r\n```\r\nI resubmitted the sample using `submit.py -d path_to_file.exe`. This is the output of `process.log`:\r\n```\r\n2022-11-04 09:26:09,777 [root] INFO: Processing analysis data\r\n2022-11-04 09:28:55,143 [Task 21] [root] INFO: Processing analysis data for Task #21\r\n2022-11-04 09:28:56,361 [Task 21] [modules.processing.network] WARNING: The PCAP file does not exist at path \"/opt/CAPEv2/storage/analyses/21/dump.pcap\"\r\n2022-11-04 09:28:56,811 [Task 21] [modules.processing.suricata] WARNING: Unable to Run Suricata: Pcap file /opt/CAPEv2/storage/analyses/21/dump.pcap does not exist\r\n2022-11-04 09:28:58,739 [Task 21] [root] INFO: Reports generation completed\r\n```\r\nThere is nothing of interest, apparently. **HOWEVER**, this time my processing modules seem to be triggering. \r\n**Apparently restarting the service solved the problem**. I tried several samples now and if the module fails the error is now printed in the `process.log` file. If, on the other hand, everything works just fine, nothing is printed. \r\n\r\nThank you for you help.\nComment: You are welcome\nComment: I have the same problem, cape is working but not creating pcap file, can you help to solve this problem? \r\nThanks in advance\nComment: I think this is not the correct issue to ask about PCAP generation. However, please make sure the user you use to launch cape has permission to execute tcpdump. Additionally, use `whereis tcpdump` and make sure the same path is specified in the configuration file of CAPE. \r\n\r\nUpon making chanes, restart CAPE with systemctl. \nComment: I checked, I manually run tcpdump and it works, but when I run the analysis I don't get a report for network analaysis. \r\n\r\nThat is my process.log:\r\n\r\n022-11-16 23:05:09,272 [Task 45] [modules.processing.behavior] INFO: Analysis results folder does not contain any file or injection was disabled\r\n2022-11-16 23:05:09,279 [Task 45] [modules.processing.network] WARNING: The PCAP file does not exist at path \"/opt/CAPEv2/storage/analyses/45/dump.pcap\"\r\n2022-11-16 23:05:09,280 [Task 45] [modules.processing.suricata] WARNING: Unable to Run Suricata: Pcap file /opt/CAPEv2/storage/analyses/45/dump.pcap does not exist\r\n![cape4](https://user-images.githubusercontent.com/96567320/203390202-0a2a15e4-6677-4394-abc8-f5a5391eefc6.jpg)\r\n\nComment: You have to make sure the user running cape is able to run tcpdump (it is necessary the same as your main user). If you followed the docs, it is probably `cape`. \r\n\r\nThe logs you provided aren't of use. \nComment: I can run tcpdump with both users.  Did you manage to run tcpdump and did you have a problem with it? \nComment: Yes. Please, before creating several issues about the same topic or flooding a closed one, make sure you search for already existing issues. Check #1234 out. \nComment: Thanks a lot for the advice, but I've already read all the mistakes, I wouldn't ask for help without trying. How did you solve the problem?\r\nThanks in advanced\nComment: https://github.com/kevoreilly/CAPEv2/issues/1234#issuecomment-1304881990 \r\nWhere you set interface for internet? In which configuration file?\nComment: Doesn't even seem like you bothered to properly read the documentation. \r\n\r\nhttps://capev2.readthedocs.io/en/latest/installation/host/configuration.html#routing-conf\r\n\r\n\"The conf/routing.conf file contains information about how the guest VM is connected (or not) to the Internet via the Host\"\nComment: Thanks anyway, you did not understand the question in the right way, greetings!",
+  "Title: How to capture output (stdout) of samples?\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I did read the README!\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nI expect the output of the sample to be saved either to a specific file or the generated report.\r\n\r\n# Current Behavior\r\n\r\nI'd like to know if the output of the samples is captured somehow. I've been reading the docs but I don't seem to find how to do it anywhere.\r\n\r\nDuring the analysis, if the sample being analyzed sends something to the standard output, I'd like to inspect it.\r\n\r\nI'm executing CAPEv2 in my local machine, and I'm running the latest version.\r\n\nComment: @RazviOverflow: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: Interesting question - I assume the WriteConsole API hooks should capture output in the behavior log, but the proof is in the pudding.",
+  "Title: Question. How to capture output (stdout)?\nBody: \r\nI'd like to know if the output of the samples is captured somehow. I've been reading the docs but I don't seem to find how to do it anywhere. \r\n\r\nDuring the analysis, if the sample being analyzed sends something to the standard output, I'd like to inspect it.\r\n\r\nI'm executing CAPEv2 in my local machine, and I'm running the latest version. \nComment: @RazviOverflow: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: @RazviOverflow I know that there is a signature in Cuckoo Sandbox that outputs the stdout of a sample https://github.com/cuckoosandbox/community/blob/master/modules/signatures/windows/windows_console.py\r\n\r\nBut it has not been ported to CAPE. Feel free to port it and then you should be able to see the output from a sample!\nComment: Alright. Thank you for the info, and sorry for the duplicate. ",
+  "Title: General question. Can html.py script be editing to launch html files with Microsoft Edge or a different browser. \nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n* Free support from doomedraven ended - no whiskey, no support. For updates check the documentation.\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\n.html file launches with another browser such as chrome, Firefox, or edge.  \r\n\r\n# Current Behavior\r\n\r\n.html file launches with Internet Explorer. \r\n\r\n# Failure Information (for bugs)\r\n\r\nN/A\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Normal Analysis Steps\r\n\r\n## Context\r\n\r\nI want to be able to launch .htm & .html files with a browser other than Edge. No rush on this I just want to know if it is possible and maybe a hint to what needs changed to make it happen. Possibly edit the html.py script? \r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 20.06, Windows 10 21h2. Azure Machinery\r\n\r\n\r\n## Failure Logs\r\n\r\nNo errors\r\n\nComment: There are a variety of analysis packages available (see https://github.com/kevoreilly/CAPEv2/tree/master/analyzer/windows/modules/packages) and the packages relevant to your question are these:\r\n- Internet Explorer: https://github.com/kevoreilly/CAPEv2/blob/master/analyzer/windows/modules/packages/html.py and https://github.com/kevoreilly/CAPEv2/blob/master/analyzer/windows/modules/packages/ie.py\r\n- Chrome: https://github.com/kevoreilly/CAPEv2/blob/master/analyzer/windows/modules/packages/chrome.py\r\n- Firefox: https://github.com/kevoreilly/CAPEv2/blob/master/analyzer/windows/modules/packages/firefox.py\r\n- Edge: https://github.com/kevoreilly/CAPEv2/blob/master/analyzer/windows/modules/packages/edge.py\r\n\r\nYou can change what package you want for analysis by setting the `package` submission parameter: https://capev2.readthedocs.io/en/latest/usage/submit.html#submission-utility\nComment: \"I want to be able to launch .htm & .html files with a browser other than Edge. No rush on this I just want to know if it is possible and maybe a hint to what needs changed to make it happen. Possibly edit the html.py script?\" \r\n\r\nTo correct what I said before:\r\n\r\n\"I want to be able to launch .htm & .html files with a browser other than (IE) not Edge. No rush on this I just want to know if it is possible and maybe a hint to what needs changed to make it happen. Possibly edit the html.py script?\" \r\n\r\nSo, using the submit.py script I have tried to launch .html and .htm files with edge and firefox but it still uses IE. I am probably just not understanding it as always. I will play around with it and try to figure it out. Thanks for your help.\r\n\r\n\nComment: Yes the default package for .htm and .html files is the `html` package. If you want a different browser and are using the submit tool, you need to specify the package with `--package \"chrome\"` for example\nComment: That makes sense! I am using a different method and simply auto submitting files using a python script with curl command from the sandbox client from a submit folder. Probably not the conventional way for doing things. I will work on this and let you know if I have any success. Thanks again. \nComment: Having some success. I was able to get the html file to launch in Firefox & Chrome. However, Firefox only runs an analysis for maybe 10 seconds and crashes out and the VM rebuilds. Chrome really doesn't play well with it either. Do you know which older version of firefox and chrome I should use? Right now, I just have the newest version installed.  \nComment: You can close this one if you want. I am gold. \nComment: Happy days!",
+  "Title: Fix default proxy value\nBody: If proxy does not have a default value, the script will show this error:  \r\n`TypeError: flare_capa() missing 1 required positional argument: 'proxy'`  \nComment: Thank you ",
+  "Title: Updating the signature names to match the CAPE reporting module\nBody: Closes https://github.com/kevoreilly/CAPEv2/issues/1226",
+  "Title: Different signature names\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n* Free support from doomedraven ended - no whiskey, no support. For updates check the documentation.\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. step 1\r\n2. step 2\r\n3. you get it...\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 16.04, Windows 10, macOS 10.12.3\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\r\n## Real issue\r\nSorry I can not follow the issue template. I want to ask a fix suggestion.  \r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/modules/reporting/submitCAPE.py#L309  \r\nThis is \"Unpacker\"  \r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/modules/signatures/CAPE.py#L125  \r\nThis is \"unpacker\"  \r\n\r\nAnd I noticed CAPE.py is changed by @cccs-kevin in this issue:  \r\nhttps://github.com/kevoreilly/CAPEv2/commit/9d5a7febfd4b92393c4e1b3ed93e74806612ae3d  \r\n\r\nI want to know how to fix it properly. \"Unpacker\" to \"unpacker\" or \"unpacker\" to \"Unpacker\"?  \nComment: @qux-bbb: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: Hi @qux-bbb, let's go with \"unpacker\" to \"Unpacker\"\nComment: I'll fix\nComment: submitCAPE will hopefully soon be deprecated",
+  "Title: When the URL is specified as chrome, the win10 virtual machine will not open chrome\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n* Free support from doomedraven ended - no whiskey, no support. For updates check the documentation.\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ ] I am running the latest version\r\n- [ ] I did read the README!\r\n- [ ] I checked the documentation and found no answer\r\n- [ ] I checked to make sure that this issue has not already been filed\r\n- [ ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ ] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\nI submitted a URL designated as chrome for analysis. It should open the chrome in my virtual machine to access the URL.\r\n\r\n\r\n# Current Behavior \r\n\r\nAfter the analysis starts, it opens my virtual machine, but it does not open Chrome or any browser.\r\n\r\n\r\n# Failure Information (for bugs)\r\nI checked the source code of the file and found that after changing the path, I submitted the analysis again, and the chrome in the virtual machine was normally opened to access the URL.The source file path isCAPEv2/analyzer/windows/modules/packages/chrome.py,I set the chrome=self.get_ The path (\"chrome. exe\") is changed to chrome=self. get_ path(\"Google\").This is the log after I changed the source code.\r\n[60-analysis.log](https://github.com/kevoreilly/CAPEv2/files/9887435/60-analysis.log)\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. step 1\r\n2. step 2\r\n3. you get it...\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. \r\nOS Version: Ubuntu 18.04\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 16.04, Windows 10, macOS 10.12.3\r\n\r\n## Failure Logs\r\n\r\n[59-analysis.log](https://github.com/kevoreilly/CAPEv2/files/9887420/59-analysis.log)\r\n\r\n\nComment: Hello Yesisyes, thank you for the logs. In each log we can see that chrome.exe is launched successfully, therefore I doubt that the path in the package is ultimately responsible here.\r\n\r\nIn the log of job 60, there are 25 chrome processes spawned. This suggests you are not running the latest monitor version. When did you last update? \nComment: > Hello Yesisyes, thank you for the logs. In each log we can see that chrome.exe is launched successfully, therefore I doubt that the path in the package is ultimately responsible here.\n> \n> In the log of job 60, there are 25 chrome processes spawned. This suggests you are not running the latest monitor version. When did you last update? \n\nThanks for the prompt answer, but before I changed the path, I could not see the screen of the virtual machine opened chrome browser. After I changed the path, I could see the chrome browser opened in my virtual machine. My last update was a month ago. I had to change Chrome.exe to Google to see the chrome viewer accessing the URL, which confused me.\nComment: And, can I apply for the authorization of www.capesandbox.com official website? My github account is still frozen when logging into the official website. I want to download some samples from the official website to verify my custom Settings for the sandbox\nComment: I'm surprised you got back to me so quickly, as far as I know it's 7:00 AM in the US, buddy did you stay up all night or did you get up early and start working?\ud83d\ude02\ud83e\udd23\nComment: Heheh what makes you think I'm in the US....?!\r\n\r\n\"A month ago\" is the wrong answer! You need to be bang up-to-date to raise an issue that we are gonna work on, otherwise who's to say we aren't wasting our time looking into something that is already fixed?!\r\n\r\nLooks like you are missing some older updates: https://github.com/kevoreilly/capemon/commit/acebf6ce46329f4ca4254d7d41468b99867aa98e\nComment: > Heheh what makes you think I'm in the US....?!\n> \n> \"A month ago\" is the wrong answer! You need to be bang up-to-date to raise an issue that we are gonna work on, otherwise who's to say we aren't wasting our time looking into something that is already fixed?!\n> \n> Looks like you are missing some older updates: https://github.com/kevoreilly/capemon/commit/acebf6ce46329f4ca4254d7d41468b99867aa98e\n\nAh ha, sorry, I always thought you were a team based in America.\ud83d\ude25 I'm going to merge the latest code on github tonight, but I noticed that the code in the chrome.py file on github is the same as mine. Maybe there's something else in the latest source code that solves my confusion\nComment: In the mainland Chinese context, public research on cape is almost impossible to find, so I might have a lot of problems, which makes me look a little silly.\ud83d\ude2c\nComment: Yes the confusion stems from there being a monitor which is compiled from C/C++ and is a bit like the 'kernel' of the sandbox, called capemon. This is in analyzer/windows/dll. This is what you need to update. It is in a separate repository which I linked previously. \r\n\r\nInteresting that cape is hard to research from China but it does not appear silly. I am happy to help, and we are based in Europe!\nComment: > Yes the confusion stems from there being a monitor which is compiled from C/C++ and is a bit like the 'kernel' of the sandbox, called capemon. This is in analyzer/windows/dll. This is what you need to update. It is in a separate repository which I linked previously. \n> \n> Interesting that cape is hard to research from China but it does not appear silly. I am happy to help, and we are based in Europe!\n\n> > Yes, I just took a closer look at the updated piece of code that you linked to, and that really settled my doubts. Thank you very much for your warm answer, this is the charm of open source projects. Unfortunately, China's open source environment is not very good, which is determined by the overall development of our country. Europe has many beautiful natural scenery. I hope the epidemic will disappear as soon as possible, and there are many places I want to visit.\n> \n> I noticed www.capesandbox.com Even if I registered and logged into the account, it is still frozen. I wonder if I can be granted the right to download and submit samples? I log in with this github account. I used to log in with my Google account, but I forgot my password. The website's password reset function is now disabled, and I will not be sent an email to reset my password",
+  "Title: When the URL is specified as chrome, the win10 virtual machine will not open chrome\nBody: When I submitted the 59th sample, I specified chrome, but the virtual machine did not open chrome. I checked the source code and found CAPEv2/analyzer/windows/modules/packages/chrome.py, chrome = self.get_path(\"chrome.exe\"), when I change it to chrome = self.get_path(\"Google\r\n[59-analysis.log](https://github.com/kevoreilly/CAPEv2/files/9887282/59-analysis.log)\r\n[60-analysis.log](https://github.com/kevoreilly/CAPEv2/files/9887283/60-analysis.log)\r\n\"), run the sample repeatedly, and the virtual machine opens chrome.The following is the 59th log that cannot be opened in Chrome, and the 60th log that can be opened in Chrome after modifying the source code\nComment: @Yesisyes: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: Thank you Yesisyes - it sounds like this could be a pull request?",
+  "Title: fix on resubmit for selfextracted files\nBody: only tested on extractions from target page",
+  "Title: fix on demand for selfextracted files\nBody: this handles selfextractions from the target only",
+  "Title: Submissions stay in pending tasks when submitted through a VM\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n* Free support from doomedraven ended - no whiskey, no support. For updates check the documentation.\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [yes] I am running the latest version\r\n- [yes ] I did read the README!\r\n- [yes ] I checked the documentation and found no answer\r\n- [yes ] I checked to make sure that this issue has not already been filed\r\n- [yes ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [yes ] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nTask will immediately start to run when submitted from a VM\r\n\r\n# Current Behavior\r\n\r\nIf submitted from a VM, the exe/task will never run and stay pending. I've tried from 2 VMs (win10 and win server), 1 on proxmox the other on my desktop through virtualbox. If I submit from the machine CAPE is running on it will correctly schedule and run and if I submit from my desktop it will also run and properly get results, just seems to be VMs that it will stay pending. This is both submitting through the api and web interface. If I use the api to reschedule or reprocess the pending tasks they will not properly run. While there are pending tasks I can go in my desktop and submit a file and that will jump the queue of pending tasks and run immediately. \r\n\r\n# Failure Information (for bugs)\r\n\r\nI thought it might be a time difference issue for scheduling but all machines have the same date and timezone.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. submit file through web interface from VM\r\n\r\n## Context\r\n\r\nCAPE is running on a standalone ubuntu 22.04 machine using kvm. I've tried having the VMs using NAT and bridged networks. Same timezones and dates. Not exactly sure what the difference is and why they won't run.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | commit https://github.com/kevoreilly/CAPEv2/commit/c2c33d41eff077b7094b3b86e0321776eb9f06a5\r\n| OS version       | Ubuntu 12.04\r\n\r\n## Failure Logs\r\n\r\nNot sure where to look for logs here, inspecting the services didn't show anything.\r\n\nComment: Well using NAT and bridged networks is not the way, it looks like you haven't followed the documentation.\r\n\r\nhttps://capev2.readthedocs.io/en/latest/installation/guest/network.html#creating-an-isolated-network\nComment: @Eric4Smith check https://github.com/kevoreilly/CAPEv2/issues/1254 and my PR https://github.com/kevoreilly/CAPEv2/pull/1255 - your issue might be related and fixed by this change",
+  "Title: CapeV2 Azure Machinery / Windows 10 - No detection\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n* Free support from doomedraven ended - no whiskey, no support. For updates check the documentation.\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nDetection of formbook malware with yara signatures. \r\n\r\n# Current Behavior\r\n\r\nIt doesn't seem like yara is detecting the malware sample or reporting it back to the UI in reporting. \r\n\r\n# Failure Information (for bugs)\r\n\r\nI am not sure if I am missing something a step for the Windows 10 vm image in Azure or if it is an issue with my cape analyzer. I have read though all the documentation for anything related to setting up Windows 10 with the agent setup. Nothing really pops up in the logs to make me think the analyzer is not working properly. As far as I can tell I have all the yara signatures that you guys are running. I am starting to think that my Windows 10 instance just won't detonate the malware correctly, but I do see the call out to .tk domain in the suri logs so I know it has to be partially detonating. \r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. I am pulling known samples known to be detected by capesandbox.com. \r\n2. Running the analysis as I normally would. \r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n\r\n| OS version       | Ubuntu 20.04, Windows 10 21h2, Azure Machinery\r\n\r\n## Failure Logs\r\n\r\nAnalysis Log:\r\n\r\n[analysis.log](https://github.com/kevoreilly/CAPEv2/files/9869758/analysis.log)\r\n\r\n\r\n\r\nCuckoo Log:\r\n\r\n\r\n[cuckoo.log](https://github.com/kevoreilly/CAPEv2/files/9869759/cuckoo.log)\r\n\r\n\r\n\r\n\r\n![Screenshot 2022-10-26 090536](https://user-images.githubusercontent.com/110566725/198033743-8fe614cf-7d95-4a7c-887e-7e386d2d2de4.\r\n![Screenshot 2022-10-26 090413](\r\n![Screenshot 2022-10-26 090555](https://user-images.githubusercontent.com/110566725/198033818-1b17dc24-f253-464b-bb66-78052441998b.jpg)\r\nhttps://user-images.githubusercontent.com/110566725/198033790-d4b683e6-c621-4b56-90b6-6ca52d302ffb.png)\r\njpg)\r\n\r\n\r\n\r\n\r\n\nComment: Not a single example hash or sample?!!\nComment: Not sure how I am supposed to know if there is something up with your setup if I can't test the same sample... \nComment: I thought the sample hash was in the picture I attached but I guess maybe it didn't send correctly. \nComment: I will send. But the sample hash SHA265 is in the picture and is actually a sample from capesandbox.com. \nComment: I have transcribed way too many hashes from pictures already in my time.\nComment: [98bd201c6a1ae16ccce5009af1cc3ec5b0dd46c31f1b814c93f91bc1376dc3cf.zip](https://github.com/kevoreilly/CAPEv2/files/9869825/98bd201c6a1ae16ccce5009af1cc3ec5b0dd46c31f1b814c93f91bc1376dc3cf.zip)\r\n\nComment: Thanks - testing now on my Win10 (assume yours is x64?!)\nComment: yes \r\n\nComment: Sorry, whatever you need I will get it to you. \nComment: Aw man zip password is not infected?!\nComment: Oh crap. saoextract! no hold up im sorry. \nComment: zip pass = wvsao\nComment: ok checking\nComment: I have ?\r\n\r\nDoes choco.bat apply to just windows 7? Or 7 & 10? \nComment: Right, Formbook from #324338 - that was more difficult than it needed to be.\nComment: Sorry I made it difficult I am new to this I will try to remember to simplify it. \nComment: Honestly there could be something I am not understanding about Windows 10 setup compared to Windows 7. I am really just trying to get my setup to detect just as your setup would. I recently just discovered it was not because I never really thought of pulling the known samples. Now that I have, I realize that something is quite not right. It seems like it is only partially working which not good enough for me. \nComment: Right well it looks like that did not detonate well for me either on Win10 Hyper-V. Let me test on one of my KVM instances...\nComment: Thanks Kevoreilly I appreciate you taking a look at this. \nComment: My pleasure - I'm just sorry the answer here seems to be that this sample is not detonating properly in cape on win10 :-( Another family I will need to look into...\nComment: Ok I have a windows 7 scale instance I can try as well. If you don't care, could you let me know what further information you uncover about it. I will also keep trying to look into it and if I find anything I will let you know as well. I appreciate all your help and I love the project you guys are awesome.  \nComment: I will keep you posted and keep this open until I have worked out how to get this to detonate properly! Formbook is important enough to mean it should get near to the top of the pile... (but the pile is huge!)\nComment: Oh hang on looks like I made a mistake and so came to the wrong conclusion!\r\n\r\nTurns out I submitted the wrong sample to my KVM instance, when I corrected this I saw that it detonates properly.\r\n\r\nThen I tested Win7x64 on Hyper-V and it did not detonate. So it's the hypervisor! Must be some kind of anti-vm in there that gets it.\r\n\r\n![image](https://user-images.githubusercontent.com/22219888/198050340-33fc1c71-1d38-4b9d-aa24-fae1e3c3d955.png)\r\n![image](https://user-images.githubusercontent.com/22219888/198050376-26ab1747-7058-445d-8cd5-ea9246d9d721.png)\r\n\nComment: I would have to agree. I ran it though on my Windows 7 X64 and I got the same. No detonate. \nComment: That's why we use KVM as the supported hypervisor. The only way forward here for azure/hyper-v would be to identify the anti-vm technique in this sample and either harden the hypervisor or develop a bypass for cape (or extend existing Formbook bypass)\nComment: I understand. I guess going forward I can probably just expect this type of output on my Azure instance. On the upside there are still some key pieces of evidence in behavior to let me know the sample is Malware. I just won't know what family/type of malware. I can probably live with this for now I was just concerned there was something configured wrong with my image or cape. I appreciate you looking into this. Thanks again. \nComment: Could you run a kvm instance as fall-back if no detections?\nComment: I think I could do that. I actually picture doing this on our isolated network on prem at some point. \nComment: Is it possible for me to submit these to your public cape instance at capesandbox.com as the fall back for now? Only if I believe it could be a real sample of malware? \nComment: Yes you can submit them - just be careful not to submit too many too quickly as there is an auto-ban which will kick in.\nComment: I would just submit one at a time letting each finish first. Must I have an account created to do this? Any method I need to follow to do so? \nComment: Yes create account and let me know your username.\nComment: matt.goodwin@wvsao.gov\r\n\r\n![Screenshot 2022-10-26 132005](https://user-images.githubusercontent.com/110566725/198093916-2fd4ae9e-33c1-4823-8610-492c760c7951.jpg)\r\n\r\n\nComment: Do I need to do something else? I am still getting account inactive. \nComment: Try now\nComment: It works! Thank you. ",
+  "Title: Oversized PE trimming on submission\nBody: Basic implementation that trims PE files that are over the submission size limit using uses pefile to find end of the last PE section.\r\n\r\nLoads entire PE into memory using ``read()`` - could be improved by instead using ``chunks()``.",
+  "Title: Dump Guest Memory \nBody: Hi, I noticed that it is possible to dump the memory of the host machine. If I use the Proxmox virtualizer, in particular in the file \"modules/machinery/proxmox.py\" is missing the method to do it. However, I noticed that through Proxmox I can use Qemu for this operation but also in the file \"modules/machinery/qemu.py\" there is no associated method \"dump_memory\" like in \"modules/machinery/virtualbox.py\". Are you by any chance going to implement it? Thank you\nComment: @Robullo: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: hello, we wont, we only use KVM, the rest is on community, it works just fine in KVM",
+  "Title: Question: Family breakdown API endpoint\nBody: I was trying to grab some family statistics from my CAPEv2 instance, and of course I have the family breakdown on the dashboard.\r\nCan I grab that top malware family breakdown via an API endpoint somehow?\r\n\r\nCould not find any documentation on this.\r\nIs that information exposed through some API endpoint?\r\nIf not, this is an idea for improvement.\nComment: @albertzsigovits: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: yes you have it there, check this https://github.com/kevoreilly/CAPEv2/blob/master/web/apiv2/urls.py#L70\nComment: Thanks @doomedraven , if anyone's looking for this, it's incorporated inside: /tasks/statistics/$DAYS/.\nComment: <img width=\"1773\" alt=\"Screenshot 2022-10-25 at 17 33 24\" src=\"https://user-images.githubusercontent.com/1856495/197817625-0dfc1dda-04e1-4413-84ea-e546edab0038.png\">\r\nthat is documented if you check api help page in your cape",
+  "Title: Update community.py\nBody: Missing proxy argument for install()",
+  "Title: Cannot execute auxiliary module Sysmon\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n* Free support from doomedraven ended - no whiskey, no support. For updates check the documentation.\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nDuring python3 cuckoo.py execution sysmon auxiliary module should load successful. \r\n\r\n# Current Behavior\r\n\r\nCannot execute auxiliary module Sysmon. Sysmon set to yes to aux config. Sysmon is installed on the vm using sysmonconfig.xml file. \r\n\r\nWhat is the current behavior?\r\n\r\n2022-12022-10-21 17:19:11,288 [root] WARNING: Cannot execute auxiliary module Sysmon: In order to use the Sysmon functionality, it is required to have the sysmon(64|32).exe file and sysmonconfig.xml file in the bin path.\r\n \r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\n1. Normal submission of file for analysis. \r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bigness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit      n/a\r\n| OS version       | Ubuntu 20.04, Windows 10 22H2\r\n| Machinery        Azure\r\n\r\n## Failure Logs\r\n[cuckoo.log](https://github.com/kevoreilly/CAPEv2/files/9841247/cuckoo.log)\r\n\r\n\r\n[analysis.log](https://github.com/kevoreilly/CAPEv2/files/9841246/analysis.log)\r\n\nComment: @WVAuditors: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: We already tried to answer your previous issue!\nComment: sorry I got confused because it said I didn't follow the template. Thought I needed to submit another with the correct template. \nComment: editing the issue with filling the template works, FYI for future",
+  "Title: CapeV2 Sysmon Auxilary Module - Cannot execute auxiliary module Sysmon\nBody: Cannot execute auxiliary module Sysmon: In order to use the Sysmon functionality, it is required to have the sysmon(64|32).exe file and sysmonconfig.xml file in the bin path.\r\n\r\nI am probably just not understanding how to implement sysmon in cape. Need help with getting this auxiliary module to work. Everything else works great on this Azure Cape scale set. \r\n\r\nAzure Machinery\r\nCape - Ubuntu 20.04 \r\nCommunity updated\r\nWindows 10 22H2 \r\n\r\n\r\n[analysis.log](https://github.com/kevoreilly/CAPEv2/files/9841158/analysis.log)\r\n[cuckoo.log](https://github.com/kevoreilly/CAPEv2/files/9841177/cuckoo.log)\r\n\nComment: @WVAuditors: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: @WVAuditors you need to do as the log says and put those files here `/opt/CAPEv2/analyzer/windows/bin`. I'm glad to hear the Azure machinery is working well for you :)\nComment: Thank you Kevin!\r\n\r\nWe obviously can't redistribute Microsoft binaries.\nComment: FYI @WVAuditors you have to get those files yourself (from the sysinternals homepage)\nComment: Oh, I see that now I read that wrong. Thanks. \nComment: \r\nStill didn't work. Idk. \r\n\r\n![Screenshot 2022-10-21 140618](https://user-images.githubusercontent.com/110566725/197261004-b517a733-3cb6-488e-b46d-4163c28068d3.jpg)\r\n\r\n\r\n\r\n2022-10-21 18:03:10,574 [root] DEBUG: Trying to start auxiliary module \"Sysmon\"...\r\n2022-10-21 18:03:10,855 [modules.auxiliary.evtx] DEBUG: Enabling advanced logging -> auditpol /set /subcategory:\"Security System Extension\" /success:enable /failure:enable\r\n2022-10-21 18:03:10,855 [root] WARNING: Cannot execute auxiliary module Sysmon: In order to use the Sysmon functionality, it is required to have the sysmon(64|32).exe file and sysmonconfig.xml file in the bin path.\r\n\nComment: Looking at the code that caused this log is helpful. Looks like https://github.com/kevoreilly/community/blob/39fcca7917ef8d18fea7dd8f942fb7848da156d9/analyzer/windows/modules/auxiliary/sysmon.py#L106 is actually looking for sysmon(64|32).exe to be called SMaster(64|32).exe. So you can rename SMaster -> sysmon here https://github.com/kevoreilly/community/blob/master/analyzer/windows/modules/auxiliary/sysmon.py#L96:L98 (although I recommend naming them SMaster(64|32) for anti-analysis techniques)\nComment: That being said, there is a discrepancy between the error log and the code, so I'll update the error log to say \"SMaster...\"\r\n\r\nHere is the PR addressing this https://github.com/kevoreilly/community/pull/326\nComment: Renamed sysmon.exe -> SMaster32.exe\r\nRenamed sysmon64.exe -> SMaster64.exe \r\nRenamed sysmonconfig.xml -> sysmonconfig-export.xml \r\n\r\nStill fails. \r\n\nComment: > Renamed sysmon.exe -> SMaster32.exe Renamed sysmon64.exe -> SMaster64.exe Renamed sysmonconfig.xml -> sysmonconfig-export.xml\r\n> \r\n> Still fails.\r\n\r\nInteresting. Can you please add logging code to the Sysmon package at /opt/CAPEv2/analyzer/windows/modules/auxiliary/sysmon.py between lines 104 and 105 https://github.com/kevoreilly/community/blob/5935428d5692d60cbe41be5625d5bd27953bf365/analyzer/windows/modules/auxiliary/sysmon.py#L105 that output what the `sysmon` and `config_file` variables are and if they exist?\r\n\r\nsomething like:\r\n```\r\nlog.debug(\"sysmon path: {}; exists: {}\".format(sysmon, os.path.exists(sysmon)))\r\nlog.debug(\"config path: {}; exists: {}\".format(config_file, os.path.exists(config_file)))\r\n```\nComment: Got it! I changed it from SMaster32.exe and Smaster64.exe to sysmon.exe and sysmon64.exe in sysmon.py then renamed sysmon executables back to sysmon.exe and sysmon64.exe. Thanks for your help. \r\n\r\n\r\n2022-10-21 18:33:25,234 [root] DEBUG: Started auxiliary module \"Sysmon\"\r\n\r\nI will see if I get any output. \r\n\r\n\r\n\nComment: \r\n![Screenshot 2022-10-21 144638](https://user-images.githubusercontent.com/110566725/197268102-23546d2d-ff55-46db-ac06-8636772b855a.png)\r\n\r\nI have an output! But is there a way to view this information inside of the Cape UI? I was thinking there was. \r\n\nComment: Nice! And I don't think so?\nComment: Ok thank you for your help. BTW I know this may sound crazy but I setup an automated method to automatically submit email attachments malware (executable content) to this isolated Azure Environment cape sandbox by using O365 transport rules, O365 SOC mailbox, Azure Logics Apps & Power Automate, Azure storage blob, Python & PowerShell. If executable content is sent to our organization, it gets redirected to a SOC mailbox then immediately pulled with MS logic apps into a blob storage container to be pulled by Python script from the sandbox client in RG2 then submitted with python, batch, PowerShell to the cape instance. This has given me a huge insight on the crazy malware and phishing attempts that actually get sent to our organization. Thanks again for all your help.  \nComment: Sounds interesting... \ud83e\udd14 \nComment: no there is no way to view info inside of the cape web, due to that core devs doesn't use sysmon, but if you provide us some logs files we probably can bake that into webgui quickly\nComment: It is fine. I am using sysmon view. I am trying to figure out how you guys deal with office 2010 / 2013 activations on an azure scale set. I think my setup is trying to burn through our MAK key. Do you guys setup a KMS server to handle this? \nComment: Hi @WVAuditors, I recommend performing a \"rearm\" of Office as per https://learn.microsoft.com/en-us/deployoffice/vlactivation/rearm-an-office-installation-on-an-image-when-using-kms-to-activate#use-the-ospprearm-command-to-rearm-an-office-installation (skip step 1)\r\n\r\nAs long as your VMs don't live longer than the default grace period (25 days) before being reimaged, this should work.\nComment: Oh yes that would work. I should have known I have actually done this in the past I just forgot about it. Thanks so much for your help you guys are awesome. ",
+  "Title: Fix elasticsearch fixes inside of the code instead of fixing in reporting module\nBody: https://github.com/kevoreilly/CAPEv2/blob/master/modules/reporting/elasticsearchdb.py#L101-L130\nComment: Hi @doomedraven, I would be glad to help on this task.\nComment: somehow i missed your msg for more than 2 years. well im not sure in which state ES support in cape is, so i guess is just dead code right now",
+  "Title: Fix elasticsearch document mapping errors\nBody: Bug fixing for Elasticserch reporting.\r\nIt now ingests correctly reports created by file analyses.\r\n\nComment: thank you",
+  "Title: Use local js files, improve XSS security\nBody: None",
+  "Title: White font on white background on some section on exported PDF\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n* Free support from doomedraven ended - no whiskey, no support. For updates check the documentation.\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nDuring PDF export of an analysis, text should be visible in \"Sandbox Info\" and \"File Details\" sections.\r\n\r\n# Current Behavior\r\n\r\nThe color of the font and background are white in \"Sandbox Info\" and \"Files Details\" sections.\r\n\r\n![image](https://user-images.githubusercontent.com/7997849/197002730-ad949876-ff03-4552-80e0-36dad428dabf.png)\r\n\r\n\r\n# Failure Information (for bugs)\r\n\r\n[3_report.pdf](https://github.com/kevoreilly/CAPEv2/files/9831853/3_report.pdf) for an exemple of exported PDF\r\n[HTML export](https://drive.google.com/file/d/1YwOEeIbHUd43Wl6Qv0gm65125JLPxBjq/view?usp=sharing) from the same analysis. [Virustotal](https://www.virustotal.com/gui/file/dfc37ca0b6d736bb6b8754e48d201a2f5ff16878a4907609c65c96b9cb88457e?nocache=1)\r\n\r\n\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Do an analysis like usual\r\n2. Export it in PDF\r\n\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       |  ef018af\r\n| OS version       |  Ubuntu 22.04.1 LTS\r\n\r\nAt first, I thought is was my VM with Ubuntu 20.04. So I decided to recreate my Cape VM on Ubuntu 22.0.4 and at the same time, use poetry instead of requirements.txt. The same behaviour happen on both machine.\r\n\r\nIf I open the html on a browser and ask to save as PDF, the same behaviour happen.\r\n\r\n![image](https://user-images.githubusercontent.com/7997849/197003505-20ec9d77-6352-41a3-b06f-2d571fe404d7.png)\r\n\r\n\r\n## Failure Logs\r\n\r\nNo Log\r\n\nComment: hello. there are html/pdf reporting modules. They are maintained by community not core devs. So if you need it you will need to fix it. PR is welcome\r\n\r\nbut it looks like you just did print and save as pdf, try first to use those modules\nComment: @doomedraven Thanks for the reply!\r\n\nComment: Yep I would be surprised if there isn't loads of cape-specific stuff missing from the html reports as they haven't been maintained since cuckoo days 6 years ago.",
+  "Title: fix playback url\nBody: None",
+  "Title: Miscellaneous changes\nBody: - No virt-manager install in cape.sh, so removed in docs.\r\n- Fix TOR sourcelist entry\r\n- Match libvirt-python version with installed libvirt version\r\n- Fix guacamole fstab entry\r\n- Fix guacamole recording path in web.conf\r\n- Guacamole docs hint for web server without HTTPS config\nComment: im not agree with half of the changes. i will edit them once i have some spare time",
+  "Title: Fix file upload\nBody: None",
+  "Title: Integrate lznt1 - MalDuck is optional\nBody: None\nComment: thanks",
+  "Title: Missed Python dependencies on fresh install of CAPEv2\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n* Free support from doomedraven ended - no whiskey, no support. For updates check the documentation.\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ ] I am running the latest version\r\n- [ ] I did read the README!\r\n- [ ] I checked the documentation and found no answer\r\n- [ ] I checked to make sure that this issue has not already been filed\r\n- [ ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ ] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nStarting CAPEv2 by running sudo -u cape poetry run python3 cuckoo.py\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Run capev2.sh\r\n2. sudo poetry install\r\n3. sudo -u cape poetry run python3 cuckoo.py\r\n\r\n## Context\r\n\r\nI would like to use proxmox as the VM, but can't get that far as cuckoo.py can't run.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | commit c2c33d41eff077b7094b3b86e0321776eb9f06a5\r\n| OS version       | Ubuntu 20.04\r\n\r\n## Failure Logs\r\nRunning CAPE produces the following output, missing several dependencies for python\r\n\r\n/usr/lib/python3/dist-packages/requests/__init__.py:89: RequestsDependencyWarning: urllib3 (1.26.12) or chardet (3.0.4) doesn't match a supported version!\r\n  warnings.warn(\"urllib3 ({}) or chardet ({}) doesn't match a supported \"\r\nCAPE parser: No module named Blister - No module named 'malduck'\r\n\r\n                               ),-.     /\r\n  Cuckoo Sandbox              <(a  `---','\r\n     no chance for malwares!  ( `-, ._> )\r\n                               ) _>.___/\r\n                                   _/\r\n\r\n Cuckoo Sandbox 2.2-CAPE\r\n www.cuckoosandbox.org\r\n Copyright (c) 2010-2015\r\n\r\n CAPE: Config and Payload Extraction\r\n github.com/kevoreilly/CAPEv2\r\n\r\nMissed peepdf library: pip3 install https://github.com/CAPESandbox/peepdf/archive/20eda78d7d77fc5b3b652ffc2d8a5b0af796e3dd.zip#egg=peepdf==0.4.2\r\nMissed dependency: pip3 install -U git+https://github.com/DissectMalware/batch_deobfuscator\r\nMissed dependency: pip3 install -U git+https://github.com/CAPESandbox/httpreplay\r\nMissed dependency: pip3 install proxmoxer -U\r\n\nComment: @Eric4Smith: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: you can ignore them if you don-t know from what are they, we don't add them to core dependencies as we don't need it, the rest users can install but themselves",
+  "Title: Permission denied for schema public error.\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n* Free support from doomedraven ended - no whiskey, no support. For updates check the documentation.\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [Y] I am running the latest version\r\n- [Y] I did read the README!\r\n- [Y] I checked the documentation and found no answer\r\n- [Y] I checked to make sure that this issue has not already been filed\r\n- [Y] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [Y] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nCAPEv2 service started successfully without the errors shown in the screenshot.\r\n\r\n# Current Behavior\r\n\r\nCApev2 service failed to start with the seemingly database related errors.\r\n\r\n# Failure Information (for bugs)\r\n\r\nLikely a bug. I've installed more than 5 instance of CAPE server and this is the first time I see this. First witness on 15 Oct 2022.\r\n\r\nI hope to get some advice on where should I check to troubleshoot this.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Fresh installed Ubuntu Focal\r\n2. apt update and upgrade. Reboot\r\n3. $ sudo ./kvm-qemu.sh all cape | tee kvm-qemu.log\r\n4. Update IP address in cape2.sh\r\n5. $ sudo ./cape2.sh base cape | tee cape.log\r\n6. Reboot\r\n7. $ journalctl -u cape.service\r\n8. Errors in screenshot appears.\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | \r\n| OS version       | Ubuntu 22.04 64 bit\r\n\r\n## Failure Logs\r\n\r\nhttps://tinypic.host/images/2022/10/17/Unknown-Error.png\nComment: hello as you can see from the error, your user doesn't have proper rights. you need to verify with properly set values:\r\n\r\n1. https://github.com/kevoreilly/CAPEv2/blob/master/installer/cape2.sh#L997\r\n2. https://github.com/kevoreilly/CAPEv2/blob/master/installer/cape2.sh#L756-L761\nComment: Hi doomedraven,\r\n\r\n1. For this value, it is correct. I leave the username and password as default when executing the cape2.sh script.\r\n\r\nhttps://tinypic.host/images/2022/10/18/Cuckoo.conf_settings.png\r\n\r\n</br>\r\n2. I've check and proceed to grant all privileges again on postgresql. I still get the same error, \"Did not find any relations\".\r\n\r\nhttps://tinypic.host/images/2022/10/18/User_Cape_Permission.png\r\n\r\nhttps://tinypic.host/images/2022/10/18/GRANTING_PRIVILEGES.png\r\n\r\nhttps://tinypic.host/images/2022/10/18/Result_After_Granting.png\r\n\r\n</br>\r\n\r\nIs there anywhere else you would suggest me to check?\r\n\nComment: restart cape service now maybe? or even better stop cape service and run cape by hand as readme says. cape will populate db once it has proper access, otherwise you will need to google what is wrong as i never saw this error before\nComment: Solved.\r\n\r\nGranting all privileges is not enough.\r\n\r\nYou need to alter database owner to your user.\r\n\r\nIn my case:\r\n`ALTER DATABASE cape OWNER TO cape;`\r\n\r\nThank for your help once again!\nComment: thanks for the solution, strange normally with grant permission is enough. Glad that you have solved it\nComment: I did a comparison of the cape2.sh 's logs from two different instance and found out different version of PostgreSQL were installed.\r\n\r\nSo it could be a bug in the newest version of PostgreSQL Version 15 which was just released on 13th Oct 2022. \r\n\r\nhttps://tinypic.host/images/2022/10/18/Script_Log_Comparison.png\r\n\r\nhttps://www.postgresql.org/support/versioning/\r\n\r\n\r\n\r\n\r\n\nComment: > Solved.\r\n> \r\n> Granting all privileges is not enough.\r\n> \r\n> You need to alter database owner to your user.\r\n> \r\n> In my case: `ALTER DATABASE cape OWNER TO cape;`\r\n> \r\n> Thank for your help once again!\r\n\r\nHow did you get into the data base? That command gives me \"must of owner of the database cape\"\nComment: You need to login as the current owner of the database cape to change ownership.\r\n\r\nIf it\u2019s based on the default script, it should be the user postgres.\r\n\r\nSo\u2026\r\n\r\n`sudo -u postgres psql`",
+  "Title: Permission denied for schema public error\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n* Free support from doomedraven ended - no whiskey, no support. For updates check the documentation.\r\n\r\n# Prerequisites\r\n\r\n- [Y ] I am running the latest version\r\n- [ Y] I did read the README!\r\n- [ Y] I checked the documentation and found no answer\r\n- [ Y] I checked to make sure that this issue has not already been filed\r\n- [ Y] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ Y] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nCAPEv2 service started successfully without the errors shown in the screenshot.\r\n\r\n# Current Behavior\r\n\r\nCApev2 service failed to start with the seemingly database related errors.\r\n\r\n# Failure Information (for bugs)\r\n\r\nLikely a bug. I've installed more than 5 instance of CAPE server and this is the first time I see this. First witness on 15 Oct 2022.\r\n\r\nI hope to get some advice on where should I check to troubleshoot this.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Fresh installed Ubuntu Focal\r\n2. apt update and upgrade. Reboot\r\n3. $ sudo ./kvm-qemu.sh all cape | tee kvm-qemu.log\r\n4. Update IP address in cape2.sh\r\n5. $ sudo ./cape2.sh base cape | tee cape.log\r\n6. Reboot\r\n7. $ journalctl -u cape.service\r\n8. Errors in screenshot appears.\r\n\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| OS version       | Ubuntu 22.04 64 bit\r\n\r\n## Failure Logs\r\n\r\nhttps://tinypic.host/images/2022/10/17/Unknown-Error.png\r\n\nComment: @dell224: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.",
+  "Title: attribute error: __enter__ while reporting\nBody: None\nComment: @Niccolocometto: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.",
+  "Title: This does not work... WHY?!\nBody: Is 7z in analyzer/windows/bin?\n\nif not os.path.exists(seven_zip_path):\n\nLet's hope it's in the VM image\n\nactors are using LNK files that use relative directory traversal at arbitrary depth.\n\nThey expect to find the root of the drive.\n\nhttps://github.com/kevoreilly/CAPEv2/blob/4f3cd92cc5b89d747df54c3a4e9b09b9606bfcc8/analyzer/windows/modules/packages/archive.py#L149\n\n```python\n\n            return self.execute(file_path, self.options.get(\"arguments\"), file_path)\n\n    def start(self, path):\n        # TODO: This does not work... WHY?!\n        # Is 7z in analyzer/windows/bin?\n        # seven_zip_path = os.path.join(os.getcwd(), \"bin\", \"7z.exe\")\n        # if not os.path.exists(seven_zip_path):\n        # Let's hope it's in the VM image\n        seven_zip_path = self.get_path_app_in_path(\"7z.exe\")\n\n        password = self.options.get(\"password\", \"\")\n\n        archive_name = path.split(\"\\\\\")[-1].split(\".\")[0]\n\n        # We are extracting the archive to C:\\\\<archive_name> rather than the TEMP directory because\n        # actors are using LNK files that use relative directory traversal at arbitrary depth.\n        # They expect to find the root of the drive.\n        root = os.path.join(\"C:\\\\\", archive_name)\n\n        # Check if root exists already due to the file path\n        if os.path.exists(root) and os.path.isfile(root):\n            root = os.path.join(\"C:\\\\\", \"extracted_iso\", archive_name)\n\n        os.makedirs(root, exist_ok=True)\n\n        file_names = self.get_file_names(seven_zip_path, path)\n        if not len(file_names):\n\n```\nComment: @cccs-kevin i got this working but 7za and 7zr is cutted version and not support isos for example",
+  "Title: Modifying the archive package to support arbitrary directory traversal\nBody: Thanks to @wmetcalf and @enzok for the help on this!",
+  "Title: Need to add cmd and dat file extensions to regex\nBody: None",
+  "Title: Updating archive package for files with different extensions\nBody: None",
+  "Title: Fix missing comma\nBody: None",
+  "Title: Adding note about archive usage\nBody: I've made a few talks recently regarding the increased presence of non-zip archive files being used by malicious actors in present day. My work on the `archive.py` package provides CAPE's best chance of detecting these samples and network IOCs. This note is to assist those who are using a client to submit files to CAPE that is not [Assemblyline ](https://cyber.gc.ca/en/tools-services/assemblyline).\nComment: thank you for your work on it\nComment: For those interested, here is one of such talks: https://www.youtube.com/watch?v=-70Mlkmtdds&t=11056s\nComment: nice talk, i did quick look skipping some parts. but i think your explanation of archive package would be probably even nice to link to docs so newcomers could use that. what do you think?\nComment: ;) https://github.com/kevoreilly/CAPEv2/commit/54083aa71543c0923ea6f96102bb7ff3157d8ed4\nComment: linked in docs too https://capev2.readthedocs.io/en/latest/usage/packages.html",
+  "Title: MongoDB - [Errno 111] Connection refused\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is open source and you are getting __free__ support so be friendly!\r\n* Free support from doomedraven ended - no whiskey, no support. For updates check the documentation.\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [Y] I am running the latest version\r\n- [Y] I did read the README!\r\n- [Y] I checked the documentation and found no answer\r\n- [Y] I checked to make sure that this issue has not already been filed\r\n- [Y] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [Y] I have read and checked all configs (with all optional parts)\r\n\r\n\r\n# Expected Behavior\r\n\r\nCAPEv2 web UI responds to my HTTP request for other pages.\r\n\r\n# Current Behavior\r\n\r\nCAPEv2 web UI does not respond and keeps on loading.\r\n\r\n# Failure Information (for bugs)\r\n\r\nNot a bug. Likely a configuration error\r\n\r\n## Steps to Reproduce\r\n\r\nFollowed exactly based on the steps outlines here: https://capev2.readthedocs.io/en/latest/installation/host/installation.html\r\n\r\nI only changed the IFACE_IP in cape2.sh to my host device LAN IP. The rest are default.\r\n\r\nGot the server up and running. \r\n\r\nSuccessfully setup the guest Windows 10 and applied the configurations and agent.\r\n\r\nSubmitted a Wannacry.exe for testing. \r\n\r\nThen the Web UI no longer responds even after reboot.\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions. Operating system version, bitness, installed software versions, test sample details/hash/binary (if applicable).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       |  Most recent one today.\r\n| OS version       | Ubuntu 22.04.1 LTS (64-bit)\r\n\r\n## Failure Logs\r\n\r\njournalctl from mongodb:\r\nhttps://tinypic.host/images/2022/10/10/mongodb.png\r\n\r\njournalctl from cape-web.service\r\nhttps://tinypic.host/images/2022/10/10/cape-web.service.png\r\n\nComment: why just not to start by hand what systemd starts? you can see clearly error there so or you have missed dependency or there is something else. i as put in readme if you have a problem, always run everyting by hand. \r\n\r\nyou have problems with mongo, debug that in way as i specify it in readme as with curreent details i can't provide more support\nComment: Hi doomedraven,\r\n\r\nThanks for your reply and suggestion!\r\n\r\nI just tried starting the mongodb manually and I got the following error:\r\n\r\nhttps://tinypic.host/images/2022/10/11/mongodb-status.png\r\n\r\n--\r\n\r\nFor dependency wise, I don't think any were missed. \r\n\r\nI just run `$ sudo poetry install` and it return with \"No dependencies to install or update\"\r\n\r\n--\r\n\r\nThis is rather bizarre as everything was working fine up until I submitted my first sample for analysis.\r\n\r\nFor the setup script (cape2.sh), I've used the default USER and PASSWD.\r\n\r\nDo you know where I should look for more logs to help with the troubleshooting?\r\n\r\nThank you.\nComment: that is not running by hand, that is running as service, this is running by hand\r\n```\r\n/usr/bin/numactl --interleave=all /usr/bin/mongod --setParameter \"tcmallocReleaseRate=5.0\"\r\n```\r\n\r\npoetry is python related. MongoDB is totally different project\nComment: Hi doomedraven,\r\n\r\nThank you for bearing with me and correcting my mistake. \r\n\r\nMy apologies.\r\n\r\nSo there are some development.\r\n\r\nThere are 2 errors relating to mongoDB.\r\n\r\n----\r\n\r\n### 1. mongodb.service: Failed to determine user credentials: No such process\r\n\r\nFor this error, I did more googling and found some suggestions. \r\n\r\nAccording to this source, this error can be solved by removing the `user=mongoDB` and `group=mongoDB`.\r\n\r\nSo I comment escape them out in my mongodb.service as shown: \r\n\r\nhttps://tinypic.host/images/2022/10/11/mongodb.service.png\r\n\r\nSeems to work as this error stopped appearing.\r\n\r\n\r\n**However, based on your expertise, do you think if this will cause any complications in the later part?**\r\n\r\n----\r\n\r\n### 2. mongodb.service: Failed at step USER spawning /usr/bin/numactl: No such process\r\n\r\nThis error remain unsolved.\r\n\r\nFrom the journalctl of mongodb, it says:\r\n\r\n_numactl: execution of `/usr/bin/mongod': No such file or directory_\r\n\r\n\r\nI followed your suggestion and executed \r\n\r\n`/usr/bin/numactl --interleave=all /usr/bin/mongod --setParameter \"tcmallocReleaseRate=5.0\"` , \r\n\r\nbut it gives the same error:\r\n\r\n_numactl: execution of `/usr/bin/mongod': No such file or directory_\r\n\r\n\r\n\r\n**Could this be caused by a potential installation error when executing cape2.sh?** \r\n\r\n\r\n\r\nSource:\r\nhttps://superuser.com/questions/1156676/what-causes-systemd-failed-at-step-user-spawning-usr-sbin-opendkim-no-such-p\r\n\r\n\nComment: 1. no\r\n2. yes you should have saved the log as `-h` specifies \r\n\r\nwhat if you just run `/usr/bin/mongod --setParameter \"tcmallocReleaseRate=5.0\"`?\nComment: \r\n1. Got it. Thanks.\r\n\r\n--\r\n\r\n2. Yes, I have the installation log. I've uploaded it on ubuntu's pastebin as it exceed 512 KB.\r\n\r\nhttps://pastebin.ubuntu.com/p/gKsmDpRvFj/\r\n\r\nI tried to take a look at the log myself but I do not see any error relating to mongoDB deployment.\r\n\r\nSee from line 5371 in the pastebin link above.\r\n\r\n--\r\n\r\n3. Following your suggestion, I got the same error. See here:\r\n\r\nhttps://tinypic.host/images/2022/10/11/Suggested-action-1.png\r\n\r\nSure enough, I did a manual search using nautilus file manager and I couldn't find mongod:\r\n\r\nhttps://tinypic.host/images/2022/10/11/No-mongod.png\r\n\r\n\nComment: you just don't have mongo installed\r\n\r\nwhat about `apt install -y mongodb-org`?\r\n\nComment: you can rerun cape2.sh(pull new version) and run with command `mongo`\nComment: Hi doomedraven,\r\n\r\nThis issue is resolved. \r\n\r\nTruly thank you for your patience and support. Couldn't have got through this without you.\r\n\r\nI now have some other issue that I will create a separate post.\r\n\r\nFor now, I want to give back and share with the community on what and why this happened.\r\n\r\n------\r\n\r\n### Cause of this issue:\r\n\r\ndoomedraven is right. MongoDB is not installed despite running the cape2.sh script.\r\n\r\n\r\nIf you are running Ubuntu Jammy (22.04), even if you were to manually run:\r\n\r\n`apt install -y mongodb-org`,\r\n\r\nyou will encounter this error:\r\n\r\n_[E] Unable to locate package mongodb-org._\r\n\r\nhttps://tinypic.host/images/2022/10/11/Cannot-locate-MongoDB-org-error-on-Ubuntu-Jammy.png\r\n\r\n\r\nI later found out that as now<sup>1</sup> MongoDB does not OFFICIALLY<sup>2</sup> support Ubuntu Jammy (22.04) and thus the error above.\r\n\r\n\r\n----\r\n\r\n### Path to resolution:\r\n\r\nI later found out from this source<sup>3</sup> that the current <sup>1</sup> version of MongoDB is compatible with Ubuntu Jammy (22.04), albeit unofficial.\r\n\r\nFor MongoDB 5.0, start with:\r\n\r\n`wget -qO - https://www.mongodb.org/static/pgp/server-5.0.asc | sudo apt-key add -`\r\n\r\nthen\r\n\r\n`echo \"deb [ arch=amd64,arm64 ] https://repo.mongodb.org/apt/ubuntu focal/mongodb-org/5.0 multiverse\" | sudo tee /etc/apt/sources.list.d/mongodb-org-5.0.list`\r\n\r\nfollowed with\r\n\r\n`sudo apt update`\r\n\r\nend with\r\n\r\n`sudo apt install -y mongodb-org`\r\n\r\n<br><br><br>\r\n\r\nWhile for MongoDB 6.0,  replace the first 2 steps above with:\r\n\r\n`wget -qO - https://www.mongodb.org/static/pgp/server-6.0.asc | sudo apt-key add -`\r\n\r\nthen \r\n\r\n`echo \"deb [ arch=amd64,arm64 ] https://repo.mongodb.org/apt/ubuntu focal/mongodb-org/6.0 multiverse\" | sudo tee /etc/apt/sources.list.d/mongodb-org-6.0.list`\r\n\r\nand the rest is the same.\r\n\r\nhttps://tinypic.host/images/2022/10/11/Installing-MongoDB-on-Ubuntu-Jammy.png\r\n\r\n---\r\n### Source:\r\n[*] referring to 11 Oct 2022\r\n[1] https://www.mongodb.com/docs/manual/tutorial/install-mongodb-on-ubuntu/\r\n[2] https://www.cloudbooklet.com/how-to-install-mongodb-on-ubuntu-22-04/\r\n\nComment: idk why do you post instruction for v5 and v6, v6 works just fine on u22.04. but glad that you have solved your problem",
+  "Title: registered an account on https://capesandbox.com\nBody: Hello, I registered an account on your public website, but I can't log in. It shows that my account is inactive. May I ask what should I do?\nComment: @huachenzhi: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: you should read the issue template as there is answer",
+  "Title: The web interface has no network analytics results (No PCAP file)\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account acctivation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nNetwork analysis results can be viewed through the web interface\r\n\r\n# Current Behavior\r\n\r\nThe web interface has no network analytics results\r\n\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1.tcpdump has been set as follows\r\n\r\n$ sudo groupadd pcap\r\n$ sudo usermod -a -G pcap cuckoo\r\n$ sudo chgrp pcap /usr/sbin/tcpdump\r\n$ sudo setcap cap_net_raw,cap_net_admin=eip /usr/sbin/tcpdump\r\ngetcap /usr/sbin/tcpdump\r\n/usr/sbin/tcpdump = cap_net_admin,cap_net_raw+eip\r\n\r\n2. There is no pcap package under /opt/CAPEv2/storage/analyses/*/\r\n\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 22.04.1 LTS\r\n\r\n## Failure Logs\r\n\r\nNot found\r\n\r\n2022-10-08 02:45:59,100 [lib.cuckoo.core.scheduler] INFO: Using \"kvm\" machine manager with max_analysis_count=0, max_machines_count=10, and max_vmstartup_count=5\r\n2022-10-08 02:45:59,128 [lib.cuckoo.core.scheduler] INFO: Loaded 1 machine/s\r\n2022-10-08 02:45:59,133 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks\r\n2022-10-08 02:46:39,990 [lib.cuckoo.core.scheduler] INFO: Task #61: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_6pm49_l7/RF.exe'\r\n2022-10-08 02:46:40,009 [lib.cuckoo.core.scheduler] INFO: Task #61: File already exists at '/opt/CAPEv2/storage/binaries/f281fed414237c484d936802d8bc112995ba6df5c9485207a284b8fc31edf2e6'\r\n2022-10-08 02:46:40,019 [lib.cuckoo.core.scheduler] INFO: Task #61: acquired machine cuckoo1 (label=win7, arch=x86, platform=windows)\r\n2022-10-08 02:46:43,974 [lib.cuckoo.core.scheduler] INFO: Enabled route 'false'\r\n2022-10-08 02:46:43,994 [lib.cuckoo.core.guest] INFO: Task #61: Starting analysis on guest (id=cuckoo1, ip=192.168.100.105)\r\n2022-10-08 02:46:45,041 [lib.cuckoo.core.guest] INFO: Task #61: Guest is running CAPE Agent 0.11 (id=cuckoo1, ip=192.168.100.105)\r\n2022-10-08 02:46:46,711 [lib.cuckoo.core.guest] INFO: Task #61: Uploading support files to guest (id=cuckoo1, ip=192.168.100.105)\r\n2022-10-08 02:46:46,712 [lib.cuckoo.core.guest] INFO: Task #61: Uploading script files to guest (id=cuckoo1, ip=192.168.100.105)\r\n2022-10-08 02:50:22,696 [lib.cuckoo.core.guest] INFO: Task #61: Analysis completed successfully (id=cuckoo1, ip=192.168.100.105)\r\n2022-10-08 02:50:23,249 [lib.cuckoo.core.scheduler] INFO: Task #61: analysis procedure completed\r\n\nComment: @yumshanyum: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: Hello, thats normal it won't have if you not routing your traffic. Use proper route like internet/tor/inetsim/socks/vpn/etc to enable it\r\n```\r\n2022-10-08 02:46:43,974 [lib.cuckoo.core.scheduler] INFO: Enabled route 'false'\r\n```\r\n\r\n![image](https://user-images.githubusercontent.com/1856495/194697053-655cad1a-a63b-443b-82ba-070fcb3764cc.png)\r\n",
+  "Title: refurb\nBody: None\nComment: thanks @cr0hn for your twit with this lib ;) \nComment: @doomedraven anytime :) Thanks to you publishing new open software  ",
+  "Title: Code modernization with refurb\nBody: https://github.com/dosisod/refurb\r\n\r\n```\r\nrefurb utils/dist.py\r\nutils/dist.py:111:1 [FURB107]: Replace `try: ... except AttributeError: pass` with `with suppress(AttributeError): ...`\r\nutils/dist.py:123:62 [FURB120]: Don't pass an argument if it is the same as the default value\r\nutils/dist.py:151:13 [FURB103]: Use `y = Path(x).write_bytes(y)` instead of `with open(x, ...) as f: f.write(y)`\r\nutils/dist.py:546:81 [FURB120]: Don't pass an argument if it is the same as the default value\r\nutils/dist.py:766:33 [FURB107]: Replace `try: ... except Exception: pass` with `with suppress(Exception): ...`\r\nutils/dist.py:822:25 [FURB119]: Replace `{str(x)}` with `{x}`\r\nutils/dist.py:952:28 [FURB108]: Use `x in (y, z)` instead of `x == y or x == z`\r\nutils/dist.py:1063:25 [FURB131]: Replace `del x[y]` with `x.pop(y)`\r\nutils/dist.py:1082:33 [FURB131]: Replace `del x[y]` with `x.pop(y)`\r\n```\nComment: done ",
+  "Title: size bypass\nBody: None",
+  "Title: Unable to login as it says admin set manual approve\nBody: I am unable to use api documentation or login to my account as it says admin set manual approve. I need help on this thank you\nComment: @thahasinab: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.",
+  "Title: ensure reject_hostports is a string\nBody: When reject_hostports is a single port, CAPE will turn it to a number. We need to ensure reject_hostports is a string. ",
+  "Title: Missed dependecies when running poetry run python3 cuckoo.py\nBody: /usr/lib/python3/dist-packages/requests/__init__.py:89: RequestsDependencyWarning: urllib3 (1.26.12) or chardet (3.0.4) doesn't match a supported version!\r\n  warnings.warn(\"urllib3 ({}) or chardet ({}) doesn't match a supported \"\r\nCAPE parser: No module named Blister - No module named 'malduck'\r\n\r\n                               ),-.     /\r\n  Cuckoo Sandbox              <(a  `---','\r\n     no chance for malwares!  ( `-, ._> )\r\n                               ) _>.___/\r\n                                   _/\r\n\r\n Cuckoo Sandbox 2.2-CAPE\r\n www.cuckoosandbox.org\r\n Copyright (c) 2010-2015\r\n\r\n CAPE: Config and Payload Extraction\r\n github.com/kevoreilly/CAPEv2\r\n\r\nMissed peepdf library: pip3 install https://github.com/CAPESandbox/peepdf/archive/20eda78d7d77fc5b3b652ffc2d8a5b0af796e3dd.zip#egg=peepdf==0.4.2\r\nMissed dependency: pip3 install -U git+https://github.com/DissectMalware/batch_deobfuscator\r\nMissed dependency: pip3 install -U git+https://github.com/CAPESandbox/httpreplay\r\nMissed dependency: pip3 install proxmoxer -U\nComment: @Eric4Smith: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.",
+  "Title: recovery and deps\nBody: None",
+  "Title: Reject guest access some host ports\nBody: Reject guest access some host ports when using \"dirty line\".",
+  "Title: remove boto3 from core deps\nBody: None",
+  "Title: dist update\nBody: None",
+  "Title: Add documentation for additional analysis packages\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account acctivation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\r\n\r\nI would like to see all available analysis packages represented in the [documentation](https://capev2.readthedocs.io/en/latest/usage/packages.html).\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\nOnly a subset of all available analysis packages are listed. For example, these are the currently available analysis packages in Windows:\r\n\r\n```\r\nShellcode-Unpacker.py\r\nShellcode.py\r\nShellcode_x64.py\r\nUPX.py\r\nUPX_dll.py\r\nUnpacker.py\r\nUnpacker_dll.py\r\nUnpacker_js.py\r\nUnpacker_ps1.py\r\nUnpacker_regsvr.py\r\nUnpacker_zip.py\r\naccess.py\r\napplet.py\r\narchive.py\r\nchm.py\r\nchrome.py\r\ncpl.py\r\ndll.py\r\ndoc.py\r\ndoc2016.py\r\nedge.py\r\neml.py\r\nexe.py\r\nfirefox.py\r\ngeneric.py\r\nhta.py\r\nhtml.py\r\nhwp.py\r\nichitaro.py\r\nie.py\r\ninp.py\r\njar.py\r\njs.py\r\njs_antivm.py\r\nlnk.py\r\nmht.py\r\nmsbuild.py\r\nmsg.py\r\nmsi.py\r\nnsis.py\r\nollydbg.py\r\npdf.py\r\nppt.py\r\nppt2016.py\r\nprocesses.py\r\nprocesses_simple.py\r\nps1.py\r\nps1_x64.py\r\npub.py\r\npub2016.py\r\npython.py\r\nrar.py\r\nreg.py\r\nregsvr.py\r\nsct.py\r\nservice.py\r\nservice_dll.py\r\nswf.py\r\nvawtrak.py\r\nvbejse.py\r\nvbs.py\r\nwsf.py\r\nxls.py\r\nxls2016.py\r\nxlst.py\r\nxps.py\r\nzip.py\r\nzip_compound.py\r\n```\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. step 1\r\n2. step 2\r\n3. you get it...\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 16.04, Windows 10, macOS 10.12.3\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n",
+  "Title: Add documentation for additional analysis packages\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account acctivation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nI would like to see all available analysis packages represented in the [documentation](https://capev2.readthedocs.io/en/latest/usage/packages.html).\r\n\r\n# Current Behavior\r\n\r\nOnly a subset of all available analysis packages are listed. For example, these are the currently available analysis packages in Windows:\r\n```\r\nShellcode-Unpacker.py\r\nShellcode.py\r\nShellcode_x64.py\r\nUPX.py\r\nUPX_dll.py\r\nUnpacker.py\r\nUnpacker_dll.py\r\nUnpacker_js.py\r\nUnpacker_ps1.py\r\nUnpacker_regsvr.py\r\nUnpacker_zip.py\r\naccess.py\r\napplet.py\r\narchive.py\r\nchm.py\r\nchrome.py\r\ncpl.py\r\ndll.py\r\ndoc.py\r\ndoc2016.py\r\nedge.py\r\neml.py\r\nexe.py\r\nfirefox.py\r\ngeneric.py\r\nhta.py\r\nhtml.py\r\nhwp.py\r\nichitaro.py\r\nie.py\r\ninp.py\r\njar.py\r\njs.py\r\njs_antivm.py\r\nlnk.py\r\nmht.py\r\nmsbuild.py\r\nmsg.py\r\nmsi.py\r\nnsis.py\r\nollydbg.py\r\npdf.py\r\nppt.py\r\nppt2016.py\r\nprocesses.py\r\nprocesses_simple.py\r\nps1.py\r\nps1_x64.py\r\npub.py\r\npub2016.py\r\npython.py\r\nrar.py\r\nreg.py\r\nregsvr.py\r\nsct.py\r\nservice.py\r\nservice_dll.py\r\nswf.py\r\nvawtrak.py\r\nvbejse.py\r\nvbs.py\r\nwsf.py\r\nxls.py\r\nxls2016.py\r\nxlst.py\r\nxps.py\r\nzip.py\r\nzip_compound.py\r\n```\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n\nComment: @cccs-kevin: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.",
+  "Title: Updating to handle new exception message\nBody: None",
+  "Title: Add service_dll package\nBody: None",
+  "Title: vpn route script updates\nBody: None",
+  "Title: Fix service package\nBody: None",
+  "Title: Remote replay fix\nBody: None",
+  "Title: [Question] Migrating analyses reports\nBody: I have an analysis report in CAPE instance 1 and I'd like to migrate this report to CAPE instance 2.\r\nI already copied the /opt/CAPEv2/storage from CAPE instance 1 -> CAPE instance 2 but the report is not displayed inside the UI/web server for CAPE instance 2.\r\n\r\nWhat would be the next steps? What did I miss?\nComment: @enceladus3: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: Mongodb\nComment: @kevoreilly \r\nThanks for your quick response! \r\nI am thinking of this approach: \r\n\r\n\r\nstep 1: create a tunnel\r\n\r\nssh username@yourdomainOrIP -L 27018:localhost:27017\r\n...Enter your password\r\n\r\nstep 2 :\r\n\r\nmongo\r\nuse admin\r\ndb.copyDatabase(<fromdb>,<todb>,\"localhost:27018\",<username>,<password)\r\n\r\n\nComment: Let us know if it works! I have never tried myself.\nComment: @kevoreilly Hi, I successfully migrated it. \r\nDo you think I can contribute to this project by documenting the entire procedure?",
+  "Title: cleanup\nBody: None",
+  "Title: fix typo\nBody: None",
+  "Title: Screenshots can not taken when using az machinery\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account acctivation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I did read the README!\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X ] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\r\n\r\nTake screenshots during analysis phase. \r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\nScreenshots cannot be taken\r\n\r\n# Failure Information (for bugs)\r\n\r\nIt's not a failure, but a strange behaviour. \r\n\r\n## Steps to Reproduce\r\n\r\nWhen I use azure as a machine, I had to create a basic task with agent.pyw to be started during vm startup.\r\n\r\nHowever, the analysis does happen, just without screenshots.\r\n\r\nIf I change the agent to \"When I login\", the azure only sees the machine if I login with that account, because the agent only runs at login.\r\n\r\nFollowing the instructions in the documentation, CAPE does not identify the machine ready for analysis, since the agent is not running on that VMSS. If I log on, the script runs and the screenshot is taken.\r\n\r\nIf I use the other method (on startup), the analysis happens without the screenshot.\r\n\r\nIs there any suggestion to reconcile the two ways? When used in kvm this behavior does not happen.\r\n\r\n## Context\r\n\r\nCAPE deployed under azure\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: A difference with kvm is that there snapshots of a running state are used as opposed to booting every job.\r\n\r\nPerhaps the 'on startup' method launches the agent without elevation or 'interactive desktop' privs?\r\n\r\nI may have to defer to @cccs-kevin as I lack any real azure knowledge. \nComment: ![azure_agent_s1](https://user-images.githubusercontent.com/36763110/193446238-da5decd4-7ac6-4660-93ee-43637959e5da.png)\r\n\r\nOn startup method I ensure \"run with highest privileges\" is checked. I have tried to combine two tasks, but no success yet. \r\n\r\nThanks for your help, @kevoreilly \nComment: Hey @thezolin, it sounds like you have two problems:\r\n\r\n1. The CAPE agents on the VMSS VMs are not starting correctly once the VMs are booted, depending on your setup of the agent\r\n2. Screenshots are not taken on the VMSS VM\r\n\r\nFor the first issue, Azure \"snapshots\" do not maintain the state of the VM (running, not running) and are instead copies of the file system at a certain point in time. Therefore for each new task, a VM is essentially booted from a powered off state using this snapshot, so there is a slight time delay for the OS to spin up and the agent to start listening.\r\n\r\nIf you are using the startup method via the Task Scheduler, you definitely want to select \"Run whether user is logged on or not\" since that is the only way that the agent will start when the VM is booted up. Selecting \"Run with highest privileges\" can't hurt either.\r\n\r\nAlternatively if that doesn't work (which it seems like it isn't), you can try placing the agent file in the directory specified [here](https://capev2.readthedocs.io/en/latest/installation/guest/agent.html#prior-to-windows-10), which works for even some Windows 10 VMs.\r\n\r\nRegarding the second issue, \"the analysis happens without the screenshot\", I think the answer would lie in the `analysis.log` generated for the analysis which you can find on the CAPE host at /opt/CAPEv2/storage/analyses/<task-id>/analysis.log. This is a log of everything that is happening on the VMSS VM, and should provide some insight into why the screenshots are not being taken. \nComment: Hi @kevoreilly!\r\nI put the agent in the specific directory, but no success. I believe is because of windows version (Windows 10 Enterprise 21H2)\r\nI had checked the analysis.log file and the error message have no clue: \r\n2022-10-05 06:35:34,256 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageChops'\r\n2022-10-05 06:35:34,412 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageGrab'\r\n2022-10-05 06:35:34,412 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageDraw'\r\n...\r\n2022-10-05 06:35:34,459 [root] DEBUG: Initialized auxiliary module \"Screenshots\"\r\n2022-10-05 06:35:34,459 [root] DEBUG: Trying to start auxiliary module \"Screenshots\"...\r\n2022-10-05 06:35:34,459 [root] DEBUG: Started auxiliary module \"Screenshots\"\r\n2022-10-05 06:35:34,459 [root] DEBUG: Started auxiliary module Screenshots\r\n...\r\n2022-10-05 06:35:36,490 [modules.auxiliary.screenshots] ERROR: Cannot take screenshot: screen grab failed\r\n2022-10-05 06:35:36,506 [modules.auxiliary.evtx] DEBUG: Wiping Microsoft-Windows-Sysmon/Operational\r\n2022-10-05 06:35:37,506 [modules.auxiliary.screenshots] ERROR: Cannot take screenshot: screen grab failed\r\n2022-10-05 06:35:38,515 [modules.auxiliary.screenshots] ERROR: Cannot take screenshot: screen grab failed\r\n2022-10-05 06:35:39,530 [modules.auxiliary.screenshots] ERROR: Cannot take screenshot: screen grab failed\r\n\r\nIf I run agent using \"When I logon\" trigger, and login on VM, works fine. \r\nIf I run agent on startup, login or not, no screenshot taken. :(\r\n\r\nThanks again for your help. \r\n\r\n\nComment: Hmmm okay, this error is occurring [here ](https://github.com/kevoreilly/CAPEv2/blob/master/analyzer/windows/modules/auxiliary/screenshots.py#L53) in the Screenshots module, so maybe try tweaking that log to get more information? Such as adding the keyword argument `exc_info=True` to the `log.error` line?\r\n\r\nMaybe try enabling `netplwiz` to auto-login? https://www.howtogeek.com/443119/how-to-enable-or-disable-secure-sign-in-for-windows-10/\nComment: Hi @cccs-kevin, \r\nAfter this argument has been added, I got this error message:\r\n2022-10-07 05:51:43,761 [modules.auxiliary.screenshots] ERROR: Cannot take screenshot: screen grab failed\r\nTraceback (most recent call last):\r\n  File \"C:\\tmpyotht4tt\\modules\\auxiliary\\screenshots.py\", line 51, in run\r\n    img_current = Screenshot().take()\r\n  File \"C:\\tmpyotht4tt\\lib\\api\\screenshot.py\", line 92, in take\r\n    return ImageGrab.grab() if HAVE_PIL else None\r\n  File \"C:\\Program Files (x86)\\Python310-32\\lib\\site-packages\\PIL\\ImageGrab.py\", line 46, in grab\r\n    offset, size, data = Image.core.grabscreen_win32(\r\nOSError: screen grab failed\r\n\r\nI have tried the auto-login functionality, but still no success. \r\n![Screenshot_23](https://user-images.githubusercontent.com/36763110/194479028-f7dbe271-438e-4fbb-a7c8-5e4c931a3681.png)\r\n\nComment: Hey @thezolin thanks for adding that exception info to the log. Unfortunately it doesn't help us debug the screenshot issue. BUT by looking at your CAPE logs, it is definitely confirmed that for whatever reason, the agent is not accessible by CAPE, which we've already discussed. \r\n\r\nIf you follow the docs [here](https://capev2.readthedocs.io/en/latest/installation/guest/agent.html#installing-the-agent), this part may be useful to you:\r\n\r\n```\r\nDon\u2019t forget to test the agent before saving the snapshot. You can do it ... by executing: curl VM_IP:8000. You should see an output similar to the following:\r\n```\r\n![image](https://user-images.githubusercontent.com/59843993/194545639-99a2831d-b510-42e6-aad2-59f5db3be8ad.png)\r\n\r\nBasically I think the issue lies in your \"golden image\" VM, and I would start the \"golden image\" VM from a powered-off state, wait 30 seconds, then test this curl command from the host, and if the host does not get the expected response, then something if not working correctly on the \"golden image\" VM. This way you can isolate the problem to how your \"golden image\" VM is working prior to taking a snapshot and prior to running CAPE, which should make the problem easier.\r\n\r\nGood luck!\nComment: Hi @cccs-kevin, \r\nI followed all steps on docs, but still not working. I will close this topic. \r\nThanks for your help. \r\n\r\n",
+  "Title: Don't take screenshot on Windows Guest\nBody: ## Don't take screenshot on Windows Guest\r\nWe're having trouble getting screenshots of the guest during analysis.\r\nWe already have two agent.pyw tasks on the guest machine, one during startup and another to be executed at login, as instructed.\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\r\n\r\n# Current Behavior\r\n\r\nCAPE take screen shots\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Install Windows guest\r\n2. Confirm the pillow and python 32bits instaltion\r\n3. Launch the analysis\r\n4. Don't get any screen shot, \r\n5. ERROR: Cannot take screenshot: screen grab failed on log file\r\n\r\n## Context\r\n\r\nWe remind you that we are using azure as machinery.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | c0d553aa38ee57462711655bc2686ae22e4256a8\r\n| OS version       | Ubuntu 22.04\r\n\r\n## Failure Logs\r\nDuring the analysis no screenshot is taken as it does not appear in the log. In the analysis log, we have the following:\r\n```\r\n2022-09-29 09:37:52,271 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.screenshots\"...\r\n2022-09-29 09:37:52,271 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageChops'\r\n2022-09-29 09:37:52,396 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageGrab'\r\n2022-09-29 09:37:52,411 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageDraw'\r\n2022-09-29 09:37:52,458 [root] DEBUG: Trying to start auxiliary module \"Screenshots\"...\r\n2022-09-29 09:37:52,458 [root] DEBUG: Started auxiliary module \"Screenshots\"\r\n2022-09-29 09:37:55,521 [modules.auxiliary.screenshots] ERROR: Cannot take screenshot: screen grab failed\r\n2022-09-29 09:37:56,536 [modules.auxiliary.screenshots] ERROR: Cannot take screenshot: screen grab failed\r\n2022-09-29 09:37:57,552 [modules.auxiliary.screenshots] ERROR: Cannot take screenshot: screen grab failed\r\n2022-09-29 09:37:58,568 [modules.auxiliary.screenshots] ERROR: Cannot take screenshot: screen grab failed\r\n2022-09-29 09:37:58,599 [root] INFO: Restarting WMI Service\r\n2022-09-29 09:37:59,584 [modules.auxiliary.screenshots] ERROR: Cannot take screenshot: screen grab failed\r\n2022-09-29 09:38:00,599 [modules.auxiliary.screenshots] ERROR: Cannot take screenshot: screen grab failed.\r\n```\r\n\nComment: @rleal124: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: Have you installed Pillow on the guest?\nComment: > Have you installed Pillow on the guest?\r\n\r\nYes, `pip3 install pillow pywintrace`\nComment: Which guest operating system? Hypervisor? Have you ensured the vm screen is not locked?\nComment: > Which guest operating system? Hypervisor? Have you ensured the vm screen is not locked?\r\n\r\nI using Windows 10, in Azure environment and yes I ensured the screen not locked\nComment: Hmm do you have any Windows 7 vms to test? I suspect this issue is specific to Win10 as I have seen similar running on Hyper-V...",
+  "Title: Adding support for cwd for js, vbs and bat, and checking for db -> dll\nBody: None",
+  "Title: Keeping folder structure for extracted archive files\nBody: None",
+  "Title: Bug fix that updates delete call to begin_delete\nBody: None",
+  "Title: Do not rename .bat file in archive package\nBody: None",
+  "Title: Unable to use linux packages\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account acctivation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nCan select package for linux VM via web interface or utils/submit.py, analysis performs via correct linux package\r\n\r\n# Current Behavior\r\n\r\nIt is impossible to select linux package via Submit/Analysis package (for an example bash package exists in `analyzer/linux/modules/packages/` but is absent in web UI menu). Even if package is specified in commandline for submit.py, cape is not honoring it - analysis starts without any package, or not starts at all (stuck in pending state). Don't know if this is a misconfiguration / bug, or absence of support is expected (in that case it's strange, why `analyzer/linux` exists)\r\n\r\n# Failure Information (for bugs)\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. take elf or bash script\r\n2. submit it via submit.py or web interface\r\n3. task stuck at pending state or executed without any package\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | commit c0d553aa38ee57462711655bc2686ae22e4256a8\r\n| OS version       | Ubuntu 20.04.5 LTS (same for 22.04.1 LTS)\r\n\r\n**conf/web.conf**\r\n\r\n> #enable linux fields on webgui\r\n> [linux]\r\n> #For advanced users only, can be buggy, linux analysis is work in progress for fun\r\n> enabled = yes\r\n\r\n## Failure Logs\r\n\r\n> cape@cape01:/opt/CAPEv2$ python3 -m poetry run python utils/submit.py --machine cuckoo-ub1804 --platform linux --package bash /tmp/virus.sh\r\n> INFO:lib.cuckoo.core.database:Do sandbox packages need an update? Sflock identifies as: False - b'/tmp/cuckoo-tmp/upload_mkpgp6j3/virus.sh'\r\n> Success: File \"/tmp/virus.sh\" added as task with ID 8\r\n\r\n> 2022-09-24 19:13:23,003 [root] DEBUG: Starting analyzer from: /tmppu60lwlo\r\n> 2022-09-24 19:13:23,003 [root] DEBUG: Storing results at: /tmp/tTpIcbq\r\n> 2022-09-24 19:13:23,003 [lib.core.packages] INFO: _guess_package_name failed\r\n> 2022-09-24 19:13:23,004 [lib.core.packages] INFO: ASCII text\r\n> 2022-09-24 19:13:23,004 [lib.core.packages] INFO: virus.sh\r\n\r\n<img width=\"889\" alt=\"screenshot\" src=\"https://user-images.githubusercontent.com/17908622/192114962-fadce995-b64c-4684-9f96-45e7f634703c.png\">\r\n\r\n\nComment: do you have enabled DYNAMIC_ARCH_DETERMINATION by this `web_conf.general.dynamic_arch_determination`? inside of web.conf?\nComment: Hello, thank you for your reply.\r\n\r\nYes, dynamic arch and platform determinations are enabled in web config\r\n\r\n```\r\n# Assign architecture to task to fetch correct VM type\r\ndynamic_arch_determination = yes\r\n# Assign platform to task to fetch correct VM type\r\ndynamic_platform_determination = yes\r\n```\nComment: Than someone broke it \ud83e\udd23i dont have time this week to look into this issue\n\nEl mar, 27 sept 2022 18:41, alx1m1k ***@***.***> escribi\u00f3:\n\n> Hello, thank you for your reply.\n>\n> Yes, dynamic arch and platform determinations are enabled in web config\n>\n> Assign architecture to task to fetch correct VM type\n>\n> dynamic_arch_determination = yes\n> Assign platform to task to fetch correct VM type\n>\n> dynamic_platform_determination = yes\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1166#issuecomment-1259772849>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH34A2INYCJO3LMDORYDWAMPSXANCNFSM6AAAAAAQUYOIVU>\n> .\n> You are receiving this because you commented.Message ID:\n> ***@***.***>\n>\n\nComment: I've got a fair bit of Linux changes in the works that could help here.\nComment: @nbargnesi do you have a status update on your aforementioned Linux changes? I'm wondering because I've also hit a wall in terms of Linux detonation.\nComment: Not yet, but I've got Ubuntu 20.04/22.04, Oracle, and Fedora linux detonating in CAPE regularly it just takes a fair bit of work to get there. Part of the problem is how outdated open source Linux malware analysis is everywhere you look.\r\n\r\nHere's a sense for the initial bit of what's needed to make CAPE decent at doing Linux malware - no particular order:\r\n\r\n- Rewrite [extra/systemtap/strace.stp](https://github.com/kevoreilly/CAPEv2/blob/188f2929bae0c3eb0b41488fa15f3029a8d6e023/extra/systemtap/strace.stp). What's there is pretty basic and doesn't handle things like process creation.\r\n- Rewrite  [analyzer/linux/modules/auxiliary/filecollector.py](https://github.com/kevoreilly/CAPEv2/blob/master/analyzer/linux/modules/auxiliary/filecollector.py). The pyinotify library it uses is dead. The collector can miss a lot, deadlock, etc. Use something like [fanotify](https://www.kernel.org/doc/html/v5.17/admin-guide/filesystem-monitoring.html) or kernel instrumentation, possibly via an auxiliary analyzer module.\r\n- Use a better path when doing the analysis in the VM. IIRC [determine_system_drive](https://github.com/kevoreilly/CAPEv2/blob/188f2929bae0c3eb0b41488fa15f3029a8d6e023/lib/cuckoo/core/guest.py#L180) is what's at least partly responsible for where the analysis goes, and uses `/` which requires write permissions in the VM. We shouldn't need to run in the VM as root. It should work if a VM is configured that way, but it shouldn't be a requirement.\r\n- Rewrite [analyzer/linux/lib/api/screenshot.py](https://github.com/kevoreilly/CAPEv2/blob/master/analyzer/linux/lib/api/screenshot.py). With the switch to Wayland, PIL won't work. There are alternatives. I'm using gnome-screenshot, but [someone thought it would be a good idea to make the whole screen flash](https://gitlab.gnome.org/GNOME/gnome-shell/-/issues/3866) when a screenshot is taken so it's not ideal.\r\n- Parse analysis logs and fit them into CAPE's behavioral analysis report and UI.\r\n- Documentation.\r\n\r\nSome point this month, my current plan is to kick off a long-lived branch to start collecting these changes, maybe do something like what @doomedraven did with his big v2 PR some time ago. I don't see a good path to a set of smaller PRs.\nComment: Hi.I have seen your branch. Have you tested which files can be correctly analyzed in the ubuntu virtual machine? Thank you. @nbargnesi \nComment: > Hi.I have seen your branch. Have you tested which files can be correctly analyzed in the ubuntu virtual machine? Thank you. @nbargnesi\r\n\r\nWith Ubuntu VMs specifically, coverage isn't too good. This is based on how Ubuntu generally fairs with SystemTap support, which is to say in general not very well.\r\n\r\nUbuntu 22.04 with the SystemTap rewrite in my branch will work, but you'll need to turn on SystemTap's guru mode when building the kernel module, to help work around the instrumentation overhead.\r\n\r\nIn the end, you'll be able to analyze files, but CAPE needs a lot more work to make sense of the results.\nComment: Okay, I understand. It seems like it takes a lot of effort to debug. It doesn't seem suitable for me now. I can only wish the pioneers in this field no more bugs \ud83d\ude00@nbargnesi**_ \nComment: this is now should be fixed, so closing this issue",
+  "Title: Create Trojan_Rozena.yar\nBody: None\nComment: Hello, thank you for you contribution. The community yara should go to that repo https://github.com/kevoreilly/community. if you want i can move it. or if you want you can move it, let me know\nComment: Also yara is not in keeping with cape standard.\r\n\r\n'Trojan' should not be part of the family name, it should just be 'Rozena'.\r\n\r\nClassification in cape needs a cape_type which here would be \"Rozena Payload\".\r\n\r\nThere is only a single pattern which is poor for resisting FP and future breakages. A minimum of two but preferably three patterns would be better.\r\n\r\nA hash should be included with the PR or better in the yara sig metadata so we can test the yara and know from which sample(s) it was derived.\r\n\r\nThank you for contributing to making cape better.\nComment: Okay, guys, well noted, thanks for your tips, I'm going to include the information assigned to your side in the community part.\nComment: thanks",
+  "Title: Reverting to previous use of VMSS but with updated packages\nBody: Reverting back to the use of Uniform Orchestration for the VMSS\r\nhttps://github.com/kevoreilly/CAPEv2/pull/1158",
+  "Title: Add auto-selection of Dll exports based on export code (e.g. BumbleBe\u2026\nBody: \u2026eLoader)",
+  "Title: Guac server not pointed properly in submission/remote_status.html template\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account acctivation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\r\n\r\n# Current Behavior\r\n\r\nThe Guacamole separate server is referenced in the file **CAPEv2/tree/master/web/templates/submission/remote_status.html** as a part of the cape-web app.\r\n\r\n# Failure Information (for bugs)\r\n\r\nSince the guacamole app was separated from the cape-web app (as I see in the commits) the original url (obtained with `window.location.origin`) gives 404 error.\r\nThe url should be changed with the new configured one (`127.0.0.1:8008` from the service config file).\r\n\r\n## Steps to Reproduce\r\n1. Enable the Guacamole app in web.conf and configure it\r\n2. Submit a sample checking the interactive session\r\n3. Click the interactive session id to be redirected to the guacamole app\r\n4. The server gives 404\r\n\r\n## Context\r\n\r\nThe bug is present starting from the separation of the guac server commit.\r\n\r\n## Failure Logs\r\n.\r\n\nComment: thanks for the PR",
+  "Title: Guac server not pointed properly in submission/remote_status.html template\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account acctivation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\r\n\r\n# Current Behavior\r\n\r\nThe Guacamole separate server is referenced in the file **CAPEv2/tree/master/web/templates/submission/remote_status.html** as a part of the cape-web app.\r\n\r\n# Failure Information (for bugs)\r\n\r\nSince the guacamole app was separated from the cape-web app (as I see in the commits) the original url (obtained with `window.location.origin`) gives 404 error.\r\nThe url should be changed with the new configured one (`127.0.0.1:8008` from the service config file).\r\n\r\n## Steps to Reproduce\r\n1. Enable the Guacamole app in web.conf and configure it\r\n2. Submit a sample checking the interactive session\r\n3. Click the interactive session id to be redirected to the guacamole app\r\n4. The server gives 404\nComment: @rgsax: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.",
+  "Title:  Guac server not pointed properly in submission/remote_status.html template\nBody: Hi\r\nin the template **CAPEv2/tree/master/web/templates/submission/remote_status.html** the guacamole separate server is not properly pointed. At the moment there is the following code:\r\n\r\n```\r\n{% if running %}\r\n    <script>\r\n        window.open(window.location.origin + \"/guac/{{task_id}}/{{session_data}}\", \"_self\");\r\n    </script>\r\n{% else %}\r\n...\r\n```\r\n\r\n`window.location.origin` should be changed with the actual configured server (`127.0.0.1:8008` from the .service file).\nComment: @rgsax: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.",
+  "Title: Fix poetry path and guacamole asgi app name\nBody: None\nComment: the path is looks like is depended of each OS, so we need to use SED i guess, but the other fix is correct, thank you",
+  "Title: Updating the techniques used for reimaging and deleting, etc.\nBody: A few things here:\r\n- Using the most up-to-date credential technique\r\n- Adding a configurable option for the number of seconds to wait for a new relevant task before setting a machine pool to \"delete\" mode\r\n- Adding a developer option that can skip reimaging / updating VMSS VMs\r\n- Adding a \"specific locked machines\" log in the periodic log\r\n- Using the most up-to-date clients for Compute and Network management, so modifying models and methods to keep up\r\n- Using VMSS with Flexible orchestration rather than the default Uniform method\r\n- Setting the Azure timeout for operations to 2 minutes instead of 5\r\n- Refactoring the way we do reimaging and deleting from batch to individual now that we are using Flexible orchestration",
+  "Title: Update Vidar.yar\nBody: None",
+  "Title: Question about deployment CAPE on Azure environment\nBody: ## Question about deployment CAPE on Azure environment \r\n* I am read the documentation present https://capev2.readthedocs.io/en/latest/installation/host/cloud.html.\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nInstall the CAPE on Azure environment. Understand what reequipments addcional I need to meet \r\n\r\n# Current Behavior\r\nI am read the documentation present https://capev2.readthedocs.io/en/latest/installation/host/cloud.html.\r\nAnd also I am read and try understand the configurations presents on config path in specific the az.conf\r\nAnd for last but not less import I review the cape2.sh\r\nBut I still have some questions. \r\n1. For Azure environment is still necessary install the libvirt and KVM, before?\r\n2. Any advice for Azure installation?\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n\r\n\r\n\nComment: @rleal124: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: @cccs-kevin can you answer please his question?\nComment: but it doesn't look like you need any of those libraries, you just need azure libs https://github.com/kevoreilly/CAPEv2/blob/master/modules/machinery/az.py\nComment: First thanks @doomedraven for your feedback. \r\nI can remove/comment from cape2.sh the part for libvirt ? \r\nAnd this line pip install azure-identity msrest msrestazure azure-mgmt-compute azure-mgmt-network ? \r\n\nComment: yes, the script is mine so it's done for me and my needs, so everyone can optimise for their needs ;) \nComment: Thanks.\nComment: About the interface variable NETWORK_IFACE. I think is interface will connect VM for analysis. Correct ? \r\nOn Azure environment, the NETWORK_IFACE should connect to RG3? \nComment: Iface is fpr local server for tor, see docs about azure for it\nconfiguration, script is done for kvm, as is uniq hypervisor thqt im using\n\nEl jue, 22 sept 2022 9:25, rleal124 ***@***.***> escribi\u00f3:\n\n> About the interface variable NETWORK_IFACE. I think is interface will\n> connect VM for analysis. Correct ?\n> On Azure environment, the NETWORK_IFACE should connect to RG3?\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1156#issuecomment-1254633004>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH367BVZMX3J4HJ6NY2LV7QCWPANCNFSM6AAAAAAQSEYVWM>\n> .\n> You are receiving this because you were mentioned.Message ID:\n> ***@***.***>\n>\n\nComment: Thanks for you patience and help. \r\nSo, the following variables is for TOR, correct ?\r\n```\r\nNETWORK_IFACE=virbr1\r\n# for tor\r\nIFACE_IP=\"192.168.1.1\"\r\n```\nComment: Hey @rleal124, for your first question (which @doomedraven nailed), you do not need libvirt and KVM since we are interacting with the Azure platform via web calls. You do need [the following packages though](https://github.com/kevoreilly/CAPEv2/blob/master/modules/machinery/az.py#L22). \r\n\r\nFor you second question, here is the documentation that I've written to assist with an Azure + CAPE deployment:\r\n- https://capev2.readthedocs.io/en/latest/installation/host/cloud.html\r\n- https://capev2.readthedocs.io/en/latest/installation/guest/saving.html#azure\r\n- If you have any questions or something is unclear, let me know!\r\n\r\n(Also I'll be reverting the most recent PR I made to the Azure machinery after testing it in production, so stay tuned)\nComment: > About the interface variable NETWORK_IFACE. I think is interface will connect VM for analysis. Correct ? On Azure environment, the NETWORK_IFACE should connect to RG3?\r\n\r\nIn the Azure environment,  the NETWORK_IFACE variable in the `cape.sh` script should be set to the name of the NIC for VNET2_SUB2_NIC.\nComment: Hi @cccs-kevin, Thanks a lot your comments and answers. \r\nI will modify the cape2.sh and remove libvirt install and add the following lines:\r\n\r\n```\r\nsudo -u ${USER} bash -c 'export PYTHON_KEYRING_BACKEND=keyring.backends.null.Keyring; poetry run python -m pip install azure-identity msrest msrestazure azure-mgmt-compute azure-mgmt-network'\r\n#sudo usermod -aG kvm ${USER}\r\n#sudo usermod -aG libvirt ${USER}\r\n```\r\n\r\nAlso identify the mongoDB 6 is not supported on Ubuntu 22.04.\r\n\nComment: i guess we can start adding ifs for machinery in that script\nComment: about mongo is weird as i can see it here https://repo.mongodb.org/apt/ubuntu/dists/jammy/mongodb-org/6.0/\nComment: From mongoDB documentation: \r\n\r\n![image](https://user-images.githubusercontent.com/70579679/191765398-6ac6222c-9c90-4b56-bc75-a570a8c76e88.png)\r\n\r\n\nComment: well docs not always being updated, as sources always speak the truth and not docs ;) \nComment: Thanks @doomedraven, good to know. Today I am learned a new stuff.\nComment: after many years dealing with open source and software in general, you will learn to trust more to code than any docs :D #SadTruth\nComment: > Hey @rleal124, for your first question (which @doomedraven nailed), you do not need libvirt and KVM since we are interacting with the Azure platform via web calls. You do need [the following packages though](https://github.com/kevoreilly/CAPEv2/blob/master/modules/machinery/az.py#L22).\r\n> \r\n> For you second question, here is the documentation that I've written to assist with an Azure + CAPE deployment:\r\n> \r\n>     * https://capev2.readthedocs.io/en/latest/installation/host/cloud.html\r\n> \r\n>     * https://capev2.readthedocs.io/en/latest/installation/guest/saving.html#azure\r\n> \r\n>     * If you have any questions or something is unclear, let me know!\r\n> \r\n> \r\n> (Also I'll be reverting the most recent PR I made to the Azure machinery after testing it in production, so stay tuned)\r\n\r\nHere is the PR for the updated Azure machinery https://github.com/kevoreilly/CAPEv2/pull/1164\nComment: Thanks a lot for your help. \r\n\r\nI will starting the deployment, by first implement the RG. \r\n\r\nI will keep posted about he progress. \r\n\r\nAgain many thanks\r\n\nComment: just be careful, old good meme xD\r\n![image](https://user-images.githubusercontent.com/1856495/191910085-029416fd-caa2-4ca1-983a-80692e042165.png)\r\n\nComment: Hello again. \r\n\r\nI am install the cape using the script, and replace the az.py for  https://github.com/kevoreilly/CAPEv2/pull/1164.\r\n\r\nI got the following error.\r\n\r\n`Sep 23 07:33:20 capesbxhost01 python3[30030]: 2022-09-23 07:33:20,794 [modules.machinery.az] WARNING: Failed to <bound method GalleryImagesOperations.get of <azure.mgmt.compute.v2019_12_01.operations._gallery_images_operations.GalleryImagesOperations object at 0x7ff8ce087fd0>>(('it-cs_CAPESandbox_resources', 'CAPESandbox_Gallery', 'CAPESandbox_Image')) due to the Azure error ''ClientSecretCredential' object has no attribute 'signed_session'': 'AttributeError(\"'ClientSecretCredential' object has no attribute 'signed_session'\")'.\r\nSep 23 07:33:20 capesbxhost01 python3[30030]: 2022-09-23 07:33:20,794 [root] CRITICAL: CuckooCriticalError: Gallery image 'CAPESandbox_Image' does not exist`\r\n\r\nBut if I using the old az.py I am not got error above. \r\n\r\nAny advice? \r\n\nComment: Try running the following from the `/opt/CAPEv2` directory : `poetry run python -m pip install -U azure-identity msrest msrestazure azure-mgmt-compute azure-mgmt-network`\r\n\nComment: Not take any effect. I edited the cape2.sh and add the following line, for install the azure modules during the installation \r\n` sudo -u ${USER} bash -c 'export PYTHON_KEYRING_BACKEND=keyring.backends.null.Keyring; poetry run python -m pip install azure-identity msrest msrestazure azure-mgmt-compute azure-mgmt-network'`\r\n\nComment: Can you show me the versions of those packages via `poetry run python -m pip freeze` ? And just to confirm, you are using the most up-to-date version of `az.py`?\nComment: > \r\nAbout the MongoDB\r\nI need use the mongo for Focal. If I used the Jammy, when I run apt search mongodb-org\r\n```\r\nsudo apt search mongodb-org\r\nSorting... Done\r\nFull Text Search... Done\r\n```\r\n\r\nThe solution I found is used for Focal:\r\n```\r\necho \"deb [signed-by=/etc/apt/keyrings/mongo.gpg arch=amd64] https://repo.mongodb.org/apt/ubuntu focal/mongodb-org/6.0 multiverse\" > /etc/apt/sources.list.d/mongodb.list\r\ncurl -LO http://archive.ubuntu.com/ubuntu/pool/main/o/openssl/libssl1.1_1.1.1f-1ubuntu2.16_amd64.deb\r\nsudo dpkg -i ./libssl1.1_1.1.1f-1ubuntu2.16_amd64.deb\r\n```\r\n\r\n\nComment: > Can you show me the versions of those packages via `poetry run python -m pip freeze` ? And just to confirm, you are using the most up-to-date version of `az.py`?\r\n\r\nI am install form scratch and I confirm I using the last a `az.py`. I don't the previous error now. \r\nAny way in below the output from `poetry run python -m pip freeze`\r\n\r\n```\r\npoetry run python -m pip freeze\r\n(...)\r\nazure-common==1.1.28\r\nazure-core==1.25.1\r\nazure-identity==1.11.0\r\nazure-mgmt-compute==28.0.0\r\nazure-mgmt-core==1.3.2\r\nazure-mgmt-network==21.0.1\r\n(...)\r\n```\r\nI am just running the first analysis for test. \r\nAfter doing a clean installation of cape, we have this behavior where after the timeout of 5 minutes, the machine is instantiated. As soon as we send an analysis, the machine that would theoretically be ready to use, is not recognized and ends up being re-instantiated in a loop.\r\n\r\nAny ideas about this behavior?\r\nIn below the cape.service log, (I add -d flag for debug)\r\n\r\n```\r\nSep 23 12:34:57 capesbxhost02 python3[2799]: 2022-09-23 12:34:57,121 [lib.cuckoo.core.scheduler] INFO: Using \"az\" machine manager with max_analysis_count=0, max_machines_count=10, and max_vmstartup_count=5\r\nSep 23 12:34:57 capesbxhost02 python3[2799]: 2022-09-23 12:34:57,127 [modules.machinery.az] DEBUG: Connecting to Azure for the region 'WestEurope'.\r\nSep 23 12:34:57 capesbxhost02 python3[2799]: 2022-09-23 12:34:57,133 [modules.machinery.az] DEBUG: Trying <bound method GalleryImagesOperations.get of <azure.mgmt.compute.v2022_01_03.operations._gallery_images_operations.GalleryImagesOperations object at 0x7f8894cbf610>>(('it-cs_CAPESandbox_resources', 'CAPESandbox_Gallery', 'CAPESandbox_Image'))\r\nSep 23 12:34:57 capesbxhost02 python3[2799]: 2022-09-23 12:34:57,652 [modules.machinery.az] DEBUG: Trying <bound method VirtualMachineScaleSetsOperations.list of <azure.mgmt.compute.v2022_08_01.operations._virtual_machine_scale_sets_operations.VirtualMachineScaleSetsOperations object at 0x7f8894cbf7f0>>(('it-cs_CAPESandbox_resources',))\r\nSep 23 12:34:57 capesbxhost02 python3[2799]: 2022-09-23 12:34:57,857 [modules.machinery.az] DEBUG: Trying <bound method VirtualMachineScaleSetsOperations.begin_update of <azure.mgmt.compute.v2022_08_01.operations._virtual_machine_scale_sets_operations.VirtualMachineScaleSetsOperations object at 0x7f88955bbaf0>>(('it-cs_CAPESandbox_resources', 'CAPEAnalysisVMSS', <azure.mgmt.compute.v2022_08_01.models._models_py3.VirtualMachineScaleSet object at 0x7f88955bba00>))\r\nSep 23 12:35:59 capesbxhost02 python3[2799]: 2022-09-23 12:35:59,901 [modules.machinery.az] DEBUG: Trying <bound method SubnetsOperations.get of <azure.mgmt.network.v2022_01_01.operations._operations.SubnetsOperations object at 0x7f88953049d0>>(('it-cs_CAPESandbox', 'vnet2_CAPESandbox', 'VNET2_SUB2'))\r\nSep 23 12:36:00 capesbxhost02 python3[2799]: 2022-09-23 12:36:00,142 [modules.machinery.az] DEBUG: Adding machines to database for CAPEAnalysisVMSS.\r\nSep 23 12:36:00 capesbxhost02 python3[2799]: 2022-09-23 12:36:00,149 [modules.machinery.az] DEBUG: Trying <bound method VirtualMachineScaleSetVMsOperations.list of <azure.mgmt.compute.v2022_08_01.operations._virtual_machine_scale_set_vms_operations.VirtualMachineScaleSetVMsOperations object at 0x7f88955b8fd0>>(('it-cs_CAPESandbox_resources', 'CAPEAnalysisVMSS'))\r\nSep 23 12:36:00 capesbxhost02 python3[2799]: 2022-09-23 12:36:00,150 [modules.machinery.az] DEBUG: Trying <bound method NetworkInterfacesOperations.list_virtual_machine_scale_set_network_interfaces of <azure.mgmt.network.v2022_01_01.operations._operations.NetworkInterfacesOperations object at 0x7f8896378790>>(('it-cs_CAPESandbox_resources', 'CAPEAnalysisVMSS'))\r\nSep 23 12:36:00 capesbxhost02 python3[2799]: 2022-09-23 12:36:00,332 [modules.machinery.az] DEBUG: CAPEAnalysisVMSS_1: Initializing...\r\n(..)\r\nSep 23 12:40:50 capesbxhost02 python3[2799]: 2022-09-23 12:40:50,627 [modules.machinery.az] DEBUG: CAPEAnalysisVMSS_1: Initializing...\r\nSep 23 12:41:00 capesbxhost02 python3[2799]: Exception in thread Thread-5 (_thr_wait_for_ready_machine):\r\nSep 23 12:41:00 capesbxhost02 python3[2799]: Traceback (most recent call last):\r\nSep 23 12:41:00 capesbxhost02 python3[2799]:   File \"/usr/lib/python3.10/threading.py\", line 1016, in _bootstrap_inner\r\nSep 23 12:41:00 capesbxhost02 python3[2799]:     self.run()\r\nSep 23 12:41:00 capesbxhost02 python3[2799]:   File \"/usr/lib/python3.10/threading.py\", line 953, in run\r\nSep 23 12:41:00 capesbxhost02 python3[2799]:     self._target(*self._args, **self._kwargs)\r\nSep 23 12:41:00 capesbxhost02 python3[2799]:   File \"/opt/CAPEv2/modules/machinery/az.py\", line 660, in _thr_wait_for_ready_machine\r\nSep 23 12:41:00 capesbxhost02 python3[2799]:     raise CuckooGuestCriticalTimeout(\r\nSep 23 12:41:00 capesbxhost02 python3[2799]: lib.cuckoo.common.exceptions.CuckooGuestCriticalTimeout: Machine CAPEAnalysisVMSS_1: the guest initialization hit the critical timeout, analysis aborted.\r\nSep 23 12:41:00 capesbxhost02 python3[2799]: 2022-09-23 12:41:00,639 [modules.machinery.az] DEBUG: Trying <bound method ResourceSkusOperations.list of <azure.mgmt.compute.v2021_07_01.operations._resource_skus_operations.ResourceSkusOperations object at 0x7f8894cbf490>>(('WestEurope',))\r\nSep 23 12:41:17 capesbxhost02 python3[2799]: 2022-09-23 12:41:17,681 [lib.cuckoo.core.scheduler] INFO: Loaded 1 machine/s\r\nSep 23 12:41:17 capesbxhost02 python3[2799]: 2022-09-23 12:41:17,685 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks\r\nSep 23 12:44:00 capesbxhost02 python3[2799]: 2022-09-23 12:44:00,884 [lib.cuckoo.core.scheduler] DEBUG: Task #1: Processing task\r\nSep 23 12:44:00 capesbxhost02 python3[2799]: 2022-09-23 12:44:00,886 [lib.cuckoo.core.scheduler] INFO: Task #1: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_vlusaxso/cape_rubbish.txt'\r\nSep 23 12:44:00 capesbxhost02 python3[2799]: 2022-09-23 12:44:00,906 [lib.cuckoo.core.scheduler] INFO: Task #1: acquired machine CAPEAnalysisVMSS_1 (label=CAPEAnalysisVMSS_1, arch=x64, platform=windows)\r\nSep 23 12:44:00 capesbxhost02 python3[2799]: 2022-09-23 12:44:00,924 [lib.cuckoo.common.integrations.parse_pe] ERROR: PE type not recognised: 'DOS Header magic not found.'\r\nSep 23 12:44:00 capesbxhost02 python3[2799]: 2022-09-23 12:44:00,926 [modules.machinery.az] DEBUG: Trying <bound method UsageOperations.list of <azure.mgmt.compute.v2022_08_01.operations._usage_operations.UsageOperations object at 0x7f88652afaf0>>(('WestEurope',))\r\nSep 23 12:44:00 capesbxhost02 python3[2799]: 2022-09-23 12:44:00,926 [modules.machinery.az] DEBUG: Scaling CAPEAnalysisVMSS size from 0 -> 1\r\nSep 23 12:44:00 capesbxhost02 python3[2799]: 2022-09-23 12:44:00,927 [modules.machinery.az] DEBUG: Trying <bound method VirtualMachineScaleSetsOperations.get of <azure.mgmt.compute.v2022_08_01.operations._virtual_machine_scale_sets_operations.VirtualMachineScaleSetsOperations object at 0x7f88651f1c60>>(('it-cs_CAPESandbox_resources', 'CAPEAnalysisVMSS'))\r\nSep 23 12:44:00 capesbxhost02 python3[2799]: 2022-09-23 12:44:00,928 [lib.cuckoo.core.resultserver] DEBUG: Task #1: The associated machine IP is 172.21.3.7\r\nSep 23 12:44:00 capesbxhost02 python3[2799]: 2022-09-23 12:44:00,965 [lib.cuckoo.core.scheduler] INFO: Enabled route 'none'\r\nSep 23 12:44:00 capesbxhost02 python3[2799]: 2022-09-23 12:44:00,966 [lib.cuckoo.core.plugins] DEBUG: Started auxiliary module: Sniffer\r\nSep 23 12:44:00 capesbxhost02 python3[2799]: 2022-09-23 12:44:00,986 [lib.cuckoo.core.guest] INFO: Task #1: Starting analysis on guest (id=CAPEAnalysisVMSS_1, ip=172.21.3.7)\r\nSep 23 12:44:00 capesbxhost02 python3[2799]: 2022-09-23 12:44:00,991 [lib.cuckoo.core.guest] DEBUG: Task #1: CAPEAnalysisVMSS_1 is not ready yet\r\nSep 23 12:44:01 capesbxhost02 python3[2799]: 2022-09-23 12:44:01,096 [modules.machinery.az] DEBUG: Trying <bound method VirtualMachineScaleSetsOperations.begin_update of <azure.mgmt.compute.v2022_08_01.operations._virtual_machine_scale_sets_operations.VirtualMachineScaleSetsOperations object at 0x7f885cd49240>>(('it-cs_CAPESandbox_resources', 'CAPEAnalysisVMSS', <azure.mgmt.compute.v2022_08_01.models._models_py3.VirtualMachineScaleSet object at 0x7f88651f3e50>))\r\nSep 23 12:44:01 capesbxhost02 python3[2799]: 2022-09-23 12:44:01,997 [lib.cuckoo.core.guest] DEBUG: Task #1: CAPEAnalysisVMSS_1 is not ready yet\r\n(..)\r\nSep 23 12:44:11 capesbxhost02 python3[2799]: 2022-09-23 12:44:11,061 [lib.cuckoo.core.guest] DEBUG: Task #1: CAPEAnalysisVMSS_1 is not ready yet\r\nSep 23 12:44:11 capesbxhost02 python3[2799]: 2022-09-23 12:44:11,963 [modules.machinery.az] DEBUG: The scaling of CAPEAnalysisVMSS took 11s\r\nSep 23 12:44:11 capesbxhost02 python3[2799]: 2022-09-23 12:44:11,963 [modules.machinery.az] DEBUG: Updated CAPEAnalysisVMSS capacity: 1; Initial capacity: 0\r\nSep 23 12:44:11 capesbxhost02 python3[2799]: 2022-09-23 12:44:11,963 [modules.machinery.az] DEBUG: Adding machines to database for CAPEAnalysisVMSS.\r\nSep 23 12:44:11 capesbxhost02 python3[2799]: 2022-09-23 12:44:11,966 [modules.machinery.az] DEBUG: Trying <bound method VirtualMachineScaleSetVMsOperations.list of <azure.mgmt.compute.v2022_08_01.operations._virtual_machine_scale_set_vms_operations.VirtualMachineScaleSetVMsOperations object at 0x7f88651f1000>>(('it-cs_CAPESandbox_resources', 'CAPEAnalysisVMSS'))\r\nSep 23 12:44:11 capesbxhost02 python3[2799]: 2022-09-23 12:44:11,967 [modules.machinery.az] DEBUG: Trying <bound method NetworkInterfacesOperations.list_virtual_machine_scale_set_network_interfaces of <azure.mgmt.network.v2022_01_01.operations._operations.NetworkInterfacesOperations object at 0x7f88652694e0>>(('it-cs_CAPESandbox_resources', 'CAPEAnalysisVMSS'))\r\nSep 23 12:44:12 capesbxhost02 python3[2799]: 2022-09-23 12:44:12,068 [lib.cuckoo.core.guest] DEBUG: Task #1: CAPEAnalysisVMSS_1 is not ready yet\r\nSep 23 12:44:12 capesbxhost02 python3[2799]: 2022-09-23 12:44:12,142 [modules.machinery.az] DEBUG: Scaling CAPEAnalysisVMSS has completed.\r\nSep 23 12:44:13 capesbxhost02 python3[2799]: 2022-09-23 12:44:13,074 [lib.cuckoo.core.guest] DEBUG: Task #1: CAPEAnalysisVMSS_1 is not ready yet\r\n(..)\r\nSep 23 12:44:56 capesbxhost02 python3[2799]: 2022-09-23 12:44:56,344 [lib.cuckoo.core.guest] DEBUG: Task #1: CAPEAnalysisVMSS_1 is not ready yet\r\nSep 23 12:44:57 capesbxhost02 python3[2799]: 2022-09-23 12:44:57,134 [modules.machinery.az] DEBUG: Monitoring the machine pools...\r\nSep 23 12:44:57 capesbxhost02 python3[2799]: 2022-09-23 12:44:57,143 [modules.machinery.az] DEBUG: Trying <bound method UsageOperations.list of <azure.mgmt.compute.v2022_08_01.operations._usage_operations.UsageOperations object at 0x7f889630ded0>>(('WestEurope',))\r\nSep 23 12:44:57 capesbxhost02 python3[2799]: 2022-09-23 12:44:57,143 [modules.machinery.az] DEBUG: Scaling CAPEAnalysisVMSS size from 0 -> 1\r\nSep 23 12:44:57 capesbxhost02 python3[2799]: 2022-09-23 12:44:57,144 [modules.machinery.az] DEBUG: Trying <bound method VirtualMachineScaleSetsOperations.get of <azure.mgmt.compute.v2022_08_01.operations._virtual_machine_scale_sets_operations.VirtualMachineScaleSetsOperations object at 0x7f8865269f30>>(('it-cs_CAPESandbox_resources', 'CAPEAnalysisVMSS'))\r\nSep 23 12:44:57 capesbxhost02 python3[2799]: 2022-09-23 12:44:57,179 [modules.machinery.az] DEBUG: Trying <bound method VirtualMachineScaleSetsOperations.begin_update of <azure.mgmt.compute.v2022_08_01.operations._virtual_machine_scale_sets_operations.VirtualMachineScaleSetsOperations object at 0x7f8865269690>>(('it-cs_CAPESandbox_resources', 'CAPEAnalysisVMSS', <azure.mgmt.compute.v2022_08_01.models._models_py3.VirtualMachineScaleSet object at 0x7f8865220940>))\r\nSep 23 12:44:57 capesbxhost02 python3[2799]: 2022-09-23 12:44:57,350 [lib.cuckoo.core.guest] DEBUG: Task #1: CAPEAnalysisVMSS_1 is not ready yet\r\n(..)\r\nSep 23 12:45:07 capesbxhost02 python3[2799]: 2022-09-23 12:45:07,413 [lib.cuckoo.core.guest] DEBUG: Task #1: CAPEAnalysisVMSS_1 is not ready yet\r\nSep 23 12:45:07 capesbxhost02 python3[2799]: 2022-09-23 12:45:07,863 [modules.machinery.az] DEBUG: The scaling of CAPEAnalysisVMSS took 11s\r\nSep 23 12:45:07 capesbxhost02 python3[2799]: 2022-09-23 12:45:07,863 [modules.machinery.az] DEBUG: Updated CAPEAnalysisVMSS capacity: 1; Initial capacity: 0\r\nSep 23 12:45:07 capesbxhost02 python3[2799]: 2022-09-23 12:45:07,863 [modules.machinery.az] DEBUG: Adding machines to database for CAPEAnalysisVMSS.\r\nSep 23 12:45:07 capesbxhost02 python3[2799]: 2022-09-23 12:45:07,866 [modules.machinery.az] DEBUG: Trying <bound method VirtualMachineScaleSetVMsOperations.list of <azure.mgmt.compute.v2022_08_01.operations._virtual_machine_scale_set_vms_operations.VirtualMachineScaleSetVMsOperations object at 0x7f88651f3970>>(('it-cs_CAPESandbox_resources', 'CAPEAnalysisVMSS'))\r\nSep 23 12:45:07 capesbxhost02 python3[2799]: 2022-09-23 12:45:07,867 [modules.machinery.az] DEBUG: Trying <bound method NetworkInterfacesOperations.list_virtual_machine_scale_set_network_interfaces of <azure.mgmt.network.v2022_01_01.operations._operations.NetworkInterfacesOperations object at 0x7f88651f1a80>>(('it-cs_CAPESandbox_resources', 'CAPEAnalysisVMSS'))\r\nSep 23 12:45:07 capesbxhost02 python3[2799]: 2022-09-23 12:45:07,984 [modules.machinery.az] DEBUG: Scaling CAPEAnalysisVMSS has completed.\r\nSep 23 12:45:08 capesbxhost02 python3[2799]: 2022-09-23 12:45:08,419 [lib.cuckoo.core.guest] DEBUG: Task #1: CAPEAnalysisVMSS_1 is not ready yet\r\n(..)\r\nSep 23 12:48:20 capesbxhost02 python3[2799]: 2022-09-23 12:48:20,644 [lib.cuckoo.core.guest] DEBUG: Task #1: CAPEAnalysisVMSS_1 is not ready yet\r\nSep 23 12:48:21 capesbxhost02 python3[2799]: 2022-09-23 12:48:21,645 [lib.cuckoo.core.scheduler] ERROR: Machine CAPEAnalysisVMSS_1: the guest initialization hit the critical timeout, analysis aborted\r\nSep 23 12:48:21 capesbxhost02 python3[2799]: Traceback (most recent call last):\r\nSep 23 12:48:21 capesbxhost02 python3[2799]:   File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 364, in launch_analysis\r\nSep 23 12:48:21 capesbxhost02 python3[2799]:     guest.start_analysis(options)\r\nSep 23 12:48:21 capesbxhost02 python3[2799]:   File \"/opt/CAPEv2/lib/cuckoo/core/guest.py\", line 268, in start_analysis\r\nSep 23 12:48:21 capesbxhost02 python3[2799]:     self.wait_available()\r\nSep 23 12:48:21 capesbxhost02 python3[2799]:   File \"/opt/CAPEv2/lib/cuckoo/core/guest.py\", line 158, in wait_available\r\nSep 23 12:48:21 capesbxhost02 python3[2799]:     raise CuckooGuestCriticalTimeout(\r\nSep 23 12:48:21 capesbxhost02 python3[2799]: lib.cuckoo.common.exceptions.CuckooGuestCriticalTimeout: Machine CAPEAnalysisVMSS_1: the guest initialization hit the critical timeout, analysis aborted\r\nSep 23 12:48:21 capesbxhost02 python3[2799]: 2022-09-23 12:48:21,658 [lib.cuckoo.core.plugins] DEBUG: Stopped auxiliary module: Sniffer\r\nSep 23 12:48:21 capesbxhost02 python3[2799]: 2022-09-23 12:48:21,658 [modules.machinery.az] DEBUG: Stopping machine 'CAPEAnalysisVMSS_1'\r\nSep 23 12:48:22 capesbxhost02 python3[2799]: 2022-09-23 12:48:22,797 [modules.machinery.az] DEBUG: Trying <bound method VirtualMachineScaleSetsOperations.begin_reimage_all of <azure.mgmt.compute.v2022_08_01.operations._virtual_machine_scale_sets_operations.VirtualMachineScaleSetsOperations object at 0x7f8865241690>>(('it-cs_CAPESandbox_resources', 'CAPEAnalysisVMSS', <azure.mgmt.compute.v2022_08_01.models._models_py3.VirtualMachineScaleSetVMInstanceIDs object at 0x7f8865243a60>))\r\nSep 23 12:48:39 capesbxhost02 python3[2799]: 2022-09-23 12:48:39,145 [modules.machinery.az] DEBUG: Reimaging instances ['1'] in CAPEAnalysisVMSS took 16s\r\nSep 23 12:48:41 capesbxhost02 python3[2799]: 2022-09-23 12:48:41,679 [lib.cuckoo.core.resultserver] DEBUG: Task #1: Stopped tracking machine 172.21.3.7\r\nSep 23 12:48:41 capesbxhost02 python3[2799]: 2022-09-23 12:48:41,711 [lib.cuckoo.core.scheduler] ERROR:\r\nSep 23 12:48:41 capesbxhost02 python3[2799]: Traceback (most recent call last):\r\nSep 23 12:48:41 capesbxhost02 python3[2799]:   File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 461, in run\r\nSep 23 12:48:41 capesbxhost02 python3[2799]:     success = self.launch_analysis()\r\nSep 23 12:48:41 capesbxhost02 python3[2799]:   File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 437, in launch_analysis\r\nSep 23 12:48:41 capesbxhost02 python3[2799]:     raise CuckooDeadMachine()\r\nSep 23 12:48:41 capesbxhost02 python3[2799]: lib.cuckoo.core.scheduler.CuckooDeadMachine\r\nSep 23 12:48:41 capesbxhost02 python3[2799]: 2022-09-23 12:48:41,711 [lib.cuckoo.core.scheduler] INFO: Task #1: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_vlusaxso/cape_rubbish.txt'\r\nSep 23 12:48:41 capesbxhost02 python3[2799]: 2022-09-23 12:48:41,713 [lib.cuckoo.core.scheduler] INFO: Task #1: File already exists at '/opt/CAPEv2/storage/binaries/1/07b45b34ca3b159ea764cb3382d118943f12f9a35f14ae0cae00abdfacb9243c'\r\nSep 23 12:48:41 capesbxhost02 python3[2799]: 2022-09-23 12:48:41,713 [lib.cuckoo.core.scheduler] INFO: Task #1: File already exists at '/opt/CAPEv2/storage/binaries/07b45b34ca3b159ea764cb3382d118943f12f9a35f14ae0cae00abdfacb9243c'\r\nSep 23 12:48:41 capesbxhost02 python3[2799]: 2022-09-23 12:48:41,715 [lib.cuckoo.core.scheduler] DEBUG: Task #1: no machine available yet for machine 'None', platform 'windows' or tags '[<Tag('2','x86')>]'.\r\nSep 23 12:48:42 capesbxhost02 python3[2799]: 2022-09-23 12:48:42,720 [lib.cuckoo.core.scheduler] DEBUG: Task #1: no machine available yet for machine 'None', platform 'windows' or tags '[<Tag('2','x86')>]'.\r\nSep 23 12:48:42 capesbxhost02 python3[2799]: 2022-09-23 12:48:42,837 [modules.machinery.az] DEBUG: Trying <bound method VirtualMachineScaleSetsOperations.begin_delete_instances of <azure.mgmt.compute.v2022_08_01.operations._virtual_machine_scale_sets_operations.VirtualMachineScaleSetsOperations object at 0x7f886524ba90>>(('it-cs_CAPESandbox_resources', 'CAPEAnalysisVMSS', <azure.mgmt.compute.v2022_08_01.models._models_py3.VirtualMachineScaleSetVMInstanceIDs object at 0x7f8865241d20>))\r\nSep 23 12:48:43 capesbxhost02 python3[2799]: 2022-09-23 12:48:43,724 [lib.cuckoo.core.scheduler] DEBUG: Task #1: no machine available yet for machine 'None', platform 'windows' or tags '[<Tag('2','x86')>]'.\r\n(..)\r\nSep 23 12:49:16 capesbxhost02 python3[2799]: 2022-09-23 12:49:16,869 [lib.cuckoo.core.scheduler] DEBUG: Task #1: no machine available yet for machine 'None', platform 'windows' or tags '[<Tag('2','x86')>]'.\r\nSep 23 12:49:17 capesbxhost02 python3[2799]: 2022-09-23 12:49:17,053 [modules.machinery.az] DEBUG: Deleting instances ['1'] in CAPEAnalysisVMSS took 34s\r\nSep 23 12:49:17 capesbxhost02 python3[2799]: 2022-09-23 12:49:17,873 [lib.cuckoo.core.scheduler] DEBUG: Task #1: no machine available yet for machine 'None', platform 'windows' or tags '[<Tag('2','x86')>]'.\r\n(..)\r\nSep 23 12:49:57 capesbxhost02 python3[2799]: 2022-09-23 12:49:57,041 [lib.cuckoo.core.scheduler] DEBUG: Task #1: no machine available yet for machine 'None', platform 'windows' or tags '[<Tag('2','x86')>]'.\r\nSep 23 12:49:57 capesbxhost02 python3[2799]: 2022-09-23 12:49:57,136 [modules.machinery.az] DEBUG: Monitoring the machine pools...\r\nSep 23 12:49:57 capesbxhost02 python3[2799]: 2022-09-23 12:49:57,144 [modules.machinery.az] DEBUG: Trying <bound method UsageOperations.list of <azure.mgmt.compute.v2022_08_01.operations._usage_operations.UsageOperations object at 0x7f886524b310>>(('WestEurope',))\r\nSep 23 12:49:57 capesbxhost02 python3[2799]: 2022-09-23 12:49:57,145 [modules.machinery.az] DEBUG: Scaling CAPEAnalysisVMSS size from 0 -> 1\r\nSep 23 12:49:57 capesbxhost02 python3[2799]: 2022-09-23 12:49:57,145 [modules.machinery.az] DEBUG: Trying <bound method VirtualMachineScaleSetsOperations.get of <azure.mgmt.compute.v2022_08_01.operations._virtual_machine_scale_sets_operations.VirtualMachineScaleSetsOperations object at 0x7f885cce59c0>>(('it-cs_CAPESandbox_resources', 'CAPEAnalysisVMSS'))\r\nSep 23 12:49:57 capesbxhost02 python3[2799]: 2022-09-23 12:49:57,176 [modules.machinery.az] DEBUG: Trying <bound method VirtualMachineScaleSetsOperations.begin_update of <azure.mgmt.compute.v2022_08_01.operations._virtual_machine_scale_sets_operations.VirtualMachineScaleSetsOperations object at 0x7f885cce7d60>>(('it-cs_CAPESandbox_resources', 'CAPEAnalysisVMSS', <azure.mgmt.compute.v2022_08_01.models._models_py3.VirtualMachineScaleSet object at 0x7f885ccfcac0>))\r\nSep 23 12:49:58 capesbxhost02 python3[2799]: 2022-09-23 12:49:58,045 [lib.cuckoo.core.scheduler] DEBUG: Task #1: no machine available yet for machine 'None', platform 'windows' or tags '[<Tag('2','x86')>]'.\r\n(..)\r\nSep 23 12:50:58 capesbxhost02 python3[2799]: 2022-09-23 12:50:58,313 [lib.cuckoo.core.scheduler] DEBUG: Task #1: no machine available yet for machine 'None', platform 'windows' or tags '[<Tag('2','x86')>]'.\r\nSep 23 12:50:59 capesbxhost02 python3[2799]: 2022-09-23 12:50:59,193 [modules.machinery.az] DEBUG: The scaling of CAPEAnalysisVMSS took 62s\r\nSep 23 12:50:59 capesbxhost02 python3[2799]: 2022-09-23 12:50:59,193 [modules.machinery.az] DEBUG: Updated CAPEAnalysisVMSS capacity: 1; Initial capacity: 0\r\nSep 23 12:50:59 capesbxhost02 python3[2799]: 2022-09-23 12:50:59,194 [modules.machinery.az] DEBUG: Adding machines to database for CAPEAnalysisVMSS.\r\nSep 23 12:50:59 capesbxhost02 python3[2799]: 2022-09-23 12:50:59,196 [modules.machinery.az] DEBUG: Trying <bound method VirtualMachineScaleSetVMsOperations.list of <azure.mgmt.compute.v2022_08_01.operations._virtual_machine_scale_set_vms_operations.VirtualMachineScaleSetVMsOperations object at 0x7f885ccfd780>>(('it-cs_CAPESandbox_resources', 'CAPEAnalysisVMSS'))\r\nSep 23 12:50:59 capesbxhost02 python3[2799]: 2022-09-23 12:50:59,197 [modules.machinery.az] DEBUG: Trying <bound method NetworkInterfacesOperations.list_virtual_machine_scale_set_network_interfaces of <azure.mgmt.network.v2022_01_01.operations._operations.NetworkInterfacesOperations object at 0x7f885ccfc160>>(('it-cs_CAPESandbox_resources', 'CAPEAnalysisVMSS'))\r\nSep 23 12:50:59 capesbxhost02 python3[2799]: 2022-09-23 12:50:59,317 [lib.cuckoo.core.scheduler] DEBUG: Task #1: no machine available yet for machine 'None', platform 'windows' or tags '[<Tag('2','x86')>]'.\r\nSep 23 12:50:59 capesbxhost02 python3[2799]: 2022-09-23 12:50:59,428 [modules.machinery.az] DEBUG: Scaling CAPEAnalysisVMSS has completed.\r\nSep 23 12:51:00 capesbxhost02 python3[2799]: 2022-09-23 12:51:00,333 [lib.cuckoo.core.scheduler] INFO: Task #1: acquired machine CAPEAnalysisVMSS_2 (label=CAPEAnalysisVMSS_2, arch=x64, platform=windows)\r\nSep 23 12:51:00 capesbxhost02 python3[2799]: 2022-09-23 12:51:00,347 [lib.cuckoo.common.integrations.parse_pe] ERROR: PE type not recognised: 'DOS Header magic not found.'\r\nSep 23 12:51:00 capesbxhost02 python3[2799]: 2022-09-23 12:51:00,349 [modules.machinery.az] DEBUG: Trying <bound method UsageOperations.list of <azure.mgmt.compute.v2022_08_01.operations._usage_operations.UsageOperations object at 0x7f885ccff3d0>>(('WestEurope',))\r\nSep 23 12:51:00 capesbxhost02 python3[2799]: 2022-09-23 12:51:00,349 [modules.machinery.az] DEBUG: Scaling CAPEAnalysisVMSS size from 0 -> 1\r\nSep 23 12:51:00 capesbxhost02 python3[2799]: 2022-09-23 12:51:00,350 [modules.machinery.az] DEBUG: Trying <bound method VirtualMachineScaleSetsOperations.get of <azure.mgmt.compute.v2022_08_01.operations._virtual_machine_scale_sets_operations.VirtualMachineScaleSetsOperations object at 0x7f885ccff280>>(('it-cs_CAPESandbox_resources', 'CAPEAnalysisVMSS'))\r\nSep 23 12:51:00 capesbxhost02 python3[2799]: 2022-09-23 12:51:00,351 [lib.cuckoo.core.resultserver] DEBUG: Task #1: The associated machine IP is 172.21.3.7\r\nSep 23 12:51:00 capesbxhost02 python3[2799]: 2022-09-23 12:51:00,378 [lib.cuckoo.core.scheduler] INFO: Enabled route 'none'\r\nSep 23 12:51:00 capesbxhost02 python3[2799]: 2022-09-23 12:51:00,378 [lib.cuckoo.core.plugins] DEBUG: Started auxiliary module: Sniffer\r\nSep 23 12:51:00 capesbxhost02 python3[2799]: 2022-09-23 12:51:00,389 [lib.cuckoo.core.guest] INFO: Task #1: Starting analysis on guest (id=CAPEAnalysisVMSS_2, ip=172.21.3.7)\r\nSep 23 12:51:00 capesbxhost02 python3[2799]: 2022-09-23 12:51:00,472 [modules.machinery.az] DEBUG: Trying <bound method VirtualMachineScaleSetsOperations.begin_update of <azure.mgmt.compute.v2022_08_01.operations._virtual_machine_scale_sets_operations.VirtualMachineScaleSetsOperations object at 0x7f885ccfff70>>(('it-cs_CAPESandbox_resources', 'CAPEAnalysisVMSS', <azure.mgmt.compute.v2022_08_01.models._models_py3.VirtualMachineScaleSet object at 0x7f885cd1b460>))\r\nSep 23 12:51:01 capesbxhost02 python3[2799]: 2022-09-23 12:51:01,392 [lib.cuckoo.core.guest] DEBUG: Task #1: CAPEAnalysisVMSS_2 is not ready yet\r\n(..)\r\nSep 23 12:51:07 capesbxhost02 python3[2799]: 2022-09-23 12:51:07,434 [lib.cuckoo.core.guest] DEBUG: Task #1: CAPEAnalysisVMSS_2 is not ready yet\r\n```\r\n\r\n\nComment: It looks like the agent on your VM is not listing on port 8000, or is inaccessible from the CAPE nest. You can try `curl <ip of guest>:8000` from the nest to see if you get a response from the agent.\nComment: Thanks for the trick. The golden trick is `curl <ip of guest>:8000`\r\nThe problem are located on agent Task Scheduler.\r\nWe are modify \"Set the trigger as When I logon and click Next.\" to \"When the compute starts\"\r\nAnd Set from \"Run only when user is logged on\" to \"Run whether user is logged on or not\"\nComment: that curl thing is in our docs ;) \nComment: Other thing I noted.\r\nThe tcpdump now are installed on `/usr/bin/tcpdump`\r\nSo I change on my side the `sniffer.py` under the location` /opt/CAPEv2/modules/auxiliary`\r\nAnd modify the line:         \r\nFrom: `tcpdump = self.options.get(\"tcpdump\", \"/usr/sbin/tcpdump\")`\r\nTo: `tcpdump = self.options.get(\"tcpdump\", \"/usr/bin/tcpdump\")`\r\n\r\nAlso I change on cape2.sh\r\nFrom: `aa-complain /usr/sbin/tcpdump`\r\nTo: `aa-complain /usr/bin/tcpdump`\r\nFrom: `aa-disable /usr/sbin/tcpdump`\r\nTo: `aa-disable /usr/bin/tcpdump`\r\nFrom: `chgrp pcap /usr/sbin/tcpdump`\r\nTo: `chgrp pcap /usr/bin/tcpdump`\r\nFrom: `setcap cap_net_raw,cap_net_admin=eip /usr/sbin/tcpdump`\r\nTo: `setcap cap_net_raw,cap_net_admin=eip /usr/bin/tcpdump`\nComment: Sorry, I got some problem about the tcpdump.\r\nI check the documentation, and I don't found a reason for CAPE don't run the tcpdump. \r\nCan please tell me some thing I need toc check?\r\n\r\n```\r\n[lib.cuckoo.core.plugins] DEBUG: Executing processing module \"NetworkAnalysis\" on analysis at \"/opt/CAPEv2/storage/analyses/17\"\r\n[modules.processing.network] WARNING: The PCAP file does not exist at path \"/opt/CAPEv2/storage/analyses/17/dump.pcap\"\r\n```\nComment: Tcpdump requires root privileges, but since cape does not run as root you have to set specific Linux capabilities to the binary:\r\n\r\n```\r\n$ sudo setcap cap_net_raw,cap_net_admin=eip /usr/sbin/tcpdump\r\n```\r\n\r\nYou can verify the results of last command with:\r\n\r\n```\r\n$ getcap /usr/sbin/tcpdump\r\n/usr/sbin/tcpdump = cap_net_admin,cap_net_raw+eip\r\n```\nComment: > Thanks for the trick. The golden trick is `curl <ip of guest>:8000` The problem are located on agent Task Scheduler. We are modify \"Set the trigger as When I logon and click Next.\" to \"When the compute starts\" And Set from \"Run only when user is logged on\" to \"Run whether user is logged on or not\"\r\n\r\nFeel free to update the docs with a PR for this page so that other users don't make the same mistake https://capev2.readthedocs.io/en/latest/installation/guest/agent.html\nComment: > Tcpdump requires root privileges, but since cape does not run as root you have to set specific Linux capabilities to the binary:\r\n> \r\n> ```\r\n> $ sudo setcap cap_net_raw,cap_net_admin=eip /usr/sbin/tcpdump\r\n> ```\r\n> \r\n> You can verify the results of last command with:\r\n> \r\n> ```\r\n> $ getcap /usr/sbin/tcpdump\r\n> /usr/sbin/tcpdump = cap_net_admin,cap_net_raw+eip\r\n> ```\r\n\r\nOn ubuntu 22.04 the location of tcpdump is under /`usr/bin/tcpdump`\r\nIn below the output `getcap /usr/bin/tcpdump`, I think the result is similar.\r\n```\r\ncape@capesbxhost02:/opt/CAPEv2$ getcap /usr/bin/tcpdump\r\n/usr/bin/tcpdump cap_net_admin,cap_net_raw=eip\r\n```\nComment: yes, that is changed in cape2.sh but not in aux.conf\nComment: about why tcpdump doesn't work no really idea, but what i can suggest is to add print statement and see args, then run them by hand in terminal to view what kind of error it gives you\nComment: > about why tcpdump doesn't work no really idea, but what i can suggest is to add print statement and see args, then run them by hand in terminal to view what kind of error it gives you\r\n\r\nCan you please tell me how I can do? \nComment: > yes, that is changed in cape2.sh but not in aux.conf\r\n\r\nYes, I change also on `aux.conf` file.\r\n```\r\n# Specify the path to your local installation of tcpdump. Make sure this\r\n# path is correct.\r\n#tcpdump = /usr/sbin/tcpdump\r\ntcpdump = /usr/bin/tcpdump\r\n```\nComment: https://github.com/kevoreilly/CAPEv2/blob/master/modules/auxiliary/sniffer.py#L178\r\njust before this line add `print(pargs)` you will get list of args, so you might need later to run something like this once you copy that list: `\"\".join(WHOLE LIST OF ARGS HERE AS LIST)`. EExamplee: `\"\".join([\"tcpdump\", \"x\", \"y\", ......])`\nComment: > https://github.com/kevoreilly/CAPEv2/blob/master/modules/auxiliary/sniffer.py#L178 just before this line add `print(pargs)` you will get list of args, so you might need later to run something like this once you copy that list: `\"\".join(WHOLE LIST OF ARGS HERE AS LIST)`. EExamplee: `\"\".join([\"tcpdump\", \"x\", \"y\", ......])`\r\n\r\nI had change the code to: \r\n```\r\ntry:\r\n    print(pargs)\r\n    self.proc = subprocess.Popen(pargs, stdout=subprocess.PIPE, stderr=subprocess.PIPE, shell=False)\r\nexcept (OSError, ValueError):\r\n    log.exception(\"Failed to start sniffer (interface=%s, host=%s, dump path=%s)\", interface, host, file_path)\r\n    return\r\n```\r\nOn cape log I can observe the sniffer auxiliary started, but I expect see the following message:\r\n`\"Started sniffer with PID %d (interface=%s, host=%s, dump path=%s)\"`\r\nBut I don't observe. \r\n```\r\n[lib.cuckoo.core.scheduler] INFO: Enabled route 'none'\r\nSep 26 18:25:30 capesbxhost02 python3[1002]: 2022-09-26 18:25:30,771 [lib.cuckoo.core.plugins] DEBUG: Started auxiliary module: Sniffer\r\nSep 26 18:25:30 capesbxhost02 python3[1002]: 2022-09-26 18:25:30,794 [lib.cuckoo.core.guest] INFO: Task #25: Starting analysis on guest (id=CAPESBXAnalysisVMSS_1, ip=172.21.3.7)\r\nSep 26 18:25:30 capesbxhost02 python3[1002]: 2022-09-26 18:25:30,810 [lib.cuckoo.core.guest] INFO: Task #25: Guest is running CAPE Agent 0.11 (id=CAPESBXAnalysisVMSS_1, ip=172.21.3.7)\r\nSep 26 18:25:30 capesbxhost02 python3[1002]: 2022-09-26 18:25:30,951 [lib.cuckoo.core.guest] DEBUG: Task #25: Uploading analyzer to guest (id=CAPESBXAnalysisVMSS_1, ip=172.21.3.7, size=26692942)\r\n```\r\n\nComment: That wont work, do it in  my way\n\nEl lun, 26 sept 2022 20:36, rleal124 ***@***.***> escribi\u00f3:\n\n>\n> https://github.com/kevoreilly/CAPEv2/blob/master/modules/auxiliary/sniffer.py#L178\n> just before this line add print(pargs) you will get list of args, so you\n> might need later to run something like this once you copy that list: \"\".join(WHOLE\n> LIST OF ARGS HERE AS LIST). EExamplee: \"\".join([\"tcpdump\", \"x\", \"y\",\n> ......])\n>\n> I had change the code to:\n>\n> try:\n>     print(pargs)\n>     self.proc = subprocess.Popen(pargs, stdout=subprocess.PIPE, stderr=subprocess.PIPE, shell=False)\n> except (OSError, ValueError):\n>     log.exception(\"Failed to start sniffer (interface=%s, host=%s, dump path=%s)\", interface, host, file_path)\n>     return\n>\n> On cape log I can observe the sniffer auxiliary started, but I expect see\n> the following message:\n> \"Started sniffer with PID %d (interface=%s, host=%s, dump path=%s)\"\n> But I don't observe.\n>\n> [lib.cuckoo.core.scheduler] INFO: Enabled route 'none'\n> Sep 26 18:25:30 capesbxhost02 python3[1002]: 2022-09-26 18:25:30,771 [lib.cuckoo.core.plugins] DEBUG: Started auxiliary module: Sniffer\n> Sep 26 18:25:30 capesbxhost02 python3[1002]: 2022-09-26 18:25:30,794 [lib.cuckoo.core.guest] INFO: Task #25: Starting analysis on guest (id=CAPESBXAnalysisVMSS_1, ip=172.21.3.7)\n> Sep 26 18:25:30 capesbxhost02 python3[1002]: 2022-09-26 18:25:30,810 [lib.cuckoo.core.guest] INFO: Task #25: Guest is running CAPE Agent 0.11 (id=CAPESBXAnalysisVMSS_1, ip=172.21.3.7)\n> Sep 26 18:25:30 capesbxhost02 python3[1002]: 2022-09-26 18:25:30,951 [lib.cuckoo.core.guest] DEBUG: Task #25: Uploading analyzer to guest (id=CAPESBXAnalysisVMSS_1, ip=172.21.3.7, size=26692942)\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1156#issuecomment-1258450252>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH33JNBIGVAYQYOGHDXTWAHUKLANCNFSM6AAAAAAQSEYVWM>\n> .\n> You are receiving this because you were mentioned.Message ID:\n> ***@***.***>\n>\n\nComment: > That wont work, do it in my way El lun, 26 sept 2022 20:36, rleal124 ***@***.***> escribi\u00f3:\r\n> [\u2026](#)\r\n> https://github.com/kevoreilly/CAPEv2/blob/master/modules/auxiliary/sniffer.py#L178 just before this line add print(pargs) you will get list of args, so you might need later to run something like this once you copy that list: \"\".join(WHOLE LIST OF ARGS HERE AS LIST). EExamplee: \"\".join([\"tcpdump\", \"x\", \"y\", ......]) I had change the code to: try: print(pargs) self.proc = subprocess.Popen(pargs, stdout=subprocess.PIPE, stderr=subprocess.PIPE, shell=False) except (OSError, ValueError): log.exception(\"Failed to start sniffer (interface=%s, host=%s, dump path=%s)\", interface, host, file_path) return On cape log I can observe the sniffer auxiliary started, but I expect see the following message: \"Started sniffer with PID %d (interface=%s, host=%s, dump path=%s)\" But I don't observe. [lib.cuckoo.core.scheduler] INFO: Enabled route 'none' Sep 26 18:25:30 capesbxhost02 python3[1002]: 2022-09-26 18:25:30,771 [lib.cuckoo.core.plugins] DEBUG: Started auxiliary module: Sniffer Sep 26 18:25:30 capesbxhost02 python3[1002]: 2022-09-26 18:25:30,794 [lib.cuckoo.core.guest] INFO: Task #25: Starting analysis on guest (id=CAPESBXAnalysisVMSS_1, ip=172.21.3.7) Sep 26 18:25:30 capesbxhost02 python3[1002]: 2022-09-26 18:25:30,810 [lib.cuckoo.core.guest] INFO: Task #25: Guest is running CAPE Agent 0.11 (id=CAPESBXAnalysisVMSS_1, ip=172.21.3.7) Sep 26 18:25:30 capesbxhost02 python3[1002]: 2022-09-26 18:25:30,951 [lib.cuckoo.core.guest] DEBUG: Task #25: Uploading analyzer to guest (id=CAPESBXAnalysisVMSS_1, ip=172.21.3.7, size=26692942) \u2014 Reply to this email directly, view it on GitHub <[#1156 (comment)](https://github.com/kevoreilly/CAPEv2/issues/1156#issuecomment-1258450252)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAOFH33JNBIGVAYQYOGHDXTWAHUKLANCNFSM6AAAAAAQSEYVWM> . You are receiving this because you were mentioned.Message ID: ***@***.***>\r\n\r\nI am sorry, this correct?\r\n```\r\nprint(''.join[tcpdump, \"-U\", \"-q\", \"-s\", \"0\", \"-i\", interface, \"-n\"])\r\nself.proc = subprocess.Popen(pargs, stdout=subprocess.PIPE, stderr=subprocess.PIPE, shell=False)\r\n```\nComment: Show me the output of pargs\n\nEl lun, 26 sept 2022 21:18, rleal124 ***@***.***> escribi\u00f3:\n\n> That wont work, do it in my way El lun, 26 sept 2022 20:36, rleal124 *@*.\n>\n> *> escribi\u00f3: \u2026 <#m_1631479041120564023_>\n> https://github.com/kevoreilly/CAPEv2/blob/master/modules/auxiliary/sniffer.py#L178\n> <https://github.com/kevoreilly/CAPEv2/blob/master/modules/auxiliary/sniffer.py#L178>\n> just before this line add print(pargs) you will get list of args, so you\n> might need later to run something like this once you copy that list:\n> \"\".join(WHOLE LIST OF ARGS HERE AS LIST). EExamplee: \"\".join([\"tcpdump\",\n> \"x\", \"y\", ......]) I had change the code to: try: print(pargs) self.proc =\n> subprocess.Popen(pargs, stdout=subprocess.PIPE, stderr=subprocess.PIPE,\n> shell=False) except (OSError, ValueError): log.exception(\"Failed to start\n> sniffer (interface=%s, host=%s, dump path=%s)\", interface, host, file_path)\n> return On cape log I can observe the sniffer auxiliary started, but I\n> expect see the following message: \"Started sniffer with PID %d\n> (interface=%s, host=%s, dump path=%s)\" But I don't observe.\n> [lib.cuckoo.core.scheduler] INFO: Enabled route 'none' Sep 26 18:25:30\n> capesbxhost02 python3[1002]: 2022-09-26 18:25:30,771\n> [lib.cuckoo.core.plugins] DEBUG: Started auxiliary module: Sniffer Sep 26\n> 18:25:30 capesbxhost02 python3[1002]: 2022-09-26 18:25:30,794\n> [lib.cuckoo.core.guest] INFO: Task #25\n> <https://github.com/kevoreilly/CAPEv2/pull/25>: Starting analysis on guest\n> (id=CAPESBXAnalysisVMSS_1, ip=172.21.3.7) Sep 26 18:25:30 capesbxhost02\n> python3[1002]: 2022-09-26 18:25:30,810 [lib.cuckoo.core.guest] INFO: Task\n> #25 <https://github.com/kevoreilly/CAPEv2/pull/25>: Guest is running CAPE\n> Agent 0.11 (id=CAPESBXAnalysisVMSS_1, ip=172.21.3.7) Sep 26 18:25:30\n> capesbxhost02 python3[1002]: 2022-09-26 18:25:30,951\n> [lib.cuckoo.core.guest] DEBUG: Task #25\n> <https://github.com/kevoreilly/CAPEv2/pull/25>: Uploading analyzer to guest\n> (id=CAPESBXAnalysisVMSS_1, ip=172.21.3.7, size=26692942) \u2014 Reply to this\n> email directly, view it on GitHub <#1156 (comment)\n> <https://github.com/kevoreilly/CAPEv2/issues/1156#issuecomment-1258450252>>,\n> or unsubscribe\n> https://github.com/notifications/unsubscribe-auth/AAOFH33JNBIGVAYQYOGHDXTWAHUKLANCNFSM6AAAAAAQSEYVWM\n> <https://github.com/notifications/unsubscribe-auth/AAOFH33JNBIGVAYQYOGHDXTWAHUKLANCNFSM6AAAAAAQSEYVWM>\n> . You are receiving this because you were mentioned.Message ID: @.*>\n>\n> I am sorry, this correct?\n>\n> print(''.join[tcpdump, \"-U\", \"-q\", \"-s\", \"0\", \"-i\", interface, \"-n\"]])\n>\n> self.proc = subprocess.Popen(pargs, stdout=subprocess.PIPE, stderr=subprocess.PIPE, shell=False)\n>\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1156#issuecomment-1258503051>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH326HHGEATUOYFAIDR3WAHZGTANCNFSM6AAAAAAQSEYVWM>\n> .\n> You are receiving this because you were mentioned.Message ID:\n> ***@***.***>\n>\n\nComment: > Show me the output of pargs El lun, 26 sept 2022 21:18, rleal124 ***@***.***> escribi\u00f3:\r\n> [\u2026](#)\r\n> That wont work, do it in my way El lun, 26 sept 2022 20:36, rleal124 *@*. *> escribi\u00f3: \u2026 <#m_1631479041120564023_> https://github.com/kevoreilly/CAPEv2/blob/master/modules/auxiliary/sniffer.py#L178 <https://github.com/kevoreilly/CAPEv2/blob/master/modules/auxiliary/sniffer.py#L178> just before this line add print(pargs) you will get list of args, so you might need later to run something like this once you copy that list: \"\".join(WHOLE LIST OF ARGS HERE AS LIST). EExamplee: \"\".join([\"tcpdump\", \"x\", \"y\", ......]) I had change the code to: try: print(pargs) self.proc = subprocess.Popen(pargs, stdout=subprocess.PIPE, stderr=subprocess.PIPE, shell=False) except (OSError, ValueError): log.exception(\"Failed to start sniffer (interface=%s, host=%s, dump path=%s)\", interface, host, file_path) return On cape log I can observe the sniffer auxiliary started, but I expect see the following message: \"Started sniffer with PID %d (interface=%s, host=%s, dump path=%s)\" But I don't observe. [lib.cuckoo.core.scheduler] INFO: Enabled route 'none' Sep 26 18:25:30 capesbxhost02 python3[1002]: 2022-09-26 18:25:30,771 [lib.cuckoo.core.plugins] DEBUG: Started auxiliary module: Sniffer Sep 26 18:25:30 capesbxhost02 python3[1002]: 2022-09-26 18:25:30,794 [lib.cuckoo.core.guest] INFO: Task #25 <#25>: Starting analysis on guest (id=CAPESBXAnalysisVMSS_1, ip=172.21.3.7) Sep 26 18:25:30 capesbxhost02 python3[1002]: 2022-09-26 18:25:30,810 [lib.cuckoo.core.guest] INFO: Task #25 <#25>: Guest is running CAPE Agent 0.11 (id=CAPESBXAnalysisVMSS_1, ip=172.21.3.7) Sep 26 18:25:30 capesbxhost02 python3[1002]: 2022-09-26 18:25:30,951 [lib.cuckoo.core.guest] DEBUG: Task #25 <#25>: Uploading analyzer to guest (id=CAPESBXAnalysisVMSS_1, ip=172.21.3.7, size=26692942) \u2014 Reply to this email directly, view it on GitHub <#1156 (comment) <[#1156 (comment)](https://github.com/kevoreilly/CAPEv2/issues/1156#issuecomment-1258450252)>>, or unsubscribe https://github.com/notifications/unsubscribe-auth/AAOFH33JNBIGVAYQYOGHDXTWAHUKLANCNFSM6AAAAAAQSEYVWM <https://github.com/notifications/unsubscribe-auth/AAOFH33JNBIGVAYQYOGHDXTWAHUKLANCNFSM6AAAAAAQSEYVWM> . You are receiving this because you were mentioned.Message ID: @.*> I am sorry, this correct? print(''.join[tcpdump, \"-U\", \"-q\", \"-s\", \"0\", \"-i\", interface, \"-n\"]]) self.proc = subprocess.Popen(pargs, stdout=subprocess.PIPE, stderr=subprocess.PIPE, shell=False) \u2014 Reply to this email directly, view it on GitHub <[#1156 (comment)](https://github.com/kevoreilly/CAPEv2/issues/1156#issuecomment-1258503051)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAOFH326HHGEATUOYFAIDR3WAHZGTANCNFSM6AAAAAAQSEYVWM> . You are receiving this because you were mentioned.Message ID: ***@***.***>\r\n\r\nSo I change the code to, is correct?\r\n```\r\n else:\r\n            try:\r\n                print(''.join[tcpdump, \"-U\", \"-q\", \"-s\", \"0\", \"-i\", interface, \"-n\"])\r\n                self.proc = subprocess.Popen(pargs, stdout=subprocess.PIPE, stderr=subprocess.PIPE, shell=False)\r\n            except (OSError, ValueError):\r\n                log.exception(\"Failed to start sniffer (interface=%s, host=%s, dump path=%s)\", interface, host, file_path)\r\n                return\r\n\r\n            log.info(\"Started sniffer with PID %d (interface=%s, host=%s, dump path=%s)\", self.proc.pid, interface, host, file_path)\r\n\r\n```\r\nI should see the output on `journalctl -u cape-processor.service -f` correct?\r\n\r\n\r\n\r\n\nComment: no that is totally wrong, just put `print(pargs)`, another print was second step outside of the cape. Is in cape not cape-procesor service, so as you doing debug stop cape service with `systemctl stop cape` and start it by hand with `poetry run python3 cuckoo.py` and once you solved the issue go back to servicee\nComment: I am sorry. \r\nFirst on `sniffer.py` add\r\n```\r\ntry:\r\n                print(pargs)\r\n                self.proc = subprocess.Popen(pargs, stdout=subprocess.PIPE, stderr=subprocess.PIPE, shell=False)\r\n```\r\nSecond:\r\n`systemctl stop cape`\r\n\r\nAnd last:\r\n`poetry run python3 cuckoo.py -d`\r\n\r\nCorrect? \nComment: Yes\n\nEl lun, 26 sept 2022 22:20, rleal124 ***@***.***> escribi\u00f3:\n\n> I am sorry.\n> First on sniffer.py add\n>\n> try:\n>                 print(pargs)\n>                 self.proc = subprocess.Popen(pargs, stdout=subprocess.PIPE, stderr=subprocess.PIPE, shell=False)\n>\n> Second:\n> systemctl stop cape\n> ~\n> Last:\n> poetry run python3 cuckoo.py -d\n>\n> Correct?\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1156#issuecomment-1258576595>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH37AMGRHZTLUJ4RJW53WAIAQPANCNFSM6AAAAAAQSEYVWM>\n> .\n> You are receiving this because you were mentioned.Message ID:\n> ***@***.***>\n>\n\nComment: `poetry run python3 cuckoo.py -d` Output, I don't observe the pargs.\r\n```\r\n2022-09-26 20:19:19,991 [lib.cuckoo.core.scheduler] INFO: Task #34: Starting analysis of URL 'sapo.pt'\r\n2022-09-26 20:19:20,010 [lib.cuckoo.core.scheduler] INFO: Task #34: acquired machine CAPESBXAnalysisVMSS_1 (label=CAPESBXAnalysisVMSS_1, arch=x64, platform=windows)\r\n2022-09-26 20:19:20,023 [lib.cuckoo.core.resultserver] DEBUG: Task #34: The associated machine IP is 172.21.3.7\r\n2022-09-26 20:19:20,051 [modules.machinery.az] DEBUG: Trying <bound method UsageOperations.list of <azure.mgmt.compute.v2022_08_01.operations._usage_operations.UsageOperations object at 0x7fc2453f0e80>>(('WestEurope',))\r\n2022-09-26 20:19:20,060 [lib.cuckoo.core.scheduler] INFO: Enabled route 'none'\r\n2022-09-26 20:19:20,061 [lib.cuckoo.core.plugins] DEBUG: Started auxiliary module: Sniffer\r\n2022-09-26 20:19:20,075 [lib.cuckoo.core.guest] INFO: Task #34: Starting analysis on guest (id=CAPESBXAnalysisVMSS_1, ip=172.21.3.7)\r\n2022-09-26 20:19:20,088 [lib.cuckoo.core.guest] INFO: Task #34: Guest is running CAPE Agent 0.11 (id=CAPESBXAnalysisVMSS_1, ip=172.21.3.7)\r\n2022-09-26 20:19:20,119 [modules.machinery.az] DEBUG: Scaling CAPESBXAnalysisVMSS size from 0 -> 1\r\n2022-09-26 20:19:20,120 [modules.machinery.az] DEBUG: Trying <bound method VirtualMachineScaleSetsOperations.get of <azure.mgmt.compute.v2022_08_01.operations._virtual_machine_scale_sets_operations.VirtualMachineScaleSetsOperations object at 0x7fc2453faec0>>(('it-cs_CAPESandbox_resources', 'CAPESBXAnalysisVMSS'))\r\n2022-09-26 20:19:20,176 [modules.machinery.az] DEBUG: Trying <bound method VirtualMachineScaleSetsOperations.begin_update of <azure.mgmt.compute.v2022_08_01.operations._virtual_machine_scale_sets_operations.VirtualMachineScaleSetsOperations object at 0x7fc25de52650>>(('it-cs_CAPESandbox_resources', 'CAPESBXAnalysisVMSS', <azure.mgmt.compute.v2022_08_01.models._models_py3.VirtualMachineScaleSet object at 0x7fc25de53010>))\r\n2022-09-26 20:19:20,194 [lib.cuckoo.core.guest] DEBUG: Task #34: Uploading analyzer to guest (id=CAPESBXAnalysisVMSS_1, ip=172.21.3.7, size=26692942)\r\n2022-09-26 20:19:20,743 [lib.cuckoo.core.guest] INFO: Task #34: Uploading support files to guest (id=CAPESBXAnalysisVMSS_1, ip=172.21.3.7)\r\n2022-09-26 20:19:20,743 [lib.cuckoo.core.guest] INFO: Task #34: Uploading script files to guest (id=CAPESBXAnalysisVMSS_1, ip=172.21.3.7)\r\n2022-09-26 20:19:25,832 [lib.cuckoo.core.guest] DEBUG: Task #34: Analysis is still running (id=CAPESBXAnalysisVMSS_1, ip=172.21.3.7)\r\n2022-09-26 20:19:31,696 [modules.machinery.az] DEBUG: The scaling of CAPESBXAnalysisVMSS took 12s\r\n2022-09-26 20:19:31,697 [modules.machinery.az] DEBUG: Updated CAPESBXAnalysisVMSS capacity: 1; Initial capacity: 0\r\n2022-09-26 20:19:31,697 [modules.machinery.az] DEBUG: Adding machines to database for CAPESBXAnalysisVMSS.\r\n2022-09-26 20:19:31,700 [modules.machinery.az] DEBUG: Trying <bound method VirtualMachineScaleSetVMsOperations.list of <azure.mgmt.compute.v2022_08_01.operations._virtual_machine_scale_set_vms_operations.VirtualMachineScaleSetVMsOperations object at 0x7fc25de61420>>(('it-cs_CAPESandbox_resources', 'CAPESBXAnalysisVMSS'))\r\n2022-09-26 20:19:31,700 [modules.machinery.az] DEBUG: Trying <bound method NetworkInterfacesOperations.list_virtual_machine_scale_set_network_interfaces of <azure.mgmt.network.v2022_01_01.operations._operations.NetworkInterfacesOperations object at 0x7fc25de60a90>>(('it-cs_CAPESandbox_resources', 'CAPESBXAnalysisVMSS'))\r\n2022-09-26 20:19:31,932 [modules.machinery.az] DEBUG: Scaling CAPESBXAnalysisVMSS has completed.\r\n/usr/lib/python3.10/os.py:1029: RuntimeWarning: line buffering (buffering=1) isn't supported in binary mode, the default buffer size will be used\r\n  return io.open(fd, mode, buffering, encoding, *args, **kwargs)\r\n2022-09-26 20:19:32,639 [lib.cuckoo.core.resultserver] DEBUG: Task #34: live log analysis.log initialized\r\n2022-09-26 20:19:35,942 [lib.cuckoo.core.guest] DEBUG: Task #34: Analysis is still running (id=CAPESBXAnalysisVMSS_1, ip=172.21.3.7)\r\n2022-09-26 20:19:43,343 [lib.cuckoo.core.resultserver] DEBUG: Task #34: Trying to upload file aux/usage.log\r\n2022-09-26 20:19:43,343 [lib.cuckoo.core.resultserver] DEBUG: Task #34: Uploaded file aux/usage.log of length: 0\r\n2022-09-26 20:19:46,049 [lib.cuckoo.core.guest] DEBUG: Task #34: Analysis is still running (id=CAPESBXAnalysisVMSS_1, ip=172.21.3.7)\r\n2022-09-26 20:20:02,835 [lib.cuckoo.core.resultserver] DEBUG: Task #34 is sending a BSON stream. For pid 7164\r\n2022-09-26 20:20:02,954 [lib.cuckoo.core.resultserver] DEBUG: Task #34 is sending a BSON stream. For pid 3872\r\n2022-09-26 20:20:06,262 [lib.cuckoo.core.guest] DEBUG: Task #34: Analysis is still running (id=CAPESBXAnalysisVMSS_1, ip=172.21.3.7)\r\n2022-09-26 20:22:16,263 [modules.machinery.az] DEBUG: Monitoring the machine pools...\r\n2022-09-26 20:22:16,272 [modules.machinery.az] DEBUG: Trying <bound method UsageOperations.list of <azure.mgmt.compute.v2022_08_01.operations._usage_operations.UsageOperations object at 0x7fc27854dcc0>>(('WestEurope',))\r\n2022-09-26 20:22:16,511 [modules.machinery.az] DEBUG: Scaling CAPESBXAnalysisVMSS size from 0 -> 1\r\n2022-09-26 20:22:16,512 [modules.machinery.az] DEBUG: Trying <bound method VirtualMachineScaleSetsOperations.get of <azure.mgmt.compute.v2022_08_01.operations._virtual_machine_scale_sets_operations.VirtualMachineScaleSetsOperations object at 0x7fc27854dc60>>(('it-cs_CAPESandbox_resources', 'CAPESBXAnalysisVMSS'))\r\n2022-09-26 20:22:16,556 [modules.machinery.az] DEBUG: Trying <bound method VirtualMachineScaleSetsOperations.begin_update of <azure.mgmt.compute.v2022_08_01.operations._virtual_machine_scale_sets_operations.VirtualMachineScaleSetsOperations object at 0x7fc25dead6f0>>(('it-cs_CAPESandbox_resources', 'CAPESBXAnalysisVMSS', <azure.mgmt.compute.v2022_08_01.models._models_py3.VirtualMachineScaleSet object at 0x7fc25deadd20>))\r\n2022-09-26 20:22:17,637 [lib.cuckoo.core.guest] DEBUG: Task #34: Analysis is still running (id=CAPESBXAnalysisVMSS_1, ip=172.21.3.7)\r\n2022-09-26 20:22:27,711 [modules.machinery.az] DEBUG: The scaling of CAPESBXAnalysisVMSS took 11s\r\n2022-09-26 20:22:27,712 [modules.machinery.az] DEBUG: Updated CAPESBXAnalysisVMSS capacity: 1; Initial capacity: 0\r\n2022-09-26 20:22:27,713 [modules.machinery.az] DEBUG: Adding machines to database for CAPESBXAnalysisVMSS.\r\n2022-09-26 20:22:27,716 [modules.machinery.az] DEBUG: Trying <bound method VirtualMachineScaleSetVMsOperations.list of <azure.mgmt.compute.v2022_08_01.operations._virtual_machine_scale_set_vms_operations.VirtualMachineScaleSetVMsOperations object at 0x7fc25deafa90>>(('it-cs_CAPESandbox_resources', 'CAPESBXAnalysisVMSS'))\r\n2022-09-26 20:22:27,716 [modules.machinery.az] DEBUG: Trying <bound method NetworkInterfacesOperations.list_virtual_machine_scale_set_network_interfaces of <azure.mgmt.network.v2022_01_01.operations._operations.NetworkInterfacesOperations object at 0x7fc25deaf9d0>>(('it-cs_CAPESandbox_resources', 'CAPESBXAnalysisVMSS'))\r\n2022-09-26 20:22:27,745 [lib.cuckoo.core.guest] DEBUG: Task #34: Analysis is still running (id=CAPESBXAnalysisVMSS_1, ip=172.21.3.7)\r\n2022-09-26 20:22:28,003 [modules.machinery.az] DEBUG: Scaling CAPESBXAnalysisVMSS has completed.\r\n2022-09-26 20:22:32,801 [lib.cuckoo.core.guest] DEBUG: Task #34: Analysis is still running (id=CAPESBXAnalysisVMSS_1, ip=172.21.3.7)\r\n2022-09-26 20:23:22,931 [lib.cuckoo.core.resultserver] DEBUG: Task #34: Trying to upload file procdump/6ea6f9fbda989ebf3aaae3041bdddaf84c8a0ec0cd867706b318ebb562e88be3\r\n2022-09-26 20:23:22,942 [lib.cuckoo.core.resultserver] DEBUG: Task #34: Uploaded file procdump/6ea6f9fbda989ebf3aaae3041bdddaf84c8a0ec0cd867706b318ebb562e88be3 of length: 827904\r\n2022-09-26 20:23:23,360 [lib.cuckoo.core.guest] DEBUG: Task #34: Analysis is still running (id=CAPESBXAnalysisVMSS_1, ip=172.21.3.7)\r\n2022-09-26 20:23:24,417 [lib.cuckoo.core.resultserver] DEBUG: Task #34: Trying to upload file curtain/1664223804.3878918.curtain.log\r\n2022-09-26 20:23:24,668 [lib.cuckoo.core.resultserver] DEBUG: Task #34: Uploaded file curtain/1664223804.3878918.curtain.log of length: 12083764\r\n2022-09-26 20:23:25,380 [lib.cuckoo.core.guest] INFO: Task #34: Analysis completed successfully (id=CAPESBXAnalysisVMSS_1, ip=172.21.3.7)\r\n2022-09-26 20:23:25,405 [lib.cuckoo.core.plugins] DEBUG: Stopped auxiliary module: Sniffer\r\n2022-09-26 20:23:25,405 [modules.machinery.az] DEBUG: Stopping machine 'CAPESBXAnalysisVMSS_1'\r\n2022-09-26 20:23:25,729 [lib.cuckoo.core.resultserver] DEBUG: Task #34 had connection reset by peer for <Context for b'LOG'>\r\n2022-09-26 20:23:25,730 [lib.cuckoo.core.resultserver] DEBUG: Task #34 had connection reset by peer for <Context for b'BSON'>\r\n2022-09-26 20:23:25,730 [lib.cuckoo.core.resultserver] DEBUG: Task #34 had connection reset by peer for <Context for b'BSON'>\r\n2022-09-26 20:23:25,731 [lib.cuckoo.core.resultserver] DEBUG: Task #34 had connection reset by peer for <Context for None>\r\n2022-09-26 20:23:28,297 [modules.machinery.az] DEBUG: Trying <bound method VirtualMachineScaleSetsOperations.begin_reimage_all of <azure.mgmt.compute.v2022_08_01.operations._virtual_machine_scale_sets_operations.VirtualMachineScaleSetsOperations object at 0x7fc25de10a60>>(('it-cs_CAPESandbox_resources', 'CAPESBXAnalysisVMSS', <azure.mgmt.compute.v2022_08_01.models._models_py3.VirtualMachineScaleSetVMInstanceIDs object at 0x7fc2453f3010>))\r\n2022-09-26 20:23:42,516 [modules.machinery.az] DEBUG: Reimaging instances ['1'] in CAPESBXAnalysisVMSS took 14s\r\n2022-09-26 20:23:45,434 [lib.cuckoo.core.resultserver] DEBUG: Task #34: Stopped tracking machine 172.21.3.7\r\n2022-09-26 20:23:45,474 [lib.cuckoo.core.scheduler] DEBUG: Task #34: Released database task with status True\r\n2022-09-26 20:23:45,474 [lib.cuckoo.core.scheduler] INFO: Task #34: analysis procedure completed\r\n2022-09-26 20:27:16,265 [modules.machinery.az] DEBUG: Monitoring the machine pools...\r\n2022-09-26 20:27:16,277 [modules.machinery.az] DEBUG: Trying <bound method UsageOperations.list of <azure.mgmt.compute.v2022_08_01.operations._usage_operations.UsageOperations object at 0x7fc25de63190>>(('WestEurope',))\r\n2022-09-26 20:27:16,565 [modules.machinery.az] DEBUG: Scaling CAPESBXAnalysisVMSS size from 0 -> 1\r\n2022-09-26 20:27:16,566 [modules.machinery.az] DEBUG: Trying <bound method VirtualMachineScaleSetsOperations.get of <azure.mgmt.compute.v2022_08_01.operations._virtual_machine_scale_sets_operations.VirtualMachineScaleSetsOperations object at 0x7fc25decbe20>>(('it-cs_CAPESandbox_resources', 'CAPESBXAnalysisVMSS'))\r\n2022-09-26 20:27:16,608 [modules.machinery.az] DEBUG: Trying <bound method VirtualMachineScaleSetsOperations.begin_update of <azure.mgmt.compute.v2022_08_01.operations._virtual_machine_scale_sets_operations.VirtualMachineScaleSetsOperations object at 0x7fc25dedaf20>>(('it-cs_CAPESandbox_resources', 'CAPESBXAnalysisVMSS', <azure.mgmt.compute.v2022_08_01.models._models_py3.VirtualMachineScaleSet object at 0x7fc25dedb550>))\r\n2022-09-26 20:27:27,683 [modules.machinery.az] DEBUG: The scaling of CAPESBXAnalysisVMSS took 11s\r\n2022-09-26 20:27:27,690 [modules.machinery.az] DEBUG: Updated CAPESBXAnalysisVMSS capacity: 1; Initial capacity: 0\r\n2022-09-26 20:27:27,690 [modules.machinery.az] DEBUG: Adding machines to database for CAPESBXAnalysisVMSS.\r\n2022-09-26 20:27:27,694 [modules.machinery.az] DEBUG: Trying <bound method VirtualMachineScaleSetVMsOperations.list of <azure.mgmt.compute.v2022_08_01.operations._virtual_machine_scale_set_vms_operations.VirtualMachineScaleSetVMsOperations object at 0x7fc2453d0ca0>>(('it-cs_CAPESandbox_resources', 'CAPESBXAnalysisVMSS'))\r\n2022-09-26 20:27:27,696 [modules.machinery.az] DEBUG: Trying <bound method NetworkInterfacesOperations.list_virtual_machine_scale_set_network_interfaces of <azure.mgmt.network.v2022_01_01.operations._operations.NetworkInterfacesOperations object at 0x7fc2453d0f10>>(('it-cs_CAPESandbox_resources', 'CAPESBXAnalysisVMSS'))\r\n2022-09-26 20:27:27,903 [modules.machinery.az] DEBUG: Scaling CAPESBXAnalysisVMSS has completed.\r\n```\nComment: I am expecte some message like: `Started sniffer with PID %d (interface=%s, host=%s, dump path=%s)`\r\nI have a feeling the sniffer (tcpdump) don't starting as expected. \r\n\nComment: `2022-09-26 20:19:20,060 [lib.cuckoo.core.scheduler] INFO: Enabled route 'none'` <- this fully disables tcpdump\nComment: Thanks a lot. \r\nI need edit the `routing.conf` correct?\nComment: yes as there is no reason to use tcpdump without routing, ensure to restart cuckoo.py\nComment: Thanks a lot for your help and patience. \r\nI change the config to: \r\n```\r\n[routing]\r\nroute = internet\r\ninternet = eth0\r\n```\r\nAgain thanks a lot. \nComment: About the pargs output:\r\n\r\n`['/usr/bin/tcpdump', '-U', '-q', '-s', '0', '-i', 'eth1', '-n', '-Z', 'cape', '-w', '/opt/CAPEv2/storage/analyses/43/dump.pcap', 'host', '172.21.3.7', 'and', 'not', '(', 'dst', 'host', '172.21.3.7', 'and', 'dst', 'port', '8000', ')', 'and', 'not', '(', 'src', 'host', '172.21.3.7', 'and', 'src', 'port', '8000', ')', 'and', 'not', '(', 'dst', 'host', '172.21.0.6', 'and', 'dst', 'port', '2042', ')', 'and', 'not', '(', 'src', 'host', '172.21.0.6', 'and', 'src', 'port', '2042', ')', 'and', '(', 'not arp', ')']`\nComment: ```\r\n\" \".join(['/usr/bin/tcpdump', '-U', '-q', '-s', '0', '-i', 'eth1', '-n', '-Z', 'cape', '-w', '/opt/CAPEv2/storage/analyses/43/dump.pcap', 'host', '172.21.3.7', 'and', 'not', '(', 'dst', 'host', '172.21.3.7', 'and', 'dst', 'port', '8000', ')', 'and', 'not', '(', 'src', 'host', '172.21.3.7', 'and', 'src', 'port', '8000', ')', 'and', 'not', '(', 'dst', 'host', '172.21.0.6', 'and', 'dst', 'port', '2042', ')', 'and', 'not', '(', 'src', 'host', '172.21.0.6', 'and', 'src', 'port', '2042', ')', 'and', '(', 'not arp', ')'])\r\n\r\n\r\n# just need to add \" for rule, added by me\r\n/usr/bin/tcpdump -U -q -s 0 -i eth1 -n -Z cape -w /opt/CAPEv2/storage/analyses/43/dump.pcap \"host 172.21.3.7 and not ( dst host 172.21.3.7 and dst port 8000 ) and not ( src host 172.21.3.7 and src port 8000 ) and not ( dst host 172.21.0.6 and dst port 2042 ) and not ( src host 172.21.0.6 and src port 2042 ) and ( not arp )\"\r\n```\r\n\r\nrun the last command by hand as cape to see what error it will give you\nComment: I don't get any error, but also I don't get any traffic. \r\n\r\nI run \r\n```\r\n/usr/bin/tcpdump -U -q -s 0 -i any -n -Z cape -w /opt/CAPEv2/storage/analyses/43/dump.pcap \"host 172.21.3.7 and not ( dst host 172.21.3.7 and dst port 8000 ) and not ( src host\r\n 172.21.3.7 and src port 8000 ) and not ( dst host 172.21.0.6 and dst port 2042 ) and not ( src host 172.21.0.6 and src port 2042 ) and ( not arp )\"\r\ntcpdump: listening on eth0, link-type EN10MB (Ethernet), snapshot length 262144 bytes\r\n^C0 packets captured\r\n2 packets received by filter\r\n0 packets dropped by kernel\r\n```\r\n\nComment: you did modify my command and is not correct, you set to listen on all, you need to run exact command\nComment: Sorry, I change the interface to any, because I don't get any traffic on eth1 interface. In below the output. \r\n```\r\n /usr/bin/tcpdump -U -q -s 0 -i eth1 -n -Z cape -w /opt/CAPEv2/storage/analyses/43/dump.pcap \"host 172.21.3.7 and not ( dst host 172.21.3.7 and dst port 8000 ) and not ( src host 172.21.3.7 and src port 8000 ) and not ( dst host 172.21.0.6 and dst port 2042 ) and not ( src host 172.21.0.6 and src port 2042 ) and ( not arp )\"\r\ntcpdump: listening on eth1, link-type EN10MB (Ethernet), snapshot length 262144 bytes\r\n^C0 packets captured\r\n0 packets received by filter\r\n0 packets dropped by kernel\r\n```\nComment: well then all works as expected with tcpdump, the problem here idk what it is as i don't have azure instance. so you probably will need to figurate on your own + pay attention that iface that Kevin told you is not `eth1`\nComment: Thanks a lot for your help. \r\n\r\nLet read again the documentation. \r\nMany thanks for your help. \nComment: Yes but that is for local server, doesnt have nothing to do with azure\n\nEl jue, 22 sept 2022 9:45, rleal124 ***@***.***> escribi\u00f3:\n\n> Thanks for you patience and help.\n> So, the following variables is for TOR, correct ?\n> NETWORK_IFACE=virbr1\n> for tor\n>\n> IFACE_IP=\"192.168.1.1\"\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1156#issuecomment-1254651540>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH337PBTMPRI4G35GZ5TV7QFCXANCNFSM6AAAAAAQSEYVWM>\n> .\n> You are receiving this because you were mentioned.Message ID:\n> ***@***.***>\n>\n",
+  "Title: Question about deployment CAPE on Azure environment\nBody: ## Question about deployment CAPE on Azure environment \r\n* I am read the documentation present https://capev2.readthedocs.io/en/latest/installation/host/cloud.html.\r\n* And also I am read and try understand the configurations presents on config path in specific the az.conf\r\n* And for last but not less import I review the cape2.sh\r\n* But I still have some questions. \r\n1. For Azure environment is still necessary install the libvirt and KVM, before?\r\n2. Any advice for Azure installation?\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nInstall the CAPE on Azure environment. Understand what reequipments addcional I need to meet \r\n\r\n# Current Behavior\r\n\r\nThe installation required libvirt and KVM, But for Azure environment I think is not necessary. \r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Read the documentation\r\n2. Configure the RG (https://capev2.readthedocs.io/en/latest/installation/host/cloud.html.)\r\n3. Created the instances\r\n4. Review the cape2.sh\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 22.04\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: @rleal124: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.",
+  "Title: Questions about deployment CAPE on Azure environment \nBody: ## Question about deployment CAPE on Azure environment \r\n* I am read the documentation present https://capev2.readthedocs.io/en/latest/installation/host/cloud.html.\r\n* And also I am read and try understand the configurations presents on config path in specific the az.conf\r\n* And for last but not less import I review the cape2.sh\r\n* But I still have some questions. \r\n1. For Azure environment is still necessary install the libvirt and KVM, before?\r\n2. Any advice for Azure installation?\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n- [x] I'm checked the config files presents on config path\r\n- [x] I'm reviewed the cape2. script\r\n\r\n\r\n# Expected Behavior\r\n\r\nInstall the CAPE on Azure environment. Understand what reequipments addcional I need to meet \r\n\r\n# Current Behavior\r\n\r\nThe installation required libvirt and KVM, But for Azure environment I think is not necessary. \r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Read the documentation\r\n2. Configure the RG (https://capev2.readthedocs.io/en/latest/installation/host/cloud.html.)\r\n3. Created the instances\r\n4. Review the cape2.sh\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 22.04\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: @rleal124: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.",
+  "Title: Questions about deployment CAPEv2 on Azure environment \nBody: ## Question about deployment CAPE on Azure environment \r\n* I am read the documentation present https://capev2.readthedocs.io/en/latest/installation/host/cloud.html.\r\n* And also I am read and try understand the configurations presents on config path in specific the az.conf\r\n* And for last but not less import I review the cape2.sh\r\n* But I still have some questions. \r\n1. For Azure environment is still necessary install the libvirt and KVM, before?\r\n2. Any advice for Azure installation?\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n- [x] I'm checked the config files presents on config path\r\n- [x] I'm reviewed the cape2. script\r\n\r\n\r\n\r\n\nComment: @rleal124: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.",
+  "Title: solve #1144\nBody: Small typo for the workaround yara-python issue\nComment: thank you",
+  "Title: Init pe\nBody: None\nComment: thanks @sqrtZeroKnowledge ",
+  "Title: Invalid flag in regex traceback during search for some terms\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ ] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nSearch is working without errors or tracebacks\r\n\r\n# Current Behavior\r\n\r\nWhen trying to search some terms, for an example `detections:WCE`, `string:lsass` I have a traceback `pymongo.errors.OperationFailure:  invalid flag in regex options: -, full error: {'ok': 0.0, 'errmsg': ' invalid flag in regex options: -', 'code': 51108, 'codeName': 'Location51108'}`. At the same time, some searches works fine, for an example `id:11`. \r\n\r\n# Failure Information (for bugs)\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. install kvm with [kvm-qemu.sh](https://github.com/doomedraven/Tools/blob/master/Virtualization/kvm-qemu.sh) and cape with [cape2.sh](https://github.com/kevoreilly/CAPEv2/blob/master/installer/cape2.sh). Because #1140 is not working for 22.04, I had to manually install mongodb-org from focal repo\r\n2. go to search, search for something like `detections:WCE`\r\n3. you get it...\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | commit fc20d6449d828ad4ea6d6b6753b32344096925fd\r\n| OS version       | Ubuntu 22.04.1 LTS\r\n\r\n## Failure Logs\r\n\r\nTraceback from cape-web.service log:\r\n\r\n[cape-web-log.txt](https://github.com/kevoreilly/CAPEv2/files/9592299/cape-web-log.txt)\r\n\nComment: hello, thats interesting, im using detections a lot but i don't have this issue. so i will need your help here to spot what is wrong. can you add just before of this line https://github.com/kevoreilly/CAPEv2/blob/master/lib/cuckoo/common/web_utils.py#L1082 \r\n\r\nadd `print(mongo_search_query)` and share it when it failed so we can start digging once having exact problem\nComment: interesting about mongo and 22 i will have to recheck it \nComment: Hello! Thank you for your reply. Regarding mongo - there are still no necessary packages for [jammy](https://repo.mongodb.org/apt/ubuntu/dists/jammy/mongodb-org/6.0/multiverse/binary-amd64/)\r\n\r\nFor\r\n\r\n> /opt/CAPEv2/lib/cuckoo/common/web_utils.py:1077:    if repconf.mongodb.enabled and query_val:\r\n> /opt/CAPEv2/lib/cuckoo/common/web_utils.py:1078:        if isinstance(search_term_map[term], str):\r\n> /opt/CAPEv2/lib/cuckoo/common/web_utils.py:1079:            mongo_search_query = {search_term_map[term]: query_val}\r\n> /opt/CAPEv2/lib/cuckoo/common/web_utils.py:1080:        else:\r\n> /opt/CAPEv2/lib/cuckoo/common/web_utils.py:1081:            mongo_search_query = {\"$or\": [{search_term: query_val} for search_term in search_term_map[term]]}\r\n> /opt/CAPEv2/lib/cuckoo/common/web_utils.py:1082:            # Tshoot for 1150\r\n> /opt/CAPEv2/lib/cuckoo/common/web_utils.py:1083:            print(mongo_search_query)\r\n> /opt/CAPEv2/lib/cuckoo/common/web_utils.py:1084:        return mongo_find(\"analysis\", mongo_search_query, perform_search_filters).sort([[\"_id\", -1]]).limit(search_limit)\r\n\r\nlooks like I'm getting similar traceback without additional info\r\n[cape-web-log2.txt](https://github.com/kevoreilly/CAPEv2/files/9593886/cape-web-log2.txt)\r\n\nComment: Thanks, i need exact query that gives problems, i juat searched for strings\nand it works here\n\nEl dom, 18 sept 2022 13:52, alx1m1k ***@***.***> escribi\u00f3:\n\n> Hello! Thank you for reply. Regarding mongo - there are still no necessary\n> packages for jammy\n> <https://repo.mongodb.org/apt/ubuntu/dists/jammy/mongodb-org/6.0/multiverse/binary-amd64/>\n>\n> For\n>\n> /opt/CAPEv2/lib/cuckoo/common/web_utils.py:1077: if\n> repconf.mongodb.enabled and query_val:\n> /opt/CAPEv2/lib/cuckoo/common/web_utils.py:1078: if\n> isinstance(search_term_map[term], str):\n> /opt/CAPEv2/lib/cuckoo/common/web_utils.py:1079: mongo_search_query =\n> {search_term_map[term]: query_val}\n> /opt/CAPEv2/lib/cuckoo/common/web_utils.py:1080: else:\n> /opt/CAPEv2/lib/cuckoo/common/web_utils.py:1081: mongo_search_query =\n> {\"$or\": [{search_term: query_val} for search_term in search_term_map[term]]}\n> /opt/CAPEv2/lib/cuckoo/common/web_utils.py:1082: # Tshoot for 1150\n> /opt/CAPEv2/lib/cuckoo/common/web_utils.py:1083: print(mongo_search_query)\n> /opt/CAPEv2/lib/cuckoo/common/web_utils.py:1084: return\n> mongo_find(\"analysis\", mongo_search_query,\n> perform_search_filters).sort([[\"_id\", -1]]).limit(search_limit)\n>\n> looks like I'm getting similar traceback without additional info\n> cape-web-log2.txt\n> <https://github.com/kevoreilly/CAPEv2/files/9593886/cape-web-log2.txt>\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1150#issuecomment-1250253559>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH34G7BM2BQH7YLKRCJTV637AHANCNFSM6AAAAAAQPC65N4>\n> .\n> You are receiving this because you commented.Message ID:\n> ***@***.***>\n>\n\nComment: Looks like I need to add print string several lines above mentioned 1082. So, for\r\n\r\n> /opt/CAPEv2/lib/cuckoo/common/web_utils.py:1077:    if repconf.mongodb.enabled and query_val:\r\n> /opt/CAPEv2/lib/cuckoo/common/web_utils.py:1078:        if isinstance(search_term_map[term], str):\r\n> /opt/CAPEv2/lib/cuckoo/common/web_utils.py:1079:            mongo_search_query = {search_term_map[term]: query_val}\r\n> /opt/CAPEv2/lib/cuckoo/common/web_utils.py:1080:             # Tshoot for 1150\r\n> /opt/CAPEv2/lib/cuckoo/common/web_utils.py:1081:            print(mongo_search_query)\r\n> /opt/CAPEv2/lib/cuckoo/common/web_utils.py:1082:        else:\r\n> /opt/CAPEv2/lib/cuckoo/common/web_utils.py:1083:            mongo_search_query = {\"$or\": [{search_term: query_val} for search_term in search_term_map[term]]}\r\n> /opt/CAPEv2/lib/cuckoo/common/web_utils.py:1084:            # Tshoot for 1150\r\n> /opt/CAPEv2/lib/cuckoo/common/web_utils.py:1085:            print(mongo_search_query)\r\n> /opt/CAPEv2/lib/cuckoo/common/web_utils.py:1086:        return mongo_find(\"analysis\", mongo_search_query, perform_search_filters).sort([[\"_id\", -1]]).limit(search_limit)\r\n\r\nI'm getting this\r\n\r\n`{'detections.family': {'$regex': 'WCE', '$options': '-i'}}`\r\n\r\nI believe query should be without \"-\"\r\n[cape-web-log3.txt](https://github.com/kevoreilly/CAPEv2/files/9593917/cape-web-log3.txt)\r\n\nComment: Can you remove this part, restart webgui and try again\n '$options': '-i'\n\nEl dom, 18 sept 2022 14:07, alx1m1k ***@***.***> escribi\u00f3:\n\n> Looks like I need to add print string several lines above mentioned 1082.\n> So, for\n>\n> /opt/CAPEv2/lib/cuckoo/common/web_utils.py:1077: if\n> repconf.mongodb.enabled and query_val:\n> /opt/CAPEv2/lib/cuckoo/common/web_utils.py:1078: if\n> isinstance(search_term_map[term], str):\n> /opt/CAPEv2/lib/cuckoo/common/web_utils.py:1079: mongo_search_query =\n> {search_term_map[term]: query_val}\n> /opt/CAPEv2/lib/cuckoo/common/web_utils.py:1080: # Tshoot for 1150\n> /opt/CAPEv2/lib/cuckoo/common/web_utils.py:1081: print(mongo_search_query)\n> /opt/CAPEv2/lib/cuckoo/common/web_utils.py:1082: else:\n> /opt/CAPEv2/lib/cuckoo/common/web_utils.py:1083: mongo_search_query =\n> {\"$or\": [{search_term: query_val} for search_term in search_term_map[term]]}\n> /opt/CAPEv2/lib/cuckoo/common/web_utils.py:1084: # Tshoot for 1150\n> /opt/CAPEv2/lib/cuckoo/common/web_utils.py:1085: print(mongo_search_query)\n> /opt/CAPEv2/lib/cuckoo/common/web_utils.py:1086: return\n> mongo_find(\"analysis\", mongo_search_query,\n> perform_search_filters).sort([[\"_id\", -1]]).limit(search_limit)\n>\n> I'm getting this\n>\n> {'detections.family': {'$regex': 'WCE', '$options': '-i'}}\n>\n> I believe query should be without \"-\"\n> cape-web-log3.txt\n> <https://github.com/kevoreilly/CAPEv2/files/9593917/cape-web-log3.txt>\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1150#issuecomment-1250256241>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3ZDS6L3YFBLE4PM54LV64AZFANCNFSM6AAAAAAQPC65N4>\n> .\n> You are receiving this because you commented.Message ID:\n> ***@***.***>\n>\n\nComment: Fixed to\r\n\r\n`query_val = {\"$regex\": value, \"$options\": \"i\"}`\r\n\r\nand its working now, thanks!\r\n\r\nThere are two similar strings in web_utils\r\n\r\n> ./lib/cuckoo/common/web_utils.py:1052:        query_val = {f\"{search_term_map[term]}.{value}\": {\"$exist\": True}, \"$options\": \"-i\"}\r\n> ./lib/cuckoo/common/web_utils.py:1061:        query_val = {\"$regex\": value, \"$options\": \"-i\"}\nComment: Interesting, maybe they changed it in some recent pymongo, i will check docs\n\nEl dom, 18 sept 2022 14:16, alx1m1k ***@***.***> escribi\u00f3:\n\n> Fixed to\n>\n> query_val = {\"$regex\": value, \"$options\": \"i\"}\n>\n> and its working now, thanks!\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1150#issuecomment-1250257741>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH35AEHQXUR4KZK4R7JLV64BYDANCNFSM6AAAAAAQPC65N4>\n> .\n> You are receiving this because you commented.Message ID:\n> ***@***.***>\n>\n\nComment: thanks, changed to just `i` it works the same way as `-i`",
+  "Title: Bump oauthlib from 3.2.0 to 3.2.1\nBody: Bumps [oauthlib](https://github.com/oauthlib/oauthlib) from 3.2.0 to 3.2.1.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a href=\"https://github.com/oauthlib/oauthlib/releases\">oauthlib's releases</a>.</em></p>\n<blockquote>\n<h2>3.2.1</h2>\n<h2>In short</h2>\n<p>OAuth2.0 Provider:</p>\n<ul>\n<li><a href=\"https://github-redirect.dependabot.com/oauthlib/oauthlib/issues/803\">#803</a> : Metadata endpoint support of non-HTTPS</li>\n<li>CVE-2022-36087</li>\n</ul>\n<p>OAuth1.0:</p>\n<ul>\n<li><a href=\"https://github-redirect.dependabot.com/oauthlib/oauthlib/issues/818\">#818</a> : Allow IPv6 being parsed by signature</li>\n</ul>\n<p>General:</p>\n<ul>\n<li>Improved and fixed documentation warnings.</li>\n<li>Cosmetic changes based on isort</li>\n</ul>\n<h2>What's Changed</h2>\n<ul>\n<li>add missing slots to TokenBase by <a href=\"https://github.com/ariebovenberg\"><code>@\u200bariebovenberg</code></a> in <a href=\"https://github-redirect.dependabot.com/oauthlib/oauthlib/pull/804\">oauthlib/oauthlib#804</a></li>\n<li>Add CORS support for Refresh Token Grant. by <a href=\"https://github.com/luhn\"><code>@\u200bluhn</code></a> in <a href=\"https://github-redirect.dependabot.com/oauthlib/oauthlib/pull/806\">oauthlib/oauthlib#806</a></li>\n<li>GitHub Action to lint Python code by <a href=\"https://github.com/cclauss\"><code>@\u200bcclauss</code></a> in <a href=\"https://github-redirect.dependabot.com/oauthlib/oauthlib/pull/797\">oauthlib/oauthlib#797</a></li>\n<li>Docs: fix Sphinx warnings for better ReadTheDocs generation by <a href=\"https://github.com/JonathanHuot\"><code>@\u200bJonathanHuot</code></a> in <a href=\"https://github-redirect.dependabot.com/oauthlib/oauthlib/pull/807\">oauthlib/oauthlib#807</a></li>\n<li>Allow non-HTTPS issuer when OAUTHLIB_INSECURE_TRANSPORT. by <a href=\"https://github.com/luhn\"><code>@\u200bluhn</code></a> in <a href=\"https://github-redirect.dependabot.com/oauthlib/oauthlib/pull/803\">oauthlib/oauthlib#803</a></li>\n<li>chore: fix typo in test by <a href=\"https://github.com/tamanobi\"><code>@\u200btamanobi</code></a> in <a href=\"https://github-redirect.dependabot.com/oauthlib/oauthlib/pull/816\">oauthlib/oauthlib#816</a></li>\n<li>Fix typo in server.rst by <a href=\"https://github.com/NemanjaT\"><code>@\u200bNemanjaT</code></a> in <a href=\"https://github-redirect.dependabot.com/oauthlib/oauthlib/pull/819\">oauthlib/oauthlib#819</a></li>\n<li>Fixed isort imports by <a href=\"https://github.com/dasm\"><code>@\u200bdasm</code></a> in <a href=\"https://github-redirect.dependabot.com/oauthlib/oauthlib/pull/820\">oauthlib/oauthlib#820</a></li>\n<li>docs: Fix a few typos by <a href=\"https://github.com/timgates42\"><code>@\u200btimgates42</code></a> in <a href=\"https://github-redirect.dependabot.com/oauthlib/oauthlib/pull/822\">oauthlib/oauthlib#822</a></li>\n<li>docs: fix typos by <a href=\"https://github.com/kianmeng\"><code>@\u200bkianmeng</code></a> in <a href=\"https://github-redirect.dependabot.com/oauthlib/oauthlib/pull/823\">oauthlib/oauthlib#823</a></li>\n</ul>\n<h2>New Contributors</h2>\n<ul>\n<li><a href=\"https://github.com/ariebovenberg\"><code>@\u200bariebovenberg</code></a> made their first contribution in <a href=\"https://github-redirect.dependabot.com/oauthlib/oauthlib/pull/804\">oauthlib/oauthlib#804</a></li>\n<li><a href=\"https://github.com/tamanobi\"><code>@\u200btamanobi</code></a> made their first contribution in <a href=\"https://github-redirect.dependabot.com/oauthlib/oauthlib/pull/816\">oauthlib/oauthlib#816</a></li>\n<li><a href=\"https://github.com/NemanjaT\"><code>@\u200bNemanjaT</code></a> made their first contribution in <a href=\"https://github-redirect.dependabot.com/oauthlib/oauthlib/pull/819\">oauthlib/oauthlib#819</a></li>\n<li><a href=\"https://github.com/kianmeng\"><code>@\u200bkianmeng</code></a> made their first contribution in <a href=\"https://github-redirect.dependabot.com/oauthlib/oauthlib/pull/823\">oauthlib/oauthlib#823</a></li>\n</ul>\n<p><strong>Full Changelog</strong>: <a href=\"https://github.com/oauthlib/oauthlib/compare/v3.2.0...v3.2.1\">https://github.com/oauthlib/oauthlib/compare/v3.2.0...v3.2.1</a></p>\n</blockquote>\n</details>\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/oauthlib/oauthlib/blob/master/CHANGELOG.rst\">oauthlib's changelog</a>.</em></p>\n<blockquote>\n<h2>3.2.1 (2022-09-09)</h2>\n<p>OAuth2.0 Provider:</p>\n<ul>\n<li><a href=\"https://github-redirect.dependabot.com/oauthlib/oauthlib/issues/803\">#803</a>: Metadata endpoint support of non-HTTPS</li>\n<li>CVE-2022-36087</li>\n</ul>\n<p>OAuth1.0:</p>\n<ul>\n<li><a href=\"https://github-redirect.dependabot.com/oauthlib/oauthlib/issues/818\">#818</a>: Allow IPv6 being parsed by signature</li>\n</ul>\n<p>General:</p>\n<ul>\n<li>Improved and fixed documentation warnings.</li>\n<li>Cosmetic changes based on isort</li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/oauthlib/oauthlib/commit/88bb1562930a9bd9368bf26120655794d90d9585\"><code>88bb156</code></a> Updated date and authors</li>\n<li><a href=\"https://github.com/oauthlib/oauthlib/commit/1a45d9790543673208e603e13a7be4aa4cba7339\"><code>1a45d97</code></a> Prepare 3.2.1 release</li>\n<li><a href=\"https://github.com/oauthlib/oauthlib/commit/0adbbe10ed8ef822d1c780987fffc56670ce3f9f\"><code>0adbbe1</code></a> docs: fix typos</li>\n<li><a href=\"https://github.com/oauthlib/oauthlib/commit/6569ec3c062be7268f4a17f5a371aa29f1bcfa4a\"><code>6569ec3</code></a> docs: Fix a few typos</li>\n<li><a href=\"https://github.com/oauthlib/oauthlib/commit/bdc486e2bc3a188027a4ebec3a3013e64023ce62\"><code>bdc486e</code></a> Fixed isort imports</li>\n<li><a href=\"https://github.com/oauthlib/oauthlib/commit/7db45bda96ea6f5fde1186e8fd43d75ce6b95ab5\"><code>7db45bd</code></a> Fix typo in server.rst</li>\n<li><a href=\"https://github.com/oauthlib/oauthlib/commit/b14ad85921db2406ecaf5927a8be08a7566c236e\"><code>b14ad85</code></a> chore: s/bode_code_verifier/body_code_verifier/g</li>\n<li><a href=\"https://github.com/oauthlib/oauthlib/commit/b123283ba3d41acb3e787fdf68bd5907972b4bad\"><code>b123283</code></a> Allow non-HTTPS issuer when OAUTHLIB_INSECURE_TRANSPORT. (<a href=\"https://github-redirect.dependabot.com/oauthlib/oauthlib/issues/803\">#803</a>)</li>\n<li><a href=\"https://github.com/oauthlib/oauthlib/commit/2f887b5a070bf617a471c573ad52fb58251c61af\"><code>2f887b5</code></a> Docs: fix Sphinx warnings for better ReadTheDocs generation (<a href=\"https://github-redirect.dependabot.com/oauthlib/oauthlib/issues/807\">#807</a>)</li>\n<li><a href=\"https://github.com/oauthlib/oauthlib/commit/d4bafd9f1d0eba3766e933b1ac598cbbf37b8914\"><code>d4bafd9</code></a> Merge pull request <a href=\"https://github-redirect.dependabot.com/oauthlib/oauthlib/issues/797\">#797</a> from cclauss/patch-2</li>\n<li>Additional commits viewable in <a href=\"https://github.com/oauthlib/oauthlib/compare/v3.2.0...v3.2.1\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=oauthlib&package-manager=pip&previous-version=3.2.0&new-version=3.2.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language\n- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language\n- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language\n- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language\n\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>\nComment: Looks like oauthlib is up-to-date now, so this is no longer needed.",
+  "Title: Missing Memory Tab in Analysis(?)\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account acctivation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\r\n\r\nI saw that there are several HTML files in CAPEv2/web/templates/analysis/memory which should display information about the memory dump e.g. pslist, privs, etc. I have enabled memory dump and the analyses results include the \"memory.dmp\"\r\n file. I expect there to be a tab for memory, just like how there are tabs for behavioral and network analysis... \r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\nI can't seem to find the memory tab in the analysis page:\r\n![Screenshot from 2022-09-15 14-14-10](https://user-images.githubusercontent.com/113578411/190328459-7502cbd4-5428-4a59-b463-e6326f4707cc.png)\r\nHow do I enable the memory HTML pages?\r\n\nComment: @capeuser21: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.",
+  "Title: Missing Memory Tab in Analysis Webpage(?)\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account acctivation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\r\n\r\nI saw that there are several HTML files in CAPEv2/web/templates/analysis/memory which should display information about the memory dump e.g. pslist, privs, etc. I have enabled memory dump and the analyses results include the \"memory.dmp\"\r\n file. I expect there to be a tab for memory, just like how there are tabs for behavioral and network analysis... \r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\nI can't seem to find the memory tab in the analysis page:\r\n![Screenshot from 2022-09-15 14-14-10](https://user-images.githubusercontent.com/113578411/190328459-7502cbd4-5428-4a59-b463-e6326f4707cc.png)\r\nHow do I enable the memory HTML pages?\r\n\nComment: @capeuser21: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: Can I check how you are enabling this option?\nComment: previously my analyses did not have the \"memory.dmp\", so i reviewed the documentation and followed the steps to enable memory in processing.conf and memory_dump in cuckoo.conf. Now I am able to see the \"memory.dmp\" file in the analyses folder but I cant see any information related to the memory dump and Volatility in the webpage, which I thought should be present since there were the relevant HTML templates (example below)\r\n![Screenshot from 2022-09-15 14-46-55](https://user-images.githubusercontent.com/113578411/190334127-24375e5e-1840-4806-b579-2771bec6d832.png)\r\n\nComment: So you are referring to full system dumps as opposed to full process dumps. The process memory tab in the web ui is for the latter.\nComment: Mainstream cape has never used full system dumps or vol - this was custom made by @doomedraven. I am not sure this is supported any more. Fundamentally using volatility is at odds with cape's whole raison d'\u00eatre.\nComment: I have no idea. doomed is the only man who knows.\r\n\r\nWhy do you want volatility? It means cape is failing.\nComment: it should have, but do you have properly configured volatility?\nComment: kevin is not about cape failing, is about preferences of everyone, you know how long i used it ;) \nComment: The whole point of cape is so that you don't need another massive tool like vol because cape already captured everything you could want.\nComment: > it should have, but do you have properly configured volatility?\r\n\r\ni believe so, is there a way to verify whether volatility is working as expected?\nComment: > I have no idea. doomed is the only man who knows.\r\n> \r\n> Why do you want volatility? It means cape is failing.\r\n\r\ni thought it would be good to be able to view the memory dump information in readable format, but I cant seem to find the memory HTML pages in the web UI\nComment: Not to mention cape's design assumes there might be interesting stuff to capture during the execution that is no longer present at the end. Cape attempts to capture payloads before execution or shortly after it begins.\nComment: yes memdumps in webpage, go yo mongo or json report and verify if you have data there + you might have something in logs about that, maybe reprocess in debug mode with `process.py -r x -d`\nComment: yes, my json report does have data. i have also reprocessed in debug mode and the memory module seems to run normally as shown below:\r\n\r\nXLMMacroDeobfuscator: pywin32 is not installed (only is required if you want to use MS Excel)\r\nDEBUG:lib.cuckoo.core.plugins:Executing processing module \"CAPE\" on analysis at \"/opt/CAPEv2/storage/analyses/28\"\r\n2022-09-15 15:09:44,028 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"CAPE\" on analysis at \"/opt/CAPEv2/storage/analyses/28\"\r\nDEBUG:PIL.Image:Importing BmpImagePlugin\r\n2022-09-15 15:09:45,633 [Task 28] [PIL.Image] DEBUG: Importing BmpImagePlugin\r\nDEBUG:PIL.Image:Importing BufrStubImagePlugin\r\n2022-09-15 15:09:45,633 [Task 28] [PIL.Image] DEBUG: Importing BufrStubImagePlugin\r\nDEBUG:PIL.Image:Importing CurImagePlugin\r\n2022-09-15 15:09:45,633 [Task 28] [PIL.Image] DEBUG: Importing CurImagePlugin\r\nDEBUG:PIL.Image:Importing DcxImagePlugin\r\n2022-09-15 15:09:45,633 [Task 28] [PIL.Image] DEBUG: Importing DcxImagePlugin\r\nDEBUG:PIL.Image:Importing DdsImagePlugin\r\n2022-09-15 15:09:45,634 [Task 28] [PIL.Image] DEBUG: Importing DdsImagePlugin\r\nDEBUG:PIL.Image:Importing EpsImagePlugin\r\n2022-09-15 15:09:45,634 [Task 28] [PIL.Image] DEBUG: Importing EpsImagePlugin\r\nDEBUG:PIL.Image:Importing FitsStubImagePlugin\r\n2022-09-15 15:09:45,634 [Task 28] [PIL.Image] DEBUG: Importing FitsStubImagePlugin\r\nDEBUG:PIL.Image:Importing FliImagePlugin\r\n2022-09-15 15:09:45,635 [Task 28] [PIL.Image] DEBUG: Importing FliImagePlugin\r\nDEBUG:PIL.Image:Importing FpxImagePlugin\r\n2022-09-15 15:09:45,635 [Task 28] [PIL.Image] DEBUG: Importing FpxImagePlugin\r\nDEBUG:PIL.Image:Importing FtexImagePlugin\r\n2022-09-15 15:09:45,636 [Task 28] [PIL.Image] DEBUG: Importing FtexImagePlugin\r\nDEBUG:PIL.Image:Importing GbrImagePlugin\r\n2022-09-15 15:09:45,636 [Task 28] [PIL.Image] DEBUG: Importing GbrImagePlugin\r\nDEBUG:PIL.Image:Importing GifImagePlugin\r\n2022-09-15 15:09:45,636 [Task 28] [PIL.Image] DEBUG: Importing GifImagePlugin\r\nDEBUG:PIL.Image:Importing GribStubImagePlugin\r\n2022-09-15 15:09:45,636 [Task 28] [PIL.Image] DEBUG: Importing GribStubImagePlugin\r\nDEBUG:PIL.Image:Importing Hdf5StubImagePlugin\r\n2022-09-15 15:09:45,636 [Task 28] [PIL.Image] DEBUG: Importing Hdf5StubImagePlugin\r\nDEBUG:PIL.Image:Importing IcnsImagePlugin\r\n2022-09-15 15:09:45,637 [Task 28] [PIL.Image] DEBUG: Importing IcnsImagePlugin\r\nDEBUG:PIL.Image:Importing IcoImagePlugin\r\n2022-09-15 15:09:45,637 [Task 28] [PIL.Image] DEBUG: Importing IcoImagePlugin\r\nDEBUG:PIL.Image:Importing ImImagePlugin\r\n2022-09-15 15:09:45,637 [Task 28] [PIL.Image] DEBUG: Importing ImImagePlugin\r\nDEBUG:PIL.Image:Importing ImtImagePlugin\r\n2022-09-15 15:09:45,637 [Task 28] [PIL.Image] DEBUG: Importing ImtImagePlugin\r\nDEBUG:PIL.Image:Importing IptcImagePlugin\r\n2022-09-15 15:09:45,638 [Task 28] [PIL.Image] DEBUG: Importing IptcImagePlugin\r\nDEBUG:PIL.Image:Importing JpegImagePlugin\r\n2022-09-15 15:09:45,638 [Task 28] [PIL.Image] DEBUG: Importing JpegImagePlugin\r\nDEBUG:PIL.Image:Importing Jpeg2KImagePlugin\r\n2022-09-15 15:09:45,638 [Task 28] [PIL.Image] DEBUG: Importing Jpeg2KImagePlugin\r\nDEBUG:PIL.Image:Importing McIdasImagePlugin\r\n2022-09-15 15:09:45,638 [Task 28] [PIL.Image] DEBUG: Importing McIdasImagePlugin\r\nDEBUG:PIL.Image:Importing MicImagePlugin\r\n2022-09-15 15:09:45,639 [Task 28] [PIL.Image] DEBUG: Importing MicImagePlugin\r\nDEBUG:PIL.Image:Importing MpegImagePlugin\r\n2022-09-15 15:09:45,639 [Task 28] [PIL.Image] DEBUG: Importing MpegImagePlugin\r\nDEBUG:PIL.Image:Importing MpoImagePlugin\r\n2022-09-15 15:09:45,639 [Task 28] [PIL.Image] DEBUG: Importing MpoImagePlugin\r\nDEBUG:PIL.Image:Importing MspImagePlugin\r\n2022-09-15 15:09:45,639 [Task 28] [PIL.Image] DEBUG: Importing MspImagePlugin\r\nDEBUG:PIL.Image:Importing PalmImagePlugin\r\n2022-09-15 15:09:45,640 [Task 28] [PIL.Image] DEBUG: Importing PalmImagePlugin\r\nDEBUG:PIL.Image:Importing PcdImagePlugin\r\n2022-09-15 15:09:45,640 [Task 28] [PIL.Image] DEBUG: Importing PcdImagePlugin\r\nDEBUG:PIL.Image:Importing PcxImagePlugin\r\n2022-09-15 15:09:45,640 [Task 28] [PIL.Image] DEBUG: Importing PcxImagePlugin\r\nDEBUG:PIL.Image:Importing PdfImagePlugin\r\n2022-09-15 15:09:45,640 [Task 28] [PIL.Image] DEBUG: Importing PdfImagePlugin\r\nDEBUG:PIL.Image:Importing PixarImagePlugin\r\n2022-09-15 15:09:45,641 [Task 28] [PIL.Image] DEBUG: Importing PixarImagePlugin\r\nDEBUG:PIL.Image:Importing PngImagePlugin\r\n2022-09-15 15:09:45,641 [Task 28] [PIL.Image] DEBUG: Importing PngImagePlugin\r\nDEBUG:PIL.Image:Importing PpmImagePlugin\r\n2022-09-15 15:09:45,641 [Task 28] [PIL.Image] DEBUG: Importing PpmImagePlugin\r\nDEBUG:PIL.Image:Importing PsdImagePlugin\r\n2022-09-15 15:09:45,641 [Task 28] [PIL.Image] DEBUG: Importing PsdImagePlugin\r\nDEBUG:PIL.Image:Importing SgiImagePlugin\r\n2022-09-15 15:09:45,641 [Task 28] [PIL.Image] DEBUG: Importing SgiImagePlugin\r\nDEBUG:PIL.Image:Importing SpiderImagePlugin\r\n2022-09-15 15:09:45,641 [Task 28] [PIL.Image] DEBUG: Importing SpiderImagePlugin\r\nDEBUG:PIL.Image:Importing SunImagePlugin\r\n2022-09-15 15:09:45,642 [Task 28] [PIL.Image] DEBUG: Importing SunImagePlugin\r\nDEBUG:PIL.Image:Importing TgaImagePlugin\r\n2022-09-15 15:09:45,642 [Task 28] [PIL.Image] DEBUG: Importing TgaImagePlugin\r\nDEBUG:PIL.Image:Importing TiffImagePlugin\r\n2022-09-15 15:09:45,642 [Task 28] [PIL.Image] DEBUG: Importing TiffImagePlugin\r\nDEBUG:PIL.Image:Importing WebPImagePlugin\r\n2022-09-15 15:09:45,642 [Task 28] [PIL.Image] DEBUG: Importing WebPImagePlugin\r\nDEBUG:PIL.Image:Image: failed to import WebPImagePlugin: cannot import name '_webp' from 'PIL' (/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/PIL/__init__.py)\r\n2022-09-15 15:09:45,642 [Task 28] [PIL.Image] DEBUG: Image: failed to import WebPImagePlugin: cannot import name '_webp' from 'PIL' (/home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/PIL/__init__.py)\r\nDEBUG:PIL.Image:Importing WmfImagePlugin\r\n2022-09-15 15:09:45,642 [Task 28] [PIL.Image] DEBUG: Importing WmfImagePlugin\r\nDEBUG:PIL.Image:Importing XbmImagePlugin\r\n2022-09-15 15:09:45,643 [Task 28] [PIL.Image] DEBUG: Importing XbmImagePlugin\r\nDEBUG:PIL.Image:Importing XpmImagePlugin\r\n2022-09-15 15:09:45,643 [Task 28] [PIL.Image] DEBUG: Importing XpmImagePlugin\r\nDEBUG:PIL.Image:Importing XVThumbImagePlugin\r\n2022-09-15 15:09:45,644 [Task 28] [PIL.Image] DEBUG: Importing XVThumbImagePlugin\r\nDEBUG:lib.cuckoo.core.plugins:Executing processing module \"AnalysisInfo\" on analysis at \"/opt/CAPEv2/storage/analyses/28\"\r\n2022-09-15 15:10:14,896 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"AnalysisInfo\" on analysis at \"/opt/CAPEv2/storage/analyses/28\"\r\nDEBUG:lib.cuckoo.core.plugins:Executing processing module \"BehaviorAnalysis\" on analysis at \"/opt/CAPEv2/storage/analyses/28\"\r\n2022-09-15 15:10:14,915 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"BehaviorAnalysis\" on analysis at \"/opt/CAPEv2/storage/analyses/28\"\r\nDEBUG:lib.cuckoo.core.plugins:Executing processing module \"Curtain\" on analysis at \"/opt/CAPEv2/storage/analyses/28\"\r\n2022-09-15 15:10:16,974 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Curtain\" on analysis at \"/opt/CAPEv2/storage/analyses/28\"\r\nDEBUG:lib.cuckoo.core.plugins:Executing processing module \"Debug\" on analysis at \"/opt/CAPEv2/storage/analyses/28\"\r\n2022-09-15 15:10:16,975 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Debug\" on analysis at \"/opt/CAPEv2/storage/analyses/28\"\r\nDEBUG:lib.cuckoo.core.plugins:Executing processing module \"Dropped\" on analysis at \"/opt/CAPEv2/storage/analyses/28\"\r\n2022-09-15 15:10:16,977 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Dropped\" on analysis at \"/opt/CAPEv2/storage/analyses/28\"\r\nDEBUG:lib.cuckoo.core.plugins:Executing processing module \"Memory\" on analysis at \"/opt/CAPEv2/storage/analyses/28\"\r\n2022-09-15 15:10:39,656 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Memory\" on analysis at \"/opt/CAPEv2/storage/analyses/28\"\r\nDEBUG:lib.cuckoo.core.plugins:Executing processing module \"NetworkAnalysis\" on analysis at \"/opt/CAPEv2/storage/analyses/28\"\r\n2022-09-15 15:12:32,525 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"NetworkAnalysis\" on analysis at \"/opt/CAPEv2/storage/analyses/28\"\r\nDEBUG:lib.cuckoo.core.plugins:Executing processing module \"ProcDump\" on analysis at \"/opt/CAPEv2/storage/analyses/28\"\r\n2022-09-15 15:12:32,666 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"ProcDump\" on analysis at \"/opt/CAPEv2/storage/analyses/28\"\r\nDEBUG:lib.cuckoo.core.plugins:Executing processing module \"Suricata\" on analysis at \"/opt/CAPEv2/storage/analyses/28\"\r\n2022-09-15 15:12:37,002 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Suricata\" on analysis at \"/opt/CAPEv2/storage/analyses/28\"\r\nWARNING:modules.processing.suricata:Unable to Run Suricata: Conf File /etc/suricata/suricata.yaml does not exist\r\n2022-09-15 15:12:37,002 [Task 28] [modules.processing.suricata] WARNING: Unable to Run Suricata: Conf File /etc/suricata/suricata.yaml does not exist\r\nDEBUG:lib.cuckoo.core.plugins:Executing processing module \"TargetInfo\" on analysis at \"/opt/CAPEv2/storage/analyses/28\"\r\n2022-09-15 15:12:37,003 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"TargetInfo\" on analysis at \"/opt/CAPEv2/storage/analyses/28\"\r\nDEBUG:lib.cuckoo.core.plugins:Executing processing module \"script_log_processing\" on analysis at \"/opt/CAPEv2/storage/analyses/28\"\r\n2022-09-15 15:12:37,772 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"script_log_processing\" on analysis at \"/opt/CAPEv2/storage/analyses/28\"\r\nDEBUG:lib.cuckoo.core.plugins:Executing processing module \"ProcessMemory\" on analysis at \"/opt/CAPEv2/storage/analyses/28\"\r\n2022-09-15 15:12:37,773 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"ProcessMemory\" on analysis at \"/opt/CAPEv2/storage/analyses/28\"\r\nDEBUG:lib.cuckoo.core.plugins:Applying signature overlays for signatures: creates_exe\r\n2022-09-15 15:12:47,242 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Applying signature overlays for signatures: creates_exe\r\nDEBUG:lib.cuckoo.core.plugins:Running 289 evented signatures\r\n2022-09-15 15:12:47,244 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running 289 evented signatures\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- compression\r\n2022-09-15 15:12:47,245 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- compression\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- decryption\r\n2022-09-15 15:12:47,245 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- decryption\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- doppelganging\r\n2022-09-15 15:12:47,245 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- doppelganging\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- evil_grab\r\n2022-09-15 15:12:47,245 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- evil_grab\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- injection_inter_process\r\n2022-09-15 15:12:47,245 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_inter_process\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- injection_create_remote_thread\r\n2022-09-15 15:12:47,245 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_create_remote_thread\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- injection_process_hollowing\r\n2022-09-15 15:12:47,245 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_process_hollowing\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- injection_set_window_long\r\n2022-09-15 15:12:47,245 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_set_window_long\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- plugx\r\n2022-09-15 15:12:47,245 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- plugx\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- reg_binary\r\n2022-09-15 15:12:47,245 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- reg_binary\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- transacted_hollowing\r\n2022-09-15 15:12:47,245 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- transacted_hollowing\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- unpacker\r\n2022-09-15 15:12:47,245 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- unpacker\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- alphacrypt_behavior\r\n2022-09-15 15:12:47,245 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- alphacrypt_behavior\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- andromeda_behavior\r\n2022-09-15 15:12:47,245 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- andromeda_behavior\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- anomalous_deletefile\r\n2022-09-15 15:12:47,245 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- anomalous_deletefile\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antiav_360_libs\r\n2022-09-15 15:12:47,246 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_360_libs\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antiav_ahnlab_libs\r\n2022-09-15 15:12:47,246 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_ahnlab_libs\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antiav_avast_libs\r\n2022-09-15 15:12:47,246 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_avast_libs\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antiav_bitdefender_libs\r\n2022-09-15 15:12:47,246 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_bitdefender_libs\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antiav_bullgaurd_libs\r\n2022-09-15 15:12:47,246 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_bullgaurd_libs\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antiav_emsisoft_libs\r\n2022-09-15 15:12:47,246 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_emsisoft_libs\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antiav_qurb_libs\r\n2022-09-15 15:12:47,246 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_qurb_libs\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antiav_servicestop\r\n2022-09-15 15:12:47,246 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_servicestop\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antidebug_addvectoredexceptionhandler\r\n2022-09-15 15:12:47,246 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_addvectoredexceptionhandler\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antiav_apioverride_libs\r\n2022-09-15 15:12:47,246 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_apioverride_libs\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antidebug_checkremotedebuggerpresent\r\n2022-09-15 15:12:47,246 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_checkremotedebuggerpresent\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antidebug_debugactiveprocess\r\n2022-09-15 15:12:47,246 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_debugactiveprocess\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antidebug_gettickcount\r\n2022-09-15 15:12:47,246 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_gettickcount\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antidebug_guardpages\r\n2022-09-15 15:12:47,246 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_guardpages\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antidebug_ntcreatethreadex\r\n2022-09-15 15:12:47,246 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_ntcreatethreadex\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antiav_nthookengine_libs\r\n2022-09-15 15:12:47,246 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_nthookengine_libs\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antidebug_ntsetinformationthread\r\n2022-09-15 15:12:47,246 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_ntsetinformationthread\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antidebug_outputdebugstring\r\n2022-09-15 15:12:47,246 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_outputdebugstring\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antidebug_setunhandledexceptionfilter\r\n2022-09-15 15:12:47,246 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_setunhandledexceptionfilter\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antidebug_windows\r\n2022-09-15 15:12:47,247 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_windows\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antiemu_wine_func\r\n2022-09-15 15:12:47,247 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antiemu_wine_func\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antisandbox_check_userdomain\r\n2022-09-15 15:12:47,247 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_check_userdomain\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antisandbox_cuckoo\r\n2022-09-15 15:12:47,247 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_cuckoo\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antisandbox_cuckoocrash\r\n2022-09-15 15:12:47,247 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_cuckoocrash\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antisandbox_foregroundwindows\r\n2022-09-15 15:12:47,247 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_foregroundwindows\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antisandbox_mouse_hook\r\n2022-09-15 15:12:47,247 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_mouse_hook\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antisandbox_restart\r\n2022-09-15 15:12:47,247 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_restart\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antisandbox_sboxie_libs\r\n2022-09-15 15:12:47,247 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_sboxie_libs\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antisandbox_sboxie_objects\r\n2022-09-15 15:12:47,247 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_sboxie_objects\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antisandbox_script_timer\r\n2022-09-15 15:12:47,247 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_script_timer\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antisandbox_sleep\r\n2022-09-15 15:12:47,247 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_sleep\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antisandbox_sunbelt_libs\r\n2022-09-15 15:12:47,247 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_sunbelt_libs\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antisandbox_suspend\r\n2022-09-15 15:12:47,247 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_suspend\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antisandbox_unhook\r\n2022-09-15 15:12:47,247 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_unhook\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antivm_directory_objects\r\n2022-09-15 15:12:47,247 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_directory_objects\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antivm_generic_disk\r\n2022-09-15 15:12:47,247 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_generic_disk\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antivm_generic_disk_setupapi\r\n2022-09-15 15:12:47,247 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_generic_disk_setupapi\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antivm_generic_scsi\r\n2022-09-15 15:12:47,247 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_generic_scsi\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antivm_generic_services\r\n2022-09-15 15:12:47,248 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_generic_services\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antivm_network_adapters\r\n2022-09-15 15:12:47,248 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_network_adapters\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antivm_vbox_libs\r\n2022-09-15 15:12:47,248 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_vbox_libs\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antivm_vbox_provname\r\n2022-09-15 15:12:47,248 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_vbox_provname\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antivm_vbox_window\r\n2022-09-15 15:12:47,248 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_vbox_window\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antivm_vmware_events\r\n2022-09-15 15:12:47,248 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_vmware_events\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- antivm_vmware_libs\r\n2022-09-15 15:12:47,248 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_vmware_libs\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- api_spamming\r\n2022-09-15 15:12:47,248 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- api_spamming\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- banker_prinimalka\r\n2022-09-15 15:12:47,248 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- banker_prinimalka\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- bcdedit_command\r\n2022-09-15 15:12:47,248 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- bcdedit_command\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- betabot_behavior\r\n2022-09-15 15:12:47,248 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- betabot_behavior\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- bootkit\r\n2022-09-15 15:12:47,248 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- bootkit\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- potential_overwrite_mbr\r\n2022-09-15 15:12:47,248 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- potential_overwrite_mbr\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- suspicious_ioctl_scsipassthough\r\n2022-09-15 15:12:47,248 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- suspicious_ioctl_scsipassthough\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- browser_needed\r\n2022-09-15 15:12:47,248 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- browser_needed\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- browser_scanbox\r\n2022-09-15 15:12:47,248 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- browser_scanbox\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- firefox_disables_process_tab\r\n2022-09-15 15:12:47,248 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- firefox_disables_process_tab\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- regsvr32_squiblydoo_dll_load\r\n2022-09-15 15:12:47,248 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- regsvr32_squiblydoo_dll_load\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- uac_bypass_cmstp\r\n2022-09-15 15:12:47,248 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- uac_bypass_cmstp\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- uac_bypass_eventvwr\r\n2022-09-15 15:12:47,248 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- uac_bypass_eventvwr\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- cerber_behavior\r\n2022-09-15 15:12:47,249 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- cerber_behavior\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- chimera_behavior\r\n2022-09-15 15:12:47,249 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- chimera_behavior\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- clickfraud_cookies\r\n2022-09-15 15:12:47,249 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- clickfraud_cookies\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- clickfraud_volume\r\n2022-09-15 15:12:47,249 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- clickfraud_volume\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- dotnet_code_compile\r\n2022-09-15 15:12:47,249 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- dotnet_code_compile\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- creates_largekey\r\n2022-09-15 15:12:47,249 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- creates_largekey\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- creates_nullvalue\r\n2022-09-15 15:12:47,249 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- creates_nullvalue\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- lsass_credential_dumping\r\n2022-09-15 15:12:47,249 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- lsass_credential_dumping\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- critical_process\r\n2022-09-15 15:12:47,249 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- critical_process\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- generates_crypto_key\r\n2022-09-15 15:12:47,249 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- generates_crypto_key\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- cryptowall_behavior\r\n2022-09-15 15:12:47,249 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- cryptowall_behavior\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- cve_2014_6332\r\n2022-09-15 15:12:47,249 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- cve_2014_6332\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- cve_2015_2419_js\r\n2022-09-15 15:12:47,249 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- cve_2015_2419_js\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- cve_2016-0189\r\n2022-09-15 15:12:47,249 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- cve_2016-0189\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- cve_2016_7200\r\n2022-09-15 15:12:47,249 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- cve_2016_7200\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- dead_connect\r\n2022-09-15 15:12:47,249 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- dead_connect\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- dead_link\r\n2022-09-15 15:12:47,249 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- dead_link\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- debugs_self\r\n2022-09-15 15:12:47,249 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- debugs_self\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- decoy_document\r\n2022-09-15 15:12:47,249 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- decoy_document\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- decoy_image\r\n2022-09-15 15:12:47,249 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- decoy_image\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- deletes_self\r\n2022-09-15 15:12:47,250 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- deletes_self\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- deletes_shadow_copies\r\n2022-09-15 15:12:47,250 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- deletes_shadow_copies\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- deletes_system_state_backup\r\n2022-09-15 15:12:47,250 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- deletes_system_state_backup\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- dep_bypass\r\n2022-09-15 15:12:47,250 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- dep_bypass\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- dep_disable\r\n2022-09-15 15:12:47,250 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- dep_disable\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- disables_mappeddrives_autodisconnect\r\n2022-09-15 15:12:47,250 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- disables_mappeddrives_autodisconnect\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- disables_spdy\r\n2022-09-15 15:12:47,250 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- disables_spdy\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- disables_wfp\r\n2022-09-15 15:12:47,250 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- disables_wfp\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- dll_load_uncommon_file_types\r\n2022-09-15 15:12:47,250 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- dll_load_uncommon_file_types\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- document_script_exe_drop\r\n2022-09-15 15:12:47,250 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- document_script_exe_drop\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- guloader_apis\r\n2022-09-15 15:12:47,250 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- guloader_apis\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- dridex_behavior\r\n2022-09-15 15:12:47,250 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- dridex_behavior\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- driver_load\r\n2022-09-15 15:12:47,250 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- driver_load\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- exe_dropper_js\r\n2022-09-15 15:12:47,250 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- exe_dropper_js\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- dynamic_function_loading\r\n2022-09-15 15:12:47,250 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- dynamic_function_loading\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- angler_js\r\n2022-09-15 15:12:47,250 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- angler_js\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- gondad_js\r\n2022-09-15 15:12:47,250 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- gondad_js\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- heapspray_js\r\n2022-09-15 15:12:47,250 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- heapspray_js\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- java_js\r\n2022-09-15 15:12:47,250 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- java_js\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- neutrino_js\r\n2022-09-15 15:12:47,251 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- neutrino_js\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- nuclear_js\r\n2022-09-15 15:12:47,251 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- nuclear_js\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- rig_js\r\n2022-09-15 15:12:47,251 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- rig_js\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- silverlight_js\r\n2022-09-15 15:12:47,251 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- silverlight_js\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- sundown_js\r\n2022-09-15 15:12:47,251 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- sundown_js\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- virtualcheck_js\r\n2022-09-15 15:12:47,251 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- virtualcheck_js\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- encrypted_ioc\r\n2022-09-15 15:12:47,251 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- encrypted_ioc\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- exec_crash\r\n2022-09-15 15:12:47,251 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- exec_crash\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- process_creation_suspicious_location\r\n2022-09-15 15:12:47,251 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- process_creation_suspicious_location\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- exploit_getbasekerneladdress\r\n2022-09-15 15:12:47,251 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- exploit_getbasekerneladdress\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- exploit_gethaldispatchtable\r\n2022-09-15 15:12:47,251 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- exploit_gethaldispatchtable\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- exploit_heapspray\r\n2022-09-15 15:12:47,251 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- exploit_heapspray\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- koadic_apis\r\n2022-09-15 15:12:47,251 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- koadic_apis\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- koadic_network_activity\r\n2022-09-15 15:12:47,251 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- koadic_network_activity\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- downloads_from_filehosting\r\n2022-09-15 15:12:47,251 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- downloads_from_filehosting\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- generic_phish\r\n2022-09-15 15:12:47,251 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- generic_phish\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- gootkit_behavior\r\n2022-09-15 15:12:47,251 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- gootkit_behavior\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- h1n1_behavior\r\n2022-09-15 15:12:47,251 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- h1n1_behavior\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- hancitor_behavior\r\n2022-09-15 15:12:47,251 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- hancitor_behavior\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- hawkeye_behavior\r\n2022-09-15 15:12:47,251 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- hawkeye_behavior\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- http_request\r\n2022-09-15 15:12:47,252 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- http_request\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- https_urls\r\n2022-09-15 15:12:47,252 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- https_urls\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- infostealer_browser\r\n2022-09-15 15:12:47,252 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- infostealer_browser\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- infostealer_browser_password\r\n2022-09-15 15:12:47,252 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- infostealer_browser_password\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- cryptbot_network\r\n2022-09-15 15:12:47,252 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- cryptbot_network\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- infostealer_keylog\r\n2022-09-15 15:12:47,252 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- infostealer_keylog\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- masslogger_artifacts\r\n2022-09-15 15:12:47,252 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- masslogger_artifacts\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- masslogger_version\r\n2022-09-15 15:12:47,252 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- masslogger_version\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- purplewave_network_activity\r\n2022-09-15 15:12:47,252 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- purplewave_network_activity\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- quilclipper_behavior\r\n2022-09-15 15:12:47,252 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- quilclipper_behavior\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- raccoon_behavior\r\n2022-09-15 15:12:47,252 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- raccoon_behavior\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- captures_screenshot\r\n2022-09-15 15:12:47,252 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- captures_screenshot\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- vidar_behavior\r\n2022-09-15 15:12:47,252 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- vidar_behavior\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- injection_createremotethread\r\n2022-09-15 15:12:47,252 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_createremotethread\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- injection_explorer\r\n2022-09-15 15:12:47,252 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_explorer\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- injection_needextension\r\n2022-09-15 15:12:47,252 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_needextension\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- injection_network_traffic\r\n2022-09-15 15:12:47,252 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_network_traffic\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- injection_runpe\r\n2022-09-15 15:12:47,252 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_runpe\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- injection_rwx\r\n2022-09-15 15:12:47,252 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_rwx\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- injection_themeinitapihook\r\n2022-09-15 15:12:47,252 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_themeinitapihook\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- internet_dropper\r\n2022-09-15 15:12:47,252 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- internet_dropper\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- ipc_namedpipe\r\n2022-09-15 15:12:47,253 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- ipc_namedpipe\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- js_phish\r\n2022-09-15 15:12:47,253 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- js_phish\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- js_suspicious_redirect\r\n2022-09-15 15:12:47,253 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- js_suspicious_redirect\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- kazybot_behavior\r\n2022-09-15 15:12:47,253 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- kazybot_behavior\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- kelihos_behavior\r\n2022-09-15 15:12:47,253 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- kelihos_behavior\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- kibex_behavior\r\n2022-09-15 15:12:47,253 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- kibex_behavior\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- kovter_behavior\r\n2022-09-15 15:12:47,253 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- kovter_behavior\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- locky_behavior\r\n2022-09-15 15:12:47,253 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- locky_behavior\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- malicious_dynamic_function_loading\r\n2022-09-15 15:12:47,253 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- malicious_dynamic_function_loading\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- encrypt_pcinfo\r\n2022-09-15 15:12:47,253 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- encrypt_pcinfo\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- encrypt_data_agenttesla_http\r\n2022-09-15 15:12:47,253 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- encrypt_data_agenttesla_http\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- encrypt_data_agentteslat2_http\r\n2022-09-15 15:12:47,253 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- encrypt_data_agentteslat2_http\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- encrypt_data_nanocore\r\n2022-09-15 15:12:47,253 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- encrypt_data_nanocore\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- mimics_agent\r\n2022-09-15 15:12:47,253 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- mimics_agent\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- mimics_filetime\r\n2022-09-15 15:12:47,253 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- mimics_filetime\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- quilclipper_behavior\r\n2022-09-15 15:12:47,253 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- quilclipper_behavior\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- modify_desktop_wallpaper\r\n2022-09-15 15:12:47,253 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- modify_desktop_wallpaper\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- modify_zoneid_ads\r\n2022-09-15 15:12:47,253 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- modify_zoneid_ads\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- move_file_on_reboot\r\n2022-09-15 15:12:47,253 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- move_file_on_reboot\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- multiple_useragents\r\n2022-09-15 15:12:47,253 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- multiple_useragents\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_anomaly\r\n2022-09-15 15:12:47,254 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_anomaly\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_bind\r\n2022-09-15 15:12:47,254 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_bind\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_cnc_https_archive\r\n2022-09-15 15:12:47,254 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_archive\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_cnc_https_free_webshoting\r\n2022-09-15 15:12:47,254 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_free_webshoting\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_cnc_https_generic\r\n2022-09-15 15:12:47,254 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_generic\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_cnc_https_temp_urldns\r\n2022-09-15 15:12:47,254 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_temp_urldns\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_cnc_https_pastesite\r\n2022-09-15 15:12:47,254 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_pastesite\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_cnc_https_payload\r\n2022-09-15 15:12:47,254 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_payload\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_cnc_https_socialmedia\r\n2022-09-15 15:12:47,254 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_socialmedia\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_cnc_https_telegram\r\n2022-09-15 15:12:47,254 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_telegram\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_cnc_https_tempstorage\r\n2022-09-15 15:12:47,254 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_tempstorage\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_cnc_https_temp_urldns\r\n2022-09-15 15:12:47,254 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_temp_urldns\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_cnc_https_urlshortener\r\n2022-09-15 15:12:47,254 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_urlshortener\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_cnc_https_useragent\r\n2022-09-15 15:12:47,254 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_https_useragent\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_cnc_smtps_exfil\r\n2022-09-15 15:12:47,254 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_smtps_exfil\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_cnc_smtps_generic\r\n2022-09-15 15:12:47,254 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_cnc_smtps_generic\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_dns_idn\r\n2022-09-15 15:12:47,254 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_dns_idn\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_dns_suspicious_querytype\r\n2022-09-15 15:12:47,254 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_dns_suspicious_querytype\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_dns_tunneling_request\r\n2022-09-15 15:12:47,254 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_dns_tunneling_request\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_document_http\r\n2022-09-15 15:12:47,255 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_document_http\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- explorer_http\r\n2022-09-15 15:12:47,255 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- explorer_http\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_fake_useragent\r\n2022-09-15 15:12:47,255 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_fake_useragent\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_document_file\r\n2022-09-15 15:12:47,255 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_document_file\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_downloader_exe\r\n2022-09-15 15:12:47,255 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_downloader_exe\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- network_tor\r\n2022-09-15 15:12:47,255 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- network_tor\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- nymaim_behavior\r\n2022-09-15 15:12:47,255 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- nymaim_behavior\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- office_com_load\r\n2022-09-15 15:12:47,255 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_com_load\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- office_dotnet_load\r\n2022-09-15 15:12:47,255 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_dotnet_load\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- office_mshtml_load\r\n2022-09-15 15:12:47,255 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_mshtml_load\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- office_vb_load\r\n2022-09-15 15:12:47,255 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_vb_load\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- office_wmi_load\r\n2022-09-15 15:12:47,255 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_wmi_load\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- office_cve2017_11882\r\n2022-09-15 15:12:47,255 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_cve2017_11882\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- office_cve2017_11882_network\r\n2022-09-15 15:12:47,255 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_cve2017_11882_network\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- office_cve_2021_40444\r\n2022-09-15 15:12:47,255 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_cve_2021_40444\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- office_cve_2021_40444_m2\r\n2022-09-15 15:12:47,255 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_cve_2021_40444_m2\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- office_flash_load\r\n2022-09-15 15:12:47,255 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_flash_load\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- office_postscript\r\n2022-09-15 15:12:47,255 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_postscript\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- office_suspicious_processes\r\n2022-09-15 15:12:47,255 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_suspicious_processes\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- office_write_exe\r\n2022-09-15 15:12:47,256 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- office_write_exe\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- packer_themida\r\n2022-09-15 15:12:47,256 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- packer_themida\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- persistence_autorun\r\n2022-09-15 15:12:47,256 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- persistence_autorun\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- persistence_autorun_tasks\r\n2022-09-15 15:12:47,256 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- persistence_autorun_tasks\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- persistence_bootexecute\r\n2022-09-15 15:12:47,256 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- persistence_bootexecute\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- persistence_registry_script\r\n2022-09-15 15:12:47,256 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- persistence_registry_script\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- pony_behavior\r\n2022-09-15 15:12:47,256 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- pony_behavior\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- powershell_network_connection\r\n2022-09-15 15:12:47,256 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- powershell_network_connection\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- powershell_download\r\n2022-09-15 15:12:47,256 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- powershell_download\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- powershell_request\r\n2022-09-15 15:12:47,256 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- powershell_request\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- createtoolhelp32snapshot_module_enumeration\r\n2022-09-15 15:12:47,256 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- createtoolhelp32snapshot_module_enumeration\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- enumerates_running_processes\r\n2022-09-15 15:12:47,256 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- enumerates_running_processes\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- process_interest\r\n2022-09-15 15:12:47,256 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- process_interest\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- process_needed\r\n2022-09-15 15:12:47,256 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- process_needed\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- mass_data_encryption\r\n2022-09-15 15:12:47,256 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- mass_data_encryption\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- ransomware_dmalocker\r\n2022-09-15 15:12:47,256 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- ransomware_dmalocker\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- ransomware_file_modifications\r\n2022-09-15 15:12:47,256 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- ransomware_file_modifications\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- ransomware_message\r\n2022-09-15 15:12:47,256 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- ransomware_message\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- nemty_network_activity\r\n2022-09-15 15:12:47,256 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- nemty_network_activity\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- nemty_note\r\n2022-09-15 15:12:47,257 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- nemty_note\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- sodinokibi_behavior\r\n2022-09-15 15:12:47,257 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- sodinokibi_behavior\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- stop_ransomware_registry\r\n2022-09-15 15:12:47,257 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- stop_ransomware_registry\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- blackrat_apis\r\n2022-09-15 15:12:47,257 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- blackrat_apis\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- blackrat_network_activity\r\n2022-09-15 15:12:47,257 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- blackrat_network_activity\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- blackrat_registry_keys\r\n2022-09-15 15:12:47,257 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- blackrat_registry_keys\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- dcrat_behavior\r\n2022-09-15 15:12:47,257 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- dcrat_behavior\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- karagany_system_event_objects\r\n2022-09-15 15:12:47,257 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- karagany_system_event_objects\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- rat_luminosity\r\n2022-09-15 15:12:47,257 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- rat_luminosity\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- rat_nanocore\r\n2022-09-15 15:12:47,257 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- rat_nanocore\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- netwire_behavior\r\n2022-09-15 15:12:47,257 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- netwire_behavior\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- obliquerat_network_activity\r\n2022-09-15 15:12:47,257 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- obliquerat_network_activity\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- orcusrat_behavior\r\n2022-09-15 15:12:47,257 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- orcusrat_behavior\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- trochilusrat_apis\r\n2022-09-15 15:12:47,257 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- trochilusrat_apis\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- reads_self\r\n2022-09-15 15:12:47,257 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- reads_self\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- recon_beacon\r\n2022-09-15 15:12:47,257 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- recon_beacon\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- recon_programs\r\n2022-09-15 15:12:47,257 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- recon_programs\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- recon_systeminfo\r\n2022-09-15 15:12:47,257 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- recon_systeminfo\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- accesses_recyclebin\r\n2022-09-15 15:12:47,257 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- accesses_recyclebin\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- removes_zoneid_ads\r\n2022-09-15 15:12:47,257 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- removes_zoneid_ads\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- script_created_process\r\n2022-09-15 15:12:47,258 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- script_created_process\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- script_network_activity\r\n2022-09-15 15:12:47,258 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- script_network_activity\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- suspicious_js_script\r\n2022-09-15 15:12:47,258 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- suspicious_js_script\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- secure_login_phishing\r\n2022-09-15 15:12:47,258 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- secure_login_phishing\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- securityxploded_modules\r\n2022-09-15 15:12:47,258 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- securityxploded_modules\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- get_clipboard_data\r\n2022-09-15 15:12:47,258 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- get_clipboard_data\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- sets_autoconfig_url\r\n2022-09-15 15:12:47,258 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- sets_autoconfig_url\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- shifu_behavior\r\n2022-09-15 15:12:47,258 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- shifu_behavior\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- spoofs_procname\r\n2022-09-15 15:12:47,258 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- spoofs_procname\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- stack_pivot\r\n2022-09-15 15:12:47,258 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- stack_pivot\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- stack_pivot_file_created\r\n2022-09-15 15:12:47,258 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- stack_pivot_file_created\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- stack_pivot_process_create\r\n2022-09-15 15:12:47,258 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- stack_pivot_process_create\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- set_clipboard_data\r\n2022-09-15 15:12:47,258 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- set_clipboard_data\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- stealth_childproc\r\n2022-09-15 15:12:47,258 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- stealth_childproc\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- stealth_file\r\n2022-09-15 15:12:47,258 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- stealth_file\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- stealth_network\r\n2022-09-15 15:12:47,258 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- stealth_network\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- stealth_system_procname\r\n2022-09-15 15:12:47,258 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- stealth_system_procname\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- stealth_timeout\r\n2022-09-15 15:12:47,258 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- stealth_timeout\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- stealth_window\r\n2022-09-15 15:12:47,258 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- stealth_window\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- terminates_remote_process\r\n2022-09-15 15:12:47,259 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- terminates_remote_process\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- tinba_behavior\r\n2022-09-15 15:12:47,259 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- tinba_behavior\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- trickbot_task_delete\r\n2022-09-15 15:12:47,259 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- trickbot_task_delete\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- upatre_behavior\r\n2022-09-15 15:12:47,259 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- upatre_behavior\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- ursnif_behavior\r\n2022-09-15 15:12:47,259 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- ursnif_behavior\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- user_enum\r\n2022-09-15 15:12:47,259 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- user_enum\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- vawtrak_behavior\r\n2022-09-15 15:12:47,259 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- vawtrak_behavior\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- vawtrak_behavior\r\n2022-09-15 15:12:47,259 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- vawtrak_behavior\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- virus\r\n2022-09-15 15:12:47,259 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- virus\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- neshta_files\r\n2022-09-15 15:12:47,259 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- neshta_files\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- neshta_regkeys\r\n2022-09-15 15:12:47,259 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- neshta_regkeys\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- webmail_phish\r\n2022-09-15 15:12:47,259 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- webmail_phish\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- persists_dev_util\r\n2022-09-15 15:12:47,259 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- persists_dev_util\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- spawns_dev_util\r\n2022-09-15 15:12:47,259 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- spawns_dev_util\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- alters_windows_utility\r\n2022-09-15 15:12:47,259 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- alters_windows_utility\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- overwrites_accessibility_utility\r\n2022-09-15 15:12:47,259 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- overwrites_accessibility_utility\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- wiper_zeroedbytes\r\n2022-09-15 15:12:47,259 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- wiper_zeroedbytes\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- wmi_create_process\r\n2022-09-15 15:12:47,259 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- wmi_create_process\r\nDEBUG:lib.cuckoo.core.plugins:\t |-- wmi_script_process\r\n2022-09-15 15:12:47,259 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t |-- wmi_script_process\r\nDEBUG:lib.cuckoo.core.plugins:\t `-- win32_process_create\r\n2022-09-15 15:12:47,260 [Task 28] [lib.cuckoo.core.plugins] DEBUG: \t `-- win32_process_create\r\nDEBUG:lib.cuckoo.core.plugins:Running non-evented signatures\r\n2022-09-15 15:12:49,778 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running non-evented signatures\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"cape_detected_threat\"\r\n2022-09-15 15:12:49,779 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cape_detected_threat\"\r\nDEBUG:lib.cuckoo.core.plugins:Analysis matched signature \"cape_detected_threat\"\r\n2022-09-15 15:12:49,779 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"cape_detected_threat\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"accesses_mailslot\"\r\n2022-09-15 15:12:49,779 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"accesses_mailslot\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"accesses_netlogon_regkey\"\r\n2022-09-15 15:12:49,779 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"accesses_netlogon_regkey\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"accesses_sysvol\"\r\n2022-09-15 15:12:49,780 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"accesses_sysvol\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"writes_sysvol\"\r\n2022-09-15 15:12:49,781 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"writes_sysvol\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"adds_admin_user\"\r\n2022-09-15 15:12:49,782 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"adds_admin_user\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"adds_user\"\r\n2022-09-15 15:12:49,782 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"adds_user\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"overwrites_admin_password\"\r\n2022-09-15 15:12:49,782 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"overwrites_admin_password\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antianalysis_detectfile\"\r\n2022-09-15 15:12:49,782 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antianalysis_detectfile\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antianalysis_detectreg\"\r\n2022-09-15 15:12:49,792 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antianalysis_detectreg\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"modify_attachment_manager\"\r\n2022-09-15 15:12:49,972 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_attachment_manager\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antiav_detectfile\"\r\n2022-09-15 15:12:49,972 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_detectfile\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antiav_detectreg\"\r\n2022-09-15 15:12:49,998 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_detectreg\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antiav_srp\"\r\n2022-09-15 15:12:50,822 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_srp\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antiav_whitespace\"\r\n2022-09-15 15:12:50,822 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_whitespace\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antidebug_devices\"\r\n2022-09-15 15:12:50,823 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antidebug_devices\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antiemu_windefend\"\r\n2022-09-15 15:12:50,826 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiemu_windefend\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antiemu_wine_reg\"\r\n2022-09-15 15:12:50,827 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiemu_wine_reg\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antisandbox_cuckoo_files\"\r\n2022-09-15 15:12:50,828 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_cuckoo_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antisandbox_fortinet_files\"\r\n2022-09-15 15:12:50,828 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_fortinet_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antisandbox_joe_anubis_files\"\r\n2022-09-15 15:12:50,829 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_joe_anubis_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antisandbox_sboxie_mutex\"\r\n2022-09-15 15:12:50,830 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_sboxie_mutex\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antisandbox_sunbelt_files\"\r\n2022-09-15 15:12:50,830 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_sunbelt_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antisandbox_threattrack_files\"\r\n2022-09-15 15:12:50,831 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_threattrack_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antivirus_clamav\"\r\n2022-09-15 15:12:50,831 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivirus_clamav\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antivirus_virustotal\"\r\n2022-09-15 15:12:50,832 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivirus_virustotal\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antivm_bochs_keys\"\r\n2022-09-15 15:12:50,832 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_bochs_keys\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antivm_generic_bios\"\r\n2022-09-15 15:12:50,847 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_generic_bios\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antivm_generic_cpu\"\r\n2022-09-15 15:12:50,862 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_generic_cpu\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antivm_generic_diskreg\"\r\n2022-09-15 15:12:50,863 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_generic_diskreg\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antivm_generic_system\"\r\n2022-09-15 15:12:50,899 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_generic_system\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antivm_hyperv_keys\"\r\n2022-09-15 15:12:50,909 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_hyperv_keys\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antivm_parallels_keys\"\r\n2022-09-15 15:12:50,929 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_parallels_keys\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antivm_vbox_devices\"\r\n2022-09-15 15:12:50,979 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vbox_devices\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antivm_vbox_files\"\r\n2022-09-15 15:12:50,981 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vbox_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antivm_vbox_keys\"\r\n2022-09-15 15:12:50,992 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vbox_keys\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antivm_vmware_devices\"\r\n2022-09-15 15:12:51,087 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vmware_devices\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antivm_vmware_files\"\r\n2022-09-15 15:12:51,087 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vmware_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antivm_vmware_keys\"\r\n2022-09-15 15:12:51,092 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vmware_keys\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antivm_vmware_mutexes\"\r\n2022-09-15 15:12:51,154 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vmware_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antivm_vpc_files\"\r\n2022-09-15 15:12:51,154 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vpc_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antivm_vpc_keys\"\r\n2022-09-15 15:12:51,155 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vpc_keys\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antivm_vpc_mutex\"\r\n2022-09-15 15:12:51,186 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vpc_mutex\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"antivm_xen_keys\"\r\n2022-09-15 15:12:51,187 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_xen_keys\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"gulpix_behavior\"\r\n2022-09-15 15:12:51,235 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"gulpix_behavior\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"ketrican_regkeys\"\r\n2022-09-15 15:12:51,236 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ketrican_regkeys\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"okrum_mutexes\"\r\n2022-09-15 15:12:51,239 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"okrum_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"bad_certs\"\r\n2022-09-15 15:12:51,239 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bad_certs\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"bad_ssl_certs\"\r\n2022-09-15 15:12:51,239 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bad_ssl_certs\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"banker_cridex\"\r\n2022-09-15 15:12:51,240 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_cridex\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"geodo_banking_trojan\"\r\n2022-09-15 15:12:51,241 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"geodo_banking_trojan\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"banker_spyeye_mutexes\"\r\n2022-09-15 15:12:51,263 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_spyeye_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"banker_zeus_mutex\"\r\n2022-09-15 15:12:51,263 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_zeus_mutex\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"banker_zeus_p2p\"\r\n2022-09-15 15:12:51,264 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_zeus_p2p\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"banker_zeus_url\"\r\n2022-09-15 15:12:51,264 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_zeus_url\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"bitcoin_opencl\"\r\n2022-09-15 15:12:51,264 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bitcoin_opencl\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"accesses_primary_patition\"\r\n2022-09-15 15:12:51,264 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"accesses_primary_patition\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"direct_hdd_access\"\r\n2022-09-15 15:12:51,265 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"direct_hdd_access\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"physical_drive_access\"\r\n2022-09-15 15:12:51,265 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"physical_drive_access\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"bot_athenahttp\"\r\n2022-09-15 15:12:51,265 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_athenahttp\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"bot_dirtjumper\"\r\n2022-09-15 15:12:51,265 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_dirtjumper\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"bot_drive\"\r\n2022-09-15 15:12:51,266 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_drive\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"bot_drive2\"\r\n2022-09-15 15:12:51,266 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_drive2\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"bot_madness\"\r\n2022-09-15 15:12:51,266 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_madness\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"bot_russkill\"\r\n2022-09-15 15:12:51,266 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_russkill\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"browser_addon\"\r\n2022-09-15 15:12:51,267 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"browser_addon\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"browser_helper_object\"\r\n2022-09-15 15:12:51,269 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"browser_helper_object\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"modify_proxy\"\r\n2022-09-15 15:12:51,269 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_proxy\"\r\nDEBUG:lib.cuckoo.core.plugins:Analysis matched signature \"modify_proxy\"\r\n2022-09-15 15:12:51,270 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"modify_proxy\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"browser_security\"\r\n2022-09-15 15:12:51,270 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"browser_security\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"browser_startpage\"\r\n2022-09-15 15:12:51,276 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"browser_startpage\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"ie_disables_process_tab\"\r\n2022-09-15 15:12:51,277 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ie_disables_process_tab\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"odbcconf_bypass\"\r\n2022-09-15 15:12:51,277 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"odbcconf_bypass\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"squiblydoo_bypass\"\r\n2022-09-15 15:12:51,278 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"squiblydoo_bypass\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"squiblytwo_bypass\"\r\n2022-09-15 15:12:51,278 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"squiblytwo_bypass\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"bypass_firewall\"\r\n2022-09-15 15:12:51,278 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bypass_firewall\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"uac_bypass_cmstpcom\"\r\n2022-09-15 15:12:51,293 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uac_bypass_cmstpcom\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"uac_bypass_delegateexecute_sdclt\"\r\n2022-09-15 15:12:51,293 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uac_bypass_delegateexecute_sdclt\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"uac_bypass_fodhelper\"\r\n2022-09-15 15:12:51,294 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uac_bypass_fodhelper\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"cape_extracted_content\"\r\n2022-09-15 15:12:51,294 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cape_extracted_content\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"cape_extracted_config\"\r\n2022-09-15 15:12:51,294 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cape_extracted_config\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"cape_extracted_content\"\r\n2022-09-15 15:12:51,294 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cape_extracted_content\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"carberp_mutex\"\r\n2022-09-15 15:12:51,294 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"carberp_mutex\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"clears_logs\"\r\n2022-09-15 15:12:51,295 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"clears_logs\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"cmdline_obfuscation\"\r\n2022-09-15 15:12:51,295 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_obfuscation\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"cmdline_switches\"\r\n2022-09-15 15:12:51,295 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_switches\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"cmdline_terminate\"\r\n2022-09-15 15:12:51,296 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_terminate\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"cmdline_forfiles_wildcard\"\r\n2022-09-15 15:12:51,296 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_forfiles_wildcard\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"cmdline_http_link\"\r\n2022-09-15 15:12:51,296 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_http_link\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"cmdline_long_string\"\r\n2022-09-15 15:12:51,296 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_long_string\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"cmdline_reversed_http_link\"\r\n2022-09-15 15:12:51,296 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_reversed_http_link\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"long_commandline\"\r\n2022-09-15 15:12:51,296 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"long_commandline\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"powershell_renamed_commandline\"\r\n2022-09-15 15:12:51,297 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_renamed_commandline\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"codelux_behavior\"\r\n2022-09-15 15:12:51,297 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"codelux_behavior\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"system_account_discovery_cmd\"\r\n2022-09-15 15:12:51,298 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_account_discovery_cmd\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"system_info_discovery_cmd\"\r\n2022-09-15 15:12:51,299 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_info_discovery_cmd\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"system_info_discovery_pwsh\"\r\n2022-09-15 15:12:51,299 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_info_discovery_pwsh\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"system_network_discovery_cmd\"\r\n2022-09-15 15:12:51,299 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_network_discovery_cmd\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"system_network_discovery_pwsh\"\r\n2022-09-15 15:12:51,299 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_network_discovery_pwsh\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"system_user_discovery_cmd\"\r\n2022-09-15 15:12:51,299 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_user_discovery_cmd\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"copies_self\"\r\n2022-09-15 15:12:51,299 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"copies_self\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"enables_wdigest\"\r\n2022-09-15 15:12:51,299 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"enables_wdigest\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"file_credential_store_access\"\r\n2022-09-15 15:12:51,300 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"file_credential_store_access\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"file_credential_store_write\"\r\n2022-09-15 15:12:51,301 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"file_credential_store_write\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"registry_credential_dumping\"\r\n2022-09-15 15:12:51,301 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"registry_credential_dumping\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"registry_credential_store_access\"\r\n2022-09-15 15:12:51,301 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"registry_credential_store_access\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"registry_lsa_secrets_access\"\r\n2022-09-15 15:12:51,303 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"registry_lsa_secrets_access\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"cryptomining_stratum_command\"\r\n2022-09-15 15:12:51,304 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cryptomining_stratum_command\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"cryptopool_domains\"\r\n2022-09-15 15:12:51,304 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cryptopool_domains\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"cypherit_mutexes\"\r\n2022-09-15 15:12:51,305 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cypherit_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"darkcomet_regkeys\"\r\n2022-09-15 15:12:51,305 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"darkcomet_regkeys\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"datop_loader\"\r\n2022-09-15 15:12:51,311 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"datop_loader\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"deepfreeze_mutex\"\r\n2022-09-15 15:12:51,311 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"deepfreeze_mutex\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"deletes_executed_files\"\r\n2022-09-15 15:12:51,311 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"deletes_executed_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_app_launch\"\r\n2022-09-15 15:12:51,311 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_app_launch\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_auto_app_termination\"\r\n2022-09-15 15:12:51,312 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_auto_app_termination\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_appv_virtualization\"\r\n2022-09-15 15:12:51,312 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_appv_virtualization\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_backups\"\r\n2022-09-15 15:12:51,313 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_backups\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_browser_warn\"\r\n2022-09-15 15:12:51,314 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_browser_warn\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_context_menus\"\r\n2022-09-15 15:12:51,319 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_context_menus\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_cpl_disable\"\r\n2022-09-15 15:12:51,320 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_cpl_disable\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_event_logging\"\r\n2022-09-15 15:12:51,320 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_event_logging\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_folder_options\"\r\n2022-09-15 15:12:51,321 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_folder_options\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_notificationcenter\"\r\n2022-09-15 15:12:51,321 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_notificationcenter\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_power_options\"\r\n2022-09-15 15:12:51,322 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_power_options\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_restore_default_state\"\r\n2022-09-15 15:12:51,323 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_restore_default_state\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_run_command\"\r\n2022-09-15 15:12:51,323 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_run_command\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_security\"\r\n2022-09-15 15:12:51,323 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_security\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_smartscreen\"\r\n2022-09-15 15:12:51,324 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_smartscreen\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_startmenu_search\"\r\n2022-09-15 15:12:51,324 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_startmenu_search\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_system_restore\"\r\n2022-09-15 15:12:51,325 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_system_restore\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_uac\"\r\n2022-09-15 15:12:51,326 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_uac\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_wer\"\r\n2022-09-15 15:12:51,327 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_wer\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_windows_defender\"\r\n2022-09-15 15:12:51,328 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_windows_defender\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_windows_defender_logging\"\r\n2022-09-15 15:12:51,330 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_windows_defender_logging\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"removes_windows_defender_contextmenu\"\r\n2022-09-15 15:12:51,331 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_windows_defender_contextmenu\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"windows_defender_powershell\"\r\n2022-09-15 15:12:51,331 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"windows_defender_powershell\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_windows_file_protection\"\r\n2022-09-15 15:12:51,332 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_windows_file_protection\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_windowsupdate\"\r\n2022-09-15 15:12:51,332 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_windowsupdate\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_winfirewall\"\r\n2022-09-15 15:12:51,333 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_winfirewall\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"andromut_mutexes\"\r\n2022-09-15 15:12:51,334 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"andromut_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"downloader_cabby\"\r\n2022-09-15 15:12:51,334 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"downloader_cabby\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"phorpiex_mutexes\"\r\n2022-09-15 15:12:51,334 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"phorpiex_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"protonbot_mutexes\"\r\n2022-09-15 15:12:51,334 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"protonbot_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"driver_filtermanager\"\r\n2022-09-15 15:12:51,335 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"driver_filtermanager\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"dropper\"\r\n2022-09-15 15:12:51,336 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dropper\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"excel4_macro_urls\"\r\n2022-09-15 15:12:51,336 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"excel4_macro_urls\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"spooler_access\"\r\n2022-09-15 15:12:51,336 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"spooler_access\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"spooler_svc_start\"\r\n2022-09-15 15:12:51,336 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"spooler_svc_start\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"family_proxyback\"\r\n2022-09-15 15:12:51,336 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"family_proxyback\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"mapped_drives_uac\"\r\n2022-09-15 15:12:51,337 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"mapped_drives_uac\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"hides_recycle_bin_icon\"\r\n2022-09-15 15:12:51,337 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"hides_recycle_bin_icon\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"apocalypse_stealer_file_behavior\"\r\n2022-09-15 15:12:51,337 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"apocalypse_stealer_file_behavior\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"arkei_files\"\r\n2022-09-15 15:12:51,339 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"arkei_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"azorult_mutexes\"\r\n2022-09-15 15:12:51,339 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"azorult_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"infostealer_bitcoin\"\r\n2022-09-15 15:12:51,340 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_bitcoin\"\r\nDEBUG:lib.cuckoo.core.plugins:Analysis matched signature \"infostealer_bitcoin\"\r\n2022-09-15 15:12:51,353 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"infostealer_bitcoin\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"infostealer_cookies\"\r\n2022-09-15 15:12:51,353 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_cookies\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"cryptbot_files\"\r\n2022-09-15 15:12:51,358 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cryptbot_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"echelon_files\"\r\n2022-09-15 15:12:51,361 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"echelon_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"infostealer_ftp\"\r\n2022-09-15 15:12:51,362 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_ftp\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"infostealer_im\"\r\n2022-09-15 15:12:51,642 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_im\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"infostealer_mail\"\r\n2022-09-15 15:12:51,835 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_mail\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"masslogger_files\"\r\n2022-09-15 15:12:51,881 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"masslogger_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"poullight_files\"\r\n2022-09-15 15:12:51,882 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"poullight_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"purplewave_mutexes\"\r\n2022-09-15 15:12:51,888 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"purplewave_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"quilclipper_mutexes\"\r\n2022-09-15 15:12:51,889 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"quilclipper_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"qulab_files\"\r\n2022-09-15 15:12:51,889 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"qulab_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"qulab_mutexes\"\r\n2022-09-15 15:12:51,911 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"qulab_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"bot_kraken_mutexes\"\r\n2022-09-15 15:12:51,911 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_kraken_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"locker_regedit\"\r\n2022-09-15 15:12:51,912 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"locker_regedit\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"locker_taskmgr\"\r\n2022-09-15 15:12:51,913 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"locker_taskmgr\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"ie_martian_children\"\r\n2022-09-15 15:12:51,915 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ie_martian_children\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"office_martian_children\"\r\n2022-09-15 15:12:51,915 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_martian_children\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"mimics_extension\"\r\n2022-09-15 15:12:51,915 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"mimics_extension\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"mimics_icon\"\r\n2022-09-15 15:12:51,916 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"mimics_icon\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"masquerade_process_name\"\r\n2022-09-15 15:12:51,916 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"masquerade_process_name\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"mimikatz_modules\"\r\n2022-09-15 15:12:52,022 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"mimikatz_modules\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"modify_certs\"\r\n2022-09-15 15:12:52,022 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_certs\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"dotnet_clr_usagelog_regkeys\"\r\n2022-09-15 15:12:52,023 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dotnet_clr_usagelog_regkeys\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"modify_hostfile\"\r\n2022-09-15 15:12:52,023 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_hostfile\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"modify_oem_information\"\r\n2022-09-15 15:12:52,024 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_oem_information\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"modify_security_center_warnings\"\r\n2022-09-15 15:12:52,024 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_security_center_warnings\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"modify_uac_prompt\"\r\n2022-09-15 15:12:52,025 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_uac_prompt\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_country_distribution\"\r\n2022-09-15 15:12:52,027 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_country_distribution\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_multiple_direct_ip_connections\"\r\n2022-09-15 15:12:52,027 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_multiple_direct_ip_connections\"\r\nDEBUG:lib.cuckoo.core.plugins:Analysis matched signature \"network_multiple_direct_ip_connections\"\r\n2022-09-15 15:12:52,033 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"network_multiple_direct_ip_connections\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_cnc_http\"\r\n2022-09-15 15:12:52,034 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_cnc_http\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_http_post\"\r\n2022-09-15 15:12:52,034 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_http_post\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_ip_exe\"\r\n2022-09-15 15:12:52,034 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_ip_exe\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_dga\"\r\n2022-09-15 15:12:52,034 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dga\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_dga_fraunhofer\"\r\n2022-09-15 15:12:52,034 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dga_fraunhofer\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_dns_blockchain\"\r\n2022-09-15 15:12:52,034 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_blockchain\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_dns_opennic\"\r\n2022-09-15 15:12:52,034 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_opennic\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_dns_paste_site\"\r\n2022-09-15 15:12:52,035 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_paste_site\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_dns_reverse_proxy\"\r\n2022-09-15 15:12:52,035 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_reverse_proxy\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_dns_temp_file_storage\"\r\n2022-09-15 15:12:52,035 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_temp_file_storage\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_dns_temp_urldns\"\r\n2022-09-15 15:12:52,035 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_temp_urldns\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_dns_url_shortener\"\r\n2022-09-15 15:12:52,035 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_url_shortener\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_dns_doh_tls\"\r\n2022-09-15 15:12:52,035 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_doh_tls\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"suspicious_tld\"\r\n2022-09-15 15:12:52,055 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_tld\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_dyndns\"\r\n2022-09-15 15:12:52,055 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dyndns\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_excessive_udp\"\r\n2022-09-15 15:12:52,055 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_excessive_udp\"\r\nDEBUG:lib.cuckoo.core.plugins:Analysis matched signature \"network_excessive_udp\"\r\n2022-09-15 15:12:52,055 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"network_excessive_udp\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_http\"\r\n2022-09-15 15:12:52,056 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_http\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_icmp\"\r\n2022-09-15 15:12:52,056 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_icmp\"\r\nDEBUG:lib.cuckoo.core.plugins:Analysis matched signature \"network_icmp\"\r\n2022-09-15 15:12:52,056 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"network_icmp\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_irc\"\r\n2022-09-15 15:12:52,056 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_irc\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_open_proxy\"\r\n2022-09-15 15:12:52,056 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_open_proxy\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_p2p\"\r\n2022-09-15 15:12:52,086 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_p2p\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_questionable_http_path\"\r\n2022-09-15 15:12:52,086 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_questionable_http_path\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_questionable_https_path\"\r\n2022-09-15 15:12:52,086 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_questionable_https_path\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_smtp\"\r\n2022-09-15 15:12:52,086 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_smtp\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_tor_service\"\r\n2022-09-15 15:12:52,087 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_tor_service\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"network_torgateway\"\r\n2022-09-15 15:12:52,087 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_torgateway\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"office_code_page\"\r\n2022-09-15 15:12:52,088 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_code_page\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"office_addinloading\"\r\n2022-09-15 15:12:52,088 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_addinloading\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"office_perfkey\"\r\n2022-09-15 15:12:52,088 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_perfkey\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"office_macro\"\r\n2022-09-15 15:12:52,088 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"changes_trust_center_settings\"\r\n2022-09-15 15:12:52,089 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"changes_trust_center_settings\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"disables_vba_trust_access\"\r\n2022-09-15 15:12:52,089 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_vba_trust_access\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"office_macro_autoexecution\"\r\n2022-09-15 15:12:52,089 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro_autoexecution\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"office_macro_ioc\"\r\n2022-09-15 15:12:52,089 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro_ioc\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"office_macro_malicious_prediction\"\r\n2022-09-15 15:12:52,089 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro_malicious_prediction\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"office_macro_suspicious\"\r\n2022-09-15 15:12:52,089 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro_suspicious\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"rtf_aslr_bypass\"\r\n2022-09-15 15:12:52,090 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_aslr_bypass\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"rtf_anomaly_characterset\"\r\n2022-09-15 15:12:52,090 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_anomaly_characterset\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"rtf_anomaly_version\"\r\n2022-09-15 15:12:52,090 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_anomaly_version\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"rtf_embedded_content\"\r\n2022-09-15 15:12:52,090 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_embedded_content\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"rtf_embedded_office_file\"\r\n2022-09-15 15:12:52,090 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_embedded_office_file\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"rtf_exploit_static\"\r\n2022-09-15 15:12:52,090 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_exploit_static\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"office_security\"\r\n2022-09-15 15:12:52,090 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_security\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"office_anomalous_feature\"\r\n2022-09-15 15:12:52,092 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_anomalous_feature\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"office_dde_command\"\r\n2022-09-15 15:12:52,092 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_dde_command\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"origin_langid\"\r\n2022-09-15 15:12:52,092 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"origin_langid\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"origin_resource_langid\"\r\n2022-09-15 15:12:52,092 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"origin_resource_langid\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"overlay\"\r\n2022-09-15 15:12:52,092 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"overlay\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"packer_unknown_pe_section_name\"\r\n2022-09-15 15:12:52,092 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_unknown_pe_section_name\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"packer_armadillo_mutex\"\r\n2022-09-15 15:12:52,092 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_armadillo_mutex\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"packer_armadillo_regkey\"\r\n2022-09-15 15:12:52,093 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_armadillo_regkey\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"packer_aspack\"\r\n2022-09-15 15:12:52,094 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_aspack\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"packer_aspirecrypt\"\r\n2022-09-15 15:12:52,094 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_aspirecrypt\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"packer_bedsprotector\"\r\n2022-09-15 15:12:52,095 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_bedsprotector\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"packer_confuser\"\r\n2022-09-15 15:12:52,095 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_confuser\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"packer_enigma\"\r\n2022-09-15 15:12:52,095 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_enigma\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"packer_entropy\"\r\n2022-09-15 15:12:52,095 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_entropy\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"packer_mpress\"\r\n2022-09-15 15:12:52,095 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_mpress\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"packer_nate\"\r\n2022-09-15 15:12:52,096 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_nate\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"packer_nspack\"\r\n2022-09-15 15:12:52,096 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_nspack\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"packer_smartassembly\"\r\n2022-09-15 15:12:52,096 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_smartassembly\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"packer_spices\"\r\n2022-09-15 15:12:52,096 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_spices\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"packer_themida\"\r\n2022-09-15 15:12:52,096 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_themida\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"packer_titan\"\r\n2022-09-15 15:12:52,097 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_titan\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"packer_upx\"\r\n2022-09-15 15:12:52,097 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_upx\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"packer_vmprotect\"\r\n2022-09-15 15:12:52,097 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_vmprotect\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"packer_yoda\"\r\n2022-09-15 15:12:52,097 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_yoda\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"pdf_annot_urls\"\r\n2022-09-15 15:12:52,097 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"pdf_annot_urls\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"persistence_ads\"\r\n2022-09-15 15:12:52,097 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_ads\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"persistence_safeboot\"\r\n2022-09-15 15:12:52,098 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_safeboot\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"persistence_ifeo\"\r\n2022-09-15 15:12:52,099 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_ifeo\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"persistence_slient_process_exit\"\r\n2022-09-15 15:12:52,100 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_slient_process_exit\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"persistence_rdp_registry\"\r\n2022-09-15 15:12:52,100 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_rdp_registry\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"persistence_rdp_shadowing\"\r\n2022-09-15 15:12:52,100 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_rdp_shadowing\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"persistence_service\"\r\n2022-09-15 15:12:52,101 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_service\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"persistence_shim_database\"\r\n2022-09-15 15:12:52,101 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_shim_database\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"polymorphic\"\r\n2022-09-15 15:12:52,102 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"polymorphic\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"powerpool_mutexes\"\r\n2022-09-15 15:12:52,102 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powerpool_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"powershell_scriptblock_logging\"\r\n2022-09-15 15:12:52,103 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_scriptblock_logging\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"powershell_command_suspicious\"\r\n2022-09-15 15:12:52,103 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_command_suspicious\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"powershell_renamed\"\r\n2022-09-15 15:12:52,103 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_renamed\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"powershell_reversed\"\r\n2022-09-15 15:12:52,103 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_reversed\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"powershell_variable_obfuscation\"\r\n2022-09-15 15:12:52,103 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_variable_obfuscation\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"punch_plus_plus_pcres\"\r\n2022-09-15 15:12:52,103 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"punch_plus_plus_pcres\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"prevents_safeboot\"\r\n2022-09-15 15:12:52,103 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"prevents_safeboot\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"cmdline_process_discovery\"\r\n2022-09-15 15:12:52,104 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_process_discovery\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"procmem_yara\"\r\n2022-09-15 15:12:52,104 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"procmem_yara\"\r\nDEBUG:lib.cuckoo.core.plugins:Analysis matched signature \"procmem_yara\"\r\n2022-09-15 15:12:52,104 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"procmem_yara\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"cryptomix_mutexes\"\r\n2022-09-15 15:12:52,104 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"cryptomix_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"dharma_mutexes\"\r\n2022-09-15 15:12:52,104 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dharma_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"ransomware_extensions\"\r\n2022-09-15 15:12:52,105 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_extensions\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"ransomware_files\"\r\n2022-09-15 15:12:52,117 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"fonix_mutexes\"\r\n2022-09-15 15:12:52,141 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"fonix_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"gandcrab_mutexes\"\r\n2022-09-15 15:12:52,141 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"gandcrab_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"germanwiper_mutexes\"\r\n2022-09-15 15:12:52,142 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"germanwiper_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"medusalocker_mutexes\"\r\n2022-09-15 15:12:52,142 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"medusalocker_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"medusalocker_regkeys\"\r\n2022-09-15 15:12:52,142 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"medusalocker_regkeys\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"nemty_mutexes\"\r\n2022-09-15 15:12:52,143 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"nemty_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"nemty_regkeys\"\r\n2022-09-15 15:12:52,144 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"nemty_regkeys\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"pysa_mutexes\"\r\n2022-09-15 15:12:52,144 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"pysa_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"ransomware_radamant\"\r\n2022-09-15 15:12:52,145 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_radamant\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"ransomware_recyclebin\"\r\n2022-09-15 15:12:52,146 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_recyclebin\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"revil_mutexes\"\r\n2022-09-15 15:12:52,146 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"revil_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"ransomware_revil_regkey\"\r\n2022-09-15 15:12:52,146 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_revil_regkey\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"satan_mutexes\"\r\n2022-09-15 15:12:52,147 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"satan_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"snake_ransom_mutexes\"\r\n2022-09-15 15:12:52,147 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"snake_ransom_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"stop_ransom_mutexes\"\r\n2022-09-15 15:12:52,147 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"stop_ransom_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"stop_ransomware_cmd\"\r\n2022-09-15 15:12:52,147 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"stop_ransomware_cmd\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"rat_beebus_mutexes\"\r\n2022-09-15 15:12:52,148 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_beebus_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"blacknet_mutexes\"\r\n2022-09-15 15:12:52,148 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"blacknet_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"blackrat_mutexes\"\r\n2022-09-15 15:12:52,148 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"blackrat_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"crat_mutexes\"\r\n2022-09-15 15:12:52,148 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"crat_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"dcrat_files\"\r\n2022-09-15 15:12:52,149 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dcrat_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"dcrat_mutexes\"\r\n2022-09-15 15:12:52,150 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dcrat_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"rat_fynloski_mutexes\"\r\n2022-09-15 15:12:52,151 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_fynloski_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"karagany_files\"\r\n2022-09-15 15:12:52,151 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"karagany_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"limerat_mutexes\"\r\n2022-09-15 15:12:52,151 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"limerat_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"limerat_regkeys\"\r\n2022-09-15 15:12:52,151 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"limerat_regkeys\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"lodarat_file_behavior\"\r\n2022-09-15 15:12:52,156 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"lodarat_file_behavior\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"modirat_behavior\"\r\n2022-09-15 15:12:52,156 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"modirat_behavior\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"njrat_regkeys\"\r\n2022-09-15 15:12:52,157 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"njrat_regkeys\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"obliquerat_files\"\r\n2022-09-15 15:12:52,158 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"obliquerat_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"obliquerat_mutexes\"\r\n2022-09-15 15:12:52,159 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"obliquerat_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"parallax_mutexes\"\r\n2022-09-15 15:12:52,159 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"parallax_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"rat_pcclient\"\r\n2022-09-15 15:12:52,160 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_pcclient\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"rat_plugx_mutexes\"\r\n2022-09-15 15:12:52,161 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_plugx_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"rat_poisonivy_mutexes\"\r\n2022-09-15 15:12:52,162 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_poisonivy_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"rat_quasar_mutexes\"\r\n2022-09-15 15:12:52,162 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_quasar_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"ratsnif_mutexes\"\r\n2022-09-15 15:12:52,162 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ratsnif_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"rat_senna_mutexes\"\r\n2022-09-15 15:12:52,162 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_senna_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"rat_spynet\"\r\n2022-09-15 15:12:52,163 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_spynet\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"venomrat_mutexes\"\r\n2022-09-15 15:12:52,163 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"venomrat_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"warzonerat_files\"\r\n2022-09-15 15:12:52,164 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"warzonerat_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"warzonerat_regkeys\"\r\n2022-09-15 15:12:52,165 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"warzonerat_regkeys\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"xpertrat_files\"\r\n2022-09-15 15:12:52,168 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"xpertrat_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"xpertrat_mutexes\"\r\n2022-09-15 15:12:52,168 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"xpertrat_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"rat_xtreme_mutexes\"\r\n2022-09-15 15:12:52,169 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_xtreme_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"recon_checkip\"\r\n2022-09-15 15:12:52,169 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"recon_checkip\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"recon_fingerprint\"\r\n2022-09-15 15:12:52,170 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"recon_fingerprint\"\r\nDEBUG:lib.cuckoo.core.plugins:Analysis matched signature \"recon_fingerprint\"\r\n2022-09-15 15:12:52,172 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"recon_fingerprint\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"remcos_files\"\r\n2022-09-15 15:12:52,172 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"remcos_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"remcos_mutexes\"\r\n2022-09-15 15:12:52,173 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"remcos_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"remcos_regkeys\"\r\n2022-09-15 15:12:52,173 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"remcos_regkeys\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"rdptcp_key\"\r\n2022-09-15 15:12:52,175 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"rdptcp_key\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"uses_rdp_clip\"\r\n2022-09-15 15:12:52,176 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_rdp_clip\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"uses_remote_desktop_session\"\r\n2022-09-15 15:12:52,176 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_remote_desktop_session\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"removes_networking_icon\"\r\n2022-09-15 15:12:52,176 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_networking_icon\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"removes_pinned_programs\"\r\n2022-09-15 15:12:52,176 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_pinned_programs\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"removes_security_maintenance_icon\"\r\n2022-09-15 15:12:52,176 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_security_maintenance_icon\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"removes_startmenu_defaults\"\r\n2022-09-15 15:12:52,177 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_startmenu_defaults\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"removes_username_startmenu\"\r\n2022-09-15 15:12:52,177 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_username_startmenu\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"spicyhotpot_behavior\"\r\n2022-09-15 15:12:52,178 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"spicyhotpot_behavior\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"sniffer_winpcap\"\r\n2022-09-15 15:12:52,179 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"sniffer_winpcap\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"spreading_autoruninf\"\r\n2022-09-15 15:12:52,180 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"spreading_autoruninf\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"static_authenticode\"\r\n2022-09-15 15:12:52,181 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_authenticode\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"invalid_authenticode_signature\"\r\n2022-09-15 15:12:52,181 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"invalid_authenticode_signature\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"static_dotnet_anomaly\"\r\n2022-09-15 15:12:52,181 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_dotnet_anomaly\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"static_java\"\r\n2022-09-15 15:12:52,181 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_java\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"static_pdf\"\r\n2022-09-15 15:12:52,181 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_pdf\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"static_pe_anomaly\"\r\n2022-09-15 15:12:52,181 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_pe_anomaly\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"pe_compile_timestomping\"\r\n2022-09-15 15:12:52,181 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"pe_compile_timestomping\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"static_pe_pdbpath\"\r\n2022-09-15 15:12:52,181 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_pe_pdbpath\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"static_rat_config\"\r\n2022-09-15 15:12:52,182 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_rat_config\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"static_versioninfo_anomaly\"\r\n2022-09-15 15:12:52,182 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_versioninfo_anomaly\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"stealth_hidden_extension\"\r\n2022-09-15 15:12:52,182 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_hidden_extension\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"stealth_hiddenreg\"\r\n2022-09-15 15:12:52,182 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_hiddenreg\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"stealth_hide_notifications\"\r\n2022-09-15 15:12:52,184 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_hide_notifications\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"stealth_webhistory\"\r\n2022-09-15 15:12:52,185 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_webhistory\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"suricata_alert\"\r\n2022-09-15 15:12:52,186 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suricata_alert\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"sysinternals_psexec\"\r\n2022-09-15 15:12:52,186 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"sysinternals_psexec\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"sysinternals_tools\"\r\n2022-09-15 15:12:52,187 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"sysinternals_tools\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"tampers_etw\"\r\n2022-09-15 15:12:52,188 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"tampers_etw\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"lsa_tampering\"\r\n2022-09-15 15:12:52,189 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"lsa_tampering\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"tampers_powershell_logging\"\r\n2022-09-15 15:12:52,189 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"tampers_powershell_logging\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"targeted_flame\"\r\n2022-09-15 15:12:52,190 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"targeted_flame\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"territorial_disputes_sigs\"\r\n2022-09-15 15:12:52,191 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"territorial_disputes_sigs\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"trickbot_mutex\"\r\n2022-09-15 15:12:52,495 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"trickbot_mutex\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"fleercivet_mutex\"\r\n2022-09-15 15:12:52,495 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"fleercivet_mutex\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"lokibot_mutexes\"\r\n2022-09-15 15:12:52,496 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"lokibot_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"ursnif_behavior\"\r\n2022-09-15 15:12:52,496 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"ursnif_behavior\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"troldesh_behavior\"\r\n2022-09-15 15:12:52,497 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"troldesh_behavior\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"upatre_files\"\r\n2022-09-15 15:12:52,498 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"upatre_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"upatre_files\"\r\n2022-09-15 15:12:52,498 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"upatre_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"uses_adfind\"\r\n2022-09-15 15:12:52,498 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_adfind\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"uses_ms_protocol\"\r\n2022-09-15 15:12:52,498 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_ms_protocol\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"neshta_mutexes\"\r\n2022-09-15 15:12:52,499 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"neshta_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"renamer_mutexes\"\r\n2022-09-15 15:12:52,499 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"renamer_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"volatility_devicetree_1\"\r\n2022-09-15 15:12:52,499 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_devicetree_1\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"volatility_handles_1\"\r\n2022-09-15 15:12:52,499 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_handles_1\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"volatility_ldrmodules_1\"\r\n2022-09-15 15:12:52,499 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_ldrmodules_1\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"volatility_ldrmodules_2\"\r\n2022-09-15 15:12:52,500 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_ldrmodules_2\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"volatility_malfind_1\"\r\n2022-09-15 15:12:52,500 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_malfind_1\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"volatility_malfind_2\"\r\n2022-09-15 15:12:52,500 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_malfind_2\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"volatility_modscan_1\"\r\n2022-09-15 15:12:52,500 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_modscan_1\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"volatility_svcscan_1\"\r\n2022-09-15 15:12:52,500 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_svcscan_1\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"volatility_svcscan_2\"\r\n2022-09-15 15:12:52,501 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_svcscan_2\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"volatility_svcscan_3\"\r\n2022-09-15 15:12:52,501 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_svcscan_3\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"owa_web_shell_files\"\r\n2022-09-15 15:12:52,501 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"owa_web_shell_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"web_shell_files\"\r\n2022-09-15 15:12:52,501 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"web_shell_files\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"web_shell_processes\"\r\n2022-09-15 15:12:52,502 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"web_shell_processes\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"whois_create\"\r\n2022-09-15 15:12:52,502 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"whois_create\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"dotnet_csc_build\"\r\n2022-09-15 15:12:52,502 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"dotnet_csc_build\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"multiple_explorer_instances\"\r\n2022-09-15 15:12:52,503 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"multiple_explorer_instances\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"script_tool_executed\"\r\n2022-09-15 15:12:52,503 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"script_tool_executed\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"suspicious_certutil_use\"\r\n2022-09-15 15:12:52,503 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_certutil_use\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"suspicious_command_tools\"\r\n2022-09-15 15:12:52,503 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_command_tools\"\r\nDEBUG:lib.cuckoo.core.plugins:Analysis matched signature \"suspicious_command_tools\"\r\n2022-09-15 15:12:52,503 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"suspicious_command_tools\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"suspicious_mpcmdrun_use\"\r\n2022-09-15 15:12:52,504 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_mpcmdrun_use\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"suspicious_ping_use\"\r\n2022-09-15 15:12:52,504 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_ping_use\"\r\nDEBUG:lib.cuckoo.core.plugins:Analysis matched signature \"suspicious_ping_use\"\r\n2022-09-15 15:12:52,504 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"suspicious_ping_use\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"uses_powershell_copyitem\"\r\n2022-09-15 15:12:52,504 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_powershell_copyitem\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"uses_windows_utilities\"\r\n2022-09-15 15:12:52,505 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities\"\r\nDEBUG:lib.cuckoo.core.plugins:Analysis matched signature \"uses_windows_utilities\"\r\n2022-09-15 15:12:52,505 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"uses_windows_utilities\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"uses_windows_utilities_appcmd\"\r\n2022-09-15 15:12:52,505 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_appcmd\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"uses_windows_utilities_csvde_ldifde\"\r\n2022-09-15 15:12:52,505 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_csvde_ldifde\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"uses_windows_utilities_cipher\"\r\n2022-09-15 15:12:52,505 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_cipher\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"uses_windows_utilities_clickonce\"\r\n2022-09-15 15:12:52,506 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_clickonce\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"uses_windows_utilities_dsquery\"\r\n2022-09-15 15:12:52,506 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_dsquery\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"uses_windows_utilities_esentutl\"\r\n2022-09-15 15:12:52,506 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_esentutl\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"uses_windows_utilities_finger\"\r\n2022-09-15 15:12:52,506 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_finger\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"uses_windows_utilities_mode\"\r\n2022-09-15 15:12:52,506 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_mode\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"uses_windows_utilities_ntdsutil\"\r\n2022-09-15 15:12:52,507 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_ntdsutil\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"uses_windows_utilities_nltest\"\r\n2022-09-15 15:12:52,507 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_nltest\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"uses_windows_utilities_to_create_scheduled_task\"\r\n2022-09-15 15:12:52,507 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_to_create_scheduled_task\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"uses_windows_utilities_xcopy\"\r\n2022-09-15 15:12:52,507 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_xcopy\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"wmic_command_suspicious\"\r\n2022-09-15 15:12:52,507 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"wmic_command_suspicious\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"scrcons_wmi_script_consumer\"\r\n2022-09-15 15:12:52,508 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"scrcons_wmi_script_consumer\"\r\nDEBUG:lib.cuckoo.core.plugins:Running signature \"allaple_mutexes\"\r\n2022-09-15 15:12:52,508 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Running signature \"allaple_mutexes\"\r\nDEBUG:lib.cuckoo.core.plugins:Analysis matched signature \"cape_detected_threat\"\r\n2022-09-15 15:12:52,508 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"cape_detected_threat\"\r\nDEBUG:lib.cuckoo.core.plugins:Analysis matched signature \"antidebug_setunhandledexceptionfilter\"\r\n2022-09-15 15:12:52,508 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"antidebug_setunhandledexceptionfilter\"\r\nDEBUG:lib.cuckoo.core.plugins:Analysis matched signature \"modify_proxy\"\r\n2022-09-15 15:12:52,508 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"modify_proxy\"\r\nDEBUG:lib.cuckoo.core.plugins:Analysis matched signature \"deletes_self\"\r\n2022-09-15 15:12:52,509 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"deletes_self\"\r\nDEBUG:lib.cuckoo.core.plugins:Analysis matched signature \"infostealer_bitcoin\"\r\n2022-09-15 15:12:52,509 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"infostealer_bitcoin\"\r\nDEBUG:lib.cuckoo.core.plugins:Analysis matched signature \"injection_rwx\"\r\n2022-09-15 15:12:52,509 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"injection_rwx\"\r\nDEBUG:lib.cuckoo.core.plugins:Analysis matched signature \"modify_desktop_wallpaper\"\r\n2022-09-15 15:12:52,509 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"modify_desktop_wallpaper\"\r\nDEBUG:lib.cuckoo.core.plugins:Analysis matched signature \"network_multiple_direct_ip_connections\"\r\n2022-09-15 15:12:52,509 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"network_multiple_direct_ip_connections\"\r\nDEBUG:lib.cuckoo.core.plugins:Analysis matched signature \"network_excessive_udp\"\r\n2022-09-15 15:12:52,509 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"network_excessive_udp\"\r\nDEBUG:lib.cuckoo.core.plugins:Analysis matched signature \"network_icmp\"\r\n2022-09-15 15:12:52,509 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"network_icmp\"\r\nDEBUG:lib.cuckoo.core.plugins:Analysis matched signature \"procmem_yara\"\r\n2022-09-15 15:12:52,509 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"procmem_yara\"\r\nDEBUG:lib.cuckoo.core.plugins:Analysis matched signature \"recon_fingerprint\"\r\n2022-09-15 15:12:52,509 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"recon_fingerprint\"\r\nDEBUG:lib.cuckoo.core.plugins:Analysis matched signature \"suspicious_command_tools\"\r\n2022-09-15 15:12:52,510 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"suspicious_command_tools\"\r\nDEBUG:lib.cuckoo.core.plugins:Analysis matched signature \"suspicious_ping_use\"\r\n2022-09-15 15:12:52,510 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"suspicious_ping_use\"\r\nDEBUG:lib.cuckoo.core.plugins:Analysis matched signature \"uses_windows_utilities\"\r\n2022-09-15 15:12:52,510 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"uses_windows_utilities\"\r\nDEBUG:lib.cuckoo.core.plugins:Executing reporting module \"BinGraph\"\r\n2022-09-15 15:12:54,053 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"BinGraph\"\r\nDEBUG:lib.cuckoo.core.plugins:Executing reporting module \"MITRE_TTPS\"\r\n2022-09-15 15:12:54,053 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"MITRE_TTPS\"\r\nDEBUG:lib.cuckoo.core.plugins:Executing reporting module \"PCAP2CERT\"\r\n2022-09-15 15:12:54,053 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"PCAP2CERT\"\r\nDEBUG:lib.cuckoo.core.plugins:Executing reporting module \"ReportHTML\"\r\n2022-09-15 15:12:54,097 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"ReportHTML\"\r\nDEBUG:lib.cuckoo.core.plugins:Executing reporting module \"SubmitCAPE\"\r\n2022-09-15 15:12:56,039 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"SubmitCAPE\"\r\nDEBUG:lib.cuckoo.core.plugins:Executing reporting module \"JsonDump\"\r\n2022-09-15 15:12:56,052 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"JsonDump\"\r\nDEBUG:lib.cuckoo.core.plugins:Executing reporting module \"MongoDB\"\r\n2022-09-15 15:12:56,254 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"MongoDB\"\r\nDEBUG:modules.reporting.mongodb:Deleted previous MongoDB data for Task 28\r\n2022-09-15 15:12:56,883 [Task 28] [modules.reporting.mongodb] DEBUG: Deleted previous MongoDB data for Task 28\r\nDEBUG:lib.cuckoo.core.plugins:Executing reporting module \"RunStatistics\"\r\n2022-09-15 15:12:57,228 [Task 28] [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"RunStatistics\"\r\nDEBUG:modules.reporting.runstatistics:Run statistics sucessed!\r\n2022-09-15 15:12:57,251 [Task 28] [modules.reporting.runstatistics] DEBUG: Run statistics sucessed!\r\nDEBUG:root:Finished processing task\r\n2022-09-15 15:12:57,260 [Task 28] [root] DEBUG: Finished processing task\r\n\nComment: i don't have time to test it right now, i will keep this open till i have some spare time but i doubt that it will be this week\nComment: do you have enabled memory analysis in `conf/process.conf` and modules inside of the `conf/memory.conf`. but just with having it enabled in process.conf i see memory tab\r\n\r\n![Screenshot 2022-09-15 at 10 30 43](https://user-images.githubusercontent.com/1856495/190355766-64b7c874-954b-499b-8f4d-cce7b6018f30.png)\r\n\r\nso im not sure what is wrong on your side\r\n\nComment: with pslist enabled, i won't post the whole screen, but you can see that it shows me `pslist` correctly\r\n![Screenshot 2022-09-15 at 10 33 07](https://user-images.githubusercontent.com/1856495/190355950-bb06566d-1cd4-4c43-ab30-d6f864c477fd.png)\r\n\nComment: yes, it worked after a reboot. thanks alot\nComment: you don't need to reboot, you just need to restart cape-processor service when you change any processing/reporting services",
+  "Title: Running .lnk from root folder in cmd.exe\nBody: Some .lnk files don't use absolute paths for files that they link to, so we want to set the CWD when running the .lnk file to the folder where the archive was extracted to.",
+  "Title: Notice: trailofbits/gh-action-pip-audit is now pypa/gh-action-pip-audit\nBody: Thanks for using gh-action-pip-audit in your CI!\r\n\r\nI'm filing this issue (as an actual human being) to let you know that we recently became a PyPA member project, and correspondingly changed our repo from [trailofbits/gh-action-pip-audit](https://github.com/trailofbits/gh-action-pip-audit) to [pypa/gh-action-pip-audit](https://github.com/pypa/gh-action-pip-audit).\r\n\r\nAs part of keeping your workflows up-to-date, we recommend that you change your workflow slugs to pypa/gh-action-pip-audit. Once you do that, Dependabot (or whatever other tooling you use) should track updates to the action correctly.\r\n\r\nP.S.: I'm filing these issues instead of making PRs, so that you (as maintainers) can confirm the trustworthiness of the change. If you'd prefer me to make a PR instead, give me a ping and I'll do so.\nComment: @woodruffw: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: Looks like this was caught by the bot, but it doesn't fit cleanly into any of the issue templates. \nComment: hello, thank you for the update\nComment: Thanks for updating on your end!",
+  "Title: Long list of error and Werror while installing on Ubuntu 22.04\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account acctivation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n[yes] I am running the latest version\r\n[yes] I did read the README!\r\n[yes] I checked the documentation and found no answer\r\n[yes] I checked to make sure that this issue has not already been filed\r\n[yes] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n[yes] I have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nAfter Update cape2.sh #1140 I would have expected to not have errors regarding yara-python while installing.\r\n\r\n# Current Behavior\r\n\r\nAfter running the cape2.sh with the 3 entries modified as suggested, opening the cape.log and searching for \"error\" shows 136 hits, mostly Werrors and an error regarding failing to build pyre2, yara-python, and libvirt-python.\r\n\r\n## Steps to Reproduce\r\n\r\n1. Install and update Ubuntu 22.04.\r\n2. Adjust the cape2.sh NETWORK_IFACE, IFACE_IP and PASSWD as suggested.\r\n3. chmod a+x cape2.sh\r\n4. sudo ./cape2.sh base | tee cape.log\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | cape2.sh commit [67e750c]\r\n| OS version       | Fresh and updated Ubuntu 22.04\r\n\r\n## Failure Logs\r\n\r\n[cape.log](https://github.com/kevoreilly/CAPEv2/files/9542888/cape.log)\r\n\r\n\nComment: @GioFar81: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: well werror i would ignor, about error go and run those commands as it is in script to try to get some context, as right now i just see error, but we can't reproduce it\nComment: abandoned issue",
+  "Title: Django / WebGui googleapis fonts dependencies.\nBody: Hello, I'm running the latest CapeV2 in an isolated environment, and I found an hardcoded dependency in https://github.com/kevoreilly/CAPEv2/blob/master/data/html/css/bootstrap.min.css\r\nthat points to fonts.googleapis.com that makes impossible to load the web interface from the locally hosted server.\r\n\r\nIs there any suggestion on how to get rid of that dependency? Is there any plan to optionally chose to pull self-hosted google fonts vs. the online version?\nComment: @davidep: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: Interesting find - we will try and fix this. Thank you!\nComment: that is from reporting module `reporthtml.py` we don't use/maintain it. so you will need to fix that by yourself. as that is not related to main web gui\nComment: > that is from reporting module `reporthtml.py` we don't use/maintain it. so you will need to fix that by yourself. as that is not related to main web gui\r\n\r\nSorry I don't see the connection with `reporthtml.py`\r\n\r\nFor the installation I'm running I used the cape2.sh script, and no customization other than for the guest-OS, I checked in conf/reporting.conf I have the following default settings:\r\n```\r\n[reporthtml]\r\n# required for the WSGI interface\r\nenabled = no\r\n\r\n[reporthtmlsummary]\r\n# much smaller, faster report generation, omits API logs and is non-interactive\r\nenabled = no\r\n```\r\nI did not changed anything on `CAPEv2/modules/reporting/reporthtml.py`\r\n\r\nWhen I'm loading the webgui, the page will not load properly and browser is showing, loading `fonts.googleapis.com` but since the sandbox is in an isolated environment the page will not finish to load. \r\nlooking at network traffic I see calls also to `update.googleapis.com` and `gstatic.com` \r\n\r\nNot sure if this dependencies are confirmed and expected. \nComment: well you pointed to the folder that is only used for those 2 plugins. for the rest is under `web/static/` and as you can see i don't see that dependency there, neither in parent `static` folder\r\n\r\n```\r\n\u279c  css git:(master) grep update.googleapis.com . -r\r\n\u279c  css git:(master) grep gstatic.com . -r\r\n```\nComment: Could it be that `gstatic.com` comes from the hardcoded import within `CAPEv2/data/html/css/bootstrap.min.css` ?\r\nOpening such url `https://fonts.googleapis.com/css2?family=Lato:ital,wght@0,400;0,700;1,400&display=swap` shows fonts pulled from `fonts.gstatic.com`\nComment: yes it is there i see it, but as i told, we don't use that for webgui, that is only used by those 2 modules, see your django console for logs\nComment: what would be the best approach to disable those 2 modules (if possible)? \r\n\nComment: if they set to no, they are disabled, in their clases there is no init so that part of `data/html` is no initialized\nComment: sorry for the dumb question: what have to be set to no?\r\nwithin `conf/reporting.conf` I already had the following default settings:\r\n```\r\n[reporthtml]\r\n# required for the WSGI interface\r\nenabled = no\r\n\r\n[reporthtmlsummary]\r\n# much smaller, faster report generation, omits API logs and is non-interactive\r\nenabled = no\r\n```\r\nI guess this is not related to your suggestion, what am I missing? \r\n\r\nThanks for your patience :) \nComment: yes is what it is, is disabled, is why i told you to watch your django logs to see. but there is nothing that loads that files inside of webgui, or i realy missing something\r\n\r\n```\r\nCAPEv2 git:(master) grep -r bootstrap.min.css .\r\n./LICENSE:jasny-bootstrap.css, jasny-bootstrap.min.css, jasny-bootstrap-responsive.css,\r\n./LICENSE:The files bootstrap.min.js, bootstrap.min.css, bootstrap-responsive.min.css,\r\n./web/templates/header.html:<link href=\"{{ STATIC_URL }}css/bootstrap.min.css\" rel=\"stylesheet\">\r\nBinary file ./tests/data/selfextraction/1b0c4149df7892b2497c955dc393ed49e458062324a81288589b15492ce8b50b.upx matches\r\n./data/html/base-report.html:{% include \"css/bootstrap.min.css\" %}\r\n./data/html/base-web.html:{% include \"css/bootstrap.min.css\" %}\r\n\r\n\r\n\u279c  CAPEv2 git:(master) grep -r base-report.html .\r\n./data/html/report.html:{% extends \"base-report.html\" %}\r\n\r\n\r\n# views uses another report.html\r\n\u279c  CAPEv2 git:(master) grep -r report.html .\r\n./web/analysis/views.py:        \"analysis/report.html\",\r\n./web/analysis/views.py:        \"html\": \"report.html\", \r\n./web/analysis/views.py:        \"htmlsummary\": \"summary-report.html\",\r\n./web/apiv2/views.py:        \"html\": \"report.html\",\r\n./web/apiv2/views.py:        \"htmlsummary\": \"summary-report.html\",\r\n./docs/book/src/usage/results.rst:    |   |-- report.html\r\n./modules/reporting/reportpdf.py:        if not os.path.isfile(os.path.join(self.reports_path, \"summary-report.html\")):\r\n./modules/reporting/reportpdf.py:                    os.path.join(self.reports_path, \"summary-report.html\"),\r\n./modules/reporting/reportpdf.py:        HTML(os.path.join(self.reports_path, \"summary-report.html\")).write_pdf(os.path.join(self.reports_path, \"report.pdf\"))\r\n./modules/reporting/reporthtmlsummary.py:            tpl = env.get_template(\"report.html\")\r\n./modules/reporting/reporthtmlsummary.py:            with codecs.open(os.path.join(self.reports_path, \"summary-report.html\"), \"w\", encoding=\"utf-8\") as report:\r\n./modules/reporting/reporthtml.py:            tpl = env.get_template(\"report.html\")\r\n./modules/reporting/reporthtml.py:            with codecs.open(os.path.join(self.reports_path, \"report.html\"), \"w\", encoding=\"utf-8\") as report:\r\n```\nComment: ok i see what you saying but still, cape works just fine without loading that fonts. so that is not a problem.  i just tested it, so not sure which is your problem. \r\n\r\nyour request comes from file that is used by webgui, but i won't fix that, as on next bootstap update it will be reintroduced as nobody will remember, and as it not breaks web, there is no issue\r\n```\r\n./web/static/css/bootstrap.min.css: */@import url(https://fonts.googleapis.com/css2?family=Lato:ital,wght@0,400;0,700;1,400&display=swap);\r\n```",
+  "Title: Yara rules not detecting after adding them into CAPE\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account acctivation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ yes ] I am running the latest version\r\n- [ yes ] I did read the README!\r\n- [ yes ] I checked the documentation and found no answer\r\n- [ yes ] I checked to make sure that this issue has not already been filed\r\n- [ yes ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ yes ] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\r\n\r\nAfter adding the yara ruleset for RaccoonV2, the results should detect the yara rule.\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\nI submitted the sample and it did not detect RaccoonV2 yara rule which made sense because RaccoonV2 yara rule was not added into the CAPE.\r\nThen, I added the RaccoonV2 yara rule to the CAPE. Restarted the cape service and submitted the same sample again.\r\nResults still not detected RaccoonV2 yara rule.\r\n\r\nHere's the hash of the sample: 246b27e609ebd8a1ec31b9667addf3b262d6487602209baa9b32c54539a28031\r\nI've added the yara rule (Just the RaccoonV2 part) from here: https://github.com/kevoreilly/community/blob/master/data/yara/CAPE/Raccoon.yar\r\n\r\nAfter adding the yara rulesets, do I need to perform any particular steps to get those rulesets in effect?\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. step 1\r\n2. step 2\r\n3. you get it...\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 16.04, Windows 10, macOS 10.12.3\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: did you restart cape-processor.service?\nComment: Yes I did restart cape_processor service as well\n\n\nOn Fri, Sept 9, 2022, 9:47 p.m. doomedraven ***@***.***>\nwrote:\n\n> did you restart cape-processor.service?\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1142#issuecomment-1242627869>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AME2LP7SYA5YD5BIWZ7ZKH3V5QHGFANCNFSM6AAAAAAQJC3JQQ>\n> .\n> You are receiving this because you authored the thread.Message ID:\n> ***@***.***>\n>\n\nComment: If you scan analysis folder by hand does it detects that malware? Does capensadbox gets it detected? Do you have the same file in your run?\n\n> El 10 sept 2022, a las 7:02, dhruvpatel56 ***@***.***> escribi\u00f3:\n> \n> \n> Yes I did restart cape_processor service as well\n> \n> \n> On Fri, Sept 9, 2022, 9:47 p.m. doomedraven ***@***.***>\n> wrote:\n> \n> > did you restart cape-processor.service?\n> >\n> > \u2014\n> > Reply to this email directly, view it on GitHub\n> > <https://github.com/kevoreilly/CAPEv2/issues/1142#issuecomment-1242627869>,\n> > or unsubscribe\n> > <https://github.com/notifications/unsubscribe-auth/AME2LP7SYA5YD5BIWZ7ZKH3V5QHGFANCNFSM6AAAAAAQJC3JQQ>\n> > .\n> > You are receiving this because you authored the thread.Message ID:\n> > ***@***.***>\n> >\n> \u2014\n> Reply to this email directly, view it on GitHub <https://github.com/kevoreilly/CAPEv2/issues/1142#issuecomment-1242631046>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAOFH3ZWTKKGNNGDAACO4XLV5QI7FANCNFSM6AAAAAAQJC3JQQ>.\n> You are receiving this because you commented.\n> \n\n\nComment: Sorry I didn't understand what you meant by scanning analysis folder by\nhand.\nYes capesandbox detects raccoonv2 Tara rule for that sample. And I ran the\nsample and it didn't detect on mine.\n\nOn Fri, Sept 9, 2022, 10:04 p.m. doomedraven ***@***.***>\nwrote:\n\n> If you scan analysis folder by hand does it detects that malware? Does\n> capensadbox gets it detected? Do you have the same file in your run?\n>\n> > El 10 sept 2022, a las 7:02, dhruvpatel56 ***@***.***> escribi\u00f3:\n> >\n> >\n> > Yes I did restart cape_processor service as well\n> >\n> >\n> > On Fri, Sept 9, 2022, 9:47 p.m. doomedraven ***@***.***>\n> > wrote:\n> >\n> > > did you restart cape-processor.service?\n> > >\n> > > \u2014\n> > > Reply to this email directly, view it on GitHub\n> > > <\n> https://github.com/kevoreilly/CAPEv2/issues/1142#issuecomment-1242627869>,\n> > > or unsubscribe\n> > > <\n> https://github.com/notifications/unsubscribe-auth/AME2LP7SYA5YD5BIWZ7ZKH3V5QHGFANCNFSM6AAAAAAQJC3JQQ\n> >\n> > > .\n> > > You are receiving this because you authored the thread.Message ID:\n> > > ***@***.***>\n> > >\n> > \u2014\n> > Reply to this email directly, view it on GitHub <\n> https://github.com/kevoreilly/CAPEv2/issues/1142#issuecomment-1242631046>,\n> or unsubscribe <\n> https://github.com/notifications/unsubscribe-auth/AAOFH3ZWTKKGNNGDAACO4XLV5QI7FANCNFSM6AAAAAAQJC3JQQ\n> >.\n> > You are receiving this because you commented.\n> >\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1142#issuecomment-1242631208>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AME2LPZPXESQ5WPIGFLOXFTV5QJEPANCNFSM6AAAAAAQJC3JQQ>\n> .\n> You are receiving this because you authored the thread.Message ID:\n> ***@***.***>\n>\n\nComment: But in your run do you have the same file on which capesandbox detects that rule?\n\nAbout manual scan is run yara, something like\n`yara -r data/CAPE/<path_to_yara>.yar storage/analyses/<task_id>/` \n\n> El 10 sept 2022, a las 7:08, dhruvpatel56 ***@***.***> escribi\u00f3:\n> \n> \n> Sorry I didn't understand what you meant by scanning analysis folder by\n> hand.\n> Yes capesandbox detects raccoonv2 Tara rule for that sample. And I ran the\n> sample and it didn't detect on mine.\n> \n> On Fri, Sept 9, 2022, 10:04 p.m. doomedraven ***@***.***>\n> wrote:\n> \n> > If you scan analysis folder by hand does it detects that malware? Does\n> > capensadbox gets it detected? Do you have the same file in your run?\n> >\n> > > El 10 sept 2022, a las 7:02, dhruvpatel56 ***@***.***> escribi\u00f3:\n> > >\n> > >\n> > > Yes I did restart cape_processor service as well\n> > >\n> > >\n> > > On Fri, Sept 9, 2022, 9:47 p.m. doomedraven ***@***.***>\n> > > wrote:\n> > >\n> > > > did you restart cape-processor.service?\n> > > >\n> > > > \u2014\n> > > > Reply to this email directly, view it on GitHub\n> > > > <\n> > https://github.com/kevoreilly/CAPEv2/issues/1142#issuecomment-1242627869>,\n> > > > or unsubscribe\n> > > > <\n> > https://github.com/notifications/unsubscribe-auth/AME2LP7SYA5YD5BIWZ7ZKH3V5QHGFANCNFSM6AAAAAAQJC3JQQ\n> > >\n> > > > .\n> > > > You are receiving this because you authored the thread.Message ID:\n> > > > ***@***.***>\n> > > >\n> > > \u2014\n> > > Reply to this email directly, view it on GitHub <\n> > https://github.com/kevoreilly/CAPEv2/issues/1142#issuecomment-1242631046>,\n> > or unsubscribe <\n> > https://github.com/notifications/unsubscribe-auth/AAOFH3ZWTKKGNNGDAACO4XLV5QI7FANCNFSM6AAAAAAQJC3JQQ\n> > >.\n> > > You are receiving this because you commented.\n> > >\n> >\n> > \u2014\n> > Reply to this email directly, view it on GitHub\n> > <https://github.com/kevoreilly/CAPEv2/issues/1142#issuecomment-1242631208>,\n> > or unsubscribe\n> > <https://github.com/notifications/unsubscribe-auth/AME2LPZPXESQ5WPIGFLOXFTV5QJEPANCNFSM6AAAAAAQJC3JQQ>\n> > .\n> > You are receiving this because you authored the thread.Message ID:\n> > ***@***.***>\n> >\n> \u2014\n> Reply to this email directly, view it on GitHub <https://github.com/kevoreilly/CAPEv2/issues/1142#issuecomment-1242631875>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAOFH3YDEPH3FXEGMX42KNTV5QJUXANCNFSM6AAAAAAQJC3JQQ>.\n> You are receiving this because you commented.\n> \n\n\nComment: Did it detonate properly? Payloads in payload tab? No need to resubmit. Restart cape-processor then reprocess with python utils/process.py -d -r X where X is job id\nComment: Yes, it did detonate properly on cape.\nSure thing. I will give it a try as well and let you know. Thank you!\n\nOn Fri, Sept 9, 2022, 11:32 p.m. kevoreilly ***@***.***>\nwrote:\n\n> Did it detonate properly? Payloads in payload tab? No need to resubmit.\n> Restart cape-processor then reprocess with python utils/process.py -d -r X\n> where X is job id\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1142#issuecomment-1242645672>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AME2LP4UX4EI5FS7JK6URE3V5QTOTANCNFSM6AAAAAAQJC3JQQ>\n> .\n> You are receiving this because you authored the thread.Message ID:\n> ***@***.***>\n>\n\nComment: You didnt answer my question\n\nEl s\u00e1b, 10 sept 2022 16:49, dhruvpatel56 ***@***.***>\nescribi\u00f3:\n\n> Yes, it did detonate properly on cape.\n> Sure thing. I will give it a try as well and let you know. Thank you!\n>\n> On Fri, Sept 9, 2022, 11:32 p.m. kevoreilly ***@***.***>\n> wrote:\n>\n> > Did it detonate properly? Payloads in payload tab? No need to resubmit.\n> > Restart cape-processor then reprocess with python utils/process.py -d -r\n> X\n> > where X is job id\n> >\n> > \u2014\n> > Reply to this email directly, view it on GitHub\n> > <\n> https://github.com/kevoreilly/CAPEv2/issues/1142#issuecomment-1242645672>,\n> > or unsubscribe\n> > <\n> https://github.com/notifications/unsubscribe-auth/AME2LP4UX4EI5FS7JK6URE3V5QTOTANCNFSM6AAAAAAQJC3JQQ\n> >\n> > .\n> > You are receiving this because you authored the thread.Message ID:\n> > ***@***.***>\n> >\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1142#issuecomment-1242745551>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3ZJPENNHNUUVDSD5M3V5SNV5ANCNFSM6AAAAAAQJC3JQQ>\n> .\n> You are receiving this because you commented.Message ID:\n> ***@***.***>\n>\n\nComment: Yes, payloads in payload tab.\n\nOn Sat, Sept 10, 2022, 8:08 a.m. doomedraven ***@***.***>\nwrote:\n\n> You didnt answer my question\n>\n> El s\u00e1b, 10 sept 2022 16:49, dhruvpatel56 ***@***.***>\n> escribi\u00f3:\n>\n> > Yes, it did detonate properly on cape.\n> > Sure thing. I will give it a try as well and let you know. Thank you!\n> >\n> > On Fri, Sept 9, 2022, 11:32 p.m. kevoreilly ***@***.***>\n> > wrote:\n> >\n> > > Did it detonate properly? Payloads in payload tab? No need to resubmit.\n> > > Restart cape-processor then reprocess with python utils/process.py -d\n> -r\n> > X\n> > > where X is job id\n> > >\n> > > \u2014\n> > > Reply to this email directly, view it on GitHub\n> > > <\n> > https://github.com/kevoreilly/CAPEv2/issues/1142#issuecomment-1242645672\n> >,\n> > > or unsubscribe\n> > > <\n> >\n> https://github.com/notifications/unsubscribe-auth/AME2LP4UX4EI5FS7JK6URE3V5QTOTANCNFSM6AAAAAAQJC3JQQ\n> > >\n> > > .\n> > > You are receiving this because you authored the thread.Message ID:\n> > > ***@***.***>\n> > >\n> >\n> > \u2014\n> > Reply to this email directly, view it on GitHub\n> > <\n> https://github.com/kevoreilly/CAPEv2/issues/1142#issuecomment-1242745551>,\n> > or unsubscribe\n> > <\n> https://github.com/notifications/unsubscribe-auth/AAOFH3ZJPENNHNUUVDSD5M3V5SNV5ANCNFSM6AAAAAAQJC3JQQ\n> >\n> > .\n> > You are receiving this because you commented.Message ID:\n> > ***@***.***>\n> >\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1142#issuecomment-1242748888>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AME2LP4SPGM53B2QGGAD54TV5SP5XANCNFSM6AAAAAAQJC3JQQ>\n> .\n> You are receiving this because you authored the thread.Message ID:\n> ***@***.***>\n>\n\nComment: Doh! No that was my second question.\r\n\r\nDoomed's question was are you submitting the same sample as works on capesandbox.com. I really hope so.\r\n\r\nSo putting two and two together - if you check which payload is detected as RacoonV2 on capesandbox.com, and you have the same undetected payload in your cape, you should be a able to download that payload, run the yara signature manually on it to test the sig is working there.\nComment: But what about running yara by hand?\n\nEl dom, 11 sept 2022 7:56, dhruvpatel56 ***@***.***> escribi\u00f3:\n\n> Yes, payloads in payload tab.\n>\n> On Sat, Sept 10, 2022, 8:08 a.m. doomedraven ***@***.***>\n> wrote:\n>\n> > You didnt answer my question\n> >\n> > El s\u00e1b, 10 sept 2022 16:49, dhruvpatel56 ***@***.***>\n> > escribi\u00f3:\n> >\n> > > Yes, it did detonate properly on cape.\n> > > Sure thing. I will give it a try as well and let you know. Thank you!\n> > >\n> > > On Fri, Sept 9, 2022, 11:32 p.m. kevoreilly ***@***.***>\n> > > wrote:\n> > >\n> > > > Did it detonate properly? Payloads in payload tab? No need to\n> resubmit.\n> > > > Restart cape-processor then reprocess with python utils/process.py -d\n> > -r\n> > > X\n> > > > where X is job id\n> > > >\n> > > > \u2014\n> > > > Reply to this email directly, view it on GitHub\n> > > > <\n> > >\n> https://github.com/kevoreilly/CAPEv2/issues/1142#issuecomment-1242645672\n> > >,\n> > > > or unsubscribe\n> > > > <\n> > >\n> >\n> https://github.com/notifications/unsubscribe-auth/AME2LP4UX4EI5FS7JK6URE3V5QTOTANCNFSM6AAAAAAQJC3JQQ\n> > > >\n> > > > .\n> > > > You are receiving this because you authored the thread.Message ID:\n> > > > ***@***.***>\n> > > >\n> > >\n> > > \u2014\n> > > Reply to this email directly, view it on GitHub\n> > > <\n> > https://github.com/kevoreilly/CAPEv2/issues/1142#issuecomment-1242745551\n> >,\n> > > or unsubscribe\n> > > <\n> >\n> https://github.com/notifications/unsubscribe-auth/AAOFH3ZJPENNHNUUVDSD5M3V5SNV5ANCNFSM6AAAAAAQJC3JQQ\n> > >\n> > > .\n> > > You are receiving this because you commented.Message ID:\n> > > ***@***.***>\n> > >\n> >\n> > \u2014\n> > Reply to this email directly, view it on GitHub\n> > <\n> https://github.com/kevoreilly/CAPEv2/issues/1142#issuecomment-1242748888>,\n> > or unsubscribe\n> > <\n> https://github.com/notifications/unsubscribe-auth/AME2LP4SPGM53B2QGGAD54TV5SP5XANCNFSM6AAAAAAQJC3JQQ\n> >\n> > .\n> > You are receiving this because you authored the thread.Message ID:\n> > ***@***.***>\n> >\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1142#issuecomment-1242893469>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3YL3JT6CTCCYN3AN7TV5VYAHANCNFSM6AAAAAAQJC3JQQ>\n> .\n> You are receiving this because you commented.Message ID:\n> ***@***.***>\n>\n\nComment: > But in your run do you have the same file on which capesandbox detects that rule? About manual scan is run yara, something like `yara -r data/CAPE/<path_to_yara>.yar storage/analyses/<task_id>/`\r\n> [\u2026](#)\r\n> El 10 sept 2022, a las 7:08, dhruvpatel56 ***@***.***> escribi\u00f3: Sorry I didn't understand what you meant by scanning analysis folder by hand. Yes capesandbox detects raccoonv2 Tara rule for that sample. And I ran the sample and it didn't detect on mine. On Fri, Sept 9, 2022, 10:04 p.m. doomedraven ***@***.***> wrote: > If you scan analysis folder by hand does it detects that malware? Does > capensadbox gets it detected? Do you have the same file in your run? > > > El 10 sept 2022, a las 7:02, dhruvpatel56 ***@***.***> escribi\u00f3: > > > > > > Yes I did restart cape_processor service as well > > > > > > On Fri, Sept 9, 2022, 9:47 p.m. doomedraven ***@***.***> > > wrote: > > > > > did you restart cape-processor.service? > > > > > > \u2014 > > > Reply to this email directly, view it on GitHub > > > < > [#1142 (comment)](https://github.com/kevoreilly/CAPEv2/issues/1142#issuecomment-1242627869)>, > > > or unsubscribe > > > < > https://github.com/notifications/unsubscribe-auth/AME2LP7SYA5YD5BIWZ7ZKH3V5QHGFANCNFSM6AAAAAAQJC3JQQ > > > > > . > > > You are receiving this because you authored the thread.Message ID: > > > ***@***.***> > > > > > \u2014 > > Reply to this email directly, view it on GitHub < > [#1142 (comment)](https://github.com/kevoreilly/CAPEv2/issues/1142#issuecomment-1242631046)>, > or unsubscribe < > https://github.com/notifications/unsubscribe-auth/AAOFH3ZWTKKGNNGDAACO4XLV5QI7FANCNFSM6AAAAAAQJC3JQQ > >. > > You are receiving this because you commented. > > > > \u2014 > Reply to this email directly, view it on GitHub > <[#1142 (comment)](https://github.com/kevoreilly/CAPEv2/issues/1142#issuecomment-1242631208)>, > or unsubscribe > <https://github.com/notifications/unsubscribe-auth/AME2LPZPXESQ5WPIGFLOXFTV5QJEPANCNFSM6AAAAAAQJC3JQQ> > . > You are receiving this because you authored the thread.Message ID: > ***@***.***> > \u2014 Reply to this email directly, view it on GitHub <[#1142 (comment)](https://github.com/kevoreilly/CAPEv2/issues/1142#issuecomment-1242631875)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAOFH3YDEPH3FXEGMX42KNTV5QJUXANCNFSM6AAAAAAQJC3JQQ>. You are receiving this because you commented.\r\n\r\nYes, I did run same file for which yara rule got detected on capesandbox.\nComment: And? \nComment: RaccoonV2 yara rule did not trigger even though I added RaccoonV2 yara rule and restarted cape-processor.service as well. \r\nI am about to execute yara by hand as you mentioned earlier.\nComment: im closing this as i got tired to ask the same again, did it match the file if you run by hand? if no, you have bad yara copy&paste. if that detects, but not detects on your run, then it didn't detonate properly\nComment: That shouls be first thing you do after i ask for running it\n\nEl lun, 12 sept 2022 20:14, dhruvpatel56 ***@***.***>\nescribi\u00f3:\n\n> RaccoonV2 yara rule did not trigger even though I added RaccoonV2 yara\n> rule and restarted cape-processor.service as well.\n> I am about to execute yara by hand as you mentioned earlier.\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1142#issuecomment-1244118876>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH366KU2DJXDIZMFPQSLV55XJ7ANCNFSM6AAAAAAQJC3JQQ>\n> .\n> You are receiving this because you commented.Message ID:\n> ***@***.***>\n>\n\nComment: Hey @doomedraven,\r\nI answered to your question already sir:\r\n![image](https://user-images.githubusercontent.com/50963903/189729952-6804ea1c-3d45-4e12-bf3b-6465505068a8.png)\r\n\r\nSorry I didn't have laptop with me over the weekend as I was away.\r\nPlease keep this open. \r\nI ran the yara rule by hand as you asked, but no results. \nComment: there is no reason to keep that open, if you have run yara by hand on file that capesandbox detects it and your doesn't detect it or if it detects but it doesn't detect on your, as i told, is bad detonation. there is problem with yara not cape. so you need to see what problem do you have on your side with yara. as cape won't detect it if yara can't detect it. always go to native tool that cape use if you have problems with cape. there is the answer, we can't help there as it works on cape, and helping debug you yara that is not our job as you might understand\nComment: Alright, no problem.\r\nThank you for your help guys!!\nComment: Yes, I do have same file in my run on which cape sandbox detects that rule.\nActually, no. I haven't tried running that Yara file for that task ID. I\nwill try that out.\nThank you!\n\nOn Fri, Sept 9, 2022, 10:10 p.m. doomedraven ***@***.***>\nwrote:\n\n> But in your run do you have the same file on which capesandbox detects\n> that rule?\n>\n> About manual scan is run yara, something like\n> `yara -r data/CAPE/<path_to_yara>.yar storage/analyses/<task_id>/`\n>\n> > El 10 sept 2022, a las 7:08, dhruvpatel56 ***@***.***> escribi\u00f3:\n> >\n> >\n> > Sorry I didn't understand what you meant by scanning analysis folder by\n> > hand.\n> > Yes capesandbox detects raccoonv2 Tara rule for that sample. And I ran\n> the\n> > sample and it didn't detect on mine.\n> >\n> > On Fri, Sept 9, 2022, 10:04 p.m. doomedraven ***@***.***>\n> > wrote:\n> >\n> > > If you scan analysis folder by hand does it detects that malware? Does\n> > > capensadbox gets it detected? Do you have the same file in your run?\n> > >\n> > > > El 10 sept 2022, a las 7:02, dhruvpatel56 ***@***.***> escribi\u00f3:\n> > > >\n> > > >\n> > > > Yes I did restart cape_processor service as well\n> > > >\n> > > >\n> > > > On Fri, Sept 9, 2022, 9:47 p.m. doomedraven ***@***.***>\n> > > > wrote:\n> > > >\n> > > > > did you restart cape-processor.service?\n> > > > >\n> > > > > \u2014\n> > > > > Reply to this email directly, view it on GitHub\n> > > > > <\n> > >\n> https://github.com/kevoreilly/CAPEv2/issues/1142#issuecomment-1242627869>,\n> > > > > or unsubscribe\n> > > > > <\n> > >\n> https://github.com/notifications/unsubscribe-auth/AME2LP7SYA5YD5BIWZ7ZKH3V5QHGFANCNFSM6AAAAAAQJC3JQQ\n> > > >\n> > > > > .\n> > > > > You are receiving this because you authored the thread.Message ID:\n> > > > > ***@***.***>\n> > > > >\n> > > > \u2014\n> > > > Reply to this email directly, view it on GitHub <\n> > >\n> https://github.com/kevoreilly/CAPEv2/issues/1142#issuecomment-1242631046>,\n> > > or unsubscribe <\n> > >\n> https://github.com/notifications/unsubscribe-auth/AAOFH3ZWTKKGNNGDAACO4XLV5QI7FANCNFSM6AAAAAAQJC3JQQ\n> > > >.\n> > > > You are receiving this because you commented.\n> > > >\n> > >\n> > > \u2014\n> > > Reply to this email directly, view it on GitHub\n> > > <\n> https://github.com/kevoreilly/CAPEv2/issues/1142#issuecomment-1242631208>,\n> > > or unsubscribe\n> > > <\n> https://github.com/notifications/unsubscribe-auth/AME2LPZPXESQ5WPIGFLOXFTV5QJEPANCNFSM6AAAAAAQJC3JQQ\n> >\n> > > .\n> > > You are receiving this because you authored the thread.Message ID:\n> > > ***@***.***>\n> > >\n> > \u2014\n> > Reply to this email directly, view it on GitHub <\n> https://github.com/kevoreilly/CAPEv2/issues/1142#issuecomment-1242631875>,\n> or unsubscribe <\n> https://github.com/notifications/unsubscribe-auth/AAOFH3YDEPH3FXEGMX42KNTV5QJUXANCNFSM6AAAAAAQJC3JQQ\n> >.\n> > You are receiving this because you commented.\n> >\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1142#issuecomment-1242633329>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AME2LPZQY6HG5KAXRRPXPPLV5QJ6HANCNFSM6AAAAAAQJC3JQQ>\n> .\n> You are receiving this because you authored the thread.Message ID:\n> ***@***.***>\n>\n",
+  "Title: Specifying the exe that we want to use for analysis\nBody: There are several packages that weren't using the `get_path` method correctly, even before this PR https://github.com/kevoreilly/CAPEv2/commit/930c340ad7f14479a4779dabf3edbd6892139274. Now they should work correctly.",
+  "Title: Update cape2.sh\nBody: - Addressed the apt-key deprecation following the apt-key (8) recommendations\r\n- Changed back the repo of mongo to use $(lsb_release -cs) instead of hard coding distro. https://repo.mongodb.org/apt/ubuntu/dists/jammy/mongodb-org/6.0/multiverse/ does exist now\r\n- Addressed a temporary issue compiling yara-python\r\n- Addressed an issue with the useage of poetry and the usage of keyrings\nComment: thanks",
+  "Title: Add documentation for additional capemon options\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account acctivation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\nThere are additional capemon options that can be passed via task options, but there is no documentation for them here https://github.com/kevoreilly/CAPEv2/commit/9ddf56aa8da21a5c32c8de1cb8a3060be43f88f9.\r\n\r\nMissing items include minhook=1, no-iat=1, caller-dump=0, injection=0, procdump=0, log-exceptions=1, yarascan=0, api-cap=500, etc. All items can be found here (https://github.com/kevoreilly/capemon/blob/capemon/config.c) but they are missing descriptions.\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\nComment: Multiple capemon option descriptions were added in this PR https://github.com/kevoreilly/capemon/pull/66, but it would be nice to have all options include descriptions + options with descriptions added to the docs @cccs-mog ",
+  "Title: Update submit doc to include all options available\nBody: Copied from https://github.com/kevoreilly/CAPEv2/blob/master/web/templates/submission/index.html#L281:L480",
+  "Title: Adding ps1 to exe_regex and bugfix for file_name in zip package\nBody: To run a .ps1 file, the `.ps1` extension needs to be in the `exe_regex`. \r\n\r\nAlso if you pass `file=` as a task option, the `file_name` is interpreted as `\"\"`, rather than `None`. ",
+  "Title: fix suricata-update in crontab line added each time cape2.sh is executed\nBody: Grep is interpreting the \"*\" and it is not finding the line when it is already in the crontab. Adding -F flag to grep will avoid adding the suricata-update like multiple times to crontab. \r\n\r\n-F, --fixed-strings\r\n          Interpret  PATTERN  as  a  list  of  fixed strings, separated by\r\n          newlines, any of which is to be matched.  (-F  is  specified  by\r\n          POSIX.)\nComment: thanks, specially for context",
+  "Title: Update de4dot_deobfuscate to allow for extra arguments to be passed to it.\nBody: None",
+  "Title: Alternate dump method for msi extraction\nBody: There are some msi files that aren't handle by msi-extract\nComment: did small cleanup, thanks",
+  "Title: Adding option to have 7z.exe in analyzer bin folder\nBody: Addresses https://github.com/kevoreilly/CAPEv2/pull/1126#issuecomment-1238244103\nComment: Thank you! \u2764\ufe0f ",
+  "Title: Handle case where file name does not have an extension\nBody: To address https://github.com/kevoreilly/CAPEv2/pull/1126#issuecomment-1238237401\nComment: Thanks",
+  "Title: Improving file name regex, and handling missing files from 7zip output parse\nBody: None",
+  "Title: Run all interesting files in an archive, adding udf support\nBody: UDF identification dependent on the resolution of https://github.com/doomedraven/sflock/issues/25\r\n\r\nIn the meantime, for UDF files just force the use of the `archive` package when submitting the task.\r\n\r\nThis package update runs all interesting files as separate processes, similar to the DLL package with multiple exports.",
+  "Title: fix guacamole path\nBody: None\nComment: thanks",
+  "Title: Fixing paths in UWSGI setup\nBody: Also, I was having difficulty running UWSGI initially because all the required dependencies for the REST API were installed using `poetry`, and the UWSGI config uses `python38` as the plugin (which doesn't have those dependencies installed). My work-around was to just `python38 -m pip install -r /opt/CAPEv2/requirements.txt`. Just something to consider.",
+  "Title: Small tweaks to setting up UWSGI\nBody: Set up UWSGI to recycle workers after x tasks which addresses large RAM buildup for https://github.com/kevoreilly/CAPEv2/issues/1112\r\n\r\nIt doesn't solve the memory leak in the above issue though...",
+  "Title: Adding the ability to extract an archive (ISO, VHD, etc) into a folder and run an executable\nBody: Tested with a few ISO and VHD files and it works pretty well. You need 7-zip installed on your guest machines.\nComment: there was in past zip.py that was doing the same, i personally prefer to move that to sflock as otherwise you lose relationship  between archive and childs\nComment: > there was in past zip.py that was doing the same, i personally prefer to move that to sflock as otherwise you lose relationship between archive and childs\r\n\r\nIn what way is the relationship lost? The archive file is uploaded and in this package a new folder is created with the same base name of the archive, and the children are extracted into that folder.\nComment: Thanks for this PR.\r\n\r\nI just tried it but unfortunately it crashed:\r\n\r\n```\r\n2022-09-06 14:02:24,763 [root] INFO: You probably submitted the job with wrong package\r\nTraceback (most recent call last):\r\n  File \"C:\\tmpljosyc8h\\analyzer.py\", line 528, in run\r\n    pids = self.package.start(self.target)\r\n  File \"C:\\tmpljosyc8h\\modules\\packages\\archive.py\", line 139, in start\r\n    os.mkdir(root)\r\nFileExistsError: [WinError 183] Cannot create a file when that file already exists: 'C:\\\\Users\\\\Rebecca\\\\AppData\\\\Local\\\\Temp\\\\1fc7b0e1054d54ce8f1de0cc'\r\n\r\nThe above exception was the direct cause of the following exception:\r\n\r\nTraceback (most recent call last):\r\n  File \"C:\\tmpljosyc8h\\analyzer.py\", line 1397, in <module>\r\n    success = analyzer.run()\r\n  File \"C:\\tmpljosyc8h\\analyzer.py\", line 534, in run\r\n    raise CuckooError(f'The package \"{package_name}\" start function encountered an unhandled exception: {e}') from e\r\nlib.common.exceptions.CuckooError: The package \"modules.packages.archive\" start function encountered an unhandled exception: [WinError 183] Cannot create a file when that file already exists: 'C:\\\\Users\\\\Rebecca\\\\AppData\\\\Local\\\\Temp\\\\1fc7b0e1054d54ce8f1de0cc'\r\n```\r\n\r\nThis was submitting iso 1fc7b0e1054d54ce8f1de0cc95976081c7a85c7926c03172a3ddaa672690042c. Hopefully simple to fix.\nComment: I'll test it out and report back\nComment: Works fine for me... Are you using the most updated [`archive` package](https://github.com/kevoreilly/CAPEv2/blob/master/analyzer/windows/modules/packages/archive.py)? Also question, is your submitted sample named `1fc7b0e1054d54ce8f1de0cc95976081c7a85c7926c03172a3ddaa672690042c` or is it renamed to `1fc7b0e1054d54ce8f1de0cc95976081c7a85c7926c03172a3ddaa672690042c.iso`?\nComment: I am using the most up-to-date package, but did not rename the iso - if I do I see this is no longer an issue.\nComment: It would be nice to have the possibility of putting 7z.exe in analyzer/windows/bin instead of needing to have it baked into the vm image...\nComment: > I am using the most up-to-date package, but did not rename the iso - if I do I see this is no longer an issue.\r\n\r\nLet me know if [this PR](https://github.com/kevoreilly/CAPEv2/pull/1132) works without the renaming.\nComment: > It would be nice to have the possibility of putting 7z.exe in analyzer/windows/bin instead of needing to have it baked into the vm image...\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/pull/1133",
+  "Title: We should check if the application exists in path before returning path\nBody: Otherwise we will return the first path to an application that exists... which is not what this method is used for!",
+  "Title: Fix no tlp red upload to VT\nBody: None",
+  "Title: Fix guacrecordings path\nBody: None",
+  "Title: Evaluation runs but doesn't complete. It gets timed-out for xls and doc samples.\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account acctivation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ yes ] I am running the latest version\r\n- [ yes ] I did read the README!\r\n- [ yes ] I checked the documentation and found no answer\r\n- [ yes ] I checked to make sure that this issue has not already been filed\r\n- [ yes ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ yes ] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\r\n\r\nThe analysis should be completed without timing out.\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\nAfter submitting xls and doc samples, evaluation starts and runs, but it doesn't complete. It gets timed-out. \r\nHowever, I see status \"reported\" in the end.\r\n\r\nIs this happening because cape doesn't have YARA rulesets for them or something like that?\r\n![image](https://user-images.githubusercontent.com/50963903/187563581-714e5ccc-4717-48c3-9b1a-5135ca08c8a9.png)\r\n\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\nN/A\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. step 1\r\n2. step 2\r\n3. you get it...\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 16.04, Windows 10, macOS 10.12.3\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\nN/A\nComment: hello is how cape works, you run task for X seconds, after that is timeout and report what you got till that moment. wants longer run specify that in cuckoo.conf or submission\nComment: Yes, I kept the time-out for longer run like 700 seconds. \r\n",
+  "Title: Seems like evaluation runs but doesn't complete for xls and doc samples.\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account acctivation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ yes ] I am running the latest version\r\n- [ yes ] I did read the README!\r\n- [ yes ] I checked the documentation and found no answer\r\n- [ yes ] I checked to make sure that this issue has not already been filed\r\n- [ yes ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ yes ] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\r\n\r\nAnalysis should be completed for xls and doc samples.\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\nWhen I submit the xls and word samples, the analysis runs, but it does not complete. However, I see status \"Reported\" in the end.\r\n\r\n![image](https://user-images.githubusercontent.com/50963903/187560417-506b877a-1769-4d0c-8766-124f546b74c6.png)\r\n\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\nComment: @dhruvpatel56: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: As ever loads of info missing. Are we supposed to guess the version of Office?\nComment: Sorry about that.\nI am using Word/excel 2019 version.\n\n\nOn Wed, Aug 31, 2022, 12:13 a.m. kevoreilly ***@***.***>\nwrote:\n\n> As ever loads of info missing. Are we supposed to guess the version of\n> Office?\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1121#issuecomment-1232551643>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AME2LP7M7YQ67TTBLZGQQQDV34A2VANCNFSM6AAAAAAQA3PHHM>\n> .\n> You are receiving this because you were mentioned.Message ID:\n> ***@***.***>\n>\n\nComment: 32/64-bit?\nComment: 64 bits\n\nOn Wed, Aug 31, 2022, 12:20 a.m. kevoreilly ***@***.***>\nwrote:\n\n> 32/64-bit?\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1121#issuecomment-1232557962>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AME2LP7GYZHFWN6RFV2AZYTV34BTTANCNFSM6AAAAAAQA3PHHM>\n> .\n> You are receiving this because you were mentioned.Message ID:\n> ***@***.***>\n>\n\nComment: Unfortunately CAPE hasn't been tested with that version of Office. The thing with sandboxes is you ideally want an old vulnerable version as the whole point of having Office in the sandbox is to detonate malicious documents. Therefore to maximise the chances of the maldoc detonating properly (i.e. not only opening the document visibly but also setting in motion the background mechanism to launch/download malware) the optimal version which is tried and tested in CAPE is Office 2010 32-bit. We just haven't got time to test Office 2019 64-bit as this is not a worthwhile effort considering out of the box it detonates maldocs relatively poorly, and would probably require a large effort to get it running with full monitoring.",
+  "Title: Setting a default package if sflock throws an exception when identifying a file\nBody: If sflock fails to identify something because of a 3rd party package exception, the REST API returns a 500. But we should at least TRY to run this sample rather than not add it to the database at all.\nComment: Hello thanks, im fine to merge this, but as side i would love to know what problem you got, you can share that in PM too\nComment: This sample https://www.virustotal.com/gui/file/b6a71449958283718f01e6be9f7a9eb057479072c1cc55f26a11b033ea210271\r\n\r\nwhen submitted to CUCKOO, not CAPE, extracts a dropped DOS file with the SHA256 of eaedceea8b2fc89872bd5e4c4a6f90721319b4fdb23deccff4630c7087b5de4e. This file when sent to `sflock_ident` raises ` pefile.PEFormatError: 'Invalid e_lfanew value, probably not a PE file'` from the `pefile` module which is called here `File \"sflock/ident.py\", line 486, in identify  pe = pefile.PE(data=f.contents, fast_load=True)` and this exception is unhandled, causing the REST API return status code 500.\r\n\r\nHere is the DOS file:\r\n\r\n[eaedceea8b2fc89872bd5e4c4a6f90721319b4fdb23deccff4630c7087b5de4e.zip](https://github.com/kevoreilly/CAPEv2/files/9463708/eaedceea8b2fc89872bd5e4c4a6f90721319b4fdb23deccff4630c7087b5de4e.zip)\r\n\r\n",
+  "Title: If evtx is enabled, collect windows logs\nBody: Even if evtx was disabled in `auxiliary.conf`, evtx logs were collected. This is the fix.",
+  "Title: Re-adding data to http entry\nBody: Accidentally deleted this item in https://github.com/kevoreilly/CAPEv2/pull/1117",
+  "Title: Fixing HTTP path parsing\nBody: The CAPE version of https://github.com/cuckoosandbox/cuckoo/pull/3199\r\n\r\nThis sample https://www.virustotal.com/gui/file/a076938fa168d283115525aebeb972f8eba151566a82e06503c23e0d95c4dffa when run on Win7x64 calls out to http[://]208[.]67[.]105[.]179/damianozx[.]exe on port 8080. \r\n\r\nThe `tcpdata` for this network call (https://github.com/kevoreilly/CAPEv2/blob/master/modules/processing/network.py#L515) looks like this:\r\n```\r\nb'GET http[://]208[.]67[.]105[.]179/damianozx[.]exe HTTP/1.1\\r\\nAccept: */*\\r\\nAccept-Encoding: gzip, deflate\\r\\nUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/7.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)\\r\\nHost: 208[.]67[.]105[.]179\\r\\nProxy-Connection: Keep-Alive\\r\\n\\r\\n'\r\n```\r\n\r\nAs you can see, the host is found within the \"URI\" portion of \"GET <URI>\" where the \"URI\" is supposed to be just the path, in this case \"/damianozx[.]exe\". When these components get put together using `urlunparse` (https://github.com/kevoreilly/CAPEv2/blob/master/modules/processing/network.py#L545), the resulting URL looks like this http[://]208[.]67[.]105[.]179[:[8080/http[://]208[.]67[.]105[.]179/damianozx[.]exe which is obviously incorrect. \r\n\r\nWe need to pop the host out of the path if it is in there. The `elif` is for when a non-80 port is used.",
+  "Title: Separate guac server\nBody: None",
+  "Title: guac-session-integration-2\nBody: None",
+  "Title: guac-session-integrtion\nBody: None",
+  "Title: ensure JsonDump run after the SubmitCAPE\nBody: When I submit a file, it triggered automatically submitting sub task, but I can not find \"CAPE_children\" in its report.json.  \r\nThe reason is JsonDump run before SubmitCAPE.  \r\nAdd order can fix it.  \nComment: thanks",
+  "Title: Memory Leak in REST API\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account acctivation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\r\n\r\nI should be able to run the REST API `cape-web.service` indefinitely without it restarting due to a not enough RAM.\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\nRunning the REST API `cape-web.service` for a long period of time causes the RAM to eventually max out on the CAPE nest and causes the REST API to restart with a status code 247. There is definitely a memory leak somewhere in this process.\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\nSee the logs I've attached. There are 6 things that I use the REST API for:\r\n1. Get the status of CAPE via `GET /apiv2/cuckoo/status/`\r\n2. Search for the SHA256 of a sample via `GET /apiv2/tasks/search/sha256/<sha256>/`\r\n3. Submit a sample for file analysis via `POST /apiv2/tasks/create/file/`\r\n4. Poll the task by task ID until it is completed via `GET /apiv2/tasks/view/<task-id>/`\r\n5. Get the `lite` JSON report and ZIP generated via `GET /apiv2/tasks/get/report/<task-id>/lite/zip/`\r\n6. Delete the task via `GET /apiv2/tasks/delete/<task-id>/`\r\n\r\nSomewhere in these calls, the memory is being leaked...\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Submit a bunch of files that follow this logic:\r\n2. Get the status of CAPE via `GET /apiv2/cuckoo/status/`\r\n3. Search for the SHA256 of a sample via `GET /apiv2/tasks/search/sha256/<sha256>/`\r\n4. Submit a sample for file analysis via `POST /apiv2/tasks/create/file/`\r\n5. Poll the task by task ID until it is completed via `GET /apiv2/tasks/view/<task-id>/`\r\n6. Get the `lite` JSON report and ZIP generated via `GET /apiv2/tasks/get/report/<task-id>/lite/zip/`\r\n7. Delete the task via `GET /apiv2/tasks/delete/<task-id>/`\r\n8. Watch the memory usage go to the moon \ud83d\ude80 \r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Most recent (I think... I don't use Git to update my CAPE)\r\n| OS version       | Ubuntu 20.04\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\r\n```\r\ncape@cape-nest-vm:~$ sudo systemctl status cape-web.service\r\n\u25cf cape-web.service - CAPE WSGI app\r\n     Loaded: loaded (/lib/systemd/system/cape-web.service; enabled; vendor preset: enabled)\r\n     Active: active (running) since Wed 2022-08-24 15:10:59 UTC; 5h 2min ago\r\n       Docs: https://github.com/kevoreilly/CAPEv2\r\n   Main PID: 3763817 (python)\r\n      Tasks: 18 (limit: 77163)\r\n     Memory: 6.6G\r\n     CGroup: /system.slice/cape-web.service\r\n             \u251c\u25003763817 /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/bin/python manage.py runserver_plus 0.0.0.0:8000 --traceback --keep-meta-shutdown\r\n             \u2514\u25003763841 /home/cape/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/bin/python /opt/CAPEv2/web/manage.py runserver_plus 0.0.0.0:8000 --traceback --keep-meta-shutdown\r\n\r\nAug 24 20:13:17 cape-nest-vm python3[3763841]: <ip> - - [24/Aug/2022 20:13:17] \"GET>\r\nAug 24 20:13:17 cape-nest-vm python3[3763841]: Get task: 6598.5546875\r\nAug 24 20:13:17 cape-nest-vm python3[3763841]: <ip> - - [24/Aug/2022 20:13:17] \"GET >\r\nAug 24 20:13:17 cape-nest-vm python3[3763841]: Get task: 6598.5546875\r\nAug 24 20:13:17 cape-nest-vm python3[3763841]: <ip> - - [24/Aug/2022 20:13:17] \"GET>\r\nAug 24 20:13:17 cape-nest-vm python3[3763841]: Get report 6598.5546875\r\nAug 24 20:13:17 cape-nest-vm python3[3763841]: <ip> - - [24/Aug/2022 20:13:17] \"GET>\r\nAug 24 20:13:17 cape-nest-vm python3[3763841]: Get task: 6598.5546875\r\nAug 24 20:13:17 cape-nest-vm python3[3763841]: <ip> - - [24/Aug/2022 20:13:17] \"GET>\r\n```\r\nThe line that is generating the `Get task: <Memory usage for process>` is `print(\"Get task:\", psutil.Process(os.getpid()).memory_info().rss / 1024 ** 2)`. That value has been slowly increasing over the day from a starting value of ~100MB. \nComment: Hello, thats interesting, that will be hard to debug. I personally use it with uwsgi and recycling workers after X jobs. So i guess is why i didn't spot it before. We already saw similar in process.py but Sandor added `garbage collector` there so we were able to spot the problem relatively easy\nComment: Okay cool, do you have any documentation for setting up the REST API with UWSGI rather than Django?\nComment: good point, i will have to add it. we use it as uwsgi+nginx, but you also can use it as standalone\r\n\r\n```\r\ncat /etc/uwsgi/apps-enabled/cape.ini\r\n[uwsgi]\r\nlazy-apps = True\r\nvacuum = True\r\n;http-socket = 127.0.0.1:8000\r\nhttp-socket = 0.0.0.0:8000\r\nstatic-map = /static=/opt/CAPEv2/web/static\r\nplugins = python38\r\ncallable = application\r\nchdir = /opt/CAPEv2/web\r\nfile = web/wsgi.py\r\nenv = DJANGO_SETTINGS_MODULE=web.settings\r\nuid = cape\r\ngid = cape\r\nenable-threads = true\r\nmaster = true\r\nprocesses = 10\r\nworkers = 10\r\n;max-requests = 300\r\nmanage-script-name = true\r\n;disable-logging = True\r\nlisten = 2056\r\n;harakiri = 30\r\nhunder-lock = True\r\n#max-worker-lifetime = 30\r\n;Some files found in this directory are processed by uWSGI init.d script as\r\n;uWSGI configuration files.\r\n```\r\n\r\nafter place that in that file, just start or restart uwsgi and it will start your web using uwsgi, you might need to adjust workers/work processes\nComment: check this for instalation https://capev2.readthedocs.io/en/latest/usage/dist.html?highlight=uwsgi#good-practice-for-production\r\ni need to fix formating, there is also modules as you can see here is plugin=python38\nComment: For those who are looking at this issue, using UWSGI to run Django rather than the default method of using the `cape-web.service` avoids RAM buildup to the point where the Django process crashes, BUT it does not solve the memory leak issue that is still present in the REST API...\nComment: Using Gunicorn here, I don't see any leaks in the APIv2 paths you've mentioned. Not to say they aren't there - just that I can't reproduce them.\r\n\r\nIf there _is_ a leak in those paths, I'd suspect [POST /apiv2/tasks/create/file/](https://github.com/kevoreilly/CAPEv2/blob/09e15d15ed8e9f57ddb159693503018d3ab61247/web/apiv2/views.py#L236) and [GET /apiv2/tasks/get/report/<task-id>/lite/zip/](https://github.com/kevoreilly/CAPEv2/blob/09e15d15ed8e9f57ddb159693503018d3ab61247/web/apiv2/views.py#L1113).\r\n\r\nFWIW you can get a quick sense of memory just by looking at the `systemctl status` output:\r\n\r\n![image](https://user-images.githubusercontent.com/1265294/188022117-5f508d3e-2086-4d04-813f-e62b5669a62f.png)\r\n\r\nIf you can narrow it down a bit more, it should be pretty easy to debug. Toss some Python debugging symbols in there and wrap the whole thing in Valgrind:\r\n\r\n```\r\n$ sudo apt install python3-dbg valgrind\r\n$ valgrind --tool=memcheck --leak-check=yes --log-file=whats-eating-gilbert-cape.log /usr/bin/python3 -m poetry run python manage.py runserver_plus 0.0.0.0:8000 --traceback --keep-meta-shutdown\r\n```\r\n\nComment: Im checking this now with https://github.com/bloomberg/memray and https://github.com/bloomberg/pytest-memray\nComment: i can't reproduce it. Kevin do you want to help test this or we can close it as you have solved it with uwsgi?\nComment: > i can't reproduce it. Kevin do you want to help test this or we can close it as you have solved it with uwsgi?\r\n\r\nI don't have the cycles to test this out, so we can close this ticket as long as people are aware that UWSGI is the preferred method of running the API.",
+  "Title: How to check which YARA rulesets exist in CAPEv2 and how to add further more yara rulesets in it?\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account acctivation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ yes ] I am running the latest version\r\n- [ yes ] I did read the README!\r\n- [ yes ] I checked the documentation and found no answer\r\n- [ yes ] I checked to make sure that this issue has not already been filed\r\n- [ yes ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ yes ] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\r\n\r\nN/A\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\nCAPEv2 will have a YARA library that looks up to check against the samples. How do I check which YARA libraries / rulesets exist in CAPEv2?\r\nAnd, how to add more yara rulesets in CAPEv2?\r\n\r\nI found bunch of py files under \"modules/signatures/\" dir. Is that directory to check the existence of YARA rulesets?\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. step 1\r\n2. step 2\r\n3. you get it...\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 16.04, Windows 10, macOS 10.12.3\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\nN/A\nComment: Issue 3 - have you checked my reply to the previous two issues you created?!\nComment: > I already replied to your previous issue. Have you tried searching for .yar files?!\r\n> \r\n> You will find them in data/yara\r\n\r\n\nComment: Sorry about that.\r\nI saw Bot has closed the issue with Template not found label.",
+  "Title: How to check which YARA rulesets exist in CAPEv2 and how to add further more YARA rulesets?\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account acctivation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ yes ] I am running the latest version\r\n- [ yes ] I did read the README!\r\n- [ yes ] I checked the documentation and found no answer\r\n- [ yes ] I checked to make sure that this issue has not already been filed\r\n- [ yes ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ yes ] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\nCAPEv2 will have a YARA library that looks up to check against the samples. How do I check which YARA libraries / rulesets exist in CAPEv2?\r\nAnd, how to add more yara rulesets in CAPEv2?\r\n\r\nI found bunch of py files under \"modules/signatures/\" dir. Is that directory to check the existence of YARA rulesets?\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\nComment: @dhruvpatel56: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: I already replied to your previous issue. Have you tried searching for .yar files?!\r\n\r\nYou will find them in data/yara",
+  "Title: How to check which YARA rulesets exist in CAPEv2 and how to add more yara rulesets in CAPEv2?\nBody: CAPEv2 will have a YARA library that looks up to check against the samples. How do I check which YARA libraries / rulesets exist in CAPEv2?\r\nAnd, how to add more yara rulesets in CAPEv2?\r\n\r\nI found bunch of py files under \"modules/signatures/\" dir. Is that directory to check the existence of YARA rulesets?\r\n\r\nThanks!\nComment: @dhruvpatel56: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: data/yara",
+  "Title: Updating scheduler/database to improve the time a machine is locked for\nBody: Something that I've noticed in the following environment:\r\n- you have ~100 clients that submit tasks and poll until analysis completion,\r\n- you have 100 machines that are eligible for all tasks\r\n- each analysis runs for ~2 minutes\r\n\r\nThe logic in the `scheduler.py` with the `machine_lock` prevents 100 machines to be assigned a task, and reaches an equilibrium of ~50 tasks in the pending queue with ~30-50 machines in use. Here is why:\r\n- It takes ~2 seconds for a task to be assigned to a machine, and the majority of this time is spent waiting to acquire the `machine_lock` https://github.com/kevoreilly/CAPEv2/blob/master/lib/cuckoo/core/scheduler.py#L184\r\n    - Therefore every ten seconds, ~5 tasks are *always* assigned to a machine\r\n- Analyses complete periodically, depending on the file type\r\n    - Every ten seconds, >5 tasks are completed and machines are freed up\r\n\r\nMy proposition in this PR:\r\n- Speed up the time that a `machine_lock` is acquired for by moving stuff that isn't required outside of the time when the `machine_lock` is locked.\r\n    - Moving the `route_network` method does not need to be in this section and takes a bit of time, so that cuts the `machine_lock` blocking time.\r\n    - Merging the `guest_start` and `set_task_vm` methods into one since both methods commit & refresh the DB for a Task row. This speeds up the blocking time a bit.\r\n- Remove the time to sleep time between scheduler loops. This results in more DB calls, but removes an arbitrary sleep in the loop. There may be a way here to avoid sleeping in a smarter way? Any input is welcome.\r\n\r\nSince the `availables()` method is called every iteration of the scheduler loop, the `<query>.count()` method in SQLAlchemy is known to be slow, so here is a thread talking about a way to speed it up: https://gist.github.com/hest/8798884\r\n\r\nThese modifications help a bit, sometimes 12 tasks are assigned within a 10 second period... which is great BUT I think there is a way to improve the use of the `machine_lock` usage. Maybe with semaphores? I'm not sure...\r\n\r\n\r\nMaybe something smart like a bounded semaphore that can be acquired X times where X is the number of relevant available machines?\nComment: Closed by https://github.com/kevoreilly/CAPEv2/pull/1757\nComment: Thanks, great explanation and improvement\nComment: i just read the linked gist, and i saw that with `with_only_columns` variation in past i was able to make dist.py way much faster, so i slowly started to move toward that, as it only gets desired columns instead of everything what is useless, slow and takes a lot of ram, so will have to get this code from gist into core, thank you\nComment: Wow this is awesome - thank you \u2764\ufe0f ",
+  "Title: Use yaramod to format yara rules\nBody: Here is the result: https://github.com/r0ny123/CAPEv2/commit/61cbe01daa053a77dd8d380ce2fe10c00234f11f\r\n\r\nAlso, @doomedraven can you rename the branch name `master` to `main`? Please rename before merging this PR.\nComment: Im not admin of the repo, only kevin has those permissions\nComment: If you're renaming to main could you edit the other workflows to point to the correct branch as well\nComment: What's renaming the branch got to do with yara sigs?\nComment: that is due to WOKE culture xD\nComment: > If you're renaming to main could you edit the other workflows to point to the correct branch as well\r\n\r\nYup, @TheMythologist, I can do that. But @doomedraven got the point, @kevoreilly. :D\nComment: Renaming the branch is not relevant to the PR\nComment: I am not sure I understand what are you saying, but changing the name isn't that hard. Anyway, updating the PR.\nComment: My language is clear. This PR has to do with yara, therefore it is not the place to request (or demand) a change to the branch. \nComment: back to yara, the output would need to be configured it that suppors it as indentation is too big for my taste.\nComment: I am not a fan of spaces after opening brackets either.\nComment: so till they won't add formatting configuration is a dead end. https://yaramod.readthedocs.io/en/latest/formatting_rulesets.html\r\ni don't really like the output that it generates\nComment: Ok I will check thr suggestions with the author.",
+  "Title: Test1\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account acctivation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [y] I am running the latest version\r\n- [y] I did read the README!\r\n- [y] I checked the documentation and found no answer\r\n- [y] I checked to make sure that this issue has not already been filed\r\n- [y] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [y] I'm have read all configs with all optional parts\r\n- [y] I'm have checked [discussions section](https://github.com/kevoreilly/CAPEv2/discussions)\r\n\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. step 1\r\n2. step 2\r\n3. you get it...\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 16.04, Windows 10, macOS 10.12.3\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n",
+  "Title: Test\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account acctivation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n- [x] I'm have checked [discussions section](https://github.com/kevoreilly/CAPEv2/discussions)\r\n\r\n\r\n# Expected Behavior\r\n\r\nno error\r\n\r\n# Current Behavior\r\n\r\nerror\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. step 1\r\n2. step 2\r\n3. you get it...\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 16.04, Windows 10, macOS 10.12.3\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n",
+  "Title: Custom ML module previously working not showing results now.\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account acctivation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [Y] I am running the latest version\r\n- [Y] I did read the README!\r\n- [Y] I checked the documentation and found no answer\r\n- [Y] I checked to make sure that this issue has not already been filed\r\n- [Y] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [Y] I'm have read all configs with all optional parts\r\n- [Y] I'm have checked [discussions section](https://github.com/kevoreilly/CAPEv2/discussions)\r\n\r\n\r\n# Expected Behavior\r\n\r\nWhenever I analyze a sample the Al.txt file must be created in the analyses folder of that malware which contains the values that define whether the sample is malicious or benign.\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\nI have created a ML python module for CAPE sandbox as per the format given in the documentation for creating you own custom reporting module, it basically takes in the strings extracted from the malware and then runs them through different trained classifiers which in return generate an Al.txt file that is stored in the analyses folder of that particular malware. The results of the AI module were shown in the Web UI in the form of a pie chart describing its beingness or maliciousness. The module was very useful in detecting the nature of the malware based on its strings and worked perfectly fine. But recently whenever I analyze a sample no Al.txt is created in the analyses folder of the malware sample, even though I have created a separate section for it in reporting.conf file and installed every python dependency for the ML module, it even shows up as an imported reporting module when I python3 cuckoo.py -d. I have even installed the missing dependencies listed when python3 cuckoo.py -q is run, but still I am getting no results. Maybe it is due to an update which is preventing this to happen? I request to help me in this regard. Thank you\r\n\r\n\r\n![Picture1](https://user-images.githubusercontent.com/106651547/186078277-263fe443-a4fc-4f0f-9b2b-7845ef5f4fa4.png)\r\nHelloworld  module enabled and section created in reporting.conf\r\n![Picture2](https://user-images.githubusercontent.com/106651547/186078283-c0e85a01-2e37-4834-a64f-165ee53684b3.png)\r\nAnalyses folder of a sample analyzed recently that contains no Al.txt file\r\n![Picture3](https://user-images.githubusercontent.com/106651547/186078284-cfb58a27-2dc5-4fae-86be-766b4077c8f5.png)\r\nAnalyses folder of a sample analyzed previously that contains the Al.txt file\r\n![Picture4](https://user-images.githubusercontent.com/106651547/186078286-cef3d626-3573-4c97-b944-7045925ebd24.png)\r\nHelloworld module imported by CAPE as seen during debugging mode from reporting modules \r\n![Picture5](https://user-images.githubusercontent.com/106651547/186079200-722a6849-1b52-4679-b1d2-8778da240ffb.png)\r\nhelloworld.py file along with its .pkl files in modules folder\r\n\r\n## Steps to Reproduce## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Save the hello\r\n2. step 2\r\n3. you get it...\r\n\r\n## Context\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 16.04, Windows 10, macOS 10.12.3\r\n\r\n\nComment: Hello, the reporting module is not the problem in this case. as you miss file that should be created during execution. can you share the analysis log and sample?\nComment: [analysis.log](https://github.com/kevoreilly/CAPEv2/files/9400088/analysis.log)\r\nAnalysis Log File\r\nhttps://ufile.io/yuwxet83\r\nBe Careful ! This is the malware sample\nComment: i don't see it generate AI.txt neither in your log neither here https://capesandbox.com/analysis/300399/. so you need to RE the sample and see in which conditions it generates that file. as just run it as it is doesn't look like makes it happen\nComment: You are right I've searched it myself too cannot find AI.txt in it. I was troubleshooting myself too and the problem I've found is that my python script is working perfectly fine in a text editor / IDE but CAPE seems to just ignore it and donot even try to run it even it is imported. I've modified my code and reduced it to barebones but still CAPE wont run it. \nComment: well without see it i can't tell you what is wrong\nComment: I can share my python script along with classifier pickle files here so that you can try to replicate my behavior.\r\nHere you go https://ufile.io/f/3qyhj\r\nSimply place these files in the modules folder in within CAPEv2 and then create a section helloworld in reporting.conf and then enable it. Run an analysis if it runs correctly then you should get an AI.txt file within the analysis folder of that sample like this \r\n![Picture3](https://user-images.githubusercontent.com/106651547/186127056-315b817a-e7db-4e42-871e-0caab5b55eba.png)\r\n\nComment: next time share as zip\nComment: your module works just fine here.\r\n\r\n```\r\n/home/cape/.local/lib/python3.10/site-packages/sklearn/base.py:329: UserWarning: Trying to unpickle estimator DecisionTreeClassifier from version 0.24.0 when using version 1.1.2. This might lead to breaking code or invalid results. Use at your own risk. For more info please refer to:\r\nhttps://scikit-learn.org/stable/model_persistence.html#security-maintainability-limitations\r\n  warnings.warn(\r\n/home/cape/.local/lib/python3.10/site-packages/sklearn/base.py:329: UserWarning: Trying to unpickle estimator RandomForestClassifier from version 0.24.0 when using version 1.1.2. This might lead to breaking code or invalid results. Use at your own risk. For more info please refer to:\r\nhttps://scikit-learn.org/stable/model_persistence.html#security-maintainability-limitations\r\n  warnings.warn(\r\n/home/cape/.local/lib/python3.10/site-packages/sklearn/base.py:329: UserWarning: Trying to unpickle estimator FeatureHasher from version 0.24.0 when using version 1.1.2. This might lead to breaking code or invalid results. Use at your own risk. For more info please refer to:\r\nhttps://scikit-learn.org/stable/model_persistence.html#security-maintainability-limitations\r\n  warnings.warn(\r\n\r\nExtracted 552 strings from /opt/CAPEv2/storage/analyses/138/binary\r\n/home/cape/.local/lib/python3.10/site-packages/sklearn/base.py:329: UserWarning: Trying to unpickle estimator DecisionTreeClassifier from version 0.24.1 when using version 1.1.2. This might lead to breaking code or invalid results. Use at your own risk. For more info please refer to:\r\nhttps://scikit-learn.org/stable/model_persistence.html#security-maintainability-limitations\r\n  warnings.warn(\r\n/home/cape/.local/lib/python3.10/site-packages/sklearn/base.py:329: UserWarning: Trying to unpickle estimator BaggingClassifier from version 0.24.1 when using version 1.1.2. This might lead to breaking code or invalid results. Use at your own risk. For more info please refer to:\r\nhttps://scikit-learn.org/stable/model_persistence.html#security-maintainability-limitations\r\n  warnings.warn(\r\n/home/cape/.local/lib/python3.10/site-packages/sklearn/base.py:329: UserWarning: Trying to unpickle estimator FeatureHasher from version 0.24.1 when using version 1.1.2. This might lead to breaking code or invalid results. Use at your own risk. For more info please refer to:\r\nhttps://scikit-learn.org/stable/model_persistence.html#security-maintainability-limitations\r\n  warnings.warn(\r\n/home/cape/.local/lib/python3.10/site-packages/sklearn/base.py:329: UserWarning: Trying to unpickle estimator DecisionTreeClassifier from version 0.24.1 when using version 1.1.2. This might lead to breaking code or invalid results. Use at your own risk. For more info please refer to:\r\nhttps://scikit-learn.org/stable/model_persistence.html#security-maintainability-limitations\r\n  warnings.warn(\r\n/home/cape/.local/lib/python3.10/site-packages/sklearn/base.py:329: UserWarning: Trying to unpickle estimator FeatureHasher from version 0.24.1 when using version 1.1.2. This might lead to breaking code or invalid results. Use at your own risk. For more info please refer to:\r\nhttps://scikit-learn.org/stable/model_persistence.html#security-maintainability-limitations\r\n  warnings.warn(\r\n```\r\n\r\n```\r\nAI.txt\r\n[0.38, 0.0, 0.0]\r\n```\r\n\r\nensure that your user cape has python dependency `sklearn`\nComment: Wow that is some great news ! Can you share me the steps other than placing the files in the relevant folders that you did to make it work? Also where does this text file appear?\nComment: i just placed all your files inside of `modules/reporting/`. in processing, did you restart cape-processor after add your module?\nComment: you can reprocess any analysis with `poetry run python utils/process.py -r <task_id>`. check -h for more details\nComment: Yup the A.I module is now working but now another problem has occurred when I try to analyze a sample this error message is given. I know it is some sort of storage error but I don't know how to resolve it.\r\n![image](https://user-images.githubusercontent.com/106651547/186142720-f17b430e-28de-44ed-9628-156057bae913.png)\r\n\nComment: Out of disk space?\nComment: Maybe it was showing a msg before this in ubuntu root folder disk space low\nComment: But now it is showing this when I try to analyze a sample neither it is showing recently analyzed samples.\nComment: I think my tmp folder which contains Temporary directory containing the files uploaded through Cuckoo interfaces is full. If I clear would that effect my cape?\nComment: yes. Issue solved, the rest is your admin tasks",
+  "Title: Enable packet forwarding for IPv4\nBody: Always need to enable ip forwarding, so put it in the installation script.  \nComment: never need to enable it. rooter does that for you. why just not to use it?\nComment: If you do not enable IP forwarding, rooter is invalid.  \r\nIn documentation:  \r\nhttps://capev2.readthedocs.io/en/latest/installation/host/routing.html#using-per-analysis-network-routing  \r\n```r\r\nBoth global routing and per-analysis routing require ip forwarding to be enabled:\r\necho 1 | sudo tee -a /proc/sys/net/ipv4/ip_forward\r\n```\r\n\r\nWhat I did was add it to the installation script.  \nComment: ok you are right, i confused with another option, my bad\nComment: My bad description. Thank you for the merge.",
+  "Title: Updating docs\nBody: None\nComment: \u2764\ufe0f ",
+  "Title: sl cleanup\nBody: None",
+  "Title: Revert \"changed STAP.py to call self.stop to finish module and upload log\"\nBody: Reverts kevoreilly/CAPEv2#1094",
+  "Title: Revert \"changed STAP.py to call self.stop to finish module and upload log\"\nBody: Reverts kevoreilly/CAPEv2#1094; cccs-kevin corrected my PR, the aux.stop() was already called later in analyzer.py \nComment: 0 files changed",
+  "Title: changed STAP.py to call self.stop to finish module and upload log\nBody: the STAP module should call self.stop() before finishing self.run() to ensure the process is terminated and to upload the stap.log. If this is not done, the stap.log will not be collected because it is ignored under the FileCollector module.\nComment: @cccs-kevin tagging because you might be interested",
+  "Title: if stap enabled, self.stop should be called to finish and upload log\nBody: None",
+  "Title: Improving ugly code (that I wrote)\nBody: None",
+  "Title: human auxiliary module hangs on linux guest\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account acctivation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n- [x] I'm have checked [discussions section](https://github.com/kevoreilly/CAPEv2/discussions)\r\n\r\n\r\n# Expected Behavior\r\n\r\nWhen submitting tasks to a Linux guest, we should see that all of the auxiliary modules have been started successfully. However, it looks like a recent commit must have changed the behavior of the Linux Human module.\r\n\r\n# Current Behavior\r\n\r\n```\r\n2022-08-16 21:42:56,033 [root] DEBUG: Starting analyzer from: /tmpg75fte34\r\n2022-08-16 21:42:56,044 [root] DEBUG: Storing results at: /tmp/PFiiJLee\r\n2022-08-16 21:42:56,313 [root] INFO: Attempting to load module -- modules.auxiliary.filecollector - False\r\n2022-08-16 21:42:56,634 [root] INFO: Attempting to load module -- modules.auxiliary.human - False\r\n2022-08-16 21:42:56,746 [root] INFO: Attempting to load module -- modules.auxiliary.screenshots - False\r\n2022-08-16 21:42:57,361 [root] INFO: Attempting to load module -- modules.auxiliary.stap - False\r\n2022-08-16 21:42:57,418 [root] INFO: [<class \"modules.auxiliary.filecollector.FileCollector\">, <class \"modules.auxiliary.human.Human\">, <class \"modules.auxiliary.screenshots.Screenshots\">, <class \"modules.auxiliary.stap.STAP\">]\r\n2022-08-16 21:42:57,421 [root] INFO: Attempting to start module -- <class \"modules.auxiliary.filecollector.FileCollector\">\r\n2022-08-16 21:42:57,432 [modules.auxiliary.filecollector] INFO: FileCollector run started\r\n2022-08-16 21:42:57,817 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir mnt\r\n2022-08-16 21:42:57,835 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir boot\r\n2022-08-16 21:42:57,907 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir media\r\n2022-08-16 21:42:57,943 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir sbin\r\n2022-08-16 21:42:57,951 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir etc\r\n2022-08-16 21:43:00,218 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir root\r\n2022-08-16 21:43:01,431 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir tmpg75fte34\r\n2022-08-16 21:43:01,497 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir lost+found\r\n2022-08-16 21:43:01,525 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir bin\r\n2022-08-16 21:43:01,537 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir cdrom\r\n2022-08-16 21:43:01,544 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir libx32\r\n2022-08-16 21:43:01,551 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir tmp\r\n2022-08-16 21:43:01,712 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir srv\r\n2022-08-16 21:43:01,748 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir home\r\n2022-08-16 21:43:09,812 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir snap\r\n2022-08-16 21:43:39,457 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir lib32\r\n2022-08-16 21:43:39,463 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir opt\r\n2022-08-16 21:43:39,475 [modules.auxiliary.filecollector] INFO: FileCollector setup complete\r\n2022-08-16 21:43:39,542 [root] INFO: Attempting to start module -- <class \"modules.auxiliary.human.Human\">\r\n2022-08-16 21:43:48,251 [modules.auxiliary.filecollector] INFO: Error dumping file from path \"/home/ubuntu/.local/share/gvfs-metadata/root.0VX5Q1\": [Errno 2] No such file or directory: \"/home/ubuntu/.local/share/gvfs-metadata/root.0VX5Q1\"\r\n2022-08-16 21:43:49,371 [lib.common.results] INFO: File /home/ubuntu/.local/share/gvfs-metadata/root-08ceb0c9.log size is 32768, Max size: 100000000\r\n2022-08-16 21:43:49,571 [lib.common.results] INFO: File /home/ubuntu/.local/share/gvfs-metadata/root size is 64, Max size: 100000000\r\n```\r\n\r\nAbove is what the output looks like before fixing the human module - you can see that their should be some response that the Human module has either been initialized or returned. And then immediately afterwards we should see that the next module has been started/initialized; regardless of whether human_linux is enabled or not.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Submit task to Linux guest (Ubuntu 20.04)\r\n2. Once task is completed/processed, show the log\r\n3. Should see that no other modules were loaded after FileCollector/Human module was attempted\r\n\r\n## Context\r\n\r\nThe answer is pretty straightforward though once you look at the __init__ of the Human class...\r\n\r\n```\r\nclass Human(Thread, Auxiliary):\r\n\r\n...\r\n\r\n    def __init__(self, options, config):\r\n        Auxiliary.__init__(self, options, config)\r\n        self.config = config\r\n        self.enabled = self.config.human_linux\r\n        self.do_run = self.enabled and HAVE_GUI_LIBS\r\n\r\n        Thread.__init__(self)\r\n        self.initComplete = False\r\n        self.thread = Thread(target=self.run)\r\n        self.thread.start()\r\n        while not self.initComplete:\r\n            self.thread.join(0.5)\r\n\r\n        log.info(\"Human init complete\")\r\n```\r\n\r\nWhere the while loop starts it waits for self.initComplete to be modified from False to True during the thread that starts self.run.\r\n\r\nThe bug happens if human_linux is set to False, which sets self.do_run to False as well - this is expected behaviour - but it causes it to break at the start of run because the if statement that checks self.enabled does not set init.Complete to True.\r\n\r\nThis causes the Human module to hang and then never initialize the other auxiliary modules.\r\n\r\nThe fix would be to change these parts...\r\n```\r\nclass Human(Thread, Auxiliary):\r\n\r\n    ...\r\n\r\n    def __init__(self, options, config):\r\n        ...\r\n        while not self.initComplete:\r\n            pass\r\n        ...\r\n```\r\n\r\n```\r\n    def run(self):\r\n        ...\r\n        if not self.enabled:\r\n            self.initComplete = True\r\n            return False\r\n        ...\r\n```\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\r\nresubmitted because of missing format parts\nComment: @micahflack: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: Hi micahflack, thanks for bringing this issue to our attention, we will look into it and get back to you.\nComment: Hello thanks, but if you propose solution, we would like to see more PR than issue ;) that saves times to everyone\nComment: added your suggestion here https://github.com/kevoreilly/CAPEv2/commit/42f6ca50d692752ce311fc3bdf93b3843ae0c66b\nComment: @micahflack so is this solved or i did miss something? if yes please PR\nComment: I just forgot to do the PR is all, my bad\nComment: thanks",
+  "Title: human auxiliary module hangs on linux guests\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n- [x] I'm have checked [discussions section](https://github.com/kevoreilly/CAPEv2/discussions)\r\n\r\n\r\n# Expected Behavior\r\n\r\nWhen submitting tasks to a Linux guest, we should see that all of the auxiliary modules have been started successfully. However, it looks like a recent commit must have changed the behavior of the Linux Human module.\r\n\r\n# Current Behavior\r\n\r\n```\r\n2022-08-16 21:42:56,033 [root] DEBUG: Starting analyzer from: /tmpg75fte34\r\n2022-08-16 21:42:56,044 [root] DEBUG: Storing results at: /tmp/PFiiJLee\r\n2022-08-16 21:42:56,313 [root] INFO: Attempting to load module -- modules.auxiliary.filecollector - False\r\n2022-08-16 21:42:56,634 [root] INFO: Attempting to load module -- modules.auxiliary.human - False\r\n2022-08-16 21:42:56,746 [root] INFO: Attempting to load module -- modules.auxiliary.screenshots - False\r\n2022-08-16 21:42:57,361 [root] INFO: Attempting to load module -- modules.auxiliary.stap - False\r\n2022-08-16 21:42:57,418 [root] INFO: [<class \"modules.auxiliary.filecollector.FileCollector\">, <class \"modules.auxiliary.human.Human\">, <class \"modules.auxiliary.screenshots.Screenshots\">, <class \"modules.auxiliary.stap.STAP\">]\r\n2022-08-16 21:42:57,421 [root] INFO: Attempting to start module -- <class \"modules.auxiliary.filecollector.FileCollector\">\r\n2022-08-16 21:42:57,432 [modules.auxiliary.filecollector] INFO: FileCollector run started\r\n2022-08-16 21:42:57,817 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir mnt\r\n2022-08-16 21:42:57,835 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir boot\r\n2022-08-16 21:42:57,907 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir media\r\n2022-08-16 21:42:57,943 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir sbin\r\n2022-08-16 21:42:57,951 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir etc\r\n2022-08-16 21:43:00,218 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir root\r\n2022-08-16 21:43:01,431 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir tmpg75fte34\r\n2022-08-16 21:43:01,497 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir lost+found\r\n2022-08-16 21:43:01,525 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir bin\r\n2022-08-16 21:43:01,537 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir cdrom\r\n2022-08-16 21:43:01,544 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir libx32\r\n2022-08-16 21:43:01,551 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir tmp\r\n2022-08-16 21:43:01,712 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir srv\r\n2022-08-16 21:43:01,748 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir home\r\n2022-08-16 21:43:09,812 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir snap\r\n2022-08-16 21:43:39,457 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir lib32\r\n2022-08-16 21:43:39,463 [modules.auxiliary.filecollector] INFO: FileCollector trying to watch dir opt\r\n2022-08-16 21:43:39,475 [modules.auxiliary.filecollector] INFO: FileCollector setup complete\r\n2022-08-16 21:43:39,542 [root] INFO: Attempting to start module -- <class \"modules.auxiliary.human.Human\">\r\n2022-08-16 21:43:48,251 [modules.auxiliary.filecollector] INFO: Error dumping file from path \"/home/ubuntu/.local/share/gvfs-metadata/root.0VX5Q1\": [Errno 2] No such file or directory: \"/home/ubuntu/.local/share/gvfs-metadata/root.0VX5Q1\"\r\n2022-08-16 21:43:49,371 [lib.common.results] INFO: File /home/ubuntu/.local/share/gvfs-metadata/root-08ceb0c9.log size is 32768, Max size: 100000000\r\n2022-08-16 21:43:49,571 [lib.common.results] INFO: File /home/ubuntu/.local/share/gvfs-metadata/root size is 64, Max size: 100000000\r\n```\r\n\r\nAbove is what the output looks like before fixing the human module - you can see that their should be some response that the Human module has either been initialized or returned. And then immediately afterwards we should see that the next module has been started/initialized; regardless of whether human_linux is enabled or not.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Submit task to Linux guest (Ubuntu 20.04)\r\n2. Once task is completed/processed, show the log\r\n3. Should see that no other modules were loaded after FileCollector/Human module was attempted\r\n\r\n## Context\r\n\r\nThe answer is pretty straightforward though once you look at the __init__ of the Human class...\r\n\r\n```\r\nclass Human(Thread, Auxiliary):\r\n\r\n...\r\n\r\n    def __init__(self, options, config):\r\n        Auxiliary.__init__(self, options, config)\r\n        self.config = config\r\n        self.enabled = self.config.human_linux\r\n        self.do_run = self.enabled and HAVE_GUI_LIBS\r\n\r\n        Thread.__init__(self)\r\n        self.initComplete = False\r\n        self.thread = Thread(target=self.run)\r\n        self.thread.start()\r\n        while not self.initComplete:\r\n            self.thread.join(0.5)\r\n\r\n        log.info(\"Human init complete\")\r\n```\r\n\r\nWhere the while loop starts it waits for self.initComplete to be modified from False to True during the thread that starts self.run.\r\n\r\nThe bug happens if human_linux is set to False, which sets self.do_run to False as well - this is expected behaviour - but it causes it to break at the start of run because the if statement that checks self.enabled does not set init.Complete to True.\r\n\r\nThis causes the Human module to hang and then never initialize the other auxiliary modules.\r\n\r\nThe fix would be to change these parts...\r\n```\r\nclass Human(Thread, Auxiliary):\r\n\r\n    ...\r\n\r\n    def __init__(self, options, config):\r\n        ...\r\n        while not self.initComplete:\r\n            pass\r\n        ...\r\n```\r\n\r\n```\r\n    def run(self):\r\n        ...\r\n        if not self.enabled:\r\n            self.initComplete = True\r\n            return False\r\n        ...\r\n```\r\n\nComment: @micahflack: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.",
+  "Title: If arch = [x64], filter in\nBody: As per https://github.com/kevoreilly/CAPEv2/pull/1085#discussion_r947088177",
+  "Title: fix pending\nBody: can't use include_hashes as the join leaves out url tasks because they don't have a record in Sample table",
+  "Title: Updated docs\nBody: Trying to make thing easier to understand while reading the docs. ",
+  "Title: Use lists for task archs so that files and urls can have archs and tags\nBody: I believe this PR solves the issue that https://github.com/kevoreilly/CAPEv2/pull/1084 is trying to solve at its root.",
+  "Title: Fix URL submission\nBody: proposed solution for url submissions\nComment: Marks task as running but doesn't start task \nComment: This solution works for url submissions which currently require a machine to be selected at submission. \nComment: Testing",
+  "Title: Improve: virt-clone is enough.\nBody: It is enough to use virt-clone only. There is no need to copy disk files, which costs too much time and space.  \r\nAnd now config has \"snapshot\" and \"arch\".  ",
+  "Title: Updated docs\nBody: Added additional info based on #1079.\r\n\r\n- Mentioned cape2.sh base and all. Specified main difference between them. \r\n- Added additional notes and instructions for KVM-qemu.sh. \r\n- Added a warning about the <WOOT>s.\r\n\r\n",
+  "Title: Fix vt summary\nBody: None",
+  "Title: Add de4dot support and fix issues with handling of extracted files \nBody: See the individual commit messages for a clear breakdown of the changes.\nComment: THANK YOU \u2764\ufe0f \nComment: @tbeadle how do you install it?\r\n\r\n```\r\napt search de4dot\r\nSorting... Done\r\nFull Text Search... Done\r\nlibdnlib-cil-dev/focal,focal 2.1-2 all\r\n  .NET module/assembly reader/writer library for Mono - devel package\r\n\r\nlibdnlib2.1-cil/focal,focal 2.1-2 all\r\n  .NET module/assembly reader/writer library for Mono\r\n```\nComment: ```\r\napt install libgdiplus libgif7 libmono-accessibility4.0-cil libmono-ldap4.0-cil libmono-posix4.0-cil libmono-sqlite4.0-cil libmono-system-componentmodel-dataannotations4.0-cil libmono-system-data4.0-cil libmono-system-design4.0-cil libmono-system-drawing4.0-cil\r\n  libmono-system-enterpriseservices4.0-cil libmono-system-ldap4.0-cil libmono-system-runtime-serialization-formatters-soap4.0-cil libmono-system-runtime4.0-cil libmono-system-transactions4.0-cil libmono-system-web-applicationservices4.0-cil\r\n  libmono-system-web-services4.0-cil libmono-system-web4.0-cil libmono-system-windows-forms4.0-cil libmono-webbrowser4.0-cil\r\n\r\nwget http://archive.ubuntu.com/ubuntu/pool/universe/d/de4dot/de4dot_3.1.41592.3405-2_all.deb\r\nsudo dpkg -i de4dot_3.1.41592.3405-2_all.deb\r\n\r\n```\r\n\r\nstrange that i don't have it in sources",
+  "Title: Updated docs\nBody: I have updated the documentation in several sections. I tried to make the commits as self-explanatory as they get. \nComment: I think Github got desynchronized at some point. The 5 older commits (from Aug 7, 2022) have been already merged. Specifically: \r\n\r\n[Added documentation for guest's Python installation](https://github.com/kevoreilly/CAPEv2/pull/1079/commits/ba7e9177816e3124b0bba8cc5c85d888fd46d7ab)\r\n\r\n\r\n\r\n[Added instructions to disable firewall and automatic update on Win 10](https://github.com/kevoreilly/CAPEv2/pull/1079/commits/fd2cb3e46618a42bb2a3553ff3d5be437d82d410)\r\n \r\n[Supressed underlining too short](https://github.com/kevoreilly/CAPEv2/pull/1079/commits/90aaaaad68f7e9af21bdd006debb387284300561)\r\n\r\n\r\n[Added instructions for setting a Static IP in Win10](https://github.com/kevoreilly/CAPEv2/pull/1079/commits/3b44499c7852eb7d0ab1dd291b8bbceef273055d)\r\n\r\n\r\n[Merge branch 'kevoreilly:master' into master](https://github.com/kevoreilly/CAPEv2/pull/1079/commits/7bf21ab25cf58850d07c15ea24bde48d6709b6f5)\r\n\r\nThey are already part of CAPE main repo. \r\n\r\nI don't know what's going on.\nComment: Wow thanks a lot!\nComment: > Wow thanks a lot!\r\n\r\nYou are most welcome! Given that I'm installing CAPE myself, I'll try to update the docs as much as I can so as to make the installation and usage of CAPE as friendly (and documented) as possible!\r\n\r\nDo not hesitate to review all my commits and reach me out if there is any mistake. Both you and @doomedraven :)\nComment: thank you",
+  "Title: If a dead machine exists, we should delete from all tables\nBody: - `abstracts.py`\r\n    - Added a `delete_machine` method to the Machinery class\r\n    - Add logic to `availables` method so that relevant available machines can be counted\r\n- `database.py`\r\n    - Slight modifications to the `delete_machine()` method\r\n        - Return True if machine exists and was deleted. If machine does not exist, return False\r\n        - The only use of this method elsewhere is https://github.com/kevoreilly/CAPEv2/blob/40c2624ed2d938dc23cc8129f53236bba1350eb7/utils/dist.py#L1341\r\n    - Add ability for `count_machines_available()` to find specific machines based on label, platform, tags, or arch\r\n- `scheduler.py`\r\n    - Set `dead_machine = True` if the guest timed out to start when assigned a task\r\n    - Since the machine is dead, we should delete the VM from the `machines` table as well as the `guests` \r\ntable, so that the machine cannot be assigned again in the future\r\n    - Before we acquire a machine, we should check if there is a relevant available machine. This comes into play after a dead machine is deleted from the DB and a task's analysis has already been launched.\r\n- `az.py`\r\n    - Use the overload of `delete_machine()` to delete the VM from the database table as well as from the virtual machine scale set\r\n    - Use the overload of `availables()` to check if a virtual machine scale set is in the \"wait\" phase\r\n\r\n\r\nCurrently testing this in production",
+  "Title: Bump django from 4.0.6 to 4.0.7\nBody: Bumps [django](https://github.com/django/django) from 4.0.6 to 4.0.7.\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/django/django/commit/e9e9729846dc24dc73264341094ed51f2c8ac3dc\"><code>e9e9729</code></a> [4.0.x] Bumped version for 4.0.7 release.</li>\n<li><a href=\"https://github.com/django/django/commit/b7d9529cbe0af4adabb6ea5d01ed8dcce3668fb3\"><code>b7d9529</code></a> [4.0.x] Fixed CVE-2022-36359 -- Escaped filename in Content-Disposition header.</li>\n<li><a href=\"https://github.com/django/django/commit/2eb7dedd8f40f911d581d4e7619c046cefe203ce\"><code>2eb7ded</code></a> [4.0.x] Adjusted version 4.0.7 release notes.</li>\n<li><a href=\"https://github.com/django/django/commit/baeffe8c12719b5529970b85bc47792b6c6df065\"><code>baeffe8</code></a> [4.0.x] Ignored 080359c4c5242ef69ac8c58c92f240e71121ffd7 formatting changes i...</li>\n<li><a href=\"https://github.com/django/django/commit/080359c4c5242ef69ac8c58c92f240e71121ffd7\"><code>080359c</code></a> [4.0.x] Fixed warnings per flake8 5.0.0.</li>\n<li><a href=\"https://github.com/django/django/commit/1a9f079b7e43c0045f380729ba5fd7cfaa137bd5\"><code>1a9f079</code></a> [4.0.x] Fixed collation tests on MySQL 8.0.30+.</li>\n<li><a href=\"https://github.com/django/django/commit/b8b449fe203a3d91a7fb8eda2426ba36ebc3692d\"><code>b8b449f</code></a> [4.0.x] Adjusted release notes for 4.0.7 and 3.2.15.</li>\n<li><a href=\"https://github.com/django/django/commit/2c2b748d95a8284edf54e80c979ffa2170eaadba\"><code>2c2b748</code></a> [4.0.x] Added release date and stub release notes for 4.0.7 and 3.2.15 releases.</li>\n<li><a href=\"https://github.com/django/django/commit/f78b18f9c815c63a734ffa22ea9c57a2182b6541\"><code>f78b18f</code></a> [4.0.x] Fixed <a href=\"https://github-redirect.dependabot.com/django/django/issues/33820\">#33820</a> -- Doc'd &quot;true&quot;/&quot;false&quot;/&quot;null&quot; caveat for JSONField key ...</li>\n<li><a href=\"https://github.com/django/django/commit/48501c84ad54971af25c10b3544aee91b6275c86\"><code>48501c8</code></a> [4.0.x] Fixed RelatedGeoModelTest.test08_defer_only() on MySQL 8+ with MyISAM...</li>\n<li>Additional commits viewable in <a href=\"https://github.com/django/django/compare/4.0.6...4.0.7\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=django&package-manager=pip&previous-version=4.0.6&new-version=4.0.7)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language\n- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language\n- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language\n- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language\n\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: General Question About CAPEv2 Rest API / Azure\nBody: I have been reading over the documentation on CAPEv2 Rest API. This definitely not an urgent inquiry so no rush for an answer on this topic. I want to automate submission of analysis from the CAPEv2 sandbox client using Rest API. Is this possible? 1. I have setup an Office 365 mail email rule in our environment that will send certain marked emails to a SECOPS mailbox.  2. I have setup a logic app to pull the attachment of these emails and send them to an Azure Storage Block Blob. 3. Setup an automated script to check for new attachments on the Storage block blob for the CAPEv2 sandbox client to pull down the attachments to a local folder residing on the Sandbox client. All this works great but from the CAPEv2 sandbox client I want to auto submit those attachments for analysis with argument to the REST API. I was looking at the submit.py script as a possible option but was not sure about it. There is a --remote switch for the PY script I know but is this the best option handle this task or should I use curl? Like I said just a general question no rush on this.  \nComment: @WVAuditors: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.",
+  "Title: refactor: use `timeit.default_timer`\nBody: ...instead of using `datetime.datetime.now()` or `time.time()`",
+  "Title: Missing signatures compared to the public instance\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account acctivation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n- [x] I'm have checked [discussions section](https://github.com/kevoreilly/CAPEv2/discussions)\r\n\r\n\r\n# Expected Behavior\r\n\r\nI tried to analyze [this sample](https://capesandbox.com/analysis/297569) in a new private cape installation.\r\nI expected it to show the same signatures.\r\n\r\n![cape-correct](https://user-images.githubusercontent.com/70196933/184103700-ccd87f31-091c-4872-9476-af52b0d92977.jpg)\r\n\r\n\r\n# Current Behavior\r\n\r\n![screen-cape](https://user-images.githubusercontent.com/70196933/184101014-8c4ddd0b-cb34-4aa5-a5c3-79422579b611.jpg)\r\n\r\n# Failure Information (for bugs)\r\n\r\nI tried to reload the signatures several times through community.py with argument -waf but unfortunately it seems that they are not seen.\r\nI tried to change the configuration, reinstall the os and cape several times, but the problem is not solved.\r\n\r\n## Steps to Reproduce\r\n\r\nAnalyze one sample in new fresh installation.\r\n\r\n## Context\r\n\r\nI followed the installation and configuration instructions.\r\nthey seem to be seen also from the web side less signature in the status field than in the public version.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       |  commit ab30a65ef1aa71a068a811b1501c57abe90598ad\r\n| OS version       |  Ubuntu 22.04.1 LTS\r\n\r\n## Failure Logs\r\n\r\n![cape-log](https://user-images.githubusercontent.com/70196933/184104521-a0fc33de-7626-4830-b3db-223d9da71ac7.jpg)\r\n\r\n\nComment: Hello, thats because the detonation is different, maybe is some VM problems that gives you different output or less output. or less time executed in vm\nComment: Hi, thank you for your reply.\r\nI am aware that different configurations of the vm can change the behavior but the signature for dynamic load is not triggered either and in the behavior are the api LdrGetProcedureAddress, LdrLoadDll.\r\nBy checking [the rule](https://github.com/kevoreilly/community/blob/master/modules/signatures/dynamic_function_loading.py)  the signature should be flagged.\r\nAs you can see in these two analyses on the public instance (of the same file, just check sha256) the signatures change. \r\n[OLD](https://capesandbox.com/analysis/297569/) and [NEW](https://capesandbox.com/analysis/297999/ )\r\n\r\n\r\nI would like to contribute to the cape project by reporting any bugs I find and proposing new features.\r\n\r\nThank you for your attention.\nComment: @kevoreilly could it be related to the recent LdrLoadDll that we spoke in PM?\nComment: Nah that was specific to SL loading ntdll copy and has monitor workaround.\r\n\r\nAs I said before signatures are secondary to the behavior log. The process tree is also derived from the behavior log. Look at how they differ for those two jobs!\r\n\r\n![image](https://user-images.githubusercontent.com/22219888/184165418-64444a5d-b49d-4167-b450-e72b1a0062f0.png)\r\n\r\n![image](https://user-images.githubusercontent.com/22219888/184165582-36ffc714-5b95-4322-b5ce-d25a8ebbe411.png)\r\n\r\nSo the question here is really about massively differing detonations from the same sample. My first guess would be that the first job (297569) has (internet/vpn) route 'Italy' where the latter (297999) has route 'None' so couldn't download further stages, but that's at a glance. My point being this isn't really about signatures.\nComment: good point\nComment: @kevoreilly  [New analysis](https://capesandbox.com/analysis/298014/) with route on italy has the same behavior as the no route.\r\n\r\nOLD\r\n![cape-old](https://user-images.githubusercontent.com/70196933/184175339-0e772354-8ad4-4194-ade5-9789bfa10964.png)\r\n\r\nNEW\r\n![cape-new](https://user-images.githubusercontent.com/70196933/184175363-e04a0763-dbf0-404a-8971-f90d45c9a8dc.png)\r\n\r\nif we compare the two behaviors with the signature in the old analysis we see that the api chain is about the same.\r\n\r\n![cape](https://user-images.githubusercontent.com/70196933/184175441-ba5bc6b8-e46e-481c-8b1a-5be80f98ef66.png)\r\n\r\n\r\nChecking in the behavior section the signature api dynamic_function_loading.py is present but the signature is not shown.\r\nIf the api are present shouldn't the signature also be shown?\r\nisn't it more likely to be two problems one on the detonation and one on the signature?\r\n\r\n**P.S.** \r\nChecking the behavioral log manually, the recent analyses all show the same problem.\r\nI can try checking the other signatures manually.\nComment: Yes you are right, the presence of the apis in the log should result in the signature firing.\r\n\r\nLooks like a slew of signature errors upon reprocessing... So I take it back! There is indeed a signature problem.\nComment: I will  check it after gym\nComment: Cheers doomed\nComment: I recommend also verifying that there are no problems in detonation.\r\nChecking some analysis, from two days ago, in them show problems with thread follow and some anti-sandbox techniques, some samples do not detonate correctly and do not show all behavior, I investigate the problem and open another issues when I find out more.\r\n\r\nTo propose new bypasses and signatures, do I have to use issues or is it better to use discussions ?\r\n\r\nThank you for your attention.\nComment: Issues is fine - just create a new issue for each sample/family that has detonation problems and ideally share a sample. I spend a lot of my life trying to solve detonation problems but am always grateful to have the information.\nComment: Open issue as those requieres solution\n\nEl jue, 11 ago 2022 18:13, Simone C ***@***.***> escribi\u00f3:\n\n> I recommend also verifying that there are no problems in detonation.\n> Checking some analysis, from two days ago, in them show problems with\n> thread follow and some anti-sandbox techniques, some samples do not\n> detonate correctly and do not show all behavior, I investigate the problem\n> and open another issues when I find out more.\n>\n> To propose new bypasses and signatures, can issues be used or is it better\n> to open a discussion?\n>\n> Thank you for your attention.\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1072#issuecomment-1212199531>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3YJ6NEZDMR2SNYTUPDVYURDXANCNFSM56HPQZYQ>\n> .\n> You are receiving this because you commented.Message ID:\n> ***@***.***>\n>\n\nComment: so signature itself works just fine, but for some reason even forcing it to return True, it not stored to mongo\nComment: @simone-co you was right, there was bug in recent update. it wasn't matching properly `on_complete`.do git pull and test it please. it works now if i reprocess samples\nComment: update community with `python3 utils/community.py -waf`\nComment: @doomedraven \r\nHi, trying in the public instance would seem to work fine.\r\nI will try on a new cape installation shortly. \r\n\r\nThanks.\nComment: @doomedraven \r\nIn my cape instance the signature problem remains, in the behaviour there are calls to apis but signature not firing.\r\n![cape-signature](https://user-images.githubusercontent.com/70196933/184361531-17d9459a-861f-4b07-a074-ece31189f479.png)\r\n![cape-handle](https://user-images.githubusercontent.com/70196933/184361541-1bc5d4b1-6153-4a1d-a984-644ae609f25d.png)\r\n\r\nAnd it also presents a crash related to extract_overlay_data. \r\n![cape-error](https://user-images.githubusercontent.com/70196933/184360647-49310087-673e-4b7c-a131-1f439c4dea72.png)\r\n\r\nNote that in the public instance the sample detonates only with vpn italy, but not with route italy (no vpn).\r\nI'm italian and server is in italy but it no detonate correctly.\r\n\r\nThe vm I configured is currently invisible to pafish (except for rdtsc vmexit, new pafish version is with sleep).\r\n![pafish](https://user-images.githubusercontent.com/70196933/184360727-18cb5d29-3003-47af-8de4-4b4f84f6cd7c.png)\r\n\r\nI am continuing to investigate the problem to provide more information.\r\n\r\nThank you.\nComment: pafish is dead, use al-khaser for antivm testing ;)\r\n\r\nabout signature that is strange\nComment: @TheMythologist does it sound to you the error of the key in `process_overlay_file`? i see there is `self.key`\nComment: @simone-co did you restart cape-processor/process.py after update? did you update community repo too?\nComment: > @TheMythologist does it sound to you the error of the key in `process_overlay_file`? i see there is `self.key`\n\nYup I should have used `dict.get` instead (probably because extract_overlay us disabled in config file)\nComment: > @simone-co did you restart cape-processor/process.py after update? did you update community repo too?\r\n\r\nYes, I restart all cape's services every time after update and I do the same with community.\r\nI'll update cape soon.\nComment: hm now im not really sure what is wrong, i just tested resubmitting sample instead of reprocess it and it works here. maybe try to add some debug statements in that signature `on_complete`\nComment: any update here?\nComment: @doomedraven \r\nHi, I'm luca the colleague of simone.co.\r\nI apologize for the delayed reply.\r\n\r\nWe tried to do some debugging and all signatures seem to be running correctly.\r\n(the conditions are executed correctly and also on_complete)\r\nBut, unfortunately, the signature is not shown yet.\r\nSimone and I are continuing to investigate the problem.\r\n\r\nThanks.\nComment: np, thanks, let us know if you spot what is wrong\nComment: you can use `process.py -r X -sig -sn <signame>` to debug uniq sig\r\n\nComment: now i found case where signature is matched but cape says it not matched, investigating\nComment: i just pushed fix for my case, please do git pull and try again\nComment: ok, we'll test soon\nComment: @doomedraven\r\nHi, the problem is not solved and has also reappeared on the public instance.\r\n\r\nwe can see it with the analysis.\r\nhttps://capesandbox.com/analysis/311663/\r\n\r\nLet's see the overview.\r\n![overview](https://user-images.githubusercontent.com/108698184/191257649-acda7b4d-b477-4c18-b7b8-5be134fbc3b6.PNG)\r\n\r\nThe signature for dynamic loading not firing.\r\n(https://github.com/kevoreilly/community/blob/master/modules/signatures/dynamic_function_loading.py)\r\n\r\nIn behaviour log we see LdrGetProcedureAddress and LdrLoadDll .\r\n![behaviour](https://user-images.githubusercontent.com/108698184/191257714-a39dfcc5-3075-47b8-bc6d-f88f55b57e8d.PNG)\r\n\r\nWe continue to investigate.\r\n\r\nLuca.\nComment: ![Screenshot 2022-09-20 at 14 36 08](https://user-images.githubusercontent.com/1856495/191259089-893cf43f-2f09-4b52-aaa0-25ce9882a056.png)\r\nyour job, cape not always on latest, depends how much work we have, just pulled all updates and reprocessed and i see it. I also just in case resubmitted it and see it to not reprocess https://capesandbox.com/analysis/311680/\nComment: @doomedraven Yes, the problem now is also solved on our private server, I apologize for assuming that the public instance was updated, sorry.\r\n\r\nLuca.\r\n\nComment: glad that is solved, so yes the bug that i found last week was somehow related, not sure how it was working before with that bug %). let me know if you find any other problem. closing this one",
+  "Title: feat: separate priority for start and stop\nBody: None",
+  "Title: Update admin.py - remove() -> delete_one()\nBody: remove() is deprecated, switched to delete_one()  (cape_cleanup.py used delete_one() but looks like that was removed in a recent release)\nComment: Thanks ",
+  "Title: Bugfix for correctly using the output that the rooter returns\nBody: The `rooter()` method returns a JSON of `{\"output\": \"blah\", \"exception\": \"blah\"}`. Therefore everywhere we were calling it as True or False, it was always True.",
+  "Title: fix: typo in function signature_matched\nBody: None",
+  "Title: Update LokiBot to handling .x section not be xored\nBody: I found a new LokiBot sample, and it's .x section not be xored.  \r\nYou can test it by this sample: e6178c1a6ef5a907b991674d7b59f97fe62482bd038cb382fbbeae0ed038a453  \nComment: Much appreciated \u2764\ufe0f ",
+  "Title: ci: update workflows\nBody: Update python-package.yml job format to run only on pushes to master (most PRs made are from their own forks and we won't have write permission to their branches)",
+  "Title: Guacamole support\nBody: CAPE web updates for initial Guacamole support. Requires guac-session, which is not integrated into CAPE currently.\nComment: Check latest  commits\n\nOn Wed, Aug 10, 2022 at 8:23 AM doomedraven ***@***.***>\nwrote:\n\n> ***@***.**** commented on this pull request.\n> ------------------------------\n>\n> In conf/cuckoo.conf\n> <https://github.com/kevoreilly/CAPEv2/pull/1065#discussion_r942383525>:\n>\n> > @@ -183,3 +183,11 @@ enabled = off\n>  path = /mnt/tmpfs/\n>  # in mb\n>  freespace = 2000\n> +\n> +[guacamole]\n>\n> i will move this to web.confnlater\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/pull/1065#pullrequestreview-1068182159>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AB3X3YDBBAYORFMTCUALN2LVYONLHANCNFSM56CLMZSA>\n> .\n> You are receiving this because you authored the thread.Message ID:\n> ***@***.***>\n>\n-- \nLorenzo\n\n\u201cHappiness is not the absence of problems, but the ability to deal with\nthem.\" - Albert Einstein\n\nComment: im watching all commings, but just didn't had time to test, do you have tip on integrate quickly quac-session?\nComment: Clone repo. Use poetry for dependencies.. Look in extra folder for configs samples and systemd files. dev server scripts are in root. Sample dotenv file in root. \r\n\r\nI don't recall if I needed any apt packages for the python packages to install.\r\n\r\nYou need to allow your browser to open a new tab.\nComment: check sessions in middle ware\nComment: Poetry for dependency. Look in extra folder for configs samples and\nsystemd. dev server scripts are in root. Sample dotenv file in root.\n\n\n\nOn Wed, Aug 10, 2022 at 4:14 PM doomedraven ***@***.***>\nwrote:\n\n> im watching all commings, but just didn't had time to test, do you have\n> tip on integrate quickly quac-session?\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/pull/1065#issuecomment-1211218689>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AB3X3YE3FMIYE3JTLCPJ6ELVYQERTANCNFSM56CLMZSA>\n> .\n> You are receiving this because you authored the thread.Message ID:\n> ***@***.***>\n>\n-- \nLorenzo\n\n\u201cHappiness is not the absence of problems, but the ability to deal with\nthem.\" - Albert Einstein\n",
+  "Title: Don't allow 7z to ask questions.\nBody: If there are multiple files with the same name but in different\r\ndirectories within the archive, then using 'e' mode for 7z will prompt\r\nthe user with what to do. It blocks execution waiting for user input.\r\nUse the \"-y\" flag to answer yes to all questions.",
+  "Title: correct typo in quarantine case\nBody: a typo prevented submission of quarantined files\nComment: thanks",
+  "Title: Update LokiBot to extract more url\nBody: This update can extract all url in LokiBot.  \r\nYou can test it by this sample: b746f7a8313da0ee4bff88f56de64fe4062d485b1ee83c39ef5c86fbafe0b98d.  \nComment: Thank you \u2764\ufe0f ",
+  "Title: Update bug_report.md\nBody: we can remove those lines as auto-closing issues is working.",
+  "Title: Testing auto-closing of issues\nBody: no issue template!\nComment: @r0ny123: hello! :wave:\n\nThis issue is being automatically closed because it does not follow the issue template.\n\n This is open source project!\n\t So please apreciate our time that we sacrify from other thing that we could enjoy, instead of asking boring things over and over.\nComment: Amazing Rony, thanks\nComment: Aye thanks ",
+  "Title: fix issues with bug_report.md\nBody: None",
+  "Title: updated to new issue template workflow\nBody: None",
+  "Title: Test \nBody: I don't know how to read\nComment: it doesn't work yet for some reason, not sure why. need to test it, see my issue :D closing this as will do experiments on mine one ;) \nComment: Oh yeah, just noticed your one.",
+  "Title: test template haters issue\nBody: crap x doesn't work, i don't know why. fix your shit xD\r\n\r\nTest edit\nComment: template ignoring workflow doesn't work hm",
+  "Title: Adding configuration for dns server\nBody: Closes https://github.com/kevoreilly/CAPEv2/issues/1053",
+  "Title: Updated docs\nBody: - [Added instructions for setting a Static IP in Win10](https://github.com/RazviOverflow/CAPEv2/commit/3b44499c7852eb7d0ab1dd291b8bbceef273055d)\r\n\r\n\r\n- [Supressed underlining too short](https://github.com/RazviOverflow/CAPEv2/commit/90aaaaad68f7e9af21bdd006debb387284300561)\r\n\r\n\r\n- [Added instructions to disable firewall and automatic update on Win 10](https://github.com/RazviOverflow/CAPEv2/commit/fd2cb3e46618a42bb2a3553ff3d5be437d82d410)\r\n\r\n\r\n- [Added documentation for guest's Python installation](https://github.com/RazviOverflow/CAPEv2/commit/ba7e9177816e3124b0bba8cc5c85d888fd46d7ab)\nComment: thank you a lot for this @RazviOverflow. i have only one last point, the 192.168.122.0/24. the 122 range is default KVM range, so that can be used as ANTIVM check. Can you add small description for that. Also 122 is __NAT__. User should create extra network interface with range that is not default hypervisor range. Can you please add it?\nComment: i merge this so docs can update till you add another point from previous msg\nComment: You are most welcome @doomedraven! Glad to help. \r\n\r\nRegarding the 122 range, I will create a **warning**  informing that it can be detected and I'll add description + images on how to create a new IP range (something similar to what you did back in the day in your post creating the `hostonly` network). \r\n\r\nIf there is not NAT, the machine has no internet connection, right? It may be needed. \r\n\r\nI will PR as soon as I fix the docs and add the needed info.\nComment: machine will get internet with rooter.py if route internet selected. In hostonly way it prevents from traffic leaks, connecting to other machines. Basically there is no choice for more secure setup.\r\n\r\nThank you\nComment: @RazviOverflow FYI https://docs.vmware.com/en/VMware-Workstation-Pro/16.0/com.vmware.ws.using.doc/GUID-D9B0A52D-38A2-45D7-A9EB-987ACE77F93C.html",
+  "Title: CAPEV2 Dirty Line Azure Setup / DNS Problem\nBody: Follow up to CCCS-Kevin Comment on #1041. \r\n\r\n\"Regarding the dirty line, depending on your network security group rules are implemented, this should be as easy as setting the route to internet in routing.conf or specifying route in the task options of a submission.\" \r\n\r\nI decided to implement dirty line on my Azure CAPEv2 sandbox setup. I am able to IP forward traffic on VNET2_SUB2 (10.14.2.4) which is my CAPEv2 private address. Running TCPDUMP -i eth1 I can see the traffic being forwarded at my CAPE VM. But I can only get it to work with the original sandbox (Cuckoo1) that I create my image from disk from. Before I pull a new version of image from Cuckoo1 my IP settings are IP: 10.14.2.5 Subnet 255.255.255.0 Gateway: 10.14.2.1 DNS: Azure DNS 168.x.x.x address. After creating a new version of image the VM scale set virtual machine grabs this configuration IP: 10.14.2.6 Subnet 255.255.255.0 Gateway: 10.14.2.1 DNS: 10.14.2.4. This seems to be the issue because 10.14.2.4 is the actual CAPE machine on the VNET2_SUB2 subnet on VNET2 and this is not a DNS server. The provisioned VM from image cannot reach the internet. Any idea why my VM scale set is pulling this configuration? I have search all the logs and configs. I can't find anything that would cause this. I greatly appreciate any help you can provide. \nComment: @cccs-kevin do you know about this? you are the uniq person that uses Azure that i know\nComment: @WVAuditors Yes I absolutely know why your VMSS is using the that IP for DNS. It's because in the machinery the DNS server is set to the IP of the resultserver (aka the CAPEv2 private address you mentioned). I had changed this value on my end to allow dirty line but did not update the remote repo: https://github.com/kevoreilly/CAPEv2/blob/294fcdaa5e5640ef33b2cd55c2c7b03b549bf1be/modules/machinery/az.py#L774\r\n\r\nI will add a configuration that allows this value to be set :) In the meantime, you can just hardcode the IP you want into that line.\nComment: thank you Kevin\nComment: I have tried to hardcode the IP for DNS but I did not have any success doing so. No matter what I set my DNS to it still seems to set 10.14.2.4 as my DNS server.  When saying hardcode do you mean set it to the desired DNS on the cuckoo1 VM I pulling the image from disk from? Or do you mean setting it in the machinery az.py script? I think you probably mean the az.py because that is probably what contains the python lang to create the VMSS instance. Besides the VMSS instance not getting internet access it is working great. I seem to have 0 issues with detonation with Azure. My proxmox setup is a little grumpy sometimes although I don't know why. I setup the proxmox home lab to learn about CAPE so I am not really concerned about that one now. I am curious about 1 particular thing about my proxmox homelab setup on CAPE. When I run python3 cleaners.py --clean on that setup analysis processing fails going forward as for Azure when I do the same everything is perfect. I usually just revert to snapshot on my CAPE in proxmox. It clears the past submissions with no issues and starts over doing successful processing at 1 with no errors or failures. Regardless about it doesn't matter I just thought I would ask about that because it has always bugged me. Glad to see im not having that same issue in Azure. \nComment: just update now and set proper value in az.conf\r\n\r\nwithout error output/log what you getting on homelab i can't help \nComment: Ok next time I use my proxmox setup I will get an error for you if I can. If i remember correct though it just clears the past submissions with no error but will never process another submission. It simply just fails. I appreciate all your help guys you rock! \nComment: you are welcome. always try provide log, that speedup a lot bug finding\nComment: @WVAuditors Can you please open a new issue regarding what you are experiencing on your proxmox setup?\r\n\r\nAnd yes by hardcode I meant in az.py. I just created a PR https://github.com/kevoreilly/CAPEv2/pull/1055 that you can implement on your setup which should set the DNS server from the config file. That being said, you may have to destroy the current VMSS you have and recreate it by re-running CAPE for the DNS server config to take effect.\nComment: Please excuse my ignorance but I ran the command to update but I think it may be pulling from the wrong repo possibly. I don't think it is pulling the correct az.py and az.conf. Do you mind to educate me on the correct way to git from the correct location? It is pulling from master I think I am not up to speed on how to pull from community updates obviously. \nComment: * `cat .git/config` verify that link is poiting to this repo. \r\n* Config won't be updated, or even will be rejected `git pull`. due to your changes so you need to create backup as example `mv conf/az.conf conf/az.conf_b`.\r\n* `git pull` so you have latest config. you can restore now config and add new config field by copy new fields by hand\nComment: Thank you doomedraven & cccs-kevin! I was able to get the dirty line running. Not immediately but I had to mess with the iptables again. I think this is because I had rebooted the CAPE yesterday evening. I set my dns config to 168.63.129.16. Thanks again guys you rock! Now I am working Py PIL for the screenshots. \r\n\r\nsudo sysctl -w net.ipv4.ip_forward=1\r\nsudo iptables -A FORWARD -o eth1 -j ACCEPT\r\nsudo iptables -A FORWARD -i eth1 -j ACCEPT\r\nsudo iptables -t nat -A POSTROUTING -o eth1 -j MASQUERADE\r\n\r\n\nComment: If you want iptables rules to persist across reboots, you have to use `iptables-save` via the `iptables-persistent` package\nComment: Good to know thanks again! ",
+  "Title: Bump untangle from 1.1.1 to 1.2.1\nBody: Bumps [untangle](https://github.com/stchris/untangle) from 1.1.1 to 1.2.1.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a href=\"https://github.com/stchris/untangle/releases\">untangle's releases</a>.</em></p>\n<blockquote>\n<h2>1.2.1</h2>\n<h2>Bugfixes</h2>\n<ul>\n<li>(SECURITY) Use defusedxml to prevent external entity exploits by <a href=\"https://github.com/stchris\"><code>@\u200bstchris</code></a> in <a href=\"https://github-redirect.dependabot.com/stchris/untangle/pull/94\">stchris/untangle#94</a></li>\n</ul>\n<p><strong>Full Changelog</strong>: <a href=\"https://github.com/stchris/untangle/compare/1.2.0...1.2.1\">https://github.com/stchris/untangle/compare/1.2.0...1.2.1</a></p>\n<h2>1.2.0</h2>\n<h2>Major changes</h2>\n<ul>\n<li>(SECURITY) Prevent XML SAX vulnerability: External Entities injection (<a href=\"https://github-redirect.dependabot.com/stchris/untangle/issues/60\">#60</a>)</li>\n<li>support for python keywords as element names (<a href=\"https://github-redirect.dependabot.com/stchris/untangle/pull/43\">#43</a>)</li>\n<li>support Element truthiness on Python 3 (<a href=\"https://github-redirect.dependabot.com/stchris/untangle/pull/68/\">#68</a>)</li>\n<li>dropped support for Python 3.4-3.6 and pypy, untangle currently support Python 3.7-3.10</li>\n<li>fixed setup.py warning (<a href=\"https://github-redirect.dependabot.com/stchris/untangle/pull/77/\">#77</a>)</li>\n</ul>\n<h2>Development related changes</h2>\n<ul>\n<li>dropped support for Python 2.6, 3.3</li>\n<li>formatted code with black</li>\n<li>flake8 linter enforced in CI</li>\n<li><code>main</code> is now the default branch</li>\n<li>switch to Github Actions</li>\n<li>switch to poetry and pytest</li>\n</ul>\n<h2>Changes by PRs</h2>\n<ul>\n<li>adding trailing underscore for python keywords by <a href=\"https://github.com/reverbc\"><code>@\u200breverbc</code></a> in <a href=\"https://github-redirect.dependabot.com/stchris/untangle/pull/43\">stchris/untangle#43</a></li>\n<li>support 'in' and 'not in' operator by <a href=\"https://github.com/reverbc\"><code>@\u200breverbc</code></a> in <a href=\"https://github-redirect.dependabot.com/stchris/untangle/pull/40\">stchris/untangle#40</a></li>\n<li>Make <strong>hasattribute</strong> work with 3.6 by <a href=\"https://github.com/CarlosSolrac\"><code>@\u200bCarlosSolrac</code></a> in <a href=\"https://github-redirect.dependabot.com/stchris/untangle/pull/57\">stchris/untangle#57</a></li>\n<li>Added equality tests for <a href=\"https://github-redirect.dependabot.com/stchris/untangle/issues/63\">#63</a> by <a href=\"https://github.com/stchris\"><code>@\u200bstchris</code></a> in <a href=\"https://github-redirect.dependabot.com/stchris/untangle/pull/67\">stchris/untangle#67</a></li>\n<li>Make untangle available from conda-forge by <a href=\"https://github.com/HTenkanen\"><code>@\u200bHTenkanen</code></a> in <a href=\"https://github-redirect.dependabot.com/stchris/untangle/pull/75\">stchris/untangle#75</a></li>\n<li>Make main the default branch by <a href=\"https://github.com/stchris\"><code>@\u200bstchris</code></a> in <a href=\"https://github-redirect.dependabot.com/stchris/untangle/pull/81\">stchris/untangle#81</a></li>\n<li>Github Actions for CI by <a href=\"https://github.com/stchris\"><code>@\u200bstchris</code></a> in <a href=\"https://github-redirect.dependabot.com/stchris/untangle/pull/84\">stchris/untangle#84</a></li>\n<li>Release to testpypi by <a href=\"https://github.com/stchris\"><code>@\u200bstchris</code></a> in <a href=\"https://github-redirect.dependabot.com/stchris/untangle/pull/85\">stchris/untangle#85</a></li>\n<li>Remove Python versions mentioned in docs by <a href=\"https://github.com/stchris\"><code>@\u200bstchris</code></a> in <a href=\"https://github-redirect.dependabot.com/stchris/untangle/pull/86\">stchris/untangle#86</a></li>\n<li>Fix simple typo: addded -&gt; added by <a href=\"https://github.com/timgates42\"><code>@\u200btimgates42</code></a> in <a href=\"https://github-redirect.dependabot.com/stchris/untangle/pull/71\">stchris/untangle#71</a></li>\n<li>Remove duplicated tests module by <a href=\"https://github.com/stchris\"><code>@\u200bstchris</code></a> in <a href=\"https://github-redirect.dependabot.com/stchris/untangle/pull/88\">stchris/untangle#88</a></li>\n<li>Add a test with an unicode element name by <a href=\"https://github.com/stchris\"><code>@\u200bstchris</code></a> in <a href=\"https://github-redirect.dependabot.com/stchris/untangle/pull/89\">stchris/untangle#89</a></li>\n<li>Disable feature_external_ges by <a href=\"https://github.com/stchris\"><code>@\u200bstchris</code></a> in <a href=\"https://github-redirect.dependabot.com/stchris/untangle/pull/90\">stchris/untangle#90</a></li>\n<li>Updating pip &amp; Suggestion for better doc in parse method by <a href=\"https://github.com/domi877\"><code>@\u200bdomi877</code></a> in <a href=\"https://github-redirect.dependabot.com/stchris/untangle/pull/76\">stchris/untangle#76</a></li>\n<li>Make classifiers a list not a tuple by <a href=\"https://github.com/juliangilbey\"><code>@\u200bjuliangilbey</code></a> in <a href=\"https://github-redirect.dependabot.com/stchris/untangle/pull/77\">stchris/untangle#77</a></li>\n<li>Support Element truthiness on Python 3 by <a href=\"https://github.com/davidjb\"><code>@\u200bdavidjb</code></a> in <a href=\"https://github-redirect.dependabot.com/stchris/untangle/pull/68\">stchris/untangle#68</a></li>\n<li>Prepare 1.2.0 release by <a href=\"https://github.com/stchris\"><code>@\u200bstchris</code></a> in <a href=\"https://github-redirect.dependabot.com/stchris/untangle/pull/91\">stchris/untangle#91</a></li>\n</ul>\n<h2>New Contributors</h2>\n<ul>\n<li><a href=\"https://github.com/reverbc\"><code>@\u200breverbc</code></a> made their first contribution in <a href=\"https://github-redirect.dependabot.com/stchris/untangle/pull/43\">stchris/untangle#43</a></li>\n<li><a href=\"https://github.com/CarlosSolrac\"><code>@\u200bCarlosSolrac</code></a> made their first contribution in <a href=\"https://github-redirect.dependabot.com/stchris/untangle/pull/57\">stchris/untangle#57</a></li>\n<li><a href=\"https://github.com/HTenkanen\"><code>@\u200bHTenkanen</code></a> made their first contribution in <a href=\"https://github-redirect.dependabot.com/stchris/untangle/pull/75\">stchris/untangle#75</a></li>\n<li><a href=\"https://github.com/timgates42\"><code>@\u200btimgates42</code></a> made their first contribution in <a href=\"https://github-redirect.dependabot.com/stchris/untangle/pull/71\">stchris/untangle#71</a></li>\n<li><a href=\"https://github.com/domi877\"><code>@\u200bdomi877</code></a> made their first contribution in <a href=\"https://github-redirect.dependabot.com/stchris/untangle/pull/76\">stchris/untangle#76</a></li>\n<li><a href=\"https://github.com/juliangilbey\"><code>@\u200bjuliangilbey</code></a> made their first contribution in <a href=\"https://github-redirect.dependabot.com/stchris/untangle/pull/77\">stchris/untangle#77</a></li>\n<li><a href=\"https://github.com/davidjb\"><code>@\u200bdavidjb</code></a> made their first contribution in <a href=\"https://github-redirect.dependabot.com/stchris/untangle/pull/68\">stchris/untangle#68</a></li>\n</ul>\n<!-- raw HTML omitted -->\n</blockquote>\n<p>... (truncated)</p>\n</details>\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/stchris/untangle/blob/main/CHANGELOG.md\">untangle's changelog</a>.</em></p>\n<blockquote>\n<p>1.2.1</p>\n<ul>\n<li>(SECURITY) Use <a href=\"https://github.com/tiran/defusedxml\">defusedxml</a> to prevent XML SAX vulnerabilities (<a href=\"https://github-redirect.dependabot.com/stchris/untangle/pull/94\">#94</a>)</li>\n</ul>\n<p>1.2.0</p>\n<ul>\n<li>\n<p>(SECURITY) Prevent XML SAX vulnerability: External Entities injection (<a href=\"https://github-redirect.dependabot.com/stchris/untangle/issues/60\">#60</a>)</p>\n</li>\n<li>\n<p>support for python keywords as element names (<a href=\"https://github-redirect.dependabot.com/stchris/untangle/pull/43\">#43</a>)</p>\n</li>\n<li>\n<p>support Element truthiness on Python 3 (<a href=\"https://github-redirect.dependabot.com/stchris/untangle/pull/68/\">#68</a>)</p>\n</li>\n<li>\n<p>dropped support for Python 3.4-3.6 and pypy, untangle currently support Python 3.7-3.10</p>\n</li>\n<li>\n<p>fixed setup.py warning (<a href=\"https://github-redirect.dependabot.com/stchris/untangle/pull/77/\">#77</a>)</p>\n</li>\n<li>\n<p>dropped support for Python 2.6, 3.3</p>\n</li>\n<li>\n<p>formatted code with black</p>\n</li>\n<li>\n<p>flake8 linter enforced in CI</p>\n</li>\n<li>\n<p><code>main</code> is now the default branch</p>\n</li>\n<li>\n<p>switch to Github Actions</p>\n</li>\n<li>\n<p>switch to poetry and pytest</p>\n</li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/stchris/untangle/commit/e988ee2ce3cb296308ef0d1442c74bd4b17b3b1b\"><code>e988ee2</code></a> Merge pull request <a href=\"https://github-redirect.dependabot.com/stchris/untangle/issues/95\">#95</a> from stchris/release-1.2.1</li>\n<li><a href=\"https://github.com/stchris/untangle/commit/06bd03527a23fc2dca03ddd21d01333e2a270324\"><code>06bd035</code></a> Prepare 1.2.1 release</li>\n<li><a href=\"https://github.com/stchris/untangle/commit/6f2c105974ce4850efcae8a45610031085b48b89\"><code>6f2c105</code></a> Use defusedxml to prevent external entity exploits (<a href=\"https://github-redirect.dependabot.com/stchris/untangle/issues/94\">#94</a>)</li>\n<li><a href=\"https://github.com/stchris/untangle/commit/42e4b3a0132457ddca281e6f63501228c1532db5\"><code>42e4b3a</code></a> Merge pull request <a href=\"https://github-redirect.dependabot.com/stchris/untangle/issues/91\">#91</a> from stchris/prepare-1.2.0</li>\n<li><a href=\"https://github.com/stchris/untangle/commit/3b303a7ae7f59dd289b0f5ff4c9e4a79ce5b2415\"><code>3b303a7</code></a> Prepare 1.2.0 release</li>\n<li><a href=\"https://github.com/stchris/untangle/commit/f0370dc1d73e502241cafe626f7885b8887bbc88\"><code>f0370dc</code></a> Merge pull request <a href=\"https://github-redirect.dependabot.com/stchris/untangle/issues/68\">#68</a> from davidjb/truthiness</li>\n<li><a href=\"https://github.com/stchris/untangle/commit/b7e96f3c38e8495ddbc62b7e97fa61cc468efe8f\"><code>b7e96f3</code></a> Support Element truthiness on Python 3</li>\n<li><a href=\"https://github.com/stchris/untangle/commit/bfa52f745870e5491f2da38f35d80d0ff129219b\"><code>bfa52f7</code></a> Merge pull request <a href=\"https://github-redirect.dependabot.com/stchris/untangle/issues/77\">#77</a> from juliangilbey/fix-setup-classifiers</li>\n<li><a href=\"https://github.com/stchris/untangle/commit/ad6b5292bca8d7e2e9c1f99c44fcac6696bcffa1\"><code>ad6b529</code></a> Merge branch 'main' into fix-setup-classifiers</li>\n<li><a href=\"https://github.com/stchris/untangle/commit/858354b0bb112bf9dd63162255e07a00a685d62a\"><code>858354b</code></a> Merge pull request <a href=\"https://github-redirect.dependabot.com/stchris/untangle/issues/76\">#76</a> from domi877/patch-1</li>\n<li>Additional commits viewable in <a href=\"https://github.com/stchris/untangle/compare/1.1.1...1.2.1\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=untangle&package-manager=pip&previous-version=1.1.1&new-version=1.2.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language\n- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language\n- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language\n- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language\n\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>\nComment: OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting `@dependabot ignore this major version` or `@dependabot ignore this minor version`.\n\nIf you change your mind, just re-open this PR and I'll resolve any conflicts on it.",
+  "Title: Adding the mark_call method from Cuckoo\nBody: The Signature.mark_call() method is something that exists in Cuckoo, and is critical in linking signatures to processes. It also provides evidence for why the signature was raised, based on the call.",
+  "Title: Adding configurable default throttle limits\nBody: Even if the `ratelimit` value was disabled, the default throttle limit was blocking requests. This value should be configurable for those who do want to adjust limits when using token-based auth.",
+  "Title: Added missing links and solution for gpedit.msc missing.\nBody: Added missing links in installation main page. Additionally, a solution for gpedit.msc missing in Windows 10 Home Edition was also added. \nComment: Thank you!\nComment: You are most welcome! I'm struggling my way into a new CAPE installation from scratch and if I see I can improve the docs in some way, I'll keep creating PRs. As long as you consider them useful, of course.",
+  "Title: Signatures not matching with previous analysis\nBody: ##\u00a0Removing issue template is equivalent to invalid issue!\r\n* We have this template in order to not have to ask everyone the same questions again and again!\r\n- [x] I understand that if I remove this template this issue will be automatically closed without answer\r\n\r\n## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account acctivation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n- [x] I'm have checked [discussions section](https://github.com/kevoreilly/CAPEv2/discussions)\r\n\r\n\r\n# Expected Behavior\r\n\r\n\r\nI'm analyzing the sample md5 `0b79ffc7f596f5be398f6868379d7675` got from capesandbox.com. After the analysis, on capesandbox.com and on my local cape installation updated to commit `4ed81db40f939094a5543c22e4cbf25403537855` I get the \"Signatures\" output reporting:\r\n - Yara rule detection observed from a process memory dump/dropped files/CAPE\r\n - Creates RWX memory\r\n - Dynamic (imported) function loading detected\r\n - Performs HTTP request potentially not found in PCAP\r\n - CAPE extracted potentially suspicious content\r\n - CAPE detected CobaltStrike Beacon Malware\r\n - Detect presence of WINE emulator via function name \r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\nI merged the latest commit on my installation.  I followed the instruction on the README.md and in changelog.md (so I applied the alembic upgrade)\r\nIf I try to re-analyze the same file just after the upgrade  the \"Signatures\" part miss two entries:\r\n\r\n - Dynamic (imported) function loading detected\r\n - Performs HTTP request potentially not found in PCAP\r\n\r\nI'm not sure which of the two behaviors is the correct one, the old or the current one, but it looks strange that the ` Dynamic (imported) function loading detected` is missing. Thanks!\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Analyze the sample with commit `4ed81db40f939094a5543c22e4cbf25403537855`\r\n2. you get the signatures listed in `Expected Behavior`\r\n3. Analyze the sample with commit `976a48bef781b793b9406e5bd64f174d73e40c4d`\r\n4. you miss some signatures\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\nOS Version: Ubuntu 20.04\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\r\nNot sure what to include\r\n\nComment: That is normal different timing,  like diff duraci\u00f3n of analysis,  or something went wrong. See analysis log\nComment: The signatures are (mostly) based on the behavior logs so check these to see if the detonation looks the same or differs somehow\nComment: Thanks for the answers!\r\n\r\nI'm pretty sure it's not related to timing, because I tried the analysis several times (like 4/5) on both the commit, and I always obtain consistent results (in other words, the new commit never give the two missing signatures, whilst the the old one always give it).\r\n\r\nAnyway, I'll go through the logs to see if I can spot the difference. \r\nThanks a lot. I'll write back if I can find the root cause.\r\n\r\n\nComment: this was opened later but it provided better info, so closing this as duplicated, follow here https://github.com/kevoreilly/CAPEv2/issues/1072 fix is coming ",
+  "Title: cape-web.service not running after running cape2.sh \nBody: Using cape-web.service not running | OS version       | Ubuntu 20.04, \r\n",
+  "Title: Sub-folders are empty under analysis dir along with Status seen as \"Reported\" after the analysis is completed\nBody: ##\u00a0Removing issue template is equivalent to invalid issue!\r\n* We have this template in order to not have to ask everyone the same questions again and again!\r\n- [ yes] I understand that if I remove this template this issue will be automatically closed without answer\r\n\r\n## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account acctivation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ yes] I am running the latest version\r\n- [ yes] I did read the README!\r\n- [ yes] I checked the documentation and found no answer\r\n- [ yes] I checked to make sure that this issue has not already been filed\r\n- [ yes] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ yes] I'm have read all configs with all optional parts\r\n- [ yes] I'm have checked [discussions section](https://github.com/kevoreilly/CAPEv2/discussions)\r\n\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\r\n\r\nAnalysis should be completed with analysis data under sub-directories under analysis/ directory.\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\nLogs say Analysis procedure completed, but the sub-dir under analysis dir have no analysis data:\r\nLogs:\r\n![image](https://user-images.githubusercontent.com/50963903/182944686-c41a6e30-36d9-4324-96d0-0f89dc003049.png)\r\n\r\nUI:\r\n![image](https://user-images.githubusercontent.com/50963903/182945019-129fcb7e-11b9-4d0e-b782-37b5221bd966.png)\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\nComment: Check cape-processor or but that is something wrong on your side\nComment: Can you please share any docs if there are any? or the steps to check the cape-processor?\r\nThanks!\nComment: `systemctl status cape-processor`\r\n`journalctl -u cape-processor`\r\n\r\nlooks like you don't have idea how cape is running? did you read instalation scripts? what about Readme? https://github.com/kevoreilly/CAPEv2#installation-recommendations-and-scripts-for-optimal-performance\nComment: Oh, I have already checked that sir. No errors there, it's running perfectly fine.\r\nI do have idea how cape is running and have read Readme file!!\r\n\r\nWhen I submit the sample, I am seeing below error on agent.py running on Guest VM:\r\n![image](https://user-images.githubusercontent.com/50963903/183496645-65be08a2-adb4-478b-9531-bca44427e4dc.png)\r\n\nComment: Omg do you realize that you analyzer Linux binary inside of Windows vm?\n\nEl lun, 8 ago 2022 21:17, dhruvpatel56 ***@***.***> escribi\u00f3:\n\n> Oh, I have already checked that sir. No errors there, it's running\n> perfectly fine.\n> I do have idea how cape is running and have read Readme file!!\n>\n> When I submit the sample, I am seeing below error on agent.py running on\n> Guest VM:\n> [image: image]\n> <https://user-images.githubusercontent.com/50963903/183496645-65be08a2-adb4-478b-9531-bca44427e4dc.png>\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1046#issuecomment-1208511702>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH33DUFE6KMMBEGW64SLVYFMMPANCNFSM55TZNEBQ>\n> .\n> You are receiving this because you commented.Message ID:\n> ***@***.***>\n>\n\nComment: I submitted the zip file on Cuckoo, but I didn't know whether that zip file contains linux binary or not, haha\nComment: I am still seeing the status \"reported\" for the exe files as well. Can we please keep this issue open since technically this issue is not resolved?\r\nThanks!\nComment: That is bcz of your configuraciones.  Obviosly it will be reported,\nanalysis was done, but is like put instead of car engine,  just a\nmicrowave. So go to docs,  reread everything and all configs and configure\nproperly\n\nEl lun, 8 ago 2022 21:40, dhruvpatel56 ***@***.***> escribi\u00f3:\n\n> I am still seeing the status \"reported\" for the exe files as well. Can we\n> please keep this issue open since technically this issue is not resolved?\n> Thanks!\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1046#issuecomment-1208533469>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH37OQFDEHCSXRQWHXZ3VYFPBTANCNFSM55TZNEBQ>\n> .\n> You are receiving this because you modified the open/close state.Message\n> ID: ***@***.***>\n>\n\nComment: I am seeing below error, please help resolving this:\r\n![image](https://user-images.githubusercontent.com/50963903/183766811-dc7a5378-e522-40ea-8225-14732a2bd39d.png)\r\n\r\nThanks!\nComment: Did you read and Google that error? Is probably ms defender that you didnt\nturned off\n\nEl mar, 9 ago 2022 23:42, dhruvpatel56 ***@***.***> escribi\u00f3:\n\n> I am seeing below error, please help resolving this:\n> [image: image]\n> <https://user-images.githubusercontent.com/50963903/183766811-dc7a5378-e522-40ea-8225-14732a2bd39d.png>\n>\n> Thanks!\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1046#issuecomment-1209923193>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH35T5ODIGSF53SMDPBTVYLGDJANCNFSM55TZNEBQ>\n> .\n> You are receiving this because you modified the open/close state.Message\n> ID: ***@***.***>\n>\n\nComment: Your problem is that Windows Defender is scanning and denying access to files. You need to kill Defender.\r\n\r\nA quick google of the error message 'operation did not complete virus' or similar would have found the answer.\r\n\r\nhttps://lmgtfy.app/?q=operation+did+not+complete+virus\nComment: I already turned off Defender manually, but still seeing that Defender is scanning.\nComment: I needed to disable Real-Time protection under Virus and Threat field which I thought would be disabled by disabling Defender. It moved forward this time. \r\nThis is what I am looking at:\r\n![image](https://user-images.githubusercontent.com/50963903/183773964-2ac73988-06e0-429e-97e5-cadb89333d54.png)\r\n\r\nIt produced some of the analysis results this time, but the status is still \"Reported\" instead of \"Completed\".\r\nFound couple of errors in the logs:\r\n![image](https://user-images.githubusercontent.com/50963903/183774446-ea6b731c-1c68-45c4-b6f9-cc7ea7df9efa.png)\r\n\r\n![image](https://user-images.githubusercontent.com/50963903/183774533-9a1cf366-4a1e-4998-9adf-33c1effc1486.png)\r\n\r\n\nComment: Completed is when it finish analysis inside of vm. Reported is when cape process ed data generated by vm.\r\n\r\nAbout errores first time see those,  did you Google them? \nComment: Resolved the above errors by changing the permissions of C drive on Guest VM.\r\nAfter submitting same sample, I am seeing this:\r\n\r\n![image](https://user-images.githubusercontent.com/50963903/184026712-b7c868b8-a972-45dc-bf2d-825eb8723546.png)\r\n\r\nNo errors found in the logs.\r\nStill seeing status \"Reported\".\r\nAny thoughts?\nComment: And what status do you expect?\n\nEl mi\u00e9, 10 ago 2022 23:51, dhruvpatel56 ***@***.***> escribi\u00f3:\n\n> Resolved the above errors by changing the permissions of C drive on Guest\n> VM.\n> After submitting same sample, I am seeing this:\n>\n> [image: image]\n> <https://user-images.githubusercontent.com/50963903/184026712-b7c868b8-a972-45dc-bf2d-825eb8723546.png>\n>\n> No errors found in the logs.\n> Still seeing status \"Reported\".\n> Any thoughts?\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1046#issuecomment-1211318158>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH37CRVOXPPTFLPN6OI3VYQP5VANCNFSM55TZNEBQ>\n> .\n> You are receiving this because you modified the open/close state.Message\n> ID: ***@***.***>\n>\n\nComment: I was expecting status \"Completed\". But, seeing Reported meaning that the analysis has been reported to host by Guest VM?\r\nIs that correct?\nComment: i responded to that 2days ago https://github.com/kevoreilly/CAPEv2/issues/1046#issuecomment-1210200301\nComment: I saw that sir, but I was trying to understand it.\r\nCompleted meaning the analysis got completed inside VM and Reported meaning the analysis is completed and reported back to host by Guest VM?\r\nPlease correct me if I am wrong.\r\nThanks!\nComment: yes\nComment: If you look on capesandbox.com you will see the successful jobs are all 'reported'.\nComment: Understood.\r\nThanks guys for your help!\nComment: Read readme im on phone and pto\n\nEl vie, 5 ago 2022 20:43, dhruvpatel56 ***@***.***> escribi\u00f3:\n\n> Can you please share any docs if there are any? or the steps to check the\n> cape-processor?\n> Thanks!\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1046#issuecomment-1206750254>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH32PF6UKFNNF6ZFC2LLVXVOEZANCNFSM55TZNEBQ>\n> .\n> You are receiving this because you commented.Message ID:\n> ***@***.***>\n>\n",
+  "Title: Make description of subnet clearer\nBody: None",
+  "Title: Fix machine conf output error\nBody: python writelines no line breaks.\nComment: im back, could you post the error and new output example? without that i don't know what to expect and how it was. so please in future provide more detailed before/after that will speedup stuff\nComment: Just like I said, python writelines no line breaks.  \r\n```python\r\nnames = [\"Alice\", \"Bob\", \"Cindy\"]\r\n\r\nthe_file = open(\"before.txt\", \"w\")\r\nthe_file.writelines(names)\r\nthe_file.close()\r\n\r\nthe_file = open(\"after.txt\", \"w\")\r\nthe_file.write(\"\\n\".join(names))\r\nthe_file.close()\r\n```\r\n![writelines](https://user-images.githubusercontent.com/18598419/183375034-31063cd7-f2e5-4430-834c-a4da9a66c44e.png)\r\n\r\n\nComment: thank you",
+  "Title: DEBUG: TASK #: cuckoo is not ready yet\nBody: ##\u00a0Removing issue template is equivalent to invalid issue!\r\n* We have this template in order to not have to ask everyone the same questions again and again!\r\n- [Yes ] I understand that if I remove this template this issue will be automatically closed without answer\r\n\r\n## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account acctivation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ yes] I am running the latest version\r\n- [ yes] I did read the README!\r\n- [ yes] I checked the documentation and found no answer\r\n- [ yes] I checked to make sure that this issue has not already been filed\r\n- [ yes] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ yes] I'm have read all configs with all optional parts\r\n- [ yes] I'm have checked [discussions section](https://github.com/kevoreilly/CAPEv2/discussions)\r\n\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\r\n\r\nWhen I submit the sample via browser, the analysis should have been started.\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\nWhen I submit the sample via Browser I am receiving cuckoo is not ready yet:\r\n\r\n![image](https://user-images.githubusercontent.com/50963903/182724747-6f46feb3-9aae-4286-bf33-835eb8d1dbc4.png)\r\n\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\nComment: Problems with agent,  check docs\nComment: Do you mean problem with agent.py on Guest VM? Please share the link of the doc if it is different agent you are talking about. Thanks!\r\n\nComment: Closing this issue, thanks for your help!\nComment: What was the fix for this, I have Python 3.6.8 x86 installed and still get the \"VM not ready yet\" error until timeout. the Docs don't have anything in there to help with fixing an agent. \r\n\nComment: https://capev2.readthedocs.io/en/latest/installation/guest/agent.html?highlight=curl#installing-the-agent\nComment: When I curl/web browser i get the same output\nComment: well without the rest of details of your setup i can't help you\nComment: What details do you need to know\nComment: I finally figured out the problem thank you for the help\nComment: well you could post what it was so someone who came across the same problem could get a tip\nComment: My problem was an unnecessary space in front of the variable snapshot so it was seeing the variable ip as \r\nip=\"192.168.122.10\r\n\r\n\r\n snapshot=known_good\"",
+  "Title: Updating Azure docs\nBody: Assisting https://github.com/kevoreilly/CAPEv2/issues/1041",
+  "Title: CapeV2 Azure Client ID# and Secret for az.conf\nBody: I have successfully setup a Cape sandbox already in a proxmox home lab. I am trying to use the Azure guide according to the documentation. I believe I may be a little confused about the az machinery. Web interface is up and running no issues there. I am at a stopping point on the following in the az.conf. \r\n\r\n# Client ID for Azure\r\nclient_id =\r\n\r\n# Secret for Azure\r\nsecret =\r\n\r\nI know that I have to create a application for it to connect thru in Azure. I understand that much but any help would be appreciated or even if this has been tested and known to work. Any past experiences with setting this up would be greatly appreciated. I love this project and have been using it in proxmox environment for about 3 months now to scan URLs and attachment in our environment at the West Virginia State Auditor's office . I understand you guys are probably busy working on this project but if you could just give me a quick hint anything would be a great help. I searched all the documentation but that part is somewhat MIA at the moment. Thank you so much and your help is very appreciated. \r\n\nComment: Hey @WVAuditors, I'm running the Azure machinery in a production-level environment right now, and am the main developer behind the machinery. Is the question that you have related to how to create the Azure application?\nComment: Yes that is the question. I am not sure how to create the Azure application to get the client id & secret for the connection to take place when running python3 cuckoo.py. I have a place to input in az.conf of course but I am super confused about the Azure end of it configuring the app. I know you guys prob don't support the Microsoft side of it but I thought it may be worth the time to pick a brain of someone who has actually setup Cape with Azure. \nComment: Gotchya, I'll update the CAPE docs to hopefully assist with this. \r\n\r\nThat being said, to create the Azure application, you have to do the following:\r\n1. In the Azure portal, head to \"App registrations\"\r\n2. Click \"New registration\"\r\n3. Give the app a name and determine what the supported account types are\r\n4. Create the app\r\n5. Head to the app resource in the portal\r\n6. Select \"API permissions\" in the sidebar\r\n7. Click \"Add a permission\"\r\n8. Give the app \"User.Read\" to the Microsoft Graph API\r\n9. On the sidebar, click \"Certificates & secrets\"\r\n10. Select \"+ New client secret\"\r\n11. Create a secret\r\n12. Copy the secret details and paste it into the `az.conf`\r\n13. Select \"Overview\" on the sidebar\r\n14. You can find the `client_id` and `tenant_id` details here. Copy and paste them into the `az.conf`\r\n\r\nLet me know if you have any questions!\nComment: Hey also what version of django runs on your setup if you dont mind me asking. I am getting this on the submit menu.\r\n\r\nRequest Method: | GET\r\n-- | --\r\nhttp://10.14.1.4:8001/submit/\r\n4.0.1\r\nAttributeError\r\n'Config' object has no attribute 'None'\r\n/opt/CAPEv2/web/submission/views.py, line 536, in <listcomp>\r\n/bin/python3\r\n3.8.10\r\n\nComment: I'm using Django v4.0.4 with Python3.8.10. I don't use the web GUI though so I'm not too familiar with what could be happening in your scenario.\nComment: Thank you so much. I will give it a go! \nComment: @WVAuditors I've got a PR (https://github.com/kevoreilly/CAPEv2/pull/1042) that will hopefully assist with the setup. Keep the questions coming!\nComment: Thank you\nComment: I am having success but I am not sure why the machine in the scale set instance is grabbing an IP of 10.14.1.5 from VNET2_SUB1. Shouldn't I be getting DHCP from the VNET2_SUB2 subnet (ex. 10.14.2.x) ?  I was able to correct the issue with Django also. \r\n\r\nInstance ID : 1\r\n\r\n\r\nStatus\r\n\r\nLocation\r\n:\r\nEast US\r\nProvisioning state\r\n:\r\nSucceeded\r\nLatest model applied\r\n:\r\nYes\r\nComputer name\r\n:\r\n---\r\nFault domain\r\n:\r\n-\r\nSKU\r\n:\r\nStandard_DS3_v2\r\nPublic IP address\r\n:\r\n-\r\nPrivate IP address\r\n:\r\n10.14.1.5\r\nPublic IP address (IPv6)\r\n:\r\n-\r\nPrivate IP address (IPv6)\r\n:\r\n-\r\nVirtual network/subnet\r\n:\r\nVNET2/VNET2_SUB1\r\nDisk\r\n:\r\ncuckoo1_cuckoo1_1_OsDisk_1_ca0d326d805142748bff1160e7cd8c2d\r\n\r\n\r\n2022-08-04 19:42:05,496 [modules.machinery.az] DEBUG: cuckoo1_1: Initializing...\r\n2022-08-04 19:42:16,508 [modules.machinery.az] DEBUG: cuckoo1_1: Initializing...\r\n2022-08-04 19:42:27,518 [modules.machinery.az] DEBUG: cuckoo1_1: Initializing...\r\n2022-08-04 19:42:38,530 [modules.machinery.az] DEBUG: cuckoo1_1: Initializing...\r\n2022-08-04 19:42:49,542 [modules.machinery.az] DEBUG: cuckoo1_1: Initializing...\r\n2022-08-04 19:43:00,553 [modules.machinery.az] DEBUG: cuckoo1_1: Initializing...\r\n2022-08-04 19:43:11,565 [modules.machinery.az] DEBUG: cuckoo1_1: Initializing...\r\n2022-08-04 19:43:22,577 [modules.machinery.az] DEBUG: cuckoo1_1: Initializing...\r\n2022-08-04 19:43:33,589 [modules.machinery.az] DEBUG: cuckoo1_1: Initializing...\r\n2022-08-04 19:43:44,601 [modules.machinery.az] DEBUG: cuckoo1_1: Initializing...\r\n2022-08-04 19:43:55,613 [modules.machinery.az] DEBUG: cuckoo1_1: Initializing...\r\n2022-08-04 19:44:06,625 [modules.machinery.az] DEBUG: cuckoo1_1: Initializing...\r\n2022-08-04 19:44:17,637 [modules.machinery.az] DEBUG: cuckoo1_1: Initializing...\r\n2022-08-04 19:44:28,645 [modules.machinery.az] DEBUG: cuckoo1_1: Initializing...\r\n2022-08-04 19:44:39,657 [modules.machinery.az] DEBUG: cuckoo1_1: Initializing...\r\n2022-08-04 19:44:50,669 [modules.machinery.az] DEBUG: cuckoo1_1: Initializing...\r\n2022-08-04 19:45:01,681 [modules.machinery.az] DEBUG: cuckoo1_1: Initializing...\r\n2022-08-04 19:45:12,683 [modules.machinery.az] DEBUG: cuckoo1_1: Initializing...\r\n2022-08-04 19:45:23,695 [modules.machinery.az] DEBUG: cuckoo1_1: Initializing...\r\n2022-08-04 19:45:34,707 [modules.machinery.az] DEBUG: cuckoo1_1: Initializing...\r\n2022-08-04 19:45:45,719 [modules.machinery.az] DEBUG: cuckoo1_1: Initializing...\r\n2022-08-04 19:45:56,731 [modules.machinery.az] DEBUG: cuckoo1_1: Initializing...\r\n2022-08-04 19:46:07,733 [modules.machinery.az] DEBUG: cuckoo1_1: Initializing...\r\n2022-08-04 19:46:18,745 [modules.machinery.az] DEBUG: cuckoo1_1: Initializing...\r\n2022-08-04 19:46:29,757 [modules.machinery.az] DEBUG: cuckoo1_1: Initializing...\r\n2022-08-04 19:46:40,769 [modules.machinery.az] DEBUG: cuckoo1_1: Initializing...\r\n2022-08-04 19:46:51,781 [modules.machinery.az] DEBUG: cuckoo1_1: Initializing...\r\n2022-08-04 19:47:02,793 [modules.machinery.az] DEBUG: cuckoo1_1: Initializing...\r\nException in thread Thread-5:\r\nTraceback (most recent call last):\r\n  File \"/usr/lib/python3.8/threading.py\", line 932, in _bootstrap_inner\r\n    self.run()\r\n  File \"/usr/lib/python3.8/threading.py\", line 870, in run\r\n    self._target(*self._args, **self._kwargs)\r\n  File \"/opt/CAPEv2/modules/machinery/az.py\", line 698, in _thr_wait_for_ready_machine\r\n    raise CuckooGuestCriticalTimeout(\r\nlib.cuckoo.common.exceptions.CuckooGuestCriticalTimeout: Machine cuckoo1_1: the guest initialization hit the critical timeout, analysis aborted.\r\n2022-08-04 19:47:12,802 [modules.machinery.az] DEBUG: Trying <bound method ResourceSkusOperations.list of <azure.mgmt.compute.v2019_04_01.operations._resource_skus_operations.ResourceSkusOperations object at 0x7fbaaa7bcfa0>>(('EAST US',))\r\n2022-08-04 19:47:30,548 [lib.cuckoo.core.scheduler] INFO: Loaded 1 machine/s\r\n2022-08-04 19:47:30,551 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks\r\n\nComment: Hey @WVAuditors , a couple of things:\r\n1. Please improve your copy-paste game in GitHub, it's hard for me to understand the details that you have provided :)\r\n2. To clarify, https://github.com/kevoreilly/CAPEv2/blob/c196919f8c1f2162a40c866132f1d8698fda11e0/conf/az.conf#L31 ^ this value should be the subnet VNET2_SUB2. I'll update the conf to be more clear https://github.com/kevoreilly/CAPEv2/pull/1045.\nComment: I apologize for that. I will try to be more clear with my copy and paste next time. I will also try not to bother you guys too much I know you are busy. Also I believe I have it set to VNET2_SUB2 in the az.conf. This is where I am a bit confused as to why it is pulling the 10.14.1.5. \nComment: > I apologize for that. I will try to be more clear with my copy and paste next time. I will also try not to bother you guys too much I know you are busy.\r\n\r\nI don't mean to discourage conversation, it's just easier on my end to understand what your question is and what the root of the issue is :)\nComment: Understood. I will go back and check all my configs to see I may have transposed something. \nComment: I made the correction needed. Ran analysis on puttygen.exe to test. \r\n\r\n2022-08-05 15:59:54,365 [lib.cuckoo.core.guest] INFO: Task: Analysis completed successfully (id=cuckoo1_0, ip=10.14.2.6)\r\n\r\nI do have some questions about the agent.py startup from disk/snapshot (Windows 7 Instance). For some reason even if I move the agent.py to the startup folder at C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\StartUp the agent does not startup automatically. I reimaged the instance and still no go. I have to manually start the agent.py for the instance running. Also if I want to run this on a dirty line is there any difference on how I would accomplish this with Azure? I appreciate your feedback and time. Sorry I am struggling a little with this but it is a little different on how the machinery works as compared to my proxmox machinery setup. I appreciate your help. \nComment: Okay cool. So the way that snapshots work in Azure (if you are unfamiliar) is that they are captures of the disk data only - not the VM state too.  So to have the agent start on reboot/reimage (reimage is essentially a reset of the disk data and then a reboot), you need the agent to be in the startup folder (or in a scheduled task) when you take the snapshot. \r\n\r\nTo confirm that the agent starts correctly, on your golden image VM, ensure that you have the agent.py file in the startup folder and then reboot the VM and check if the agent.py has started and is listening on port 8000 (You can confirm this by `netstat -an | grep 8000`). If the agent starts correctly, you can take a snapshot of the golden image VM's disk and then create an Image using this snapshot in the Compute Gallery.\r\n\r\nRegarding the dirty line, depending on your network security group rules are implemented, this should be as easy as setting the `route` to `internet` in `routing.conf` or specifying `route` in the task options of a submission.\nComment: I was able to get the agent.py script to start on the instance. Thank you for your help. I had to delete the vm scale set , set to exclude prior versions of image from latest. Then used my 0.0.6 version on the scale build. Was able to pull a successful analysis on a test file.  Seems to be working great but I still need to work on my golden image installing my applications. This seems to work better than my proxmox machinery build. \nComment: \ud83d\ude80 \nComment: Sounds good @WVAuditors ! @kevoreilly @doomedraven  this issue can be closed. If you have any follow-up questions make sure to reach out! (Also follow the issue template or else the issue will be automatically closed)",
+  "Title: Bug fix for fetch_task args and setting task to updated value\nBody: Two bug fixes in the scheduler:\r\n- The `fetch_task` method takes only `categories` as an argument\r\n- If there is a relevant machine available, we need to grab the task from the db after we update the status, instead of using the task prior to its status being set",
+  "Title: fix: fix config errors with %%\nBody: There was a typo in 41e0b3dcb9afce6d278c9a689d9f7a764eec0201, apologies.\r\nFixes configparser parsing of % symbol",
+  "Title: Updated Linux doc and analyzer, removed duplication of config in aux modules, improved linux aux modules\nBody: - `analyzer/linux/analyzer.com`\r\n    - setting `self.options`, just like the Windows analyzer\r\n    - passes crucial data to aux modules upon initialization\r\n- `analyzer/linux/lib/common/results.py`\r\n    - updated the handling of uploaded files from the Linux analyzer\r\n- `analyzer/linux/modules/auxiliary/*`\r\n    - Added ability to enable modules via `auxiliary.conf`\r\n- `analyzer/windows/modules/auxiliary/*`\r\n    - Removed duplication of instantiating the Config object\r\n- `conf/auxiliary.conf`\r\n    - Added config options for all auxiliary modules, windows and linux",
+  "Title: Have CAPE adopt MACO format\nBody: Converts existing CAPE parsers to output according to [MACO's output model](https://github.com/CybercentreCanada/Maco/blob/master/maco/model.py). \r\n\r\nThis is just an initial run with limited knowledge of what the parsers are meant to extract using previous results in capesandbox.com.\r\nSome refinement may be needed on both the model's and the parsers' end to make sure ever the result is beneficial for all!\nComment: amazing work. thank you @cccs-rs. @kevoreilly  it looks good to me, do you want to get a look or press merge directly \nComment: Thanks - looks like I should test these before merging\nComment: For sure! The one thing I noticed is the output is more nested under MACO which I believe wasn't the case for CAPE, so maybe flattening is required?\nComment: i hope to test this this weekend and merge if no problems\nComment: Thank you guys\nComment: I reverted this due to undesirable changes in representation of the parser output, for example QakBot:\r\n\r\n![image](https://user-images.githubusercontent.com/22219888/189377687-c30868c9-a0ff-4dd0-a344-7aa449f22897.png)\r\n\r\nwhich should appear instead as:\r\n\r\n![image](https://user-images.githubusercontent.com/22219888/189378026-f0bcb9a8-ac2a-4536-9e18-dec5e0c4e2ff.png)\r\n\r\nI am happy to work on this myself, I will just need to test each parser individually to ensure the new output is still acceptable in the web ui as well as in exported form.\nComment: What do you think about having the data transform back to a flattened state for presentation in the UI? I can amend my PR to include that change specifically for CAPE in `cape_utils`?\r\n\r\nThis is at least sets the presentation in the original state while adopting the new format for the parsers.\r\nhttps://github.com/cccs-rs/CAPEv2/commit/8d0e1283cc24aabce57d33c776ffa1b70e6c3737\nComment: @kevoreilly @doomedraven thoughts?\nComment: Sorry for the delay in my reply - I have been pondering this, I think there is both an aesthetic and a technical point to be made here. I think Qakbot serves as a good example : in the malware the ip address and port are stored together. I think malware reverse engineers and other cape users will expect to see the config appear in the cape ui in the same form as in the malware, in what I would call 'raw' form. And from a purely aesthetic point of view, multiple repetitions of the label (i.e. \"server_port\") look bad. \r\n\r\nMy feeling is that to convert the config from the 'raw' malware into Maco then back into some third form for display in cape does not seem optimal. Ultimately if the config can be represented concisely in the same way that it appears in the malware then perhaps it does not matter, but I can't help but feel it might be better to do things the other way around: parse the data from the malware into 'raw' form which can be represented as it is currently, then transform into Maco for export/API and optional additional display in the web ui?\nComment: The problem that I noticed with creating a translation layer from CAPE-to-Maco, let's say for an export API, is that there isn't a standard for the CAPE output (least not one that I noticed).\r\n\r\nSo it would be hard to map from raw to Maco, however going from Maco to a flatter version of Maco is doable and should play well with the UI as it currently stands.\nComment: Well I guess the 'standard' output is defined by the code in the cape processing module. The design is a list of dicts at the top level representing families. Each dict has only one key which is the family name with the value another list of dicts, config item and values. Then more nested dicts/lists as needed basically.\r\n\r\nIf you can map from this form to MACO that could be a nice way to handle this. For example, here is a QakBot config in this form:\r\n\r\n```\r\n{\r\n    \"QakBot\": {\r\n        \"Loader Build\": [\r\n            \"404.30\"\r\n        ],\r\n        \"address\": [\r\n            [\r\n                \"23.240.47.58:995\",\r\n                \"12.172.173.82:465\",\r\n                \"91.169.12.198:32100\",\r\n                \"94.63.65.146:443\",\r\n                \"80.13.179.151:2222\",\r\n                \"64.207.237.118:443\",\r\n                \"24.206.27.39:443\",\r\n                \"83.114.60.6:2222\",\r\n                \"86.171.75.63:443\",\r\n                \"86.195.32.149:2222\",\r\n                \"170.253.25.35:443\",\r\n                \"92.185.204.18:2078\",\r\n                \"157.231.42.190:995\",\r\n                \"170.249.59.153:443\",\r\n                \"174.101.111.4:443\",\r\n                \"116.74.163.152:443\",\r\n                \"76.80.180.154:995\",\r\n                \"180.151.104.143:443\",\r\n                \"86.130.9.167:2222\",\r\n                \"86.99.15.243:2222\",\r\n                \"90.104.22.28:2222\",\r\n                \"172.117.139.142:995\",\r\n                \"103.141.50.117:995\",\r\n                \"176.142.207.63:443\",\r\n                \"71.183.236.133:443\",\r\n                \"131.106.168.223:443\",\r\n                \"190.75.110.239:443\",\r\n                \"70.66.199.12:443\",\r\n                \"183.87.31.34:443\",\r\n                \"83.110.223.247:443\",\r\n                \"47.34.30.133:443\",\r\n                \"71.247.10.63:995\",\r\n                \"92.207.132.174:2222\",\r\n                \"89.129.109.27:2222\",\r\n                \"12.172.173.82:21\",\r\n                \"87.202.101.164:50000\",\r\n                \"2.99.47.198:2222\",\r\n                \"154.247.95.119:2078\",\r\n                \"197.148.17.17:2078\",\r\n                \"37.14.229.220:2222\",\r\n                \"78.247.21.20:443\",\r\n                \"112.141.184.246:995\",\r\n                \"142.161.27.232:2222\",\r\n                \"71.247.10.63:50003\",\r\n                \"108.6.249.139:443\",\r\n                \"92.239.81.124:443\",\r\n                \"184.176.154.83:995\",\r\n                \"184.153.132.82:443\",\r\n                \"74.66.134.24:443\",\r\n                \"24.64.114.59:3389\",\r\n                \"105.184.161.242:443\",\r\n                \"73.36.196.11:443\",\r\n                \"82.31.37.241:443\",\r\n                \"24.116.45.121:443\",\r\n                \"213.67.255.57:2222\",\r\n                \"200.93.14.206:2222\",\r\n                \"91.254.215.167:443\",\r\n                \"87.220.205.14:2222\",\r\n                \"92.27.86.48:2222\",\r\n                \"73.230.28.7:443\",\r\n                \"176.151.15.101:443\",\r\n                \"24.64.114.59:2222\",\r\n                \"86.165.15.180:2222\",\r\n                \"66.191.69.18:995\",\r\n                \"175.205.2.54:443\",\r\n                \"64.121.161.102:443\",\r\n                \"87.99.116.47:443\",\r\n                \"180.156.240.239:995\",\r\n                \"12.172.173.82:22\",\r\n                \"50.68.204.71:995\",\r\n                \"213.91.235.146:443\",\r\n                \"174.77.209.5:443\",\r\n                \"76.127.192.23:443\",\r\n                \"50.68.204.71:443\",\r\n                \"109.11.175.42:2222\",\r\n                \"199.83.165.233:443\",\r\n                \"91.68.227.219:443\",\r\n                \"45.248.169.101:443\",\r\n                \"85.59.61.52:2222\",\r\n                \"85.139.176.42:2222\",\r\n                \"82.34.170.37:443\",\r\n                \"157.231.42.190:443\",\r\n                \"76.20.42.45:443\",\r\n                \"27.110.134.202:995\",\r\n                \"89.115.196.99:443\",\r\n                \"83.11.84.105:2222\",\r\n                \"12.172.173.82:2087\",\r\n                \"12.172.173.82:443\",\r\n                \"181.118.183.116:443\",\r\n                \"174.45.15.123:443\",\r\n                \"77.126.81.208:443\",\r\n                \"92.106.70.62:2222\",\r\n                \"82.121.73.56:2222\",\r\n                \"173.239.94.212:443\",\r\n                \"187.199.224.16:32103\",\r\n                \"183.82.100.110:2222\",\r\n                \"186.188.2.193:443\",\r\n                \"41.62.227.225:443\",\r\n                \"75.99.125.238:2222\",\r\n                \"2.84.98.228:2222\",\r\n                \"82.121.237.106:2222\",\r\n                \"100.6.8.7:443\",\r\n                \"85.241.180.94:443\",\r\n                \"79.37.204.67:443\",\r\n                \"217.128.91.196:2222\",\r\n                \"58.247.115.126:995\",\r\n                \"12.172.173.82:993\",\r\n                \"98.147.155.235:443\",\r\n                \"102.157.69.217:995\",\r\n                \"212.251.122.147:995\",\r\n                \"92.137.74.174:2222\",\r\n                \"24.228.132.224:2222\",\r\n                \"69.119.123.159:2222\",\r\n                \"89.79.229.50:443\",\r\n                \"47.176.30.75:443\",\r\n                \"174.104.184.149:443\",\r\n                \"173.32.181.236:443\",\r\n                \"74.92.243.113:50000\",\r\n                \"12.172.173.82:995\",\r\n                \"58.186.75.42:443\"\r\n            ]\r\n        ],\r\n        \"Campaign ID\": [\r\n            \"BB06\"\r\n        ],\r\n        \"Config timestamp\": [\r\n            \"11:06:37 17-11-2022\"\r\n        ]\r\n    }\r\n}\r\n```\nComment: Right, which can be doable if let's say all parsers agreed on using the same set of fields rather than a parser defining fields at will (which is the aspect that makes mapping difficult because it's unpredictable) even though they conform to the same format that the rest of system accepts.\r\n\r\nAn example of what I mean is Azorult using `address` to refer to C2 domains, Emotet using the field for <IP:PORT> C2 addresses, and BuerLoader using the field as well (but not sure if those addresses are C2-related or not.)\r\n\r\nSo for me, in that particular scenario, it becomes a guessing game of: does 'address' refer to C2 URLs, IPs, domains, etc or is there another usage associated to those connections like downloading/uploading/etc.?\r\n\r\nSo going from a structured output to less than is easier than the reverse but I do understand your point in which CAPE users would like to see the data in its 'raw' form.\r\n\r\nAs a possible solution, what if each parser had a function to convert from raw to MACO. From your perspective, you would run the parsers as-is and render the output as you would originally. In our case, we would run your parser and then feed the raw output through the parser-specified conversion and then take the output.\nComment: Yes I really like this idea - there are already multiple 'entry points' in some parsers, where cape calls ``extract_config()`` but standalone calls ``__main__()`` and a test harness may call ``test_them_all()`` so we could trivially add another function for MACO which wraps  ``extract_config()`` and the conversion function.",
+  "Title: Updating the Linux guest installation doc\nBody: None",
+  "Title: Fix regression in VM selection.\nBody: https://github.com/kevoreilly/CAPEv2/pull/1020 introduced a regression\r\nin selection of VM's for x86 tasks where it would no longer allow\r\nselection of an x64 VM. This reintroduces that ability so that x86 tasks\r\nwill select x86 OR x64 machines, preferring x86 over x64.\nComment: Thank you\nComment: Thanks @tbeadle !",
+  "Title: ubuntu 22 deps and as base system\nBody: None",
+  "Title: Ubuntu 22.04 and Python 3.10 incompatibility.\nBody: # Expected Behavior\r\n\r\nThe installation of the requisites to finish successfully.\r\n\r\n# Current Behavior\r\n\r\nThere are some incompatibilities when executing `pip3 install -r requirements.txt`.  Apparently a downgrade to Python 3.8 is required. \r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Execute `cape.sh`\r\n2. Try to execute `pip3 install -r requirements`\r\n3. you get it...\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| OS version       | Ubuntu 22.04 LTS Linux 5.15.0-41-generic #44-Ubuntu SMP Wed Jun 22 14:20:53 UTC 2022\r\n| Python version |  Python 3.10.4\r\n| Pip version |  pip 22.0.2 from /usr/lib/python3/dist-packages/pip (python 3.10)\r\n\r\n## Failure Logs\r\n\r\n```\r\n$ python3 --version\r\nPython 3.10.4\r\n$ python3 cuckoo.py \r\nERROR: Missing dependency: No module named 'gevent'\r\n$ pip3 --version\r\npip 22.0.2 from /usr/lib/python3/dist-packages/pip (python 3.10)\r\n$ pip3 install -r requirements.txt \r\nDefaulting to user installation because normal site-packages is not writeable\r\nIgnoring altgraph: markers 'sys_platform == \"darwin\" and python_version >= \"3.6\"' don't match your environment\r\nIgnoring backports.zoneinfo: markers 'python_version < \"3.9\" and python_version >= \"3.8\" and (python_version >= \"3.6\" and python_full_version < \"3.0.0\" and python_version < \"4\" or python_version >= \"3.6\" and python_version < \"4\" and python_full_version >= \"3.6.0\")' don't match your environment\r\nCollecting batch-deobfuscator@ git+https://github.com/DissectMalware/batch_deobfuscator.git@a0d9d51e28cf519a42b35587fde7f8df09c78be3\r\nERROR: Can't verify hashes for these requirements because we don't have a way to hash version control repositories:\r\n    batch-deobfuscator@ git+https://github.com/DissectMalware/batch_deobfuscator.git@a0d9d51e28cf519a42b35587fde7f8df09c78be3 from git+https://github.com/DissectMalware/batch_deobfuscator.git@a0d9d51e28cf519a42b35587fde7f8df09c78be3 (from -r requirements.txt (line 27))\r\n$ uname -a\r\nLinux 5.15.0-41-generic #44-Ubuntu SMP Wed Jun 22 14:20:53 UTC 2022 x86_64 x86_64 x86_64 GNU/Linux\r\n$ lsb_release -a\r\nNo LSB modules are available.\r\nDistributor ID:\tUbuntu\r\nDescription:\tUbuntu 22.04 LTS\r\nRelease:\t22.04\r\nCodename:\tjammy\r\n```\r\n\r\nApparently there are some dependencies that cannot be installed using Python 3.10 since they require python_version < 3.9.\r\n\nComment: Hello as i told pip sucks hard with the dependencies, the best is to move to poetry. One day we will strip all the not core dependencies and that will be the paradise for us and nightmare for users to install everything else by themselves :D\r\n\r\nYou can walk just over dependencies and remove them, as their official docs says:\r\n```\r\nSupport for backports.zoneinfo in Python 3.9+ is currently minimal, since it is expected that you would use the standard library zoneinfo module instead.\r\n```\r\n\r\nas we still have ubuntu 20.04 as recommended, but works fine on ubuntu 22, pip doesn't have a way to check OS version. \r\nUbuntu 20 uses python 3.8\r\nUbuntu 22 uses python 3.10\nComment: for u22 solution will be once we merge this https://github.com/kevoreilly/CAPEv2/pull/1034. need test, but no time yet for that\nComment: Tried using poetry and a simple `poetry install` also fails on Ubuntu 22 when it tries to install greenlet. \r\n\r\n```\r\n  \u2022 Installing greenlet (0.4.16): Failed\r\n\r\n  EnvCommandError\r\n\r\n  Command ['/home/razvan/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/pip', 'install', '--no-deps', '/home/razvan/.cache/pypoetry/artifacts/a2/de/c6/7bd9111ed1a35477c1cfdf7491b95b5fd55c1002086c61332203480427/greenlet-0.4.16.tar.gz'] errored with the following return code 1, and output: \r\n  Processing /home/razvan/.cache/pypoetry/artifacts/a2/de/c6/7bd9111ed1a35477c1cfdf7491b95b5fd55c1002086c61332203480427/greenlet-0.4.16.tar.gz\r\n    Preparing metadata (setup.py): started\r\n    Preparing metadata (setup.py): finished with status 'done'\r\n  Building wheels for collected packages: greenlet\r\n    Building wheel for greenlet (setup.py): started\r\n    Building wheel for greenlet (setup.py): finished with status 'error'\r\n    error: subprocess-exited-with-error\r\n    \r\n    \u00d7 python setup.py bdist_wheel did not run successfully.\r\n    \u2502 exit code: 1\r\n    \u2570\u2500> [17 lines of output]\r\n        running bdist_wheel\r\n        running build\r\n        running build_ext\r\n        building 'greenlet' extension\r\n        creating build\r\n        creating build/temp.linux-x86_64-cpython-310\r\n        x86_64-linux-gnu-gcc -Wno-unused-result -Wsign-compare -DNDEBUG -g -fwrapv -O2 -Wall -g -fstack-protector-strong -Wformat -Werror=format-security -g -fwrapv -O2 -fPIC -I/home/razvan/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/include -I/usr/include/python3.10 -c greenlet.c -o build/temp.linux-x86_64-cpython-310/greenlet.o\r\n        greenlet.c: In function \u2018g_calltrace\u2019:\r\n        greenlet.c:554:17: error: \u2018PyThreadState\u2019 {aka \u2018struct _ts\u2019} has no member named \u2018use_tracing\u2019; did you mean \u2018tracing\u2019?\r\n          554 |         tstate->use_tracing = 0;\r\n              |                 ^~~~~~~~~~~\r\n              |                 tracing\r\n        greenlet.c:557:17: error: \u2018PyThreadState\u2019 {aka \u2018struct _ts\u2019} has no member named \u2018use_tracing\u2019; did you mean \u2018tracing\u2019?\r\n          557 |         tstate->use_tracing = (tstate->tracing <= 0 &&\r\n              |                 ^~~~~~~~~~~\r\n              |                 tracing\r\n        error: command '/usr/bin/x86_64-linux-gnu-gcc' failed with exit code 1\r\n        [end of output]\r\n    \r\n    note: This error originates from a subprocess, and is likely not a problem with pip.\r\n    ERROR: Failed building wheel for greenlet\r\n    Running setup.py clean for greenlet\r\n  Failed to build greenlet\r\n  Installing collected packages: greenlet\r\n    Running setup.py install for greenlet: started\r\n    Running setup.py install for greenlet: finished with status 'error'\r\n    error: subprocess-exited-with-error\r\n    \r\n    \u00d7 Running setup.py install for greenlet did not run successfully.\r\n    \u2502 exit code: 1\r\n    \u2570\u2500> [19 lines of output]\r\n        running install\r\n        /home/razvan/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/setuptools/command/install.py:34: SetuptoolsDeprecationWarning: setup.py install is deprecated. Use build and pip and other standards-based tools.\r\n          warnings.warn(\r\n        running build\r\n        running build_ext\r\n        building 'greenlet' extension\r\n        creating build\r\n        creating build/temp.linux-x86_64-cpython-310\r\n        x86_64-linux-gnu-gcc -Wno-unused-result -Wsign-compare -DNDEBUG -g -fwrapv -O2 -Wall -g -fstack-protector-strong -Wformat -Werror=format-security -g -fwrapv -O2 -fPIC -I/home/razvan/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/include -I/usr/include/python3.10 -c greenlet.c -o build/temp.linux-x86_64-cpython-310/greenlet.o\r\n        greenlet.c: In function \u2018g_calltrace\u2019:\r\n        greenlet.c:554:17: error: \u2018PyThreadState\u2019 {aka \u2018struct _ts\u2019} has no member named \u2018use_tracing\u2019; did you mean \u2018tracing\u2019?\r\n          554 |         tstate->use_tracing = 0;\r\n              |                 ^~~~~~~~~~~\r\n              |                 tracing\r\n        greenlet.c:557:17: error: \u2018PyThreadState\u2019 {aka \u2018struct _ts\u2019} has no member named \u2018use_tracing\u2019; did you mean \u2018tracing\u2019?\r\n          557 |         tstate->use_tracing = (tstate->tracing <= 0 &&\r\n              |                 ^~~~~~~~~~~\r\n              |                 tracing\r\n        error: command '/usr/bin/x86_64-linux-gnu-gcc' failed with exit code 1\r\n        [end of output]\r\n    \r\n    note: This error originates from a subprocess, and is likely not a problem with pip.\r\n  error: legacy-install-failure\r\n  \r\n  \u00d7 Encountered error while trying to install package.\r\n  \u2570\u2500> greenlet\r\n  \r\n  note: This is an issue with the package mentioned above, not pip.\r\n  hint: See above for output from the failure.\r\n  \r\n  [notice] A new release of pip available: 22.2 -> 22.2.1\r\n  [notice] To update, run: pip install --upgrade pip\r\n```\r\n\r\nI will install it by hand and will post here the solution when I get it working, just for the record. \nComment: that is bcz you didn't read the poetry, requirements file neither discussions, there is comment about that ubuntu 22 needs different version but pip/poetry doesn't have check for that. see my PR about ubuntu 22 as base \nComment: as example https://github.com/kevoreilly/CAPEv2/discussions/916\nComment: done now",
+  "Title: fix: duplicate signatures under same TTP ID\nBody: Fixes the following bug:\r\n![brave_pn2sj3RcCl](https://user-images.githubusercontent.com/29896527/182104633-dc413f42-8bc9-4c5d-9548-0df9628812c3.png)\r\n\r\nApologies for not fixing this bug earlier, my deployment of CAPE did not encounter this error.\r\n\nComment: thank you",
+  "Title: small fix\nBody: i had to make this change to for URLs to submit on my instance, not sure if there are actually supposed to be 3 'list_of_files'\nComment: almost, https://github.com/kevoreilly/CAPEv2/blob/3caff511f046359cffcd70f18a2450567bef89a5/web/submission/views.py#L269-L275\r\n\r\nsee there is 2 different cases, it should be 3 not 2 as the rest uses 3, fixing",
+  "Title: small fix\nBody: None\nComment: Thank you",
+  "Title: Status of analysis is Running for a long time, so I checked the process.py file and it is giving error: \"Failed to get start/end time from Task\"\nBody: ##\u00a0Removing issue template is equivalent to invalid issue!\r\n* We have this template in order to not have to ask everyone the same questions again and again!\r\n- [ ] I understand that if I remove this template this issue will be automatically closed without answer\r\n\r\n## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account acctivation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [yes] I am running the latest version\r\n- [yes ] I did read the README!\r\n- [yes ] I checked the documentation and found no answer\r\n- [yes ] I checked to make sure that this issue has not already been filed\r\n- [yes ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [yes ] I'm have read all configs with all optional parts\r\n- [yes ] I'm have checked [discussions section](https://github.com/kevoreilly/CAPEv2/discussions)\r\n\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\r\nStatus should not be in \"Running\" mode for a long period of time. Basically, it should be completed after a while.\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\nThe status is in Running mode for a long period of time.\r\n![image](https://user-images.githubusercontent.com/50963903/181621302-66a93ad5-3a60-4a1e-8b9c-88446fa8b383.png)\r\n\r\nSo, I checked the process.py using \"python3 utils/process.py 6\" and it is giving below error:\r\n![image](https://user-images.githubusercontent.com/50963903/181621504-a0e83b5a-4b6f-459b-ab81-d6fab025dccf.png)\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\nComment: can you share hash or submit to capesandbox?\nComment: Here's the SHA256 Hash:\r\n1e9d66214e14db47f910fa05eeebb9331dbfcccc0672829a3f007571c3acf309\r\n\nComment: works fine on our side https://capesandbox.com/analysis/294980/ should be something on your side.  You will need to investigate on your own what is wrong on your side. Maybe some configuration, no idea\nComment: As soon as I submit the sample for analysis, the Guest VM shuts down. Can you please tell what could be an issue or what configs need to be changed?\r\nThanks!\nComment: Uff no idea, you need to debug that you Def has somethimg wrong, check wiki\nin this project how to debug this case, part of CAPE_DBG=1\n\nEl vie, 29 jul 2022 1:07, dhruvpatel56 ***@***.***> escribi\u00f3:\n\n> As soon as I submit the sample for analysis, the Guest VM shuts down. Can\n> you please tell what could be an issue or what configs need to be changed?\n> Thanks!\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1029#issuecomment-1198710407>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH37UEVWC4AUHMAYS3Q3VWMHBPANCNFSM546MGJTQ>\n> .\n> You are receiving this because you commented.Message ID:\n> ***@***.***>\n>\n\nComment: https://github.com/kevoreilly/CAPEv2/wiki/Tips'n'Tricks#how-to-debug-analyzer-and-any-script-that-executes-inside-of-the-virtual-machine\nComment: as we can't reproduce this issue im closing it. but feel free to ask here or post what was wrong\nComment: Thanks for your help! I will give it a shot.",
+  "Title: Running \"python3 cuckoo.py\" throwing error related to \"Not enough free disk space\"\nBody: ##\u00a0Removing issue template is equivalent to invalid issue!\r\n* We have this template in order to not have to ask everyone the same questions again and again!\r\n- [ ] I understand that if I remove this template this issue will be automatically closed without answer\r\n\r\n## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account acctivation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [yes ] I am running the latest version\r\n- [yes ] I did read the README!\r\n- [ yes] I checked the documentation and found no answer\r\n- [ yes] I checked to make sure that this issue has not already been filed\r\n- [yes ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [yes ] I'm have read all configs with all optional parts\r\n- [yes ] I'm have checked [discussions section](https://github.com/kevoreilly/CAPEv2/discussions)\r\n\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\r\nCukoo.py should run just fine.\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\nWhen I run \"python3 cuckoo.py\", it is throwing below error:\r\n\r\n![image](https://user-images.githubusercontent.com/50963903/181389293-67d2cad5-af7e-4e7b-ae57-7fca84b2184b.png)\r\n\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n\nComment: did you read the msg itself? you have answer in there\nComment: Yes, I changed the limit in cuckoo.conf file, but still giving me this error.\nComment: You need to restar cape service to reread configs\n\nEl jue, 28 jul 2022 19:46, dhruvpatel56 ***@***.***> escribi\u00f3:\n\n> Yes, I changed the limit in cuckoo.conf file, but still giving me this\n> error.\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/1028#issuecomment-1198451435>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH36NR46DK3CTQ4TR7HTVWLBQNANCNFSM543KEK2Q>\n> .\n> You are receiving this because you modified the open/close state.Message\n> ID: ***@***.***>\n>\n",
+  "Title: Use runserver_plus for web so that we can see exceptions\nBody: We are importing the `django-extensions` package, which provides `runserver_plus`. This module allows us to see the stacktraces for REST exceptions, which are incredibly useful compared to not having them.\r\n\r\nThe --keep-meta-shutdown is to address this bug for older versions of Python3 https://stackoverflow.com/questions/72166259/werkzeug-server-is-shutting-down-in-django-application\nComment: ooo that is interesting, thank you",
+  "Title: Moving curtain modules to the community repo\nBody: I suspect this module isn't maintained / supported by the CAPEv2 repo maintainers\r\n\r\nREL https://github.com/kevoreilly/community/pull/307\nComment: ah yes, i stopped to add new deobfuscation suppprt ",
+  "Title: Improving exception logging, soft lookup for target\nBody: None",
+  "Title: BSON parsing performance investigation\nBody: details: https://github.com/kevoreilly/CAPEv2/pull/1017#issuecomment-1195419800\nComment: Here are my findings regarding this issue:\r\n\r\nAccording to this [configuration](https://github.com/kevoreilly/CAPEv2/blob/master/conf/cuckoo.conf#L115:L117), 10k logs takes 2 minutes to process. This is too long for the expected parsing to be as a baseline.\r\n\r\nCAPE occasionally generates (via the monitor) significantly larger BSON files than Cuckoo's monitor (by an order of magnitude KB -> MB). I run the same samples for ~2 minutes each on both CAPE and Cuckoo, and CAPE generates some BSON files > 30MB and even 60MB which contain > 400k api calls. 400k calls * (10k calls / 2 minutes) = \u267e\ufe0f haha.\r\n\r\nCuckoo\r\n```\r\ncuckoo@cuckoo-nest-vm:~$ ls -lh .cuckoo/storage/analyses/*/logs/*.bson | grep \"M\"\r\n-rw-r--r-- 1 cuckoo cuckoo 1.9M Sep  2 15:19 .cuckoo/storage/analyses/525070/logs/1028.bson\r\n-rw-r--r-- 1 cuckoo cuckoo 2.1M Sep  2 15:18 .cuckoo/storage/analyses/525076/logs/2880.bson\r\n-rw-r--r-- 1 cuckoo cuckoo 3.5M Sep  2 15:20 .cuckoo/storage/analyses/525088/logs/3160.bson\r\n-rw-r--r-- 1 cuckoo cuckoo 2.9M Sep  2 15:20 .cuckoo/storage/analyses/525096/logs/2948.bson\r\n-rw-r--r-- 1 cuckoo cuckoo 2.5M Sep  2 15:19 .cuckoo/storage/analyses/525104/logs/2820.bson\r\n-rw-r--r-- 1 cuckoo cuckoo 2.5M Sep  2 15:20 .cuckoo/storage/analyses/525108/logs/3084.bson\r\n```\r\n\r\nCAPE\r\n```\r\ncape@cape-nest-vm:~$ ls -lh /opt/CAPEv2/storage/analyses/*/logs/*.bson | grep M\r\n-rw-r--r-- 1 cape cape  60M Sep  2 15:05 /opt/CAPEv2/storage/analyses/46553/logs/7068.bson\r\n-rw-r--r-- 1 cape cape 122M Sep  2 15:09 /opt/CAPEv2/storage/analyses/46583/logs/2068.bson\r\n-rw-r--r-- 1 cape cape 1.1M Sep  2 15:22 /opt/CAPEv2/storage/analyses/46673/logs/436.bson\r\n-rw-r--r-- 1 cape cape 2.2M Sep  2 15:20 /opt/CAPEv2/storage/analyses/46680/logs/1284.bson\r\n-rw-r--r-- 1 cape cape  59M Sep  2 15:22 /opt/CAPEv2/storage/analyses/46691/logs/7816.bson\r\n-rw-r--r-- 1 cape cape 2.4M Sep  2 15:23 /opt/CAPEv2/storage/analyses/46692/logs/2972.bson\r\n```\r\n\r\nThe solution to this shouldn't be \"Run the sample for less time\" or \"Use the `analysis_call_limit`\" since some samples require > 1 minute to execute, and the `analysis_call_limit` only cuts the total calls used for signatures and reporting so there could be some missing signatures with this. \r\n\r\nThe main culprit is the iteration of the `ParseProcessLog` object, which is called at two difference places during the processing stage:\r\n1. `RunSignatures`: https://github.com/kevoreilly/CAPEv2/blob/master/lib/cuckoo/core/plugins.py#L518\r\n2. `RunReporting`: https://github.com/kevoreilly/CAPEv2/blob/master/lib/cuckoo/core/plugins.py#L654\r\n\r\nWhen I wrap the iteration of the `ParseProcessLog` object for a 30MB BSON log with cProfile, I get the following:\r\n```\r\n         30175011 function calls in 72.775 seconds\r\n\r\n   Ordered by: standard name\r\n\r\n   ncalls  tottime  percall  cumtime  percall filename:lineno(function)\r\n   230745    0.355    0.000    3.113    0.000 __init__.py:874(decode)\r\n   461492    0.969    0.000    1.749    0.000 behavior.py:101(read)\r\n        1    0.000    0.000    0.000    0.000 behavior.py:113(__iter__)\r\n        1    0.000    0.000    0.000    0.000 behavior.py:125(reset)\r\n   230621    0.190    0.000    0.190    0.000 behavior.py:133(compare_calls)\r\n   461240    2.468    0.000   66.793    0.000 behavior.py:143(wait_for_lastcall)\r\n   230618    3.151    0.000   70.133    0.000 behavior.py:158(cacheless_next)\r\n   230618    2.270    0.000   72.775    0.000 behavior.py:184(__next__)\r\n        1    0.000    0.000    0.000    0.000 behavior.py:196(log_process)\r\n        1    0.000    0.000    0.000    0.000 behavior.py:210(log_thread)\r\n        1    0.000    0.000    0.000    0.000 behavior.py:213(log_environ)\r\n   230622    3.788    0.000   42.050    0.000 behavior.py:238(log_call)\r\n   230622   15.329    0.000   33.899    0.000 behavior.py:270(_parse)\r\n        1    0.000    0.000    0.000    0.000 cProfile.py:133(__exit__)\r\n   230618    0.305    0.000    0.372    0.000 config.py:18(__getattr__)\r\n   230747    9.720    0.000   64.324    0.000 netlog.py:178(read_next_message)\r\n   230745    0.970    0.000    4.083    0.000 netlog.py:18(<lambda>)\r\n   230625    3.498    0.000    5.561    0.000 netlog.py:271(<dictcomp>)\r\n   114074    0.611    0.000    0.713    0.000 netlog.py:36(<lambda>)\r\n      120    0.001    0.000    0.002    0.000 netlog.py:71(check_names_for_typeinfo)\r\n      120    0.000    0.000    0.001    0.000 netlog.py:72(<listcomp>)\r\n        1    0.000    0.000    0.000    0.000 ntpath.py:124(splitdrive)\r\n        1    0.000    0.000    0.000    0.000 ntpath.py:180(split)\r\n        1    0.000    0.000    0.000    0.000 ntpath.py:34(_get_bothseps)\r\n     9753    0.016    0.000    0.019    0.000 utils.py:290(convert_char)\r\n   346572    6.378    0.000    7.994    0.000 utils.py:300(is_printable)\r\n   232456    0.378    0.000    0.802    0.000 utils.py:310(bytes2str)\r\n    14552    0.092    0.000    0.095    0.000 utils.py:319(<genexpr>)\r\n   620113    1.916    0.000   10.231    0.000 utils.py:357(convert_to_printable)\r\n     9874    0.062    0.000    0.081    0.000 utils.py:375(<genexpr>)\r\n       32    0.000    0.000    0.000    0.000 utils.py:435(simple_pretty_print_convert)\r\n   230622    0.173    0.000    0.176    0.000 utils.py:449(pretty_print_retval)\r\n   620113    5.232    0.000    6.030    0.000 utils.py:502(pretty_print_arg)\r\n       32    0.000    0.000    0.001    0.000 utils.py:56(arg_name_clscontext)\r\n        1    0.000    0.000    0.000    0.000 utils.py:601(get_filename_from_path)\r\n   230622    1.302    0.000    4.363    0.000 utils.py:715(logtime)\r\n  1773251    1.837    0.000    2.265    0.000 utils.py:828(default_converter)\r\n       32    0.000    0.000    0.000    0.000 utils_dicts.py:10(ClsContextDict)\r\n       20    0.000    0.000    0.000    0.000 utils_dicts.py:148(HookIdentifierDict)\r\n      143    0.000    0.000    0.000    0.000 utils_dicts.py:182(CreateDispositionDict)\r\n       49    0.000    0.000    0.000    0.000 utils_dicts.py:193(SystemInformationClassDict)\r\n    66019    0.191    0.000    0.191    0.000 utils_dicts.py:204(RegistryTypeDict)\r\n       22    0.000    0.000    0.000    0.000 utils_dicts.py:260(IoControlCodeDict)\r\n      209    0.002    0.000    0.002    0.000 utils_dicts.py:462(FileInformationClassDict)\r\n       56    0.000    0.000    0.000    0.000 utils_dicts.py:523(ProcessInformationClassDict)\r\n        7    0.000    0.000    0.000    0.000 utils_dicts.py:534(ThreadInformationClassDict)\r\n     5284    0.010    0.000    0.010    0.000 utils_dicts.py:566(RegistryDict)\r\n       51    0.000    0.000    0.000    0.000 utils_dicts.py:6(DispositionDict)\r\n        7    0.000    0.000    0.000    0.000 utils_dicts.py:87(FolderDict)\r\n       20    0.000    0.000    0.000    0.000 utils_pretty_print_funcs.py:103(hookidentifer)\r\n       51    0.005    0.000    0.005    0.000 utils_pretty_print_funcs.py:116(disposition)\r\n      143    0.001    0.000    0.001    0.000 utils_pretty_print_funcs.py:121(createdisposition)\r\n      358    0.002    0.000    0.002    0.000 utils_pretty_print_funcs.py:126(shareaccess)\r\n       49    0.001    0.000    0.001    0.000 utils_pretty_print_funcs.py:143(systeminformationclass)\r\n    66019    0.495    0.000    0.705    0.000 utils_pretty_print_funcs.py:148(category_registry_arg_name_type)\r\n     1427    0.006    0.000    0.007    0.000 utils_pretty_print_funcs.py:245(category_registry_arg_name_access_desired_access)\r\n     1421    0.016    0.000    0.017    0.000 utils_pretty_print_funcs.py:288(arg_name_protection_and_others)\r\n       22    0.000    0.000    0.000    0.000 utils_pretty_print_funcs.py:329(arg_name_iocontrolcode)\r\n        1    0.000    0.000    0.000    0.000 utils_pretty_print_funcs.py:387(api_name_move_arg_name_flags)\r\n        7    0.000    0.000    0.000    0.000 utils_pretty_print_funcs.py:39(api_name_shgetfolderpathw_arg_name_folder)\r\n      143    0.001    0.000    0.001    0.000 utils_pretty_print_funcs.py:407(arg_name_fileattributes)\r\n      364    0.013    0.000    0.013    0.000 utils_pretty_print_funcs.py:459(api_name_nt_arg_name_desiredaccess)\r\n        2    0.000    0.000    0.000    0.000 utils_pretty_print_funcs.py:545(api_name_ntopenprocess_arg_name_desiredaccess)\r\n      209    0.002    0.000    0.004    0.000 utils_pretty_print_funcs.py:742(arg_name_fileinformationclass)\r\n       56    0.000    0.000    0.000    0.000 utils_pretty_print_funcs.py:747(arg_name_processinformationclass)\r\n        7    0.000    0.000    0.000    0.000 utils_pretty_print_funcs.py:752(arg_name_threadinformationclass)\r\n     5284    0.027    0.000    0.039    0.000 utils_pretty_print_funcs.py:767(arg_name_registry)\r\n       92    0.001    0.000    0.001    0.000 utils_pretty_print_funcs.py:8(api_name_ntcreatesection_arg_name_desiredaccess)\r\n   230745    0.243    0.000    0.243    0.000 {built-in method _struct.unpack}\r\n   230745    2.699    0.000    2.699    0.000 {built-in method bson._cbson._bson_to_dict}\r\n    14385    0.003    0.000    0.003    0.000 {built-in method builtins.chr}\r\n 15401082    2.595    0.000    2.595    0.000 {built-in method builtins.isinstance}\r\n   232512    0.056    0.000    0.056    0.000 {built-in method builtins.issubclass}\r\n  1384232    0.334    0.000    0.334    0.000 {built-in method builtins.len}\r\n     7532    0.001    0.000    0.001    0.000 {built-in method builtins.ord}\r\n        1    0.000    0.000    0.000    0.000 {built-in method fromtimestamp}\r\n        2    0.000    0.000    0.000    0.000 {built-in method posix.fspath}\r\n   230622    1.545    0.000    1.545    0.000 {built-in method time.strftime}\r\n   626421    0.174    0.000    0.174    0.000 {method 'append' of 'list' objects}\r\n   232466    0.203    0.000    0.203    0.000 {method 'decode' of 'bytes' objects}\r\n        1    0.000    0.000    0.000    0.000 {method 'disable' of '_lsprof.Profiler' objects}\r\n  2387279    0.485    0.000    0.485    0.000 {method 'get' of 'dict' objects}\r\n   461277    0.124    0.000    0.124    0.000 {method 'items' of 'dict' objects}\r\n     3144    0.166    0.000    0.342    0.000 {method 'join' of 'str' objects}\r\n   461244    0.180    0.000    0.180    0.000 {method 'pop' of 'dict' objects}\r\n   461492    0.663    0.000    0.663    0.000 {method 'read' of '_io.BufferedReader' objects}\r\n        1    0.000    0.000    0.000    0.000 {method 'replace' of 'bytes' objects}\r\n        1    0.000    0.000    0.000    0.000 {method 'rstrip' of 'bytes' objects}\r\n        1    0.000    0.000    0.000    0.000 {method 'seek' of '_io.BufferedReader' objects}\r\n   230622    1.516    0.000    1.516    0.000 {method 'timetuple' of 'datetime.datetime' objects}\r\n        1    0.000    0.000    0.000    0.000 {method 'update' of 'dict' objects}\r\n```\r\n\r\nThe solution could either be: \r\n1. Less logs generated by the monitor\r\n    a. I'm not sure if there is a reason so many calls are included by the CAPE monitor. But verbose output is preferred to not enough, so I don't like this option.\r\n2. A limit applied per-call to cap the number of duplicate calls\r\n    a. The [`api_spamming`](https://github.com/kevoreilly/community/blob/master/modules/signatures/api_spamming.py) signature looks for API calls > 10k, but in the `repeated` section of a call.\r\n    b. The `repeated` section is only incremented for calls that are next to each other... this is a problem\r\n3. Somehow make the iteration of the `ParseProcessLog` object faster?\r\n4. Another solution I'm not thinking of?\nComment: There is already functionality in the monitor to cap the output in cases of API spam or other excessive logging, targeting rate and total calls per API per process.\r\n\r\n```\r\n#define HOOK_TIME_SAMPLE 100\r\n#define HOOK_RATE_LIMIT 0x100\r\n#define HOOK_LIMIT 0x10000\r\n```\r\n\r\nWhen hit, these caps produce a message to the analysis log, e.g.\r\n```\r\napi-rate-cap: memcpy hook disabled due to rate.\r\n```\r\n\r\nSo my question is about the specific sample as there is no information supplied about that or which APIs are hammered to result in these massive bsons. I would hope this issue might be solved by ensuring the monitor's api-rate-cap mechanism is doing its job and perhaps tuning it to cap more aggressively.\nComment: Hey @kevoreilly, here are some samples:\r\n1. [lnk sample](https://www.virustotal.com/gui/file/3ca66f8b12394d093fd6095c072922bf8ad718a7d0bca490eaba752766fd3b23) created a BSON that was 14MB.\r\n2. [exe sample](https://www.virustotal.com/gui/file/3c634ef22177b0460a3f9eda7c0320292604c3ba13029955761ea2b6522d3c1f) created a BSON that was 5MB.\r\n3. [exe sample](https://www.virustotal.com/gui/file/af7af8ac48c25bcf0a40d6eb4c509b513bc6d6c5f4ac0ce6ca5e6ab39713cead) created a BSON that was 6MB.\r\n4. [exe sample](https://www.virustotal.com/gui/file/379eccd82558fe7035c1c1e0742c5521bf0a7e1f0996c83523adb032720975dc) created a BSON that was **_108MB_**.\r\n\r\nFrom one 31MB BSON file for a sample that I do not have anymore (I know right), the following API calls were made x times:\r\nLdrGetDllHandle 285\r\nLdrGetProcedureAddressForCaller 2022\r\nNtAllocateVirtualMemory 161\r\n_**GetSystemTimeAsFileTime 65491**_\r\nNtQueryAttributesFile 786\r\nNtOpenFile 215\r\nNtClose 6671\r\nLdrLoadDll 112\r\nDllLoadNotification 132\r\nNtProtectVirtualMemory 580\r\nNtOpenKey 274\r\nNtQueryValueKey 1485\r\nRegOpenKeyExW 5174\r\nRegQueryValueExW 4580\r\nRegCloseKey 1793\r\nNtCreateFile 143\r\n_**RegSetValueExW 65422**_\r\nNtEnumerateKey 5287\r\nSystemParametersInfoW 163\r\nNtOpenKeyEx 1102\r\n_**NtSetTimerEx 65345**_\r\nNtQueryKey 623\r\nRtlSetCurrentTransaction 630\r\nRegEnumKeyW 130\r\nNtQueryInformationFile 137\nComment: one day maybe we will get protobuf or msgpack replacement for bson and that will give us more speed\nComment: > There is already functionality in the monitor to cap the output in cases of API spam or other excessive logging, targeting rate and total calls per API per process.\r\n> \r\n> ```\r\n> #define HOOK_TIME_SAMPLE 100\r\n> #define HOOK_RATE_LIMIT 0x100\r\n> #define HOOK_LIMIT 0x10000\r\n> ```\r\n> \r\n> When hit, these caps produce a message to the analysis log, e.g.\r\n> \r\n> ```\r\n> api-rate-cap: memcpy hook disabled due to rate.\r\n> ```\r\n> \r\n> So my question is about the specific sample as there is no information supplied about that or which APIs are hammered to result in these massive bsons. I would hope this issue might be solved by ensuring the monitor's api-rate-cap mechanism is doing its job and perhaps tuning it to cap more aggressively.\r\n\r\n@kevoreilly the following file created a BSON that was 76MB https://www.virustotal.com/gui/file/2376c91278cfd2e83b7effeca44ffb2faee9e614fe4830f129f31da7e2ae05e7\r\nI'll send you the BSON in a PM.\r\n\r\nBelow is the log you mentioned above, found in the analysis.log for this file, but the BSON file is still massive.\r\n\r\n```\r\ncape@cape-nest-vm:~$ cat /opt/CAPEv2/storage/analyses/50504/analysis.log | grep \"api-rate\"\r\n2022-09-06 17:35:39,980 [root] DEBUG: api-rate-cap: NtQueryKey hook disabled due to rate.\r\n2022-09-06 17:35:39,980 [root] DEBUG: api-rate-cap: NtOpenKeyEx hook disabled due to rate.\r\n2022-09-06 17:35:40,418 [root] DEBUG: api-rate-cap: NtEnumerateKey hook disabled due to rate.\r\n2022-09-06 17:35:51,267 [root] DEBUG: api-rate-cap: memcpy hook disabled due to rate.\r\n2022-09-06 17:35:52,345 [root] DEBUG: api-rate-cap: RegQueryValueExW hook disabled due to rate.\r\n2022-09-06 17:35:52,345 [root] DEBUG: api-rate-cap: RegQueryValueExW hook disabled due to rate.\r\n2022-09-06 17:35:52,470 [root] DEBUG: api-rate-cap: NtQueryValueKey hook disabled due to rate.\r\n2022-09-06 17:35:52,470 [root] DEBUG: api-rate-cap: NtQueryValueKey hook disabled due to rate.\r\n2022-09-06 17:35:52,485 [root] DEBUG: api-rate-cap: NtClose hook disabled due to rate.\r\n2022-09-06 17:35:52,501 [root] DEBUG: api-rate-cap: NtClose hook disabled due to rate.\r\n2022-09-06 17:35:53,220 [root] DEBUG: api-rate-cap: RegOpenKeyExW hook disabled due to rate.\r\n2022-09-06 17:35:53,313 [root] DEBUG: api-rate-cap: RtlSetCurrentTransaction hook disabled due to rate.\r\n2022-09-06 17:36:08,157 [root] DEBUG: api-rate-cap: RegCloseKey hook disabled due to count.\r\n2022-09-06 17:36:56,985 [root] DEBUG: api-rate-cap: MsgWaitForMultipleObjectsEx hook disabled due to count.\r\n2022-09-06 17:37:03,251 [root] DEBUG: api-rate-cap: RegSetValueExW hook disabled due to count.\r\n2022-09-06 17:37:03,407 [root] DEBUG: api-rate-cap: GetSystemTimeAsFileTime hook disabled due to count.\r\n2022-09-06 17:37:03,642 [root] DEBUG: api-rate-cap: NtSetTimerEx hook disabled due to count.\r\n2022-09-06 17:37:04,235 [root] DEBUG: api-rate-cap: GetSystemTimeAsFileTime hook disabled due to rate.\r\n2022-09-06 17:37:04,235 [root] DEBUG: api-rate-cap: NtWaitForSingleObject hook disabled due to rate.\r\n2022-09-06 17:37:04,267 [root] DEBUG: api-rate-cap: memcpy hook disabled due to rate.\r\n2022-09-06 17:37:15,985 [root] DEBUG: api-rate-cap: memcpy hook disabled due to rate.\r\n2022-09-06 17:37:16,157 [root] DEBUG: api-rate-cap: memcpy hook disabled due to rate.\r\n```\nComment: I found that the following API calls are noisy and not used in **good** signatures:\r\n```\r\nGetCursorPos, GetLastInputInfo, GetSystemTimeAsFileTime, LdrGetProcedureAddressForCaller, MsgWaitForMultipleObjectsEx, NtEnumerateKey, NtFreeVirtualMemory, NtOpenKeyEx, NtQueryInformationFile, NtQueryKey, NtQueryValueKey, NtSetTimer, NtSetTimerEx, NtWaitForSingleObject, NtYieldExecution, PostMessageW, RegOpenKeyExW, RegCloseKey, RtlSetCurrentTransaction, SystemParametersInfoA, SystemParametersInfoW\r\n```\r\nPassing these with the `exclude-api` option decreases the BSON size significantly and therefore increases the processing speed.\r\n\r\n\nComment: Update: You NEED the `GetSystemTimeAsFileTime` API for capemon to enforce API limits, as of this writing\nComment: The requirement to hook `GetSystemTimeAsFileTime` has been removed. Hopefully this was the final hurdle and with the new more aggressive total cap this issue is now solved.\nComment: Confirmed, this commit https://github.com/kevoreilly/capemon/commit/e0042a0af62ea7047a217b3f0e006cf5710d1762 allows for the `GetSystemTimeAsFileTime` API to be added to the `exclude-apis` list for further shrinking of the potential BSON. I'd say this case is closed, thank you everyone for your help!\nComment: Hmm but use of `exclude-apis` is itself a workaround for the underlying issue... Which could suggest that even still the per-api total cap is not sufficient. I certainly don't advocate users having to build their own `exclude-apis` lists as if there is a legitimate question over the value of a particular hook, it could potentially be removed. Otherwise the assumption should be that they are valuable and should not be excluded, and that any resulting output problems should be tackled by some other means... If you know what I mean :)\nComment: Ya that makes sense. Here is my list of `exclude-apis` hooks that I'm using, if its useful for anyone https://github.com/CybercentreCanada/assemblyline-service-cape/blob/aa7e219cf48915e2e25472d997aeaaa35b16ed87/cape/cape_main.py#L103:L137\r\n\r\nThese are based on lack of behavioural signatures written for them, or bad signatures that look for these APIs (false positives, never hit on current malware, etc)\nComment: I do not advocate using such lists! Just to pick an easy example, excluding `NtQueueApcThread` could break detonation as this is used to trigger monitor injection into child processes!\r\n\r\nI just tried to suggest that these lists are bad and you shouldn't be using them.\nComment: Some of these hooks are really important:\r\n\r\n```\r\nDetonation/Injection\r\n\r\n    CoGetClassObject\r\n    NtQueueApcThread\r\n\r\nhuman.py\r\n\r\n    GetCursorPos\r\n\r\nSleep-skip\r\n\r\n    GetLastInputInfo\r\n    GetSystemTime\r\n    GetSystemTimeAsFileTime\r\n    MsgWaitForMultipleObjectsEx\r\n    NtSetTimer\r\n    NtSetTimerEx\r\n    NtWaitForSingleObject\r\n\r\nUnpacker\r\n\r\n    NtFreeVirtualMemory\r\n\r\nFakery (anti-anti)\r\n    NtDeviceIoControlFile\r\n    NtQueryValueKey\r\n    RegQueryValueExA\r\n\r\nDropped files\r\n\r\n    NtSetInformationFile\r\n```\nComment: What might be useful here is a configurable total cap. Then you can just supply an option like `api-cap=500` or whatever to preserve the sandbox functionality (at least for the beginning of each process' detonation) whilst keeping the total output down as per your requirements.\nComment: Thank you for all of that information, I would love to have that option for `api-cap`!\nComment: The `api-cap` option is now published in the latest monitor release: https://github.com/kevoreilly/CAPEv2/commit/24bb869cb5d68514a62c3e0cc43624559fb6ef12\r\n\r\nPlease test and let me know if this solves your issue.\nComment: Yes that works! Thank you so much! I will use this feature rather than `exclude-apis` lists :) Case closed\nComment: Happy days :)",
+  "Title: Having issues with capev2 when cape.service is started\nBody: Cape.service cannot be started. Critical error here is : [root] CRITICAL: CuckooDependencyError: Unable to import libvirt.\r\n\r\nI installed KVM-QEMU by using the following: sudo apt install -y qemu qemu-kvm libvirt-daemon libvirt-clients bridge-utils virt-manager\r\n\r\nResults of the journalctl -xe are the following: \r\n\r\n```\r\n-- The job identifier is 4590.\r\njul 23 14:41:51 cape-ThinkPad-X1-Carbon-Gen-9 polkitd(authority=local)[609]: Unregistered Authentication Agent for unix-process:5814:402006 (system bus name :1.238, object path /org/freedesktop/PolicyKi>\r\njul 23 14:41:52 cape-ThinkPad-X1-Carbon-Gen-9 python3[5971]: CAPE parser: No module named Blister - No module named 'malduck'\r\njul 23 14:41:52 cape-ThinkPad-X1-Carbon-Gen-9 python3[5971]: \r\njul 23 14:41:52 cape-ThinkPad-X1-Carbon-Gen-9 python3[5971]:   .-----------------.\r\njul 23 14:41:52 cape-ThinkPad-X1-Carbon-Gen-9 python3[5971]:   | Cuckoo Sandbox? |\r\njul 23 14:41:52 cape-ThinkPad-X1-Carbon-Gen-9 python3[5971]:   |     OH NOES!    |\\  '-.__.-'\r\njul 23 14:41:52 cape-ThinkPad-X1-Carbon-Gen-9 python3[5971]:   '-----------------' \\  /oo |--.--,--,--.\r\njul 23 14:41:52 cape-ThinkPad-X1-Carbon-Gen-9 python3[5971]:                          \\_.-'._i__i__i_.'\r\njul 23 14:41:52 cape-ThinkPad-X1-Carbon-Gen-9 python3[5971]:                                \"\"\"\"\"\"\"\"\"\r\njul 23 14:41:52 cape-ThinkPad-X1-Carbon-Gen-9 python3[5971]:  Cuckoo Sandbox 2.2-CAPE\r\njul 23 14:41:52 cape-ThinkPad-X1-Carbon-Gen-9 python3[5971]:  www.cuckoosandbox.org\r\njul 23 14:41:52 cape-ThinkPad-X1-Carbon-Gen-9 python3[5971]:  Copyright (c) 2010-2015\r\njul 23 14:41:52 cape-ThinkPad-X1-Carbon-Gen-9 python3[5971]:  CAPE: Config and Payload Extraction\r\njul 23 14:41:52 cape-ThinkPad-X1-Carbon-Gen-9 python3[5971]:  github.com/kevoreilly/CAPEv2\r\njul 23 14:41:52 cape-ThinkPad-X1-Carbon-Gen-9 python3[5971]: Bad resultserver address. You need to listen on virtual machines range. Ex: 10.0.0.1 not 127.0.0.1\r\njul 23 14:41:53 cape-ThinkPad-X1-Carbon-Gen-9 python3[5971]: 2022-07-23 14:41:53,146 [lib.cuckoo.core.scheduler] INFO: Using \"kvm\" machine manager with max_analysis_count=0, max_machines_count=10, and m>\r\njul 23 14:41:53 cape-ThinkPad-X1-Carbon-Gen-9 python3[5971]: 2022-07-23 14:41:53,146 [root] CRITICAL: CuckooDependencyError: Unable to import libvirt\r\njul 23 14:41:53 cape-ThinkPad-X1-Carbon-Gen-9 python3[5971]: XLMMacroDeobfuscator: pywin32 is not installed (only is required if you want to use MS Excel)\r\njul 23 14:41:53 cape-ThinkPad-X1-Carbon-Gen-9 python3[5971]: Missed peepdf library: pip3 install https://github.com/CAPESandbox/peepdf/archive/20eda78d7d77fc5b3b652ffc2d8a5b0af796e3dd.zip#egg=peepdf==0.>\r\njul 23 14:41:53 cape-ThinkPad-X1-Carbon-Gen-9 systemd[1]: cape.service: Main process exited, code=exited, status=1/FAILURE\r\n-- Subject: Unit process exited\r\n-- Defined-By: systemd\r\n-- Support: http://www.ubuntu.com/support\r\n-- \r\n-- An ExecStart= process belonging to unit cape.service has exited.\r\n-- \r\n-- The process' exit code is 'exited' and its exit status is 1.\r\njul 23 14:41:53 cape-ThinkPad-X1-Carbon-Gen-9 systemd[1]: cape.service: Failed with result 'exit-code'.\r\n-- Subject: Unit failed\r\n-- Defined-By: systemd\r\n-- Support: http://www.ubuntu.com/support\r\n-- \r\n-- The unit cape.service has entered the 'failed' state with result 'exit-code'.\r\njul 23 14:42:26 cape-ThinkPad-X1-Carbon-Gen-9 mongodb[744]: {\"t\":{\"$date\":\"2022-07-23T14:42:26.788+00:00\"},\"s\":\"I\",  \"c\":\"STORAGE\",  \"id\":22430,   \"ctx\":\"Checkpointer\",\"msg\":\"WiredTiger message\",\"attr\":>\r\njul 23 14:42:28 cape-ThinkPad-X1-Carbon-Gen-9 NetworkManager[592]: <info>  [1658587348.2469] manager: NetworkManager state is now CONNECTED_SITE\r\njul 23 14:42:28 cape-ThinkPad-X1-Carbon-Gen-9 dbus-daemon[589]: [system] Activating via systemd: service name='org.freedesktop.nm_dispatcher' unit='dbus-org.freedesktop.nm-dispatcher.service' requested >\r\njul 23 14:42:28 cape-ThinkPad-X1-Carbon-Gen-9 systemd[1]: Starting Network Manager Script Dispatcher Service...\r\n-- Subject: A start job for unit NetworkManager-dispatcher.service has begun execution\r\n-- Defined-By: systemd\r\n-- Support: http://www.ubuntu.com/support\r\n-- \r\n-- A start job for unit NetworkManager-dispatcher.service has begun execution.\r\n-- \r\n-- The job identifier is 4736.\r\njul 23 14:42:28 cape-ThinkPad-X1-Carbon-Gen-9 whoopsie[1710]: [14:42:28] Cannot reach: https://daisy.ubuntu.com\r\njul 23 14:42:28 cape-ThinkPad-X1-Carbon-Gen-9 whoopsie[1710]: [14:42:28] offline\r\njul 23 14:42:28 cape-ThinkPad-X1-Carbon-Gen-9 dbus-daemon[589]: [system] Successfully activated service 'org.freedesktop.nm_dispatcher'\r\njul 23 14:42:28 cape-ThinkPad-X1-Carbon-Gen-9 systemd[1]: Started Network Manager Script Dispatcher Service.\r\n-- Subject: A start job for unit NetworkManager-dispatcher.service has finished successfully\r\n-- Defined-By: systemd\r\n-- Support: http://www.ubuntu.com/support\r\n-- \r\n-- A start job for unit NetworkManager-dispatcher.service has finished successfully.\r\n\r\n```\nComment: hello again, as i mentioned, did you read readme and discussions? as you used my repo you have huge banner about not using `APT` as that installs in other locations. So read readme and https://github.com/kevoreilly/CAPEv2/discussions/949 the same steps https://github.com/doomedraven/Tools/blob/master/Sandbox/cape2.sh#L964 \r\n\r\nwe can't help you more here. as that is your box and dependencies sometime is just becoming huge headache to deal with\nComment: btw you also removed the whole issue template, as it says issues without it is invalid as there are some information that we requires to not ask each user the same over and over. closing due to missed template and you moved to discussions\nComment: deleting second account deleted all my complex answers. Now nobody will be able to learn from that. Amazing, another time wasted",
+  "Title: Logic improvements for tasking\nBody: The goal of this PR started out as being able to handle tasks that require machines with specific tags, but then it got WAY bigger!\r\n\r\nThings that I have improved:\r\n- `conf/az.conf`, `modules/machinery/az.py`\r\n    - Added more configurations and abilities to the Azure machinery\r\n        - Added ability to use different resource groups for the virtual network and the resources associated with sandboxing (virtual machine scale sets, disks, network interface cards, etc)\r\n        - Added the ability to manually enter the number of cores for an instance type rather than programmatically finding this value\r\n        - Added the ability to not reset the pool size of each virtual machine scale set when CAPE restarts\r\n        - Added the ability to wait or not wait for victim agents when CAPE restarts\r\n- `conf/web.conf`, `lib/cuckoo/common/web_utils.py`, `lib/cuckoo/core/database.py`\r\n    - Added configurations to web.conf that will toggle the dynamic assignments of required machine platform and architecture for a task\r\n- `lib/cuckoo/common/abstracts.py`, `lib/cuckoo/core/database.py`\r\n    - Added ability to acquire/lock/list machines based on the architecture\r\n- `lib/cuckoo/common/web_utils`\r\n    - If a value representing a boolean is passed to the REST API, it can be `true`/`false`, `yes`/`no`, `on`/`off`, `0`/`1` and can be any case.\r\n- `utils/db_migration/versions/2_3_3_expand_error_message.py`, `lib/cuckoo/core/database.py`\r\n    - Changed the size of the Error table `message` field because it could not contain the `CuckooGuestCriticalTimeout` error\r\n        - Created a migration script with `alembic`\r\n        - Updated the `SCHEMA_VERSION` of the `database.py` file\r\n- `lib/cuckoo/core/scheduler.py`, `lib/cuckoo/core/database.py`\r\n    - Refactored the way that tasks are assigned to machines. The reason behind this is because the original way of doing this was to iterate through available machines and then determine if there was a task that matched up with a machine. This logic is flawed because it is inefficient - we should be iterating through pending tasks rather than available machines. My solution:\r\n        - Use a `is_relevant_machine_available` method that determines if a machine is relevant to a task and available to be assigned\r\n        - Reworked the `fetch` method into `fetch_task` for tasks that do not require a VM. This really simplifies the logic for this method.\r\n- `lib/cuckoo/core/database.py`\r\n    - In the `guest_stop` method, we should check if the guest exists before trying to shut it down. This can occur in dynamic machineries such as `az` or `aws`.\r\n    - Modified the logic of `list_machines` so that you can also filter by `locked` as `True`/`False`, machine label and the machine architecture\r\n    - Improved the logging in `lock_machine` to include the selection criteria that was attempted\r\n    - Just like in Cuckoo, `get_available_machines` now joins on `tags`\r\n    - Added `options_not_like` in `list_tasks` since this is a way that we can replicate the use of `not_(\"node=\")` in the original `fetch` method https://github.com/kevoreilly/CAPEv2/blob/master/lib/cuckoo/core/database.py#L815\r\n    - Added the ability for a tuple representing the `order_by` keyword argument in `list_tasks`, so that we can pass multiple items to `list_tasks` to order tasks by\r\n- `lib/cuckoo/core/plugins.py`\r\n    - Improving exception logging\r\n- `lib/cuckoo/core/resultserver.py`\r\n    - Nitpick here for consistency across logs\r\n- `lib/cuckoo/core/scheduler.py`\r\n    - In the `check_file` method, we should check if sample exists before trying to access it's `sha256` attribute.\r\n    - Before calling `acquire`, determine which task tags are the architecture and which are just tags, and then pass these values to `acquire`\r\n    - Improve logging by detailing what the task requires if it has been selected off of the stack and there is no machine available yet\r\n    - Just like in Cuckoo, add exception clause for the `CuckooGuestCriticalTimeout` error that will unlock the machine\r\n    - Improved the periodic log so that it includes details about tasks and machines that are useful in determining why tasks are not being pulled off of the stack\r\n- `modules/machinery/az.py`\r\n    - Check if the `number_of_new_cpus_available` according to the quota is less than 0, and if so, set the minimum `number_of_relevant_machines_required`. This was causing errors when the 5 VM buffer was too close to the limit.\r\n    - Improving the logging of exceptions\r\n- `tests/test_scheduler.py`\r\n    - Fixing test for `acquire` and `mock_tags`\r\n- `utils/cleaners.py`\r\n    - If both mongodb and elasticsearch are disabled, pending tasks were unable to be deleted using this utility, so check if web reporting is enabled first.\nComment: Let me know if you would prefer if this PR was split into smaller ones.\nComment: thats fine. amazing work on this. Special thanks for the tags that removes some stuff that i had pending but never had time to review properly\nComment: btw amazing summary, forgot to say\nComment: Thanks a lot ",
+  "Title: Suggestion about analysis timeout when sample aleady exited\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I did read the README!\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I'm have read all configs with all optional parts\r\n- [X] I'm have checked [discussions section](https://github.com/kevoreilly/CAPEv2/discussions)\r\n\r\n# Expected Behavior\r\n\r\nOn windows guests, analysis should end when a sample and all its tracked childs exit.\r\n\r\n# Current Behavior\r\n\r\nAnalysis only ends when timeout is being reached.\r\n\r\nThis is mainly due to the fact that code in `is_alive` method from `Process` class has been commented out.\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/ada7993cc4b140c06617562aeb2a3151544fa1b2/analyzer/windows/lib/api/process.py#L203-L209\r\n\r\nAlive tracked processes are tracked here :\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/aee63208886101be30b83ad63987e08efe9b59a6/analyzer/windows/analyzer.py#L582-L599\r\n\r\nIf no tracked processes are alive anymore, analysis should end.\r\n\r\nThis is not the case by default, as `tlsdump.py` auxiliary module tracks `lsass.exe` by injecting it. `lsass.exe` obviously does not exit by itself, so analysis hangs even though submited sample might have exited already.\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/ada7993cc4b140c06617562aeb2a3151544fa1b2/analyzer/windows/modules/auxiliary/tlsdump.py#L34-L45\r\n\r\nDefault behavior is to use `tlsdump.py`, which might not really be relevant for the classic Cape user.\r\n\r\nSee [auxiliary.conf](https://github.com/kevoreilly/CAPEv2/blob/master/conf/auxiliary.conf#L29).\r\n\r\n# Suggestion\r\n\r\nEither disable usage of `tlsdump.py` by default, or add code in [windows/analyzer.py](https://github.com/kevoreilly/CAPEv2/blob/aee63208886101be30b83ad63987e08efe9b59a6/analyzer/windows/analyzer.py#L582-L599) that checks that the remaining process is not being `lsass.exe`.\r\n\r\nTo me, the best solution would be to disable `tlsdump` by default, but I don't really know whether this module is critical to the tracking of some specific malware family or not, so I might be wrong assuming that disabling this module by default is the right solution.\nComment: Hello, interesting issue, thank you. I think checking lsass and other things would be good to add.\r\nAny option is that is enabled by default is because we find them relevant, but users should change them for their needs\r\n\r\nonce we have a bit more of free time we will check this issue more properly\nComment: Hi N0fix, what you describe is a bug in your setup that is not reflected everywhere. Obviously when I created the tlsdump auxiliary module, I did not want to break the mechanism by which the analyzer terminates jobs when no processes remain. So I designed it to work around this, and this is why in upstream cape, as shown by the public instance (https://capesandbox.com/analysis/293149) and on my dev instances, the jobs are correctly terminated, and the analyzer does not include lsass in its process list.\r\n\r\n```\r\n2022-07-21 11:22:21,143 [root] INFO: Process with pid 6592 has terminated\r\n2022-07-21 11:22:26,752 [root] INFO: Process list is empty, terminating analysis\r\n````\r\n\r\nThe lsass process is not included in analyzer's list because the monitor, upon injection into lsass, does not send the message to the analyzer which causes the list addition:\r\n\r\n```\r\n\t\tif (!g_config.tlsdump)\r\n\t\t\tnotify_successful_load();\r\n```\r\n\r\nThis monitor config is achieved by the tlsdump=1 option sent by the auxiliary module:\r\n\r\n```\r\n2022-07-21 11:22:12,221 [root] DEBUG: Initialized auxiliary module \"TLSDumpMasterSecrets\"\r\n2022-07-21 11:22:12,221 [root] DEBUG: Trying to start auxiliary module \"TLSDumpMasterSecrets\"...\r\n2022-07-21 11:22:12,236 [modules.auxiliary.tlsdump] INFO: lsass.exe found, pid 728\r\n2022-07-21 11:22:12,330 [lib.api.process] INFO: Monitor config for process 728: C:\\tmpljosyc8h\\dll\\728.ini\r\n2022-07-21 11:22:13,361 [lib.api.process] INFO: Option 'tlsdump' with value '1' sent to monitor\r\n2022-07-21 11:22:13,361 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmpljosyc8h\\dll\\ABYzEHr.dll, loader C:\\tmpljosyc8h\\bin\\hqZqZeki.exe\r\n2022-07-21 11:22:13,377 [root] DEBUG: Loader: Injecting process 728 with C:\\tmpljosyc8h\\dll\\ABYzEHr.dll.\r\n2022-07-21 11:22:13,408 [root] DEBUG: Python path set to 'C:\\Users\\Rebecca\\AppData\\Local\\Programs\\Python\\Python310-32'.\r\n2022-07-21 11:22:13,408 [root] DEBUG: TLS secret dump mode enabled.\r\n```\r\n\r\nPlease check your analysis log to see if the option is being correctly sent by the module and acknowledged by the monitor.\nComment: Hello,\nI first saw this bug a year ago, and checked recently if `is_alive` method had been fixed (not always returning `True`). \nAs it had not been fixed, I figured out that I would post this issue with my suggestion. I did miss this tlsdump update from February you are talking about. It is not obvious by reading `tlsdump.py`'s code that tlsdump is not being tracked in process list count. \n\n\nStill, `is_alive` method always returns `True` in master branch, so I do not understand how the monitor would be able to notice that process exited, from the code I originally posted on my first message.\nDid I missed some code, or did you do any custom modifications to your public instance ?\n\nIn both cases, I think it is now safe to uncomment line \n```python\nreturn self.exit_code() == STILL_ACTIVE\n```\nfrom windows' Process class. \nComment: answering only last part. public is running the same code that is in this repo, it only can contain private yara or extractor, but the rest is the same\r\n\r\nfirst part is for Kevin\nComment: Not sure what you have missed, but current repo works.\r\n\r\nIt is clear in tlsdump.py that is sets the monitor option:\r\n\r\n```\r\nself.options[\"tlsdump\"] = \"1\"\r\n```\r\n\r\nAnalyzer knows to exit via this code:\r\n\r\n```\r\n            try:\r\n                # If the process monitor is enabled we start checking whether\r\n                # the monitored processes are still alive.\r\n                if pid_check:\r\n                    # We also track the PIDs provided by zer0m0n.\r\n                    # self.process_list.add_pids(zer0m0n.getpids())\r\n                    if not kernel_analysis:\r\n                        ...\r\n                        # If none of the monitored processes are still alive, we\r\n                        # can terminate the analysis.\r\n                        if not self.process_list.pids and (\r\n                            not self.LASTINJECT_TIME or (timeit.default_timer() >= (self.LASTINJECT_TIME + 15))  # Add 15 seconds\r\n                        ):\r\n                            if emptytime and (timeit.default_timer() >= (emptytime + 5)):  # Add 5 seconds\r\n                                log.info(\"Process list is empty, terminating analysis\")\r\n                                break\r\n```\r\n\r\nThis line can be seen in the analysis log.\nComment: Processes are removed from list via TerminateProcess hook:\r\n\r\n```\r\n\tif (Pid)\r\n\t\tpipe(\"KILL:%d\", Pid);\r\n```\r\n\r\nKILL message triggers pid removal in analyzer:\r\n\r\n```\r\n    def _handle_kill(self, data):\r\n        self.analyzer.process_lock.acquire()\r\n        process_id = int(data)\r\n        log.info(\"Process with pid %s has terminated\", process_id)\r\n        if process_id not in (self.analyzer.pid, self.analyzer.ppid) and process_id in self.analyzer.process_list.pids:\r\n            self.analyzer.process_list.remove_pid(process_id)\r\n        self.analyzer.process_lock.release()\r\n```\r\n\r\nI can see what you are looking at is another mechanism to monitor processes, which may well be broken. Perhaps this should be removed, I'm not sure I see the point of polling processes as long as the TerminateProcess hook can be relied on.\r\n\r\n```\r\n                            if not Process(pid=pid).is_alive():\r\n                                if self.options.get(\"procmemdump\", False):\r\n                                    try:\r\n                                        Process(pid=pid).upload_memdump()\r\n                                    except Exception as e:\r\n                                        log.error(e, exc_info=True)\r\n                                else:\r\n                                    log.info(\"Procdump not enabled\")\r\n                                log.info(\"Process with pid %s appears to have terminated\", pid)\r\n                                if pid in self.process_list.pids:\r\n                                    self.process_list.remove_pid(pid)\r\n```\r\n\r\n\nComment: So I guess that this code\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/ada7993cc4b140c06617562aeb2a3151544fa1b2/analyzer/windows/lib/api/process.py#L203-L209\r\n\r\nand this one\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/aee63208886101be30b83ad63987e08efe9b59a6/analyzer/windows/analyzer.py#L582-L599\r\n\r\nare dead code now. Not a huge deal then, but could be removed for clarity. I guess that letting `is_alive` method exists may lead to more bugs in the future. I let you close this issue if you think that cleaning this part of the code is irrelevant. \r\n\r\nRegarding TerminateProcess hook, this was not obvious at first glance that this was now the method to remove processes from pid list, I apologies for the trouble.\nComment: No trouble, I appreciate you bringing to my attention that this code is indeed broken and dead and should either be fixed or removed. I do wonder if fixed it might have some value, otherwise why would it have been included in cuckoo/cuckoo_modified... Then again I haven't missed it in 6 years so maybe it's unnecessary. Either way I'll do something to try and either fix it or remove it for clarity.",
+  "Title: resubmit update and simplify code\nBody: None",
+  "Title: Processing Improvements\nBody: - Configurable behaviour sub-modules\r\n- Bugfix for `add_error` call\r\n- Updating behaviour signature processing to be in-line with how Cuckoo does it\r\n- Add `web_reporting` config to allow both mongodb and elasticsearch reporting to be disabled. This is useful for when you want the REST API that Django supplies, but you don't want the GUI.\r\n- Adding `rtmp` default value\r\n- ~Toggle the use of `list(process[\"calls\"])` since it is only useful for certain reporting modules, like mongodb.~\r\n- Adding check if file exists for PE-parsing\r\n- Adding a `finally` statement in the scheduler from Cuckoo that marks tasks as completed if there is an AnalysisManager error.\r\n- Fixing ramboost bug\r\n- Adding `matched` attribute to the `Signature` class to avoid duplication of signature hits\r\n- Adding check for if sample doesn't exists in db\r\n\r\nSomething that I have noticed in CAPE which I don't think(?) was an issue in Cuckoo, is the length of time that it takes to iterate through the `calls` of a process here https://github.com/kevoreilly/CAPEv2/blob/1822c2ed8700548878dbedd6c676bb403e478961/lib/cuckoo/core/plugins.py#L494\r\n\r\nFor instance, I have a sample (a batch file with one line `start \"\" https://www.stackoverflow.com`) that creates a process which opens `iexplore.exe`. This process makes a lot of calls. Without `ramboost` turned on, the processing of the Bson logs in the `behavior.py` module takes ~2 seconds, and then the iteration of calls when applying evented signatures takes ~30 seconds (even with my improvements in this PR). When I turn `ramboost` on, the processing of the Bson logs takes ~30 seconds and the signatures take ~2 seconds. So basically it always takes 32 seconds, which _feels_ like that is too long to just parse/iterate through logs. Is this issue something that people are aware of / can duplicate?\nComment: special thanks for `getattr(cfg_process.behavior, instance.key, True)`\nComment: btw let me know once is ready to merge\nComment: > btw let me know once is ready to merge\r\n\r\nSure thing, there are still a few more things I want to do\nComment: Question about try excepto of file not found, whould t it be better to just use if os path exist? \nComment: > Question about try excepto of file not found, whould t it be better to just use if os path exist?\r\n\r\nYes, I'll update\nComment: Thanks\n\nEl vie., 22 jul. 2022 17:19, cccs-kevin ***@***.***> escribi\u00f3:\n\n> Question about try excepto of file not found, whould t it be better to\n> just use if os path exist?\n>\n> Yes, I'll update\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/pull/1017#issuecomment-1192681730>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3YGUYQOPW5VAYFLOMDVVK3ZZANCNFSM54EIXEQQ>\n> .\n> You are receiving this because you commented.Message ID:\n> ***@***.***>\n>\n\nComment: amazing work Kevin. thank you.\r\n\r\nAbout ram_boost, that is feature from cuckoo-modified i think, maybe cuckoo has it, it already ages since i last checked cuckoo code. I have that off on all my servers. I will create issue for this to review once i finish huge RE  that i have on my table\nComment: something is broken, it says all my vms are dead after merge, investigating\nComment: ok nevermind, for some reason qemu disappeared from my server %)\nComment: > amazing work Kevin. thank you.\r\n> \r\n> About ram_boost, that is feature from cuckoo-modified i think, maybe cuckoo has it, it already ages since i last checked cuckoo code. I have that off on all my servers. I will create issue for this to review once i finish huge RE that i have on my table\r\n\r\nThe issue that I'm talking about isn't even really about `ramboost`, it's about how long it takes to iterate through the ParseProcessLog object https://github.com/kevoreilly/CAPEv2/blob/200a80818f82f5b9487e9242f8da32ae969aa27c/modules/processing/behavior.py#L38\nComment: once i will have some spare time i will try to investigate it i have created issue to not forget about it https://github.com/kevoreilly/CAPEv2/issues/1024",
+  "Title: Removing the print statement from the https_urls sig\nBody: None",
+  "Title: Failed Processing: \"TypeError: 'NoneType' object is not subscriptable\"\nBody: Ubuntu 20.04LTS\r\n\r\nI am running into some sporadic failed processing.  I am not sure which way to go for troubleshooting.\r\n\r\nWhen manually running `process.py` I am getting back the following errors:\r\n\r\nsha256: `ba3d1fb401a53a1da40202df1c45465aebf15cca8e7d9e217961b088e8bcdbf0 `\r\n```\r\nTraceback (most recent call last):\r\n  File \"process.py\", line 446, in <module>\r\n    main()\r\n  File \"process.py\", line 436, in main\r\n    process(task=task, report=args.report, capeproc=args.caperesubmit, memory_debugging=args.memory_debugging)\r\n  File \"process.py\", line 109, in process\r\n    RunReporting(task=task.to_dict(), results=results, reprocess=reprocess).run()\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 626, in __init__\r\n    process[\"calls\"].begin_reporting()\r\n  File \"/opt/CAPEv2/utils/../modules/processing/behavior.py\", line 265, in begin_reporting\r\n    for arg in ent[\"arguments\"]:\r\nTypeError: 'NoneType' object is not subscriptable\r\n```\r\n\r\nsha256: `b605b9404f41d89620a86649c20f69c3408a98f1ac0e154b582a33b32aa38861 `\r\n```\r\n2022-07-19 06:33:11,042 [Task 11086] [lib.cuckoo.core.plugins] ERROR: Failed run on_complete() method for signature \"network_p2p\": 'dict' object is not callable\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 538, in run\r\n    result = sig.on_complete()\r\n  File \"/opt/CAPEv2/utils/../modules/signatures/network_p2p.py\", line 46, in on_complete\r\n    for tcp in self.results(\"network\", {}).get(\"tcp\", []):\r\nTypeError: 'dict' object is not callable\r\nTraceback (most recent call last):\r\n  File \"process.py\", line 446, in <module>\r\n    main()\r\n  File \"process.py\", line 436, in main\r\n    process(task=task, report=args.report, capeproc=args.caperesubmit, memory_debugging=args.memory_debugging)\r\n  File \"process.py\", line 109, in process\r\n    RunReporting(task=task.to_dict(), results=results, reprocess=reprocess).run()\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 626, in __init__\r\n    process[\"calls\"].begin_reporting()\r\n  File \"/opt/CAPEv2/utils/../modules/processing/behavior.py\", line 265, in begin_reporting\r\n    for arg in ent[\"arguments\"]:\r\nTypeError: 'NoneType' object is not subscriptable\r\n```\nComment: read the head of issue template and report properly or any issue is invalid\nComment: https://github.com/kevoreilly/community/commit/00063c3c634d9f375d236b70e6e852638da526ba#diff-78fd79c9a57ea7b0f0c29d4a37e55ecabdee056ad01b1e76b4275e367c9aad77",
+  "Title: Updating docs for how to save an Azure image\nBody: None",
+  "Title: CAPE Sandbox Account\nBody: Hi, \r\n\r\nI signed up for an account and I am getting the following notification:\r\n\r\nAccount Inactive\r\nThis account is inactive/Admin set manual approve.\r\n\r\nCan my account be approved please? Account name is cyb0rg.\r\n\r\nKind Regards\nComment: No template - auto close",
+  "Title: make poetry play nice with utils/submit.py\nBody: So was just sitting down for writing a perl module for fetching and shoving a lot of drek into CAPE and I noticed that utils/submit.py was borked post move to poetry.\r\n\r\nUpdated the interpreter for the script to `#!/usr/bin/env -S poetry run python3`, which will automatically invoke poetry to run the script.\nComment: Hello, not everyoen uses poetry, is why we generate requirements.txt. so changing this will impact on everyone who is not on poetry, i still prefer them to run it as `poetry run python3`\nComment: Maybe we can standardise by removing all the shebangs?\nComment: @doomedraven Submitted this as I had it break after a recent update and could not get it to work with out it.\r\n\r\nA better solution, should any one have it working outside of that, may be a poetry wrapper for it then. A second script sitting there that can be invoked to automatically call the other via poetry.\nComment: @TheMythologist Personally I would say that would just be ultra annoying.\nComment: annoying why? sorry guys didn't have time recently for this. this week is still pretty busy, i guess removing the shebangs should work, but in general if you with poetry you just need to run with `poetry run python submit.py` and if you don't use poetry you just use it as `python3 submit.py`. so i don't know what is the issue there, i will need to test it more in deep, but i would say nobody of us using submit.py as we do not work on server side to add analysis\nComment: btw if you don't want to use poetry, you have requierements.txt :P \nComment: > btw if you don't want to use poetry, you have requierements.txt :P\r\n\r\nYeah, but that with the very heavy customization and use of stuff outside of package management makes breakages a common issue. I've not had CAPE work smoothly outside of poetry since our move to it.\r\n\r\nReally makes me wish bhyve was had features aimed at actually faking drek so sane package management would be actually possible. Apt/dpkg/ubuntu/debian(and realistically every other Linux distro and common Linux package manager) really leaves a lot to be desired in that area with how out of date and how much of a PITA basic package maintenance is compared to pkgsrc and Ports.\nComment: > annoying why? sorry guys didn't have time recently for this. this week is still pretty busy, i guess removing the shebangs should work, but in general if you with poetry you just need to run with `poetry run python submit.py` and if you don't use poetry you just use it as `python3 submit.py`. so i don't know what is the issue there, i will need to test it more in deep, but i would say nobody of us using submit.py as we do not work on server side to add analysis\r\n\r\nHonestly this is how I largely add stuff. Honestly I really wish the settings and the like in the web were better exposed via submit.\r\n\r\nWhile as it works currently is not bad for scripting purposes, it's terrible for general usage purposes.\nComment: Actually was just thinking what may work better and solve every one's needs.\r\n\r\nA bin directory the includes wrappers for common items, queries a config that tells it to use either poetry or python3, and invokes it as needed.\nComment: we just don't use submit is why we don't care about it :P \r\nabout wrapper is not bad idea. but still i don't see a problem to just add few extra words before python. If you want to write the wrapper you are more than welcome. But then that part should also get docs \nComment: > we just don't use submit is why we don't care about it :P about wrapper is not bad idea. but still i don't see a problem to just add few extra words before python. If you want to write the wrapper you are more than welcome. But then that part should also get docs\r\n\r\nAye! Will be doing so. Going to re-factor this PR into that. :)\r\n\r\nThat said as to why, let me ask you, do you less everything and then point the appropriate interpreter at it? I am guessing not.\r\n\r\nHaving to manually specify a interpreter or the like is a really backwards thing in this day and age. Especially since the install scripts for this install it in a very specific manner that by no means should requires operating in such a backwards manner.\r\n\nComment: hm i don't really have answer to that. Would need some brainstorming but i have to finish my dayjob stuff and leave for PTO. I guess is setup related. as for me that isn't a problem to have in my scripts `poetry run python X`. But btw if you don't want use poetry you have requirements.txt so you just need to edit systemd scripts if you installed with cape2.sh to remove `poetry run`. That is the beauty of opensource that you can personalize it as much as you want\nComment: > hm i don't really have answer to that. Would need some brainstorming but i have to finish my dayjob stuff and leave for PTO. I guess is setup related. as for me that isn't a problem to have in my scripts `poetry run python X`. But btw if you don't want use poetry you have requirements.txt so you just need to edit systemd scripts if you installed with cape2.sh to remove `poetry run`. That is the beauty of opensource that you can personalize it as much as you want\r\n\r\nOhh! I know and you can definitely expect this PR to be updated with the required bits and docs for this. :)\r\n\r\nI am not really expecting an fix for this from you here as I've stepped up and volunteered to get something in place for it. :)\r\n\r\nHave fun with the PTO, dude!\nComment: I know, it just good to have some brainstorming, you know few brains sometimes can get some neat ideas than just one ;) Thank you\nComment: That said looks like this annoyance has become a non issue for me as I've recently started work on something that calls it, among other things. =^.^=\r\n\r\nBasically was wanting some nicer CLI tools in general for CAPE so started working on it.\r\n\r\nhttps://github.com/VVelox/CAPE-Utils",
+  "Title: Check if raw_value exists in argument before trying to add it\nBody: None",
+  "Title: Thoughs on monitoring?\nBody: Begun working on stats monitoring for CAPEv2 would love a bit of input.\r\n\r\nExtend: https://github.com/librenms/librenms-agent/blob/master/snmp/cape\r\n\r\nIn work LibreNMS bits: https://github.com/VVelox/librenms/tree/cape\r\n\r\nExample output from a time period in with a single run below. But keeps track of run stats aggregate and by package.\r\n\r\nThe log line counting is basically for alert monitoring purposes, to enable alerting when something that needs looked into happens alerting when it happens. INFO and DEBUG are just counted as I figured I may as well since the data was being chewed through already and it was no extra work.\r\n\r\nThat said would min, max, median, range, mean, median, mode, variance, stddev, variancep, and stddevp be of interest to any one for any of this data?\r\n\r\n```\r\n{\r\n  \"data\": {\r\n    \"anti_issues\": 2,\r\n    \"api_calls\": 4331,\r\n    \"banned\": 0,\r\n    \"completed\": 0,\r\n    \"crash_issues\": 0,\r\n    \"critical\": 0,\r\n    \"criticals\": [],\r\n    \"debug\": 0,\r\n    \"distributed\": 0,\r\n    \"domains\": 0,\r\n    \"dropped_files\": 1,\r\n    \"error\": 0,\r\n    \"errors\": [],\r\n    \"failed_analysis\": 0,\r\n    \"failed_processing\": 0,\r\n    \"failed_reporting\": 0,\r\n    \"files_written\": 1,\r\n    \"info\": 10,\r\n    \"packages\": {\r\n      \"exe\": 1\r\n    },\r\n    \"pending\": 0,\r\n    \"pkg_stats\": {\r\n      \"exe\": {\r\n        \"anti_issues\": 2,\r\n        \"api_calls\": 4331,\r\n        \"crash_issues\": 0,\r\n        \"domains\": 0,\r\n        \"dropped_files\": 1,\r\n        \"files_written\": 1,\r\n        \"registry_keys_modified\": 0,\r\n        \"running_processes\": 1,\r\n        \"signatures_alert\": 0,\r\n        \"signatures_total\": 5\r\n      }\r\n    },\r\n    \"recovered\": 0,\r\n    \"registry_keys_modified\": 0,\r\n    \"reported\": 1,\r\n    \"running\": 0,\r\n    \"running_processes\": 1,\r\n    \"signatures_alert\": 0,\r\n    \"signatures_total\": 5,\r\n    \"timedout\": 0,\r\n    \"total_tasks\": 1,\r\n    \"warning\": 0,\r\n    \"warnings\": []\r\n  },\r\n  \"error\": 0,\r\n  \"errorString\": \"\",\r\n  \"version\": 1\r\n}\r\n```\nComment: So strongly sided with min, max, range, mean, median, mode, stddev, and and stddevp for aggregate and per package for each 5 minute interval.\r\n\r\nFor graphs will be both will be present. One for over time for the aggregate and one for at that points based on the numbers then.\nComment: Sounds awesome ",
+  "Title: Generalizing log sub-format, fixing cuckoo.log per-task\nBody: The `init_logger` method seems to be half-migrated from Cuckoo. The PR implements it, and populates the cuckoo.log per-task.\r\n\r\nAlso tried to make the sub-format for each log in the Guest and Resultserver the same:\r\n`Task #<task-id>: blah blah (id=<vm-id>, ip=<vm-ip>)`\nComment: thank you, one question, did you test this change? asking before go to testing\nComment: > thank you, one question, did you test this change? asking before go to testing\r\n\r\nYes it is running in my production environment\nComment: thanks for confirmation",
+  "Title: Cleaning up bugfix for PR #939\nBody: Building on https://github.com/kevoreilly/CAPEv2/commit/908b0677ed5fa5fbc13e7650dfa43cb01e15a978",
+  "Title: Simplifying connection reset log\nBody: Prior to this PR, this particular log showed up as so:\r\n```\r\n[lib.cuckoo.core.resultserver] DEBUG: Task #1216 had connection reset for <Context for b'LOG'>, error: [Errno 104] Connection reset by peer\r\n[lib.cuckoo.core.resultserver] DEBUG: Task #1216 had connection reset for <Context for None>, error: [Errno 104] Connection reset by peer\r\n[lib.cuckoo.core.resultserver] DEBUG: Task #1216 had connection reset for <Context for b'BSON'>, error: [Errno 104] Connection reset by peer\r\n```\r\n\r\nThis is redundant information though, since this log will only show up if the connection is reset. So I suggest refactoring the log so that it is more concise:\r\n\r\n```\r\n[lib.cuckoo.core.resultserver] DEBUG: Task #4 had connection reset by peer for <Context for b'BSON'>\r\n[lib.cuckoo.core.resultserver] DEBUG: Task #4 had connection reset by peer for <Context for b'BSON'>\r\n```\nComment: Sounds good ",
+  "Title: Does CAPEv2 still support physical machinery detonation?\nBody: # Expected Behavior\r\n\r\nHi, \r\n\r\nUsing latest CAPEv2 installation with Physical Machinery configured based on these steps:\r\nhttps://mariohenkel.medium.com/using-cape-sandbox-and-fog-to-analyze-malware-on-physical-machines-4dda328d4e2c\r\n\r\nHowever after submission of a file on CAPE web gui, the physical machine reboots and status of the analysis is reported, however the results are all empty. \r\n\r\nI am using the following old agent to support the physical machinery configuration:\r\nhttps://github.com/spender-sandbox/cuckoo-modified/blob/master/agent/agent.py\r\n\r\nAfter submitting sample files through the CAPEv2 web interface, the physical machine reboots, and the CAPEv2 web interface shows Status as \"reported\".\r\n\r\nHowever, there are no reported behavioral analysis results, \r\n![image](https://user-images.githubusercontent.com/109278640/178951337-a9ecbe88-bfa9-491a-9f88-9cd79662f2ac.png)\r\n![image](https://user-images.githubusercontent.com/109278640/178951837-2e8bc095-e432-476a-a188-455ba25252fe.png)\r\n\r\n\r\nNo analysis results in storage/analyses/\r\n![image](https://user-images.githubusercontent.com/109278640/178951567-670952f8-f67f-43a1-84e8-bacd4ce2eb83.png)\r\n\r\nAny help will be greatly appreciated\nComment: It states the agent is not compatible from that critical error in the log, and you are using an agent from spender which is not even Python 3?! No chance this could ever work. You will need to use CAPE's current agent for starters.\nComment: for start why do you remove template? that is igual to force us asking the same crap over and over. RTFM\nComment: Hmm yes the reason why I ended up trying to use the old agent was because when i specified to use \"physical\" machinery in cuckoo.conf, CAPE server performs a check to /RPC2 endpoint on the guest agent and that fails. Hence i stumbled across this post which says cuckoo Physical machinery doesn't work with new agent.\r\nhttps://github.com/cuckoosandbox/cuckoo/issues/1396\r\n\r\nI have tried the agent.py here, for CAPEv2 but none of them seem to be working for physical machinery, /RPC2 does not seem to exist when i try to start the cape service (sudo service cape restart)\nComment: But that issue is for Cuckoo?! Cuckoo 2.0 and CAPE are completely different, so that issue is irrelevant.\nComment: Also you should be able to test the agent irrespective of machinery. The agent can just be tested with curl IP 8000, Can you connect? The machinery is responsible for getting a clean Windows to the point where the agent can be contacted by the server.\nComment: I understand, apologies since it is a very similar issue and I just intended to exhaust all possible avenues before i opened an issue, my bad for not submitting with the template.\r\n\r\nYes CAPE was able to connect to port 8000 guest agent, however the cape service connects to the guest agent at /RPC2 and that does not exist with the new agent. I can observe this request being made to the agent, and the cape service stops there after indicating that the physical machine is offline\nComment: This doesn't make sense as you are basically saying cape cannot connect to its own current agent if that is what you mean by 'new' agent - so cape would be broken for everyone... But it's not.\nComment: The agent has basically zero to do with physical machinery - I think there is confusion here.\nComment: I think I figured out part of where the confusion lies. After more checking, my /opt/CAPEv2/modules/machinery/physical.py seems to be from the original CAPE project rather than from CAPEv2.. hence why it is making the xmlrpc calls to the guest agent.. and hence the HTTP 404 when CAPE server tries to POST to \"RPC2\" endpoint.\r\n\r\n![image](https://user-images.githubusercontent.com/109278640/179134309-4cc525be-a312-4f91-9751-4a642b7bcc89.png)\r\n\r\n<img width=\"385\" alt=\"cape_physical_agent\" src=\"https://user-images.githubusercontent.com/109278640/179135237-f21796f7-8060-48c9-8c90-b4a536409aac.PNG\">\r\n\r\nI'm still trying to figure out why this happens, the installation script for CAPEv2 that I'm using is:\r\nhttps://raw.githubusercontent.com/doomedraven/Tools/master/Sandbox/cape2.sh\r\n![image](https://user-images.githubusercontent.com/109278640/179136145-6e359662-cdae-4f45-9a85-665565a19adf.png)\r\n\r\n\r\nI just ran a fresh installation today with this script and I am still getting the same old CAPE machinery/physical.py instead of CAPEv2, not sure if this happens to everyone or just me..\nComment: Update: Manually replaced physical.py with the latest version and it works with the latest agent. Seems like the other files in modules/machinery are all correct and up to date except for physical.py.\r\n\nComment: cape2.sh clones this repo, and not any other one, so idk how you can have files from other repos. if you had cloned some other repo as capev2 then it won't give you new files\nComment: Just did it, it loads the correct file %)\n\n> On 15 Jul 2022, at 12:41, darrelneo ***@***.***> wrote:\n> \n> \n> Don't take my word for it, you can try running it and take a look at the physical.py. I installed using the script and recommended steps on a completely fresh ubuntu multiple times, its the same issue. Hope this helps.\n> \n> \u2014\n> Reply to this email directly, view it on GitHub <https://github.com/kevoreilly/CAPEv2/issues/1006#issuecomment-1185419060>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAOFH35CBOT26ANR5JO5NE3VUE54VANCNFSM53RTERKA>.\n> You are receiving this because you modified the open/close state.\n> \n\n\nComment: It seems impossible as the only reference to a repo in cape2.sh is to CAPEv2.\nComment: I actually had exactly the same problem after using the install script... The solution for me was to make a git reset in /opt/Cape/ and git pull ... this pulled the correct code (Most recent master branch)... later i had to manually fix some requirements etc. There were some other files affected (it was looking like the script has initially cloned wrong code (while the git URL seemed correct) which considered itself the newest version. This has caused a lot of hours of troubleshooting until i realised what is wrong ... i even found how to fix the python library which was the culprit of the error related to \"/RPC2\" mentioned by @0xxdovahkiin hehe \nComment: we would appreciate PR with fixes or more detailed info on everything. The RPC2 thing was due to old machinery in community repo that was deleted\nComment: Now i know that it was due to old machinery ... I am wondering how is that even possible that git clone clones wrong code from time to time ... I would send you some of my raw notes while troubleshooting it... but if somebody encounters again the RPC2 after using the install script, it would be a strong indication that he/she has the same problem \nComment: This can be understood by examining the fix: https://github.com/kevoreilly/community/commit/22ebc5aa9ec2d2ab920165281f074b034010b5ae\nComment: bcz community runs with force mode and it runs after clone main repo. its imposible anymore to find that as it was deleted 26d ago https://github.com/kevoreilly/community/commits/master/modules/machinery\nComment: Cool so no need for my notes anymore ? I had this problem with the code base cloned more than 2 months ago.\nComment: you need to watch capev2 and community repo way much closer then ;) if notes are only for physical.py than no no need of them. of they about something else then yes\nComment: Right. Thx\r\n\r\nP.S Unfortunately didn't keep other notes.... Once i add new server i will test the install script again, and report errors faster (if any)\nComment: Thank you!\nComment: that would be appreciated. As if nobody report, means there is no problems :P ",
+  "Title: MacOS Big Sur and Mojave as the guests.\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n- [x] I'm have checked [discussions section](https://github.com/kevoreilly/CAPEv2/discussions)\r\n\r\nHi. We had built the sandbox with Windows guest and everything works well.\r\nNow we would like to set up secondary instance and have MacOS guests. We are looking for MacOS 11 Big Sur and MacOS 12 Mojave. I wonder if the sandbox supports MacOS as guests?\r\n\r\nThe agent wants to run under Python 32bit, but seems like Mac does not support 32bit apps anymore, so the question is can we have the guests with Macs and run an agent with 64bit Python?\nComment: The real crux of cape on windows is the monitor and loader. https://github.com/kevoreilly/capemon\r\n\r\nIt's the equivalent of this that's needed to make it work on another os, so currently the answer is no.\nComment: cuckoo has something of that, and cuckoo's GCOS has(in pull requests) more of that, but you need to backport it by yourself basically as nobody of us interested in that. \nComment: @doomedraven, @kevoreilly: ok, what's about Linux? The same?\nComment: yes, i have ported my improvements that i did to cuckoo, but is just for network traffic that you can get from it, as cuckoo's systemtap module is easy to bypass and works only on ubuntu 17.10",
+  "Title: AttributeError: module 'peutils' has no attribute 'SignatureDatabase'\nBody: .\nComment: .\nComment: .\nComment: .",
+  "Title: test: add options to pytest in pyproject.toml\nBody: Skip test cases in `tests/zip_compound` until a workaround has been figured out\r\nAlso includes miscellaneous changes for the other github actions",
+  "Title: Fix KeyError in virustotal integration.\nBody: We were checking virustotal to see if it has the 'detection' key, but\r\nthen attempt to use vt_response, which might not have that key. Also,\r\nthe 'sha256' key does not exist in vt_response, but it does in\r\nvirustotal.\nComment: thanks",
+  "Title: exit if executed as root\nBody: None",
+  "Title: Failed to load signature \"<class 'modules.signatures.antisandbox_unhook.Unhook'>\": 'target'\nBody: Hello,\r\n\r\nI just installed a second instance of CAPE to upgrade to the latest version (old CAPE is working correctly)\r\n\r\nI followed the steps as per the documentation but when I submit a file for analysis, CAPE fails at processing.\r\nThe analysis part seems to work correctly (VM boots, sample gets executed, VM shuts down).\r\n\r\nThis is the error log I get from the process.log file:\r\n\r\n2022-07-12 10:11:43,839 [Task 15] [lib.cuckoo.core.plugins] ERROR: Failed to load signature \"<class 'modules.signatures.antisandbox_unhook.Unhook'>\": 'target'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 411, in process\r\n    current = signature(self.results)\r\n  File \"/opt/CAPEv2/utils/../modules/signatures/antisandbox_unhook.py\", line 40, in __init__\r\n    if self.results[\"target\"][\"category\"] != \"file\":\r\nKeyError: 'target'\r\n2022-07-12 10:11:43,847 [Task 15] [lib.cuckoo.core.plugins] ERROR: Failed to run signature \"antivirus_clamav\": 'target'\r\n2022-07-12 10:11:44,024 [Task 15] [root] ERROR: Exception when processing task: 'target'\r\n\r\nI saw that someone had the same problem but was due to an old version of Python. In my case, I only have Python 3.8.10 installed. (cfr. https://github.com/kevoreilly/CAPEv2/issues/858)\r\n\r\nAny idea what could be the problem here?\r\n\r\nThanks a lot!\r\n\r\n\nComment: you are 3rd person who removing template. why?\r\ni have pushed fix for that. that is not critical\nComment: Sorry for the template.\r\n\r\nRegarding the fix, is it published already?\r\nBecause right now, I can't use CAPE.\nComment: why you can't use cape? any signature exception has 0 impact on core. fix is in community repo\nComment: I can't use because of this:\r\n**\r\n![image](https://user-images.githubusercontent.com/90250126/178480323-3a00be1c-f8bd-4bb4-8bcb-b3aa73e498af.png)\r\n**\r\n\r\nAll different samples. always the same error in the log file.\nComment: `python3 utils/community.py -waf` will solve your problem\nComment: Just saw the update in community repo. I'll give it a try.\r\nThanks\nComment: yaw, but is strange that it impacts so much on your side. if you still have issue after pulling new signature reprocess any task `python3 process.py -r X -d` in debug mode to get whole log and see what is a real problem on your side\nComment: but in future do not remove template, it will end in autoclose of the issue by us\nComment: Hi !\r\nSorry for the delay, but the error is still there. Here is the output when I reprocess a submission manually with debug on:\r\n![image](https://user-images.githubusercontent.com/90250126/179951506-e282fa86-44e0-4fd8-b408-05e3b498e1c6.png)\r\n\nComment: hello, i would suggest you to debug `module/processing/targetinfo.py` or share hash/submit to capesandbox.com\nComment: I just created an account on capesandbox.com but the account is set as inactive.\nComment: activated\nComment: It worked on public CAPE sandbox: https://capesandbox.com/analysis/292880/\nComment: Hmm but behavior log is empty\nComment: It statically imports from dlls that aren't there - cgraph and cdt - so it cannot run properly\nComment: Yes but it's an executable that is part of graphviz suite. No really a malware sample here and I'm not sure it does something.\r\n\nComment: Yes it's a terrible sample to use for testing\nComment: When I tried to run targetinfo.py I got this error: \r\n![image](https://user-images.githubusercontent.com/90250126/179960846-9310fb4b-02a9-4372-bf92-ac038176a10d.png)\r\n\r\nAnd I saw references to targetinfo in a pyc file. Is it safe to remove it?\r\n![image](https://user-images.githubusercontent.com/90250126/179960896-1b16186c-cf91-4128-a63c-e5751d0379c2.png)\r\n\nComment: You can remove the pyc file - it will be recreated (compiled) next time it's run,\r\n\r\nI think doomed was suggesting you insert some debug output into this module to print out information during use within cape, as opposed to running it directly.\nComment: you can't just run any random cape plugin like that. you need to add some debug out or use debugger and then reprocess the analysis. i just tested your sample on my side too. We can't recreate your issue.\r\n\r\nagain you removed template with a lot of important information for us, but i won't ask that again as it should be filled by template.",
+  "Title: Task complete but still Processing result not showing\nBody: \r\nHi \r\nI used CAPEv2 installed at Ubuntu Mate 20.04.4 desktop version as per instruction\r\nI also update both CAPEv2 and Ubuntu Desktop.\r\nbut i stuck at processing \r\nby using this command  **sudo python3 cuckoo.py -d** it shows task complete but on web its shows processing and stuck at this stage.i attach snapshots if need any additional information plz let me know\r\n \r\n\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu mate 20.04.4 , nested vm Windows 10\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n![image](https://user-images.githubusercontent.com/109132338/178424450-0f1e0cdc-939c-46a9-8c9d-ece3b313a386.png)\r\n![image](https://user-images.githubusercontent.com/109132338/178424623-0f448735-beab-49ab-8e0e-cf32de6913ee.png)\r\n![image](https://user-images.githubusercontent.com/109132338/178424805-ead6d8c2-503c-4f06-b8b4-67627388a23f.png)\r\n\r\n\r\n\r\n\r\n\nComment: 1. do not remove template\r\n2. read the docs\r\n\r\nwhat about `process.py` or `systemctl status cape-processor` ?\nComment: > 1. do not remove template\r\n> 2. read the docs\r\n> \r\n> what about `process.py` or `systemctl status cape-processor` ?\r\n\r\n![image](https://user-images.githubusercontent.com/109132338/178464458-178434c7-de47-4b5c-89dc-95344f1ab412.png)\r\nits active but when i issue following command i found this repley \r\n![image](https://user-images.githubusercontent.com/109132338/178466032-8b69f283-24ee-4199-adfe-8fe3d195ce57.png)\r\n\r\n\nComment: those 2 not related commands, cuckoo.py and `utils/process.py`.\r\n\r\nwell i see your problem dude, you run it with `sudo`. that ends in permission problems, reread docs and readme as it clearly says __NO ROOT__ https://github.com/kevoreilly/CAPEv2#installation-recommendations-and-scripts-for-optimal-performance\nComment: > those 2 not related commands, cuckoo.py and `utils/process.py`.\r\n> \r\n> well i see your problem dude, you run it with `sudo`. that ends in permission problems, reread docs and readme as it clearly says **NO ROOT** https://github.com/kevoreilly/CAPEv2#installation-recommendations-and-scripts-for-optimal-performance\r\n\r\nyou mean i need to install from scratch without  sudo  or i can't got this point \nComment: please do read readme and docs i have described usage of root there. if you just run cape with root you do a mess, and if you don't understand what are you doing that will just gen more problems. as you not even probably changed the rooter group. So stop running as root, review docs+readme, and how we start the services you have all answers there. otherwise you will have tons of random problems\nComment: thanks for reply",
+  "Title: Fix bug in CAPE processing.\nBody: Some samples may match multiple yara rules that have a cape_type\r\ndefined. If the first one has a config extracted but the last one\r\ndoesn't, then, previously, self.cape[\"configs\"] would end up having a\r\nan entry with the top-level key of the latter cape_type and its value\r\nwould be a dict whose key is the first cape_type and its value would be\r\nthe extracted config. This fixes that problem by making sure to add each\r\nconfig to self.cape[\"configs\"] when it is found instead of waiting until\r\nthe very end. This is because the 'cape_type' variable can change as it\r\ngoes through iterations of the loop.\r\n\r\nI factored the code a little bit to try to make it more readable.\r\n\r\nThis also fixes a problem where not all cape_names would get added as\r\nfamily detections. Again, this was because we were only using the last\r\ncape_name that was found.\r\n\r\nTesting: I detonated a sample that previously had a config that ended up being `[{\"Metasploit\": {\"CobaltStrikeBeacon\": {...cobalt strike beacon config...}}}]` and the only detection was \"Metasploit\". Now it stores the config as `[{\"CobaltStrikeBeacon\": {...cobalt strike beacon config...}}]` and has \"CobaltStrikeBeacon\" AND \"Metasploit\" as detections.\r\nI don't have a PlugX sample to confirm the change there.\nComment: I'm not sure there are ModuleNotFound errors while running tests.\nComment: don't worry about those tests. thank you\nComment: Thank you!",
+  "Title: Update floss and on_demand\nBody: None",
+  "Title: Stuck on \"Uploading script files to guest\"\nBody: H, guest opening and host can connect guest machine.  But stucking on \"uploading script files to guest\". Host can ping 192.168.122.188 too and can connect 8000 port too.\r\n\r\n![image](https://user-images.githubusercontent.com/19777824/178154480-2782abac-468d-4f61-a7e5-c022193bc523.png)\r\n\r\nAnyone have idea to fix?\r\n\r\n- [x ] I am running the latest version\r\n- [ x] I did read the README!\r\n- [x ] I checked the documentation and found no answer\r\n- [x ] I checked to make sure that this issue has not already been filed\r\n- [ x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x ] I'm have read all configs with all optional parts\r\n- [x] I'm have checked [discussions section](https://github.com/kevoreilly/CAPEv2/discussions)\r\n\r\n\r\n\r\n\nComment: why do you remove issue template? and no no idea whats wrong",
+  "Title: Revert \"fix: configparser parsing of % symbol\"\nBody: Reverts kevoreilly/CAPEv2#984 - causing failure in analyzer to load config",
+  "Title: Updating the processing of sysmon data\nBody: Updated based on https://github.com/kevoreilly/community/pull/291\r\n\r\nSide note.... should this processing module be moved to the community repo?\nComment: It might be better to put this in community repo - this was created to remove the burden of potential breakages to the working core from contributions which we can't directly support... The downside is there might be some who miss out if they don't install/update community... Ultimately if something is seen as 'core'/stable enough then it could be moved to the main repo too...\nComment: could you please @cccs-kevin move this to community repo? as we don't dev/maintain this one\nComment: @doomedraven I think you still have to merge this so that the sysmon processing module is removed from the core\nComment: good point, thank you",
+  "Title: Include the file path being processed during config extraction.\nBody: This makes it easier to know if it's the target binary, a payload, an\r\nextracted file, etc. that had a config extracted (or generated an error\r\nduring extraction).",
+  "Title: Converting from os.system use to subprocess, hiding windows\nBody: None",
+  "Title: Bump lxml from 4.9.0 to 4.9.1\nBody: Bumps [lxml](https://github.com/lxml/lxml) from 4.9.0 to 4.9.1.\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/lxml/lxml/blob/master/CHANGES.txt\">lxml's changelog</a>.</em></p>\n<blockquote>\n<h1>4.9.1 (2022-07-01)</h1>\n<h2>Bugs fixed</h2>\n<ul>\n<li>A crash was resolved when using <code>iterwalk()</code> (or <code>canonicalize()</code>)\nafter parsing certain incorrect input.  Note that <code>iterwalk()</code> can crash\non <em>valid</em> input parsed with the same parser <em>after</em> failing to parse the\nincorrect input.</li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/lxml/lxml/commit/d01872ccdf7e1e5e825b6c6292b43e7d27ae5fc4\"><code>d01872c</code></a> Prevent parse failure in new test from leaking into later test runs.</li>\n<li><a href=\"https://github.com/lxml/lxml/commit/d65e63229e8958bc08344a85cd3f09ceeef933c3\"><code>d65e632</code></a> Prepare release of lxml 4.9.1.</li>\n<li><a href=\"https://github.com/lxml/lxml/commit/86368e9cf70a0ad23cccd5ee32de847149af0c6f\"><code>86368e9</code></a> Fix a crash when incorrect parser input occurs together with usages of iterwa...</li>\n<li><a href=\"https://github.com/lxml/lxml/commit/50c276412880c1a3dde8a6d6c909e3ed8ef47e43\"><code>50c2764</code></a> Delete unused Travis CI config and reference in docs (<a href=\"https://github-redirect.dependabot.com/lxml/lxml/issues/345\">GH-345</a>)</li>\n<li><a href=\"https://github.com/lxml/lxml/commit/8f0bf2d158f2dd3f98d410c8a38fcd536fd11b53\"><code>8f0bf2d</code></a> Try to speed up the musllinux AArch64 build by splitting the different CPytho...</li>\n<li><a href=\"https://github.com/lxml/lxml/commit/b9f7074430594b95824059eef931dfbb27a7645e\"><code>b9f7074</code></a> Remove debug print from test.</li>\n<li>See full diff in <a href=\"https://github.com/lxml/lxml/compare/lxml-4.9.0...lxml-4.9.1\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=lxml&package-manager=pip&previous-version=4.9.0&new-version=4.9.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language\n- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language\n- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language\n- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language\n\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: win7 not ready yet\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account acctivation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n[Y] I am running the latest version\r\n[Y] I did read the README!\r\n[Y] I checked the documentation and found no answer\r\n[Y] I checked to make sure that this issue has not already been filed\r\n[Y] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n[Y] I'm have read all configs with all optional parts\r\n[Y] I'm have checked [discussions section](https://github.com/kevoreilly/CAPEv2/discussions)\r\n\r\n# Expected Behavior\r\n\r\n It should turn on the one of the (win 7) analysis machine\r\n[cuckoo.log](https://github.com/kevoreilly/CAPEv2/files/9057728/cuckoo.log)\r\n![image (1)](https://user-images.githubusercontent.com/106651547/177634039-0b59c3c5-d2c4-42f6-a2b2-9f5aae003733.png)\r\n, run the malware on it and display its results on the Web UI.\r\n\r\n# Current Behaviour\r\n\r\nI was deploying a completely new CAPE instance in Ubuntu MATE 20.04 LTS following the steps given in the documentation. CAPE was installed successfully, its Web UI was showing up perfectly on the loopback IP 127.0.0.1. Initially, I installed Windows 7 in KVM as the analysis machine with all of its configurations done properly except Pillow's latest version was as opposed to version 7.0 that I tried installing (I hope this isn't an issue). Then firstly I had Python 3.6.8 installed but then I saw any version greater than or equal to 3.6 can be installed so later on I installed 3.7.1 and added it to Path. All the dependencies and missing package in the cuckoo.py were installed by debugging it. Now, after ensuring the network connection (NAT initially instead of host only) between CAPE and the analysis VM by pinging each other from both ends, I uploaded a test sample to CAPE for analysis while debugging the cuckoo.py file to see if any errors appear. The debugging logs showed that CAPE successfully powered ON the analysis VM and ran the sanpshot too, but after that it started displaying the message win7 not ready yet repeatedly until I aborted the debugging. I tried searching it troubleshooting it but I couldn't find the exact cause of this problem. Maybe it an issue related to agent?\r\n\r\n## Steps to Reproduce\r\n\r\nDeploy CAPE by following the documentation given on the CAPE website.\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n| OS version       | Ubuntu MATE 20.04, Windows 7\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: yes issue is with agent, did you read the docs? there is tip for this cases how to test if agent works\nComment: Yup, the issue was with the Python version I was using Python 3.6.8 64-bit instead of 32-bit which was causing this issue. After installing the 32-bit the agent is now working just fine. ",
+  "Title: on_demand is broken\nBody: Due to our change from static key to add metadata under file. That broke `on_demand`. Will need to think how to fix it\nComment: fixed",
+  "Title: Cannot bind resultserver on port 2042 because it was in use, bailing.\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account acctivation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [Y] I am running the latest version\r\n- [Y] I did read the README!\r\n- [Y] I checked the documentation and found no answer\r\n- [Y] I checked to make sure that this issue has not already been filed\r\n- [Y] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [Y] I'm have read all configs with all optional parts\r\n- [Y] I'm have checked [discussions section](https://github.com/kevoreilly/CAPEv2/discussions)\r\n\r\n\r\n# Expected Behavior\r\n\r\nThis is was my completely fine and properly running CAPE instance with an A.I module integrated to assess whether the file is malicious or benign based on the strings contained with it along with all the default capabilities of CAPE. It should turn on the one of the (win 10 or win 7) analysis machines, run the malware on it and display its results on the Web UI.\r\n\r\n# Current Behavior\r\n\r\nI had analyzed a malware sample on it about a month ago and it was working just fine, but since then I hadn't opened/used the CAPE instance until today. Now, whenever I try analyzing a file it just goes into running state for a while before finally going into pending state indefinitely, I open the virt-manager (KVM) to see if the analysis machine(s) are running but none of the configured machines were turned ON instead they were in Shut Off state. When I tried debugging the cuckoo.py script using python3 cuckoo.py -d it gave me the following error: CuckooCriticalError: Cannot bind resultserver on port 2042 because it was in use, bailing. I tried editing the kvm.conf file but to no avail then I tried listing the process that using this port using netstat and it was in use by some IP Address. So, restarted CAPE services to see if the port is released and gets captured by CAPE but the it didn't happen even after multiple attempts. \r\n\r\n## Steps to Reproduce\r\n\r\nSimply deploy the CAPE sandbox following the documentation.\r\n\r\n## Context\r\n\r\nI have the default functionality of CAPE except for the integration of custom A.I module, but the error which it is giving I think it has noting to do with it.\r\n\r\n| Question         | Answer\r\n| OS version       | Ubuntu 20.04, Analysis VM: Windows 10, Windows 7\r\n\r\n## Failure Logs\r\n\r\n![image](https://user-images.githubusercontent.com/106651547/177625188-75f62daa-0e05-4e3f-9f63-5fe9eecda62c.png)\r\n\r\n\nComment: hello do you have stopped systemd daemon? `systemctl stop cape`\nComment: I had restarted cape but I didn't stop it. \nComment: they you already have something that listening on that port. please __REREAD__ the readme i have described those cases there\nComment: Ok I will do that and update you in a couple of hours as I don't have access to my CAPE machine now. So, kindly please don't close this issue in the meanwhile.\nComment: np, when you can\nComment: Thanks man, the systemctl stop cape command worked, the port was released and CAPE was working just fine. You can now close this issue.\nComment: FYI you own issues you have permission to close them",
+  "Title: Remove unnuecessary print in report generation\nBody: This is the only `print` in the REST API. I think this is leftover from development?",
+  "Title: If the json report exists, assign to report\nBody: None",
+  "Title: add floss with on demand\nBody: Please review code.",
+  "Title: fix: configparser parsing of % symbol\nBody: None",
+  "Title: Miscellaneous web changes\nBody: None\nComment: hey, thanks for all your PR. i have question about this one, about bingraph, does it removes bingraph on demand button?\nComment: Nope it doesn't, it just fixes the font issue\nComment: i will need to double check as i see `elif` removed",
+  "Title: feat: add apiv2 option to download encrypted sample\nBody: None",
+  "Title: fix: comparison page\nBody: None",
+  "Title: feat: use configuration option in floss processing module\nBody: As mentioned in #973",
+  "Title: feat: use configuration option in overlay processing module\nBody: None",
+  "Title: fix: maec5 reporting module\nBody: None",
+  "Title: Bump django from 4.0.4 to 4.0.6\nBody: Bumps [django](https://github.com/django/django) from 4.0.4 to 4.0.6.\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/django/django/commit/caad462feaa84ba78ed658a9595a4a4363dad2db\"><code>caad462</code></a> [4.0.x] Bumped version for 4.0.6 release.</li>\n<li><a href=\"https://github.com/django/django/commit/c73215272a723b939548fe22c607a732530ce04f\"><code>c732152</code></a> [4.0.x] Updated man page for Django 4.0.6.</li>\n<li><a href=\"https://github.com/django/django/commit/0dc9c016fadb71a067e5a42be30164e3f96c0492\"><code>0dc9c01</code></a> [4.0.x] Fixed CVE-2022-34265 -- Protected Trunc(kind)/Extract(lookup_name) ag...</li>\n<li><a href=\"https://github.com/django/django/commit/a2b88d7be6fc9b443794518d2f75fd2f3d9e677a\"><code>a2b88d7</code></a> [4.0.x] Fixed typo in docs/topics/signals.txt.</li>\n<li><a href=\"https://github.com/django/django/commit/2b901c1be462a12cad39af40a57a454ffe185406\"><code>2b901c1</code></a> [4.0.x] Fixed GEOSTest.test_emptyCollections() on GEOS 3.8.0.</li>\n<li><a href=\"https://github.com/django/django/commit/4d20d2f7c2b8e74c3e85bd0716ebdcb3b35a70e6\"><code>4d20d2f</code></a> [4.0.x] Fixed docs build with sphinxcontrib-spelling 7.5.0+.</li>\n<li><a href=\"https://github.com/django/django/commit/8a294ee2e0e30f073f764310c74899e385a302ec\"><code>8a294ee</code></a> [4.0.x] Added stub release notes and release date for 4.0.6 and 3.2.14.</li>\n<li><a href=\"https://github.com/django/django/commit/1c28443fc92e57588fb9b37b700f97be9fde5982\"><code>1c28443</code></a> [4.0.x] Fixed CoveringIndexTests.test_covering_partial_index() when DEFAULT_I...</li>\n<li><a href=\"https://github.com/django/django/commit/0f3b25044c34fd17b6fcde0cb53db0181f212b20\"><code>0f3b250</code></a> [4.0.x] Fixed <a href=\"https://github-redirect.dependabot.com/django/django/issues/33789\">#33789</a> -- Doc'd changes in quoting table/column names on Oracle...</li>\n<li><a href=\"https://github.com/django/django/commit/6661c48a20d788dc76397ab4ec334b28b51db872\"><code>6661c48</code></a> [4.0.x] Updated OWASP Top 10 link in security topic.</li>\n<li>Additional commits viewable in <a href=\"https://github.com/django/django/compare/4.0.4...4.0.6\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=django&package-manager=pip&previous-version=4.0.4&new-version=4.0.6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language\n- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language\n- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language\n- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language\n\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Adding periodic logger to enhance debugging of pending tasks, locked machines, etc\nBody: This may not be for everyone since it adds 4 additional DB calls every ten seconds, but it is crucial to our operations to be able to determine the backlog in CAPE and the status of locked vs unlocked machines. \nComment: Can it be conf on/off? And then i will merge it directly\nComment: > Can it be conf on/off? And then i will merge it directly\r\n\r\nAdded!\nComment: thank you",
+  "Title: Check if capacity is going to be negative\nBody: If there are a bunch of non-relevant machines, `number_of_relevant_machines_required` could be a negative number.",
+  "Title: Add some exception handling for OleID indicators\nBody: None",
+  "Title: feat: floss\nBody: None\nComment: hello just to leave here few notes to consider. In future we must to move this to python implementation, maybe later they will post more examples, to reduce HDD I/O as in past that already was bottleneck for me on gran scale processing. \r\n\r\nabout `subprocess.run` im not familiar with it so much, but recently i saw that due to missed `communicate()` it was waiting in `sniffer.py` for someone to fetch the output in some rare cases and that was blocking the rest. With processing this shouldn't happens but just leaving this as note in case someone see rare stucks\nComment: ah btw config option missed. Can you add it please?",
+  "Title: feat: display PE overlay information\nBody: None\nComment: did you test this `data-url=\"/analysis/load_files/{{analysis.info.id}}/static/pe/overlay\"` i think that will be problematic part as we need to edit `urls.py` and views where we handle ajax request as:\r\n1. urls expect only 1 keyword after task id that is set as. category\r\n2. in ajax handler in `views.py` we need to use that category. so maybe change `static/pe/overlay` to `pe_overview` ? \nComment: The url returns 404 but the overlay data tab still displays the information accurately\nComment: ok, well a bit later today i will do mods to not fetch ajax part and go directly to that data\nComment: Never mind I got it :)\nComment: can you add config option and i will merge that directly ",
+  "Title: feat: misc web improvements\nBody: None",
+  "Title: feat: pre and during scripts\nBody: # New auxiliary modules: pre and during scripts\r\n\r\nUsefulness of pre-scripts: Set various computer information that may be necessary for successful detonation of malware\r\nUsefulness of during-scripts: Run a custom C2 script throughout the execution process of the malware\r\n\r\nSupported formats of scripts: python and powershell\r\n\r\nNote that these modules are disabled by default",
+  "Title: feat: new zip_compound package\nBody: # New package: `zip_compound`\r\nSamples with this package need a configuration.json file to dictate where the files are\r\nSample configuration.json file can be found at [tests/zip_compound/files/example_config.json](https://github.com/TheMythologist/CAPEv2/blob/e310686ed9694d718bdb6f167d25f4b50d0913c8/tests/zip_compound/files/example_config.json)\nComment: On a side note, I think the cached venv is broken in the github actions\nComment: lets see if this fixes it https://github.com/kevoreilly/CAPEv2/blob/master/.github/workflows/python-package.yml\nComment: https://github.com/python-poetry/poetry/issues/3592 something got broken there i will try to investigate later, just returned from festival and need extra sleep\nComment: Don't forget to add this package to the docs! https://capev2.readthedocs.io/en/latest/usage/packages.html\nComment: Regarding the broken CI, it may (hopefully, crossing my fingers) fixed after merging the dependabot update\nComment: which update?\nComment: The dependabot update (it's a new poetry.lock file so new cache) \nComment: tlsdump broken here fixed in https://github.com/kevoreilly/CAPEv2/commit/ada7993cc4b140c06617562aeb2a3151544fa1b2",
+  "Title: Fix bug in parsing ranges of ID's in process.py.\nBody: If a valid range of ID's was given on the command line, parse_id\r\nwould raise an exception. This fixes that.\nComment: I'm not sure how to address the issue with not finding black in the CI pipeline.\nComment: Just run \"isort .\"",
+  "Title: Include the ID of the task being processed in all log messages.\nBody: When --parallel is used by process.py, it can be hard to tell what task\r\nID is associated with many of the log messages. It also puts a burden on\r\nother parts of the code to include the task ID in log messages to make\r\nthem useful.\r\n\r\nInstead, since only 1 task is being handled in a particular process from\r\nthe pool at a time, just update the formatter used for the log messages\r\nto include the ID of the task.\nComment: I'm not sure how to address the issue with not finding black in the CI pipeline.\nComment: Oh thats cool i had this in todo, thabks",
+  "Title: How to install and configure CAPE \nBody: Hi Team,\r\nI have installed CAPE on the ubuntu server but I am unable to configure CAPE.\r\nWhat should I change cuckoo.conf, DB details target server details.\r\nplease guide us.  \nComment: Have you checked the documentation?\nComment: Also you appear to have removed the issue template! Maybe we shouldn't bother with that?!\nComment: I have followed the documentation\nComment: After Run cape2.sh, what should i do to configure and how can I ensure it's working.\r\n\nComment: There is an entire section in the documentation about configuring, I'm sorry but we can't spoon feed you. The issue template was put there for a reason. Funnily enough it was to filter non-issues like this! I'm sorry but 'please guide us' isn't an issue, nor is it what issues are intended for, nor do we have time to spoon feed people's installations. If you have a specific issue then it should fit within the template and not be something that is covered already in the readme, documentation, previous issues or discussions.",
+  "Title: Fix DoppelPaymer extractor\nBody: Encountered these issues while running the parser.\nComment: Thank you",
+  "Title: Bugfix: Escape backslash used in DoppelPaymer Payload rule\nBody: Fixes yara.SyntaxError on compilation.\nComment: Thanks",
+  "Title: Bug fix for concatenating a tuple with a list\nBody: REL to https://github.com/kevoreilly/CAPEv2/pull/961",
+  "Title: Removing unused folders, reusing RESULT_UPLOADABLE\nBody: All folders listed under `RESULT_UPLOADABLE`:\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/lib/cuckoo/core/resultserver.py#L46:L61\r\n\r\nother than `report` should be created in this method here:\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/lib/cuckoo/core/resultserver.py#L336:L350\r\n?\r\n\r\nAlso it looks like `buffer` and `extracted` are unused in CAPE.\nComment: buffer is old stuff that comes from cuckoo-modified that was something to do with exploits",
+  "Title: Initialize sorted key\nBody: None\nComment: sound like you fixed your issue?\nComment: yes :)\nComment: amazing, thanks for fix",
+  "Title: signatures: add mitre and mbc ttps\nBody: Follow-up of https://github.com/kevoreilly/community/commit/ea76a2a886b49ae8973236831eacee0b7cb3e728",
+  "Title: Updating the rooter for proper INetSim redirection\nBody: Incorporates https://github.com/kevoreilly/CAPEv2/issues/956#issuecomment-1164392145 to address https://github.com/kevoreilly/CAPEv2/issues/956\nComment: cool glad that was useful. so that solves inetsim problem no?\nComment: > cool glad that was useful. so that solves inetsim problem no?\r\n\r\nyes it does!\nComment: Amazing. Thanks for PR\n\n> On 23 Jun 2022, at 18:29, cccs-kevin ***@***.***> wrote:\n> \n> \n> cool glad that was useful. so that solves inetsim problem no?\n> \n> yes it does!\n> \n> \u2014\n> Reply to this email directly, view it on GitHub <https://github.com/kevoreilly/CAPEv2/pull/958#issuecomment-1164626044>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAOFH35KSI6RUU7JG43IWMLVQSGFXANCNFSM5ZUVTKLA>.\n> You are receiving this because you modified the open/close state.\n> \n\n",
+  "Title: Fix format typo\nBody: None\nComment: thanks",
+  "Title: UDP traffic is not redirected to INetSim\nBody: Hi there,\r\n\r\nThis [`iptables`](https://github.com/kevoreilly/CAPEv2/blob/5b3ceea578e0d90cbd61886b443a37cb13160c64/utils/rooter.py#L299) rule does not add a route for UDP traffic to be sent to INetSim. It only catches TCP traffic sent from a guest. If a guest tries to ping a C2, I think we should direct that traffic to INetSim to provide a fake response.\r\n\r\nI was able to get the result that I wanted based on my setup by commenting out the protocol-specific traffic, but I don't think this is the correct way to solve this:\r\n\r\n```\r\nrun_iptables(\r\n        \"-t\",\r\n        \"nat\",\r\n        \"-A\",\r\n        \"PREROUTING\",\r\n        \"--source\",\r\n        ipaddr,\r\n        # \"-p\",\r\n        # \"tcp\",\r\n        # \"--syn\",\r\n        # \"!\",\r\n        # \"--dport\",\r\n        # resultserver_port,\r\n        \"-j\",\r\n        \"DNAT\",\r\n        \"--to-destination\",\r\n        \"{}\".format(inetsim_ip),\r\n    )\r\n```\r\n\r\n\nComment: Hm but isn't that saying that preroute anything else that is not TCR to dport of resultserver ? it was working for even ICMP redirection\nComment: Not quite, I think it is saying to preroute any TCP traffic to the INetSim IP except for that destined for the result server port.\r\n\r\nAccording to the manual:\r\n`-p tcp` is specifically for TCP traffic\r\n![image](https://user-images.githubusercontent.com/59843993/175293693-e1cb0d3a-c20c-4944-bc3c-414bf01098c6.png)\r\n\r\n`--syn`\r\n![image](https://user-images.githubusercontent.com/59843993/175293967-a9e56e77-553c-4591-bb9d-06a23e129133.png)\r\n\r\n`! --dport`\r\n![image](https://user-images.githubusercontent.com/59843993/175294300-af391f6f-15ca-42b0-8ac9-c5a6c4c1a4ea.png)\r\nThe `!` inverts the rule of the `--dport`, so all ports that are not the `resultserver_port` would be redirected\nComment: hm ok. here is rules from my cuckoo linux that was public\r\n\r\n```\r\ndef inetsim_enable(ipaddr, inetsim_ip, machinery_iface, resultserver_port):\r\n    \"\"\"Enable hijacking of all traffic and send it to InetSIM.\"\"\"\r\n\r\n    run(s.iptables, \"-t\", \"nat\", \"-A\", \"PREROUTING\", \"--source\", ipaddr,\r\n        \"-p\", \"tcp\", \"-m\", \"multiport\", \"--dports\", \"7\", \"9\", \"13\", \"17\", \"19\", \"21\", \"22\",\r\n        \"25\", \"37\", \"69\", \"79\", \"80\", \"110\", \"113\", \"123\", \"443\", \"465\", \"514\", \"990\", \"995\", \"6667\",\r\n        \"-j\", \"DNAT\", \"--to-destination\", inetsim_ip\r\n    )\r\n\r\n    run(s.iptables, \"-t\", \"nat\", \"-A\", \"PREROUTING\", \"--source\", ipaddr,\r\n        \"-p\", \"udp\", \"-m\", \"multiport\", \"--dports\", \"7\", \"9\", \"13\", \"17\", \"19\", \"21\", \"22\",\r\n        \"25\", \"37\", \"69\", \"79\", \"80\", \"110\", \"113\", \"123\", \"443\", \"465\", \"514\", \"990\", \"995\", \"6667\",\r\n        \"-j\", \"DNAT\", \"--to-destination\", inetsim_ip\r\n    )\r\n\r\n    dns_forward(\"-A\", ipaddr, inetsim_ip)\r\n    forward_enable(machinery_iface, machinery_iface, ipaddr)\r\n\r\n    run(s.iptables, \"-t\", \"nat\", \"-A\", \"PREROUTING\", \"--source\", ipaddr,\r\n        \"-p\", \"tcp\", \"--syn\", \"!\", \"--dport\", resultserver_port,\r\n        \"-j\", \"DNAT\", \"--to-destination\", \"%s:%s\" % (inetsim_ip, \"1\")\r\n    )\r\n\r\n    run(s.iptables, \"-t\", \"nat\", \"-A\", \"PREROUTING\", \"--source\", ipaddr,\r\n        \"-p\", \"udp\", \"!\", \"--dport\", resultserver_port,\r\n        \"-j\", \"DNAT\", \"--to-destination\", \"%s:%s\" % (inetsim_ip, \"1\")\r\n    )\r\n\r\n    run(s.iptables, \"-A\", \"OUTPUT\", \"--source\", ipaddr,\r\n        \"-m\", \"conntrack\", \"--ctstate\", \"INVALID\", \"-j\", \"DROP\")\r\n\r\n    run(s.iptables, \"-A\", \"OUTPUT\", \"--source\", ipaddr,\r\n        \"-m\", \"state\", \"--state\", \"INVALID\", \"-j\", \"DROP\")\r\n\r\n    run(s.iptables, \"-A\", \"OUTPUT\", \"--source\", ipaddr, \"-j\", \"DROP\")\r\n\r\n\r\ndef inetsim_disable(ipaddr, inetsim_ip, machinery_iface, resultserver_port):\r\n    \"\"\"Enable hijacking of all traffic and send it to InetSIM.\"\"\"\r\n    run(s.iptables, \"-D\", \"PREROUTING\", \"-t\", \"nat\", \"--source\", ipaddr,\r\n        \"-p\", \"tcp\", \"--syn\", \"!\", \"--dport\", resultserver_port, \"-j\", \"DNAT\",\r\n        \"--to-destination\", inetsim_ip\r\n    )\r\n    run(s.iptables, \"-t\", \"nat\", \"-D\", \"PREROUTING\", \"--source\", ipaddr,\r\n        \"-p\", \"udp\", \"-j\", \"DNAT\", \"--to-destination\", inetsim_ip\r\n    )\r\n\r\n    run(s.iptables, \"-t\", \"nat\", \"-D\", \"PREROUTING\", \"--source\", ipaddr,\r\n        \"-p\", \"tcp\", \"-m\", \"multiport\", \"--dports\", \"7\", \"9\", \"13\", \"17\", \"19\", \"21\", \"22\",\r\n        \"25\", \"37\", \"69\", \"79\", \"80\", \"110\", \"113\", \"123\", \"443\", \"465\", \"514\", \"990\", \"995\", \"6667\",\r\n         \"-j\", \"DNAT\", \"--to-destination\", inetsim_ip\r\n    )\r\n\r\n    run(s.iptables, \"-t\", \"nat\", \"-D\", \"PREROUTING\", \"--source\", ipaddr,\r\n        \"-p\", \"udp\", \"-m\", \"multiport\", \"--dports\", \"7\", \"9\", \"13\", \"17\", \"19\", \"21\", \"22\",\r\n        \"25\", \"37\", \"69\", \"79\", \"80\", \"110\", \"113\", \"123\", \"443\", \"465\", \"514\", \"990\", \"995\", \"6667\",\r\n         \"-j\", \"DNAT\", \"--to-destination\", inetsim_ip\r\n    )\r\n\r\n    dns_forward(\"-D\", ipaddr, inetsim_ip)\r\n    forward_disable(machinery_iface, machinery_iface, ipaddr)\r\n\r\n    run(s.iptables, \"-t\", \"nat\", \"-D\", \"PREROUTING\", \"--source\", ipaddr,\r\n        \"-p\", \"tcp\", \"--syn\", \"!\", \"--dport\", resultserver_port,\r\n        \"-j\", \"DNAT\", \"--to-destination\", \"%s:%s\" % (inetsim_ip, \"1\")\r\n    )\r\n\r\n    run(s.iptables, \"-t\", \"nat\", \"-D\", \"PREROUTING\", \"--source\", ipaddr,\r\n        \"-p\", \"udp\", \"!\", \"--dport\", resultserver_port,\r\n        \"-j\", \"DNAT\", \"--to-destination\", \"%s:%s\" % (inetsim_ip, \"1\")\r\n    )\r\n\r\n    dns_forward(\"-D\", ipaddr, inetsim_ip)\r\n    forward_disable(machinery_iface, machinery_iface, ipaddr)\r\n\r\n    run(s.iptables, \"-D\", \"OUTPUT\", \"-s\", ipaddr, \"-j\", \"DROP\")\r\n```",
+  "Title: document required steps for win10\nBody: Document the changes found for starting the agent in Win10 from https://github.com/kevoreilly/CAPEv2/issues/947 .\nComment: > Some grammar + spelling suggestions\r\n\r\nAwesome! Thanks!\nComment: thank you both\nComment: Hi I'm a bit late to the party but here's an alternative:\r\n\r\nhttps://superuser.com/questions/1624821/run-as-administrator-missing-for-py-files/1624822#1624822\r\n> 1. Create a shortcut for python.exe\r\n> 2. Change the shortcut target into something\r\n> like d:\\xxx...\\python.exe (your_script.py)(your file path)\r\n> 3. Click \"advance...\" in the property panel of the shortcut, and click the option \"run as administrator\"\r\n\r\nExample shortcut that I created:\r\n![brave_Dc61IccTom](https://user-images.githubusercontent.com/29896527/175202268-a77bf98b-00f1-453f-b2b9-bba5394cd27b.png)\r\n\r\nMake sure to tick \"Run as administrator\"\r\n\r\nTarget: `C:\\Windows\\pyw.exe \"C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\StartUp\\agent.pyw\"`\r\n\r\nI would recommend this method instead because we won't have an additional task in the task scheduler.\nComment: can someone please add this to docs?\nComment: I have used this method - however no luck placing the shortcut in startup to autorun on login. It seems despite placing in startup, the shortcut won't run automatically and needs manual launch before snapshot...",
+  "Title: Adding support for inetsim port redirection by range\nBody: Adds support for port redirection by range\nComment: oh i remember i had that for linux cuckoo",
+  "Title: tmpfsclean.py Does Not Appear to Move Files\nBody: Ubuntu 20.04.4LTS\r\n- Enabled `/mnt/tmpfs` per directions\r\n- Memory tab populates as expected on samples\r\n- `<id>.dmp.strings` does not move from `/mnt/tmpfs` to `/opt/CAPEv2/storage/analysis/<id>`\r\n\r\n```\r\n$ ls -al /mnt/tmpfs/\r\ntotal 32588\r\ndrwxrwxrwt 2 cape cape      100 Jun 22 18:07 .\r\ndrwxr-xr-x 3 root root     4096 Jun 21 19:24 ..\r\n-rw-r--r-- 1 cape cape 10710907 Jun 22 18:03 1579.dmp.strings\r\n-rw-r--r-- 1 cape cape 10863453 Jun 22 18:07 1591.dmp.strings\r\n-rw-r--r-- 1 cape cape 11786591 Jun 22 18:07 1592.dmp.strings\r\n```\r\n\r\n```\r\n$ ls -al /data/storage/analyses/1579/\r\ntotal 1364\r\ndrwxr-xr-x   18 cape cape    4096 Jun 22 18:05 .\r\ndrwxr-xr-x 1598 cape cape   36864 Jun 22 18:07 ..\r\n-rw-r--r--    1 cape cape   22874 Jun 22 18:02 analysis.log\r\ndrwxr-xr-x    2 cape cape    4096 Jun 22 18:03 aux\r\nlrwxrwxrwx    1 cape cape      98 Jun 22 17:58 binary -> /opt/CAPEv2/storage/binaries/1579/7aeea4fb896bf270a26c4804a0d9e88b38cff2b2d7dc1c43dc786d1591afa25a\r\ndrwxr-xr-x    2 cape cape    4096 Jun 22 17:58 CAPE\r\n-rw-r--r--    1 cape cape       0 Jun 22 17:58 cuckoo.log\r\ndrwxr-xr-x    2 cape cape    4096 Jun 22 17:58 curtain\r\ndrwxr-xr-x    2 cape cape    4096 Jun 22 17:58 debugger\r\n-rw-r--r--    1 cape cape 1249174 Jun 22 18:02 dump.pcap\r\ndrwxr-xr-x    2 cape cape    4096 Jun 22 17:58 evtx\r\ndrwxr-xr-x    2 cape cape    4096 Jun 22 17:58 files\r\n-rw-r--r--    1 cape cape    1083 Jun 22 18:02 files.json\r\ndrwxr-xr-x    2 cape cape    4096 Jun 22 18:03 logs\r\ndrwxr-xr-x    2 cape cape    4096 Jun 22 17:58 memory\r\ndrwxr-xr-x    2 cape cape    4096 Jun 22 18:03 network\r\ndrwxr-xr-x    2 cape cape    4096 Jun 22 18:02 procdump\r\ndrwxr-xr-x    2 cape cape    4096 Jun 22 18:03 reports\r\ndrwxr-xr-x    2 cape cape    4096 Jun 22 18:02 selfextracted\r\ndrwxr-xr-x    2 cape cape    4096 Jun 22 17:58 shots\r\ndrwxr-xr-x    2 cape cape    4096 Jun 22 17:58 stap\r\ndrwxr-xr-x    2 cape cape    4096 Jun 22 17:58 sysmon\r\ndrwxr-xr-x    2 cape cape    4096 Jun 22 17:58 tlsdump\r\n```\r\n\r\n\r\n`analysis.log` from ID 1579:\r\n```\r\n2022-06-21 20:32:41,424 [root] INFO: Date set to: 20220622T16:35:55, timeout set to: 200\r\n2022-06-21 20:32:41,455 [root] DEBUG: Starting analyzer from: C:\\tmp3xepl8t1\r\n2022-06-21 20:32:41,455 [root] DEBUG: Storing results at: C:\\LxQCbt\r\n2022-06-21 20:32:41,455 [root] DEBUG: Pipe server name: \\\\.\\PIPE\\RdmiWXmt\r\n2022-06-21 20:32:41,455 [root] DEBUG: Python path: C:\\Users\\johnquser\\AppData\\Local\\Programs\\Python\\Python37-32\r\n2022-06-21 20:32:41,455 [root] INFO: Analysis package \"exe\" has been specified\r\n2022-06-21 20:32:41,455 [root] DEBUG: Importing analysis package \"exe\"...\r\n2022-06-21 20:32:41,455 [root] DEBUG: Initializing analysis package \"exe\"...\r\n2022-06-21 20:32:41,455 [root] INFO: Analyzer: Package modules.packages.exe does not specify a DLL option\r\n2022-06-21 20:32:41,455 [root] INFO: Analyzer: Package modules.packages.exe does not specify a DLL_64 option\r\n2022-06-21 20:32:41,455 [root] INFO: Analyzer: Package modules.packages.exe does not specify a loader option\r\n2022-06-21 20:32:41,455 [root] INFO: Analyzer: Package modules.packages.exe does not specify a loader_64 option\r\n2022-06-21 20:32:41,502 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.browser\"...\r\n2022-06-21 20:32:41,502 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.curtain\"...\r\n2022-06-21 20:32:41,502 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.digisig\"...\r\n2022-06-21 20:32:41,518 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.disguise\"...\r\n2022-06-21 20:32:41,533 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.evtx\"...\r\n2022-06-21 20:32:41,533 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.human\"...\r\n2022-06-21 20:32:41,549 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.procmon\"...\r\n2022-06-21 20:32:41,549 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.screenshots\"...\r\n2022-06-21 20:32:41,549 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageChops'\r\n2022-06-21 20:32:41,611 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageGrab'\r\n2022-06-21 20:32:41,611 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageDraw'\r\n2022-06-21 20:32:41,627 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.sysmon\"...\r\n2022-06-21 20:32:41,627 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.tlsdump\"...\r\n2022-06-21 20:32:41,627 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.usage\"...\r\n2022-06-21 20:32:41,627 [root] DEBUG: Initializing auxiliary module \"Screenshots\"...\r\n2022-06-21 20:32:41,627 [root] DEBUG: Started auxiliary module Screenshots\r\n2022-06-21 20:32:41,627 [root] DEBUG: Initializing auxiliary module \"Browser\"...\r\n2022-06-21 20:32:41,627 [root] DEBUG: Started auxiliary module Browser\r\n2022-06-21 20:32:41,627 [root] DEBUG: Initializing auxiliary module \"Curtain\"...\r\n2022-06-21 20:32:41,627 [root] DEBUG: Started auxiliary module Curtain\r\n2022-06-21 20:32:41,627 [root] DEBUG: Initializing auxiliary module \"DigiSig\"...\r\n2022-06-21 20:32:41,627 [modules.auxiliary.digisig] DEBUG: Checking for a digital signature\r\n2022-06-21 20:32:41,940 [modules.auxiliary.digisig] DEBUG: File is not signed\r\n2022-06-21 20:32:41,940 [modules.auxiliary.digisig] INFO: Uploading signature results to aux/DigiSig.json\r\n2022-06-21 20:32:41,955 [root] DEBUG: Started auxiliary module DigiSig\r\n2022-06-21 20:32:41,955 [root] DEBUG: Initializing auxiliary module \"Disguise\"...\r\n2022-06-21 20:32:41,955 [root] WARNING: Cannot execute auxiliary module Disguise: [WinError 5] Access is denied\r\n2022-06-21 20:32:41,955 [root] DEBUG: Initializing auxiliary module \"Evtx\"...\r\n2022-06-21 20:32:41,955 [root] DEBUG: Started auxiliary module Evtx\r\n2022-06-21 20:32:41,955 [root] DEBUG: Initializing auxiliary module \"Human\"...\r\n2022-06-21 20:32:41,955 [root] DEBUG: Started auxiliary module Human\r\n2022-06-21 20:32:41,955 [root] DEBUG: Initializing auxiliary module \"Procmon\"...\r\n2022-06-21 20:32:41,955 [root] DEBUG: Started auxiliary module Procmon\r\n2022-06-21 20:32:41,955 [root] DEBUG: Initializing auxiliary module \"Sysmon\"...\r\n2022-06-21 20:32:41,971 [root] DEBUG: Started auxiliary module Sysmon\r\n2022-06-21 20:32:41,971 [root] DEBUG: Initializing auxiliary module \"TLSDumpMasterSecrets\"...\r\n2022-06-21 20:32:41,971 [modules.auxiliary.tlsdump] INFO: lsass.exe found, pid 708\r\n2022-06-21 20:32:41,971 [lib.api.process] INFO: Monitor config for process 708: C:\\tmp3xepl8t1\\dll\\708.ini\r\n2022-06-21 20:32:41,971 [lib.api.process] INFO: Option 'tlsdump' with value '1' sent to monitor\r\n2022-06-21 20:32:41,971 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmp3xepl8t1\\dll\\hWaoJtsi.dll, loader C:\\tmp3xepl8t1\\bin\\dtoiQANp.exe\r\n2022-06-21 20:32:42,002 [root] DEBUG: Loader: Injecting process 708 with C:\\tmp3xepl8t1\\dll\\hWaoJtsi.dll.\r\n2022-06-21 20:32:42,017 [root] DEBUG: Error 5 (0x5) - InjectDll: Failed to open process: Access is denied.\r\n2022-06-21 20:32:42,017 [root] DEBUG: Successfully injected DLL C:\\tmp3xepl8t1\\dll\\hWaoJtsi.dll.\r\n2022-06-21 20:32:42,017 [root] DEBUG: Started auxiliary module TLSDumpMasterSecrets\r\n2022-06-21 20:32:42,017 [root] DEBUG: Initializing auxiliary module \"Usage\"...\r\n2022-06-21 20:32:42,017 [root] DEBUG: Started auxiliary module Usage\r\n2022-06-21 20:32:42,471 [root] INFO: Restarting WMI Service\r\n2022-06-21 20:32:42,611 [lib.api.process] INFO: Successfully executed process from path \"C:\\Users\\JOHNQU~1\\AppData\\Local\\Temp\\7aeea4fb896bf270a26c.exe\" with arguments \"\" with pid 560\r\n2022-06-21 20:32:42,611 [lib.api.process] INFO: Monitor config for process 560: C:\\tmp3xepl8t1\\dll\\560.ini\r\n2022-06-21 20:32:42,611 [lib.api.process] INFO: 32-bit DLL to inject is C:\\tmp3xepl8t1\\dll\\ObECtICY.dll, loader C:\\tmp3xepl8t1\\bin\\MgRyDWr.exe\r\n2022-06-21 20:32:42,721 [root] DEBUG: Loader: Injecting process 560 (thread 2780) with C:\\tmp3xepl8t1\\dll\\ObECtICY.dll.\r\n2022-06-21 20:32:42,721 [root] DEBUG: InjectDllViaIAT: Executable is .NET, injecting via queued APC.\r\n2022-06-21 20:32:42,721 [root] DEBUG: InjectDllViaQueuedAPC: APC injection queued.\r\n2022-06-21 20:32:42,721 [root] DEBUG: Successfully injected DLL C:\\tmp3xepl8t1\\dll\\ObECtICY.dll.\r\n2022-06-21 20:32:42,721 [lib.api.process] INFO: Injected into suspended 32-bit process with pid 560\r\n2022-06-21 20:32:44,736 [lib.api.process] INFO: Successfully resumed process with pid 560\r\n2022-06-21 20:32:44,768 [root] DEBUG: Python path set to 'C:\\Users\\johnquser\\AppData\\Local\\Programs\\Python\\Python37-32'.\r\n2022-06-21 20:32:44,783 [root] DEBUG: Dropped file limit defaulting to 100.\r\n2022-06-21 20:32:44,783 [root] DEBUG: Initialising Yara...\r\n2022-06-21 20:32:44,783 [root] DEBUG: YaraInit: Compiled 18 rule files\r\n2022-06-21 20:32:44,783 [root] DEBUG: YaraInit: Compiled rules saved to file C:\\tmp3xepl8t1\\data\\yara\\capemon.yac\r\n2022-06-21 20:32:44,783 [root] DEBUG: InternalYaraScan: Scanning 0x77170000, size 0x1a219c\r\n2022-06-21 20:32:44,814 [root] DEBUG: Error 5 (0x5) - AmsiDumper: Is CAPE agent running elevated? Initialisation failed: Access is denied.\r\n2022-06-21 20:32:44,814 [root] DEBUG: Monitor initialised: 32-bit capemon loaded in process 560 at 0x73b00000, thread 2780, image base 0x2d0000, stack from 0xaf5000-0xb00000\r\n2022-06-21 20:32:44,830 [root] DEBUG: Commandline: \"C:\\Users\\JOHNQU~1\\AppData\\Local\\Temp\\7aeea4fb896bf270a26c.exe\"\r\n2022-06-21 20:32:44,861 [root] INFO: Loaded monitor into process with pid 560\r\n2022-06-21 20:32:44,877 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x218 and local view 0x73A70000 to global list.\r\n2022-06-21 20:32:44,877 [root] DEBUG: DLL loaded at 0x73A70000: C:\\Windows\\Microsoft.NET\\Framework\\v4.0.30319\\mscoreei (0x8d000 bytes).\r\n2022-06-21 20:32:44,877 [root] DEBUG: DLL unloaded from 0x75300000.\r\n2022-06-21 20:32:44,908 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x20c and local view 0x04290000 to global list.\r\n2022-06-21 20:32:44,924 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x210 and local view 0x04290000 to global list.\r\n2022-06-21 20:32:44,924 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x74500000 for section view with handle 0x20c.\r\n2022-06-21 20:32:44,939 [root] DEBUG: DLL loaded at 0x74500000: C:\\Windows\\SYSTEM32\\kernel.appcore (0xf000 bytes).\r\n2022-06-21 20:32:44,939 [root] DEBUG: DLL loaded at 0x74750000: C:\\Windows\\SYSTEM32\\VERSION (0x8000 bytes).\r\n2022-06-21 20:32:44,939 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x73280000 for section view with handle 0x210.\r\n2022-06-21 20:32:44,955 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x73260000 for section view with handle 0x210.\r\n2022-06-21 20:32:44,955 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x731B0000 for section view with handle 0x210.\r\n2022-06-21 20:32:44,955 [root] DEBUG: DLL loaded at 0x731B0000: C:\\Windows\\SYSTEM32\\ucrtbase_clr0400 (0xab000 bytes).\r\n2022-06-21 20:32:44,955 [root] DEBUG: DLL loaded at 0x73260000: C:\\Windows\\SYSTEM32\\VCRUNTIME140_CLR0400 (0x14000 bytes).\r\n2022-06-21 20:32:44,970 [root] DEBUG: DLL loaded at 0x73280000: C:\\Windows\\Microsoft.NET\\Framework\\v4.0.30319\\clr (0x7b0000 bytes).\r\n2022-06-21 20:32:44,986 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x238 and local view 0x02AA0000 to global list.\r\n2022-06-21 20:32:44,986 [root] DEBUG: DLL unloaded from 0x76DC0000.\r\n2022-06-21 20:32:44,986 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x23c and local view 0x02B00000 to global list.\r\n2022-06-21 20:32:45,002 [root] INFO: Disabling sleep skipping.\r\n2022-06-21 20:32:45,018 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x2f4 and local view 0x07700000 to global list.\r\n2022-06-21 20:32:45,049 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x300 and local view 0x714B0000 to global list.\r\n2022-06-21 20:32:45,049 [root] DEBUG: DLL loaded at 0x714B0000: C:\\Windows\\assembly\\NativeImages_v4.0.30319_32\\mscorlib\\ab4a1e75420abab6a039215290f36102\\mscorlib.ni (0x140e000 bytes).\r\n2022-06-21 20:32:45,080 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x304 and local view 0x75950000 to global list.\r\n2022-06-21 20:32:45,080 [root] DEBUG: DLL loaded at 0x75950000: C:\\Windows\\System32\\bcryptPrimitives (0x5f000 bytes).\r\n2022-06-21 20:32:45,080 [root] DEBUG: DLL loaded at 0x740E0000: C:\\Windows\\system32\\uxtheme (0x74000 bytes).\r\n2022-06-21 20:32:45,112 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x330 and local view 0x73120000 to global list.\r\n2022-06-21 20:32:45,112 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x334 and local view 0x75F70000 to global list.\r\n2022-06-21 20:32:45,112 [root] DEBUG: DLL loaded at 0x75F70000: C:\\Windows\\System32\\OLEAUT32 (0x96000 bytes).\r\n2022-06-21 20:32:45,112 [root] DEBUG: DLL loaded at 0x73120000: C:\\Windows\\Microsoft.NET\\Framework\\v4.0.30319\\clrjit (0x8a000 bytes).\r\n2022-06-21 20:32:45,143 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x34c and local view 0x05550000 to global list.\r\n2022-06-21 20:32:45,143 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x07A40000 for section view with handle 0x34c.\r\n2022-06-21 20:32:45,158 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x35c and local view 0x07B90000 to global list.\r\n2022-06-21 20:32:45,158 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x08140000 for section view with handle 0x35c.\r\n2022-06-21 20:32:45,205 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x364 and local view 0x70A50000 to global list.\r\n2022-06-21 20:32:45,205 [root] DEBUG: DLL loaded at 0x70A50000: C:\\Windows\\assembly\\NativeImages_v4.0.30319_32\\System\\d1d033a56f52e20e2627fa7f3ce19e76\\System.ni (0xa56000 bytes).\r\n2022-06-21 20:32:45,220 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x370 and local view 0x07AE0000 to global list.\r\n2022-06-21 20:32:45,220 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x07B90000 for section view with handle 0x370.\r\n2022-06-21 20:32:45,236 [root] DEBUG: caller_dispatch: Adding region at 0x04320000 to caller regions list (ntdll::NtAllocateVirtualMemory returns to 0x04324585, thread 2780).\r\n2022-06-21 20:32:45,236 [root] DEBUG: YaraScan: Scanning 0x04320000, size 0x45b4\r\n2022-06-21 20:32:45,252 [root] DEBUG: DumpPEsInRange: Scanning range 0x04320000 - 0x043245B4.\r\n2022-06-21 20:32:45,252 [root] DEBUG: ScanForDisguisedPE: No PE image located in range 0x04320000-0x043245B4.\r\n2022-06-21 20:32:45,252 [lib.common.results] INFO: File C:\\LxQCbt\\CAPE\\560_55674364512822362022 size is 17844, Max size: 100000000\r\n2022-06-21 20:32:45,268 [root] DEBUG: DumpMemory: Payload successfully created: C:\\LxQCbt\\CAPE\\560_55674364512822362022 (size 17844 bytes)\r\n2022-06-21 20:32:45,268 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x04320000, size 20480 bytes.\r\n2022-06-21 20:32:45,330 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x380 and local view 0x70230000 to global list.\r\n2022-06-21 20:32:45,330 [root] DEBUG: DLL loaded at 0x70230000: C:\\Windows\\assembly\\NativeImages_v4.0.30319_32\\System.Core\\ccb40c676c65ed6dd7dd2613ba67ddaf\\System.Core.ni (0x818000 bytes).\r\n2022-06-21 20:32:45,330 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x37c and local view 0x73010000 to global list.\r\n2022-06-21 20:32:45,346 [root] DEBUG: DLL loaded at 0x73010000: C:\\Windows\\assembly\\NativeImages_v4.0.30319_32\\System.Configuration\\9a2b3d9120e23a4c3b809cc6df769b5e\\System.Configuration.ni (0x106000 bytes).\r\n2022-06-21 20:32:45,377 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x374 and local view 0x6FAB0000 to global list.\r\n2022-06-21 20:32:45,377 [root] DEBUG: DLL loaded at 0x6FAB0000: C:\\Windows\\assembly\\NativeImages_v4.0.30319_32\\System.Xml\\09196a3aae31c0ae9a2bf4d115f1a0f1\\System.Xml.ni (0x774000 bytes).\r\n2022-06-21 20:32:45,393 [root] DEBUG: DLL loaded at 0x759B0000: C:\\Windows\\System32\\shell32 (0x5b3000 bytes).\r\n2022-06-21 20:32:45,408 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x38c and local view 0x74A10000 to global list.\r\n2022-06-21 20:32:45,408 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x749E0000 for section view with handle 0x38c.\r\n2022-06-21 20:32:45,408 [root] DEBUG: DLL loaded at 0x749E0000: C:\\Windows\\SYSTEM32\\Wldp (0x24000 bytes).\r\n2022-06-21 20:32:45,424 [root] DEBUG: DLL loaded at 0x74A10000: C:\\Windows\\SYSTEM32\\windows.storage (0x609000 bytes).\r\n2022-06-21 20:32:45,424 [root] DEBUG: DLL loaded at 0x761F0000: C:\\Windows\\System32\\SHCORE (0x87000 bytes).\r\n2022-06-21 20:32:45,439 [root] DEBUG: DLL loaded at 0x746E0000: C:\\Windows\\SYSTEM32\\profapi (0x18000 bytes).\r\n2022-06-21 20:32:45,439 [root] DEBUG: caller_dispatch: Adding region at 0x02B20000 to caller regions list (ntdll::NtAllocateVirtualMemory returns to 0x02B2D516, thread 2780).\r\n2022-06-21 20:32:45,439 [root] DEBUG: YaraScan: Scanning 0x02B20000, size 0x18f\r\n2022-06-21 20:32:45,455 [root] DEBUG: DumpPEsInRange: Scanning range 0x02B20000 - 0x02B2018F.\r\n2022-06-21 20:32:45,455 [root] DEBUG: ScanForDisguisedPE: Size too small.\r\n2022-06-21 20:32:45,455 [lib.common.results] INFO: File C:\\LxQCbt\\CAPE\\560_122795404512822362022 size is 399, Max size: 100000000\r\n2022-06-21 20:32:45,471 [root] DEBUG: DumpMemory: Payload successfully created: C:\\LxQCbt\\CAPE\\560_122795404512822362022 (size 399 bytes)\r\n2022-06-21 20:32:45,471 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x02B20000, size 4096 bytes.\r\n2022-06-21 20:32:45,486 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x3e4 and local view 0x74580000 to global list.\r\n2022-06-21 20:32:45,486 [root] DEBUG: DLL loaded at 0x74580000: C:\\Windows\\SYSTEM32\\CRYPTSP (0x13000 bytes).\r\n2022-06-21 20:32:45,502 [root] DEBUG: DLL loaded at 0x73A30000: C:\\Windows\\system32\\rsaenh (0x2f000 bytes).\r\n2022-06-21 20:32:45,533 [root] DEBUG: DLL loaded at 0x76580000: C:\\Windows\\System32\\psapi (0x6000 bytes).\r\n2022-06-21 20:32:45,533 [root] DEBUG: api-rate-cap: NtReadVirtualMemory hook disabled due to rate.\r\n2022-06-21 20:32:45,564 [root] DEBUG: DLL loaded at 0x72FE0000: C:\\Windows\\SYSTEM32\\rasman (0x2b000 bytes).\r\n2022-06-21 20:32:45,564 [root] DEBUG: DLL loaded at 0x6F9D0000: C:\\Windows\\SYSTEM32\\rasapi32 (0xda000 bytes).\r\n2022-06-21 20:32:45,564 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x414 and local view 0x72FC0000 to global list.\r\n2022-06-21 20:32:45,580 [root] DEBUG: DLL loaded at 0x72FC0000: C:\\Windows\\SYSTEM32\\rtutils (0x11000 bytes).\r\n2022-06-21 20:32:45,596 [root] DEBUG: DLL loaded at 0x742E0000: C:\\Windows\\system32\\mswsock (0x52000 bytes).\r\n2022-06-21 20:32:45,611 [root] DEBUG: DLL unloaded from 0x72FE0000.\r\n2022-06-21 20:32:45,627 [root] DEBUG: DLL loaded at 0x6F900000: C:\\Windows\\SYSTEM32\\winhttp (0xca000 bytes).\r\n2022-06-21 20:32:45,627 [root] DEBUG: DLL loaded at 0x72FA0000: C:\\Windows\\system32\\OnDemandConnRouteHelper (0x12000 bytes).\r\n2022-06-21 20:32:45,642 [root] DEBUG: DLL unloaded from 0x72FA0000.\r\n2022-06-21 20:32:45,642 [root] DEBUG: DLL loaded at 0x6F8C0000: C:\\Windows\\SYSTEM32\\IPHLPAPI (0x32000 bytes).\r\n2022-06-21 20:32:45,658 [root] DEBUG: DLL loaded at 0x76D70000: C:\\Windows\\System32\\NSI (0x7000 bytes).\r\n2022-06-21 20:32:45,658 [root] DEBUG: DLL loaded at 0x72FA0000: C:\\Windows\\SYSTEM32\\dhcpcsvc6 (0x14000 bytes).\r\n2022-06-21 20:32:45,674 [root] DEBUG: DLL loaded at 0x6F8A0000: C:\\Windows\\SYSTEM32\\dhcpcsvc (0x16000 bytes).\r\n2022-06-21 20:32:45,690 [root] DEBUG: DLL unloaded from 0x75300000.\r\n2022-06-21 20:32:45,690 [root] DEBUG: DLL unloaded from 0x6F900000.\r\n2022-06-21 20:32:45,690 [root] DEBUG: api-rate-cap: memcpy hook disabled due to rate.\r\n2022-06-21 20:32:45,705 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x524 and local view 0x055E0000 to global list.\r\n2022-06-21 20:32:45,705 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x07B70000 for section view with handle 0x524.\r\n2022-06-21 20:32:45,705 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x055E0000 for section view with handle 0x524.\r\n2022-06-21 20:32:45,720 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x07B70000 for section view with handle 0x524.\r\n2022-06-21 20:32:45,720 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x534 and local view 0x055E0000 to global list.\r\n2022-06-21 20:32:45,736 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x52c and local view 0x080B0000 to global list.\r\n2022-06-21 20:32:45,736 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x544 and local view 0x6F800000 to global list.\r\n2022-06-21 20:32:45,736 [root] DEBUG: DLL loaded at 0x6F800000: C:\\Windows\\SYSTEM32\\DNSAPI (0x92000 bytes).\r\n2022-06-21 20:32:45,767 [root] DEBUG: api-rate-cap: NtQueryValueKey hook disabled due to rate.\r\n2022-06-21 20:32:45,767 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x560 and local view 0x73A60000 to global list.\r\n2022-06-21 20:32:45,783 [root] DEBUG: DLL loaded at 0x73A60000: C:\\Windows\\SYSTEM32\\WINNSI (0x8000 bytes).\r\n2022-06-21 20:32:45,799 [root] DEBUG: DLL loaded at 0x72F90000: C:\\Windows\\System32\\rasadhlp (0x8000 bytes).\r\n2022-06-21 20:32:46,189 [root] DEBUG: DLL loaded at 0x6F7A0000: C:\\Windows\\System32\\fwpuclnt (0x58000 bytes).\r\n2022-06-21 20:32:46,205 [root] DEBUG: DLL loaded at 0x6F790000: C:\\Windows\\SYSTEM32\\secur32 (0xa000 bytes).\r\n2022-06-21 20:32:46,221 [root] DEBUG: DLL loaded at 0x6F710000: C:\\Windows\\System32\\schannel (0x78000 bytes).\r\n2022-06-21 20:32:47,658 [root] DEBUG: DLL loaded at 0x6F6F0000: C:\\Windows\\SYSTEM32\\mskeyprotect (0x11000 bytes).\r\n2022-06-21 20:32:47,674 [root] DEBUG: DLL loaded at 0x6F6C0000: C:\\Windows\\SYSTEM32\\NTASN1 (0x28000 bytes).\r\n2022-06-21 20:32:47,674 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x614 and local view 0x6F690000 to global list.\r\n2022-06-21 20:32:47,690 [root] DEBUG: DLL loaded at 0x6F690000: C:\\Windows\\SYSTEM32\\ncrypt (0x21000 bytes).\r\n2022-06-21 20:32:47,690 [root] DEBUG: DLL loaded at 0x6F670000: C:\\Windows\\system32\\ncryptsslp (0x1f000 bytes).\r\n2022-06-21 20:32:47,705 [root] DEBUG: DLL loaded at 0x6F660000: C:\\Windows\\SYSTEM32\\MSASN1 (0xe000 bytes).\r\n2022-06-21 20:32:47,767 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x6f0 and local view 0x6F640000 to global list.\r\n2022-06-21 20:32:47,783 [root] DEBUG: DLL loaded at 0x6F640000: C:\\Windows\\SYSTEM32\\gpapi (0x1e000 bytes).\r\n2022-06-21 20:32:47,799 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x7ec and local view 0x055E0000 to global list.\r\n2022-06-21 20:32:47,830 [root] DEBUG: DLL loaded at 0x6F610000: C:\\Windows\\SYSTEM32\\cryptnet (0x26000 bytes).\r\n2022-06-21 20:32:47,877 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x824 and local view 0x089F0000 to global list.\r\n2022-06-21 20:33:57,549 [root] DEBUG: api-rate-cap: GetSystemTimeAsFileTime hook disabled due to rate.\r\n2022-06-21 20:34:07,549 [root] DEBUG: api-rate-cap: NtDelayExecution hook disabled due to rate.\r\n2022-06-21 20:34:48,439 [root] DEBUG: DLL unloaded from 0x76DC0000.\r\n2022-06-21 20:36:05,471 [root] INFO: Analysis timeout hit, terminating analysis\r\n2022-06-21 20:36:05,471 [lib.api.process] INFO: Terminate event set for process 560\r\n2022-06-21 20:36:05,471 [root] DEBUG: Terminate Event: Attempting to dump process 560\r\n2022-06-21 20:36:05,471 [root] DEBUG: DoProcessDump: Dumping Imagebase at 0x002D0000.\r\n2022-06-21 20:36:05,471 [root] DEBUG: LooksLikeSectionBoundary: Exception occured reading around suspected boundary at 0x002D2000\r\n2022-06-21 20:36:05,471 [root] DEBUG: DumpImageInCurrentProcess: Attempting to dump virtual PE image.\r\n2022-06-21 20:36:05,486 [root] DEBUG: DumpProcess: Instantiating PeParser with address: 0x002D0000.\r\n2022-06-21 20:36:05,502 [root] DEBUG: DumpProcess: Module entry point VA is 0x000B93CE.\r\n2022-06-21 20:36:05,518 [lib.common.results] INFO: File C:\\LxQCbt\\CAPE\\560_20582536322362022 size is 758784, Max size: 100000000\r\n2022-06-21 20:36:05,533 [root] DEBUG: DumpProcess: Module image dump success - dump size 0xb9400.\r\n2022-06-21 20:36:05,533 [lib.api.process] INFO: Termination confirmed for process 560\r\n2022-06-21 20:36:05,533 [root] INFO: Terminate event set for process 560\r\n2022-06-21 20:36:05,533 [root] DEBUG: Terminate Event: CAPE shutdown complete for process 560\r\n2022-06-21 20:36:05,533 [root] INFO: Created shutdown mutex\r\n2022-06-21 20:36:06,549 [root] INFO: Shutting down package\r\n2022-06-21 20:36:06,549 [root] INFO: Stopping auxiliary modules\r\n2022-06-21 20:36:06,689 [lib.common.results] WARNING: File C:\\LxQCbt\\bin\\procmon.xml doesn't exist anymore\r\n2022-06-21 20:36:06,689 [root] INFO: Finishing auxiliary modules\r\n2022-06-21 20:36:06,689 [root] INFO: Shutting down pipe server and dumping dropped files\r\n2022-06-21 20:36:06,689 [root] WARNING: Folder at path \"C:\\LxQCbt\\debugger\" does not exist, skipping\r\n2022-06-21 20:36:06,689 [root] WARNING: Folder at path \"C:\\LxQCbt\\tlsdump\" does not exist, skipping\r\n2022-06-21 20:36:06,705 [root] INFO: Analysis completed\r\n```\nComment: hey, i need processing log, analysis log is only for what happens inside of the vm, processing, is outside\nComment: log/process.log\nComment: My apologies. I failed to look into `log/process.log` to troubleshoot myself.\r\n\r\nI see this error:\r\n```\r\n2022-06-22 18:03:00,969 [root] ERROR: Memory dump not found: to run volatility you have to enable memory_dump\r\n2022-06-22 18:03:10,342 [root] ERROR: Unable to delete memory dump file at path \"/mnt/tmpfs/1579.dmp.zip\"\r\n```\r\nWhen watching the process, I see `1579.dmp` being created and then `1579.dmp.strings` but I do not see where it's been zipping the dumps.\r\n\r\n\r\n`cuckoo.conf`\r\n```\r\nmemory_dump = on\r\n...\r\n[tmpfs]\r\n# only if you using volatility to speedup IO\r\n# mkdir -p /mnt/tmpfs\r\n# mount -t tmpfs -o size=50g ramfs /mnt/tmpfs\r\n# chown cape:cape /mnt/tmpfs\r\n#\r\n# vim /etc/fstab\r\n# tmpfs       /mnt/tmpfs tmpfs   nodev,nosuid,noexec,nodiratime,size=50g   0 0\r\n#\r\n# Add crontab with\r\n# @reboot chown cape:cape /mnt/tmpfs -R\r\nenabled = on\r\npath = /mnt/tmpfs/\r\n# in mb\r\nfreespace = 2000\r\n\r\n```\r\n\r\n`reporting.conf`\r\n```\r\n[tmpfsclean]\r\nenabled = yes\r\nkey = tr_extractor\r\n```\nComment: about zip, it can be false flag. due that there was missed check if file exist, it just was trying to remove it anyway. so just pushed check if file exist before try to remove to avoid this. why it not move strings idk, code looks correct, add some debugging lines to that module and reprocess to see whats going on\nComment: Pulled the updates and it's now working............\nComment: Cool closing\n\nEl jue., 23 jun. 2022 19:51, Scrub Lullz ***@***.***>\nescribi\u00f3:\n\n> Pulled the updates and it's now working............\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/953#issuecomment-1164702427>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH353YSFMWCGQA5B5TK3VQSPYTANCNFSM5ZRFSZLA>\n> .\n> You are receiving this because you commented.Message ID:\n> ***@***.***>\n>\n\nComment: Sorry to chime in on a closed issue..  I am experiencing the same issue as scrublullz reported a few years ago.  I figure since I just installed CAPE a few weeks ago, that I have the updated version that would include whatever fixed this issue back in 2022? If someone can tell me how I may be able to debug this, I'd appreciate it.\n\n```\n$ ls -al /mnt/tmpfs\n\ntotal 58444\ndrwxrwxrwt 2 cape cape      140 Apr 23 22:46 .\ndrwxr-xr-x 3 root root     4096 Mar 13 14:04 ..\n-rw-r--r-- 1 cape cape  7965926 Apr 23 16:54 10.dmp.strings\n-rw-r--r-- 1 cape cape  8612340 Apr 23 18:02 12.dmp.strings\n-rw-r--r-- 1 cape cape 14171685 Apr 23 19:37 13.dmp.strings\n-rw-r--r-- 1 cape cape 14567193 Apr 23 21:19 14.dmp.strings\n-rw-r--r-- 1 cape cape 14517966 Apr 23 22:46 15.dmp.strings\n\n```\n\n```\nProcess.log:\n\n2025-04-23 16:43:51,230 [root] INFO: Processing analysis data for Task #10\n2025-04-23 16:55:14,478 [Task 10] [modules.reporting.report_doc] ERROR: Deleting Volatility results\n2025-04-23 16:55:17,993 [root] INFO: Reports generation completed for Task #10\n2025-04-23 17:20:55,481 [root] INFO: Processing analysis data for Task #11\n2025-04-23 17:35:55,643 [root] ERROR: [11] Processing timeout: ('Task timeout', 900). Function: 900\n2025-04-23 17:51:43,929 [root] INFO: Processing analysis data for Task #12\n2025-04-23 18:02:59,788 [Task 12] [modules.reporting.report_doc] ERROR: Deleting Volatility results\n2025-04-23 18:03:03,137 [root] INFO: Reports generation completed for Task #12\n2025-04-23 19:27:35,402 [root] INFO: Processing analysis data for Task #13\n2025-04-23 19:38:30,015 [Task 13] [modules.reporting.report_doc] ERROR: Deleting Volatility results\n2025-04-23 19:38:33,347 [root] INFO: Reports generation completed for Task #13\n2025-04-23 21:08:32,238 [root] INFO: Processing analysis data for Task #14\n2025-04-23 21:20:17,750 [Task 14] [modules.reporting.report_doc] ERROR: Deleting Volatility results\n2025-04-23 21:20:21,909 [root] INFO: Reports generation completed for Task #14\n2025-04-23 22:35:47,418 [root] INFO: Processing analysis data for Task #15\n2025-04-23 22:48:30,480 [Task 15] [modules.reporting.report_doc] ERROR: Deleting Volatility results\n2025-04-23 22:48:35,599 [root] INFO: Reports generation completed for Task #15\n````\n\n```From reporting.conf:\n[tmpfsclean]\nenabled = yes\nkey = tr_extractor\n````\nI'm not sure Volatility is even working. Is there some reporting that is displayed in the browser report after the task is finished?\n\nThanks for all the help and support on this project.  I am extremely grateful. \n\nComment: thats fine to post to closed issues.\nIts long time since i don't use volatility as CAPE itself give me what i need. there is an issue with volatility for sure that returns some data that breaks mongodb.\n\nback to your issue. i just checked it. it wasnt cleaning the strings file, fixed that, update with `git pull` and restart `sudo systemctl restart cape-processor`\nComment: @doomedraven , thank you very much for the quick response.  I pulled the latest and it is working now! Thanks for the help! ",
+  "Title: helper script for installing libvirt-python via poetry run\nBody: So `poetry run` can't take complex commands, but it can take a path to a helper script that will install the required libvirt-python depend. :)\nComment: Based off of `https://github.com/kevoreilly/CAPEv2/discussions/949` with the libvirt-python version chosen the same as `https://github.com/doomedraven/Tools/blob/master/Virtualization/kvm-qemu.sh`.\nComment: thank you for this, today too much load to handle everything and my brain is off\nComment: > thank you for this, today too much load to handle everything and my brain is off\r\n\r\nNull sheen! Happy to help and I wish you the best with that, dude. :)",
+  "Title: Temporary fix for monitor not uploading behaviour logs\nBody: I'm not sure why this is happening, but if we don't start every auxiliary module then the CAPE monitor does not upload behaviour logs to the resultserver. This is a temporary fix until someone is able to find out why \ud83e\udd2f \r\n\r\nPossibly related to the `AUX_ENABLED` variable?\nComment: Could be, im not sure neither, my brain is off today already",
+  "Title: Bump numpy from 1.19.1 to 1.22.0\nBody: Bumps [numpy](https://github.com/numpy/numpy) from 1.19.1 to 1.22.0.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a href=\"https://github.com/numpy/numpy/releases\">numpy's releases</a>.</em></p>\n<blockquote>\n<h2>v1.22.0</h2>\n<h1>NumPy 1.22.0 Release Notes</h1>\n<p>NumPy 1.22.0 is a big release featuring the work of 153 contributors\nspread over 609 pull requests. There have been many improvements,\nhighlights are:</p>\n<ul>\n<li>Annotations of the main namespace are essentially complete. Upstream\nis a moving target, so there will likely be further improvements,\nbut the major work is done. This is probably the most user visible\nenhancement in this release.</li>\n<li>A preliminary version of the proposed Array-API is provided. This is\na step in creating a standard collection of functions that can be\nused across application such as CuPy and JAX.</li>\n<li>NumPy now has a DLPack backend. DLPack provides a common interchange\nformat for array (tensor) data.</li>\n<li>New methods for <code>quantile</code>, <code>percentile</code>, and related functions. The\nnew methods provide a complete set of the methods commonly found in\nthe literature.</li>\n<li>A new configurable allocator for use by downstream projects.</li>\n</ul>\n<p>These are in addition to the ongoing work to provide SIMD support for\ncommonly used functions, improvements to F2PY, and better documentation.</p>\n<p>The Python versions supported in this release are 3.8-3.10, Python 3.7\nhas been dropped. Note that 32 bit wheels are only provided for Python\n3.8 and 3.9 on Windows, all other wheels are 64 bits on account of\nUbuntu, Fedora, and other Linux distributions dropping 32 bit support.\nAll 64 bit wheels are also linked with 64 bit integer OpenBLAS, which should fix\nthe occasional problems encountered by folks using truly huge arrays.</p>\n<h2>Expired deprecations</h2>\n<h3>Deprecated numeric style dtype strings have been removed</h3>\n<p>Using the strings <code>&quot;Bytes0&quot;</code>, <code>&quot;Datetime64&quot;</code>, <code>&quot;Str0&quot;</code>, <code>&quot;Uint32&quot;</code>,\nand <code>&quot;Uint64&quot;</code> as a dtype will now raise a <code>TypeError</code>.</p>\n<p>(<a href=\"https://github-redirect.dependabot.com/numpy/numpy/pull/19539\">gh-19539</a>)</p>\n<h3>Expired deprecations for <code>loads</code>, <code>ndfromtxt</code>, and <code>mafromtxt</code> in npyio</h3>\n<p><code>numpy.loads</code> was deprecated in v1.15, with the recommendation that\nusers use <code>pickle.loads</code> instead. <code>ndfromtxt</code> and <code>mafromtxt</code> were both\ndeprecated in v1.17 - users should use <code>numpy.genfromtxt</code> instead with\nthe appropriate value for the <code>usemask</code> parameter.</p>\n<p>(<a href=\"https://github-redirect.dependabot.com/numpy/numpy/pull/19615\">gh-19615</a>)</p>\n<!-- raw HTML omitted -->\n</blockquote>\n<p>... (truncated)</p>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/numpy/numpy/commit/4adc87dff15a247e417d50f10cc4def8e1c17a03\"><code>4adc87d</code></a> Merge pull request <a href=\"https://github-redirect.dependabot.com/numpy/numpy/issues/20685\">#20685</a> from charris/prepare-for-1.22.0-release</li>\n<li><a href=\"https://github.com/numpy/numpy/commit/fd66547557f57c430d41be2fc0764f74a62e8ccf\"><code>fd66547</code></a> REL: Prepare for the NumPy 1.22.0 release.</li>\n<li><a href=\"https://github.com/numpy/numpy/commit/125304b035effcd82e366e601b102e7347eaa9ba\"><code>125304b</code></a> wip</li>\n<li><a href=\"https://github.com/numpy/numpy/commit/c283859128b1a4b57014581570a23ed7950a24ea\"><code>c283859</code></a> Merge pull request <a href=\"https://github-redirect.dependabot.com/numpy/numpy/issues/20682\">#20682</a> from charris/backport-20416</li>\n<li><a href=\"https://github.com/numpy/numpy/commit/5399c03d4a069fe81a1616be0184c9749d7271ee\"><code>5399c03</code></a> Merge pull request <a href=\"https://github-redirect.dependabot.com/numpy/numpy/issues/20681\">#20681</a> from charris/backport-20954</li>\n<li><a href=\"https://github.com/numpy/numpy/commit/f9c45f8ebf31340b1a5a0371bfca25afcfc4794e\"><code>f9c45f8</code></a> Merge pull request <a href=\"https://github-redirect.dependabot.com/numpy/numpy/issues/20680\">#20680</a> from charris/backport-20663</li>\n<li><a href=\"https://github.com/numpy/numpy/commit/794b36f7e1bf2a8c42774ab0db86a74bd32f674b\"><code>794b36f</code></a> Update armccompiler.py</li>\n<li><a href=\"https://github.com/numpy/numpy/commit/d93b14e3d7abaa1d837825e51671f817788e120f\"><code>d93b14e</code></a> Update test_public_api.py</li>\n<li><a href=\"https://github.com/numpy/numpy/commit/7662c0789cc6a70d5ad4d950ee2e95f3afef7df6\"><code>7662c07</code></a> Update <strong>init</strong>.py</li>\n<li><a href=\"https://github.com/numpy/numpy/commit/311ab52488a7d096ac3bc4c2de0fdae17ecd13ef\"><code>311ab52</code></a> Update armccompiler.py</li>\n<li>Additional commits viewable in <a href=\"https://github.com/numpy/numpy/compare/v1.19.1...v1.22.0\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=numpy&package-manager=pip&previous-version=1.19.1&new-version=1.22.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language\n- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language\n- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language\n- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language\n\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>\nComment: Looks like numpy is up-to-date now, so this is no longer needed.",
+  "Title: exe package fails for some items\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account acctivation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I did read the README!\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nDoes not fail to run some executable files.\r\n\r\n# Current Behavior\r\n\r\nSome executables will do nothing, just fail to run.\r\n\r\n# Failure Information (for bugs)\r\n\r\nSetupRST.exe from Intel below is a example of this. Ended up ran in our env and came to our attention that it won't run at all. Expected behaviour for this one in question is it runs and then throws a error window about not being the HW being unsupported.\r\n\r\nhttps://www.intel.com/content/www/us/en/download/15667/intel-rapid-storage-technology-intel-rst-user-interface-and-driver.html\r\n\r\n## Steps to Reproduce\r\n\r\n\r\n\r\n1. Grab SetupRST.exe from https://www.intel.com/content/www/us/en/download/15667/intel-rapid-storage-technology-intel-rst-user-interface-and-driver.html\r\n2. Run it, with the package either set to auto or exe(which will be choosen automatically).\r\n3. Wait for it to complete.\r\n4. Check the logs.\r\n\r\n\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | 9884daec105144fa02eb736d8385f6450e36a686\r\n| OS version       | Ubuntu 20.04\r\n| Guest OS | Win10\r\n\r\n## Failure Logs\r\n\r\n```\r\n2022-06-16 00:57:23,456 [root] INFO: Date set to: 20220621T18:03:10, timeout set to: 200\r\n2022-06-16 00:57:23,471 [root] DEBUG: Starting analyzer from: C:\\tmpfyh9ql4u\r\n2022-06-16 00:57:23,471 [root] DEBUG: Storing results at: C:\\NzkDuv\r\n2022-06-16 00:57:23,471 [root] DEBUG: Pipe server name: \\\\.\\PIPE\\wPGToh\r\n2022-06-16 00:57:23,471 [root] DEBUG: Python path: C:\\Program Files (x86)\\Python310-32\r\n2022-06-16 00:57:23,471 [root] INFO: Analysis package \"exe\" has been specified\r\n2022-06-16 00:57:23,471 [root] DEBUG: Importing analysis package \"exe\"...\r\n2022-06-16 00:57:23,471 [root] DEBUG: Initializing analysis package \"exe\"...\r\n2022-06-16 00:57:23,471 [root] INFO: Analyzer: Package modules.packages.exe does not specify a DLL option\r\n2022-06-16 00:57:23,471 [root] INFO: Analyzer: Package modules.packages.exe does not specify a DLL_64 option\r\n2022-06-16 00:57:23,471 [root] INFO: Analyzer: Package modules.packages.exe does not specify a loader option\r\n2022-06-16 00:57:23,471 [root] INFO: Analyzer: Package modules.packages.exe does not specify a loader_64 option\r\n2022-06-16 00:57:23,503 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.browser\"...\r\n2022-06-16 00:57:23,503 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.curtain\"...\r\n2022-06-16 00:57:23,503 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.digisig\"...\r\n2022-06-16 00:57:23,518 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.disguise\"...\r\n2022-06-16 00:57:23,534 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.evtx\"...\r\n2022-06-16 00:57:23,534 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.human\"...\r\n2022-06-16 00:57:23,549 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.procmon\"...\r\n2022-06-16 00:57:23,549 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.screenshots\"...\r\n2022-06-16 00:57:23,549 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageChops'\r\n2022-06-16 00:57:23,596 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageGrab'\r\n2022-06-16 00:57:23,612 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageDraw'\r\n2022-06-16 00:57:23,628 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.sysmon\"...\r\n2022-06-16 00:57:23,628 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.tlsdump\"...\r\n2022-06-16 00:57:23,643 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.usage\"...\r\n2022-06-16 00:57:23,643 [root] DEBUG: Initializing auxiliary module \"Browser\"...\r\n2022-06-16 00:57:23,643 [root] DEBUG: Started auxiliary module Browser\r\n2022-06-16 00:57:23,643 [root] DEBUG: Initializing auxiliary module \"Curtain\"...\r\n2022-06-16 00:57:23,643 [root] DEBUG: Started auxiliary module Curtain\r\n2022-06-16 00:57:23,643 [root] DEBUG: Initializing auxiliary module \"DigiSig\"...\r\n2022-06-16 00:57:23,643 [modules.auxiliary.digisig] DEBUG: Checking for a digital signature\r\n2022-06-16 00:57:24,378 [modules.auxiliary.digisig] DEBUG: File has an invalid signature\r\n2022-06-16 00:57:24,378 [modules.auxiliary.digisig] INFO: Uploading signature results to aux/DigiSig.json\r\n2022-06-16 00:57:24,393 [root] DEBUG: Started auxiliary module DigiSig\r\n2022-06-16 00:57:24,393 [root] DEBUG: Initializing auxiliary module \"Disguise\"...\r\n2022-06-16 00:57:24,393 [root] WARNING: Cannot execute auxiliary module Disguise: [WinError 5] Access is denied\r\n2022-06-16 00:57:24,393 [root] DEBUG: Initializing auxiliary module \"Evtx\"...\r\n2022-06-16 00:57:24,393 [root] DEBUG: Started auxiliary module Evtx\r\n2022-06-16 00:57:24,393 [root] DEBUG: Initializing auxiliary module \"Human\"...\r\n2022-06-16 00:57:24,393 [root] DEBUG: Started auxiliary module Human\r\n2022-06-16 00:57:24,393 [root] DEBUG: Initializing auxiliary module \"Procmon\"...\r\n2022-06-16 00:57:24,393 [root] DEBUG: Started auxiliary module Procmon\r\n2022-06-16 00:57:24,393 [root] DEBUG: Initializing auxiliary module \"Screenshots\"...\r\n2022-06-16 00:57:24,393 [root] DEBUG: Started auxiliary module Screenshots\r\n2022-06-16 00:57:24,393 [root] DEBUG: Initializing auxiliary module \"Sysmon\"...\r\n2022-06-16 00:57:24,393 [root] DEBUG: Started auxiliary module Sysmon\r\n2022-06-16 00:57:24,393 [root] DEBUG: Initializing auxiliary module \"TLSDumpMasterSecrets\"...\r\n2022-06-16 00:57:24,409 [modules.auxiliary.tlsdump] INFO: lsass.exe found, pid 608\r\n2022-06-16 00:57:24,409 [lib.api.process] INFO: Monitor config for process 608: C:\\tmpfyh9ql4u\\dll\\608.ini\r\n2022-06-16 00:57:27,659 [lib.api.process] INFO: Option 'tlsdump' with value '1' sent to monitor\r\n2022-06-16 00:57:27,659 [lib.api.process] INFO: 32-bit DLL to inject is C:\\tmpfyh9ql4u\\dll\\SCBDPe.dll, loader C:\\tmpfyh9ql4u\\bin\\XTrvnyx.exe\r\n2022-06-16 00:57:27,690 [root] DEBUG: Loader: Injecting process 608 with C:\\tmpfyh9ql4u\\dll\\SCBDPe.dll.\r\n2022-06-16 00:57:27,690 [root] DEBUG: Error 5 (0x5) - InjectDll: Failed to open process: Access is denied.\r\n2022-06-16 00:57:27,706 [root] DEBUG: Successfully injected DLL C:\\tmpfyh9ql4u\\dll\\SCBDPe.dll.\r\n2022-06-16 00:57:27,706 [root] DEBUG: Started auxiliary module TLSDumpMasterSecrets\r\n2022-06-16 00:57:27,706 [root] DEBUG: Initializing auxiliary module \"Usage\"...\r\n2022-06-16 00:57:27,706 [root] DEBUG: Started auxiliary module Usage\r\n2022-06-16 00:57:28,284 [root] INFO: Restarting WMI Service\r\n2022-06-16 00:57:29,143 [lib.api.process] ERROR: Failed to execute process from path \"C:\\Users\\Fifi\\AppData\\Local\\Temp\\SetupRST.exe\" with arguments \"None\" (Error: 740)\r\n2022-06-16 00:57:29,143 [root] INFO: You probably submitted the job with wrong package\r\nTraceback (most recent call last):\r\n  File \"C:\\tmpfyh9ql4u\\analyzer.py\", line 510, in run\r\n    pids = self.package.start(self.target)\r\n  File \"C:\\tmpfyh9ql4u\\modules\\packages\\exe.py\", line 37, in start\r\n    return self.execute(path, args, path)\r\n  File \"C:\\tmpfyh9ql4u\\lib\\common\\abstracts.py\", line 119, in execute\r\n    raise CuckooPackageError(\"Unable to execute the initial process, analysis aborted\")\r\nlib.common.exceptions.CuckooPackageError: Unable to execute the initial process, analysis aborted\r\n\r\nThe above exception was the direct cause of the following exception:\r\n\r\nTraceback (most recent call last):\r\n  File \"C:\\tmpfyh9ql4u\\analyzer.py\", line 1378, in <module>\r\n    success = analyzer.run()\r\n  File \"C:\\tmpfyh9ql4u\\analyzer.py\", line 514, in run\r\n    raise CuckooError(f'The package \"{package_name}\" start function raised an error: {e}') from e\r\nlib.common.exceptions.CuckooError: The package \"modules.packages.exe\" start function raised an error: Unable to execute the initial process, analysis aborted\r\n2022-06-16 00:57:29,159 [root] WARNING: Folder at path \"C:\\NzkDuv\\debugger\" does not exist, skipping\r\n2022-06-16 00:57:29,159 [root] WARNING: Folder at path \"C:\\NzkDuv\\tlsdump\" does not exist, skipping\r\n2022-06-16 00:57:29,159 [root] INFO: Analysis completed\r\n```\r\n\nComment: Derp. Just realized I had not updated and am 25 days out of date for the core stuff before submitting this. Let me update and try again.\nComment: hello does it works after update?\nComment: > hello does it works after update?\r\n\r\nHey, been busy since I've submitted this. I'll be able to tell you in a few hours hopefully. :) Sorry about that.\nComment: > hello does it works after update?\r\n\r\nSo apparently post update it is completely broken. Everything is complaining about peotry not being able to find various modules.\r\n\r\n```\r\nkitsune@nagi:/opt/CAPEv2/web$ sudo -u cape /usr/bin/python3 -m poetry run python manage.py runserver 0.0.0.0:8000\r\nTraceback (most recent call last):\r\n  File \"manage.py\", line 12, in <module>\r\n    from django.core.management import execute_from_command_line\r\nModuleNotFoundError: No module named 'django'\r\nkitsune@nagi:/opt/CAPEv2$ sudo pip3 install django\r\nRequirement already satisfied: django in /usr/local/lib/python3.8/dist-packages (4.0.4)\r\nRequirement already satisfied: asgiref<4,>=3.4.1 in /usr/local/lib/python3.8/dist-packages (from django) (3.5.0)\r\nRequirement already satisfied: sqlparse>=0.2.2 in /usr/local/lib/python3.8/dist-packages (from django) (0.4.2)\r\nRequirement already satisfied: backports.zoneinfo; python_version < \"3.9\" in /usr/local/lib/python3.8/dist-packages (from django) (0.2.1)\r\n```\r\n\r\nRequirements does throw this error though when `sudo pip3 install -r requirements.txt` is ran...\r\n\r\n```\r\nkitsune@nagi:/opt/CAPEv2$ sudo pip3 install -r requirements.txt \r\nIgnoring altgraph: markers 'sys_platform == \"darwin\" and python_version >= \"3.6\"' don't match your environment\r\nCollecting batch-deobfuscator@ git+https://github.com/DissectMalware/batch_deobfuscator.git@a0d9d51e28cf519a42b35587fde7f8df09c78be3\r\nERROR: Can't verify hashes for these requirements because we don't have a way to hash version control repositories:\r\n    batch-deobfuscator@ git+https://github.com/DissectMalware/batch_deobfuscator.git@a0d9d51e28cf519a42b35587fde7f8df09c78be3 from git+https://github.com/DissectMalware/batch_deobfuscator.gi\r\nt@a0d9d51e28cf519a42b35587fde7f8df09c78be3 (from -r requirements.txt (line 27))\r\nkitsune@nagi:/opt/CAPEv2$ \r\n```\nComment: do not install cape deps as root. CAPE won't see them is how python now splits packages between global and local user. you need to use `poetry install`\nComment: > do not install cape deps as root. CAPE won't see them is how python now splits packages between global and local user. you need to use `poetry install`\r\n\r\nHmm, looks like that is missing from cape2.sh. Never does a `sudo -u cape poetry install`. Did that and it is going through installing stuff.\r\n\nComment: `sudo -u cape poetry install` is run as cape user, but your `sudo pip3 install -r requirements.txt ` is run as root\nComment: > `sudo -u cape poetry install` is run as cape user, but your `sudo pip3 install -r requirements.txt ` is run as root\r\n\r\nRight. What I mean is it was never reeled in by the update. If you check `https://github.com/doomedraven/Tools/blob/master/Sandbox/cape2.sh` it never calls that.\r\n\r\n`sudo -u cape poetry install` does not appear to fix it though.\r\n\r\n```\r\nkitsune@nagi:/opt/CAPEv2$ sudo -u cape /usr/bin/python3 -m poetry run python cuckoo.py\r\nTraceback (most recent call last):\r\n  File \"cuckoo.py\", line 21, in <module>\r\n    from lib.cuckoo.core.resultserver import ResultServer\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/resultserver.py\", line 16, in <module>\r\n    from lib.cuckoo.common.abstracts import ProtocolHandler\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 32, in <module>\r\n    from lib.cuckoo.common.utils import create_folder, get_memdump_path, load_categories\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/utils.py\", line 84, in <module>\r\n    zippwd = web_cfg.zipped_download.get(\"zip_pwd\", b\"infected\")\r\nAttributeError: 'Config' object has no attribute 'zipped_download'\r\nkitsune@nagi:/opt/CAPEv2$ \r\n```\nComment: well if you do git pull and you have any config modified how do you backup it? do you move it and then restore? as obviously it will have missing all new options there if you restore old config.\nComment: so go over all 24d of all changes in conf folder and add them to your configs\nComment: ah now i see what do you mean about `sudo -u cape poetry install`. the problem is that it changes so much since ubuntu 16 when that script was born. before global install worked. but with each new version the cut that down. i have added that `sudo -u cape poetry install` thanks\nComment: > well if you do git pull and you have any config modified how do you backup it? do you move it and then restore? as obviously it will have missing all new options there if you restore old config.\r\n\r\nThat was with the configs generated via cape2.sh. That was a complete refresh I started of CAPE. Only change I was making was to the PW and IP stuff at the top. Had not put my config stuff back into place yet.\r\n\r\nI think I had some sort of bad drek cached by python or the like. `mv /opt/CAPEv2/ /opt/CAPEv2.odd` fixed the issue.\r\n\r\nOkay, this sucked up more time than I was anticipating. Was hoping to get the test to you a bit sooner, but should some time in a few hours.\r\n\r\nSorry about this all and thanks! :)\nComment: np :) i know that never ending hole of problems\nComment: > np :) i know that never ending hole of problems\r\n\r\nFinally running the test after getting libvirt-python to install via poetry.\r\n\r\nBTW for small typo in https://github.com/kevoreilly/CAPEv2/discussions/949 . The last export line should be this. :)\r\n\r\n```\r\nexport PKG_CONFIG_PATH=$export_path\r\n```\nComment: thanks, fixed\nComment: And the results with are...\r\n\r\n```\r\n2022-06-16 00:56:03,865 [root] INFO: Date set to: 20220622T14:19:06, timeout set to: 200\r\n2022-06-16 00:56:03,943 [root] DEBUG: Starting analyzer from: C:\\tmppbk7pxlm\r\n2022-06-16 00:56:03,943 [root] DEBUG: Storing results at: C:\\JIpDTg\r\n2022-06-16 00:56:03,943 [root] DEBUG: Pipe server name: \\\\.\\PIPE\\HXuOHJND\r\n2022-06-16 00:56:03,943 [root] DEBUG: Python path: C:\\Program Files (x86)\\Python310-32\r\n2022-06-16 00:56:03,943 [root] INFO: Analysis package \"exe\" has been specified\r\n2022-06-16 00:56:03,943 [root] DEBUG: Importing analysis package \"exe\"...\r\n2022-06-16 00:56:03,959 [root] DEBUG: Initializing analysis package \"exe\"...\r\n2022-06-16 00:56:03,959 [root] INFO: Analyzer: Package modules.packages.exe does not specify a DLL option\r\n2022-06-16 00:56:03,959 [root] INFO: Analyzer: Package modules.packages.exe does not specify a DLL_64 option\r\n2022-06-16 00:56:03,959 [root] INFO: Analyzer: Package modules.packages.exe does not specify a loader option\r\n2022-06-16 00:56:03,959 [root] INFO: Analyzer: Package modules.packages.exe does not specify a loader_64 option\r\n2022-06-16 00:56:04,162 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.browser\"...\r\n2022-06-16 00:56:04,178 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.curtain\"...\r\n2022-06-16 00:56:04,193 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.digisig\"...\r\n2022-06-16 00:56:04,209 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.disguise\"...\r\n2022-06-16 00:56:04,240 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.evtx\"...\r\n2022-06-16 00:56:04,256 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.filepickup\"...\r\n2022-06-16 00:56:04,256 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.human\"...\r\n2022-06-16 00:56:04,256 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.permissions\"...\r\n2022-06-16 00:56:04,271 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.procmon\"...\r\n2022-06-16 00:56:04,271 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.screenshots\"...\r\n2022-06-16 00:56:04,271 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageChops'\r\n2022-06-16 00:56:04,569 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageGrab'\r\n2022-06-16 00:56:04,584 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageDraw'\r\n2022-06-16 00:56:07,100 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.sysmon\"...\r\n2022-06-16 00:56:07,100 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.tlsdump\"...\r\n2022-06-16 00:56:07,209 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.usage\"...\r\n2022-06-16 00:56:07,318 [root] DEBUG: Initialized auxiliary module \"Browser\"\r\n2022-06-16 00:56:07,318 [root] DEBUG: Trying to start auxiliary module \"Browser\"...\r\n2022-06-16 00:56:07,318 [root] DEBUG: Started auxiliary module \"Browser\"\r\n2022-06-16 00:56:07,318 [root] DEBUG: Started auxiliary module Browser\r\n2022-06-16 00:56:07,318 [root] DEBUG: Initialized auxiliary module \"Curtain\"\r\n2022-06-16 00:56:07,318 [root] DEBUG: Auxiliary module \"Curtain\" is disabled.\r\n2022-06-16 00:56:07,318 [root] DEBUG: Initialized auxiliary module \"DigiSig\"\r\n2022-06-16 00:56:07,318 [root] DEBUG: Trying to start auxiliary module \"DigiSig\"...\r\n2022-06-16 00:56:07,318 [modules.auxiliary.digisig] DEBUG: Checking for a digital signature\r\n2022-06-16 00:56:08,787 [modules.auxiliary.digisig] DEBUG: File has an invalid signature\r\n2022-06-16 00:56:08,802 [modules.auxiliary.digisig] INFO: Uploading signature results to aux/DigiSig.json\r\n2022-06-16 00:56:08,818 [root] DEBUG: Started auxiliary module \"DigiSig\"\r\n2022-06-16 00:56:08,818 [root] DEBUG: Started auxiliary module DigiSig\r\n2022-06-16 00:56:08,818 [root] DEBUG: Initialized auxiliary module \"Disguise\"\r\n2022-06-16 00:56:08,818 [root] DEBUG: Trying to start auxiliary module \"Disguise\"...\r\n2022-06-16 00:56:08,818 [root] WARNING: Cannot execute auxiliary module Disguise: [WinError 5] Access is denied\r\n2022-06-16 00:56:08,818 [root] DEBUG: Initialized auxiliary module \"Evtx\"\r\n2022-06-16 00:56:08,818 [root] DEBUG: Auxiliary module \"Evtx\" is disabled.\r\n2022-06-16 00:56:08,834 [root] WARNING: Auxiliary module FilePickup was not implemented: 'Config' object has no attribute 'file_pickup'\r\n2022-06-16 00:56:08,834 [root] DEBUG: Initialized auxiliary module \"Human\"\r\n2022-06-16 00:56:08,834 [root] DEBUG: Trying to start auxiliary module \"Human\"...\r\n2022-06-16 00:56:08,834 [root] DEBUG: Started auxiliary module \"Human\"\r\n2022-06-16 00:56:08,834 [root] DEBUG: Started auxiliary module Human\r\n2022-06-16 00:56:08,834 [root] WARNING: Auxiliary module Permissions was not implemented: 'Config' object has no attribute 'file_pickup'\r\n2022-06-16 00:56:08,834 [root] DEBUG: Initialized auxiliary module \"Procmon\"\r\n2022-06-16 00:56:08,834 [root] DEBUG: Auxiliary module \"Procmon\" is disabled.\r\n2022-06-16 00:56:08,834 [root] DEBUG: Initialized auxiliary module \"Screenshots\"\r\n2022-06-16 00:56:08,834 [root] DEBUG: Trying to start auxiliary module \"Screenshots\"...\r\n2022-06-16 00:56:08,849 [root] DEBUG: Started auxiliary module \"Screenshots\"\r\n2022-06-16 00:56:08,849 [root] DEBUG: Started auxiliary module Screenshots\r\n2022-06-16 00:56:08,849 [root] DEBUG: Initialized auxiliary module \"Sysmon\"\r\n2022-06-16 00:56:08,849 [root] DEBUG: Auxiliary module \"Sysmon\" is disabled.\r\n2022-06-16 00:56:08,849 [root] DEBUG: Initialized auxiliary module \"TLSDumpMasterSecrets\"\r\n2022-06-16 00:56:08,849 [root] DEBUG: Trying to start auxiliary module \"TLSDumpMasterSecrets\"...\r\n2022-06-16 00:56:08,849 [modules.auxiliary.tlsdump] INFO: lsass.exe found, pid 600\r\n2022-06-16 00:56:08,849 [lib.api.process] INFO: Monitor config for process 600: C:\\tmppbk7pxlm\\dll\\600.ini\r\n2022-06-16 00:56:08,849 [lib.api.process] INFO: Option 'tlsdump' with value '1' sent to monitor\r\n2022-06-16 00:56:08,849 [lib.api.process] INFO: 32-bit DLL to inject is C:\\tmppbk7pxlm\\dll\\TQntyKzn.dll, loader C:\\tmppbk7pxlm\\bin\\nzNahkW.exe\r\n2022-06-16 00:56:08,959 [root] DEBUG: Loader: Injecting process 600 with C:\\tmppbk7pxlm\\dll\\TQntyKzn.dll.\r\n2022-06-16 00:56:08,974 [root] DEBUG: Error 5 (0x5) - InjectDll: Failed to open process: Access is denied.\r\n2022-06-16 00:56:08,974 [root] DEBUG: Successfully injected DLL C:\\tmppbk7pxlm\\dll\\TQntyKzn.dll.\r\n2022-06-16 00:56:09,256 [root] DEBUG: Started auxiliary module \"TLSDumpMasterSecrets\"\r\n2022-06-16 00:56:09,256 [root] DEBUG: Started auxiliary module TLSDumpMasterSecrets\r\n2022-06-16 00:56:09,256 [root] DEBUG: Initialized auxiliary module \"Usage\"\r\n2022-06-16 00:56:09,256 [root] DEBUG: Auxiliary module \"Usage\" is disabled.\r\n2022-06-16 00:56:14,990 [root] INFO: Restarting WMI Service\r\n2022-06-16 00:56:16,193 [lib.api.process] ERROR: Failed to execute process from path \"C:\\Users\\Fifi\\AppData\\Local\\Temp\\SetupRST.exe\" with arguments \"None\" (Error: 740)\r\n2022-06-16 00:56:16,193 [root] INFO: You probably submitted the job with wrong package\r\nTraceback (most recent call last):\r\n  File \"C:\\tmppbk7pxlm\\analyzer.py\", line 516, in run\r\n    pids = self.package.start(self.target)\r\n  File \"C:\\tmppbk7pxlm\\modules\\packages\\exe.py\", line 36, in start\r\n    return self.execute(path, args, path)\r\n  File \"C:\\tmppbk7pxlm\\lib\\common\\abstracts.py\", line 118, in execute\r\n    raise CuckooPackageError(\"Unable to execute the initial process, analysis aborted\")\r\nlib.common.exceptions.CuckooPackageError: Unable to execute the initial process, analysis aborted\r\n\r\nThe above exception was the direct cause of the following exception:\r\n\r\nTraceback (most recent call last):\r\n  File \"C:\\tmppbk7pxlm\\analyzer.py\", line 1384, in <module>\r\n    success = analyzer.run()\r\n  File \"C:\\tmppbk7pxlm\\analyzer.py\", line 520, in run\r\n    raise CuckooError(f'The package \"{package_name}\" start function raised an error: {e}') from e\r\nlib.common.exceptions.CuckooError: The package \"modules.packages.exe\" start function raised an error: Unable to execute the initial process, analysis aborted\r\n2022-06-16 00:56:16,209 [root] WARNING: Folder at path \"C:\\JIpDTg\\debugger\" does not exist, skipping\r\n2022-06-16 00:56:16,209 [root] WARNING: Folder at path \"C:\\JIpDTg\\tlsdump\" does not exist, skipping\r\n2022-06-16 00:56:16,209 [root] INFO: Analysis completed\r\n```\r\n\nComment: is that happens to only this binary or all? due to `Failed to open process: Access is denied.`\nComment: I seem to get that consistently in lots, but in other ones that actually work. For example below is the logs from one it worked on, but threw that as well.\r\n\r\n```\r\n2022-06-05 00:29:11,977 [root] INFO: Date set to: 20220605T04:38:13, timeout set to: 200\r\n2022-06-05 00:29:11,977 [root] DEBUG: Starting analyzer from: C:\\tmpfffz8hwf\r\n2022-06-05 00:29:11,977 [root] DEBUG: Storing results at: C:\\yqCVidmua\r\n2022-06-05 00:29:11,977 [root] DEBUG: Pipe server name: \\\\.\\PIPE\\USeyGd\r\n2022-06-05 00:29:11,977 [root] DEBUG: Python path: C:\\Program Files (x86)\\Python310-32\r\n2022-06-05 00:29:11,977 [root] INFO: Analysis package \"exe\" has been specified\r\n2022-06-05 00:29:11,977 [root] DEBUG: Importing analysis package \"exe\"...\r\n2022-06-05 00:29:11,993 [root] DEBUG: Initializing analysis package \"exe\"...\r\n2022-06-05 00:29:11,993 [root] INFO: Analyzer: Package modules.packages.exe does not specify a DLL option\r\n2022-06-05 00:29:11,993 [root] INFO: Analyzer: Package modules.packages.exe does not specify a DLL_64 option\r\n2022-06-05 00:29:11,993 [root] INFO: Analyzer: Package modules.packages.exe does not specify a loader option\r\n2022-06-05 00:29:11,993 [root] INFO: Analyzer: Package modules.packages.exe does not specify a loader_64 option\r\n2022-06-05 00:29:12,024 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.browser\"...\r\n2022-06-05 00:29:12,024 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.curtain\"...\r\n2022-06-05 00:29:12,024 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.digisig\"...\r\n2022-06-05 00:29:12,055 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.disguise\"...\r\n2022-06-05 00:29:12,087 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.evtx\"...\r\n2022-06-05 00:29:12,102 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.human\"...\r\n2022-06-05 00:29:12,102 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.procmon\"...\r\n2022-06-05 00:29:12,102 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.screenshots\"...\r\n2022-06-05 00:29:12,118 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageChops'\r\n2022-06-05 00:29:12,118 [lib.api.screenshot] ERROR: No module named 'PIL'\r\n2022-06-05 00:29:12,118 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.sysmon\"...\r\n2022-06-05 00:29:12,118 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.tlsdump\"...\r\n2022-06-05 00:29:12,118 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.usage\"...\r\n2022-06-05 00:29:12,134 [root] DEBUG: Initializing auxiliary module \"Browser\"...\r\n2022-06-05 00:29:12,134 [root] DEBUG: Started auxiliary module Browser\r\n2022-06-05 00:29:12,134 [root] DEBUG: Initializing auxiliary module \"Curtain\"...\r\n2022-06-05 00:29:12,134 [root] DEBUG: Started auxiliary module Curtain\r\n2022-06-05 00:29:12,134 [root] DEBUG: Initializing auxiliary module \"DigiSig\"...\r\n2022-06-05 00:29:12,134 [modules.auxiliary.digisig] DEBUG: Checking for a digital signature\r\n2022-06-05 00:29:12,868 [modules.auxiliary.digisig] DEBUG: File is not signed\r\n2022-06-05 00:29:12,868 [modules.auxiliary.digisig] INFO: Uploading signature results to aux/DigiSig.json\r\n2022-06-05 00:29:12,883 [root] DEBUG: Started auxiliary module DigiSig\r\n2022-06-05 00:29:12,883 [root] DEBUG: Initializing auxiliary module \"Disguise\"...\r\n2022-06-05 00:29:12,883 [root] WARNING: Cannot execute auxiliary module Disguise: [WinError 5] Access is denied\r\n2022-06-05 00:29:12,883 [root] DEBUG: Initializing auxiliary module \"Evtx\"...\r\n2022-06-05 00:29:12,883 [root] DEBUG: Started auxiliary module Evtx\r\n2022-06-05 00:29:12,883 [root] DEBUG: Initializing auxiliary module \"Human\"...\r\n2022-06-05 00:29:12,883 [root] DEBUG: Started auxiliary module Human\r\n2022-06-05 00:29:12,883 [root] DEBUG: Initializing auxiliary module \"Procmon\"...\r\n2022-06-05 00:29:12,883 [root] DEBUG: Started auxiliary module Procmon\r\n2022-06-05 00:29:12,883 [root] DEBUG: Initializing auxiliary module \"Screenshots\"...\r\n2022-06-05 00:29:12,883 [modules.auxiliary.screenshots] WARNING: Python Image Library is not installed, screenshots are disabled\r\n2022-06-05 00:29:12,883 [root] DEBUG: Started auxiliary module Screenshots\r\n2022-06-05 00:29:12,883 [root] DEBUG: Initializing auxiliary module \"Sysmon\"...\r\n2022-06-05 00:29:12,899 [root] DEBUG: Started auxiliary module Sysmon\r\n2022-06-05 00:29:12,899 [root] DEBUG: Initializing auxiliary module \"TLSDumpMasterSecrets\"...\r\n2022-06-05 00:29:12,899 [modules.auxiliary.tlsdump] INFO: lsass.exe found, pid 544\r\n2022-06-05 00:29:12,899 [lib.api.process] INFO: Monitor config for process 544: C:\\tmpfffz8hwf\\dll\\544.ini\r\n2022-06-05 00:29:12,899 [lib.api.process] INFO: Option 'tlsdump' with value '1' sent to monitor\r\n2022-06-05 00:29:12,899 [lib.api.process] INFO: 32-bit DLL to inject is C:\\tmpfffz8hwf\\dll\\epuLbt.dll, loader C:\\tmpfffz8hwf\\bin\\muSlSQY.exe\r\n2022-06-05 00:29:12,962 [root] DEBUG: Loader: Injecting process 544 with C:\\tmpfffz8hwf\\dll\\epuLbt.dll.\r\n2022-06-05 00:29:12,962 [root] DEBUG: Error 5 (0x5) - InjectDll: Failed to open process: Access is denied.\r\n2022-06-05 00:29:12,977 [root] DEBUG: Successfully injected DLL C:\\tmpfffz8hwf\\dll\\epuLbt.dll.\r\n2022-06-05 00:29:12,977 [root] DEBUG: Started auxiliary module TLSDumpMasterSecrets\r\n2022-06-05 00:29:12,977 [root] DEBUG: Initializing auxiliary module \"Usage\"...\r\n2022-06-05 00:29:12,977 [root] DEBUG: Started auxiliary module Usage\r\n2022-06-05 00:29:14,212 [root] INFO: Restarting WMI Service\r\n2022-06-05 00:29:14,462 [lib.api.process] INFO: Successfully executed process from path \"C:\\Users\\Fifi\\AppData\\Local\\Temp\\SKMBT_36352152405497.exe\" with arguments \"\" with pid 4528\r\n2022-06-05 00:29:14,462 [lib.api.process] INFO: Monitor config for process 4528: C:\\tmpfffz8hwf\\dll\\4528.ini\r\n2022-06-05 00:29:14,665 [lib.api.process] INFO: 32-bit DLL to inject is C:\\tmpfffz8hwf\\dll\\epuLbt.dll, loader C:\\tmpfffz8hwf\\bin\\muSlSQY.exe\r\n2022-06-05 00:29:14,680 [root] DEBUG: Loader: Injecting process 4528 (thread 4624) with C:\\tmpfffz8hwf\\dll\\epuLbt.dll.\r\n2022-06-05 00:29:14,680 [root] DEBUG: InjectDllViaIAT: Executable is .NET, injecting via queued APC.\r\n2022-06-05 00:29:14,680 [root] DEBUG: InjectDllViaQueuedAPC: APC injection queued.\r\n2022-06-05 00:29:14,680 [root] DEBUG: Successfully injected DLL C:\\tmpfffz8hwf\\dll\\epuLbt.dll.\r\n2022-06-05 00:29:14,680 [lib.api.process] INFO: Injected into suspended 32-bit process with pid 4528\r\n2022-06-05 00:29:16,716 [lib.api.process] INFO: Successfully resumed process with pid 4528\r\n2022-06-05 00:29:17,074 [root] DEBUG: Python path set to 'C:\\Program Files (x86)\\Python310-32'.\r\n2022-06-05 00:29:17,089 [root] DEBUG: Dropped file limit defaulting to 100.\r\n2022-06-05 00:29:17,089 [root] DEBUG: Initialising Yara...\r\n2022-06-05 00:29:17,105 [root] DEBUG: YaraInit: Compiled 18 rule files\r\n2022-06-05 00:29:17,125 [root] DEBUG: YaraInit: Compiled rules saved to file C:\\tmpfffz8hwf\\data\\yara\\capemon.yac\r\n2022-06-05 00:29:17,127 [root] DEBUG: InternalYaraScan: Scanning 0x76ED0000, size 0x181c7c\r\n2022-06-05 00:29:17,690 [root] DEBUG: Error 5 (0x5) - AmsiDumper: Is CAPE agent running elevated? Initialisation failed: Access is denied.\r\n2022-06-05 00:29:17,690 [root] DEBUG: Monitor initialised: 32-bit capemon loaded in process 4528 at 0x6b400000, thread 4624, image base 0x410000, stack from 0x8f5000-0x900000\r\n2022-06-05 00:29:17,690 [root] DEBUG: Commandline: \"C:\\Users\\Fifi\\AppData\\Local\\Temp\\SKMBT_36352152405497.exe\"\r\n2022-06-05 00:29:17,728 [root] INFO: Loaded monitor into process with pid 4528\r\n2022-06-05 00:29:17,790 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x1c0 and local view 0x6B370000 to global list.\r\n2022-06-05 00:29:17,790 [root] DEBUG: DLL loaded at 0x6B370000: C:\\Windows\\Microsoft.NET\\Framework\\v4.0.30319\\mscoreei (0x8d000 bytes).\r\n2022-06-05 00:29:17,790 [root] DEBUG: DLL unloaded from 0x75E70000.\r\n2022-06-05 00:29:17,859 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x1a8 and local view 0x00C10000 to global list.\r\n2022-06-05 00:29:17,859 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x1b4 and local view 0x00C10000 to global list.\r\n2022-06-05 00:29:17,859 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x76E60000 for section view with handle 0x1b4.\r\n2022-06-05 00:29:17,859 [root] DEBUG: DLL loaded at 0x76E60000: C:\\Windows\\System32\\kernel.appcore (0xd000 bytes).\r\n2022-06-05 00:29:17,859 [root] DEBUG: DLL loaded at 0x739F0000: C:\\Windows\\SYSTEM32\\VERSION (0x8000 bytes).\r\n2022-06-05 00:29:17,891 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0xa0 and local view 0x6ABC0000 to global list.\r\n2022-06-05 00:29:17,925 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x6ABA0000 for section view with handle 0xa0.\r\n2022-06-05 00:29:17,928 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x6AAF0000 for section view with handle 0xa0.\r\n2022-06-05 00:29:17,928 [root] DEBUG: DLL loaded at 0x6AAF0000: C:\\Windows\\SYSTEM32\\ucrtbase_clr0400 (0xab000 bytes).\r\n2022-06-05 00:29:17,928 [root] DEBUG: DLL loaded at 0x6ABA0000: C:\\Windows\\SYSTEM32\\VCRUNTIME140_CLR0400 (0x14000 bytes).\r\n2022-06-05 00:29:17,944 [root] DEBUG: DLL loaded at 0x6ABC0000: C:\\Windows\\Microsoft.NET\\Framework\\v4.0.30319\\clr (0x7b0000 bytes).\r\n2022-06-05 00:29:18,007 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x1c8 and local view 0x00930000 to global list.\r\n2022-06-05 00:29:18,007 [root] DEBUG: DLL unloaded from 0x75840000.\r\n2022-06-05 00:29:18,007 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x1cc and local view 0x00940000 to global list.\r\n2022-06-05 00:29:18,026 [root] INFO: Disabling sleep skipping.\r\n2022-06-05 00:29:18,028 [root] DEBUG: api-rate-cap: NtQueryPerformanceCounter hook disabled due to rate.\r\n2022-06-05 00:29:18,044 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x2a4 and local view 0x070B0000 to global list.\r\n2022-06-05 00:29:18,144 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x2b4 and local view 0x073F0000 to global list.\r\n2022-06-05 00:29:18,144 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x07960000 for section view with handle 0x2b4.\r\n2022-06-05 00:29:18,160 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x2ac and local view 0x073F0000 to global list.\r\n2022-06-05 00:29:18,160 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x07960000 for section view with handle 0x2ac.\r\n2022-06-05 00:29:19,693 [root] DEBUG: DLL loaded at 0x73700000: C:\\Windows\\system32\\uxtheme (0x75000 bytes).\r\n2022-06-05 00:29:21,100 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x2d8 and local view 0x6AA60000 to global list.\r\n2022-06-05 00:29:21,100 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x2dc and local view 0x75D00000 to global list.\r\n2022-06-05 00:29:21,115 [root] DEBUG: DLL loaded at 0x75D00000: C:\\Windows\\System32\\OLEAUT32 (0x93000 bytes).\r\n2022-06-05 00:29:21,115 [root] DEBUG: DLL loaded at 0x6AA60000: C:\\Windows\\Microsoft.NET\\Framework\\v4.0.30319\\clrjit (0x89000 bytes).\r\n2022-06-05 00:29:21,131 [root] DEBUG: caller_dispatch: Adding region at 0x027D0000 to caller regions list (ntdll::memcpy returns to 0x027D6D1E, thread 4624).\r\n2022-06-05 00:29:21,133 [root] DEBUG: YaraScan: Scanning 0x027D0000, size 0x6ec2\r\n2022-06-05 00:29:21,135 [root] DEBUG: DumpPEsInRange: Scanning range 0x027D0000 - 0x027D6EC2.\r\n2022-06-05 00:29:21,136 [root] DEBUG: ScanForDisguisedPE: No PE image located in range 0x027D0000-0x027D6EC2.\r\n2022-06-05 00:29:21,284 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\4528_7075292212985062022 size is 28354, Max size: 100000000\r\n2022-06-05 00:29:21,315 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\4528_7075292212985062022 (size 28354 bytes)\r\n2022-06-05 00:29:21,315 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x027D0000, size 28672 bytes.\r\n2022-06-05 00:29:21,415 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x2e4 and local view 0x07ED0000 to global list.\r\n2022-06-05 00:29:21,415 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x08480000 for section view with handle 0x2e4.\r\n2022-06-05 00:29:21,569 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x2f4 and local view 0x073F0000 to global list.\r\n2022-06-05 00:29:21,569 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x07ED0000 for section view with handle 0x2f4.\r\n2022-06-05 00:29:21,584 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x2c8 and local view 0x073F0000 to global list.\r\n2022-06-05 00:29:21,584 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x07ED0000 for section view with handle 0x2c8.\r\n2022-06-05 00:29:21,636 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x2e8 and local view 0x07420000 to global list.\r\n2022-06-05 00:29:21,637 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x074C0000 for section view with handle 0x2e8.\r\n2022-06-05 00:29:21,653 [root] DEBUG: caller_dispatch: Adding region at 0x07410000 to caller regions list (ntdll::NtAllocateVirtualMemory returns to 0x07412FC0, thread 4624).\r\n2022-06-05 00:29:21,653 [root] DEBUG: YaraScan: Scanning 0x07410000, size 0x3090\r\n2022-06-05 00:29:21,653 [root] DEBUG: DumpPEsInRange: Scanning range 0x07410000 - 0x07413090.\r\n2022-06-05 00:29:21,653 [root] DEBUG: ScanForDisguisedPE: No PE image located in range 0x07410000-0x07413090.\r\n2022-06-05 00:29:21,669 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\4528_14913867212985062022 size is 12432, Max size: 100000000\r\n2022-06-05 00:29:21,684 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\4528_14913867212985062022 (size 12432 bytes)\r\n2022-06-05 00:29:21,684 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x07410000, size 16384 bytes.\r\n2022-06-05 00:29:21,784 [root] DEBUG: caller_dispatch: Adding region at 0x07450000 to caller regions list (ntdll::NtAllocateVirtualMemory returns to 0x07450D9C, thread 4624).\r\n2022-06-05 00:29:21,784 [root] DEBUG: YaraScan: Scanning 0x07450000, size 0xddc\r\n2022-06-05 00:29:21,784 [root] DEBUG: DumpPEsInRange: Scanning range 0x07450000 - 0x07450DDC.\r\n2022-06-05 00:29:21,784 [root] DEBUG: ScanForDisguisedPE: Size too small.\r\n2022-06-05 00:29:21,784 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\4528_15891680212985062022 size is 3548, Max size: 100000000\r\n2022-06-05 00:29:21,800 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\4528_15891680212985062022 (size 3548 bytes)\r\n2022-06-05 00:29:21,800 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x07450000, size 4096 bytes.\r\n2022-06-05 00:29:21,800 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x304 and local view 0x07470000 to global list.\r\n2022-06-05 00:29:21,800 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x308 and local view 0x08A30000 to global list.\r\n2022-06-05 00:29:21,900 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x310 and local view 0x07560000 to global list.\r\n2022-06-05 00:29:21,900 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x075D0000 for section view with handle 0x310.\r\n2022-06-05 00:29:21,900 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0xf4 and local view 0x07560000 to global list.\r\n2022-06-05 00:29:21,900 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x075D0000 for section view with handle 0xf4.\r\n2022-06-05 00:29:21,969 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x30c and local view 0x734B0000 to global list.\r\n2022-06-05 00:29:21,969 [root] DEBUG: DLL loaded at 0x734B0000: C:\\Windows\\SYSTEM32\\CRYPTSP (0x13000 bytes).\r\n2022-06-05 00:29:21,984 [root] DEBUG: DLL loaded at 0x73480000: C:\\Windows\\system32\\rsaenh (0x2f000 bytes).\r\n2022-06-05 00:29:22,000 [root] DEBUG: caller_dispatch: Adding region at 0x07560000 to caller regions list (ntdll::NtAllocateVirtualMemory returns to 0x07560708, thread 4624).\r\n2022-06-05 00:29:22,000 [root] DEBUG: YaraScan: Scanning 0x07560000, size 0x8e4\r\n2022-06-05 00:29:22,000 [root] DEBUG: DumpPEsInRange: Scanning range 0x07560000 - 0x075608E4.\r\n2022-06-05 00:29:22,000 [root] DEBUG: ScanForDisguisedPE: Size too small.\r\n2022-06-05 00:29:22,000 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\4528_0222985062022 size is 2276, Max size: 100000000\r\n2022-06-05 00:29:22,038 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\4528_0222985062022 (size 2276 bytes)\r\n2022-06-05 00:29:22,038 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x07560000, size 4096 bytes.\r\n2022-06-05 00:29:22,053 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x32c and local view 0x08A30000 to global list.\r\n2022-06-05 00:29:22,053 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x08CC0000 for section view with handle 0x32c.\r\n2022-06-05 00:29:22,069 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x324 and local view 0x08A30000 to global list.\r\n2022-06-05 00:29:22,069 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x08CC0000 for section view with handle 0x324.\r\n2022-06-05 00:29:22,155 [root] DEBUG: DLL loaded at 0x76670000: C:\\Windows\\System32\\cfgmgr32 (0x36000 bytes).\r\n2022-06-05 00:29:22,170 [root] DEBUG: DLL loaded at 0x76E10000: C:\\Windows\\System32\\powrprof (0x45000 bytes).\r\n2022-06-05 00:29:22,170 [root] DEBUG: DLL loaded at 0x73D00000: C:\\Windows\\System32\\shcore (0x88000 bytes).\r\n2022-06-05 00:29:22,170 [root] DEBUG: DLL loaded at 0x766B0000: C:\\Windows\\System32\\profapi (0xf000 bytes).\r\n2022-06-05 00:29:22,186 [root] DEBUG: DLL loaded at 0x760A0000: C:\\Windows\\System32\\windows.storage (0x56e000 bytes).\r\n2022-06-05 00:29:22,186 [root] DEBUG: DLL loaded at 0x742D0000: C:\\Windows\\System32\\shell32 (0x13d7000 bytes).\r\n2022-06-05 00:29:22,202 [root] DEBUG: caller_dispatch: Adding region at 0x075A0000 to caller regions list (ntdll::NtCreateFile returns to 0x075A06F8, thread 4624).\r\n2022-06-05 00:29:22,202 [root] DEBUG: YaraScan: Scanning 0x075A0000, size 0x7d3\r\n2022-06-05 00:29:22,202 [root] DEBUG: DumpPEsInRange: Scanning range 0x075A0000 - 0x075A07D3.\r\n2022-06-05 00:29:22,202 [root] DEBUG: ScanForDisguisedPE: Size too small.\r\n2022-06-05 00:29:22,217 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\4528_5169180222985062022 size is 2003, Max size: 100000000\r\n2022-06-05 00:29:22,276 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\4528_5169180222985062022 (size 2003 bytes)\r\n2022-06-05 00:29:22,276 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x075A0000, size 4096 bytes.\r\n2022-06-05 00:29:22,391 [root] DEBUG: caller_dispatch: Adding region at 0x07650000 to caller regions list (ntdll::NtAllocateVirtualMemory returns to 0x0765012C, thread 4624).\r\n2022-06-05 00:29:22,391 [root] DEBUG: YaraScan: Scanning 0x07650000, size 0x12e\r\n2022-06-05 00:29:22,407 [root] DEBUG: DumpPEsInRange: Scanning range 0x07650000 - 0x0765012E.\r\n2022-06-05 00:29:22,407 [root] DEBUG: ScanForDisguisedPE: Size too small.\r\n2022-06-05 00:29:22,407 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\4528_1097272222985062022 size is 302, Max size: 100000000\r\n2022-06-05 00:29:22,423 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\4528_1097272222985062022 (size 302 bytes)\r\n2022-06-05 00:29:22,423 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x07650000, size 4096 bytes.\r\n2022-06-05 00:29:22,673 [root] DEBUG: caller_dispatch: Adding region at 0x07660000 to caller regions list (ntdll::NtAllocateVirtualMemory returns to 0x07660E86, thread 4624).\r\n2022-06-05 00:29:22,674 [root] DEBUG: YaraScan: Scanning 0x07660000, size 0xff3\r\n2022-06-05 00:29:22,675 [root] DEBUG: DumpPEsInRange: Scanning range 0x07660000 - 0x07660FF3.\r\n2022-06-05 00:29:22,676 [root] DEBUG: ScanForDisguisedPE: Size too small.\r\n2022-06-05 00:29:22,676 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\4528_17096040222985062022 size is 4083, Max size: 100000000\r\n2022-06-05 00:29:22,692 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\4528_17096040222985062022 (size 4083 bytes)\r\n2022-06-05 00:29:22,692 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x07660000, size 4096 bytes.\r\n2022-06-05 00:29:22,754 [root] DEBUG: DLL loaded at 0x6A9C0000: C:\\Windows\\WinSxS\\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.0_none_88fef4c26039fb25\\comctl32 (0x94000 bytes).\r\n2022-06-05 00:29:22,823 [root] DEBUG: caller_dispatch: Adding region at 0x076C0000 to caller regions list (ntdll::LdrGetProcedureAddressForCaller returns to 0x076C03F0, thread 4624).\r\n2022-06-05 00:29:22,823 [root] DEBUG: YaraScan: Scanning 0x076C0000, size 0x48d\r\n2022-06-05 00:29:22,823 [root] DEBUG: DumpPEsInRange: Scanning range 0x076C0000 - 0x076C048D.\r\n2022-06-05 00:29:22,823 [root] DEBUG: ScanForDisguisedPE: Size too small.\r\n2022-06-05 00:29:22,823 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\4528_20612858222985062022 size is 1165, Max size: 100000000\r\n2022-06-05 00:29:22,838 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\4528_20612858222985062022 (size 1165 bytes)\r\n2022-06-05 00:29:22,838 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x076C0000, size 4096 bytes.\r\n2022-06-05 00:29:22,873 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x71560000 for section view with handle 0x32c.\r\n2022-06-05 00:29:22,876 [root] DEBUG: DLL loaded at 0x71560000: C:\\Windows\\system32\\dwmapi (0x1f000 bytes).\r\n2022-06-05 00:29:22,892 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x3b4 and local view 0x076B0000 to global list.\r\n2022-06-05 00:29:22,892 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x077E0000 for section view with handle 0x3b4.\r\n2022-06-05 00:29:22,939 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x3a4 and local view 0x76720000 to global list.\r\n2022-06-05 00:29:22,954 [root] DEBUG: DLL loaded at 0x76720000: C:\\Windows\\System32\\MSCTF (0x136000 bytes).\r\n2022-06-05 00:29:22,954 [root] DEBUG: caller_dispatch: Adding region at 0x00A80000 to caller regions list (ntdll::NtAllocateVirtualMemory returns to 0x00A8D246, thread 4624).\r\n2022-06-05 00:29:22,954 [root] DEBUG: YaraScan: Scanning 0x00A80000, size 0x9d1a\r\n2022-06-05 00:29:22,954 [root] DEBUG: DumpPEsInRange: Scanning range 0x00A80000 - 0x00A89D1A.\r\n2022-06-05 00:29:22,954 [root] DEBUG: ScanForDisguisedPE: No PE image located in range 0x00A80000-0x00A89D1A.\r\n2022-06-05 00:29:22,954 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\4528_21090078222985062022 size is 40218, Max size: 100000000\r\n2022-06-05 00:29:22,970 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\4528_21090078222985062022 (size 40218 bytes)\r\n2022-06-05 00:29:22,970 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x00A80000, size 40960 bytes.\r\n2022-06-05 00:29:22,986 [root] DEBUG: caller_dispatch: Adding region at 0x07800000 to caller regions list (ntdll::NtAllocateVirtualMemory returns to 0x07800456, thread 4624).\r\n2022-06-05 00:29:22,986 [root] DEBUG: YaraScan: Scanning 0x07800000, size 0x473\r\n2022-06-05 00:29:22,986 [root] DEBUG: DumpPEsInRange: Scanning range 0x07800000 - 0x07800473.\r\n2022-06-05 00:29:22,986 [root] DEBUG: ScanForDisguisedPE: Size too small.\r\n2022-06-05 00:29:23,001 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\4528_23068456222985062022 size is 1139, Max size: 100000000\r\n2022-06-05 00:29:23,070 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\4528_23068456222985062022 (size 1139 bytes)\r\n2022-06-05 00:29:23,070 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x07800000, size 4096 bytes.\r\n2022-06-05 00:29:23,110 [root] DEBUG: DLL loaded at 0x71790000: C:\\Windows\\WinSxS\\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.14393.0_none_f483f6f1e5c5b6e6\\gdiplus (0x169000 bytes).\r\n2022-06-05 00:29:23,173 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x3cc and local view 0x6A7C0000 to global list.\r\n2022-06-05 00:29:23,173 [root] DEBUG: DLL loaded at 0x6A7C0000: C:\\Windows\\SYSTEM32\\DWrite (0x1f5000 bytes).\r\n2022-06-05 00:29:23,189 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x07870000 for section view with handle 0x3cc.\r\n2022-06-05 00:29:23,189 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x09950000 for section view with handle 0x3cc.\r\n2022-06-05 00:29:23,189 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x3e0 and local view 0x08A30000 to global list.\r\n2022-06-05 00:29:23,220 [root] DEBUG: api-rate-cap: memcpy hook disabled due to rate.\r\n2022-06-05 00:29:23,220 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x083E0000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:23,251 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x08A30000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:23,267 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x083E0000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:23,298 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x078B0000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:23,314 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x0AD50000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:23,439 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x08A30000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:23,470 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x0AD50000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:23,485 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x078B0000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:23,829 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x08340000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:23,892 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x078B0000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:23,923 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x08A30000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:23,954 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x08340000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:23,970 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x08A30000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:24,017 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x078C0000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:24,064 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x0AD50000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:24,095 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x078C0000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:24,142 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x07910000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:24,142 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x08340000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:24,157 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x07910000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:24,173 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x078C0000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:24,173 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x07910000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:24,189 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x0AD50000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:24,282 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x08340000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:24,282 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x0AD50000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:24,454 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x078C0000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:24,610 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x08A30000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:24,642 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x078C0000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:24,657 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x0AD50000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:24,782 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x07910000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:24,798 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x0AD50000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:24,845 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x07910000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:24,861 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x0AD50000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:24,907 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x078C0000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:24,923 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x07910000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:24,939 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x0AD50000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:24,970 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x08340000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:25,032 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x078C0000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:25,032 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x083E0000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:25,049 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x08340000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:25,126 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x07910000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:25,142 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x08340000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:25,142 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x0AD50000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:25,407 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x078C0000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:25,423 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x08A30000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:25,470 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x078C0000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:25,548 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x0AD50000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:25,689 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x3ec and local view 0x0AD50000 to global list.\r\n2022-06-05 00:29:25,735 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x078C0000 for section view with handle 0x3ec.\r\n2022-06-05 00:29:25,751 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x08340000 for section view with handle 0x3e0.\r\n2022-06-05 00:29:25,767 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x083E0000 for section view with handle 0x3cc.\r\n2022-06-05 00:29:25,845 [root] DEBUG: caller_dispatch: Adding region at 0x078D0000 to caller regions list (ntdll::NtAllocateVirtualMemory returns to 0x078D0CEB, thread 4624).\r\n2022-06-05 00:29:25,845 [root] DEBUG: YaraScan: Scanning 0x078D0000, size 0xcf3\r\n2022-06-05 00:29:25,845 [root] DEBUG: DumpPEsInRange: Scanning range 0x078D0000 - 0x078D0CF3.\r\n2022-06-05 00:29:25,845 [root] DEBUG: ScanForDisguisedPE: Size too small.\r\n2022-06-05 00:29:25,845 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\4528_3963050252985062022 size is 3315, Max size: 100000000\r\n2022-06-05 00:29:25,861 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\4528_3963050252985062022 (size 3315 bytes)\r\n2022-06-05 00:29:25,861 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x078D0000, size 4096 bytes.\r\n2022-06-05 00:29:25,970 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x08A30000 for section view with handle 0x3ec.\r\n2022-06-05 00:29:25,985 [root] DEBUG: caller_dispatch: Adding region at 0x07910000 to caller regions list (ntdll::NtAllocateVirtualMemory returns to 0x0791008E, thread 4624).\r\n2022-06-05 00:29:25,985 [root] DEBUG: YaraScan: Scanning 0x07910000, size 0xb4c\r\n2022-06-05 00:29:25,985 [root] DEBUG: DumpPEsInRange: Scanning range 0x07910000 - 0x07910B4C.\r\n2022-06-05 00:29:25,985 [root] DEBUG: ScanForDisguisedPE: Size too small.\r\n2022-06-05 00:29:25,985 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\4528_25648415252985062022 size is 2892, Max size: 100000000\r\n2022-06-05 00:29:26,001 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\4528_25648415252985062022 (size 2892 bytes)\r\n2022-06-05 00:29:26,001 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x07910000, size 4096 bytes.\r\n2022-06-05 00:29:26,079 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x42c and local view 0x0B4D0000 to global list.\r\n2022-06-05 00:29:26,095 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x434 and local view 0x0B510000 to global list.\r\n2022-06-05 00:29:26,110 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x43c and local view 0x0B550000 to global list.\r\n2022-06-05 00:29:26,126 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x444 and local view 0x0B590000 to global list.\r\n2022-06-05 00:29:26,189 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x44c and local view 0x0B5D0000 to global list.\r\n2022-06-05 00:29:26,282 [root] DEBUG: caller_dispatch: Adding region at 0x08460000 to caller regions list (ntdll::NtAllocateVirtualMemory returns to 0x0846061C, thread 4624).\r\n2022-06-05 00:29:26,282 [root] DEBUG: YaraScan: Scanning 0x08460000, size 0x7ec\r\n2022-06-05 00:29:26,282 [root] DEBUG: DumpPEsInRange: Scanning range 0x08460000 - 0x084607EC.\r\n2022-06-05 00:29:26,282 [root] DEBUG: ScanForDisguisedPE: Size too small.\r\n2022-06-05 00:29:26,282 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\4528_7214688262985062022 size is 2028, Max size: 100000000\r\n2022-06-05 00:29:26,298 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\4528_7214688262985062022 (size 2028 bytes)\r\n2022-06-05 00:29:26,298 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x08460000, size 4096 bytes.\r\n2022-06-05 00:29:26,376 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x458 and local view 0x0C6B0000 to global list.\r\n2022-06-05 00:29:26,454 [root] DEBUG: DLL loaded at 0x76E70000: C:\\Windows\\System32\\WINTRUST (0x43000 bytes).\r\n2022-06-05 00:29:26,470 [root] DEBUG: DLL loaded at 0x6A7B0000: C:\\Windows\\SYSTEM32\\wldp (0x10000 bytes).\r\n2022-06-05 00:29:26,486 [root] DEBUG: DLL loaded at 0x6A7A0000: C:\\Windows\\SYSTEM32\\amsi (0xd000 bytes).\r\n2022-06-05 00:29:26,501 [root] DEBUG: DLL loaded at 0x768D0000: C:\\Windows\\System32\\clbcatq (0x84000 bytes).\r\n2022-06-05 00:29:26,501 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x494 and local view 0x08CA0000 to global list.\r\n2022-06-05 00:29:26,579 [root] DEBUG: caller_dispatch: Adding region at 0x0C740000 to caller regions list (ntdll::NtAllocateVirtualMemory returns to 0x0C7402B3, thread 4624).\r\n2022-06-05 00:29:26,579 [root] DEBUG: YaraScan: Scanning 0x0C740000, size 0x63c\r\n2022-06-05 00:29:26,579 [root] DEBUG: DumpPEsInRange: Scanning range 0x0C740000 - 0x0C74063C.\r\n2022-06-05 00:29:26,579 [root] DEBUG: ScanForDisguisedPE: Size too small.\r\n2022-06-05 00:29:26,579 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\4528_17742876262985062022 size is 1596, Max size: 100000000\r\n2022-06-05 00:29:26,611 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\4528_17742876262985062022 (size 1596 bytes)\r\n2022-06-05 00:29:26,611 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x0C740000, size 4096 bytes.\r\n2022-06-05 00:30:10,407 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x284 and local view 0x0C750000 to global list.\r\n2022-06-05 00:30:10,407 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x0C7F0000 for section view with handle 0x284.\r\n2022-06-05 00:30:10,485 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x4ac and local view 0x0C890000 to global list.\r\n2022-06-05 00:30:10,485 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x0CA10000 for section view with handle 0x4ac.\r\n2022-06-05 00:30:10,485 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x4a4 and local view 0x0C890000 to global list.\r\n2022-06-05 00:30:10,485 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x0CA10000 for section view with handle 0x4a4.\r\n2022-06-05 00:30:10,532 [root] DEBUG: caller_dispatch: Adding region at 0x0C790000 to caller regions list (ntdll::NtAllocateVirtualMemory returns to 0x0C7902AD, thread 4624).\r\n2022-06-05 00:30:10,548 [root] DEBUG: YaraScan: Scanning 0x0C790000, size 0x51c\r\n2022-06-05 00:30:10,548 [root] DEBUG: DumpPEsInRange: Scanning range 0x0C790000 - 0x0C79051C.\r\n2022-06-05 00:30:10,548 [root] DEBUG: ScanForDisguisedPE: Size too small.\r\n2022-06-05 00:30:10,548 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\4528_7567332103085062022 size is 1308, Max size: 100000000\r\n2022-06-05 00:30:10,563 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\4528_7567332103085062022 (size 1308 bytes)\r\n2022-06-05 00:30:10,563 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x0C790000, size 4096 bytes.\r\n2022-06-05 00:30:10,657 [root] DEBUG: caller_dispatch: Adding region at 0x0C780000 to caller regions list (ntdll::NtAllocateVirtualMemory returns to 0x0C780341, thread 4624).\r\n2022-06-05 00:30:10,673 [root] DEBUG: YaraScan: Scanning 0x0C780000, size 0x3d5\r\n2022-06-05 00:30:10,673 [root] DEBUG: DumpPEsInRange: Scanning range 0x0C780000 - 0x0C7803D5.\r\n2022-06-05 00:30:10,673 [root] DEBUG: ScanForDisguisedPE: Size too small.\r\n2022-06-05 00:30:10,673 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\4528_19927530103085062022 size is 981, Max size: 100000000\r\n2022-06-05 00:30:10,688 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\4528_19927530103085062022 (size 981 bytes)\r\n2022-06-05 00:30:10,688 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x0C780000, size 4096 bytes.\r\n2022-06-05 00:30:10,704 [root] DEBUG: DLL loaded at 0x6A630000: C:\\Windows\\SYSTEM32\\WindowsCodecs (0x16e000 bytes).\r\n2022-06-05 00:30:10,735 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x4b0 and local view 0x0C7B0000 to global list.\r\n2022-06-05 00:30:10,735 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x0C7C0000 for section view with handle 0x4b0.\r\n2022-06-05 00:30:10,735 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x0C7D0000 for section view with handle 0x4b0.\r\n2022-06-05 00:30:10,860 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x0CB90000 for section view with handle 0x4ac.\r\n2022-06-05 00:30:10,891 [root] DEBUG: caller_dispatch: Adding region at 0x0CD10000 to caller regions list (ntdll::NtAllocateVirtualMemory returns to 0x0CD12AB5, thread 4624).\r\n2022-06-05 00:30:10,891 [root] DEBUG: YaraScan: Scanning 0x0CD10000, size 0x5fcc\r\n2022-06-05 00:30:10,891 [root] DEBUG: DumpPEsInRange: Scanning range 0x0CD10000 - 0x0CD15FCC.\r\n2022-06-05 00:30:10,891 [root] DEBUG: ScanForDisguisedPE: No PE image located in range 0x0CD10000-0x0CD15FCC.\r\n2022-06-05 00:30:11,016 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\4528_9971181103085062022 size is 24524, Max size: 100000000\r\n2022-06-05 00:30:11,033 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\4528_9971181103085062022 (size 24524 bytes)\r\n2022-06-05 00:30:11,033 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x0CD10000, size 24576 bytes.\r\n2022-06-05 00:30:11,095 [root] DEBUG: caller_dispatch: Adding region at 0x0CC30000 to caller regions list (ntdll::NtAllocateVirtualMemory returns to 0x0CC309E9, thread 4624).\r\n2022-06-05 00:30:11,095 [root] DEBUG: YaraScan: Scanning 0x0CC30000, size 0x9ed\r\n2022-06-05 00:30:11,095 [root] DEBUG: DumpPEsInRange: Scanning range 0x0CC30000 - 0x0CC309ED.\r\n2022-06-05 00:30:11,110 [root] DEBUG: ScanForDisguisedPE: Size too small.\r\n2022-06-05 00:30:11,110 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\4528_1677610113085062022 size is 2541, Max size: 100000000\r\n2022-06-05 00:30:11,126 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\4528_1677610113085062022 (size 2541 bytes)\r\n2022-06-05 00:30:11,126 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x0CC30000, size 4096 bytes.\r\n2022-06-05 00:30:15,188 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x4d8 and local view 0x6B950000 to global list.\r\n2022-06-05 00:30:15,188 [root] DEBUG: DLL loaded at 0x6B950000: C:\\Windows\\SYSTEM32\\ntmarta (0x28000 bytes).\r\n2022-06-05 00:30:15,204 [root] INFO: Added new file to list with pid None and path C:\\Users\\Fifi\\AppData\\Roaming\\UaxdYP.exe\r\n2022-06-05 00:30:15,282 [root] DEBUG: caller_dispatch: Adding region at 0x0CC80000 to caller regions list (ntdll::NtAllocateVirtualMemory returns to 0x0CC81489, thread 4624).\r\n2022-06-05 00:30:15,282 [root] DEBUG: YaraScan: Scanning 0x0CC80000, size 0x153b\r\n2022-06-05 00:30:15,282 [root] DEBUG: DumpPEsInRange: Scanning range 0x0CC80000 - 0x0CC8153B.\r\n2022-06-05 00:30:15,282 [root] DEBUG: ScanForDisguisedPE: No PE image located in range 0x0CC80000-0x0CC8153B.\r\n2022-06-05 00:30:15,282 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\4528_8637096153085062022 size is 5435, Max size: 100000000\r\n2022-06-05 00:30:15,297 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\4528_8637096153085062022 (size 5435 bytes)\r\n2022-06-05 00:30:15,297 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x0CC80000, size 8192 bytes.\r\n2022-06-05 00:30:15,329 [root] INFO: Added new file to list with pid None and path C:\\Users\\Fifi\\AppData\\Local\\Temp\\tmp4FDD.tmp\r\n2022-06-05 00:30:15,376 [root] DEBUG: DLL loaded at 0x6F880000: C:\\Windows\\SYSTEM32\\PROPSYS (0x14f000 bytes).\r\n2022-06-05 00:30:15,376 [root] DEBUG: DLL loaded at 0x6EF30000: C:\\Windows\\System32\\ActXPrxy (0x185000 bytes).\r\n2022-06-05 00:30:15,438 [root] DEBUG: DLL unloaded from 0x760A0000.\r\n2022-06-05 00:30:15,438 [root] DEBUG: DLL unloaded from 0x73D00000.\r\n2022-06-05 00:30:15,532 [root] DEBUG: DLL loaded at 0x6A5F0000: C:\\Windows\\SYSTEM32\\edputil (0x3d000 bytes).\r\n2022-06-05 00:30:15,563 [root] DEBUG: DLL loaded at 0x72F70000: C:\\Windows\\SYSTEM32\\iertutil (0x228000 bytes).\r\n2022-06-05 00:30:15,579 [root] DEBUG: DLL loaded at 0x71300000: C:\\Windows\\SYSTEM32\\urlmon (0x195000 bytes).\r\n2022-06-05 00:30:15,610 [root] DEBUG: CreateProcessHandler: Injection info set for new process 2256: C:\\Windows\\System32\\schtasks.exe, ImageBase: 0x00180000\r\n2022-06-05 00:30:15,610 [root] INFO: Announced 32-bit process name: schtasks.exe pid: 2256\r\n2022-06-05 00:30:15,610 [lib.api.process] INFO: Monitor config for process 2256: C:\\tmpfffz8hwf\\dll\\2256.ini\r\n2022-06-05 00:30:15,610 [lib.api.process] INFO: 32-bit DLL to inject is C:\\tmpfffz8hwf\\dll\\epuLbt.dll, loader C:\\tmpfffz8hwf\\bin\\muSlSQY.exe\r\n2022-06-05 00:30:15,626 [root] DEBUG: Loader: Injecting process 2256 (thread 4768) with C:\\tmpfffz8hwf\\dll\\epuLbt.dll.\r\n2022-06-05 00:30:15,626 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\r\n2022-06-05 00:30:15,626 [root] DEBUG: Successfully injected DLL C:\\tmpfffz8hwf\\dll\\epuLbt.dll.\r\n2022-06-05 00:30:15,641 [lib.api.process] INFO: Injected into suspended 32-bit process with pid 2256\r\n2022-06-05 00:30:15,719 [root] DEBUG: Python path set to 'C:\\Program Files (x86)\\Python310-32'.\r\n2022-06-05 00:30:15,719 [root] DEBUG: Dropped file limit defaulting to 100.\r\n2022-06-05 00:30:15,719 [root] INFO: Disabling sleep skipping.\r\n2022-06-05 00:30:15,719 [root] DEBUG: Initialising Yara...\r\n2022-06-05 00:30:15,719 [root] DEBUG: YaraInit: Compiled rules loaded from existing file C:\\tmpfffz8hwf\\data\\yara\\capemon.yac\r\n2022-06-05 00:30:15,719 [root] DEBUG: InternalYaraScan: Scanning 0x76ED0000, size 0x181c7c\r\n2022-06-05 00:30:15,735 [root] DEBUG: Error 5 (0x5) - AmsiDumper: Is CAPE agent running elevated? Initialisation failed: Access is denied.\r\n2022-06-05 00:30:15,735 [root] DEBUG: Monitor initialised: 32-bit capemon loaded in process 2256 at 0x6b400000, thread 4768, image base 0x180000, stack from 0x2896000-0x28a0000\r\n2022-06-05 00:30:15,735 [root] DEBUG: Commandline: \"C:\\Windows\\System32\\schtasks.exe\" /Create /TN \"Updates\\UaxdYP\" /XML \"C:\\Users\\Fifi\\AppData\\Local\\Temp\\tmp4FDD.tmp\"\r\n2022-06-05 00:30:15,766 [root] DEBUG: RestoreHeaders: Restored original import table.\r\n2022-06-05 00:30:15,766 [root] INFO: Loaded monitor into process with pid 2256\r\n2022-06-05 00:30:15,766 [root] DEBUG: caller_dispatch: Adding region at 0x00180000 to caller regions list (ntdll::memcpy returns to 0x0019FF3A, thread 4768).\r\n2022-06-05 00:30:15,766 [root] DEBUG: YaraScan: Scanning 0x00180000, size 0x31770\r\n2022-06-05 00:30:15,766 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00180000 skipped (ntdll::memcpy returns to 0x0019FF3A mapped as \\Device\\HarddiskVolume2\\Windows\\SysWOW64\\schtasks.exe).\r\n2022-06-05 00:30:15,766 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x1b8 and local view 0x02A90000 to global list.\r\n2022-06-05 00:30:15,782 [root] DEBUG: DLL unloaded from 0x00180000.\r\n2022-06-05 00:30:15,782 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x1bc and local view 0x069E0000 to global list.\r\n2022-06-05 00:30:15,782 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x1ac and local view 0x76E60000 to global list.\r\n2022-06-05 00:30:15,782 [root] DEBUG: DLL loaded at 0x76E60000: C:\\Windows\\System32\\kernel.appcore (0xd000 bytes).\r\n2022-06-05 00:30:15,798 [root] INFO: Stopping Task Scheduler Service\r\n2022-06-05 00:30:15,860 [root] INFO: Stopped Task Scheduler Service\r\n2022-06-05 00:30:15,891 [root] INFO: Starting Task Scheduler Service\r\n2022-06-05 00:30:15,938 [root] INFO: Started Task Scheduler Service\r\n2022-06-05 00:30:15,938 [lib.api.process] INFO: Monitor config for process 928: C:\\tmpfffz8hwf\\dll\\928.ini\r\n2022-06-05 00:30:15,954 [lib.api.process] INFO: 32-bit DLL to inject is C:\\tmpfffz8hwf\\dll\\epuLbt.dll, loader C:\\tmpfffz8hwf\\bin\\muSlSQY.exe\r\n2022-06-05 00:30:15,954 [root] DEBUG: Loader: Injecting process 928 with C:\\tmpfffz8hwf\\dll\\epuLbt.dll.\r\n2022-06-05 00:30:15,969 [root] DEBUG: Error 5 (0x5) - InjectDll: Failed to open process: Access is denied.\r\n2022-06-05 00:30:15,969 [root] DEBUG: Successfully injected DLL C:\\tmpfffz8hwf\\dll\\epuLbt.dll.\r\n2022-06-05 00:30:17,985 [root] DEBUG: DLL loaded at 0x768D0000: C:\\Windows\\System32\\clbcatq (0x84000 bytes).\r\n2022-06-05 00:30:17,985 [root] DEBUG: DLL loaded at 0x6E220000: C:\\Windows\\System32\\taskschd (0x8b000 bytes).\r\n2022-06-05 00:30:18,235 [root] DEBUG: NtTerminateProcess hook: Attempting to dump process 2256\r\n2022-06-05 00:30:18,235 [root] DEBUG: GetHookCallerBase: thread 4768, return address 0x001A0067, allocation base 0x00180000.\r\n2022-06-05 00:30:18,235 [root] DEBUG: DoProcessDump: Dumping Imagebase at 0x00180000.\r\n2022-06-05 00:30:18,235 [root] DEBUG: DumpImageInCurrentProcess: Attempting to dump virtual PE image.\r\n2022-06-05 00:30:18,235 [root] DEBUG: DumpProcess: Instantiating PeParser with address: 0x00180000.\r\n2022-06-05 00:30:18,251 [root] DEBUG: DumpProcess: Module entry point VA is 0x00020110.\r\n2022-06-05 00:30:18,251 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\2256_3127209183085062022 size is 186880, Max size: 100000000\r\n2022-06-05 00:30:18,266 [root] DEBUG: DumpProcess: Module image dump success - dump size 0x2da00.\r\n2022-06-05 00:30:18,266 [root] DEBUG: DLL unloaded from 0x75CD0000.\r\n2022-06-05 00:30:18,266 [root] DEBUG: DLL unloaded from 0x75E70000.\r\n2022-06-05 00:30:18,282 [root] INFO: Process with pid 2256 has terminated\r\n2022-06-05 00:30:18,297 [lib.common.results] INFO: File C:\\Users\\Fifi\\AppData\\Local\\Temp\\tmp4FDD.tmp size is 1589, Max size: 100000000\r\n2022-06-05 00:30:18,329 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x540 and local view 0x0D190000 to global list.\r\n2022-06-05 00:30:18,329 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x0D200000 for section view with handle 0x540.\r\n2022-06-05 00:30:18,376 [root] DEBUG: caller_dispatch: Adding region at 0x0D1A0000 to caller regions list (ntdll::NtAllocateVirtualMemory returns to 0x0D1A07D6, thread 4624).\r\n2022-06-05 00:30:18,391 [root] DEBUG: YaraScan: Scanning 0x0D1A0000, size 0x802\r\n2022-06-05 00:30:18,391 [root] DEBUG: DumpPEsInRange: Scanning range 0x0D1A0000 - 0x0D1A0802.\r\n2022-06-05 00:30:18,454 [root] DEBUG: ScanForDisguisedPE: Size too small.\r\n2022-06-05 00:30:18,469 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\4528_10528714183085062022 size is 2050, Max size: 100000000\r\n2022-06-05 00:30:18,547 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\4528_10528714183085062022 (size 2050 bytes)\r\n2022-06-05 00:30:18,579 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x0D1A0000, size 4096 bytes.\r\n2022-06-05 00:30:18,610 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x3f8 and local view 0x0D1B0000 to global list.\r\n2022-06-05 00:30:18,626 [root] DEBUG: CreateProcessHandler: Injection info set for new process 3488: C:\\Users\\Fifi\\AppData\\Local\\Temp\\SKMBT_36352152405497.exe, ImageBase: 0x00970000\r\n2022-06-05 00:30:18,626 [root] INFO: Announced 32-bit process name: SKMBT_36352152405497.exe pid: 3488\r\n2022-06-05 00:30:18,626 [lib.api.process] INFO: Monitor config for process 3488: C:\\tmpfffz8hwf\\dll\\3488.ini\r\n2022-06-05 00:30:18,641 [lib.api.process] INFO: 32-bit DLL to inject is C:\\tmpfffz8hwf\\dll\\epuLbt.dll, loader C:\\tmpfffz8hwf\\bin\\muSlSQY.exe\r\n2022-06-05 00:30:18,657 [root] DEBUG: Loader: Injecting process 3488 (thread 2564) with C:\\tmpfffz8hwf\\dll\\epuLbt.dll.\r\n2022-06-05 00:30:18,688 [root] DEBUG: InjectDllViaIAT: Executable is .NET, injecting via queued APC.\r\n2022-06-05 00:30:18,688 [root] DEBUG: InjectDllViaQueuedAPC: APC injection queued.\r\n2022-06-05 00:30:18,860 [root] DEBUG: Successfully injected DLL C:\\tmpfffz8hwf\\dll\\epuLbt.dll.\r\n2022-06-05 00:30:18,860 [lib.api.process] INFO: Injected into suspended 32-bit process with pid 3488\r\n2022-06-05 00:30:18,876 [root] DEBUG: WriteMemoryHandler: shellcode at 0x07742168 (size 0x1268) injected into process 3488.\r\n2022-06-05 00:30:18,891 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\4528_11182140183085062022 size is 4649, Max size: 100000000\r\n2022-06-05 00:30:18,922 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\4528_11182140183085062022 (size 4649 bytes)\r\n2022-06-05 00:30:18,922 [root] DEBUG: WriteMemoryHandler: Dumped injected code/data from buffer.\r\n2022-06-05 00:30:18,938 [root] INFO: Announced 32-bit process name: SKMBT_36352152405497.exe pid: 3488\r\n2022-06-05 00:30:18,938 [lib.api.process] INFO: Monitor config for process 3488: C:\\tmpfffz8hwf\\dll\\3488.ini\r\n2022-06-05 00:30:18,938 [lib.api.process] INFO: 32-bit DLL to inject is C:\\tmpfffz8hwf\\dll\\epuLbt.dll, loader C:\\tmpfffz8hwf\\bin\\muSlSQY.exe\r\n2022-06-05 00:30:18,954 [root] DEBUG: Loader: Injecting process 3488 (thread 2564) with C:\\tmpfffz8hwf\\dll\\epuLbt.dll.\r\n2022-06-05 00:30:18,969 [root] DEBUG: InjectDllViaIAT: Executable is .NET, injecting via queued APC.\r\n2022-06-05 00:30:18,969 [root] DEBUG: InjectDllViaQueuedAPC: APC injection queued.\r\n2022-06-05 00:30:18,969 [root] DEBUG: Successfully injected DLL C:\\tmpfffz8hwf\\dll\\epuLbt.dll.\r\n2022-06-05 00:30:18,969 [lib.api.process] INFO: Injected into suspended 32-bit process with pid 3488\r\n2022-06-05 00:30:18,969 [root] INFO: Announced 32-bit process name: SKMBT_36352152405497.exe pid: 3488\r\n2022-06-05 00:30:18,969 [lib.api.process] INFO: Monitor config for process 3488: C:\\tmpfffz8hwf\\dll\\3488.ini\r\n2022-06-05 00:30:18,985 [lib.api.process] INFO: 32-bit DLL to inject is C:\\tmpfffz8hwf\\dll\\epuLbt.dll, loader C:\\tmpfffz8hwf\\bin\\muSlSQY.exe\r\n2022-06-05 00:30:19,001 [root] DEBUG: Loader: Injecting process 3488 (thread 2564) with C:\\tmpfffz8hwf\\dll\\epuLbt.dll.\r\n2022-06-05 00:30:19,016 [root] DEBUG: InjectDllViaIAT: Executable is .NET, injecting via queued APC.\r\n2022-06-05 00:30:19,016 [root] DEBUG: InjectDllViaQueuedAPC: APC injection queued.\r\n2022-06-05 00:30:19,063 [root] DEBUG: Successfully injected DLL C:\\tmpfffz8hwf\\dll\\epuLbt.dll.\r\n2022-06-05 00:30:19,063 [lib.api.process] INFO: Injected into suspended 32-bit process with pid 3488\r\n2022-06-05 00:30:19,063 [root] INFO: Announced 32-bit process name: SKMBT_36352152405497.exe pid: 3488\r\n2022-06-05 00:30:19,063 [lib.api.process] INFO: Monitor config for process 3488: C:\\tmpfffz8hwf\\dll\\3488.ini\r\n2022-06-05 00:30:19,063 [lib.api.process] INFO: 32-bit DLL to inject is C:\\tmpfffz8hwf\\dll\\epuLbt.dll, loader C:\\tmpfffz8hwf\\bin\\muSlSQY.exe\r\n2022-06-05 00:30:19,079 [root] DEBUG: Loader: Injecting process 3488 (thread 2564) with C:\\tmpfffz8hwf\\dll\\epuLbt.dll.\r\n2022-06-05 00:30:19,110 [root] DEBUG: InjectDllViaIAT: Executable is .NET, injecting via queued APC.\r\n2022-06-05 00:30:19,110 [root] DEBUG: InjectDllViaQueuedAPC: APC injection queued.\r\n2022-06-05 00:30:19,110 [root] DEBUG: Successfully injected DLL C:\\tmpfffz8hwf\\dll\\epuLbt.dll.\r\n2022-06-05 00:30:19,126 [lib.api.process] INFO: Injected into suspended 32-bit process with pid 3488\r\n2022-06-05 00:30:19,126 [root] DEBUG: WriteMemoryHandler: Executable binary injected into process 3488 (ImageBase 0x400000)\r\n2022-06-05 00:30:19,126 [root] DEBUG: DumpImageInCurrentProcess: Attempting to dump 'raw' PE image (process 4528)\r\n2022-06-05 00:30:19,126 [root] DEBUG: DumpPE: Instantiating PeParser with address: 0x063FCCE0.\r\n2022-06-05 00:30:19,157 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\4528_3637872193085062022 size is 215040, Max size: 100000000\r\n2022-06-05 00:30:19,157 [root] DEBUG: DumpPE: PE file in memory dumped successfully - dump size 0x34800.\r\n2022-06-05 00:30:19,172 [root] DEBUG: WriteMemoryHandler: Dumped PE image from buffer at 0x63fcce0, SizeOfImage 0x3a000.\r\n2022-06-05 00:30:19,172 [root] INFO: Announced 32-bit process name: SKMBT_36352152405497.exe pid: 3488\r\n2022-06-05 00:30:19,172 [lib.api.process] INFO: Monitor config for process 3488: C:\\tmpfffz8hwf\\dll\\3488.ini\r\n2022-06-05 00:30:19,188 [lib.api.process] INFO: 32-bit DLL to inject is C:\\tmpfffz8hwf\\dll\\epuLbt.dll, loader C:\\tmpfffz8hwf\\bin\\muSlSQY.exe\r\n2022-06-05 00:30:19,219 [root] DEBUG: Loader: Injecting process 3488 (thread 2564) with C:\\tmpfffz8hwf\\dll\\epuLbt.dll.\r\n2022-06-05 00:30:19,219 [root] DEBUG: InjectDllViaIAT: Executable is .NET, injecting via queued APC.\r\n2022-06-05 00:30:19,219 [root] DEBUG: InjectDllViaQueuedAPC: APC injection queued.\r\n2022-06-05 00:30:19,219 [root] DEBUG: Successfully injected DLL C:\\tmpfffz8hwf\\dll\\epuLbt.dll.\r\n2022-06-05 00:30:19,219 [lib.api.process] INFO: Injected into suspended 32-bit process with pid 3488\r\n2022-06-05 00:30:19,235 [root] DEBUG: WriteMemoryHandler: injection of section of PE image which has already been dumped.\r\n2022-06-05 00:30:19,235 [root] INFO: Announced 32-bit process name: SKMBT_36352152405497.exe pid: 3488\r\n2022-06-05 00:30:19,251 [lib.api.process] INFO: Monitor config for process 3488: C:\\tmpfffz8hwf\\dll\\3488.ini\r\n2022-06-05 00:30:19,251 [lib.api.process] INFO: 32-bit DLL to inject is C:\\tmpfffz8hwf\\dll\\epuLbt.dll, loader C:\\tmpfffz8hwf\\bin\\muSlSQY.exe\r\n2022-06-05 00:30:19,266 [root] DEBUG: Loader: Injecting process 3488 (thread 2564) with C:\\tmpfffz8hwf\\dll\\epuLbt.dll.\r\n2022-06-05 00:30:19,282 [root] DEBUG: InjectDllViaIAT: Executable is .NET, injecting via queued APC.\r\n2022-06-05 00:30:19,282 [root] DEBUG: InjectDllViaQueuedAPC: APC injection queued.\r\n2022-06-05 00:30:19,282 [root] DEBUG: Successfully injected DLL C:\\tmpfffz8hwf\\dll\\epuLbt.dll.\r\n2022-06-05 00:30:19,282 [lib.api.process] INFO: Injected into suspended 32-bit process with pid 3488\r\n2022-06-05 00:30:19,282 [root] DEBUG: WriteMemoryHandler: shellcode at 0x052040A0 (size 0x600) injected into process 3488.\r\n2022-06-05 00:30:19,297 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\4528_2238798193085062022 size is 1298, Max size: 100000000\r\n2022-06-05 00:30:19,313 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\4528_2238798193085062022 (size 1298 bytes)\r\n2022-06-05 00:30:19,313 [root] DEBUG: WriteMemoryHandler: Dumped injected code/data from buffer.\r\n2022-06-05 00:30:19,313 [root] INFO: Announced 32-bit process name: SKMBT_36352152405497.exe pid: 3488\r\n2022-06-05 00:30:19,313 [lib.api.process] INFO: Monitor config for process 3488: C:\\tmpfffz8hwf\\dll\\3488.ini\r\n2022-06-05 00:30:19,313 [lib.api.process] INFO: 32-bit DLL to inject is C:\\tmpfffz8hwf\\dll\\epuLbt.dll, loader C:\\tmpfffz8hwf\\bin\\muSlSQY.exe\r\n2022-06-05 00:30:19,329 [root] DEBUG: Loader: Injecting process 3488 (thread 2564) with C:\\tmpfffz8hwf\\dll\\epuLbt.dll.\r\n2022-06-05 00:30:19,329 [root] DEBUG: InjectDllViaIAT: Executable is .NET, injecting via queued APC.\r\n2022-06-05 00:30:19,329 [root] DEBUG: InjectDllViaQueuedAPC: APC injection queued.\r\n2022-06-05 00:30:19,360 [root] DEBUG: Successfully injected DLL C:\\tmpfffz8hwf\\dll\\epuLbt.dll.\r\n2022-06-05 00:30:19,360 [lib.api.process] INFO: Injected into suspended 32-bit process with pid 3488\r\n2022-06-05 00:30:19,360 [root] DEBUG: WriteMemoryHandler: shellcode at 0x052046AC (size 0x200) injected into process 3488.\r\n2022-06-05 00:30:19,407 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\4528_9568080193085062022 size is 10, Max size: 100000000\r\n2022-06-05 00:30:19,469 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\4528_9568080193085062022 (size 10 bytes)\r\n2022-06-05 00:30:19,469 [root] DEBUG: WriteMemoryHandler: Dumped injected code/data from buffer.\r\n2022-06-05 00:30:19,469 [root] INFO: Announced 32-bit process name: SKMBT_36352152405497.exe pid: 3488\r\n2022-06-05 00:30:19,469 [lib.api.process] INFO: Monitor config for process 3488: C:\\tmpfffz8hwf\\dll\\3488.ini\r\n2022-06-05 00:30:19,469 [lib.api.process] INFO: 32-bit DLL to inject is C:\\tmpfffz8hwf\\dll\\epuLbt.dll, loader C:\\tmpfffz8hwf\\bin\\muSlSQY.exe\r\n2022-06-05 00:30:19,501 [root] DEBUG: Loader: Injecting process 3488 (thread 2564) with C:\\tmpfffz8hwf\\dll\\epuLbt.dll.\r\n2022-06-05 00:30:19,516 [root] DEBUG: InjectDllViaIAT: Executable is .NET, injecting via queued APC.\r\n2022-06-05 00:30:19,516 [root] DEBUG: InjectDllViaQueuedAPC: APC injection queued.\r\n2022-06-05 00:30:19,516 [root] DEBUG: Successfully injected DLL C:\\tmpfffz8hwf\\dll\\epuLbt.dll.\r\n2022-06-05 00:30:19,516 [lib.api.process] INFO: Injected into suspended 32-bit process with pid 3488\r\n2022-06-05 00:30:19,516 [root] DEBUG: SetThreadContextHandler: Hollow process entry point reset via NtSetContextThread to 0x00035C9E (process 3488).\r\n2022-06-05 00:30:19,516 [root] INFO: Announced 32-bit process name: SKMBT_36352152405497.exe pid: 3488\r\n2022-06-05 00:30:19,516 [lib.api.process] INFO: Monitor config for process 3488: C:\\tmpfffz8hwf\\dll\\3488.ini\r\n2022-06-05 00:30:19,516 [lib.api.process] INFO: 32-bit DLL to inject is C:\\tmpfffz8hwf\\dll\\epuLbt.dll, loader C:\\tmpfffz8hwf\\bin\\muSlSQY.exe\r\n2022-06-05 00:30:19,548 [root] DEBUG: Loader: Injecting process 3488 (thread 2564) with C:\\tmpfffz8hwf\\dll\\epuLbt.dll.\r\n2022-06-05 00:30:19,563 [root] DEBUG: InjectDllViaIAT: Executable is .NET, injecting via queued APC.\r\n2022-06-05 00:30:19,563 [root] DEBUG: InjectDllViaQueuedAPC: APC injection queued.\r\n2022-06-05 00:30:19,563 [root] DEBUG: Successfully injected DLL C:\\tmpfffz8hwf\\dll\\epuLbt.dll.\r\n2022-06-05 00:30:19,563 [lib.api.process] INFO: Injected into suspended 32-bit process with pid 3488\r\n2022-06-05 00:30:19,594 [root] DEBUG: Python path set to 'C:\\Program Files (x86)\\Python310-32'.\r\n2022-06-05 00:30:19,594 [root] INFO: Added new file to list with pid None and path C:\\Users\\Fifi\\AppData\\Local\\Microsoft\\CLR_v4.0_32\\UsageLogs\\SKMBT_36352152405497.exe.log\r\n2022-06-05 00:30:19,610 [root] DEBUG: Dropped file limit defaulting to 100.\r\n2022-06-05 00:30:19,626 [root] DEBUG: NtTerminateProcess hook: Attempting to dump process 4528\r\n2022-06-05 00:30:19,626 [root] DEBUG: GetHookCallerBase: thread 4624, return address 0x0D1A6AAC, allocation base 0x0D1A0000.\r\n2022-06-05 00:30:19,626 [root] INFO: Disabling sleep skipping.\r\n2022-06-05 00:30:19,657 [root] DEBUG: DoProcessDump: Dumping Imagebase at 0x00410000.\r\n2022-06-05 00:30:19,657 [root] DEBUG: Initialising Yara...\r\n2022-06-05 00:30:19,672 [root] DEBUG: CAPEExceptionFilter: Exception 0xc0000005 caught at RVA 0x4f9ed in capemon caught accessing 0x411ffc (expected in memory scans), passing to next handler.\r\n2022-06-05 00:30:19,672 [root] DEBUG: LooksLikeSectionBoundary: Exception occured reading around suspected boundary at 0x00412000\r\n2022-06-05 00:30:19,688 [root] DEBUG: YaraInit: Compiled rules loaded from existing file C:\\tmpfffz8hwf\\data\\yara\\capemon.yac\r\n2022-06-05 00:30:19,688 [root] DEBUG: DumpImageInCurrentProcess: Attempting to dump virtual PE image.\r\n2022-06-05 00:30:19,704 [root] DEBUG: InternalYaraScan: Scanning 0x76ED0000, size 0x181c7c\r\n2022-06-05 00:30:19,704 [root] DEBUG: DumpProcess: Instantiating PeParser with address: 0x00410000.\r\n2022-06-05 00:30:19,719 [root] DEBUG: Error 5 (0x5) - AmsiDumper: Is CAPE agent running elevated? Initialisation failed: Access is denied.\r\n2022-06-05 00:30:19,719 [root] DEBUG: DumpProcess: Module entry point VA is 0x001582AE.\r\n2022-06-05 00:30:19,751 [root] DEBUG: Monitor initialised: 32-bit capemon loaded in process 3488 at 0x6b400000, thread 2564, image base 0x400000, stack from 0xef6000-0xf00000\r\n2022-06-05 00:30:19,751 [root] DEBUG: PeParser: readPeSectionsFromProcess: readSectionFromProcess failed offset 0x412000, section 1\r\n2022-06-05 00:30:19,751 [root] DEBUG: PeParser: readPeSectionsFromProcess: readSectionFromProcess failed offset 0x56a000, section 2\r\n2022-06-05 00:30:19,751 [root] DEBUG: Commandline: \"C:\\Users\\Fifi\\AppData\\Local\\Temp\\SKMBT_36352152405497.exe\"\r\n2022-06-05 00:30:19,766 [root] DEBUG: CAPEExceptionFilter: Exception 0xc0000005 caught at RVA 0x5898e in capemon caught accessing 0x1562b0 (expected in memory scans), passing to next handler.\r\n2022-06-05 00:30:19,766 [root] INFO: Loaded monitor into process with pid 3488\r\n2022-06-05 00:30:19,766 [root] DEBUG: reBasePEImage: Exception rebasing image from 0x00410000 to 0x00400000.\r\n2022-06-05 00:30:19,782 [root] DEBUG: caller_dispatch: Adding region at 0x00B90000 to caller regions list (ntdll::LdrLoadDll returns to 0x00B9003A, thread 2564).\r\n2022-06-05 00:30:19,782 [root] DEBUG: readPeSectionsFromProcess: Failed to relocate image back to header image base 0x00400000.\r\n2022-06-05 00:30:19,782 [root] DEBUG: YaraScan: Scanning 0x00B90000, size 0x12c\r\n2022-06-05 00:30:19,797 [root] DEBUG: DumpPEsInRange: Scanning range 0x00B90000 - 0x00B9012C.\r\n2022-06-05 00:30:19,797 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\4528_4317422193085062022 size is 1536, Max size: 100000000\r\n2022-06-05 00:30:19,797 [root] DEBUG: ScanForDisguisedPE: Size too small.\r\n2022-06-05 00:30:19,830 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\3488_14648860193085062022 size is 300, Max size: 100000000\r\n2022-06-05 00:30:19,830 [root] DEBUG: DumpProcess: Module image dump success - dump size 0x600.\r\n2022-06-05 00:30:19,844 [root] DEBUG: DLL unloaded from 0x6F880000.\r\n2022-06-05 00:30:19,844 [root] DEBUG: DLL unloaded from 0x75E70000.\r\n2022-06-05 00:30:19,861 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\3488_14648860193085062022 (size 300 bytes)\r\n2022-06-05 00:30:19,923 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x00B90000, size 4096 bytes.\r\n2022-06-05 00:30:19,923 [root] DEBUG: caller_dispatch: Adding region at 0x00BA0000 to caller regions list (ntdll::LdrLoadDll returns to 0x00BA003A, thread 2564).\r\n2022-06-05 00:30:19,923 [root] DEBUG: YaraScan: Scanning 0x00BA0000, size 0x12c\r\n2022-06-05 00:30:19,923 [root] DEBUG: DumpPEsInRange: Scanning range 0x00BA0000 - 0x00BA012C.\r\n2022-06-05 00:30:19,923 [root] DEBUG: ScanForDisguisedPE: Size too small.\r\n2022-06-05 00:30:20,063 [root] DEBUG: DLL unloaded from 0x75CD0000.\r\n2022-06-05 00:30:20,063 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\3488_6444386193085062022 size is 300, Max size: 100000000\r\n2022-06-05 00:30:20,063 [root] INFO: Process with pid 4528 has terminated\r\n2022-06-05 00:30:20,094 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\3488_6444386193085062022 (size 300 bytes)\r\n2022-06-05 00:30:20,094 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x00BA0000, size 4096 bytes.\r\n2022-06-05 00:30:20,094 [root] DEBUG: caller_dispatch: Adding region at 0x00BB0000 to caller regions list (ntdll::LdrLoadDll returns to 0x00BB003A, thread 2564).\r\n2022-06-05 00:30:20,094 [root] DEBUG: YaraScan: Scanning 0x00BB0000, size 0x12c\r\n2022-06-05 00:30:20,110 [root] DEBUG: DumpPEsInRange: Scanning range 0x00BB0000 - 0x00BB012C.\r\n2022-06-05 00:30:20,110 [root] DEBUG: ScanForDisguisedPE: Size too small.\r\n2022-06-05 00:30:20,110 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\3488_1829740203085062022 size is 300, Max size: 100000000\r\n2022-06-05 00:30:20,110 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\3488_1829740203085062022 (size 300 bytes)\r\n2022-06-05 00:30:20,110 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x00BB0000, size 4096 bytes.\r\n2022-06-05 00:30:20,126 [root] DEBUG: caller_dispatch: Adding region at 0x00BC0000 to caller regions list (ntdll::LdrLoadDll returns to 0x00BC003A, thread 2564).\r\n2022-06-05 00:30:20,126 [root] DEBUG: YaraScan: Scanning 0x00BC0000, size 0x12c\r\n2022-06-05 00:30:20,126 [root] DEBUG: DumpPEsInRange: Scanning range 0x00BC0000 - 0x00BC012C.\r\n2022-06-05 00:30:20,126 [root] DEBUG: ScanForDisguisedPE: Size too small.\r\n2022-06-05 00:30:20,157 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\3488_1821960203085062022 size is 300, Max size: 100000000\r\n2022-06-05 00:30:20,188 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\3488_1821960203085062022 (size 300 bytes)\r\n2022-06-05 00:30:20,188 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x00BC0000, size 4096 bytes.\r\n2022-06-05 00:30:20,188 [root] DEBUG: caller_dispatch: Adding region at 0x00BD0000 to caller regions list (ntdll::LdrLoadDll returns to 0x00BD003A, thread 2564).\r\n2022-06-05 00:30:20,204 [root] DEBUG: YaraScan: Scanning 0x00BD0000, size 0x12c\r\n2022-06-05 00:30:20,204 [root] DEBUG: DumpPEsInRange: Scanning range 0x00BD0000 - 0x00BD012C.\r\n2022-06-05 00:30:20,219 [root] DEBUG: ScanForDisguisedPE: Size too small.\r\n2022-06-05 00:30:20,219 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\3488_3595980203085062022 size is 300, Max size: 100000000\r\n2022-06-05 00:30:20,251 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\3488_3595980203085062022 (size 300 bytes)\r\n2022-06-05 00:30:20,266 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x00BD0000, size 4096 bytes.\r\n2022-06-05 00:30:20,266 [root] DEBUG: caller_dispatch: Adding region at 0x00BE0000 to caller regions list (ntdll::LdrLoadDll returns to 0x00BE003A, thread 2564).\r\n2022-06-05 00:30:20,266 [root] DEBUG: YaraScan: Scanning 0x00BE0000, size 0x12c\r\n2022-06-05 00:30:20,282 [root] DEBUG: DumpPEsInRange: Scanning range 0x00BE0000 - 0x00BE012C.\r\n2022-06-05 00:30:20,313 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\3488_8972676203085062022 size is 300, Max size: 100000000\r\n2022-06-05 00:30:20,329 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\3488_8972676203085062022 (size 300 bytes)\r\n2022-06-05 00:30:20,329 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x00BE0000, size 4096 bytes.\r\n2022-06-05 00:30:20,329 [root] DEBUG: caller_dispatch: Adding region at 0x00BF0000 to caller regions list (ntdll::LdrLoadDll returns to 0x00BF003A, thread 2564).\r\n2022-06-05 00:30:20,360 [root] DEBUG: YaraScan: Scanning 0x00BF0000, size 0x12c\r\n2022-06-05 00:30:20,376 [root] DEBUG: DumpPEsInRange: Scanning range 0x00BF0000 - 0x00BF012C.\r\n2022-06-05 00:30:20,391 [root] DEBUG: ScanForDisguisedPE: Size too small.\r\n2022-06-05 00:30:20,422 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\3488_9754668203085062022 size is 300, Max size: 100000000\r\n2022-06-05 00:30:20,438 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\3488_9754668203085062022 (size 300 bytes)\r\n2022-06-05 00:30:20,438 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x00BF0000, size 4096 bytes.\r\n2022-06-05 00:30:20,438 [root] DEBUG: caller_dispatch: Adding region at 0x00F00000 to caller regions list (ntdll::LdrLoadDll returns to 0x00F0003A, thread 2564).\r\n2022-06-05 00:30:20,454 [root] DEBUG: YaraScan: Scanning 0x00F00000, size 0x12c\r\n2022-06-05 00:30:20,469 [root] DEBUG: DumpPEsInRange: Scanning range 0x00F00000 - 0x00F0012C.\r\n2022-06-05 00:30:20,469 [root] DEBUG: ScanForDisguisedPE: Size too small.\r\n2022-06-05 00:30:20,469 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\3488_7782117203085062022 size is 300, Max size: 100000000\r\n2022-06-05 00:30:20,532 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\3488_7782117203085062022 (size 300 bytes)\r\n2022-06-05 00:30:20,532 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x00F00000, size 4096 bytes.\r\n2022-06-05 00:30:20,563 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x80 and local view 0x6B370000 to global list.\r\n2022-06-05 00:30:20,563 [root] DEBUG: DLL loaded at 0x6B370000: C:\\Windows\\Microsoft.NET\\Framework\\v4.0.30319\\mscoreei (0x8d000 bytes).\r\n2022-06-05 00:30:20,579 [root] DEBUG: DLL unloaded from 0x75E70000.\r\n2022-06-05 00:30:20,594 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x1b0 and local view 0x029A0000 to global list.\r\n2022-06-05 00:30:20,610 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x1ac and local view 0x029A0000 to global list.\r\n2022-06-05 00:30:20,626 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x76E60000 for section view with handle 0x1ac.\r\n2022-06-05 00:30:20,626 [root] DEBUG: DLL loaded at 0x76E60000: C:\\Windows\\System32\\kernel.appcore (0xd000 bytes).\r\n2022-06-05 00:30:20,626 [root] DEBUG: DLL loaded at 0x739F0000: C:\\Windows\\SYSTEM32\\VERSION (0x8000 bytes).\r\n2022-06-05 00:30:20,641 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x6ABC0000 for section view with handle 0x1ac.\r\n2022-06-05 00:30:20,641 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x6ABA0000 for section view with handle 0x1ac.\r\n2022-06-05 00:30:20,657 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x6AAF0000 for section view with handle 0x1ac.\r\n2022-06-05 00:30:20,657 [root] DEBUG: DLL loaded at 0x6AAF0000: C:\\Windows\\SYSTEM32\\ucrtbase_clr0400 (0xab000 bytes).\r\n2022-06-05 00:30:20,657 [root] DEBUG: DLL loaded at 0x6ABA0000: C:\\Windows\\SYSTEM32\\VCRUNTIME140_CLR0400 (0x14000 bytes).\r\n2022-06-05 00:30:20,672 [root] DEBUG: DLL loaded at 0x6ABC0000: C:\\Windows\\Microsoft.NET\\Framework\\v4.0.30319\\clr (0x7b0000 bytes).\r\n2022-06-05 00:30:20,672 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x01040000 for section view with handle 0x1ac.\r\n2022-06-05 00:30:20,688 [root] DEBUG: DLL unloaded from 0x75840000.\r\n2022-06-05 00:30:20,704 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x01050000 for section view with handle 0x1b0.\r\n2022-06-05 00:30:20,704 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x260 and local view 0x076C0000 to global list.\r\n2022-06-05 00:30:20,719 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x278 and local view 0x07A00000 to global list.\r\n2022-06-05 00:30:20,719 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x278 and local view 0x07A00000 to global list.\r\n2022-06-05 00:30:20,719 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x07F70000 for section view with handle 0x278.\r\n2022-06-05 00:30:20,735 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x270 and local view 0x07A00000 to global list.\r\n2022-06-05 00:30:20,735 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x07F70000 for section view with handle 0x270.\r\n2022-06-05 00:30:20,766 [root] DEBUG: DLL loaded at 0x73700000: C:\\Windows\\system32\\uxtheme (0x75000 bytes).\r\n2022-06-05 00:30:20,766 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x2a8 and local view 0x6AA60000 to global list.\r\n2022-06-05 00:30:20,766 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x2ac and local view 0x75D00000 to global list.\r\n2022-06-05 00:30:20,782 [root] DEBUG: DLL loaded at 0x75D00000: C:\\Windows\\System32\\OLEAUT32 (0x93000 bytes).\r\n2022-06-05 00:30:20,782 [root] DEBUG: DLL loaded at 0x6AA60000: C:\\Windows\\Microsoft.NET\\Framework\\v4.0.30319\\clrjit (0x89000 bytes).\r\n2022-06-05 00:30:20,797 [root] DEBUG: caller_dispatch: Adding region at 0x02A50000 to caller regions list (ntdll::memcpy returns to 0x02A56D1E, thread 2564).\r\n2022-06-05 00:30:20,797 [root] DEBUG: YaraScan: Scanning 0x02A50000, size 0x6ec2\r\n2022-06-05 00:30:20,813 [root] DEBUG: DumpPEsInRange: Scanning range 0x02A50000 - 0x02A56EC2.\r\n2022-06-05 00:30:20,829 [root] DEBUG: ScanForDisguisedPE: No PE image located in range 0x02A50000-0x02A56EC2.\r\n2022-06-05 00:30:20,829 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\3488_3763660203085062022 size is 28354, Max size: 100000000\r\n2022-06-05 00:30:20,891 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\3488_3763660203085062022 (size 28354 bytes)\r\n2022-06-05 00:30:20,907 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x02A50000, size 28672 bytes.\r\n2022-06-05 00:30:20,954 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x2c8 and local view 0x07A00000 to global list.\r\n2022-06-05 00:30:20,969 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x084E0000 for section view with handle 0x2c8.\r\n2022-06-05 00:30:20,969 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x2c0 and local view 0x07A00000 to global list.\r\n2022-06-05 00:30:20,985 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x084E0000 for section view with handle 0x2c0.\r\n2022-06-05 00:30:21,001 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x2cc and local view 0x08850000 to global list.\r\n2022-06-05 00:30:21,001 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x08E00000 for section view with handle 0x2cc.\r\n2022-06-05 00:30:21,016 [root] DEBUG: caller_dispatch: Adding region at 0x044D0000 to caller regions list (ntdll::NtAllocateVirtualMemory returns to 0x044D096F, thread 2564).\r\n2022-06-05 00:30:21,016 [root] DEBUG: YaraScan: Scanning 0x044D0000, size 0x970\r\n2022-06-05 00:30:21,032 [root] DEBUG: DumpPEsInRange: Scanning range 0x044D0000 - 0x044D0970.\r\n2022-06-05 00:30:21,063 [root] DEBUG: ScanForDisguisedPE: Size too small.\r\n2022-06-05 00:30:21,079 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\3488_646443213085062022 size is 2416, Max size: 100000000\r\n2022-06-05 00:30:21,126 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\3488_646443213085062022 (size 2416 bytes)\r\n2022-06-05 00:30:21,141 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x044D0000, size 4096 bytes.\r\n2022-06-05 00:30:21,204 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x2f0 and local view 0x07A00000 to global list.\r\n2022-06-05 00:30:21,219 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x07A70000 for section view with handle 0x2f0.\r\n2022-06-05 00:30:21,219 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x2e8 and local view 0x07A00000 to global list.\r\n2022-06-05 00:30:21,219 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x07A70000 for section view with handle 0x2e8.\r\n2022-06-05 00:30:21,251 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x2fc and local view 0x07B70000 to global list.\r\n2022-06-05 00:30:21,251 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x08850000 for section view with handle 0x2fc.\r\n2022-06-05 00:30:21,266 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x2f4 and local view 0x07B70000 to global list.\r\n2022-06-05 00:30:21,266 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x08850000 for section view with handle 0x2f4.\r\n2022-06-05 00:30:21,344 [root] DEBUG: caller_dispatch: Adding region at 0x07A30000 to caller regions list (ntdll::NtAllocateVirtualMemory returns to 0x07A3071E, thread 2564).\r\n2022-06-05 00:30:21,344 [root] DEBUG: YaraScan: Scanning 0x07A30000, size 0x735\r\n2022-06-05 00:30:21,344 [root] DEBUG: DumpPEsInRange: Scanning range 0x07A30000 - 0x07A30735.\r\n2022-06-05 00:30:21,360 [root] DEBUG: ScanForDisguisedPE: Size too small.\r\n2022-06-05 00:30:21,391 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\3488_6517800213085062022 size is 1845, Max size: 100000000\r\n2022-06-05 00:30:21,423 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\3488_6517800213085062022 (size 1845 bytes)\r\n2022-06-05 00:30:21,438 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x07A30000, size 4096 bytes.\r\n2022-06-05 00:30:21,469 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x734B0000 for section view with handle 0x2fc.\r\n2022-06-05 00:30:21,469 [root] DEBUG: DLL loaded at 0x734B0000: C:\\Windows\\SYSTEM32\\CRYPTSP (0x13000 bytes).\r\n2022-06-05 00:30:21,501 [root] DEBUG: DLL loaded at 0x73480000: C:\\Windows\\system32\\rsaenh (0x2f000 bytes).\r\n2022-06-05 00:30:21,547 [root] DEBUG: caller_dispatch: Adding region at 0x07B00000 to caller regions list (ntdll::NtAllocateVirtualMemory returns to 0x07B00C3E, thread 2564).\r\n2022-06-05 00:30:21,547 [root] DEBUG: YaraScan: Scanning 0x07B00000, size 0xc5d\r\n2022-06-05 00:30:21,547 [root] DEBUG: DumpPEsInRange: Scanning range 0x07B00000 - 0x07B00C5D.\r\n2022-06-05 00:30:21,563 [root] DEBUG: ScanForDisguisedPE: Size too small.\r\n2022-06-05 00:30:21,579 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\3488_7836397213085062022 size is 3165, Max size: 100000000\r\n2022-06-05 00:30:21,641 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\3488_7836397213085062022 (size 3165 bytes)\r\n2022-06-05 00:30:21,672 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x07B00000, size 4096 bytes.\r\n2022-06-05 00:30:21,719 [root] DEBUG: DLL loaded at 0x76670000: C:\\Windows\\System32\\cfgmgr32 (0x36000 bytes).\r\n2022-06-05 00:30:21,735 [root] DEBUG: DLL loaded at 0x76E10000: C:\\Windows\\System32\\powrprof (0x45000 bytes).\r\n2022-06-05 00:30:21,751 [root] DEBUG: DLL loaded at 0x73D00000: C:\\Windows\\System32\\shcore (0x88000 bytes).\r\n2022-06-05 00:30:21,751 [root] DEBUG: DLL loaded at 0x766B0000: C:\\Windows\\System32\\profapi (0xf000 bytes).\r\n2022-06-05 00:30:21,766 [root] DEBUG: DLL loaded at 0x760A0000: C:\\Windows\\System32\\windows.storage (0x56e000 bytes).\r\n2022-06-05 00:30:21,766 [root] DEBUG: DLL loaded at 0x742D0000: C:\\Windows\\System32\\shell32 (0x13d7000 bytes).\r\n2022-06-05 00:30:21,797 [root] DEBUG: caller_dispatch: Adding region at 0x07B80000 to caller regions list (ntdll::RtlSetCurrentTransaction returns to 0x07B81F00, thread 2564).\r\n2022-06-05 00:30:21,797 [root] DEBUG: YaraScan: Scanning 0x07B80000, size 0x1f9b\r\n2022-06-05 00:30:21,813 [root] DEBUG: DumpPEsInRange: Scanning range 0x07B80000 - 0x07B81F9B.\r\n2022-06-05 00:30:21,813 [root] DEBUG: ScanForDisguisedPE: No PE image located in range 0x07B80000-0x07B81F9B.\r\n2022-06-05 00:30:21,860 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\3488_2622738213085062022 size is 8091, Max size: 100000000\r\n2022-06-05 00:30:21,891 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\3488_2622738213085062022 (size 8091 bytes)\r\n2022-06-05 00:30:21,907 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x07B80000, size 8192 bytes.\r\n2022-06-05 00:30:21,985 [root] DEBUG: caller_dispatch: Adding region at 0x07B90000 to caller regions list (ntdll::NtAllocateVirtualMemory returns to 0x07B9172A, thread 2564).\r\n2022-06-05 00:30:22,001 [root] DEBUG: YaraScan: Scanning 0x07B90000, size 0x1749\r\n2022-06-05 00:30:22,016 [root] DEBUG: DumpPEsInRange: Scanning range 0x07B90000 - 0x07B91749.\r\n2022-06-05 00:30:22,016 [root] DEBUG: ScanForDisguisedPE: No PE image located in range 0x07B90000-0x07B91749.\r\n2022-06-05 00:30:22,016 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\3488_441856223085062022 size is 5961, Max size: 100000000\r\n2022-06-05 00:30:22,063 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\3488_441856223085062022 (size 5961 bytes)\r\n2022-06-05 00:30:22,063 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x07B90000, size 8192 bytes.\r\n2022-06-05 00:30:22,141 [root] DEBUG: caller_dispatch: Adding region at 0x07B30000 to caller regions list (ntdll::NtAllocateVirtualMemory returns to 0x07B30AD2, thread 2564).\r\n2022-06-05 00:30:22,141 [root] DEBUG: YaraScan: Scanning 0x07B30000, size 0xb88\r\n2022-06-05 00:30:22,157 [root] DEBUG: DumpPEsInRange: Scanning range 0x07B30000 - 0x07B30B88.\r\n2022-06-05 00:30:22,157 [root] DEBUG: ScanForDisguisedPE: Size too small.\r\n2022-06-05 00:30:22,157 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\3488_511820223085062022 size is 2952, Max size: 100000000\r\n2022-06-05 00:30:22,157 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\3488_511820223085062022 (size 2952 bytes)\r\n2022-06-05 00:30:22,157 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x07B30000, size 4096 bytes.\r\n2022-06-05 00:30:22,219 [root] DEBUG: DLL loaded at 0x76660000: C:\\Windows\\System32\\psapi (0x6000 bytes).\r\n2022-06-05 00:30:22,235 [root] DEBUG: api-rate-cap: NtReadVirtualMemory hook disabled due to rate.\r\n2022-06-05 00:30:22,266 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x300 and local view 0x07BA0000 to global list.\r\n2022-06-05 00:30:22,282 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x07C40000 for section view with handle 0x300.\r\n2022-06-05 00:30:22,313 [root] DEBUG: api-rate-cap: memcpy hook disabled due to rate.\r\n2022-06-05 00:30:22,329 [root] DEBUG: DLL loaded at 0x768D0000: C:\\Windows\\System32\\clbcatq (0x84000 bytes).\r\n2022-06-05 00:30:22,407 [root] DEBUG: DLL loaded at 0x6A9B0000: C:\\Windows\\SYSTEM32\\wbemcomn (0x67000 bytes).\r\n2022-06-05 00:30:22,422 [root] DEBUG: DLL loaded at 0x6AA20000: C:\\Windows\\system32\\wbem\\wbemdisp (0x40000 bytes).\r\n2022-06-05 00:30:22,485 [lib.api.process] INFO: Monitor config for process 708: C:\\tmpfffz8hwf\\dll\\708.ini\r\n2022-06-05 00:30:22,532 [lib.api.process] INFO: 32-bit DLL to inject is C:\\tmpfffz8hwf\\dll\\epuLbt.dll, loader C:\\tmpfffz8hwf\\bin\\muSlSQY.exe\r\n2022-06-05 00:30:22,579 [root] DEBUG: Loader: Injecting process 708 with C:\\tmpfffz8hwf\\dll\\epuLbt.dll.\r\n2022-06-05 00:30:22,579 [root] DEBUG: Error 5 (0x5) - InjectDll: Failed to open process: Access is denied.\r\n2022-06-05 00:30:22,610 [root] DEBUG: Successfully injected DLL C:\\tmpfffz8hwf\\dll\\epuLbt.dll.\r\n2022-06-05 00:30:24,672 [lib.api.process] INFO: Monitor config for process 928: C:\\tmpfffz8hwf\\dll\\928.ini\r\n2022-06-05 00:30:24,672 [lib.api.process] INFO: 32-bit DLL to inject is C:\\tmpfffz8hwf\\dll\\epuLbt.dll, loader C:\\tmpfffz8hwf\\bin\\muSlSQY.exe\r\n2022-06-05 00:30:24,704 [root] DEBUG: Loader: Injecting process 928 with C:\\tmpfffz8hwf\\dll\\epuLbt.dll.\r\n2022-06-05 00:30:24,704 [root] DEBUG: Error 5 (0x5) - InjectDll: Failed to open process: Access is denied.\r\n2022-06-05 00:30:24,704 [root] DEBUG: Successfully injected DLL C:\\tmpfffz8hwf\\dll\\epuLbt.dll.\r\n2022-06-05 00:30:26,750 [root] DEBUG: DLL loaded at 0x6A9A0000: C:\\Windows\\system32\\wbem\\wbemprox (0xd000 bytes).\r\n2022-06-05 00:30:26,766 [root] DEBUG: DLL loaded at 0x6A980000: C:\\Windows\\system32\\wbem\\wmiutils (0x1c000 bytes).\r\n2022-06-05 00:30:26,797 [root] DEBUG: DLL loaded at 0x6A970000: C:\\Windows\\system32\\wbem\\wbemsvc (0x10000 bytes).\r\n2022-06-05 00:30:26,844 [root] DEBUG: DLL loaded at 0x6A8A0000: C:\\Windows\\system32\\wbem\\fastprox (0xc2000 bytes).\r\n2022-06-05 00:30:26,891 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x3fc and local view 0x6D630000 to global list.\r\n2022-06-05 00:30:26,938 [root] DEBUG: DLL loaded at 0x6D630000: C:\\Windows\\SYSTEM32\\sxs (0x81000 bytes).\r\n2022-06-05 00:30:26,954 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x40c and local view 0x07F30000 to global list.\r\n2022-06-05 00:30:26,985 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x424 and local view 0x093B0000 to global list.\r\n2022-06-05 00:30:27,001 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x09530000 for section view with handle 0x424.\r\n2022-06-05 00:30:27,001 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x41c and local view 0x093B0000 to global list.\r\n2022-06-05 00:30:27,001 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x09530000 for section view with handle 0x41c.\r\n2022-06-05 00:30:27,016 [root] DEBUG: caller_dispatch: Adding region at 0x08CF0000 to caller regions list (ntdll::NtAllocateVirtualMemory returns to 0x08CF01DB, thread 2564).\r\n2022-06-05 00:30:27,032 [root] DEBUG: YaraScan: Scanning 0x08CF0000, size 0x4ff\r\n2022-06-05 00:30:27,032 [root] DEBUG: DumpPEsInRange: Scanning range 0x08CF0000 - 0x08CF04FF.\r\n2022-06-05 00:30:27,047 [root] DEBUG: ScanForDisguisedPE: Size too small.\r\n2022-06-05 00:30:27,063 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\3488_404106173185062022 size is 1279, Max size: 100000000\r\n2022-06-05 00:30:27,110 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\3488_404106173185062022 (size 1279 bytes)\r\n2022-06-05 00:30:27,126 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x08CF0000, size 4096 bytes.\r\n2022-06-05 00:30:27,172 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x428 and local view 0x6A880000 to global list.\r\n2022-06-05 00:30:27,172 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x08D00000 for section view with handle 0x428.\r\n2022-06-05 00:30:27,188 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x42c and local view 0x6A880000 to global list.\r\n2022-06-05 00:30:27,188 [root] DEBUG: DLL loaded at 0x6A880000: C:\\Windows\\Microsoft.Net\\assembly\\GAC_32\\CustomMarshalers\\v4.0_4.0.0.0__b03f5f7f11d50a3a\\CustomMarshalers (0x18000 bytes).\r\n2022-06-05 00:30:27,204 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x08D20000 for section view with handle 0x42c.\r\n2022-06-05 00:30:27,204 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x08D20000 for section view with handle 0x3fc.\r\n2022-06-05 00:30:27,204 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x430 and local view 0x08D20000 to global list.\r\n2022-06-05 00:30:27,204 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x3ec and local view 0x08D20000 to global list.\r\n2022-06-05 00:30:27,219 [root] DEBUG: DLL unloaded from 0x6ABC0000.\r\n2022-06-05 00:30:27,251 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x08D30000 for section view with handle 0x3ec.\r\n2022-06-05 00:30:27,251 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x093B0000 for section view with handle 0x3ec.\r\n2022-06-05 00:30:27,329 [root] DEBUG: caller_dispatch: Adding region at 0x08DD0000 to caller regions list (ntdll::NtAllocateVirtualMemory returns to 0x08DD049D, thread 3972).\r\n2022-06-05 00:30:27,329 [root] DEBUG: YaraScan: Scanning 0x08DD0000, size 0x1f89\r\n2022-06-05 00:30:27,329 [root] DEBUG: DumpPEsInRange: Scanning range 0x08DD0000 - 0x08DD1F89.\r\n2022-06-05 00:30:27,329 [root] DEBUG: ScanForDisguisedPE: No PE image located in range 0x08DD0000-0x08DD1F89.\r\n2022-06-05 00:30:27,329 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\3488_6075643173185062022 size is 8073, Max size: 100000000\r\n2022-06-05 00:30:27,376 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\3488_6075643173185062022 (size 8073 bytes)\r\n2022-06-05 00:30:27,422 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x08DD0000, size 8192 bytes.\r\n2022-06-05 00:30:27,454 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x45c and local view 0x6A850000 to global list.\r\n2022-06-05 00:30:27,454 [root] DEBUG: DLL loaded at 0x6A850000: C:\\Windows\\Microsoft.NET\\Framework\\v4.0.30319\\wminet_utils (0x21000 bytes).\r\n2022-06-05 00:30:30,454 [root] DEBUG: caller_dispatch: Adding region at 0x08DE0000 to caller regions list (ntdll::NtAllocateVirtualMemory returns to 0x08DE0562, thread 2564).\r\n2022-06-05 00:30:30,454 [root] DEBUG: YaraScan: Scanning 0x08DE0000, size 0x921\r\n2022-06-05 00:30:30,454 [root] DEBUG: DumpPEsInRange: Scanning range 0x08DE0000 - 0x08DE0921.\r\n2022-06-05 00:30:30,454 [root] DEBUG: ScanForDisguisedPE: Size too small.\r\n2022-06-05 00:30:30,485 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\3488_1280928543685062022 size is 2337, Max size: 100000000\r\n2022-06-05 00:30:30,485 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\3488_1280928543685062022 (size 2337 bytes)\r\n2022-06-05 00:30:30,500 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x08DE0000, size 4096 bytes.\r\n2022-06-05 00:30:30,579 [root] DEBUG: caller_dispatch: Adding region at 0x09970000 to caller regions list (ntdll::NtAllocateVirtualMemory returns to 0x0997010D, thread 2564).\r\n2022-06-05 00:30:30,594 [root] DEBUG: YaraScan: Scanning 0x09970000, size 0x195\r\n2022-06-05 00:30:30,594 [root] DEBUG: DumpPEsInRange: Scanning range 0x09970000 - 0x09970195.\r\n2022-06-05 00:30:30,594 [root] DEBUG: ScanForDisguisedPE: Size too small.\r\n2022-06-05 00:30:30,625 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\3488_1966484543685062022 size is 405, Max size: 100000000\r\n2022-06-05 00:30:30,641 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\3488_1966484543685062022 (size 405 bytes)\r\n2022-06-05 00:30:30,641 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x09970000, size 4096 bytes.\r\n2022-06-05 00:30:30,719 [root] DEBUG: caller_dispatch: Adding region at 0x09B40000 to caller regions list (ntdll::NtAllocateVirtualMemory returns to 0x09B40190, thread 2564).\r\n2022-06-05 00:30:30,735 [root] DEBUG: YaraScan: Scanning 0x09B40000, size 0x33e\r\n2022-06-05 00:30:30,782 [root] DEBUG: DumpPEsInRange: Scanning range 0x09B40000 - 0x09B4033E.\r\n2022-06-05 00:30:30,782 [root] DEBUG: ScanForDisguisedPE: Size too small.\r\n2022-06-05 00:30:30,813 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\3488_3295320533785062022 size is 830, Max size: 100000000\r\n2022-06-05 00:30:30,860 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\3488_3295320533785062022 (size 830 bytes)\r\n2022-06-05 00:30:30,891 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x09B40000, size 4096 bytes.\r\n2022-06-05 00:30:31,032 [root] DEBUG: caller_dispatch: Adding region at 0x09B70000 to caller regions list (ntdll::NtAllocateVirtualMemory returns to 0x09B7017B, thread 2564).\r\n2022-06-05 00:30:31,032 [root] DEBUG: YaraScan: Scanning 0x09B70000, size 0x2a2\r\n2022-06-05 00:30:31,032 [root] DEBUG: DumpPEsInRange: Scanning range 0x09B70000 - 0x09B702A2.\r\n2022-06-05 00:30:31,032 [root] DEBUG: ScanForDisguisedPE: Size too small.\r\n2022-06-05 00:30:31,047 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\3488_1898138533785062022 size is 674, Max size: 100000000\r\n2022-06-05 00:30:31,110 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\3488_1898138533785062022 (size 674 bytes)\r\n2022-06-05 00:30:31,125 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x09B70000, size 4096 bytes.\r\n2022-06-05 00:30:31,172 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x554 and local view 0x09B80000 to global list.\r\n2022-06-05 00:30:31,297 [root] DEBUG: caller_dispatch: Adding region at 0x09C50000 to caller regions list (ntdll::NtAllocateVirtualMemory returns to 0x09C51DAF, thread 2564).\r\n2022-06-05 00:30:31,313 [root] DEBUG: YaraScan: Scanning 0x09C50000, size 0x20ba\r\n2022-06-05 00:30:31,313 [root] DEBUG: DumpPEsInRange: Scanning range 0x09C50000 - 0x09C520BA.\r\n2022-06-05 00:30:31,329 [root] DEBUG: ScanForDisguisedPE: No PE image located in range 0x09C50000-0x09C520BA.\r\n2022-06-05 00:30:31,344 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\3488_17483180533785062022 size is 8378, Max size: 100000000\r\n2022-06-05 00:30:31,360 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\3488_17483180533785062022 (size 8378 bytes)\r\n2022-06-05 00:30:31,360 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x09C50000, size 12288 bytes.\r\n2022-06-05 00:30:31,391 [root] DEBUG: DLL loaded at 0x6E2E0000: C:\\Windows\\SYSTEM32\\wintypes (0xcf000 bytes).\r\n2022-06-05 00:30:31,407 [root] DEBUG: DLL loaded at 0x6A810000: C:\\Windows\\SYSTEM32\\vaultcli (0x36000 bytes).\r\n2022-06-05 00:30:31,454 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x568 and local view 0x09BF0000 to global list.\r\n2022-06-05 00:30:31,469 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x09C00000 for section view with handle 0x568.\r\n2022-06-05 00:30:31,485 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x09BF0000 for section view with handle 0x568.\r\n2022-06-05 00:30:31,501 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x09C00000 for section view with handle 0x568.\r\n2022-06-05 00:30:31,516 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x570 and local view 0x09BF0000 to global list.\r\n2022-06-05 00:30:31,533 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x09BF0000 for section view with handle 0x568.\r\n2022-06-05 00:30:31,547 [root] DEBUG: caller_dispatch: Adding region at 0x09BF0000 to caller regions list (ntdll::NtAllocateVirtualMemory returns to 0x09BF0EC8, thread 2564).\r\n2022-06-05 00:30:31,547 [root] DEBUG: YaraScan: Scanning 0x09BF0000, size 0xf85\r\n2022-06-05 00:30:31,579 [root] DEBUG: DumpPEsInRange: Scanning range 0x09BF0000 - 0x09BF0F85.\r\n2022-06-05 00:30:31,579 [root] DEBUG: ScanForDisguisedPE: Size too small.\r\n2022-06-05 00:30:31,735 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\3488_14746165533785062022 size is 3973, Max size: 100000000\r\n2022-06-05 00:30:31,782 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\3488_14746165533785062022 (size 3973 bytes)\r\n2022-06-05 00:30:31,782 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x09BF0000, size 4096 bytes.\r\n2022-06-05 00:30:33,235 [root] DEBUG: caller_dispatch: Adding region at 0x09AD0000 to caller regions list (ntdll::NtAllocateVirtualMemory returns to 0x09AD0077, thread 2564).\r\n2022-06-05 00:30:33,251 [root] DEBUG: YaraScan: Scanning 0x09AD0000, size 0x304\r\n2022-06-05 00:30:33,266 [root] DEBUG: DumpPEsInRange: Scanning range 0x09AD0000 - 0x09AD0304.\r\n2022-06-05 00:30:33,282 [root] DEBUG: ScanForDisguisedPE: Size too small.\r\n2022-06-05 00:30:33,297 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\3488_19363316553785062022 size is 772, Max size: 100000000\r\n2022-06-05 00:30:33,297 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\3488_19363316553785062022 (size 772 bytes)\r\n2022-06-05 00:30:33,297 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x09AD0000, size 4096 bytes.\r\n2022-06-05 00:30:37,672 [root] DEBUG: caller_dispatch: Adding region at 0x07F30000 to caller regions list (ntdll::NtAllocateVirtualMemory returns to 0x07F31AD4, thread 2564).\r\n2022-06-05 00:30:37,688 [root] DEBUG: YaraScan: Scanning 0x07F30000, size 0x1b3c\r\n2022-06-05 00:30:37,704 [root] DEBUG: DumpPEsInRange: Scanning range 0x07F30000 - 0x07F31B3C.\r\n2022-06-05 00:30:37,750 [root] DEBUG: ScanForDisguisedPE: No PE image located in range 0x07F30000-0x07F31B3C.\r\n2022-06-05 00:30:37,766 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\3488_2933405234485062022 size is 6972, Max size: 100000000\r\n2022-06-05 00:30:37,766 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\3488_2933405234485062022 (size 6972 bytes)\r\n2022-06-05 00:30:37,766 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x07F30000, size 8192 bytes.\r\n2022-06-05 00:30:37,829 [root] DEBUG: DLL loaded at 0x6A760000: C:\\Windows\\SYSTEM32\\rasman (0x19000 bytes).\r\n2022-06-05 00:30:37,829 [root] DEBUG: DLL loaded at 0x6A780000: C:\\Windows\\SYSTEM32\\rasapi32 (0x8f000 bytes).\r\n2022-06-05 00:30:37,844 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x4b8 and local view 0x6A750000 to global list.\r\n2022-06-05 00:30:37,875 [root] DEBUG: DLL loaded at 0x6A750000: C:\\Windows\\SYSTEM32\\rtutils (0x10000 bytes).\r\n2022-06-05 00:30:37,907 [root] DEBUG: DLL loaded at 0x72E70000: C:\\Windows\\system32\\mswsock (0x4e000 bytes).\r\n2022-06-05 00:30:37,938 [root] DEBUG: DLL unloaded from 0x6A760000.\r\n2022-06-05 00:30:37,954 [root] DEBUG: DLL loaded at 0x72EC0000: C:\\Windows\\SYSTEM32\\winhttp (0x9f000 bytes).\r\n2022-06-05 00:30:37,969 [root] DEBUG: DLL loaded at 0x73290000: C:\\Windows\\SYSTEM32\\IPHLPAPI (0x2f000 bytes).\r\n2022-06-05 00:30:37,985 [root] DEBUG: DLL loaded at 0x72F60000: C:\\Windows\\SYSTEM32\\ondemandconnroutehelper (0x10000 bytes).\r\n2022-06-05 00:30:37,985 [root] DEBUG: DLL loaded at 0x73F50000: C:\\Windows\\System32\\NSI (0x7000 bytes).\r\n2022-06-05 00:30:38,000 [root] DEBUG: DLL loaded at 0x6A730000: C:\\Windows\\SYSTEM32\\dhcpcsvc6 (0x13000 bytes).\r\n2022-06-05 00:30:38,016 [root] DEBUG: DLL loaded at 0x73270000: C:\\Windows\\SYSTEM32\\dhcpcsvc (0x14000 bytes).\r\n2022-06-05 00:30:38,047 [root] DEBUG: caller_dispatch: Adding region at 0x09EC0000 to caller regions list (ntdll::NtAllocateVirtualMemory returns to 0x09EC0F49, thread 2564).\r\n2022-06-05 00:30:38,047 [root] DEBUG: YaraScan: Scanning 0x09EC0000, size 0xf68\r\n2022-06-05 00:30:38,047 [root] DEBUG: DumpPEsInRange: Scanning range 0x09EC0000 - 0x09EC0F68.\r\n2022-06-05 00:30:38,047 [root] DEBUG: ScanForDisguisedPE: Size too small.\r\n2022-06-05 00:30:38,047 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\3488_306259235085062022 size is 3944, Max size: 100000000\r\n2022-06-05 00:30:38,079 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\3488_306259235085062022 (size 3944 bytes)\r\n2022-06-05 00:30:38,079 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x09EC0000, size 4096 bytes.\r\n2022-06-05 00:30:38,110 [root] DEBUG: DLL unloaded from 0x72EC0000.\r\n2022-06-05 00:30:38,157 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x66c and local view 0x0A150000 to global list.\r\n2022-06-05 00:30:38,172 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x670 and local view 0x6F1F0000 to global list.\r\n2022-06-05 00:30:38,188 [root] DEBUG: DLL loaded at 0x6F1F0000: C:\\Windows\\SYSTEM32\\DNSAPI (0x7c000 bytes).\r\n2022-06-05 00:30:38,219 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x698 and local view 0x72E60000 to global list.\r\n2022-06-05 00:30:38,219 [root] DEBUG: DLL loaded at 0x72E60000: C:\\Windows\\SYSTEM32\\WINNSI (0x8000 bytes).\r\n2022-06-05 00:30:38,250 [root] DEBUG: DLL loaded at 0x6ED50000: C:\\Windows\\System32\\rasadhlp (0x8000 bytes).\r\n2022-06-05 00:30:50,297 [root] DEBUG: caller_dispatch: Adding region at 0x09EB0000 to caller regions list (ntdll::NtAllocateVirtualMemory returns to 0x09EB01D0, thread 2564).\r\n2022-06-05 00:30:50,313 [root] DEBUG: YaraScan: Scanning 0x09EB0000, size 0x25a\r\n2022-06-05 00:30:50,313 [root] DEBUG: DumpPEsInRange: Scanning range 0x09EB0000 - 0x09EB025A.\r\n2022-06-05 00:30:50,313 [root] DEBUG: ScanForDisguisedPE: Size too small.\r\n2022-06-05 00:30:50,313 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\3488_27345812565385062022 size is 602, Max size: 100000000\r\n2022-06-05 00:30:50,328 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\3488_27345812565385062022 (size 602 bytes)\r\n2022-06-05 00:30:50,344 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x09EB0000, size 4096 bytes.\r\n2022-06-05 00:30:50,375 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x654 and local view 0x0A180000 to global list.\r\n2022-06-05 00:30:50,375 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x0A220000 for section view with handle 0x654.\r\n2022-06-05 00:30:50,422 [root] DEBUG: caller_dispatch: Adding region at 0x0A1B0000 to caller regions list (ntdll::NtAllocateVirtualMemory returns to 0x0A1B043A, thread 2564).\r\n2022-06-05 00:30:50,422 [root] DEBUG: YaraScan: Scanning 0x0A1B0000, size 0x469\r\n2022-06-05 00:30:50,422 [root] DEBUG: DumpPEsInRange: Scanning range 0x0A1B0000 - 0x0A1B0469.\r\n2022-06-05 00:30:50,422 [root] DEBUG: ScanForDisguisedPE: Size too small.\r\n2022-06-05 00:30:50,438 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\3488_1665092575385062022 size is 1129, Max size: 100000000\r\n2022-06-05 00:30:50,438 [root] DEBUG: DumpMemory: Payload successfully created: C:\\yqCVidmua\\CAPE\\3488_1665092575385062022 (size 1129 bytes)\r\n2022-06-05 00:30:50,438 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x0A1B0000, size 4096 bytes.\r\n2022-06-05 00:30:50,453 [root] DEBUG: DLL loaded at 0x6A690000: C:\\Windows\\WinSxS\\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.14393.0_none_88fef4c26039fb25\\comctl32 (0x94000 bytes).\r\n2022-06-05 00:30:50,485 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x6c4 and local view 0x71560000 to global list.\r\n2022-06-05 00:30:50,500 [root] DEBUG: DLL loaded at 0x71560000: C:\\Windows\\system32\\dwmapi (0x1f000 bytes).\r\n2022-06-05 00:30:50,516 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x6d8 and local view 0x0A1E0000 to global list.\r\n2022-06-05 00:30:50,532 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x0A1F0000 for section view with handle 0x6d8.\r\n2022-06-05 00:31:06,860 [root] DEBUG: DLL unloaded from 0x75840000.\r\n2022-06-05 00:32:36,984 [root] INFO: Analysis timeout hit, terminating analysis\r\n2022-06-05 00:32:36,984 [lib.api.process] INFO: Terminate event set for process 3488\r\n2022-06-05 00:32:36,984 [root] DEBUG: Terminate Event: Attempting to dump process 3488\r\n2022-06-05 00:32:36,984 [root] DEBUG: DoProcessDump: Dumping Imagebase at 0x00400000.\r\n2022-06-05 00:32:36,984 [root] DEBUG: DumpImageInCurrentProcess: Attempting to dump virtual PE image.\r\n2022-06-05 00:32:36,999 [root] DEBUG: DumpProcess: Instantiating PeParser with address: 0x00400000.\r\n2022-06-05 00:32:36,999 [root] DEBUG: DumpProcess: Module entry point VA is 0x00035C9E.\r\n2022-06-05 00:32:37,109 [lib.common.results] INFO: File C:\\yqCVidmua\\CAPE\\3488_3813373275062022 size is 215552, Max size: 100000000\r\n2022-06-05 00:32:37,140 [root] DEBUG: DumpProcess: Module image dump success - dump size 0x34a00.\r\n2022-06-05 00:32:37,140 [lib.api.process] INFO: Termination confirmed for process 3488\r\n2022-06-05 00:32:37,140 [root] INFO: Terminate event set for process 3488\r\n2022-06-05 00:32:37,140 [root] DEBUG: Terminate Event: CAPE shutdown complete for process 3488\r\n2022-06-05 00:32:37,156 [root] INFO: Created shutdown mutex\r\n2022-06-05 00:32:38,187 [root] INFO: Shutting down package\r\n2022-06-05 00:32:38,187 [root] INFO: Stopping auxiliary modules\r\n2022-06-05 00:32:38,312 [lib.common.results] WARNING: File C:\\yqCVidmua\\bin\\procmon.xml doesn't exist anymore\r\n2022-06-05 00:32:38,312 [root] INFO: Finishing auxiliary modules\r\n2022-06-05 00:32:38,312 [root] INFO: Shutting down pipe server and dumping dropped files\r\n2022-06-05 00:32:38,343 [lib.common.results] INFO: File C:\\Users\\Fifi\\AppData\\Roaming\\UaxdYP.exe size is 1403904, Max size: 100000000\r\n2022-06-05 00:32:38,359 [lib.common.results] INFO: File C:\\Users\\Fifi\\AppData\\Local\\Microsoft\\CLR_v4.0_32\\UsageLogs\\SKMBT_36352152405497.exe.log size is 933, Max size: 100000000\r\n2022-06-05 00:32:38,374 [root] WARNING: Folder at path \"C:\\yqCVidmua\\debugger\" does not exist, skipping\r\n2022-06-05 00:32:38,390 [root] WARNING: Folder at path \"C:\\yqCVidmua\\tlsdump\" does not exist, skipping\r\n2022-06-05 00:32:38,406 [root] INFO: Analysis completed\r\n```\nComment: Double checked and the agent is running properly out of `C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\StartUp`.\nComment: can you submit that sample capesandbox.com?\nComment: > can you submit that sample capesandbox.com?\r\n\r\nRegistered. `vvelox` just needs a account approved and I can. :)\nComment: Done\n\n> On 22 Jun 2022, at 17:07, Zane C. Bowers-Hadley ***@***.***> wrote:\n> \n> \n> can you submit that sample capesandbox.com?\n> \n> Registered. vvelox just needs a account approved and I can. :)\n> \n> \u2014\n> Reply to this email directly, view it on GitHub <https://github.com/kevoreilly/CAPEv2/issues/947#issuecomment-1163231053>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAOFH326HSHEFG3HXZG3Z2LVQMT2XANCNFSM5ZN3D5MA>.\n> You are receiving this because you commented.\n> \n\n\nComment: So it beings  uploading when I submit it and then I get a nginx 403 error.\r\n\r\n\nComment: Lol me too but only for that file, the rest works. So I guess it will keep magic till someone test that on their side\n\n> On 22 Jun 2022, at 17:15, Zane C. Bowers-Hadley ***@***.***> wrote:\n> \n> \n> So it beings uploading when I submit it and then I get a nginx 403 error.\n> \n> \u2014\n> Reply to this email directly, view it on GitHub <https://github.com/kevoreilly/CAPEv2/issues/947#issuecomment-1163242888>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAOFH3ZNN6B7AYUXB5N4AVDVQMU27ANCNFSM5ZN3D5MA>.\n> You are receiving this because you commented.\n> \n\n\nComment: So problem found.\r\n\r\n`C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\StartUp` does not start it with the proper perms and causes various issues on Win10.\r\n\r\nThe proper way to do it is drop the agent some place and set up a scheduled task to run it upon user login and have it run tell it to run with the highest privileges.\r\n\nComment: I'll get docs updated and will submit a pull request when I have time later. :)\r\n\nComment: Oh I remember to suffer that, but I don\u2019t remember how I executed that finally, but it was pretty similar. Thanks PR will be appreciated\n\n> On 22 Jun 2022, at 18:03, Zane C. Bowers-Hadley ***@***.***> wrote:\n> \n> \n> I'll get docs updated and will submit a pull request when I have time later. :)\n> \n> \u2014\n> Reply to this email directly, view it on GitHub <https://github.com/kevoreilly/CAPEv2/issues/947#issuecomment-1163307322>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAOFH37ATQEZADEDRO4FDDDVQM2O5ANCNFSM5ZN3D5MA>.\n> You are receiving this because you commented.\n> \n\n\nComment: Following up a bit more on the poetry bit was just looking at it a bit. Calling `poetry shell` to run the command can be avoided via calling `poetry run ....`. :)\r\n\nComment: Cant, try it and you will see why, im on phone\n\nEl mi\u00e9., 22 jun. 2022 19:05, Zane C. Bowers-Hadley ***@***.***>\nescribi\u00f3:\n\n> Following up a bit more on the poetry bit was just looking at it a bit.\n> Calling poetry shell to run the command can be avoided via calling poetry\n> run ..... :)\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/947#issuecomment-1163390292>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH37RUH666RHUVJCHPPDVQNBT5ANCNFSM5ZN3D5MA>\n> .\n> You are receiving this because you commented.Message ID:\n> ***@***.***>\n>\n\nComment: Sure you can, it just requires calling a script with all the required steps in it as it can't accept complex commands. :)\r\n\r\nSubmitted a PR for that and documenting the agent stuff.\r\n\nComment: ah, calling script yes, but i thought you was speaking about steps without script, as due to that pyproject.toml it was complain as it wasn't able to find venv and that is why i entered shell to enable venv",
+  "Title: Add aux module that can protect critical directories for CAPE analysis\nBody: Ported https://github.com/cuckoosandbox/cuckoo/pull/3136 to CAPE\r\n\r\nNOTE: Put location paths in the `locations` variable in the `start` method that you want to protect.",
+  "Title: Adding 'restart now' button to list of buttons to not click\nBody: This button is often seen upon reimage in a cloud environment, since the virtual disk has technically been switched from the OS's perspective. Don't restart!",
+  "Title: Adding filepickup aux module\nBody: This module allows you to pick up a file that a sample may have dropped, even with `free=yes`.\nComment: interesting feature, thanks",
+  "Title: Adding ability to toggle what aux modules can run in VM\nBody: This PR does the following:\r\n-> Adds each auxiliary module to the `auxiliary_module` section in `auxiliary.conf`.\r\n-> Allows these config values to control if a module is \"enabled\"\r\n-> In `analyzer.py`, check if module is enabled and then start it\r\n\r\n\r\nI'm not sure how the `run()` method in auxiliary modules is called, but the `enabled` flag should be used there too.\nComment: I need those debug strings in analyzer, that is useful to debug problems with them, in past we saw that pillow was able to take around of 10mins to start, apart of that is good to go. thank you",
+  "Title: Changing resultserver file upload logs clearer\nBody: If a file was uploaded, we didn't know what file it was.\nComment: We had some discussion in one of the issues to not use f-strings for logging due to performance, im on phone, but if you interested to see that discussion it shouls be easy to find, but yes this is a good pr, but can ypu change it to use old format instead of f-steings and i will merge",
+  "Title: Fresh install on Ubuntu 20.04 errors in cape2.sh script when installing greenlet package\nBody: # Current Behavior\r\n\r\nRunning the `cape2.sh` script to install on a freshly deployed Ubuntu 20.04 VM from an ISO that was downloaded a few days ago and the following error is being displayed when going through the install script. \r\n\r\nAfter creation of 20.04 LTS VM, available patches to update were applied. \r\n\r\n## Failure Logs\r\n\r\n```\r\n+] Installing CAPEv2\r\nRequirement already satisfied: poetry in /usr/local/lib/python3.10/dist-packages (1.1.13)\r\nRequirement already satisfied: html5lib<2.0,>=1.0 in /usr/local/lib/python3.10/dist-packages (from poetry) (1.1)\r\nRequirement already satisfied: cachy<0.4.0,>=0.3.0 in /usr/local/lib/python3.10/dist-packages (from poetry) (0.3.0)\r\nRequirement already satisfied: virtualenv<21.0.0,>=20.0.26 in /usr/local/lib/python3.10/dist-packages (from poetry) (20.14.1)\r\nRequirement already satisfied: pkginfo<2.0,>=1.4 in /usr/local/lib/python3.10/dist-packages (from poetry) (1.8.3)\r\nRequirement already satisfied: cachecontrol[filecache]<0.13.0,>=0.12.9 in /usr/local/lib/python3.10/dist-packages (from poetry) (0.12.11)\r\nRequirement already satisfied: requests-toolbelt<0.10.0,>=0.9.1 in /usr/local/lib/python3.10/dist-packages (from poetry) (0.9.1)\r\nRequirement already satisfied: shellingham<2.0,>=1.1 in /usr/local/lib/python3.10/dist-packages (from poetry) (1.4.0)\r\nRequirement already satisfied: poetry-core<1.1.0,>=1.0.7 in /usr/local/lib/python3.10/dist-packages (from poetry) (1.0.8)\r\nRequirement already satisfied: crashtest<0.4.0,>=0.3.0 in /usr/local/lib/python3.10/dist-packages (from poetry) (0.3.1)\r\nRequirement already satisfied: cleo<0.9.0,>=0.8.1 in /usr/local/lib/python3.10/dist-packages (from poetry) (0.8.1)\r\nRequirement already satisfied: keyring>=21.2.0 in /usr/lib/python3/dist-packages (from poetry) (23.5.0)\r\nRequirement already satisfied: packaging<21.0,>=20.4 in /usr/local/lib/python3.10/dist-packages (from poetry) (20.9)\r\nRequirement already satisfied: requests<3.0,>=2.18 in /usr/lib/python3/dist-packages (from poetry) (2.25.1)\r\nRequirement already satisfied: clikit<0.7.0,>=0.6.2 in /usr/local/lib/python3.10/dist-packages (from poetry) (0.6.2)\r\nRequirement already satisfied: pexpect<5.0.0,>=4.7.0 in /usr/lib/python3/dist-packages (from poetry) (4.8.0)\r\nRequirement already satisfied: tomlkit<1.0.0,>=0.7.0 in /usr/local/lib/python3.10/dist-packages (from poetry) (0.11.0)\r\nRequirement already satisfied: msgpack>=0.5.2 in /usr/local/lib/python3.10/dist-packages (from cachecontrol[filecache]<0.13.0,>=0.12.9->poetry) (1.0.4)\r\nRequirement already satisfied: lockfile>=0.9 in /usr/lib/python3/dist-packages (from cachecontrol[filecache]<0.13.0,>=0.12.9->poetry) (0.12.2)\r\nRequirement already satisfied: pylev<2.0,>=1.3 in /usr/local/lib/python3.10/dist-packages (from clikit<0.7.0,>=0.6.2->poetry) (1.4.0)\r\nRequirement already satisfied: pastel<0.3.0,>=0.2.0 in /usr/local/lib/python3.10/dist-packages (from clikit<0.7.0,>=0.6.2->poetry) (0.2.1)\r\nRequirement already satisfied: six>=1.9 in /usr/lib/python3/dist-packages (from html5lib<2.0,>=1.0->poetry) (1.16.0)\r\nRequirement already satisfied: webencodings in /usr/local/lib/python3.10/dist-packages (from html5lib<2.0,>=1.0->poetry) (0.5.1)\r\nRequirement already satisfied: pyparsing>=2.0.2 in /usr/lib/python3/dist-packages (from packaging<21.0,>=20.4->poetry) (2.4.7)\r\nRequirement already satisfied: distlib<1,>=0.3.1 in /usr/local/lib/python3.10/dist-packages (from virtualenv<21.0.0,>=20.0.26->poetry) (0.3.4)\r\nRequirement already satisfied: filelock<4,>=3.2 in /usr/local/lib/python3.10/dist-packages (from virtualenv<21.0.0,>=20.0.26->poetry) (3.7.1)\r\nRequirement already satisfied: platformdirs<3,>=2 in /usr/local/lib/python3.10/dist-packages (from virtualenv<21.0.0,>=20.0.26->poetry) (2.5.2)\r\nInstalling dependencies from lock file\r\n\r\nPackage operations: 193 installs, 0 updates, 0 removals\r\n\r\n  \u2022 Installing pyasn1 (0.4.8)\r\n  \u2022 Installing pycparser (2.21)\r\n  \u2022 Installing tzdata (2022.1)\r\n  \u2022 Installing six (1.16.0)\r\n  \u2022 Installing certifi (2022.5.18.1)\r\n  \u2022 Installing cffi (1.15.0)\r\n  \u2022 Installing charset-normalizer (2.0.12)\r\n  \u2022 Installing cxxfilt (0.2.2)\r\n  \u2022 Installing future (0.18.2)\r\n  \u2022 Installing idna (3.3)\r\n  \u2022 Installing jmespath (0.10.0)\r\n  \u2022 Installing colorama (0.4.4)\r\n  \u2022 Installing lxml (4.9.0)\r\n  \u2022 Installing msgpack (1.0.4)\r\n  \u2022 Installing ordered-set (4.1.0)\r\n  \u2022 Installing pyasn1-modules (0.2.8)\r\n  \u2022 Installing pyparsing (2.4.7)\r\n  \u2022 Installing python-dateutil (2.8.2)\r\n  \u2022 Installing pytz-deprecation-shim (0.1.0.post0)\r\n  \u2022 Installing sortedcontainers (2.4.0)\r\n  \u2022 Installing urllib3 (1.25.11)\r\n  \u2022 Installing weakrefmethod (1.0.3)\r\n  \u2022 Installing asgiref (3.5.2)\r\n  \u2022 Installing attrs (21.2.0)\r\n  \u2022 Installing botocore (1.18.18)\r\n  \u2022 Installing cryptography (3.3.2)\r\n  \u2022 Installing capstone (4.0.2)\r\n  \u2022 Installing decorator (4.4.2)\r\n  \u2022 Installing cycler (0.11.0)\r\n  \u2022 Installing defusedxml (0.7.1)\r\n  \u2022 Installing distlib (0.3.4)\r\n  \u2022 Installing ecdsa (0.17.0)\r\n  \u2022 Installing filelock (3.7.1)\r\n  \u2022 Installing funcy (1.16)\r\n  \u2022 Installing greenlet (0.4.16)\r\n  \u2022 Installing ida-netnode (3.0)\r\n  \u2022 Installing iniconfig (1.1.1)\r\n  \u2022 Installing intervaltree (3.1.0)\r\n  \u2022 Installing kiwisolver (1.4.2)\r\n  \u2022 Installing lief (0.11.0)\r\n  \u2022 Installing log-symbols (0.0.14)\r\n  \u2022 Installing mccabe (0.6.1)\r\n  \u2022 Installing mixbox (1.0.5)\r\n  \u2022 Installing numpy (1.19.1)\r\n  \u2022 Installing oauthlib (3.2.0)\r\n  \u2022 Installing olefile (0.46)\r\n  \u2022 Installing packaging (21.3)\r\n  \u2022 Installing pefile (2021.9.3)\r\n  \u2022 Installing pillow (9.1.1)\r\n  \u2022 Installing platformdirs (2.5.2)\r\n  \u2022 Installing pluggy (0.13.1)\r\n  \u2022 Installing py (1.11.0)\r\n\r\n  EnvCommandError\r\n\r\n  Command ['/opt/CAPEv2/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/pip', 'install', '--no-deps', '/opt/CAPEv2/.cache/pypoetry/artifacts/a2/de/c6/7bd9111ed1a35477c1cfdf7491b95b5fd55c1002086c61332203480427/greenlet-0.4.16.tar.gz'] errored with the following return code 1, and output: \r\n  Processing ./.cache/pypoetry/artifacts/a2/de/c6/7bd9111ed1a35477c1cfdf7491b95b5fd55c1002086c61332203480427/greenlet-0.4.16.tar.gz\r\n    Preparing metadata (setup.py): started\r\n    Preparing metadata (setup.py): finished with status 'done'\r\n  Building wheels for collected packages: greenlet\r\n    Building wheel for greenlet (setup.py): started\r\n    Building wheel for greenlet (setup.py): finished with status 'error'\r\n    error: subprocess-exited-with-error\r\n    \r\n    \u00d7 python setup.py bdist_wheel did not run successfully.\r\n    \u2502 exit code: 1\r\n    \u2570\u2500> [17 lines of output]\r\n        running bdist_wheel\r\n        running build\r\n        running build_ext\r\n        building 'greenlet' extension\r\n        creating build\r\n        creating build/temp.linux-x86_64-cpython-310\r\n        x86_64-linux-gnu-gcc -Wno-unused-result -Wsign-compare -DNDEBUG -g -fwrapv -O2 -Wall -g -fstack-protector-strong -Wformat -Werror=format-security -g -fwrapv -O2 -fPIC -I/opt/CAPEv2/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/include -I/usr/include/python3.10 -c greenlet.c -o build/temp.linux-x86_64-cpython-310/greenlet.o\r\n        greenlet.c: In function \u2018g_calltrace\u2019:\r\n        greenlet.c:554:17: error: \u2018PyThreadState\u2019 {aka \u2018struct _ts\u2019} has no member named \u2018use_tracing\u2019; did you mean \u2018tracing\u2019?\r\n          554 |         tstate->use_tracing = 0;\r\n              |                 ^~~~~~~~~~~\r\n              |                 tracing\r\n        greenlet.c:557:17: error: \u2018PyThreadState\u2019 {aka \u2018struct _ts\u2019} has no member named \u2018use_tracing\u2019; did you mean \u2018tracing\u2019?\r\n          557 |         tstate->use_tracing = (tstate->tracing <= 0 &&\r\n              |                 ^~~~~~~~~~~\r\n              |                 tracing\r\n        error: command '/usr/bin/x86_64-linux-gnu-gcc' failed with exit code 1\r\n        [end of output]\r\n    \r\n    note: This error originates from a subprocess, and is likely not a problem with pip.\r\n    ERROR: Failed building wheel for greenlet\r\n    Running setup.py clean for greenlet\r\n  Failed to build greenlet\r\n  Installing collected packages: greenlet\r\n    Running setup.py install for greenlet: started\r\n    Running setup.py install for greenlet: finished with status 'error'\r\n    error: subprocess-exited-with-error\r\n    \r\n    \u00d7 Running setup.py install for greenlet did not run successfully.\r\n    \u2502 exit code: 1\r\n    \u2570\u2500> [19 lines of output]\r\n        running install\r\n        /opt/CAPEv2/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/lib/python3.10/site-packages/setuptools/command/install.py:34: SetuptoolsDeprecationWarning: setup.py install is deprecated. Use build and pip and other standards-based tools.\r\n          warnings.warn(\r\n        running build\r\n        running build_ext\r\n        building 'greenlet' extension\r\n        creating build\r\n        creating build/temp.linux-x86_64-cpython-310\r\n        x86_64-linux-gnu-gcc -Wno-unused-result -Wsign-compare -DNDEBUG -g -fwrapv -O2 -Wall -g -fstack-protector-strong -Wformat -Werror=format-security -g -fwrapv -O2 -fPIC -I/opt/CAPEv2/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/include -I/usr/include/python3.10 -c greenlet.c -o build/temp.linux-x86_64-cpython-310/greenlet.o\r\n        greenlet.c: In function \u2018g_calltrace\u2019:\r\n        greenlet.c:554:17: error: \u2018PyThreadState\u2019 {aka \u2018struct _ts\u2019} has no member named \u2018use_tracing\u2019; did you mean \u2018tracing\u2019?\r\n          554 |         tstate->use_tracing = 0;\r\n              |                 ^~~~~~~~~~~\r\n              |                 tracing\r\n        greenlet.c:557:17: error: \u2018PyThreadState\u2019 {aka \u2018struct _ts\u2019} has no member named \u2018use_tracing\u2019; did you mean \u2018tracing\u2019?\r\n          557 |         tstate->use_tracing = (tstate->tracing <= 0 &&\r\n              |                 ^~~~~~~~~~~\r\n              |                 tracing\r\n        error: command '/usr/bin/x86_64-linux-gnu-gcc' failed with exit code 1\r\n        [end of output]\r\n    \r\n    note: This error originates from a subprocess, and is likely not a problem with pip.\r\n  error: legacy-install-failure\r\n  \r\n  \u00d7 Encountered error while trying to install package.\r\n  \u2570\u2500> greenlet\r\n  \r\n  note: This is an issue with the package mentioned above, not pip.\r\n  hint: See above for output from the failure.\r\n  WARNING: You are using pip version 22.0.4; however, version 22.1.2 is available.\r\n  You should consider upgrading via the '/opt/CAPEv2/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.10/bin/python -m pip install --upgrade pip' command.\r\n  \r\n\r\n  at /usr/local/lib/python3.10/dist-packages/poetry/utils/env.py:1195 in _run\r\n      1191\u2502                 output = subprocess.check_output(\r\n      1192\u2502                     cmd, stderr=subprocess.STDOUT, **kwargs\r\n      1193\u2502                 )\r\n      1194\u2502         except CalledProcessError as e:\r\n    \u2192 1195\u2502             raise EnvCommandError(e, input=input_)\r\n      1196\u2502 \r\n      1197\u2502         return decode(output)\r\n      1198\u2502 \r\n      1199\u2502     def execute(self, bin, *args, **kwargs):\r\n\r\n  \u2022 Installing pycodestyle (2.8.0)\r\n  \u2022 Installing pyflakes (2.4.0)\r\n  \u2022 Installing pyrsistent (0.18.1)\r\n```\r\n\nComment: Hello welcome to OS updates and dependencies hell. for solution see https://github.com/kevoreilly/CAPEv2/discussions/916. You will need to fix that on your own and if you can provide proper versions that builds. That will help to others\nComment: greenlet that i have on my ubuntu is greenlet==1.1.2 i have updated that discussion\nComment: You know what I've just discovered, I'm running Ubuntu `22.04` not `20.04`.\r\nI read the requirement multiple times, but I guess my brain just wasn't taking it in.\r\nI'll go back and run up a 20.04 install and try again.\nComment: closed as issue itself not make sense due to wrong OS version",
+  "Title: Update docs for `dllloader` option\nBody: https://github.com/kevoreilly/CAPEv2/blob/1afa0e2f4f7f3a8792ec1b80a1ad2aaaced538cc/analyzer/windows/modules/packages/dll.py#L24",
+  "Title: Add ability to run multiple dll functions by name, either by specification, or by discovery\nBody: Modifying the `dll.py` package to allow the ability to run multiple DLL functions if specified by name in the `function` option, or if `pefile` is installed on the guest then we can dynamically find libraries to run.\nComment: Hello, that won't work for many cases, i did that in past, and i have code if you wants that extracts exports with pefile on server side and pass them as parameter and we have cases where dll performs unpacking and exposing exports after dllmain. + we saw huge performance hurting with DLL detonation\nComment: > Hello, that won't work for many cases, i did that in past, and i have code if you wants that extracts exports with pefile on server side and pass them as parameter and we have cases where dll performs unpacking and exposing exports after dllmain. + we saw huge performance hurting with DLL detonation\r\n\r\nHey @doomedraven, that makes sense. I'll close the ticket\nComment: here is how i had added that\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/lib/cuckoo/core/scheduler.py#L238\r\n```\r\noptions[\"exports\"] = PortableExecutable(self.task.target).get_dll_exports()\r\n```\r\n\r\nso you just need to add something like this. as you already have list of exports so you don't need to add pefile inside of the vm\r\n```\r\ndll_exports_num = min(len(self.config.exports.split(\",\")), 8)\r\nif dll_exports_num:\r\n            function = self.options.get(\"function\") or f\"#1-{dll_exports_num}\"\r\n```\nComment: I'm briefly reopening this ticket to update the PR with a commit before I close it again.\r\n\r\nThis PR is for those who WANT the default behaviour of the `dll.py` package to execute all available exports (up to a limit), and for those who WANT to be able to request function names to be used instead of ordinal numbers. \r\n\r\nObviously this is not for everyone, as @doomedraven has mentioned.\r\n\r\nWith their suggestions, `pefile` is no longer required on the guest and the exports are discovered server-side.\r\n\r\nThis PR also allow multiple functions to be specified (separated by `,`s).\nComment: Added `enable_multi` flag that can cause the default logic to be multiple functions\nComment: this is fine to merge now no?\nComment: > this is fine to merge now no?\r\n\r\nYes I believe so\nComment: thank you",
+  "Title: Revert \"pass list to CAPA get_rules\"\nBody: Reverts kevoreilly/CAPEv2#935",
+  "Title: Removing redundant log that occurs too frequently\nBody: None",
+  "Title: Fixing REST responses, adding helpful log, fixing path check\nBody: - `.format` wasn't being used\r\n- fixed incorrectly named `esp` variable\r\n- added warning log if there is no `lite.report` and `lite` is requested\r\n- merging conditional checks\nComment: thank you",
+  "Title: pass list to CAPA get_rules\nBody: Pass a list to CAPA get_rules function instead of a string. Fixes #934\nComment: thank you",
+  "Title: CAPA rule path does not exist\nBody: # Expected Behavior\r\n\r\nCAPA is able to load its rules.\r\n\r\n# Current Behavior\r\n\r\nCAPA is unable to load rules. Splits the file path into a list and loops through each character. Enumerates the / directory then moves to the next character o at which point it errors as the path does not exist:\r\nOSError: rule path o does not exist or cannot be accessed\r\n\r\n# Failure Information (for bugs)\r\n\r\nThe argument capa.main.RULES_PATH_DEFAULT_STRING passed to get_rules is a string, but should be a list of file paths:\r\nhttps://github.com/kevoreilly/CAPEv2/blob/d9124712cabe5bf9a7a3a98da93cbdbd37a53da3/lib/cuckoo/common/integrations/capa.py#L44\r\n\r\n## Steps to Reproduce\r\n\r\nEnable CAPA in the config and run web server.\r\n\r\n## Context\r\n\r\ncommit 1bd0bf62055fc3741ea19a85d510d54052dbf431\r\nUbuntu 20.04.04 LTS\r\n\r\n## Failure Logs\r\n\r\n  File \"/opt/CAPEv2/web/../lib/cuckoo/common/integrations/parse_pe.py\", line 74, in <module>\r\n    from lib.cuckoo.common.integrations.capa import HAVE_FLARE_CAPA, flare_capa_details\r\n  File \"/opt/CAPEv2/web/../lib/cuckoo/common/integrations/capa.py\", line 48, in <module>\r\n    rules = capa.main.get_rules(capa.main.RULES_PATH_DEFAULT_STRING, disable_progress=True)\r\n  File \"/usr/local/lib/python3.8/dist-packages/capa/main.py\", line 580, in get_rules\r\n    raise IOError(\"rule path %s does not exist or cannot be accessed\" % rule_path)\r\nOSError: rule path o does not exist or cannot be accessed\nComment: Hello, thanks, i saw you pushed fix to your fork, are you gonna to PR it? and thanks ",
+  "Title: Fixing bug where 'all' report format did not contain all\nBody: The \"all\" format was only returning the report JSON, which is not what it is intended for.",
+  "Title: Fix the call to make_bytes.\nBody: A ')' was closing the wrong thing.",
+  "Title: Casting to string after forcing int\nBody: Bug fix after this https://github.com/kevoreilly/CAPEv2/pull/929",
+  "Title: Updating the line length\nBody: REL: https://github.com/kevoreilly/CAPEv2/pull/929#issuecomment-1158987959\nComment: now you know better the docs than I :) ",
+  "Title: Convert task id to int, change disable message, enforcing line length format\nBody: - Task ID is parsed from the REST API as a string, but must be an integer for the Mongo connection to delete it https://github.com/kevoreilly/CAPEv2/blob/d426faabb6de16d4692cab651673d074f7c69bb5/dev_utils/mongodb.py#L141\r\n- Looks like a copy-paste error in the \"disabled\" message for apiconf.taskreport endpoint.\r\n- Enforcing line length of 120 characters\nComment: line size is 132 ;) ",
+  "Title: Merging uac_bypass into bypass\nBody: REL: https://github.com/kevoreilly/community/pull/284",
+  "Title: Adding descriptions to signature categories in docs\nBody: None",
+  "Title: Updating the suggested signature categories\nBody: Related to https://github.com/kevoreilly/community/pull/282",
+  "Title: Issue with libvirt-python and poetry\nBody:  \u2022 Installing libvirt-python (8.4.0): Failed\r\n\r\n  EnvCommandError\r\n\r\n  Command ['/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/bin/pip', 'install', '--no-deps', '/home/user1/.cache/pypoetry/artifacts/dd/4a/00/fdc2d831f06c6d97eda2c149e0d13bb97da62818638eedd26465eb3e76/libvirt-python-8.4.0.tar.gz'] errored with the following return code 1, and output: \r\n  Processing /home/user1/.cache/pypoetry/artifacts/dd/4a/00/fdc2d831f06c6d97eda2c149e0d13bb97da62818638eedd26465eb3e76/libvirt-python-8.4.0.tar.gz\r\n    Preparing metadata (setup.py): started\r\n    Preparing metadata (setup.py): finished with status 'done'\r\n  Building wheels for collected packages: libvirt-python\r\n    Building wheel for libvirt-python (setup.py): started\r\n    Building wheel for libvirt-python (setup.py): finished with status 'error'\r\n    error: subprocess-exited-with-error\r\n    \r\n    \u00d7 python setup.py bdist_wheel did not run successfully.\r\n    \u2502 exit code: 1\r\n    \u2570\u2500> [55 lines of output]\r\n        Package libvirt was not found in the pkg-config search path.\r\n        Perhaps you should add the directory containing `libvirt.pc'\r\n        to the PKG_CONFIG_PATH environment variable\r\n        No package 'libvirt' found\r\n        Package libvirt was not found in the pkg-config search path.\r\n        Perhaps you should add the directory containing `libvirt.pc'\r\n        to the PKG_CONFIG_PATH environment variable\r\n        No package 'libvirt' found\r\n        running bdist_wheel\r\n        running build\r\n        running build_py\r\n        Package libvirt was not found in the pkg-config search path.\r\n        Perhaps you should add the directory containing `libvirt.pc'\r\n        to the PKG_CONFIG_PATH environment variable\r\n        No package 'libvirt' found\r\n        Traceback (most recent call last):\r\n          File \"<string>\", line 2, in <module>\r\n          File \"<pip-setuptools-caller>\", line 34, in <module>\r\n          File \"/tmp/pip-req-build-qm_ad9k7/setup.py\", line 328, in <module>\r\n            setup(name = 'libvirt-python',\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/__init__.py\", line 87, in setup\r\n            return distutils.core.setup(**attrs)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/core.py\", line 148, in setup\r\n            return run_commands(dist)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/core.py\", line 163, in run_commands\r\n            dist.run_commands()\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/dist.py\", line 967, in run_commands\r\n            self.run_command(cmd)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/dist.py\", line 1214, in run_command\r\n            super().run_command(command)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/dist.py\", line 986, in run_command\r\n            cmd_obj.run()\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/wheel/bdist_wheel.py\", line 299, in run\r\n            self.run_command('build')\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/cmd.py\", line 313, in run_command\r\n            self.distribution.run_command(command)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/dist.py\", line 1214, in run_command\r\n            super().run_command(command)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/dist.py\", line 986, in run_command\r\n            cmd_obj.run()\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/command/build.py\", line 136, in run\r\n            self.run_command(cmd_name)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/cmd.py\", line 313, in run_command\r\n            self.distribution.run_command(command)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/dist.py\", line 1214, in run_command\r\n            super().run_command(command)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/dist.py\", line 986, in run_command\r\n            cmd_obj.run()\r\n          File \"/tmp/pip-req-build-qm_ad9k7/setup.py\", line 152, in run\r\n            check_minimum_libvirt_version()\r\n          File \"/tmp/pip-req-build-qm_ad9k7/setup.py\", line 43, in check_minimum_libvirt_version\r\n            subprocess.check_call([\"pkg-config\",\r\n          File \"/usr/lib/python3.8/subprocess.py\", line 364, in check_call\r\n            raise CalledProcessError(retcode, cmd)\r\n        subprocess.CalledProcessError: Command '['pkg-config', '--print-errors', '--atleast-version=0.9.11', 'libvirt']' returned non-zero exit status 1.\r\n        [end of output]\r\n    \r\n    note: This error originates from a subprocess, and is likely not a problem with pip.\r\n    ERROR: Failed building wheel for libvirt-python\r\n    Running setup.py clean for libvirt-python\r\n    error: subprocess-exited-with-error\r\n    \r\n    \u00d7 python setup.py clean did not run successfully.\r\n    \u2502 exit code: 1\r\n    \u2570\u2500> [24 lines of output]\r\n        Package libvirt was not found in the pkg-config search path.\r\n        Perhaps you should add the directory containing `libvirt.pc'\r\n        to the PKG_CONFIG_PATH environment variable\r\n        No package 'libvirt' found\r\n        Package libvirt was not found in the pkg-config search path.\r\n        Perhaps you should add the directory containing `libvirt.pc'\r\n        to the PKG_CONFIG_PATH environment variable\r\n        No package 'libvirt' found\r\n        Traceback (most recent call last):\r\n          File \"<string>\", line 2, in <module>\r\n          File \"<pip-setuptools-caller>\", line 34, in <module>\r\n          File \"/tmp/pip-req-build-qm_ad9k7/setup.py\", line 328, in <module>\r\n            setup(name = 'libvirt-python',\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/__init__.py\", line 87, in setup\r\n            return distutils.core.setup(**attrs)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/core.py\", line 135, in setup\r\n            ok = dist.parse_command_line()\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/dist.py\", line 484, in parse_command_line\r\n            args = self._parse_command_opts(parser, args)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/dist.py\", line 1104, in _parse_command_opts\r\n            nargs = _Distribution._parse_command_opts(self, parser, args)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/dist.py\", line 556, in _parse_command_opts\r\n            raise DistutilsClassError(msg % cmd_class)\r\n        distutils.errors.DistutilsClassError: command class <class '__main__.my_clean'> must provide 'user_options' attribute (a list of tuples)\r\n        [end of output]\r\n    \r\n    note: This error originates from a subprocess, and is likely not a problem with pip.\r\n    ERROR: Failed cleaning build dir for libvirt-python\r\n  Failed to build libvirt-python\r\n  Installing collected packages: libvirt-python\r\n    Running setup.py install for libvirt-python: started\r\n    Running setup.py install for libvirt-python: finished with status 'error'\r\n    error: subprocess-exited-with-error\r\n    \r\n    \u00d7 Running setup.py install for libvirt-python did not run successfully.\r\n    \u2502 exit code: 1\r\n    \u2570\u2500> [59 lines of output]\r\n        Package libvirt was not found in the pkg-config search path.\r\n        Perhaps you should add the directory containing `libvirt.pc'\r\n        to the PKG_CONFIG_PATH environment variable\r\n        No package 'libvirt' found\r\n        Package libvirt was not found in the pkg-config search path.\r\n        Perhaps you should add the directory containing `libvirt.pc'\r\n        to the PKG_CONFIG_PATH environment variable\r\n        No package 'libvirt' found\r\n        running install\r\n        /home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/command/install.py:34: SetuptoolsDeprecationWarning: setup.py install is deprecated. Use build and pip and other standards-based tools.\r\n          warnings.warn(\r\n        running build\r\n        running build_py\r\n        Package libvirt was not found in the pkg-config search path.\r\n        Perhaps you should add the directory containing `libvirt.pc'\r\n        to the PKG_CONFIG_PATH environment variable\r\n        No package 'libvirt' found\r\n        Traceback (most recent call last):\r\n          File \"<string>\", line 2, in <module>\r\n          File \"<pip-setuptools-caller>\", line 34, in <module>\r\n          File \"/tmp/pip-req-build-qm_ad9k7/setup.py\", line 328, in <module>\r\n            setup(name = 'libvirt-python',\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/__init__.py\", line 87, in setup\r\n            return distutils.core.setup(**attrs)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/core.py\", line 148, in setup\r\n            return run_commands(dist)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/core.py\", line 163, in run_commands\r\n            dist.run_commands()\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/dist.py\", line 967, in run_commands\r\n            self.run_command(cmd)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/dist.py\", line 1214, in run_command\r\n            super().run_command(command)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/dist.py\", line 986, in run_command\r\n            cmd_obj.run()\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/command/install.py\", line 68, in run\r\n            return orig.install.run(self)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/command/install.py\", line 670, in run\r\n            self.run_command('build')\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/cmd.py\", line 313, in run_command\r\n            self.distribution.run_command(command)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/dist.py\", line 1214, in run_command\r\n            super().run_command(command)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/dist.py\", line 986, in run_command\r\n            cmd_obj.run()\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/command/build.py\", line 136, in run\r\n            self.run_command(cmd_name)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/cmd.py\", line 313, in run_command\r\n            self.distribution.run_command(command)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/dist.py\", line 1214, in run_command\r\n            super().run_command(command)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/dist.py\", line 986, in run_command\r\n            cmd_obj.run()\r\n          File \"/tmp/pip-req-build-qm_ad9k7/setup.py\", line 152, in run\r\n            check_minimum_libvirt_version()\r\n          File \"/tmp/pip-req-build-qm_ad9k7/setup.py\", line 43, in check_minimum_libvirt_version\r\n            subprocess.check_call([\"pkg-config\",\r\n          File \"/usr/lib/python3.8/subprocess.py\", line 364, in check_call\r\n            raise CalledProcessError(retcode, cmd)\r\n        subprocess.CalledProcessError: Command '['pkg-config', '--print-errors', '--atleast-version=0.9.11', 'libvirt']' returned non-zero exit status 1.\r\n        [end of output]\r\n    \r\n    note: This error originates from a subprocess, and is likely not a problem with pip.\r\n  error: legacy-install-failure\r\n  \r\n  \u00d7 Encountered error while trying to install package.\r\n  \u2570\u2500> libvirt-python\r\n  \r\n  note: This is an issue with the package mentioned above, not pip.\r\n  hint: See above for output from the failure.\r\n  WARNING: You are using pip version 22.0.4; however, version 22.1.2 is available.\r\n  You should consider upgrading via the '/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/bin/python -m pip install --upgrade pip' command.\r\n  \r\n\r\n  at /usr/local/lib/python3.8/dist-packages/poetry/utils/env.py:1195 in _run\r\n      1191\u2502                 output = subprocess.check_output(\r\n      1192\u2502                     cmd, stderr=subprocess.STDOUT, **kwargs\r\n      1193\u2502                 )\r\n      1194\u2502         except CalledProcessError as e:\r\n    \u2192 1195\u2502             raise EnvCommandError(e, input=input_)\r\n      1196\u2502 \r\n      1197\u2502         return decode(output)\r\n      1198\u2502 \r\n      1199\u2502     def execute(self, bin, *args, **kwargs):\r\n\r\n  \u2022 Installing lnkparse3 (1.2.0)\r\n  \u2022 Installing maec (4.1.0.17)\r\n  \u2022 Installing netstruct (1.1.2)\r\n  \u2022 Installing nose (1.3.7)\r\n  \u2022 Installing oletools (0.60)\r\n  \u2022 Installing openpyxl (3.0.7)\r\n  \u2022 Installing orjson (3.6.0)\r\n  \u2022 Installing pebble (4.6.3)\r\n  \u2022 Installing pre-commit (2.19.0)\r\n  \u2022 Installing psutil (5.8.0)\r\n  \u2022 Installing psycopg2 (2.9.3): Installing...\r\n  \u2022 Installing pyattck (5.2.0)\r\n  \u2022 Installing pydeep (0.4)\r\n  \u2022 Installing pygal (2.4.0)\r\n  \u2022 Installing pyinstaller (4.4)\r\n  \u2022 Installing libvirt-python (8.4.0): Failed\r\n\r\n  EnvCommandError\r\n\r\n  Command ['/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/bin/pip', 'install', '--no-deps', '/home/user1/.cache/pypoetry/artifacts/dd/4a/00/fdc2d831f06c6d97eda2c149e0d13bb97da62818638eedd26465eb3e76/libvirt-python-8.4.0.tar.gz'] errored with the following return code 1, and output: \r\n  Processing /home/user1/.cache/pypoetry/artifacts/dd/4a/00/fdc2d831f06c6d97eda2c149e0d13bb97da62818638eedd26465eb3e76/libvirt-python-8.4.0.tar.gz\r\n    Preparing metadata (setup.py): started\r\n    Preparing metadata (setup.py): finished with status 'done'\r\n  Building wheels for collected packages: libvirt-python\r\n    Building wheel for libvirt-python (setup.py): started\r\n    Building wheel for libvirt-python (setup.py): finished with status 'error'\r\n    error: subprocess-exited-with-error\r\n    \r\n    \u00d7 python setup.py bdist_wheel did not run successfully.\r\n    \u2502 exit code: 1\r\n    \u2570\u2500> [55 lines of output]\r\n        Package libvirt was not found in the pkg-config search path.\r\n        Perhaps you should add the directory containing `libvirt.pc'\r\n        to the PKG_CONFIG_PATH environment variable\r\n        No package 'libvirt' found\r\n        Package libvirt was not found in the pkg-config search path.\r\n        Perhaps you should add the directory containing `libvirt.pc'\r\n        to the PKG_CONFIG_PATH environment variable\r\n        No package 'libvirt' found\r\n        running bdist_wheel\r\n        running build\r\n        running build_py\r\n        Package libvirt was not found in the pkg-config search path.\r\n        Perhaps you should add the directory containing `libvirt.pc'\r\n        to the PKG_CONFIG_PATH environment variable\r\n        No package 'libvirt' found\r\n        Traceback (most recent call last):\r\n          File \"<string>\", line 2, in <module>\r\n          File \"<pip-setuptools-caller>\", line 34, in <module>\r\n          File \"/tmp/pip-req-build-qm_ad9k7/setup.py\", line 328, in <module>\r\n            setup(name = 'libvirt-python',\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/__init__.py\", line 87, in setup\r\n            return distutils.core.setup(**attrs)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/core.py\", line 148, in setup\r\n            return run_commands(dist)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/core.py\", line 163, in run_commands\r\n            dist.run_commands()\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/dist.py\", line 967, in run_commands\r\n            self.run_command(cmd)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/dist.py\", line 1214, in run_command\r\n            super().run_command(command)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/dist.py\", line 986, in run_command\r\n            cmd_obj.run()\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/wheel/bdist_wheel.py\", line 299, in run\r\n            self.run_command('build')\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/cmd.py\", line 313, in run_command\r\n            self.distribution.run_command(command)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/dist.py\", line 1214, in run_command\r\n            super().run_command(command)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/dist.py\", line 986, in run_command\r\n            cmd_obj.run()\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/command/build.py\", line 136, in run\r\n            self.run_command(cmd_name)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/cmd.py\", line 313, in run_command\r\n            self.distribution.run_command(command)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/dist.py\", line 1214, in run_command\r\n            super().run_command(command)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/dist.py\", line 986, in run_command\r\n            cmd_obj.run()\r\n          File \"/tmp/pip-req-build-qm_ad9k7/setup.py\", line 152, in run\r\n            check_minimum_libvirt_version()\r\n          File \"/tmp/pip-req-build-qm_ad9k7/setup.py\", line 43, in check_minimum_libvirt_version\r\n            subprocess.check_call([\"pkg-config\",\r\n          File \"/usr/lib/python3.8/subprocess.py\", line 364, in check_call\r\n            raise CalledProcessError(retcode, cmd)\r\n        subprocess.CalledProcessError: Command '['pkg-config', '--print-errors', '--atleast-version=0.9.11', 'libvirt']' returned non-zero exit status 1.\r\n        [end of output]\r\n    \r\n    note: This error originates from a subprocess, and is likely not a problem with pip.\r\n    ERROR: Failed building wheel for libvirt-python\r\n    Running setup.py clean for libvirt-python\r\n    error: subprocess-exited-with-error\r\n    \r\n    \u00d7 python setup.py clean did not run successfully.\r\n    \u2502 exit code: 1\r\n    \u2570\u2500> [24 lines of output]\r\n        Package libvirt was not found in the pkg-config search path.\r\n        Perhaps you should add the directory containing `libvirt.pc'\r\n        to the PKG_CONFIG_PATH environment variable\r\n        No package 'libvirt' found\r\n        Package libvirt was not found in the pkg-config search path.\r\n        Perhaps you should add the directory containing `libvirt.pc'\r\n        to the PKG_CONFIG_PATH environment variable\r\n        No package 'libvirt' found\r\n        Traceback (most recent call last):\r\n          File \"<string>\", line 2, in <module>\r\n          File \"<pip-setuptools-caller>\", line 34, in <module>\r\n          File \"/tmp/pip-req-build-qm_ad9k7/setup.py\", line 328, in <module>\r\n            setup(name = 'libvirt-python',\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/__init__.py\", line 87, in setup\r\n            return distutils.core.setup(**attrs)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/core.py\", line 135, in setup\r\n            ok = dist.parse_command_line()\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/dist.py\", line 484, in parse_command_line\r\n            args = self._parse_command_opts(parser, args)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/dist.py\", line 1104, in _parse_command_opts\r\n            nargs = _Distribution._parse_command_opts(self, parser, args)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/dist.py\", line 556, in _parse_command_opts\r\n            raise DistutilsClassError(msg % cmd_class)\r\n        distutils.errors.DistutilsClassError: command class <class '__main__.my_clean'> must provide 'user_options' attribute (a list of tuples)\r\n        [end of output]\r\n    \r\n    note: This error originates from a subprocess, and is likely not a problem with pip.\r\n    ERROR: Failed cleaning build dir for libvirt-python\r\n  Failed to build libvirt-python\r\n  Installing collected packages: libvirt-python\r\n    Running setup.py install for libvirt-python: started\r\n    Running setup.py install for libvirt-python: finished with status 'error'\r\n    error: subprocess-exited-with-error\r\n    \r\n    \u00d7 Running setup.py install for libvirt-python did not run successfully.\r\n    \u2502 exit code: 1\r\n    \u2570\u2500> [59 lines of output]\r\n        Package libvirt was not found in the pkg-config search path.\r\n        Perhaps you should add the directory containing `libvirt.pc'\r\n        to the PKG_CONFIG_PATH environment variable\r\n        No package 'libvirt' found\r\n        Package libvirt was not found in the pkg-config search path.\r\n        Perhaps you should add the directory containing `libvirt.pc'\r\n        to the PKG_CONFIG_PATH environment variable\r\n        No package 'libvirt' found\r\n        running install\r\n        /home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/command/install.py:34: SetuptoolsDeprecationWarning: setup.py install is deprecated. Use build and pip and other standards-based tools.\r\n          warnings.warn(\r\n        running build\r\n        running build_py\r\n        Package libvirt was not found in the pkg-config search path.\r\n        Perhaps you should add the directory containing `libvirt.pc'\r\n        to the PKG_CONFIG_PATH environment variable\r\n        No package 'libvirt' found\r\n        Traceback (most recent call last):\r\n          File \"<string>\", line 2, in <module>\r\n          File \"<pip-setuptools-caller>\", line 34, in <module>\r\n          File \"/tmp/pip-req-build-qm_ad9k7/setup.py\", line 328, in <module>\r\n            setup(name = 'libvirt-python',\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/__init__.py\", line 87, in setup\r\n            return distutils.core.setup(**attrs)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/core.py\", line 148, in setup\r\n            return run_commands(dist)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/core.py\", line 163, in run_commands\r\n            dist.run_commands()\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/dist.py\", line 967, in run_commands\r\n            self.run_command(cmd)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/dist.py\", line 1214, in run_command\r\n            super().run_command(command)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/dist.py\", line 986, in run_command\r\n            cmd_obj.run()\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/command/install.py\", line 68, in run\r\n            return orig.install.run(self)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/command/install.py\", line 670, in run\r\n            self.run_command('build')\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/cmd.py\", line 313, in run_command\r\n            self.distribution.run_command(command)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/dist.py\", line 1214, in run_command\r\n            super().run_command(command)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/dist.py\", line 986, in run_command\r\n            cmd_obj.run()\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/command/build.py\", line 136, in run\r\n            self.run_command(cmd_name)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/cmd.py\", line 313, in run_command\r\n            self.distribution.run_command(command)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/dist.py\", line 1214, in run_command\r\n            super().run_command(command)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/dist.py\", line 986, in run_command\r\n            cmd_obj.run()\r\n          File \"/tmp/pip-req-build-qm_ad9k7/setup.py\", line 152, in run\r\n            check_minimum_libvirt_version()\r\n          File \"/tmp/pip-req-build-qm_ad9k7/setup.py\", line 43, in check_minimum_libvirt_version\r\n            subprocess.check_call([\"pkg-config\",\r\n          File \"/usr/lib/python3.8/subprocess.py\", line 364, in check_call\r\n            raise CalledProcessError(retcode, cmd)\r\n        subprocess.CalledProcessError: Command '['pkg-config', '--print-errors', '--atleast-version=0.9.11', 'libvirt']' returned non-zero exit status 1.\r\n        [end of output]\r\n    \r\n    note: This error originates from a subprocess, and is likely not a problem with pip.\r\n  error: legacy-install-failure\r\n  \r\n  \u00d7 Encountered error while trying to install package.\r\n  \u2570\u2500> libvirt-python\r\n  \r\n  note: This is an issue with the package mentioned above, not pip.\r\n  hint: See above for output from the failure.\r\n  WARNING: You are using pip version 22.0.4; however, version 22.1.2 is available.\r\n  You should consider upgrading via the '/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/bin/python -m pip install --upgrade pip' command.\r\n  \r\n\r\n  at /usr/local/lib/python3.8/dist-packages/poetry/utils/env.py:1195 in _run\r\n      1191\u2502                 output = subprocess.check_output(\r\n      1192\u2502                     cmd, stderr=subprocess.STDOUT, **kwargs\r\n      1193\u2502                 )\r\n      1194\u2502         except CalledProcessError as e:\r\n    \u2192 1195\u2502             raise EnvCommandError(e, input=input_)\r\n      1196\u2502 \r\n      1197\u2502         return decode(output)\r\n      1198\u2502 \r\n      1199\u2502     def execute(self, bin, *args, **kwargs):\r\n\r\n  \u2022 Installing lnkparse3 (1.2.0)\r\n  \u2022 Installing maec (4.1.0.17)\r\n  \u2022 Installing netstruct (1.1.2)\r\n  \u2022 Installing nose (1.3.7)\r\n  \u2022 Installing oletools (0.60)\r\n  \u2022 Installing openpyxl (3.0.7)\r\n  \u2022 Installing orjson (3.6.0)\r\n  \u2022 Installing pebble (4.6.3)\r\n  \u2022 Installing pre-commit (2.19.0)\r\n  \u2022 Installing psutil (5.8.0)\r\n  \u2022 Installing psycopg2 (2.9.3): Installing...\r\n  \u2022 Installing pyattck (5.2.0)\r\n  \u2022 Installing pydeep (0.4)\r\n  \u2022 Installing pygal (2.4.0)\r\n  \u2022 Installing pyinstaller (4.4)\r\n  \u2022 Installing jsbeautifier (1.14.0)\r\n  \u2022 Installing libvirt-python (8.4.0): Failed\r\n\r\n  EnvCommandError\r\n\r\n  Command ['/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/bin/pip', 'install', '--no-deps', '/home/user1/.cache/pypoetry/artifacts/dd/4a/00/fdc2d831f06c6d97eda2c149e0d13bb97da62818638eedd26465eb3e76/libvirt-python-8.4.0.tar.gz'] errored with the following return code 1, and output: \r\n  Processing /home/user1/.cache/pypoetry/artifacts/dd/4a/00/fdc2d831f06c6d97eda2c149e0d13bb97da62818638eedd26465eb3e76/libvirt-python-8.4.0.tar.gz\r\n    Preparing metadata (setup.py): started\r\n    Preparing metadata (setup.py): finished with status 'done'\r\n  Building wheels for collected packages: libvirt-python\r\n    Building wheel for libvirt-python (setup.py): started\r\n    Building wheel for libvirt-python (setup.py): finished with status 'error'\r\n    error: subprocess-exited-with-error\r\n    \r\n    \u00d7 python setup.py bdist_wheel did not run successfully.\r\n    \u2502 exit code: 1\r\n    \u2570\u2500> [55 lines of output]\r\n        Package libvirt was not found in the pkg-config search path.\r\n        Perhaps you should add the directory containing `libvirt.pc'\r\n        to the PKG_CONFIG_PATH environment variable\r\n        No package 'libvirt' found\r\n        Package libvirt was not found in the pkg-config search path.\r\n        Perhaps you should add the directory containing `libvirt.pc'\r\n        to the PKG_CONFIG_PATH environment variable\r\n        No package 'libvirt' found\r\n        running bdist_wheel\r\n        running build\r\n        running build_py\r\n        Package libvirt was not found in the pkg-config search path.\r\n        Perhaps you should add the directory containing `libvirt.pc'\r\n        to the PKG_CONFIG_PATH environment variable\r\n        No package 'libvirt' found\r\n        Traceback (most recent call last):\r\n          File \"<string>\", line 2, in <module>\r\n          File \"<pip-setuptools-caller>\", line 34, in <module>\r\n          File \"/tmp/pip-req-build-qm_ad9k7/setup.py\", line 328, in <module>\r\n            setup(name = 'libvirt-python',\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/__init__.py\", line 87, in setup\r\n            return distutils.core.setup(**attrs)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/core.py\", line 148, in setup\r\n            return run_commands(dist)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/core.py\", line 163, in run_commands\r\n            dist.run_commands()\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/dist.py\", line 967, in run_commands\r\n            self.run_command(cmd)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/dist.py\", line 1214, in run_command\r\n            super().run_command(command)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/dist.py\", line 986, in run_command\r\n            cmd_obj.run()\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/wheel/bdist_wheel.py\", line 299, in run\r\n            self.run_command('build')\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/cmd.py\", line 313, in run_command\r\n            self.distribution.run_command(command)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/dist.py\", line 1214, in run_command\r\n            super().run_command(command)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/dist.py\", line 986, in run_command\r\n            cmd_obj.run()\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/command/build.py\", line 136, in run\r\n            self.run_command(cmd_name)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/cmd.py\", line 313, in run_command\r\n            self.distribution.run_command(command)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/dist.py\", line 1214, in run_command\r\n            super().run_command(command)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/dist.py\", line 986, in run_command\r\n            cmd_obj.run()\r\n          File \"/tmp/pip-req-build-qm_ad9k7/setup.py\", line 152, in run\r\n            check_minimum_libvirt_version()\r\n          File \"/tmp/pip-req-build-qm_ad9k7/setup.py\", line 43, in check_minimum_libvirt_version\r\n            subprocess.check_call([\"pkg-config\",\r\n          File \"/usr/lib/python3.8/subprocess.py\", line 364, in check_call\r\n            raise CalledProcessError(retcode, cmd)\r\n        subprocess.CalledProcessError: Command '['pkg-config', '--print-errors', '--atleast-version=0.9.11', 'libvirt']' returned non-zero exit status 1.\r\n        [end of output]\r\n    \r\n    note: This error originates from a subprocess, and is likely not a problem with pip.\r\n    ERROR: Failed building wheel for libvirt-python\r\n    Running setup.py clean for libvirt-python\r\n    error: subprocess-exited-with-error\r\n    \r\n    \u00d7 python setup.py clean did not run successfully.\r\n    \u2502 exit code: 1\r\n    \u2570\u2500> [24 lines of output]\r\n        Package libvirt was not found in the pkg-config search path.\r\n        Perhaps you should add the directory containing `libvirt.pc'\r\n        to the PKG_CONFIG_PATH environment variable\r\n        No package 'libvirt' found\r\n        Package libvirt was not found in the pkg-config search path.\r\n        Perhaps you should add the directory containing `libvirt.pc'\r\n        to the PKG_CONFIG_PATH environment variable\r\n        No package 'libvirt' found\r\n        Traceback (most recent call last):\r\n          File \"<string>\", line 2, in <module>\r\n          File \"<pip-setuptools-caller>\", line 34, in <module>\r\n          File \"/tmp/pip-req-build-qm_ad9k7/setup.py\", line 328, in <module>\r\n            setup(name = 'libvirt-python',\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/__init__.py\", line 87, in setup\r\n            return distutils.core.setup(**attrs)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/core.py\", line 135, in setup\r\n            ok = dist.parse_command_line()\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/dist.py\", line 484, in parse_command_line\r\n            args = self._parse_command_opts(parser, args)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/dist.py\", line 1104, in _parse_command_opts\r\n            nargs = _Distribution._parse_command_opts(self, parser, args)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/dist.py\", line 556, in _parse_command_opts\r\n            raise DistutilsClassError(msg % cmd_class)\r\n        distutils.errors.DistutilsClassError: command class <class '__main__.my_clean'> must provide 'user_options' attribute (a list of tuples)\r\n        [end of output]\r\n    \r\n    note: This error originates from a subprocess, and is likely not a problem with pip.\r\n    ERROR: Failed cleaning build dir for libvirt-python\r\n  Failed to build libvirt-python\r\n  Installing collected packages: libvirt-python\r\n    Running setup.py install for libvirt-python: started\r\n    Running setup.py install for libvirt-python: finished with status 'error'\r\n    error: subprocess-exited-with-error\r\n    \r\n    \u00d7 Running setup.py install for libvirt-python did not run successfully.\r\n    \u2502 exit code: 1\r\n    \u2570\u2500> [59 lines of output]\r\n        Package libvirt was not found in the pkg-config search path.\r\n        Perhaps you should add the directory containing `libvirt.pc'\r\n        to the PKG_CONFIG_PATH environment variable\r\n        No package 'libvirt' found\r\n        Package libvirt was not found in the pkg-config search path.\r\n        Perhaps you should add the directory containing `libvirt.pc'\r\n        to the PKG_CONFIG_PATH environment variable\r\n        No package 'libvirt' found\r\n        running install\r\n        /home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/command/install.py:34: SetuptoolsDeprecationWarning: setup.py install is deprecated. Use build and pip and other standards-based tools.\r\n          warnings.warn(\r\n        running build\r\n        running build_py\r\n        Package libvirt was not found in the pkg-config search path.\r\n        Perhaps you should add the directory containing `libvirt.pc'\r\n        to the PKG_CONFIG_PATH environment variable\r\n        No package 'libvirt' found\r\n        Traceback (most recent call last):\r\n          File \"<string>\", line 2, in <module>\r\n          File \"<pip-setuptools-caller>\", line 34, in <module>\r\n          File \"/tmp/pip-req-build-qm_ad9k7/setup.py\", line 328, in <module>\r\n            setup(name = 'libvirt-python',\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/__init__.py\", line 87, in setup\r\n            return distutils.core.setup(**attrs)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/core.py\", line 148, in setup\r\n            return run_commands(dist)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/core.py\", line 163, in run_commands\r\n            dist.run_commands()\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/dist.py\", line 967, in run_commands\r\n            self.run_command(cmd)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/dist.py\", line 1214, in run_command\r\n            super().run_command(command)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/dist.py\", line 986, in run_command\r\n            cmd_obj.run()\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/command/install.py\", line 68, in run\r\n            return orig.install.run(self)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/command/install.py\", line 670, in run\r\n            self.run_command('build')\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/cmd.py\", line 313, in run_command\r\n            self.distribution.run_command(command)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/dist.py\", line 1214, in run_command\r\n            super().run_command(command)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/dist.py\", line 986, in run_command\r\n            cmd_obj.run()\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/command/build.py\", line 136, in run\r\n            self.run_command(cmd_name)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/cmd.py\", line 313, in run_command\r\n            self.distribution.run_command(command)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/dist.py\", line 1214, in run_command\r\n            super().run_command(command)\r\n          File \"/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/lib/python3.8/site-packages/setuptools/_distutils/dist.py\", line 986, in run_command\r\n            cmd_obj.run()\r\n          File \"/tmp/pip-req-build-qm_ad9k7/setup.py\", line 152, in run\r\n            check_minimum_libvirt_version()\r\n          File \"/tmp/pip-req-build-qm_ad9k7/setup.py\", line 43, in check_minimum_libvirt_version\r\n            subprocess.check_call([\"pkg-config\",\r\n          File \"/usr/lib/python3.8/subprocess.py\", line 364, in check_call\r\n            raise CalledProcessError(retcode, cmd)\r\n        subprocess.CalledProcessError: Command '['pkg-config', '--print-errors', '--atleast-version=0.9.11', 'libvirt']' returned non-zero exit status 1.\r\n        [end of output]\r\n    \r\n    note: This error originates from a subprocess, and is likely not a problem with pip.\r\n  error: legacy-install-failure\r\n  \r\n  \u00d7 Encountered error while trying to install package.\r\n  \u2570\u2500> libvirt-python\r\n  \r\n  note: This is an issue with the package mentioned above, not pip.\r\n  hint: See above for output from the failure.\r\n  WARNING: You are using pip version 22.0.4; however, version 22.1.2 is available.\r\n  You should consider upgrading via the '/home/user1/.cache/pypoetry/virtualenvs/capev2-t2x27zRb-py3.8/bin/python -m pip install --upgrade pip' command.\r\n  \r\n\r\n  at /usr/local/lib/python3.8/dist-packages/poetry/utils/env.py:1195 in _run\r\n      1191\u2502                 output = subprocess.check_output(\r\n      1192\u2502                     cmd, stderr=subprocess.STDOUT, **kwargs\r\n      1193\u2502                 )\r\n      1194\u2502         except CalledProcessError as e:\r\n    \u2192 1195\u2502             raise EnvCommandError(e, input=input_)\r\n      1196\u2502 \r\n      1197\u2502         return decode(output)\r\n      1198\u2502 \r\n      1199\u2502     def execute(self, bin, *args, **kwargs):\r\n\nComment: Please see full log here:\r\n[poetry.log.txt](https://github.com/kevoreilly/CAPEv2/files/8921232/poetry.log.txt)\r\n\r\n\nComment: https://stackoverflow.com/questions/45473463/pip-install-libvirt-python-fails-in-virtualenv\nComment: wait wait that even worst `No package 'libvirt' found`. you need to install libvirt first\nComment: Same problem for me even after installing `libvirt` from `./kvm-qemu.sh libvirt`.\r\nFrom my understanding, printing the ENV variable PKG_CONFIG_PATH results in an empty string and neither pointing it to `/usr/lib64/pkg-config/` solved the issue.\r\n\r\nThe only way to solve this problem is to manually install `libvirt-dev` from `apt` since apparently it doesn't install it from `kvm-qemu.sh` on line 1190 (no errors found in my logs).\nComment: what is your OS? as if that `PKG_CONFIG_PATH` is empty than yes it won't successfully install it. but the problem is in something else. well installing stuff from `apt` as my script says don't do it as it installs other dependencies that later will be a pain to deal with\nComment: Running Ubuntu 20.04.4 and yes, I'm well aware that installing things from APT will probably mess things up but I saw that the script was simply doing `apt install -y libvirt-dev` and I thought that I can get away with it hoping in no conflicts.\nComment: ok, im on ubuntu 22.04 already for my cape. but script didn't change so much. There were only few libs changes. But maybe OS changed now something else. But those 2 weeks im pretty limited on time to deploy latest ubuntu 20.04 for testing\nComment: No worries. Is it still recommended to use Ubuntu 20.04 LTS or we can upgrade to 22.04 LTS? Out of curiosity :)\nComment: you can upgrade. i was missing only DIE but it was released yesterday with support ofr ubuntu 22. the rest of the tools that i'm  using works just fine\nComment: btw don't go for ubuntu 22 if you not have good admin skills\nComment: Doing the 22 install right now. Highly recommend to wait until the scripts are ironed out :)\nComment: Well scripts will move part of deps to users, home jo, if they want to use\nthat featuresz, as that become a pain to deal with them all the time\n\nEl mar., 21 jun. 2022 19:40, Scrub Lullz ***@***.***>\nescribi\u00f3:\n\n> Doing the 22 install right now. Highly recommend to wait until the scripts\n> are ironed out :)\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/925#issuecomment-1162076472>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH366GDA44AYDMP5W2KTVQH5BJANCNFSM5Y7SHHHA>\n> .\n> You are receiving this because you commented.Message ID:\n> ***@***.***>\n>\n\nComment: It's all good -- Just giving a warning to the other user if they don't want to deal with it.  Thanks for all your work on maintaining this, doomed.\nComment: there now a problems with latest ubuntu 20.04. so there is no escape now. they will need to deal with this anyway. you are welcome :)\nComment: True. Ran into the issues with 20.04.4LTS on a new build, decided to scrap and go to 22 and deal with the dependency issues.\nComment: if you have base linux skill you can overcome that super easy. \r\n\r\nproblematic packages are \r\n* bingraph/numpy DEAD. So someone familiar with numpy and having time have to rewrite/upgrade that library.\r\n * gevents/greenlets that requires newer version to work.\r\nsee discussion here https://github.com/kevoreilly/CAPEv2/discussions/916\nComment: Good deal -- Thank you again!\nComment: You are welcome, if you spot more problematic libraries, just add them\nthere.\n\nEl mar., 21 jun. 2022 20:33, Scrub Lullz ***@***.***>\nescribi\u00f3:\n\n> Good deal -- Thank you again!\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/925#issuecomment-1162166356>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3YYDXYBKQ2BPB2AJ5DVQIDGPANCNFSM5Y7SHHHA>\n> .\n> You are receiving this because you commented.Message ID:\n> ***@***.***>\n>\n\nComment: Hello the solution to this issue can be found here https://github.com/kevoreilly/CAPEv2/discussions/949. Please use similar steps for any other problematic library\nComment: i will remove libvirt-python from poetry as that just will confuse more people and forces them to install crap from apt and break everything. let me know if that solved you problem. but i just tested it and it works\nComment: > Hello the solution to this issue can be found here https://github.com/kevoreilly/CAPEv2/discussions/949. Please use similar steps for any other problematic library\r\n\r\nI ran into libvirt-python issue who remove this steps solution :( ",
+  "Title: Adding deployment and saving instructions for the Azure machinery\nBody: Relevant to https://github.com/kevoreilly/CAPEv2/pull/922\nComment: this is amazing",
+  "Title: CAPEv2 skips the exported function to execute for regsvr package\nBody: [3086a5babde87dea650bad29f556ffc939403b7138555b98475a95ab18064c09.zip](https://github.com/kevoreilly/CAPEv2/files/8918944/3086a5babde87dea650bad29f556ffc939403b7138555b98475a95ab18064c09.zip)\r\n\r\nLooks like CAPEv2 cannot read the exported function to execute for regsvr package.\r\n\r\noptions:\r\n\r\nfunction=DllRegisterServer\r\n\r\nOutput:\r\n```\r\n2022-06-16 12:54:10,484 [lib.api.process] INFO: Successfully executed process from path \"C:\\Windows\\sysnative\\regsvr32.exe\" with arguments \"C:\\Users\\admin\\AppData\\Local\\Temp\\3086a5babde87dea650bad29f556ffc939403b7138555b98475a95ab18064c09.dll\" with pid 2704\r\n```\r\n\r\nIt worth to mention, **function** option works well in **dll** package.\r\n\r\nOutput:\r\n```\r\n2022-06-16 11:39:07,546 [lib.api.process] INFO: Successfully executed process from path \"C:\\Windows\\sysnative\\rundll32.exe\" with arguments \"\"C:\\Users\\admin\\AppData\\Local\\Temp\\3086a5babde87dea650bad29f556ffc939403b7138555b98475a95ab18064c09.dll\",DllRegisterServer\" with pid 288\r\n```\nComment: that is long fight, just change rhis part of code \r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/lib/cuckoo/core/database.py#L1560\r\n\r\nwe had disabled that in past as some malware was using that import to trick sandbox, but that Kevin decided to restore that. so just adjust that to not change package and thats all\nComment: note that here is the funny part https://github.com/kevoreilly/CAPEv2/blob/master/analyzer/windows/modules/packages/regsvr.py that it not using function\nComment: It's worth pointing out that regsrv32.exe does not need nor use any arguments (unlike rundll32), it automatically calls DllRegisterServer. The regsvr package in cape just reflects this behaviour in Windows.\nComment: DllRegisterServer in this case has ordinal number 2. By default CAPE uses ordinal number 1.\nComment: DllInstall would be 2? \nComment: The dll package uses ordinals, therefore has a default. regsvr package does not. It just uses Windows behaviour in regsvr32.exe.\nComment: ![img](https://user-images.githubusercontent.com/55275842/174081891-450d366e-6030-47cd-996b-89e78d8461bc.png)\r\n\nComment: so the only way to call **DllRegisterServer** is to patch the code ? \nComment: i don't see a way how to say to regsvr run specific export, if you know any, let me know and i will update code\nComment: As I said regsvr32 automatically picks DllRegisterExport - it doesn't allow for anything else to be called (unless a switch is supplied for uninstall or whatever)\nComment: I think the issue with this particular sample is elsewhere.\r\n\r\n![image](https://user-images.githubusercontent.com/22219888/174083167-1bd49509-133e-49c8-b57a-5d7d8145565e.png)\r\n\nComment: good to know thanks for checking it! Btw locally in my VM it works well with the ordinal function DllRegisterServer\nComment: how do you run that in local? i need command line\nComment: Yeah the point is whether you use rundll32 (takes ordinals) or regsvr32 (doesn't)\nComment: Works for me on Win10 with regsvr package\r\n\r\n![image](https://user-images.githubusercontent.com/22219888/174084434-3ec26e8b-aef7-42dc-a096-748e9cdd2a84.png)\r\n\nComment: Sorry I used rundll32.exe:\r\n\r\n```\r\nC:\\Windows\\SysWOW64>rundll32.exe C:\\Users\\admin\\Desktop\\3086a5babde87dea650bad29\r\nf556ffc939403b7138555b98475a95ab18064c09.dll, DllRegisterServer\r\n```\r\n\r\nCan confirm regsvr automatically picks DllRegisterExport.\r\n\r\nLooks like the issue was with win7. Gonna launch it in Win10. Thanks for the help guys !\nComment: ok closing this as looks like solved",
+  "Title: Adding Azure machinery and config\nBody: The CAPEv2 version of this PR: https://github.com/cuckoosandbox/cuckoo/pull/3120\r\nOriginally inspired by the project that inspired this PR: https://github.com/kevoreilly/CAPEv2/pull/848\r\n\r\nWhat this machinery does:\r\n- Uses Azure Scale Set Virtual Machines for detonation\r\n- Ability to dynamically create machines on-demand\r\n- Ability to handle multiple pools of machines\r\n- Ability to pool of machine you want submission to go to\r\n\r\nI have the Cuckoo version of this running in production. Currently working on getting this CAPE machinery out of development and into production. Documentation for the infra setup is also on my TODO.\nComment: oh that would be amazing to get docs how to set this. thank you for all your work",
+  "Title: Renaming signatures to lower_snake_case\nBody: To be Pythonic and for consistency",
+  "Title: update cape_options for bumblebee bypass yara\nBody: Credit goes to @enzok!",
+  "Title: Publishing results from the sandbox analysis\nBody: Dear Developers,\r\n\r\nLet me first apologize for abusing bug tracker for contacting you, but I have not found any other means. \r\nMy name is Tomas Pevny and I am researcher at Czech Technical university in Prague (my google scholar is here\r\nhttps://scholar.google.com/citations?hl=cs&user=MnXqDssAAAAJ). The security field is in constant need for interesting datasets, and datasets available for security are very scarce. I would therefore like to ask you, if results of analysis analysis you perform in https://capesandbox.com/ can be make public? I consider the dataset to be interesting, because the output is structured (JSON format), it is collected over a long time, and it is partially labeled. The dataset might be help to foster research in malware analysis, which suffers from lack of datasets a lot.\r\n\r\nThank you very much for consideration.\r\nBest wishes,\r\nTomas Pevny (pevnytom at fel dot cvut dot cz) \nComment: Hello Tomas, no, sorry that can't be done. we have disabled that module just to avoid scraping abuse and we can't enable that only for 1 person ",
+  "Title: Make sure that tmp_data is a bytes object.\nBody: Follow-up to https://github.com/kevoreilly/CAPEv2/pull/917\r\n\r\nBetter safe than sorry, I guess.",
+  "Title: Allow extracted files that match yara rules with a cape_type to trigger config extraction.\nBody: *Note*: I am not familiar with how the extracted_files attribute of file_info is used. All I know is that I downloaded a SocGholish sample from a CAPE sandbox and resubmitted it. When it got to this point in the code, the cape_yara attribute was empty, but the file that matched the yara rule was in extracted_files and that had a yara rule match. Without this code change, no config extraction would be done.\r\n\r\ntl;dr - Please make sure that this change makes sense. I only have a limited amount of test data.\r\n\r\nIs the 'data' attribute of the extracted_file always a str (as it was in my SocGholish example) or could it be a 'bytes' object?\nComment: good one, im personally use yara_match more than this but is a good to have. about data, i guess that is depending of the proper tool that extracts it so we would need to ensure that the data always is the same\nComment: i just checked, there is nothing that stores \"data\", for which selfextraction you got that?\nComment: The thing I submitted was a zip file (password \"infected\") containing the file at https://www.virustotal.com/gui/file/4f58e91704efb836e464392c5f6afaeb232aac5c8e665ba28cdf7b4b626ace0a\nComment: ah ok now it make sense, data is text\r\n`file_info.setdefault(\"data\", data.decode(\"latin-1\"))` i don't remember why i did decode, but we can remove that probably\nComment: thank you",
+  "Title: cape.service and cape-processor.service stop with no error and stay on \"activating\"\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account acctivation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x ] I am running the latest version\r\n- [ x] I checked the documentation and found no answer\r\n- [x ] I checked to make sure that this issue has not already been filed\r\n- [x ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x ] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nx64 set as specified here. I would expect cape.service and cape-processor.service to be always on,\r\n\r\n# Current Behavior\r\n\r\n instead python processes interrupt with no error and I have to restart services manually with systemctl every 10-15 minutes.\r\n\r\n# Failure Information (for bugs)\r\n\r\nNo failure information, unluckily. Even running python processes in debug mode show no error, just an abnormal exit from the scripts. \r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\nJust start CAPE services as usual, il will stop being active after some minutes. \r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Ambigous argument '|' \r\n| OS version       | Ubuntu 20.04 Instance on GCP, running 4 Windows 7 x64 VMs with KVM\r\n\r\n## Failure Logs\r\n\r\nNo errors.\nComment: sorry we don't know black magic to solve issues without error msgs. run by hand without systemd to see if you have any problem",
+  "Title: Adding documentation for Signature categories\nBody: Documentation to support these changes:\r\n\r\nhttps://github.com/kevoreilly/community/pull/275\r\nhttps://github.com/kevoreilly/community/pull/276\nComment: Thank you",
+  "Title: Renaming marks to common names\nBody: As per https://github.com/kevoreilly/community/pull/274",
+  "Title: Updating ttp attribute check for ttps instead\nBody: None\nComment: Thanks",
+  "Title: Updating ttp -> ttps, adding mbcs attribute to Signature class\nBody: None",
+  "Title: Not detonating properly on win10\nBody: c378387344e0a552dc065de6bfa607fd26e0b5c569751c79fbf9c6f2e91c9807\nComment: I was able to get full execution in my Win10 VM's if any data from them could help.\nComment: What win10 build and version?\n\nEl jue., 23 jun. 2022 20:25, Scrub Lullz ***@***.***>\nescribi\u00f3:\n\n> I was able to get full execution in my Win10 VM's if any data from them\n> could help.\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/910#issuecomment-1164733858>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH36QVDUDYXTPSRTPAN3VQSTZ5ANCNFSM5YT2VNXA>\n> .\n> You are receiving this because you authored the thread.Message ID:\n> ***@***.***>\n>\n\nComment: Version 21H1 OS Build 19043.1023\r\nOffice 2010\nComment: Can you share analysis.log and behavioral analysis section? Do you see process tree similar like this: \r\n![image](https://user-images.githubusercontent.com/35531629/175961870-b71317be-e24a-4ec5-9d1b-f51b0eeb3881.png)\r\n\nComment: ![image](https://user-images.githubusercontent.com/16104066/175995964-66debc8c-e0cb-4410-9d8c-e986f240b250.png)\r\n\r\n![image](https://user-images.githubusercontent.com/16104066/175996102-36af828d-3f68-423b-89eb-711879328d68.png)\r\n\r\n\r\nI'll rerun and grab logs.\r\n\r\n\r\n\nComment: `analysis.log`:\r\n```\r\n2022-06-22 19:20:11,121 [root] INFO: Date set to: 20220623T18:15:24, timeout set to: 200\r\n2022-06-22 19:20:11,137 [root] DEBUG: Starting analyzer from: C:\\tmp6tkbn3gc\r\n2022-06-22 19:20:11,137 [root] DEBUG: Storing results at: C:\\PrUGuHE\r\n2022-06-22 19:20:11,137 [root] DEBUG: Pipe server name: \\\\.\\PIPE\\xyAiVVG\r\n2022-06-22 19:20:11,137 [root] DEBUG: Python path: C:\\Users\\johnquser\\AppData\\Local\\Programs\\Python\\Python37-32\r\n2022-06-22 19:20:11,137 [root] INFO: Analysis package \"doc\" has been specified\r\n2022-06-22 19:20:11,137 [root] DEBUG: Importing analysis package \"doc\"...\r\n2022-06-22 19:20:11,152 [root] DEBUG: Initializing analysis package \"doc\"...\r\n2022-06-22 19:20:11,152 [root] INFO: Analyzer: Package modules.packages.doc does not specify a DLL option\r\n2022-06-22 19:20:11,152 [root] INFO: Analyzer: Package modules.packages.doc does not specify a DLL_64 option\r\n2022-06-22 19:20:11,152 [root] INFO: Analyzer: Package modules.packages.doc does not specify a loader option\r\n2022-06-22 19:20:11,152 [root] INFO: Analyzer: Package modules.packages.doc does not specify a loader_64 option\r\n2022-06-22 19:20:11,199 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.browser\"...\r\n2022-06-22 19:20:11,199 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.curtain\"...\r\n2022-06-22 19:20:11,199 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.digisig\"...\r\n2022-06-22 19:20:11,215 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.disguise\"...\r\n2022-06-22 19:20:11,231 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.evtx\"...\r\n2022-06-22 19:20:11,231 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.filepickup\"...\r\n2022-06-22 19:20:11,231 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.human\"...\r\n2022-06-22 19:20:11,246 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.permissions\"...\r\n2022-06-22 19:20:11,246 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.procmon\"...\r\n2022-06-22 19:20:11,263 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.screenshots\"...\r\n2022-06-22 19:20:11,263 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageChops'\r\n2022-06-22 19:20:11,324 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageGrab'\r\n2022-06-22 19:20:11,324 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageDraw'\r\n2022-06-22 19:20:11,340 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.sysmon\"...\r\n2022-06-22 19:20:11,340 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.tlsdump\"...\r\n2022-06-22 19:20:11,340 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.usage\"...\r\n2022-06-22 19:20:11,340 [root] DEBUG: Initialized auxiliary module \"Browser\"\r\n2022-06-22 19:20:11,340 [root] DEBUG: Trying to start auxiliary module \"Browser\"...\r\n2022-06-22 19:20:11,355 [root] DEBUG: Started auxiliary module \"Browser\"\r\n2022-06-22 19:20:11,355 [root] DEBUG: Started auxiliary module Browser\r\n2022-06-22 19:20:11,355 [root] DEBUG: Initialized auxiliary module \"Curtain\"\r\n2022-06-22 19:20:11,355 [root] DEBUG: Trying to start auxiliary module \"Curtain\"...\r\n2022-06-22 19:20:11,355 [root] DEBUG: Started auxiliary module \"Curtain\"\r\n2022-06-22 19:20:11,355 [root] DEBUG: Started auxiliary module Curtain\r\n2022-06-22 19:20:11,355 [root] DEBUG: Initialized auxiliary module \"DigiSig\"\r\n2022-06-22 19:20:11,355 [root] DEBUG: Trying to start auxiliary module \"DigiSig\"...\r\n2022-06-22 19:20:11,355 [modules.auxiliary.digisig] DEBUG: Checking for a digital signature\r\n2022-06-22 19:20:11,622 [modules.auxiliary.digisig] DEBUG: File format not recognized\r\n2022-06-22 19:20:11,622 [modules.auxiliary.digisig] INFO: Uploading signature results to aux/DigiSig.json\r\n2022-06-22 19:20:11,637 [root] DEBUG: Started auxiliary module \"DigiSig\"\r\n2022-06-22 19:20:11,637 [root] DEBUG: Started auxiliary module DigiSig\r\n2022-06-22 19:20:11,637 [root] DEBUG: Initialized auxiliary module \"Disguise\"\r\n2022-06-22 19:20:11,637 [root] DEBUG: Trying to start auxiliary module \"Disguise\"...\r\n2022-06-22 19:20:11,637 [root] WARNING: Cannot execute auxiliary module Disguise: [WinError 5] Access is denied\r\n2022-06-22 19:20:11,637 [root] DEBUG: Initialized auxiliary module \"Evtx\"\r\n2022-06-22 19:20:11,637 [root] DEBUG: Trying to start auxiliary module \"Evtx\"...\r\n2022-06-22 19:20:11,637 [root] DEBUG: Started auxiliary module \"Evtx\"\r\n2022-06-22 19:20:11,637 [root] DEBUG: Started auxiliary module Evtx\r\n2022-06-22 19:20:11,637 [root] WARNING: Auxiliary module FilePickup was not implemented: 'Config' object has no attribute 'file_pickup'\r\n2022-06-22 19:20:11,637 [root] DEBUG: Initialized auxiliary module \"Human\"\r\n2022-06-22 19:20:11,637 [root] DEBUG: Trying to start auxiliary module \"Human\"...\r\n2022-06-22 19:20:11,653 [root] DEBUG: Started auxiliary module \"Human\"\r\n2022-06-22 19:20:11,653 [root] DEBUG: Started auxiliary module Human\r\n2022-06-22 19:20:11,653 [root] WARNING: Auxiliary module Permissions was not implemented: 'Config' object has no attribute 'file_pickup'\r\n2022-06-22 19:20:11,653 [root] DEBUG: Initialized auxiliary module \"Procmon\"\r\n2022-06-22 19:20:11,653 [root] DEBUG: Trying to start auxiliary module \"Procmon\"...\r\n2022-06-22 19:20:11,653 [root] DEBUG: Started auxiliary module \"Procmon\"\r\n2022-06-22 19:20:11,653 [root] DEBUG: Started auxiliary module Procmon\r\n2022-06-22 19:20:11,653 [root] DEBUG: Initialized auxiliary module \"Screenshots\"\r\n2022-06-22 19:20:11,668 [root] DEBUG: Trying to start auxiliary module \"Screenshots\"...\r\n2022-06-22 19:20:11,668 [root] DEBUG: Started auxiliary module \"Screenshots\"\r\n2022-06-22 19:20:11,668 [root] DEBUG: Started auxiliary module Screenshots\r\n2022-06-22 19:20:11,668 [root] DEBUG: Initialized auxiliary module \"Sysmon\"\r\n2022-06-22 19:20:11,668 [root] DEBUG: Trying to start auxiliary module \"Sysmon\"...\r\n2022-06-22 19:20:11,668 [root] DEBUG: Started auxiliary module \"Sysmon\"\r\n2022-06-22 19:20:11,668 [root] DEBUG: Started auxiliary module Sysmon\r\n2022-06-22 19:20:11,668 [root] DEBUG: Initialized auxiliary module \"TLSDumpMasterSecrets\"\r\n2022-06-22 19:20:11,668 [root] DEBUG: Trying to start auxiliary module \"TLSDumpMasterSecrets\"...\r\n2022-06-22 19:20:11,668 [modules.auxiliary.tlsdump] INFO: lsass.exe found, pid 696\r\n2022-06-22 19:20:11,668 [lib.api.process] INFO: Monitor config for process 696: C:\\tmp6tkbn3gc\\dll\\696.ini\r\n2022-06-22 19:20:11,668 [lib.api.process] INFO: Option 'tlsdump' with value '1' sent to monitor\r\n2022-06-22 19:20:11,668 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll, loader C:\\tmp6tkbn3gc\\bin\\KMHLjmgy.exe\r\n2022-06-22 19:20:11,730 [root] DEBUG: Loader: Injecting process 696 with C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll.\r\n2022-06-22 19:20:11,730 [root] DEBUG: Error 5 (0x5) - InjectDll: Failed to open process: Access is denied.\r\n2022-06-22 19:20:11,730 [root] DEBUG: Successfully injected DLL C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll.\r\n2022-06-22 19:20:11,730 [root] DEBUG: Started auxiliary module \"TLSDumpMasterSecrets\"\r\n2022-06-22 19:20:11,730 [root] DEBUG: Started auxiliary module TLSDumpMasterSecrets\r\n2022-06-22 19:20:11,730 [root] DEBUG: Initialized auxiliary module \"Usage\"\r\n2022-06-22 19:20:11,730 [root] DEBUG: Trying to start auxiliary module \"Usage\"...\r\n2022-06-22 19:20:11,730 [root] DEBUG: Started auxiliary module \"Usage\"\r\n2022-06-22 19:20:11,730 [root] DEBUG: Started auxiliary module Usage\r\n2022-06-22 19:20:12,184 [root] INFO: Restarting WMI Service\r\n2022-06-22 19:20:12,308 [lib.api.process] INFO: Successfully executed process from path \"C:\\Program Files (x86)\\Microsoft Office\\Office14\\WINWORD.EXE\" with arguments \"\"C:\\Users\\JOHNQU~1\\AppData\\Local\\Temp\\emotet.doc\" /q\" with pid 3096\r\n2022-06-22 19:20:12,308 [lib.api.process] INFO: Monitor config for process 3096: C:\\tmp6tkbn3gc\\dll\\3096.ini\r\n2022-06-22 19:20:12,324 [lib.api.process] INFO: 32-bit DLL to inject is C:\\tmp6tkbn3gc\\dll\\IKfHLon.dll, loader C:\\tmp6tkbn3gc\\bin\\qOLwdtE.exe\r\n2022-06-22 19:20:12,355 [root] DEBUG: Loader: Injecting process 3096 (thread 1612) with C:\\tmp6tkbn3gc\\dll\\IKfHLon.dll.\r\n2022-06-22 19:20:12,355 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\r\n2022-06-22 19:20:12,355 [root] DEBUG: Successfully injected DLL C:\\tmp6tkbn3gc\\dll\\IKfHLon.dll.\r\n2022-06-22 19:20:12,371 [lib.api.process] INFO: Injected into suspended 32-bit process with pid 3096\r\n2022-06-22 19:20:14,387 [lib.api.process] INFO: Successfully resumed process with pid 3096\r\n2022-06-22 19:20:14,621 [root] DEBUG: Python path set to 'C:\\Users\\johnquser\\AppData\\Local\\Programs\\Python\\Python37-32'.\r\n2022-06-22 19:20:14,621 [root] DEBUG: Dropped file limit defaulting to 100.\r\n2022-06-22 19:20:14,637 [root] DEBUG: Initialising Yara...\r\n2022-06-22 19:20:14,637 [root] DEBUG: YaraInit: Compiled 18 rule files\r\n2022-06-22 19:20:14,637 [root] DEBUG: YaraInit: Compiled rules saved to file C:\\tmp6tkbn3gc\\data\\yara\\capemon.yac\r\n2022-06-22 19:20:14,637 [root] DEBUG: InternalYaraScan: Scanning 0x77590000, size 0x1a219c\r\n2022-06-22 19:20:14,668 [root] DEBUG: Error 5 (0x5) - AmsiDumper: Is CAPE agent running elevated? Initialisation failed: Access is denied.\r\n2022-06-22 19:20:14,668 [root] DEBUG: Monitor initialised: 32-bit capemon loaded in process 3096 at 0x72430000, thread 1612, image base 0x2fdd0000, stack from 0x566000-0x570000\r\n2022-06-22 19:20:14,668 [root] DEBUG: Commandline: \"C:\\Program Files (x86)\\Microsoft Office\\Office14\\WINWORD.EXE\" \"C:\\Users\\JOHNQU~1\\AppData\\Local\\Temp\\emotet.doc\" /q\r\n2022-06-22 19:20:14,683 [root] DEBUG: Microsoft Office settings enabled.\r\n2022-06-22 19:20:14,715 [root] DEBUG: RestoreHeaders: Restored original import table.\r\n2022-06-22 19:20:14,715 [root] INFO: Loaded monitor into process with pid 3096\r\n2022-06-22 19:20:14,731 [root] DEBUG: DLL loaded at 0x72320000: C:\\Windows\\SYSTEM32\\ninput (0x54000 bytes).\r\n2022-06-22 19:20:14,731 [root] DEBUG: caller_dispatch: Adding region at 0x2FDD0000 to caller regions list (ntdll::LdrGetDllHandle returns to 0x2FDD111F, thread 1612).\r\n2022-06-22 19:20:14,731 [root] DEBUG: caller_dispatch: Dump of calling region at 0x2FDD0000 skipped (ntdll::LdrGetDllHandle returns to 0x2FDD111F mapped as \\Device\\HarddiskVolume2\\Program Files (x86)\\Microsoft Office\\Office14\\WINWORD.EXE).\r\n2022-06-22 19:20:14,777 [root] DEBUG: DLL loaded at 0x74B40000: C:\\Windows\\SYSTEM32\\WTSAPI32 (0xf000 bytes).\r\n2022-06-22 19:20:14,793 [root] DEBUG: DLL loaded at 0x732C0000: C:\\Windows\\SYSTEM32\\MSIMG32 (0x6000 bytes).\r\n2022-06-22 19:20:14,793 [root] DEBUG: DLL loaded at 0x70EF0000: C:\\Program Files (x86)\\Microsoft Office\\Office14\\gfx (0x1ab000 bytes).\r\n2022-06-22 19:20:14,809 [root] DEBUG: DLL loaded at 0x6FB50000: C:\\Program Files (x86)\\Microsoft Office\\Office14\\oart (0x1394000 bytes).\r\n2022-06-22 19:20:14,824 [root] DEBUG: DLL loaded at 0x710A0000: C:\\Program Files (x86)\\Microsoft Office\\Office14\\wwlib (0x127f000 bytes).\r\n2022-06-22 19:20:14,840 [root] DEBUG: DLL loaded at 0x6E960000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\office14\\mso (0x11ea000 bytes).\r\n2022-06-22 19:20:14,871 [root] DEBUG: DLL loaded at 0x6E750000: C:\\Windows\\WinSxS\\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.844_none_11adecdf30011423\\Comctl32 (0x210000 bytes).\r\n2022-06-22 19:20:14,871 [root] INFO: Disabling sleep skipping.\r\n2022-06-22 19:20:14,965 [root] DEBUG: DLL unloaded from 0x75630000.\r\n2022-06-22 19:20:14,981 [root] DEBUG: DLL loaded at 0x6E720000: C:\\Windows\\SYSTEM32\\srpapi (0x25000 bytes).\r\n2022-06-22 19:20:15,043 [root] DEBUG: DLL loaded at 0x6E660000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\OFFICE14\\MSPTLS (0xbc000 bytes).\r\n2022-06-22 19:20:15,074 [root] DEBUG: DLL loaded at 0x771F0000: C:\\Windows\\System32\\MSCTF (0xd4000 bytes).\r\n2022-06-22 19:20:15,105 [root] DEBUG: DLL loaded at 0x6E510000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\office14\\riched20 (0x14f000 bytes).\r\n2022-06-22 19:20:15,121 [root] DEBUG: DLL loaded at 0x6E4B0000: C:\\Windows\\system32\\mscoree (0x52000 bytes).\r\n2022-06-22 19:20:15,137 [root] DEBUG: DLL loaded at 0x6E420000: C:\\Windows\\Microsoft.NET\\Framework\\v4.0.30319\\mscoreei (0x8d000 bytes).\r\n2022-06-22 19:20:15,137 [root] DEBUG: DLL unloaded from 0x76AA0000.\r\n2022-06-22 19:20:15,168 [root] DEBUG: DLL loaded at 0x6E400000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\OfficeSoftwareProtectionPlatform\\OSPPC (0x20000 bytes).\r\n2022-06-22 19:20:15,184 [root] DEBUG: DLL loaded at 0x76850000: C:\\Windows\\System32\\bcryptPrimitives (0x5f000 bytes).\r\n2022-06-22 19:20:15,199 [root] DEBUG: DLL loaded at 0x77060000: C:\\Windows\\System32\\clbcatq (0x7e000 bytes).\r\n2022-06-22 19:20:15,215 [root] DEBUG: DLL loaded at 0x6E3C0000: C:\\Windows\\System32\\netprofm (0x31000 bytes).\r\n2022-06-22 19:20:15,246 [root] DEBUG: DLL loaded at 0x6E3B0000: C:\\Windows\\System32\\npmproxy (0xa000 bytes).\r\n2022-06-22 19:20:15,277 [root] DEBUG: DLL loaded at 0x73FA0000: C:\\Windows\\SYSTEM32\\IPHLPAPI (0x32000 bytes).\r\n2022-06-22 19:20:15,277 [root] DEBUG: DLL loaded at 0x771E0000: C:\\Windows\\System32\\NSI (0x7000 bytes).\r\n2022-06-22 19:20:15,293 [root] DEBUG: DLL loaded at 0x6E390000: C:\\Windows\\SYSTEM32\\dhcpcsvc6 (0x14000 bytes).\r\n2022-06-22 19:20:15,293 [root] DEBUG: DLL loaded at 0x73EE0000: C:\\Windows\\SYSTEM32\\dhcpcsvc (0x16000 bytes).\r\n2022-06-22 19:20:15,309 [root] DEBUG: DLL loaded at 0x6E2F0000: C:\\Windows\\SYSTEM32\\DNSAPI (0x92000 bytes).\r\n2022-06-22 19:20:15,340 [root] DEBUG: DLL loaded at 0x6E260000: C:\\Windows\\SYSTEM32\\sxs (0x88000 bytes).\r\n2022-06-22 19:20:15,356 [root] DEBUG: DLL loaded at 0x76660000: C:\\Windows\\System32\\coml2 (0x5e000 bytes).\r\n2022-06-22 19:20:15,387 [root] DEBUG: DLL loaded at 0x6E250000: C:\\Windows\\SYSTEM32\\windows.staterepositorycore (0xc000 bytes).\r\n2022-06-22 19:20:15,465 [root] DEBUG: api-rate-cap: NtQueryKey hook disabled due to rate.\r\n2022-06-22 19:20:15,481 [root] DEBUG: api-rate-cap: NtOpenKeyEx hook disabled due to rate.\r\n2022-06-22 19:20:17,215 [root] DEBUG: DLL unloaded from 0x77030000.\r\n2022-06-22 19:20:17,215 [root] DEBUG: DLL loaded at 0x6E200000: C:\\Windows\\SYSTEM32\\POWRPROF (0x44000 bytes).\r\n2022-06-22 19:20:17,231 [root] DEBUG: DLL loaded at 0x6E1F0000: C:\\Windows\\SYSTEM32\\UMPDC (0xd000 bytes).\r\n2022-06-22 19:20:17,231 [root] DEBUG: DLL unloaded from 0x6E200000.\r\n2022-06-22 19:20:17,293 [root] DEBUG: DLL loaded at 0x74E00000: C:\\Windows\\SYSTEM32\\Wldp (0x24000 bytes).\r\n2022-06-22 19:20:17,293 [root] DEBUG: DLL loaded at 0x74E30000: C:\\Windows\\SYSTEM32\\windows.storage (0x609000 bytes).\r\n2022-06-22 19:20:17,308 [root] DEBUG: DLL unloaded from 0x2FDD0000.\r\n2022-06-22 19:20:17,324 [root] DEBUG: DLL loaded at 0x76490000: C:\\Windows\\System32\\CFGMGR32 (0x3b000 bytes).\r\n2022-06-22 19:20:17,324 [root] DEBUG: DLL unloaded from 0x74E30000.\r\n2022-06-22 19:20:17,340 [root] DEBUG: DLL unloaded from 0x759D0000.\r\n2022-06-22 19:20:17,340 [root] DEBUG: DLL loaded at 0x6E120000: C:\\Windows\\system32\\propsys (0xc2000 bytes).\r\n2022-06-22 19:20:17,418 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Roaming\\Microsoft\\Templates\\Normal.dotm\r\n2022-06-22 19:20:17,418 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Roaming\\Microsoft\\Templates\\~$Normal.dotm\r\n2022-06-22 19:20:17,465 [root] DEBUG: DLL loaded at 0x6DF40000: C:\\Windows\\System32\\msxml6 (0x1dd000 bytes).\r\n2022-06-22 19:20:17,543 [root] DEBUG: DLL loaded at 0x74B00000: C:\\Windows\\SYSTEM32\\profapi (0x18000 bytes).\r\n2022-06-22 19:20:17,621 [root] DEBUG: DLL loaded at 0x74AD0000: C:\\Windows\\SYSTEM32\\ntmarta (0x29000 bytes).\r\n2022-06-22 19:20:17,621 [root] DEBUG: DLL loaded at 0x6DB60000: C:\\Windows\\SYSTEM32\\CoreMessaging (0x9b000 bytes).\r\n2022-06-22 19:20:17,637 [root] DEBUG: DLL loaded at 0x6DA80000: C:\\Windows\\SYSTEM32\\wintypes (0xdb000 bytes).\r\n2022-06-22 19:20:17,652 [root] DEBUG: DLL loaded at 0x6DC00000: C:\\Windows\\SYSTEM32\\CoreUIComponents (0x27e000 bytes).\r\n2022-06-22 19:20:17,652 [root] DEBUG: DLL loaded at 0x6DE80000: C:\\Windows\\SYSTEM32\\textinputframework (0xb9000 bytes).\r\n2022-06-22 19:20:17,746 [root] DEBUG: DLL unloaded from 0x74440000.\r\n2022-06-22 19:20:17,793 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Temp\\emotet.doc\r\n2022-06-22 19:20:17,809 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Temp\\~$emotet.doc\r\n2022-06-22 19:20:17,887 [root] DEBUG: DLL loaded at 0x6DA50000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\TEXTCONV\\WPFT532.CNV (0x2f000 bytes).\r\n2022-06-22 19:20:17,918 [root] DEBUG: DLL loaded at 0x6DA30000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\TEXTCONV\\msconv97 (0x1f000 bytes).\r\n2022-06-22 19:20:17,918 [root] DEBUG: DLL unloaded from 0x2FDD0000.\r\n2022-06-22 19:20:17,934 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Temp\\tst4E9F.tmp size is 0, Max size: 100000000\r\n2022-06-22 19:20:17,949 [root] DEBUG: DLL unloaded from 0x6DA30000.\r\n2022-06-22 19:20:17,965 [root] DEBUG: DLL unloaded from 0x6DA50000.\r\n2022-06-22 19:20:17,980 [root] DEBUG: DLL loaded at 0x6DA40000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\TEXTCONV\\WPFT632.CNV (0x3d000 bytes).\r\n2022-06-22 19:20:17,996 [root] DEBUG: DLL loaded at 0x6DA20000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\TEXTCONV\\msconv97 (0x1f000 bytes).\r\n2022-06-22 19:20:17,996 [root] DEBUG: DLL unloaded from 0x2FDD0000.\r\n2022-06-22 19:20:18,012 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Temp\\tst4EEE.tmp size is 0, Max size: 100000000\r\n2022-06-22 19:20:18,043 [root] DEBUG: DLL unloaded from 0x6DA20000.\r\n2022-06-22 19:20:18,043 [root] DEBUG: DLL unloaded from 0x6DA40000.\r\n2022-06-22 19:20:18,059 [root] DEBUG: DLL loaded at 0x6DA50000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\TEXTCONV\\WPFT532.CNV (0x2f000 bytes).\r\n2022-06-22 19:20:18,121 [root] DEBUG: DLL loaded at 0x6DA30000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\TEXTCONV\\msconv97 (0x1f000 bytes).\r\n2022-06-22 19:20:18,137 [root] DEBUG: DLL unloaded from 0x2FDD0000.\r\n2022-06-22 19:20:18,152 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Temp\\tst4F7C.tmp size is 0, Max size: 100000000\r\n2022-06-22 19:20:18,152 [root] DEBUG: DLL unloaded from 0x6DA30000.\r\n2022-06-22 19:20:18,168 [root] DEBUG: DLL unloaded from 0x6DA50000.\r\n2022-06-22 19:20:18,184 [root] DEBUG: DLL loaded at 0x6DA40000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\TEXTCONV\\WPFT632.CNV (0x3d000 bytes).\r\n2022-06-22 19:20:18,184 [root] DEBUG: DLL loaded at 0x6DA20000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\TEXTCONV\\msconv97 (0x1f000 bytes).\r\n2022-06-22 19:20:18,199 [root] DEBUG: DLL unloaded from 0x2FDD0000.\r\n2022-06-22 19:20:18,199 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Temp\\tst4FBB.tmp size is 0, Max size: 100000000\r\n2022-06-22 19:20:18,215 [root] DEBUG: DLL unloaded from 0x6DA20000.\r\n2022-06-22 19:20:18,231 [root] DEBUG: DLL unloaded from 0x6DA40000.\r\n2022-06-22 19:20:18,262 [root] DEBUG: DLL loaded at 0x6DA70000: C:\\Program Files (x86)\\Microsoft Office\\Office14\\Wordcnvpxy.cnv (0x8000 bytes).\r\n2022-06-22 19:20:18,262 [root] DEBUG: DLL unloaded from 0x6DA70000.\r\n2022-06-22 19:20:18,277 [root] DEBUG: DLL loaded at 0x6DA70000: C:\\Program Files (x86)\\Microsoft Office\\Office14\\Wordcnvpxy.cnv (0x8000 bytes).\r\n2022-06-22 19:20:18,293 [root] DEBUG: DLL loaded at 0x6DA70000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\TextConv\\RECOVR32.CNV (0xa000 bytes).\r\n2022-06-22 19:20:18,293 [root] DEBUG: DLL loaded at 0x6DA50000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\TextConv\\msconv97 (0x1f000 bytes).\r\n2022-06-22 19:20:18,309 [root] DEBUG: DLL unloaded from 0x2FDD0000.\r\n2022-06-22 19:20:18,309 [root] DEBUG: DLL unloaded from 0x6DA50000.\r\n2022-06-22 19:20:18,309 [root] DEBUG: DLL unloaded from 0x6DA70000.\r\n2022-06-22 19:20:18,324 [root] DEBUG: DLL loaded at 0x6DA70000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\TextConv\\Wks9Pxy.cnv (0xd000 bytes).\r\n2022-06-22 19:20:18,340 [root] DEBUG: DLL loaded at 0x6DA50000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\TextConv\\WPFT532.CNV (0x2f000 bytes).\r\n2022-06-22 19:20:18,340 [root] DEBUG: DLL loaded at 0x6DA30000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\TextConv\\msconv97 (0x1f000 bytes).\r\n2022-06-22 19:20:18,355 [root] DEBUG: DLL unloaded from 0x2FDD0000.\r\n2022-06-22 19:20:18,355 [root] DEBUG: DLL unloaded from 0x6DA30000.\r\n2022-06-22 19:20:18,355 [root] DEBUG: DLL unloaded from 0x6DA50000.\r\n2022-06-22 19:20:18,371 [root] DEBUG: DLL loaded at 0x6DA40000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\TextConv\\WPFT632.CNV (0x3d000 bytes).\r\n2022-06-22 19:20:18,387 [root] DEBUG: DLL loaded at 0x6DA20000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\TextConv\\msconv97 (0x1f000 bytes).\r\n2022-06-22 19:20:18,387 [root] DEBUG: DLL unloaded from 0x2FDD0000.\r\n2022-06-22 19:20:18,387 [root] DEBUG: DLL unloaded from 0x6DA20000.\r\n2022-06-22 19:20:18,402 [root] DEBUG: DLL unloaded from 0x6DA40000.\r\n2022-06-22 19:20:18,418 [root] DEBUG: DLL loaded at 0x6DA50000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\TEXTCONV\\WPFT532.CNV (0x2f000 bytes).\r\n2022-06-22 19:20:18,433 [root] DEBUG: DLL loaded at 0x6DA30000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\TEXTCONV\\msconv97 (0x1f000 bytes).\r\n2022-06-22 19:20:18,433 [root] DEBUG: DLL unloaded from 0x2FDD0000.\r\n2022-06-22 19:20:18,433 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Temp\\tst50A7.tmp size is 0, Max size: 100000000\r\n2022-06-22 19:20:18,449 [root] DEBUG: DLL unloaded from 0x6DA30000.\r\n2022-06-22 19:20:18,449 [root] DEBUG: DLL unloaded from 0x6DA50000.\r\n2022-06-22 19:20:18,465 [root] DEBUG: DLL loaded at 0x6DA40000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\TEXTCONV\\WPFT632.CNV (0x3d000 bytes).\r\n2022-06-22 19:20:18,480 [root] DEBUG: DLL loaded at 0x6DA20000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\TEXTCONV\\msconv97 (0x1f000 bytes).\r\n2022-06-22 19:20:18,496 [root] DEBUG: DLL unloaded from 0x2FDD0000.\r\n2022-06-22 19:20:18,496 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Temp\\tst50E6.tmp size is 0, Max size: 100000000\r\n2022-06-22 19:20:18,512 [root] DEBUG: DLL unloaded from 0x6DA20000.\r\n2022-06-22 19:20:18,527 [root] DEBUG: DLL unloaded from 0x6DA40000.\r\n2022-06-22 19:20:18,730 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\22A5025F.wmf\r\n2022-06-22 19:20:18,746 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\22A5025F.wmf size is 452, Max size: 100000000\r\n2022-06-22 19:20:18,793 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\39AA1AC5.wmf\r\n2022-06-22 19:20:18,793 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\39AA1AC5.wmf size is 452, Max size: 100000000\r\n2022-06-22 19:20:18,840 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\C11BDE1B.wmf\r\n2022-06-22 19:20:18,856 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\C11BDE1B.wmf size is 452, Max size: 100000000\r\n2022-06-22 19:20:18,887 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\8238B9E1.wmf\r\n2022-06-22 19:20:18,887 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\8238B9E1.wmf size is 452, Max size: 100000000\r\n2022-06-22 19:20:18,902 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\3A90F797.wmf\r\n2022-06-22 19:20:18,918 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\3A90F797.wmf size is 452, Max size: 100000000\r\n2022-06-22 19:20:18,949 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\7CCF1CBD.wmf\r\n2022-06-22 19:20:18,949 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\7CCF1CBD.wmf size is 452, Max size: 100000000\r\n2022-06-22 19:20:18,981 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\177F4AD3.wmf\r\n2022-06-22 19:20:18,996 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\177F4AD3.wmf size is 452, Max size: 100000000\r\n2022-06-22 19:20:19,027 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\952D9F59.wmf\r\n2022-06-22 19:20:19,027 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\952D9F59.wmf size is 452, Max size: 100000000\r\n2022-06-22 19:20:19,058 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\BAF393CF.wmf\r\n2022-06-22 19:20:19,058 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\BAF393CF.wmf size is 452, Max size: 100000000\r\n2022-06-22 19:20:19,106 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\E24C5DB5.wmf\r\n2022-06-22 19:20:19,106 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\E24C5DB5.wmf size is 452, Max size: 100000000\r\n2022-06-22 19:20:19,137 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\98C84E8B.wmf\r\n2022-06-22 19:20:19,137 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\98C84E8B.wmf size is 452, Max size: 100000000\r\n2022-06-22 19:20:19,199 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\83F733D1.wmf\r\n2022-06-22 19:20:19,199 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\83F733D1.wmf size is 452, Max size: 100000000\r\n2022-06-22 19:20:19,246 [root] DEBUG: DLL unloaded from 0x77590000.\r\n2022-06-22 19:20:19,293 [root] DEBUG: DLL loaded at 0x6D9E0000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\OFFICE14\\USP10 (0x9e000 bytes).\r\n2022-06-22 19:20:19,356 [root] DEBUG: DLL loaded at 0x6D870000: C:\\Windows\\WinSxS\\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.19041.1023_none_d94e0b13e107593b\\GdiPlus (0x169000 bytes).\r\n2022-06-22 19:20:19,356 [root] DEBUG: DLL unloaded from 0x75630000.\r\n2022-06-22 19:20:19,371 [root] DEBUG: DLL loaded at 0x6D6F0000: C:\\Windows\\SYSTEM32\\WindowsCodecs (0x171000 bytes).\r\n2022-06-22 19:20:19,402 [root] DEBUG: DLL loaded at 0x6D4D0000: C:\\Windows\\system32\\d3d11 (0x1e0000 bytes).\r\n2022-06-22 19:20:19,418 [root] DEBUG: DLL loaded at 0x6D360000: C:\\Windows\\system32\\dcomp (0x165000 bytes).\r\n2022-06-22 19:20:19,434 [root] DEBUG: DLL loaded at 0x6D6B0000: C:\\Windows\\system32\\dataexchange (0x31000 bytes).\r\n2022-06-22 19:20:19,449 [root] DEBUG: DLL loaded at 0x6D1D0000: C:\\Windows\\system32\\twinapi.appcore (0x18f000 bytes).\r\n2022-06-22 19:20:19,512 [root] DEBUG: DLL loaded at 0x74950000: C:\\Windows\\SYSTEM32\\msvcp110_win (0x65000 bytes).\r\n2022-06-22 19:20:19,527 [root] DEBUG: DLL loaded at 0x6D140000: C:\\Windows\\SYSTEM32\\policymanager (0x83000 bytes).\r\n2022-06-22 19:20:19,527 [root] DEBUG: caller_dispatch: Adding region at 0x6D140000 to caller regions list (ntdll::NtProtectVirtualMemory returns to 0x6D154A88, thread 1884).\r\n2022-06-22 19:20:19,527 [root] DEBUG: caller_dispatch: Dump of calling region at 0x6D140000 skipped (ntdll::NtProtectVirtualMemory returns to 0x6D154A88 mapped as \\Device\\HarddiskVolume2\\Windows\\SysWOW64\\policymanager.dll).\r\n2022-06-22 19:20:19,543 [root] DEBUG: DLL loaded at 0x6D010000: C:\\Windows\\System32\\FM20 (0x12d000 bytes).\r\n2022-06-22 19:20:19,543 [root] DEBUG: caller_dispatch: Adding region at 0x6D010000 to caller regions list (ntdll::LdrLoadDll returns to 0x6D03E07D, thread 1612).\r\n2022-06-22 19:20:19,543 [root] DEBUG: caller_dispatch: Scanning calling region at 0x6D010000...\r\n2022-06-22 19:20:19,543 [root] DEBUG: caller_dispatch: Dump of calling region at 0x6D010000 skipped (ntdll::LdrLoadDll returns to 0x6D03E07D mapped as \\Device\\HarddiskVolume2\\Windows\\SysWOW64\\FM20.DLL).\r\n2022-06-22 19:20:19,793 [root] DEBUG: api-rate-cap: NtQueryValueKey hook disabled due to rate.\r\n2022-06-22 19:20:19,949 [root] DEBUG: caller_dispatch: Adding region at 0x00470000 to caller regions list (ntdll::RtlSetCurrentTransaction returns to 0x00567440, thread 1612).\r\n2022-06-22 19:20:19,949 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00470000 skipped (ntdll::RtlSetCurrentTransaction returns to 0x00567440).\r\n2022-06-22 19:20:19,965 [root] DEBUG: DLL loaded at 0x6CD80000: C:\\PROGRA~2\\COMMON~1\\MICROS~1\\VBA\\VBA7\\VBE7 (0x28d000 bytes).\r\n2022-06-22 19:20:19,965 [root] DEBUG: caller_dispatch: Adding region at 0x6CD80000 to caller regions list (kernel32::HeapCreate returns to 0x6CE56A22, thread 1612).\r\n2022-06-22 19:20:19,965 [root] DEBUG: caller_dispatch: Scanning calling region at 0x6CD80000...\r\n2022-06-22 19:20:19,965 [root] DEBUG: caller_dispatch: Dump of calling region at 0x6CD80000 skipped (kernel32::HeapCreate returns to 0x6CE56A22 mapped as \\Device\\HarddiskVolume2\\PROGRA~2\\COMMON~1\\MICROS~1\\VBA\\VBA7\\VBE7.DLL).\r\n2022-06-22 19:20:19,981 [root] DEBUG: DLL loaded at 0x0D640000: C:\\PROGRA~2\\COMMON~1\\MICROS~1\\VBA\\VBA7\\1033\\VBE7INTL (0x26000 bytes).\r\n2022-06-22 19:20:22,933 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Temp\\Word8.0\\MSForms.exd\r\n2022-06-22 19:20:23,090 [root] DEBUG: DLL loaded at 0x0BBA0000: C:\\Windows\\System32\\fm20ENU (0x8000 bytes).\r\n2022-06-22 19:20:23,106 [root] DEBUG: CreateProcessHandler: Injection info set for new process 3056: C:\\Windows\\splwow64.exe, ImageBase: 0x00000000\r\n2022-06-22 19:20:23,106 [root] INFO: Announced 64-bit process name: splwow64.exe pid: 3056\r\n2022-06-22 19:20:23,106 [lib.api.process] INFO: Monitor config for process 3056: C:\\tmp6tkbn3gc\\dll\\3056.ini\r\n2022-06-22 19:20:23,106 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll, loader C:\\tmp6tkbn3gc\\bin\\KMHLjmgy.exe\r\n2022-06-22 19:20:23,136 [root] DEBUG: Loader: Injecting process 3056 (thread 3452) with C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll.\r\n2022-06-22 19:20:23,136 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\r\n2022-06-22 19:20:23,136 [root] DEBUG: Successfully injected DLL C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll.\r\n2022-06-22 19:20:23,136 [lib.api.process] INFO: Injected into suspended 64-bit process with pid 3056\r\n2022-06-22 19:20:23,136 [root] DEBUG: DLL unloaded from 0x77590000.\r\n2022-06-22 19:20:23,152 [root] INFO: Announced 64-bit process name: splwow64.exe pid: 3056\r\n2022-06-22 19:20:23,152 [lib.api.process] INFO: Monitor config for process 3056: C:\\tmp6tkbn3gc\\dll\\3056.ini\r\n2022-06-22 19:20:23,152 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll, loader C:\\tmp6tkbn3gc\\bin\\KMHLjmgy.exe\r\n2022-06-22 19:20:23,168 [root] DEBUG: Loader: Injecting process 3056 (thread 3452) with C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll.\r\n2022-06-22 19:20:23,168 [root] DEBUG: InjectDllViaIAT: This image has already been patched.\r\n2022-06-22 19:20:23,168 [root] DEBUG: Successfully injected DLL C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll.\r\n2022-06-22 19:20:23,168 [lib.api.process] INFO: Injected into suspended 64-bit process with pid 3056\r\n2022-06-22 19:20:23,168 [root] INFO: Announced 64-bit process name: splwow64.exe pid: 3056\r\n2022-06-22 19:20:23,168 [lib.api.process] INFO: Monitor config for process 3056: C:\\tmp6tkbn3gc\\dll\\3056.ini\r\n2022-06-22 19:20:23,168 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll, loader C:\\tmp6tkbn3gc\\bin\\KMHLjmgy.exe\r\n2022-06-22 19:20:23,184 [root] DEBUG: Loader: Injecting process 3056 (thread 3452) with C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll.\r\n2022-06-22 19:20:23,184 [root] DEBUG: InjectDllViaIAT: This image has already been patched.\r\n2022-06-22 19:20:23,184 [root] DEBUG: Successfully injected DLL C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll.\r\n2022-06-22 19:20:23,184 [lib.api.process] INFO: Injected into suspended 64-bit process with pid 3056\r\n2022-06-22 19:20:23,261 [root] DEBUG: Python path set to 'C:\\Users\\johnquser\\AppData\\Local\\Programs\\Python\\Python37-32'.\r\n2022-06-22 19:20:23,261 [root] DEBUG: Dropped file limit defaulting to 100.\r\n2022-06-22 19:20:23,261 [root] INFO: Disabling sleep skipping.\r\n2022-06-22 19:20:23,261 [root] DEBUG: Initialising Yara...\r\n2022-06-22 19:20:23,261 [root] DEBUG: YaraInit: Compiled rules loaded from existing file C:\\tmp6tkbn3gc\\data\\yara\\capemon.yac\r\n2022-06-22 19:20:23,261 [root] DEBUG: InternalYaraScan: Scanning 0x00007FFDFEB90000, size 0x1f4546\r\n2022-06-22 19:20:23,261 [root] DEBUG: Error 5 (0x5) - AmsiDumper: Is CAPE agent running elevated? Initialisation failed: Access is denied.\r\n2022-06-22 19:20:23,277 [root] DEBUG: Monitor initialised: 64-bit capemon loaded in process 3056 at 0x00007FFDDC260000, thread 3452, image base 0x00007FF7B2360000, stack from 0x00000000001A5000-0x00000000001B0000\r\n2022-06-22 19:20:23,277 [root] DEBUG: Commandline: C:\\Windows\\splwow64.exe 8192\r\n2022-06-22 19:20:23,340 [root] DEBUG: RestoreHeaders: Restored original import table.\r\n2022-06-22 19:20:23,340 [root] INFO: Loaded monitor into process with pid 3056\r\n2022-06-22 19:20:23,340 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFDFC930000 to caller regions list (ntdll::LdrGetProcedureAddressForCaller returns to 0x00007FFDFC970331, thread 3452).\r\n2022-06-22 19:20:23,340 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FFDFC930000 skipped (ntdll::LdrGetProcedureAddressForCaller returns to 0x00007FFDFC970331 mapped as \\Device\\HarddiskVolume2\\Windows\\System32\\KernelBase.dll).\r\n2022-06-22 19:20:23,340 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFDFEB90000 to caller regions list (ntdll::NtClose returns to 0x00007FFDFEC63E73, thread 3452).\r\n2022-06-22 19:20:23,340 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FFDFEB90000 skipped (ntdll::NtClose returns to 0x00007FFDFEC63E73 mapped as \\Device\\HarddiskVolume2\\Windows\\System32\\ntdll.dll).\r\n2022-06-22 19:20:23,355 [root] DEBUG: caller_dispatch: Adding region at 0x00007FF7B2360000 to caller regions list (kernel32::SetUnhandledExceptionFilter returns to 0x00007FF7B236CC61, thread 3452).\r\n2022-06-22 19:20:23,355 [root] DEBUG: YaraScan: Scanning 0x00007FF7B2360000, size 0x26326\r\n2022-06-22 19:20:23,355 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FF7B2360000 skipped (kernel32::SetUnhandledExceptionFilter returns to 0x00007FF7B236CC61 mapped as \\Device\\HarddiskVolume2\\Windows\\splwow64.exe).\r\n2022-06-22 19:20:23,355 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFDFCC00000 to caller regions list (msvcrt::memcpy returns to 0x00007FFDFCC308BA, thread 3452).\r\n2022-06-22 19:20:23,355 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FFDFCC00000 skipped (msvcrt::memcpy returns to 0x00007FFDFCC308BA mapped as \\Device\\HarddiskVolume2\\Windows\\System32\\msvcrt.dll).\r\n2022-06-22 19:20:23,355 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFDFCDE0000 to caller regions list (advapi32::LsaOpenPolicy returns to 0x00007FFDFCDEF72B, thread 3948).\r\n2022-06-22 19:20:23,355 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FFDFCDE0000 skipped (advapi32::LsaOpenPolicy returns to 0x00007FFDFCDEF72B mapped as \\Device\\HarddiskVolume2\\Windows\\System32\\advapi32.dll).\r\n2022-06-22 19:21:24,287 [root] DEBUG: DLL unloaded from 0x733F0000.\r\n2022-06-22 19:21:24,349 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\33D2155C.wmf\r\n2022-06-22 19:21:24,443 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\6C29BDAD.wmf\r\n2022-06-22 19:21:24,506 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\A5968FCA.wmf\r\n2022-06-22 19:21:24,584 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\70A9C943.wmf\r\n2022-06-22 19:21:24,662 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\65AEA68.wmf\r\n2022-06-22 19:21:24,724 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\702B5749.wmf\r\n2022-06-22 19:21:24,818 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\7D1B84B6.wmf\r\n2022-06-22 19:21:24,896 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\470C413F.wmf\r\n2022-06-22 19:21:24,896 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\470C413F.wmf size is 430, Max size: 100000000\r\n2022-06-22 19:21:24,974 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\DCC56A34.wmf\r\n2022-06-22 19:21:24,974 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\DCC56A34.wmf size is 430, Max size: 100000000\r\n2022-06-22 19:21:25,052 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\3D6B1CA5.wmf\r\n2022-06-22 19:21:25,115 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\97F73262.wmf\r\n2022-06-22 19:21:25,178 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\21329AFB.wmf\r\n2022-06-22 19:21:25,271 [root] DEBUG: DLL loaded at 0x6CCC0000: C:\\Windows\\SYSTEM32\\wbemcomn (0x74000 bytes).\r\n2022-06-22 19:21:25,287 [root] DEBUG: DLL loaded at 0x6CD40000: C:\\Windows\\system32\\wbem\\wbemdisp (0x3f000 bytes).\r\n2022-06-22 19:21:25,287 [root] DEBUG: caller_dispatch: Adding region at 0x6CCC0000 to caller regions list (ntdll::LdrLoadDll returns to 0x6CCD81AD, thread 1612).\r\n2022-06-22 19:21:25,287 [root] DEBUG: caller_dispatch: Scanning calling region at 0x6CCC0000...\r\n2022-06-22 19:21:25,287 [root] DEBUG: caller_dispatch: Dump of calling region at 0x6CCC0000 skipped (ntdll::LdrLoadDll returns to 0x6CCD81AD mapped as \\Device\\HarddiskVolume2\\Windows\\SysWOW64\\wbemcomn.dll).\r\n2022-06-22 19:21:25,302 [lib.api.process] INFO: Monitor config for process 828: C:\\tmp6tkbn3gc\\dll\\828.ini\r\n2022-06-22 19:21:25,302 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll, loader C:\\tmp6tkbn3gc\\bin\\KMHLjmgy.exe\r\n2022-06-22 19:21:25,318 [root] DEBUG: Loader: Injecting process 828 with C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll.\r\n2022-06-22 19:21:25,318 [root] DEBUG: Error 5 (0x5) - InjectDll: Failed to open process: Access is denied.\r\n2022-06-22 19:21:25,318 [root] DEBUG: Successfully injected DLL C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll.\r\n2022-06-22 19:21:27,334 [lib.api.process] INFO: Monitor config for process 848: C:\\tmp6tkbn3gc\\dll\\848.ini\r\n2022-06-22 19:21:27,334 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll, loader C:\\tmp6tkbn3gc\\bin\\KMHLjmgy.exe\r\n2022-06-22 19:21:27,350 [root] DEBUG: Loader: Injecting process 848 with C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll.\r\n2022-06-22 19:21:27,350 [root] DEBUG: Error 5 (0x5) - InjectDll: Failed to open process: Access is denied.\r\n2022-06-22 19:21:27,350 [root] DEBUG: Successfully injected DLL C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll.\r\n2022-06-22 19:21:29,365 [root] DEBUG: caller_dispatch: Adding region at 0x6CD40000 to caller regions list (ntdll::LdrLoadDll returns to 0x6CD4EBE2, thread 1612).\r\n2022-06-22 19:21:29,381 [root] DEBUG: DLL loaded at 0x6CCB0000: C:\\Windows\\system32\\wbem\\wbemprox (0xd000 bytes).\r\n2022-06-22 19:21:29,396 [root] DEBUG: DLL loaded at 0x6CC90000: C:\\Windows\\system32\\wbem\\wmiutils (0x1d000 bytes).\r\n2022-06-22 19:21:29,396 [root] DEBUG: caller_dispatch: Adding region at 0x6CCB0000 to caller regions list (ntdll::LdrGetDllHandle returns to 0x6CCB1D42, thread 1612).\r\n2022-06-22 19:21:29,412 [root] DEBUG: DLL loaded at 0x6CC80000: C:\\Windows\\system32\\wbem\\wbemsvc (0x10000 bytes).\r\n2022-06-22 19:21:29,427 [root] DEBUG: DLL loaded at 0x6CBB0000: C:\\Windows\\system32\\wbem\\fastprox (0xc9000 bytes).\r\n2022-06-22 19:21:29,443 [root] DEBUG: caller_dispatch: Adding region at 0x6CBB0000 to caller regions list (ntdll::NtProtectVirtualMemory returns to 0x6CBE0D2E, thread 1612).\r\n2022-06-22 19:21:29,443 [root] DEBUG: caller_dispatch: Dump of calling region at 0x6CBB0000 skipped (ntdll::NtProtectVirtualMemory returns to 0x6CBE0D2E mapped as \\Device\\HarddiskVolume2\\Windows\\SysWOW64\\wbem\\fastprox.dll).\r\n2022-06-22 19:21:29,459 [root] DEBUG: DLL loaded at 0x6CB90000: C:\\Windows\\SYSTEM32\\amsi (0x12000 bytes).\r\n2022-06-22 19:21:29,459 [root] DEBUG: caller_dispatch: Adding region at 0x6CB90000 to caller regions list (ntdll::NtProtectVirtualMemory returns to 0x6CB99ED0, thread 1612).\r\n2022-06-22 19:21:29,459 [root] DEBUG: caller_dispatch: Dump of calling region at 0x6CB90000 skipped (ntdll::NtProtectVirtualMemory returns to 0x6CB99ED0 mapped as \\Device\\HarddiskVolume2\\Windows\\SysWOW64\\amsi.dll).\r\n2022-06-22 19:21:29,459 [root] DEBUG: caller_dispatch: Adding region at 0x6CC80000 to caller regions list (ntdll::NtProtectVirtualMemory returns to 0x6CC88EA8, thread 1612).\r\n2022-06-22 19:21:29,568 [root] DEBUG: DLL loaded at 0x6CAF0000: C:\\Windows\\SYSTEM32\\TextShaping (0x94000 bytes).\r\n2022-06-22 19:21:29,599 [root] DEBUG: DLL loaded at 0x6CAD0000: C:\\Windows\\SYSTEM32\\edputil (0x1b000 bytes).\r\n2022-06-22 19:21:29,724 [root] DEBUG: DLL loaded at 0x6C8C0000: C:\\Windows\\SYSTEM32\\DWrite (0x20c000 bytes).\r\n2022-06-22 19:21:29,724 [root] DEBUG: caller_dispatch: Adding region at 0x6C8C0000 to caller regions list (ntdll::RtlSetCurrentTransaction returns to 0x6C931042, thread 1612).\r\n2022-06-22 19:21:29,724 [root] DEBUG: caller_dispatch: Scanning calling region at 0x6C8C0000...\r\n2022-06-22 19:21:29,724 [root] DEBUG: caller_dispatch: Dump of calling region at 0x6C8C0000 skipped (ntdll::RtlSetCurrentTransaction returns to 0x6C931042 mapped as \\Device\\HarddiskVolume2\\Windows\\SysWOW64\\DWrite.dll).\r\n2022-06-22 19:21:31,834 [root] DEBUG: DLL loaded at 0x6C880000: C:\\Program Files (x86)\\Microsoft Office\\Office14\\msproof7 (0x39000 bytes).\r\n2022-06-22 19:21:31,834 [root] DEBUG: caller_dispatch: Adding region at 0x6C880000 to caller regions list (ntdll::LdrGetDllHandle returns to 0x6C89607F, thread 1612).\r\n2022-06-22 19:21:31,834 [root] DEBUG: caller_dispatch: Scanning calling region at 0x6C880000...\r\n2022-06-22 19:21:31,834 [root] DEBUG: caller_dispatch: Dump of calling region at 0x6C880000 skipped (ntdll::LdrGetDllHandle returns to 0x6C89607F mapped as \\Device\\HarddiskVolume2\\Program Files (x86)\\Microsoft Office\\Office14\\msproof7.dll).\r\n2022-06-22 19:21:31,849 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Roaming\\Microsoft\\UProof\\CUSTOM.DIC\r\n2022-06-22 19:21:31,927 [root] DEBUG: DLL unloaded from 0x6E400000.\r\n2022-06-22 19:21:31,927 [root] DEBUG: DLL unloaded from 0x76960000.\r\n2022-06-22 19:21:31,990 [root] DEBUG: DLL unloaded from 0x6E400000.\r\n2022-06-22 19:21:32,506 [root] DEBUG: DLL loaded at 0x74930000: C:\\Windows\\SYSTEM32\\CRYPTSP (0x13000 bytes).\r\n2022-06-22 19:21:32,506 [root] DEBUG: caller_dispatch: Adding region at 0x74930000 to caller regions list (ntdll::LdrLoadDll returns to 0x74934D82, thread 1884).\r\n2022-06-22 19:21:32,506 [root] DEBUG: caller_dispatch: Dump of calling region at 0x74930000 skipped (ntdll::LdrLoadDll returns to 0x74934D82 mapped as \\Device\\HarddiskVolume2\\Windows\\SysWOW64\\cryptsp.dll).\r\n2022-06-22 19:21:32,521 [root] DEBUG: DLL loaded at 0x73E50000: C:\\Windows\\system32\\rsaenh (0x2f000 bytes).\r\n2022-06-22 19:21:32,521 [root] DEBUG: caller_dispatch: Adding region at 0x73E50000 to caller regions list (ntdll::LdrLoadDll returns to 0x73E57547, thread 1884).\r\n2022-06-22 19:21:32,521 [root] DEBUG: caller_dispatch: Dump of calling region at 0x73E50000 skipped (ntdll::LdrLoadDll returns to 0x73E57547 mapped as \\Device\\HarddiskVolume2\\Windows\\SysWOW64\\rsaenh.dll).\r\n2022-06-22 19:21:36,004 [root] DEBUG: DLL loaded at 0x3F100000: C:\\Program Files (x86)\\Microsoft Office\\OFFICE14\\PROOF\\1033\\MSGR3EN (0x311000 bytes).\r\n2022-06-22 19:21:36,004 [root] DEBUG: caller_dispatch: Adding region at 0x3F100000 to caller regions list (ntdll::NtQueryLicenseValue returns to 0x3F3995C8, thread 1708).\r\n2022-06-22 19:21:36,004 [root] DEBUG: caller_dispatch: Scanning calling region at 0x3F100000...\r\n2022-06-22 19:21:36,004 [root] DEBUG: caller_dispatch: Dump of calling region at 0x3F100000 skipped (ntdll::NtQueryLicenseValue returns to 0x3F3995C8 mapped as \\Device\\HarddiskVolume2\\Program Files (x86)\\Microsoft Office\\Office14\\PROOF\\1033\\MSGR3EN.DLL).\r\n2022-06-22 19:21:52,223 [root] DEBUG: DLL unloaded from 0x6D1D0000.\r\n2022-06-22 19:21:52,223 [root] DEBUG: DLL unloaded from 0x6CD80000.\r\n2022-06-22 19:21:52,238 [root] DEBUG: DLL unloaded from 0x6D1D0000.\r\n2022-06-22 19:21:52,270 [root] DEBUG: DLL unloaded from 0x766C0000.\r\n2022-06-22 19:22:00,973 [root] DEBUG: CreateProcessHandler: Injection info set for new process 3764: C:\\Windows\\splwow64.exe, ImageBase: 0x00000000\r\n2022-06-22 19:22:00,973 [root] INFO: Announced 64-bit process name: splwow64.exe pid: 3764\r\n2022-06-22 19:22:00,973 [lib.api.process] INFO: Monitor config for process 3764: C:\\tmp6tkbn3gc\\dll\\3764.ini\r\n2022-06-22 19:22:00,988 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll, loader C:\\tmp6tkbn3gc\\bin\\KMHLjmgy.exe\r\n2022-06-22 19:22:01,004 [root] DEBUG: Loader: Injecting process 3764 (thread 4164) with C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll.\r\n2022-06-22 19:22:01,004 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\r\n2022-06-22 19:22:01,004 [root] DEBUG: Successfully injected DLL C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll.\r\n2022-06-22 19:22:01,004 [lib.api.process] INFO: Injected into suspended 64-bit process with pid 3764\r\n2022-06-22 19:22:01,004 [root] INFO: Announced 64-bit process name: splwow64.exe pid: 3764\r\n2022-06-22 19:22:01,004 [lib.api.process] INFO: Monitor config for process 3764: C:\\tmp6tkbn3gc\\dll\\3764.ini\r\n2022-06-22 19:22:01,004 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll, loader C:\\tmp6tkbn3gc\\bin\\KMHLjmgy.exe\r\n2022-06-22 19:22:01,019 [root] DEBUG: Loader: Injecting process 3764 (thread 4164) with C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll.\r\n2022-06-22 19:22:01,019 [root] DEBUG: InjectDllViaIAT: This image has already been patched.\r\n2022-06-22 19:22:01,019 [root] DEBUG: Successfully injected DLL C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll.\r\n2022-06-22 19:22:01,019 [lib.api.process] INFO: Injected into suspended 64-bit process with pid 3764\r\n2022-06-22 19:22:01,019 [root] INFO: Announced 64-bit process name: splwow64.exe pid: 3764\r\n2022-06-22 19:22:01,019 [lib.api.process] INFO: Monitor config for process 3764: C:\\tmp6tkbn3gc\\dll\\3764.ini\r\n2022-06-22 19:22:01,019 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll, loader C:\\tmp6tkbn3gc\\bin\\KMHLjmgy.exe\r\n2022-06-22 19:22:01,035 [root] DEBUG: Loader: Injecting process 3764 (thread 4164) with C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll.\r\n2022-06-22 19:22:01,035 [root] DEBUG: InjectDllViaIAT: This image has already been patched.\r\n2022-06-22 19:22:01,035 [root] DEBUG: Successfully injected DLL C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll.\r\n2022-06-22 19:22:01,035 [lib.api.process] INFO: Injected into suspended 64-bit process with pid 3764\r\n2022-06-22 19:22:01,066 [root] DEBUG: Python path set to 'C:\\Users\\johnquser\\AppData\\Local\\Programs\\Python\\Python37-32'.\r\n2022-06-22 19:22:01,066 [root] DEBUG: Dropped file limit defaulting to 100.\r\n2022-06-22 19:22:01,066 [root] INFO: Disabling sleep skipping.\r\n2022-06-22 19:22:01,066 [root] DEBUG: Initialising Yara...\r\n2022-06-22 19:22:01,066 [root] DEBUG: YaraInit: Compiled rules loaded from existing file C:\\tmp6tkbn3gc\\data\\yara\\capemon.yac\r\n2022-06-22 19:22:01,066 [root] DEBUG: InternalYaraScan: Scanning 0x00007FFDFEB90000, size 0x1f4546\r\n2022-06-22 19:22:01,066 [root] DEBUG: Error 5 (0x5) - AmsiDumper: Is CAPE agent running elevated? Initialisation failed: Access is denied.\r\n2022-06-22 19:22:01,066 [root] DEBUG: Monitor initialised: 64-bit capemon loaded in process 3764 at 0x00007FFDDC260000, thread 4164, image base 0x00007FF7B2360000, stack from 0x0000000000B55000-0x0000000000B60000\r\n2022-06-22 19:22:01,082 [root] DEBUG: Commandline: C:\\Windows\\splwow64.exe 8192\r\n2022-06-22 19:22:01,129 [root] DEBUG: RestoreHeaders: Restored original import table.\r\n2022-06-22 19:22:01,129 [root] INFO: Loaded monitor into process with pid 3764\r\n2022-06-22 19:22:01,129 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFDFC930000 to caller regions list (ntdll::LdrGetProcedureAddressForCaller returns to 0x00007FFDFC970331, thread 4164).\r\n2022-06-22 19:22:01,144 [root] DEBUG: caller_dispatch: Scanning calling region at 0x00007FFDFC930000...\r\n2022-06-22 19:22:01,176 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FFDFC930000 skipped (ntdll::LdrGetProcedureAddressForCaller returns to 0x00007FFDFC970331 mapped as \\Device\\HarddiskVolume2\\Windows\\System32\\KernelBase.dll).\r\n2022-06-22 19:22:01,176 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFDFEB90000 to caller regions list (ntdll::NtClose returns to 0x00007FFDFEC63E73, thread 4164).\r\n2022-06-22 19:22:01,176 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FFDFEB90000 skipped (ntdll::NtClose returns to 0x00007FFDFEC63E73 mapped as \\Device\\HarddiskVolume2\\Windows\\System32\\ntdll.dll).\r\n2022-06-22 19:22:01,191 [root] DEBUG: caller_dispatch: Adding region at 0x00007FF7B2360000 to caller regions list (kernel32::SetUnhandledExceptionFilter returns to 0x00007FF7B236CC61, thread 4164).\r\n2022-06-22 19:22:01,191 [root] DEBUG: YaraScan: Scanning 0x00007FF7B2360000, size 0x26326\r\n2022-06-22 19:22:01,191 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FF7B2360000 skipped (kernel32::SetUnhandledExceptionFilter returns to 0x00007FF7B236CC61 mapped as \\Device\\HarddiskVolume2\\Windows\\splwow64.exe).\r\n2022-06-22 19:22:01,191 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFDFCC00000 to caller regions list (msvcrt::memcpy returns to 0x00007FFDFCC308BA, thread 4164).\r\n2022-06-22 19:22:01,191 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FFDFCC00000 skipped (msvcrt::memcpy returns to 0x00007FFDFCC308BA mapped as \\Device\\HarddiskVolume2\\Windows\\System32\\msvcrt.dll).\r\n2022-06-22 19:22:01,191 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFDFCDE0000 to caller regions list (advapi32::LsaOpenPolicy returns to 0x00007FFDFCDEF72B, thread 1408).\r\n2022-06-22 19:22:01,191 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FFDFCDE0000 skipped (advapi32::LsaOpenPolicy returns to 0x00007FFDFCDEF72B mapped as \\Device\\HarddiskVolume2\\Windows\\System32\\advapi32.dll).\r\n2022-06-22 19:22:01,207 [root] DEBUG: NtTerminateProcess hook: Attempting to dump process 3764\r\n2022-06-22 19:22:01,207 [root] DEBUG: GetHookCallerBase: thread 4164, return address 0x00007FFDFEBED9D4, allocation base 0x00007FFDFEB90000.\r\n2022-06-22 19:22:01,207 [root] DEBUG: DoProcessDump: Dumping Imagebase at 0x00007FF7B2360000.\r\n2022-06-22 19:22:01,207 [root] DEBUG: DumpImageInCurrentProcess: Attempting to dump virtual PE image.\r\n2022-06-22 19:22:01,207 [root] DEBUG: DumpProcess: Instantiating PeParser with address: 0x00007FF7B2360000.\r\n2022-06-22 19:22:01,207 [root] DEBUG: DumpProcess: Module entry point VA is 0x000000000000CAA0.\r\n2022-06-22 19:22:01,207 [root] DEBUG: DumpProcess: Module image dump success - dump size 0x0.\r\n2022-06-22 19:22:01,222 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFDFBC10000 to caller regions list (ntdll::NtClose returns to 0x00007FFDFBC1226F, thread 4164).\r\n2022-06-22 19:22:01,222 [root] DEBUG: caller_dispatch: Scanning calling region at 0x00007FFDFBC10000...\r\n2022-06-22 19:22:01,222 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FFDFBC10000 skipped (ntdll::NtClose returns to 0x00007FFDFBC1226F mapped as \\Device\\HarddiskVolume2\\Windows\\System32\\cryptbase.dll).\r\n2022-06-22 19:22:01,222 [root] DEBUG: DLL unloaded from 0x00007FFDFCF70000.\r\n2022-06-22 19:22:01,222 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFDFC820000 to caller regions list (ntdll::NtOpenKey returns to 0x00007FFDFC852C4F, thread 4164).\r\n2022-06-22 19:22:01,222 [root] DEBUG: caller_dispatch: Scanning calling region at 0x00007FFDFC820000...\r\n2022-06-22 19:22:01,222 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FFDFC820000 skipped (ntdll::NtOpenKey returns to 0x00007FFDFC852C4F mapped as \\Device\\HarddiskVolume2\\Windows\\System32\\gdi32full.dll).\r\n2022-06-22 19:22:01,222 [root] INFO: Process with pid 3764 has terminated\r\n2022-06-22 19:22:01,238 [root] DEBUG: DLL unloaded from 0x733F0000.\r\n2022-06-22 19:22:01,238 [root] DEBUG: CreateProcessHandler: Injection info set for new process 3596: C:\\Windows\\splwow64.exe, ImageBase: 0x00000000\r\n2022-06-22 19:22:01,238 [root] INFO: Announced 64-bit process name: splwow64.exe pid: 3596\r\n2022-06-22 19:22:01,238 [lib.api.process] INFO: Monitor config for process 3596: C:\\tmp6tkbn3gc\\dll\\3596.ini\r\n2022-06-22 19:22:01,254 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll, loader C:\\tmp6tkbn3gc\\bin\\KMHLjmgy.exe\r\n2022-06-22 19:22:01,254 [root] DEBUG: Loader: Injecting process 3596 (thread 3296) with C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll.\r\n2022-06-22 19:22:01,254 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\r\n2022-06-22 19:22:01,254 [root] DEBUG: Successfully injected DLL C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll.\r\n2022-06-22 19:22:01,269 [lib.api.process] INFO: Injected into suspended 64-bit process with pid 3596\r\n2022-06-22 19:22:01,269 [root] INFO: Announced 64-bit process name: splwow64.exe pid: 3596\r\n2022-06-22 19:22:01,269 [lib.api.process] INFO: Monitor config for process 3596: C:\\tmp6tkbn3gc\\dll\\3596.ini\r\n2022-06-22 19:22:01,269 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll, loader C:\\tmp6tkbn3gc\\bin\\KMHLjmgy.exe\r\n2022-06-22 19:22:01,285 [root] DEBUG: Loader: Injecting process 3596 (thread 3296) with C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll.\r\n2022-06-22 19:22:01,285 [root] DEBUG: InjectDllViaIAT: This image has already been patched.\r\n2022-06-22 19:22:01,285 [root] DEBUG: Successfully injected DLL C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll.\r\n2022-06-22 19:22:01,285 [lib.api.process] INFO: Injected into suspended 64-bit process with pid 3596\r\n2022-06-22 19:22:01,285 [root] INFO: Announced 64-bit process name: splwow64.exe pid: 3596\r\n2022-06-22 19:22:01,285 [lib.api.process] INFO: Monitor config for process 3596: C:\\tmp6tkbn3gc\\dll\\3596.ini\r\n2022-06-22 19:22:01,285 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll, loader C:\\tmp6tkbn3gc\\bin\\KMHLjmgy.exe\r\n2022-06-22 19:22:01,301 [root] DEBUG: Loader: Injecting process 3596 (thread 3296) with C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll.\r\n2022-06-22 19:22:01,301 [root] DEBUG: InjectDllViaIAT: This image has already been patched.\r\n2022-06-22 19:22:01,301 [root] DEBUG: Successfully injected DLL C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll.\r\n2022-06-22 19:22:01,301 [lib.api.process] INFO: Injected into suspended 64-bit process with pid 3596\r\n2022-06-22 19:22:01,316 [root] DEBUG: Python path set to 'C:\\Users\\johnquser\\AppData\\Local\\Programs\\Python\\Python37-32'.\r\n2022-06-22 19:22:01,316 [root] DEBUG: Dropped file limit defaulting to 100.\r\n2022-06-22 19:22:01,332 [root] INFO: Disabling sleep skipping.\r\n2022-06-22 19:22:01,332 [root] DEBUG: Initialising Yara...\r\n2022-06-22 19:22:01,332 [root] DEBUG: YaraInit: Compiled rules loaded from existing file C:\\tmp6tkbn3gc\\data\\yara\\capemon.yac\r\n2022-06-22 19:22:01,332 [root] DEBUG: InternalYaraScan: Scanning 0x00007FFDFEB90000, size 0x1f4546\r\n2022-06-22 19:22:01,332 [root] DEBUG: Error 5 (0x5) - AmsiDumper: Is CAPE agent running elevated? Initialisation failed: Access is denied.\r\n2022-06-22 19:22:01,332 [root] DEBUG: Monitor initialised: 64-bit capemon loaded in process 3596 at 0x00007FFDDC260000, thread 3296, image base 0x00007FF7B2360000, stack from 0x0000000000CF5000-0x0000000000D00000\r\n2022-06-22 19:22:01,332 [root] DEBUG: Commandline: C:\\Windows\\splwow64.exe 8192\r\n2022-06-22 19:22:01,395 [root] DEBUG: RestoreHeaders: Restored original import table.\r\n2022-06-22 19:22:01,395 [root] INFO: Loaded monitor into process with pid 3596\r\n2022-06-22 19:22:01,395 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFDFC930000 to caller regions list (ntdll::LdrGetProcedureAddressForCaller returns to 0x00007FFDFC970331, thread 3296).\r\n2022-06-22 19:22:01,395 [root] DEBUG: caller_dispatch: Scanning calling region at 0x00007FFDFC930000...\r\n2022-06-22 19:22:01,395 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FFDFC930000 skipped (ntdll::LdrGetProcedureAddressForCaller returns to 0x00007FFDFC970331 mapped as \\Device\\HarddiskVolume2\\Windows\\System32\\KernelBase.dll).\r\n2022-06-22 19:22:01,410 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFDFEB90000 to caller regions list (ntdll::NtClose returns to 0x00007FFDFEC63E73, thread 3296).\r\n2022-06-22 19:22:01,410 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FFDFEB90000 skipped (ntdll::NtClose returns to 0x00007FFDFEC63E73 mapped as \\Device\\HarddiskVolume2\\Windows\\System32\\ntdll.dll).\r\n2022-06-22 19:22:01,410 [root] DEBUG: caller_dispatch: Adding region at 0x00007FF7B2360000 to caller regions list (kernel32::SetUnhandledExceptionFilter returns to 0x00007FF7B236CC61, thread 3296).\r\n2022-06-22 19:22:01,410 [root] DEBUG: YaraScan: Scanning 0x00007FF7B2360000, size 0x26326\r\n2022-06-22 19:22:01,410 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FF7B2360000 skipped (kernel32::SetUnhandledExceptionFilter returns to 0x00007FF7B236CC61 mapped as \\Device\\HarddiskVolume2\\Windows\\splwow64.exe).\r\n2022-06-22 19:22:01,410 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFDFCC00000 to caller regions list (msvcrt::memcpy returns to 0x00007FFDFCC308BA, thread 3296).\r\n2022-06-22 19:22:01,410 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FFDFCC00000 skipped (msvcrt::memcpy returns to 0x00007FFDFCC308BA mapped as \\Device\\HarddiskVolume2\\Windows\\System32\\msvcrt.dll).\r\n2022-06-22 19:22:01,410 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFDFCDE0000 to caller regions list (advapi32::LsaOpenPolicy returns to 0x00007FFDFCDEF72B, thread 3336).\r\n2022-06-22 19:22:01,410 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FFDFCDE0000 skipped (advapi32::LsaOpenPolicy returns to 0x00007FFDFCDEF72B mapped as \\Device\\HarddiskVolume2\\Windows\\System32\\advapi32.dll).\r\n2022-06-22 19:22:01,425 [root] DEBUG: NtTerminateProcess hook: Attempting to dump process 3596\r\n2022-06-22 19:22:01,425 [root] DEBUG: GetHookCallerBase: thread 3296, return address 0x00007FFDFEBED9D4, allocation base 0x00007FFDFEB90000.\r\n2022-06-22 19:22:01,425 [root] DEBUG: DoProcessDump: Dumping Imagebase at 0x00007FF7B2360000.\r\n2022-06-22 19:22:01,425 [root] DEBUG: DumpImageInCurrentProcess: Attempting to dump virtual PE image.\r\n2022-06-22 19:22:01,425 [root] DEBUG: DumpProcess: Instantiating PeParser with address: 0x00007FF7B2360000.\r\n2022-06-22 19:22:01,425 [root] DEBUG: DumpProcess: Module entry point VA is 0x000000000000CAA0.\r\n2022-06-22 19:22:01,425 [root] DEBUG: DumpProcess: Module image dump success - dump size 0x0.\r\n2022-06-22 19:22:01,425 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFDFBC10000 to caller regions list (ntdll::NtClose returns to 0x00007FFDFBC1226F, thread 3296).\r\n2022-06-22 19:22:01,425 [root] DEBUG: caller_dispatch: Scanning calling region at 0x00007FFDFBC10000...\r\n2022-06-22 19:22:01,441 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FFDFBC10000 skipped (ntdll::NtClose returns to 0x00007FFDFBC1226F mapped as \\Device\\HarddiskVolume2\\Windows\\System32\\cryptbase.dll).\r\n2022-06-22 19:22:01,441 [root] DEBUG: DLL unloaded from 0x00007FFDFCF70000.\r\n2022-06-22 19:22:01,441 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFDFC820000 to caller regions list (ntdll::NtOpenKey returns to 0x00007FFDFC852C4F, thread 3296).\r\n2022-06-22 19:22:01,441 [root] DEBUG: caller_dispatch: Scanning calling region at 0x00007FFDFC820000...\r\n2022-06-22 19:22:01,441 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FFDFC820000 skipped (ntdll::NtOpenKey returns to 0x00007FFDFC852C4F mapped as \\Device\\HarddiskVolume2\\Windows\\System32\\gdi32full.dll).\r\n2022-06-22 19:22:01,441 [root] INFO: Process with pid 3596 has terminated\r\n2022-06-22 19:22:01,457 [root] DEBUG: CreateProcessHandler: Injection info set for new process 5100: C:\\Windows\\splwow64.exe, ImageBase: 0x00000000\r\n2022-06-22 19:22:01,457 [root] INFO: Announced 64-bit process name: splwow64.exe pid: 5100\r\n2022-06-22 19:22:01,457 [lib.api.process] INFO: Monitor config for process 5100: C:\\tmp6tkbn3gc\\dll\\5100.ini\r\n2022-06-22 19:22:01,457 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll, loader C:\\tmp6tkbn3gc\\bin\\KMHLjmgy.exe\r\n2022-06-22 19:22:01,473 [root] DEBUG: Loader: Injecting process 5100 (thread 496) with C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll.\r\n2022-06-22 19:22:01,473 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\r\n2022-06-22 19:22:01,473 [root] DEBUG: Successfully injected DLL C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll.\r\n2022-06-22 19:22:01,488 [lib.api.process] INFO: Injected into suspended 64-bit process with pid 5100\r\n2022-06-22 19:22:01,488 [root] INFO: Announced 64-bit process name: splwow64.exe pid: 5100\r\n2022-06-22 19:22:01,488 [lib.api.process] INFO: Monitor config for process 5100: C:\\tmp6tkbn3gc\\dll\\5100.ini\r\n2022-06-22 19:22:01,488 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll, loader C:\\tmp6tkbn3gc\\bin\\KMHLjmgy.exe\r\n2022-06-22 19:22:01,504 [root] DEBUG: Loader: Injecting process 5100 (thread 496) with C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll.\r\n2022-06-22 19:22:01,504 [root] DEBUG: InjectDllViaIAT: This image has already been patched.\r\n2022-06-22 19:22:01,504 [root] DEBUG: Successfully injected DLL C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll.\r\n2022-06-22 19:22:01,504 [lib.api.process] INFO: Injected into suspended 64-bit process with pid 5100\r\n2022-06-22 19:22:01,519 [root] INFO: Announced 64-bit process name: splwow64.exe pid: 5100\r\n2022-06-22 19:22:01,519 [lib.api.process] INFO: Monitor config for process 5100: C:\\tmp6tkbn3gc\\dll\\5100.ini\r\n2022-06-22 19:22:01,519 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll, loader C:\\tmp6tkbn3gc\\bin\\KMHLjmgy.exe\r\n2022-06-22 19:22:01,535 [root] DEBUG: Loader: Injecting process 5100 (thread 496) with C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll.\r\n2022-06-22 19:22:01,535 [root] DEBUG: InjectDllViaIAT: This image has already been patched.\r\n2022-06-22 19:22:01,535 [root] DEBUG: Successfully injected DLL C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll.\r\n2022-06-22 19:22:01,535 [lib.api.process] INFO: Injected into suspended 64-bit process with pid 5100\r\n2022-06-22 19:22:01,551 [root] DEBUG: Python path set to 'C:\\Users\\johnquser\\AppData\\Local\\Programs\\Python\\Python37-32'.\r\n2022-06-22 19:22:01,551 [root] DEBUG: Dropped file limit defaulting to 100.\r\n2022-06-22 19:22:01,566 [root] INFO: Disabling sleep skipping.\r\n2022-06-22 19:22:01,566 [root] DEBUG: Initialising Yara...\r\n2022-06-22 19:22:01,566 [root] DEBUG: YaraInit: Compiled rules loaded from existing file C:\\tmp6tkbn3gc\\data\\yara\\capemon.yac\r\n2022-06-22 19:22:01,566 [root] DEBUG: InternalYaraScan: Scanning 0x00007FFDFEB90000, size 0x1f4546\r\n2022-06-22 19:22:01,566 [root] DEBUG: Error 5 (0x5) - AmsiDumper: Is CAPE agent running elevated? Initialisation failed: Access is denied.\r\n2022-06-22 19:22:01,566 [root] DEBUG: Monitor initialised: 64-bit capemon loaded in process 5100 at 0x00007FFDDC260000, thread 496, image base 0x00007FF7B2360000, stack from 0x00000000003A5000-0x00000000003B0000\r\n2022-06-22 19:22:01,582 [root] DEBUG: Commandline: C:\\Windows\\splwow64.exe 8192\r\n2022-06-22 19:22:01,629 [root] DEBUG: RestoreHeaders: Restored original import table.\r\n2022-06-22 19:22:01,629 [root] INFO: Loaded monitor into process with pid 5100\r\n2022-06-22 19:22:01,644 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFDFC930000 to caller regions list (ntdll::LdrGetProcedureAddressForCaller returns to 0x00007FFDFC970331, thread 496).\r\n2022-06-22 19:22:01,644 [root] DEBUG: caller_dispatch: Scanning calling region at 0x00007FFDFC930000...\r\n2022-06-22 19:22:01,644 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FFDFC930000 skipped (ntdll::LdrGetProcedureAddressForCaller returns to 0x00007FFDFC970331 mapped as \\Device\\HarddiskVolume2\\Windows\\System32\\KernelBase.dll).\r\n2022-06-22 19:22:01,644 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFDFEB90000 to caller regions list (ntdll::NtClose returns to 0x00007FFDFEC63E73, thread 496).\r\n2022-06-22 19:22:01,644 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FFDFEB90000 skipped (ntdll::NtClose returns to 0x00007FFDFEC63E73 mapped as \\Device\\HarddiskVolume2\\Windows\\System32\\ntdll.dll).\r\n2022-06-22 19:22:01,644 [root] DEBUG: caller_dispatch: Adding region at 0x00007FF7B2360000 to caller regions list (kernel32::SetUnhandledExceptionFilter returns to 0x00007FF7B236CC61, thread 496).\r\n2022-06-22 19:22:01,660 [root] DEBUG: YaraScan: Scanning 0x00007FF7B2360000, size 0x26326\r\n2022-06-22 19:22:01,660 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FF7B2360000 skipped (kernel32::SetUnhandledExceptionFilter returns to 0x00007FF7B236CC61 mapped as \\Device\\HarddiskVolume2\\Windows\\splwow64.exe).\r\n2022-06-22 19:22:01,660 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFDFCC00000 to caller regions list (msvcrt::memcpy returns to 0x00007FFDFCC308BA, thread 496).\r\n2022-06-22 19:22:01,660 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FFDFCC00000 skipped (msvcrt::memcpy returns to 0x00007FFDFCC308BA mapped as \\Device\\HarddiskVolume2\\Windows\\System32\\msvcrt.dll).\r\n2022-06-22 19:22:01,660 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFDFCDE0000 to caller regions list (advapi32::LsaOpenPolicy returns to 0x00007FFDFCDEF72B, thread 3472).\r\n2022-06-22 19:22:01,660 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FFDFCDE0000 skipped (advapi32::LsaOpenPolicy returns to 0x00007FFDFCDEF72B mapped as \\Device\\HarddiskVolume2\\Windows\\System32\\advapi32.dll).\r\n2022-06-22 19:22:01,660 [root] DEBUG: NtTerminateProcess hook: Attempting to dump process 5100\r\n2022-06-22 19:22:01,676 [root] DEBUG: GetHookCallerBase: thread 496, return address 0x00007FFDFEBED9D4, allocation base 0x00007FFDFEB90000.\r\n2022-06-22 19:22:01,676 [root] DEBUG: DoProcessDump: Dumping Imagebase at 0x00007FF7B2360000.\r\n2022-06-22 19:22:01,676 [root] DEBUG: DumpImageInCurrentProcess: Attempting to dump virtual PE image.\r\n2022-06-22 19:22:01,676 [root] DEBUG: DumpProcess: Instantiating PeParser with address: 0x00007FF7B2360000.\r\n2022-06-22 19:22:01,676 [root] DEBUG: DumpProcess: Module entry point VA is 0x000000000000CAA0.\r\n2022-06-22 19:22:01,676 [root] DEBUG: DumpProcess: Module image dump success - dump size 0x0.\r\n2022-06-22 19:22:01,676 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFDFBC10000 to caller regions list (ntdll::NtClose returns to 0x00007FFDFBC1226F, thread 496).\r\n2022-06-22 19:22:01,692 [root] DEBUG: caller_dispatch: Scanning calling region at 0x00007FFDFBC10000...\r\n2022-06-22 19:22:01,692 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FFDFBC10000 skipped (ntdll::NtClose returns to 0x00007FFDFBC1226F mapped as \\Device\\HarddiskVolume2\\Windows\\System32\\cryptbase.dll).\r\n2022-06-22 19:22:01,692 [root] DEBUG: DLL unloaded from 0x00007FFDFCF70000.\r\n2022-06-22 19:22:01,692 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFDFC820000 to caller regions list (ntdll::NtOpenKey returns to 0x00007FFDFC852C4F, thread 496).\r\n2022-06-22 19:22:01,692 [root] DEBUG: caller_dispatch: Scanning calling region at 0x00007FFDFC820000...\r\n2022-06-22 19:22:01,692 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FFDFC820000 skipped (ntdll::NtOpenKey returns to 0x00007FFDFC852C4F mapped as \\Device\\HarddiskVolume2\\Windows\\System32\\gdi32full.dll).\r\n2022-06-22 19:22:01,692 [root] INFO: Process with pid 5100 has terminated\r\n2022-06-22 19:22:01,707 [root] DEBUG: CreateProcessHandler: Injection info set for new process 900: C:\\Windows\\splwow64.exe, ImageBase: 0x00000000\r\n2022-06-22 19:22:01,707 [root] INFO: Announced 64-bit process name: splwow64.exe pid: 900\r\n2022-06-22 19:22:01,707 [lib.api.process] INFO: Monitor config for process 900: C:\\tmp6tkbn3gc\\dll\\900.ini\r\n2022-06-22 19:22:01,707 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll, loader C:\\tmp6tkbn3gc\\bin\\KMHLjmgy.exe\r\n2022-06-22 19:22:01,722 [root] DEBUG: Loader: Injecting process 900 (thread 4596) with C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll.\r\n2022-06-22 19:22:01,722 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\r\n2022-06-22 19:22:01,722 [root] DEBUG: Successfully injected DLL C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll.\r\n2022-06-22 19:22:01,738 [lib.api.process] INFO: Injected into suspended 64-bit process with pid 900\r\n2022-06-22 19:22:01,738 [root] INFO: Announced 64-bit process name: splwow64.exe pid: 900\r\n2022-06-22 19:22:01,738 [lib.api.process] INFO: Monitor config for process 900: C:\\tmp6tkbn3gc\\dll\\900.ini\r\n2022-06-22 19:22:01,738 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll, loader C:\\tmp6tkbn3gc\\bin\\KMHLjmgy.exe\r\n2022-06-22 19:22:01,754 [root] DEBUG: Loader: Injecting process 900 (thread 4596) with C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll.\r\n2022-06-22 19:22:01,754 [root] DEBUG: InjectDllViaIAT: This image has already been patched.\r\n2022-06-22 19:22:01,754 [root] DEBUG: Successfully injected DLL C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll.\r\n2022-06-22 19:22:01,754 [lib.api.process] INFO: Injected into suspended 64-bit process with pid 900\r\n2022-06-22 19:22:01,754 [root] INFO: Announced 64-bit process name: splwow64.exe pid: 900\r\n2022-06-22 19:22:01,754 [lib.api.process] INFO: Monitor config for process 900: C:\\tmp6tkbn3gc\\dll\\900.ini\r\n2022-06-22 19:22:01,754 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll, loader C:\\tmp6tkbn3gc\\bin\\KMHLjmgy.exe\r\n2022-06-22 19:22:01,770 [root] DEBUG: Loader: Injecting process 900 (thread 4596) with C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll.\r\n2022-06-22 19:22:01,770 [root] DEBUG: InjectDllViaIAT: This image has already been patched.\r\n2022-06-22 19:22:01,770 [root] DEBUG: Successfully injected DLL C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll.\r\n2022-06-22 19:22:01,785 [lib.api.process] INFO: Injected into suspended 64-bit process with pid 900\r\n2022-06-22 19:22:01,800 [root] DEBUG: Python path set to 'C:\\Users\\johnquser\\AppData\\Local\\Programs\\Python\\Python37-32'.\r\n2022-06-22 19:22:01,800 [root] DEBUG: Dropped file limit defaulting to 100.\r\n2022-06-22 19:22:01,800 [root] INFO: Disabling sleep skipping.\r\n2022-06-22 19:22:01,800 [root] DEBUG: YaraInit: Compiled rules loaded from existing file C:\\tmp6tkbn3gc\\data\\yara\\capemon.yac\r\n2022-06-22 19:22:01,800 [root] DEBUG: InternalYaraScan: Scanning 0x00007FFDFEB90000, size 0x1f4546\r\n2022-06-22 19:22:01,863 [root] DEBUG: RestoreHeaders: Restored original import table.\r\n2022-06-22 19:22:01,863 [root] INFO: Loaded monitor into process with pid 900\r\n2022-06-22 19:22:01,863 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFDFC930000 to caller regions list (ntdll::LdrGetProcedureAddressForCaller returns to 0x00007FFDFC970331, thread 4596).\r\n2022-06-22 19:22:01,879 [root] DEBUG: caller_dispatch: Scanning calling region at 0x00007FFDFC930000...\r\n2022-06-22 19:22:01,879 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FFDFC930000 skipped (ntdll::LdrGetProcedureAddressForCaller returns to 0x00007FFDFC970331 mapped as \\Device\\HarddiskVolume2\\Windows\\System32\\KernelBase.dll).\r\n2022-06-22 19:22:01,879 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFDFEB90000 to caller regions list (ntdll::NtClose returns to 0x00007FFDFEC63E73, thread 4596).\r\n2022-06-22 19:22:01,879 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FFDFEB90000 skipped (ntdll::NtClose returns to 0x00007FFDFEC63E73 mapped as \\Device\\HarddiskVolume2\\Windows\\System32\\ntdll.dll).\r\n2022-06-22 19:22:01,879 [root] DEBUG: caller_dispatch: Adding region at 0x00007FF7B2360000 to caller regions list (kernel32::SetUnhandledExceptionFilter returns to 0x00007FF7B236CC61, thread 4596).\r\n2022-06-22 19:22:01,879 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FF7B2360000 skipped (kernel32::SetUnhandledExceptionFilter returns to 0x00007FF7B236CC61 mapped as \\Device\\HarddiskVolume2\\Windows\\splwow64.exe).\r\n2022-06-22 19:22:01,895 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFDFCC00000 to caller regions list (msvcrt::memcpy returns to 0x00007FFDFCC308BA, thread 4596).\r\n2022-06-22 19:22:01,895 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FFDFCC00000 skipped (msvcrt::memcpy returns to 0x00007FFDFCC308BA mapped as \\Device\\HarddiskVolume2\\Windows\\System32\\msvcrt.dll).\r\n2022-06-22 19:22:01,895 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFDFCDE0000 to caller regions list (advapi32::LsaOpenPolicy returns to 0x00007FFDFCDEF72B, thread 4480).\r\n2022-06-22 19:22:01,895 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FFDFCDE0000 skipped (advapi32::LsaOpenPolicy returns to 0x00007FFDFCDEF72B mapped as \\Device\\HarddiskVolume2\\Windows\\System32\\advapi32.dll).\r\n2022-06-22 19:22:01,895 [root] DEBUG: NtTerminateProcess hook: Attempting to dump process 900\r\n2022-06-22 19:22:01,895 [root] DEBUG: GetHookCallerBase: thread 4596, return address 0x00007FFDFEBED9D4, allocation base 0x00007FFDFEB90000.\r\n2022-06-22 19:22:01,910 [root] DEBUG: DoProcessDump: Dumping Imagebase at 0x00007FF7B2360000.\r\n2022-06-22 19:22:01,910 [root] DEBUG: DumpImageInCurrentProcess: Attempting to dump virtual PE image.\r\n2022-06-22 19:22:01,910 [root] DEBUG: DumpProcess: Instantiating PeParser with address: 0x00007FF7B2360000.\r\n2022-06-22 19:22:01,910 [root] DEBUG: DumpProcess: Module entry point VA is 0x000000000000CAA0.\r\n2022-06-22 19:22:01,910 [root] DEBUG: DumpProcess: Module image dump success - dump size 0x0.\r\n2022-06-22 19:22:01,910 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFDFBC10000 to caller regions list (ntdll::NtClose returns to 0x00007FFDFBC1226F, thread 4596).\r\n2022-06-22 19:22:01,910 [root] DEBUG: caller_dispatch: Scanning calling region at 0x00007FFDFBC10000...\r\n2022-06-22 19:22:01,926 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FFDFBC10000 skipped (ntdll::NtClose returns to 0x00007FFDFBC1226F mapped as \\Device\\HarddiskVolume2\\Windows\\System32\\cryptbase.dll).\r\n2022-06-22 19:22:01,926 [root] DEBUG: DLL unloaded from 0x00007FFDFCF70000.\r\n2022-06-22 19:22:01,926 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFDFC820000 to caller regions list (ntdll::NtOpenKey returns to 0x00007FFDFC852C4F, thread 4596).\r\n2022-06-22 19:22:01,926 [root] DEBUG: caller_dispatch: Scanning calling region at 0x00007FFDFC820000...\r\n2022-06-22 19:22:01,941 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FFDFC820000 skipped (ntdll::NtOpenKey returns to 0x00007FFDFC852C4F mapped as \\Device\\HarddiskVolume2\\Windows\\System32\\gdi32full.dll).\r\n2022-06-22 19:22:01,941 [root] INFO: Process with pid 900 has terminated\r\n2022-06-22 19:22:02,363 [root] DEBUG: CreateProcessHandler: Injection info set for new process 3240: C:\\Windows\\splwow64.exe, ImageBase: 0x00000000\r\n2022-06-22 19:22:02,363 [root] INFO: Announced 64-bit process name: splwow64.exe pid: 3240\r\n2022-06-22 19:22:02,363 [lib.api.process] INFO: Monitor config for process 3240: C:\\tmp6tkbn3gc\\dll\\3240.ini\r\n2022-06-22 19:22:02,363 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll, loader C:\\tmp6tkbn3gc\\bin\\KMHLjmgy.exe\r\n2022-06-22 19:22:02,394 [root] DEBUG: Loader: Injecting process 3240 (thread 4668) with C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll.\r\n2022-06-22 19:22:02,394 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\r\n2022-06-22 19:22:02,394 [root] DEBUG: Successfully injected DLL C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll.\r\n2022-06-22 19:22:02,394 [lib.api.process] INFO: Injected into suspended 64-bit process with pid 3240\r\n2022-06-22 19:22:02,394 [root] INFO: Announced 64-bit process name: splwow64.exe pid: 3240\r\n2022-06-22 19:22:02,394 [lib.api.process] INFO: Monitor config for process 3240: C:\\tmp6tkbn3gc\\dll\\3240.ini\r\n2022-06-22 19:22:02,410 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll, loader C:\\tmp6tkbn3gc\\bin\\KMHLjmgy.exe\r\n2022-06-22 19:22:02,426 [root] DEBUG: Loader: Injecting process 3240 (thread 4668) with C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll.\r\n2022-06-22 19:22:02,426 [root] DEBUG: InjectDllViaIAT: This image has already been patched.\r\n2022-06-22 19:22:02,426 [root] DEBUG: Successfully injected DLL C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll.\r\n2022-06-22 19:22:02,426 [lib.api.process] INFO: Injected into suspended 64-bit process with pid 3240\r\n2022-06-22 19:22:02,441 [root] INFO: Announced 64-bit process name: splwow64.exe pid: 3240\r\n2022-06-22 19:22:02,441 [lib.api.process] INFO: Monitor config for process 3240: C:\\tmp6tkbn3gc\\dll\\3240.ini\r\n2022-06-22 19:22:02,441 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll, loader C:\\tmp6tkbn3gc\\bin\\KMHLjmgy.exe\r\n2022-06-22 19:22:02,457 [root] DEBUG: Loader: Injecting process 3240 (thread 4668) with C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll.\r\n2022-06-22 19:22:02,457 [root] DEBUG: InjectDllViaIAT: This image has already been patched.\r\n2022-06-22 19:22:02,457 [root] DEBUG: Successfully injected DLL C:\\tmp6tkbn3gc\\dll\\hqmfbNV.dll.\r\n2022-06-22 19:22:02,457 [lib.api.process] INFO: Injected into suspended 64-bit process with pid 3240\r\n2022-06-22 19:22:02,472 [root] DEBUG: Python path set to 'C:\\Users\\johnquser\\AppData\\Local\\Programs\\Python\\Python37-32'.\r\n2022-06-22 19:22:02,488 [root] DEBUG: Dropped file limit defaulting to 100.\r\n2022-06-22 19:22:02,488 [root] DEBUG: Initialising Yara...\r\n2022-06-22 19:22:02,488 [root] DEBUG: YaraInit: Compiled rules loaded from existing file C:\\tmp6tkbn3gc\\data\\yara\\capemon.yac\r\n2022-06-22 19:22:02,488 [root] DEBUG: InternalYaraScan: Scanning 0x00007FFDFEB90000, size 0x1f4546\r\n2022-06-22 19:22:02,488 [root] DEBUG: Error 5 (0x5) - AmsiDumper: Is CAPE agent running elevated? Initialisation failed: Access is denied.\r\n2022-06-22 19:22:02,504 [root] DEBUG: Monitor initialised: 64-bit capemon loaded in process 3240 at 0x00007FFDDC260000, thread 4668, image base 0x00007FF7B2360000, stack from 0x0000000000D25000-0x0000000000D30000\r\n2022-06-22 19:22:02,504 [root] DEBUG: Commandline: C:\\Windows\\splwow64.exe 8192\r\n2022-06-22 19:22:02,551 [root] DEBUG: RestoreHeaders: Restored original import table.\r\n2022-06-22 19:22:02,566 [root] INFO: Loaded monitor into process with pid 3240\r\n2022-06-22 19:22:02,566 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFDFC930000 to caller regions list (ntdll::LdrGetProcedureAddressForCaller returns to 0x00007FFDFC970331, thread 4668).\r\n2022-06-22 19:22:02,566 [root] DEBUG: caller_dispatch: Scanning calling region at 0x00007FFDFC930000...\r\n2022-06-22 19:22:02,566 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FFDFC930000 skipped (ntdll::LdrGetProcedureAddressForCaller returns to 0x00007FFDFC970331 mapped as \\Device\\HarddiskVolume2\\Windows\\System32\\KernelBase.dll).\r\n2022-06-22 19:22:02,566 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFDFEB90000 to caller regions list (ntdll::NtClose returns to 0x00007FFDFEC63E73, thread 4668).\r\n2022-06-22 19:22:02,582 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFDFCDE0000 to caller regions list (advapi32::LsaOpenPolicy returns to 0x00007FFDFCDEF72B, thread 1564).\r\n2022-06-22 19:22:02,582 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FFDFCDE0000 skipped (advapi32::LsaOpenPolicy returns to 0x00007FFDFCDEF72B mapped as \\Device\\HarddiskVolume2\\Windows\\System32\\advapi32.dll).\r\n2022-06-22 19:22:02,582 [root] DEBUG: NtTerminateProcess hook: Attempting to dump process 3240\r\n2022-06-22 19:22:02,582 [root] DEBUG: GetHookCallerBase: thread 4668, return address 0x00007FFDFEBED9D4, allocation base 0x00007FFDFEB90000.\r\n2022-06-22 19:22:02,582 [root] DEBUG: DoProcessDump: Dumping Imagebase at 0x00007FF7B2360000.\r\n2022-06-22 19:22:02,582 [root] DEBUG: DumpImageInCurrentProcess: Attempting to dump virtual PE image.\r\n2022-06-22 19:22:02,582 [root] DEBUG: DumpProcess: Instantiating PeParser with address: 0x00007FF7B2360000.\r\n2022-06-22 19:22:02,597 [root] DEBUG: DumpProcess: Module entry point VA is 0x000000000000CAA0.\r\n2022-06-22 19:22:02,597 [root] DEBUG: DumpProcess: Module image dump success - dump size 0x0.\r\n2022-06-22 19:22:02,597 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFDFBC10000 to caller regions list (ntdll::NtClose returns to 0x00007FFDFBC1226F, thread 4668).\r\n2022-06-22 19:22:02,597 [root] DEBUG: DLL unloaded from 0x00007FFDFCF70000.\r\n2022-06-22 19:22:02,613 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFDFC820000 to caller regions list (ntdll::NtOpenKey returns to 0x00007FFDFC852C4F, thread 4668).\r\n2022-06-22 19:22:02,613 [root] DEBUG: caller_dispatch: Scanning calling region at 0x00007FFDFC820000...\r\n2022-06-22 19:22:02,613 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FFDFC820000 skipped (ntdll::NtOpenKey returns to 0x00007FFDFC852C4F mapped as \\Device\\HarddiskVolume2\\Windows\\System32\\gdi32full.dll).\r\n2022-06-22 19:22:02,613 [root] INFO: Process with pid 3240 has terminated\r\n2022-06-22 19:22:03,223 [root] DEBUG: caller_dispatch: Adding region at 0x6CAF0000 to caller regions list (ntdll::NtAllocateVirtualMemory returns to 0x6CB4B792, thread 1612).\r\n2022-06-22 19:22:03,238 [root] DEBUG: caller_dispatch: Dump of calling region at 0x6CAF0000 skipped (ntdll::NtAllocateVirtualMemory returns to 0x6CB4B792 mapped as \\Device\\HarddiskVolume2\\Windows\\SysWOW64\\TextShaping.dll).\r\n2022-06-22 19:22:06,089 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\FBD4E0C0.wmf\r\n2022-06-22 19:22:07,651 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\8E1BE9C1.wmf\r\n2022-06-22 19:22:08,042 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\2A66C4CE.wmf\r\n2022-06-22 19:22:08,449 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\51C01277.wmf\r\n2022-06-22 19:22:08,870 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\7BBB5A0C.wmf\r\n2022-06-22 19:22:09,230 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\B9905A9D.wmf\r\n2022-06-22 19:22:09,605 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\C9C427FA.wmf\r\n2022-06-22 19:22:09,980 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\4E4DA3B3.wmf\r\n2022-06-22 19:22:10,417 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\E5A5A218.wmf\r\n2022-06-22 19:22:10,776 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\7C56CB39.wmf\r\n2022-06-22 19:22:11,136 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\BDF207E6.wmf\r\n2022-06-22 19:22:11,511 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\D9E60AAF.wmf\r\n2022-06-22 19:22:13,511 [modules.auxiliary.human] INFO: Closing Office window\r\n2022-06-22 19:22:13,558 [root] DEBUG: DLL unloaded from 0x6D1D0000.\r\n2022-06-22 19:22:13,589 [root] DEBUG: DLL unloaded from 0x766C0000.\r\n2022-06-22 19:22:13,621 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Temp\\~$emotet.doc size is 162, Max size: 100000000\r\n2022-06-22 19:22:13,652 [root] DEBUG: DLL unloaded from 0x3F100000.\r\n2022-06-22 19:22:13,698 [root] DEBUG: DLL unloaded from 0x6E510000.\r\n2022-06-22 19:22:13,870 [root] DEBUG: DLL unloaded from 0x75900000.\r\n2022-06-22 19:22:13,870 [root] DEBUG: DLL unloaded from 0x6CD40000.\r\n2022-06-22 19:22:13,886 [root] DEBUG: DLL unloaded from 0x767B0000.\r\n2022-06-22 19:22:13,886 [root] DEBUG: DLL unloaded from 0x6CD80000.\r\n2022-06-22 19:22:13,886 [root] DEBUG: DLL unloaded from 0x0D640000.\r\n2022-06-22 19:22:13,902 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.Word\\~WRS{EEC6EDE2-BCA5-49CB-B19F-0F5A76F6BDCD}.tmp\r\n2022-06-22 19:22:13,902 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.Word\\~WRS{6ABC6DC3-9B72-4311-9F62-CFEF5754120E}.tmp\r\n2022-06-22 19:22:13,902 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.Word\\~WRS{FEAAABCE-A76B-46D0-8551-5FA8C8672DB3}.tmp\r\n2022-06-22 19:22:13,918 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.Word\\~WRS{EEC6EDE2-BCA5-49CB-B19F-0F5A76F6BDCD}.tmp size is 0, Max size: 100000000\r\n2022-06-22 19:22:13,948 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Roaming\\Microsoft\\Templates\\~$Normal.dotm size is 162, Max size: 100000000\r\n2022-06-22 19:22:13,964 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.Word\\~WRS{6ABC6DC3-9B72-4311-9F62-CFEF5754120E}.tmp size is 1024, Max size: 100000000\r\n2022-06-22 19:22:13,980 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.Word\\~WRS{FEAAABCE-A76B-46D0-8551-5FA8C8672DB3}.tmp size is 1536, Max size: 100000000\r\n2022-06-22 19:22:13,996 [root] DEBUG: DLL unloaded from 0x6E200000.\r\n2022-06-22 19:22:13,996 [root] DEBUG: DLL unloaded from 0x767B0000.\r\n2022-06-22 19:22:13,996 [root] DEBUG: DLL unloaded from 0x766C0000.\r\n2022-06-22 19:22:13,996 [root] DEBUG: DLL unloaded from 0x6E510000.\r\n2022-06-22 19:22:13,996 [root] DEBUG: DLL unloaded from 0x6C880000.\r\n2022-06-22 19:22:14,011 [root] DEBUG: DLL unloaded from 0x6E4B0000.\r\n2022-06-22 19:22:14,011 [root] DEBUG: DLL unloaded from 0x74920000.\r\n2022-06-22 19:22:14,011 [root] DEBUG: DLL unloaded from 0x76AA0000.\r\n2022-06-22 19:22:14,011 [root] DEBUG: DLL unloaded from 0x6E420000.\r\n2022-06-22 19:22:14,011 [root] DEBUG: DLL unloaded from 0x05090000.\r\n2022-06-22 19:22:14,027 [root] DEBUG: DLL unloaded from 0x2FDD0000.\r\n2022-06-22 19:22:14,027 [root] DEBUG: DLL unloaded from 0x73460000.\r\n2022-06-22 19:22:14,027 [root] DEBUG: DLL unloaded from 0x75630000.\r\n2022-06-22 19:22:14,073 [root] DEBUG: DLL unloaded from 0x75EA0000.\r\n2022-06-22 19:22:14,073 [root] DEBUG: DLL unloaded from 0x74B70000.\r\n2022-06-22 19:22:14,073 [root] DEBUG: DLL unloaded from 0x6E510000.\r\n2022-06-22 19:22:14,089 [root] DEBUG: DLL unloaded from 0x767B0000.\r\n2022-06-22 19:22:14,089 [root] DEBUG: DLL unloaded from 0x733F0000.\r\n2022-06-22 19:22:14,089 [root] DEBUG: DLL unloaded from 0x75630000.\r\n2022-06-22 19:22:14,089 [root] DEBUG: DLL unloaded from 0x73A40000.\r\n2022-06-22 19:22:14,105 [root] DEBUG: DLL unloaded from 0x75600000.\r\n2022-06-22 19:22:14,105 [root] DEBUG: DLL unloaded from 0x73460000.\r\n2022-06-22 19:22:14,121 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\D9E60AAF.wmf size is 430, Max size: 100000000\r\n2022-06-22 19:22:14,136 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\BDF207E6.wmf size is 430, Max size: 100000000\r\n2022-06-22 19:22:14,151 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\7C56CB39.wmf size is 430, Max size: 100000000\r\n2022-06-22 19:22:14,167 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\E5A5A218.wmf size is 430, Max size: 100000000\r\n2022-06-22 19:22:14,183 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\4E4DA3B3.wmf size is 430, Max size: 100000000\r\n2022-06-22 19:22:14,214 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\C9C427FA.wmf size is 430, Max size: 100000000\r\n2022-06-22 19:22:14,245 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\B9905A9D.wmf size is 430, Max size: 100000000\r\n2022-06-22 19:22:14,261 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\7BBB5A0C.wmf size is 430, Max size: 100000000\r\n2022-06-22 19:22:14,308 [root] DEBUG: Dropped file limit reached.\r\n2022-06-22 19:22:14,308 [root] DEBUG: NtTerminateProcess hook: Attempting to dump process 3096\r\n2022-06-22 19:22:14,308 [root] DEBUG: GetHookCallerBase: thread 1612, return address 0x2FDD1625, allocation base 0x2FDD0000.\r\n2022-06-22 19:22:14,324 [root] DEBUG: DumpProcess: Instantiating PeParser with address: 0x2FDD0000.\r\n2022-06-22 19:22:14,339 [root] DEBUG: DumpProcess: Module entry point VA is 0x000010FC.\r\n2022-06-22 19:22:14,355 [lib.common.results] INFO: File C:\\PrUGuHE\\CAPE\\3096_510117308923462022 size is 1416704, Max size: 100000000\r\n2022-06-22 19:22:14,370 [root] DEBUG: DumpProcess: Module image dump success - dump size 0x159e00.\r\n2022-06-22 19:22:14,402 [root] DEBUG: DLL unloaded from 0x6E510000.\r\n2022-06-22 19:22:14,402 [root] DEBUG: DLL unloaded from 0x772D0000.\r\n2022-06-22 19:22:14,402 [root] DEBUG: DLL unloaded from 0x6E120000.\r\n2022-06-22 19:22:14,417 [root] DEBUG: api-rate-cap: LdrGetDllHandle hook disabled due to rate.\r\n2022-06-22 19:22:14,417 [root] DEBUG: DLL unloaded from 0x6E720000.\r\n2022-06-22 19:22:14,417 [root] DEBUG: DLL unloaded from 0x75600000.\r\n2022-06-22 19:22:14,433 [root] DEBUG: DLL unloaded from 0x72320000.\r\n2022-06-22 19:22:14,433 [root] INFO: Process with pid 3096 has terminated\r\n2022-06-22 19:23:35,168 [root] INFO: Analysis timeout hit, terminating analysis\r\n2022-06-22 19:23:35,168 [lib.api.process] INFO: Terminate event set for process 3056\r\n2022-06-22 19:23:40,183 [lib.api.process] INFO: Termination confirmed for process 3056\r\n2022-06-22 19:23:40,183 [root] INFO: Terminate event set for process 3056\r\n2022-06-22 19:23:40,183 [root] INFO: Created shutdown mutex\r\n2022-06-22 19:23:41,199 [root] INFO: Shutting down package\r\n2022-06-22 19:23:41,199 [root] INFO: Stopping auxiliary modules\r\n2022-06-22 19:23:41,199 [modules.auxiliary.curtain] ERROR: Curtain - Error collecting PowerShell events - [Errno 13] Permission denied: 'C:\\\\curtain.log'\r\n2022-06-22 19:23:41,199 [modules.auxiliary.curtain] ERROR: Curtain log file not found!\r\n2022-06-22 19:23:41,292 [modules.auxiliary.evtx] DEBUG: Adding C:/windows/Sysnative/winevt/Logs\\Application.evtx to zip dump\r\n2022-06-22 19:23:41,308 [root] WARNING: Cannot terminate auxiliary module Evtx: [Errno 13] Permission denied: 'C:/windows/Sysnative/winevt/Logs\\\\Application.evtx'\r\n2022-06-22 19:23:41,448 [lib.common.results] WARNING: File C:\\PrUGuHE\\bin\\procmon.xml doesn't exist anymore\r\n2022-06-22 19:23:41,448 [root] INFO: Finishing auxiliary modules\r\n2022-06-22 19:23:41,448 [root] INFO: Shutting down pipe server and dumping dropped files\r\n2022-06-22 19:23:41,464 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Roaming\\Microsoft\\Templates\\Normal.dotm size is 20513, Max size: 100000000\r\n2022-06-22 19:23:41,480 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Temp\\emotet.doc size is 143202, Max size: 100000000\r\n2022-06-22 19:23:41,495 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Temp\\Word8.0\\MSForms.exd size is 166724, Max size: 100000000\r\n2022-06-22 19:23:41,511 [root] WARNING: File at path c:\\users\\johnquser\\appdata\\local\\microsoft\\windows\\inetcache\\content.mso\\33d2155c.wmf does not exist, skipping\r\n2022-06-22 19:23:41,511 [root] WARNING: File at path c:\\users\\johnquser\\appdata\\local\\microsoft\\windows\\inetcache\\content.mso\\6c29bdad.wmf does not exist, skipping\r\n2022-06-22 19:23:41,527 [root] WARNING: File at path c:\\users\\johnquser\\appdata\\local\\microsoft\\windows\\inetcache\\content.mso\\a5968fca.wmf does not exist, skipping\r\n2022-06-22 19:23:41,527 [root] WARNING: File at path c:\\users\\johnquser\\appdata\\local\\microsoft\\windows\\inetcache\\content.mso\\70a9c943.wmf does not exist, skipping\r\n2022-06-22 19:23:41,527 [root] WARNING: File at path c:\\users\\johnquser\\appdata\\local\\microsoft\\windows\\inetcache\\content.mso\\65aea68.wmf does not exist, skipping\r\n2022-06-22 19:23:41,527 [root] WARNING: File at path c:\\users\\johnquser\\appdata\\local\\microsoft\\windows\\inetcache\\content.mso\\702b5749.wmf does not exist, skipping\r\n2022-06-22 19:23:41,527 [root] WARNING: File at path c:\\users\\johnquser\\appdata\\local\\microsoft\\windows\\inetcache\\content.mso\\7d1b84b6.wmf does not exist, skipping\r\n2022-06-22 19:23:41,527 [root] WARNING: File at path c:\\users\\johnquser\\appdata\\local\\microsoft\\windows\\inetcache\\content.mso\\3d6b1ca5.wmf does not exist, skipping\r\n2022-06-22 19:23:41,527 [root] WARNING: File at path c:\\users\\johnquser\\appdata\\local\\microsoft\\windows\\inetcache\\content.mso\\97f73262.wmf does not exist, skipping\r\n2022-06-22 19:23:41,527 [root] WARNING: File at path c:\\users\\johnquser\\appdata\\local\\microsoft\\windows\\inetcache\\content.mso\\21329afb.wmf does not exist, skipping\r\n2022-06-22 19:23:41,527 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Roaming\\Microsoft\\UProof\\CUSTOM.DIC size is 24, Max size: 100000000\r\n2022-06-22 19:23:41,542 [root] WARNING: File at path c:\\users\\johnquser\\appdata\\local\\microsoft\\windows\\inetcache\\content.mso\\fbd4e0c0.wmf does not exist, skipping\r\n2022-06-22 19:23:41,542 [root] WARNING: File at path c:\\users\\johnquser\\appdata\\local\\microsoft\\windows\\inetcache\\content.mso\\8e1be9c1.wmf does not exist, skipping\r\n2022-06-22 19:23:41,542 [root] WARNING: File at path c:\\users\\johnquser\\appdata\\local\\microsoft\\windows\\inetcache\\content.mso\\2a66c4ce.wmf does not exist, skipping\r\n2022-06-22 19:23:41,542 [root] WARNING: File at path c:\\users\\johnquser\\appdata\\local\\microsoft\\windows\\inetcache\\content.mso\\51c01277.wmf does not exist, skipping\r\n2022-06-22 19:23:41,542 [root] WARNING: Folder at path \"C:\\PrUGuHE\\debugger\" does not exist, skipping\r\n2022-06-22 19:23:41,542 [root] WARNING: Folder at path \"C:\\PrUGuHE\\tlsdump\" does not exist, skipping\r\n2022-06-22 19:23:41,558 [root] INFO: Analysis completed\r\n```\nComment: > Cannot execute auxiliary module Disguise: [WinError 5] Access is denied\r\n> Error 5 (0x5) - InjectDll: Failed to open process: Access is denied.\r\n> Error 5 (0x5) - AmsiDumper: Is CAPE agent running elevated? Initialisation failed: Access is denied.\r\n\r\nYes, i had these acces denied failures too. I guess your agent does not have elevated rights. \r\nSame output in process tree. \r\nI manged to run agent elevated, but then i got some bluescreens.\r\nFor cape agent in WIN10 see https://capev2.readthedocs.io/en/latest/installation/guest/agent.html\nComment: The best method of installing the agent is still debatable after this documentation was updated recently. I personally do not use a method that involves scheduled tasks - there is in fact no actual need for automating the agent launch but I have achieved it by placing an elevated shortcut in startup in combination with disabling UAC. But just launching the agent by hand prior to snapshot is perfectly sufficient.\nComment: Thx for the hint\nComment: @ClaudioWayne 100% correct, I did not have the Agent running with elevated privilege, I appreciate the callout. Just fixed it.\nComment: Did you test the sample with elevated privilege?\nComment: ```\r\n2022-06-28 17:31:23,772 [root] INFO: Date set to: 20220629T10:19:41, timeout set to: 200\r\n2022-06-29 10:19:41,094 [root] DEBUG: Starting analyzer from: C:\\tmpurzvybzd\r\n2022-06-29 10:19:41,094 [root] DEBUG: Storing results at: C:\\GXSBfz\r\n2022-06-29 10:19:41,094 [root] DEBUG: Pipe server name: \\\\.\\PIPE\\SfuMTu\r\n2022-06-29 10:19:41,094 [root] DEBUG: Python path: C:\\Users\\johnquser\\AppData\\Local\\Programs\\Python\\Python37-32\r\n2022-06-29 10:19:41,094 [root] INFO: Analysis package \"doc\" has been specified\r\n2022-06-29 10:19:41,094 [root] DEBUG: Importing analysis package \"doc\"...\r\n2022-06-29 10:19:41,126 [root] DEBUG: Initializing analysis package \"doc\"...\r\n2022-06-29 10:19:41,126 [root] INFO: Analyzer: Package modules.packages.doc does not specify a DLL option\r\n2022-06-29 10:19:41,126 [root] INFO: Analyzer: Package modules.packages.doc does not specify a DLL_64 option\r\n2022-06-29 10:19:41,126 [root] INFO: Analyzer: Package modules.packages.doc does not specify a loader option\r\n2022-06-29 10:19:41,126 [root] INFO: Analyzer: Package modules.packages.doc does not specify a loader_64 option\r\n2022-06-29 10:19:41,313 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.browser\"...\r\n2022-06-29 10:19:41,329 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.curtain\"...\r\n2022-06-29 10:19:41,329 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.digisig\"...\r\n2022-06-29 10:19:41,344 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.disguise\"...\r\n2022-06-29 10:19:41,360 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.evtx\"...\r\n2022-06-29 10:19:41,376 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.filepickup\"...\r\n2022-06-29 10:19:41,376 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.human\"...\r\n2022-06-29 10:19:41,391 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.permissions\"...\r\n2022-06-29 10:19:41,391 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.procmon\"...\r\n2022-06-29 10:19:41,422 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.screenshots\"...\r\n2022-06-29 10:19:41,454 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageChops'\r\n2022-06-29 10:19:41,594 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageGrab'\r\n2022-06-29 10:19:41,610 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageDraw'\r\n2022-06-29 10:19:41,610 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.sysmon\"...\r\n2022-06-29 10:19:41,610 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.tlsdump\"...\r\n2022-06-29 10:19:41,610 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.usage\"...\r\n2022-06-29 10:19:41,626 [root] DEBUG: Initialized auxiliary module \"Browser\"\r\n2022-06-29 10:19:41,626 [root] DEBUG: Trying to start auxiliary module \"Browser\"...\r\n2022-06-29 10:19:41,626 [root] DEBUG: Started auxiliary module \"Browser\"\r\n2022-06-29 10:19:41,626 [root] DEBUG: Started auxiliary module Browser\r\n2022-06-29 10:19:41,626 [root] DEBUG: Initialized auxiliary module \"Curtain\"\r\n2022-06-29 10:19:41,626 [root] DEBUG: Trying to start auxiliary module \"Curtain\"...\r\n2022-06-29 10:19:41,626 [root] DEBUG: Started auxiliary module \"Curtain\"\r\n2022-06-29 10:19:41,626 [root] DEBUG: Started auxiliary module Curtain\r\n2022-06-29 10:19:41,626 [root] DEBUG: Initialized auxiliary module \"DigiSig\"\r\n2022-06-29 10:19:41,626 [root] DEBUG: Trying to start auxiliary module \"DigiSig\"...\r\n2022-06-29 10:19:41,626 [modules.auxiliary.digisig] DEBUG: Checking for a digital signature\r\n2022-06-29 10:19:41,907 [modules.auxiliary.digisig] DEBUG: File format not recognized\r\n2022-06-29 10:19:41,907 [modules.auxiliary.digisig] INFO: Uploading signature results to aux/DigiSig.json\r\n2022-06-29 10:19:41,923 [root] DEBUG: Started auxiliary module \"DigiSig\"\r\n2022-06-29 10:19:41,923 [root] DEBUG: Started auxiliary module DigiSig\r\n2022-06-29 10:19:41,923 [root] DEBUG: Initialized auxiliary module \"Disguise\"\r\n2022-06-29 10:19:41,923 [root] DEBUG: Trying to start auxiliary module \"Disguise\"...\r\n2022-06-29 10:19:41,938 [modules.auxiliary.disguise] INFO: Disguising GUID to 3ba15bcb-d322-4109-b623-b3733c61bb8e\r\n2022-06-29 10:19:41,938 [root] DEBUG: Started auxiliary module \"Disguise\"\r\n2022-06-29 10:19:41,938 [root] DEBUG: Started auxiliary module Disguise\r\n2022-06-29 10:19:41,938 [root] DEBUG: Initialized auxiliary module \"Evtx\"\r\n2022-06-29 10:19:41,938 [root] DEBUG: Trying to start auxiliary module \"Evtx\"...\r\n2022-06-29 10:19:41,954 [root] DEBUG: Started auxiliary module \"Evtx\"\r\n2022-06-29 10:19:41,954 [root] DEBUG: Started auxiliary module Evtx\r\n2022-06-29 10:19:41,954 [root] WARNING: Auxiliary module FilePickup was not implemented: 'Config' object has no attribute 'file_pickup'\r\n2022-06-29 10:19:41,954 [root] DEBUG: Initialized auxiliary module \"Human\"\r\n2022-06-29 10:19:41,954 [root] DEBUG: Trying to start auxiliary module \"Human\"...\r\n2022-06-29 10:19:41,954 [root] DEBUG: Started auxiliary module \"Human\"\r\n2022-06-29 10:19:41,954 [root] DEBUG: Started auxiliary module Human\r\n2022-06-29 10:19:41,969 [root] WARNING: Auxiliary module Permissions was not implemented: 'Config' object has no attribute 'file_pickup'\r\n2022-06-29 10:19:41,969 [root] DEBUG: Initialized auxiliary module \"Procmon\"\r\n2022-06-29 10:19:41,969 [root] DEBUG: Trying to start auxiliary module \"Procmon\"...\r\n2022-06-29 10:19:41,969 [root] DEBUG: Started auxiliary module \"Procmon\"\r\n2022-06-29 10:19:41,969 [root] DEBUG: Started auxiliary module Procmon\r\n2022-06-29 10:19:41,969 [root] DEBUG: Initialized auxiliary module \"Screenshots\"\r\n2022-06-29 10:19:41,969 [root] DEBUG: Trying to start auxiliary module \"Screenshots\"...\r\n2022-06-29 10:19:41,969 [root] DEBUG: Started auxiliary module \"Screenshots\"\r\n2022-06-29 10:19:41,969 [root] DEBUG: Started auxiliary module Screenshots\r\n2022-06-29 10:19:41,969 [root] DEBUG: Initialized auxiliary module \"Sysmon\"\r\n2022-06-29 10:19:41,969 [root] DEBUG: Trying to start auxiliary module \"Sysmon\"...\r\n2022-06-29 10:19:41,969 [root] DEBUG: Started auxiliary module \"Sysmon\"\r\n2022-06-29 10:19:41,969 [root] DEBUG: Started auxiliary module Sysmon\r\n2022-06-29 10:19:41,969 [root] DEBUG: Initialized auxiliary module \"TLSDumpMasterSecrets\"\r\n2022-06-29 10:19:41,969 [root] DEBUG: Trying to start auxiliary module \"TLSDumpMasterSecrets\"...\r\n2022-06-29 10:19:41,985 [modules.auxiliary.tlsdump] INFO: lsass.exe found, pid 716\r\n2022-06-29 10:19:41,985 [lib.api.process] INFO: Monitor config for process 716: C:\\tmpurzvybzd\\dll\\716.ini\r\n2022-06-29 10:19:41,985 [lib.api.process] INFO: Option 'tlsdump' with value '1' sent to monitor\r\n2022-06-29 10:19:41,985 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmpurzvybzd\\dll\\xmukJfa.dll, loader C:\\tmpurzvybzd\\bin\\XYYzJVVA.exe\r\n2022-06-29 10:19:42,063 [root] DEBUG: Loader: Injecting process 716 with C:\\tmpurzvybzd\\dll\\xmukJfa.dll.\r\n2022-06-29 10:19:42,110 [root] DEBUG: Python path set to 'C:\\Users\\johnquser\\AppData\\Local\\Programs\\Python\\Python37-32'.\r\n2022-06-29 10:19:42,110 [root] DEBUG: TLS secret dump mode enabled.\r\n2022-06-29 10:19:42,110 [root] INFO: Disabling sleep skipping.\r\n2022-06-29 10:19:42,110 [root] DEBUG: Monitor initialised: 64-bit capemon loaded in process 716 at 0x00007FFD08D30000, thread 1656, image base 0x00007FF7A96D0000, stack from 0x000000E436774000-0x000000E436780000\r\n2022-06-29 10:19:42,110 [root] DEBUG: Commandline: C:\\Windows\\system32\\lsass.exe\r\n2022-06-29 10:19:42,141 [root] DEBUG: InjectDllViaThread: Successfully injected Dll into process via RtlCreateUserThread.\r\n2022-06-29 10:19:42,141 [root] DEBUG: Successfully injected DLL C:\\tmpurzvybzd\\dll\\xmukJfa.dll.\r\n2022-06-29 10:19:42,157 [lib.api.process] INFO: Injected into suspended 64-bit process with pid 716\r\n2022-06-29 10:19:42,157 [root] DEBUG: Started auxiliary module \"TLSDumpMasterSecrets\"\r\n2022-06-29 10:19:42,157 [root] DEBUG: Started auxiliary module TLSDumpMasterSecrets\r\n2022-06-29 10:19:42,251 [root] DEBUG: Initialized auxiliary module \"Usage\"\r\n2022-06-29 10:19:42,251 [root] DEBUG: Trying to start auxiliary module \"Usage\"...\r\n2022-06-29 10:19:42,266 [root] DEBUG: Started auxiliary module \"Usage\"\r\n2022-06-29 10:19:42,266 [root] DEBUG: Started auxiliary module Usage\r\n2022-06-29 10:19:42,594 [root] DEBUG: DLL loaded at 0x00007FFD26880000: C:\\Windows\\system32\\DSROLE (0xa000 bytes).\r\n2022-06-29 10:19:42,594 [root] DEBUG: DLL loaded at 0x00007FFD0D5B0000: C:\\Windows\\System32\\SecureTimeAggregator (0x21000 bytes).\r\n2022-06-29 10:19:43,329 [root] DEBUG: DLL loaded at 0x00007FFD25960000: C:\\Windows\\System32\\cryptnet (0x31000 bytes).\r\n2022-06-29 10:19:47,797 [root] INFO: Restarting WMI Service\r\n2022-06-29 10:19:49,907 [lib.common.common] INFO: Submitted file is missing extension, adding .doc\r\n2022-06-29 10:19:49,922 [lib.api.process] INFO: Successfully executed process from path \"C:\\Program Files (x86)\\Microsoft Office\\Office14\\WINWORD.EXE\" with arguments \"\"C:\\Users\\JOHNQU~1\\AppData\\Local\\Temp\\c378387344e0a552dc065de6.doc\" /q\" with pid 4196\r\n2022-06-29 10:19:49,922 [lib.api.process] INFO: Monitor config for process 4196: C:\\tmpurzvybzd\\dll\\4196.ini\r\n2022-06-29 10:19:49,922 [lib.api.process] INFO: 32-bit DLL to inject is C:\\tmpurzvybzd\\dll\\IjGtwA.dll, loader C:\\tmpurzvybzd\\bin\\LXzJFxg.exe\r\n2022-06-29 10:19:49,954 [root] DEBUG: Loader: Injecting process 4196 (thread 2456) with C:\\tmpurzvybzd\\dll\\IjGtwA.dll.\r\n2022-06-29 10:19:49,954 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\r\n2022-06-29 10:19:49,954 [root] DEBUG: Successfully injected DLL C:\\tmpurzvybzd\\dll\\IjGtwA.dll.\r\n2022-06-29 10:19:49,969 [lib.api.process] INFO: Injected into suspended 32-bit process with pid 4196\r\n2022-06-29 10:19:51,985 [lib.api.process] INFO: Successfully resumed process with pid 4196\r\n2022-06-29 10:19:52,063 [root] DEBUG: Python path set to 'C:\\Users\\johnquser\\AppData\\Local\\Programs\\Python\\Python37-32'.\r\n2022-06-29 10:19:52,063 [root] DEBUG: Dropped file limit defaulting to 100.\r\n2022-06-29 10:19:52,063 [root] DEBUG: Initialising Yara...\r\n2022-06-29 10:19:52,079 [root] DEBUG: YaraInit: Compiled 18 rule files\r\n2022-06-29 10:19:52,079 [root] DEBUG: YaraInit: Compiled rules saved to file C:\\tmpurzvybzd\\data\\yara\\capemon.yac\r\n2022-06-29 10:19:52,079 [root] DEBUG: InternalYaraScan: Scanning 0x77630000, size 0x1a219c\r\n2022-06-29 10:19:52,094 [root] DEBUG: AmsiDumper initialised.\r\n2022-06-29 10:19:52,094 [root] DEBUG: Monitor initialised: 32-bit capemon loaded in process 4196 at 0x724e0000, thread 2456, image base 0x2f7a0000, stack from 0x1356000-0x1360000\r\n2022-06-29 10:19:52,094 [root] DEBUG: Commandline: \"C:\\Program Files (x86)\\Microsoft Office\\Office14\\WINWORD.EXE\" \"C:\\Users\\JOHNQU~1\\AppData\\Local\\Temp\\c378387344e0a552dc065de6.doc\" /q\r\n2022-06-29 10:19:52,110 [root] DEBUG: Microsoft Office settings enabled.\r\n2022-06-29 10:19:52,126 [root] DEBUG: RestoreHeaders: Restored original import table.\r\n2022-06-29 10:19:52,126 [root] INFO: Loaded monitor into process with pid 4196\r\n2022-06-29 10:19:52,141 [root] DEBUG: DLL loaded at 0x723D0000: C:\\Windows\\SYSTEM32\\ninput (0x54000 bytes).\r\n2022-06-29 10:19:52,141 [root] DEBUG: caller_dispatch: Adding region at 0x2F7A0000 to caller regions list (ntdll::LdrGetDllHandle returns to 0x2F7A111F, thread 2456).\r\n2022-06-29 10:19:52,141 [root] DEBUG: caller_dispatch: Dump of calling region at 0x2F7A0000 skipped (ntdll::LdrGetDllHandle returns to 0x2F7A111F mapped as \\Device\\HarddiskVolume2\\Program Files (x86)\\Microsoft Office\\Office14\\WINWORD.EXE).\r\n2022-06-29 10:19:52,250 [root] DEBUG: DLL loaded at 0x74BE0000: C:\\Windows\\SYSTEM32\\WTSAPI32 (0xf000 bytes).\r\n2022-06-29 10:19:52,250 [root] DEBUG: DLL loaded at 0x6FBF0000: C:\\Windows\\SYSTEM32\\MSIMG32 (0x6000 bytes).\r\n2022-06-29 10:19:52,266 [root] DEBUG: DLL loaded at 0x70FA0000: C:\\Program Files (x86)\\Microsoft Office\\Office14\\gfx (0x1ab000 bytes).\r\n2022-06-29 10:19:52,266 [root] DEBUG: DLL loaded at 0x6FC00000: C:\\Program Files (x86)\\Microsoft Office\\Office14\\oart (0x1394000 bytes).\r\n2022-06-29 10:19:52,266 [root] DEBUG: DLL loaded at 0x71150000: C:\\Program Files (x86)\\Microsoft Office\\Office14\\wwlib (0x127f000 bytes).\r\n2022-06-29 10:19:52,313 [root] DEBUG: DLL loaded at 0x6EA00000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\office14\\mso (0x11ea000 bytes).\r\n2022-06-29 10:19:52,344 [root] DEBUG: DLL loaded at 0x6E7F0000: C:\\Windows\\WinSxS\\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.844_none_11adecdf30011423\\Comctl32 (0x210000 bytes).\r\n2022-06-29 10:19:52,344 [root] INFO: Disabling sleep skipping.\r\n2022-06-29 10:19:52,422 [root] DEBUG: DLL unloaded from 0x767E0000.\r\n2022-06-29 10:19:52,438 [root] DEBUG: DLL loaded at 0x6E7C0000: C:\\Windows\\SYSTEM32\\srpapi (0x25000 bytes).\r\n2022-06-29 10:19:52,500 [root] DEBUG: DLL loaded at 0x6E700000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\OFFICE14\\MSPTLS (0xbc000 bytes).\r\n2022-06-29 10:19:52,532 [root] DEBUG: DLL loaded at 0x76270000: C:\\Windows\\System32\\MSCTF (0xd4000 bytes).\r\n2022-06-29 10:19:52,563 [root] DEBUG: DLL loaded at 0x6E5B0000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\office14\\riched20 (0x14f000 bytes).\r\n2022-06-29 10:19:52,579 [root] DEBUG: DLL loaded at 0x6E550000: C:\\Windows\\system32\\mscoree (0x52000 bytes).\r\n2022-06-29 10:19:52,594 [root] DEBUG: DLL loaded at 0x6E4C0000: C:\\Windows\\Microsoft.NET\\Framework\\v4.0.30319\\mscoreei (0x8d000 bytes).\r\n2022-06-29 10:19:52,594 [root] DEBUG: DLL unloaded from 0x75C50000.\r\n2022-06-29 10:19:52,657 [root] DEBUG: DLL loaded at 0x6E4A0000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\OfficeSoftwareProtectionPlatform\\OSPPC (0x20000 bytes).\r\n2022-06-29 10:19:52,688 [root] DEBUG: DLL loaded at 0x76700000: C:\\Windows\\System32\\bcryptPrimitives (0x5f000 bytes).\r\n2022-06-29 10:19:52,688 [root] DEBUG: DLL loaded at 0x75E70000: C:\\Windows\\System32\\clbcatq (0x7e000 bytes).\r\n2022-06-29 10:19:52,704 [root] DEBUG: DLL loaded at 0x6E460000: C:\\Windows\\System32\\netprofm (0x31000 bytes).\r\n2022-06-29 10:19:52,719 [root] DEBUG: DLL loaded at 0x6E450000: C:\\Windows\\System32\\npmproxy (0xa000 bytes).\r\n2022-06-29 10:19:52,735 [root] DEBUG: DLL loaded at 0x73910000: C:\\Windows\\SYSTEM32\\IPHLPAPI (0x32000 bytes).\r\n2022-06-29 10:19:52,751 [root] DEBUG: DLL loaded at 0x77120000: C:\\Windows\\System32\\NSI (0x7000 bytes).\r\n2022-06-29 10:19:52,751 [root] DEBUG: DLL loaded at 0x6E430000: C:\\Windows\\SYSTEM32\\dhcpcsvc6 (0x14000 bytes).\r\n2022-06-29 10:19:52,751 [root] DEBUG: DLL loaded at 0x73650000: C:\\Windows\\SYSTEM32\\dhcpcsvc (0x16000 bytes).\r\n2022-06-29 10:19:52,766 [root] DEBUG: DLL loaded at 0x6E390000: C:\\Windows\\SYSTEM32\\DNSAPI (0x92000 bytes).\r\n2022-06-29 10:19:52,797 [root] DEBUG: DLL loaded at 0x6E300000: C:\\Windows\\SYSTEM32\\sxs (0x88000 bytes).\r\n2022-06-29 10:19:52,813 [root] DEBUG: DLL loaded at 0x77130000: C:\\Windows\\System32\\coml2 (0x5e000 bytes).\r\n2022-06-29 10:19:52,813 [root] DEBUG: DLL loaded at 0x6E2F0000: C:\\Windows\\SYSTEM32\\windows.staterepositorycore (0xc000 bytes).\r\n2022-06-29 10:19:52,844 [root] DEBUG: api-rate-cap: NtOpenKeyEx hook disabled due to rate.\r\n2022-06-29 10:19:55,376 [root] DEBUG: DLL unloaded from 0x770F0000.\r\n2022-06-29 10:19:55,376 [root] DEBUG: DLL loaded at 0x6E2A0000: C:\\Windows\\SYSTEM32\\POWRPROF (0x44000 bytes).\r\n2022-06-29 10:19:55,391 [root] DEBUG: DLL loaded at 0x6E290000: C:\\Windows\\SYSTEM32\\UMPDC (0xd000 bytes).\r\n2022-06-29 10:19:55,391 [root] DEBUG: DLL unloaded from 0x6E2A0000.\r\n2022-06-29 10:19:55,438 [root] DEBUG: DLL loaded at 0x74E90000: C:\\Windows\\SYSTEM32\\Wldp (0x24000 bytes).\r\n2022-06-29 10:19:55,454 [root] DEBUG: DLL loaded at 0x74EC0000: C:\\Windows\\SYSTEM32\\windows.storage (0x609000 bytes).\r\n2022-06-29 10:19:55,454 [root] DEBUG: DLL unloaded from 0x2F7A0000.\r\n2022-06-29 10:19:55,469 [root] DEBUG: DLL loaded at 0x77190000: C:\\Windows\\System32\\CFGMGR32 (0x3b000 bytes).\r\n2022-06-29 10:19:55,469 [root] DEBUG: DLL unloaded from 0x74EC0000.\r\n2022-06-29 10:19:55,469 [root] DEBUG: DLL unloaded from 0x77570000.\r\n2022-06-29 10:19:55,469 [root] DEBUG: DLL loaded at 0x6E1C0000: C:\\Windows\\system32\\propsys (0xc2000 bytes).\r\n2022-06-29 10:19:55,547 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Roaming\\Microsoft\\Templates\\Normal.dotm\r\n2022-06-29 10:19:55,564 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Roaming\\Microsoft\\Templates\\~$Normal.dotm\r\n2022-06-29 10:19:55,595 [root] DEBUG: DLL loaded at 0x6DFE0000: C:\\Windows\\System32\\msxml6 (0x1dd000 bytes).\r\n2022-06-29 10:19:55,672 [root] DEBUG: DLL loaded at 0x74BA0000: C:\\Windows\\SYSTEM32\\profapi (0x18000 bytes).\r\n2022-06-29 10:19:55,750 [root] DEBUG: DLL loaded at 0x74B70000: C:\\Windows\\SYSTEM32\\ntmarta (0x29000 bytes).\r\n2022-06-29 10:19:55,750 [root] DEBUG: DLL loaded at 0x6DC00000: C:\\Windows\\SYSTEM32\\CoreMessaging (0x9b000 bytes).\r\n2022-06-29 10:19:55,766 [root] DEBUG: DLL loaded at 0x6DB20000: C:\\Windows\\SYSTEM32\\wintypes (0xdb000 bytes).\r\n2022-06-29 10:19:55,766 [root] DEBUG: DLL loaded at 0x6DCA0000: C:\\Windows\\SYSTEM32\\CoreUIComponents (0x27e000 bytes).\r\n2022-06-29 10:19:55,782 [root] DEBUG: DLL loaded at 0x6DF20000: C:\\Windows\\SYSTEM32\\textinputframework (0xb9000 bytes).\r\n2022-06-29 10:19:55,860 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Temp\\c378387344e0a552dc065de6.doc\r\n2022-06-29 10:19:55,876 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Temp\\~$78387344e0a552dc065de6.doc\r\n2022-06-29 10:19:55,954 [root] DEBUG: DLL loaded at 0x6DAF0000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\TEXTCONV\\WPFT532.CNV (0x2f000 bytes).\r\n2022-06-29 10:19:55,970 [root] DEBUG: DLL loaded at 0x6DAD0000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\TEXTCONV\\msconv97 (0x1f000 bytes).\r\n2022-06-29 10:19:55,970 [root] DEBUG: DLL unloaded from 0x2F7A0000.\r\n2022-06-29 10:19:55,985 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Temp\\tst9A0B.tmp size is 0, Max size: 100000000\r\n2022-06-29 10:19:55,985 [root] DEBUG: DLL unloaded from 0x6DAD0000.\r\n2022-06-29 10:19:56,001 [root] DEBUG: DLL unloaded from 0x6DAF0000.\r\n2022-06-29 10:19:56,016 [root] DEBUG: DLL loaded at 0x6DAE0000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\TEXTCONV\\WPFT632.CNV (0x3d000 bytes).\r\n2022-06-29 10:19:56,032 [root] DEBUG: DLL loaded at 0x6DAC0000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\TEXTCONV\\msconv97 (0x1f000 bytes).\r\n2022-06-29 10:19:56,032 [root] DEBUG: DLL unloaded from 0x2F7A0000.\r\n2022-06-29 10:19:56,047 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Temp\\tst9A4A.tmp size is 0, Max size: 100000000\r\n2022-06-29 10:19:56,063 [root] DEBUG: DLL unloaded from 0x6DAC0000.\r\n2022-06-29 10:19:56,079 [root] DEBUG: DLL unloaded from 0x6DAE0000.\r\n2022-06-29 10:19:56,094 [root] DEBUG: DLL loaded at 0x6DAF0000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\TEXTCONV\\WPFT532.CNV (0x2f000 bytes).\r\n2022-06-29 10:19:56,110 [root] DEBUG: DLL loaded at 0x6DAD0000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\TEXTCONV\\msconv97 (0x1f000 bytes).\r\n2022-06-29 10:19:56,110 [root] DEBUG: DLL unloaded from 0x2F7A0000.\r\n2022-06-29 10:19:56,141 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Temp\\tst9A99.tmp size is 0, Max size: 100000000\r\n2022-06-29 10:19:56,157 [root] DEBUG: DLL unloaded from 0x6DAD0000.\r\n2022-06-29 10:19:56,173 [root] DEBUG: DLL unloaded from 0x6DAF0000.\r\n2022-06-29 10:19:56,188 [root] DEBUG: DLL loaded at 0x6DAE0000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\TEXTCONV\\WPFT632.CNV (0x3d000 bytes).\r\n2022-06-29 10:19:56,204 [root] DEBUG: DLL loaded at 0x6DAC0000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\TEXTCONV\\msconv97 (0x1f000 bytes).\r\n2022-06-29 10:19:56,204 [root] DEBUG: DLL unloaded from 0x2F7A0000.\r\n2022-06-29 10:19:56,219 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Temp\\tst9AF8.tmp size is 0, Max size: 100000000\r\n2022-06-29 10:19:56,235 [root] DEBUG: DLL unloaded from 0x6DAC0000.\r\n2022-06-29 10:19:56,251 [root] DEBUG: DLL unloaded from 0x6DAE0000.\r\n2022-06-29 10:19:56,266 [root] DEBUG: DLL loaded at 0x6DB10000: C:\\Program Files (x86)\\Microsoft Office\\Office14\\Wordcnvpxy.cnv (0x8000 bytes).\r\n2022-06-29 10:19:56,266 [root] DEBUG: DLL unloaded from 0x6DB10000.\r\n2022-06-29 10:19:56,282 [root] DEBUG: DLL loaded at 0x6DB10000: C:\\Program Files (x86)\\Microsoft Office\\Office14\\Wordcnvpxy.cnv (0x8000 bytes).\r\n2022-06-29 10:19:56,344 [root] DEBUG: DLL loaded at 0x6DB10000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\TextConv\\RECOVR32.CNV (0xa000 bytes).\r\n2022-06-29 10:19:56,360 [root] DEBUG: DLL loaded at 0x6DAF0000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\TextConv\\msconv97 (0x1f000 bytes).\r\n2022-06-29 10:19:56,360 [root] DEBUG: api-rate-cap: LdrGetProcedureAddressForCaller hook disabled due to rate.\r\n2022-06-29 10:19:56,360 [root] DEBUG: DLL unloaded from 0x2F7A0000.\r\n2022-06-29 10:19:56,360 [root] DEBUG: DLL unloaded from 0x6DAF0000.\r\n2022-06-29 10:19:56,376 [root] DEBUG: DLL unloaded from 0x6DB10000.\r\n2022-06-29 10:19:56,391 [root] DEBUG: DLL loaded at 0x6DB10000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\TextConv\\Wks9Pxy.cnv (0xd000 bytes).\r\n2022-06-29 10:19:56,391 [root] DEBUG: DLL loaded at 0x6DAF0000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\TextConv\\WPFT532.CNV (0x2f000 bytes).\r\n2022-06-29 10:19:56,422 [root] DEBUG: DLL loaded at 0x6DAD0000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\TextConv\\msconv97 (0x1f000 bytes).\r\n2022-06-29 10:19:56,422 [root] DEBUG: DLL unloaded from 0x2F7A0000.\r\n2022-06-29 10:19:56,438 [root] DEBUG: DLL unloaded from 0x6DAD0000.\r\n2022-06-29 10:19:56,438 [root] DEBUG: DLL unloaded from 0x6DAF0000.\r\n2022-06-29 10:19:56,454 [root] DEBUG: DLL loaded at 0x6DAE0000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\TextConv\\WPFT632.CNV (0x3d000 bytes).\r\n2022-06-29 10:19:56,454 [root] DEBUG: DLL loaded at 0x6DAC0000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\TextConv\\msconv97 (0x1f000 bytes).\r\n2022-06-29 10:19:56,454 [root] DEBUG: DLL unloaded from 0x2F7A0000.\r\n2022-06-29 10:19:56,454 [root] DEBUG: DLL unloaded from 0x6DAC0000.\r\n2022-06-29 10:19:56,470 [root] DEBUG: DLL unloaded from 0x6DAE0000.\r\n2022-06-29 10:19:56,485 [root] DEBUG: DLL loaded at 0x6DAF0000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\TEXTCONV\\WPFT532.CNV (0x2f000 bytes).\r\n2022-06-29 10:19:56,485 [root] DEBUG: DLL loaded at 0x6DAD0000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\TEXTCONV\\msconv97 (0x1f000 bytes).\r\n2022-06-29 10:19:56,500 [root] DEBUG: DLL unloaded from 0x2F7A0000.\r\n2022-06-29 10:19:56,500 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Temp\\tst9C22.tmp size is 0, Max size: 100000000\r\n2022-06-29 10:19:56,516 [root] DEBUG: DLL unloaded from 0x6DAD0000.\r\n2022-06-29 10:19:56,516 [root] DEBUG: DLL unloaded from 0x6DAF0000.\r\n2022-06-29 10:19:56,532 [root] DEBUG: DLL loaded at 0x6DAE0000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\TEXTCONV\\WPFT632.CNV (0x3d000 bytes).\r\n2022-06-29 10:19:56,548 [root] DEBUG: DLL loaded at 0x6DAC0000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\TEXTCONV\\msconv97 (0x1f000 bytes).\r\n2022-06-29 10:19:56,548 [root] DEBUG: DLL unloaded from 0x2F7A0000.\r\n2022-06-29 10:19:56,563 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Temp\\tst9C52.tmp size is 0, Max size: 100000000\r\n2022-06-29 10:19:56,579 [root] DEBUG: DLL unloaded from 0x6DAC0000.\r\n2022-06-29 10:19:56,594 [root] DEBUG: DLL unloaded from 0x6DAE0000.\r\n2022-06-29 10:19:56,860 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\C4B0E863.wmf\r\n2022-06-29 10:19:56,860 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\C4B0E863.wmf size is 452, Max size: 100000000\r\n2022-06-29 10:19:56,907 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\270E6369.wmf\r\n2022-06-29 10:19:56,907 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\270E6369.wmf size is 452, Max size: 100000000\r\n2022-06-29 10:19:56,938 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\224AC25F.wmf\r\n2022-06-29 10:19:56,938 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\224AC25F.wmf size is 452, Max size: 100000000\r\n2022-06-29 10:19:56,954 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\8F15DAC5.wmf\r\n2022-06-29 10:19:56,969 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\8F15DAC5.wmf size is 452, Max size: 100000000\r\n2022-06-29 10:19:56,985 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\DE3D9E1B.wmf\r\n2022-06-29 10:19:57,001 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\DE3D9E1B.wmf size is 452, Max size: 100000000\r\n2022-06-29 10:19:57,032 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\DE8079E1.wmf\r\n2022-06-29 10:19:57,047 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\DE8079E1.wmf size is 452, Max size: 100000000\r\n2022-06-29 10:19:57,063 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\EEEEB797.wmf\r\n2022-06-29 10:19:57,079 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\EEEEB797.wmf size is 452, Max size: 100000000\r\n2022-06-29 10:19:57,094 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\3FB2DCBD.wmf\r\n2022-06-29 10:19:57,110 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\3FB2DCBD.wmf size is 452, Max size: 100000000\r\n2022-06-29 10:19:57,126 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\98D90AD3.wmf\r\n2022-06-29 10:19:57,141 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\98D90AD3.wmf size is 452, Max size: 100000000\r\n2022-06-29 10:19:57,172 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\3A6D5F59.wmf\r\n2022-06-29 10:19:57,188 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\3A6D5F59.wmf size is 452, Max size: 100000000\r\n2022-06-29 10:19:57,220 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\BB0953CF.wmf\r\n2022-06-29 10:19:57,235 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\BB0953CF.wmf size is 452, Max size: 100000000\r\n2022-06-29 10:19:57,251 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\C1A81DB5.wmf\r\n2022-06-29 10:19:57,251 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.MSO\\C1A81DB5.wmf size is 452, Max size: 100000000\r\n2022-06-29 10:19:57,282 [root] DEBUG: DLL unloaded from 0x77630000.\r\n2022-06-29 10:19:57,344 [root] DEBUG: DLL loaded at 0x6DA80000: C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\OFFICE14\\USP10 (0x9e000 bytes).\r\n2022-06-29 10:19:57,423 [root] DEBUG: DLL loaded at 0x6D910000: C:\\Windows\\WinSxS\\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.19041.1023_none_d94e0b13e107593b\\GdiPlus (0x169000 bytes).\r\n2022-06-29 10:19:57,423 [root] DEBUG: DLL unloaded from 0x767E0000.\r\n2022-06-29 10:19:57,454 [root] DEBUG: DLL loaded at 0x6D790000: C:\\Windows\\SYSTEM32\\WindowsCodecs (0x171000 bytes).\r\n2022-06-29 10:19:57,579 [root] DEBUG: DLL loaded at 0x6D570000: C:\\Windows\\system32\\d3d11 (0x1e0000 bytes).\r\n2022-06-29 10:19:57,594 [root] DEBUG: DLL loaded at 0x6D400000: C:\\Windows\\system32\\dcomp (0x165000 bytes).\r\n2022-06-29 10:19:57,594 [root] DEBUG: DLL loaded at 0x6D750000: C:\\Windows\\system32\\dataexchange (0x31000 bytes).\r\n2022-06-29 10:19:57,610 [root] DEBUG: DLL loaded at 0x6D270000: C:\\Windows\\system32\\twinapi.appcore (0x18f000 bytes).\r\n2022-06-29 10:19:57,672 [root] DEBUG: DLL loaded at 0x74630000: C:\\Windows\\SYSTEM32\\msvcp110_win (0x65000 bytes).\r\n2022-06-29 10:19:57,688 [root] DEBUG: DLL loaded at 0x6D1E0000: C:\\Windows\\SYSTEM32\\policymanager (0x83000 bytes).\r\n2022-06-29 10:19:57,688 [root] DEBUG: caller_dispatch: Adding region at 0x6D1E0000 to caller regions list (ntdll::NtProtectVirtualMemory returns to 0x6D1F4A88, thread 5912).\r\n2022-06-29 10:19:57,688 [root] DEBUG: caller_dispatch: Dump of calling region at 0x6D1E0000 skipped (ntdll::NtProtectVirtualMemory returns to 0x6D1F4A88 mapped as \\Device\\HarddiskVolume2\\Windows\\SysWOW64\\policymanager.dll).\r\n2022-06-29 10:19:57,719 [root] DEBUG: DLL loaded at 0x6D0B0000: C:\\Windows\\System32\\FM20 (0x12d000 bytes).\r\n2022-06-29 10:19:57,719 [root] DEBUG: caller_dispatch: Adding region at 0x6D0B0000 to caller regions list (ntdll::LdrLoadDll returns to 0x6D0DE07D, thread 2456).\r\n2022-06-29 10:19:57,735 [root] DEBUG: caller_dispatch: Scanning calling region at 0x6D0B0000...\r\n2022-06-29 10:19:57,735 [root] DEBUG: caller_dispatch: Dump of calling region at 0x6D0B0000 skipped (ntdll::LdrLoadDll returns to 0x6D0DE07D mapped as \\Device\\HarddiskVolume2\\Windows\\SysWOW64\\FM20.DLL).\r\n2022-06-29 10:19:57,844 [root] DEBUG: api-rate-cap: NtQueryValueKey hook disabled due to rate.\r\n2022-06-29 10:19:58,032 [root] DEBUG: caller_dispatch: Adding region at 0x01260000 to caller regions list (ntdll::RtlSetCurrentTransaction returns to 0x01356DE8, thread 2456).\r\n2022-06-29 10:19:58,032 [root] DEBUG: caller_dispatch: Dump of calling region at 0x01260000 skipped (ntdll::RtlSetCurrentTransaction returns to 0x01356DE8).\r\n2022-06-29 10:19:58,048 [root] DEBUG: DLL loaded at 0x6CE20000: C:\\PROGRA~2\\COMMON~1\\MICROS~1\\VBA\\VBA7\\VBE7 (0x28d000 bytes).\r\n2022-06-29 10:19:58,048 [root] DEBUG: caller_dispatch: Adding region at 0x6CE20000 to caller regions list (kernel32::HeapCreate returns to 0x6CEF6A22, thread 2456).\r\n2022-06-29 10:19:58,048 [root] DEBUG: caller_dispatch: Scanning calling region at 0x6CE20000...\r\n2022-06-29 10:19:58,048 [root] DEBUG: caller_dispatch: Dump of calling region at 0x6CE20000 skipped (kernel32::HeapCreate returns to 0x6CEF6A22 mapped as \\Device\\HarddiskVolume2\\PROGRA~2\\COMMON~1\\MICROS~1\\VBA\\VBA7\\VBE7.DLL).\r\n2022-06-29 10:19:58,063 [root] DEBUG: DLL loaded at 0x0CDF0000: C:\\PROGRA~2\\COMMON~1\\MICROS~1\\VBA\\VBA7\\1033\\VBE7INTL (0x26000 bytes).\r\n2022-06-29 10:20:01,329 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Temp\\Word8.0\\MSForms.exd\r\n2022-06-29 10:20:01,454 [root] DEBUG: DLL loaded at 0x0E1F0000: C:\\Windows\\System32\\fm20ENU (0x8000 bytes).\r\n2022-06-29 10:20:01,470 [root] DEBUG: CreateProcessHandler: Injection info set for new process 6056: C:\\Windows\\splwow64.exe, ImageBase: 0x00000000\r\n2022-06-29 10:20:01,470 [root] INFO: Announced 64-bit process name: splwow64.exe pid: 6056\r\n2022-06-29 10:20:01,470 [lib.api.process] INFO: Monitor config for process 6056: C:\\tmpurzvybzd\\dll\\6056.ini\r\n2022-06-29 10:20:01,470 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmpurzvybzd\\dll\\xmukJfa.dll, loader C:\\tmpurzvybzd\\bin\\XYYzJVVA.exe\r\n2022-06-29 10:20:01,485 [root] DEBUG: Loader: Injecting process 6056 (thread 6060) with C:\\tmpurzvybzd\\dll\\xmukJfa.dll.\r\n2022-06-29 10:20:01,485 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\r\n2022-06-29 10:20:01,485 [root] DEBUG: Successfully injected DLL C:\\tmpurzvybzd\\dll\\xmukJfa.dll.\r\n2022-06-29 10:20:01,501 [lib.api.process] INFO: Injected into suspended 64-bit process with pid 6056\r\n2022-06-29 10:20:01,501 [root] DEBUG: DLL unloaded from 0x77630000.\r\n2022-06-29 10:20:01,501 [root] INFO: Announced 64-bit process name: splwow64.exe pid: 6056\r\n2022-06-29 10:20:01,501 [lib.api.process] INFO: Monitor config for process 6056: C:\\tmpurzvybzd\\dll\\6056.ini\r\n2022-06-29 10:20:01,501 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmpurzvybzd\\dll\\xmukJfa.dll, loader C:\\tmpurzvybzd\\bin\\XYYzJVVA.exe\r\n2022-06-29 10:20:01,516 [root] DEBUG: Loader: Injecting process 6056 (thread 6060) with C:\\tmpurzvybzd\\dll\\xmukJfa.dll.\r\n2022-06-29 10:20:01,516 [root] DEBUG: InjectDllViaIAT: This image has already been patched.\r\n2022-06-29 10:20:01,516 [root] DEBUG: Successfully injected DLL C:\\tmpurzvybzd\\dll\\xmukJfa.dll.\r\n2022-06-29 10:20:01,516 [lib.api.process] INFO: Injected into suspended 64-bit process with pid 6056\r\n2022-06-29 10:20:01,516 [root] INFO: Announced 64-bit process name: splwow64.exe pid: 6056\r\n2022-06-29 10:20:01,516 [lib.api.process] INFO: Monitor config for process 6056: C:\\tmpurzvybzd\\dll\\6056.ini\r\n2022-06-29 10:20:01,516 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmpurzvybzd\\dll\\xmukJfa.dll, loader C:\\tmpurzvybzd\\bin\\XYYzJVVA.exe\r\n2022-06-29 10:20:01,532 [root] DEBUG: Loader: Injecting process 6056 (thread 6060) with C:\\tmpurzvybzd\\dll\\xmukJfa.dll.\r\n2022-06-29 10:20:01,532 [root] DEBUG: InjectDllViaIAT: This image has already been patched.\r\n2022-06-29 10:20:01,532 [root] DEBUG: Successfully injected DLL C:\\tmpurzvybzd\\dll\\xmukJfa.dll.\r\n2022-06-29 10:20:01,532 [lib.api.process] INFO: Injected into suspended 64-bit process with pid 6056\r\n2022-06-29 10:20:01,563 [root] DEBUG: Python path set to 'C:\\Users\\johnquser\\AppData\\Local\\Programs\\Python\\Python37-32'.\r\n2022-06-29 10:20:01,563 [root] DEBUG: Dropped file limit defaulting to 100.\r\n2022-06-29 10:20:01,563 [root] INFO: Disabling sleep skipping.\r\n2022-06-29 10:20:01,563 [root] DEBUG: Initialising Yara...\r\n2022-06-29 10:20:01,563 [root] DEBUG: YaraInit: Compiled rules loaded from existing file C:\\tmpurzvybzd\\data\\yara\\capemon.yac\r\n2022-06-29 10:20:01,563 [root] DEBUG: InternalYaraScan: Scanning 0x00007FFD2D6F0000, size 0x1f4546\r\n2022-06-29 10:20:01,563 [root] DEBUG: AmsiDumper initialised.\r\n2022-06-29 10:20:01,563 [root] DEBUG: Monitor initialised: 64-bit capemon loaded in process 6056 at 0x00007FFD08D30000, thread 6060, image base 0x00007FF6A7BB0000, stack from 0x0000000000FF6000-0x0000000001000000\r\n2022-06-29 10:20:01,563 [root] DEBUG: Commandline: C:\\Windows\\splwow64.exe 12288\r\n2022-06-29 10:20:01,626 [root] DEBUG: RestoreHeaders: Restored original import table.\r\n2022-06-29 10:20:01,626 [root] INFO: Loaded monitor into process with pid 6056\r\n2022-06-29 10:20:01,626 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFD2B140000 to caller regions list (ntdll::LdrGetProcedureAddressForCaller returns to 0x00007FFD2B180331, thread 6060).\r\n2022-06-29 10:20:01,626 [root] DEBUG: caller_dispatch: Scanning calling region at 0x00007FFD2B140000...\r\n2022-06-29 10:20:01,626 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FFD2B140000 skipped (ntdll::LdrGetProcedureAddressForCaller returns to 0x00007FFD2B180331 mapped as \\Device\\HarddiskVolume2\\Windows\\System32\\KernelBase.dll).\r\n2022-06-29 10:20:01,626 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFD2D6F0000 to caller regions list (ntdll::NtClose returns to 0x00007FFD2D7C3E73, thread 6060).\r\n2022-06-29 10:20:01,626 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FFD2D6F0000 skipped (ntdll::NtClose returns to 0x00007FFD2D7C3E73 mapped as \\Device\\HarddiskVolume2\\Windows\\System32\\ntdll.dll).\r\n2022-06-29 10:20:01,626 [root] DEBUG: caller_dispatch: Adding region at 0x00007FF6A7BB0000 to caller regions list (kernel32::SetUnhandledExceptionFilter returns to 0x00007FF6A7BBCC61, thread 6060).\r\n2022-06-29 10:20:01,641 [root] DEBUG: YaraScan: Scanning 0x00007FF6A7BB0000, size 0x26326\r\n2022-06-29 10:20:01,641 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FF6A7BB0000 skipped (kernel32::SetUnhandledExceptionFilter returns to 0x00007FF6A7BBCC61 mapped as \\Device\\HarddiskVolume2\\Windows\\splwow64.exe).\r\n2022-06-29 10:20:01,641 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFD2C450000 to caller regions list (msvcrt::memcpy returns to 0x00007FFD2C4808BA, thread 6060).\r\n2022-06-29 10:20:01,641 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FFD2C450000 skipped (msvcrt::memcpy returns to 0x00007FFD2C4808BA mapped as \\Device\\HarddiskVolume2\\Windows\\System32\\msvcrt.dll).\r\n2022-06-29 10:20:01,641 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFD2C160000 to caller regions list (advapi32::LsaOpenPolicy returns to 0x00007FFD2C16F72B, thread 5492).\r\n2022-06-29 10:20:01,641 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FFD2C160000 skipped (advapi32::LsaOpenPolicy returns to 0x00007FFD2C16F72B mapped as \\Device\\HarddiskVolume2\\Windows\\System32\\advapi32.dll).\r\n2022-06-29 10:20:01,641 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFD2C2A0000 to caller regions list (ntdll::NtOpenDirectoryObject returns to 0x00007FFD2C2AF641, thread 6060).\r\n2022-06-29 10:20:01,641 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FFD2C2A0000 skipped (ntdll::NtOpenDirectoryObject returns to 0x00007FFD2C2AF641 mapped as \\Device\\HarddiskVolume2\\Windows\\System32\\rpcrt4.dll).\r\n2022-06-29 10:20:01,641 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFD2AD20000 to caller regions list (ntdll::NtQueryInformationThread returns to 0x00007FFD2AD25943, thread 6060).\r\n2022-06-29 10:20:01,641 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FFD2AD20000 skipped (ntdll::NtQueryInformationThread returns to 0x00007FFD2AD25943 mapped as \\Device\\HarddiskVolume2\\Windows\\System32\\sspicli.dll).\r\n2022-06-29 10:20:01,720 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 4196, handle 0x1c0.\r\n2022-06-29 10:20:01,720 [root] DEBUG: OpenProcessHandler: Handle insufficient to obtain target process name.\r\n2022-06-29 10:20:01,735 [root] DEBUG: caller_dispatch: Adding region at 0x00007FFD1C130000 to caller regions list (msvcrt::memcpy returns to 0x00007FFD1C1314EF, thread 5532).\r\n2022-06-29 10:20:01,735 [root] DEBUG: caller_dispatch: Dump of calling region at 0x00007FFD1C130000 skipped (msvcrt::memcpy returns to 0x00007FFD1C1314EF mapped as \\Device\\HarddiskVolume2\\Windows\\System32\\winspool.drv).\r\n2022-06-29 10:23:12,954 [root] INFO: Analysis timeout hit, terminating analysis\r\n2022-06-29 10:23:12,954 [lib.api.process] INFO: Terminate event set for process 4196\r\n2022-06-29 10:23:12,954 [root] DEBUG: Terminate Event: Attempting to dump process 4196\r\n2022-06-29 10:23:12,954 [root] DEBUG: DoProcessDump: Dumping Imagebase at 0x2F7A0000.\r\n2022-06-29 10:23:12,969 [root] DEBUG: DumpImageInCurrentProcess: Attempting to dump virtual PE image.\r\n2022-06-29 10:23:12,969 [root] DEBUG: DumpProcess: Instantiating PeParser with address: 0x2F7A0000.\r\n2022-06-29 10:23:12,969 [root] DEBUG: DumpProcess: Module entry point VA is 0x000010FC.\r\n2022-06-29 10:23:13,016 [lib.common.results] INFO: File C:\\GXSBfz\\CAPE\\4196_4038512231729362022 size is 1416704, Max size: 100000000\r\n2022-06-29 10:23:13,048 [root] DEBUG: DumpProcess: Module image dump success - dump size 0x159e00.\r\n2022-06-29 10:23:13,048 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.Word\\~WRS{F1D86A49-245C-469B-A9A2-4612A6D37846}.tmp\r\n2022-06-29 10:23:13,048 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.Word\\~WRS{5059A558-DFCA-46AA-A741-FDF9FF939088}.tmp\r\n2022-06-29 10:23:13,048 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.Word\\~WRF{5F803DCA-80F0-46F5-92E3-CDD2B7279D03}.tmp\r\n2022-06-29 10:23:13,048 [root] INFO: Added new file to list with pid None and path C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.Word\\~WRS{64DB182B-A23A-4F57-8A4C-B0A5D5ADAFDA}.tmp\r\n2022-06-29 10:23:13,048 [lib.api.process] INFO: Termination confirmed for process 4196\r\n2022-06-29 10:23:13,048 [root] DEBUG: Terminate Event: CAPE shutdown complete for process 4196\r\n2022-06-29 10:23:13,063 [root] INFO: Terminate event set for process 4196\r\n2022-06-29 10:23:13,063 [lib.api.process] INFO: Terminate event set for process 6056\r\n2022-06-29 10:23:13,063 [root] DEBUG: Terminate Event: Attempting to dump process 6056\r\n2022-06-29 10:23:13,063 [root] DEBUG: DoProcessDump: Dumping Imagebase at 0x00007FF6A7BB0000.\r\n2022-06-29 10:23:13,063 [root] DEBUG: DumpImageInCurrentProcess: Attempting to dump virtual PE image.\r\n2022-06-29 10:23:13,063 [root] DEBUG: DumpProcess: Instantiating PeParser with address: 0x00007FF6A7BB0000.\r\n2022-06-29 10:23:13,063 [root] DEBUG: DumpProcess: Module entry point VA is 0x000000000000CAA0.\r\n2022-06-29 10:23:13,079 [lib.common.results] INFO: File C:\\GXSBfz\\CAPE\\6056_258313231729362022 size is 138240, Max size: 100000000\r\n2022-06-29 10:23:13,094 [root] DEBUG: DumpProcess: Module image dump success - dump size 0x21c00.\r\n2022-06-29 10:23:13,094 [lib.api.process] INFO: Termination confirmed for process 6056\r\n2022-06-29 10:23:13,094 [root] INFO: Terminate event set for process 6056\r\n2022-06-29 10:23:13,094 [root] DEBUG: Terminate Event: CAPE shutdown complete for process 6056\r\n2022-06-29 10:23:13,094 [root] INFO: Created shutdown mutex\r\n2022-06-29 10:23:14,110 [root] INFO: Shutting down package\r\n2022-06-29 10:23:14,110 [root] INFO: Stopping auxiliary modules\r\n2022-06-29 10:23:14,610 [lib.common.results] INFO: File C:\\curtain.log size is 13209090, Max size: 100000000\r\n2022-06-29 10:23:14,657 [modules.auxiliary.evtx] DEBUG: Adding C:/windows/Sysnative/winevt/Logs\\Application.evtx to zip dump\r\n2022-06-29 10:23:14,844 [modules.auxiliary.evtx] DEBUG: Adding C:/windows/Sysnative/winevt/Logs\\HardwareEvents.evtx to zip dump\r\n2022-06-29 10:23:14,860 [modules.auxiliary.evtx] DEBUG: Adding C:/windows/Sysnative/winevt/Logs\\Internet Explorer.evtx to zip dump\r\n2022-06-29 10:23:14,860 [modules.auxiliary.evtx] DEBUG: Adding C:/windows/Sysnative/winevt/Logs\\Key Management Service.evtx to zip dump\r\n2022-06-29 10:23:14,860 [modules.auxiliary.evtx] DEBUG: Adding C:/windows/Sysnative/winevt/Logs\\OAlerts.evtx to zip dump\r\n2022-06-29 10:23:14,876 [modules.auxiliary.evtx] DEBUG: Adding C:/windows/Sysnative/winevt/Logs\\Security.evtx to zip dump\r\n2022-06-29 10:23:15,282 [modules.auxiliary.evtx] DEBUG: Adding C:/windows/Sysnative/winevt/Logs\\Setup.evtx to zip dump\r\n2022-06-29 10:23:15,282 [modules.auxiliary.evtx] DEBUG: Adding C:/windows/Sysnative/winevt/Logs\\System.evtx to zip dump\r\n2022-06-29 10:23:15,376 [modules.auxiliary.evtx] DEBUG: Adding C:/windows/Sysnative/winevt/Logs\\Windows PowerShell.evtx to zip dump\r\n2022-06-29 10:23:15,422 [modules.auxiliary.evtx] DEBUG: Uploading evtx.zip to host\r\n2022-06-29 10:23:15,422 [lib.common.results] INFO: File evtx.zip size is 973481, Max size: 100000000\r\n2022-06-29 10:23:15,563 [lib.common.results] WARNING: File C:\\GXSBfz\\bin\\procmon.xml doesn't exist anymore\r\n2022-06-29 10:23:15,563 [root] INFO: Finishing auxiliary modules\r\n2022-06-29 10:23:15,563 [root] INFO: Shutting down pipe server and dumping dropped files\r\n2022-06-29 10:23:15,563 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Roaming\\Microsoft\\Templates\\Normal.dotm size is 20513, Max size: 100000000\r\n2022-06-29 10:23:15,579 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Roaming\\Microsoft\\Templates\\~$Normal.dotm size is 162, Max size: 100000000\r\n2022-06-29 10:23:15,595 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Temp\\c378387344e0a552dc065de6.doc size is 143202, Max size: 100000000\r\n2022-06-29 10:23:15,610 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Temp\\~$78387344e0a552dc065de6.doc size is 162, Max size: 100000000\r\n2022-06-29 10:23:15,626 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Temp\\Word8.0\\MSForms.exd size is 166724, Max size: 100000000\r\n2022-06-29 10:23:15,641 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.Word\\~WRS{F1D86A49-245C-469B-A9A2-4612A6D37846}.tmp size is 1536, Max size: 100000000\r\n2022-06-29 10:23:15,657 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.Word\\~WRS{5059A558-DFCA-46AA-A741-FDF9FF939088}.tmp size is 0, Max size: 100000000\r\n2022-06-29 10:23:15,672 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.Word\\~WRF{5F803DCA-80F0-46F5-92E3-CDD2B7279D03}.tmp size is 114688, Max size: 100000000\r\n2022-06-29 10:23:15,688 [lib.common.results] INFO: File C:\\Users\\johnquser\\AppData\\Local\\Microsoft\\Windows\\INetCache\\Content.Word\\~WRS{64DB182B-A23A-4F57-8A4C-B0A5D5ADAFDA}.tmp size is 1024, Max size: 100000000\r\n2022-06-29 10:23:15,704 [root] WARNING: Folder at path \"C:\\GXSBfz\\debugger\" does not exist, skipping\r\n2022-06-29 10:23:15,704 [root] WARNING: Folder at path \"C:\\GXSBfz\\tlsdump\" does not exist, skipping\r\n2022-06-29 10:23:15,704 [root] INFO: Analysis completed\r\n```\nComment: Looks like you don't have crashes etc.\r\nWhat about Process Tree and DNS section? Does everything work fine?\nComment: thanks all\nComment: Thanks, mine 22h2\n\nEl jue., 23 jun. 2022 20:47, Scrub Lullz ***@***.***>\nescribi\u00f3:\n\n> Version 21H1 OS Build 19043.1023\n> Office 2010\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/910#issuecomment-1164751843>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH33AQ7JMZAIHAKACVODVQSWLFANCNFSM5YT2VNXA>\n> .\n> You are receiving this because you authored the thread.Message ID:\n> ***@***.***>\n>\n",
+  "Title: Move self extracted from dropped to their own folder\nBody: To avoid double files processing",
+  "Title: Misc web improvements\nBody: None",
+  "Title: feat: priority in auxiliary modules\nBody: This is already present under linux packages, not sure why it wasn't brought into the windows ones.\nComment: One small thing, maybe we could use getattr or something like that as if someone has custom module it will break module till they update, and being inside VM it will take them a while to update it. so maybe put 0 as default? what do you think? but apart of that looks good to me\nComment: ah nevermind i see that abstracts has 0, sorry just wakedup xD",
+  "Title: refactor: mitre_ttps now show multiple signatures if multiple signatures are matched for the same TTP\nBody: Also sorts the mitre TTPs via TTP id in alphabetical order",
+  "Title: refactor: implement running of multiple ids for utils/process.py\nBody: None\nComment: Thank you!",
+  "Title: fix: typo in conf file of auxiliary\nBody: None",
+  "Title: fix: domainslookups not appearing in dns network page\nBody: None",
+  "Title: Improve search\nBody: Added the following search functionalities:\r\n\r\n- Searching via web-ui limits the results to `search_limit` (searching via apiv2 still returns all results)\r\n- Fix searching via TTP and malscore\r\n- Add docs into search help page\nComment: thank you, you did another one from my ToDo :)",
+  "Title: chore: improve .gitignore\nBody: None",
+  "Title: Removing unnecessary class variable from InjectionProcessHollowing signature\nBody: To maintain consistency between the attributes of signature, this allow_list parameter can easily be hard-coded into the `on_call` method and does not need to be a class variable.",
+  "Title: Adding ttp attribute to Signature class\nBody: The `ttp` attribute is already informally available and used by 283 (possibly 285 with https://github.com/kevoreilly/community/pull/267) of the 676 signatures in the community repository. I suggest we formalize this for documentation's sake and add the attribute to the Signature class.",
+  "Title: Adding details regarding confidence and weight for signatures\nBody: Closes #897 ",
+  "Title: Signature Attribute Clarification\nBody: Can someone please explain to me what `weight`, `confidence`, and `severity` mean and how they are to be interpreted for a `Signature`?\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/6de60f504e87fd8a59a182a3f3cdad8b604adddd/lib/cuckoo/common/abstracts.py#L719:L721\r\n\r\nIs seems like the only place they are used is here, for calculating the total score:\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/5b3ceea578e0d90cbd61886b443a37cb13160c64/lib/cuckoo/core/plugins.py#L585:L588\r\n\r\nFrom what I understand, `confidence` is how confident the signature writer is that the signature is not a false positive, `severity`'s definition is [here](https://github.com/kevoreilly/CAPEv2/blob/master/docs/book/src/customization/signatures.rst#L116), but where does `weight` fit into all of this?\r\n\r\nI'll add the answer to the documentation to assist others in the future.\nComment: It sounds like weight is just a way to fudge the scores - malscore is inherited from Cuckoo and is not something I ever rated. I left it in only because some still apparently use/like it, but left it disabled by default in CAPE as it has a far superior classification method than Cuckoo had (Yara scans of extracted payloads). Maybe this should be reflected in the documentation.",
+  "Title: Fixing bug where boolean values were received as strings\nBody: As per the QueryDict [documentation](https://docs.djangoproject.com/en/4.0/ref/request-response/#django.http.QueryDict), values received from the POST body are interpreted as strings.\r\n\r\nFor example, if I submit a file to the REST API with a parameter that contains boolean value, such as `enforce_timeout`, set to `False`, this will be received as `\"False\"` by the REST API here \r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/768334e13515f6700a49c3422d6279991175041c/web/apiv2/views.py#L256\r\n\r\nThen this value is converted to a boolean here \r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/768334e13515f6700a49c3422d6279991175041c/lib/cuckoo/common/web_utils.py#L1036\r\n\r\nThis will always evaluate non-empty strings to True, even if you set the value to be False in the submitter client.\r\n\r\nSee my proposed fix to address this bug :)\nComment: thank you",
+  "Title: kvm-qemu.sh -> errors | warnings | checks\nBody: Should the following errors, warnings and checks be ignored?\r\n\r\nI only executed `kvm-qemu.sh` from https://github.com/doomedraven/Tools/blob/master/Virtualization/kvm-qemu.sh\r\nwithout installing anything else. \r\n\r\nThis is a fresh Ubuntu 20.04 install.\r\n\r\n[kvm_emu_logs.txt](https://github.com/kevoreilly/CAPEv2/files/8879223/kvm_emu_logs.txt)\r\n\r\n\nComment: hello, if everything works then yes, i don't see any real error there\nComment: Hi, I'll open this issue again since I realized that `virt-manager` package is not properly installed.\r\n\r\nAlso, trying to fix it with `sudo apt --fix-broken install`:\r\n[virt-manager.log.txt](https://github.com/kevoreilly/CAPEv2/files/8899548/virt-manager.log.txt)\r\n\r\n\nComment: congrats you just broke everything, i have huge red warning to not yo use apt. Why virt-manager is not properly installed see your original installation log for details what was wrong there. there are all answers\nComment: + did you see help of my script? did you become familiar with what script does itself ? as it doesn't looks like. you can't install part from my script and then go to apt. that obviously will be broken. apt uses old versions and dependencies.\nComment: Ok, I think I see your point. Breaking anything or everything is not a big deal since \r\nI can rollback to different snapshots :dancers: \r\n\r\nSo, the steps I've done so far:\r\n1. fresh Ubuntu install\r\n2. `sudo ./kvm-qemu.sh all user1 | tee kvm-qemu.log`\r\n3. reboot\r\n4. install capev2.sh\r\n5. `sudo ./kvm-qemu.sh Virtmanager | tee Virtmanager.log`\r\n\r\nVirtmanager looks good now (Please see Virtmanager.log)\r\n\r\n[kvm-qemu.log](https://github.com/kevoreilly/CAPEv2/files/8899826/kvm-qemu.log)\r\n[Virtmanager.log](https://github.com/kevoreilly/CAPEv2/files/8899828/Virtmanager.log)\nComment: if that looks good, i don't need to check nothing :P glad that you had snapshots",
+  "Title: Additional context and grammar/spelling\nBody: None\nComment: thank you",
+  "Title: Fixes for Qakbot parser and call chunk insertion for mongodb\nBody: None\nComment: Thanks",
+  "Title: Fix typo\nBody: None",
+  "Title: [feature] Add community blocklist\nBody: The idea is to be able to blacklist anything that enduser doesn't work: any yara, signature, whatever\nComment: Can it be called a \"blocklist\" or \"denylist\" instead?\nComment: ah yes, sorry the old no woke culture vocabulary :)\nComment: done https://github.com/kevoreilly/CAPEv2/commit/cd7fc55904224d2253870bddd643f70582b48251",
+  "Title: Implement new features in utils/community.py\nBody: New features:\r\n- Support downloading of community modules from gitlab (useful for forks located on gitlab)\r\n- Support downloading of private repositories via the usage of private access tokens (useful for private forks)\nComment: Thank you, about private i had in my ToDo, but no time :) \nComment: i have to add the blacklist for community, as some yaras, sigs, etc from community i don't want on my side. i will try to add it today, but no promises as i will be afk for rest of the week",
+  "Title: ci: remove flake8 pre-commit hook\nBody: flake8 currently fails (to implement the hook after code cleanup)",
+  "Title: Proper error handling for bad yara rules\nBody: `bad_rule` will have the wrong value if the broken yara rule ends with `.yara` instead of `.yar`",
+  "Title: Add proper error handling for capa\nBody: None",
+  "Title: Add two new functions in Signature class\nBody: None",
+  "Title: refactor: do not mouse over desktop icons and taskbar in human auxiliary module\nBody: This is especially applicable in Windows 10 (otherwise it will generate a lot of screenshots)",
+  "Title: refactor: use `KEY_WOW64_64KEY` to set registry key\nBody: Use `KEY_WOW64_64KEY` to determine if 32-bit or 64-bit registry key should be accessed",
+  "Title: Reworking documentation to update relevancy, grammary and spelling\nBody: I fixed some of the following:\r\n- RST syntax\r\n- Links\r\n- Grammar\r\n- Added some additional context to instructions\nComment: Thank you for this a lot",
+  "Title: Git commit hooks\nBody: ## Pre-commit hooks!\r\nCurrently has the following hooks:\r\n1. Check yaml files for parseable syntax\r\n2. Ensure that files are either empty or end with one newline\r\n3. Trim trailing whitespace from all files\r\n4. Remove utf-8 byte order marker\r\n5. Replace mixed line ending\r\n6. Run black\r\n7. Run isort\r\n\r\nTo use the pre-commit hooks:\r\n```bash\r\npoetry install\r\npoetry run pre-commit install\r\n```\r\n\r\n_Side note_: we need to update the the docs more often (esp https://capev2.readthedocs.io/en/latest/development/)\nComment: Don't merge yet - it seems there's an issue with dependencies\nComment: Removing poetry pre-commits as they're still in beta (it actually ruins the lock file)\nComment: let me know once this is ready for merge\nComment: Ready for merge :)\nComment: thank you a lot for all your work",
+  "Title: changelog: use poetry\nBody: None\nComment: ah good one, thanks",
+  "Title: Handle more mongodb insertion exceptions\nBody: None\nComment: thank you, FYI you don't need to use `pass`\nComment: Ah, yes. I had other code there when I was testing. Forgot to remove it.\nThank you.\n\nOn Wed, Jun 8, 2022 at 8:41 AM doomedraven ***@***.***> wrote:\n\n> thank you, FYI you don't need to use pass\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/pull/880#issuecomment-1149864048>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AB3X3YH3QUZ636Z5ITK7GPTVOCIIPANCNFSM5YGMO55Q>\n> .\n> You are receiving this because you authored the thread.Message ID:\n> ***@***.***>\n>\n\n\n-- \nLorenzo\n\n\u201cHappiness is not the absence of problems, but the ability to deal with\nthem.\" - Albert Einstein\n",
+  "Title: refactor: remove __future__ imports\nBody: The `__future__` module is only relevant in python 2 and does not achieve anything in python 3 projects\nComment: thank you",
+  "Title: ci: add workflow to update requirements.txt\nBody: Added github workflow to update requirements.txt whenever there is a change to either `poetry.lock` or `pyproject.toml` file\nComment: Thanks",
+  "Title: Bump numpy from 1.19.1 to 1.21.0\nBody: Bumps [numpy](https://github.com/numpy/numpy) from 1.19.1 to 1.21.0.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a href=\"https://github.com/numpy/numpy/releases\">numpy's releases</a>.</em></p>\n<blockquote>\n<h2>v1.21.0</h2>\n<h1>NumPy 1.21.0 Release Notes</h1>\n<p>The NumPy 1.21.0 release highlights are</p>\n<ul>\n<li>continued SIMD work covering more functions and platforms,</li>\n<li>initial work on the new dtype infrastructure and casting,</li>\n<li>universal2 wheels for Python 3.8 and Python 3.9 on Mac,</li>\n<li>improved documentation,</li>\n<li>improved annotations,</li>\n<li>new <code>PCG64DXSM</code> bitgenerator for random numbers.</li>\n</ul>\n<p>In addition there are the usual large number of bug fixes and other\nimprovements.</p>\n<p>The Python versions supported for this release are 3.7-3.9. Official\nsupport for Python 3.10 will be added when it is released.</p>\n<p>:warning:  Warning: there are unresolved problems compiling NumPy 1.21.0 with gcc-11.1 .</p>\n<ul>\n<li>Optimization level <code>-O3</code> results in many wrong warnings when running the tests.</li>\n<li>On some hardware NumPy will hang in an infinite loop.</li>\n</ul>\n<h2>New functions</h2>\n<h3>Add PCG64DXSM BitGenerator</h3>\n<p>Uses of the PCG64 BitGenerator in a massively-parallel context have\nbeen shown to have statistical weaknesses that were not apparent at the\nfirst release in numpy 1.17. Most users will never observe this weakness\nand are safe to continue to use PCG64. We have introduced a new\nPCG64DXSM BitGenerator that will eventually become the new default\nBitGenerator implementation used by <code>default_rng</code> in future releases.\nPCG64DXSM solves the statistical weakness while preserving the\nperformance and the features of PCG64.</p>\n<p>See <code>upgrading-pcg64</code> for more details.</p>\n<p>(<a href=\"https://github-redirect.dependabot.com/numpy/numpy/pull/18906\">gh-18906</a>)</p>\n<h2>Expired deprecations</h2>\n<ul>\n<li>The <code>shape</code> argument <code>numpy.unravel_index</code> cannot be\npassed as <code>dims</code> keyword argument anymore. (Was deprecated in NumPy\n1.16.)</li>\n</ul>\n<!-- raw HTML omitted -->\n</blockquote>\n<p>... (truncated)</p>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/numpy/numpy/commit/b235f9e701e14ed6f6f6dcba885f7986a833743f\"><code>b235f9e</code></a> Merge pull request <a href=\"https://github-redirect.dependabot.com/numpy/numpy/issues/19283\">#19283</a> from charris/prepare-1.21.0-release</li>\n<li><a href=\"https://github.com/numpy/numpy/commit/34aebc2824cf8c2bdbe19040b82f98f18557c8ba\"><code>34aebc2</code></a> MAINT: Update 1.21.0-notes.rst</li>\n<li><a href=\"https://github.com/numpy/numpy/commit/493b64bfe9c5396498325b87e5e80e1917555c41\"><code>493b64b</code></a> MAINT: Update 1.21.0-changelog.rst</li>\n<li><a href=\"https://github.com/numpy/numpy/commit/07d7e72ab6880c05b5fdd98482cf88982e778393\"><code>07d7e72</code></a> MAINT: Remove accidentally created directory.</li>\n<li><a href=\"https://github.com/numpy/numpy/commit/032fca5e2e9749b152ec56153f476e05efdff287\"><code>032fca5</code></a> Merge pull request <a href=\"https://github-redirect.dependabot.com/numpy/numpy/issues/19280\">#19280</a> from charris/backport-19277</li>\n<li><a href=\"https://github.com/numpy/numpy/commit/7d25b81025a50cc0368f5727c65e875ca769469a\"><code>7d25b81</code></a> BUG: Fix refcount leak in ResultType</li>\n<li><a href=\"https://github.com/numpy/numpy/commit/fa5754e8c159a37fcd9345df261cf82821088ea0\"><code>fa5754e</code></a> BUG: Add missing DECREF in new path</li>\n<li><a href=\"https://github.com/numpy/numpy/commit/61127bb4d46d523b699da1b63abaa5035670da27\"><code>61127bb</code></a> Merge pull request <a href=\"https://github-redirect.dependabot.com/numpy/numpy/issues/19268\">#19268</a> from charris/backport-19264</li>\n<li><a href=\"https://github.com/numpy/numpy/commit/143d45fff3ed9e051bdeef7bdb4df38025ea7d1c\"><code>143d45f</code></a> Merge pull request <a href=\"https://github-redirect.dependabot.com/numpy/numpy/issues/19269\">#19269</a> from charris/backport-19228</li>\n<li><a href=\"https://github.com/numpy/numpy/commit/d80e4738f781a1d206bbc04a2e863299e5f2e104\"><code>d80e473</code></a> BUG: Removed typing for == and != in dtypes</li>\n<li>Additional commits viewable in <a href=\"https://github.com/numpy/numpy/compare/v1.19.1...v1.21.0\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=numpy&package-manager=pip&previous-version=1.19.1&new-version=1.21.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language\n- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language\n- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language\n- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language\n\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>\nComment: OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting `@dependabot ignore this major version` or `@dependabot ignore this minor version`.\n\nIf you change your mind, just re-open this PR and I'll resolve any conflicts on it.",
+  "Title: Grammar and spelling fixes to docs\nBody: Ran the docs through grammarly.com, applying suggested grammar and spelling changes.\nComment: thank you",
+  "Title: Use Poetry\nBody: # Use [Poetry](https://python-poetry.org/) to handle Python dependencies\r\n\r\nI hope this will be merged (even though it can be tedious/troublesome to get all staging/production environments to use this) because the current dependency version control that is in place now is almost non-existent.\r\n\r\n## Advantages:\r\n- Significantly easier to install Python dependencies\r\n```bash\r\nsudo -u cape pip3 install poetry\r\nsudo -u cape git clone https://github.com/kevoreilly/CAPEv2.git /opt/CAPEv2\r\ncd /opt/CAPEv2\r\n# Change the home directory of cape to /opt/CAPEv2\r\nsudo usermod -d /opt/CAPEv2 cape\r\nsudo -u cape poetry install\r\n# The poetry environment will be stored in /opt/CAPEv2/.cache/pypoetry\r\n```\r\n- Significantly easier to handle Python dependency trees\r\n- Significantly easier to update Python dependencies\r\n  - Simply run `poetry update <package_name>`\r\n\r\n## Disadvantages:\r\n- Requires you to know poetry\r\n- Potentially automated steps to install CAPE will be broken (e.g. https://github.com/doomedraven/Tools)\r\n\r\n## Useful Poetry knowledge (skip if you already know how to use Poetry):\r\n- **NEVER** directly edit the `poetry.lock` file unless you really know what you're doing\r\n- To add dependency: `poetry add <package_name>`\r\n  - Specific package versions and git repositories are supported as well\r\n  - Reference: https://python-poetry.org/docs/cli/#add\r\n- To update a dependency: `poetry update <package_name>`\r\n  - You can update all dependencies as well via `poetry update` (but note that this may break with massive updates)\r\n  - Reference: https://python-poetry.org/docs/cli/#update\nComment: Do let me know if you have any concerns / issues with this PR and I'll try to address them ASAP\nComment: Here is my concern about this:\r\n\r\nPoetry, though great, is not as popular as plain old pip, so if you lock people into using that package manager if they want to use cuckoo there will be some annoyed users.\r\n\r\nProposed solution:\r\n\r\nI am not familiar with poetry, but is there some way in which you could also support pip too? Maybe that is already a thing but I see a `poetry.lock` and no .txt files. Could you maybe add a step where you use that lock file to generate a .txt file and store that in git too?\r\n\r\nI think I can see a poetry option here:\r\n\r\n```\r\npoetry export --format requirements.txt --output requirements.txt\r\n```\r\n\nComment: > Proposed solution:\n> \n> I am not familiar with poetry, but is there some way in which you could also support pip too? Maybe that is already a thing but I see a `poetry.lock` and no .txt files. Could you maybe add a step where you use that lock file to generate a .txt file and store that in git too?\n> \n> I think I can see a poetry option here:\n> \n> ```\n> poetry export --format requirements.txt --output requirements.txt\n> ```\n\nYup sure that sounds like a good idea so we leave it up to the user to decide whichever dependency management tool to use, I'll add it to the PR\n\n\nComment: amazing, thank you both, can maybe you reinclude the requirements.txt in PR and i will merge\nComment: i have tested `poetry export --format requirements.txt --output requirements.txt` works just fine. merging",
+  "Title: capsendbox rest api is not working \nBody: i am using capesendbox rest API in postman i try all the API  task create with token but its not working I am getting 520 errors constantly \nComment: as i told you in original issue, without example of the request we can't do nothing\nComment: sure, my query is i am using that curl -F file=@/path/to/file http://localhost:8090/tasks/create/file post request in my postman account basically we use postman for a call third party API we don't need to implement any code in for run third party API but if  I am using your rest API in postman for a create task file then I am getting errors 520 please help me\r\n\r\n\r\n![rest_api_response](https://user-images.githubusercontent.com/10295955/172543291-fe3d26a8-d2f8-4fa5-8c21-c6cf9a978e3c.png)\r\n\nComment: it works for me just fine, i can't reproduce your isssue\r\n```\r\ncurl -A \"Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.82 Safari/537.56\" -F file=@X -H \"Authorization: Token X\" https://www.capesandbox.com/apiv2/tasks/create/file/\r\n{\"error\":false,\"data\":{\"task_ids\":[X],\"message\":\"Task ID X has been submitted\"},\"errors\":[],\"url\":[\"https://www.capesandbox.com/submit/status/X/\"]}%\r\n```\nComment: ok so which platform you are using to execute this API can you share the detail about the platform\nComment: you have the url in link, i don't use any platform, just using curl you have the command in first line and output in second line\nComment: if you have issue with your instance, enable debug in `web/web/local_settings.py` `debug=True`, restart webgui and repeat request and you will see the error. but on capesandbox it works so far so im closing it\nComment: no this is not working after the changes still I am getting same error\nComment: Well say no working without log is pretty useless. You see for me it works\nso i cant spot what is wrong on your side.\n\nEl vie., 10 jun. 2022 12:09, ganeshpiplode ***@***.***>\nescribi\u00f3:\n\n> no this is not working after the changes still I getting same error\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/874#issuecomment-1152201134>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3ZV6IZ3CCUIDKTWLALVOMH45ANCNFSM5YB6G5QQ>\n> .\n> You are receiving this because you modified the open/close state.Message\n> ID: ***@***.***>\n>\n",
+  "Title: Add error handling\nBody: The size of to_insert can grow larger than the max Mongo doc size. This is caused by large buffer arguments in a call.\nComment: thanks",
+  "Title: Repos issues -> mongodb.list | main/binary-i386/Packages\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account acctivation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n##  Steps to Reproduce (1)\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Fresh Ubuntu 20.04 (up to date)\r\n2. Install cape2.sh\r\n3. After installation:\r\n![image](https://user-images.githubusercontent.com/13218919/172143771-fa763a62-8cca-4915-9f2d-35dcd56b7ca8.png)\r\n\r\nPartial fix:\r\n`sudo rm /etc/apt/sources.list.d/mongodb.list`\r\n`sudo apt update`\r\n\r\n## Steps to Reproduce (2)\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Fresh Ubuntu 20.04 (up to date)\r\n2. Install cape2.sh\r\n3. fix the first issue\r\n4. issue `sudo apt update`\r\n5. \r\n![Screenshot from 2022-06-06 13-38-12](https://user-images.githubusercontent.com/13218919/172145707-11503327-6af2-4181-b1c8-fee741f5c07d.png)\r\n\r\nPartial fix:\r\n1. List installed repos in Ubuntu \r\n`sudo grep -rhE ^deb /etc/apt/sources.list* `\r\n2. Edit the repos in the screenshot above by appending `[ arch = amd64]` after `deb`\r\n![image](https://user-images.githubusercontent.com/13218919/172148277-f0e83783-9e8b-4e07-aed2-df076d1c4e0e.png)\r\n![image](https://user-images.githubusercontent.com/13218919/172148340-7e8de6d6-ffae-4882-ab0f-039527e58a2d.png)\r\n\r\n\r\n\nComment: Hello so it doesn't have nothinf to do with mongo as i see, as mongo have it already https://github.com/doomedraven/Tools/blob/master/Sandbox/cape2.sh#L608\nComment: added arch=amd64 thanks https://github.com/doomedraven/Tools/commit/b9737d94fcd2c9be61deec65e91ff07f15894349",
+  "Title: Allow search user tasks\nBody: None",
+  "Title: Fixed missing args in the Proxmox machinery \nBody: Fixes missing retry=5, retry_index=0 in the in the function args",
+  "Title: [Feature Request] Adding an option to not rename the sample filename\nBody: Hello,\r\n\r\nSome malware samples check their filename, and don't execute if it is different from a hardcoded filename.\r\nDoes CAPE sends a renamed sample to the analysis machine, or is it only renamed for display and storage on CAPE side ?\r\n\r\nIf CAPE does rename the executed sample, would it be possible to add an option so that CAPE doesn't rename the sample sent for execution ?\r\n\r\nHere is an article about a sample that behaves in such a way : https://isc.sans.edu/forums/diary/Sandbox+Evasion+With+Just+a+Filename/28708/\r\n\r\nThanks :)\nComment: <img width=\"889\" alt=\"Screenshot 2022-06-03 at 15 20 47\" src=\"https://user-images.githubusercontent.com/1856495/171862320-93784c3f-6814-4c54-bd39-00a948f0e804.png\">\r\n\nComment: just set `filename=X`, cape just renames sample if that is sent as sha256\nComment: Oh my bad, should have looked there.\r\nThanks a lot !\nComment: you are welcome, check the rest of the options\nComment: Aye it only renames if it is the length of sha256 or more - otherwise original filename is untouched. ",
+  "Title: Fixes timeout waiting on systemd error that can occur when proxmox is overwhelmed\nBody: Fixes timeout waiting on systemd error that can occur when proxmox is overwhelmed by retrying the roll back\nComment: Thanks",
+  "Title: CAPE depolyment issues\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [Y] I am running the latest version\r\n- [Y] I checked the documentation and found no answer\r\n- [Y] I checked to make sure that this issue has not already been filed\r\n- [Y] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [Y] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\nI have deployed the CAPEv2 Sandbox on a Dell Server in vmware EsXi workstation by following the steps mentioned in the guide: https://notes.netbytesec.com/2020/12/cape-sandbox-installation-from-0-to-hero.html. The expected behavior is that whenever a malware sample is uploaded its complete analysis report along with its malscore should be returned as output. Basically, I want the CAPE Sandbox to work as it is intended tp i.e. generate a complete analysis report whenever a malware is uploaded.\r\n\r\n# Current Behavior\r\nWhenever a malware sample is uploaded to the CAPE Sandbox. First, it behaves normally prompting the message \"The analysis is not finished yet it is still running\" but after some time the message changes to \"The analysis is not finished yet it is still **failed_analysis**\" this message appears every time I upload a malware sample for analysis even though the analysis VM in KVM is powered on by CAPE. I have checked and configured the .conf files as per the requirement and the installation guide but still the same problem persists. I even have another CAPE instance deployed on separate PC which works just fine, so I duplicated its .conf files and other settings as well but to no avail. \r\nAnother problem is that whenever the cuckoo.py script is run its show a message \"CAPE Parse - No module named Blister - No module named 'malduck' \" so when I navigated to the CAPE Parser directory to install the modules, both the Blister and malduck modules were present in the directory. Still I tried installing them using pip3 as I thought maybe their old version is installed, but pip installing both of them resulted in a major error message whose last line reads \" ERROR: Command errored out with exit status 1: python setup.py egg_info Check the logs for full command output\"  the complete error log is present in the attached screenshot.\r\n\r\nScreenshots of the errors messages are attached below\r\n![1](https://user-images.githubusercontent.com/106651547/171558560-33a26692-9ab9-4513-b22a-8860bb0d9d98.PNG)\r\n![2](https://user-images.githubusercontent.com/106651547/171558567-56cf3dc1-0be4-4874-b029-54bb60c9d0a5.PNG)\r\n![3](https://user-images.githubusercontent.com/106651547/171558570-f29b3202-8a1e-436d-820b-847daefae550.PNG)\r\n![4](https://user-images.githubusercontent.com/106651547/171558574-71202a51-f951-4468-b3b4-261ecc24426b.PNG)\r\n![5](https://user-images.githubusercontent.com/106651547/171558575-441b0fce-3746-4788-9646-b49d8a896d90.PNG)\r\n![6](https://user-images.githubusercontent.com/106651547/171558577-41c405f3-f65a-4c66-bbf5-e5f72ac0ca09.PNG)\r\n\r\n## Failure Logs\r\nFollowing are the Error logs of Uninstalled Blister and malduck packages and failed_analysis message of CAPE in terminal: \r\n\r\nroot@root:/opt/CAPEv2# sudo python3 cuckoo.py\r\nCAPE parser: No module named Blister - No module named 'malduck'\r\n\r\n  .-----------------.\r\n  | Cuckoo Sandbox? |\r\n  |     OH NOES!    |\\  '-.__.-'\r\n  '-----------------' \\  /oo |--.--,--,--.\r\n                         \\_.-'._i__i__i_.'\r\n                               \"\"\"\"\"\"\"\"\"\r\n\r\n Cuckoo Sandbox 2.2-CAPE\r\n www.cuckoosandbox.org\r\n Copyright (c) 2010-2015\r\n\r\n CAPE: Config and Payload Extraction\r\n github.com/kevoreilly/CAPEv2\r\n\r\nUnable to import plugin \"modules.processing.CAPE\": duplicate argument 'results' in function definition (file_extra_info.py, line 363)\r\nUnable to import plugin \"modules.processing.dropped\": duplicate argument 'results' in function definition (file_extra_info.py, line 363)\r\nUnable to import plugin \"modules.processing.procdump\": duplicate argument 'results' in function definition (file_extra_info.py, line 363)\r\nUnable to import plugin \"modules.processing.targetinfo\": duplicate argument 'results' in function definition (file_extra_info.py, line 363)\r\n2022-06-01 07:02:07,310 [lib.cuckoo.core.scheduler] INFO: Using \"kvm\" machine manager with max_analysis_count=0, max_machines_count=10, and max_vmstartup_count=5\r\n2022-06-01 07:02:07,403 [lib.cuckoo.core.scheduler] INFO: Loaded 1 machine/s\r\n2022-06-01 07:02:07,407 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks\r\n2022-06-01 07:06:32,864 [lib.cuckoo.core.scheduler] INFO: Task #10: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_9msz6v0y/wanncry.exe'\r\n2022-06-01 07:06:32,994 [lib.cuckoo.core.scheduler] INFO: Task #10: File already exists at '/opt/CAPEv2/storage/binaries/ed01ebfbc9eb5bbea545af4d01bf5f1071661840480439c6e5babe8e080e41aa'\r\n2022-06-01 07:06:33,030 [lib.cuckoo.core.scheduler] INFO: Task #10: acquired machine win7 (label=win7, arch=x64, platform=windows)\r\n2022-06-01 07:06:39,761 [lib.cuckoo.core.scheduler] INFO: Enabled route 'none'\r\n2022-06-01 07:06:39,778 [modules.auxiliary.sniffer] INFO: Started sniffer with PID 22372 (interface=virbr2, host=192.168.56.101, dump path=/opt/CAPEv2/storage/analyses/10/dump.pcap)\r\n2022-06-01 07:06:39,795 [lib.cuckoo.core.guest] INFO: Starting analysis #10 on guest (id=win7, ip=192.168.56.101)\r\n2022-06-01 07:11:00,484 [lib.cuckoo.core.scheduler] ERROR: Machine win7: the guest initialization hit the critical timeout, analysis aborted\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 346, in launch_analysis\r\n    guest.start_analysis(options)\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/guest.py\", line 245, in start_analysis\r\n    self.wait_available()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/guest.py\", line 156, in wait_available\r\n    raise CuckooGuestCriticalTimeout(\r\nlib.cuckoo.common.exceptions.CuckooGuestCriticalTimeout: Machine win7: the guest initialization hit the critical timeout, analysis aborted\r\n2022-06-01 07:16:19,964 [lib.cuckoo.core.scheduler] INFO: Task #10: analysis procedure completed\r\n\nComment: that blogpost suggest to install it as crap. im not sure if they banned me, but i can't anymore add comments there as reply to their response to me. \r\n\r\nFollow our Readme steps, NEVER run cape as root. cape services expects to run stuff as cape user, so any other user without mods service files are useless. so my personal suggestion, go and reinstall following our readme and AGAIN NEVER AS ROOT!\r\n\r\nabout modules as malduck, so it doesn't have nothing to do with folder. I guess you have luck of understanding how python modules works? \nComment: closing, issue looks abondoned",
+  "Title: Update QakBot.py\nBody: QakBot extractor is generating some 'keys' which are integers. This makes the JSON library fail and it also prevents the proper insertion into MongoDB.\nComment: Thank you!",
+  "Title: Target section missing from json after update\nBody: Hi ,\r\nApparently the target section misses in the final json report.\r\nHow can I add that back?\r\nThanks\nComment: See your logs\nComment: closing due to lack of info. in future see logs and provide them, otherwise we can't help",
+  "Title: Refactor some code for handling cape_type/cape_name and change how static_config_parsers is called\nBody: - Pass the cape_name to static_config_parsers instead of the rule name.\r\n  The cape_name is derived from the cape_type meta field in the matching\r\n  rule. It is the part of the name before \"Payload,\" \"Loader,\" or\r\n  \"Config.\"\r\n- Use this \"cape_name\" as the detection family instead of using the rule\r\n  name.\r\n\r\nRules currently in data/yara/CAPE/ have a cape_type that\r\nfollows that convention so that there *should* be no change in detections.\r\nOne issue is:\r\n - EternalRomance: This has a cape_type of \"EternalRomance Exploit\". I'm\r\n   not sure how this should be handled since it does not end in\r\n   \"Config\", \"Payload\", or \"Loader\".\nComment: Thanks Tommy, yes exploit is diff, and we need to add some custom keyword that allows to user add their own detection for visualization but well is a good start so far",
+  "Title: Fix condition for adding tasks for extracted files.\nBody: Note that I'm not totally positive that this should be `only_extraction`, but I am pretty sure it's not supposed to be `static_extraction` because, since that's a function, it will always be truthy.\nComment: That is required for checkbox try extractwithout vm, if extrqcts, do not submit to vmas far as i remember, thanks i had to look into that after pto",
+  "Title: Update community.py\nBody: Fixes Issue with T variable in community.py script. #861 \r\n\r\nSorry If I haven't done this quite Right. This is my first Pull request on your repo.\nComment: Thanks",
+  "Title: Install via localpath errors out due to t variable not being in place on install definition.\nBody: When running the community.py file in utilities via the following command it will error out and not install the signatures;\r\n\r\npython3 community.py -s --file master.tar.gz\r\n\r\nIt errors out on a missing t variable in the code.\r\n\r\nt = tarfile.TarFile.open(fileobj=BytesIO(data), mode=\"r:gz\")\r\n\r\nBy adding this variable to the code as shown below and in the pull request the error is fixed.\r\n\r\n`\r\ndef install(enabled, force, rewrite, filepath):\r\n\r\nif filepath and os.path.exists(filepath):\r\n\r\n    data = open(filepath, \"rb\").read()\r\n    t = tarfile.TarFile.open(fileobj=BytesIO(data), mode=\"r:gz\")\r\n\r\nelse:\r\n\r\n    print(\"Downloading modules from {0}\".format(URL))\r\n\r\n    try:\r\n\r\n        http = urllib3.PoolManager()\r\n\r\n        data = http.request(\"GET\", URL).data\r\n\r\n        t = tarfile.TarFile.open(fileobj=BytesIO(data), mode=\"r:gz\")\r\n\r\n    except Exception as e:\r\n\r\n        print(\"ERROR: Unable to download archive: %s\" % e)\r\n\r\n        sys.exit(-1)\r\n\r\n\r\n\r\nfolders = {\r\n\r\n    \"feeds\": \"modules/feeds\",\r\n\r\n    \"signatures\": \"modules/signatures\",\r\n\r\n    \"processing\": \"modules/processing\",\r\n\r\n    \"reporting\": \"modules/reporting\",\r\n\r\n    \"machinery\": \"modules/machinery\",\r\n\r\n    \"analyzer\": \"analyzer\",\r\n\r\n    \"data\": \"data\",\r\n\r\n}\r\n\r\n\r\n\r\nmembers = t.getmembers()\r\n\r\ndirectory = members[0].name.split(\"/\", 1)[0]\r\n\r\n\r\n\r\nfor category in enabled:\r\n\r\n    folder = folders.get(category, False)\r\n\r\n    if not folder:\r\n\r\n        continue`\nComment: Thanks for fix ",
+  "Title: Include static category\nBody: None",
+  "Title: Parent file info fixup\nBody: None",
+  "Title: Analysis processing fails since upgrade\nBody: Please answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nUpgrade CAPEv2 to the latest release and now processing of analysis results fails...\r\n\r\n# Current Behavior\r\n\r\nPython error returned in process.log and console reports \"failed_processing\" for all samples\r\n\r\n# Failure Information (for bugs)\r\n\r\n2022-05-24 07:27:22,652 [lib.cuckoo.core.plugins] ERROR: Failed to load signature \"<class 'modules.signatures.antisandbox_unhook.Unhook'>\": 'target'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 412, in process\r\n    current = signature(self.results)\r\n  File \"/opt/CAPEv2/utils/../modules/signatures/antisandbox_unhook.py\", line 37, in __init__\r\n    if self.results[\"target\"][\"category\"] != \"file\":\r\nKeyError: 'target'\r\n2022-05-24 07:27:22,816 [root] ERROR: Exception when processing task 1592: 'target'\r\n2022-05-24 07:27:48,794 [root] INFO: Processing analysis data\r\n\r\n## Steps to Reproduce\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | bba6bbe705c00f9d02e86177e72a45948a0a756c\r\n| OS version       | Ubuntu 18.04\r\n\r\n\nComment: Would you try restarting all cape services? I have heard this may solve this issue.\nComment: well not all, but `cape-processor` service would be good to restart after any update\nComment: btw @xme if you still on python 3.6 as you using ubuntu 18. you might start getting more problems, as our py requirement now is 3.8 \nComment: Tx for the warning, will upgrade! I restarted all processes, same issue.\r\nI did not update the agent on guests, is there a recent change in agent.py that could be the root cause?\nComment: Nah, processing is setver side\n\nEl mar., 24 may. 2022 17:00, Xavier Mertens ***@***.***>\nescribi\u00f3:\n\n> Tx for the warning, will upgrade! I restarted all processes, same issue.\n> I did not update the agent on guests, is there a recent change in agent.py\n> that could be the root cause?\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/858#issuecomment-1136042447>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH33EDTBTP7S4NJGOKGDVLTVHJANCNFSM5WYPV6YQ>\n> .\n> You are receiving this because you commented.Message ID:\n> ***@***.***>\n>\n\nComment: Ok, I upgraded everything... Ubuntu, now running a 3.8 Python, etc. The initial problem has been magically fixed ;-)\r\nI'm still having some small issues to fix one by one but this one looks more interesting:\r\n\r\n```\r\n2022-05-25 07:36:06,909 [lib.cuckoo.core.plugins] ERROR: Failed to run the reporting module \"Retention\": mongo_delete_data() takes 1 positional argument but 2 were given\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 682, in process\r\n    current.run(self.results)\r\n  File \"/opt/CAPEv2/utils/../modules/reporting/retention.py\", line 145, in run\r\n    mongo_delete_data(curtask, lastTask)\r\nTypeError: mongo_delete_data() takes 1 positional argument but 2 were given\r\n```\nComment: Im on PTO till next tuesday so if nobody checks that, i will check once im\nback\n\nEl mi\u00e9., 25 may. 2022 9:39, Xavier Mertens ***@***.***>\nescribi\u00f3:\n\n> Ok, I upgraded everything... Ubuntu, now running a 3.8 Python, etc. The\n> initial problem has been magically fixed ;-)\n> I'm still having some small issues to fix one by one but this one looks\n> more interesting:\n>\n> 2022-05-25 07:36:06,909 [lib.cuckoo.core.plugins] ERROR: Failed to run the reporting module \"Retention\": mongo_delete_data() takes 1 positional argument but 2 were given\n> Traceback (most recent call last):\n>   File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 682, in process\n>     current.run(self.results)\n>   File \"/opt/CAPEv2/utils/../modules/reporting/retention.py\", line 145, in run\n>     mongo_delete_data(curtask, lastTask)\n> TypeError: mongo_delete_data() takes 1 positional argument but 2 were given\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/858#issuecomment-1136899056>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH32MM4BHDD5YGMIK7ILVLXKK3ANCNFSM5WYPV6YQ>\n> .\n> You are receiving this because you commented.Message ID:\n> ***@***.***>\n>\n\nComment: fixed now, thank you for reporting, closing as original issue solved, but if you see something else let me know ASAP",
+  "Title: Added logic to fix potential race condition when provisioning new EC2\u2026\nBody: - Addresses some issues parsing blanked out values in the `aws.conf` file.\r\n- Addresses intermittent errors with aws machinery where newly provisioned EC2 instances would occasionally raise ResourceNotFound errors when attempting to pull information about the instance.\nComment: AWS machinery is much more stable with these changes; I have submitted over 1000 files with 3 instances running concurrently.\nComment: Hello thank you. How is the performance on AWS?\nComment: Performance is good, no longer intermittently crashing. I'll continue to scale up and report back.\r\n\r\n\nComment: nice, could you help us with aws docs at least some minimal docs for quick start?\nComment: Also, maybe a  short video how to spin it up on AWS?\nComment: Sorry, just seeing these comments. Yes, I can help out with the AWS docs and will include a short video.\nComment: Thank you a lot\n\nEl vie., 3 jun. 2022 6:12, JaminB ***@***.***> escribi\u00f3:\n\n> Sorry, just seeing these comments. Yes, I can help out with the AWS docs\n> and will include a short video.\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/pull/857#issuecomment-1145567579>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH32VVBTVPIZT54BBJHTVNGA4FANCNFSM5WXI3EFA>\n> .\n> You are receiving this because you modified the open/close state.Message\n> ID: ***@***.***>\n>\n",
+  "Title: Allow analyze only specific categories ex: static/pcap/file\nBody: None",
+  "Title: \"CAPE Yara\" format display\nBody: All \"CAPE Yara\" use same display style.  \r\nNot \"meta.name\" rather than \"name\".  \nComment: thank you",
+  "Title: Type-hinting and cleanup for lib\\cuckoo\\common\nBody: _Note_: I haven't type-hinted some of the files yet, will do so sometime in the future",
+  "Title: Fix Remcos TLS config\nBody: None\nComment: thank you",
+  "Title: Fix pymongo fork-safe warnings\nBody: Relevant logs:\r\n```\r\nMay 16 23:49:08 ubuntu python3[4324]: 2022-05-16 23:49:08,006 [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"MongoDB\"\r\nMay 16 23:49:08 ubuntu python3[4324]: /usr/local/lib/python3.8/dist-packages/pymongo/topology.py:162: UserWarning: MongoClient opened before fork. Create MongoClient only after forking. See PyMongo's documentation for details: https://pymongo.readthedocs.io/en/stable/faq.html#is-pymongo-fork-safe\r\nMay 16 23:49:08 ubuntu python3[4324]:   warnings.warn(\r\n```\r\n\r\nReference: https://pymongo.readthedocs.io/en/stable/faq.html#is-pymongo-fork-safe\r\n\r\nFrom https://pymongo.readthedocs.io/en/stable/api/pymongo/mongo_client.html:\r\n> connect (optional): if True (the default), immediately begin connecting to MongoDB in the background. Otherwise connect on the first operation.\nComment: thank you",
+  "Title: Fix JsonDump bytes decode error\nBody: When I submit a file to CAPE, it can not generate a report.json.  \r\nI submit it to CAPE, and it should have same problem: https://capesandbox.com/analysis/270313/  \r\nI fix it by converting some bytes to hex str, at least the report.json can be generated. There may be a better way.\nComment: hello thanks, can you provide some output which strings generates that? i would love to fix the root problem\nComment: > hello thanks, can you provide some output which strings generates that? i would love to fix the root problem\r\n\r\n```\r\n\"Unknown56\": [\r\n  \"UnicodeDecodeError, bytes hex str: 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\"\r\n],\r\n\"Unknown57\": [\r\n  \"UnicodeDecodeError, bytes hex str: 307702010104200f397ff2b81270eadf727c969c314bed1a1849fdfa90b0521c0dedf890b85bd8a00a06082a8648ce3d030107a1440342000451b9cf218b82be23b4b040f6c24f6a47e1e3ffb7a64d4f16e3525fbe19de21fd3d82c3cb969f2991751be1b51f67263c704a2bcb602aa42a94b8b8b8b1dbe135\"\r\n],\r\n\"Unknown58\": [\r\n  \"UnicodeDecodeError, bytes hex str: 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\"\r\n],\r\n```\nComment: ah ok i see that is the config extractor problems\nComment: Yeah, maybe I should fix Remcos config extractor.  \r\nYou can close this pull request.  \r\nThanks!\nComment: nah is fine, that helps to investigate problematic fields, but is better to find and fix, we speaking with Kevin if we just remove all unk fields",
+  "Title: Make YARA-CI happy\nBody: None\nComment: thank you",
+  "Title: Add reversinglabs processor\nBody: - adds support for reversinglabs API (note tested on A1000 appliance)\r\n- Added summary tab to display results in web-ui\nComment: thank you",
+  "Title: Add AWS support\nBody: - added `aws.py` adapted from [here](https://github.com/CheckPointSW/Cuckoo-AWS).\r\n- added corresponding `aws.conf`\r\n- updated requirements*\nComment: :)\nComment: thank you\nComment: Thanks a lot.\r\n\r\nOut of interest, how well does it work on AWS - does it scale well, any vm detection issues, etc?\nComment: I've done limited testing (only scaled up to 5 instances concurrently), but so far so good. I'll report back if I run into any issues as I scale up.\r\n\r\nI haven't run into it personally, but if the `cuckoo` crashes during analysis you could be left in a situation where you have several orphaned EC2 instances running (as this module manages its own autoscaling internally) so suggest keeping the `dynamic_machines_limit` low or baby-sitting your EC2 environment until you feel confident your configuration is solid.\r\n\r\nOnly other kind of tricky part is the routing to get traffic back to the CAPE instance for packet-capture. All of that has to be done with routing tables inside your VPC. I eventually accomplished it by creating an AMI image always deploys inside the the same subnet, and then building an explicit routing table for that subnet that routes traffic to CAPE. After, that all of the per-analysis routing should be the same (although I have yet to implement it).\r\n\r\nWill be sure to push any fixes if I find any bugs.",
+  "Title: Make YARA-CI happy\nBody: None\nComment: thanks\nComment: Sorry that didn't work. I saw what's wrong. Sending a new PR.",
+  "Title: Update Blister bypass YARA\nBody: None\nComment: Yep was just thinking that. Thanks ",
+  "Title: Update Blister YARA\nBody: None",
+  "Title: Add new crypto string\nBody: None\nComment: thank you",
+  "Title: Feature/aws support\nBody: None\nComment: Hello, thank you a lot, i think you forgot the aws.conf and update to processing.conf for reversing lab no? don't worry about tests i need to fix django dependency instalation\nComment: ok only aws machinery config is needed. once you add it, i will merge\nComment: Hi!\r\n\r\nI actually didn't mean to include the reversinglabs processor in this PR. I'll add the aws.conf example in here and create a separate PR for the reversinglabs stuff. That work for you @doomedraven?\r\n\r\n\r\nI should note that for reversing labs adaption on the web ui side is a bit of a hack job, and I never intended to put in a PR for it. :)\nComment: hello, both works for me, it can be here or can be separated PR, just pick my changes to it, and rename user agent from cuckoo to cape, so reversing labs will get a better idea who uses it\nComment: Split into two PRs:\r\n- https://github.com/kevoreilly/CAPEv2/pull/848 (AWS Machinery)\r\n- https://github.com/kevoreilly/CAPEv2/pull/849 (Reversing Labs Processor)",
+  "Title: [Feature Request] User Submissions Link\nBody: Hi this is a feature request, I'd like a list of all my submissions from my user (or other people's users for that matter) to be viewable within my profile to track them more easily.  A lot of my jobs haven't been completing successfully even with enforce timeout.\r\n\r\nhttps://capesandbox.com/submit/status/268731/ for instance\nComment: hello, the issue with your task is that you set machine, as main server db was set long time ago we need to do some update to make it working, just not set machine name should solve your issue\r\n\r\nabout feature request, maybe in future, as allow to user list their tasks is ok, but of other people tasks idk if that is ok\nComment: > hello, the issue with your task is that you set machine, as main server db was set long time ago we need to do some update to make it working, just not set machine name should solve your issue\r\n> \r\n> about feature request, maybe in future, as allow to user list their tasks is ok, but of other people tasks idk if that is ok\r\n\r\nThat's absolutely fine!  I mainly just need to track my own submissions anyway \ud83d\udc4d \r\n\r\nThanks for the tip on the machine name.\nComment: hello now you can search all your jobs, well not all, but only view last 50(limit on public) on personal can be changed\r\n\r\nto use it on capesandbox.com you need to do login and then put in search: `user_tasks:givemethemall` the <givemethemall> doesn't matter due to it uses user id from mongo to not leak others users jobs, but value should be more 3 or more chars/digits after user_tasks ;) ",
+  "Title: Filter bypass of ZIP files containing ELF files\nBody: # Expected Behavior\r\n\r\nLinux is disabled in `custom/conf` configuration files. When submitting any form of ELF files, the submission will be blocked.\r\n\r\n# Current Behavior\r\n\r\nIf a ZIP file containing an ELF file is submitted, the submission will go through. This is because the machine platform is determined before `demux_sample_and_add_to_db` is called (which will unzip the file and go through the zip file contents).\r\n\r\nLocation of code logic error:\r\nhttps://github.com/kevoreilly/CAPEv2/blob/30a071c3cd088cf53790afade1b9f22c9f20dc33/lib/cuckoo/common/web_utils.py#L691-L714\r\n\r\nA possible fix would be to run `get_platform` only after demuxing the submitted sample.\nComment: interesting, why there is elf(just as curiosity)? could you PR the solution please? \nComment: do you have hash to test?\nComment: Nope I have no hash (it works on all zip files with an elf file inside). We were just testing for bugs in the code and we just realised that there is this bug.\nComment: fixed here thank you https://github.com/kevoreilly/CAPEv2/pull/1414",
+  "Title: capesandbox.com give Server Error (500) for signup and password reset\nBody: Hi there!\r\n\r\nWe're trying to create an account to do some comparison, but we can't sign up successfully.\r\n\r\nHope you can have a look.\r\n\r\nThank you!\nComment: hello thanks for headups, i see that there is some problems with email provider, once i will get access to panel i will fix it and let you know.\r\n\r\nyour user should be active now i have manually forced it to active\r\n\nComment: Hi, I am getting the same error when I try to reset my password.\nComment:  we have the root problem, we working with email provider to solve it, once it will be fixed it will be working again\nComment: Could you double check my account again, it wont let me in.\r\n\r\nCheers!\nComment: My bad, I wasn't using my username. Thanks a lot for the quick response !\nComment: we solved issue with the provider now you can resotre and do anything else what you need, @mach1982 now you should be able to restore your pass",
+  "Title: Make sure that the keys from tmp_config are not put in the top-level config dict\nBody: We had some Emotet samples that ended up having the 'address', 'ECC ECK1', and 'ECC ECS1' key at the top level of the resulting CAPE.configs object as well as under CAPE.configs.Emotet. I tracked it down to this line where we were calling `config.update(tmp_config[cape_name])` which would take all of the keys under 'Emotet' from `tmp_config` and put them as top-level keys in `config`.\r\n\r\n```\r\n        \"CAPE\" : {\r\n                \"configs\" : [\r\n                        {\r\n                                \"address\" : [\r\n                                        [\r\n                                                <list of addr/port>\r\n                                        ]\r\n                                ],\r\n                                \"ECC ECK1\" : [\r\n                                        \"-----BEGIN PUBLIC KEY-----\\n<key>\\n-----END PUBLIC KEY-----\"\r\n                                ],\r\n                                \"ECC ECS1\" : [\r\n                                        \"-----BEGIN PUBLIC KEY-----\\n<key>\\n-----END PUBLIC KEY-----\"\r\n                                ],\r\n                                \"Emotet\" : {\r\n                                        \"address\" : [\r\n                                                [\r\n                                                        <list of addr/port>\r\n                                                ]\r\n                                        ],\r\n                                        \"ECC ECK1\" : [\r\n                                                \"-----BEGIN PUBLIC KEY-----\\n<key>\\n-----END PUBLIC KEY-----\"\r\n                                        ],\r\n                                        \"ECC ECS1\" : [\r\n                                                \"-----BEGIN PUBLIC KEY-----\\n<key>\\n-----END PUBLIC KEY-----\"\r\n                                        ]\r\n                                }\r\n                        }\r\n                ]\r\n        }\nComment: thank you",
+  "Title: Future docker config?\nBody: Hi\r\nI was wondering will CAPEv2 have configuration for docker?\r\n\nComment: hello, it will have it only if community will write all that, but there a lot of pitfails specially like kvm in docker etc",
+  "Title: Remove explicit inheritance from object\nBody: Defining a class via\r\n```python\r\nclass foo(object):\r\n...\r\n```\r\nis the same as\r\n```python\r\nclass foo:\r\n...\r\n```\r\nin python 3.\r\n\r\nThere would be a difference if the code was written in Python 2, but the code would definitely break elsewhere anyways if Python 2 was used to run CAPE.",
+  "Title: Dependency of django==4.0.4 is not pinned\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nHello :slightly_smiling_face:\r\nI may have posted in the wrong place (https://github.com/doomedraven/Tools/issues/113), so I'm reposting here.\r\n\r\nUsing the script of doomedraven to install CAPE, the installation python dependencies fail because a dependency of django==4.0.4 is not pinned.\r\n\r\nI get the following error :\r\n```\r\nERROR: In --require-hashes mode, all requirements must have their versions pinned with ==. These do not:\r\n    backports.zoneinfo; python_version < \"3.9\" from https://files.pythonhosted.org/packages/1a/ab/3e941e3fcf1b7d3ab3d0233194d99d6a0ed6b24f8f956fc81e47edc8c079/backports.zoneinfo-0.2.1-cp38-cp38-manylinux1_x86_64.whl#sha256=7b0a64cda4145548fed9efc10322770f929b944ce5cee6c0dfe0c87bf4c0c8c9 (from django==4.0.4->-r /opt/CAPEv2/requirements.txt (line 203))\r\n```\r\n\r\nThis may be related to [the update of django to version 4](https://github.com/kevoreilly/CAPEv2/commit/428a8d461e0cbc5f85231bf70ab85f1952bbeb53) in the CAPEv2 repo.\r\n\r\nIf i understand correctly, the fact that a dependency of django is not pinned is out of our control.\r\nReading https://stackoverflow.com/questions/58843905/what-is-the-proper-way-to-decide-whether-to-allow-unsafe-package-versions-in-pip, they suggest to use `--allow-unsafe` when launching pip-compile to generate `requirements.txt` from `requirements.in` (also see https://github.com/jazzband/pip-tools/issues/806).\r\n\r\n# Temporary fix\r\n\r\nFor now, I can complete the installation by manually installing django==4.0.4 just before launching the script.\nComment: I forgot to mention that I'm using Ubuntu Server 20.04 LTS.\nComment: thanks, fixed \nComment: Thank you !",
+  "Title: small fix\nBody: None",
+  "Title: Bug fix for\nBody: Reject forwarding to a certain network segment\nComment: thanks\nComment: I know reject_segments should be initialized, but `if routing.routing.reject_segments == \"none\":` cannot be deleted.  \r\nThis is proper:  \r\n```python\r\nif routing.routing.reject_segments != \"none\":\r\n    self.reject_segments = routing.routing.reject_segments\r\n```",
+  "Title: workaround for deprecated is_ajax()\nBody: None\nComment: thank you",
+  "Title: Reject forwarding to a certain network segment\nBody: When using \"dirty line\", I want to reject forwarding to some certain network segments.  \nComment: thank you\nComment: Sorry for my bad code format. Next time I will check it with black. THanks!\nComment: no problem, soon we will add pre commit hooks that fixes black and isort stuff ;)",
+  "Title: Update to BumbleBee YARA signature\nBody: None\nComment: Fixed in https://github.com/kevoreilly/CAPEv2/commit/f0ae57ad0d567f1f41463da5240a1ab3cb388f3d",
+  "Title: django 4\nBody: None",
+  "Title: Bump django from 3.2.12 to 3.2.13\nBody: Bumps [django](https://github.com/django/django) from 3.2.12 to 3.2.13.\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/django/django/commit/08e6073f878264a0c091da0d3db456820252ef6c\"><code>08e6073</code></a> [3.2.x] Bumped version for 3.2.13 release.</li>\n<li><a href=\"https://github.com/django/django/commit/9e19accb6e0a00ba77d5a95a91675bf18877c72d\"><code>9e19acc</code></a> [3.2.x] Fixed CVE-2022-28347 -- Protected QuerySet.explain(**options) against...</li>\n<li><a href=\"https://github.com/django/django/commit/2044dac5c6968441be6f534c4139bcf48c5c7e48\"><code>2044dac</code></a> [3.2.x] Fixed CVE-2022-28346 -- Protected QuerySet.annotate(), aggregate(), a...</li>\n<li><a href=\"https://github.com/django/django/commit/bdb92dba0b07e2bac17795f0d515eb9d105addf8\"><code>bdb92db</code></a> [3.2.x] Fixed <a href=\"https://github-redirect.dependabot.com/django/django/issues/33628\">#33628</a> -- Ignored directories with empty names in autoreloader ...</li>\n<li><a href=\"https://github.com/django/django/commit/70035fb0444ae7c01613374212ca5e3c27c9782c\"><code>70035fb</code></a> [3.2.x] Added stub release notes for 3.2.13 and 2.2.28.</li>\n<li><a href=\"https://github.com/django/django/commit/7e7ea71a8da850e1178a758d073b1395d57f12ec\"><code>7e7ea71</code></a> [3.2.x] Reverted &quot;Fixed forms_tests.tests.test_renderers with Jinja 3.1.0+.&quot;</li>\n<li><a href=\"https://github.com/django/django/commit/610ecc9053061f7c011cf90c0fa692842e2c9177\"><code>610ecc9</code></a> [3.2.x] Fixed forms_tests.tests.test_renderers with Jinja 3.1.0+.</li>\n<li><a href=\"https://github.com/django/django/commit/754af45773d644cce6b6c0095a391615d3f49850\"><code>754af45</code></a> [3.2.x] Fixed typo in release notes.</li>\n<li><a href=\"https://github.com/django/django/commit/6f309165e50378c41bc2d6190353d4dbcabcb8d1\"><code>6f30916</code></a> [3.2.x] Added CVE-2022-22818 and CVE-2022-23833 to security archive.</li>\n<li><a href=\"https://github.com/django/django/commit/1e6b555c92fd39c9e11b5a27600a87ac964eb2bb\"><code>1e6b555</code></a> [3.2.x] Post-release version bump.</li>\n<li>See full diff in <a href=\"https://github.com/django/django/compare/3.2.12...3.2.13\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=django&package-manager=pip&previous-version=3.2.12&new-version=3.2.13)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language\n- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language\n- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language\n- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language\n\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>\nComment: OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting `@dependabot ignore this major version` or `@dependabot ignore this minor version`.\n\nIf you change your mind, just re-open this PR and I'll resolve any conflicts on it.",
+  "Title: fix parser name bug\nBody: When I add a parser like \"A_B.py\", it cannot be found. Now I fix it.",
+  "Title: CAPEv2 Distributed \"ERROR :-( The specified analysis does not exist or not finished yet\"\nBody: Using a different database on `conf/report.conf`:\r\n\r\n![image](https://user-images.githubusercontent.com/103407864/164367883-a1b0d439-6739-40b2-8cf0-5be7cfe892fe.png)\r\n\r\nResult of analysis:\r\n\r\n![image](https://user-images.githubusercontent.com/103407864/164367192-f9eebf7e-25b5-4551-93b1-2466ab243672.png)\r\n\r\n========================================================\r\n\r\nUsing the same database on `conf/report.conf`:\r\n\r\n![image](https://user-images.githubusercontent.com/103407864/164368682-cd8f8d84-77da-4a56-9ef3-c98216c64d2c.png)\r\n\r\nResult of analysis is normal....\r\nBut, if the **_Task ID_** of the **_worker node_** and **_master node_** are the same, the analysis results will be lost like this:\r\n\r\n![image](https://user-images.githubusercontent.com/103407864/164367192-f9eebf7e-25b5-4551-93b1-2466ab243672.png)\r\n\r\nwhich is the correct approach and how to solve the problem of analysis results?\r\n\r\nThank's.\nComment: 1. Is mongo in shard mode? if no then those 2 different mongo won't be able to locate the proper task \r\n2. can you reprocess that tasks on worker without log i can't tell you much if mongo is in shard mode? \r\n\nComment: So, is it recommended to use mongo shard mode with two different databases ?\nComment: how do you expect otherwise to main node know where is the tasks?\r\nyou should use shard or \"poor man approach\" and point to master mongo server on workers, but it adds delay on data transfer on processing\nComment: there you have everything https://capev2.readthedocs.io/en/latest/usage/dist.html\r\nclosing as that is not real issue is bad install, feel free to write here if you need any clarification",
+  "Title: Update aplib to latest version (0.6)\nBody: Reference: https://github.com/snemes/aplib.git\r\nThe unit tests file works fine with the current aplib file as well\nComment: thank you, lol @snemes how we didn't spot that? :)",
+  "Title: adjust default routing option\nBody: None\nComment: thanks",
+  "Title: CAPEv2 distributed \"message\": \"The browser (or proxy) sent a request that this server could not understand.\"\nBody: OS: Ubuntu 20.04\r\n\r\nI added a worker node, but it's not working.\r\n\r\nCommand:\r\n`curl http://localhost:9003/node -F name=worker -F url=http://worker:8000/apiv2/`\r\n\r\nMessage after executing command:\r\n` \"message\": \"The browser (or proxy) sent a request that this server could not understand.\"`\r\n\r\non `log/dist.log` does not display error message\r\n\r\nLog in /var/log/uwsgi/app/cape_dist.log\r\n`POST /node => generated 91 bytes in 2 msecs (HTTP/1.1 400) 2 headers in 80 bytes (1 switches on core 1)`\r\n\r\nThank's\r\n\nComment: what about if you just open `http://localhost:9003/status`?\nComment: {\"nodes\":{},\"tasks\":{\"pending\":0,\"processed\":0,\"processing\":0}}\nComment: can you run `python3 dist.py -d` and send request again to register worker, to see what msg you getting in debug mode\nComment: 2022-04-19 10:12:16,288 INFO:_internal:Thread-1 - 127.0.0.1 - - [19/Apr/2022 10:12:16] \"POST /node HTTP/1.1\" 400 -\r\n2022-04-19 10:12:16,289 ERROR:_internal:Thread-1 - 127.0.0.1 - - [19/Apr/2022 10:12:16] code 400, message Bad request syntax ('--------------------------12b792919827388b')\r\n2022-04-19 10:12:16,289 INFO:_internal:Thread-1 - 127.0.0.1 - - [19/Apr/2022 10:12:16] \"None /node HTTP/0.9\" HTTPStatus.BAD_REQUEST -\r\n\nComment: does it response correctly to `curl http://worker:8000/apiv2/machines/list/`?\nComment: yes, the response is like this:\r\n`{\"data\":[{\"id\":7,\"name\":\"worker01-1\",\"label\":\"7f1f981e-c09c-76dc-62fd-509f8727991c\",\"arch\":\"x64\",\"ip\":\"192.168.50.21\",\"platform\":\"windows\",\"interface\":\"eth0\",\"snapshot\":\"8781f88f-d581-4da4-fe19-1b51b41abe20\",\"locked\":false,\"locked_changed_on\":null,\"status\":null,\"status_changed_on\":null,\"resultserver_ip\":\"192.168.50.61\",\"resultserver_port\":\"2042\",\"tags\":[\"windows_7\",\"x86\"]},{\"id\":8,\"name\":\"worker01-2\",\"label\":\"ff5aec2e-5f45-8d79-e260-65c1572d2787\",\"arch\":\"x64\",\"ip\":\"192.168.50.22\",\"platform\":\"windows\",\"interface\":\"eth0\",\"snapshot\":\"8eb4880f-2daf-22e4-be10-5c9974fe094a\",\"locked\":false,\"locked_changed_on\":null,\"status\":null,\"status_changed_on\":null,\"resultserver_ip\":\"192.168.50.61\",\"resultserver_port\":\"2042\",\"tags\":[\"windows_7\",\"x86\"]}],\"error\":false}`\nComment: try disable headers,just remove this ` headers={\"Authorization\": f\"Token {apikey}\"},` line more less 157, im not sure what is wrong as is first time that i see this\r\n\r\n```\r\ndef node_list_machines(url, apikey):\r\n    try:\r\n        r = requests.get(os.path.join(url, \"machines\", \"list/\"), headers={\"Authorization\": f\"Token {apikey}\"}, verify=False)\r\n        for machine in r.json()[\"data\"]:\r\n            yield Machine(name=machine[\"name\"], platform=machine[\"platform\"], tags=machine[\"tags\"])\r\n    except Exception as e:\r\n        abort(404, message=\"Invalid CAPE node (%s): %s\" % (url, e))\r\n\r\n```\nComment: same error\r\n```\r\n2022-04-19 10:27:56,146 INFO:_internal:Thread-1 - 127.0.0.1 - - [19/Apr/2022 10:27:56] \"POST /node HTTP/1.1\" 400 -\r\n2022-04-19 10:27:56,147 ERROR:_internal:Thread-1 - 127.0.0.1 - - [19/Apr/2022 10:27:56] code 400, message Bad request syntax ('--------------------------1311d2ca788aa0a6')\r\n2022-04-19 10:27:56,148 INFO:_internal:Thread-1 - 127.0.0.1 - - [19/Apr/2022 10:27:56] \"None /node HTTP/0.9\" HTTPStatus.BAD_REQUEST -\r\n```\r\n\r\nmessage after executing command\r\n`{\"message\": \"Did not attempt to load JSON data because the request Content-Type was not 'application/json'.\"}`\nComment: can you provide version of flask and flask-restful?\nComment: flask 2.1.1\r\n\r\nflask-restful 0.3.9\nComment: probably version is the problem\r\n```\r\nFlask==1.1.4\r\nFlask-RESTful==0.3.9\r\n```\r\n\r\ntry to install 1.1.4 as test\nComment: I have tried to install\r\n```\r\nFlask==1.1.4\r\nFlask-RESTful==0.3.9\r\n```\r\n\r\nand now can add worker node\r\n\r\nThank you for the response and solution\nComment: you are welcome, i will try to see what changed in newer version to add support of it. let me know if you find any other issue",
+  "Title: Type-hinting and cleanup for lib\\cuckoo\\common\\integrations\nBody: Cleanup is for files in `lib/cuckoo/common/integrations`\r\nChanges in any other files is to fit the changes made in above files\r\n\r\nLet me know if there's anything wrong (I'm not sure how to split this PR down even further, any tips to make it easier to merge the cleanup in will be gladly taken :D)\r\n\r\nI actually have more cleanup that I wish to do, but I think this PR is large enough as it is\nComment: checking, thank you\nComment: thank you a lot, this is really a lot of work to modernize all this code <3",
+  "Title: docs typo\nBody: None\nComment: thank you",
+  "Title: Exit more gracefully\nBody: MD5: 7980f2d623e4481206bb370d5f1499fd",
+  "Title: Submitted files aren't opened in the guest\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account acctivation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something, he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\nFor every file or URL submitted to the guest nothing happen. On the guest (Win10) were installed, chocolatey(dotnetfx dotnet4.7.2 vcredist-all wixtoolset msxml4.sp3 msxml6.sp1), python 3.7.9, pillow, and pywintrace.\r\n\r\nThe guest network is configurated as isolated (virbr1 - 192.168.121.0)\r\n\r\nAs you could see below there is no error evidence during the file upload, but I can't see any result based on the file sent to the guest. I've been working on it for one week without any positive results.\r\n\r\n**Many thanks for any help provided.**\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question           | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu Server 20.04 LTS\r\n| Guest               | Win10_1809Oct_v2_English_x64 (https://tb.rg-adguard.net/public.php)\r\n| Hypervisor       | KVM\r\n| QEMU              | 6.2.0\r\n| libvirt               | 8.2.0\r\n| nginx_version  | 1.19.6\r\n| prometheus_version | 2.20.1\r\n| grafana_version | 7.1.5\r\n| node_exporter_version | 1.0.1\r\n| guacamole_version | 1.2.0\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\r\n**Sample of cuckoo.log**\r\n\r\n> berlin@thanos:/opt/CAPEv2$ tail -f log/cuckoo.log | ccze -A\r\n> 2022-04-12 03:04:58,920 [lib.cuckoo.core.scheduler] INFO: Task #5: Starting analysis of URL 'google.com.br'\r\n> 2022-04-12 03:04:58,931 [lib.cuckoo.core.scheduler] INFO: Task #5: acquired machine win10_1 (label=win10_1, arch=x64, platform=windows)\r\n> 2022-04-12 03:05:04,078 [lib.cuckoo.core.scheduler] INFO: Enabled route 'internet'\r\n> 2022-04-12 03:05:04,095 [modules.auxiliary.sniffer] INFO: Started sniffer with PID 55305 (interface=virbr1, host=192.168.121.71, dump path=/opt/CAPEv2/storage/analyses/5/dump.pcap)\r\n> 2022-04-12 03:05:04,109 [lib.cuckoo.core.guest] INFO: Starting analysis #5 on guest (id=win10_1, ip=192.168.121.71)\r\n> 2022-04-12 03:05:04,308 [lib.cuckoo.core.guest] INFO: Guest is running CAPE Agent 0.11 (id=win10_1, ip=192.168.121.71)\r\n> 2022-04-12 03:05:07,006 [lib.cuckoo.core.guest] INFO: Uploading support files to guest (id=win10_1, ip=192.168.121.71)\r\n> 2022-04-12 03:09:27,367 [lib.cuckoo.core.guest] INFO: win10_1: end of analysis reached!\r\n> 2022-04-12 03:09:28,282 [lib.cuckoo.core.scheduler] INFO: Disabled route 'internet'\r\n> 2022-04-12 03:09:28,297 [lib.cuckoo.core.scheduler] INFO: Task #5: analysis procedure completed\r\n> 2022-04-12 03:14:31,077 [lib.cuckoo.core.scheduler] INFO: Using \"kvm\" machine manager with max_analysis_count=1, max_machines_count=2, and max_vmstartup_count=2\r\n> 2022-04-12 03:14:31,104 [lib.cuckoo.core.scheduler] INFO: Loaded 1 machine/s\r\n> 2022-04-12 03:14:31,111 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks\r\n\r\n**Sample of process.log**\r\n\r\n> data = current.run()\r\n>   File \"/opt/CAPEv2/utils/../modules/processing/sysmon.py\", line 49, in run\r\n>     lastlog = os.listdir(f\"{self.analysis_path}/sysmon/\")\r\n> FileNotFoundError: [Errno 2] No such file or directory: '/opt/CAPEv2/storage/analyses/8/sysmon/'\r\n> 2022-04-12 03:33:44,710 [lib.cuckoo.core.plugins] INFO: Reporting module malheur not found in configuration file\r\n> 2022-04-12 03:33:44,711 [modules.reporting.pcap2cert] ERROR: MISSED pcap2cert dependencies\r\n> 2022-04-12 03:33:44,775 [lib.cuckoo.core.plugins] WARNING: The reporting module \"ReportPDF\" returned the following error: Unable to open summary HTML report to convert to PDF: Ensure reporthtmlsummary is enabled in reporting.conf\r\n> 2022-04-12 03:33:44,778 [root] WARNING: PyMongo auto-reconnecting...127.0.0.1:27017: connection pool paused. Waiting 0.5 seconds\r\n> 2022-04-12 03:33:45,392 [root] INFO: Task #8: reports generation completed\r\n> 2022-04-12 03:38:47,562 [root] INFO: Processing analysis data\r\n\r\nCuckoo conf files:\r\n\r\nhttps://pastebin.com/2VH4N4Ad\r\n\nComment: As this looks like a problem on the Windows side, the most relevant log is the 'analysis' log which appears top right on the analysis page. If you can copy that log here we might get an idea what's going wrong.\nComment: > As this looks like a problem on the Windows side, the most relevant log is the 'analysis' log which appears top right on the analysis page. If you can copy that log here we might get an idea what's going wrong.\r\n\r\nMany thanks for your quick response.\r\n\r\nI've checked the log folder and no analysis.log file was noticed.\r\n\r\n![image](https://user-images.githubusercontent.com/46175778/163026795-2b4e5338-c15a-48d6-9e5b-618e2964fcac.png)\r\n\r\nIs there anything should I do to have this file in place?\r\n\r\nOnce again, thank you.\r\n\nComment: Are you able to see a web page for the job? If so the link is top right in the job's main page - click 'show log'.\r\n\r\nFailing that if you can check on the server, these are located in storage/analyses/X/analysis.log where X is the job number\nComment: Nothing showed in the \"Show Log\".\r\n\r\n![image](https://user-images.githubusercontent.com/46175778/163030634-b1c31285-2778-4999-a5b1-fdaf4f1d6180.png)\r\n\nComment: I made a video on how submitting works in the back-end. Please, speed up the video, it's just for clarification.\r\n\r\n[https://youtu.be/ELP4UXdbBa4](https://youtu.be/ELP4UXdbBa4)\nComment: I removed Python 3.7 on the Win10 guest and installed Python 3.6 as recommended in the documentation. Windows firewall and other features about security were disabled. However, the result is still the same. Also, I can't have screenshots in the web-gui.\r\n\r\nI can see the port 8000 opened on the guest and receive the result when performing the curl request.\nComment: > As this looks like a problem on the Windows side, the most relevant log is the 'analysis' log which appears top right on the analysis page. If you can copy that log here we might get an idea what's going wrong.\r\n\r\n\r\nShould I disable anything on Windows 10 (guest) to communicate correctly with Cuckoo, like firewall, windows defender, etc?\nComment: What I would do is load the agent with visible console in the vm (rename to agent.py) then you will see on the screen some output that will help in identifying the problem.\nComment: > What I would do is load the agent with visible console in the vm (rename to agent.py) then you will see on the screen some output that will help in identifying the problem.\r\n\r\nPerfect. Many thanks for your time trying to help me.\nComment: Hi @kevoreilly , finally I got the VM communicating with Cuckoo. The issue was the `kvm.conf` file which I did the mistake to put the same IP for `ip=` and `resultserver_ip=`. As shown below, **but already fixed.**\r\n\r\n![image](https://user-images.githubusercontent.com/46175778/163312206-aa8dcd52-b1a4-481e-98ac-4f62a8833f04.png)\r\n\r\nHowever, I'm still facing an issue to generate a PCAP file. I used the KVM script during the installation and I also checked if the user cape is part of pcap group and it is.\r\n\r\n> ==> ./process.log <==\r\n2022-04-14 01:06:16,821 [root] INFO: Processing analysis data for Task #20\r\n2022-04-14 01:06:16,873 [modules.processing.behavior] INFO: Analysis results folder does not contain any file or injection was disabled\r\n2022-04-14 01:06:16,876 [root] ERROR: Memory dump not found: to run volatility you have to enable memory_dump\r\n2022-04-14 01:06:16,876 [modules.processing.network] WARNING: The PCAP file does not exist at path \"/opt/CAPEv2/storage/analyses/20/dump.pcap\"\r\n2022-04-14 01:06:16,877 [lib.cuckoo.core.plugins] WARNING: The processing module \"Strings\" returned the following error: Error opening file [Errno 2] No such file or directory: '/opt/CAPEv2/storage/analyses/20/binary'\r\n2022-04-14 01:06:16,877 [modules.processing.suricata] WARNING: Unable to Run Suricata: Pcap file /opt/CAPEv2/storage/analyses/20/dump.pcap does not exist\r\n2022-04-14 01:06:17,246 [lib.cuckoo.core.plugins] WARNING: The processing module \"VirusTotal\" returned the following error: Unable to complete connection to VirusTotal. Status code: 404\r\n2022-04-14 01:06:17,315 [lib.cuckoo.core.plugins] INFO: Reporting module malheur not found in configuration file\r\n2022-04-14 01:06:17,443 [root] WARNING: PyMongo auto-reconnecting...127.0.0.1:27017: connection pool paused. Waiting 0.5 seconds\r\n2022-04-14 01:06:18,032 [root] INFO: Task #20: reports generation completed\r\n\r\n\r\nAnalysis Log\r\n\r\n> 2022-04-13 15:51:35,973 [root] INFO: Date set to: 20220414T01:03:20, timeout set to: 200\r\n2022-04-13 15:51:36,078 [root] DEBUG: Starting analyzer from: C:\\tmphbfeaofl\r\n2022-04-13 15:51:36,078 [root] DEBUG: Storing results at: C:\\ilkazgF\r\n2022-04-13 15:51:36,078 [root] DEBUG: Pipe server name: \\\\.\\PIPE\\RTTdEFO\r\n2022-04-13 15:51:36,078 [root] DEBUG: Python path: C:\\Users\\Maria\\AppData\\Local\\Programs\\Python\\Python37-32\r\n2022-04-13 15:51:36,078 [root] DEBUG: No analysis package specified, trying to detect it automagically\r\n2022-04-13 15:51:36,078 [root] INFO: Automatically selected analysis package \"ie\"\r\n2022-04-13 15:51:36,078 [root] DEBUG: Importing analysis package \"ie\"...\r\n2022-04-13 15:51:36,107 [root] DEBUG: Initializing analysis package \"ie\"...\r\n2022-04-13 15:51:36,107 [root] INFO: Analyzer: Package modules.packages.ie does not specify a DLL option\r\n2022-04-13 15:51:36,107 [root] INFO: Analyzer: Package modules.packages.ie does not specify a DLL_64 option\r\n2022-04-13 15:51:36,107 [root] INFO: Analyzer: Package modules.packages.ie does not specify a loader option\r\n2022-04-13 15:51:36,107 [root] INFO: Analyzer: Package modules.packages.ie does not specify a loader_64 option\r\n2022-04-13 15:51:36,583 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.browser\"...\r\n2022-04-13 15:51:36,583 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.curtain\"...\r\n2022-04-13 15:51:36,608 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.digisig\"...\r\n2022-04-13 15:51:36,639 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.disguise\"...\r\n2022-04-13 15:51:36,671 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.evtx\"...\r\n2022-04-13 15:51:36,701 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.human\"...\r\n2022-04-13 15:51:36,733 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.procmon\"...\r\n2022-04-13 15:51:36,748 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.screenshots\"...\r\n2022-04-13 15:51:36,748 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageChops'\r\n2022-04-13 15:51:36,770 [lib.api.screenshot] ERROR: No module named 'PIL'\r\n2022-04-13 15:51:36,785 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.sysmon\"...\r\n2022-04-13 15:51:36,785 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.tlsdump\"...\r\n2022-04-13 15:51:36,795 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.usage\"...\r\n2022-04-13 15:51:36,795 [root] DEBUG: Initializing auxiliary module \"Browser\"...\r\n2022-04-13 15:51:36,827 [root] DEBUG: Started auxiliary module Browser\r\n2022-04-13 15:51:36,827 [root] DEBUG: Initializing auxiliary module \"Curtain\"...\r\n2022-04-13 15:51:36,827 [root] DEBUG: Started auxiliary module Curtain\r\n2022-04-13 15:51:36,827 [root] DEBUG: Initializing auxiliary module \"DigiSig\"...\r\n2022-04-13 15:51:36,827 [modules.auxiliary.digisig] DEBUG: Skipping authenticode validation, analysis is not a file\r\n2022-04-13 15:51:36,827 [root] DEBUG: Started auxiliary module DigiSig\r\n2022-04-13 15:51:36,827 [root] DEBUG: Initializing auxiliary module \"Disguise\"...\r\n2022-04-13 15:51:36,827 [root] WARNING: Cannot execute auxiliary module Disguise: [WinError 5] Access is denied\r\n2022-04-13 15:51:36,827 [root] DEBUG: Initializing auxiliary module \"Evtx\"...\r\n2022-04-13 15:51:36,827 [root] DEBUG: Started auxiliary module Evtx\r\n2022-04-13 15:51:36,856 [root] DEBUG: Initializing auxiliary module \"Human\"...\r\n2022-04-13 15:51:36,857 [root] DEBUG: Started auxiliary module Human\r\n2022-04-13 15:51:36,857 [root] DEBUG: Initializing auxiliary module \"Procmon\"...\r\n2022-04-13 15:51:36,857 [root] DEBUG: Started auxiliary module Procmon\r\n2022-04-13 15:51:36,857 [root] DEBUG: Initializing auxiliary module \"Screenshots\"...\r\n2022-04-13 15:51:36,857 [modules.auxiliary.screenshots] WARNING: Python Image Library is not installed, screenshots are disabled\r\n2022-04-13 15:51:36,857 [root] DEBUG: Started auxiliary module Screenshots\r\n2022-04-13 15:51:36,857 [root] DEBUG: Initializing auxiliary module \"Sysmon\"...\r\n2022-04-13 15:51:36,857 [root] DEBUG: Started auxiliary module Sysmon\r\n2022-04-13 15:51:36,857 [root] DEBUG: Initializing auxiliary module \"TLSDumpMasterSecrets\"...\r\n2022-04-13 15:51:36,895 [modules.auxiliary.tlsdump] INFO: lsass.exe found, pid 636\r\n2022-04-13 15:51:37,076 [lib.api.process] INFO: Monitor config for process 636: C:\\tmphbfeaofl\\dll\\636.ini\r\n2022-04-13 15:51:37,202 [lib.api.process] INFO: Option 'tlsdump' with value '1' sent to monitor\r\n2022-04-13 15:51:37,202 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmphbfeaofl\\dll\\MHpDKUd.dll, loader C:\\tmphbfeaofl\\bin\\LCAksymu.exe\r\n2022-04-13 15:51:37,451 [root] DEBUG: Loader: Injecting process 636 with C:\\tmphbfeaofl\\dll\\MHpDKUd.dll.\r\n2022-04-13 15:51:37,451 [root] DEBUG: `Error 5 (0x5) - InjectDll: Failed to open process: Access is denied.`\r\n2022-04-13 15:51:37,498 [root] DEBUG: Successfully injected DLL C:\\tmphbfeaofl\\dll\\MHpDKUd.dll.\r\n2022-04-13 15:51:37,531 [root] DEBUG: Started auxiliary module TLSDumpMasterSecrets\r\n2022-04-13 15:51:37,531 [root] DEBUG: Initializing auxiliary module \"Usage\"...\r\n2022-04-13 15:51:37,565 [root] DEBUG: Started auxiliary module Usage\r\n2022-04-13 15:51:39,623 [root] INFO: Restarting WMI Service\r\n2022-04-13 15:51:40,060 [root] INFO: `You probably submitted the job with wrong package`\r\nTraceback (most recent call last):\r\n  File \"C:/tmphbfeaofl/analyzer.py\", line 510, in run\r\n    pids = self.package.start(self.target)\r\n  File \"C:\\tmphbfeaofl\\modules\\packages\\ie.py\", line 16, in start\r\n    iexplore = self.get_path(\"Internet Explorer\")\r\n  File \"C:\\tmphbfeaofl\\lib\\common\\abstracts.py\", line 80, in get_path\r\n    raise `CuckooPackageError(f\"Unable to find any {application} executable\")`\r\nlib.common.exceptions.CuckooPackageError: Unable to find any Internet Explorer executable\r\nThe above exception was the direct cause of the following exception:\r\nTraceback (most recent call last):\r\n  File \"C:/tmphbfeaofl/analyzer.py\", line 1378, in <module>\r\n    success = analyzer.run()\r\n  File \"C:/tmphbfeaofl/analyzer.py\", line 514, in run\r\n    raise CuckooError(f'The package \"{package_name}\" start function raised an error: {e}') from e\r\nlib.common.exceptions.CuckooError: The package \"modules.packages.ie\" start function raised an error: Unable to find any Internet Explorer executable\r\n2022-04-13 15:51:40,170 [root] `WARNING: Folder at path \"C:\\ilkazgF\\debugger\" does not exist, skipping`\r\n2022-04-13 15:51:40,193 [root] `WARNING: Folder at path \"C:\\ilkazgF\\tlsdump\" does not exist, skipping`\r\n2022-04-13 15:51:40,201 [root] INFO: Analysis completed\r\n\r\nTo the problem related to **IE11**, I have changed to Edge Legacy, I will test it. In case you know browsers versions that are compatible with Cape, please let me know.\r\n\r\n![image](https://user-images.githubusercontent.com/46175778/163319600-d32b3a73-c46c-40f8-8e31-2eda9374feed.png)\r\n\r\nThank you so much! =D\nComment: Glad to hear you solved that problem. I'm sorry to say that browser compatibility is not good in cape - with Chrome, Firefox and Edge all using Chromium with a very complex architecture split across dozens of processes, the model of injecting a monitor dll into each process was stretched to the extreme. But it's the locked-down nature of a lot of the browser processes that really does for the injected monitor's abilities - it was never designed to run within locked-down low privilege 'sandboxed' processes...\r\n\r\nSo the only good compatibility in cape is with older style browsers like Internet Explorer and Firefox versions from a few years ago!\r\n\r\nBut cape is not really intended for this use case - when it was conceived of in Cuckoo the idea was to catch browser exploits. These are rarer these days and for reasons mentioned above are not able to be easily monitored. If catching exploits is not your aim then I am afraid to say cape probably isn't designed to do what you want...\r\n\r\nWhat it's really all about is detonating malware...\nComment: Thank you so much for being supportive of my question @kevoreilly .\r\n\r\nDo you have any idea what might be causing the that I mentioned?\r\n\r\n> However, I'm still facing an issue generating a PCAP file. I used the KVM script during the installation and I also checked if the user cape is part of the pcap group and it is.\r\n\r\n==> ./process.log <==\r\n**2022-04-14 01:06:16,876 [modules.processing.network] WARNING: The PCAP file does not exist at path \"/opt/CAPEv2/storage/analyses/20/dump.pcap\"**\r\n2022-04-14 01:06:16,877 [lib.cuckoo.core.plugins] WARNING: The processing module \"Strings\" returned the following error: Error opening file [Errno 2] No such file or directory: '/opt/CAPEv2/storage/analyses/20/binary'\r\n2022-04-14 01:06:16,877 [modules.processing.suricata] WARNING: Unable to Run Suricata: Pcap file /opt/CAPEv2/storage/analyses/20/dump.pcap does not exist\r\n\r\nThere is no dump.pcap file in the folder.\r\n![image](https://user-images.githubusercontent.com/46175778/163325870-992a45de-d21d-489f-9385-dcb6dcad6c65.png)\r\n\nComment: The pcap is captured by the 'sniffer' auxiliary module which is server-side (logs to cuckoo.kog). It might be worth debugging this module or trying to test tcpdump manually (called by sniffer).\nComment: Since the original issue is solved I will close this.\nComment: I noticed that the issue with **pcap** file was because the command `aa-disable /usr/sbin/tcpdump` failed during the installation process.\r\n\r\nI found a solution here > [Cuckoo Network Analysis Failure](https://0x90e.github.io/cuckoo-network-analysis-failure/)\r\n\r\n### What I did?\r\n\r\n1. Performed the command - sudo aa-complain /usr/sbin/tcpdump\r\n2. Performed the command - sudo aa-disable /usr/sbin/tcpdump\r\n3. It's recommended to **restart** the host afterwards.\r\n\r\nIf the solution above doesn't work we can test only with the first command. In case of persistent issue we can try the commands below.\r\n\r\n1. sudo ln -s /etc/apparmor.d/usr.sbin.tcpdump /etc/apparmor.d/disable/\r\n2. sudo /etc/init.d/apparmor restart\r\n\r\n**Checking the result**\r\n\r\nPerform the command `sudo aa-status` and you'll see a list like below.\r\n\r\n![image](https://user-images.githubusercontent.com/46175778/163667658-a9d03894-aefc-4c75-925e-26f8b5e7c3d2.png)\r\n\r\n### Possible script update\r\n\r\nI also update my script cape2.sh as mentioned below to avoid future issues like that. I hope this can help you.\r\n\r\n![image](https://user-images.githubusercontent.com/46175778/163667736-0ff2c808-978e-4722-9477-1205f861ad78.png)\r\n\r\n\nComment: Thank you for this feedback - hopefully this will help others in future. I hope your sandbox is now working well.\nComment: thanks for feedback, to make everyone's life easier, try to push your updates back to source, as that would help to others get it and for us to have one central place. i have added `aa-complain`",
+  "Title: Update config extraction\nBody: MD5: 7980f2d623e4481206bb370d5f1499fd\nComment: Thank you ",
+  "Title: select machine via tags on webpage (and API) \nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I'm have read all configs with all optional parts\r\n\r\n# Expected Behavior\r\nIf I submit a \"sample\" via API or website, a suitable vm should be selected based on the tags. As soon as no suitable machine is available Cape should wait as long a machine is done and ready.\r\n\r\nThe web page does show the available tags, i choosed win10x64 in this case:\r\n![Screenshot 2022-04-11 at 12 02 27](https://user-images.githubusercontent.com/83294366/162715576-148de279-9568-49d7-8be1-62b2d6e7e925.png)\r\n\r\n# Current Behavior\r\nThe first to be used are the two correct machines. However, the third submission uses a wrong machine (win7x86). The task api endpoint shows following task information:\r\n```json\r\n{\r\n            \"id\": 44,\r\n            \"target\": \"/tmp/cuckoo-sflock/tmpj6hgmphs/c665d34bb18a555dcf1b.exe\",\r\n            \"category\": \"file\",\r\n            \"cape\": \"\",\r\n            \"timeout\": 200,\r\n            \"priority\": 2,\r\n            \"custom\": \"\",\r\n            \"machine\": \"win7x86_2\",\r\n            \"package\": \"exe\",\r\n            \"route\": \"tor\",\r\n            \"tags_tasks\": \"\",\r\n            \"options\": \"\",\r\n            \"platform\": \"windows\",\r\n            \"memory\": false,\r\n            \"enforce_timeout\": false,\r\n            \"clock\": \"2022-04-11 09:57:05\",\r\n            \"added_on\": \"2022-04-11 09:57:06\",\r\n            \"started_on\": \"2022-04-11 09:57:06\",\r\n            \"completed_on\": null,\r\n            \"status\": \"running\",\r\n            \"dropped_files\": null,\r\n            \"running_processes\": null,\r\n            \"api_calls\": null,\r\n            \"domains\": null,\r\n            \"signatures_total\": null,\r\n            \"signatures_alert\": null,\r\n            \"files_written\": null,\r\n            \"registry_keys_modified\": null,\r\n            \"crash_issues\": null,\r\n            \"anti_issues\": null,\r\n            \"analysis_started_on\": null,\r\n            \"analysis_finished_on\": null,\r\n            \"processing_started_on\": null,\r\n            \"processing_finished_on\": null,\r\n            \"signatures_started_on\": null,\r\n            \"signatures_finished_on\": null,\r\n            \"reporting_started_on\": null,\r\n            \"reporting_finished_on\": null,\r\n            \"timedout\": false,\r\n            \"sample_id\": 14,\r\n            \"machine_id\": 3994,\r\n            \"shrike_url\": null,\r\n            \"shrike_refer\": null,\r\n            \"shrike_msg\": null,\r\n            \"shrike_sid\": null,\r\n            \"parent_id\": null,\r\n            \"tlp\": null,\r\n            \"user_id\": 0,\r\n            \"username\": \"false\",\r\n            \"tags\": [\r\n                \"win10x64\",\r\n                \"x86\"\r\n            ],\r\n            \"guest\": {\r\n                \"id\": 43,\r\n                \"status\": \"running\",\r\n                \"name\": \"win7x86_2\",\r\n                \"label\": \"win7x86_2\",\r\n                \"manager\": \"KVM\",\r\n                \"started_on\": \"2022-04-11 09:57:06\",\r\n                \"shutdown_on\": null,\r\n                \"task_id\": 44\r\n            },\r\n            \"errors\": [],\r\n            \"sample\": {\r\n                \"id\": 14,\r\n                \"file_size\": 271333,\r\n                \"file_type\": \"PE32 executable (GUI) Intel 80386, for MS Windows\",\r\n                \"md5\": \"54bc2a6e917ed4993560447ddc2413e7\",\r\n                \"crc32\": \"CE6A077D\",\r\n                \"sha1\": \"65bfe66d677ea4ff22dfb83028763790a1ef7ebd\",\r\n                \"sha256\": \"c665d34bb18a555dcf1b248dab633db2ff88d54e93e3f8de8f785b60ea07ab27\",\r\n                \"sha512\": \"8e19fc5d7844c6381971ec1f53e2ad2e15b6079fc8151b1ec49a8f6c9f0fd0c9937bae647cd3d323a4cc2b2f42c83b7c0b2e80a6850e9cc77d37e866b0151c07\",\r\n                \"ssdeep\": \"6144:HNeZmEjcUE0DdB49QljX0CHTc9TWMKrFnFXbay8M6FcE:HNlE15qQlZzcondGy8dp\",\r\n                \"parent\": 13,\r\n                \"source_url\": null\r\n            }\r\n        }\r\n```\r\n\r\n\r\n## Context\r\n\r\nMy goal is to have multiple VM types (Win7x86|Win7x64|Win10x86|Win10x64) with multiple machines.\r\nI want to send samples to these via the API and define which VM type should be used. \r\nA simple Python script might look like these:\r\n```python\r\nimport requests\r\n\r\nREST_URL = \"http://cape-sandbox-dev.local:8000/apiv2/tasks/create/file/\"\r\nSAMPLE_FILE = \"../downloads/c665d34bb18a555dcf1b248dab633db2ff88d54e93e3f8de8f785b60ea07ab27.zip\"\r\n\r\nwith open(SAMPLE_FILE, \"rb\") as sample:\r\n    multipart_file = {\r\n        'file': sample,\r\n        'tags': ('', 'win10x64')\r\n    }\r\n    response = requests.post(REST_URL, files=multipart_file)\r\n\r\nresponse_json = response.json()\r\nprint(f\"task_id: {response_json['data']['task_ids']}\")\r\n```\r\nHowever, I somehow do not manage to pass tags via api.\r\n\r\n\r\nVMware Esxi on physical machine => Ubuntu 20.04 LTS => CAPEv2.\r\nI have installed Cape2 on 01 February 2022. Installation was made via `./kvm-qemu.sh` and `./cape2.sh` scripts.\r\n\r\nAPI endpoint /apiv2/machines/list/:\r\n```json\r\n{\r\n    \"data\": [\r\n        {\r\n            \"id\": 3992,\r\n            \"name\": \"win10x64_2\",\r\n            \"label\": \"win10x64_2\",\r\n            \"arch\": \"x64\",\r\n            \"ip\": \"192.168.1.199\",\r\n            \"platform\": \"windows\",\r\n            \"interface\": \"virbr0\",\r\n            \"snapshot\": null,\r\n            \"locked\": false,\r\n            \"locked_changed_on\": null,\r\n            \"status\": \"poweroff\",\r\n            \"status_changed_on\": \"2022-04-11 09:25:18\",\r\n            \"resultserver_ip\": \"192.168.1.1\",\r\n            \"resultserver_port\": \"2042\",\r\n            \"tags\": [\r\n                \"win10x64\"\r\n            ]\r\n        },\r\n        {\r\n            \"id\": 3991,\r\n            \"name\": \"win10x64_1\",\r\n            \"label\": \"win10x64\",\r\n            \"arch\": \"x64\",\r\n            \"ip\": \"192.168.1.151\",\r\n            \"platform\": \"windows\",\r\n            \"interface\": \"virbr0\",\r\n            \"snapshot\": \"20220307_win10x64_snapshot\",\r\n            \"locked\": false,\r\n            \"locked_changed_on\": null,\r\n            \"status\": \"poweroff\",\r\n            \"status_changed_on\": \"2022-04-11 09:25:18\",\r\n            \"resultserver_ip\": \"192.168.1.1\",\r\n            \"resultserver_port\": \"2042\",\r\n            \"tags\": [\r\n                \"win10x64\"\r\n            ]\r\n        },\r\n        {\r\n            \"id\": 3994,\r\n            \"name\": \"win7x86_2\",\r\n            \"label\": \"win7x86_2\",\r\n            \"arch\": \"x86\",\r\n            \"ip\": \"192.168.1.186\",\r\n            \"platform\": \"windows\",\r\n            \"interface\": \"virbr0\",\r\n            \"snapshot\": null,\r\n            \"locked\": false,\r\n            \"locked_changed_on\": null,\r\n            \"status\": \"poweroff\",\r\n            \"status_changed_on\": \"2022-04-11 09:25:18\",\r\n            \"resultserver_ip\": \"192.168.1.1\",\r\n            \"resultserver_port\": \"2042\",\r\n            \"tags\": [\r\n                \"win7x86\"\r\n            ]\r\n        },\r\n        {\r\n            \"id\": 3993,\r\n            \"name\": \"win7x86_1\",\r\n            \"label\": \"win7x86_1\",\r\n            \"arch\": \"x86\",\r\n            \"ip\": \"192.168.1.242\",\r\n            \"platform\": \"windows\",\r\n            \"interface\": \"virbr0\",\r\n            \"snapshot\": null,\r\n            \"locked\": false,\r\n            \"locked_changed_on\": null,\r\n            \"status\": \"poweroff\",\r\n            \"status_changed_on\": \"2022-04-11 09:25:18\",\r\n            \"resultserver_ip\": \"192.168.1.1\",\r\n            \"resultserver_port\": \"2042\",\r\n            \"tags\": [\r\n                \"win7x86\"\r\n            ]\r\n        }\r\n    ],\r\n    \"error\": false\r\n}\r\n\r\n```\r\n\r\nThanks!\r\n\nComment: Hello, first of all why do you send 2 tags and as empty? it won't work.\r\n`'tags': ('', 'win10x64')` <- why not just `'tags': 'win10x64'`?\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/lib/cuckoo/common/web_utils.py#L1063\nComment: Hello, that was my first try, but that simply did not work. It took me quite a bit of time to find out what was wrong.\r\n\r\nWith the parameter 'machine' the response code was even 500, see below example. It searched for python+requests+multipart_form and got some results like:\r\n- https://www.semicolonworld.com/question/43327/how-to-send-a-ldquo-multipart-form-data-rdquo-with-requests-in-python\r\n\r\nmy code:\r\n```python\r\nmultipart_file = {\r\n        'file': sample,\r\n        'machine': ('', 'win7x86_2')\r\n    }\r\n ```\r\n does work and created this task:\r\n```json\r\n{\r\n            \"id\": 79,\r\n            \"target\": \"/tmp/cuckoo-sflock/tmpfitoeswv/c665d34bb18a555dcf1b.exe\",\r\n            \"category\": \"file\",\r\n            \"cape\": \"\",\r\n            \"timeout\": 0,\r\n            \"priority\": 1,\r\n            \"custom\": \"\",\r\n            \"machine\": \"win7x86_2\",\r\n            \"package\": \"exe\",\r\n            \"route\": \"false\",\r\n            \"tags_tasks\": null,\r\n            \"options\": \"\",\r\n            \"platform\": \"windows\",\r\n\r\n            [...]\r\n}\r\n```\r\nbut with the following code\r\n```python\r\nmultipart_file = {\r\n        'file': sample,\r\n        'machine': 'win7x86_2'\r\n    }\r\n ```\r\n i got a HTTP 500 response:\r\n[cape_response.txt](https://github.com/kevoreilly/CAPEv2/files/8467322/cape_response.txt)\r\n feel free to rename it to *.html\nComment: yes that is normal that you getting error you are totally wrong here\r\n\r\nmultipart_file goes under `files=multipart_file`\r\n\r\n```\r\nwith open(SAMPLE_FILE, \"rb\") as sample:\r\n    multipart_file = {'file': sample}\r\n    response = requests.post(REST_URL, files=multipart_file, data={\"tags\": \"win10x64\"})\r\n```\r\n\r\nany options goes inside of the  data\nComment: well, perhaps this was not the most elegant way, but the result remains the same. However that was not my issue.\r\nRegardless of which code (or even the browser) i use, the problem remains.\r\n\r\nWhy this task is possible, please compare `tags` and choosen machine, is this because of the `x86` tag? Where does this tag come from?\r\n```json\r\n{\r\n            \"id\": 83,\r\n            \"target\": \"/tmp/cuckoo-sflock/tmppnwz28ce/c665d34bb18a555dcf1b.exe\",\r\n            \"category\": \"file\",\r\n            \"cape\": \"\",\r\n            \"timeout\": 0,\r\n            \"priority\": 1,\r\n            \"custom\": \"\",\r\n            \"machine\": \"win7x86_2\",\r\n            \"package\": \"exe\",\r\n            \"route\": \"false\",\r\n            \"tags_tasks\": null,\r\n            \"options\": \"\",\r\n            \"platform\": \"windows\",\r\n            \"memory\": false,\r\n            \"enforce_timeout\": false,\r\n            \"clock\": \"2022-04-11 20:07:14\",\r\n            \"added_on\": \"2022-04-11 20:07:14\",\r\n            \"started_on\": \"2022-04-11 20:07:15\",\r\n            \"completed_on\": null,\r\n            \"status\": \"running\",\r\n            \"dropped_files\": null,\r\n            \"running_processes\": null,\r\n            \"api_calls\": null,\r\n            \"domains\": null,\r\n            \"signatures_total\": null,\r\n            \"signatures_alert\": null,\r\n            \"files_written\": null,\r\n            \"registry_keys_modified\": null,\r\n            \"crash_issues\": null,\r\n            \"anti_issues\": null,\r\n            \"analysis_started_on\": null,\r\n            \"analysis_finished_on\": null,\r\n            \"processing_started_on\": null,\r\n            \"processing_finished_on\": null,\r\n            \"signatures_started_on\": null,\r\n            \"signatures_finished_on\": null,\r\n            \"reporting_started_on\": null,\r\n            \"reporting_finished_on\": null,\r\n            \"timedout\": false,\r\n            \"sample_id\": 14,\r\n            \"machine_id\": 4010,\r\n            \"shrike_url\": null,\r\n            \"shrike_refer\": null,\r\n            \"shrike_msg\": null,\r\n            \"shrike_sid\": null,\r\n            \"parent_id\": null,\r\n            \"tlp\": null,\r\n            \"user_id\": 0,\r\n            \"username\": \"false\",\r\n            \"tags\": [\r\n                \"x86\",\r\n                \"win10x64\"\r\n            ],\r\n            \"guest\": {\r\n                \"id\": 82,\r\n                \"status\": \"running\",\r\n                \"name\": \"win7x86_2\",\r\n                \"label\": \"win7x86_2\",\r\n                \"manager\": \"KVM\",\r\n                \"started_on\": \"2022-04-11 20:07:15\",\r\n                \"shutdown_on\": null,\r\n                \"task_id\": 83\r\n            },\r\n            \"errors\": [],\r\n            \"sample\": {\r\n                \"id\": 14,\r\n                \"file_size\": 271333,\r\n                \"file_type\": \"PE32 executable (GUI) Intel 80386, for MS Windows\",\r\n                \"md5\": \"54bc2a6e917ed4993560447ddc2413e7\",\r\n                \"crc32\": \"CE6A077D\",\r\n                \"sha1\": \"65bfe66d677ea4ff22dfb83028763790a1ef7ebd\",\r\n                \"sha256\": \"c665d34bb18a555dcf1b248dab633db2ff88d54e93e3f8de8f785b60ea07ab27\",\r\n                \"sha512\": \"8e19fc5d7844c6381971ec1f53e2ad2e15b6079fc8151b1ec49a8f6c9f0fd0c9937bae647cd3d323a4cc2b2f42c83b7c0b2e80a6850e9cc77d37e866b0151c07\",\r\n                \"ssdeep\": \"6144:HNeZmEjcUE0DdB49QljX0CHTc9TWMKrFnFXbay8M6FcE:HNlE15qQlZzcondGy8dp\",\r\n                \"parent\": 13,\r\n                \"source_url\": null\r\n            }\r\n        }\r\n``` \nComment: x86 is there https://github.com/kevoreilly/CAPEv2/blob/master/lib/cuckoo/core/database.py#L1303, i will check your issue once i will have some spare time, as right now im tired and not see the reason of the problem\nComment: @bolle123 I saw that you are using **Win10**. Do you mind sharing your W10 Guest configuration?\r\nI am facing issues getting screenshots during the analysis.\r\n\r\nOn my W10 guest, I have python 3.6 and the last version of the **pillow**.\r\n\r\nThank you in advance.\nComment: @derfel1989 \r\nI don't know exactly what you want...but I just noticed that analyses with Win10 don't have screenshots for me either.\r\n\r\n\u2009~~I'll look at the logs next week~~ My _grep_ from logs (report json from web frontend):\r\n\r\n```\r\n2022-03-07 11:47:46,850 [root] DEBUG: Importing auxiliary module \\\"modules.auxiliary.screenshots\\\"...\r\n2022-03-07 11:47:46,869 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageChops'\r\n2022-03-07 11:47:49,365 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageGrab'\r\n2022-03-07 11:47:49,578 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageDraw'\r\n2022-03-07 11:47:52,617 [root] DEBUG: Initializing auxiliary module \\\"Screenshots\\\"...\r\n2022-03-07 11:47:52,617 [root] DEBUG: Started auxiliary module Screenshots\r\n2022-03-07 11:47:53,694 [modules.auxiliary.screenshots] ERROR: Cannot take screenshot: screen grab failed\r\n```\r\n\r\n\u2009\r\nThe last line occurs several times, probably whenever a screenshot is to be taken.\r\n\r\nPython 3.10 is running and `pillow`is installed via pip3.\nComment: @bolle123 \r\n\r\nThank you for reply my question.\r\n\r\nI don't have any errors in the logs. But I don't have any screenshots too.\r\n\r\nSample log:\r\n\r\n> 2022-05-02 21:39:40,592 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.screenshots\"...\r\n> 2022-05-02 21:39:40,626 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageChops'\r\n> 2022-05-02 21:39:40,873 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageGrab'\r\n> 2022-05-02 21:39:40,899 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageDraw'\r\n\r\nWhat I see here is that I have a couple of issues linked to **permission** as shown below:\r\n\r\n> 2022-05-02 21:39:43,162 [root] DEBUG: Error 5 (0x5) - InjectDll: Failed to open process: Access is denied.\r\n> \r\n> 2022-05-02 21:39:53,233 [root] DEBUG: Error 5 (0x5) - AmsiDumper: Is CAPE agent running elevated? Initialisation failed: Access is denied.\r\n\r\nHave you seen behaviours like that with win10?\nComment: The errors you quote there are from the monitor and so not related to screenshots. The monitor problem is literally what it says: AMSI dumping requires that the malware process be elevated - this is also recommended anyway as otherwise it's running with reduced privileges. To solve this is as simple as making sure the agent is launched elevated or 'run as administrator'.\nComment: Can confirm: screenshots on windows 10 work fine if set up correctly \nComment: > Can confirm: screenshots on windows 10 work fine if set up correctly\r\n\r\n\r\ncan you explain in more detail what you mean by that? What Python version do you use? Did you \"just\" perform the steps from \"choco.bat\" in an administrator shell? \r\n\nComment: > > Can confirm: screenshots on windows 10 work fine if set up correctly\r\n> \r\n> can you explain in more detail what you mean by that? What Python version do you use? Did you \"just\" perform the steps from \"choco.bat\" in an administrator shell?\r\n\r\nI'm using Python 3.6 32-bit version, and make sure agent.py is running as administrator (I set up a scheduling task to run on start-up as admin and rebooted the vm)\r\n\r\nAs for installation steps, I didn't use choco.bat, I installed everything manually.\nComment: > The errors you quote there are from the monitor and so not related to screenshots. The monitor problem is literally what it says: AMSI dumping requires that the malware process be elevated - this is also recommended anyway as otherwise it's running with reduced privileges. To solve this is as simple as making sure the agent is launched elevated or 'run as administrator'.\r\n\r\nI created a user with admin privileges. I also tried calling the agent.py over cmd running as administrator. But, nothing brought the screenshots. The third attempt was to create a service with [NSSM](https://nssm.cc/download), but this did even not connect with the cape server, so I left this. \r\n\r\nIn your point of view, what is the best approach @kevoreilly .\r\n\r\n@TheMythologist Thank you for your reply. I will try it and get back with the results. Do you have any additional recommendations?\r\n\r\nThanks all.\nComment: I just realize that I can see the screenshots when I export a report as an **HTML** file.\r\n\r\nSo, the issue might not be with the pillow module or the guest (w10). It's probably something on the cape side which is not allowing to load of the thumbnails on the analysis page.\r\n\r\n@bolle123 could you test it?\nComment: i have just created win10 20h2 with latest pillow, works just fine\r\n<img width=\"1201\" alt=\"Captura de Pantalla 2022-05-22 a las 8 44 28\" src=\"https://user-images.githubusercontent.com/1856495/169682523-7eb180a4-aaec-4d5c-a90c-ca05daad1901.png\">\r\n \nComment: solved. details here. thanks to @cccs-kevin  https://github.com/kevoreilly/CAPEv2/commit/0bfc39aa766c8ac5a7d9c927e348a10548431879",
+  "Title: Add missing ics_attck_json arg in mitre Attck funcs\nBody: Missing `ics_attck_json` argument causes an error in air-gapped environments\r\nLinked to https://github.com/kevoreilly/community/pull/252",
+  "Title: Cleanup of analyzer folder pt2\nBody: None\nComment: thank you",
+  "Title: enable initial APIv2 tests in GitHub CI\nBody: Adds pytest-django and pytest-pythonpath test dependencies, and configures both with a simple pytest.ini. This should be enough to get the start of APIv2 test coverage via GitHub CI.",
+  "Title: swap django.conf.urls.url for re_path\nBody: The url function was deprecated in Django 3.1 and left in as in alias to `re_path`.\nComment: oh nice, thank you\nComment: there is django 4 as far as i know, one day would be nice to check what is new, but as far as i remember django 3.2 is LTS",
+  "Title: Update database.py\nBody: None",
+  "Title: Emotet update\nBody: MD5: 7980f2d623e4481206bb370d5f1499fd\nComment: Nice work - thank you!",
+  "Title: Improve RarSFX file typing\nBody: Show extracted file names in dropped tab",
+  "Title: Pytest\nBody: None",
+  "Title: Everything seems to work, but samples do not get executed on guest\nBody: \r\n\r\nEverything seems to work. I can access agent.py from hypervisor with curl for example and it replies nicely. But whatever I try to execute, basically nothing happens. Logs below. The submitted task goes trough, but no execution (and no analysis).\r\n\r\nThis is a fresh installation of Cape2 in Ubuntu 20.04, KVM as hypervisor. Guest is Windows7. All 64bit OS:ses.\r\n\r\nLogs of execution attempt below:\r\n\r\n CAPE: Config and Payload Extraction\r\n github.com/kevoreilly/CAPEv2\r\n\r\nXLMMacroDeobfuscator: pywin32 is not installed (only is required if you want to use MS Excel)\r\nMISSED pcap2cert dependencies\r\n2022-03-26 20:53:59,991 [lib.cuckoo.core.scheduler] INFO: Using \"kvm\" machine manager with max_analysis_count=0, max_machines_count=10, and max_vmstartup_count=5\r\n2022-03-26 20:54:00,053 [lib.cuckoo.core.scheduler] INFO: Loaded 1 machine/s\r\n2022-03-26 20:54:00,066 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks\r\n2022-03-26 20:54:26,586 [lib.cuckoo.core.scheduler] INFO: Task #6: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_n952okps/npp.8.1.9.2.Installer.x64.exe'\r\n2022-03-26 20:54:26,746 [lib.cuckoo.core.scheduler] INFO: Task #6: acquired machine Win7_64bit (label=Win7_64bit, arch=x64, platform=windows)\r\n2022-03-26 20:54:30,847 [lib.cuckoo.core.scheduler] INFO: Enabled route 'internet'\r\n2022-03-26 20:54:30,883 [modules.auxiliary.sniffer] INFO: Started sniffer with PID 6325 (interface=virbr0, host=192.168.122.50, dump path=/opt/CAPEv2/storage/analyses/6/dump.pcap)\r\n2022-03-26 20:54:30,912 [lib.cuckoo.core.guest] INFO: Starting analysis #6 on guest (id=Win7_64bit, ip=192.168.122.50)\r\n2022-03-26 20:54:31,955 [lib.cuckoo.core.guest] INFO: Guest is running CAPE Agent 0.11 (id=Win7_64bit, ip=192.168.122.50)\r\n2022-03-26 20:54:34,403 [lib.cuckoo.core.guest] INFO: Uploading support files to guest (id=Win7_64bit, ip=192.168.122.50)\r\n2022-03-26 20:58:54,826 [lib.cuckoo.core.guest] INFO: Win7_64bit: end of analysis reached!\r\n2022-03-26 20:58:55,667 [lib.cuckoo.core.scheduler] INFO: Disabled route 'internet'\r\n2022-03-26 20:58:55,698 [lib.cuckoo.core.scheduler] INFO: Task #6: analysis procedure completed\r\n****\r\n\r\n\r\n\r\n\r\n\nComment: duplicated https://github.com/kevoreilly/CAPEv2/issues/547\nComment: Notepad installer is not a good test sample!\nComment: Hi, I agree that this is likely duplicated https://github.com/kevoreilly/CAPEv2/issues/547\r\n\r\nI did use multiple small single binaries for testing (like putty.exe, keepass.exe and so on, just copy-pasted the one with npp.8.1.9.2.Installer.x64.exe in the log), same result in all of those.\nComment: Alas the logs are server-side. The analysis log from the Windows side would be much more useful. Also a malware sample would be better to test with. ",
+  "Title: Update Emotet\nBody: None\nComment: Can you share a sample to test on?\nComment: b153f8787e2d684cbb40c213b1ebf5f1\n\nOn Thu, Mar 24, 2022 at 3:10 PM kevoreilly ***@***.***> wrote:\n\n> Can you share a sample to test on?\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/pull/808#issuecomment-1077963161>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AB3X3YFDTHARONVIDHCJNX3VBS433ANCNFSM5RR56VNA>\n> .\n> You are receiving this because you authored the thread.Message ID:\n> ***@***.***>\n>\n\n\n-- \nLorenzo\n\n\u201cHappiness is not the absence of problems, but the ability to deal with\nthem.\" - Albert Einstein\n\nComment: That is an Excel maldoc for which the payload is no longer active - would you be able to share the binary Emotet payload sample you used to create this PR please?\nComment:  0cfa35b3e1c66125996b06b8f14b63029713ca0d9c18002f6c4d7a16868f10bb \nComment: That maldoc dropped the following on my CAPE, which provided the config:\n\nMD5: 8361548cbd6a9fc7b9d03f549fbfbd0c\n\nOn Mon, Mar 28, 2022 at 12:04 AM Rony ***@***.***> wrote:\n\n> 0cfa35b3e1c66125996b06b8f14b63029713ca0d9c18002f6c4d7a16868f10bb\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/pull/808#issuecomment-1080156626>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AB3X3YD4JYV3XGBSE5HBVH3VCEVUXANCNFSM5RR56VNA>\n> .\n> You are receiving this because you authored the thread.Message ID:\n> ***@***.***>\n>\n\n\n-- \nLorenzo\n\n\u201cHappiness is not the absence of problems, but the ability to deal with\nthem.\" - Albert Einstein\n",
+  "Title: add reprocessing API to APIv2, and APIv2 test capabilities\nBody: This adds the API `tasks/reprocess/<task_id>/`, along with the start of test coverage for anything in APIv2.\nComment: A big thank you Nick. I'll wait for doomed to review.\nComment: Hey, i will check on monday once i will be back\n\nEl mi\u00e9., 23 mar. 2022 18:37, kevoreilly ***@***.***> escribi\u00f3:\n\n> A big thank you Nick. I'll wait for doomed to review.\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/pull/807#issuecomment-1076688926>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH36FE7VDN3ONI3V6KKDVBNQIHANCNFSM5ROU5NJQ>\n> .\n> You are receiving this because you are subscribed to this thread.Message\n> ID: ***@***.***>\n>\n\nComment: looks good, i didn't test it",
+  "Title: Whitelist 8.8.8.8 and 1.1.1.1 as hosts.\nBody: Also allow comments in the domain and IP whitelist files to be on the\r\nsame line as the entry (e.g. `1.1.1.1  # such and such`) and don't read\r\nthe whole file in to memory at once.\nComment: thanks",
+  "Title: reschedule using sample storage; fixes #804\nBody: use sample storage when rescheduling tasks, not temporary files\nComment: thank you\nComment: Life-saver - wanted to implement this for a long time but never got to it \ud83d\udc4d\ud83c\udffb \nComment: you are more than welcome to open issues as feature requests",
+  "Title: can't reschedule tasks once temporary files are gone\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nRescheduling a task succeeds after its temporary file has been removed.\r\n\r\n# Current Behavior\r\n\r\nRescheduling a task currently uses [task.target](https://github.com/kevoreilly/CAPEv2/blob/fb4283b540b3293595670b49e1576811960c8f59/lib/cuckoo/core/database.py#L1838), which is a temporary file that could be gone removed at any point. When that happens the task can no longer be rescheduled.\r\n\r\n# Failure Information (for bugs)\r\n\r\n## Steps to Reproduce\r\n\r\n1. submit a task\r\n1. delete its temporary file\r\n1. reschedule it\r\n\r\n## Request Failures\r\n\r\n```json\r\n{\"error\": true, \"error_value\": \"An error occured while trying to reschedule Task ID 1234\"}\r\n```\nComment: will have a PR for this",
+  "Title: [Question] How to properly use search?\nBody: Hello,\r\nI've added a new item on the analysis result page (a processing module) that reads a hardcoded file path and returns the output near the \"read files\", \"modified files\" etc tabs (I've created a new tab there). In order to prevent potential crashes, I've also created a new parameter \"fileExists\". So.. in the HTML template, it's something like this {{analysis.myModule.fileExists}}. Now, after I gave you some context, now I can ask the following question:\r\n\r\nThere is any way to use the search bar, in order to return only the analyses that meet the condition analysis.myModule.fileExists== True? \nComment: Hello\r\n\r\nyou need to extend the search map and if needed function that uses it. you need to be familiar with mongo how it stores data and acceses, you have a lot of examples in that dictionary https://github.com/kevoreilly/CAPEv2/blob/master/lib/cuckoo/common/web_utils.py#L851 \r\n\r\ndoes that explains your questions?\nComment: Yes, thank you so much\nComment: you are welcome\nComment: Sounds interesting... if you don't mind me asking what is the purpose of the new processing module/content of this file?",
+  "Title: IcedIDLoader update\nBody: None\nComment: Thanks",
+  "Title: upload errors\nBody: when uploading  respond 500   like this \r\n![image](https://user-images.githubusercontent.com/37525283/158114557-dacab93f-95c9-414b-835c-bf745d4b7157.png)\r\nand cuckoo error\r\n![image](https://user-images.githubusercontent.com/37525283/158114606-ae1d293c-cb45-45b9-8ab8-010712238da0.png)\r\n\nComment: that is the problem with your mongo, not with cape\nComment: Thanks, but there are new problem coming,like this\r\n![image](https://user-images.githubusercontent.com/37525283/158500562-a2ac747b-dc6b-4777-a1cd-95bd6db8eed8.png)\r\n![image](https://user-images.githubusercontent.com/37525283/158500625-5ec1547c-2153-4cd2-9c5d-c4f99c8c37b2.png)\r\nusually,it was pendding not running\nComment: when i submiting a file ,cape can't running ,program call some error\nComment: Did you take snapshot in running state?\n\nEl mi\u00e9., 16 mar. 2022 2:52, yanhuanyu ***@***.***> escribi\u00f3:\n\n> when i submiting a file ,cape can't running ,program call some error\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/801#issuecomment-1068649861>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH34G4SIUVWLLM4XZU23VAE5EPANCNFSM5QUQPFRA>\n> .\n> Triage notifications on the go with GitHub Mobile for iOS\n> <https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675>\n> or Android\n> <https://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub>.\n>\n> You are receiving this because you modified the open/close state.Message\n> ID: ***@***.***>\n>\n\nComment: running \"agent.py\" when i take snapshot.\nComment: ah ok i just saw the screen, did you see what it says in red? iface doesn't exist. that is bad configuration of libvirt",
+  "Title: Bump pillow from 9.0.0 to 9.0.1\nBody: Bumps [pillow](https://github.com/python-pillow/Pillow) from 9.0.0 to 9.0.1.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a href=\"https://github.com/python-pillow/Pillow/releases\">pillow's releases</a>.</em></p>\n<blockquote>\n<h2>9.0.1</h2>\n<p><a href=\"https://pillow.readthedocs.io/en/stable/releasenotes/9.0.1.html\">https://pillow.readthedocs.io/en/stable/releasenotes/9.0.1.html</a></p>\n<h2>Changes</h2>\n<ul>\n<li>In show_file, use os.remove to remove temporary images. CVE-2022-24303 <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6010\">#6010</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>, <a href=\"https://github.com/hugovk\"><code>@\u200bhugovk</code></a>]</li>\n<li>Restrict builtins within lambdas for ImageMath.eval. CVE-2022-22817 <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6009\">#6009</a> [radarhere]</li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/python-pillow/Pillow/blob/main/CHANGES.rst\">pillow's changelog</a>.</em></p>\n<blockquote>\n<h2>9.0.1 (2022-02-03)</h2>\n<ul>\n<li>\n<p>In show_file, use os.remove to remove temporary images. CVE-2022-24303 <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6010\">#6010</a>\n[radarhere, hugovk]</p>\n</li>\n<li>\n<p>Restrict builtins within lambdas for ImageMath.eval. CVE-2022-22817 <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/6009\">#6009</a>\n[radarhere]</p>\n</li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/6deac9e3a23caffbfdd75c00d3f0a1cd36cdbd5d\"><code>6deac9e</code></a> 9.0.1 version bump</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/c04d812b902356b8c20ee2ab881e1d96f7d66b4b\"><code>c04d812</code></a> Update CHANGES.rst [ci skip]</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/4fabec36197735438c80c174d018498be606c46c\"><code>4fabec3</code></a> Added release notes for 9.0.1</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/02affaa491df37117a7562e6ba6ac52c4c871195\"><code>02affaa</code></a> Added delay after opening image with xdg-open</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/ca0b58521881b95e47ea49d960d13d1c3dac823d\"><code>ca0b585</code></a> Updated formatting</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/427221ef5f19157001bf8b1ad7cfe0b905ca8c26\"><code>427221e</code></a> In show_file, use os.remove to remove temporary images</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/c930be0758ac02cf15a2b8d5409d50d443550581\"><code>c930be0</code></a> Restrict builtins within lambdas for ImageMath.eval</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/75b69dd239a4647032f67a80d9b444228af2b736\"><code>75b69dd</code></a> Dont need to pin for GHA</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/cd938a7744cb46e2ea525a0c3dd79aa08f98c150\"><code>cd938a7</code></a> Autolink CWE numbers with sphinx-issues</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/2e9c461ca417083c43145a991bf9e1ec93237d89\"><code>2e9c461</code></a> Add CVE IDs</li>\n<li>See full diff in <a href=\"https://github.com/python-pillow/Pillow/compare/9.0.0...9.0.1\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pillow&package-manager=pip&previous-version=9.0.0&new-version=9.0.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language\n- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language\n- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language\n- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language\n\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Revert \"Revert \"Cleanup of admin, agent and dev_utils folder\"\"\nBody: the problem here is the that `|` is requiring python 3.10 https://docs.python.org/3/library/types.html#types.UnionType\r\n\r\n@TheMythologist FYI",
+  "Title: Revert \"Cleanup of admin, agent and dev_utils folder\"\nBody: Reverts kevoreilly/CAPEv2#797",
+  "Title: Cleanup of admin, agent and dev_utils folder\nBody: Let me know if there's anything you disagree with\r\n\r\n* Introduce type-hinting on a larger scale\nComment: looks good thanks, just one thing, this isn't coming by default with python no `from pydantic import ipaddress` ? at least i don't have it on my 3.8.10, but `ipaddress ` does come, maybe is better to switch to `ipaddress` ? what do you think?\nComment: this is agent.py\r\n\r\nthere is another problems, as we convert methods from list to tuple, we need to add `,` at the end, otherwise it loop over strings, \r\n\r\n``` method is GET os is looping over GET string\r\nTraceback (most recent call last):\r\n  File \".\\test.py\", line 218, in <module>\r\n    @app.route(\"/\")\r\n  File \".\\test.py\", line 108, in register\r\n    self.routes[method].append((re.compile(f\"{path}$\"), fn))\r\nKeyError: 'G'\r\n```",
+  "Title: Code cleanup: Part 1\nBody: (Starting from the number 1 because I didn't keep track starting from the previous code cleanup commits)\r\n\r\nNote: I'll start to include type-hinting in the cleanups from the next PR onwards\r\n\r\nLet me know if there's anything wrong/erroneous, or anything that you disagree with\nComment: thank you, i was missing you :)",
+  "Title: ModuleNotFoundError: No module named 'lib.cuckoo' when trying to run the web server\nBody: /opt/CAPEv2/web$ sudo python3 manage.py runserver 0.0.0.0:8080\r\n[sudo] password for ks: \r\nTraceback (most recent call last):\r\n  File \"/usr/local/lib/python3.8/dist-packages/django/core/management/base.py\", line 354, in run_from_argv\r\n    self.execute(*args, **cmd_options)\r\n  File \"/usr/local/lib/python3.8/dist-packages/django/core/management/commands/runserver.py\", line 61, in execute\r\n    super().execute(*args, **options)\r\n  File \"/usr/local/lib/python3.8/dist-packages/django/core/management/base.py\", line 398, in execute\r\n    output = self.handle(*args, **options)\r\n  File \"/usr/local/lib/python3.8/dist-packages/django/core/management/commands/runserver.py\", line 68, in handle\r\n    if not settings.DEBUG and not settings.ALLOWED_HOSTS:\r\n  File \"/usr/local/lib/python3.8/dist-packages/django/conf/__init__.py\", line 82, in __getattr__\r\n    self._setup(name)\r\n  File \"/usr/local/lib/python3.8/dist-packages/django/conf/__init__.py\", line 69, in _setup\r\n    self._wrapped = Settings(settings_module)\r\n  File \"/usr/local/lib/python3.8/dist-packages/django/conf/__init__.py\", line 170, in __init__\r\n    mod = importlib.import_module(self.SETTINGS_MODULE)\r\n  File \"/usr/lib/python3.8/importlib/__init__.py\", line 127, in import_module\r\n    return _bootstrap._gcd_import(name[level:], package, level)\r\n  File \"<frozen importlib._bootstrap>\", line 1014, in _gcd_import\r\n  File \"<frozen importlib._bootstrap>\", line 991, in _find_and_load\r\n  File \"<frozen importlib._bootstrap>\", line 975, in _find_and_load_unlocked\r\n  File \"<frozen importlib._bootstrap>\", line 671, in _load_unlocked\r\n  File \"<frozen importlib._bootstrap_external>\", line 848, in exec_module\r\n  File \"<frozen importlib._bootstrap>\", line 219, in _call_with_frames_removed\r\n  File \"/opt/CAPEv2/web/web/settings.py\", line 20, in <module>\r\n    from lib.cuckoo.common.config import Config\r\nModuleNotFoundError: No module named 'lib.cuckoo'\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"manage.py\", line 15, in <module>\r\n    execute_from_command_line(sys.argv)\r\n  File \"/usr/local/lib/python3.8/dist-packages/django/core/management/__init__.py\", line 419, in execute_from_command_line\r\n    utility.execute()\r\n  File \"/usr/local/lib/python3.8/dist-packages/django/core/management/__init__.py\", line 413, in execute\r\n    self.fetch_command(subcommand).run_from_argv(self.argv)\r\n  File \"/usr/local/lib/python3.8/dist-packages/django/core/management/base.py\", line 367, in run_from_argv\r\n    connections.close_all()\r\n  File \"/usr/local/lib/python3.8/dist-packages/django/db/utils.py\", line 208, in close_all\r\n    for alias in self:\r\n  File \"/usr/local/lib/python3.8/dist-packages/django/utils/connection.py\", line 73, in __iter__\r\n    return iter(self.settings)\r\n  File \"/usr/local/lib/python3.8/dist-packages/django/utils/functional.py\", line 48, in __get__\r\n    res = instance.__dict__[self.name] = self.func(instance)\r\n  File \"/usr/local/lib/python3.8/dist-packages/django/utils/connection.py\", line 45, in settings\r\n    self._settings = self.configure_settings(self._settings)\r\n  File \"/usr/local/lib/python3.8/dist-packages/django/db/utils.py\", line 144, in configure_settings\r\n    databases = super().configure_settings(databases)\r\n  File \"/usr/local/lib/python3.8/dist-packages/django/utils/connection.py\", line 50, in configure_settings\r\n    settings = getattr(django_settings, self.settings_name)\r\n  File \"/usr/local/lib/python3.8/dist-packages/django/conf/__init__.py\", line 82, in __getattr__\r\n    self._setup(name)\r\n  File \"/usr/local/lib/python3.8/dist-packages/django/conf/__init__.py\", line 69, in _setup\r\n    self._wrapped = Settings(settings_module)\r\n  File \"/usr/local/lib/python3.8/dist-packages/django/conf/__init__.py\", line 170, in __init__\r\n    mod = importlib.import_module(self.SETTINGS_MODULE)\r\n  File \"/usr/lib/python3.8/importlib/__init__.py\", line 127, in import_module\r\n    return _bootstrap._gcd_import(name[level:], package, level)\r\n  File \"<frozen importlib._bootstrap>\", line 1014, in _gcd_import\r\n  File \"<frozen importlib._bootstrap>\", line 991, in _find_and_load\r\n  File \"<frozen importlib._bootstrap>\", line 975, in _find_and_load_unlocked\r\n  File \"<frozen importlib._bootstrap>\", line 671, in _load_unlocked\r\n  File \"<frozen importlib._bootstrap_external>\", line 848, in exec_module\r\n  File \"<frozen importlib._bootstrap>\", line 219, in _call_with_frames_removed\r\n  File \"/opt/CAPEv2/web/web/settings.py\", line 20, in <module>\r\n    from lib.cuckoo.common.config import Config\r\nModuleNotFoundError: No module named 'lib.cuckoo'\r\n\r\n\r\n- >  running cuckoo.py works as expected however I encounter this issue ^\r\n- Initially I got ModuleNotFoundError: No module named 'lib' **(just lib)** then I installed lib with pip3/pip and now I got this on Ubuntu 20.04\nComment: fixed \r\n\r\n1. `cd /opt/CAPEv2/web`\r\n2. `sudo python3 manage.py migrate`\r\n3. `sudo python3 manage.py runserver 0.0.0.0:8080`\nComment: Hi,\r\n\r\nfor me, this error occurs when I do not run manage.py within the directory /opt/CAPEv2/web so what you can try:\r\n- `cd /opt/CAPEv2/web/ && python3 manage.py runserver`\r\n- i guess it is not good idea to start manage.py with sudo, try without sudo\r\n- normally cape-webservice should already be running, check systemctl status for cape-webservice\nComment: what was the problem?\nComment: @ClaudioWayne see my comment above",
+  "Title: tooltip\nBody: None",
+  "Title: Fix logic for finding if a detection was already seen.\nBody: The line `if not detection in block[\"details\"]:` would never evaluate to\r\nTrue, because block[\"details\"] contains references to dicts created in\r\nprevious invocations of this function--that statement does not actually\r\ncompare the contents of the dicts themselves, but only that they're the\r\nsame object.\r\n\r\nAlso, bail out of the loop when we found the family and use python's\r\nfor/else construct instead of tracking `found` ourselves.\r\n\r\nQUESTION: I was curious about the decision to use lists for these objects (results['detections'] and the 'details' instead of just using dicts that key off the family and detected_by, respectively. I'm guessing there was a reason--it just seems like it would've been simpler than having to iterate over these lists to find items.\nComment: about the question i already answered in general in slack, the problem is search become hackish, that was how i initially designed that. but the main problem that there can be 2 files with the same match or more than 2, and there was more and more complications, if you have better idea how to implement this, im more than happy to improve this\r\n\r\nthanks for improvements",
+  "Title: fix access of sample without assignment\nBody: URL samples fail to process as sample.sha256 is not assigned. \r\nThere should be nothing to copy.\nComment: Resolves the error:\r\n\r\n```\r\n2022-03-06 22:11:10,797 [modules.reporting.mongodb] DEBUG: Deleted previous MongoDB data for Task 8\r\n2022-03-06 22:11:10,885 [root] INFO: Task #8: reports generation completed\r\nTraceback (most recent call last):\r\n  File \"utils/process.py\", line 245, in autoprocess\r\n    copy_origin_path = os.path.join(CUCKOO_ROOT, \"storage\", \"binaries\", sample.sha256)\r\nUnboundLocalError: local variable 'sample' referenced before assignment\r\n```\nComment: thank you",
+  "Title: Add needed tags\nBody: None",
+  "Title: No duplicate detection details\nBody: None\nComment: thank you",
+  "Title: top detection is broken with new detection, need proper sort\nBody: None",
+  "Title: New Danabot version doesn't run in CAPEv2\nBody: Hi guys !\r\n\r\nI was investigating a new Danabot version and it doesn't detonate in CAPEv2 sandbox.\r\n\r\nsha256: f6fdb459d51408aee8732eab0959d00b4e63651852dd7c37a8fefa328aa7beef\r\n[f6fdb459d51408aee8732eab0959d00b4e63651852dd7c37a8fefa328aa7beef.zip](https://github.com/kevoreilly/CAPEv2/files/8179071/f6fdb459d51408aee8732eab0959d00b4e63651852dd7c37a8fefa328aa7beef.zip)\r\n\r\nDanabot C2:\r\n```\r\n200.124.189.120:443\r\n23.106.122.14:443\r\n5.9.224.217:443\r\n```\r\n\r\nThe original file should drop the rundll32 and inject the final stage into it.\r\n\r\n```\r\nC:\\Windows\\SysWOW64\\rundll32.exe\r\n\"C:\\Windows\\syswow64\\rundll32.exe\" \"C:\\Windows\\syswow64\\shell32.dll\",#61\r\n```\r\nI don't see any anti-features in the code except `IsDebugger` checking. \r\n\r\nCan you please to check it, thanks in advance !\r\n\r\nI suspect the issue can be with:\r\nSetUnhandledExceptionFilter detected (possible anti-debug).\r\n\nComment: wait msg from Nick ;) \nComment: just tested, it detonates now",
+  "Title: detections rewrite\nBody: None",
+  "Title: Fix markdown format\nBody: None",
+  "Title: https://github.com/Querz/mcaselector matches IcedID \nBody: https://github.com/Querz/mcaselector 1.17.2 installer exe matches IcedID does it contain IcedID and am I at risk thank you\r\nhttps://www.virustotal.com/gui/file/342cc2dc06f081da6af8e236c373fcf44d1f4a12f5f35f88ec9c0769e93b641e\nComment: Hello. This is wrong place for this kind of questions. They use our yara. and that is your job to verify if file is infected. do not post questions like this.\r\n\r\nthe file is pretty big so i guess is possible that all those patterns is matched on it, but still it can be legit or not is other people to verify",
+  "Title: Fix submit unicode bug\nBody: - use `sanitize_filename()` avoid unicode problems\r\n- add a tmp filepath to analyze",
+  "Title: VM Clock Not Updating From Snapshot Time\nBody: Please answer the following questions for yourself before submitting an issue.\r\n\r\n- [X ] I am running the latest version\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I'm have read all configs with all optional parts\r\n\r\n\r\n\r\n# Expected Behavior\r\n\r\nURL analysis should complete successfully\r\n\r\n# Current Behavior\r\n\r\nURL analysis fails\r\n\r\n## Context\r\n\r\nUbuntu 20.04, w/Cape, KVM, Windows 8.1 VM.  Apologies in advance - I feel like I'm missing something obvious, but haven't been able to pinpoint it.  When submitting an analysis using a snapshot, I am unable to get the VM system date/time to update from the snapshot time, despite manually specifying it and the time service being disabled.\r\n\r\n\r\n## Failure Logs\r\n2022-03-01 13:41:01,600 [root] INFO: Date set to: 20220215T08:00:00, timeout set to: 200 (VM system time unchanged from snapshot).\r\n\nComment: hello, could you post second line of that analysis log please?\nComment: Hello - Sure, thank you!\r\n\r\n2022-03-01 13:41:01,631 [root] DEBUG: Starting analyzer from: C:\\tmp10os_pzc\nComment: did you disable NTP service inside of the vm?\nComment: Yeah, at least I think I did it correctly (the service is disabled, I applied at least one registry change).  Also, the time doesn't appear to update to the current time (it stays on the time from the snapshot).  Will run through all those settings again this morning, as it really does feel like I'm missing something.  Will keep you posted and thanks again.\nComment: one question, does that only happens to url analysis or to file analysis too?\nComment: Files, as well.  I put together a little batch file that left the date and time open from a cmd window, and saw the same issue.  You just reminded me though - I may open another case for post-processing URLs on the latest version, but need to verify I didn't mess anything up in setup before asking anyone to go down that rabbit hole with me.  :)  Will keep you posted on the time settings.\nComment: hm i just did a check on [capesandbox.com](https://capesandbox.com/analysis/246290/)\r\n```\r\n2021-11-28 22:23:47,086 [root] INFO: Date set to: 20220302T12:10:13, timeout set to: 200\r\n2022-03-02 12:10:13,062 [root] DEBUG: Starting analyzer from: C:\\tmp_p18xlnb\r\n```\r\n\r\nso i guess something is messed, check my https://github.com/doomedraven/Tools/blob/master/Windows/disable_win7noise.bat \r\n\r\n```\r\nREM NTP\r\nreg add \"HKLM\\SYSTEM\\CurrentControlSet\\Services\\W32Time\\Parameters\" /v LocalNTP /t REG_DWORD /d 0 /f\r\n```\r\n\r\nright now i don't remember if reboot was required but i guess yes\nComment: Thanks much - I will run through everything again today.  Appreciate you checking. \nComment: So, the registry setting didn't fix it, but I went through and applied the steps again, including running the entire disable_win7noise.bat, and it worked!!  Not sure exactly what fixed it unfortunately, but thanks so much for the help!  Now on to fighting with post-processing of URLs.  :)  Thanks again!\nComment: cool glad that solved you problem. let us know whats going there, im not using cape for analysis of urls, so that part is probably where we give less love\nComment: Will do, thanks.  I'll open up a new issue if needed, but will do my best to ensure it's not something I'm screwing up first.  :)",
+  "Title: Issues with sockets in distributed environemnt\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account acctivation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x ] I am running the latest version\r\n- [x ] I checked the documentation and found no answer\r\n- [ x] I checked to make sure that this issue has not already been filed\r\n- [ x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nCAPEv2 should work and the analysis should complete\r\n\r\n# Current Behavior\r\n\r\nI get error while connecting to the roter sockets\r\n\r\n# Failure Information (for bugs)\r\n\r\nPermission denied on the sockets and `no such device` if I try to change permissions to it\r\n\r\n## Steps to Reproduce\r\n\r\nJust starting cape normally and after the memory dump I get abort due to this\r\n\r\n## Context\r\n\r\nI am in a distributed environment and I have 1 master and 4 slaves. Using vSphere. the master is connected to 5 different network interfaces and I am afraid that this may lead to the error.\r\n\r\n\r\n\nComment: Hello, uff I have never used vSphere, im KVM evangelist. so lets see if someone can help you with your problem. But no such device sound as some problem with some interface, if you at least could post error log or something like that, that could help\nComment: I don't have any log actually, I think the problem is on how the socket is actually created  because apparently I cannot interact with it.\r\nAnother issue would be the fact that I have multiple network interfaces and apparently I cannot bind  a UNIX socket to a specific one. Would it be possible to change the socket type?\nComment: i guess yes, but is hard without log and your setup, as on KVM i don't have any of those problems even on servers with 2 interfaces. how do you start dist? you can specify on which interface to listen \r\n\r\nby default it listen on all ifaces\nComment: I think it is something regarding the permissions because I added the support to mongo as well and I have the same issue\r\n\r\n```2022-03-04 09:41:50,884 [lib.cuckoo.core.scheduler] ERROR: Task #17: Failure in AnalysisManager.run: [Errno 13] Permission denied: '/tmp/mongodb-27017.sock'\r\nTraceback (most recent call last):\r\n  File \"/home/cape/CAPEv2/lib/cuckoo/core/scheduler.py\", line 426, in run\r\n    success = self.launch_analysis()\r\n  File \"/home/cape/CAPEv2/lib/cuckoo/core/scheduler.py\", line 337, in launch_analysis\r\n    guest.start_analysis(options)\r\n  File \"/home/cape/CAPEv2/lib/cuckoo/core/guest.py\", line 323, in start_analysis\r\n    self.upload_support_files(options)\r\n  File \"/home/cape/CAPEv2/lib/cuckoo/core/guest.py\", line 242, in upload_support_files\r\n    files = {\"file\": (xf, open(target, \"rb\"))}\r\nPermissionError: [Errno 13] Permission denied: '/tmp/mongodb-27017.sock'\r\n```\r\n\r\nwhat do you mean by dist?\r\n\nComment: ok well bcz i though you speak about `dist.py`. about mongo, is totally different problem, but that all is depends how did you setup it? which user do you use to run everything? did you use my cape2.sh to install everything?  if no you need to fix systemd mongo's daemon\nComment: i guess to get the proper help, explain properly everything, as now i don't have no idea about what you speaking, explain with how you run them, examples, usernames etc\nComment: I had to modify the sockets\r\nThanks anyway for your help, much appreciated !\r\n",
+  "Title: Improving parser's metadata & output\nBody: Hi CAPE Team!\r\n\r\nFirst let me thank you for all the hard work put on this project over the years. IoC extracted from your parsers are helping Canada be a safer place.\r\nI\u2019m reaching out from the Assemblyline team at the Canadian Cyber Centre. ([Home - Assemblyline 4 (cybercentrecanada.github.io).](https://cybercentrecanada.github.io/assemblyline4_docs/)\r\n\r\nWe\u2019ve noticed that you recently made some cleanup in your parsers and we are wondering if you would be open to a few extra changes in order to make it easier to integrate & consume parsers\u2019 data.\r\nA few ideas:\r\n-\tAdding a family attribute in each module (similar to DESCRIPTION / AUTHOR)\r\n-\tAdding a TLP\r\n-\tSeparating the parsers into their own repositories could also go a long way to enable sharing (a good example: @c3rb3ru5d3d53c \u2019s parsers: https://github.com/c3rb3ru5d3d53c/mwcfg-modules\r\n\r\nFinally, one common problem for us is the lack of standardized output between parsers and frameworks. \r\nWe think it would be easy could come up with a simple (key:value) ontology for frequently extracted type of information which would help to standardize fields across parsers(IP, domains, mutex etc), yet still allow for flexibility for custom fields. It could be a simple library imported in the parsers. MWCP did provided a bit of that but it looks like you are moving away from it.\r\nWe would be happy to contribute via PRs.\r\n\r\nCheers from Canada! \ud83d\udc4b \r\n\nComment: Hello, yes we are open to any improvements/suggestions. So by parts:\r\n\r\n* About add family name is fine, but here is kinda question, which name you want to use, or just set it to list and use all names  for family X? like Malpedia does?\r\n* with TLP what are you mean? I mean TLP of parser or what exactly?\r\n* the problem with separate extractors to their own repos, you will need to start writing a `loader` for each repo, we have integration of all frameworks, and we had to write 2 different loaders in order to handle how different frameworks their plugins. I do understand that is easy to do `git pull` to get updated external modules. But i think is easier write a small wrapper that does `git pull` and `move` as update than handle each repo and how they store files. We almos have added note about parsers, that we prefer pure python parsers as if you do search in issues you will see that in past `mwcp` was breaking different extractors depending on version you have installed. and most of those repos has short life span and their extractors become outdated pretty fast.\r\n\r\n* about keys names yes is known problem, but that was mostly due to different frameworks as they was using specific fields. if you have suggestion we are happy to hear that. I personally don't use any public extractor even from CAPE.\r\n\r\nCheers from Kyiv.\nComment: Hi @doomedraven, thanks for your quick reply.\r\n\r\n1 & 2: Making DESCRIPTION, AUTHOR, FAMILY(malware the parser is for), TLP (TLP of the parser) mandatory would go a long way for us. eg:\r\n```\r\nFAMILY = \"EVILGRAB\"\r\nDESCRIPTION = \"EvilGrab configuration parser.\"\r\nAUTHOR = \"kevoreilly\"\r\nTLP = \"WHITE\"\r\n```\r\n\r\n3: Ok we understand!\r\n4: We will propose a format with a small validation library, you can see if you like it and want to adopt it in CAPE. I will get back to you on that one.\r\n\r\nThanks!\nComment: sounds good, thank you\nComment: I'm certainly happy to hear that parsers from CAPE are helping Canada - great to hear. Certainly no reason we can't add those fields and use a validation library.\r\n\r\nOut of interest, do you make use of the sandbox as a whole, or just the static configuration parsers? I am curious and note that while there is a Cuckoo service in AssemblyLine, there is no support for CAPE. Perhaps there is some feedback the project could benefit from here? Certainly one of the main reasons for the existence of this project is the automated unpacking of malware, which would seem to me to be a perfect fit for a service in AssemblyLine.\nComment: We're currently working on revamping our [ConfigExtractor](https://github.com/CybercentreCanada/assemblyline-service-configextractor) service which only handles MWCP, Malduck (via MWCFG), and RATDecoders. \r\n\r\nWe'd like to add CAPE to the roster but as we were rewriting the [backend library](https://github.com/CybercentreCanada/configextractor-py/tree/revamp), we noticed there was discrepancies between the output from different frameworks. So standardizing the output goes a big way in terms of Assemblyline because this helps us tag the output correctly.\r\n\r\nA big holdback from the service is that you'd have to bake in the parsers at build time to make use of them (so as you can imagine, to keep up with you guys we'd have to build several times per day \ud83d\ude1c).\r\n\r\nWe'd like to change that service to allow the users to dynamically add parsers for the service to use from Assemblyline (hence the ask to separate the parser modules into their own repo but we can get around that).\nComment: at the end, you will need to write a \"proxy\" for those frameworks to transform name fields. as everyone uses names that they want + the problem of different dependencies of each frameworks is a pain, is why i did move all from those to pure python\nComment: Exactly - handling the runtime for the different frameworks isn't so much the issue, it's the output that comes out.\r\nSo at the very least I would need some mapping that says 'XYZ' for CAPE and 'PQR' for MWCP map to 'ABC' in this general schema.\r\n\r\nBut at the same time, I can't really enforce the idea 'oh you must use these fields and they must be this type' and so on (but it would simplify things for the general public + new parser writers). \ud83e\udd37\u200d\u2642\ufe0f\nComment: so guys any update on this? i don't see any pull request with those changes\nComment: Yes, please give us a bit more time, we have an ontology to propose. We've been side tracked on other issues.\r\n@cccs-rs @cccs-ay\nComment: > \r\n\r\nHi @kevoreilly, just noticed your reply on this thread! There is an Assemblyline service for CAPE maintained by NVISO (https://github.com/NVISOsecurity/assemblyline-service-cape). \r\n\r\nWe're in the process of investigating replacement for cuckoo, as its showing its age. Currently we had great success with running https://github.com/hasherezade/hollows_hunter inside Cuckoo and using various parsers (including yours) to extract the config from HH's memory dumps.  One reason why we need to decouple the sandbox and parsers is we get memory dump submitted directly.\nComment: Well I bet that's nowhere near as good as cape itself!\nComment: hello all, as we solved the initial issue im gonna close it, if you want to discuss something else related to this subject, just post new msg here \nComment: @doomedraven We now have an official ontology (and a framework) that'd we'd like to propose to be used:\r\nhttps://github.com/CybercentreCanada/Maco\r\n\r\nAny feedback on what you guys think is much appreciated!\nComment: i will be out for almost 1.5 from tomorrow. but i will try to find some time to get a look\nComment: Any updates on this?\nComment: sorry totally forgot about this. framework looks good\nComment: Can you let us know if you have some interest in adopting it?, it would help standardize extractor output which would be great for exporting the data in other system (e.g store in a DB). We are looking at supporting CAPE's extractor in our standalone config extractor service so MACO would help with that as well.\r\n\r\nQuick update too, the Assemblyline team is now fully onboard with CAPE (as you've seen with recent PRs), we just released the official CAPE integration: https://github.com/CybercentreCanada/assemblyline-service-cape\r\n\r\nThanks for your work on this project, more collaboration incoming! \nComment: Im more than fine to adapt it, \nthe uniq thing that I personally don\u2019t use any of the public extractors. \nSo if you can help with mapping the fields, im more than happy to merge those changes.\n\n> On 5 Jul 2022, at 21:03, JP ***@***.***> wrote:\n> \n> \n> Can you let us know if you have some interest in adopting it?, it would help standardize extractor output which would be great for exporting the data in other system (e.g store in a DB). We are looking at supporting CAPE's extractor in our standalone config extractor service so MACO would help with that as well.\n> \n> Quick update too, the Assemblyline team is now fully onboard with CAPE (as you've seen with recent PRs), we just released the official CAPE integration: https://github.com/CybercentreCanada/assemblyline-service-cape <https://github.com/CybercentreCanada/assemblyline-service-cape>\n> Thanks for your work on this project, more collaboration incoming!\n> \n> \u2014\n> Reply to this email directly, view it on GitHub <https://github.com/kevoreilly/CAPEv2/issues/781#issuecomment-1175401872>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAOFH36K3VCQJ65BDX4W6O3VSSBJNANCNFSM5PU4IUAQ>.\n> You are receiving this because you were mentioned.\n> \n\n\nComment: I'm currently working on the [library that will run the different frameworks](https://github.com/CybercentreCanada/configextractor-py/tree/revamp) and doing service testing, but once I get that finalized, I can start on a PR to convert the CAPE parsers output to the MaCo format.\nComment: that would be amazing, thank you\nComment: Initial PR with the first round of conversions: https://github.com/kevoreilly/CAPEv2/pull/1037",
+  "Title: small bug fix\nBody: None",
+  "Title: Fix Authenticode results\nBody: None",
+  "Title: Fix results key\nBody: None\nComment: thank you",
+  "Title: fix recursive extract_config() calls on BlackNix.py\nBody: None\nComment: ups, thank you",
+  "Title: dl all files\nBody: None\nComment: <img width=\"606\" alt=\"Screenshot 2022-02-23 at 11 11 07\" src=\"https://user-images.githubusercontent.com/1856495/155314140-7d307e00-2c97-4be4-b38a-72553d13d520.png\">\r\n",
+  "Title: Change of behavior for `/apiv2/tasks/view/`\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\n* running version da42620b72c1475e0bd13cda85d33f19cb1ec5ef (Wed Jan 19 2022):\r\n\r\n```\r\n$ curl http://sandbox:9000/apiv2/tasks/status/1511/\r\n{\"error\":false,\"data\":\"running\"}\r\n\r\n$ curl http://sandbox:9000/apiv2/tasks/view/1511/\r\n{\"error\":false,\"data\":{\"id\":1511,\"target\":\"...\r\n```\r\n\r\n# Current Behavior\r\n\r\n* running version 85f12156806d0842c2ede2d49c01eaf6ad119cc2 (Fri Feb 18 2022):\r\n\r\n```\r\n$ curl http://sandbox:9000/apiv2/tasks/status/1511/\r\n{\"error\":false,\"data\":\"running\"}\r\n\r\n$ curl http://sandbox:9000/apiv2/tasks/view/1511/\r\n{\"error\":true,\"error_value\":\"Task not found in database\"}\r\n```\r\n\r\n# Failure Information (for bugs)\r\n\r\nSomething changed in last month period which makes `/apiv2/tasks/view/` calls fail if status of a task is not finished yet. Guess is that https://github.com/kevoreilly/CAPEv2/commit/866c4ff93461c0cdc199f260b2a85e5d9a7481d8 has not properly addressed the underlying issue (cause of this problem). Fact is that tasks were previously pulled without any problems, where `running` tasks returned `running` even in `/apiv2/tasks/view/`.\r\n\r\nAnyhow, if this is intended way for future CAPEv2 versions (i.e. `apiv2/tasks/view/` returns `Task not found in database` when task is `running`), just close this issue, and we'll accept it as is.\r\n\r\n## Steps to Reproduce\r\n\r\nSee the **Expected Behavior** and **Current Behavior**\nComment: yes the uniq change recently to this was that https://github.com/kevoreilly/CAPEv2/commit/866c4ff93461c0cdc199f260b2a85e5d9a7481d8 i will review it once i will have some spare time i hope today, thanks for headups\nComment: pushed fix, thanks for headups :), please test and let me know\nComment: reopen if not fixed",
+  "Title: JS analysis failing with FileNotFound error (missing upload file)\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ ] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [ x] I checked to make sure that this issue has not already been filed\r\n- [x ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x ] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nUploading a JS file for static analysis should work.\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\nFileNotFound error, the directory for the upload exists, but the file does not.\r\nThis happens with Unpacker_js and js_antivm, the only thing consistent is that the analysis is for JS files.\r\n\r\n# Failure Information (for bugs)\r\n\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. step 1\r\n2. step 2\r\n3. you get it...\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\nLogs show this:\r\n```\r\nFeb 21 03:27:25 cuckoo python3.8[17365]: 2022-02-21 03:27:25,898 [lib.cuckoo.core.scheduler] DEBUG: Task #118: Processing task\r\nFeb 21 03:27:25 cuckoo python3.8[17365]: 2022-02-21 03:27:25,900 [lib.cuckoo.core.scheduler] INFO: Task #118: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_fdjr89sx/malware.js'\r\nFeb 21 03:27:25 cuckoo python3.8[17365]: 2022-02-21 03:27:25,900 [lib.cuckoo.core.scheduler] ERROR: Task #118: Failure in AnalysisManager.run: [Errno 2] No such file or directory: '/tmp/cuckoo-tmp/upload_fdjr89sx/malware.js'\r\nFeb 21 03:27:25 cuckoo python3.8[17365]: Traceback (most recent call last):\r\nFeb 21 03:27:25 cuckoo python3.8[17365]:   File \"/datadrive/CAPEv2/lib/cuckoo/core/scheduler.py\", line 434, in run\r\nFeb 21 03:27:25 cuckoo python3.8[17365]:     success = self.launch_analysis()\r\nFeb 21 03:27:25 cuckoo python3.8[17365]:   File \"/datadrive/CAPEv2/lib/cuckoo/core/scheduler.py\", line 293, in launch_analysis\r\nFeb 21 03:27:25 cuckoo python3.8[17365]:     category_early_escape = self.category_checks()\r\nFeb 21 03:27:25 cuckoo python3.8[17365]:   File \"/datadrive/CAPEv2/lib/cuckoo/core/scheduler.py\", line 247, in category_checks\r\nFeb 21 03:27:25 cuckoo python3.8[17365]:     sha256 = File(self.task.target).get_sha256()\r\nFeb 21 03:27:25 cuckoo python3.8[17365]:   File \"/datadrive/CAPEv2/lib/cuckoo/common/objects.py\", line 362, in get_sha256\r\nFeb 21 03:27:25 cuckoo python3.8[17365]:     self.calc_hashes()\r\nFeb 21 03:27:25 cuckoo python3.8[17365]:   File \"/datadrive/CAPEv2/lib/cuckoo/common/objects.py\", line 294, in calc_hashes\r\nFeb 21 03:27:25 cuckoo python3.8[17365]:     for chunk in self.get_chunks():\r\nFeb 21 03:27:25 cuckoo python3.8[17365]:   File \"/datadrive/CAPEv2/lib/cuckoo/common/objects.py\", line 275, in get_chunks\r\nFeb 21 03:27:25 cuckoo python3.8[17365]:     with open(self.file_path, \"rb\") as fd:\r\nFeb 21 03:27:25 cuckoo python3.8[17365]: FileNotFoundError: [Errno 2] No such file or directory: '/tmp/cuckoo-tmp/upload_fdjr89sx/malware.js'\r\n```\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | c8b46c6a2fe1c653b64544e29c4223a4278c29b2\r\n| OS version       | Ubuntu  Xenial\r\n\r\n## Failure Logs\r\n\r\nSee above\r\n\nComment: what about `ls -lah /tmp/cuckoo-tmp/upload_fdjr89sx/malware.js`?\nComment: @doomedraven that directory is empty,  the command returns no such file or directory. but the directory does exist.\nComment: well then issue is normal, if file doesn't exist, it wont work, can you share hash? ensure that you don't have IDS/IPS in mid and using cape without https might generate this\nComment: @doomedraven, Here is output and a sample I can share:\r\n\r\n```\r\nFeb 22 15:55:08 cuckoo python3.8[17365]: 2022-02-22 15:55:08,441 [modules.machinery.virtualbox] DEBUG: Stopping vm win10\r\nFeb 22 15:55:08 cuckoo python3.8[17365]: 2022-02-22 15:55:08,442 [modules.machinery.virtualbox] DEBUG: Getting status for win10\r\nFeb 22 15:55:09 cuckoo python3.8[17365]: 2022-02-22 15:55:09,070 [modules.machinery.virtualbox] DEBUG: Machine win10 status running\r\nFeb 22 15:55:11 cuckoo python3.8[17365]: 2022-02-22 15:55:11,209 [modules.machinery.virtualbox] DEBUG: Getting status for win10\r\nFeb 22 15:55:11 cuckoo python3.8[17365]: 2022-02-22 15:55:11,403 [modules.machinery.virtualbox] DEBUG: Machine win10 status poweroff\r\nFeb 22 15:55:11 cuckoo python3.8[17365]: 2022-02-22 15:55:11,436 [lib.cuckoo.core.resultserver] DEBUG: Stopped tracking machine 192.168.56.110 for task #130\r\nFeb 22 15:55:11 cuckoo python3.8[17365]: 2022-02-22 15:55:11,437 [lib.cuckoo.core.scheduler] INFO: Disabled route 'internet'\r\nFeb 22 15:55:11 cuckoo python3.8[17365]: 2022-02-22 15:55:11,458 [lib.cuckoo.core.scheduler] ERROR: Task #130: Failure in AnalysisManager.run: [Errno 2] No such file or directory: '/tmp/cuckoo-tmp/upload_15akbnr9/am.js'\r\nFeb 22 15:55:11 cuckoo python3.8[17365]: Traceback (most recent call last):\r\nFeb 22 15:55:11 cuckoo python3.8[17365]:   File \"/datadrive/CAPEv2/lib/cuckoo/core/scheduler.py\", line 434, in run\r\nFeb 22 15:55:11 cuckoo python3.8[17365]:     success = self.launch_analysis()\r\nFeb 22 15:55:11 cuckoo python3.8[17365]:   File \"/datadrive/CAPEv2/lib/cuckoo/core/scheduler.py\", line 343, in launch_analysis\r\nFeb 22 15:55:11 cuckoo python3.8[17365]:     guest.start_analysis(options)\r\nFeb 22 15:55:11 cuckoo python3.8[17365]:   File \"/datadrive/CAPEv2/lib/cuckoo/core/guest.py\", line 307, in start_analysis\r\nFeb 22 15:55:11 cuckoo python3.8[17365]:     \"file\": (\"sample.bin\", open(options[\"target\"], \"rb\")),\r\nFeb 22 15:55:11 cuckoo python3.8[17365]: FileNotFoundError: [Errno 2] No such file or directory: '/tmp/cu\r\nckoo-tmp/upload_15akbnr9/am.js'\r\n```\r\n[am.js.zip](https://github.com/kevoreilly/CAPEv2/files/8118127/am.js.zip)\r\n\r\nThe connection is through an SSH tunnel to the CAPE server (no middle box). I'm using the builtin manage.py server as well.\r\n\nComment: all works fine here so far, so first of all i would suggest you to update to latest cape and then check again  here is proof https://capesandbox.com/analysis/243298/ you need to search what is wrong with your setup",
+  "Title: Add sha256 hash to procmemory result dict\nBody: None\nComment: i have updated it as we already have instance of File, but now i undersand that is was missed in views, as i checked for file but not for get_all, so thanks",
+  "Title: Refactor the loading of mwcp and malwareconfig parsers\nBody: Move the loading of `mwcp` and `malwareconfig` parsers into functions to be able to test them and to use them in testing.\nComment: Not sure what to do about the CI failure. It seems the packages are not available for import?",
+  "Title: CAPE resp. capesandbox.com asking for excessive privileges in github for authentication\nBody: Hello,\r\nCAPE (https://github.com/kevoreilly/CAPEv2/blob/master/web/web/local_settings.py) and capesandbox.com is asking github for excessive privileges when configuring authentication using github OAUTH. \r\nIt is asking for     \"github\": {        \"SCOPE\": [   \"user\",  \"repo\",  \"read:org\",   ],\r\n\r\nWhich results in github asking/granting access to :\r\n- \"user\" = Update all user data\r\n- \"repo\" = Full control over private repositories\r\n- \"read:org\"  = read org and team membership and read projects in organization\r\n\r\nI believe this is far more than needed for authentication.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. https://capesandbox.com/accounts/signup/\r\n2. choose github for the authentication\r\n\r\n![image](https://user-images.githubusercontent.com/723625/154598729-0e2410ac-f51e-4343-8711-3cadee0e8f60.png)\r\n\nComment: Checking https://docs.github.com/en/developers/apps/building-oauth-apps/scopes-for-oauth-apps\r\nI believe read:user and user:email is what is wanted.\nComment: hello that is default django-allauth suggestion. i have changed as you suggested thank you. ",
+  "Title: mongo_update to mongo_update_one\nBody: mongo update() is deprecated and seems to crash with new pymongo\nComment: thank you, what version of pymongo ? to put in requirements",
+  "Title: Fix procmemory result view\nBody: None\nComment: oh damn nice catch",
+  "Title: static 2 integrations part 2\nBody: None",
+  "Title: Revert \"Bump numpy from 1.19.1 to 1.21.0\"\nBody: Reverts kevoreilly/CAPEv2#761",
+  "Title: Fix import path typo\nBody: None",
+  "Title: Add eml filetype\nBody: Increase the judgment of the type of mail.\nComment: thank you, if you don't care could you push that to sflock too plz? otherwise i will push it later today\nComment: In fact, this judgment is already on sflock, but I found that sflock is not used here.\nComment: with not used here you mean not extracting attachments? or not submitting file as eml?\nComment: not submitting file as eml.\nComment: If I recall correctly, you can specify the package to be \"eml\" and it will open the email in outlook instead of the default behaviour (extracting the attachments and running the attachments individually)\nComment: > If I recall correctly, you can specify the package to be \"eml\" and it will open the email in outlook instead of the default behaviour (extracting the attachments and running the attachments individually)\r\n\r\nYes, it may not be set in actual use, this pr is to add some type of judgment to this.\nComment: Yes that as it should works, as if no what do you expect from eml? Email\nclient exploit? It wont run the attachment. Let me know if i miss something\n:)\n\nEl mar., 15 feb. 2022 9:22, TheMythologist ***@***.***>\nescribi\u00f3:\n\n> If I recall correctly, you can specify the package to be \"eml\" and it will\n> open the email in outlook instead of the default behaviour (extracting the\n> attachments and running the attachments individually)\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/pull/765#issuecomment-1039988307>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3Z6CP5WFZBGQMSB7LTU3IEN5ANCNFSM5ONXGYCQ>\n> .\n> Triage notifications on the go with GitHub Mobile for iOS\n> <https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675>\n> or Android\n> <https://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub>.\n>\n> You are receiving this because you modified the open/close state.Message\n> ID: ***@***.***>\n>\n\nComment: > Yes that as it should works, as if no what do you expect from eml? Email client exploit? It wont run the attachment. Let me know if i miss something :) El mar., 15 feb. 2022 9:22, TheMythologist ***@***.***> escribi\u00f3:\r\n> [\u2026](#)\r\n> If I recall correctly, you can specify the package to be \"eml\" and it will open the email in outlook instead of the default behaviour (extracting the attachments and running the attachments individually) \u2014 Reply to this email directly, view it on GitHub <[#765 (comment)](https://github.com/kevoreilly/CAPEv2/pull/765#issuecomment-1039988307)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAOFH3Z6CP5WFZBGQMSB7LTU3IEN5ANCNFSM5ONXGYCQ> . Triage notifications on the go with GitHub Mobile for iOS <https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675> or Android <https://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub>. You are receiving this because you modified the open/close state.Message ID: ***@***.***>\r\n\r\nNo, just testing some samples for learning and debugging and found that it didn't work as expected.\nComment: Ah ok, than all fine, i was wondering if i missed something, thanks\n\nEl mar., 15 feb. 2022 9:40, N1neSun ***@***.***> escribi\u00f3:\n\n> Yes that as it should works, as if no what do you expect from eml? Email\n> client exploit? It wont run the attachment. Let me know if i miss something\n> :) El mar., 15 feb. 2022 9:22, TheMythologist *@*.\n>\n> *> escribi\u00f3: \u2026 <#m_3860526546410103536_> If I recall correctly, you can\n> specify the package to be \"eml\" and it will open the email in outlook\n> instead of the default behaviour (extracting the attachments and running\n> the attachments individually) \u2014 Reply to this email directly, view it on\n> GitHub <#765 (comment)\n> <https://github.com/kevoreilly/CAPEv2/pull/765#issuecomment-1039988307>>,\n> or unsubscribe\n> https://github.com/notifications/unsubscribe-auth/AAOFH3Z6CP5WFZBGQMSB7LTU3IEN5ANCNFSM5ONXGYCQ\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3Z6CP5WFZBGQMSB7LTU3IEN5ANCNFSM5ONXGYCQ>\n> . Triage notifications on the go with GitHub Mobile for iOS\n> https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675\n> <https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675>\n> or Android\n> https://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub\n> <https://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub>.\n> You are receiving this because you modified the open/close state.Message\n> ID: @.*>\n>\n> No, just testing some samples for learning and debugging and found that it\n> didn't work as expected.\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/pull/765#issuecomment-1040003173>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3Z2RR4Q3KERSK6KQELU3IGO3ANCNFSM5ONXGYCQ>\n> .\n> Triage notifications on the go with GitHub Mobile for iOS\n> <https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675>\n> or Android\n> <https://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub>.\n>\n> You are receiving this because you modified the open/close state.Message\n> ID: ***@***.***>\n>\n",
+  "Title: Run black before isort\nBody: None",
+  "Title: static 2 integrations\nBody: None\nComment: the idea of this PR is to be able to reuse parsers, as for example if initial binary is lnk file, but it downloads another file, we won't parse that, with this change we can parse any other file of the same format\nComment: <img width=\"1689\" alt=\"Screenshot 2022-02-16 at 17 59 20\" src=\"https://user-images.githubusercontent.com/1856495/154316717-0e531800-a068-4b4b-80ed-4bd99daf656c.png\">\r\n",
+  "Title: Bump pillow from 8.2.0 to 9.0.0\nBody: Bumps [pillow](https://github.com/python-pillow/Pillow) from 8.2.0 to 9.0.0.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a href=\"https://github.com/python-pillow/Pillow/releases\">pillow's releases</a>.</em></p>\n<blockquote>\n<h2>9.0.0</h2>\n<p><a href=\"https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html\">https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html</a></p>\n<h2>Changes</h2>\n<ul>\n<li>Restrict builtins for ImageMath.eval() <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5923\">#5923</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Ensure JpegImagePlugin stops at the end of a truncated file <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5921\">#5921</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Fixed ImagePath.Path array handling <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5920\">#5920</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Remove consecutive duplicate tiles that only differ by their offset <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5919\">#5919</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Removed redundant part of condition <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5915\">#5915</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Explicitly enable strip chopping for large uncompressed TIFFs <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5517\">#5517</a> [<a href=\"https://github.com/kmilos\"><code>@\u200bkmilos</code></a>]</li>\n<li>Use the Windows method to get TCL functions on Cygwin <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5807\">#5807</a> [<a href=\"https://github.com/DWesl\"><code>@\u200bDWesl</code></a>]</li>\n<li>Changed error type to allow for incremental WebP parsing <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5404\">#5404</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Improved I;16 operations on big endian <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5901\">#5901</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Ensure that BMP pixel data offset does not ignore palette <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5899\">#5899</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Limit quantized palette to number of colors <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5879\">#5879</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Use latin1 encoding to decode bytes <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5870\">#5870</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Fixed palette index for zeroed color in FASTOCTREE quantize <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5869\">#5869</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>When saving RGBA to GIF, make use of first transparent palette entry <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5859\">#5859</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Pass SAMPLEFORMAT to libtiff <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5848\">#5848</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Added rounding when converting P and PA <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5824\">#5824</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Improved putdata() documentation and data handling <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5910\">#5910</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Exclude carriage return in PDF regex to help prevent ReDoS <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5912\">#5912</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Image.NONE is only used for resampling and dithers <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5908\">#5908</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Fixed freeing pointer in ImageDraw.Outline.transform <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5909\">#5909</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Add Tidelift alignment action and badge <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5763\">#5763</a> [<a href=\"https://github.com/aclark4life\"><code>@\u200baclark4life</code></a>]</li>\n<li>Replaced further direct invocations of setup.py <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5906\">#5906</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Added ImageShow support for xdg-open <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5897\">#5897</a> [<a href=\"https://github.com/m-shinder\"><code>@\u200bm-shinder</code></a>]</li>\n<li>Fixed typo <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5902\">#5902</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Switched from deprecated &quot;setup.py install&quot; to &quot;pip install .&quot; <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5896\">#5896</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Support 16-bit grayscale ImageQt conversion <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5856\">#5856</a> [<a href=\"https://github.com/cmbruns\"><code>@\u200bcmbruns</code></a>]</li>\n<li>Fixed raising OSError in _safe_read when size is greater than SAFEBLOCK <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5872\">#5872</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Convert subsequent GIF frames to RGB or RGBA <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5857\">#5857</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>WebP: Fix memory leak during decoding on failure <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5798\">#5798</a> [<a href=\"https://github.com/ilai-deutel\"><code>@\u200bilai-deutel</code></a>]</li>\n<li>Do not prematurely return in ImageFile when saving to stdout <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5665\">#5665</a> [<a href=\"https://github.com/infmagic2047\"><code>@\u200binfmagic2047</code></a>]</li>\n<li>Added support for top right and bottom right TGA orientations <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5829\">#5829</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Corrected ICNS file length in header <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5845\">#5845</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Block tile TIFF tags when saving <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5839\">#5839</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Added line width argument to ImageDraw polygon <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5694\">#5694</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Do not redeclare class each time when converting to NumPy <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5844\">#5844</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Only prevent repeated polygon pixels when drawing with transparency <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5835\">#5835</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Fix pushes_fd method signature <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5833\">#5833</a> [<a href=\"https://github.com/hoodmane\"><code>@\u200bhoodmane</code></a>]</li>\n<li>Add support for pickling TrueType fonts <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5826\">#5826</a> [<a href=\"https://github.com/hugovk\"><code>@\u200bhugovk</code></a>]</li>\n<li>Only prefer command line tools SDK on macOS over default MacOSX SDK <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5828\">#5828</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Fix compilation on 64-bit Termux <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5793\">#5793</a> [<a href=\"https://github.com/landfillbaby\"><code>@\u200blandfillbaby</code></a>]</li>\n<li>Replace 'setup.py sdist' with '-m build --sdist' <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5785\">#5785</a> [<a href=\"https://github.com/hugovk\"><code>@\u200bhugovk</code></a>]</li>\n<li>Use declarative package configuration <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5784\">#5784</a> [<a href=\"https://github.com/hugovk\"><code>@\u200bhugovk</code></a>]</li>\n<li>Use title for display in ImageShow <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5788\">#5788</a> [<a href=\"https://github.com/radarhere\"><code>@\u200bradarhere</code></a>]</li>\n<li>Fix for PyQt6 <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5775\">#5775</a> [<a href=\"https://github.com/hugovk\"><code>@\u200bhugovk</code></a>]</li>\n</ul>\n<!-- raw HTML omitted -->\n</blockquote>\n<p>... (truncated)</p>\n</details>\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/python-pillow/Pillow/blob/main/CHANGES.rst\">pillow's changelog</a>.</em></p>\n<blockquote>\n<h2>9.0.0 (2022-01-02)</h2>\n<ul>\n<li>\n<p>Restrict builtins for ImageMath.eval(). CVE-2022-22817 <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5923\">#5923</a>\n[radarhere]</p>\n</li>\n<li>\n<p>Ensure JpegImagePlugin stops at the end of a truncated file <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5921\">#5921</a>\n[radarhere]</p>\n</li>\n<li>\n<p>Fixed ImagePath.Path array handling. CVE-2022-22815, CVE-2022-22816 <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5920\">#5920</a>\n[radarhere]</p>\n</li>\n<li>\n<p>Remove consecutive duplicate tiles that only differ by their offset <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5919\">#5919</a>\n[radarhere]</p>\n</li>\n<li>\n<p>Improved I;16 operations on big endian <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5901\">#5901</a>\n[radarhere]</p>\n</li>\n<li>\n<p>Limit quantized palette to number of colors <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5879\">#5879</a>\n[radarhere]</p>\n</li>\n<li>\n<p>Fixed palette index for zeroed color in FASTOCTREE quantize <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5869\">#5869</a>\n[radarhere]</p>\n</li>\n<li>\n<p>When saving RGBA to GIF, make use of first transparent palette entry <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5859\">#5859</a>\n[radarhere]</p>\n</li>\n<li>\n<p>Pass SAMPLEFORMAT to libtiff <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5848\">#5848</a>\n[radarhere]</p>\n</li>\n<li>\n<p>Added rounding when converting P and PA <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5824\">#5824</a>\n[radarhere]</p>\n</li>\n<li>\n<p>Improved putdata() documentation and data handling <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5910\">#5910</a>\n[radarhere]</p>\n</li>\n<li>\n<p>Exclude carriage return in PDF regex to help prevent ReDoS <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5912\">#5912</a>\n[hugovk]</p>\n</li>\n<li>\n<p>Fixed freeing pointer in ImageDraw.Outline.transform <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5909\">#5909</a>\n[radarhere]</p>\n</li>\n<li>\n<p>Added ImageShow support for xdg-open <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5897\">#5897</a>\n[m-shinder, radarhere]</p>\n</li>\n<li>\n<p>Support 16-bit grayscale ImageQt conversion <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5856\">#5856</a>\n[cmbruns, radarhere]</p>\n</li>\n<li>\n<p>Convert subsequent GIF frames to RGB or RGBA <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5857\">#5857</a>\n[radarhere]</p>\n</li>\n</ul>\n<!-- raw HTML omitted -->\n</blockquote>\n<p>... (truncated)</p>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/82541b6dec8452cb612067fcebba1c5a1a2bfdc8\"><code>82541b6</code></a> 9.0.0 version bump</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/cae5ac495badd7c7ecfad8223a08f55f5d2eaacb\"><code>cae5ac4</code></a> Merge pull request <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5924\">#5924</a> from radarhere/cves</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/ed4cf7813777ad8478cac46f448bc45416a2a99e\"><code>ed4cf78</code></a> CVEs TBD</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/d7f60d1d5a746eb01d4cb3c7fb05b6593f46b0f5\"><code>d7f60d1</code></a> Merge pull request <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5923\">#5923</a> from radarhere/imagemath_eval</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/8531b01d6cdf0b70f256f93092caa2a5d91afc11\"><code>8531b01</code></a> Restrict builtins for ImageMath.eval</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/1efb1d9fabd1dfdbf7982035eca0dae7306abef1\"><code>1efb1d9</code></a> Merge pull request <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5922\">#5922</a> from radarhere/releasenotes</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/f6c78713a491764dfac576f6c42127755f2c62b3\"><code>f6c7871</code></a> Added release notes for <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5919\">#5919</a>, <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5920\">#5920</a> and <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5921\">#5921</a></li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/032d2dc3658f94718109068ac70799313e440754\"><code>032d2dc</code></a> Update CHANGES.rst [ci skip]</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/baae9ec4b67c68e3adaf1208cf54e8de5e38a6fd\"><code>baae9ec</code></a> Merge pull request <a href=\"https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5921\">#5921</a> from radarhere/jpeg_eoi</li>\n<li><a href=\"https://github.com/python-pillow/Pillow/commit/1059eb537639925c96d3245dcd73c106d4266c83\"><code>1059eb5</code></a> If appended EOI did not work, do not keep trying</li>\n<li>Additional commits viewable in <a href=\"https://github.com/python-pillow/Pillow/compare/8.2.0...9.0.0\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pillow&package-manager=pip&previous-version=8.2.0&new-version=9.0.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language\n- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language\n- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language\n- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language\n\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Bump numpy from 1.19.1 to 1.21.0\nBody: Bumps [numpy](https://github.com/numpy/numpy) from 1.19.1 to 1.21.0.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a href=\"https://github.com/numpy/numpy/releases\">numpy's releases</a>.</em></p>\n<blockquote>\n<h2>v1.21.0</h2>\n<h1>NumPy 1.21.0 Release Notes</h1>\n<p>The NumPy 1.21.0 release highlights are</p>\n<ul>\n<li>continued SIMD work covering more functions and platforms,</li>\n<li>initial work on the new dtype infrastructure and casting,</li>\n<li>universal2 wheels for Python 3.8 and Python 3.9 on Mac,</li>\n<li>improved documentation,</li>\n<li>improved annotations,</li>\n<li>new <code>PCG64DXSM</code> bitgenerator for random numbers.</li>\n</ul>\n<p>In addition there are the usual large number of bug fixes and other\nimprovements.</p>\n<p>The Python versions supported for this release are 3.7-3.9. Official\nsupport for Python 3.10 will be added when it is released.</p>\n<p>:warning:  Warning: there are unresolved problems compiling NumPy 1.21.0 with gcc-11.1 .</p>\n<ul>\n<li>Optimization level <code>-O3</code> results in many wrong warnings when running the tests.</li>\n<li>On some hardware NumPy will hang in an infinite loop.</li>\n</ul>\n<h2>New functions</h2>\n<h3>Add PCG64DXSM BitGenerator</h3>\n<p>Uses of the PCG64 BitGenerator in a massively-parallel context have\nbeen shown to have statistical weaknesses that were not apparent at the\nfirst release in numpy 1.17. Most users will never observe this weakness\nand are safe to continue to use PCG64. We have introduced a new\nPCG64DXSM BitGenerator that will eventually become the new default\nBitGenerator implementation used by <code>default_rng</code> in future releases.\nPCG64DXSM solves the statistical weakness while preserving the\nperformance and the features of PCG64.</p>\n<p>See <code>upgrading-pcg64</code> for more details.</p>\n<p>(<a href=\"https://github-redirect.dependabot.com/numpy/numpy/pull/18906\">gh-18906</a>)</p>\n<h2>Expired deprecations</h2>\n<ul>\n<li>The <code>shape</code> argument <code>numpy.unravel_index</code> cannot be\npassed as <code>dims</code> keyword argument anymore. (Was deprecated in NumPy\n1.16.)</li>\n</ul>\n<!-- raw HTML omitted -->\n</blockquote>\n<p>... (truncated)</p>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/numpy/numpy/commit/b235f9e701e14ed6f6f6dcba885f7986a833743f\"><code>b235f9e</code></a> Merge pull request <a href=\"https://github-redirect.dependabot.com/numpy/numpy/issues/19283\">#19283</a> from charris/prepare-1.21.0-release</li>\n<li><a href=\"https://github.com/numpy/numpy/commit/34aebc2824cf8c2bdbe19040b82f98f18557c8ba\"><code>34aebc2</code></a> MAINT: Update 1.21.0-notes.rst</li>\n<li><a href=\"https://github.com/numpy/numpy/commit/493b64bfe9c5396498325b87e5e80e1917555c41\"><code>493b64b</code></a> MAINT: Update 1.21.0-changelog.rst</li>\n<li><a href=\"https://github.com/numpy/numpy/commit/07d7e72ab6880c05b5fdd98482cf88982e778393\"><code>07d7e72</code></a> MAINT: Remove accidentally created directory.</li>\n<li><a href=\"https://github.com/numpy/numpy/commit/032fca5e2e9749b152ec56153f476e05efdff287\"><code>032fca5</code></a> Merge pull request <a href=\"https://github-redirect.dependabot.com/numpy/numpy/issues/19280\">#19280</a> from charris/backport-19277</li>\n<li><a href=\"https://github.com/numpy/numpy/commit/7d25b81025a50cc0368f5727c65e875ca769469a\"><code>7d25b81</code></a> BUG: Fix refcount leak in ResultType</li>\n<li><a href=\"https://github.com/numpy/numpy/commit/fa5754e8c159a37fcd9345df261cf82821088ea0\"><code>fa5754e</code></a> BUG: Add missing DECREF in new path</li>\n<li><a href=\"https://github.com/numpy/numpy/commit/61127bb4d46d523b699da1b63abaa5035670da27\"><code>61127bb</code></a> Merge pull request <a href=\"https://github-redirect.dependabot.com/numpy/numpy/issues/19268\">#19268</a> from charris/backport-19264</li>\n<li><a href=\"https://github.com/numpy/numpy/commit/143d45fff3ed9e051bdeef7bdb4df38025ea7d1c\"><code>143d45f</code></a> Merge pull request <a href=\"https://github-redirect.dependabot.com/numpy/numpy/issues/19269\">#19269</a> from charris/backport-19228</li>\n<li><a href=\"https://github.com/numpy/numpy/commit/d80e4738f781a1d206bbc04a2e863299e5f2e104\"><code>d80e473</code></a> BUG: Removed typing for == and != in dtypes</li>\n<li>Additional commits viewable in <a href=\"https://github.com/numpy/numpy/compare/v1.19.1...v1.21.0\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=numpy&package-manager=pip&previous-version=1.19.1&new-version=1.21.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language\n- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language\n- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language\n- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language\n\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: peepdf is pretty buggy on py3 so moving that out and leaving it to us\u2026\nBody: \u2026er if they want to install it",
+  "Title: Bring back api.py?\nBody: # Expected Behavior\r\n\r\nHi CAPE developers, I am trying to move to Capev2 from CuckooSandbox. I've setup an instance and I've run into a big roadblock: it looks like the v2 API is not compatible with Cuckoo, which means every integration from other apps and appliances will also break.  However, it looks like api.py (v1?) might be compatible, but it is no longer present under utils/ \r\n\r\n# Current Behavior\r\n\r\nV2 api does not have integrations with any other tools I can find (e.g.: MISP, thehive,etc...) \r\n\r\n\r\n## Steps to Reproduce\r\nAttempt to use Capev2 with a cuckoo api client.\r\n\r\n## Context\r\n\r\nI know deprecated means deprecated, but can you make the old api.py available until all the vendors/projects out there write code to support your new api? Since cuckoo is no longer supported, this project seems to be the alternative (actually a lot better if you ask me!), it would be great if you can help us make the old api available.\r\n\r\nThank you for working on this project!\nComment: hello, no we won't reintroduce what we are not gonna to maintain it. if you miss any integration, you can easily add what you need! we don't care about comparability with cuckoo v2 is dead, v3 is not production ready. is easy to add if in any integration and make it compatible with anything\r\n\r\nfor vendors/projects, no still not make sense, update their code integration if you need their tools. \nComment: @doomedraven Ok, that is understandable if you are not willing to support it. \r\n\r\nUnfortunately, writing the code for vendors is the easy part, getting them to accept the code so that others can use it and maintaining dozens (hundreds?) of api clients is the hard part. I hope in a few years more and more people start using the new CAPE api. \nComment: Well if vendors doesnt want to acept, people who needs it, always can fork\nthem, if they dont support community\n\nEl lun., 14 feb. 2022 4:34, Michael ***@***.***> escribi\u00f3:\n\n> @doomedraven <https://github.com/doomedraven> Ok, that is understandable\n> if you are not willing to support it.\n>\n> Unfortunately, writing the code for vendors is the easy part, getting them\n> to accept the code so that others can use it and maintaining dozens\n> (hundreds?) of api clients is the hard part. I hope in a few years more and\n> more people start using the new CAPE api.\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/759#issuecomment-1038598722>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH336FCTT57IQKCY6K33U3BZ5DANCNFSM5OIOHHKQ>\n> .\n> Triage notifications on the go with GitHub Mobile for iOS\n> <https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675>\n> or Android\n> <https://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub>.\n>\n> You are receiving this because you were mentioned.Message ID:\n> ***@***.***>\n>\n",
+  "Title: Fix not network bugs\nBody: a small bug fix.\nComment: Thank you",
+  "Title: Small template fix for pdf results\nBody: None",
+  "Title: Bump django from 3.2.11 to 3.2.12\nBody: Bumps [django](https://github.com/django/django) from 3.2.11 to 3.2.12.\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/django/django/commit/fdf209eab8949ddc345aa0212b349c79fc6fdebb\"><code>fdf209e</code></a> [3.2.x] Bumped version for 3.2.12 release.</li>\n<li><a href=\"https://github.com/django/django/commit/d16133568ef9c9b42cb7a08bdf9ff3feec2e5468\"><code>d161335</code></a> [3.2.x] Fixed CVE-2022-23833 -- Fixed DoS possiblity in file uploads.</li>\n<li><a href=\"https://github.com/django/django/commit/1a1e8278c46418bde24c86a65443b0674bae65e2\"><code>1a1e827</code></a> [3.2.x] Fixed CVE-2022-22818 -- Fixed possible XSS via {% debug %} template tag.</li>\n<li><a href=\"https://github.com/django/django/commit/a7e89fe77683af562fa00143cd1af32e20425797\"><code>a7e89fe</code></a> [3.2.x] Added stub release notes for 3.2.12 and 2.2.27.</li>\n<li><a href=\"https://github.com/django/django/commit/027f4c4ceb93c7f7b45fecf94b7db1defc5c4064\"><code>027f4c4</code></a> [3.2.x] Added CVE-2021-45115, CVE-2021-45116, and CVE-2021-45452 to security ...</li>\n<li><a href=\"https://github.com/django/django/commit/0a9a46a1d72e556585298ad2f6346461729e6b91\"><code>0a9a46a</code></a> [3.2.x] Post-release version bump.</li>\n<li>See full diff in <a href=\"https://github.com/django/django/compare/3.2.11...3.2.12\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=django&package-manager=pip&previous-version=3.2.11&new-version=3.2.12)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language\n- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language\n- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language\n- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language\n\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Fix Remcos config extractor - get version string\nBody: None\nComment: thanks",
+  "Title: Small changes\nBody: None\nComment: hello thanks, packages are not used anymore, it based on sflock, but i will backport it",
+  "Title: Kek\nBody: None",
+  "Title: Update Remcos config parser\nBody: None\nComment: i have moved from mwcp to pure cape, tested it with my extractor, only 1 sample was handle by this one\r\n\r\ni see that many fields contains binary data as `'Unknown56': b'0\\x81\\xfe0\\x81\\xa6\\xa0\\x03\\x02\\x`",
+  "Title: I want to display the analysis screen. But I get an error message.\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ ] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nI want to display the analysis screen.\r\n\r\n# Current Behavior\r\n\r\nAfter the analysis status is reported, I tried to display the analysis screen.\r\nHowever, I get the following error message:\r\n![image](https://user-images.githubusercontent.com/99252295/152967976-17069c83-20c4-493c-8ea2-4429e523aba2.png)\r\n\r\nThe following message was output to \"/opt/CAPEv2/log/process.log\".\r\n![image](https://user-images.githubusercontent.com/99252295/152968103-04b8ed33-ddcb-4055-b8c4-230168fe1329.png)\r\n\r\nThis environment was installed by running the script \"cape2.sh\" on February 3rd.\r\nhttps://github.com/doomedraven/Tools/blob/master/Sandbox/cape2.sh\r\nAfter installation, I ran the following command to match the version with other Cape servers.\r\n`# git checkout a8e8d706ed23d19fb54e62c8ac5fc983e06cab71`\r\n`# git stash`\r\nThe mongodb service is active.\r\n\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Perform file analysis.\r\n2. Click the link to display the analysis screen.\r\n\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | a8e8d706ed23d19fb54e62c8ac5fc983e06cab71\r\n| OS version       | ubuntu 20.04.1 LTS installed Python 3.8.10\r\n\r\n\r\n\nComment: hello can you post the version of pymongo? `pip3 freeze|grep pymongo`\nComment: well i see that code doesn't match with our codebase, note error on your screen and our code\r\n\r\n`if \"cuckoo_schema\" in mongo_collection_names():`\r\n\r\nupdate to latest cape, restart processing and that should be all\nComment: please in future before open issues update to latest first always\nComment: Hello. Thank you for your quick reply.\r\nThanks to the hint you gave me, I noticed that the version of pymongo is too new.\r\n\r\n```\r\n# pip3 freeze | grep pymongo\r\npymongo==4.0.1\r\n```\r\n\r\nBy downgrading the version of pymongo to \"3.12.0\", I was able to display the analysis screen.\r\nWe will consider updating to the latest cape.\r\n\r\nThank you for your continued support.",
+  "Title: Fix pdb_path bug\nBody: - Fix  byte compare string\r\n- add bytearray to function `bytes2str()`\nComment: thank you",
+  "Title: path and cape_yara preference\nBody: None",
+  "Title: CAPEv2 generates an exception during execution Amadey packed using Obsidium\nBody: Binary sha256: 93bbc7e0f489125883985855949ed8a0929d44b5fea0c17db9113fff830793c9\r\n\r\nException:\r\n\r\n![amadey](https://user-images.githubusercontent.com/55275842/152525175-aa16d86f-4bca-42dd-8b33-1e52d17e43fb.jpg)\r\n\r\n\nComment: Thank you for reporting this issue. Initial triage suggested this is a hook issue, and a hook sweep has located the breaking hook as CreateProcessInternalW - it is of note that the sample detonates correctly with exclude-apis=CreateProcessInternalW\r\n\r\nThe next phase of work is to identify why this hook is causing this issue and to hopefully resolve the issue whilst leaving this important hook working properly - watch this space.\nComment: The rabbit hole lead down into the loader where a bug in checking if a process has already been IAT patched (injected) was causing this check to fail. It's fixed in https://github.com/kevoreilly/CAPEv2/commit/7d4979589e41cf4a4c92860cea559f946bb163de\r\n\r\nThanks again for reporting this issue and helping to make CAPE better.",
+  "Title: Use latest ubuntu version in CI/CD\nBody: None\nComment: thanks",
+  "Title: #745 fix handling of missing tasks in APIv2 routes\nBody: Fixes #745 \nComment: thanks",
+  "Title: APIv2 crashes in tasks_status and tasks_view when tasks don't exist\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account acctivation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\r\n\r\n# Current Behavior\r\n\r\nAPIv2 crashes when missing task ids are given to the following routes:\r\n- tasks/view/<task_id>\r\n- tasks/status/<task_id>\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nGive invalid task ids to either route.",
+  "Title: Remove redundant black_formatter folder\nBody: None",
+  "Title: Remove redundant int base parameter\nBody: None",
+  "Title: Cleanup of remaining parsers\nBody: None",
+  "Title: Cleanup of modules/processing/parsers/CAPE folder\nBody: Some changes that I made:\r\n- Removed redundant outdated Python checks\r\n- Shifted code blocks to remove unnecessary indentations\r\n- Mainly minor/shifting of code for it to be more readable (hopefully) (no code logic was changed)\r\n\r\nI apologise if this commit is relatively large, but I have no idea how to split it up even further\nComment: wow, thats fine if that is big but when change is you know more less similar, is easier to review, than change tons of different things, but my main point is to core code, that is hard part to review, the rest is kinda ok",
+  "Title: Add black linting for py_disabled files\nBody: None",
+  "Title: Add automatic CI/CD linting with black\nBody: None",
+  "Title: Run latest black version and update github workflow\nBody: _Note_: No need to independently install each linter (it's a part of each github workflow)\nComment: thank you a lot for work",
+  "Title: Remove redundant python version checking\nBody: _Note_: Feel free to revert d1544bbba5bef11be0c7a419de01bfec0559fa67 if you feel that we should not edit 3rd party code\nComment: thats fine thanks, i just hope the authors of those projects would like the code update/cleanup as i love ",
+  "Title: Changes to `pyproject.toml`\nBody: Edit `pyproject.toml` to include .py_disabled and fix compatibility issues between `black` and `isort`\r\nAs a result, we no longer have to skip file \"lib/cuckoo/common/integrations/capa.py\" for `isort`\r\n\r\nAlso ran black (and isort) and all the files again\nComment: By default, isort will look at `pyproject.toml` for configuration settings, so we don't need to specify the settings in the github workflow\nComment: thank you",
+  "Title: Add missing maxsplit arguments for `.split`\nBody: None\nComment: thanks",
+  "Title: no pycrypto\nBody: None",
+  "Title: Use or for if checking\nBody: None\nComment: thanks",
+  "Title: Auxiliary and machinery modules cleanup\nBody: Some changes that I made:\r\n- Removed redundant outdated Python checks\r\n- Shifted code blocks to remove unnecessary indentations\r\n\r\nShould be more readable in general, let me know if you disagree with any of the changes made\nComment: looks good, thank you, just few things\r\n\r\n1. `return None` is the same that just `return` as far as i know\r\n2. about `subproces.check_output` if we remove return value storage, it will print to stdout, so i have 2 suggestions.\r\n    * add `stdout=DEVNUL` <- i prefer this one\r\n    * or `_ = subprocess.check_output`\r\n    \r\nwhat do you think?\nComment: I think we should stick to using `return None` because the function does return None instead of simply returning (which I would use only in places to break out of loops). I will add subprocess to redirect its stdout to `DEVNULL` , thanks for the input :)\nComment: ok make sense, thank you\nComment: Actually, before merging, I took a look and I don't think `subprocess.check_output` prints to stdout, I'll make changes accordingly\nComment: well i tested before make comment, and it gave me output in stdout\nComment: May I know what's the output/command you're running? I can't seem to replicate on my end\nComment: to simulate ssh and cat\r\n\r\n```\r\n>>> subprocess.check_output([\"ssh\", \"<removed>\",  \"cat\", \"/etc/passwd\"])\r\nb\"root:x:0:0:root:/root:/bin/ba<removed>\r\n```\nComment: anything that is not stored to output will print, we could change it from check_output as it forces subprocess to return output and not just return comamnd, but with stdout=DEVNUL if should be fine\nComment: Ahh I see it's because you're running it in the Python interpreter, which will print the return value of the function you're running. Try running the command `subprocess.check_output([\"ssh\", \"<removed>\",  \"cat\", \"/etc/passwd\"])` in a python file and running the python file itself from the command line and you won't see the output!\nComment: ok yes you are right\nComment: i have cleaned a bit more vbox machinery, but i hope nobody uses that as we not even care/supports that https://docs.oracle.com/en/virtualization/virtualbox/6.0/user/vboxmanage-debugvm.html",
+  "Title: Fix projection handling in mongo_find.\nBody: None",
+  "Title: Fix too many parameters\nBody: None\nComment: thank you strange how i never got this before\nComment: Not very clear, I saw it when I debug today.",
+  "Title: Add run statistics for task.\nBody: add run statistics for task and add it to db.\nComment: hello thank you, but i have suggestion in implementation\r\n\r\nuse reporting plugin under `reporting`, set order inside as mongodb.py +1 + reporting.conf conf configuration\r\n\r\nalso what is the goal? to show that on webgui? if yes i would suggest to move logic to mongo/es for counting it will be really faster then python\r\n\r\nlet me know if you think si better in current way\r\n\nComment: hello, I just saw that there are related fields in postgreSql, but they are not implemented, so try to implement, as you said, it is indeed a good method to count these fields in the `reporting`, but if you write the database in the `reporting` \uff0c Is it a good way to do it\uff1f\nComment: at the end is depending of the usage of those data, to show on webgui i would prefer to have that in mongo/ES, but even to fill those in db, i think it still would be good to move code from plugins to reporting module as you can access db from there too. if you do that in reporting you not necessary need to write that to mongo/es, is just helps to get post processing data in final stage and you can do stats like this, you not even need to set order in reporting for this, i can show you example how it would look after my daily job\nComment: ok, I will close this pr and try to implement in reporting(it would be better if you could give me an example, thanks a lot. : ) ).\nComment: you don't need to close, you can just push changes to the same PR\r\n\r\nfor example, just see any reporting module, and you just need to import Database, see `modules/reporting/callback.py` how it inits db \r\n```\r\nfrom lib.cuckoo.core.database import  Database\r\nmain_db = Database()\r\n```\r\n\r\nthen you can can call your function, and one more thing could you add any parent key to this\r\n\r\n```\r\ninstead directly write to root \r\ndetail[\"dropped_files\"]\r\n\r\ndo something like\r\ndetail[\"tasks_stats\"][\"dropped_files\"]\r\n```\nComment: im fine with poc also, i always can change/improve what needed so don't worry about that\nComment: oh, That's very nice, I understanded. thanks a lot again.\nComment: I have changed it to reporting.\nComment: thanks, i did small cleanup, but now it looks good as reporting module\nComment: Also thank you, I learned a lot from this project and hope to help it get better.\nComment: you are welcome, you did all the job, i just had to make small adjust, if you want to get the hidden gems, check `lib/cuckoo/common/abstracts.py`  classes of Processing, Signature, Reporting, it has common func that helps to write less code and do more ;) \nComment: ok, i'll take a good look at it.",
+  "Title: Mark certain strings as 'raw' strings.\nBody: Stop the warnings about invalid escape sequences.\nComment: i personally vote to remove those 2 first extractors, they are not even py3, and from 2016",
+  "Title: Update web.conf\nBody: Just a little reminder to set the VT API key in the right place.\nComment: changed to the description that i told you in another PR, thanks for spot not working part, i never use that feature :D\nComment: Sure thing, happy to help whenever I can!\nComment: let us know if you find something else or have any suggestion",
+  "Title: Add empty VTDL_PRIV_KEY to local_settings.py\nBody: It took me a few seconds to figure out why virustotal uploading didn't work, after setting \"[vtupload]\" to \"enabled = yes\" in conf/web.conf.\r\nThis makes it easier to find after a fresh installation.\nComment: thanks, i have fixed that to just replace that old depricated field with `VTDL_KEY` that is set in aux under `virustotaldl` i guess this requires a bit more simplification to bake them all together",
+  "Title: Update _reports.html\nBody: There's a typo in line 14, it has \"htmlsumary\" instead of \"htmlsummary\".\nComment: thanks",
+  "Title: Allow custom config dirs that extend the default ones.\nBody: A new custom/conf/ directory can be used to hold additional\r\nconfiguration files that extend the ones in the top-level conf\r\ndirectory. See the custom/README.md for more information.\r\n\r\n`.conf.d` (e.g. `custom/conf/reporting.conf.d/`) directories may also\r\nbe used to store additional configuration.\r\n\r\nIn addition, for Config() objects, only read the files once, so that if,\r\nsay, Config(\"processing\") is created in multiple places, they'll both\r\nrefer to the same object and the conf files would only be read once.\r\n\r\nA new AnalysisConfig() class was created to separate the distinction\r\nbetween these types of \"singleton\" Config objects that can read from\r\nmultiple directories versus ones that just read from an analysis.conf\r\n(or some other single file).\r\n\r\nAllow environment variables to be referenced in config files.\r\nAllow config files to use values that are formatted like\r\n%(ENV:SOME_ENVIRONMENT_VARIABLE)s. In certain deployment strategies,\r\nthis makes it easier to deal with secrets since they don't need to be\r\nstored on disk anywhere.\nComment: as far as i understand this commit overwrites this one no? https://github.com/kevoreilly/CAPEv2/pull/711\nComment: yes. I'll close that one.\nComment: oops. I can't, because you created it. :-)\nComment: ok closing that one\r\n\nComment: tested, works fine, thanks",
+  "Title: Bump ipython from 7.25.0 to 7.31.1\nBody: Bumps [ipython](https://github.com/ipython/ipython) from 7.25.0 to 7.31.1.\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/ipython/ipython/commit/e321e760a4aefbe872e1703b24a19a28f87619c9\"><code>e321e76</code></a> release 7.31.1</li>\n<li><a href=\"https://github.com/ipython/ipython/commit/67ca2b3aa9039438e6f80e3fccca556f26100b4d\"><code>67ca2b3</code></a> Merge pull request from GHSA-pq7m-3gw7-gq5x</li>\n<li><a href=\"https://github.com/ipython/ipython/commit/27943302db129464b33bae8cb6cfa552b52b46c2\"><code>2794330</code></a> back to dev</li>\n<li><a href=\"https://github.com/ipython/ipython/commit/be343e755af76193909f13027d87561b1765b5ae\"><code>be343e7</code></a> release 7.31.0</li>\n<li><a href=\"https://github.com/ipython/ipython/commit/0fcf2c43facb7ba5144cdcc47118aa1e55085c20\"><code>0fcf2c4</code></a> Merge pull request <a href=\"https://github-redirect.dependabot.com/ipython/ipython/issues/13428\">#13428</a> from meeseeksmachine/auto-backport-of-pr-13427-on-7.x</li>\n<li><a href=\"https://github.com/ipython/ipython/commit/b8db9b1371fff1b89d0f058e19a48a4ca7b93c51\"><code>b8db9b1</code></a> Backport PR <a href=\"https://github-redirect.dependabot.com/ipython/ipython/issues/13427\">#13427</a>: wn 731</li>\n<li><a href=\"https://github.com/ipython/ipython/commit/7f253dcf7b1c3a791a98d44b0dfc848d62bd27df\"><code>7f253dc</code></a> Merge pull request <a href=\"https://github-redirect.dependabot.com/ipython/ipython/issues/13412\">#13412</a> from bnavigator/backport-inspect</li>\n<li><a href=\"https://github.com/ipython/ipython/commit/4f26796cf368d24edadbb3d62e052e6aa4ddc820\"><code>4f26796</code></a> fix xxlimited_35 import name</li>\n<li><a href=\"https://github.com/ipython/ipython/commit/77ca4a6312374f0659fb6973925e5b696d5dc74e\"><code>77ca4a6</code></a> don't run nose-based iptest on py310, only pytest</li>\n<li><a href=\"https://github.com/ipython/ipython/commit/533e5094aa36b51549cf6a316fc439c6404643c9\"><code>533e509</code></a> back to decorator skip</li>\n<li>Additional commits viewable in <a href=\"https://github.com/ipython/ipython/compare/7.25.0...7.31.1\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=ipython&package-manager=pip&previous-version=7.25.0&new-version=7.31.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language\n- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language\n- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language\n- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language\n\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: MongoDB error \"connection pool paused\" after updating to the last version of CAPE\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nUpdate CAPE to the last version, clean everything and continue using it\r\n\r\n# Current Behavior\r\n\r\nI've made a git pull, and then updated requirements.txt\r\nI'm using postgresql as database and in fact i've made a clean of everything.\r\n\r\nNow, during the processing, i get a mongodb error \"connection pool paused\" and nothing is inserted.\r\n(ofcourse it was working before the update :) )\r\n\r\n# Failure Information (for bugs)\r\n\r\n## Steps to Reproduce\r\n\r\n1. Git pull (or git clone from zero, also tested)\r\n2. Check the confing files\r\n3. pip install -r requirements.txt\r\n4. upload a sample and wait for the processing\r\n\r\n## Context\r\n\r\nLast CAPE version from this morning\r\nMongodb 5.0.4\r\nUbuntu 20.04\r\n\r\n## Failure Logs\r\n\r\n![Captura de pantalla de 2022-01-21 09-41-21](https://user-images.githubusercontent.com/2705883/150494773-b748237b-62f2-4a7d-aca4-1fedf51051d6.png)\r\n\r\n\nComment: interesting, running it since yesterday without any problem, gonna check it\nComment: i did full cleanup of my dev box, i can't reproduce it, are you sure that your mongo itself is up?\nComment: i uninstalled mongo, reinstalled the 5.0.5 version and cheked that its working connecting with robo3t client, and mongodb seems to be working well, and cape keeps throwing the same error.\nComment: strange, the sad that is that i can't reproduce that, i have tested that in dev, and that in production in 5 servers for almost 2 days without problems %)\nComment: i have added handler for autoreconnect that i found arround, that should solve your problem, can you test it please? \nComment: sure, i'll check ASAP and post feedback\nComment: its now working like a charm! ty!\nComment: thanks for feedback, glad that solved your problem, let us know if you will find any other",
+  "Title: Update api tasks_view\nBody: Update api `tasks_view()` to add detections, malscore and other fields from analysis information.\nComment: thank you",
+  "Title: Fix static results tab\nBody: virustotal result are no longer displayed on the static tab, should not be a condition for the tab\nComment: hm strings neither so i guess we can remove them too\nComment: No strings are used to create static results for vbs and js packages\n\nOn Fri, Jan 21, 2022 at 3:08 AM doomedraven ***@***.***>\nwrote:\n\n> hm strings neither so i guess we can remove them too\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/pull/720#issuecomment-1018273824>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AB3X3YBO4NZFW5AQBG6L47LUXEH77ANCNFSM5MOEPASQ>\n> .\n> Triage notifications on the go with GitHub Mobile for iOS\n> <https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675>\n> or Android\n> <https://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub>.\n>\n> You are receiving this because you authored the thread.Message ID:\n> ***@***.***>\n>\n-- \nLorenzo\n\n\u201cHappiness is not the absence of problems, but the ability to deal with\nthem.\" - Albert Einstein\n",
+  "Title: Revert 'Revert Fix machine deadlock and optimization'\nBody: I'm terribly sorry that I may have messed up something (I didn't consider the multithreading), I think it might be better to leave it as-is. maybe restarting the service is the best solution.\nComment: np :) thanks for trying to find the solution",
+  "Title: Revert Fix machine deadlock and optimization\nBody: I realized that the last  fix #712 may not be good (may cause the task to be in the running state), I increased the check of the machine startup to ensure that some parameters and states of the machine startup are correct.\nComment: thank you",
+  "Title: Work around a bug in pip when doing a fresh install.\nBody: Steps to reproduce bug:\r\n - Create a fresh virtualenv\r\n - pip install -r requirements.txt\r\nThis results in:\r\n```\r\nERROR: In --require-hashes mode, all requirements must have their\r\nversions pinned with ==. These do not:\r\n    requests from\r\nhttps://files.pythonhosted.org/packages/2d/61/08076519c80041bc0ffa1a8af0cbd3bf3e2b62af10435d269a9d0f40564d/requests-2.27.1-py2.py3-none-any.whl#sha256=f22fa1e554c9ddfd16e6e41ac79759e17be9e492b3587efa038054674760e72d\r\n(from django-allauth==0.45.0->-r requirements.txt (line 101))\r\n```\r\nThis is because of the bug in pip outlined in\r\nhttps://github.com/pypa/pip/issues/9644.\r\ndjango-allauth requires `requests` but we only had\r\n`requests[security,socks]` in our requirements.txt and pip didn't see\r\nthat as satisfying the `requests` requirement, so it pulls down the\r\nlatest version of `requests`, which we don't have hashes for.\r\n\r\nThis just copies the lines for `requests` without the extras in order to\r\nsatisfy that dependency.\nComment: thanks",
+  "Title: json.dumps in python 3+ does not support encoding\nBody: Full error\r\n```\r\nERROR: Failed to run the reporting module \"CompressResults\":\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 703, in process\r\n    current.run(self.results)\r\n  File \"/opt/CAPEv2/utils/../modules/reporting/compressresults.py\", line 38, in run\r\n    cape_json = json.dumps(results[keyword], encoding='latin-1', ensure_ascii=False).encode('utf8')\r\n  File \"/usr/lib/python3.8/json/__init__.py\", line 234, in dumps\r\n    return cls(\r\nTypeError: __init__() got an unexpected keyword argument 'encoding'\r\n```\nComment: thanks, but bear in mind that compression disables search, as it won't be able to go and get what you want",
+  "Title: mongo abstraction\nBody: None",
+  "Title: Config object not subscriptable error fix\nBody: None\nComment: thank you",
+  "Title: Fix open_exclusive failed\nBody: Fix open_exclusive failed when file already exists\r\n```bash\r\n2022-01-19 01:11:41,103 [lib.cuckoo.core.resultserver] ERROR: Analyzer for task #144 tried to overwrite an existing file: /opt/CAPEv2/storage/analyses/144/procdump/e31e1c65f05c523221e67e578d912ecf8e11f8a84e05ac3a6173eba766a0c1f0\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/resultserver.py\", line 208, in handle\r\n    self.fd = open_exclusive(file_path)\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/files.py\", line 37, in open_exclusive\r\n    fd = os.open(path, os.O_CREAT | os.O_EXCL | os.O_WRONLY, 0o644)\r\nFileExistsError: [Errno 17] File exists: '/opt/CAPEv2/storage/analyses/144/procdump/e31e1c65f05c523221e67e578d912ecf8e11f8a84e05ac3a6173eba766a0c1f0'\r\n```\nComment: thank you",
+  "Title: Fix machine deadlock\nBody: Fix the problem that the machine may deadlock in abnormal state.\nComment: Thank you ",
+  "Title: requires hard testing \"Allow custom config dirs that extend the default ones.\"\"\nBody: Reverts kevoreilly/CAPEv2#710\nComment: @tbeadle hey i just did a quick look and what is breaking is that you changed Config under analyzer folder but there is no such function/class is why it breaks the whole analysis",
+  "Title: Revert \"Allow custom config dirs that extend the default ones.\"\nBody: Reverts kevoreilly/CAPEv2#707",
+  "Title: Bump django from 3.2.5 to 3.2.11\nBody: Bumps [django](https://github.com/django/django) from 3.2.5 to 3.2.11.\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/django/django/commit/6e499a28ac6ec10c2f0f77b92cab49fb8f8df419\"><code>6e499a2</code></a> [3.2.x] Bumped version for 3.2.11 release.</li>\n<li><a href=\"https://github.com/django/django/commit/8d2f7cff76200cbd2337b2cf1707e383eb1fb54b\"><code>8d2f7cf</code></a> [3.2.x] Fixed CVE-2021-45452 -- Fixed potential path traversal in storage sub...</li>\n<li><a href=\"https://github.com/django/django/commit/c7fe895bca06daf12cc1670b56eaf72a1ef27a16\"><code>c7fe895</code></a> [3.2.x] Fixed CVE-2021-45116 -- Fixed potential information disclosure in dic...</li>\n<li><a href=\"https://github.com/django/django/commit/a8b32fe13bcaed1c0b772fdc53de84abc224fb20\"><code>a8b32fe</code></a> [3.2.x] Fixed CVE-2021-45115 -- Prevented DoS vector in UserAttributeSimilari...</li>\n<li><a href=\"https://github.com/django/django/commit/b0aa0709a58b9523a7a0b78088bf81c23053eba0\"><code>b0aa070</code></a> [3.2.x] Added stub release notes for 3.2.11, and 2.2.26 releases.</li>\n<li><a href=\"https://github.com/django/django/commit/ae242235db910a94ea476b7a3efacf8dbab31c4f\"><code>ae24223</code></a> [3.2.x] Refs <a href=\"https://github-redirect.dependabot.com/django/django/issues/33365\">#33365</a>, Refs <a href=\"https://github-redirect.dependabot.com/django/django/issues/30530\">#30530</a> -- Doc'd re_path() behavior change in Django...</li>\n<li><a href=\"https://github.com/django/django/commit/ecd27938972bfc48bbfeaa642d5906ccc8c6d6e2\"><code>ecd2793</code></a> [3.2.x] Added CVE-2021-44420 to security archive.</li>\n<li><a href=\"https://github.com/django/django/commit/1cea03ab00551d3a5d9f359777129676dfa4ab26\"><code>1cea03a</code></a> [3.2.x] Post-release version bump.</li>\n<li><a href=\"https://github.com/django/django/commit/0153a63a674937e4a56d9d5e4ca2d629b011fbde\"><code>0153a63</code></a> [3.2.x] Bumped version for 3.2.10 release.</li>\n<li><a href=\"https://github.com/django/django/commit/333c65603032c377e682cdbd7388657a5463a05a\"><code>333c656</code></a> [3.2.x] Fixed <a href=\"https://github-redirect.dependabot.com/django/django/issues/30530\">#30530</a>, CVE-2021-44420 -- Fixed potential bypass of an upstream...</li>\n<li>Additional commits viewable in <a href=\"https://github.com/django/django/compare/3.2.5...3.2.11\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=django&package-manager=pip&previous-version=3.2.5&new-version=3.2.11)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language\n- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language\n- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language\n- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language\n\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>\nComment: OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting `@dependabot ignore this major version` or `@dependabot ignore this minor version`.\n\nIf you change your mind, just re-open this PR and I'll resolve any conflicts on it.",
+  "Title: Bump lxml from 4.6.3 to 4.6.5\nBody: Bumps [lxml](https://github.com/lxml/lxml) from 4.6.3 to 4.6.5.\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/lxml/lxml/blob/master/CHANGES.txt\">lxml's changelog</a>.</em></p>\n<blockquote>\n<h1>4.6.5 (2021-12-12)</h1>\n<h2>Bugs fixed</h2>\n<ul>\n<li>\n<p>A vulnerability (GHSL-2021-1038) in the HTML cleaner allowed sneaking script\ncontent through SVG images (CVE-2021-43818).</p>\n</li>\n<li>\n<p>A vulnerability (GHSL-2021-1037) in the HTML cleaner allowed sneaking script\ncontent through CSS imports and other crafted constructs (CVE-2021-43818).</p>\n</li>\n</ul>\n<h1>4.6.4 (2021-11-01)</h1>\n<h2>Features added</h2>\n<ul>\n<li>\n<p>GH#317: A new property <code>system_url</code> was added to DTD entities.\nPatch by Thirdegree.</p>\n</li>\n<li>\n<p>GH#314: The <code>STATIC_*</code> variables in <code>setup.py</code> can now be passed via env vars.\nPatch by Isaac Jurado.</p>\n</li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/lxml/lxml/commit/a9611ba80bc5196c1dd07a0b1964fcb603695d63\"><code>a9611ba</code></a> Fix a test in Py2.</li>\n<li><a href=\"https://github.com/lxml/lxml/commit/a3eacbc0dcf1de1c822ec29fb7d090a4b1712a9c\"><code>a3eacbc</code></a> Prepare release of 4.6.5.</li>\n<li><a href=\"https://github.com/lxml/lxml/commit/b7ea6871bd751b588868cf85b7784211f2c12fe7\"><code>b7ea687</code></a> Update changelog.</li>\n<li><a href=\"https://github.com/lxml/lxml/commit/69a747356655158fdf9abaecea5feafb3bd6b5f5\"><code>69a7473</code></a> Cleaner: cover some more cases where scripts could sneak through in specially...</li>\n<li><a href=\"https://github.com/lxml/lxml/commit/54d2985a36184a4b36017a6000fa4d11411f7292\"><code>54d2985</code></a> Fix condition in test decorator.</li>\n<li><a href=\"https://github.com/lxml/lxml/commit/4b220b5ee6f53312418004d830d37cef4fbc1681\"><code>4b220b5</code></a> Use the non-depcrecated TextTestResult instead of _TextTestResult (<a href=\"https://github-redirect.dependabot.com/lxml/lxml/issues/333\">GH-333</a>)</li>\n<li><a href=\"https://github.com/lxml/lxml/commit/d85c6de992886dd13f6b7acb8e549674d313f6f8\"><code>d85c6de</code></a> Exclude a test when using the macOS system libraries because it fails with li...</li>\n<li><a href=\"https://github.com/lxml/lxml/commit/cd4bec9cb62b3134b09494bd0ba6b6bc11d184df\"><code>cd4bec9</code></a> Add macOS-M1 as wheel build platform.</li>\n<li><a href=\"https://github.com/lxml/lxml/commit/fd0d4713f258f77e57d289415001d5b9ce04ce53\"><code>fd0d471</code></a> Install automake and libtool in macOS build to be able to install the latest ...</li>\n<li><a href=\"https://github.com/lxml/lxml/commit/f2330237440df7e8f39c3ad1b1aa8852be3b27c0\"><code>f233023</code></a> Cleaner: Remove SVG image data URLs since they can embed script content.</li>\n<li>Additional commits viewable in <a href=\"https://github.com/lxml/lxml/compare/lxml-4.6.3...lxml-4.6.5\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=lxml&package-manager=pip&previous-version=4.6.3&new-version=4.6.5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language\n- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language\n- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language\n- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language\n\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>\nComment: OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting `@dependabot ignore this major version` or `@dependabot ignore this minor version`.\n\nIf you change your mind, just re-open this PR and I'll resolve any conflicts on it.",
+  "Title: Allow custom config dirs that extend the default ones.\nBody: A new `custom/conf/` directory can be used to hold additional\r\nconfiguration files that extend the ones in the top-level `conf`\r\ndirectory. See the `custom/README.md` for more information.\r\n\r\nIn addition, for Config() objects, only read the files once, so that if,\r\nsay Config(\"processing\") is created in multiple places, they'll both\r\nrefer to the same object and the conf files would only be read once.\r\n\r\nA new AnalysisConfig() class was created to separate the distinction\r\nbetween these types of \"singleton\" Config objects that can read from\r\nmultiple directories versus ones that just read from an analysis.conf\r\n(or some other single file).\r\n\r\nAllow environment variables to be referenced in config files.\r\nAllow config files to use values that are formatted like\r\n`%(ENV:SOME_ENVIRONMENT_VARIABLE)s`. In certain deployment strategies,\r\nthis makes it easier to deal with secrets since they don't need to be\r\nstored on disk anywhere.\nComment: thank you\nComment: this doesn't work, it breaks analysis again, i will keep this on hold till i will have spare time to decently test it",
+  "Title: Fix quarantine submission unicode bug\nBody: when submission a quarantine that have unicode string may cause the bug, dynamic analysis cannot be performed.",
+  "Title: Fix url not work\nBody: Because deleted `Task.tags.is_(None)` in fetch() of database.py,causes the url not be filtered into cuckoo's tasks.I add a tags for url.\nComment: oh damn, nice catch",
+  "Title: Convert to f-string for lib folder\nBody: Changes done:\r\n1) Convert strings to f-strings (other than for logging)\r\n2) Standardise logging (no full-stop at the end)\r\n3) Removed redundant `print` statements (if logging is already done)\r\n4) 2 changes in analyzer folder that were missed out\r\n\r\nAll files have been run through `black`\r\n\r\nNote that files in `lib/cuckoo/pdftools` have not been modified as they are from someone else's repository, do let me know if you would like me to refactorise those code.\nComment: thank you, about the 3rd part repos, if you have time you can do that and push to their repo. otherwise it will hard to keep it up to date and properly apply all your changes",
+  "Title: Revert recent config related changes\nBody: The change that was recently made to allow for multiple config directories requires that Config.initialize() be called before any modules that have top-level Config objects created are imported. This was handled find in cuckoo.py, but there are plenty of other scripts that have not been addressed. I'll look at how to more elegantly address this problem.\nComment: Thanks",
+  "Title: add a example for zexecreport in reporting.conf\nBody: This is related to the module added in kevoreilly/community/pull/229 .",
+  "Title: Update docs regarding the recent config file-related changes.\nBody: Late documentation is better than no documentation!\nComment: Thanks",
+  "Title: Allow environment variables to be referenced in config files.\nBody: Allow config files to use values that are formatted like\r\n`%(ENV:SOME_ENVIRONMENT_VARIABLE)s`. In certain deployment strategies,\r\nthis makes it easier to deal with secrets since they don't need to be\r\nstored on disk anywhere.\r\n\r\nThe test case that has been added gives a normal use case.\r\n\r\nIf there are concerns over allowing this, perhaps it could be an opt-in feature via a command-line argument.\nComment: a bit of docs would be good but im not even sure where to put that",
+  "Title: WIP: ES misses load data on demand as mongo does\nBody: None\nComment: @CorraMatte  if you don't care, could you help me/point me what would be the proper way to load only specific data from ES? it would be nice to be able load data on demand and not directly return the whole blob of data, that cuts load and timings\nComment: Hi, if I understood you are looking for the \"_source\" attribute in the Elasticsearch search() method. I use it in my pull request, try to have a look on it and let me know. [Elaticsearch search method](https://elasticsearch-py.readthedocs.io/en/v7.16.3/api.html#elasticsearch.Elasticsearch.search)\nComment: thank you\nComment: oh i see that you implemented that already, what is missing as last bite is get counts of some fields like this, any tip im checking in docs but there many diff things and i don't have too much time right now, i would like to get count of array inside of `procdump`, example of mongo, any tip?\r\n\r\n```\r\n{\"$project\": {\"_id\": 0, \"procdump_size\": {\"$size\": {\"$ifNull\": [\"$procdump.sha256\", []]}}}},\r\n```\nComment: got it in a bit ugly way but it works :)\r\n\r\n```\r\nreport[value] = len(es.search(index=get_analysis_index(), query=get_query_by_info_id(task_id),  _source=[f\"{key}.sha256\"])[\"hits\"][\"hits\"][0][\"_source\"].get(key))\r\n```\nComment: I wouldn't have a fastest solution, maybe I can have a look when I can to refactor that part of the code",
+  "Title: I want to update the Cape, but I get the database error.\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ ] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nI want to update the Cape.\r\n\r\n# Current Behavior\r\n\r\nI want to update the one with commit ID dd0bf29c7f0de1f82b5ccb02e2803eb46579bdb3 to new one\r\nHowever, I get the following database error.\uff08I deleted the task in cleaners.py and then updated it\uff09\r\n\r\n```\r\nDB schema version mismatch: found 6ab863a3b510, expected 6dc79a3ee6e4. Try to apply all migrations\r\ncd utils/db_migration/ && alembic upgrade head\r\n```\r\nI executed `cd utils/db_migration/ && alembic upgrade head` according to the error, but the following error occurs\r\n```\r\nINFO  [alembic.runtime.migration] Context impl SQLiteImpl.\r\nINFO  [alembic.runtime.migration] Will assume non-transactional DDL.\r\nINFO  [alembic.runtime.migration] Running upgrade 6ab863a3b510 -> 703266a6bbc5, 2.3.1_square_hammer\r\nTraceback (most recent call last):\r\n  File \"/root/venv-cape/lib/python3.8/site-packages/sqlalchemy/engine/base.py\", line 1706, in _execute_context\r\n    self.dialect.do_execute(\r\n  File \"/root/venv-cape/lib/python3.8/site-packages/sqlalchemy/engine/default.py\", line 716, in do_execute\r\n    cursor.execute(statement, parameters)\r\nsqlite3.OperationalError: near \"alter\": syntax error\r\n\r\nThe above exception was the direct cause of the following exception:\r\n\r\nTraceback (most recent call last):\r\n  File \"/root/venv-cape/bin/alembic\", line 8, in <module>\r\n    sys.exit(main())\r\n  File \"/root/venv-cape/lib/python3.8/site-packages/alembic/config.py\", line 540, in main\r\n    CommandLine(prog=prog).main(argv=argv)\r\n  File \"/root/venv-cape/lib/python3.8/site-packages/alembic/config.py\", line 534, in main\r\n    self.run_cmd(cfg, options)\r\n  File \"/root/venv-cape/lib/python3.8/site-packages/alembic/config.py\", line 511, in run_cmd\r\n    fn(\r\n  File \"/root/venv-cape/lib/python3.8/site-packages/alembic/command.py\", line 276, in upgrade\r\n    script.run_env()\r\n  File \"/root/venv-cape/lib/python3.8/site-packages/alembic/script/base.py\", line 475, in run_env\r\n    util.load_python_file(self.dir, \"env.py\")\r\n  File \"/root/venv-cape/lib/python3.8/site-packages/alembic/util/pyfiles.py\", line 90, in load_python_file\r\n    module = load_module_py(module_id, path)\r\n  File \"/root/venv-cape/lib/python3.8/site-packages/alembic/util/compat.py\", line 177, in load_module_py\r\n    spec.loader.exec_module(module)\r\n  File \"<frozen importlib._bootstrap_external>\", line 783, in exec_module\r\n  File \"<frozen importlib._bootstrap>\", line 219, in _call_with_frames_removed\r\n  File \"./env.py\", line 69, in <module>\r\n    run_migrations_online()\r\n  File \"./env.py\", line 61, in run_migrations_online\r\n    context.run_migrations()\r\n  File \"<string>\", line 8, in run_migrations\r\n  File \"/root/venv-cape/lib/python3.8/site-packages/alembic/runtime/environment.py\", line 839, in run_migrations\r\n    self.get_context().run_migrations(**kw)\r\n  File \"/root/venv-cape/lib/python3.8/site-packages/alembic/runtime/migration.py\", line 362, in run_migrations\r\n    step.migration_fn(**kw)\r\n  File \"/opt/CAPEv2/utils/db_migration/versions/2_3_1_square_hammer.py\", line 21, in upgrade\r\n    op.execute(\"ALTER TABLE tasks alter status drop default\")\r\n  File \"<string>\", line 8, in execute\r\n  File \"<string>\", line 3, in execute\r\n  File \"/root/venv-cape/lib/python3.8/site-packages/alembic/operations/ops.py\", line 2223, in execute\r\n    return operations.invoke(op)\r\n  File \"/root/venv-cape/lib/python3.8/site-packages/alembic/operations/base.py\", line 345, in invoke\r\n    return fn(self, operation)\r\n  File \"/root/venv-cape/lib/python3.8/site-packages/alembic/operations/toimpl.py\", line 175, in execute_sql\r\n    operations.migration_context.impl.execute(\r\n  File \"/root/venv-cape/lib/python3.8/site-packages/alembic/ddl/impl.py\", line 137, in execute\r\n    self._exec(sql, execution_options)\r\n  File \"/root/venv-cape/lib/python3.8/site-packages/alembic/ddl/impl.py\", line 134, in _exec\r\n    return conn.execute(construct, *multiparams, **params)\r\n  File \"/root/venv-cape/lib/python3.8/site-packages/sqlalchemy/engine/base.py\", line 1201, in execute\r\n    return meth(self, multiparams, params, _EMPTY_EXECUTION_OPTS)\r\n  File \"/root/venv-cape/lib/python3.8/site-packages/sqlalchemy/sql/elements.py\", line 313, in _execute_on_connection\r\n    return connection._execute_clauseelement(\r\n  File \"/root/venv-cape/lib/python3.8/site-packages/sqlalchemy/engine/base.py\", line 1390, in _execute_clauseelement\r\n    ret = self._execute_context(\r\n  File \"/root/venv-cape/lib/python3.8/site-packages/sqlalchemy/engine/base.py\", line 1749, in _execute_context\r\n    self._handle_dbapi_exception(\r\n  File \"/root/venv-cape/lib/python3.8/site-packages/sqlalchemy/engine/base.py\", line 1930, in _handle_dbapi_exception\r\n    util.raise_(\r\n  File \"/root/venv-cape/lib/python3.8/site-packages/sqlalchemy/util/compat.py\", line 211, in raise_\r\n    raise exception\r\n  File \"/root/venv-cape/lib/python3.8/site-packages/sqlalchemy/engine/base.py\", line 1706, in _execute_context\r\n    self.dialect.do_execute(\r\n  File \"/root/venv-cape/lib/python3.8/site-packages/sqlalchemy/engine/default.py\", line 716, in do_execute\r\n    cursor.execute(statement, parameters)\r\nsqlalchemy.exc.OperationalError: (sqlite3.OperationalError) near \"alter\": syntax error\r\n[SQL: ALTER TABLE tasks alter status drop default]\r\n(Background on this error at: http://sqlalche.me/e/14/e3q8)\r\n```\r\n\r\n## Steps to Reproduce\r\n\r\n1. clean a task with cleaners.py\r\n2. `git pull` and update the Cape\r\n3. `python3 cuckoo.py` -d but database error occurs\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | dd0bf29c7f0de1f82b5ccb02e2803eb46579bdb3\r\n| OS version       | ubuntu 20.04.1 LTS installed Python 3.8.5\nComment: Hello my dear friend i have bad news for you, if i see correctly you using sqlite `sqlite3.OperationalError: near \"alter\": syntax error` . is that correct? so see this \r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/conf/cuckoo.conf#L133\r\n```\r\n# SQLite doens't support database upgrades!\r\n# For production we strongly suggest go with PostgreSQL\r\n```\nComment: I am always grateful for your help.\r\nI set postgresql in `connection =` and ran `cd utils/db_migration/ && alembic upgrade head`  and it was updated successfully.\r\nBy the way, when updating from my environment, I installed the following additionally.\r\n```\r\n#apt-get install p7zip-full lzip rar unace-nonfree cabextract\r\n#pip3 install SFlock2\r\n#pip3 install django-ratelimit\r\n```",
+  "Title: Allow config dirs to be provided that extend the default ones.\nBody: Add a -c command-line option to cuckoo.py that can be provided multiple\r\ntimes. This allows the *.conf files in this repo to be untouched by a\r\nuser. Instead the values that need to be overridden can be put in to one\r\nor more other directories, whose path is passed via the -c option. The\r\nvalues in those files will take precedence over the ones in the conf\r\ndir.\r\n\r\nIn addition, for Config() objects, only read the files once, so that if,\r\nsay Config(\"processing\") is created in multiple places, they'll both\r\nrefer to the same object and the conf files would only be read once.\r\nThose files are also only read from the first time a section from that\r\nconfig is referenced. This is because we so often create those Config\r\nobjects at module level scope and they could get imported before the\r\nconfig_dirs have been set. So now, an initialize() classmethod needs to\r\nbe called on the Config class before any of those sections are\r\nreferenced.\r\n\r\nA new AnalysisConfig() class was created to separate the distinction\r\nbetween these types of \"singleton\" Config objects that can read from\r\nmultiple directories versus ones that just read from an analysis.conf\r\n(or some other single file).\nComment: nice, thank you, i will check that tomorrow\nComment: it looks good, im just curious about that import in cuckoo.py, after that i will merge\nComment: Actually, hang on. I may have found an issue. I'll be looking in to it this morning \nComment: The moving of the imports in cuckoo.py is necessary since many modules create Config() objects during import (i.e. they're created as module-level variables), but we need to make sure `Config.initialize()` is called before they are created so that they know which directories should be processed. This is why there's the check in `Config.__init__` to verify that config_dirs is set...just in case somehow an import with this type of \"global\" got imported before `initialize` was called.\nComment: so do you think is ready for merge? and now to access config from any submodule we need to init AnalysisConfig or which one?\nComment: Yes, I believe it's ready for merge. The AnalysisConfig objects only need to be created when you're providing the path to a file that has ALL of the config inside of it--none of the extra directories provided on the command-line will be used to populate the object. In addition, the AnalysisConfig objects are not singletons. A new one will be created for each instance. This is because they are sample-specific, should be short-lived, and the same file name could be provided to many instantiations of it, but perhaps the cwd (the analysis directory) is different.\nComment: thank you",
+  "Title: Fix Task.tags has no is_.\nBody: Task.tags is sqlalchemy relationship object which has no function is_().\nComment: hm from my last test `is` wasn't working to check if that was None, i had to use `==`, going to check that again with is or ==\nComment: hm which version of sqlalchemy do you use? i do see `is_`, or is something else?\r\n```\r\n>>> dir(Task.tags)\r\n'is_', 'is_aliased_class', 'is_attribute', 'is_bundle', 'is_clause_element', 'is_distinct_from', 'is_instance', 'is_mapper', 'is_not', 'is_not_distinct_from', 'is_property', 'is_selectable', 'isnot',\r\n```\nComment: or you referring to this?\r\n\r\n```\r\n>>> Task.tags.is_(None)\r\nTraceback (most recent call last):                                                                                                                                                                                 \r\n  File \"<stdin>\", line 1, in <module>                                                                                                                                                                              \r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/sql/operators.py\", line 688, in is_                                                                                                                     \r\n    return self.operate(is_, other)                                                                                                                                                                                \r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/attributes.py\", line 316, in operate                                                                                                                \r\n    return op(self.comparator, *other, **kwargs)                                                                                                                                                                  \r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/sql/operators.py\", line 1337, in is_                                                                                                                     \r\n    return a.is_(b)                                                                                                                                                                                                \r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/sql/operators.py\", line 688, in is_                                                                                                                     \r\n    return self.operate(is_, other)                                                                                                                                                                               \r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/sql/operators.py\", line 225, in operate                                                                                                                 \r\n    raise NotImplementedError(str(op))                                                                                                                                                                             \r\nNotImplementedError: <function is_ at 0x7faf00a67ca0>\r\n```\nComment: > or you referring to this?\n> \n> \n> \n> ```\n> \n> >>> Task.tags.is_(None)\n> \n> Traceback (most recent call last):                                                                                                                                                                                 \n> \n>   File \"<stdin>\", line 1, in <module>                                                                                                                                                                              \n> \n>   File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/sql/operators.py\", line 688, in is_                                                                                                                     \n> \n>     return self.operate(is_, other)                                                                                                                                                                                \n> \n>   File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/attributes.py\", line 316, in operate                                                                                                                \n> \n>     return op(self.comparator, *other, **kwargs)                                                                                                                                                                  \n> \n>   File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/sql/operators.py\", line 1337, in is_                                                                                                                     \n> \n>     return a.is_(b)                                                                                                                                                                                                \n> \n>   File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/sql/operators.py\", line 688, in is_                                                                                                                     \n> \n>     return self.operate(is_, other)                                                                                                                                                                               \n> \n>   File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/sql/operators.py\", line 225, in operate                                                                                                                 \n> \n>     raise NotImplementedError(str(op))                                                                                                                                                                             \n> \n> NotImplementedError: <function is_ at 0x7faf00a67ca0>\n> \n> ```\n\nYes\uff0ci referring this.\nComment: > hm from my last test `is` wasn't working to check if that was None, i had to use `==`, going to check that again with is or ==\n\nI'm sorry,I only noticed the errors,did not notice if it working will.I will check that.\nComment: thats is interesting, anyway i think we can remove that last part of condition as that was added for start of migration and if you have current tasks without tags, but since we added arch field is already some time passed so im gonna remove it\nComment: > thats is interesting, anyway i think we can remove that last part of condition as that was added for start of migration and if you have current tasks without tags, but since we added arch field is already some time passed so im gonna remove it\n\nI think so.\nComment: thank you, i will check another pr a bit later\nComment: That's ok.Happy new year for being late btw!\nComment: happy new year to you too :)",
+  "Title: Change `type()` statements to `isinstance()`\nBody: None\nComment: thank you",
+  "Title: Remove redundant boolean checks\nBody: - Changed `if x is True` to `if x`\r\n- Changed `if x is False` to `if not x`\r\n\r\nNote that these have not been altered if variables must explicitly be the boolean value `False`\r\nThese have not been changed in test/ files as well (but feel free to change if u wish to do so)",
+  "Title: Add file name field for better web experience\nBody: I don't know if this is a good pr. \r\n\r\n- Add a field to the database to display the real file name.\r\n- need `cd /opt/CAPEv2/utils/db_migration && alembic upgrade head` and restart cape `systemctl restart cape` \nComment: there is no such thing as good/bad PR, all of them are amazing, as all of us having different use cases\r\n\r\ncould you give me a bit more details please, so that would just show the original filename on web?\nComment: Yes, this can show the original filename on web using the database filename field.\nComment: i might be wrong so correct me if needed, what i see is basically that if we rename \r\n`path_to_extract` filename to `child.filename` we will get the same no?\r\n\nComment: oh i see, i will check it.\r\n\nComment: yes i think if we rename the file just after extract, instead of using path_to_extract, theorically that should do the trick to get the original filename\nComment: yes,however, if there are characters such as unicode in the file name, there may be problems in subsequent analysis.\nComment: hm, wouldn't that give problems when we store that in db? we can use `sanitize_filename` to ensure that it not gives problems later when renaming, but it can remove some chars, that probably will show a bit different name then?\nComment: yes, there is no problems store in db.the purpose of this pr is to save the original file name in the database and display it on the web without being affected by sanitize_filename.\nComment: But if the original filename contains certain characters and is un-sanitized, will this not cause the entire web page to fail?\nComment: > But if the original filename contains certain characters and is un-sanitized, will this not cause the entire web page to fail?\r\n\r\nIn fact, it should not be possible, because the django framework and python itself will help us clean up some abnormal strings, but I am not sure whether it can be bypassed.\nComment: Considering that there may be some concerns about this function (actually static and pcap, etc. are all displayed origin filenames), I added enable in web.conf.",
+  "Title: Fix api quarantine not work.\nBody: Fix api submission a quarantine file not work as expected.\nComment: thank you",
+  "Title: ES\nBody: None\nComment: ok that will be progressive and slowly improved with many small PRs",
+  "Title: Use identity checking for `True`, `False` and `None`\nBody: Note the difference in changes for statements involving SQLAlchemy\nComment: o thanks, learning more about sqlalchemy",
+  "Title: remove six library\nBody: still have to fix few things related to strings and unicode\nComment: @TheMythologist what do you think about the six removal changes?\nComment: Sorry for the late reply, but it looks good. There are still a couple of other files that use six:\r\n\r\nSearch for `from six`, e.g. `from six.moves import zip`.\r\nThe three files are:\r\n- modules/processing/usage.py\r\n- modules/processing/parsers/CAPE/REvil.py\r\n- utils/tcpdumpwrapper.py\nComment: Thanks, damn my grep didnt catch them, changing them\n\nEl lun., 3 ene. 2022 2:09, TheMythologist ***@***.***>\nescribi\u00f3:\n\n> Sorry for the late reply, but it looks good. There are still a couple of\n> other files that use six:\n>\n> Search for from six, e.g. from six.moves import zip.\n> The three files are:\n>\n>    - modules/processing/usage.py\n>    - modules/processing/parsers/CAPE/REvil.py\n>    - utils/tcpdumpwrapper.py\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/pull/689#issuecomment-1003817171>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3ZANHPQIGYSTPT34QTUUDZOFANCNFSM5LCR7GSA>\n> .\n> Triage notifications on the go with GitHub Mobile for iOS\n> <https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675>\n> or Android\n> <https://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub>.\n>\n> You are receiving this because you modified the open/close state.Message\n> ID: ***@***.***>\n>\n\nComment: ok i was grepping for `import six`, not `from six` thanks",
+  "Title: Add Elasticsearch reporting\nBody: Add class for Elasticsearch reporting support and small refactoring with common code for mongodb.\r\nEdit the source code of the web app in order to display correctly the data.\r\nEdit cleaners, admin, process, and sample_path utils.\r\n\r\nTested with a remote node with authentication and HTTPS.\nComment: Wow nice work.\nComment: looks nice, thank you a lot! i have a question, with which ES version did you test? i think there we need few more `if`s as if no it will require elastic installed by default, but i will review once again in a bit and merge\nComment: could you test again to ensure that my `if`s doesn't break please?\nComment: ok im doing testing and i see latest version 7.16.2 works just fine thanks for that again\nComment: Sorry for the late response, I've tested with Elasticsearch stack version 7.15.2 and python library 7.16.1.\r\n\r\nThanks for the revision and for the entire project! I'm grateful to be helpful.\nComment: np, i have started a new PR to handle the deprication warnings, but im ES noob :) and having a lot of problems maybe some of them sound to you so you can help me, maybe we need to make a huge mapping idk but just in case leaving some parts that i have observed here\r\n\r\n```\r\n2022-01-03 21:09:29,407 [modules.reporting.elasticsearchdb] ERROR: RequestError(400, 'illegal_argument_exception', 'mapper [dropped.tlsh] cannot be changed from type [text] to [boolean]')\r\n\r\n2022-01-03 21:39:42,798 [modules.reporting.elasticsearchdb] ERROR: RequestError(400, \u2018illegal_argument_exception\u2019, \u201ccan\u2019t merge a non object mapping [signatures.data.regsvr32_exe] with an object mapping\u201d)\r\n\r\nelasticsearch.exceptions.RequestError: RequestError(400, 'illegal_argument_exception', 'Limit of total fields [1000] has been exceeded')\r\n```\r\n\r\ndoes it sound to you?\r\n\nComment: Yes, it's a problem related to the Elasticsearch mapping, at least the first 2. Elastic tries to guess dynamically the type of the field and it creates its mapping. When you try to insert a document with a different type for that field, it gives you that error.\r\nThe best solution is to create a mapping as I do when I create the index. I put some fields that gave me problems during the testing, but it would be better to put them all.\r\n\r\nAlso the last line is related to the mapping, but you need only to increase the field limit of the mapping.\nComment: thank you\r\nok i see i guess is this one no?\r\nso we can keep extending it\r\n```\r\ndef get_analysis_index_mapping():\r\n    return {\r\n        \"mappings\": {\r\n            \"properties\": {\r\n                \"info\": {\r\n                    \"properties\": {\r\n                        \"started\": {\"type\": \"date\"},\r\n                        \"machine\": {\"properties\": {\"started_on\": {\"type\": \"date\"}, \"shutdown_on\": {\"type\": \"date\"}}},\r\n                    }\r\n                },\r\n                \"network\": {\"properties\": {\"dead_hosts\": {\"type\": \"keyword\"}}},\r\n            }\r\n        }\r\n    }\r\n```\nComment: Yes, you can export the current mapping dynamically created in order to do not create it from scratch. Then check if the fields are correctly mapped and solve the conflicts.\nComment: thanks for tip, but looks like my problematic fields need to be added before ES trying to map them, the good part that is file info is the same under different keys\nComment: what version of elastic search is supported?\nComment: 7.16.2 works for me as you might see from my comments",
+  "Title: Change all type-checking to use `isinstance`\nBody: None\nComment: thank you",
+  "Title: Fix child to_dict bug, optimize extrat path\nBody: - Fix the to_dict bug that _sf_chlildren not work as expected.\r\n- optimize if child is not available, the original file should be put into the list.\nComment: hm interesting, i think this maybe could be sflock problem, could you share file to check that?\nComment: f2d87361b01a4419d295f9b695527cf0aeb0fe40e43ab26445fa6c90a2b93ece, this hash can check it.\nComment: thanks i was able to verify, interesting bug btw, never saw it before",
+  "Title: Fix `.encode(hex)`\nBody: `.encode(\"hex\")` no longer works in python3\r\nIt has been replaced with `.encode().hex()`\r\n\r\nUnfortunately, I don't have any real way of testing this as I'm unsure of what the input and output types are (whether the function expects a byte-string or a string, and whether it returns a byte-string or a string), so I'll need some help on that.\r\n\r\nAdditionally, I am unsure of how to fix these for `.decode(\"hex\")`, because they don't work in python3 as well.\r\nAn ugly fix that I currently have: replace `s.decode(\"hex\")` with `bytes.fromhex(s.decode()).decode()`, which is very cumbersome.\nComment: I saw that another day, and ypu know nobody complais means is deaf xode at least in static, as parsers for thosefamilies are dead\nComment: Im afk rigth now but when i was porting i was using binascii.hexlify(data)\nComment: @kevoreilly do you have any jrat sample to test or we can depricate it as nymaim? \nComment: so fun part, about jrat, it not have a valid entry point `def config` so it won't called, also the name with prefix `_` won't match [yara](https://github.com/kevoreilly/community/blob/master/data/yara/CAPE/jRat.yar) + it doesn't work for any sample from https://bazaar.abuse.ch/browse/signature/jRAT/\r\n\r\nso i will leave to decide to Kevin about those parsers\nComment: there is also `.decode(\"hex\")` in that jrat\nComment: so i have found more parsers that weren't ported from py2, i have disabled them + disabled parsers that doesn't have proper entry point",
+  "Title: Fix bugs introduced in d298cc3426ffb4b044be2a80fa044d705ff4ae48\nBody: Bugs were introduced in my PR (my bad), here's the fix for those changes.\nComment: is ready to merge? or you still pushing?",
+  "Title: Convert `setdefault` and `append` to one-liner\nBody: Replaced the following:\r\n```python\r\na.setdefault(x, [])\r\na[x].append(i)\r\n```\r\nwith\r\n```python\r\na.setdefault(x, []).append(i)\r\n```\r\n\r\nNo code logic changed, all inputs and outputs remain the same.\nComment: ooo nice, i wasn't aware that it was working in that way, learned something new thanks",
+  "Title: Replace all `while 1` with `while True`\nBody: Minor fix to improvement readability (no code logic changed)\nComment: thanks",
+  "Title: Fix unpack child filename bugs\nBody: rar,eml and so on  which has included files may cause the bug, because some filename may have unicode string\u3002I was try to solve the unicode problems, but it's not easy.I will try my best.\nComment: thanks, do you have hash to test?\nComment: > thanks, do you have hash to test?\r\n\r\ntest this function\uff1fI tested locally.\nComment: yes but my devops might ask for hash to have proper test \nComment: What do I need to do?\nComment: give me a hash/file that i can pass to my devops\nComment: f2d87361b01a4419d295f9b695527cf0aeb0fe40e43ab26445fa6c90a2b93ece, this hash in virustotal can complete the test.\nComment: [test.zip](https://github.com/kevoreilly/CAPEv2/files/7788107/test.zip)\r\nsorry\uff0cI just tried the above hash but it doesn\u2019t work. Here is a file for testing.\nComment: thanks i was able to test that\nComment: I'm very sorry, I think there may be another bug that has not been resolved, I will submit another pr.\nComment: Thanks i saw bug in sflock to handle that error i already have fix\n\nEl mi\u00e9., 29 dic. 2021 10:55, N1neSun ***@***.***> escribi\u00f3:\n\n> I'm very sorry, I think there may be another bug that has not been\n> resolved, I will submit another pr.\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/pull/681#issuecomment-1002511055>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH35S2AVWXNM5MBI6PZLUTLLH7ANCNFSM5K5EBL7A>\n> .\n> Triage notifications on the go with GitHub Mobile for iOS\n> <https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675>\n> or Android\n> <https://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub>.\n>\n> You are receiving this because you modified the open/close state.Message\n> ID: ***@***.***>\n>\n\nComment: nice\nComment: I will push in a bit\n\nEl mi\u00e9., 29 dic. 2021 11:04, N1neSun ***@***.***> escribi\u00f3:\n\n> nice\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/pull/681#issuecomment-1002514988>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH36ZGMVSF7EH3QKKMKLUTLMMLANCNFSM5K5EBL7A>\n> .\n> Triage notifications on the go with GitHub Mobile for iOS\n> <https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675>\n> or Android\n> <https://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub>.\n>\n> You are receiving this because you modified the open/close state.Message\n> ID: ***@***.***>\n>\n\nComment: Ok,have a nice day!\nComment: thank you, you too",
+  "Title: Set maxsplit in `.split` and `.rsplit`\nBody: Small improvement in code by setting limit on `maxsplit`.\r\n`.split` was changed to `.rsplit` in cases where only the last element was needed.\r\n\r\nUnlike the other PRs, I have not individually reviewed these changes yet (as it's 1am in my timezone right now lol), I'll comment again when I've reviewed the changes myself (or if you want to you can review them too :D)\nComment: it looks good, but maybe that is just confusion, you added `maxsplit`, then removed anothers, and on the rest you don't use it\nComment: I've looked through the commit and I think it's ready to be merged.\r\n\r\nTo avoid confusion, I used `.split(maxsplit=1)` when the `sep` argument is not passed into `.split` (i.e. it is splitting over any whitespace character).\r\nIn situations where the `sep` argument is already specified, I removed explicitly stating the `maxsplit` argument, and instead simply use `.split(\".\", 1)` as 1 will automatically be the `maxsplit` parameter.\nComment: Ready to be merged needs actual testing - there have been a lot of bugs recently due to lack of this, review or looking are not enough. \nComment: ah nice, make sense @TheMythologist \nComment: I have applied the changes to my local CAPE instance and everything is running as per usual.\nComment: That is good - thanks for clarifying. If you could try and exercise the code that would be great.\r\n\r\nI hope I don't appear ungrateful - I do appreciate all the code cleanup you have contributed recently.\nComment: Sorry but what do you mean by exercise the code?\r\n\r\nAlso no worries, I'm aware that creating such massive PRs is a headache for both of us.\nComment: I simply mean to execute the code that has changed with sufficiently variable input to test that it does not crash and works properly. I suggest this as it may not be sufficient to just 'run cape as usual' to get the code that has changed to be executed. Like fuzzing, good testing needs code coverage.",
+  "Title: issues with the agent\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account acctivation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I checked the documentation and found no answer\r\n- [X] I am running the latest version\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting. __If your samples(x64) stuck in pending ensure that you set tags=x64 in hypervisor conf for x64 vms__\r\n\r\nIt fires up the VM and begins talking to the agent.\r\n\r\n# Current Behavior\r\n\r\n\r\n\r\nWhat is the current behavior?\r\n\r\nVM starts and is immediately stopped after it and the agent can't communicate.\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\nSee the information logs below.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1: Create a windows VM with all the required bits installed.\r\n2: Plop the newest agent.py on there.\r\n3: Start the agent running and save the snapshot.\r\n4: Stop the VM.\r\n5: Submit something to be ran on that VM.\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | 40a7d4b278292dbcecf532b579c706a6f3cbcadd\r\n| Guest OS version       | Windows 10\r\n| Host OS version | Ubuntu 20.04.3 LTS\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\r\n```\r\n2021-12-28 16:21:21,154 [lib.cuckoo.core.scheduler] INFO: Task #12: Starting analysis of FILE '/home/zane/pafish64.exe'\r\n2021-12-28 16:21:21,167 [lib.cuckoo.core.scheduler] INFO: Task #12: File already exists at '/opt/CAPEv2/storage/binaries/ff24b9da6cddd77f8c19169134eb054130567825eee1008b5a32244e1028e76f'\r\n2021-12-28 16:21:21,177 [lib.cuckoo.core.scheduler] INFO: Task #12: acquired machine win10-2 (label=win10-2, arch=x64, platform=windows)\r\n2021-12-28 16:21:27,336 [lib.cuckoo.core.scheduler] WARNING: Unknown network routing destination specified, ignoring routing for this analysis: 0\r\n2021-12-28 16:21:27,337 [lib.cuckoo.core.scheduler] INFO: Enabled route '0'\r\n2021-12-28 16:21:27,358 [modules.auxiliary.sniffer] INFO: Started sniffer with PID 7383 (interface=virbr0, host=192.168.122.71, dump path=/opt/CAPEv2/storage/analyses/12/dump.pcap)\r\n2021-12-28 16:21:27,383 [lib.cuckoo.core.guest] INFO: Starting analysis #12 on guest (id=win10-2, ip=192.168.122.71)\r\n2021-12-28 16:21:27,399 [lib.cuckoo.core.scheduler] ERROR: CAPE Agent failed without error status, please try upgrading to the latest version of agent.py (>= 0.10) and notify us if the issue persists\r\nTraceback (most recent call last):\r\n  File \"/usr/local/lib/python3.8/dist-packages/urllib3/connectionpool.py\", line 699, in urlopen\r\n    httplib_response = self._make_request(\r\n  File \"/usr/local/lib/python3.8/dist-packages/urllib3/connectionpool.py\", line 445, in _make_request\r\n    six.raise_from(e, None)\r\n  File \"<string>\", line 3, in raise_from\r\n  File \"/usr/local/lib/python3.8/dist-packages/urllib3/connectionpool.py\", line 440, in _make_request\r\n    httplib_response = conn.getresponse()\r\n  File \"/usr/lib/python3.8/http/client.py\", line 1348, in getresponse\r\n    response.begin()\r\n  File \"/usr/lib/python3.8/http/client.py\", line 316, in begin\r\n    version, status, reason = self._read_status()\r\n  File \"/usr/lib/python3.8/http/client.py\", line 285, in _read_status\r\n    raise RemoteDisconnected(\"Remote end closed connection without\"\r\nhttp.client.RemoteDisconnected: Remote end closed connection without response\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"/usr/local/lib/python3.8/dist-packages/requests/adapters.py\", line 439, in send\r\n    resp = conn.urlopen(\r\n  File \"/usr/local/lib/python3.8/dist-packages/urllib3/connectionpool.py\", line 755, in urlopen\r\n    retries = retries.increment(\r\n  File \"/usr/local/lib/python3.8/dist-packages/urllib3/util/retry.py\", line 532, in increment\r\n    raise six.reraise(type(error), error, _stacktrace)\r\n  File \"/usr/local/lib/python3.8/dist-packages/urllib3/packages/six.py\", line 769, in reraise\r\n    raise value.with_traceback(tb)\r\n  File \"/usr/local/lib/python3.8/dist-packages/urllib3/connectionpool.py\", line 699, in urlopen\r\n    httplib_response = self._make_request(\r\n  File \"/usr/local/lib/python3.8/dist-packages/urllib3/connectionpool.py\", line 445, in _make_request\r\n    six.raise_from(e, None)\r\n  File \"<string>\", line 3, in raise_from\r\n  File \"/usr/local/lib/python3.8/dist-packages/urllib3/connectionpool.py\", line 440, in _make_request\r\n    httplib_response = conn.getresponse()\r\n  File \"/usr/lib/python3.8/http/client.py\", line 1348, in getresponse\r\n    response.begin()\r\n  File \"/usr/lib/python3.8/http/client.py\", line 316, in begin\r\n    version, status, reason = self._read_status()\r\n  File \"/usr/lib/python3.8/http/client.py\", line 285, in _read_status\r\n    raise RemoteDisconnected(\"Remote end closed connection without\"\r\nurllib3.exceptions.ProtocolError: ('Connection aborted.', RemoteDisconnected('Remote end closed connection without response'))\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/guest.py\", line 111, in get\r\n    r = session.get(url, *args, **kwargs)\r\n  File \"/usr/local/lib/python3.8/dist-packages/requests/sessions.py\", line 555, in get\r\n    return self.request('GET', url, **kwargs)\r\n  File \"/usr/local/lib/python3.8/dist-packages/requests/sessions.py\", line 542, in request\r\n    resp = self.send(prep, **send_kwargs)\r\n  File \"/usr/local/lib/python3.8/dist-packages/requests/sessions.py\", line 655, in send\r\n    r = adapter.send(request, **kwargs)\r\n  File \"/usr/local/lib/python3.8/dist-packages/requests/adapters.py\", line 498, in send\r\n    raise ConnectionError(err, request=request)\r\nrequests.exceptions.ConnectionError: ('Connection aborted.', RemoteDisconnected('Remote end closed connection without response'))\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 345, in launch_analysis\r\n    guest.start_analysis(options)\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/guest.py\", line 254, in start_analysis\r\n    r = self.get(\"/\", do_raise=False)\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/guest.py\", line 113, in get\r\n    raise CuckooGuestError(\r\nlib.cuckoo.common.exceptions.CuckooGuestError: CAPE Agent failed without error status, please try upgrading to the latest version of agent.py (>= 0.10) and notify us if the issue persists\r\n2021-12-28 16:21:27,871 [lib.cuckoo.core.scheduler] INFO: Task #12: analysis procedure completed\r\n```\r\n\r\nOn a strange note if I try a version from a few commits ago, I get the following error. Which is strange as that is very much not the file being submitted.\r\n\r\n```\r\n2021-12-28 15:10:09,166 [lib.cuckoo.core.guest] INFO: Starting analysis #15 on guest (id=win10-1, ip=192.168.122.70)\r\n2021-12-28 15:10:09,179 [lib.cuckoo.core.guest] INFO: Guest is running CAPE Agent 0.11 (id=win10-1, ip=192.168.122.70)\r\n2021-12-28 15:10:10,704 [lib.cuckoo.core.guest] INFO: Uploading support files to guest (id=win10-1, ip=192.168.122.70)\r\n2021-12-28 15:10:11,507 [lib.cuckoo.core.scheduler] ERROR: Task #15: Failure in AnalysisManager.run: [Errno 13] Permission denied: '/home/zane/.bash_history'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 449, in run\r\n    success = self.launch_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 360, in launch_analysis\r\n    guest.start_analysis(options)\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/guest.py\", line 315, in start_analysis\r\n    self.upload_support_files(options)\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/guest.py\", line 234, in upload_support_files\r\n    files = {\"file\": (xf, open(target, \"rb\"))}\r\nPermissionError: [Errno 13] Permission denied: '/home/zane/.bash_history'\r\n```\r\n\r\nEDIT: After a bit more testing it appears if I point submit at a file, it will start trying to upload everything in that directory, not just the specified file. ... ```sudo python3 /opt/CAPEv2/utils/submit.py --machine win10-2 --platform windows /home/zane/pafish64.exe``` will result in the bug above, but ```sudo python3 /opt/CAPEv2/utils/submit.py --machine win10-2 /home/zane/empty/pafish64.exe``` will work, once I plop the exe into a directory by it's self.\r\n\nComment: about agent did it work before?\r\nabout submit, so agent works with submit from specific folder as that part isn't clear to me\nComment: I think he means that the error is in `utils/submit.py`, because using `utils/submit.py` to submit a sample will cause CAPE to upload everything in the same directory as the specified file.\r\n\r\nJust to double-check, do you get this error when submitting this sample through the web UI?\nComment: > I think he means that the error is in `utils/submit.py`, because using `utils/submit.py` to submit a sample will cause CAPE to upload everything in the same directory as the specified file.\r\n> \r\n> Just to double-check, do you get this error when submitting this sample through the web UI?\r\n\r\nYup! That is correct.\r\n\nComment: > about agent did it work before?\r\n\r\nCurrently using c54436dba11c56c879edf7583e2ce967d306dbaf from June and it works fine. Going to try the second to last and see how that goes. Grabbed one that far back after bashing my head against the wall about why it is trying to grab .bash_history, before realizing it is trying to submit the entire directory.\r\n\r\n> about submit, so agent works with submit from specific folder as that part isn't clear to me\r\n\r\nIt works, just submits everything in that folder. I don't think that is the intended action, from the looks of --help and docs for submission.\r\n\r\n\nComment: Apparently 5b4ebbbbfe22ef7d4b83a3d248454a907c4a0c63, second to latest, is the last agent that I can get to work. The commit on the 21st appears to be breaking it.\r\n\r\nIf there is anything I can do to help trouble shoot, please let me know.\r\n\nComment: If ypu have windows with python just run agent. Py but you need to disable\nstringio or something like that that redirects output\n\nEl mar., 28 dic. 2021 19:06, Zane C. Bowers-Hadley ***@***.***>\nescribi\u00f3:\n\n> Apparently 5b4ebbb\n> <https://github.com/kevoreilly/CAPEv2/commit/5b4ebbbbfe22ef7d4b83a3d248454a907c4a0c63>,\n> second to latest, is the last agent that I can get to work. The commit on\n> the 21st appears to be breaking it.\n>\n> If there is anything I can do to help trouble shoot, please let me know.\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/679#issuecomment-1002223051>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH37DS3Q4AI4VK7X74U3UTH4DDANCNFSM5K4ODLSQ>\n> .\n> Triage notifications on the go with GitHub Mobile for iOS\n> <https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675>\n> or Android\n> <https://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub>.\n>\n> You are receiving this because you commented.Message ID:\n> ***@***.***>\n>\n\nComment: @VVelox found the issue is strange and not make too much sense, this change doesn't work so restoring old if make it works\r\n```\r\n#if \"client_ip\" in state and request.client_ip != state[\"client_ip\"]:\r\nif state.get(\"client_ip\") != request.client_ip:\r\n```\r\n\r\npushed, thanks\nComment: reopen if still happens \nComment: @doomedraven Awesome. Confirmed that the latest one works. Thanks!\nComment: Thanks for confirmation\n\nEl mi\u00e9., 29 dic. 2021 19:32, Zane C. Bowers-Hadley ***@***.***>\nescribi\u00f3:\n\n> @doomedraven <https://github.com/doomedraven> Awesome. Confirmed that the\n> latest one works. Thanks!\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/679#issuecomment-1002726563>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH34TZHVL37VCTVB3N7TUTNH5XANCNFSM5K4ODLSQ>\n> .\n> Triage notifications on the go with GitHub Mobile for iOS\n> <https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675>\n> or Android\n> <https://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub>.\n>\n> You are receiving this because you were mentioned.Message ID:\n> ***@***.***>\n>\n",
+  "Title: Range default parameters\nBody: - Change `range(0, x)` to `range(x)`\r\n- Change `range(len(...` to `enumerate(`\nComment: thanks, i have fixed small fix in memory.py\nComment: Btw you might be interested in submit some of this fixes to the authors of the tools like Didier's, kixtart to make it more optimized in main repo",
+  "Title: Fix variable name\nBody: All these file reformats should have had some testing\nComment: Thanks, well tests, nobodu wants to write them \ud83e\udd23",
+  "Title: Reformat imports for lib folder\nBody: - Removed unused imports\r\n  - Imports that are used in comments are commented\r\n- Standardisation: 1 newline / start of file before start of imports\nComment: thanks\nComment: and special thanks for pushing them in small portions, that makes it easier to test and rewiew",
+  "Title: Reformat imports for modules folder\nBody: - Removed unused imports\r\n  - Imports that are used in comments are commented\r\n- Standardisation: 1 newline / start of file before start of imports\nComment: thank you",
+  "Title: Convert to f-string for modules/processing\nBody: Changes done:\r\n1) Convert strings to f-strings (other than for logging)\r\n2) Standardise logging (no full-stop at the end)\r\n\r\nAll files have been run through `black -l 132`\nComment: looks good thanks",
+  "Title: Convert to fstring for modules/reporting\nBody: Changes done:\r\n1) Convert strings to f-strings (other than for logging)\r\n2) Standardise logging (no full-stop at the end)\r\n\r\nAll files have been run through `black -l 132`\nComment: looks good thanks",
+  "Title: Convert to f-string for modules/auxiliary and modules/machinery\nBody: Changes done:\r\n1) Convert strings to f-strings (other than for logging)\r\n2) Standardise logging (no full-stop at the end)\r\n\r\nAll files have been run through `black -l 132`\nComment: thank you, added small fix for url build",
+  "Title: `dll` analysis package is not working on CAPE\nBody: \r\n# Expected Behavior\r\n\r\nRecently, had a look at the loader mentioned here in this blog https://www.elastic.co/blog/elastic-security-uncovers-blister-malware-campaign, the loader should be run using `Rundll32` and with `LaunchColorCpl` as exported function. But even if I select the `dll` package from analysis package on the submission page, cape still runs the sample using `regsvr32` as the loader has the `DllRegisterServer` in its exports. I tried to resubmit its as `function=LaunchColorCpl` with dll package, but cape ran it using `regsvr32` (https://www.capesandbox.com/analysis/216093).\r\n\r\n![image](https://user-images.githubusercontent.com/49360849/147364225-590e861f-d51d-4e02-95c2-0dcec7fb6d41.png)\r\nAlso, the dll package was not logged under `Options` section, only `function=LaunchColorCpl` was logged.\r\n\r\n# Current Behavior\r\n\r\nCAPE should run the sample using options supplied.\r\n\nComment: I found the code excerpt that's causing the package to default to `regsvr`:\r\nhttps://github.com/kevoreilly/CAPEv2/blob/2f2f5b8d22f6fd09e715a040a75e026be6089e45/lib/cuckoo/core/database.py#L1541-L1546\nComment: Perhaps instead of automatically defaulting to regsvr, it should check if a function is specified in options and if it is, it will continue to be run as dll instead\nComment: Agreed - it should only select a package if 'detect automatically' is left as package choice (or none is specified)\nComment: that was known trick by Qakbot if i remember before, we can disable `DllRegisterServer ` but then we need a better way to select `regsvr`\nComment: disabled, if someone have idea for proper checks, you are welcome to PR\nComment: ok should be fixed now \r\n```\r\n                if package == \"dll\" and \"function\" not in options:\r\n                    dll_exports = File(file).get_dll_exports()\r\n                    if \"DllRegisterServer\" in dll_exports:\r\n                        package = \"regsvr\"\r\n                    elif \"xlAutoOpen\" in dll_exports:\r\n                        package = \"xls\"\r\n```\nComment: works https://www.capesandbox.com/analysis/216388/ thanks all\nComment: No thank you!\nComment: Thanks @doomedraven as always!\nComment: @kevoreilly that loader has some anti sandbox features, didn't go well in CAPE. ",
+  "Title: isort requires advanved exclude as capa integration for example\nBody: Reverts kevoreilly/CAPEv2#668",
+  "Title: Revert \"Ran isort on all files\"\nBody: Reverts kevoreilly/CAPEv2#657",
+  "Title: Revert \"Revert \"Update analyzer.py\"\"\nBody: requires proper fixing of all upload_to_host",
+  "Title: logging requires hard testing!\nBody: Reverts kevoreilly/CAPEv2#665",
+  "Title: Revert \"\"Logging and print cleanup for lib/cuckoo/core\"\"\"\nBody: something is wrong inside of the vm",
+  "Title: \"Logging and print cleanup for lib/cuckoo/core\"\"\nBody: requires more fixes\r\n\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 247, in process\r\n    {\"name\": current.__class__.__name__, \"time\": float(f\"{timediff.seconds}.{timediff.microseconds // 1000: 03d}\")}\r\nValueError: could not convert string to float: '0. 07'",
+  "Title: Revert \"Logging and print cleanup for lib/cuckoo/core\"\nBody: Reverts kevoreilly/CAPEv2#660\r\n\r\n```\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 247, in process\r\n    {\"name\": current.__class__.__name__, \"time\": float(f\"{timediff.seconds}.{timediff.microseconds // 1000: 03d}\")}\r\nValueError: could not convert string to float: '0. 09'\r\n2021-12-23 11:51:40,064 [lib.cuckoo.core.plugins] ERROR: Failed to run the processing module \"AnalysisInfo\": could not convert string to float: '0. 14'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 247, in process\r\n    {\"name\": current.__class__.__name__, \"time\": float(f\"{timediff.seconds}.{timediff.microseconds // 1000: 03d}\")}\r\nValueError: could not convert string to float: '0. 14'\r\n2021-12-23 11:51:40,065 [modules.processing.behavior] WARNING: Analysis results folder does not exist at path \"/opt/CAPEv2/storage/analyses/21/logs\".\r\n2021-12-23 11:51:40,065 [lib.cuckoo.core.plugins] ERROR: Failed to run the processing module \"BehaviorAnalysis\": could not convert string to float: '0. 00'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 247, in process\r\n    {\"name\": current.__class__.__name__, \"time\": float(f\"{timediff.seconds}.{timediff.microseconds // 1000: 03d}\")}\r\nValueError: could not convert string to float: '0. 00'\r\n2021-12-23 11:51:40,065 [lib.cuckoo.core.plugins] ERROR: Failed to run the processing module \"Curtain\": could not convert string to float: '0. 00'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 247, in process\r\n    {\"name\": current.__class__.__name__, \"time\": float(f\"{timediff.seconds}.{timediff.microseconds // 1000: 03d}\")}\r\nValueError: could not convert string to float: '0. 00'\r\n2021-12-23 11:51:40,067 [lib.cuckoo.core.plugins] ERROR: Failed to run the processing module \"Debug\": could not convert string to float: '0. 01'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 247, in process\r\n    {\"name\": current.__class__.__name__, \"time\": float(f\"{timediff.seconds}.{timediff.microseconds // 1000: 03d}\")}\r\nValueError: could not convert string to float: '0. 01'\r\n2021-12-23 11:51:40,068 [lib.cuckoo.core.plugins] ERROR: Failed to run the processing module \"Dropped\": could not convert string to float: '0. 00'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 247, in process\r\n    {\"name\": current.__class__.__name__, \"time\": float(f\"{timediff.seconds}.{timediff.microseconds // 1000: 03d}\")}\r\nValueError: could not convert string to float: '0. 00'\r\n2021-12-23 11:51:40,069 [lib.cuckoo.core.plugins] ERROR: Failed to run the processing module \"NetworkAnalysis\": could not convert string to float: '0. 00'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 247, in process\r\n    {\"name\": current.__class__.__name__, \"time\": float(f\"{timediff.seconds}.{timediff.microseconds // 1000: 03d}\")}\r\nValueError: could not convert string to float: '0. 00'\r\n2021-12-23 11:51:40,069 [lib.cuckoo.core.plugins] ERROR: Failed to run the processing module \"ProcDump\": could not convert string to float: '0. 00'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 247, in process\r\n    {\"name\": current.__class__.__name__, \"time\": float(f\"{timediff.seconds}.{timediff.microseconds // 1000: 03d}\")}\r\nValueError: could not convert string to float: '0. 00'\r\n2021-12-23 11:51:40,112 [lib.cuckoo.core.plugins] ERROR: Failed to run the processing module \"Static\": 'info'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 243, in process\r\n    data = current.run()\r\n  File \"/opt/CAPEv2/utils/../modules/processing/static.py\", line 2701, in run\r\n    static = PortableExecutable(self.file_path, self.results).run()\r\n```",
+  "Title: Revert \"Update analyzer.py\"\nBody: Reverts kevoreilly/CAPEv2#656\r\n\r\n2021-12-23 10:07:54,468 [lib.common.results] ERROR: Exception uploading file C:\\curtain.log to host: can only join an iterable\r\nTraceback (most recent call last):\r\n  File \"C:\\tmpegtirc9m\\lib\\common\\results.py\", line 34, in upload_to_host\r\n    nc.init(dump_path, file_path, pids, ppids, metadata, category, duplicated)\r\n  File \"C:\\tmpegtirc9m\\lib\\common\\results.py\", line 115, in init\r\n    pids = \" \".join(pids)\r\nTypeError: can only join an iterable",
+  "Title: Replace `list()` and `dict()` with `[]` and `{}`\nBody: Better readability overall :)\nComment: thank you",
+  "Title: Logging and print cleanup for lib/cuckoo/core\nBody: Cleanup for files in lib/cuckoo/core\r\n\r\n1. Use f-strings for non-logging strings\r\n2. Use % format for logging strings\r\n3. Standardisation - Remove last full-stops for logging and printing strings\nComment: thank you\nComment: so issue was here\r\n\r\n```\r\n{\"name\": current.class.name, \"time\": float(f\"{timediff.seconds}.{timediff.microseconds // 1000: 03d}\")}\r\nshould be\r\n{\"name\": current.class.name, \"time\": float(f\"{timediff.seconds}.{timediff.microseconds // 1000:03d}\")}\r\n```\nComment: ok there is something else wrong inside of the vm logging i guess, i will keep that to fix when i will have time and not smash my PTO, so i will slow dawn merges and code review, but i appreciate all your job  \nComment: ok found the problem where, it has missed `f` for config generation fixed and now all works",
+  "Title: Fix dll package submission\nBody: None\nComment: thanks",
+  "Title: fix many same samples delete bugs\nBody: when cuckoo config delete_bin_copy is on\uff0cupload multiple same samples may cause the bug,because sample may be deleted\uff0cLater analysis can not be completed.\nComment: oh nice thank you, now i can remove this from ToDo :)",
+  "Title: Ran isort on all files\nBody: Only ran one command to generate all these changes:\r\n`isort .`\r\nNo other changes were made, so there should not be any changes to the logic/functionality of the files.\r\nRan according to the configuration set in `pyproject.toml`\nComment: Hi, could you rerun isort with the specified configuration options in `pyproject.toml`? I think a few imports were messed up by the `python-package.yml` (I think you'll need to update that too)\r\n\r\nFor instance in `admin.py`:\r\n```\r\nfrom admin_conf import (JUMP_BOX, VOL_PATH, CAPE_PATH, MASTER_NODE, CAPE_DIST_URL, JUMP_BOX_PORT, JUMP_BOX_USERNAME,\r\n                        REMOTE_SERVER_USER, SERVERS_STATIC_LIST)\r\n```\r\n\r\n^ The imports are no longer alphabetically sorted.\nComment: ok so we can't use isort, as it breaks some of the 3rd part integrations like capa for example that breaks the rest\r\n\r\n",
+  "Title: Update analyzer.py\nBody: The `or` segment of line 762 was removed as it was actually unnecessary.\r\n\r\nThere are 3 scenarios:\r\n**First scenario**:\r\n`self.files[filepath.lower()]` exists as a string. This would be the ideal scenario.\r\n\r\n**Second scenario**:\r\n`self.files[filepath.lower()]` doesn't exist, this would return `\"\"` due to the `dict.get()`\r\n\r\n**Third scenario**:\r\n`self.files[filepath.lower()]` exists but is not a string. The code would have failed above already because `filepath.lower()` was called earlier.\nComment: without `or` it still returns `[]` so that requires more in depth fixing so i will leave this open till that will be fixed\nComment: i think the main problem is here \r\n`self.files[filepath.lower()] = []`\nComment: Ahh my apologise I see whereI went wrong now, I'll push a commit soon hopefully to fix this issue\nComment: thanks for help\nComment: I think we should leave it as a list, and no errors will be thrown in the execution chain that continues after this line of code. `pids` was always meant to be a list of pids (as can be seen from `pids[0]`, so I think we should leave it as it is. It will be nicely converted into a string in `nc.init()`.\nComment: yes and no \r\nas some files are captured without pids, the pids variable will be `[]` that is `False` so that won't enter the if pids do join\nComment: here is the example from yesterdays testing\r\n\r\n```\r\n2021-12-21 22:21:58,581 [lib.common.results] INFO: [] - pid - <class 'list'>\r\n2021-12-21 22:21:58,596 [lib.common.results] INFO:  - ppid - <class 'str'>\r\n2021-12-21 22:21:58,596 [lib.common.results] ERROR: Exception uploading file C:\\ProgramData\\Microsoft\\Windows\\DRM\\drmstore.hds to host: 'list' object has no attribute 'encode'\r\nTraceback (most recent call last):\r\n  File \"C:\\tmpp7oey4gv\\lib\\common\\results.py\", line 34, in upload_to_host\r\n    nc.init(dump_path, file_path, pids, ppids, metadata, category, duplicated)\r\n  File \"C:\\tmpp7oey4gv\\lib\\common\\results.py\", line 124, in init\r\n    pids.encode(),\r\nAttributeError: 'list' object has no attribute 'encode'\r\n```\nComment: Not sure if this is the most optimal way but I think this is the best way currently because there is no reason to check if `pids` is True or False. Will have to revisit this when doing future refactoring so that we don't have to use this ugly hack.\nComment: So that breaks again, i will keep that as it was before\r\n\r\n```\r\n2021-12-23 10:07:54,468 [lib.common.results] ERROR: Exception uploading file C:\\curtain.log to host: can only join an iterable\r\nTraceback (most recent call last):\r\n  File \"C:\\tmpegtirc9m\\lib\\common\\results.py\", line 34, in upload_to_host\r\n    nc.init(dump_path, file_path, pids, ppids, metadata, category, duplicated)\r\n  File \"C:\\tmpegtirc9m\\lib\\common\\results.py\", line 115, in init\r\n    pids = \" \".join(pids)\r\nTypeError: can only join an iterable\r\n```\nComment: it will require more detailed review of upload func to fix that properly but in 2022 :)",
+  "Title: Cleanup of analyzer packages\nBody: Summary of changes:\r\n\r\n1. Remove unnecessary `from __future__ import absolute_import`\r\n2. Move adding of file_extensions to `common.py` to reduce code duplication\nComment: this is really nice cleanup :) thank you",
+  "Title: Cleanup analyzer folder\nBody: I apologise but this is a relatively big PR as I have no idea how to split it up into smaller chunks.\r\n\r\nDo leave a comment if you disagree with any of the changes and I'll explain my rationale for the changes.\r\n\r\nHere is a main summary of the changes:\r\n\r\n1. Use context manager `with`\r\n2. Change `.split()[-1]` to `.rsplit(maxsplit=1)[-1]`\r\n3. Comparison `is None` instead of `== None` (similarly for `True` and `False`)\r\n4. Remove unnecessary lines/variables\nComment: looks good so far, thanks\nComment: there is bug, fixing\r\n```\r\n2021-12-21 20:15:18,153 [lib.common.results] ERROR: Exception uploading file C:\\dWVIkvNK\\CAPE\\2520_165082518353223122021 to host: 'list' object has no attribute 'encode'\r\nTraceback (most recent call last):\r\n  File \"C:\\tmpp7oey4gv\\lib\\common\\results.py\", line 34, in upload_to_host\r\n    nc.init(dump_path, file_path, pids, ppids, metadata, category, duplicated)\r\n  File \"C:\\tmpp7oey4gv\\lib\\common\\results.py\", line 123, in init\r\n    ppids.encode(),\r\nAttributeError: 'list' object has no attribute 'encode'\r\n```\nComment: fixed there was a typo with ppids vs pids, thanks for code cleanup\nComment: i have restored thgis part\r\n\r\n```\r\nif pids and not isinstance(pids, str):\r\n            pids = \" \".join(pids)\r\n        else:\r\n            pids = \"\"\r\n        if ppids and not isinstance(ppids, str):\r\n            ppids = \" \".join(ppids)\r\n        else:\r\n            ppids = \"\"\r\n```\r\n\r\nas i found more problems, i have added logging to see what was there and it is empty, empty list or list with int pid, the best would be to go and properly fix that but i don't have time to investigate now\nComment: ok removed those elses, found problematic part\nComment: Thanks for the merge, in the future I hope to add type hinting so we don't have to use these ugly hacks, is that ok? \nComment: yes that would be amazing, is super useful but you know start refactoring such a big piece of code is hard when you also want to add new features\nComment: thanks for all the code cleanup/improvements",
+  "Title: Sort imports for analyzer, admin and agent folders\nBody: - Added pyproject.toml to standardise isort configuration\r\n- Removed unused imports\r\n  - Imports that are used in comments are commented\r\n- Standardisation: 1 newline / start of file before start of imports\nComment: Feel free to edit `pyproject.toml` as you see fit\nComment: thanks wanted to add `isort` for long time but never had time to start with",
+  "Title: Use default parameter for `.encode()` and `.decode()`\nBody: Changed `.decode(\"utf-8\")` and `.encode(\"utf-8\")` to `.decode()` and `.encode()` respectively\r\nNote: `.decode(\"utf-8\")`, `.decode(\"utf8\")` and `.decode()` all do the same thing\r\n\r\nMay seem like a small update but I think it goes a long way in improving code readability\nComment: thank you",
+  "Title: Inplace operations\nBody: Improve readability (and very very very slight performance)",
+  "Title: Change to `dict.get()`\nBody: None\nComment: thanks again, sorry for making you duplicate job but is way much easier for me, and you see the speedup of merging :) ",
+  "Title: Clean up f-strings and logging in analyzer and admin folder\nBody: Changes done:\r\n1) Convert strings to f-strings (other than for logging)\r\n2) Standardise logging (Capitalise first letter with a few exceptions, no full-stop at the end)\r\n3) Convert all `c:\\` to `C:\\` (for paths referencing HomeDrive)\r\n\r\nOther folders (e.g. `lib`) have not been looked yet.\r\nAll files have been run through `black -l 132`\nComment: thank you, this is way much easier to review. nice code cleanup",
+  "Title: fix copy_path delete bug\nBody: when cuckoo config delete_bin_copy is on, using static,url,pcap may cause the bug, process will failed.because copy_path is None. \nComment: thank you",
+  "Title: Cleaned up analyzer folder\nBody: - Remove all full-stops at end of log statements for standardisation\r\n- Fix a few typos\r\n- Miscellaneous improvements to prevent code duplication\r\n- Convert to f-strings for better performance\r\n- Remove all unnecessary default arguments\r\n- Use `with` operator for better exception handling\r\n- Reorder import statements and remove unused imports\r\n\r\nThis is quite a big pull request but hopefully it's fine, let me know if you want anything changed / you don't agree with any standardisation and I'll change accordingly\nComment: I would suggest to split those changes in different PRs, that would simplify review and merge faster as i see some removal of comments that i would like to keep and many other small things. in general this a nice code update, but will take tons to review and merge\nComment: ok few things>\r\n\r\n1. did you test your changes?\r\n2.  i see changes like next, and they will break in some cases as we don't have time to investigate from where str/byte diff is send, and i see al ot of small changes like those removed, i guess they are done with another regexes or something like that?\r\n```\r\n                -pids.encode() if isinstance(pids, str) else pids,\r\n                -metadata.encode() if isinstance(metadata, str) else metadata,\r\n                -category.encode() if isinstance(category, str) else category,\r\n                +pids.encode(),\r\n                +metadata.encode(),\r\n                +category.encode(),\r\n```\r\n\r\n\r\nso again i do appreciate your effort to update cape code, but blind regex replace isn't the best, for string like `%s`to `f-strings` i guess is ok, but for many others parts is NOT ok, so as i told is best to split different PRs to be able to review them separately and merge what is ok\nComment: Yep I can only reiterate what doomed has said - if we were to merge PRs that have not been properly tested it would break sandboxes all over the world. The most important thing is testing. 'Hopefully it's fine' won't cut it. \nComment: Hi, by \"hopefully this is ok\" I actually mean that yall wouldn't mind the massive PR, but i understand that splitting into small PRs will work better.\r\n\r\nI have actually manually checked each and every single file and typed these changes - these commits were done without using any regex replaces. As for the reason why the `isinstance` was removed, I'm assuming that the user input is of the correct format (`str`), as indicated in the comment above that all arguments should be string. Let me know if you would like to keep the type-checking in place (which I personally disagree with).\r\n\r\nMost of the comments that I've removed are actually duplicates of code that are already present.\r\n\r\nI will go ahead with creating smaller PRs for future changes, should I close this and split this PR into smaller changes? With these smaller PRs I can also include comments in changes that may be controversial to hopefully explain my rationale of the changes.\nComment: Note that in changes where I removed the type-checking, I have made sure that all current references/uses of the function are of the correct type and do not break any of the changes. I disagree with type-checking because it is simply impossible to blanket-cover all possible types that a user may accidentally use instead of the correct type. I am thinking of adding Python type-hinting in future changes, should I merge such changes only then?\nComment: well even hand changing instead of regex, sound like you didn't run that in production/dev? so as i told yes it should be str but sometime is bytes and is a mess but i don-t have time to investigate from where it comes to be able to get the rid of the root problem.\r\n\r\nPython hinting is nice, but you know the project is massive and a lot of code is done by contributors too and is super hard to keep that all of the same type. is why we have those ugly hacks\r\n\r\nthe problem of this massive PR is to test it, as you know there can be many pitfails in many different parts, as example that bytes vs strings. So i do understand that is lame to split PR into small parts when you on fire, but we doing the project in our free time and we don-t have a lot of free time to get so massive PR without proper review(it can be ok or can be not) and then just wait for people to complain if they will spot something wrong before of us\nComment: and please do not add `re2` imports, that is only useful on big data for performance for a string there is no huge difference as re2 is way much more sensitive for the input\nComment: also what is the goal to do changes like those? you just rebuild the same string\r\n\r\n<img width=\"1019\" alt=\"Screenshot 2021-12-15 at 09 48 36\" src=\"https://user-images.githubusercontent.com/1856495/146153745-2240c17e-1cf8-4557-95be-87fa94cf32df.png\">\r\n\nComment: so for example see how small PR as this even contains bugs https://github.com/kevoreilly/CAPEv2/pull/646 so imagine how hard is to review and test big one\nComment: While I agree readability is improved with f-strings, it is not optimal for the python logging module as each string is formatted regardless of the specified logging level. This especially adds up when applied to all the debug statements. It also doesn't work as well with log aggregators. Seeing as this PR is meant to address performance improvements and code cleaning, it doesn't make sense to move backwards.\nComment: Yup I've taken note of the logging performance (f-string performance is better but logging takes care of its optimizations), I'll edit accordingly.\nComment: so idk how to follow here guys, is nice cleanup, but i can't merge that directly, and im almost about to go 1 by 1 file review to push them separately to do proper review %)\r\n\r\nif anyone have a better advice let me know, but i see parts that i would like restore, we just specify maybe with comment when few small things was done in different way, specially separated pillows imports\nComment: Don't worry I'll split the PR up into smaller functionalities (e.g. f-string conversion, following PEP-8 conventions, etc.). No actions needed for now, I'll close the PR and submit each change as each PR.\nComment: <img width=\"558\" alt=\"Screenshot 2021-12-17 at 15 45 17\" src=\"https://user-images.githubusercontent.com/1856495/146561697-623325f7-010f-48d8-a12a-bd209c7423e2.png\">\r\nok few notes, apart of already is instance that i told before, keep this as it is please, due to what we saw in past sometime import of pillow can take 5 or more minutes is why we have that with logging in that way",
+  "Title: drarft: Various fixes\nBody: Few fixes:\r\n- Performance improvement for querying cape task status\r\n- Cleanup mongo by default. This is breaking changes in a way since the flag is changed now to `--dont-delete-mongo`\r\n- Handle network error in the scheduler\r\n- Remove FP of process hollowing for acrobat reader\nComment: hey thanks, small note, `--dont-delete-mongo` will set to true, but it will set delete mongo instead of not delete https://github.com/intezer/CAPEv2/blob/8d7fdc1021464873e8297728915876403f64b067/utils/cleaners.py#L97\nComment: i think we maybe just should set default to false or idk, right now im on PTO so once i will be back i can check that, but i had to change that recently bcz it wasn't working properly\nComment: No rush merging this so enjoy your PTO.\r\nI'll look into that, it might be a bad merge on our side so don't merge that yet.\nComment:  so @davidt99 my idea is to not remove mongo data by default, to remove it i prefer to set flag to remove, than set flag to not remove it. so if you revert that cleaners change i will merge\nComment: i don't have permission to push edits to this PR\nComment: i have merged and changed cleaners after merge, thanks for update \nComment: btw\r\n\r\n```\r\nTraceback (most recent call last):\r\n  File \"/usr/local/lib/python3.8/dist-packages/django/core/handlers/exception.py\", line 47, in inner\r\n    response = get_response(request)\r\n  File \"/usr/local/lib/python3.8/dist-packages/django/core/handlers/base.py\", line 181, in _get_response\r\n    response = wrapped_callback(request, *callback_args, **callback_kwargs)\r\n  File \"/usr/local/lib/python3.8/dist-packages/django/views/decorators/csrf.py\", line 54, in wrapped_view\r\n    return view_func(*args, **kwargs)\r\n  File \"/usr/local/lib/python3.8/dist-packages/django/views/generic/base.py\", line 70, in view\r\n    return self.dispatch(request, *args, **kwargs)\r\n  File \"/usr/local/lib/python3.8/dist-packages/rest_framework/views.py\", line 509, in dispatch\r\n    response = self.handle_exception(exc)\r\n  File \"/usr/local/lib/python3.8/dist-packages/rest_framework/views.py\", line 469, in handle_exception\r\n    self.raise_uncaught_exception(exc)\r\n  File \"/usr/local/lib/python3.8/dist-packages/rest_framework/views.py\", line 480, in raise_uncaught_exception\r\n    raise exc\r\n  File \"/usr/local/lib/python3.8/dist-packages/rest_framework/views.py\", line 506, in dispatch\r\n    response = handler(request, *args, **kwargs)\r\n  File \"/usr/local/lib/python3.8/dist-packages/rest_framework/decorators.py\", line 50, in handler\r\n    return func(*args, **kwargs)\r\n  File \"/opt/CAPEv2/web/./apiv2/views.py\", line 2012, in cuckoo_status\r\n    tasks_dict_with_counts = db.get_tasks_status_count()\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/utils.py\", line 977, in inner\r\n    return f(self, *args, **kwargs)\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/database.py\", line 2103, in get_tasks_status_count\r\n    tasks_dict_count = session.query(Task.column, func.count(Task.column)).group_by(Task.column).all()\r\nAttributeError: type object 'Task' has no attribute 'column'\r\n```\nComment: in my case return is different \r\n```\r\n>>> tasks_dict_count\r\n[('reported', 6)]\r\n\r\n```\r\n@return: dict with status and number of tasks found example: {'failed_analysis': 2, 'running': 100, 'reported': 400}\r\n```\r\n\r\nsqlalchemy.__version__\r\n'1.4.17' checked latest the same result 1.4.28\r\n\nComment: pushed fix, idk how it was returning your dictionary, but without wrap that with dict() it returns lit of tuples",
+  "Title: Change from datetime to timeit\nBody: Fix for #644 \r\n\r\nChanges from `datetime.now()` to `timeit.default_timer()`, which is not dependent on the system-wide clock.\r\n\r\nIt's a simple fix, thus I chose to include it.\nComment: Thanks for the PR - timeit does seem to be better so I'll merge once I've had a chance to test.\nComment: i did test it, looks like everything works just fine, this should fix problem with badly configured VMs where NTP is not disabled, thank you",
+  "Title: Termination ends prematurely if systemtime is modified\nBody: Current code:\r\nhttps://github.com/kevoreilly/CAPEv2/blob/4da21045aa1f87bfbfdf3fef3351d787fa1b5568/analyzer/windows/analyzer.py#L543-L553\r\n\r\nIn most situations this code is fine, but in certain samples where the system time is modified, the execution may terminate prematurely.\r\n\r\nE.g. https://capesandbox.com/analysis/213395/\r\nPython script that was run:\r\n```python\r\nimport datetime\r\nimport win32api\r\n\r\nnow = datetime.datetime.now()\r\nprint (now)\r\nnewday = now - datetime.timedelta(days = 8)\r\nprint (newday)\r\n\r\nyear = int(newday.year)\r\nmonth = int(newday.month)\r\n# Return the day of the week as an integer, where Monday is 0 and Sunday is 6.\r\ndayOfWeek = int(newday.weekday())\r\nday = int(newday.day)\r\nhour = int(newday.hour)\r\nminute = int(newday.minute)\r\nsecond = int(newday.second)\r\nmillseconds = newday.microsecond // 1000\r\n\r\nwin32api.SetSystemTime(year, month, dayOfWeek, day, hour, minute, second, millseconds)\r\n\r\ni = 0\r\nwhile True:\r\n    with open(str(i) + \".txt\",\"w\") as f:\r\n        f.write(\"hello test\")\r\n```\r\n\r\nThe execution will also terminate prematurely if system time is increased by the timeout duration (e.g. if the timeout is 200 seconds, changing the time from 8:10 to 8:15 will end the execution)\r\n\r\nI'll try to figure out a way to measure analyzer runtime duration without using datetime. Feel free to throw any ideas below :)\nComment: Why is the system time being modified? I think this is the root of your problem. I'm not sure this is something we should be working around...\nComment: I agree that most malware samples would not modify system time (simply because doing so would immediately raise some red flags), but I think it would be better to address this issue since after all this is a \"sandbox\", meaning we should be able to throw almost anything and let it be able to run successfully and to completion.\nComment: I disagree. If you have a sample that does this I'd be interested to see it. I've been in this game for many years and never seen such a thing.\nComment: This particular issue, were it to be seen in actual malware, would be best countered by a hook in the monitor for the SetSystemTime API. There are many existing hooks that prevent malware doing things that are undesirable in the sandbox.\r\n\r\nHowever, we cannot be in the business of working to prevent theoretical behaviours that might be seen someday, as clearly there is no limit to what might be seen in the future. There are more than enough existing real-world issues to work on rather than spending time imagining what might be, and working to pre-empt it.\nComment: merged, thank you",
+  "Title: fix(web/templates/apiv2): fix `config.tasks_latest` typo\nBody: Looks like a typo in `web/templates/apiv2/index.html`:\r\nhttps://github.com/kevoreilly/CAPEv2/blob/4da21045aa1f87bfbfdf3fef3351d787fa1b5568/web/templates/apiv2/index.html#L597-L613\r\n\r\nI can't find any `[latests]` config in https://github.com/kevoreilly/CAPEv2/blob/4da21045aa1f87bfbfdf3fef3351d787fa1b5568/conf/api.conf. There is only `[tasks_latest]`\nComment: thanks",
+  "Title: UnAutoIT\nBody: None\nComment: will be rewritten",
+  "Title: Pin XLMMacroDeobfuscator and its deps to versions.\nBody: Don't use master.zip for XLMMacroDeobfuscator, pyxlsb2, and xlrd2.\r\nSee https://github.com/DissectMalware/XLMMacroDeobfuscator/issues/100\r\nand https://github.com/kevoreilly/CAPEv2/pull/638.",
+  "Title: Error in the documentation\nBody: Hi~,When I was deploying the Linux guest, I found that the first command was wrong. It should be `sudo apt-get install openbios-sparc openbios-ppc` not openbios-spark.\r\n[https://github.com/kevoreilly/CAPEv2/blob/master/docs/book/src/installation/guest/linux.rst](url)\nComment: thanks, fixed",
+  "Title: Black formatter\nBody: Ran `black -l 132` amongst other miscellaneous formatting changes\nComment: thank you, i have found one interesting \"issue\", that `except ImportError` was replaced with `except Exception`, which tool did you use do recursive changes? apart of that everything looks good, just be careful with `re2` as i specified in another PR\nComment: Oh, I intentionally changed that error to be more specific. I simply used vscode regex to do recursive changes (replacing all instances of `except:` with `except Exception:`.\r\n\r\nYup I will take note of the re2 python import issue, thanks for the merge :)\nComment: em not make sense replace specific error with generic one, at least i don't see, let me know if i missing something\r\n\r\nthanks for cleanup\nComment: oh I replaced `except Exception` with `except ImportError`, not the other way around \ud83d\ude05\nComment: np, in only one case that i spot `except ImportError` was replaced with `except Exception` on yara importing\nComment: ok problem started\r\n\r\n```\r\nTraceback (most recent call last):\r\n  File \"manage.py\", line 15, in <module>\r\n    execute_from_command_line(sys.argv)\r\n  File \"/usr/local/lib/python3.8/dist-packages/django/core/management/__init__.py\", line 419, in execute_from_command_line\r\n    utility.execute()\r\n  File \"/usr/local/lib/python3.8/dist-packages/django/core/management/__init__.py\", line 363, in execute\r\n    settings.INSTALLED_APPS\r\n  File \"/usr/local/lib/python3.8/dist-packages/django/conf/__init__.py\", line 82, in __getattr__\r\n    self._setup(name)\r\n  File \"/usr/local/lib/python3.8/dist-packages/django/conf/__init__.py\", line 69, in _setup\r\n    self._wrapped = Settings(settings_module)\r\n  File \"/usr/local/lib/python3.8/dist-packages/django/conf/__init__.py\", line 170, in __init__\r\n    mod = importlib.import_module(self.SETTINGS_MODULE)\r\n  File \"/usr/lib/python3.8/importlib/__init__.py\", line 127, in import_module\r\n    return _bootstrap._gcd_import(name[level:], package, level)\r\n  File \"<frozen importlib._bootstrap>\", line 1014, in _gcd_import\r\n  File \"<frozen importlib._bootstrap>\", line 991, in _find_and_load\r\n  File \"<frozen importlib._bootstrap>\", line 975, in _find_and_load_unlocked\r\n  File \"<frozen importlib._bootstrap>\", line 671, in _load_unlocked\r\n  File \"<frozen importlib._bootstrap_external>\", line 848, in exec_module\r\n  File \"<frozen importlib._bootstrap>\", line 219, in _call_with_frames_removed\r\n  File \"/opt/CAPEv2/web/web/settings.py\", line 26, in <module>\r\n    from lib.cuckoo.core.startup import init_rooter, init_routing\r\n  File \"/opt/CAPEv2/web/../lib/cuckoo/core/startup.py\", line 37, in <module>\r\n    from lib.cuckoo.core.plugins import import_plugin, import_package, list_plugins\r\n  File \"/opt/CAPEv2/web/../lib/cuckoo/core/plugins.py\", line 16, in <module>\r\n    from lib.cuckoo.common.abstracts import Auxiliary, Machinery, LibVirtMachinery, Processing\r\n  File \"/opt/CAPEv2/web/../lib/cuckoo/common/abstracts.py\", line 34, in <module>\r\n    from lib.cuckoo.common.url_validate import url as url_validator\r\n  File \"/opt/CAPEv2/web/../lib/cuckoo/common/url_validate.py\", line 19, in <module>\r\n    regex = re.compile(  # noqa: W605\r\n  File \"compile.pxi\", line 6, in re2.compile\r\n  File \"compile.pxi\", line 93, in re2._compile\r\nre.error: invalid escape sequence: \\u\r\n```\nComment: so i guess everything where `u` where added to strings and re2 added is broken now\nComment: i have reverted everything where re2 was added\nComment: also removed everything where `u` was added, idk what you have used, but in future please use `black -t py38 -l 132` + `DO TESTING!`\r\n\nComment: None of my commits added `u` to any string.\r\n\r\nBut yes it seems that re2 and re have differences in syntax\nComment: Anyways isolated the error to be re2 having different syntax for unicode escape characters \nComment: And also unicode formatting is a deprecated python2 thing, so it's fine to remove it in front of all strings since python3 is exclusively used for CAPE\nComment: Yes but with this merge i got tons of unicode strings doesnt matter now we\nlearned new lesson what to care about\n\n\nEl jue., 9 dic. 2021 0:23, TheMythologist ***@***.***>\nescribi\u00f3:\n\n> And also unicode formatting is a deprecated python2 thing, so it's fine to\n> remove it in front of all strings since python3 is exclusively used for CAPE\n>\n> \u2014\n> You are receiving this because you were mentioned.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/pull/639#issuecomment-989308338>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH32SJH7OCY6ZHDXUVLLUP7SIRANCNFSM5JSPYZ5Q>\n> .\n> Triage notifications on the go with GitHub Mobile for iOS\n> <https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675>\n> or Android\n> <https://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub>.\n>\n>\n\nComment: The real point is the testing.",
+  "Title: Update hashes for pyxlsb2 and xlrd2.\nBody: pyxlsb2 and xlrd2 have had commits on master and so the hashes for\r\nmaster.zip of those repos has changed. This is a band-aid for a problem\r\nin the way XLMMacroDeobfuscator defines in dependencies. I have opened\r\nhttps://github.com/DissectMalware/XLMMacroDeobfuscator/issues/100 to\r\nhopefully get the author of that project to address this in a way that\r\nisn't so brittle.\nComment: Thanks",
+  "Title: black -l 144\nBody: Ran command `black -l 144 .` to make life easier for me when reformatting code :)\nComment: my devops forces me to uses -l 132, so i can't get that in, but between 132 and 144 there is no much diff\nComment: Sure I'll edit accordingly :)\nComment: about re2, if you just replace without test, please don't do that, as we had many situations where re2 was complaining and breaking, the exceptio nad none part is nice, im checking how to cherry pick it, but is better to provide separated PRs for each block so that simplifies a lot merging\nComment: i have cherry-picked removing noen and add Exception, thank you",
+  "Title: Fix domains list\nBody: This is adds digicert and adobe to the whitelist domains.\r\nAdobe's domains always show up when the guest VM opening acrobat reader, that why we want it to be whitelisted.\r\nAlso, there were commas missing in the safelist domains causing them to be combined.\r\nThe last change is a small change to one of the logs and imports cleanup in `analyzer.py`.",
+  "Title: DL&Exec not working\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account acctivation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nsubmit an download url to the webgui, cape download's the file and start analysis on it\r\n\r\n# Current Behavior\r\n\r\nwhen execute curl -X POST -F dlnexec=\"https://somebadness.tld/supermalware.exe\" https://ourcompany.com/apiv2/tasks/create/dlnexec/   (with a real sample) I'll receive the error \"Was Impossible to retrieve URL\"\r\n\r\n# Failure Information (for bugs)\r\ni couldn't find any debug logging for posting samples cuckoo.log and processing.log did't contain any usefull errors it just wont download or start analysis\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n- Make a base installation on ubuntu 20.04 using the install script. (as user cape)\r\n- Enable DL&Exec in web.conf\r\n- Submit download url from commandline or webgui\r\n- Got error Impossible to retrieve URL\r\n\r\nDon't know if im doing something wrong in the config, i checked permissions on the tmp and /opt/CAPEv2/storage. seems to be ok. Could'nt find any hints in the docs\r\n\r\n\r\n\r\n\nComment: it download using tor, is your tor configured?\nComment: Hey,\r\nJust to add here, we are seeing the same behavior, I have tor installed and configured. I also validated the testing links were live.  I tested with curl on the cape host and it pulled.\r\n\r\n**ERRORS:** N/A, none in cuckoo, or processing log\r\n**COMMIT:** 9564d67c5f5c3f75ff010afab9309b2f22298218\r\n**Host:** Ubuntu 20.04 x64 AMD64\r\n\r\n\r\nEDIT: Upgraded to `commit 93bf47d387c0f8d2b9d703a90647c0eb29a60664 (HEAD -> master, origin/master)` and behavior is still present\r\n\r\nTesting URL: https://urlhaus.abuse.ch/url/1859442/ \r\nNote: it seems to fail on the submit/ call \r\n\r\n![image](https://user-images.githubusercontent.com/73605619/144875689-c7e01275-4733-465e-80b3-47957802e931.png)\r\n![image](https://user-images.githubusercontent.com/73605619/144875768-19f642a5-2baf-4b0c-8486-196db79ff28c.png)\r\n\nComment: @doomedraven @mwatermolen \r\n\r\nI'm using CAPE with internet routing. it's Cloud hosted in my case. TOR indeed is not configured. is it still usefull to test with TOR configured, for consistency matters? as i'm using the same install and update methode as Max?\r\n\nComment: i guess nobody checked logs django/uwsgi/whatever log? just pushed fix with that it works for me, test and let me know\r\n\r\n```\r\n'str' object has no attribute 'repalce'\r\n```\nComment: i can confirm that this is the solution, tested it and it runs like a charm, Tnxs @doomedraven \nComment: glad that was fixed, you might find bugs in anything that i don't use :D \nComment: Is Tor required to get dl&exec working on the current version of CAPE? attempting to use Internet routing but no luck here.\nComment: yes, but dl&exec is just to download on server side and add it to tasks if if remeber exactly \nComment: Ah I see, okay, that explains what I observed.  I just sent in a URL of a zip file that had a number of files inside and it only submitted 10 of the files.. there were a bunch more..\nComment: yes 10 is limit, you can change it in demux, maybe you can PR to make it configurable",
+  "Title: feature(dumping): add support for receiving ppid from the dumper\nBody: This will allow getting the parent process id in the files.json file in the reports. This is coupled to capemon PR (https://github.com/kevoreilly/capemon/pull/33).\r\nThis should be the first PR of series of PRs aiming to align our fork with the mainline.\nComment: Thank you",
+  "Title: emo without elses\nBody: None\nComment: soundtrack https://www.youtube.com/watch?v=spDy95Sww6k",
+  "Title: show text \nBody: None",
+  "Title: Small cleanup\nBody: Small cleanup for miscellaneous files - hopefully I'll get to cleaning up the other files as well :)\nComment: thanks, looks good",
+  "Title: Account inactive\nBody: Hi, I registered an account on capesandbox.com and verified my e-mail but when I log in I get this message \"Account Inactive: This account is inactive/Admin set manual approve.\" \r\nCould I ask if it's possible to activate it? My username is: silverhat\r\nThanks\nComment: I see you deleted the issue template. Did you bother to read it?\r\n\r\n## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account acctivation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\nThat's the first part!",
+  "Title: kixtart-detokenize integration\nBody: None",
+  "Title: Wrong PCAP processing for TCP connections\nBody: Again me :)\r\n\r\nProblematic block is [here](https://github.com/kevoreilly/CAPEv2/blob/master/modules/processing/network.py#L742-L775)\r\n\r\nSo, TCP connections are recognized by first packet seen, where this can be a problem in lots of specific situations (TCP out of order packets, SYN missing, late PCAP recording because of slow start or similar). In our case, `SYN` packet is just not there, while the response `SYN-ACK` is considered as the initial connection attempt, making CAPE results having mixed source and destination.\r\n\r\n![1](https://user-images.githubusercontent.com/921555/142198742-73be5264-3211-4191-8219-d6267ba147ea.png)\r\n\r\nSo, I have couple of ideas on my mind, but I would not like to propose something too complicated for your taste. As you are already using `dpkt` it shouldn't be a too much hustle to check some flags.\r\n\r\nFor example, if first packet is for unknown connection, maybe to check whether it has `SYN` set and treat packet as you do it now, while in case of `SYN-ACK` to reverse the order dst<->src in your connection table. It can be even more complicated that this, but not sure if it is too much\nComment: hello, PR maybe your idea? :)\nComment: best heuristics I could come with:\r\n\r\n```py\r\n*** 757,762 ****\r\n--- 757,765 ----\r\n                              (dst, dport, src, sport) in self.tcp_connections_seen\r\n                              or (src, sport, dst, dport) in self.tcp_connections_seen\r\n                          ):\r\n+                             if tcp.flags != dpkt.tcp.TH_SYN:\r\n+                                 if dport > sport:\r\n+                                     src, sport, dst, dport = dst, dport, src, sport\r\n                              self.tcp_connections.append((src, sport, dst, dport, offset, ts - first_ts))\r\n                              self.tcp_connections_seen.add((src, sport, dst, dport))\r\n                          self.alive_hosts[dst, dport] = True\r\n```\nComment: thanks, lets see if someone can test it too, as those months im pretty busy",
+  "Title: How to get in touch regarding a security concern\nBody: Hey there!\n\nI belong to an open source security research community, and a member (@dig2) has found an issue, but doesn\u2019t know the best way to disclose it.\n\nIf not a hassle, might you kindly add a `SECURITY.md` file with an email, or another contact method? GitHub [recommends](https://docs.github.com/en/code-security/getting-started/adding-a-security-policy-to-your-repository) this best practice to ensure security issues are responsibly disclosed, and it would serve as a simple instruction for security researchers in the future.\n\nThank you for your consideration, and I look forward to hearing from you!\n\n(cc @huntr-helper)\nComment: hello thanks, I have updated that, feel free to ping by email/twitter, closing this, open if needed",
+  "Title: regsvr\nBody: None",
+  "Title: Resolve static extraction fails if sha256 exists\nBody: Resolves issue where static extraction fails if sha256 exists. The find_one method returns a dict and not a list.",
+  "Title: Failed to run the processing module \"Sysmon\" list index out of range\nBody: ## Failure Logs\r\n\r\n```\r\n2021-11-13 19:26:13,947 [lib.cuckoo.core.plugins] ERROR: Failed to run the processing module \"Sysmon\":\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 353, in process\r\n    data = current.run()\r\n  File \"/opt/CAPEv2/utils/../modules/processing/sysmon.py\", line 56, in run\r\n    lastlog = lastlog[-1]\r\nIndexError: list index out of range\r\n```\r\n\nComment: pushed fix, sysmon is community module and not core, that means we don't use that so it should be maintained by community",
+  "Title: Strings on demand + msi installer extracts\nBody: None",
+  "Title: Update startup.py\nBody: fix spelling error that causes a problem while startup",
+  "Title: fix tasks_delete url to allow commas\nBody: Allow commas in the url so that deleting multiple works",
+  "Title: Add arch key to machine config and fix task fetching\nBody: requires 'alembic upgrade head'\r\nrequires 'arch' key added to machinery file\r\n\nComment: thank you, had posibility to test",
+  "Title: Neverending pending tasks\nBody: In short, I believe that the whole logic behind `def fetch(self, machine, label):` is utterly wrong.\r\n\r\nA) before - ok [source](https://github.com/kevoreilly/CAPEv2/blob/3937f60bfacd511cfa9ad569e0ff96d0d34e177c/lib/cuckoo/core/database.py#L750-L796)\r\nB) now - bad [source](https://github.com/kevoreilly/CAPEv2/blob/master/lib/cuckoo/core/database.py#L798-L844)\r\n\r\nBy just comparing on what is going inside, previously argument `machine` has been used to find the result in a proper way (by filtering rows inside the query), while now, first PENDING task is fetched in hope that its `machine` column will match the `label` or `machine` argument. This is plain wrong for many reasons. In our case, this causes neverending pending tasks (i.e. that `fetch()` is always returning `None`)\r\n\r\nAs I've seen that lots of changes have been made in last 30 days, some even in hope to fix this issue, my recommendation is reread everything for couple of times and then try to write it properly.\r\n\r\nFor start, `fetch` function's argument `machine` (and that new one `label`) should be used as a filter inside the query, and not as a `if` condition against the first fetched row. This is like doing a SQL query by fetching first row from `SELECT` statement, and then doing the filtering of that first row for a given `WHERE` condition. This is bad\r\n\r\np.s. don't mind if I've been too harsh here. You are still doing an awesome job\nComment: Hi stamparm - thank you, I appreciate the analysis. You are right several attempts have been made to fix this issue. It would be really great if you could turn this analysis into code and submit a PR. There are very few actual contributors to this project, all of whom are very busy in their day jobs. I for one don't even have the mental bandwidth to lift the lid on this one as I am swamped with monitor issues. If you can see the light then the most helpful thing would be to submit any suggested fixes!\nComment: In the mean time, we reverted CAPE back to previously known-to-be-good revision. Thus, I am currently not able to give the proper diff/patch :(\r\n\r\nNevertheless, AFAICS, this should be the digest of my ramblings up above:\r\n\r\n1) Remove that newly introduced `if` condition:\r\n```\r\nif row:\r\n    if row.machine and machine != row.machine and label != row.machine:\r\n        return None\r\nelse:\r\n    return None\r\n```\r\n\r\nand replace with:\r\n\r\n```\r\nif not row:\r\n    return None\r\n```\r\n\r\n2) Below `.filter_by(status=TASK_PENDING)`, inside queries used in `def fetch(self, machine, label):`, append a line containing (or smth with similar `WHERE` logic):\r\n\r\n```\r\n.filter(or_(Task.machine==machine, Task.machine==label))\r\n```\r\n\nComment: I am running into this same issue. I have a total of 12 tasks being sent into my CAPE and it only runs about 5-6 tasks before running into a forever pending issue. I looked at the past issues, and going to try to fanagle with the mongodb on them see if that fixes it. What version of CAPE did you rollback to, that was good to go? I just installed the latest version about last week.\nComment: @enzok do you have solution for this? otherwise i will revert this to the state as it was initially\nComment: @SaschaWTech we reverted to https://github.com/kevoreilly/CAPEv2/commit/a2f545646012c4e5e67c242339020f5e06ffa1fb. that one works for sure\nComment: Would be interesting to see and example entry from the machinery config file.\r\n\r\n@doomedraven  I sent you a slack message.\nComment: Hi all, came across with the same issue. Looks like updated `fetch` method doesn't work properly. Tasks being in pending forever in a couple of hours.\r\n\r\nHere is an example of machinery (kvm.conf) config file:\r\n\r\n```yaml\r\n[kvm]\r\nmachines = Win7x64_cape_1G_1, Win7x64_cape_1G_2, Win7x86_1, Win7x86_2\r\n\r\ninterface = eth0\r\n\r\n[Win7x86_1]\r\nlabel = Windows7_x86_cape1\r\nplatform = windows\r\nip = 192.168.122.105\r\nsnapshot = cape_snapshot\r\n\r\n[Win7x86_2]\r\nlabel = Windows7_x86_cape2\r\nplatform = windows\r\nip = 192.168.122.106\r\nsnapshot = cape_snapshot\r\n\r\n[Win7x64_1]\r\nlabel = Windows7_x64_cape1\r\nplatform = windows\r\nip = 192.168.122.107\r\ntags = x64\r\nsnapshot = cape_snapshot\r\n\r\n[Win7x64_2]\r\nlabel = Windows7_x64_cape2\r\nplatform = windows\r\nip = 192.168.122.108\r\ntags = x64\r\nsnapshot = cape_snapshot\r\n```\nComment: I have PR'd a fix for this issue. Until it's merged a work around is to change the following line:\r\n\r\n     if row.machine and machine != row.machine and label != row.machine:\r\nto:\r\n     if row.machine and row.machine != label:\nComment: hi @enzok I've tested your remote PR https://github.com/kevoreilly/CAPEv2/pull/620.\r\n\r\nAdded `arch` variable to each machines in machinery file.\r\nIt works well but after ~80 samples all machines go for pending status again.\r\n\r\n```\r\nforce_timeout |        clock        |          added_on          | started_on | completed_on | status  | dropped_files | running_processes | api_calls | dom>\r\n--------------+---------------------+----------------------------+------------+--------------+---------+---------------+-------------------+-----------+---->\r\n              | 2021-11-12 09:07:52 | 2021-11-12 09:07:52.936505 |            |              | pending |               |                   |           |    >\r\n              | 2021-11-12 09:05:49 | 2021-11-12 09:05:49.663568 |            |              | pending |               |                   |           |    >\r\n              | 2021-11-12 09:07:52 | 2021-11-12 09:07:52.667763 |            |              | pending |               |                   |           |    >\r\n              | 2021-11-12 09:07:52 | 2021-11-12 09:07:52.787241 |            |              | pending |               |                   |           |    >\r\n              | 2021-11-12 09:07:53 | 2021-11-12 09:07:53.18677  |            |              | pending |               |                   |           |    >\r\n              | 2021-11-12 09:07:53 | 2021-11-12 09:07:53.288545 |            |              | pending |               |                   |           |    >\r\n              | 2021-11-12 09:09:52 | 2021-11-12 09:09:52.735108 |            |              | pending |               |                   |           |    >\r\n              | 2021-11-12 09:09:52 | 2021-11-12 09:09:52.855717 |            |              | pending |               |                   |           |    >\r\n              | 2021-11-12 09:09:52 | 2021-11-12 09:09:52.970191 |            |              | pending |               |                   |           |    >\r\n              | 2021-11-12 09:09:53 | 2021-11-12 09:09:54.361335 |            |              | pending |               |                   |           |    >\r\n              | 2021-11-12 09:09:54 | 2021-11-12 09:09:54.502195 |            |              | pending |               |                   |           |    >\r\n              | 2021-11-12 09:09:54 | 2021-11-12 09:09:54.736453 |            |              | pending |               |                   |           |    >\r\n              | 2021-11-12 09:12:04 | 2021-11-12 09:12:04.679467 |            |              | pending |               |                   |           | \r\n```\nComment: Finally it works for me if I comment filter condition line: \r\n\r\n```python\r\n            row = (\r\n                session.query(Task)\r\n                    .filter_by(status=TASK_PENDING)\r\n                    .order_by(Task.priority.desc(), Task.added_on)\r\n                    # distributed cape\r\n                    .filter(not_(Task.options.contains(\"node=\")))\r\n                    # .filter(cond)\r\n                    .first()\r\n            )\r\n```\r\n\r\nDoes it mean something wrong here?\r\n\r\n```python\r\n        #set filter to get tasks with acceptable arch\r\n        if \"x64\" in machine.arch:\r\n            cond = or_(*[Task.tags.any(name=\"x64\"), Task.tags.any(name=\"x86\")])\r\n        else:\r\n            cond = or_(*[Task.tags.any(name=machine.arch)])\r\n```\nComment: can you dump the machines table and tasks_tags table\nComment: if you remove the condition then your just grabbing whatever is available without regard to architecture and PE type.\nComment: can your run the following query:\r\nselect t1.id, t1.machine_id, m1.label, m1.arch, m2.tag_id, t2.name from tasks t1 inner join  machines m1 on m1.id = t1.machine_id inner join machines_tags m2 on m1.id = m2.machine_id inner join tags t2 on m2.tag_id = t2.id where t2.name like 'x64' or t2.name like 'x86';\r\n\nComment: machines:\r\n\r\n```\r\nid |       name        |         label         | arch |     ip      | platform | interface | snapshot  | locked |     locked_changed_on      |  status  |     status_changed_on      | resultserver_ip | resultserver_port \r\n----+-------------------+-----------------------+------+-------------+----------+-----------+-----------+--------+----------------------------+----------+----------------------------+-----------------+-------------------\r\n 65 | Win7x86_cape_1G_5 | Windows7_x86_cape5-1G | x86  | 10.32.10.49 | windows  | br1       | snap | f      |                            | poweroff | 2021-11-12 14:24:24.377088 | 10.32.10.1      | 2042\r\n 62 | Win7x86_cape_1G_2 | Windows7_x86_cape2-1G | x86  | 10.32.10.46 | windows  | br1       | snap | f      |                            | poweroff | 2021-11-12 14:24:24.399636 | 10.32.10.1      | 2042\r\n 58 | Win7x64_cape_1G_6 | Windows7_x64_cape6-1G | x64  | 10.32.10.40 | windows  | br1       | snap | f      | 2021-11-12 14:33:11.192818 | poweroff | 2021-11-12 14:33:11.152134 | 10.32.10.1      | 2042\r\n 63 | Win7x86_cape_1G_3 | Windows7_x86_cape3-1G | x86  | 10.32.10.47 | windows  | br1       | snap | f      |                            | poweroff | 2021-11-12 14:24:27.084458 | 10.32.10.1      | 2042\r\n 59 | Win7x64_cape_1G_7 | Windows7_x64_cape7-1G | x64  | 10.32.10.41 | windows  | br1       | snap | t      | 2021-11-12 14:27:25.499043 | running  | 2021-11-12 14:27:57.504336 | 10.32.10.1      | 2042\r\n 60 | Win7x64_cape_1G_8 | Windows7_x64_cape8-1G | x64  | 10.32.10.42 | windows  | br1       | snap | t      | 2021-11-12 14:32:58.789019 | running  | 2021-11-12 14:33:13.191359 | 10.32.10.1      | 2042\r\n...\r\n```\r\n\r\ntasks_tags:\r\n\r\n```\r\n task_id | tag_id \r\n---------+--------\r\n      95 |      2\r\n      96 |      2\r\n      97 |      2\r\n      98 |      1\r\n      99 |      2\r\n     100 |      1\r\n     101 |      2\r\n     102 |      1\r\n     103 |      1\r\n     104 |      1\r\n     105 |      1\r\n     106 |      1\r\n     107 |      1\r\n     108 |      1\r\n     109 |      1\r\n...\r\n```\r\n\r\n\r\n```\r\ncape=> select t1.id, t1.machine_id, m1.label, m1.arch, m2.tag_id, t2.name from tasks t1 inner join machines m1 on m1.id = t1.machine_id inner join machines_tags m2 on m1.id = m2.machine_id inner join tags t2 on m2.tag_id = t2.id where t2.name like 'x64' or t2.name like 'x86';\r\n id | machine_id | label | arch | tag_id | name \r\n----+------------+-------+------+--------+------\r\n(0 rows)\r\n\r\n```\nComment: can you dump tags - the last query shouldn't have returned empty\nComment: tags:\r\n\r\n```\r\ncape=> SELECT * FROM tags;\r\n id | name \r\n----+------\r\n  1 | x86\r\n  2 | x64\r\n(2 rows)\r\n```\nComment: machine_tags\nComment: ```\r\ncape=> SELECT * FROM machines_tags;\r\n machine_id | tag_id \r\n------------+--------\r\n(0 rows)\r\n\r\n```\nComment: that shouldn't be empty\nComment: or maybe it is if there are no other tags\nComment: that's my configuration:\r\n\r\n```\r\n[Win7x86_cape_1G_1]\r\nlabel = Windows7_x86_cape1-1G\r\nplatform = windows\r\narch = x86\r\nip = 10.32.10.45\r\nsnapshot = snap\r\n\r\n[Win7x64_cape_1G_1]\r\nlabel = Windows7_x64_cape1-1G\r\nplatform = windows\r\narch = x64\r\nip = 10.32.10.46\r\nsnapshot = snap\r\n\r\n```\r\n\r\nDo we need to use `tags` ?\nComment: Yes\nComment: `tags` and `arch` ?\nComment: It's in the conf file:\r\n\r\nx64 binaries requires tags=x64\r\n (Optional but IMPORTANT) Set your own tags. These are comma separated and help to identify\r\n specific VMs. You can run samples on VMs with tag you require.\r\nNote that the x64 tag is currently special.  For submitted 64-bit PE files,\r\nthe x64 tag will automatically be added, forcing them to be run on a 64-bit\r\nVM.  For this reason, make sure all 64-bit VMs have the x64 tag.\r\n tags = windows_xp_sp3,32_bit,acrobat_reader_6\r\n\r\nTags is the requirement\nComment: cool, I'll try to use:\r\n\r\n```\r\n[Win7x86_cape_1G_1]\r\nlabel = Windows7_x86_cape1-1G\r\nplatform = windows\r\narch = x86\r\ntags = x86\r\nip = 10.32.10.45\r\nsnapshot = snap\r\n\r\n[Win7x64_cape_1G_1]\r\nlabel = Windows7_x64_cape1-1G\r\nplatform = windows\r\narch = x64\r\ntags = x64\r\nip = 10.32.10.46\r\nsnapshot = snap\r\n\r\n```\r\n\r\nthanks guys !\nComment: looks like all good now:\r\n\r\n```\r\ncape=> select t1.id, t1.machine_id, m1.label, m1.arch, m2.tag_id, t2.name from tasks t1 inner join machines m1 on m1.id = t1.machine_id inner join machines_tags m2 on m1.id = m2.machine_id inner join tags t2 on m2.tag_id = t2.id where t2.name like 'x64' or t2.name like 'x86';\r\n id  | machine_id |         label         | arch | tag_id | name \r\n-----+------------+-----------------------+------+--------+------\r\n 176 |         66 | Windows7_x64_cape1-1G | x64  |      2 | x64\r\n 178 |         67 | Windows7_x64_cape2-1G | x64  |      2 | x64\r\n 173 |         68 | Windows7_x64_cape3-1G | x64  |      2 | x64\r\n 175 |         69 | Windows7_x64_cape4-1G | x64  |      2 | x64\r\n 177 |         70 | Windows7_x64_cape5-1G | x64  |      2 | x64\r\n 172 |         71 | Windows7_x64_cape6-1G | x64  |      2 | x64\r\n 174 |         72 | Windows7_x64_cape7-1G | x64  |      2 | x64\r\n 179 |         73 | Windows7_x64_cape8-1G | x64  |      2 | x64\r\n```\r\n\r\n```\r\ncape=> SELECT * FROM machines_tags;\r\n machine_id | tag_id \r\n------------+--------\r\n         66 |      2\r\n         67 |      2\r\n         68 |      2\r\n         69 |      2\r\n         70 |      2\r\n         71 |      2\r\n         72 |      2\r\n         73 |      2\r\n         74 |      1\r\n         75 |      1\r\n         76 |      1\r\n         77 |      1\r\n         78 |      1\r\n(13 rows)\r\n```\nComment: are tasks getting assigned?\nComment: yup\nComment: so for this to work, the tags in conf should at a minimum contain the arch\r\n\r\nthere must be a dependency on machines_tags table somewhere, and that table is created using conf tags\nComment: I think we need to add runtime warnings for the absence of tags or arch otherwise this will trip a lot of people \nComment: I think i figured out why the tags is required - has to do with acquiring the machine\r\nneed to set the task machine after fetching it, otherwise if it's not specified at submission the acquire will use tags\nComment: updated the PR - so tags is optional and only arch is required\nComment: @yevhenprotsenko if you have some time could you test the latest commits to this PR. Thanks.\nComment: i hope to give it a try tomorrow also to see, but no promises \nComment: hello all, i just did deploy of fresh cape, strange, without that Enzok's PR, scheduler works just fine for me %)\nComment: @enzok checked your last PR. I used `arch` and `tags` parameters. The issue with pending tasks remain. Something wrong with condition. If we remove the condition everything work fine.\nComment: i would suggest to put breakpoint on that condition and do manual debug what doesn't match is how i spot the problem with labels as it was checking names only\nComment: I have 3 instances running now with this PR without any issues.\nComment: btw I think this is the current issue here https://github.com/kevoreilly/CAPEv2/issues/618\nComment: so @enzok PR was merged, thank you, please test and let us know if that solved issue\nComment: lol now it works on my dev box, but not working on capesandbox.com\nComment: so if you udpate to that PR and you have pending tasks they will have problems due to tags, thats all\nComment: as nobody comments here anymore, im closing this, let me know if anyone still having any of those issues\nComment: thanks again @enzok for PR\nComment: > let me know if anyone still having any of those issues\r\n\r\nThere are still some weird edge cases here - repro steps:\r\n\r\n1. Use a x64 package and a x86 machine, the task will be stuck pending forever.\r\n2. Use a x64 package and a x86 tag, the analysis might get a x64 machine, but could get a x86 machine too.\nComment: yes those checks not implemented, there is part of tags checks implemented, you are welcome to extend them",
+  "Title: Class Scheduler do database query(Machine) before machinery initialization\nBody: In class scheduler:\r\n``` python\r\ndef __init__(self, maxcount=None):\r\n        self.running = True\r\n        self.cfg = Config()\r\n        self.db = Database()           <--------- HERE query for initializing self.vms_tags and self.tasks_filters\r\n        self.maxcount = maxcount\r\n        self.total_analysis_count = 0\r\n\r\ndef set_stop_analyzing(self, signum, stack):\r\n    ...\r\ndef initialize(self):\r\n    \"\"\"Initialize the machine manager.\"\"\"\r\n    ...\r\n    try:\r\n        machinery.initialize(machinery_name)   <--------- HERE initialize machines database via configuration file\r\n    except CuckooMachineError as e:\r\n        raise CuckooCriticalError(\"Error initializing machines: %s\" % e)\r\n```\r\nIn Scheduler.start function, when fetching task, it will use variable self.db that mentioned above\r\n```python\r\ndef fetch(self, machine, label):\r\n    \"\"\"Fetches a task waiting to be processed and locks it for running.\r\n    @return: None or task\r\n    \"\"\"\r\n    session = self.Session()\r\n    row = None\r\n    try:\r\n        # if 64-bit machine select any pending task\r\n        if \"x64\" in self.vms_tags.get(machine, \"\"):  <---------- HERE self.vms_tags will be {} if the program run from scratch\r\n            row = (\r\n                session.query(Task)\r\n                    .filter_by(status=TASK_PENDING)\r\n                    .order_by(Task.priority.desc(), Task.added_on)\r\n                    # distributed cape\r\n                    .filter(not_(Task.options.contains(\"node=\")))\r\n                    .first()\r\n            )\r\n```\nComment: Those lines are removed in my PR as they're no longer needed.\nComment: thank you fixed with @enzok's PR",
+  "Title: CAPEv2 - Docker\nBody: 1) Is it possible to dockerise CAPEv2?\r\n2) Does a similar project/container already exist?\r\n3) Do you see any possible issues?\r\n4) What would be the limitations?\nComment: You may start here: https://github.com/CAPESandbox/CAHI. The project is still in pre-alpha release\r\n\r\nThere are several approaches to consider and choose from:\r\n\r\n1. Containerize everything, including KVM/QEMU in a single container.\r\n2. Containerize CAPE only, and run KVM/QEMU on host.\r\n3. Containerize individual services and components. \r\n\r\nIn all cases, I think network management between containers and KVM/QEMU/VMs may become cumbersome and require a lot of troubleshooting.\r\n\r\nAlso take a look at this archived project, though they use VirtualBox: https://github.com/blacktop/docker-cuckoo",
+  "Title: Windows shortcuts are not a nix thing :P\nBody: None",
+  "Title: [add] evtx logs export functonality\nBody: - Introduce export of (raw) evtx file (common evtx + sysmon if present) [feature can be enabled in _auxiliary.conf_]\r\n- Enable Windows advanced audit features, before analysis starts\r\n- Expose evtx zip file download from Web UI [can be enabled in _web.conf_]\r\n\r\n![evtx_download](https://user-images.githubusercontent.com/29753218/138908382-9eb45851-0c0e-4c03-a4f0-15f5e11c9b0c.png)\r\n\r\n",
+  "Title: Libvirtd Startup issues\nBody: Hey Team,\r\n\r\nI am running a fresh Ubuntu 20.04. After following the install script for kvm-qemu (https://raw.githubusercontent.com/doomedraven/Tools/master/Virtualization/kvm-qemu.sh), where everything looks to install fine. However, I cannot get the libvirtd service to startup.\r\n\r\nI get the below output:\r\n\r\nct 25 21:12:02 taylor-virtual-machine dnsmasq[1671]: read /etc/hosts - 7 addresses\r\nOct 25 21:12:02 taylor-virtual-machine dnsmasq[1671]: read /var/lib/libvirt/dnsmasq/default.addnhosts - 0 addresses\r\nOct 25 21:12:02 taylor-virtual-machine dnsmasq-dhcp[1671]: read /var/lib/libvirt/dnsmasq/default.hostsfile\r\nOct 25 21:12:02 taylor-virtual-machine libvirtd[3408]: libvirt version: 7.7.0\r\nOct 25 21:12:02 taylor-virtual-machine libvirtd[3408]: hostname: taylor-virtual-machine\r\nOct 25 21:12:02 taylor-virtual-machine libvirtd[3408]: unsupported configuration: Security driver apparmor not enabled\r\nOct 25 21:12:02 taylor-virtual-machine libvirtd[3408]: internal error: Failed to initialize security drivers\r\nOct 25 21:12:02 taylor-virtual-machine libvirtd[3408]: Initialization of QEMU state driver failed: internal error: Failed to initialize security drivers\r\nOct 25 21:12:02 taylor-virtual-machine libvirtd[3408]: Driver state initialization failed\r\nOct 25 21:12:02 taylor-virtual-machine systemd[1]: libvirtd.service: Succeeded.\r\n\r\nApparmor is installed and loaded and I am not sure where else to look. \r\n\r\nOnly way I can get around it is by setting security_driver = \"none\" in the nano /etc/libvirt/qemu.conf file\r\n\r\nIs that expected or am I missing a step?\r\n\r\nThanks for the help!\r\n\nComment: See i closed issues in repo from where you got the script, speciqlly issue\n100 if i remember correctly\n\nEl mar., 26 oct. 2021 4:17, OpenSecureCo ***@***.***>\nescribi\u00f3:\n\n> Hey Team,\n>\n> I am running a fresh Ubuntu 20.04. After following the install script for\n> kvm-qemu (\n> https://raw.githubusercontent.com/doomedraven/Tools/master/Virtualization/kvm-qemu.sh),\n> where everything looks to install fine. However, I cannot get the libvirtd\n> service to startup.\n>\n> I get the below output:\n>\n> ct 25 21:12:02 taylor-virtual-machine dnsmasq[1671]: read /etc/hosts - 7\n> addresses\n> Oct 25 21:12:02 taylor-virtual-machine dnsmasq[1671]: read\n> /var/lib/libvirt/dnsmasq/default.addnhosts - 0 addresses\n> Oct 25 21:12:02 taylor-virtual-machine dnsmasq-dhcp[1671]: read\n> /var/lib/libvirt/dnsmasq/default.hostsfile\n> Oct 25 21:12:02 taylor-virtual-machine libvirtd[3408]: libvirt version:\n> 7.7.0\n> Oct 25 21:12:02 taylor-virtual-machine libvirtd[3408]: hostname:\n> taylor-virtual-machine\n> Oct 25 21:12:02 taylor-virtual-machine libvirtd[3408]: unsupported\n> configuration: Security driver apparmor not enabled\n> Oct 25 21:12:02 taylor-virtual-machine libvirtd[3408]: internal error:\n> Failed to initialize security drivers\n> Oct 25 21:12:02 taylor-virtual-machine libvirtd[3408]: Initialization of\n> QEMU state driver failed: internal error: Failed to initialize security\n> drivers\n> Oct 25 21:12:02 taylor-virtual-machine libvirtd[3408]: Driver state\n> initialization failed\n> Oct 25 21:12:02 taylor-virtual-machine systemd[1]: libvirtd.service:\n> Succeeded.\n>\n> Apparmor is installed and loaded and I am not sure where else to look.\n>\n> Thanks for the help!\n>\n> \u2014\n> You are receiving this because you are subscribed to this thread.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/614>, or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3ZPO7KKVBBTFFBHZVLUIYFTNANCNFSM5GWUV5OQ>\n> .\n> Triage notifications on the go with GitHub Mobile for iOS\n> <https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675>\n> or Android\n> <https://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub>.\n>\n>\n\nComment: And in this cases always provide instalation log as - h says to run\n\nEl mar., 26 oct. 2021 8:01, Andriy Brukhovetskyy ***@***.***>\nescribi\u00f3:\n\n> See i closed issues in repo from where you got the script, speciqlly issue\n> 100 if i remember correctly\n>\n> El mar., 26 oct. 2021 4:17, OpenSecureCo ***@***.***>\n> escribi\u00f3:\n>\n>> Hey Team,\n>>\n>> I am running a fresh Ubuntu 20.04. After following the install script for\n>> kvm-qemu (\n>> https://raw.githubusercontent.com/doomedraven/Tools/master/Virtualization/kvm-qemu.sh),\n>> where everything looks to install fine. However, I cannot get the libvirtd\n>> service to startup.\n>>\n>> I get the below output:\n>>\n>> ct 25 21:12:02 taylor-virtual-machine dnsmasq[1671]: read /etc/hosts - 7\n>> addresses\n>> Oct 25 21:12:02 taylor-virtual-machine dnsmasq[1671]: read\n>> /var/lib/libvirt/dnsmasq/default.addnhosts - 0 addresses\n>> Oct 25 21:12:02 taylor-virtual-machine dnsmasq-dhcp[1671]: read\n>> /var/lib/libvirt/dnsmasq/default.hostsfile\n>> Oct 25 21:12:02 taylor-virtual-machine libvirtd[3408]: libvirt version:\n>> 7.7.0\n>> Oct 25 21:12:02 taylor-virtual-machine libvirtd[3408]: hostname:\n>> taylor-virtual-machine\n>> Oct 25 21:12:02 taylor-virtual-machine libvirtd[3408]: unsupported\n>> configuration: Security driver apparmor not enabled\n>> Oct 25 21:12:02 taylor-virtual-machine libvirtd[3408]: internal error:\n>> Failed to initialize security drivers\n>> Oct 25 21:12:02 taylor-virtual-machine libvirtd[3408]: Initialization of\n>> QEMU state driver failed: internal error: Failed to initialize security\n>> drivers\n>> Oct 25 21:12:02 taylor-virtual-machine libvirtd[3408]: Driver state\n>> initialization failed\n>> Oct 25 21:12:02 taylor-virtual-machine systemd[1]: libvirtd.service:\n>> Succeeded.\n>>\n>> Apparmor is installed and loaded and I am not sure where else to look.\n>>\n>> Thanks for the help!\n>>\n>> \u2014\n>> You are receiving this because you are subscribed to this thread.\n>> Reply to this email directly, view it on GitHub\n>> <https://github.com/kevoreilly/CAPEv2/issues/614>, or unsubscribe\n>> <https://github.com/notifications/unsubscribe-auth/AAOFH3ZPO7KKVBBTFFBHZVLUIYFTNANCNFSM5GWUV5OQ>\n>> .\n>> Triage notifications on the go with GitHub Mobile for iOS\n>> <https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675>\n>> or Android\n>> <https://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub>.\n>>\n>>\n>\n\nComment: snip from ./kvm-qemu.sh libvirt:\r\n\r\n```\r\nflex -B -v -oparser_lex.c parser_lex.l\r\nmake[1]: flex: Command not found\r\nmake[1]: *** [Makefile:203: parser_lex.c] Error 127\r\n```\r\nafter sudo apt install flex + rerunning (sudo ./kvm-qemu.sh libvirt) libvirtd and apparmor starting without errors.\r\nMaybe that's also your problem. \r\n\r\n\nComment: First time see this flex dependench, thanks i guess issue can be closed\n\nEl mar., 26 oct. 2021 8:56, ClaudioWayne ***@***.***>\nescribi\u00f3:\n\n> snip from ./kvm-qemu.sh libvirt:\n>\n> flex -B -v -oparser_lex.c parser_lex.l\n> make[1]: flex: Command not found\n> make[1]: *** [Makefile:203: parser_lex.c] Error 127\n>\n> after sudo apt install flex + rerunning (sudo ./kvm-qemu.sh libvirt)\n> libvirtd and apparmor starting without errors.\n> Maybe that's also your problem.\n>\n> \u2014\n> You are receiving this because you commented.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/614#issuecomment-951617063>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3YL5SQS6P7OOOI4KBLUIZNJRANCNFSM5GWUV5OQ>\n> .\n> Triage notifications on the go with GitHub Mobile for iOS\n> <https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675>\n> or Android\n> <https://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub>.\n>\n>\n\nComment: Maybe he can verify if install flex will solve the problem\nComment: \ud83e\udd23I didnt spot that ot was ypu Claudio responding and not the original\nperson\n\nEl mar., 26 oct. 2021 9:08, ClaudioWayne ***@***.***>\nescribi\u00f3:\n\n> Maybe he can verify if install flex will solve the problem\n>\n> \u2014\n> You are receiving this because you commented.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/614#issuecomment-951625403>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH32U2UZJOE7VB5ECT53UIZOXJANCNFSM5GWUV5OQ>\n> .\n> Triage notifications on the go with GitHub Mobile for iOS\n> <https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675>\n> or Android\n> <https://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub>.\n>\n>\n\nComment: Did a quick install to check if flex will solve the problem. \r\n-> flex has solved the problem ;P\r\nPR in Tools/kvm-qemu.sh\nComment: @OpenSecureCo btw, are you planning to create a video about CAPE? :D\nComment: Hey guys,\r\n\r\nThanks for getting back to me. I will install flex prior to running the script and see how that goes. @ClaudioWayne - I plan to, just working out some kinks first :) \nComment: Flex install prior to running script did the trick. Thanks guys!",
+  "Title: Feature/update cape\nBody: None\nComment: Sorry for the messy PR, I chose the wrong fork :[\r\nThank you for understanding\nComment: np :)",
+  "Title: Scheduler problem if arch is different than x32 or x64\nBody: ```\r\nelse:\r\n                # 32-bit machine select only 32-bit pending tasks\r\n                # filter all tasks with 64-bit tag, then invert in filter\r\n                cond = or_(*[Task.tags.any(name=\"x64\")])\r\n                row = (\r\n                 session.query(Task)\r\n                     .options(joinedload(\"tags\"))\r\n                     .filter_by(status=TASK_PENDING)\r\n                     # distributed cape\r\n                     .filter(not_(Task.options.contains(\"node=\")))\r\n                     .order_by(Task.priority.desc(), Task.added_on)\r\n                     .filter(not_(cond)) <- makes any not x32 or x64 tasks like bash.sh stuck in pending forever\r\n                     .first()\r\n                )\r\n```",
+  "Title: memory.conf [mask] option not working\nBody: # Prerequisites\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nFilter out PIDs for memory analysis by using the `pid_generic=` option under section `[mask]` in memory.conf\r\n\r\n# Current Behavior\r\n\r\nNo PIDs are filtered out despite using the `pid_generic=` option\r\n\r\n## Steps to Reproduce\r\n\r\n1. Set PIDs to filter out in option `pid_generic=` under `[mask]` section in memory.conf\r\n2. Set `enabled=yes`\r\n3. Set `filter=on` under some scan sections e.g. `[malfind]`\r\n3. Submit an analysis with Full Memory dump enabled\r\n4. View Memory Analysis and observe that no PIDs are filtered out\r\n\r\nI also tried some changes in memory.py:\r\n- Tried passing `mask_pid` to `vol3.run` e.g. `vol3.run(\"...\", pid=self.mask_pid)`, but didn't work\r\n- Also tried setting `round=2` but still didn't work.\r\n\r\n## Context\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | dbdd022eb30d6efbd8a9db2a53abcfe250cfa5b0\r\n| OS version       | Ubuntu 20.04.3\r\n\r\n\nComment: hello yes im aware of that, with rount2 it should work but maybe how you passing that is different, i just don't use that feature is why i didn't implement/ported that\r\n\r\nif you run it as `volapi.run(\"windows.anchor.Anchor\", pids, rounds)`. that does work \r\npids are list of pids and each pid is int\nComment: On second look, it looks like the pid filter only applies to the `windows.pslist.PsList` plugin. Is that correct? I was trying to apply the filter to other plugins\r\n\nComment: Correct, as i dont use any other plugin\n\nEl lun., 25 oct. 2021 20:06, psalire ***@***.***> escribi\u00f3:\n\n> On second look, it looks like the pid filter only applies to the\n> windows.pslist.PsList plugin. Is that correct? I was trying to apply the\n> filter to other plugins\n>\n> \u2014\n> You are receiving this because you commented.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/611#issuecomment-951173005>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH32THXKIKGLD7WLQU4DUIWMBRANCNFSM5GRN4YOA>\n> .\n> Triage notifications on the go with GitHub Mobile for iOS\n> <https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675>\n> or Android\n> <https://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub>.\n>\n>\n\nComment: Okay I see. I'll have to update other volatility plugins to use a pid filter like the pslist plugin does. Thanks for the help\nComment: Yaw, feel free to pr that i will merge\n\nEl lun., 25 oct. 2021 21:03, psalire ***@***.***> escribi\u00f3:\n\n> Closed #611 <https://github.com/kevoreilly/CAPEv2/issues/611>.\n>\n> \u2014\n> You are receiving this because you commented.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/611#event-5515711985>, or\n> unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH37OXYUNLHSO3N3LJEDUIWSYXANCNFSM5GRN4YOA>\n> .\n> Triage notifications on the go with GitHub Mobile for iOS\n> <https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675>\n> or Android\n> <https://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub>.\n>\n>\n",
+  "Title: fix full memory dump encoding error\nBody: Hello, The memory dump file needs to be opened as bytes or it crashes trying to convert to utf-8\nComment: thanks",
+  "Title: Ransom detection and social exclusion :D\nBody: Add module to check files.json for ransomware files and exclude them from processing of other modules specially like CAPE.py\nComment: POC done",
+  "Title: XLS Processing Fails\nBody: Howdy!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nA successful processing run\r\n\r\n# Current Behavior\r\n\r\nReceives failed_processing for XLS file\r\n\r\n# Failure Information (for bugs)\r\n\r\nSeems to just present with a failed_processing error. No logs showing up in processing.log\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Use this file [https://bazaar.abuse.ch/sample/a9411c606c7e884682523677905136dc49bba7fb765c8f3db33d609d0e3047a7/](https://bazaar.abuse.ch/sample/a9411c606c7e884682523677905136dc49bba7fb765c8f3db33d609d0e3047a7/)\r\n2. Install Cape\r\n3. Submit with default options\r\n\r\n## Context\r\n\r\nNotes: VM built with packer\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       |commit 8ad4444c283ba3069552806acf5f613bf1b30454\r\n| OS version       | Ubuntu 20.04 - `Linux ubuntu 5.4.0-89-generic #100-Ubuntu SMP Fri Sep 24 14:50:10 UTC 2021 x86_64 x86_64 x86_64 GNU/Linux`\r\n\r\n## Failure Logs\r\n\r\n#### API Respone\r\n```\r\n{\r\n    \"error\": true,\r\n    \"error_value\": \"Task is still being analyzed\"\r\n}\r\n```\r\n\r\nThanks!\nComment: read readme how to debug the problem, no logs is useless\nComment: It works on public: https://www.capesandbox.com/analysis/199099/ so it must be specific to your setup \nComment: @doomedraven Im having a bit of trouble finding that article, is that in the Readme? Is [this](https://capev2.readthedocs.io/en/latest/usage/monitor.html) the one? Im assuming that is launching both the process and cuckoo.py with the `-d` flag?\r\n\r\n@kevoreilly Is this likely due to a dependency issue or a config issue?\nComment: docs != readme\r\nhttps://github.com/kevoreilly/CAPEv2#installation-recommendations-and-scripts-for-optimal-performance at the bottom you have the answer there. that are not realted to configs at all\nComment: and you provided extremely poor details, like win version, office version etc, how do you expect to know what is wrong?\nComment: I would try reprocess with debugging to see the output:\r\n\r\ncd /opt/CAPEv2\r\nsudo su cape\r\npython3 utils/process/py -d -r {id}\nComment: @doomedraven I apologize, I was not sure that was entirely relevant as it wasn't in the template (Just trying to follow the format)\r\n\r\n@kevoreilly Thank you for the suggestion!\r\n\r\nSoftware:\r\n- Office 2007\r\n\r\nGuests:\r\n- Windows 7 x64 | windows 10 x64 | windows 11 x64\r\n- Machinery is Proxmox (7.0-8)\r\n\r\nOther Notes:\r\n- Seem to have a high rate of failed processing tasks, though the XLS is consistently failing\r\n![image](https://user-images.githubusercontent.com/73605619/138301663-a97fcd1e-ba0f-4a35-b633-1606e999731b.png)\r\n\r\n- Running in debug mode outside systemd it proccesed fine oddly with this as the only error\r\n```\r\n 2021-10-21 14:46:25,062 [lib.cuckoo.core.plugins] ERROR: Failed to run the reporting module \"ReSubmitExtractedEXE\":\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 817, in process\r\n    current.run(self.results)\r\n  File \"/opt/CAPEv2/utils/../modules/reporting/resubmitexe.py\", line 445, in run\r\n    self.results[\"resubs\"].append(task_id)\r\nKeyError: 'resubs'\r\n```\r\n#### Reprocess attempt\r\nRunning in debug mode outside systemd  it re-proccesed fine oddly\r\n```\r\nmwatermolen@ubuntu:/opt/CAPEv2/utils$ sudo -u cape /usr/bin/python3 process.py -d -r 167\r\nXLMMacroDeobfuscator: pywin32 is not installed (only is required if you want to use MS Excel)\r\n2021-10-21 14:52:10,246 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Decompression\" on analysis at \"/opt/CAPEv2/storage/analyses/167\"\r\n2021-10-21 14:52:10,250 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"CAPE\" on analysis at \"/opt/CAPEv2/storage/analyses/167\"\r\n2021-10-21 14:52:12,518 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"AnalysisInfo\" on analysis at \"/opt/CAPEv2/storage/analyses/167\"\r\n2021-10-21 14:52:12,551 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"BehaviorAnalysis\" on analysis at \"/opt/CAPEv2/storage/analyses/167\"\r\n2021-10-21 14:52:13,922 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Curtain\" on analysis at \"/opt/CAPEv2/storage/analyses/167\"\r\n2021-10-21 14:52:13,925 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Debug\" on analysis at \"/opt/CAPEv2/storage/analyses/167\"\r\n2021-10-21 14:52:13,929 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Deduplicate\" on analysis at \"/opt/CAPEv2/storage/analyses/167\"\r\n2021-10-21 14:52:14,908 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Dropped\" on analysis at \"/opt/CAPEv2/storage/analyses/167\"\r\n2021-10-21 14:52:14,991 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Memory\" on analysis at \"/opt/CAPEv2/storage/analyses/167\"\r\n2021-10-21 14:52:14,992 [root] ERROR: Memory dump not found: to run volatility you have to enable memory_dump\r\n2021-10-21 14:52:14,993 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"NetworkAnalysis\" on analysis at \"/opt/CAPEv2/storage/analyses/167\"\r\n2021-10-21 14:52:15,256 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"ProcDump\" on analysis at \"/opt/CAPEv2/storage/analyses/167\"\r\n2021-10-21 14:52:16,800 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Procmon\" on analysis at \"/opt/CAPEv2/storage/analyses/167\"\r\n2021-10-21 14:52:16,801 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Static\" on analysis at \"/opt/CAPEv2/storage/analyses/167\"\r\n2021-10-21 14:52:16,804 [msodde] DEBUG: Is OLE. Checking streams to see whether this is xls\r\n2021-10-21 14:52:16,805 [root] DEBUG: Finding streams in ole file\r\n2021-10-21 14:52:16,805 [root] DEBUG: direntry  0 Root Entry: no stream (root)\r\n2021-10-21 14:52:16,805 [root] DEBUG: direntry  1 Workbook: is stream of size 236346\r\n2021-10-21 14:52:16,807 [msodde] DEBUG: Process file as excel 2003 (xls)\r\n2021-10-21 14:52:16,808 [root] DEBUG: Finding streams in ole file\r\n2021-10-21 14:52:16,808 [root] DEBUG: direntry  0 Root Entry: no stream (root)\r\n2021-10-21 14:52:16,808 [root] DEBUG: direntry  1 Workbook: is stream of size 236346\r\n2021-10-21 14:52:16,813 [root] DEBUG: direntry  2 \u0005SummaryInformation: is stream of size 4096\r\n2021-10-21 14:52:16,813 [root] DEBUG: direntry  3 \u0005DocumentSummaryInformation: is stream of size 4096\r\n2021-10-21 14:52:16,897 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Strings\" on analysis at \"/opt/CAPEv2/storage/analyses/167\"\r\n2021-10-21 14:52:16,902 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Suricata\" on analysis at \"/opt/CAPEv2/storage/analyses/167\"\r\n2021-10-21 14:52:16,968 [modules.processing.suricata] DEBUG: pcapfile list: {'message': {'count': 0, 'files': []}, 'return': 'OK'} current pcap: {'message': '/opt/CAPEv2/storage/analyses/167/dump.pcap', 'return': 'OK'}\r\n2021-10-21 14:52:21,975 [modules.processing.suricata] DEBUG: pcapfile list: {'message': {'count': 0, 'files': []}, 'return': 'OK'} current pcap: {'message': 'None', 'return': 'OK'}\r\n2021-10-21 14:52:21,976 [modules.processing.suricata] DEBUG: Pcap not in list and not current pcap lets assume it's processed\r\n2021-10-21 14:52:21,984 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"TargetInfo\" on analysis at \"/opt/CAPEv2/storage/analyses/167\"\r\n2021-10-21 14:52:22,025 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"TrID\" on analysis at \"/opt/CAPEv2/storage/analyses/167\"\r\n2021-10-21 14:52:22,434 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Usage\" on analysis at \"/opt/CAPEv2/storage/analyses/167\"\r\n2021-10-21 14:52:22,576 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"VirusTotal\" on analysis at \"/opt/CAPEv2/storage/analyses/167\"\r\n2021-10-21 14:52:23,102 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"TLSMasterSecrets\" on analysis at \"/opt/CAPEv2/storage/analyses/167\"\r\n2021-10-21 14:52:23,104 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"ProcessMemory\" on analysis at \"/opt/CAPEv2/storage/analyses/167\"\r\n2021-10-21 14:52:23,155 [lib.cuckoo.core.plugins] DEBUG: Applying signature overlays for signatures: creates_exe\r\n2021-10-21 14:52:23,157 [lib.cuckoo.core.plugins] DEBUG: Running 409 evented signatures\r\n2021-10-21 14:52:23,158 [lib.cuckoo.core.plugins] DEBUG:         |-- cape_detected_threat\r\n2021-10-21 14:52:23,158 [lib.cuckoo.core.plugins] DEBUG:         |-- Compression\r\n2021-10-21 14:52:23,159 [lib.cuckoo.core.plugins] DEBUG:         |-- Decryption\r\n2021-10-21 14:52:23,159 [lib.cuckoo.core.plugins] DEBUG:         |-- Doppelganging\r\n2021-10-21 14:52:23,159 [lib.cuckoo.core.plugins] DEBUG:         |-- EvilGrab\r\n2021-10-21 14:52:23,160 [lib.cuckoo.core.plugins] DEBUG:         |-- InjectionInterProcess\r\n2021-10-21 14:52:23,160 [lib.cuckoo.core.plugins] DEBUG:         |-- InjectionCreateRemoteThread\r\n2021-10-21 14:52:23,161 [lib.cuckoo.core.plugins] DEBUG:         |-- InjectionProcessHollowing\r\n2021-10-21 14:52:23,161 [lib.cuckoo.core.plugins] DEBUG:         |-- InjectionSetWindowLong\r\n2021-10-21 14:52:23,162 [lib.cuckoo.core.plugins] DEBUG:         |-- PlugX\r\n2021-10-21 14:52:23,162 [lib.cuckoo.core.plugins] DEBUG:         |-- RegBinary\r\n2021-10-21 14:52:23,162 [lib.cuckoo.core.plugins] DEBUG:         |-- TransactedHollowing\r\n2021-10-21 14:52:23,163 [lib.cuckoo.core.plugins] DEBUG:         |-- Unpacker\r\n2021-10-21 14:52:23,163 [lib.cuckoo.core.plugins] DEBUG:         |-- accesses_mailslot\r\n2021-10-21 14:52:23,164 [lib.cuckoo.core.plugins] DEBUG:         |-- accesses_netlogon_regkey\r\n2021-10-21 14:52:23,164 [lib.cuckoo.core.plugins] DEBUG:         |-- accesses_sysvol\r\n2021-10-21 14:52:23,165 [lib.cuckoo.core.plugins] DEBUG:         |-- writes_sysvol\r\n2021-10-21 14:52:23,165 [lib.cuckoo.core.plugins] DEBUG:         |-- adds_admin_user\r\n2021-10-21 14:52:23,165 [lib.cuckoo.core.plugins] DEBUG:         |-- adds_user\r\n2021-10-21 14:52:23,166 [lib.cuckoo.core.plugins] DEBUG:         |-- overwites_admin_password\r\n2021-10-21 14:52:23,166 [lib.cuckoo.core.plugins] DEBUG:         |-- alphacrypt_behavior\r\n2021-10-21 14:52:23,167 [lib.cuckoo.core.plugins] DEBUG:         |-- andromeda_behavior\r\n2021-10-21 14:52:23,167 [lib.cuckoo.core.plugins] DEBUG:         |-- anomalous_deletefile\r\n2021-10-21 14:52:23,167 [lib.cuckoo.core.plugins] DEBUG:         |-- antiav_360_libs\r\n2021-10-21 14:52:23,168 [lib.cuckoo.core.plugins] DEBUG:         |-- antiav_ahnlab_libs\r\n2021-10-21 14:52:23,168 [lib.cuckoo.core.plugins] DEBUG:         |-- antiav_avast_libs\r\n2021-10-21 14:52:23,169 [lib.cuckoo.core.plugins] DEBUG:         |-- antiav_bitdefender_libs\r\n2021-10-21 14:52:23,169 [lib.cuckoo.core.plugins] DEBUG:         |-- antiav_bullgaurd_libs\r\n2021-10-21 14:52:23,170 [lib.cuckoo.core.plugins] DEBUG:         |-- antiav_emsisoft_libs\r\n2021-10-21 14:52:23,170 [lib.cuckoo.core.plugins] DEBUG:         |-- antiav_qurb_libs\r\n2021-10-21 14:52:23,170 [lib.cuckoo.core.plugins] DEBUG:         |-- antiav_servicestop\r\n2021-10-21 14:52:23,171 [lib.cuckoo.core.plugins] DEBUG:         |-- antidbg_windows\r\n2021-10-21 14:52:23,171 [lib.cuckoo.core.plugins] DEBUG:         |-- antidebug_addvectoredexceptionhandler\r\n2021-10-21 14:52:23,172 [lib.cuckoo.core.plugins] DEBUG:         |-- antiav_apioverride_libs\r\n2021-10-21 14:52:23,172 [lib.cuckoo.core.plugins] DEBUG:         |-- antidebug_checkremotedebuggerpresent\r\n2021-10-21 14:52:23,172 [lib.cuckoo.core.plugins] DEBUG:         |-- antidebug_debugactiveprocess\r\n2021-10-21 14:52:23,173 [lib.cuckoo.core.plugins] DEBUG:         |-- antidebug_gettickcount\r\n2021-10-21 14:52:23,173 [lib.cuckoo.core.plugins] DEBUG:         |-- antidebug_guardpages\r\n2021-10-21 14:52:23,174 [lib.cuckoo.core.plugins] DEBUG:         |-- antidebug_ntcreatethreadex\r\n2021-10-21 14:52:23,174 [lib.cuckoo.core.plugins] DEBUG:         |-- antiav_nthookengine_libs\r\n2021-10-21 14:52:23,174 [lib.cuckoo.core.plugins] DEBUG:         |-- antidebug_ntsetinformationthread\r\n2021-10-21 14:52:23,175 [lib.cuckoo.core.plugins] DEBUG:         |-- antidebug_outputdebugstring\r\n2021-10-21 14:52:23,175 [lib.cuckoo.core.plugins] DEBUG:         |-- antidebug_setunhandledexceptionfilter\r\n2021-10-21 14:52:23,176 [lib.cuckoo.core.plugins] DEBUG:         |-- antiemu_wine_func\r\n2021-10-21 14:52:23,176 [lib.cuckoo.core.plugins] DEBUG:         |-- antisandbox_check_userdomain\r\n2021-10-21 14:52:23,177 [lib.cuckoo.core.plugins] DEBUG:         |-- antisandbox_cuckoo\r\n2021-10-21 14:52:23,177 [lib.cuckoo.core.plugins] DEBUG:         |-- antisandbox_cuckoocrash\r\n2021-10-21 14:52:23,177 [lib.cuckoo.core.plugins] DEBUG:         |-- antisandbox_mouse_hook\r\n2021-10-21 14:52:23,178 [lib.cuckoo.core.plugins] DEBUG:         |-- antisandbox_restart\r\n2021-10-21 14:52:23,178 [lib.cuckoo.core.plugins] DEBUG:         |-- antisandbox_sboxie_libs\r\n2021-10-21 14:52:23,178 [lib.cuckoo.core.plugins] DEBUG:         |-- antisandbox_sboxie_objects\r\n2021-10-21 14:52:23,179 [lib.cuckoo.core.plugins] DEBUG:         |-- antisandbox_script_timer\r\n2021-10-21 14:52:23,179 [lib.cuckoo.core.plugins] DEBUG:         |-- antisandbox_sleep\r\n2021-10-21 14:52:23,180 [lib.cuckoo.core.plugins] DEBUG:         |-- antisandbox_sunbelt_libs\r\n2021-10-21 14:52:23,180 [lib.cuckoo.core.plugins] DEBUG:         |-- antisandbox_suspend\r\n2021-10-21 14:52:23,180 [lib.cuckoo.core.plugins] DEBUG:         |-- antisandbox_unhook\r\n2021-10-21 14:52:23,181 [lib.cuckoo.core.plugins] DEBUG:         |-- antivm_directory_objects\r\n2021-10-21 14:52:23,181 [lib.cuckoo.core.plugins] DEBUG:         |-- antivm_generic_disk\r\n2021-10-21 14:52:23,181 [lib.cuckoo.core.plugins] DEBUG:         |-- antivm_generic_disk_setupapi\r\n2021-10-21 14:52:23,182 [lib.cuckoo.core.plugins] DEBUG:         |-- antivm_generic_scsi\r\n2021-10-21 14:52:23,182 [lib.cuckoo.core.plugins] DEBUG:         |-- antivm_generic_services\r\n2021-10-21 14:52:23,182 [lib.cuckoo.core.plugins] DEBUG:         |-- antivm_vbox_libs\r\n2021-10-21 14:52:23,183 [lib.cuckoo.core.plugins] DEBUG:         |-- antivm_vbox_provname\r\n2021-10-21 14:52:23,183 [lib.cuckoo.core.plugins] DEBUG:         |-- antivm_vbox_window\r\n2021-10-21 14:52:23,184 [lib.cuckoo.core.plugins] DEBUG:         |-- antivm_vmware_events\r\n2021-10-21 14:52:23,184 [lib.cuckoo.core.plugins] DEBUG:         |-- antivm_vmware_libs\r\n2021-10-21 14:52:23,184 [lib.cuckoo.core.plugins] DEBUG:         |-- api_spamming\r\n2021-10-21 14:52:23,185 [lib.cuckoo.core.plugins] DEBUG:         |-- gulpix_behavior\r\n2021-10-21 14:52:23,185 [lib.cuckoo.core.plugins] DEBUG:         |-- banker_prinimalka\r\n2021-10-21 14:52:23,186 [lib.cuckoo.core.plugins] DEBUG:         |-- bcdedit_command\r\n2021-10-21 14:52:23,186 [lib.cuckoo.core.plugins] DEBUG:         |-- betabot_behavior\r\n2021-10-21 14:52:23,187 [lib.cuckoo.core.plugins] DEBUG:         |-- accesses_primary_patition\r\n2021-10-21 14:52:23,187 [lib.cuckoo.core.plugins] DEBUG:         |-- bootkit\r\n2021-10-21 14:52:23,187 [lib.cuckoo.core.plugins] DEBUG:         |-- direct_hdd_access\r\n2021-10-21 14:52:23,188 [lib.cuckoo.core.plugins] DEBUG:         |-- physical_drive_access\r\n2021-10-21 14:52:23,188 [lib.cuckoo.core.plugins] DEBUG:         |-- suspicious_ioctl_scsipassthough\r\n2021-10-21 14:52:23,188 [lib.cuckoo.core.plugins] DEBUG:         |-- browser_needed\r\n2021-10-21 14:52:23,189 [lib.cuckoo.core.plugins] DEBUG:         |-- browser_scanbox\r\n2021-10-21 14:52:23,189 [lib.cuckoo.core.plugins] DEBUG:         |-- odbcconf_bypass\r\n2021-10-21 14:52:23,190 [lib.cuckoo.core.plugins] DEBUG:         |-- regsvr32_squiblydoo_dll_load\r\n2021-10-21 14:52:23,190 [lib.cuckoo.core.plugins] DEBUG:         |-- squiblydoo_bypass\r\n2021-10-21 14:52:23,191 [lib.cuckoo.core.plugins] DEBUG:         |-- squiblytwo_bypass\r\n2021-10-21 14:52:23,191 [lib.cuckoo.core.plugins] DEBUG:         |-- uac_bypass_cmstp\r\n2021-10-21 14:52:23,191 [lib.cuckoo.core.plugins] DEBUG:         |-- uac_bypass_delegateexecute_sdclt\r\n2021-10-21 14:52:23,192 [lib.cuckoo.core.plugins] DEBUG:         |-- uac_bypass_eventvwr\r\n2021-10-21 14:52:23,192 [lib.cuckoo.core.plugins] DEBUG:         |-- uac_bypass_fodhelper\r\n2021-10-21 14:52:23,193 [lib.cuckoo.core.plugins] DEBUG:         |-- cape_extracted_config\r\n2021-10-21 14:52:23,193 [lib.cuckoo.core.plugins] DEBUG:         |-- cape_extracted_content\r\n2021-10-21 14:52:23,193 [lib.cuckoo.core.plugins] DEBUG:         |-- cerber_behavior\r\n2021-10-21 14:52:23,194 [lib.cuckoo.core.plugins] DEBUG:         |-- chimera_behavior\r\n2021-10-21 14:52:23,194 [lib.cuckoo.core.plugins] DEBUG:         |-- clears_logs\r\n2021-10-21 14:52:23,195 [lib.cuckoo.core.plugins] DEBUG:         |-- clickfraud_cookies\r\n2021-10-21 14:52:23,195 [lib.cuckoo.core.plugins] DEBUG:         |-- clickfraud_volume\r\n2021-10-21 14:52:23,195 [lib.cuckoo.core.plugins] DEBUG:         |-- cmdline_obfuscation\r\n2021-10-21 14:52:23,196 [lib.cuckoo.core.plugins] DEBUG:         |-- cmdline_switches\r\n2021-10-21 14:52:23,196 [lib.cuckoo.core.plugins] DEBUG:         |-- cmdline_terminate\r\n2021-10-21 14:52:23,197 [lib.cuckoo.core.plugins] DEBUG:         |-- commandline_forfiles_wildcard\r\n2021-10-21 14:52:23,197 [lib.cuckoo.core.plugins] DEBUG:         |-- cmdline_http_link\r\n2021-10-21 14:52:23,197 [lib.cuckoo.core.plugins] DEBUG:         |-- commandline_long_string\r\n2021-10-21 14:52:23,198 [lib.cuckoo.core.plugins] DEBUG:         |-- cmdline_reversed_http_link\r\n2021-10-21 14:52:23,198 [lib.cuckoo.core.plugins] DEBUG:         |-- long_commandline\r\n2021-10-21 14:52:23,199 [lib.cuckoo.core.plugins] DEBUG:         |-- powershell_renamed_commandline\r\n2021-10-21 14:52:23,199 [lib.cuckoo.core.plugins] DEBUG:         |-- system_account_disovery_cmd\r\n2021-10-21 14:52:23,200 [lib.cuckoo.core.plugins] DEBUG:         |-- system_info_disovery_cmd\r\n2021-10-21 14:52:23,200 [lib.cuckoo.core.plugins] DEBUG:         |-- system_info_disovery_pwsh\r\n2021-10-21 14:52:23,200 [lib.cuckoo.core.plugins] DEBUG:         |-- system_network_discovery_cmd\r\n2021-10-21 14:52:23,201 [lib.cuckoo.core.plugins] DEBUG:         |-- system_network_discovery_pwsh\r\n2021-10-21 14:52:23,201 [lib.cuckoo.core.plugins] DEBUG:         |-- system_user_disovery_cmd\r\n2021-10-21 14:52:23,202 [lib.cuckoo.core.plugins] DEBUG:         |-- dotnet_code_compile\r\n2021-10-21 14:52:23,202 [lib.cuckoo.core.plugins] DEBUG:         |-- creates_largekey\r\n2021-10-21 14:52:23,202 [lib.cuckoo.core.plugins] DEBUG:         |-- creates_nullvalue\r\n2021-10-21 14:52:23,203 [lib.cuckoo.core.plugins] DEBUG:         |-- file_credential_store_access\r\n2021-10-21 14:52:23,203 [lib.cuckoo.core.plugins] DEBUG:         |-- file_credential_store_write\r\n2021-10-21 14:52:23,204 [lib.cuckoo.core.plugins] DEBUG:         |-- lsass_credential_dumping\r\n2021-10-21 14:52:23,204 [lib.cuckoo.core.plugins] DEBUG:         |-- registry_credential_dumping\r\n2021-10-21 14:52:23,204 [lib.cuckoo.core.plugins] DEBUG:         |-- registry_credential_store_access\r\n2021-10-21 14:52:23,205 [lib.cuckoo.core.plugins] DEBUG:         |-- registry_lsa_secrets_access\r\n2021-10-21 14:52:23,205 [lib.cuckoo.core.plugins] DEBUG:         |-- critical_process\r\n2021-10-21 14:52:23,206 [lib.cuckoo.core.plugins] DEBUG:         |-- cyrptomining_stratum_command\r\n2021-10-21 14:52:23,206 [lib.cuckoo.core.plugins] DEBUG:         |-- cryptowall_behavior\r\n2021-10-21 14:52:23,207 [lib.cuckoo.core.plugins] DEBUG:         |-- cve_2014_6332\r\n2021-10-21 14:52:23,207 [lib.cuckoo.core.plugins] DEBUG:         |-- cve_2015_2419_js\r\n2021-10-21 14:52:23,207 [lib.cuckoo.core.plugins] DEBUG:         |-- cve_2016-0189\r\n2021-10-21 14:52:23,208 [lib.cuckoo.core.plugins] DEBUG:         |-- cve_2016_7200\r\n2021-10-21 14:52:23,208 [lib.cuckoo.core.plugins] DEBUG:         |-- dead_connect\r\n2021-10-21 14:52:23,209 [lib.cuckoo.core.plugins] DEBUG:         |-- dead_link\r\n2021-10-21 14:52:23,209 [lib.cuckoo.core.plugins] DEBUG:         |-- debugs_self\r\n2021-10-21 14:52:23,210 [lib.cuckoo.core.plugins] DEBUG:         |-- decoy_document\r\n2021-10-21 14:52:23,210 [lib.cuckoo.core.plugins] DEBUG:         |-- decoy_image\r\n2021-10-21 14:52:23,210 [lib.cuckoo.core.plugins] DEBUG:         |-- deletes_self\r\n2021-10-21 14:52:23,211 [lib.cuckoo.core.plugins] DEBUG:         |-- deletes_shadow_copies\r\n2021-10-21 14:52:23,211 [lib.cuckoo.core.plugins] DEBUG:         |-- deletes_system_state_backup\r\n2021-10-21 14:52:23,212 [lib.cuckoo.core.plugins] DEBUG:         |-- dep_bypass\r\n2021-10-21 14:52:23,212 [lib.cuckoo.core.plugins] DEBUG:         |-- dep_disable\r\n2021-10-21 14:52:23,212 [lib.cuckoo.core.plugins] DEBUG:         |-- disables_appv_virtualization\r\n2021-10-21 14:52:23,213 [lib.cuckoo.core.plugins] DEBUG:         |-- disables_auto_app_termination\r\n2021-10-21 14:52:23,213 [lib.cuckoo.core.plugins] DEBUG:         |-- disables_backups\r\n2021-10-21 14:52:23,214 [lib.cuckoo.core.plugins] DEBUG:         |-- disables_context_menus\r\n2021-10-21 14:52:23,214 [lib.cuckoo.core.plugins] DEBUG:         |-- disables_cpl_disable\r\n2021-10-21 14:52:23,215 [lib.cuckoo.core.plugins] DEBUG:         |-- disables_mappeddrives_autodisconnect\r\n2021-10-21 14:52:23,215 [lib.cuckoo.core.plugins] DEBUG:         |-- disables_event_logging\r\n2021-10-21 14:52:23,215 [lib.cuckoo.core.plugins] DEBUG:         |-- disables_power_options\r\n2021-10-21 14:52:23,216 [lib.cuckoo.core.plugins] DEBUG:         |-- disables_restore_default_state\r\n2021-10-21 14:52:23,216 [lib.cuckoo.core.plugins] DEBUG:         |-- disables_spdy\r\n2021-10-21 14:52:23,217 [lib.cuckoo.core.plugins] DEBUG:         |-- disables_startmenu_search\r\n2021-10-21 14:52:23,217 [lib.cuckoo.core.plugins] DEBUG:         |-- disables_wfp\r\n2021-10-21 14:52:23,218 [lib.cuckoo.core.plugins] DEBUG:         |-- document_script_exe_drop\r\n2021-10-21 14:52:23,218 [lib.cuckoo.core.plugins] DEBUG:         |-- guloader_apis\r\n2021-10-21 14:52:23,218 [lib.cuckoo.core.plugins] DEBUG:         |-- dridex_behavior\r\n2021-10-21 14:52:23,219 [lib.cuckoo.core.plugins] DEBUG:         |-- driver_load\r\n2021-10-21 14:52:23,219 [lib.cuckoo.core.plugins] DEBUG:         |-- exe_dropper_js\r\n2021-10-21 14:52:23,220 [lib.cuckoo.core.plugins] DEBUG:         |-- dynamic_function_loading\r\n2021-10-21 14:52:23,220 [lib.cuckoo.core.plugins] DEBUG:         |-- dyre_behavior\r\n2021-10-21 14:52:23,220 [lib.cuckoo.core.plugins] DEBUG:         |-- angler_js\r\n2021-10-21 14:52:23,221 [lib.cuckoo.core.plugins] DEBUG:         |-- gondad_js\r\n2021-10-21 14:52:23,221 [lib.cuckoo.core.plugins] DEBUG:         |-- heapspray_js\r\n2021-10-21 14:52:23,222 [lib.cuckoo.core.plugins] DEBUG:         |-- java_js\r\n2021-10-21 14:52:23,222 [lib.cuckoo.core.plugins] DEBUG:         |-- Neutrino_js\r\n2021-10-21 14:52:23,223 [lib.cuckoo.core.plugins] DEBUG:         |-- nuclear_js\r\n2021-10-21 14:52:23,223 [lib.cuckoo.core.plugins] DEBUG:         |-- rig_js\r\n2021-10-21 14:52:23,223 [lib.cuckoo.core.plugins] DEBUG:         |-- silverlight_js\r\n2021-10-21 14:52:23,224 [lib.cuckoo.core.plugins] DEBUG:         |-- sundown_js\r\n2021-10-21 14:52:23,224 [lib.cuckoo.core.plugins] DEBUG:         |-- virtualcheck_js\r\n2021-10-21 14:52:23,225 [lib.cuckoo.core.plugins] DEBUG:         |-- encrypted_ioc\r\n2021-10-21 14:52:23,225 [lib.cuckoo.core.plugins] DEBUG:         |-- exec_crash\r\n2021-10-21 14:52:23,225 [lib.cuckoo.core.plugins] DEBUG:         |-- process_creation_suspicious_location\r\n2021-10-21 14:52:23,226 [lib.cuckoo.core.plugins] DEBUG:         |-- exploit_getbasekerneladdress\r\n2021-10-21 14:52:23,226 [lib.cuckoo.core.plugins] DEBUG:         |-- exploit_gethaldispatchtable\r\n2021-10-21 14:52:23,227 [lib.cuckoo.core.plugins] DEBUG:         |-- exploit_heapspray\r\n2021-10-21 14:52:23,227 [lib.cuckoo.core.plugins] DEBUG:         |-- spooler_svc_start\r\n2021-10-21 14:52:23,228 [lib.cuckoo.core.plugins] DEBUG:         |-- koadic_apis\r\n2021-10-21 14:52:23,228 [lib.cuckoo.core.plugins] DEBUG:         |-- koadic_network_activity\r\n2021-10-21 14:52:23,228 [lib.cuckoo.core.plugins] DEBUG:         |-- downloads_from_filehosting\r\n2021-10-21 14:52:23,229 [lib.cuckoo.core.plugins] DEBUG:         |-- generic_phish\r\n2021-10-21 14:52:23,229 [lib.cuckoo.core.plugins] DEBUG:         |-- gootkit_behavior\r\n2021-10-21 14:52:23,230 [lib.cuckoo.core.plugins] DEBUG:         |-- h1n1_behavior\r\n2021-10-21 14:52:23,230 [lib.cuckoo.core.plugins] DEBUG:         |-- hancitor_behavior\r\n2021-10-21 14:52:23,230 [lib.cuckoo.core.plugins] DEBUG:         |-- hawkeye_behavior\r\n2021-10-21 14:52:23,231 [lib.cuckoo.core.plugins] DEBUG:         |-- hides_recycle_bin_icon\r\n2021-10-21 14:52:23,231 [lib.cuckoo.core.plugins] DEBUG:         |-- http_request\r\n2021-10-21 14:52:23,232 [lib.cuckoo.core.plugins] DEBUG:         |-- https_urls\r\n2021-10-21 14:52:23,232 [lib.cuckoo.core.plugins] DEBUG:         |-- apocalypse_stealer_file_behavior\r\n2021-10-21 14:52:23,232 [lib.cuckoo.core.plugins] DEBUG:         |-- infostealer_browser\r\n2021-10-21 14:52:23,233 [lib.cuckoo.core.plugins] DEBUG:         |-- infostealer_browser_password\r\n2021-10-21 14:52:23,233 [lib.cuckoo.core.plugins] DEBUG:         |-- cryptbot_files\r\n2021-10-21 14:52:23,234 [lib.cuckoo.core.plugins] DEBUG:         |-- cryptbot_network\r\n2021-10-21 14:52:23,234 [lib.cuckoo.core.plugins] DEBUG:         |-- echelon_files\r\n2021-10-21 14:52:23,234 [lib.cuckoo.core.plugins] DEBUG:         |-- infostealer_keylog\r\n2021-10-21 14:52:23,235 [lib.cuckoo.core.plugins] DEBUG:         |-- masslogger_artifacts\r\n2021-10-21 14:52:23,235 [lib.cuckoo.core.plugins] DEBUG:         |-- masslogger_files\r\n2021-10-21 14:52:23,236 [lib.cuckoo.core.plugins] DEBUG:         |-- masslogger_version\r\n2021-10-21 14:52:23,236 [lib.cuckoo.core.plugins] DEBUG:         |-- poullight_files\r\n2021-10-21 14:52:23,237 [lib.cuckoo.core.plugins] DEBUG:         |-- purplewave_mutexes\r\n2021-10-21 14:52:23,237 [lib.cuckoo.core.plugins] DEBUG:         |-- purplewave_network_activity\r\n2021-10-21 14:52:23,237 [lib.cuckoo.core.plugins] DEBUG:         |-- quilclipper_mutexes\r\n2021-10-21 14:52:23,238 [lib.cuckoo.core.plugins] DEBUG:         |-- quilclipper_behavior\r\n2021-10-21 14:52:23,238 [lib.cuckoo.core.plugins] DEBUG:         |-- Raccoon Behavior\r\n2021-10-21 14:52:23,239 [lib.cuckoo.core.plugins] DEBUG:         |-- captures_screenshot\r\n2021-10-21 14:52:23,239 [lib.cuckoo.core.plugins] DEBUG:         |-- Vidar Behavior\r\n2021-10-21 14:52:23,239 [lib.cuckoo.core.plugins] DEBUG:         |-- injection_createremotethread\r\n2021-10-21 14:52:23,240 [lib.cuckoo.core.plugins] DEBUG:         |-- injection_explorer\r\n2021-10-21 14:52:23,240 [lib.cuckoo.core.plugins] DEBUG:         |-- injection_needextension\r\n2021-10-21 14:52:23,241 [lib.cuckoo.core.plugins] DEBUG:         |-- injection_network_traffic\r\n2021-10-21 14:52:23,241 [lib.cuckoo.core.plugins] DEBUG:         |-- injection_runpe\r\n2021-10-21 14:52:23,241 [lib.cuckoo.core.plugins] DEBUG:         |-- injection_rwx\r\n2021-10-21 14:52:23,242 [lib.cuckoo.core.plugins] DEBUG:         |-- injection_themeinitapihook\r\n2021-10-21 14:52:23,242 [lib.cuckoo.core.plugins] DEBUG:         |-- internet_dropper\r\n2021-10-21 14:52:23,243 [lib.cuckoo.core.plugins] DEBUG:         |-- ipc_namedpipe\r\n2021-10-21 14:52:23,243 [lib.cuckoo.core.plugins] DEBUG:         |-- js_phish\r\n2021-10-21 14:52:23,244 [lib.cuckoo.core.plugins] DEBUG:         |-- js_suspicious_redirect\r\n2021-10-21 14:52:23,244 [lib.cuckoo.core.plugins] DEBUG:         |-- kazybot_behavior\r\n2021-10-21 14:52:23,244 [lib.cuckoo.core.plugins] DEBUG:         |-- kelihos_behavior\r\n2021-10-21 14:52:23,245 [lib.cuckoo.core.plugins] DEBUG:         |-- kibex_behavior\r\n2021-10-21 14:52:23,245 [lib.cuckoo.core.plugins] DEBUG:         |-- kovter_behavior\r\n2021-10-21 14:52:23,246 [lib.cuckoo.core.plugins] DEBUG:         |-- Locky_behavior\r\n2021-10-21 14:52:23,246 [lib.cuckoo.core.plugins] DEBUG:         |-- malicious_dynamic_function_loading\r\n2021-10-21 14:52:23,246 [lib.cuckoo.core.plugins] DEBUG:         |-- encrypts_pcinfo\r\n2021-10-21 14:52:23,247 [lib.cuckoo.core.plugins] DEBUG:         |-- encrypt_data_agenttesla_http\r\n2021-10-21 14:52:23,247 [lib.cuckoo.core.plugins] DEBUG:         |-- encrypt_data_agentteslat2_http\r\n2021-10-21 14:52:23,248 [lib.cuckoo.core.plugins] DEBUG:         |-- encrypt_data_nanocore\r\n2021-10-21 14:52:23,248 [lib.cuckoo.core.plugins] DEBUG:         |-- mimics_agent\r\n2021-10-21 14:52:23,248 [lib.cuckoo.core.plugins] DEBUG:         |-- mimics_filetime\r\n2021-10-21 14:52:23,249 [lib.cuckoo.core.plugins] DEBUG:         |-- masquerade_process_name\r\n2021-10-21 14:52:23,249 [lib.cuckoo.core.plugins] DEBUG:         |-- mimikatz_modules\r\n2021-10-21 14:52:23,250 [lib.cuckoo.core.plugins] DEBUG:         |-- quilclipper_behavior\r\n2021-10-21 14:52:23,250 [lib.cuckoo.core.plugins] DEBUG:         |-- dotnet_clr_usagelog_regkeys\r\n2021-10-21 14:52:23,250 [lib.cuckoo.core.plugins] DEBUG:         |-- modifies_oem_information\r\n2021-10-21 14:52:23,251 [lib.cuckoo.core.plugins] DEBUG:         |-- modifies_desktop_wallpaper\r\n2021-10-21 14:52:23,251 [lib.cuckoo.core.plugins] DEBUG:         |-- move_file_on_reboot\r\n2021-10-21 14:52:23,252 [lib.cuckoo.core.plugins] DEBUG:         |-- multiple_useragents\r\n2021-10-21 14:52:23,252 [lib.cuckoo.core.plugins] DEBUG:         |-- network_anomaly\r\n2021-10-21 14:52:23,253 [lib.cuckoo.core.plugins] DEBUG:         |-- network_bind\r\n2021-10-21 14:52:23,253 [lib.cuckoo.core.plugins] DEBUG:         |-- network_cnc_https_archive\r\n2021-10-21 14:52:23,253 [lib.cuckoo.core.plugins] DEBUG:         |-- network_cnc_https_free_webshoting\r\n2021-10-21 14:52:23,254 [lib.cuckoo.core.plugins] DEBUG:         |-- network_cnc_https_generic\r\n2021-10-21 14:52:23,254 [lib.cuckoo.core.plugins] DEBUG:         |-- network_cnc_https_temp_urldns\r\n2021-10-21 14:52:23,255 [lib.cuckoo.core.plugins] DEBUG:         |-- network_cnc_https_pastesite\r\n2021-10-21 14:52:23,255 [lib.cuckoo.core.plugins] DEBUG:         |-- network_cnc_https_payload\r\n2021-10-21 14:52:23,255 [lib.cuckoo.core.plugins] DEBUG:         |-- network_cnc_https_socialmedia\r\n2021-10-21 14:52:23,256 [lib.cuckoo.core.plugins] DEBUG:         |-- network_cnc_https_telegram\r\n2021-10-21 14:52:23,256 [lib.cuckoo.core.plugins] DEBUG:         |-- network_cnc_https_tempstorage\r\n2021-10-21 14:52:23,257 [lib.cuckoo.core.plugins] DEBUG:         |-- network_cnc_https_temp_urldns\r\n2021-10-21 14:52:23,257 [lib.cuckoo.core.plugins] DEBUG:         |-- network_cnc_https_urlshortener\r\n2021-10-21 14:52:23,258 [lib.cuckoo.core.plugins] DEBUG:         |-- network_cnc_https_useragent\r\n2021-10-21 14:52:23,258 [lib.cuckoo.core.plugins] DEBUG:         |-- network_cnc_smtps_exfil\r\n2021-10-21 14:52:23,258 [lib.cuckoo.core.plugins] DEBUG:         |-- network_cnc_smtps_generic\r\n2021-10-21 14:52:23,259 [lib.cuckoo.core.plugins] DEBUG:         |-- network_dns_blockchain\r\n2021-10-21 14:52:23,259 [lib.cuckoo.core.plugins] DEBUG:         |-- network_dns_idn\r\n2021-10-21 14:52:23,260 [lib.cuckoo.core.plugins] DEBUG:         |-- network_dns_opennic\r\n2021-10-21 14:52:23,260 [lib.cuckoo.core.plugins] DEBUG:         |-- network_dns_reverse_proxy\r\n2021-10-21 14:52:23,260 [lib.cuckoo.core.plugins] DEBUG:         |-- network_dns_suspicious_querytype\r\n2021-10-21 14:52:23,261 [lib.cuckoo.core.plugins] DEBUG:         |-- network_dns_tunneling_request\r\n2021-10-21 14:52:23,261 [lib.cuckoo.core.plugins] DEBUG:         |-- network_dns_doh_tls\r\n2021-10-21 14:52:23,262 [lib.cuckoo.core.plugins] DEBUG:         |-- network_document_http\r\n2021-10-21 14:52:23,262 [lib.cuckoo.core.plugins] DEBUG:         |-- explorer_http\r\n2021-10-21 14:52:23,263 [lib.cuckoo.core.plugins] DEBUG:         |-- network_fake_useragent\r\n2021-10-21 14:52:23,263 [lib.cuckoo.core.plugins] DEBUG:         |-- network_open_proxy\r\n2021-10-21 14:52:23,263 [lib.cuckoo.core.plugins] DEBUG:         |-- network_tor\r\n2021-10-21 14:52:23,264 [lib.cuckoo.core.plugins] DEBUG:         |-- nymaim_behavior\r\n2021-10-21 14:52:23,264 [lib.cuckoo.core.plugins] DEBUG:         |-- office_addinloading\r\n2021-10-21 14:52:23,265 [lib.cuckoo.core.plugins] DEBUG:         |-- office_com_load\r\n2021-10-21 14:52:23,265 [lib.cuckoo.core.plugins] DEBUG:         |-- office_dotnet_load\r\n2021-10-21 14:52:23,265 [lib.cuckoo.core.plugins] DEBUG:         |-- office_mshtml_load\r\n2021-10-21 14:52:23,266 [lib.cuckoo.core.plugins] DEBUG:         |-- office_vb_load\r\n2021-10-21 14:52:23,266 [lib.cuckoo.core.plugins] DEBUG:         |-- office_wmi_load\r\n2021-10-21 14:52:23,266 [lib.cuckoo.core.plugins] DEBUG:         |-- office_cve2017_11882\r\n2021-10-21 14:52:23,267 [lib.cuckoo.core.plugins] DEBUG:         |-- office_cve2017_11882_network\r\n2021-10-21 14:52:23,267 [lib.cuckoo.core.plugins] DEBUG:         |-- office_cve_2021_40444\r\n2021-10-21 14:52:23,268 [lib.cuckoo.core.plugins] DEBUG:         |-- office_cve_2021_40444_m2\r\n2021-10-21 14:52:23,268 [lib.cuckoo.core.plugins] DEBUG:         |-- office_flash_load\r\n2021-10-21 14:52:23,269 [lib.cuckoo.core.plugins] DEBUG:         |-- office_postscript\r\n2021-10-21 14:52:23,269 [lib.cuckoo.core.plugins] DEBUG:         |-- rtf_aslr_bypass\r\n2021-10-21 14:52:23,269 [lib.cuckoo.core.plugins] DEBUG:         |-- rtf_anomaly_characterset\r\n2021-10-21 14:52:23,270 [lib.cuckoo.core.plugins] DEBUG:         |-- rtf_anomaly_version\r\n2021-10-21 14:52:23,270 [lib.cuckoo.core.plugins] DEBUG:         |-- rtf_embedded_content\r\n2021-10-21 14:52:23,270 [lib.cuckoo.core.plugins] DEBUG:         |-- rtf_embedded_office_file\r\n2021-10-21 14:52:23,271 [lib.cuckoo.core.plugins] DEBUG:         |-- rtf_exploit_static\r\n2021-10-21 14:52:23,271 [lib.cuckoo.core.plugins] DEBUG:         |-- office_dde_command\r\n2021-10-21 14:52:23,272 [lib.cuckoo.core.plugins] DEBUG:         |-- office_suspicious_processes\r\n2021-10-21 14:52:23,272 [lib.cuckoo.core.plugins] DEBUG:         |-- office_write_exe\r\n2021-10-21 14:52:23,273 [lib.cuckoo.core.plugins] DEBUG:         |-- packer_themida\r\n2021-10-21 14:52:23,273 [lib.cuckoo.core.plugins] DEBUG:         |-- persistence_autorun\r\n2021-10-21 14:52:23,274 [lib.cuckoo.core.plugins] DEBUG:         |-- persistence_autorun_tasks\r\n2021-10-21 14:52:23,274 [lib.cuckoo.core.plugins] DEBUG:         |-- persistence_safeboot\r\n2021-10-21 14:52:23,274 [lib.cuckoo.core.plugins] DEBUG:         |-- persistence_bootexecute\r\n2021-10-21 14:52:23,275 [lib.cuckoo.core.plugins] DEBUG:         |-- persistence_registry_script\r\n2021-10-21 14:52:23,275 [lib.cuckoo.core.plugins] DEBUG:         |-- persistence_ifeo\r\n2021-10-21 14:52:23,276 [lib.cuckoo.core.plugins] DEBUG:         |-- persistence_slient_process_exit\r\n2021-10-21 14:52:23,276 [lib.cuckoo.core.plugins] DEBUG:         |-- persistence_rdp_registry\r\n2021-10-21 14:52:23,276 [lib.cuckoo.core.plugins] DEBUG:         |-- persistence_rdp_shadowing\r\n2021-10-21 14:52:23,277 [lib.cuckoo.core.plugins] DEBUG:         |-- persistence_shim_database\r\n2021-10-21 14:52:23,277 [lib.cuckoo.core.plugins] DEBUG:         |-- pony_behavior\r\n2021-10-21 14:52:23,278 [lib.cuckoo.core.plugins] DEBUG:         |-- powershell_network_connection\r\n2021-10-21 14:52:23,278 [lib.cuckoo.core.plugins] DEBUG:         |-- powershell_scriptblock_logging\r\n2021-10-21 14:52:23,278 [lib.cuckoo.core.plugins] DEBUG:         |-- powershell_command_suspicious\r\n2021-10-21 14:52:23,279 [lib.cuckoo.core.plugins] DEBUG:         |-- powershell_renamed\r\n2021-10-21 14:52:23,279 [lib.cuckoo.core.plugins] DEBUG:         |-- powershell_reversed\r\n2021-10-21 14:52:23,280 [lib.cuckoo.core.plugins] DEBUG:         |-- powershell_variable_obfuscation\r\n2021-10-21 14:52:23,280 [lib.cuckoo.core.plugins] DEBUG:         |-- cmdline_process_discovery\r\n2021-10-21 14:52:23,280 [lib.cuckoo.core.plugins] DEBUG:         |-- createtoolhelp32snapshot_module_enumeration\r\n2021-10-21 14:52:23,281 [lib.cuckoo.core.plugins] DEBUG:         |-- enumerates_running_processes\r\n2021-10-21 14:52:23,281 [lib.cuckoo.core.plugins] DEBUG:         |-- process_interest\r\n2021-10-21 14:52:23,282 [lib.cuckoo.core.plugins] DEBUG:         |-- process_needed\r\n2021-10-21 14:52:23,282 [lib.cuckoo.core.plugins] DEBUG:         |-- mass_data_encryption\r\n2021-10-21 14:52:23,283 [lib.cuckoo.core.plugins] DEBUG:         |-- dharma_mutexes\r\n2021-10-21 14:52:23,283 [lib.cuckoo.core.plugins] DEBUG:         |-- ransomware_dmalocker\r\n2021-10-21 14:52:23,283 [lib.cuckoo.core.plugins] DEBUG:         |-- ransomware_file_modifications\r\n2021-10-21 14:52:23,284 [lib.cuckoo.core.plugins] DEBUG:         |-- fonix_mutexes\r\n2021-10-21 14:52:23,284 [lib.cuckoo.core.plugins] DEBUG:         |-- ransomware_message\r\n2021-10-21 14:52:23,285 [lib.cuckoo.core.plugins] DEBUG:         |-- ransomware_message_multiple_locations\r\n2021-10-21 14:52:23,285 [lib.cuckoo.core.plugins] DEBUG:         |-- nemty_network_activity\r\n2021-10-21 14:52:23,285 [lib.cuckoo.core.plugins] DEBUG:         |-- nemty_note\r\n2021-10-21 14:52:23,286 [lib.cuckoo.core.plugins] DEBUG:         |-- pysa_mutexes\r\n2021-10-21 14:52:23,286 [lib.cuckoo.core.plugins] DEBUG:         |-- ransomware_revil_regkey\r\n2021-10-21 14:52:23,287 [lib.cuckoo.core.plugins] DEBUG:         |-- satan_mutexes\r\n2021-10-21 14:52:23,287 [lib.cuckoo.core.plugins] DEBUG:         |-- snake_ransom_mutexes\r\n2021-10-21 14:52:23,287 [lib.cuckoo.core.plugins] DEBUG:         |-- Sodinokibi Behavior\r\n2021-10-21 14:52:23,288 [lib.cuckoo.core.plugins] DEBUG:         |-- stop_ransom_mutexes\r\n2021-10-21 14:52:23,288 [lib.cuckoo.core.plugins] DEBUG:         |-- stop_ransomware_cmd\r\n2021-10-21 14:52:23,289 [lib.cuckoo.core.plugins] DEBUG:         |-- stop_ransomware_registry\r\n2021-10-21 14:52:23,289 [lib.cuckoo.core.plugins] DEBUG:         |-- blackrat_apis\r\n2021-10-21 14:52:23,289 [lib.cuckoo.core.plugins] DEBUG:         |-- blackrat_network_activity\r\n2021-10-21 14:52:23,290 [lib.cuckoo.core.plugins] DEBUG:         |-- blackrat_registry_keys\r\n2021-10-21 14:52:23,290 [lib.cuckoo.core.plugins] DEBUG:         |-- dcrat_behavior\r\n2021-10-21 14:52:23,291 [lib.cuckoo.core.plugins] DEBUG:         |-- lodarat_file_behavior\r\n2021-10-21 14:52:23,291 [lib.cuckoo.core.plugins] DEBUG:         |-- rat_luminosity\r\n2021-10-21 14:52:23,292 [lib.cuckoo.core.plugins] DEBUG:         |-- rat_nanocore\r\n2021-10-21 14:52:23,292 [lib.cuckoo.core.plugins] DEBUG:         |-- NewtWire Behavior\r\n2021-10-21 14:52:23,292 [lib.cuckoo.core.plugins] DEBUG:         |-- obliquerat_network_activity\r\n2021-10-21 14:52:23,293 [lib.cuckoo.core.plugins] DEBUG:         |-- OrcusRAT Behavior\r\n2021-10-21 14:52:23,293 [lib.cuckoo.core.plugins] DEBUG:         |-- trochilusrat_APIs\r\n2021-10-21 14:52:23,294 [lib.cuckoo.core.plugins] DEBUG:         |-- xpertrat_files\r\n2021-10-21 14:52:23,294 [lib.cuckoo.core.plugins] DEBUG:         |-- xpertrat_mutexes\r\n2021-10-21 14:52:23,295 [lib.cuckoo.core.plugins] DEBUG:         |-- reads_self\r\n2021-10-21 14:52:23,295 [lib.cuckoo.core.plugins] DEBUG:         |-- recon_beacon\r\n2021-10-21 14:52:23,295 [lib.cuckoo.core.plugins] DEBUG:         |-- recon_programs\r\n2021-10-21 14:52:23,296 [lib.cuckoo.core.plugins] DEBUG:         |-- recon_systeminfo\r\n2021-10-21 14:52:23,296 [lib.cuckoo.core.plugins] DEBUG:         |-- accesses_recyclebin\r\n2021-10-21 14:52:23,297 [lib.cuckoo.core.plugins] DEBUG:         |-- uses_rdp_clip\r\n2021-10-21 14:52:23,297 [lib.cuckoo.core.plugins] DEBUG:         |-- uses_remote_desktop_session\r\n2021-10-21 14:52:23,297 [lib.cuckoo.core.plugins] DEBUG:         |-- removes_networking_icon\r\n2021-10-21 14:52:23,298 [lib.cuckoo.core.plugins] DEBUG:         |-- removes_pinned_programs\r\n2021-10-21 14:52:23,298 [lib.cuckoo.core.plugins] DEBUG:         |-- removes_security_maintenance_icon\r\n2021-10-21 14:52:23,299 [lib.cuckoo.core.plugins] DEBUG:         |-- Removes_startmenu_defaults\r\n2021-10-21 14:52:23,299 [lib.cuckoo.core.plugins] DEBUG:         |-- removes_username_startmenu\r\n2021-10-21 14:52:23,299 [lib.cuckoo.core.plugins] DEBUG:         |-- removes_zoneid_ads\r\n2021-10-21 14:52:23,300 [lib.cuckoo.core.plugins] DEBUG:         |-- spicyhotpot_behavior\r\n2021-10-21 14:52:23,300 [lib.cuckoo.core.plugins] DEBUG:         |-- script_created_process\r\n2021-10-21 14:52:23,301 [lib.cuckoo.core.plugins] DEBUG:         |-- script_network_activity\r\n2021-10-21 14:52:23,301 [lib.cuckoo.core.plugins] DEBUG:         |-- suspicious_js_script\r\n2021-10-21 14:52:23,301 [lib.cuckoo.core.plugins] DEBUG:         |-- secure_login_phishing\r\n2021-10-21 14:52:23,302 [lib.cuckoo.core.plugins] DEBUG:         |-- securityxploded_modules\r\n2021-10-21 14:52:23,302 [lib.cuckoo.core.plugins] DEBUG:         |-- sets_autoconfig_url\r\n2021-10-21 14:52:23,303 [lib.cuckoo.core.plugins] DEBUG:         |-- shifu_behavior\r\n2021-10-21 14:52:23,303 [lib.cuckoo.core.plugins] DEBUG:         |-- spoofs_procname\r\n2021-10-21 14:52:23,304 [lib.cuckoo.core.plugins] DEBUG:         |-- stack_pivot\r\n2021-10-21 14:52:23,304 [lib.cuckoo.core.plugins] DEBUG:         |-- stack_pivot_file_created\r\n2021-10-21 14:52:23,304 [lib.cuckoo.core.plugins] DEBUG:         |-- stack_pivot_process_create\r\n2021-10-21 14:52:23,305 [lib.cuckoo.core.plugins] DEBUG:         |-- stealth_childproc\r\n2021-10-21 14:52:23,305 [lib.cuckoo.core.plugins] DEBUG:         |-- stealth_file\r\n2021-10-21 14:52:23,306 [lib.cuckoo.core.plugins] DEBUG:         |-- stealth_network\r\n2021-10-21 14:52:23,306 [lib.cuckoo.core.plugins] DEBUG:         |-- stealth_timeout\r\n2021-10-21 14:52:23,306 [lib.cuckoo.core.plugins] DEBUG:         |-- stealth_window\r\n2021-10-21 14:52:23,307 [lib.cuckoo.core.plugins] DEBUG:         |-- sysinternals_psexec\r\n2021-10-21 14:52:23,307 [lib.cuckoo.core.plugins] DEBUG:         |-- sysinternals_tools\r\n2021-10-21 14:52:23,308 [lib.cuckoo.core.plugins] DEBUG:         |-- territorial_disputes_sigs\r\n2021-10-21 14:52:23,308 [lib.cuckoo.core.plugins] DEBUG:         |-- tinba_behavior\r\n2021-10-21 14:52:23,308 [lib.cuckoo.core.plugins] DEBUG:         |-- TrickBotTaskDelete\r\n2021-10-21 14:52:23,309 [lib.cuckoo.core.plugins] DEBUG:         |-- ursnif_behavior\r\n2021-10-21 14:52:23,309 [lib.cuckoo.core.plugins] DEBUG:         |-- upatre_behavior\r\n2021-10-21 14:52:23,310 [lib.cuckoo.core.plugins] DEBUG:         |-- ursnif_behavior\r\n2021-10-21 14:52:23,310 [lib.cuckoo.core.plugins] DEBUG:         |-- user_enum\r\n2021-10-21 14:52:23,310 [lib.cuckoo.core.plugins] DEBUG:         |-- uses_adfind\r\n2021-10-21 14:52:23,311 [lib.cuckoo.core.plugins] DEBUG:         |-- vawtrak_behavior\r\n2021-10-21 14:52:23,311 [lib.cuckoo.core.plugins] DEBUG:         |-- vawtrak_behavior\r\n2021-10-21 14:52:23,312 [lib.cuckoo.core.plugins] DEBUG:         |-- virus\r\n2021-10-21 14:52:23,312 [lib.cuckoo.core.plugins] DEBUG:         |-- neshta_files\r\n2021-10-21 14:52:23,312 [lib.cuckoo.core.plugins] DEBUG:         |-- neshta_regkeys\r\n2021-10-21 14:52:23,313 [lib.cuckoo.core.plugins] DEBUG:         |-- webmail_phish\r\n2021-10-21 14:52:23,313 [lib.cuckoo.core.plugins] DEBUG:         |-- web_shell_processes\r\n2021-10-21 14:52:23,314 [lib.cuckoo.core.plugins] DEBUG:         |-- persists_dev_util\r\n2021-10-21 14:52:23,314 [lib.cuckoo.core.plugins] DEBUG:         |-- spawns_dev_util\r\n2021-10-21 14:52:23,314 [lib.cuckoo.core.plugins] DEBUG:         |-- alters_windows_utility\r\n2021-10-21 14:52:23,315 [lib.cuckoo.core.plugins] DEBUG:         |-- dotnet_csc_build\r\n2021-10-21 14:52:23,315 [lib.cuckoo.core.plugins] DEBUG:         |-- multiple_explorer_instances\r\n2021-10-21 14:52:23,316 [lib.cuckoo.core.plugins] DEBUG:         |-- overwrites_accessibility_utility\r\n2021-10-21 14:52:23,316 [lib.cuckoo.core.plugins] DEBUG:         |-- script_tool_executed\r\n2021-10-21 14:52:23,316 [lib.cuckoo.core.plugins] DEBUG:         |-- suspicious_certutil_use\r\n2021-10-21 14:52:23,317 [lib.cuckoo.core.plugins] DEBUG:         |-- suspicious_command_tools\r\n2021-10-21 14:52:23,317 [lib.cuckoo.core.plugins] DEBUG:         |-- suspicious_mpcmdrun_use\r\n2021-10-21 14:52:23,318 [lib.cuckoo.core.plugins] DEBUG:         |-- suspicious_ping_use\r\n2021-10-21 14:52:23,318 [lib.cuckoo.core.plugins] DEBUG:         |-- uses_powershell_copyitem\r\n2021-10-21 14:52:23,318 [lib.cuckoo.core.plugins] DEBUG:         |-- uses_windows_utilities\r\n2021-10-21 14:52:23,319 [lib.cuckoo.core.plugins] DEBUG:         |-- uses_windows_utilities_appcmd\r\n2021-10-21 14:52:23,319 [lib.cuckoo.core.plugins] DEBUG:         |-- uses_windows_utilities_csvde_ldifde\r\n2021-10-21 14:52:23,320 [lib.cuckoo.core.plugins] DEBUG:         |-- uses_windows_utilities_cipher\r\n2021-10-21 14:52:23,320 [lib.cuckoo.core.plugins] DEBUG:         |-- uses_windows_utilities_clickonce\r\n2021-10-21 14:52:23,320 [lib.cuckoo.core.plugins] DEBUG:         |-- uses_windows_utilities_dsquery\r\n2021-10-21 14:52:23,321 [lib.cuckoo.core.plugins] DEBUG:         |-- uses_windows_utilities_esentutl\r\n2021-10-21 14:52:23,321 [lib.cuckoo.core.plugins] DEBUG:         |-- uses_windows_utilities_finger\r\n2021-10-21 14:52:23,322 [lib.cuckoo.core.plugins] DEBUG:         |-- uses_windows_utilities_mode\r\n2021-10-21 14:52:23,322 [lib.cuckoo.core.plugins] DEBUG:         |-- uses_windows_utilities_ntdsutil\r\n2021-10-21 14:52:23,323 [lib.cuckoo.core.plugins] DEBUG:         |-- uses_windows_utilities_nltest\r\n2021-10-21 14:52:23,323 [lib.cuckoo.core.plugins] DEBUG:         |-- uses_windows_utilities_to_create_scheduled_task\r\n2021-10-21 14:52:23,323 [lib.cuckoo.core.plugins] DEBUG:         |-- uses_windows_utilities_xcopy\r\n2021-10-21 14:52:23,324 [lib.cuckoo.core.plugins] DEBUG:         |-- wmic_command_suspicious\r\n2021-10-21 14:52:23,324 [lib.cuckoo.core.plugins] DEBUG:         |-- scrcons_wmi_script_consumer\r\n2021-10-21 14:52:23,325 [lib.cuckoo.core.plugins] DEBUG:         |-- wmi_create_process\r\n2021-10-21 14:52:23,325 [lib.cuckoo.core.plugins] DEBUG:         `-- wmi_script_process\r\n2021-10-21 14:52:25,278 [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"antidebug_setunhandledexceptionfilter\"\r\n2021-10-21 14:52:25,675 [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"antisandbox_sleep\"\r\n2021-10-21 14:52:25,679 [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"dead_connect\"\r\n2021-10-21 14:52:25,680 [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"dynamic_function_loading\"\r\n[]\r\n2021-10-21 14:52:25,685 [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"network_document_http\"\r\n2021-10-21 14:52:25,696 [lib.cuckoo.core.plugins] DEBUG: Running non-evented signatures\r\n2021-10-21 14:52:25,698 [lib.cuckoo.core.plugins] DEBUG: Running signature \"cape_detected_threat\"\r\n2021-10-21 14:52:25,699 [lib.cuckoo.core.plugins] DEBUG: Running signature \"Compression\"\r\n2021-10-21 14:52:25,699 [lib.cuckoo.core.plugins] DEBUG: Running signature \"Decryption\"\r\n2021-10-21 14:52:25,700 [lib.cuckoo.core.plugins] DEBUG: Running signature \"Doppelganging\"\r\n2021-10-21 14:52:25,700 [lib.cuckoo.core.plugins] DEBUG: Running signature \"EvilGrab\"\r\n2021-10-21 14:52:25,700 [lib.cuckoo.core.plugins] DEBUG: Running signature \"InjectionInterProcess\"\r\n2021-10-21 14:52:25,701 [lib.cuckoo.core.plugins] DEBUG: Running signature \"InjectionCreateRemoteThread\"\r\n2021-10-21 14:52:25,701 [lib.cuckoo.core.plugins] DEBUG: Running signature \"InjectionProcessHollowing\"\r\n2021-10-21 14:52:25,701 [lib.cuckoo.core.plugins] DEBUG: Running signature \"InjectionSetWindowLong\"\r\n2021-10-21 14:52:25,702 [lib.cuckoo.core.plugins] DEBUG: Running signature \"PlugX\"\r\n2021-10-21 14:52:25,702 [lib.cuckoo.core.plugins] DEBUG: Running signature \"RegBinary\"\r\n2021-10-21 14:52:25,703 [lib.cuckoo.core.plugins] DEBUG: Running signature \"TransactedHollowing\"\r\n2021-10-21 14:52:25,703 [lib.cuckoo.core.plugins] DEBUG: Running signature \"Unpacker\"\r\n2021-10-21 14:52:25,703 [lib.cuckoo.core.plugins] DEBUG: Running signature \"accesses_mailslot\"\r\n2021-10-21 14:52:25,704 [lib.cuckoo.core.plugins] DEBUG: Running signature \"accesses_netlogon_regkey\"\r\n2021-10-21 14:52:25,705 [lib.cuckoo.core.plugins] DEBUG: Running signature \"accesses_sysvol\"\r\n2021-10-21 14:52:25,706 [lib.cuckoo.core.plugins] DEBUG: Running signature \"writes_sysvol\"\r\n2021-10-21 14:52:25,706 [lib.cuckoo.core.plugins] DEBUG: Running signature \"adds_admin_user\"\r\n2021-10-21 14:52:25,707 [lib.cuckoo.core.plugins] DEBUG: Running signature \"adds_user\"\r\n2021-10-21 14:52:25,707 [lib.cuckoo.core.plugins] DEBUG: Running signature \"overwites_admin_password\"\r\n2021-10-21 14:52:25,708 [lib.cuckoo.core.plugins] DEBUG: Running signature \"alphacrypt_behavior\"\r\n2021-10-21 14:52:25,708 [lib.cuckoo.core.plugins] DEBUG: Running signature \"andromeda_behavior\"\r\n2021-10-21 14:52:25,709 [lib.cuckoo.core.plugins] DEBUG: Running signature \"anomalous_deletefile\"\r\n2021-10-21 14:52:25,709 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antianalysis_detectfile\"\r\n2021-10-21 14:52:25,714 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antianalysis_detectreg\"\r\n2021-10-21 14:52:25,734 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_360_libs\"\r\n2021-10-21 14:52:25,734 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_ahnlab_libs\"\r\n2021-10-21 14:52:25,735 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_avast_libs\"\r\n2021-10-21 14:52:25,735 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_bitdefender_libs\"\r\n2021-10-21 14:52:25,735 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_bullgaurd_libs\"\r\n2021-10-21 14:52:25,736 [lib.cuckoo.core.plugins] DEBUG: Running signature \"modifies_attachment_manager\"\r\n2021-10-21 14:52:25,736 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_detectfile\"\r\n2021-10-21 14:52:25,743 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_detectreg\"\r\n2021-10-21 14:52:25,838 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_emsisoft_libs\"\r\n2021-10-21 14:52:25,839 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_qurb_libs\"\r\n2021-10-21 14:52:25,839 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_servicestop\"\r\n2021-10-21 14:52:25,839 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_srp\"\r\n2021-10-21 14:52:25,840 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antidbg_devices\"\r\n2021-10-21 14:52:25,841 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antidbg_windows\"\r\n2021-10-21 14:52:25,842 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antidebug_addvectoredexceptionhandler\"\r\n2021-10-21 14:52:25,842 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_apioverride_libs\"\r\n2021-10-21 14:52:25,843 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antidebug_checkremotedebuggerpresent\"\r\n2021-10-21 14:52:25,843 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antidebug_debugactiveprocess\"\r\n2021-10-21 14:52:25,843 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antidebug_gettickcount\"\r\n2021-10-21 14:52:25,844 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antidebug_guardpages\"\r\n2021-10-21 14:52:25,844 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antidebug_ntcreatethreadex\"\r\n2021-10-21 14:52:25,844 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_nthookengine_libs\"\r\n2021-10-21 14:52:25,845 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antidebug_ntsetinformationthread\"\r\n2021-10-21 14:52:25,845 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antidebug_outputdebugstring\"\r\n2021-10-21 14:52:25,846 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antidebug_setunhandledexceptionfilter\"\r\n2021-10-21 14:52:25,846 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiemu_windefend\"\r\n2021-10-21 14:52:25,847 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiemu_wine_reg\"\r\n2021-10-21 14:52:25,847 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiemu_wine_func\"\r\n2021-10-21 14:52:25,848 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_check_userdomain\"\r\n2021-10-21 14:52:25,848 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_cuckoo\"\r\n2021-10-21 14:52:25,848 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_cuckoo_files\"\r\n2021-10-21 14:52:25,849 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_cuckoocrash\"\r\n2021-10-21 14:52:25,849 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_fortinet_files\"\r\n2021-10-21 14:52:25,850 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_joe_anubis_files\"\r\n2021-10-21 14:52:25,851 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_mouse_hook\"\r\n2021-10-21 14:52:25,851 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_restart\"\r\n2021-10-21 14:52:25,851 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_sboxie_libs\"\r\n2021-10-21 14:52:25,852 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_sboxie_mutex\"\r\n2021-10-21 14:52:25,852 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_sboxie_objects\"\r\n2021-10-21 14:52:25,853 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_script_timer\"\r\n2021-10-21 14:52:25,853 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_sleep\"\r\n2021-10-21 14:52:25,853 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_sunbelt_files\"\r\n2021-10-21 14:52:25,854 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_sunbelt_libs\"\r\n2021-10-21 14:52:25,854 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_suspend\"\r\n2021-10-21 14:52:25,855 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_threattrack_files\"\r\n2021-10-21 14:52:25,855 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_unhook\"\r\n2021-10-21 14:52:25,856 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivirus_virustotal\"\r\n2021-10-21 14:52:25,856 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_xen_keys\"\r\n2021-10-21 14:52:25,858 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_directory_objects\"\r\n2021-10-21 14:52:25,859 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_generic_bios\"\r\n2021-10-21 14:52:25,859 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_generic_cpu\"\r\n2021-10-21 14:52:25,860 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_generic_disk\"\r\n2021-10-21 14:52:25,860 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_generic_disk_setupapi\"\r\n2021-10-21 14:52:25,861 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_generic_diskreg\"\r\n2021-10-21 14:52:25,865 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_generic_scsi\"\r\n2021-10-21 14:52:25,865 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_generic_services\"\r\n2021-10-21 14:52:25,865 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_generic_system\"\r\n2021-10-21 14:52:25,866 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_hyperv_keys\"\r\n2021-10-21 14:52:25,868 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_parallels_keys\"\r\n2021-10-21 14:52:25,875 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vbox_devices\"\r\n2021-10-21 14:52:25,876 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vbox_files\"\r\n2021-10-21 14:52:25,878 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vbox_keys\"\r\n2021-10-21 14:52:25,889 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vbox_libs\"\r\n2021-10-21 14:52:25,890 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vbox_provname\"\r\n2021-10-21 14:52:25,890 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vbox_window\"\r\n2021-10-21 14:52:25,890 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vmware_devices\"\r\n2021-10-21 14:52:25,891 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vmware_events\"\r\n2021-10-21 14:52:25,891 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vmware_files\"\r\n2021-10-21 14:52:25,892 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vmware_keys\"\r\n2021-10-21 14:52:25,900 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vmware_libs\"\r\n2021-10-21 14:52:25,901 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vmware_mutexes\"\r\n2021-10-21 14:52:25,902 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vpc_files\"\r\n2021-10-21 14:52:25,902 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vpc_keys\"\r\n2021-10-21 14:52:25,907 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vpc_mutex\"\r\n2021-10-21 14:52:25,907 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_xen_keys\"\r\n2021-10-21 14:52:25,914 [lib.cuckoo.core.plugins] DEBUG: Running signature \"api_spamming\"\r\n2021-10-21 14:52:25,914 [lib.cuckoo.core.plugins] DEBUG: Running signature \"gulpix_behavior\"\r\n2021-10-21 14:52:25,915 [lib.cuckoo.core.plugins] DEBUG: Running signature \"ketrican_regkeys\"\r\n2021-10-21 14:52:25,918 [lib.cuckoo.core.plugins] DEBUG: Running signature \"okrum_mutexes\"\r\n2021-10-21 14:52:25,919 [lib.cuckoo.core.plugins] DEBUG: Running signature \"bad_certs\"\r\n2021-10-21 14:52:25,919 [lib.cuckoo.core.plugins] DEBUG: Running signature \"bad_ssl_certs\"\r\n2021-10-21 14:52:25,919 [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_cridex\"\r\n2021-10-21 14:52:25,920 [lib.cuckoo.core.plugins] DEBUG: Running signature \"geodo_banking_trojan\"\r\n2021-10-21 14:52:25,925 [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_prinimalka\"\r\n2021-10-21 14:52:25,925 [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_spyeye_mutexes\"\r\n2021-10-21 14:52:25,926 [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_zeus_mutex\"\r\n2021-10-21 14:52:25,927 [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_zeus_p2p\"\r\n2021-10-21 14:52:25,928 [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_zeus_url\"\r\n2021-10-21 14:52:25,928 [lib.cuckoo.core.plugins] DEBUG: Running signature \"bcdedit_command\"\r\n2021-10-21 14:52:25,928 [lib.cuckoo.core.plugins] DEBUG: Running signature \"betabot_behavior\"\r\n2021-10-21 14:52:25,929 [lib.cuckoo.core.plugins] DEBUG: Running signature \"bitcoin_opencl\"\r\n2021-10-21 14:52:25,929 [lib.cuckoo.core.plugins] DEBUG: Running signature \"accesses_primary_patition\"\r\n2021-10-21 14:52:25,930 [lib.cuckoo.core.plugins] DEBUG: Running signature \"bootkit\"\r\n2021-10-21 14:52:25,930 [lib.cuckoo.core.plugins] DEBUG: Running signature \"direct_hdd_access\"\r\n2021-10-21 14:52:25,931 [lib.cuckoo.core.plugins] DEBUG: Running signature \"physical_drive_access\"\r\n2021-10-21 14:52:25,931 [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_ioctl_scsipassthough\"\r\n2021-10-21 14:52:25,931 [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_athenahttp\"\r\n2021-10-21 14:52:25,932 [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_dirtjumper\"\r\n2021-10-21 14:52:25,933 [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_drive\"\r\n2021-10-21 14:52:25,933 [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_drive2\"\r\n2021-10-21 14:52:25,934 [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_madness\"\r\n2021-10-21 14:52:25,935 [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_russkill\"\r\n2021-10-21 14:52:25,935 [lib.cuckoo.core.plugins] DEBUG: Running signature \"browser_addon\"\r\n2021-10-21 14:52:25,936 [lib.cuckoo.core.plugins] DEBUG: Running signature \"browser_helper_object\"\r\n2021-10-21 14:52:25,937 [lib.cuckoo.core.plugins] DEBUG: Running signature \"browser_needed\"\r\n2021-10-21 14:52:25,937 [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_proxy\"\r\n2021-10-21 14:52:25,939 [lib.cuckoo.core.plugins] DEBUG: Running signature \"browser_scanbox\"\r\n2021-10-21 14:52:25,940 [lib.cuckoo.core.plugins] DEBUG: Running signature \"browser_security\"\r\n2021-10-21 14:52:25,942 [lib.cuckoo.core.plugins] DEBUG: Running signature \"browser_startpage\"\r\n2021-10-21 14:52:25,943 [lib.cuckoo.core.plugins] DEBUG: Running signature \"odbcconf_bypass\"\r\n2021-10-21 14:52:25,943 [lib.cuckoo.core.plugins] DEBUG: Running signature \"regsvr32_squiblydoo_dll_load\"\r\n2021-10-21 14:52:25,944 [lib.cuckoo.core.plugins] DEBUG: Running signature \"squiblydoo_bypass\"\r\n2021-10-21 14:52:25,944 [lib.cuckoo.core.plugins] DEBUG: Running signature \"squiblytwo_bypass\"\r\n2021-10-21 14:52:25,944 [lib.cuckoo.core.plugins] DEBUG: Running signature \"bypass_firewall\"\r\n2021-10-21 14:52:25,947 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uac_bypass_cmstp\"\r\n2021-10-21 14:52:25,947 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uac_bypass_cmstpcom\"\r\n2021-10-21 14:52:25,948 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uac_bypass_delegateexecute_sdclt\"\r\n2021-10-21 14:52:25,949 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uac_bypass_eventvwr\"\r\n2021-10-21 14:52:25,949 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uac_bypass_fodhelper\"\r\n2021-10-21 14:52:25,950 [lib.cuckoo.core.plugins] DEBUG: Running signature \"cape_extracted_config\"\r\n2021-10-21 14:52:25,950 [lib.cuckoo.core.plugins] DEBUG: Running signature \"cape_extracted_content\"\r\n2021-10-21 14:52:25,950 [lib.cuckoo.core.plugins] DEBUG: Running signature \"carberp_mutex\"\r\n2021-10-21 14:52:25,951 [lib.cuckoo.core.plugins] DEBUG: Running signature \"cerber_behavior\"\r\n2021-10-21 14:52:25,952 [lib.cuckoo.core.plugins] DEBUG: Running signature \"chimera_behavior\"\r\n2021-10-21 14:52:25,952 [lib.cuckoo.core.plugins] DEBUG: Running signature \"clamav\"\r\n2021-10-21 14:52:25,952 [lib.cuckoo.core.plugins] DEBUG: Running signature \"clears_logs\"\r\n2021-10-21 14:52:25,953 [lib.cuckoo.core.plugins] DEBUG: Running signature \"clickfraud_cookies\"\r\n2021-10-21 14:52:25,954 [lib.cuckoo.core.plugins] DEBUG: Running signature \"clickfraud_volume\"\r\n2021-10-21 14:52:25,954 [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_obfuscation\"\r\n2021-10-21 14:52:25,954 [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_switches\"\r\n2021-10-21 14:52:25,955 [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_terminate\"\r\n2021-10-21 14:52:25,955 [lib.cuckoo.core.plugins] DEBUG: Running signature \"commandline_forfiles_wildcard\"\r\n2021-10-21 14:52:25,956 [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_http_link\"\r\n2021-10-21 14:52:25,956 [lib.cuckoo.core.plugins] DEBUG: Running signature \"commandline_long_string\"\r\n2021-10-21 14:52:25,956 [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_reversed_http_link\"\r\n2021-10-21 14:52:25,957 [lib.cuckoo.core.plugins] DEBUG: Running signature \"long_commandline\"\r\n2021-10-21 14:52:25,957 [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_renamed_commandline\"\r\n2021-10-21 14:52:25,957 [lib.cuckoo.core.plugins] DEBUG: Running signature \"codelux_behavior\"\r\n2021-10-21 14:52:25,958 [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_account_disovery_cmd\"\r\n2021-10-21 14:52:25,959 [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_info_disovery_cmd\"\r\n2021-10-21 14:52:25,959 [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_info_disovery_pwsh\"\r\n2021-10-21 14:52:25,960 [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_network_discovery_cmd\"\r\n2021-10-21 14:52:25,960 [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_network_discovery_pwsh\"\r\n2021-10-21 14:52:25,960 [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_user_disovery_cmd\"\r\n2021-10-21 14:52:25,961 [lib.cuckoo.core.plugins] DEBUG: Running signature \"dotnet_code_compile\"\r\n2021-10-21 14:52:25,961 [lib.cuckoo.core.plugins] DEBUG: Running signature \"copies_self\"\r\n2021-10-21 14:52:25,961 [lib.cuckoo.core.plugins] DEBUG: Running signature \"creates_largekey\"\r\n2021-10-21 14:52:25,962 [lib.cuckoo.core.plugins] DEBUG: Running signature \"creates_nullvalue\"\r\n2021-10-21 14:52:25,962 [lib.cuckoo.core.plugins] DEBUG: Running signature \"enables_wdigest\"\r\n2021-10-21 14:52:25,963 [lib.cuckoo.core.plugins] DEBUG: Running signature \"file_credential_store_access\"\r\n2021-10-21 14:52:25,964 [lib.cuckoo.core.plugins] DEBUG: Running signature \"file_credential_store_write\"\r\n2021-10-21 14:52:25,964 [lib.cuckoo.core.plugins] DEBUG: Running signature \"lsass_credential_dumping\"\r\n2021-10-21 14:52:25,965 [lib.cuckoo.core.plugins] DEBUG: Running signature \"registry_credential_dumping\"\r\n2021-10-21 14:52:25,965 [lib.cuckoo.core.plugins] DEBUG: Running signature \"registry_credential_store_access\"\r\n2021-10-21 14:52:25,967 [lib.cuckoo.core.plugins] DEBUG: Running signature \"registry_lsa_secrets_access\"\r\n2021-10-21 14:52:25,968 [lib.cuckoo.core.plugins] DEBUG: Running signature \"critical_process\"\r\n2021-10-21 14:52:25,968 [lib.cuckoo.core.plugins] DEBUG: Running signature \"cyrptomining_stratum_command\"\r\n2021-10-21 14:52:25,969 [lib.cuckoo.core.plugins] DEBUG: Running signature \"cryptopool_domains\"\r\n2021-10-21 14:52:25,970 [lib.cuckoo.core.plugins] DEBUG: Running signature \"cryptowall_behavior\"\r\n2021-10-21 14:52:25,970 [lib.cuckoo.core.plugins] DEBUG: Running signature \"cve_2014_6332\"\r\n2021-10-21 14:52:25,971 [lib.cuckoo.core.plugins] DEBUG: Running signature \"cve_2015_2419_js\"\r\n2021-10-21 14:52:25,971 [lib.cuckoo.core.plugins] DEBUG: Running signature \"cve_2016-0189\"\r\n2021-10-21 14:52:25,971 [lib.cuckoo.core.plugins] DEBUG: Running signature \"cve_2016_7200\"\r\n2021-10-21 14:52:25,972 [lib.cuckoo.core.plugins] DEBUG: Running signature \"cypherit_mutexes\"\r\n2021-10-21 14:52:25,972 [lib.cuckoo.core.plugins] DEBUG: Running signature \"darkcomet_regkeys\"\r\n2021-10-21 14:52:25,975 [lib.cuckoo.core.plugins] DEBUG: Running signature \"dead_connect\"\r\n2021-10-21 14:52:25,976 [lib.cuckoo.core.plugins] DEBUG: Running signature \"dead_link\"\r\n2021-10-21 14:52:25,976 [lib.cuckoo.core.plugins] DEBUG: Running signature \"debugs_self\"\r\n2021-10-21 14:52:25,977 [lib.cuckoo.core.plugins] DEBUG: Running signature \"decoy_document\"\r\n2021-10-21 14:52:25,977 [lib.cuckoo.core.plugins] DEBUG: Running signature \"decoy_image\"\r\n2021-10-21 14:52:25,977 [lib.cuckoo.core.plugins] DEBUG: Running signature \"deepfreeze_mutex\"\r\n2021-10-21 14:52:25,978 [lib.cuckoo.core.plugins] DEBUG: Running signature \"deletes_self\"\r\n2021-10-21 14:52:25,978 [lib.cuckoo.core.plugins] DEBUG: Running signature \"deletes_shadow_copies\"\r\n2021-10-21 14:52:25,978 [lib.cuckoo.core.plugins] DEBUG: Running signature \"deletes_system_state_backup\"\r\n2021-10-21 14:52:25,979 [lib.cuckoo.core.plugins] DEBUG: Running signature \"dep_bypass\"\r\n2021-10-21 14:52:25,979 [lib.cuckoo.core.plugins] DEBUG: Running signature \"dep_disable\"\r\n2021-10-21 14:52:25,980 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_appv_virtualization\"\r\n2021-10-21 14:52:25,980 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_app_launch\"\r\n2021-10-21 14:52:25,981 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_auto_app_termination\"\r\n2021-10-21 14:52:25,982 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_backups\"\r\n2021-10-21 14:52:25,984 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_browser_warn\"\r\n2021-10-21 14:52:25,986 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_context_menus\"\r\n2021-10-21 14:52:25,987 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_cpl_disable\"\r\n2021-10-21 14:52:25,987 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_mappeddrives_autodisconnect\"\r\n2021-10-21 14:52:25,988 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_event_logging\"\r\n2021-10-21 14:52:25,988 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disable_folder_options\"\r\n2021-10-21 14:52:25,989 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_notificationcenter\"\r\n2021-10-21 14:52:25,990 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_power_options\"\r\n2021-10-21 14:52:25,991 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_restore_default_state\"\r\n2021-10-21 14:52:25,992 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disable_run_command\"\r\n2021-10-21 14:52:25,993 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_smartscreen\"\r\n2021-10-21 14:52:25,994 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_spdy\"\r\n2021-10-21 14:52:25,994 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_startmenu_search\"\r\n2021-10-21 14:52:25,995 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_system_restore\"\r\n2021-10-21 14:52:25,996 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_uac\"\r\n2021-10-21 14:52:25,997 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_wer\"\r\n2021-10-21 14:52:25,997 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_wfp\"\r\n2021-10-21 14:52:25,998 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_windows_defender\"\r\n2021-10-21 14:52:25,999 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_windows_defender_logging\"\r\n2021-10-21 14:52:26,000 [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_windows_defender_contextmenu\"\r\n2021-10-21 14:52:26,001 [lib.cuckoo.core.plugins] DEBUG: Running signature \"windows_defender_powershell\"\r\n2021-10-21 14:52:26,001 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_windows_file_protection\"\r\n2021-10-21 14:52:26,002 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_windowsupdate\"\r\n2021-10-21 14:52:26,002 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_winfirewall\"\r\n2021-10-21 14:52:26,003 [lib.cuckoo.core.plugins] DEBUG: Running signature \"document_script_exe_drop\"\r\n2021-10-21 14:52:26,003 [lib.cuckoo.core.plugins] DEBUG: Running signature \"andromut_mutexes\"\r\n2021-10-21 14:52:26,004 [lib.cuckoo.core.plugins] DEBUG: Running signature \"downloader_cabby\"\r\n2021-10-21 14:52:26,005 [lib.cuckoo.core.plugins] DEBUG: Running signature \"guloader_apis\"\r\n2021-10-21 14:52:26,005 [lib.cuckoo.core.plugins] DEBUG: Running signature \"phorpiex_mutexes\"\r\n2021-10-21 14:52:26,005 [lib.cuckoo.core.plugins] DEBUG: Running signature \"protonbot_mutexes\"\r\n2021-10-21 14:52:26,006 [lib.cuckoo.core.plugins] DEBUG: Running signature \"dridex_behavior\"\r\n2021-10-21 14:52:26,006 [lib.cuckoo.core.plugins] DEBUG: Running signature \"driver_filtermanager\"\r\n2021-10-21 14:52:26,007 [lib.cuckoo.core.plugins] DEBUG: Running signature \"driver_load\"\r\n2021-10-21 14:52:26,007 [lib.cuckoo.core.plugins] DEBUG: Running signature \"dropper\"\r\n2021-10-21 14:52:26,008 [lib.cuckoo.core.plugins] DEBUG: Running signature \"exe_dropper_js\"\r\n2021-10-21 14:52:26,008 [lib.cuckoo.core.plugins] DEBUG: Running signature \"dynamic_function_loading\"\r\n2021-10-21 14:52:26,008 [lib.cuckoo.core.plugins] DEBUG: Running signature \"dyre_behavior\"\r\n2021-10-21 14:52:26,009 [lib.cuckoo.core.plugins] DEBUG: Running signature \"angler_js\"\r\n2021-10-21 14:52:26,009 [lib.cuckoo.core.plugins] DEBUG: Running signature \"gondad_js\"\r\n2021-10-21 14:52:26,009 [lib.cuckoo.core.plugins] DEBUG: Running signature \"heapspray_js\"\r\n2021-10-21 14:52:26,010 [lib.cuckoo.core.plugins] DEBUG: Running signature \"java_js\"\r\n2021-10-21 14:52:26,010 [lib.cuckoo.core.plugins] DEBUG: Running signature \"Neutrino_js\"\r\n2021-10-21 14:52:26,011 [lib.cuckoo.core.plugins] DEBUG: Running signature \"nuclear_js\"\r\n2021-10-21 14:52:26,011 [lib.cuckoo.core.plugins] DEBUG: Running signature \"rig_js\"\r\n2021-10-21 14:52:26,011 [lib.cuckoo.core.plugins] DEBUG: Running signature \"silverlight_js\"\r\n2021-10-21 14:52:26,012 [lib.cuckoo.core.plugins] DEBUG: Running signature \"sundown_js\"\r\n2021-10-21 14:52:26,012 [lib.cuckoo.core.plugins] DEBUG: Running signature \"virtualcheck_js\"\r\n2021-10-21 14:52:26,012 [lib.cuckoo.core.plugins] DEBUG: Running signature \"encrypted_ioc\"\r\n2021-10-21 14:52:26,013 [lib.cuckoo.core.plugins] DEBUG: Running signature \"excel4_macro_urls\"\r\n2021-10-21 14:52:26,013 [lib.cuckoo.core.plugins] DEBUG: Running signature \"exec_crash\"\r\n2021-10-21 14:52:26,014 [lib.cuckoo.core.plugins] DEBUG: Running signature \"process_creation_suspicious_location\"\r\n2021-10-21 14:52:26,014 [lib.cuckoo.core.plugins] DEBUG: Running signature \"exploit_getbasekerneladdress\"\r\n2021-10-21 14:52:26,014 [lib.cuckoo.core.plugins] DEBUG: Running signature \"exploit_gethaldispatchtable\"\r\n2021-10-21 14:52:26,015 [lib.cuckoo.core.plugins] DEBUG: Running signature \"exploit_heapspray\"\r\n2021-10-21 14:52:26,015 [lib.cuckoo.core.plugins] DEBUG: Running signature \"spooler_access\"\r\n2021-10-21 14:52:26,016 [lib.cuckoo.core.plugins] DEBUG: Running signature \"spooler_svc_start\"\r\n2021-10-21 14:52:26,017 [lib.cuckoo.core.plugins] DEBUG: Running signature \"koadic_apis\"\r\n2021-10-21 14:52:26,017 [lib.cuckoo.core.plugins] DEBUG: Running signature \"koadic_network_activity\"\r\n2021-10-21 14:52:26,018 [lib.cuckoo.core.plugins] DEBUG: Running signature \"family_proxyback\"\r\n2021-10-21 14:52:26,018 [lib.cuckoo.core.plugins] DEBUG: Running signature \"downloads_from_filehosting\"\r\n2021-10-21 14:52:26,019 [lib.cuckoo.core.plugins] DEBUG: Running signature \"mapped_drives_uac\"\r\n2021-10-21 14:52:26,020 [lib.cuckoo.core.plugins] DEBUG: Running signature \"generic_phish\"\r\n2021-10-21 14:52:26,020 [lib.cuckoo.core.plugins] DEBUG: Running signature \"gootkit_behavior\"\r\n2021-10-21 14:52:26,021 [lib.cuckoo.core.plugins] DEBUG: Running signature \"h1n1_behavior\"\r\n2021-10-21 14:52:26,021 [lib.cuckoo.core.plugins] DEBUG: Running signature \"hancitor_behavior\"\r\n2021-10-21 14:52:26,022 [lib.cuckoo.core.plugins] DEBUG: Running signature \"hawkeye_behavior\"\r\n2021-10-21 14:52:26,022 [lib.cuckoo.core.plugins] DEBUG: Running signature \"hides_recycle_bin_icon\"\r\n2021-10-21 14:52:26,023 [lib.cuckoo.core.plugins] DEBUG: Running signature \"http_request\"\r\n2021-10-21 14:52:26,023 [lib.cuckoo.core.plugins] DEBUG: Running signature \"https_urls\"\r\n2021-10-21 14:52:26,023 [lib.cuckoo.core.plugins] DEBUG: Running signature \"apocalypse_stealer_file_behavior\"\r\n2021-10-21 14:52:26,024 [lib.cuckoo.core.plugins] DEBUG: Running signature \"arkei_files\"\r\n2021-10-21 14:52:26,025 [lib.cuckoo.core.plugins] DEBUG: Running signature \"azorult_mutexes\"\r\n2021-10-21 14:52:26,026 [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_bitcoin\"\r\n2021-10-21 14:52:26,030 [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_browser\"\r\n2021-10-21 14:52:26,031 [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_browser_password\"\r\n2021-10-21 14:52:26,031 [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_cookies\"\r\n2021-10-21 14:52:26,033 [lib.cuckoo.core.plugins] DEBUG: Running signature \"cryptbot_files\"\r\n2021-10-21 14:52:26,034 [lib.cuckoo.core.plugins] DEBUG: Running signature \"cryptbot_network\"\r\n2021-10-21 14:52:26,035 [lib.cuckoo.core.plugins] DEBUG: Running signature \"echelon_files\"\r\n2021-10-21 14:52:26,036 [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_ftp\"\r\n2021-10-21 14:52:26,072 [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_im\"\r\n2021-10-21 14:52:26,092 [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_keylog\"\r\n2021-10-21 14:52:26,093 [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_mail\"\r\n2021-10-21 14:52:26,093 [lib.cuckoo.core.plugins] DEBUG: Running signature \"masslogger_artifacts\"\r\n2021-10-21 14:52:26,094 [lib.cuckoo.core.plugins] DEBUG: Running signature \"masslogger_files\"\r\n2021-10-21 14:52:26,094 [lib.cuckoo.core.plugins] DEBUG: Running signature \"masslogger_version\"\r\n2021-10-21 14:52:26,094 [lib.cuckoo.core.plugins] DEBUG: Running signature \"poullight_files\"\r\n2021-10-21 14:52:26,097 [lib.cuckoo.core.plugins] DEBUG: Running signature \"purplewave_mutexes\"\r\n2021-10-21 14:52:26,098 [lib.cuckoo.core.plugins] DEBUG: Running signature \"purplewave_network_activity\"\r\n2021-10-21 14:52:26,098 [lib.cuckoo.core.plugins] DEBUG: Running signature \"quilclipper_mutexes\"\r\n2021-10-21 14:52:26,098 [lib.cuckoo.core.plugins] DEBUG: Running signature \"quilclipper_behavior\"\r\n2021-10-21 14:52:26,099 [lib.cuckoo.core.plugins] DEBUG: Running signature \"qulab_files\"\r\n2021-10-21 14:52:26,100 [lib.cuckoo.core.plugins] DEBUG: Running signature \"qulab_mutexes\"\r\n2021-10-21 14:52:26,101 [lib.cuckoo.core.plugins] DEBUG: Running signature \"Raccoon Behavior\"\r\n2021-10-21 14:52:26,101 [lib.cuckoo.core.plugins] DEBUG: Running signature \"captures_screenshot\"\r\n2021-10-21 14:52:26,101 [lib.cuckoo.core.plugins] DEBUG: Running signature \"Vidar Behavior\"\r\n2021-10-21 14:52:26,102 [lib.cuckoo.core.plugins] DEBUG: Running signature \"injection_createremotethread\"\r\n2021-10-21 14:52:26,102 [lib.cuckoo.core.plugins] DEBUG: Running signature \"injection_explorer\"\r\n2021-10-21 14:52:26,103 [lib.cuckoo.core.plugins] DEBUG: Running signature \"injection_needextension\"\r\n2021-10-21 14:52:26,103 [lib.cuckoo.core.plugins] DEBUG: Running signature \"injection_network_traffic\"\r\n2021-10-21 14:52:26,103 [lib.cuckoo.core.plugins] DEBUG: Running signature \"injection_runpe\"\r\n2021-10-21 14:52:26,104 [lib.cuckoo.core.plugins] DEBUG: Running signature \"injection_rwx\"\r\n2021-10-21 14:52:26,104 [lib.cuckoo.core.plugins] DEBUG: Running signature \"injection_themeinitapihook\"\r\n2021-10-21 14:52:26,104 [lib.cuckoo.core.plugins] DEBUG: Running signature \"internet_dropper\"\r\n2021-10-21 14:52:26,105 [lib.cuckoo.core.plugins] DEBUG: Running signature \"ipc_namedpipe\"\r\n2021-10-21 14:52:26,105 [lib.cuckoo.core.plugins] DEBUG: Running signature \"js_phish\"\r\n2021-10-21 14:52:26,106 [lib.cuckoo.core.plugins] DEBUG: Running signature \"js_suspicious_redirect\"\r\n2021-10-21 14:52:26,106 [lib.cuckoo.core.plugins] DEBUG: Running signature \"kazybot_behavior\"\r\n2021-10-21 14:52:26,106 [lib.cuckoo.core.plugins] DEBUG: Running signature \"kelihos_behavior\"\r\n2021-10-21 14:52:26,107 [lib.cuckoo.core.plugins] DEBUG: Running signature \"kibex_behavior\"\r\n2021-10-21 14:52:26,107 [lib.cuckoo.core.plugins] DEBUG: Running signature \"kovter_behavior\"\r\n2021-10-21 14:52:26,107 [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_kraken_mutexes\"\r\n2021-10-21 14:52:26,108 [lib.cuckoo.core.plugins] DEBUG: Running signature \"locker_regedit\"\r\n2021-10-21 14:52:26,108 [lib.cuckoo.core.plugins] DEBUG: Running signature \"locker_taskmgr\"\r\n2021-10-21 14:52:26,109 [lib.cuckoo.core.plugins] DEBUG: Running signature \"Locky_behavior\"\r\n2021-10-21 14:52:26,109 [lib.cuckoo.core.plugins] DEBUG: Running signature \"malicious_dynamic_function_loading\"\r\n2021-10-21 14:52:26,110 [lib.cuckoo.core.plugins] DEBUG: Running signature \"encrypts_pcinfo\"\r\n2021-10-21 14:52:26,110 [lib.cuckoo.core.plugins] DEBUG: Running signature \"encrypt_data_agenttesla_http\"\r\n2021-10-21 14:52:26,110 [lib.cuckoo.core.plugins] DEBUG: Running signature \"encrypt_data_agentteslat2_http\"\r\n2021-10-21 14:52:26,111 [lib.cuckoo.core.plugins] DEBUG: Running signature \"encrypt_data_nanocore\"\r\n2021-10-21 14:52:26,111 [lib.cuckoo.core.plugins] DEBUG: Running signature \"ie_martian_children\"\r\n2021-10-21 14:52:26,111 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_martian_children\"\r\n2021-10-21 14:52:26,114 [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"office_martian_children\"\r\n2021-10-21 14:52:26,115 [lib.cuckoo.core.plugins] DEBUG: Running signature \"mimics_agent\"\r\n2021-10-21 14:52:26,115 [lib.cuckoo.core.plugins] DEBUG: Running signature \"mimics_extension\"\r\n2021-10-21 14:52:26,115 [lib.cuckoo.core.plugins] DEBUG: Running signature \"mimics_filetime\"\r\n2021-10-21 14:52:26,116 [lib.cuckoo.core.plugins] DEBUG: Running signature \"mimics_icon\"\r\n2021-10-21 14:52:26,116 [lib.cuckoo.core.plugins] DEBUG: Running signature \"masquerade_process_name\"\r\n2021-10-21 14:52:26,120 [lib.cuckoo.core.plugins] DEBUG: Running signature \"mimikatz_modules\"\r\n2021-10-21 14:52:26,121 [lib.cuckoo.core.plugins] DEBUG: Running signature \"quilclipper_behavior\"\r\n2021-10-21 14:52:26,121 [lib.cuckoo.core.plugins] DEBUG: Running signature \"modifies_certs\"\r\n2021-10-21 14:52:26,122 [lib.cuckoo.core.plugins] DEBUG: Running signature \"dotnet_clr_usagelog_regkeys\"\r\n2021-10-21 14:52:26,122 [lib.cuckoo.core.plugins] DEBUG: Running signature \"modifies_hostfile\"\r\n2021-10-21 14:52:26,123 [lib.cuckoo.core.plugins] DEBUG: Running signature \"modifies_oem_information\"\r\n2021-10-21 14:52:26,124 [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_security_center_warnings\"\r\n2021-10-21 14:52:26,125 [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_uac_prompt\"\r\n2021-10-21 14:52:26,126 [lib.cuckoo.core.plugins] DEBUG: Running signature \"modifies_desktop_wallpaper\"\r\n2021-10-21 14:52:26,126 [lib.cuckoo.core.plugins] DEBUG: Running signature \"move_file_on_reboot\"\r\n2021-10-21 14:52:26,126 [lib.cuckoo.core.plugins] DEBUG: Running signature \"multiple_useragents\"\r\n2021-10-21 14:52:26,127 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_anomaly\"\r\n2021-10-21 14:52:26,127 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_bind\"\r\n2021-10-21 14:52:26,128 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_cnc_https_archive\"\r\n2021-10-21 14:52:26,128 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_cnc_https_free_webshoting\"\r\n2021-10-21 14:52:26,128 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_cnc_https_generic\"\r\n2021-10-21 14:52:26,129 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_cnc_https_temp_urldns\"\r\n2021-10-21 14:52:26,129 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_cnc_https_pastesite\"\r\n2021-10-21 14:52:26,129 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_cnc_https_payload\"\r\n2021-10-21 14:52:26,130 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_cnc_https_socialmedia\"\r\n2021-10-21 14:52:26,130 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_cnc_https_telegram\"\r\n2021-10-21 14:52:26,130 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_cnc_https_tempstorage\"\r\n2021-10-21 14:52:26,131 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_cnc_https_temp_urldns\"\r\n2021-10-21 14:52:26,131 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_cnc_https_urlshortener\"\r\n2021-10-21 14:52:26,131 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_cnc_https_useragent\"\r\n2021-10-21 14:52:26,132 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_cnc_smtps_exfil\"\r\n2021-10-21 14:52:26,132 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_cnc_smtps_generic\"\r\n2021-10-21 14:52:26,133 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_country_distribution\"\r\n2021-10-21 14:52:26,133 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_multiple_direct_ip_connections\"\r\n2021-10-21 14:52:26,133 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_cnc_http\"\r\n2021-10-21 14:52:26,134 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dga\"\r\n2021-10-21 14:52:26,142 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dga_fraunhofer\"\r\n2021-10-21 14:52:26,143 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_blockchain\"\r\n2021-10-21 14:52:26,144 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_idn\"\r\n2021-10-21 14:52:26,144 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_opennic\"\r\n2021-10-21 14:52:26,146 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_paste_site\"\r\n2021-10-21 14:52:26,147 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_reverse_proxy\"\r\n2021-10-21 14:52:26,148 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_suspicious_querytype\"\r\n2021-10-21 14:52:26,148 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_temp_file_storage\"\r\n2021-10-21 14:52:26,150 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_temp_urldns\"\r\n2021-10-21 14:52:26,151 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_tunneling_request\"\r\n2021-10-21 14:52:26,151 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_url_shortener\"\r\n2021-10-21 14:52:26,153 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_doh_tls\"\r\n2021-10-21 14:52:26,153 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_document_http\"\r\n2021-10-21 14:52:26,154 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_excessive_udp\"\r\n2021-10-21 14:52:26,154 [lib.cuckoo.core.plugins] DEBUG: Running signature \"explorer_http\"\r\n2021-10-21 14:52:26,155 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_fake_useragent\"\r\n2021-10-21 14:52:26,155 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_http\"\r\n2021-10-21 14:52:26,155 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_icmp\"\r\n2021-10-21 14:52:26,156 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_irc\"\r\n2021-10-21 14:52:26,156 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_open_proxy\"\r\n2021-10-21 14:52:26,157 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_smtp\"\r\n2021-10-21 14:52:26,157 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_tor\"\r\n2021-10-21 14:52:26,157 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_tor_service\"\r\n2021-10-21 14:52:26,158 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_torgateway\"\r\n2021-10-21 14:52:26,160 [lib.cuckoo.core.plugins] DEBUG: Running signature \"nymaim_behavior\"\r\n2021-10-21 14:52:26,161 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_code_page\"\r\n2021-10-21 14:52:26,161 [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"office_code_page\"\r\n2021-10-21 14:52:26,161 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_addinloading\"\r\n2021-10-21 14:52:26,161 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_com_load\"\r\n2021-10-21 14:52:26,162 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_dotnet_load\"\r\n2021-10-21 14:52:26,162 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_mshtml_load\"\r\n2021-10-21 14:52:26,163 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_perfkey\"\r\n2021-10-21 14:52:26,163 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_vb_load\"\r\n2021-10-21 14:52:26,164 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_wmi_load\"\r\n2021-10-21 14:52:26,164 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_cve2017_11882\"\r\n2021-10-21 14:52:26,164 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_cve2017_11882_network\"\r\n2021-10-21 14:52:26,165 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_cve_2021_40444\"\r\n2021-10-21 14:52:26,165 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_cve_2021_40444_m2\"\r\n2021-10-21 14:52:26,165 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_flash_load\"\r\n2021-10-21 14:52:26,166 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_postscript\"\r\n2021-10-21 14:52:26,166 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro\"\r\n2021-10-21 14:52:26,167 [lib.cuckoo.core.plugins] DEBUG: Running signature \"changes_trust_center_settings\"\r\n2021-10-21 14:52:26,168 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_vba_trust_access\"\r\n2021-10-21 14:52:26,169 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro_autoexecution\"\r\n2021-10-21 14:52:26,169 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro_ioc\"\r\n2021-10-21 14:52:26,169 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro_malicious_prediction\"\r\n2021-10-21 14:52:26,170 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro_suspicious\"\r\n2021-10-21 14:52:26,170 [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_aslr_bypass\"\r\n2021-10-21 14:52:26,170 [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_anomaly_characterset\"\r\n2021-10-21 14:52:26,171 [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_anomaly_version\"\r\n2021-10-21 14:52:26,171 [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_embedded_content\"\r\n2021-10-21 14:52:26,172 [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_embedded_office_file\"\r\n2021-10-21 14:52:26,172 [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_exploit_static\"\r\n2021-10-21 14:52:26,172 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_security\"\r\n2021-10-21 14:52:26,173 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_anomalous_feature\"\r\n2021-10-21 14:52:26,173 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_dde_command\"\r\n2021-10-21 14:52:26,173 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_suspicious_processes\"\r\n2021-10-21 14:52:26,174 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_write_exe\"\r\n2021-10-21 14:52:26,174 [lib.cuckoo.core.plugins] DEBUG: Running signature \"origin_langid\"\r\n2021-10-21 14:52:26,175 [lib.cuckoo.core.plugins] DEBUG: Running signature \"origin_resource_langid\"\r\n2021-10-21 14:52:26,175 [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_unknown_pe_section_name\"\r\n2021-10-21 14:52:26,175 [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_armadillo_mutex\"\r\n2021-10-21 14:52:26,176 [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_armadillo_regkey\"\r\n2021-10-21 14:52:26,177 [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_aspack\"\r\n2021-10-21 14:52:26,178 [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_aspirecrypt\"\r\n2021-10-21 14:52:26,178 [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_bedsprotector\"\r\n2021-10-21 14:52:26,178 [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_confuser\"\r\n2021-10-21 14:52:26,179 [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_enigma\"\r\n2021-10-21 14:52:26,179 [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_entropy\"\r\n2021-10-21 14:52:26,180 [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_mpress\"\r\n2021-10-21 14:52:26,180 [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_nate\"\r\n2021-10-21 14:52:26,180 [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_nspack\"\r\n2021-10-21 14:52:26,181 [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_smartassembly\"\r\n2021-10-21 14:52:26,181 [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_spices\"\r\n2021-10-21 14:52:26,181 [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_themida\"\r\n2021-10-21 14:52:26,182 [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_themida\"\r\n2021-10-21 14:52:26,182 [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_titan\"\r\n2021-10-21 14:52:26,183 [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_upx\"\r\n2021-10-21 14:52:26,183 [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_vmprotect\"\r\n2021-10-21 14:52:26,183 [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_yoda\"\r\n2021-10-21 14:52:26,184 [lib.cuckoo.core.plugins] DEBUG: Running signature \"pdf_annot_urls\"\r\n2021-10-21 14:52:26,184 [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_ads\"\r\n2021-10-21 14:52:26,184 [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_autorun\"\r\n2021-10-21 14:52:26,185 [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_autorun_tasks\"\r\n2021-10-21 14:52:26,185 [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_safeboot\"\r\n2021-10-21 14:52:26,186 [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_bootexecute\"\r\n2021-10-21 14:52:26,186 [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_registry_script\"\r\n2021-10-21 14:52:26,187 [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_ifeo\"\r\n2021-10-21 14:52:26,187 [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_slient_process_exit\"\r\n2021-10-21 14:52:26,188 [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_rdp_registry\"\r\n2021-10-21 14:52:26,189 [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_rdp_shadowing\"\r\n2021-10-21 14:52:26,189 [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_service\"\r\n2021-10-21 14:52:26,190 [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_shim_database\"\r\n2021-10-21 14:52:26,190 [lib.cuckoo.core.plugins] DEBUG: Running signature \"polymorphic\"\r\n2021-10-21 14:52:26,191 [lib.cuckoo.core.plugins] DEBUG: Running signature \"pony_behavior\"\r\n2021-10-21 14:52:26,191 [lib.cuckoo.core.plugins] DEBUG: Running signature \"powerpool_mutexes\"\r\n2021-10-21 14:52:26,192 [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_network_connection\"\r\n2021-10-21 14:52:26,192 [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_scriptblock_logging\"\r\n2021-10-21 14:52:26,193 [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_command_suspicious\"\r\n2021-10-21 14:52:26,193 [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_renamed\"\r\n2021-10-21 14:52:26,193 [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_reversed\"\r\n2021-10-21 14:52:26,194 [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_variable_obfuscation\"\r\n2021-10-21 14:52:26,194 [lib.cuckoo.core.plugins] DEBUG: Running signature \"punch_plus_plus_pcres\"\r\n2021-10-21 14:52:26,195 [lib.cuckoo.core.plugins] DEBUG: Running signature \"prevents_safeboot\"\r\n2021-10-21 14:52:26,195 [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_process_discovery\"\r\n2021-10-21 14:52:26,196 [lib.cuckoo.core.plugins] DEBUG: Running signature \"createtoolhelp32snapshot_module_enumeration\"\r\n2021-10-21 14:52:26,196 [lib.cuckoo.core.plugins] DEBUG: Running signature \"enumerates_running_processes\"\r\n2021-10-21 14:52:26,196 [lib.cuckoo.core.plugins] DEBUG: Running signature \"process_interest\"\r\n2021-10-21 14:52:26,197 [lib.cuckoo.core.plugins] DEBUG: Running signature \"process_needed\"\r\n2021-10-21 14:52:26,197 [lib.cuckoo.core.plugins] DEBUG: Running signature \"procmem_yara\"\r\n2021-10-21 14:52:26,197 [lib.cuckoo.core.plugins] DEBUG: Running signature \"mass_data_encryption\"\r\n2021-10-21 14:52:26,198 [lib.cuckoo.core.plugins] DEBUG: Running signature \"cryptomix_mutexes\"\r\n2021-10-21 14:52:26,198 [lib.cuckoo.core.plugins] DEBUG: Running signature \"dharma_mutexes\"\r\n2021-10-21 14:52:26,199 [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_dmalocker\"\r\n2021-10-21 14:52:26,199 [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_extensions\"\r\n2021-10-21 14:52:26,206 [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_file_modifications\"\r\n2021-10-21 14:52:26,207 [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_files\"\r\n2021-10-21 14:52:26,217 [lib.cuckoo.core.plugins] DEBUG: Running signature \"fonix_mutexes\"\r\n2021-10-21 14:52:26,217 [lib.cuckoo.core.plugins] DEBUG: Running signature \"gandcrab_mutexes\"\r\n2021-10-21 14:52:26,218 [lib.cuckoo.core.plugins] DEBUG: Running signature \"germanwiper_mutexes\"\r\n2021-10-21 14:52:26,218 [lib.cuckoo.core.plugins] DEBUG: Running signature \"medusalocker_mutexes\"\r\n2021-10-21 14:52:26,219 [lib.cuckoo.core.plugins] DEBUG: Running signature \"medusalocker_regkeys\"\r\n2021-10-21 14:52:26,221 [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_message\"\r\n2021-10-21 14:52:26,221 [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_message_multiple_locations\"\r\n2021-10-21 14:52:26,222 [lib.cuckoo.core.plugins] DEBUG: Running signature \"nemty_mutexes\"\r\n2021-10-21 14:52:26,222 [lib.cuckoo.core.plugins] DEBUG: Running signature \"nemty_network_activity\"\r\n2021-10-21 14:52:26,223 [lib.cuckoo.core.plugins] DEBUG: Running signature \"nemty_note\"\r\n2021-10-21 14:52:26,223 [lib.cuckoo.core.plugins] DEBUG: Running signature \"nemty_regkeys\"\r\n2021-10-21 14:52:26,224 [lib.cuckoo.core.plugins] DEBUG: Running signature \"pysa_mutexes\"\r\n2021-10-21 14:52:26,224 [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_radamant\"\r\n2021-10-21 14:52:26,225 [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_recyclebin\"\r\n2021-10-21 14:52:26,226 [lib.cuckoo.core.plugins] DEBUG: Running signature \"revil_mutexes\"\r\n2021-10-21 14:52:26,227 [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_revil_regkey\"\r\n2021-10-21 14:52:26,228 [lib.cuckoo.core.plugins] DEBUG: Running signature \"satan_mutexes\"\r\n2021-10-21 14:52:26,229 [lib.cuckoo.core.plugins] DEBUG: Running signature \"snake_ransom_mutexes\"\r\n2021-10-21 14:52:26,229 [lib.cuckoo.core.plugins] DEBUG: Running signature \"Sodinokibi Behavior\"\r\n2021-10-21 14:52:26,230 [lib.cuckoo.core.plugins] DEBUG: Running signature \"stop_ransom_mutexes\"\r\n2021-10-21 14:52:26,230 [lib.cuckoo.core.plugins] DEBUG: Running signature \"stop_ransomware_cmd\"\r\n2021-10-21 14:52:26,231 [lib.cuckoo.core.plugins] DEBUG: Running signature \"stop_ransomware_registry\"\r\n2021-10-21 14:52:26,231 [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_beebus_mutexes\"\r\n2021-10-21 14:52:26,232 [lib.cuckoo.core.plugins] DEBUG: Running signature \"blacknet_mutexes\"\r\n2021-10-21 14:52:26,232 [lib.cuckoo.core.plugins] DEBUG: Running signature \"blackrat_apis\"\r\n2021-10-21 14:52:26,233 [lib.cuckoo.core.plugins] DEBUG: Running signature \"blackrat_mutexes\"\r\n2021-10-21 14:52:26,233 [lib.cuckoo.core.plugins] DEBUG: Running signature \"blackrat_network_activity\"\r\n2021-10-21 14:52:26,235 [lib.cuckoo.core.plugins] DEBUG: Running signature \"blackrat_registry_keys\"\r\n2021-10-21 14:52:26,236 [lib.cuckoo.core.plugins] DEBUG: Running signature \"crat_mutexes\"\r\n2021-10-21 14:52:26,237 [lib.cuckoo.core.plugins] DEBUG: Running signature \"dcrat_behavior\"\r\n2021-10-21 14:52:26,237 [lib.cuckoo.core.plugins] DEBUG: Running signature \"dcrat_files\"\r\n2021-10-21 14:52:26,238 [lib.cuckoo.core.plugins] DEBUG: Running signature \"dcrat_mutexes\"\r\n2021-10-21 14:52:26,238 [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_fynloski_mutexes\"\r\n2021-10-21 14:52:26,239 [lib.cuckoo.core.plugins] DEBUG: Running signature \"karagany_system_event_objects\"\r\n2021-10-21 14:52:26,239 [lib.cuckoo.core.plugins] DEBUG: Running signature \"karagany_files\"\r\n2021-10-21 14:52:26,240 [lib.cuckoo.core.plugins] DEBUG: Running signature \"limerat_mutexes\"\r\n2021-10-21 14:52:26,240 [lib.cuckoo.core.plugins] DEBUG: Running signature \"limerat_regkeys\"\r\n2021-10-21 14:52:26,243 [lib.cuckoo.core.plugins] DEBUG: Running signature \"lodarat_file_behavior\"\r\n2021-10-21 14:52:26,244 [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_luminosity\"\r\n2021-10-21 14:52:26,244 [lib.cuckoo.core.plugins] DEBUG: Running signature \"modirat_behavior\"\r\n2021-10-21 14:52:26,245 [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_nanocore\"\r\n2021-10-21 14:52:26,246 [lib.cuckoo.core.plugins] DEBUG: Running signature \"NewtWire Behavior\"\r\n2021-10-21 14:52:26,246 [lib.cuckoo.core.plugins] DEBUG: Running signature \"njrat_regkeys\"\r\n2021-10-21 14:52:26,247 [lib.cuckoo.core.plugins] DEBUG: Running signature \"obliquerat_files\"\r\n2021-10-21 14:52:26,248 [lib.cuckoo.core.plugins] DEBUG: Running signature \"obliquerat_mutexes\"\r\n2021-10-21 14:52:26,248 [lib.cuckoo.core.plugins] DEBUG: Running signature \"obliquerat_network_activity\"\r\n2021-10-21 14:52:26,248 [lib.cuckoo.core.plugins] DEBUG: Running signature \"OrcusRAT Behavior\"\r\n2021-10-21 14:52:26,249 [lib.cuckoo.core.plugins] DEBUG: Running signature \"parallax_mutexes\"\r\n2021-10-21 14:52:26,249 [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_pcclient\"\r\n2021-10-21 14:52:26,250 [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_plugx_mutexes\"\r\n2021-10-21 14:52:26,251 [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_poisonivy_mutexes\"\r\n2021-10-21 14:52:26,251 [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_quasar_mutexes\"\r\n2021-10-21 14:52:26,252 [lib.cuckoo.core.plugins] DEBUG: Running signature \"ratsnif_mutexes\"\r\n2021-10-21 14:52:26,252 [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_spynet\"\r\n2021-10-21 14:52:26,253 [lib.cuckoo.core.plugins] DEBUG: Running signature \"trochilusrat_APIs\"\r\n2021-10-21 14:52:26,253 [lib.cuckoo.core.plugins] DEBUG: Running signature \"venomrat_mutexes\"\r\n2021-10-21 14:52:26,254 [lib.cuckoo.core.plugins] DEBUG: Running signature \"warzonerat_files\"\r\n2021-10-21 14:52:26,255 [lib.cuckoo.core.plugins] DEBUG: Running signature \"warzonerat_regkeys\"\r\n2021-10-21 14:52:26,257 [lib.cuckoo.core.plugins] DEBUG: Running signature \"xpertrat_files\"\r\n2021-10-21 14:52:26,257 [lib.cuckoo.core.plugins] DEBUG: Running signature \"xpertrat_mutexes\"\r\n2021-10-21 14:52:26,258 [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_xtreme_mutexes\"\r\n2021-10-21 14:52:26,258 [lib.cuckoo.core.plugins] DEBUG: Running signature \"reads_self\"\r\n2021-10-21 14:52:26,259 [lib.cuckoo.core.plugins] DEBUG: Running signature \"recon_beacon\"\r\n2021-10-21 14:52:26,259 [lib.cuckoo.core.plugins] DEBUG: Running signature \"recon_checkip\"\r\n2021-10-21 14:52:26,260 [lib.cuckoo.core.plugins] DEBUG: Running signature \"recon_fingerprint\"\r\n2021-10-21 14:52:26,261 [lib.cuckoo.core.plugins] DEBUG: Running signature \"recon_programs\"\r\n2021-10-21 14:52:26,262 [lib.cuckoo.core.plugins] DEBUG: Running signature \"recon_systeminfo\"\r\n2021-10-21 14:52:26,262 [lib.cuckoo.core.plugins] DEBUG: Running signature \"accesses_recyclebin\"\r\n2021-10-21 14:52:26,263 [lib.cuckoo.core.plugins] DEBUG: Running signature \"remcos_files\"\r\n2021-10-21 14:52:26,263 [lib.cuckoo.core.plugins] DEBUG: Running signature \"remcos_mutexes\"\r\n2021-10-21 14:52:26,264 [lib.cuckoo.core.plugins] DEBUG: Running signature \"remcos_regkeys\"\r\n2021-10-21 14:52:26,266 [lib.cuckoo.core.plugins] DEBUG: Running signature \"rdptcp_key\"\r\n2021-10-21 14:52:26,267 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_rdp_clip\"\r\n2021-10-21 14:52:26,267 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_remote_desktop_session\"\r\n2021-10-21 14:52:26,267 [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_networking_icon\"\r\n2021-10-21 14:52:26,268 [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_pinned_programs\"\r\n2021-10-21 14:52:26,269 [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_security_maintenance_icon\"\r\n2021-10-21 14:52:26,269 [lib.cuckoo.core.plugins] DEBUG: Running signature \"Removes_startmenu_defaults\"\r\n2021-10-21 14:52:26,271 [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_username_startmenu\"\r\n2021-10-21 14:52:26,271 [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_zoneid_ads\"\r\n2021-10-21 14:52:26,272 [lib.cuckoo.core.plugins] DEBUG: Running signature \"spicyhotpot_behavior\"\r\n2021-10-21 14:52:26,272 [lib.cuckoo.core.plugins] DEBUG: Running signature \"script_created_process\"\r\n2021-10-21 14:52:26,273 [lib.cuckoo.core.plugins] DEBUG: Running signature \"script_network_activity\"\r\n2021-10-21 14:52:26,273 [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_js_script\"\r\n2021-10-21 14:52:26,274 [lib.cuckoo.core.plugins] DEBUG: Running signature \"secure_login_phishing\"\r\n2021-10-21 14:52:26,274 [lib.cuckoo.core.plugins] DEBUG: Running signature \"securityxploded_modules\"\r\n2021-10-21 14:52:26,274 [lib.cuckoo.core.plugins] DEBUG: Running signature \"sets_autoconfig_url\"\r\n2021-10-21 14:52:26,275 [lib.cuckoo.core.plugins] DEBUG: Running signature \"shifu_behavior\"\r\n2021-10-21 14:52:26,275 [lib.cuckoo.core.plugins] DEBUG: Running signature \"sniffer_winpcap\"\r\n2021-10-21 14:52:26,276 [lib.cuckoo.core.plugins] DEBUG: Running signature \"spoofs_procname\"\r\n2021-10-21 14:52:26,276 [lib.cuckoo.core.plugins] DEBUG: Running signature \"spreading_autoruninf\"\r\n2021-10-21 14:52:26,277 [lib.cuckoo.core.plugins] DEBUG: Running signature \"stack_pivot\"\r\n2021-10-21 14:52:26,277 [lib.cuckoo.core.plugins] DEBUG: Running signature \"stack_pivot_file_created\"\r\n2021-10-21 14:52:26,277 [lib.cuckoo.core.plugins] DEBUG: Running signature \"stack_pivot_process_create\"\r\n2021-10-21 14:52:26,278 [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_authenticode\"\r\n2021-10-21 14:52:26,278 [lib.cuckoo.core.plugins] DEBUG: Running signature \"invalid_authenticode_signature\"\r\n2021-10-21 14:52:26,279 [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_dotnet_anomaly\"\r\n2021-10-21 14:52:26,279 [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_java\"\r\n2021-10-21 14:52:26,279 [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_pdf\"\r\n2021-10-21 14:52:26,280 [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_pe_anomaly\"\r\n2021-10-21 14:52:26,280 [lib.cuckoo.core.plugins] DEBUG: Running signature \"pe_compile_timestomping\"\r\n2021-10-21 14:52:26,280 [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_pe_pdbpath\"\r\n2021-10-21 14:52:26,281 [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_rat_config\"\r\n2021-10-21 14:52:26,281 [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_versioninfo_anomaly\"\r\n2021-10-21 14:52:26,282 [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_childproc\"\r\n2021-10-21 14:52:26,282 [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_file\"\r\n2021-10-21 14:52:26,282 [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_hidden_extension\"\r\n2021-10-21 14:52:26,283 [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_hiddenreg\"\r\n2021-10-21 14:52:26,284 [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_hide_notifications\"\r\n2021-10-21 14:52:26,285 [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_network\"\r\n2021-10-21 14:52:26,285 [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_timeout\"\r\n2021-10-21 14:52:26,285 [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_webhistory\"\r\n2021-10-21 14:52:26,286 [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_window\"\r\n2021-10-21 14:52:26,286 [lib.cuckoo.core.plugins] DEBUG: Running signature \"suricata_alert\"\r\n2021-10-21 14:52:26,287 [lib.cuckoo.core.plugins] DEBUG: Running signature \"sysinternals_psexec\"\r\n2021-10-21 14:52:26,287 [lib.cuckoo.core.plugins] DEBUG: Running signature \"sysinternals_tools\"\r\n2021-10-21 14:52:26,288 [lib.cuckoo.core.plugins] DEBUG: Running signature \"tampers_etw\"\r\n2021-10-21 14:52:26,289 [lib.cuckoo.core.plugins] DEBUG: Running signature \"lsa_tampering\"\r\n2021-10-21 14:52:26,290 [lib.cuckoo.core.plugins] DEBUG: Running signature \"tampers_powershell_logging\"\r\n2021-10-21 14:52:26,290 [lib.cuckoo.core.plugins] DEBUG: Running signature \"targeted_flame\"\r\n2021-10-21 14:52:26,291 [lib.cuckoo.core.plugins] DEBUG: Running signature \"territorial_disputes_sigs\"\r\n2021-10-21 14:52:26,329 [lib.cuckoo.core.plugins] DEBUG: Running signature \"tinba_behavior\"\r\n2021-10-21 14:52:26,330 [lib.cuckoo.core.plugins] DEBUG: Running signature \"TrickBotTaskDelete\"\r\n2021-10-21 14:52:26,330 [lib.cuckoo.core.plugins] DEBUG: Running signature \"trickbot_mutex\"\r\n2021-10-21 14:52:26,331 [lib.cuckoo.core.plugins] DEBUG: Running signature \"fleercivet_mutex\"\r\n2021-10-21 14:52:26,331 [lib.cuckoo.core.plugins] DEBUG: Running signature \"lokibot_mutexes\"\r\n2021-10-21 14:52:26,332 [lib.cuckoo.core.plugins] DEBUG: Running signature \"ursnif_behavior\"\r\n2021-10-21 14:52:26,334 [lib.cuckoo.core.plugins] DEBUG: Running signature \"troldesh_behavior\"\r\n2021-10-21 14:52:26,335 [lib.cuckoo.core.plugins] DEBUG: Running signature \"upatre_behavior\"\r\n2021-10-21 14:52:26,335 [lib.cuckoo.core.plugins] DEBUG: Running signature \"ursnif_behavior\"\r\n2021-10-21 14:52:26,335 [lib.cuckoo.core.plugins] DEBUG: Running signature \"user_enum\"\r\n2021-10-21 14:52:26,336 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_adfind\"\r\n2021-10-21 14:52:26,336 [lib.cuckoo.core.plugins] DEBUG: Running signature \"vawtrak_behavior\"\r\n2021-10-21 14:52:26,336 [lib.cuckoo.core.plugins] DEBUG: Running signature \"vawtrak_behavior\"\r\n2021-10-21 14:52:26,337 [lib.cuckoo.core.plugins] DEBUG: Running signature \"virus\"\r\n2021-10-21 14:52:26,337 [lib.cuckoo.core.plugins] DEBUG: Running signature \"neshta_files\"\r\n2021-10-21 14:52:26,337 [lib.cuckoo.core.plugins] DEBUG: Running signature \"neshta_mutexes\"\r\n2021-10-21 14:52:26,338 [lib.cuckoo.core.plugins] DEBUG: Running signature \"neshta_regkeys\"\r\n2021-10-21 14:52:26,338 [lib.cuckoo.core.plugins] DEBUG: Running signature \"renamer_mutexes\"\r\n2021-10-21 14:52:26,339 [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_devicetree_1\"\r\n2021-10-21 14:52:26,339 [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_handles_1\"\r\n2021-10-21 14:52:26,340 [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_ldrmodules_1\"\r\n2021-10-21 14:52:26,340 [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_ldrmodules_2\"\r\n2021-10-21 14:52:26,340 [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_malfind_1\"\r\n2021-10-21 14:52:26,341 [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_malfind_2\"\r\n2021-10-21 14:52:26,341 [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_modscan_1\"\r\n2021-10-21 14:52:26,341 [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_svcscan_1\"\r\n2021-10-21 14:52:26,342 [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_svcscan_2\"\r\n2021-10-21 14:52:26,342 [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_svcscan_3\"\r\n2021-10-21 14:52:26,342 [lib.cuckoo.core.plugins] DEBUG: Running signature \"webmail_phish\"\r\n2021-10-21 14:52:26,343 [lib.cuckoo.core.plugins] DEBUG: Running signature \"owa_web_shell_files\"\r\n2021-10-21 14:52:26,343 [lib.cuckoo.core.plugins] DEBUG: Running signature \"web_shell_files\"\r\n2021-10-21 14:52:26,344 [lib.cuckoo.core.plugins] DEBUG: Running signature \"web_shell_processes\"\r\n2021-10-21 14:52:26,345 [lib.cuckoo.core.plugins] DEBUG: Running signature \"persists_dev_util\"\r\n2021-10-21 14:52:26,346 [lib.cuckoo.core.plugins] DEBUG: Running signature \"spawns_dev_util\"\r\n2021-10-21 14:52:26,346 [lib.cuckoo.core.plugins] DEBUG: Running signature \"whois_create\"\r\n2021-10-21 14:52:26,347 [lib.cuckoo.core.plugins] DEBUG: Running signature \"alters_windows_utility\"\r\n2021-10-21 14:52:26,347 [lib.cuckoo.core.plugins] DEBUG: Running signature \"dotnet_csc_build\"\r\n2021-10-21 14:52:26,347 [lib.cuckoo.core.plugins] DEBUG: Running signature \"multiple_explorer_instances\"\r\n2021-10-21 14:52:26,348 [lib.cuckoo.core.plugins] DEBUG: Running signature \"overwrites_accessibility_utility\"\r\n2021-10-21 14:52:26,348 [lib.cuckoo.core.plugins] DEBUG: Running signature \"script_tool_executed\"\r\n2021-10-21 14:52:26,348 [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_certutil_use\"\r\n2021-10-21 14:52:26,349 [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_command_tools\"\r\n2021-10-21 14:52:26,349 [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_mpcmdrun_use\"\r\n2021-10-21 14:52:26,350 [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_ping_use\"\r\n2021-10-21 14:52:26,350 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_powershell_copyitem\"\r\n2021-10-21 14:52:26,350 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities\"\r\n2021-10-21 14:52:26,351 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_appcmd\"\r\n2021-10-21 14:52:26,351 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_csvde_ldifde\"\r\n2021-10-21 14:52:26,352 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_cipher\"\r\n2021-10-21 14:52:26,352 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_clickonce\"\r\n2021-10-21 14:52:26,352 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_dsquery\"\r\n2021-10-21 14:52:26,353 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_esentutl\"\r\n2021-10-21 14:52:26,353 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_finger\"\r\n2021-10-21 14:52:26,353 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_mode\"\r\n2021-10-21 14:52:26,354 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_ntdsutil\"\r\n2021-10-21 14:52:26,354 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_nltest\"\r\n2021-10-21 14:52:26,355 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_to_create_scheduled_task\"\r\n2021-10-21 14:52:26,355 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_xcopy\"\r\n2021-10-21 14:52:26,355 [lib.cuckoo.core.plugins] DEBUG: Running signature \"wmic_command_suspicious\"\r\n2021-10-21 14:52:26,356 [lib.cuckoo.core.plugins] DEBUG: Running signature \"scrcons_wmi_script_consumer\"\r\n2021-10-21 14:52:26,356 [lib.cuckoo.core.plugins] DEBUG: Running signature \"wmi_create_process\"\r\n2021-10-21 14:52:26,356 [lib.cuckoo.core.plugins] DEBUG: Running signature \"wmi_script_process\"\r\n2021-10-21 14:52:26,357 [lib.cuckoo.core.plugins] DEBUG: Running signature \"allaple_mutexes\"\r\n2021-10-21 14:52:26,361 [root] DEBUG: Deleting analysis data for Task 167\r\n2021-10-21 14:52:26,366 [root] DEBUG: Deleted previous MongoDB data for Task 167\r\n2021-10-21 14:52:27,611 [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"BinGraph\"\r\n2021-10-21 14:52:27,612 [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"JsonDump\"\r\n2021-10-21 14:52:27,971 [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"LiteReport\"\r\n2021-10-21 14:52:28,065 [lib.cuckoo.core.plugins] INFO: Reporting module malheur not found in configuration file\r\n2021-10-21 14:52:28,066 [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"MITRE_TTPS\"\r\n2021-10-21 14:52:30,529 [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"PCAP2CERT\"\r\n2021-10-21 14:52:30,551 [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"ReportHTML\"\r\n2021-10-21 14:52:32,579 [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"ReportHTMLSummary\"\r\n2021-10-21 14:52:34,092 [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"ReSubmitExtractedEXE\"\r\n2021-10-21 14:52:34,209 [modules.reporting.resubmitexe] INFO: Resubmitexe file \"/opt/CAPEv2/storage/analyses/167/files/a96d5aee1f4ccef23be0e363d779d305a2502e6b09a39cbb633bbe011f434eeb_link/a9411c606c7e88468252.xls\" added as task with ID [178] resub count 0\r\n2021-10-21 14:52:34,210 [lib.cuckoo.core.plugins] ERROR: Failed to run the reporting module \"ReSubmitExtractedEXE\":\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 817, in process\r\n    current.run(self.results)\r\n  File \"/opt/CAPEv2/utils/../modules/reporting/resubmitexe.py\", line 445, in run\r\n    self.results[\"resubs\"].append(task_id)\r\nKeyError: 'resubs'\r\n2021-10-21 14:52:34,212 [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"SubmitCAPE\"\r\n2021-10-21 14:52:34,227 [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"ReportPDF\"\r\nQStandardPaths: XDG_RUNTIME_DIR not set, defaulting to '/tmp/runtime-cape'\r\n2021-10-21 14:52:37,770 [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"MongoDB\"\r\n2021-10-21 14:52:38,087 [modules.reporting.mongodb] DEBUG: Deleting analysis data for Task 167\r\n2021-10-21 14:52:38,088 [modules.reporting.mongodb] DEBUG: Deleted previous MongoDB data for Task 167\r\n```\r\n\r\n#### New Run Complete processing log:\r\n```\r\n2021-10-21 14:46:07,886 [root] INFO: Processing analysis data for Task #176\r\n2021-10-21 14:46:07,919 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Decompression\" on analysis at \"/opt/CAPEv2/storage/analyses/176\"\r\n2021-10-21 14:46:07,923 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"CAPE\" on analysis at \"/opt/CAPEv2/storage/analyses/176\"\r\n2021-10-21 14:46:09,811 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"AnalysisInfo\" on analysis at \"/opt/CAPEv2/storage/analyses/176\"\r\n2021-10-21 14:46:09,854 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"BehaviorAnalysis\" on analysis at \"/opt/CAPEv2/storage/analyses/176\"\r\n2021-10-21 14:46:10,907 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Curtain\" on analysis at \"/opt/CAPEv2/storage/analyses/176\"\r\n2021-10-21 14:46:10,909 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Debug\" on analysis at \"/opt/CAPEv2/storage/analyses/176\"\r\n2021-10-21 14:46:10,914 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Deduplicate\" on analysis at \"/opt/CAPEv2/storage/analyses/176\"\r\n2021-10-21 14:46:11,553 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Dropped\" on analysis at \"/opt/CAPEv2/storage/analyses/176\"\r\n2021-10-21 14:46:11,591 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Memory\" on analysis at \"/opt/CAPEv2/storage/analyses/176\"\r\n2021-10-21 14:46:11,592 [root] ERROR: Memory dump not found: to run volatility you have to enable memory_dump\r\n2021-10-21 14:46:11,592 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"NetworkAnalysis\" on analysis at \"/opt/CAPEv2/storage/analyses/176\"\r\n2021-10-21 14:46:11,665 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"ProcDump\" on analysis at \"/opt/CAPEv2/storage/analyses/176\"\r\n2021-10-21 14:46:12,656 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Procmon\" on analysis at \"/opt/CAPEv2/storage/analyses/176\"\r\n2021-10-21 14:46:12,657 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Static\" on analysis at \"/opt/CAPEv2/storage/analyses/176\"\r\n2021-10-21 14:46:12,662 [msodde] DEBUG: Is OLE. Checking streams to see whether this is xls\r\n2021-10-21 14:46:12,662 [root] DEBUG: Finding streams in ole file\r\n2021-10-21 14:46:12,662 [root] DEBUG: direntry  0 Root Entry: no stream (root)\r\n2021-10-21 14:46:12,663 [root] DEBUG: direntry  1 Workbook: is stream of size 236346\r\n2021-10-21 14:46:12,665 [msodde] DEBUG: Process file as excel 2003 (xls)\r\n2021-10-21 14:46:12,665 [root] DEBUG: Finding streams in ole file\r\n2021-10-21 14:46:12,665 [root] DEBUG: direntry  0 Root Entry: no stream (root)\r\n2021-10-21 14:46:12,665 [root] DEBUG: direntry  1 Workbook: is stream of size 236346\r\n2021-10-21 14:46:12,670 [root] DEBUG: direntry  2 \u0005SummaryInformation: is stream of size 4096\r\n2021-10-21 14:46:12,670 [root] DEBUG: direntry  3 \u0005DocumentSummaryInformation: is stream of size 4096\r\n2021-10-21 14:46:12,766 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Strings\" on analysis at \"/opt/CAPEv2/storage/analyses/176\"\r\n2021-10-21 14:46:12,771 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Suricata\" on analysis at \"/opt/CAPEv2/storage/analyses/176\"\r\n2021-10-21 14:46:12,826 [modules.processing.suricata] DEBUG: pcapfile list: {'message': {'count': 0, 'files': []}, 'return': 'OK'} current pcap: {'message': '/opt/CAPEv2/storage/analyses/176/dump.pcap', 'return': 'OK'}\r\n2021-10-21 14:46:17,833 [modules.processing.suricata] DEBUG: pcapfile list: {'message': {'count': 0, 'files': []}, 'return': 'OK'} current pcap: {'message': 'None', 'return': 'OK'}\r\n2021-10-21 14:46:17,833 [modules.processing.suricata] DEBUG: Pcap not in list and not current pcap lets assume it's processed\r\n2021-10-21 14:46:17,840 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"TargetInfo\" on analysis at \"/opt/CAPEv2/storage/analyses/176\"\r\n2021-10-21 14:46:17,880 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"TrID\" on analysis at \"/opt/CAPEv2/storage/analyses/176\"\r\n2021-10-21 14:46:18,368 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Usage\" on analysis at \"/opt/CAPEv2/storage/analyses/176\"\r\n2021-10-21 14:46:18,488 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"VirusTotal\" on analysis at \"/opt/CAPEv2/storage/analyses/176\"\r\n2021-10-21 14:46:18,973 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"TLSMasterSecrets\" on analysis at \"/opt/CAPEv2/storage/analyses/176\"\r\n2021-10-21 14:46:18,974 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"ProcessMemory\" on analysis at \"/opt/CAPEv2/storage/analyses/176\"\r\n2021-10-21 14:46:19,011 [lib.cuckoo.core.plugins] DEBUG: Applying signature overlays for signatures: creates_exe\r\n2021-10-21 14:46:19,013 [lib.cuckoo.core.plugins] DEBUG: Running 409 evented signatures\r\n2021-10-21 14:46:19,014 [lib.cuckoo.core.plugins] DEBUG:         |-- cape_detected_threat\r\n2021-10-21 14:46:19,014 [lib.cuckoo.core.plugins] DEBUG:         |-- Compression\r\n2021-10-21 14:46:19,014 [lib.cuckoo.core.plugins] DEBUG:         |-- Decryption\r\n2021-10-21 14:46:19,015 [lib.cuckoo.core.plugins] DEBUG:         |-- Doppelganging\r\n2021-10-21 14:46:19,015 [lib.cuckoo.core.plugins] DEBUG:         |-- EvilGrab\r\n2021-10-21 14:46:19,016 [lib.cuckoo.core.plugins] DEBUG:         |-- InjectionInterProcess\r\n2021-10-21 14:46:19,016 [lib.cuckoo.core.plugins] DEBUG:         |-- InjectionCreateRemoteThread\r\n2021-10-21 14:46:19,016 [lib.cuckoo.core.plugins] DEBUG:         |-- InjectionProcessHollowing\r\n2021-10-21 14:46:19,017 [lib.cuckoo.core.plugins] DEBUG:         |-- InjectionSetWindowLong\r\n2021-10-21 14:46:19,017 [lib.cuckoo.core.plugins] DEBUG:         |-- PlugX\r\n2021-10-21 14:46:19,018 [lib.cuckoo.core.plugins] DEBUG:         |-- RegBinary\r\n2021-10-21 14:46:19,018 [lib.cuckoo.core.plugins] DEBUG:         |-- TransactedHollowing\r\n2021-10-21 14:46:19,018 [lib.cuckoo.core.plugins] DEBUG:         |-- Unpacker\r\n2021-10-21 14:46:19,019 [lib.cuckoo.core.plugins] DEBUG:         |-- accesses_mailslot\r\n2021-10-21 14:46:19,019 [lib.cuckoo.core.plugins] DEBUG:         |-- accesses_netlogon_regkey\r\n2021-10-21 14:46:19,020 [lib.cuckoo.core.plugins] DEBUG:         |-- accesses_sysvol\r\n2021-10-21 14:46:19,020 [lib.cuckoo.core.plugins] DEBUG:         |-- writes_sysvol\r\n2021-10-21 14:46:19,020 [lib.cuckoo.core.plugins] DEBUG:         |-- adds_admin_user\r\n2021-10-21 14:46:19,021 [lib.cuckoo.core.plugins] DEBUG:         |-- adds_user\r\n2021-10-21 14:46:19,021 [lib.cuckoo.core.plugins] DEBUG:         |-- overwites_admin_password\r\n2021-10-21 14:46:19,022 [lib.cuckoo.core.plugins] DEBUG:         |-- alphacrypt_behavior\r\n2021-10-21 14:46:19,022 [lib.cuckoo.core.plugins] DEBUG:         |-- andromeda_behavior\r\n2021-10-21 14:46:19,022 [lib.cuckoo.core.plugins] DEBUG:         |-- anomalous_deletefile\r\n2021-10-21 14:46:19,023 [lib.cuckoo.core.plugins] DEBUG:         |-- antiav_360_libs\r\n2021-10-21 14:46:19,023 [lib.cuckoo.core.plugins] DEBUG:         |-- antiav_ahnlab_libs\r\n2021-10-21 14:46:19,024 [lib.cuckoo.core.plugins] DEBUG:         |-- antiav_avast_libs\r\n2021-10-21 14:46:19,024 [lib.cuckoo.core.plugins] DEBUG:         |-- antiav_bitdefender_libs\r\n2021-10-21 14:46:19,024 [lib.cuckoo.core.plugins] DEBUG:         |-- antiav_bullgaurd_libs\r\n2021-10-21 14:46:19,025 [lib.cuckoo.core.plugins] DEBUG:         |-- antiav_emsisoft_libs\r\n2021-10-21 14:46:19,025 [lib.cuckoo.core.plugins] DEBUG:         |-- antiav_qurb_libs\r\n2021-10-21 14:46:19,025 [lib.cuckoo.core.plugins] DEBUG:         |-- antiav_servicestop\r\n2021-10-21 14:46:19,026 [lib.cuckoo.core.plugins] DEBUG:         |-- antidbg_windows\r\n2021-10-21 14:46:19,026 [lib.cuckoo.core.plugins] DEBUG:         |-- antidebug_addvectoredexceptionhandler\r\n2021-10-21 14:46:19,027 [lib.cuckoo.core.plugins] DEBUG:         |-- antiav_apioverride_libs\r\n2021-10-21 14:46:19,027 [lib.cuckoo.core.plugins] DEBUG:         |-- antidebug_checkremotedebuggerpresent\r\n2021-10-21 14:46:19,027 [lib.cuckoo.core.plugins] DEBUG:         |-- antidebug_debugactiveprocess\r\n2021-10-21 14:46:19,028 [lib.cuckoo.core.plugins] DEBUG:         |-- antidebug_gettickcount\r\n2021-10-21 14:46:19,028 [lib.cuckoo.core.plugins] DEBUG:         |-- antidebug_guardpages\r\n2021-10-21 14:46:19,028 [lib.cuckoo.core.plugins] DEBUG:         |-- antidebug_ntcreatethreadex\r\n2021-10-21 14:46:19,029 [lib.cuckoo.core.plugins] DEBUG:         |-- antiav_nthookengine_libs\r\n2021-10-21 14:46:19,029 [lib.cuckoo.core.plugins] DEBUG:         |-- antidebug_ntsetinformationthread\r\n2021-10-21 14:46:19,030 [lib.cuckoo.core.plugins] DEBUG:         |-- antidebug_outputdebugstring\r\n2021-10-21 14:46:19,030 [lib.cuckoo.core.plugins] DEBUG:         |-- antidebug_setunhandledexceptionfilter\r\n2021-10-21 14:46:19,030 [lib.cuckoo.core.plugins] DEBUG:         |-- antiemu_wine_func\r\n2021-10-21 14:46:19,031 [lib.cuckoo.core.plugins] DEBUG:         |-- antisandbox_check_userdomain\r\n2021-10-21 14:46:19,031 [lib.cuckoo.core.plugins] DEBUG:         |-- antisandbox_cuckoo\r\n2021-10-21 14:46:19,032 [lib.cuckoo.core.plugins] DEBUG:         |-- antisandbox_cuckoocrash\r\n2021-10-21 14:46:19,032 [lib.cuckoo.core.plugins] DEBUG:         |-- antisandbox_mouse_hook\r\n2021-10-21 14:46:19,033 [lib.cuckoo.core.plugins] DEBUG:         |-- antisandbox_restart\r\n2021-10-21 14:46:19,033 [lib.cuckoo.core.plugins] DEBUG:         |-- antisandbox_sboxie_libs\r\n2021-10-21 14:46:19,033 [lib.cuckoo.core.plugins] DEBUG:         |-- antisandbox_sboxie_objects\r\n2021-10-21 14:46:19,034 [lib.cuckoo.core.plugins] DEBUG:         |-- antisandbox_script_timer\r\n2021-10-21 14:46:19,034 [lib.cuckoo.core.plugins] DEBUG:         |-- antisandbox_sleep\r\n2021-10-21 14:46:19,034 [lib.cuckoo.core.plugins] DEBUG:         |-- antisandbox_sunbelt_libs\r\n2021-10-21 14:46:19,035 [lib.cuckoo.core.plugins] DEBUG:         |-- antisandbox_suspend\r\n2021-10-21 14:46:19,035 [lib.cuckoo.core.plugins] DEBUG:         |-- antisandbox_unhook\r\n2021-10-21 14:46:19,036 [lib.cuckoo.core.plugins] DEBUG:         |-- antivm_directory_objects\r\n2021-10-21 14:46:19,036 [lib.cuckoo.core.plugins] DEBUG:         |-- antivm_generic_disk\r\n2021-10-21 14:46:19,036 [lib.cuckoo.core.plugins] DEBUG:         |-- antivm_generic_disk_setupapi\r\n2021-10-21 14:46:19,037 [lib.cuckoo.core.plugins] DEBUG:         |-- antivm_generic_scsi\r\n2021-10-21 14:46:19,037 [lib.cuckoo.core.plugins] DEBUG:         |-- antivm_generic_services\r\n2021-10-21 14:46:19,037 [lib.cuckoo.core.plugins] DEBUG:         |-- antivm_vbox_libs\r\n2021-10-21 14:46:19,038 [lib.cuckoo.core.plugins] DEBUG:         |-- antivm_vbox_provname\r\n2021-10-21 14:46:19,038 [lib.cuckoo.core.plugins] DEBUG:         |-- antivm_vbox_window\r\n2021-10-21 14:46:19,039 [lib.cuckoo.core.plugins] DEBUG:         |-- antivm_vmware_events\r\n2021-10-21 14:46:19,039 [lib.cuckoo.core.plugins] DEBUG:         |-- antivm_vmware_libs\r\n2021-10-21 14:46:19,039 [lib.cuckoo.core.plugins] DEBUG:         |-- api_spamming\r\n2021-10-21 14:46:19,040 [lib.cuckoo.core.plugins] DEBUG:         |-- gulpix_behavior\r\n2021-10-21 14:46:19,040 [lib.cuckoo.core.plugins] DEBUG:         |-- banker_prinimalka\r\n2021-10-21 14:46:19,041 [lib.cuckoo.core.plugins] DEBUG:         |-- bcdedit_command\r\n2021-10-21 14:46:19,041 [lib.cuckoo.core.plugins] DEBUG:         |-- betabot_behavior\r\n2021-10-21 14:46:19,041 [lib.cuckoo.core.plugins] DEBUG:         |-- accesses_primary_patition\r\n2021-10-21 14:46:19,042 [lib.cuckoo.core.plugins] DEBUG:         |-- bootkit\r\n2021-10-21 14:46:19,042 [lib.cuckoo.core.plugins] DEBUG:         |-- direct_hdd_access\r\n2021-10-21 14:46:19,043 [lib.cuckoo.core.plugins] DEBUG:         |-- physical_drive_access\r\n2021-10-21 14:46:19,043 [lib.cuckoo.core.plugins] DEBUG:         |-- suspicious_ioctl_scsipassthough\r\n2021-10-21 14:46:19,043 [lib.cuckoo.core.plugins] DEBUG:         |-- browser_needed\r\n2021-10-21 14:46:19,044 [lib.cuckoo.core.plugins] DEBUG:         |-- browser_scanbox\r\n2021-10-21 14:46:19,044 [lib.cuckoo.core.plugins] DEBUG:         |-- odbcconf_bypass\r\n2021-10-21 14:46:19,044 [lib.cuckoo.core.plugins] DEBUG:         |-- regsvr32_squiblydoo_dll_load\r\n2021-10-21 14:46:19,045 [lib.cuckoo.core.plugins] DEBUG:         |-- squiblydoo_bypass\r\n2021-10-21 14:46:19,045 [lib.cuckoo.core.plugins] DEBUG:         |-- squiblytwo_bypass\r\n2021-10-21 14:46:19,046 [lib.cuckoo.core.plugins] DEBUG:         |-- uac_bypass_cmstp\r\n2021-10-21 14:46:19,046 [lib.cuckoo.core.plugins] DEBUG:         |-- uac_bypass_delegateexecute_sdclt\r\n2021-10-21 14:46:19,046 [lib.cuckoo.core.plugins] DEBUG:         |-- uac_bypass_eventvwr\r\n2021-10-21 14:46:19,047 [lib.cuckoo.core.plugins] DEBUG:         |-- uac_bypass_fodhelper\r\n2021-10-21 14:46:19,047 [lib.cuckoo.core.plugins] DEBUG:         |-- cape_extracted_config\r\n2021-10-21 14:46:19,048 [lib.cuckoo.core.plugins] DEBUG:         |-- cape_extracted_content\r\n2021-10-21 14:46:19,048 [lib.cuckoo.core.plugins] DEBUG:         |-- cerber_behavior\r\n2021-10-21 14:46:19,048 [lib.cuckoo.core.plugins] DEBUG:         |-- chimera_behavior\r\n2021-10-21 14:46:19,049 [lib.cuckoo.core.plugins] DEBUG:         |-- clears_logs\r\n2021-10-21 14:46:19,049 [lib.cuckoo.core.plugins] DEBUG:         |-- clickfraud_cookies\r\n2021-10-21 14:46:19,049 [lib.cuckoo.core.plugins] DEBUG:         |-- clickfraud_volume\r\n2021-10-21 14:46:19,050 [lib.cuckoo.core.plugins] DEBUG:         |-- cmdline_obfuscation\r\n2021-10-21 14:46:19,050 [lib.cuckoo.core.plugins] DEBUG:         |-- cmdline_switches\r\n2021-10-21 14:46:19,051 [lib.cuckoo.core.plugins] DEBUG:         |-- cmdline_terminate\r\n2021-10-21 14:46:19,051 [lib.cuckoo.core.plugins] DEBUG:         |-- commandline_forfiles_wildcard\r\n2021-10-21 14:46:19,051 [lib.cuckoo.core.plugins] DEBUG:         |-- cmdline_http_link\r\n2021-10-21 14:46:19,052 [lib.cuckoo.core.plugins] DEBUG:         |-- commandline_long_string\r\n2021-10-21 14:46:19,052 [lib.cuckoo.core.plugins] DEBUG:         |-- cmdline_reversed_http_link\r\n2021-10-21 14:46:19,053 [lib.cuckoo.core.plugins] DEBUG:         |-- long_commandline\r\n2021-10-21 14:46:19,053 [lib.cuckoo.core.plugins] DEBUG:         |-- powershell_renamed_commandline\r\n2021-10-21 14:46:19,053 [lib.cuckoo.core.plugins] DEBUG:         |-- system_account_disovery_cmd\r\n2021-10-21 14:46:19,054 [lib.cuckoo.core.plugins] DEBUG:         |-- system_info_disovery_cmd\r\n2021-10-21 14:46:19,054 [lib.cuckoo.core.plugins] DEBUG:         |-- system_info_disovery_pwsh\r\n2021-10-21 14:46:19,054 [lib.cuckoo.core.plugins] DEBUG:         |-- system_network_discovery_cmd\r\n2021-10-21 14:46:19,055 [lib.cuckoo.core.plugins] DEBUG:         |-- system_network_discovery_pwsh\r\n2021-10-21 14:46:19,055 [lib.cuckoo.core.plugins] DEBUG:         |-- system_user_disovery_cmd\r\n2021-10-21 14:46:19,056 [lib.cuckoo.core.plugins] DEBUG:         |-- dotnet_code_compile\r\n2021-10-21 14:46:19,056 [lib.cuckoo.core.plugins] DEBUG:         |-- creates_largekey\r\n2021-10-21 14:46:19,056 [lib.cuckoo.core.plugins] DEBUG:         |-- creates_nullvalue\r\n2021-10-21 14:46:19,057 [lib.cuckoo.core.plugins] DEBUG:         |-- file_credential_store_access\r\n2021-10-21 14:46:19,057 [lib.cuckoo.core.plugins] DEBUG:         |-- file_credential_store_write\r\n2021-10-21 14:46:19,058 [lib.cuckoo.core.plugins] DEBUG:         |-- lsass_credential_dumping\r\n2021-10-21 14:46:19,058 [lib.cuckoo.core.plugins] DEBUG:         |-- registry_credential_dumping\r\n2021-10-21 14:46:19,058 [lib.cuckoo.core.plugins] DEBUG:         |-- registry_credential_store_access\r\n2021-10-21 14:46:19,059 [lib.cuckoo.core.plugins] DEBUG:         |-- registry_lsa_secrets_access\r\n2021-10-21 14:46:19,059 [lib.cuckoo.core.plugins] DEBUG:         |-- critical_process\r\n2021-10-21 14:46:19,060 [lib.cuckoo.core.plugins] DEBUG:         |-- cyrptomining_stratum_command\r\n2021-10-21 14:46:19,060 [lib.cuckoo.core.plugins] DEBUG:         |-- cryptowall_behavior\r\n2021-10-21 14:46:19,060 [lib.cuckoo.core.plugins] DEBUG:         |-- cve_2014_6332\r\n2021-10-21 14:46:19,061 [lib.cuckoo.core.plugins] DEBUG:         |-- cve_2015_2419_js\r\n2021-10-21 14:46:19,061 [lib.cuckoo.core.plugins] DEBUG:         |-- cve_2016-0189\r\n2021-10-21 14:46:19,061 [lib.cuckoo.core.plugins] DEBUG:         |-- cve_2016_7200\r\n2021-10-21 14:46:19,062 [lib.cuckoo.core.plugins] DEBUG:         |-- dead_connect\r\n2021-10-21 14:46:19,062 [lib.cuckoo.core.plugins] DEBUG:         |-- dead_link\r\n2021-10-21 14:46:19,063 [lib.cuckoo.core.plugins] DEBUG:         |-- debugs_self\r\n2021-10-21 14:46:19,063 [lib.cuckoo.core.plugins] DEBUG:         |-- decoy_document\r\n2021-10-21 14:46:19,063 [lib.cuckoo.core.plugins] DEBUG:         |-- decoy_image\r\n2021-10-21 14:46:19,064 [lib.cuckoo.core.plugins] DEBUG:         |-- deletes_self\r\n2021-10-21 14:46:19,064 [lib.cuckoo.core.plugins] DEBUG:         |-- deletes_shadow_copies\r\n2021-10-21 14:46:19,064 [lib.cuckoo.core.plugins] DEBUG:         |-- deletes_system_state_backup\r\n2021-10-21 14:46:19,065 [lib.cuckoo.core.plugins] DEBUG:         |-- dep_bypass\r\n2021-10-21 14:46:19,065 [lib.cuckoo.core.plugins] DEBUG:         |-- dep_disable\r\n2021-10-21 14:46:19,066 [lib.cuckoo.core.plugins] DEBUG:         |-- disables_appv_virtualization\r\n2021-10-21 14:46:19,066 [lib.cuckoo.core.plugins] DEBUG:         |-- disables_auto_app_termination\r\n2021-10-21 14:46:19,066 [lib.cuckoo.core.plugins] DEBUG:         |-- disables_backups\r\n2021-10-21 14:46:19,067 [lib.cuckoo.core.plugins] DEBUG:         |-- disables_context_menus\r\n2021-10-21 14:46:19,067 [lib.cuckoo.core.plugins] DEBUG:         |-- disables_cpl_disable\r\n2021-10-21 14:46:19,068 [lib.cuckoo.core.plugins] DEBUG:         |-- disables_mappeddrives_autodisconnect\r\n2021-10-21 14:46:19,068 [lib.cuckoo.core.plugins] DEBUG:         |-- disables_event_logging\r\n2021-10-21 14:46:19,069 [lib.cuckoo.core.plugins] DEBUG:         |-- disables_power_options\r\n2021-10-21 14:46:19,069 [lib.cuckoo.core.plugins] DEBUG:         |-- disables_restore_default_state\r\n2021-10-21 14:46:19,069 [lib.cuckoo.core.plugins] DEBUG:         |-- disables_spdy\r\n2021-10-21 14:46:19,070 [lib.cuckoo.core.plugins] DEBUG:         |-- disables_startmenu_search\r\n2021-10-21 14:46:19,070 [lib.cuckoo.core.plugins] DEBUG:         |-- disables_wfp\r\n2021-10-21 14:46:19,071 [lib.cuckoo.core.plugins] DEBUG:         |-- document_script_exe_drop\r\n2021-10-21 14:46:19,071 [lib.cuckoo.core.plugins] DEBUG:         |-- guloader_apis\r\n2021-10-21 14:46:19,071 [lib.cuckoo.core.plugins] DEBUG:         |-- dridex_behavior\r\n2021-10-21 14:46:19,072 [lib.cuckoo.core.plugins] DEBUG:         |-- driver_load\r\n2021-10-21 14:46:19,072 [lib.cuckoo.core.plugins] DEBUG:         |-- exe_dropper_js\r\n2021-10-21 14:46:19,073 [lib.cuckoo.core.plugins] DEBUG:         |-- dynamic_function_loading\r\n2021-10-21 14:46:19,073 [lib.cuckoo.core.plugins] DEBUG:         |-- dyre_behavior\r\n2021-10-21 14:46:19,073 [lib.cuckoo.core.plugins] DEBUG:         |-- angler_js\r\n2021-10-21 14:46:19,074 [lib.cuckoo.core.plugins] DEBUG:         |-- gondad_js\r\n2021-10-21 14:46:19,074 [lib.cuckoo.core.plugins] DEBUG:         |-- heapspray_js\r\n2021-10-21 14:46:19,074 [lib.cuckoo.core.plugins] DEBUG:         |-- java_js\r\n2021-10-21 14:46:19,075 [lib.cuckoo.core.plugins] DEBUG:         |-- Neutrino_js\r\n2021-10-21 14:46:19,075 [lib.cuckoo.core.plugins] DEBUG:         |-- nuclear_js\r\n2021-10-21 14:46:19,076 [lib.cuckoo.core.plugins] DEBUG:         |-- rig_js\r\n2021-10-21 14:46:19,076 [lib.cuckoo.core.plugins] DEBUG:         |-- silverlight_js\r\n2021-10-21 14:46:19,076 [lib.cuckoo.core.plugins] DEBUG:         |-- sundown_js\r\n2021-10-21 14:46:19,077 [lib.cuckoo.core.plugins] DEBUG:         |-- virtualcheck_js\r\n2021-10-21 14:46:19,077 [lib.cuckoo.core.plugins] DEBUG:         |-- encrypted_ioc\r\n2021-10-21 14:46:19,078 [lib.cuckoo.core.plugins] DEBUG:         |-- exec_crash\r\n2021-10-21 14:46:19,078 [lib.cuckoo.core.plugins] DEBUG:         |-- process_creation_suspicious_location\r\n2021-10-21 14:46:19,078 [lib.cuckoo.core.plugins] DEBUG:         |-- exploit_getbasekerneladdress\r\n2021-10-21 14:46:19,079 [lib.cuckoo.core.plugins] DEBUG:         |-- exploit_gethaldispatchtable\r\n2021-10-21 14:46:19,079 [lib.cuckoo.core.plugins] DEBUG:         |-- exploit_heapspray\r\n2021-10-21 14:46:19,080 [lib.cuckoo.core.plugins] DEBUG:         |-- spooler_svc_start\r\n2021-10-21 14:46:19,080 [lib.cuckoo.core.plugins] DEBUG:         |-- koadic_apis\r\n2021-10-21 14:46:19,080 [lib.cuckoo.core.plugins] DEBUG:         |-- koadic_network_activity\r\n2021-10-21 14:46:19,081 [lib.cuckoo.core.plugins] DEBUG:         |-- downloads_from_filehosting\r\n2021-10-21 14:46:19,081 [lib.cuckoo.core.plugins] DEBUG:         |-- generic_phish\r\n2021-10-21 14:46:19,082 [lib.cuckoo.core.plugins] DEBUG:         |-- gootkit_behavior\r\n2021-10-21 14:46:19,082 [lib.cuckoo.core.plugins] DEBUG:         |-- h1n1_behavior\r\n2021-10-21 14:46:19,082 [lib.cuckoo.core.plugins] DEBUG:         |-- hancitor_behavior\r\n2021-10-21 14:46:19,083 [lib.cuckoo.core.plugins] DEBUG:         |-- hawkeye_behavior\r\n2021-10-21 14:46:19,083 [lib.cuckoo.core.plugins] DEBUG:         |-- hides_recycle_bin_icon\r\n2021-10-21 14:46:19,084 [lib.cuckoo.core.plugins] DEBUG:         |-- http_request\r\n2021-10-21 14:46:19,084 [lib.cuckoo.core.plugins] DEBUG:         |-- https_urls\r\n2021-10-21 14:46:19,084 [lib.cuckoo.core.plugins] DEBUG:         |-- apocalypse_stealer_file_behavior\r\n2021-10-21 14:46:19,085 [lib.cuckoo.core.plugins] DEBUG:         |-- infostealer_browser\r\n2021-10-21 14:46:19,085 [lib.cuckoo.core.plugins] DEBUG:         |-- infostealer_browser_password\r\n2021-10-21 14:46:19,085 [lib.cuckoo.core.plugins] DEBUG:         |-- cryptbot_files\r\n2021-10-21 14:46:19,086 [lib.cuckoo.core.plugins] DEBUG:         |-- cryptbot_network\r\n2021-10-21 14:46:19,086 [lib.cuckoo.core.plugins] DEBUG:         |-- echelon_files\r\n2021-10-21 14:46:19,087 [lib.cuckoo.core.plugins] DEBUG:         |-- infostealer_keylog\r\n2021-10-21 14:46:19,087 [lib.cuckoo.core.plugins] DEBUG:         |-- masslogger_artifacts\r\n2021-10-21 14:46:19,087 [lib.cuckoo.core.plugins] DEBUG:         |-- masslogger_files\r\n2021-10-21 14:46:19,088 [lib.cuckoo.core.plugins] DEBUG:         |-- masslogger_version\r\n2021-10-21 14:46:19,088 [lib.cuckoo.core.plugins] DEBUG:         |-- poullight_files\r\n2021-10-21 14:46:19,089 [lib.cuckoo.core.plugins] DEBUG:         |-- purplewave_mutexes\r\n2021-10-21 14:46:19,089 [lib.cuckoo.core.plugins] DEBUG:         |-- purplewave_network_activity\r\n2021-10-21 14:46:19,089 [lib.cuckoo.core.plugins] DEBUG:         |-- quilclipper_mutexes\r\n2021-10-21 14:46:19,090 [lib.cuckoo.core.plugins] DEBUG:         |-- quilclipper_behavior\r\n2021-10-21 14:46:19,090 [lib.cuckoo.core.plugins] DEBUG:         |-- Raccoon Behavior\r\n2021-10-21 14:46:19,090 [lib.cuckoo.core.plugins] DEBUG:         |-- captures_screenshot\r\n2021-10-21 14:46:19,091 [lib.cuckoo.core.plugins] DEBUG:         |-- Vidar Behavior\r\n2021-10-21 14:46:19,091 [lib.cuckoo.core.plugins] DEBUG:         |-- injection_createremotethread\r\n2021-10-21 14:46:19,092 [lib.cuckoo.core.plugins] DEBUG:         |-- injection_explorer\r\n2021-10-21 14:46:19,092 [lib.cuckoo.core.plugins] DEBUG:         |-- injection_needextension\r\n2021-10-21 14:46:19,092 [lib.cuckoo.core.plugins] DEBUG:         |-- injection_network_traffic\r\n2021-10-21 14:46:19,093 [lib.cuckoo.core.plugins] DEBUG:         |-- injection_runpe\r\n2021-10-21 14:46:19,093 [lib.cuckoo.core.plugins] DEBUG:         |-- injection_rwx\r\n2021-10-21 14:46:19,093 [lib.cuckoo.core.plugins] DEBUG:         |-- injection_themeinitapihook\r\n2021-10-21 14:46:19,094 [lib.cuckoo.core.plugins] DEBUG:         |-- internet_dropper\r\n2021-10-21 14:46:19,094 [lib.cuckoo.core.plugins] DEBUG:         |-- ipc_namedpipe\r\n2021-10-21 14:46:19,095 [lib.cuckoo.core.plugins] DEBUG:         |-- js_phish\r\n2021-10-21 14:46:19,095 [lib.cuckoo.core.plugins] DEBUG:         |-- js_suspicious_redirect\r\n2021-10-21 14:46:19,096 [lib.cuckoo.core.plugins] DEBUG:         |-- kazybot_behavior\r\n2021-10-21 14:46:19,096 [lib.cuckoo.core.plugins] DEBUG:         |-- kelihos_behavior\r\n2021-10-21 14:46:19,096 [lib.cuckoo.core.plugins] DEBUG:         |-- kibex_behavior\r\n2021-10-21 14:46:19,097 [lib.cuckoo.core.plugins] DEBUG:         |-- kovter_behavior\r\n2021-10-21 14:46:19,097 [lib.cuckoo.core.plugins] DEBUG:         |-- Locky_behavior\r\n2021-10-21 14:46:19,097 [lib.cuckoo.core.plugins] DEBUG:         |-- malicious_dynamic_function_loading\r\n2021-10-21 14:46:19,098 [lib.cuckoo.core.plugins] DEBUG:         |-- encrypts_pcinfo\r\n2021-10-21 14:46:19,098 [lib.cuckoo.core.plugins] DEBUG:         |-- encrypt_data_agenttesla_http\r\n2021-10-21 14:46:19,099 [lib.cuckoo.core.plugins] DEBUG:         |-- encrypt_data_agentteslat2_http\r\n2021-10-21 14:46:19,099 [lib.cuckoo.core.plugins] DEBUG:         |-- encrypt_data_nanocore\r\n2021-10-21 14:46:19,099 [lib.cuckoo.core.plugins] DEBUG:         |-- mimics_agent\r\n2021-10-21 14:46:19,100 [lib.cuckoo.core.plugins] DEBUG:         |-- mimics_filetime\r\n2021-10-21 14:46:19,100 [lib.cuckoo.core.plugins] DEBUG:         |-- masquerade_process_name\r\n2021-10-21 14:46:19,101 [lib.cuckoo.core.plugins] DEBUG:         |-- mimikatz_modules\r\n2021-10-21 14:46:19,101 [lib.cuckoo.core.plugins] DEBUG:         |-- quilclipper_behavior\r\n2021-10-21 14:46:19,101 [lib.cuckoo.core.plugins] DEBUG:         |-- dotnet_clr_usagelog_regkeys\r\n2021-10-21 14:46:19,102 [lib.cuckoo.core.plugins] DEBUG:         |-- modifies_oem_information\r\n2021-10-21 14:46:19,102 [lib.cuckoo.core.plugins] DEBUG:         |-- modifies_desktop_wallpaper\r\n2021-10-21 14:46:19,102 [lib.cuckoo.core.plugins] DEBUG:         |-- move_file_on_reboot\r\n2021-10-21 14:46:19,103 [lib.cuckoo.core.plugins] DEBUG:         |-- multiple_useragents\r\n2021-10-21 14:46:19,103 [lib.cuckoo.core.plugins] DEBUG:         |-- network_anomaly\r\n2021-10-21 14:46:19,104 [lib.cuckoo.core.plugins] DEBUG:         |-- network_bind\r\n2021-10-21 14:46:19,104 [lib.cuckoo.core.plugins] DEBUG:         |-- network_cnc_https_archive\r\n2021-10-21 14:46:19,105 [lib.cuckoo.core.plugins] DEBUG:         |-- network_cnc_https_free_webshoting\r\n2021-10-21 14:46:19,105 [lib.cuckoo.core.plugins] DEBUG:         |-- network_cnc_https_generic\r\n2021-10-21 14:46:19,105 [lib.cuckoo.core.plugins] DEBUG:         |-- network_cnc_https_temp_urldns\r\n2021-10-21 14:46:19,106 [lib.cuckoo.core.plugins] DEBUG:         |-- network_cnc_https_pastesite\r\n2021-10-21 14:46:19,106 [lib.cuckoo.core.plugins] DEBUG:         |-- network_cnc_https_payload\r\n2021-10-21 14:46:19,106 [lib.cuckoo.core.plugins] DEBUG:         |-- network_cnc_https_socialmedia\r\n2021-10-21 14:46:19,107 [lib.cuckoo.core.plugins] DEBUG:         |-- network_cnc_https_telegram\r\n2021-10-21 14:46:19,107 [lib.cuckoo.core.plugins] DEBUG:         |-- network_cnc_https_tempstorage\r\n2021-10-21 14:46:19,108 [lib.cuckoo.core.plugins] DEBUG:         |-- network_cnc_https_temp_urldns\r\n2021-10-21 14:46:19,108 [lib.cuckoo.core.plugins] DEBUG:         |-- network_cnc_https_urlshortener\r\n2021-10-21 14:46:19,108 [lib.cuckoo.core.plugins] DEBUG:         |-- network_cnc_https_useragent\r\n2021-10-21 14:46:19,109 [lib.cuckoo.core.plugins] DEBUG:         |-- network_cnc_smtps_exfil\r\n2021-10-21 14:46:19,109 [lib.cuckoo.core.plugins] DEBUG:         |-- network_cnc_smtps_generic\r\n2021-10-21 14:46:19,109 [lib.cuckoo.core.plugins] DEBUG:         |-- network_dns_blockchain\r\n2021-10-21 14:46:19,110 [lib.cuckoo.core.plugins] DEBUG:         |-- network_dns_idn\r\n2021-10-21 14:46:19,110 [lib.cuckoo.core.plugins] DEBUG:         |-- network_dns_opennic\r\n2021-10-21 14:46:19,111 [lib.cuckoo.core.plugins] DEBUG:         |-- network_dns_reverse_proxy\r\n2021-10-21 14:46:19,111 [lib.cuckoo.core.plugins] DEBUG:         |-- network_dns_suspicious_querytype\r\n2021-10-21 14:46:19,111 [lib.cuckoo.core.plugins] DEBUG:         |-- network_dns_tunneling_request\r\n2021-10-21 14:46:19,112 [lib.cuckoo.core.plugins] DEBUG:         |-- network_dns_doh_tls\r\n2021-10-21 14:46:19,112 [lib.cuckoo.core.plugins] DEBUG:         |-- network_document_http\r\n2021-10-21 14:46:19,112 [lib.cuckoo.core.plugins] DEBUG:         |-- explorer_http\r\n2021-10-21 14:46:19,113 [lib.cuckoo.core.plugins] DEBUG:         |-- network_fake_useragent\r\n2021-10-21 14:46:19,113 [lib.cuckoo.core.plugins] DEBUG:         |-- network_open_proxy\r\n2021-10-21 14:46:19,114 [lib.cuckoo.core.plugins] DEBUG:         |-- network_tor\r\n2021-10-21 14:46:19,114 [lib.cuckoo.core.plugins] DEBUG:         |-- nymaim_behavior\r\n2021-10-21 14:46:19,114 [lib.cuckoo.core.plugins] DEBUG:         |-- office_addinloading\r\n2021-10-21 14:46:19,115 [lib.cuckoo.core.plugins] DEBUG:         |-- office_com_load\r\n2021-10-21 14:46:19,115 [lib.cuckoo.core.plugins] DEBUG:         |-- office_dotnet_load\r\n2021-10-21 14:46:19,116 [lib.cuckoo.core.plugins] DEBUG:         |-- office_mshtml_load\r\n2021-10-21 14:46:19,116 [lib.cuckoo.core.plugins] DEBUG:         |-- office_vb_load\r\n2021-10-21 14:46:19,116 [lib.cuckoo.core.plugins] DEBUG:         |-- office_wmi_load\r\n2021-10-21 14:46:19,117 [lib.cuckoo.core.plugins] DEBUG:         |-- office_cve2017_11882\r\n2021-10-21 14:46:19,117 [lib.cuckoo.core.plugins] DEBUG:         |-- office_cve2017_11882_network\r\n2021-10-21 14:46:19,117 [lib.cuckoo.core.plugins] DEBUG:         |-- office_cve_2021_40444\r\n2021-10-21 14:46:19,118 [lib.cuckoo.core.plugins] DEBUG:         |-- office_cve_2021_40444_m2\r\n2021-10-21 14:46:19,118 [lib.cuckoo.core.plugins] DEBUG:         |-- office_flash_load\r\n2021-10-21 14:46:19,119 [lib.cuckoo.core.plugins] DEBUG:         |-- office_postscript\r\n2021-10-21 14:46:19,119 [lib.cuckoo.core.plugins] DEBUG:         |-- rtf_aslr_bypass\r\n2021-10-21 14:46:19,119 [lib.cuckoo.core.plugins] DEBUG:         |-- rtf_anomaly_characterset\r\n2021-10-21 14:46:19,120 [lib.cuckoo.core.plugins] DEBUG:         |-- rtf_anomaly_version\r\n2021-10-21 14:46:19,120 [lib.cuckoo.core.plugins] DEBUG:         |-- rtf_embedded_content\r\n2021-10-21 14:46:19,120 [lib.cuckoo.core.plugins] DEBUG:         |-- rtf_embedded_office_file\r\n2021-10-21 14:46:19,121 [lib.cuckoo.core.plugins] DEBUG:         |-- rtf_exploit_static\r\n2021-10-21 14:46:19,121 [lib.cuckoo.core.plugins] DEBUG:         |-- office_dde_command\r\n2021-10-21 14:46:19,122 [lib.cuckoo.core.plugins] DEBUG:         |-- office_suspicious_processes\r\n2021-10-21 14:46:19,122 [lib.cuckoo.core.plugins] DEBUG:         |-- office_write_exe\r\n2021-10-21 14:46:19,122 [lib.cuckoo.core.plugins] DEBUG:         |-- packer_themida\r\n2021-10-21 14:46:19,123 [lib.cuckoo.core.plugins] DEBUG:         |-- persistence_autorun\r\n2021-10-21 14:46:19,123 [lib.cuckoo.core.plugins] DEBUG:         |-- persistence_autorun_tasks\r\n2021-10-21 14:46:19,123 [lib.cuckoo.core.plugins] DEBUG:         |-- persistence_safeboot\r\n2021-10-21 14:46:19,124 [lib.cuckoo.core.plugins] DEBUG:         |-- persistence_bootexecute\r\n2021-10-21 14:46:19,124 [lib.cuckoo.core.plugins] DEBUG:         |-- persistence_registry_script\r\n2021-10-21 14:46:19,125 [lib.cuckoo.core.plugins] DEBUG:         |-- persistence_ifeo\r\n2021-10-21 14:46:19,125 [lib.cuckoo.core.plugins] DEBUG:         |-- persistence_slient_process_exit\r\n2021-10-21 14:46:19,125 [lib.cuckoo.core.plugins] DEBUG:         |-- persistence_rdp_registry\r\n2021-10-21 14:46:19,126 [lib.cuckoo.core.plugins] DEBUG:         |-- persistence_rdp_shadowing\r\n2021-10-21 14:46:19,126 [lib.cuckoo.core.plugins] DEBUG:         |-- persistence_shim_database\r\n2021-10-21 14:46:19,126 [lib.cuckoo.core.plugins] DEBUG:         |-- pony_behavior\r\n2021-10-21 14:46:19,127 [lib.cuckoo.core.plugins] DEBUG:         |-- powershell_network_connection\r\n2021-10-21 14:46:19,127 [lib.cuckoo.core.plugins] DEBUG:         |-- powershell_scriptblock_logging\r\n2021-10-21 14:46:19,128 [lib.cuckoo.core.plugins] DEBUG:         |-- powershell_command_suspicious\r\n2021-10-21 14:46:19,128 [lib.cuckoo.core.plugins] DEBUG:         |-- powershell_renamed\r\n2021-10-21 14:46:19,128 [lib.cuckoo.core.plugins] DEBUG:         |-- powershell_reversed\r\n2021-10-21 14:46:19,129 [lib.cuckoo.core.plugins] DEBUG:         |-- powershell_variable_obfuscation\r\n2021-10-21 14:46:19,129 [lib.cuckoo.core.plugins] DEBUG:         |-- cmdline_process_discovery\r\n2021-10-21 14:46:19,129 [lib.cuckoo.core.plugins] DEBUG:         |-- createtoolhelp32snapshot_module_enumeration\r\n2021-10-21 14:46:19,130 [lib.cuckoo.core.plugins] DEBUG:         |-- enumerates_running_processes\r\n2021-10-21 14:46:19,130 [lib.cuckoo.core.plugins] DEBUG:         |-- process_interest\r\n2021-10-21 14:46:19,131 [lib.cuckoo.core.plugins] DEBUG:         |-- process_needed\r\n2021-10-21 14:46:19,131 [lib.cuckoo.core.plugins] DEBUG:         |-- mass_data_encryption\r\n2021-10-21 14:46:19,131 [lib.cuckoo.core.plugins] DEBUG:         |-- dharma_mutexes\r\n2021-10-21 14:46:19,132 [lib.cuckoo.core.plugins] DEBUG:         |-- ransomware_dmalocker\r\n2021-10-21 14:46:19,132 [lib.cuckoo.core.plugins] DEBUG:         |-- ransomware_file_modifications\r\n2021-10-21 14:46:19,133 [lib.cuckoo.core.plugins] DEBUG:         |-- fonix_mutexes\r\n2021-10-21 14:46:19,133 [lib.cuckoo.core.plugins] DEBUG:         |-- ransomware_message\r\n2021-10-21 14:46:19,133 [lib.cuckoo.core.plugins] DEBUG:         |-- ransomware_message_multiple_locations\r\n2021-10-21 14:46:19,134 [lib.cuckoo.core.plugins] DEBUG:         |-- nemty_network_activity\r\n2021-10-21 14:46:19,134 [lib.cuckoo.core.plugins] DEBUG:         |-- nemty_note\r\n2021-10-21 14:46:19,134 [lib.cuckoo.core.plugins] DEBUG:         |-- pysa_mutexes\r\n2021-10-21 14:46:19,135 [lib.cuckoo.core.plugins] DEBUG:         |-- ransomware_revil_regkey\r\n2021-10-21 14:46:19,135 [lib.cuckoo.core.plugins] DEBUG:         |-- satan_mutexes\r\n2021-10-21 14:46:19,136 [lib.cuckoo.core.plugins] DEBUG:         |-- snake_ransom_mutexes\r\n2021-10-21 14:46:19,136 [lib.cuckoo.core.plugins] DEBUG:         |-- Sodinokibi Behavior\r\n2021-10-21 14:46:19,136 [lib.cuckoo.core.plugins] DEBUG:         |-- stop_ransom_mutexes\r\n2021-10-21 14:46:19,137 [lib.cuckoo.core.plugins] DEBUG:         |-- stop_ransomware_cmd\r\n2021-10-21 14:46:19,137 [lib.cuckoo.core.plugins] DEBUG:         |-- stop_ransomware_registry\r\n2021-10-21 14:46:19,138 [lib.cuckoo.core.plugins] DEBUG:         |-- blackrat_apis\r\n2021-10-21 14:46:19,138 [lib.cuckoo.core.plugins] DEBUG:         |-- blackrat_network_activity\r\n2021-10-21 14:46:19,138 [lib.cuckoo.core.plugins] DEBUG:         |-- blackrat_registry_keys\r\n2021-10-21 14:46:19,139 [lib.cuckoo.core.plugins] DEBUG:         |-- dcrat_behavior\r\n2021-10-21 14:46:19,139 [lib.cuckoo.core.plugins] DEBUG:         |-- lodarat_file_behavior\r\n2021-10-21 14:46:19,139 [lib.cuckoo.core.plugins] DEBUG:         |-- rat_luminosity\r\n2021-10-21 14:46:19,140 [lib.cuckoo.core.plugins] DEBUG:         |-- rat_nanocore\r\n2021-10-21 14:46:19,140 [lib.cuckoo.core.plugins] DEBUG:         |-- NewtWire Behavior\r\n2021-10-21 14:46:19,141 [lib.cuckoo.core.plugins] DEBUG:         |-- obliquerat_network_activity\r\n2021-10-21 14:46:19,141 [lib.cuckoo.core.plugins] DEBUG:         |-- OrcusRAT Behavior\r\n2021-10-21 14:46:19,141 [lib.cuckoo.core.plugins] DEBUG:         |-- trochilusrat_APIs\r\n2021-10-21 14:46:19,142 [lib.cuckoo.core.plugins] DEBUG:         |-- xpertrat_files\r\n2021-10-21 14:46:19,142 [lib.cuckoo.core.plugins] DEBUG:         |-- xpertrat_mutexes\r\n2021-10-21 14:46:19,142 [lib.cuckoo.core.plugins] DEBUG:         |-- reads_self\r\n2021-10-21 14:46:19,143 [lib.cuckoo.core.plugins] DEBUG:         |-- recon_beacon\r\n2021-10-21 14:46:19,143 [lib.cuckoo.core.plugins] DEBUG:         |-- recon_programs\r\n2021-10-21 14:46:19,144 [lib.cuckoo.core.plugins] DEBUG:         |-- recon_systeminfo\r\n2021-10-21 14:46:19,144 [lib.cuckoo.core.plugins] DEBUG:         |-- accesses_recyclebin\r\n2021-10-21 14:46:19,144 [lib.cuckoo.core.plugins] DEBUG:         |-- uses_rdp_clip\r\n2021-10-21 14:46:19,145 [lib.cuckoo.core.plugins] DEBUG:         |-- uses_remote_desktop_session\r\n2021-10-21 14:46:19,145 [lib.cuckoo.core.plugins] DEBUG:         |-- removes_networking_icon\r\n2021-10-21 14:46:19,145 [lib.cuckoo.core.plugins] DEBUG:         |-- removes_pinned_programs\r\n2021-10-21 14:46:19,146 [lib.cuckoo.core.plugins] DEBUG:         |-- removes_security_maintenance_icon\r\n2021-10-21 14:46:19,146 [lib.cuckoo.core.plugins] DEBUG:         |-- Removes_startmenu_defaults\r\n2021-10-21 14:46:19,147 [lib.cuckoo.core.plugins] DEBUG:         |-- removes_username_startmenu\r\n2021-10-21 14:46:19,147 [lib.cuckoo.core.plugins] DEBUG:         |-- removes_zoneid_ads\r\n2021-10-21 14:46:19,147 [lib.cuckoo.core.plugins] DEBUG:         |-- spicyhotpot_behavior\r\n2021-10-21 14:46:19,148 [lib.cuckoo.core.plugins] DEBUG:         |-- script_created_process\r\n2021-10-21 14:46:19,148 [lib.cuckoo.core.plugins] DEBUG:         |-- script_network_activity\r\n2021-10-21 14:46:19,149 [lib.cuckoo.core.plugins] DEBUG:         |-- suspicious_js_script\r\n2021-10-21 14:46:19,149 [lib.cuckoo.core.plugins] DEBUG:         |-- secure_login_phishing\r\n2021-10-21 14:46:19,149 [lib.cuckoo.core.plugins] DEBUG:         |-- securityxploded_modules\r\n2021-10-21 14:46:19,150 [lib.cuckoo.core.plugins] DEBUG:         |-- sets_autoconfig_url\r\n2021-10-21 14:46:19,150 [lib.cuckoo.core.plugins] DEBUG:         |-- shifu_behavior\r\n2021-10-21 14:46:19,150 [lib.cuckoo.core.plugins] DEBUG:         |-- spoofs_procname\r\n2021-10-21 14:46:19,151 [lib.cuckoo.core.plugins] DEBUG:         |-- stack_pivot\r\n2021-10-21 14:46:19,151 [lib.cuckoo.core.plugins] DEBUG:         |-- stack_pivot_file_created\r\n2021-10-21 14:46:19,152 [lib.cuckoo.core.plugins] DEBUG:         |-- stack_pivot_process_create\r\n2021-10-21 14:46:19,152 [lib.cuckoo.core.plugins] DEBUG:         |-- stealth_childproc\r\n2021-10-21 14:46:19,152 [lib.cuckoo.core.plugins] DEBUG:         |-- stealth_file\r\n2021-10-21 14:46:19,153 [lib.cuckoo.core.plugins] DEBUG:         |-- stealth_network\r\n2021-10-21 14:46:19,153 [lib.cuckoo.core.plugins] DEBUG:         |-- stealth_timeout\r\n2021-10-21 14:46:19,153 [lib.cuckoo.core.plugins] DEBUG:         |-- stealth_window\r\n2021-10-21 14:46:19,154 [lib.cuckoo.core.plugins] DEBUG:         |-- sysinternals_psexec\r\n2021-10-21 14:46:19,154 [lib.cuckoo.core.plugins] DEBUG:         |-- sysinternals_tools\r\n2021-10-21 14:46:19,155 [lib.cuckoo.core.plugins] DEBUG:         |-- territorial_disputes_sigs\r\n2021-10-21 14:46:19,155 [lib.cuckoo.core.plugins] DEBUG:         |-- tinba_behavior\r\n2021-10-21 14:46:19,155 [lib.cuckoo.core.plugins] DEBUG:         |-- TrickBotTaskDelete\r\n2021-10-21 14:46:19,156 [lib.cuckoo.core.plugins] DEBUG:         |-- ursnif_behavior\r\n2021-10-21 14:46:19,156 [lib.cuckoo.core.plugins] DEBUG:         |-- upatre_behavior\r\n2021-10-21 14:46:19,157 [lib.cuckoo.core.plugins] DEBUG:         |-- ursnif_behavior\r\n2021-10-21 14:46:19,157 [lib.cuckoo.core.plugins] DEBUG:         |-- user_enum\r\n2021-10-21 14:46:19,157 [lib.cuckoo.core.plugins] DEBUG:         |-- uses_adfind\r\n2021-10-21 14:46:19,158 [lib.cuckoo.core.plugins] DEBUG:         |-- vawtrak_behavior\r\n2021-10-21 14:46:19,158 [lib.cuckoo.core.plugins] DEBUG:         |-- vawtrak_behavior\r\n2021-10-21 14:46:19,158 [lib.cuckoo.core.plugins] DEBUG:         |-- virus\r\n2021-10-21 14:46:19,159 [lib.cuckoo.core.plugins] DEBUG:         |-- neshta_files\r\n2021-10-21 14:46:19,159 [lib.cuckoo.core.plugins] DEBUG:         |-- neshta_regkeys\r\n2021-10-21 14:46:19,160 [lib.cuckoo.core.plugins] DEBUG:         |-- webmail_phish\r\n2021-10-21 14:46:19,160 [lib.cuckoo.core.plugins] DEBUG:         |-- web_shell_processes\r\n2021-10-21 14:46:19,160 [lib.cuckoo.core.plugins] DEBUG:         |-- persists_dev_util\r\n2021-10-21 14:46:19,161 [lib.cuckoo.core.plugins] DEBUG:         |-- spawns_dev_util\r\n2021-10-21 14:46:19,161 [lib.cuckoo.core.plugins] DEBUG:         |-- alters_windows_utility\r\n2021-10-21 14:46:19,161 [lib.cuckoo.core.plugins] DEBUG:         |-- dotnet_csc_build\r\n2021-10-21 14:46:19,162 [lib.cuckoo.core.plugins] DEBUG:         |-- multiple_explorer_instances\r\n2021-10-21 14:46:19,162 [lib.cuckoo.core.plugins] DEBUG:         |-- overwrites_accessibility_utility\r\n2021-10-21 14:46:19,163 [lib.cuckoo.core.plugins] DEBUG:         |-- script_tool_executed\r\n2021-10-21 14:46:19,163 [lib.cuckoo.core.plugins] DEBUG:         |-- suspicious_certutil_use\r\n2021-10-21 14:46:19,163 [lib.cuckoo.core.plugins] DEBUG:         |-- suspicious_command_tools\r\n2021-10-21 14:46:19,164 [lib.cuckoo.core.plugins] DEBUG:         |-- suspicious_mpcmdrun_use\r\n2021-10-21 14:46:19,164 [lib.cuckoo.core.plugins] DEBUG:         |-- suspicious_ping_use\r\n2021-10-21 14:46:19,165 [lib.cuckoo.core.plugins] DEBUG:         |-- uses_powershell_copyitem\r\n2021-10-21 14:46:19,165 [lib.cuckoo.core.plugins] DEBUG:         |-- uses_windows_utilities\r\n2021-10-21 14:46:19,165 [lib.cuckoo.core.plugins] DEBUG:         |-- uses_windows_utilities_appcmd\r\n2021-10-21 14:46:19,166 [lib.cuckoo.core.plugins] DEBUG:         |-- uses_windows_utilities_csvde_ldifde\r\n2021-10-21 14:46:19,166 [lib.cuckoo.core.plugins] DEBUG:         |-- uses_windows_utilities_cipher\r\n2021-10-21 14:46:19,167 [lib.cuckoo.core.plugins] DEBUG:         |-- uses_windows_utilities_clickonce\r\n2021-10-21 14:46:19,167 [lib.cuckoo.core.plugins] DEBUG:         |-- uses_windows_utilities_dsquery\r\n2021-10-21 14:46:19,167 [lib.cuckoo.core.plugins] DEBUG:         |-- uses_windows_utilities_esentutl\r\n2021-10-21 14:46:19,168 [lib.cuckoo.core.plugins] DEBUG:         |-- uses_windows_utilities_finger\r\n2021-10-21 14:46:19,168 [lib.cuckoo.core.plugins] DEBUG:         |-- uses_windows_utilities_mode\r\n2021-10-21 14:46:19,168 [lib.cuckoo.core.plugins] DEBUG:         |-- uses_windows_utilities_ntdsutil\r\n2021-10-21 14:46:19,169 [lib.cuckoo.core.plugins] DEBUG:         |-- uses_windows_utilities_nltest\r\n2021-10-21 14:46:19,169 [lib.cuckoo.core.plugins] DEBUG:         |-- uses_windows_utilities_to_create_scheduled_task\r\n2021-10-21 14:46:19,170 [lib.cuckoo.core.plugins] DEBUG:         |-- uses_windows_utilities_xcopy\r\n2021-10-21 14:46:19,170 [lib.cuckoo.core.plugins] DEBUG:         |-- wmic_command_suspicious\r\n2021-10-21 14:46:19,170 [lib.cuckoo.core.plugins] DEBUG:         |-- scrcons_wmi_script_consumer\r\n2021-10-21 14:46:19,171 [lib.cuckoo.core.plugins] DEBUG:         |-- wmi_create_process\r\n2021-10-21 14:46:19,171 [lib.cuckoo.core.plugins] DEBUG:         `-- wmi_script_process\r\n2021-10-21 14:46:20,586 [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"dynamic_function_loading\"\r\n[]\r\n2021-10-21 14:46:20,597 [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"stealth_network\"\r\n2021-10-21 14:46:20,600 [lib.cuckoo.core.plugins] DEBUG: Running non-evented signatures\r\n2021-10-21 14:46:20,602 [lib.cuckoo.core.plugins] DEBUG: Running signature \"cape_detected_threat\"\r\n2021-10-21 14:46:20,602 [lib.cuckoo.core.plugins] DEBUG: Running signature \"Compression\"\r\n2021-10-21 14:46:20,603 [lib.cuckoo.core.plugins] DEBUG: Running signature \"Decryption\"\r\n2021-10-21 14:46:20,603 [lib.cuckoo.core.plugins] DEBUG: Running signature \"Doppelganging\"\r\n2021-10-21 14:46:20,604 [lib.cuckoo.core.plugins] DEBUG: Running signature \"EvilGrab\"\r\n2021-10-21 14:46:20,604 [lib.cuckoo.core.plugins] DEBUG: Running signature \"InjectionInterProcess\"\r\n2021-10-21 14:46:20,604 [lib.cuckoo.core.plugins] DEBUG: Running signature \"InjectionCreateRemoteThread\"\r\n2021-10-21 14:46:20,605 [lib.cuckoo.core.plugins] DEBUG: Running signature \"InjectionProcessHollowing\"\r\n2021-10-21 14:46:20,605 [lib.cuckoo.core.plugins] DEBUG: Running signature \"InjectionSetWindowLong\"\r\n2021-10-21 14:46:20,605 [lib.cuckoo.core.plugins] DEBUG: Running signature \"PlugX\"\r\n2021-10-21 14:46:20,606 [lib.cuckoo.core.plugins] DEBUG: Running signature \"RegBinary\"\r\n2021-10-21 14:46:20,606 [lib.cuckoo.core.plugins] DEBUG: Running signature \"TransactedHollowing\"\r\n2021-10-21 14:46:20,606 [lib.cuckoo.core.plugins] DEBUG: Running signature \"Unpacker\"\r\n2021-10-21 14:46:20,607 [lib.cuckoo.core.plugins] DEBUG: Running signature \"accesses_mailslot\"\r\n2021-10-21 14:46:20,607 [lib.cuckoo.core.plugins] DEBUG: Running signature \"accesses_netlogon_regkey\"\r\n2021-10-21 14:46:20,608 [lib.cuckoo.core.plugins] DEBUG: Running signature \"accesses_sysvol\"\r\n2021-10-21 14:46:20,609 [lib.cuckoo.core.plugins] DEBUG: Running signature \"writes_sysvol\"\r\n2021-10-21 14:46:20,609 [lib.cuckoo.core.plugins] DEBUG: Running signature \"adds_admin_user\"\r\n2021-10-21 14:46:20,610 [lib.cuckoo.core.plugins] DEBUG: Running signature \"adds_user\"\r\n2021-10-21 14:46:20,611 [lib.cuckoo.core.plugins] DEBUG: Running signature \"overwites_admin_password\"\r\n2021-10-21 14:46:20,611 [lib.cuckoo.core.plugins] DEBUG: Running signature \"alphacrypt_behavior\"\r\n2021-10-21 14:46:20,611 [lib.cuckoo.core.plugins] DEBUG: Running signature \"andromeda_behavior\"\r\n2021-10-21 14:46:20,612 [lib.cuckoo.core.plugins] DEBUG: Running signature \"anomalous_deletefile\"\r\n2021-10-21 14:46:20,612 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antianalysis_detectfile\"\r\n2021-10-21 14:46:20,616 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antianalysis_detectreg\"\r\n2021-10-21 14:46:20,627 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_360_libs\"\r\n2021-10-21 14:46:20,627 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_ahnlab_libs\"\r\n2021-10-21 14:46:20,628 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_avast_libs\"\r\n2021-10-21 14:46:20,628 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_bitdefender_libs\"\r\n2021-10-21 14:46:20,628 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_bullgaurd_libs\"\r\n2021-10-21 14:46:20,629 [lib.cuckoo.core.plugins] DEBUG: Running signature \"modifies_attachment_manager\"\r\n2021-10-21 14:46:20,629 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_detectfile\"\r\n2021-10-21 14:46:20,634 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_detectreg\"\r\n2021-10-21 14:46:20,684 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_emsisoft_libs\"\r\n2021-10-21 14:46:20,685 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_qurb_libs\"\r\n2021-10-21 14:46:20,685 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_servicestop\"\r\n2021-10-21 14:46:20,685 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_srp\"\r\n2021-10-21 14:46:20,686 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antidbg_devices\"\r\n2021-10-21 14:46:20,687 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antidbg_windows\"\r\n2021-10-21 14:46:20,688 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antidebug_addvectoredexceptionhandler\"\r\n2021-10-21 14:46:20,688 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_apioverride_libs\"\r\n2021-10-21 14:46:20,688 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antidebug_checkremotedebuggerpresent\"\r\n2021-10-21 14:46:20,689 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antidebug_debugactiveprocess\"\r\n2021-10-21 14:46:20,689 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antidebug_gettickcount\"\r\n2021-10-21 14:46:20,689 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antidebug_guardpages\"\r\n2021-10-21 14:46:20,690 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antidebug_ntcreatethreadex\"\r\n2021-10-21 14:46:20,690 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiav_nthookengine_libs\"\r\n2021-10-21 14:46:20,691 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antidebug_ntsetinformationthread\"\r\n2021-10-21 14:46:20,691 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antidebug_outputdebugstring\"\r\n2021-10-21 14:46:20,691 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antidebug_setunhandledexceptionfilter\"\r\n2021-10-21 14:46:20,692 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiemu_windefend\"\r\n2021-10-21 14:46:20,692 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiemu_wine_reg\"\r\n2021-10-21 14:46:20,693 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antiemu_wine_func\"\r\n2021-10-21 14:46:20,693 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_check_userdomain\"\r\n2021-10-21 14:46:20,694 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_cuckoo\"\r\n2021-10-21 14:46:20,694 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_cuckoo_files\"\r\n2021-10-21 14:46:20,694 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_cuckoocrash\"\r\n2021-10-21 14:46:20,695 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_fortinet_files\"\r\n2021-10-21 14:46:20,695 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_joe_anubis_files\"\r\n2021-10-21 14:46:20,696 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_mouse_hook\"\r\n2021-10-21 14:46:20,696 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_restart\"\r\n2021-10-21 14:46:20,697 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_sboxie_libs\"\r\n2021-10-21 14:46:20,697 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_sboxie_mutex\"\r\n2021-10-21 14:46:20,697 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_sboxie_objects\"\r\n2021-10-21 14:46:20,698 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_script_timer\"\r\n2021-10-21 14:46:20,698 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_sleep\"\r\n2021-10-21 14:46:20,699 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_sunbelt_files\"\r\n2021-10-21 14:46:20,699 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_sunbelt_libs\"\r\n2021-10-21 14:46:20,699 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_suspend\"\r\n2021-10-21 14:46:20,700 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_threattrack_files\"\r\n2021-10-21 14:46:20,700 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antisandbox_unhook\"\r\n2021-10-21 14:46:20,701 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivirus_virustotal\"\r\n2021-10-21 14:46:20,701 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_xen_keys\"\r\n2021-10-21 14:46:20,702 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_directory_objects\"\r\n2021-10-21 14:46:20,703 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_generic_bios\"\r\n2021-10-21 14:46:20,703 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_generic_cpu\"\r\n2021-10-21 14:46:20,704 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_generic_disk\"\r\n2021-10-21 14:46:20,704 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_generic_disk_setupapi\"\r\n2021-10-21 14:46:20,705 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_generic_diskreg\"\r\n2021-10-21 14:46:20,707 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_generic_scsi\"\r\n2021-10-21 14:46:20,707 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_generic_services\"\r\n2021-10-21 14:46:20,708 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_generic_system\"\r\n2021-10-21 14:46:20,708 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_hyperv_keys\"\r\n2021-10-21 14:46:20,710 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_parallels_keys\"\r\n2021-10-21 14:46:20,713 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vbox_devices\"\r\n2021-10-21 14:46:20,714 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vbox_files\"\r\n2021-10-21 14:46:20,716 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vbox_keys\"\r\n2021-10-21 14:46:20,722 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vbox_libs\"\r\n2021-10-21 14:46:20,722 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vbox_provname\"\r\n2021-10-21 14:46:20,723 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vbox_window\"\r\n2021-10-21 14:46:20,723 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vmware_devices\"\r\n2021-10-21 14:46:20,723 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vmware_events\"\r\n2021-10-21 14:46:20,724 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vmware_files\"\r\n2021-10-21 14:46:20,725 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vmware_keys\"\r\n2021-10-21 14:46:20,729 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vmware_libs\"\r\n2021-10-21 14:46:20,729 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vmware_mutexes\"\r\n2021-10-21 14:46:20,730 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vpc_files\"\r\n2021-10-21 14:46:20,731 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vpc_keys\"\r\n2021-10-21 14:46:20,733 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_vpc_mutex\"\r\n2021-10-21 14:46:20,733 [lib.cuckoo.core.plugins] DEBUG: Running signature \"antivm_xen_keys\"\r\n2021-10-21 14:46:20,736 [lib.cuckoo.core.plugins] DEBUG: Running signature \"api_spamming\"\r\n2021-10-21 14:46:20,737 [lib.cuckoo.core.plugins] DEBUG: Running signature \"gulpix_behavior\"\r\n2021-10-21 14:46:20,737 [lib.cuckoo.core.plugins] DEBUG: Running signature \"ketrican_regkeys\"\r\n2021-10-21 14:46:20,739 [lib.cuckoo.core.plugins] DEBUG: Running signature \"okrum_mutexes\"\r\n2021-10-21 14:46:20,740 [lib.cuckoo.core.plugins] DEBUG: Running signature \"bad_certs\"\r\n2021-10-21 14:46:20,740 [lib.cuckoo.core.plugins] DEBUG: Running signature \"bad_ssl_certs\"\r\n2021-10-21 14:46:20,741 [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_cridex\"\r\n2021-10-21 14:46:20,741 [lib.cuckoo.core.plugins] DEBUG: Running signature \"geodo_banking_trojan\"\r\n2021-10-21 14:46:20,744 [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_prinimalka\"\r\n2021-10-21 14:46:20,745 [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_spyeye_mutexes\"\r\n2021-10-21 14:46:20,745 [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_zeus_mutex\"\r\n2021-10-21 14:46:20,746 [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_zeus_p2p\"\r\n2021-10-21 14:46:20,747 [lib.cuckoo.core.plugins] DEBUG: Running signature \"banker_zeus_url\"\r\n2021-10-21 14:46:20,747 [lib.cuckoo.core.plugins] DEBUG: Running signature \"bcdedit_command\"\r\n2021-10-21 14:46:20,748 [lib.cuckoo.core.plugins] DEBUG: Running signature \"betabot_behavior\"\r\n2021-10-21 14:46:20,748 [lib.cuckoo.core.plugins] DEBUG: Running signature \"bitcoin_opencl\"\r\n2021-10-21 14:46:20,749 [lib.cuckoo.core.plugins] DEBUG: Running signature \"accesses_primary_patition\"\r\n2021-10-21 14:46:20,749 [lib.cuckoo.core.plugins] DEBUG: Running signature \"bootkit\"\r\n2021-10-21 14:46:20,749 [lib.cuckoo.core.plugins] DEBUG: Running signature \"direct_hdd_access\"\r\n2021-10-21 14:46:20,750 [lib.cuckoo.core.plugins] DEBUG: Running signature \"physical_drive_access\"\r\n2021-10-21 14:46:20,750 [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_ioctl_scsipassthough\"\r\n2021-10-21 14:46:20,751 [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_athenahttp\"\r\n2021-10-21 14:46:20,751 [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_dirtjumper\"\r\n2021-10-21 14:46:20,752 [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_drive\"\r\n2021-10-21 14:46:20,753 [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_drive2\"\r\n2021-10-21 14:46:20,754 [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_madness\"\r\n2021-10-21 14:46:20,754 [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_russkill\"\r\n2021-10-21 14:46:20,754 [lib.cuckoo.core.plugins] DEBUG: Running signature \"browser_addon\"\r\n2021-10-21 14:46:20,755 [lib.cuckoo.core.plugins] DEBUG: Running signature \"browser_helper_object\"\r\n2021-10-21 14:46:20,756 [lib.cuckoo.core.plugins] DEBUG: Running signature \"browser_needed\"\r\n2021-10-21 14:46:20,756 [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_proxy\"\r\n2021-10-21 14:46:20,758 [lib.cuckoo.core.plugins] DEBUG: Running signature \"browser_scanbox\"\r\n2021-10-21 14:46:20,758 [lib.cuckoo.core.plugins] DEBUG: Running signature \"browser_security\"\r\n2021-10-21 14:46:20,760 [lib.cuckoo.core.plugins] DEBUG: Running signature \"browser_startpage\"\r\n2021-10-21 14:46:20,761 [lib.cuckoo.core.plugins] DEBUG: Running signature \"odbcconf_bypass\"\r\n2021-10-21 14:46:20,761 [lib.cuckoo.core.plugins] DEBUG: Running signature \"regsvr32_squiblydoo_dll_load\"\r\n2021-10-21 14:46:20,762 [lib.cuckoo.core.plugins] DEBUG: Running signature \"squiblydoo_bypass\"\r\n2021-10-21 14:46:20,762 [lib.cuckoo.core.plugins] DEBUG: Running signature \"squiblytwo_bypass\"\r\n2021-10-21 14:46:20,763 [lib.cuckoo.core.plugins] DEBUG: Running signature \"bypass_firewall\"\r\n2021-10-21 14:46:20,764 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uac_bypass_cmstp\"\r\n2021-10-21 14:46:20,764 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uac_bypass_cmstpcom\"\r\n2021-10-21 14:46:20,765 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uac_bypass_delegateexecute_sdclt\"\r\n2021-10-21 14:46:20,766 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uac_bypass_eventvwr\"\r\n2021-10-21 14:46:20,766 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uac_bypass_fodhelper\"\r\n2021-10-21 14:46:20,767 [lib.cuckoo.core.plugins] DEBUG: Running signature \"cape_extracted_config\"\r\n2021-10-21 14:46:20,767 [lib.cuckoo.core.plugins] DEBUG: Running signature \"cape_extracted_content\"\r\n2021-10-21 14:46:20,768 [lib.cuckoo.core.plugins] DEBUG: Running signature \"carberp_mutex\"\r\n2021-10-21 14:46:20,768 [lib.cuckoo.core.plugins] DEBUG: Running signature \"cerber_behavior\"\r\n2021-10-21 14:46:20,769 [lib.cuckoo.core.plugins] DEBUG: Running signature \"chimera_behavior\"\r\n2021-10-21 14:46:20,769 [lib.cuckoo.core.plugins] DEBUG: Running signature \"clamav\"\r\n2021-10-21 14:46:20,770 [lib.cuckoo.core.plugins] DEBUG: Running signature \"clears_logs\"\r\n2021-10-21 14:46:20,770 [lib.cuckoo.core.plugins] DEBUG: Running signature \"clickfraud_cookies\"\r\n2021-10-21 14:46:20,771 [lib.cuckoo.core.plugins] DEBUG: Running signature \"clickfraud_volume\"\r\n2021-10-21 14:46:20,771 [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_obfuscation\"\r\n2021-10-21 14:46:20,772 [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_switches\"\r\n2021-10-21 14:46:20,772 [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_terminate\"\r\n2021-10-21 14:46:20,772 [lib.cuckoo.core.plugins] DEBUG: Running signature \"commandline_forfiles_wildcard\"\r\n2021-10-21 14:46:20,773 [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_http_link\"\r\n2021-10-21 14:46:20,773 [lib.cuckoo.core.plugins] DEBUG: Running signature \"commandline_long_string\"\r\n2021-10-21 14:46:20,773 [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_reversed_http_link\"\r\n2021-10-21 14:46:20,774 [lib.cuckoo.core.plugins] DEBUG: Running signature \"long_commandline\"\r\n2021-10-21 14:46:20,774 [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_renamed_commandline\"\r\n2021-10-21 14:46:20,775 [lib.cuckoo.core.plugins] DEBUG: Running signature \"codelux_behavior\"\r\n2021-10-21 14:46:20,775 [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_account_disovery_cmd\"\r\n2021-10-21 14:46:20,776 [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_info_disovery_cmd\"\r\n2021-10-21 14:46:20,776 [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_info_disovery_pwsh\"\r\n2021-10-21 14:46:20,777 [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_network_discovery_cmd\"\r\n2021-10-21 14:46:20,777 [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_network_discovery_pwsh\"\r\n2021-10-21 14:46:20,777 [lib.cuckoo.core.plugins] DEBUG: Running signature \"system_user_disovery_cmd\"\r\n2021-10-21 14:46:20,778 [lib.cuckoo.core.plugins] DEBUG: Running signature \"dotnet_code_compile\"\r\n2021-10-21 14:46:20,778 [lib.cuckoo.core.plugins] DEBUG: Running signature \"copies_self\"\r\n2021-10-21 14:46:20,778 [lib.cuckoo.core.plugins] DEBUG: Running signature \"creates_largekey\"\r\n2021-10-21 14:46:20,779 [lib.cuckoo.core.plugins] DEBUG: Running signature \"creates_nullvalue\"\r\n2021-10-21 14:46:20,779 [lib.cuckoo.core.plugins] DEBUG: Running signature \"enables_wdigest\"\r\n2021-10-21 14:46:20,780 [lib.cuckoo.core.plugins] DEBUG: Running signature \"file_credential_store_access\"\r\n2021-10-21 14:46:20,780 [lib.cuckoo.core.plugins] DEBUG: Running signature \"file_credential_store_write\"\r\n2021-10-21 14:46:20,781 [lib.cuckoo.core.plugins] DEBUG: Running signature \"lsass_credential_dumping\"\r\n2021-10-21 14:46:20,781 [lib.cuckoo.core.plugins] DEBUG: Running signature \"registry_credential_dumping\"\r\n2021-10-21 14:46:20,782 [lib.cuckoo.core.plugins] DEBUG: Running signature \"registry_credential_store_access\"\r\n2021-10-21 14:46:20,783 [lib.cuckoo.core.plugins] DEBUG: Running signature \"registry_lsa_secrets_access\"\r\n2021-10-21 14:46:20,784 [lib.cuckoo.core.plugins] DEBUG: Running signature \"critical_process\"\r\n2021-10-21 14:46:20,784 [lib.cuckoo.core.plugins] DEBUG: Running signature \"cyrptomining_stratum_command\"\r\n2021-10-21 14:46:20,784 [lib.cuckoo.core.plugins] DEBUG: Running signature \"cryptopool_domains\"\r\n2021-10-21 14:46:20,785 [lib.cuckoo.core.plugins] DEBUG: Running signature \"cryptowall_behavior\"\r\n2021-10-21 14:46:20,785 [lib.cuckoo.core.plugins] DEBUG: Running signature \"cve_2014_6332\"\r\n2021-10-21 14:46:20,786 [lib.cuckoo.core.plugins] DEBUG: Running signature \"cve_2015_2419_js\"\r\n2021-10-21 14:46:20,786 [lib.cuckoo.core.plugins] DEBUG: Running signature \"cve_2016-0189\"\r\n2021-10-21 14:46:20,786 [lib.cuckoo.core.plugins] DEBUG: Running signature \"cve_2016_7200\"\r\n2021-10-21 14:46:20,787 [lib.cuckoo.core.plugins] DEBUG: Running signature \"cypherit_mutexes\"\r\n2021-10-21 14:46:20,788 [lib.cuckoo.core.plugins] DEBUG: Running signature \"darkcomet_regkeys\"\r\n2021-10-21 14:46:20,789 [lib.cuckoo.core.plugins] DEBUG: Running signature \"dead_connect\"\r\n2021-10-21 14:46:20,790 [lib.cuckoo.core.plugins] DEBUG: Running signature \"dead_link\"\r\n2021-10-21 14:46:20,790 [lib.cuckoo.core.plugins] DEBUG: Running signature \"debugs_self\"\r\n2021-10-21 14:46:20,790 [lib.cuckoo.core.plugins] DEBUG: Running signature \"decoy_document\"\r\n2021-10-21 14:46:20,791 [lib.cuckoo.core.plugins] DEBUG: Running signature \"decoy_image\"\r\n2021-10-21 14:46:20,791 [lib.cuckoo.core.plugins] DEBUG: Running signature \"deepfreeze_mutex\"\r\n2021-10-21 14:46:20,792 [lib.cuckoo.core.plugins] DEBUG: Running signature \"deletes_self\"\r\n2021-10-21 14:46:20,792 [lib.cuckoo.core.plugins] DEBUG: Running signature \"deletes_shadow_copies\"\r\n2021-10-21 14:46:20,792 [lib.cuckoo.core.plugins] DEBUG: Running signature \"deletes_system_state_backup\"\r\n2021-10-21 14:46:20,793 [lib.cuckoo.core.plugins] DEBUG: Running signature \"dep_bypass\"\r\n2021-10-21 14:46:20,793 [lib.cuckoo.core.plugins] DEBUG: Running signature \"dep_disable\"\r\n2021-10-21 14:46:20,793 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_appv_virtualization\"\r\n2021-10-21 14:46:20,794 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_app_launch\"\r\n2021-10-21 14:46:20,795 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_auto_app_termination\"\r\n2021-10-21 14:46:20,795 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_backups\"\r\n2021-10-21 14:46:20,797 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_browser_warn\"\r\n2021-10-21 14:46:20,799 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_context_menus\"\r\n2021-10-21 14:46:20,800 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_cpl_disable\"\r\n2021-10-21 14:46:20,801 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_mappeddrives_autodisconnect\"\r\n2021-10-21 14:46:20,801 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_event_logging\"\r\n2021-10-21 14:46:20,801 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disable_folder_options\"\r\n2021-10-21 14:46:20,802 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_notificationcenter\"\r\n2021-10-21 14:46:20,803 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_power_options\"\r\n2021-10-21 14:46:20,804 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_restore_default_state\"\r\n2021-10-21 14:46:20,805 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disable_run_command\"\r\n2021-10-21 14:46:20,806 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_smartscreen\"\r\n2021-10-21 14:46:20,806 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_spdy\"\r\n2021-10-21 14:46:20,807 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_startmenu_search\"\r\n2021-10-21 14:46:20,808 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_system_restore\"\r\n2021-10-21 14:46:20,809 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_uac\"\r\n2021-10-21 14:46:20,809 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_wer\"\r\n2021-10-21 14:46:20,810 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_wfp\"\r\n2021-10-21 14:46:20,810 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_windows_defender\"\r\n2021-10-21 14:46:20,811 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_windows_defender_logging\"\r\n2021-10-21 14:46:20,812 [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_windows_defender_contextmenu\"\r\n2021-10-21 14:46:20,813 [lib.cuckoo.core.plugins] DEBUG: Running signature \"windows_defender_powershell\"\r\n2021-10-21 14:46:20,813 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_windows_file_protection\"\r\n2021-10-21 14:46:20,814 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_windowsupdate\"\r\n2021-10-21 14:46:20,814 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_winfirewall\"\r\n2021-10-21 14:46:20,815 [lib.cuckoo.core.plugins] DEBUG: Running signature \"document_script_exe_drop\"\r\n2021-10-21 14:46:20,815 [lib.cuckoo.core.plugins] DEBUG: Running signature \"andromut_mutexes\"\r\n2021-10-21 14:46:20,816 [lib.cuckoo.core.plugins] DEBUG: Running signature \"downloader_cabby\"\r\n2021-10-21 14:46:20,817 [lib.cuckoo.core.plugins] DEBUG: Running signature \"guloader_apis\"\r\n2021-10-21 14:46:20,817 [lib.cuckoo.core.plugins] DEBUG: Running signature \"phorpiex_mutexes\"\r\n2021-10-21 14:46:20,817 [lib.cuckoo.core.plugins] DEBUG: Running signature \"protonbot_mutexes\"\r\n2021-10-21 14:46:20,818 [lib.cuckoo.core.plugins] DEBUG: Running signature \"dridex_behavior\"\r\n2021-10-21 14:46:20,818 [lib.cuckoo.core.plugins] DEBUG: Running signature \"driver_filtermanager\"\r\n2021-10-21 14:46:20,819 [lib.cuckoo.core.plugins] DEBUG: Running signature \"driver_load\"\r\n2021-10-21 14:46:20,819 [lib.cuckoo.core.plugins] DEBUG: Running signature \"dropper\"\r\n2021-10-21 14:46:20,820 [lib.cuckoo.core.plugins] DEBUG: Running signature \"exe_dropper_js\"\r\n2021-10-21 14:46:20,820 [lib.cuckoo.core.plugins] DEBUG: Running signature \"dynamic_function_loading\"\r\n2021-10-21 14:46:20,821 [lib.cuckoo.core.plugins] DEBUG: Running signature \"dyre_behavior\"\r\n2021-10-21 14:46:20,821 [lib.cuckoo.core.plugins] DEBUG: Running signature \"angler_js\"\r\n2021-10-21 14:46:20,821 [lib.cuckoo.core.plugins] DEBUG: Running signature \"gondad_js\"\r\n2021-10-21 14:46:20,822 [lib.cuckoo.core.plugins] DEBUG: Running signature \"heapspray_js\"\r\n2021-10-21 14:46:20,822 [lib.cuckoo.core.plugins] DEBUG: Running signature \"java_js\"\r\n2021-10-21 14:46:20,822 [lib.cuckoo.core.plugins] DEBUG: Running signature \"Neutrino_js\"\r\n2021-10-21 14:46:20,823 [lib.cuckoo.core.plugins] DEBUG: Running signature \"nuclear_js\"\r\n2021-10-21 14:46:20,823 [lib.cuckoo.core.plugins] DEBUG: Running signature \"rig_js\"\r\n2021-10-21 14:46:20,823 [lib.cuckoo.core.plugins] DEBUG: Running signature \"silverlight_js\"\r\n2021-10-21 14:46:20,824 [lib.cuckoo.core.plugins] DEBUG: Running signature \"sundown_js\"\r\n2021-10-21 14:46:20,824 [lib.cuckoo.core.plugins] DEBUG: Running signature \"virtualcheck_js\"\r\n2021-10-21 14:46:20,825 [lib.cuckoo.core.plugins] DEBUG: Running signature \"encrypted_ioc\"\r\n2021-10-21 14:46:20,825 [lib.cuckoo.core.plugins] DEBUG: Running signature \"excel4_macro_urls\"\r\n2021-10-21 14:46:20,825 [lib.cuckoo.core.plugins] DEBUG: Running signature \"exec_crash\"\r\n2021-10-21 14:46:20,826 [lib.cuckoo.core.plugins] DEBUG: Running signature \"process_creation_suspicious_location\"\r\n2021-10-21 14:46:20,826 [lib.cuckoo.core.plugins] DEBUG: Running signature \"exploit_getbasekerneladdress\"\r\n2021-10-21 14:46:20,826 [lib.cuckoo.core.plugins] DEBUG: Running signature \"exploit_gethaldispatchtable\"\r\n2021-10-21 14:46:20,827 [lib.cuckoo.core.plugins] DEBUG: Running signature \"exploit_heapspray\"\r\n2021-10-21 14:46:20,827 [lib.cuckoo.core.plugins] DEBUG: Running signature \"spooler_access\"\r\n2021-10-21 14:46:20,828 [lib.cuckoo.core.plugins] DEBUG: Running signature \"spooler_svc_start\"\r\n2021-10-21 14:46:20,828 [lib.cuckoo.core.plugins] DEBUG: Running signature \"koadic_apis\"\r\n2021-10-21 14:46:20,828 [lib.cuckoo.core.plugins] DEBUG: Running signature \"koadic_network_activity\"\r\n2021-10-21 14:46:20,829 [lib.cuckoo.core.plugins] DEBUG: Running signature \"family_proxyback\"\r\n2021-10-21 14:46:20,829 [lib.cuckoo.core.plugins] DEBUG: Running signature \"downloads_from_filehosting\"\r\n2021-10-21 14:46:20,830 [lib.cuckoo.core.plugins] DEBUG: Running signature \"mapped_drives_uac\"\r\n2021-10-21 14:46:20,830 [lib.cuckoo.core.plugins] DEBUG: Running signature \"generic_phish\"\r\n2021-10-21 14:46:20,831 [lib.cuckoo.core.plugins] DEBUG: Running signature \"gootkit_behavior\"\r\n2021-10-21 14:46:20,831 [lib.cuckoo.core.plugins] DEBUG: Running signature \"h1n1_behavior\"\r\n2021-10-21 14:46:20,831 [lib.cuckoo.core.plugins] DEBUG: Running signature \"hancitor_behavior\"\r\n2021-10-21 14:46:20,832 [lib.cuckoo.core.plugins] DEBUG: Running signature \"hawkeye_behavior\"\r\n2021-10-21 14:46:20,832 [lib.cuckoo.core.plugins] DEBUG: Running signature \"hides_recycle_bin_icon\"\r\n2021-10-21 14:46:20,833 [lib.cuckoo.core.plugins] DEBUG: Running signature \"http_request\"\r\n2021-10-21 14:46:20,833 [lib.cuckoo.core.plugins] DEBUG: Running signature \"https_urls\"\r\n2021-10-21 14:46:20,834 [lib.cuckoo.core.plugins] DEBUG: Running signature \"apocalypse_stealer_file_behavior\"\r\n2021-10-21 14:46:20,834 [lib.cuckoo.core.plugins] DEBUG: Running signature \"arkei_files\"\r\n2021-10-21 14:46:20,835 [lib.cuckoo.core.plugins] DEBUG: Running signature \"azorult_mutexes\"\r\n2021-10-21 14:46:20,836 [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_bitcoin\"\r\n2021-10-21 14:46:20,839 [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_browser\"\r\n2021-10-21 14:46:20,840 [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_browser_password\"\r\n2021-10-21 14:46:20,840 [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_cookies\"\r\n2021-10-21 14:46:20,842 [lib.cuckoo.core.plugins] DEBUG: Running signature \"cryptbot_files\"\r\n2021-10-21 14:46:20,843 [lib.cuckoo.core.plugins] DEBUG: Running signature \"cryptbot_network\"\r\n2021-10-21 14:46:20,843 [lib.cuckoo.core.plugins] DEBUG: Running signature \"echelon_files\"\r\n2021-10-21 14:46:20,845 [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_ftp\"\r\n2021-10-21 14:46:20,863 [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_im\"\r\n2021-10-21 14:46:20,874 [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_keylog\"\r\n2021-10-21 14:46:20,874 [lib.cuckoo.core.plugins] DEBUG: Running signature \"infostealer_mail\"\r\n2021-10-21 14:46:20,875 [lib.cuckoo.core.plugins] DEBUG: Running signature \"masslogger_artifacts\"\r\n2021-10-21 14:46:20,875 [lib.cuckoo.core.plugins] DEBUG: Running signature \"masslogger_files\"\r\n2021-10-21 14:46:20,876 [lib.cuckoo.core.plugins] DEBUG: Running signature \"masslogger_version\"\r\n2021-10-21 14:46:20,876 [lib.cuckoo.core.plugins] DEBUG: Running signature \"poullight_files\"\r\n2021-10-21 14:46:20,878 [lib.cuckoo.core.plugins] DEBUG: Running signature \"purplewave_mutexes\"\r\n2021-10-21 14:46:20,879 [lib.cuckoo.core.plugins] DEBUG: Running signature \"purplewave_network_activity\"\r\n2021-10-21 14:46:20,879 [lib.cuckoo.core.plugins] DEBUG: Running signature \"quilclipper_mutexes\"\r\n2021-10-21 14:46:20,880 [lib.cuckoo.core.plugins] DEBUG: Running signature \"quilclipper_behavior\"\r\n2021-10-21 14:46:20,880 [lib.cuckoo.core.plugins] DEBUG: Running signature \"qulab_files\"\r\n2021-10-21 14:46:20,881 [lib.cuckoo.core.plugins] DEBUG: Running signature \"qulab_mutexes\"\r\n2021-10-21 14:46:20,882 [lib.cuckoo.core.plugins] DEBUG: Running signature \"Raccoon Behavior\"\r\n2021-10-21 14:46:20,882 [lib.cuckoo.core.plugins] DEBUG: Running signature \"captures_screenshot\"\r\n2021-10-21 14:46:20,882 [lib.cuckoo.core.plugins] DEBUG: Running signature \"Vidar Behavior\"\r\n2021-10-21 14:46:20,883 [lib.cuckoo.core.plugins] DEBUG: Running signature \"injection_createremotethread\"\r\n2021-10-21 14:46:20,883 [lib.cuckoo.core.plugins] DEBUG: Running signature \"injection_explorer\"\r\n2021-10-21 14:46:20,884 [lib.cuckoo.core.plugins] DEBUG: Running signature \"injection_needextension\"\r\n2021-10-21 14:46:20,884 [lib.cuckoo.core.plugins] DEBUG: Running signature \"injection_network_traffic\"\r\n2021-10-21 14:46:20,884 [lib.cuckoo.core.plugins] DEBUG: Running signature \"injection_runpe\"\r\n2021-10-21 14:46:20,885 [lib.cuckoo.core.plugins] DEBUG: Running signature \"injection_rwx\"\r\n2021-10-21 14:46:20,885 [lib.cuckoo.core.plugins] DEBUG: Running signature \"injection_themeinitapihook\"\r\n2021-10-21 14:46:20,885 [lib.cuckoo.core.plugins] DEBUG: Running signature \"internet_dropper\"\r\n2021-10-21 14:46:20,886 [lib.cuckoo.core.plugins] DEBUG: Running signature \"ipc_namedpipe\"\r\n2021-10-21 14:46:20,886 [lib.cuckoo.core.plugins] DEBUG: Running signature \"js_phish\"\r\n2021-10-21 14:46:20,886 [lib.cuckoo.core.plugins] DEBUG: Running signature \"js_suspicious_redirect\"\r\n2021-10-21 14:46:20,887 [lib.cuckoo.core.plugins] DEBUG: Running signature \"kazybot_behavior\"\r\n2021-10-21 14:46:20,887 [lib.cuckoo.core.plugins] DEBUG: Running signature \"kelihos_behavior\"\r\n2021-10-21 14:46:20,888 [lib.cuckoo.core.plugins] DEBUG: Running signature \"kibex_behavior\"\r\n2021-10-21 14:46:20,888 [lib.cuckoo.core.plugins] DEBUG: Running signature \"kovter_behavior\"\r\n2021-10-21 14:46:20,888 [lib.cuckoo.core.plugins] DEBUG: Running signature \"bot_kraken_mutexes\"\r\n2021-10-21 14:46:20,889 [lib.cuckoo.core.plugins] DEBUG: Running signature \"locker_regedit\"\r\n2021-10-21 14:46:20,889 [lib.cuckoo.core.plugins] DEBUG: Running signature \"locker_taskmgr\"\r\n2021-10-21 14:46:20,890 [lib.cuckoo.core.plugins] DEBUG: Running signature \"Locky_behavior\"\r\n2021-10-21 14:46:20,890 [lib.cuckoo.core.plugins] DEBUG: Running signature \"malicious_dynamic_function_loading\"\r\n2021-10-21 14:46:20,891 [lib.cuckoo.core.plugins] DEBUG: Running signature \"encrypts_pcinfo\"\r\n2021-10-21 14:46:20,891 [lib.cuckoo.core.plugins] DEBUG: Running signature \"encrypt_data_agenttesla_http\"\r\n2021-10-21 14:46:20,891 [lib.cuckoo.core.plugins] DEBUG: Running signature \"encrypt_data_agentteslat2_http\"\r\n2021-10-21 14:46:20,892 [lib.cuckoo.core.plugins] DEBUG: Running signature \"encrypt_data_nanocore\"\r\n2021-10-21 14:46:20,892 [lib.cuckoo.core.plugins] DEBUG: Running signature \"ie_martian_children\"\r\n2021-10-21 14:46:20,892 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_martian_children\"\r\n2021-10-21 14:46:20,895 [lib.cuckoo.core.plugins] DEBUG: Running signature \"mimics_agent\"\r\n2021-10-21 14:46:20,895 [lib.cuckoo.core.plugins] DEBUG: Running signature \"mimics_extension\"\r\n2021-10-21 14:46:20,896 [lib.cuckoo.core.plugins] DEBUG: Running signature \"mimics_filetime\"\r\n2021-10-21 14:46:20,896 [lib.cuckoo.core.plugins] DEBUG: Running signature \"mimics_icon\"\r\n2021-10-21 14:46:20,897 [lib.cuckoo.core.plugins] DEBUG: Running signature \"masquerade_process_name\"\r\n2021-10-21 14:46:20,899 [lib.cuckoo.core.plugins] DEBUG: Running signature \"mimikatz_modules\"\r\n2021-10-21 14:46:20,900 [lib.cuckoo.core.plugins] DEBUG: Running signature \"quilclipper_behavior\"\r\n2021-10-21 14:46:20,900 [lib.cuckoo.core.plugins] DEBUG: Running signature \"modifies_certs\"\r\n2021-10-21 14:46:20,901 [lib.cuckoo.core.plugins] DEBUG: Running signature \"dotnet_clr_usagelog_regkeys\"\r\n2021-10-21 14:46:20,901 [lib.cuckoo.core.plugins] DEBUG: Running signature \"modifies_hostfile\"\r\n2021-10-21 14:46:20,902 [lib.cuckoo.core.plugins] DEBUG: Running signature \"modifies_oem_information\"\r\n2021-10-21 14:46:20,903 [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_security_center_warnings\"\r\n2021-10-21 14:46:20,904 [lib.cuckoo.core.plugins] DEBUG: Running signature \"modify_uac_prompt\"\r\n2021-10-21 14:46:20,904 [lib.cuckoo.core.plugins] DEBUG: Running signature \"modifies_desktop_wallpaper\"\r\n2021-10-21 14:46:20,905 [lib.cuckoo.core.plugins] DEBUG: Running signature \"move_file_on_reboot\"\r\n2021-10-21 14:46:20,905 [lib.cuckoo.core.plugins] DEBUG: Running signature \"multiple_useragents\"\r\n2021-10-21 14:46:20,906 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_anomaly\"\r\n2021-10-21 14:46:20,906 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_bind\"\r\n2021-10-21 14:46:20,906 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_cnc_https_archive\"\r\n2021-10-21 14:46:20,907 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_cnc_https_free_webshoting\"\r\n2021-10-21 14:46:20,907 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_cnc_https_generic\"\r\n2021-10-21 14:46:20,907 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_cnc_https_temp_urldns\"\r\n2021-10-21 14:46:20,908 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_cnc_https_pastesite\"\r\n2021-10-21 14:46:20,908 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_cnc_https_payload\"\r\n2021-10-21 14:46:20,909 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_cnc_https_socialmedia\"\r\n2021-10-21 14:46:20,909 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_cnc_https_telegram\"\r\n2021-10-21 14:46:20,909 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_cnc_https_tempstorage\"\r\n2021-10-21 14:46:20,910 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_cnc_https_temp_urldns\"\r\n2021-10-21 14:46:20,910 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_cnc_https_urlshortener\"\r\n2021-10-21 14:46:20,910 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_cnc_https_useragent\"\r\n2021-10-21 14:46:20,911 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_cnc_smtps_exfil\"\r\n2021-10-21 14:46:20,911 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_cnc_smtps_generic\"\r\n2021-10-21 14:46:20,911 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_country_distribution\"\r\n2021-10-21 14:46:20,912 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_multiple_direct_ip_connections\"\r\n2021-10-21 14:46:20,912 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_cnc_http\"\r\n2021-10-21 14:46:20,913 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dga\"\r\n2021-10-21 14:46:20,930 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dga_fraunhofer\"\r\n2021-10-21 14:46:20,930 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_blockchain\"\r\n2021-10-21 14:46:20,931 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_idn\"\r\n2021-10-21 14:46:20,931 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_opennic\"\r\n2021-10-21 14:46:20,933 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_paste_site\"\r\n2021-10-21 14:46:20,934 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_reverse_proxy\"\r\n2021-10-21 14:46:20,935 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_suspicious_querytype\"\r\n2021-10-21 14:46:20,935 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_temp_file_storage\"\r\n2021-10-21 14:46:20,937 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_temp_urldns\"\r\n2021-10-21 14:46:20,937 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_tunneling_request\"\r\n2021-10-21 14:46:20,938 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_url_shortener\"\r\n2021-10-21 14:46:20,939 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_dns_doh_tls\"\r\n2021-10-21 14:46:20,940 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_document_http\"\r\n2021-10-21 14:46:20,940 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_excessive_udp\"\r\n2021-10-21 14:46:20,940 [lib.cuckoo.core.plugins] DEBUG: Running signature \"explorer_http\"\r\n2021-10-21 14:46:20,941 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_fake_useragent\"\r\n2021-10-21 14:46:20,941 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_http\"\r\n2021-10-21 14:46:20,941 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_icmp\"\r\n2021-10-21 14:46:20,942 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_irc\"\r\n2021-10-21 14:46:20,942 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_open_proxy\"\r\n2021-10-21 14:46:20,943 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_smtp\"\r\n2021-10-21 14:46:20,943 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_tor\"\r\n2021-10-21 14:46:20,943 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_tor_service\"\r\n2021-10-21 14:46:20,944 [lib.cuckoo.core.plugins] DEBUG: Running signature \"network_torgateway\"\r\n2021-10-21 14:46:20,946 [lib.cuckoo.core.plugins] DEBUG: Running signature \"nymaim_behavior\"\r\n2021-10-21 14:46:20,946 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_code_page\"\r\n2021-10-21 14:46:20,946 [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature \"office_code_page\"\r\n2021-10-21 14:46:20,947 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_addinloading\"\r\n2021-10-21 14:46:20,947 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_com_load\"\r\n2021-10-21 14:46:20,948 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_dotnet_load\"\r\n2021-10-21 14:46:20,948 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_mshtml_load\"\r\n2021-10-21 14:46:20,948 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_perfkey\"\r\n2021-10-21 14:46:20,949 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_vb_load\"\r\n2021-10-21 14:46:20,949 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_wmi_load\"\r\n2021-10-21 14:46:20,950 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_cve2017_11882\"\r\n2021-10-21 14:46:20,950 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_cve2017_11882_network\"\r\n2021-10-21 14:46:20,950 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_cve_2021_40444\"\r\n2021-10-21 14:46:20,951 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_cve_2021_40444_m2\"\r\n2021-10-21 14:46:20,951 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_flash_load\"\r\n2021-10-21 14:46:20,951 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_postscript\"\r\n2021-10-21 14:46:20,952 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro\"\r\n2021-10-21 14:46:20,952 [lib.cuckoo.core.plugins] DEBUG: Running signature \"changes_trust_center_settings\"\r\n2021-10-21 14:46:20,953 [lib.cuckoo.core.plugins] DEBUG: Running signature \"disables_vba_trust_access\"\r\n2021-10-21 14:46:20,953 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro_autoexecution\"\r\n2021-10-21 14:46:20,954 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro_ioc\"\r\n2021-10-21 14:46:20,954 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro_malicious_prediction\"\r\n2021-10-21 14:46:20,954 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_macro_suspicious\"\r\n2021-10-21 14:46:20,955 [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_aslr_bypass\"\r\n2021-10-21 14:46:20,955 [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_anomaly_characterset\"\r\n2021-10-21 14:46:20,956 [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_anomaly_version\"\r\n2021-10-21 14:46:20,956 [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_embedded_content\"\r\n2021-10-21 14:46:20,956 [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_embedded_office_file\"\r\n2021-10-21 14:46:20,957 [lib.cuckoo.core.plugins] DEBUG: Running signature \"rtf_exploit_static\"\r\n2021-10-21 14:46:20,957 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_security\"\r\n2021-10-21 14:46:20,957 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_anomalous_feature\"\r\n2021-10-21 14:46:20,958 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_dde_command\"\r\n2021-10-21 14:46:20,958 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_suspicious_processes\"\r\n2021-10-21 14:46:20,958 [lib.cuckoo.core.plugins] DEBUG: Running signature \"office_write_exe\"\r\n2021-10-21 14:46:20,959 [lib.cuckoo.core.plugins] DEBUG: Running signature \"origin_langid\"\r\n2021-10-21 14:46:20,959 [lib.cuckoo.core.plugins] DEBUG: Running signature \"origin_resource_langid\"\r\n2021-10-21 14:46:20,960 [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_unknown_pe_section_name\"\r\n2021-10-21 14:46:20,960 [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_armadillo_mutex\"\r\n2021-10-21 14:46:20,960 [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_armadillo_regkey\"\r\n2021-10-21 14:46:20,961 [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_aspack\"\r\n2021-10-21 14:46:20,962 [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_aspirecrypt\"\r\n2021-10-21 14:46:20,962 [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_bedsprotector\"\r\n2021-10-21 14:46:20,962 [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_confuser\"\r\n2021-10-21 14:46:20,963 [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_enigma\"\r\n2021-10-21 14:46:20,963 [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_entropy\"\r\n2021-10-21 14:46:20,963 [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_mpress\"\r\n2021-10-21 14:46:20,964 [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_nate\"\r\n2021-10-21 14:46:20,964 [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_nspack\"\r\n2021-10-21 14:46:20,965 [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_smartassembly\"\r\n2021-10-21 14:46:20,965 [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_spices\"\r\n2021-10-21 14:46:20,965 [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_themida\"\r\n2021-10-21 14:46:20,966 [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_themida\"\r\n2021-10-21 14:46:20,966 [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_titan\"\r\n2021-10-21 14:46:20,966 [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_upx\"\r\n2021-10-21 14:46:20,967 [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_vmprotect\"\r\n2021-10-21 14:46:20,967 [lib.cuckoo.core.plugins] DEBUG: Running signature \"packer_yoda\"\r\n2021-10-21 14:46:20,967 [lib.cuckoo.core.plugins] DEBUG: Running signature \"pdf_annot_urls\"\r\n2021-10-21 14:46:20,968 [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_ads\"\r\n2021-10-21 14:46:20,968 [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_autorun\"\r\n2021-10-21 14:46:20,969 [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_autorun_tasks\"\r\n2021-10-21 14:46:20,969 [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_safeboot\"\r\n2021-10-21 14:46:20,970 [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_bootexecute\"\r\n2021-10-21 14:46:20,970 [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_registry_script\"\r\n2021-10-21 14:46:20,970 [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_ifeo\"\r\n2021-10-21 14:46:20,971 [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_slient_process_exit\"\r\n2021-10-21 14:46:20,972 [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_rdp_registry\"\r\n2021-10-21 14:46:20,972 [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_rdp_shadowing\"\r\n2021-10-21 14:46:20,973 [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_service\"\r\n2021-10-21 14:46:20,973 [lib.cuckoo.core.plugins] DEBUG: Running signature \"persistence_shim_database\"\r\n2021-10-21 14:46:20,974 [lib.cuckoo.core.plugins] DEBUG: Running signature \"polymorphic\"\r\n2021-10-21 14:46:20,975 [lib.cuckoo.core.plugins] DEBUG: Running signature \"pony_behavior\"\r\n2021-10-21 14:46:20,975 [lib.cuckoo.core.plugins] DEBUG: Running signature \"powerpool_mutexes\"\r\n2021-10-21 14:46:20,976 [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_network_connection\"\r\n2021-10-21 14:46:20,976 [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_scriptblock_logging\"\r\n2021-10-21 14:46:20,976 [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_command_suspicious\"\r\n2021-10-21 14:46:20,977 [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_renamed\"\r\n2021-10-21 14:46:20,977 [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_reversed\"\r\n2021-10-21 14:46:20,977 [lib.cuckoo.core.plugins] DEBUG: Running signature \"powershell_variable_obfuscation\"\r\n2021-10-21 14:46:20,978 [lib.cuckoo.core.plugins] DEBUG: Running signature \"punch_plus_plus_pcres\"\r\n2021-10-21 14:46:20,978 [lib.cuckoo.core.plugins] DEBUG: Running signature \"prevents_safeboot\"\r\n2021-10-21 14:46:20,979 [lib.cuckoo.core.plugins] DEBUG: Running signature \"cmdline_process_discovery\"\r\n2021-10-21 14:46:20,979 [lib.cuckoo.core.plugins] DEBUG: Running signature \"createtoolhelp32snapshot_module_enumeration\"\r\n2021-10-21 14:46:20,980 [lib.cuckoo.core.plugins] DEBUG: Running signature \"enumerates_running_processes\"\r\n2021-10-21 14:46:20,980 [lib.cuckoo.core.plugins] DEBUG: Running signature \"process_interest\"\r\n2021-10-21 14:46:20,980 [lib.cuckoo.core.plugins] DEBUG: Running signature \"process_needed\"\r\n2021-10-21 14:46:20,981 [lib.cuckoo.core.plugins] DEBUG: Running signature \"procmem_yara\"\r\n2021-10-21 14:46:20,981 [lib.cuckoo.core.plugins] DEBUG: Running signature \"mass_data_encryption\"\r\n2021-10-21 14:46:20,981 [lib.cuckoo.core.plugins] DEBUG: Running signature \"cryptomix_mutexes\"\r\n2021-10-21 14:46:20,982 [lib.cuckoo.core.plugins] DEBUG: Running signature \"dharma_mutexes\"\r\n2021-10-21 14:46:20,982 [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_dmalocker\"\r\n2021-10-21 14:46:20,983 [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_extensions\"\r\n2021-10-21 14:46:20,990 [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_file_modifications\"\r\n2021-10-21 14:46:20,991 [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_files\"\r\n2021-10-21 14:46:21,000 [lib.cuckoo.core.plugins] DEBUG: Running signature \"fonix_mutexes\"\r\n2021-10-21 14:46:21,001 [lib.cuckoo.core.plugins] DEBUG: Running signature \"gandcrab_mutexes\"\r\n2021-10-21 14:46:21,001 [lib.cuckoo.core.plugins] DEBUG: Running signature \"germanwiper_mutexes\"\r\n2021-10-21 14:46:21,002 [lib.cuckoo.core.plugins] DEBUG: Running signature \"medusalocker_mutexes\"\r\n2021-10-21 14:46:21,003 [lib.cuckoo.core.plugins] DEBUG: Running signature \"medusalocker_regkeys\"\r\n2021-10-21 14:46:21,004 [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_message\"\r\n2021-10-21 14:46:21,004 [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_message_multiple_locations\"\r\n2021-10-21 14:46:21,004 [lib.cuckoo.core.plugins] DEBUG: Running signature \"nemty_mutexes\"\r\n2021-10-21 14:46:21,005 [lib.cuckoo.core.plugins] DEBUG: Running signature \"nemty_network_activity\"\r\n2021-10-21 14:46:21,005 [lib.cuckoo.core.plugins] DEBUG: Running signature \"nemty_note\"\r\n2021-10-21 14:46:21,006 [lib.cuckoo.core.plugins] DEBUG: Running signature \"nemty_regkeys\"\r\n2021-10-21 14:46:21,007 [lib.cuckoo.core.plugins] DEBUG: Running signature \"pysa_mutexes\"\r\n2021-10-21 14:46:21,007 [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_radamant\"\r\n2021-10-21 14:46:21,008 [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_recyclebin\"\r\n2021-10-21 14:46:21,008 [lib.cuckoo.core.plugins] DEBUG: Running signature \"revil_mutexes\"\r\n2021-10-21 14:46:21,010 [lib.cuckoo.core.plugins] DEBUG: Running signature \"ransomware_revil_regkey\"\r\n2021-10-21 14:46:21,010 [lib.cuckoo.core.plugins] DEBUG: Running signature \"satan_mutexes\"\r\n2021-10-21 14:46:21,011 [lib.cuckoo.core.plugins] DEBUG: Running signature \"snake_ransom_mutexes\"\r\n2021-10-21 14:46:21,012 [lib.cuckoo.core.plugins] DEBUG: Running signature \"Sodinokibi Behavior\"\r\n2021-10-21 14:46:21,012 [lib.cuckoo.core.plugins] DEBUG: Running signature \"stop_ransom_mutexes\"\r\n2021-10-21 14:46:21,013 [lib.cuckoo.core.plugins] DEBUG: Running signature \"stop_ransomware_cmd\"\r\n2021-10-21 14:46:21,013 [lib.cuckoo.core.plugins] DEBUG: Running signature \"stop_ransomware_registry\"\r\n2021-10-21 14:46:21,013 [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_beebus_mutexes\"\r\n2021-10-21 14:46:21,014 [lib.cuckoo.core.plugins] DEBUG: Running signature \"blacknet_mutexes\"\r\n2021-10-21 14:46:21,015 [lib.cuckoo.core.plugins] DEBUG: Running signature \"blackrat_apis\"\r\n2021-10-21 14:46:21,015 [lib.cuckoo.core.plugins] DEBUG: Running signature \"blackrat_mutexes\"\r\n2021-10-21 14:46:21,015 [lib.cuckoo.core.plugins] DEBUG: Running signature \"blackrat_network_activity\"\r\n2021-10-21 14:46:21,016 [lib.cuckoo.core.plugins] DEBUG: Running signature \"blackrat_registry_keys\"\r\n2021-10-21 14:46:21,016 [lib.cuckoo.core.plugins] DEBUG: Running signature \"crat_mutexes\"\r\n2021-10-21 14:46:21,017 [lib.cuckoo.core.plugins] DEBUG: Running signature \"dcrat_behavior\"\r\n2021-10-21 14:46:21,018 [lib.cuckoo.core.plugins] DEBUG: Running signature \"dcrat_files\"\r\n2021-10-21 14:46:21,018 [lib.cuckoo.core.plugins] DEBUG: Running signature \"dcrat_mutexes\"\r\n2021-10-21 14:46:21,019 [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_fynloski_mutexes\"\r\n2021-10-21 14:46:21,019 [lib.cuckoo.core.plugins] DEBUG: Running signature \"karagany_system_event_objects\"\r\n2021-10-21 14:46:21,019 [lib.cuckoo.core.plugins] DEBUG: Running signature \"karagany_files\"\r\n2021-10-21 14:46:21,020 [lib.cuckoo.core.plugins] DEBUG: Running signature \"limerat_mutexes\"\r\n2021-10-21 14:46:21,020 [lib.cuckoo.core.plugins] DEBUG: Running signature \"limerat_regkeys\"\r\n2021-10-21 14:46:21,022 [lib.cuckoo.core.plugins] DEBUG: Running signature \"lodarat_file_behavior\"\r\n2021-10-21 14:46:21,023 [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_luminosity\"\r\n2021-10-21 14:46:21,023 [lib.cuckoo.core.plugins] DEBUG: Running signature \"modirat_behavior\"\r\n2021-10-21 14:46:21,024 [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_nanocore\"\r\n2021-10-21 14:46:21,025 [lib.cuckoo.core.plugins] DEBUG: Running signature \"NewtWire Behavior\"\r\n2021-10-21 14:46:21,025 [lib.cuckoo.core.plugins] DEBUG: Running signature \"njrat_regkeys\"\r\n2021-10-21 14:46:21,026 [lib.cuckoo.core.plugins] DEBUG: Running signature \"obliquerat_files\"\r\n2021-10-21 14:46:21,026 [lib.cuckoo.core.plugins] DEBUG: Running signature \"obliquerat_mutexes\"\r\n2021-10-21 14:46:21,027 [lib.cuckoo.core.plugins] DEBUG: Running signature \"obliquerat_network_activity\"\r\n2021-10-21 14:46:21,027 [lib.cuckoo.core.plugins] DEBUG: Running signature \"OrcusRAT Behavior\"\r\n2021-10-21 14:46:21,028 [lib.cuckoo.core.plugins] DEBUG: Running signature \"parallax_mutexes\"\r\n2021-10-21 14:46:21,028 [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_pcclient\"\r\n2021-10-21 14:46:21,029 [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_plugx_mutexes\"\r\n2021-10-21 14:46:21,029 [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_poisonivy_mutexes\"\r\n2021-10-21 14:46:21,030 [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_quasar_mutexes\"\r\n2021-10-21 14:46:21,030 [lib.cuckoo.core.plugins] DEBUG: Running signature \"ratsnif_mutexes\"\r\n2021-10-21 14:46:21,031 [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_spynet\"\r\n2021-10-21 14:46:21,032 [lib.cuckoo.core.plugins] DEBUG: Running signature \"trochilusrat_APIs\"\r\n2021-10-21 14:46:21,032 [lib.cuckoo.core.plugins] DEBUG: Running signature \"venomrat_mutexes\"\r\n2021-10-21 14:46:21,032 [lib.cuckoo.core.plugins] DEBUG: Running signature \"warzonerat_files\"\r\n2021-10-21 14:46:21,033 [lib.cuckoo.core.plugins] DEBUG: Running signature \"warzonerat_regkeys\"\r\n2021-10-21 14:46:21,034 [lib.cuckoo.core.plugins] DEBUG: Running signature \"xpertrat_files\"\r\n2021-10-21 14:46:21,035 [lib.cuckoo.core.plugins] DEBUG: Running signature \"xpertrat_mutexes\"\r\n2021-10-21 14:46:21,036 [lib.cuckoo.core.plugins] DEBUG: Running signature \"rat_xtreme_mutexes\"\r\n2021-10-21 14:46:21,036 [lib.cuckoo.core.plugins] DEBUG: Running signature \"reads_self\"\r\n2021-10-21 14:46:21,036 [lib.cuckoo.core.plugins] DEBUG: Running signature \"recon_beacon\"\r\n2021-10-21 14:46:21,037 [lib.cuckoo.core.plugins] DEBUG: Running signature \"recon_checkip\"\r\n2021-10-21 14:46:21,037 [lib.cuckoo.core.plugins] DEBUG: Running signature \"recon_fingerprint\"\r\n2021-10-21 14:46:21,038 [lib.cuckoo.core.plugins] DEBUG: Running signature \"recon_programs\"\r\n2021-10-21 14:46:21,039 [lib.cuckoo.core.plugins] DEBUG: Running signature \"recon_systeminfo\"\r\n2021-10-21 14:46:21,039 [lib.cuckoo.core.plugins] DEBUG: Running signature \"accesses_recyclebin\"\r\n2021-10-21 14:46:21,040 [lib.cuckoo.core.plugins] DEBUG: Running signature \"remcos_files\"\r\n2021-10-21 14:46:21,040 [lib.cuckoo.core.plugins] DEBUG: Running signature \"remcos_mutexes\"\r\n2021-10-21 14:46:21,041 [lib.cuckoo.core.plugins] DEBUG: Running signature \"remcos_regkeys\"\r\n2021-10-21 14:46:21,042 [lib.cuckoo.core.plugins] DEBUG: Running signature \"rdptcp_key\"\r\n2021-10-21 14:46:21,043 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_rdp_clip\"\r\n2021-10-21 14:46:21,043 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_remote_desktop_session\"\r\n2021-10-21 14:46:21,043 [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_networking_icon\"\r\n2021-10-21 14:46:21,044 [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_pinned_programs\"\r\n2021-10-21 14:46:21,045 [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_security_maintenance_icon\"\r\n2021-10-21 14:46:21,045 [lib.cuckoo.core.plugins] DEBUG: Running signature \"Removes_startmenu_defaults\"\r\n2021-10-21 14:46:21,047 [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_username_startmenu\"\r\n2021-10-21 14:46:21,047 [lib.cuckoo.core.plugins] DEBUG: Running signature \"removes_zoneid_ads\"\r\n2021-10-21 14:46:21,048 [lib.cuckoo.core.plugins] DEBUG: Running signature \"spicyhotpot_behavior\"\r\n2021-10-21 14:46:21,048 [lib.cuckoo.core.plugins] DEBUG: Running signature \"script_created_process\"\r\n2021-10-21 14:46:21,049 [lib.cuckoo.core.plugins] DEBUG: Running signature \"script_network_activity\"\r\n2021-10-21 14:46:21,049 [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_js_script\"\r\n2021-10-21 14:46:21,049 [lib.cuckoo.core.plugins] DEBUG: Running signature \"secure_login_phishing\"\r\n2021-10-21 14:46:21,050 [lib.cuckoo.core.plugins] DEBUG: Running signature \"securityxploded_modules\"\r\n2021-10-21 14:46:21,050 [lib.cuckoo.core.plugins] DEBUG: Running signature \"sets_autoconfig_url\"\r\n2021-10-21 14:46:21,051 [lib.cuckoo.core.plugins] DEBUG: Running signature \"shifu_behavior\"\r\n2021-10-21 14:46:21,051 [lib.cuckoo.core.plugins] DEBUG: Running signature \"sniffer_winpcap\"\r\n2021-10-21 14:46:21,052 [lib.cuckoo.core.plugins] DEBUG: Running signature \"spoofs_procname\"\r\n2021-10-21 14:46:21,052 [lib.cuckoo.core.plugins] DEBUG: Running signature \"spreading_autoruninf\"\r\n2021-10-21 14:46:21,052 [lib.cuckoo.core.plugins] DEBUG: Running signature \"stack_pivot\"\r\n2021-10-21 14:46:21,053 [lib.cuckoo.core.plugins] DEBUG: Running signature \"stack_pivot_file_created\"\r\n2021-10-21 14:46:21,053 [lib.cuckoo.core.plugins] DEBUG: Running signature \"stack_pivot_process_create\"\r\n2021-10-21 14:46:21,053 [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_authenticode\"\r\n2021-10-21 14:46:21,054 [lib.cuckoo.core.plugins] DEBUG: Running signature \"invalid_authenticode_signature\"\r\n2021-10-21 14:46:21,054 [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_dotnet_anomaly\"\r\n2021-10-21 14:46:21,055 [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_java\"\r\n2021-10-21 14:46:21,055 [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_pdf\"\r\n2021-10-21 14:46:21,055 [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_pe_anomaly\"\r\n2021-10-21 14:46:21,056 [lib.cuckoo.core.plugins] DEBUG: Running signature \"pe_compile_timestomping\"\r\n2021-10-21 14:46:21,056 [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_pe_pdbpath\"\r\n2021-10-21 14:46:21,056 [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_rat_config\"\r\n2021-10-21 14:46:21,057 [lib.cuckoo.core.plugins] DEBUG: Running signature \"static_versioninfo_anomaly\"\r\n2021-10-21 14:46:21,057 [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_childproc\"\r\n2021-10-21 14:46:21,057 [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_file\"\r\n2021-10-21 14:46:21,058 [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_hidden_extension\"\r\n2021-10-21 14:46:21,058 [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_hiddenreg\"\r\n2021-10-21 14:46:21,059 [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_hide_notifications\"\r\n2021-10-21 14:46:21,060 [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_network\"\r\n2021-10-21 14:46:21,060 [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_timeout\"\r\n2021-10-21 14:46:21,061 [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_webhistory\"\r\n2021-10-21 14:46:21,061 [lib.cuckoo.core.plugins] DEBUG: Running signature \"stealth_window\"\r\n2021-10-21 14:46:21,062 [lib.cuckoo.core.plugins] DEBUG: Running signature \"suricata_alert\"\r\n2021-10-21 14:46:21,062 [lib.cuckoo.core.plugins] DEBUG: Running signature \"sysinternals_psexec\"\r\n2021-10-21 14:46:21,063 [lib.cuckoo.core.plugins] DEBUG: Running signature \"sysinternals_tools\"\r\n2021-10-21 14:46:21,063 [lib.cuckoo.core.plugins] DEBUG: Running signature \"tampers_etw\"\r\n2021-10-21 14:46:21,064 [lib.cuckoo.core.plugins] DEBUG: Running signature \"lsa_tampering\"\r\n2021-10-21 14:46:21,065 [lib.cuckoo.core.plugins] DEBUG: Running signature \"tampers_powershell_logging\"\r\n2021-10-21 14:46:21,065 [lib.cuckoo.core.plugins] DEBUG: Running signature \"targeted_flame\"\r\n2021-10-21 14:46:21,066 [lib.cuckoo.core.plugins] DEBUG: Running signature \"territorial_disputes_sigs\"\r\n2021-10-21 14:46:21,086 [lib.cuckoo.core.plugins] DEBUG: Running signature \"tinba_behavior\"\r\n2021-10-21 14:46:21,086 [lib.cuckoo.core.plugins] DEBUG: Running signature \"TrickBotTaskDelete\"\r\n2021-10-21 14:46:21,087 [lib.cuckoo.core.plugins] DEBUG: Running signature \"trickbot_mutex\"\r\n2021-10-21 14:46:21,087 [lib.cuckoo.core.plugins] DEBUG: Running signature \"fleercivet_mutex\"\r\n2021-10-21 14:46:21,087 [lib.cuckoo.core.plugins] DEBUG: Running signature \"lokibot_mutexes\"\r\n2021-10-21 14:46:21,088 [lib.cuckoo.core.plugins] DEBUG: Running signature \"ursnif_behavior\"\r\n2021-10-21 14:46:21,090 [lib.cuckoo.core.plugins] DEBUG: Running signature \"troldesh_behavior\"\r\n2021-10-21 14:46:21,091 [lib.cuckoo.core.plugins] DEBUG: Running signature \"upatre_behavior\"\r\n2021-10-21 14:46:21,091 [lib.cuckoo.core.plugins] DEBUG: Running signature \"ursnif_behavior\"\r\n2021-10-21 14:46:21,092 [lib.cuckoo.core.plugins] DEBUG: Running signature \"user_enum\"\r\n2021-10-21 14:46:21,092 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_adfind\"\r\n2021-10-21 14:46:21,092 [lib.cuckoo.core.plugins] DEBUG: Running signature \"vawtrak_behavior\"\r\n2021-10-21 14:46:21,093 [lib.cuckoo.core.plugins] DEBUG: Running signature \"vawtrak_behavior\"\r\n2021-10-21 14:46:21,093 [lib.cuckoo.core.plugins] DEBUG: Running signature \"virus\"\r\n2021-10-21 14:46:21,094 [lib.cuckoo.core.plugins] DEBUG: Running signature \"neshta_files\"\r\n2021-10-21 14:46:21,094 [lib.cuckoo.core.plugins] DEBUG: Running signature \"neshta_mutexes\"\r\n2021-10-21 14:46:21,094 [lib.cuckoo.core.plugins] DEBUG: Running signature \"neshta_regkeys\"\r\n2021-10-21 14:46:21,095 [lib.cuckoo.core.plugins] DEBUG: Running signature \"renamer_mutexes\"\r\n2021-10-21 14:46:21,095 [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_devicetree_1\"\r\n2021-10-21 14:46:21,096 [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_handles_1\"\r\n2021-10-21 14:46:21,096 [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_ldrmodules_1\"\r\n2021-10-21 14:46:21,096 [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_ldrmodules_2\"\r\n2021-10-21 14:46:21,097 [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_malfind_1\"\r\n2021-10-21 14:46:21,097 [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_malfind_2\"\r\n2021-10-21 14:46:21,097 [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_modscan_1\"\r\n2021-10-21 14:46:21,098 [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_svcscan_1\"\r\n2021-10-21 14:46:21,098 [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_svcscan_2\"\r\n2021-10-21 14:46:21,098 [lib.cuckoo.core.plugins] DEBUG: Running signature \"volatility_svcscan_3\"\r\n2021-10-21 14:46:21,099 [lib.cuckoo.core.plugins] DEBUG: Running signature \"webmail_phish\"\r\n2021-10-21 14:46:21,099 [lib.cuckoo.core.plugins] DEBUG: Running signature \"owa_web_shell_files\"\r\n2021-10-21 14:46:21,100 [lib.cuckoo.core.plugins] DEBUG: Running signature \"web_shell_files\"\r\n2021-10-21 14:46:21,100 [lib.cuckoo.core.plugins] DEBUG: Running signature \"web_shell_processes\"\r\n2021-10-21 14:46:21,101 [lib.cuckoo.core.plugins] DEBUG: Running signature \"persists_dev_util\"\r\n2021-10-21 14:46:21,101 [lib.cuckoo.core.plugins] DEBUG: Running signature \"spawns_dev_util\"\r\n2021-10-21 14:46:21,101 [lib.cuckoo.core.plugins] DEBUG: Running signature \"whois_create\"\r\n2021-10-21 14:46:21,102 [lib.cuckoo.core.plugins] DEBUG: Running signature \"alters_windows_utility\"\r\n2021-10-21 14:46:21,102 [lib.cuckoo.core.plugins] DEBUG: Running signature \"dotnet_csc_build\"\r\n2021-10-21 14:46:21,102 [lib.cuckoo.core.plugins] DEBUG: Running signature \"multiple_explorer_instances\"\r\n2021-10-21 14:46:21,103 [lib.cuckoo.core.plugins] DEBUG: Running signature \"overwrites_accessibility_utility\"\r\n2021-10-21 14:46:21,103 [lib.cuckoo.core.plugins] DEBUG: Running signature \"script_tool_executed\"\r\n2021-10-21 14:46:21,103 [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_certutil_use\"\r\n2021-10-21 14:46:21,104 [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_command_tools\"\r\n2021-10-21 14:46:21,104 [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_mpcmdrun_use\"\r\n2021-10-21 14:46:21,105 [lib.cuckoo.core.plugins] DEBUG: Running signature \"suspicious_ping_use\"\r\n2021-10-21 14:46:21,105 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_powershell_copyitem\"\r\n2021-10-21 14:46:21,105 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities\"\r\n2021-10-21 14:46:21,106 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_appcmd\"\r\n2021-10-21 14:46:21,106 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_csvde_ldifde\"\r\n2021-10-21 14:46:21,107 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_cipher\"\r\n2021-10-21 14:46:21,107 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_clickonce\"\r\n2021-10-21 14:46:21,107 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_dsquery\"\r\n2021-10-21 14:46:21,108 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_esentutl\"\r\n2021-10-21 14:46:21,108 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_finger\"\r\n2021-10-21 14:46:21,108 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_mode\"\r\n2021-10-21 14:46:21,109 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_ntdsutil\"\r\n2021-10-21 14:46:21,109 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_nltest\"\r\n2021-10-21 14:46:21,109 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_to_create_scheduled_task\"\r\n2021-10-21 14:46:21,110 [lib.cuckoo.core.plugins] DEBUG: Running signature \"uses_windows_utilities_xcopy\"\r\n2021-10-21 14:46:21,110 [lib.cuckoo.core.plugins] DEBUG: Running signature \"wmic_command_suspicious\"\r\n2021-10-21 14:46:21,110 [lib.cuckoo.core.plugins] DEBUG: Running signature \"scrcons_wmi_script_consumer\"\r\n2021-10-21 14:46:21,111 [lib.cuckoo.core.plugins] DEBUG: Running signature \"wmi_create_process\"\r\n2021-10-21 14:46:21,111 [lib.cuckoo.core.plugins] DEBUG: Running signature \"wmi_script_process\"\r\n2021-10-21 14:46:21,112 [lib.cuckoo.core.plugins] DEBUG: Running signature \"allaple_mutexes\"\r\n2021-10-21 14:46:21,115 [root] DEBUG: Deleting analysis data for Task 176\r\n2021-10-21 14:46:21,119 [root] DEBUG: Deleted previous MongoDB data for Task 176\r\n2021-10-21 14:46:21,524 [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"BinGraph\"\r\n2021-10-21 14:46:21,525 [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"JsonDump\"\r\n2021-10-21 14:46:21,747 [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"LiteReport\"\r\n2021-10-21 14:46:21,784 [lib.cuckoo.core.plugins] INFO: Reporting module malheur not found in configuration file\r\n2021-10-21 14:46:21,786 [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"MITRE_TTPS\"\r\n2021-10-21 14:46:21,787 [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"PCAP2CERT\"\r\n2021-10-21 14:46:21,797 [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"ReportHTML\"\r\n2021-10-21 14:46:23,330 [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"ReportHTMLSummary\"\r\n2021-10-21 14:46:24,953 [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"ReSubmitExtractedEXE\"\r\n2021-10-21 14:46:25,062 [modules.reporting.resubmitexe] INFO: Resubmitexe file \"/opt/CAPEv2/storage/analyses/176/files/2ecad096b01acab19bebc0a8b96b5d79848e58d79f93dfe92e0b0ee7c01886fc_link/a9411c606c7e88468252.xls\" added as task with ID [177] resub count 0\r\n2021-10-21 14:46:25,062 [lib.cuckoo.core.plugins] ERROR: Failed to run the reporting module \"ReSubmitExtractedEXE\":\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 817, in process\r\n    current.run(self.results)\r\n  File \"/opt/CAPEv2/utils/../modules/reporting/resubmitexe.py\", line 445, in run\r\n    self.results[\"resubs\"].append(task_id)\r\nKeyError: 'resubs'\r\n2021-10-21 14:46:25,063 [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"SubmitCAPE\"\r\n2021-10-21 14:46:25,064 [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"ReportPDF\"\r\nQStandardPaths: XDG_RUNTIME_DIR not set, defaulting to '/tmp/runtime-cape'\r\n2021-10-21 14:46:27,625 [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"MongoDB\"\r\n2021-10-21 14:46:28,031 [modules.reporting.mongodb] DEBUG: Deleting analysis data for Task 176\r\n2021-10-21 14:46:28,033 [modules.reporting.mongodb] DEBUG: Deleted previous MongoDB data for Task 176\r\n2021-10-21 14:46:28,847 [root] INFO: Task #176: reports generation completed\r\n```\r\n\r\n\r\n\nComment: i don't see anything that could be related to failed analysis. the resubs i have fixed not sure who wrote that code, but that not affecting reporting. so i guess you need to investigate your enveroment\nComment: @doomedraven Thanks for the response! Is there anything or any library in specific I should focus on?\r\n\r\nHere is the build script if it helps\r\n```bash\r\n\r\nPROMISC_INT=\"ens224\"\r\n\r\n# Apply updates and cleanup Apt cache\r\n# packer build --var-file=variables.json ubuntu-2004.json\r\napt-get update ; apt-get -y dist-upgrade\r\napt-get -y autoremove\r\napt-get -y clean\r\napt-get install docker.io docker-compose open-iscsi git curl net-tools nfs-common nfs-kernel-server python-tk -y\r\n\r\n# Disable swap - generally recommended for K8s, but otherwise enable it for other workloads\r\necho \"Disabling Swap\"\r\nswapoff -a\r\nsed -i '/ swap / s/^\\(.*\\)$/#\\1/g' /etc/fstab\r\n\r\n# Reset the machine-id value. This has known to cause issues with DHCP\r\necho \"Reset Machine-ID\"\r\ntruncate -s 0 /etc/machine-id\r\nrm /var/lib/dbus/machine-id\r\nln -s /etc/machine-id /var/lib/dbus/machine-id\r\n\r\n# Reset any existing cloud-init state\r\necho \"Reset Cloud-Init\"\r\nrm /etc/cloud/cloud.cfg.d/*.cfg\r\ncloud-init clean -s -l\r\n\r\n# Prevent cloud-init from setting IP\r\necho \"Disabling cloud-init networking\"\r\nbash -c \"echo 'network: {config: disabled}' > /etc/cloud/cloud.cfg.d/99-disable-network-config.cfg\"\r\n\r\n################################################\r\n#DOCKER STUFFZ\r\n################################################\r\n# Fix docker groups\r\nuseradd -g docker -m docker \r\n\r\n# Set docker net as 172.220.0.0./16\r\ncat <<'EOF' >>/etc/docker/daemon.json\r\n{\r\n \"default-address-pools\":\r\n [\r\n {\"base\":\"172.220.0.0/16\",\"size\":24}\r\n ]\r\n}\r\nEOF\r\n\r\n################################################\r\n# GIT STUFFZ\r\n################################################\r\n\r\n# Add our ssh key for git access\r\nmkdir -p /home/admin/.ssh/\r\ncat <<'EOF' >>/home/admin/.ssh/id_ed25519\r\n\r\nEOF\r\n\r\n# Import GH's SSH keys\r\nssh-keyscan gitlab.com | sudo tee  /etc/ssh/ssh_known_hosts\r\nssh-keyscan gitlab.com >>  /home/admin/.ssh/known_hosts\r\nssh-keyscan gitlab.com >>  .ssh/known_hosts\r\n\r\n# Fix key perms\r\nchmod 600 /home/admin/.ssh/id_ed25519\r\n\r\n\r\n# Fixes Elastic Serach\r\necho \"vm.max_map_count = 262144\" | sudo tee -a /etc/sysctl.conf\r\n\r\n# Puts interface in promisc \r\necho \"/usr/sbin/ifconfig $PROMISC_INT promisc\" | sudo tee -a /etc/rc.local\r\n\r\n\r\n################################################\r\n# NGINX STUFFZ\r\n################################################\r\n\r\n#install nginx\r\nsudo apt -y install nginx\r\n\r\n# Remove Nginx Default config\r\nsudo rm /etc/nginx/sites-available/default\r\nsudo rm /etc/nginx/sites-enabled/default\r\n\r\n# Add nginx reverse proxy config\r\nmkdir -p /etc/nginx/tls\r\n\r\ncat <<'EOF' >>/etc/nginx/tls/cert.key\r\n\r\nEOF\r\n\r\ncat <<'EOF' >>/etc/nginx/tls/cert.crt\r\n-----BEGIN CERTIFICATE-----\r\nMIIGQTCCBSmgAwIBAgIJALwGPoyVJA75MA0GCSqGSIb3DQEBCwUAMIG0MQswCQYD\r\nVQQGEwJVUzEQMA4GA1UECBMHQXJpem9uYTETMBEGA1UEBxMKU2NvdHRzZGFsZTEa\r\nMBgGA1UEChMRR29EYWRkeS5jb20sIEluYy4xLTArBgNVBAsTJGh0dHA6Ly9jZXJ0\r\ncy5nb2RhZGR5LmNvbS9yZXBvc2l0b3J5LzEzMDEGA1UEAxMqR28gRGFkZHkgU2Vj\r\ndXJlIENlcnRpZmljYXRlIEF1dGhvcml0eSAtIEcyMB4XDTIxMDEyMTIyMTgxN1oX\r\nDTIyMDIyMjIyMTgxN1owPzEhMB8GA1UECxMYRG9tYWluIENvbnRyb2wgVmFsaWRh\r\ndGVkMRowGAYDVQQDDBEqLmluZm9zZWMtb3BzLmNvbTCCASIwDQYJKoZIhvcNAQEB\r\nBQADggEPADCCAQoCggEBANtr4IqU0p9qgdkNBvkx/eEmbQJS8rc1UF52AdlTyWcR\r\nTK1WiHKFXZ03QSN42CD8EpPeQQLQ/Ch5aSZIOEV8I6P+7QwqQT+htTMQiHZM02Sj\r\nBDpvRtjAWAgl5kt++CX2Rc1belNA8VCk/4ow57rrDr0oldOAUnPX4xlLyfEHzlv3\r\nhlZ8uUhZkRndVjz2CZ9Y/oa7MZ9Ky2wNuYm3voxtYoXUEN43Ne9N7WbuBSPyFdtx\r\nN+jiQzJo86QeCIAtViQSfH2laYE1alN6a8Saxt/+QyZ5PEC1RPgg/9+D1KTfcg2g\r\nx9A76gZ2/mjVoaMG4vW6WRB5FKQGyywLT/eDu66wS0UCAwEAAaOCAsgwggLEMAwG\r\nA1UdEwEB/wQCMAAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMA4GA1Ud\r\nDwEB/wQEAwIFoDA4BgNVHR8EMTAvMC2gK6AphidodHRwOi8vY3JsLmdvZGFkZHku\r\nY29tL2dkaWcyczEtMjYzNi5jcmwwXQYDVR0gBFYwVDBIBgtghkgBhv1tAQcXATA5\r\nMDcGCCsGAQUFBwIBFitodHRwOi8vY2VydGlmaWNhdGVzLmdvZGFkZHkuY29tL3Jl\r\ncG9zaXRvcnkvMAgGBmeBDAECATB2BggrBgEFBQcBAQRqMGgwJAYIKwYBBQUHMAGG\r\nGGh0dHA6Ly9vY3NwLmdvZGFkZHkuY29tLzBABggrBgEFBQcwAoY0aHR0cDovL2Nl\r\ncnRpZmljYXRlcy5nb2RhZGR5LmNvbS9yZXBvc2l0b3J5L2dkaWcyLmNydDAfBgNV\r\nHSMEGDAWgBRAwr0njsw0gzCiM9f7bLPwtCyAzjAtBgNVHREEJjAkghEqLmluZm9z\r\nZWMtb3BzLmNvbYIPaW5mb3NlYy1vcHMuY29tMB0GA1UdDgQWBBS6CeA5IVxAojPR\r\nHBuJzPhEkbe/sDCCAQMGCisGAQQB1nkCBAIEgfQEgfEA7wB1ACl5vvCeOTkh8FZz\r\nn2Old+W+V32cYAr4+U1dJlwlXceEAAABdycG4xEAAAQDAEYwRAIgU2O7zTk6+dmy\r\ngalOQ5Y76Dp1BQHfR91SxncP0TuagP0CIBjgBdIuorH709vh4khDLmn/B7mFTqJI\r\n34muKGN5JDjJAHYAIkVFB1lVJFaWP6Ev8fdthuAjJmOtwEt/XcaDXG7iDwIAAAF3\r\nJwbkRwAABAMARzBFAiACKQb62BnD0LzncgOpWWpc73Fd7W24xL6HuDGAXMKcuwIh\r\nAIii4+kj/tHU+PKrtGvpSi3tDD7w2bNNw96kcseEaUt+MA0GCSqGSIb3DQEBCwUA\r\nA4IBAQCdrHBsufz7rhQ42f3c37bfOd4BaSjr0ODIB1V3xP19E1hvkHfr/g31m1FI\r\nWjIk3OK2D2GyR5+C91aII2HqDFJHyiPSwYB+FVFZkCmulwkFsw/rAIbcxSsSYE3R\r\n9G035nb+9cTSSmFnn8oqqra6HU/5IeyUrirsP6SKTilV3utVaFIKeBAQ9Mt5z/rq\r\nA9TrB0jA+4mJAKg1qcO1fyBuCgVJOqFfN/hQLjvRiryA8rgLsdC0TJsJb/Cpk0cN\r\njLOoKu93GAlCvqADhCBJaiSjqQPy7dZEODjsovSoduLUh/O8yvi8sei4Bgpx5HCe\r\ngDQb/zZ7OSmfbqeEiRWOt49nJqGV\r\n-----END CERTIFICATE-----\r\n-----BEGIN CERTIFICATE-----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\r\nLXY2JtwE65/3YR8V3Idv7kaWKK2hJn0KCacuBKONvPi8BDAB\r\n-----END CERTIFICATE-----\r\n-----BEGIN CERTIFICATE-----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\r\nrw==\r\n-----END CERTIFICATE-----\r\n-----BEGIN CERTIFICATE-----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\r\nReYNnyicsbkqWletNw+vHX/bvZ8=\r\n-----END CERTIFICATE-----\r\nEOF\r\n\r\ncat <<'EOF' >>/etc/nginx/sites-available/cuckoo\r\nserver {\r\n    listen 80;\r\n    listen [::]:80;\r\n    listen 443 ssl;\r\n    listen [::]:443 ssl;\r\n\r\n\r\n    ssl_certificate     /etc/nginx/tls/cert.crt;\r\n    ssl_certificate_key /etc/nginx/tls/cert.key;\r\n    client_max_body_size 1024M;\r\n\r\n    server_name proxmox.<REMOVED>.com;\r\n\r\n\r\n    location / {\r\n        proxy_pass https://100.64.42.2:8006;\r\n        proxy_http_version  1.1;\r\n        proxy_cache_bypass  $http_upgrade;\r\n        proxy_buffering off;\r\n        client_max_body_size 0;\r\n        proxy_connect_timeout  3600s;\r\n        proxy_read_timeout  3600s;\r\n        proxy_send_timeout  3600s;\r\n        send_timeout  3600s;\r\n        proxy_set_header Upgrade           $http_upgrade;\r\n        proxy_set_header Connection        \"upgrade\";\r\n        proxy_set_header Host              $host;\r\n        proxy_set_header X-Real-IP         $remote_addr;\r\n        proxy_set_header X-Forwarded-For   $proxy_add_x_forwarded_for;\r\n        proxy_set_header X-Forwarded-Proto $scheme;\r\n        proxy_set_header X-Forwarded-Host  $host;\r\n        proxy_set_header X-Forwarded-Port  $server_port;\r\n    } \r\n}\r\nserver {\r\n    listen 80;\r\n    listen [::]:80;\r\n    listen 443 ssl;\r\n    listen [::]:443 ssl;\r\n\r\n\r\n    ssl_certificate     /etc/nginx/tls/cert.crt;\r\n    ssl_certificate_key /etc/nginx/tls/cert.key;\r\n    client_max_body_size 1024M;\r\n\r\n    server_name sandboxintel.<REMOVED>.com;\r\n\r\n\r\n    location / {\r\n        proxy_pass https://100.64.42.6;\r\n        proxy_http_version  1.1;\r\n        proxy_cache_bypass  $http_upgrade;\r\n        proxy_buffering off;\r\n        client_max_body_size 0;\r\n        proxy_connect_timeout  3600s;\r\n        proxy_read_timeout  3600s;\r\n        proxy_send_timeout  3600s;\r\n        send_timeout  3600s;\r\n        proxy_set_header Upgrade           $http_upgrade;\r\n        proxy_set_header Connection        \"upgrade\";\r\n        proxy_set_header Host              $host;\r\n        proxy_set_header X-Real-IP         $remote_addr;\r\n        proxy_set_header X-Forwarded-For   $proxy_add_x_forwarded_for;\r\n        proxy_set_header X-Forwarded-Proto $scheme;\r\n        proxy_set_header X-Forwarded-Host  $host;\r\n        proxy_set_header X-Forwarded-Port  $server_port;\r\n    } \r\n}\r\nserver {\r\n    listen 80 default_server;\r\n    listen [::]:80 default_server;\r\n    listen 443 ssl default_server;\r\n    listen [::]:443 ssl default_server;\r\n\r\n\r\n    ssl_certificate     /etc/nginx/tls/cert.crt;\r\n    ssl_certificate_key /etc/nginx/tls/cert.key;\r\n\r\n    client_max_body_size 1024M;\r\n\r\n    server_name sandbox.<REMOVED>.com;\r\n\r\n    \r\n\r\n\r\n    location / {\r\n        proxy_pass http://127.0.0.1:8000;\r\n        proxy_http_version  1.1;\r\n        proxy_cache_bypass  $http_upgrade;\r\n\r\n        proxy_set_header Upgrade           $http_upgrade;\r\n        proxy_set_header Connection        \"upgrade\";\r\n        proxy_set_header Host              $host;\r\n        proxy_set_header X-Real-IP         $remote_addr;\r\n        proxy_set_header X-Forwarded-For   $proxy_add_x_forwarded_for;\r\n        proxy_set_header X-Forwarded-Proto $scheme;\r\n        proxy_set_header X-Forwarded-Host  $host;\r\n        proxy_set_header X-Forwarded-Port  $server_port;\r\n    } \r\n\r\n}\r\nEOF\r\nsudo ln -s  /etc/nginx/sites-available/cuckoo /etc/nginx/sites-enabled/\r\nsudo nginx -t\r\n\r\necho \"[+] Setting NIC SETTINGS\"\r\ncat <<'EOF' >>/etc/netplan/01-netcfg.yaml\r\nnetwork:\r\n    version: 2\r\n    renderer: networkd\r\n    ethernets:\r\n        ens192:\r\n            addresses:\r\n                - 100.64.42.10/24\r\n            gateway4: 100.64.42.1\r\n            nameservers:\r\n                addresses: [100.64.42.1, 1.1.1.1]\r\n        ens224:\r\n            addresses:\r\n                - 100.64.82.10/24\r\nEOF\r\n\r\n\r\nsudo mkdir -p /mnt/malshare/\r\n\r\necho \"[+] Mounting Malshare\"\r\nsudo mount -t nfs 100.64.42.100:/malshare /mnt/malshare/\r\necho \"100.64.42.100:/malshare /mnt/malshare/  nfs      auto,rw,hard,intr,nofail    0       0 \" | sudo tee -a /etc/fstab\r\n\r\necho \"[+] Making Malshare DIRs\"\r\nsudo mkdir -p /mnt/malshare/cape/\r\nsudo mkdir -p /mnt/malshare/cape/storage/\r\nsudo mkdir -p /mnt/malshare/cape/mongo/\r\nsudo mkdir -p /mnt/malshare/cape/postgres/\r\n\r\necho \"[+] Installing CAPE\"\r\nwget https://raw.githubusercontent.com/mwatermolen/Tools/master/Sandbox/cape2.sh\r\nchmod a+x cape2.sh\r\nsudo ./cape2.sh all ens224 100.64.42.10 eduhgkwehrgurhr89hy\r\n\r\necho \"[+] Installing PIP packages\"\r\nsudo pip3 install -U imagehash proxmoxer\r\n\r\necho \"[+] Making Symlinks to Malshare\"\r\nsudo rm -rf /opt/CAPEv2/storage\r\nsudo ln -s  /mnt/malshare/cape/storage/ /opt/CAPEv2/storage \r\n\r\necho \"[+] Fixing Permissions\"\r\nsudo chown  -R mwatermolen:cape /opt/CAPEv2\r\nsudo chmod  -R 774 /opt/CAPEv2\r\n\r\necho \"[+] Fixing Linking to Postgres\"\r\nsudo systemctl stop postgresql\r\nrm -rf /mnt/malshare/cape/postgres/*                                            # !!!Initalize ONLY!!!\r\nsudo rsync -av /var/lib/postgresql/12/main/* /mnt/malshare/cape/postgres/       # !!!Initalize ONLY!!!\r\nrm -rf /var/lib/postgresql/12/main\r\nsudo ln -s  /mnt/malshare/cape/postgres/ /var/lib/postgresql/12/main\r\nsudo systemctl start postgresql\r\n\r\necho \"[+] Fixing Linking to MongoDB\"\r\nsudo systemctl stop mongodb\r\nrm -rf /mnt/malshare/cape/mongo/*                                               # !!!Initalize ONLY!!!\r\nsudo rsync -av /data/* /mnt/malshare/cape/mongo/                                # !!!Initalize ONLY!!!\r\nrm -rf /data\r\nsudo ln -s  /mnt/malshare/cape/mongo/ /data\r\nsudo systemctl start mongodb\r\n\r\necho \"[+] Fixing Permissions\"\r\nsudo chown  -R postgres:postgres /var/lib/postgresql/12/\r\nsudo chmod -R 700 /var/lib/postgresql/12/\r\nsudo chown  -R mongodb:mongodb /data/\r\n\r\necho \"[+] Installing CAPE Config\"\r\ncd /opt/CAPEv2\r\necho \"$conf\" | base64 -d > /tmp/conf.tgz\r\ntar -xvzf /tmp/conf.tgz\r\n\r\n\r\necho \"[+] Fixing PostgreSQL :| (THIS IS WHY MYSQL IS BETTER)\"\r\nsudo sed -i \"s/After\\=network\\.target/After\\=remote-fs\\.target/gI\" /lib/systemd/system/postgresql@.service\r\nsudo sed -i '/^After\\=remote-fs\\.target/a RequiresMountsFor\\=/mnt/malshare/cape/postgres/' /lib/systemd/system/postgresql@.service\r\nsudo systemctl daemon-reload\r\n\r\n\r\necho \"[+] Enableing boot start\"\r\nsudo systemctl enable postgresql\r\nsudo systemctl enable mongodb\r\n\r\necho \"[+] Migrating Tables\"\r\ncd /opt/CAPEv2/web \r\npython3 manage.py check\r\npython3 manage.py migrate\r\n\r\n\r\ndf -h\r\nls -lah /\r\nls -lah /opt/CAPEv2/\r\nls -lah /var/lib/postgresql/12/\r\n\r\n\r\n```\nComment: read the logs, logs always have the answers whats going on\nComment: @doomedraven not 100% sure this is from the same task, but I am seeing a lot if this error, I did increase memory to 16GB\r\n\r\n```\r\nmemory allocation of 4427584 bytes failed\r\n--- Logging error ---\r\nTraceback (most recent call last):\r\n  File \"process.py\", line 196, in processing_finished\r\n    result = future.result()\r\n  File \"/usr/lib/python3.8/concurrent/futures/_base.py\", line 437, in result\r\n    return self.__get_result()\r\n  File \"/usr/lib/python3.8/concurrent/futures/_base.py\", line 389, in __get_result\r\n    raise self._exception\r\npebble.common.ProcessExpired: Abnormal termination\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"/usr/lib/python3.8/logging/__init__.py\", line 1085, in emit\r\n    msg = self.format(record)\r\n  File \"/usr/lib/python3.8/logging/__init__.py\", line 929, in format\r\n    return fmt.format(record)\r\n  File \"/usr/lib/python3.8/logging/__init__.py\", line 668, in format\r\n    record.message = record.getMessage()\r\n  File \"/usr/lib/python3.8/logging/__init__.py\", line 373, in getMessage\r\n    msg = msg % self.args\r\nTypeError: not enough arguments for format string\r\nCall stack:\r\n  File \"/usr/lib/python3.8/threading.py\", line 890, in _bootstrap\r\n    self._bootstrap_inner()\r\n  File \"/usr/lib/python3.8/threading.py\", line 932, in _bootstrap_inner\r\n    self.run()\r\n  File \"/usr/lib/python3.8/threading.py\", line 870, in run\r\n    self._target(*self._args, **self._kwargs)\r\n  File \"/usr/local/lib/python3.8/dist-packages/pebble/pool/process.py\", line 179, in pool_manager_loop\r\n    pool_manager.update_status()\r\n  File \"/usr/local/lib/python3.8/dist-packages/pebble/pool/process.py\", line 234, in update_status\r\n    self.update_workers()\r\n  File \"/usr/local/lib/python3.8/dist-packages/pebble/pool/process.py\", line 251, in update_workers\r\n    self.handle_worker_expiration(expiration)\r\n  File \"/usr/local/lib/python3.8/dist-packages/pebble/pool/process.py\", line 264, in handle_worker_expiration\r\n    self.task_manager.task_done(task.id, error)\r\n  File \"/usr/local/lib/python3.8/dist-packages/pebble/pool/process.py\", line 306, in task_done\r\n    task.future.set_exception(result)\r\n  File \"/usr/lib/python3.8/concurrent/futures/_base.py\", line 553, in set_exception\r\n    self._invoke_callbacks()\r\n  File \"/usr/lib/python3.8/concurrent/futures/_base.py\", line 328, in _invoke_callbacks\r\n    callback(self)\r\n  File \"process.py\", line 202, in processing_finished\r\n    log.error(\"Exception when processing task %s: %s, Exitcode: %d\", task_id, error)\r\n  File \"/usr/lib/python3.8/logging/__init__.py\", line 1475, in error\r\n    self._log(ERROR, msg, args, **kwargs)\r\n  File \"/usr/lib/python3.8/logging/__init__.py\", line 1589, in _log\r\n    self.handle(record)\r\n  File \"/usr/lib/python3.8/logging/__init__.py\", line 1599, in handle\r\n    self.callHandlers(record)\r\n  File \"/usr/lib/python3.8/logging/__init__.py\", line 1661, in callHandlers\r\n    hdlr.handle(record)\r\n  File \"/usr/lib/python3.8/logging/__init__.py\", line 954, in handle\r\n    self.emit(record)\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/startup.py\", line 161, in emit\r\n    logging.StreamHandler.emit(self, colored)\r\nMessage: '\\x1b[31mException when processing task %s: %s, Exitcode: %d\\x1b[0m'\r\nArguments: (211, ProcessExpired('Abnormal termination'))\r\n--- Logging error ---\r\nTraceback (most recent call last):\r\n  File \"process.py\", line 196, in processing_finished\r\n    result = future.result()\r\n  File \"/usr/lib/python3.8/concurrent/futures/_base.py\", line 437, in result\r\n    return self.__get_result()\r\n  File \"/usr/lib/python3.8/concurrent/futures/_base.py\", line 389, in __get_result\r\n    raise self._exception\r\npebble.common.ProcessExpired: Abnormal termination\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"/usr/lib/python3.8/logging/__init__.py\", line 1085, in emit\r\n    msg = self.format(record)\r\n  File \"/usr/lib/python3.8/logging/__init__.py\", line 929, in format\r\n    return fmt.format(record)\r\n  File \"/usr/lib/python3.8/logging/__init__.py\", line 668, in format\r\n    record.message = record.getMessage()\r\n  File \"/usr/lib/python3.8/logging/__init__.py\", line 373, in getMessage\r\n    msg = msg % self.args\r\nTypeError: not enough arguments for format string\r\nCall stack:\r\n  File \"/usr/lib/python3.8/threading.py\", line 890, in _bootstrap\r\n    self._bootstrap_inner()\r\n  File \"/usr/lib/python3.8/threading.py\", line 932, in _bootstrap_inner\r\n    self.run()\r\n  File \"/usr/lib/python3.8/threading.py\", line 870, in run\r\n    self._target(*self._args, **self._kwargs)\r\n  File \"/usr/local/lib/python3.8/dist-packages/pebble/pool/process.py\", line 179, in pool_manager_loop\r\n    pool_manager.update_status()\r\n  File \"/usr/local/lib/python3.8/dist-packages/pebble/pool/process.py\", line 234, in update_status\r\n    self.update_workers()\r\n  File \"/usr/local/lib/python3.8/dist-packages/pebble/pool/process.py\", line 251, in update_workers\r\n    self.handle_worker_expiration(expiration)\r\n  File \"/usr/local/lib/python3.8/dist-packages/pebble/pool/process.py\", line 264, in handle_worker_expiration\r\n    self.task_manager.task_done(task.id, error)\r\n  File \"/usr/local/lib/python3.8/dist-packages/pebble/pool/process.py\", line 306, in task_done\r\n    task.future.set_exception(result)\r\n  File \"/usr/lib/python3.8/concurrent/futures/_base.py\", line 553, in set_exception\r\n    self._invoke_callbacks()\r\n  File \"/usr/lib/python3.8/concurrent/futures/_base.py\", line 328, in _invoke_callbacks\r\n    callback(self)\r\n  File \"process.py\", line 202, in processing_finished\r\n    log.error(\"Exception when processing task %s: %s, Exitcode: %d\", task_id, error)\r\nMessage: 'Exception when processing task %s: %s, Exitcode: %d'\r\nArguments: (211, ProcessExpired('Abnormal termination'))\r\n```\nComment: So on that last error, rescaled to 32 GB and switched to 6 threads and now it seems resolved... Could this have been purely a memory issue?\nComment: maybe, closed as fixed\nComment: about pebble, there is RAM usage limit in process.py\r\n\r\nthere is code in utils/process.py to kill if there is super little RAM left\r\n\r\n```\r\n# https://stackoverflow.com/questions/41105733/limit-ram-usage-to-python-program\r\ndef memory_limit(percentage: float = 0.8):\r\n    if platform.system() != \"Linux\":\r\n        print('Only works on linux!')\r\n        return\r\n    _, hard = resource.getrlimit(resource.RLIMIT_AS)\r\n    resource.setrlimit(resource.RLIMIT_AS, (int(get_memory() * 1024 * percentage), hard))\r\n\r\ndef get_memory():\r\n    with open('/proc/meminfo', 'r') as mem:\r\n        free_memory = 0\r\n        for i in mem:\r\n            sline = i.split()\r\n            if str(sline[0]) == 'MemAvailable:':\r\n                free_memory = int(sline[1])\r\n                break\r\n    return free_memory\r\n```\r\n\r\nso if you using all ram, that probably will need your mods",
+  "Title: Python Version for Host\nBody: ```\r\nA huge thank you to @D00m3dR4v3n for single-handedly porting CAPE to Python 3.\r\n\r\nPython3\r\nagent.py is tested with python (3.7.2|3.8) x86. You should use x86 python version inside of the VM!\r\nhost tested with python3 version 3.7\r\n```\r\n\r\nI'm curious if the python version for the Host is pinned to 3.7. The cape2.sh file installs python version 3.10.x on Ubuntu 20.04. I was wondering if I needed to set the python to 3.7 in the script before running the install. \r\n\nComment: Hello, nah you can use latest just fine\n\nEl mi\u00e9., 20 oct. 2021 0:46, nbyt3 ***@***.***> escribi\u00f3:\n\n> A huge thank you to @D00m3dR4v3n for single-handedly porting CAPE to Python 3.\n>\n> Python3\n> agent.py is tested with python (3.7.2|3.8) x86. You should use x86 python version inside of the VM!\n> host tested with python3 version 3.7\n>\n> I'm curious if the python version for the Host is pinned to 3.7. The\n> cape2.sh file installs python version 3.10.x on Ubuntu 20.04. I was\n> wondering if I needed to set the python to 3.7 in the script before running\n> the install.\n>\n> \u2014\n> You are receiving this because you are subscribed to this thread.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/607>, or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH34DK6WI7B7E5NVYPXLUHXYMJANCNFSM5GKHUYRA>\n> .\n> Triage notifications on the go with GitHub Mobile for iOS\n> <https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675>\n> or Android\n> <https://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub>.\n>\n>\n",
+  "Title: update http logic for SquirrelWaffle\nBody: better to use http.request_line here instead of split method/uri.",
+  "Title: Introducing CENTS reporting module\nBody: Support for automated Suricata rules based on extracted configurations with the initial implementation supporting Remcos, SquirrelWaffle, and TrickBot.\r\n\r\nThis feature will be presented in depth during [SURICON](https://suricon.net/agenda/)\r\n\r\n> Jack Mott, Brandon Murphy, and Konstantin Klinger\r\n> \r\n> Malware is increasingly using encryption and TLS for command-and-control network traffic. This increased adoption has resulted in difficulty when creating typical network intrusion detection signatures. However, it is often possible to extract the configuration of a malware sample including DGA seeds, C2 domains/ports, crypto keys, version number, etc. These details can be used to determine what post-exploitation or post-infection network communication can be expected from the malware in later stages of malware execution.\r\n> \r\n> This presentation will demonstrate how to leverage existing extracted configuration parameters from Cape Sandbox to generate Suricata signatures. While this is easy on a per sample basis, any solution should be scalable and enable automatic signature creation for the most common malware families. Our proposed solution, CENTS \u2013 Configuration Extraction to Network Traffic Signatures, will demonstrate one method of achieving automated coverage for the most common malware families which use encryption and TLS.\r\n\r\nFeel free to squash as needed.\nComment: nice stuff thank you a lot\nComment: Awesome",
+  "Title: [add] entry secret_key.py to be ingored\nBody: do not track _secret_key.py_ once it's generated the first time the web app is started",
+  "Title: Binary not executed using subprocess command\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nMalware successfully executes and logs execution of exe.\r\n\r\n# Current Behavior\r\n\r\nThe binary of the hash below does not execute through CAPE, but clicking manually does execute the binary within the VM.\r\n\r\n# Failure Information (for bugs)\r\n\r\nI am seeing the successful execution of the binary as triggered by CAPE but I'm not seeing the dropped files or process execution in the WMI logs. If I manually execute the binary I do see the expected files and logs. \r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\nRun the following hash in CAPE: https://app.any.run/tasks/f01d4374-9e17-4a07-aed9-0858019de614/\r\nWindows 10 x64 VM\r\n\r\n## Context\r\n\r\nInstalled CAPE using the cape2.sh script. Running the sandbox through Vsphere on a Win10 x64 VM.\r\n\r\n## Failure Logs\r\n![image](https://user-images.githubusercontent.com/55763581/137497815-c7ba4326-0467-4874-937d-369a98c2eb69.png)\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: interesting first time that i see that h.isAlive() error, but pipe is closed on your side for some reason, see server side log of inside of `/opt/CAPEv2/logs/cuckoo.log` to see if there is any other errors\nComment: I see a few more errors. I'm running the agent.py from the ProgramData directory and I am seeing some access denied errors trying to stop the IP Helper service and injecting a dll:\r\n![image](https://user-images.githubusercontent.com/55763581/137499312-0d8f8aa7-f950-43a1-9c4c-e8ce0c94337f.png)\r\n\r\nI tested starting the agent.py as administrator cmd and didn't see those service and inject errors. I also double checked that the current user is in the administrators group. \nComment: yep administrador isn't the same as system, so that could be part of the problem maybe + probably need to disable some win10 defense features, maybe you already did that idk\nComment: I will double check the user group for system in case. We did disable all Win10 defense features. Defender, firewall, antivirus are all off. It does look like the agent's exec process is triggered and the subprocess does try to execute the file in the target path. I however, don't see any logs in EventViewer or in CAPE that it was successfully executed.\nComment: ![image](https://user-images.githubusercontent.com/55763581/137503097-d1256aac-e1cb-4618-a6e2-93845e965ab3.png)\r\n\r\nI ran elastic endpoint on detect only mode and saw that the \"oldloader\" was detected but I did not explicitly set the \"oldloader\" option in the submit section. \r\n\r\n```\r\nmalware, intrusion_detection, file event with process python.exe, parent process py.exe, file oldloader.exe, by cyborgbob on METADetonate created critical alert Malware Detection Alert.\r\n```\nComment: oh that is dotnet sample, as far as i know there is problem with that btw, but @kevoreilly  can bring more info\nComment: Sadly I can't reproduce this issue... Sample seems to run absolutely fine on my Win10x64:\r\n\r\n![image](https://user-images.githubusercontent.com/22219888/138031326-8e2302d7-ceb5-4c8c-bec1-5b27eab73e3d.png)\r\n\r\n[analysis.log](https://github.com/kevoreilly/CAPEv2/files/7378242/analysis.log)\r\n\r\nAlso it runs fine on Win7: https://capesandbox.com/analysis/198693 \nComment: thank you for checking and running against your environment. I'm not getting the same results as you on the Win10x64 VM as the second `tmp` file did not execute, but I'm making progress!!!\r\n\r\nI narrowed the initial issue with running python -v 3.10.x on the guest instead of 3.7|3.8.",
+  "Title: Processing failed due to Processing Timeout\nBody: # Prerequisites\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [+] I am running the latest version\r\n- [+] I checked the documentation and found no answer\r\n- [+] I checked to make sure that this issue has not already been filed\r\n- [+] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [+] I'm have read all configs with all optional parts\r\n\r\n# Expected Behavior\r\nAfter a long time of running cape processing a failure is reported, processing didn't finish. Web Interface don't show any results. Only process.log contains some errors (ie. also Volatility3 won't run!?), at the end you can see:\r\n\r\n`ERROR: Processing Timeout ('Task timeout', 900)`\r\n\r\n# Current Behavior\r\nProcessing should successfully finished and the analysis results can be seen into the web interface.\r\n\r\n# Failure Information (for bugs)\r\nSee attached log.\r\n\r\n## Steps to Reproduce\r\nStandard installation by using kvm-cape2.sh and cape2.sh into Ubuntu 20.04 LTS. Standard configuration, nothing specific. No additional yara rules added. Processing of different Malware samples does work correctly. CAPEv2 is running with the current version from Github.\r\n\r\n## Failure Logs\r\n[process_failed.log](https://github.com/kevoreilly/CAPEv2/files/7339672/process_failed.log)\r\n\r\n\r\n\nComment: Change the timeout in systemd of cape-processor\n\nEl mi\u00e9., 13 oct. 2021 17:53, Thomas ***@***.***> escribi\u00f3:\n\n> Prerequisites\n>\n> Please answer the following questions for yourself before submitting an\n> issue.\n>\n>    - [+] I am running the latest version\n>    - [+] I checked the documentation and found no answer\n>    - [+] I checked to make sure that this issue has not already been filed\n>    - [+] I'm reporting the issue to the correct repository (for\n>    multi-repository projects)\n>    - [+] I'm have read all configs with all optional parts\n>\n> Expected Behavior\n>\n> After a long time of running cape processing a failure is reported,\n> processing didn't finish. Web Interface don't show any results. Only\n> process.log contains some errors (ie. also Volatility3 won't run!?), at the\n> end you can see:\n>\n> ERROR: Processing Timeout ('Task timeout', 900)\n> Current Behavior\n>\n> Processing should successfully finished and the analysis results can be\n> seen into the web interface.\n> Failure Information (for bugs)\n>\n> See attached log.\n> Steps to Reproduce\n>\n> Standard installation by using kvm-cape2.sh and cape2.sh into Ubuntu 20.04\n> LTS. Standard configuration, nothing specific. No additional yara rules\n> added. Processing of different Malware samples does work correctly. CAPEv2\n> is running with the current version from Github.\n> Failure Logs\n>\n> process_failed.log\n> <https://github.com/kevoreilly/CAPEv2/files/7339672/process_failed.log>\n>\n> \u2014\n> You are receiving this because you are subscribed to this thread.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/602>, or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3YKCTC3XDN2QLGP2JLUGWTQPANCNFSM5F5RKO7Q>\n> .\n> Triage notifications on the go with GitHub Mobile for iOS\n> <https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675>\n> or Android\n> <https://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub>.\n>\n>\n\nComment: check this https://github.com/doomedraven/Tools/blob/master/Sandbox/cape2.sh#L952\r\nchat that 900 to any sane value that you fine to sacrifice\nComment: Thanks. I only searched the files in /opt/CAPEv2.\nComment: so i guess is fixed now?",
+  "Title: Memory access error occurred during analysis in 32-bit OS environment\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account acctivation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [*] I am running the latest version\r\n- [*] I checked the documentation and found no answer\r\n- [*] I checked to make sure that this issue has not already been filed\r\n- [*] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [*] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nThe sample starts and operates normally on 32bitOS\r\n\r\n# Current Behavior\r\n\r\nWhen the sample is put into the Windows 10 x86 sandbox,  memory access error occurs. (analysis.log)\r\nMemory access errors occur with any kind of sample is put in (eg txt, exe, doc, xls, etc.). \r\nWhen put same sample into the Windows 10 x64 sandbox, the sample starts and operates normally .\r\n\r\nWhen I put in a text file and debug it, I got a memory access error occurred after \"if KERNEL32.ResumeThread (self.h_thread)! = -1:\" in the \"resume\" method of \"analyzer/windows/lib/api/process.py\"( LineNo: 450).\r\nI think that multiple processes or threads are running and it is considered that the execution timing of various processes has an effect. So I put 10 milliseconds sleep before \"With Popen ...\" of the \"run\" method of Python's Lib / subprocess.py. \r\nAs a result, memory access errors no longer occur, but other errors now appear. (WithSleep_analysis.log)\r\n\r\n# Failure Information (for bugs)\r\n\r\n[analysis.log](https://github.com/kevoreilly/CAPEv2/files/7329516/analysis.log)\r\n![EventViewer](https://user-images.githubusercontent.com/92291194/136948306-d51b35bf-348c-4457-b9f6-e9c60d39cae4.png)\r\n[WithSleep_analysis.log](https://github.com/kevoreilly/CAPEv2/files/7329523/WithSleep_analysis.log)\r\n\r\n*The OS I'm using is the Japanese version.\r\n The items displayed in the event viewer are as follows:\r\n   1st line - The name of the failing application\r\n   2nd line - The name of the module that is failing\r\n   3rd line - Exception code\r\n   4th line - Fault offset\r\n   5th line - The failing process ID\r\n   6th line - Start time of failing application\r\n   7th line - The failing application path\r\n\r\n## Steps to Reproduce\r\n\r\n1. Install CAPE on Windows 10 x86 by following the steps in \"Installation recommendations and scripts for optimal performance\" in the README.md\r\n2. Stop the following functions:\r\n  - Windows defender\r\n  - Windows firewall\r\n  - UAC\r\n  - DEP\r\n3. Put a sample\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | sorry, I couldn't confirm. I installed it on 10/7.\r\n| OS version       | Hipervisor: ESXi 6.7U3, Host: Ubuntu 20.04.03 LTS, Guest: Windows 10 x86(Ver.2016 ltsb build:14393), Virtualization software: KVM\r\n\r\nWindows 10 x64 that can be analyzed normally is Ver.pro build: 17763\r\n\r\n## Failure Logs\r\n\r\n\nComment: >I think that multiple processes or threads are running and it is considered that the execution timing of various processes has an effect. So I put 10 milliseconds sleep before \"With Popen ...\" of the \"run\" method of Python's Lib / subprocess.py. \r\n\r\nI said as above in the my first post. But I found that  the monitoring process wasn't working, because I made a mistake in putting the \"sleep\" method.\r\n\r\nWhen I put the \"Sleep\" method correctly, the monitoring process was working and memory access error occurred.\r\n\r\nNo memory access error occurred when the \"run without monitoring\" option was enabled. \r\nTherefore, I checked the issue of capemon, and I thought that my issue was similar to # 11(Windows 10 and PEB module hiding).\r\nDoes capemon.dll (Commit: 1d669eb) in CAPEv2 / analyzer / windows / dll contain countermeasures for issue # 11 of capemon?\r\n\r\nIs there anyone who can analyze with Windows 10 32bit? I would be grateful if you could give me some hints.\nComment: Sorry I haven't yet been able to test this - I am building a 32-bit Win10 vm now to try and recreate.\r\n\r\nThe latest capemon is always the one to use, the one you mention is nearly 3 weeks out of date. It does of course contain all the updates including that for #11 although it sounds like it's not the same issue.\r\n\r\nIn the meantime, since it sounds like an issue loading, please try supplying the option no-iat=1 to force the loader to use thread injection as loading mechanism rather than IAT patching.\r\n\r\nAlso, there is a log entry for yara just before things go awry so please also try adding yarascan=0.\r\n\r\nIn fact try the following options turning off features that might be causing problems:\r\n\r\nno-iat=1,yarascan=0,caller-dump=0,injection=0,minhook=1\nComment: I just got my win10x86 vm running and can see problems - setting minhook=1 alone was enough to get things running suggesting a hook issue. I will begin hook testing to narrow it down, it might take a while as there are hundreds of hooks but I'll get cracking.\nComment: I see. Thank you for your help and investigating.\r\nWhen I built and checked the following environment, this issue occurred on windows 8.1 32bit and windows 10 32bit.\r\n\r\n- Windows 7 32bit\r\n- Windows 7 64bit\r\n- Windows 8.1 32bit\r\n- Windows 8.1 64bit\r\n- Windows 10 32bit\r\n- Windows 10 64bit\nComment: Hi Amwami - I found that the hook for NtWaitForSingleObject causes issues with Win10x86 so I've disabled it on this platform (and Win8+) - please update to the latest commit https://github.com/kevoreilly/CAPEv2/commit/cfa06a95924b39843d6398b40337bf3d8b90e721 and let me know if this fixes the problem. Thanks.\nComment: Thank you for your support. \r\nI will inform you of the result as soon as I confirm it. \r\nThank you.\nComment: Any joy with the latest updates?\nComment: Sorry for the late confirmation. I updated to the latest, but I am still investigating because a system error has occurred in a 32-bit environment.\r\n\r\nI would like to meet the relevant software requirements for my investigate, but what version of Python are you using? I am using 3.8.X32 bits.\nComment: I doubt Python is the problem. Can you please share the sample so I can test myself more efficiently.\nComment: I will send you a part of the sample.\r\nIn addition to this sample, this error also occurs in exe file and pdf file and jpeg file and more.\r\nI am  investigating with the CAPE dropped on November 16th.\r\nAnd I am using a photo viewer as an application to open JPEG file.   \r\n[test.txt](https://github.com/kevoreilly/CAPEv2/files/7682746/test.txt)\r\n\nComment: This issue is fixed as far as I know - if issues still persist let me know and we will reopen.",
+  "Title: test extractors\nBody: None",
+  "Title: Unittests for extractor frameworks\nBody: * CAPE\r\n* malduck\r\n* malwareconfigs\r\n* mwcp\r\n\r\nprobably write a dummy plugin and load them via cape_utils.py and check if they are present\nComment: done https://github.com/kevoreilly/CAPEv2/pull/600/files",
+  "Title: Fix VT upload link to sample\nBody: None",
+  "Title: Fix task fetching logic\nBody: None",
+  "Title: I want to download a sample from the dashboard, but an empty file is downloaded\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nI want to download a sample from the dashboard.\r\n\r\n# Current Behavior\r\n\r\nEven if you download the sample zip from the following on the dashboard, an empty file will be downloaded.\r\n![image](https://user-images.githubusercontent.com/58881955/136308377-7b1b9e07-3b53-44b2-8dd7-216f4e4988a6.png)\r\n\r\nEmpty even after unzipping the zip file\r\n![image](https://user-images.githubusercontent.com/58881955/136308034-39ad55bb-375d-4526-a3cb-1783126212e9.png)\r\n\r\nI tried with various extensions, but I couldn't. I was looking at web.conf and cuckoo.conf but couldn't find any settings that seemed relevant.\r\nPlease let me know if there is a conf that should be set for sample download.\r\n\r\nBy the way, when I used it before, there was a button that can be downloaded as a file other than zip, but has the specification changed with the new Cape?\r\n\r\n## Steps to Reproduce\r\n\r\n1. Upload file\r\n2. File analysis is finished\r\n3. Download the sample from the dashboard, but an empty file is downloaded\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | ec788dd5405beb3ad1c7bf0cf47b9a3c3b2f6934\r\n| OS version       | ubuntu 20.04.1 LTS installed Python 3.8.5\r\n\nComment: I'm sorry, this was a problem on my environment.\r\nI've solved it, so I'll close it.\nComment: what it was?\n\n> On 7 Oct 2021, at 06:34, ai-suzuki ***@***.***> wrote:\n> \n> \n> I'm sorry, this was a problem on my environment.\n> I've solved it, so I'll close it.\n> \n> \u2014\n> You are receiving this because you are subscribed to this thread.\n> Reply to this email directly, view it on GitHub <https://github.com/kevoreilly/CAPEv2/issues/596#issuecomment-937437847>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAOFH36EL372HDPGKFW5D33UFUPOVANCNFSM5FQFNO6A>.\n> Triage notifications on the go with GitHub Mobile for iOS <https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675> or Android <https://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub>. \n> \n\n\nComment: It was a problem with the zip decompression software I was using. I did it with 7zip and it worked. \r\nsorry\u2026",
+  "Title: Fix on-demand functionality for dropped files\nBody: Hi, something to fix clicking \"on-demand\" buttons for dropped files currently resulting in \"File not found\" errors.\r\nThis is b/c it was looking for dropped files in a directory called `dropped` (which doesn't exist) rather than in the `files` directory. There was also no code for saving on-demand dropped file results, which I've addressed\nComment: thank you",
+  "Title: Fix suricata file submit\nBody: None",
+  "Title: Fix machines selection - tasks are pending until machine is available\nBody: Not tested with a distributed install",
+  "Title: add malduck load, to have them in the same folder, instead of module \u2026\nBody: \u2026per folder",
+  "Title: add httpreplay error handling and sorted pcap fix\nBody: None",
+  "Title: small code cleanup\nBody: None",
+  "Title: Properly map malduck modules with absolute path\nBody: None",
+  "Title: properly remove node=X when sending to worker\nBody: None",
+  "Title: move bingraph to separate project and import it\nBody: None",
+  "Title: fix bingraph warnings\nBody: None",
+  "Title: Update QakBot.py\nBody: None\nComment: Thanks",
+  "Title: Update linux.rst\nBody: None",
+  "Title: add proper linux vm identification\nBody: None",
+  "Title: GetVolumeNameForVolumeMountPointW hook causes some installers to crash\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n# Expected Behavior\r\n\r\nWindows installers don't crash\r\n\r\n# Current Behavior\r\n\r\nSome installers will crash in my Windows 10 sandbox unless option `exclude-apis=GetVolumeNameForVolumeMountPointW` is set.\r\n\r\n![Screenshot](https://user-images.githubusercontent.com/35646695/135509490-cd85942c-3351-4cc8-9aed-86572f2ee01c.jpg)\r\n\r\n# Failure Information (for bugs)\r\n\r\n## Steps to Reproduce\r\n\r\nVLC installer is one installer I tried that crashes: https://www.videolan.org/vlc/ \r\n\r\n1. Upload the vlc installer with default options\r\n2. Once the installer GUI is launched in the sandbox, observe that it crashes with the generic error window \"vlc has stopped working\"\r\n3. Upload the vlc installer with option `exclude-apis=GetVolumeNameForVolumeMountPointW` now set\r\n4. Observe that it no longer crashes\r\n\r\n## Context\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | a2f545646012c4e5e67c242339020f5e06ffa1fb\r\n| OS version       | Ubuntu 20.04, Windows 10 Guest\r\n\r\n\r\n\nComment: wow thanks, the best question, how did you got the speciifc api ?\nComment: Yep this saves a TON of work hunting for bad hooks - thank you. \r\n\r\nI'll investigate asap.  \nComment: Great, glad to help\r\n\r\n> \r\n> \r\n> wow thanks, the best question, how did you got the speciifc api ?\r\n\r\nJust manual trial and error. I noticed `minhook=1` works without crashing, so next I tried excluding all the file related hooks which worked. And eventually narrowed it down to that single hook.\r\n\nComment: thanks a lot @psalire, that for sure helps a lot to Kevin who is in charge of the monitor\nComment: One piece of info that is missing is the operating system bitness - having just tried to recreate on x64 I assume you must be running 32-bit Windows?\r\n\r\nUnfortunately the installer doesn't work on x64 either... I suspect this is down to a different issue (a known deadlock for which I have a fix https://github.com/kevoreilly/capemon/issues/12)\r\n\r\nI haven't got a working 32-bit Win10 vm to test on but I plan to build one... The GetVolumeNameForVolumeMountPointW hook calls an internal function 'replace_wstring_in_buf' to harden against vm detection in the output from this api so testing without these calls is the first thing I will try,\nComment: Hi @kevoreilly,\r\nI'm actually on 64-bit Win10. Sorry if the win32 in the screenshot was misleading. I was trying out the 32-bit installer just in case it was just something was going wrong with the 64-bit one, but both crash the same way\r\n\r\n![image](https://user-images.githubusercontent.com/35646695/135927167-8a7e80c6-c255-4108-9735-de0f4fe3b388.png)\r\n\r\n\nComment: Sorry not to respond here - this slipped my mind like the sieve it is. I can run this installer on Win10x64 no problem - would you mind re-checking with the latest versions of the monitor/loader?\r\n\r\n![image](https://user-images.githubusercontent.com/22219888/213423557-a655b8c4-1522-432d-993c-ab0834a4c538.png)\r\n",
+  "Title: fix SystemRoot typo\nBody: The Package class checks for \"SystemRoot\" not \"SYSTEMROOT\"\nComment: thank you",
+  "Title: Fix ursnif3 yara rule condition (making YARA-CI happy!)\nBody: None\nComment: looks good for me, i will leave that for @kevoreilly \nComment: Ok. But It seems YARA-CI has been removed?!\nComment: no, it only works on master :( maybe one day they will extend that for pulls too\nComment: Oh but I have a private repo for yara rules where it works for pull too, weird. \ud83e\udd14 \nComment: strange, i checked their docs, there is nothing about this\nComment: @plusvic do you have any explanation why YARA-CI is not working when a PR is sent to this repo?\nComment: @kevoreilly can we get this merged? \nComment: I ditched the $diy_decode pattern as it was bad - sorry about that. Fixed now.",
+  "Title: Bump django from 3.2.4 to 3.2.5\nBody: Bumps [django](https://github.com/django/django) from 3.2.4 to 3.2.5.\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/django/django/commit/0eca7a66239ef646f59fe2af643199275dae7a35\"><code>0eca7a6</code></a> [3.2.x] Bumped version for 3.2.5 release.</li>\n<li><a href=\"https://github.com/django/django/commit/a34a5f724c5d5adb2109374ba3989ebb7b11f81f\"><code>a34a5f7</code></a> [3.2.x] Fixed CVE-2021-35042 -- Prevented SQL injection in QuerySet.order_by().</li>\n<li><a href=\"https://github.com/django/django/commit/da2269dc6f7daca090a28508dbd92207b6f639d0\"><code>da2269d</code></a> [3.2.x] Added stub release notes for 3.1.13 and release date for 3.2.5.</li>\n<li><a href=\"https://github.com/django/django/commit/aaef4111ac880b530ce85557dc614f581ae8f3a9\"><code>aaef411</code></a> [3.2.x] Fixed <a href=\"https://github-redirect.dependabot.com/django/django/issues/32850\">#32850</a> -- Doc'd Sitemap.paginator.</li>\n<li><a href=\"https://github.com/django/django/commit/04b744050f1743a88e2bf0ca2ca82b34e3361f50\"><code>04b7440</code></a> [3.2.x] Updated translations from Transifex.</li>\n<li><a href=\"https://github.com/django/django/commit/8b2b627f34797b8d497451350b35d7a5103b016e\"><code>8b2b627</code></a> [3.2.x] Fixed <a href=\"https://github-redirect.dependabot.com/django/django/issues/32863\">#32863</a> -- Skipped system check for specifying type of auto-crea...</li>\n<li><a href=\"https://github.com/django/django/commit/fb577d85b24470b61fb10857744614af054d53dc\"><code>fb577d8</code></a> [3.2.x] Added a note about %autoawait off for IPython.</li>\n<li><a href=\"https://github.com/django/django/commit/3d51e1635ab50c9ad7d60e553813f41429b6219c\"><code>3d51e16</code></a> [3.2.x] Fixed <a href=\"https://github-redirect.dependabot.com/django/django/issues/32860\">#32860</a> -- Made docs permalinks focusable to improve accessibility.</li>\n<li><a href=\"https://github.com/django/django/commit/826a1659eed0b23f5b814d5a293eeaca20d29a6c\"><code>826a165</code></a> [3.2.x] Fixed <a href=\"https://github-redirect.dependabot.com/django/django/issues/32832\">#32832</a> -- Fixed adding BLOB/TEXT nullable field with default on...</li>\n<li><a href=\"https://github.com/django/django/commit/bb29174f942dd60da4ccfcf38fb423fb21ed159a\"><code>bb29174</code></a> [3.2.x] Refs <a href=\"https://github-redirect.dependabot.com/django/django/issues/32503\">#32503</a> -- Added release notes for 5e04e84d67da8163f365e9f5fcd169...</li>\n<li>Additional commits viewable in <a href=\"https://github.com/django/django/compare/3.2.4...3.2.5\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=django&package-manager=pip&previous-version=3.2.4&new-version=3.2.5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language\n- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language\n- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language\n- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language\n\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Fix sorted pcap results and views\nBody: None",
+  "Title: Delete public submission from capesandbox.com\nBody: # Prerequisites\r\n\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\nHi there,\r\n\r\nIs there any way to delete a submission that I have uploaded using my account on capesandbox.com?\r\n\r\nI have tried the API, but the delete task is disabled. \nComment: No, only admins can do that, which is task id?\n\nEl mi\u00e9., 22 sept. 2021 1:15, Shrod1nger ***@***.***> escribi\u00f3:\n\n> Prerequisites\n>\n>    - I checked the documentation and found no answer\n>    - I checked to make sure that this issue has not already been filed\n>    - I'm reporting the issue to the correct repository (for\n>    multi-repository projects)\n>    - I'm have read all configs with all optional parts\n>\n> Hi there,\n>\n> Is there any way to delete a submission that I have uploaded using my\n> account on capesandbox.com?\n>\n> I have tried the API, but the delete task is disabled.\n>\n> \u2014\n> You are receiving this because you are subscribed to this thread.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/577>, or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3ZZFKR56WKPKRXJX73UDEG25ANCNFSM5EP5BQYA>\n> .\n> Triage notifications on the go with GitHub Mobile for iOS\n> <https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675>\n> or Android\n> <https://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub>.\n>\n>\n\nComment: Hi Doomedraven,\r\n\r\nThank you for getting back to me, can I send you the task Id privately? It is kind of sensitive. \nComment: you should get the email in previous email\nComment: solved\nComment: Thank you.",
+  "Title: Emotet and Trickbot configs not extracting\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account acctivation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ X] I am running the latest version\r\n- [ X] I checked the documentation and found no answer\r\n- [ X] I checked to make sure that this issue has not already been filed\r\n- [ X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ X] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nExtraction of emotet and trickbot configs\r\n\r\n# Current Behavior\r\n\r\nCurrently CAPE is identifying the files correctly as emotet or trickbot but not extracting the configs, looks like process dumps are occuring correctly.  Samples are correctly extracting configs on capesandbox.com\r\n\r\nExample:\r\nhttps://capesandbox.com/analysis/119866/\r\n\r\nprocessing.conf: https://pastebin.com/dmceQvhG\r\nlog: https://pastebin.com/Pqus2ijM\r\nLet me know if there is anything else you need\r\n\r\nI am able to upload a CobaltStrike beacon and that extracts but looks like anything that requires a procdump to extract a config is not doing so.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | commit 87dd2d7b39d306041a05e65b673f0bcc387fce82\r\n| OS version       | Ubuntu 20.04.3 LTS\r\n\r\n\r\nThanks\r\n\r\n\nComment: Sorry to hear about your issue - unfortunately the only log that is really helpful here is the processing log. You can generate one by running:\r\n\r\ncd /opt/CAPEv2\r\nsudo su cape\r\npython3 utils/process.py -d -r X\r\n\r\nLet me know the output of that log and hopefully we can work out what's going wrong.\nComment: Thanks for the help, output of that script can be found here:\r\nhttps://pastebin.com/krw8LZ3E\nComment: could you provide the version of `mwcp`? \r\n`pip3 freeze|grep mwcp` i just found that remcos only works with v3.2.1 and not works with 3.2.0 or 3.3.x\nComment: Looks like 3.2.0\r\n\r\nShould I try to upgrade to 3.2.1?\nComment: Upgrading to 3.2.1 worked for Emotet, but getting the same results with trickbot (able to identify as trickbot but no config extract).\r\n\r\nSample: https://capesandbox.com/analysis/185042/\r\nProcess.py output: https://pastebin.com/6aFECv7x\r\n\r\nThanks\nComment: trickbot is pure CAPE extractor so problem should be on your end, as it works on cape, i just did extractors review, so probably they don't like something in your behavior",
+  "Title: Onemon Driver CAPEv2\nBody: Is it possible to include Onemon driver in CAPEv2?\nComment: you can do that, but that is uselss, it just scan with yara, no behavior, etc\nComment: Aye the real question is what functionality does it have that cape might want? As far as I know, nothing, but I stand to be corrected. ",
+  "Title: Bump sqlparse from 0.4.1 to 0.4.2\nBody: Bumps [sqlparse](https://github.com/andialbrecht/sqlparse) from 0.4.1 to 0.4.2.\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/andialbrecht/sqlparse/blob/master/CHANGELOG\">sqlparse's changelog</a>.</em></p>\n<blockquote>\n<h2>Release 0.4.2 (Sep 10, 2021)</h2>\n<p>Notable Changes</p>\n<ul>\n<li>IMPORTANT: This release fixes a security vulnerability in the\nstrip comments filter. In this filter a regular expression that was\nvulnerable to ReDOS (Regular Expression Denial of Service) was\nused. See the security advisory for details: <a href=\"https://github.com/andialbrecht/sqlparse/security/advisories/GHSA-p5w8-wqhj-9hhf\">https://github.com/andialbrecht/sqlparse/security/advisories/GHSA-p5w8-wqhj-9hhf</a>\nThe vulnerability was discovered by <a href=\"https://github.com/erik-krogh\"><code>@\u200berik-krogh</code></a> and <a href=\"https://github.com/yoff\"><code>@\u200byoff</code></a> from\nGitHub Security Lab (GHSL). Thanks for reporting!</li>\n</ul>\n<p>Enhancements</p>\n<ul>\n<li>Add ELSIF as keyword (issue584).</li>\n<li>Add CONFLICT and ON_ERROR_STOP keywords (pr595, by j-martin).</li>\n</ul>\n<p>Bug Fixes</p>\n<ul>\n<li>Fix parsing of backticks (issue588).</li>\n<li>Fix parsing of scientific number (issue399).</li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/andialbrecht/sqlparse/commit/b1f76f6fa9763ee0f1d3a3870f05565abf1314e8\"><code>b1f76f6</code></a> Update changelog.</li>\n<li><a href=\"https://github.com/andialbrecht/sqlparse/commit/3eec44e52233c68ea8299a16b36ec7f2ad0c2fe3\"><code>3eec44e</code></a> Update Changelog and bump version.</li>\n<li><a href=\"https://github.com/andialbrecht/sqlparse/commit/8238a9e450ed1524e40cb3a8b0b3c00606903aeb\"><code>8238a9e</code></a> Optimize regular expression for identifying line breaks in comments.</li>\n<li><a href=\"https://github.com/andialbrecht/sqlparse/commit/e66046785b816e5c2d22f101f36faefd19c4a771\"><code>e660467</code></a> Fix parsing of scientific numbers (fixes <a href=\"https://github-redirect.dependabot.com/andialbrecht/sqlparse/issues/399\">#399</a>).</li>\n<li><a href=\"https://github.com/andialbrecht/sqlparse/commit/23d29933ddc4272b495d36e0e32d3eaf0c3ef76d\"><code>23d2993</code></a> Update authors and changelog.</li>\n<li><a href=\"https://github.com/andialbrecht/sqlparse/commit/acc2810d1275154c4e93debe82d319e15c507d61\"><code>acc2810</code></a> keyword, add ON_ERROR_STOP</li>\n<li><a href=\"https://github.com/andialbrecht/sqlparse/commit/282bcf1048c472e3eddd83a331f8d4e857a2c5eb\"><code>282bcf1</code></a> keyword, add CONFLICT to postgres keywords</li>\n<li><a href=\"https://github.com/andialbrecht/sqlparse/commit/63885dd5f1be3fe519fceb0a21f1f87fdc6aa973\"><code>63885dd</code></a> Add ELSIF as keyword (fixes <a href=\"https://github-redirect.dependabot.com/andialbrecht/sqlparse/issues/584\">#584</a>).</li>\n<li><a href=\"https://github.com/andialbrecht/sqlparse/commit/e575ae2c37359ab51b23ce44ccda4bb9bbfd3a5f\"><code>e575ae2</code></a> Fix parsing of backticks (fixes <a href=\"https://github-redirect.dependabot.com/andialbrecht/sqlparse/issues/588\">#588</a>).</li>\n<li><a href=\"https://github.com/andialbrecht/sqlparse/commit/fe39072fc24e879034fb1e439fb0a47c7c66d4a2\"><code>fe39072</code></a> Switch back to development mode.</li>\n<li>Additional commits viewable in <a href=\"https://github.com/andialbrecht/sqlparse/compare/0.4.1...0.4.2\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=sqlparse&package-manager=pip&previous-version=0.4.1&new-version=0.4.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language\n- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language\n- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language\n- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language\n\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Rename option `logging` to `log_rotation`\nBody: The current name feels confusing, as the options in this section don't affect logging itself, but rather the log rotation.\nComment: thank you",
+  "Title: Refactor malware family detection\nBody: For some changes in our fork I wanted the malware detection before the processing stats handling. To me, this makes sense as the malware detection is sort of a processing step, and the stats and error log handling coming after all processing steps makes sense to me.\r\n\r\nWhile doing this, I factored the malware detection out into a separate function, cleaned the code up a bit, and maybe even fixed a bug or two. It seems it hasn't worked as intended in all cases (see for example the use of the `not family` condition in `elif` clauses).\r\n\r\nBut since I'm not fully aware of how all the data is produced that is used here, please review the changes.\nComment: looks good to me, thanks\nComment: Thanks @gerhard4 !",
+  "Title: Fix PE and .NET file infos\nBody: None\nComment: thanks, just one small note, please don't use exception without show it, as in past it gave me a lot of headache trying to make some code works",
+  "Title: Add exception handling for PE certs results\nBody: None",
+  "Title: Update urls.py\nBody: None\nComment: hello, could you explain why? it works for me with that, and it allows remove pending tasks, so if i merge it breaks another thing, so i need some context why do you mod this, thanks\nComment: hello, the issue I cannot delete the specific task from CAPE using `Delete Task` API node.\r\n\r\n![api](https://user-images.githubusercontent.com/55275842/131630545-a8152111-59a6-4b23-8a7a-94cac820a6d4.png)\r\n\nComment: thanks i have updated your PR,  when i tried i tried via web, now tested and you are right, works now, thanks for headups",
+  "Title: Linux Guest - unable to compile STAP kernel extension\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [y] I am running the latest version\r\n- [y] I checked the documentation and found no answer\r\n- [y] I checked to make sure that this issue has not already been filed\r\n- [y] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [y] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nHave a stap_.ko file\r\n\r\n# Current Behavior\r\n\r\nno stap_.ko and unable to obtain it due to errors\r\n\r\n# Failure Information (for bugs)\r\n\r\n## Steps to Reproduce\r\n\r\nConfigure a Linux guest as it is presented in the guide but for 18.04: https://github.com/kevoreilly/CAPEv2/blob/master/docs/book/src/installation/guest/linux.rst\r\n\r\n## Context\r\n\r\nTrying to setup a guest. Already tried with Ubuntu  17.10 but many steps from the guide failed due to various reasons (including the distro being EOL).\r\nMoved forward and tried the entire setup on 18.04. I was able to install kernel debugging symbols and also successfully patched the SystemTap tapset, so that the CAPE analyzer can properly parse the output using the commands below\r\n\r\n```\r\nwget https://raw.githubusercontent.com/kevoreilly/CAPEv2/master/extra/systemtap/expand_execve_envp.patch\r\n\r\nwget https://raw.githubusercontent.com/kevoreilly/CAPEv2/master/extra/systemtap/escape_delimiters.patch\r\n\r\nsudo patch /usr/share/systemtap/tapset/linux/sysc_execve.stp < expand_execve_envp.patch\r\n\r\nsudo patch /usr/share/systemtap/tapset/uconversions.stp < escape_delimiters.patch\r\n```\r\n\r\nand this wiki from Ubuntu:\r\n\r\nhttps://wiki.ubuntu.com/Debug%20Symbol%20Packages\r\n\r\nHowever, I encountered issues while running:\r\n\r\n`sudo stap -p4 -r $(uname -r) strace.stp -m stap_ -v\r\n`\r\nPlease see the logs file attached below. It also contains some of the commands I used so that you can see the patch is successfully applied.\r\nAt line 46 I tried to compile it.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| OS version       | Ubuntu 18.04 (Guest) since 17.10 is EOL\r\n\r\n## Failure Logs\r\n[stre_stp.txt](https://github.com/kevoreilly/CAPEv2/files/7047894/stre_stp.txt)\r\n\nComment: hello, as i told you, we won't update that(we are windows guys, not linux), if you want you are more than welcome to upgrade systemtap code to make it working, but we won't do that, so im not sure why do you open another issue for what we spoke in previous one\nComment: if you see your log you have tons of errors and it not compile so you can't run what isn't compiled\nComment: Hi @doomedraven,\r\n\r\nIndeed. This time, however, I was able to successfully apply the patches so I thought I might have a different case.\r\n\r\nOk, so the only way to get it working on something different than 17.10 is to edit this, right?https://github.com/kevoreilly/CAPEv2/blob/1e66d2460276b28b45bea8123cc74daa83295f68/extra/systemtap/expand_execve_envp.patch\r\n\r\nJsut to make it clear, 17.10 is still supported? Should I invest time in making it work on thins distro? I can contribute the project since I experimented with 17.10 and I have something to add.\r\n\r\nThanks\nComment: yes, idk why it was written for not LTS  version of ubuntu, but as you can see in your log there tons of errors when you try to compile, that means that even if you apply patches things changed. and we can't help as we are windows guys, and nobody really interested in systemtap due to easy bypass, so i think it would be much interesting to run sysmon on linux and just write parser of their logs\r\n\r\nubuntu 17.10 is DEAD, no don't waste your time with that ubuntu. so if you want to get this i would probably suggest to move to sysmon but i think isn't released yet https://twitter.com/markrussinovich/status/1283039153920368651\r\n\r\n+ is easy to bypas systemtap i think i already mentioned that, so don't waste your time on this, is much better to look for better and stronger monitor for linux that that one\nComment: so im gonna close this, if you will find sysmon for linux and want to play, i maybe would be able to help to add parsing for logs, but right now i would say again linux integration is just for networking ",
+  "Title: Deadlock in cuckoo.core.rooter module has been fixed\nBody: Deadlock in `cuckoo.core.rooter` module has been fixed.\r\nThere were cases when the cape is frozen when all the threads were waiting on the `lock.acquire()` call (but before some code raised an exception in between the lock acquire and release so the `lock` remained locked.\r\nThis PR fixes the issue so even if the code will raise an error, the lock will be released anyway.\nComment: hello @a1ext, interesting solution, i was looking to fix that in past but i was focused more on scheduler.py, so thank you a lot for your time and effort on this. this is huge help for us, and you killed an entry in my ToDo what was sitting for very long time\nComment: > hello @a1ext, interesting solution, i was looking to fix that in past but i was focused more on scheduler.py, so thank you a lot for your time and effort on this. this is huge help for us, and you killed an entry in my ToDo what was sitting for very long time\n\nHi @doomedraven , you are welcome! \ud83d\ude04 ",
+  "Title: cuckoo.py problem when mitre is activated\nBody: I have updated this morning Cape and when I activate Mitre in the configuration file \r\n\r\n[mitre]\r\nenabled = yes\r\n\r\ncuckoo.py it does not work and throws the following error:\r\n\r\nTraceback (most recent call last):\r\n  File \"cuckoo.py\", line 20, in <module>\r\n    from lib.cuckoo.core.startup import check_working_directory, check_configs\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/startup.py\", line 36, in <module>\r\n    from lib.cuckoo.core.plugins import import_plugin, import_package, list_plugins\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/plugins.py\", line 16, in <module>\r\n    from lib.cuckoo.common.abstracts import Auxiliary, Machinery, LibVirtMachinery, Processing\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 64, in <module>\r\n    mitre = Attck(\r\nTypeError: __init__() got an unexpected keyword argument 'data_path'\r\n\r\nI want to work with Mitre activated because I have automated the parsing of the JSON to extract this data, since it is important information in an attack.\r\n\nComment: well first of all, NVER remove issue template as we need all that info, for something we add it there, and second what version of pyattck do you use?\nComment: use proper version of pyattck and thats all\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/requirements.txt#L988\nComment: Yes, this is the problem. I use Ubuntu 18.04 LTS because I deployed CapeV2 in January 2020, so it uses Python 3.6 which I don't understand because it doesn't install that version. I have deployed between yesterday and today CapeV2 on local with Ubuntu 20.04 using python 3.8.10 and this problem does not exist.\r\nThank you very much because I did not know the origin of the problem.\nComment: Well software changes faster that all of us would like so you always need\nto figth between features and compability, is why we enforcing it in\nrequierements\n+many libs already droppedsupport for py3.6\n\nEl mar., 24 ago. 2021 13:50, DptoInnovacionIngenia ***@***.***>\nescribi\u00f3:\n\n> Yes, this is the problem. I use Ubuntu 18.04 LTS because I deployed CapeV2\n> in January 2020, so it uses Python 3.6 which I don't understand because it\n> doesn't install that version. I have deployed between yesterday and today\n> CapeV2 on local with Ubuntu 20.04 using python 3.8.10 and this problem does\n> not exist.\n> Thank you very much because I did not know the origin of the problem.\n>\n> \u2014\n> You are receiving this because you modified the open/close state.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/565#issuecomment-904569413>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH37BMZJB7TP5BEMMFBTT6OBRHANCNFSM5CUYU4WA>\n> .\n> Triage notifications on the go with GitHub Mobile for iOS\n> <https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675>\n> or Android\n> <https://play.google.com/store/apps/details?id=com.github.android&utm_campaign=notification-email>\n> .\n>\n",
+  "Title: Display all volatility functions in analysis\nBody: Display all volatility functions present in memory.conf in the analysis.\nComment: thank you",
+  "Title: Update report.html\nBody: This modification displays the Memory Analysis tab in a report.\nComment: thank you",
+  "Title:  Samples not analyzed on Linux guest (Ubuntu 18.04 32-bits)\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [+] I am running the latest version\r\n- [+] I checked the documentation and found no answer\r\n- [+] I checked to make sure that this issue has not already been filed\r\n- [+] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [+] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nReceive a detailed analysis (static, dynamic) after detonating elf/bash scripts on a Linux guest (32-bits)\r\n\r\n# Current Behavior\r\n\r\nI only receive information about VirusTotal. I suspect the files are not detonated. \r\n\r\nAnalysis works perfectly well with Win7 and Win10 guests but I am unable to receive a meaningful result after detonating elf (32-bits) files or bash scripts inside Linux (Ubuntu 18.04 32-bits) guest.\r\nThe VM starts and stops in less then 3 seconds. I suspect the file is not executed. I tried _chmod +x_ OR _chmod 777_ but nothing changed\r\n\r\n# Failure Information (for bugs)\r\n\r\n`2021-08-19 08:41:32,901 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks.\r\n2021-08-19 08:42:17,208 [lib.cuckoo.core.scheduler] INFO: Task #25: **Starting analysis of FILE '/tmp/cuckoo-tmp/upload_zm06lyhx/shell32.elf'**\r\n2021-08-19 08:42:17,235 [lib.cuckoo.core.scheduler] INFO: Task #25: acquired machine ubuntu (label=/root/vmware/Ubuntu/Ubuntu.vmx, platform=linux)\r\n2021-08-19 08:42:27,485 [lib.cuckoo.core.scheduler] INFO: Enabled route 'none'\r\n2021-08-19 08:42:27,510 [modules.auxiliary.sniffer] INFO: Started sniffer with PID 18642 (interface=vmnet2, host=172.16.18.129, dump path=/opt/CAPEv2/storage/analyses/25/dump.pcap)\r\n2021-08-19 08:42:27,537 [lib.cuckoo.core.guest] INFO: Starting analysis #25 on guest (id=ubuntu, ip=172.16.18.129)\r\n2021-08-19 08:42:28,639 [lib.cuckoo.core.guest] INFO: Guest is running CAPE Agent 0.11 (id=ubuntu, ip=172.16.18.129)\r\n2021-08-19 08:42:36,477 [lib.cuckoo.core.guest] INFO: Uploading support files to guest (id=ubuntu, ip=172.16.18.129)\r\n2021-08-19 08:42:37,528 [lib.cuckoo.core.guest] INFO: ubuntu: analysis completed successfully\r\n2021-08-19 08:42:38,719 [lib.cuckoo.core.scheduler] INFO: **Task #25: analysis procedure completed**\r\n\r\n2021-08-19 09:03:39,034 [lib.cuckoo.core.scheduler] INFO: Task #26: **Starting analysis of FILE '/tmp/cuckoo-tmp/upload_836l0b2a/myscript.sh'**\r\n2021-08-19 09:03:39,047 [lib.cuckoo.core.scheduler] INFO: Task #26: acquired machine ubuntu (label=/root/vmware/Ubuntu/Ubuntu.vmx, platform=linux)\r\n2021-08-19 09:03:49,062 [lib.cuckoo.core.scheduler] INFO: Enabled route 'none'\r\n2021-08-19 09:03:49,095 [modules.auxiliary.sniffer] INFO: Started sniffer with PID 20263 (interface=vmnet2, host=172.16.18.129, dump path=/opt/CAPEv2/storage/analyses/26/dump.pcap)\r\n2021-08-19 09:03:49,126 [lib.cuckoo.core.guest] INFO: Starting analysis #26 on guest (id=ubuntu, ip=172.16.18.129)\r\n2021-08-19 09:03:50,248 [lib.cuckoo.core.guest] INFO: Guest is running CAPE Agent 0.11 (id=ubuntu, ip=172.16.18.129)\r\n2021-08-19 09:03:52,934 [lib.cuckoo.core.guest] INFO: Uploading support files to guest (id=ubuntu, ip=172.16.18.129)\r\n2021-08-19 09:03:53,983 [lib.cuckoo.core.guest] INFO: ubuntu: analysis completed successfully\r\n2021-08-19 09:03:55,138 [lib.cuckoo.core.scheduler] INFO: **Task #26: analysis procedure completed**\r\n\r\n## Steps to Reproduce\r\n\r\n1. install Linux guest (Lubuntu 18.04 32-bits)\r\n2. configure files accordingly\r\n3. Submit an ELF file (32-bits) or a Bash script for analsysis\r\n\r\n## Context\r\n\r\n| OS version       | Ubuntu 18.04 32-bits (Guest), Ubuntu 20.04 64-bits (Host)\r\n\r\n## Failure Logs\r\n\r\n![Screenshot from 2021-08-19 12-44-29](https://user-images.githubusercontent.com/13218919/130048931-5e9d0373-8dac-4997-badc-8f5939049ff8.png)\r\n[cuckoo.txt](https://github.com/kevoreilly/CAPEv2/files/7013515/cuckoo.txt)\r\n[processing.txt](https://github.com/kevoreilly/CAPEv2/files/7013516/processing.txt)\r\n[vmware.txt](https://github.com/kevoreilly/CAPEv2/files/7013517/vmware.txt)\r\n[web.txt](https://github.com/kevoreilly/CAPEv2/files/7013518/web.txt)\r\n\r\n\nComment: did you compile systemtap and started it? you always need to enforce timeout on linux samples\nComment: > did you compile systemtap and started it? you always need to enforce timeout on linux samples\r\n\r\n```\r\nuser@ubuntu:~$ sudo patch /usr/share/systemtap/tapset/linux/sysc_execve.stp < expand_execve_envp.patch\r\npatching file /usr/share/systemtap/tapset/linux/sysc_execve.stp\r\nHunk #1 FAILED at 33.\r\nHunk #2 FAILED at 57.\r\nHunk #3 FAILED at 75.\r\nHunk #4 FAILED at 97.\r\npatch: **** Can't reopen file /usr/share/systemtap/tapset/linux/sysc_execve.stp : No such file or directory\r\nuser@ubuntu:~$ sudo patch /usr/share/systemtap/tapset/uconversions.stp < escape_delimiters.patch\r\npatching file /usr/share/systemtap/tapset/uconversions.stp\r\nHunk #1 FAILED at 95.\r\nHunk #2 FAILED at 359.\r\nHunk #3 FAILED at 439.\r\nHunk #4 FAILED at 967.\r\nHunk #5 FAILED at 1002.\r\n5 out of 5 hunks FAILED -- saving rejects to file /usr/share/systemtap/tapset/uconversions.stp.rej\r\n```\r\n\r\n```\r\n`user@ubuntu:~$ apt-cache show systemtap\r\nPackage: systemtap\r\nPriority: optional\r\nSection: universe/devel\r\nInstalled-Size: 2753\r\nMaintainer: Ubuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com>\r\nOriginal-Maintainer: Ritesh Raj Sarraf <rrs@debian.org>\r\nArchitecture: i386\r\nVersion: 2.9-2ubuntu2\r\nDepends: systemtap-runtime (= 2.9-2ubuntu2), libavahi-client3 (>= 0.6.16), libavahi-common3 (>= 0.6.16), libc6 (>= 2.15), libdw1 (>= 0.158), libelf1 (>= 0.142), libgcc1 (>= 1:4.2), libnspr4 (>= 2:4.9-2~) | libnspr4-0d (>= 1.8.0.10), libnss3 (>= 2:3.13.4-2~) | libnss3-1d (>= 3.12.6), libsqlite3-0 (>= 3.5.9), libstdc++6 (>= 5.2), systemtap-common (= 2.9-2ubuntu2), make\r\nSuggests: systemtap-doc, vim-addon-manager\r\nFilename: pool/universe/s/systemtap/systemtap_2.9-2ubuntu2_i386.deb\r\nSize: 961442\r\nMD5sum: a4760202cf2cbd2d50b144713c90a82e\r\nSHA1: 188cb9d30a636ca5d2829ca571a86729b2382c99\r\nSHA256: e1c23af278a23423221b22a55aa86204d3e15f0699d87a25c941813e6d33c86f\r\nDescription-en: instrumentation system for Linux\r\n SystemTap provides infrastructure to simplify the gathering of\r\n information about the running Linux system.\r\n This assists diagnosis of a performance or functional problem.\r\n SystemTap eliminates the need for the developer to go through the\r\n tedious and disruptive instrument, recompile, install, and reboot\r\n sequence that may be otherwise required to collect data.\r\n .\r\n SystemTap provides a simple command line interface and scripting\r\n language for writing instrumentation for a live running system.\r\nDescription-md5: 0aaa66102baf710a00ed98dc88fd7534\r\nHomepage: http://sourceware.org/systemtap/\r\nBugs: https://bugs.launchpad.net/ubuntu/+filebug\r\nOrigin: Ubuntu\r\n`\r\n```\nComment: So as you can see no systemtap module, thats why you dont have behaviour\n\nEl dom., 22 ago. 2021 16:42, Octavian ***@***.***> escribi\u00f3:\n\n> did you compile systemtap and started it? you always need to enforce\n> timeout on linux samples\n>\n> ***@***.***:~$ sudo patch /usr/share/systemtap/tapset/linux/sysc_execve.stp < expand_execve_envp.patch\n> patching file /usr/share/systemtap/tapset/linux/sysc_execve.stp\n> Hunk #1 FAILED at 33.\n> Hunk #2 FAILED at 57.\n> Hunk #3 FAILED at 75.\n> Hunk #4 FAILED at 97.\n> patch: **** Can't reopen file /usr/share/systemtap/tapset/linux/sysc_execve.stp : No such file or directory\n> ***@***.***:~$ sudo patch /usr/share/systemtap/tapset/uconversions.stp < escape_delimiters.patch\n> patching file /usr/share/systemtap/tapset/uconversions.stp\n> Hunk #1 FAILED at 95.\n> Hunk #2 FAILED at 359.\n> Hunk #3 FAILED at 439.\n> Hunk #4 FAILED at 967.\n> Hunk #5 FAILED at 1002.\n> 5 out of 5 hunks FAILED -- saving rejects to file /usr/share/systemtap/tapset/uconversions.stp.rej\n>\n> ***@***.***:~$ apt-cache show systemtap\n> Package: systemtap\n> Priority: optional\n> Section: universe/devel\n> Installed-Size: 2753\n> Maintainer: Ubuntu Developers ***@***.***>\n> Original-Maintainer: Ritesh Raj Sarraf ***@***.***>\n> Architecture: i386\n> Version: 2.9-2ubuntu2\n> Depends: systemtap-runtime (= 2.9-2ubuntu2), libavahi-client3 (>= 0.6.16), libavahi-common3 (>= 0.6.16), libc6 (>= 2.15), libdw1 (>= 0.158), libelf1 (>= 0.142), libgcc1 (>= 1:4.2), libnspr4 (>= 2:4.9-2~) | libnspr4-0d (>= 1.8.0.10), libnss3 (>= 2:3.13.4-2~) | libnss3-1d (>= 3.12.6), libsqlite3-0 (>= 3.5.9), libstdc++6 (>= 5.2), systemtap-common (= 2.9-2ubuntu2), make\n> Suggests: systemtap-doc, vim-addon-manager\n> Filename: pool/universe/s/systemtap/systemtap_2.9-2ubuntu2_i386.deb\n> Size: 961442\n> MD5sum: a4760202cf2cbd2d50b144713c90a82e\n> SHA1: 188cb9d30a636ca5d2829ca571a86729b2382c99\n> SHA256: e1c23af278a23423221b22a55aa86204d3e15f0699d87a25c941813e6d33c86f\n> Description-en: instrumentation system for Linux\n>  SystemTap provides infrastructure to simplify the gathering of\n>  information about the running Linux system.\n>  This assists diagnosis of a performance or functional problem.\n>  SystemTap eliminates the need for the developer to go through the\n>  tedious and disruptive instrument, recompile, install, and reboot\n>  sequence that may be otherwise required to collect data.\n>  .\n>  SystemTap provides a simple command line interface and scripting\n>  language for writing instrumentation for a live running system.\n> Description-md5: 0aaa66102baf710a00ed98dc88fd7534\n> Homepage: http://sourceware.org/systemtap/\n> Bugs: https://bugs.launchpad.net/ubuntu/+filebug\n> Origin: Ubuntu\n> `\n>\n> \u2014\n> You are receiving this because you commented.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/562#issuecomment-903279322>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH35RL7I4XFL4IS3U5FLT6EEEDANCNFSM5CN3XA7A>\n> .\n> Triage notifications on the go with GitHub Mobile for iOS\n> <https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675>\n> or Android\n> <https://play.google.com/store/apps/details?id=com.github.android&utm_campaign=notification-email>\n> .\n>\n\nComment: @doomedraven Tried to patch it but failed with those mentioned errors\nComment: well as you can see in [docs](https://github.com/kevoreilly/CAPEv2/blob/master/docs/book/src/installation/guest/linux.rst#preparing-x32x64-ubuntu-1710-linux-guests) systemtap patches is done for ubuntu 17.10(dead not LTS), they doesn't work on any other version, so if you need you need to update the systemtap patches for ubuntu 18/20(LTS)\nComment: > well as you can see in [docs](https://github.com/kevoreilly/CAPEv2/blob/master/docs/book/src/installation/guest/linux.rst#preparing-x32x64-ubuntu-1710-linux-guests) systemtap patches is done for ubuntu 17.10(dead not LTS), they doesn't work on any other version, so if you need you need to update the systemtap patches for ubuntu 18/20(LTS)\r\n\r\nLet alone Ubuntu 18.04, I tried on Ubuntu 16.04 and I am not sure what things I should modify inside the patches (expand_execve_envp.patch & escape_delimiters.patch) in order to make them work for another distro. \r\n\r\n17.10 is no longer supported and you cannot update it with `sudo apt-get update` since the update servers likely went offline sometime in August 2019. Thus, you cannot proceed with the execution of the first steps in the guide:\r\n```\r\n$ sudo apt update\r\n$ sudo apt install python3-pip\r\n```\nComment: yes we aware of that, it wasn't written by us, it was written by one ex cuckoo devs. so as i told it mostly only useful for networking traffic. if you really need it, i would suggest you to investigate what changes is required to systemtap\nComment: i guess we can close as original issue is solved",
+  "Title: Flare Capa Dependency Conflicts\nBody: Resolves Flare Capa dependency conflicts.\nComment: thank you\nComment: no problem, noticed it as i was deploying a new instance :smile: ",
+  "Title: settings.py: reload secret_key import fixed\nBody: Import for secret_key reload should be relative - same as initial import.\r\nBug prevents running some `python3 manage.py` commands on fresh install.\r\nCurrently first time command is executed it creates secret_key.py if missing but fails with (re)loading it (due to wrong import). After first failure next commands work fine (file already exist imported with first attempt).\nComment: thank you",
+  "Title: \u3010Distributed CAPE\u3011node = x in master and sent to the Worker side. However, Worker does not analyze the file as pending.\nBody: I am always grateful for your help! There is something I would like to ask a little more for distributed cape.\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n I want to make a Distributed CAPE.\r\nI want to analyze the file uploaded to master with worker.\r\n\r\n# Current Behavior\r\nThe file is uploaded by` node = x` in master and sent to the Worker side (task status on the master side becomes distributed). \r\n`curl -F file=@file -F options=\"node=worker\" http://localhost:8000/apiv2/tasks/create/file/`\r\n\r\nHowever, Worker does not analyze the file as pending. There is file on worker `/tmp/cuckoo-tmp/ `.\r\n\r\nI tried and looked at the log, but I didn't understand, so if you have any hints, please let me know.\r\n\r\ndist.log on master\r\n![image](https://user-images.githubusercontent.com/58881955/129692831-5f7b2bb3-269c-4c98-af7b-e292e2d1f57e.png)\r\n\r\nI made the following settings for the distributed cape.\r\n```\r\n\u30fbreporting.conf\r\n\u3000- [mongodb]\r\n\u3000\u3000- port=27020\r\n\u3000- [distributed]\r\n\u3000\u3000- enable\uff08only master\uff09\r\n\u3000\u3000- db=postgresql\r\n\u30fbapi.conf\r\n\u3000- [list_exitnodes]\r\n\u3000\u3000- enable\r\n\u3000- [machinelist]\r\n\u3000\u3000- enable\r\n\u3000- [machineview] \uff08only worker\uff09\r\n\u3000\u3000- enable\r\n\u3000- [cuckoostatus]\uff08only worker\uff09\r\n\u3000\u3000- enable\r\n\u30fbdist.ini setting\r\n\u30fbDistributed Mongo setup\r\n\u30fbnode register and enabled\r\n```\r\n\r\n\nComment: Hello, if status is pending, there could be 1 of this 2 issues\r\n1. permission - something running with wrong user, for example web started as root and cape as cape user, that gens that\r\n2. is x64 sample and you didn't set the x64 tag in hypervisor config\nComment: Thank you for your reply.\r\n\u2460I think that there is no problem because all the execution users are capes.\r\n\r\n\u2461So maybe it's a problem with tags, tags is a parameter with tags = x64, like setting it in virtualbox.conf (because I'm using VirtualBox for the sando box), isn't it?\r\n\r\nI have set it, and even if I check the node, the following is displayed in tags, but pending does not proceed ...\r\n\r\n` {\"worker\": {\"name\": \"worker\", \"url\": \"http://10.64.180.155:8000/apiv2/\", \"machines\": [{\"name\": \"win10\", \"platform\": \"windows\", \"tags\": [\"x64\"]}], \"enabled\": true},`\nComment: Does it process it if you submit sample directly to worker?\n\nEl mi\u00e9., 18 ago. 2021 12:23, ai-suzuki ***@***.***> escribi\u00f3:\n\n> Thank you for your reply.\n> \u2460I think that there is no problem because all the execution users are\n> capes.\n>\n> \u2461So maybe it's a problem with tags, tags is a parameter with tags = x64,\n> like setting it in virtualbox.conf (because I'm using VirtualBox for the\n> sando box), isn't it?\n>\n> I have set it, and even if I check the node, the following is displayed in\n> tags, but pending does not proceed ...\n>\n> {\"worker\": {\"name\": \"worker\", \"url\": \"http://10.64.180.155:8000/apiv2/\",\n> \"machines\": [{\"name\": \"win10\", \"platform\": \"windows\", \"tags\": [\"x64\"]}],\n> \"enabled\": true},\n>\n> \u2014\n> You are receiving this because you commented.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/559#issuecomment-900998901>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH36JLO77FMKWDMQYHXLT5OCYPANCNFSM5CJMNWIA>\n> .\n> Triage notifications on the go with GitHub Mobile for iOS\n> <https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675>\n> or Android\n> <https://play.google.com/store/apps/details?id=com.github.android&utm_campaign=notification-email>\n> .\n>\n\nComment: No\u2026\r\nIt was pending even if I sent it directly to the worker.\nComment: Then it not problem with the dist, always try to do directly if something\ndoesnt work\n\nEl jue., 19 ago. 2021 2:00, ai-suzuki ***@***.***> escribi\u00f3:\n\n> No\u2026\n> It was pending even if I sent it directly to the worker.\n>\n> \u2014\n> You are receiving this because you commented.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/559#issuecomment-901506478>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH33EFLX6HHQDIK2T7STT5RCRPANCNFSM5CJMNWIA>\n> .\n> Triage notifications on the go with GitHub Mobile for iOS\n> <https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675>\n> or Android\n> <https://play.google.com/store/apps/details?id=com.github.android&utm_campaign=notification-email>\n> .\n>\n\nComment: I tried again, but in master, if I put the file directly, it was analyzed.\r\nHowever, the analysis does not start even if you put it directly in the worker.\r\nIt worked before the distributed configuration, but why ...\r\n\r\nI'll try a little more.\nComment: Your worker should works as workwr and as normal server, both ofvthem are\nusing differend pstgresdb?\n\nEl vie., 20 ago. 2021 11:06, ai-suzuki ***@***.***> escribi\u00f3:\n\n> I tried again, but in master, if I put the file directly, it was analyzed.\n> However, the analysis does not start even if you put it directly in the\n> worker.\n> It worked before the distributed configuration, but why ...\n>\n> I'll try a little more.\n>\n> \u2014\n> You are receiving this because you commented.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/559#issuecomment-902549958>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH356GDNIGP46S574CBTT5YLITANCNFSM5CJMNWIA>\n> .\n> Triage notifications on the go with GitHub Mobile for iOS\n> <https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675>\n> or Android\n> <https://play.google.com/store/apps/details?id=com.github.android&utm_campaign=notification-email>\n> .\n>\n\nComment: Does differend pstgresdb mean that the normal use db and the distribution db are separated?\nComment: on master you should have db for cape and capedist, you cna name them as you want. then on each worker you have a normal db like if that would be a normal cape, uniq change for worker is how you set mongo\nComment: OK.\r\nAs for confirmation, does each configuration file have such an image?\r\n\r\n\u30fbmaster\r\ncuckoo.conf >db is own cape db\u3000\r\nreporting.conf > db is capedist\r\n\r\n\u30fbworker\r\ncuckoo.conf >db is own cape db\u3000\r\nreporting.conf > db is capedist\uff08master's capedist\uff09\nComment: No, worker doesnt need dist enabled, only master\n\nEl vie., 20 ago. 2021 12:55, ai-suzuki ***@***.***> escribi\u00f3:\n\n> OK.\n> As for confirmation, does each configuration file have such an image?\n>\n> \u30fbmaster\n> cuckoo.conf >db is own cape db\n> reporting.conf > db is capedist\n>\n> \u30fbworker\n> cuckoo.conf >db is own cape db\n> reporting.conf > db is capedist\uff08master's capedist\uff09\n>\n> \u2014\n> You are receiving this because you commented.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/559#issuecomment-902609976>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3ZMBAFX45IDAXHI5GTT5YYALANCNFSM5CJMNWIA>\n> .\n> Triage notifications on the go with GitHub Mobile for iOS\n> <https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675>\n> or Android\n> <https://play.google.com/store/apps/details?id=com.github.android&utm_campaign=notification-email>\n> .\n>\n\nComment: OK.Thank you very much.\r\nOnly master is separated.",
+  "Title: tlsdump fixes\nBody: None",
+  "Title: Suricata failure\nBody: \r\n- [ x] I am running the latest version\r\n- [x ] I checked the documentation and found no answer\r\n- [ x] I checked to make sure that this issue has not already been filed\r\n- [x ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x ] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nSuricata is not functioning properly/not reporting on findings.\r\n\r\n# Current Behavior\r\n\r\nSuricata is running into errors when analyzing, and returns no data\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. I run Suricata in a terminal tab\r\n2. In a new tab I run cuckoo.py\r\n3. in a third tab I run the web file to enable the web interface\r\n4. on the first terminal tab, I get the error of permission denied, even though permissions seem to be correct\r\n\r\n<img width=\"1384\" alt=\"Screen Shot 2021-08-16 at 11 17 03 AM\" src=\"https://user-images.githubusercontent.com/74917582/129603517-e7d93eec-2e9f-4eeb-855c-2429a40464cc.png\">\r\n\r\n\nComment: hello which permission did you check? we looking for permissions inside of the `/etc/suricata/suricata.yaml`, user nad group\nComment: see all the seds for suricata tunning https://github.com/doomedraven/Tools/blob/master/Sandbox/cape2.sh#L490\nComment: \r\n<img width=\"587\" alt=\"Screen Shot 2021-08-16 at 12 20 31 PM\" src=\"https://user-images.githubusercontent.com/74917582/129611144-f9f24c2d-30a7-4f6d-8337-c41fbc4da613.png\">\r\n\r\nHere are the permissions for that\nComment: I ran through the resource you shared:https://github.com/doomedraven/Tools/blob/master/Sandbox/cape2.sh#L490\r\n\r\nis Suricata supposed to actually be running in another tab, or does CAPE handle it all automatically?\nComment: no, ls -l isn't the proper permission, inside of the suricata.yam, you should specify with which permission aka user and group suricata should be executed, see that link that i pointed, about run in terminar or any other, depends of your taste, i run it with systemd, but you def need to configure suricata.yaml properly\nComment: Okay, I went into the Suricata.yaml file and set the user and group to root. I'm testing now to see if its working....\r\n\r\nIs there a way to make the web platform HTTPS with an SSL certificate?\nComment: Thatshouldnt be root, it should be cape\n\nEl lun., 16 ago. 2021 21:09, OriginalPwnster ***@***.***>\nescribi\u00f3:\n\n> Okay, I went into the Suricata.yaml file and set the user and group to\n> root. I'm testing now to see if its working....\n>\n> Is there a way to make the web platform HTTPS with an SSL certificate?\n>\n> \u2014\n> You are receiving this because you commented.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/557#issuecomment-899751775>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH337ZFNM253J2WMWG2DT5FO73ANCNFSM5CIEZNMA>\n> .\n> Triage notifications on the go with GitHub Mobile for iOS\n> <https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675>\n> or Android\n> <https://play.google.com/store/apps/details?id=com.github.android&utm_campaign=notification-email>\n> .\n>\n\nComment: About https do read of my instalatiin scripr, you will get somw hints, but\nthat work will be on you as that is another thing yoy can use nginx apache\nor abytgong that you like\n\nEl lun., 16 ago. 2021 21:11, Andriy Brukhovetskyy ***@***.***>\nescribi\u00f3:\n\n> Thatshouldnt be root, it should be cape\n>\n> El lun., 16 ago. 2021 21:09, OriginalPwnster ***@***.***>\n> escribi\u00f3:\n>\n>> Okay, I went into the Suricata.yaml file and set the user and group to\n>> root. I'm testing now to see if its working....\n>>\n>> Is there a way to make the web platform HTTPS with an SSL certificate?\n>>\n>> \u2014\n>> You are receiving this because you commented.\n>> Reply to this email directly, view it on GitHub\n>> <https://github.com/kevoreilly/CAPEv2/issues/557#issuecomment-899751775>,\n>> or unsubscribe\n>> <https://github.com/notifications/unsubscribe-auth/AAOFH337ZFNM253J2WMWG2DT5FO73ANCNFSM5CIEZNMA>\n>> .\n>> Triage notifications on the go with GitHub Mobile for iOS\n>> <https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675>\n>> or Android\n>> <https://play.google.com/store/apps/details?id=com.github.android&utm_campaign=notification-email>\n>> .\n>>\n>\n\nComment: closing this as issue is on the user side and not related to cape",
+  "Title: 32bit executable stuck in pending stage\nBody: ## About accounts on [capesandbox.com](https://capesandbox.com/)\r\n* Issues isn't the way to ask for account acctivation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username\r\n\r\n## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n# Expected Behavior\r\n\r\nCape2 to finish processing the scanned file and generate a report or some event happening in the analysis machine.\r\n\r\n```\r\ncape2@ubuntu:~/Desktop$ file ChromeSetup.exe \r\nChromeSetup.exe: PE32 executable (GUI) Intel 80386, for MS Windows\r\n```\r\n\r\n# Current Behavior\r\n\r\nStuck in the pending stage from Web UI.\r\n\r\n# Failure Information (for bugs)\r\n\r\nIt looks like the process has exited with error code 1. However, the UI is still up and stuck in the pending stage.\r\n\r\n```\r\ncape2@ubuntu:~$ systemctl status cape\r\n\u25cf cape.service - CAPE\r\n     Loaded: loaded (/lib/systemd/system/cape.service; enabled; vendor preset: >\r\n     Active: activating (auto-restart) (Result: exit-code) since Sat 2021-08-14>\r\n       Docs: https://github.com/kevoreilly/CAPEv2\r\n    Process: 927 ExecStart=/usr/bin/python3 cuckoo.py (code=exited, status=1/FA>\r\n   Main PID: 927 (code=exited, status=1/FAILURE)\r\n\r\nAug 14 09:27:13 ubuntu systemd[1]: cape.service: Main process exited, code=exit>\r\nAug 14 09:27:13 ubuntu systemd[1]: cape.service: Failed with result 'exit-code'.\r\nlines 1-9/9 (END)\r\n```\r\n\r\n## Steps to Reproduce\r\n\r\n```\r\nFollow the steps here to install:\r\nInstallation recommendations and scripts for optimal performance\r\nFor best compability we strongly suggest installing on Ubuntu 20.04 LTS\r\nKVM is recommended as hypervisor, replace <W00T> to real pattern\r\nsudo ./kvm-qemu.sh all <username> | tee kvm-qemu.log\r\nTo install CAPE itself, cape2.sh with all optimizations\r\nsudo ./cape2.sh base cape | tee cape.log\r\nReboot and enjoy\r\n```\r\n\r\nHowever, instead of using qemu, I have set up several VMs in the same custom VMNet. \r\n1. Have installed the deps for Guest and changed the network configuration from: [https://capev2.readthedocs.io/en/latest/installation/guest_physical/requirements.html]\r\n2. Have ensured that the VMs are able to ping each other (Firewall off) \r\n3. Have ensured that the agent are listening to port 8000 by running `netstat -ano`\r\n4. Changed cuckoo.conf \r\n```\r\n# Specify the name of the machinery module to use, this module will\r\n# define the interaction between Cuckoo and your virtualization software\r\n# of choice.\r\nmachinery = physical\r\n...\r\n[resultserver]\r\n# The Result Server is used to receive in real time the behavioral logs\r\n# produced by the analyzer.\r\n# Specify the IP address of the host. The analysis machines should be able\r\n# to contact the host through such address, so make sure it's valid.\r\n# NOTE: if you set resultserver IP to 0.0.0.0 you have to set the option\r\n# `resultserver_ip` for all your virtual machines in machinery configuration.\r\nip = 0.0.0.0\r\n\r\n```\r\n5. Changed physical.conf\r\n```\r\n[physical01]\r\n# Specify the label name of the current machine as specified in your\r\n# physical machine configuration.\r\nlabel = physical01\r\n\r\n# Specify the operating system platform used by current machine\r\n# [windows/darwin/linux].\r\nplatform = windows\r\n\r\n# Specify the IP address of the current machine. Make sure that the IP address\r\n# is valid and that the host machine is able to reach it. If not, the analysis\r\n# will fail.\r\nip = 192.168.1.2\r\n\r\n# If you have not provided a resultserver in cuckoo.conf you can do it here\r\n# If you are using machinery \"multi\" you may have multiple networks connected to your CAPE host\r\n# and thus multiple possible ways for your analysis machines to connect so you can specify the\r\n# IP and port here\r\nresultserver_ip = 192.168.1.1\r\nresultserver_port = 2042\r\n```\r\n## Context\r\n\r\nCurrently, using the machines with VMware Workstation in an offline environment.\r\nGuest machines DNS and Gateway are set to Cape Machine\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | <code> commit 5399fc958cf728cda1229d6795f1a3326f0609fb (HEAD -> master, origin/master, origin/HEAD) Author: doomedraven <doommedraven@gmail.com> Date:   Tue Aug 3 08:18:50 2021 +0200 Update views.py </code>\r\n| OS version       | Ubuntu 20.04\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: once you open issue in one repo stay there with that issue. your steps to reproduce are wrong. why you just not run the command that `cape.service` runs? aka `python3 cuckoo.py -d `\r\n\nComment: and another question if you says vms but you set `machinery = physical` you have wrong configuration so far, you should set it to kvm\nComment: > once you open issue in one repo stay there with that issue. your steps to reproduce are wrong. why you just not run the command that `cape.service` runs? aka `python3 cuckoo.py -d `\r\n\r\nThank you for helping to close the issue at another repo. As you have suggested, I decided to move the query here instead. \r\nAfter running with `sudo python3 cuckoo.py -d`, I am encountering with the following error:\r\n2021-08-14 11:21:45,075 [root] CRITICAL: CuckooCriticalError: Physical machine credentials are missing, please add it to the config file\r\n\r\nMay I ask where I can insert the credentials?\r\n\r\nThank you @doomedraven for assisting :)\nComment: > and another question if you says vms but you set `machinery = physical` you have wrong configuration so far, you should set it to kvm\r\n\r\nI think I didnt explain properly above. What I am trying to achieve is on :https://capev2.readthedocs.io/en/latest/installation/guest_physical/saving.html#setup-using-vmware-bonus\r\n\r\nI am not sure if have read the instructions properly and not much documentation are there on setting up using vmware. From what I understand, it should be physical as currently I have two VMs in the same custom vmnet. (1 is cape and 1 is host)\nComment: permissions looks ok for `/opt/CAPEv2/data/yara/index_memory.yarc` so im not really sure why it fails for you, i guess try to remove that file and see again.\r\n\r\nyou are so confused i guess, you installing KVM to run VMWARE/FOG, i also don't have the full picture what you trying to do %)\r\nyou should use this if you using vms -> https://capev2.readthedocs.io/en/latest/installation/guest/index.html\r\nif you using FOG you should use https://capev2.readthedocs.io/en/latest/installation/guest_physical/saving.html\r\n\r\nvmnet is vmware? if yes then you should go with vmware and configure it properly, if you want to use baremetal you should use FOG, if you going with vms and KVM use kvm, \r\n\r\nabout credentials, in config\nComment: From the link: https://capev2.readthedocs.io/en/latest/installation/guest_physical/saving.html#setup-using-vmware-bonus\r\n\r\nTraditionally CAPE requires to be running some sort of virtualization software (e.g. KVM, VMware, Virtualbox, etc). **The physical machine manager will also work with other virtual machines**, so long as they are configured to revert to a snapshot on shutdown/reboot, and running the agent.py script. **A use case for this functionality would be to run the CAPE server and the guest sandboxes each in their own virtual machine on a single host, allowing for development/testing of CAPE without requiring a dedicated Linux host.**\r\n\r\nI am trying to achieve the bolded part\nComment: For credentials, I am digging in the conf folder, but I am not sure which file I am supposed to edit to include the credentials for the `physical` setup or should it be `kvm` setup?\nComment: you are totally wrong, `physical` is baremetal boxes see how to setup, link from docs https://mariohenkel.medium.com/using-cape-sandbox-and-fog-to-analyze-malware-on-physical-machines-4dda328d4e2c\r\n\r\nif you gonna use kvm you need to set kvm as that isn't physical, that is virtual machines inside of the physical box called server\nComment: ```\r\nA use case for this functionality would be to run the CAPE server and the guest sandboxes each in their own virtual machine on a  \r\n single host, allowing for development/testing of CAPE without requiring a dedicated Linux host.\r\n```\r\n\r\nMeans for the above, and I am using VMWare, if I have **two VMs (one is Cape and one is the guest machine)**.\r\nNote that: the guest machine is NOT in cape VM. \r\nI should be putting the configuration as `vmware` for my case? \nComment: i guess so, im not using vmware at all, you should be more familiar with your setup. there is some different tastes of vmware configs under `conf` folder. im clossing this issue as it not really cape issue is your setup, you might see which flavour of vmware you using and use proper config to manage that, but how that gonna work im not imagine, as networking routing using rooter won't be working for sure. so i can't really help here\nComment: I set physical because the page/guide I was trying to follow is park under https://capev2.readthedocs.io/en/latest/installation/**guest_physical**/saving.html#setup-using-vmware-bonus\r\n\r\nI thought that my setup is the non-traditional way of setting up where the guest machines are not hosted in Cape. But outside of Cape so that each machine is separated as a different machine as stated in the installation guide.\r\n\r\nIf what I am trying to do is impossible (The non-traditional way): **A use case for this functionality would be to run the CAPE server and the guest sandboxes each in their own virtual machine on a single host,** allowing for development/testing of CAPE without requiring a dedicated Linux host.\r\n\r\nI think should shift the link (https://capev2.readthedocs.io/en/latest/installation/guest_physical/saving.html#setup-using-vmware-bonus) to be out of `guest_physical` in the installation guide or at least not park it together with `fog` because it is a little misleading that it can be achieved with `physical` set up.\r\n\r\nWill appreciate if you can re-open the issue and let @kevoreilly or the collaborator who wrote that part to answer my query. \r\nThank you!\nComment: about docs could be, i didn't wrote that part so i can't mod what i didn't write. what you trying to do i guess is possible but you need to use proper version of vmware like vsphere something like that im not really vmware expect and im not using it at all, but as i told you there is diff configs for that so check them, but i can't help you here, you will need to figurate better which vmware are you using and how, but as i told having them in separate vms, if you fine to run all samples directly to internet or write custom firewall rules to route the traffic, if you looking toward testing enviroment, do not complicate your life, get one server that manages everything else and thats all\nComment: they can answer it anyway, but this isn't really cape issues, is issue that at least sound to me like you not sure how to setup it, and as i told   you have few vmware flavours under `conf` folder so use proper one\nComment: > about docs could be, i didn't wrote that part so i can't mod what i didn't write. what you trying to do i guess is possible but you need to use proper version of vmware like vsphere something like that im not really vmware expect and im not using it at all, but as i told you there is diff configs for that so check them, but i can't help you here, you will need to figurate better which vmware are you using and how, but as i told having them in separate vms, if you fine to run all samples directly to internet or write custom firewall rules to route the traffic, if you looking toward testing enviroment, do not complicate your life, get one server that manages everything else and thats all\r\n\r\n@doomedraven Thank you for your help so far. I understand that you didnt write that part of the documentation. With it being closed, I am not sure they will look at this issue. Will appreciate if you can re-open the issue and let @kevoreilly or the collaborator who wrote that part to answer my query or close this issue. \r\n\r\nAs you have stated I have set up firewall rules to ensure that VMs are talking/listening to each other. However, I still cannot find the part where I need to enter the credential for \r\n`CuckooCriticalError: Physical machine credentials are missing, please add it to the config file`\r\nThere isnt a part in physical.conf for me to fill in the credentials needed or the credentials are stored in a different location?\nComment: i have removed the part of vmware. i will open that for one week but if there no success i will close it \r\n\r\nphysical is `FOG` see https://github.com/kevoreilly/CAPEv2/issues/476\r\n```\r\n# TODO This should be moved to a per-machine thing.\r\n        if not self.options.physical.user or not self.options.physical.password:\r\n            raise CuckooCriticalError(\r\n                \"Physical machine credentials are missing, please add it to \"\r\n                \"the Physical machinery configuration file.\"\r\n            )\r\n```\nComment: about physical creds, there is no code that throws that error, so that doesn't come from CAPE %) now im even more confused about your setup\nComment: @doomedraven Thank you re-opening this issue and helping out. I really appreciate it. \r\nI am trying to use VMs to stimulate physical machines in the same subnet. One of them will be Cape Server and the rest will be guest machines. I am not using FOG to control the VMs too. \r\n\r\nThe ideal will be from the Cape Web UI, choose the machinery (for e.g. `machinery01`) and upload the file for scanning. (The VM (machinery01) will be online and agent will be listening before uploading)\r\n\r\nI am not sure if my setup is possible but I think it will be something new we can explore together\nComment: If it is possible, we can document it down and include it in the documentation and making Cape2 less resource intensive. \r\nFor e.g. Supporting new VMs (separated) from CapeServer, Writing script to turn on the guest VM before using API to trigger Cape Server etc\nComment: if you not using `FOG`, forget about `physical`. and use proper flavour of vmware from `conf` folder. well we are not interested in vmware, due to malware detection, kvm is the best to beat the detection.\r\n\r\nHow having 2 vms will be less resource intensive? having cape on server and vms on it that is the `light` setup, when you put everything in vms, you wasting resources `my personal point of view`\nComment: please stop edit old msgs, i was writing response and i got aware of that but is easy to mess with what you writing\nComment: Oh I didnt know that you guys are not interested in vmware. Hmm, I thought it will be. \r\nFor e.g. running Cape as the host with several guest machines. It will be limited by the resource that you allocated to the Cape VM. With testing on both the older and newer OS, the resource will just be expanding on 1 VM which will make it harder to move it in the end. (Like a 1TB VM compare to 1TB of several VMs)\nComment: cape runs on vmware just fine, but vmware is not the best hypervisor for malware analysis, and @kevoreilly can confirm that. you have kvm remote for that, but you have vmware remote, as i told you have many flavours of vmware supported, but as i told any network routing won't be handled by cape at all, so you will need to cover that part by yourself, im running cape cluster with many kvm servers(see distributed part) is much easier to scale horizontally than vertically and much cheaper. capesandbox.com is also in cluster mode\nComment: > please stop edit old msgs, i was writing response and i got aware of that but is easy to mess with what you writing\r\n\r\nSorry, I was trying to add in more context with examples. Didnt edit the original content.\r\nI also noticed that you deleted the page \"https://capev2.readthedocs.io/en/latest/installation/guest_physical/saving.html#setup-using-vmware-bonus\" instead of moving it somewhere. I thought that it will be good if we can enhance on that page instead of removing it entirely.\nComment: yes i have removed that, as that just confusing people as you, and we don't want that, if you want to bring documentation for something you are more than welcome, but there is 4-5 flavours of vmware so that can confuse even more \nComment: > cape runs on vmware just fine, but vmware is not the best hypervisor for malware analysis, and @kevoreilly can confirm that. you have kvm remote for that, but you have vmware remote, as i told you have many flavours of vmware supported, but as i told any network routing won't be handled by cape at all, so you will need to cover that part by yourself, im running cape cluster with many kvm servers(see distributed part) is much easier to scale horizontally than vertically and much cheaper. capesandbox.com is also in cluster mode\r\n\r\n@doomedraven Thank you for assisting and answering my query. Oh didnt know that,  vmware is not the best hypervisor for malware analysis. I guess I will try out with KVM cluster method. :) Thank you so much\nComment: you are welcome, i would suggest you, first get the normal setup, small, for playing arround if that isn't for your company, so you can try it and see if that fine for your needs(you can use https://capesandbox.com too to try it), but when you are not familiar how this works and start with networking complications, if you are not sysadmin that will be hard\nComment: Okay. I guess you are right. I will heed your advice to try out the normal setup and play around first.\r\n@doomedraven I would like to sincerely apologize to you if I have angered you in the process of my query. \r\nReally appreciate your help again in this matter. \nComment: hehe no im not anger at all :) i just feel you super confused what you trying to do, as i told if you see something confusing in docs, feel free to ping us or push improvements, but ya KVM is the best, and if you using my script don't forget to replace <W00T>\nComment: Hi folks looks like I am slow here but I do know a lot about running cape in a VMware vm and all that stuff. Problem is VMware is so bad from a malware detection perspective that I stopped using it completely a couple of years ago.\r\n\r\nKVM on Linux is much more painful for a Windoze guy like me, but in the end the results are what matter and doomedraven's custom KVM is without parallel in the malware virtualization world. In the end the pain is worth it.\nComment: @doomedraven hahaha okay, thank you for your help! \r\n\r\nI am trying out with KVM method as suggested but I cant seems to make the Host (Cape Server VM) to ping the guest machines (via KVM inside Cape Server VM) and setting up shared folder to transfer files between the host and guest machines. The IP issued in the guest machine seems to be incorrect from the range provided in KVM too.\r\n\r\n![GuestIP](https://user-images.githubusercontent.com/88184866/130193716-20779ba1-629b-4c9a-987d-c29bc9de7e31.png)\r\n![GuestVM-NIC-Settings](https://user-images.githubusercontent.com/88184866/130193719-41aaf744-99c0-476b-819a-4eb90c6f5307.png)\r\n\r\n\r\nI also know there is not a right channel to ask about this kind of matters. May I ask if it is possible for me to contact you elsewhere? Like Slack or Glitter? \nComment: @kevoreilly Thank you for joining in. :) Thank you for your advice too. \nComment: @OtisOat IP inside of the vm should be set by you, as DHCP doesn't work for host only, and it useless here as you need to have static map of vm to ip\nComment: @doomedraven Oh didnt know need to set it ourselves. Thanks for all your help. :) Managed to run it with the recommended setup. Going to continue to play with it :)\nComment: glad taht you got it working, feel free to add clarification to the documentation that you think could help to all new users to start. so can we close this? you can keep posting here or open new issues if you want, i will get them in both cases\nComment: Here are some comments:\r\n0. The two scripts cape2.sh and kvm-qemu,sh definitely help to speed up a lot of troubles in setting up both Cape and KVM.\r\n1. I think can add in some debug commands for new users to run to also help to provide some context of the problem. Like `virt-manager --debug` & `sudo python3 cuckoo.py -d`  & `sudo service cape restart/stop`\r\n2. .To be more dummy/me proof, I think can add a line at https://www.doomedraven.com/2020/04/how-to-create-virtual-machine-with-virt.html (At Point 0. - To set static IP in the guest VM later with the given IP range) \r\n3. Setting up Guest machine with `https://github.com/doomedraven/Tools/blob/master/Windows/choco.bat`. I also have a similar problem as `https://mariohenkel.medium.com/using-cape-sandbox-and-fog-to-analyze-malware-on-physical-machines-4dda328d4e2c`. Have to run the commands manually after installing the dependencies. \nComment: @doomedraven I would like to ask if you know about the reporting feature. I have tried to enable the configurations below. But under `storage/analyses/X/` there are no reports folder generated. Am I missing some dependencies? There are no error messages from `sudo python3 cuckoo.py -d` too.\r\n```\r\n\r\n[reporthtml]\r\n# required for the WSGI interface\r\nenabled = yes\r\n\r\n[reporthtmlsummary]\r\n# much smaller, faster report generation, omits API logs and is non-interactive\r\nenabled = yes\r\n\r\n[reportpdf]\r\n# Note that this requires reporthtmlsummary to be enabled above as well\r\nenabled = yes\r\n```\nComment: hello thanks for feedback,  by parts :)\r\n1. about debug points, well everything has `-h`, so that is users part, my script is done for production and problems that happens is due to users bad configuration or some mess on their side, so they can stop services and run everything by hand. that what you should do anyway when trying to spot the problem\r\n2. did you read the cape docs? it says about static ip https://capev2.readthedocs.io/en/latest/installation/guest/network.html#virtual-networking\r\n3. im aware of that but can't do much more, at least you just need copy&paste not search by yourself, the same with cape2.sh and kvm-qemu.sh as before everyone was walking docs page by page and installing everything. so here till user not installs proper deps, choco.bat won't work fine\r\n4. about reporting, if you change config, you need to restart processing, in same cases cape and web, depends what you changing\nComment: hello :) thanks for all your help so far. :)\r\nI have restarted with two different ways `sudo service cape restart` and `sudo service cape stop` & `sudo python3 cuckoo.py -d`. But no reports are generated :(\nComment: that isn't processing, that is cape, you need to restart cape-processor, please become familiar with all cape services and what they do that will help you a lot\r\n\r\nNEVER DO THIS!\r\n```\r\nsudo python3 cuckoo.py -d \r\n```\r\n\r\nyou will break permissions on logs, and other stuff that can later give you more headache, forget about sudo for cape, only rooter service should be run as root\r\n\nComment: oh my bad. How do i restart cape-processor? \nComment: sudo systemctl restart cape-processor\nComment: The 4 cape services:\r\n\r\ncape\r\ncape-web\r\ncape-processor\r\ncape-rooter\nComment: @kevoreilly thank you! Let me try :)\nComment: I chime in for the easy bits :-D\nComment: @kevoreilly Thank you. It works by restarting cape-processor. I think both @doomedraven and you had put in lots of effort in this. It is already a blessing for both of you helping out\nComment: @OtisOat  see readme i have updated it a bit to include some of that info https://github.com/kevoreilly/CAPEv2/blob/master/README.md\r\n\r\nclosing this as issue is solved\nComment: @doomedraven Looks good. :) Thank you for all your help :)\nComment: Can i also ask sth about my setup? Currently Cape VM has over 50GB of free space. However, I am encountering this error:\r\n```\r\n2021-08-24 03:12:05,458 [lib.cuckoo.core.scheduler] ERROR: Not enough free disk space! (Only 40353 MB!). You can change  \r\nlimits it in cuckoo.conf -> freespace\r\n```\nComment: As msg says you can change that in that conf\n\nEl mar., 24 ago. 2021 5:13, OtisOat ***@***.***> escribi\u00f3:\n\n> Can i also ask sth about my setup? Currently Cape VM has over 50GB of free\n> space. However, I am encountering this error:\n>\n> 2021-08-24 03:12:05,458 [lib.cuckoo.core.scheduler] ERROR: Not enough free disk space! (Only 40353 MB!). You can change limits it in cuckoo.conf -> freespace\n>\n> \u2014\n> You are receiving this because you were mentioned.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/556#issuecomment-904288571>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH33ZROMM5POESUSPVA3T6ME4TANCNFSM5CE55QJQ>\n> .\n> Triage notifications on the go with GitHub Mobile for iOS\n> <https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675>\n> or Android\n> <https://play.google.com/store/apps/details?id=com.github.android&utm_campaign=notification-email>\n> .\n>\n\nComment: @doomedraven Yup, I know. I can set it to lower or higher or even 0 to disable the check. But I was wondering why it is reporting no free space when there is over 50 GB of free space\nComment: you can set it to 0, do you know what will happend to your OS when your disk will reach of of space? everything will  just crash\nComment: @doomedraven yup, I know. That\u2019s why I am asking what\u2019s wrong with the setup instead of setting to 0. From disk management, there are still 50GB free space. Not sure why cape is complaining that there are not enough free space when the setting is just 50MB. \nComment: dude as i told cape out of the box is ready for production and nobody wants to break their production, as msg tells you can change that to anything that you want, thats all, \r\n\r\n50gb of space is nothing for production, less then 25 analysis and you out of memory :D\nComment: I think there is a misunderstanding here. I know that 50GB is nothing for production too. \r\nMy question is even though **there is ample of space in the VM (50GB now), CAPE is complaining that there is insufficient space (In confg file, is freespace=50MB). Hence even if I allocate 1TB to CAPE VM, CAPE will still be complaining that there is insufficient space. Why?**\r\n\nComment: I have a separate question on setting up Win10 Guest machines. I did the same setup for win7 x86 and x64 machines and have no issues detonating `ChromeSetup.exe`. (Chrome setup ran successfully and the results are returned to Cape). However, for Win10, it seems to be stuck at `caller_dispatch`  (Please refer to the screenshots)\r\n\r\nBoth are 32bits and have disabled both firewall and Windows Defender. \r\n\r\n![Win10](https://user-images.githubusercontent.com/88184866/130578431-eed8d298-7249-46a5-b742-bc8530582796.png)\r\n![Win7](https://user-images.githubusercontent.com/88184866/130578440-cbb45083-9d7b-4d78-9d5b-2e9b47c57cf8.png)\nComment: Check config.c in capemon for some monitor options that will allow you to gain more insight into these errors - you have now firmly entered 'unsupported' territory with Windows10 (especially 32-bit) and Chrome. I have spent a lot of time trying to get Chrome working but it doesn't work well with capemon's hooks so I'm sorry to say, but I wouldn't even bother installing it,\r\n\nComment: (Also your monitor is out of date)\nComment: @kevoreilly I tried with other binaries too like python installer, etc but all seems to be stuck at the same location. \r\nOh i didnt know Win10 x86 is unsupported. May I ask if Win10x64, Ubuntu of different architecture are supported?\nComment: I am working on Win10 - check capemon issues\nComment: (But I don't see the point in working on 32-bit as it's almost obsolete)\nComment: @kevoreilly okay. Thank you for the update :)\r\nAs for outdated capemon, I installed via @doomedraven `cape2.sh` script recently. May I ask how I can update it?\r\nThank you\r\n\nComment: sudo su cape\r\ncd /opt/CAPEv2/\r\ngit pull\nComment: @kevoreilly Thank you so much! :)\nComment: don't get me wrong but did you read readme and docs? https://github.com/kevoreilly/CAPEv2/#how-to-update",
+  "Title: bump SFlock2 dependency; 0.3.23 \u2192 0.3.26\nBody: Just a version bump of SFlock2.",
+  "Title: make lowered, normalized search terms explicit\nBody: There's a few special search terms (md5, sha1, etc.) previously sent to MongoDB in their natural form. Most terms default to [using a regex](https://github.com/kevoreilly/CAPEv2/blob/090c879c2c6dc8c59d2cbe10124be029a49307d0/lib/cuckoo/common/web_utils.py#L883). \r\n\r\nThis PR pulls the lowered normalized search terms into `normalized_lower_terms`, and lets the following search terms skip the regex filter:\r\n- md5\r\n- sha1\r\n- sha3\r\n- sha256\r\n- sha512\r\n- ip\r\n- domain\r\n- ja3_hash\r\n- dhash\r\n- iconhash\r\n- imphash",
+  "Title: Disable PredatorPain without log errors\nBody: With the \".py\" extension on the file, it didn't get correctly loaded and caused errors in the log.\r\n\r\nRemoving the extension makes so that it isn't loaded and doesn't cause errors.\nComment: so strange, i had move that to .py_disabled, not sure how .py was added again, thanks",
+  "Title: API for Distributed CAPE doesn't run due to \"'yara' is not defined\" error.\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nUltimately, I want to make a Distributed CAPE.\r\nI created dist.ini for that, so I want to run the API and add a node from a worker.\r\n\r\n# Current Behavior\r\n\r\nIt was set with reference to this manual.\r\nhttps://capev2.readthedocs.io/en/latest/usage/dist.html?highlight=dist\r\n\r\nWhen I execute the API with the following command, I get an error that yara is not defined.\r\nOf course, the worker doesn't recognize it either ...\r\n`uwsgi --ini /opt/CAPEv2/utils/dist.ini`\r\n\r\nyara-python is installed.\r\n```\r\n(venv-cape) root@cape-master:~# pip list |grep yara\r\nyara-python               4.1.0\r\n(venv-cape) root@cape-master:~#\r\n```\r\n\r\nyara can also be imported.\r\n```\r\n(venv-cape) root@cape-master:~# python\r\nPython 3.8.5 (default, May 27 2021, 13:30:53)\r\n[GCC 9.3.0] on linux\r\nType \"help\", \"copyright\", \"credits\" or \"license\" for more information.\r\n>>> import yara\r\n>>> print(yara.__version__)\r\n4.1.0\r\n>>>\r\n```\r\n\r\nHowever, when I run the API, the following debug appears.\r\n```\r\n(venv-cape) root@cape-master:~# uwsgi --ini /opt/CAPEv2/utils/dist.ini\r\n[uWSGI] getting INI configuration from /opt/CAPEv2/utils/dist.ini\r\n*** Starting uWSGI 2.0.19.1 (64bit) on [Wed Jul 28 03:06:17 2021] ***\r\ncompiled with version: 9.3.0 on 26 July 2021 09:56:08\r\nos: Linux-5.8.0-55-generic #62~20.04.1-Ubuntu SMP Wed Jun 2 08:55:04 UTC 2021\r\nnodename: cape-master\r\nmachine: x86_64\r\nclock source: unix\r\npcre jit disabled\r\ndetected number of CPU cores: 4\r\ncurrent working directory: /root\r\ndetected binary path: /usr/local/bin/uwsgi\r\nchdir() to /opt/CAPEv2/utils\r\nyour processes number limit is 31609\r\nyour memory page size is 4096 bytes\r\n *** WARNING: you have enabled harakiri without post buffering. Slow upload could be rejected on post-unbuffered webservers ***\r\ndetected max file descriptor number: 1048576\r\nlock engine: pthread robust mutexes\r\nthunder lock: disabled (you can enable it with --thunder-lock)\r\nuwsgi socket 0 bound to TCP address 0.0.0.0:9003 fd 3\r\nsetuid() to 1000\r\nPython version: 3.8.5 (default, May 27 2021, 13:30:53)  [GCC 9.3.0]\r\nPython main interpreter initialized at 0x562299f363c0\r\npython threads support enabled\r\nyour server socket listen backlog is limited to 100 connections\r\nyour mercy for graceful operations on workers is 60 seconds\r\nmapped 229488 bytes (224 KB) for 5 cores\r\n*** Operational MODE: threaded ***\r\n*** uWSGI is running in multiple interpreter mode ***\r\nspawned uWSGI master process (pid: 2916)\r\nspawned uWSGI worker 1 (pid: 2917, cores: 5)\r\nwriting pidfile to /tmp/dist.pid\r\nwriting pidfile to /tmp/dist.pid\r\n*** Stats server enabled on 127.0.0.1:9191 fd: 9 ***\r\nmounting dist.py on /\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/objects.py\", line 814, in init_yara\r\n    File.yara_rules[category] = yara.compile(filepaths=rules, externals=externals)\r\nNameError: name 'yara' is not defined\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"dist.py\", line 33, in <module>\r\n    from lib.cuckoo.common.config import Config\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/config.py\", line 11, in <module>\r\n    from lib.cuckoo.common.objects import Dictionary\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/objects.py\", line 834, in <module>\r\n    init_yara()\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/objects.py\", line 815, in init_yara\r\n    except yara.Error as e:\r\nNameError: name 'yara' is not defined\r\nOOPS ! failed loading app in worker 1 (pid 2917) :( trying again...\r\nDAMN ! worker 1 (pid: 2917) died :( trying respawn ...\r\nRespawned uWSGI worker 1 (new pid: 2919)\r\nmounting dist.py on /\r\n```\r\n\r\nI can't even try to add a node from a worker\r\n`curl http://X.X.X.X:9003/node -F name=worker -F url=http://10.64.180.161:8000/apiv2/`\r\n\r\ndist.ini is set like this.\r\n```\r\n[uwsgi]\r\n    plugins = /usr/lib/uwsgi/plugins/python3_plugin.so\r\n    callable = app\r\n    ;change this patch if is different\r\n    chdir = /opt/CAPEv2/utils\r\n    master = true\r\n    mount = /=dist.py\r\n    threads = 5\r\n    workers = 2\r\n    manage-script-name = true\r\n    ; if you will use with nginx, comment next line\r\n    socket = 0.0.0.0:9003\r\n    safe-pidfile = /tmp/dist.pid\r\n    protocol=http\r\n    enable-threads = true\r\n    lazy = true\r\n    timeout = 600\r\n    chmod-socket = 664\r\n    chown-socket = cape:cape\r\n    gui = cape\r\n    uid = cape\r\n    harakiri = 30\r\n    hunder-lock = True\r\n    stats = 127.0.0.1:9191\r\n```\nComment: hello\r\n\r\nyara is there https://github.com/kevoreilly/CAPEv2/blob/master/lib/cuckoo/common/objects.py#L37\r\n\r\nyour problem is that you run uwsgi without setting properly venv\r\nyou need to add something like, fixing the path, google and uwsgi docs can provide more info about that\r\n```\r\nvenv = /var/www/venv\r\n```\nComment: https://github.com/kevoreilly/CAPEv2/commit/5e69cc42cda5219ba95a8b4d48111b7f5c293057\r\nhttps://uwsgi-docs.readthedocs.io/en/latest/Python.html#virtualenv-support\nComment: thank you.\r\nI tried modifying dist.ini but it didn't work.\r\nIn a virtual environment, uwsgi also seems to need to be installed with pip.\nComment: yes, to ensure that everything works run with `python3 manage.py runserver 0.0.0.0:8000` so you can see if that is python problem or cape, as venv is nice but sometime is just a pain from my experience\nComment: `python3 manage.py runserver 0.0.0.0:8000` is working fine.\r\n\r\nI was facing the same problem as them.\r\nhttps://github.com/unbit/uwsgi/issues/1688\r\n\r\nI can't fix it, so maybe I'll try again without venv.\nComment: uff, let us know how you solve so i can update docs, but ya is hard to get it properly working sometimes, i have tried recently `gunicorn`, but it didn't worked better for me, but is simplied in configuration, maybe you want to check it \nComment: OK. I'll tell you.\nComment: btw pay attention to the plugins, they might be in different folder if you install in venv\r\n```\r\nplugins-dir = /usr/lib/uwsgi/plugins\r\nplugins = python38\r\n```\r\n\r\ncheck if plugins dir is correct adn try to add that to your config also as uwsgi started to work better for me after set that\nComment: Even in my environment, the plugin was in / usr / lib / uwsgi / plugins.\r\n\u21d2\u3000I fixed it to, but it didn't work  /root/venv-cape/plugins\nComment: I felt the limit of venv, so I recreated the Cape directly on the OS(I made it a cape user instead of root). I was able to start uwsgi without the fatal error that was annoying when using venv. However, it is said that there is no module.\r\n\r\nCAPEv2/modules/processing/parsers/CAPE/PredatorPain.py_disabled.py seems to be correct, but is CAPEv2 /cuckoo.pyproj relevant?\r\nModify this <Compile Include=\"modules\\processing\\parsers\\malwareconfig\\PredatorPain.py\" />?\r\n\r\n```\r\ncape@cape-master2:~$ sudo uwsgi --ini /opt/CAPEv2/utils/dist.ini\r\n[uWSGI] getting INI configuration from /opt/CAPEv2/utils/dist.ini\r\n*** Starting uWSGI 2.0.18-debian (64bit) on [Wed Aug  4 07:27:17 2021] ***\r\ncompiled with version: 10.0.1 20200405 (experimental) [master revision 0be9efad938:fcb98e4978a:705510a708d3642c9c962beb663c476167e4e8a4] on 11 April 2020 11:15:55\r\nos: Linux-5.8.0-63-generic #71~20.04.1-Ubuntu SMP Thu Jul 15 17:46:08 UTC 2021\r\nnodename: cape-master2\r\nmachine: x86_64\r\nclock source: unix\r\npcre jit disabled\r\ndetected number of CPU cores: 4\r\ncurrent working directory: /home/cape\r\ndetected binary path: /usr/bin/uwsgi-core\r\nchdir() to /opt/CAPEv2/utils\r\nyour processes number limit is 15505\r\nyour memory page size is 4096 bytes\r\n *** WARNING: you have enabled harakiri without post buffering. Slow upload could be rejected on post-unbuffered webservers ***\r\ndetected max file descriptor number: 1048576\r\nlock engine: pthread robust mutexes\r\nthunder lock: disabled (you can enable it with --thunder-lock)\r\nuwsgi socket 0 bound to TCP address 0.0.0.0:9003 fd 3\r\nsetuid() to 1001\r\nPython version: 3.8.10 (default, Jun  2 2021, 10:49:15)  [GCC 9.4.0]\r\nPython main interpreter initialized at 0x55c643f9daf0\r\npython threads support enabled\r\nyour server socket listen backlog is limited to 100 connections\r\nyour mercy for graceful operations on workers is 60 seconds\r\nmapped 229488 bytes (224 KB) for 5 cores\r\n*** Operational MODE: threaded ***\r\n*** uWSGI is running in multiple interpreter mode ***\r\nspawned uWSGI master process (pid: 9353)\r\nspawned uWSGI worker 1 (pid: 9354, cores: 5)\r\nwriting pidfile to /tmp/dist.pid\r\nwriting pidfile to /tmp/dist.pid\r\n*** Stats server enabled on 127.0.0.1:9191 fd: 9 ***\r\nmounting dist.py on /\r\nCAPE parser: No module named PredatorPain.py_disabled - No module named 'modules.processing.parsers.CAPE.PredatorPain'\r\nThe flask-restful package is required: pip3 install flask-restful\r\nDAMN ! worker 1 (pid: 9354) died :( trying respawn ...\r\nRespawned uWSGI worker 1 (new pid: 9462)\r\nmounting dist.py on /\r\n```\nComment: thanks for feedback\r\nabout predator don't worry i renamed that to .py_disabled as i don't want extra dependencies on dead extractors(outdated), about ` /cuckoo.pyproj` that is for visual studio, so no not relavant\nComment: btw it looks like you have missed dependencies \r\n```\r\nThe flask-restful package is required: pip3 install flask-restful\r\n```\nComment: Flask-restful was installed but I got a message\nComment: hm then for some reason it can't import it i guess\nComment: Could you check whether your python packages are installed for the user or for root? You may have mistakenly installed the python packages for the user but not for the root user. Try `sudo pip3 install flask-restful` and see if it installs for the root user\nComment:  true! I had it installed for the cape user ... \r\nI installed it for root and it works fine. thank you very much!!!\r\n\r\nAfter that, proceed with the replication settings of mongodb\nComment: I tried to register masters and workers as below,\r\n```\r\ncurl http://localhost:9003/node -F name=master -F url=http://<MASTER_IP>:8000/api/\r\ncurl http://localhost:9003/node -F name=worker -F url=http://<WORKER_IP>:8000/api/\r\n```\r\nI got an error like this.\r\nI didn't know what was wrong.\r\n`{\"message\": \"Invalid CAPE node (http://<WORKER_IP>:8000/apiv2): 'data'\"}`\r\n\r\n\r\nDoes part `-F name=master `need to be associated with Conf?\nComment: Have you enabled in api the machine list endpoint? I think is disabled by\ndefault and i need to ads note about this in docs\n\nEl mar., 10 ago. 2021 6:27, ai-suzuki ***@***.***> escribi\u00f3:\n\n> I tried to register masters and workers as below,\n>\n> curl http://localhost:9003/node -F name=master -F url=http://<MASTER_IP>:8000/api/\n> curl http://localhost:9003/node -F name=worker -F url=http://<WORKER_IP>:8000/api/\n>\n> I got an error like this.\n> I didn't know what was wrong.\n> {\"message\": \"Invalid CAPE node (http://<WORKER_IP>:8000/apiv2): 'data'\"}\n>\n> \u2014\n> You are receiving this because you modified the open/close state.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/552#issuecomment-895719329>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH37F56BZJPQGYB47C7LT4CTCFANCNFSM5BMLPLCA>\n> .\n> Triage notifications on the go with GitHub Mobile for iOS\n> <https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675>\n> or Android\n> <https://play.google.com/store/apps/details?id=com.github.android&utm_campaign=notification-email>\n> .\n>\n\nComment: You were right. Once you have enabled api.conf [list_exitnodes],[machinelist] you're done. thank you.\nComment: ok thanks for feedback, i will update docs, btw just bear in mind if that will be public facing master, disable list machines so nobody can get your master as his worker\nComment: thank you! \r\ngot it. Be careful when using it publicly\nComment: here also some nice stuff to get more secure and get rid of bots just in case you will make it public https://capev2.readthedocs.io/en/latest/usage/web.html#some-extra-security-tip-s\nComment: Hello\r\nI made the following settings for the distributed Cape by looking at the documentation and posts by others in the past.\r\n\u30fb Distributed setting of mongodb\r\n```\r\nmongos console\r\n  shards:\r\n        {  \"_id\" : \"rs0\",  \"host\" : \"rs0/10.64.180.154:27017,10.64.180.155:27017\",  \"state\" : 1,  \"topologyTime\" : Timestamp(1628559258, 1) }\r\n  active mongoses:\r\n        \"5.0.1\" : 1\r\n  autosplit:\r\n        Currently enabled: yes\r\n  balancer:\r\n        Currently enabled: yes\r\n        Currently running: no\r\n```\r\n\u30fbModify report.conf\r\n```\r\n[mongodb] \r\nhost = masterIP(only worker conf)\r\nport = 27020\r\n\r\n[distributed]\r\nenabled = yes\r\nmaster_storage_only = yes\r\nremove_task_on_worker = yes\r\n```\r\n\u30fb Worker node registration\r\n`curl http://localhost:9003/node -F name=worker -F url=http://<workerIP>:8000/apiv2/`\r\n\r\nHowever, even if I uploaded multiple files to master, they were not distributed to workers.\r\nAlso, even if you specify the worker node from the master API as shown below and upload the file, it seems that it will be analyzed by the master VM.\r\n`curl -F file=@<pathtofile> -F options=\"node=worker\" http://localhost:8000/apiv2/tasks/create/file/`\r\n\r\nSo I have a question\r\n\u2460 Is there any other conf to look at?\r\n\u2461 Distributed Cape is an image that if multiple files are uploaded to master, they will be distributed to workers. Is my perception correct?\nComment: 1 unique conf is reporting.conf for everything, i basiclly using it with master as webgui to see reports and all the powerfull servers are workers(is basically i totally forgot about case like your or capesandbox.com where both are workers)\r\n2. yes is correct\r\n\r\nas it done right now, if master is running cape it will consume tasks and it not really check if task is for worker(easy to fix and already looking on this), give me few mins\nComment: @ai-suzuki do git pull, it was done here, if `node=` is in options it won't pick that task anymore :) thanks to remember me to finish this https://github.com/kevoreilly/CAPEv2/commit/4170f6ee29ab2201d114d389fc39b416b731c143\nComment: thank you! I will pull\nComment: you are welcome, let me know if something\nComment: I'm sorry, it seems that I'm still going to master.\r\nIs there something wrong with my settings ...\r\n\r\n\r\n\nComment: did you restart cape service after git pull?\nComment: yes\nComment: weird for me it shows no tasks for master if `node=x` is set in options, i will try to check that, but that will be later have to do my $dayjob\nComment: OK.\r\nNot just when node = x is specified ,when I uploaded multiple files to master, they were not distributed .\r\nSo,I will also review my settings\u2026\r\nThank you for being busy\nComment: btw when you set `node = X` it won't works as it checks for `node=X` so i guess that is the case, can you try it?\nComment: That's right\u2026\r\nbut when i set `node = X`(my node is worker5) on master,it doesn't work.\r\ntask send master cape.\r\n`curl -F file=@test.txt -F node=\"worker5\" http://localhost:8000/apiv2/tasks/create/file/`\nComment: When node = X is set, master is pending and parsing is no longer done, but it does not go to worker.\r\n\r\nBy the way, is it necessary to use different names and IPs for windows virtual machines in master and worker?\nComment: maybe you set incorrectly the `node=`? it should use node name. no, no need of different, as they are different\nComment: `node =` uses a unique node name.\r\nbecause node does not disappear in the middle, there are various things, but the node name that worker5 wants to use now. \r\nSince enabled \": false, does the analysis not start?\r\n```\r\ncape@master2:/opt/CAPEv2/utils$ python3 dist.py --node worker5\r\nYou using old version of sflock! Upgrade: pip3 install -U SFlock2\r\n2021-08-13 07:18:48,785 INFO:dist:MainThread - Available VM's on worker5:\r\n2021-08-13 07:18:48,797 INFO:dist:MainThread - -->      win10\r\n2021-08-13 07:18:48,801 INFO:dist:MainThread - Updated the machine table for node: worker5\r\ncape@master2:/opt/CAPEv2/utils$ curl http://localhost:9003/node\r\n{\"nodes\": {\"master\": {\"name\": \"master\", \"url\": \"http://localhost:8000/apiv2/\", \"machines\": [{\"name\": \"win10\", \"platform\": \"windows\", \"tags\": [\"x64\"]}], \"enabled\": false}, \"worker\": {\"name\": \"worker\", \"url\": \"http://10.64.180.155:8000/apiv2/\", \"machines\": [{\"name\": \"win10-worker\", \"platform\": \"windows\", \"tags\": [\"x64\"]}], \"enabled\": false}, \"worker2\": {\"name\": \"worker2\", \"url\": \"http://10.64.180.155:8000/apiv2/\", \"machines\": [{\"name\": \"win10-worker\", \"platform\": \"windows\", \"tags\": [\"x64\"]}], \"enabled\": false}, \"worker3\": {\"name\": \"worker3\", \"url\": \"http://10.64.180.155:8000/apiv2/\", \"machines\": [{\"name\": \"win10-worker\", \"platform\": \"windows\", \"tags\": [\"x64\"]}], \"enabled\": false}, \"worker4\": {\"name\": \"worker4\", \"url\": \"http://10.64.180.155:8000/apiv2/\", \"machines\": [{\"name\": \"win10\", \"platform\": \"windows\", \"tags\": [\"x64\"]}], \"enabled\": false}, \"worker5\": {\"name\": \"worker5\", \"url\": \"http://10.64.180.155:8000/apiv2/\", \"machines\": [{\"name\": \"win10\", \"platform\": \"windows\", \"tags\": [\"x64\"]}], \"enabled\": false}}}\r\n```\nComment: exactly when you register a worker they are added in disabled mode just in case, so you need to enable them, i guess this is why analysis doens't go to worker\nComment: Did I have to do that,\u2026\r\n `sudo python3 dist.py --node worker5 --enable` and set true .\r\nbut doesn't change ...\r\nHopefully it will be pending on the master and sent to the worker, right?\nComment: if you set `node=x` it will be pending on master.\r\nwell i can't really can help as i don't have access to your system, but check here why it not return those tasks https://github.com/kevoreilly/CAPEv2/blob/master/utils/dist.py#L686\nComment: I looked at dist.log. SQL is strange ...?\r\n\r\n```\r\n2021-08-13 07:13:20,529 INFO:dist:Retriever - Thread: free_space_mon - Alive: True\r\n2021-08-13 07:16:10,799 ERROR:base:fetcher - Exception during reset or similar\r\nTraceback (most recent call last):\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/pool/base.py\", line 682, in _finalize_fairy\r\n    fairy._reset(pool)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/pool/base.py\", line 887, in _reset\r\n    pool._dialect.do_rollback(self)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/engine/default.py\", line 667, in do_rollback\r\n    dbapi_connection.rollback()\r\nsqlite3.ProgrammingError: SQLite objects created in a thread can only be used in that same thread. The object was created in thread id 140303504033536 and this is thread id 140303117821696.\r\n2021-08-13 07:16:10,802 ERROR:base:fetcher - Exception closing connection <sqlite3.Connection object at 0x7f9af68ab030>\r\nTraceback (most recent call last):\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/pool/base.py\", line 682, in _finalize_fairy\r\n    fairy._reset(pool)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/pool/base.py\", line 887, in _reset\r\n    pool._dialect.do_rollback(self)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/engine/default.py\", line 667, in do_rollback\r\n    dbapi_connection.rollback()\r\nsqlite3.ProgrammingError: SQLite objects created in a thread can only be used in that same thread. The object was created in thread id 140303504033536 and this is thread id 140303117821696.\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/pool/base.py\", line 244, in _close_connection\r\n    self._dialect.do_close(connection)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/engine/default.py\", line 673, in do_close\r\n    dbapi_connection.close()\r\nsqlite3.ProgrammingError: SQLite objects created in a thread can only be used in that same thread. The object was created in thread id 140303504033536 and this is thread id 140303117821696.\r\n2021-08-13 07:16:20,838 ERROR:base:StatusThread - Exception during reset or similar\r\nTraceback (most recent call last):\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/pool/base.py\", line 682, in _finalize_fairy\r\n    fairy._reset(pool)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/pool/base.py\", line 887, in _reset\r\n    pool._dialect.do_rollback(self)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/engine/default.py\", line 667, in do_rollback\r\n    dbapi_connection.rollback()\r\nsqlite3.ProgrammingError: SQLite objects created in a thread can only be used in that same thread. The object was created in thread id 140303151392512 and this is thread id 140303529473792.\r\n2021-08-13 07:16:20,839 ERROR:base:StatusThread - Exception closing connection <sqlite3.Connection object at 0x7f9af68ab210>\r\nTraceback (most recent call last):\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/pool/base.py\", line 682, in _finalize_fairy\r\n    fairy._reset(pool)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/pool/base.py\", line 887, in _reset\r\n    pool._dialect.do_rollback(self)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/engine/default.py\", line 667, in do_rollback\r\n    dbapi_connection.rollback()\r\nsqlite3.ProgrammingError: SQLite objects created in a thread can only be used in that same thread. The object was created in thread id 140303151392512 and this is thread id 140303529473792.\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/pool/base.py\", line 244, in _close_connection\r\n    self._dialect.do_close(connection)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/engine/default.py\", line 673, in do_close\r\n    dbapi_connection.close()\r\nsqlite3.ProgrammingError: SQLite objects created in a thread can only be used in that same thread. The object was created in thread id 140303151392512 and this is thread id 140303529473792.\r\n2021-08-13 07:18:48,785 INFO:dist:MainThread - Available VM's on worker5:\r\n2021-08-13 07:18:48,797 INFO:dist:MainThread - -->      win10\r\n2021-08-13 07:18:48,801 INFO:dist:MainThread - Updated the machine table for node: worker5\r\n2021-08-13 07:31:16,826 ERROR:base:fetcher - Exception during reset or similar\r\nTraceback (most recent call last):\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/pool/base.py\", line 682, in _finalize_fairy\r\n    fairy._reset(pool)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/pool/base.py\", line 887, in _reset\r\n    pool._dialect.do_rollback(self)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/engine/default.py\", line 667, in do_rollback\r\n    dbapi_connection.rollback()\r\nsqlite3.ProgrammingError: SQLite objects created in a thread can only be used in that same thread. The object was created in thread id 140303151392512 and this is thread id 140303117821696.\r\n2021-08-13 07:31:16,827 ERROR:base:fetcher - Exception closing connection <sqlite3.Connection object at 0x7f9af68ab030>\r\nTraceback (most recent call last):\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/pool/base.py\", line 682, in _finalize_fairy\r\n    fairy._reset(pool)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/pool/base.py\", line 887, in _reset\r\n    pool._dialect.do_rollback(self)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/engine/default.py\", line 667, in do_rollback\r\n    dbapi_connection.rollback()\r\nsqlite3.ProgrammingError: SQLite objects created in a thread can only be used in that same thread. The object was created in thread id 140303151392512 and this is thread id 140303117821696.\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/pool/base.py\", line 244, in _close_connection\r\n    self._dialect.do_close(connection)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/engine/default.py\", line 673, in do_close\r\n    dbapi_connection.close()\r\nsqlite3.ProgrammingError: SQLite objects created in a thread can only be used in that same thread. The object was created in thread id 140303151392512 and this is thread id 140303117821696.\r\n2021-08-13 07:32:51,947 INFO:dist:StatusThread - [-] worker5 dead\r\ncape@master2:~$\r\n```\nComment: NEVER USE this sqlite in cape , is the worst that you can use, and for cluster, use posrgresql, as you can see, sqlite is not thread safe, doesn't perform well on load and doesn't support db upgrade\nComment: ok.\r\ncuckoo.conf  set to `connection = postgresql://cape:**@localhost:5432/cape`\r\nBut same error \nComment: cuckoo.conf doens't have nothing to see with distributed, you need to create lets say capedist db and set connection in reporting.conf under distributed https://capev2.readthedocs.io/en/latest/usage/dist.html#conf-reporting-conf \r\n\r\nbut use psql for both, as sqllite as i told isn't support db upgrade etc, so if we need to add new row you will be doomed with sqlite\nComment: I'm sorry, I didn't understand ...\r\nIsn't it just a matter of setting the distributed mongodb database\uff08https://capev2.readthedocs.io/en/latest/usage/dist.html#good-practice-for-production\uff09 that has been set here, but is it postgresql?\r\n\r\n```\r\n[distributed]\r\nenabled = no\r\n# save results on master, not analyze binaries\r\nmaster_storage_only = no\r\nremove_task_on_worker = no\r\nfailed_clean = no\r\n# distributed cuckoo database, to store nodes and tasks info\r\ndb = sqlite:///dist.db\r\n```\nComment: mongo is to show data, did you see the `db=`? there you need to set that\nComment: create a capedist db with postgresql and set it to` db =`.",
+  "Title: Point to right conf file\nBody: \nComment: thanks",
+  "Title: Precisions on agent placement on Windows machines\nBody: I see many people online having issues with the agent because they do not know that the user startup folder will not work. Here is my attempt at clarifying that. Feel free to alter if needed, but this absolutely needs to be in the documentation. I kept the end of the paragraph as-is but I think this should be further improved. Newbie users will have trouble understanding what they have to do with an \"etc\".\nComment: Thanks David, anything that you consider that can be clarified or improved is more than welcome\r\n\r\n i love this part :) \r\n```\r\netc see how malware does it for tricks ;).\r\n```\nComment: You're very welcome. I am struggling a lot to get CAPEv2 to work and it took me a lot of time to figure out little details like these so I really want others to avoid going through the same. Nevertheless, please don't hesitate to be very critical of my suggested edits ; I am by no means an expert in the field of VMs and the last thing I want is to introduce incorrect information in your documentation. I will try to add further improvements from the notes I took along the way :)\nComment: Feel free to ask any question, that isnt unlear, or you have doubts im\nhappy to help to person that trying also to get stuff working on their own,\nand not just coming to any project with hey this shit doesnt work \ud83e\udd23\n\nEl jue., 29 jul. 2021 13:27, David Resin ***@***.***>\nescribi\u00f3:\n\n> You're very welcome. I am struggling a lot to get CAPEv2 to work and it\n> took me a lot of time to figure out little details like these so I really\n> want others to avoid going through the same. Nevertheless, please don't\n> hesitate to be very critical of my suggested edits ; I am by no means an\n> expert in the field of VMs and the last thing I want is to introduce\n> incorrect information in your documentation :)\n>\n> \u2014\n> You are receiving this because you modified the open/close state.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/pull/550#issuecomment-889038345>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH327OZREG2JZQESW2YLT2E3I7ANCNFSM5BGE6SJQ>\n> .\n>\n",
+  "Title: Send the correct 'info' block to MongoDB in loop_saver\nBody: Send the correct 'info' block to MongoDB in `loop_saver` and improve the logging in the function.",
+  "Title: Post-Analysis Lookup column was not being populated.\nBody: Hello. I found a bug which was preventing the Post-Analysis Lookup column from being populated. The change below fixed the bug. \nComment: Hello thanks but that would break other parts https://github.com/kevoreilly/CAPEv2/search?q=domainlookups\r\n\r\nwhere it wouldn't be populated exactly? i can't see it https://github.com/kevoreilly/CAPEv2/search?l=HTML&q=domains\nComment: Hi @doomedraven,\r\nit is not being populated here:\r\nweb/templates/analysis/network/_dns_not_ajax.html\r\nand possibly here as well:\r\nweb/templates/analysis/network/_dns.html.\r\n\r\nI am using inetsim, and my dns queries are returning 127.0.0.1, as configured. However, the \"post-analysis lookup\" column was always empty, even considering the report.json comprised the real IP under network.domains.\r\n\r\nI noticed that the \"domains\" key is not being retrieved from mongo here:\r\n\r\nnetwork_report = results_db.analysis.find_one(\r\n            {\"info.id\": int(task_id)},\r\n            {\"network.domainlookups\": 1, \"network.iplookups\": 1, \"network.dns\": 1, \"network.hosts\": 1},\r\n            sort=[(\"_id\", pymongo.DESCENDING)],\r\n        )\r\nAnd I noticed that by adding \r\n\"network.domains\": 1 \r\nto it solved the \"problem\" (considering this is really a problem and not an expected behaviour).\r\n\r\nRegarding breaking other parts, you are right, I should have proposed the fix below.\r\n{\"network.domainlookups\": 1, \"network.iplookups\": 1, \"network.dns\": 1, \"network.hosts\": 1, \"network.domains\":1},\r\n\r\nI am wondering now if the post-analysis column not being populated is related to the fact that the response for the bank dns query is empty (instead of 127.0.0.1), and why it is empty.... \r\nhttps://prnt.sc/1hn9ocj\r\n\nComment: is super strange, i just checked `web/templates/analysis/network/_dns_not_ajax.html` and there is no usage of network.domains at all hm, is why i have posted the search query, there is no `domains` at all \r\n\r\nwhat im not sure how it works here then? https://capesandbox.com/analysis/175050/\r\n\r\nabout inetsim and empty field, probably there was some problem and there is no handshake i saw that in past\nComment: Hi @doomedraven,\r\ni am not sure it is working here (https://capesandbox.com/analysis/175050/), as the post-analysis column is empty. Maybe because this analysis did not use inetsim, so it did not make sense to run a post-analysis lookup. But I might be wrong, I started using Cape just recently. By the way, it is a great tool!!!\r\n\r\nRegarding the pull request, here is my rationale. Sorry if there is any mistake to it:\r\n\r\nThe values displayed on the post-analysis lookup column from `web/templates/analysis/network/_dns_not_ajax.html`are populated from the dict `domainlookups`:\r\n'{% if domainlookups and domainlookups|get_item:p.request %}\r\n                        {{ domainlookups|get_item:p.request }}'\r\n\r\nThe keys from such dict are the domains themselves from the [\"network\"][\"domains\"] section, and the values are the resolved ips. That is why there are no references for `domains`in that file.\r\n`domainlookups = dict((i[\"domain\"], i[\"ip\"]) for i in network_report[\"network\"][\"domains\"])`\r\n\r\nThe thing is the variable `network_report` does not retrieve the [\"network\"][\"domains\"] section from mongo.\r\n\r\n       network_report = results_db.analysis.find_one(\r\n            {\"info.id\": int(task_id)},\r\n            {\"network.domainlookups\": 1, \"network.iplookups\": 1, \"network.dns\": 1, \"network.hosts\": 1}\r\n            sort=[(\"_id\", pymongo.DESCENDING)],\r\n        \r\nI have not dug deeper to find out if  [\"network\"][\"domains\"]  is the place where the post-analysis lookup should really be. I simply did a grep for the ip to find the key storing it. So, when I added \"network.domains\": 1 to it, the post-analysis lookup column started being populated.\r\n         `  {\"network.domainlookups\": 1, \"network.iplookups\": 1, \"network.dns\": 1, \"network.hosts\": 1, \"network.domains\":1}`\nComment: ok yes thanks, i just checked in mongo and there is no domainlookups, weird that in code there is kinda also no domains, but now should be fine, im gonna test with merge to ensure that it works just fine",
+  "Title: Calc / Notepad detonation fail\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I'm have read all configs with all optional parts\r\n\r\n# Expected Behavior\r\n\r\n* See `calc.exe` up and running in the screenshot. \r\n* See `notepad.exe` up and running in the screenshot.\r\n* Get the full API call trace for each one.\r\n\r\n# Current Behavior\r\n\r\nNone of them seems to work.\r\n- The screenshot doesn't show calc/notepad.\r\n- They finish almost as soon as they start, within the second.\r\n- The API trace doesn't look like the actual .exe was executed. \r\n\r\n# Failure Information (for bugs)\r\n\r\nAs per the `Behavioral Analysis` they finish within the second it was executed.\r\nI tested them in a local (updated) environment but also double-checked that the same results happen in your environment, see the following results:\r\n* https://capesandbox.com/analysis/174313 (calc.exe on win7x64)\r\n* https://capesandbox.com/analysis/174567  (calc.exe on win7x86)\r\n* https://capesandbox.com/analysis/174568 (notepad.exe on win7x86)\r\n\r\n## Steps to Reproduce\r\n\r\n1. Take `calc.exe` and `notepad.exe` from `c:\\windows\\sytem32` on the same win7 or win10 guest machine. Both .exe are PE 32 bit so it doesn't matter.\r\n2. Submit them using the web default settings. I only forced the \"Machine\" just to make sure it will execute there.\r\n\r\n## Context\r\n\r\nI tested them in a local updated environment but also double-checked that the same results happen in yours.\r\n\r\n### Local setup\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | 5d5ba06d8788ac561b267b20eec49e437decdf88 \r\n| Community package | Updated using `$ python3 utils/community.py -waf`\r\n| HOST OS version       | Ubuntu 20.04.2 LTS\r\n| GUEST OS versions       | win7x86, win7x64, win10x64\r\n\r\n## Failure Logs\r\n\r\nPlease check the result links above.\r\n\nComment: Thanks for the heads up - will look into it.\nComment: MUI problem - https://twitter.com/hasherezade/status/1558841246944317441\nComment: doomed is right - this is a mui issue not a cape issue. hasherezade offers a nice explanation: https://github.com/hasherezade/libpeconv/issues/44\r\n\r\nTo prove this, instead of submitting notepad or calc, try submitting a batch file that launches them. Then cape has no problem monitoring these exes run from their proper location:\r\n\r\nhttps://capesandbox.com/analysis/354918\r\nhttps://capesandbox.com/analysis/354919",
+  "Title: restore tcp/udp packet previews\nBody: \nComment: thanks\r\n",
+  "Title: Fixed typos\nBody: \nComment: thank you",
+  "Title: dhash\nBody: https://twitter.com/abuse_ch/status/1418533571837497345?s=20\r\nhttps://ourcodeworld.com/articles/read/1006/how-to-determine-whether-2-images-are-equal-or-not-with-the-perceptual-hash-in-python\nComment: Legend",
+  "Title: Exit cleanly from rooter\nBody: The rooter service doesn't exit cleanly after a `SIGTERM` because of the exception raised in the `recvfrom` exception handler. This change makes it exit cleanly when it should.\r\n\r\nAlso a couple minor improvements to the rooter logging.\nComment: thank you",
+  "Title: Add ichitaro package\nBody: ",
+  "Title: Update analysis_tags.py\nBody: ",
+  "Title: Trouble with suricata extracted files\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I'm have read all configs with all optional parts\r\n\r\n# Expected Behavior\r\n\r\nAfter analysis with suricata extracted files they should be shown under Network Analysis -> Suricata Files.\r\n\r\n# Current Behavior\r\n\r\nComplete Tab Network Analysis with all subs is empty.\r\n\r\n# Failure Information (for bugs)\r\n\r\ndjango.urls.exceptions.NoReverseMatch: Reverse for 'file' with arguments '('suricata', '', 'addg9828744c9f516a11749c25a6a73f0fec45075825b7cf892086jh5ac061e7')' not found. 1 pattern(s) tried: ['file/(?P<category>\\\\w+)/(?P<task_id>\\\\d+)/(?P<dlfile>\\\\w+)/$'] [19/Jul/2021 15:57:04] \"GET /analysis/load_files/17/network/ HTTP/1.1\" 500\r\n\r\nThe file 'addg9828744c9f516a11749c25a6a73f0fec45075825b7cf892086jh5ac061e7' is located under 'CAPEv2/storage/analyses/17/files/addg9828744c9f516a11749c25a6a73f0fec45075825b7cf892086jh5ac061e7'.\r\n\r\n## Steps to Reproduce\r\n\r\nSeems to be occuring to all analyses where suricata successfully extracted files.\r\n\nComment: could you share pcap? that would help to fix this as i don't see issue why it might miss id\nComment: different sample but same error. pcap attached.\r\ndjango.urls.exceptions.NoReverseMatch: Reverse for 'file' with arguments '('suricata', '', 'a2ce3a0fa7d2a833d1801e01ec48e35b70d84f3467cc9f8fab370386e13879c7')' not found. 1 pattern(s) tried: ['file/(?P<category>\\\\w+)/(?P<task_id>\\\\d+)/(?P<dlfile>\\\\w+)/$'][20/Jul/2021 19:24:39] \"GET /analysis/load_files/2/network/ HTTP/1.1\" 500\r\n[dump.zip](https://github.com/kevoreilly/CAPEv2/files/6850803/dump.zip)\r\n\nComment: yes error will be the same all the time as you might see after suricata it shows empty argument, and that should be the task id, thanks for dump, checking\nComment: ok that is cert file that is inside, first i need to fix my suricata to be able to see what is the problem, so we have to kill 2 issues here, thanks for reportin i will be back to you once done\nComment: <img width=\"654\" alt=\"Screenshot 2021-07-20 at 23 52 46\" src=\"https://user-images.githubusercontent.com/1856495/126400260-023f015e-ab67-44fb-b66d-d1efb3b6fed1.png\">\r\nit works here, are you on latest commit?\nComment: problem seems to be gone. thx for the help.\nComment: ok glad that it works, at least i have fixed my suricata",
+  "Title: Update configuration.rst\nBody: Corrected a typo\nComment: thank you\nComment: Pleasure!\n\nOn Mon, 19 Jul 2021 at 13:01, doomedraven ***@***.***> wrote:\n\n> thank you\n>\n> \u2014\n> You are receiving this because you authored the thread.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/pull/539#issuecomment-882453757>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AEEYPGG6477NVCN5JN755YLTYQAZNANCNFSM5ATOKMCQ>\n> .\n>\n",
+  "Title: \"Analysis results folder does not contain any file or injection was disabled.\" and The status becomes failed_processing.\nBody: Thank you for always answering the question!\r\nThanks to you, I enjoy using cape\uff01\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ ] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nAnalyze pdf file and set status to reported\r\n\r\n# Current Behavior\r\n\r\nSome pdf files are not analyzed. The status becomes failed_processing.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Upload file\r\n2. processing Timeout & status is failed_processing.\r\n3. I don't know if it's related, but in the processing debug \"[modules.processing.behavior] INFO: Analysis results folder does not contain any file or injection was disabled.\" Isn't there anything you need to create a report?\r\n\r\nThe software uses Adobe. The pdf file size is 1.5MB.\r\n  \r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | commit dd0bf29c7f0de1f82b5ccb02e2803eb46579bdb3\r\n| OS version       | ubuntu 20.04.1 LTS\r\n\r\n\r\n## Failure Logs\r\n\r\n### analysis.log\r\n\"WARNING: Folder at path\" C: \\ lSzNcpUQ \\ debugger \"does not exist, skip.\" Does it mean that the analysis is not working?\r\n```\r\n2021-07-13 16:41:54,811 [root] INFO: Restarting WMI Service\r\n2021-07-13 16:41:56,905 [lib.api.process] INFO: Successfully executed process from path \"C:\\Program Files (x86)\\Adobe\\Acrobat Reader DC\\Reader\\AcroRd32.exe\" with arguments \"\"C:\\Users\\cape\\AppData\\Local\\Temp\\HTTP-FL51YU3HQl8IG3a0M4.pdf\"\" with pid 5992\r\n\uff08abridgement\uff09\r\n2021-07-13 16:42:04,955 [root] DEBUG: DoProcessDump: Dumping Imagebase at 0x003B0000.\r\n2021-07-13 16:42:04,955 [root] DEBUG: DumpImageInCurrentProcess: Attempting to dump virtual PE image.\r\n2021-07-13 16:42:04,955 [root] DEBUG: DumpProcess: Instantiating PeParser with address: 0x003B0000.\r\n2021-07-13 16:42:04,955 [root] DEBUG: DumpProcess: Module entry point VA is 0x000014E0.\r\n2021-07-13 16:42:05,012 [root] DEBUG: DumpProcess: Module image dump success - dump size 0x302200.\r\n2021-07-13 16:42:05,074 [root] DEBUG: DLL unloaded from 0x76880000.\r\n2021-07-13 16:42:05,263 [root] INFO: Process with pid 5992 has terminated\r\n2021-07-13 16:43:20,137 [root] DEBUG: DLL loaded at 0x00007FFE6E650000: C:\\Windows\\System32\\vaultsvc (0x60000 bytes).\r\n2021-07-13 16:43:20,480 [root] DEBUG: DLL loaded at 0x00007FFE8F2C0000: C:\\Windows\\SYSTEM32\\kernel.appcore (0x12000 bytes).\r\n2021-07-13 16:43:20,762 [root] DEBUG: DLL loaded at 0x00007FFE92E90000: C:\\Windows\\System32\\clbcatq (0xa9000 bytes).\r\n2021-07-13 16:43:21,200 [root] DEBUG: DLL loaded at 0x00007FFE80010000: C:\\Windows\\System32\\OneCoreCommonProxyStub (0x7d000 bytes).\r\n2021-07-13 16:45:19,224 [root] INFO: Analysis timeout hit, terminating analysis.\r\n2021-07-13 16:45:19,303 [lib.api.process] INFO: Terminate event set for process 608\r\n2021-07-13 16:45:19,374 [root] DEBUG: Terminate Event: Skipping dump of process 608\r\n2021-07-13 16:45:19,559 [lib.api.process] INFO: Termination confirmed for process 608\r\n2021-07-13 16:45:19,663 [root] INFO: Terminate event set for process 608.\r\n2021-07-13 16:45:19,765 [root] INFO: Created shutdown mutex.\r\n2021-07-13 16:45:19,663 [root] DEBUG: Terminate Event: CAPE shutdown complete for process 608\r\n2021-07-13 16:45:20,881 [root] INFO: Shutting down package.\r\n2021-07-13 16:45:20,959 [root] INFO: Stopping auxiliary modules.\r\n2021-07-13 16:45:22,240 [lib.common.results] WARNING: File C:\\lSzNcpUQ\\bin\\procmon.xml doesn't exist anymore\r\n2021-07-13 16:45:22,310 [root] INFO: Finishing auxiliary modules.\r\n2021-07-13 16:45:22,378 [root] INFO: Shutting down pipe server and dumping dropped files.\r\n2021-07-13 16:45:22,447 [root] WARNING: Folder at path \"C:\\lSzNcpUQ\\debugger\" does not exist, skip.\r\n2021-07-13 16:45:22,517 [root] WARNING: Folder at path \"C:\\lSzNcpUQ\\tlsdump\" does not exist, skip.\r\n2021-07-13 16:45:22,591 [root] WARNING: Monitor injection attempted but failed for process 5700.\r\n2021-07-13 16:45:22,665 [root] INFO: Analysis completed.\r\n```\r\n### processing debug\r\n```\r\n 7\u6708 13 09:05:15 test-env-cape python[199527]: 2021-07-13 09:05:15,394 [root] INFO: Processing analysis data for Task #3\r\n 7\u6708 13 09:05:15 test-env-cape python[199527]: pywin32 is not installed (only is required if you want to use MS Excel)\r\n 7\u6708 13 09:05:15 test-env-cape python[199733]: 2021-07-13 09:05:15,623 [modules.processing.behavior] INFO: Analysis results folder does not contain any file or injection was disabled.\r\n 7\u6708 13 09:20:15 test-env-cape python[199527]: 2021-07-13 09:20:15,573 [root] ERROR: Processing Timeout ('Task timeout', 900)\r\n```\r\n\nComment: hello, could you share hash or submit to capesandbox.com?\nComment: I'm sorry, I can't upload it to capesandbox.com because it's a file that can't be published.\nComment: So how can we be sure the problem is with cape and not the sample?\nComment: then you will need to dig on your own i guess why it not working properly,\r\n\r\nso my suggestion is to use this, so you can watch the log of analyzer in real time, as we can't help without sample \r\nhttps://github.com/kevoreilly/CAPEv2/wiki/Tips'n'Tricks#how-to-debug-analyzer-and-any-script-that-executes-inside-of-the-virtual-machine\nComment: Or your Adobe version...\nComment: Thank you for sharing. I will debug\r\n\r\nIs there a version of Adobe specified? (I'm sorry if I missed the document ...)\nComment: there is no official suggested version to use as it is hard task and everyone having their needs. you knwo you need some oldish versions to be \"exploitable\", for example AdbeRdr11010_en_US\nComment: + try to stay with the latest updates, i know we all got extra tired of update configs, but at least once at week is good to pull new changes as they contain fixes\nComment: closing this as we can't help much more here, let us know what it was\nComment: Thank you very much.\r\nI will answer when it is resolved.\r\nI've been looking at various things, but somehow I feel that PDF files larger than 1MB will not be analyzed ... Even though conf allows analysis of 100MB or more.\r\nI have a timeout of 900, but maybe I should make it longer\nComment: 1mb and 100mb those are different values, 100mb is for files submitted from vm to host, timeout should give you failed_reporting due to timeout, just check if you have bsons , if no, then you have some weird problem with analyzer and is why i suggest to run it with that debug as you will see error in terminal\r\n\r\n```\r\nls storage/analyses/<TASK_ID>logs/\r\n```\nComment: i just tested 8.5mb pdf file on my side, works as expected, so that def not cape problem",
+  "Title: small improvements\nBody: \nComment: Looks amazing and very useful for us.\r\n\r\nThanks \ud83d\udc4d \nComment: i will merge that later once i finish another things",
+  "Title: litereport\nBody: ",
+  "Title: Feature/add signatures reject list\nBody: \nComment: nice thanks ;) i will pick by hand lite report as i don't want extra folders having the reports folder already so it can be there as lite.json\nComment: Hi @doomedraven \r\nSorry for the messy PR, I chose the wrong fork :[\r\nGlad you like the lite report, promise ill open a PR with that soon :]\nComment: well for me lite report is /iocs/ but always when the stuff can be on/off im fine to add that\nComment: @AvihayST check how i did lite report https://github.com/kevoreilly/CAPEv2/pull/536\r\nit will store it in reports as lite.json but i have added link to webgui and dl\nComment: i have picked most interesting stuff/fixes from this pr, you can see them where https://github.com/kevoreilly/CAPEv2/pull/537\r\n\r\nbtw you introducing new dependency `netinterfaces`, we already have `psutils` so i have changed that to not add extra dependencies when other libraries can handle that in the same way",
+  "Title: Add more tooltips\nBody: Kudos to @ditekshen ",
+  "Title: Use version-pinned URLs for dependency packages.\nBody: This guarantees that the pip hashes match the GitHub URLs.",
+  "Title: Fix condition\nBody: Will fix #499",
+  "Title: Xenos DLL injector not executing in CAPE\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nHere's a screenshot of this executable running on my local machine (outside of CAPE): \r\n![image](https://user-images.githubusercontent.com/62764299/124006247-036adc00-d9a8-11eb-8889-8a9d6b21be13.png)\r\n\r\nI would expect at least the GUI to appear in CAPE, but it's not executing :(\r\n\r\n# Current Behavior\r\n\r\nI don't believe the executable is being run, see screenshots on capesandbox.com link below. I am also seeing this on my local CAPE.\r\n\r\n![image](https://user-images.githubusercontent.com/62764299/124007338-48dbd900-d9a9-11eb-8647-03280145acb2.png)\r\n\r\n# Failure Information (for bugs)\r\n\r\nhttps://capesandbox.com/analysis/168938/ - (32 bit) - capesandbox.com link showing that this executable is not being run correctly.\r\nhttps://capesandbox.com/analysis/168942/ - (64 bit) - interestingly, the 64-bit variant shows more of an error.\r\n![image](https://user-images.githubusercontent.com/62764299/124008170-239b9a80-d9aa-11eb-9b2f-c93208ee4267.png)\r\n\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Submit attached exe's to capesandbox.com. Any OS I've tried doesn't appear to work. Let me know if you need more detailed steps, but I think this is pretty self-explanatory.\r\n\r\n## Context\r\nThis exe is a DLL injector GUI application. Problem is not even the GUI appears. Perhaps it is detecting CAPE and not executing? GitHub repo is here: https://github.com/DarthTon/Xenos\r\n\r\nI've tried the following:\r\n\r\n1. Replacing capemon.dll and capemon_x64.dll with a blank dll (ie: one that just returns TRUE in dllmain)\r\n2. Switch from Windows 10 to Windows 7 and capesandbox.com\r\n3. use the \"old loader\" (this resolved a few issues with other exes I tried)\r\n\r\nNot sure where to go from there since it doesn't appear to be an issue inside capemon.dll or the loader. Let me know if you can't reproduce.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | 2facff3ed0cf2b132\r\n| OS version       | Ubuntu 20.04.02 LTS, Windows 10 Guest and Windows 7 Guest\r\n\r\n## Failure Logs\r\n\r\nNot sure that the failure logs are relevant, but here's the one from capesandbox.com:\r\n[analysis.log](https://github.com/kevoreilly/CAPEv2/files/6742927/analysis.log)\r\n[Xenos_2.3.2.zip](https://github.com/kevoreilly/CAPEv2/files/6742972/Xenos_2.3.2.zip)\r\n\r\n\r\n\nComment: Well if the aim is to get it to run... https://capesandbox.com/analysis/169002\r\n\r\n![image](https://user-images.githubusercontent.com/22219888/124027723-1783fd00-d9eb-11eb-9be3-9fc65f19346e.png)\r\n\r\nOf course, I understand the real question is what is preventing its detonation with default settings as opposed to this 'max compatibility mode' (no-iat=1,yarascan=0,caller-dump=0,injection=0,zerohook=1)\r\n\r\nSo the task becomes the slightly tedious and repetititous trial and error to see which option or (even worse) hook is causing the problem. minhook=1 is probably the next step in place of zerohook.\nComment: Swapping minhook for zerohook (adding the minimal hook set) but otherwise the same options results in failure implying a problem stemming from a hook in the minimal set...\r\n\r\nhttps://capesandbox.com/analysis/169003\nComment: I've tried to trace the exact hook down. I think it is this one:\r\n```HOOK(ntdll, NtMapViewOfSection),```\r\n\r\nI was able to run Xenos.exe on min_hooks and full_hooks with this hook commented. Can you confirm?\nComment: Thank you for taking the time to go through the hooks - I can confirm that the NtMapViewOfSection  hook is the source of the problem. To quickly verify, submitting with exclude-apis=NtMapViewOfSection allows this to run: https://capesandbox.com/analysis/169308/\r\n\r\nTesting the hook code, it's apparent the issue lies with the prevent_module_reloading() function - disabling this function allows the sample to run. I will dig into this and work out a fix. I'll update once done - cheers.\nComment: This issue has now been fixed in the latest monitor update.\r\n\r\nPlease see the following jobs:\r\n\r\nhttps://capesandbox.com/analysis/232974\r\nhttps://capesandbox.com/analysis/232975\r\n\r\nThank you for reporting this issue and helping make CAPE better",
+  "Title: ipython: Cannot find version\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nInstalling Python requirements from requirements.txt\r\n\r\n# Current Behavior\r\n\r\nCannot find a version to satisfy requirements when launching \u2018pip3 install -r requirements.txt\u2019\r\n\r\n# Failure Information (for bugs)\r\n\r\nERROR: Could not find a version that satisfies the requirement ipython==7.25.0\nComment: Hello, strange, it works on my side, the easier way to fix this is instead of `.txt` use `.in` file, which has the requirements as before but they are used for pip-tool to protect the user with package hashes. i will need to investigate this\nComment: btw which version of python on your side? https://pypi.org/project/ipython/ is 7.25.0 but requires py 3.7\nComment: mwcp, also requires 3.7, so i guess we will need to submit minimal python version, let me know your py version first\nComment: 3.6.9\nComment: ok then yes that is the problem, you probably will need to upgrade to ubuntu 20.04.2 at some moment that has more recent python, or just go with `requierements.in` but hashed(requierements.txt) one is protecting from the package hijack as it is frequently in nodejs",
+  "Title: OutOfMemory exception on .NET samples w/ Win 10\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nI expect the .NET sample to run on the sandbox as it does on Windows 7. I understand that CAPE is sort of tailored to Windows 7, but was wondering what the upgrade path to Windows 10 looks like since Windows 7 has reached EOL\r\n\r\n# Current Behavior\r\n\r\nWhen running a simple C# hello world program with .NET framework 4.5.2 (which is installed on the Windows 10 guest):\r\n\r\n```c\r\nusing System;\r\n\r\nnamespace HelloWorldNET\r\n{\r\n    class Program\r\n    {\r\n        static void Main(string[] args)\r\n        {\r\n            Console.WriteLine(\"Hello World!\");\r\n            Console.ReadKey();\r\n        }\r\n    }\r\n}\r\n\r\n```\r\n\r\nWe get a OutOfMemory exception if we enable CAPE monitoring. If it's disabled, sample runs as expected indicating there is something in the monitoring script that causes problems.\r\n\r\nWith CAPE monitoring enabled:\r\n![image](https://user-images.githubusercontent.com/62764299/123651659-ab8e7280-d7f9-11eb-9a0a-791bed0619c4.png)\r\n\r\nWith CAPE monitoring disabled: \r\n![image](https://user-images.githubusercontent.com/62764299/123651552-90bbfe00-d7f9-11eb-8128-8dfd2aa3fdfa.png)\r\n\r\n# Failure Information (for bugs)\r\n\r\nI should have plenty of memory: \r\n![image](https://user-images.githubusercontent.com/1680233/123647279-f3ab9600-d7f5-11eb-9c9e-43d22ad28d0f.png)\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Setup CAPE with Ubuntu 20.04.02 LTS\r\n2. Install Windows 10 Guest w/ .NET framework 4.5.2\r\n3. Submit helloworld.exe sample attached to this issue (which is just the compiled version of the code above)\r\n\r\n## Context\r\n\r\nI think this may be an issue with the underlying Cuckoo framework as they have an open issue here about it: https://github.com/cuckoosandbox/cuckoo/issues/2382\r\nThis may also be a relevant issue: https://github.com/kevoreilly/capemon/issues/10 - though not sure as I still get the issue when I enabled min_hooks (and zero_hooks) from the capemon config.\r\n\r\nThe sample I have attached works fine on my Windows 7 CAPE VM and capesandbox.com \r\n\r\nSince Cuckoo is not maintained anymore, I was hoping to submit this issue on CAPE to see if you guys may address this. Since windows 7 has reached EOL, what is the progress on converting CAPE to Windows 10?\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | aa28a589d8360a79dae9cf0ad42240e68c675776\r\n| OS version       | Ubuntu 20.04.02 LTS, Windows 10\r\n\r\n## Failure Logs\r\n[analysis.log](https://github.com/kevoreilly/CAPEv2/files/6726822/analysis.log)\r\ncuckoo.log file was empty.\r\n[HelloWorldNET.zip](https://github.com/kevoreilly/CAPEv2/files/6726832/HelloWorldNET.zip) - exe sample\r\n\r\nPlease let me know if I've filled out this issue incorrectly and I will fix it.\nComment: @kevoreilly \nComment: An update on this, I've managed to trace the problem back to this line in the capemon repository: https://github.com/kevoreilly/capemon/blob/capemon/misc.c#L817\r\n\r\nIf I comment this line and recompile capemon.dll, I do not get this OutOfMemory exception and the sample runs fine on Windows 10. I would make a PR to the capemon repository but I'm not sure how to adjust this call to memset.\r\n\r\nSorry for making the issue in the CAPEv2 repository, I wasn't sure where the issue would be and figured more people would be watching this repo's issues.\r\n\r\nLet me know if there's anything I can do to help @kevoreilly.\nComment: any good and valid issue is fine here or there :) the mon part is Kevin's so he can provide proper support on that\nComment: Hi swthorn, I appreciate you creating this issue, so thanks a lot. I recreated the issue yesterday but hadn't yet replied as I didn't have a clue where to start looking...\r\n\r\n... but now you have found a line in the monitor you have possibly done the hard bit! Let me test fixing this, then if all works I'll publish a fix asap.\nComment: The original code ref for this technique has commented out the memset and marked it optional: http://www.openrce.org/blog/view/844/How_to_hide_dll\r\n\r\nAlso removing the entry from the linked list is sufficient to achieve the function's goal, so the memset is technically superfluous; that and the fact it causes this issue means it will be gone momentarily :)\nComment: That's good news, it seems as though other people had issues with this call to memset as well: https://github.com/kevoreilly/capemon/issues/11 - I didn't know this issue was related initially.\r\n\r\nThanks for your hard work on this project!\nComment: Hmm I failed to properly read Michael's last post - it must be true that something is still referencing this entry, but if removing the memset solves the issue and still means the module is removed from the peb's linked list, that's good enough for me. I'll be sure to respond to that thread too, Cheers.\nComment: Ok this should now be fixed! Please let me know if any further issues and thanks again for the help.",
+  "Title: DB constraint failed?\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nFollowing my previous case, I moved the DB to postgresql... Server installed and a export data from sqlite using pgloader.\r\nNow, cuckoo.py fails when stating with a DB constraint error.\r\n\r\n# Current Behavior\r\n\r\n```\r\nDuring handling of the above exception, another exception occurred:\r\n\r\n  File \"cuckoo.py\", line 87, in cuckoo_main\r\n    sched.start()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 697, in start\r\n    self.initialize()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 645, in initialize\r\n    machinery.initialize(machinery_name)\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 376, in initialize\r\n    super(LibVirtMachinery, self).initialize(module)\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 133, in initialize\r\n    self._initialize(module_name)\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 203, in _initialize\r\n    resultserver_port=port,\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/utils.py\", line 847, in inner\r\n    return f(self, *args, **kwargs)\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/database.py\", line 599, in add_machine\r\n    machine.tags.append(self._get_or_create(session, Tag, name=tag))\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/database.py\", line 524, in _get_or_create\r\n    instance = session.query(model).filter_by(**kwargs).first()\r\n  File \"/usr/local/lib/python3.6/dist-packages/sqlalchemy/orm/query.py\", line 3287, in first\r\n    ret = list(self[0:1])\r\n  File \"/usr/local/lib/python3.6/dist-packages/sqlalchemy/orm/query.py\", line 3065, in __getitem__\r\n    return list(res)\r\n  File \"/usr/local/lib/python3.6/dist-packages/sqlalchemy/orm/query.py\", line 3388, in __iter__\r\n    self.session._autoflush()\r\n  File \"/usr/local/lib/python3.6/dist-packages/sqlalchemy/orm/session.py\", line 1597, in _autoflush\r\n    util.raise_from_cause(e)\r\n  File \"/usr/local/lib/python3.6/dist-packages/sqlalchemy/util/compat.py\", line 398, in raise_from_cause\r\n    reraise(type(exception), exception, tb=exc_tb, cause=cause)\r\n  File \"/usr/local/lib/python3.6/dist-packages/sqlalchemy/util/compat.py\", line 153, in reraise\r\n    raise value\r\n  File \"/usr/local/lib/python3.6/dist-packages/sqlalchemy/orm/session.py\", line 1586, in _autoflush\r\n    self.flush()\r\n  File \"/usr/local/lib/python3.6/dist-packages/sqlalchemy/orm/session.py\", line 2479, in flush\r\n    self._flush(objects)\r\n  File \"/usr/local/lib/python3.6/dist-packages/sqlalchemy/orm/session.py\", line 2617, in _flush\r\n    transaction.rollback(_capture_exception=True)\r\n  File \"/usr/local/lib/python3.6/dist-packages/sqlalchemy/util/langhelpers.py\", line 68, in __exit__\r\n    compat.reraise(exc_type, exc_value, exc_tb)\r\n  File \"/usr/local/lib/python3.6/dist-packages/sqlalchemy/util/compat.py\", line 153, in reraise\r\n    raise value\r\n  File \"/usr/local/lib/python3.6/dist-packages/sqlalchemy/orm/session.py\", line 2577, in _flush\r\n    flush_context.execute()\r\n  File \"/usr/local/lib/python3.6/dist-packages/sqlalchemy/orm/unitofwork.py\", line 422, in execute\r\n    rec.execute(self)\r\n  File \"/usr/local/lib/python3.6/dist-packages/sqlalchemy/orm/unitofwork.py\", line 589, in execute\r\n    uow,\r\n  File \"/usr/local/lib/python3.6/dist-packages/sqlalchemy/orm/persistence.py\", line 245, in save_obj\r\n    insert,\r\n  File \"/usr/local/lib/python3.6/dist-packages/sqlalchemy/orm/persistence.py\", line 1137, in _emit_insert_statements\r\n    statement, params\r\n  File \"/usr/local/lib/python3.6/dist-packages/sqlalchemy/engine/base.py\", line 982, in execute\r\n    return meth(self, multiparams, params)\r\n  File \"/usr/local/lib/python3.6/dist-packages/sqlalchemy/sql/elements.py\", line 293, in _execute_on_connection\r\n    return connection._execute_clauseelement(self, multiparams, params)\r\n  File \"/usr/local/lib/python3.6/dist-packages/sqlalchemy/engine/base.py\", line 1101, in _execute_clauseelement\r\n    distilled_params,\r\n  File \"/usr/local/lib/python3.6/dist-packages/sqlalchemy/engine/base.py\", line 1250, in _execute_context\r\n    e, statement, parameters, cursor, context\r\n  File \"/usr/local/lib/python3.6/dist-packages/sqlalchemy/engine/base.py\", line 1476, in _handle_dbapi_exception\r\n    util.raise_from_cause(sqlalchemy_exception, exc_info)\r\n  File \"/usr/local/lib/python3.6/dist-packages/sqlalchemy/util/compat.py\", line 398, in raise_from_cause\r\n    reraise(type(exception), exception, tb=exc_tb, cause=cause)\r\n  File \"/usr/local/lib/python3.6/dist-packages/sqlalchemy/util/compat.py\", line 152, in reraise\r\n    raise value.with_traceback(tb)\r\n  File \"/usr/local/lib/python3.6/dist-packages/sqlalchemy/engine/base.py\", line 1246, in _execute_context\r\n    cursor, statement, parameters, context\r\n  File \"/usr/local/lib/python3.6/dist-packages/sqlalchemy/engine/default.py\", line 588, in do_execute\r\n    cursor.execute(statement, parameters)\r\nsqlalchemy.exc.IntegrityError: (raised as a result of Query-invoked autoflush; consider using a session.no_autoflush block if this flush is occurring prematurely)\r\n(psycopg2.errors.NotNullViolation) null value in column \"id\" of relation \"machines\" violates not-null constraint\r\nDETAIL:  Failing row contains (null, win7x64, win7x64, 192.168.122.107, windows, virbr0, Snapshot1, f, null, null, null, 192.168.122.1, 2042).\r\n\r\n[SQL: INSERT INTO machines (name, label, ip, platform, interface, snapshot, locked, locked_changed_on, status, status_changed_on, resultserver_ip, resultserver_port) VALUES (%(name)s, %(label)s, %(ip)s, %(platform)s, %(interface)s, %(snapshot)s, %(locked)s, %(locked_changed_on)s, %(status)s, %(status_changed_on)s, %(resultserver_ip)s, %(resultserver_port)s) RETURNING machines.id]\r\n[parameters: {'name': 'win7x64', 'label': 'win7x64', 'ip': '192.168.122.107', 'platform': 'windows', 'interface': 'virbr0', 'snapshot': 'Snapshot1', 'locked': False, 'locked_changed_on': None, 'status': None, 'status_changed_on': None, 'resultserver_ip': '192.168.122.1', 'resultserver_port': 2042}]\r\n(Background on this error at: http://sqlalche.me/e/gkpj)\r\n```\r\n\nComment: Hello, it looks like it didn't port the data correctly\r\n```\r\n(psycopg2.errors.NotNullViolation) null value in column \"id\" of relation \"machines\" violates not-null constraint\r\n```\nComment: Ok, I re-created the DB, migrated data from sqlite to psql, migrated to the new schema. My \u00ab\u00a0machines\u00a0\u00bb table is filled with data. I start cuckoo.py, the content of the table is dropped (no more rows) and the same error occur!?\r\nThe \u2018id\u2019 column is also created with a \u2018not null\u2019 constraint in sqlite\u2026\nComment: well i can't really help here as i never did a migration between dbs. what i probably can suggest is that you drop psql db, start cuckoo.py to create everything and then just import tasks table as that is used to show tasks, the rest i don't think is usefull and most of them is auto populated on start\nComment: That\u2019s what I did, reset all data on my psql, created db. It was populated by CAPE, upgraded to last schema and imported data\u2026 Case closed! Happy! :)\nComment: Happy days",
+  "Title: DB schema update fail\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n# Expected Behavior\r\n\r\nI just upgraded my CAPE instance to the latest release and a DB schema upgrade is required. \r\n\r\n# Current Behavior\r\n\r\n```\r\nINFO  [alembic.runtime.migration] Context impl SQLiteImpl.\r\nINFO  [alembic.runtime.migration] Will assume non-transactional DDL.\r\nINFO  [alembic.runtime.migration] Running upgrade 6ab863a3b510 -> 703266a6bbc5, 2.3.1_square_hammer\r\nTraceback (most recent call last):\r\n  File \"/usr/local/lib/python3.6/dist-packages/sqlalchemy/engine/base.py\", line 1246, in _execute_context\r\n    cursor, statement, parameters, context\r\n  File \"/usr/local/lib/python3.6/dist-packages/sqlalchemy/engine/default.py\", line 588, in do_execute\r\n    cursor.execute(statement, parameters)\r\nsqlite3.OperationalError: near \"alter\": syntax error\r\n```\r\n\r\n## Context\r\n\r\nI read that alembic must be run in \"batch mode\" for SQLite (that does not provide \"ALTER\") but I'm not able to learn how to do this!?\r\n\r\n\nComment: Hi,\r\nJust a guess, but maybe the update overrides your connection string for your database in cuckoo.conf?\r\n\r\n```\r\n[database]\r\n#Specify the database connection string.\r\n#Examples, see documentation for more:\r\n#sqlite:///foo.db\r\n#postgresql://foo:bar@localhost:5432/mydatabase\r\n#mysql://foo:bar@localhost/mydatabase\r\n#If empty, default is a SQLite in db/cuckoo.db.\r\n#For production we strongly suggest go with PostgreSQL\r\nconnection =\r\n```\r\n\nComment: Nope, my config is ok (default db/cuckoo.db). \r\nIs there a way to apply changes manually? Based on the versions/ files, there is a low amount of changes\u2026 Doable?\nComment: Hello, sqlite isn't production db, only dev, it doesn't support upgrades, so i suggest you to migrate to proper database as psql, is why i left comment about that just before `connection` line ",
+  "Title: allow orjson to handle bytes obj\nBody: bytes obj in network results (request and response) broke orjson dumps",
+  "Title: Memory Strings Not Moving to Permanent Storage from TMPFS\nBody: - [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nAfter analysis, memory strings moved from TMPFS storage into permanent storage in `storage/analyses/<id>`\r\n\r\n# Current Behavior\r\nMemory strings remain in the TMPFS directory until manually moved\r\n\r\n# Failure Information (for bugs)\r\nNo errors reported\r\n\r\n\nComment: hm do you have enabled tmpfsclean? as code is there hm\nComment: Confirmed in `reporting.conf`:\r\n```\r\n[tmpfsclean]\r\nenabled = yes\r\nkey = tr_extractor\r\n```\nComment: trying to reproduce again\nComment: The proper setting is `yes`/`no` for `enabled =` in `reporting.conf` correct?\nComment: correct\nComment: it works just fine here, i can't reproduce your problem\nComment: it was fixed 9.06 https://github.com/kevoreilly/CAPEv2/commit/a1c0adb35953c026cdc312c1129975ca76655725\r\non which commit are you?\nComment: ok i have pushed one thing that will move strings in any case, let me know if that works for you",
+  "Title: Add tooltips for file info actions\nBody: Example:\r\n\r\n![b2](https://user-images.githubusercontent.com/43088607/123047465-fd07bd80-d405-11eb-948b-af7ceda6f70a.png)\r\n\nComment: Thank you, ihad it in ToDo :)",
+  "Title: Update static.py\nBody: We should add UTF-8 decoding otherwise it will break the report https://github.com/kevoreilly/CAPEv2/blob/841b714d54798293cb1113d10a96a10bcc0f744a/modules/reporting/jsondump.py.\nComment: \u0434\u044f\u043a\u0443\u044e)",
+  "Title: allow for zipped download only, rename category\nBody: ",
+  "Title: fix vt upload + add it to cape/procdump\nBody: ",
+  "Title: How to get the audit log of the Web UI\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ x] I am running the latest version\r\n- [ x] I checked the documentation and found no answer\r\n- [ x] I checked to make sure that this issue has not already been filed\r\n- [ x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nI want to get the audit log of the web interface.\r\n- Accessed IP address\r\n- Logged in user name and time\r\n\r\nI would like to know if there is a way to configure or customize the source code in order to get the audit log.\r\n\r\n# Current Behavior\r\n\r\nAudit logs are not being collected.\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | commit f4cd442a8e5d1a084871e32837a91ace09546bb7\r\n| OS version       | Ubuntu 20.04.01\r\n\r\n## Failure Logs\r\n\r\n\r\n\nComment: are you speaking about this? https://sematext.com/blog/auditd-logs-auditbeat-elasticsearch-logsene/\nComment: put it in report folder inside of the analysis folder and add link here https://github.com/kevoreilly/CAPEv2/blob/master/web/templates/analysis/reports/index.html\nComment: Thank you for responding.\r\n\r\nThe information I wanted was the history of logins to the web UI (success/failure, username, IP address).\nComment: there is no such feature, so i guess you will need to implement that\nComment: google knows more but the first result is https://github.com/Dolidodzik/django-login-history/\nComment: I understood.\r\nThank you for your support.\nComment: you are welcome",
+  "Title: fixed some report stuff\nBody: fixed json link\r\nfixed signature color in html report \nComment: oh that is fixed in bootstrap5 branch but thanks",
+  "Title: Update header.html\nBody: Frees up some navbar space, making it prettier",
+  "Title: WSGI error \nBody: Hi i'm trying to deploy CAPEv2 to deployment state with apache2 but i'm running into an WSGI error\r\n\r\n####  errorlog Apache2:\r\n******\r\n\r\n[Tue Jun 15 20:25:26.459934 2021] [wsgi:error] [pid 10663:tid 140317370078976] [client 127.0.0.1:41754]     mod = importlib.import_module(self.SETTINGS_MODULE)\r\n[Tue Jun 15 20:25:26.459961 2021] [wsgi:error] [pid 10663:tid 140317370078976] [client 127.0.0.1:41754]   File \"/usr/lib/python3.8/importlib/__init__.py\", line 127, in import_module\r\n[Tue Jun 15 20:25:26.459986 2021] [wsgi:error] [pid 10663:tid 140317370078976] [client 127.0.0.1:41754]     return _bootstrap._gcd_import(name[level:], package, level)\r\n[Tue Jun 15 20:25:26.460012 2021] [wsgi:error] [pid 10663:tid 140317370078976] [client 127.0.0.1:41754]   File \"<frozen importlib._bootstrap>\", line 1014, in _gcd_import\r\n[Tue Jun 15 20:25:26.460042 2021] [wsgi:error] [pid 10663:tid 140317370078976] [client 127.0.0.1:41754]   File \"<frozen importlib._bootstrap>\", line 991, in _find_and_load\r\n[Tue Jun 15 20:25:26.460071 2021] [wsgi:error] [pid 10663:tid 140317370078976] [client 127.0.0.1:41754]   File \"<frozen importlib._bootstrap>\", line 975, in _find_and_load_unlocked\r\n[Tue Jun 15 20:25:26.460100 2021] [wsgi:error] [pid 10663:tid 140317370078976] [client 127.0.0.1:41754]   File \"<frozen importlib._bootstrap>\", line 671, in _load_unlocked\r\n[Tue Jun 15 20:25:26.460129 2021] [wsgi:error] [pid 10663:tid 140317370078976] [client 127.0.0.1:41754]   File \"<frozen importlib._bootstrap_external>\", line 783, in exec_module\r\n[Tue Jun 15 20:25:26.460158 2021] [wsgi:error] [pid 10663:tid 140317370078976] [client 127.0.0.1:41754]   File \"<frozen importlib._bootstrap>\", line 219, in _call_with_frames_removed\r\n[Tue Jun 15 20:25:26.460188 2021] [wsgi:error] [pid 10663:tid 140317370078976] [client 127.0.0.1:41754]   File \"/opt/CAPEv2/web/web/settings.py\", line 21, in <module>\r\n[Tue Jun 15 20:25:26.460212 2021] [wsgi:error] [pid 10663:tid 140317370078976] [client 127.0.0.1:41754]     from lib.cuckoo.common.config import Config\r\n[Tue Jun 15 20:25:26.460239 2021] [wsgi:error] [pid 10663:tid 140317370078976] [client 127.0.0.1:41754]   File \"/opt/CAPEv2/lib/cuckoo/common/config.py\", line 11, in <module>\r\n[Tue Jun 15 20:25:26.460263 2021] [wsgi:error] [pid 10663:tid 140317370078976] [client 127.0.0.1:41754]     from lib.cuckoo.common.objects import Dictionary\r\n[Tue Jun 15 20:25:26.460290 2021] [wsgi:error] [pid 10663:tid 140317370078976] [client 127.0.0.1:41754]   File \"/opt/CAPEv2/lib/cuckoo/common/objects.py\", line 829, in <module>\r\n[Tue Jun 15 20:25:26.460319 2021] [wsgi:error] [pid 10663:tid 140317370078976] [client 127.0.0.1:41754]     init_yara()\r\n[Tue Jun 15 20:25:26.460346 2021] [wsgi:error] [pid 10663:tid 140317370078976] [client 127.0.0.1:41754]   File \"/opt/CAPEv2/lib/cuckoo/common/objects.py\", line 813, in init_yara\r\n[Tue Jun 15 20:25:26.460371 2021] [wsgi:error] [pid 10663:tid 140317370078976] [client 127.0.0.1:41754]     mem_rules.save(os.path.join(yara_root, \"index_memory.yarc\"))\r\n[Tue Jun 15 20:25:26.460409 2021] [wsgi:error] [pid 10663:tid 140317370078976] [client 127.0.0.1:41754] yara.Error: could not open file \"/opt/CAPEv2/data/yara/index_memory.yarc\"\r\n\r\n******\r\n\r\n\r\n\r\n#### vhost config\r\n\r\n    <VirtualHost` *:80>\r\n        RewriteEngine On\r\n        RewriteCond %{HTTPS} off\r\n        RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI}\r\n    </VirtualHost>\r\n\r\n    <VirtualHost *:443>\r\n        SSLEngine On\r\n        SSLCertificateFile      /etc/apache2/ssl/cert.crt\r\n        SSLCertificateKeyFile   /etc/apache2/ssl/cert.key\r\n\r\n        WSGIDaemonProcess web user=www-data group=www-data  processes=5 threads=20\r\n\r\n        WSGIScriptAlias         /       /opt/CAPEv2/web/web/wsgi.py\r\n\r\n        <Directory /opt/CAPEv2/web>\r\n                Require         all     granted\r\n                WSGIScriptReloading On\r\n        </Directory>\r\n\r\n        Alias /static /opt/CAPEv2/web/static\r\n\r\n        ErrorLog        ${APACHE_LOG_DIR}/error.log\r\n        LogLevel        error\r\n        CustomLog       ${APACHE_LOG_DIR}/access.log    combined\r\n\r\n    </VirtualHost>\r\n*****\r\n\r\nI'm not sure what i'm missing here, probably something small, but i cant get it to work proparly yet\r\n\nComment: hello it sound like problems with permisions\r\n```\r\n[Tue Jun 15 20:25:26.460409 2021] [wsgi:error] [pid 10663:tid 140317370078976] [client 127.0.0.1:41754] yara.Error: could not open file \"/opt/CAPEv2/data/yara/index_memory.yarc\"\r\n```\r\ncan you post the output of those 2 commands?\r\n\r\n```\r\n\r\nls -lah /opt/CAPEv2/data/yara/index_memory.yarc\r\nls -lah /opt/CAPEv2/\r\n```\nComment: yes as you can see \r\n```\r\nWSGIDaemonProcess web user=www-data group=www-data  processes=5 threads=20\r\n```\r\n\r\nyou run with `www-data` as user, in nginx that i suggest you to use, we use it with `cape` user\nComment:   I have been able to get it working with Nginx revproxy and Uswgi. It indeed seemed like an permissions issue, however the initial test with apache and the modified  cape user/group vhostconfig  didn't change the error at all. I'll guest Apache is just less suitable for CAPE  tnxs for the advise anyway!\nComment: Well you need to dig into the permissions and add cape or www-data to the\nsame group, and check if www didnt change other files permissions\n\nEl mi\u00e9., 16 jun. 2021 12:12, 2Wanderer ***@***.***> escribi\u00f3:\n\n> I have been able to get it working with Nginx revproxy and Uswgi. It\n> indeed seemed like an permissions issue, however the initial test with\n> apache and the modified cape user/group vhostconfig didn't change the error\n> at all. I'll guest Apache is just less suitable for CAPE tnxs for the\n> advise anyway!\n>\n> \u2014\n> You are receiving this because you modified the open/close state.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/517#issuecomment-862232653>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3ZH3FOO4VWPGGQMOFLTTB2HVANCNFSM46YAIWMA>\n> .\n>\n\nComment: I do have a similar problem - I don't exactly know If It's the same _but It relates to the same python method(?)_\r\n\r\n![image](https://user-images.githubusercontent.com/32965886/132951513-07a22e6b-c1c3-42a3-814d-5d9d827a4616.png)\r\n\r\n@doomedraven - Is there any data/logs I can provide to have a clearer view of this problem? :/\r\nI use Proxmox as the machinery\nComment: that bcz you using wrong username, you need to change everything to remnux, but that will require some services changes, so use cape and you won't get that error, that basically permission problem\nComment: > that bcz you using wrong username, you need to change everything to remnux, but that will require some services changes, so use cape and you won't get that error, that basically permission problem\r\n\r\nThanks for the quick help! But with that, I need additional help : p\r\n**What is the password of cape user?** \r\n\r\nI don't remember having an option to set it. I searched Docs and there were no credentials provided (perhaps I didn't search enough, sorry If that's the case) @doomedraven \nComment: `sudo su cape` thats all, are you familiar with linux?\nComment: > `sudo su cape` thats all, are you familiar with linux?\r\n\r\nAAH, thankies! <3\r\n_I use Arch Linux btw._ \r\n\r\n(not as the Cuckoo Host don't worry! xD)",
+  "Title: Add Strrat config extraction\nBody: \nComment: I am not happy with these mods to cape processing module. What is this special parsing list? This clashes with mods I have which are consistent with a push to remove all malware-specific stuff from this module. If you can explain why this list is necessary (as opposed to straight yara + parser) then I can decide the best way to solve that problem.\nComment: the problem as far as he told me is that the detection is in another module, like procmemory, and we don't extract nothing there, so the thing would or add try extract there or here like this\nComment: The issue is that the yara matches in procmemory. The config is in the\noriginal jar. As it's currently structured, the yara match is not tied to\nthe original submitted file. So, the parser will never run. Also, the\nprocmemory module runs after CAPE, so no yara to match.\n\nThis was the least invasive method to handle these situations.\n\nI'm open to better solutions.\n\nOn Tue, Jun 15, 2021, 4:15 PM doomedraven ***@***.***> wrote:\n\n> well now that i think, yara is matched so the uniq problem there is the\n> payload/config part in naming that fails as far as i understand no?\n>\n> \u2014\n> You are receiving this because you authored the thread.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/pull/516#issuecomment-861801617>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AB3X3YB32YVGAP6LMNLE4DTTS6YHFANCNFSM46X2KTJA>\n> .\n>\n\nComment: The real issue is that cape is not designed to work this way. Procmemdump is not enabled by default, nor is it designed to be. Config extraction is not designed to be performed on procmemdump. If I had wanted that I would have designed it that way 5 years ago. Another issue I have is in seeing ad-hoc mods like this to core components and ultimately core design just for the sake of a single malware family. So the way to go about this is not just to bolt on patchwork code and family-specific lists into a processing module, rather tackle any limitations in the design properly.\r\n\r\nThe way to do this is to find a way to dump the memory region within the monitor, have it properly labelled using 'cape metadata' and then worked through to the parser using the existing mechanism.\r\n\r\nI will be removing these mods to the processing module as well as almost all other family-specific code in my next update.\nComment: If it can be detected in procmemdump yara then it can be detected, dumped and 'labelled' using yara within capemon. Maybe we need to improve capemon's dumping ability here but something like that is the way forward.\nComment: ... or maybe we could enable config extraction via yara in procmemdump - but that would be done in the procmemory.py processing module. I'm still not keen on this as this means if procmemdump not enabled on submission (i.e. default) the config extraction won't work. That's why I think it's better to have the monitor dump and 'label' it properly the 'cape' way.\nComment: Having the monitor dump and label would certainly be ideal. \nComment: When you get time to look at this let me know and I'll help any way I can.",
+  "Title: Issues in installing requirements.txt dependencies\nBody: Hi CAPEv2 Community, we are currently a group of students working on a malware analysis project, which requires setting up of CAPEv2 Sandbox. We have identified an issue upon setting up CAPEv2 as of today. However, we have identify the cause of it, which we have stated down below.\r\n\r\n# Prerequisites\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\nPython dependencies required for CAPEv2 to function properly should be installed properly when installing using [cape2.sh](https://github.com/doomedraven/Tools/blob/master/Sandbox/cape2.sh)\r\n\r\n# Current Behavior\r\nAfter using cape2.sh to install and using 'sudo python3 manage.py migrate', there will be alot of missing dependencies.\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. sudo apt-get update && sudo apt-get upgrade -y && sudo reboot\r\n2. mkdir capesandbox && cd capesandbox\r\n3. sudo wget https://raw.githubusercontent.com/doomedraven/Tools/master/Sandbox/cape2.sh\r\n4. sudo nano http://cape2.sh\r\n5. sudo chmod a+x http://cape2.sh\r\n6. sudo ./cape2.sh base cape | tee cape2_result.txt\r\n7. cd /opt/CAPEv2/web\r\n8. sudo python3 http://manage.py migrate\r\n\r\n## Failure Logs\r\n\r\nAfter running Step 8, a prompt came out saying no module named 'django' error. Even after doing a pip install django, it still says other dependencies need to be installed.\r\n\r\nLooking back at the cape2_result.txt, it was found out that there was an error saying: \r\nCollecting git+https://github.com/Defense-Cyber-Crime-Center/DC3-MWCP.git\r\n  Cloning https://github.com/Defense-Cyber-Crime-Center/DC3-MWCP.git to /tmp/pip-req-build-c23xjssf\r\n  Running command git clone -q https://github.com/Defense-Cyber-Crime-Center/DC3-MWCP.git /tmp/pip-req-build-c23xjssf\r\n    ERROR: Command errored out with exit status 1:\r\n     command: /usr/bin/python3 -c 'import sys, setuptools, tokenize; sys.argv[0] = '\"'\"'/tmp/pip-req-build-c23xjssf/setup.py'\"'\"'; __file__='\"'\"'/tmp/pip-req-build-c23xjssf/setup.py'\"'\"';f=getattr(tokenize, '\"'\"'open'\"'\"', open)(__file__);code=f.read().replace('\"'\"'\\r\\n'\"'\"', '\"'\"'\\n'\"'\"');f.close();exec(compile(code, __file__, '\"'\"'exec'\"'\"'))' egg_info --egg-base /tmp/pip-req-build-c23xjssf/pip-egg-info\r\n         cwd: /tmp/pip-req-build-c23xjssf/\r\n    Complete output (37 lines):\r\n    Traceback (most recent call last):\r\n      File \"<string>\", line 1, in <module>\r\n      File \"/tmp/pip-req-build-c23xjssf/setup.py\", line 8, in <module>\r\n        setup(\r\n      File \"/usr/lib/python3/dist-packages/setuptools/__init__.py\", line 144, in setup\r\n        return distutils.core.setup(**attrs)\r\n      File \"/usr/lib/python3.8/distutils/core.py\", line 121, in setup\r\n        dist.parse_config_files()\r\n      File \"/usr/lib/python3/dist-packages/setuptools/dist.py\", line 701, in parse_config_files\r\n        parse_configuration(self, self.command_options,\r\n      File \"/usr/lib/python3/dist-packages/setuptools/config.py\", line 121, in parse_configuration\r\n        meta.parse()\r\n      File \"/usr/lib/python3/dist-packages/setuptools/config.py\", line 426, in parse\r\n        section_parser_method(section_options)\r\n      File \"/usr/lib/python3/dist-packages/setuptools/config.py\", line 399, in parse_section\r\n        self[name] = value\r\n      File \"/usr/lib/python3/dist-packages/setuptools/config.py\", line 184, in __setitem__\r\n        value = parser(value)\r\n      File \"/usr/lib/python3/dist-packages/setuptools/config.py\", line 515, in _parse_version\r\n        version = self._parse_attr(value, self.package_dir)\r\n      File \"/usr/lib/python3/dist-packages/setuptools/config.py\", line 349, in _parse_attr\r\n        module = import_module(module_name)\r\n      File \"/usr/lib/python3.8/importlib/__init__.py\", line 127, in import_module\r\n        return _bootstrap._gcd_import(name[level:], package, level)\r\n      File \"<frozen importlib._bootstrap>\", line 1014, in _gcd_import\r\n      File \"<frozen importlib._bootstrap>\", line 991, in _find_and_load\r\n      File \"<frozen importlib._bootstrap>\", line 975, in _find_and_load_unlocked\r\n      File \"<frozen importlib._bootstrap>\", line 671, in _load_unlocked\r\n      File \"<frozen importlib._bootstrap_external>\", line 783, in exec_module\r\n      File \"<frozen importlib._bootstrap>\", line 219, in _call_with_frames_removed\r\n      File \"/tmp/pip-req-build-c23xjssf/mwcp/__init__.py\", line 11, in <module>\r\n        from mwcp.file_object import FileObject\r\n      File \"/tmp/pip-req-build-c23xjssf/mwcp/file_object.py\", line 18, in <module>\r\n        from mwcp import metadata\r\n      File \"/tmp/pip-req-build-c23xjssf/mwcp/metadata.py\", line 20, in <module>\r\n        import cattr\r\n    ModuleNotFoundError: No module named 'cattr'\r\n    ----------------------------------------\r\nERROR: Command errored out with exit status 1: python setup.py egg_info Check the logs for full command output.\r\n\r\n## Temporary Solution\r\n\r\n1. Line 37 of /opt/CAPEv2/requirements.txt \r\n2. git+github.com/Defense-Cyber-Crime-Center/DC3-MWCP.git\r\n3. Using this latest release will result in error causing the rest of the dependencies to be skipped. \r\n4. Use this for temp fix-> git+github.com/Defense-Cyber-Crime-Center/DC3-MWCP.git@3.2.1\r\n\r\nThank you!\r\n\r\nFrom, \r\n@Vangeance666 @jrdtan @javvylx\r\n\nComment: With the new release 3.3.0 they added some new install requirements:\r\n\r\nanytree\r\nattrs>=20.3.0\r\ncattrs\r\npandas\r\npytest>=6.0.0\r\npytest-console-scripts\r\npytest-xdist\r\ntabulate[widechars]\r\n\r\nthey also changed some objects and attributes that may need additional checks\r\n\r\nhttps://github.com/Defense-Cyber-Crime-Center/DC3-MWCP/blob/master/CHANGELOG.md\nComment: Hello, thanks for headups, as you might see that MWCP is 3rd part dependency, and those 3rd part dependencies is always a headache, especially MISP integration, as we are not owners of those projects we trying to make huge effort on bring you solution, but once we got sandbox working, we don't check each new release of those libs, is why we started to hardcode versions of those  libraries\r\n\r\nin production we use \r\n```\r\n pip3 freeze|grep mwcp\r\nmwcp==3.0.0\r\n```\r\n\r\nthe best way to solve it is not hardcore obviosly this, but report to the proper repo to fix that\r\nbut it can be also fixed by installing their missed deps by hand\r\n\r\n\r\n__IMPORTANT__ i see you run manage.py as root, __NEVER EVER__ run any thing from CAPE as root, apart of rooter.py\nComment: and i was able to upgrade that with no problems\r\n```\r\nFound existing installation: mwcp 3.0.0\r\n    Uninstalling mwcp-3.0.0:\r\n      Successfully uninstalled mwcp-3.0.0\r\nSuccessfully installed  mwcp-3.3.0\r\n```\nComment: i have changed the requirements to install it from pypi instead of git, let us know if you find any problem, but be aware, running cape as  root will give you tons of permission problems and other random problems all around, is why it should be executed by cape user as our systemd services does, to use systemd now you have to fix all the permissions inside of the `/tmp` and `/opt/CAPEv2`, for that you can use `chown cape:cape PATH_HERE -R`\nComment: so i have details on this problem\r\n\r\nit looks like cattrs is using `get_args` that was introduced in python 3.8 https://docs.python.org/3.8/library/typing.html\r\nmost ubuntu 20 is using 3.6,\r\n\r\n```\r\ncattrs==1.1.0\r\n```\r\n```\r\n>>> import mwcp\r\nTraceback (most recent call last):\r\n  File \"<stdin>\", line 1, in <module>\r\n  File \"/usr/local/lib/python3.6/dist-packages/mwcp/__init__.py\", line 11, in <module>\r\n    from mwcp.file_object import FileObject\r\n  File \"/usr/local/lib/python3.6/dist-packages/mwcp/file_object.py\", line 18, in <module>\r\n    from mwcp import metadata\r\n  File \"/usr/local/lib/python3.6/dist-packages/mwcp/metadata.py\", line 20, in <module>\r\n    import cattr\r\n  File \"/usr/local/lib/python3.6/dist-packages/cattr/__init__.py\", line 1, in <module>\r\n    from .converters import Converter, GenConverter, UnstructureStrategy\r\n  File \"/usr/local/lib/python3.6/dist-packages/cattr/converters.py\", line 18, in <module>\r\n    from ._compat import (\r\n  File \"/usr/local/lib/python3.6/dist-packages/cattr/_compat.py\", line 31, in <module>\r\n    from typing import get_args, get_origin  # NOQA\r\nImportError: cannot import name 'get_args'\r\n```\r\n\r\nso yes till 3.8 python we should use mwcp 3.2.1",
+  "Title: [add] functionality to display user tags from recent files submission\u2026\nBody: \u2026 tab\nComment: thanks, the uniq thing is that config should be in web.conf as that is something related to webgui\nComment: ok i see lol we need to migrate many options, so one day :D ",
+  "Title: Update agent.py\nBody: Prevent execution of commands from localhost\nComment: nice thanks, i wasn't thinking in that way, but this is much easier solution",
+  "Title: Enable reboot of physical machine after analysis without Fog agent\nBody: Fog agent on physical machines can't be reached after an analysis since WMI gets restarted during an analysis which does not restart the fog agent. It therefor possibly makes sense to enable the route \"execute\" in agent.py and directly issue the command\r\n\r\nshutdown -r -f -t 0\r\n\r\nthrough modules/machinery/physical.py after an analysis has finished. Code has been tested locally\nComment: cool thanks @hariomenkel, the uniq think that would need to check is that if attacker can send command to that port and just kill analysis, there was feature like key that was used for communication in cuckoo-modified, i will need to check",
+  "Title: Question: Does Slack SocialAccount from django allauth work for your?\nBody: \nComment: Hello Manuel, we don't use slack auth, we used Twitter/Google, but due to huge spikes of abuse of google with fake accounts we kinda not even watching them anymore as almost everything was fake spam accounts\r\n\r\nSo i hope the allauth devs can help you with your issue\nComment: my advice to set manual approve, all those social auth is neat feature, but from my personal experience huge amount of accounts are spam that making you wasting the time to cleanup/ban, etc",
+  "Title: Volatility Not Finding Memory Dump in RAMFS\nBody: - [X] I am running the latest version\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\nVolatility processing memory dump utilizing the `ramfs` option.\r\n\r\nI have validated that Volatility properly functions with `ramfs` disabled (using SSD).\r\n\r\n# Current Behavior\r\nTested volatility functionality using the normal process and it ran correctly. Enabled `ramfs` option in `cuckoo.conf` but receive the error `ERROR: Memory dump not found: to run volatility you have to enable memory_dump`\r\n\r\nDisabling the `ramfs` option in the `cuckoo.conf`, with no other changes, allows Volatility to process as normal.\r\n\r\nValidated that the `task_id.dmp` is being properly created in `/mnt/ramfs` and accessible by the user.\r\n\r\n# Failure Information (for bugs)\r\n`process.log`\r\n```\r\n2021-06-09 03:06:12,099 [root] INFO: Task #109: reports generation completed\r\n2021-06-09 03:15:22,496 [root] INFO: Processing analysis data\r\n2021-06-09 03:16:57,888 [root] INFO: Processing analysis data for Task #110\r\n2021-06-09 03:16:59,632 [root] ERROR: Memory dump not found: to run volatility you have to enable memory_dump\r\n```\r\n\r\n`cuckoo.log`\r\n```\r\n2021-06-09 03:15:54,603 [lib.cuckoo.core.scheduler] INFO: Task #110: acquired machine win10x64-malware-1 (label=win10x64-malware-1, platform=windows)\r\n2021-06-09 03:16:07,668 [lib.cuckoo.core.scheduler] INFO: Enabled route 'tor'\r\n2021-06-09 03:16:07,691 [modules.auxiliary.sniffer] INFO: Started sniffer with PID 5190 (interface=virbr1, host=192.168.100.100, dump path=/opt/CAPEv2/storage/analyses/110/dump.pcap)\r\n2021-06-09 03:16:07,708 [lib.cuckoo.core.guest] INFO: Starting analysis #110 on guest (id=win10x64-malware-1, ip=192.168.100.100)\r\n2021-06-09 03:16:07,726 [lib.cuckoo.core.guest] INFO: Guest is running CAPE Agent 0.11 (id=win10x64-malware-1, ip=192.168.100.100)\r\n2021-06-09 03:16:09,773 [lib.cuckoo.core.guest] INFO: Uploading support files to guest (id=win10x64-malware-1, ip=192.168.100.100)\r\n2021-06-09 03:16:52,558 [lib.cuckoo.core.guest] INFO: win10x64-malware-1: analysis completed successfully\r\n2021-06-09 03:16:56,750 [lib.cuckoo.core.scheduler] INFO: Disabled route 'tor'\r\n2021-06-09 03:16:56,787 [lib.cuckoo.core.scheduler] INFO: Task #110: analysis procedure completed\r\n```\r\n```\r\n$ ls /mnt/ramfs/\r\n110.dmp\r\n```\r\n```\r\n$ df -h\r\n...\r\ntmpfs            30G  4.2G   26G  14% /mnt/ramfs\r\n```\nComment: hello, thank you, checking, btw i will update that section as ramfs is basically depricated in favour of tmpfs, is what im using, will be back here once ensured all works\nComment: give it a try https://github.com/kevoreilly/CAPEv2/commit/e8207939eea64c898cef60c66e7c6acef4ff60ba\nComment: closing, reopen if needed\nComment: Confirmed these changes are working appropriately.\nComment: cool let me know if you find any other problem, and thanks again\nComment: Just need to get the VPN profiles routing appropriately, still troubleshooting where the break down is... but that's another issue somewhere else :)  \r\n\r\nThanks again for all your help and feedback sir!\nComment: did you check this? https://github.com/kevoreilly/CAPEv2/blob/master/utils/vpn2cape.py\r\nwe have vpn running in production so if you use that and fill all those fields should be fine\nComment: I will check that out... Stupid me did not look in utilities for VPN setup.\r\n\r\nOn the original issue, it looks like Memory Strings is not being moved to permanent storage after processing:\r\n```\r\n$ ls /mnt/ramfs/\r\n129.dmp.strings\r\n```\r\n\r\n```\r\n$ ls -l /opt/CAPEv2/storage/analyses/129/\r\ntotal 89588\r\n-rw-r--r-- 1 malware malware    15531 Jun  9 18:40 analysis.log\r\ndrwxr-xr-x 2 malware malware     4096 Jun  9 18:53 aux\r\ndrwxr-xr-x 2 malware malware     4096 Jun  9 18:37 CAPE\r\n-rw-r--r-- 1 malware malware        0 Jun  9 18:37 cuckoo.log\r\ndrwxr-xr-x 2 malware malware     4096 Jun  9 18:40 curtain\r\ndrwxr-xr-x 2 malware malware     4096 Jun  9 18:37 debugger\r\n-rw-r--r-- 1 malware malware 91649094 Jun  9 18:40 dump.pcap\r\ndrwxr-xr-x 2 malware malware     4096 Jun  9 18:37 files\r\n-rw-r--r-- 1 malware malware      353 Jun  9 18:37 files.json\r\ndrwxr-xr-x 2 malware malware     4096 Jun  9 18:53 logs\r\ndrwxr-xr-x 2 malware malware     4096 Jun  9 18:37 memory\r\ndrwxr-xr-x 2 malware malware     4096 Jun  9 18:52 network\r\ndrwxr-xr-x 2 malware malware     4096 Jun  9 18:37 procdump\r\ndrwxr-xr-x 2 malware malware     4096 Jun  9 18:53 reports\r\ndrwxr-xr-x 2 malware malware     4096 Jun  9 18:39 shots\r\ndrwxr-xr-x 2 malware malware     4096 Jun  9 18:37 stap\r\ndrwxr-xr-x 2 malware malware     4096 Jun  9 18:40 sysmon\r\ndrwxr-xr-x 2 malware malware     4096 Jun  9 18:37 tlsdump\r\n```\r\nEdit: Changed file path to the standard `/opt/CAPEv2/` location verses secondary storage that I am using.\nComment: just pushed to move strings, thanks, im not using any of core vol plugins, only mine extractors",
+  "Title: System stops working properly after analyzing some samples that create infinite processes\nBody: OS: Ubuntu 18.04.5 LTS\r\nLast commit: 3286fb66736d2687dae9570d6d494b2c5ee56720\r\n\r\nDescription\r\n=========\r\n\r\nWhen analyzing samples that create a lot of processes, like :\r\n\r\n7e401514e4e66a34f96afb44d4bcbe912d403905214ba3b39e17833326d1652c \r\n\r\nThe system cannot properly handle the logging when a bunch of them are analyzed at the same time and it stops working. The current analysis fails and it also affects other further analysis.\r\n\r\nHow to reproduce\r\n=============\r\n\r\nJust analyze the above sample multiple times in parallel, in our case, it happens with 4 analysis at the same time. Our specifications are:\r\n\r\n16vCore: Intel(R) Xeon(R) CPU           E5620  @ 2.40GHz\r\nRAM: 32gb\r\n\r\nI have to say there is no issue in performance, is like it's trying to log too much when that stuff happens.\r\n\r\n\r\nExpected Behavior\r\n==============\r\n\r\nGenerate proper reports for all of them, or at least they are 'cut' after logging N processes.\r\n\r\nError message\r\n===========\r\n\r\nWhen the first analysis fails and all the processes need to be logged, there is a cascade error like the following one:\r\n\r\n```\r\n2021-06-08 13:14:40,769 [lib.cuckoo.core.guest] WARNING: Virtual Machine: Win7x64_cape_1G_4 /status failed. This can indicate the guest losing network connectivity\r\n2021-06-08 13:14:40,911 [lib.cuckoo.core.guest] WARNING: Virtual Machine: Win7x64_cape_1G_5 /status failed. This can indicate the guest losing network connectivity\r\n2021-06-08 13:14:41,271 [lib.cuckoo.core.guest] WARNING: Virtual Machine: Win7x64_cape_1G_2 /status failed. This can indicate the guest losing network connectivity\r\n2021-06-08 13:14:41,274 [lib.cuckoo.core.guest] WARNING: Virtual Machine: Win7x64_cape_1G_1 /status failed. This can indicate the guest losing network connectivity\r\n2021-06-08 13:14:41,635 [lib.cuckoo.core.guest] WARNING: Virtual Machine: Win7x64_cape_1G_3 /status failed. This can indicate the guest losing network connectivity\r\n2021-06-08 13:14:41,777 [lib.cuckoo.core.guest] WARNING: Virtual Machine: Win7x64_cape_1G_4 /status failed. This can indicate the guest losing network connectivity\r\n2021-06-08 13:14:41,918 [lib.cuckoo.core.guest] WARNING: Virtual Machine: Win7x64_cape_1G_5 /status failed. This can indicate the guest losing network connectivity\r\n2021-06-08 13:14:42,281 [lib.cuckoo.core.guest] WARNING: Virtual Machine: Win7x64_cape_1G_1 /status failed. This can indicate the guest losing network connectivity\r\n2021-06-08 13:14:42,281 [lib.cuckoo.core.guest] WARNING: Virtual Machine: Win7x64_cape_1G_2 /status failed. This can indicate the guest losing network connectivity\r\n2021-06-08 13:14:42,642 [lib.cuckoo.core.guest] WARNING: Virtual Machine: Win7x64_cape_1G_3 /status failed. This can indicate the guest losing network connectivity\r\n2021-06-08 13:14:42,784 [lib.cuckoo.core.guest] WARNING: Virtual Machine: Win7x64_cape_1G_4 /status failed. This can indicate the guest losing network connectivity\r\n2021-06-08 13:14:42,938 [lib.cuckoo.core.guest] WARNING: Virtual Machine: Win7x64_cape_1G_5 /status failed. This can indicate the guest losing network connectivity\r\n2021-06-08 13:14:43,290 [lib.cuckoo.core.guest] WARNING: Virtual Machine: Win7x64_cape_1G_2 /status failed. This can indicate the guest losing network connectivity\r\n2021-06-08 13:14:43,292 [lib.cuckoo.core.guest] WARNING: Virtual Machine: Win7x64_cape_1G_1 /status failed. This can indicate the guest losing network connectivity\r\n2021-06-08 13:14:43,649 [lib.cuckoo.core.guest] WARNING: Virtual Machine: Win7x64_cape_1G_3 /status failed. This can indicate the guest losing network connectivity\r\n2021-06-08 13:14:43,793 [lib.cuckoo.core.guest] WARNING: Virtual Machine: Win7x64_cape_1G_4 /status failed. This can indicate the guest losing network connectivity\r\n2021-06-08 13:14:43,945 [lib.cuckoo.core.guest] WARNING: Virtual Machine: Win7x64_cape_1G_5 /status failed. This can indicate the guest losing network connectivity\r\n2021-06-08 13:14:44,300 [lib.cuckoo.core.guest] WARNING: Virtual Machine: Win7x64_cape_1G_2 /status failed. This can indicate the guest losing network connectivity\r\n2021-06-08 13:14:44,302 [lib.cuckoo.core.guest] WARNING: Virtual Machine: Win7x64_cape_1G_1 /status failed. This can indicate the guest losing network connectivity\r\n2021-06-08 13:14:44,656 [lib.cuckoo.core.guest] WARNING: Virtual Machine: Win7x64_cape_1G_3 /status failed. This can indicate the guest losing network connectivity\r\n2021-06-08 13:14:44,799 [lib.cuckoo.core.guest] WARNING: Virtual Machine: Win7x64_cape_1G_4 /status failed. This can indicate the guest losing network connectivity\r\n2021-06-08 13:14:44,951 [lib.cuckoo.core.guest] WARNING: Virtual Machine: Win7x64_cape_1G_5 /status failed. This can indicate the guest losing network connectivity\r\n2021-06-08 13:14:45,310 [lib.cuckoo.core.guest] WARNING: Virtual Machine: Win7x64_cape_1G_2 /status failed. This can indicate the guest losing network connectivity\r\n2021-06-08 13:14:45,314 [lib.cuckoo.core.guest] WARNING: Virtual Machine: Win7x64_cape_1G_1 /status failed. This can indicate the guest losing network connectivity\r\n2021-06-08 13:14:45,664 [lib.cuckoo.core.guest] WARNING: Virtual Machine: Win7x64_cape_1G_3 /status failed. This can indicate the guest losing network connectivity\r\n2021-06-08 13:14:45,807 [lib.cuckoo.core.guest] WARNING: Virtual Machine: Win7x64_cape_1G_4 /status failed. This can indicate the guest losing network connectivity\r\n2021-06-08 13:14:45,955 [lib.cuckoo.core.guest] INFO: Win7x64_cape_1G_5: end of analysis reached!\r\n2021-06-08 13:14:45,967 [lib.cuckoo.core.scheduler] ERROR: Cannot connect to libvirt\r\nTraceback (most recent call last):\r\n  File \"/capev2_working_directory/lib/cuckoo/common/abstracts.py\", line 537, in _connect\r\n    return libvirt.open(self.dsn)\r\n  File \"/usr/local/lib/python3.6/dist-packages/libvirt.py\", line 277, in open\r\nlibvirt.libvirtError: Failed to create socket: Too many open files\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"/capev2_working_directory/lib/cuckoo/core/scheduler.py\", line 345, in launch_analysis\r\n    machinery.dump_memory(self.machine.label, dump_path)\r\n  File \"/capev2_working_directory/lib/cuckoo/common/abstracts.py\", line 473, in dump_memory\r\n    conn = self._connect(label)\r\n  File \"/capev2_working_directory/lib/cuckoo/common/abstracts.py\", line 539, in _connect\r\n    raise CuckooMachineError(\"Cannot connect to libvirt\")\r\nlib.cuckoo.common.exceptions.CuckooMachineError: Cannot connect to libvirt\r\n2021-06-08 13:14:45,968 [lib.cuckoo.core.scheduler] WARNING: Task #10161: Unable to stop machine Windows7_x64_cape5-1G: Cannot connect to libvirt\r\n```\r\n\r\nWe already tried increasing max files opened. \nComment: hello, thank you for report, that is your OS limits problem, google for `Too many open files`",
+  "Title: fix mongo auth\nBody: ",
+  "Title: Please tell me what you are careful or ny hints about to processing status speed up\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nI want to make the waiting time in processing status(blue state after shutting down a virtual machine) as fast as possible.\r\nPlease let me know if there is anything on the public Cape side.\r\n\r\n# Current Behavior\r\n\r\nI tried to increase the number of virtual machines and speed up the analysis, but the processing status waits and it takes time to create a report.\r\nreport.conf,process.conf leaves the default\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Upload as many files as virtual machines\r\n2. running ends in a few minutes and Virtual machine shuts down\r\n3. Pendding accumulates\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | commit dd0bf29c7f0de1f82b5ccb02e2803eb46579bdb3\r\n| OS version       | ubuntu 20.04.1 LTS installed Python 3.8.5\r\n\r\nGuest machine: Using VirtualBox Windows 10 \r\n\r\n## Failure Logs\r\n\r\n\nComment: hello, processing always will be slower than analyzing, as it depends also on hardware, disable all the plugins that you don't need, + google for \"best practices for X\" to get more performance from the plugins and 3rd part software, that is your side task ;) \nComment: Thank you very much.\r\nLet's consider unnecessary plugins around report.conf and process.conf.",
+  "Title: getsha256 line should be inside the if statement on line 234 as it is breaking the URL analysis\nBody: https://github.com/kevoreilly/CAPEv2/blob/c77844f7a50796547806ef9059937df2a103087f/lib/cuckoo/core/scheduler.py#L233\nComment: thanks, PR would be also welcomed instead of issue to save time to everyone, moving that",
+  "Title: Fix yara hit function parameter\nBody: function is also called from processing.py\nComment: where it fails? i would like to see some logs\r\n\r\n```\r\n grep -r static_config_parsers .\r\n./lib/cuckoo/common/cape_utils.py:def static_config_parsers(yara_hit, file_data):\r\n./lib/cuckoo/common/cape_utils.py:            config = static_config_parsers(hit[\"name\"], file_data)\r\n./modules/processing/CAPE.py:                config_tmp = static_config_parsers(cape_name, file_data)\r\n./modules/processing/CAPE.py:            tmp_config = static_config_parsers(hit[\"name\"].replace(\"_\", \" \"), file_data)\r\n```\nComment: asl as you can see it will break the rest as it expects name already not the hit object\nComment: strange my CAPE.py has this:       tmp_config = static_config_parsers(hit, file_data)\r\nI'll verify any merges with that file.\nComment: Found a bad merge. Closing this request.\nComment: ok, thanks anyway ;) ",
+  "Title: Account activation\nBody: Sorry to have to repeat a closed issue but I, too, have applied for an account for the online version and have not, yet, been activated.\r\n\r\nTIA\nComment: \r\n<img width=\"313\" alt=\"Screenshot 2021-06-01 at 12 12 57\" src=\"https://user-images.githubusercontent.com/1856495/120306952-b6291b00-c2d2-11eb-9312-8398e055a3a4.png\">\r\n\nComment: don't open issues like that, this is pure spam, go and ping capesandbox in twitter and provide valid username\nComment: Thank you for your courteous response!",
+  "Title: [fix] pyattck dependency check\nBody: \nComment: i don't like this, import only if enabled, to remove huge load that it adds to load all jsons\nComment: thanks",
+  "Title: Trouble with MSI analysis\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ x] I am running the latest version\r\n- [ x] I checked the documentation and found no answer\r\n- [ x] I checked to make sure that this issue has not already been filed\r\n- [ x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nWhen submitting a msi installer like https://www.7-zip.org/a/7z1900-x64.msi, report should list newly created files in modified files section (like with the standard 7zip exe installed) or in dropped files.\r\n\r\n# Current Behavior\r\n\r\nWithout any modification, no files created during the installation process are shown in these list.\r\n\r\nBy modifying the msi.py script to remove the \"/qb ACCEPTEULA=1 LicenseAccepted=1\" and to interact with the sandbox to click in the installation wizard, a list of newly created file are shown in accessed files, a small part in modified files (7-zip.dll but not the exe) but nothing in dropped files.\r\n\r\n\nComment: hello, i guess that is due that windows api doesn't see the buttons in msi window to click on them, is why it not working, yo udon't need to remove `/qb` part, you just need to see how to attach to that window from windows api\nComment: Hi,\r\n\r\nin fact, I'm not really impacted by the fact the msi wizard is not perfectly managed by CAPE (the workaround of interacting in the virtual session is sufficient). It was the fact that CAPE (and cuckoo in the past) does not catch installed files as dropped or modified files.\nComment: hello @llgitty thanks for feedback, @kevoreilly the part of dropped/mod files is interesting\nComment: I can't help but wonder if there are other spawned msiexecs doing the work that cape misses... To see the dropped files we need to be monitoring the process that creates these files - it doesn't look like the single monitored process does any of this.\nComment: looks like this is solved now https://capesandbox.com/analysis/268115/",
+  "Title: unittests by @themanifold\nBody: Co-Authored-By: themanifold <5174034+themanifold@users.noreply.github.com>",
+  "Title: Add Office click-around to trigger macros\nBody: Thanks Will Metcalf\nComment: nice stuff, thank you both",
+  "Title: AgentTesla v3 mapping doesn't like .NET binaries much\nBody: https://www.virustotal.com/gui/file/a3c0f6276e185a00c61f3164088006dff44e69971e3450f9342027745fd7c4a8/detection\r\n\r\nI presume VirusTotal is running the latest version.\r\n\r\n(6 0f $* and all of $g*) looks like a precise rule until you notice that there's six g strings so it reduces to (all of $g*) which is, well, picky against .NET binaries. Properties aren't real things bug methods named get_ and set_; and the $g* strings match property invocation strings for keyboard state and password. So, if you have a property called Password somewhere in your binary and access all the key state properties on the stock WinFoms keyboard events, you have all the $g* strings in your code.\nComment: Thanks for the report - I will try and fix the sig.",
+  "Title: bootstrap5\nBody: \nComment: https://getbootstrap.com/docs/5.0/migration/#typography",
+  "Title: Update views.py\nBody: Fix VT upload",
+  "Title: Update virustotal.py\nBody: Fix typo",
+  "Title: I changed from REST API to REST API2. but I get the error\nBody: ## This is open source and friendly with __free __ support!\r\n* Free support from doomedraven has ended and there is no whiskey or support. He updated the docs for something :)\r\n\r\n# Prerequisites\r\nThank you for always answering the question!\r\nThanks to you, I enjoy using cape\uff01\r\n\r\nPlease answer the following questions yourself before submitting your question.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected behavior\r\n\r\nI want to use api.(Any version)\r\n\r\n# Current behavior\r\n\r\nI changed from REST API to REST API2. but\r\nwhen I run python3 manage.py drf_create_token <your_user>,I get the following error\r\n```\r\n(venv-cape) root@test-env-cape:/opt/CAPEv2/web# python3 manage.py drf_create_token cape\r\nargument for 's' must be a bytes object\r\nSystem check identified some issues:\r\n\r\nWARNINGS:\r\naccount.EmailAddress: (models.W042) Auto-created primary key used when not defining a primary key type, by default 'django.db.models.AutoField'.\r\n        HINT: Configure the DEFAULT_AUTO_FIELD setting or the AccountConfig.default_auto_field attribute to point to a subclass of AutoField, e.g. 'django.db.models.BigAutoField'.\r\naccount.EmailConfirmation: (models.W042) Auto-created primary key used when not defining a primary key type, by default 'django.db.models.AutoField'.\r\n        HINT: Configure the DEFAULT_AUTO_FIELD setting or the AccountConfig.default_auto_field attribute to point to a subclass of AutoField, e.g. 'django.db.models.BigAutoField'.\r\nopenid.OpenIDNonce: (models.W042) Auto-created primary key used when not defining a primary key type, by default 'django.db.models.AutoField'.\r\n        HINT: Configure the DEFAULT_AUTO_FIELD setting or the AppConfig.default_auto_field attribute to point to a subclass of AutoField, e.g. 'django.db.models.BigAutoField'.\r\nopenid.OpenIDStore: (models.W042) Auto-created primary key used when not defining a primary key type, by default 'django.db.models.AutoField'.\r\n        HINT: Configure the DEFAULT_AUTO_FIELD setting or the AppConfig.default_auto_field attribute to point to a subclass of AutoField, e.g. 'django.db.models.BigAutoField'.\r\notp_totp.TOTPDevice: (models.W042) Auto-created primary key used when not defining a primary key type, by default 'django.db.models.AutoField'.\r\n        HINT: Configure the DEFAULT_AUTO_FIELD setting or the AppConfig.default_auto_field attribute to point to a subclass of AutoField, e.g. 'django.db.models.BigAutoField'.\r\nsocialaccount.SocialAccount: (models.W042) Auto-created primary key used when not defining a primary key type, by default 'django.db.models.AutoField'.\r\n        HINT: Configure the DEFAULT_AUTO_FIELD setting or the SocialAccountConfig.default_auto_field attribute to point to a subclass of AutoField, e.g. 'django.db.models.BigAutoField'.\r\nsocialaccount.SocialApp: (models.W042) Auto-created primary key used when not defining a primary key type, by default 'django.db.models.AutoField'.\r\n        HINT: Configure the DEFAULT_AUTO_FIELD setting or the SocialAccountConfig.default_auto_field attribute to point to a subclass of AutoField, e.g. 'django.db.models.BigAutoField'.\r\nsocialaccount.SocialToken: (models.W042) Auto-created primary key used when not defining a primary key type, by default 'django.db.models.AutoField'.\r\n        HINT: Configure the DEFAULT_AUTO_FIELD setting or the SocialAccountConfig.default_auto_field attribute to point to a subclass of AutoField, e.g. 'django.db.models.BigAutoField'.\r\nusers.UserProfile: (models.W042) Auto-created primary key used when not defining a primary key type, by default 'django.db.models.AutoField'.\r\n        HINT: Configure the DEFAULT_AUTO_FIELD setting or the UsersConfig.default_auto_field attribute to point to a subclass of AutoField, e.g. 'django.db.models.BigAutoField'.\r\nCommandError: Cannot create the Token: user cape does not exist\r\n(venv-cape) root@test-env-cape:/opt/CAPEv2/web#\r\n```\r\n\r\nI really want to use api, so I get an error even if I switch back to the REST API ...\uff08It's natural because the support is over\uff09\r\n```\r\n(venv-cape) root@cape:/opt/CAPEv2/utils# ./api.py --host 0.0.0.0 --port 1337\r\nTraceback (most recent call last):\r\n  File \"./api.py\", line 32, in <module>\r\n    from lib.cuckoo.common.web_utils import validate_task\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/web_utils.py\", line 13, in <module>\r\n    from django.contrib.auth.models import User\r\n  File \"/root/venv-cape/lib/python3.8/site-packages/django/contrib/auth/models.py\", line 3, in <module>\r\n    from django.contrib.auth.base_user import AbstractBaseUser, BaseUserManager\r\n  File \"/root/venv-cape/lib/python3.8/site-packages/django/contrib/auth/base_user.py\", line 48, in <module>\r\n    class AbstractBaseUser(models.Model):\r\n  File \"/root/venv-cape/lib/python3.8/site-packages/django/db/models/base.py\", line 108, in __new__\r\n    app_config = apps.get_containing_app_config(module)\r\n  File \"/root/venv-cape/lib/python3.8/site-packages/django/apps/registry.py\", line 253, in get_containing_app_config\r\n    self.check_apps_ready()\r\n  File \"/root/venv-cape/lib/python3.8/site-packages/django/apps/registry.py\", line 135, in check_apps_ready\r\n    settings.INSTALLED_APPS\r\n  File \"/root/venv-cape/lib/python3.8/site-packages/django/conf/__init__.py\", line 82, in __getattr__\r\n    self._setup(name)\r\n  File \"/root/venv-cape/lib/python3.8/site-packages/django/conf/__init__.py\", line 63, in _setup\r\n    raise ImproperlyConfigured(\r\ndjango.core.exceptions.ImproperlyConfigured: Requested setting INSTALLED_APPS, but settings are not configured. You must either define the environment variable DJANGO_SETTINGS_MODULE or call settings.configure() before accessing settings.\r\n(venv-cape) root@cape:/opt/CAPEv2/utils#\r\n\r\n```\r\n\r\n# Failure information (in case of bug)\r\n\r\n```\r\n(venv-cape) root@test-env-cape:/opt/CAPEv2/web# python3 manage.py drf_create_token cape --traceback\r\nargument for 's' must be a bytes object\r\nSystem check identified some issues:\r\n\r\nWARNINGS:\r\naccount.EmailAddress: (models.W042) Auto-created primary key used when not defining a primary key type, by default 'django.db.models.AutoField'.\r\n        HINT: Configure the DEFAULT_AUTO_FIELD setting or the AccountConfig.default_auto_field attribute to point to a subclass of AutoField, e.g. 'django.db.models.BigAutoField'.\r\naccount.EmailConfirmation: (models.W042) Auto-created primary key used when not defining a primary key type, by default 'django.db.models.AutoField'.\r\n        HINT: Configure the DEFAULT_AUTO_FIELD setting or the AccountConfig.default_auto_field attribute to point to a subclass of AutoField, e.g. 'django.db.models.BigAutoField'.\r\nopenid.OpenIDNonce: (models.W042) Auto-created primary key used when not defining a primary key type, by default 'django.db.models.AutoField'.\r\n        HINT: Configure the DEFAULT_AUTO_FIELD setting or the AppConfig.default_auto_field attribute to point to a subclass of AutoField, e.g. 'django.db.models.BigAutoField'.\r\nopenid.OpenIDStore: (models.W042) Auto-created primary key used when not defining a primary key type, by default 'django.db.models.AutoField'.\r\n        HINT: Configure the DEFAULT_AUTO_FIELD setting or the AppConfig.default_auto_field attribute to point to a subclass of AutoField, e.g. 'django.db.models.BigAutoField'.\r\notp_totp.TOTPDevice: (models.W042) Auto-created primary key used when not defining a primary key type, by default 'django.db.models.AutoField'.\r\n        HINT: Configure the DEFAULT_AUTO_FIELD setting or the AppConfig.default_auto_field attribute to point to a subclass of AutoField, e.g. 'django.db.models.BigAutoField'.\r\nsocialaccount.SocialAccount: (models.W042) Auto-created primary key used when not defining a primary key type, by default 'django.db.models.AutoField'.\r\n        HINT: Configure the DEFAULT_AUTO_FIELD setting or the SocialAccountConfig.default_auto_field attribute to point to a subclass of AutoField, e.g. 'django.db.models.BigAutoField'.\r\nsocialaccount.SocialApp: (models.W042) Auto-created primary key used when not defining a primary key type, by default 'django.db.models.AutoField'.\r\n        HINT: Configure the DEFAULT_AUTO_FIELD setting or the SocialAccountConfig.default_auto_field attribute to point to a subclass of AutoField, e.g. 'django.db.models.BigAutoField'.\r\nsocialaccount.SocialToken: (models.W042) Auto-created primary key used when not defining a primary key type, by default 'django.db.models.AutoField'.\r\n        HINT: Configure the DEFAULT_AUTO_FIELD setting or the SocialAccountConfig.default_auto_field attribute to point to a subclass of AutoField, e.g. 'django.db.models.BigAutoField'.\r\nusers.UserProfile: (models.W042) Auto-created primary key used when not defining a primary key type, by default 'django.db.models.AutoField'.\r\n        HINT: Configure the DEFAULT_AUTO_FIELD setting or the UsersConfig.default_auto_field attribute to point to a subclass of AutoField, e.g. 'django.db.models.BigAutoField'.\r\nTraceback (most recent call last):\r\n  File \"/root/venv-cape/lib/python3.8/site-packages/rest_framework/authtoken/management/commands/drf_create_token.py\", line 38, in handle\r\n    token = self.create_user_token(username, reset_token)\r\n  File \"/root/venv-cape/lib/python3.8/site-packages/rest_framework/authtoken/management/commands/drf_create_token.py\", line 13, in create_user_token\r\n    user = UserModel._default_manager.get_by_natural_key(username)\r\n  File \"/root/venv-cape/lib/python3.8/site-packages/django/contrib/auth/base_user.py\", line 45, in get_by_natural_key\r\n    return self.get(**{self.model.USERNAME_FIELD: username})\r\n  File \"/root/venv-cape/lib/python3.8/site-packages/django/db/models/manager.py\", line 85, in manager_method\r\n    return getattr(self.get_queryset(), name)(*args, **kwargs)\r\n  File \"/root/venv-cape/lib/python3.8/site-packages/django/db/models/query.py\", line 435, in get\r\n    raise self.model.DoesNotExist(\r\ndjango.contrib.auth.models.DoesNotExist: User matching query does not exist.\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"manage.py\", line 15, in <module>\r\n    execute_from_command_line(sys.argv)\r\n  File \"/root/venv-cape/lib/python3.8/site-packages/django/core/management/__init__.py\", line 419, in execute_from_command_line\r\n    utility.execute()\r\n  File \"/root/venv-cape/lib/python3.8/site-packages/django/core/management/__init__.py\", line 413, in execute\r\n    self.fetch_command(subcommand).run_from_argv(self.argv)\r\n  File \"/root/venv-cape/lib/python3.8/site-packages/django/core/management/base.py\", line 354, in run_from_argv\r\n    self.execute(*args, **cmd_options)\r\n  File \"/root/venv-cape/lib/python3.8/site-packages/django/core/management/base.py\", line 398, in execute\r\n    output = self.handle(*args, **options)\r\n  File \"/root/venv-cape/lib/python3.8/site-packages/rest_framework/authtoken/management/commands/drf_create_token.py\", line 40, in handle\r\n    raise CommandError(\r\ndjango.core.management.base.CommandError: Cannot create the Token: user cape does not exist\r\n(venv-cape) root@test-env-cape:/opt/CAPEv2/web#\r\n```\r\n\r\n## Procedure to reproduce\r\n\r\n1. pip3 install djangorestframework\r\n2. cd web/  and  python3 manage.py drf_create_token cape\r\n3. The error occurs\r\n\r\n## Environment\r\n\r\nHost machine: ubuntu 20.04.1 LTS installed Python 3.8.5 \r\ngit pull, pip3 install -r requirements.txt OK\r\n\r\n## Failure log\r\nreference Expected behavior\r\n\nComment: hello by parts\r\n\r\n* this isn't realy api, is even depricated, the last supported api was `/api/` so using api.py might give you unexpected behavior\r\n```\r\n(venv-cape) root@cape:/opt/CAPEv2/utils# ./api.py --host 0.0.0.0 --port 1337\r\n```\r\n\r\n* `CommandError: Cannot create the Token: user cape does not exist` it looks like you need to create user first, as both of your errors are about the same\r\n* `django.core.management.base.CommandError: Cannot create the Token: user cape does not exist` can you show me that user exist and it still happens?\r\n\r\n\r\n* FYI `you only need token if you have enabled auth, without auth you don't need any token`\r\n\r\n\nComment: Thank you\r\nThis os user is exists.\r\nIs the user here a user for the Cape app?\r\nIf so, do you set it with [web_auth] in web.conf?\r\nNow,It is set not to use authentication.\nComment: no you need to become more familiar with difference of server side users and webapps users, that are 2 totally different topics\r\n\r\nif you don't use auth you don't need token, and if you enable auth, restart web service and go to /admin/ and create users \r\nhttps://github.com/kevoreilly/CAPEv2/commit/0ac23cafc3b3524d598bcddd42aab89773bdf15f\r\n\r\n\nComment: Thank you!\r\nI was able to use the api with not using auth\r\n\nComment: Cool, if you need auth, just create user in django admin /admin/ and gen\ntoken for that user\n\nEl vie., 14 may. 2021 11:20, ai-suzuki ***@***.***> escribi\u00f3:\n\n> Thank you!\n> I was able to use the api with not using auth\n>\n> \u2014\n> You are receiving this because you modified the open/close state.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/495#issuecomment-841124741>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH36AJQJMOD42HLSL4JLTNTTONANCNFSM443RLKMQ>\n> .\n>\n",
+  "Title: Update installation.rst\nBody: small typo, \"bear in mind\"\nComment: thanks",
+  "Title: Question about 2_3_1_square_hammer.py\nBody: I had a question about this line: https://github.com/kevoreilly/CAPEv2/blob/master/utils/db_migration/versions/2_3_1_square_hammer.py#L22\r\n\r\nI haven't found a reference to `ALTER TYPE` in MySQL and at least locally, I get a MySQL syntax error on L22 when I run `alembic upgrade head`. Is `2_3_1_square_hammer.py` known to be compatible with MySQL?\r\n\r\n\nComment: hello, we only suggest use PSQL db as it the best db for performance, and i won't write all dbs support sorry",
+  "Title: Agent crashing due to DLL issue\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I have read all configs with all optional parts\r\n\r\n# Expected Behavior\r\n\r\nAnalysis runs without crash / exception in Windows guest.\r\n\r\n# Current Behavior\r\n\r\nHello,\r\n\r\nI have noticed that the CAPE agent will consistently crash while analyzing samples (eg: plain text file, PDF, ELF Binary), the analysis will complete eventually but it is confounded by a lot of noise from the interleaved crashes, this is particularly apparent with PDFs.\r\n\r\nI have installed following the step by step instructions (https://capev2.readthedocs.io/en/latest/installation/host/installation.html) and tested both Windows 7 and 10 guests for the agent process, the issue presents in both cases.\r\n\r\nMy environment is a bare-metal Ubuntu (20.04) host with the KVM Hypervisor running my Windows 7/10 agents, the master process and web interface are running on the host and master/agent communicate via a KVM bridge network.\r\n\r\nI believe this issue is caused by the monitoring DLL which CAPE injects not providing some interface Windows is expecting, then crashing when the OS attempts to call it.\r\n\r\nI have attempted to debug as per https://github.com/kevoreilly/CAPEv2/wiki/Tips'n'Tricks#how-to-debug-analyzer-and-any-script-that-executes-inside-of-the-virtual-machine \r\n\r\nWithin the guest, invoking the script the CAPE agent would run (in debug mode) via PowerShell with \"Transcript Logging\" enabled produces the following output (see \"Failure Logs\" section).\r\n\r\nWhen I run a scan with the option \"free=yes\" to disable the DLL injection, the analysis completes without any crashes, though clearly without most of the analysis performed.\r\n\r\nI have also attached a screenshot from CAPE of the actual crash.\r\n\r\nNOTE: I am testing with known benign samples, so this is not the result of some complex malware crashing the agent.\r\n\r\nPlease advise and many thanks!\r\n\r\n# Failure Information (for bugs)\r\n\r\n## Steps to Reproduce\r\n\r\n0. Follow default installation (process described above)\r\n1. Submit a PDF sample\r\n2. Observe crash in resulting logs\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | 159764b77f05545dbe3a378ede491511dc1cfd01\r\n| OS version       | Ubuntu 20.04, Windows 10, Windows 7\r\n\r\n## Failure Logs\r\n\r\n```\r\n2021-04-28 06:02:59,562 [root] DEBUG: PDF (Adobe) settings enabled.\r\n2021-04-28 06:02:59,562 [root] DEBUG: TLS secret dump mode enabled.\r\n2021-04-28 06:02:59,562 [root] DEBUG: Dropped file limit defaulting to 100. \r\n2021-04-28 06:02:59,578 [root] DEBUG: CAPE initialised: 64-bit monitor loaded in process 480 at 0x000007FEEC260000, thre \r\nad 2924, image base 0x00000000FF3B0000, stack from 0x0000000001324000-0x0000000001330000\r\n2021-04-28 06:02:59,578 [root] DEBUG: Commandline: C:\\Windows\\sysnative\\lsass.exe\r\n2021-04-28 06:02:59,578 [root] INFO: Loaded monitor into process with pid 480\r\n2021-04-28 06:02:59,578 [root] DEBUG: Error 203 (0xcb) - InjectDllViaThread: RtlCreateUserThread injection failed: The s\r\nystem could not find the environment option that was entered.\r\n2021-04-28 06:02:59,593 [root] DEBUG: Successfully injected DLL C:\\tmpq5cf0_9h\\dll\\lAyaxilw.dll.\r\n2021-04-28 06:02:59,609 [root] DEBUG: Started auxiliary module TLSDumpMasterSecrets\r\n2021-04-28 06:02:59,609 [root] DEBUG: Initializing auxiliary module \"Usage\"...\r\n2021-04-28 06:02:59,609 [root] DEBUG: Started auxiliary module Usage\r\nThe following services are dependent on the Windows Management Instrumentation service.\r\n```\r\n\r\n![image](https://user-images.githubusercontent.com/83937727/117610308-83569180-b12f-11eb-9a0f-3e571cd4680b.png)\nComment: Hi - unfortunately the logs do not show the crash and are not relevant to the problem (lsass process). Also they show you are out of date as this loader issue was fixed in https://github.com/kevoreilly/CAPEv2/commit/52a15869a1ed5574a4ddd0c525848d76a416da6c\r\n\r\nWe have Adobe Reader working on Win7 as seen in capesandbox.com - not to say that any/all versions work. Some may have hook incompatibilities. The version we are using is 11.0.10 - give that a try and see how you get on.\nComment: @kevoreilly - Thankyou for your quick response!\r\nI can confirm that I have updated to the latest version, and verified that it is using the updated windows loader.\r\nThe unhandled exception occurs in a range of files, and not just limited to Adobe.\r\nAttached is the full logs for an analysis on a XLS document on a Windows7 machine.\r\n\r\nLine 504 of the attached logs indicates an unhanded exception that still occurs due to RTLDispatch\r\n\r\n`2021-05-11 03:33:12,343 [root] DEBUG: RtlDispatchException: Unhandled exception! Address 0x000007FE00000BC0, code 0xc0000005, flags 0x0, parameters 0x8 and 0xbc0.`\r\n\r\n![Screenshot_2021-05-11 CAPEv2 Sandbox](https://user-images.githubusercontent.com/83937727/117757302-d858dd00-b1ed-11eb-8adb-cacd4fc8242c.png)\r\n[capev2_unhandledexception.txt](https://github.com/kevoreilly/CAPEv2/files/6456457/capev2_unhandledexception.txt)\r\n\r\n\r\nThanks again for your support @kevoreilly !\nComment: Ah this time the error message is a bit more meaningful! However the point about this not being complex malware crashing the agent misses the point that it is a complex application, and complex for cape to monitor. With this in mind, a huge amount of effort and time has been put into ensuring compatibility with specific 'supported' versions. This means 32-bit Office 2010 or 2016 (as on capesandbox.com) with 2010 being the 'most' supported.\r\n\r\nSo before embarking down the long and difficult road of hook compatibility testing, I would recommend you use 32-bit Office 2010 in cape. If you can upload an xls to capesandbox.com that breaks Excel 2010 then it will be of sufficiently high priority to break into my to-do list.\r\n\r\nAlternatively you are welcome to do some hook testing. Running with minhook=1 will allow you to see if a bare minimum of hooks will enable it to work. Beyond that it's a question of disabling and testing groups of or individual hooks in trial-and-error which is a long, slow job unfortunately.\nComment: Closing as down to incompatible/unsupported Office/Adobe versions (i.e. not Office 32-bit, Adobe Reader 11.0.10)",
+  "Title: fix typo \ud83d\ude05\nBody: \nComment: ahahah nice catch, damn typo fix that introduces more typos xd",
+  "Title: DB migrations broke in Alembic rev 703266a6bbc5 (2.3.1)\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nDatabase revision downgraded work.\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\nDowngrading the database to revision 6ab863a3b510 fails.\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. When you're at DB version 703266a6bbc5, try downgrading: `alembic downgrade 6ab863a3b510`\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | ba50f88\r\n| OS version       | Ubuntu 18.04\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\r\n```\r\n$ alembic downgrade 6ab863a3b510\r\nINFO  [alembic.runtime.migration] Will assume transactional DDL.\r\nINFO  [alembic.runtime.migration] Running downgrade 703266a6bbc5 -> 6ab863a3b510, 2.3.1_square_hammer\r\nTraceback (most recent call last):\r\n  File \".../site-packages/sqlalchemy/engine/base.py\", line 1277, in _execute_context\r\n    cursor, statement, parameters, context\r\n  File \".../site-packages/sqlalchemy/engine/default.py\", line 609, in do_execute\r\n    cursor.execute(statement, parameters)\r\npsycopg2.errors.DuplicateObject: type \"status_type_old\" already exists\r\n```\r\n\nComment: Might just need a small follow-up to 64475ab, to uncomment DROP TYPE in the downgrade:\r\nhttps://github.com/kevoreilly/CAPEv2/commit/64475ab3ff48893bdc782b86fd82bdd18576b6e5#diff-6da546389a94be7d8e36a094d2ec1cd479a345a06c7d7f7746309cd07a3cece6R39\nComment: hello, thanks, uncommented drop\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/utils/db_migration/versions/2_3_1_square_hammer.py, let me know if works, but doing downgrade you will need to remove parts of code, so you need to undo basically the commit and start manually merge all the fixes\nComment: Yes, with the drop statement uncommented in 336da89, migrations work again. Thanks for the quick fix!\nComment: thanks for headups",
+  "Title: mwcfg-modules by @c3rb3ru5d3d53c\nBody: ",
+  "Title: Account activation\nBody: Sorry for bothering here, I'm not sure how to get in touch...\r\n\r\nI tried to create an account on https://capesandbox.com, but after some time is still pending for \"activation\".\r\nHow should I proceed? \r\nThanks!\nComment: I've searched for 'cecio' as that's the only clue I can find,,, couldn't find anything. So I've absolutely no idea how to find you.\nComment: sorry, you are right: b38911, that's the user. :-)\nComment: Activated\nComment: It works! Thanks a lot!\nComment: Piggybacking on this issue, my account has not been activated after a couple weeks.\r\nUsername: Plutie\nComment: Hi,\r\nYep, another one here.\r\nusername: krypo\nComment: Activated\nComment: Many thanks\nComment: Hi, tapping on this thread.\r\nUser: Carmina",
+  "Title: Could not find a registered machine\nBody: - [X] I am running the latest version\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n\r\n# Expected Behavior\r\n\r\nUploading the sample to the guest.\r\n\r\n# Current Behavior\r\n\r\nWhen uploading before I was getting this error ([https://pastebin.com/gKegGDiA]() - password: ezJkdy1Fpv), now I don't receive any error but the sample is stuck in pending (also added tags=x64 in virtualbox.conf)\r\n\r\n\r\n## Steps to Reproduce\r\n\r\nI followed this post: [https://notes.netbytesec.com/2020/12/cape-sandbox-installation-from-0-to-hero.html](url)\r\n\r\n## Context\r\n\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | commit 14b9a992f86124801a7e328a2c4a9879a2ce6c95\r\n| OS version       | Ubuntu 20.10\r\n\r\n## Failure Logs\r\n\r\n\r\nWhen starting the webserver I receive these warnings:\r\n```\r\nWARNINGS:\r\naccount.EmailAddress: (models.W042) Auto-created primary key used when not defining a primary key type, by default 'django.db.models.AutoField'.\r\n\tHINT: Configure the DEFAULT_AUTO_FIELD setting or the AccountConfig.default_auto_field attribute to point to a subclass of AutoField, e.g. 'django.db.models.BigAutoField'.\r\naccount.EmailConfirmation: (models.W042) Auto-created primary key used when not defining a primary key type, by default 'django.db.models.AutoField'.\r\n\tHINT: Configure the DEFAULT_AUTO_FIELD setting or the AccountConfig.default_auto_field attribute to point to a subclass of AutoField, e.g. 'django.db.models.BigAutoField'.\r\nopenid.OpenIDNonce: (models.W042) Auto-created primary key used when not defining a primary key type, by default 'django.db.models.AutoField'.\r\n\tHINT: Configure the DEFAULT_AUTO_FIELD setting or the AppConfig.default_auto_field attribute to point to a subclass of AutoField, e.g. 'django.db.models.BigAutoField'.\r\nopenid.OpenIDStore: (models.W042) Auto-created primary key used when not defining a primary key type, by default 'django.db.models.AutoField'.\r\n\tHINT: Configure the DEFAULT_AUTO_FIELD setting or the AppConfig.default_auto_field attribute to point to a subclass of AutoField, e.g. 'django.db.models.BigAutoField'.\r\notp_totp.TOTPDevice: (models.W042) Auto-created primary key used when not defining a primary key type, by default 'django.db.models.AutoField'.\r\n\tHINT: Configure the DEFAULT_AUTO_FIELD setting or the AppConfig.default_auto_field attribute to point to a subclass of AutoField, e.g. 'django.db.models.BigAutoField'.\r\nsocialaccount.SocialAccount: (models.W042) Auto-created primary key used when not defining a primary key type, by default 'django.db.models.AutoField'.\r\n\tHINT: Configure the DEFAULT_AUTO_FIELD setting or the SocialAccountConfig.default_auto_field attribute to point to a subclass of AutoField, e.g. 'django.db.models.BigAutoField'.\r\nsocialaccount.SocialApp: (models.W042) Auto-created primary key used when not defining a primary key type, by default 'django.db.models.AutoField'.\r\n\tHINT: Configure the DEFAULT_AUTO_FIELD setting or the SocialAccountConfig.default_auto_field attribute to point to a subclass of AutoField, e.g. 'django.db.models.BigAutoField'.\r\nsocialaccount.SocialToken: (models.W042) Auto-created primary key used when not defining a primary key type, by default 'django.db.models.AutoField'.\r\n\tHINT: Configure the DEFAULT_AUTO_FIELD setting or the SocialAccountConfig.default_auto_field attribute to point to a subclass of AutoField, e.g. 'django.db.models.BigAutoField'.\r\nusers.UserProfile: (models.W042) Auto-created primary key used when not defining a primary key type, by default 'django.db.models.AutoField'.\r\n\tHINT: Configure the DEFAULT_AUTO_FIELD setting or the UsersConfig.default_auto_field attribute to point to a subclass of AutoField, e.g. 'django.db.models.BigAutoField'.\r\n```\r\n\r\n\r\n```python3 cuckoo.py -d```\r\n\r\n```\r\n2021-05-05 13:45:18,138 [root] DEBUG: Importing modules...\r\npywin32 is not installed (only is required if you want to use MS Excel)\r\n2021-05-05 13:45:18,525 [root] DEBUG: Imported \"auxiliary\" modules:\r\n2021-05-05 13:45:18,525 [root] DEBUG: \t `-- Sniffer\r\n2021-05-05 13:45:18,525 [root] DEBUG: Imported \"processing\" modules:\r\n2021-05-05 13:45:18,526 [root] DEBUG: \t |-- CAPE\r\n2021-05-05 13:45:18,526 [root] DEBUG: \t |-- AnalysisInfo\r\n2021-05-05 13:45:18,526 [root] DEBUG: \t |-- BehaviorAnalysis\r\n2021-05-05 13:45:18,526 [root] DEBUG: \t |-- Curtain\r\n2021-05-05 13:45:18,526 [root] DEBUG: \t |-- Debug\r\n2021-05-05 13:45:18,526 [root] DEBUG: \t |-- Deduplicate\r\n2021-05-05 13:45:18,526 [root] DEBUG: \t |-- Dropped\r\n2021-05-05 13:45:18,526 [root] DEBUG: \t |-- NetworkAnalysis\r\n2021-05-05 13:45:18,526 [root] DEBUG: \t |-- ProcDump\r\n2021-05-05 13:45:18,526 [root] DEBUG: \t |-- ProcessMemory\r\n2021-05-05 13:45:18,526 [root] DEBUG: \t |-- Static\r\n2021-05-05 13:45:18,526 [root] DEBUG: \t |-- Strings\r\n2021-05-05 13:45:18,526 [root] DEBUG: \t |-- Suricata\r\n2021-05-05 13:45:18,526 [root] DEBUG: \t |-- TargetInfo\r\n2021-05-05 13:45:18,526 [root] DEBUG: \t `-- VirusTotal\r\n2021-05-05 13:45:18,526 [root] DEBUG: Imported \"signatures\" modules:\r\n2021-05-05 13:45:18,526 [root] DEBUG: \t |-- CAPEDetectedThreat\r\n2021-05-05 13:45:18,526 [root] DEBUG: \t |-- CAPE_Compression\r\n2021-05-05 13:45:18,526 [root] DEBUG: \t |-- CAPE_Decryption\r\n2021-05-05 13:45:18,526 [root] DEBUG: \t |-- CAPE_Doppelganging\r\n2021-05-05 13:45:18,526 [root] DEBUG: \t |-- CAPE_EvilGrab\r\n2021-05-05 13:45:18,526 [root] DEBUG: \t |-- CAPE_Injection\r\n2021-05-05 13:45:18,527 [root] DEBUG: \t |-- CAPE_InjectionCreateRemoteThread\r\n2021-05-05 13:45:18,527 [root] DEBUG: \t |-- CAPE_InjectionProcessHollowing\r\n2021-05-05 13:45:18,527 [root] DEBUG: \t |-- CAPE_InjectionSetWindowLong\r\n2021-05-05 13:45:18,527 [root] DEBUG: \t |-- CAPE_PlugX\r\n2021-05-05 13:45:18,527 [root] DEBUG: \t |-- CAPE_RegBinary\r\n2021-05-05 13:45:18,527 [root] DEBUG: \t |-- CAPE_TransactedHollowing\r\n2021-05-05 13:45:18,527 [root] DEBUG: \t |-- CAPE_Unpacker\r\n2021-05-05 13:45:18,527 [root] DEBUG: \t |-- AccessesMailslot\r\n2021-05-05 13:45:18,527 [root] DEBUG: \t |-- AccessesNetlogonRegkey\r\n2021-05-05 13:45:18,527 [root] DEBUG: \t |-- AccessesSysvol\r\n2021-05-05 13:45:18,527 [root] DEBUG: \t |-- AddsAdminUser\r\n2021-05-05 13:45:18,527 [root] DEBUG: \t |-- AddsUser\r\n2021-05-05 13:45:18,527 [root] DEBUG: \t |-- OverwritesAdminPassword\r\n2021-05-05 13:45:18,527 [root] DEBUG: \t |-- Alphacrypt_APIs\r\n2021-05-05 13:45:18,527 [root] DEBUG: \t |-- Andromeda_APIs\r\n2021-05-05 13:45:18,527 [root] DEBUG: \t |-- anomalous_deletefile\r\n2021-05-05 13:45:18,527 [root] DEBUG: \t |-- AntiAnalysisDetectFile\r\n2021-05-05 13:45:18,527 [root] DEBUG: \t |-- AntiAnalysisDetectReg\r\n2021-05-05 13:45:18,527 [root] DEBUG: \t |-- QihooDetectLibs\r\n2021-05-05 13:45:18,527 [root] DEBUG: \t |-- AhnlabDetectLibs\r\n2021-05-05 13:45:18,527 [root] DEBUG: \t |-- AvastDetectLibs\r\n2021-05-05 13:45:18,527 [root] DEBUG: \t |-- BitdefenderDetectLibs\r\n2021-05-05 13:45:18,527 [root] DEBUG: \t |-- BullguardDetectLibs\r\n2021-05-05 13:45:18,528 [root] DEBUG: \t |-- ModifiesAttachmentManager\r\n2021-05-05 13:45:18,528 [root] DEBUG: \t |-- AntiAVDetectFile\r\n2021-05-05 13:45:18,528 [root] DEBUG: \t |-- AntiAVDetectReg\r\n2021-05-05 13:45:18,528 [root] DEBUG: \t |-- EmsisoftDetectLibs\r\n2021-05-05 13:45:18,528 [root] DEBUG: \t |-- QurbDetectLibs\r\n2021-05-05 13:45:18,528 [root] DEBUG: \t |-- AntiAVServiceStop\r\n2021-05-05 13:45:18,528 [root] DEBUG: \t |-- AntiAVSRP\r\n2021-05-05 13:45:18,528 [root] DEBUG: \t |-- AntiDBGDevices\r\n2021-05-05 13:45:18,528 [root] DEBUG: \t |-- AntiDBGWindows\r\n2021-05-05 13:45:18,528 [root] DEBUG: \t |-- antidebug_addvectoredexceptionhandler\r\n2021-05-05 13:45:18,528 [root] DEBUG: \t |-- APIOverrideDetectLibs\r\n2021-05-05 13:45:18,528 [root] DEBUG: \t |-- antidebug_checkremotedebuggerpresent\r\n2021-05-05 13:45:18,528 [root] DEBUG: \t |-- antidebug_debugactiveprocess\r\n2021-05-05 13:45:18,528 [root] DEBUG: \t |-- antidebug_gettickcount\r\n2021-05-05 13:45:18,528 [root] DEBUG: \t |-- antidebug_guardpages\r\n2021-05-05 13:45:18,528 [root] DEBUG: \t |-- antidebug_ntcreatethreadex\r\n2021-05-05 13:45:18,528 [root] DEBUG: \t |-- BullguardDetectLibs\r\n2021-05-05 13:45:18,528 [root] DEBUG: \t |-- antidebug_ntsetinformationthread\r\n2021-05-05 13:45:18,528 [root] DEBUG: \t |-- antidebug_outputdebugstring\r\n2021-05-05 13:45:18,528 [root] DEBUG: \t |-- antidebug_setunhandledexceptionfilter\r\n2021-05-05 13:45:18,528 [root] DEBUG: \t |-- WineDetectReg\r\n2021-05-05 13:45:18,528 [root] DEBUG: \t |-- WineDetectFunc\r\n2021-05-05 13:45:18,528 [root] DEBUG: \t |-- AntiSandboxCheckUserdomain\r\n2021-05-05 13:45:18,529 [root] DEBUG: \t |-- AntiCuckoo\r\n2021-05-05 13:45:18,529 [root] DEBUG: \t |-- CuckooDetectFiles\r\n2021-05-05 13:45:18,529 [root] DEBUG: \t |-- CuckooCrash\r\n2021-05-05 13:45:18,529 [root] DEBUG: \t |-- FortinetDetectFiles\r\n2021-05-05 13:45:18,529 [root] DEBUG: \t |-- SandboxJoeAnubisDetectFiles\r\n2021-05-05 13:45:18,529 [root] DEBUG: \t |-- HookMouse\r\n2021-05-05 13:45:18,529 [root] DEBUG: \t |-- AntiSandboxRestart\r\n2021-05-05 13:45:18,529 [root] DEBUG: \t |-- SandboxieDetectLibs\r\n2021-05-05 13:45:18,529 [root] DEBUG: \t |-- AntisandboxSboxieMutex\r\n2021-05-05 13:45:18,529 [root] DEBUG: \t |-- AntiSandboxSboxieObjects\r\n2021-05-05 13:45:18,529 [root] DEBUG: \t |-- AntiSandboxScriptTimer\r\n2021-05-05 13:45:18,529 [root] DEBUG: \t |-- AntiSandboxSleep\r\n2021-05-05 13:45:18,529 [root] DEBUG: \t |-- SunbeltDetectFiles\r\n2021-05-05 13:45:18,529 [root] DEBUG: \t |-- SunbeltDetectLibs\r\n2021-05-05 13:45:18,529 [root] DEBUG: \t |-- AntiSandboxSuspend\r\n2021-05-05 13:45:18,529 [root] DEBUG: \t |-- ThreatTrackDetectFiles\r\n2021-05-05 13:45:18,529 [root] DEBUG: \t |-- Unhook\r\n2021-05-05 13:45:18,529 [root] DEBUG: \t |-- KnownVirustotal\r\n2021-05-05 13:45:18,529 [root] DEBUG: \t |-- BochsDetectKeys\r\n2021-05-05 13:45:18,529 [root] DEBUG: \t |-- AntiVMDirectoryObjects\r\n2021-05-05 13:45:18,529 [root] DEBUG: \t |-- AntiVMBios\r\n2021-05-05 13:45:18,529 [root] DEBUG: \t |-- AntiVMCPU\r\n2021-05-05 13:45:18,529 [root] DEBUG: \t |-- DiskInformation\r\n2021-05-05 13:45:18,530 [root] DEBUG: \t |-- SetupAPIDiskInformation\r\n2021-05-05 13:45:18,530 [root] DEBUG: \t |-- AntiVMDiskReg\r\n2021-05-05 13:45:18,530 [root] DEBUG: \t |-- AntiVMSCSI\r\n2021-05-05 13:45:18,530 [root] DEBUG: \t |-- AntiVMServices\r\n2021-05-05 13:45:18,530 [root] DEBUG: \t |-- AntiVMSystem\r\n2021-05-05 13:45:18,530 [root] DEBUG: \t |-- HyperVDetectKeys\r\n2021-05-05 13:45:18,530 [root] DEBUG: \t |-- ParallelsDetectKeys\r\n2021-05-05 13:45:18,530 [root] DEBUG: \t |-- VBoxDetectDevices\r\n2021-05-05 13:45:18,530 [root] DEBUG: \t |-- VBoxDetectFiles\r\n2021-05-05 13:45:18,530 [root] DEBUG: \t |-- VBoxDetectKeys\r\n2021-05-05 13:45:18,530 [root] DEBUG: \t |-- VBoxDetectLibs\r\n2021-05-05 13:45:18,530 [root] DEBUG: \t |-- VBoxDetectProvname\r\n2021-05-05 13:45:18,530 [root] DEBUG: \t |-- VBoxDetectWindow\r\n2021-05-05 13:45:18,530 [root] DEBUG: \t |-- VMwareDetectDevices\r\n2021-05-05 13:45:18,530 [root] DEBUG: \t |-- VMwareDetectEvent\r\n2021-05-05 13:45:18,530 [root] DEBUG: \t |-- VMwareDetectFiles\r\n2021-05-05 13:45:18,530 [root] DEBUG: \t |-- VMwareDetectKeys\r\n2021-05-05 13:45:18,530 [root] DEBUG: \t |-- VMwareDetectLibs\r\n2021-05-05 13:45:18,530 [root] DEBUG: \t |-- VMwareDetectMutexes\r\n2021-05-05 13:45:18,530 [root] DEBUG: \t |-- VPCDetectFiles\r\n2021-05-05 13:45:18,530 [root] DEBUG: \t |-- VPCDetectKeys\r\n2021-05-05 13:45:18,530 [root] DEBUG: \t |-- VPCDetectMutex\r\n2021-05-05 13:45:18,530 [root] DEBUG: \t |-- XenDetectKeys\r\n2021-05-05 13:45:18,530 [root] DEBUG: \t |-- APISpamming\r\n2021-05-05 13:45:18,531 [root] DEBUG: \t |-- GulpixBehavior\r\n2021-05-05 13:45:18,531 [root] DEBUG: \t |-- KetricanRegkeys\r\n2021-05-05 13:45:18,531 [root] DEBUG: \t |-- OkrumMutexes\r\n2021-05-05 13:45:18,531 [root] DEBUG: \t |-- BadCerts\r\n2021-05-05 13:45:18,531 [root] DEBUG: \t |-- BadSSLCerts\r\n2021-05-05 13:45:18,531 [root] DEBUG: \t |-- Cridex\r\n2021-05-05 13:45:18,531 [root] DEBUG: \t |-- Geodo\r\n2021-05-05 13:45:18,531 [root] DEBUG: \t |-- Prinimalka\r\n2021-05-05 13:45:18,531 [root] DEBUG: \t |-- SpyEyeMutexes\r\n2021-05-05 13:45:18,531 [root] DEBUG: \t |-- ZeusMutexes\r\n2021-05-05 13:45:18,531 [root] DEBUG: \t |-- ZeusP2P\r\n2021-05-05 13:45:18,531 [root] DEBUG: \t |-- ZeusURL\r\n2021-05-05 13:45:18,531 [root] DEBUG: \t |-- BCDEditCommand\r\n2021-05-05 13:45:18,531 [root] DEBUG: \t |-- BetaBot_APIs\r\n2021-05-05 13:45:18,531 [root] DEBUG: \t |-- BitcoinOpenCL\r\n2021-05-05 13:45:18,531 [root] DEBUG: \t |-- AccessesPrimaryPartition\r\n2021-05-05 13:45:18,531 [root] DEBUG: \t |-- Bootkit\r\n2021-05-05 13:45:18,531 [root] DEBUG: \t |-- DirectHDDAccess\r\n2021-05-05 13:45:18,531 [root] DEBUG: \t |-- PhysicalDriveAccess\r\n2021-05-05 13:45:18,531 [root] DEBUG: \t |-- SuspiciousIoctlSCSIPassthough\r\n2021-05-05 13:45:18,531 [root] DEBUG: \t |-- AthenaHttp\r\n2021-05-05 13:45:18,531 [root] DEBUG: \t |-- DirtJumper\r\n2021-05-05 13:45:18,531 [root] DEBUG: \t |-- Drive\r\n2021-05-05 13:45:18,532 [root] DEBUG: \t |-- Drive2\r\n2021-05-05 13:45:18,532 [root] DEBUG: \t |-- Madness\r\n2021-05-05 13:45:18,532 [root] DEBUG: \t |-- Ruskill\r\n2021-05-05 13:45:18,532 [root] DEBUG: \t |-- BrowserAddon\r\n2021-05-05 13:45:18,532 [root] DEBUG: \t |-- BrowserHelperObject\r\n2021-05-05 13:45:18,532 [root] DEBUG: \t |-- BrowserNeeded\r\n2021-05-05 13:45:18,532 [root] DEBUG: \t |-- ModifyProxy\r\n2021-05-05 13:45:18,532 [root] DEBUG: \t |-- BrowserScanbox\r\n2021-05-05 13:45:18,532 [root] DEBUG: \t |-- BrowserSecurity\r\n2021-05-05 13:45:18,532 [root] DEBUG: \t |-- browser_startpage\r\n2021-05-05 13:45:18,532 [root] DEBUG: \t |-- OdbcconfBypass\r\n2021-05-05 13:45:18,532 [root] DEBUG: \t |-- RegSrv32SquiblydooDLLLoad\r\n2021-05-05 13:45:18,532 [root] DEBUG: \t |-- SquiblydooBypass\r\n2021-05-05 13:45:18,532 [root] DEBUG: \t |-- SquiblytwoBypass\r\n2021-05-05 13:45:18,532 [root] DEBUG: \t |-- BypassFirewall\r\n2021-05-05 13:45:18,532 [root] DEBUG: \t |-- UACBypassCMSTP\r\n2021-05-05 13:45:18,532 [root] DEBUG: \t |-- UACBypassCMSTPCOM\r\n2021-05-05 13:45:18,532 [root] DEBUG: \t |-- UACBypassDelegateExecuteSdclt\r\n2021-05-05 13:45:18,532 [root] DEBUG: \t |-- UACBypassEventvwr\r\n2021-05-05 13:45:18,532 [root] DEBUG: \t |-- UACBypassFodhelper\r\n2021-05-05 13:45:18,532 [root] DEBUG: \t |-- CAPEExtractedConfig\r\n2021-05-05 13:45:18,532 [root] DEBUG: \t |-- CAPEExtractedContent\r\n2021-05-05 13:45:18,532 [root] DEBUG: \t |-- CarberpMutexes\r\n2021-05-05 13:45:18,533 [root] DEBUG: \t |-- Cerber_APIs\r\n2021-05-05 13:45:18,533 [root] DEBUG: \t |-- Chimera_APIs\r\n2021-05-05 13:45:18,533 [root] DEBUG: \t |-- ClamAV\r\n2021-05-05 13:45:18,533 [root] DEBUG: \t |-- ClearsLogs\r\n2021-05-05 13:45:18,533 [root] DEBUG: \t |-- ClickfraudCookies\r\n2021-05-05 13:45:18,533 [root] DEBUG: \t |-- ClickfraudVolume\r\n2021-05-05 13:45:18,533 [root] DEBUG: \t |-- CmdlineObfuscation\r\n2021-05-05 13:45:18,533 [root] DEBUG: \t |-- CmdlineSwitches\r\n2021-05-05 13:45:18,533 [root] DEBUG: \t |-- CmdlineTerminate\r\n2021-05-05 13:45:18,533 [root] DEBUG: \t |-- CommandLineForFilesWildCard\r\n2021-05-05 13:45:18,533 [root] DEBUG: \t |-- CommandLineHTTPLink\r\n2021-05-05 13:45:18,533 [root] DEBUG: \t |-- CommandLineLongString\r\n2021-05-05 13:45:18,533 [root] DEBUG: \t |-- CommandLineReversedHTTPLink\r\n2021-05-05 13:45:18,533 [root] DEBUG: \t |-- LongCommandline\r\n2021-05-05 13:45:18,533 [root] DEBUG: \t |-- PowershellRenamedCommandLine\r\n2021-05-05 13:45:18,533 [root] DEBUG: \t |-- CodeLux_APIs\r\n2021-05-05 13:45:18,533 [root] DEBUG: \t |-- SystemAccountDisoveryCMD\r\n2021-05-05 13:45:18,533 [root] DEBUG: \t |-- SystemInfoDiscoveryCMD\r\n2021-05-05 13:45:18,533 [root] DEBUG: \t |-- SystemInfoDiscoveryPWSH\r\n2021-05-05 13:45:18,533 [root] DEBUG: \t |-- SystemNetworkDiscoveryCMD\r\n2021-05-05 13:45:18,533 [root] DEBUG: \t |-- SystemNetworkDiscoveryPWSH\r\n2021-05-05 13:45:18,533 [root] DEBUG: \t |-- SystemUserDisoveryCMD\r\n2021-05-05 13:45:18,533 [root] DEBUG: \t |-- CompilesDotNetCode\r\n2021-05-05 13:45:18,534 [root] DEBUG: \t |-- CopiesSelf\r\n2021-05-05 13:45:18,534 [root] DEBUG: \t |-- CreatesExe\r\n2021-05-05 13:45:18,534 [root] DEBUG: \t |-- CreatesLargeKey\r\n2021-05-05 13:45:18,534 [root] DEBUG: \t |-- CreatesNullValue\r\n2021-05-05 13:45:18,534 [root] DEBUG: \t |-- EnablesWDigest\r\n2021-05-05 13:45:18,534 [root] DEBUG: \t |-- FileCredentialStoreAccess\r\n2021-05-05 13:45:18,534 [root] DEBUG: \t |-- LsassCredentialDumping\r\n2021-05-05 13:45:18,534 [root] DEBUG: \t |-- RegistryCredentialDumping\r\n2021-05-05 13:45:18,534 [root] DEBUG: \t |-- RegistryCredentialStoreAccess\r\n2021-05-05 13:45:18,534 [root] DEBUG: \t |-- RegistryLSASecretsAccess\r\n2021-05-05 13:45:18,534 [root] DEBUG: \t |-- CriticalProcess\r\n2021-05-05 13:45:18,534 [root] DEBUG: \t |-- CryptominingStratumCommand\r\n2021-05-05 13:45:18,534 [root] DEBUG: \t |-- MINERS\r\n2021-05-05 13:45:18,534 [root] DEBUG: \t |-- CryptoWall_APIs\r\n2021-05-05 13:45:18,534 [root] DEBUG: \t |-- CVE_2014_6332\r\n2021-05-05 13:45:18,534 [root] DEBUG: \t |-- CVE2015_2419_JS\r\n2021-05-05 13:45:18,534 [root] DEBUG: \t |-- CVE_2016_0189\r\n2021-05-05 13:45:18,534 [root] DEBUG: \t |-- CVE_2016_7200\r\n2021-05-05 13:45:18,534 [root] DEBUG: \t |-- CypherITMutexes\r\n2021-05-05 13:45:18,534 [root] DEBUG: \t |-- DarkCometRegkeys\r\n2021-05-05 13:45:18,534 [root] DEBUG: \t |-- DeadConnect\r\n2021-05-05 13:45:18,534 [root] DEBUG: \t |-- DeadLink\r\n2021-05-05 13:45:18,534 [root] DEBUG: \t |-- DebugsSelf\r\n2021-05-05 13:45:18,535 [root] DEBUG: \t |-- DecoyDocument\r\n2021-05-05 13:45:18,535 [root] DEBUG: \t |-- DecoyImage\r\n2021-05-05 13:45:18,535 [root] DEBUG: \t |-- DeepFreezeMutex\r\n2021-05-05 13:45:18,535 [root] DEBUG: \t |-- DeletesSelf\r\n2021-05-05 13:45:18,535 [root] DEBUG: \t |-- DeletesShadowCopies\r\n2021-05-05 13:45:18,535 [root] DEBUG: \t |-- DeletesSystemStateBackup\r\n2021-05-05 13:45:18,535 [root] DEBUG: \t |-- DEPBypass\r\n2021-05-05 13:45:18,535 [root] DEBUG: \t |-- DEPDisable\r\n2021-05-05 13:45:18,535 [root] DEBUG: \t |-- DisablesAppVirtualiztion\r\n2021-05-05 13:45:18,535 [root] DEBUG: \t |-- DisablesAppLaunch\r\n2021-05-05 13:45:18,535 [root] DEBUG: \t |-- DisablesAutomaticAppTermination\r\n2021-05-05 13:45:18,535 [root] DEBUG: \t |-- DisablesBackups\r\n2021-05-05 13:45:18,535 [root] DEBUG: \t |-- DisablesBrowserWarn\r\n2021-05-05 13:45:18,535 [root] DEBUG: \t |-- DisablesContextMenus\r\n2021-05-05 13:45:18,535 [root] DEBUG: \t |-- DisablesCPLDisplay\r\n2021-05-05 13:45:18,535 [root] DEBUG: \t |-- DisablesMappedDrivesAutodisconnect\r\n2021-05-05 13:45:18,535 [root] DEBUG: \t |-- DisablesEventLogging\r\n2021-05-05 13:45:18,535 [root] DEBUG: \t |-- DisableFolderOptions\r\n2021-05-05 13:45:18,535 [root] DEBUG: \t |-- DisablesNotificationCenter\r\n2021-05-05 13:45:18,535 [root] DEBUG: \t |-- DisablesPowerOptions\r\n2021-05-05 13:45:18,535 [root] DEBUG: \t |-- DisablesRestoreDefaultState\r\n2021-05-05 13:45:18,535 [root] DEBUG: \t |-- DisableRunCommand\r\n2021-05-05 13:45:18,535 [root] DEBUG: \t |-- DisablesSmartScreen\r\n2021-05-05 13:45:18,535 [root] DEBUG: \t |-- DisablesSPDY\r\n2021-05-05 13:45:18,536 [root] DEBUG: \t |-- DisablesStartMenuSearch\r\n2021-05-05 13:45:18,536 [root] DEBUG: \t |-- DisablesSystemRestore\r\n2021-05-05 13:45:18,536 [root] DEBUG: \t |-- DisablesUAC\r\n2021-05-05 13:45:18,536 [root] DEBUG: \t |-- DisablesWER\r\n2021-05-05 13:45:18,536 [root] DEBUG: \t |-- DisablesWFP\r\n2021-05-05 13:45:18,536 [root] DEBUG: \t |-- DisablesWindowsDefender\r\n2021-05-05 13:45:18,536 [root] DEBUG: \t |-- DisablesWindowsDefenderLogging\r\n2021-05-05 13:45:18,536 [root] DEBUG: \t |-- RemovesWindowsDefenderContextMenu\r\n2021-05-05 13:45:18,536 [root] DEBUG: \t |-- WindowsDefenderPowerShell\r\n2021-05-05 13:45:18,536 [root] DEBUG: \t |-- DisablesWindowsUpdate\r\n2021-05-05 13:45:18,536 [root] DEBUG: \t |-- DisablesWindowsFirewall\r\n2021-05-05 13:45:18,536 [root] DEBUG: \t |-- AndromutMutexes\r\n2021-05-05 13:45:18,536 [root] DEBUG: \t |-- DownloaderCabby\r\n2021-05-05 13:45:18,536 [root] DEBUG: \t |-- GuLoaderAPIs\r\n2021-05-05 13:45:18,536 [root] DEBUG: \t |-- PhorpiexMutexes\r\n2021-05-05 13:45:18,536 [root] DEBUG: \t |-- ProtonBotMutexes\r\n2021-05-05 13:45:18,536 [root] DEBUG: \t |-- Dridex_APIs\r\n2021-05-05 13:45:18,536 [root] DEBUG: \t |-- DriverLoad\r\n2021-05-05 13:45:18,536 [root] DEBUG: \t |-- Dropper\r\n2021-05-05 13:45:18,536 [root] DEBUG: \t |-- EXEDropper_JS\r\n2021-05-05 13:45:18,536 [root] DEBUG: \t |-- dynamic_function_loading\r\n2021-05-05 13:45:18,536 [root] DEBUG: \t |-- Dyre_APIs\r\n2021-05-05 13:45:18,536 [root] DEBUG: \t |-- Angler_JS\r\n2021-05-05 13:45:18,537 [root] DEBUG: \t |-- Gondad_JS\r\n2021-05-05 13:45:18,537 [root] DEBUG: \t |-- HeapSpray_JS\r\n2021-05-05 13:45:18,537 [root] DEBUG: \t |-- Java_JS\r\n2021-05-05 13:45:18,537 [root] DEBUG: \t |-- Neutrino_JS\r\n2021-05-05 13:45:18,537 [root] DEBUG: \t |-- Nuclear_JS\r\n2021-05-05 13:45:18,537 [root] DEBUG: \t |-- RIG_JS\r\n2021-05-05 13:45:18,537 [root] DEBUG: \t |-- Silverlight_JS\r\n2021-05-05 13:45:18,537 [root] DEBUG: \t |-- Sundown_JS\r\n2021-05-05 13:45:18,537 [root] DEBUG: \t |-- Virtualcheck_JS\r\n2021-05-05 13:45:18,537 [root] DEBUG: \t |-- EncryptedIOC\r\n2021-05-05 13:45:18,537 [root] DEBUG: \t |-- Excel4MacroUrls\r\n2021-05-05 13:45:18,537 [root] DEBUG: \t |-- Crash\r\n2021-05-05 13:45:18,537 [root] DEBUG: \t |-- ProcessCreationSuspiciousLocation\r\n2021-05-05 13:45:18,537 [root] DEBUG: \t |-- exploit_getbasekerneladdress\r\n2021-05-05 13:45:18,537 [root] DEBUG: \t |-- exploit_gethaldispatchtable\r\n2021-05-05 13:45:18,537 [root] DEBUG: \t |-- ExploitHeapspray\r\n2021-05-05 13:45:18,537 [root] DEBUG: \t |-- KoadicAPIs\r\n2021-05-05 13:45:18,537 [root] DEBUG: \t |-- KoadicNetworkActivity\r\n2021-05-05 13:45:18,537 [root] DEBUG: \t |-- FamilyProxyBack\r\n2021-05-05 13:45:18,537 [root] DEBUG: \t |-- Modiloader_APIs\r\n2021-05-05 13:45:18,537 [root] DEBUG: \t |-- MappedDrivesUAC\r\n2021-05-05 13:45:18,537 [root] DEBUG: \t |-- SystemMetrics\r\n2021-05-05 13:45:18,537 [root] DEBUG: \t |-- Generic_Phish\r\n2021-05-05 13:45:18,538 [root] DEBUG: \t |-- Gootkit_APIs\r\n2021-05-05 13:45:18,538 [root] DEBUG: \t |-- H1N1_APIs\r\n2021-05-05 13:45:18,538 [root] DEBUG: \t |-- Hancitor_APIs\r\n2021-05-05 13:45:18,538 [root] DEBUG: \t |-- HawkEye_APIs\r\n2021-05-05 13:45:18,538 [root] DEBUG: \t |-- HidesRecycleBinIcon\r\n2021-05-05 13:45:18,538 [root] DEBUG: \t |-- HTTP_Request\r\n2021-05-05 13:45:18,538 [root] DEBUG: \t |-- NetworkHTTPS\r\n2021-05-05 13:45:18,538 [root] DEBUG: \t |-- ApocalypseStealerFileBehavior\r\n2021-05-05 13:45:18,538 [root] DEBUG: \t |-- ArkeiFiles\r\n2021-05-05 13:45:18,538 [root] DEBUG: \t |-- AzorultMutexes\r\n2021-05-05 13:45:18,538 [root] DEBUG: \t |-- BitcoinWallet\r\n2021-05-05 13:45:18,538 [root] DEBUG: \t |-- BrowserStealer\r\n2021-05-05 13:45:18,538 [root] DEBUG: \t |-- InfostealerBrowserPassword\r\n2021-05-05 13:45:18,538 [root] DEBUG: \t |-- CryptBotFiles\r\n2021-05-05 13:45:18,538 [root] DEBUG: \t |-- CryptBotNetwork\r\n2021-05-05 13:45:18,538 [root] DEBUG: \t |-- EchelonFiles\r\n2021-05-05 13:45:18,538 [root] DEBUG: \t |-- FTPStealer\r\n2021-05-05 13:45:18,538 [root] DEBUG: \t |-- IMStealer\r\n2021-05-05 13:45:18,538 [root] DEBUG: \t |-- KeyLogger\r\n2021-05-05 13:45:18,538 [root] DEBUG: \t |-- EmailStealer\r\n2021-05-05 13:45:18,538 [root] DEBUG: \t |-- MassLoggerArtifacts\r\n2021-05-05 13:45:18,538 [root] DEBUG: \t |-- MassLoggerFiles\r\n2021-05-05 13:45:18,538 [root] DEBUG: \t |-- MassLoggerVersion\r\n2021-05-05 13:45:18,538 [root] DEBUG: \t |-- PoullightFiles\r\n2021-05-05 13:45:18,539 [root] DEBUG: \t |-- PurpleWaveMutexes\r\n2021-05-05 13:45:18,539 [root] DEBUG: \t |-- PurpleWaveNetworkAcivity\r\n2021-05-05 13:45:18,539 [root] DEBUG: \t |-- QuilClipperMutexes\r\n2021-05-05 13:45:18,539 [root] DEBUG: \t |-- QuilClipperNetworkBehavior\r\n2021-05-05 13:45:18,539 [root] DEBUG: \t |-- QulabFiles\r\n2021-05-05 13:45:18,539 [root] DEBUG: \t |-- QulabMutexes\r\n2021-05-05 13:45:18,539 [root] DEBUG: \t |-- raccoon\r\n2021-05-05 13:45:18,539 [root] DEBUG: \t |-- CapturesScreenshot\r\n2021-05-05 13:45:18,539 [root] DEBUG: \t |-- vidar\r\n2021-05-05 13:45:18,539 [root] DEBUG: \t |-- InjectionCRT\r\n2021-05-05 13:45:18,539 [root] DEBUG: \t |-- InjectionExplorer\r\n2021-05-05 13:45:18,539 [root] DEBUG: \t |-- InjectionExtension\r\n2021-05-05 13:45:18,539 [root] DEBUG: \t |-- InjectionNetworkTraffic\r\n2021-05-05 13:45:18,539 [root] DEBUG: \t |-- InjectionRUNPE\r\n2021-05-05 13:45:18,539 [root] DEBUG: \t |-- InjectionRWX\r\n2021-05-05 13:45:18,539 [root] DEBUG: \t |-- injection_themeinitapihook\r\n2021-05-05 13:45:18,539 [root] DEBUG: \t |-- Internet_Dropper\r\n2021-05-05 13:45:18,539 [root] DEBUG: \t |-- IPC_NamedPipe\r\n2021-05-05 13:45:18,539 [root] DEBUG: \t |-- JS_Phish\r\n2021-05-05 13:45:18,539 [root] DEBUG: \t |-- JS_SuspiciousRedirect\r\n2021-05-05 13:45:18,539 [root] DEBUG: \t |-- KazyBot_APIs\r\n2021-05-05 13:45:18,539 [root] DEBUG: \t |-- Kelihos_APIs\r\n2021-05-05 13:45:18,539 [root] DEBUG: \t |-- Kibex_APIs\r\n2021-05-05 13:45:18,540 [root] DEBUG: \t |-- Kovter_APIs\r\n2021-05-05 13:45:18,540 [root] DEBUG: \t |-- KrakenMutexes\r\n2021-05-05 13:45:18,540 [root] DEBUG: \t |-- DisableRegedit\r\n2021-05-05 13:45:18,540 [root] DEBUG: \t |-- DisableTaskMgr\r\n2021-05-05 13:45:18,540 [root] DEBUG: \t |-- Locky_APIs\r\n2021-05-05 13:45:18,540 [root] DEBUG: \t |-- malicious_dynamic_function_loading\r\n2021-05-05 13:45:18,540 [root] DEBUG: \t |-- EncryptPCInfo\r\n2021-05-05 13:45:18,540 [root] DEBUG: \t |-- EnryptDataAgentTeslaHTTP\r\n2021-05-05 13:45:18,540 [root] DEBUG: \t |-- EnryptDataAgentTeslaHTTPT2\r\n2021-05-05 13:45:18,540 [root] DEBUG: \t |-- EnryptDataNanoCore\r\n2021-05-05 13:45:18,540 [root] DEBUG: \t |-- MartiansIE\r\n2021-05-05 13:45:18,540 [root] DEBUG: \t |-- MartiansOffice\r\n2021-05-05 13:45:18,540 [root] DEBUG: \t |-- MimicsAgent\r\n2021-05-05 13:45:18,540 [root] DEBUG: \t |-- MimicsExtension\r\n2021-05-05 13:45:18,540 [root] DEBUG: \t |-- MimicsFiletime\r\n2021-05-05 13:45:18,540 [root] DEBUG: \t |-- MimicsIcon\r\n2021-05-05 13:45:18,540 [root] DEBUG: \t |-- MasqueradesProcessName\r\n2021-05-05 13:45:18,540 [root] DEBUG: \t |-- MimikatzModules\r\n2021-05-05 13:45:18,540 [root] DEBUG: \t |-- ModifiesCerts\r\n2021-05-05 13:45:18,540 [root] DEBUG: \t |-- DotNetCLRUsageLogKnob\r\n2021-05-05 13:45:18,540 [root] DEBUG: \t |-- Modifies_HostFile\r\n2021-05-05 13:45:18,540 [root] DEBUG: \t |-- ModifiesOEMInformation\r\n2021-05-05 13:45:18,540 [root] DEBUG: \t |-- ModifySecurityCenterWarnings\r\n2021-05-05 13:45:18,541 [root] DEBUG: \t |-- ModifiesUACNotify\r\n2021-05-05 13:45:18,541 [root] DEBUG: \t |-- ModifiesDesktopWallpaper\r\n2021-05-05 13:45:18,541 [root] DEBUG: \t |-- move_file_on_reboot\r\n2021-05-05 13:45:18,541 [root] DEBUG: \t |-- Multiple_UA\r\n2021-05-05 13:45:18,541 [root] DEBUG: \t |-- NetworkAnomaly\r\n2021-05-05 13:45:18,541 [root] DEBUG: \t |-- NetworkBIND\r\n2021-05-05 13:45:18,541 [root] DEBUG: \t |-- NetworkCnCHTTPSGeneric\r\n2021-05-05 13:45:18,541 [root] DEBUG: \t |-- NetworkCnCHTTPSPasteSite\r\n2021-05-05 13:45:18,541 [root] DEBUG: \t |-- NetworkCnCHTTPSSocialMedia\r\n2021-05-05 13:45:18,541 [root] DEBUG: \t |-- NetworkCnCHTTPSTempStorageSite\r\n2021-05-05 13:45:18,541 [root] DEBUG: \t |-- NetworkCnCHTTPSTempURLDNS\r\n2021-05-05 13:45:18,541 [root] DEBUG: \t |-- NetworkCnCHTTPSURLShortenerSite\r\n2021-05-05 13:45:18,541 [root] DEBUG: \t |-- NetworkCnCHTTPSUserAgent\r\n2021-05-05 13:45:18,541 [root] DEBUG: \t |-- NetworkCnCSMTPSExfil\r\n2021-05-05 13:45:18,541 [root] DEBUG: \t |-- NetworkCnCSMTPSGeneric\r\n2021-05-05 13:45:18,541 [root] DEBUG: \t |-- NetworkCountryDistribution\r\n2021-05-05 13:45:18,541 [root] DEBUG: \t |-- NetworkMultipleDirectIPConnections\r\n2021-05-05 13:45:18,541 [root] DEBUG: \t |-- NetworkCnCHTTP\r\n2021-05-05 13:45:18,541 [root] DEBUG: \t |-- NetworkDGA\r\n2021-05-05 13:45:18,541 [root] DEBUG: \t |-- NetworkDGAFraunhofer\r\n2021-05-05 13:45:18,541 [root] DEBUG: \t |-- NetworkDNSBlockChain\r\n2021-05-05 13:45:18,541 [root] DEBUG: \t |-- NetworkDNSIDN\r\n2021-05-05 13:45:18,541 [root] DEBUG: \t |-- NetworkDNSOpenNIC\r\n2021-05-05 13:45:18,541 [root] DEBUG: \t |-- NetworkDNSPasteSite\r\n2021-05-05 13:45:18,542 [root] DEBUG: \t |-- NetworkDNSReverseProxy\r\n2021-05-05 13:45:18,542 [root] DEBUG: \t |-- NetworkDNSSuspiciousQueryType\r\n2021-05-05 13:45:18,542 [root] DEBUG: \t |-- NetworkDNSTempFileService\r\n2021-05-05 13:45:18,542 [root] DEBUG: \t |-- NetworkDNSTempURLDNS\r\n2021-05-05 13:45:18,542 [root] DEBUG: \t |-- NetworkDNSTunnelingRequest\r\n2021-05-05 13:45:18,542 [root] DEBUG: \t |-- NetworkDNSURLShortener\r\n2021-05-05 13:45:18,542 [root] DEBUG: \t |-- NetworkDOHTLS\r\n2021-05-05 13:45:18,542 [root] DEBUG: \t |-- NetworkDocumentHTTP\r\n2021-05-05 13:45:18,542 [root] DEBUG: \t |-- NetworkExcessiveUDP\r\n2021-05-05 13:45:18,542 [root] DEBUG: \t |-- ExplorerHTTP\r\n2021-05-05 13:45:18,542 [root] DEBUG: \t |-- NetworkHTTP\r\n2021-05-05 13:45:18,542 [root] DEBUG: \t |-- NetworkICMP\r\n2021-05-05 13:45:18,542 [root] DEBUG: \t |-- NetworkIRC\r\n2021-05-05 13:45:18,542 [root] DEBUG: \t |-- NetworkSMTP\r\n2021-05-05 13:45:18,542 [root] DEBUG: \t |-- Tor\r\n2021-05-05 13:45:18,542 [root] DEBUG: \t |-- TorHiddenService\r\n2021-05-05 13:45:18,542 [root] DEBUG: \t |-- TorGateway\r\n2021-05-05 13:45:18,542 [root] DEBUG: \t |-- Nymaim_APIs\r\n2021-05-05 13:45:18,542 [root] DEBUG: \t |-- Office_Code_Page\r\n2021-05-05 13:45:18,542 [root] DEBUG: \t |-- OfficeAddinLoading\r\n2021-05-05 13:45:18,542 [root] DEBUG: \t |-- OfficeCOMLoad\r\n2021-05-05 13:45:18,542 [root] DEBUG: \t |-- OfficeDotNetLoad\r\n2021-05-05 13:45:18,542 [root] DEBUG: \t |-- OfficePerfKey\r\n2021-05-05 13:45:18,543 [root] DEBUG: \t |-- OfficeVBLLoad\r\n2021-05-05 13:45:18,543 [root] DEBUG: \t |-- OfficeWMILoad\r\n2021-05-05 13:45:18,543 [root] DEBUG: \t |-- OfficeCVE201711882\r\n2021-05-05 13:45:18,543 [root] DEBUG: \t |-- OfficeCVE201711882Network\r\n2021-05-05 13:45:18,543 [root] DEBUG: \t |-- OfficeFlashLoad\r\n2021-05-05 13:45:18,543 [root] DEBUG: \t |-- OfficePostScript\r\n2021-05-05 13:45:18,543 [root] DEBUG: \t |-- Office_Macro\r\n2021-05-05 13:45:18,543 [root] DEBUG: \t |-- OfficeMacroAutoExecution\r\n2021-05-05 13:45:18,543 [root] DEBUG: \t |-- OfficeMacroIOC\r\n2021-05-05 13:45:18,543 [root] DEBUG: \t |-- OfficeMacroMaliciousPredition\r\n2021-05-05 13:45:18,543 [root] DEBUG: \t |-- OfficeMacroSuspicious\r\n2021-05-05 13:45:18,543 [root] DEBUG: \t |-- RTFASLRBypass\r\n2021-05-05 13:45:18,543 [root] DEBUG: \t |-- RTFAnomalyCharacterSet\r\n2021-05-05 13:45:18,543 [root] DEBUG: \t |-- RTFAnomalyVersion\r\n2021-05-05 13:45:18,543 [root] DEBUG: \t |-- RTFEmbeddedContent\r\n2021-05-05 13:45:18,543 [root] DEBUG: \t |-- RTFEmbeddedOfficeFile\r\n2021-05-05 13:45:18,543 [root] DEBUG: \t |-- RTFExploitStatic\r\n2021-05-05 13:45:18,543 [root] DEBUG: \t |-- OfficeSecurity\r\n2021-05-05 13:45:18,543 [root] DEBUG: \t |-- OfficeAnamalousFeature\r\n2021-05-05 13:45:18,543 [root] DEBUG: \t |-- OfficeDDECommand\r\n2021-05-05 13:45:18,543 [root] DEBUG: \t |-- OfficeSuspiciousProcesses\r\n2021-05-05 13:45:18,543 [root] DEBUG: \t |-- OfficeWriteEXE\r\n2021-05-05 13:45:18,543 [root] DEBUG: \t |-- BuildLangID\r\n2021-05-05 13:45:18,544 [root] DEBUG: \t |-- ResourceLangID\r\n2021-05-05 13:45:18,544 [root] DEBUG: \t |-- PackerUnknownPESectionName\r\n2021-05-05 13:45:18,544 [root] DEBUG: \t |-- ArmadilloMutex\r\n2021-05-05 13:45:18,544 [root] DEBUG: \t |-- ArmadilloRegKey\r\n2021-05-05 13:45:18,544 [root] DEBUG: \t |-- ASPackPacked\r\n2021-05-05 13:45:18,544 [root] DEBUG: \t |-- AspireCryptPacked\r\n2021-05-05 13:45:18,544 [root] DEBUG: \t |-- BedsProtectorPacked\r\n2021-05-05 13:45:18,544 [root] DEBUG: \t |-- ConfuserPacked\r\n2021-05-05 13:45:18,544 [root] DEBUG: \t |-- EnigmaPacked\r\n2021-05-05 13:45:18,544 [root] DEBUG: \t |-- PackerEntropy\r\n2021-05-05 13:45:18,544 [root] DEBUG: \t |-- MPressPacked\r\n2021-05-05 13:45:18,544 [root] DEBUG: \t |-- NatePacked\r\n2021-05-05 13:45:18,544 [root] DEBUG: \t |-- NsPacked\r\n2021-05-05 13:45:18,544 [root] DEBUG: \t |-- SmartAssemblyPacked\r\n2021-05-05 13:45:18,544 [root] DEBUG: \t |-- SpicesPacked\r\n2021-05-05 13:45:18,544 [root] DEBUG: \t |-- ThemidaPacked\r\n2021-05-05 13:45:18,544 [root] DEBUG: \t |-- ThemidaPackedSection\r\n2021-05-05 13:45:18,544 [root] DEBUG: \t |-- TitanPacked\r\n2021-05-05 13:45:18,544 [root] DEBUG: \t |-- UPXCompressed\r\n2021-05-05 13:45:18,544 [root] DEBUG: \t |-- VMPPacked\r\n2021-05-05 13:45:18,544 [root] DEBUG: \t |-- YodaPacked\r\n2021-05-05 13:45:18,544 [root] DEBUG: \t |-- PDF_Annot_URLs\r\n2021-05-05 13:45:18,544 [root] DEBUG: \t |-- ADS\r\n2021-05-05 13:45:18,544 [root] DEBUG: \t |-- Autorun\r\n2021-05-05 13:45:18,545 [root] DEBUG: \t |-- Autorun_scheduler\r\n2021-05-05 13:45:18,545 [root] DEBUG: \t |-- PersistenceSafeBoot\r\n2021-05-05 13:45:18,545 [root] DEBUG: \t |-- PersistenceBootexecute\r\n2021-05-05 13:45:18,545 [root] DEBUG: \t |-- PersistenceRegistryScript\r\n2021-05-05 13:45:18,545 [root] DEBUG: \t |-- PersistenceIFEO\r\n2021-05-05 13:45:18,545 [root] DEBUG: \t |-- PersistenceSilentProcessExit\r\n2021-05-05 13:45:18,545 [root] DEBUG: \t |-- PersistenceRDPRegistry\r\n2021-05-05 13:45:18,545 [root] DEBUG: \t |-- PersistenceService\r\n2021-05-05 13:45:18,545 [root] DEBUG: \t |-- PersistenceShimDatabase\r\n2021-05-05 13:45:18,545 [root] DEBUG: \t |-- Polymorphic\r\n2021-05-05 13:45:18,545 [root] DEBUG: \t |-- Pony_APIs\r\n2021-05-05 13:45:18,545 [root] DEBUG: \t |-- PowerpoolMutexes\r\n2021-05-05 13:45:18,545 [root] DEBUG: \t |-- PowerShellNetworkConnection\r\n2021-05-05 13:45:18,545 [root] DEBUG: \t |-- PowerShellScriptBlockLogging\r\n2021-05-05 13:45:18,545 [root] DEBUG: \t |-- PowershellCommandSuspicious\r\n2021-05-05 13:45:18,545 [root] DEBUG: \t |-- PowershellRenamed\r\n2021-05-05 13:45:18,545 [root] DEBUG: \t |-- PowershellReversed\r\n2021-05-05 13:45:18,545 [root] DEBUG: \t |-- PowershellVariableObfuscation\r\n2021-05-05 13:45:18,545 [root] DEBUG: \t |-- PunchPlusPlusPCREs\r\n2021-05-05 13:45:18,545 [root] DEBUG: \t |-- PreventsSafeboot\r\n2021-05-05 13:45:18,545 [root] DEBUG: \t |-- CmdlineProcessDiscovery\r\n2021-05-05 13:45:18,545 [root] DEBUG: \t |-- CreateToolhelp32SnapshotProcessModuleEnumeration\r\n2021-05-05 13:45:18,545 [root] DEBUG: \t |-- EmumeratesRunningProcesses\r\n2021-05-05 13:45:18,546 [root] DEBUG: \t |-- ProcessInterest\r\n2021-05-05 13:45:18,546 [root] DEBUG: \t |-- ProcessNeeded\r\n2021-05-05 13:45:18,546 [root] DEBUG: \t |-- Procmem_Yara\r\n2021-05-05 13:45:18,546 [root] DEBUG: \t |-- MassDataEncryption\r\n2021-05-05 13:45:18,546 [root] DEBUG: \t |-- CryptoMixMutexes\r\n2021-05-05 13:45:18,546 [root] DEBUG: \t |-- DharmaMutexes\r\n2021-05-05 13:45:18,546 [root] DEBUG: \t |-- RansomwareDMALocker\r\n2021-05-05 13:45:18,546 [root] DEBUG: \t |-- RansomwareExtensions\r\n2021-05-05 13:45:18,546 [root] DEBUG: \t |-- RansomwareFileModifications\r\n2021-05-05 13:45:18,546 [root] DEBUG: \t |-- RansomwareFiles\r\n2021-05-05 13:45:18,546 [root] DEBUG: \t |-- FonixMutexes\r\n2021-05-05 13:45:18,546 [root] DEBUG: \t |-- GandCrabMutexes\r\n2021-05-05 13:45:18,546 [root] DEBUG: \t |-- GermanWiperMutexes\r\n2021-05-05 13:45:18,546 [root] DEBUG: \t |-- MedusaLockerMutexes\r\n2021-05-05 13:45:18,546 [root] DEBUG: \t |-- MedusaLockerRegkeys\r\n2021-05-05 13:45:18,546 [root] DEBUG: \t |-- RansomwareMessage\r\n2021-05-05 13:45:18,546 [root] DEBUG: \t |-- RansomwareMessageMultipleLocations\r\n2021-05-05 13:45:18,546 [root] DEBUG: \t |-- NemtyMutexes\r\n2021-05-05 13:45:18,546 [root] DEBUG: \t |-- NemtyNetworkActivity\r\n2021-05-05 13:45:18,546 [root] DEBUG: \t |-- NemtyNote\r\n2021-05-05 13:45:18,546 [root] DEBUG: \t |-- NemtyRegkeys\r\n2021-05-05 13:45:18,546 [root] DEBUG: \t |-- PYSAMutexes\r\n2021-05-05 13:45:18,546 [root] DEBUG: \t |-- RansomwareRadamant\r\n2021-05-05 13:45:18,547 [root] DEBUG: \t |-- RansomwareRecyclebin\r\n2021-05-05 13:45:18,547 [root] DEBUG: \t |-- RevilMutexes\r\n2021-05-05 13:45:18,547 [root] DEBUG: \t |-- SatanMutexes\r\n2021-05-05 13:45:18,547 [root] DEBUG: \t |-- SnakeRansomMutexes\r\n2021-05-05 13:45:18,547 [root] DEBUG: \t |-- sodinokibi\r\n2021-05-05 13:45:18,547 [root] DEBUG: \t |-- StopRansomMutexes\r\n2021-05-05 13:45:18,547 [root] DEBUG: \t |-- BeebusMutexes\r\n2021-05-05 13:45:18,547 [root] DEBUG: \t |-- BlackRATAPIs\r\n2021-05-05 13:45:18,547 [root] DEBUG: \t |-- BlackRATMutexes\r\n2021-05-05 13:45:18,547 [root] DEBUG: \t |-- BlackRATNetworkActivity\r\n2021-05-05 13:45:18,547 [root] DEBUG: \t |-- BlackRATRegistryKeys\r\n2021-05-05 13:45:18,547 [root] DEBUG: \t |-- CRATMutexes\r\n2021-05-05 13:45:18,547 [root] DEBUG: \t |-- DCRatAPIs\r\n2021-05-05 13:45:18,547 [root] DEBUG: \t |-- DCRatFiles\r\n2021-05-05 13:45:18,547 [root] DEBUG: \t |-- DCRatMutex\r\n2021-05-05 13:45:18,547 [root] DEBUG: \t |-- FynloskiMutexes\r\n2021-05-05 13:45:18,547 [root] DEBUG: \t |-- KaraganyEventObjects\r\n2021-05-05 13:45:18,547 [root] DEBUG: \t |-- KaraganyFiles\r\n2021-05-05 13:45:18,547 [root] DEBUG: \t |-- LimeRATMutexes\r\n2021-05-05 13:45:18,547 [root] DEBUG: \t |-- LimeRATRegkeys\r\n2021-05-05 13:45:18,547 [root] DEBUG: \t |-- LodaRATFileBehavior\r\n2021-05-05 13:45:18,547 [root] DEBUG: \t |-- LuminosityRAT\r\n2021-05-05 13:45:18,547 [root] DEBUG: \t |-- ModiRATBehavior\r\n2021-05-05 13:45:18,548 [root] DEBUG: \t |-- NanocoreRAT\r\n2021-05-05 13:45:18,548 [root] DEBUG: \t |-- netwire\r\n2021-05-05 13:45:18,548 [root] DEBUG: \t |-- NjratRegkeys\r\n2021-05-05 13:45:18,548 [root] DEBUG: \t |-- ObliquekRATFiles\r\n2021-05-05 13:45:18,548 [root] DEBUG: \t |-- ObliquekRATMutexes\r\n2021-05-05 13:45:18,548 [root] DEBUG: \t |-- ObliquekRATNetworkActivity\r\n2021-05-05 13:45:18,548 [root] DEBUG: \t |-- OrcusRAT\r\n2021-05-05 13:45:18,548 [root] DEBUG: \t |-- ParallaxMutexes\r\n2021-05-05 13:45:18,548 [root] DEBUG: \t |-- PcClientMutexes\r\n2021-05-05 13:45:18,548 [root] DEBUG: \t |-- PlugxMutexes\r\n2021-05-05 13:45:18,548 [root] DEBUG: \t |-- PoisonIvyMutexes\r\n2021-05-05 13:45:18,548 [root] DEBUG: \t |-- QuasarMutexes\r\n2021-05-05 13:45:18,548 [root] DEBUG: \t |-- RatsnifMutexes\r\n2021-05-05 13:45:18,548 [root] DEBUG: \t |-- SpynetRat\r\n2021-05-05 13:45:18,548 [root] DEBUG: \t |-- TrochilusRATAPIs\r\n2021-05-05 13:45:18,548 [root] DEBUG: \t |-- VenomRAT\r\n2021-05-05 13:45:18,548 [root] DEBUG: \t |-- WarzoneRATFiles\r\n2021-05-05 13:45:18,548 [root] DEBUG: \t |-- WarzoneRATRegkeys\r\n2021-05-05 13:45:18,548 [root] DEBUG: \t |-- XpertRATFiles\r\n2021-05-05 13:45:18,548 [root] DEBUG: \t |-- XpertRATMutexes\r\n2021-05-05 13:45:18,548 [root] DEBUG: \t |-- XtremeMutexes\r\n2021-05-05 13:45:18,548 [root] DEBUG: \t |-- ReadsSelf\r\n2021-05-05 13:45:18,548 [root] DEBUG: \t |-- Recon_Beacon\r\n2021-05-05 13:45:18,548 [root] DEBUG: \t |-- CheckIP\r\n2021-05-05 13:45:18,549 [root] DEBUG: \t |-- Fingerprint\r\n2021-05-05 13:45:18,549 [root] DEBUG: \t |-- InstalledApps\r\n2021-05-05 13:45:18,549 [root] DEBUG: \t |-- SystemInfo\r\n2021-05-05 13:45:18,549 [root] DEBUG: \t |-- Accesses_RecycleBin\r\n2021-05-05 13:45:18,549 [root] DEBUG: \t |-- RemcosFiles\r\n2021-05-05 13:45:18,549 [root] DEBUG: \t |-- RemcosMutexes\r\n2021-05-05 13:45:18,549 [root] DEBUG: \t |-- RemcosRegkeys\r\n2021-05-05 13:45:18,549 [root] DEBUG: \t |-- RDPTCPKey\r\n2021-05-05 13:45:18,549 [root] DEBUG: \t |-- UsesRDPClip\r\n2021-05-05 13:45:18,549 [root] DEBUG: \t |-- UsesRemoteDesktopSession\r\n2021-05-05 13:45:18,549 [root] DEBUG: \t |-- RemovesNetworkingIcon\r\n2021-05-05 13:45:18,549 [root] DEBUG: \t |-- RemovesPinnedPrograms\r\n2021-05-05 13:45:18,549 [root] DEBUG: \t |-- RemovesSecurityAndMaintenanceIcon\r\n2021-05-05 13:45:18,549 [root] DEBUG: \t |-- RemovesStartMenuDefaults\r\n2021-05-05 13:45:18,549 [root] DEBUG: \t |-- RemovesUsernameStartMenu\r\n2021-05-05 13:45:18,549 [root] DEBUG: \t |-- RemovesZoneIdADS\r\n2021-05-05 13:45:18,549 [root] DEBUG: \t |-- SpicyHotPotBehavior\r\n2021-05-05 13:45:18,549 [root] DEBUG: \t |-- ScriptCreatedProcess\r\n2021-05-05 13:45:18,549 [root] DEBUG: \t |-- ScriptNetworkActvity\r\n2021-05-05 13:45:18,549 [root] DEBUG: \t |-- SuspiciousJSScript\r\n2021-05-05 13:45:18,549 [root] DEBUG: \t |-- Secure_Login_Phish\r\n2021-05-05 13:45:18,549 [root] DEBUG: \t |-- SecurityXploded_Modules\r\n2021-05-05 13:45:18,549 [root] DEBUG: \t |-- SetsAutoconfigURL\r\n2021-05-05 13:45:18,550 [root] DEBUG: \t |-- Shifu_APIs\r\n2021-05-05 13:45:18,550 [root] DEBUG: \t |-- InstallsWinpcap\r\n2021-05-05 13:45:18,550 [root] DEBUG: \t |-- SpoofsProcname\r\n2021-05-05 13:45:18,550 [root] DEBUG: \t |-- CreatesAutorunInf\r\n2021-05-05 13:45:18,550 [root] DEBUG: \t |-- StackPivot\r\n2021-05-05 13:45:18,550 [root] DEBUG: \t |-- StackPivotFileCreated\r\n2021-05-05 13:45:18,550 [root] DEBUG: \t |-- StackPivotProcessCreate\r\n2021-05-05 13:45:18,550 [root] DEBUG: \t |-- Authenticode\r\n2021-05-05 13:45:18,550 [root] DEBUG: \t |-- InvalidAuthenticodeSignature\r\n2021-05-05 13:45:18,550 [root] DEBUG: \t |-- DotNetAnomaly\r\n2021-05-05 13:45:18,550 [root] DEBUG: \t |-- Static_Java\r\n2021-05-05 13:45:18,550 [root] DEBUG: \t |-- Static_PDF\r\n2021-05-05 13:45:18,550 [root] DEBUG: \t |-- PEAnomaly\r\n2021-05-05 13:45:18,550 [root] DEBUG: \t |-- PECompileTimeStomping\r\n2021-05-05 13:45:18,550 [root] DEBUG: \t |-- StaticPEPDBPath\r\n2021-05-05 13:45:18,550 [root] DEBUG: \t |-- RATConfig\r\n2021-05-05 13:45:18,550 [root] DEBUG: \t |-- VersionInfoAnomaly\r\n2021-05-05 13:45:18,550 [root] DEBUG: \t |-- StealthChildProc\r\n2021-05-05 13:45:18,550 [root] DEBUG: \t |-- StealthFile\r\n2021-05-05 13:45:18,550 [root] DEBUG: \t |-- StealthHiddenExtension\r\n2021-05-05 13:45:18,550 [root] DEBUG: \t |-- StealthHiddenReg\r\n2021-05-05 13:45:18,550 [root] DEBUG: \t |-- StealthHideNotifications\r\n2021-05-05 13:45:18,550 [root] DEBUG: \t |-- StealthNetwork\r\n2021-05-05 13:45:18,551 [root] DEBUG: \t |-- StealthTimeout\r\n2021-05-05 13:45:18,551 [root] DEBUG: \t |-- StealthWebHistory\r\n2021-05-05 13:45:18,551 [root] DEBUG: \t |-- Hidden_Window\r\n2021-05-05 13:45:18,551 [root] DEBUG: \t |-- SuricataAlert\r\n2021-05-05 13:45:18,551 [root] DEBUG: \t |-- sysinternals_psexec\r\n2021-05-05 13:45:18,551 [root] DEBUG: \t |-- sysinternals_tools\r\n2021-05-05 13:45:18,551 [root] DEBUG: \t |-- TampersETW\r\n2021-05-05 13:45:18,551 [root] DEBUG: \t |-- TampersPowerShellLogging\r\n2021-05-05 13:45:18,551 [root] DEBUG: \t |-- Flame\r\n2021-05-05 13:45:18,551 [root] DEBUG: \t |-- TerritorialDisputeSIGs\r\n2021-05-05 13:45:18,551 [root] DEBUG: \t |-- Tinba_APIs\r\n2021-05-05 13:45:18,551 [root] DEBUG: \t |-- TrickBotTaskDelete\r\n2021-05-05 13:45:18,551 [root] DEBUG: \t |-- TrickBotMutexes\r\n2021-05-05 13:45:18,551 [root] DEBUG: \t |-- FleerCivetMutexes\r\n2021-05-05 13:45:18,551 [root] DEBUG: \t |-- LokibotMutexes\r\n2021-05-05 13:45:18,551 [root] DEBUG: \t |-- UrsnifBehavior\r\n2021-05-05 13:45:18,551 [root] DEBUG: \t |-- Troldesh_APIs\r\n2021-05-05 13:45:18,551 [root] DEBUG: \t |-- Upatre_APIs\r\n2021-05-05 13:45:18,551 [root] DEBUG: \t |-- Ursnif_APIs\r\n2021-05-05 13:45:18,551 [root] DEBUG: \t |-- UserEnum\r\n2021-05-05 13:45:18,551 [root] DEBUG: \t |-- ADFind\r\n2021-05-05 13:45:18,551 [root] DEBUG: \t |-- Vawtrak_APIs\r\n2021-05-05 13:45:18,551 [root] DEBUG: \t |-- Vawtrak_APIs\r\n2021-05-05 13:45:18,551 [root] DEBUG: \t |-- Virus\r\n2021-05-05 13:45:18,552 [root] DEBUG: \t |-- NeshtaFiles\r\n2021-05-05 13:45:18,552 [root] DEBUG: \t |-- NeshtaMutexes\r\n2021-05-05 13:45:18,552 [root] DEBUG: \t |-- NeshtaRegKeys\r\n2021-05-05 13:45:18,552 [root] DEBUG: \t |-- RenamerMutexes\r\n2021-05-05 13:45:18,552 [root] DEBUG: \t |-- VolDevicetree1\r\n2021-05-05 13:45:18,552 [root] DEBUG: \t |-- VolHandles1\r\n2021-05-05 13:45:18,552 [root] DEBUG: \t |-- VolLdrModules1\r\n2021-05-05 13:45:18,552 [root] DEBUG: \t |-- VolLdrModules2\r\n2021-05-05 13:45:18,552 [root] DEBUG: \t |-- VolMalfind1\r\n2021-05-05 13:45:18,552 [root] DEBUG: \t |-- VolMalfind2\r\n2021-05-05 13:45:18,552 [root] DEBUG: \t |-- VolModscan1\r\n2021-05-05 13:45:18,552 [root] DEBUG: \t |-- VolSvcscan1\r\n2021-05-05 13:45:18,552 [root] DEBUG: \t |-- VolSvcscan2\r\n2021-05-05 13:45:18,552 [root] DEBUG: \t |-- VolSvcscan3\r\n2021-05-05 13:45:18,552 [root] DEBUG: \t |-- Webmail_Phish\r\n2021-05-05 13:45:18,552 [root] DEBUG: \t |-- OWAWebShellFiles\r\n2021-05-05 13:45:18,552 [root] DEBUG: \t |-- WebShellFiles\r\n2021-05-05 13:45:18,552 [root] DEBUG: \t |-- WebShellProcesses\r\n2021-05-05 13:45:18,552 [root] DEBUG: \t |-- PersistsDotNetDevUtility\r\n2021-05-05 13:45:18,552 [root] DEBUG: \t |-- SpwansDotNetDevUtiliy\r\n2021-05-05 13:45:18,552 [root] DEBUG: \t |-- WHOIS_Create\r\n2021-05-05 13:45:18,552 [root] DEBUG: \t |-- AltersWindowsUtility\r\n2021-05-05 13:45:18,552 [root] DEBUG: \t |-- DotNETCSCBuild\r\n2021-05-05 13:45:18,553 [root] DEBUG: \t |-- MultipleExplorerInstances\r\n2021-05-05 13:45:18,553 [root] DEBUG: \t |-- OverwritesAccessibilityUtility\r\n2021-05-05 13:45:18,553 [root] DEBUG: \t |-- ScriptToolExecuted\r\n2021-05-05 13:45:18,553 [root] DEBUG: \t |-- SuspiciousCertutilUse\r\n2021-05-05 13:45:18,553 [root] DEBUG: \t |-- SuspiciousCommandTools\r\n2021-05-05 13:45:18,553 [root] DEBUG: \t |-- SuspiciousMpCmdRunUse\r\n2021-05-05 13:45:18,553 [root] DEBUG: \t |-- SuspiciousPingUse\r\n2021-05-05 13:45:18,553 [root] DEBUG: \t |-- UsesWindowsUtilities\r\n2021-05-05 13:45:18,553 [root] DEBUG: \t |-- UsesWindowsUtilitiesAppCmd\r\n2021-05-05 13:45:18,553 [root] DEBUG: \t |-- UsesWindowsUtilitiesCSVDELDFIDE\r\n2021-05-05 13:45:18,553 [root] DEBUG: \t |-- UsesWindowsUtilitiesCipher\r\n2021-05-05 13:45:18,553 [root] DEBUG: \t |-- UsesWindowsUtilitiesClickOnce\r\n2021-05-05 13:45:18,553 [root] DEBUG: \t |-- UsesWindowsUtilitiesDSQuery\r\n2021-05-05 13:45:18,553 [root] DEBUG: \t |-- UsesWindowsUtilitiesFinger\r\n2021-05-05 13:45:18,553 [root] DEBUG: \t |-- UsesWindowsUtilitiesMode\r\n2021-05-05 13:45:18,553 [root] DEBUG: \t |-- UsesWindowsUtilitiesNTDSutil\r\n2021-05-05 13:45:18,553 [root] DEBUG: \t |-- UsesWindowsUtilitiesNltest\r\n2021-05-05 13:45:18,553 [root] DEBUG: \t |-- UsesWindowsUtilitiesScheduler\r\n2021-05-05 13:45:18,553 [root] DEBUG: \t |-- UsesWindowsUtilitiesXcopy\r\n2021-05-05 13:45:18,553 [root] DEBUG: \t |-- WMICCommandSuspicious\r\n2021-05-05 13:45:18,553 [root] DEBUG: \t |-- ScrconsWMIScriptConsumer\r\n2021-05-05 13:45:18,553 [root] DEBUG: \t |-- WMICreateProcess\r\n2021-05-05 13:45:18,553 [root] DEBUG: \t |-- WMIScriptProcess\r\n2021-05-05 13:45:18,554 [root] DEBUG: \t `-- AllapleMutexes\r\n2021-05-05 13:45:18,554 [root] DEBUG: Imported \"reporting\" modules:\r\n2021-05-05 13:45:18,554 [root] DEBUG: \t |-- BinGraph\r\n2021-05-05 13:45:18,554 [root] DEBUG: \t |-- JsonDump\r\n2021-05-05 13:45:18,554 [root] DEBUG: \t |-- MAEC41Report\r\n2021-05-05 13:45:18,554 [root] DEBUG: \t |-- Malheur\r\n2021-05-05 13:45:18,554 [root] DEBUG: \t |-- MongoDB\r\n2021-05-05 13:45:18,554 [root] DEBUG: \t |-- PCAP2CERT\r\n2021-05-05 13:45:18,554 [root] DEBUG: \t `-- SubmitCAPE\r\n2021-05-05 13:45:18,554 [root] DEBUG: Imported \"feeds\" modules:\r\n2021-05-05 13:45:18,554 [root] DEBUG: \t `-- AbuseCH_SSL\r\n2021-05-05 13:45:18,554 [root] DEBUG: Imported \"machinery\" modules:\r\n2021-05-05 13:45:18,554 [root] DEBUG: \t `-- VirtualBox\r\n2021-05-05 13:45:18,554 [root] DEBUG: Checking for locked tasks...\r\n2021-05-05 13:45:18,654 [root] DEBUG: Initializing Yara...\r\n2021-05-05 13:45:18,688 [root] DEBUG: \t |-- binaries AutoIT.yar\r\n2021-05-05 13:45:18,689 [root] DEBUG: \t |-- binaries EcrimePackerStub.yar\r\n2021-05-05 13:45:18,689 [root] DEBUG: \t |-- binaries Generic_Phishing_PDF.yar\r\n2021-05-05 13:45:18,689 [root] DEBUG: \t |-- binaries HeavensGate.yar\r\n2021-05-05 13:45:18,689 [root] DEBUG: \t |-- binaries IEuser_author_doc.yar\r\n2021-05-05 13:45:18,689 [root] DEBUG: \t |-- binaries LNK_Ruleset.yar\r\n2021-05-05 13:45:18,690 [root] DEBUG: \t |-- binaries MalScript_Tricks.yar\r\n2021-05-05 13:45:18,690 [root] DEBUG: \t |-- binaries OLEfile_in_CAD_FAS_LSP.yar\r\n2021-05-05 13:45:18,690 [root] DEBUG: \t |-- binaries RoyalRoad_RTF.yar\r\n2021-05-05 13:45:18,690 [root] DEBUG: \t |-- binaries Webshell_in_image.yar\r\n2021-05-05 13:45:18,690 [root] DEBUG: \t |-- binaries embedded.yar\r\n2021-05-05 13:45:18,690 [root] DEBUG: \t |-- binaries indicator_packed.yar\r\n2021-05-05 13:45:18,690 [root] DEBUG: \t |-- binaries indicator_suspicious.yar\r\n2021-05-05 13:45:18,690 [root] DEBUG: \t |-- binaries indicator_tools.yar\r\n2021-05-05 13:45:18,690 [root] DEBUG: \t |-- binaries ole_vba.yar\r\n2021-05-05 13:45:18,690 [root] DEBUG: \t |-- binaries shellcodes.yar\r\n2021-05-05 13:45:18,690 [root] DEBUG: \t |-- binaries vmdetect.yar\r\n2021-05-05 13:45:18,717 [root] DEBUG: \t |-- memory Exploit_HT_Flash_Vars.yar\r\n2021-05-05 13:45:18,717 [root] DEBUG: \t |-- memory Exploit_HT_VRename.yar\r\n2021-05-05 13:45:18,717 [root] DEBUG: \t |-- memory adgholas.yar\r\n2021-05-05 13:45:18,717 [root] DEBUG: \t |-- memory angler.yar\r\n2021-05-05 13:45:18,717 [root] DEBUG: \t |-- memory astrum.yar\r\n2021-05-05 13:45:18,717 [root] DEBUG: \t |-- memory cve_2013_2551.yar\r\n2021-05-05 13:45:18,717 [root] DEBUG: \t |-- memory cve_2014_0515.yar\r\n2021-05-05 13:45:18,717 [root] DEBUG: \t |-- memory cve_2014_0569.yar\r\n2021-05-05 13:45:18,717 [root] DEBUG: \t |-- memory cve_2014_6332.yar\r\n2021-05-05 13:45:18,717 [root] DEBUG: \t |-- memory cve_2015_0016.yar\r\n2021-05-05 13:45:18,717 [root] DEBUG: \t |-- memory cve_2015_2419.yar\r\n2021-05-05 13:45:18,717 [root] DEBUG: \t |-- memory cve_2015_2545.yar\r\n2021-05-05 13:45:18,717 [root] DEBUG: \t |-- memory cve_2015_5122.yar\r\n2021-05-05 13:45:18,717 [root] DEBUG: \t |-- memory cve_2016_0189.yar\r\n2021-05-05 13:45:18,717 [root] DEBUG: \t |-- memory cve_2016_3298.yar\r\n2021-05-05 13:45:18,717 [root] DEBUG: \t |-- memory darkcomet.yar\r\n2021-05-05 13:45:18,717 [root] DEBUG: \t |-- memory eitest.yar\r\n2021-05-05 13:45:18,717 [root] DEBUG: \t |-- memory flash_exploits.yar\r\n2021-05-05 13:45:18,717 [root] DEBUG: \t |-- memory kazybot.yar\r\n2021-05-05 13:45:18,717 [root] DEBUG: \t |-- memory neutrino.yar\r\n2021-05-05 13:45:18,718 [root] DEBUG: \t |-- memory nuclear.yar\r\n2021-05-05 13:45:18,718 [root] DEBUG: \t |-- memory rig.yar\r\n2021-05-05 13:45:18,718 [root] DEBUG: \t |-- memory shellcodes.yar\r\n2021-05-05 13:45:18,718 [root] DEBUG: \t |-- memory sundown.yar\r\n2021-05-05 13:45:18,755 [root] DEBUG: \t |-- CAPE AAR.yar\r\n2021-05-05 13:45:18,756 [root] DEBUG: \t |-- CAPE APT27.yar\r\n2021-05-05 13:45:18,756 [root] DEBUG: \t |-- CAPE AcidRain.yar\r\n2021-05-05 13:45:18,756 [root] DEBUG: \t |-- CAPE Adfind.yar\r\n2021-05-05 13:45:18,756 [root] DEBUG: \t |-- CAPE Adzok.yar\r\n2021-05-05 13:45:18,756 [root] DEBUG: \t |-- CAPE AgentTesla.yar\r\n2021-05-05 13:45:18,756 [root] DEBUG: \t |-- CAPE Alfonso.yar\r\n2021-05-05 13:45:18,756 [root] DEBUG: \t |-- CAPE AlienCrypter.yar\r\n2021-05-05 13:45:18,756 [root] DEBUG: \t |-- CAPE AlienSpy.yar\r\n2021-05-05 13:45:18,756 [root] DEBUG: \t |-- CAPE Amadey.yar\r\n2021-05-05 13:45:18,756 [root] DEBUG: \t |-- CAPE Ap0calypse.yar\r\n2021-05-05 13:45:18,756 [root] DEBUG: \t |-- CAPE Apocalypse.yar\r\n2021-05-05 13:45:18,756 [root] DEBUG: \t |-- CAPE Arcom.yar\r\n2021-05-05 13:45:18,756 [root] DEBUG: \t |-- CAPE Arechclient2.yar\r\n2021-05-05 13:45:18,756 [root] DEBUG: \t |-- CAPE Arkei.yar\r\n2021-05-05 13:45:18,756 [root] DEBUG: \t |-- CAPE Aspire.yar\r\n2021-05-05 13:45:18,756 [root] DEBUG: \t |-- CAPE AsyncRat.yar\r\n2021-05-05 13:45:18,756 [root] DEBUG: \t |-- CAPE Atlas.yar\r\n2021-05-05 13:45:18,756 [root] DEBUG: \t |-- CAPE Aurora.yar\r\n2021-05-05 13:45:18,756 [root] DEBUG: \t |-- CAPE Avaddon.yar\r\n2021-05-05 13:45:18,756 [root] DEBUG: \t |-- CAPE Avalon.yar\r\n2021-05-05 13:45:18,756 [root] DEBUG: \t |-- CAPE Azer.yar\r\n2021-05-05 13:45:18,756 [root] DEBUG: \t |-- CAPE Azorult.yar\r\n2021-05-05 13:45:18,756 [root] DEBUG: \t |-- CAPE BACKSPACE.yar\r\n2021-05-05 13:45:18,756 [root] DEBUG: \t |-- CAPE Babuk.yar\r\n2021-05-05 13:45:18,757 [root] DEBUG: \t |-- CAPE BackNet.yar\r\n2021-05-05 13:45:18,757 [root] DEBUG: \t |-- CAPE BackOffLoader.yar\r\n2021-05-05 13:45:18,757 [root] DEBUG: \t |-- CAPE BackOffPOS.yar\r\n2021-05-05 13:45:18,757 [root] DEBUG: \t |-- CAPE BadRabbit.yar\r\n2021-05-05 13:45:18,757 [root] DEBUG: \t |-- CAPE Baldr.yar\r\n2021-05-05 13:45:18,757 [root] DEBUG: \t |-- CAPE Bandook.yar\r\n2021-05-05 13:45:18,757 [root] DEBUG: \t |-- CAPE Bazar.yar\r\n2021-05-05 13:45:18,757 [root] DEBUG: \t |-- CAPE BazarLoaderNim.yara\r\n2021-05-05 13:45:18,757 [root] DEBUG: \t |-- CAPE BetaBot.yar\r\n2021-05-05 13:45:18,757 [root] DEBUG: \t |-- CAPE BitPaymer.yar\r\n2021-05-05 13:45:18,757 [root] DEBUG: \t |-- CAPE BitRAT.yar\r\n2021-05-05 13:45:18,757 [root] DEBUG: \t |-- CAPE BitterRAT.yar\r\n2021-05-05 13:45:18,757 [root] DEBUG: \t |-- CAPE BlackNET.yar\r\n2021-05-05 13:45:18,757 [root] DEBUG: \t |-- CAPE BlackNix.yar\r\n2021-05-05 13:45:18,757 [root] DEBUG: \t |-- CAPE BlackShades.yar\r\n2021-05-05 13:45:18,757 [root] DEBUG: \t |-- CAPE BlackshadesRAT.yar\r\n2021-05-05 13:45:18,757 [root] DEBUG: \t |-- CAPE BlueBanana.yar\r\n2021-05-05 13:45:18,757 [root] DEBUG: \t |-- CAPE Bobik.yar\r\n2021-05-05 13:45:18,757 [root] DEBUG: \t |-- CAPE Bozok.yar\r\n2021-05-05 13:45:18,757 [root] DEBUG: \t |-- CAPE BreakStaf.yar\r\n2021-05-05 13:45:18,757 [root] DEBUG: \t |-- CAPE BuerLoader.yar\r\n2021-05-05 13:45:18,757 [root] DEBUG: \t |-- CAPE Buran.yar\r\n2021-05-05 13:45:18,757 [root] DEBUG: \t |-- CAPE CRAT.yar\r\n2021-05-05 13:45:18,757 [root] DEBUG: \t |-- CAPE CasperTroy.yar\r\n2021-05-05 13:45:18,758 [root] DEBUG: \t |-- CAPE Cerber.yar\r\n2021-05-05 13:45:18,758 [root] DEBUG: \t |-- CAPE ChChes.yar\r\n2021-05-05 13:45:18,758 [root] DEBUG: \t |-- CAPE ChaChaDDoS.yar\r\n2021-05-05 13:45:18,758 [root] DEBUG: \t |-- CAPE Chuwi.yar\r\n2021-05-05 13:45:18,758 [root] DEBUG: \t |-- CAPE ClientMesh.yar\r\n2021-05-05 13:45:18,758 [root] DEBUG: \t |-- CAPE Clop.yar\r\n2021-05-05 13:45:18,758 [root] DEBUG: \t |-- CAPE CobaltStrike.yar\r\n2021-05-05 13:45:18,758 [root] DEBUG: \t |-- CAPE CobaltStrikeBeacon.yar\r\n2021-05-05 13:45:18,758 [root] DEBUG: \t |-- CAPE Codoso.yar\r\n2021-05-05 13:45:18,758 [root] DEBUG: \t |-- CAPE CoinMiningBot.yar\r\n2021-05-05 13:45:18,758 [root] DEBUG: \t |-- CAPE Confucius_B.yar\r\n2021-05-05 13:45:18,758 [root] DEBUG: \t |-- CAPE Conti.yar\r\n2021-05-05 13:45:18,758 [root] DEBUG: \t |-- CAPE CoreBot.yar\r\n2021-05-05 13:45:18,758 [root] DEBUG: \t |-- CAPE Covenant.yar\r\n2021-05-05 13:45:18,758 [root] DEBUG: \t |-- CAPE CryLock.yar\r\n2021-05-05 13:45:18,758 [root] DEBUG: \t |-- CAPE CryptBot.yar\r\n2021-05-05 13:45:18,758 [root] DEBUG: \t |-- CAPE CryptoLocker.yar\r\n2021-05-05 13:45:18,758 [root] DEBUG: \t |-- CAPE CryptoStealerGo.yar\r\n2021-05-05 13:45:18,758 [root] DEBUG: \t |-- CAPE Cryptoshield.yar\r\n2021-05-05 13:45:18,758 [root] DEBUG: \t |-- CAPE Cutlet.yar\r\n2021-05-05 13:45:18,758 [root] DEBUG: \t |-- CAPE CyberGate.yar\r\n2021-05-05 13:45:18,758 [root] DEBUG: \t |-- CAPE DCRat.yar\r\n2021-05-05 13:45:18,758 [root] DEBUG: \t |-- CAPE DTstealer.yar\r\n2021-05-05 13:45:18,758 [root] DEBUG: \t |-- CAPE DanaBot.yar\r\n2021-05-05 13:45:18,758 [root] DEBUG: \t |-- CAPE DarkComet.yar\r\n2021-05-05 13:45:18,759 [root] DEBUG: \t |-- CAPE DarkRAT.yar\r\n2021-05-05 13:45:18,759 [root] DEBUG: \t |-- CAPE Dharma.yara\r\n2021-05-05 13:45:18,759 [root] DEBUG: \t |-- CAPE DoejoCrypt.yar\r\n2021-05-05 13:45:18,759 [root] DEBUG: \t |-- CAPE DoppelPaymer.yar\r\n2021-05-05 13:45:18,759 [root] DEBUG: \t |-- CAPE Downloaders.yar\r\n2021-05-05 13:45:18,759 [root] DEBUG: \t |-- CAPE Dreambot.yar\r\n2021-05-05 13:45:18,759 [root] DEBUG: \t |-- CAPE Dridex.yar\r\n2021-05-05 13:45:18,759 [root] DEBUG: \t |-- CAPE DridexLoader.yar\r\n2021-05-05 13:45:18,759 [root] DEBUG: \t |-- CAPE DridexV4.yar\r\n2021-05-05 13:45:18,759 [root] DEBUG: \t |-- CAPE Duke.yar\r\n2021-05-05 13:45:18,759 [root] DEBUG: \t |-- CAPE Echelon.yar\r\n2021-05-05 13:45:18,759 [root] DEBUG: \t |-- CAPE Egregor.yar\r\n2021-05-05 13:45:18,759 [root] DEBUG: \t |-- CAPE Ekans.yar\r\n2021-05-05 13:45:18,759 [root] DEBUG: \t |-- CAPE Emotet.yar\r\n2021-05-05 13:45:18,759 [root] DEBUG: \t |-- CAPE Emotet_Loader.yar\r\n2021-05-05 13:45:18,759 [root] DEBUG: \t |-- CAPE Enfal.yar\r\n2021-05-05 13:45:18,759 [root] DEBUG: \t |-- CAPE EnigmaStub.yar\r\n2021-05-05 13:45:18,759 [root] DEBUG: \t |-- CAPE Epsilon.yar\r\n2021-05-05 13:45:18,759 [root] DEBUG: \t |-- CAPE EternalRomance.yar\r\n2021-05-05 13:45:18,759 [root] DEBUG: \t |-- CAPE EvilGrab.yar\r\n2021-05-05 13:45:18,759 [root] DEBUG: \t |-- CAPE Exaramel.yar\r\n2021-05-05 13:45:18,759 [root] DEBUG: \t |-- CAPE ExpressCMS.yar\r\n2021-05-05 13:45:18,759 [root] DEBUG: \t |-- CAPE FYAnti.yar\r\n2021-05-05 13:45:18,759 [root] DEBUG: \t |-- CAPE Fabookie.yar\r\n2021-05-05 13:45:18,759 [root] DEBUG: \t |-- CAPE FakeWMI.yar\r\n2021-05-05 13:45:18,760 [root] DEBUG: \t |-- CAPE Fareit.yar\r\n2021-05-05 13:45:18,760 [root] DEBUG: \t |-- CAPE Farfli.yar\r\n2021-05-05 13:45:18,760 [root] DEBUG: \t |-- CAPE Ficker.yar\r\n2021-05-05 13:45:18,760 [root] DEBUG: \t |-- CAPE FirebirdRAT.yar\r\n2021-05-05 13:45:18,760 [root] DEBUG: \t |-- CAPE Fonix.yar\r\n2021-05-05 13:45:18,760 [root] DEBUG: \t |-- CAPE Formbook.yar\r\n2021-05-05 13:45:18,760 [root] DEBUG: \t |-- CAPE FujinamaRAT.yar\r\n2021-05-05 13:45:18,760 [root] DEBUG: \t |-- CAPE GDriveRAT.yar\r\n2021-05-05 13:45:18,760 [root] DEBUG: \t |-- CAPE Gandcrab.yar\r\n2021-05-05 13:45:18,760 [root] DEBUG: \t |-- CAPE Gaudox.yar\r\n2021-05-05 13:45:18,760 [root] DEBUG: \t |-- CAPE GetCrypt.yar\r\n2021-05-05 13:45:18,760 [root] DEBUG: \t |-- CAPE Godzilla.yar\r\n2021-05-05 13:45:18,760 [root] DEBUG: \t |-- CAPE GoldenAxe.yar\r\n2021-05-05 13:45:18,760 [root] DEBUG: \t |-- CAPE GoldenSpy.yar\r\n2021-05-05 13:45:18,760 [root] DEBUG: \t |-- CAPE Gootkit.yar\r\n2021-05-05 13:45:18,760 [root] DEBUG: \t |-- CAPE Greame.yar\r\n2021-05-05 13:45:18,760 [root] DEBUG: \t |-- CAPE Guidlma.yar\r\n2021-05-05 13:45:18,760 [root] DEBUG: \t |-- CAPE Guloader.yar\r\n2021-05-05 13:45:18,760 [root] DEBUG: \t |-- CAPE Gulpix.yar\r\n2021-05-05 13:45:18,760 [root] DEBUG: \t |-- CAPE HDLocker.yar\r\n2021-05-05 13:45:18,760 [root] DEBUG: \t |-- CAPE Hancitor.yar\r\n2021-05-05 13:45:18,760 [root] DEBUG: \t |-- CAPE HawkEye.yar\r\n2021-05-05 13:45:18,760 [root] DEBUG: \t |-- CAPE HawkEyev9.yar\r\n2021-05-05 13:45:18,760 [root] DEBUG: \t |-- CAPE Hermes.yar\r\n2021-05-05 13:45:18,760 [root] DEBUG: \t |-- CAPE HiddenVNC.yar\r\n2021-05-05 13:45:18,761 [root] DEBUG: \t |-- CAPE HiddenWasp.yar\r\n2021-05-05 13:45:18,761 [root] DEBUG: \t |-- CAPE HttpBrowser.yar\r\n2021-05-05 13:45:18,761 [root] DEBUG: \t |-- CAPE HyperBro.yar\r\n2021-05-05 13:45:18,761 [root] DEBUG: \t |-- CAPE IAmTheKingKeylogger.yar\r\n2021-05-05 13:45:18,761 [root] DEBUG: \t |-- CAPE IAmTheKingKingOfHearts.yar\r\n2021-05-05 13:45:18,761 [root] DEBUG: \t |-- CAPE IAmTheKingScrCap.yar\r\n2021-05-05 13:45:18,761 [root] DEBUG: \t |-- CAPE IRCBot.yar\r\n2021-05-05 13:45:18,761 [root] DEBUG: \t |-- CAPE ISRStealer.yar\r\n2021-05-05 13:45:18,761 [root] DEBUG: \t |-- CAPE IcedID.yar\r\n2021-05-05 13:45:18,761 [root] DEBUG: \t |-- CAPE IcedIDStage1.yar\r\n2021-05-05 13:45:18,761 [root] DEBUG: \t |-- CAPE IcedIDStage2.yar\r\n2021-05-05 13:45:18,761 [root] DEBUG: \t |-- CAPE Imminent.yar\r\n2021-05-05 13:45:18,761 [root] DEBUG: \t |-- CAPE Impacket.yar\r\n2021-05-05 13:45:18,761 [root] DEBUG: \t |-- CAPE Infinity.yar\r\n2021-05-05 13:45:18,761 [root] DEBUG: \t |-- CAPE JSSLoader.yar\r\n2021-05-05 13:45:18,761 [root] DEBUG: \t |-- CAPE Jaff.yar\r\n2021-05-05 13:45:18,761 [root] DEBUG: \t |-- CAPE JavaDropper.yar\r\n2021-05-05 13:45:18,761 [root] DEBUG: \t |-- CAPE JoeGo.yar\r\n2021-05-05 13:45:18,761 [root] DEBUG: \t |-- CAPE KPortScan.yar\r\n2021-05-05 13:45:18,761 [root] DEBUG: \t |-- CAPE Karagany.yar\r\n2021-05-05 13:45:18,761 [root] DEBUG: \t |-- CAPE Karkoff.yar\r\n2021-05-05 13:45:18,761 [root] DEBUG: \t |-- CAPE KeyBase.yar\r\n2021-05-05 13:45:18,761 [root] DEBUG: \t |-- CAPE KillMBR.yar\r\n2021-05-05 13:45:18,761 [root] DEBUG: \t |-- CAPE Kimsuky.yar\r\n2021-05-05 13:45:18,762 [root] DEBUG: \t |-- CAPE Kinsing.yar\r\n2021-05-05 13:45:18,762 [root] DEBUG: \t |-- CAPE Kitty.yar\r\n2021-05-05 13:45:18,762 [root] DEBUG: \t |-- CAPE KoadicBAT.yar\r\n2021-05-05 13:45:18,762 [root] DEBUG: \t |-- CAPE KoadicDOC.yar\r\n2021-05-05 13:45:18,762 [root] DEBUG: \t |-- CAPE KoadicJS.yar\r\n2021-05-05 13:45:18,762 [root] DEBUG: \t |-- CAPE Konni.yar\r\n2021-05-05 13:45:18,762 [root] DEBUG: \t |-- CAPE Kovter.yar\r\n2021-05-05 13:45:18,762 [root] DEBUG: \t |-- CAPE Kpot.yar\r\n2021-05-05 13:45:18,762 [root] DEBUG: \t |-- CAPE Kronos.yar\r\n2021-05-05 13:45:18,762 [root] DEBUG: \t |-- CAPE LCPDot.yar\r\n2021-05-05 13:45:18,762 [root] DEBUG: \t |-- CAPE LaZagne.yar\r\n2021-05-05 13:45:18,762 [root] DEBUG: \t |-- CAPE Laturo.yar\r\n2021-05-05 13:45:18,762 [root] DEBUG: \t |-- CAPE LegionLocker.yar\r\n2021-05-05 13:45:18,762 [root] DEBUG: \t |-- CAPE LimeRAT.yar\r\n2021-05-05 13:45:18,762 [root] DEBUG: \t |-- CAPE Lockbit.yar\r\n2021-05-05 13:45:18,762 [root] DEBUG: \t |-- CAPE Locky.yar\r\n2021-05-05 13:45:18,762 [root] DEBUG: \t |-- CAPE Loki.yar\r\n2021-05-05 13:45:18,762 [root] DEBUG: \t |-- CAPE LostDoor.yar\r\n2021-05-05 13:45:18,762 [root] DEBUG: \t |-- CAPE LuminosityLink.yar\r\n2021-05-05 13:45:18,762 [root] DEBUG: \t |-- CAPE LuxNet.yar\r\n2021-05-05 13:45:18,762 [root] DEBUG: \t |-- CAPE M00nD3v.yar\r\n2021-05-05 13:45:18,762 [root] DEBUG: \t |-- CAPE Magniber.yar\r\n2021-05-05 13:45:18,762 [root] DEBUG: \t |-- CAPE Maktub.yar\r\n2021-05-05 13:45:18,762 [root] DEBUG: \t |-- CAPE Mangzamel.yar\r\n2021-05-05 13:45:18,763 [root] DEBUG: \t |-- CAPE MassLogger.yar\r\n2021-05-05 13:45:18,763 [root] DEBUG: \t |-- CAPE Matiex.yar\r\n2021-05-05 13:45:18,763 [root] DEBUG: \t |-- CAPE Maze.yar\r\n2021-05-05 13:45:18,763 [root] DEBUG: \t |-- CAPE MedusaLocker.yar\r\n2021-05-05 13:45:18,763 [root] DEBUG: \t |-- CAPE MegaCortex.yar\r\n2021-05-05 13:45:18,763 [root] DEBUG: \t |-- CAPE Megumin.yar\r\n2021-05-05 13:45:18,763 [root] DEBUG: \t |-- CAPE Meteorite.yar\r\n2021-05-05 13:45:18,763 [root] DEBUG: \t |-- CAPE Meterpreter.yar\r\n2021-05-05 13:45:18,763 [root] DEBUG: \t |-- CAPE MoDiRAT.yar\r\n2021-05-05 13:45:18,763 [root] DEBUG: \t |-- CAPE Mole.yar\r\n2021-05-05 13:45:18,763 [root] DEBUG: \t |-- CAPE NETEAGLE.yar\r\n2021-05-05 13:45:18,763 [root] DEBUG: \t |-- CAPE NLBrute.yar\r\n2021-05-05 13:45:18,763 [root] DEBUG: \t |-- CAPE NWorm.yar\r\n2021-05-05 13:45:18,763 [root] DEBUG: \t |-- CAPE NanoCore.yar\r\n2021-05-05 13:45:18,763 [root] DEBUG: \t |-- CAPE NanoLocker.yar\r\n2021-05-05 13:45:18,763 [root] DEBUG: \t |-- CAPE Nefilim.yar\r\n2021-05-05 13:45:18,763 [root] DEBUG: \t |-- CAPE Nemty.yar\r\n2021-05-05 13:45:18,763 [root] DEBUG: \t |-- CAPE NetTraveler.yar\r\n2021-05-05 13:45:18,763 [root] DEBUG: \t |-- CAPE NetWire.yar\r\n2021-05-05 13:45:18,763 [root] DEBUG: \t |-- CAPE Netwalker.yar\r\n2021-05-05 13:45:18,763 [root] DEBUG: \t |-- CAPE Niribu.yar\r\n2021-05-05 13:45:18,763 [root] DEBUG: \t |-- CAPE Nitol.yar\r\n2021-05-05 13:45:18,763 [root] DEBUG: \t |-- CAPE ObliqueRAT.yar\r\n2021-05-05 13:45:18,763 [root] DEBUG: \t |-- CAPE Octopus.yar\r\n2021-05-05 13:45:18,763 [root] DEBUG: \t |-- CAPE OrcusRAT.yar\r\n2021-05-05 13:45:18,764 [root] DEBUG: \t |-- CAPE Orion.yar\r\n2021-05-05 13:45:18,764 [root] DEBUG: \t |-- CAPE Osno.yar\r\n2021-05-05 13:45:18,764 [root] DEBUG: \t |-- CAPE OzoneRAT.yar\r\n2021-05-05 13:45:18,764 [root] DEBUG: \t |-- CAPE PLEAD.yar\r\n2021-05-05 13:45:18,764 [root] DEBUG: \t |-- CAPE PYSA.yar\r\n2021-05-05 13:45:18,764 [root] DEBUG: \t |-- CAPE Pafish.yar\r\n2021-05-05 13:45:18,764 [root] DEBUG: \t |-- CAPE Pandora.yar\r\n2021-05-05 13:45:18,764 [root] DEBUG: \t |-- CAPE Paradox.yar\r\n2021-05-05 13:45:18,764 [root] DEBUG: \t |-- CAPE Parallax.yar\r\n2021-05-05 13:45:18,764 [root] DEBUG: \t |-- CAPE PatchWork.yar\r\n2021-05-05 13:45:18,764 [root] DEBUG: \t |-- CAPE PetrWrap.yar\r\n2021-05-05 13:45:18,764 [root] DEBUG: \t |-- CAPE Petya.yar\r\n2021-05-05 13:45:18,764 [root] DEBUG: \t |-- CAPE Phobos.yar\r\n2021-05-05 13:45:18,764 [root] DEBUG: \t |-- CAPE Phoenix.yar\r\n2021-05-05 13:45:18,764 [root] DEBUG: \t |-- CAPE Phorpiex.yar\r\n2021-05-05 13:45:18,764 [root] DEBUG: \t |-- CAPE PillowMint.yar\r\n2021-05-05 13:45:18,764 [root] DEBUG: \t |-- CAPE Plasma.yar\r\n2021-05-05 13:45:18,764 [root] DEBUG: \t |-- CAPE Plurox.yar\r\n2021-05-05 13:45:18,764 [root] DEBUG: \t |-- CAPE PoisonIvy.yar\r\n2021-05-05 13:45:18,764 [root] DEBUG: \t |-- CAPE Polar.yar\r\n2021-05-05 13:45:18,764 [root] DEBUG: \t |-- CAPE PoshKeylogger.yar\r\n2021-05-05 13:45:18,764 [root] DEBUG: \t |-- CAPE Poullight.yar\r\n2021-05-05 13:45:18,764 [root] DEBUG: \t |-- CAPE PowerPool.yar\r\n2021-05-05 13:45:18,764 [root] DEBUG: \t |-- CAPE PredatorPain.yar\r\n2021-05-05 13:45:18,764 [root] DEBUG: \t |-- CAPE ProLock.yar\r\n2021-05-05 13:45:18,765 [root] DEBUG: \t |-- CAPE ProtonBot.yar\r\n2021-05-05 13:45:18,765 [root] DEBUG: \t |-- CAPE Punisher.yar\r\n2021-05-05 13:45:18,765 [root] DEBUG: \t |-- CAPE PureLoader.yar\r\n2021-05-05 13:45:18,765 [root] DEBUG: \t |-- CAPE Purge.yar\r\n2021-05-05 13:45:18,765 [root] DEBUG: \t |-- CAPE PurpleWave.yar\r\n2021-05-05 13:45:18,765 [root] DEBUG: \t |-- CAPE PyInstaller.yar\r\n2021-05-05 13:45:18,765 [root] DEBUG: \t |-- CAPE Pyrogenic.yar\r\n2021-05-05 13:45:18,765 [root] DEBUG: \t |-- CAPE PythoRAT.yar\r\n2021-05-05 13:45:18,765 [root] DEBUG: \t |-- CAPE QRat.yar\r\n2021-05-05 13:45:18,765 [root] DEBUG: \t |-- CAPE QakBot.yar\r\n2021-05-05 13:45:18,765 [root] DEBUG: \t |-- CAPE QnapCrypt.yar\r\n2021-05-05 13:45:18,765 [root] DEBUG: \t |-- CAPE QuasarRAT.yar\r\n2021-05-05 13:45:18,765 [root] DEBUG: \t |-- CAPE QuasarStealer.yar\r\n2021-05-05 13:45:18,765 [root] DEBUG: \t |-- CAPE QuilClipper.yar\r\n2021-05-05 13:45:18,765 [root] DEBUG: \t |-- CAPE Qulab.yar\r\n2021-05-05 13:45:18,765 [root] DEBUG: \t |-- CAPE RCSession.yar\r\n2021-05-05 13:45:18,765 [root] DEBUG: \t |-- CAPE RDPWrap.yar\r\n2021-05-05 13:45:18,765 [root] DEBUG: \t |-- CAPE REvil.yar\r\n2021-05-05 13:45:18,765 [root] DEBUG: \t |-- CAPE RHttpCtrl.yar\r\n2021-05-05 13:45:18,765 [root] DEBUG: \t |-- CAPE Raccoon.yar\r\n2021-05-05 13:45:18,765 [root] DEBUG: \t |-- CAPE RagnarLocker.yar\r\n2021-05-05 13:45:18,765 [root] DEBUG: \t |-- CAPE Ramnit.yar\r\n2021-05-05 13:45:18,765 [root] DEBUG: \t |-- CAPE RansomEXX.yar\r\n2021-05-05 13:45:18,765 [root] DEBUG: \t |-- CAPE RanumBot.yar\r\n2021-05-05 13:45:18,766 [root] DEBUG: \t |-- CAPE RanzyLocker.yar\r\n2021-05-05 13:45:18,766 [root] DEBUG: \t |-- CAPE Rasftuby.yar\r\n2021-05-05 13:45:18,766 [root] DEBUG: \t |-- CAPE Ratty.yar\r\n2021-05-05 13:45:18,766 [root] DEBUG: \t |-- CAPE RedLeaf.yar\r\n2021-05-05 13:45:18,766 [root] DEBUG: \t |-- CAPE RedLine.yar\r\n2021-05-05 13:45:18,766 [root] DEBUG: \t |-- CAPE Redsip.yar\r\n2021-05-05 13:45:18,766 [root] DEBUG: \t |-- CAPE Remcos.yar\r\n2021-05-05 13:45:18,766 [root] DEBUG: \t |-- CAPE RemoteUtilitiesRAT.yar\r\n2021-05-05 13:45:18,766 [root] DEBUG: \t |-- CAPE Renamer.yar\r\n2021-05-05 13:45:18,766 [root] DEBUG: \t |-- CAPE Responder.yar\r\n2021-05-05 13:45:18,766 [root] DEBUG: \t |-- CAPE Retefe.yar\r\n2021-05-05 13:45:18,766 [root] DEBUG: \t |-- CAPE RevCodeRAT.yar\r\n2021-05-05 13:45:18,766 [root] DEBUG: \t |-- CAPE RevengeRAT.yar\r\n2021-05-05 13:45:18,766 [root] DEBUG: \t |-- CAPE Rietspoof.yar\r\n2021-05-05 13:45:18,766 [root] DEBUG: \t |-- CAPE Robbinhood.yar\r\n2021-05-05 13:45:18,766 [root] DEBUG: \t |-- CAPE RokRat.yar\r\n2021-05-05 13:45:18,766 [root] DEBUG: \t |-- CAPE RunningRAT.yar\r\n2021-05-05 13:45:18,766 [root] DEBUG: \t |-- CAPE Ryuk.yar\r\n2021-05-05 13:45:18,766 [root] DEBUG: \t |-- CAPE S05Kitty.yar\r\n2021-05-05 13:45:18,766 [root] DEBUG: \t |-- CAPE STOP.yar\r\n2021-05-05 13:45:18,766 [root] DEBUG: \t |-- CAPE Sakula.yar\r\n2021-05-05 13:45:18,766 [root] DEBUG: \t |-- CAPE Salfram.yar\r\n2021-05-05 13:45:18,766 [root] DEBUG: \t |-- CAPE Scarab.yar\r\n2021-05-05 13:45:18,766 [root] DEBUG: \t |-- CAPE Sedreco.yar\r\n2021-05-05 13:45:18,766 [root] DEBUG: \t |-- CAPE Seduploader.yar\r\n2021-05-05 13:45:18,767 [root] DEBUG: \t |-- CAPE Sfile.yar\r\n2021-05-05 13:45:18,767 [root] DEBUG: \t |-- CAPE ShadowTech.yar\r\n2021-05-05 13:45:18,767 [root] DEBUG: \t |-- CAPE SlothfulMedia.yar\r\n2021-05-05 13:45:18,767 [root] DEBUG: \t |-- CAPE SmallNet.yar\r\n2021-05-05 13:45:18,767 [root] DEBUG: \t |-- CAPE Sn0wLogger.yar\r\n2021-05-05 13:45:18,767 [root] DEBUG: \t |-- CAPE Snake.yar\r\n2021-05-05 13:45:18,767 [root] DEBUG: \t |-- CAPE Snatch.yar\r\n2021-05-05 13:45:18,767 [root] DEBUG: \t |-- CAPE SoftCNApp.yar\r\n2021-05-05 13:45:18,767 [root] DEBUG: \t |-- CAPE SpyEye.yar\r\n2021-05-05 13:45:18,767 [root] DEBUG: \t |-- CAPE SpyGate.yar\r\n2021-05-05 13:45:18,767 [root] DEBUG: \t |-- CAPE SteamHook.yar\r\n2021-05-05 13:45:18,767 [root] DEBUG: \t |-- CAPE StormKitty.yar\r\n2021-05-05 13:45:18,767 [root] DEBUG: \t |-- CAPE StrongPity.yar\r\n2021-05-05 13:45:18,767 [root] DEBUG: \t |-- CAPE Sub7Nation.yar\r\n2021-05-05 13:45:18,767 [root] DEBUG: \t |-- CAPE SunCrypt.yar\r\n2021-05-05 13:45:18,767 [root] DEBUG: \t |-- CAPE SunShuttle.yar\r\n2021-05-05 13:45:18,767 [root] DEBUG: \t |-- CAPE T5000.yar\r\n2021-05-05 13:45:18,767 [root] DEBUG: \t |-- CAPE TAIDOOR.yar\r\n2021-05-05 13:45:18,767 [root] DEBUG: \t |-- CAPE TClient.yar\r\n2021-05-05 13:45:18,767 [root] DEBUG: \t |-- CAPE TJKeylogger.yar\r\n2021-05-05 13:45:18,767 [root] DEBUG: \t |-- CAPE TManager.yar\r\n2021-05-05 13:45:18,767 [root] DEBUG: \t |-- CAPE TRAT.yar\r\n2021-05-05 13:45:18,767 [root] DEBUG: \t |-- CAPE TSCookie.yar\r\n2021-05-05 13:45:18,767 [root] DEBUG: \t |-- CAPE Taurus.yar\r\n2021-05-05 13:45:18,768 [root] DEBUG: \t |-- CAPE Tefosteal.yar\r\n2021-05-05 13:45:18,768 [root] DEBUG: \t |-- CAPE Thanos.yar\r\n2021-05-05 13:45:18,768 [root] DEBUG: \t |-- CAPE Torisma.yar\r\n2021-05-05 13:45:18,768 [root] DEBUG: \t |-- CAPE TreasureHunter.yar\r\n2021-05-05 13:45:18,768 [root] DEBUG: \t |-- CAPE TrickBot.yar\r\n2021-05-05 13:45:18,768 [root] DEBUG: \t |-- CAPE TrickbotModule.yar\r\n2021-05-05 13:45:18,768 [root] DEBUG: \t |-- CAPE UPX.yar\r\n2021-05-05 13:45:18,768 [root] DEBUG: \t |-- CAPE Ursnif.yar\r\n2021-05-05 13:45:18,768 [root] DEBUG: \t |-- CAPE Ursnif3.yar\r\n2021-05-05 13:45:18,768 [root] DEBUG: \t |-- CAPE VMProtectStub.yar\r\n2021-05-05 13:45:18,768 [root] DEBUG: \t |-- CAPE VSSDestroy.yar\r\n2021-05-05 13:45:18,768 [root] DEBUG: \t |-- CAPE Varenyky.yar\r\n2021-05-05 13:45:18,768 [root] DEBUG: \t |-- CAPE Vertex.yar\r\n2021-05-05 13:45:18,768 [root] DEBUG: \t |-- CAPE Vidar.yar\r\n2021-05-05 13:45:18,768 [root] DEBUG: \t |-- CAPE VirusRat.yar\r\n2021-05-05 13:45:18,768 [root] DEBUG: \t |-- CAPE Vovalex.yar\r\n2021-05-05 13:45:18,768 [root] DEBUG: \t |-- CAPE W1RAT.yar\r\n2021-05-05 13:45:18,768 [root] DEBUG: \t |-- CAPE WSHRAT.yar\r\n2021-05-05 13:45:18,768 [root] DEBUG: \t |-- CAPE WanaCry.yar\r\n2021-05-05 13:45:18,768 [root] DEBUG: \t |-- CAPE Warezov.yar\r\n2021-05-05 13:45:18,768 [root] DEBUG: \t |-- CAPE WarzoneRAT.yar\r\n2021-05-05 13:45:18,768 [root] DEBUG: \t |-- CAPE WellMess.yar\r\n2021-05-05 13:45:18,768 [root] DEBUG: \t |-- CAPE Windows_Credentials_Editor.yar\r\n2021-05-05 13:45:18,768 [root] DEBUG: \t |-- CAPE WobbyChipMBR.yar\r\n2021-05-05 13:45:18,768 [root] DEBUG: \t |-- CAPE XiaoBa.yar\r\n2021-05-05 13:45:18,769 [root] DEBUG: \t |-- CAPE Xorist.yar\r\n2021-05-05 13:45:18,769 [root] DEBUG: \t |-- CAPE XpertRAT.yar\r\n2021-05-05 13:45:18,769 [root] DEBUG: \t |-- CAPE Xtreme.yar\r\n2021-05-05 13:45:18,769 [root] DEBUG: \t |-- CAPE Zegost.yar\r\n2021-05-05 13:45:18,769 [root] DEBUG: \t |-- CAPE Zeoticus.yar\r\n2021-05-05 13:45:18,769 [root] DEBUG: \t |-- CAPE Zeppelin.yar\r\n2021-05-05 13:45:18,769 [root] DEBUG: \t |-- CAPE ZeroT.yar\r\n2021-05-05 13:45:18,769 [root] DEBUG: \t |-- CAPE ZeusPanda.yar\r\n2021-05-05 13:45:18,769 [root] DEBUG: \t |-- CAPE Ziggy.yar\r\n2021-05-05 13:45:18,769 [root] DEBUG: \t |-- CAPE Zloader.yar\r\n2021-05-05 13:45:18,769 [root] DEBUG: \t |-- CAPE adWind.yar\r\n2021-05-05 13:45:18,769 [root] DEBUG: \t |-- CAPE iTranslator.yar\r\n2021-05-05 13:45:18,769 [root] DEBUG: \t |-- CAPE jRat.yar\r\n2021-05-05 13:45:18,769 [root] DEBUG: \t |-- CAPE kiwi_passwords.yar\r\n2021-05-05 13:45:18,769 [root] DEBUG: \t |-- CAPE njRat.yar\r\n2021-05-05 13:45:18,769 [root] DEBUG: \t |-- CAPE tRat.yar\r\n2021-05-05 13:45:18,769 [root] DEBUG: \t |-- CAPE unrecom.yar\r\n2021-05-05 13:45:18,769 [root] DEBUG: \t |-- CAPE xRAT.yar\r\n2021-05-05 13:45:18,827 [lib.cuckoo.core.scheduler] INFO: Using \"virtualbox\" machine manager with max_analysis_count=0, max_machines_count=10, and max_vmstartup_count=5\r\n2021-05-05 13:45:19,041 [modules.machinery.virtualbox] DEBUG: Stopping vm CAPE - Analyzer\r\n2021-05-05 13:45:19,041 [modules.machinery.virtualbox] DEBUG: Getting status for CAPE - Analyzer\r\n2021-05-05 13:45:19,083 [modules.machinery.virtualbox] DEBUG: VBoxManage returns error checking status for machine CAPE - Analyzer: VBoxManage: error: Could not find a registered machine named 'CAPE - Analyzer'\r\nVBoxManage: error: Details: code VBOX_E_OBJECT_NOT_FOUND (0x80bb0001), component VirtualBoxWrap, interface IVirtualBox, callee nsISupports\r\nVBoxManage: error: Context: \"FindMachine(Bstr(VMNameOrUuid).raw(), machine.asOutParam())\" at line 2714 of file VBoxManageInfo.cpp\r\n\r\n2021-05-05 13:45:20,220 [modules.machinery.virtualbox] DEBUG: VBoxManage exited with error powering off the machine\r\n2021-05-05 13:45:20,220 [modules.machinery.virtualbox] DEBUG: Getting status for CAPE - Analyzer\r\n2021-05-05 13:45:20,266 [modules.machinery.virtualbox] DEBUG: VBoxManage returns error checking status for machine CAPE - Analyzer: VBoxManage: error: Could not find a registered machine named 'CAPE - Analyzer'\r\nVBoxManage: error: Details: code VBOX_E_OBJECT_NOT_FOUND (0x80bb0001), component VirtualBoxWrap, interface IVirtualBox, callee nsISupports\r\nVBoxManage: error: Context: \"FindMachine(Bstr(VMNameOrUuid).raw(), machine.asOutParam())\" at line 2714 of file VBoxManageInfo.cpp\r\n\r\n2021-05-05 13:45:20,285 [lib.cuckoo.common.abstracts] DEBUG: Waiting 0 cuckooseconds for machine CAPE - Analyzer to switch to status ['poweroff', 'aborted', 'saved']\r\n2021-05-05 13:45:21,286 [modules.machinery.virtualbox] DEBUG: Getting status for CAPE - Analyzer\r\n2021-05-05 13:45:21,333 [modules.machinery.virtualbox] DEBUG: VBoxManage returns error checking status for machine CAPE - Analyzer: VBoxManage: error: Could not find a registered machine named 'CAPE - Analyzer'\r\nVBoxManage: error: Details: code VBOX_E_OBJECT_NOT_FOUND (0x80bb0001), component VirtualBoxWrap, interface IVirtualBox, callee nsISupports\r\nVBoxManage: error: Context: \"FindMachine(Bstr(VMNameOrUuid).raw(), machine.asOutParam())\" at line 2714 of file VBoxManageInfo.cpp\r\n```\r\nThe original name of the machine was \"CAPE - Analyzer\" then I renamed it to \"win7\", modifying the label in virtualbox.conf with win7 or CAPE - Analyzer gives the same error.\r\n\r\n\nComment: hello, huge thanks for using code block <3\r\nthat is your vbox problem, i would suggest google that or search on virtualbox forum\r\n\r\n```\r\nVBoxManage: error: Details: code VBOX_E_OBJECT_NOT_FOUND (0x80bb0001), component VirtualBoxWrap, interface IVirtualBox, callee nsISupports\r\nVBoxManage: error: Context: \"FindMachine(Bstr(VMNameOrUuid).raw(), machine.asOutParam())\" at line 2714 of file VBoxManageInfo.cpp\r\n```\r\n\nComment: Remember the only recommended or supported hypervisor is KVM - we recommend you scrap the vbox and use that instead,\nComment: Thanks to everyone for the answers, I figured out that during the installation another virtualbox has been installed and I created the machine on another one, my fault. I will try KVM.\nComment: check readme, you have script to deploy everything, just replace <WOOT> with something that you like you have some examples inside\nComment: Yep the kvm-qemu script is gold dust. The most difficult to detect hypervisor for malware by far, as evidenced by capesandbox.com\nComment: Fully converted to KVM, thank you for your suggestion, analysis works, there is only one remaining problem, the html report isn't generated, ```[reporthtml]``` is enabled in ```reporting.conf```\nComment: that module that is supported by community not by core devs\nComment: but check your output from processing there you can find why it not generated as it was fixed by 2 guys recently\nComment: Thank you I will check\nComment: Sorry for still bothering, I was reinstalling everything to make a tutorial more detailed than the one I have read, unfortunately I got this error while running the .sh:\r\n```\r\nFile \"utils/community.py\", line 21, in <module>\r\n    import lib.cuckoo.common.colors as colors\r\nModuleNotFoundError: No module named 'lib.cuckoo'\r\n```\r\nI tried to fix adding the directory to PYTHONPATH, but nothing\nComment: no, valid issues are always welcome :) \r\nyou should run that from inside of utils folder, try it and let me know\nComment: Still can't find the module, seems very strange\nComment: This is the output from ```sys.path``` after the ```.append()```:\r\n```['/opt/CAPEv2/utils', '/usr/lib/python38.zip', '/usr/lib/python3.8', '/usr/lib/python3.8/lib-dynload', '/usr/local/lib/python3.8/dist-packages', '/usr/lib/python3/dist-packages', '/opt/CAPEv2/utils/..']```\nComment: what about `ls lib/cuckoo/common/colors.py` from CAPEv2 folder\nComment: The file exists and run without problems.\nComment: show me the full output of this `cd /opt/CAPEv2/utils && python3 community.py -h`\nComment: ```\r\nTraceback (most recent call last):\r\n  File \"community.py\", line 21, in <module>\r\n    import lib.cuckoo.common.colors as colors\r\nModuleNotFoundError: No module named 'lib.cuckoo'\r\n```\nComment: If can help you, here is the tree: https://pastebin.com/yb4BvVVN\nComment: ```\r\n/opt/CAPEv2/utils$ python3 community.py -h\r\nusage: community.py [-h] [-a] [-e] [-s] [-p] [-m] [-r] [-an] [-data] [-f] [-w] [-b BRANCH] [--file FILE] [-cr]\r\n\r\noptional arguments:\r\n  -h, --help            show this help message and exit\r\n  -a, --all             Download everything\r\n  -e, --feeds           Download CAPE feed modules\r\n  -s, --signatures      Download CAPE signatures\r\n  -p, --processing      Download processing modules\r\n  -m, --machinery       Download machine managers\r\n  -r, --reporting       Download reporting modules\r\n  -an, --analyzer       Download analyzer modules/binaries/etc\r\n  -data, --data         Download data items\r\n  -f, --force           Install files without confirmation\r\n  -w, --rewrite         Rewrite existing files\r\n  -b BRANCH, --branch BRANCH\r\n                        Specify a different branch\r\n  --file FILE           Specify a local copy of a community .zip file\r\n  -cr, --capa-rules     Download capa rules\r\n```\r\n\r\ntest tested, works just fine, so my suggestion is to clone repo again and copy configs over to new folder, as you have messed something, and as it works here i can't help more sorry\nComment: Don't worry, thank you very much for everything\nComment: I also had a similar error with manage.py today. I think settings.py could not find lib.cuckoo or so. I don't know if this is similar to your error but what worked for me was pip3 install -r requirements.txt (consider sudo). However, the error appeared after I updated libvirt and qemu.\nComment: o_O, hm I have upgraded them too, but for my luck i didn't get that, i think my dev server is just bullet proof xD, thanks for tip @ClaudioWayne \nComment: @ClaudioWayne This problem started exactly from manage.py that could not find lib.cuckoo, I copied the config and reinstalled everything, but it just got worst, I will try with requirements\nComment: After setting again the config, cuckoo.py seems working without any problem, (for the webserver) tried with requirements but nothing\nComment: ![image](https://user-images.githubusercontent.com/52568048/117334699-9a308600-ae9a-11eb-9a3f-e1bcb91adeaa.png)\r\n![image](https://user-images.githubusercontent.com/52568048/117335390-630ea480-ae9b-11eb-8e7a-32409b4276cf.png)\r\n\r\nCopied every module/folder in CAPEv2 and runned manage.py.... desperate times call for drastic measures lol\r\n\nComment: copied where?\nComment: In CAPEv2, where you can find cuckoo.py, I copied every not found module and also manage.py.\r\n\r\nI also tried to replicate the problem with some test files and folders, after adding to sys.path the main folder (in this case as the CAPEv2 folder), everything works, so I really don't know why isn't working with CAPE.\r\n\r\nExample of the test:\r\n```\r\ntest [As CAPEv2]\r\n    \u251c\u2500\u2500 testing\r\n    \u2502\u00a0\u00a0 \u251c\u2500\u2500 anotherone\r\n    \u2502\u00a0\u00a0 \u2502\u00a0\u00a0 \u251c\u2500\u2500 file.py\r\n    \u2502\u00a0\u00a0 \u2502\u00a0\u00a0 \u2514\u2500\u2500 __pycache__\r\n    \u2502\u00a0\u00a0 \u2502\u00a0\u00a0     \u2514\u2500\u2500 file.cpython-38.pyc\r\n    \u2502\u00a0\u00a0 \u251c\u2500\u2500 __ini__.py\r\n    \u2502\u00a0\u00a0 \u251c\u2500\u2500 __init__.py\r\n    \u2502\u00a0\u00a0 \u251c\u2500\u2500 main.py\r\n    \u2502\u00a0\u00a0 \u2514\u2500\u2500 __pycache__\r\n    \u2502\u00a0\u00a0     \u251c\u2500\u2500 __init__.cpython-38.pyc\r\n    \u2502\u00a0\u00a0     \u2514\u2500\u2500 main.cpython-38.pyc\r\n    \u251c\u2500\u2500 testing2\r\n    \u2502\u00a0\u00a0 \u2514\u2500\u2500 main2.py\r\n    \u2514\u2500\u2500 test.py\r\n\r\n```\r\n\r\nmain2.py\r\n```\r\nimport sys\r\n\r\nsys.path.append(\"/opt/test/\")\r\nprint(sys.path)\r\nfrom testing.anotherone import file\r\nprint(\"Hello\")\r\n```\r\nEverything works, so I don't know why for CAPE isn't working adding ```/opt/CAPEv2``` to sys.path\nComment: did you check the structure of this git repo? is the same as in your folder\r\n`CAPEv2/cuckoo.py`\r\nhow did you cloned the repo?\nComment: i suggest you read this script https://github.com/doomedraven/Tools/blob/master/Sandbox/cape2.sh#L940\nComment: I have read the script, it was working every time, I really don't know what happened this time, maybe I messed up something\nComment: strange, the problem is that as i can't reproduce that on my side i can't help %) so if you figurate what it is let us know so maybe we can improve something\nComment: As I said, I fixed everything moving the modules in the main folder, but I still can't understand what the problem is, it's not a Python problem because I did this test (see above) and everything is fine, I'm confused as you, yesterday everything was working perfectly, today I thought about writing a little tutorial, to show the installation I did again the same stuff but these errors showed up, but I'm sure it's not a problem of CAPE\nComment: strange, well lets see if that will happen to someone else and then we probably will need to try install in a vm to try to spot that, but till than we gonna focus on features ;) \nComment: I reinstalled Ubuntu, started the script, no errors, when I started cuckoo.py showed some modules not installed (and also manage.py showed some Django modules not installed), I tried to fix with requirements but didn't work, so I installed everything manually, aside with the modules missing there was also this:\r\n```\r\nyou have enabled webgui but mongo isn't working, see mongodb manual for correct installation and configuration\r\n```\r\nwhich I fixed following this: https://docs.mongodb.com/manual/tutorial/install-mongodb-on-ubuntu/\r\n\r\nNow is impossible I messed up something with Ubuntu because is a fresh install, maybe the 20.10 has some problems\nComment: 20.10 isn't supported!, only 20.04 as LTS version \nComment: please read README! https://github.com/kevoreilly/CAPEv2#installation-recommendations-and-scripts-for-optimal-performance\nComment: I can't beliveve I didn't read that, what a shame\nComment: dude you wasted a lot of our time! \nComment: I wrote in the first post I was using Ubuntu 20.10\r\n\nComment: well going against devs suggestions isn't a good way to start with new project, anyway don't get me wrong, im unsubscribing from this thread as i don't want to waste anymore my time on fake issues due to people who not read few lines when starting\nComment: I just went straightforward with the script installation line, everyone make mistakes, I'm sorry I wasted your time.\r\n\r\nAnyway nothing explain that the first time everything was working perfectly, so I assumed there were no mistakes on my side",
+  "Title: Update antivirus.html\nBody: \nComment: Thanks",
+  "Title: InjectDllViaThread: RtlCreateUserThread injection failed: The system could not find the environment option that was entered.\nBody: # Summary\r\n\r\nAfter updating to the latest version, I'm receiving the following error for all submissions.  It appears that the cuckoo monitor DLL is not being injected successfully.\r\n\r\n**InjectDllViaThread: RtlCreateUserThread injection failed: The system could not find the environment option that was entered.**\r\n\r\n## Failure Logs\r\n\r\n```\r\n2020-10-24 02:01:21,208 [root] INFO: Date set to: 20210427T21:38:56, timeout set to: 400\r\n2021-04-27 21:38:56,656 [root] DEBUG: Starting analyzer from: C:\\tmpbt47heu_\r\n2021-04-27 21:38:56,656 [root] DEBUG: Storing results at: C:\\jfIpHEsqkv\r\n2021-04-27 21:38:56,656 [root] DEBUG: Pipe server name: \\\\.\\PIPE\\YtfxnZBQ\r\n2021-04-27 21:38:56,656 [root] DEBUG: Python path: C:\\Program Files (x86)\\XXXXXX\r\n2021-04-27 21:38:56,656 [root] INFO: Analysis package \"exe\" has been specified.\r\n2021-04-27 21:38:56,656 [root] DEBUG: Importing analysis package \"exe\"...\r\n2021-04-27 21:38:56,656 [root] DEBUG: Initializing analysis package \"exe\"...\r\n2021-04-27 21:38:56,656 [root] INFO: Analyzer: Package modules.packages.exe does not specify a DLL option\r\n2021-04-27 21:38:56,656 [root] INFO: Analyzer: Package modules.packages.exe does not specify a DLL_64 option\r\n2021-04-27 21:38:56,656 [root] INFO: Analyzer: Package modules.packages.exe does not specify a loader option\r\n2021-04-27 21:38:56,656 [root] INFO: Analyzer: Package modules.packages.exe does not specify a loader_64 option\r\n2021-04-27 21:38:56,921 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.browser\"...\r\n2021-04-27 21:38:56,921 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.curtain\"...\r\n2021-04-27 21:38:56,953 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.digisig\"...\r\n2021-04-27 21:38:57,125 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.disguise\"...\r\n2021-04-27 21:38:57,156 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.human\"...\r\n2021-04-27 21:38:57,203 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.procmon\"...\r\n2021-04-27 21:38:57,203 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.screenshots\"...\r\n2021-04-27 21:38:57,218 [modules.auxiliary.screenshots] DEBUG: Importing 'time'\r\n2021-04-27 21:38:57,218 [modules.auxiliary.screenshots] DEBUG: Importing 'StringIO'\r\n2021-04-27 21:38:57,218 [modules.auxiliary.screenshots] DEBUG: Importing 'Thread'\r\n2021-04-27 21:38:57,218 [modules.auxiliary.screenshots] DEBUG: Importing 'Auxiliary'\r\n2021-04-27 21:38:57,218 [modules.auxiliary.screenshots] DEBUG: Importing 'NetlogFile'\r\n2021-04-27 21:38:57,218 [modules.auxiliary.screenshots] DEBUG: Importing 'Screenshot'\r\n2021-04-27 21:38:57,218 [lib.api.screenshot] DEBUG: Importing 'math'\r\n2021-04-27 21:38:57,218 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageChops'\r\n2021-04-27 21:38:58,312 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageGrab'\r\n2021-04-27 21:38:58,359 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageDraw'\r\n2021-04-27 21:38:58,437 [modules.auxiliary.screenshots] DEBUG: Imports OK\r\n2021-04-27 21:38:58,437 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.sysmon\"...\r\n2021-04-27 21:38:58,453 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.tlsdump\"...\r\n2021-04-27 21:38:58,453 [root] DEBUG: Importing auxiliary module \"modules.auxiliary.usage\"...\r\n2021-04-27 21:38:58,468 [root] DEBUG: Initializing auxiliary module \"Browser\"...\r\n2021-04-27 21:38:58,468 [root] DEBUG: Started auxiliary module Browser\r\n2021-04-27 21:38:58,484 [root] DEBUG: Initializing auxiliary module \"Curtain\"...\r\n2021-04-27 21:38:58,531 [root] DEBUG: Started auxiliary module Curtain\r\n2021-04-27 21:38:58,531 [root] DEBUG: Initializing auxiliary module \"DigiSig\"...\r\n2021-04-27 21:38:58,531 [modules.auxiliary.digisig] DEBUG: Checking for a digital signature.\r\n2021-04-27 21:39:00,234 [modules.auxiliary.digisig] DEBUG: File is not signed.\r\n2021-04-27 21:39:00,234 [modules.auxiliary.digisig] INFO: Uploading signature results to aux/DigiSig.json\r\n2021-04-27 21:39:00,296 [root] DEBUG: Started auxiliary module DigiSig\r\n2021-04-27 21:39:00,296 [root] DEBUG: Initializing auxiliary module \"Disguise\"...\r\n2021-04-27 21:39:00,312 [modules.auxiliary.disguise] INFO: Disguising GUID to 0ff161af-13f5-4346-b2a5-09b274d0fa05\r\n2021-04-27 21:39:00,328 [root] DEBUG: Started auxiliary module Disguise\r\n2021-04-27 21:39:00,328 [root] DEBUG: Initializing auxiliary module \"Human\"...\r\n2021-04-27 21:39:00,328 [root] DEBUG: Started auxiliary module Human\r\n2021-04-27 21:39:00,328 [root] DEBUG: Initializing auxiliary module \"Procmon\"...\r\n2021-04-27 21:39:00,343 [root] DEBUG: Started auxiliary module Procmon\r\n2021-04-27 21:39:00,343 [root] DEBUG: Initializing auxiliary module \"Screenshots\"...\r\n2021-04-27 21:39:00,359 [root] DEBUG: Started auxiliary module Screenshots\r\n2021-04-27 21:39:00,359 [root] DEBUG: Initializing auxiliary module \"Sysmon\"...\r\n2021-04-27 21:39:00,390 [root] DEBUG: Started auxiliary module Sysmon\r\n2021-04-27 21:39:00,390 [root] DEBUG: Initializing auxiliary module \"TLSDumpMasterSecrets\"...\r\n2021-04-27 21:39:00,406 [modules.auxiliary.tlsdump] INFO: lsass.exe found, pid XXX\r\n2021-04-27 21:39:00,421 [lib.api.process] INFO: Monitor config for process XXX: C:\\tmpbt47heu_\\dll\\532.ini\r\n2021-04-27 21:39:03,500 [lib.api.process] INFO: Option 'procmemdump' with value '1' sent to monitor\r\n2021-04-27 21:39:03,500 [lib.api.process] INFO: Option 'import_reconstruction' with value '1' sent to monitor\r\n2021-04-27 21:39:03,500 [lib.api.process] INFO: Option 'tlsdump' with value '1' sent to monitor\r\n2021-04-27 21:39:03,500 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmpbt47heu_\\dll\\TYiKextF.dll, loader C:\\tmpbt47heu_\\bin\\wicLAIdL.exe\r\n2021-04-27 21:39:03,734 [root] DEBUG: Loader: Successfully loaded pipe name \\\\.\\PIPE\\YtfxnZBQ.\r\n2021-04-27 21:39:03,750 [root] DEBUG: Loader: Injecting process 532 (thread 0) with C:\\tmpbt47heu_\\dll\\TYiKextF.dll.\r\n2021-04-27 21:39:04,625 [root] DEBUG: Python path set to 'C:\\Program Files (x86)\\XXXXXX'.\r\n2021-04-27 21:39:04,625 [root] DEBUG: Full process memory dumps enabled.\r\n2021-04-27 21:39:04,640 [root] DEBUG: Import reconstruction of process dumps enabled.\r\n2021-04-27 21:39:04,640 [root] DEBUG: TLS secret dump mode enabled.\r\n2021-04-27 21:39:04,640 [root] DEBUG: Dropped file limit defaulting to 100.\r\n2021-04-27 21:39:04,671 [root] DEBUG: CAPE initialised: 64-bit monitor loaded in process XXX at 0x000007FEF29A0000, thread 1704, image base 0x00000000FFF60000, stack from 0x0000000002024000-0x0000000002030000\r\n2021-04-27 21:39:04,671 [root] DEBUG: Commandline: C:\\Windows\\sysnative\\lsass.exe\r\n2021-04-27 21:39:04,765 [root] INFO: Loaded monitor into process with pid 532\r\n2021-04-27 21:39:04,765 [root] DEBUG: Error 203 (0xcb) - InjectDllViaThread: RtlCreateUserThread injection failed: The system could not find the environment option that was entered.\r\n2021-04-27 21:39:04,781 [root] DEBUG: Successfully injected DLL C:\\tmpbt47heu_\\dll\\TYiKextF.dll.\r\n2021-04-27 21:39:05,218 [root] DEBUG: Started auxiliary module TLSDumpMasterSecrets\r\n2021-04-27 21:39:05,218 [root] DEBUG: Initializing auxiliary module \"Usage\"...\r\n2021-04-27 21:39:05,234 [root] DEBUG: Started auxiliary module Usage\r\n2021-04-27 21:39:12,734 [root] INFO: Restarting WMI Service\r\n2021-04-27 21:39:15,234 [lib.api.process] INFO: Successfully executed process from path \"C:\\Users\\XXXXX\\AppData\\Local\\Temp\\xxxxxxxx.exe\" with arguments \"\" with pid 2484\r\n```\r\n\r\n\nComment: This is actually a buggy error message - the injection is working as can be seen by the fact that the monitor is subsequently initialised. Anyway I've been meaning to fix this for ages so I just pushed a fix - please update and try again.\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/commit/52a15869a1ed5574a4ddd0c525848d76a416da6c\nComment: @kevoreilly I see.  I think my issue is related to something else.  Will go ahead and close this!  Thanks for looking into it.\nComment: My pleasure - let me know if you can supply more info about your issue maybe I can spot something else.",
+  "Title: pymongo depricated save/update\nBody: ",
+  "Title: cape.service doesn't work, Will not debug\nBody: ## This is open source and friendly with __free __ support!\r\n* Free support from doomedraven has ended and there is no whiskey or support. He updated the docs for something :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions yourself before submitting your question.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected behavior\r\n\r\nLaunch cape.service\r\n\r\n# Current behavior\r\n\r\nOnly cape.service doesn't work\r\n(mongodb,postgresql,cape-rooter,cape-processor,cape-web is OK)\r\n\r\n# Failure information (in case of bug)\r\n\r\n## Procedure to reproduce\r\n\r\n1. Run cape with `systemctl start cape`.\r\n2. The cape is not working. `python cuckoo.py -d` does not launch cape.\r\n3. The error log (cuckoo.log, process.log, syslog ...) doesn't write anything in particular ...\r\n\r\n## Environment\r\n\r\nHost machine: ubuntu 20.04.1 LTS Virtual machine on ESXi\r\nGuest machine: Using VirtualBox Windows 10 installed python3.8 (32bit)\r\n\r\n## Failure log\r\ncuckoo.log is `pywin32 is not installed (only is required if you want to use MS Excel) `only\r\n\r\n```\r\n(venv-cape) root@cape:/opt/CAPEv2# python cuckoo.py\r\n\r\n                               ),-.     /\r\n  Cuckoo Sandbox              <(a  `---','\r\n     no chance for malwares!  ( `-, ._> )\r\n                               ) _>.___/\r\n                                   _/\r\n\r\n Cuckoo Sandbox 2.2-CAPE\r\n www.cuckoosandbox.org\r\n Copyright (c) 2010-2015\r\n\r\n CAPE: Config and Payload Extraction\r\n github.com/kevoreilly/CAPEv2\r\n\r\npywin32 is not installed (only is required if you want to use MS Excel)\r\n(venv-cape) root@cape:/opt/CAPEv2#\r\n```\nComment: easy, you started that as root and that breaks everything, docs says never run that as root!\r\n+ use `-d` for more output but you will now need to fix a lot of permissions\nComment: Thank you!\r\nIt was a problem with my virtualbox.conf\u2026\nComment: one small suggestion, coming to open source and saying \"won't debug\" == \"don't expect help from devs\"",
+  "Title: Updated DLL execution package with the ability to run multiple exports at once\nBody: This solves #238 too.\r\n\r\nAn alternative solution that statically enumerates the exported function names (e.g. via pefile) unfortunately will not work, as there are some packed/crypted DLL samples where the decryption code resides in the DLL initialization code, and the real export names won't be visible until the DLL is loaded and the decryption/unpacking code runs.\r\n\r\nThis solution here is backward compatible with the original DLL package, and it accepts the same package parameters, but it adds support for numeric ranges in the \"function=\" option, that can be defined in any of the following formats: `1-8`, `1..8`, `#1-8`, `#1..8`, `#1-#8`, `#1..#8` (i.e. two numbers with either a `-` or `..` in between, and each number prefixed with an optional `#`). All these would run the first 8 exported function by their ordinal numbers via a for loop using cmd.exe, running each of them with rundll32.exe (so if any of the exports do not exist, or crashes it won't affect the others).\r\n\r\nThe default setting still defaults to run only the first export (`#1`), but that's easy to change by updating the default value on line https://github.com/kevoreilly/CAPEv2/pull/482/files#diff-06920ac50c46d750409ec79adc8695cf8fd32c992fe61f77251f6a9780cb2d74R21\nComment: thank you\nComment: This is great - thank you Sandor!\nComment: Elegant solution - thank you for the work!",
+  "Title: CAPA v1.6.2 failed, get_extractor() missing 1 required positional argument: 'backend' \nBody: # Prerequisites\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\n[CAPA v1.6.2](https://github.com/fireeye/capa/releases/tag/v1.6.2) integrations should not failed.\r\n\r\n# Current Behavior\r\n\r\n[CAPA v1.6.2](https://github.com/fireeye/capa/releases/tag/v1.6.2) integrations failed. No CAPA output.\r\n\r\n# Failure Information (for bugs)\r\n\r\nThe last working version of CAPA is [v1.5.1](https://github.com/fireeye/capa/releases/tag/v1.5.1) which `get_extractor()` doesn't have `backend` parameter. See https://github.com/fireeye/capa/blob/v1.5.1/capa/main.py#L322.\r\n\r\nBut the latest version of CAPA is now require `backend` parameter for `get_extractor()`. See https://github.com/fireeye/capa/blob/v1.6.2/capa/main.py#L340.\r\n\r\nSo, I think this line is causing the problem, but I don't know how to fix it https://github.com/kevoreilly/CAPEv2/blob/72e06a5dbf532342fb1c12d865023f1fad5bbcb0/lib/cuckoo/common/integrations/capa.py#L220.\r\n\r\n## Steps to Reproduce\r\n\r\n1. Use [CAPA v1.6.2](https://github.com/fireeye/capa/releases/tag/v1.6.2).\r\n\r\n## Context\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | `72e06a5dbf532342fb1c12d865023f1fad5bbcb0`\r\n| OS version       | Ubuntu 20.04\r\n\r\n## Failure Logs\r\n\r\nLogs for `cape-processor.service`:\r\n```\r\npywin32 is not installed (only is required if you want to use MS Excel)\r\n2021-04-20 05:53:56,570 [root] INFO: Processing analysis data\r\n2021-04-20 06:00:32,657 [root] INFO: Processing analysis data for Task #1\r\n2021-04-20 06:00:32,691 [lib.cuckoo.common.integrations.capa] ERROR: get_extractor() missing 1 required po\r\nsitional argument: 'backend'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/common/integrations/capa.py\", line 220, in flare_capa_details\r\n    extractor = capa.main.get_extractor(file_path, \"auto\", disable_progress=True)\r\nTypeError: get_extractor() missing 1 required positional argument: 'backend'\r\n```\r\n\nComment: thanks pushed fix, weird how it get missed as that was added 3w ago https://github.com/kevoreilly/CAPEv2/commit/ad9d702cd5f358ff34da26f5f3e10b6a4f004320. do git pull and testa again please\nComment: Yup, tested working. thanks\nComment: thanks for headups",
+  "Title: Update views.py\nBody: Fix error handling logic\nComment: thanks",
+  "Title: Empty report.json file\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ x] I am running the latest version\r\n- [ x] I checked the documentation and found no answer\r\n- [ x] I checked to make sure that this issue has not already been filed\r\n- [ x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nOnce the analysis is complete I am expecting to have report.json under reports folder of the analysis.\r\nThis happened just after having updated the framework, before was working correctly.\r\n\r\n# Current Behavior\r\n\r\nreport.json is always empty, despite I can clearly seem the complete analysis in the web server. Potentially there is some flaw dumping the report in the json format\r\n\r\n\r\n\r\n## Steps to Reproduce\r\n\r\nJust submit a file for analysis\r\n\r\n## Context\r\n\r\n\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | commit 15323c174366f29d2f2287e8beedc32adb78eab6\r\n\r\n| OS version       | Ubuntu 20.04\r\n\r\n\r\n\nComment: It is disabled on capesandbox.com.\nComment: I am running CAPEv2 locally\r\n\nComment: As web server I mean the local CAPE server run by `manage.py runserver` \nComment: hello, do `git pull` and reprocess one report with `process.py -r ID`\nComment: Still the same result. I have the full report in the mongodb database, under database `cuckoo -> analysis` but the generated `report.json` is empty. So most likely I see the whole analysis in the local website because it is generated via `modules/reporting/mongodb.py`\nComment: Then use process.py -d -r ID and pay attention to the output to spot the\nproblem\n\nEl lun., 12 abr. 2021 22:53, 3ntr0phy ***@***.***> escribi\u00f3:\n\n> Still the same result. I have the full report in the mongodb database,\n> under database cuckoo -> analysis but the generated report.json is empty.\n> So most likely I see the whole analysis in the local website because it is\n> generated via modules/reporting/mongodb.py\n>\n> \u2014\n> You are receiving this because you commented.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/479#issuecomment-818229842>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH34RAAFMH5FSXUE6QLLTINMV7ANCNFSM42ZZTXSA>\n> .\n>\n\nComment: fixed, just tested, let us know if you still have any problem\r\n\r\n```\r\n[lib.cuckoo.core.plugins] WARNING: The reporting module \"JsonDump\" returned the following error: Failed to generate JSON report: __init__() got an unexpected keyword argument 'reject_bytes'\r\n```\r\n\r\nfixed that, that is due to mix between ujson and simplejson, ujson is faster but giving problems, please next time post log from process in debug mode (`-d`) as the error is there",
+  "Title: Update misp.py\nBody: ",
+  "Title: Online version - Some APIs are disabled\nBody: Hello !\r\n\r\nI'm trying to interact with the online version to do some hash check via the APIs but I'm failing to get all the informations I can get by just navigating through the Web UI.\r\n\r\nIs there a way for me to enable some of these APIs ? Do I need to request it somewhere ?\r\n\r\nThanks.\nComment: hello well is disabled for some reason, but with lack of details what you trying to do we can't help you, so try to elaborate better your issue\nComment: Well, I'm trying to get the same information about a submitted file as the one we can get via the web UI.\r\nSo let's imagine I would like to get the informations available here : https://capesandbox.com/analysis/132775/\r\n\r\nI guess the endpoint I need to call (not too sure about it is : \"/apiv2/tasks/get/report/[task id]/[format]/\" (but this one's disabled) since other that are activated doesn't give any more informations (like \"/apiv2/tasks/search/sha256/[sha256 hash]/\"). \r\n\r\nThe final goal is to create an Assemblyline service which will interact with the API (with a local instance of CAPE afterwards)\nComment: well `reports` api is disabled due to scrapping and delays on processing so that won't be activated\r\nabout search isn't disabled\r\n```\r\nGET /apiv2/tasks/search/sha256/2084b62c05ac13dfa48fde86f237473d35f3f169c030b829ceb49f3005b6451c/\r\nHTTP 200 OK\r\nAllow: GET, OPTIONS\r\nContent-Type: application/json\r\nVary: Accept\r\n\r\n{\r\n    \"error\": false,\r\n    \"data\": [\r\n        {\r\n            \"id\": 132775,\r\n            \"target\": \"IMG_767893434432.scr\",\r\n            \"category\": \"file\",\r\n            \"cape\": \"\",\r\n            \"timeout\": 0,\r\n            \"priority\": 1,\r\n            \"custom\": \"\",\r\n            \"machine\": \"win7x64_5\",\r\n            \"package\": \"\",\r\n            \"route\": \"USA - Chicago\",\r\n            \"tags_tasks\": null,\r\n            \"options\": \"\",\r\n            \"platform\": \"windows\",\r\n            \"memory\": false,\r\n            \"enforce_timeout\": false,\r\n            \"clock\": \"2021-04-07 06:15:28\",\r\n            \"added_on\": \"2021-04-07 06:15:28\",\r\n            \"started_on\": \"2021-04-07 06:29:55\",\r\n            \"completed_on\": \"2021-04-07 06:37:23\",\r\n            \"status\": \"reported\",\r\n            \"dropped_files\": null,\r\n            \"running_processes\": null,\r\n            \"api_calls\": null,\r\n            \"domains\": null,\r\n            \"signatures_total\": null,\r\n            \"signatures_alert\": null,\r\n            \"files_written\": null,\r\n            \"registry_keys_modified\": null,\r\n            \"crash_issues\": null,\r\n            \"anti_issues\": null,\r\n            \"analysis_started_on\": null,\r\n            \"analysis_finished_on\": null,\r\n            \"processing_started_on\": null,\r\n            \"processing_finished_on\": null,\r\n            \"signatures_started_on\": null,\r\n            \"signatures_finished_on\": null,\r\n            \"reporting_started_on\": null,\r\n            \"reporting_finished_on\": null,\r\n            \"timedout\": false,\r\n            \"sample_id\": 133127,\r\n            \"machine_id\": 463,\r\n            \"shrike_url\": null,\r\n            \"shrike_refer\": null,\r\n            \"shrike_msg\": null,\r\n            \"shrike_sid\": null,\r\n            \"parent_id\": null,\r\n            \"tlp\": null,\r\n            \"user_id\": 12,\r\n            \"tags\": []\r\n        }\r\n    ]\r\n}\r\n```\nComment: Ok I knew the search one was enabled, but I was wondering if there was a way to enable endpoints that are disabled but it seems it's not possible ! Thanks for the clarification\nComment: you are welcome, you can enable them on your instance ;) ",
+  "Title: Credentials error using physical machinery\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ ] I am running the latest version\r\n- [ ] I checked the documentation and found no answer\r\n- [ ] I checked to make sure that this issue has not already been filed\r\n- [ ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ ] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nNormal execution of cuckoo\r\n\r\n# Current Behavior\r\n\r\nRoot error when using the physical machinery\r\n\r\n# Failure Information (for bugs)\r\n\r\nI get the following error when launching cuckoo:\r\n\r\n[root] CRITICAL: CuckooCriticalError: Physical machine credentials are missing, please add it to the Physical machinery configuration file. \r\n\r\nPrevious to this message the only message that is printed is: \r\n\r\n[lib.cuckoo.core.scheduler] INFO: Using \"physical\" machine manager with max_analysis ....\r\n\r\nI have been reading both the issues here and on cuckoo github an didn\u00b4t found anything. This error seems pretty weird to me since the physical.conf file does not contain anything related with credentials, and i just filled all the entries that are explained there\r\n\r\n## Steps to Reproduce\r\n\r\nSet \"machinery\" to \"physical\" in the cuckoo.conf\r\nSet the appropiate settings of the physical.conf\r\npython3 cuckoo.py\r\n\r\n## Context\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | 2004374\r\n| OS version       | Ubuntu 18.04\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: buenas, that probably due to the FOG update? which version of FOG do you use? did you try to comment out that code ? that could be the issue as i see it uses apikey and creds so creds could be from old fog versions\r\n```\r\n# TODO This should be moved to a per-machine thing.\r\n        if not self.options.physical.user or not self.options.physical.password:\r\n            raise CuckooCriticalError(\r\n                \"Physical machine credentials are missing, please add it to \"\r\n                \"the Physical machinery configuration file.\"\r\n            )\r\n```\r\nhttps://mariohenkel.medium.com/using-cape-sandbox-and-fog-to-analyze-malware-on-physical-machines-4dda328d4e2c\r\n\nComment: Buenas @doomedraven\r\n\r\nI saw that code and instead of commenting it out i just added a random user and password to the pyhisical.conf file i didn\u00b4t close the issue since i wanted to full test the physical machinery in case i found another problem. And actually i encountered some further problems.\r\n\r\nWhat i am experiencing right know is the following: <b>the analysis completes successfully but the machine never reboots</b>. I have been investigating a while and this is what i what I have concluded:\r\n\r\n- Having a look into the source code i spotted that the function in charge of generating a task to reboot the physiscal machine is  the <b>stop function</b> of the /modules/machinery/physical.py. Apparently this should be called by the scheduller.py on line 354. I have tried to set a breakpoint there but it is never reached which drives me crazy since the code flow seems pretty straightforward.\r\n- Moreover looking at the messages the agent.py prints on the analysis machine i could see that on the early steps of the analysis the WMI (Windows Management Instrumentation) service is stopped. The problem is that the FOG client service depends on this service and hece FOG client is stopped at the beggining of the analysis, and at the end it is not restarted. As i have seen, disabeling the WMI is a technique to avoid malware code to detect it is on a sandbox but actually the WMI restarts automatically after being stopped. I have been trying to spot the point in the source code where this service is disbled but i had no luck.\r\n\r\nSo as you can see neither the task of rebooting is generated nor the FOG client is ready for recieving one. Could you guide me a little regarding these issues.\r\n\r\nFrom the beginning i have followed the Mario Henkel medium post you sent me, apparently he didn\u00b4t had any of these problems i am wondering if he used windows 10 (i am using win7) for the analysis machine and that makes things easier.\r\n\r\nUn saludo.\nComment: hm pretty interesting\r\n\r\n1. so that user/password things can be removed no?\r\n2. interesting why it can't get there, our problem that nobody of us having FOG setup to be able to test that\r\n3. about WMI well it stops and starts it so shouldn't fully break FOG client\r\n4. can you please tell me which fog version do you use?\nComment: I do think we have seen this issue before - I recall discussing it with Mario - the issue is that net stop <service> followed by net start <service> does not restart dependent services which is the problem here I think. We definitely do need the WMI service to be running for a load of stuff to work properly like office docs, but the current method of restarting causes this problem.\r\n\r\nI looked into a way of restarting dependent services via the command line and was amazed that such a solution appears not to exist - I do not mean powershell or anything like that as we do not use this, just good old cmd.\r\n\r\nHowever, our discussions eventually led us to the conclusion that there shouldn't be a fog agent running on the machines really as this is just like running VMware Tools or similar on your malware machine - a bad idea as it's so easy to detect. So although it appears to duck the above problem, the best solution in my eyes would be not to rely upon fog agent to do anything, and use physical machinery to switch off and reboot the machine externally.\nComment: @doomedraven @kevoreilly \r\n\r\n- FOG version: 1.5.9.63\r\n- FOG client: 0.12.0\r\n\r\nRegarding the user/password issue i do also think that check can be removed, it seems that previous versions of FOG worked with http basic authentication and know they work with API keys, so there is no longer a need for that. Actually this is stange since Mario on it\u00b4s commit already mentioned this, seems he forgot to delete that sinppet of code.\r\n\r\nThe problem of the WMI stopping is what @kevoreilly has just said, dependent services are not restarted. But even if there was a way to restart dependent services the problem of the FOG client is that it also relies on a couple of user processes: FOGTray and FOGUserService (don\u00b4t be misslead by the naming), so not only the fog service should be restarted but also these previously menntioned processes.\r\n\r\nSo @kevoreilly if i am understanding right in order to guarantee that the WMI service is running a restart is performed, why could this be replaced by a normal start. By the way were in the source code can i find the code related to this.\r\n\r\nAnyway none of this matters since a deploy task is not being generated by the physical machinery when the analysis ends. I tried to trace the program to the function where this deploy task is executed (/modules/machinery/physical.py stop function) but the code seems to be never reached. I though this code should be called in the 354 line of the scheduler.py line.\nComment: Greetings! That change with WMI is indeed breaking the interaction with fog if I remember correctly. My blog post was from before this change. I'll resetup my whole CAPE environment tomorrow and check what needs to be fixed so that it works again\nComment: @MarioPalomaresGallego https://github.com/kevoreilly/CAPEv2/blob/master/analyzer/windows/analyzer.py#L507\nComment: i have removed the user/pass check, thanks, lets see if with @hariomenkel help we can upgrade it \nComment: Thanks @doomedraven, @hariomenkel the only piece left for me is the fact that the scheduler does not generate a deploy task.  Deploy task is created on this function\r\nhttps://github.com/kevoreilly/CAPEv2/blob/90e0d316f96598713d6dc617d6d387ed666da95a/modules/machinery/physical.py#L107\r\nand based on what i have seen this function should be called from here:\r\nhttps://github.com/kevoreilly/CAPEv2/blob/8b0727aa291d278afd67caeadb28d1c536476001/lib/cuckoo/core/scheduler.py#L354\r\n\r\nBut i don\u00b4t know why it doesn\u00b4t get called. I have tried to set a breakpoint here and but it never triggers.\r\n\r\nDid you encounter this behaviour @hariomenkel.\nComment: Alright forget about the preovious message, some newbie error by my side. I didn\u00b4t know that pdb when used on command line is not able to set breakpoints on a thread code, since the scheduler run tasks on threads, thats why the breakpoint never triggered. Also i wasn\u00b4t able to see the debug messages of cape because i was positioning the -d option incorrectly:\r\n\r\npython -m pdb <b>-d</b> cuckoo.py\r\ninstead of \r\npython -m pdb cuckoo.py <b>-d</b> \r\n\r\n.... my bad.\r\n\r\nStill the task is not being registered on the FOG UI. \r\nI have just made a small script trying the API and the POST request sent to register the new deploy task works well so don\u00b4t know what to think.\nComment: Had a look this morning at the problem i mentioned in the previous message and the problem is that the in the physical.conf file the name of the sections of the file must be the same as the 'label' key within each section. Comments in the conf file does not give you a clear note about this, maybe pointing this out would help.\r\n\r\nFor my specific case the issue can be almost closed since i have commented the lines that restart the WMI service, and with the correct names in the physical conf file everything works well. \r\n\r\nThe only strange thing i have found, just in case someone encounters the same problem, is that on the FOG UI when creating the image for the win7 machine the option \"Single Disk (Resizable)\" does not work well. The server is able of recording the image but when rebooting the machine it gets stucked on the windows logo. Instead using the option \"Multiple Partition Single Disk (Not Resizable)\" everything works well. The main drawback of this is that the resulting image is much bigger, actually the same size as the machine disk, which means not only that the machine hosting the FOG server needs a lot of space but also that the upload task takes quite a lot. Interestingly the deploy task is much faster comparing with the upload. For example with my 40 GB win7 machine upload takes about 30 min an deploy 5 min. \r\n\r\n@hariomenkel on your medium post you didn\u00b4t have this problem, which windows machine were you using.\r\n\r\n@doomedraven i have seen you have removed the credentials check but you left the comment associated to that piece of code.\nComment: Thanks for details, yes i left comment as in case of 2 or more server different apikeys should be used, glad you got it working\nComment: hey guys so to recap before we close this. As far as I know i might be wrong, FOG agent in't required to use FOG, but i think someone told that it wasn't working without FOG agent?\nComment: I don't know the details of fog but the issues boils down to the question: can these machines be remotely power cycled automatically. If the host can be rebooted externally there is no need for any agent on the host, the next boot should pxe into reimaging. This should be the goal I think here, to remove any unnecessary dependency on agents on the 'guests'.\nComment: thank you all, i did a quick check on thread and it looks like solved, if i missed something reopen",
+  "Title: Fixing bug in libvirt machinery. Added create after revertToSnapshot.\nBody: I was not able to run cape with KVM. I always get a timeout when he tried to start the kvm guest:\r\n\r\n2021-04-03 09:32:37,232 [lib.cuckoo.core.scheduler] INFO: Using \"kvm\" machine manager with max_analysis_count=0, max_machines_count=10, and max_vmstartup_count=5\r\n2021-04-03 09:32:37,291 [lib.cuckoo.core.scheduler] INFO: Loaded 2 machine/s\r\n2021-04-03 09:32:37,297 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks.\r\n2021-04-03 09:32:44,542 [lib.cuckoo.core.scheduler] INFO: Task #1: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_bp2x9g4j/3bac25f8f21c265a6790.exe'\r\n2021-04-03 09:32:44,587 [lib.cuckoo.core.scheduler] INFO: Task #1: acquired machine windows10 (label=w10, platform=windows)\r\n2021-04-03 09:32:47,150 [lib.cuckoo.core.scheduler] INFO: Enabled route 'tor'\r\n2021-04-03 09:32:47,171 [modules.auxiliary.sniffer] INFO: Started sniffer with PID 3842 (interface=virbr1, host=192.168.122.104, dump path=/opt/CAPEv2/storage/analyses/1/dump.pcap)\r\n2021-04-03 09:32:47,192 [lib.cuckoo.core.guest] INFO: Starting analysis #1 on guest (id=w10, ip=192.168.1.113)\r\n2021-04-03 09:37:07,470 [lib.cuckoo.core.scheduler] ERROR: Machine w10: the guest initialization hit the critical timeout, analysis aborted.\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 317, in launch_analysis\r\n    guest.start_analysis(options)\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/guest.py\", line 256, in start_analysis\r\n    self.wait_available()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/guest.py\", line 167, in wait_available\r\n    raise CuckooGuestCriticalTimeout(\r\nlib.cuckoo.common.exceptions.CuckooGuestCriticalTimeout: Machine w10: the guest initialization hit the critical timeout, analysis aborted.\r\n\r\nLooking in the source I see _wat_status functions is waits to change the status to \"running\" which it never happens. Based on documentation the domain must be created after revertToSnapshot.\r\n\r\nPlease let me know if I'm wrong, because probably I didn't understand fully how machinery works :)\r\n\r\nThanks!\r\n\r\n\r\n\nComment: hello, unfortunately you are wrong, that probably happens to you bcz you didn't save vm in running state?",
+  "Title: Offer to Host a VM\nBody: Hello there,\r\n\r\nJust an idea really. I would like to volunteer by hosting a preconfigured VM via torrent or similar. \r\nThis would streamline and standardize even further the project's adoption and recognition.\r\n\r\nAwesome job by the way, I'm a fan myself.\r\n\r\nHappy Easter!\nComment: Hello, Kevin wanted to do that few times, but meh,\r\n* no time\r\n* nobody will keep that up to date(3rd pard software + cape software)\r\n\r\nyou have 2 scripts pointed in readme, that does that pretty quickly the deploy to latest\r\n\r\nenjoy the holidays\nComment: Hi iguy0 - I do think this could be a good idea - anything that could help with adoption or recognition would be very welcome. \r\n\r\nI presume you mean have a Ubuntu vm with cape installed to run alongside the Windows vms, controlling the hypervisor 'remotely' via virtual network and kvmremote machinery? This could work nicely, but it still leaves the thorny issue of the Windows vms which we can't really pre-package due to licensing. \r\n\r\nIt could be argued that the tricky part of setting it all up is in the connectivity between vms and server so that even with a cape vm, it would still not be trivial to deploy. But then again, every little helps. I think the thing that would prove the most onerous would be, as doomed says, keeping the vm up-to-date continuously and hosting it - if that is something you think you could handle then maybe we could give it a go...\nComment: Kevin don't forget that \"work nicelly and remotelly\" would require users to learn set firewall as if no rooter would be 100% useless and all traffic would be directly leaked so you just overcomplicate that\nComment: Ah yes this is a good point that I hadn't thought of....\nComment: I was thinking along the lines of having a vm with almost everything already configured. \r\n\r\nSome vagrant scripts(https://codeblog.dotsandbrackets.com/vagrant-windows/) available for use to build the windows VM. The release schedule could be twice a year, with the user in charge of updating the OS. When releasing, use the latest available version + current working ubuntu.\r\n\r\n1- Who would create the VM? (I could i guess.. but if you guys could provide would be best)\r\n2- I could host a spot or torrent or both.. =]\r\n\r\nWe could also have a windows 10 VM(without disk) already created within the VM, with every hack we can pack. (i think this part could also be a selling point) \r\n\r\nI believe some of CAPE's users(or not yet..) would be interested in something like this. I think a lot of the people out there download and try new tools and toys but at the end they stick with what's easy. It's easy enough to drive usage and adoption by people teaching classes, building small labs, the 14 year old in the basement learning stuff for the first time lol, you get the point.\nComment: The problem of vargrant is that it uses vbox as fae as i remember and we\ndont recommend to use that at all, if ypu want a good enviroment, use kvm\n\nEl mar., 6 abr. 2021 1:36, iguy0 ***@***.***> escribi\u00f3:\n\n> I was thinking along the lines of having a vm with almost everything\n> already configured.\n>\n> Some vagrant scripts(https://codeblog.dotsandbrackets.com/vagrant-windows/)\n> available for use to build the windows VM. The release schedule could be\n> twice a year, with the user in charge of updating the OS. When releasing,\n> use the latest available version + current working ubuntu.\n>\n> 1- Who would create the VM? (I could i guess.. but if you guys could\n> provide would be best)\n> 2- I could host a spot or torrent or both.. =]\n>\n> We could also have a windows 10 VM(without disk) already created within\n> the VM, with every hack we can pack. (i think this part could also be a\n> selling point)\n>\n> I believe some of CAPE's users(or not yet..) would be interested in\n> something like this. I think a lot of the people out there download and try\n> new tools and toys but at the end they stick with what's easy. It's easy\n> enough to drive usage and adoption by people teaching classes, building\n> small labs, the 14 year old in the basement learning stuff for the first\n> time lol, you get the point.\n>\n> \u2014\n> You are receiving this because you modified the open/close state.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/474#issuecomment-813709851>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3YHJD26R3WR5HDH6WDTHJCONANCNFSM42KLI2EA>\n> .\n>\n\nComment: Yeah there are a couple of issues with what you suggested - doomed is right, there is no virtualbox with cape. No vmware, no nothing except kvm - consider how much work has gone into stuff like anti-evasion, this is all sacrificed with a rubbish easily detectable hypervisor like vbox.\r\n\r\nSecondly and perhaps more importantly it sounds like you are describing nesting virtualisation. Running a windows vm inside a linux vm? This is a huuuge no no - massive performance hit for no good reason and a big question mark over vm detectability.\nComment: \r\nOk. Let's scrap the vagrant idea. It was bad.. I can think of another suitable solution to automate(or close to it) the windows deployment portion. \r\n\r\nBy going the nested virtualization route, the user would take a hit on performance, but at least it would help \"spreading the word\" about CAPE and what it can do, by having a extremely easy to deploy dynamic analysis solution. \r\n\nComment: >  \"spreading the word\"\r\n\r\nexactly what Kevin told, about the antivms that we work so hard will be useless and many other things, so that most will show \"how bad cape is\" not how great.\r\n\r\ni understand that having nested thing is nice to quick tests/playing/get familiar, but giving that to users with bad performance, problems with antivm defeating, we won't spend time on giving that to user and spend our free time on that\nComment: for extreamely easy solution you have capesandbox.com and you can set TLP flag ;) ",
+  "Title: Fix Regular Expression injection\nBody: The fact of not sanitizing user input appended to a regular expression may lead to a `Regular Expression Denial of Service` by an attacker crafting a regular expression taking too much to load, or simply change the behaviour of the program.\r\n\r\nVulnerable code:\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/ad9d702cd5f358ff34da26f5f3e10b6a4f004320/web/analysis/views.py#L919\r\n\r\nReferences:\r\n\r\n[OWASP ReDoS](https://owasp.org/www-community/attacks/Regular_expression_Denial_of_Service_-_ReDoS)\nComment: Gracias tio\nComment: Thank you jorge!",
+  "Title: update description & cape_type info for IcedIDStage1\nBody: \nComment: I'm afraid cape_type field is not intended for divisions within a malware family, like 'Stage 1' since this is the name that becomes the 'detection' - it was a mistake to allow this historically with IcedId but I will fix this and get back to the place where 'detections' are pure malware family names and nothing else, as that is the design.\nComment: Since the description is also captured/displayed this is the place for any extra info so it can displayed if useful, but won't affect the overall detection name from being just the family.\nComment: isn't this is the same as photoloader or gziploader? i mean stage 1?\nComment: Yes, in this case it is gziploader.\nComment: Maybe - I didn't write or merge those. It's tricky to maintain this project to the design standard! I will correct those too.\r\n\r\nConsider this for yet another reason these are bad: currently in cape there is only room for one family in detection. Thus if we have stage 1 then stage 2, which do we detect? It would end up saying stage 1 when stage 2 is also in there...\nComment: yes is still a work to do to show all detections, but i have somethign that you will like ;) soon when i will have more time to finish",
+  "Title: Deprecate BazarLoder sig due to FP on IcedID GzipLoader\nBody: https://www.capesandbox.com/analysis/127669",
+  "Title: Updated Zloader parser\nBody: While analyzing a Zloader email campaign from February for a blog post (<https://www.hornetsecurity.com/en/threat-research/zloader-email-campaign-using-mhtml-to-download-and-decrypt-xls/>) we noticed the Zloader parser did not work on the Zloader samples. We therefore updated the parser.\r\n\r\nTested and confirmed working (both for current and older samples (for which the parser also worked pre-change)) against (at least) the following Zloader samples:\r\n\r\n- <https://bazaar.abuse.ch/sample/d20f5e6ff3b8af7d2adb395d2fc57b5c35343fc7b17865ccbbc66b66711a3b4c/> (first seen 2021-03-13)\r\n- <https://bazaar.abuse.ch/sample/67773bd7bf1720493b3dd438a8d2959412dd9a4381a646d3e7278e73e18e102d/> (first seen 2021-03-01)\r\n- <https://bazaar.abuse.ch/sample/d56060acb8115119810ae3aca151e94cbe5e2459dd405c8f010ced5a25c8548a/> (first seen 2021-01-20)\r\n- <https://bazaar.abuse.ch/sample/35466f0c22f220890b932e59f9a21032712e8260343d13ad4c0d9560db3b638f/> (first seen 2020-12-08)\r\n\r\nSo should be good, but feel free to adapt or reject the pull request as you see fit.\r\n\r\nThank you for all the hard work on CAPE!\r\n\nComment: Hi ooyeeTh5qu! Thanks very much for this, I really appreciate it. I will just double-check some older samples but the update looks great, I will ensure it gets merged.",
+  "Title: enable memory vol3 compiled yara scanning -> requires latest vol3\nBody: ",
+  "Title: Memory dump on Proxmox not found\nBody: # Expected Behavior\r\n\r\nWhen I enable the memory dump to integrate malconfscan functionality into an environment with proxmox, I notice that the memory dump does not work (memory dump not found), and the machinery/proxmox source code I do not see the function for the dump. Am I doing something wrong?\r\n\r\n# Current Behavior\r\n\r\nNo memory dump generate\r\n\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Enable proxmox machinery\r\n2. enable memory dump\r\n3. execute malware\r\n4. VM memory dump not found\r\n\r\n\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | last version\r\n| OS version       | Ubuntu 19.94, Windows 7, macOS 10.12.3\r\n\r\n\r\n\nComment: Yes the real error here is to try and integrate malconfscan into cape instead of integrating the parsers from malconfscan into cape within the existing framework and relying on payload capture and process dumps for unpacked samples.\r\n\r\nWhich families are you after? I will integrate them myself on principle.\nComment: Also which sandbox are you using?\nComment: Sandbox is cape, the problem is dump of memory with proxmox. With virtualbox i have no problem of dump, emotet is recognized, but with proxmox with machinery moduled no dump is generated.\r\n\r\nMissing the function dump_memory in proxmox.py \nComment: I understand what you are stating the problem is - however as I have stated integrating malconfscan with cape is absolute folly.\r\n\r\nSo tell me - why are you determined to try and integrate malconfscan with cape and use full system memory dumps with volatility? Why are you essentially ignoring the whole framework that exists within cape to capture payloads, detect them via yara signatures and trigger parsers using one of a choice of config parsing frameworks? What did I spend six years of my life developing all that stuff for?!\nComment: I apologize I misunderstood the use of cape, it was not my intention to offend.\r\n\r\nCAPE therefore does not act on the memory dump to understand the type of malware?\nComment: Yes but rather than relying on crude full system memory dumps which are then interpreted by volatility to parse out the interesting info, the principle in cape is to dump this stuff from within the process as it's running. Thus the output in cape at the end of the job should comprise process dumps and 'payloads' which are other memory dumps taken dynamically when other payloads (shellcode or PE images) are detected during detonation.\r\n\r\nAll this dumping is done by the monitor which is injected into every process that is tracked by cape. The monitor even includes a debugger so you can even breakpoint on an exact instruction in your malware to dump at the perfect moment (say for a working unpacked sample) so it is a lot more refined and powerful a tool than looking at some memory dump after it's all over.\r\n\r\nThis is why I asked which malware families you are interested in from malconf scan, as I would hope and expect that cape can already capture the unpacked malware payloads, and that all that is required to add config extraction for this family would be to add an appropriate yara signature and to add the parser from malconfscan, albeit with some potential small modifications,\r\n\nComment: I understand thanks for the thousand tips.\r\nI close the topic",
+  "Title: [update] gitignore with additional files and folder to skip\nBody: ",
+  "Title: rewrite utils.py\nBody: ",
+  "Title: Bump cryptography from 3.3.1 to 3.3.2\nBody: Bumps [cryptography](https://github.com/pyca/cryptography) from 3.3.1 to 3.3.2.\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a href=\"https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst\">cryptography's changelog</a>.</em></p>\n<blockquote>\n<p>3.3.2 - 2021-02-07</p>\n<pre><code>\n* **SECURITY ISSUE:** Fixed a bug where certain sequences of ``update()`` calls\n  when symmetrically encrypting very large payloads (&gt;2GB) could result in an\n  integer overflow, leading to buffer overflows. *CVE-2020-36242* **Update:**\n  This fix is a workaround for *CVE-2021-23840* in OpenSSL, fixed in OpenSSL\n  1.1.1j.\n<p>.. _v3-3-1:\n</code></pre></p>\n</blockquote>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a href=\"https://github.com/pyca/cryptography/commit/82b6ce28389f0a317bc55ba2091a74b346db7cae\"><code>82b6ce2</code></a> correct buffer overflows cause by integer overflow in openssl (<a href=\"https://github-redirect.dependabot.com/pyca/cryptography/issues/5747\">#5747</a>)</li>\n<li>See full diff in <a href=\"https://github.com/pyca/cryptography/compare/3.3.1...3.3.2\">compare view</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=cryptography&package-manager=pip&previous-version=3.3.1&new-version=3.3.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language\n- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language\n- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language\n- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language\n\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/kevoreilly/CAPEv2/network/alerts).\n\n</details>",
+  "Title: Copyright clarification\nBody: Hi, the LICENSE file says that \"Cuckoo Sandbox is copyrighted by the Cuckoo Foundation\".\r\n\r\nDoes this mean that contributors to CAPEv2 have to assign their copyright to the Cuckoo Foundation instead of retaining it?\nComment: hello, well you can always set it to copyright to you, or just set it to kevin as he doing in many new files, or add you as contributor.\r\n\r\nCAPE is based on amazing another fork of Cuckoo, that died few years ago https://github.com/spender-sandbox/cuckoo-modified, so its like from 2015 more less this going in another direction\nComment: There are loads of different copyrights within this project but as far as I understand it all that really matters is that it's GPL. If you want to contribute code and keep your own copyright that's totally fine.",
+  "Title: No activity on guest vm and no processing\nBody: I've been messing around with CAPE these days and there's something that I'm missing since the processing of the submitted file doesn't work nor I can see any activity on my windows 7 guest vm.\r\n\r\nI made sure that I'm using `cape` as user in order to have all the permissions correctly set and avoid using sudo when not needed, my host machine (Ubuntu 20.04 LTS with IP 192.168.10.7) and my guest machine (Windows 7 SP1 64bit with IP 192.168.20.20 NAT) can communicate with each other with no problems.\r\nUsing VMware Workstation 16 Pro and agent is installed on the guest VM (also snapshotted with the agent.pyw inside the startup folder to start it after every boot).\r\n\r\nHere are the steps I do to start CAPE (I mostly use GUI for submitting):\r\n```\r\nsudo python3 rooter.py -g cape\r\npython3 cuckoo.py -d\r\npython3 process.py -p7 auto\r\npython3 manage.py runserver 127.0.0.1:8001\r\n```\r\n\r\nConfiguration files:\r\n<h3>Cuckoo.conf</h3>\r\n\r\n```\r\n[cuckoo]\r\ndelete_original = off\r\ndelete_archive = on\r\ndelete_bin_copy = off\r\nmachinery = vmware\r\nmemory_dump = off\r\nterminate_processes = off\r\nreschedule = off\r\nmax_analysis_count = 0\r\nmax_machines_count = 10\r\nmax_vmstartup_count = 5\r\nfreespace = 50000\r\ntmppath = /tmp\r\ndaydelta = 0\r\nrooter = /tmp/cuckoo-rooter\r\n\r\n[resultserver]\r\nip = 192.168.10.7\r\nport = 2042\r\nforce_port = yes\r\npool_size = 0\r\nstore_csvs = off\r\nupload_max_size = 100000000\r\n\r\n[processing]\r\nanalysis_size_limit = 200000000\r\nanalysis_call_limit = 0\r\nresolve_dns = on\r\nreverse_dns = off\r\nram_boost = no\r\nsort_pcap = on\r\n\r\n[database]\r\nconnection = postgresql://cape:cape@localhost:5432/cape\r\ntimeout =\r\n\r\n[timeouts]\r\ndefault = 200\r\ncritical = 60\r\nvm_state = 300\r\n\r\n[logging]\r\nenabled = on\r\nbackup_count = 30\r\n\r\n[ramfs]\r\nenabled = off\r\npath = /mnt/ramfs/\r\nfreespace = 2000\r\n```\r\n\r\n<h3>Auxiliary.conf</h3>\r\n\r\n```\r\n[auxiliar_modules]\r\ncurtain = no\r\nsysmon = no\r\nprocmon = no\r\n\r\n[sniffer]\r\nenabled = yes\r\nremote = no\r\nhost = root@192.168.122.1\r\ntcpdump = /usr/sbin/tcpdump\r\ninterface = virbr1\r\nbpf = not arp\r\n\r\n[gateways]\r\n\r\n[virustotaldl]\r\nenabled = no\r\ndlpath = /tmp/\r\n\r\n[display_browser_martians]\r\nenabled = no\r\n\r\n[display_office_martians]\r\nenabled = no\r\n\r\n[display_shrike]\r\nenabled = no\r\n\r\n[expanded_dashboard]\r\nenabled = no\r\n\r\n[display_et_portal]\r\nenabled = no\r\n\r\n[display_pt_portal]\r\nenabled = no\r\n\r\n[zipped_download]\r\nenabled = no\r\nzip_pwd = infected\r\n\r\n```\r\n\r\n<h3>Vmware.conf</h3>\r\n\r\n```\r\n[vmware]\r\nmode = gui\r\ninterface = vmnet8\r\npath = /usr/bin/vmrun\r\nmachines = win7\r\n\r\n[win7]\r\nvmx_path = /home/cape/Desktop/Windows 7 Victim/Windows 7 Victim.vmx\r\nsnapshot = Base\r\nplatform = windows\r\nip = 192.168.20.20\r\ntags = x64\r\ninterface = vmnet8\r\nresultserver_ip = 192.168.10.7\r\nresultserver_port = 2042\r\n```\r\n\r\nSorry for deleting all the comments inside those config files but that would have made the text way too large :)\r\n\r\nGot this error when my guest vm was already running (guess it's not a problem).\r\nThe guest vm shuts down after 1 minute or something like that and then the processing part should start.\r\n\r\n![immagine](https://user-images.githubusercontent.com/19681281/111293642-c7567a00-8649-11eb-9aba-c4d2545895a8.png)\r\n\r\nAs you can see, it doesn't do anything besides waiting to process data.\r\n\r\n![immagine](https://user-images.githubusercontent.com/19681281/111293868-04bb0780-864a-11eb-8dbb-b6ed5e261d78.png)\r\n\r\nI tried to keep the vm shut down and see if something else happens, triggering this error:\r\n\r\n![immagine](https://user-images.githubusercontent.com/19681281/111294132-4c419380-864a-11eb-88de-c3f897afc803.png)\r\n\r\nI made sure that a snapshot exists but I still get that error (maybe because I'm not supposed to keep the guest down?).\r\n\r\nTL;DR\r\nI've no idea what I did wrong and I wasted 3 days (and learned a lot from it) how not to configure CAPE but still got some minor issues with the processing part.\r\n\r\n\nComment: Wowzers 3 days you must be ripping your hair out by now. Sorry to hear that!\r\n\r\nHowever, it looks to me like the problem is likely to be that the vmwareserver machinery is really only compatible with some very specific versions of VMware Workstation 11 and 12. To do this with VMware 16 you will need to use the vmwarerest machinery and the VMware REST api. This is a tricky subject and I've not even tested with 16 yet as I last used this on 15 (for which I created this machinery from scratch).\r\n\r\nLet me try and refresh/update my VMware instance and see if I can get it running. In the meantime, google how to use VMware REST api - in 15 at least it required a batch file on startup to launch vmrest.exe with a couple of switches - it was pretty ropey from VMware but I managed to get it working.\nComment: The alternative is to do it the right way and use KVM! This is the reason my VMware instance is rusting away on an ancient unloved server...\nComment: > \r\n> \r\n> The alternative is to do it the right way and use KVM! This is the reason my VMware instance is rusting away on an ancient unloved server...\r\n\r\nThat's exactly what I wanted to try later today ahah\nComment: This is pure golddust:\r\n\r\nhttps://github.com/doomedraven/Tools/blob/master/Virtualization/kvm-qemu.sh\nComment: Little update, works like a charm when using KVM.\r\nOnly using VMware Workstation 16 inside the host has some problems interacting with the guest.\nComment: Tell me you are not nesting virtualisation?!\nComment: Yes, I forgot to mention that.\r\nCould that be the issue?\nComment: It's just really not a good idea. Not only is the vm detectability (by malware) very high but the performance is very poor - double lose basically.\r\n\r\nWhat we strongly recommend is KVM on top of a bare metal Ubuntu server.\nComment: + super important, never remove initial template as you forcing us to ask everyone the same things over and over and that basic info is useful\nComment: Closing as original issue solved (incompatible machinery)",
+  "Title: Update Conti.yar\nBody: Update with latest portal",
+  "Title: throttling per user\nBody: \nComment: Gracias amigo\nComment: yaw, that will be merged this evening ",
+  "Title: Update Dridex signature\nBody: for cape search \"payloads:79c88bbcf6e66f2ab3ce12f08739627354a116186659183a027dba36642b6700\"",
+  "Title: Incomplete /submit options\nBody: Hello,\r\n\r\nNew to CAPEv2... trying to build it. I have the webserver up but when I click on the submit button /submit I only see 4 options:\r\nFile\r\nQuarantine File\r\nPCAP\r\nStatic\r\n\r\nShould I not see URL if not other?\nComment: @eibborthompson maybe you forgot to enable `url_analysis`? https://github.com/extra2000/CAPEv2/blob/master/conf/web.conf#L37-L39\nComment: > @eibborthompson maybe you forgot to enable `url_analysis`? https://github.com/extra2000/CAPEv2/blob/master/conf/web.conf#L37-L39\r\n\r\nyou sir are a Genius. THANK YOU.",
+  "Title: cape.sh pip backtracking taking ages\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ ] I am running the latest version\r\n- [ ] I checked the documentation and found no answer\r\n- [ ] I checked to make sure that this issue has not already been filed\r\n- [ ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [ ] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nExecution of the cape2.sh script reasonably fast (1h)\r\n\r\n# Current Behavior\r\n\r\nIts been executing for a couple of hours and still going\r\n\r\n# Failure Information (for bugs)\r\n\r\nThe script is just taking a lot of time on the pip\u00b4s backtracking process. Currently it is searching for a valid version for 'colorclass' package. \r\n\r\nI am wondering if this could be because of the Ubuntu version (18.04). I know it is recomended 20.04 but since i am developing a project which involves other tools (that require the older ubuntu version) i decided to give it a try on this version just to see if it worked.\r\n\r\nI have also seen that the pip dependency resolver changed since version 20.3 and the new one is stricter. Since my pip version is >20 don\u00b4t know it this could be the problem. Actually i gave it a try with an older version an still lasts a lot (also i didn\u00b4t wait as much as now).\r\n\r\nSo how long is the script supposed to last? Could the ubuntu version make this task longer lasting?\r\n\r\n## Steps to Reproduce\r\n\r\n1. sudo cape2.sh base cape\r\n\r\n## Context\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | 20043741b0343070c3aca6aafc1a4fcc4593a800\r\n| OS version       | Ubuntu 18.04\r\n| Python version | 3.6.9\r\n| Pip version      | 21.0.1\r\n\r\n## Failure Logs\r\n\r\nNot applicable\r\n\nComment: @MarioPalomaresGallego `cape2.sh` script took less than 20 minutes on my fresh installed Ubuntu 20.04 vagrant box. But I'm using [doomedraven/Tools commit 5906ff1](https://github.com/doomedraven/Tools/tree/5906ff1ad56e56f0de12d0317c81ab1c01d0c624) so I have to add `USER=cape;` before executing `cape2.sh`:\r\n```\r\n$ USER=cape; sudo bash /opt/doomedraven-tools/Sandbox/cape2.sh base\r\n```\r\n\r\nThe CAPEv2 commit that I'm currently using is 95f3487649387340213a805029b96a9052e081d9.\nComment: hello, could be, as the dependency is a huge hell for dev, so between 18 and 20 there a lot of different dependencies, versions, and even names of deps changes in some 3rd part tools, as we can't control 3rd part, is why i have dropped support for both, only latest LTS will be supported.\r\n\r\nyes in general it doesn't rake too much to finish, do you know what is using `colorclass` ? as that isn't an dependency introduced by us \r\n\r\nIf you really need to get it working on 18.04 you will need to investigate on your own, and if you spot what is wrong you are welcome to let us know so any other users that will face that issue will save some more time \r\n\r\n@nikAizuddin thanks for help :) \nComment: Thanks @nikAizuddin @doomedraven.\r\n\r\nI will try first to migrate the other tools to version 20.04 since i have tried to install cape on a fresh ubuntu 20.04 VM and it worked perfectly. If these other tools give problem on ubuntu 20.04 i will investigate a little bit on the problems on ubuntu 18.04 and let you know if i get something.\r\n\r\nI had to reset the VM and didn\u00b4t redirect the output of the script to any file so i lost the pip backtrace but i think the package that triggered the backtracking was 'halo'. Also i think that the previous package to 'colorclass' in the backtracking process was 'easygui'.\r\n\r\nBy the way in case the other tools i am using work on the new ubuntu 20.04  VM, will they also work if i update my 18.04 machine. I am afraid that the script isn\u00b4t working not only because of the ubuntu version but because of something strange in my environment (although i think it is pretty standard but still)\nComment: could be, then closing as solved, the things is that the latest LTS giving better kernel, and other versions so that all are much better for performance and maintenance. but as you can imagine keep different LTS in free time is not what i will do ;) \r\n\r\ni hope you migration to u20 will be easy, good luck with that ",
+  "Title: depricate old apis\nBody: ",
+  "Title: Empty CSV File\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nReturn a clean after analysis\r\n\r\n# Current Behavior\r\n\r\nReturns malicious.\r\n![image](https://user-images.githubusercontent.com/78917510/110093133-a6b13900-7d9a-11eb-8a67-e22e0697266b.png)\r\n\r\n# Failure Information (for bugs)\r\n\r\nAs we can see it in the pic, multiple signatures matches and I can't get my hand on from where.\r\n\r\n## Steps to Reproduce\r\n\r\nUpload a blank csv file.\r\n\r\n## Context\r\n\r\nHi,\r\nSo i've a VM with office installed. When manually opening the csv file, nothing seems odd.\r\nI've whitelisted the PIDs of all the programs running at snapshot time to avoid noise and I also ran doomdraven, noise script to cancel most of it.\r\nI can't find an answer elsewhere, as no one seems to have such a problem.\r\nCould you give me some guidance on how to fix this?\r\n\r\nMany Thanks!\nComment: maybe you forgot to update utils/community.py -waf?\nComment: Mr doomedraven himself :D What an honnor!\r\n\r\nWas done, did it again with no effect.\r\nIts running with office v2016. \r\nCould this be the issue?\nComment: ah, now i got what you mean, well the problems here is that some of the things behav as malware, as you can see office do different things, it can be similar as malware injection to give an example, and that signatures is written by community, so you can always improve/remove that on your need\nComment: I'd like to check this behavior on your online instance but I still haven't been activated.\r\nIf it works on your setup, is it possible to get some configs/apps that are installed to mimick the deployment?\r\n\r\nThanks!\nComment: no we can't share that, well we use all community signatures, as submitting empty file is useless we prefer real malware :P @kevoreilly is in charge of activating users\nComment: btw FYI i don't suggest you to submit empty file to capesandbox.com as it will be basically the same as auto request for ban as we had recently attack spamming jobs with useless data is why registration is set to manual approve",
+  "Title: add netstruct to requirements\nBody: Follow up to  57d045ed, add netstruct as a dependency.",
+  "Title: Account set to inactive\nBody: Hi,\r\nI registered an account on capesandbox.com and verified my e-mail but the account has been set to inactive; \r\nwould it be possible to get it activated?\r\n\r\nMy username: Andrew\r\n\r\nThanks in advance!\nComment: I have the same issue\nComment: androssfox - activated!\r\nrootkit1234 - I have no clue which account you mean\nComment: I signed up with the same username as my GitHub (ranguli) and I also get:\r\n\r\n```\r\nAccount Inactive\r\n\r\nThis account is inactive/Admin set manual approve.\r\n```\r\n\r\nAdditionally I didn't see any contact address on the website and DMs to the CAPE twitter account appeared disabled so I had to post this here.\nComment: Should be activated now.\nComment: Hello !\r\nI'm facing the same issue ! (The username is the same as my github)\nComment: Activated!\nComment: Hello!\r\nI registered an account and verified my email, but my account needs manual approval.\r\nCan you activate it, please?\r\n\r\nusername: toobyni\r\n\r\nThanks in advance\nComment: Activated! Cheers\nComment: Same issue as the others\r\n\r\nusername: ga1nz\r\n\r\nThanks!\nComment: Activated\nComment: My account seems to be still inactive; could you activate mine as well?\r\n\r\nusername: ga1nz\r\n\r\nThanks\nComment: Done\nComment: Hello !\r\nI'm facing the same issue ! (The username is didadi1219)\nComment: Should be fixed!\nComment: Mine is also inactive. Username:acheong08\r\n\r\nThanks!\nComment: Hello, I made an account on the site a while back to analyze some malicious video files.\r\n\r\nAccount is now set to inactive - could I please get it manually approved? Got some new malware in.\r\nUsername is chengzhi@onescorpion.com.\r\n\r\nThanks!\nComment: Mine is also inactive. Username:jianjianyuyue\uff0cI'm not sure if the user name is correct\uff0cbut I use jianjianyueyue1314@gmail.com Registered.\r\n\r\nThank you.!\nComment: oh,I just checked my email\uff0cnow I can confirm that the user name is jianjianyueyue.I hope to get your help\nComment: Same issue\r\nUsername is \"jhueby\"\r\n\r\n> Account Inactive\r\n> \r\n> This account is inactive/Admin set manual approve.\nComment: Same issue\r\nUsername is \"FLY61gg@proton.me\"\nComment: Same issue\r\nUsername is \"xiaguo\"\nComment: sam issue \nUsername is \"abcd\"\nComment: Hello,\n\nI am also facing the same issue. It says \"Account Inactive\"\nUsername: \"Mughees2001\" \nComment: Hello, I tried to open an account  and I have the same problem, can you activate it? Thank you. User: Juan",
+  "Title: Probable dependency problem in agent.py\nBody: Git commit | matrixpdb\r\nOS version | Debian10\r\nSandbox OS | WINXPx86, WIN7x64, Win10 x64\r\nPython | Python 3.8 x86 \r\n\r\n\r\nThis failure is occurring with new installations, when sending file for analysis it is possible to see in the cape debug\r\npython3 cuckoo -d\r\n  the steps in which the cape starts the virtual machine (virtualbox) but when it starts to analyze it cannot communicate with the host.\r\nTests performed:\r\nAgent accessible via browser http: // ip: 8000\r\naccessible via IP curl terminal: 8000\r\n\r\nBut in the initiator at the beginning of the cape the return:\r\n\"[lib.cuckoo.core.guest] DEBUG: ** cuckoo1: not ready yet **\"\r\n\r\n\r\nTo colleagues who have the problem:\r\n\"[lib.cuckoo.core.guest] DEBUG: **cuckoo1: not ready yet**\"\r\n\r\nHow to solve?\r\nThe documentation recommends the use of python 3.6.8, I verified that it is also necessary to install python 2.7, otherwise a communication error with the slave host is issued with the message: cuckoo1: not ready yet\r\nIf you have this problem try to install both versions of Python.\nComment: if you install py 2.7 is that you using wrong agent\nComment: as our agent won't run on py lower than 3.6\r\n```\r\nif sys.version_info[:2] < (3, 6):\r\n    sys.exit(\"You are running an incompatible version of Python, please use >= 3.6\")\r\n```",
+  "Title: Update html reports\nBody: Update bootstrap for html reporting",
+  "Title: Deployment via Docker or Podman?\nBody: Hi, is there any plan to containerize CAPEv2 services?\r\n\nComment: no\nComment: The issue with containerizing for cape is the Windows bit... For this reason it would end up meaning either making massive sacrifices for the virtualization of Windows or still having to install KVM anyway. Taking the hypervisor into account, there's much less point in using a container technology for the Linux side only. As far as I am concerned, there is no point even installing cape with VirtualBox, VMware or any other hypervisor other than KVM (and possibly Hyper-V) due to the massive disparity in their detectability over customized KVM.\r\n\r\nWe have considered whether it might be worth creating a Linux KVM image with cape server side but it's arguably not even worth the effort of doing that as separating the services from the hypervisor into a VM is almost more effort than just installing them along side (as now the VM has to control the hypervisor 'remotely') - at least that's why I've never bothered to set it up this way.\nComment: I think that running all of the python processes in Docker containers would be a significant improvement, even if there is a requirement of running on top of a machine with KVM already installed. I've had issues with the bash scripts used in the README as the suggested installation method, and ended up porting the install into Salt (my configuration management engine), but it is far from perfect. After installation, I have to patch multiple files and re-copy in my .conf files, and my instance still has issues that the publicly available instance doesn't seem to have. It's also rough trying to keep my config management in sync with changing pip/system package requirements.\r\n\r\nWith docker, all requirements would be defined and updated in Dockerfiles, deployment environments would be standardized across different distributions of Linux, and I could simply mount my configurations onto the docker containers so I don't have to re-copy them or git stash and pop each time I pull updates. I've been thinking about taking a swing at this the last few days as I've been trying to set up a new CAPE instance on a non-Ubuntu version of linux and having a bad time, but am not sure quite how it would work with KVM running on the host and all services running in Docker.\r\n\r\n\nComment: I too had issues in the past trying to run cape on something other than Ubuntu - ultimately I gave up and decided it's not worth the effort. The bash scripts work well on Ubuntu, so I would say for cape a dedicated Ubuntu installation is the only way to go. Short of that, my previous suggestion of installing cape in a Ubuntu VM controlling a KVM host would seem to solve all the problems you suggest, but with none of the additional complications of setting up containers - wouldn't you agree?\nComment: I have CAPE successfully running on CentOS right now, but it took me a while to figure out. Even on Ubuntu, I've had issues with the install scripts. I'll give it another go today, but when something goes wrong, reading 1000+ line bash scripts trying to figure out what's wrong is not a fun time. \r\n\r\nI suppose that an Ubuntu VM running CAPE controlling a KVM host would work, but creating the CAPE VM in an automated fashion is what I'm struggling with now. Every time I want to pull an update to CAPE I expect that my install will stop working, and I'll have to spend at least a few minutes installing new packages and troubleshooting. If there was an easy way to simply run a command rebuild a CAPE VM, I would love to have that as an option instead. However, the tools I've used for VM automation are not as easy to use as Docker, and I would still have to do post-deployment steps like re-copying configurations.\r\n\r\nThe rest of my malware environment deployment is completely automated with Docker, so I may be biased, but doing a git pull <repo>, docker-compose build, docker-compose up -d seems to be what most projects are standardizing around currently and is a pretty quick and pleasant experience. It's just a nice side effect that this solution is also OS agnostic.\nComment: Unfortunately one aspect of CAPE is that it changes rapidly and is thus difficult to maintain. But this is just the price of all the new awesome features. I am definitely pondering whether creating a KVM image of Ubuntu with CAPE preinstalled might be worthwhile - but I think there's ultimately no avoiding having to install new packages and modding conf files as we are constantly adding features and options.\nComment: I would definitely use that image if you do end up creating it. Thanks for continuing to maintain this project and add new features, I appreciate all the time and effort you spend developing on it.\r\n\r\nIf you do end up coming back to this issue in the future, I think IntelOwl has done a good job with a multi-docker image setup and provides some variables to pass into the containers so modding conf files is no longer necessary: https://intelowl.readthedocs.io/en/latest/Installation.html#environment-configuration-required.",
+  "Title: Error message \"local variable 'random_route' referenced before assignment\"\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nAfter upgrading to latest version of CAPEv2, when clicking on \"submit\" I receive the following error \r\n`UnboundLocalError at /submit/\r\n\r\nlocal variable 'random_route' referenced before assignment\r\n\r\nRequest Method: | GET\r\n-- | --\r\nhttp://127.0.0.1:8000/submit/\r\n3.1.6\r\nUnboundLocalError\r\nlocal variable 'random_route' referenced before assignment\r\n/opt/CAPEv2/web/submission/views.py, line 521, in index`\r\n\r\nCan you solve this problem\r\n\r\nThanks\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. step 1\r\n2. step 2\r\n3. you get it...\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 16.04, Windows 10, macOS 10.12.3\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: thanks fixed",
+  "Title: Custom tags?\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\nNot a problem but a question/feature request. Does CAPEv2 support adding custom tags to analyzed samples?\r\n\r\n# Current Behavior\r\n\r\nI don't see any way to manage tags for a sample. The only reference to \"tags\" is \"enable_tags=no\" in reporting.conf.\r\n\r\n# Failure Information (for bugs)\r\n\r\nn/a\r\n\r\n## Steps to Reproduce\r\n\r\nn/a\r\n\r\n## Context\r\n\r\nn/a\r\n\r\n## Failure Logs\r\n\r\nn/a\nComment: Tags in cape refer to VMs, so you can specify x64/x86 or Win7/Win10 etc - not samples I'm afraid.\nComment: Tx! Do you think it deserves a feature request? :-)\nComment: Can you explain what you mean by custom tags in the sense of a sample? Or some examples to help understand the idea.\nComment: https://github.com/kevoreilly/CAPEv2/blob/master/changelog.md#02122020-cape-22\nComment: <img width=\"431\" alt=\"Screenshot 2021-02-18 at 10 55 42\" src=\"https://user-images.githubusercontent.com/1856495/108339555-db889200-71d7-11eb-80f2-4f7ce4ef72c0.png\">\r\n\nComment: Man who knew?! This sandbox rocks! \ud83d\ude00\nComment: changelog always know :D ",
+  "Title: Python dependencies errors with current checkout\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version \r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [X] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\n\r\n```\r\npip3 install -r requirements.txt\r\n```\r\n\r\nShould work without error.\r\n\r\n# Current Behavior\r\n\r\n```\r\nERROR: Cannot install -r requirements.txt (line 28), -r requirements.txt (line 29), -r requirements.txt (line 37) and -r requirements.txt (line 75) because these package versions have conflicting dependencies.\r\n\r\nThe conflict is caused by:\r\n    httpreplay 0.3 depends on click<7 and >=6.7\r\n    mwcp 3.2.1 depends on click\r\n    sflock 0.3.10 depends on click>=6.6\r\n    socks5man 0.3.0 depends on click==6.6\r\n\r\nTo fix this you could try to:\r\n1. loosen the range of package versions you've specified\r\n2. remove package versions to allow pip attempt to solve the dependency conflict\r\n\r\nERROR: ResolutionImpossible: for help visit https://pip.pypa.io/en/latest/user_guide/#fixing-conflicting-dependencies\r\n```\r\n\r\n# Failure Information (for bugs)\r\n\r\nUbuntu 18.04\r\nPython 3.6.9\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. git clone https://github.com/kevoreilly/CAPEv2.git\r\n2. cd CAPEv2\r\n3. pip3 install -r requirements.txt\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | d545e0e199eb5f1f297a9333c8431553ae45c126\r\n| OS version       | Ubuntu 18.04, LTS\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: hello from past, amazing ubuntu version :D \r\nfixed, thanks for headups",
+  "Title: Default timeout in cuckoo.conf present in webinterface\nBody: Reference: https://github.com/kevoreilly/CAPEv2/issues/434\nComment: Thanks",
+  "Title: Account Inactive\nBody: Hello, I made an account on the site a while back to analyze some malicious video files.\r\n\r\nAccount is now set to inactive - could I please get it manually approved? Got some new malware in.\r\nUsername is Leet.\r\n\r\nThanks!\nComment: This should now be activated - let me know if any problems",
+  "Title:  No screenshots and no results in the Summary tabs\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [yes] I am running the latest version\r\n- [yes] I checked the documentation and found no answer\r\n- [yes] I checked to make sure that this issue has not already been filed\r\n- [yes] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [yes] I'm have read all configs with all optional parts\r\n\r\n# Issue \r\n\r\nI am facing an issue regarding screenshots and no results in the Summary tabs, I have attached the the screenshot of the issue.\r\n\r\nI have followed the CAPE's v2 documentation and still having the same problem.1\r\n\r\n![cape-2021-02-14-03-42-57](https://user-images.githubusercontent.com/79043891/107878465-cefbf500-6eca-11eb-82b3-fccdab26cce4.png)\r\n\r\n\r\n# Expected Behavior\r\n\r\nTo be able to get screenshot and summary details.\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\nN/A\r\n\r\n## Context\r\n\r\nN/A\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| OS version       | Linux ubuntu 20.04.1\r\n\r\n## Failure Logs\r\n![cape-log1](https://user-images.githubusercontent.com/79043891/107878359-0027f580-6eca-11eb-97bc-2a94b9db2103.PNG)\r\n![cape-log2](https://user-images.githubusercontent.com/79043891/107878360-01592280-6eca-11eb-8351-caf0db2731e6.PNG)\r\n\r\n\r\n\nComment: Great thanks. By behavior log I should have been more descriptive - I meant the behavior tab in the web interface. But I can tell it will be empty as it looks like the vm is not even talking to the server. \r\n\r\nI would revisit the agent installation in the vm. Is the correct IP address in the vm config? Can you reach the server from inside the vm? Check all things agent.\nComment: agent ip 192.168.56.104\r\nserver ip 192.168.56.1\r\n![canReach](https://user-images.githubusercontent.com/79043891/108163754-6c337500-70e7-11eb-99e2-9a7438c94355.PNG)\r\n\r\n\r\nappearently, i can reach the server from the vm (agent)!!\nComment: Hello maybe you could provide more information so the community can help you. \r\n\r\nCan you provide [machinery].conf (kvm.conf / virtualbox.conf etc), cuckoo.conf\r\nHow did you start your agent inside snapshot, is agent.py running?\r\nDid you disable Windows Sercurity stuff (Firewall, Defender etc)?\nComment: here is the config files \r\n[configFiles.zip](https://github.com/kevoreilly/CAPEv2/files/5995170/configFiles.zip)\r\n\r\n\r\nabout the agent, yes it start automatically and i put it in startup folder.Also windows defender and firewall proper settings are made.\r\n\r\n![agentConfig](https://user-images.githubusercontent.com/79043891/108197183-f0025700-7111-11eb-859a-586465c44707.PNG)\r\n![defender](https://user-images.githubusercontent.com/79043891/108197186-f1338400-7111-11eb-87d7-662f78caa62f.PNG)\r\n![firewall](https://user-images.githubusercontent.com/79043891/108197191-f1cc1a80-7111-11eb-85fa-5a7c9265f17d.PNG)\r\n\nComment: Not sure about this startup tap in taskmanager in windows 10. It doesnt exist in win7.\r\nWhat you can try:\r\nPut your agent in C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\r\nRestart your windows vm\r\nDoubleCheck if windows security is still disabled\r\nCheck if pythonw.exe pyw.exe exists in processlist or if you dont use .pyw check if cmd window appears.\r\nTake Snapshot\r\nChange Snapshotname in virtualbox.conf\r\nRestart cape services\r\nTry analysis again\r\n\r\nFor configs:\r\nseems fine but i dont use the optional resultserver ip and port in virtualbox.conf (btw I prefer kvm qemu)\r\npay attention to: NOTE: if you set this option you have to set result server IP to 0.0.0.0 in cuckoo.conf.\r\n\nComment: ping isn't agent communication\r\n* restore snapshot by hand then `curl vm_ip:8000` from host/server and post output\nComment: >     * curl vm_ip:8000\r\n![curl-vm](https://user-images.githubusercontent.com/79043891/108619186-ee3ed900-741a-11eb-8f7e-8ca8ca3b818d.PNG)\r\n\r\n\nComment: so did you solve your problem?\nComment: > so did you solve your problem?\r\n\r\nNo not yet, still trying to figure out the problem \nComment: So what you need to check\nHypervisor conf how did you set, then result server ip\nFirewall both host and vm\n\nThats all\n\nEl dom., 21 feb. 2021 13:48, g9990 <notifications@github.com> escribi\u00f3:\n\n> so did you solve your problem?\n>\n> No not yet, still trying to figure out the problem\n>\n> \u2014\n> You are receiving this because you commented.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/445#issuecomment-782852621>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH35XIEADIS3AYXME65DTAD6JJANCNFSM4XTH4ETA>\n> .\n>\n\nComment: The problem is solved, and everything is working fine. I have reinstalled the choco.bat file and reconfigured the iptables \"as shown below\". \r\n\r\nsudo iptables -t nat -A POSTROUTING -o tun0 -s 192.168.56.0/24 -j MASQUERADE\r\nsudo iptables -P FORWARD DROP\r\nsudo iptables -A FORWARD -m state --state RELATED,ESTABLISHED -j ACCEPT\r\nsudo iptables -A FORWARD -s 192.168.56.0/24 -j ACCEPT\r\nsudo iptables -A FORWARD -s 192.168.56.0/24 -d 192.168.56.0/24 -j ACCEPT\r\nsudo iptables -A FORWARD -j LOG\r\necho 1 | sudo tee -a /proc/sys/net/ipv4/ip_forward\r\nsudo sysctl -w net.ipv4.ip_forward=1\nComment: that iptables not needed at all as it use rooter.py to handle that, but glad you fixed that. closing i will remove that iptables from docs as that is outdated part\nComment: Great news - glad to hear the problem is now solved - as ever with the invaluable help of the man, the legend, doomedraven.\nComment: lol i didn't do nothing at all :P @g9990 found it himself :)\nComment: It was just the confidence gained from knowing you were there :-D",
+  "Title: No screenshots and no results in the Summary tabs\nBody: Hello,\r\n\r\nI am facing an issue regarding screenshots and no results in the Summary tabs, I have attached the the screenshot of the issue. \r\n\r\nI have followed the CAPE's v2 documentation and still having the same problem.\r\n\r\n![cape-2021-02-14-03-42-57](https://user-images.githubusercontent.com/79043891/107875753-aae3e800-6eb9-11eb-9ae4-bab580a81980.png)\r\n \r\n\nComment: Have you installed pillow in the vm?\nComment: Is there anything in the behavior log?!\nComment: Also what happened to the issue template?! We will soon be adding to this the rule that if you remove it without answering the questions, it's insta-auto-close.\nComment: > Have you installed pillow in the vm?\r\n\r\nyes, I have installed pillow\nComment: > Is there anything in the behavior log?!\r\n\r\nI have checked all the logs in the path /opt/CAPEv2/log\r\n![cape-log2](https://user-images.githubusercontent.com/79043891/107878129-7d526b00-6ec8-11eb-957c-1a52019ecd90.PNG)\r\n![cape-log1](https://user-images.githubusercontent.com/79043891/107878128-7c213e00-6ec8-11eb-81ff-b3f8456841e9.PNG)\r\n\r\n",
+  "Title: Can't login after registering on capesandbox.com\nBody: Hello, \r\n\r\nI am trying to register on capesandbox.com and I can't seem to login after going through the registration process. \r\n\r\nAny ideas?\r\n\r\nUsername: Sh311c0d324\r\n\r\nIf I need to provide an email and stuff I can, I'd just prefer to not display that information publicly if at all possible. \r\n\r\nAny help would be much appreciated. \r\n\r\n\r\n Thank you.\r\n\r\n\nComment: hello if you did read msg it says we set manual approve due to some spam attacks. and we doing this in our spare time so we can't keeping eye all the time on it ;) activating\nComment: my question why did you verified your email?\nComment: Gotcha, I didn't see any message saying manual approve when I registered so thank you for the information. As for your question, I never received an email to activate it. Thank you for activating my account. :)\nComment: Ok thanks\n\nEl s\u00e1b., 13 feb. 2021 20:47, Sh311c0d324 <notifications@github.com>\nescribi\u00f3:\n\n> Gotcha, I didn't see any message saying manual approve when I registered\n> so thank you for the information. As for your question, I never received an\n> email to activate it. Thank you for activating my account. :)\n>\n> \u2014\n> You are receiving this because you modified the open/close state.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/443#issuecomment-778668682>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH32SAPRFOCZDVMK4GF3S63JOFANCNFSM4XRB6PSQ>\n> .\n>\n\nComment: So I apologize for reopening this thread, but I went through the activation process from the email and now I'm presented with following message after logging in. Any ideas? \r\n\r\n![Screenshot_20210213-135233](https://user-images.githubusercontent.com/64936020/107860093-10c16880-6e03-11eb-9ef3-1d23303d6b44.png)\r\n\r\nCould it be because we activated it before the email? \r\n\r\nThank you for your help and time. \nComment: check now\nComment: That fixed it! Thank you! ",
+  "Title: This account is inactive/Admin set manual approve.\nBody: hello,\r\n\r\nis it possible to request an account re-activation? For some reason mine was deactivated, even when sometimes I use it.\r\nhttps://capesandbox.com/\r\n\"This account is inactive/Admin set manual approve.\"\r\nAccount: carouselcarousel\r\n\r\nThank you for your help.\nComment: Activated - thank you!\nComment: hello,\n\nis it possible to request an account re-activation? For some reason mine was deactivated, even when sometimes I use it.\nhttps://capesandbox.com/\n\"This account is inactive/Admin set manual approve.\"\nAccount: mbygre\n\nThank you for your help.",
+  "Title: Volatility -> Services are not displayed in the Web GUI\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\nIf memory is active in the configuration and services are also active, the services that Volatilty scrapes from the memory sould be displayed.  \r\n\r\n# Current Behavior\r\nNo services are displayed\r\n\r\n# Failure Information (for bugs)\r\nN/A\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Ensure that in the processing.conf the following is set\r\n[memory]\r\nenabled = yes\r\n2. Ensure that in the memory.conf the following is set\r\n[dlllist]\r\nenabled = on\r\nfilter = off\r\n3. Submit a sample for analysis\r\n4. What for the processing to finish and navigate to the tab [Memory Analysis] -> [Services]\r\n5. No Services are displayed\r\n\r\n## Context\r\n\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | cc02cc7e1000245c18564f6133cb50d4f8749d94\r\n| OS version       | Ubuntu 20.04, Windows 7 x64 Guest\r\n\r\n## Failure Logs\r\nN/A\r\n\r\n## Rational\r\nDuring the implementation of Vol3 the CAPEv2/web/templates/analysis/memory/_svcscan.html has not been ported to the new DB structure dumped by Vol3.\r\n\r\n## Rectification\r\nReplace the following code in CAPEv2/web/templates/analysis/memory/_svcscan.html\r\n`    {% for service in memory.svcscan.data %}\r\n        <tr>\r\n            <td>{{service.service_name}}</td>\r\n            <td>{{service.service_display_name}}</td>\r\n            <td>{{service.service_binary_path}}</td>\r\n            <td>{{service.pricess_id}}</td>\r\n            <td>{{service.service_type}}</td>\r\n            <td>{{service.service_order}}</td>\r\n            <td><span class=\"mono\">{{service.service_offset}}</span></td>\r\n            <td>{{service.service_state}}</td>\r\n        </tr>\r\n    {% endfor %}`\r\nwith\r\n`    {% for service in memory.svcscan %}\r\n        <tr>\r\n            <td>{{service.Name}}</td>\r\n            <td>{{service.Display}}</td>\r\n            <td>{{service.Binary}}</td>\r\n            <td>{{service.Pid}}</td>\r\n            <td>{{service.Type}}</td>\r\n            <td>{{service.Order}}</td>\r\n            <td><span class=\"mono\">{{service.Offset}}</span></td>\r\n            <td>{{service.State}}</td>\r\n        </tr>\r\n    {% endfor %}`\r\n\r\n\r\n\nComment: thanks, but won't it be better if you PR with fix instead fo open issue? that would save time to you and us\nComment: pushed change\nComment: @doomedraven , thanks... you are probably right, but I won't get my machine / dev envr. setup before the end of the weekend...\nComment: why do you need to get your dev machine? you posted change X to Z, so you had solution on hand already\nComment: Because I'm \"playing\" on my laptop at the minute, Reading the code, seeing how it works, flow etc. :-)\nComment: Well you had fix anyway so plese push PR next time to save tome to everyone\n\nEl vie., 12 feb. 2021 0:06, Phil Benson <notifications@github.com> escribi\u00f3:\n\n> Because I'm \"playing\" on my laptop at the minute, Reading the code, seeing\n> how it works, flow etc. :-)\n>\n> \u2014\n> You are receiving this because you were mentioned.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/441#issuecomment-777852667>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH346THKS6G7C67JJ5ZLS6RPHFANCNFSM4XOY3W4A>\n> .\n>\n",
+  "Title: Update report.html\nBody: \nComment: i have removed that as you can see that data is loaded via ajax, and i don't have time to add the check if any memdata exist",
+  "Title: Missing HTTP response in Web GUI\nBody: Hi,\r\n\r\nWhen looking at the network analysis I notice that I am missing the HTTP response. I see the GET and POST requests.\r\nLooking at the content of the dumped pcap file I see responses.\r\n\r\nWhat am I missing ?\r\n\r\nThanks\nComment: hi, poor details, no logs at all, that is hard to say what are you missing\nComment: Hi,\r\n\r\nWhat kind of logs do you need ?\nComment: you had all what we need in issue template that you removed\nComment: When look into the process.log I see this warning \r\n`You running old httpreplay: pip3 install -U git+https://github.com/CAPESandbox/httpreplay`\r\nI already updated it using the above mentioned command but I still get this warning.\r\n\r\nHas this something to do with the missing HTTP responses ?\nComment: maybe i don't know\nComment: closing, due to not provided any details and removed issue template\r\n1. never ignore issue template\r\n2. always provide all the details requested there",
+  "Title: HTML Report is not generated\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\nEnabling the option...\r\n[reporthtml]\r\nenabled = yes\r\nShould generate a HTML report that is available via the web gui\r\n\r\n# Current Behavior\r\nAfter a successful analysis, clicking on the Reports tab ->  HTML Report download button shows an error \"File not found\"\r\nLooking in the storage -> analysis directory of the sample there is no html file present.\r\n\r\n# Failure Information (for bugs)\r\nN/A\r\n\r\n## Steps to Reproduce\r\n\r\n1. Change the option to generate a HTML Report\r\n2. Ensure that the configuration change is taken over (restart CAPE)\r\n3. Submit a sample\r\n4. Once the sample is complete, attempt to get the HTML report\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | cc02cc7e1000245c18564f6133cb50d4f8749d94\r\n| OS version       | Ubuntu 20.04, Windows 7 x64 Guest, Firefox browser\r\n\r\n## Failure Logs\r\nFrom the processing log... only relevant section included...\r\n`2021-02-10 16:15:44,536 [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"ReportHTML\"\r\n2021-02-10 16:15:45,171 [lib.cuckoo.core.plugins] WARNING: The reporting module \"ReportHTML\" returned the following error: Failed to generate summary HTML report: 'list object' has no attribute 'config' \r\n2021-02-10 16:15:45,171 [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"ReSubmitExtractedEXE\"`\r\n\nComment: that some of the modeles that we consider super useless, and not really care about\nComment: That may be, but management like to look at shiny / clicky things.... :-)\r\nIt must have broken fairly recently, as about 10 days ago it was working...\r\nCould you give me a tip how I go go about looking into this myself? Perhaps starting the processing via command line for a specific sample...?\nComment: i will try to fix it later as i need to check that, didn't use this in 5y so now you can imagine why this is broken :D\r\n\nComment: i did a quick look and no idea, that was written by others, a lot of time ago and as i don't use it i won't spent time on that so you will need to figurate that by yourself\nComment: @doomedraven , yes not a problem... is there a generic call / test script that can be used to call the processing modules (ideally individually) for debugging?\nComment: Not individually, but at least sufficient for debugging:\r\n\r\n```\r\n$ cd /opt/CAPEv2/\r\n$ sudo su cape\r\n$ python3 utils/process.py -d -r 2639\r\n```\nComment: @kevoreilly , cheers.\nComment: It appears that an exception is being thrown in the reporthtml.py whilst the function\r\n`html = tpl.render({\"results\": results, \"summary_report\": False})`\r\nis called....\r\nmy knowledge of python is limited but I will see if I can get any more info...\r\n\r\nhas anything changed in the Jinja2 library lately?\nComment: that doesn't nothing to do with python, we didnt change nothing in ninja2 library, but it uses files from /data/html/ but there nothing for `.config` which is reported in your error. so you will need to figurate by yourself what is wrong, i personally would just remove that from CAPE \nComment: Hi @doomedraven , \r\nI was asking if anything had changed in the jinja2 library, not if you had changed anything....\r\n\r\n_\"so you will need to figurate by yourself what is wrong,\"_ \r\nthat's what I'm trying to do.... \r\n\r\n_\" personally would just remove that from CAPE\"_\r\nLike I said, management like shiny, clicky, bunty things... and if a html report can be generated that they (can pretend to) understand then they pay the bills... :-)  therefore removing it wouldn't be a good thing...\r\n\r\nI'm still looking, give me a bit of time.... :-)\nComment: well we don't use ninja2 library so we not track changes of it. at least those management guys can invite devs to some beer too no? :P \nComment: :-)\r\nAs far as I can tell, it appears that django uses jinja2 for rendering information into the html using the templates.... still looking....\nComment: @doomedraven , is the Volatility3 Data (json) differnet in the structure than that of what was originally present in cuckoo for Volatilty?\nComment: Ok, I found the problem. This is not an accusation, just what I have observed.\r\n[Jinja](https://jinja.palletsprojects.com/en/2.11.x/) is used by the report creation process to consolidate HTML templates dynamically (similar to what Django does)\r\n\r\n1. During the change from Volatility to Volatitliy3 (Cuckoo -> Cape) the DB Schema has changed for memory\r\n2. The /CAPEv2/data/html/sections/volatility.html obviously no longer is valid and therefore causes the exception during HTML report creation (and obviously PDF creation as this is based on the simple HTML report)\r\n\r\nI have a couple of questions...\r\nIs it possible that the Volatility dumping to the mongo db be changed so that the schema is the same as previous versions?\r\n(or has the information that is created by Volatility3 changed so radically that this is not viable?)\r\n\r\nWould I be correct in the assumption that the \"Filter\" is ignored in the current memory.conf settings?\r\n(Looking at the code, it seems that not everything is implemented, what is planned?)\r\n\r\nI've started changing the '/CAPEv2/data/html/sections/volatility.html' file so that at least the \"old\" functionality is present (minus the filtering), should I continue or are there plans to make further changes to the Volatility functionality in the future?\r\n\r\nCheers\r\nPhil\nComment: hello. dont forget this project is done in our __free__ time, so we can't and won't ensure everyones need, is opensource so you can adjust everything as i told you already ;) so NO i won't change that to be like the old one, as vol3 returns a bit different things amd works in different way. It just wasting of time keep everything as in v2.\r\n\r\nwhat is planned is to add yara rules(data/yara/memory_index.yar) to yarascan and thats all from my side, as all plugins that existed before, not all exist in vol3, so those that existed i did updated. i don't use core vol plugins, we have our owns and is why i needed VolatilityAPI bridge\nComment: Hi @doomedraven , my comments and questions were not meant as criticism, if they came across as such I appologise. \r\nOf course I realise it's open source and you do this in your spare time... I'm offering to help where I can :-)\r\nThat's why I asked regarding what you have planned for Volatility so that if I change the reporting to fit what *you* are doing... (i.e. do you plan on adding the configuration of filtering you Volatility). \r\nAs for the question about the data being stored in the DB (in a compatible format to cuckoo), again it was a question not a request (in regards to more / extra that Vol3 provides).\r\nAgain, would you like me to look over the HTML / PDF reporting so that CAPEv2 has the same functionality as before your implementation of Vol3?\r\n\r\nCheers\nComment: yes for sure, we always welcome any community help on part that we really don't use and at least someone in community needs. well what you can see that the name of variables is changed in vol3. so that I had to update all the html templates under `templates/analysis/memory/*.html`. That is what you need + remove probably that `config.filter`. but bear in mind well vol3 just was released so they might update stuff on their side that will require to be adjusted later. Even that vol3 is fast don't enable all posible plugins in sandbox that exist that will take a lot of time to generate all the things\nComment: no problems... I'll just go by whats in the DB schema... that ok for you? But it would be nice to get a heads up if changes are coming / come...\r\nI won't be able to set up a DEV box until the weekend (have to bring one back out of retirement) and I'm still looking into Django / Python, perhaps after the weekend I can do a Pull / PR..\r\nCheers\nComment: yes that fine I guess, thanks\nComment: so i guess this is abondoned? if yes we gonna just remove reporthtml\nComment: No, I'm still working on it.... I have to rework all of the html file in the static directory... I had the volatility ready but I'm bringing the rest into line with the look and feel of the normal web ui... the filters that are used are not compatible with ninja2 (seems to have been a mix and match of django templates and nija2 templates) but I'm getting there... at the same time fighting to get my dev machine up and running... @doomedraven , your kvm-qemu.sh doesn't seem to work correctly anymore... I can't get the kvm running correctly... give me a bit of time please...\nComment: Saying that something doesn't work  without log is useless. I have deployed\n2 servers just fine this week\n\nThanks for the html rewrite\n\nEl vie., 19 feb. 2021 1:42, Phil Benson <notifications@github.com> escribi\u00f3:\n\n> No, I'm still working on it.... I have to rework all of the html file in\n> the static directory... I had the volatility ready but I'm bringing the\n> rest into line with the look and feel of the normal web ui... the filters\n> that are used are not compatible with ninja2 (seems to have been a mix and\n> match of django templates and nija2 templates) but I'm getting there... at\n> the same time fighting to get my dev machine up and running...\n> @doomedraven <https://github.com/doomedraven> , your kvm-qemu.sh doesn't\n> seem to work correctly anymore... I can't get the kvm running correctly...\n> give me a bit of time please...\n>\n> \u2014\n> You are receiving this because you were mentioned.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/438#issuecomment-781732691>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH34JACGORCJEWK4GETTS7WXYDANCNFSM4XNFQ4RQ>\n> .\n>\n\nComment: whitespace in line 1116 if [ \"$7\" == \"linked\"]; then ->  if [ \"$7\" == \"linked\" ]; then\r\nin kvm-qemu.sh \r\nbut dont know if that is the problem that he mentioned\r\n\r\ni would appreciate it if the html report works again, @anykeypress :)\nComment: thanks @ClaudioWayne, fixed, that was added after my deployment\r\n@anykeypress please always provide details when saying something doesn't work\r\n\r\nanyway going to add shellchecker action\r\n\nComment: @doomedraven , sorry that I haven't been more precise, fighting on many fronts at the minute. As is on my host I've just install plain vanilla KVM as I wasn't getting anywhere. I'll run another VM through an see if I can provide more info.\r\n@ClaudioWayne , getting there... html is not one of my strong points :-(\nComment: @anykeypress np, thats normal, but just whne you can try to provide details so that will speedup fix, i have added shellcheck and have improved a lot syntaxis and thos small things\r\n\r\najaja i think html/css and webdev is not of any of us \nComment: @doomedraven , will the new update of the girl1.2-libvirt-glib-1.0 (Version 3.0.0-1) affect the modifications that you make to the KVM environment?\nComment: Probably, i have it in todo to verify but didnt had time to check yet, but\ni saw some latest libs depends of v3\n\nEl vie., 19 feb. 2021 21:09, Phil Benson <notifications@github.com>\nescribi\u00f3:\n\n> @doomedraven <https://github.com/doomedraven> , will the new update of\n> the girl1.2-libvirt-glib-1.0 (Version 3.0.0-1) affect the modifications\n> that you make to the KVM environment?\n>\n> \u2014\n> You are receiving this because you were mentioned.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/438#issuecomment-782312393>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH36CO7KO2JYCGIEQEMTS73AQ5ANCNFSM4XNFQ4RQ>\n> .\n>\n\nComment: try this https://github.com/kevoreilly/CAPEv2/issues/438 @anykeypress \nComment: just was able to verify that that PR fixes it, closing as solved, let us know if something",
+  "Title: Unusual behaviour reprted by CAPE for executables creating schtasks\nBody: Few days back, I stumbled upon a sample which created a `scheduled task` using `schtasks.exe` to execute dropped benign `LoGiTech.exe` file to sideload `LBTServ.dll` (dropped). I submitted it setting `timeout` to `700s`. But CAPE failed to report the execution of `LoGiTech.exe` and spawned some unusual processes like `msoia.exe`,  `GoogleUpdate.exe`.\r\n\r\nBelow is the screenshot of the process trees of described behaviour:\r\n\r\n![image](https://user-images.githubusercontent.com/49360849/107389631-f3e41700-6b1c-11eb-9f58-59834f91283f.png)\r\n\r\nand here's the sandbox run: https://capesandbox.com/analysis/115678/\r\n\r\n# Expected Behavior\r\n\r\n CAPE should report it correctly.\r\n\r\n# Current Behavior\r\n\r\nCAPE fails to report it.\r\n\r\n# Additional note:\r\n\r\nI have noticed similar issues for some samples are creating `scheduled task` and CAPE doesn't handle it correctly.\nComment: This is just that we haven't disabled google update (from Chrome) in the vms. It's not a fault with cape itself.\nComment: Ok, so it's been taken care off?\nComment: Not yet - it's a big job to redo all the snapshots.",
+  "Title: Extracted config files not visible\nBody: Hi,\r\n\r\nI am using the latest version, updated today.\r\nI cannot see the extracted config files within the browser interface. When looking at the JsonDump file I can see them.\r\n\r\nIs there something that I am missing ?\r\n\r\nThanks\nComment: Configs have moved to overview tab so should be there with no clicks but perhaps not obvious enough...?\nComment: Thanks, found it (just overlooked it).\nComment: I am planning to make the configs expanded by default so they are much more obvious",
+  "Title: RtlDispatchException when CAPE agent starts the sample EXE\nBody: # Prerequisites\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n# Expected Behavior\r\n\r\nA successful execution of the sample.\r\n\r\n# Current Behavior\r\n\r\nCAPE's agent starts the sample which crashes and `agent.py` logs mention a `RtlDispatchException`. The sample itself is functional and runs correctly if I start it from the cmdline. CAPE's agent also works correctly on another Win10 x64 sandbox that I've setup. So, I'm not sure what's going wrong with Win10 x86.\r\n\r\nMy question: which part of CAPE's code is the error occurring in? I've tried searching for the log strings that are shown before the `RtlDispatchException` but I've not been able to find them in CAPEv2's repo.\r\n\r\n# Steps to Reproduce\r\n\r\nN/A\r\n\r\n# Context\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit      | fabeda3dffe6b6b5d5d3e433d9601f0563b29acd\r\n| OS version      | Ubuntu 20.04\r\n| Sandbox OS | Win10 x86\r\n| Python | Python 3.8 x86\r\n\r\n# `agent.py` Failure logs\r\n\r\nLog1\r\n\r\n![RtlDispatchException_agent](https://user-images.githubusercontent.com/9674215/107309182-f3ce1380-6a57-11eb-9c9b-45bd25a53a89.png)\r\n\r\nLog2\r\n\r\n![RtlDispatchException_agent2](https://user-images.githubusercontent.com/9674215/107310720-fa11bf00-6a5a-11eb-8890-192347261ac3.png)\r\n\nComment: I'm thinking the most important piece of information by far is missing here... what sample?!\nComment: To answer your question generally - the component you are looking for is the monitor and it has a whole separate repo as it's a whole other world... https://github.com/kevoreilly/capemon\nComment: > I'm thinking the most important piece of information by far is missing here... what sample?!\r\n\r\nThis is it: d67c059b09f21327cbfe888a11f869c6b3c7190f2d7e1d5c18d5ca219545be99\r\n\r\n> To answer your question generally - the component you are looking for is the monitor and it has a whole separate repo as it's a whole other world... https://github.com/kevoreilly/capemon\r\n\r\nDo the logs tell you anything about what the problem could be? In the meantime, I'll be looking in capemon and see if I can pinpoint a location.\nComment: Ah it's an old Emotet sample. Can you try running with the following options:\r\n\r\ncaller-dump=0,yarascan=0\r\n\r\nLet me know if that makes any difference.\nComment: I see those options are read in `config.c` in capemon but where do I set them in CAPEv2?\nComment: paste into options\nComment: ![image](https://user-images.githubusercontent.com/22219888/107379453-d98e4700-6ae4-11eb-8a93-4e2862fa930d.png)\r\n\r\n\nComment: Ah, okay :) I'll check and get back to you. Thanks!\nComment: That doesn't seem to have worked:\r\n\r\n![RtlDispatchException_agent3](https://user-images.githubusercontent.com/9674215/107410885-dcd10500-6adb-11eb-9769-4c572c65d4ee.png)\r\n\nComment: The issue is the same/similar for a WannaCry sample (df6d5b29a97647bca44e2306069f7675ef992f591c8c761af99bbdc17cfa7692) as well\r\n\r\n![RtlDispatchException_agent4](https://user-images.githubusercontent.com/9674215/107411648-caa39680-6adc-11eb-81d0-3ee059fc6792.png)\r\n\r\n\nComment: The Emotet sample doesn't crash when I provide `free=1` option but then there's no monitoring, so the report isn't especially helpful. But atleast, it seems that the problem lies in the phase where CAPE starts monitoring the sample.\nComment: I think this log might give you more information. I ran the Emotet sample (d67c059b09f21327cbfe888a11f869c6b3c7190f2d7e1d5c18d5ca219545be99) with options - `caller-dump=0,yarascan=0,debug=1`. The previous `RtlDispatchException` was caught. Perhaps, a bug within `capemon.dll`?\r\n\r\nGit commit: cc02cc7e1000245c18564f6133cb50d4f8749d94\r\n\r\n![RtlDispatchException_agent5](https://user-images.githubusercontent.com/9674215/107541551-3ea17580-6b95-11eb-840d-a383617ca396.png)\r\n\nComment: The exception is not from within capemon, and it's working fine on Win7, so I would infer it's an incompatibility due to changes in Windows. The problem is I don't have a 32-bit Win10 to test on, I have only built a 64-bit vm so far... well at least until this morning. Let me finish off preparing this 32-bit Win10 vm then I can just debug it myself which will be much more efficient. It's something I need to do anyway so this is a good reason to get going. \nComment: Did you have any luck figuring out the problem, @kevoreilly ?\nComment: Take a test.\r\nEven with python 3.6.8 installed, install python2.7 on the host\r\nI had this problem and after I got the two versions of python installed on windows the errors stopped.\nComment: That didn't work. I had Python 3.8.0 x86 installed. So, I installed Python 2.7 x86 on the host and ran `agent.py` with Python 3.8.0. Same error. I tried running `agent.py` with Python 3.6.8 x86 (with Python 2.7 x86 also installed on the sandbox) but got the same error.\nComment: is this solved?\nComment: closing, reopen if needed\nComment: This wasn't solved. I just moved on to using x64 Windows\nComment: @kevoreilly was you able to reproduce this on w10x86?\nComment: Afraid not - I haven't had time unfortunately. There are a million other issues that I've been maxed out working on even in Win7. I have done some work on x64 compatibility since I have this set up but my x86 vm still isn't finished, it's just waiting under a massive pile of other more pressing issues I'm afraid to say.\r\n\r\nTo be fair if we are gonna have an issue here, let's just be honest and call it 'Win 10 compatibilty is not 100%' or similar because in truth the list of issues on Win10 is long. doomed you know I have been working on getting a batch file to launch calc working in on Win10x64. This particular issue is a drop in the ocean.",
+  "Title: The default timeout for analysis in the cuckoo.conf is not used in the WEB GUI on the Submition Form\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\nThe default timeout in the cuckoo.conf\r\n[timeouts]\r\ndefault=300\r\nshould be present in the Submit form for timeout\r\n\r\n# Current Behavior\r\nThe value in the Submit form is always 200\r\n\r\n# Failure Information (for bugs)\r\n\r\n## Steps to Reproduce\r\n\r\n1. Set the defaut to anything other than 200\r\n2. Restart CAPE\r\n3. Select \"Submit\" and observe the timeout field\r\n\r\n## Context\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | 783785d3081ad77269334725abf71b3bc8ececfe\r\n| OS version       | Ubuntu 20.04, Windows7 x64 Guest, KVM\r\n\r\n## Failure Logs\r\nN/A\r\n\r\nAs a suggestion (worked for me)\r\nAdd the following to the /web/submission/views.py\r\n`enabledconf[\"timeout\"] = cfg.timeouts.default`\r\nunderneath\r\n`enabledconf[\"tlp\"] = web_conf.tlp.enabled`\r\n\r\nEdit the /web/templates/submission/index.html\r\nSearch for\r\n`<input type=\"text\" class=\"form-control\" id=\"form_timeout\" name=\"timeout\"/>`\r\nand replace this with\r\n`<input type=\"text\" class=\"form-control\" id=\"form_timeout\" name=\"timeout\" value=\"{{config.timeout}}\" />`\r\n\nComment: Nice thx, works for me.\r\nConsider PR\nComment: @ClaudioWayne , you are welcome to PR it. I'm still in the process of setting my environment up.",
+  "Title: Feature Request(s) / Thoughts on extending WEB UI\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\nJust a few thoughts after playing with CAPE for a while, please ignore if inappropriate or already requested...\r\n\r\nAllow options in the web UI to be predefined (Part 1)\r\ni.e. the checkboxes ( Enable import reconstruction in process dumps, Run without monitoring) etc.\r\n\r\nAllow options in the web UI to be predefined (part 2)\r\nFor example Clock (to be automatically set to current (host) system time\r\nCape Options to be predefined\r\n\r\nJust a thought and would be a nice to have...\r\nPlease close if inappropriate\r\n\nComment: Hello, well any feature request is more than welcome, the other thing that we need it. so we will leave this for community to implement as you have all the source for that. for things like that is why scripting via api exist to allow set options and submit directly, you can get apikey on public cape for example if you check documentation\nComment: im closing that, you are welcome to implement and PR that, but the bear in mind that is hard to cover everyone usercase, so we suggest use scripted api\nComment: Hi @doomedraven ,\r\nI have the following thoughts (please correct me if I'm wrong)\r\n1. In the conf have a section (for example [default_checkbox_state] in which the current checkboxes are present..\r\n2. AFAIK, this config can / could be read by /web/templates/submission/ and the checkboxes could be rendered with / without being checked on creation...\r\n\r\nFor example.... from the file /web/templates/submission/index.html\r\n\r\n\t<div class=\"form-check\">\r\n\t<label>\r\n\t{% if checkbox_prodump %}\r\n\t    <input type=\"checkbox\" name=\"process_dump\" checked/> Disable process dumps\r\n\t{% else %}\r\n\t    <input type=\"checkbox\" name=\"process_dump\" /> Disable process dumps\r\n\t{% eendif %}\r\n\t</label>\r\n\t</div>\r\n\t{% if config.procmemory %}\r\n\t<div class=\"form-check\">\r\n\t<label>\r\n\t    {% if checkbox_prodump %}\r\n\t    \t<input type=\"checkbox\" name=\"process_memory\" checked/> Full process memory dumps\r\n\t    {% else %}\r\n\t    \t<input type=\"checkbox\" name=\"process_memory\" /> Full process memory dumps\r\n\t    {% endif %}\r\n\t</label>\r\n\t</div>\r\n\t{% endif %}\r\n\r\nMy question is, which conf file would make sense to add this to, and would it be accessable from the index.html (for example config.procmemory setting...\r\n\r\nSorry for these questions, but I have never used python before and it's been over 15 years snce I have done any serious development (and that was c/c++ Windows / embedded)\r\n\nComment: np, well it sound good. for config -> `conf/web.conf`\r\neverything that is in `web/web/settings.py` should be accessible as `settings.X` \r\nbut instead of doing this as that is conf and con't wont change too much, i would just change default html checkboxes to simplify this. as this is not javascript and not ajax request, checkboxes won't update if you set some other options. so if you know default needs, and has your own private sandbox then just go and modify html, as that i the simpliest way to handle that on your side\nComment: @doomedraven , thanks... yes you are proably correct. I just thought it might (as far as I could see) be configurable as default, but for example deselecting during submission (as is selecting during submission)...\r\nOnce more for my understand, access the settings in the index.html I'd have to use\r\n % config.default_checkboxstateCHECKBOXNAME % if the section in the web.conf is called [checkboxstate] and the value / key pairs are CHECKBOXNAME = 1/0 ?\r\nFor example...\r\n\r\n[checkboxstate]\r\nprodump=1\r\nprocmemory=1\nComment: many of us who collaborating here, running our own forks with some tweaks like those.\r\ncheck this as example\r\n\r\n```\r\n./account/signup.html:            {% if settings.WEB_OAUTH.amazon_cognito %}\r\n```\r\n\r\nwhat i suggest you to do is instead of this\r\n\r\n```\r\n{% if checkbox_prodump %}\r\n    <input type=\"checkbox\" name=\"process_dump\" checked/> Disable process dumps\r\n{% else %}\r\n    <input type=\"checkbox\" name=\"process_dump\" /> Disable process dumps\r\n{% endif %}\r\n```\r\n\r\njust this\r\n```\r\n<input type=\"checkbox\" name=\"process_dump\" {% if checkbox_prodump %} checked {% endif %}/> Disable process dumps\r\n```\nComment: @doomedraven , sorry if I am bothering you, but I have a question, I was wondering if you could point me in the right direction...\r\nHow is the 'config' object populated with the information that is used the /web/templates/submission/index.html  template?\nComment: hello here https://github.com/kevoreilly/CAPEv2/blob/master/web/submission/views.py#L510\r\nso you can see how it loads all the values to config https://github.com/kevoreilly/CAPEv2/blob/master/web/submission/views.py#L451\nComment: @doomedraven , thanks you're a star... a bit too convoluted for an old fart like me :-)\nComment: you are welcome, that was super confusing for me too, is why im doing right now django crash course to understand that better\nComment: @doomedraven , another question (I'm probably getting on your nerves now) what dev setup have you got (IDE, Testbed, Tools, HW etc.) for working on this?\nComment: ahhaha no\r\n\r\nide: https://code.visualstudio.com/insiders/\r\n\r\nHW is mix of dev and multimedia\r\nServer: https://www.lenovo.com/es/es/data-center/servers/towers/ThinkServer-TS140/p/77LS7TS140V 10tb mix hhd/ssd/nvme, 32gb of ram\r\n\r\nabout the rest of the tools well python libraries, and extensions for vs code as it has tons of cool extensions to interact with git, mongo, etc\nComment: @doomedraven , all on ububtu?\nComment: Yes ubuntu 20.04\n\nEl lun., 8 feb. 2021 22:59, Phil Benson <notifications@github.com> escribi\u00f3:\n\n> @doomedraven <https://github.com/doomedraven> , all on ububtu?\n>\n> \u2014\n> You are receiving this because you were mentioned.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/433#issuecomment-775491125>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH36WA4LUGUGX44ROMQ3S6BNDRANCNFSM4XGW4UFA>\n> .\n>\n",
+  "Title: \"Display Text\" button opens and then closes immediately on the tab \"Dropped Files\"\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n- [x] I'm have read all configs with all optional parts\r\n\r\n\r\n# Expected Behavior\r\nDisplay the (text) content of the dropped file selected.\r\n\r\n# Current Behavior\r\n\r\n\"Display Text\" button opens and then closes immediately on the tab \"Dropped Files\". If multiple dropped files are present, sometimes the text contents are displayed correctly, but the others are opened and closed immediately.\r\n\r\n# Failure Information (for bugs)\r\nThis also happens on the public cape sandbox (https://capesandbox.com/analysis/115914/) is a good example.\r\n\r\n## Steps to Reproduce\r\n\r\n1. Submit a sample that has known dropped files\r\n2. Select the tab \"Dropped Files)\r\n3. If multiple entries are present, sometime the firt one is shown normally, but subsequent ones are closed immediately\r\n\r\n## Context\r\n\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | 783785d3081ad77269334725abf71b3bc8ececfe\r\n| OS version       | Ubuntu 20.04, Windows 7 x64, Firefox Browser v. 85, also in the actual Chrome vesion\r\n\r\n## Failure Logs\r\n\r\nI can't see anything in the web log, perhaps it's a glitch in the Browser?\r\n\nComment: i saw that behavior, that has something to do with bootstrap js, but i didn't have time to investigate, and nobody of us is webdev\nComment: Did you remove it?\r\n![image](https://user-images.githubusercontent.com/35531629/107372352-3a198600-6add-11eb-8aeb-fc290acceef7.png)\r\n\nComment: yes bcz that is for bootstrap3 and bootstrap.min.js has it embed\nComment: @doomedraven , I have found a \"work.around\" for this bug. I've done a bit of research on the internet and cannot find anything specifically to rectify it... however this works for me...\r\n\r\nIn the file \r\n`/web/templates/analysis/dropped/index.html`\r\nthere are two instances of\r\n`&emsp;<a class=\"btn btn-secondary btn-small\" data-toggle=\"collapse\" data-target=\"#{{file.sha256}}\">Display Text</a>`\r\nthese should be replaced with\r\n`&emsp;<a class=\"btn btn-secondary btn-small\" data-toggle=\"collapse\" data-target=\"#DisplayText\">Display Text</a>`\r\n\r\nalso the instance\r\n`<tr class=\"collapse\" id=\"{{file.sha256}}\">`\r\nneeds to be replaced with\r\n`<tr class=\"collapse\" id=\"DisplayText\">`\r\n\r\nbasically all this does is remove the \"variable\" and use a hardcoded id for the text area to be displayed when using the drop down button. I don't know if this is acceptable for you guys... the only other thing I can think of is replacing the version of bootstrap... but that would proably be a major undertaking...\r\n\nComment: thank you @anykeypress, but that is the problem, if we have few files that can show content? then it won't work, but at least it sound like the variable is the problem\nComment: @doomedraven , why would that be a problem... or do you thin it also affects the other file types to display? As far as I have looked through the code, the only type that is displayed via \"accordian / expanable\" button is the type \"Text\"... (or {{file.sha256}}, the other types are just displayed... just my thoughts, ignore if inappropriate.\nComment: Bcz if you have more than 1 file with display text, target id is the same\nand that is wrong\n\nEl mar., 9 feb. 2021 23:48, Phil Benson <notifications@github.com> escribi\u00f3:\n\n> @doomedraven <https://github.com/doomedraven> , why would that be a\n> problem... or do you thin it also affects the other file types to display?\n> As far as I have looked through the code, the only type that is displayed\n> via \"accordian / expanable\" button is the type \"Text\"... (or\n> {{file.sha256}}, the other types are just displayed... just my thoughts,\n> ignore if inappropriate.\n>\n> \u2014\n> You are receiving this because you were mentioned.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/432#issuecomment-776296124>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH333HQCRGIBOXDX4OO3S6G3SJANCNFSM4XGK2DDQ>\n> .\n>\n\nComment: fixed here https://github.com/kevoreilly/CAPEv2/commit/cc02cc7e1000245c18564f6133cb50d4f8749d94\r\n thanks @anykeypress to help spot problem\nComment: hi @doomedraven , i did test that possibility (multiple text based files to display) and found no problems (except that both text areas opend / closed when multiple files where present)... example would be [this...](https://capesandbox.com/analysis/116215/) althouhg I got more dropped files then the sample on the public cape...\r\nBut whatever, your solution is ore elegant :-)\nComment: Hello, well is not more elegant, is just correct one, as each button should\nshow their text and not all\n\nEl mi\u00e9., 10 feb. 2021 9:41, Phil Benson <notifications@github.com> escribi\u00f3:\n\n> hi @doomedraven <https://github.com/doomedraven> , i did test that\n> possibility (multiple text based files to display) and found no problems\n> (except that both text areas opend / closed when multiple files where\n> present)... example would be this...\n> <https://capesandbox.com/analysis/116215/> althouhg I got more dropped\n> files then the sample on the public cape...\n> But whatever, your solution is ore elegant :-)\n>\n> \u2014\n> You are receiving this because you were mentioned.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/432#issuecomment-776540241>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3YBA2XOWUEIRAGRQBDS6JBC3ANCNFSM4XGK2DDQ>\n> .\n>\n",
+  "Title: Volatility error, no processing is carried out\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\nThe processing of memory via Volatility should be executed. (I know it's Beta / WIP) so this might be expected\r\n\r\n# Current Behavior\r\nNo processing is executed by the Volatility module\r\n\r\n# Failure Information (for bugs)\r\nWhat I have found out, if I set \"dostrings = no\" instead of yes in the memory.conf I do get some results.... \r\n\r\n\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Submit a sample and choose to use Volatility for memory analysis\r\n2. Wait until the processing is complete\r\n3. Once the processing is complete, no information is reported\r\n\r\n## Context\r\nUpdated from a previous version.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | 783785d3081ad77269334725abf71b3bc8ececfe\r\n| OS version       | Ubuntu 20.04, Windows 7 x64 Guest\r\n\r\n## Failure Logs\r\nThis is (AFAIK) the relevant entry from the processing log....\r\n\r\n2021-02-06 00:28:48,462 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"Memory\" on analysis at \"/opt/CAPEv2/storage/analyses/5\"\r\n2021-02-06 00:29:32,320 [root] ERROR: Generic error executing volatility\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../modules/processing/memory.py\", line 342, in run\r\n    results = vol.run()\r\n  File \"/opt/CAPEv2/utils/../modules/processing/memory.py\", line 271, in run\r\n    self.do_strings()\r\n  File \"/opt/CAPEv2/utils/../modules/processing/memory.py\", line 291, in do_strings\r\n    data = open(self.memfile, \"rb\").read()\r\nMemoryError\r\n2021-02-06 00:29:32,335 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"NetworkAnalysis\" on analysis at \"/opt/CAPEv2/storage/analyses/5\"\r\n\nComment: that sound like you don't have enough space probably ram to put the memdumo in there\nComment: + the tab is not loading i know that, idk why, but i don't have right now time to investigate, the rest is integrated, if you open developer console and click on memory analysis you will see the content correctly\nComment: ok tab now shown correctly + added this memory error to try/except. \nComment: Hi @doomedraven , could you explain what you mean by \"developer console\"?\r\nRegarding RAM, you might be correct as I test any changes in a Virtual Environment, but the host has 32GB so that should be enough and i only have one VM Guest.... Is there anything else I can do you help or give more information?\nComment: about console https://developer.mozilla.org/en-US/docs/Learn/Common_questions/What_are_browser_developer_tools. but i have fixed that already\r\n\r\nabout memory error no, i don't know why that happens, my dev server has 32gb ram too, but it worked just fine, so you need to dig what triggers python memory error\nComment: Ah, ok... you mean in the web browser...\r\nI'll try to see if I can get any more info, but the only thing I found until know was the \"dostrings = no\" setting seems to get the rest of the results without \"bombing out\".... another question, is there any news when the public instance is going to be \"freed\". My account there (pressanykey) is still locked...\nComment: your account is activated now, due to that recaptchav3 sucks and with recatcha+email verification isn't enough to stop spamemrs, we had to set that all new/old users are deactivated and only activate if they ping us and we see that they are not bad guys. \r\n\r\nwell for me personally get strings from whole memdump is insane, it consumes  a lot of resources + takes a lot of space with 2gb memdump i got 500mb strings file %)\nComment: Then I suggest that the issue be close, and perhaps a small remark about needing *allot* of memory on the host to be able to process using Volatility (in particular strings)... perhaps the option of \"Post-Processing\" like you have implemented for CAPA and the Bingraph?\r\nThanks for your help again.\nComment: As that makes sense to extract on demand, i will add that this week, thanks\nfor suggestion\n\nEl s\u00e1b., 6 feb. 2021 13:21, Phil Benson <notifications@github.com> escribi\u00f3:\n\n> Then I suggest that the issue be close, and perhaps a small remark about\n> needing *allot* of memory on the host to be able to process using\n> Volatility (in particular strings)... perhaps the option of\n> \"Post-Processing\" like you have implemented for CAPA and the Bingraph?\n> Thanks for your help again.\n>\n> \u2014\n> You are receiving this because you were mentioned.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/431#issuecomment-774469334>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH36WUWUXTGRGJKVJTBLS5UX35ANCNFSM4XFUI4FQ>\n> .\n>\n\nComment: well i personally don't need that feature, so I will leave that to others to implement, as i was checking and it requires some modifications and adjustment \nComment: @doomedraven , thanks for taking the time to look into it.\nComment: you are welcome, i have added vol3 to port my modules from vol2, but in personally not interested in vols default plugins. so i have other priorities as you can imagine",
+  "Title: Please add information regarding the symbols that need to be downloaded for Volatility use\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nPlease add information (perhaps in the changelog) that the required symbols need to be download and added to the Volatility directory for successful use.\r\nhttps://github.com/volatilityfoundation/volatility3 (scroll down for the links to the symbols)\r\n\r\n\nComment: added thanks",
+  "Title: Error on ResubmitExtractedExe (also applies to using the submit.py in the utils directory)\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\nAny extracted exes should be resubmitted for analysis. Also the submit.py script. These both worked before updating this evening.\r\n\r\n# Current Behavior\r\nBoth the ReSubmitExtractedExe and the submit.py methods fail. In the submit.py the only information is the that the insert into the database failed.\r\nRegarding the cape log file the rror is more descriptive. It appears (perhaps, not sure) that the DB schema has changed.\r\n\r\n# Failure Information (for bugs)\r\n\r\n## Steps to Reproduce\r\nUpdate from previous version. Submit malware with known \"droped files\". Alternatively use the submit.py script in the utils directory to add a file (or multiple files) for submission.\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Update from previous version of CAPEv2\r\n2. Carry out steps explained in changelog.md\r\n3. Add a malware with known dropped files (exe9 that will be resubmitted.\r\n\r\n## Context\r\n\r\nBTW, I do not have any users or user administration activated.\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Commit 783785d3081ad77269334725abf71b3bc8ececfe\r\n| OS version       | Ubuntu 20.04, Windows 7X64 Guest, KVM\r\n\r\n## Failure Logs\r\nThis is only an excerpt, I presume it is enough....\r\n\r\n2021-02-05 22:08:04,586 [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"ReSubmitExtractedEXE\"\r\n2021-02-05 22:08:04,587 [lib.cuckoo.core.plugins] DEBUG: Executing reporting module \"SubmitCAPE\"\r\n2021-02-05 22:08:04,644 [lib.cuckoo.core.database] DEBUG: Database error adding task: (psycopg2.errors.DatatypeMismatch) column \"user_id\" is of type integer but expression is of type boolean\r\nLINE 1: ..., false, 26, NULL, NULL, NULL, NULL, NULL, 2, '', false) RET...\r\n                                                             ^\r\nHINT:  You will need to rewrite or cast the expression.\r\n\r\n[SQL: INSERT INTO tasks (target, category, cape, timeout, priority, custom, machine, package, route, tags_tasks, options, platform, memory, enforce_timeout, clock, added_on, started_on, completed_on, dropped_files, running_processes, api_calls, domains, signatures_total, signatures_alert, files_written, registry_keys_modified, crash_issues, anti_issues, analysis_started_on, analysis_finished_on, processing_started_on, processing_finished_on, signatures_started_on, signatures_finished_on, reporting_started_on, reporting_finished_on, timedout, sample_id, machine_id, shrike_url, shrike_refer, shrike_msg, shrike_sid, parent_id, tlp, user_id) VALUES (%(target)s, %(category)s, %(cape)s, %(timeout)s, %(priority)s, %(custom)s, %(machine)s, %(package)s, %(route)s, %(tags_tasks)s, %(options)s, %(platform)s, %(memory)s, %(enforce_timeout)s, %(clock)s, %(added_on)s, %(started_on)s, %(completed_on)s, %(dropped_files)s, %(running_processes)s, %(api_calls)s, %(domains)s, %(signatures_total)s, %(signatures_alert)s, %(files_written)s, %(registry_keys_modified)s, %(crash_issues)s, %(anti_issues)s, %(analysis_started_on)s, %(analysis_finished_on)s, %(processing_started_on)s, %(processing_finished_on)s, %(signatures_started_on)s, %(signatures_finished_on)s, %(reporting_started_on)s, %(reporting_finished_on)s, %(timedout)s, %(sample_id)s, %(machine_id)s, %(shrike_url)s, %(shrike_refer)s, %(shrike_msg)s, %(shrike_sid)s, %(parent_id)s, %(tlp)s, %(user_id)s) RETURNING tasks.id]\r\n[parameters: {'target': '/tmp/cuckoo-tmp/upload_3qyy25bn/boo-haa.exe', 'category': 'file', 'cape': False, 'timeout': 300, 'priority': 3, 'custom': '', 'machine': 'WIN7X64-001', 'package': 'Unpacker', 'route': False, 'tags_tasks': False, 'options': 'procmemdump=1,import_reconstruction=1,norefer=1', 'platform': 'windows', 'memory': True, 'enforce_timeout': False, 'clock': datetime.datetime(1970, 1, 1, 0, 0), 'added_on': datetime.datetime(2021, 2, 5, 22, 8, 4, 638966), 'started_on': None, 'completed_on': None, 'dropped_files': None, 'running_processes': None, 'api_calls': None, 'domains': None, 'signatures_total': None, 'signatures_alert': None, 'files_written': None, 'registry_keys_modified': None, 'crash_issues': None, 'anti_issues': None, 'analysis_started_on': None, 'analysis_finished_on': None, 'processing_started_on': None, 'processing_finished_on': None, 'signatures_started_on': None, 'signatures_finished_on': None, 'reporting_started_on': None, 'reporting_finished_on': None, 'timedout': False, 'sample_id': 26, 'machine_id': None, 'shrike_url': None, 'shrike_refer': None, 'shrike_msg': None, 'shrike_sid': None, 'parent_id': 2, 'tlp': '', 'user_id': False}]\r\n(Background on this error at: http://sqlalche.me/e/13/f405)\r\n2021-02-05 22:08:04,645 [modules.reporting.submitCAPE] WARNING: Error adding CAPE task to database: Unpacker\r\n\r\n\nComment: pushed update, thanks",
+  "Title: vol3\nBody: ",
+  "Title: pending is not parsed and other newly entered files are parsed. Does the file registered in pending also have a timeout?\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\nThank you for always answering the question!\r\nThanks to you, I enjoy using cape.\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\nThe pending is correctly queued and parsed in sequence. There are no pending files.\r\n\r\n# Current Behavior\r\npending is not parsed and other newly entered files are parsed. (1.7 million files remain pending registered...)\r\nDoes the file registered in pending also have a timeout?\r\nPlease let me know if there is a pending specification.\r\n\r\n## Steps to Reproduce\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. submit file constantly.\r\n2. It is analyzed, and the part that overflows from the machine goes to pending.\r\n3. But Some pending files can't analyze forever. Ignore pending and Other files that came in after that are parsed.\r\n\r\n## Context\r\nHost machine: ubuntu 20.04.1 LTS\r\nGuest machine: 8dmachines Using VirtualBox   Windows 10 installed python3.8(32bit)\r\n\r\n## Failure Logs\r\n\r\n\r\n\r\n\nComment: no they don't, that just could be related to priority, but that probably that you created x64 VMs and not set tags for them\nComment: @ai-suzuki any feedback?\nComment: @doomedraven \r\nThe reply was delayed.\r\nThe tags are set in the conf file.\r\nSome files have been parsed.\nComment: @doomedraven \r\nIt seems that there is enough CPU, memory, and disk ... If you analyze too many files at once, the files will accumulate in pending and the ones in pending will not be analyzed.\r\nIs there a limit to the number of files that can be submitted at one time? Or is there a specification that the pending is discarded after a few seconds?\nComment: By the way, how many files does https://capesandbox.com/ expect to submit?\nComment: there is no limit for files submit, what you have limits is for parallel execution in `cuckoo.conf`\nComment: thanks you.\r\nIf you can teach me, I would like to know the cape Performance(CPU, memory, disk) of https://capesandbox.com/ because I want to refer to the cape I am using.(__)\nComment: 64cpu/252gbram/2tb disk(hdd) that is donated hardware, but we got extra server to cluster cape, 64gb ram, 1tb NVME, X cpus.\r\n\r\nbut the performnace depends of many different things, as if inside vm you using aero theme as example, how much ram you dedicate to vm, so that is each user preference and play, there is no perfect match. if i just will drop all details here that can be used by badguys against us\nComment: Thank you for valuable information!\u3000I will refer\r\nMy environment is 4CPU, 32gbram, 3tb sandbox is 8VM, so a little more tuning may be needed...\nComment: well 4 cpu and 8vms, you going crazy, if you give 2 cpu at least per vm, you can't really expect a good performance, it will work for sure but if you want to analyze 1.7m files, buy a real hardware and preferly use dist.py to use many servers aka workers in distributed way. im closing the issues as i think is not related to cape problem itself\nComment: Thank you for answering other questions.\r\nConsider the hardware configuration.\r\nSee also dist.py.",
+  "Title: ModuleNotFoundError: No module named 'ratelimit'\nBody: Hi,\r\n\r\nJust did a fresh install of CAPEv2 on Ubuntu.\r\nEverything went fine but when running the following command\r\n`python3 manage.py migrate`\r\n\r\nI receive the following error \r\n`Traceback (most recent call last):\r\n  File \"manage.py\", line 15, in <module>\r\n     execute_from_command_line(sys.argv)\r\n  File \"/usr/local/lib/python3.8/dist-packages/django/core/management/__init__.py\", line 401, in execute_from_command_line\r\n    utility.execute()\r\n  File \"/usr/local/lib/python3.8/dist-packages/django/core/management/__init__.py\", line 377, in execute\r\n    django.setup()\r\n  File \"/usr/local/lib/python3.8/dist-packages/django/__init__.py\", line 24, in setup\r\n    apps.populate(settings.INSTALLED_APPS)\r\n  File \"/usr/local/lib/python3.8/dist-packages/django/apps/registry.py\", line 91, in populate\r\n    app_config = AppConfig.create(entry)\r\n  File \"/usr/local/lib/python3.8/dist-packages/django/apps/config.py\", line 90, in create\r\n    module = import_module(entry)\r\n  File \"/usr/lib/python3.8/importlib/__init__.py\", line 127, in import_module\r\n    return _bootstrap._gcd_import(name[level:], package, level)\r\n  File \"<frozen importlib._bootstrap>\", line 1014, in _gcd_import\r\n  File \"<frozen importlib._bootstrap>\", line 991, in _find_and_load\r\n  File \"<frozen importlib._bootstrap>\", line 973, in _find_and_load_unlocked\r\nModuleNotFoundError: No module named 'ratelimit'`\r\n\r\nI have checked and django-ratelimit is installed.\r\n\r\nWhat could be the problem ?\r\n\r\nThanks\nComment: try reinstall django-ratelimit\r\n(sudo) pip3 uninstall django-ratelimit\r\npip3 install -U django-ratelimit\r\n\r\nthey changed package name\r\nhttps://github.com/jsocol/django-ratelimit/commit/002888661971ba6b0910dd0a4edf91d02606a7da#diff-ecec88c33adb7591ee6aa88e29b62ad52ef443611cba5e0f0ecac9b5725afdba\nComment: Thanks that solved the problem.\nComment: ok pushed imports fix as that wasn't updated",
+  "Title: Tasks 2 user\nBody: ",
+  "Title: Improper Condition Check in APIv2 VT Settings\nBody: ## Summary\r\n\r\nAt L569 of the newly implemented APIv2 views, the expected value is probably missing a `not` at the beginning, as this entire check always returns false even if the key is supplied. \r\n\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/ff34a5f0f7f358d60541e17c7269440e11abc89b/web/apiv2/views.py#L569\nComment: Also, shouldn't the `opt_apikey` be optional if the `VTDL_KEY` is already present in the config?\nComment: hello, good catch about `not`. about `VTDL_KEY` is used inside of the func, it just propagated in opt_apikey to function, but yes could be set directly\r\n\r\n```\r\nif settings.VTDL_KEY:\r\n            details[\"headers\"] = {'x-apikey': settings.VTDL_KEY}\r\nelif details.get(\"apikey\", False):\r\n            details[\"headers\"] = {'x-apikey': details[\"apikey\"]}\r\n```\nComment: I'm still getting an error if the `not opt_apikey` is present though - even if I specify it in the request.\nComment: on private or public?\nComment: If you mean on a private instance or not, yes a private one.\nComment: ok, then i will try to dig to it once i will have some time\nComment: Everything works perfectly if I remove that specific check by the way, so it's something to do with that last check.\r\n\r\nEdit: More on the API key used - the VT API key used is a VT Intel one.\nComment: i can't reproduce it, and it works for me just as it is, do you pass opt apikey or something?\r\nis how my apiconf looks in auxiliar.conf\r\n```\r\n[virustotaldl]\r\n# adds an option in the web interface to upload samples via VirusTotal\r\n# downloads for a comma-separated list of MD5/SHA1/SHA256 hashes\r\nenabled = yes\r\n# note that unlike the VirusTotal processing module, the key required\r\n# here is a Intelligence API key, not a Public API key\r\ndlintelkey = APIKEY\r\ndlpath = /tmp/\r\n```\nComment: I tried both passing and not passing the key in the request according to the curl example provided on the API page, and yeah that's what my config looks like as well.\nComment: can you post error? as without being able to reproduce it i can't do nothing and apiv2 not changed the code only framework that wraps the functions\nComment: It just jumps straight into the line below the if condition, so the generic VT_KEY missing error.\nComment: ok pushed change, this should fix, can you try it plz\r\n```\r\nif not (settings.VTDL_KEY or opt_apikey) or not settings.VTDL_PATH:\r\n```\nComment: closing this as i can't reproduce it, let me know if you still getiting issue\nComment: That appears to have fixed it. Thanks!\nComment: Thanks for feedback\n\nEl mar., 9 feb. 2021 7:57, Still Hsu <notifications@github.com> escribi\u00f3:\n\n> That appears to have fixed it. Thanks!\n>\n> \u2014\n> You are receiving this because you modified the open/close state.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/424#issuecomment-775717512>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH35PRGSPMKVJMDS3TWLS6DMFPANCNFSM4W6CYTGQ>\n> .\n>\n",
+  "Title: Sandbox Evasion\nBody: Since we could not find any e-mail to report about the online cape version, we have noticed the following that may allow malware to evade several tests:\r\n\r\n- Small amount of threads (2) for a modern CPU.\r\n\r\n- Consider running pafish in your VMS as the VM can be detected by the CPU timestamp counters (rdtsc).\r\n\r\n- It would be wise to leave an application in the foreground to show that someone opened the app.\r\n\r\n\r\n\nComment: thanks. \r\n\r\n2. we more then aware about everything, and our personal suggestion instead of pafish use https://github.com/LordNoteworthy/al-khaser\r\n3. that can be done by packages, for example Ostap malware does check of running processes and user can handle that, in case if would be needed we can start them easilly\nComment: @basilhskk I thought you might be interested to know that Pafish sandbox evasion is now successfully bypassed with this YARA sig:\r\n\r\n```\r\nrule Pafish\r\n{\r\n    meta:\r\n        author = \"kevoreilly\"\r\n        description = \"Pafish bypass\"\r\n        cape_options = \"bp0=$rdtsc_vmexit-2,action0=skip,bp1=$rdtsc_vmexit-2,action1=skip,count=1\"\r\n    strings:\r\n        $rdtsc_vmexit = {8B 45 E8 80 F4 00 89 C3 8B 45 EC 80 F4 00 89 C6 89 F0 09 D8 85 C0 75 07}\r\n    condition:\r\n        uint16(0) == 0x5A4D and $rdtsc_vmexit\r\n}\r\n```\r\n\r\nSee for example:\r\nhttps://www.capesandbox.com/analysis/116309 ",
+  "Title: Office-docs causes VM run out of memory\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nProcessing is successful\r\n\r\n# Current Behavior\r\n\r\nHello,\r\n\r\nHello, \r\nDuring the analysis of office-documents, the memory usage increases more and more until the vm runs out of memory. This causes an error during the processing task. I can see that a svchost.exe causes the memory usage that leads to winmgmt-Service. I tried to run the agent both via cmd  with administrative privileges and in startup folder for all users C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\StartUp (shell:common startup). Firewall and Windows-Defender are off. If i stop the winmgmt-service manually during analysis, analysis and processing are successful. I tried also different vm-setups (different .net frameworks, WMF 5.1, different Python-Versions, with/without pillow, choco.bat etc.) but i can't find the error. Did also a complete fresh install of ubuntu, kvm/qemu and cape. No success. PE-files etc works flawless.\r\n\r\nHost: Ubuntu 20.04.01 / Guest: Windows7x64 (6.1.7601 SP1 Build 7601) with Office 2010SP2\r\n\r\nMy workaround for now is to set the Timout < 100 secs\r\n\r\nMaybe someone can point in a direction, where the problem could be.\r\n\r\n# Failure Information (for bugs)\r\n\r\nI added analysis.log, cuckoo.log and process.log in failure logs section\r\n\r\n![ProcessesWin7](https://user-images.githubusercontent.com/35531629/106268855-96e68800-6223-11eb-9d11-d6be8d272200.png)\r\n![Screenshot from 2021-01-29 11-04-18](https://user-images.githubusercontent.com/35531629/106268872-9c43d280-6223-11eb-9968-49d6547746c5.png)\r\n![Screenshot from 2021-01-29 11-05-01](https://user-images.githubusercontent.com/35531629/106268884-9f3ec300-6223-11eb-953d-cba7adb60d1d.png)\r\n![Screenshot from 2021-01-29 11-04-39](https://user-images.githubusercontent.com/35531629/106268891-a1a11d00-6223-11eb-87b9-3b65c61e8666.png)\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | 6472f3d28f090aafce6caed2c40a50bcfb7a7e91\r\n| OS version       | Host: Ubuntu 20.04.01 / Guest: Windows7x64 (6.1.7601 SP1 Build 7601) with Office 2010SP2\r\n\r\n## Failure Logs\r\n\r\n[analysis.log](https://github.com/kevoreilly/CAPEv2/files/5893512/analysis.log)\r\n[Cuckoo.log](https://github.com/kevoreilly/CAPEv2/files/5893513/Cuckoo.log)\r\n[ProcessingError.log](https://github.com/kevoreilly/CAPEv2/files/5893514/ProcessingError.log)\r\n\nComment: @kevoreilly can you check this? we tried few things in private with @ClaudioWayne but no sucess\nComment: can't be reproduced on our side :(, Kevin any idea how to debug this?\r\n\r\nhttps://capesandbox.com/submit/status/114355/\r\nhttps://capesandbox.com/submit/status/114354/\r\nhttps://capesandbox.com/submit/status/114353/\nComment: More investigation: \r\nToday i tried with admin-account (net user administrator /active:yes) -> still runs out of memory\r\n\r\nI noticed that svchost.exe 4636 -k netsvcs in Behavioral Analysis is missing on my side (https://capesandbox.com/analysis/114354/)\r\n![image](https://user-images.githubusercontent.com/35531629/106889050-5da88f00-66df-11eb-847d-43b49865b4fc.png)\r\n\r\nwhat i also found inside VM:\r\n![Screenshot from 2021-02-04 08-47-49](https://user-images.githubusercontent.com/35531629/106889095-731db900-66df-11eb-90c4-f63f9a152c31.png)\r\n\r\n\nComment: Hi folks, sorry not to reply sooner. I've tried to recreate this without success. But as you've worked out the WMI service (winmgmt) is hosted by the svchost (netsvcs) process and therefore this process is injected into as part of the Office detonation - this is atttempted in your case in the analysis.log:\r\n\r\n2021-01-29 10:52:07,484 [lib.api.process] INFO: Monitor config for process 2316: C:\\tmp8gi15g80\\dll\\2316.ini\r\n2021-01-29 10:52:07,484 [lib.api.process] INFO: Option 'office' with value '1' sent to monitor\r\n2021-01-29 10:52:07,484 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmp8gi15g80\\dll\\jtFApDM.dll, loader C:\\tmp8gi15g80\\bin\\ZeXPLqvy.exe\r\n2021-01-29 10:52:07,500 [root] DEBUG: ReadConfig: Successfully loaded pipe name \\\\.\\PIPE\\SZPTmlGsU.\r\n2021-01-29 10:52:07,500 [root] DEBUG: Loader: Injecting process 2316 (thread 0) with C:\\tmp8gi15g80\\dll\\jtFApDM.dll.\r\n2021-01-29 10:52:07,500 [root] DEBUG: InjectDll: No thread ID supplied, GetProcessInitialThreadId failed, falling back to thread injection.\r\n2021-01-29 10:52:07,500 [root] DEBUG: Python path set to 'C:\\Users\\Sandra\\AppData\\Local\\Programs\\Python\\Python38-32'.\r\n2021-01-29 10:52:07,500 [root] DEBUG: Dropped file limit defaulting to 100.\r\n2021-01-29 10:52:07,500 [root] INFO: Disabling sleep skipping.\r\n2021-01-29 10:52:07,500 [root] DEBUG: CAPE initialised: 64-bit monitor loaded in process 2316 at 0x000007FEF29D0000, thread 2480, image base 0x00000000FF290000, stack from 0x00000000012A6000-0x00000000012B0000\r\n2021-01-29 10:52:07,500 [root] DEBUG: Commandline: C:\\Windows\\sysnative\\svchost.exe -k netsvcs\r\n\r\nThis seems to be the last mention of the process in the log until it fails to communicate with it for the 'terminate event' at the end.\r\n\r\nAt the moment I'm not sure what might be causing this, but I would first suggest trying the old loader option on submission. Another loader option that is worth trying is no-iat=1. Please give each of these a go and let me know if they make any difference.\nComment: Hi, here are the results of the suggested measures:\r\n\r\n1) Oldloader-option\r\n -> no success (still linear increase of memory)\r\n[analysis_oldloader.log](https://github.com/kevoreilly/CAPEv2/files/5951397/analysis_oldloader.log)\r\n[cuckoo_oldloader.log](https://github.com/kevoreilly/CAPEv2/files/5951399/cuckoo_oldloader.log)\r\n[processing_oldloader.log](https://github.com/kevoreilly/CAPEv2/files/5951400/processing_oldloader.log)\r\n\r\n2) no-iat=1 option (first try)\r\nFirst time I tried this, I saw different behavior here.\r\nThere was sharply increase of memory-usage which then went down again. \r\n![option_success](https://user-images.githubusercontent.com/35531629/107365993-7e088d00-6ad5-11eb-8c33-a19ba4417d81.png)\r\n[analysis_option_no-iat_success.log](https://github.com/kevoreilly/CAPEv2/files/5951449/analysis_option_no-iat_success.log)\r\n[cuckoo_option_no-iat_success.log](https://github.com/kevoreilly/CAPEv2/files/5951451/cuckoo_option_no-iat_success.log)\r\n[processing_option_no-iat_success.log](https://github.com/kevoreilly/CAPEv2/files/5951452/processing_option_no-iat_success.log)\r\n\r\n\r\n3) no-iat=1 option (second try)\r\nTo check if i can reproduce this behavior with this option i tried a second analysis with this option and same setting.\r\nI did not restart any cape-service (rooter, cuckoo etc) or so, just resubmit the sample with same option and settings.\r\nBut unfortunately the linear increase of memory appeared again.\r\n[analysis_option_no-iat_fail..log](https://github.com/kevoreilly/CAPEv2/files/5951487/analysis_option_no-iat_fail.log)\r\n[cuckoo_option_no-iat_fail.log](https://github.com/kevoreilly/CAPEv2/files/5951488/cuckoo_option_no-iat_fail.log)\r\n[processing_option_no-iat_fail.log](https://github.com/kevoreilly/CAPEv2/files/5951489/processing_option_no-iat_fail.log)\r\n\r\nI also noticed a different behavior today on capesandbox.com\r\n\r\nThe detection of the powershell execution is missing on x64 machines in behavioral analysis section (therefore, no entries in  DNS section): \r\nhttps://capesandbox.com/analysis/116167/\r\nhttps://capesandbox.com/analysis/116171/\r\n\r\nIn earlier x64 analysis powershell execution has been detetced:\r\nhttps://capesandbox.com/analysis/113907/\r\n\r\nOn x86 everything seems fine:\r\nhttps://capesandbox.com/analysis/116169/\r\n\r\nSo i am not sure if this issue is worth investigating further because i can not identify if this general CAPE problem, or is it just a problem on my side. So its up to you if want close this issue since it can not be reproduced on CAPE side :)\r\nBut if you want more information or to try something else, i will do my best. \r\n\r\n\r\n\r\n\r\n\r\n\r\n\nComment: Update:\r\n\r\nToday i tested all samples with a x86 machines -> everything works perfectly\r\nIt seems that the problem exists only for 64 bit machines (x64 tag is set).\r\nI have also tested Pafish.exe in both machines\r\nx64 -> linear increase of memory\r\nx86 -> no issues\r\n\nComment: x64 tag is only for PE32+ as we autoinject tag\r\n\r\ndid you install x64 or x86 office in x64 vm?\nComment: x86 office in both machines, could that be the problem?\nComment: no, just needed more details about setup\nComment: I have tried to identify the most significant differences between 32 and 64 bit analysis (differences_32vs64.txt). \r\n\r\n[Diffrences_32vs64.txt](https://github.com/kevoreilly/CAPEv2/files/5964351/Diffrences_32vs64.txt)\r\n[32Bit_success_analysis.log](https://github.com/kevoreilly/CAPEv2/files/5964354/32Bit_success_analysis.log)\r\n[64Bit_fail_analysis.log](https://github.com/kevoreilly/CAPEv2/files/5964357/64Bit_fail_analysis.log)\r\n\r\n\r\nTo sum it up(main differences):\r\n\r\n1\r\nWARNING: b'Unable to place hook on LockResource'\r\nWARNING: b'Unable to hook LockResource'\r\n-> can be reproduced https://capesandbox.com/analysis/116685/\r\n\r\n2\r\nDEBUG: InjectDllViaIAT: IAT patching with dll name C:\\tmpktjo5va6\\dll\\kwQQfvU.dll.\r\nDEBUG: InjectDllViaIAT: Failed to allocate region in target process for new import table.\r\n-> can be reproduced https://capesandbox.com/analysis/116685/\r\n\r\n3 \r\nYara error: Internal error: 4\r\n-> can be reproduced https://capesandbox.com/analysis/116685/\r\n\r\nMaybe one if these error is critical. I have no clue :)\r\n\r\nbtw1:\r\nalso tested in Virtualbox\r\nwith ubuntu qemu-kvm package\r\nwith other win7 64 bit iso\r\n-> no success\r\n\r\nbtw2:\r\nalso noticed in https://capesandbox.com/analysis/116685/:\r\n(same https://github.com/kevoreilly/CAPEv2/issues/437)\r\n GoogleUpdate.exe 4048 /svc \r\n taskhost.exe 696 taskhost.exe $(Arg0)\r\n svchost.exe 2712 C:\\Windows\\System32\\svchost.exe -k WerSvcGroup\r\n WerFault.exe 4156 C:\\Windows\\system32\\WerFault.exe -u -p 696 -s 320\r\n\r\nWerFault.exe seems to reports errors in Windows to microsoft.\r\nC:\\Program Files (x86)\\Google\\Update\\GoogleUpdate.exe don't know why its there\r\n\r\nit seems to appear at a long analysis duration, in my case 500\r\n\r\nI think this was my last attempt to get rid of this problem, as I have no more ideas how to fix or debug the problem.\r\nSo feel free to close this issue since it can not be reproduced on CAPE side or no others came up with that problem.\nComment: It's a tricky one for sure. But we can maybe rule out some more 'stuff' by disabling with the appropriate options. Here is a list of a load of them to try all together or individually to see if they make any difference:\r\n\r\nminhook=1,yarascan=0,caller-dump=0,injection=0,api-rate-cap=0\nComment: okay thanks, i will give it a try\nComment: With option minhook=1 the memory issue does not apper.\r\nHowever the powershell execution is not recognized.\r\n\r\n![image](https://user-images.githubusercontent.com/35531629/107651084-07a39080-6c77-11eb-9218-0eada0a42899.png)\r\n\r\nIn anaysis.log with minhook=1 option\r\n\r\n> WARNING: b'Unable to place hook on LockResource'\r\n> WARNING: b'Unable to hook LockResource'\r\n\r\nand\r\n\r\n> Yara error: Internal error: 4\r\n\r\nboth errors no longer exist.\r\n\r\nThe rest of the option has no effect.\r\n\r\n[minhook1_analysis.log](https://github.com/kevoreilly/CAPEv2/files/5966158/minhook1_analysis.log)\r\n\r\n\r\n\nComment: Update:\r\nI updated my local CAPE this week (commit d972e678934b1ce2d016306bc39493105c975f3a)\r\nMiraculously, there is no more increase in memory :+1: \r\n\r\nBut it is still the case, that the powershell execution is not detected by x64 machines in Behavioral Analysis. Only on x86.\r\nSame on Capesandbox.com \r\nx64 https://capesandbox.com/analysis/124527/\r\nx86 https://capesandbox.com/analysis/125422/\r\n(Before the update i had the memory issue but the powershell execution was detected by x64 machines)\r\n\r\nSo actually the issue is solved :)\r\nBut there is still the problem with the powershell detection. Maybe its this particular sample but i have no other sample like this. \r\nIt could be that the memory problem does not appear because the powershell command is not executed in x64.\nComment: Hi,\r\n\r\nIt works properly now on my local CAPE on a x64 machine.\r\n![image](https://user-images.githubusercontent.com/35531629/115194086-7fa98f00-a0dc-11eb-8179-34f181612275.png)\r\n![image](https://user-images.githubusercontent.com/35531629/115194158-97811300-a0dc-11eb-8826-9e3f3c5827d2.png)\r\n![image](https://user-images.githubusercontent.com/35531629/115194263-c0090d00-a0dc-11eb-84a7-ff940e981370.png)\r\n\r\nTested on capesandbox.com today -> powershell execution is still not detected.\r\nhttps://capesandbox.com/analysis/138265/\r\n\r\nSo for me personally, the problem has been solved :)\nComment: Glad that works, i guess is related to exec timing as on public it has\nshort limit of 100 seconds\n\nEl lun., 19 abr. 2021 9:05, ClaudioWayne ***@***.***>\nescribi\u00f3:\n\n> Hi,\n>\n> It works properly now on my local CAPE on a x64 machine.\n> [image: image]\n> <https://user-images.githubusercontent.com/35531629/115194086-7fa98f00-a0dc-11eb-8179-34f181612275.png>\n> [image: image]\n> <https://user-images.githubusercontent.com/35531629/115194158-97811300-a0dc-11eb-8826-9e3f3c5827d2.png>\n> [image: image]\n> <https://user-images.githubusercontent.com/35531629/115194263-c0090d00-a0dc-11eb-84a7-ff940e981370.png>\n>\n> Tested on capesandbox.com today -> powershell execution is still not\n> detected.\n> https://capesandbox.com/analysis/138265/\n>\n> So for me personally, the problem has been solved :)\n>\n> \u2014\n> You are receiving this because you commented.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/422#issuecomment-822226140>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH325GRUDS4JL4TLUNRDTJPI4NANCNFSM4WYWSUFA>\n> .\n>\n\nComment: Hi doomedraven,\r\n\r\nDo you mean analyses time? My default is 100 seconds timeout in cuckoo.conf\r\n```\r\n[timeouts]\r\ndefault = 100\r\n```\r\n\nComment: yes, but as you can see on screenshot it was executed for 139 seconds, maybe that is related\nComment: got it, yes maybe.\r\nOn https://capesandbox.com/analysis/138265/ it shows 769 seconds.\r\nBut i don't now :)\r\nSo should we close this issue? \nComment: lets leave it for decide to @kevoreilly \nComment: Guys I much appreciate you keeping me in mind as ultimately we all know for the good of cape my logic needs to be:\r\n\r\nIs cape working perfectly? No -> keep on workin, keep on fixin. Somehow x64 detonation is failing again despite my hook audit last time. I learned then that if you see dllhost.exe C:\\Windows\\system32\\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF} it's some sort of WMI failure/crash and it's basically bad news. \r\n\r\nSo perhaps this is really a separate issue but ultimately this needs swatting and I needed reminding as it's hard to keep track. I will reaffirm this issue's position on top of my to-do list...\nComment: Weird first test for me and it worked:\r\n\r\n![image](https://user-images.githubusercontent.com/22219888/115412906-ae168f80-a1ec-11eb-967e-cd3b6bdd92f4.png)\r\n\nComment: Hmm well it may actually be something that is inadvertently fixed in the monitor build I'm using which I will publish soon so hopefully this will fix it.\nComment: Did a quick test series today (x64 machine)\r\n\r\n1) no powershell execution\r\n2) success \r\n3) success\r\n4) powershell has stopped working -> 3/5 DNS entries\r\n5) No powershell execution\r\n6) success\r\n7) no powershell execution\r\n8) no powershell execution\r\n9) powershell has stopped working -> 0/5 DNS entries\r\n10) powershell has stopped working -> 3/5 DNS entries\r\n\r\nso t seems to be random in some way :)\r\nI am curious about the new monitor build.\r\nI appreciate your work.\nComment: By all means test this build - I'm hoping to publish soon but in the meantime...\r\n[capemon.zip](https://github.com/kevoreilly/CAPEv2/files/6350506/capemon.zip)\r\n\r\n\nComment: Thanks for testing by the way\nComment: @ClaudioWayne  can you test this again please with latest capemon? there was one fix with run out of memory\nComment: Run out of memory problem is gone -> solved\r\nThere are still some powershell crashes followed by a memory could not be read error and sometimes no entries in the DNS section\r\n\r\n![powershell_memory_error](https://user-images.githubusercontent.com/35531629/124435909-ff064080-dd64-11eb-8ab7-b96119b65e6d.png)\r\n\r\n\r\nTests on capesandbox.com\r\nhttps://capesandbox.com/analysis/169674/ ->(x64) | powershell crash = yes | memory could not be read = no | DNS entries = no\r\nhttps://capesandbox.com/analysis/169686/ ->(x64) | powershell crash = yes | memory could not be read = yes | DNS entries = yes\r\nhttps://capesandbox.com/analysis/169691/ ->(x86) | powershell crash = no | memory could not be read = no | DNS entries = no\r\nhttps://capesandbox.com/analysis/169697/ ->(x86) | powershell crash = yes | memory could not be read = no | DNS entries = no\r\n\r\nTests on local CAPE\r\n1. 208 (x86) | powershell crash = no | memory could not be read = no | DNS entries = yes -> perfect\r\n2. 209 (x64) | powershell crash = no | memory could not be read = no | DNS entries = no\r\n3. 210 (x64) | powershell crash = no | memory could not be read = no | DNS entries = yes -> perfect\r\n4. 211 (x86) | powershell crash = no | memory could not be read = no | DNS entries = yes -> perfect\r\n\r\n![1](https://user-images.githubusercontent.com/35531629/124436297-56a4ac00-dd65-11eb-9f6f-9c7bf4b309ef.png)\r\n![2](https://user-images.githubusercontent.com/35531629/124436327-5efce700-dd65-11eb-95b8-6bdfc7a4c00c.png)\r\n\r\n\r\nScreenshot of local analysis 4 (211)\r\n\r\ngit commit: 6b46c727\r\n\nComment: about that reference memory im suffering that a lot too and without powershell, thanks for testing\nComment: I can't recreate these at the moment.\nComment: i think that is should be fixed now, closing it, thanks for reporting and testing this",
+  "Title: put lower bounds on cryptography dependency\nBody: Follow-up to PR #301, set minimum version of cryptography to 3.1 to get support for [load_der_pkcs7_certificates](https://cryptography.io/en/latest/hazmat/primitives/asymmetric/serialization.html#cryptography.hazmat.primitives.serialization.pkcs7.load_der_pkcs7_certificates).\r\n\r\nWithout 3.1 or higher, the certificate extraction may crash with attribute errors:\r\n```\r\nAttributeError: 'Backend' object has no attribute 'load_der_pkcs7_certificates'\r\n```\nComment: Thank you",
+  "Title: Update static.py\nBody: ",
+  "Title: django-rest-api\nBody: ",
+  "Title: disposable services ban\nBody: ",
+  "Title: Python errors since upgrade to the latest code (web.err.log)\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [ ] I checked the documentation and found no answer\r\n- [ ] I checked to make sure that this issue has not already been filed\r\n- [ ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nSince the upgraded to the latest code, I see Python errors in web.err.log...\r\n\r\n# Current Behavior\r\n\r\nIt seems to impact the retrieval of analysis results via the API.\r\n\r\n# Failure Information (for bugs)\r\n\r\n1st error:\r\n\r\n```\r\n[21/Jan/2021 16:23:46] \"GET /api/tasks/get/pcap/936/ HTTP/1.1\" 200 0\r\nTraceback (most recent call last):\r\n  File \"/usr/lib/python3.6/wsgiref/handlers.py\", line 138, in run\r\n    self.finish_response()\r\n  File \"/usr/lib/python3.6/wsgiref/handlers.py\", line 179, in finish_response\r\n    for data in self.result:\r\n  File \"/usr/lib/python3.6/wsgiref/util.py\", line 30, in __next__\r\n    data = self.filelike.read(self.blksize)\r\nAttributeError: 'str' object has no attribute 'read'\r\n```\r\n\r\nSecond error:\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\n```\r\nTraceback (most recent call last):\r\nFile \"/usr/lib/python3.6/wsgiref/handlers.py\", line 141, in run\r\n\u0000\u0000\u0000\u0000self.handle_error()\r\n\u0000\u0000File \"/usr/local/lib/python3.6/dist-packages/django/core/servers/basehttp.py\", line 119, in handle_error\r\n\u0000\u0000\u0000\u0000super().handle_error()\r\n\u0000\u0000File \"/usr/lib/python3.6/wsgiref/handlers.py\", line 368, in handle_error\r\n\u0000\u0000\u0000\u0000self.finish_response()\r\n\u0000\u0000File \"/usr/lib/python3.6/wsgiref/handlers.py\", line 180, in finish_response\r\n\u0000\u0000\u0000\u0000self.write(data)\r\n\u0000\u0000File \"/usr/lib/python3.6/wsgiref/handlers.py\", line 274, in write\r\n\u0000\u0000\u0000\u0000self.send_headers()\r\n\u0000\u0000File \"/usr/lib/python3.6/wsgiref/handlers.py\", line 331, in send_headers\r\n\u0000\u0000\u0000\u0000if not self.origin_server or self.client_is_modern():\r\n\u0000\u0000File \"/usr/lib/python3.6/wsgiref/handlers.py\", line 344, in client_is_modern\r\n\u0000\u0000\u0000\u0000return self.environ['SERVER_PROTOCOL'].upper() != 'HTTP/0.9'\r\nTypeError: 'NoneType' object is not subscriptable\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n\u0000\u0000File \"/usr/lib/python3.6/socketserver.py\", line 654, in process_request_thread\r\n\u0000\u0000\u0000\u0000self.finish_request(request, client_address)\r\n\u0000\u0000File \"/usr/lib/python3.6/socketserver.py\", line 364, in finish_request\r\n\u0000\u0000\u0000\u0000self.RequestHandlerClass(request, client_address, self)\r\n\u0000\u0000File \"/usr/lib/python3.6/socketserver.py\", line 724, in __init__\r\n\u0000\u0000\u0000\u0000self.handle()\r\n\u0000\u0000File \"/usr/local/lib/python3.6/dist-packages/django/core/servers/basehttp.py\", line 172, in handle\r\n\u0000\u0000\u0000\u0000self.handle_one_request()\r\n\u0000\u0000File \"/usr/local/lib/python3.6/dist-packages/django/core/servers/basehttp.py\", line 197, in handle_one_request\r\n\u0000\u0000\u0000\u0000handler.run(self.server.get_app())\r\n\u0000\u0000File \"/usr/lib/python3.6/wsgiref/handlers.py\", line 144, in run\r\n\u0000\u0000\u0000\u0000self.close()\r\n\u0000\u0000File \"/usr/local/lib/python3.6/dist-packages/django/core/servers/basehttp.py\", line 114, in close\r\n    super().close()\r\n  File \"/usr/lib/python3.6/wsgiref/simple_server.py\", line 35, in close\r\n    self.status.split(' ',1)[0], self.bytes_sent\r\nAttributeError: 'NoneType' object has no attribute 'split'\r\n```\r\n\r\n## Steps to Reproduce\r\n\r\nJust submit a sample...\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       |  35fb4493c274b80a26e6fcbd04f9c5977f8c6c93\r\n| OS version       | Ubuntu 18.04.4 LTS\r\n\r\n## Failure Logs\r\n\nComment: thank you @xme  just pushed fix",
+  "Title: Error for some analysis on public CAPE-Instance\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nAt the end of the analysis (processing), a report should be available if status is reported\r\n\r\n# Current Behavior\r\n\r\nHello,\r\nSome analysis on the public CAPE-Instance fail with:\r\n> ERROR :-(\r\n> The specified analysis does not exist or not finished yet \r\n\r\nBut status is reported.\r\nIs this an usage fault or  could it be a problem with the database?\r\n\r\nIf i try to resubmit sample with other machine or package i get:\r\n> ERROR :-(\r\n> Error adding task(s) to CAPE's database.\r\n> Submission Failed!\r\n\r\nBut i guess this could be spam protection.\r\n\r\nHere are some examples:\r\n113280 - https://capesandbox.com/analysis/113280/\r\n113269 - https://capesandbox.com/analysis/113269/\r\n113262 - https://capesandbox.com/analysis/113262/\r\n113244 - https://capesandbox.com/analysis/113244/\r\n\r\n\nComment: there was a typo in mongodb.py on some specific cases, fixed now, thanks",
+  "Title: Update Zloader.yar\nBody: update for https://www.capesandbox.com/analysis/112957/\nComment: Thanks a lot for the heads up - Zloader has a config decoder as well as a yara sig so unfortunately to do a proper job this needed updating as well - it is also dependent on the yara sig. I've chosen to loosen the existing $decrypt_config pattern rather than adding another. It's fixed in https://github.com/kevoreilly/CAPEv2/commit/1d1416037834da979899f568cd0864b78a1ba5cb\nComment: Thanks Kevin.",
+  "Title: Update _suricata_files.html\nBody: ",
+  "Title: Recent Trickbot C2's are not parsed correctly \nBody: Due to recent changes to trickbot, the parser failed to parse the c2 correctly. They introduced fake C2 ips to hinder analysis.\r\n\r\nref: https://malware.love/malware_analysis/reverse_engineering/2020/11/17/trickbots-latest-trick.html\r\neg: https://www.capesandbox.com/analysis/112551/#CAPE \r\n![Slide1 (2)](https://user-images.githubusercontent.com/49360849/104990603-ef0ed480-5a42-11eb-82eb-668dbebda4e0.PNG)\r\n\r\n\nComment: thanks, at least they shared code, you could PR fix :P \r\n\r\n```\r\n# e.g. 165.226.231.80\r\ndef convert_to_real_ip(ip_str):\r\n\r\n    result_octets = []\r\n    octets = ip_str.split(\".\")\r\n    o1 = int(octets[0])\r\n    o2 = int(octets[2])\r\n    o3 = int(octets[3])\r\n    o4 = int(octets[1])\r\n    x = ((~o1 & 0xFF) & 0xb8 | (o1 & 0x47)) ^ ((~o2 & 0xFF) & 0xb8 | (o2 & 0x47))\r\n    result_octets.append(str(x))\r\n    o = (o3 & (~o2 & 0xFF)) | ((~o3 & 0xff) & o2)\r\n    result_octets.append(str(((~o & 0xff) & o4) | (o & (~o4 & 0xff))))\r\n    result_octets.append(str(o))\r\n    result_octets.append(str(((~o2 & 0xFF) & o4) | ((~o4 & 0xff) & o2)))\r\n\r\n    return \".\".join(result_octets) + \":443\"\r\n\r\n\r\nfake_ips = [\"165.226.231.80\", \"168.140.17.62\", \"194.255.156.239\", \"96.139.163.83\", \"171.138.104.153\"]\r\n\r\nfor item in fake_ips:\r\n    print(convert_to_real_ip(item))\r\n```\nComment: Fixed in https://github.com/kevoreilly/CAPEv2/commit/35fb4493c274b80a26e6fcbd04f9c5977f8c6c93 - thanks\nComment: > \r\n> \r\n> thanks, at least they shared code, you could PR fix :P\r\n> \r\n> ```\r\n> # e.g. 165.226.231.80\r\n> def convert_to_real_ip(ip_str):\r\n> \r\n>     result_octets = []\r\n>     octets = ip_str.split(\".\")\r\n>     o1 = int(octets[0])\r\n>     o2 = int(octets[2])\r\n>     o3 = int(octets[3])\r\n>     o4 = int(octets[1])\r\n>     x = ((~o1 & 0xFF) & 0xb8 | (o1 & 0x47)) ^ ((~o2 & 0xFF) & 0xb8 | (o2 & 0x47))\r\n>     result_octets.append(str(x))\r\n>     o = (o3 & (~o2 & 0xFF)) | ((~o3 & 0xff) & o2)\r\n>     result_octets.append(str(((~o & 0xff) & o4) | (o & (~o4 & 0xff))))\r\n>     result_octets.append(str(o))\r\n>     result_octets.append(str(((~o2 & 0xFF) & o4) | ((~o4 & 0xff) & o2)))\r\n> \r\n>     return \".\".join(result_octets) + \":443\"\r\n> \r\n> \r\n> fake_ips = [\"165.226.231.80\", \"168.140.17.62\", \"194.255.156.239\", \"96.139.163.83\", \"171.138.104.153\"]\r\n> \r\n> for item in fake_ips:\r\n>     print(convert_to_real_ip(item))\r\n> ```\r\n\r\nYes I could have \ud83d\ude05 and Yeah I was trying to do in my own local instances but Kevin was blazing fast at this task :).\r\n",
+  "Title: CAPEv2 ignore Procmon64.exe file submission\nBody: Hi, I tried to submit `Procmon64a.exe`, `Procmon64.exe`, and `Procmon.exe` files from https://docs.microsoft.com/en-us/sysinternals/downloads/procmon.\r\n\r\nUnfortunately, `Procmon64.exe` file is always ignored and stuck on `pending`:\r\n![image](https://user-images.githubusercontent.com/4245729/104637903-61e51c00-56e0-11eb-9e76-13d9b3a1fdf3.png)\r\n\r\n\r\nI also tried upload `Procmon64.exe` to https://capesandbox.com/submit/, but got rejected:\r\n![up](https://user-images.githubusercontent.com/4245729/104637775-32ceaa80-56e0-11eb-9e97-85ab7e240af9.png)\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | commit f311da0d42d2d06a692c764ebf5143dad5628ec4\r\n| OS version       | Ubuntu 20.04.1 LTS (Focal Fossa)\r\n\r\n## Failure Logs\r\n\r\nThere is no log from `cape.service`.\r\n\nComment: I just submitted this file no problem: https://capesandbox.com/submit/status/112033\nComment: I bet your issue is that you haven't marked any VMs as 64 bit in your machinery config...\nComment: This is an example from my kvm.conf:\r\n\r\n[win7x64_2]\r\nlabel = win7x64_2\r\nplatform = windows\r\nip = 192.168.1.3\r\nmem_profile = Win7SP1x64\r\ntags = x64\r\n\r\nNote the tags! Make sure you have this.\nComment: > I just submitted this file no problem: https://capesandbox.com/submit/status/112033\r\n\r\nCan you try `Procmon64.exe`? I'm still unable to submit:\r\n![image](https://user-images.githubusercontent.com/4245729/104639582-8cd06f80-56e2-11eb-946f-c3834c54bd28.png)\r\n\r\nOn my build, I'm able to submit `Procmon64a.exe` and `Procmon.exe`:\r\n![image](https://user-images.githubusercontent.com/4245729/104639838-d5882880-56e2-11eb-9652-c368efd26805.png)\r\n\r\nBut not `Procmon64.exe`.\nComment: I have no problem submitting procmon64 on my own instance - but I can see that it fails on capesandbox.com which is very strange - I'll look into it.\r\n\r\n![image](https://user-images.githubusercontent.com/22219888/104646679-b076c400-56a8-11eb-810b-b5640284dc62.png)\r\n\nComment: Did you confirm you have the tags set properly?\nComment: there even now notification in cape service about that is x64 sample but x64 tag missed\nComment: I tried to set `tags = x64` in my `/opt/CAPEv2/conf/kvm.conf`:\r\n```\r\n[kvm]\r\nmachines = cuckoo1\r\ninterface = virbr0\r\n\r\n[cuckoo1]\r\nlabel = cuckoo1\r\nplatform = windows\r\nip = 192.168.122.2\r\nsnapshot = clean\r\nresultserver_ip = 192.168.122.1\r\ntags = x64\r\n```\r\n\r\nThen I restarted all CAPE services:\r\n```\r\n$ sudo systemctl restart cape-processor.service cape-rooter.service cape-web.service cape.service\r\n```\r\n\r\nUnfortunately, issue is still the same. `Procmon64.exe` is ignored.\r\n\r\nThis is the instructions that I use to build CAPEv2 instance on my localhost: https://github.com/extra2000/capev2-box/blob/09096b3137eeb39397e56300952cca4155d8aa52/README.md. Did I miss something or I made mistakes?\nComment: sorry i won't review them, for that i have upgraded official documentation and even created instalation scritpts\nComment: check readme of this repo you have everything there\nComment: I believe I have follow your official instructions including your build scripts, except the `tags = x64`. The `procmon64.exe` is the only file that failed.\r\n\r\n`cape.service` logs doesn't say anything, so I'm not sure where to look for error:\r\n```\r\nvagrant@capev2-box:~$ sudo journalctl -u cape.service | tail --lines=20\r\nJan 15 06:35:35 capev2-box systemd[1]: Stopping CAPE...\r\nJan 15 06:35:35 capev2-box systemd[1]: cape.service: Succeeded.\r\nJan 15 06:35:35 capev2-box systemd[1]: Stopped CAPE.\r\nJan 15 06:35:35 capev2-box systemd[1]: Started CAPE.\r\nJan 15 06:35:36 capev2-box python3[11298]: \r\nJan 15 06:35:36 capev2-box python3[11298]:    ______   __  __   ______   ___   ___   ______   ______\r\nJan 15 06:35:36 capev2-box python3[11298]:   /_____/\\ /_/\\/_/\\ /_____/\\ /___/\\/__/\\ /_____/\\ /_____/\\\r\nJan 15 06:35:36 capev2-box python3[11298]:   \\:::__\\/ \\:\\ \\:\\ \\\\:::__\\/ \\::.\\ \\\\ \\ \\\\:::_ \\ \\\\:::_ \\ \\\r\nJan 15 06:35:36 capev2-box python3[11298]:    \\:\\ \\  __\\:\\ \\:\\ \\\\:\\ \\  __\\:: \\/_) \\ \\\\:\\ \\ \\ \\\\:\\ \\ \\ \\\r\nJan 15 06:35:36 capev2-box python3[11298]:     \\:\\ \\/_/\\\\:\\ \\:\\ \\\\:\\ \\/_/\\\\:. __  ( ( \\:\\ \\ \\ \\\\:\\ \\ \\ \\\r\nJan 15 06:35:36 capev2-box python3[11298]:      \\:\\_\\ \\ \\\\:\\_\\:\\ \\\\:\\_\\ \\ \\\\: \\ )  \\ \\ \\:\\_\\ \\ \\\\:\\_\\ \\ \\\r\nJan 15 06:35:36 capev2-box python3[11298]:       \\_____\\/ \\_____\\/ \\_____\\/ \\__\\/\\__\\/  \\_____\\/ \\_____\\/\r\nJan 15 06:35:36 capev2-box python3[11298]:  Cuckoo Sandbox 2.2-CAPE\r\nJan 15 06:35:36 capev2-box python3[11298]:  www.cuckoosandbox.org\r\nJan 15 06:35:36 capev2-box python3[11298]:  Copyright (c) 2010-2015\r\nJan 15 06:35:36 capev2-box python3[11298]:  CAPE: Config and Payload Extraction\r\nJan 15 06:35:36 capev2-box python3[11298]:  github.com/kevoreilly/CAPEv2\r\nJan 15 06:35:37 capev2-box python3[11298]: 2021-01-15 06:35:37,433 [lib.cuckoo.core.scheduler] INFO: Using \"kvm\" machine manager with max_analysis_count=1, max_machines_count=1, and max_vmstartup_count=1\r\nJan 15 06:35:37 capev2-box python3[11298]: 2021-01-15 06:35:37,468 [lib.cuckoo.core.scheduler] INFO: Loaded 1 machine/s\r\nJan 15 06:35:37 capev2-box python3[11298]: 2021-01-15 06:35:37,475 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks.\r\n```\nComment: Stop cape and cape-web, and run them by hand and in debug mode -d for cape\nservice, run under cape user, never use root\n\nEl vie., 15 ene. 2021 7:58, Nik Mohamad Aizuddin <notifications@github.com>\nescribi\u00f3:\n\n> I believe I have follow your official instructions including your build\n> scripts, except the tags = x64. The procmon64.exe is the only file that\n> failed.\n>\n> cape.service logs doesn't say anything, so I'm not sure where to look for\n> error:\n>\n> vagrant@capev2-box:~$ sudo journalctl -u cape.service | tail --lines=20\n> Jan 15 06:35:35 capev2-box systemd[1]: Stopping CAPE...\n> Jan 15 06:35:35 capev2-box systemd[1]: cape.service: Succeeded.\n> Jan 15 06:35:35 capev2-box systemd[1]: Stopped CAPE.\n> Jan 15 06:35:35 capev2-box systemd[1]: Started CAPE.\n> Jan 15 06:35:36 capev2-box python3[11298]:\n> Jan 15 06:35:36 capev2-box python3[11298]:    ______   __  __   ______   ___   ___   ______   ______\n> Jan 15 06:35:36 capev2-box python3[11298]:   /_____/\\ /_/\\/_/\\ /_____/\\ /___/\\/__/\\ /_____/\\ /_____/\\\n> Jan 15 06:35:36 capev2-box python3[11298]:   \\:::__\\/ \\:\\ \\:\\ \\\\:::__\\/ \\::.\\ \\\\ \\ \\\\:::_ \\ \\\\:::_ \\ \\\n> Jan 15 06:35:36 capev2-box python3[11298]:    \\:\\ \\  __\\:\\ \\:\\ \\\\:\\ \\  __\\:: \\/_) \\ \\\\:\\ \\ \\ \\\\:\\ \\ \\ \\\n> Jan 15 06:35:36 capev2-box python3[11298]:     \\:\\ \\/_/\\\\:\\ \\:\\ \\\\:\\ \\/_/\\\\:. __  ( ( \\:\\ \\ \\ \\\\:\\ \\ \\ \\\n> Jan 15 06:35:36 capev2-box python3[11298]:      \\:\\_\\ \\ \\\\:\\_\\:\\ \\\\:\\_\\ \\ \\\\: \\ )  \\ \\ \\:\\_\\ \\ \\\\:\\_\\ \\ \\\n> Jan 15 06:35:36 capev2-box python3[11298]:       \\_____\\/ \\_____\\/ \\_____\\/ \\__\\/\\__\\/  \\_____\\/ \\_____\\/\n> Jan 15 06:35:36 capev2-box python3[11298]:  Cuckoo Sandbox 2.2-CAPE\n> Jan 15 06:35:36 capev2-box python3[11298]:  www.cuckoosandbox.org\n> Jan 15 06:35:36 capev2-box python3[11298]:  Copyright (c) 2010-2015\n> Jan 15 06:35:36 capev2-box python3[11298]:  CAPE: Config and Payload Extraction\n> Jan 15 06:35:36 capev2-box python3[11298]:  github.com/kevoreilly/CAPEv2\n> Jan 15 06:35:37 capev2-box python3[11298]: 2021-01-15 06:35:37,433 [lib.cuckoo.core.scheduler] INFO: Using \"kvm\" machine manager with max_analysis_count=1, max_machines_count=1, and max_vmstartup_count=1\n> Jan 15 06:35:37 capev2-box python3[11298]: 2021-01-15 06:35:37,468 [lib.cuckoo.core.scheduler] INFO: Loaded 1 machine/s\n> Jan 15 06:35:37 capev2-box python3[11298]: 2021-01-15 06:35:37,475 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks.\n>\n> \u2014\n> You are receiving this because you commented.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/412#issuecomment-760695276>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH37RAFBQAGTB6VA3NMTSZ7RRPANCNFSM4WC5AZ6A>\n> .\n>\n\nComment: > Stop cape and cape-web, and run them by hand and in debug mode -d for cape\r\nservice\r\n\r\nThanks! Now I found the cause.\r\n\r\nActually setting `tags = x64` does fix this issue. But the problem is, `cape.service` doesn't reload config via `systemctl restart`:\r\n```\r\n$ sudo systemctl restart cape-processor.service cape-rooter.service cape-web.service cape.service\r\n```\r\n\r\nSo instead I have to `stop` and then `start`:\r\n```\r\n$ sudo systemctl stop cape-processor.service cape-rooter.service cape-web.service cape.service\r\n$ sudo systemctl start cape-processor.service cape-rooter.service cape-web.service cape.service\r\n```\nComment: thanks for headups, hm im always using restart and it works fine, but good to know if that will happen to me too",
+  "Title: Database Configuration Guide\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ v ] I am running the latest version\r\n- [ v ] I checked the documentation and found no answer\r\n- [ v ] I checked to make sure that this issue has not already been filed\r\n- [ v ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nSome sort of automatic credential setup or a prompt if the user is coming from an older version of CAPE that did not have features that requires user authentication.\r\n\r\n# Current Behavior\r\n\r\ndjango complains about lack of db table for user credentials.\r\n\r\n## Context\r\n\r\nCame from an older version of CAPE v2 (v2.2? idk what the new overhaul's codename is).\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | `40518c357a0ee71d060897e8b1b71a00bd7c02b2`\r\n| OS version       | Kubuntu 20.04\r\n\r\n## Failure Logs\r\n\r\n```\r\nOperationalError at /accounts/signup/\r\n\r\nno such table: django_site\r\n\r\nRequest Method: \tGET\r\nRequest URL: \thttp://localhost:8000/accounts/signup/\r\nDjango Version: \t3.1.4\r\nException Type: \tOperationalError\r\nException Value: \t\r\n\r\nno such table: django_site\r\n\r\nException Location: \t/usr/local/lib/python3.8/dist-packages/django/db/backends/sqlite3/base.py, line 413, in execute\r\nPython Executable: \t/usr/bin/python3\r\nPython Version: \t3.8.5\r\nPython Path: \t\r\n\r\n['/opt/CAPEv2/web',\r\n '/usr/lib/python38.zip',\r\n '/usr/lib/python3.8',\r\n '/usr/lib/python3.8/lib-dynload',\r\n '/usr/local/lib/python3.8/dist-packages',\r\n '/usr/lib/python3/dist-packages',\r\n '/opt/CAPEv2/web/..',\r\n '/opt/CAPEv2/modules/processing/parsers/CAPE',\r\n '/opt/CAPEv2/web/..',\r\n '/opt/CAPEv2/web/..',\r\n '/opt/CAPEv2',\r\n '/opt/CAPEv2/modules/processing/../..',\r\n '/opt/CAPEv2/web/..',\r\n '/opt/CAPEv2/web/..',\r\n '/opt/CAPEv2/web/..',\r\n '/opt/CAPEv2/utils/..',\r\n '/opt/CAPEv2',\r\n '/opt/CAPEv2/web',\r\n '/opt/CAPEv2/web/..']\r\n\r\nServer time: \tWed, 13 Jan 2021 08:32:02 +0000\r\n```\nComment: What worked for me:\r\n\r\nstop cape-web.service (fuser -k 8000/tcp)\r\ncd /opt/CAPEv2/web\r\nmigrate (manage.py migrate)\r\nstart server again (manage.py runserver)\nComment: thanks @ClaudioWayne \r\n@Still34 read changelog for something im elaborating it with all steps \nComment: https://github.com/kevoreilly/CAPEv2/blob/master/changelog.md\nComment: Ah, didn't think to check the changelog for this. Thanks!\nComment: There is new one dependency, check changelog again, sorry some  features\nrequieres more dependencies \ud83d\ude1c\n\nEl jue., 14 ene. 2021 3:36, Still Hsu <notifications@github.com> escribi\u00f3:\n\n> Ah, didn't think to check the changelog for this. Thanks!\n>\n> \u2014\n> You are receiving this because you modified the open/close state.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/411#issuecomment-759886256>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH37ZDZJOROP7SGMVLW3SZZKEBANCNFSM4WAN35KA>\n> .\n>\n",
+  "Title: Update index.html\nBody: Add parenthesis for http count",
+  "Title: CSS and JS not loading\nBody: Hi,\r\n\r\nI just installed the latest version of CAPEv2 and when looking within Firefox or Chromium I notice that the css and js is not loading.\r\nWhen using the web developer tool I see it the status not found (404)\r\n\r\n![Screenshot from 2021-01-11 18-51-52](https://user-images.githubusercontent.com/563335/104219247-2aefdb80-543e-11eb-91d4-faa97ce564fb.png)\r\n\r\nHow can this be solved ?\r\n\r\nThanks\r\n\r\n\r\n\nComment: hello, do gitpull, shoudl be fixed now, just tested fresh deployment\r\nthanks for headups",
+  "Title: Deprecate OlympicDestroyer sig due to FP on Cryptbot\nBody: eg. https://capesandbox.com/analysis/111175/\nComment: thanks\nComment: now you need to create account on public sandbox\nComment: > \r\n> \r\n> now you need to create account on public sandbox\r\n\r\nYeah already did :) and decision is well taken ;)\nComment: great",
+  "Title: Some FPs due to Guloader YARA rule\nBody: Someone is spamming cape by uploading some equation group (likely) samples with procmemdump enabled. So, the [Guloader yara sig](https://github.com/kevoreilly/CAPEv2/blob/master/data/yara/CAPE/Guloader.yar) is matching based on the address space of procmemdumps (see SS below) and CAPE reports the sample as Guloader. The sig may need some tuning.\r\n![image](https://user-images.githubusercontent.com/49360849/103976948-1ab9d100-519e-11eb-92ad-cdbb871a5099.png)\r\neg.\r\nhttps://capesandbox.com/analysis/110785\r\nhttps://capesandbox.com/analysis/110855\r\nhttps://capesandbox.com/analysis/110875\nComment: Thanks for the heads up - the issue here is not actually with the sig itself - it's a cape sig in process memory (for bypass) which is then detected by the same (or similar) sig server side for detection. I had spotted it and tried to solve it by calling yr_rules_destroy(Rules) before doing process dumps: https://github.com/kevoreilly/capemon/blob/capemon/CAPE/YaraHarness.c#L278 - alas this does not work :(\r\n\r\nSo libyara is not properly freeing or clearing this memory - I am now looking into whether I can do it myself manually to compensate and get rid of these detections.\nComment: Hmm it may be even more subtle - I can't easily recreate, and it looks like these jobs all had some sort of crash/issue causing a popup, e.g.\r\n\r\n2021-01-07 14:10:25,416 [modules.auxiliary.human] INFO: Found button \"OK\", clicking it\r\n\r\nSo the problem may only manifest in these cases - not sure what triggered the crashes but 2 of those 3 had import reconstruction enabled which doesn't help (and makes me wonder whether the submissions are malicious!)\nComment: Actually I may be able to solve this trivially by adding something like 'not $cape_string' where $cape_string = cape_options to exclude these from detection - working on that idea now.\nComment: Ok this is done in: https://github.com/kevoreilly/CAPEv2/commit/f311da0d42d2d06a692c764ebf5143dad5628ec4\r\n\r\nHopefully this will fix it - let's see.\nComment: > \r\n> \r\n> Hmm it may be even more subtle - I can't easily recreate, and it looks like these jobs all had some sort of crash/issue causing a popup, e.g.\r\n> \r\n> 2021-01-07 14:10:25,416 [modules.auxiliary.human] INFO: Found button \"OK\", clicking it\r\n> \r\n> So the problem may only manifest in these cases - not sure what triggered the crashes but 2 of those 3 had import reconstruction enabled which doesn't help (and makes me wonder whether the submissions are malicious!)\r\n\r\nI Suspected it too and someone submitted them import reconstruction enabled (Ugh, those script kiddies!), I saw that earlier too and wanted to report but forgot. \nComment: > \r\n> \r\n> Actually I may be able to solve this trivially by adding something like 'not $cape_string' where $cape_string = cape_options to exclude these from detection - working on that idea now.\r\n\r\nThat's a great idea! :D\nComment: Looks like that did the trick\nComment: Yep! ",
+  "Title: Update abstracts.py to include check for created_services\nBody: ",
+  "Title: fix requirements.txt syntax\nBody: Follow-up on 8b910f0f to fix a handful of dependency names in requirements.txt.\nComment: Thanks!",
+  "Title: follow up on #353, fix #403\nBody: Fix #403 by migrating the remaining label classes to their badge counterparts.\nComment: thank you\nComment: Thanks Nick!",
+  "Title: Bootstrap 4 label migrations\nBody: # Prerequisites\r\n\r\n- [ ] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nBootstrap badges render correctly in the web UI.\r\n\r\n# Current Behavior\r\n\r\nA handful of Bootstrap badges still use the legacy \"label\" class from v3 so they don't render properly.\r\n\r\nHere's an example. This super bad sample should show with the danger badge:\r\n\r\n<img width=\"380\" alt=\"image\" src=\"https://user-images.githubusercontent.com/1265294/103700383-5ff9bb00-4f72-11eb-9cb6-a85e49c91f5a.png\">\r\n\r\n# Failure Information (for bugs)\r\n\r\nThis was introduced when #353 was merged. The remaining classes need to be migrated from the \"label\" counterparts.\r\n\r\n<img width=\"380\" alt=\"image\" src=\"https://user-images.githubusercontent.com/1265294/103700526-96373a80-4f72-11eb-839e-3af80da3efc9.png\">\r\n\r\nSo they render properly:\r\n\r\n<img width=\"380\" alt=\"image\" src=\"https://user-images.githubusercontent.com/1265294/103700542-9fc0a280-4f72-11eb-8889-2daf76184b3c.png\">\r\n\r\n## Steps to Reproduce\r\n\r\nVisit any of the pages where the old labels are still used.\r\n\r\n## Context\r\n\r\nThis is using the latest commit. I'll have a PR fix up in a minute.\r\n\r\n## Failure Logs\r\n\r\nNA\nComment: hello, thanks for PR, i suppouse we can close this as you submitted PR no? Thank you for PR \r\nwell that wasn't fixed bcz we don't respect malscore is super useless \nComment: > hello, thanks for PR, i suppouse we can close this as you submitted PR no?\r\n\r\nYes, I created the issue just to have something to reference in the pull request.\r\n\r\n> that wasn't fixed bcz we don't respect malscore is super useless\r\n\r\nAgreed. FWIW commit 652ff0d7 hits more than just malscore (MISP, procmemory, etc.). I only used malscore to demo the behavior.\nComment: you can provide the same details in PR, if that speedup everything\r\nyes i saw, not sure how I missed others. thanks for fixing it",
+  "Title: user registrration\nBody: https://www.ordinarycoders.com/blog/article/django-allauth\r\n\r\nhttps://www.ordinarycoders.com/blog/article/render-forms-with-django-crispy-forms\r\n\r\nhttps://medium.com/@himanshuxd/how-to-create-registration-login-webapp-with-django-2-0-fd33dc7a6c67\r\n\r\nhttps://stackoverflow.com/questions/15409366/django-socialapp-matching-query-does-not-exist\nComment: Current state\r\n![image](https://user-images.githubusercontent.com/1856495/103759077-6e4be380-5013-11eb-8e01-f42fad978831.png)\r\n\r\nWhat we need?\r\n1. email field + email verification\r\n2. good captcha for registration + admin login to protect from bruteforce\r\n3. any other oauth privder apart of google? https://django-allauth.readthedocs.io/en/latest/providers.html\nComment: https://pypi.org/project/django-nocaptcha-recaptcha/\r\nhttps://pypi.org/project/django-registration-redux/\nComment: * thanks @axil for update [django-captch- admin](https://github.com/axil/django-captcha-admin/).\r\n* some useful links\r\n    * https://www.theophilusn.com/blog/django-with-bootstrap-4\r\n    * https://django-allauth.readthedocs.io/en/latest/overview.html",
+  "Title: Update Vidar Yara sig\nBody: Missed jobs: 109245, 110286 and 108427",
+  "Title: network2ajax\nBody: ",
+  "Title: Dropped files\nBody: Hi,\r\n\r\nI am using the latest version of CAPEv2 and noticed a little bug in the showing of the dropped files (see screenshot)\r\n\r\n![Selection_001](https://user-images.githubusercontent.com/563335/103616974-ac6ed780-4f2d-11eb-9a1b-abff20167098.png)\r\n\r\n\r\nThanks\nComment: Hi dforce, thanks a lot for reporting this issue - we'll get it fixed asap.\nComment: @kevoreilly \r\nThe problem seems to be resolved.\r\nThis error was in the result of yesterday, now everything is working fine again.\nComment: well that always should be a list instead of string, so that can impact old reports, but is hard to keep compabilities, if you don't want to see that, just regenerate report",
+  "Title: first in\nBody: ",
+  "Title: Bugs in network.py\nBody: Hey guys, I have noticed 2 bugs in network.py file which break normal execution. \r\n\r\n1.  https://github.com/kevoreilly/CAPEv2/blob/master/modules/processing/network.py#L94\r\nTo properly use `domain_passlist` we need to change f.readlines() to f.read().splitlines(), otherwise we can lose strings from dnswhitelist_file (for example `'gold-ev-g2\\\\.ocsp\\\\.swisssign\\\\.net\\n'`).\r\n\r\n2. https://github.com/kevoreilly/CAPEv2/blob/master/modules/processing/network.py#L829\r\nIt should be `if tcp.data:`, otherwise our HTTP Network Analysis section will be empty.\nComment: hello, fixed, thank you",
+  "Title: Update demux.py\nBody: Cleanup password check logic",
+  "Title: Update views.py\nBody: Get size of content correctly\nComment: thanks",
+  "Title: Abnormal number of reports with a simple PowerShell script\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [v ] I am running the latest version\r\n- [v ] I checked the documentation and found no answer\r\n- [ v] I checked to make sure that this issue has not already been filed\r\n- [v ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nFew alerts being tripped along with file drop notification for the following script,\r\n\r\n```ps1\r\n$result = iwr -useb ipinfo.io\r\nset-content \"$env:userprofile\\hi.txt\" -value $result\r\n```\r\n\r\n# Current Behavior\r\n\r\nMajor number of red flags such as encryption being raised despite the simplicity of the script.\r\n\r\n![Screenshot_2020-12-31 CAPEv2 Sandbox](https://user-images.githubusercontent.com/5843208/103403925-dec6b080-4b8c-11eb-868e-20f7169a1179.png)\r\n\r\n## Context\r\n\r\nThis is on a newly set up CAPE instance (kvm). The guest OS is running on Windows 7 SP1 x64 with PowerShell 5.1 installed and PowerShell logging enabled according to suggestions featured in the various conf files of the project.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | cacce5b\r\n| OS version       | Kubuntu 20.04\nComment: well that part is community driven so you are welcome to colaborate there https://github.com/kevoreilly/community\r\nyou can see matched sigantures and improve them\nComment: Yes it would be helpful to know if any specific signatures are firing in error, or false positive.\nComment: Please can you let us know which signatures you think are firing in error and why. It's entirely possible for non-malicious software to trigger signatures that indicate a potential for malicious behaviour, that's unavoidable if one seeks to detect individual behaviours for which there is such a potential. However, false positives are something we obviously want to get rid of, so if any of these signatures are firing when the behaviour they describe is not actually happening (in the behavior log) then let us know. \nComment: Will investigate when I've got a little more free time! I just got the sandbox up and running (kinda) properly last week so I'm still experimenting with things.\nComment: Ok we're two weeks in and still nothing for us to fix or action... Closing - please re-open if you have the chance to flesh this out.",
+  "Title: ERROR: Not enough free disk space\nBody: Hey kevoreilly.\r\n\r\nCan you help me with this? The Error is about disk space.\r\n\r\n![image](https://user-images.githubusercontent.com/56353946/103282979-4b697000-4a12-11eb-8551-c9334818dc8e.png)\r\n\r\nMy sda5 has free 22.06 Gb\r\n\r\n![image](https://user-images.githubusercontent.com/56353946/103283202-dfd3d280-4a12-11eb-95e5-41f0e7ab6ca1.png)\r\n\r\n\r\n\r\n\nComment: hello as always please read all configs to become familiar with the projects and options. your one can be changed in `cuckoo.conf`, don't put limit too low as it might kill other services if you will really go out of space in disk\nComment: Checked. Problem solved! Thanks.",
+  "Title: 64-bit files can not be analyzed\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ ] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n64-bit files can be analyzed\r\n\r\n# Current Behavior\r\nWhen I submit the following 64-bit file, the file go to Pending Tasks\r\n```\r\nPE32+ executable (console) x86-64, for MS Windows\r\nPE32+ executable (DLL) (console) x86-64, for MS Windows\r\n```\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. submit 64-bit file\r\n2. Submission complete!\r\n3. But the file go to Pending Tasks and Can't analyze forever\r\n\r\n## Context\r\n\r\nUsing machinery VirtualBox\r\nHost machine: ubuntu 20.04.1 LTS\r\nGuest machine: Windows 10 installed python3.8(32bit)\r\n\r\n## Failure Logs\r\n\r\n\r\n\r\n\nComment: that bcz you didn't read your config file for hypervisor probably, set `tags=x64` and volia\nComment: i have extended description msg in console if `-d` enabled, so that should solve problem for people that didn't read whole conf ;) closing, if that doesn't solve your issue let us know\nComment: Thank you very much!\r\nOh, it was a simple matter. Read the configuration file carefully and fix it.\r\n\nComment: You are welcome, in case if you didn't read all configs, i would suggest to\ndo so just to become more familiar with the options available for you\n\nEl jue., 24 dic. 2020 0:43, ai-suzuki <notifications@github.com> escribi\u00f3:\n\n> Thank you very much!\n> Oh, it was a simple matter. Read the configuration file carefully and fix\n> it.\n>\n> \u2014\n> You are receiving this because you modified the open/close state.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/392#issuecomment-750580188>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3ZQTFALBKNBCRCGZLDSWJ6CZANCNFSM4VGVVAZA>\n> .\n>\n",
+  "Title: Service not starting after update\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting:\r\n\r\nExpected cape to update with merge instructions in readme - which I believe it did.\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\nCurrent behavior is that the service is currently not able to start up. I've already tried to restart the service, stop, start, as well as rebooting the system.\r\n\r\n\u25cf cape.service - CAPE\r\n     Loaded: loaded (/lib/systemd/system/cape.service; enabled; vendor preset: enabled)\r\n     Active: activating (auto-restart) (Result: exit-code) since Mon 2020-12-21 18:59:52 UTC; 1s ago\r\n       Docs: https://github.com/kevoreilly/CAPEv2\r\n    Process: 3959 ExecStart=/usr/bin/python3 cuckoo.py (code=exited, status=1/FAILURE)\r\n   Main PID: 3959 (code=exited, status=1/FAILURE)\r\n\r\n\nComment: python3 cuckoo.py results in:\r\n![image](https://user-images.githubusercontent.com/72623982/102812729-24190000-438d-11eb-8c98-fffdbbb940c1.png)\r\n\nComment: Have you tried the suggested alembic upgrade head?\nComment: This could be unrelated to the original issue but once I ran the suggested command everything was up and running again, the only current problem is that I'm unable to view the analyses because of a template issue. \r\n\r\nI've attached the .html for the error below.\r\n\r\n\r\n[TemplateSyntaxError at _analysis_2_.zip](https://github.com/kevoreilly/CAPEv2/files/5726440/TemplateSyntaxError.at._analysis_2_.zip)\r\n\nComment: @xx0red fixed that template error, coding late isn't safe :D \nComment: @xx0red i have improved the msg about db migration, so that won't confuse anymore, thanks for template bug report",
+  "Title: Create parallax.yar\nBody: Adding the parallax yara rule from @bartblaze here, it has a match on this [Injected PE Image: 32-bit executable](https://www.capesandbox.com/analysis/108604/#) :)\r\n\r\n![image](https://user-images.githubusercontent.com/49360849/102713338-9cc87f80-42ed-11eb-9494-a7baabb9ba04.png)\r\n\r\n\nComment: hello, thank you, i will merge and move it to https://github.com/kevoreilly/community, please push there next time\nComment: Ok, will do but I don't think it has false positives.\nComment: that isn't due to FP, is due that yaras are done by community",
+  "Title: Error running malheur\nBody: I am running malheur and mitre att&ck and seeing the follwing errors in the process log file\r\n\r\n> 2020-12-18 18:36:09,635 [lib.cuckoo.core.plugins] ERROR: Failed to run the reporting module \"Malheur\":\r\nTraceback (most recent call last):\r\nFile \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 794, in process\r\n    current.run(self.results)\r\n  File \"/opt/CAPEv2/utils/../modules/reporting/malheur.py\", line 156, in run\r\n    outputfile = os.path.join(basedir, \"malheur.txt.\" + hashlib.md5(str(random.random())).hexdigest())\r\nTypeError: Unicode-objects must be encoded before hashing\r\n2020-12-18 18:36:11,012 [lib.cuckoo.core.plugins] ERROR: Failed to run the reporting module \"MITRE_TTPS\":\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 794, in process\r\n    current.run(self.results)\r\n  File \"/opt/CAPEv2/utils/../modules/reporting/mitre.py\", line 12, in run\r\n    for technique in self.mitre.enterprise.techniques:\r\n  File \"/usr/local/lib/python3.8/dist-packages/pyattck/attck.py\", line 191, in enterprise\r\n    self.__load_data()\r\n  File \"/usr/local/lib/python3.8/dist-packages/pyattck/attck.py\", line 379, in __load_data\r\n    Attck.__ENTERPRISE_GENERATED_DATA_JSON = self.__datasets.generated_attck_data(force=force)\r\n  File \"/usr/local/lib/python3.8/dist-packages/pyattck/datasets.py\", line 84, in generated_attck_data\r\n    input('press')\r\nEOFError: EOF when reading a line\r\n\r\nWhat went wrong and how can I solve this problem ?\nComment: The problem with mitre att&ck is solved due to the solution mentioned in [https://github.com/kevoreilly/CAPEv2/issues/383](url)\r\n\r\nThe only problem is still malheur.\r\n\r\n> 020-12-18 18:36:09,635 [lib.cuckoo.core.plugins] ERROR: Failed to run the reporting module \"Malheur\":\r\nTraceback (most recent call last):\r\nFile \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 794, in process\r\ncurrent.run(self.results)\r\nFile \"/opt/CAPEv2/utils/../modules/reporting/malheur.py\", line 156, in run\r\noutputfile = os.path.join(basedir, \"malheur.txt.\" + hashlib.md5(str(random.random())).hexdigest())\r\nTypeError: Unicode-objects must be encoded before hashing\nComment: malheur should be removed, that doesn't have good performance on huge sample set so everyone was lazy to remove it, forget about that, is useless\nComment: about pyattk you using buggy version that was reported already do search in issues, upgrade library see requirements.txt\nComment: FYI next time removing the issue template and posting to wrong issue to wrong repo will be autoclosed ",
+  "Title: Update _info.html\nBody: ",
+  "Title: Get task id of auto tasks from the first task\nBody: Is there a way to get the task ID of subsequent tasks (unpacker task, for example) from the first submitted task?\r\n\r\nFor example, I submitted a packed sample and it had a task ID of 1. After the execution completed, CAPE kicked off the second run with task ID 2 to extract unpacked code. I can see on the GUI that the report of ID 1 has a link under `Auto Tasks` box: `#2: Unpacker` but I cannot see this information in the retrieved report (`/api/tasks/get/report/1/json/`)\nComment: hello, well that should be in json/mongo and easy to expose in api\nComment: just pushed, now you can search by id or any other value and you will have `CAPE_childrens` if it has subtasks\nComment: solved?\nComment: Yep, just checked on my local system. I'm getting the unpacker run ID. Thanks!\nComment: You are welcome, let me know if you have more suggestions/feayure reqs\n\nEl vie., 18 dic. 2020 22:19, Nikhil Hegde <notifications@github.com>\nescribi\u00f3:\n\n> Yep, just checked on my local system. I'm getting the unpacker run ID.\n> Thanks!\n>\n> \u2014\n> You are receiving this because you commented.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/387#issuecomment-748324371>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH35ZQPKQF6HNHCB35ATSVPBMVANCNFSM4U6W3MOQ>\n> .\n>\n",
+  "Title: Fixes and updates\nBody: On demand code cleanup, fixes, minor improvements\r\nSome minor code cleanup\r\nUse zip password from settings.py\nComment: thank you a lot\nComment: c&p between repos strikes again %)\r\nbtw maybe we should move pass to web.conf and set it in setting from there?\nComment: That makes sense\n\nOn Wed, Dec 16, 2020 at 1:04 PM doomedraven <notifications@github.com>\nwrote:\n\n> c&p between repos strikes again %)\n> btw maybe we should move pass to web.conf and set it in setting from there?\n>\n> \u2014\n> You are receiving this because you authored the thread.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/pull/386#issuecomment-746742582>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AB3X3YA3SIT6T3H4KCK4I4TSVDZBZANCNFSM4U6LCIMQ>\n> .\n>\n-- \nLorenzo\n\n\u201cHappiness is not the absence of problems, but the ability to deal with\nthem.\" - Albert Einstein\n",
+  "Title: Update views.py\nBody: \nComment: ou nice catch, thanks",
+  "Title: Update AgentTeslaV3 Yara sig\nBody: ",
+  "Title: Failed to run the reporting module MITRE_TTPS\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting:\r\n\r\nExpected MITRE ATT&CK Framework in processing data\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?:\r\n\r\nModule fails to run:\r\n![image](https://user-images.githubusercontent.com/72623982/101691367-36617880-3a34-11eb-9728-0491c67d8e81.png)\r\n![image](https://user-images.githubusercontent.com/72623982/101691293-1d58c780-3a34-11eb-987c-0be596f6a40b.png)\r\n\r\nModule is enabled in reporting, and local file path is given.\nComment: that isn't cape problem, that is 3rd part dependency problem aka pyattrck, try to install version 2.0.4, i see latest pyattck (2.1.2), but i won't update it for each tool that is become broken, so you are welcome to fix it\nComment: as you can see dev of pyattck left that `press`and `print` there that breaks everyrhing, but that only on pip not on github %)\r\n\r\nthis fixes it `pip3 install git+https://github.com/swimlane/pyattck -U`, just verified\r\n\r\n```\r\n def generated_attck_data(self, force=False):\r\n        \"\"\"Downloads, saves, or retrieves the Mitre ATT&CK Enterprise Generated Dataset JSON\r\n\r\n        Args:\r\n            force (bool, optional): Will force the download of a new Generated Datset JSON file. Defaults to False.\r\n\r\n        Returns:\r\n            [dict]: Mitre ATT&CK Enterprise Generated Dataset JSON\r\n        \"\"\"\r\n        if force:\r\n            datasets = self.__get_datasets()\r\n            self.__save_locally(self.dataset_json_path, datasets)\r\n            return datasets\r\n        else:\r\n            cached_data = self.__get_cached_data(self.dataset_json_path)\r\n            if cached_data:\r\n                print(cached_data)\r\n                input('press')\r\n```",
+  "Title: TCPdump is not accessible from this user\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting:\r\n\r\nExpected tcpdump from guest machine, (KVM)\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?:\r\n\r\nCurrently when I run a URL for analysis, i.e google.com, it brings up internet explorer and almost immediately closes it. I receive no network capture from URL analysis or sample analysis. Upon looking at the journal for cape, I'm getting this error: \r\n\r\nDec 09 17:51:26 ubuntu-c-4-8gib-nyc3-01 python3[8810]: 2020-12-09 17:51:26,524 [modules.auxiliary.sniffer] ERROR: Tcpdump is not accessible from this user network capture aborted\r\n\r\nAnother error - processing: \r\nDec 09 17:53:02 ubuntu-c-4-8gib-nyc3-01 python3[10116]: 2020-12-09 17:53:02,489 [modules.processing.network] WARNING: The PCAP file does not exist at path \"/opt/CAPEv2/storage/analyses/4/dump.pcap\r\n\r\n\nComment: replace value with your username\r\n```\r\n    groupadd pcap\r\n    usermod -a -G pcap <YOUR USER>\r\n    chgrp pcap /usr/sbin/tcpdump\r\n    setcap cap_net_raw,cap_net_admin=eip /usr/sbin/tcpdump\r\n```\nComment: I tried this with no success... (before posting)\nComment: well you not posted what you did at all, that the uniq case that affects permission which i observer over almost 10y. You probably will need to google what is wrong, as if you are member of pcap group then you have permission, or maybe your run difrerent part of cape with different users, idk poor details provided\r\n+ url analysis doesn't work with modern browsers, is why it disabled by default, there is no ETA for get it fixed due to frequent browser updates\nComment: is it possible to remove the existing pcap group and readd? or will this\ncause issues?\n\nOn Wed, Dec 9, 2020 at 1:56 PM doomedraven <notifications@github.com> wrote:\n\n> well you not posted what you did at all, that the uniq case that affects\n> permission which i observer over almost 10y. You probably will need to\n> google what is wrong, as if you are member of pcap group then you have\n> permission, or maybe your run difrerent part of cape with different users,\n> idk poor details provided\n>\n>    - url analysis doesn't work with modern browsers, is why it disabled\n>    by default, there is no ETA for get it fixed due to frequent browser updates\n>\n> \u2014\n> You are receiving this because you authored the thread.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/382#issuecomment-742011693>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/ARKCO3SZE6D35SCCTCU5XN3ST7I5VANCNFSM4UT3JR7Q>\n> .\n>\n\nComment: pcap group only used for that, so you can remove and reintroduce it\nComment: Issue solved, thanks much!\nComment: you are welcome",
+  "Title: bingraph on_demand\nBody: ",
+  "Title: capa fix\nBody: \nComment: Much appreciated",
+  "Title: Add AdvIntel Created Yara sig for Trickbot UEFI module\nBody: https://www.advanced-intel.com/post/persist-brick-profit-trickbot-offers-new-trickboot-uefi-focused-functionality",
+  "Title: fixed update capa-rules\nBody: Hi, \r\nThe update of the Capa-Rules via community.py -cr did not work for me. \r\n\r\n1) Errno 39] Directory not empty: '/opt/CAPEv2/data/capa-rules-master' -> '/opt/CAPEv2/data/capa-rules\r\n\r\n![Screenshot from 2020-12-07 11-37-04](https://user-images.githubusercontent.com/35531629/101348327-63baf480-3883-11eb-8aed-97ef364acf9f.png)\r\n\r\n-> I decided to delete the old directorys to replace them with new ones.\r\n\r\n2)  Always get the help function although the function was successful\r\n\r\n-> return after flare_capa_rules() in the if-statement\r\n\r\nThere is surely a more beautiful solution, but works for me atm. Feel free to merge if you agree. \r\nHave a nice day\r\n\r\nClaudio\nComment: good catch, thank you\nComment: about return, not really needed, as that breaks if you put -waf -cr, but the rest is fine, but you are right it will show help if no return\nComment: Yep you are right, looks fine now. \r\nI have a litte question apart from this topic if you have time. Have you ever been confronted with VirtIO drivers when you set up your Win7 VM with KVM/QEMU? Or is there a way to avoid these VirtIO stuff and install Win 7 in an easy way :). Win 10 works fine out of the box\nComment: em can you elaborate what do you mean? im not sure, if you speak about virtio drivers, you don't need them at all\nComment: i have the following problem when installing win7 with kvm\r\nmouse and keyboard do not working properly either. \r\n\r\n![grafik](https://user-images.githubusercontent.com/35531629/101373436-3a16c300-38ad-11eb-9f49-28ea2bf19ba4.png)\r\n\r\nSo i came across this article by a quick research:\r\nhttps://github.com/hpaluch/hpaluch.github.io/wiki/Install-Windows7-on-KVM-Qemu\r\n\r\nbut i guess win 7 should work without this VirtIO drivers. I have to investigate the probem more tomorrow. Thanks for your time.\nComment: https://www.doomedraven.com/2020/04/how-to-create-virtual-machine-with-virt.html\r\npay attention to step 7\nComment: i just checked that link that you posted, that will make vm detected by malware just checking for virtio driver, use my script kvm-qemu.sh and tthis blogpost and thats all :)",
+  "Title: Hi, i have using ur cape replaced cuckoo207, but i don't run the same result as your capesandbox report \nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n* Free support from doomedraven ended, no whiskey no support. For something he updated the documentation :)\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ ] I am running the latest version\r\n- [ ] I checked the documentation and found no answer\r\n- [ ] I checked to make sure that this issue has not already been filed\r\n- [ ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. step 1\r\n2. step 2\r\n3. you get it...\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 16.04, Windows 10, macOS 10.12.3\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\r\n# What i want \r\nCan you share your win7 qcow2 to us, so that i can check the sample better. thank you.\r\n\nComment: we don't share that, that is your part of job to create it\nComment: @doomedraven ok, thank you.",
+  "Title: Not enough memory resources are available to process this command\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\nPings, NS-Lookups, killed explorer.exe\r\n\r\n# Current Behavior\r\nAgent is reached by Host, starts and sample doesn't execute, dies with\r\n\"Not enough memory resources are available to process this command\"\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\nsubmit test.bat to Cape\r\n\r\n## Context\r\nUsing machinery KVM remote\r\nHost machine: Debian 10\r\nGuest machine: Windows 10 20H2 x64 (8GB RAM) \r\n[analysis.zip](https://github.com/kevoreilly/CAPEv2/files/5639137/analysis.zip)\r\n(Clean install, Python 3.8.6, choco.bat)\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: maybe windows 10 is new chrome? :D i would suggest you to attach to the vm, disable human on task submission and monitor what is consuming all your ram. as that is in your vm, we don't experience that, let us know about your findings\nComment: closing due to abandoned issue, i hope you solved it\nComment: Thanks for the help, unfortunately you are a litte bit too fast in closing. I tried it with disabe human interaction and just saw that ~60% of the memory was unused all the time. It worked when I disable the monitoring, as soon as this is switched on it crashes. \r\nI also tried it in a Windows 7 Ultimate VM, here it executed the Ping and NSLookup, then takes some time and dies wie the Error  \"Not enough storage is available to process this command\".  Without the Monitoring it  kills the Explorer Process and then gives me the error  message with  \"Not enough storage is available to process this command\"\r\nSo my guess is that either there is a problem with the monitoring or I have an error in my VMs\r\n\nComment: well 6 days is pretty a lot to comeback :)\r\nwell my servers works just fine, publica cape runs just fine too, so that is not issue at least on win7, i don't run w10, but as you experience the same issue on win7, you need to investigate, Im not even sure in which direction point you to help as I never experienced this issue, sorry",
+  "Title: add helper function and creation script for network_dga_fraunhofer sig\nBody: This signature detects the likely usage of Domain Generation algorithms by\r\nmatching all dns requests of a sandbox run against a pre-built bloomfilter.\r\nThe bloomfilter contains the active DGA domains from today, tomorrow and\r\nyesterday and is based on the intelligence of the Fraunhofer DGArchive.\r\n\r\nThe check against the bloomfilter is really quick. Only if we have hits\r\nwe'll proceed and match the DGA domain to its DGA/malware family by\r\nperforming a dict lookup that is preloaded in memory.\r\n\r\nThe bloomfilter and the lookup dict are created by the create_bloom.py\r\nscript of the CAPEv2 repository and placed within the /data folder of\r\nthe community repository. The update process can be performed\r\nmanually via running the script on the local machine before\r\nsignature push/pull or via cronjob task.\r\n\r\nRelies on PR in the community repo: https://github.com/kevoreilly/community/pull/117\r\n\r\n* Bloomfilter library: https://github.com/DCSO/flor\r\n* Fraunhofer DGArchive: https://dgarchive.caad.fkie.fraunhofer.de/welcome/\nComment: As there is no requirements.txt and this PR depends on a new library (`flor`) shall I open another PR to add it to the script from https://github.com/doomedraven/Tools/blob/master/Sandbox/cape2.sh ?\nComment: yes we moved dependencies to cape2.sh, but we maybe will partially reintroduce it, i have added like how to install it to simplify life to not skilled people, thank you for your contribution",
+  "Title: When object is not found, HTTP status code should be 404\nBody: Minor report. When object is not found, HTTP status code should be 404, not 200.\r\n\r\nExample:\r\nhttps://github.com/kevoreilly/CAPEv2/blob/140d1bfc2905231704f6cc8cfe4f7f2efc61cd8d/web/api/views.py#L1393\r\n\r\n```\r\n* Connected to 192.168.1.23 (192.168.1.23) port 4545 (#0)\r\n> GET /api/tasks/get/screenshot/1138/6/ HTTP/1.1\r\n> Host: 192.168.1.23:4545\r\n> User-Agent: curl/7.58.0\r\n> Accept: */*\r\n> \r\n< HTTP/1.1 200 OK\r\n< Date: Thu, 03 Dec 2020 19:24:47 GMT\r\n< Content-Type: application/json; charset=UTF-8\r\n< Server: Machete Server\r\n< X-Cuckoo-Version: 2.1-CAPE\r\n< X-Content-Type-Options: nosniff\r\n< X-Frame-Options: DENY\r\n< X-XSS-Protection: 1; mode=block\r\n< Pragma: no-cache\r\n< Cache-Control: no-cache\r\n< Expires: 0\r\n< Content-Length: 69\r\n< \r\n{\r\n    \"error\": true,\r\n    \"error_value\": \"Screenshot does not exist\"\r\n}\r\n```\nComment: well yes and no. the problem is that was designed a lot of time ago and would require to update all the fields, that we not interested as we have more important things ToDo.\r\n\r\n200 means page found, but you have error fields especially for that, as then if you would do typo in url, you will get 404 too, so that would complicate for some users, if you would like to introduce status for that cases, you are welcome to push pull request, we are open for collaboration ",
+  "Title: headers quality\nBody: ",
+  "Title: Writing a CAPE parser\nBody: Hello,\r\n\r\nI was trying to write a CAPE parser to extract `IP : port` strings that are hard-coded in the sample. I was using DridexLoader (modules/processing/parsers/mwcp/DridexLoader.py) as a reference. I have two questions:\r\n\r\n1. The YARA rule that I wrote matches the extracted payload only when I have `cape_type = <SampleName> Payload` in the YARA file but not when I have `cape_type = <SampleName>`. What exactly is `cape_type` and what difference does it make if I get its value wrong?\r\n\r\n2. When the YARA rule matched on the payload (I set `cape_type = <SampleName> Payload`), it did not extract any C2 addresses. The extracted payload itself is mostly just zeros and does not contain the C2 address. I wanted the parser to extract C2 addresses from the submitted sample and not the extracted payload. I've tested the parser standalone on the sample and the extraction works fine. Any idea what might be happening here?\r\n\r\nUnfortunately, I cannot share the `.py` and `.yar` at this time. In your experience of writing a parser, does the above situation make sense?\nComment: The same behavior is observed if I submit the sample through the `Static` tab.\nComment: Also, what is the difference between parsers in `modules/processing/parsers/mwcp` and `modules/processing/parsers/CAPE`?\nComment: hello you probably saw it no as you mentioned dridex https://www.doomedraven.com/2020/02/cape-sandbox-config-extraction.html\r\n\r\n1. for payload at the end is just Kevin's check to process or not, i think it is in submitCAPE.py or CAPE.py, i don't remember but with quick search you can get it\r\n2. why just not to place your yara in CAPE folder that will scan all files binary/memory/CAPE/dropped/etc <- everything, so if your yara matches the initial file and you have code to extract from it it will works\nComment: Yep, I did read that blog and that's why I was using Dridex as a reference. Thanks for writing it!\r\n\r\n1. I came across `data/yara/CAPE/Emotet_Loader.yar` and `data/yara/CAPE/BuerLoader.yar` which don't have `Payload` in their `cape_type`, so I was wondering what is the logic behind `cape_type`.\r\n\r\n2. I do have my yara placed in `data/yara/CAPE`. Like I said, the YARA rule hits correctly and the classification of the sample occurs. But nothing is extracted. I wasn't sure if the Python parser that I placed in `modules/processing/parsers/mwcp` is being executed on the submitted sample or the extracted payload.  From what you said, it looks like the parser is applied on everything -> submitted sample, extracted payloads, etc. So, would you recommend that I take a look at my Python parser to see if it's working correctly? (It works standalone though).\nComment: 1. https://github.com/kevoreilly/CAPEv2/blob/master/modules/processing/CAPE.py#L416 <- as you can see if that misses that string in there then it won't extract\nComment: i will need to update a bit more that blogpost, as i have started to add malduck framework \nComment: Thanks, that clears up the `cape_type` question. \r\n\r\nAnd I also found out why I wasn't getting the config extracted. It was because while I was copy pasting the imports from the `DridexLoader.py` parser into my parser, I overwrote the `import re` statement. That error did not show up in the logs and luckily I found the problem before wasting more time. Thanks for the help!\nComment: One question that wasn't answered earlier - \r\n\r\nWhat is the difference between parsers in `modules/processing/parsers/mwcp` and `modules/processing/parsers/CAPE`?\nComment: glad you solved, ya the best is to test standalone always.\r\n`mwcp` is that that uses framework\r\n`cape` are standalone, they just executed by cape and not need to follow all the required functions of any framework, just need to have the same entry function \nComment: Awesome, thanks @doomedraven, the help is appreciated!\nComment: you are welcome, i will update that blogpost one day with answers to your questions so i hope that saves time to others",
+  "Title: per analysis routing issue\nBody: Hey moving our cape instance to a new setup to run directly with ESXi but can seem to get the per analysis routing working with the new setup. trawled cuckoo and cape docs and can't seem to find the step I'm missing tried various combinations but no joy. from the docs I believe there is no need for playing with iptables these days just the routing table. apologies in advanced for the obvious thing I'm sure I've overlooked but any pointers appreciated.\r\n\r\n# Expected Behavior\r\n\r\nVM traffic routed via dirty line\r\n\r\n# Current Behavior\r\n\r\nVM has no internet connectivity and pings to the outside world get a response from the cuckoo box stating destination unreachable.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. cape installed using ESX machinery\r\n2. cape box given 3 interfaces:\r\n    a) ens160 management network\r\n    b) ens192 cape VM network\r\n    c) ens224 dirty line.\r\n\r\n3. check forwarding is on:\r\n```\r\nsysctl net.ipv4.ip_forward\r\nnet.ipv4.ip_forward = 1\r\n```\r\n\r\n4. add new routing table on 200:\r\n```\r\n cat /etc/iproute2/rt_tables\r\n#\r\n# reserved values\r\n#\r\n255     local\r\n254     main\r\n253     default\r\n0       unspec\r\n200     ens224\r\n```\r\n\r\n5. set routing conf:\r\n```\r\nroute = internet\r\ninternet = ens224\r\nrt_table = ens224\r\nauto_rt = no (main routing table has a default route out to management network so didn't want that copied)\r\n```\r\n\r\n6. manually configure new routing table:\r\n```\r\nip route show table ens224\r\ndefault via 172.16.0.1 dev ens224\r\n172.16.0.0/16 dev ens224 proto kernel scope link src 172.16.0.7\r\n172.16.0.1 dev ens224 proto dhcp scope link src 172.16.0.7 metric 100\r\n```\r\n\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\nthe ens224 network has a bb router with dhcp etc.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit   | commit c8f124ec6e4dec99b30fa02ac542d84f85ca2c50 (HEAD -> master, origin/master, origin/HEAD)\r\n| OS version    |   Ubuntu 20.04\r\n\r\n## Failure Logs\r\n\r\nnone\r\n\nComment: you don0t need to configure nothing at all, just set the dirty line network interface that all, rooter.py does the rest\nComment: closing due no response\nComment: Apologies for the delay in getting back to you on this one, so I believe I tried as you suggested first but reverted everything back so removed the extra routing table and set rt_table = main again and left internet = ens224, but still no internet access for the VM. with this setup it seems to lose access to ESXI as i get:\r\n```\r\n2020-12-01 14:23:25,119 [lib.cuckoo.common.abstracts] DEBUG: Stopping machine Win7_32_1\r\n2020-12-01 14:23:25,120 [lib.cuckoo.common.abstracts] DEBUG: Getting status for Win7_32_1\r\n2020-12-01 14:23:25,974 [root] DEBUG: Task #5 uploaded file length: 535\r\n2020-12-01 14:23:25,985 [root] DEBUG: Task #5 had connection reset for <Context for b'BSON'>, error: [Errno 104] Connection reset by peer\r\n2020-12-01 14:23:25,985 [root] DEBUG: Task #5 had connection reset for <Context for b'LOG'>, error: [Errno 104] Connection reset by peer\r\n2020-12-01 14:23:25,985 [root] DEBUG: Task #5 had connection reset for <Context for b'BSON'>, error: [Errno 104] Connection reset by peer\r\n2020-12-01 14:25:35,330 [lib.cuckoo.core.scheduler] WARNING: Task #5: Unable to stop machine Win7_32_1: Error getting status for virtual machine Win7_32_1: internal error: curl_easy_perform() returned an error: Timeout was reached (28) : Failed to connect to 10.10.0.2 port 443: Connection timed out\r\n2020-12-01 14:25:35,335 [root] DEBUG: Stopped tracking machine 192.168.56.101 for task #5\r\n2020-12-01 14:25:35,340 [lib.cuckoo.core.scheduler] INFO: Disabled route 'internet'\r\n2020-12-01 14:25:35,362 [lib.cuckoo.core.scheduler] DEBUG: Task #5: Released database task with status True\r\n2020-12-01 14:25:35,362 [lib.cuckoo.core.scheduler] INFO: Task #5: analysis procedure completed\r\n\r\n```\r\nVM is never stopped and the progress for the submission seems to get stuck in running\nComment: well i don't use ESXI so i can't tell you but i suppose it as proxmox? we use kvm without any of those problems \nComment: cracked it. I mistakenly thought the `interface =` option in esx.conf was the interface the ESXi API was on then saw cuckoo's version of the config that states:\r\n```\r\n# Specify the name of the default network interface that will be used\r\n# when dumping network traffic with tcpdump.\r\n# Example (eth0 is the interface name):\r\n```\r\nwhich pointed out my error.\nComment: glad you solved it, i will update the docs, yes it always the exit interface\nComment: updated description, but even there it was eth0 as example",
+  "Title: maldoc missing behaviour and dropped files\nBody: Some weeks ago a new version of Emotet maldocs (triggering on _Document_Close()_) were observed in the wild, after submitting fix #363 , CAPEv2 was able to handle such cases, but while making some test run with maldoc sample 7dbd8ecfada1d39a81a58c9468b91039 with env Win7 Sp1 x32 + Office 2010 Sp2 (git commit 93280ce50ec602d9f98657f3206f3d46d6ece54c) the only way to proper show the full infection chain (as recorded under `Behaviour Analysis` ) was to increase the execution time (400s)  and enforce timeout - thx @doomedraven \r\n\r\nThis is how it looks like when all the stages are executed\r\n![snip](https://user-images.githubusercontent.com/29753218/100118947-41ca7680-2e6e-11eb-907d-4a21d46014e4.png)\r\n\r\n\r\nFrom the `Dropped Files` tab the interesting file (Ksh1.pdf) was correctly collected but Ksh1.xls was missing, any reasons for that? maybe capemon complaining here?\r\n\r\nOn the contrary, executing the same sample in a Win7 Sp1 x64 (+ Office 2010 Sp2) did not record any behavior, still network connections were recorded for the 2nd stage download, indicating that indeed the maldoc was able to execute correctly but capemon (?) was not able to record the single stages.\r\n\r\n![snip2](https://user-images.githubusercontent.com/29753218/100120447-d84b6780-2e6f-11eb-9e86-8fcba6913bad.png)\r\n\r\n\r\nNow, performing the same tests on Win x32 and x64 env with the latest commit (8d3cba80eb9a922378ff14bf994277a58de69137) from today does not show any recorded behaviour at all for both envs, still network traffic confirms maldoc was executed, that's kind of strange since at the beginning it was working for x32.\r\n\r\n@kevoreilly any advice or tuning needed on my end? Thank you!\nComment: First of all, thank you very much for creating this issue. This is obviously a very important area and something I've been working hard on recently, but by the sounds of things I've broken something with the latest monitor update which wasn't picked up with the maldoc test I did (on a much older Emotet maldoc).\r\n\r\nI already have a strong suspicion which hooks might be causing this problem so I'll try and push out a fix as soon as I can get your document firing.\nComment: Hi raw-data - last night I pushed an update which should fix this issue (https://github.com/kevoreilly/CAPEv2/commit/45864e1ebf36ac971804f0486b7eb3524bde898b) - I have tested with this maldoc and it's detonating properly now on win7x86. Please give it a go and let me know if it works for you.\nComment: Hi kevoreilly, thank you for taking the time and investigated the issue. Indeed the provided fix solved the issue (on x86 env + enforce timeout option), still I can see that the _Ksh1.pdf_ is missing from the `Dropped Files` tab.\nComment: Glad to hear the detonation worked. As for the dropped file, it's working fine for me so not sure what's up with yours for this issue. Not to mention the enforce-timeout requirement. I have just tested with the latest version, default settings except for a 30 second timeout and I get a full detonation with the dropped PDF:\r\n\r\n![image](https://user-images.githubusercontent.com/22219888/100875083-69889280-349d-11eb-8f7c-e2060a6d2fc8.png)\r\n\r\n![image](https://user-images.githubusercontent.com/22219888/100875110-74432780-349d-11eb-91f3-c92f66667c90.png)\r\n\nComment: Sorry, I just re-checked and I confused the files, Ksh1.pdf is there, the _Ksh1.xls_ is missing \nComment: Yep this is indeed a bug - this file is present being created in the API (behavior) log:\r\n\r\n![image](https://user-images.githubusercontent.com/22219888/101478774-1b660a00-3949-11eb-8470-9179ff700773.png)\r\n\r\nI'll hopefully begin working on this bug soon - watch this space.\r\n\nComment: @raw-data here is the fix, will be merged soon https://github.com/kevoreilly/CAPEv2/pull/398\r\n\r\n<img width=\"709\" alt=\"Captura de pantalla 2021-01-04 a las 0 06 02\" src=\"https://user-images.githubusercontent.com/1856495/103491051-a5a66e80-4e20-11eb-8581-b13786c962ff.png\">\r\n\nComment: I know i just show that nownduplicated but with diff names works\n\nEl lun., 4 ene. 2021 7:04, kevoreilly <notifications@github.com> escribi\u00f3:\n\n> This is not the same file as Ksh1.xls which is a base-64 encoded PE file\n> of 595972 bytes.\n>\n> \u2014\n> You are receiving this because you were mentioned.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/370#issuecomment-753776185>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH36GXAGVGCR264CZ36DSYFK7NANCNFSM4UBDEVNQ>\n> .\n>\n\nComment: \r\nthis is correct one, thanks @raw-data to spot the problem, closign as solved\r\n<img width=\"905\" alt=\"Captura de pantalla 2021-01-04 a las 15 32 04\" src=\"https://user-images.githubusercontent.com/1856495/103545597-0f1a9180-4ea2-11eb-8754-6912f9a81299.png\">\r\n\nComment: PS you can see it here https://capesandbox.com/analysis/110404/\nComment: @doomedraven @kevoreilly thanks for fixing this! :+1: ",
+  "Title: [update] loose MassLogger yara for recent samples\nBody: updated MassLogger signature\nComment: Thanks a lot",
+  "Title: Improving the linux sandbox\nBody: I know that linux is a work in progress. I hope I didn't misunderstand the original code.\r\n \r\nI tried to improve the original documentation and modify the stap module according to the doc instructions. I kept the original .cuckoo folder to avoid breaking existing sandboxes. \r\n\r\nI encountered an issue where the staprun in packages.py would not run because the stap_.ko file was already used by the unstopped subprocess in stap.py. I did not really understand why staprun was run twice. But I fixed this issue by killing the stap.py subprocess after it reached the \"systemtap_module_init() returned 0\".\nComment: thank you",
+  "Title: Analysic report dont have any thing about Network processing module\nBody: Hi @doomedraven , \r\nDuring installing and running CAPEv2 with your help everything working very well, but after analysic completed, I saw many request to many C2 domains in Behavior tab and on Community Signatures, but when check on Network tab, nothing displayed. Checking The dump.pcap, its also appear in Analysic folder. Checking the [network] module on processing.conf its set Enabled = yes.\r\nI dont know what happen with my CAPE.\r\nSo can you help me solve this?\nComment: Hi, maybe https and not http? https support in networking tab isn't finished yet\nComment: > Hi, maybe https and not http? https support in networking tab isn't finished yet\r\n\r\nHi, it **only HTTP** not HTTPS, like displayed on Community Signatures (Quick Overview Tab) and and Behavior Tab, bellow is the samples:\r\n\r\n```\r\nurl: 152.32.75.74:443/PRHc12qe/kwzSfq1BZ2O2ZX2pOL/aSz67Ri/chCFhj0WLH/xHNWJ2EW/\r\nurl: 91.121.200.35:8080/EnRA9Ja/0Nu0uUfLesIn/9zAuwripAG/WH0LkQ0j8Wm68n5/\r\nurl: 159.203.16.11:8080/cyIRiMQVRjWURJd1/50tFWSfKiPM0XQ/5878F5wS26W4hs8HS/\r\nurl: 188.226.165.170:8080/0la8R7ae0b7NvLF/A0n0zB/BQ1k1IA9XXswg/lrRfo0FYBdM87/\r\nurl: 172.193.79.237:80/DT5lXGJOdFyQw/HTFd4ye0VP2/hWDSNtI44yBt/eCGh/\r\nurl: 123.216.134.52:80/ZEqzXj/rA59bam3CeapxGsb/XJCLwu/wpbShQR/s3hs8bx/\r\nurl: 183.91.3.63:80/kb4ESCzDGoCMB4P/chE3WELxhXLUkIY/VClD3SWSo/n0fGi/\r\nurl: 139.59.61.215:443/1s00shKOBkeSc/AvJXgxVwvggWHX/5jXBl7KgEKRBOK/ikTdVycajYhGeK/\r\nurl: 185.80.172.199:80/eGYgiaPm50l/KFsBdtvUEgwZ7f/XsHEPLRCr0LpkKX/CP9wofETwWPWtG/\r\nurl: 77.74.78.80:443/zldoFJGfMpRZ/X2Xd7Ao8oZe0CnBq5I/G5tGfhs2hlBvNUz/\r\n```\r\n\r\nThere C2 come from Emote samples, but I also dont know how to help CAPE reconize Emotet samples.\r\nOn the network Tab also dont have \"Download PCAP\" Button.\nComment: can you show how it looks in behavior? so it sound more like problem with pcap no? do you have pcap in analysis folder?\nComment: > can you show how it looks in behavior? so it sound more like problem with pcap no? do you have pcap in analysis folder?\r\n\r\nYes, I found the dump.pcap on analysis folder. \r\n**Here is some pic of Bahavior Tab:**\r\n![image](https://user-images.githubusercontent.com/2469038/99657814-399ac180-2a91-11eb-84cd-1504b823128a.png)\r\n\r\n![image](https://user-images.githubusercontent.com/2469038/99657926-5c2cda80-2a91-11eb-926b-811ccde2302d.png)\r\n\r\n**And on Signture:**\r\n![image](https://user-images.githubusercontent.com/2469038/99658072-9302f080-2a91-11eb-8a56-a795854d97bc.png)\r\n\r\n\r\n**Nothing displayed on Network Tab:**\r\n![image](https://user-images.githubusercontent.com/2469038/99657981-71a20480-2a91-11eb-897f-99bf1315423e.png)\r\n\nComment: do you see 443? that is https, and as i told that isn't supported yet to be in networking tab\nComment: about 8080, check if they are in pcap\nComment: > do you see 443? that is https, and as i told that isn't supported yet to be in networking tab\r\n\r\nOh, Noooo, I did not see the 443 port, Sorry for misstake. But why it dont show 80 ports on network tab?\r\n\r\nIf you have freetime,\r\nI also have some question:\r\n1) What moloch version that CAPEv2 support?\r\n2) How to use Inetsim as the second choice with Tor? Because I installed Inetsim and set Enable = Yes but it dont appear on submit web?\r\n\r\nThank you very much!\nComment: 1. no idea i don't use it\r\n2. restart webgui/cape service to propagate changes\nComment: > 1. no idea i don't use it\r\n> 2. restart webgui/cape service to propagate changes\r\n\r\nThanks, Will do more with CAPE, But I dont know why my Analysis result dont have HTTP on Network Tab? \r\n\r\nWith rooter.py what port on firewall I have to config open to user Tor? And how can make my VM connect directly to Internet without ussing rooter?\r\n\r\nCan you share me some info how to parse CAPEv2 network traffic log to display HTTP and HTTPS IOC on Network Tab (Ex: files, services, .. need to edited/code/...?) I will do with my Team to improve CAPEv2 together with you!\nComment: You don't need to edit nothing\n\nEl vie., 20 nov. 2020 3:56, likescam <notifications@github.com> escribi\u00f3:\n\n>\n>    1. no idea i don't use it\n>    2. restart webgui/cape service to propagate changes\n>\n> Thanks, Will do more with CAPE, can you share me some info how to parse\n> CAPEv2 network traffic log to display HTTP and HTTPS IOC on Network Tab\n> (Ex: files, services, .. need to edited/code/...?) I will do with my Team\n> to improve CAPEv2 together with you!\n>\n> \u2014\n> You are receiving this because you were mentioned.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/367#issuecomment-730813012>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH37T3FGES2V3D6PWHH3SQXLGTANCNFSM4T3HKIUQ>\n> .\n>\n\nComment: http is shown by default, but network tab is populated from pcap not behavior, so you need to see what is wrong wtih pcap/capturing maybe wrong network interface, idk\nComment: > http is shown by default, but network tab is populated from pcap not behavior, so you need to see what is wrong wtih pcap/capturing maybe wrong network interface, idk\r\n\r\nAbout network interface, I config to use network of VM sandbox (not network of my host machine). Bellow is the pic of dump.pcap, you can see many port such as: 80, 443, 8080. But no thing (port 80/8080) display on Network Tab.\r\n![image](https://user-images.githubusercontent.com/2469038/99776825-049b7700-2b44-11eb-8840-5bb05b429792.png)\r\n![image](https://user-images.githubusercontent.com/2469038/99777148-7a9fde00-2b44-11eb-863c-d9bd1d482dd8.png)\r\n\nComment: exactly as all connections are `RST`, you need to see why. network of vm as exit? o_O\nComment: > exactly as all connections are `RST`, you need to see why. network of vm as exit? o_O\r\n\r\nYes, the network of VM is exit so tcpdump can capture the traffic, but I dont know what the Tor service do after that?\nComment: can you post config bcz or i understanding incorrectly what are you doing or you did it wrong, how do you expect host send traffic over vm interface to internet, it more like send traffic back to vm than the internet, what exit do you use? internet/tor/inetsim/vpn/proxy?\nComment: > can you post config bcz or i understanding incorrectly what are you doing or you did it wrong, how do you expect host send traffic over vm interface to internet, it more like send traffic back to vm than the internet, what exit do you use? internet/tor/inetsim/vpn/proxy?\r\n\r\nI only want to use Tor and Inetsim for analysis. But till now I dont understand why choice Tor mode the malware could not connect to Internet via Tor network. \nComment: maybe bcz tor service doesnt work on your server?\nComment: > maybe bcz tor service doesnt work on your server?\r\n\r\nYes, I think so, the tor and config is automatic as the cape2.sh do. During analysis, I check that the machine could not connect to Internet in Tor mode (mean that rooter.py is not working good althought it can add route to iptables). Trying to debug on Tor log (notice, debug log) but nothing helpful to me, So if I want connect direct to Internet not via Tor, what can I do?\nComment: i know that i starting to do your job and that already not related to cape, and more that you not want to check services and investigate on your own, so free support requires free beer\nComment: > beer\r\n\r\nOk my friend! Will check more and report to here. I wanna invite you to Vi\u1ec7t Nam drink some beer with me :D ",
+  "Title: [chg] handle case where inetsim traffic is not correctly recorded by tcpdump\nBody: Probably the original _tcpdump_ filter is fine in the case InetSIM is running on a separated VM (not sure about the noise part ...), nevertheless if it listens on the same _resultserver_ip_ , only DNS traffic is recorded and all the rest (http/https/etc.) is left out.\r\n\r\nFrom here the issues we have with no recorded HTTP sessions (under the _Network_ tab in the report and in the _json_ export) when an analysis was started with InetSIM vs TOR vs Dirty line\nComment: 1. thanks\r\n2. i strongly not suggest to run inetstim on the resultserver, that doesn't prevent traffic leaks\r\n3. did you test it? it should generate a lot of noise\nComment: Good point on the traffic leaks, to be honest I did not take that into account since the whole env is behind a dirty line by its own.\r\n\r\nAnyhow, yes I tested it and as stated you can see the differences in the analysis when running InetSim with or without the edited  filter - see below.\r\n\r\nInetSim analysis with the original tcpdump filter\r\n![inetsim-original-filter](https://user-images.githubusercontent.com/29753218/99644644-7e513900-2a4e-11eb-9f67-13e7d5a4980e.png)\r\n\r\nInetSim analysis with the edited tcpdump filter\r\n![inetsim-edited-filter](https://user-images.githubusercontent.com/29753218/99644752-9aed7100-2a4e-11eb-9f8e-7b5e421c0d81.png)\r\n\r\nI had no chance to submit the same sample on the community instance, but I reported the same behaviour in #356 for some maldoc samples.\r\n\r\nFor what concerns the network noise,I did not see any particular stuff (executing the sample via the TOR / Dirty line route shows the same noise anyhow), at least in my case I always see the same background network events someone would expect from Windows OS - but maybe I am missing something you noticed instead.\r\n\r\nIf removing the whole filter is not \"the way to go\", we could tight the filtering to get rid of noise, so better support both cases, InetSIM on resultserver_ip vs InetSIM in VM\r\n\r\n\r\n\nComment: thanks",
+  "Title: Problem when installing pypiwin32/pywin32 and privoxy.service\nBody: Hello @doomedraven \r\n\r\nI have a problem when running cape2.sh base cape, during installing, it could not install pypiwin32/pywin32 and privoxy (on mongodb-server). So I need your support, I appreciate about your help!\r\n\r\n\r\n**The privoxy log is:**\r\n```\r\nsession closed for user root\r\nol server 91.189.89.199\r\nol server 162.159.200.123\r\nol server 119.28.230.190\r\nol server 209.58.185.100\r\nTY=pts/1 ; PWD=/opt/CAPEv2 ; USER=root ; COMMAND=/bin/journalctl -xe\r\no:session): session opened for user root by cape(uid=0)\r\n ESCOD\r\nThg 11 18 03:37:37 cape ntpd[1053]: Soliciting pool server 2001:67c:1560:8003::c8\r\nThg 11 18 03:37:39 cape ntpd[1053]: Soliciting pool server 45.125.1.20\r\nThg 11 18 03:37:44 cape ntpd[1053]: Soliciting pool server 223.255.185.3\r\nThg 11 18 03:37:51 cape ntpd[1053]: Soliciting pool server 2001:470:19:301::123\r\nThg 11 18 03:38:03 cape sudo[8757]:     cape : TTY=pts/1 ; PWD=/opt/CAPEv2 ; USER=root ; COMMAND=/u\r\nThg 11 18 03:38:03 cape sudo[8757]: pam_unix(sudo:session): session opened for user root by cape(ui\r\nThg 11 18 03:38:04 cape sudo[8757]: pam_unix(sudo:session): session closed for user root\r\nThg 11 18 03:38:29 cape CommAmqpListene[7926]: [CCafException] AmqpCommon::[7926]: CommAmqpListener\r\nThg 11 18 03:38:32 cape sudo[8781]:     cape : TTY=pts/1 ; PWD=/opt/CAPEv2 ; USER=root ; COMMAND=/u\r\nThg 11 18 03:38:32 cape sudo[8781]: pam_unix(sudo:session): session opened for user root by cape(ui\r\nThg 11 18 03:38:38 cape systemd[1]: Reloading.\r\nThg 11 18 03:38:38 cape systemd[1]: Reloading.\r\nThg 11 18 03:38:38 cape systemd[1]: Reloading.\r\nThg 11 18 03:38:39 cape systemd[1]: Reloading.\r\nThg 11 18 03:38:41 cape ntpd[1053]: Soliciting pool server 91.189.94.4\r\nThg 11 18 03:38:41 cape kernel: perf: interrupt took too long (10207 > 10112), lowering kernel.perf\r\nThg 11 18 03:38:42 cape ntpd[1053]: Soliciting pool server 222.166.0.130\r\nThg 11 18 03:38:44 cape ntpd[1053]: Soliciting pool server 222.166.0.129\r\nThg 11 18 03:38:45 cape systemd[1]: Reloading.\r\nThg 11 18 03:38:48 cape ntpd[1053]: Soliciting pool server 45.124.64.93\r\nThg 11 18 03:38:48 cape sudo[8781]: pam_unix(sudo:session): session closed for user root\r\nThg 11 18 03:38:56 cape ntpd[1053]: Soliciting pool server 2606:4700:f1::1\r\nThg 11 18 03:39:11 cape sudo[10236]:     cape : TTY=pts/1 ; PWD=/opt/CAPEv2 ; USER=root ; COMMAND=/\r\nThg 11 18 03:39:11 cape sudo[10236]: pam_unix(sudo:session): session opened for user root by cape(u\r\nThg 11 18 03:39:11 cape sudo[10236]: pam_unix(sudo:session): session closed for user root\r\nThg 11 18 03:39:17 cape sudo[10239]:     cape : TTY=pts/1 ; PWD=/opt/CAPEv2 ; USER=root ; COMMAND=/\r\nThg 11 18 03:39:17 cape sudo[10239]: pam_unix(sudo:session): session opened for user root by cape(u\r\nThg 11 18 03:39:17 cape systemd[1]: Starting Privacy enhancing HTTP Proxy...\r\n-- Subject: Unit privoxy.service has begun start-up\r\n-- Defined-By: systemd\r\n-- Support: http://www.ubuntu.com/support\r\n-- \r\n-- Unit privoxy.service has begun starting up.\r\nThg 11 18 03:39:18 cape systemd[1]: privoxy.service: Control process exited, code=exited status=1\r\nThg 11 18 03:39:18 cape systemd[1]: privoxy.service: Failed with result 'exit-code'.\r\nThg 11 18 03:39:18 cape systemd[1]: Failed to start Privacy enhancing HTTP Proxy.\r\n-- Subject: Unit privoxy.service has failed\r\n-- Defined-By: systemd\r\n-- Support: http://www.ubuntu.com/support\r\n-- \r\n-- Unit privoxy.service has failed.\r\n-- \r\n-- The result is RESULT.\r\nThg 11 18 03:39:18 cape sudo[10239]: pam_unix(sudo:session): session closed for user root\r\nThg 11 18 03:39:48 cape ntpd[1053]: Soliciting pool server 91.189.89.199\r\nThg 11 18 03:39:48 cape ntpd[1053]: Soliciting pool server 162.159.200.123\r\nThg 11 18 03:39:49 cape ntpd[1053]: Soliciting pool server 119.28.230.190\r\nThg 11 18 03:39:54 cape ntpd[1053]: Soliciting pool server 209.58.185.100\r\nThg 11 18 03:39:58 cape sudo[10253]:     cape : TTY=pts/1 ; PWD=/opt/CAPEv2 ; USER=root ; COMMAND=/\r\nThg 11 18 03:39:58 cape sudo[10253]: pam_unix(sudo:session): session opened for user root by cape(u\r\n ESCOD\r\nThg 11 18 03:37:37 cape ntpd[1053]: Soliciting pool server 2001:67c:1560:8003::c8\r\nThg 11 18 03:37:39 cape ntpd[1053]: Soliciting pool server 45.125.1.20\r\nThg 11 18 03:37:44 cape ntpd[1053]: Soliciting pool server 223.255.185.3\r\nThg 11 18 03:37:51 cape ntpd[1053]: Soliciting pool server 2001:470:19:301::123\r\nThg 11 18 03:38:03 cape sudo[8757]:     cape : TTY=pts/1 ; PWD=/opt/CAPEv2 ; USER=root ; COMMAND=/u\r\nThg 11 18 03:38:03 cape sudo[8757]: pam_unix(sudo:session): session opened for user root by cape(ui\r\nThg 11 18 03:38:04 cape sudo[8757]: pam_unix(sudo:session): session closed for user root\r\nThg 11 18 03:38:29 cape CommAmqpListene[7926]: [CCafException] AmqpCommon::[7926]: CommAmqpListener\r\nThg 11 18 03:38:32 cape sudo[8781]:     cape : TTY=pts/1 ; PWD=/opt/CAPEv2 ; USER=root ; COMMAND=/u\r\nThg 11 18 03:38:32 cape sudo[8781]: pam_unix(sudo:session): session opened for user root by cape(ui\r\nThg 11 18 03:38:38 cape systemd[1]: Reloading.\r\nThg 11 18 03:38:38 cape systemd[1]: Reloading.\r\nThg 11 18 03:38:38 cape systemd[1]: Reloading.\r\nThg 11 18 03:38:39 cape systemd[1]: Reloading.\r\nThg 11 18 03:38:41 cape ntpd[1053]: Soliciting pool server 91.189.94.4\r\nThg 11 18 03:38:41 cape kernel: perf: interrupt took too long (10207 > 10112), lowering kernel.perf\r\nThg 11 18 03:38:42 cape ntpd[1053]: Soliciting pool server 222.166.0.130\r\nThg 11 18 03:38:44 cape ntpd[1053]: Soliciting pool server 222.166.0.129\r\nThg 11 18 03:38:45 cape systemd[1]: Reloading.\r\nThg 11 18 03:38:48 cape ntpd[1053]: Soliciting pool server 45.124.64.93\r\nThg 11 18 03:38:48 cape sudo[8781]: pam_unix(sudo:session): session closed for user root\r\nThg 11 18 03:38:56 cape ntpd[1053]: Soliciting pool server 2606:4700:f1::1\r\nThg 11 18 03:39:11 cape sudo[10236]:     cape : TTY=pts/1 ; PWD=/opt/CAPEv2 ; USER=root ; COMMAND=/\r\nThg 11 18 03:39:11 cape sudo[10236]: pam_unix(sudo:session): session opened for user root by cape(u\r\nThg 11 18 03:39:11 cape sudo[10236]: pam_unix(sudo:session): session closed for user root\r\nThg 11 18 03:39:17 cape sudo[10239]:     cape : TTY=pts/1 ; PWD=/opt/CAPEv2 ; USER=root ; COMMAND=/\r\nThg 11 18 03:39:17 cape sudo[10239]: pam_unix(sudo:session): session opened for user root by cape(u\r\nThg 11 18 03:39:17 cape systemd[1]: Starting Privacy enhancing HTTP Proxy...\r\n-- Subject: Unit privoxy.service has begun start-up\r\n-- Defined-By: systemd\r\n-- Support: http://www.ubuntu.com/support\r\n-- \r\n-- Unit privoxy.service has begun starting up.\r\nThg 11 18 03:39:18 cape systemd[1]: privoxy.service: Control process exited, code=exited status=1\r\nThg 11 18 03:39:18 cape systemd[1]: privoxy.service: Failed with result 'exit-code'.\r\nThg 11 18 03:39:18 cape systemd[1]: Failed to start Privacy enhancing HTTP Proxy.\r\n-- Subject: Unit privoxy.service has failed\r\n-- Defined-By: systemd\r\n-- Support: http://www.ubuntu.com/support\r\n-- \r\n-- Unit privoxy.service has failed.\r\n-- \r\n-- The result is RESULT.\r\nThg 11 18 03:39:18 cape sudo[10239]: pam_unix(sudo:session): session closed for user root\r\nThg 11 18 03:39:48 cape ntpd[1053]: Soliciting pool server 91.189.89.199\r\nThg 11 18 03:39:48 cape ntpd[1053]: Soliciting pool server 162.159.200.123\r\nThg 11 18 03:39:49 cape ntpd[1053]: Soliciting pool server 119.28.230.190\r\nThg 11 18 03:39:54 cape ntpd[1053]: Soliciting pool server 209.58.185.100\r\nThg 11 18 03:39:58 cape sudo[10253]:     cape : TTY=pts/1 ; PWD=/opt/CAPEv2 ; USER=root ; COMMAND=/\r\nThg 11 18 03:39:58 cape sudo[10253]: pam_unix(sudo:session): session opened for user root by cape(u\r\n```\r\n**The pypiwin32 install log is:**\r\n\r\n```\r\nsudo pip3 install pypiwin32\r\nThe directory '/home/cape/.cache/pip/http' or its parent directory is not owned by the current user and the cache has been disabled. Please check the permissions and owner of that directory. If executing pip with sudo, you may want sudo's -H flag.\r\nThe directory '/home/cape/.cache/pip' or its parent directory is not owned by the current user and caching wheels has been disabled. check the permissions and owner of that directory. If executing pip with sudo, you may want sudo's -H flag.\r\nCollecting pypiwin32\r\n  Downloading https://files.pythonhosted.org/packages/d0/1b/2f292bbd742e369a100c91faa0483172cd91a1a422a6692055ac920946c5/pypiwin32-223-py3-none-any.whl\r\nCollecting pywin32>=223 (from pypiwin32)\r\n  Could not find a version that satisfies the requirement pywin32>=223 (from pypiwin32) (from versions: )\r\nNo matching distribution found for pywin32>=223 (from pypiwin32)\r\n```\r\n\r\n**I tried to run cuckoo.py and it also have error bellow:**\r\n```\r\ncape@cape:/opt/CAPEv2$ sudo python3 cuckoo.py \r\n\r\n  eeee e   e eeee e   e  eeeee eeeee\r\n  8  8 8   8 8  8 8   8  8  88 8  88\r\n  8e   8e  8 8e   8eee8e 8   8 8   8\r\n  88   88  8 88   88   8 8   8 8   8\r\n  88e8 88ee8 88e8 88   8 8eee8 8eee8\r\n\r\n Cuckoo Sandbox 2.1-CAPE\r\n www.cuckoosandbox.org\r\n Copyright (c) 2010-2015\r\n\r\n CAPE: Config and Payload Extraction\r\n github.com/kevoreilly/CAPEv2\r\n\r\npywin32 is not installed (only is required if you want to use MS Excel)\r\n2020-11-18 10:21:00,999 [root] CRITICAL: CuckooStartupError: The rooter is required but it is either not running or it has been configured to a different Unix socket path. (In order to disable the use of rooter, please set route and internet to none in cuckoo.conf and enabled to no in routing.conf).\r\n```\r\n\r\n\nComment: you don't need privoxy, to route trafic, as rooter does it\r\n\r\nabout `pywin32 is not installed (only is required if you want to use MS Excel)` <- that si https://github.com/DissectMalware/XLMMacroDeobfuscator if it not inside of windows vm, it shows that, so you don't need to care about that , and as that tells if you want to use MS excel, that not make any sense on server side\r\n\r\nso you don't really have an issue ;) \r\n\r\nand about rooter, well that is simple, just start rooter, see cape2.sh for how to do it\r\n\r\n+10 for log ;) \nComment: will pr it later, `python3 utils/rooter.py -h or systemctl status cape-rooter` will be added to that error msg\r\nthat fixes your problem?\nComment: closing as responded, did that solved your issues?\nComment: > will pr it later, `python3 utils/rooter.py -h or systemctl status cape-rooter` will be added to that error msg\r\n> that fixes your problem?\r\n\r\nThanks @doomedraven , I also fix rooter problem by running it on another terminal, and running cuckoo.py ok. But another problem when I run web interface, I dont know why I can not start web :(\r\n\r\n```\r\ncape@cape:/opt/CAPEv2/web$sudo python3 manage.py runserver 0.0.0.0:8080\r\nTraceback (most recent call last):\r\n  File \"manage.py\", line 15, in <module>\r\n    execute_from_command_line(sys.argv)\r\n  File \"/usr/local/lib/python3.6/dist-packages/django/core/management/__init__.py\", line 401, in execute_from_command_line\r\n    utility.execute()\r\n  File \"/usr/local/lib/python3.6/dist-packages/django/core/management/__init__.py\", line 345, in execute\r\n    settings.INSTALLED_APPS\r\n  File \"/usr/local/lib/python3.6/dist-packages/django/conf/__init__.py\", line 83, in __getattr__\r\n    self._setup(name)\r\n  File \"/usr/local/lib/python3.6/dist-packages/django/conf/__init__.py\", line 70, in _setup\r\n    self._wrapped = Settings(settings_module)\r\n  File \"/usr/local/lib/python3.6/dist-packages/django/conf/__init__.py\", line 177, in __init__\r\n    mod = importlib.import_module(self.SETTINGS_MODULE)\r\n  File \"/usr/lib/python3.6/importlib/__init__.py\", line 126, in import_module\r\n    return _bootstrap._gcd_import(name[level:], package, level)\r\n  File \"<frozen importlib._bootstrap>\", line 994, in _gcd_import\r\n  File \"<frozen importlib._bootstrap>\", line 971, in _find_and_load\r\n  File \"<frozen importlib._bootstrap>\", line 955, in _find_and_load_unlocked\r\n  File \"<frozen importlib._bootstrap>\", line 665, in _load_unlocked\r\n  File \"<frozen importlib._bootstrap_external>\", line 678, in exec_module\r\n  File \"<frozen importlib._bootstrap>\", line 219, in _call_with_frames_removed\r\n  File \"/opt/CAPEv2/web/web/settings.py\", line 39, in <module>\r\n    WEB_AUTHENTICATION = web_cfg.web_auth.get(\"enabled\", False)\r\nAttributeError: 'Config' object has no attribute 'web_auth'\r\n```\nComment: > > will pr it later, `python3 utils/rooter.py -h or systemctl status cape-rooter` will be added to that error msg\r\n> > that fixes your problem?\r\n> \r\n> Thanks @doomedraven , I also fix rooter problem by running it on another terminal, and running cuckoo.py ok. But another problem when I run web interface, I dont know why I can not start web :(\r\n> \r\n> ```\r\n> cape@cape:/opt/CAPEv2/web$sudo python3 manage.py runserver 0.0.0.0:8080\r\n> Traceback (most recent call last):\r\n>   File \"manage.py\", line 15, in <module>\r\n>     execute_from_command_line(sys.argv)\r\n>   File \"/usr/local/lib/python3.6/dist-packages/django/core/management/__init__.py\", line 401, in execute_from_command_line\r\n>     utility.execute()\r\n>   File \"/usr/local/lib/python3.6/dist-packages/django/core/management/__init__.py\", line 345, in execute\r\n>     settings.INSTALLED_APPS\r\n>   File \"/usr/local/lib/python3.6/dist-packages/django/conf/__init__.py\", line 83, in __getattr__\r\n>     self._setup(name)\r\n>   File \"/usr/local/lib/python3.6/dist-packages/django/conf/__init__.py\", line 70, in _setup\r\n>     self._wrapped = Settings(settings_module)\r\n>   File \"/usr/local/lib/python3.6/dist-packages/django/conf/__init__.py\", line 177, in __init__\r\n>     mod = importlib.import_module(self.SETTINGS_MODULE)\r\n>   File \"/usr/lib/python3.6/importlib/__init__.py\", line 126, in import_module\r\n>     return _bootstrap._gcd_import(name[level:], package, level)\r\n>   File \"<frozen importlib._bootstrap>\", line 994, in _gcd_import\r\n>   File \"<frozen importlib._bootstrap>\", line 971, in _find_and_load\r\n>   File \"<frozen importlib._bootstrap>\", line 955, in _find_and_load_unlocked\r\n>   File \"<frozen importlib._bootstrap>\", line 665, in _load_unlocked\r\n>   File \"<frozen importlib._bootstrap_external>\", line 678, in exec_module\r\n>   File \"<frozen importlib._bootstrap>\", line 219, in _call_with_frames_removed\r\n>   File \"/opt/CAPEv2/web/web/settings.py\", line 39, in <module>\r\n>     WEB_AUTHENTICATION = web_cfg.web_auth.get(\"enabled\", False)\r\n> AttributeError: 'Config' object has no attribute 'web_auth'\r\n> ```\r\n\r\nI solved this problem with about error by restarting my Ubuntu.\r\nThank you so much! maybe next time will ask you more and more and hope you support me again :D\nComment: well that error should be related to missed section on your side https://github.com/kevoreilly/CAPEv2/blob/master/conf/web.conf#L2",
+  "Title: issue when installing pillow 3.2.0 on Python 3.6\nBody: Hello, \r\n\r\nThe last time before running cuckoo, I have to Install sflock by command:\r\n`sudo pip3 install -U sflock`\r\nBut it cannot install sflock because the pillow==3.2.0 have problem with python3.5. So I try to install pillow3.2.0 by running:\r\n`sudo pip3 install pillow==3.2.0\r\n`\r\nBut both command can not help me install pillow3.2.0 and sflock.\r\nI'm current running Python 3.6.9, Ubuntu 18.04 Full update.\r\nBellow is the log when try to install sflock/pillow3.2.0:\r\n```\r\nCollecting Pillow==3.2.0 (from peepdf>=0.4.1->sflock)\r\n  Downloading https://files.pythonhosted.org/packages/e2/af/0a3981fffc5cd43078eb8b1057702e0dd2d5771e5aaa36cbd140e32f8473/Pillow-3.2.0.tar.gz (10.3MB)\r\n    100% |\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588| 10.3MB 78kB/s \r\nRequirement already up-to-date: pythonaes==1.0 in /usr/local/lib/python3.6/dist-packages (from peepdf>=0.4.1->sflock)\r\nRequirement already up-to-date: pycparser in /home/cape/.local/lib/python3.6/site-packages (from cffi!=1.11.3,>=1.8->cryptography>=2.1->sflock)\r\nInstalling collected packages: Pillow, peepdf, sflock\r\n  Found existing installation: Pillow 8.0.1\r\n    Uninstalling Pillow-8.0.1:\r\n      Successfully uninstalled Pillow-8.0.1\r\n  Running setup.py install for Pillow ... error\r\n    Complete output from command /usr/bin/python3 -u -c \"import setuptools, tokenize;__file__='/tmp/pip-build-78brn3_q/Pillow/setup.py';f=getattr(tokenize, 'open', open)(__file__);code=f.read().replace('\\r\\n', '\\n');f.close();exec(compile(code, __file__, 'exec'))\" install --record /tmp/pip-e2fsrh2j-record/install-record.txt --single-version-externally-managed --compile:\r\n    running install\r\n    running build\r\n    running build_py\r\n    creating build\r\n    creating build/lib.linux-x86_64-3.6\r\n    creating build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/CurImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/ImageFile.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/MpegImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/FtexImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/JpegPresets.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/ImageDraw.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/ImageChops.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/TarIO.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/Jpeg2KImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/MspImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/Hdf5StubImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/JpegImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/PalmImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/PcdImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/GifImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/FitsStubImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/features.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/ImageDraw2.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/ImagePalette.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/FontFile.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/GimpPaletteFile.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/PpmImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/PcxImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/GdImageFile.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/PyAccess.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/ImageStat.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/GbrImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/ImageMode.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/BdfFontFile.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/PcfFontFile.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/SunImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/ImageOps.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/ImImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/ImageMorph.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/XbmImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/PsdImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/ImageFont.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/ImtImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/ContainerIO.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/ImageMath.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/FpxImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/BufrStubImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/ImageEnhance.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/ImageQt.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/DdsImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/DcxImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/_util.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/ImageSequence.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/PngImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/OleFileIO.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/ImageGrab.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/SpiderImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/WebPImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/_binary.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/ImagePath.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/ImageWin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/McIdasImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/ImageFilter.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/PaletteFile.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/ImageTk.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/ExifTags.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/GimpGradientFile.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/TiffImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/ImageColor.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/WmfImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/BmpImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/FliImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/ImageTransform.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/EpsImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/ImageCms.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/MpoImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/__init__.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/SgiImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/IcoImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/WalImageFile.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/PdfImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/XpmImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/IcnsImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/IptcImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/TiffTags.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/GribStubImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/PSDraw.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/MicImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/ImageShow.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/PixarImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/Image.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/TgaImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    copying PIL/XVThumbImagePlugin.py -> build/lib.linux-x86_64-3.6/PIL\r\n    running egg_info\r\n    writing Pillow.egg-info/PKG-INFO\r\n    writing dependency_links to Pillow.egg-info/dependency_links.txt\r\n    writing top-level names to Pillow.egg-info/top_level.txt\r\n    reading manifest file 'Pillow.egg-info/SOURCES.txt'\r\n    reading manifest template 'MANIFEST.in'\r\n    warning: no files found matching '*.sh'\r\n    no previously-included directories found matching 'docs/_static'\r\n    warning: no previously-included files found matching '.coveragerc'\r\n    warning: no previously-included files found matching '.editorconfig'\r\n    warning: no previously-included files found matching '.landscape.yaml'\r\n    warning: no previously-included files found matching 'appveyor.yml'\r\n    warning: no previously-included files found matching 'build_children.sh'\r\n    warning: no previously-included files found matching 'tox.ini'\r\n    warning: no previously-included files matching '.git*' found anywhere in distribution\r\n    warning: no previously-included files matching '*.pyc' found anywhere in distribution\r\n    warning: no previously-included files matching '*.so' found anywhere in distribution\r\n    writing manifest file 'Pillow.egg-info/SOURCES.txt'\r\n    copying PIL/OleFileIO-README.md -> build/lib.linux-x86_64-3.6/PIL\r\n    running build_ext\r\n    Traceback (most recent call last):\r\n      File \"<string>\", line 1, in <module>\r\n      File \"/tmp/pip-build-78brn3_q/Pillow/setup.py\", line 767, in <module>\r\n        zip_safe=not debug_build(), )\r\n      File \"/usr/local/lib/python3.6/dist-packages/setuptools/__init__.py\", line 153, in setup\r\n        return distutils.core.setup(**attrs)\r\n      File \"/usr/lib/python3.6/distutils/core.py\", line 148, in setup\r\n        dist.run_commands()\r\n      File \"/usr/lib/python3.6/distutils/dist.py\", line 955, in run_commands\r\n        self.run_command(cmd)\r\n      File \"/usr/lib/python3.6/distutils/dist.py\", line 974, in run_command\r\n        cmd_obj.run()\r\n      File \"/usr/local/lib/python3.6/dist-packages/setuptools/command/install.py\", line 61, in run\r\n        return orig.install.run(self)\r\n      File \"/usr/lib/python3.6/distutils/command/install.py\", line 589, in run\r\n        self.run_command('build')\r\n      File \"/usr/lib/python3.6/distutils/cmd.py\", line 313, in run_command\r\n        self.distribution.run_command(command)\r\n      File \"/usr/lib/python3.6/distutils/dist.py\", line 974, in run_command\r\n        cmd_obj.run()\r\n      File \"/usr/lib/python3.6/distutils/command/build.py\", line 135, in run\r\n        self.run_command(cmd_name)\r\n      File \"/usr/lib/python3.6/distutils/cmd.py\", line 313, in run_command\r\n        self.distribution.run_command(command)\r\n      File \"/usr/lib/python3.6/distutils/dist.py\", line 974, in run_command\r\n        cmd_obj.run()\r\n      File \"/usr/lib/python3.6/distutils/command/build_ext.py\", line 339, in run\r\n        self.build_extensions()\r\n      File \"/tmp/pip-build-78brn3_q/Pillow/setup.py\", line 512, in build_extensions\r\n        ' using --disable-%s, aborting' % (f, f))\r\n    ValueError: jpeg is required unless explicitly disabled using --disable-jpeg, aborting\r\n    \r\n    ----------------------------------------\r\n  Rolling back uninstall of Pillow\r\nCommand \"/usr/bin/python3 -u -c \"import setuptools, tokenize;__file__='/tmp/pip-build-78brn3_q/Pillow/setup.py';f=getattr(tokenize, 'open', open)(__file__);code=f.read().replace('\\r\\n', '\\n');f.close();exec(compile(code, __file__, 'exec'))\" install --record /tmp/pip-e2fsrh2j-record/install-record.txt --single-version-externally-managed --compile\" failed with error code 1 in /tmp/pip-build-78brn3_q/Pillow/\r\n```\nComment: google that, that is pillow problem, https://stackoverflow.com/questions/34631806/fail-during-installation-of-pillow-python-module-in-linux \nComment: + we don't use that sflock, use my fork, see readme for instalation script, you have the rest there\nComment: Thank you @doomedraven \r\nBut when running cape2.sh with: \r\nsudo ./cape2.sh All\r\nIt can not install sflock.\r\nTrying to run your command on cape2.sh script, the log is:\r\n`pip3 install git+https://github.com/doomedraven/sflock.git git+https://github.com/doomedraven/socks5man.git \"pyattck>=2.0.2\" distorm3 openpyxl git+https://github.com/volatilityfoundation/volatility3 git+https://github.com/DissectMalware/XLMMacroDeobfuscator passlib pyzipper`\r\n\r\n```\r\nCollecting git+https://github.com/doomedraven/sflock.git\r\n  Cloning https://github.com/doomedraven/sflock.git to /tmp/pip-ndwa5b04-build\r\nCollecting git+https://github.com/doomedraven/socks5man.git\r\n  Cloning https://github.com/doomedraven/socks5man.git to /tmp/pip-kkm8g8rv-build\r\nCollecting git+https://github.com/volatilityfoundation/volatility3\r\n  Cloning https://github.com/volatilityfoundation/volatility3 to /tmp/pip-dd6samu1-build\r\nCollecting git+https://github.com/DissectMalware/XLMMacroDeobfuscator\r\n  Cloning https://github.com/DissectMalware/XLMMacroDeobfuscator to /tmp/pip-bjia4u8w-build\r\nRequirement already satisfied: pyattck>=2.0.2 in /usr/local/lib/python3.6/dist-packages\r\nCollecting distorm3\r\n  Downloading https://files.pythonhosted.org/packages/36/0e/d11cf7fb81f00237c66c387acf91898822e9974ad5b7d8349867bc67567e/distorm3-3.5.0.tar.gz (137kB)\r\n    100% |\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588| 143kB 2.0MB/s \r\nCollecting openpyxl\r\n  Downloading https://files.pythonhosted.org/packages/5c/90/61f83be1c335a9b69fa773784a785d9de95c7561d1661918796fd1cba3d2/openpyxl-3.0.5-py2.py3-none-any.whl (242kB)\r\n    100% |\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588| 245kB 3.9MB/s \r\nCollecting passlib\r\n  Downloading https://files.pythonhosted.org/packages/3b/a4/ab6b7589382ca3df236e03faa71deac88cae040af60c071a78d254a62172/passlib-1.7.4-py2.py3-none-any.whl (525kB)\r\n    100% |\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588| 532kB 1.3MB/s \r\nCollecting pyzipper\r\n  Downloading https://files.pythonhosted.org/packages/b4/64/2572e23af47c0c6f2abd4e0d4f25d6dd3647c6ada9841c2d6f634bffe55a/pyzipper-0.3.3-py2.py3-none-any.whl (162kB)\r\n    100% |\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588| 163kB 2.7MB/s \r\nRequirement already satisfied: click==6.6 in /home/cape/.local/lib/python3.6/site-packages (from SFlock==0.3.10)\r\nRequirement already satisfied: cryptography>=2.1 in /home/cape/.local/lib/python3.6/site-packages (from SFlock==0.3.10)\r\nRequirement already satisfied: olefile>=0.43 in /home/cape/.local/lib/python3.6/site-packages (from SFlock==0.3.10)\r\nCollecting peepdf>=0.4.1 (from SFlock==0.3.10)\r\n  Downloading https://files.pythonhosted.org/packages/01/0f/12a50ada4a3ff2a2c0c4c74e6fababf374eff037c9786745c51fdf246c8b/peepdf-0.4.2.tar.gz (108kB)\r\n    100% |\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588| 112kB 4.5MB/s \r\nCollecting python-magic>=0.4.13 (from SFlock==0.3.10)\r\n  Downloading https://files.pythonhosted.org/packages/59/77/c76dc35249df428ce2c38a3196e2b2e8f9d2f847a8ca1d4d7a3973c28601/python_magic-0.4.18-py2.py3-none-any.whl\r\nCollecting PySocks>=1.7 (from Socks5man==0.3.0)\r\n  Downloading https://files.pythonhosted.org/packages/8d/59/b4572118e098ac8e46e399a1dd0f2d85403ce8bbaad9ec79373ed6badaf9/PySocks-1.7.1-py3-none-any.whl\r\nCollecting geoip2==2.9.0 (from Socks5man==0.3.0)\r\n  Downloading https://files.pythonhosted.org/packages/ed/17/bcbb7c0849492e218767e658c66fbf9e3420b6301072371547c4f7192d48/geoip2-2.9.0-py2.py3-none-any.whl\r\nRequirement already satisfied: SQLAlchemy<1.4,>=1.3.3 in /usr/local/lib/python3.6/dist-packages (from Socks5man==0.3.0)\r\nCollecting alembic<1.1,>=1.0.7 (from Socks5man==0.3.0)\r\n  Downloading https://files.pythonhosted.org/packages/7b/8b/0c98c378d93165d9809193f274c3c6e2151120d955b752419c7d43e4d857/alembic-1.0.11.tar.gz (1.0MB)\r\n    100% |\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588| 1.0MB 596kB/s \r\nRequirement already satisfied: pefile in /usr/local/lib/python3.6/dist-packages (from volatility==2.0.0b1)\r\nCollecting pyxlsb2 (from XLMMacroDeobfuscator==0.1.5)\r\n  Downloading https://files.pythonhosted.org/packages/15/ca/98eb1e630cc1d5c1f4a88ea402d91eec7844ace611fa55549ec6890509f8/pyxlsb2-0.0.2-py3-none-any.whl\r\nCollecting lark-parser (from XLMMacroDeobfuscator==0.1.5)\r\n  Downloading https://files.pythonhosted.org/packages/0a/f3/f8cac236af0e3a6003c015552ee12e9c4b0e67a7add675554baff8a75816/lark_parser-0.11.1-py2.py3-none-any.whl (93kB)\r\n    100% |\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588| 102kB 4.7MB/s \r\nCollecting xlrd2 (from XLMMacroDeobfuscator==0.1.5)\r\n  Downloading https://files.pythonhosted.org/packages/c1/2f/69402836a43926868594d8c96d91092a9a3d61d524723a968e2277c60501/xlrd2-1.2.6-py2.py3-none-any.whl (114kB)\r\n    100% |\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588| 122kB 4.6MB/s \r\nCollecting untangle==1.1.1 (from XLMMacroDeobfuscator==0.1.5)\r\n  Downloading https://files.pythonhosted.org/packages/f4/eb/a19a34858cd702b09524bd2ddb01c0d75a71f993a96aec8755a76e867911/untangle-1.1.1.tar.gz\r\nRequirement already satisfied: msoffcrypto-tool in /usr/local/lib/python3.6/dist-packages (from XLMMacroDeobfuscator==0.1.5)\r\nRequirement already satisfied: Pillow>=6.2.2 in /usr/local/lib/python3.6/dist-packages (from pyattck>=2.0.2)\r\nRequirement already satisfied: PyYaml>=5.0 in /usr/local/lib/python3.6/dist-packages (from pyattck>=2.0.2)\r\nRequirement already satisfied: requests in /usr/local/lib/python3.6/dist-packages (from pyattck>=2.0.2)\r\nRequirement already satisfied: fire==0.3.1 in /usr/local/lib/python3.6/dist-packages (from pyattck>=2.0.2)\r\nRequirement already satisfied: pendulum<1.3,>=1.2.3 in /usr/local/lib/python3.6/dist-packages (from pyattck>=2.0.2)\r\nRequirement already satisfied: pyfiglet==0.8.post1 in /usr/local/lib/python3.6/dist-packages (from pyattck>=2.0.2)\r\nCollecting et-xmlfile (from openpyxl)\r\n  Downloading https://files.pythonhosted.org/packages/22/28/a99c42aea746e18382ad9fb36f64c1c1f04216f41797f2f0fa567da11388/et_xmlfile-1.0.1.tar.gz\r\nCollecting jdcal (from openpyxl)\r\n  Downloading https://files.pythonhosted.org/packages/f0/da/572cbc0bc582390480bbd7c4e93d14dc46079778ed915b505dc494b37c57/jdcal-1.4.1-py2.py3-none-any.whl\r\nCollecting pycryptodomex (from pyzipper)\r\n  Downloading https://files.pythonhosted.org/packages/ff/29/1541b26a2b679bafb124138c5f009ed7821d9d329536b79a313a9a1aa684/pycryptodomex-3.9.9-cp36-cp36m-manylinux1_x86_64.whl (13.7MB)\r\n    100% |\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588| 13.7MB 52kB/s \r\nRequirement already satisfied: six>=1.4.1 in /home/cape/.local/lib/python3.6/site-packages (from cryptography>=2.1->SFlock==0.3.10)\r\nRequirement already satisfied: cffi!=1.11.3,>=1.8 in /home/cape/.local/lib/python3.6/site-packages (from cryptography>=2.1->SFlock==0.3.10)\r\nRequirement already satisfied: jsbeautifier==1.6.2 in /home/cape/.local/lib/python3.6/site-packages (from peepdf>=0.4.1->SFlock==0.3.10)\r\nRequirement already satisfied: colorama==0.3.7 in /home/cape/.local/lib/python3.6/site-packages (from peepdf>=0.4.1->SFlock==0.3.10)\r\nRequirement already satisfied: future>=0.16.0 in /home/cape/.local/lib/python3.6/site-packages (from peepdf>=0.4.1->SFlock==0.3.10)\r\nRequirement already satisfied: pythonaes==1.0 in /usr/local/lib/python3.6/dist-packages (from peepdf>=0.4.1->SFlock==0.3.10)\r\nCollecting maxminddb>=1.4.0 (from geoip2==2.9.0->Socks5man==0.3.0)\r\n  Downloading https://files.pythonhosted.org/packages/51/90/e1718dc14b9ecc7e1ef627f577d92d644a4acebcb4d97f6a6918e12591ba/maxminddb-2.0.3.tar.gz (286kB)\r\n    100% |\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2588| 286kB 2.3MB/s \r\nRequirement already satisfied: Mako in /usr/lib/python3/dist-packages (from alembic<1.1,>=1.0.7->Socks5man==0.3.0)\r\nCollecting python-editor>=0.3 (from alembic<1.1,>=1.0.7->Socks5man==0.3.0)\r\n  Downloading https://files.pythonhosted.org/packages/c6/d3/201fc3abe391bbae6606e6f1d598c15d367033332bd54352b12f35513717/python_editor-1.0.4-py3-none-any.whl\r\nRequirement already satisfied: python-dateutil in /usr/local/lib/python3.6/dist-packages (from alembic<1.1,>=1.0.7->Socks5man==0.3.0)\r\nRequirement already satisfied: chardet<4,>=3.0.2 in /usr/lib/python3/dist-packages (from requests->pyattck>=2.0.2)\r\nRequirement already satisfied: certifi>=2017.4.17 in /usr/local/lib/python3.6/dist-packages (from requests->pyattck>=2.0.2)\r\nRequirement already satisfied: urllib3<1.27,>=1.21.1 in /usr/local/lib/python3.6/dist-packages (from requests->pyattck>=2.0.2)\r\nRequirement already satisfied: idna<3,>=2.5 in /usr/local/lib/python3.6/dist-packages (from requests->pyattck>=2.0.2)\r\nRequirement already satisfied: termcolor in /usr/local/lib/python3.6/dist-packages (from fire==0.3.1->pyattck>=2.0.2)\r\nRequirement already satisfied: tzlocal in /usr/local/lib/python3.6/dist-packages (from pendulum<1.3,>=1.2.3->pyattck>=2.0.2)\r\nRequirement already satisfied: pytzdata in /usr/local/lib/python3.6/dist-packages (from pendulum<1.3,>=1.2.3->pyattck>=2.0.2)\r\nRequirement already satisfied: pycparser in /home/cape/.local/lib/python3.6/site-packages (from cffi!=1.11.3,>=1.8->cryptography>=2.1->SFlock==0.3.10)\r\nRequirement already satisfied: pytz in /usr/lib/python3/dist-packages (from tzlocal->pendulum<1.3,>=1.2.3->pyattck>=2.0.2)\r\nInstalling collected packages: distorm3, et-xmlfile, jdcal, openpyxl, passlib, pycryptodomex, pyzipper, peepdf, python-magic, SFlock, PySocks, maxminddb, geoip2, python-editor, alembic, Socks5man, volatility, pyxlsb2, lark-parser, xlrd2, untangle, XLMMacroDeobfuscator\r\n  Running setup.py install for distorm3 ... error\r\n    Complete output from command /usr/bin/python3 -u -c \"import setuptools, tokenize;__file__='/tmp/pip-build-x65lz2va/distorm3/setup.py';f=getattr(tokenize, 'open', open)(__file__);code=f.read().replace('\\r\\n', '\\n');f.close();exec(compile(code, __file__, 'exec'))\" install --record /tmp/pip-xevfg3zj-record/install-record.txt --single-version-externally-managed --compile:\r\n    running install\r\n    running build\r\n    running build_py\r\n    creating build\r\n    creating build/lib.linux-x86_64-3.6\r\n    creating build/lib.linux-x86_64-3.6/distorm3\r\n    copying python/distorm3/_generated.py -> build/lib.linux-x86_64-3.6/distorm3\r\n    copying python/distorm3/__main__.py -> build/lib.linux-x86_64-3.6/distorm3\r\n    copying python/distorm3/__init__.py -> build/lib.linux-x86_64-3.6/distorm3\r\n    running build_ext\r\n    building '_distorm3' extension\r\n    creating build/temp.linux-x86_64-3.6\r\n    creating build/temp.linux-x86_64-3.6/src\r\n    creating build/temp.linux-x86_64-3.6/python\r\n    x86_64-linux-gnu-gcc -pthread -DNDEBUG -g -fwrapv -O2 -Wall -g -fstack-protector-strong -Wformat -Werror=format-security -Wdate-time -D_FORTIFY_SOURCE=2 -fPIC -DSUPPORT_64BIT_OFFSET -DDISTORM_DYNAMIC -Isrc -Iinclude -I/usr/include/python3.6m -c src/decoder.c -o build/temp.linux-x86_64-3.6/src/decoder.o\r\n    In file included from src/decoder.h:15:0,\r\n                     from src/decoder.c:12:\r\n    src/config.h:18:10: fatal error: string.h: No such file or directory\r\n     #include <string.h> /* memset, memcpy - can be easily self implemented for libc independency. */\r\n              ^~~~~~~~~~\r\n    compilation terminated.\r\n    error: command 'x86_64-linux-gnu-gcc' failed with exit status 1\r\n    \r\n    ----------------------------------------\r\nCommand \"/usr/bin/python3 -u -c \"import setuptools, tokenize;__file__='/tmp/pip-build-x65lz2va/distorm3/setup.py';f=getattr(tokenize, 'open', open)(__file__);code=f.read().replace('\\r\\n', '\\n');f.close();exec(compile(code, __file__, 'exec'))\" install --record /tmp/pip-xevfg3zj-record/install-record.txt --single-version-externally-managed --compile\" failed with error code 1 in /tmp/pip-build-x65lz2va/distorm3/\r\n```\r\n\r\nCan you help me how to install and user sflock.\nComment: you just missing python dev library, i would suggest you to start googling this errors it will save you a lot of time as they documented so many times, but more important all this is fixed in cape2.sh so it installs all the dependencies, you can't just pick 1 line from it without install the rest\nComment: Thanks for supporting me! I will try again!\nComment: Well script is for ubuntu 20 not 18, in your case it fails due to distorm,\nif you read the error, remove it or google the errro, that simply ;)\n\nEl mi\u00e9., 18 nov. 2020 3:45, likescam <notifications@github.com> escribi\u00f3:\n\n> Thanks for supporting me! I will try again!\n>\n> \u2014\n> You are receiving this because you were mentioned.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/364#issuecomment-729340733>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH32W5YBJN7ROSDYNE6DSQMYNPANCNFSM4TYMQL6A>\n> .\n>\n",
+  "Title: [fix] correctly handle maldoc executing on Document_Close()\nBody: Deal with maldoc executing code only after MS Office W/E/P/etc. is closed, e.g. as seen on some recent Emotet 1st stage",
+  "Title: VPN does not start during analysis\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nThe scheduler code should start the chosen VPN connection when a submitted sample is being analysed. \r\nThe scheduler currently has code which automatically shuts down said VPN after the analysis.  \r\n\r\n# Current Behavior\r\n\r\nThe scheduler code does not start the chosen VPN connection and seemingly has no code to do so. \r\nThe scheduler shuts the VPN down if it has been started before manually. \r\n\r\nI've added the following to the the CAPEv2/lib/cuckoo/core/scheduler.py file:\r\n\r\n```\r\nif self.route in vpns:\r\n    self.rooter_response = rooter(\"vpn_enable\", self.route)\r\n    time.sleep(1)\r\n```\r\n\r\nat line 535\r\n\r\nAfter applying this code block, the behavior is as expected. \r\nThis does seem like a dirty solution and I'm wondering what the correct way to handle VPNs is supposed to be. \r\n\r\nFurther information about the modifications in my setup, related to VPNs:\r\n/etc/iproute2/rt_tables added content:\r\n```\r\n100 tun0\r\n101 tun1\r\n```\r\n\r\n/etc/openvpn/ added content:\r\nprovider1.conf\r\nprovider2.conf\r\n\r\nCAPEv2/conf/routing.conf \r\n```\r\nroute = internet\r\ninternet = ens33\r\nauto_rt = yes\r\nenabled = yes\r\nvpns= vpn0,vpn1\r\n[vpn0]\r\nname = provider1\r\ndescription = provider1\r\ninterface = tun0\r\nrt_table = tun0\r\n[vpn1]\r\nname = provider2\r\ndescription = provider2\r\ninterface = tun1\r\nrt_table = tun1\r\n\r\n```\r\nCAPEv2/conf/vpn.conf:\r\n```\r\nvpns= vpn0,vpn1\r\n[vpn0]\r\nname = provider1\r\ndescription = provider1\r\ninterface = tun0\r\nrt_table = tun0\r\n[vpn1]\r\nname = provider2\r\ndescription = provider2\r\ninterface = tun1\r\nrt_table = tun1\r\n```\r\n\r\n\r\n\r\n\r\n\r\n\nComment: it not how that works, you should start that, as if 2 different vms want to use the same routing and 1 finish before the second than it kills the tunnel\nComment: I've figured it out, as per your response on https://github.com/kevoreilly/CAPEv2/issues/235. \r\nI overlooked the error message when the script was adding the default routes. \r\n\r\nFor others who may have the same issue as I had:\r\nThe rt_table entry in routing.conf & vpn.conf and /etc/iproute2/rt_tables has to be the common name of your vpn server and not some tunnel interface you'd like to use. \r\nThen you just run: \r\nsudo openvpn --config /etc/openvpn/provider1.conf --script-security 2 --route-noexec --route-up utils/route.py &\r\nsudo openvpn --config /etc/openvpn/provider2.conf --script-security 2 --route-noexec --route-up utils/route.py &",
+  "Title: Emotet is no longer detected after updating\nBody: ## This is open source and friendly with __free __ support!\r\n\r\nThank you for always answering the questions!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions yourself before submitting your question.\r\n\r\n-[x] Running the latest version\r\n-[x] I checked the docs but couldn't find the answer\r\n-[x] Confirmed that this issue has not yet been submitted\r\n-[x] Report problem to correct repository (for multi-repository project)\r\n\r\n# Expected behavior\r\n\r\nEmotet can be detected by yara and confirmed in the report.\r\n\r\n# Current behavior\r\n\r\nI have an Emotet yara rule in my cape (which is included by default), but when I analyze the Emotet exe file, the report doesn't detect it as Emotet.\r\n\r\nThis happened when I updated the Cape to the latest version.\r\nThe cape before the update was able to detect Emotet, so something may have changed with the update ... I'm sorry, I don't know.\r\n\r\nThe following files were modified by the update.\r\n\r\n```\r\n-rw-r--r-- 1 cape cape 1334 July 31 07:55 MassLogger.yar\r\n-rw-r--r-- 1 cape cape 3118 September 9 12:11 auxiliary.conf\r\n-rw-r--r-- 1 cape cape 6282 September 9 11:54 cuckoo.conf\r\n-rw-r--r-- 1 cape cape 14127 August 20 01:29 guest.py\r\n-rw-r--r-- 1 cape cape 5680 July 31 07:55 physical.py\r\n```\r\n\r\nAlso, I tried to check if the latest cape can be detected at https://www.capesandbox.com, but I could not do it with Error 524\r\n\r\n# Procedure to reproduce\r\n\r\nPlease provide detailed steps to reproduce the problem.\r\n\r\n1. Upload Emotet to cape.\r\n2. After the Emotet analysis is complete, check the report.\r\n3. Emotet has not been detected.\r\n\r\n# Environment\r\n\r\nMachine use VirtualBox\r\nHost machine: ubuntu 20.04.1 LTS\r\nGuest machine: Windows 10 (python3.8 installed and environment variables set)\r\n\r\n# Failure log\r\nNone\nComment: The first thing to look at with issues such as this is the chain of requirements that leads to detection and config extraction. These are:\r\n\r\nDetonation -> payload extraction -> detection by YARA -> config parsing\r\n\r\nSo the obvious first question is: is the sample detonating properly? Are payloads extracted (i.e. files in the cape or procdump tabs)?\r\n\r\nIf so then the next step is to download those payloads, and scan them manually with the Emotet YARA sig. If they are not detected then your problem is more one of detonation & payload extraction inside the VM. If they are detected, then something has gone wrong with the post-processing with the YARA scans.\r\n\r\nLet me know!\nComment: Also if you do a git log --oneline  you will see where the updates are, you could always quickly checkout an older commit and see if that makes everything work again.\nComment: All working in cape so closing\nComment: I'm sorry, my reply was late.\r\nI decided to use a snapshot when it worked.\r\nI will update it someday and try it.",
+  "Title: Error on missing suricata extracted file key\nBody: Resolves the following:\r\n\r\n<img width=\"742\" alt=\"Screen Shot 2020-11-09 at 09 04 15\" src=\"https://user-images.githubusercontent.com/35832688/98518311-813e7380-226f-11eb-9bb4-53b6dca1cb6c.png\">\r\n\nComment: thank you",
+  "Title: Resolve KeyError:'type' in network processing module.\nBody: Resolves the following generated exception:\r\n\r\n```\r\n[Processing.Pcap] ERROR: Failed to process packet: 'type'\r\nTraceback (most recent call last):\r\nFile \"/opt/CAPEv2/utils/../modules/processing/network.py\", line 773, in run\r\nself._udp_dissect(connection, udp.data)\r\nFile \"/opt/CAPEv2/utils/../modules/processing/network.py\", line 298, in _udp_dissect\r\nself._add_dns(data)\r\nFile \"/opt/CAPEv2/utils/../modules/processing/network.py\", line 458, in _add_dns\r\nreqtuple = query[\"type\"], query[\"request\"]\r\nKeyError: 'type'\r\n```\nComment: thanks",
+  "Title: BoxJS Integration tweaks\nBody: \nComment: Thanks, but bear in mind rhat continue can be eternal loop that never exit under some weird conditions",
+  "Title: Zloader dlls not getting detected by CAPE\nBody: From last week, Some recent ZLoader dlls are not getting detected/ correctly detonated in CAPE. @kevoreilly, can you check if you get time?\r\nThanks,\r\n\r\nExamples: \r\nhttps://capesandbox.com/analysis/81669\r\nhttps://capesandbox.com/analysis/83321\nComment: Sure will do - thanks for the heads up!\nComment: looks like these are getting stuck in a possible anti analysis loop trying to access a file in /tmp over and over until the sandbox run fails.  \r\n\nComment: I was able to confirm the extractor works, if you suppress the bombing via the api calls or extend the timeout it will work. Might need to update the Yara rule to catch this and resubmit with the right flags or something. \nComment: exclude-apis=X? as option\nComment: yah, I just did a lazy test surpassing all the read/writes to ignore the api bombing and it eventually ran and loaded as expected. \nComment: Is this already being taken care of? :) @kevoreilly ",
+  "Title: No HTTP/s traffic with InetSIM routing\nBody: Noticed few days ago on [CAPE](https://capesandbox.com/) but also true with the latest code from the master repo, that, when processing samples with the InetSIM routing module enabled, HTTP/s connection get somehow lost.\r\n\r\nAs a reference you can have a look at\r\n\r\n1.  https://capesandbox.com/analysis/82106/ win7x86 + InetSIM\r\n2.  https://capesandbox.com/analysis/82107/ win7x86 + TOR\r\n\r\nIn the first analysis, under `Network Analysis` -> `HTTP` will show 0 entries, in the 2nd one instead, all 7 HTTP GET requests are properly shown.\r\n\r\nThe behaviour is the same regardless of  x86 or x64 OS, also it's completely independent from the processed sample type (doc, exe, etc.).\r\n\r\nPerhaps something \"broken\" in the rooter module?\r\n\r\n\nComment: thanks for fix",
+  "Title: Issue with emotet Word document (crashing / not analyzing)\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\nFull analysis of the sample\r\n\r\n# Current Behavior\r\nThe sample is not executed properly or crashes, while manual execution does allow the sample to be executed properly\r\n\r\n# Failure Information (for bugs)\r\n\r\nN/A\r\n\r\n\r\n## Context\r\n\r\nMax one month old version. On my system, I tried with \"emotet_doc\", but it crashes as well.\r\nOnline sandbox submissions:\r\nhttps://www.capesandbox.com/analysis/82048/\r\nhttps://www.capesandbox.com/analysis/82058/\r\n\r\nReference analysis:\r\nhttps://tria.ge/200924-kcl6r5mj8s/behavioral1\r\nhttps://www.vmray.com/analyses/35ef0a522e2f/report/overview.html\r\n\r\n\r\nThanks!\nComment: https://www.capesandbox.com/analysis/82058 looks like it detonated ok no?\r\n\r\n![image](https://user-images.githubusercontent.com/22219888/98123947-77e98b80-1eaa-11eb-9b44-859effc538f7.png)\r\n\r\nSince this was run with inetsim the powershell could not connect to fulfillmententertainment[.]com - perhaps if you submit with an internet connection it will get further?\nComment: Also if you still have Emotet_doc package it shows you're out of date and there are recent maldoc updates so update!\nComment: and don't remove part of issue template!\nComment: Hi\r\n\r\nOk, thanks for the quick feedback. \r\nThese do seem to work (shows all 7 URLs):\r\nhttps://www.capesandbox.com/analysis/82937/ (win7-x64 - drop)\r\nhttps://www.capesandbox.com/analysis/82939/ (win7 - vpn)\r\nhttps://www.capesandbox.com/analysis/82947/ (win7 - inetsim)\r\nhttps://www.capesandbox.com/analysis/82949/ (win7-x64 - inetsim)\r\n\r\nThis crashed midway, as my previous example (shows only 2 URLs): \r\nhttps://www.capesandbox.com/analysis/82938/ (with an error in the error log - see below)\r\n\r\nThe analysis doesn't show the document opening at all:\r\nhttps://www.capesandbox.com/analysis/82048\r\n\r\nI was just wondering why I'm seeing these inconsistencies. On my personal sandbox I tried executing it and when this didn't work, I accessed the VM to open the document manually, which did result in a correct analysis. Perhaps this was a coincidence.\r\n\r\n\r\nError for analysis 82938:\r\n2020-11-04 15:06:16,515 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmp2ssujfce\\dll\\iiYFKPdb.dll, loader C:\\tmp2ssujfce\\bin\\hBliFIBF.exe\r\n2020-11-04 15:06:17,468 [root] ERROR: [WinError 8] Not enough storage is available to process this command\r\nTraceback (most recent call last):\r\n  File \"C:/tmp2ssujfce/analyzer.py\", line 1354, in dispatch\r\n    response = fn(arguments)\r\n  File \"C:/tmp2ssujfce/analyzer.py\", line 1236, in _handle_process\r\n    _ = proc.inject(INJECT_QUEUEUSERAPC, interest)\r\n  File \"C:\\tmp2ssujfce\\lib\\api\\process.py\", line 634, in inject\r\n    ret = subprocess.run([bin_name, \"inject\", str(self.pid), str(thread_id), dll, str(INJECT_QUEUEUSERAPC)])\r\n  File \"C:\\Users\\Louise\\AppData\\Local\\Programs\\Python\\Python38-32\\lib\\subprocess.py\", line 489, in run\r\n    with Popen(*popenargs, **kwargs) as process:\r\n  File \"C:\\Users\\Louise\\AppData\\Local\\Programs\\Python\\Python38-32\\lib\\subprocess.py\", line 854, in __init__\r\n    self._execute_child(args, executable, preexec_fn, close_fds,\r\n  File \"C:\\Users\\Louise\\AppData\\Local\\Programs\\Python\\Python38-32\\lib\\subprocess.py\", line 1307, in _execute_child\r\n    hp, ht, pid, tid = _winapi.CreateProcess(executable, args,\r\nOSError: [WinError 8] Not enough storage is available to process this command\r\n2020-11-04 15:06:17,546 [root] INFO: Process with pid 3704 has terminated\r\n2020-11-04 15:06:17,937 [root] ERROR: Pipe command handler exception occurred (command b'PROCESS' args b'1:3704,3708').\r\nTraceback (most recent call last):\r\n  File \"C:/tmp2ssujfce/analyzer.py\", line 1354, in dispatch\r\n    response = fn(arguments)\r\n  File \"C:/tmp2ssujfce/analyzer.py\", line 1236, in _handle_process\r\n    _ = proc.inject(INJECT_QUEUEUSERAPC, interest)\r\n  File \"C:\\tmp2ssujfce\\lib\\api\\process.py\", line 634, in inject\r\n    ret = subprocess.run([bin_name, \"inject\", str(self.pid), str(thread_id), dll, str(INJECT_QUEUEUSERAPC)])\r\n  File \"C:\\Users\\Louise\\AppData\\Local\\Programs\\Python\\Python38-32\\lib\\subprocess.py\", line 489, in run\r\n    with Popen(*popenargs, **kwargs) as process:\r\n  File \"C:\\Users\\Louise\\AppData\\Local\\Programs\\Python\\Python38-32\\lib\\subprocess.py\", line 854, in __init__\r\n    self._execute_child(args, executable, preexec_fn, close_fds,\r\n  File \"C:\\Users\\Louise\\AppData\\Local\\Programs\\Python\\Python38-32\\lib\\subprocess.py\", line 1307, in _execute_child\r\n    hp, ht, pid, tid = _winapi.CreateProcess(executable, args,\r\nOSError: [WinError 8] Not enough storage is available to process this command\nComment: It also could be related to huge server load that we having this weeks, that server doing 200% so that can impact a lot on VM behavior\nComment: Very true @doomedraven - I'll see if I can recreate these and work out what's going on. This is something that I've been working on recently so it may be there are some rough edges that need more smoothing! Thanks for the heads up.\nComment: me submitting the same sample over and over again probably doesn't help, but replicating the issue I had on my own CAPE wasn't that straightforward apparently and the behavior is weird. Thanks for your time!\nComment: Could you let us know if upon updating everything works with your instance - then we can close the issue.\nComment: reinstalling python on the guest worked. Not sure what went wrong. \r\nNote that on capesandbox.com the difference in behavior continued to happen, for other samples as well:\r\nhttps://www.capesandbox.com/analysis/83263/\r\nhttps://www.capesandbox.com/analysis/83262/\nComment: Hi @reynas \r\nJust a quick question for you.\r\nAre you using cracked version of Office suite? I am asking because I wanted to use Office suite (32-bits) and don't want to purchase office suite because it will be exposed on the VM while detonating the samples.\r\nI just wanted to know if there was any alternative/work-around for this.\r\n\r\nMuch appreciate anyone's help with this. Thanks!\nComment: those kind of questions are not welcomed here @dhruvpatel56 due to piracy. use office 2010 sp1 and you will be happy\nComment: Fair enough. Thank you boss!\r\nI have tried to install office 2010 SP1 and office 2013 SP1 on Windows 10 VM, but couldn't install it.\nComment: Well that is not question about cape so go to MS forums for help with ms\nproducts\n\nEl mi\u00e9, 7 sept 2022 22:23, dhruvpatel56 ***@***.***> escribi\u00f3:\n\n> Fair enough. Thank you boss!\n> I have tried to install office 2010 SP1 and office 2013 SP1 on Windows 10\n> VM, but couldn't install it.\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/355#issuecomment-1239833628>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH35BDU26UEXOMA5BYVDV5D2S3ANCNFSM4TKDPW7Q>\n> .\n> You are receiving this because you were mentioned.Message ID:\n> ***@***.***>\n>\n",
+  "Title: Where is the appropriate directory to put the yara rule if you want to detect the mutex with the yara rule?\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\nI want to detect mutex with yara rule\r\n\r\n# Current Behavior\r\nI didn't know where to put yara rule by looking at the docs.\r\nWhere is the appropriate directory(under CAPEv2/data/yara/) to put the yara rule if you want to detect the mutex with the yara rule?\r\n\r\n## Steps to Reproduce\r\n\r\n\r\n## Context\r\n\r\nUsing machinery VirtualBox\r\nHost machine: ubuntu 20.04.1 LTS\r\nGuest machine: Windows 10 \r\n\r\n## Failure Logs\r\n\r\n\r\n\nComment: If you mean mutex as string inside of the binary, put it in cape folder, 8f\nyou mean mutex from execution write signature not yata\n\nEl mi\u00e9., 4 nov. 2020 1:05, ai-suzuki <notifications@github.com> escribi\u00f3:\n\n> This is opensource and you getting *free* support so be friendly!\n> Prerequisites\n>\n> Please answer the following questions for yourself before submitting an\n> issue.\n>\n>    - I am running the latest version\n>    - I checked the documentation and found no answer\n>    - I checked to make sure that this issue has not already been filed\n>    - I'm reporting the issue to the correct repository (for\n>    multi-repository projects)\n>\n> Expected Behavior\n>\n> I want to detect mutex with yara rule\n> Current Behavior\n>\n> I didn't know where to put yara rule by looking at the docs.\n> Where is the appropriate directory(under CAPEv2/data/yara/) to put the\n> yara rule if you want to detect the mutex with the yara rule?\n> Steps to Reproduce Context\n>\n> Using machinery VirtualBox\n> Host machine: ubuntu 20.04.1 LTS\n> Guest machine: Windows 10\n> Failure Logs\n>\n> \u2014\n> You are receiving this because you are subscribed to this thread.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/354>, or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH33JKS7MKWGZ3KQUN4DSOCLDVANCNFSM4TJMC7BA>\n> .\n>\n\nComment: Thank you for your reply!\r\nI have two more questions.\r\n1.How to  detection with cape by mutex from execution write signature ?\r\n2.What are the roles of other directories(under CAPEv2/data/yara/binaries,memory,macro...and so on) ?Are these under development?\nComment: 1. you have tons of other signatures just check them or use `grep`\r\n2. binary for initial file, memory for procmemory, macros for office macros, cape scans all of them, but that is extra work, so just place in there if you know what are you doing\r\n\r\nbtw closing as responded original one, feel free to ask here\nComment: Thank you for the quick answer and I try to use cape.\nComment: i will give you super trick, that i forgot anothr day, to master processing/signatures/reporting modules see their classes in `lib/cuckoo/common/abstracts.py` and you will see a lot fo useful functions that saves a lot of time + signatures done by othrs in community repo",
+  "Title: cape boost\nBody: ",
+  "Title: Fix submit CAPE payloads\nBody: ",
+  "Title: Exception Value:  hex() takes no arguments (1 given) (Python 3.6.9)\nBody: Exception Type: \tTypeError\r\nException Value: \t\r\n\r\nhex() takes no arguments (1 given)\r\n\r\nException Location: \t/opt/CAPEv2/web/api/views.py in tasks_iocs, line 1168\r\nPython Executable: \t/usr/bin/python3\r\nPython Version: \t3.6.9\r\n\r\n\r\n/opt/CAPEv2/web/api/views.py in tasks_iocs\r\n\r\n                        x[\"strings\"][i] = x[\"strings\"][i].hex('  ')\r\n\r\n I've removed argument.\nComment: thanks",
+  "Title: Update index.html\nBody: Updated to include proper description of API endpoints.",
+  "Title:  decode shellcode strings from bytes to strings\nBody: I've spotted the problem when there are a shellcode strings, when using API get iocs:\r\n\"File \"/usr/lib/python3.8/json/encoder.py\", line 179, in default\r\nraise TypeError(f'Object of type {o.class.name} '\r\nTypeError: Object of type bytes is not JSON serializable\r\n\"\r\nSo, here's a solution.\nComment: thank you",
+  "Title: decode shellcode strings from bytes to strings\nBody: I've spotted the problem when there are a shellcode strings, when using API get iocs:\r\n\"File \"/usr/lib/python3.8/json/encoder.py\", line 179, in default\r\n    raise TypeError(f'Object of type {o.__class__.__name__} '\r\nTypeError: Object of type bytes is not JSON serializable\r\n\"\r\nSo, here's a solution.\nComment: TYPO",
+  "Title: Create IcedIDStage2.yar\nBody: Yara rule to go with config extractor",
+  "Title: Create IcedIDStage1.yar\nBody: Goes with stage 1 extractor",
+  "Title: Create IcedIDStage1.py\nBody: Handles IcedID Stage 1 (the stage that downloads the background.png)",
+  "Title: Create IcedIDStage2.py\nBody: Handles stage 2 IcedID binary (the one comes from the background.png)",
+  "Title: Resolve TypeError in retention reporting module.\nBody: This PR resolves the following generated exception from the retention reporting module:\r\n```\r\n\r\n[lib.cuckoo.core.plugins] ERROR: Failed to run the reporting module \"Retention\":\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 783, in process\r\n    current.run(self.results)\r\n  File \"/opt/CAPEv2/utils/../modules/reporting/retention.py\", line 193, in run\r\n    delete_mongo_data(curtask, lastTask)\r\n  File \"/opt/CAPEv2/utils/../modules/reporting/retention.py\", line 56, in delete_mongo_data\r\n    if analyses.count > 0:\r\nTypeError: '>' not supported between instances of 'method' and 'int'\r\n```\nComment: oh nice catch, thanks",
+  "Title: How do I kill off pending jobs?\nBody: # Background\r\nI just finished a new install of CAPEv2, so I'm currently testing to see if I have everything configured correctly. I have verified that I have all of the services associated with CAPEv2 installed in systemd properly, and that they are running.\r\n\r\nI brought up the web interface, submitted a sample, but the analysis has been stuck on pending. I thought that was odd since my test submission was just a malicious xls sample, so I started checking the conf files. It was here that I discovered what I am sure is the first of my issues - the machines section still listed KVM as my VM provider rather than my intended target - VirtualBox.  I made the change in the conf, but now I need to clear out the pending submission. The only problem is that I don't see anywhere to modify/change/delete the submission.\r\n\r\n# Expected Behavior\r\nAn ability to purge unwanted pending submissions.\r\n\r\n# Current Behavior\r\nSubmission(s) still pending.\r\n\r\nI'm sure I'll encounter additional problems, but this is the first hurdle I need to overcome, I think.\r\n\r\nThanks!\r\n\r\n\nComment: hello, check `utils/cleaners.py -h` or go to your db and update status on pending tasks\nComment: Thanks for the quick response! That was easier than I thought it was going to be.\r\n\r\nOk, so here's what I think is the root of the \"pending jobs\" issue.\r\n\r\nWhen I submit a new sample, it gets stuck in pending. If I check the status of the cape service, I can see that it's exited:\r\n```\r\ndmoore@cuckoo:/opt/CAPEv2/utils$ sudo systemctl status cape\r\n\u25cf cape.service - CAPE\r\n     Loaded: loaded (/etc/systemd/system/cape.service; enabled; vendor preset: enabled)\r\n     Active: activating (auto-restart) (Result: exit-code) since Thu 2020-10-29 18:09:49 CDT; 3min 2s ago\r\n       Docs: https://github.com/kevoreilly/CAPEv2\r\n    Process: 27822 ExecStart=/usr/bin/python3 cuckoo.py (code=exited, status=1/FAILURE)\r\n   Main PID: 27822 (code=exited, status=1/FAILURE)\r\n```\r\n\r\nWhen I check journalctl, I can see there's an issue with authenticating to mongo\r\n```\r\ndmoore@cuckoo:/opt/CAPEv2/utils$ journalctl -u cape -r\r\n-- Logs begin at Wed 2020-10-28 09:07:25 CDT, end at Thu 2020-10-29 18:13:40 CDT. --\r\nOct 29 18:09:49 cuckoo systemd[1]: cape.service: Failed with result 'exit-code'.\r\nOct 29 18:09:49 cuckoo systemd[1]: cape.service: Main process exited, code=exited, status=1/FAILURE\r\nOct 29 18:09:49 cuckoo python3[27822]: pymongo.errors.OperationFailure: Authentication failed., full error: {'ok': 0.0, 'errmsg': 'Authentication>\r\nOct 29 18:09:49 cuckoo python3[27822]:     raise OperationFailure(msg % errmsg, code, response,\r\nOct 29 18:09:49 cuckoo python3[27822]:   File \"/usr/local/lib/python3.8/dist-packages/pymongo/helpers.py\", line 167, in _check_command_response\r\nOct 29 18:09:49 cuckoo python3[27822]:     helpers._check_command_response(\r\nOct 29 18:09:49 cuckoo python3[27822]:   File \"/usr/local/lib/python3.8/dist-packages/pymongo/network.py\", line 159, in command\r\nOct 29 18:09:49 cuckoo python3[27822]:     return command(self, dbname, spec, slave_ok,\r\nOct 29 18:09:49 cuckoo python3[27822]:   File \"/usr/local/lib/python3.8/dist-packages/pymongo/pool.py\", line 683, in command\r\nOct 29 18:09:49 cuckoo python3[27822]:     res = sock_info.command(source, cmd)\r\nOct 29 18:09:49 cuckoo python3[27822]:   File \"/usr/local/lib/python3.8/dist-packages/pymongo/auth.py\", line 295, in _authenticate_scram\r\nOct 29 18:09:49 cuckoo python3[27822]:     return _authenticate_scram(credentials, sock_info, 'SCRAM-SHA-1')\r\nOct 29 18:09:49 cuckoo python3[27822]:   File \"/usr/local/lib/python3.8/dist-packages/pymongo/auth.py\", line 591, in _authenticate_default\r\nOct 29 18:09:49 cuckoo python3[27822]:     auth_func(credentials, sock_info)\r\nOct 29 18:09:49 cuckoo python3[27822]:   File \"/usr/local/lib/python3.8/dist-packages/pymongo/auth.py\", line 673, in authenticate\r\nOct 29 18:09:49 cuckoo python3[27822]:     auth.authenticate(credentials, self)\r\nOct 29 18:09:49 cuckoo python3[27822]:   File \"/usr/local/lib/python3.8/dist-packages/pymongo/pool.py\", line 810, in authenticate\r\nOct 29 18:09:49 cuckoo python3[27822]:     self.authenticate(credentials)\r\nOct 29 18:09:49 cuckoo python3[27822]:   File \"/usr/local/lib/python3.8/dist-packages/pymongo/pool.py\", line 793, in check_auth\r\nOct 29 18:09:49 cuckoo python3[27822]:     sock_info.check_auth(all_credentials)\r\nOct 29 18:09:49 cuckoo python3[27822]:   File \"/usr/local/lib/python3.8/dist-packages/pymongo/pool.py\", line 1279, in _get_socket\r\nOct 29 18:09:49 cuckoo python3[27822]:     sock_info = self._get_socket(all_credentials)\r\n```\r\nIf I check reporting.conf, I see that CAPE is set to use a db name cuckoo\r\n```\r\n[mongodb]\r\nenabled = yes\r\nhost = 127.0.0.1\r\nport = 27017\r\ndb = cuckoo\r\n# Set those values if you are using mongodb authentication\r\nusername = user\r\npassword = password\r\n```\r\nBut if I check mongo, I don't see that a db named cuckoo has been set up\r\n```\r\n> show dbs\r\nadmin   0.000GB\r\nconfig  0.000GB\r\nlocal   0.000GB\r\n```\r\nThe mongo service is running, and I'm fairly certain that it's listening on the proper port\r\n```\r\ndmoore@cuckoo:/opt/CAPEv2/utils$ netstat -an | grep mongo\r\nunix  2      [ ACC ]     STREAM     LISTENING     137424   /tmp/mongodb-27017.sock\r\n```\r\nChecking mongo, it doesn't appear that the db user mentioned in reporting.conf was created\r\n```\r\n> db.getUsers();\r\n[ ]\r\n```\r\n\r\nIs there a script somewhere that I missed that creates the mongodb user and creates the proper db and schema?\nComment: There are no script as that is your work to setup auth, as by default we leave that commented, so if you comment it out and just run mongo go listen on localhost you don't really need any auth\nComment: closing as responded, about mongo auth see mongo docs or just comment out that 2 options as it was before",
+  "Title: Missing distributed machines on CAPEv2 WebUI\nBody: # Expected Behavior\r\n\r\nI'm able to submit sample to a choosen distributed machine from the WebUI as written in the doc: \r\n\r\n> This works under the main server web interface/api, so everything is transparent for end user, even if they were analyzer on another server(s)\r\n\r\n# Current Behavior\r\n\r\nFrom the WebUI I'm able only to submit samples to a local (master) machine, the same is true also for the network routing field (the dirty lines, nic names are different from one node to another\r\n![Screen Shot 2020-10-29 at 14 02 51](https://user-images.githubusercontent.com/35832688/97577363-9efa1600-19ef-11eb-9cf4-a96b7ce20723.png)\r\n)\r\n\r\n## Steps to Reproduce\r\n\r\n- Create a 2 node distributed CAPEv2 instance\r\n- Go to the webui\r\n- Try to choose the machine where to launch the analysis\r\n- No machine located in worker nodes are present\r\n\r\n\r\n\nComment: yep, we don't populate that from dist_db to see all vms in main server, as that won't work that way anyway, you need to use options and set `node=X` where x is the name of worker server in db, and we don't expose routing to the main server, would be great, but i don't have time for that\r\n\r\nas if you use master as analyzing box and set vm X it requires more conditioonals on backend, so you are welcome to implement them :) \nComment: you can see tags as example how populate that\nComment: Thank you for the quick response, on the same subject I'm trying to assign on a subset of machine (defined by a common tag, distributed on 3 nodes) an analysis task via API but with `option:'tag=common_tag'` I cannot enforce the execution on a machine with the tag. On the other and the `option:'node=distributed_node'` does work.\nComment: you are welcome\r\n\r\ntags aren't under options, see `lib/cucko/common/web_utils.py` \r\n* `tags = request.POST.get(\"tags\", None)`\r\n\r\ntags works very well in distributed as im using it to sent task to specific vm, and you have all the tags from all workers in the main webgui\nComment: Thanks! It solved my problem, implementing some kind of tenancy in my CAPE environment. \r\n\r\nLast question, I hope, the webui analysis page of distributed tasks is missing some tabs and every fs ref is broken like reports, screenshots, ecc\r\n\r\nAs you can see from the following screenshots:\r\n\r\n<img width=\"366\" alt=\"Screen Shot 2020-10-29 at 23 23 25\" src=\"https://user-images.githubusercontent.com/35832688/97638853-c24bb200-1a3d-11eb-965d-ccf9653bd375.png\">\r\n<img width=\"166\" alt=\"Screen Shot 2020-10-29 at 23 23 05\" src=\"https://user-images.githubusercontent.com/35832688/97638898-d68faf00-1a3d-11eb-9b9b-7ef4430a3d20.png\">\r\n<img width=\"1654\" alt=\"Screen Shot 2020-10-29 at 23 22 57\" src=\"https://user-images.githubusercontent.com/35832688/97638901-d7284580-1a3d-11eb-9d92-48e70534d2fd.png\">\r\n<img width=\"1667\" alt=\"Screen Shot 2020-10-29 at 23 22 37\" src=\"https://user-images.githubusercontent.com/35832688/97638906-da233600-1a3d-11eb-943d-c1b4a8750749.png\">\r\n\r\nI already tried to switch `master_storage_only = yes` in reporting.conf but without any success, any idea?\r\n\r\n\r\nPS: let me know how can I offer you a beer or two ;)\r\n\r\n\r\nUPDATE: With `master_storage_only = yes` all the tasks matching a worker tag go pending and stays there because the analysis file is not present in the worker filesystem\r\n\r\nI'm out of ideas on how to retrive reports from worker machines\nComment: Ok by parts. \r\n* the distributed api works to return basic webgui info for quick analysis, and than in background it sync all the files.\r\nCan you verify in dist.py/api.py logs that sync works fine?\r\n\r\n* hm about tabs, report can be relted to the sync as if there is nothing, we don't show the tab. Anothr problm is maybe you have enabled\r\n\r\n* about the pendings, is a bit weird as it send file to the worker so it should be there, are you on latest commit? i fixed one bug that could be related to that\r\n\r\n* beer -> https://opencollective.com/virustotalapi\nComment: - I cannot see any ref to sync in my uwsgi logs as the example attached no error are present. Can I enable a debug mode of this two components?\r\n<img width=\"1680\" alt=\"Screen Shot 2020-10-31 at 13 02 59\" src=\"https://user-images.githubusercontent.com/35832688/97778723-68500700-1b79-11eb-812f-e8149741b23e.png\">\r\n<img width=\"1017\" alt=\"Screen Shot 2020-10-31 at 13 03 15\" src=\"https://user-images.githubusercontent.com/35832688/97778728-71d96f00-1b79-11eb-8aae-6dbec817205a.png\">\r\n\r\n- I didn't understand which setting that I've been enabled can be related to the missing tabs\r\n\r\n- I'm up to date with master but the problem of the missing analysis file is releted to `master_storage_only = yes`\r\n\r\n- beer -> DONE\nComment: well first let me say thanks for beer :) many people contribute to free help so also appreciate that\r\n\r\nk lets try to find the problem.\r\n1. in api.py log on worker you should see request to one of this\r\n```\r\n@route(\"/tasks/report/<task_id:int>\", method=\"GET\")\r\n@route(\"/v1/tasks/report/<task_id:int>\", method=\"GET\")\r\n@route(\"/tasks/report/<task_id:int>/<report_format>\", method=\"GET\")\r\n@route(\"/v1/tasks/report/<task_id:int>/<report_format>\", method=\"GET\")\r\n```\r\n* code here https://github.com/kevoreilly/CAPEv2/blob/master/utils/api.py#L408\r\n\r\ncan you post the distribution part f config from reporting.conf? and can you start `dist.py -d` in debug mode you should see more output there\nComment: This is my configuration of reporting.conf, is the exact same on the workers and the master (both nodes have to enable the distributed mode, right?).\r\n\r\n<img width=\"737\" alt=\"Screen Shot 2020-10-31 at 22 06 19\" src=\"https://user-images.githubusercontent.com/35832688/97790055-cc98b800-1bc5-11eb-88a8-e874e4084f16.png\">\r\n\r\nI've tried to analyse a binary but I cannot see any call to the report endpoint on api.py or something different on dist.py, the only call the debug mode enables me to see is the following\r\n\r\n<img width=\"906\" alt=\"Screen Shot 2020-10-31 at 22 23 18\" src=\"https://user-images.githubusercontent.com/35832688/97790400-b8a28580-1bc8-11eb-9322-479f8f241d65.png\">\r\n\r\nRunning around my Cape installation I can see that both master and worker have replicated id in the storage directory but those ids refer to different analysis, so the id 2 of the master is one analysis but the id 2 of the worker is another one\r\n\r\n<img width=\"516\" alt=\"Screen Shot 2020-10-31 at 22 29 30\" src=\"https://user-images.githubusercontent.com/35832688/97790466-18992c00-1bc9-11eb-90eb-8f63533108ce.png\">\r\n\r\n<img width=\"747\" alt=\"Screen Shot 2020-10-31 at 22 43 08\" src=\"https://user-images.githubusercontent.com/35832688/97790647-7aa66100-1bca-11eb-84a8-349903194474.png\">\nComment: 1. no, only master should have it enabled\r\n2. about id, yes bcz i send main_task_id to workr so in shard mongo it will be correctly located and shown on master webgui, so that transparent for the end user and he/she doesn't need to jump over the servers \r\n3. ok so if you don't see calls to reports. you need to add some logging here https://github.com/kevoreilly/CAPEv2/blob/master/utils/dist.py#L390 to see why it not getting them as reported, does they set as reported on worker side?\nComment: I've disabled distributed in the reporting.conf of the workers, for the replicated ID its clear (In my case I'm not using a sharded mongodb cluster, just a replicaset with 3 nodes to achieve HA, same for the postgresql with the added benefits of pgpool-II)\r\n\r\nI reset all my environment and tried again... Now I can see the call to the `/tasks/get/report/1/dist?username=&password=` endpoint and it goes 404. If I try the curl to `/tasks/report/1` it works. Screen attached:\r\n\r\n<img width=\"1677\" alt=\"Screen Shot 2020-11-01 at 12 26 45\" src=\"https://user-images.githubusercontent.com/35832688/97801501-85e6a480-1c3d-11eb-8ce3-8d83ca33bf1e.png\">\r\n\r\n404:\r\n<img width=\"1185\" alt=\"Screen Shot 2020-11-01 at 12 18 07\" src=\"https://user-images.githubusercontent.com/35832688/97801504-8b43ef00-1c3d-11eb-9cde-53cc586e5965.png\">\r\n\r\nWorking `/tasks/report/1`:\r\n<img width=\"1041\" alt=\"Screen Shot 2020-11-01 at 13 12 17\" src=\"https://user-images.githubusercontent.com/35832688/97802465-dfea6880-1c43-11eb-9bbb-fc811cfacf45.png\">\r\n\nComment: ok note the difference `/tasks/get/report/1/dist` and `/tasks/report/1`, one has /get/\r\n\r\n* func from dist.py\r\n```\r\ndef node_get_report(task_id, fmt, url, ht_user, ht_pass, stream=False):\r\n    try:\r\n        url = os.path.join(url, \"tasks\", \"get\", \"report\", \"%d\" % task_id, fmt)\r\n        return requests.get(url, stream=stream, params={\"username\": ht_user, \"password\": ht_pass}, verify=False, timeout=300)\r\n    except Exception as e:\r\n        log.critical(\"Error fetching report (task #%d, node %s): %s\", task_id, url, e)\r\n\r\n```\r\n\r\n\r\nok i found what is wrong, the idea was to use the /api/ on the main webgui instead of old api.py but i'm not sure if i finished.\r\n\r\n\r\ncan you make me a favor and register new worker  like `domain:8000/api/`  not sure if you run on port 80/443/8000 that should do the trick :) let me know please i will need to update docs about this\nComment: Register the worker with the curl documented here: https://capev2.readthedocs.io/en/latest/usage/dist.html#register-cape-nodes?\r\n\r\nI've to register with the new endpoint the master too?\nComment: well you can just update the url in db that will do the trick\nComment: I've tried using the new api (enabling the cape-web also on the worker side, in the doc this is not documented) but now I get an error during the task retrive process due to a 301 not handled\r\n\r\n<img width=\"1222\" alt=\"Screen Shot 2020-11-01 at 19 16 31\" src=\"https://user-images.githubusercontent.com/35832688/97810796-c282c200-1c76-11eb-9a43-ba03c1cc2365.png\">\r\n\r\nScreenshot of the 301 code not handled:\r\n\r\n<img width=\"529\" alt=\"Screen Shot 2020-11-01 at 19 18 31\" src=\"https://user-images.githubusercontent.com/35832688/97810842-08d82100-1c77-11eb-9600-71e136a670aa.png\">\r\n\r\n\nComment: Moreover to alleviate you from writing docs once the problem is solved I can submit a PR to improve the distributed side of the doc if you wish\nComment: yes this will be good elaboration to update the docs\r\nok the problem here due to os.path.join that not adds the slash at the end, I will review today/tomorrow all the requests and fix this.\r\n\r\nmy cape cluster with dist is stil v1 as i have too many servers too update, so i just ported dist to py3 and wanted to remove api.py.is why you suffering this, sorry, will be fixed asap\nComment: ok pushed fixed with slash at the end so you should be fine to, can you please test it?\nComment: I've tried but the dist.py keep erroring during task retrival due to the different format of the response between the new and the old API version\r\n\r\nNEW:\r\n``` json\r\n{\r\n    \"data\": [\r\n        {\r\n            \"id\": 1,\r\n            \"target\": \"/opt/cape/tmp/cuckoo-tmp/upload_yu7ki69j/wannacry.exe\",\r\n            \"category\": \"file\",\r\n            \"timeout\": 200,\r\n            \"priority\": 2,\r\n            \"custom\": \"\",\r\n            \"machine\": null,\r\n            \"package\": \"\",\r\n            \"options\": \"route=internet\",\r\n            \"platform\": \"windows\",\r\n            \"memory\": false,\r\n            \"enforce_timeout\": false,\r\n            \"clock\": \"2020-11-01 21:56:29\",\r\n            \"added_on\": \"2020-11-01 21:56:29\",\r\n            \"started_on\": null,\r\n            \"completed_on\": null,\r\n            \"status\": \"pending\",\r\n            \"dropped_files\": null,\r\n            \"running_processes\": null,\r\n            \"api_calls\": null,\r\n            \"domains\": null,\r\n            \"signatures_total\": null,\r\n            \"signatures_alert\": null,\r\n            \"files_written\": null,\r\n            \"registry_keys_modified\": null,\r\n            \"crash_issues\": null,\r\n            \"anti_issues\": null,\r\n            \"analysis_started_on\": null,\r\n            \"analysis_finished_on\": null,\r\n            \"processing_started_on\": null,\r\n            \"processing_finished_on\": null,\r\n            \"signatures_started_on\": null,\r\n            \"signatures_finished_on\": null,\r\n            \"reporting_started_on\": null,\r\n            \"reporting_finished_on\": null,\r\n            \"timedout\": false,\r\n            \"sample_id\": 1,\r\n            \"machine_id\": null,\r\n            \"shrike_url\": null,\r\n            \"shrike_refer\": null,\r\n            \"shrike_msg\": null,\r\n            \"shrike_sid\": null,\r\n            \"parent_id\": null,\r\n            \"tlp\": \"\",\r\n            \"tags\": [\r\n                \"worker01\"\r\n            ],\r\n            \"guest\": {},\r\n            \"errors\": [],\r\n            \"sample\": {\r\n                \"id\": 1,\r\n                \"file_size\": 307205,\r\n                \"file_type\": \"PE32 executable (GUI) Intel 80386, for MS Windows\",\r\n                \"md5\": \"16d316381382440f860bdbe3b4f5476d\",\r\n                \"crc32\": \"AE0DDAAC\",\r\n                \"sha1\": \"5ed2c843d2dcb99fb5ad14d302d81d80128ce000\",\r\n                \"sha256\": \"daeab0789067467f0caded9b175e4350cdcacc10c7b604947746717b0facd0fe\",\r\n                \"sha512\": \"8c1985855e14e848a785e5a453514f93f277de13f908bad8b2a752f3d610533a1119ab7d6f7d38196dab7cb5181de45ca66720ee351a50986433af13b5f736f8\",\r\n                \"ssdeep\": \"6144:aeEQa4XjBm+1tM5R6Ts/dS1j84mRXPemhdBlPvLzLj:nNnXjBmb5R6TG4mhdB9Hj\",\r\n                \"parent\": null,\r\n                \"source_url\": null\r\n            }\r\n        }\r\n    ],\r\n    \"config\": \"Limit: 10, Offset: None\",\r\n    \"buf\": 1\r\n}\r\n```\r\n\r\nOLD:\r\n``` json\r\n{\r\n    \"tasks\": []\r\n}\r\n```\r\n\r\nError:\r\n<img width=\"1169\" alt=\"Screen Shot 2020-11-01 at 23 07 04\" src=\"https://user-images.githubusercontent.com/35832688/97816658-f7067600-1c96-11eb-8392-35ae49481489.png\">\r\n\r\n\r\nFor the documentation side I can PR it for the new dist setup no problem\nComment: pushed fix for that, can you check that please?\nComment: I've tried now I get another error still releted to a old api ref, as you can see:\r\n\r\nThe function:\r\n<img width=\"1016\" alt=\"Screen Shot 2020-11-02 at 08 21 38\" src=\"https://user-images.githubusercontent.com/35832688/97840566-88500980-1ce4-11eb-9878-ebd2486a727c.png\">\r\n\r\nThe node getting flagged as dead:\r\n<img width=\"720\" alt=\"Screen Shot 2020-11-02 at 08 18 53\" src=\"https://user-images.githubusercontent.com/35832688/97840570-8c7c2700-1ce4-11eb-870a-62f10795591a.png\">\r\n\r\nThe expected return:\r\n``` json\r\n{\r\n    \"version\": \"2.1-CAPE\",\r\n    \"hostname\": \"cbrt-sandbox-master\",\r\n    \"machines\": {\r\n        \"total\": 7,\r\n        \"available\": 7\r\n    },\r\n    \"tasks\": {\r\n        \"total\": 0,\r\n        \"pending\": 0,\r\n        \"running\": 0,\r\n        \"completed\": 0,\r\n        \"reported\": 0\r\n    }\r\n}\r\n```\r\n\r\nThe new api return:\r\n``` json\r\n{\r\n    \"error\": false,\r\n    \"data\": {\r\n        \"version\": \"2.1-CAPE\",\r\n        \"hostname\": \"cbrt-sandbox-master\",\r\n        \"machines\": {\r\n            \"total\": 7,\r\n            \"available\": 7\r\n        },\r\n        \"tasks\": {\r\n            \"total\": 0,\r\n            \"pending\": 0,\r\n            \"running\": 0,\r\n            \"completed\": 0,\r\n            \"reported\": 0\r\n        }\r\n    }\r\n}\r\n```\r\n\r\n\r\nI've tried with the same fix you implemented for the /tasks/ endpoint and everything seems good, the function is now:\r\n\r\n<img width=\"1036\" alt=\"Screen Shot 2020-11-02 at 08 32 52\" src=\"https://user-images.githubusercontent.com/35832688/97841379-01039580-1ce6-11eb-88a1-b791b5696638.png\">\r\n\r\n\r\nBefore closing this issue can I wait to have my environment tested a little more?\r\n\nComment: yes for sure, and thanks for you pacience and help with finish port this to main api\nComment: No problem, during the test run a new error came out, this time regarding an UPDATE operation against the DB as follows:\r\n\r\n<img width=\"1675\" alt=\"Screen Shot 2020-11-02 at 08 57 50\" src=\"https://user-images.githubusercontent.com/35832688/97843858-45913000-1cea-11eb-8638-bac4c2ea3265.png\">\r\n\r\nAnd the task id 6 doesn't exist:\r\n\r\n<img width=\"890\" alt=\"Screen Shot 2020-11-02 at 08 59 33\" src=\"https://user-images.githubusercontent.com/35832688/97843886-5641a600-1cea-11eb-9c4d-c2eac51c7867.png\">\r\n\nComment: After some retrying and many cleaners.py I'm able to distribute jobs to my worker but I see that the same task is submitted 4 times to the worker and can't move from the state of \"pending\"\r\n\r\n``` json\r\n{\r\n    \"data\": [\r\n        {\r\n            \"id\": 1,\r\n            \"target\": \"/opt/cape/tmp/cuckoo-tmp/upload_09nwsro7/UIWIX.exe\",\r\n            \"category\": \"file\",\r\n            \"timeout\": 200,\r\n            \"priority\": 2,\r\n            \"custom\": \"\",\r\n            \"machine\": null,\r\n            \"package\": \"\",\r\n            \"options\": \"route=internet,main_task_id=2\",\r\n            \"platform\": \"windows\",\r\n            \"memory\": true,\r\n            \"enforce_timeout\": true,\r\n            \"clock\": \"1970-01-01 00:00:00\",\r\n            \"added_on\": \"2020-11-02 09:39:20\",\r\n            \"started_on\": null,\r\n            \"completed_on\": null,\r\n            \"status\": \"pending\",\r\n            \"dropped_files\": null,\r\n            \"running_processes\": null,\r\n            \"api_calls\": null,\r\n            \"domains\": null,\r\n            \"signatures_total\": null,\r\n            \"signatures_alert\": null,\r\n            \"files_written\": null,\r\n            \"registry_keys_modified\": null,\r\n            \"crash_issues\": null,\r\n            \"anti_issues\": null,\r\n            \"analysis_started_on\": null,\r\n            \"analysis_finished_on\": null,\r\n            \"processing_started_on\": null,\r\n            \"processing_finished_on\": null,\r\n            \"signatures_started_on\": null,\r\n            \"signatures_finished_on\": null,\r\n            \"reporting_started_on\": null,\r\n            \"reporting_finished_on\": null,\r\n            \"timedout\": false,\r\n            \"sample_id\": 1,\r\n            \"machine_id\": null,\r\n            \"shrike_url\": null,\r\n            \"shrike_refer\": null,\r\n            \"shrike_msg\": null,\r\n            \"shrike_sid\": null,\r\n            \"parent_id\": null,\r\n            \"tlp\": null,\r\n            \"tags\": [\r\n                \"worker01\"\r\n            ],\r\n            \"guest\": {},\r\n            \"errors\": [],\r\n            \"sample\": {\r\n                \"id\": 1,\r\n                \"file_size\": 216840,\r\n                \"file_type\": \"PE32 executable (DLL) (GUI) Intel 80386, for MS Windows\",\r\n                \"md5\": \"a933a1a402775cfa94b6bee0963f4b46\",\r\n                \"crc32\": \"605D2A92\",\r\n                \"sha1\": \"18aa7b02f933c753989ba3d16698a5ee3a4d9420\",\r\n                \"sha256\": \"146581f0b3fbe00026ee3ebe68797b0e57f39d1d8aecc99fdc3290e9cfadc4fc\",\r\n                \"sha512\": \"d83da3c97ffd78c42f49b7bfb50525e7c964004b4b7d9cba839c0d8bf3a5fe0424be3b3782e33c57debc6b13b5420a3fa096643c8b7376b3accfb1bc4e7d7368\",\r\n                \"ssdeep\": \"6144:7hsIquZ3xJ7zOUTPQcXK9GMgCsO92FCPot+M:9LquZ3n6cXDM5X2FCgt+M\",\r\n                \"parent\": null,\r\n                \"source_url\": null\r\n            }\r\n        },\r\n        {\r\n            \"id\": 2,\r\n            \"target\": \"/opt/cape/tmp/cuckoo-tmp/upload_t01lzk9t/UIWIX.exe\",\r\n            \"category\": \"file\",\r\n            \"timeout\": 200,\r\n            \"priority\": 2,\r\n            \"custom\": \"\",\r\n            \"machine\": null,\r\n            \"package\": \"\",\r\n            \"options\": \"route=internet,main_task_id=2\",\r\n            \"platform\": \"windows\",\r\n            \"memory\": true,\r\n            \"enforce_timeout\": true,\r\n            \"clock\": \"1970-01-01 00:00:00\",\r\n            \"added_on\": \"2020-11-02 09:39:20\",\r\n            \"started_on\": null,\r\n            \"completed_on\": null,\r\n            \"status\": \"pending\",\r\n            \"dropped_files\": null,\r\n            \"running_processes\": null,\r\n            \"api_calls\": null,\r\n            \"domains\": null,\r\n            \"signatures_total\": null,\r\n            \"signatures_alert\": null,\r\n            \"files_written\": null,\r\n            \"registry_keys_modified\": null,\r\n            \"crash_issues\": null,\r\n            \"anti_issues\": null,\r\n            \"analysis_started_on\": null,\r\n            \"analysis_finished_on\": null,\r\n            \"processing_started_on\": null,\r\n            \"processing_finished_on\": null,\r\n            \"signatures_started_on\": null,\r\n            \"signatures_finished_on\": null,\r\n            \"reporting_started_on\": null,\r\n            \"reporting_finished_on\": null,\r\n            \"timedout\": false,\r\n            \"sample_id\": 1,\r\n            \"machine_id\": null,\r\n            \"shrike_url\": null,\r\n            \"shrike_refer\": null,\r\n            \"shrike_msg\": null,\r\n            \"shrike_sid\": null,\r\n            \"parent_id\": null,\r\n            \"tlp\": null,\r\n            \"tags\": [\r\n                \"worker01\"\r\n            ],\r\n            \"guest\": {},\r\n            \"errors\": [],\r\n            \"sample\": {\r\n                \"id\": 1,\r\n                \"file_size\": 216840,\r\n                \"file_type\": \"PE32 executable (DLL) (GUI) Intel 80386, for MS Windows\",\r\n                \"md5\": \"a933a1a402775cfa94b6bee0963f4b46\",\r\n                \"crc32\": \"605D2A92\",\r\n                \"sha1\": \"18aa7b02f933c753989ba3d16698a5ee3a4d9420\",\r\n                \"sha256\": \"146581f0b3fbe00026ee3ebe68797b0e57f39d1d8aecc99fdc3290e9cfadc4fc\",\r\n                \"sha512\": \"d83da3c97ffd78c42f49b7bfb50525e7c964004b4b7d9cba839c0d8bf3a5fe0424be3b3782e33c57debc6b13b5420a3fa096643c8b7376b3accfb1bc4e7d7368\",\r\n                \"ssdeep\": \"6144:7hsIquZ3xJ7zOUTPQcXK9GMgCsO92FCPot+M:9LquZ3n6cXDM5X2FCgt+M\",\r\n                \"parent\": null,\r\n                \"source_url\": null\r\n            }\r\n        },\r\n        {\r\n            \"id\": 3,\r\n            \"target\": \"/opt/cape/tmp/cuckoo-tmp/upload_18f0rtpw/UIWIX.exe\",\r\n            \"category\": \"file\",\r\n            \"timeout\": 200,\r\n            \"priority\": 2,\r\n            \"custom\": \"\",\r\n            \"machine\": null,\r\n            \"package\": \"\",\r\n            \"options\": \"route=internet,main_task_id=2\",\r\n            \"platform\": \"windows\",\r\n            \"memory\": true,\r\n            \"enforce_timeout\": true,\r\n            \"clock\": \"1970-01-01 00:00:00\",\r\n            \"added_on\": \"2020-11-02 09:39:30\",\r\n            \"started_on\": null,\r\n            \"completed_on\": null,\r\n            \"status\": \"pending\",\r\n            \"dropped_files\": null,\r\n            \"running_processes\": null,\r\n            \"api_calls\": null,\r\n            \"domains\": null,\r\n            \"signatures_total\": null,\r\n            \"signatures_alert\": null,\r\n            \"files_written\": null,\r\n            \"registry_keys_modified\": null,\r\n            \"crash_issues\": null,\r\n            \"anti_issues\": null,\r\n            \"analysis_started_on\": null,\r\n            \"analysis_finished_on\": null,\r\n            \"processing_started_on\": null,\r\n            \"processing_finished_on\": null,\r\n            \"signatures_started_on\": null,\r\n            \"signatures_finished_on\": null,\r\n            \"reporting_started_on\": null,\r\n            \"reporting_finished_on\": null,\r\n            \"timedout\": false,\r\n            \"sample_id\": 1,\r\n            \"machine_id\": null,\r\n            \"shrike_url\": null,\r\n            \"shrike_refer\": null,\r\n            \"shrike_msg\": null,\r\n            \"shrike_sid\": null,\r\n            \"parent_id\": null,\r\n            \"tlp\": null,\r\n            \"tags\": [\r\n                \"worker01\"\r\n            ],\r\n            \"guest\": {},\r\n            \"errors\": [],\r\n            \"sample\": {\r\n                \"id\": 1,\r\n                \"file_size\": 216840,\r\n                \"file_type\": \"PE32 executable (DLL) (GUI) Intel 80386, for MS Windows\",\r\n                \"md5\": \"a933a1a402775cfa94b6bee0963f4b46\",\r\n                \"crc32\": \"605D2A92\",\r\n                \"sha1\": \"18aa7b02f933c753989ba3d16698a5ee3a4d9420\",\r\n                \"sha256\": \"146581f0b3fbe00026ee3ebe68797b0e57f39d1d8aecc99fdc3290e9cfadc4fc\",\r\n                \"sha512\": \"d83da3c97ffd78c42f49b7bfb50525e7c964004b4b7d9cba839c0d8bf3a5fe0424be3b3782e33c57debc6b13b5420a3fa096643c8b7376b3accfb1bc4e7d7368\",\r\n                \"ssdeep\": \"6144:7hsIquZ3xJ7zOUTPQcXK9GMgCsO92FCPot+M:9LquZ3n6cXDM5X2FCgt+M\",\r\n                \"parent\": null,\r\n                \"source_url\": null\r\n            }\r\n        },\r\n        {\r\n            \"id\": 4,\r\n            \"target\": \"/opt/cape/tmp/cuckoo-tmp/upload_04elt1f5/UIWIX.exe\",\r\n            \"category\": \"file\",\r\n            \"timeout\": 200,\r\n            \"priority\": 2,\r\n            \"custom\": \"\",\r\n            \"machine\": null,\r\n            \"package\": \"\",\r\n            \"options\": \"route=internet,main_task_id=2\",\r\n            \"platform\": \"windows\",\r\n            \"memory\": true,\r\n            \"enforce_timeout\": true,\r\n            \"clock\": \"1970-01-01 00:00:00\",\r\n            \"added_on\": \"2020-11-02 09:39:30\",\r\n            \"started_on\": null,\r\n            \"completed_on\": null,\r\n            \"status\": \"pending\",\r\n            \"dropped_files\": null,\r\n            \"running_processes\": null,\r\n            \"api_calls\": null,\r\n            \"domains\": null,\r\n            \"signatures_total\": null,\r\n            \"signatures_alert\": null,\r\n            \"files_written\": null,\r\n            \"registry_keys_modified\": null,\r\n            \"crash_issues\": null,\r\n            \"anti_issues\": null,\r\n            \"analysis_started_on\": null,\r\n            \"analysis_finished_on\": null,\r\n            \"processing_started_on\": null,\r\n            \"processing_finished_on\": null,\r\n            \"signatures_started_on\": null,\r\n            \"signatures_finished_on\": null,\r\n            \"reporting_started_on\": null,\r\n            \"reporting_finished_on\": null,\r\n            \"timedout\": false,\r\n            \"sample_id\": 1,\r\n            \"machine_id\": null,\r\n            \"shrike_url\": null,\r\n            \"shrike_refer\": null,\r\n            \"shrike_msg\": null,\r\n            \"shrike_sid\": null,\r\n            \"parent_id\": null,\r\n            \"tlp\": null,\r\n            \"tags\": [\r\n                \"worker01\"\r\n            ],\r\n            \"guest\": {},\r\n            \"errors\": [],\r\n            \"sample\": {\r\n                \"id\": 1,\r\n                \"file_size\": 216840,\r\n                \"file_type\": \"PE32 executable (DLL) (GUI) Intel 80386, for MS Windows\",\r\n                \"md5\": \"a933a1a402775cfa94b6bee0963f4b46\",\r\n                \"crc32\": \"605D2A92\",\r\n                \"sha1\": \"18aa7b02f933c753989ba3d16698a5ee3a4d9420\",\r\n                \"sha256\": \"146581f0b3fbe00026ee3ebe68797b0e57f39d1d8aecc99fdc3290e9cfadc4fc\",\r\n                \"sha512\": \"d83da3c97ffd78c42f49b7bfb50525e7c964004b4b7d9cba839c0d8bf3a5fe0424be3b3782e33c57debc6b13b5420a3fa096643c8b7376b3accfb1bc4e7d7368\",\r\n                \"ssdeep\": \"6144:7hsIquZ3xJ7zOUTPQcXK9GMgCsO92FCPot+M:9LquZ3n6cXDM5X2FCgt+M\",\r\n                \"parent\": null,\r\n                \"source_url\": null\r\n            }\r\n        }\r\n    ],\r\n    \"config\": \"Limit: 10, Offset: None\",\r\n    \"buf\": 4\r\n```\nComment: pushed fix, was about the same, missed `data`\nComment: The problem is still present:\r\n\r\n```\r\n2020-11-02 13:44:21,809 DEBUG:dist:Thread-2 - going to upload 5 tasks to node worker01\r\n2020-11-02 13:44:21,825 INFO:dist:Thread-2 - Status.. worker01 -> {'total': 0, 'pending': 0, 'running': 0, 'completed': 0, 'reported': 0}\r\n2020-11-02 13:44:21,876 DEBUG:dist:Thread-2 - Failed to submit task 3 to node: worker01, code: 200\r\n2020-11-02 13:44:21,876 DEBUG:dist:Thread-2 - Submitted task to worker: worker01 - None - 2 - {'error': False, 'data': {'task_ids': [1], 'message': 'Task ID 1 has been submitted'}, 'errors': [], 'url': ['https://sandbox.cybergon.com/submit/status/1/']}\r\n2020-11-02 13:44:21,879 ERROR:dist:Thread-2 - Got an exception when trying to check nodes status and submit tasks: UPDATE statement on table 'task' expected to update 1 row(s); 0 were matched..\r\nTraceback (most recent call last):\r\n  File \"dist.py\", line 815, in run\r\n    res = self.submit_tasks(node.name, pend_tasks_num, db=db)\r\n  File \"dist.py\", line 716, in submit_tasks\r\n    submitted = node_submit_task(task.id, node.id)\r\n  File \"dist.py\", line 241, in node_submit_task\r\n    db.commit()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 1042, in commit\r\n    self.transaction.commit()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 504, in commit\r\n    self._prepare_impl()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 483, in _prepare_impl\r\n    self.session.flush()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2536, in flush\r\n    self._flush(objects)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2678, in _flush\r\n    transaction.rollback(_capture_exception=True)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/util/langhelpers.py\", line 68, in __exit__\r\n    compat.raise_(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/util/compat.py\", line 182, in raise_\r\n    raise exception\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2638, in _flush\r\n    flush_context.execute()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/unitofwork.py\", line 422, in execute\r\n    rec.execute(self)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/unitofwork.py\", line 586, in execute\r\n    persistence.save_obj(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/persistence.py\", line 230, in save_obj\r\n    _emit_update_statements(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/persistence.py\", line 1025, in _emit_update_statements\r\n    raise orm_exc.StaleDataError(\r\nsqlalchemy.orm.exc.StaleDataError: UPDATE statement on table 'task' expected to update 1 row(s); 0 were matched.\r\n2020-11-02 13:44:21,888 DEBUG:dist:Thread-2 - going to upload 5 tasks to node worker01\r\n2020-11-02 13:44:21,900 INFO:dist:Thread-2 - Status.. worker01 -> {'total': 0, 'pending': 0, 'running': 0, 'completed': 0, 'reported': 0}\r\n2020-11-02 13:44:21,906 DEBUG:dist:Thread-2 - going to upload 5 tasks to node worker01\r\n2020-11-02 13:44:21,912 ERROR:dist:Thread-2 - 'NoneType' object has no attribute 'tags'\r\nTraceback (most recent call last):\r\n  File \"dist.py\", line 159, in node_submit_task\r\n    if task.tags:\r\nAttributeError: 'NoneType' object has no attribute 'tags'\r\n2020-11-02 13:44:21,912 ERROR:dist:Thread-2 - Got an exception when trying to check nodes status and submit tasks: 'NoneType' object has no attribute 'id'.\r\nTraceback (most recent call last):\r\n  File \"dist.py\", line 159, in node_submit_task\r\n    if task.tags:\r\nAttributeError: 'NoneType' object has no attribute 'tags'\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"dist.py\", line 815, in run\r\n    res = self.submit_tasks(node.name, pend_tasks_num, db=db)\r\n  File \"dist.py\", line 716, in submit_tasks\r\n    submitted = node_submit_task(task.id, node.id)\r\n  File \"dist.py\", line 239, in node_submit_task\r\n    log.critical(\"Error submitting task (task #%d, node %s): %s\", task.id, node.name, e)\r\nAttributeError: 'NoneType' object has no attribute 'id'\r\n2020-11-02 13:44:21,943 DEBUG:dist:Thread-2 - Failed to submit task 4 to node: worker01, code: 200\r\n2020-11-02 13:44:21,943 DEBUG:dist:Thread-2 - Submitted task to worker: worker01 - None - 2 - {'error': False, 'data': {'task_ids': [2], 'message': 'Task ID 2 has been submitted'}, 'errors': [], 'url': ['https://sandbox.cybergon.com/submit/status/2/']}\r\n2020-11-02 13:44:21,945 ERROR:dist:Thread-2 - Got an exception when trying to check nodes status and submit tasks: UPDATE statement on table 'task' expected to update 1 row(s); 0 were matched..\r\nTraceback (most recent call last):\r\n  File \"dist.py\", line 815, in run\r\n    res = self.submit_tasks(node.name, pend_tasks_num, db=db)\r\n  File \"dist.py\", line 716, in submit_tasks\r\n    submitted = node_submit_task(task.id, node.id)\r\n  File \"dist.py\", line 241, in node_submit_task\r\n    db.commit()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 1042, in commit\r\n    self.transaction.commit()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 504, in commit\r\n    self._prepare_impl()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 483, in _prepare_impl\r\n    self.session.flush()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2536, in flush\r\n    self._flush(objects)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2678, in _flush\r\n    transaction.rollback(_capture_exception=True)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/util/langhelpers.py\", line 68, in __exit__\r\n    compat.raise_(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/util/compat.py\", line 182, in raise_\r\n    raise exception\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2638, in _flush\r\n    flush_context.execute()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/unitofwork.py\", line 422, in execute\r\n    rec.execute(self)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/unitofwork.py\", line 586, in execute\r\n    persistence.save_obj(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/persistence.py\", line 230, in save_obj\r\n    _emit_update_statements(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/persistence.py\", line 1025, in _emit_update_statements\r\n    raise orm_exc.StaleDataError(\r\nsqlalchemy.orm.exc.StaleDataError: UPDATE statement on table 'task' expected to update 1 row(s); 0 were matched.\r\n2020-11-02 13:44:21,979 DEBUG:dist:Thread-2 - going to upload 5 tasks to node worker01\r\n2020-11-02 13:44:22,040 DEBUG:dist:Thread-2 - Failed to submit task 5 to node: worker01, code: 200\r\n2020-11-02 13:44:22,040 DEBUG:dist:Thread-2 - Submitted task to worker: worker01 - None - 2 - {'error': False, 'data': {'task_ids': [3], 'message': 'Task ID 3 has been submitted'}, 'errors': [], 'url': ['https://sandbox.cybergon.com/submit/status/3/']}\r\nsomething is wrong with submission of task: 5\r\n2020-11-02 13:44:31,939 INFO:dist:Thread-2 - Status.. master -> {'total': 2, 'pending': 1, 'running': 1, 'completed': 0, 'reported': 0}\r\n2020-11-02 13:44:31,992 DEBUG:dist:Thread-2 - going to upload 5 tasks to node worker01\r\n2020-11-02 13:44:31,996 INFO:dist:Thread-2 - Status.. master -> {'total': 2, 'pending': 1, 'running': 1, 'completed': 0, 'reported': 0}\r\n2020-11-02 13:44:32,012 INFO:dist:Thread-2 - Status.. master -> {'total': 2, 'pending': 1, 'running': 1, 'completed': 0, 'reported': 0}\r\n2020-11-02 13:44:32,049 INFO:dist:Thread-2 - Status.. master -> {'total': 2, 'pending': 1, 'running': 1, 'completed': 0, 'reported': 0}\r\n2020-11-02 13:44:32,053 DEBUG:dist:Thread-2 - Failed to submit task 6 to node: worker01, code: 200\r\n2020-11-02 13:44:32,053 DEBUG:dist:Thread-2 - Submitted task to worker: worker01 - None - 2 - {'error': False, 'data': {'task_ids': [4], 'message': 'Task ID 4 has been submitted'}, 'errors': [], 'url': ['https://sandbox.cybergon.com/submit/status/4/']}\r\n2020-11-02 13:44:32,056 ERROR:dist:Thread-2 - Got an exception when trying to check nodes status and submit tasks: UPDATE statement on table 'task' expected to update 1 row(s); 0 were matched..\r\nTraceback (most recent call last):\r\n  File \"dist.py\", line 815, in run\r\n    res = self.submit_tasks(node.name, pend_tasks_num, db=db)\r\n  File \"dist.py\", line 716, in submit_tasks\r\n    submitted = node_submit_task(task.id, node.id)\r\n  File \"dist.py\", line 241, in node_submit_task\r\n    db.commit()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 1042, in commit\r\n    self.transaction.commit()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 504, in commit\r\n    self._prepare_impl()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 483, in _prepare_impl\r\n    self.session.flush()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2536, in flush\r\n    self._flush(objects)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2678, in _flush\r\n    transaction.rollback(_capture_exception=True)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/util/langhelpers.py\", line 68, in __exit__\r\n    compat.raise_(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/util/compat.py\", line 182, in raise_\r\n    raise exception\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2638, in _flush\r\n    flush_context.execute()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/unitofwork.py\", line 422, in execute\r\n    rec.execute(self)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/unitofwork.py\", line 586, in execute\r\n    persistence.save_obj(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/persistence.py\", line 230, in save_obj\r\n    _emit_update_statements(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/persistence.py\", line 1025, in _emit_update_statements\r\n    raise orm_exc.StaleDataError(\r\nsqlalchemy.orm.exc.StaleDataError: UPDATE statement on table 'task' expected to update 1 row(s); 0 were matched.\r\n2020-11-02 13:44:32,067 DEBUG:dist:Thread-2 - going to upload 5 tasks to node worker01\r\n2020-11-02 13:44:32,071 DEBUG:dist:Thread-2 - going to upload 5 tasks to node worker01\r\n2020-11-02 13:44:32,124 DEBUG:dist:Thread-2 - Failed to submit task 8 to node: worker01, code: 200\r\n2020-11-02 13:44:32,124 DEBUG:dist:Thread-2 - Submitted task to worker: worker01 - None - 2 - {'error': False, 'data': {'task_ids': [5], 'message': 'Task ID 5 has been submitted'}, 'errors': [], 'url': ['https://sandbox.cybergon.com/submit/status/5/']}\r\n2020-11-02 13:44:32,127 ERROR:dist:Thread-2 - Got an exception when trying to check nodes status and submit tasks: UPDATE statement on table 'task' expected to update 1 row(s); 0 were matched..\r\nTraceback (most recent call last):\r\n  File \"dist.py\", line 815, in run\r\n    res = self.submit_tasks(node.name, pend_tasks_num, db=db)\r\n  File \"dist.py\", line 716, in submit_tasks\r\n    submitted = node_submit_task(task.id, node.id)\r\n  File \"dist.py\", line 241, in node_submit_task\r\n    db.commit()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 1042, in commit\r\n    self.transaction.commit()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 504, in commit\r\n    self._prepare_impl()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 483, in _prepare_impl\r\n    self.session.flush()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2536, in flush\r\n    self._flush(objects)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2678, in _flush\r\n    transaction.rollback(_capture_exception=True)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/util/langhelpers.py\", line 68, in __exit__\r\n    compat.raise_(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/util/compat.py\", line 182, in raise_\r\n    raise exception\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2638, in _flush\r\n    flush_context.execute()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/unitofwork.py\", line 422, in execute\r\n    rec.execute(self)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/unitofwork.py\", line 586, in execute\r\n    persistence.save_obj(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/persistence.py\", line 230, in save_obj\r\n    _emit_update_statements(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/persistence.py\", line 1025, in _emit_update_statements\r\n    raise orm_exc.StaleDataError(\r\nsqlalchemy.orm.exc.StaleDataError: UPDATE statement on table 'task' expected to update 1 row(s); 0 were matched.\r\n2020-11-02 13:44:32,135 DEBUG:dist:Thread-2 - Failed to submit task 8 to node: worker01, code: 200\r\n2020-11-02 13:44:32,135 DEBUG:dist:Thread-2 - Submitted task to worker: worker01 - None - 2 - {'error': False, 'data': {'task_ids': [6], 'message': 'Task ID 6 has been submitted'}, 'errors': [], 'url': ['https://sandbox.cybergon.com/submit/status/6/']}\r\n2020-11-02 13:44:32,137 ERROR:dist:Thread-2 - Got an exception when trying to check nodes status and submit tasks: UPDATE statement on table 'task' expected to update 1 row(s); 0 were matched..\r\nTraceback (most recent call last):\r\n  File \"dist.py\", line 815, in run\r\n    res = self.submit_tasks(node.name, pend_tasks_num, db=db)\r\n  File \"dist.py\", line 716, in submit_tasks\r\n    submitted = node_submit_task(task.id, node.id)\r\n  File \"dist.py\", line 241, in node_submit_task\r\n    db.commit()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 1042, in commit\r\n    self.transaction.commit()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 504, in commit\r\n    self._prepare_impl()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 483, in _prepare_impl\r\n    self.session.flush()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2536, in flush\r\n    self._flush(objects)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2678, in _flush\r\n    transaction.rollback(_capture_exception=True)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/util/langhelpers.py\", line 68, in __exit__\r\n    compat.raise_(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/util/compat.py\", line 182, in raise_\r\n    raise exception\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2638, in _flush\r\n    flush_context.execute()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/unitofwork.py\", line 422, in execute\r\n    rec.execute(self)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/unitofwork.py\", line 586, in execute\r\n    persistence.save_obj(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/persistence.py\", line 230, in save_obj\r\n    _emit_update_statements(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/persistence.py\", line 1025, in _emit_update_statements\r\n    raise orm_exc.StaleDataError(\r\nsqlalchemy.orm.exc.StaleDataError: UPDATE statement on table 'task' expected to update 1 row(s); 0 were matched.\r\n2020-11-02 13:44:32,144 INFO:dist:Thread-2 - Status.. master -> {'total': 2, 'pending': 1, 'running': 1, 'completed': 0, 'reported': 0}\r\n2020-11-02 13:44:32,144 DEBUG:dist:Thread-2 - going to upload 5 tasks to node worker01\r\n2020-11-02 13:44:32,210 DEBUG:dist:Thread-2 - Failed to submit task 9 to node: worker01, code: 200\r\n2020-11-02 13:44:32,211 DEBUG:dist:Thread-2 - Submitted task to worker: worker01 - None - 2 - {'error': False, 'data': {'task_ids': [7], 'message': 'Task ID 7 has been submitted'}, 'errors': [], 'url': ['https://sandbox.cybergon.com/submit/status/7/']}\r\n2020-11-02 13:44:32,213 ERROR:dist:Thread-2 - Got an exception when trying to check nodes status and submit tasks: UPDATE statement on table 'task' expected to update 1 row(s); 0 were matched..\r\nTraceback (most recent call last):\r\n  File \"dist.py\", line 815, in run\r\n    res = self.submit_tasks(node.name, pend_tasks_num, db=db)\r\n  File \"dist.py\", line 716, in submit_tasks\r\n    submitted = node_submit_task(task.id, node.id)\r\n  File \"dist.py\", line 241, in node_submit_task\r\n    db.commit()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 1042, in commit\r\n    self.transaction.commit()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 504, in commit\r\n    self._prepare_impl()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 483, in _prepare_impl\r\n    self.session.flush()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2536, in flush\r\n    self._flush(objects)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2678, in _flush\r\n    transaction.rollback(_capture_exception=True)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/util/langhelpers.py\", line 68, in __exit__\r\n    compat.raise_(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/util/compat.py\", line 182, in raise_\r\n    raise exception\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2638, in _flush\r\n    flush_context.execute()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/unitofwork.py\", line 422, in execute\r\n    rec.execute(self)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/unitofwork.py\", line 586, in execute\r\n    persistence.save_obj(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/persistence.py\", line 230, in save_obj\r\n    _emit_update_statements(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/persistence.py\", line 1025, in _emit_update_statements\r\n    raise orm_exc.StaleDataError(\r\nsqlalchemy.orm.exc.StaleDataError: UPDATE statement on table 'task' expected to update 1 row(s); 0 were matched.\r\n2020-11-02 13:44:32,214 DEBUG:dist:Thread-2 - going to upload 5 tasks to node worker01\r\n2020-11-02 13:44:32,271 DEBUG:dist:Thread-2 - Failed to submit task 10 to node: worker01, code: 200\r\n2020-11-02 13:44:32,272 DEBUG:dist:Thread-2 - Submitted task to worker: worker01 - None - 2 - {'error': False, 'data': {'task_ids': [8], 'message': 'Task ID 8 has been submitted'}, 'errors': [], 'url': ['https://sandbox.cybergon.com/submit/status/8/']}\r\nsomething is wrong with submission of task: 10\r\n2020-11-02 13:44:32,350 INFO:dist:Thread-2 - Status.. worker01 -> {'total': 8, 'pending': 5, 'running': 3, 'completed': 0, 'reported': 0}\r\n2020-11-02 13:44:42,164 INFO:dist:Thread-2 - Status.. master -> {'total': 2, 'pending': 1, 'running': 1, 'completed': 0, 'reported': 0}\r\n2020-11-02 13:44:42,226 DEBUG:dist:Thread-2 - going to upload 5 tasks to node worker01\r\n2020-11-02 13:44:42,228 INFO:dist:Thread-2 - Status.. master -> {'total': 2, 'pending': 1, 'running': 1, 'completed': 0, 'reported': 0}\r\n2020-11-02 13:44:42,240 INFO:dist:Thread-2 - Status.. master -> {'total': 2, 'pending': 1, 'running': 1, 'completed': 0, 'reported': 0}\r\n2020-11-02 13:44:42,288 DEBUG:dist:Thread-2 - Failed to submit task 11 to node: worker01, code: 200\r\n2020-11-02 13:44:42,289 DEBUG:dist:Thread-2 - Submitted task to worker: worker01 - None - 2 - {'error': False, 'data': {'task_ids': [9], 'message': 'Task ID 9 has been submitted'}, 'errors': [], 'url': ['https://sandbox.cybergon.com/submit/status/9/']}\r\n2020-11-02 13:44:42,291 ERROR:dist:Thread-2 - Got an exception when trying to check nodes status and submit tasks: UPDATE statement on table 'task' expected to update 1 row(s); 0 were matched..\r\nTraceback (most recent call last):\r\n  File \"dist.py\", line 815, in run\r\n    res = self.submit_tasks(node.name, pend_tasks_num, db=db)\r\n  File \"dist.py\", line 716, in submit_tasks\r\n    submitted = node_submit_task(task.id, node.id)\r\n  File \"dist.py\", line 241, in node_submit_task\r\n    db.commit()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 1042, in commit\r\n    self.transaction.commit()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 504, in commit\r\n    self._prepare_impl()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 483, in _prepare_impl\r\n    self.session.flush()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2536, in flush\r\n    self._flush(objects)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2678, in _flush\r\n    transaction.rollback(_capture_exception=True)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/util/langhelpers.py\", line 68, in __exit__\r\n    compat.raise_(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/util/compat.py\", line 182, in raise_\r\n    raise exception\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2638, in _flush\r\n    flush_context.execute()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/unitofwork.py\", line 422, in execute\r\n    rec.execute(self)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/unitofwork.py\", line 586, in execute\r\n    persistence.save_obj(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/persistence.py\", line 230, in save_obj\r\n    _emit_update_statements(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/persistence.py\", line 1025, in _emit_update_statements\r\n    raise orm_exc.StaleDataError(\r\nsqlalchemy.orm.exc.StaleDataError: UPDATE statement on table 'task' expected to update 1 row(s); 0 were matched.\r\n2020-11-02 13:44:42,310 INFO:dist:Thread-2 - Status.. master -> {'total': 2, 'pending': 1, 'running': 1, 'completed': 0, 'reported': 0}\r\n2020-11-02 13:44:42,314 DEBUG:dist:Thread-2 - going to upload 5 tasks to node worker01\r\n2020-11-02 13:44:42,379 DEBUG:dist:Thread-2 - Failed to submit task 12 to node: worker01, code: 200\r\n2020-11-02 13:44:42,379 DEBUG:dist:Thread-2 - Submitted task to worker: worker01 - None - 2 - {'error': False, 'data': {'task_ids': [10], 'message': 'Task ID 10 has been submitted'}, 'errors': [], 'url': ['https://sandbox.cybergon.com/submit/status/10/']}\r\n2020-11-02 13:44:42,381 ERROR:dist:Thread-2 - Got an exception when trying to check nodes status and submit tasks: UPDATE statement on table 'task' expected to update 1 row(s); 0 were matched..\r\nTraceback (most recent call last):\r\n  File \"dist.py\", line 815, in run\r\n    res = self.submit_tasks(node.name, pend_tasks_num, db=db)\r\n  File \"dist.py\", line 716, in submit_tasks\r\n    submitted = node_submit_task(task.id, node.id)\r\n  File \"dist.py\", line 241, in node_submit_task\r\n    db.commit()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 1042, in commit\r\n    self.transaction.commit()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 504, in commit\r\n    self._prepare_impl()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 483, in _prepare_impl\r\n    self.session.flush()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2536, in flush\r\n    self._flush(objects)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2678, in _flush\r\n    transaction.rollback(_capture_exception=True)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/util/langhelpers.py\", line 68, in __exit__\r\n    compat.raise_(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/util/compat.py\", line 182, in raise_\r\n    raise exception\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2638, in _flush\r\n    flush_context.execute()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/unitofwork.py\", line 422, in execute\r\n    rec.execute(self)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/unitofwork.py\", line 586, in execute\r\n    persistence.save_obj(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/persistence.py\", line 230, in save_obj\r\n    _emit_update_statements(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/persistence.py\", line 1025, in _emit_update_statements\r\n    raise orm_exc.StaleDataError(\r\nsqlalchemy.orm.exc.StaleDataError: UPDATE statement on table 'task' expected to update 1 row(s); 0 were matched.\r\n2020-11-02 13:44:42,390 DEBUG:dist:Thread-2 - going to upload 5 tasks to node worker01\r\n2020-11-02 13:44:42,429 INFO:dist:Thread-2 - Status.. worker01 -> {'total': 10, 'pending': 5, 'running': 5, 'completed': 0, 'reported': 0}\r\n2020-11-02 13:44:42,455 DEBUG:dist:Thread-2 - Failed to submit task 13 to node: worker01, code: 200\r\n2020-11-02 13:44:42,455 DEBUG:dist:Thread-2 - Submitted task to worker: worker01 - None - 2 - {'error': False, 'data': {'task_ids': [11], 'message': 'Task ID 11 has been submitted'}, 'errors': [], 'url': ['https://sandbox.cybergon.com/submit/status/11/']}\r\n2020-11-02 13:44:42,457 ERROR:dist:Thread-2 - Got an exception when trying to check nodes status and submit tasks: UPDATE statement on table 'task' expected to update 1 row(s); 0 were matched..\r\nTraceback (most recent call last):\r\n  File \"dist.py\", line 815, in run\r\n    res = self.submit_tasks(node.name, pend_tasks_num, db=db)\r\n  File \"dist.py\", line 716, in submit_tasks\r\n    submitted = node_submit_task(task.id, node.id)\r\n  File \"dist.py\", line 241, in node_submit_task\r\n    db.commit()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 1042, in commit\r\n    self.transaction.commit()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 504, in commit\r\n    self._prepare_impl()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 483, in _prepare_impl\r\n    self.session.flush()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2536, in flush\r\n    self._flush(objects)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2678, in _flush\r\n    transaction.rollback(_capture_exception=True)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/util/langhelpers.py\", line 68, in __exit__\r\n    compat.raise_(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/util/compat.py\", line 182, in raise_\r\n    raise exception\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2638, in _flush\r\n    flush_context.execute()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/unitofwork.py\", line 422, in execute\r\n    rec.execute(self)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/unitofwork.py\", line 586, in execute\r\n    persistence.save_obj(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/persistence.py\", line 230, in save_obj\r\n    _emit_update_statements(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/persistence.py\", line 1025, in _emit_update_statements\r\n    raise orm_exc.StaleDataError(\r\nsqlalchemy.orm.exc.StaleDataError: UPDATE statement on table 'task' expected to update 1 row(s); 0 were matched.\r\n2020-11-02 13:44:42,478 INFO:dist:Thread-2 - Status.. master -> {'total': 2, 'pending': 1, 'running': 1, 'completed': 0, 'reported': 0}\r\n2020-11-02 13:44:42,574 INFO:dist:Thread-2 - Status.. worker01 -> {'total': 11, 'pending': 6, 'running': 5, 'completed': 0, 'reported': 0}\r\n2020-11-02 13:44:52,397 INFO:dist:Thread-2 - Status.. master -> {'total': 2, 'pending': 1, 'running': 1, 'completed': 0, 'reported': 0}\r\n2020-11-02 13:44:52,454 DEBUG:dist:Thread-2 - going to upload 5 tasks to node worker01\r\n2020-11-02 13:44:52,472 INFO:dist:Thread-2 - Status.. master -> {'total': 2, 'pending': 1, 'running': 1, 'completed': 0, 'reported': 0}\r\n2020-11-02 13:44:52,508 DEBUG:dist:Thread-2 - Failed to submit task 14 to node: worker01, code: 200\r\n2020-11-02 13:44:52,508 DEBUG:dist:Thread-2 - Submitted task to worker: worker01 - None - 2 - {'error': False, 'data': {'task_ids': [12], 'message': 'Task ID 12 has been submitted'}, 'errors': [], 'url': ['https://sandbox.cybergon.com/submit/status/12/']}\r\n2020-11-02 13:44:52,511 ERROR:dist:Thread-2 - Got an exception when trying to check nodes status and submit tasks: UPDATE statement on table 'task' expected to update 1 row(s); 0 were matched..\r\nTraceback (most recent call last):\r\n  File \"dist.py\", line 815, in run\r\n    res = self.submit_tasks(node.name, pend_tasks_num, db=db)\r\n  File \"dist.py\", line 716, in submit_tasks\r\n    submitted = node_submit_task(task.id, node.id)\r\n  File \"dist.py\", line 241, in node_submit_task\r\n    db.commit()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 1042, in commit\r\n    self.transaction.commit()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 504, in commit\r\n    self._prepare_impl()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 483, in _prepare_impl\r\n    self.session.flush()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2536, in flush\r\n    self._flush(objects)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2678, in _flush\r\n    transaction.rollback(_capture_exception=True)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/util/langhelpers.py\", line 68, in __exit__\r\n    compat.raise_(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/util/compat.py\", line 182, in raise_\r\n    raise exception\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2638, in _flush\r\n    flush_context.execute()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/unitofwork.py\", line 422, in execute\r\n    rec.execute(self)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/unitofwork.py\", line 586, in execute\r\n    persistence.save_obj(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/persistence.py\", line 230, in save_obj\r\n    _emit_update_statements(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/persistence.py\", line 1025, in _emit_update_statements\r\n    raise orm_exc.StaleDataError(\r\nsqlalchemy.orm.exc.StaleDataError: UPDATE statement on table 'task' expected to update 1 row(s); 0 were matched.\r\n2020-11-02 13:44:52,554 DEBUG:dist:Thread-2 - going to upload 5 tasks to node worker01\r\n2020-11-02 13:44:52,560 INFO:dist:Thread-2 - Status.. master -> {'total': 2, 'pending': 1, 'running': 1, 'completed': 0, 'reported': 0}\r\n2020-11-02 13:44:52,576 INFO:dist:Thread-2 - Status.. master -> {'total': 2, 'pending': 1, 'running': 1, 'completed': 0, 'reported': 0}\r\n2020-11-02 13:44:52,619 DEBUG:dist:Thread-2 - Failed to submit task 15 to node: worker01, code: 200\r\n2020-11-02 13:44:52,619 DEBUG:dist:Thread-2 - Submitted task to worker: worker01 - None - 2 - {'error': False, 'data': {'task_ids': [13], 'message': 'Task ID 13 has been submitted'}, 'errors': [], 'url': ['https://sandbox.cybergon.com/submit/status/13/']}\r\n2020-11-02 13:44:52,622 ERROR:dist:Thread-2 - Got an exception when trying to check nodes status and submit tasks: UPDATE statement on table 'task' expected to update 1 row(s); 0 were matched..\r\nTraceback (most recent call last):\r\n  File \"dist.py\", line 815, in run\r\n    res = self.submit_tasks(node.name, pend_tasks_num, db=db)\r\n  File \"dist.py\", line 716, in submit_tasks\r\n    submitted = node_submit_task(task.id, node.id)\r\n  File \"dist.py\", line 241, in node_submit_task\r\n    db.commit()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 1042, in commit\r\n    self.transaction.commit()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 504, in commit\r\n    self._prepare_impl()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 483, in _prepare_impl\r\n    self.session.flush()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2536, in flush\r\n    self._flush(objects)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2678, in _flush\r\n    transaction.rollback(_capture_exception=True)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/util/langhelpers.py\", line 68, in __exit__\r\n    compat.raise_(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/util/compat.py\", line 182, in raise_\r\n    raise exception\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2638, in _flush\r\n    flush_context.execute()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/unitofwork.py\", line 422, in execute\r\n    rec.execute(self)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/unitofwork.py\", line 586, in execute\r\n    persistence.save_obj(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/persistence.py\", line 230, in save_obj\r\n    _emit_update_statements(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/persistence.py\", line 1025, in _emit_update_statements\r\n    raise orm_exc.StaleDataError(\r\nsqlalchemy.orm.exc.StaleDataError: UPDATE statement on table 'task' expected to update 1 row(s); 0 were matched.\r\n2020-11-02 13:44:52,632 DEBUG:dist:Thread-2 - going to upload 5 tasks to node worker01\r\n2020-11-02 13:44:52,661 INFO:dist:Thread-2 - Status.. worker01 -> {'total': 13, 'pending': 8, 'running': 5, 'completed': 0, 'reported': 0}\r\n2020-11-02 13:44:52,685 DEBUG:dist:Thread-2 - Failed to submit task 16 to node: worker01, code: 200\r\n2020-11-02 13:44:52,685 DEBUG:dist:Thread-2 - Submitted task to worker: worker01 - None - 2 - {'error': False, 'data': {'task_ids': [14], 'message': 'Task ID 14 has been submitted'}, 'errors': [], 'url': ['https://sandbox.cybergon.com/submit/status/14/']}\r\n2020-11-02 13:44:52,687 ERROR:dist:Thread-2 - Got an exception when trying to check nodes status and submit tasks: UPDATE statement on table 'task' expected to update 1 row(s); 0 were matched..\r\nTraceback (most recent call last):\r\n  File \"dist.py\", line 815, in run\r\n    res = self.submit_tasks(node.name, pend_tasks_num, db=db)\r\n  File \"dist.py\", line 716, in submit_tasks\r\n    submitted = node_submit_task(task.id, node.id)\r\n  File \"dist.py\", line 241, in node_submit_task\r\n    db.commit()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 1042, in commit\r\n    self.transaction.commit()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 504, in commit\r\n    self._prepare_impl()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 483, in _prepare_impl\r\n    self.session.flush()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2536, in flush\r\n    self._flush(objects)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2678, in _flush\r\n    transaction.rollback(_capture_exception=True)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/util/langhelpers.py\", line 68, in __exit__\r\n    compat.raise_(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/util/compat.py\", line 182, in raise_\r\n    raise exception\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2638, in _flush\r\n    flush_context.execute()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/unitofwork.py\", line 422, in execute\r\n    rec.execute(self)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/unitofwork.py\", line 586, in execute\r\n    persistence.save_obj(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/persistence.py\", line 230, in save_obj\r\n    _emit_update_statements(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/persistence.py\", line 1025, in _emit_update_statements\r\n    raise orm_exc.StaleDataError(\r\nsqlalchemy.orm.exc.StaleDataError: UPDATE statement on table 'task' expected to update 1 row(s); 0 were matched.\r\n2020-11-02 13:44:52,688 INFO:dist:Thread-2 - Status.. master -> {'total': 2, 'pending': 1, 'running': 1, 'completed': 0, 'reported': 0}\r\n2020-11-02 13:44:52,772 INFO:dist:Thread-2 - Status.. worker01 -> {'total': 14, 'pending': 9, 'running': 5, 'completed': 0, 'reported': 0}\r\n\r\n```\r\n\nComment: ok so see\r\n\r\n```\r\nSubmitted task to worker: worker01 - None - 2 <- NONE\r\n```\r\n\r\ncan you add print(r.content) after this line?\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/utils/dist.py#L211\r\n\r\nso it returns some empty data maybe\r\n\nComment: When the distribution problem occurs the analysis goes pending even if a VM on the worker machine is spun up\r\n(one for each replicated ID):\r\n<img width=\"1680\" alt=\"Screen Shot 2020-11-02 at 14 47 07\" src=\"https://user-images.githubusercontent.com/35832688/97875421-a3d60700-1d1a-11eb-99fd-b06380a77aba.png\">\r\n\r\n\r\n\r\nVMs running:\r\n<img width=\"607\" alt=\"Screen Shot 2020-11-02 at 14 48 55\" src=\"https://user-images.githubusercontent.com/35832688/97875369-93259100-1d1a-11eb-9e36-db1ff3522662.png\">\r\n\r\nI'll attach the logs ASAP\r\n\nComment: interesting, the uniq problem here should be the request/response change, the rest should be the same, will apreciate any lgs\nComment: With the print is now more clean the problem, instead of the correct response it gets a 500 Internal Server error from the /api/ on cape-web\r\n\r\n<img width=\"1568\" alt=\"Screen Shot 2020-11-02 at 14 57 49\" src=\"https://user-images.githubusercontent.com/35832688/97876454-290deb80-1d1c-11eb-99e9-b717a50c4c9a.png\">\r\n\r\n\r\nI'm going to retry with Debug enable in local_settings\r\n\nComment: With the debug enabled I've found a problem with my DB, I've cleaned it\r\n\r\nNow the print is triggered the error is the following:\r\n\r\n```\r\n2020-11-02 14:05:43,762 INFO:dist:Thread-2 - Status.. master -> {'total': 0, 'pending': 0, 'running': 0, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:05:43,791 INFO:dist:Thread-2 - Status.. master -> {'total': 0, 'pending': 0, 'running': 0, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:05:43,842 INFO:dist:Thread-2 - Status.. worker01 -> {'total': 0, 'pending': 0, 'running': 0, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:05:43,877 INFO:dist:Thread-2 - Status.. worker01 -> {'total': 0, 'pending': 0, 'running': 0, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:05:43,930 INFO:dist:Thread-2 - Status.. master -> {'total': 0, 'pending': 0, 'running': 0, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:05:44,012 INFO:dist:Thread-2 - Status.. worker01 -> {'total': 0, 'pending': 0, 'running': 0, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:05:44,067 INFO:dist:Thread-2 - Status.. master -> {'total': 0, 'pending': 0, 'running': 0, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:05:44,159 INFO:dist:Thread-2 - Status.. worker01 -> {'total': 0, 'pending': 0, 'running': 0, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:05:44,384 INFO:dist:Thread-2 - Status.. master -> {'total': 0, 'pending': 0, 'running': 0, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:05:44,467 INFO:dist:Thread-2 - Status.. worker01 -> {'total': 0, 'pending': 0, 'running': 0, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:05:53,964 INFO:dist:Thread-2 - Status.. master -> {'total': 1, 'pending': 1, 'running': 0, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:05:53,993 INFO:dist:Thread-2 - Status.. master -> {'total': 1, 'pending': 1, 'running': 0, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:05:54,071 DEBUG:dist:Thread-2 - going to upload 5 tasks to node worker01\r\n2020-11-02 14:05:54,095 INFO:dist:Thread-2 - Status.. worker01 -> {'total': 0, 'pending': 0, 'running': 0, 'completed': 0, 'reported': 0}\r\nb'{\\n    \"error\": false,\\n    \"data\": {\\n        \"task_ids\": [\\n            1\\n        ],\\n        \"message\": \"Task ID 1 has been submitted\"\\n    },\\n    \"errors\": [],\\n    \"url\": [\\n        \"https://sandbox.cybergon.com/submit/status/1/\"\\n    ]\\n}'\r\n2020-11-02 14:05:54,142 DEBUG:dist:Thread-2 - Failed to submit task 369 to node: worker01, code: 200\r\n2020-11-02 14:05:54,142 DEBUG:dist:Thread-2 - Submitted task to worker: worker01 - None - 1 - {'error': False, 'data': {'task_ids': [1], 'message': 'Task ID 1 has been submitted'}, 'errors': [], 'url': ['https://sandbox.cybergon.com/submit/status/1/']}\r\n2020-11-02 14:05:54,146 ERROR:dist:Thread-2 - Got an exception when trying to check nodes status and submit tasks: UPDATE statement on table 'task' expected to update 1 row(s); 0 were matched..\r\nTraceback (most recent call last):\r\n  File \"dist.py\", line 816, in run\r\n    res = self.submit_tasks(node.name, pend_tasks_num, db=db)\r\n  File \"dist.py\", line 717, in submit_tasks\r\n    submitted = node_submit_task(task.id, node.id)\r\n  File \"dist.py\", line 242, in node_submit_task\r\n    db.commit()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 1042, in commit\r\n    self.transaction.commit()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 504, in commit\r\n    self._prepare_impl()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 483, in _prepare_impl\r\n    self.session.flush()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2536, in flush\r\n    self._flush(objects)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2678, in _flush\r\n    transaction.rollback(_capture_exception=True)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/util/langhelpers.py\", line 68, in __exit__\r\n    compat.raise_(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/util/compat.py\", line 182, in raise_\r\n    raise exception\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2638, in _flush\r\n    flush_context.execute()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/unitofwork.py\", line 422, in execute\r\n    rec.execute(self)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/unitofwork.py\", line 586, in execute\r\n    persistence.save_obj(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/persistence.py\", line 230, in save_obj\r\n    _emit_update_statements(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/persistence.py\", line 1025, in _emit_update_statements\r\n    raise orm_exc.StaleDataError(\r\nsqlalchemy.orm.exc.StaleDataError: UPDATE statement on table 'task' expected to update 1 row(s); 0 were matched.\r\n2020-11-02 14:05:54,152 INFO:dist:Thread-2 - Status.. master -> {'total': 1, 'pending': 1, 'running': 0, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:05:54,239 DEBUG:dist:Thread-2 - going to upload 5 tasks to node worker01\r\n2020-11-02 14:05:54,279 INFO:dist:Thread-2 - Status.. master -> {'total': 1, 'pending': 1, 'running': 0, 'completed': 0, 'reported': 0}\r\nb'{\\n    \"error\": false,\\n    \"data\": {\\n        \"task_ids\": [\\n            2\\n        ],\\n        \"message\": \"Task ID 2 has been submitted\"\\n    },\\n    \"errors\": [],\\n    \"url\": [\\n        \"https://sandbox.cybergon.com/submit/status/2/\"\\n    ]\\n}'\r\n2020-11-02 14:05:54,296 DEBUG:dist:Thread-2 - Failed to submit task 371 to node: worker01, code: 200\r\n2020-11-02 14:05:54,296 DEBUG:dist:Thread-2 - Submitted task to worker: worker01 - None - 1 - {'error': False, 'data': {'task_ids': [2], 'message': 'Task ID 2 has been submitted'}, 'errors': [], 'url': ['https://sandbox.cybergon.com/submit/status/2/']}\r\n2020-11-02 14:05:54,299 ERROR:dist:Thread-2 - Got an exception when trying to check nodes status and submit tasks: UPDATE statement on table 'task' expected to update 1 row(s); 0 were matched..\r\nTraceback (most recent call last):\r\n  File \"dist.py\", line 816, in run\r\n    res = self.submit_tasks(node.name, pend_tasks_num, db=db)\r\n  File \"dist.py\", line 717, in submit_tasks\r\n    submitted = node_submit_task(task.id, node.id)\r\n  File \"dist.py\", line 242, in node_submit_task\r\n    db.commit()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 1042, in commit\r\n    self.transaction.commit()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 504, in commit\r\n    self._prepare_impl()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 483, in _prepare_impl\r\n    self.session.flush()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2536, in flush\r\n    self._flush(objects)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2678, in _flush\r\n    transaction.rollback(_capture_exception=True)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/util/langhelpers.py\", line 68, in __exit__\r\n    compat.raise_(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/util/compat.py\", line 182, in raise_\r\n    raise exception\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2638, in _flush\r\n    flush_context.execute()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/unitofwork.py\", line 422, in execute\r\n    rec.execute(self)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/unitofwork.py\", line 586, in execute\r\n    persistence.save_obj(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/persistence.py\", line 230, in save_obj\r\n    _emit_update_statements(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/persistence.py\", line 1025, in _emit_update_statements\r\n    raise orm_exc.StaleDataError(\r\nsqlalchemy.orm.exc.StaleDataError: UPDATE statement on table 'task' expected to update 1 row(s); 0 were matched.\r\n2020-11-02 14:05:54,369 DEBUG:dist:Thread-2 - going to upload 5 tasks to node worker01\r\nb'{\\n    \"error\": false,\\n    \"data\": {\\n        \"task_ids\": [\\n            3\\n        ],\\n        \"message\": \"Task ID 3 has been submitted\"\\n    },\\n    \"errors\": [],\\n    \"url\": [\\n        \"https://sandbox.cybergon.com/submit/status/3/\"\\n    ]\\n}'\r\n2020-11-02 14:05:54,462 DEBUG:dist:Thread-2 - Failed to submit task 372 to node: worker01, code: 200\r\n2020-11-02 14:05:54,462 DEBUG:dist:Thread-2 - Submitted task to worker: worker01 - None - 1 - {'error': False, 'data': {'task_ids': [3], 'message': 'Task ID 3 has been submitted'}, 'errors': [], 'url': ['https://sandbox.cybergon.com/submit/status/3/']}\r\nsomething is wrong with submission of task: 372\r\n2020-11-02 14:05:54,540 INFO:dist:Thread-2 - Status.. worker01 -> {'total': 3, 'pending': 2, 'running': 1, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:05:54,609 INFO:dist:Thread-2 - Status.. master -> {'total': 1, 'pending': 1, 'running': 0, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:05:54,665 DEBUG:dist:Thread-2 - going to upload 5 tasks to node worker01\r\nb'{\\n    \"error\": false,\\n    \"data\": {\\n        \"task_ids\": [\\n            4\\n        ],\\n        \"message\": \"Task ID 4 has been submitted\"\\n    },\\n    \"errors\": [],\\n    \"url\": [\\n        \"https://sandbox.cybergon.com/submit/status/4/\"\\n    ]\\n}'\r\n2020-11-02 14:05:54,735 DEBUG:dist:Thread-2 - Failed to submit task 373 to node: worker01, code: 200\r\n2020-11-02 14:05:54,736 DEBUG:dist:Thread-2 - Submitted task to worker: worker01 - None - 1 - {'error': False, 'data': {'task_ids': [4], 'message': 'Task ID 4 has been submitted'}, 'errors': [], 'url': ['https://sandbox.cybergon.com/submit/status/4/']}\r\nsomething is wrong with submission of task: 373\r\n2020-11-02 14:05:54,812 INFO:dist:Thread-2 - Status.. worker01 -> {'total': 4, 'pending': 3, 'running': 1, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:06:04,259 INFO:dist:Thread-2 - Status.. master -> {'total': 1, 'pending': 1, 'running': 0, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:06:04,285 INFO:dist:Thread-2 - Status.. master -> {'total': 1, 'pending': 1, 'running': 0, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:06:04,365 DEBUG:dist:Thread-2 - going to upload 5 tasks to node worker01\r\n2020-11-02 14:06:04,398 INFO:dist:Thread-2 - Status.. worker01 -> {'total': 4, 'pending': 0, 'running': 4, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:06:04,406 INFO:dist:Thread-2 - Status.. master -> {'total': 1, 'pending': 1, 'running': 0, 'completed': 0, 'reported': 0}\r\nb'{\\n    \"error\": false,\\n    \"data\": {\\n        \"task_ids\": [\\n            5\\n        ],\\n        \"message\": \"Task ID 5 has been submitted\"\\n    },\\n    \"errors\": [],\\n    \"url\": [\\n        \"https://sandbox.cybergon.com/submit/status/5/\"\\n    ]\\n}'\r\n2020-11-02 14:06:04,428 DEBUG:dist:Thread-2 - Failed to submit task 375 to node: worker01, code: 200\r\n2020-11-02 14:06:04,429 DEBUG:dist:Thread-2 - Submitted task to worker: worker01 - None - 1 - {'error': False, 'data': {'task_ids': [5], 'message': 'Task ID 5 has been submitted'}, 'errors': [], 'url': ['https://sandbox.cybergon.com/submit/status/5/']}\r\n2020-11-02 14:06:04,432 ERROR:dist:Thread-2 - Got an exception when trying to check nodes status and submit tasks: UPDATE statement on table 'task' expected to update 1 row(s); 0 were matched..\r\nTraceback (most recent call last):\r\n  File \"dist.py\", line 816, in run\r\n    res = self.submit_tasks(node.name, pend_tasks_num, db=db)\r\n  File \"dist.py\", line 717, in submit_tasks\r\n    submitted = node_submit_task(task.id, node.id)\r\n  File \"dist.py\", line 242, in node_submit_task\r\n    db.commit()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 1042, in commit\r\n    self.transaction.commit()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 504, in commit\r\n    self._prepare_impl()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 483, in _prepare_impl\r\n    self.session.flush()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2536, in flush\r\n    self._flush(objects)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2678, in _flush\r\n    transaction.rollback(_capture_exception=True)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/util/langhelpers.py\", line 68, in __exit__\r\n    compat.raise_(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/util/compat.py\", line 182, in raise_\r\n    raise exception\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2638, in _flush\r\n    flush_context.execute()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/unitofwork.py\", line 422, in execute\r\n    rec.execute(self)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/unitofwork.py\", line 586, in execute\r\n    persistence.save_obj(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/persistence.py\", line 230, in save_obj\r\n    _emit_update_statements(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/persistence.py\", line 1025, in _emit_update_statements\r\n    raise orm_exc.StaleDataError(\r\nsqlalchemy.orm.exc.StaleDataError: UPDATE statement on table 'task' expected to update 1 row(s); 0 were matched.\r\n2020-11-02 14:06:04,474 DEBUG:dist:Thread-2 - going to upload 5 tasks to node worker01\r\nb'{\\n    \"error\": false,\\n    \"data\": {\\n        \"task_ids\": [\\n            6\\n        ],\\n        \"message\": \"Task ID 6 has been submitted\"\\n    },\\n    \"errors\": [],\\n    \"url\": [\\n        \"https://sandbox.cybergon.com/submit/status/6/\"\\n    ]\\n}'\r\n2020-11-02 14:06:04,546 DEBUG:dist:Thread-2 - Failed to submit task 376 to node: worker01, code: 200\r\n2020-11-02 14:06:04,546 DEBUG:dist:Thread-2 - Submitted task to worker: worker01 - None - 1 - {'error': False, 'data': {'task_ids': [6], 'message': 'Task ID 6 has been submitted'}, 'errors': [], 'url': ['https://sandbox.cybergon.com/submit/status/6/']}\r\nsomething is wrong with submission of task: 376\r\n2020-11-02 14:06:04,633 INFO:dist:Thread-2 - Status.. worker01 -> {'total': 6, 'pending': 2, 'running': 4, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:06:04,676 INFO:dist:Thread-2 - Status.. master -> {'total': 1, 'pending': 1, 'running': 0, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:06:04,761 INFO:dist:Thread-2 - Status.. worker01 -> {'total': 6, 'pending': 2, 'running': 4, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:06:04,942 INFO:dist:Thread-2 - Status.. master -> {'total': 1, 'pending': 1, 'running': 0, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:06:05,042 INFO:dist:Thread-2 - Status.. worker01 -> {'total': 6, 'pending': 1, 'running': 5, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:06:14,546 INFO:dist:Thread-2 - Status.. master -> {'total': 1, 'pending': 1, 'running': 0, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:06:14,565 INFO:dist:Thread-2 - Status.. master -> {'total': 1, 'pending': 1, 'running': 0, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:06:14,610 DEBUG:dist:Thread-2 - going to upload 5 tasks to node worker01\r\n2020-11-02 14:06:14,650 INFO:dist:Thread-2 - Status.. worker01 -> {'total': 6, 'pending': 1, 'running': 5, 'completed': 0, 'reported': 0}\r\nb'{\\n    \"error\": false,\\n    \"data\": {\\n        \"task_ids\": [\\n            7\\n        ],\\n        \"message\": \"Task ID 7 has been submitted\"\\n    },\\n    \"errors\": [],\\n    \"url\": [\\n        \"https://sandbox.cybergon.com/submit/status/7/\"\\n    ]\\n}'\r\n2020-11-02 14:06:14,687 DEBUG:dist:Thread-2 - Failed to submit task 377 to node: worker01, code: 200\r\n2020-11-02 14:06:14,688 DEBUG:dist:Thread-2 - Submitted task to worker: worker01 - None - 1 - {'error': False, 'data': {'task_ids': [7], 'message': 'Task ID 7 has been submitted'}, 'errors': [], 'url': ['https://sandbox.cybergon.com/submit/status/7/']}\r\n2020-11-02 14:06:14,690 ERROR:dist:Thread-2 - Got an exception when trying to check nodes status and submit tasks: UPDATE statement on table 'task' expected to update 1 row(s); 0 were matched..\r\nTraceback (most recent call last):\r\n  File \"dist.py\", line 816, in run\r\n    res = self.submit_tasks(node.name, pend_tasks_num, db=db)\r\n  File \"dist.py\", line 717, in submit_tasks\r\n    submitted = node_submit_task(task.id, node.id)\r\n  File \"dist.py\", line 242, in node_submit_task\r\n    db.commit()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 1042, in commit\r\n    self.transaction.commit()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 504, in commit\r\n    self._prepare_impl()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 483, in _prepare_impl\r\n    self.session.flush()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2536, in flush\r\n    self._flush(objects)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2678, in _flush\r\n    transaction.rollback(_capture_exception=True)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/util/langhelpers.py\", line 68, in __exit__\r\n    compat.raise_(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/util/compat.py\", line 182, in raise_\r\n    raise exception\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2638, in _flush\r\n    flush_context.execute()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/unitofwork.py\", line 422, in execute\r\n    rec.execute(self)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/unitofwork.py\", line 586, in execute\r\n    persistence.save_obj(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/persistence.py\", line 230, in save_obj\r\n    _emit_update_statements(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/persistence.py\", line 1025, in _emit_update_statements\r\n    raise orm_exc.StaleDataError(\r\nsqlalchemy.orm.exc.StaleDataError: UPDATE statement on table 'task' expected to update 1 row(s); 0 were matched.\r\n2020-11-02 14:06:14,767 INFO:dist:Thread-2 - Status.. master -> {'total': 1, 'pending': 1, 'running': 0, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:06:14,853 INFO:dist:Thread-2 - Status.. worker01 -> {'total': 7, 'pending': 2, 'running': 5, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:06:14,918 INFO:dist:Thread-2 - Status.. master -> {'total': 1, 'pending': 1, 'running': 0, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:06:15,003 INFO:dist:Thread-2 - Status.. worker01 -> {'total': 7, 'pending': 2, 'running': 5, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:06:15,166 INFO:dist:Thread-2 - Status.. master -> {'total': 1, 'pending': 1, 'running': 0, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:06:15,242 INFO:dist:Thread-2 - Status.. worker01 -> {'total': 7, 'pending': 2, 'running': 5, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:06:24,797 INFO:dist:Thread-2 - Status.. master -> {'total': 1, 'pending': 1, 'running': 0, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:06:24,800 INFO:dist:Thread-2 - Status.. master -> {'total': 1, 'pending': 1, 'running': 0, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:06:24,864 DEBUG:dist:Thread-2 - going to upload 5 tasks to node worker01\r\n2020-11-02 14:06:24,891 INFO:dist:Thread-2 - Status.. worker01 -> {'total': 7, 'pending': 2, 'running': 5, 'completed': 0, 'reported': 0}\r\nb'{\\n    \"error\": false,\\n    \"data\": {\\n        \"task_ids\": [\\n            8\\n        ],\\n        \"message\": \"Task ID 8 has been submitted\"\\n    },\\n    \"errors\": [],\\n    \"url\": [\\n        \"https://sandbox.cybergon.com/submit/status/8/\"\\n    ]\\n}'\r\n2020-11-02 14:06:24,926 DEBUG:dist:Thread-2 - Failed to submit task 378 to node: worker01, code: 200\r\n2020-11-02 14:06:24,926 DEBUG:dist:Thread-2 - Submitted task to worker: worker01 - None - 1 - {'error': False, 'data': {'task_ids': [8], 'message': 'Task ID 8 has been submitted'}, 'errors': [], 'url': ['https://sandbox.cybergon.com/submit/status/8/']}\r\n2020-11-02 14:06:24,929 ERROR:dist:Thread-2 - Got an exception when trying to check nodes status and submit tasks: UPDATE statement on table 'task' expected to update 1 row(s); 0 were matched..\r\nTraceback (most recent call last):\r\n  File \"dist.py\", line 816, in run\r\n    res = self.submit_tasks(node.name, pend_tasks_num, db=db)\r\n  File \"dist.py\", line 717, in submit_tasks\r\n    submitted = node_submit_task(task.id, node.id)\r\n  File \"dist.py\", line 242, in node_submit_task\r\n    db.commit()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 1042, in commit\r\n    self.transaction.commit()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 504, in commit\r\n    self._prepare_impl()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 483, in _prepare_impl\r\n    self.session.flush()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2536, in flush\r\n    self._flush(objects)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2678, in _flush\r\n    transaction.rollback(_capture_exception=True)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/util/langhelpers.py\", line 68, in __exit__\r\n    compat.raise_(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/util/compat.py\", line 182, in raise_\r\n    raise exception\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2638, in _flush\r\n    flush_context.execute()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/unitofwork.py\", line 422, in execute\r\n    rec.execute(self)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/unitofwork.py\", line 586, in execute\r\n    persistence.save_obj(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/persistence.py\", line 230, in save_obj\r\n    _emit_update_statements(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/persistence.py\", line 1025, in _emit_update_statements\r\n    raise orm_exc.StaleDataError(\r\nsqlalchemy.orm.exc.StaleDataError: UPDATE statement on table 'task' expected to update 1 row(s); 0 were matched.\r\n2020-11-02 14:06:24,988 INFO:dist:Thread-2 - Status.. master -> {'total': 1, 'pending': 1, 'running': 0, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:06:25,071 INFO:dist:Thread-2 - Status.. worker01 -> {'total': 8, 'pending': 3, 'running': 5, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:06:25,149 INFO:dist:Thread-2 - Status.. master -> {'total': 1, 'pending': 1, 'running': 0, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:06:25,231 INFO:dist:Thread-2 - Status.. worker01 -> {'total': 8, 'pending': 3, 'running': 5, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:06:25,374 INFO:dist:Thread-2 - Status.. master -> {'total': 1, 'pending': 1, 'running': 0, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:06:25,456 INFO:dist:Thread-2 - Status.. worker01 -> {'total': 8, 'pending': 3, 'running': 5, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:06:35,027 INFO:dist:Thread-2 - Status.. master -> {'total': 1, 'pending': 1, 'running': 0, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:06:35,043 INFO:dist:Thread-2 - Status.. master -> {'total': 1, 'pending': 1, 'running': 0, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:06:35,091 DEBUG:dist:Thread-2 - going to upload 5 tasks to node worker01\r\n2020-11-02 14:06:35,132 INFO:dist:Thread-2 - Status.. worker01 -> {'total': 8, 'pending': 3, 'running': 5, 'completed': 0, 'reported': 0}\r\nb'{\\n    \"error\": false,\\n    \"data\": {\\n        \"task_ids\": [\\n            9\\n        ],\\n        \"message\": \"Task ID 9 has been submitted\"\\n    },\\n    \"errors\": [],\\n    \"url\": [\\n        \"https://sandbox.cybergon.com/submit/status/9/\"\\n    ]\\n}'\r\n2020-11-02 14:06:35,153 DEBUG:dist:Thread-2 - Failed to submit task 379 to node: worker01, code: 200\r\n2020-11-02 14:06:35,154 DEBUG:dist:Thread-2 - Submitted task to worker: worker01 - None - 1 - {'error': False, 'data': {'task_ids': [9], 'message': 'Task ID 9 has been submitted'}, 'errors': [], 'url': ['https://sandbox.cybergon.com/submit/status/9/']}\r\n2020-11-02 14:06:35,156 ERROR:dist:Thread-2 - Got an exception when trying to check nodes status and submit tasks: UPDATE statement on table 'task' expected to update 1 row(s); 0 were matched..\r\nTraceback (most recent call last):\r\n  File \"dist.py\", line 816, in run\r\n    res = self.submit_tasks(node.name, pend_tasks_num, db=db)\r\n  File \"dist.py\", line 717, in submit_tasks\r\n    submitted = node_submit_task(task.id, node.id)\r\n  File \"dist.py\", line 242, in node_submit_task\r\n    db.commit()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 1042, in commit\r\n    self.transaction.commit()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 504, in commit\r\n    self._prepare_impl()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 483, in _prepare_impl\r\n    self.session.flush()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2536, in flush\r\n    self._flush(objects)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2678, in _flush\r\n    transaction.rollback(_capture_exception=True)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/util/langhelpers.py\", line 68, in __exit__\r\n    compat.raise_(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/util/compat.py\", line 182, in raise_\r\n    raise exception\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2638, in _flush\r\n    flush_context.execute()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/unitofwork.py\", line 422, in execute\r\n    rec.execute(self)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/unitofwork.py\", line 586, in execute\r\n    persistence.save_obj(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/persistence.py\", line 230, in save_obj\r\n    _emit_update_statements(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/persistence.py\", line 1025, in _emit_update_statements\r\n    raise orm_exc.StaleDataError(\r\nsqlalchemy.orm.exc.StaleDataError: UPDATE statement on table 'task' expected to update 1 row(s); 0 were matched.\r\n2020-11-02 14:06:35,197 INFO:dist:Thread-2 - Status.. master -> {'total': 1, 'pending': 1, 'running': 0, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:06:35,283 INFO:dist:Thread-2 - Status.. worker01 -> {'total': 9, 'pending': 4, 'running': 5, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:06:35,372 INFO:dist:Thread-2 - Status.. master -> {'total': 1, 'pending': 1, 'running': 0, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:06:35,455 INFO:dist:Thread-2 - Status.. worker01 -> {'total': 9, 'pending': 4, 'running': 5, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:06:35,584 INFO:dist:Thread-2 - Status.. master -> {'total': 1, 'pending': 1, 'running': 0, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:06:35,673 INFO:dist:Thread-2 - Status.. worker01 -> {'total': 9, 'pending': 4, 'running': 5, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:06:45,266 INFO:dist:Thread-2 - Status.. master -> {'total': 1, 'pending': 1, 'running': 0, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:06:45,284 INFO:dist:Thread-2 - Status.. master -> {'total': 1, 'pending': 1, 'running': 0, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:06:45,345 DEBUG:dist:Thread-2 - going to upload 5 tasks to node worker01\r\n2020-11-02 14:06:45,356 INFO:dist:Thread-2 - Status.. worker01 -> {'total': 9, 'pending': 4, 'running': 5, 'completed': 0, 'reported': 0}\r\nb'{\\n    \"error\": false,\\n    \"data\": {\\n        \"task_ids\": [\\n            10\\n        ],\\n        \"message\": \"Task ID 10 has been submitted\"\\n    },\\n    \"errors\": [],\\n    \"url\": [\\n        \"https://sandbox.cybergon.com/submit/status/10/\"\\n    ]\\n}'\r\n2020-11-02 14:06:45,408 DEBUG:dist:Thread-2 - Failed to submit task 380 to node: worker01, code: 200\r\n2020-11-02 14:06:45,408 DEBUG:dist:Thread-2 - Submitted task to worker: worker01 - None - 1 - {'error': False, 'data': {'task_ids': [10], 'message': 'Task ID 10 has been submitted'}, 'errors': [], 'url': ['https://sandbox.cybergon.com/submit/status/10/']}\r\n2020-11-02 14:06:45,408 INFO:dist:Thread-2 - Status.. master -> {'total': 1, 'pending': 1, 'running': 0, 'completed': 0, 'reported': 0}\r\n2020-11-02 14:06:45,411 ERROR:dist:Thread-2 - Got an exception when trying to check nodes status and submit tasks: UPDATE statement on table 'task' expected to update 1 row(s); 0 were matched..\r\nTraceback (most recent call last):\r\n  File \"dist.py\", line 816, in run\r\n    res = self.submit_tasks(node.name, pend_tasks_num, db=db)\r\n  File \"dist.py\", line 717, in submit_tasks\r\n    submitted = node_submit_task(task.id, node.id)\r\n  File \"dist.py\", line 242, in node_submit_task\r\n    db.commit()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 1042, in commit\r\n    self.transaction.commit()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 504, in commit\r\n    self._prepare_impl()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 483, in _prepare_impl\r\n    self.session.flush()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2536, in flush\r\n    self._flush(objects)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2678, in _flush\r\n    transaction.rollback(_capture_exception=True)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/util/langhelpers.py\", line 68, in __exit__\r\n    compat.raise_(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/util/compat.py\", line 182, in raise_\r\n    raise exception\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/session.py\", line 2638, in _flush\r\n    flush_context.execute()\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/unitofwork.py\", line 422, in execute\r\n    rec.execute(self)\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/unitofwork.py\", line 586, in execute\r\n    persistence.save_obj(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/persistence.py\", line 230, in save_obj\r\n    _emit_update_statements(\r\n  File \"/usr/local/lib/python3.8/dist-packages/sqlalchemy/orm/persistence.py\", line 1025, in _emit_update_statements\r\n    raise orm_exc.StaleDataError(\r\nsqlalchemy.orm.exc.StaleDataError: UPDATE statement on table 'task' expected to update 1 row(s); 0 were matched.\r\n```\r\nThe print output is:\r\n```\r\nb'{\\n    \"error\": false,\\n    \"data\": {\\n        \"task_ids\": [\\n            9\\n        ],\\n        \"message\": \"Task ID 9 has been submitted\"\\n    },\\n    \"errors\": [],\\n    \"url\": [\\n        \"https://sandbox.cybergon.com/submit/status/9/\"\\n    ]\\n}'\r\n```\nComment: ah lol for your lulz\r\n\r\n```\r\nif \"task_ids\" in r.json() and len(r.json()[\"task_ids\"]) > 0 and r.json()[\"task_ids\"] is not None:\r\n                task.task_id = r.json().get(\"data\", {})[\"task_ids\"][0]\r\n```\r\n\r\nshould be\r\n\r\n```\r\nif \"task_ids\" in r.json().get(\"data\", {}) and len(r.json().get(\"data\", {})[\"task_ids\"]) > 0 and r.json().get(\"data\", {})[\"task_ids\"] is not None:\r\n                task.task_id = r.json().get(\"data\", {})[\"task_ids\"][0]\r\n```\r\n\r\npsuhing fix\nComment: Great!\nI'll give it a try right away\nComment: closing this, let me know if you have any issue in PM, i have added the feature about show vms and routes on main gui to our ToDo so once we will have some time we will try to add that\nComment: i have added route to distributed part https://github.com/kevoreilly/CAPEv2/commit/d775fefcba1eb96ff044bb9c5ff3995343a056a5",
+  "Title: box-js\nBody: ",
+  "Title: navbar\nBody: ",
+  "Title: fix machine selection for resubmission and vt download submissions\nBody: \nComment: thanks that helped me to fix the issue, i will pushing that, as i moved this to be just in 1 place instead of check service and in each function",
+  "Title: HTTP connections missing from report\nBody: While skimming through the public reports of [CAPE](https://capesandbox.com/)  I noticed that when a sample is generating HTTP traffic, the `http` tab under `Network Analysis` is showing a counter of 0, instead, by clicking on the `Suricata HTTP` tab shows the right number of recorded requests, the same goes for the `Behaviour Analysis` (selecting the associated process).\r\n\r\nThe following analysis can be taken as a reference https://capesandbox.com/analysis/75012/, not sure if this affects any analysis regardless of the routing options (e.g. tor, inetsim, etc.)\r\n\nComment: thanks for reporting, fixed :)",
+  "Title: Update views.py\nBody: fix error message",
+  "Title: Update web_utils.py\nBody: Fix invalid type",
+  "Title: Rewrite cape.py\nBody: ",
+  "Title: Adds MSI installer supported filetypes\nBody: ",
+  "Title: Update Remcos.py\nBody: Works for newer versions of the RAT, but still has some issues parsing copies which are injected into other processes.\nComment: You are a legend!",
+  "Title: Processing fail\nBody: Yesterday, I updated Cape on a virtual machine (on a server). Last time that I did it, was two month before. Previously, I installed it in a local virtual machine and it work well.\r\n\r\nThe server virtual machine has enough storage (not a problem) and 32 GB of RAM with 8 CPUs. I have deployed 2 virtual machines with Windows 7 to analyze malware (2 GB of RAM and 2 CPUs each).\r\n\r\nAll analyzes I send to Cape are analyzed without problems, but when processed, about 15-25% fail (fail_processing). When it doesn't fail, it takes seconds, but when it fails, it starts and suddenly freezes until timeout skips. \r\nModules in processing.conf configuration file are following:\r\n\r\n- curtain: yes\r\n- sysmon: yes\r\n- analysisinfo: yes\r\n- decompression: yes\r\n- behavior: yes\r\n- debug: yes\r\n- detections: yes\r\n- behavior: yes\r\n- yara: yes\r\n- suricata: yes\r\n- virustotal: yes\r\n- clamav: no\r\n- dropped: yes\r\n- procdump: yes\r\n- procmemory: yes\r\n- procmon: no\r\n- memory: no\r\n- usage: yes\r\n- network: yes\r\n- loop_detection: yes\r\n- static: yes\r\n- strings: yes\r\n- trid: no\r\n- targetinfo: yes\r\n- virustotal: yes\r\n- suricata: yes\r\n- cif: no\r\n- CAPE: yes\r\n- vba2graph: yes\r\n- maliciousmacrobot: no\r\n- xlsdeobf: yes\r\n\r\nOf a last 35 files analyzed, 9 failed when processing. In logs always appear graph when it freezen. I share logs of 5 of them:\r\n\r\n2020-10-21 07:26:12,449 [root] INFO: Processing analysis data for Task #318\r\n2020-10-21 07:28:11,960 [graph.ent] WARNING: Failed to parse with pefile: 'DOS Header magic not found.'\r\n2020-10-21 07:28:11,961 [graph.ent] WARNING: Failed to parse binary format, parsing like --blob\r\n2020-10-21 07:28:12,153 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/318/bingraph/73d8dcacaae5583b2d718aa24fb067fcd3e4a6fa3a5915a5b3a3f63a13a20ab6-ent.svg\"\r\n2020-10-21 07:28:12,255 [graph.ent] WARNING: Failed to parse with pefile: 'DOS Header magic not found.'\r\n2020-10-21 07:28:12,255 [graph.ent] WARNING: Failed to parse binary format, parsing like --blob\r\n2020-10-21 07:28:12,424 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/318/bingraph/2fb3e7ca57b5ec8657ff2b909c74dee246e7ed2b30abd60dec96fc4fb88bd165-ent.svg\"\r\n2020-10-21 07:28:12,547 [graph.ent] WARNING: Failed to parse with pefile: 'DOS Header magic not found.'\r\n2020-10-21 07:28:12,548 [graph.ent] WARNING: Failed to parse binary format, parsing like --blob\r\n2020-10-21 07:28:12,728 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/318/bingraph/2c9ca21247d82dcf8c5c4374871f73c832ef0a514ff7faa89f5ffbdf60cab397-ent.svg\"\r\n2020-10-21 07:28:12,823 [graph.ent] WARNING: Failed to parse with pefile: 'DOS Header magic not found.'\r\n2020-10-21 07:28:12,824 [graph.ent] WARNING: Failed to parse binary format, parsing like --blob\r\n2020-10-21 07:28:12,999 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/318/bingraph/57d6315a8f1f11aaa111a9956ddd0d560f791f757c379ed77bbb5a1b5b577f52-ent.svg\"\r\n2020-10-21 07:28:13,139 [graph.ent] WARNING: Failed to parse with pefile: 'DOS Header magic not found.'\r\n2020-10-21 07:28:13,139 [graph.ent] WARNING: Failed to parse binary format, parsing like --blob\r\n2020-10-21 07:28:13,321 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/318/bingraph/187a68098029c5700f8562866d3aa3d4fe7d62f1c4535d0aad85ce60d51abaff-ent.svg\"\r\n2020-10-21 07:28:13,427 [graph.ent] WARNING: Failed to parse with pefile: 'DOS Header magic not found.'\r\n2020-10-21 07:28:13,427 [graph.ent] WARNING: Failed to parse binary format, parsing like --blob\r\n2020-10-21 07:28:13,599 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/318/bingraph/0bfc0e59aecd7b8add8fd1b91edc50f8444c12e5ca4f2f0375a9e59825ec2b0b-ent.svg\"\r\n2020-10-21 07:28:13,714 [graph.ent] WARNING: Failed to parse with pefile: 'DOS Header magic not found.'\r\n2020-10-21 07:28:13,714 [graph.ent] WARNING: Failed to parse binary format, parsing like --blob\r\n2020-10-21 07:28:13,895 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/318/bingraph/19db04ece9bcb8e3f7b9d707c0b3f7f9b603bd1452fd9f743ea3f3e1d2b03916-ent.svg\"\r\n2020-10-21 07:28:14,001 [graph.ent] WARNING: Failed to parse with pefile: 'DOS Header magic not found.'\r\n2020-10-21 07:28:14,001 [graph.ent] WARNING: Failed to parse binary format, parsing like --blob\r\n2020-10-21 07:28:14,170 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/318/bingraph/83cdbaa3529943260a015b67fe1328cc158dda8eb93f57858154f2443ef346a0-ent.svg\"\r\n2020-10-21 07:28:14,308 [graph.ent] WARNING: Failed to parse with pefile: 'DOS Header magic not found.'\r\n2020-10-21 07:28:14,308 [graph.ent] WARNING: Failed to parse binary format, parsing like --blob\r\n2020-10-21 07:28:14,492 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/318/bingraph/2ac1977a1c7d8beeb9f5f54f00c1b4bec6d6522496003f753fb9c7da129bdd62-ent.svg\"\r\n2020-10-21 07:28:14,639 [graph.ent] WARNING: Failed to parse with pefile: 'DOS Header magic not found.'\r\n2020-10-21 07:28:14,639 [graph.ent] WARNING: Failed to parse binary format, parsing like --blob\r\n2020-10-21 07:28:14,825 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/318/bingraph/67d2ebdcad0d38ad87fef512cce71cd064261ae6105727fa994308e4de4bc671-ent.svg\"\r\n2020-10-21 07:28:14,926 [graph.ent] WARNING: Failed to parse with pefile: 'DOS Header magic not found.'\r\n2020-10-21 07:28:14,926 [graph.ent] WARNING: Failed to parse binary format, parsing like --blob\r\n2020-10-21 07:28:15,095 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/318/bingraph/a98f4e8e05de8384850a548823028bc00cc1307d1afb9c5405fe80ca7c9d1fe7-ent.svg\"\r\n2020-10-21 07:28:15,491 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/318/bingraph/288c02074d5fdde56faa3b67c0a4ecf41af952f3b72cc64ece79799b65ebd128-ent.svg\"\r\n2020-10-21 07:28:15,781 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/318/bingraph/762fba08a6e218a0450694d95eccaf969d73e1c713b25432aaa8c4d2c77fab1b-ent.svg\"\r\n2020-10-21 07:28:16,095 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/318/bingraph/da0b3c4674fc7014b070edc3b73e3107fbeede0d7391cb04753001e7ffc07bdb-ent.svg\"\r\n2020-10-21 07:28:16,401 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/318/bingraph/398e2a4404f35ae7a33dcc37cf34846fa584a7b22063b38ae6c3bc2fa0b5b424-ent.svg\"\r\n2020-10-21 07:28:16,727 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/318/bingraph/bd2f08f8c7ec10d79043479e8701b2537a8e5c280480f495e01610f64909b6f2-ent.svg\"\r\n2020-10-21 07:28:17,041 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/318/bingraph/ac132b55456c6ca1853983572458c280418a8e7fd356bd4592729073d4202153-ent.svg\"\r\n2020-10-21 07:28:17,337 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/318/bingraph/2cf824d4bc34e3451933eb3d2cb659794300e7a9d0cb9deb4a405d8a7867bbcc-ent.svg\"\r\n2020-10-21 07:28:17,712 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/318/bingraph/874bab479a1dbfc75b866ba5e4682466f33543f11d5fc2b0b55e31bc6c5b9ed5-ent.svg\"\r\n2020-10-21 07:28:18,087 [graph.ent] WARNING: Failed to parse with pefile: 'DOS Header magic not found.'\r\n2020-10-21 07:28:18,088 [graph.ent] WARNING: Failed to parse binary format, parsing like --blob\r\n2020-10-21 07:28:18,278 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/318/bingraph/94125aadd12b74907db50522a271e4be2e6b6ee6773cd8b27a266bc88cec79a7-ent.svg\"\r\n2020-10-21 07:28:18,602 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/318/bingraph/4d0d52fdda37e0213cafe3f35e78b00433b7e09775777893205102c8c6ff9598-ent.svg\"\r\n2020-10-21 07:28:18,902 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/318/bingraph/190fdc53c1e0458b9c9ef0966f18067d48b2ec7f7d99c1379fe9111cdbe2b951-ent.svg\"\r\n2020-10-21 07:28:18,994 [graph.ent] WARNING: Failed to parse with pefile: 'DOS Header magic not found.'\r\n2020-10-21 07:28:18,995 [graph.ent] WARNING: Failed to parse binary format, parsing like --blob\r\n2020-10-21 07:28:19,317 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/318/bingraph/064d1396fa34b644c1c8690d91efaa0ce4f9ae231550f11f07223b0aab7366de-ent.svg\"\r\n2020-10-21 07:28:19,619 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/318/bingraph/d3c9f292a27ad952dfd472f23bd00a1fc76f9ccae059d26de76af36dc9220f32-ent.svg\"\r\n2020-10-21 07:28:19,942 [graph.ent] WARNING: Failed to parse with pefile: 'DOS Header magic not found.'\r\n2020-10-21 07:28:19,943 [graph.ent] WARNING: Failed to parse binary format, parsing like --blob\r\n2020-10-21 07:28:20,130 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/318/bingraph/92a636ddf79b908251289a5501862eeebebeefc8660b4cef59e88c49b0cba97e-ent.svg\"\r\n2020-10-21 07:28:20,424 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/318/bingraph/a0eab8354d7e9e5e4f43a3c734d9d55395e246bb293482c5b17f7ebb589aba7d-ent.svg\"\r\n2020-10-21 07:28:20,772 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/318/bingraph/53825814e95a11d4f259f862b0d54082a28cf30215e5a4a3917ade3fa2aff284-ent.svg\"\r\n2020-10-21 07:28:21,097 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/318/bingraph/e66ab327beac3626f6bd5002510c40a8c46d1a51b1a1ea2c665e11b1b0e594fb-ent.svg\"\r\n2020-10-21 07:28:21,409 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/318/bingraph/f34f5af28ca51416ac4083adb39374d3e3812ca1d4f88f3d1643463f58b5f3c7-ent.svg\"\r\n2020-10-21 07:28:21,702 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/318/bingraph/ba41c8380f30ba548dc1993c720e3b66e7808c5093c6aa87a8b4b4aff15a938f-ent.svg\"\r\n2020-10-21 07:28:22,004 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/318/bingraph/079d58037a3cf00f18f5633e0bc0a6e2fa5169c7fad383a79d91a22305777cd8-ent.svg\"\r\n2020-10-21 07:28:22,294 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/318/bingraph/54bc704c100c49df6b2aec5ca9ea68339f46fe4721e7d40a42393a0ea30d6810-ent.svg\"\r\n2020-10-21 07:28:22,688 [graph.ent] WARNING: Failed to parse with pefile: 'DOS Header magic not found.'\r\n2020-10-21 07:28:22,689 [graph.ent] WARNING: Failed to parse binary format, parsing like --blob\r\n2020-10-21 07:28:22,874 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/318/bingraph/bb19d33d6acc3ca2b3a710ca76ff542fde7e096c7e66b8a146efa0599a6afe12-ent.svg\"\r\n2020-10-21 07:28:23,167 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/318/bingraph/4d09bc01ffc490a7080ea01e00ac2303c2edc6478aa3e9fc5f8e55d94997e669-ent.svg\"\r\n2020-10-21 07:28:23,648 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/318/bingraph/088e73807789212d09a9034d56b89dcbb684860611cac38215c30f7de95e08d5-ent.svg\"\r\n2020-10-21 07:41:12,529 [root] ERROR: Processing Timeout ('Task timeout', 900)\r\n\r\n\r\n2020-10-20 13:58:05,582 [root] INFO: Processing analysis data for Task #304\r\n2020-10-20 13:58:06,042 [lib.cuckoo.common.cape_utils] WARNING: malwareconfig parsing error with NetWire: '', you should submit issue/fix to https://github.com/kevthehermit/RATDecoders/\r\n2020-10-20 13:58:06,114 [lib.cuckoo.common.cape_utils] WARNING: malwareconfig parsing error with NetWire: '', you should submit issue/fix to https://github.com/kevthehermit/RATDecoders/\r\n2020-10-20 13:58:06,115 [modules.processing.CAPE] INFO: CAPE duplicate output file skipped\r\n2020-10-20 13:58:06,207 [lib.cuckoo.common.cape_utils] WARNING: malwareconfig parsing error with NetWire: '', you should submit issue/fix to https://github.com/kevthehermit/RATDecoders/\r\n2020-10-20 13:58:34,781 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/304/bingraph/1b15ef17ccb1a99c3953f61de01ebceaeef2277b3b5939408050dc7c1010d1bb-ent.svg\"\r\n2020-10-20 13:58:34,866 [graph.ent] WARNING: Failed to parse with pefile: 'Unable to read the DOS Header, possibly a truncated file.'\r\n2020-10-20 13:58:34,867 [graph.ent] WARNING: Failed to parse binary format, parsing like --blob\r\n2020-10-20 13:58:35,029 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/304/bingraph/e457d9640d456285dac1cbb1d6db00b6af4a1c021d4d9286589fee901caefebb-ent.svg\"\r\n2020-10-20 13:58:35,933 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/304/bingraph/7a050f5f0f966019f695433c77bbaf9b2b41830353ae3ea10f74b3b662eeb138-ent.svg\"\r\n2020-10-20 13:58:36,479 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/304/bingraph/d4a2a90c5dcb26f1deb3c43ca22134c9a0299ff277cb0036ee4183d9b97f7de8-ent.svg\"\r\n2020-10-20 13:58:36,852 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/304/bingraph/3c5dc26a381d829b3c9b13fbb2b86df9472913f61624ae64165a94b1cf9aad68-ent.svg\"\r\n2020-10-20 13:58:36,928 [graph.ent] WARNING: Failed to parse with pefile: 'Unable to read the DOS Header, possibly a truncated file.'\r\n2020-10-20 13:58:36,929 [graph.ent] WARNING: Failed to parse binary format, parsing like --blob\r\n2020-10-20 13:58:37,095 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/304/bingraph/f52f3a746c2545658e1c6add32e5410365553ebaaa0433f5f8bd90c6f85fd6e2-ent.svg\"\r\n2020-10-20 13:58:37,171 [graph.ent] WARNING: Failed to parse with pefile: 'Unable to read the DOS Header, possibly a truncated file.'\r\n2020-10-20 13:58:37,172 [graph.ent] WARNING: Failed to parse binary format, parsing like --blob\r\n2020-10-20 13:58:37,330 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/304/bingraph/17ceb9241e444916a26ffa3d39c6f08a40578f1da30f621bf62348efa5c9b482-ent.svg\"\r\n2020-10-20 13:58:37,437 [graph.ent] WARNING: Failed to parse with pefile: 'DOS Header magic not found.'\r\n2020-10-20 13:58:37,437 [graph.ent] WARNING: Failed to parse binary format, parsing like --blob\r\n2020-10-20 13:58:37,611 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/304/bingraph/98efaa04d1e7a240a6f720cffbdfd8f13aaca3474edc0515a81ac049a4991e95-ent.svg\"\r\n2020-10-20 14:13:05,653 [root] ERROR: Processing Timeout ('Task timeout', 900)\r\n\r\n\r\n2020-10-20 15:17:41,633 [root] INFO: Processing analysis data for Task #309\r\n2020-10-20 15:17:41,901 [lib.cuckoo.common.cape_utils] INFO: CAPE: DC3-MWCP parser for Emotet completed\r\n2020-10-20 15:17:41,916 [lib.cuckoo.common.cape_utils] INFO: CAPE: DC3-MWCP parser for Emotet completed\r\n2020-10-20 15:17:41,916 [modules.processing.CAPE] INFO: CAPE duplicate output file skipped\r\n2020-10-20 15:17:41,942 [modules.processing.CAPE] INFO: CAPE: Found UPX Packed sample - attempting to unpack\r\n2020-10-20 15:17:44,556 [lib.cuckoo.common.cape_utils] ERROR: CAPE: Error - UPX CantUnpackException\r\n2020-10-20 15:17:44,583 [modules.processing.CAPE] INFO: CAPE: Found UPX Packed sample - attempting to unpack\r\n2020-10-20 15:17:44,603 [lib.cuckoo.common.cape_utils] INFO: CAPE: UPX - Statically unpacked binary /tmp/tmpry0shrxp.\r\n2020-10-20 15:18:44,314 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/309/bingraph/aa0cbe599839db940f6cc2f4ca1383dbb9937b8c7dd6460847c983523cd63c39-ent.svg\"\r\n2020-10-20 15:18:44,734 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/309/bingraph/2e9c456c8bd700fa63f1ff89aca883e77635851501a03080b6a02589fb5a5d68-ent.svg\"\r\n2020-10-20 15:18:45,053 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/309/bingraph/f0c385d88798fa86056a6639a385a6094b047ad0837d3c3e58f6729167267221-ent.svg\"\r\n2020-10-20 15:18:45,142 [graph.ent] WARNING: Failed to parse with pefile: 'DOS Header magic not found.'\r\n2020-10-20 15:18:45,143 [graph.ent] WARNING: Failed to parse binary format, parsing like --blob\r\n2020-10-20 15:18:45,301 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/309/bingraph/efc46974c904f73589db85f59a4d2a2bc79174134966f30663a84be9df640164-ent.svg\"\r\n2020-10-20 15:18:45,826 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/309/bingraph/0f31421e3bf34b688c7b24ac6ec8324234c9ab2c84414668f7595fa64ff3ea08-ent.svg\"\r\n2020-10-20 15:32:41,941 [root] ERROR: Processing Timeout ('Task timeout', 900)\r\n\r\n\r\n\r\n2020-10-20 15:58:48,316 [root] INFO: Processing analysis data for Task #312\r\n2020-10-20 15:59:54,947 [graph.ent] WARNING: Failed to parse with pefile: 'DOS Header magic not found.'\r\n2020-10-20 15:59:54,948 [graph.ent] WARNING: Failed to parse binary format, parsing like --blob\r\n2020-10-20 15:59:55,135 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/312/bingraph/0a4778708b4d28174f173705160a9521e84cf393e9b444d91dbaa337e2397a6c-ent.svg\"\r\n2020-10-20 15:59:55,569 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/312/bingraph/9417d7d89fe8a0da5b4e6e38d07bbcadce1928b67350c868f1c8a00e29895769-ent.svg\"\r\n2020-10-20 16:13:48,906 [root] ERROR: Processing Timeout ('Task timeout', 900)\r\n\r\n\r\n2020-10-20 14:18:22,959 [root] INFO: Processing analysis data\r\n2020-10-20 14:20:21,184 [root] INFO: Processing analysis data\r\n2020-10-20 14:33:22,632 [root] INFO: Processing analysis data for Task #305\r\n2020-10-20 14:33:22,795 [lib.cuckoo.common.cape_utils] INFO: CAPE: DC3-MWCP parser for Emotet completed\r\n2020-10-20 14:33:22,822 [lib.cuckoo.common.cape_utils] INFO: CAPE: DC3-MWCP parser for Emotet completed\r\n2020-10-20 14:33:50,112 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/305/bingraph/b430e88c8530b45a7467043bfbf2808da40ccee9fdcec86170709896694f53a8-ent.svg\"\r\n2020-10-20 14:33:50,506 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/305/bingraph/5928c655438a095cfa6057db829c098bce347ff9893163b93596dabe701d08c3-ent.svg\"\r\n2020-10-20 14:33:50,840 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/305/bingraph/41c4c3b13beea843065a03c6747978637efee9b9991ec06e4d403a5c3dd0bb0b-ent.svg\"\r\n2020-10-20 14:33:51,172 [binGraph] INFO: Graph saved to: \"/opt/CAPEv2/storage/analyses/305/bingraph/95600d0e881799781aa1d0a6601cdfad29ffa221f0725a2ad4705e6d8fe70764-ent.svg\"\r\n2020-10-20 14:48:22,710 [root] ERROR: Processing Timeout ('Task timeout', 900)\r\n\r\n\r\n\r\n\r\n\r\n\r\n\nComment: just increase your timeout from 900, for us 15 mins is too much time to spend on processing one report is why we kill it. see `process.py -h` and depends how you run it you might need to update systemd\r\n\r\nbson is the hardest part to process and it takes a lot of time\nComment: Another thing is this stuff is highly dependent on what you are submitting - if it's ransomware then it wouldn't be a surprise to fail processing as 200 seconds for this kind of behaviour creates way too much data to process.\nComment: + i really recommend you to read the documentation(see readme), it will save you time, post less FP issues, and you will become more familiar with tool that you use\nComment: Yes, I understand you both. I read all services documentation because I had problems that I solved with suricata. I send timeout through -pt argument, which appears in systemd by default with this value. \r\nI have followed documentation instructions of system services, I have monitored process.py processes, I have increased / decreased active modules in processing.conf because I thought that if I made the processing lighter, maybe I would stop having these errors. \r\nI'm just trying to know where is the error. I'm sorry if it bothered you\nComment: for that we have `statistics tab  once report is generated so you can see where it spend a lot of time, so you can reprocess one of the report with very high timeout and then check them, closing as responded/not real issue\r\n\r\nbut you also can see timing in console if you process it with debug\nComment: one extra note, when you post logs or confs please use in future markdown code escape, taht will make it easier to read",
+  "Title: What version of Virtualbox that CAPEv2 support?\nBody: Hi!\r\nI already install CAPEv2 by running cape.sh, but I want to use virtualbox instead of KMV, So can you tell me What version of Virtualbox that CAPEv2 support? And how to disable System -> Hardware acceleration in Virtualbox?\r\n\r\nThank you!\nComment: Hi, \r\nI'm not sure which version Cape officially recommends(KVM is recommended). But I use version 6.1.10 without any noticeable problems.\r\nIf virtualbox is telling you, to turn off hardware acceleration, try to activate VT-x or AMD-V, depending on what type of processor you have, in your BIOS.\nComment: We are KVM evangelists, is the best hypervosor \ud83d\ude0b\r\n\r\nWe left the rest for community if they want to use any other, but uniq that fully supported for sure is KVM\r\n\r\nThanks @ClaudioWayne for help in responsing issues \u2764\ufe0f\nComment: > Hi,\r\n> I'm not sure which version Cape officially recommends(KVM is recommended). But I use version 6.1.10 without any noticeable problems.\r\n> If virtualbox is telling you, to turn off hardware acceleration, try to activate VT-x or AMD-V, depending on what type of processor you have, in your BIOS.\r\n@ClaudioWayne \r\nThanks for help me! \r\n\r\n@doomedraven Thanks for suggestion, will consider change to KVM in future, now I have many machines in .VDI format (Virtualbox disk image), so can I convert all to KVM disk format quickly?\nComment: @likescam yes with `qemu-img` google has a lot of results for that, you will lose snapshots, so ensure to restore the vm and turn off to ensure you don't convert vms with malware inside, for kvm see scripts in readme\nComment: > @likescam yes with `qemu-img` google has a lot of results for that, you will lose snapshots, so ensure to restore the vm and turn off to ensure you don't convert vms with malware inside, for kvm see scripts in readme\r\n\r\nNoted it! Will test with  `qemu-img` now. Thanks for your quickly anwser!",
+  "Title: Update Hancitor.yar\nBody: ",
+  "Title: Update Hancitor.yar\nBody: Update the hancitor yara rule to catch unpacked binary.",
+  "Title: Update web_utils.py\nBody: Fix submission options",
+  "Title: Update objects.py\nBody: Fix exception string handling",
+  "Title: Analysis times fail\nBody: Hi,\r\n\r\nYesterday I updated Cape and I observed that analysis times not work well. I checked timeouts in cuckoo.conf and I put 600 seconds as value.\r\n\r\n[timeouts]\r\nSet the default analysis timeout expressed in seconds. This value will be\r\nused to define after how many seconds the analysis will terminate unless\r\notherwise specified at submission.\r\ndefault = 600\r\n\r\nOn the other hand, I have same problem when I submit a sample using a API or web UI, I always put 600 seconds as value of timeout. I used to put this value because some malware sample use a sleep or delay techniques. For example, I submitted a emotet sample but its report is wrong in network section because emotet not had time to connect with a botnet, because analysis has finished before.\r\n\r\nAs a curiosity, this error occurs to me more in office and pdf documents. I have compared same files with cuckoo sandbox and in cuckoo, timeout works fine. Both machines have same resources.\r\n\r\n![image](https://user-images.githubusercontent.com/67693293/96440679-9a23ae00-1208-11eb-9fff-94786946472f.png)\r\n![image](https://user-images.githubusercontent.com/67693293/96440758-b3c4f580-1208-11eb-8911-3f3a942fdc8e.png)\r\n![image](https://user-images.githubusercontent.com/67693293/96440983-09010700-1209-11eb-95f4-f12f33a3c335.png)\r\n\nComment: Hi - can you please share the beginning of the analysis log ('Show Log') as this has the timeout written explicitly in the first line. For example: \r\n\r\n2020-05-13 09:11:32,360 [root] INFO: Date set to: 20201019T07:29:13, timeout set to: 200\r\n\r\nIt's possible jobs don't run for the full timeout by design if the processes do not last that long.\nComment: Actually on second reading this issue could be NTP changing the clock - again this is betrayed in the analysis log so if you can share the log from the Emotet job we will see what the problem is.\nComment: Yes of course\r\n\r\n![image](https://user-images.githubusercontent.com/67693293/96442377-52525600-120b-11eb-9a20-396cc92adb60.png)\r\n![image](https://user-images.githubusercontent.com/67693293/96442434-6ac27080-120b-11eb-9b67-be02595b56a9.png)\r\n![image](https://user-images.githubusercontent.com/67693293/96442471-7c0b7d00-120b-11eb-97ce-27b4612bbf63.png)\r\n\nComment: This is one log\r\n\r\n2020-04-03 18:44:28,170 [root] INFO: Date set to: 20201017T17:06:16, timeout set to: 600\r\n2020-10-17 17:06:16,359 [root] DEBUG: Starting analyzer from: C:\\tmpg6zrhvf0\r\n2020-10-17 17:06:16,390 [root] DEBUG: Storing results at: C:\\cwIOsElz\r\n2020-10-17 17:06:16,406 [root] DEBUG: Pipe server name: \\\\.\\PIPE\\KRjcvZ\r\n2020-10-17 17:06:16,437 [root] DEBUG: Python path: C:\\Users\\ama\\AppData\\Local\\Programs\\Python\\Python37-32\r\n2020-10-17 17:06:16,453 [root] INFO: Analysis package \"Unpacker\" has been specified.\r\n2020-10-17 17:06:16,484 [root] DEBUG: Trying to import analysis package \"Unpacker\"...\r\n2020-10-17 17:06:16,515 [root] DEBUG: Imported analysis package \"Unpacker\".\r\n2020-10-17 17:06:16,531 [root] DEBUG: Trying to initialize analysis package \"Unpacker\"...\r\n2020-10-17 17:06:16,546 [root] DEBUG: Initialized analysis package \"Unpacker\".\r\n2020-10-17 17:06:16,593 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.browser\"...\r\n2020-10-17 17:06:16,609 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.browser\".\r\n2020-10-17 17:06:16,640 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.curtain\"...\r\n2020-10-17 17:06:16,671 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.curtain\".\r\n2020-10-17 17:06:16,687 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.digisig\"...\r\n2020-10-17 17:06:16,718 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.digisig\".\r\n2020-10-17 17:06:16,750 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.disguise\"...\r\n2020-10-17 17:06:16,765 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.disguise\".\r\n2020-10-17 17:06:16,796 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.human\"...\r\n2020-10-17 17:06:16,828 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.human\".\r\n2020-10-17 17:06:16,843 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.screenshots\"...\r\n2020-10-17 17:06:16,859 [modules.auxiliary.screenshots] DEBUG: Importing 'time'\r\n2020-10-17 17:06:16,890 [modules.auxiliary.screenshots] DEBUG: Importing 'StringIO'\r\n2020-10-17 17:06:16,906 [modules.auxiliary.screenshots] DEBUG: Importing 'Thread'\r\n2020-10-17 17:06:16,921 [modules.auxiliary.screenshots] DEBUG: Importing 'Auxiliary'\r\n2020-10-17 17:06:16,937 [modules.auxiliary.screenshots] DEBUG: Importing 'NetlogFile'\r\n2020-10-17 17:06:16,953 [modules.auxiliary.screenshots] DEBUG: Importing 'Screenshot'\r\n2020-10-17 17:06:16,968 [lib.api.screenshot] DEBUG: Importing 'math'\r\n2020-10-17 17:06:16,984 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageChops'\r\n2020-10-17 17:06:17,000 [lib.api.screenshot] ERROR: No module named 'PIL'\r\n2020-10-17 17:06:17,015 [modules.auxiliary.screenshots] DEBUG: Imports OK\r\n2020-10-17 17:06:17,031 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.screenshots\".\r\n2020-10-17 17:06:17,062 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.usage\"...\r\n2020-10-17 17:06:17,078 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.usage\".\r\n2020-10-17 17:06:17,093 [root] DEBUG: Trying to initialize auxiliary module \"Browser\"...\r\n2020-10-17 17:06:17,109 [root] DEBUG: Initialized auxiliary module \"Browser\".\r\n2020-10-17 17:06:17,125 [root] DEBUG: Trying to start auxiliary module \"Browser\"...\r\n2020-10-17 17:06:17,156 [root] DEBUG: Started auxiliary module Browser\r\n2020-10-17 17:06:17,171 [root] DEBUG: Trying to initialize auxiliary module \"Curtain\"...\r\n2020-10-17 17:06:17,187 [root] DEBUG: Initialized auxiliary module \"Curtain\".\r\n2020-10-17 17:06:17,218 [root] DEBUG: Trying to start auxiliary module \"Curtain\"...\r\n2020-10-17 17:06:17,234 [root] DEBUG: Started auxiliary module Curtain\r\n2020-10-17 17:06:17,265 [root] DEBUG: Trying to initialize auxiliary module \"DigiSig\"...\r\n2020-10-17 17:06:17,281 [root] DEBUG: Initialized auxiliary module \"DigiSig\".\r\n2020-10-17 17:06:17,312 [root] DEBUG: Trying to start auxiliary module \"DigiSig\"...\r\n2020-10-17 17:06:17,328 [modules.auxiliary.digisig] DEBUG: Checking for a digital signature.\r\n2020-10-17 17:06:18,328 [modules.auxiliary.digisig] DEBUG: File is not signed.\r\n2020-10-17 17:06:18,359 [modules.auxiliary.digisig] INFO: Uploading signature results to aux/DigiSig.json\r\n2020-10-17 17:06:18,390 [root] DEBUG: Started auxiliary module DigiSig\r\n2020-10-17 17:06:18,406 [root] DEBUG: Trying to initialize auxiliary module \"Disguise\"...\r\n2020-10-17 17:06:18,421 [root] DEBUG: Initialized auxiliary module \"Disguise\".\r\n2020-10-17 17:06:18,437 [root] DEBUG: Trying to start auxiliary module \"Disguise\"...\r\n2020-10-17 17:06:18,468 [modules.auxiliary.disguise] INFO: Disguising GUID to ecc65841-a744-43d3-8f2a-bc533ae8e673\r\n2020-10-17 17:06:18,484 [root] DEBUG: Started auxiliary module Disguise\r\n2020-10-17 17:06:18,500 [root] DEBUG: Trying to initialize auxiliary module \"Human\"...\r\n2020-10-17 17:06:18,515 [root] DEBUG: Initialized auxiliary module \"Human\".\r\n2020-10-17 17:06:18,531 [root] DEBUG: Trying to start auxiliary module \"Human\"...\r\n2020-10-17 17:06:18,640 [root] DEBUG: Started auxiliary module Human\r\n2020-10-17 17:06:18,671 [root] DEBUG: Trying to initialize auxiliary module \"Screenshots\"...\r\n2020-10-17 17:06:18,687 [root] DEBUG: Initialized auxiliary module \"Screenshots\".\r\n2020-10-17 17:06:18,718 [root] DEBUG: Trying to start auxiliary module \"Screenshots\"...\r\n2020-10-17 17:06:18,750 [modules.auxiliary.screenshots] WARNING: Python Image Library is not installed, screenshots are disabled\r\n2020-10-17 17:06:18,765 [root] DEBUG: Started auxiliary module Screenshots\r\n2020-10-17 17:06:18,828 [root] DEBUG: Trying to initialize auxiliary module \"Usage\"...\r\n2020-10-17 17:06:18,859 [root] DEBUG: Initialized auxiliary module \"Usage\".\r\n2020-10-17 17:06:18,875 [root] DEBUG: Trying to start auxiliary module \"Usage\"...\r\n2020-10-17 17:06:18,906 [root] DEBUG: Started auxiliary module Usage\r\n2020-10-17 17:06:18,921 [root] INFO: Analyzer: Package modules.packages.Unpacker does not specify a DLL option\r\n2020-10-17 17:06:18,953 [root] INFO: Analyzer: Package modules.packages.Unpacker does not specify a DLL_64 option\r\n2020-10-17 17:06:18,984 [root] INFO: Analyzer: Package modules.packages.Unpacker does not specify a loader option\r\n2020-10-17 17:06:19,015 [root] INFO: Analyzer: Package modules.packages.Unpacker does not specify a loader_64 option\r\n2020-10-17 17:06:19,125 [lib.api.process] INFO: Successfully executed process from path \"C:\\Users\\ama\\AppData\\Local\\Temp\\ieC5pFaYe.exe\" with arguments \"\" with pid 3572\r\n2020-10-17 17:06:19,140 [lib.api.process] INFO: Monitor config for process 3572: C:\\tmpg6zrhvf0\\dll\\3572.ini\r\n2020-10-17 17:06:19,187 [lib.api.process] INFO: Option 'procmemdump' with value '1' sent to monitor\r\n2020-10-17 17:06:19,218 [lib.api.process] INFO: Option 'procdump' with value '0' sent to monitor\r\n2020-10-17 17:06:19,234 [lib.api.process] INFO: Option 'import_reconstruction' with value '1' sent to monitor\r\n2020-10-17 17:06:19,265 [lib.api.process] INFO: Option 'unpacker' with value '1' sent to monitor\r\n2020-10-17 17:06:19,296 [lib.api.process] INFO: Option 'injection' with value '0' sent to monitor\r\n2020-10-17 17:06:19,312 [lib.api.process] INFO: 32-bit DLL to inject is C:\\tmpg6zrhvf0\\dll\\qsKCWVs.dll, loader C:\\tmpg6zrhvf0\\bin\\DOqaIDt.exe\r\n2020-10-17 17:06:19,468 [root] DEBUG: ReadConfig: Successfully loaded pipe name \\\\.\\PIPE\\KRjcvZ.\r\n2020-10-17 17:06:19,515 [root] DEBUG: Loader: Injecting process 3572 (thread 3908) with C:\\tmpg6zrhvf0\\dll\\qsKCWVs.dll.\r\n2020-10-17 17:06:19,593 [root] DEBUG: Process image base: 0x00400000\r\n2020-10-17 17:06:19,609 [root] DEBUG: InjectDllViaIAT: IAT patching with dll name C:\\tmpg6zrhvf0\\dll\\qsKCWVs.dll.\r\n2020-10-17 17:06:19,656 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\r\n2020-10-17 17:06:19,671 [root] DEBUG: Successfully injected DLL C:\\tmpg6zrhvf0\\dll\\qsKCWVs.dll.\r\n2020-10-17 17:06:19,703 [lib.api.process] INFO: Injected into suspended 32-bit process with pid 3572\r\n2020-10-17 17:06:21,718 [lib.api.process] INFO: Successfully resumed process with pid 3572\r\n2020-10-17 17:06:21,843 [root] DEBUG: Python path set to 'C:\\Users\\ama\\AppData\\Local\\Programs\\Python\\Python37-32'.\r\n2020-10-17 17:06:21,875 [root] DEBUG: Full process memory dumps enabled.\r\n2020-10-17 17:06:21,906 [root] DEBUG: Process dumps disabled.\r\n2020-10-17 17:06:21,921 [root] DEBUG: Import reconstruction of process dumps enabled.\r\n2020-10-17 17:06:21,953 [root] DEBUG: Auto-unpacking of payloads enabled.\r\n2020-10-17 17:06:21,984 [root] DEBUG: Dropped file limit defaulting to 100.\r\n2020-10-17 17:06:22,015 [root] DEBUG: RestoreHeaders: Restored original import table.\r\n2020-10-17 17:06:22,046 [root] DEBUG: CAPE initialised: 32-bit monitor loaded in process 3572 at 0x725b0000, image base 0x400000, stack from 0x186000-0x190000\r\n2020-10-17 17:06:22,062 [root] DEBUG: Commandline: C:\\Users\\ama\\AppData\\Local\\Temp\\\"C:\\Users\\ama\\AppData\\Local\\Temp\\ieC5pFaYe.exe\".\r\n2020-10-17 17:06:22,109 [root] DEBUG: WoW64 detected: 64-bit ntdll base: 0x77490000, KiUserExceptionDispatcher: 0x0, NtSetContextThread: 0x774e124a, Wow64PrepareForException: 0x0\r\n2020-10-17 17:06:22,140 [root] INFO: Disabling sleep skipping.\r\n2020-10-17 17:06:22,171 [root] INFO: Disabling sleep skipping.\r\n2020-10-17 17:06:22,187 [root] INFO: Disabling sleep skipping.\r\n2020-10-17 17:06:22,203 [root] INFO: Disabling sleep skipping.\r\n2020-10-17 17:06:22,234 [root] DEBUG: WoW64 workaround: KiUserExceptionDispatcher hook installed at: 0x230000\r\n2020-10-17 17:06:22,265 [root] DEBUG: UnpackerInit: Debugger initialised.\r\n2020-10-17 17:06:22,296 [root] DEBUG: AddTrackedRegion: Created new tracked region for address 0x00400000.\r\n2020-10-17 17:06:22,328 [root] DEBUG: AddTrackedRegion: New region at 0x00400000 size 0x1000 added to tracked regions: EntryPoint 0x10c4, Entropy 5.928280e+00\r\n2020-10-17 17:06:22,359 [root] DEBUG: UnpackerInit: Adding main image base to tracked regions.\r\n2020-10-17 17:06:22,390 [root] INFO: Loaded monitor into process with pid 3572\r\n2020-10-17 17:06:22,437 [root] DEBUG: DLL loaded at 0x72690000: C:\\Windows\\system32\\uxtheme (0x80000 bytes).\r\n2020-10-17 17:06:22,468 [root] DEBUG: DLL unloaded from 0x72690000.\r\n2020-10-17 17:06:22,500 [root] DEBUG: ProcessTrackedRegions: Processing region at 0x00000000.\r\n2020-10-17 17:06:22,515 [root] DEBUG: ProcessTrackedRegions: Processing region at 0x00400000.\r\n2020-10-17 17:06:22,546 [root] DEBUG: ProcessImageBase: EP 0x000010C4 image base 0x00400000 size 0x0 entropy 5.928280e+00.\r\n2020-10-17 17:06:22,578 [root] DEBUG: ProtectionHandler: Adding region at 0x00240000 to tracked regions.\r\n2020-10-17 17:06:22,609 [root] DEBUG: AddTrackedRegion: Created new tracked region for address 0x00240000.\r\n2020-10-17 17:06:22,625 [root] DEBUG: AddTrackedRegion: New region at 0x00240000 size 0x6000 added to tracked regions.\r\n2020-10-17 17:06:22,640 [root] DEBUG: ProtectionHandler: Address: 0x00240000 (alloc base 0x00240000), NumberOfBytesToProtect: 0x6000, NewAccessProtection: 0x20\r\n2020-10-17 17:06:22,671 [root] DEBUG: ProtectionHandler: New code detected at (0x00240000), scanning for PE images.\r\n2020-10-17 17:06:22,687 [root] DEBUG: DumpPEsInRange: Scanning range 0x240000 - 0x246000.\r\n2020-10-17 17:06:22,703 [root] DEBUG: ScanForDisguisedPE: No PE image located in range 0x240000-0x246000.\r\n2020-10-17 17:06:22,734 [root] DEBUG: DumpPEsInTrackedRegion: No PE images found in range range 0x00240000 - 0x00246000.\r\n2020-10-17 17:06:22,890 [root] DEBUG: DumpMemory: CAPE output file successfully created: C:\\cwIOsElz\\CAPE\\3572_5216663422615176102020 (size 0x5162)\r\n2020-10-17 17:06:22,906 [root] DEBUG: ProtectionHandler: dumped memory (sub)region at 0x00240000, size 0x6000\r\n2020-10-17 17:06:22,953 [root] DEBUG: DLL loaded at 0x72AC0000: C:\\Windows\\system32\\SXS (0x5f000 bytes).\r\n2020-10-17 17:06:23,000 [root] DEBUG: ProtectionHandler: Address 0x00240000 already in tracked region at 0x00240000, size 0x6000\r\n2020-10-17 17:06:23,031 [root] DEBUG: ProtectionHandler: Address: 0x00240000 (alloc base 0x00240000), NumberOfBytesToProtect: 0xa000, NewAccessProtection: 0x20\r\n2020-10-17 17:06:23,046 [root] DEBUG: ProtectionHandler: Increased region size at 0x00240000 to 0xa000.\r\n2020-10-17 17:06:23,062 [root] DEBUG: ProtectionHandler: New code detected at (0x00240000), scanning for PE images.\r\n2020-10-17 17:06:23,093 [root] DEBUG: DumpPEsInRange: Scanning range 0x240000 - 0x24a000.\r\n2020-10-17 17:06:23,125 [root] DEBUG: ScanForDisguisedPE: No PE image located in range 0x240000-0x24a000.\r\n2020-10-17 17:06:23,140 [root] DEBUG: DumpPEsInTrackedRegion: No PE images found in range range 0x00240000 - 0x0024A000.\r\n2020-10-17 17:06:23,265 [root] DEBUG: DumpMemory: CAPE output file successfully created: C:\\cwIOsElz\\CAPE\\3572_48649663623615176102020 (size 0x9601)\r\n2020-10-17 17:06:23,296 [root] DEBUG: ProtectionHandler: dumped memory (sub)region at 0x00240000, size 0xa000\r\n2020-10-17 17:06:23,359 [root] DEBUG: DLL loaded at 0x74090000: C:\\Windows\\system32\\CRYPTSP (0x16000 bytes).\r\n2020-10-17 17:06:23,390 [root] DEBUG: DLL loaded at 0x74050000: C:\\Windows\\system32\\rsaenh (0x3b000 bytes).\r\n2020-10-17 17:06:23,453 [root] DEBUG: DLL loaded at 0x72590000: C:\\Windows\\system32\\dwmapi (0x13000 bytes).\r\n2020-10-17 17:06:31,187 [root] DEBUG: Allocation: 0x00480000 - 0x00487000, size: 0x7000, protection: 0x40.\r\n2020-10-17 17:06:31,203 [root] DEBUG: ProcessTrackedRegions: Processing region at 0x00000000.\r\n2020-10-17 17:06:31,234 [root] DEBUG: ProcessTrackedRegions: Processing region at 0x00400000.\r\n2020-10-17 17:06:31,265 [root] DEBUG: ProcessImageBase: EP 0x000010C4 image base 0x00400000 size 0x0 entropy -nan(ind).\r\n2020-10-17 17:06:31,296 [root] DEBUG: ProcessTrackedRegions: Processing region at 0x00240000.\r\n2020-10-17 17:06:31,328 [root] DEBUG: AllocationHandler: Adding allocation to tracked region list: 0x00480000, size: 0x7000.\r\n2020-10-17 17:06:31,359 [root] DEBUG: AddTrackedRegion: Created new tracked region for address 0x00480000.\r\n2020-10-17 17:06:31,375 [root] DEBUG: AddTrackedRegion: New region at 0x00480000 size 0x7000 added to tracked regions.\r\n2020-10-17 17:06:31,406 [root] DEBUG: ActivateBreakpoints: TrackedRegion->AllocationBase: 0x00480000, TrackedRegion->RegionSize: 0x7000, thread 3908\r\n2020-10-17 17:06:31,421 [root] DEBUG: ActivateBreakpoints: Set write breakpoint on empty protect address: 0x00480000\r\n2020-10-17 17:06:31,453 [root] DEBUG: ActivateBreakpoints: Set write breakpoint on e_lfanew address: 0x0048003C\r\n2020-10-17 17:06:31,468 [root] DEBUG: AllocationHandler: Breakpoints set on newly-allocated executable region at: 0x00480000 (size 0x7000).\r\n2020-10-17 17:06:31,484 [root] DEBUG: CAPEExceptionFilter: breakpoint hit by instruction at 0x00402487 (thread 3908)\r\n2020-10-17 17:06:31,515 [root] DEBUG: BaseAddressWriteCallback: Breakpoint 0 at Address 0x00480000.\r\n2020-10-17 17:06:31,531 [root] DEBUG: BaseAddressWriteCallback: byte written to 0x480000: 0x81.\r\n2020-10-17 17:06:31,562 [root] DEBUG: BaseAddressWriteCallback: Exec bp set on tracked region protect address.\r\n2020-10-17 17:06:31,578 [root] DEBUG: CAPEExceptionFilter: breakpoint hit by instruction at 0x00402487 (thread 3908)\r\n2020-10-17 17:06:31,609 [root] DEBUG: PEPointerWriteCallback: Breakpoint 1 at Address 0x0048003C.\r\n2020-10-17 17:06:31,625 [root] DEBUG: PEPointerWriteCallback: candidate pointer to PE header too big: 0xba590000 (at 0x0048003C).\r\n2020-10-17 17:06:31,640 [root] DEBUG: PEPointerWriteCallback: set write bp on AddressOfEntryPoint at 0x00480000.\r\n2020-10-17 17:06:31,703 [root] DEBUG: CAPEExceptionFilter: breakpoint hit by instruction at 0x00480000 (thread 3908)\r\n2020-10-17 17:06:31,718 [root] DEBUG: ShellcodeExecCallback: Breakpoint 2 at Address 0x00480000 (allocation base 0x00480000).\r\n2020-10-17 17:06:31,718 [root] DEBUG: ClearBreakpointsInRange: Clearing breakpoints in range 0x480000 - 0x487000.\r\n2020-10-17 17:06:31,718 [root] DEBUG: ClearBreakpointsInRange: Clearing breakpoint 0 address 0x00480000.\r\n2020-10-17 17:06:31,718 [root] DEBUG: ClearBreakpointsInRange: Clearing breakpoint 1 address 0x0048003C.\r\n2020-10-17 17:06:31,734 [root] DEBUG: ClearBreakpointsInRange: Clearing breakpoint 2 address 0x00480000.\r\n2020-10-17 17:06:31,734 [root] DEBUG: ShellcodeExecCallback: About to scan region for a PE image (base 0x00480000, size 0x7000).\r\n2020-10-17 17:06:31,750 [root] DEBUG: DumpPEsInRange: Scanning range 0x480000 - 0x487000.\r\n2020-10-17 17:06:31,750 [root] DEBUG: ScanForDisguisedPE: No PE image located in range 0x480000-0x487000.\r\n2020-10-17 17:06:31,812 [root] DEBUG: DumpMemory: CAPE output file successfully created: C:\\cwIOsElz\\CAPE\\3572_69815814531616176102020 (size 0x2fb0)\r\n2020-10-17 17:06:31,843 [root] DEBUG: ShellcodeExecCallback: successfully dumped memory range at 0x00480000 (size 0x7000).\r\n2020-10-17 17:06:31,859 [root] DEBUG: set_caller_info: Adding region at 0x00480000 to caller regions list (ntdll::LdrLoadDll).\r\n2020-10-17 17:06:31,890 [root] DEBUG: DLL loaded at 0x75BF0000: C:\\Windows\\syswow64\\shell32 (0xc4a000 bytes).\r\n2020-10-17 17:06:31,968 [root] INFO: Announced 32-bit process name: RegAsm.exe pid: 2524\r\n2020-10-17 17:06:31,968 [lib.api.process] INFO: Monitor config for process 2524: C:\\tmpg6zrhvf0\\dll\\2524.ini\r\n2020-10-17 17:06:31,968 [lib.api.process] INFO: Option 'procmemdump' with value '1' sent to monitor\r\n2020-10-17 17:06:31,984 [lib.api.process] INFO: Option 'procdump' with value '0' sent to monitor\r\n2020-10-17 17:06:31,984 [lib.api.process] INFO: Option 'import_reconstruction' with value '1' sent to monitor\r\n2020-10-17 17:06:31,984 [lib.api.process] INFO: Option 'unpacker' with value '1' sent to monitor\r\n2020-10-17 17:06:31,984 [lib.api.process] INFO: Option 'injection' with value '0' sent to monitor\r\n2020-10-17 17:06:31,984 [lib.api.process] INFO: 32-bit DLL to inject is C:\\tmpg6zrhvf0\\dll\\qsKCWVs.dll, loader C:\\tmpg6zrhvf0\\bin\\DOqaIDt.exe\r\n2020-10-17 17:06:32,015 [root] DEBUG: ReadConfig: Successfully loaded pipe name \\\\.\\PIPE\\KRjcvZ.\r\n2020-10-17 17:06:32,031 [root] DEBUG: Loader: Injecting process 2524 (thread 3596) with C:\\tmpg6zrhvf0\\dll\\qsKCWVs.dll.\r\n2020-10-17 17:06:32,031 [root] DEBUG: Process image base: 0x01180000\r\n2020-10-17 17:06:32,031 [root] DEBUG: InjectDllViaIAT: Executable is .NET, injecting via queued APC.\r\n2020-10-17 17:06:32,046 [root] DEBUG: InjectDllViaQueuedAPC: APC injection queued.\r\n2020-10-17 17:06:32,062 [root] DEBUG: Successfully injected DLL C:\\tmpg6zrhvf0\\dll\\qsKCWVs.dll.\r\n2020-10-17 17:06:32,078 [lib.api.process] INFO: Injected into suspended 32-bit process with pid 2524\r\n2020-10-17 17:06:32,125 [root] DEBUG: DLL loaded at 0x73F00000: C:\\Windows\\system32\\apphelp (0x4c000 bytes).\r\n2020-10-17 17:06:32,171 [root] INFO: Announced 32-bit process name: RegAsm.exe pid: 2524\r\n2020-10-17 17:06:32,187 [lib.api.process] INFO: Monitor config for process 2524: C:\\tmpg6zrhvf0\\dll\\2524.ini\r\n2020-10-17 17:06:32,187 [lib.api.process] INFO: Option 'procmemdump' with value '1' sent to monitor\r\n2020-10-17 17:06:32,203 [lib.api.process] INFO: Option 'procdump' with value '0' sent to monitor\r\n2020-10-17 17:06:32,203 [lib.api.process] INFO: Option 'import_reconstruction' with value '1' sent to monitor\r\n2020-10-17 17:06:32,203 [lib.api.process] INFO: Option 'unpacker' with value '1' sent to monitor\r\n2020-10-17 17:06:32,203 [lib.api.process] INFO: Option 'injection' with value '0' sent to monitor\r\n2020-10-17 17:06:32,203 [lib.api.process] INFO: 32-bit DLL to inject is C:\\tmpg6zrhvf0\\dll\\qsKCWVs.dll, loader C:\\tmpg6zrhvf0\\bin\\DOqaIDt.exe\r\n2020-10-17 17:06:32,249 [root] DEBUG: ReadConfig: Successfully loaded pipe name \\\\.\\PIPE\\KRjcvZ.\r\n2020-10-17 17:06:32,265 [root] DEBUG: Loader: Injecting process 2524 (thread 3596) with C:\\tmpg6zrhvf0\\dll\\qsKCWVs.dll.\r\n2020-10-17 17:06:32,265 [root] DEBUG: Process image base: 0x01180000\r\n2020-10-17 17:06:32,265 [root] DEBUG: InjectDllViaIAT: Executable is .NET, injecting via queued APC.\r\n2020-10-17 17:06:32,281 [root] DEBUG: InjectDllViaQueuedAPC: APC injection queued.\r\n2020-10-17 17:06:32,296 [root] DEBUG: Successfully injected DLL C:\\tmpg6zrhvf0\\dll\\qsKCWVs.dll.\r\n2020-10-17 17:06:32,296 [lib.api.process] INFO: Injected into suspended 32-bit process with pid 2524\r\n2020-10-17 17:06:32,312 [root] INFO: Announced 32-bit process name: RegAsm.exe pid: 2524\r\n2020-10-17 17:06:32,328 [lib.api.process] INFO: Monitor config for process 2524: C:\\tmpg6zrhvf0\\dll\\2524.ini\r\n2020-10-17 17:06:32,328 [lib.api.process] INFO: Option 'procmemdump' with value '1' sent to monitor\r\n2020-10-17 17:06:32,328 [lib.api.process] INFO: Option 'procdump' with value '0' sent to monitor\r\n2020-10-17 17:06:32,328 [lib.api.process] INFO: Option 'import_reconstruction' with value '1' sent to monitor\r\n2020-10-17 17:06:32,328 [lib.api.process] INFO: Option 'unpacker' with value '1' sent to monitor\r\n2020-10-17 17:06:32,328 [lib.api.process] INFO: Option 'injection' with value '0' sent to monitor\r\n2020-10-17 17:06:32,328 [lib.api.process] INFO: 32-bit DLL to inject is C:\\tmpg6zrhvf0\\dll\\qsKCWVs.dll, loader C:\\tmpg6zrhvf0\\bin\\DOqaIDt.exe\r\n2020-10-17 17:06:32,343 [root] DEBUG: ReadConfig: Successfully loaded pipe name \\\\.\\PIPE\\KRjcvZ.\r\n2020-10-17 17:06:32,375 [root] DEBUG: Loader: Injecting process 2524 (thread 0) with C:\\tmpg6zrhvf0\\dll\\qsKCWVs.dll.\r\n2020-10-17 17:06:32,390 [root] DEBUG: InjectDll: No thread ID supplied. Initial thread ID 3596, handle 0xb0\r\n2020-10-17 17:06:32,421 [root] DEBUG: Process image base: 0x01180000\r\n2020-10-17 17:06:32,421 [root] DEBUG: InjectDllViaIAT: Executable is .NET, injecting via queued APC.\r\n2020-10-17 17:06:32,421 [root] DEBUG: InjectDllViaQueuedAPC: APC injection queued.\r\n2020-10-17 17:06:32,421 [root] DEBUG: Successfully injected DLL C:\\tmpg6zrhvf0\\dll\\qsKCWVs.dll.\r\n2020-10-17 17:06:32,437 [lib.api.process] INFO: Injected into suspended 32-bit process with pid 2524\r\n2020-10-17 17:06:32,453 [root] INFO: Announced 32-bit process name: RegAsm.exe pid: 2524\r\n2020-10-17 17:06:32,453 [lib.api.process] INFO: Monitor config for process 2524: C:\\tmpg6zrhvf0\\dll\\2524.ini\r\n2020-10-17 17:06:32,453 [lib.api.process] INFO: Option 'procmemdump' with value '1' sent to monitor\r\n2020-10-17 17:06:32,453 [lib.api.process] INFO: Option 'procdump' with value '0' sent to monitor\r\n2020-10-17 17:06:32,453 [lib.api.process] INFO: Option 'import_reconstruction' with value '1' sent to monitor\r\n2020-10-17 17:06:32,468 [lib.api.process] INFO: Option 'unpacker' with value '1' sent to monitor\r\n2020-10-17 17:06:32,468 [lib.api.process] INFO: Option 'injection' with value '0' sent to monitor\r\n2020-10-17 17:06:32,468 [lib.api.process] INFO: 32-bit DLL to inject is C:\\tmpg6zrhvf0\\dll\\qsKCWVs.dll, loader C:\\tmpg6zrhvf0\\bin\\DOqaIDt.exe\r\n2020-10-17 17:06:32,515 [root] DEBUG: ReadConfig: Successfully loaded pipe name \\\\.\\PIPE\\KRjcvZ.\r\n2020-10-17 17:06:32,546 [root] DEBUG: Loader: Injecting process 2524 (thread 0) with C:\\tmpg6zrhvf0\\dll\\qsKCWVs.dll.\r\n2020-10-17 17:06:32,546 [root] DEBUG: InjectDll: No thread ID supplied. Initial thread ID 3596, handle 0xb0\r\n2020-10-17 17:06:32,562 [root] DEBUG: Process image base: 0x01180000\r\n2020-10-17 17:06:32,578 [root] DEBUG: InjectDllViaIAT: Executable is .NET, injecting via queued APC.\r\n2020-10-17 17:06:32,593 [root] DEBUG: InjectDllViaQueuedAPC: APC injection queued.\r\n2020-10-17 17:06:32,609 [root] DEBUG: Successfully injected DLL C:\\tmpg6zrhvf0\\dll\\qsKCWVs.dll.\r\n2020-10-17 17:06:32,625 [lib.api.process] INFO: Injected into suspended 32-bit process with pid 2524\r\n2020-10-17 17:06:32,640 [root] INFO: Announced 32-bit process name: RegAsm.exe pid: 2524\r\n2020-10-17 17:06:32,640 [lib.api.process] INFO: Monitor config for process 2524: C:\\tmpg6zrhvf0\\dll\\2524.ini\r\n2020-10-17 17:06:32,640 [lib.api.process] INFO: Option 'procmemdump' with value '1' sent to monitor\r\n2020-10-17 17:06:32,640 [lib.api.process] INFO: Option 'procdump' with value '0' sent to monitor\r\n2020-10-17 17:06:32,640 [lib.api.process] INFO: Option 'import_reconstruction' with value '1' sent to monitor\r\n2020-10-17 17:06:32,640 [lib.api.process] INFO: Option 'unpacker' with value '1' sent to monitor\r\n2020-10-17 17:06:32,640 [lib.api.process] INFO: Option 'injection' with value '0' sent to monitor\r\n2020-10-17 17:06:32,640 [lib.api.process] INFO: 32-bit DLL to inject is C:\\tmpg6zrhvf0\\dll\\qsKCWVs.dll, loader C:\\tmpg6zrhvf0\\bin\\DOqaIDt.exe\r\n2020-10-17 17:06:32,687 [root] DEBUG: ReadConfig: Successfully loaded pipe name \\\\.\\PIPE\\KRjcvZ.\r\n2020-10-17 17:06:32,687 [root] DEBUG: Loader: Injecting process 2524 (thread 3596) with C:\\tmpg6zrhvf0\\dll\\qsKCWVs.dll.\r\n2020-10-17 17:06:32,687 [root] DEBUG: Process image base: 0x01180000\r\n2020-10-17 17:06:32,687 [root] DEBUG: InjectDllViaIAT: Executable is .NET, injecting via queued APC.\r\n2020-10-17 17:06:32,687 [root] DEBUG: InjectDllViaQueuedAPC: APC injection queued.\r\n2020-10-17 17:06:32,687 [root] DEBUG: Successfully injected DLL C:\\tmpg6zrhvf0\\dll\\qsKCWVs.dll.\r\n2020-10-17 17:06:32,687 [lib.api.process] INFO: Injected into suspended 32-bit process with pid 2524\r\n2020-10-17 17:06:32,796 [root] DEBUG: Python path set to 'C:\\Users\\ama\\AppData\\Local\\Programs\\Python\\Python37-32'.\r\n2020-10-17 17:06:32,812 [root] DEBUG: Full process memory dumps enabled.\r\n2020-10-17 17:06:32,812 [root] DEBUG: Process dumps disabled.\r\n2020-10-17 17:06:32,812 [root] DEBUG: Import reconstruction of process dumps enabled.\r\n2020-10-17 17:06:32,812 [root] DEBUG: Auto-unpacking of payloads enabled.\r\n2020-10-17 17:06:32,812 [root] DEBUG: Dropped file limit defaulting to 100.\r\n2020-10-17 17:06:32,828 [root] INFO: Disabling sleep skipping.\r\n2020-10-17 17:06:32,843 [root] DEBUG: CAPE initialised: 32-bit monitor loaded in process 2524 at 0x725b0000, image base 0x1180000, stack from 0x2e5000-0x2f0000\r\n2020-10-17 17:06:32,859 [root] DEBUG: Commandline: C:\\Users\\ama\\AppData\\Local\\Temp\\\"C:\\Users\\ama\\AppData\\Local\\Temp\\ieC5pFaYe.exe\".\r\n2020-10-17 17:06:32,906 [root] DEBUG: WoW64 detected: 64-bit ntdll base: 0x77490000, KiUserExceptionDispatcher: 0x0, NtSetContextThread: 0x774e124a, Wow64PrepareForException: 0x0\r\n2020-10-17 17:06:32,906 [root] DEBUG: WoW64 workaround: KiUserExceptionDispatcher hook installed at: 0x1e0000\r\n2020-10-17 17:06:32,921 [root] DEBUG: UnpackerInit: Debugger initialised.\r\n2020-10-17 17:06:32,921 [root] DEBUG: AddTrackedRegion: Created new tracked region for address 0x01180000.\r\n2020-10-17 17:06:32,937 [root] DEBUG: set_caller_info: Adding region at 0x00090000 to caller regions list (ntdll::RtlDispatchException).\r\n2020-10-17 17:06:32,937 [root] DEBUG: CAPEExceptionFilter: Exception 0xc0000005 caught at RVA 0x1b74 in capemon caught accessing 0x1181000 (expected in memory scans), passing to next handler.\r\n2020-10-17 17:06:32,937 [root] DEBUG: GetEntropy: Exception occured attempting to get PE entropy at 0x01181000\r\n2020-10-17 17:06:32,953 [root] DEBUG: AddTrackedRegion: GetEntropy failed.\r\n2020-10-17 17:06:32,968 [root] DEBUG: AddTrackedRegion: New region at 0x01180000 size 0x1000 added to tracked regions: EntryPoint 0x713c7cef, Entropy 0.000000e+00\r\n2020-10-17 17:06:32,968 [root] DEBUG: UnpackerInit: Adding main image base to tracked regions.\r\n2020-10-17 17:06:32,968 [root] INFO: Loaded monitor into process with pid 2524\r\n2020-10-17 17:06:32,984 [root] DEBUG: set_caller_info: Adding region at 0x000E0000 to caller regions list (ntdll::LdrLoadDll).\r\n2020-10-17 17:06:33,000 [root] DEBUG: DLL loaded at 0x006E0000: C:\\tmpg6zrhvf0\\dll\\qsKCWVs (0xd6000 bytes).\r\n2020-10-17 17:06:33,000 [root] DEBUG: DLL unloaded from 0x75230000.\r\n2020-10-17 17:06:33,000 [root] DEBUG: DLL unloaded from 0x741B0000.\r\n2020-10-17 17:06:33,000 [root] DEBUG: DLL unloaded from 0x75230000.\r\n2020-10-17 17:06:33,015 [root] DEBUG: DLL unloaded from 0x006E0000.\r\n2020-10-17 17:06:33,031 [root] DEBUG: set_caller_info: Adding region at 0x000F0000 to caller regions list (ntdll::LdrLoadDll).\r\n2020-10-17 17:06:33,046 [root] DEBUG: DLL loaded at 0x006E0000: C:\\tmpg6zrhvf0\\dll\\qsKCWVs (0xd6000 bytes).\r\n2020-10-17 17:06:33,062 [root] DEBUG: DLL unloaded from 0x75230000.\r\n2020-10-17 17:06:33,062 [root] DEBUG: DLL unloaded from 0x741B0000.\r\n2020-10-17 17:06:33,062 [root] DEBUG: DLL unloaded from 0x75230000.\r\n2020-10-17 17:06:33,078 [root] DEBUG: DLL unloaded from 0x006E0000.\r\n2020-10-17 17:06:33,093 [root] DEBUG: set_caller_info: Adding region at 0x00100000 to caller regions list (ntdll::LdrLoadDll).\r\n2020-10-17 17:06:33,093 [root] DEBUG: DLL loaded at 0x006E0000: C:\\tmpg6zrhvf0\\dll\\qsKCWVs (0xd6000 bytes).\r\n2020-10-17 17:06:33,109 [root] DEBUG: DLL unloaded from 0x75230000.\r\n2020-10-17 17:06:33,125 [root] DEBUG: DLL unloaded from 0x741B0000.\r\n2020-10-17 17:06:33,125 [root] DEBUG: DLL unloaded from 0x75230000.\r\n2020-10-17 17:06:33,125 [root] DEBUG: DLL unloaded from 0x006E0000.\r\n2020-10-17 17:06:33,125 [root] DEBUG: set_caller_info: Adding region at 0x00110000 to caller regions list (ntdll::LdrLoadDll).\r\n2020-10-17 17:06:33,140 [root] DEBUG: DLL loaded at 0x006E0000: C:\\tmpg6zrhvf0\\dll\\qsKCWVs (0xd6000 bytes).\r\n2020-10-17 17:06:33,156 [root] DEBUG: DLL unloaded from 0x75230000.\r\n2020-10-17 17:06:33,156 [root] DEBUG: DLL unloaded from 0x741B0000.\r\n2020-10-17 17:06:33,171 [root] DEBUG: DLL unloaded from 0x75230000.\r\n2020-10-17 17:06:33,187 [root] DEBUG: DLL unloaded from 0x006E0000.\r\n2020-10-17 17:06:33,187 [root] DEBUG: set_caller_info: Adding region at 0x002F0000 to caller regions list (ntdll::LdrLoadDll).\r\n2020-10-17 17:06:33,203 [root] DEBUG: RtlDispatchException: Unhandled exception! Address 0x002F18FD, code 0xc0000005, flags 0x0, parameters 0x0 and 0x22d3800.\r\n2020-10-17 17:06:33,718 [root] INFO: Added new file to list with pid None and path C:\\Users\\ama\\AppData\\Local\\Temp\\~DFFCB3F12AE98C8A7A.TMP\r\n2020-10-17 19:06:40,404 [root] INFO: Analysis timeout hit, terminating analysis.\r\n2020-10-17 19:06:40,482 [lib.api.process] ERROR: Failed to open terminate event for pid 3572\r\n2020-10-17 19:06:40,482 [root] INFO: Terminate event set for process 3572.\r\n2020-10-17 19:06:40,482 [lib.api.process] ERROR: Failed to open terminate event for pid 2524\r\n2020-10-17 19:06:40,482 [root] INFO: Terminate event set for process 2524.\r\n2020-10-17 19:06:40,482 [root] INFO: Created shutdown mutex.\r\n2020-10-17 19:06:41,560 [root] INFO: Shutting down package.\r\n2020-10-17 19:06:42,170 [lib.api.process] ERROR: Unable to dump 64-bit process with pid 3572, error: 4294967286\r\n2020-10-17 19:06:42,654 [lib.api.process] ERROR: Unable to dump 64-bit process with pid 2524, error: 4294967286\r\n2020-10-17 19:06:42,654 [root] INFO: Stopping auxiliary modules.\r\n2020-10-17 19:06:43,013 [root] INFO: Finishing auxiliary modules.\r\n2020-10-17 19:06:43,029 [root] INFO: Shutting down pipe server and dumping dropped files.\r\n2020-10-17 19:06:43,029 [root] WARNING: Folder at path \"C:\\cwIOsElz\\debugger\" does not exist, skip.\r\n2020-10-17 19:06:43,045 [root] INFO: Analysis completed.\nComment: Yep classic NTP! You can see the clock shift by 2 hours in the middle just before the job ends! 2 secs while I find the fix.\nComment: Run this in the vm, then reboot and resnapshot:\r\n\r\nreg add \"HKLM\\SYSTEM\\CurrentControlSet\\Services\\W32Time\\Parameters\" /v LocalNTP /t REG_DWORD /d 0 /f\nComment: Perfect! I add it and run again! Thank you very much for the help and for answering so quickly !!\nComment: My pleasure :-) Hope it works for you, let me know if any problems!\nComment: check choco.bat that linked to readme, about vm preparation, that registry is inside\nComment: Thank you very much!! The problem is solved! Now CAPE works great and i get the information I need!\r\n\r\nTo finish I have a doubt. I want to migrate this new version to production, but I want to do a backup of Cape in case something goes wrong. I know I have to copy cuckoo.db, export mongo database and copy the \"storage\" directory. Should I do anything else?\r\n\nComment: database and storage are useless in this case, that only needed if you want to keep data of CURRENT analysis, so just save the vm to use as base vm and do the rest\nComment: y si vais por el norte podeis invitar unas cervezas ;) \nComment: jajajaja eso esta hecho!! Si subo cuando pase la pandemia no lo dudes jajaja \r\n\r\nY muchas gracias por todo!!\nComment: de nada, pa eso estamos",
+  "Title: Add Hancitor config extractor\nBody: Decrypts and parses the embedded controllers and campaign/build id from an unpacked Hancitor/Chanitor sample.\nComment: THANK YOU!",
+  "Title: Add TTPs into CAPE sigs\nBody: ",
+  "Title: Make CAPE work with FOG 1.5.9\nBody: I edited physical.conf to reflect which settings FOG 1.5.9 needs (especially the API Keys) and edited physical.py accordingly to not rely on HTML parsing anymore but use the API instead. Here is a complete tutorial:\r\n\r\nhttps://mariohenkel.medium.com/using-cape-sandbox-and-fog-to-analyze-malware-on-physical-machines-4dda328d4e2c?source=friends_link&sk=fa7e6be3043697bfcc2decc01ea09443\r\n\r\nTested that it works within a full virtual environment (FOG doesn't care if it images a VM or a physical machine) and also with a physical machine (Intel NUC).\r\n\r\nThere was also some bugs in multi.py which popped up when using \"multi\" as machinery.\nComment: wow thanks for this <33333\r\n\r\ncan you fix this?\r\n\r\n```\r\nRun # stop the build if there are Python syntax errors or undefined names\r\n./modules/machinery/physical.py:293:26: F821 undefined name 'struct'\r\n            send_data += struct.pack(b'B', int(data[i: i + 2], 16))\r\n                         ^\r\n1     F821 undefined name 'struct'\r\n\r\n```\r\n",
+  "Title: Unification submit n api\nBody: ",
+  "Title: [Maybe?!] Cape selects wrong package to analyse Sample\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nCape should auto detect .hta package to analyse sample\r\n\r\n# Current Behavior\r\n\r\nCape auto detects vbs package\r\n\r\n## Context\r\n\r\nNot sure if this is a bug. If i try to analyse a .img sample that contains a .hta file, Cape automatically selects the vbs analyse package. \r\nThats not totally wrong, because the .hta file contains vbs code:\r\nhttps://capesandbox.com/analysis/70069/\r\n\r\nBut when I manually select the .hta package, I get a more detailed and obvious report: \r\nhttps://capesandbox.com/analysis/70081/\r\n\r\nI\u00b4m not sure if this is a problem, but i figured out, if you pass the `password = \"infected\"` variable as string into the `unpack(filename, password=password)` method in demux.py, you always raise IncorrectUsageException ( in sflock > main.py > unpack) and `for sf_child in unpacked.children or []:  ` in demux.py is skipped. \r\nI\u00b4m not sure, if this is right behavior. \r\n\r\ndemux.py\r\n```\r\n    try:\r\n        password = \"infected\"\r\n        tmp_pass = options2passwd(options)\r\n        if tmp_pass:\r\n            password = tmp_pass\r\n\r\n        try:\r\n            unpacked = unpack(filename, password=password)\r\n        except UnpackException:\r\n            unpacked = unpack(filename)\r\n\r\n        if unpacked.package in whitelist_extensions:\r\n            return [filename]\r\n        if unpacked.package in blacklist_extensions:\r\n            return retlist\r\n        for sf_child in unpacked.children or []:\r\n            if sf_child.to_dict().get(\"children\") and sf_child.to_dict()[\"children\"]:\r\n                retlist += [_sf_chlildren(ch) for ch in sf_child.to_dict()[\"children\"]]\r\n            else:\r\n                retlist.append(_sf_chlildren(sf_child))\r\n    except Exception as e:\r\n        log.error(e, exc_info=True\r\n```\r\n\r\nIf i pass the `password = \"infected\"` as `password = b\"infected\"` Cape selects automatically the .hta package because `for sf_child in unpacked.children or []: ` is not skipped.\r\n\r\nChange was here:\r\ncommit c1b9152f59910e094a42016eb88cf4465d13e56f\r\nfixes and yara for macros \nComment: hello, yes sflock requires bytes, i will add check for password if is str or bytes, and if need it will encode it, nice catch thanks\nComment: No Problem. Feel free to close this issue. Have a good one. \nComment: once i will solve it i will, but no time right now, have a good day\nComment: thank you, just pushed fix ",
+  "Title: [Bug] Options (eg. dllloader, function) are not working correctly\nBody: # Expected Behavior\r\n\r\nFiles should be run according to provided options.\r\n\r\n# Current Behavior\r\n\r\nNot working as intended. ref: https://capesandbox.com/analysis/69765/\r\n\r\n# Screenshot ![image](https://user-images.githubusercontent.com/49360849/95664369-ddc14c80-0b64-11eb-8df6-a67494fb5a4a.png)\r\n\nComment: you found you fix it! :D\nComment: If I could, would've created PR. Don't know if I can figure out that.\nComment: dll package\r\n\r\n```\r\n# Copyright (C) 2010-2015 Cuckoo Foundation.\r\n# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org\r\n# See the file 'docs/LICENSE' for copying permission.\r\n\r\nfrom __future__ import absolute_import\r\nimport os\r\nimport shutil\r\n\r\nfrom lib.common.abstracts import Package\r\n\r\n\r\nclass Dll(Package):\r\n    \"\"\"DLL analysis package.\"\"\"\r\n\r\n    PATHS = [\r\n        (\"SystemRoot\", \"system32\", \"rundll32.exe\"),\r\n    ]\r\n\r\n    def start(self, path):\r\n        rundll32 = self.get_path(\"rundll32.exe\")\r\n        function = self.options.get(\"function\", \"#1\")\r\n        arguments = self.options.get(\"arguments\")\r\n        dllloader = self.options.get(\"dllloader\")\r\n\r\n        # Check file extension.\r\n        ext = os.path.splitext(path)[-1].lower()\r\n        # If the file doesn't have the proper .dll extension force it\r\n        # and rename it. This is needed for rundll32 to execute correctly.\r\n        # See ticket #354 for details.\r\n        if ext != \".dll\":\r\n            new_path = path + \".dll\"\r\n            os.rename(path, new_path)\r\n            path = new_path\r\n\r\n        args = '\"{0}\",{1}'.format(path, function)\r\n        if arguments:\r\n            args += \" {0}\".format(arguments)\r\n\r\n        if dllloader:\r\n            newname = os.path.join(os.path.dirname(rundll32), dllloader)\r\n            shutil.copy(rundll32, newname)\r\n            rundll32 = newname\r\n\r\n        return self.execute(rundll32, args, path)\r\n\r\n```\nComment: i will check it one of thos days, thanks\nComment: Hmm not sure this is an issue. If the dll exports DllRegisterServer this is why it auto-picked the regsvr32 package which calls this export without need for the function option.\r\n\r\nIf you want rundll32 you need to specify the dll package, where the function option works:\r\n\r\nhttps://capesandbox.com/analysis/69771/\r\n\nComment: Closing as explained above\nComment: ahahha i was about to othe same, sleep doing magic \nComment: > \r\n> \r\n> Closing as explained above\r\n\r\nAbsolutely and Thanks!",
+  "Title: Update AsyncRat.yar\nBody: Previous one missed this one https://capesandbox.com/analysis/69558/#CAPE",
+  "Title: Update/Fix CobaltStrikeBeacon.py\nBody: ",
+  "Title: HTTPS requests are not shown in Network Analysis section\nBody: hash: 6b070003872fb1568e6cf611aa7fdf25051aa3e6b9019e079a28794fd146ed17, pass: infected\r\n[6b070003872fb1568e6cf611aa7fdf25051aa3e6b9019e079a28794fd146ed17.zip](https://github.com/kevoreilly/CAPEv2/files/5347726/6b070003872fb1568e6cf611aa7fdf25051aa3e6b9019e079a28794fd146ed17.zip)\r\nanalysis: https://capesandbox.com/analysis/69178/\r\n\r\nHey guys, I have Emotet maldoc and used inetsim where enabled http, https, ftp and dns services.\r\n\r\nThe full list of distribution URLs:\r\n```\r\nhxxp[:]//bonyanet.com/wp-admin/iR/\r\nhxxp:]//ofoghzagros.com/wp-admin/H/\r\nhxxps[:]//ilinknepal.com/infosysnepal.com/Zdz/\r\nhxxps[:]//storypostar.com/wp-admin/j/\r\nhxxps[:]//www.pixelstoryteller.com/hydroplane-definition/wzb/\r\nhxxps[:]//redchillicrackers.com/wp-content/p/\r\nhxxp[:]//www.co-traveling.com/cgi-bin/003/\r\n```\r\n\r\nThe issue that in network section we are able to see only HTTP requests:\r\n```\r\nhttp://bonyanet.com/wp-admin/iR/ | GET /wp-admin/iR/ HTTP/1.1 Host: bonyanet.com Connection: Keep-Alive\r\nhttp://ofoghzagros.com/wp-admin/H/ | GET /wp-admin/H/ HTTP/1.1 Host: ofoghzagros.com Connection: Keep-Alive\r\nhttp://www.co-traveling.com/cgi-bin/003/ | GET /cgi-bin/003/ HTTP/1.1 Host: www.co-traveling.com Connection: Keep-Alive\r\n```\r\nIs it possible to see the full HTTPS request paths?\nComment: hello, yes but  from behavior not network tab\nComment: https://capesandbox.com/submit/status/69276/\r\nthe issue that we cannot get malicious URLs from some malware due to different hooks, so in most cases to get some traffic we need to use `free` option and would be great to see these HTTPS URLs there too.\nComment: well to detonate docs you need x86 vms, so you can specify tag, and using public sandbox and as dev is done in our free time   you are welcome to support with features to improve that or some good whiskey to make us happier and code more ;) \nComment: clsoing as responded, you are welcome to colaborate ",
+  "Title: Malware samples falsely detected as Ispy\nBody: # Expected Behavior\r\nThis should be detected as AsyncRAT rather than ISpy.\r\nhttps://www.capesandbox.com/analysis/69074/\r\n\r\n# Current Behavior\r\nhttps://www.capesandbox.com/analysis/69074/ CAPE detects this as ISpy.\r\n\r\n# context\r\nI think this [ iSpy siganture](https://github.com/kevoreilly/community/blob/0c517f27af3ceefa7c1fbb8d4f79e80aba6fdc9e/modules/signatures/ispy_apis.py) generating lots of false positives ( as there are other samples getting detected as iSpy)\r\n\r\n\r\n\r\n\nComment: Aye perhaps we should kill the rule...\nComment: Not helped by the fact that the process dumps failed :disappointed: \r\n\r\n`2020-10-08 05:34:11,765 [root] DEBUG: NtTerminateProcess hook: Attempting to dump process 2672\r\n2020-10-08 05:34:11,765 [root] DEBUG: GetHookCallerBase: thread 1940 (handle 0x0), return address 0x00476ACC, allocation base 0x00470000.\r\n2020-10-08 05:34:11,781 [root] DEBUG: DoProcessDump: Dumping Imagebase at 0x00210000.\r\n2020-10-08 05:34:11,781 [root] DEBUG: LooksLikeSectionBoundary: Exception occured reading around suspected boundary at 0x00212000\r\n2020-10-08 05:34:11,781 [root] DEBUG: DumpImageInCurrentProcess: Attempting to dump 'raw' PE image.\r\n2020-10-08 05:34:11,781 [root] DEBUG: DumpPE: Instantiating PeParser with address: 0x00210000.\r\n2020-10-08 05:34:11,781 [root] DEBUG: DumpPE: Empty or inaccessible last section, file image seems incomplete (from 0x0025F000 to 0x0025F200).\r\n2020-10-08 05:34:11,796 [root] INFO: (b'FILE_DUMP', b'C:\\\\AwuAVDdq\\\\CAPE\\\\2672_16867019056131384102020|2672|0;?C:\\\\Users\\\\Rebecca\\\\AppData\\\\Local\\\\Temp\\\\fresh sales.exe;?C:\\\\Users\\\\Rebecca\\\\AppData\\\\Local\\\\Temp\\\\fresh sales.exe;?', 'dispatch')\r\n2020-10-08 05:34:11,812 [root] DEBUG: DumpPE: Error: Cannot dump PE file from memory.\r\n2020-10-08 05:34:11,812 [root] DEBUG: DumpImageInCurrentProcess: Failed to dump 'raw' PE image from 0x00210000, dumping memory region.\r\n2020-10-08 05:34:11,828 [root] INFO: (b'KILL', b'2672', 'dispatch')\r\n2020-10-08 05:34:11,828 [root] INFO: Process with pid 2672 has terminated`\nComment: removed sigs, thanks for notification, closing as resolved\nComment: > \r\n> \r\n> Not helped by the fact that the process dumps failed \ud83d\ude1e\r\n> \r\n> `2020-10-08 05:34:11,765 [root] DEBUG: NtTerminateProcess hook: Attempting to dump process 2672 2020-10-08 05:34:11,765 [root] DEBUG: GetHookCallerBase: thread 1940 (handle 0x0), return address 0x00476ACC, allocation base 0x00470000. 2020-10-08 05:34:11,781 [root] DEBUG: DoProcessDump: Dumping Imagebase at 0x00210000. 2020-10-08 05:34:11,781 [root] DEBUG: LooksLikeSectionBoundary: Exception occured reading around suspected boundary at 0x00212000 2020-10-08 05:34:11,781 [root] DEBUG: DumpImageInCurrentProcess: Attempting to dump 'raw' PE image. 2020-10-08 05:34:11,781 [root] DEBUG: DumpPE: Instantiating PeParser with address: 0x00210000. 2020-10-08 05:34:11,781 [root] DEBUG: DumpPE: Empty or inaccessible last section, file image seems incomplete (from 0x0025F000 to 0x0025F200). 2020-10-08 05:34:11,796 [root] INFO: (b'FILE_DUMP', b'C:\\\\AwuAVDdq\\\\CAPE\\\\2672_16867019056131384102020|2672|0;?C:\\\\Users\\\\Rebecca\\\\AppData\\\\Local\\\\Temp\\\\fresh sales.exe;?C:\\\\Users\\\\Rebecca\\\\AppData\\\\Local\\\\Temp\\\\fresh sales.exe;?', 'dispatch') 2020-10-08 05:34:11,812 [root] DEBUG: DumpPE: Error: Cannot dump PE file from memory. 2020-10-08 05:34:11,812 [root] DEBUG: DumpImageInCurrentProcess: Failed to dump 'raw' PE image from 0x00210000, dumping memory region. 2020-10-08 05:34:11,828 [root] INFO: (b'KILL', b'2672', 'dispatch') 2020-10-08 05:34:11,828 [root] INFO: Process with pid 2672 has terminated`\r\n\r\nAh I saw that log but any way around for this?\r\nand that file was submitted without process memory enabled, if enabled than could have detected it as AsyncRAT.\nComment: The code in the monitor needs improving :relaxed: \r\n\r\nAt the moment if there is an inaccessible region within a PE image the dump fails, then the monitor attempts to dump the full allocation which also fails.\r\n\r\nThe option I'm considering is to iterate through the regions as per VirtualQuery, change their protection to make them accessible, then dump, then restore previous protections. Another idea might be to skip them and just leave the range blank in the dump.\nComment: > \r\n> \r\n> removed sigs, thanks for notification, closing as resolved\r\n\r\n@doomedraven other samples are still getting deteced as iSpy https://capesandbox.com/analysis/69436/\nComment: Ya fixed now, I forgot to remove on the server side\n\n> El 9 oct 2020, a las 12:08, Rony <notifications@github.com> escribi\u00f3:\n> \n> \n> removed sigs, thanks for notification, closing as resolved\n> \n> @doomedraven <https://github.com/doomedraven> other samples are still getting deteced as iSpy https://capesandbox.com/analysis/69436/ <https://capesandbox.com/analysis/69436/>\n> \u2014\n> You are receiving this because you were mentioned.\n> Reply to this email directly, view it on GitHub <https://github.com/kevoreilly/CAPEv2/issues/315#issuecomment-706093882>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAOFH34DFEWIGGK33EZXD53SJ3OLXANCNFSM4SINKCYA>.\n> \n\n",
+  "Title: Update Zloader.py to include RC4 key once again and remove potential incorrect RSA key data. \nBody: Updated logic on how fields are parsed out of the base config. The RSA key was being parsed in a way that included additional flags set in the config so it has been stripped out for now. The other fields are stored at different offsets that we can reliably check.",
+  "Title: Analysis fails with Ubuntu Python 3.8 crash\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nAnalysis finishes without error.\r\n\r\n# Current Behavior\r\n\r\nAnalysis fails with Ubuntu Python 3.8 crash.\r\nCuckoo.py: stops with Segmentation fault (core dumped)\r\nAgent.py: Unhandled exception in NetlogConnection:', '[WinError 10054] An existing connection was forcibly closed by the remote host')\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Fresh Ubuntu 20.04.1 LTS install\r\n2. Updated Ubuntu\r\n3. Installed Cape via sudo ./cape2.sh base cape\r\n4. Installed Virtualbox 6.1.10 + VirtualBox Extension Pack\r\n5. Created Virtualbox host only network (vboxnet0)\r\n6. Created Win10 with Python 32-Bit 3.8.0\r\n7. Configured Cape Config-Files\r\n8. Started Analysis via Web-Interface\r\n\r\n\r\n## Context\r\n\r\nUsing machinery VirtualBox 6.1.10\r\nHost machine: Ubuntu 20.04.1 LTS\r\nGuest machine: Windows 10 with Python 32-Bit 3.8.0\r\n\r\n## Failure Logs\r\n\r\ncuckoo.py log:\r\n\r\n```\r\n> \r\n>                       __\r\n>   .----..--.--..----.|  |--..-----..-----.\r\n>   |  __||  |  ||  __||    < |  _  ||  _  |\r\n>   |____||_____||____||__|__||_____||_____|\r\n> \r\n>  Cuckoo Sandbox 2.1-CAPE\r\n>  www.cuckoosandbox.org\r\n>  Copyright (c) 2010-2015\r\n> \r\n>  CAPE: Config and Payload Extraction\r\n>  github.com/kevoreilly/CAPEv2\r\n> \r\n> 2020-10-05 10:01:20,198 [root] DEBUG: Importing modules...\r\n> 2020-10-05 10:01:20,279 [volatility.framework.interfaces.layers] DEBUG: Imported python-magic, autodetecting compressed files based on content\r\n> pywin32 is not installed (only is required if you want to use MS Excel)\r\n> 2020-10-05 10:01:21,271 [root] DEBUG: Imported \"auxiliary\" modules:\r\n> 2020-10-05 10:01:21,271 [root] DEBUG: \t `-- Sniffer\r\n> 2020-10-05 10:01:21,272 [root] DEBUG: Imported \"processing\" modules:\r\n> 2020-10-05 10:01:21,272 [root] DEBUG: \t |-- CAPE\r\n> 2020-10-05 10:01:21,272 [root] DEBUG: \t |-- AnalysisInfo\r\n> 2020-10-05 10:01:21,272 [root] DEBUG: \t |-- BehaviorAnalysis\r\n> 2020-10-05 10:01:21,272 [root] DEBUG: \t |-- CIF\r\n> 2020-10-05 10:01:21,272 [root] DEBUG: \t |-- Curtain\r\n> 2020-10-05 10:01:21,272 [root] DEBUG: \t |-- Debug\r\n> 2020-10-05 10:01:21,272 [root] DEBUG: \t |-- Decompression\r\n> 2020-10-05 10:01:21,272 [root] DEBUG: \t |-- Deduplicate\r\n> 2020-10-05 10:01:21,272 [root] DEBUG: \t |-- Dropped\r\n> 2020-10-05 10:01:21,272 [root] DEBUG: \t |-- MMBot\r\n> 2020-10-05 10:01:21,272 [root] DEBUG: \t |-- Memory\r\n> 2020-10-05 10:01:21,272 [root] DEBUG: \t |-- NetworkAnalysis\r\n> 2020-10-05 10:01:21,272 [root] DEBUG: \t |-- ProcDump\r\n> 2020-10-05 10:01:21,273 [root] DEBUG: \t |-- ProcessMemory\r\n> 2020-10-05 10:01:21,273 [root] DEBUG: \t |-- Procmon\r\n> 2020-10-05 10:01:21,273 [root] DEBUG: \t |-- Static\r\n> 2020-10-05 10:01:21,273 [root] DEBUG: \t |-- Strings\r\n> 2020-10-05 10:01:21,273 [root] DEBUG: \t |-- Suricata\r\n> 2020-10-05 10:01:21,273 [root] DEBUG: \t |-- Sysmon\r\n> 2020-10-05 10:01:21,273 [root] DEBUG: \t |-- TargetInfo\r\n> 2020-10-05 10:01:21,273 [root] DEBUG: \t |-- TrID\r\n> 2020-10-05 10:01:21,273 [root] DEBUG: \t |-- Usage\r\n> 2020-10-05 10:01:21,273 [root] DEBUG: \t `-- VirusTotal\r\n> 2020-10-05 10:01:21,273 [root] DEBUG: Imported \"signatures\" modules:\r\n> 2020-10-05 10:01:21,273 [root] DEBUG: \t |-- CAPEDetectedThreat\r\n> 2020-10-05 10:01:21,273 [root] DEBUG: \t |-- CAPE_Compression\r\n> 2020-10-05 10:01:21,273 [root] DEBUG: \t |-- CAPE_Decryption\r\n> 2020-10-05 10:01:21,273 [root] DEBUG: \t |-- CAPE_Doppelganging\r\n> 2020-10-05 10:01:21,274 [root] DEBUG: \t |-- CAPE_EvilGrab\r\n> 2020-10-05 10:01:21,274 [root] DEBUG: \t |-- CAPE_Injection\r\n> 2020-10-05 10:01:21,274 [root] DEBUG: \t |-- CAPE_InjectionCreateRemoteThread\r\n> 2020-10-05 10:01:21,274 [root] DEBUG: \t |-- CAPE_InjectionProcessHollowing\r\n> 2020-10-05 10:01:21,274 [root] DEBUG: \t |-- CAPE_InjectionSetWindowLong\r\n> 2020-10-05 10:01:21,274 [root] DEBUG: \t |-- CAPE_PlugX\r\n> 2020-10-05 10:01:21,274 [root] DEBUG: \t |-- CAPE_RegBinary\r\n> 2020-10-05 10:01:21,274 [root] DEBUG: \t |-- CAPE_TransactedHollowing\r\n> 2020-10-05 10:01:21,274 [root] DEBUG: \t |-- CAPE_Unpacker\r\n> 2020-10-05 10:01:21,274 [root] DEBUG: \t |-- AccessesMailslot\r\n> 2020-10-05 10:01:21,274 [root] DEBUG: \t |-- AccessesNetlogonRegkey\r\n> 2020-10-05 10:01:21,274 [root] DEBUG: \t |-- AccessesSysvol\r\n> 2020-10-05 10:01:21,274 [root] DEBUG: \t |-- Alphacrypt_APIs\r\n> 2020-10-05 10:01:21,274 [root] DEBUG: \t |-- Andromeda_APIs\r\n> 2020-10-05 10:01:21,274 [root] DEBUG: \t |-- anomalous_deletefile\r\n> 2020-10-05 10:01:21,275 [root] DEBUG: \t |-- AntiAnalysisDetectFile\r\n> 2020-10-05 10:01:21,275 [root] DEBUG: \t |-- AntiAnalysisDetectReg\r\n> 2020-10-05 10:01:21,275 [root] DEBUG: \t |-- QihooDetectLibs\r\n> 2020-10-05 10:01:21,275 [root] DEBUG: \t |-- AhnlabDetectLibs\r\n> 2020-10-05 10:01:21,275 [root] DEBUG: \t |-- AvastDetectLibs\r\n> 2020-10-05 10:01:21,275 [root] DEBUG: \t |-- BitdefenderDetectLibs\r\n> 2020-10-05 10:01:21,275 [root] DEBUG: \t |-- BullguardDetectLibs\r\n> 2020-10-05 10:01:21,275 [root] DEBUG: \t |-- ModifiesAttachmentManager\r\n> 2020-10-05 10:01:21,275 [root] DEBUG: \t |-- AntiAVDetectFile\r\n> 2020-10-05 10:01:21,275 [root] DEBUG: \t |-- AntiAVDetectReg\r\n> 2020-10-05 10:01:21,275 [root] DEBUG: \t |-- EmsisoftDetectLibs\r\n> 2020-10-05 10:01:21,275 [root] DEBUG: \t |-- QurbDetectLibs\r\n> 2020-10-05 10:01:21,275 [root] DEBUG: \t |-- AntiAVServiceStop\r\n> 2020-10-05 10:01:21,275 [root] DEBUG: \t |-- AntiAVSRP\r\n> 2020-10-05 10:01:21,275 [root] DEBUG: \t |-- AntiDBGDevices\r\n> 2020-10-05 10:01:21,276 [root] DEBUG: \t |-- AntiDBGWindows\r\n> 2020-10-05 10:01:21,276 [root] DEBUG: \t |-- antidebug_addvectoredexceptionhandler\r\n> 2020-10-05 10:01:21,276 [root] DEBUG: \t |-- APIOverrideDetectLibs\r\n> 2020-10-05 10:01:21,276 [root] DEBUG: \t |-- antidebug_checkremotedebuggerpresent\r\n> 2020-10-05 10:01:21,276 [root] DEBUG: \t |-- antidebug_debugactiveprocess\r\n> 2020-10-05 10:01:21,276 [root] DEBUG: \t |-- antidebug_gettickcount\r\n> 2020-10-05 10:01:21,276 [root] DEBUG: \t |-- antidebug_guardpages\r\n> 2020-10-05 10:01:21,276 [root] DEBUG: \t |-- antidebug_ntcreatethreadex\r\n> 2020-10-05 10:01:21,276 [root] DEBUG: \t |-- BullguardDetectLibs\r\n> 2020-10-05 10:01:21,276 [root] DEBUG: \t |-- antidebug_ntsetinformationthread\r\n> 2020-10-05 10:01:21,276 [root] DEBUG: \t |-- antidebug_outputdebugstring\r\n> 2020-10-05 10:01:21,276 [root] DEBUG: \t |-- antidebug_setunhandledexceptionfilter\r\n> 2020-10-05 10:01:21,276 [root] DEBUG: \t |-- WineDetectReg\r\n> 2020-10-05 10:01:21,276 [root] DEBUG: \t |-- WineDetectFunc\r\n> 2020-10-05 10:01:21,276 [root] DEBUG: \t |-- AntiSandboxCheckUserdomain\r\n> 2020-10-05 10:01:21,277 [root] DEBUG: \t |-- AntiCuckoo\r\n> 2020-10-05 10:01:21,277 [root] DEBUG: \t |-- CuckooDetectFiles\r\n> 2020-10-05 10:01:21,277 [root] DEBUG: \t |-- CuckooCrash\r\n> 2020-10-05 10:01:21,277 [root] DEBUG: \t |-- FortinetDetectFiles\r\n> 2020-10-05 10:01:21,277 [root] DEBUG: \t |-- SandboxJoeAnubisDetectFiles\r\n> 2020-10-05 10:01:21,277 [root] DEBUG: \t |-- HookMouse\r\n> 2020-10-05 10:01:21,277 [root] DEBUG: \t |-- AntiSandboxRestart\r\n> 2020-10-05 10:01:21,277 [root] DEBUG: \t |-- SandboxieDetectLibs\r\n> 2020-10-05 10:01:21,277 [root] DEBUG: \t |-- AntisandboxSboxieMutex\r\n> 2020-10-05 10:01:21,277 [root] DEBUG: \t |-- AntiSandboxSboxieObjects\r\n> 2020-10-05 10:01:21,277 [root] DEBUG: \t |-- AntiSandboxScriptTimer\r\n> 2020-10-05 10:01:21,277 [root] DEBUG: \t |-- AntiSandboxSleep\r\n> 2020-10-05 10:01:21,277 [root] DEBUG: \t |-- SunbeltDetectFiles\r\n> 2020-10-05 10:01:21,277 [root] DEBUG: \t |-- SunbeltDetectLibs\r\n> 2020-10-05 10:01:21,277 [root] DEBUG: \t |-- AntiSandboxSuspend\r\n> 2020-10-05 10:01:21,278 [root] DEBUG: \t |-- ThreatTrackDetectFiles\r\n> 2020-10-05 10:01:21,278 [root] DEBUG: \t |-- Unhook\r\n> 2020-10-05 10:01:21,278 [root] DEBUG: \t |-- KnownVirustotal\r\n> 2020-10-05 10:01:21,278 [root] DEBUG: \t |-- BochsDetectKeys\r\n> 2020-10-05 10:01:21,278 [root] DEBUG: \t |-- AntiVMDirectoryObjects\r\n> 2020-10-05 10:01:21,278 [root] DEBUG: \t |-- AntiVMBios\r\n> 2020-10-05 10:01:21,278 [root] DEBUG: \t |-- AntiVMCPU\r\n> 2020-10-05 10:01:21,278 [root] DEBUG: \t |-- DiskInformation\r\n> 2020-10-05 10:01:21,278 [root] DEBUG: \t |-- SetupAPIDiskInformation\r\n> 2020-10-05 10:01:21,278 [root] DEBUG: \t |-- AntiVMDiskReg\r\n> 2020-10-05 10:01:21,278 [root] DEBUG: \t |-- AntiVMSCSI\r\n> 2020-10-05 10:01:21,278 [root] DEBUG: \t |-- AntiVMServices\r\n> 2020-10-05 10:01:21,278 [root] DEBUG: \t |-- AntiVMSystem\r\n> 2020-10-05 10:01:21,278 [root] DEBUG: \t |-- HyperVDetectKeys\r\n> 2020-10-05 10:01:21,278 [root] DEBUG: \t |-- ParallelsDetectKeys\r\n> 2020-10-05 10:01:21,279 [root] DEBUG: \t |-- VBoxDetectDevices\r\n> 2020-10-05 10:01:21,279 [root] DEBUG: \t |-- VBoxDetectFiles\r\n> 2020-10-05 10:01:21,279 [root] DEBUG: \t |-- VBoxDetectKeys\r\n> 2020-10-05 10:01:21,279 [root] DEBUG: \t |-- VBoxDetectLibs\r\n> 2020-10-05 10:01:21,279 [root] DEBUG: \t |-- VBoxDetectProvname\r\n> 2020-10-05 10:01:21,279 [root] DEBUG: \t |-- VBoxDetectWindow\r\n> 2020-10-05 10:01:21,279 [root] DEBUG: \t |-- VMwareDetectDevices\r\n> 2020-10-05 10:01:21,279 [root] DEBUG: \t |-- VMwareDetectEvent\r\n> 2020-10-05 10:01:21,279 [root] DEBUG: \t |-- VMwareDetectFiles\r\n> 2020-10-05 10:01:21,279 [root] DEBUG: \t |-- VMwareDetectKeys\r\n> 2020-10-05 10:01:21,279 [root] DEBUG: \t |-- VMwareDetectLibs\r\n> 2020-10-05 10:01:21,279 [root] DEBUG: \t |-- VMwareDetectMutexes\r\n> 2020-10-05 10:01:21,279 [root] DEBUG: \t |-- VPCDetectFiles\r\n> 2020-10-05 10:01:21,279 [root] DEBUG: \t |-- VPCDetectKeys\r\n> 2020-10-05 10:01:21,279 [root] DEBUG: \t |-- VPCDetectMutex\r\n> 2020-10-05 10:01:21,280 [root] DEBUG: \t |-- XenDetectKeys\r\n> 2020-10-05 10:01:21,280 [root] DEBUG: \t |-- APISpamming\r\n> 2020-10-05 10:01:21,280 [root] DEBUG: \t |-- KetricanRegkeys\r\n> 2020-10-05 10:01:21,280 [root] DEBUG: \t |-- OkrumMutexes\r\n> 2020-10-05 10:01:21,280 [root] DEBUG: \t |-- BadCerts\r\n> 2020-10-05 10:01:21,280 [root] DEBUG: \t |-- BadSSLCerts\r\n> 2020-10-05 10:01:21,280 [root] DEBUG: \t |-- Cridex\r\n> 2020-10-05 10:01:21,280 [root] DEBUG: \t |-- Geodo\r\n> 2020-10-05 10:01:21,280 [root] DEBUG: \t |-- Prinimalka\r\n> 2020-10-05 10:01:21,280 [root] DEBUG: \t |-- SpyEyeMutexes\r\n> 2020-10-05 10:01:21,280 [root] DEBUG: \t |-- ZeusMutexes\r\n> 2020-10-05 10:01:21,280 [root] DEBUG: \t |-- ZeusP2P\r\n> 2020-10-05 10:01:21,280 [root] DEBUG: \t |-- ZeusURL\r\n> 2020-10-05 10:01:21,280 [root] DEBUG: \t |-- BCDEditCommand\r\n> 2020-10-05 10:01:21,280 [root] DEBUG: \t |-- BetaBot_APIs\r\n> 2020-10-05 10:01:21,281 [root] DEBUG: \t |-- BitcoinOpenCL\r\n> 2020-10-05 10:01:21,281 [root] DEBUG: \t |-- AccessesPrimaryPartition\r\n> 2020-10-05 10:01:21,281 [root] DEBUG: \t |-- Bootkit\r\n> 2020-10-05 10:01:21,281 [root] DEBUG: \t |-- DirectHDDAccess\r\n> 2020-10-05 10:01:21,281 [root] DEBUG: \t |-- PhysicalDriveAccess\r\n> 2020-10-05 10:01:21,281 [root] DEBUG: \t |-- SuspiciousIoctlSCSIPassthough\r\n> 2020-10-05 10:01:21,281 [root] DEBUG: \t |-- AthenaHttp\r\n> 2020-10-05 10:01:21,281 [root] DEBUG: \t |-- DirtJumper\r\n> 2020-10-05 10:01:21,281 [root] DEBUG: \t |-- Drive\r\n> 2020-10-05 10:01:21,281 [root] DEBUG: \t |-- Drive2\r\n> 2020-10-05 10:01:21,281 [root] DEBUG: \t |-- Madness\r\n> 2020-10-05 10:01:21,281 [root] DEBUG: \t |-- Ruskill\r\n> 2020-10-05 10:01:21,281 [root] DEBUG: \t |-- BrowserAddon\r\n> 2020-10-05 10:01:21,281 [root] DEBUG: \t |-- BrowserHelperObject\r\n> 2020-10-05 10:01:21,281 [root] DEBUG: \t |-- BrowserNeeded\r\n> 2020-10-05 10:01:21,281 [root] DEBUG: \t |-- ModifyProxy\r\n> 2020-10-05 10:01:21,282 [root] DEBUG: \t |-- BrowserScanbox\r\n> 2020-10-05 10:01:21,282 [root] DEBUG: \t |-- BrowserSecurity\r\n> 2020-10-05 10:01:21,282 [root] DEBUG: \t |-- browser_startpage\r\n> 2020-10-05 10:01:21,282 [root] DEBUG: \t |-- OdbcconfBypass\r\n> 2020-10-05 10:01:21,282 [root] DEBUG: \t |-- RegSrv32SquiblydooDLLLoad\r\n> 2020-10-05 10:01:21,282 [root] DEBUG: \t |-- SquiblydooBypass\r\n> 2020-10-05 10:01:21,282 [root] DEBUG: \t |-- SquiblytwoBypass\r\n> 2020-10-05 10:01:21,282 [root] DEBUG: \t |-- BypassFirewall\r\n> 2020-10-05 10:01:21,282 [root] DEBUG: \t |-- UACBypassCMSTP\r\n> 2020-10-05 10:01:21,282 [root] DEBUG: \t |-- UACBypassDelegateExecuteSdclt\r\n> 2020-10-05 10:01:21,282 [root] DEBUG: \t |-- UACBypassEventvwr\r\n> 2020-10-05 10:01:21,282 [root] DEBUG: \t |-- UACBypassFodhelper\r\n> 2020-10-05 10:01:21,282 [root] DEBUG: \t |-- CAPEExtractedConfig\r\n> 2020-10-05 10:01:21,283 [root] DEBUG: \t |-- CAPEExtractedContent\r\n> 2020-10-05 10:01:21,283 [root] DEBUG: \t |-- CarberpMutexes\r\n> 2020-10-05 10:01:21,283 [root] DEBUG: \t |-- Cerber_APIs\r\n> 2020-10-05 10:01:21,283 [root] DEBUG: \t |-- Chimera_APIs\r\n> 2020-10-05 10:01:21,283 [root] DEBUG: \t |-- ClamAV\r\n> 2020-10-05 10:01:21,283 [root] DEBUG: \t |-- ClearsLogs\r\n> 2020-10-05 10:01:21,283 [root] DEBUG: \t |-- ClickfraudCookies\r\n> 2020-10-05 10:01:21,283 [root] DEBUG: \t |-- ClickfraudVolume\r\n> 2020-10-05 10:01:21,283 [root] DEBUG: \t |-- CmdlineObfuscation\r\n> 2020-10-05 10:01:21,283 [root] DEBUG: \t |-- CmdlineSwitches\r\n> 2020-10-05 10:01:21,283 [root] DEBUG: \t |-- CmdlineTerminate\r\n> 2020-10-05 10:01:21,283 [root] DEBUG: \t |-- CommandLineForFilesWildCard\r\n> 2020-10-05 10:01:21,283 [root] DEBUG: \t |-- CommandLineHTTPLink\r\n> 2020-10-05 10:01:21,284 [root] DEBUG: \t |-- CommandLineLongString\r\n> 2020-10-05 10:01:21,284 [root] DEBUG: \t |-- CommandLineReversedHTTPLink\r\n> 2020-10-05 10:01:21,284 [root] DEBUG: \t |-- LongCommandline\r\n> 2020-10-05 10:01:21,284 [root] DEBUG: \t |-- PowershellRenamedCommandLine\r\n> 2020-10-05 10:01:21,284 [root] DEBUG: \t |-- CodeLux_APIs\r\n> 2020-10-05 10:01:21,284 [root] DEBUG: \t |-- SystemAccountDisoveryCMD\r\n> 2020-10-05 10:01:21,284 [root] DEBUG: \t |-- SystemInfoDiscoveryCMD\r\n> 2020-10-05 10:01:21,284 [root] DEBUG: \t |-- SystemInfoDiscoveryPWSH\r\n> 2020-10-05 10:01:21,284 [root] DEBUG: \t |-- SystemNetworkDiscoveryCMD\r\n> 2020-10-05 10:01:21,284 [root] DEBUG: \t |-- SystemNetworkDiscoveryPWSH\r\n> 2020-10-05 10:01:21,284 [root] DEBUG: \t |-- SystemUserDisoveryCMD\r\n> 2020-10-05 10:01:21,284 [root] DEBUG: \t |-- CompilesDotNetCode\r\n> 2020-10-05 10:01:21,284 [root] DEBUG: \t |-- CopiesSelf\r\n> 2020-10-05 10:01:21,284 [root] DEBUG: \t |-- CreatesExe\r\n> 2020-10-05 10:01:21,285 [root] DEBUG: \t |-- CreatesLargeKey\r\n> 2020-10-05 10:01:21,285 [root] DEBUG: \t |-- CreatesNullValue\r\n> 2020-10-05 10:01:21,285 [root] DEBUG: \t |-- EnablesWDigest\r\n> 2020-10-05 10:01:21,285 [root] DEBUG: \t |-- FileCredentialStoreAccess\r\n> 2020-10-05 10:01:21,285 [root] DEBUG: \t |-- LsassCredentialDumping\r\n> 2020-10-05 10:01:21,285 [root] DEBUG: \t |-- RegistryCredentialDumping\r\n> 2020-10-05 10:01:21,285 [root] DEBUG: \t |-- RegistryCredentialStoreAccess\r\n> 2020-10-05 10:01:21,285 [root] DEBUG: \t |-- RegistryLSASecretsAccess\r\n> 2020-10-05 10:01:21,285 [root] DEBUG: \t |-- CriticalProcess\r\n> 2020-10-05 10:01:21,285 [root] DEBUG: \t |-- CryptominingStratumCommand\r\n> 2020-10-05 10:01:21,285 [root] DEBUG: \t |-- MINERS\r\n> 2020-10-05 10:01:21,285 [root] DEBUG: \t |-- CryptoWall_APIs\r\n> 2020-10-05 10:01:21,285 [root] DEBUG: \t |-- CVE_2014_6332\r\n> 2020-10-05 10:01:21,285 [root] DEBUG: \t |-- CVE2015_2419_JS\r\n> 2020-10-05 10:01:21,285 [root] DEBUG: \t |-- CVE_2016_0189\r\n> 2020-10-05 10:01:21,286 [root] DEBUG: \t |-- CVE_2016_7200\r\n> 2020-10-05 10:01:21,286 [root] DEBUG: \t |-- CypherITMutexes\r\n> 2020-10-05 10:01:21,286 [root] DEBUG: \t |-- DarkCometRegkeys\r\n> 2020-10-05 10:01:21,286 [root] DEBUG: \t |-- DeadConnect\r\n> 2020-10-05 10:01:21,286 [root] DEBUG: \t |-- DeadLink\r\n> 2020-10-05 10:01:21,286 [root] DEBUG: \t |-- DebugsSelf\r\n> 2020-10-05 10:01:21,286 [root] DEBUG: \t |-- DecoyDocument\r\n> 2020-10-05 10:01:21,286 [root] DEBUG: \t |-- DecoyImage\r\n> 2020-10-05 10:01:21,286 [root] DEBUG: \t |-- DeepFreezeMutex\r\n> 2020-10-05 10:01:21,286 [root] DEBUG: \t |-- DeletesSelf\r\n> 2020-10-05 10:01:21,286 [root] DEBUG: \t |-- DeletesShadowCopies\r\n> 2020-10-05 10:01:21,286 [root] DEBUG: \t |-- DeletesSystemStateBackup\r\n> 2020-10-05 10:01:21,286 [root] DEBUG: \t |-- DEPBypass\r\n> 2020-10-05 10:01:21,286 [root] DEBUG: \t |-- DEPDisable\r\n> 2020-10-05 10:01:21,286 [root] DEBUG: \t |-- DisablesAppLaunch\r\n> 2020-10-05 10:01:21,287 [root] DEBUG: \t |-- DisablesBackups\r\n> 2020-10-05 10:01:21,287 [root] DEBUG: \t |-- DisablesBrowserWarn\r\n> 2020-10-05 10:01:21,287 [root] DEBUG: \t |-- DisablesMappedDrivesAutodisconnect\r\n> 2020-10-05 10:01:21,287 [root] DEBUG: \t |-- DisablesEventLogging\r\n> 2020-10-05 10:01:21,287 [root] DEBUG: \t |-- DisableFolderOptions\r\n> 2020-10-05 10:01:21,287 [root] DEBUG: \t |-- DisablesNotificationCenter\r\n> 2020-10-05 10:01:21,287 [root] DEBUG: \t |-- DisableRunCommand\r\n> 2020-10-05 10:01:21,287 [root] DEBUG: \t |-- DisablesSmartScreen\r\n> 2020-10-05 10:01:21,287 [root] DEBUG: \t |-- DisablesSPDY\r\n> 2020-10-05 10:01:21,287 [root] DEBUG: \t |-- DisablesSystemRestore\r\n> 2020-10-05 10:01:21,287 [root] DEBUG: \t |-- DisablesUAC\r\n> 2020-10-05 10:01:21,287 [root] DEBUG: \t |-- DisablesWER\r\n> 2020-10-05 10:01:21,287 [root] DEBUG: \t |-- DisablesWFP\r\n> 2020-10-05 10:01:21,287 [root] DEBUG: \t |-- DisablesWindowsDefender\r\n> 2020-10-05 10:01:21,287 [root] DEBUG: \t |-- DisablesWindowsDefenderLogging\r\n> 2020-10-05 10:01:21,288 [root] DEBUG: \t |-- RemovesWindowsDefenderContextMenu\r\n> 2020-10-05 10:01:21,288 [root] DEBUG: \t |-- WindowsDefenderPowerShell\r\n> 2020-10-05 10:01:21,288 [root] DEBUG: \t |-- DisablesWindowsUpdate\r\n> 2020-10-05 10:01:21,288 [root] DEBUG: \t |-- DisablesWindowsFirewall\r\n> 2020-10-05 10:01:21,288 [root] DEBUG: \t |-- AndromutMutexes\r\n> 2020-10-05 10:01:21,288 [root] DEBUG: \t |-- DownloaderCabby\r\n> 2020-10-05 10:01:21,288 [root] DEBUG: \t |-- GuLoaderAPIs\r\n> 2020-10-05 10:01:21,288 [root] DEBUG: \t |-- PhorpiexMutexes\r\n> 2020-10-05 10:01:21,288 [root] DEBUG: \t |-- ProtonBotMutexes\r\n> 2020-10-05 10:01:21,288 [root] DEBUG: \t |-- Dridex_APIs\r\n> 2020-10-05 10:01:21,288 [root] DEBUG: \t |-- DriverLoad\r\n> 2020-10-05 10:01:21,288 [root] DEBUG: \t |-- Dropper\r\n> 2020-10-05 10:01:21,288 [root] DEBUG: \t |-- EXEDropper_JS\r\n> 2020-10-05 10:01:21,288 [root] DEBUG: \t |-- dynamic_function_loading\r\n> 2020-10-05 10:01:21,288 [root] DEBUG: \t |-- Dyre_APIs\r\n> 2020-10-05 10:01:21,288 [root] DEBUG: \t |-- Angler_JS\r\n> 2020-10-05 10:01:21,289 [root] DEBUG: \t |-- Gondad_JS\r\n> 2020-10-05 10:01:21,289 [root] DEBUG: \t |-- HeapSpray_JS\r\n> 2020-10-05 10:01:21,289 [root] DEBUG: \t |-- Java_JS\r\n> 2020-10-05 10:01:21,289 [root] DEBUG: \t |-- Neutrino_JS\r\n> 2020-10-05 10:01:21,289 [root] DEBUG: \t |-- Nuclear_JS\r\n> 2020-10-05 10:01:21,289 [root] DEBUG: \t |-- RIG_JS\r\n> 2020-10-05 10:01:21,289 [root] DEBUG: \t |-- Silverlight_JS\r\n> 2020-10-05 10:01:21,289 [root] DEBUG: \t |-- Sundown_JS\r\n> 2020-10-05 10:01:21,289 [root] DEBUG: \t |-- Virtualcheck_JS\r\n> 2020-10-05 10:01:21,289 [root] DEBUG: \t |-- EncryptedIOC\r\n> 2020-10-05 10:01:21,289 [root] DEBUG: \t |-- Excel4MacroUrls\r\n> 2020-10-05 10:01:21,289 [root] DEBUG: \t |-- Crash\r\n> 2020-10-05 10:01:21,289 [root] DEBUG: \t |-- ProcessCreationSuspiciousLocation\r\n> 2020-10-05 10:01:21,289 [root] DEBUG: \t |-- exploit_getbasekerneladdress\r\n> 2020-10-05 10:01:21,289 [root] DEBUG: \t |-- exploit_gethaldispatchtable\r\n> 2020-10-05 10:01:21,289 [root] DEBUG: \t |-- ExploitHeapspray\r\n> 2020-10-05 10:01:21,289 [root] DEBUG: \t |-- KoadicAPIs\r\n> 2020-10-05 10:01:21,290 [root] DEBUG: \t |-- KoadicNetworkActivity\r\n> 2020-10-05 10:01:21,290 [root] DEBUG: \t |-- FamilyProxyBack\r\n> 2020-10-05 10:01:21,290 [root] DEBUG: \t |-- MappedDrivesUAC\r\n> 2020-10-05 10:01:21,290 [root] DEBUG: \t |-- SystemMetrics\r\n> 2020-10-05 10:01:21,290 [root] DEBUG: \t |-- Generic_Phish\r\n> 2020-10-05 10:01:21,290 [root] DEBUG: \t |-- Gootkit_APIs\r\n> 2020-10-05 10:01:21,290 [root] DEBUG: \t |-- H1N1_APIs\r\n> 2020-10-05 10:01:21,290 [root] DEBUG: \t |-- Hancitor_APIs\r\n> 2020-10-05 10:01:21,290 [root] DEBUG: \t |-- HawkEye_APIs\r\n> 2020-10-05 10:01:21,290 [root] DEBUG: \t |-- HTTP_Request\r\n> 2020-10-05 10:01:21,290 [root] DEBUG: \t |-- NetworkHTTPS\r\n> 2020-10-05 10:01:21,290 [root] DEBUG: \t |-- ArkeiFiles\r\n> 2020-10-05 10:01:21,290 [root] DEBUG: \t |-- AzorultMutexes\r\n> 2020-10-05 10:01:21,291 [root] DEBUG: \t |-- BitcoinWallet\r\n> 2020-10-05 10:01:21,291 [root] DEBUG: \t |-- BrowserStealer\r\n> 2020-10-05 10:01:21,291 [root] DEBUG: \t |-- InfostealerBrowserPassword\r\n> 2020-10-05 10:01:21,291 [root] DEBUG: \t |-- FTPStealer\r\n> 2020-10-05 10:01:21,291 [root] DEBUG: \t |-- IMStealer\r\n> 2020-10-05 10:01:21,291 [root] DEBUG: \t |-- KeyLogger\r\n> 2020-10-05 10:01:21,291 [root] DEBUG: \t |-- EmailStealer\r\n> 2020-10-05 10:01:21,291 [root] DEBUG: \t |-- MassLoggerArtifacts\r\n> 2020-10-05 10:01:21,291 [root] DEBUG: \t |-- MassLoggerFiles\r\n> 2020-10-05 10:01:21,291 [root] DEBUG: \t |-- MassLoggerVersion\r\n> 2020-10-05 10:01:21,291 [root] DEBUG: \t |-- PurpleWaveMutexes\r\n> 2020-10-05 10:01:21,291 [root] DEBUG: \t |-- PurpleWaveNetworkAcivity\r\n> 2020-10-05 10:01:21,291 [root] DEBUG: \t |-- QulabFiles\r\n> 2020-10-05 10:01:21,291 [root] DEBUG: \t |-- QulabMutexes\r\n> 2020-10-05 10:01:21,291 [root] DEBUG: \t |-- raccoon\r\n> 2020-10-05 10:01:21,292 [root] DEBUG: \t |-- vidar\r\n> 2020-10-05 10:01:21,292 [root] DEBUG: \t |-- InjectionCRT\r\n> 2020-10-05 10:01:21,292 [root] DEBUG: \t |-- InjectionExplorer\r\n> 2020-10-05 10:01:21,292 [root] DEBUG: \t |-- InjectionExtension\r\n> 2020-10-05 10:01:21,292 [root] DEBUG: \t |-- InjectionNetworkTraffic\r\n> 2020-10-05 10:01:21,292 [root] DEBUG: \t |-- InjectionRUNPE\r\n> 2020-10-05 10:01:21,292 [root] DEBUG: \t |-- InjectionRWX\r\n> 2020-10-05 10:01:21,292 [root] DEBUG: \t |-- injection_themeinitapihook\r\n> 2020-10-05 10:01:21,292 [root] DEBUG: \t |-- Internet_Dropper\r\n> 2020-10-05 10:01:21,292 [root] DEBUG: \t |-- IPC_NamedPipe\r\n> 2020-10-05 10:01:21,292 [root] DEBUG: \t |-- iSpyKeylogger_APIs\r\n> 2020-10-05 10:01:21,292 [root] DEBUG: \t |-- JS_Phish\r\n> 2020-10-05 10:01:21,292 [root] DEBUG: \t |-- JS_SuspiciousRedirect\r\n> 2020-10-05 10:01:21,292 [root] DEBUG: \t |-- KazyBot_APIs\r\n> 2020-10-05 10:01:21,292 [root] DEBUG: \t |-- Kelihos_APIs\r\n> 2020-10-05 10:01:21,293 [root] DEBUG: \t |-- Kibex_APIs\r\n> 2020-10-05 10:01:21,293 [root] DEBUG: \t |-- Kovter_APIs\r\n> 2020-10-05 10:01:21,293 [root] DEBUG: \t |-- KrakenMutexes\r\n> 2020-10-05 10:01:21,293 [root] DEBUG: \t |-- DisableRegedit\r\n> 2020-10-05 10:01:21,293 [root] DEBUG: \t |-- DisableTaskMgr\r\n> 2020-10-05 10:01:21,293 [root] DEBUG: \t |-- Locky_APIs\r\n> 2020-10-05 10:01:21,293 [root] DEBUG: \t |-- malicious_dynamic_function_loading\r\n> 2020-10-05 10:01:21,293 [root] DEBUG: \t |-- EncryptPCInfo\r\n> 2020-10-05 10:01:21,293 [root] DEBUG: \t |-- EnryptDataAgentTeslaHTTP\r\n> 2020-10-05 10:01:21,293 [root] DEBUG: \t |-- EnryptDataAgentTeslaHTTPT2\r\n> 2020-10-05 10:01:21,293 [root] DEBUG: \t |-- EnryptDataNanoCore\r\n> 2020-10-05 10:01:21,293 [root] DEBUG: \t |-- MartiansIE\r\n> 2020-10-05 10:01:21,293 [root] DEBUG: \t |-- MartiansOffice\r\n> 2020-10-05 10:01:21,293 [root] DEBUG: \t |-- MimicsAgent\r\n> 2020-10-05 10:01:21,293 [root] DEBUG: \t |-- MimicsExtension\r\n> 2020-10-05 10:01:21,294 [root] DEBUG: \t |-- MimicsFiletime\r\n> 2020-10-05 10:01:21,294 [root] DEBUG: \t |-- MimicsIcon\r\n> 2020-10-05 10:01:21,294 [root] DEBUG: \t |-- MasqueradesProcessName\r\n> 2020-10-05 10:01:21,294 [root] DEBUG: \t |-- MimikatzModules\r\n> 2020-10-05 10:01:21,294 [root] DEBUG: \t |-- ModifiesCerts\r\n> 2020-10-05 10:01:21,294 [root] DEBUG: \t |-- Modifies_HostFile\r\n> 2020-10-05 10:01:21,294 [root] DEBUG: \t |-- ModifySecurityCenterWarnings\r\n> 2020-10-05 10:01:21,294 [root] DEBUG: \t |-- ModifiesUACNotify\r\n> 2020-10-05 10:01:21,294 [root] DEBUG: \t |-- ModifiesDesktopWallpaper\r\n> 2020-10-05 10:01:21,294 [root] DEBUG: \t |-- move_file_on_reboot\r\n> 2020-10-05 10:01:21,294 [root] DEBUG: \t |-- Multiple_UA\r\n> 2020-10-05 10:01:21,294 [root] DEBUG: \t |-- NetworkAnomaly\r\n> 2020-10-05 10:01:21,294 [root] DEBUG: \t |-- NetworkBIND\r\n> 2020-10-05 10:01:21,294 [root] DEBUG: \t |-- NetworkCountryDistribution\r\n> 2020-10-05 10:01:21,294 [root] DEBUG: \t |-- NetworkMultipleDirectIPConnections\r\n> 2020-10-05 10:01:21,295 [root] DEBUG: \t |-- NetworkCnCHTTP\r\n> 2020-10-05 10:01:21,295 [root] DEBUG: \t |-- NetworkDGA\r\n> 2020-10-05 10:01:21,295 [root] DEBUG: \t |-- NetworkDNSBlockChain\r\n> 2020-10-05 10:01:21,295 [root] DEBUG: \t |-- NetworkDNSIDN\r\n> 2020-10-05 10:01:21,295 [root] DEBUG: \t |-- NetworkDNSOpenNIC\r\n> 2020-10-05 10:01:21,295 [root] DEBUG: \t |-- NetworkDNSSuspiciousQueryType\r\n> 2020-10-05 10:01:21,295 [root] DEBUG: \t |-- NetworkDNSTunnelingRequest\r\n> 2020-10-05 10:01:21,295 [root] DEBUG: \t |-- NetworkDOHTLS\r\n> 2020-10-05 10:01:21,295 [root] DEBUG: \t |-- NetworkDocumentHTTP\r\n> 2020-10-05 10:01:21,295 [root] DEBUG: \t |-- EncryptsSingleHTTPPacket\r\n> 2020-10-05 10:01:21,295 [root] DEBUG: \t |-- NetworkExcessiveUDP\r\n> 2020-10-05 10:01:21,295 [root] DEBUG: \t |-- ExplorerHTTP\r\n> 2020-10-05 10:01:21,295 [root] DEBUG: \t |-- NetworkHTTP\r\n> 2020-10-05 10:01:21,295 [root] DEBUG: \t |-- NetworkICMP\r\n> 2020-10-05 10:01:21,295 [root] DEBUG: \t |-- NetworkIRC\r\n> 2020-10-05 10:01:21,296 [root] DEBUG: \t |-- NetworkSMTP\r\n> 2020-10-05 10:01:21,296 [root] DEBUG: \t |-- NetworkTempFileService\r\n> 2020-10-05 10:01:21,296 [root] DEBUG: \t |-- Tor\r\n> 2020-10-05 10:01:21,296 [root] DEBUG: \t |-- TorHiddenService\r\n> 2020-10-05 10:01:21,296 [root] DEBUG: \t |-- TorGateway\r\n> 2020-10-05 10:01:21,296 [root] DEBUG: \t |-- Nymaim_APIs\r\n> 2020-10-05 10:01:21,296 [root] DEBUG: \t |-- Office_Code_Page\r\n> 2020-10-05 10:01:21,296 [root] DEBUG: \t |-- OfficeAddinLoading\r\n> 2020-10-05 10:01:21,296 [root] DEBUG: \t |-- OfficeCOMLoad\r\n> 2020-10-05 10:01:21,296 [root] DEBUG: \t |-- OfficeDotNetLoad\r\n> 2020-10-05 10:01:21,296 [root] DEBUG: \t |-- OfficePerfKey\r\n> 2020-10-05 10:01:21,296 [root] DEBUG: \t |-- OfficeVBLLoad\r\n> 2020-10-05 10:01:21,296 [root] DEBUG: \t |-- OfficeWMILoad\r\n> 2020-10-05 10:01:21,296 [root] DEBUG: \t |-- OfficeCVE201711882\r\n> 2020-10-05 10:01:21,296 [root] DEBUG: \t |-- OfficeCVE201711882Network\r\n> 2020-10-05 10:01:21,297 [root] DEBUG: \t |-- OfficeFlashLoad\r\n> 2020-10-05 10:01:21,297 [root] DEBUG: \t |-- OfficePostScript\r\n> 2020-10-05 10:01:21,297 [root] DEBUG: \t |-- Office_Macro\r\n> 2020-10-05 10:01:21,297 [root] DEBUG: \t |-- OfficeMacroAutoExecution\r\n> 2020-10-05 10:01:21,297 [root] DEBUG: \t |-- OfficeMacroIOC\r\n> 2020-10-05 10:01:21,297 [root] DEBUG: \t |-- OfficeMacroMaliciousPredition\r\n> 2020-10-05 10:01:21,297 [root] DEBUG: \t |-- OfficeMacroSuspicious\r\n> 2020-10-05 10:01:21,297 [root] DEBUG: \t |-- RTFASLRBypass\r\n> 2020-10-05 10:01:21,297 [root] DEBUG: \t |-- RTFAnomalyCharacterSet\r\n> 2020-10-05 10:01:21,297 [root] DEBUG: \t |-- RTFAnomalyVersion\r\n> 2020-10-05 10:01:21,297 [root] DEBUG: \t |-- RTFEmbeddedContent\r\n> 2020-10-05 10:01:21,297 [root] DEBUG: \t |-- RTFEmbeddedOfficeFile\r\n> 2020-10-05 10:01:21,297 [root] DEBUG: \t |-- RTFExploitStatic\r\n> 2020-10-05 10:01:21,297 [root] DEBUG: \t |-- OfficeSecurity\r\n> 2020-10-05 10:01:21,297 [root] DEBUG: \t |-- OfficeAnamalousFeature\r\n> 2020-10-05 10:01:21,298 [root] DEBUG: \t |-- OfficeDDECommand\r\n> 2020-10-05 10:01:21,298 [root] DEBUG: \t |-- OfficeSuspiciousProcesses\r\n> 2020-10-05 10:01:21,298 [root] DEBUG: \t |-- OfficeWriteEXE\r\n> 2020-10-05 10:01:21,298 [root] DEBUG: \t |-- BuildLangID\r\n> 2020-10-05 10:01:21,298 [root] DEBUG: \t |-- ResourceLangID\r\n> 2020-10-05 10:01:21,298 [root] DEBUG: \t |-- PackerUnknownPESectionName\r\n> 2020-10-05 10:01:21,298 [root] DEBUG: \t |-- ArmadilloMutex\r\n> 2020-10-05 10:01:21,298 [root] DEBUG: \t |-- ArmadilloRegKey\r\n> 2020-10-05 10:01:21,298 [root] DEBUG: \t |-- ASPackPacked\r\n> 2020-10-05 10:01:21,298 [root] DEBUG: \t |-- AspireCryptPacked\r\n> 2020-10-05 10:01:21,298 [root] DEBUG: \t |-- BedsProtectorPacked\r\n> 2020-10-05 10:01:21,298 [root] DEBUG: \t |-- ConfuserPacked\r\n> 2020-10-05 10:01:21,298 [root] DEBUG: \t |-- EnigmaPacked\r\n> 2020-10-05 10:01:21,299 [root] DEBUG: \t |-- PackerEntropy\r\n> 2020-10-05 10:01:21,299 [root] DEBUG: \t |-- MPressPacked\r\n> 2020-10-05 10:01:21,299 [root] DEBUG: \t |-- NatePacked\r\n> 2020-10-05 10:01:21,299 [root] DEBUG: \t |-- NsPacked\r\n> 2020-10-05 10:01:21,299 [root] DEBUG: \t |-- SmartAssemblyPacked\r\n> 2020-10-05 10:01:21,299 [root] DEBUG: \t |-- SpicesPacked\r\n> 2020-10-05 10:01:21,299 [root] DEBUG: \t |-- ThemidaPacked\r\n> 2020-10-05 10:01:21,299 [root] DEBUG: \t |-- ThemidaPackedSection\r\n> 2020-10-05 10:01:21,299 [root] DEBUG: \t |-- TitanPacked\r\n> 2020-10-05 10:01:21,299 [root] DEBUG: \t |-- UPXCompressed\r\n> 2020-10-05 10:01:21,299 [root] DEBUG: \t |-- VMPPacked\r\n> 2020-10-05 10:01:21,299 [root] DEBUG: \t |-- YodaPacked\r\n> 2020-10-05 10:01:21,299 [root] DEBUG: \t |-- PDF_Annot_URLs\r\n> 2020-10-05 10:01:21,299 [root] DEBUG: \t |-- ADS\r\n> 2020-10-05 10:01:21,300 [root] DEBUG: \t |-- Autorun\r\n> 2020-10-05 10:01:21,300 [root] DEBUG: \t |-- Autorun_scheduler\r\n> 2020-10-05 10:01:21,300 [root] DEBUG: \t |-- PersistenceSafeBoot\r\n> 2020-10-05 10:01:21,300 [root] DEBUG: \t |-- PersistenceBootexecute\r\n> 2020-10-05 10:01:21,300 [root] DEBUG: \t |-- PersistenceRegistryScript\r\n> 2020-10-05 10:01:21,300 [root] DEBUG: \t |-- PersistenceIFEO\r\n> 2020-10-05 10:01:21,300 [root] DEBUG: \t |-- PersistenceSilentProcessExit\r\n> 2020-10-05 10:01:21,300 [root] DEBUG: \t |-- PersistenceRDPRegistry\r\n> 2020-10-05 10:01:21,300 [root] DEBUG: \t |-- PersistenceService\r\n> 2020-10-05 10:01:21,300 [root] DEBUG: \t |-- PersistenceShimDatabase\r\n> 2020-10-05 10:01:21,300 [root] DEBUG: \t |-- Polymorphic\r\n> 2020-10-05 10:01:21,300 [root] DEBUG: \t |-- Pony_APIs\r\n> 2020-10-05 10:01:21,300 [root] DEBUG: \t |-- PowerpoolMutexes\r\n> 2020-10-05 10:01:21,301 [root] DEBUG: \t |-- PowerShellNetworkConnection\r\n> 2020-10-05 10:01:21,301 [root] DEBUG: \t |-- PowerShellScriptBlockLogging\r\n> 2020-10-05 10:01:21,301 [root] DEBUG: \t |-- PowershellCommandSuspicious\r\n> 2020-10-05 10:01:21,301 [root] DEBUG: \t |-- PowershellRenamed\r\n> 2020-10-05 10:01:21,301 [root] DEBUG: \t |-- PowershellReversed\r\n> 2020-10-05 10:01:21,301 [root] DEBUG: \t |-- PowershellVariableObfuscation\r\n> 2020-10-05 10:01:21,301 [root] DEBUG: \t |-- PunchPlusPlusPCREs\r\n> 2020-10-05 10:01:21,301 [root] DEBUG: \t |-- PreventsSafeboot\r\n> 2020-10-05 10:01:21,301 [root] DEBUG: \t |-- ProcessInterest\r\n> 2020-10-05 10:01:21,301 [root] DEBUG: \t |-- ProcessNeeded\r\n> 2020-10-05 10:01:21,301 [root] DEBUG: \t |-- Procmem_Yara\r\n> 2020-10-05 10:01:21,301 [root] DEBUG: \t |-- MassDataEncryption\r\n> 2020-10-05 10:01:21,301 [root] DEBUG: \t |-- CryptoMixMutexes\r\n> 2020-10-05 10:01:21,301 [root] DEBUG: \t |-- DharmaMutexes\r\n> 2020-10-05 10:01:21,301 [root] DEBUG: \t |-- RansomwareDMALocker\r\n> 2020-10-05 10:01:21,302 [root] DEBUG: \t |-- RansomwareExtensions\r\n> 2020-10-05 10:01:21,302 [root] DEBUG: \t |-- RansomwareFileModifications\r\n> 2020-10-05 10:01:21,302 [root] DEBUG: \t |-- RansomwareFiles\r\n> 2020-10-05 10:01:21,302 [root] DEBUG: \t |-- FonixMutexes\r\n> 2020-10-05 10:01:21,302 [root] DEBUG: \t |-- GandCrabMutexes\r\n> 2020-10-05 10:01:21,302 [root] DEBUG: \t |-- GermanWiperMutexes\r\n> 2020-10-05 10:01:21,302 [root] DEBUG: \t |-- MedusaLockerMutexes\r\n> 2020-10-05 10:01:21,302 [root] DEBUG: \t |-- MedusaLockerRegkeys\r\n> 2020-10-05 10:01:21,302 [root] DEBUG: \t |-- RansomwareMessage\r\n> 2020-10-05 10:01:21,302 [root] DEBUG: \t |-- RansomwareMessageMultipleLocations\r\n> 2020-10-05 10:01:21,302 [root] DEBUG: \t |-- NemtyMutexes\r\n> 2020-10-05 10:01:21,302 [root] DEBUG: \t |-- NemtyNetworkActivity\r\n> 2020-10-05 10:01:21,302 [root] DEBUG: \t |-- NemtyNote\r\n> 2020-10-05 10:01:21,302 [root] DEBUG: \t |-- NemtyRegkeys\r\n> 2020-10-05 10:01:21,303 [root] DEBUG: \t |-- RansomwareRadamant\r\n> 2020-10-05 10:01:21,303 [root] DEBUG: \t |-- RansomwareRecyclebin\r\n> 2020-10-05 10:01:21,303 [root] DEBUG: \t |-- RevilMutexes\r\n> 2020-10-05 10:01:21,303 [root] DEBUG: \t |-- SatanMutexes\r\n> 2020-10-05 10:01:21,303 [root] DEBUG: \t |-- SnakeRansomMutexes\r\n> 2020-10-05 10:01:21,303 [root] DEBUG: \t |-- sodinokibi\r\n> 2020-10-05 10:01:21,303 [root] DEBUG: \t |-- StopRansomMutexes\r\n> 2020-10-05 10:01:21,303 [root] DEBUG: \t |-- BeebusMutexes\r\n> 2020-10-05 10:01:21,303 [root] DEBUG: \t |-- BlackRATAPIs\r\n> 2020-10-05 10:01:21,303 [root] DEBUG: \t |-- BlackRATMutexes\r\n> 2020-10-05 10:01:21,303 [root] DEBUG: \t |-- BlackRATNetworkActivity\r\n> 2020-10-05 10:01:21,303 [root] DEBUG: \t |-- BlackRATRegistryKeys\r\n> 2020-10-05 10:01:21,303 [root] DEBUG: \t |-- DCRatAPIs\r\n> 2020-10-05 10:01:21,303 [root] DEBUG: \t |-- DCRatFiles\r\n> 2020-10-05 10:01:21,304 [root] DEBUG: \t |-- DCRatMutex\r\n> 2020-10-05 10:01:21,304 [root] DEBUG: \t |-- FynloskiMutexes\r\n> 2020-10-05 10:01:21,304 [root] DEBUG: \t |-- KaraganyEventObjects\r\n> 2020-10-05 10:01:21,304 [root] DEBUG: \t |-- KaraganyFiles\r\n> 2020-10-05 10:01:21,304 [root] DEBUG: \t |-- LimeRATMutexes\r\n> 2020-10-05 10:01:21,304 [root] DEBUG: \t |-- LimeRATRegkeys\r\n> 2020-10-05 10:01:21,304 [root] DEBUG: \t |-- LuminosityRAT\r\n> 2020-10-05 10:01:21,304 [root] DEBUG: \t |-- ModiRATBehavior\r\n> 2020-10-05 10:01:21,304 [root] DEBUG: \t |-- NanocoreRAT\r\n> 2020-10-05 10:01:21,304 [root] DEBUG: \t |-- netwire\r\n> 2020-10-05 10:01:21,304 [root] DEBUG: \t |-- NjratRegkeys\r\n> 2020-10-05 10:01:21,304 [root] DEBUG: \t |-- ObliquekRATFiles\r\n> 2020-10-05 10:01:21,304 [root] DEBUG: \t |-- ObliquekRATMutexes\r\n> 2020-10-05 10:01:21,304 [root] DEBUG: \t |-- ObliquekRATNetworkActivity\r\n> 2020-10-05 10:01:21,304 [root] DEBUG: \t |-- OrcusRAT\r\n> 2020-10-05 10:01:21,305 [root] DEBUG: \t |-- ParallaxMutexes\r\n> 2020-10-05 10:01:21,305 [root] DEBUG: \t |-- PcClientMutexes\r\n> 2020-10-05 10:01:21,305 [root] DEBUG: \t |-- PlugxMutexes\r\n> 2020-10-05 10:01:21,305 [root] DEBUG: \t |-- PoisonIvyMutexes\r\n> 2020-10-05 10:01:21,305 [root] DEBUG: \t |-- QuasarMutexes\r\n> 2020-10-05 10:01:21,305 [root] DEBUG: \t |-- RatsnifMutexes\r\n> 2020-10-05 10:01:21,305 [root] DEBUG: \t |-- SpynetRat\r\n> 2020-10-05 10:01:21,305 [root] DEBUG: \t |-- TrochilusRATAPIs\r\n> 2020-10-05 10:01:21,305 [root] DEBUG: \t |-- VenomRAT\r\n> 2020-10-05 10:01:21,305 [root] DEBUG: \t |-- WarzoneRATFiles\r\n> 2020-10-05 10:01:21,305 [root] DEBUG: \t |-- WarzoneRATRegkeys\r\n> 2020-10-05 10:01:21,305 [root] DEBUG: \t |-- XpertRATFiles\r\n> 2020-10-05 10:01:21,305 [root] DEBUG: \t |-- XpertRATMutexes\r\n> 2020-10-05 10:01:21,305 [root] DEBUG: \t |-- XtremeMutexes\r\n> 2020-10-05 10:01:21,306 [root] DEBUG: \t |-- ReadsSelf\r\n> 2020-10-05 10:01:21,306 [root] DEBUG: \t |-- Recon_Beacon\r\n> 2020-10-05 10:01:21,306 [root] DEBUG: \t |-- CheckIP\r\n> 2020-10-05 10:01:21,306 [root] DEBUG: \t |-- Fingerprint\r\n> 2020-10-05 10:01:21,306 [root] DEBUG: \t |-- InstalledApps\r\n> 2020-10-05 10:01:21,306 [root] DEBUG: \t |-- SystemInfo\r\n> 2020-10-05 10:01:21,306 [root] DEBUG: \t |-- Accesses_RecycleBin\r\n> 2020-10-05 10:01:21,306 [root] DEBUG: \t |-- RemcosFiles\r\n> 2020-10-05 10:01:21,306 [root] DEBUG: \t |-- RemcosMutexes\r\n> 2020-10-05 10:01:21,306 [root] DEBUG: \t |-- RemcosRegkeys\r\n> 2020-10-05 10:01:21,306 [root] DEBUG: \t |-- RDPTCPKey\r\n> 2020-10-05 10:01:21,306 [root] DEBUG: \t |-- UsesRDPClip\r\n> 2020-10-05 10:01:21,307 [root] DEBUG: \t |-- UsesRemoteDesktopSession\r\n> 2020-10-05 10:01:21,307 [root] DEBUG: \t |-- RemovesZoneIdADS\r\n> 2020-10-05 10:01:21,307 [root] DEBUG: \t |-- ScriptCreatedProcess\r\n> 2020-10-05 10:01:21,307 [root] DEBUG: \t |-- ScriptNetworkActvity\r\n> 2020-10-05 10:01:21,307 [root] DEBUG: \t |-- SuspiciousJSScript\r\n> 2020-10-05 10:01:21,307 [root] DEBUG: \t |-- Secure_Login_Phish\r\n> 2020-10-05 10:01:21,307 [root] DEBUG: \t |-- SecurityXploded_Modules\r\n> 2020-10-05 10:01:21,307 [root] DEBUG: \t |-- SetsAutoconfigURL\r\n> 2020-10-05 10:01:21,307 [root] DEBUG: \t |-- Shifu_APIs\r\n> 2020-10-05 10:01:21,307 [root] DEBUG: \t |-- InstallsWinpcap\r\n> 2020-10-05 10:01:21,307 [root] DEBUG: \t |-- SpoofsProcname\r\n> 2020-10-05 10:01:21,307 [root] DEBUG: \t |-- CreatesAutorunInf\r\n> 2020-10-05 10:01:21,307 [root] DEBUG: \t |-- StackPivot\r\n> 2020-10-05 10:01:21,307 [root] DEBUG: \t |-- StackPivotFileCreated\r\n> 2020-10-05 10:01:21,308 [root] DEBUG: \t |-- StackPivotProcessCreate\r\n> 2020-10-05 10:01:21,308 [root] DEBUG: \t |-- Authenticode\r\n> 2020-10-05 10:01:21,308 [root] DEBUG: \t |-- InvalidAuthenticodeSignature\r\n> 2020-10-05 10:01:21,308 [root] DEBUG: \t |-- DotNetAnomaly\r\n> 2020-10-05 10:01:21,308 [root] DEBUG: \t |-- Static_Java\r\n> 2020-10-05 10:01:21,308 [root] DEBUG: \t |-- Static_PDF\r\n> 2020-10-05 10:01:21,308 [root] DEBUG: \t |-- PEAnomaly\r\n> 2020-10-05 10:01:21,308 [root] DEBUG: \t |-- PECompileTimeStomping\r\n> 2020-10-05 10:01:21,308 [root] DEBUG: \t |-- StaticPEPDBPath\r\n> 2020-10-05 10:01:21,308 [root] DEBUG: \t |-- RATConfig\r\n> 2020-10-05 10:01:21,308 [root] DEBUG: \t |-- VersionInfoAnomaly\r\n> 2020-10-05 10:01:21,309 [root] DEBUG: \t |-- StealthChildProc\r\n> 2020-10-05 10:01:21,309 [root] DEBUG: \t |-- StealthFile\r\n> 2020-10-05 10:01:21,309 [root] DEBUG: \t |-- StealthHiddenExtension\r\n> 2020-10-05 10:01:21,309 [root] DEBUG: \t |-- StealthHiddenReg\r\n> 2020-10-05 10:01:21,309 [root] DEBUG: \t |-- StealthHideNotifications\r\n> 2020-10-05 10:01:21,309 [root] DEBUG: \t |-- StealthNetwork\r\n> 2020-10-05 10:01:21,309 [root] DEBUG: \t |-- StealthTimeout\r\n> 2020-10-05 10:01:21,309 [root] DEBUG: \t |-- StealthWebHistory\r\n> 2020-10-05 10:01:21,309 [root] DEBUG: \t |-- Hidden_Window\r\n> 2020-10-05 10:01:21,309 [root] DEBUG: \t |-- SuricataAlert\r\n> 2020-10-05 10:01:21,309 [root] DEBUG: \t |-- sysinternals_psexec\r\n> 2020-10-05 10:01:21,309 [root] DEBUG: \t |-- sysinternals_tools\r\n> 2020-10-05 10:01:21,309 [root] DEBUG: \t |-- TampersETW\r\n> 2020-10-05 10:01:21,310 [root] DEBUG: \t |-- TampersPowerShellLogging\r\n> 2020-10-05 10:01:21,310 [root] DEBUG: \t |-- Flame\r\n> 2020-10-05 10:01:21,310 [root] DEBUG: \t |-- TerritorialDisputeSIGs\r\n> 2020-10-05 10:01:21,310 [root] DEBUG: \t |-- Tinba_APIs\r\n> 2020-10-05 10:01:21,310 [root] DEBUG: \t |-- TrickBotTaskDelete\r\n> 2020-10-05 10:01:21,310 [root] DEBUG: \t |-- TrickBotMutexes\r\n> 2020-10-05 10:01:21,310 [root] DEBUG: \t |-- FleerCivetMutexes\r\n> 2020-10-05 10:01:21,310 [root] DEBUG: \t |-- LokibotMutexes\r\n> 2020-10-05 10:01:21,310 [root] DEBUG: \t |-- Troldesh_APIs\r\n> 2020-10-05 10:01:21,310 [root] DEBUG: \t |-- Upatre_APIs\r\n> 2020-10-05 10:01:21,310 [root] DEBUG: \t |-- Ursnif_APIs\r\n> 2020-10-05 10:01:21,310 [root] DEBUG: \t |-- UserEnum\r\n> 2020-10-05 10:01:21,310 [root] DEBUG: \t |-- ADFind\r\n> 2020-10-05 10:01:21,310 [root] DEBUG: \t |-- Vawtrak_APIs\r\n> 2020-10-05 10:01:21,310 [root] DEBUG: \t |-- Vawtrak_APIs\r\n> 2020-10-05 10:01:21,311 [root] DEBUG: \t |-- Virus\r\n> 2020-10-05 10:01:21,311 [root] DEBUG: \t |-- NeshtaFiles\r\n> 2020-10-05 10:01:21,311 [root] DEBUG: \t |-- NeshtaMutexes\r\n> 2020-10-05 10:01:21,311 [root] DEBUG: \t |-- NeshtaRegKeys\r\n> 2020-10-05 10:01:21,311 [root] DEBUG: \t |-- RenamerMutexes\r\n> 2020-10-05 10:01:21,311 [root] DEBUG: \t |-- VolDevicetree1\r\n> 2020-10-05 10:01:21,311 [root] DEBUG: \t |-- VolHandles1\r\n> 2020-10-05 10:01:21,311 [root] DEBUG: \t |-- VolLdrModules1\r\n> 2020-10-05 10:01:21,311 [root] DEBUG: \t |-- VolLdrModules2\r\n> 2020-10-05 10:01:21,311 [root] DEBUG: \t |-- VolMalfind1\r\n> 2020-10-05 10:01:21,311 [root] DEBUG: \t |-- VolMalfind2\r\n> 2020-10-05 10:01:21,311 [root] DEBUG: \t |-- VolModscan1\r\n> 2020-10-05 10:01:21,311 [root] DEBUG: \t |-- VolSvcscan1\r\n> 2020-10-05 10:01:21,312 [root] DEBUG: \t |-- VolSvcscan2\r\n> 2020-10-05 10:01:21,312 [root] DEBUG: \t |-- VolSvcscan3\r\n> 2020-10-05 10:01:21,312 [root] DEBUG: \t |-- Webmail_Phish\r\n> 2020-10-05 10:01:21,312 [root] DEBUG: \t |-- OWAWebShellFiles\r\n> 2020-10-05 10:01:21,312 [root] DEBUG: \t |-- WebShellFiles\r\n> 2020-10-05 10:01:21,312 [root] DEBUG: \t |-- WebShellProcesses\r\n> 2020-10-05 10:01:21,312 [root] DEBUG: \t |-- PersistsDotNetDevUtility\r\n> 2020-10-05 10:01:21,312 [root] DEBUG: \t |-- SpwansDotNetDevUtiliy\r\n> 2020-10-05 10:01:21,312 [root] DEBUG: \t |-- WHOIS_Create\r\n> 2020-10-05 10:01:21,312 [root] DEBUG: \t |-- AltersWindowsUtility\r\n> 2020-10-05 10:01:21,312 [root] DEBUG: \t |-- DotNETCSCBuild\r\n> 2020-10-05 10:01:21,312 [root] DEBUG: \t |-- MultipleExplorerInstances\r\n> 2020-10-05 10:01:21,312 [root] DEBUG: \t |-- OverwritesAccessibilityUtility\r\n> 2020-10-05 10:01:21,312 [root] DEBUG: \t |-- ScriptToolExecuted\r\n> 2020-10-05 10:01:21,313 [root] DEBUG: \t |-- SuspiciousCertutilUse\r\n> 2020-10-05 10:01:21,313 [root] DEBUG: \t |-- SuspiciousCommandTools\r\n> 2020-10-05 10:01:21,313 [root] DEBUG: \t |-- SuspiciousMpCmdRunUse\r\n> 2020-10-05 10:01:21,313 [root] DEBUG: \t |-- SuspiciousPingUse\r\n> 2020-10-05 10:01:21,313 [root] DEBUG: \t |-- UsesWindowsUtilities\r\n> 2020-10-05 10:01:21,313 [root] DEBUG: \t |-- UsesWindowsUtilitiesAppCmd\r\n> 2020-10-05 10:01:21,313 [root] DEBUG: \t |-- UsesWindowsUtilitiesCSVDELDFIDE\r\n> 2020-10-05 10:01:21,313 [root] DEBUG: \t |-- UsesWindowsUtilitiesCipher\r\n> 2020-10-05 10:01:21,313 [root] DEBUG: \t |-- UsesWindowsUtilitiesClickOnce\r\n> 2020-10-05 10:01:21,313 [root] DEBUG: \t |-- UsesWindowsUtilitiesDSQuery\r\n> 2020-10-05 10:01:21,313 [root] DEBUG: \t |-- UsesWindowsUtilitiesFinger\r\n> 2020-10-05 10:01:21,313 [root] DEBUG: \t |-- UsesWindowsUtilitiesMode\r\n> 2020-10-05 10:01:21,313 [root] DEBUG: \t |-- UsesWindowsUtilitiesNTDSutil\r\n> 2020-10-05 10:01:21,313 [root] DEBUG: \t |-- UsesWindowsUtilitiesNltest\r\n> 2020-10-05 10:01:21,313 [root] DEBUG: \t |-- UsesWindowsUtilitiesScheduler\r\n> 2020-10-05 10:01:21,313 [root] DEBUG: \t |-- WMICCommandSuspicious\r\n> 2020-10-05 10:01:21,314 [root] DEBUG: \t |-- ScrconsWMIScriptConsumer\r\n> 2020-10-05 10:01:21,314 [root] DEBUG: \t |-- WMICreateProcess\r\n> 2020-10-05 10:01:21,314 [root] DEBUG: \t |-- WMIScriptProcess\r\n> 2020-10-05 10:01:21,314 [root] DEBUG: \t `-- AllapleMutexes\r\n> 2020-10-05 10:01:21,314 [root] DEBUG: Imported \"reporting\" modules:\r\n> 2020-10-05 10:01:21,314 [root] DEBUG: \t |-- BinGraph\r\n> 2020-10-05 10:01:21,314 [root] DEBUG: \t |-- CALLBACKHOME\r\n> 2020-10-05 10:01:21,314 [root] DEBUG: \t |-- Compression\r\n> 2020-10-05 10:01:21,314 [root] DEBUG: \t |-- CompressResults\r\n> 2020-10-05 10:01:21,314 [root] DEBUG: \t |-- ElasticsearchDB\r\n> 2020-10-05 10:01:21,314 [root] DEBUG: \t |-- JsonDump\r\n> 2020-10-05 10:01:21,314 [root] DEBUG: \t |-- MAEC41Report\r\n> 2020-10-05 10:01:21,314 [root] DEBUG: \t |-- MaecReport\r\n> 2020-10-05 10:01:21,314 [root] DEBUG: \t |-- Malheur\r\n> 2020-10-05 10:01:21,314 [root] DEBUG: \t |-- MISP\r\n> 2020-10-05 10:01:21,315 [root] DEBUG: \t |-- MITRE_TTPS\r\n> 2020-10-05 10:01:21,315 [root] DEBUG: \t |-- Moloch\r\n> 2020-10-05 10:01:21,315 [root] DEBUG: \t |-- MongoDB\r\n> 2020-10-05 10:01:21,315 [root] DEBUG: \t |-- PCAP2CERT\r\n> 2020-10-05 10:01:21,315 [root] DEBUG: \t |-- RAMFSCLEAN\r\n> 2020-10-05 10:01:21,315 [root] DEBUG: \t |-- ReportHTML\r\n> 2020-10-05 10:01:21,315 [root] DEBUG: \t |-- ReportHTMLSummary\r\n> 2020-10-05 10:01:21,315 [root] DEBUG: \t |-- ReportPDF\r\n> 2020-10-05 10:01:21,315 [root] DEBUG: \t |-- ReSubmitExtractedEXE\r\n> 2020-10-05 10:01:21,315 [root] DEBUG: \t |-- Retention\r\n> 2020-10-05 10:01:21,315 [root] DEBUG: \t |-- SubmitCAPE\r\n> 2020-10-05 10:01:21,315 [root] DEBUG: \t `-- Syslog\r\n> 2020-10-05 10:01:21,315 [root] DEBUG: Imported \"feeds\" modules:\r\n> 2020-10-05 10:01:21,315 [root] DEBUG: \t `-- AbuseCH_SSL\r\n> 2020-10-05 10:01:21,315 [root] DEBUG: Imported \"machinery\" modules:\r\n> 2020-10-05 10:01:21,315 [root] DEBUG: \t `-- VirtualBox\r\n> 2020-10-05 10:01:21,316 [root] DEBUG: Checking for locked tasks...\r\n> 2020-10-05 10:01:21,435 [root] DEBUG: Initializing Yara...\r\n> 2020-10-05 10:01:21,453 [root] DEBUG: \t |-- binaries Generic_Phishing_PDF.yar\r\n> 2020-10-05 10:01:21,453 [root] DEBUG: \t |-- binaries HeavensGate.yar\r\n> 2020-10-05 10:01:21,453 [root] DEBUG: \t |-- binaries LNK_Ruleset.yar\r\n> 2020-10-05 10:01:21,453 [root] DEBUG: \t |-- binaries OLEfile_in_CAD_FAS_LSP.yar\r\n> 2020-10-05 10:01:21,453 [root] DEBUG: \t |-- binaries Webshell_in_image.yar\r\n> 2020-10-05 10:01:21,453 [root] DEBUG: \t |-- binaries embedded.yar\r\n> 2020-10-05 10:01:21,453 [root] DEBUG: \t |-- binaries indicator_packed.yar\r\n> 2020-10-05 10:01:21,453 [root] DEBUG: \t |-- binaries indicator_tools.yar\r\n> 2020-10-05 10:01:21,454 [root] DEBUG: \t |-- binaries shellcodes.yar\r\n> 2020-10-05 10:01:21,454 [root] DEBUG: \t |-- binaries vmdetect.yar\r\n> 2020-10-05 10:01:21,473 [root] DEBUG: \t |-- memory Exploit_HT_Flash_Vars.yar\r\n> 2020-10-05 10:01:21,473 [root] DEBUG: \t |-- memory Exploit_HT_VRename.yar\r\n> 2020-10-05 10:01:21,473 [root] DEBUG: \t |-- memory adgholas.yar\r\n> 2020-10-05 10:01:21,473 [root] DEBUG: \t |-- memory angler.yar\r\n> 2020-10-05 10:01:21,473 [root] DEBUG: \t |-- memory astrum.yar\r\n> 2020-10-05 10:01:21,473 [root] DEBUG: \t |-- memory cve_2013_2551.yar\r\n> 2020-10-05 10:01:21,473 [root] DEBUG: \t |-- memory cve_2014_0515.yar\r\n> 2020-10-05 10:01:21,473 [root] DEBUG: \t |-- memory cve_2014_0569.yar\r\n> 2020-10-05 10:01:21,473 [root] DEBUG: \t |-- memory cve_2014_6332.yar\r\n> 2020-10-05 10:01:21,473 [root] DEBUG: \t |-- memory cve_2015_0016.yar\r\n> 2020-10-05 10:01:21,473 [root] DEBUG: \t |-- memory cve_2015_2419.yar\r\n> 2020-10-05 10:01:21,473 [root] DEBUG: \t |-- memory cve_2015_2545.yar\r\n> 2020-10-05 10:01:21,473 [root] DEBUG: \t |-- memory cve_2015_5122.yar\r\n> 2020-10-05 10:01:21,473 [root] DEBUG: \t |-- memory cve_2016_0189.yar\r\n> 2020-10-05 10:01:21,474 [root] DEBUG: \t |-- memory cve_2016_3298.yar\r\n> 2020-10-05 10:01:21,474 [root] DEBUG: \t |-- memory darkcomet.yar\r\n> 2020-10-05 10:01:21,474 [root] DEBUG: \t |-- memory dridex.yar\r\n> 2020-10-05 10:01:21,474 [root] DEBUG: \t |-- memory dyre.yar\r\n> 2020-10-05 10:01:21,474 [root] DEBUG: \t |-- memory eitest.yar\r\n> 2020-10-05 10:01:21,474 [root] DEBUG: \t |-- memory flash_exploits.yar\r\n> 2020-10-05 10:01:21,474 [root] DEBUG: \t |-- memory kazybot.yar\r\n> 2020-10-05 10:01:21,474 [root] DEBUG: \t |-- memory neutrino.yar\r\n> 2020-10-05 10:01:21,474 [root] DEBUG: \t |-- memory nuclear.yar\r\n> 2020-10-05 10:01:21,474 [root] DEBUG: \t |-- memory rig.yar\r\n> 2020-10-05 10:01:21,474 [root] DEBUG: \t |-- memory shellcodes.yar\r\n> 2020-10-05 10:01:21,474 [root] DEBUG: \t |-- memory sundown.yar\r\n> 2020-10-05 10:01:21,503 [root] DEBUG: \t |-- CAPE AAR.yar\r\n> 2020-10-05 10:01:21,503 [root] DEBUG: \t |-- CAPE AcidRain.yar\r\n> 2020-10-05 10:01:21,503 [root] DEBUG: \t |-- CAPE Adfind.yar\r\n> 2020-10-05 10:01:21,503 [root] DEBUG: \t |-- CAPE Adzok.yar\r\n> 2020-10-05 10:01:21,503 [root] DEBUG: \t |-- CAPE AgentTesla.yar\r\n> 2020-10-05 10:01:21,503 [root] DEBUG: \t |-- CAPE AgentTeslaV3.yar\r\n> 2020-10-05 10:01:21,503 [root] DEBUG: \t |-- CAPE AlienSpy.yar\r\n> 2020-10-05 10:01:21,503 [root] DEBUG: \t |-- CAPE Amadey.yar\r\n> 2020-10-05 10:01:21,503 [root] DEBUG: \t |-- CAPE Ap0calypse.yar\r\n> 2020-10-05 10:01:21,504 [root] DEBUG: \t |-- CAPE Arcom.yar\r\n> 2020-10-05 10:01:21,504 [root] DEBUG: \t |-- CAPE Arkei.yar\r\n> 2020-10-05 10:01:21,504 [root] DEBUG: \t |-- CAPE Aspire.yar\r\n> 2020-10-05 10:01:21,504 [root] DEBUG: \t |-- CAPE AsyncRat.yar\r\n> 2020-10-05 10:01:21,504 [root] DEBUG: \t |-- CAPE Atlas.yar\r\n> 2020-10-05 10:01:21,504 [root] DEBUG: \t |-- CAPE Aurora.yar\r\n> 2020-10-05 10:01:21,504 [root] DEBUG: \t |-- CAPE Avaddon.yar\r\n> 2020-10-05 10:01:21,504 [root] DEBUG: \t |-- CAPE Avalon.yar\r\n> 2020-10-05 10:01:21,504 [root] DEBUG: \t |-- CAPE Azer.yar\r\n> 2020-10-05 10:01:21,504 [root] DEBUG: \t |-- CAPE Azorult.yar\r\n> 2020-10-05 10:01:21,504 [root] DEBUG: \t |-- CAPE BACKSPACE.yar\r\n> 2020-10-05 10:01:21,504 [root] DEBUG: \t |-- CAPE BackNet.yar\r\n> 2020-10-05 10:01:21,504 [root] DEBUG: \t |-- CAPE BackOffLoader.yar\r\n> 2020-10-05 10:01:21,504 [root] DEBUG: \t |-- CAPE BackOffPOS.yar\r\n> 2020-10-05 10:01:21,504 [root] DEBUG: \t |-- CAPE BadRabbit.yar\r\n> 2020-10-05 10:01:21,504 [root] DEBUG: \t |-- CAPE Baldr.yar\r\n> 2020-10-05 10:01:21,504 [root] DEBUG: \t |-- CAPE Bandook.yar\r\n> 2020-10-05 10:01:21,504 [root] DEBUG: \t |-- CAPE Bazar.yar\r\n> 2020-10-05 10:01:21,504 [root] DEBUG: \t |-- CAPE BitPaymer.yar\r\n> 2020-10-05 10:01:21,505 [root] DEBUG: \t |-- CAPE BitterRAT.yar\r\n> 2020-10-05 10:01:21,505 [root] DEBUG: \t |-- CAPE BlackNix.yar\r\n> 2020-10-05 10:01:21,505 [root] DEBUG: \t |-- CAPE BlackShades.yar\r\n> 2020-10-05 10:01:21,505 [root] DEBUG: \t |-- CAPE BlackshadesRAT.yar\r\n> 2020-10-05 10:01:21,505 [root] DEBUG: \t |-- CAPE BlueBanana.yar\r\n> 2020-10-05 10:01:21,505 [root] DEBUG: \t |-- CAPE Bozok.yar\r\n> 2020-10-05 10:01:21,505 [root] DEBUG: \t |-- CAPE Buran.yar\r\n> 2020-10-05 10:01:21,505 [root] DEBUG: \t |-- CAPE Cerber.yar\r\n> 2020-10-05 10:01:21,505 [root] DEBUG: \t |-- CAPE ChChes.yar\r\n> 2020-10-05 10:01:21,505 [root] DEBUG: \t |-- CAPE ChaChaDDoS.yar\r\n> 2020-10-05 10:01:21,505 [root] DEBUG: \t |-- CAPE ClientMesh.yar\r\n> 2020-10-05 10:01:21,505 [root] DEBUG: \t |-- CAPE Clop.yar\r\n> 2020-10-05 10:01:21,505 [root] DEBUG: \t |-- CAPE CobaltStrikeBeacon.yar\r\n> 2020-10-05 10:01:21,505 [root] DEBUG: \t |-- CAPE Codoso.yar\r\n> 2020-10-05 10:01:21,505 [root] DEBUG: \t |-- CAPE Confucius_B.yar\r\n> 2020-10-05 10:01:21,505 [root] DEBUG: \t |-- CAPE Cotx_RAT.yar\r\n> 2020-10-05 10:01:21,505 [root] DEBUG: \t |-- CAPE CryLock.yar\r\n> 2020-10-05 10:01:21,505 [root] DEBUG: \t |-- CAPE CryptoStealerGo.yar\r\n> 2020-10-05 10:01:21,505 [root] DEBUG: \t |-- CAPE Cryptoshield.yar\r\n> 2020-10-05 10:01:21,505 [root] DEBUG: \t |-- CAPE Cutlet.yar\r\n> 2020-10-05 10:01:21,506 [root] DEBUG: \t |-- CAPE CyberGate.yar\r\n> 2020-10-05 10:01:21,506 [root] DEBUG: \t |-- CAPE DCRat.yar\r\n> 2020-10-05 10:01:21,506 [root] DEBUG: \t |-- CAPE DTstealer.yar\r\n> 2020-10-05 10:01:21,506 [root] DEBUG: \t |-- CAPE DarkComet.yar\r\n> 2020-10-05 10:01:21,506 [root] DEBUG: \t |-- CAPE DarkRAT.yar\r\n> 2020-10-05 10:01:21,506 [root] DEBUG: \t |-- CAPE DoppelPaymer.yar\r\n> 2020-10-05 10:01:21,506 [root] DEBUG: \t |-- CAPE Dreambot.yar\r\n> 2020-10-05 10:01:21,506 [root] DEBUG: \t |-- CAPE Dridex.yar\r\n> 2020-10-05 10:01:21,506 [root] DEBUG: \t |-- CAPE DridexLoader.yar\r\n> 2020-10-05 10:01:21,506 [root] DEBUG: \t |-- CAPE DridexV4.yar\r\n> 2020-10-05 10:01:21,506 [root] DEBUG: \t |-- CAPE Echelon.yar\r\n> 2020-10-05 10:01:21,506 [root] DEBUG: \t |-- CAPE Ekans.yar\r\n> 2020-10-05 10:01:21,506 [root] DEBUG: \t |-- CAPE Emotet.yar\r\n> 2020-10-05 10:01:21,506 [root] DEBUG: \t |-- CAPE Emotet_Loader.yar\r\n> 2020-10-05 10:01:21,506 [root] DEBUG: \t |-- CAPE Enfal.yar\r\n> 2020-10-05 10:01:21,506 [root] DEBUG: \t |-- CAPE EnigmaStub.yar\r\n> 2020-10-05 10:01:21,506 [root] DEBUG: \t |-- CAPE EternalRomance.yar\r\n> 2020-10-05 10:01:21,506 [root] DEBUG: \t |-- CAPE EvilGrab.yar\r\n> 2020-10-05 10:01:21,507 [root] DEBUG: \t |-- CAPE Exaramel.yar\r\n> 2020-10-05 10:01:21,507 [root] DEBUG: \t |-- CAPE FakeWMI.yar\r\n> 2020-10-05 10:01:21,507 [root] DEBUG: \t |-- CAPE Fareit.yar\r\n> 2020-10-05 10:01:21,507 [root] DEBUG: \t |-- CAPE FirebirdRAT.yar\r\n> 2020-10-05 10:01:21,507 [root] DEBUG: \t |-- CAPE Formbook.yar\r\n> 2020-10-05 10:01:21,507 [root] DEBUG: \t |-- CAPE Gandcrab.yar\r\n> 2020-10-05 10:01:21,507 [root] DEBUG: \t |-- CAPE GetCrypt.yar\r\n> 2020-10-05 10:01:21,507 [root] DEBUG: \t |-- CAPE GoldenAxe.yar\r\n> 2020-10-05 10:01:21,507 [root] DEBUG: \t |-- CAPE GoldenSpy.yar\r\n> 2020-10-05 10:01:21,507 [root] DEBUG: \t |-- CAPE Gootkit.yar\r\n> 2020-10-05 10:01:21,507 [root] DEBUG: \t |-- CAPE Greame.yar\r\n> 2020-10-05 10:01:21,507 [root] DEBUG: \t |-- CAPE GuLoader.yar\r\n> 2020-10-05 10:01:21,507 [root] DEBUG: \t |-- CAPE Hancitor.yar\r\n> 2020-10-05 10:01:21,507 [root] DEBUG: \t |-- CAPE HawkEye.yar\r\n> 2020-10-05 10:01:21,507 [root] DEBUG: \t |-- CAPE HawkEyev9.yar\r\n> 2020-10-05 10:01:21,507 [root] DEBUG: \t |-- CAPE Hermes.yar\r\n> 2020-10-05 10:01:21,507 [root] DEBUG: \t |-- CAPE HiddenVNC.yar\r\n> 2020-10-05 10:01:21,507 [root] DEBUG: \t |-- CAPE HiddenWasp.yar\r\n> 2020-10-05 10:01:21,507 [root] DEBUG: \t |-- CAPE HttpBrowser.yar\r\n> 2020-10-05 10:01:21,507 [root] DEBUG: \t |-- CAPE ISRStealer.yar\r\n> 2020-10-05 10:01:21,507 [root] DEBUG: \t |-- CAPE IcedID.yar\r\n> 2020-10-05 10:01:21,508 [root] DEBUG: \t |-- CAPE Imminent.yar\r\n> 2020-10-05 10:01:21,508 [root] DEBUG: \t |-- CAPE Impacket.yar\r\n> 2020-10-05 10:01:21,508 [root] DEBUG: \t |-- CAPE Infinity.yar\r\n> 2020-10-05 10:01:21,508 [root] DEBUG: \t |-- CAPE Jaff.yar\r\n> 2020-10-05 10:01:21,508 [root] DEBUG: \t |-- CAPE JavaDropper.yar\r\n> 2020-10-05 10:01:21,508 [root] DEBUG: \t |-- CAPE JoeGo.yar\r\n> 2020-10-05 10:01:21,508 [root] DEBUG: \t |-- CAPE KPortScan.yar\r\n> 2020-10-05 10:01:21,508 [root] DEBUG: \t |-- CAPE KeyBase.yar\r\n> 2020-10-05 10:01:21,508 [root] DEBUG: \t |-- CAPE Kinsing.yar\r\n> 2020-10-05 10:01:21,508 [root] DEBUG: \t |-- CAPE KoadicBAT.yar\r\n> 2020-10-05 10:01:21,508 [root] DEBUG: \t |-- CAPE KoadicDOC.yar\r\n> 2020-10-05 10:01:21,508 [root] DEBUG: \t |-- CAPE KoadicJS.yar\r\n> 2020-10-05 10:01:21,508 [root] DEBUG: \t |-- CAPE Konni.yar\r\n> 2020-10-05 10:01:21,508 [root] DEBUG: \t |-- CAPE Kovter.yar\r\n> 2020-10-05 10:01:21,508 [root] DEBUG: \t |-- CAPE Kronos.yar\r\n> 2020-10-05 10:01:21,508 [root] DEBUG: \t |-- CAPE LaZagne.yar\r\n> 2020-10-05 10:01:21,508 [root] DEBUG: \t |-- CAPE Laturo.yar\r\n> 2020-10-05 10:01:21,508 [root] DEBUG: \t |-- CAPE LimeRAT.yar\r\n> 2020-10-05 10:01:21,508 [root] DEBUG: \t |-- CAPE Lockbit.yar\r\n> 2020-10-05 10:01:21,509 [root] DEBUG: \t |-- CAPE Locky.yar\r\n> 2020-10-05 10:01:21,509 [root] DEBUG: \t |-- CAPE Loki.yar\r\n> 2020-10-05 10:01:21,509 [root] DEBUG: \t |-- CAPE LostDoor.yar\r\n> 2020-10-05 10:01:21,509 [root] DEBUG: \t |-- CAPE LuminosityLink.yar\r\n> 2020-10-05 10:01:21,509 [root] DEBUG: \t |-- CAPE LuxNet.yar\r\n> 2020-10-05 10:01:21,509 [root] DEBUG: \t |-- CAPE M00nD3v.yar\r\n> 2020-10-05 10:01:21,509 [root] DEBUG: \t |-- CAPE Magniber.yar\r\n> 2020-10-05 10:01:21,509 [root] DEBUG: \t |-- CAPE Mangzamel.yar\r\n> 2020-10-05 10:01:21,509 [root] DEBUG: \t |-- CAPE MassLogger.yar\r\n> 2020-10-05 10:01:21,509 [root] DEBUG: \t |-- CAPE Maze.yar\r\n> 2020-10-05 10:01:21,509 [root] DEBUG: \t |-- CAPE MedusaLocker.yar\r\n> 2020-10-05 10:01:21,509 [root] DEBUG: \t |-- CAPE MegaCortex.yar\r\n> 2020-10-05 10:01:21,509 [root] DEBUG: \t |-- CAPE Megumin.yar\r\n> 2020-10-05 10:01:21,509 [root] DEBUG: \t |-- CAPE MoDiRAT.yar\r\n> 2020-10-05 10:01:21,509 [root] DEBUG: \t |-- CAPE Mole.yar\r\n> 2020-10-05 10:01:21,509 [root] DEBUG: \t |-- CAPE NETEAGLE.yar\r\n> 2020-10-05 10:01:21,509 [root] DEBUG: \t |-- CAPE NLBrute.yar\r\n> 2020-1\r\n> \r\n> 0-05 10:01:21,509 [root] DEBUG: \t |-- CAPE NanoCore.yar\r\n> 2020-10-05 10:01:21,509 [root] DEBUG: \t |-- CAPE NanoLocker.yar\r\n> 2020-10-05 10:01:21,509 [root] DEBUG: \t |-- CAPE Nemty.yar\r\n> 2020-10-05 10:01:21,509 [root] DEBUG: \t |-- CAPE NetTraveler.yar\r\n> 2020-10-05 10:01:21,510 [root] DEBUG: \t |-- CAPE NetWire.yar\r\n> 2020-10-05 10:01:21,510 [root] DEBUG: \t |-- CAPE Netwalker.yar\r\n> 2020-10-05 10:01:21,510 [root] DEBUG: \t |-- CAPE Nymaim.yar\r\n> 2020-10-05 10:01:21,510 [root] DEBUG: \t |-- CAPE ObliqueRAT.yar\r\n> 2020-10-05 10:01:21,510 [root] DEBUG: \t |-- CAPE OlympicDestroyer.yar\r\n> 2020-10-05 10:01:21,510 [root] DEBUG: \t |-- CAPE OrcusRAT.yar\r\n> 2020-10-05 10:01:21,510 [root] DEBUG: \t |-- CAPE Orion.yar\r\n> 2020-10-05 10:01:21,510 [root] DEBUG: \t |-- CAPE Pafish.yar\r\n> 2020-10-05 10:01:21,510 [root] DEBUG: \t |-- CAPE Pandora.yar\r\n> 2020-10-05 10:01:21,510 [root] DEBUG: \t |-- CAPE Paradox.yar\r\n> 2020-10-05 10:01:21,510 [root] DEBUG: \t |-- CAPE Parallax.yar\r\n> 2020-10-05 10:01:21,510 [root] DEBUG: \t |-- CAPE PatchWork.yar\r\n> 2020-10-05 10:01:21,510 [root] DEBUG: \t |-- CAPE PetrWrap.yar\r\n> 2020-10-05 10:01:21,510 [root] DEBUG: \t |-- CAPE Petya.yar\r\n> 2020-10-05 10:01:21,510 [root] DEBUG: \t |-- CAPE Phoenix.yar\r\n> 2020-10-05 10:01:21,510 [root] DEBUG: \t |-- CAPE Phorpiex.yar\r\n> 2020-10-05 10:01:21,510 [root] DEBUG: \t |-- CAPE PillowMint.yar\r\n> 2020-10-05 10:01:21,510 [root] DEBUG: \t |-- CAPE Plasma.yar\r\n> 2020-10-05 10:01:21,510 [root] DEBUG: \t |-- CAPE Plurox.yar\r\n> 2020-10-05 10:01:21,510 [root] DEBUG: \t |-- CAPE PoisonIvy.yar\r\n> 2020-10-05 10:01:21,511 [root] DEBUG: \t |-- CAPE PowerPool.yar\r\n> 2020-10-05 10:01:21,511 [root] DEBUG: \t |-- CAPE PredatorPain.yar\r\n> 2020-10-05 10:01:21,511 [root] DEBUG: \t |-- CAPE ProLock.yar\r\n> 2020-10-05 10:01:21,511 [root] DEBUG: \t |-- CAPE Punisher.yar\r\n> 2020-10-05 10:01:21,511 [root] DEBUG: \t |-- CAPE PurpleWave.yar\r\n> 2020-10-05 10:01:21,511 [root] DEBUG: \t |-- CAPE PyInstaller.yar\r\n> 2020-10-05 10:01:21,511 [root] DEBUG: \t |-- CAPE Pyrogenic.yar\r\n> 2020-10-05 10:01:21,511 [root] DEBUG: \t |-- CAPE PythoRAT.yar\r\n> 2020-10-05 10:01:21,511 [root] DEBUG: \t |-- CAPE QRat.yar\r\n> 2020-10-05 10:01:21,511 [root] DEBUG: \t |-- CAPE QakBot.yar\r\n> 2020-10-05 10:01:21,511 [root] DEBUG: \t |-- CAPE QuasarRAT.yar\r\n> 2020-10-05 10:01:21,511 [root] DEBUG: \t |-- CAPE Qulab.yar\r\n> 2020-10-05 10:01:21,511 [root] DEBUG: \t |-- CAPE RCSession.yar\r\n> 2020-10-05 10:01:21,511 [root] DEBUG: \t |-- CAPE RDPWrap.yar\r\n> 2020-10-05 10:01:21,511 [root] DEBUG: \t |-- CAPE REvil.yar\r\n> 2020-10-05 10:01:21,511 [root] DEBUG: \t |-- CAPE RHttpCtrl.yar\r\n> 2020-10-05 10:01:21,511 [root] DEBUG: \t |-- CAPE Racoon.yar\r\n> 2020-10-05 10:01:21,511 [root] DEBUG: \t |-- CAPE RagnarLocker.yar\r\n> 2020-10-05 10:01:21,511 [root] DEBUG: \t |-- CAPE Ramnit.yar\r\n> 2020-10-05 10:01:21,511 [root] DEBUG: \t |-- CAPE RedLeaf.yar\r\n> 2020-10-05 10:01:21,511 [root] DEBUG: \t |-- CAPE Redsip.yar\r\n> 2020-10-05 10:01:21,512 [root] DEBUG: \t |-- CAPE Remcos.yar\r\n> 2020-10-05 10:01:21,512 [root] DEBUG: \t |-- CAPE RemoteUtilitiesRAT.yar\r\n> 2020-10-05 10:01:21,512 [root] DEBUG: \t |-- CAPE Responder.yar\r\n> 2020-10-05 10:01:21,512 [root] DEBUG: \t |-- CAPE Retefe.yar\r\n> 2020-10-05 10:01:21,512 [root] DEBUG: \t |-- CAPE Rietspoof.yar\r\n> 2020-10-05 10:01:21,512 [root] DEBUG: \t |-- CAPE Robbinhood.yar\r\n> 2020-10-05 10:01:21,512 [root] DEBUG: \t |-- CAPE RokRat.yar\r\n> 2020-10-05 10:01:21,512 [root] DEBUG: \t |-- CAPE Ryuk.yar\r\n> 2020-10-05 10:01:21,512 [root] DEBUG: \t |-- CAPE S05Kitty.yar\r\n> 2020-10-05 10:01:21,512 [root] DEBUG: \t |-- CAPE Sakula.yar\r\n> 2020-10-05 10:01:21,512 [root] DEBUG: \t |-- CAPE Scarab.yar\r\n> 2020-10-05 10:01:21,512 [root] DEBUG: \t |-- CAPE Sedreco.yar\r\n> 2020-10-05 10:01:21,512 [root] DEBUG: \t |-- CAPE Seduploader.yar\r\n> 2020-10-05 10:01:21,512 [root] DEBUG: \t |-- CAPE Sfile.yar\r\n> 2020-10-05 10:01:21,512 [root] DEBUG: \t |-- CAPE ShadowTech.yar\r\n> 2020-10-05 10:01:21,512 [root] DEBUG: \t |-- CAPE SlothfulMedia.yar\r\n> 2020-10-05 10:01:21,512 [root] DEBUG: \t |-- CAPE SmallNet.yar\r\n> 2020-10-05 10:01:21,512 [root] DEBUG: \t |-- CAPE SmokeLoader.yar\r\n> 2020-10-05 10:01:21,512 [root] DEBUG: \t |-- CAPE SpyGate.yar\r\n> 2020-10-05 10:01:21,512 [root] DEBUG: \t |-- CAPE Sub7Nation.yar\r\n> 2020-10-05 10:01:21,512 [root] DEBUG: \t |-- CAPE T5000.yar\r\n> 2020-10-05 10:01:21,513 [root] DEBUG: \t |-- CAPE TAIDOOR.yar\r\n> 2020-10-05 10:01:21,513 [root] DEBUG: \t |-- CAPE TClient.yar\r\n> 2020-10-05 10:01:21,513 [root] DEBUG: \t |-- CAPE TJKeylogger.yar\r\n> 2020-10-05 10:01:21,513 [root] DEBUG: \t |-- CAPE TSCookie.yar\r\n> 2020-10-05 10:01:21,513 [root] DEBUG: \t |-- CAPE Taurus.yar\r\n> 2020-10-05 10:01:21,513 [root] DEBUG: \t |-- CAPE Tefosteal.yar\r\n> 2020-10-05 10:01:21,513 [root] DEBUG: \t |-- CAPE TreasureHunter.yar\r\n> 2020-10-05 10:01:21,513 [root] DEBUG: \t |-- CAPE TrickBot.yar\r\n> 2020-10-05 10:01:21,513 [root] DEBUG: \t |-- CAPE UPX.yar\r\n> 2020-10-05 10:01:21,513 [root] DEBUG: \t |-- CAPE Ursnif.yar\r\n> 2020-10-05 10:01:21,513 [root] DEBUG: \t |-- CAPE Ursnif3.yar\r\n> 2020-10-05 10:01:21,513 [root] DEBUG: \t |-- CAPE VMProtectStub.yar\r\n> 2020-10-05 10:01:21,513 [root] DEBUG: \t |-- CAPE VSSDestroy.yar\r\n> 2020-10-05 10:01:21,513 [root] DEBUG: \t |-- CAPE Varenyky.yar\r\n> 2020-10-05 10:01:21,513 [root] DEBUG: \t |-- CAPE Vertex.yar\r\n> 2020-10-05 10:01:21,513 [root] DEBUG: \t |-- CAPE Vidar.yar\r\n> 2020-10-05 10:01:21,513 [root] DEBUG: \t |-- CAPE VirusRat.yar\r\n> 2020-10-05 10:01:21,513 [root] DEBUG: \t |-- CAPE W1RAT.yar\r\n> 2020-10-05 10:01:21,513 [root] DEBUG: \t |-- CAPE WanaCry.yar\r\n> 2020-10-05 10:01:21,513 [root] DEBUG: \t |-- CAPE WarzoneRAT.yar\r\n> 2020-10-05 10:01:21,513 [root] DEBUG: \t |-- CAPE WellMess.yar\r\n> 2020-10-05 10:01:21,514 [root] DEBUG: \t |-- CAPE Windows_Credentials_Editor.yar\r\n> 2020-10-05 10:01:21,514 [root] DEBUG: \t |-- CAPE XiaoBa.yar\r\n> 2020-10-05 10:01:21,514 [root] DEBUG: \t |-- CAPE XpertRAT.yar\r\n> 2020-10-05 10:01:21,514 [root] DEBUG: \t |-- CAPE Xtreme.yar\r\n> 2020-10-05 10:01:21,514 [root] DEBUG: \t |-- CAPE Zeppelin.yar\r\n> 2020-10-05 10:01:21,514 [root] DEBUG: \t |-- CAPE ZeroT.yar\r\n> 2020-10-05 10:01:21,514 [root] DEBUG: \t |-- CAPE ZeusPanda.yar\r\n> 2020-10-05 10:01:21,514 [root] DEBUG: \t |-- CAPE Zloader.yar\r\n> 2020-10-05 10:01:21,514 [root] DEBUG: \t |-- CAPE adWind.yar\r\n> 2020-10-05 10:01:21,514 [root] DEBUG: \t |-- CAPE jRat.yar\r\n> 2020-10-05 10:01:21,514 [root] DEBUG: \t |-- CAPE kiwi_passwords.yar\r\n> 2020-10-05 10:01:21,514 [root] DEBUG: \t |-- CAPE njRat.yar\r\n> 2020-10-05 10:01:21,514 [root] DEBUG: \t |-- CAPE tRat.yar\r\n> 2020-10-05 10:01:21,514 [root] DEBUG: \t |-- CAPE unrecom.yar\r\n> 2020-10-05 10:01:21,514 [root] DEBUG: \t |-- CAPE xRAT.yar\r\n> 2020-10-05 10:01:21,518 [lib.cuckoo.core.scheduler] INFO: Using \"virtualbox\" machine manager with max_analysis_count=0, max_machines_count=10, and max_vmstartup_count=5\r\n> 2020-10-05 10:01:21,591 [modules.machinery.virtualbox] DEBUG: Getting status for MSEdge\r\n> 2020-10-05 10:01:21,677 [modules.machinery.virtualbox] DEBUG: Machine MSEdge status poweroff\r\n> 2020-10-05 10:01:21,698 [lib.cuckoo.core.scheduler] INFO: Loaded 1 machine/s\r\n> 2020-10-05 10:01:21,705 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks.\r\n> 2020-10-05 10:03:42,928 [lib.cuckoo.core.scheduler] DEBUG: Task #1: Processing task\r\n> 2020-10-05 10:03:42,931 [lib.cuckoo.core.scheduler] INFO: Task #1: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_e6sttpg_/rufus-3.11.exe'\r\n> 2020-10-05 10:03:42,976 [lib.cuckoo.core.scheduler] INFO: Task #1: acquired machine MSEdge (label=MSEdge, platform=windows)\r\n> 2020-10-05 10:03:43,097 [root] DEBUG: Now tracking machine 192.168.56.101 for task #1\r\n> 2020-10-05 10:03:43,118 [modules.machinery.virtualbox] DEBUG: Starting vm MSEdge\r\n> 2020-10-05 10:03:43,118 [modules.machinery.virtualbox] DEBUG: Getting status for MSEdge\r\n> 2020-10-05 10:03:43,211 [modules.machinery.virtualbox] DEBUG: Machine MSEdge status poweroff\r\n> 2020-10-05 10:03:43,233 [modules.machinery.virtualbox] DEBUG: Using snapshot snapshot1 for virtual machine MSEdge\r\n> 2020-10-05 10:03:43,348 [modules.machinery.virtualbox] DEBUG: Getting status for MSEdge\r\n> 2020-10-05 10:03:43,448 [modules.machinery.virtualbox] DEBUG: Machine MSEdge status saved\r\n> 2020-10-05 10:03:53,112 [modules.machinery.virtualbox] DEBUG: Getting status for MSEdge\r\n> 2020-10-05 10:03:53,345 [modules.machinery.virtualbox] DEBUG: Machine MSEdge status running\r\n> 2020-10-05 10:03:53,360 [lib.cuckoo.core.rooter] CRITICAL: Unable to passthrough root command (drop_enable) as the rooter unix socket doesn't exist.\r\n> 2020-10-05 10:03:53,361 [lib.cuckoo.core.scheduler] INFO: Enabled route 'none'\r\n> 2020-10-05 10:03:53,385 [modules.auxiliary.sniffer] INFO: Started sniffer with PID 4317 (interface=vboxnet0, host=192.168.56.101, dump path=/opt/CAPEv2/storage/analyses/1/dump.pcap)\r\n> 2020-10-05 10:03:53,385 [lib.cuckoo.core.plugins] DEBUG: Started auxiliary module: Sniffer\r\n> 2020-10-05 10:03:53,403 [lib.cuckoo.core.guest] INFO: Starting analysis #1 on guest (id=MSEdge, ip=192.168.56.101)\r\n> 2020-10-05 10:03:54,406 [lib.cuckoo.core.guest] DEBUG: MSEdge: not ready yet\r\n> 2020-10-05 10:03:55,412 [lib.cuckoo.core.guest] DEBUG: MSEdge: not ready yet\r\n> 2020-10-05 10:03:56,127 [lib.cuckoo.core.guest] INFO: Guest is running CAPE Agent 0.11 (id=MSEdge, ip=192.168.56.101)\r\n> 2020-10-05 10:03:56,241 [lib.cuckoo.core.guest] DEBUG: Uploading analyzer to guest (id=MSEdge, ip=192.168.56.101, size=19249988)\r\n> 2020-10-05 10:03:56,972 [lib.cuckoo.core.guest] INFO: Uploading support files to guest (id=MSEdge, ip=192.168.56.101)\r\n> Segmentation fault (core dumped)\r\n```\r\n\r\nAgent.py:\r\n\r\n```\r\nC:\\Windows\\system32>python C:\\Users\\IEUser\\Desktop\\agent.py\r\n2020-10-05 02:54:50,819 [root] INFO: Date set to: 20201005T10:03:42, timeout set to: 200\r\n2020-10-05 10:03:42,050 [root] DEBUG: Starting analyzer from: C:\\tmp_j0ptbuy\r\n2020-10-05 10:03:42,050 [root] DEBUG: Storing results at: C:\\nQBeFlJBW\r\n2020-10-05 10:03:42,050 [root] DEBUG: Pipe server name: \\\\.\\PIPE\\fhnzVfL\r\n2020-10-05 10:03:42,072 [root] DEBUG: Python path: C:\\Users\\IEUser\\AppData\\Local\\Programs\\Python\\Python38-32\r\n2020-10-05 10:03:42,072 [root] DEBUG: No analysis package specified, trying to detect it automagically.\r\n2020-10-05 10:03:42,072 [root] INFO: Automatically selected analysis package \"exe\"\r\n2020-10-05 10:03:42,072 [root] DEBUG: Trying to import analysis package \"exe\"...\r\n2020-10-05 10:03:42,098 [root] DEBUG: Imported analysis package \"exe\".\r\n2020-10-05 10:03:42,121 [root] DEBUG: Trying to initialize analysis package \"exe\"...\r\n2020-10-05 10:03:42,121 [root] DEBUG: Initialized analysis package \"exe\".\r\n2020-10-05 10:03:42,143 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.browser\"...\r\n2020-10-05 10:03:42,190 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.browser\".\r\n2020-10-05 10:03:42,210 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.curtain\"...\r\n2020-10-05 10:03:42,257 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.curtain\".\r\n2020-10-05 10:03:42,280 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.digisig\"...\r\n2020-10-05 10:03:42,301 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.digisig\".\r\n2020-10-05 10:03:42,324 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.disguise\"...\r\n2020-10-05 10:03:42,372 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.disguise\".\r\n2020-10-05 10:03:42,372 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.human\"...\r\n2020-10-05 10:03:42,439 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.human\".\r\n2020-10-05 10:03:42,465 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.procmon\"...\r\n2020-10-05 10:03:42,465 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.procmon\".\r\n2020-10-05 10:03:42,485 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.screenshots\"...\r\n2020-10-05 10:03:42,509 [modules.auxiliary.screenshots] DEBUG: Importing 'time'\r\n2020-10-05 10:03:42,531 [modules.auxiliary.screenshots] DEBUG: Importing 'StringIO'\r\n2020-10-05 10:03:42,531 [modules.auxiliary.screenshots] DEBUG: Importing 'Thread'\r\n2020-10-05 10:03:42,554 [modules.auxiliary.screenshots] DEBUG: Importing 'Auxiliary'\r\n2020-10-05 10:03:42,554 [modules.auxiliary.screenshots] DEBUG: Importing 'NetlogFile'\r\n2020-10-05 10:03:42,554 [modules.auxiliary.screenshots] DEBUG: Importing 'Screenshot'\r\n2020-10-05 10:03:42,580 [lib.api.screenshot] DEBUG: Importing 'math'\r\n2020-10-05 10:03:42,603 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageChops'\r\n2020-10-05 10:03:42,807 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageGrab'\r\n2020-10-05 10:03:42,807 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageDraw'\r\n2020-10-05 10:03:42,829 [modules.auxiliary.screenshots] DEBUG: Imports OK\r\n2020-10-05 10:03:42,829 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.screenshots\".\r\n2020-10-05 10:03:42,855 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.sysmon\"...\r\n2020-10-05 10:03:42,855 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.sysmon\".\r\n2020-10-05 10:03:42,877 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.usage\"...\r\n2020-10-05 10:03:42,877 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.usage\".\r\n2020-10-05 10:03:42,877 [root] DEBUG: Trying to initialize auxiliary module \"Browser\"...\r\n2020-10-05 10:03:42,877 [root] DEBUG: Initialized auxiliary module \"Browser\".\r\n2020-10-05 10:03:42,877 [root] DEBUG: Trying to start auxiliary module \"Browser\"...\r\n2020-10-05 10:03:42,923 [root] DEBUG: Started auxiliary module Browser\r\n2020-10-05 10:03:42,923 [root] DEBUG: Trying to initialize auxiliary module \"Curtain\"...\r\n2020-10-05 10:03:42,923 [root] DEBUG: Initialized auxiliary module \"Curtain\".\r\n2020-10-05 10:03:42,923 [root] DEBUG: Trying to start auxiliary module \"Curtain\"...\r\n2020-10-05 10:03:42,923 [root] DEBUG: Started auxiliary module Curtain\r\n2020-10-05 10:03:42,923 [root] DEBUG: Trying to initialize auxiliary module \"DigiSig\"...\r\n2020-10-05 10:03:42,923 [root] DEBUG: Initialized auxiliary module \"DigiSig\".\r\n2020-10-05 10:03:42,923 [root] DEBUG: Trying to start auxiliary module \"DigiSig\"...\r\n2020-10-05 10:03:42,923 [modules.auxiliary.digisig] DEBUG: Checking for a digital signature.\r\n2020-10-05 03:04:22,856 [modules.auxiliary.digisig] DEBUG: File has a valid signature.\r\n('Unhandled exception in NetlogConnection:', '[WinError 10054] An existing connection was forcibly closed by the remote host')\r\n2020-10-05 03:04:22,856 [modules.auxiliary.digisig] INFO: Uploading signature results to aux/DigiSig.json\r\n('Unhandled exception in NetlogConnection:', '[WinError 10054] An existing connection was forcibly closed by the remote host')\r\n```\r\nPythonCrashReport\r\n\r\n\r\n[PythonCrashReport.log](https://github.com/kevoreilly/CAPEv2/files/5327694/PythonCrashReport.log)\r\n\r\n\r\n\nComment: hello, no idea, never saw it before %)\r\ni would suggest you `strace python cuckoo.py -d` and search in your log the last msg that you see in console after that you should see the error odetails what it was trying to do\nComment: \r\n[cuckoo_strace.log](https://github.com/kevoreilly/CAPEv2/files/5331629/cuckoo_strace.log)\r\n\r\nThat is the strace-log. Maybe someone with more in-depth knowledge finds a quick solution. I will try to check the log again later this day. Thanks for your time.\r\n\r\nFYI:\r\nGetting a 500 Server Error right now on https://capesandbox.com/submit/ if i try to submit a file.\nComment: fixd 500\nComment: i don't see nothing suspicious in strace log, you probably will need to attach with dbg and get stack once it crashes \nComment: greenlet 0.4.17 caused the crash.\r\n\r\n```\r\npip3 uninstall greenlet\r\npip3 install greenlet==0.4.16\r\n```\r\nsolved the problem for me.\r\n\r\nWhat a pain :dagger: \r\nWhat is the best way to find those \"broken\" python packages?\r\nMaybe add pip3 install greenlet==0.4.16 in capev2.sh.\r\n\r\nfeel free to close this issue\nComment: thanks a lot for reporting your finding, i will add, i will check changelog to see what. they have changed\nComment: added enforced version, also need to find which lib depends oon it to see, thanks again\nComment: here is why so is more need version of gevents to be fixed http://www.gevent.org/changelog.html#changelog\nComment: but we have hardcoded gevent version, strange, anyway hardcodd the greenlet version too\nComment: thx for information\r\n\r\nSry for commenting that much but here is just another a quick info:\r\nIf i try to submit a password protected .zip file via Web-interface and use the Password-Option i get:\r\n\r\nERROR :-(\r\nError adding task to CAPE's database\r\n\r\ni tried:\r\npassword=\"virus\"\r\npassword='virus'\r\npassword=virus\r\n\r\ni can reproduce this behavior on capesandbox.com\r\n\r\nBut maybe I am using it wrong.\r\nLet me know.\r\n\r\nThx\nComment: thats fine, im notified about new comments so all bugs should die :) checking\nComment: can't reproduce it\r\n```\r\n68926 | /X/curtain_tester.exe | file     |     300 |        1 |        | win7_4  |         | password=virus,route=tor\r\n```\r\n\r\ncorrect format is `password=virus`, try again and if deosn't work, than share your file\r\n\nComment: its working now.\r\nDon't know what went wrong.\r\nthx\nComment: I know what happened, in cuckoo.conf remove_archive = off, for some reason it breaks it I will investigare later, disabled at th moment\n\n> El 7 oct 2020, a las 14:26, ClaudioWayne <notifications@github.com> escribi\u00f3:\n> \n> \n> its working now.\n> Don't know what went wrong.\n> thx\n> \n> \u2014\n> You are receiving this because you modified the open/close state.\n> Reply to this email directly, view it on GitHub <https://github.com/kevoreilly/CAPEv2/issues/313#issuecomment-704900377>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAOFH3ZY2IJUHI3QKYK4G43SJRNBBANCNFSM4SEW2XHA>.\n> \n\n",
+  "Title: Deleting a task gives a 301 on local CAPEv2 setup\nBody: Hello,\r\n\r\nI've installed CAPEv2 locally on my machine. I've enabled `[taskdelete]` in `api.conf`. When I do the task delete api call, it gives me a HTTP 301.\r\n\r\nThis is on my host:\r\n```\r\n$ curl http://cape_domain/api/tasks/delete/1\r\n```\r\n\r\nThis is on my CAPEv2 VM where I'm running services `cape`, `cape-rooter`, `cape-processor` and the Django front-end using `python3 manage.py runserver`:\r\n```\r\n[05/Oct/2020 02:33:06] \"GET /api/tasks/delete/1 HTTP/1.1\" 301 0\r\n```\r\n\r\nIt may be relevant to know that I access the CAPEv2 VM web interface through port `6688` from my host and that traffic is forwarded to port `8000` on which the Django dev server runs.\r\n\r\nI expected the API call to delete the task information - samples, reports, etc. that are present on the CAPEv2 VM. I use a MySQL DB on another VM which stores basic tasks information but that's not what I'm trying to delete. I'm trying to make sure I don't run out of HDD space on the CAPEv2 VM as I continue to analyze more samples.\r\n\r\nThank you.\nComment: why just not to read the code?\r\n```\r\nurl(r\"^tasks/delete/(?P<task_id>\\d+)/$\", views.tasks_delete),\r\n```\r\n\r\nall the api request should ends with slash\nComment: I would go through the code but I'm still learning the Django framework, so I don't know which files handle what functionality. Sorry for that.\r\n\r\nI tried deleting a task and the files (report, memory dump, etc. in `storage/analyses/<task_id>`) on the CAPEv2 host weren't deleted. The task information in the MySQL DB was deleted, instead. I'm guessing this is because I've setup MySQL DB under the `database` section in `cuckoo.conf`. Is this expected and if so, what options do I have besides a cron job on the CAPEv2 host to delete task information under `storage/analyses/`? Thanks!\nComment: that delete deletes the folde, yoou just need to do the request `/api/tasks/delete/1/` and ensure that you have enabled that in api.conf, thats all \r\n\r\n```\r\nif db.delete_task(task_id):\r\n        resp[\"error\"] = False\r\n        delete_folder(os.path.join(CUCKOO_ROOT, \"storage\", \"analyses\", \"%s\" % task_id))\r\n        resp[\"data\"] = \"Task ID {0} has been deleted\".format(task_id)\r\n```\nComment: I did read that part of the code but `curl http://cape_domain/api/tasks/delete/<task_id>/` doesn't seem to delete the `storage/analyses/<task_id>` folder. I've set `enabled = yes` under `taskdelete` section in `api.conf`. I do get the correct response:\r\n\r\n```\r\n{\r\n    \"data\": \"Task(s) ID(s) 1 has been deleted\"\r\n}\r\n```\r\n\r\nIf I do the same call again, I get:\r\n```\r\n{\r\n    \"error\": true,\r\n    \"failed\": \"Task(s) ID(s) failed to remove\"\r\n}\r\n```\r\nand the above response makes sense because the MySQL DB entry was deleted. But `storage/analyses/<task_id>` still exists\r\n\r\nI've setup CAPEv2 at `/opt/CAPEv2` under `cape` user. Is is possible that `CUCKOO_ROOT` isn't set correctly in the code? A permission issue should have raised `CuckooOperationalError` exception, so I'm pretty sure there's no permission issue. Is there any CAPEv2 log file that I can use to debug this?\nComment: hm weird, could be more the problem with `delete_folder ` function than the variable\nComment: fixed thanks",
+  "Title: PyZipper - ProcDump Password Typo\nBody: Hi,\r\n\r\nWhile attempting to diagnose issues relating to ProcDump and the downloading ZIPs,  I noticed a Typo on the following lines:\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/web/analysis/views.py#L1096\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/web/api/views.py#L1891\r\n\r\nThese from my understanding should not have the b as part of the variable.  This can be seen in the API view code where the method: tasks_payloadfiles  doesnt have this b typo.\r\n\r\nThanks\nComment: Hello, there is no typo, and you could provide better description, i just cheched and it works, there was problem with encoding of content when opening for zipping but not password typo, + never remove template as issue with removed template aka removed needed details will be just closed with no support",
+  "Title: Download capability broken\nBody: All downloadable content is not possible through web api.\r\n\r\nIssue present on both local instance as well as www.capesandbox.com\r\n\r\nIssue appears to be related to file path\nComment: appears to be all download file types, pcap/zip/dumps etc.\nComment: fixed\nComment: Thank you!\nComment: you are welcome :)",
+  "Title: remove duplicate key\nBody: \nComment: also duplicated in 160, removing",
+  "Title: Failed_Processing\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x ] I am running the latest version\r\n- [ x] I checked the documentation and found no answer\r\n- [ x] I checked to make sure that this issue has not already been filed\r\n- [x ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting\r\n\r\nReports are generated\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\nA large number of reports fail to generate\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n## Context\r\n\r\nStarting a thread as would like to start diving into existing bugs here.\r\n\r\nFirst cab off the rank is the network processing python script.\r\n\r\nHappy to provide some examples of where the current module is failing.\r\n\r\nIs it possible to get an initial set of debugging options added for the network.py ?\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: That not really bug, just increase timeout for processing, depend on the\nsize of bson it can take a lot of time, that all\n\nEl vie., 2 oct. 2020 6:23, vlashef <notifications@github.com> escribi\u00f3:\n\n> This is opensource and you getting *free* support so be friendly!\n> Prerequisites\n>\n> Please answer the following questions for yourself before submitting an\n> issue.\n>\n>    - [x ] I am running the latest version\n>    - [ x] I checked the documentation and found no answer\n>    - [ x] I checked to make sure that this issue has not already been\n>    filed\n>    - [x ] I'm reporting the issue to the correct repository (for\n>    multi-repository projects)\n>\n> Expected Behavior\n>\n> Please describe the behavior you are expecting\n>\n> Reports are generated\n> Current Behavior\n>\n> What is the current behavior?\n>\n> A large number of reports fail to generate\n> Failure Information (for bugs)\n>\n> Please help provide information about the failure if this is a bug. If it\n> is not a bug, please remove the rest of this template.\n> Steps to Reproduce\n>\n> Please provide detailed steps for reproducing the issue.\n> Context\n>\n> Starting a thread as would like to start diving into existing bugs here.\n>\n> First cab off the rank is the network processing python script.\n>\n> Happy to provide some examples of where the current module is failing.\n>\n> Is it possible to get an initial set of debugging options added for the\n> network.py ?\n> Failure Logs\n>\n> Please include any relevant log snippets or files here.\n>\n> \u2014\n> You are receiving this because you are subscribed to this thread.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/308>, or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH36GVZFKT7GMLF33FFDSIVIVRANCNFSM4SBHPWDA>\n> .\n>\n\nComment: Hey Sir\r\n\r\nYeah have been through a number of different configuration combinations to date (number of concurrent processes and timeout options) but I've found that even expanding the timeout process is not viable still.\r\n\r\nHappy to provide examples of pcap files that have caused this activity to help make the code more stable OR if you can provide more debug features in the network.py code happy to do that also. \r\n\r\nLet me know!\nComment: well im pretty sure you can open pcap in wireshark or any of your favorite tools and see what is going in that pcap. about debugging in networking i can't do that as is you who having all details so you can add logging where it required for better understanding. is that an kind of masscan that scans 0.0.0.0? than ya it will be ultra mega slow as it checks ip by ip and there is no support of cidr aggregation\nComment: https://github.com/kevoreilly/CAPEv2/blob/master/modules/processing/network.py\r\n\r\nThis was what I was referring to with regards to adding debugging. \r\n\r\nThere also seems to be a pattern here where a single set of this activity actually starts to impact other analysis report generation itself. (where there are no such similar issues with the size of the pcap file for example).\r\n\r\nthe only way to clear the 'issue' is to restart the process.py service (systemctl restart cape-processor.service) etc.\r\n\r\nIs there a chance that underlying relied upon code may be leaking also?\r\n\r\n(hence my ask regarding adding debugging output for the processing module)\r\n\nComment: Can you please to try to elaborate your problem better? i never had/saw issue with networking if that wasn't a huge internet scan. neither was need to restart processing %) \r\nwell you can share you pcap but i don't have too much free time to investigate that, but you can edit network.py by youself to add some debugging information as you know better this issue than I, so you should could find the issue faster\nComment: \r\n[dump-6.pcap.zip](https://github.com/kevoreilly/CAPEv2/files/5317793/dump-6.pcap.zip)\r\n\r\nHere is a not massive internet scan that fails the reporting run\r\n\r\nWe have implemented all the standard firewall rules on the virtual machines etc. however that is a continuous losing race versus fixing potential bugs in the network.py\nComment: well you got almost 100k records in pcap, that is normal to take a lot of time to process that. there is no bugs about this, is just single thread process each record, is why it takes so much. so you can just improve the processing of the records thats all\nComment: for future issues, read this https://capev2.readthedocs.io/en/latest/finalremarks/index.html#asking-for-help\nComment: ok i just placed your pcap in one of the existing analysis and regenerated it, i don't see any problem\r\n\r\n```\r\n2020-10-02 12:37:09,111 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"NetworkAnalysis\" on analysis at\r\n2020-10-02 12:40:36,673 [lib.cuckoo.core.plugins] DEBUG: Executing processing module \"ProcDump\" on analysis at\r\n```\r\n\r\n3m for pcap isn't so much for so huge pcap, you need to investigate issue on your side, we don't have any problem to process it",
+  "Title: APIs for Task Report, Task Process Dump, Task Full Memory Dump don't return expected values\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version - https://capesandbox.com/\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting\r\n\r\n- The below  API endpoints are marked as enabled in the public instance (https://capesandbox.com/api/)\r\n- Task Report\r\n    - Send an API request, receive back a report in the requested format\r\n- Task Process Dump\r\n    - Send an API request, receive back the dump files for all PIDs\r\n    - UI says it's enabled, response says it's disabled, would it be possible to enable it temporarily to test an integration with Demisto / XSOAR?\r\n- Task Full Memory Dump\r\n    - Send an API request, receive back the process memory dump\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\n- Task Report\r\n    - All tasks return a `{\"error\": true,\"error_value\": \"Reports directory does not exist\"}`\r\n- Task Process Dump\r\n    - When requesting all PIDs - All tasks return a `{\"error\": true, \"error_value\": \"Downloading of all process memory dumps is disabled\"}`\r\n    - When requesting a specific PID - All tasks return a `{\"error\": true,\"error_value\": \"Process memory dump does not exist for pid 592\"}`\r\n- Task Full Memory Dump\r\n    - All tasks return a `{ \"error\": true,\"error_value\": \"Memory dump not found for task 65530\"}`\r\n\r\n## Context\r\n\r\nWe're trying to develop an integration with Demisto / XSOAR  and wanted to verify the code we wrote to use those API endpoints will work as expected\r\n\nComment: that is enabled in /api/ doesn't mean that is exist, also /api/ has limits now due to abusing, we are opensource and pay everything by ourselves, and people started to abuse that more and more.\r\n\r\n1. that kind of reports are disabled, so we don't generate them\r\n2. requires api fix, as we changed format, thanks\r\n3. memdumps also disabled\r\n\r\nso what do we win from your integration? as if you think about scrap our service, you are on wrong side",
+  "Title: Add xlm_password option for pwd protected xlm 4.0 macros\nBody: \nComment: i would prefer to ouse the same password argument that we already have instead off adding extra one, just update description no?\nComment: As long as using \"password\" in multiple places doesn't break something, I don't see why it can't be used instead of \"xlm_password\"\nComment: as password argument already says, it also can be used for office files, so to not introduce confusion, changed that and merged",
+  "Title: Update procyon java decompiler usage\nBody: install apt package procyon-decompiler\nComment: thanks for support both versions, as im not sure if they update it so frequently in apt",
+  "Title: Update static.py\nBody: Improve error handling of EncodedScriptFile",
+  "Title: Fix VBA and XLM Macro processing\nBody: ",
+  "Title: Update index.html\nBody: Fix  misplaced endif statement",
+  "Title: Update static.py\nBody: Update get digital sigs to work with latest cryptography==3.1.1 (update with pip3)",
+  "Title: Update plugins.py\nBody: Suricata family detection improvement",
+  "Title: Update views.py\nBody: fix password typo",
+  "Title: Update current_module_improvement.rst\nBody: ",
+  "Title: Update changelog.md\nBody: ",
+  "Title: Update web_utils.py\nBody: ",
+  "Title: static rest api + cleanup\nBody: ",
+  "Title: Update views.py\nBody: ",
+  "Title: Update curtain.py\nBody: ",
+  "Title: docs\nBody: ",
+  "Title: Update curtain.py\nBody: ",
+  "Title: \"Error adding task to CAPE's database\"is displayed when Submit file.\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nResolve database errors and Submit file .\r\n\r\n# Current Behavior\r\n_Error adding task to CAPE's database._ is displayed when Submit file.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Check if the service is running\r\n2. Check the virtual machine is waiting for a task\r\n3. Submit file but  error page is displayed\r\n\r\nIt worked when I built it before. Did you change the source?\r\n\r\n## Context\r\n\r\nUsing machinery VirtualBox\r\nHost machine: ubuntu 20.04.1 LTS\r\nGuest machine: Windows 10 \r\n\r\n## Failure Logs\r\nThis error page is displayed when submitting a file.\r\n\r\n![image](https://user-images.githubusercontent.com/58881955/94754268-bd0e2f80-03cb-11eb-8208-f653d3b2bd0e.png)\r\n\r\nThe following services are running without any problems\r\ncape-rooter\r\ncape\r\ncape-processor   \r\ncape-web\r\npostgresql\r\n\r\n```\r\n(venv-cape) root@cape:~# systemctl status cape\r\n\u25cf cape.service - CAPE\r\n     Loaded: loaded (/lib/systemd/system/cape.service; enabled; vendor preset: enabled)\r\n     Active: active (running) since Thu 2020-10-01 10:00:50 JST; 1min 1s ago\r\n       Docs: https://github.com/kevoreilly/CAPEv2\r\n   Main PID: 3785 (python)\r\n      Tasks: 6 (limit: 19150)\r\n     Memory: 221.6M\r\n     CGroup: /system.slice/cape.service\r\n             mq3785 /root/venv-cape/bin/python cuckoo.py\r\n\r\n10\u6708 01 10:00:51 cape python[3785]:   88   88  8 88   88   8 8   8 8   8\r\n10\u6708 01 10:00:51 cape python[3785]:   88e8 88ee8 88e8 88   8 8eee8 8eee8\r\n10\u6708 01 10:00:51 cape python[3785]:  Cuckoo Sandbox 2.1-CAPE\r\n10\u6708 01 10:00:51 cape python[3785]:  www.cuckoosandbox.org\r\n10\u6708 01 10:00:51 cape python[3785]:  Copyright (c) 2010-2015\r\n10\u6708 01 10:00:51 cape python[3785]:  CAPE: Config and Payload Extraction\r\n10\u6708 01 10:00:51 cape python[3785]:  github.com/kevoreilly/CAPEv2\r\n10\u6708 01 10:00:52 cape python[3785]: 2020-10-01 10:00:52,684 [lib.cuckoo.core.scheduler] INFO: Using \"virtualbox\" machine manager >\r\n10\u6708 01 10:00:53 cape python[3785]: 2020-10-01 10:00:53,050 [lib.cuckoo.core.scheduler] INFO: Loaded 1 machine/s\r\n10\u6708 01 10:00:53 cape python[3785]: 2020-10-01 10:00:53,055 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks.\r\n(venv-cape) root@cape:~# systemctl status cape-web\r\n\u25cf cape-web.service - CAPE WSGI app\r\n     Loaded: loaded (/lib/systemd/system/cape-web.service; enabled; vendor preset: enabled)\r\n     Active: active (running) since Thu 2020-10-01 09:29:20 JST; 32min ago\r\n       Docs: https://github.com/kevoreilly/CAPEv2\r\n   Main PID: 671 (python)\r\n      Tasks: 35 (limit: 19150)\r\n     Memory: 254.8M\r\n     CGroup: /system.slice/cape-web.service\r\n             tq 671 /root/venv-cape/bin/python manage.py runserver 0.0.0.0:8000\r\n             mq1265 /root/venv-cape/bin/python manage.py runserver 0.0.0.0:8000\r\n\r\n10\u6708 01 10:01:18 cape python[1265]: [01/Oct/2020 01:01:18] \"GET /static/js/jquery.js HTTP/1.1\" 304 0\r\n10\u6708 01 10:01:18 cape python[1265]: [01/Oct/2020 01:01:18] \"GET /static/js/bootstrap-fileupload.js HTTP/1.1\" 304 0\r\n10\u6708 01 10:01:18 cape python[1265]: [01/Oct/2020 01:01:18] \"GET /static/js/bootstrap.min.js HTTP/1.1\" 304 0\r\n10\u6708 01 10:01:18 cape python[1265]: [01/Oct/2020 01:01:18] \"GET /static/js/moment.min.js HTTP/1.1\" 304 0\r\n10\u6708 01 10:01:18 cape python[1265]: [01/Oct/2020 01:01:18] \"GET /static/js/bootstrap-datetimepicker.min.js HTTP/1.1\" 304 0\r\n10\u6708 01 10:01:18 cape python[1265]: [01/Oct/2020 01:01:18] \"GET /static/js/lightbox.js HTTP/1.1\" 304 0\r\n10\u6708 01 10:01:18 cape python[1265]: [01/Oct/2020 01:01:18] \"GET /static/js/bootstrap-collapse.js HTTP/1.1\" 304 0\r\n10\u6708 01 10:01:18 cape python[1265]: [01/Oct/2020 01:01:18] \"GET /static/js/bootstrap-transition.js HTTP/1.1\" 304 0\r\n10\u6708 01 10:01:21 cape python[1265]: [01/Oct/2020 01:01:21] \"GET /submit/ HTTP/1.1\" 200 42028\r\n10\u6708 01 10:01:28 cape python[1265]: [01/Oct/2020 01:01:28] \"POST /submit/ HTTP/1.1\" 200 3122\r\n(venv-cape) root@cape:~# systemctl status cape-processor\r\n\u25cf cape-processor.service - CAPEv2 report processor\r\n     Loaded: loaded (/lib/systemd/system/cape-processor.service; enabled; vendor preset: enabled)\r\n     Active: active (running) since Thu 2020-10-01 09:29:21 JST; 32min ago\r\n       Docs: https://github.com/kevoreilly/CAPEv2\r\n   Main PID: 797 (python)\r\n      Tasks: 11 (limit: 19150)\r\n     Memory: 262.8M\r\n     CGroup: /system.slice/cape-processor.service\r\n             mq797 /root/venv-cape/bin/python process.py -p7 auto -pt 900\r\n\r\n10\u6708 01 09:29:21 cape systemd[1]: Started CAPEv2 report processor.\r\n10\u6708 01 09:29:31 cape python[797]: 2020-10-01 09:29:31,225 [root] INFO: Processing analysis data\r\n(venv-cape) root@cape:~# systemctl status cape-rooter\r\n\u25cf cape-rooter.service - CAPE rooter\r\n     Loaded: loaded (/lib/systemd/system/cape-rooter.service; enabled; vendor preset: enabled)\r\n     Active: active (running) since Thu 2020-10-01 09:29:21 JST; 32min ago\r\n       Docs: https://github.com/kevoreilly/CAPEv2\r\n   Main PID: 795 (python)\r\n      Tasks: 1 (limit: 19150)\r\n     Memory: 9.7M\r\n     CGroup: /system.slice/cape-rooter.service\r\n             mq795 /root/venv-cape/bin/python rooter.py --iptables /usr/sbin/iptables --iptables-restore /usr/sbin/iptables-resto>\r\n\r\n10\u6708 01 09:29:21 cape systemd[1]: Started CAPE rooter.\r\n(venv-cape) root@cape:~# service postgresql restart\r\n(venv-cape) root@cape:~# ^C\r\n(venv-cape) root@cape:~# service postgresql status\r\n\u25cf postgresql.service - PostgreSQL RDBMS\r\n     Loaded: loaded (/lib/systemd/system/postgresql.service; enabled; vendor preset: enabled)\r\n     Active: active (exited) since Thu 2020-10-01 10:02:46 JST; 6s ago\r\n    Process: 4127 ExecStart=/bin/true (code=exited, status=0/SUCCESS)\r\n   Main PID: 4127 (code=exited, status=0/SUCCESS)\r\n\r\n10\u6708 01 10:02:46 cape systemd[1]: Starting PostgreSQL RDBMS...\r\n10\u6708 01 10:02:46 cape systemd[1]: Finished PostgreSQL RDBMS.\r\n(venv-cape) root@cape:~#\r\n```\r\n\r\n\r\n\r\n\nComment: i don't see any error, you need to dig in your servr what is wrong as capesandbox.com works just fine and it uses the same code that this repo\nComment: I can confirm this error. I did a fresh Cape installation yesterday and i also get this Error with submit.py\r\n\r\n![grafik](https://user-images.githubusercontent.com/35531629/94804777-aed00b80-03eb-11eb-9638-3a0a347be52a.png)\r\n\r\nDid a quick look at submit.py\r\nThe script terminates, because the list task_ids contains no items.\r\nMaybe db.demux_sample_and_add_to_db() needs further investigations.\r\n\r\n![grafik](https://user-images.githubusercontent.com/35531629/94805484-b9d76b80-03ec-11eb-8ed5-425cd54f8b07.png)\r\n\r\n\r\n \nComment: Yes its fails on that that file not exist and it returns, but if you\nspecify package ir works, that is weird part, working on it\n\nEl jue., 1 oct. 2020 13:49, ClaudioWayne <notifications@github.com>\nescribi\u00f3:\n\n> I can confirm this error. I did a fresh Cape installation yesterday and i\n> also get this Error with submit.py\n>\n> [image: grafik]\n> <https://user-images.githubusercontent.com/35531629/94804777-aed00b80-03eb-11eb-9638-3a0a347be52a.png>\n>\n> Did a quick look at submit.py\n> The script terminates, because the list task_ids contains no items.\n> Maybe db.demux_sample_and_add_to_db() needs further investigations.\n>\n> [image: grafik]\n> <https://user-images.githubusercontent.com/35531629/94805484-b9d76b80-03ec-11eb-8ed5-425cd54f8b07.png>\n>\n> \u2014\n> You are receiving this because you commented.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/290#issuecomment-702080481>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3ZFWKZIMBL3P4M7AYTSIRUENANCNFSM4R7YTJYA>\n> .\n>\n\nComment: But it also for some filetypes only, exe and office files works without\nspecify anything, i will be bacl to thos issue once it will be solved\n\nEl jue., 1 oct. 2020 13:49, ClaudioWayne <notifications@github.com>\nescribi\u00f3:\n\n> I can confirm this error. I did a fresh Cape installation yesterday and i\n> also get this Error with submit.py\n>\n> [image: grafik]\n> <https://user-images.githubusercontent.com/35531629/94804777-aed00b80-03eb-11eb-9638-3a0a347be52a.png>\n>\n> Did a quick look at submit.py\n> The script terminates, because the list task_ids contains no items.\n> Maybe db.demux_sample_and_add_to_db() needs further investigations.\n>\n> [image: grafik]\n> <https://user-images.githubusercontent.com/35531629/94805484-b9d76b80-03ec-11eb-8ed5-425cd54f8b07.png>\n>\n> \u2014\n> You are receiving this because you commented.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/290#issuecomment-702080481>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3ZFWKZIMBL3P4M7AYTSIRUENANCNFSM4R7YTJYA>\n> .\n>\n\nComment: @ai-suzuki  thanks for letting me know for the issue, next time please provide a bit more details, like hash and if that is replicable on capesandbox as jsut say that something doesn't work doesn't help, update that is fixed now\nComment: @doomedraven @ClaudioWayne \r\nThank you very much. I am really grateful to them.\r\nI'm sorry, The detailed investigation was not enough and it took you a lot of trouble.\r\nOK, I will try to give as much detail as possible!\nComment: @doomedraven \r\nI try git pull and submit file(vbs file and python script).\r\nThe error no longer appears, but  \"not ready yet\"\r\n\r\n\r\nI start cape by `python cuckoo.py -d`. This is the log.\r\n```\r\n2020-10-02 09:40:29,843 [modules.machinery.virtualbox] DEBUG: Getting status for cape\r\n2020-10-02 09:40:29,952 [modules.machinery.virtualbox] DEBUG: Machine cape status poweroff\r\n2020-10-02 09:40:29,980 [lib.cuckoo.core.scheduler] INFO: Loaded 1 machine/s\r\n2020-10-02 09:40:29,994 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks.\r\n2020-10-02 09:41:40,796 [lib.cuckoo.core.scheduler] DEBUG: Task #5: Processing task\r\n2020-10-02 09:41:40,799 [lib.cuckoo.core.scheduler] INFO: Task #5: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_fksajnse/time.vbs'\r\n2020-10-02 09:41:40,809 [lib.cuckoo.core.scheduler] INFO: Task #5: File already exists at '/opt/CAPEv2/storage/binaries/c9ce04792e3fc527ddb1bdec5966bbf15a9f0dc76f8f91302267801dd7a02aef'\r\n2020-10-02 09:41:40,824 [lib.cuckoo.core.scheduler] INFO: Task #5: acquired machine cape (label=cape, platform=windows)\r\n2020-10-02 09:41:40,841 [root] DEBUG: Now tracking machine 192.168.56.101 for task #5\r\n2020-10-02 09:41:40,860 [modules.machinery.virtualbox] DEBUG: Starting vm cape\r\n2020-10-02 09:41:40,860 [modules.machinery.virtualbox] DEBUG: Getting status for cape\r\n2020-10-02 09:41:40,964 [modules.machinery.virtualbox] DEBUG: Machine cape status poweroff\r\n2020-10-02 09:41:40,981 [modules.machinery.virtualbox] DEBUG: Using snapshot win10 for virtual machine cape\r\n2020-10-02 09:41:41,081 [modules.machinery.virtualbox] DEBUG: Getting status for cape\r\n2020-10-02 09:41:41,186 [modules.machinery.virtualbox] DEBUG: Machine cape status saved\r\n2020-10-02 09:41:50,371 [modules.machinery.virtualbox] DEBUG: Getting status for cape\r\n2020-10-02 09:41:50,549 [modules.machinery.virtualbox] DEBUG: Machine cape status running\r\n2020-10-02 09:41:50,603 [lib.cuckoo.core.scheduler] INFO: Enabled route 'tor'\r\n2020-10-02 09:41:50,624 [modules.auxiliary.sniffer] INFO: Started sniffer with PID 5192 (interface=vboxnet0, host=192.168.56.101, dump path=/opt/CAPEv2/storage/analyses/5/dump.pcap)\r\n2020-10-02 09:41:50,625 [lib.cuckoo.core.plugins] DEBUG: Started auxiliary module: Sniffer\r\n2020-10-02 09:41:50,647 [lib.cuckoo.core.guest] INFO: Starting analysis #5 on guest (id=cape, ip=192.168.56.101)\r\n2020-10-02 09:41:51,651 [lib.cuckoo.core.guest] DEBUG: cape: not ready yet\r\n2020-10-02 09:41:52,656 [lib.cuckoo.core.guest] DEBUG: cape: not ready yet\r\n2020-10-02 09:41:53,661 [lib.cuckoo.core.guest] DEBUG: cape: not ready yet\r\n2020-10-02 09:41:53,664 [lib.cuckoo.core.guest] DEBUG: cape: not ready yet\r\n2020-10-02 09:41:54,670 [lib.cuckoo.core.guest] DEBUG: cape: not ready yet\r\n2020-10-02 09:41:55,676 [lib.cuckoo.core.guest] DEBUG: cape: not ready yet\r\n2020-10-02 09:41:56,682 [lib.cuckoo.core.guest] DEBUG: cape: not ready yet\r\n2020-10-02 09:41:57,688 [lib.cuckoo.core.guest] DEBUG: cape: not ready yet\r\n2020-10-02 09:41:58,695 [lib.cuckoo.core.guest] DEBUG: cape: not ready yet\r\n2020-10-02 09:41:59,705 [lib.cuckoo.core.guest] DEBUG: cape: not ready yet\r\n2020-10-02 09:42:00,712 [lib.cuckoo.core.guest] DEBUG: cape: not ready yet\r\n2020-10-02 09:42:01,718 [lib.cuckoo.core.guest] DEBUG: cape: not ready yet\r\n```\r\n\r\nand i look guest.py. Is this wrong?\r\n`socket.create_connection((self.ipaddr, self.port), 1).close()`\r\n\r\n![image](https://user-images.githubusercontent.com/58881955/94877368-42114b80-0495-11eb-9ec4-bee363218a80.png)\r\n\r\n\r\n\r\n@ClaudioWayne \r\nAre you not with this error?\nComment: hm we didnt touch that part, what i can suggest is to try to start or attach to remve vbox manager and see if vm starts as first step. Can you try to submit also to capesandbox.com? so we can see if we can reproduce that on our end\nComment: I was able to analyze it with capesandbox.com.\r\nThe VM seems to be up, but it could be a problem with my server...\r\nThank you.\nComment: With which commit was this issue resolved? I was trying to submit an exe (5872b7c5808419299740f3e5fef8b0c34c85a1515e68b41e244cc98a040c6e9c) to my local CAPE instance running WSGI and I hit this error. This is not reproducible on capesandbox.com and it also does not hit when I'm running Django dev server.\nComment: Then that sound like permission issue, does you run it as the same user as\nthe rest of cape services?\n\nEl mar., 24 nov. 2020 7:53, Nikhil Hegde <notifications@github.com>\nescribi\u00f3:\n\n> With which commit was this issue resolved? I was trying to submit an exe\n> (5872b7c5808419299740f3e5fef8b0c34c85a1515e68b41e244cc98a040c6e9c) to my\n> local CAPE instance running WSGI and I hit this error. This is not\n> reproducible on capesandbox.com and it also does not hit when I'm running\n> Django dev server.\n>\n> \u2014\n> You are receiving this because you were mentioned.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/290#issuecomment-732674967>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH32JSHEDFEXBVH5KT73SRNJKTANCNFSM4R7YTJYA>\n> .\n>\n\nComment: Yep, it was a permission issue. The `db` folder in CAPEv2 was under a different user than Apache user.\nComment: that sound as you using sqlite3? i hope for test as i don't suggest to use it in production + cape2.2 aka see bootstrap branch(that become extended to other features) will requires db upgrade and sqlite3 isn't very friendly with that\nComment: Yep, I do use sqlite3 and it's only for local testing.",
+  "Title: Update pipe.py\nBody: ",
+  "Title: 502 errors when downloading sample on capesandbox.com \nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version - public instance\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting\r\nAPI request to https://www.capesandbox.com/api/files/get/task/65500/ and receive back a binary response\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n- Browsing to the URL will give a Bad Gateway error, same with an API request\r\n\r\n![image](https://user-images.githubusercontent.com/58996090/94478005-a20ba780-01a0-11eb-8f3a-aa790cd6e609.png)\r\n![image](https://user-images.githubusercontent.com/58996090/94478025-a8018880-01a0-11eb-8dc7-5951af5f1611.png)\r\n\r\n\nComment: hello, thanks working now",
+  "Title: Doubt about yara rules\nBody: I would like to add to my Cape some new yara rules from here https://github.com/reversinglabs/reversinglabs-yara-rules/tree/develop/yara. So, my question is the following. \r\nDo I only need to add the .yar file to the corresponding folder (once modified and adapted) or should I do a script like this https://github.com/kevoreilly/CAPEv2/blob/master/modules/processing/parsers/CAPE/TrickBot.py to execute a yara rule?\r\n\r\n\nComment: Hello, you just need to add your yara to correct folder here https://github.com/kevoreilly/community/tree/master/data/yara\r\nbut checking the yaras i see a lot of `??` they will slowdown analysis/scanning, i would just add that to your personal box `$CAPE_ROOT/data/yara`, maybe we can add list of yara repos, but im personally not fun of adding all the yaras to main community repo, like yara exchange you have too many  different good and bad yaras, and that will just make everything so slow\nComment: Thanks for your quick response!! I understand your position and I think you are right. So, I will be very selective with rules. I will only add some specific rules of some specific kind of malware. \r\nI really appreciate your advice.\nComment: ok thanks, anyway maybe we can start elaborating list of yara repos so we also can help to the end user discoveer new repos and maybe some extra useful rules. closing as responded",
+  "Title: Add signature for CAPE having extracted config\nBody: This is more to highlight that a config is there and also to more easily identify cases where it might have stopped extracting the config if not looking at the CAPE tab.\r\n\r\n![image](https://user-images.githubusercontent.com/2414517/94323572-42d64900-ff8e-11ea-9135-896c26779dec.png)\r\n\r\n![image](https://user-images.githubusercontent.com/2414517/94323600-584b7300-ff8e-11ea-8bdb-2944b8db7efa.png)\r\n",
+  "Title: Is it possible to extract malware configuration without actually running the sample?\nBody: Hello,\r\n\r\nI was using the public CAPE instance at capesandbox.com and I came across the option `Try to extract config without VM`. I couldn't find a description of that option in the documentation (or perhaps, I missed it).\r\n\r\nIf that option is checked, does that mean that there will be no execution of the sample, if possible? And if so, which malware families is this option effective for? Usually, one sample would take a few minutes to complete execution. With the `Try to extract config without VM` option, I was wondering if I could get config information within seconds since there would be no execution.\r\n\r\nThank you.\r\n\nComment: hello\r\n\r\n`Try to extract config without VM.` - will try to extract without run sample in vm, but if not extracted it will submit to vm,\r\nYou have `static`(last one) tab to just try static extraction without submit to vm if not extracted\r\n\r\nAbout the families you need to see those folders:\r\nhttps://github.com/kevoreilly/CAPEv2/tree/master/modules/processing/parsers\r\n+\r\nhttps://github.com/kevthehermit/RATDecoders\r\n\r\nhere a bit more info: https://www.doomedraven.com/2020/02/cape-sandbox-config-extraction.html\r\n\nComment: Thanks! I'll take a look and I'll ask here if I have more questions. Else, I'll close this issue. Please keep this open for the next 2 days.\nComment: well you can post here even if issue is closed, i will get notification anyway ;) so closing , but feel free to post question here\nComment: So, I tried running LostDoor and DarkComet (config for both can be extracted statically as can be seen in the supported RATs list on https://github.com/kevthehermit/RATDecoders). I checked the `Try to extract config without VM` option during submission. However, both samples were executed on the VM and so, I got the reports 5 minutes later instead of in a few seconds (since static extraction is possible). Do you know why this might have happened?\r\n\r\nAlso, I don't think config was extracted for the LostDoor sample. There's no CAPE tab.\r\n\r\nLostDoor run: https://capesandbox.com/analysis/66267/\r\nDarkComet run: https://capesandbox.com/analysis/66268/\r\n\r\nIf I wanted to modify CAPE code such that sample is NOT submitted to the VM if static config extraction is not possible, which files/code would I need to look at? I wanted to play around with CAPE code in my fork.\r\n\r\nThanks!\nComment: as i toold there is `static tab` last one, that one won't send to vm, so you don't need to modify nothing at all, + parsers can be outdated or contain bugs, did you try them in local first?\nComment: Oh! I didn't notice the `Static` tab. Thanks! I'm able to do the static extraction now. I didn't try the parsers locally yet. I was looking at how to do the static extraction through CAPE which I've understood now. Is there an API to interact (submit sample / retrieve report) with the `Static` tab? Something like `capesandbox.com:<port>/api/...` ? I'm guessing it's one of the values mentioned in https://capesandbox.com/api/\nComment: yes so first try it locally, all parsers can be used standalone, you can see in code how, but should be pretty simple as i pointed you to my blog about that and the projects has documentation, once you sure that it works you can test it, as i saw many bugs, you can see issues in each project,but i won't fix that as i don't using those parsers, so you are welcome to fix that if that is required\nComment: the api about static is missed i will add that once i will have some spare time\nComment: Awesome, thanks!\nComment: It is a shame to hear that there are RATDecoders parsers in CAPE that don't work but as this is a time-poor project we haven't got time to fix them as they are not significant enough current threats to justify it. You can probably imagine the mountainous to-do lists. But if you do end up fixing them or adding any nice features to your fork they will of course be gratefully received!\nComment: hello, just pushed the static api code, so now you can use it\nComment: That's awesome, thanks!\nComment: enjoy, i will see if that possible to return config directly apart of the job id, but no promises here as it might require huge rewrote of many logics\nComment: No problem :) If I wanted to write my own static config parser for a family, I would need to\r\n* create a Py script in `modules/processing/parsers/mwcp/` directory, and\r\n* create a yara rule with the same filename as Py script in `data/yara/CAPE`\r\n\r\nIs the above correct? From your blog, @doomedraven it looks like `modules/processing/parsers/mwcp/DridexLoader.py` is a good reference for writing a static parser, yes?\nComment: Hello, yes correct, and yes dridex is a good example as it includes\nexternal yara so less places to modify in future :)\n\nEl vie., 2 oct. 2020 10:41, Nikhil Hegde <notifications@github.com>\nescribi\u00f3:\n\n> No problem :) If I wanted to write my own static config parser for a\n> family, I would need to\n>\n>    - create a Py script in modules/processing/parsers/mwcp/ directory, and\n>    - create a yara rule with the same filename as Py script in\n>    data/yara/CAPE\n>\n> Is the above correct? From your blog, @doomedraven\n> <https://github.com/doomedraven> it looks like\n> modules/processing/parsers/mwcp/DridexLoader.py is a good reference for\n> writing a static parser, yes?\n>\n> \u2014\n> You are receiving this because you were mentioned.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/285#issuecomment-702603669>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH33PVOLE4PMQVJ6K3ADSIWGZ7ANCNFSM4RZDVQWA>\n> .\n>\n\nComment: So, I was trying to do the API call for static extraction and I'm hitting an error:\r\n\r\n```\r\n$ curl -F file=@/home/nikhilh-20/5ea3092330302ec211e0627235b5020f41e6d8da130dc7eb4548b0e739072cac https://capesandbox.com/api/tasks/create/static/\r\n{\r\n    \"error\": true,\r\n    \"error_value\": \"vtdl (hash list) value is empty\"\r\n}\r\n\r\n$ ls\r\n5ea3092330302ec211e0627235b5020f41e6d8da130dc7eb4548b0e739072cac\r\n\r\n$ file 5ea3092330302ec211e0627235b5020f41e6d8da130dc7eb4548b0e739072cac\r\n5ea3092330302ec211e0627235b5020f41e6d8da130dc7eb4548b0e739072cac: PE32 executable (GUI) Intel 80386, for MS Windows\r\n\r\n$ du -h 5ea3092330302ec211e0627235b5020f41e6d8da130dc7eb4548b0e739072cac\r\n756K    5ea3092330302ec211e0627235b5020f41e6d8da130dc7eb4548b0e739072cac\r\n```\r\n\r\nAm I doing the API call incorrectly? My curl version is `7.68.0`\nComment: nah there was a c&p bug, fixed now it will works just fine, thanks for catch it \nComment: I still seem to be hitting an error when doing the api call: \r\n\r\n```\r\n# curl -F file=@/root/Downloads/5ea3092330302ec211e0627235b5020f41e6d8da130dc7eb4548b0e739072cac https://capesandbox.com/api/tasks/create/static/\r\n\r\n# du -h 5ea3092330302ec211e0627235b5020f41e6d8da130dc7eb4548b0e739072cac \r\n756K\t5ea3092330302ec211e0627235b5020f41e6d8da130dc7eb4548b0e739072cac\r\n\r\n# file 5ea3092330302ec211e0627235b5020f41e6d8da130dc7eb4548b0e739072cac \r\n5ea3092330302ec211e0627235b5020f41e6d8da130dc7eb4548b0e739072cac: PE32 executable (GUI) Intel 80386, for MS Windows\r\n```\r\n\r\nCurl version: `7.66.0`. I've attached the response content that I received.\r\n[static_extraction_api_call_error.txt](https://github.com/kevoreilly/CAPEv2/files/5328108/static_extraction_api_call_error.txt)\r\n\nComment: Try again\n\n> El 5 oct 2020, a las 16:51, Nikhil Hegde <notifications@github.com> escribi\u00f3:\n> \n> \n> I still seem to be hitting an error when doing the api call:\n> \n> # curl -F file=@/root/Downloads/5ea3092330302ec211e0627235b5020f41e6d8da130dc7eb4548b0e739072cac https://capesandbox.com/api/tasks/create/static/\n> \n> # du -h 5ea3092330302ec211e0627235b5020f41e6d8da130dc7eb4548b0e739072cac \n> 756K\t5ea3092330302ec211e0627235b5020f41e6d8da130dc7eb4548b0e739072cac\n> \n> # file 5ea3092330302ec211e0627235b5020f41e6d8da130dc7eb4548b0e739072cac \n> 5ea3092330302ec211e0627235b5020f41e6d8da130dc7eb4548b0e739072cac: PE32 executable (GUI) Intel 80386, for MS Windows\n> Curl version: 7.66.0. I've attached the response content that I received.\n> static_extraction_api_call_error.txt <https://github.com/kevoreilly/CAPEv2/files/5328108/static_extraction_api_call_error.txt>\n> \u2014\n> You are receiving this because you were mentioned.\n> Reply to this email directly, view it on GitHub <https://github.com/kevoreilly/CAPEv2/issues/285#issuecomment-703683172>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAOFH34PCI3SW5GUHDUFH3DSJHMN5ANCNFSM4RZDVQWA>.\n> \n\n\nComment: The submission went through:\r\n```\r\n# curl -F file=@/root/Downloads/5ea3092330302ec211e0627235b5020f41e6d8da130dc7eb4548b0e739072cac https://capesandbox.com/api/tasks/create/static/\r\n{\r\n    \"error\": false,\r\n    \"data\": {\r\n        \"message\": \"Task IDs  have been submitted\"\r\n    },\r\n    \"url\": []\r\n}\r\n```\r\n\r\nI didn't get the task ID in the response (expected?). I was checking the GUI but it looks like CAPEv2 is busy processing many other tasks, so my task hasn't shown up yet. It looks like tasks are stuck at the `Processing` stage starting from task ID, `68269`\nComment: well i see that it works just fine, it just to many tasks to process :)\r\n\r\nabout staatic issue, hm for some reason it not matches `hits = File(path).get_yara(category=\"CAPE\")` in `static_extraction` but if i submit via webgui it detects it, i will back to this once i will have some free time this week\nComment: ```\r\ncurl -F file=@5ea3092330302ec211e0627235b5020f41e6d8da130dc7eb4548b0e739072cac https://capesandbox.com/api/tasks/create/static/\r\n{\r\n    \"error\": false,\r\n    \"data\": {\r\n        \"task_ids\": [\r\n            68304\r\n        ],\r\n        \"message\": \"Task ID(s) 68304 has been submitted\"\r\n    },\r\n    \"url\": [\r\n        \"https://www.capesandbox.com/submit/status/68304/\"\r\n    ]\r\n}%\r\n```\r\n\r\nfixed, i will push code to repo later as i need to fix some other stuff\nComment: btw @nikhilh-20 thanks for betatesting it, i have an extra for you :P \r\n\r\n```\r\ncurl -F file=@5ea3092330302ec211e0627235b5020f41e6d8da130dc7eb4548b0e739072cac https://capesandbox.com/api/tasks/create/static/\r\n{\r\n    \"error\": false,\r\n    \"data\": {\r\n        \"task_ids\": [\r\n            68323\r\n        ],\r\n        \"cape_config\": {\r\n                \"PWD\": [\r\n                    \"passw0rd\"\r\n                ],\r\n                \"MUTEX\": [\r\n                    \"DC_MUTEX-3ZSAD3N\"\r\n                ],\r\n                \"SID\": [\r\n                    \"Guest16\"\r\n                ],\r\n                \"FWB\": [\r\n                    \"1\"\r\n                ],\r\n                \"NETDATA\": [\r\n                    \"192.168.22.237:80|192.168.22.237:8080|192.168.22.237:443\"\r\n                ],\r\n                \"GENCODE\": [\r\n                    \"89MqADvg2eUv\"\r\n                ],\r\n                \"INSTALL\": [\r\n                    \"1\"\r\n                ],\r\n                \"COMBOPATH\": [\r\n                    \"7\"\r\n                ],\r\n                \"EDTPATH\": [\r\n                    \"MSDCSC\\\\msdcsc.exe\"\r\n                ],\r\n                \"KEYNAME\": [\r\n                    \"MicroUpdate\"\r\n                ],\r\n                \"EDTDATE\": [\r\n                    \"16/04/2016\"\r\n                ],\r\n                \"PERSINST\": [\r\n                    \"1\"\r\n                ],\r\n                \"MELT\": [\r\n                    \"0\"\r\n                ],\r\n                \"CHANGEDATE\": [\r\n                    \"1\"\r\n                ],\r\n                \"DIRATTRIB\": [\r\n                    \"0\"\r\n                ],\r\n                \"FILEATTRIB\": [\r\n                    \"6\"\r\n                ],\r\n                \"OFFLINEK\": [\r\n                    \"1\"\r\n                ],\r\n                \"Version\": [\r\n                    \"#KCMDDC51#-890\"\r\n                ]\r\n        },\r\n        \"message\": \"Task ID(s) 68323 has been submitted\"\r\n    },\r\n    \"url\": [\r\n        \"https://www.capesandbox.com/submit/status/68323/\"\r\n    ]\r\n}%\r\n```\nComment: This is superb @doomedraven :D Thanks for all the help and support!\nComment: So, DarkComet worked great. I moved on to DarkRAT which is also supported by RATDecoders (https://github.com/kevthehermit/RATDecoders) and that hit an 'Internal Server Error`:\r\n```\r\n# curl -F file=@/root/Downloads/785162637380f917a4f3a187ab532a1f0d408ff892324af32c6d962ecf2d67db https://capesandbox.com/api/tasks/create/static/\r\n\r\n<!doctype html>\r\n<html lang=\"en\">\r\n<head>\r\n  <title>Server Error (500)</title>\r\n</head>\r\n<body>\r\n  <h1>Server Error (500)</h1><p></p>\r\n</body>\r\n</html>\r\n```\r\n\r\nDarkRAT source:\r\n* https://urlhaus.abuse.ch/browse/signature/DarkRAT/\r\n* https://www.virustotal.com/gui/file/785162637380f917a4f3a187ab532a1f0d408ff892324af32c6d962ecf2d67db/detection\r\n\r\nHere's a screenshot of the error I see in the Django dev server logs of my local setup:\r\n![tasks_create_static_DarkRAT_error](https://user-images.githubusercontent.com/9674215/95149531-2ab3b600-0754-11eb-818f-0d12e7521f9a.png)\r\n\nComment: I think `static_extraction(file)` returned `False` here: https://github.com/kevoreilly/CAPEv2/blob/f10327870ad6326b4050f7cae593c4ed19709a95/lib/cuckoo/core/database.py#L1344\r\n\r\nand `get_yara` returned `[]` here:\r\nhttps://github.com/kevoreilly/CAPEv2/blob/f10327870ad6326b4050f7cae593c4ed19709a95/lib/cuckoo/common/cape_utils.py#L239\r\n\r\nI wonder if this behavior is expected if RATDecoders doesn't have a matching YARA rule for the sample (so, `get_yara` returns `[]`). If this is the case, would it make sense to handle this scenario in CAPEv2 more gracefully?\nComment: fixed that, ya that was abit diffrent issue than that, variable was set to False instead of dict()\nComment: The 500 error remains for DarkRAT btw. I'll test it locally soon to see if the `AttributeError` is resolved atleast.\r\n\r\n```\r\n# curl -F file=@/root/Downloads/785162637380f917a4f3a187ab532a1f0d408ff892324af32c6d962ecf2d67db https://capesandbox.com/api/tasks/create/static/\r\n\r\n<!doctype html>\r\n<html lang=\"en\">\r\n<head>\r\n  <title>Server Error (500)</title>\r\n</head>\r\n<body>\r\n  <h1>Server Error (500)</h1><p></p>\r\n</body>\r\n</html>\r\n```\nComment: I can\u2019t reproduce it\n\n```\ncurl -F file=@5ea3092330302ec211e0627235b5020f41e6d8da130dc7eb4548b0e739072cac https://capesandbox.com/api/tasks/create/static/\n{\n    \"error\": false,\n    \"data\": {\n        \"task_ids\": [\n            68578\n        ],\n        \"config\": {\n            \"PWD\": [\n                \"passw0rd\"\n            ],\n            \"MUTEX\": [\n                \"DC_MUTEX-3ZSAD3N\"\n            ],\n            \"SID\": [\n                \"Guest16\"\n            ],\n            \"FWB\": [\n                \"1\"\n            ],\n            \"NETDATA\": [\n                \"192.168.22.237:80|192.168.22.237:8080|192.168.22.237:443\"\n            ],\n            \"GENCODE\": [\n                \"89MqADvg2eUv\"\n            ],\n            \"INSTALL\": [\n                \"1\"\n            ],\n            \"COMBOPATH\": [\n                \"7\"\n            ],\n            \"EDTPATH\": [\n                \"MSDCSC\\\\msdcsc.exe\"\n            ],\n            \"KEYNAME\": [\n                \"MicroUpdate\"\n            ],\n            \"EDTDATE\": [\n                \"16/04/2016\"\n            ],\n            \"PERSINST\": [\n                \"1\"\n            ],\n            \"MELT\": [\n                \"0\"\n            ],\n            \"CHANGEDATE\": [\n                \"1\"\n            ],\n            \"DIRATTRIB\": [\n                \"0\"\n            ],\n            \"FILEATTRIB\": [\n                \"6\"\n            ],\n            \"OFFLINEK\": [\n                \"1\"\n            ],\n            \"Version\": [\n                \"#KCMDDC51#-890\"\n            ]\n        },\n        \"message\": \"Task ID(s) 68578 has been submitted\"\n    },\n    \"url\": [\n        \"https://www.capesandbox.com/submit/status/68578/\"\n    ]\n}%\n```\n\n> El 6 oct 2020, a las 14:07, Nikhil Hegde <notifications@github.com> escribi\u00f3:\n> \n> \n> The 500 error remains for DarkRAT btw. I'll test it locally soon to see if the AttributeError is resolved atleast.\n> \n> # curl -F file=@/root/Downloads/785162637380f917a4f3a187ab532a1f0d408ff892324af32c6d962ecf2d67db https://capesandbox.com/api/tasks/create/static/\n> \n> <!doctype html>\n> <html lang=\"en\">\n> <head>\n>   <title>Server Error (500)</title>\n> </head>\n> <body>\n>   <h1>Server Error (500)</h1><p></p>\n> </body>\n> </html>\n> \u2014\n> You are receiving this because you were mentioned.\n> Reply to this email directly, view it on GitHub <https://github.com/kevoreilly/CAPEv2/issues/285#issuecomment-704223895>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAOFH34V74KVGBEVKRGKTLDSJMB7RANCNFSM4RZDVQWA>.\n> \n\n\nComment: Oh yeah, you're using the hash for DarkComet which is `5ea3092330302ec211e0627235b5020f41e6d8da130dc7eb4548b0e739072cac`. Extraction for DarkComet works fine. I was using the hash of DarkRAT which was on the supported list in RATDecoders. Hash of DarkRAT is `785162637380f917a4f3a187ab532a1f0d408ff892324af32c6d962ecf2d67db`\nComment: Fixed\nComment: Nice! So, when samples cannot be statically analyzed, I can expect to see a response like:\r\n```\r\n# curl -F file=@/root/Downloads/785162637380f917a4f3a187ab532a1f0d408ff892324af32c6d962ecf2d67db https://capesandbox.com/api/tasks/create/static/\r\n{\r\n    \"error\": false,\r\n    \"data\": {\r\n        \"task_ids\": []\r\n    }\r\n}\r\n```\r\nIs this correct?\nComment: exactly, if n oconfig and no task_ids then can't extract statically\nComment: Awesome, thanks for the support @doomedraven :D\nComment: Thanks for beta testing and patience, night coding gives  too many 500 status code xD ahahahah \n\n> El 7 oct 2020, a las 10:56, Nikhil Hegde <notifications@github.com> escribi\u00f3:\n> \n> \n> Awesome, thanks for the support @doomedraven <https://github.com/doomedraven> :D\n> \n> \u2014\n> You are receiving this because you were mentioned.\n> Reply to this email directly, view it on GitHub <https://github.com/kevoreilly/CAPEv2/issues/285#issuecomment-704794799>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAOFH34NYRSV5P6ZGURC64TSJQUL5ANCNFSM4RZDVQWA>.\n> \n\n",
+  "Title: cleanup\nBody: ",
+  "Title: Emotet RSA key extraction\nBody: Hey noticed the RSA key is no longer getting extracted assume they added the extra xor at some point. Put something together that seems to be working my end cant say its the best way to do it but hopefully of some use.\r\nPete\nComment: Hi phate1! Thanks a lot for this PR - really nice code. Very happy to see the rsa regex function fixed! I had added yara-based detection for the rsa key too ($ref_rsa) - I have a fix for that which I will push momentarily but this will mean we will have two distinct ways to get the rsa key - strength in depth!",
+  "Title: malware does not run\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nIt occurs when malware is submitted by GUI and API.\r\n\r\n# Current Behavior\r\n\r\nThe malware is placed in% temp% on win7 but not executed.There was no problem on the malware side, and the test file gave the same result.The problem with me is that there is no error log.\r\nNo errors found in cuckoo.log.analysis.log has not been generated.\r\nSince malware is not running, the Overview only has static analysis information.\r\nI tried it from the OS installation, but the same phenomenon has occurred and I am in great trouble.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Submit malware\r\n2. Wait a bit\r\n3. Check the result\r\n\r\n## Context\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| OS version       | Ubuntu 20.01\r\n|vm |Windows 7(KVM)\r\n| Python(VM) | 3.8.4\r\n![Screenshot from 2020-09-23 07-29-14](https://user-images.githubusercontent.com/48166727/93946209-a2a4d800-fd73-11ea-9378-8abd47fb32e6.png)\r\n \r\n\nComment: well at least you could post hash too test(i wont't copy it from image), submit that file to capesandbox.com to see if it run or not\nComment: I submitted.\r\n\r\nhttps://capesandbox.com/analysis/64779/\r\n\r\nIt's being analyzed in the cloud. It's a problem in my environment.\r\nIf you look at the screenshot, you can see that the \"Show Log\" is empty.\nComment: ya so that is problem on your side, you need to investigate what you did wrong, or modify, especially modified, closing as not related issue, as we can't help",
+  "Title: Resolve 280 ensure debug key exists in results\nBody: This fix resolves https://github.com/kevoreilly/CAPEv2/issues/280.",
+  "Title: Failed to generate summary HTML report: 'dict object' has no attribute 'debug'\nBody: **Summary:**\r\n\r\nWith debug disabled in processing.conf, the \"debug\" key is ommitted from the results. With the ReportHTML reporting module enabled, I am met with the following error as it doesn't handle the missing key in the global results:\r\n\r\n`2020-09-22 17:25:49,906 [lib.cuckoo.core.plugins] WARNING: The reporting module \"ReportHTML\" returned the following error: Failed to generate summary HTML report: 'dict object' has no attribute 'debug'`\r\n\r\n`conf/processing.conf:`\r\n\r\n```\r\n[debug]\r\nenabled = no\r\n```\r\n\r\n`conf/reporting.conf:`\r\n\r\n```\r\n[reporthtml]\r\n# required for the WSGI interface\r\nenabled = yes\r\n```\r\n\r\nCreated https://github.com/kevoreilly/CAPEv2/pull/281 to resolve this issue.\nComment: thank you, just small thing, you don't need to create issue and PR, you can directly create PR :)",
+  "Title: Resolve issue 278\nBody: Resolves https://github.com/kevoreilly/CAPEv2/issues/278\nComment: Thanks",
+  "Title: compressresults reporting module UnicodeDecodeError invalid start byte\nBody: **Summary:**\r\n\r\nAfter enabling the compressresults reporting module, I am met with the following errors during the reporting phase:\r\n\r\n```\r\n2020-09-22 16:31:51,654 [modules.reporting.compressresults] WARNING: Failed to compress CAPE result: invalid start byte\r\n2020-09-22 16:31:51,654 [modules.reporting.compressresults] WARNING: Failed to compress procdump result: invalid start byte\r\n```\r\n\r\nAfter some digging, the exception is generated at the following line, when json.dumps is called, the default encoding is utf-8, however, the results are actually encoded in latin-1:\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/modules/reporting/compressresults.py#L38\r\n\r\nUpdate:\r\n\r\nIssue resolved after decoding from latin-1 - created pull request https://github.com/kevoreilly/CAPEv2/pull/279\nComment: Im not suggesting to use it, will will make impossible to search later by\niocs\n\nEl mar., 22 sept. 2020 19:31, r1n9w0rm <notifications@github.com> escribi\u00f3:\n\n> *Summary:*\n>\n> After enabling the compressresults reporting module, I am met with the\n> following errors during the reporting phase:\n>\n> 2020-09-22 16:31:51,654 [modules.reporting.compressresults] WARNING: Failed to compress CAPE result: invalid start byte\n> 2020-09-22 16:31:51,654 [modules.reporting.compressresults] WARNING: Failed to compress procdump result: invalid start byte\n>\n> After some digging, the exception is generated at the following line, when\n> json.dumps is called, the default encoding is utf-8, however, the results\n> are actually encoded in latin-1:\n>\n>\n> https://github.com/kevoreilly/CAPEv2/blob/master/modules/reporting/compressresults.py#L38\n>\n> \u2014\n> You are receiving this because you are subscribed to this thread.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/278>, or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH34RKK2CR4GBO4Y2DYDSHDNPTANCNFSM4RWBQWAA>\n> .\n>\n",
+  "Title: Virt-Manager or all not installing with script attempted on both fresh installs with Ubuntu 18.04 and 20.04\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [*] I am running the latest version\r\n- [*] I checked the documentation and found no answer\r\n- [*] I checked to make sure that this issue has not already been filed\r\n- [*] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nVirt-Manager or all installs with script\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\n# Failure Information (for bugs)\r\n\r\n**Failure log from Virtmanager install attempt**\r\n\r\nsudo ./kvm-qemu.sh Virtmanager\r\nReading package lists... Done\r\nBuilding dependency tree       \r\nReading state information... Done\r\npcregrep is already the newest version (2:8.39-12build1).\r\nYou might want to run 'apt --fix-broken install' to correct these.\r\nThe following packages have unmet dependencies:\r\n gir1.2-libvirt-glib-1.0 : Depends: libvirt-glib-1.0-0 (>= 1.0.0~) but it is not going to be installed\r\nE: Unmet dependencies. Try 'apt --fix-broken install' with no packages (or specify a solution).\r\nIntel(R) Core(TM) i3-4130 CPU @ 3.60GHz\r\nReading package lists... Done\r\nBuilding dependency tree       \r\nReading state information... Done\r\nNote, selecting 'zfsutils-linux' instead of 'zfsutils'\r\nNote, selecting 'libxslt1-dev' instead of 'libxslt-dev'\r\nat-spi2-core is already the newest version (2.36.0-2).\r\nauditd is already the newest version (1:2.8.5-2ubuntu6).\r\ncdrkit-doc is already the newest version (9:1.1.11-3.1ubuntu1).\r\ncpu-checker is already the newest version (0.7-1.1).\r\ndconf-gsettings-backend is already the newest version (0.36.0-1).\r\ndconf-service is already the newest version (0.36.0-1).\r\nfontconfig is already the newest version (2.13.1-2ubuntu3).\r\nfontconfig-config is already the newest version (2.13.1-2ubuntu3).\r\nfonts-dejavu-core is already the newest version (2.37-1).\r\ngenisoimage is already the newest version (9:1.1.11-3.1ubuntu1).\r\ngir1.2-appindicator3-0.1 is already the newest version (12.10.1+20.04.20200408.1-0ubuntu1).\r\ngir1.2-atk-1.0 is already the newest version (2.35.1-1ubuntu2).\r\ngir1.2-gdkpixbuf-2.0 is already the newest version (2.40.0+dfsg-3).\r\ngir1.2-pango-1.0 is already the newest version (1.44.7-2ubuntu4).\r\ngir1.2-rest-0.7 is already the newest version (0.8.1-1).\r\ngnome-keyring is already the newest version (3.36.0-1ubuntu1).\r\ngsettings-desktop-schemas is already the newest version (3.36.0-1ubuntu1).\r\ngstreamer1.0-plugins-base is already the newest version (1.16.2-4).\r\ngstreamer1.0-plugins-good is already the newest version (1.16.2-1ubuntu2).\r\ngstreamer1.0-x is already the newest version (1.16.2-4).\r\nhicolor-icon-theme is already the newest version (0.17-2).\r\nhumanity-icon-theme is already the newest version (0.6.15).\r\nibverbs-providers is already the newest version (28.0-1ubuntu1).\r\nlibaa1 is already the newest version (1.4p5-46).\r\nlibaio1 is already the newest version (0.3.112-5).\r\nlibappindicator3-1 is already the newest version (12.10.1+20.04.20200408.1-0ubuntu1).\r\nlibasyncns0 is already the newest version (0.8-6).\r\nlibatk1.0-0 is already the newest version (2.35.1-1ubuntu2).\r\nlibatk1.0-data is already the newest version (2.35.1-1ubuntu2).\r\nlibatspi2.0-0 is already the newest version (2.36.0-2).\r\nlibavahi-client3 is already the newest version (0.7-4ubuntu7).\r\nlibavahi-common-data is already the newest version (0.7-4ubuntu7).\r\nlibavahi-common3 is already the newest version (0.7-4ubuntu7).\r\nlibavc1394-0 is already the newest version (0.5.4-5).\r\nlibbluetooth3 is already the newest version (5.53-0ubuntu3).\r\nlibcaca0 is already the newest version (0.99.beta19-2.1ubuntu1).\r\nlibcacard0 is already the newest version (1:2.6.1-1).\r\nlibcairo-gobject2 is already the newest version (1.16.0-4ubuntu1).\r\nlibcairo2 is already the newest version (1.16.0-4ubuntu1).\r\nlibcdparanoia0 is already the newest version (3.10.2+debian-13).\r\nlibcolord2 is already the newest version (1.4.4-2).\r\nlibcroco3 is already the newest version (0.6.13-1).\r\nlibdatrie1 is already the newest version (0.2.12-3).\r\nlibdbusmenu-glib4 is already the newest version (16.04.1+18.10.20180917-0ubuntu6).\r\nlibdbusmenu-gtk3-4 is already the newest version (16.04.1+18.10.20180917-0ubuntu6).\r\nlibdconf1 is already the newest version (0.36.0-1).\r\nlibdv4 is already the newest version (1.0.0-12).\r\nlibepoxy0 is already the newest version (1.5.4-1).\r\nlibfdt1 is already the newest version (1.5.1-1).\r\nlibflac8 is already the newest version (1.3.3-1build1).\r\nlibfontconfig1 is already the newest version (2.13.1-2ubuntu3).\r\nlibgdk-pixbuf2.0-0 is already the newest version (2.40.0+dfsg-3).\r\nlibgdk-pixbuf2.0-bin is already the newest version (2.40.0+dfsg-3).\r\nlibgdk-pixbuf2.0-common is already the newest version (2.40.0+dfsg-3).\r\nlibgraphite2-3 is already the newest version (1.3.13-11build1).\r\nlibgstreamer-plugins-base1.0-0 is already the newest version (1.16.2-4).\r\nlibgstreamer-plugins-good1.0-0 is already the newest version (1.16.2-1ubuntu2).\r\nlibgstreamer1.0-0 is already the newest version (1.16.2-2).\r\nlibgudev-1.0-0 is already the newest version (1:233-1).\r\nlibharfbuzz0b is already the newest version (2.6.4-1ubuntu4).\r\nlibibverbs1 is already the newest version (28.0-1ubuntu1).\r\nlibiec61883-0 is already the newest version (1.2.0-3).\r\nlibiscsi7 is already the newest version (1.18.0-2).\r\nlibjack-jackd2-0 is already the newest version (1.9.12~dfsg-2ubuntu2).\r\nlibjbig0 is already the newest version (2.1-3.1build1).\r\nlibjpeg8 is already the newest version (8c-2ubuntu8).\r\nlibjson-glib-1.0-0 is already the newest version (1.4.4-2ubuntu2).\r\nlibjson-glib-1.0-common is already the newest version (1.4.4-2ubuntu2).\r\nliblcms2-2 is already the newest version (2.9-4).\r\nlibmp3lame0 is already the newest version (3.100-3).\r\nlibmpg123-0 is already the newest version (1.25.13-1).\r\nlibnl-route-3-200 is already the newest version (3.4.0-1).\r\nlibnspr4 is already the newest version (2:4.25-1).\r\nlibogg0 is already the newest version (1.3.4-0ubuntu1).\r\nlibopus0 is already the newest version (1.3.1-0ubuntu1).\r\nliborc-0.4-0 is already the newest version (1:0.4.31-1).\r\nlibpango-1.0-0 is already the newest version (1.44.7-2ubuntu4).\r\nlibpangocairo-1.0-0 is already the newest version (1.44.7-2ubuntu4).\r\nlibpangoft2-1.0-0 is already the newest version (1.44.7-2ubuntu4).\r\nlibpangoxft-1.0-0 is already the newest version (1.44.7-2ubuntu4).\r\nlibpciaccess0 is already the newest version (0.16-0ubuntu1).\r\nlibpixman-1-0 is already the newest version (0.38.4-0ubuntu1).\r\nlibraw1394-11 is already the newest version (2.1.2-1).\r\nlibrdmacm1 is already the newest version (28.0-1ubuntu1).\r\nlibrest-0.7-0 is already the newest version (0.8.1-1).\r\nlibsamplerate0 is already the newest version (0.1.9-2).\r\nlibshout3 is already the newest version (2.4.3-1).\r\nlibsndfile1 is already the newest version (1.0.28-7).\r\nlibsoup-gnome2.4-1 is already the newest version (2.70.0-1).\r\nlibsoup2.4-1 is already the newest version (2.70.0-1).\r\nlibspeex1 is already the newest version (1.2~rc1.2-1.1ubuntu1).\r\nlibtag1v5 is already the newest version (1.11.1+dfsg.1-0.3ubuntu2).\r\nlibtag1v5-vanilla is already the newest version (1.11.1+dfsg.1-0.3ubuntu2).\r\nlibthai-data is already the newest version (0.1.28-3).\r\nlibthai0 is already the newest version (0.1.28-3).\r\nlibtheora0 is already the newest version (1.1.1+dfsg.1-15ubuntu2).\r\nlibtiff5 is already the newest version (4.1.0+git191117-2build1).\r\nlibtwolame0 is already the newest version (0.4.0-2).\r\nlibusbredirhost1 is already the newest version (0.8.0-1).\r\nlibusbredirparser1 is already the newest version (0.8.0-1).\r\nlibv4l-0 is already the newest version (1.18.0-2build1).\r\nlibv4lconvert0 is already the newest version (1.18.0-2build1).\r\nlibvisual-0.4-0 is already the newest version (0.4.0-17).\r\nlibvorbis0a is already the newest version (1.3.6-2ubuntu1).\r\nlibvorbisenc2 is already the newest version (1.3.6-2ubuntu1).\r\nlibwavpack1 is already the newest version (5.2.0-1).\r\nlibwayland-client0 is already the newest version (1.18.0-1).\r\nlibwayland-cursor0 is already the newest version (1.18.0-1).\r\nlibwayland-server0 is already the newest version (1.18.0-1).\r\nlibxcb-dri2-0 is already the newest version (1.14-2).\r\nlibxcb-dri3-0 is already the newest version (1.14-2).\r\nlibxcb-present0 is already the newest version (1.14-2).\r\nlibxcb-render0 is already the newest version (1.14-2).\r\nlibxcb-shm0 is already the newest version (1.14-2).\r\nlibxcb-sync1 is already the newest version (1.14-2).\r\nlibxcb-xfixes0 is already the newest version (1.14-2).\r\nlibxcomposite1 is already the newest version (1:0.4.5-1).\r\nlibxcursor1 is already the newest version (1:1.2.0-2).\r\nlibxdamage1 is already the newest version (1:1.1.5-2).\r\nlibxfixes3 is already the newest version (1:5.0.3-2).\r\nlibxft2 is already the newest version (2.3.3-0ubuntu1).\r\nlibxi6 is already the newest version (2:1.7.10-0ubuntu1).\r\nlibxinerama1 is already the newest version (2:1.1.4-2).\r\nlibxkbcommon0 is already the newest version (0.10.0-1).\r\nlibxml2-dev is already the newest version (2.9.10+dfsg-5).\r\nlibxml2-utils is already the newest version (2.9.10+dfsg-5).\r\nlibxrandr2 is already the newest version (2:1.5.2-0ubuntu1).\r\nlibxrender1 is already the newest version (1:0.9.10-1).\r\nlibxshmfence1 is already the newest version (1.3-1).\r\nlibxslt1-dev is already the newest version (1.1.34-4).\r\nlibxtst6 is already the newest version (2:1.2.3-1).\r\nlibxv1 is already the newest version (2:1.0.11-1).\r\nlibyajl2 is already the newest version (2.1.0-3).\r\nmsr-tools is already the newest version (1.3-3).\r\npkg-config is already the newest version (0.29.1-0ubuntu4).\r\npython-openssl-doc is already the newest version (19.0.0-1build1).\r\npython3 is already the newest version (3.8.2-0ubuntu2).\r\npython3-cairo is already the newest version (1.16.2-2ubuntu2).\r\npython3-cffi-backend is already the newest version (1.14.0-1build1).\r\npython3-dev is already the newest version (3.8.2-0ubuntu2).\r\npython3-gi is already the newest version (3.36.0-1).\r\npython3-gi-cairo is already the newest version (3.36.0-1).\r\npython3-pkg-resources is already the newest version (45.2.0-1).\r\nradvd is already the newest version (1:2.17-2).\r\nsharutils is already the newest version (1:4.15.2-4build1).\r\nsharutils-doc is already the newest version (1:4.15.2-4build1).\r\nubuntu-mono is already the newest version (19.04-0ubuntu3).\r\nunzip is already the newest version (6.0-25ubuntu1).\r\nx11-common is already the newest version (1:7.7+19ubuntu14).\r\naugeas-doc is already the newest version (1.12.0-1build1).\r\naugeas-lenses is already the newest version (1.12.0-1build1).\r\naugeas-tools is already the newest version (1.12.0-1build1).\r\ngir1.2-govirt-1.0 is already the newest version (0.3.4-3.1).\r\ngir1.2-gtk-vnc-2.0 is already the newest version (1.0.0-1build1).\r\ngir1.2-libosinfo-1.0 is already the newest version (1.7.1-1).\r\ngir1.2-spiceclientglib-2.0 is already the newest version (0.37-2fakesync1).\r\ngir1.2-spiceclientgtk-3.0 is already the newest version (0.37-2fakesync1).\r\ngtk-doc-tools is already the newest version (1.32-4).\r\nifupdown is already the newest version (0.8.35ubuntu1).\r\nindicator-application is already the newest version (12.10.1+19.04.20190308.1-0ubuntu3).\r\nintltool is already the newest version (0.51.0-5ubuntu1).\r\nlibaugeas0 is already the newest version (1.12.0-1build1).\r\nlibgovirt-common is already the newest version (0.3.4-3.1).\r\nlibgovirt-dev is already the newest version (0.3.4-3.1).\r\nlibgovirt2 is already the newest version (0.3.4-3.1).\r\nlibgtk-vnc-2.0-0 is already the newest version (1.0.0-1build1).\r\nlibgtksourceview-3.0-dev is already the newest version (3.24.11-2).\r\nlibgvnc-1.0-0 is already the newest version (1.0.0-1build1).\r\nlibindicator3-7 is already the newest version (16.10.0+18.04.20180321.1-0ubuntu4).\r\nlibnetcf1 is already the newest version (1:0.2.8-1ubuntu4).\r\nlibosinfo-1.0-0 is already the newest version (1.7.1-1).\r\nlibphodav-2.0-0 is already the newest version (2.4-1).\r\nlibphodav-2.0-common is already the newest version (2.4-1).\r\nlibsdl1.2debian is already the newest version (1.2.15+dfsg2-5).\r\nlibspice-client-glib-2.0-8 is already the newest version (0.37-2fakesync1).\r\nlibspice-client-gtk-3.0-5 is already the newest version (0.37-2fakesync1).\r\nlibxenstore3.0 is already the newest version (4.11.3+24-g14b62ab3e5-1ubuntu2).\r\nosinfo-db is already the newest version (0.20200325-1).\r\npm-utils is already the newest version (1.4.1-19).\r\npython-enum34 is already the newest version (1.1.6-2ubuntu1).\r\npython3-pip is already the newest version (20.0.2-5ubuntu1).\r\nspice-client-glib-usb-acl-helper is already the newest version (0.37-2fakesync1).\r\nssh-askpass is already the newest version (1:1.2.4.1-10).\r\nsystemtap is already the newest version (4.2-3).\r\nwodim is already the newest version (9:1.1.11-3.1ubuntu1).\r\nadwaita-icon-theme is already the newest version (3.36.1-2ubuntu0.20.04.2).\r\ndebootstrap is already the newest version (1.0.118ubuntu1.2).\r\ngir1.2-freedesktop is already the newest version (1.64.1-1~ubuntu20.04.1).\r\ngir1.2-gtk-3.0 is already the newest version (3.24.20-0ubuntu1).\r\ngir1.2-secret-1 is already the newest version (0.20.3-0ubuntu1).\r\ngir1.2-vte-2.91 is already the newest version (0.60.3-0ubuntu1~20.04).\r\nglib-networking is already the newest version (2.64.2-1ubuntu0.1).\r\nglib-networking-common is already the newest version (2.64.2-1ubuntu0.1).\r\nglib-networking-services is already the newest version (2.64.2-1ubuntu0.1).\r\ngobject-introspection is already the newest version (1.64.1-1~ubuntu20.04.1).\r\ngtk-update-icon-cache is already the newest version (3.24.20-0ubuntu1).\r\nlibasound2 is already the newest version (1.2.2-2.1ubuntu2).\r\nlibasound2-data is already the newest version (1.2.2-2.1ubuntu2).\r\nlibatk-bridge2.0-0 is already the newest version (2.34.2-0ubuntu2~20.04.1).\r\nlibcups2 is already the newest version (2.3.1-9ubuntu1.1).\r\nlibegl-mesa0 is already the newest version (20.0.8-0ubuntu1~20.04.1).\r\nlibegl1 is already the newest version (1.3.1-1ubuntu0.20.04.1).\r\nlibgbm1 is already the newest version (20.0.8-0ubuntu1~20.04.1).\r\nlibgirepository1.0-dev is already the newest version (1.64.1-1~ubuntu20.04.1).\r\nlibglapi-mesa is already the newest version (20.0.8-0ubuntu1~20.04.1).\r\nlibglvnd0 is already the newest version (1.3.1-1ubuntu0.20.04.1).\r\nlibgtk-3-0 is already the newest version (3.24.20-0ubuntu1).\r\nlibgtk-3-bin is already the newest version (3.24.20-0ubuntu1).\r\nlibgtk-3-common is already the newest version (3.24.20-0ubuntu1).\r\nlibgtk-3-dev is already the newest version (3.24.20-0ubuntu1).\r\nlibjpeg-turbo8 is already the newest version (2.0.3-0ubuntu1.20.04.1).\r\nlibnss3 is already the newest version (2:3.49.1-1ubuntu1.5).\r\nlibpulse-mainloop-glib0 is already the newest version (1:13.99.1-1ubuntu3.6).\r\nlibpulse0 is already the newest version (1:13.99.1-1ubuntu3.6).\r\nlibrados2 is already the newest version (15.2.3-0ubuntu0.20.04.2).\r\nlibrbd1 is already the newest version (15.2.3-0ubuntu0.20.04.2).\r\nlibrsvg2-2 is already the newest version (2.48.7-1ubuntu0.20.04.1).\r\nlibrsvg2-common is already the newest version (2.48.7-1ubuntu0.20.04.1).\r\nlibspice-server1 is already the newest version (0.14.2-4ubuntu3).\r\nlibvte-2.91-0 is already the newest version (0.60.3-0ubuntu1~20.04).\r\nlibvte-2.91-common is already the newest version (0.60.3-0ubuntu1~20.04).\r\nlibx11-xcb1 is already the newest version (2:1.6.9-2ubuntu1.1).\r\nnfs-common is already the newest version (1:1.3.4-2.5ubuntu3.3).\r\nsamba is already the newest version (2:4.11.6+dfsg-0ubuntu1.4).\r\nzfsutils-linux is already the newest version (0.8.3-1ubuntu12.4).\r\nlibwayland-egl1-mesa is already the newest version (20.0.8-0ubuntu1~20.04.1).\r\nlibproxy1v5 is already the newest version (0.4.15-10ubuntu1.1).\r\nYou might want to run 'apt --fix-broken install' to correct these.\r\nThe following packages have unmet dependencies:\r\n gir1.2-libvirt-glib-1.0 : Depends: libvirt-glib-1.0-0 (>= 1.0.0~) but it is not going to be installed\r\nE: Unmet dependencies. Try 'apt --fix-broken install' with no packages (or specify a solution).\r\nReading package lists... Done\r\nBuilding dependency tree       \r\nReading state information... Done\r\nlibbrlapi-dev is already the newest version (6.0+dfsg-4ubuntu6).\r\nlibpython3-stdlib is already the newest version (3.8.2-0ubuntu2).\r\novmf is already the newest version (0~20191122.bd85bf54-2ubuntu3).\r\npython3-ntlm-auth is already the newest version (1.1.0-1).\r\nYou might want to run 'apt --fix-broken install' to correct these.\r\nThe following packages have unmet dependencies:\r\n gir1.2-libvirt-glib-1.0 : Depends: libvirt-glib-1.0-0 (>= 1.0.0~) but it is not going to be installed\r\nE: Unmet dependencies. Try 'apt --fix-broken install' with no packages (or specify a solution).\r\nCollecting requests\r\n  Using cached requests-2.24.0-py2.py3-none-any.whl (61 kB)\r\nCollecting six\r\n  Using cached six-1.15.0-py2.py3-none-any.whl (10 kB)\r\nCollecting urllib3\r\n  Using cached urllib3-1.25.10-py2.py3-none-any.whl (127 kB)\r\nCollecting ipaddr\r\n  Using cached ipaddr-2.2.0.tar.gz (26 kB)\r\nCollecting ipaddress\r\n  Using cached ipaddress-1.0.23-py2.py3-none-any.whl (18 kB)\r\nCollecting idna\r\n  Using cached idna-2.10-py2.py3-none-any.whl (58 kB)\r\nRequirement already up-to-date: dbus-python in /usr/lib/python3/dist-packages (1.2.16)\r\nCollecting certifi\r\n  Using cached certifi-2020.6.20-py2.py3-none-any.whl (156 kB)\r\nCollecting lxml\r\n  Using cached lxml-4.5.2-cp38-cp38-manylinux1_x86_64.whl (5.4 MB)\r\nERROR: Could not find a version that satisfies the requirement libxml2 (from versions: none)\r\nERROR: No matching distribution found for libxml2\r\n./kvm-qemu.sh: line 594: libtoolize: command not found\r\nchecking for a BSD-compatible install... /usr/bin/install -c\r\nchecking whether build environment is sane... yes\r\nchecking for a thread-safe mkdir -p... /usr/bin/mkdir -p\r\nchecking for gawk... no\r\nchecking for mawk... mawk\r\nchecking whether make sets $(MAKE)... yes\r\nchecking whether make supports nested variables... yes\r\nchecking build system type... x86_64-pc-linux-gnu\r\nchecking host system type... x86_64-pc-linux-gnu\r\nchecking whether make supports nested variables... (cached) yes\r\nchecking for gcc... gcc\r\nchecking whether the C compiler works... yes\r\nchecking for C compiler default output file name... a.out\r\nchecking for suffix of executables... \r\nchecking whether we are cross compiling... no\r\nchecking for suffix of object files... o\r\nchecking whether we are using the GNU C compiler... yes\r\nchecking whether gcc accepts -g... yes\r\nchecking for gcc option to accept ISO C89... none needed\r\nchecking whether gcc understands -c and -o together... yes\r\nchecking whether make supports the include directive... yes (GNU style)\r\nchecking dependency style of gcc... gcc3\r\nchecking for perl... /usr/bin/perl\r\nchecking how to print strings... printf\r\nchecking for a sed that does not truncate output... /usr/bin/sed\r\nchecking for grep that handles long lines and -e... /usr/bin/grep\r\nchecking for egrep... /usr/bin/grep -E\r\nchecking for fgrep... /usr/bin/grep -F\r\nchecking for ld used by gcc... /usr/bin/ld\r\nchecking if the linker (/usr/bin/ld) is GNU ld... yes\r\nchecking for BSD- or MS-compatible name lister (nm)... /usr/bin/nm -B\r\nchecking the name lister (/usr/bin/nm -B) interface... BSD nm\r\nchecking whether ln -s works... yes\r\nchecking the maximum length of command line arguments... 1572864\r\nchecking how to convert x86_64-pc-linux-gnu file names to x86_64-pc-linux-gnu format... func_convert_file_noop\r\nchecking how to convert x86_64-pc-linux-gnu file names to toolchain format... func_convert_file_noop\r\nchecking for /usr/bin/ld option to reload object files... -r\r\nchecking for objdump... objdump\r\nchecking how to recognize dependent libraries... pass_all\r\nchecking for dlltool... no\r\nchecking how to associate runtime and link libraries... printf %s\\n\r\nchecking for ar... ar\r\nchecking for archiver @FILE support... @\r\nchecking for strip... strip\r\nchecking for ranlib... ranlib\r\nchecking command to parse /usr/bin/nm -B output from gcc object... ok\r\nchecking for sysroot... no\r\nchecking for a working dd... /usr/bin/dd\r\nchecking how to truncate binary pipes... /usr/bin/dd bs=4096 count=1\r\nchecking for mt... mt\r\nchecking if mt is a manifest tool... no\r\nchecking how to run the C preprocessor... gcc -E\r\nchecking for ANSI C header files... yes\r\nchecking for sys/types.h... yes\r\nchecking for sys/stat.h... yes\r\nchecking for stdlib.h... yes\r\nchecking for string.h... yes\r\nchecking for memory.h... yes\r\nchecking for strings.h... yes\r\nchecking for inttypes.h... yes\r\nchecking for stdint.h... yes\r\nchecking for unistd.h... yes\r\nchecking for dlfcn.h... yes\r\nchecking for objdir... .libs\r\nchecking if gcc supports -fno-rtti -fno-exceptions... no\r\nchecking for gcc option to produce PIC... -fPIC -DPIC\r\nchecking if gcc PIC flag -fPIC -DPIC works... yes\r\nchecking if gcc static flag -static works... yes\r\nchecking if gcc supports -c -o file.o... yes\r\nchecking if gcc supports -c -o file.o... (cached) yes\r\nchecking whether the gcc linker (/usr/bin/ld -m elf_x86_64) supports shared libraries... yes\r\nchecking whether -lc should be explicitly linked in... no\r\nchecking dynamic linker characteristics... GNU/Linux ld.so\r\nchecking how to hardcode library paths into programs... immediate\r\nchecking whether stripping libraries is possible... yes\r\nchecking if libtool supports shared libraries... yes\r\nchecking whether to build shared libraries... yes\r\nchecking whether to build static libraries... no\r\nchecking whether C compiler handles -Werror -Wunknown-warning-option... no\r\nchecking whether the C compiler's -Wformat allows NULL strings... yes\r\nchecking whether pragma GCC diagnostic push works... yes\r\nchecking whether the C compiler's -Wlogical-op gives bogus warnings... no\r\nchecking whether -Wno-missing-field-initializers is supported... yes\r\nchecking whether -Wno-missing-field-initializers is needed... no\r\nchecking whether -Wuninitialized is supported... yes\r\nchecking whether C compiler handles -W... yes\r\nchecking whether C compiler handles -Waddress... yes\r\nchecking whether C compiler handles -Waggressive-loop-optimizations... yes\r\nchecking whether C compiler handles -Wall... yes\r\nchecking whether C compiler handles -Warray-bounds... yes\r\nchecking whether C compiler handles -Wattributes... yes\r\nchecking whether C compiler handles -Wbuiltin-macro-redefined... yes\r\nchecking whether C compiler handles -Wcast-align... yes\r\nchecking whether C compiler handles -Wchar-subscripts... yes\r\nchecking whether C compiler handles -Wclobbered... yes\r\nchecking whether C compiler handles -Wcomment... yes\r\nchecking whether C compiler handles -Wcomments... yes\r\nchecking whether C compiler handles -Wcoverage-mismatch... yes\r\nchecking whether C compiler handles -Wcpp... yes\r\nchecking whether C compiler handles -Wdate-time... yes\r\nchecking whether C compiler handles -Wdeprecated-declarations... yes\r\nchecking whether C compiler handles -Wdisabled-optimization... yes\r\nchecking whether C compiler handles -Wdiv-by-zero... yes\r\nchecking whether C compiler handles -Wdouble-promotion... yes\r\nchecking whether C compiler handles -Wempty-body... yes\r\nchecking whether C compiler handles -Wendif-labels... yes\r\nchecking whether C compiler handles -Wextra... yes\r\nchecking whether C compiler handles -Wformat-contains-nul... yes\r\nchecking whether C compiler handles -Wformat-extra-args... yes\r\nchecking whether C compiler handles -Wformat-security... yes\r\nchecking whether C compiler handles -Wformat-y2k... yes\r\nchecking whether C compiler handles -Wformat-zero-length... yes\r\nchecking whether C compiler handles -Wfree-nonheap-object... yes\r\nchecking whether C compiler handles -Wignored-qualifiers... yes\r\nchecking whether C compiler handles -Wimplicit... yes\r\nchecking whether C compiler handles -Wimplicit-function-declaration... yes\r\nchecking whether C compiler handles -Wimplicit-int... yes\r\nchecking whether C compiler handles -Winit-self... yes\r\nchecking whether C compiler handles -Winline... yes\r\nchecking whether C compiler handles -Wint-to-pointer-cast... yes\r\nchecking whether C compiler handles -Winvalid-memory-model... yes\r\nchecking whether C compiler handles -Winvalid-pch... yes\r\nchecking whether C compiler handles -Wjump-misses-init... yes\r\nchecking whether C compiler handles -Wlogical-op... yes\r\nchecking whether C compiler handles -Wmain... yes\r\nchecking whether C compiler handles -Wmaybe-uninitialized... yes\r\nchecking whether C compiler handles -Wmissing-braces... yes\r\nchecking whether C compiler handles -Wmissing-declarations... yes\r\nchecking whether C compiler handles -Wmissing-field-initializers... yes\r\nchecking whether C compiler handles -Wmissing-include-dirs... yes\r\nchecking whether C compiler handles -Wmissing-parameter-type... yes\r\nchecking whether C compiler handles -Wmissing-prototypes... yes\r\nchecking whether C compiler handles -Wmultichar... yes\r\nchecking whether C compiler handles -Wnarrowing... yes\r\nchecking whether C compiler handles -Wnested-externs... yes\r\nchecking whether C compiler handles -Wnonnull... yes\r\nchecking whether C compiler handles -Wold-style-declaration... yes\r\nchecking whether C compiler handles -Wold-style-definition... yes\r\nchecking whether C compiler handles -Wopenmp-simd... yes\r\nchecking whether C compiler handles -Woverflow... yes\r\nchecking whether C compiler handles -Woverride-init... yes\r\nchecking whether C compiler handles -Wpacked-bitfield-compat... yes\r\nchecking whether C compiler handles -Wparentheses... yes\r\nchecking whether C compiler handles -Wpointer-arith... yes\r\nchecking whether C compiler handles -Wpointer-sign... yes\r\nchecking whether C compiler handles -Wpointer-to-int-cast... yes\r\nchecking whether C compiler handles -Wpragmas... yes\r\nchecking whether C compiler handles -Wreturn-local-addr... yes\r\nchecking whether C compiler handles -Wreturn-type... yes\r\nchecking whether C compiler handles -Wsequence-point... yes\r\nchecking whether C compiler handles -Wshadow... yes\r\nchecking whether C compiler handles -Wsizeof-pointer-memaccess... yes\r\nchecking whether C compiler handles -Wstrict-aliasing... yes\r\nchecking whether C compiler handles -Wstrict-prototypes... yes\r\nchecking whether C compiler handles -Wsuggest-attribute=const... yes\r\nchecking whether C compiler handles -Wsuggest-attribute=format... yes\r\nchecking whether C compiler handles -Wsuggest-attribute=noreturn... yes\r\nchecking whether C compiler handles -Wsuggest-attribute=pure... yes\r\nchecking whether C compiler handles -Wswitch... yes\r\nchecking whether C compiler handles -Wsync-nand... yes\r\nchecking whether C compiler handles -Wtrampolines... yes\r\nchecking whether C compiler handles -Wtrigraphs... yes\r\nchecking whether C compiler handles -Wtype-limits... yes\r\nchecking whether C compiler handles -Wuninitialized... yes\r\nchecking whether C compiler handles -Wunknown-pragmas... yes\r\nchecking whether C compiler handles -Wunused... yes\r\nchecking whether C compiler handles -Wunused-but-set-parameter... yes\r\nchecking whether C compiler handles -Wunused-but-set-variable... yes\r\nchecking whether C compiler handles -Wunused-function... yes\r\nchecking whether C compiler handles -Wunused-label... yes\r\nchecking whether C compiler handles -Wunused-local-typedefs... yes\r\nchecking whether C compiler handles -Wunused-parameter... yes\r\nchecking whether C compiler handles -Wunused-result... yes\r\nchecking whether C compiler handles -Wunused-value... yes\r\nchecking whether C compiler handles -Wunused-variable... yes\r\nchecking whether C compiler handles -Wvarargs... yes\r\nchecking whether C compiler handles -Wvariadic-macros... yes\r\nchecking whether C compiler handles -Wvector-operation-performance... yes\r\nchecking whether C compiler handles -Wvolatile-register-var... yes\r\nchecking whether C compiler handles -Wwrite-strings... yes\r\nchecking whether C compiler handles -Wnormalized=nfc... yes\r\nchecking whether C compiler handles -Wno-sign-compare... yes\r\nchecking whether C compiler handles -Wjump-misses-init... (cached) yes\r\nchecking whether C compiler handles -Wno-cast-function-type... yes\r\nchecking whether C compiler handles -Wno-format-nonliteral... yes\r\nchecking whether C compiler handles -Wframe-larger-than=4096... yes\r\nchecking whether C compiler handles -fstack-protector-strong... yes\r\nchecking whether C compiler handles -fexceptions... yes\r\nchecking whether C compiler handles -fasynchronous-unwind-tables... yes\r\nchecking whether C compiler handles -fipa-pure-const... yes\r\nchecking whether C compiler handles -Wno-suggest-attribute=pure... yes\r\nchecking whether C compiler handles -Wno-suggest-attribute=const... yes\r\nchecking for pkg-config... /usr/bin/pkg-config\r\nchecking pkg-config is at least version 0.9.0... yes\r\nchecking for LIBVIRT... no\r\nconfigure: error: Package requirements (libvirt >= 1.2.5) were not met:\r\n\r\nNo package 'libvirt' found\r\n\r\nConsider adjusting the PKG_CONFIG_PATH environment variable if you\r\ninstalled software in a non-standard prefix.\r\n\r\nAlternatively, you may set the environment variables LIBVIRT_CFLAGS\r\nand LIBVIRT_LIBS to avoid the need to call pkg-config.\r\nSee the pkg-config man page for more details.\r\nThere seems to be no Makefile in this directory.\r\nYou must run ./configure before running `make'.\r\nmake: *** [GNUmakefile:113: abort-due-to-no-makefile] Error 1\r\n./kvm-qemu.sh: line 599: checkinstall: command not found\r\n(Reading database ... 201586 files and directories currently installed.)\r\nPreparing to unpack gir1.2-libvirt-glib-1.0_1.0.0-1_amd64.deb ...\r\nUnpacking gir1.2-libvirt-glib-1.0:amd64 (1.0.0-1) over (1.0.0-1) ...\r\ndpkg: dependency problems prevent configuration of gir1.2-libvirt-glib-1.0:amd64:\r\n gir1.2-libvirt-glib-1.0:amd64 depends on libvirt-glib-1.0-0 (>= 1.0.0~); however:\r\n  Package libvirt-glib-1.0-0 is not installed.\r\n\r\ndpkg: error processing package gir1.2-libvirt-glib-1.0:amd64 (--install):\r\n dependency problems - leaving unconfigured\r\nErrors were encountered while processing:\r\n gir1.2-libvirt-glib-1.0:amd64\r\n./kvm-qemu.sh: line 610: git: command not found\r\n[+] Cloned Virt Manager repo\r\n./kvm-qemu.sh: line 613: cd: virt-manager: No such file or directory\r\n\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. run sudo ./kvm-qemu.sh all or Virtmanger\r\n2. Script will error\r\n3. Installation incomplete\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| OS version       | Ubuntu 20.04\r\n\r\n## Failure Logs\r\n\r\n**Failure log from all from script**\r\n\r\nReading package lists...\r\nBuilding dependency tree...\r\nReading state information...\r\npcregrep is already the newest version (2:8.39-12build1).\r\nYou might want to run 'apt --fix-broken install' to correct these.\r\nThe following packages have unmet dependencies:\r\n gir1.2-libvirt-glib-1.0 : Depends: libvirt-glib-1.0-0 (>= 1.0.0~) but it is not going to be installed\r\n libvirt-daemon : Depends: libvirt-daemon-driver-qemu but it is not going to be installed\r\n                  Recommends: qemu-kvm but it is not going to be installed or\r\n                              qemu (>= 0.9.1) but it is not going to be installed\r\nIntel(R) Core(TM) i3-4130 CPU @ 3.60GHz\r\nReading package lists...\r\nBuilding dependency tree...\r\nReading state information...\r\n[+] Cleaning QEMU old install if exists\r\n[+] Downloading QEMU source code\r\nReading package lists...\r\nBuilding dependency tree...\r\nReading state information...\r\nsoftware-properties-common is already the newest version (0.98.9.2).\r\nsoftware-properties-common set to manually installed.\r\nYou might want to run 'apt --fix-broken install' to correct these.\r\nThe following packages have unmet dependencies:\r\n gir1.2-libvirt-glib-1.0 : Depends: libvirt-glib-1.0-0 (>= 1.0.0~) but it is not going to be installed\r\n libvirt-daemon : Depends: libvirt-daemon-driver-qemu but it is not going to be installed\r\n                  Recommends: qemu-kvm but it is not going to be installed or\r\n                              qemu (>= 0.9.1) but it is not going to be installed\r\n'universe' distribution component is already enabled for all sources.\r\nHit:1 http://security.ubuntu.com/ubuntu focal-security InRelease\r\nHit:2 http://us.archive.ubuntu.com/ubuntu focal InRelease\r\nHit:3 http://us.archive.ubuntu.com/ubuntu focal-updates InRelease\r\nHit:4 http://us.archive.ubuntu.com/ubuntu focal-backports InRelease\r\nReading package lists...\r\nBuilding dependency tree...\r\nReading state information...\r\n2 packages can be upgraded. Run 'apt list --upgradable' to see them.\r\nReading package lists...\r\nBuilding dependency tree...\r\nReading state information...\r\nlibxml2-dev is already the newest version (2.9.10+dfsg-5).\r\npython3-pip is already the newest version (20.0.2-5ubuntu1).\r\nYou might want to run 'apt --fix-broken install' to correct these.\r\nThe following packages have unmet dependencies:\r\n gir1.2-libvirt-glib-1.0 : Depends: libvirt-glib-1.0-0 (>= 1.0.0~) but it is not going to be installed\r\n google-perftools : Depends: libgoogle-perftools4 but it is not going to be installed\r\n                    Depends: curl\r\n                    Recommends: graphviz\r\n                    Recommends: gv but it is not going to be installed\r\n libghc-gtk3-dev : Depends: libghc-array-dev-0.5.3.0-ea273\r\n                   Depends: libghc-base-dev-4.12.0.0-a86a1\r\n                   Depends: libghc-bytestring-dev-0.10.8.2-20f27\r\n                   Depends: libghc-cairo-dev-0.13.6.0-dd927\r\n                   Depends: libghc-containers-dev-0.6.0.1-b7319\r\n                   Depends: libghc-gio-dev-0.13.6.0-70c16\r\n                   Depends: libghc-glib-dev-0.13.7.0-a3e61\r\n                   Depends: libghc-mtl-dev-2.2.2-07ff1\r\n                   Depends: libghc-pango-dev-0.13.6.0-ae52e\r\n                   Depends: libghc-text-dev-1.2.3.1-538d8\r\n libgoogle-perftools-dev : Depends: libgoogle-perftools4 (= 2.7-1ubuntu2) but it is not going to be installed\r\n                           Depends: libtcmalloc-minimal4 (= 2.7-1ubuntu2) but it is not going to be installed\r\n                           Depends: libunwind-dev but it is not going to be installed\r\n libsnappy-dev : Depends: libsnappy1v5 (= 1.1.8-1build1) but it is not going to be installed\r\n libssh2-1-dev : Depends: libssh2-1 (= 1.8.0-2.1build1) but it is not going to be installed\r\n                 Depends: libgcrypt20-dev but it is not going to be installed\r\n libvde-dev : Depends: libvde0 (= 2.3.2+r586-2.2build1) but it is not going to be installed\r\n libvirt-daemon : Depends: libvirt-daemon-driver-qemu but it is not going to be installed\r\n                  Recommends: qemu-kvm but it is not going to be installed or\r\n                              qemu (>= 0.9.1) but it is not going to be installed\r\n vde2 : Depends: libvde0 but it is not going to be installed\r\n        Depends: libvdeplug2 but it is not going to be installed\r\nReading package lists...\r\nBuilding dependency tree...\r\nReading state information...\r\nlibbrlapi-dev is already the newest version (6.0+dfsg-4ubuntu6).\r\nlibgtk2.0-bin is already the newest version (2.24.32-4ubuntu4).\r\nlibgtk2.0-bin set to manually installed.\r\nlibpixman-1-dev is already the newest version (0.38.4-0ubuntu1).\r\nlibpixman-1-dev set to manually installed.\r\nlibxml2-utils is already the newest version (2.9.10+dfsg-5).\r\nlibrados-dev is already the newest version (15.2.3-0ubuntu0.20.04.2).\r\nlibrados-dev set to manually installed.\r\nlibrbd-dev is already the newest version (15.2.3-0ubuntu0.20.04.2).\r\nuuid-dev is already the newest version (2.34-0.1ubuntu9.1).\r\nuuid-dev set to manually installed.\r\nYou might want to run 'apt --fix-broken install' to correct these.\r\nThe following packages have unmet dependencies:\r\n debhelper : Depends: dh-autoreconf (>= 17~) but it is not going to be installed\r\n             Depends: dh-strip-nondeterminism (>= 0.028~) but it is not going to be installed\r\n             Depends: dwz\r\n             Depends: libdebhelper-perl (= 12.10ubuntu1) but it is not going to be installed\r\n             Depends: po-debconf but it is not going to be installed\r\n gir1.2-libvirt-glib-1.0 : Depends: libvirt-glib-1.0-0 (>= 1.0.0~) but it is not going to be installed\r\n libcacard-dev : Depends: libnss3-dev but it is not going to be installed\r\n libgnutls28-dev : Depends: libgnutls-dane0 (= 3.6.13-2ubuntu1.3) but it is not going to be installed\r\n                   Depends: libgnutls-openssl27 (= 3.6.13-2ubuntu1.3) but it is not going to be installed\r\n                   Depends: libgnutlsxx28 (= 3.6.13-2ubuntu1.3) but it is not going to be installed\r\n                   Depends: libidn2-dev but it is not going to be installed\r\n                   Depends: libp11-kit-dev (>= 0.23.10) but it is not going to be installed\r\n                   Depends: libtasn1-6-dev but it is not going to be installed\r\n                   Depends: nettle-dev (>= 3.4.1~rc1) but it is not going to be installed\r\n libjpeg-dev : Depends: libjpeg8-dev but it is not going to be installed\r\n libncurses5-dev : Depends: libncurses-dev (= 6.2-0ubuntu2) but it is not going to be installed\r\n libspice-server-dev : Depends: libspice-protocol-dev (>= 0.14.0~) but it is not going to be installed\r\n libvirt-daemon : Depends: libvirt-daemon-driver-qemu but it is not going to be installed\r\n                  Recommends: qemu-kvm but it is not going to be installed or\r\n                              qemu (>= 0.9.1) but it is not going to be installed\r\n libxen-dev : Depends: libxenmisc4.11 (= 4.11.3+24-g14b62ab3e5-1ubuntu2) but it is not going to be installed\r\n              Depends: libxencall1 (= 4.11.3+24-g14b62ab3e5-1ubuntu2) but it is not going to be installed\r\n              Depends: libxendevicemodel1 (= 4.11.3+24-g14b62ab3e5-1ubuntu2) but it is not going to be installed\r\n              Depends: libxenevtchn1 (= 4.11.3+24-g14b62ab3e5-1ubuntu2) but it is not going to be installed\r\n              Depends: libxenforeignmemory1 (= 4.11.3+24-g14b62ab3e5-1ubuntu2) but it is not going to be installed\r\n              Depends: libxengnttab1 (= 4.11.3+24-g14b62ab3e5-1ubuntu2) but it is not going to be installed\r\n              Depends: libxentoollog1 (= 4.11.3+24-g14b62ab3e5-1ubuntu2) but it is not going to be installed\r\n texinfo : Depends: libtext-unidecode-perl but it is not going to be installed\r\n           Depends: libxml-libxml-perl but it is not going to be installed\r\n           Depends: tex-common (>= 6) but it is not going to be installed\r\n xfslibs-dev : Depends: xfsprogs (>= 3.0.0) but it is not going to be installed\r\n\r\nCPAN.pm requires configuration, but most of it can be done automatically.\r\nIf you answer 'no' below, you will enter an interactive dialog for each\r\nconfiguration option instead.\r\n\r\nWould you like to configure as much as possible automatically? [yes] yes\r\n\r\n\r\nAutoconfiguration complete.\r\n\r\ncommit: wrote '/root/.cpan/CPAN/MyConfig.pm'\r\n\r\nYou can re-run configuration any time with 'o conf init' in the CPAN shell\r\nCollecting sphinx\r\n  Downloading Sphinx-3.2.1-py3-none-any.whl (2.9 MB)\r\nRequirement already satisfied: requests>=2.5.0 in /usr/lib/python3/dist-packages (from sphinx) (2.22.0)\r\nCollecting sphinxcontrib-serializinghtml\r\n  Downloading sphinxcontrib_serializinghtml-1.1.4-py2.py3-none-any.whl (89 kB)\r\nCollecting snowballstemmer>=1.1\r\n  Downloading snowballstemmer-2.0.0-py2.py3-none-any.whl (97 kB)\r\nCollecting sphinxcontrib-qthelp\r\n  Downloading sphinxcontrib_qthelp-1.0.3-py2.py3-none-any.whl (90 kB)\r\nCollecting sphinxcontrib-applehelp\r\n  Downloading sphinxcontrib_applehelp-1.0.2-py2.py3-none-any.whl (121 kB)\r\nCollecting sphinxcontrib-devhelp\r\n  Downloading sphinxcontrib_devhelp-1.0.2-py2.py3-none-any.whl (84 kB)\r\nCollecting imagesize\r\n  Downloading imagesize-1.2.0-py2.py3-none-any.whl (4.8 kB)\r\nCollecting sphinxcontrib-htmlhelp\r\n  Downloading sphinxcontrib_htmlhelp-1.0.3-py2.py3-none-any.whl (96 kB)\r\nRequirement already satisfied: Pygments>=2.0 in /usr/lib/python3/dist-packages (from sphinx) (2.3.1)\r\nCollecting Jinja2>=2.3\r\n  Downloading Jinja2-2.11.2-py2.py3-none-any.whl (125 kB)\r\nRequirement already satisfied: setuptools in /usr/lib/python3/dist-packages (from sphinx) (45.2.0)\r\nCollecting babel>=1.3\r\n  Downloading Babel-2.8.0-py2.py3-none-any.whl (8.6 MB)\r\nRequirement already satisfied: packaging in /usr/lib/python3/dist-packages (from sphinx) (20.3)\r\nCollecting docutils>=0.12\r\n  Downloading docutils-0.16-py2.py3-none-any.whl (548 kB)\r\nCollecting alabaster<0.8,>=0.7\r\n  Downloading alabaster-0.7.12-py2.py3-none-any.whl (14 kB)\r\nCollecting sphinxcontrib-jsmath\r\n  Downloading sphinxcontrib_jsmath-1.0.1-py2.py3-none-any.whl (5.1 kB)\r\nRequirement already satisfied: MarkupSafe>=0.23 in /usr/lib/python3/dist-packages (from Jinja2>=2.3->sphinx) (1.1.0)\r\nRequirement already satisfied: pytz>=2015.7 in /usr/lib/python3/dist-packages (from babel>=1.3->sphinx) (2019.3)\r\nInstalling collected packages: sphinxcontrib-serializinghtml, snowballstemmer, sphinxcontrib-qthelp, sphinxcontrib-applehelp, sphinxcontrib-devhelp, imagesize, sphinxcontrib-htmlhelp, Jinja2, babel, docutils, alabaster, sphinxcontrib-jsmath, sphinx\r\nSuccessfully installed Jinja2-2.11.2 alabaster-0.7.12 babel-2.8.0 docutils-0.16 imagesize-1.2.0 snowballstemmer-2.0.0 sphinx-3.2.1 sphinxcontrib-applehelp-1.0.2 sphinxcontrib-devhelp-1.0.2 sphinxcontrib-htmlhelp-1.0.3 sphinxcontrib-jsmath-1.0.1 sphinxcontrib-qthelp-1.0.3 sphinxcontrib-serializinghtml-1.1.4\r\n[+] Patching QEMU clues\r\n[+] Starting compile it\r\n[-] Compilling failed\r\n[+] Installing SeaBios dependencies\r\nReading package lists...\r\nBuilding dependency tree...\r\nReading state information...\r\nYou might want to run 'apt --fix-broken install' to correct these.\r\nThe following packages have unmet dependencies:\r\n gir1.2-libvirt-glib-1.0 : Depends: libvirt-glib-1.0-0 (>= 1.0.0~) but it is not going to be installed\r\n git : Depends: liberror-perl but it is not going to be installed\r\n       Depends: git-man (> 1:2.25.1) but it is not going to be installed\r\n       Depends: git-man (< 1:2.25.1-.) but it is not going to be installed\r\n libvirt-daemon : Depends: libvirt-daemon-driver-qemu but it is not going to be installed\r\n                  Recommends: qemu-kvm but it is not going to be installed or\r\n                              qemu (>= 0.9.1) but it is not going to be installed\r\n[-] Check if git installed or network connection is OK\r\nHit:1 http://us.archive.ubuntu.com/ubuntu focal InRelease\r\nHit:2 http://us.archive.ubuntu.com/ubuntu focal-updates InRelease\r\nHit:3 http://security.ubuntu.com/ubuntu focal-security InRelease\r\nHit:4 http://us.archive.ubuntu.com/ubuntu focal-backports InRelease\r\nGet:5 http://us.archive.ubuntu.com/ubuntu focal/multiverse Sources [174 kB]\r\nGet:6 http://security.ubuntu.com/ubuntu focal-security/multiverse Sources [716 B]\r\nGet:7 http://us.archive.ubuntu.com/ubuntu focal/main Sources [847 kB]\r\nGet:8 http://security.ubuntu.com/ubuntu focal-security/restricted Sources [4,192 B]\r\nGet:9 http://security.ubuntu.com/ubuntu focal-security/universe Sources [10.1 kB]\r\nGet:10 http://archive.canonical.com/ubuntu focal InRelease [12.1 kB]\r\nGet:11 http://security.ubuntu.com/ubuntu focal-security/main Sources [54.3 kB]\r\nGet:12 http://archive.canonical.com/ubuntu focal/partner Sources [1,420 B]\r\nGet:13 http://us.archive.ubuntu.com/ubuntu focal/universe Sources [9,707 kB]\r\nGet:14 http://us.archive.ubuntu.com/ubuntu focal/restricted Sources [6,472 B]\r\nGet:15 http://us.archive.ubuntu.com/ubuntu focal-updates/main Sources [184 kB]\r\nGet:16 http://us.archive.ubuntu.com/ubuntu focal-updates/multiverse Sources [4,620 B]\r\nGet:17 http://us.archive.ubuntu.com/ubuntu focal-updates/restricted Sources [4,188 B]\r\nGet:18 http://us.archive.ubuntu.com/ubuntu focal-updates/universe Sources [59.6 kB]\r\nGet:19 http://us.archive.ubuntu.com/ubuntu focal-backports/universe Sources [1,700 B]\r\nFetched 11.1 MB in 14s (796 kB/s)\r\nReading package lists...\r\nBuilding dependency tree...\r\nReading state information...\r\n2 packages can be upgraded. Run 'apt list --upgradable' to see them.\r\nReading package lists...\r\nBuilding dependency tree...\r\nReading state information...\r\nbuild-essential is already the newest version (12.8ubuntu1).\r\nbuild-essential set to manually installed.\r\ncpu-checker is already the newest version (0.7-1.1).\r\ngcc is already the newest version (4:9.3.0-1ubuntu2).\r\ngcc set to manually installed.\r\nlibtirpc-dev is already the newest version (1.2.5-1).\r\npkg-config is already the newest version (0.29.1-0ubuntu4).\r\nintltool is already the newest version (0.51.0-5ubuntu1).\r\npython3-pip is already the newest version (20.0.2-5ubuntu1).\r\nYou might want to run 'apt --fix-broken install' to correct these.\r\nThe following packages have unmet dependencies:\r\n gir1.2-libvirt-glib-1.0 : Depends: libvirt-glib-1.0-0 (>= 1.0.0~) but it is not going to be installed\r\n libvirt-daemon : Depends: libvirt-daemon-driver-qemu but it is not going to be installed\r\n                  Recommends: qemu-kvm but it is not going to be installed or\r\n                              qemu (>= 0.9.1) but it is not going to be installed\r\nReading package lists...\r\nBuilding dependency tree...\r\nReading state information...\r\ngtk-update-icon-cache is already the newest version (3.24.20-0ubuntu1).\r\nYou might want to run 'apt --fix-broken install' to correct these.\r\nThe following packages have unmet dependencies:\r\n gir1.2-libvirt-glib-1.0 : Depends: libvirt-glib-1.0-0 (>= 1.0.0~) but it is not going to be installed\r\n libvirt-daemon : Depends: libvirt-daemon-driver-qemu but it is not going to be installed\r\n                  Recommends: qemu-kvm but it is not going to be installed or\r\n                              qemu (>= 0.9.1) but it is not going to be installed\r\nReading package lists...\r\nBuilding dependency tree...\r\nReading state information...\r\ngcc is already the newest version (4:9.3.0-1ubuntu2).\r\ngcc set to manually installed.\r\nmake is already the newest version (4.2.1-1.2).\r\nmake set to manually installed.\r\nYou might want to run 'apt --fix-broken install' to correct these.\r\nThe following packages have unmet dependencies:\r\n gir1.2-libvirt-glib-1.0 : Depends: libvirt-glib-1.0-0 (>= 1.0.0~) but it is not going to be installed\r\n gnutls-bin : Depends: libgnutls-dane0 (>= 3.5.6) but it is not going to be installed\r\n              Depends: libopts25 (>= 1:5.18.16) but it is not going to be installed\r\n libvirt-daemon : Depends: libvirt-daemon-driver-qemu but it is not going to be installed\r\n                  Recommends: qemu-kvm but it is not going to be installed or\r\n                              qemu (>= 0.9.1) but it is not going to be installed\r\nReading package lists...\r\nBuilding dependency tree...\r\nReading state information...\r\nPackage 'libvirt-bin' is not installed, so not removed\r\nYou might want to run 'apt --fix-broken install' to correct these.\r\nThe following packages have unmet dependencies:\r\n gir1.2-libvirt-glib-1.0 : Depends: libvirt-glib-1.0-0 (>= 1.0.0~) but it is not going to be installed\r\n libvirt-daemon : Depends: libvirt0 (= 6.0.0-0ubuntu8.3) but it is not going to be installed\r\n                  Depends: libvirt-daemon-driver-qemu but it is not going to be installed\r\n                  Recommends: qemu-kvm but it is not going to be installed or\r\n                              qemu (>= 0.9.1) but it is not going to be installed\r\n libvirt-daemon-driver-storage-rbd : Depends: libvirt0 (>= 6.0.0-0ubuntu8.3) but it is not going to be installed\r\n[+] Checking/deleting old versions of Libvirt\r\nReading package lists...\r\nBuilding dependency tree...\r\nReading state information...\r\nPackage 'libvirt-bin' is not installed, so not removed\r\nReading package lists...\r\nBuilding dependency tree...\r\nReading state information...\r\ndmidecode is already the newest version (3.2-3).\r\nebtables is already the newest version (2.0.11-3build1).\r\nlibdevmapper-dev is already the newest version (2:1.02.167-1ubuntu1).\r\nlibnl-3-dev is already the newest version (3.4.0-1).\r\nlibnl-route-3-dev is already the newest version (3.4.0-1).\r\nlibpciaccess-dev is already the newest version (0.16-0ubuntu1).\r\nlibtirpc-dev is already the newest version (1.2.5-1).\r\nlibyajl-dev is already the newest version (2.1.0-3).\r\nlvm2 is already the newest version (2.03.07-1ubuntu1).\r\npython3-dev is already the newest version (3.8.2-0ubuntu2).\r\npython3-libxml2 is already the newest version (2.9.10+dfsg-5).\r\nunzip is already the newest version (6.0-25ubuntu1).\r\nxsltproc is already the newest version (1.1.34-4).\r\ndnsmasq is already the newest version (2.80-1.1ubuntu1).\r\nlibosinfo-1.0-dev is already the newest version (1.7.1-1).\r\nlibsdl1.2-dev is already the newest version (1.2.15+dfsg2-5).\r\nnumad is already the newest version (0.5+20150602-5ubuntu1).\r\npython-libxml2 is already the newest version (2.9.10+dfsg-5).\r\npython3-pip is already the newest version (20.0.2-5ubuntu1).\r\napparmor-utils is already the newest version (2.13.3-7ubuntu5.1).\r\nlibapparmor-dev is already the newest version (2.13.3-7ubuntu5.1).\r\nlibglib2.0-dev is already the newest version (2.64.3-1~ubuntu20.04.1).\r\nlibrbd-dev is already the newest version (15.2.3-0ubuntu0.20.04.2).\r\nYou might want to run 'apt --fix-broken install' to correct these.\r\nThe following packages have unmet dependencies:\r\n gir1.2-libvirt-glib-1.0 : Depends: libvirt-glib-1.0-0 (>= 1.0.0~) but it is not going to be installed\r\n libvirt-daemon : Depends: libvirt-daemon-driver-qemu but it is not going to be installed\r\n                  Recommends: qemu-kvm but it is not going to be installed or\r\n                              qemu (>= 0.9.1) but it is not going to be installed\r\nReading package lists...\r\nBuilding dependency tree...\r\nReading state information...\r\napparmor-utils is already the newest version (2.13.3-7ubuntu5.1).\r\nlibapparmor-dev is already the newest version (2.13.3-7ubuntu5.1).\r\npython3-apparmor is already the newest version (2.13.3-7ubuntu5.1).\r\npython3-apparmor set to manually installed.\r\nYou might want to run 'apt --fix-broken install' to correct these.\r\nThe following packages have unmet dependencies:\r\n gir1.2-libvirt-glib-1.0 : Depends: libvirt-glib-1.0-0 (>= 1.0.0~) but it is not going to be installed\r\n libvirt-daemon : Depends: libvirt-daemon-driver-qemu but it is not going to be installed\r\n                  Recommends: qemu-kvm but it is not going to be installed or\r\n                              qemu (>= 0.9.1) but it is not going to be installed\r\nCollecting ipaddr\r\n  Using cached ipaddr-2.2.0.tar.gz (26 kB)\r\nCollecting meson\r\n  Downloading meson-0.55.3.tar.gz (1.7 MB)\r\n  Installing build dependencies: started\r\n  Installing build dependencies: finished with status 'done'\r\n  Getting requirements to build wheel: started\r\n  Getting requirements to build wheel: finished with status 'done'\r\n    Preparing wheel metadata: started\r\n    Preparing wheel metadata: finished with status 'done'\r\nCollecting flake8\r\n  Downloading flake8-3.8.3-py2.py3-none-any.whl (72 kB)\r\nCollecting mccabe<0.7.0,>=0.6.0\r\n  Downloading mccabe-0.6.1-py2.py3-none-any.whl (8.6 kB)\r\nCollecting pycodestyle<2.7.0,>=2.6.0a1\r\n  Downloading pycodestyle-2.6.0-py2.py3-none-any.whl (41 kB)\r\nCollecting pyflakes<2.3.0,>=2.2.0\r\n  Downloading pyflakes-2.2.0-py2.py3-none-any.whl (66 kB)\r\nBuilding wheels for collected packages: ipaddr, meson\r\n  Building wheel for ipaddr (setup.py): started\r\n  Building wheel for ipaddr (setup.py): finished with status 'done'\r\n  Created wheel for ipaddr: filename=ipaddr-2.2.0-py3-none-any.whl size=18280 sha256=0f3dceaead8d5086a7e94df1de0fd48414f0539666b0fbdb78cabe8f0f4d26fb\r\n  Stored in directory: /root/.cache/pip/wheels/38/59/0e/c20fbbd7969a095fa10b79bdde5d9852227f60bdbdd3a90b49\r\n  Building wheel for meson (PEP 517): started\r\n  Building wheel for meson (PEP 517): finished with status 'done'\r\n  Created wheel for meson: filename=meson-0.55.3-py3-none-any.whl size=662411 sha256=b854c560918a08211e46fde0d165904be49b43564758994fb518af2159731e93\r\n  Stored in directory: /root/.cache/pip/wheels/43/98/24/ab4ceea939896a012493de27b985c3d21634f5b255fb607006\r\nSuccessfully built ipaddr meson\r\nInstalling collected packages: ipaddr, meson, mccabe, pycodestyle, pyflakes, flake8\r\nSuccessfully installed flake8-3.8.3 ipaddr-2.2.0 mccabe-0.6.1 meson-0.55.3 pycodestyle-2.6.0 pyflakes-2.2.0\r\nThe Meson build system\r\nVersion: 0.55.3\r\nSource dir: /tmp/libvirt-6.7.0\r\nBuild dir: /tmp/libvirt-6.7.0/build\r\nBuild type: native build\r\nProject name: libvirt\r\nProject version: 6.7.0\r\nC compiler for the host machine: cc (gcc 9.3.0 \"cc (Ubuntu 9.3.0-10ubuntu2) 9.3.0\")\r\nC linker for the host machine: cc ld.bfd 2.34\r\nHost machine cpu family: x86_64\r\nHost machine cpu: x86_64\r\nConfiguring configmake.h using configuration\r\nChecking for size of \"ptrdiff_t\" : 8\r\nChecking for size of \"size_t\" : 8\r\nCompiler for C supports arguments -fstack-protector-strong: YES \r\nFirst supported argument: -fstack-protector-strong\r\nCompiler for C supports arguments -Wlogical-op: YES \r\nChecking if \"-Wdouble-promotion\" compiles: YES \r\nCompiler for C supports arguments -fno-common: YES \r\nCompiler for C supports arguments -W: YES \r\nCompiler for C supports arguments -Wabsolute-value: YES \r\nCompiler for C supports arguments -Waddress: YES \r\nCompiler for C supports arguments -Waddress-of-packed-member: YES \r\nCompiler for C supports arguments -Waggressive-loop-optimizations: YES \r\nCompiler for C supports arguments -Wattribute-warning: YES \r\nCompiler for C supports arguments -Wattributes: YES \r\nCompiler for C supports arguments -Wbool-compare: YES \r\nCompiler for C supports arguments -Wbool-operation: YES \r\nCompiler for C supports arguments -Wbuiltin-declaration-mismatch: YES \r\nCompiler for C supports arguments -Wbuiltin-macro-redefined: YES \r\nCompiler for C supports arguments -Wcannot-profile: YES \r\nCompiler for C supports arguments -Wcast-align: YES \r\nCompiler for C supports arguments -Wcast-align=strict: YES \r\nCompiler for C supports arguments -Wcast-function-type: YES \r\nCompiler for C supports arguments -Wchar-subscripts: YES \r\nCompiler for C supports arguments -Wclobbered: YES \r\nCompiler for C supports arguments -Wcomment: YES \r\nCompiler for C supports arguments -Wcomments: YES \r\nCompiler for C supports arguments -Wcoverage-mismatch: YES \r\nCompiler for C supports arguments -Wcpp: YES \r\nCompiler for C supports arguments -Wdangling-else: YES \r\nCompiler for C supports arguments -Wdate-time: YES \r\nCompiler for C supports arguments -Wdeclaration-after-statement: YES \r\nCompiler for C supports arguments -Wdeprecated-declarations: YES \r\nCompiler for C supports arguments -Wdesignated-init: YES \r\nCompiler for C supports arguments -Wdiscarded-array-qualifiers: YES \r\nCompiler for C supports arguments -Wdiscarded-qualifiers: YES \r\nCompiler for C supports arguments -Wdiv-by-zero: YES \r\nCompiler for C supports arguments -Wduplicated-cond: YES \r\nCompiler for C supports arguments -Wduplicate-decl-specifier: YES \r\nCompiler for C supports arguments -Wempty-body: YES \r\nCompiler for C supports arguments -Wendif-labels: YES \r\nCompiler for C supports arguments -Wexpansion-to-defined: YES \r\nCompiler for C supports arguments -Wformat-contains-nul: YES \r\nCompiler for C supports arguments -Wformat-extra-args: YES \r\nCompiler for C supports arguments -Wformat-nonliteral: YES \r\nCompiler for C supports arguments -Wformat-security: YES \r\nCompiler for C supports arguments -Wformat-y2k: YES \r\nCompiler for C supports arguments -Wformat-zero-length: YES \r\nCompiler for C supports arguments -Wframe-address: YES \r\nCompiler for C supports arguments -Wfree-nonheap-object: YES \r\nCompiler for C supports arguments -Whsa: YES \r\nCompiler for C supports arguments -Wif-not-aligned: YES \r\nCompiler for C supports arguments -Wignored-attributes: YES \r\nCompiler for C supports arguments -Wignored-qualifiers: YES \r\nCompiler for C supports arguments -Wimplicit: YES \r\nCompiler for C supports arguments -Wimplicit-function-declaration: YES \r\nCompiler for C supports arguments -Wimplicit-int: YES \r\nCompiler for C supports arguments -Wincompatible-pointer-types: YES \r\nCompiler for C supports arguments -Winit-self: YES \r\nCompiler for C supports arguments -Winline: YES \r\nCompiler for C supports arguments -Wint-conversion: YES \r\nCompiler for C supports arguments -Wint-in-bool-context: YES \r\nCompiler for C supports arguments -Wint-to-pointer-cast: YES \r\nCompiler for C supports arguments -Winvalid-memory-model: YES \r\nCompiler for C supports arguments -Winvalid-pch: YES \r\nCompiler for C supports arguments -Wlogical-not-parentheses: YES \r\nCompiler for C supports arguments -Wlogical-op: YES (cached)\r\nCompiler for C supports arguments -Wmain: YES \r\nCompiler for C supports arguments -Wmaybe-uninitialized: YES \r\nCompiler for C supports arguments -Wmemset-elt-size: YES \r\nCompiler for C supports arguments -Wmemset-transposed-args: YES \r\nCompiler for C supports arguments -Wmisleading-indentation: YES \r\nCompiler for C supports arguments -Wmissing-attributes: YES \r\nCompiler for C supports arguments -Wmissing-braces: YES \r\nCompiler for C supports arguments -Wmissing-declarations: YES \r\nCompiler for C supports arguments -Wmissing-field-initializers: YES \r\nCompiler for C supports arguments -Wmissing-include-dirs: YES \r\nCompiler for C supports arguments -Wmissing-parameter-type: YES \r\nCompiler for C supports arguments -Wmissing-profile: YES \r\nCompiler for C supports arguments -Wmissing-prototypes: YES \r\nCompiler for C supports arguments -Wmultichar: YES \r\nCompiler for C supports arguments -Wmultistatement-macros: YES \r\nCompiler for C supports arguments -Wnarrowing: YES \r\nCompiler for C supports arguments -Wnested-externs: YES \r\nCompiler for C supports arguments -Wnonnull: YES \r\nCompiler for C supports arguments -Wnonnull-compare: YES \r\nCompiler for C supports arguments -Wnull-dereference: YES \r\nCompiler for C supports arguments -Wodr: YES \r\nCompiler for C supports arguments -Wold-style-declaration: YES \r\nCompiler for C supports arguments -Wold-style-definition: YES \r\nCompiler for C supports arguments -Wopenmp-simd: YES \r\nCompiler for C supports arguments -Woverflow: YES \r\nCompiler for C supports arguments -Woverride-init: YES \r\nCompiler for C supports arguments -Wpacked-bitfield-compat: YES \r\nCompiler for C supports arguments -Wpacked-not-aligned: YES \r\nCompiler for C supports arguments -Wparentheses: YES \r\nCompiler for C supports arguments -Wpointer-arith: YES \r\nCompiler for C supports arguments -Wpointer-compare: YES \r\nCompiler for C supports arguments -Wpointer-sign: YES \r\nCompiler for C supports arguments -Wpointer-to-int-cast: YES \r\nCompiler for C supports arguments -Wpragmas: YES \r\nCompiler for C supports arguments -Wpsabi: YES \r\nCompiler for C supports arguments -Wrestrict: YES \r\nCompiler for C supports arguments -Wreturn-local-addr: YES \r\nCompiler for C supports arguments -Wreturn-type: YES \r\nCompiler for C supports arguments -Wscalar-storage-order: YES \r\nCompiler for C supports arguments -Wsequence-point: YES \r\nCompiler for C supports arguments -Wshadow: YES \r\nCompiler for C supports arguments -Wshift-count-negative: YES \r\nCompiler for C supports arguments -Wshift-count-overflow: YES \r\nCompiler for C supports arguments -Wshift-negative-value: YES \r\nCompiler for C supports arguments -Wsizeof-array-argument: YES \r\nCompiler for C supports arguments -Wsizeof-pointer-div: YES \r\nCompiler for C supports arguments -Wsizeof-pointer-memaccess: YES \r\nCompiler for C supports arguments -Wstrict-aliasing: YES \r\nCompiler for C supports arguments -Wstrict-prototypes: YES \r\nCompiler for C supports arguments -Wstringop-truncation: YES \r\nCompiler for C supports arguments -Wsuggest-attribute=cold: YES \r\nCompiler for C supports arguments -Wsuggest-attribute=const: YES \r\nCompiler for C supports arguments -Wsuggest-attribute=format: YES \r\nCompiler for C supports arguments -Wsuggest-attribute=noreturn: YES \r\nCompiler for C supports arguments -Wsuggest-attribute=pure: YES \r\nCompiler for C supports arguments -Wsuggest-final-methods: YES \r\nCompiler for C supports arguments -Wsuggest-final-types: YES \r\nCompiler for C supports arguments -Wswitch: YES \r\nCompiler for C supports arguments -Wswitch-bool: YES \r\nCompiler for C supports arguments -Wswitch-unreachable: YES \r\nCompiler for C supports arguments -Wsync-nand: YES \r\nCompiler for C supports arguments -Wtautological-compare: YES \r\nCompiler for C supports arguments -Wtrampolines: YES \r\nCompiler for C supports arguments -Wtrigraphs: YES \r\nCompiler for C supports arguments -Wtype-limits: YES \r\nCompiler for C supports arguments -Wuninitialized: YES \r\nCompiler for C supports arguments -Wunknown-pragmas: YES \r\nCompiler for C supports arguments -Wunused: YES \r\nCompiler for C supports arguments -Wunused-but-set-parameter: YES \r\nCompiler for C supports arguments -Wunused-but-set-variable: YES \r\nCompiler for C supports arguments -Wunused-function: YES \r\nCompiler for C supports arguments -Wunused-label: YES \r\nCompiler for C supports arguments -Wunused-local-typedefs: YES \r\nCompiler for C supports arguments -Wunused-parameter: YES \r\nCompiler for C supports arguments -Wunused-result: YES \r\nCompiler for C supports arguments -Wunused-value: YES \r\nCompiler for C supports arguments -Wunused-variable: YES \r\nCompiler for C supports arguments -Wvarargs: YES \r\nCompiler for C supports arguments -Wvariadic-macros: YES \r\nCompiler for C supports arguments -Wvector-operation-performance: YES \r\nCompiler for C supports arguments -Wvla: YES \r\nCompiler for C supports arguments -Wvolatile-register-var: YES \r\nCompiler for C supports arguments -Wwrite-strings: YES \r\nCompiler for C supports arguments -Walloc-size-larger-than=9223372036854775807: YES \r\nCompiler for C supports arguments -Warray-bounds=2: YES \r\nCompiler for C supports arguments -Wattribute-alias=2: YES \r\nCompiler for C supports arguments -Wformat-overflow=2: YES \r\nCompiler for C supports arguments -Wformat-truncation=2: YES \r\nCompiler for C supports arguments -Wimplicit-fallthrough=5: YES \r\nCompiler for C supports arguments -Wnormalized=nfc: YES \r\nCompiler for C supports arguments -Wshift-overflow=2: YES \r\nCompiler for C supports arguments -Wstringop-overflow=2: YES \r\nCompiler for C supports arguments -Wunused-const-variable=2: YES \r\nCompiler for C supports arguments -Wvla-larger-then=4031: NO \r\nCompiler for C supports arguments -Wno-sign-compare -Wsign-compare: YES \r\nCompiler for C supports arguments -Wno-cast-function-type -Wcast-function-type: YES \r\nCompiler for C supports arguments -Wno-typedef-redefinition -Wtypedef-redefinition: NO \r\nCompiler for C supports arguments -Wjump-misses-init: YES \r\nCompiler for C supports arguments -Wswitch-enum: YES \r\nCompiler for C supports arguments -Wno-format-nonliteral -Wformat-nonliteral: YES \r\nCompiler for C supports arguments -Wno-format-truncation -Wformat-truncation: YES \r\nCompiler for C supports arguments -Wframe-larger-than=4096: YES \r\nCompiler for C supports arguments -fexceptions: YES \r\nCompiler for C supports arguments -fasynchronous-unwind-tables: YES \r\nCompiler for C supports arguments -fipa-pure-const: YES \r\nCompiler for C supports arguments -Wno-suggest-attribute=pure -Wsuggest-attribute=pure: YES \r\nCompiler for C supports arguments -Wno-suggest-attribute=const -Wsuggest-attribute=const: YES \r\nCompiler for C supports arguments -fstack-protector-strong: YES (cached)\r\nCompiler for C supports arguments -Wdouble-promotion: YES \r\nCompiler for C supports arguments -Wsuggest-attribute=format: YES (cached)\r\nCompiler for C supports link arguments -Wl,-z,relro: YES \r\nCompiler for C supports link arguments -Wl,-z,now: YES \r\nCompiler for C supports link arguments -Wl,-z,nodelete: YES \r\nCompiler for C supports link arguments -Wl,-z,defs: YES \r\nCompiler for C supports link arguments -Wl,--no-copy-dt-needed-entries: YES \r\nCompiler for C supports link arguments -Wl,--version-script=/tmp/libvirt-6.7.0/src/libvirt_qemu.syms: YES \r\nCompiler for C supports link arguments -Wl,-export-dynamic: YES \r\nFirst supported link argument: -Wl,-export-dynamic\r\nChecking for function \"__lxstat\" : YES \r\nChecking for function \"__lxstat64\" : YES \r\nChecking for function \"__xstat\" : YES \r\nChecking for function \"__xstat64\" : YES \r\nChecking for function \"elf_aux_info\" : NO \r\nChecking for function \"fallocate\" : YES \r\nChecking for function \"getauxval\" : YES \r\nChecking for function \"getegid\" : YES \r\nChecking for function \"geteuid\" : YES \r\nChecking for function \"getgid\" : YES \r\nChecking for function \"getifaddrs\" : YES \r\nChecking for function \"getmntent_r\" : YES \r\nChecking for function \"getpwuid_r\" : YES \r\nChecking for function \"getrlimit\" : YES \r\nChecking for function \"getuid\" : YES \r\nChecking for function \"getutxid\" : YES \r\nChecking for function \"if_indextoname\" : YES \r\nChecking for function \"lstat\" : YES \r\nChecking for function \"lstat64\" : YES \r\nChecking for function \"mmap\" : YES \r\nChecking for function \"newlocale\" : YES \r\nChecking for function \"pipe2\" : YES \r\nChecking for function \"posix_fallocate\" : YES \r\nChecking for function \"posix_memalign\" : YES \r\nChecking for function \"prlimit\" : YES \r\nChecking for function \"sched_getaffinity\" : YES \r\nChecking for function \"sched_setscheduler\" : YES \r\nChecking for function \"setgroups\" : YES \r\nChecking for function \"setns\" : YES \r\nChecking for function \"setrlimit\" : YES \r\nChecking for function \"stat\" : YES \r\nChecking for function \"stat64\" : YES \r\nChecking for function \"symlink\" : YES \r\nChecking for function \"sysctlbyname\" : NO \r\nChecking for function \"unshare\" : YES \r\nHas header \"asm/hwcap.h\" : NO \r\nHas header \"ifaddrs.h\" : YES \r\nHas header \"libtasn1.h\" : NO \r\nHas header \"libutil.h\" : NO \r\nHas header \"linux/kvm.h\" : YES \r\nHas header \"linux/magic.h\" : YES \r\nHas header \"mntent.h\" : YES \r\nHas header \"net/ethernet.h\" : YES \r\nHas header \"net/if.h\" : YES \r\nHas header \"pty.h\" : YES \r\nHas header \"pwd.h\" : YES \r\nHas header \"stdarg.h\" : YES \r\nHas header \"sys/ioctl.h\" : YES \r\nHas header \"sys/mount.h\" : YES \r\nHas header \"sys/syscall.h\" : YES \r\nHas header \"sys/sysctl.h\" : YES \r\nHas header \"sys/ucred.h\" : NO \r\nHas header \"syslog.h\" : YES \r\nHas header \"util.h\" : NO \r\nHas header \"xlocale.h\" : NO \r\nHas header \"linux/btrfs.h\" : YES \r\nHas header \"xfs/xfs.h\" : NO \r\nHas header \"linux/devlink.h\" : YES \r\nHas header \"linux/param.h\" : YES \r\nHas header \"linux/sockios.h\" : YES \r\nHas header \"linux/if_bridge.h\" : YES \r\nHas header \"linux/if_tun.h\" : YES \r\nHeader <endian.h> has symbol \"htole64\" : YES \r\nHeader <linux/ethtool.h> has symbol \"ETH_FLAG_TXVLAN\" : YES \r\nHeader <linux/ethtool.h> has symbol \"ETH_FLAG_NTUPLE\" : YES \r\nHeader <linux/ethtool.h> has symbol \"ETH_FLAG_RXHASH\" : YES \r\nHeader <linux/ethtool.h> has symbol \"ETH_FLAG_LRO\" : YES \r\nHeader <linux/ethtool.h> has symbol \"ETHTOOL_GGSO\" : YES \r\nHeader <linux/ethtool.h> has symbol \"ETHTOOL_GGRO\" : YES \r\nHeader <linux/ethtool.h> has symbol \"ETHTOOL_GFLAGS\" : YES \r\nHeader <linux/ethtool.h> has symbol \"ETHTOOL_GFEATURES\" : YES \r\nHeader <linux/ethtool.h> has symbol \"ETHTOOL_SCOALESCE\" : YES \r\nHeader <linux/ethtool.h> has symbol \"ETHTOOL_GCOALESCE\" : YES \r\nHeader <linux/if_vlan.h> has symbol \"GET_VLAN_VID_CMD\" : YES \r\nHeader <unistd.h> has symbol \"SEEK_HOLE\" : YES \r\nHeader <linux/if_vlan.h> has symbol \"GET_VLAN_VID_CMD\" : YES (cached)\r\nHeader <net/if_dl.h> has symbol \"link_addr\" : NO \r\nHeader <linux/devlink.h> has symbol \"DEVLINK_CMD_ESWITCH_GET\" : YES \r\nHeader <linux/vhost.h> has symbol \"VHOST_VSOCK_SET_GUEST_CID\" : YES \r\nHeader <linux/bpf.h> has symbol \"BPF_PROG_QUERY\" : YES \r\nHeader <linux/bpf.h> has symbol \"BPF_CGROUP_DEVICE\" : YES \r\nHeader <net/if_bridgevar.h> has symbol \"BRDGSFD\" : NO \r\nHeader <sys/cpuset.h> has symbol \"cpuset_getaffinity\" : NO \r\nHeader <mach/clock.h> has symbol \"clock_serv_t\" : NO \r\nChecking for type \"struct ifreq\" : YES \r\nChecking for type \"struct sockpeercred\" : NO \r\nChecking whether type \"struct ifreq\" has member \"ifr_newname\" : YES \r\nChecking whether type \"struct ifreq\" has member \"ifr_ifindex\" : YES \r\nChecking whether type \"struct ifreq\" has member \"ifr_index\" : NO \r\nChecking whether type \"struct ifreq\" has member \"ifr_hwaddr\" : YES \r\nChecking for size of \"long\" : 8\r\nProgram perl found: YES\r\nProgram python3 found: YES\r\nProgram xmllint found: YES\r\nProgram xsltproc found: YES\r\nProgram rpcgen found: YES\r\nProgram rst2html5.py found: YES\r\nProgram rst2man.py found: YES\r\nProgram addr2line found: YES\r\nProgram augparse found: YES\r\nProgram dmidecode found: YES\r\nProgram dnsmasq found: YES\r\nProgram ebtables found: YES\r\nProgram flake8 found: YES\r\nProgram ip found: YES\r\nProgram ip6tables found: YES\r\nProgram iptables found: YES\r\nProgram iscsiadm found: NO\r\nProgram mdevctl found: NO\r\nProgram mm-ctl found: NO\r\nProgram modprobe found: YES\r\nProgram ovs-vsctl found: NO\r\nProgram pdwtags found: NO\r\nProgram radvd found: YES\r\nProgram rmmod found: YES\r\nProgram scrub found: NO\r\nProgram tc found: YES\r\nProgram udevadm found: YES\r\nHas header \"sys/acl.h\" : NO \r\nFound pkg-config: /usr/bin/pkg-config (0.29.1)\r\nRun-time dependency libapparmor found: YES 2.13.3\r\nLibrary attr found: NO\r\nLibrary audit found: NO\r\nRun-time dependency bash-completion found: YES 2.10\r\nRun-time dependency blkid found: YES 2.34.0\r\nLibrary cap-ng found: NO\r\nDid not find CMake 'cmake'\r\nFound CMake: NO\r\nRun-time dependency libcurl found: NO (tried pkgconfig and cmake)\r\nRun-time dependency dbus-1 found: YES 1.12.16\r\nChecking for function \"dbus_watch_get_unix_fd\" with dependency dbus-1: YES \r\nChecking for type \"DBusBasicValue\" with dependency dbus-1: YES \r\nRun-time dependency devmapper found: YES 1.02.167\r\nLibrary dl found: YES\r\nHas header \"dlfcn.h\" : YES \r\nRun-time dependency fuse found: NO (tried pkgconfig and cmake)\r\nRun-time dependency glib-2.0 found: YES 2.64.3\r\nRun-time dependency gobject-2.0 found: YES 2.64.3\r\nRun-time dependency gio-2.0 found: YES 2.64.3\r\nRun-time dependency glusterfs-api found: NO (tried pkgconfig and cmake)\r\nRun-time dependency gnutls found: NO (tried pkgconfig)\r\n\r\nmeson.build:1083:0: ERROR: Dependency \"gnutls\" not found, tried pkgconfig\r\n\r\nA full log can be found at /tmp/libvirt-6.7.0/build/meson-logs/meson-log.txt\r\nProfile for /usr/sbin/libvirtd not found, skipping\r\nArchive:  v6.7.0.zip\r\n8c800b0adf4849aeb94cb712192dba82fa4720d3\r\n   creating: libvirt-python-6.7.0/\r\n extracting: libvirt-python-6.7.0/.ctags  \r\n  inflating: libvirt-python-6.7.0/.dir-locals.el  \r\n   creating: libvirt-python-6.7.0/.github/\r\n  inflating: libvirt-python-6.7.0/.github/lockdown.yml  \r\n  inflating: libvirt-python-6.7.0/.gitignore  \r\n  inflating: libvirt-python-6.7.0/.gitlab-ci.yml  \r\n  inflating: libvirt-python-6.7.0/.mailmap  \r\n  inflating: libvirt-python-6.7.0/AUTHORS.in  \r\n  inflating: libvirt-python-6.7.0/CONTRIBUTING.rst  \r\n  inflating: libvirt-python-6.7.0/COPYING  \r\n  inflating: libvirt-python-6.7.0/COPYING.LESSER  \r\n  inflating: libvirt-python-6.7.0/HACKING  \r\n  inflating: libvirt-python-6.7.0/MANIFEST.in  \r\n  inflating: libvirt-python-6.7.0/Makefile  \r\n  inflating: libvirt-python-6.7.0/README  \r\n   creating: libvirt-python-6.7.0/ci/\r\n  inflating: libvirt-python-6.7.0/ci/README.rst  \r\n  inflating: libvirt-python-6.7.0/ci/libvirt-centos-7.Dockerfile  \r\n  inflating: libvirt-python-6.7.0/ci/libvirt-centos-8.Dockerfile  \r\n  inflating: libvirt-python-6.7.0/ci/libvirt-centos-stream.Dockerfile  \r\n  inflating: libvirt-python-6.7.0/ci/libvirt-debian-10.Dockerfile  \r\n  inflating: libvirt-python-6.7.0/ci/libvirt-debian-sid.Dockerfile  \r\n  inflating: libvirt-python-6.7.0/ci/libvirt-fedora-31.Dockerfile  \r\n  inflating: libvirt-python-6.7.0/ci/libvirt-fedora-32.Dockerfile  \r\n  inflating: libvirt-python-6.7.0/ci/libvirt-fedora-rawhide.Dockerfile  \r\n  inflating: libvirt-python-6.7.0/ci/libvirt-opensuse-151.Dockerfile  \r\n  inflating: libvirt-python-6.7.0/ci/libvirt-ubuntu-1804.Dockerfile  \r\n  inflating: libvirt-python-6.7.0/ci/libvirt-ubuntu-2004.Dockerfile  \r\n  inflating: libvirt-python-6.7.0/ci/refresh  \r\n   creating: libvirt-python-6.7.0/examples/\r\n  inflating: libvirt-python-6.7.0/examples/README  \r\n  inflating: libvirt-python-6.7.0/examples/consolecallback.py  \r\n  inflating: libvirt-python-6.7.0/examples/dhcpleases.py  \r\n  inflating: libvirt-python-6.7.0/examples/dominfo.py  \r\n  inflating: libvirt-python-6.7.0/examples/domipaddrs.py  \r\n  inflating: libvirt-python-6.7.0/examples/domrestore.py  \r\n  inflating: libvirt-python-6.7.0/examples/domsave.py  \r\n  inflating: libvirt-python-6.7.0/examples/domstart.py  \r\n  inflating: libvirt-python-6.7.0/examples/esxlist.py  \r\n  inflating: libvirt-python-6.7.0/examples/event-test.py  \r\n   creating: libvirt-python-6.7.0/examples/guest-vcpus/\r\n  inflating: libvirt-python-6.7.0/examples/guest-vcpus/guest-vcpu-daemon.py  \r\n  inflating: libvirt-python-6.7.0/examples/guest-vcpus/guest-vcpu.py  \r\n  inflating: libvirt-python-6.7.0/examples/nodestats.py  \r\n  inflating: libvirt-python-6.7.0/examples/sparsestream.py  \r\n  inflating: libvirt-python-6.7.0/examples/topology.py  \r\n  inflating: libvirt-python-6.7.0/generator.py  \r\n  inflating: libvirt-python-6.7.0/libvirt-lxc-override-api.xml  \r\n  inflating: libvirt-python-6.7.0/libvirt-lxc-override.c  \r\n  inflating: libvirt-python-6.7.0/libvirt-override-api.xml  \r\n  inflating: libvirt-python-6.7.0/libvirt-override-virConnect.py  \r\n  inflating: libvirt-python-6.7.0/libvirt-override-virDomain.py  \r\n  inflating: libvirt-python-6.7.0/libvirt-override-virDomainCheckpoint.py  \r\n  inflating: libvirt-python-6.7.0/libvirt-override-virDomainSnapshot.py  \r\n  inflating: libvirt-python-6.7.0/libvirt-override-virNetwork.py  \r\n  inflating: libvirt-python-6.7.0/libvirt-override-virStoragePool.py  \r\n  inflating: libvirt-python-6.7.0/libvirt-override-virStream.py  \r\n  inflating: libvirt-python-6.7.0/libvirt-override.c  \r\n  inflating: libvirt-python-6.7.0/libvirt-override.py  \r\n  inflating: libvirt-python-6.7.0/libvirt-python.spec.in  \r\n  inflating: libvirt-python-6.7.0/libvirt-qemu-override-api.xml  \r\n  inflating: libvirt-python-6.7.0/libvirt-qemu-override.c  \r\n  inflating: libvirt-python-6.7.0/libvirt-qemu-override.py  \r\n  inflating: libvirt-python-6.7.0/libvirt-utils.c  \r\n  inflating: libvirt-python-6.7.0/libvirt-utils.h  \r\n  inflating: libvirt-python-6.7.0/libvirtaio.py  \r\n extracting: libvirt-python-6.7.0/requirements-test.txt  \r\n  inflating: libvirt-python-6.7.0/sanitytest.py  \r\n  inflating: libvirt-python-6.7.0/setup.py  \r\n   creating: libvirt-python-6.7.0/tests/\r\n  inflating: libvirt-python-6.7.0/tests/test_conn.py  \r\n  inflating: libvirt-python-6.7.0/tests/test_domain.py  \r\n  inflating: libvirt-python-6.7.0/tox.ini  \r\n  inflating: libvirt-python-6.7.0/typewrappers.c  \r\n  inflating: libvirt-python-6.7.0/typewrappers.h  \r\nrunning build\r\n/usr/bin/pkg-config --print-errors --atleast-version=0.9.11 libvirt\r\nProcessing /tmp/libvirt-python-6.7.0\r\nBuilding wheels for collected packages: libvirt-python\r\n  Building wheel for libvirt-python (setup.py): started\r\n  Building wheel for libvirt-python (setup.py): finished with status 'error'\r\n  Running setup.py clean for libvirt-python\r\nFailed to build libvirt-python\r\nInstalling collected packages: libvirt-python\r\n    Running setup.py install for libvirt-python: started\r\n    Running setup.py install for libvirt-python: finished with status 'error'\r\n[+] You should logout and login \r\nINFO: /dev/kvm exists\r\nKVM acceleration can be used\r\nReading package lists...\r\nBuilding dependency tree...\r\nReading state information...\r\nat-spi2-core is already the newest version (2.36.0-2).\r\nauditd is already the newest version (1:2.8.5-2ubuntu6).\r\ncdrkit-doc is already the newest version (9:1.1.11-3.1ubuntu1).\r\ncpu-checker is already the newest version (0.7-1.1).\r\ndconf-gsettings-backend is already the newest version (0.36.0-1).\r\ndconf-service is already the newest version (0.36.0-1).\r\nfontconfig is already the newest version (2.13.1-2ubuntu3).\r\nfontconfig-config is already the newest version (2.13.1-2ubuntu3).\r\nfonts-dejavu-core is already the newest version (2.37-1).\r\ngenisoimage is already the newest version (9:1.1.11-3.1ubuntu1).\r\ngir1.2-appindicator3-0.1 is already the newest version (12.10.1+20.04.20200408.1-0ubuntu1).\r\ngir1.2-atk-1.0 is already the newest version (2.35.1-1ubuntu2).\r\ngir1.2-gdkpixbuf-2.0 is already the newest version (2.40.0+dfsg-3).\r\ngir1.2-pango-1.0 is already the newest version (1.44.7-2ubuntu4).\r\ngir1.2-rest-0.7 is already the newest version (0.8.1-1).\r\ngnome-keyring is already the newest version (3.36.0-1ubuntu1).\r\ngsettings-desktop-schemas is already the newest version (3.36.0-1ubuntu1).\r\ngstreamer1.0-plugins-base is already the newest version (1.16.2-4).\r\ngstreamer1.0-plugins-good is already the newest version (1.16.2-1ubuntu2).\r\ngstreamer1.0-x is already the newest version (1.16.2-4).\r\nhicolor-icon-theme is already the newest version (0.17-2).\r\nhumanity-icon-theme is already the newest version (0.6.15).\r\nibverbs-providers is already the newest version (28.0-1ubuntu1).\r\nlibaa1 is already the newest version (1.4p5-46).\r\nlibaio1 is already the newest version (0.3.112-5).\r\nlibappindicator3-1 is already the newest version (12.10.1+20.04.20200408.1-0ubuntu1).\r\nlibasyncns0 is already the newest version (0.8-6).\r\nlibatk1.0-0 is already the newest version (2.35.1-1ubuntu2).\r\nlibatk1.0-data is already the newest version (2.35.1-1ubuntu2).\r\nlibatspi2.0-0 is already the newest version (2.36.0-2).\r\nlibavahi-client3 is already the newest version (0.7-4ubuntu7).\r\nlibavahi-common-data is already the newest version (0.7-4ubuntu7).\r\nlibavahi-common3 is already the newest version (0.7-4ubuntu7).\r\nlibavc1394-0 is already the newest version (0.5.4-5).\r\nlibbluetooth3 is already the newest version (5.53-0ubuntu3).\r\nlibcaca0 is already the newest version (0.99.beta19-2.1ubuntu1).\r\nlibcacard0 is already the newest version (1:2.6.1-1).\r\nlibcairo-gobject2 is already the newest version (1.16.0-4ubuntu1).\r\nlibcairo2 is already the newest version (1.16.0-4ubuntu1).\r\nlibcdparanoia0 is already the newest version (3.10.2+debian-13).\r\nlibcolord2 is already the newest version (1.4.4-2).\r\nlibcroco3 is already the newest version (0.6.13-1).\r\nlibdatrie1 is already the newest version (0.2.12-3).\r\nlibdbusmenu-glib4 is already the newest version (16.04.1+18.10.20180917-0ubuntu6).\r\nlibdbusmenu-gtk3-4 is already the newest version (16.04.1+18.10.20180917-0ubuntu6).\r\nlibdconf1 is already the newest version (0.36.0-1).\r\nlibdv4 is already the newest version (1.0.0-12).\r\nlibepoxy0 is already the newest version (1.5.4-1).\r\nlibfdt1 is already the newest version (1.5.1-1).\r\nlibflac8 is already the newest version (1.3.3-1build1).\r\nlibfontconfig1 is already the newest version (2.13.1-2ubuntu3).\r\nlibgdk-pixbuf2.0-0 is already the newest version (2.40.0+dfsg-3).\r\nlibgdk-pixbuf2.0-bin is already the newest version (2.40.0+dfsg-3).\r\nlibgdk-pixbuf2.0-common is already the newest version (2.40.0+dfsg-3).\r\nlibgraphite2-3 is already the newest version (1.3.13-11build1).\r\nlibgstreamer-plugins-base1.0-0 is already the newest version (1.16.2-4).\r\nlibgstreamer-plugins-good1.0-0 is already the newest version (1.16.2-1ubuntu2).\r\nlibgstreamer1.0-0 is already the newest version (1.16.2-2).\r\nlibgudev-1.0-0 is already the newest version (1:233-1).\r\nlibharfbuzz0b is already the newest version (2.6.4-1ubuntu4).\r\nlibibverbs1 is already the newest version (28.0-1ubuntu1).\r\nlibiec61883-0 is already the newest version (1.2.0-3).\r\nlibiscsi7 is already the newest version (1.18.0-2).\r\nlibjack-jackd2-0 is already the newest version (1.9.12~dfsg-2ubuntu2).\r\nlibjbig0 is already the newest version (2.1-3.1build1).\r\nlibjpeg8 is already the newest version (8c-2ubuntu8).\r\nlibjson-glib-1.0-0 is already the newest version (1.4.4-2ubuntu2).\r\nlibjson-glib-1.0-common is already the newest version (1.4.4-2ubuntu2).\r\nliblcms2-2 is already the newest version (2.9-4).\r\nlibmp3lame0 is already the newest version (3.100-3).\r\nlibmpg123-0 is already the newest version (1.25.13-1).\r\nlibnl-route-3-200 is already the newest version (3.4.0-1).\r\nlibnspr4 is already the newest version (2:4.25-1).\r\nlibogg0 is already the newest version (1.3.4-0ubuntu1).\r\nlibopus0 is already the newest version (1.3.1-0ubuntu1).\r\nliborc-0.4-0 is already the newest version (1:0.4.31-1).\r\nlibpango-1.0-0 is already the newest version (1.44.7-2ubuntu4).\r\nlibpangocairo-1.0-0 is already the newest version (1.44.7-2ubuntu4).\r\nlibpangoft2-1.0-0 is already the newest version (1.44.7-2ubuntu4).\r\nlibpangoxft-1.0-0 is already the newest version (1.44.7-2ubuntu4).\r\nlibpciaccess0 is already the newest version (0.16-0ubuntu1).\r\nlibpixman-1-0 is already the newest version (0.38.4-0ubuntu1).\r\nlibraw1394-11 is already the newest version (2.1.2-1).\r\nlibrdmacm1 is already the newest version (28.0-1ubuntu1).\r\nlibrest-0.7-0 is already the newest version (0.8.1-1).\r\nlibsamplerate0 is already the newest version (0.1.9-2).\r\nlibshout3 is already the newest version (2.4.3-1).\r\nlibsndfile1 is already the newest version (1.0.28-7).\r\nlibsoup-gnome2.4-1 is already the newest version (2.70.0-1).\r\nlibsoup2.4-1 is already the newest version (2.70.0-1).\r\nlibspeex1 is already the newest version (1.2~rc1.2-1.1ubuntu1).\r\nlibtag1v5 is already the newest version (1.11.1+dfsg.1-0.3ubuntu2).\r\nlibtag1v5-vanilla is already the newest version (1.11.1+dfsg.1-0.3ubuntu2).\r\nlibthai-data is already the newest version (0.1.28-3).\r\nlibthai0 is already the newest version (0.1.28-3).\r\nlibtheora0 is already the newest version (1.1.1+dfsg.1-15ubuntu2).\r\nlibtiff5 is already the newest version (4.1.0+git191117-2build1).\r\nlibtwolame0 is already the newest version (0.4.0-2).\r\nlibusbredirhost1 is already the newest version (0.8.0-1).\r\nlibusbredirparser1 is already the newest version (0.8.0-1).\r\nlibv4l-0 is already the newest version (1.18.0-2build1).\r\nlibv4lconvert0 is already the newest version (1.18.0-2build1).\r\nlibvisual-0.4-0 is already the newest version (0.4.0-17).\r\nlibvorbis0a is already the newest version (1.3.6-2ubuntu1).\r\nlibvorbisenc2 is already the newest version (1.3.6-2ubuntu1).\r\nlibwavpack1 is already the newest version (5.2.0-1).\r\nlibwayland-client0 is already the newest version (1.18.0-1).\r\nlibwayland-cursor0 is already the newest version (1.18.0-1).\r\nlibwayland-server0 is already the newest version (1.18.0-1).\r\nlibxcb-dri2-0 is already the newest version (1.14-2).\r\nlibxcb-dri3-0 is already the newest version (1.14-2).\r\nlibxcb-present0 is already the newest version (1.14-2).\r\nlibxcb-render0 is already the newest version (1.14-2).\r\nlibxcb-shm0 is already the newest version (1.14-2).\r\nlibxcb-sync1 is already the newest version (1.14-2).\r\nlibxcb-xfixes0 is already the newest version (1.14-2).\r\nlibxcomposite1 is already the newest version (1:0.4.5-1).\r\nlibxcursor1 is already the newest version (1:1.2.0-2).\r\nlibxdamage1 is already the newest version (1:1.1.5-2).\r\nlibxfixes3 is already the newest version (1:5.0.3-2).\r\nlibxft2 is already the newest version (2.3.3-0ubuntu1).\r\nlibxi6 is already the newest version (2:1.7.10-0ubuntu1).\r\nlibxinerama1 is already the newest version (2:1.1.4-2).\r\nlibxkbcommon0 is already the newest version (0.10.0-1).\r\nlibxml2-dev is already the newest version (2.9.10+dfsg-5).\r\nlibxml2-utils is already the newest version (2.9.10+dfsg-5).\r\nlibxrandr2 is already the newest version (2:1.5.2-0ubuntu1).\r\nlibxrender1 is already the newest version (1:0.9.10-1).\r\nlibxshmfence1 is already the newest version (1.3-1).\r\nlibxslt1-dev is already the newest version (1.1.34-4).\r\nlibxtst6 is already the newest version (2:1.2.3-1).\r\nlibxv1 is already the newest version (2:1.0.11-1).\r\nlibyajl2 is already the newest version (2.1.0-3).\r\nmsr-tools is already the newest version (1.3-3).\r\npkg-config is already the newest version (0.29.1-0ubuntu4).\r\npython-openssl-doc is already the newest version (19.0.0-1build1).\r\npython3 is already the newest version (3.8.2-0ubuntu2).\r\npython3-cairo is already the newest version (1.16.2-2ubuntu2).\r\npython3-cffi-backend is already the newest version (1.14.0-1build1).\r\npython3-dev is already the newest version (3.8.2-0ubuntu2).\r\npython3-gi is already the newest version (3.36.0-1).\r\npython3-gi-cairo is already the newest version (3.36.0-1).\r\npython3-pkg-resources is already the newest version (45.2.0-1).\r\nradvd is already the newest version (1:2.17-2).\r\nsharutils is already the newest version (1:4.15.2-4build1).\r\nsharutils-doc is already the newest version (1:4.15.2-4build1).\r\nubuntu-mono is already the newest version (19.04-0ubuntu3).\r\nunzip is already the newest version (6.0-25ubuntu1).\r\nx11-common is already the newest version (1:7.7+19ubuntu14).\r\naugeas-doc is already the newest version (1.12.0-1build1).\r\naugeas-lenses is already the newest version (1.12.0-1build1).\r\naugeas-tools is already the newest version (1.12.0-1build1).\r\ngir1.2-govirt-1.0 is already the newest version (0.3.4-3.1).\r\ngir1.2-gtk-vnc-2.0 is already the newest version (1.0.0-1build1).\r\ngir1.2-libosinfo-1.0 is already the newest version (1.7.1-1).\r\ngir1.2-spiceclientglib-2.0 is already the newest version (0.37-2fakesync1).\r\ngir1.2-spiceclientgtk-3.0 is already the newest version (0.37-2fakesync1).\r\ngtk-doc-tools is already the newest version (1.32-4).\r\nifupdown is already the newest version (0.8.35ubuntu1).\r\nindicator-application is already the newest version (12.10.1+19.04.20190308.1-0ubuntu3).\r\nintltool is already the newest version (0.51.0-5ubuntu1).\r\nlibaugeas0 is already the newest version (1.12.0-1build1).\r\nlibgovirt-common is already the newest version (0.3.4-3.1).\r\nlibgovirt-dev is already the newest version (0.3.4-3.1).\r\nlibgovirt2 is already the newest version (0.3.4-3.1).\r\nlibgtk-vnc-2.0-0 is already the newest version (1.0.0-1build1).\r\nlibgtksourceview-3.0-dev is already the newest version (3.24.11-2).\r\nlibgvnc-1.0-0 is already the newest version (1.0.0-1build1).\r\nlibindicator3-7 is already the newest version (16.10.0+18.04.20180321.1-0ubuntu4).\r\nlibnetcf1 is already the newest version (1:0.2.8-1ubuntu4).\r\nlibosinfo-1.0-0 is already the newest version (1.7.1-1).\r\nlibphodav-2.0-0 is already the newest version (2.4-1).\r\nlibphodav-2.0-common is already the newest version (2.4-1).\r\nlibsdl1.2debian is already the newest version (1.2.15+dfsg2-5).\r\nlibspice-client-glib-2.0-8 is already the newest version (0.37-2fakesync1).\r\nlibspice-client-gtk-3.0-5 is already the newest version (0.37-2fakesync1).\r\nlibxenstore3.0 is already the newest version (4.11.3+24-g14b62ab3e5-1ubuntu2).\r\nosinfo-db is already the newest version (0.20200325-1).\r\npm-utils is already the newest version (1.4.1-19).\r\npython-enum34 is already the newest version (1.1.6-2ubuntu1).\r\npython3-pip is already the newest version (20.0.2-5ubuntu1).\r\nspice-client-glib-usb-acl-helper is already the newest version (0.37-2fakesync1).\r\nssh-askpass is already the newest version (1:1.2.4.1-10).\r\nsystemtap is already the newest version (4.2-3).\r\nwodim is already the newest version (9:1.1.11-3.1ubuntu1).\r\nadwaita-icon-theme is already the newest version (3.36.1-2ubuntu0.20.04.2).\r\ndebootstrap is already the newest version (1.0.118ubuntu1.2).\r\ngir1.2-freedesktop is already the newest version (1.64.1-1~ubuntu20.04.1).\r\ngir1.2-gtk-3.0 is already the newest version (3.24.20-0ubuntu1).\r\ngir1.2-secret-1 is already the newest version (0.20.3-0ubuntu1).\r\ngir1.2-vte-2.91 is already the newest version (0.60.3-0ubuntu1~20.04).\r\nglib-networking is already the newest version (2.64.2-1ubuntu0.1).\r\nglib-networking-common is already the newest version (2.64.2-1ubuntu0.1).\r\nglib-networking-services is already the newest version (2.64.2-1ubuntu0.1).\r\ngobject-introspection is already the newest version (1.64.1-1~ubuntu20.04.1).\r\ngtk-update-icon-cache is already the newest version (3.24.20-0ubuntu1).\r\nlibasound2 is already the newest version (1.2.2-2.1ubuntu2).\r\nlibasound2-data is already the newest version (1.2.2-2.1ubuntu2).\r\nlibatk-bridge2.0-0 is already the newest version (2.34.2-0ubuntu2~20.04.1).\r\nlibcups2 is already the newest version (2.3.1-9ubuntu1.1).\r\nlibegl-mesa0 is already the newest version (20.0.8-0ubuntu1~20.04.1).\r\nlibegl1 is already the newest version (1.3.1-1ubuntu0.20.04.1).\r\nlibgbm1 is already the newest version (20.0.8-0ubuntu1~20.04.1).\r\nlibgirepository1.0-dev is already the newest version (1.64.1-1~ubuntu20.04.1).\r\nlibglapi-mesa is already the newest version (20.0.8-0ubuntu1~20.04.1).\r\nlibglvnd0 is already the newest version (1.3.1-1ubuntu0.20.04.1).\r\nlibgtk-3-0 is already the newest version (3.24.20-0ubuntu1).\r\nlibgtk-3-bin is already the newest version (3.24.20-0ubuntu1).\r\nlibgtk-3-common is already the newest version (3.24.20-0ubuntu1).\r\nlibgtk-3-dev is already the newest version (3.24.20-0ubuntu1).\r\nlibjpeg-turbo8 is already the newest version (2.0.3-0ubuntu1.20.04.1).\r\nlibnss3 is already the newest version (2:3.49.1-1ubuntu1.5).\r\nlibpulse-mainloop-glib0 is already the newest version (1:13.99.1-1ubuntu3.6).\r\nlibpulse0 is already the newest version (1:13.99.1-1ubuntu3.6).\r\nlibrados2 is already the newest version (15.2.3-0ubuntu0.20.04.2).\r\nlibrbd1 is already the newest version (15.2.3-0ubuntu0.20.04.2).\r\nlibrsvg2-2 is already the newest version (2.48.7-1ubuntu0.20.04.1).\r\nlibrsvg2-common is already the newest version (2.48.7-1ubuntu0.20.04.1).\r\nlibspice-server1 is already the newest version (0.14.2-4ubuntu3).\r\nlibvte-2.91-0 is already the newest version (0.60.3-0ubuntu1~20.04).\r\nlibvte-2.91-common is already the newest version (0.60.3-0ubuntu1~20.04).\r\nlibx11-xcb1 is already the newest version (2:1.6.9-2ubuntu1.1).\r\nnfs-common is already the newest version (1:1.3.4-2.5ubuntu3.3).\r\nsamba is already the newest version (2:4.11.6+dfsg-0ubuntu1.4).\r\nzfsutils-linux is already the newest version (0.8.3-1ubuntu12.4).\r\nlibwayland-egl1-mesa is already the newest version (20.0.8-0ubuntu1~20.04.1).\r\nlibproxy1v5 is already the newest version (0.4.15-10ubuntu1.1).\r\nYou might want to run 'apt --fix-broken install' to correct these.\r\nThe following packages have unmet dependencies:\r\n gir1.2-libvirt-glib-1.0 : Depends: libvirt-glib-1.0-0 (>= 1.0.0~) but it is not going to be installed\r\n libvirt-daemon : Depends: libvirt-daemon-driver-qemu but it is not going to be installed\r\n                  Recommends: qemu-kvm but it is not going to be installed or\r\n                              qemu (>= 0.9.1) but it is not going to be installed\r\nReading package lists...\r\nBuilding dependency tree...\r\nReading state information...\r\nlibbrlapi-dev is already the newest version (6.0+dfsg-4ubuntu6).\r\nlibpython3-stdlib is already the newest version (3.8.2-0ubuntu2).\r\novmf is already the newest version (0~20191122.bd85bf54-2ubuntu3).\r\npython3-ntlm-auth is already the newest version (1.1.0-1).\r\nYou might want to run 'apt --fix-broken install' to correct these.\r\nThe following packages have unmet dependencies:\r\n gir1.2-libvirt-glib-1.0 : Depends: libvirt-glib-1.0-0 (>= 1.0.0~) but it is not going to be installed\r\n libvirt-daemon : Depends: libvirt-daemon-driver-qemu but it is not going to be installed\r\n                  Recommends: qemu-kvm but it is not going to be installed or\r\n                              qemu (>= 0.9.1) but it is not going to be installed\r\nCollecting requests\r\n  Using cached requests-2.24.0-py2.py3-none-any.whl (61 kB)\r\nCollecting six\r\n  Using cached six-1.15.0-py2.py3-none-any.whl (10 kB)\r\nCollecting urllib3\r\n  Using cached urllib3-1.25.10-py2.py3-none-any.whl (127 kB)\r\nRequirement already up-to-date: ipaddr in /usr/local/lib/python3.8/dist-packages (2.2.0)\r\nCollecting ipaddress\r\n  Using cached ipaddress-1.0.23-py2.py3-none-any.whl (18 kB)\r\nCollecting idna\r\n  Using cached idna-2.10-py2.py3-none-any.whl (58 kB)\r\nRequirement already up-to-date: dbus-python in /usr/lib/python3/dist-packages (1.2.16)\r\nCollecting certifi\r\n  Using cached certifi-2020.6.20-py2.py3-none-any.whl (156 kB)\r\nCollecting lxml\r\n  Using cached lxml-4.5.2-cp38-cp38-manylinux1_x86_64.whl (5.4 MB)\r\nchecking for a BSD-compatible install... /usr/bin/install -c\r\nchecking whether build environment is sane... yes\r\nchecking for a thread-safe mkdir -p... /usr/bin/mkdir -p\r\nchecking for gawk... no\r\nchecking for mawk... mawk\r\nchecking whether make sets $(MAKE)... yes\r\nchecking whether make supports nested variables... yes\r\nchecking build system type... x86_64-pc-linux-gnu\r\nchecking host system type... x86_64-pc-linux-gnu\r\nchecking whether make supports nested variables... (cached) yes\r\nchecking for gcc... gcc\r\nchecking whether the C compiler works... yes\r\nchecking for C compiler default output file name... a.out\r\nchecking for suffix of executables... \r\nchecking whether we are cross compiling... no\r\nchecking for suffix of object files... o\r\nchecking whether we are using the GNU C compiler... yes\r\nchecking whether gcc accepts -g... yes\r\nchecking for gcc option to accept ISO C89... none needed\r\nchecking whether gcc understands -c and -o together... yes\r\nchecking whether make supports the include directive... yes (GNU style)\r\nchecking dependency style of gcc... gcc3\r\nchecking for perl... /usr/bin/perl\r\nchecking how to print strings... printf\r\nchecking for a sed that does not truncate output... /usr/bin/sed\r\nchecking for grep that handles long lines and -e... /usr/bin/grep\r\nchecking for egrep... /usr/bin/grep -E\r\nchecking for fgrep... /usr/bin/grep -F\r\nchecking for ld used by gcc... /usr/bin/ld\r\nchecking if the linker (/usr/bin/ld) is GNU ld... yes\r\nchecking for BSD- or MS-compatible name lister (nm)... /usr/bin/nm -B\r\nchecking the name lister (/usr/bin/nm -B) interface... BSD nm\r\nchecking whether ln -s works... yes\r\nchecking the maximum length of command line arguments... 1572864\r\nchecking how to convert x86_64-pc-linux-gnu file names to x86_64-pc-linux-gnu format... func_convert_file_noop\r\nchecking how to convert x86_64-pc-linux-gnu file names to toolchain format... func_convert_file_noop\r\nchecking for /usr/bin/ld option to reload object files... -r\r\nchecking for objdump... objdump\r\nchecking how to recognize dependent libraries... pass_all\r\nchecking for dlltool... no\r\nchecking how to associate runtime and link libraries... printf %s\\n\r\nchecking for ar... ar\r\nchecking for archiver @FILE support... @\r\nchecking for strip... strip\r\nchecking for ranlib... ranlib\r\nchecking command to parse /usr/bin/nm -B output from gcc object... ok\r\nchecking for sysroot... no\r\nchecking for a working dd... /usr/bin/dd\r\nchecking how to truncate binary pipes... /usr/bin/dd bs=4096 count=1\r\nchecking for mt... mt\r\nchecking if mt is a manifest tool... no\r\nchecking how to run the C preprocessor... gcc -E\r\nchecking for ANSI C header files... yes\r\nchecking for sys/types.h... yes\r\nchecking for sys/stat.h... yes\r\nchecking for stdlib.h... yes\r\nchecking for string.h... yes\r\nchecking for memory.h... yes\r\nchecking for strings.h... yes\r\nchecking for inttypes.h... yes\r\nchecking for stdint.h... yes\r\nchecking for unistd.h... yes\r\nchecking for dlfcn.h... yes\r\nchecking for objdir... .libs\r\nchecking if gcc supports -fno-rtti -fno-exceptions... no\r\nchecking for gcc option to produce PIC... -fPIC -DPIC\r\nchecking if gcc PIC flag -fPIC -DPIC works... yes\r\nchecking if gcc static flag -static works... yes\r\nchecking if gcc supports -c -o file.o... yes\r\nchecking if gcc supports -c -o file.o... (cached) yes\r\nchecking whether the gcc linker (/usr/bin/ld -m elf_x86_64) supports shared libraries... yes\r\nchecking whether -lc should be explicitly linked in... no\r\nchecking dynamic linker characteristics... GNU/Linux ld.so\r\nchecking how to hardcode library paths into programs... immediate\r\nchecking whether stripping libraries is possible... yes\r\nchecking if libtool supports shared libraries... yes\r\nchecking whether to build shared libraries... yes\r\nchecking whether to build static libraries... no\r\nchecking whether C compiler handles -Werror -Wunknown-warning-option... no\r\nchecking whether the C compiler's -Wformat allows NULL strings... yes\r\nchecking whether pragma GCC diagnostic push works... yes\r\nchecking whether the C compiler's -Wlogical-op gives bogus warnings... no\r\nchecking whether -Wno-missing-field-initializers is supported... yes\r\nchecking whether -Wno-missing-field-initializers is needed... no\r\nchecking whether -Wuninitialized is supported... yes\r\nchecking whether C compiler handles -W... yes\r\nchecking whether C compiler handles -Waddress... yes\r\nchecking whether C compiler handles -Waggressive-loop-optimizations... yes\r\nchecking whether C compiler handles -Wall... yes\r\nchecking whether C compiler handles -Warray-bounds... yes\r\nchecking whether C compiler handles -Wattributes... yes\r\nchecking whether C compiler handles -Wbuiltin-macro-redefined... yes\r\nchecking whether C compiler handles -Wcast-align... yes\r\nchecking whether C compiler handles -Wchar-subscripts... yes\r\nchecking whether C compiler handles -Wclobbered... yes\r\nchecking whether C compiler handles -Wcomment... yes\r\nchecking whether C compiler handles -Wcomments... yes\r\nchecking whether C compiler handles -Wcoverage-mismatch... yes\r\nchecking whether C compiler handles -Wcpp... yes\r\nchecking whether C compiler handles -Wdate-time... yes\r\nchecking whether C compiler handles -Wdeprecated-declarations... yes\r\nchecking whether C compiler handles -Wdisabled-optimization... yes\r\nchecking whether C compiler handles -Wdiv-by-zero... yes\r\nchecking whether C compiler handles -Wdouble-promotion... yes\r\nchecking whether C compiler handles -Wempty-body... yes\r\nchecking whether C compiler handles -Wendif-labels... yes\r\nchecking whether C compiler handles -Wextra... yes\r\nchecking whether C compiler handles -Wformat-contains-nul... yes\r\nchecking whether C compiler handles -Wformat-extra-args... yes\r\nchecking whether C compiler handles -Wformat-security... yes\r\nchecking whether C compiler handles -Wformat-y2k... yes\r\nchecking whether C compiler handles -Wformat-zero-length... yes\r\nchecking whether C compiler handles -Wfree-nonheap-object... yes\r\nchecking whether C compiler handles -Wignored-qualifiers... yes\r\nchecking whether C compiler handles -Wimplicit... yes\r\nchecking whether C compiler handles -Wimplicit-function-declaration... yes\r\nchecking whether C compiler handles -Wimplicit-int... yes\r\nchecking whether C compiler handles -Winit-self... yes\r\nchecking whether C compiler handles -Winline... yes\r\nchecking whether C compiler handles -Wint-to-pointer-cast... yes\r\nchecking whether C compiler handles -Winvalid-memory-model... yes\r\nchecking whether C compiler handles -Winvalid-pch... yes\r\nchecking whether C compiler handles -Wjump-misses-init... yes\r\nchecking whether C compiler handles -Wlogical-op... yes\r\nchecking whether C compiler handles -Wmain... yes\r\nchecking whether C compiler handles -Wmaybe-uninitialized... yes\r\nchecking whether C compiler handles -Wmissing-braces... yes\r\nchecking whether C compiler handles -Wmissing-declarations... yes\r\nchecking whether C compiler handles -Wmissing-field-initializers... yes\r\nchecking whether C compiler handles -Wmissing-include-dirs... yes\r\nchecking whether C compiler handles -Wmissing-parameter-type... yes\r\nchecking whether C compiler handles -Wmissing-prototypes... yes\r\nchecking whether C compiler handles -Wmultichar... yes\r\nchecking whether C compiler handles -Wnarrowing... yes\r\nchecking whether C compiler handles -Wnested-externs... yes\r\nchecking whether C compiler handles -Wnonnull... yes\r\nchecking whether C compiler handles -Wold-style-declaration... yes\r\nchecking whether C compiler handles -Wold-style-definition... yes\r\nchecking whether C compiler handles -Wopenmp-simd... yes\r\nchecking whether C compiler handles -Woverflow... yes\r\nchecking whether C compiler handles -Woverride-init... yes\r\nchecking whether C compiler handles -Wpacked-bitfield-compat... yes\r\nchecking whether C compiler handles -Wparentheses... yes\r\nchecking whether C compiler handles -Wpointer-arith... yes\r\nchecking whether C compiler handles -Wpointer-sign... yes\r\nchecking whether C compiler handles -Wpointer-to-int-cast... yes\r\nchecking whether C compiler handles -Wpragmas... yes\r\nchecking whether C compiler handles -Wreturn-local-addr... yes\r\nchecking whether C compiler handles -Wreturn-type... yes\r\nchecking whether C compiler handles -Wsequence-point... yes\r\nchecking whether C compiler handles -Wshadow... yes\r\nchecking whether C compiler handles -Wsizeof-pointer-memaccess... yes\r\nchecking whether C compiler handles -Wstrict-aliasing... yes\r\nchecking whether C compiler handles -Wstrict-prototypes... yes\r\nchecking whether C compiler handles -Wsuggest-attribute=const... yes\r\nchecking whether C compiler handles -Wsuggest-attribute=format... yes\r\nchecking whether C compiler handles -Wsuggest-attribute=noreturn... yes\r\nchecking whether C compiler handles -Wsuggest-attribute=pure... yes\r\nchecking whether C compiler handles -Wswitch... yes\r\nchecking whether C compiler handles -Wsync-nand... yes\r\nchecking whether C compiler handles -Wtrampolines... yes\r\nchecking whether C compiler handles -Wtrigraphs... yes\r\nchecking whether C compiler handles -Wtype-limits... yes\r\nchecking whether C compiler handles -Wuninitialized... yes\r\nchecking whether C compiler handles -Wunknown-pragmas... yes\r\nchecking whether C compiler handles -Wunused... yes\r\nchecking whether C compiler handles -Wunused-but-set-parameter... yes\r\nchecking whether C compiler handles -Wunused-but-set-variable... yes\r\nchecking whether C compiler handles -Wunused-function... yes\r\nchecking whether C compiler handles -Wunused-label... yes\r\nchecking whether C compiler handles -Wunused-local-typedefs... yes\r\nchecking whether C compiler handles -Wunused-parameter... yes\r\nchecking whether C compiler handles -Wunused-result... yes\r\nchecking whether C compiler handles -Wunused-value... yes\r\nchecking whether C compiler handles -Wunused-variable... yes\r\nchecking whether C compiler handles -Wvarargs... yes\r\nchecking whether C compiler handles -Wvariadic-macros... yes\r\nchecking whether C compiler handles -Wvector-operation-performance... yes\r\nchecking whether C compiler handles -Wvolatile-register-var... yes\r\nchecking whether C compiler handles -Wwrite-strings... yes\r\nchecking whether C compiler handles -Wnormalized=nfc... yes\r\nchecking whether C compiler handles -Wno-sign-compare... yes\r\nchecking whether C compiler handles -Wjump-misses-init... (cached) yes\r\nchecking whether C compiler handles -Wno-cast-function-type... yes\r\nchecking whether C compiler handles -Wno-format-nonliteral... yes\r\nchecking whether C compiler handles -Wframe-larger-than=4096... yes\r\nchecking whether C compiler handles -fstack-protector-strong... yes\r\nchecking whether C compiler handles -fexceptions... yes\r\nchecking whether C compiler handles -fasynchronous-unwind-tables... yes\r\nchecking whether C compiler handles -fipa-pure-const... yes\r\nchecking whether C compiler handles -Wno-suggest-attribute=pure... yes\r\nchecking whether C compiler handles -Wno-suggest-attribute=const... yes\r\nchecking for pkg-config... /usr/bin/pkg-config\r\nchecking pkg-config is at least version 0.9.0... yes\r\nchecking for LIBVIRT... no\r\n(Reading database ... 201368 files and directories currently installed.)\r\nPreparing to unpack gir1.2-libvirt-glib-1.0_1.0.0-1_amd64.deb ...\r\nUnpacking gir1.2-libvirt-glib-1.0:amd64 (1.0.0-1) over (1.0.0-1) ...\r\n[+] Cloned Virt Manager repo\r\n[+] Check for previous version of LibGuestFS\r\nOK\r\nHit:1 http://us.archive.ubuntu.com/ubuntu focal InRelease\r\nHit:2 http://us.archive.ubuntu.com/ubuntu focal-updates InRelease\r\nHit:3 http://archive.canonical.com/ubuntu focal InRelease\r\nHit:4 http://security.ubuntu.com/ubuntu focal-security InRelease\r\nHit:5 http://us.archive.ubuntu.com/ubuntu focal-backports InRelease\r\nIgn:6 https://packages.erlang-solutions.com/ubuntu focal InRelease\r\nGet:7 https://packages.erlang-solutions.com/ubuntu focal Release [3,132 B]\r\nGet:8 https://packages.erlang-solutions.com/ubuntu focal Release.gpg [833 B]\r\nGet:9 https://packages.erlang-solutions.com/ubuntu focal/contrib amd64 Packages [100.0 kB]\r\nFetched 104 kB in 1s (72.9 kB/s)\r\nReading package lists...\r\nReading package lists...\r\nBuilding dependency tree...\r\nReading state information...\r\ngenisoimage is already the newest version (9:1.1.11-3.1ubuntu1).\r\nparted is already the newest version (3.3-4).\r\nparted set to manually installed.\r\nYou might want to run 'apt --fix-broken install' to correct these.\r\nThe following packages have unmet dependencies:\r\n erlang-dev : Depends: erlang-base (= 1:23.0.3-1) but it is not going to be installed or\r\n                       erlang-base-hipe (= 1:23.0.3-1)\r\n gir1.2-libvirt-glib-1.0 : Depends: libvirt-glib-1.0-0 (>= 1.0.0~) but it is not going to be installed\r\n jq : Depends: libjq1 (= 1.6-1) but it is not going to be installed\r\n libhivex-dev : Depends: libhivex0 (= 1.3.18-2build2) but it is not going to be installed\r\n libhivex-ocaml : Depends: ocaml-base-nox-4.08.1\r\n                  Depends: libhivex0 (>= 1.3.14) but it is not going to be installed\r\n libvirt-daemon : Depends: libvirt-daemon-driver-qemu but it is not going to be installed\r\n                  Recommends: qemu-kvm but it is not going to be installed or\r\n                              qemu (>= 0.9.1) but it is not going to be installed\r\n ocaml-nox : Depends: ocaml-base-nox but it is not going to be installed\r\n             Depends: ocaml-base-nox-4.08.1\r\n             Depends: libncurses5-dev\r\n             Depends: ocaml-interp (= 4.08.1-8) but it is not going to be installed\r\n             Recommends: ocaml-man but it is not going to be installed\r\nHit:1 http://us.archive.ubuntu.com/ubuntu focal InRelease\r\nHit:2 http://us.archive.ubuntu.com/ubuntu focal-updates InRelease\r\nIgn:3 https://packages.erlang-solutions.com/ubuntu focal InRelease\r\nHit:4 http://security.ubuntu.com/ubuntu focal-security InRelease\r\nHit:5 http://archive.canonical.com/ubuntu focal InRelease\r\nHit:6 http://us.archive.ubuntu.com/ubuntu focal-backports InRelease\r\nHit:7 https://packages.erlang-solutions.com/ubuntu focal Release\r\nReading package lists...\r\nBuilding dependency tree...\r\nReading state information...\r\n2 packages can be upgraded. Run 'apt list --upgradable' to see them.\r\nReading package lists...\r\nBuilding dependency tree...\r\nReading state information...\r\nYou might want to run 'apt --fix-broken install' to correct these.\r\nThe following packages have unmet dependencies:\r\n erlang : Depends: erlang-base but it is not going to be installed or\r\n                   erlang-base-hipe\r\n          Depends: erlang-dev\r\n          Depends: erlang-appmon\r\n          Depends: erlang-asn1\r\n          Depends: erlang-common-test\r\n          Depends: erlang-crypto\r\n          Depends: erlang-debugger\r\n          Depends: erlang-dialyzer\r\n          Depends: erlang-diameter but it is not going to be installed\r\n          Depends: erlang-edoc\r\n          Depends: erlang-eldap but it is not going to be installed\r\n          Depends: erlang-erl-docgen\r\n          Depends: erlang-et\r\n          Depends: erlang-eunit\r\n          Depends: erlang-ftp but it is not going to be installed\r\n          Depends: erlang-gs\r\n          Depends: erlang-ic\r\n          Depends: erlang-inets\r\n          Depends: erlang-inviso\r\n          Depends: erlang-megaco\r\n          Depends: erlang-mnesia\r\n          Depends: erlang-observer\r\n          Depends: erlang-odbc\r\n          Depends: erlang-os-mon\r\n          Depends: erlang-parsetools\r\n          Depends: erlang-percept\r\n          Depends: erlang-pman\r\n          Depends: erlang-public-key\r\n          Depends: erlang-reltool\r\n          Depends: erlang-runtime-tools\r\n          Depends: erlang-snmp\r\n          Depends: erlang-ssh\r\n          Depends: erlang-ssl\r\n          Depends: erlang-syntax-tools\r\n          Depends: erlang-test-server\r\n          Depends: erlang-tftp but it is not going to be installed\r\n          Depends: erlang-toolbar\r\n          Depends: erlang-tools\r\n          Depends: erlang-tv\r\n          Depends: erlang-typer\r\n          Depends: erlang-wx\r\n          Depends: erlang-xmerl\r\n          Recommends: erlang-jinterface but it is not going to be installed\r\n          Recommends: erlang-ic-java but it is not going to be installed\r\n          Recommends: erlang-mode but it is not going to be installed\r\n          Recommends: erlang-src but it is not going to be installed\r\n          Recommends: erlang-examples but it is not going to be installed\r\n gir1.2-libvirt-glib-1.0 : Depends: libvirt-glib-1.0-0 (>= 1.0.0~) but it is not going to be installed\r\n libvirt-daemon : Depends: libvirt-daemon-driver-qemu but it is not going to be installed\r\n                  Recommends: qemu-kvm but it is not going to be installed or\r\n                              qemu (>= 0.9.1) but it is not going to be installed\r\nnet.bridge.bridge-nf-call-ip6tables = 0\r\nnet.bridge.bridge-nf-call-iptables = 0\r\nnet.bridge.bridge-nf-call-arptables = 0\r\nnet.bridge.bridge-nf-call-arptables = 1\r\nnet.bridge.bridge-nf-call-ip6tables = 1\r\nnet.bridge.bridge-nf-call-iptables = 1\r\nnet.core.rmem_max = 16777216\r\nnet.core.wmem_max = 16777216\r\nnet.ipv4.tcp_rmem = 4096 87380 16777216\r\nnet.ipv4.tcp_wmem = 4096 65536 16777216\r\nnet.ipv4.tcp_syncookies = 0\r\nnet.ipv4.tcp_mem = 50576   64768   98152\r\nnet.core.netdev_max_backlog = 2500\r\nvm.swappiness = 1\r\nvm.dirty_ratio = 15\r\n* Applying /etc/sysctl.d/10-console-messages.conf ...\r\nkernel.printk = 4 4 1 7\r\n* Applying /etc/sysctl.d/10-ipv6-privacy.conf ...\r\nnet.ipv6.conf.all.use_tempaddr = 2\r\nnet.ipv6.conf.default.use_tempaddr = 2\r\n* Applying /etc/sysctl.d/10-kernel-hardening.conf ...\r\nkernel.kptr_restrict = 1\r\n* Applying /etc/sysctl.d/10-link-restrictions.conf ...\r\nfs.protected_hardlinks = 1\r\nfs.protected_symlinks = 1\r\n* Applying /etc/sysctl.d/10-magic-sysrq.conf ...\r\nkernel.sysrq = 176\r\n* Applying /etc/sysctl.d/10-network-security.conf ...\r\nnet.ipv4.conf.default.rp_filter = 2\r\nnet.ipv4.conf.all.rp_filter = 2\r\n* Applying /etc/sysctl.d/10-ptrace.conf ...\r\nkernel.yama.ptrace_scope = 1\r\n* Applying /etc/sysctl.d/10-zeropage.conf ...\r\nvm.mmap_min_addr = 65536\r\n* Applying /usr/lib/sysctl.d/30-tracker.conf ...\r\nfs.inotify.max_user_watches = 65536\r\n* Applying /usr/lib/sysctl.d/50-default.conf ...\r\nnet.ipv4.conf.default.promote_secondaries = 1\r\nnet.ipv4.ping_group_range = 0 2147483647\r\nnet.core.default_qdisc = fq_codel\r\nfs.protected_regular = 1\r\nfs.protected_fifos = 1\r\n* Applying /usr/lib/sysctl.d/50-pid-max.conf ...\r\nkernel.pid_max = 4194304\r\n* Applying /etc/sysctl.d/99-sysctl.conf ...\r\nnet.bridge.bridge-nf-call-ip6tables = 0\r\nnet.bridge.bridge-nf-call-iptables = 0\r\nnet.bridge.bridge-nf-call-arptables = 0\r\nnet.bridge.bridge-nf-call-arptables = 1\r\nnet.bridge.bridge-nf-call-ip6tables = 1\r\nnet.bridge.bridge-nf-call-iptables = 1\r\nnet.core.rmem_max = 16777216\r\nnet.core.wmem_max = 16777216\r\nnet.ipv4.tcp_rmem = 4096 87380 16777216\r\nnet.ipv4.tcp_wmem = 4096 65536 16777216\r\nnet.ipv4.tcp_syncookies = 0\r\nnet.ipv4.tcp_mem = 50576   64768   98152\r\nnet.core.netdev_max_backlog = 2500\r\nvm.swappiness = 1\r\nvm.dirty_ratio = 15\r\n* Applying /usr/lib/sysctl.d/protect-links.conf ...\r\nfs.protected_fifos = 1\r\nfs.protected_hardlinks = 1\r\nfs.protected_regular = 2\r\nfs.protected_symlinks = 1\r\n* Applying /etc/sysctl.conf ...\r\nnet.bridge.bridge-nf-call-ip6tables = 0\r\nnet.bridge.bridge-nf-call-iptables = 0\r\nnet.bridge.bridge-nf-call-arptables = 0\r\nnet.bridge.bridge-nf-call-arptables = 1\r\nnet.bridge.bridge-nf-call-ip6tables = 1\r\nnet.bridge.bridge-nf-call-iptables = 1\r\nnet.core.rmem_max = 16777216\r\nnet.core.wmem_max = 16777216\r\nnet.ipv4.tcp_rmem = 4096 87380 16777216\r\nnet.ipv4.tcp_wmem = 4096 65536 16777216\r\nnet.ipv4.tcp_syncookies = 0\r\nnet.ipv4.tcp_mem = 50576   64768   98152\r\nnet.core.netdev_max_backlog = 2500\r\nvm.swappiness = 1\r\nvm.dirty_ratio = 15\r\n[+] Updating GRUB for IOMMU support\r\n[+] Please reboot\r\n\r\n\nComment: Also, ignore the compile failed, it compiled before I ran it again to show the error log.\nComment: I am getting the feeling you are expecting a bit too much here. Please consider this free support as a sacred gift not a resource to be exploited. doomedraven has a job as well as helping everyone with issues, you are close to abusing that.\nComment: Honestly, I am shocked by your comment. I feel horrible that either of you feel that I am abusing your availability, I am just trying to help CAPE by submitting issues that I've discovered during my time with it. I apologize if you feel I was trying to be egregious with it as it is certainly not my intention. I know I've posted a lot and I am under the impression that you probably think I expect you all to fix all these issues and do it quickly. This is not true at all. I understand these things take time and I am truly sorry if I came off that way. I sincerely apologize to you both and I thank you for your time and help.\nComment: we don't have to fix nothing as the issues are not on cape side, what you should to do is `to undestand what are you doing`, not just exec script and then post whole log to us to fix your issue, that is your problem, you need to find the problem by yourself as that __is your system problem__. __Advice__ when doing deployment, read the whole log to see what happens, i did scripted instalation for everything, but if that isn't clean OS or something went wrong, without whole log you won't be able to know is wrong.\r\n\r\nLike virt-manager, isn't part of cape so you can't open issue about that in not related project ;) \r\n\r\nread and love your logs they can help a lot\nComment: @powerade661 Also seeing this issue on Ubuntu 22.04 jammy, I was able to resolve by going to Software & Updates > Updates and setting \"Subscribed to\" to All Updates.\r\n\r\nHope this helps!",
+  "Title: Update supervisor.conf\nBody: Suricata no longer uses /var/lib for rules so the supervisor.conf will not use suricata with rules.\nComment: thanks, just small suggestion, i don't recomment to use supervisor, its better to use systemd",
+  "Title: supervisor.conf Modification to add rules to suricata. Suricata also no longer uses the path /var/lib/rules for signatures.\nBody: [program:suricata]\r\ncommand=bash -c \"mkdir /var/run/suricata; chown cuckoo:cuckoo /var/run/suricata; LD_LIBRARY_PATH=/usr/local/lib /usr/bin/suricata -c /etc/suricata/suricata.yaml -s /etc/suricata/rules --unix-socket -k none --user cuckoo --group cuckoo\"\r\nuser=root\r\nautostart=true\r\nautorestart=true\r\nstopasgroup=true\r\nstderr_logfile=/var/log/supervisor/suricata.err.log\r\nstdout_logfile=/var/log/supervisor/suricata.out.log\r\n",
+  "Title: Caught an exception when submitting rar file with rar package or detect automatically.\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [*] I am running the latest version\r\n- [*] I checked the documentation and found no answer\r\n- [*] I checked to make sure that this issue has not already been filed\r\n- [*] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nIt unrars the rar file and submits the executable for analysis.\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\n![image](https://user-images.githubusercontent.com/10760510/93401896-f762c300-f848-11ea-83e8-97cbbf9be6ed.png)\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Submit any .rar file\r\n2. Choose the detect automatically or rar package\r\n3. Hit submit\r\n4. Receive error\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | commit 63cae45ff50478dcd837a94e6229d7881600328e\r\n| OS version       | Ubuntu 20.04.1 LTS\r\n| Python Version | Python 3.8.2\r\n\r\n## Failure Logs\r\n\r\n2020-09-16 19:43:41,674 [root] INFO: Date set to: 20200916T23:15:39, timeout set to: 200\r\n2020-09-16 23:15:39,109 [root] DEBUG: Starting analyzer from: C:\\tmppkgr0n4k\r\n2020-09-16 23:15:39,109 [root] DEBUG: Storing results at: C:\\torfvDKD\r\n2020-09-16 23:15:39,109 [root] DEBUG: Pipe server name: \\\\.\\PIPE\\zBZSHzl\r\n2020-09-16 23:15:39,109 [root] DEBUG: Python path: C:\\Users\\[redacted]\\AppData\\Local\\Programs\\Python\\Python37-32\r\n2020-09-16 23:15:39,109 [root] INFO: Analysis package \"rar\" has been specified.\r\n2020-09-16 23:15:39,109 [root] DEBUG: Trying to import analysis package \"rar\"...\r\n2020-09-16 23:15:39,125 [root] DEBUG: Imported analysis package \"rar\".\r\n2020-09-16 23:15:39,125 [root] DEBUG: Trying to initialize analysis package \"rar\"...\r\n2020-09-16 23:15:39,140 [root] DEBUG: Initialized analysis package \"rar\".\r\n2020-09-16 23:15:39,140 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.browser\"...\r\n2020-09-16 23:15:39,140 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.browser\".\r\n2020-09-16 23:15:39,140 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.curtain\"...\r\n2020-09-16 23:15:39,156 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.curtain\".\r\n2020-09-16 23:15:39,156 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.digisig\"...\r\n2020-09-16 23:15:39,171 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.digisig\".\r\n2020-09-16 23:15:39,171 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.disguise\"...\r\n2020-09-16 23:15:39,187 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.disguise\".\r\n2020-09-16 23:15:39,187 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.human\"...\r\n2020-09-16 23:15:39,203 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.human\".\r\n2020-09-16 23:15:39,203 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.procmon\"...\r\n2020-09-16 23:15:39,218 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.procmon\".\r\n2020-09-16 23:15:39,218 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.screenshots\"...\r\n2020-09-16 23:15:39,218 [modules.auxiliary.screenshots] DEBUG: Importing 'time'\r\n2020-09-16 23:15:39,218 [modules.auxiliary.screenshots] DEBUG: Importing 'StringIO'\r\n2020-09-16 23:15:39,218 [modules.auxiliary.screenshots] DEBUG: Importing 'Thread'\r\n2020-09-16 23:15:39,218 [modules.auxiliary.screenshots] DEBUG: Importing 'Auxiliary'\r\n2020-09-16 23:15:39,218 [modules.auxiliary.screenshots] DEBUG: Importing 'NetlogFile'\r\n2020-09-16 23:15:39,218 [modules.auxiliary.screenshots] DEBUG: Importing 'Screenshot'\r\n2020-09-16 23:15:39,218 [lib.api.screenshot] DEBUG: Importing 'math'\r\n2020-09-16 23:15:39,218 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageChops'\r\n2020-09-16 23:15:39,328 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageGrab'\r\n2020-09-16 23:15:39,328 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageDraw'\r\n2020-09-16 23:15:39,343 [modules.auxiliary.screenshots] DEBUG: Imports OK\r\n2020-09-16 23:15:39,343 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.screenshots\".\r\n2020-09-16 23:15:39,343 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.sysmon\"...\r\n2020-09-16 23:15:39,343 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.sysmon\".\r\n2020-09-16 23:15:39,343 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.usage\"...\r\n2020-09-16 23:15:39,343 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.usage\".\r\n2020-09-16 23:15:39,343 [root] DEBUG: Trying to initialize auxiliary module \"Browser\"...\r\n2020-09-16 23:15:39,343 [root] DEBUG: Initialized auxiliary module \"Browser\".\r\n2020-09-16 23:15:39,343 [root] DEBUG: Trying to start auxiliary module \"Browser\"...\r\n2020-09-16 23:15:39,343 [root] DEBUG: Started auxiliary module Browser\r\n2020-09-16 23:15:39,343 [root] DEBUG: Trying to initialize auxiliary module \"Curtain\"...\r\n2020-09-16 23:15:39,343 [root] DEBUG: Initialized auxiliary module \"Curtain\".\r\n2020-09-16 23:15:39,343 [root] DEBUG: Trying to start auxiliary module \"Curtain\"...\r\n2020-09-16 23:15:39,359 [root] DEBUG: Started auxiliary module Curtain\r\n2020-09-16 23:15:39,359 [root] DEBUG: Trying to initialize auxiliary module \"DigiSig\"...\r\n2020-09-16 23:15:39,359 [root] DEBUG: Initialized auxiliary module \"DigiSig\".\r\n2020-09-16 23:15:39,359 [root] DEBUG: Trying to start auxiliary module \"DigiSig\"...\r\n2020-09-16 23:15:39,359 [modules.auxiliary.digisig] DEBUG: Checking for a digital signature.\r\n2020-09-16 23:15:40,062 [modules.auxiliary.digisig] DEBUG: File format not recognized.\r\n2020-09-16 23:15:40,078 [modules.auxiliary.digisig] INFO: Uploading signature results to aux/DigiSig.json\r\n2020-09-16 23:15:40,078 [root] DEBUG: Started auxiliary module DigiSig\r\n2020-09-16 23:15:40,078 [root] DEBUG: Trying to initialize auxiliary module \"Disguise\"...\r\n2020-09-16 23:15:40,078 [root] DEBUG: Initialized auxiliary module \"Disguise\".\r\n2020-09-16 23:15:40,078 [root] DEBUG: Trying to start auxiliary module \"Disguise\"...\r\n2020-09-16 23:15:40,109 [modules.auxiliary.disguise] INFO: Disguising GUID to 60843985-598a-4b71-a983-6d7b9f46ec3d\r\n2020-09-16 23:15:40,109 [root] DEBUG: Started auxiliary module Disguise\r\n2020-09-16 23:15:40,109 [root] DEBUG: Trying to initialize auxiliary module \"Human\"...\r\n2020-09-16 23:15:40,109 [root] DEBUG: Initialized auxiliary module \"Human\".\r\n2020-09-16 23:15:40,109 [root] DEBUG: Trying to start auxiliary module \"Human\"...\r\n2020-09-16 23:15:40,156 [root] DEBUG: Started auxiliary module Human\r\n2020-09-16 23:15:40,156 [root] DEBUG: Trying to initialize auxiliary module \"Procmon\"...\r\n2020-09-16 23:15:40,156 [root] DEBUG: Initialized auxiliary module \"Procmon\".\r\n2020-09-16 23:15:40,156 [root] DEBUG: Trying to start auxiliary module \"Procmon\"...\r\n2020-09-16 23:15:40,171 [root] DEBUG: Started auxiliary module Procmon\r\n2020-09-16 23:15:40,171 [root] DEBUG: Trying to initialize auxiliary module \"Screenshots\"...\r\n2020-09-16 23:15:40,171 [root] DEBUG: Initialized auxiliary module \"Screenshots\".\r\n2020-09-16 23:15:40,171 [root] DEBUG: Trying to start auxiliary module \"Screenshots\"...\r\n2020-09-16 23:15:40,187 [root] DEBUG: Started auxiliary module Screenshots\r\n2020-09-16 23:15:40,187 [root] DEBUG: Trying to initialize auxiliary module \"Sysmon\"...\r\n2020-09-16 23:15:40,187 [root] DEBUG: Initialized auxiliary module \"Sysmon\".\r\n2020-09-16 23:15:40,187 [root] DEBUG: Trying to start auxiliary module \"Sysmon\"...\r\n2020-09-16 23:15:40,187 [root] DEBUG: Started auxiliary module Sysmon\r\n2020-09-16 23:15:40,187 [root] DEBUG: Trying to initialize auxiliary module \"Usage\"...\r\n2020-09-16 23:15:40,187 [root] DEBUG: Initialized auxiliary module \"Usage\".\r\n2020-09-16 23:15:40,187 [root] DEBUG: Trying to start auxiliary module \"Usage\"...\r\n2020-09-16 23:15:40,187 [root] DEBUG: Started auxiliary module Usage\r\n2020-09-16 23:15:40,187 [root] INFO: Analyzer: Package modules.packages.rar does not specify a DLL option\r\n2020-09-16 23:15:40,187 [root] INFO: Analyzer: Package modules.packages.rar does not specify a DLL_64 option\r\n2020-09-16 23:15:40,187 [root] INFO: Analyzer: Package modules.packages.rar does not specify a loader option\r\n2020-09-16 23:15:40,187 [root] INFO: Analyzer: Package modules.packages.rar does not specify a loader_64 option\r\n2020-09-16 23:15:40,218 [root] INFO: You probably submitted the job with wrong package\r\n2020-09-16 23:15:40,218 [root] WARNING: Folder at path \"C:\\torfvDKD\\debugger\" does not exist, skip.\r\n2020-09-16 23:15:40,218 [root] INFO: Analysis completed.\r\n\nComment: install dependencies in vm if you want to use it, but we prefer to leave it to be handled by `sflock`, to keep track of archive -> file inside + rar package doesn't know how to exec things, as that was done for rar/zip exploits not to submit files\nComment: Sflock doesn't seem to be extracting the rar file is what I'm saying. \nComment: it does, did you install all sflock dependencies?, script does that but withoout logs who knows, so check the readme of sflock and ensure that all dependencies are installed correctly\nComment: Help me understand this, does it extract the zip on the guest or the host?\nComment: Where would sflock logs be? \nComment: Host, we dont like to extract stuff in vm, there no log you can try against\nyour file, see how we do it in demux.py\n\nEl jue., 17 sept. 2020 14:21, powerade661 <notifications@github.com>\nescribi\u00f3:\n\n> Where would sflock logs be?\n>\n> \u2014\n> You are receiving this because you modified the open/close state.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/274#issuecomment-694193667>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH32FIZWIB2FQTL644ADSGH5L3ANCNFSM4RPRTKSA>\n> .\n>\n\nComment: So when I run demux.py, I get the following error \r\n\r\n![image](https://user-images.githubusercontent.com/10760510/93473087-329dda00-f8bb-11ea-81ea-a3eca0e5616e.png)\r\n\nComment: I told see, not exec, it cant ve exec as standalone\n\n\nEl jue., 17 sept. 2020 14:56, powerade661 <notifications@github.com>\nescribi\u00f3:\n\n> So when I run demux.py, I get the following error\n>\n> [image: image]\n> <https://user-images.githubusercontent.com/10760510/93473087-329dda00-f8bb-11ea-81ea-a3eca0e5616e.png>\n>\n> \u2014\n> You are receiving this because you modified the open/close state.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/274#issuecomment-694212192>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3ZSR3J443CN35I62JLSGIBOZANCNFSM4RPRTKSA>\n> .\n>\n\nComment: So how do I test this? I just tested with a password protected zip and it failed immediately. \nComment: reading code!\r\n\r\n```\r\nfrom sflock import unpack\r\ntry:\r\n   unpacked = unpack(filename, password=password)\r\nexcept UnpackException:\r\n   unpacked = unpack(filename)\r\nunpacked.children\r\n```\nComment: So as long as it's not password protected, it works... Odd.\nComment: I guess I could try reinstalling sflock? How would I go about doing this? \nComment: did you read the documentation of cape and sflock? https://capev2.readthedocs.io/en/latest/installation/upgrade.html?highlight=sflock#python-library-upgrades + https://github.com/doomedraven/sflock\nComment: I think my installation screwed up due to the box falling asleep during install of both cape and KVM. I'm going to try and install it again, my other sandbox that's entirely VBox works fine so I think it's just that it didn't install or have the proper permissions, either way I think this is the best route.\nComment: Thank you for the help and for the script. It will save me a lot of time. ",
+  "Title: If I'm using the kvm-qemu.sh do I need to do further patching? Currently rebuilding CAPE. [Question]\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\nTitle says it all, if I have installed QEMU with the script developed by D00m3drav3n, do I need to patch anything besides the SATA to IDE within virt-manager? The guide says antivm, does this apply to me if I used the script? \r\n\r\n**From the blogpost**\r\n\r\n![image](https://user-images.githubusercontent.com/10760510/93149041-f3089f80-f6ba-11ea-9eab-8ca2d94ae291.png)\r\n\r\n\r\nThank you for your help. \r\n\r\n\nComment: You need to patch vm definition aka vm xml file via virt-manager or virsh\nedit X\n\nEl mar., 15 sept. 2020 1:50, powerade661 <notifications@github.com>\nescribi\u00f3:\n\n> This is opensource and you getting *free* support so be friendly!\n>\n> Title says it all, if I have installed QEMU with the script, do I need to\n> patch anything besides the SATA to IDE within virt-manager? The guide says\n> antivm, does this apply to me if I used the script?\n>\n> *From the blogpost*\n>\n> [image: image]\n> <https://user-images.githubusercontent.com/10760510/93149041-f3089f80-f6ba-11ea-9eab-8ca2d94ae291.png>\n>\n> Thank you for your help.\n>\n> \u2014\n> You are receiving this because you are subscribed to this thread.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/273>, or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH324OKU7GCTPCT2USQDSF2T4JANCNFSM4RMHNRKQ>\n> .\n>\n\nComment: Alright, so I followed the guide, but I am getting the following from Pafish. Any ideas? :(\r\n\r\n**Current CPU configuration**\r\n\r\n![image](https://user-images.githubusercontent.com/10760510/93264341-98c81700-f76c-11ea-899a-93d85151276b.png)\r\n\r\n**From the blogspot**\r\n\r\n![image](https://user-images.githubusercontent.com/10760510/93264386-a8476000-f76c-11ea-84e9-6589a08bcde6.png)\r\n\r\n**Alert from pafish**\r\n\r\n![image](https://user-images.githubusercontent.com/10760510/93263560-8a2d3000-f76b-11ea-9170-6f280251e8f0.png)\r\n\r\n\r\n\nComment: First detection is that you have something bad, second is ok and bypassed\nin real life\n\nEl mar., 15 sept. 2020 23:02, powerade661 <notifications@github.com>\nescribi\u00f3:\n\n> Alright, so I followed the guide, but I am getting the following from\n> Pafish. Any ideas? :(\n>\n> *Current CPU configuration*\n> [image: image]\n> <https://user-images.githubusercontent.com/10760510/93264341-98c81700-f76c-11ea-899a-93d85151276b.png>\n>\n> *From the blogspot*\n>\n> [image: image]\n> <https://user-images.githubusercontent.com/10760510/93264386-a8476000-f76c-11ea-84e9-6589a08bcde6.png>\n>\n> *Alert from pafish*\n> [image: image]\n> <https://user-images.githubusercontent.com/10760510/93263560-8a2d3000-f76b-11ea-9170-6f280251e8f0.png>\n>\n> \u2014\n> You are receiving this because you commented.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/273#issuecomment-692977560>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH333LXWRV6KWDC4Z6NLSF7I7TANCNFSM4RMHNRKQ>\n> .\n>\n\nComment: Anyway to bypass or do I need to try and rebuild again? \nComment: You dont need to rebuild, just edit vm xml\n\nEl mar., 15 sept. 2020 23:57, powerade661 <notifications@github.com>\nescribi\u00f3:\n\n> Anyway to bypass or do I need to try and rebuild again?\n>\n> \u2014\n> You are receiving this because you commented.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/273#issuecomment-693001223>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH35GUT47UJLYBVM3QNDSF7PLVANCNFSM4RMHNRKQ>\n> .\n>\n\nComment: Hi powerade661, try running (or re-processing) Pafish with the rdtsc evasion sig I just pushed:\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/commit/47705d52e5e7c2f9c23b28e5c9b21b38ee1eeed3\r\n\r\nLet me know if that works\nComment: Hi, Kevin I will run this and get back with you. This looks like it sets the zero flag for the VM_exit instruction only if I'm reading this right? It does not mitigate the rdtsc cpu timestamp counters? That's the issue I am having and I'm not really sure where to edit it to evade it. I followed the guide to the letter, unchecked copy host config, specified my own CPU and it's still not working, I read somewhere that +rdtscp is a switch that one can use to possibly turn it off, but I'm not that we'll versed in evasion for Qemu, only VirtualBox which is what I built it with to begin with. \nComment: did you follow https://www.doomedraven.com/2016/#modifying-kvm-qemu-kvm-settings-for-malware-analysis ?\nComment: Yep. That's what has me puzzled, there isn't anything about that in there, only editing your MAC address, modifying the CPU to erase the cpuid bit and changing the bios(all which work great) but couldn't find anything about rdtsc cpu timestamp counters. Unless I'm missing something? \nComment: well i don't use nothing else, and uniq detection is rtdsc vm-exit, the first one is defeated, so idk what is wrong on your side sorry\nComment: So I have a theory, I'm not sure if this could be causing it? My VM actually froze and I had to restart it and reset it. Could that be throwing things off? If I provide my entire XML file would you be able to see maybe what could be wrong, maybe I missed something?\nComment: shouldn't, as that is more low leven than just running vm, in your xml file you just need OS, bios and cpu/kvm=off, nothing else from extras\nComment: Could it be the paravirtualization that I'm using? Minimal\nComment: so im correct, you are on vbox not kvm?\nComment: I am running vbox and inside of that KVM(your script)\nComment: well thats is your problem i guess, we don't use vbox at all, soo sorry can't help here\nComment: I fixed it. \r\n\r\nI executed the following on my VM for anyone who is using vbox.\r\n\r\nFind the path to vboxmanage in your virtualbox or oracle folder.\r\n\r\nThen execute the following commands\r\n\r\nvboxmanage setextradata \"VM NAME HERE\"  VBoxInternal/TM/TSCMode RealTSCOffset\r\nvboxmanage setextradata \"VM NAME HERE\"  VBoxInternal/CPUM/SSE4.1 1\r\nvboxmanage setextradata \"VM NAME HERE\"  VBoxInternal/CPUM/SSE4.2 1\nComment: Hi powerade661 - yes that Pafish sig is just for Pafish when you have a hypervisor that is detected by rdtsc.\r\n\r\nIf you have achieved no detection within a vbox vm nested in a kvm vm, then I am slightly amazed... but still horrified at the setup! We definitely don't recommend nested vms but glad you got it working.\nComment: There is also fake-rdtsc option in the debugger but that's another story...\nComment: Here is the evidence of that. \r\n\r\nThank you all again for the help!\r\n\r\n**NOTE: this is not running the CAPE agent**\r\n\r\n![image](https://user-images.githubusercontent.com/10760510/93338626-2dc02400-f7f0-11ea-9343-428a6735f24a.png)\r\n\r\n\r\n\nComment: Aha so the latter one is still detected? This is the one targeted by the sig\nComment: And after waiting, here is my final result, again without the CAPE agent\r\n\r\n![image](https://user-images.githubusercontent.com/10760510/93339866-b3909f00-f7f1-11ea-8d6d-c0bd708a147e.png)\r\n\nComment: I will be interested to see if you swat that final red with capemon\nComment: I have no doubt! Then CAPE will be unstoppable even for VBox users. Happy to write a batch script for people to run for their VM if need be, but this definitely works. \nComment: So it still didn't remove the final red unfortunately. \r\n![image](https://user-images.githubusercontent.com/10760510/93345457-74198100-f7f8-11ea-8e65-a897476858b4.png)\r\n\r\n\nComment: yep nothing will remove it\nComment: But you said it was bypassed, right doomed? I wonder if I provide it the fake rtdtsc if it bypass it. \nComment: `rtdst` but not `rtdst vm exit`, that is different thing\nComment: Oh I just realized I never installed pywintrace and only the agent, let me run it again and get back to you.\nComment: just in case https://www.qemu.org/2019/11/15/micro-optimizing-kvm-vmexits/\nComment: I have just experimented with tracing the entire execution of pafish in the debugger whilst using fake-rdtsc - the current hard-coded time delta is too big for pafish (I set it when experimenting with Guloader) so I've made the delta configurable. It's then possible to trace the entire execution silently and passing all checks. I'll publish a new monitor with configurable delta (e.g. fake-rdtsc=5000 or whatever) soon so watch this space!\nComment: Will do, thanks Kevin!",
+  "Title: Move license to root project folder\nBody: this makes it easier to find the license, github displays the license type info \r\n\r\n- remove old cuckoo docs meta files \r\nCAPE had versions in root project dir\nComment: thanks",
+  "Title: Fix full process memory chunk download\nBody: ",
+  "Title: Fix typo\nBody: ",
+  "Title: Allow the ability to restart the VM when persistence is detected. [Possible Feature]\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n**Background**\r\n\r\nMalware will often times write itself to the registry and not make a call-out to the c2 server until the system is rebooted. It would be nice to be able to reboot the VM and still have analysis performed again when the system is back up. \nComment: You can backport that from upstream cuckoo and make pull request with that\nComment: I have never looked at Cuckoo's solution to this but the problem is in monitoring the process(es) after reboot. The way monitoring works currently is to inject the monitor into the original process, and then catch any child processes/injections via api hooks and ensure the monitor is injected into these processes before these apis complete. How we would do this with a process started by any number of autostart mechanism on reboot is a mystery to me... \r\n\r\n...but it sounds like a lot of work one way or another. As doomed said: happy to accept pull requests but otherwise this feature idea will have to remain just that I'm afraid.\nComment: i am also seeking to use/implement a similar feature and would like to know whether there is any progress made towards this possible feature? otherwise, is it possible to provide certain tips on how to implement such a feature?\nComment: The problem is described above. Monitoring works by injecting the monitor into all malware processes. How to catch them automatically at reboot?\r\n\r\nI know the scope of potential persistence mechanisms is vast, many probably lie unknown currently. To have a way of picking out the bad processes at boot sounds like the pot of gold at the end of the rainbow.",
+  "Title: All analyses stuck in \"pending\" and never run\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nFiles are submitted to VMs and results are processed\r\n\r\n# Current Behavior\r\n\r\nAll files submitted create tasks that are \"pending\" forever\r\n\r\n# Failure Information (for bugs)\r\n\r\nI've recently upgraded from CapeV1 to CapeV2 and haven't been able to get analyses to process properly. All files I submit end up in \"pending\" status forever. I am able to manually query `select * from tasks;` in postgresql and see the tasks are present, but they never move into \"running\" status.\r\n\r\nAll services: cape-rooter, cape-processor, cape, cape-web, postgresql, mongod are running and produce no errors. I'm currently running cape + cape-processor with the --debug flags, but see no processing happening in logs when I submit a file other than the web API `\"POST /submit/ HTTP/1.1\" 200 3309`\r\n\r\nSome results from the API:\r\n\r\n/api/machines/list\r\n```\r\n{\r\n    \"data\": [\r\n        {\r\n            \"id\": 7,\r\n            \"name\": \"cape001\",\r\n            \"label\": \"cape001\",\r\n            \"ip\": \"192.168.123.10\",\r\n            \"platform\": \"windows\",\r\n            \"interface\": \"virbr123\",\r\n            \"snapshot\": \"cape001-snap01\",\r\n            \"locked\": false,\r\n            \"locked_changed_on\": null,\r\n            \"status\": \"poweroff\",\r\n            \"status_changed_on\": \"2020-09-11 17:57:09\",\r\n            \"resultserver_ip\": \"192.168.123.1\",\r\n            \"resultserver_port\": \"2042\",\r\n            \"tags\": []\r\n        }\r\n    ],\r\n    \"error\": false\r\n}\r\n```\r\n\r\n/api/cuckoo/status\r\n```\r\n{\r\n    \"error\": false,\r\n    \"data\": {\r\n        \"version\": \"2.1-CAPE\",\r\n        \"hostname\": \"capev2\",\r\n        \"machines\": {\r\n            \"total\": 1,\r\n            \"available\": 1\r\n        },\r\n        \"tasks\": {\r\n            \"total\": 4,\r\n            \"pending\": 4,\r\n            \"running\": 0,\r\n            \"completed\": 0,\r\n            \"reported\": 0\r\n        }\r\n    }\r\n}\r\n```\r\n\r\nI'm starting to go through some code, but if you have any ideas for how I can troubleshoot this I would be very appreciative. \r\n\r\nCheers,\r\nPieter\r\n\nComment: Hello, can you post output?\npython3 cuckoo.py - d\n\nEl vie., 11 sept. 2020 20:18, Pieter Bork <notifications@github.com>\nescribi\u00f3:\n\n> This is opensource and you getting *free* support so be friendly!\n> Prerequisites\n>\n> Please answer the following questions for yourself before submitting an\n> issue.\n>\n>    - I am running the latest version\n>    - I checked the documentation and found no answer\n>    - I checked to make sure that this issue has not already been filed\n>    - I'm reporting the issue to the correct repository (for\n>    multi-repository projects)\n>\n> Expected Behavior\n>\n> Files are submitted to VMs and results are processed\n> Current Behavior\n>\n> All files submitted create tasks that are \"pending\" forever\n> Failure Information (for bugs)\n>\n> I've recently upgraded from CapeV1 to CapeV2 and haven't been able to get\n> analyses to process properly. All files I submit end up in \"pending\" status\n> forever. I am able to manually query select * from tasks; in postgresql\n> and see the tasks are present, but they never move into \"running\" status.\n>\n> All services: cape-rooter, cape-processor, cape, cape-web, postgresql,\n> mongod are running and produce no errors. I'm currently running cape +\n> cape-processor with the --debug flags, but see no processing happening in\n> logs when I submit a file other than the web API \"POST /submit/ HTTP/1.1\"\n> 200 3309\n>\n> Some results from the API:\n>\n> /api/machines/list\n>\n> {\n>     \"data\": [\n>         {\n>             \"id\": 7,\n>             \"name\": \"cape001\",\n>             \"label\": \"cape001\",\n>             \"ip\": \"192.168.123.10\",\n>             \"platform\": \"windows\",\n>             \"interface\": \"virbr123\",\n>             \"snapshot\": \"cape001-snap01\",\n>             \"locked\": false,\n>             \"locked_changed_on\": null,\n>             \"status\": \"poweroff\",\n>             \"status_changed_on\": \"2020-09-11 17:57:09\",\n>             \"resultserver_ip\": \"192.168.123.1\",\n>             \"resultserver_port\": \"2042\",\n>             \"tags\": []\n>         }\n>     ],\n>     \"error\": false\n> }\n>\n> /api/cuckoo/status\n>\n> {\n>     \"error\": false,\n>     \"data\": {\n>         \"version\": \"2.1-CAPE\",\n>         \"hostname\": \"capev2\",\n>         \"machines\": {\n>             \"total\": 1,\n>             \"available\": 1\n>         },\n>         \"tasks\": {\n>             \"total\": 4,\n>             \"pending\": 4,\n>             \"running\": 0,\n>             \"completed\": 0,\n>             \"reported\": 0\n>         }\n>     }\n> }\n>\n> I'm starting to go through some code, but if you have any ideas for how I\n> can troubleshoot this I would be very appreciative.\n>\n> Cheers,\n> Pieter\n>\n> \u2014\n> You are receiving this because you are subscribed to this thread.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/268>, or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH32VH3F6672PJNFHLN3SFJSWVANCNFSM4RIBMVYQ>\n> .\n>\n\nComment: Here is the output from `python3 cuckoo.py -d`. Nothing else gets logged even after submitting new files.\r\n\r\n```\r\n\u001b[31m\r\n  .-----------------.\r\n  | Cuckoo Sandbox? |\r\n  |     OH NOES!    |\\  '-.__.-'\r\n  '-----------------' \\  /oo |--.--,--,--.\r\n                         \\_.-'._i__i__i_.'\r\n                               \"\"\"\"\"\"\"\"\"\u001b[0m\r\n\r\n Cuckoo Sandbox \u001b[33m2.1-CAPE\u001b[0m\r\n www.cuckoosandbox.org\r\n Copyright (c) 2010-2015\r\n\r\n CAPE: Config and Payload Extraction\r\n github.com/kevoreilly/CAPEv2\r\n\r\n2020-09-11 19:03:11,254 [root] DEBUG: Importing modules...\r\n2020-09-11 19:03:11,277 [volatility.framework.interfaces.layers] DEBUG: Imported python-magic, autodetecting compressed files based on content\r\n2020-09-11 19:03:11,824 [root] DEBUG: Imported \"auxiliary\" modules:\r\n2020-09-11 19:03:11,824 [root] DEBUG: \t `-- Sniffer\r\n2020-09-11 19:03:11,825 [root] DEBUG: Imported \"processing\" modules:\r\n2020-09-11 19:03:11,825 [root] DEBUG: \t |-- CAPE\r\n2020-09-11 19:03:11,825 [root] DEBUG: \t |-- AnalysisInfo\r\n2020-09-11 19:03:11,825 [root] DEBUG: \t |-- BehaviorAnalysis\r\n2020-09-11 19:03:11,825 [root] DEBUG: \t |-- Curtain\r\n2020-09-11 19:03:11,825 [root] DEBUG: \t |-- Debug\r\n2020-09-11 19:03:11,825 [root] DEBUG: \t |-- Decompression\r\n2020-09-11 19:03:11,825 [root] DEBUG: \t |-- Deduplicate\r\n2020-09-11 19:03:11,825 [root] DEBUG: \t |-- Dropped\r\n2020-09-11 19:03:11,825 [root] DEBUG: \t |-- MMBot\r\n2020-09-11 19:03:11,825 [root] DEBUG: \t |-- Memory\r\n2020-09-11 19:03:11,826 [root] DEBUG: \t |-- NetworkAnalysis\r\n2020-09-11 19:03:11,826 [root] DEBUG: \t |-- ProcDump\r\n2020-09-11 19:03:11,826 [root] DEBUG: \t |-- ProcessMemory\r\n2020-09-11 19:03:11,826 [root] DEBUG: \t |-- Procmon\r\n2020-09-11 19:03:11,826 [root] DEBUG: \t |-- Static\r\n2020-09-11 19:03:11,826 [root] DEBUG: \t |-- Strings\r\n2020-09-11 19:03:11,826 [root] DEBUG: \t |-- Suricata\r\n2020-09-11 19:03:11,826 [root] DEBUG: \t |-- Sysmon\r\n2020-09-11 19:03:11,826 [root] DEBUG: \t |-- TargetInfo\r\n2020-09-11 19:03:11,826 [root] DEBUG: \t |-- TrID\r\n2020-09-11 19:03:11,826 [root] DEBUG: \t |-- Usage\r\n2020-09-11 19:03:11,826 [root] DEBUG: \t `-- VirusTotal\r\n2020-09-11 19:03:11,826 [root] DEBUG: Imported \"signatures\" modules:\r\n2020-09-11 19:03:11,826 [root] DEBUG: \t |-- CAPEDetectedThreat\r\n2020-09-11 19:03:11,826 [root] DEBUG: \t |-- CAPE_Compression\r\n2020-09-11 19:03:11,826 [root] DEBUG: \t |-- CAPE_Decryption\r\n2020-09-11 19:03:11,826 [root] DEBUG: \t |-- CAPE_Doppelganging\r\n2020-09-11 19:03:11,826 [root] DEBUG: \t |-- CAPE_EvilGrab\r\n2020-09-11 19:03:11,826 [root] DEBUG: \t |-- CAPE_Injection\r\n2020-09-11 19:03:11,826 [root] DEBUG: \t |-- CAPE_InjectionCreateRemoteThread\r\n2020-09-11 19:03:11,827 [root] DEBUG: \t |-- CAPE_InjectionProcessHollowing\r\n2020-09-11 19:03:11,827 [root] DEBUG: \t |-- CAPE_InjectionSetWindowLong\r\n2020-09-11 19:03:11,827 [root] DEBUG: \t |-- CAPE_PlugX\r\n2020-09-11 19:03:11,827 [root] DEBUG: \t |-- CAPE_RegBinary\r\n2020-09-11 19:03:11,827 [root] DEBUG: \t |-- CAPE_TransactedHollowing\r\n2020-09-11 19:03:11,827 [root] DEBUG: \t |-- CAPE_Unpacker\r\n2020-09-11 19:03:11,827 [root] DEBUG: \t |-- CAPEExtractedContent\r\n2020-09-11 19:03:11,827 [root] DEBUG: \t `-- NetworkHTTPS\r\n2020-09-11 19:03:11,827 [root] DEBUG: Imported \"reporting\" modules:\r\n2020-09-11 19:03:11,827 [root] DEBUG: \t |-- BinGraph\r\n2020-09-11 19:03:11,827 [root] DEBUG: \t |-- CALLBACKHOME\r\n2020-09-11 19:03:11,827 [root] DEBUG: \t |-- Compression\r\n2020-09-11 19:03:11,827 [root] DEBUG: \t |-- CompressResults\r\n2020-09-11 19:03:11,827 [root] DEBUG: \t |-- JsonDump\r\n2020-09-11 19:03:11,827 [root] DEBUG: \t |-- MAEC41Report\r\n2020-09-11 19:03:11,827 [root] DEBUG: \t |-- MaecReport\r\n2020-09-11 19:03:11,827 [root] DEBUG: \t |-- MISP\r\n2020-09-11 19:03:11,827 [root] DEBUG: \t |-- MITRE_TTPS\r\n2020-09-11 19:03:11,827 [root] DEBUG: \t |-- MongoDB\r\n2020-09-11 19:03:11,828 [root] DEBUG: \t |-- RAMFSCLEAN\r\n2020-09-11 19:03:11,828 [root] DEBUG: \t |-- ReportHTML\r\n2020-09-11 19:03:11,828 [root] DEBUG: \t |-- ReportHTMLSummary\r\n2020-09-11 19:03:11,828 [root] DEBUG: \t |-- ReportPDF\r\n2020-09-11 19:03:11,828 [root] DEBUG: \t |-- ReSubmitExtractedEXE\r\n2020-09-11 19:03:11,828 [root] DEBUG: \t |-- Retention\r\n2020-09-11 19:03:11,828 [root] DEBUG: \t |-- SubmitCAPE\r\n2020-09-11 19:03:11,828 [root] DEBUG: \t `-- Syslog\r\n2020-09-11 19:03:11,828 [root] DEBUG: Imported \"machinery\" modules:\r\n2020-09-11 19:03:11,828 [root] DEBUG: \t `-- KVM\r\n2020-09-11 19:03:11,828 [root] DEBUG: Checking for locked tasks...\r\n2020-09-11 19:03:11,937 [root] DEBUG: Initializing Yara...\r\n2020-09-11 19:03:11,941 [root] DEBUG: \t |-- binaries HeavensGate.yar\r\n2020-09-11 19:03:11,949 [root] DEBUG: \t |-- CAPE AgentTesla.yar\r\n2020-09-11 19:03:11,949 [root] DEBUG: \t |-- CAPE Arkei.yar\r\n2020-09-11 19:03:11,949 [root] DEBUG: \t |-- CAPE AsyncRat.yar\r\n2020-09-11 19:03:11,949 [root] DEBUG: \t |-- CAPE Atlas.yar\r\n2020-09-11 19:03:11,949 [root] DEBUG: \t |-- CAPE Azer.yar\r\n2020-09-11 19:03:11,949 [root] DEBUG: \t |-- CAPE Azorult.yar\r\n2020-09-11 19:03:11,949 [root] DEBUG: \t |-- CAPE BadRabbit.yar\r\n2020-09-11 19:03:11,949 [root] DEBUG: \t |-- CAPE BitPaymer.yar\r\n2020-09-11 19:03:11,949 [root] DEBUG: \t |-- CAPE Cerber.yar\r\n2020-09-11 19:03:11,949 [root] DEBUG: \t |-- CAPE Clop.yar\r\n2020-09-11 19:03:11,949 [root] DEBUG: \t |-- CAPE CobaltStrikeBeacon.yar\r\n2020-09-11 19:03:11,949 [root] DEBUG: \t |-- CAPE Codoso.yar\r\n2020-09-11 19:03:11,949 [root] DEBUG: \t |-- CAPE Cryptoshield.yar\r\n2020-09-11 19:03:11,949 [root] DEBUG: \t |-- CAPE DoppelPaymer.yar\r\n2020-09-11 19:03:11,950 [root] DEBUG: \t |-- CAPE Dreambot.yar\r\n2020-09-11 19:03:11,950 [root] DEBUG: \t |-- CAPE DridexLoader.yar\r\n2020-09-11 19:03:11,950 [root] DEBUG: \t |-- CAPE DridexV4.yar\r\n2020-09-11 19:03:11,950 [root] DEBUG: \t |-- CAPE Emotet.yar\r\n2020-09-11 19:03:11,950 [root] DEBUG: \t |-- CAPE Emotet_Loader.yar\r\n2020-09-11 19:03:11,950 [root] DEBUG: \t |-- CAPE EternalRomance.yar\r\n2020-09-11 19:03:11,950 [root] DEBUG: \t |-- CAPE Fareit.yar\r\n2020-09-11 19:03:11,950 [root] DEBUG: \t |-- CAPE Gandcrab.yar\r\n2020-09-11 19:03:11,950 [root] DEBUG: \t |-- CAPE Gootkit.yar\r\n2020-09-11 19:03:11,950 [root] DEBUG: \t |-- CAPE Hancitor.yar\r\n2020-09-11 19:03:11,950 [root] DEBUG: \t |-- CAPE Hermes.yar\r\n2020-09-11 19:03:11,950 [root] DEBUG: \t |-- CAPE IcedID.yar\r\n2020-09-11 19:03:11,950 [root] DEBUG: \t |-- CAPE Imminent.yar\r\n2020-09-11 19:03:11,950 [root] DEBUG: \t |-- CAPE Jaff.yar\r\n2020-09-11 19:03:11,950 [root] DEBUG: \t |-- CAPE Kovter.yar\r\n2020-09-11 19:03:11,950 [root] DEBUG: \t |-- CAPE Kronos.yar\r\n2020-09-11 19:03:11,950 [root] DEBUG: \t |-- CAPE Lockbit.yar\r\n2020-09-11 19:03:11,950 [root] DEBUG: \t |-- CAPE Locky.yar\r\n2020-09-11 19:03:11,950 [root] DEBUG: \t |-- CAPE Loki.yar\r\n2020-09-11 19:03:11,950 [root] DEBUG: \t |-- CAPE Magniber.yar\r\n2020-09-11 19:03:11,950 [root] DEBUG: \t |-- CAPE MegaCortex.yar\r\n2020-09-11 19:03:11,950 [root] DEBUG: \t |-- CAPE Mole.yar\r\n2020-09-11 19:03:11,951 [root] DEBUG: \t |-- CAPE NanoLocker.yar\r\n2020-09-11 19:03:11,951 [root] DEBUG: \t |-- CAPE Nemty.yar\r\n2020-09-11 19:03:11,951 [root] DEBUG: \t |-- CAPE NetTraveler.yar\r\n2020-09-11 19:03:11,951 [root] DEBUG: \t |-- CAPE OlympicDestroyer.yar\r\n2020-09-11 19:03:11,951 [root] DEBUG: \t |-- CAPE PetrWrap.yar\r\n2020-09-11 19:03:11,951 [root] DEBUG: \t |-- CAPE Petya.yar\r\n2020-09-11 19:03:11,951 [root] DEBUG: \t |-- CAPE Phorpiex.yar\r\n2020-09-11 19:03:11,951 [root] DEBUG: \t |-- CAPE QakBot.yar\r\n2020-09-11 19:03:11,951 [root] DEBUG: \t |-- CAPE RCSession.yar\r\n2020-09-11 19:03:11,951 [root] DEBUG: \t |-- CAPE Ramnit.yar\r\n2020-09-11 19:03:11,951 [root] DEBUG: \t |-- CAPE Remcos.yar\r\n2020-09-11 19:03:11,951 [root] DEBUG: \t |-- CAPE RokRat.yar\r\n2020-09-11 19:03:11,951 [root] DEBUG: \t |-- CAPE Ryuk.yar\r\n2020-09-11 19:03:11,951 [root] DEBUG: \t |-- CAPE Scarab.yar\r\n2020-09-11 19:03:11,951 [root] DEBUG: \t |-- CAPE Sedreco.yar\r\n2020-09-11 19:03:11,951 [root] DEBUG: \t |-- CAPE Seduploader.yar\r\n2020-09-11 19:03:11,951 [root] DEBUG: \t |-- CAPE TClient.yar\r\n2020-09-11 19:03:11,951 [root] DEBUG: \t |-- CAPE TSCookie.yar\r\n2020-09-11 19:03:11,951 [root] DEBUG: \t |-- CAPE TrickBot.yar\r\n2020-09-11 19:03:11,951 [root] DEBUG: \t |-- CAPE Ursnif.yar\r\n2020-09-11 19:03:11,951 [root] DEBUG: \t |-- CAPE Ursnif3.yar\r\n2020-09-11 19:03:11,951 [root] DEBUG: \t |-- CAPE Varenyky.yar\r\n2020-09-11 19:03:11,952 [root] DEBUG: \t |-- CAPE Vidar.yar\r\n2020-09-11 19:03:11,952 [root] DEBUG: \t |-- CAPE WanaCry.yar\r\n2020-09-11 19:03:11,952 [root] DEBUG: \t |-- CAPE ZeroT.yar\r\n2020-09-11 19:03:11,952 [root] DEBUG: \t |-- CAPE ZeusPanda.yar\r\n2020-09-11 19:03:11,952 [root] DEBUG: \t |-- CAPE Zloader.yar\r\n2020-09-11 19:03:11,952 [root] DEBUG: \t |-- CAPE tRat.yar\r\n2020-09-11 19:03:11,952 [root] WARNING: \u001b[33mMissing Yara directory: /opt/CAPEv2/data/yara/macro?\u001b[0m\r\n2020-09-11 19:03:11,954 [lib.cuckoo.core.scheduler] INFO: Using \"kvm\" machine manager with max_analysis_count=0, max_machines_count=10, and max_vmstartup_count=5\r\n2020-09-11 19:03:11,966 [lib.cuckoo.common.abstracts] DEBUG: Getting status for cape001\r\n2020-09-11 19:03:11,975 [lib.cuckoo.core.scheduler] INFO: Loaded 1 machine/s\r\n2020-09-11 19:03:11,980 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks.\r\npywin32 is not installed (only is required if you want to use MS Excel)\r\n```\r\n\r\n\nComment: how do you adding tasks? i suppouse you run something as root and something as another user, that is most common issue for pending tasks\nComment: I'm submitting using the web UI, only the rooter is running as root. All submissions with the Web UI are stuck \"pending\".\r\n\r\n```\r\nroot       64778       1  0 21:42 ?        00:00:00 /usr/bin/python3 rooter.py -g cuckoo\r\ncuckoo     69483       1  0 21:45 ?        00:00:05 /usr/bin/python3 process.py -p7 auto -pt 900 --debug\r\ncuckoo     69510       1  1 21:45 ?        00:00:29 /usr/bin/python3 cuckoo.py --debug\r\ncuckoo     69511       1  0 21:45 ?        00:00:02 /usr/bin/python3 manage.py runserver 0.0.0.0:8000\r\npostgres   69534   63011  0 21:45 ?        00:00:00 postgres: cuckoo analysis 127.0.0.1(47548) idle\r\npostgres   69573   63011  0 21:45 ?        00:00:04 postgres: cuckoo analysis 127.0.0.1(47558) idle\r\npostgres   69574   63011  0 21:45 ?        00:00:00 postgres: cuckoo analysis 127.0.0.1(47560) idle\r\ncuckoo     69581   69511  1 21:45 ?        00:00:42 /usr/bin/python3 manage.py runserver 0.0.0.0:8000\r\npostgres   69627   63011  0 21:45 ?        00:00:00 postgres: cuckoo analysis 127.0.0.1(47580) idle\r\n```\r\n\r\nTrying to submit with submit.py seems to actually work to submit the analysis\r\n```\r\n[root@cape01 opt]# sudo -u cuckoo python3 CAPEv2/utils/submit.py 46224284f2cc1537456bc385e85b1a0ef9a93b49\r\nSuccess: File \"/opt/46224284f2cc1537456bc385e85b1a0ef9a93b49\" added as task with ID 2\r\n\r\n2020-09-14 22:33:38,705 [lib.cuckoo.core.scheduler] DEBUG: Task #2: Processing task\r\n2020-09-14 22:33:38,707 [lib.cuckoo.core.scheduler] INFO: Task #2: Starting analysis of FILE '/opt/46224284f2cc1537456bc385e85b1a0ef9a93b49'\r\n2020-09-14 22:33:38,720 [lib.cuckoo.core.scheduler] INFO: Task #2: acquired machine cape001 (label=cape001, platform=windows)\r\n2020-09-14 22:33:38,746 [root] DEBUG: Now tracking machine 192.168.123.10 for task #2\r\n2020-09-14 22:33:38,756 [lib.cuckoo.common.abstracts] DEBUG: Starting machine cape001\r\n2020-09-14 22:33:38,756 [lib.cuckoo.common.abstracts] DEBUG: Getting status for cape001\r\n2020-09-14 22:33:38,789 [lib.cuckoo.common.abstracts] DEBUG: Using snapshot cape001-snap01 for virtual machine cape001\r\n2020-09-14 22:33:40,519 [lib.cuckoo.common.abstracts] DEBUG: Getting status for cape001\r\n2020-09-14 22:33:40,553 [lib.cuckoo.core.scheduler] INFO: Enabled route 'none'\r\n2020-09-14 22:33:40,561 [modules.auxiliary.sniffer] INFO: Started sniffer with PID 71495 (interface=virbr123, host=192.168.123.10, dump path=/opt/CAPEv2/storage/analyses/2/dump.pcap)\r\n2020-09-14 22:33:40,562 [lib.cuckoo.core.plugins] DEBUG: Started auxiliary module: Sniffer\r\n2020-09-14 22:33:40,576 [lib.cuckoo.core.guest] INFO: Starting analysis #2 on guest (id=cape001, ip=192.168.123.10)\r\n2020-09-14 22:33:41,579 [lib.cuckoo.core.guest] DEBUG: cape001: not ready yet\r\n2020-09-14 22:33:42,582 [lib.cuckoo.core.guest] DEBUG: cape001: not ready yet\r\n2020-09-14 22:33:43,585 [lib.cuckoo.core.guest] DEBUG: cape001: not ready yet\r\n2020-09-14 22:33:43,594 [lib.cuckoo.core.guest] INFO: Guest is running CAPE Agent 0.11 (id=cape001, ip=192.168.123.10)\r\n2020-09-14 22:33:43,629 [lib.cuckoo.core.guest] DEBUG: Uploading analyzer to guest (id=cape001, ip=192.168.123.10, size=17059709)\r\n2020-09-14 22:33:43,988 [lib.cuckoo.core.guest] INFO: Uploading support files to guest (id=cape001, ip=192.168.123.10)\r\n2020-09-14 22:33:54,933 [lib.cuckoo.core.guest] DEBUG: cape001: analysis #2 is still running\r\n2020-09-14 22:33:59,957 [lib.cuckoo.core.guest] DEBUG: cape001: analysis #2 is still running\r\n...\r\n2020-09-14 22:38:10,458 [lib.cuckoo.core.guest] INFO: cape001: end of analysis reached!\r\n2020-09-14 22:38:10,466 [lib.cuckoo.core.plugins] DEBUG: Stopped auxiliary module: Sniffer\r\n2020-09-14 22:38:10,466 [lib.cuckoo.common.abstracts] DEBUG: Stopping machine cape001\r\n2020-09-14 22:38:10,466 [lib.cuckoo.common.abstracts] DEBUG: Getting status for cape001\r\n2020-09-14 22:38:10,701 [lib.cuckoo.common.abstracts] DEBUG: Getting status for cape001\r\n2020-09-14 22:38:10,722 [root] DEBUG: Stopped tracking machine 192.168.123.10 for task #2\r\n2020-09-14 22:38:10,792 [lib.cuckoo.core.scheduler] DEBUG: Task #2: Released database task with status True\r\n2020-09-14 22:38:10,792 [lib.cuckoo.core.scheduler] INFO: Task #2: analysis procedure completed\r\n```\r\n\r\nBut then the web UI is broken trying to go to the \"Recent\" tab, throwing this error:\r\n\r\n```\r\nOperationFailure at /analysis/\r\n\r\nPath collision at info.custom remaining portion custom, full error: {'ok': 0.0, 'errmsg': 'Path collision at info.custom remaining portion custom', 'code': 31249, 'codeName': 'Location31249'}\r\n```\r\n\r\nThanks for all your help and hard work on this project!\nComment: Well then i suppouse ypu have some permission problem as we using cape\nusername and not cuckoo, chekc if all folders and tmp folder is under the\nsame username\n\nEl mar., 15 sept. 2020 0:42, Pieter Bork <notifications@github.com>\nescribi\u00f3:\n\n> I'm submitting using the web UI, only the rooter is running as root.\n>\n> root       64778       1  0 21:42 ?        00:00:00 /usr/bin/python3 rooter.py -g cuckoo\n> cuckoo     69483       1  0 21:45 ?        00:00:05 /usr/bin/python3 process.py -p7 auto -pt 900 --debug\n> cuckoo     69510       1  1 21:45 ?        00:00:29 /usr/bin/python3 cuckoo.py --debug\n> cuckoo     69511       1  0 21:45 ?        00:00:02 /usr/bin/python3 manage.py runserver 0.0.0.0:8000\n> postgres   69534   63011  0 21:45 ?        00:00:00 postgres: cuckoo analysis 127.0.0.1(47548) idle\n> postgres   69573   63011  0 21:45 ?        00:00:04 postgres: cuckoo analysis 127.0.0.1(47558) idle\n> postgres   69574   63011  0 21:45 ?        00:00:00 postgres: cuckoo analysis 127.0.0.1(47560) idle\n> cuckoo     69581   69511  1 21:45 ?        00:00:42 /usr/bin/python3 manage.py runserver 0.0.0.0:8000\n> postgres   69627   63011  0 21:45 ?        00:00:00 postgres: cuckoo analysis 127.0.0.1(47580) idle\n>\n> Trying to submit with submit.py seems to actually work to submit the\n> analysis\n>\n> [root@cape01 opt]# sudo -u cuckoo python3 CAPEv2/utils/submit.py 46224284f2cc1537456bc385e85b1a0ef9a93b49\n> Success: File \"/opt/46224284f2cc1537456bc385e85b1a0ef9a93b49\" added as task with ID 2\n>\n> 2020-09-14 22:33:38,705 [lib.cuckoo.core.scheduler] DEBUG: Task #2: Processing task\n> 2020-09-14 22:33:38,707 [lib.cuckoo.core.scheduler] INFO: Task #2: Starting analysis of FILE '/opt/46224284f2cc1537456bc385e85b1a0ef9a93b49'\n> 2020-09-14 22:33:38,720 [lib.cuckoo.core.scheduler] INFO: Task #2: acquired machine cape001 (label=cape001, platform=windows)\n> 2020-09-14 22:33:38,746 [root] DEBUG: Now tracking machine 192.168.123.10 for task #2\n> 2020-09-14 22:33:38,756 [lib.cuckoo.common.abstracts] DEBUG: Starting machine cape001\n> 2020-09-14 22:33:38,756 [lib.cuckoo.common.abstracts] DEBUG: Getting status for cape001\n> 2020-09-14 22:33:38,789 [lib.cuckoo.common.abstracts] DEBUG: Using snapshot cape001-snap01 for virtual machine cape001\n> 2020-09-14 22:33:40,519 [lib.cuckoo.common.abstracts] DEBUG: Getting status for cape001\n> 2020-09-14 22:33:40,553 [lib.cuckoo.core.scheduler] INFO: Enabled route 'none'\n> 2020-09-14 22:33:40,561 [modules.auxiliary.sniffer] INFO: Started sniffer with PID 71495 (interface=virbr123, host=192.168.123.10, dump path=/opt/CAPEv2/storage/analyses/2/dump.pcap)\n> 2020-09-14 22:33:40,562 [lib.cuckoo.core.plugins] DEBUG: Started auxiliary module: Sniffer\n> 2020-09-14 22:33:40,576 [lib.cuckoo.core.guest] INFO: Starting analysis #2 on guest (id=cape001, ip=192.168.123.10)\n> 2020-09-14 22:33:41,579 [lib.cuckoo.core.guest] DEBUG: cape001: not ready yet\n> 2020-09-14 22:33:42,582 [lib.cuckoo.core.guest] DEBUG: cape001: not ready yet\n> 2020-09-14 22:33:43,585 [lib.cuckoo.core.guest] DEBUG: cape001: not ready yet\n> 2020-09-14 22:33:43,594 [lib.cuckoo.core.guest] INFO: Guest is running CAPE Agent 0.11 (id=cape001, ip=192.168.123.10)\n> 2020-09-14 22:33:43,629 [lib.cuckoo.core.guest] DEBUG: Uploading analyzer to guest (id=cape001, ip=192.168.123.10, size=17059709)\n> 2020-09-14 22:33:43,988 [lib.cuckoo.core.guest] INFO: Uploading support files to guest (id=cape001, ip=192.168.123.10)\n> 2020-09-14 22:33:54,933 [lib.cuckoo.core.guest] DEBUG: cape001: analysis #2 is still running\n> 2020-09-14 22:33:59,957 [lib.cuckoo.core.guest] DEBUG: cape001: analysis #2 is still running\n> ...\n> 2020-09-14 22:38:10,458 [lib.cuckoo.core.guest] INFO: cape001: end of analysis reached!\n> 2020-09-14 22:38:10,466 [lib.cuckoo.core.plugins] DEBUG: Stopped auxiliary module: Sniffer\n> 2020-09-14 22:38:10,466 [lib.cuckoo.common.abstracts] DEBUG: Stopping machine cape001\n> 2020-09-14 22:38:10,466 [lib.cuckoo.common.abstracts] DEBUG: Getting status for cape001\n> 2020-09-14 22:38:10,701 [lib.cuckoo.common.abstracts] DEBUG: Getting status for cape001\n> 2020-09-14 22:38:10,722 [root] DEBUG: Stopped tracking machine 192.168.123.10 for task #2\n> 2020-09-14 22:38:10,792 [lib.cuckoo.core.scheduler] DEBUG: Task #2: Released database task with status True\n> 2020-09-14 22:38:10,792 [lib.cuckoo.core.scheduler] INFO: Task #2: analysis procedure completed\n>\n> But then the web UI is broken trying to go to the \"Recent\" tab, throwing\n> this error:\n>\n> OperationFailure at /analysis/\n>\n> Path collision at info.custom remaining portion custom, full error: {'ok': 0.0, 'errmsg': 'Path collision at info.custom remaining portion custom', 'code': 31249, 'codeName': 'Location31249'}\n>\n> Thanks for all your help and hard work on this project!\n>\n> \u2014\n> You are receiving this because you commented.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/268#issuecomment-692351894>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3YJNCUZBEXAUPSTALDSF2L43ANCNFSM4RIBMVYQ>\n> .\n>\n\nComment: I've updated my installation to use the cape user instead of the cuckoo user and reviewed your install scripts to try to find anything else I may be missing, but still having the same issues.\r\n\r\nHere are the groups/process/files that are cape-related:\r\n```\r\n[root@cape01 ~]# cat /etc/group | grep cape\r\nlibvirt:x:980:cape\r\nvirusgroup:x:977:clamupdate,clamscan,cape\r\ncape:x:2000:\r\npcap:x:2001:cape\r\n\r\n[root@cape01 ~]# ps -ef | grep cape\r\ncape        8339       1  1 21:02 ?        00:00:07 /usr/bin/python3 cuckoo.py\r\nroot        8362       1  0 21:02 ?        00:00:00 /usr/bin/python3 rooter.py -g cape\r\ncape        8402       1  0 21:02 ?        00:00:02 /usr/bin/python3 manage.py runserver 0.0.0.0:8000\r\npostgres    8436    8207  0 21:02 ?        00:00:00 postgres: cape cape 127.0.0.1(50286) idle\r\npostgres    8471    8207  0 21:02 ?        00:00:00 postgres: cape cape 127.0.0.1(50304) idle\r\ncape        8472       1  0 21:02 ?        00:00:03 /usr/bin/python3 process.py -p7 auto -pt 900\r\ncape        8475    8402  2 21:02 ?        00:00:10 /usr/bin/python3 manage.py runserver 0.0.0.0:8000\r\npostgres    8547    8207  0 21:02 ?        00:00:00 postgres: cape cape 127.0.0.1(50316) idle\r\npostgres    8553    8207  0 21:02 ?        00:00:00 postgres: cape cape 127.0.0.1(50322) idle\r\npostgres    8734    8207  0 21:05 ?        00:00:00 postgres: cape cape 127.0.0.1(50354) idle\r\nroot        9043    2116  0 21:09 pts/0    00:00:00 grep --color=auto cape\r\n\r\n[root@cape01 ~]# ls -al /tmp | grep cape\r\nsrw--w----   1 root     cape           0 Sep 15 21:02 cuckoo-rooter\r\ndrwxr-xr-x. 16 cape     cape        4096 Sep 15 21:03 cuckoo-tmp\r\nsrwxr-xr-x   1 cape     cape           0 Sep 15 18:11 tmpdmlaixxv\r\nsrwxr-xr-x   1 cape     cape           0 Sep 15 21:08 tmpei73i44r\r\nsrwxr-xr-x   1 cape     cape           0 Sep 15 17:34 tmpwekayfoj\r\nsrwxr-xr-x   1 cape     cape           0 Sep 14 22:38 tmpwpq60bmd\r\n\r\n(I've run a chown -R cape:cape /opt/CAPEv2)\r\n[root@cape01 ~]# ls -al /opt/\r\ndrwxr-xr-x  18 cape cape   4096 Sep 15 18:30 CAPEv2\r\n```\r\n\r\nSubmissions with Web UI are still stuck in pending. If I submit with `sudo -u cape utils/submit.py <binary OR url>` it will be processed, but this traceback is then being thrown trying to visit /analysis on the Web UI:\r\n\r\n```\r\nSep 15 21:05:25 cape01 python3[8402]:  File \"/usr/local/lib64/python3.6/site-packages/django/core/handlers/exception.py\", line 47, in inner\r\nSep 15 21:05:25 cape01 python3[8402]:    response = get_response(request)\r\nSep 15 21:05:25 cape01 python3[8402]:  File \"/usr/local/lib64/python3.6/site-packages/django/core/handlers/base.py\", line 179, in _get_response\r\nSep 15 21:05:25 cape01 python3[8402]:    response = wrapped_callback(request, *callback_args, **callback_kwargs)\r\nSep 15 21:05:25 cape01 python3[8402]:  File \"/usr/local/lib64/python3.6/site-packages/django/views/decorators/http.py\", line 40, in inner\r\nSep 15 21:05:25 cape01 python3[8402]:    return func(request, *args, **kwargs)\r\nSep 15 21:05:25 cape01 python3[8402]:  File \"/opt/CAPEv2/web/analysis/views.py\", line 289, in index\r\nSep 15 21:05:25 cape01 python3[8402]:    new = get_analysis_info(db, task=task)\r\nSep 15 21:05:25 cape01 python3[8402]:  File \"/opt/CAPEv2/web/analysis/views.py\", line 139, in get_analysis_info\r\nSep 15 21:05:25 cape01 python3[8402]:    sort=[(\"_id\", pymongo.DESCENDING)],\r\nSep 15 21:05:25 cape01 python3[8402]:  File \"/usr/local/lib64/python3.6/site-packages/pymongo/collection.py\", line 1319, in find_one\r\nSep 15 21:05:25 cape01 python3[8402]:    for result in cursor.limit(-1):\r\nSep 15 21:05:25 cape01 python3[8402]:  File \"/usr/local/lib64/python3.6/site-packages/pymongo/cursor.py\", line 1207, in next\r\nSep 15 21:05:25 cape01 python3[8402]:    if len(self.__data) or self._refresh():\r\nSep 15 21:05:25 cape01 python3[8402]:  File \"/usr/local/lib64/python3.6/site-packages/pymongo/cursor.py\", line 1124, in _refresh\r\nSep 15 21:05:25 cape01 python3[8402]:    self.__send_message(q)\r\nSep 15 21:05:25 cape01 python3[8402]:  File \"/usr/local/lib64/python3.6/site-packages/pymongo/cursor.py\", line 1001, in __send_message\r\nSep 15 21:05:25 cape01 python3[8402]:    address=self.__address)\r\nSep 15 21:05:25 cape01 python3[8402]:  File \"/usr/local/lib64/python3.6/site-packages/pymongo/mongo_client.py\", line 1372, in _run_operation_with_response\r\nSep 15 21:05:25 cape01 python3[8402]:    exhaust=exhaust)\r\nSep 15 21:05:25 cape01 python3[8402]:  File \"/usr/local/lib64/python3.6/site-packages/pymongo/mongo_client.py\", line 1471, in _retryable_read\r\nSep 15 21:05:25 cape01 python3[8402]:    return func(session, server, sock_info, slave_ok)\r\nSep 15 21:05:25 cape01 python3[8402]:  File \"/usr/local/lib64/python3.6/site-packages/pymongo/mongo_client.py\", line 1366, in _cmd\r\nSep 15 21:05:25 cape01 python3[8402]:    unpack_res)\r\nSep 15 21:05:25 cape01 python3[8402]:  File \"/usr/local/lib64/python3.6/site-packages/pymongo/server.py\", line 137, in run_operation_with_response\r\nSep 15 21:05:25 cape01 python3[8402]:    first, sock_info.max_wire_version)\r\nSep 15 21:05:25 cape01 python3[8402]:  File \"/usr/local/lib64/python3.6/site-packages/pymongo/helpers.py\", line 168, in_check_command_response\r\nSep 15 21:05:25 cape01 python3[8402]:    max_wire_version)\r\nSep 15 21:05:25 cape01 python3[8402]: pymongo.errors.OperationFailure: Path collision at info.custom remaining portion custom, full error: {'ok': 0.0, 'errmsg': 'Path collision at info.custom remaining portion custom', 'code': 31249, 'codeName': 'Location31249'}\r\n```\r\n\r\nHere are the tasks from the mongo/postgres:\r\n```\r\nmongodump [<Task('2','http://www.example.com')>, <Task('1','/tmp/cuckoo-tmp/upload__4ot448z/946f2c19bdf5edd48bedf507d44466da')>]\r\npostgresdump [<Task('1','/tmp/cuckoo-tmp/upload__4ot448z/946f2c19bdf5edd48bedf507d44466da')>, <Task('2','http://www.example.com')>]\r\n```\r\n\r\nI agree that this seems like a permissions issue, but I'm having issues figuring it out. Any suggestions of other things I can check?\nComment: is first time that i see that mongo error, but that is probably part of your problem, ensure that mongo works correctly, for othe rest everything looks correct\nComment: I commented out [Lines 118-138 in web/analysis/view.py](https://github.com/kevoreilly/CAPEv2/blob/1f534ffcd6c4ed7ca0574f6f75a5381943259321/web/analysis/views.py#L118-L138) which fixed the pymongo error being thrown. \r\n\r\nI've found that if I use \"Detect Automatically\" selected in the web UI, my tasks will be \"pending\" forever. However, selecting my VM from the dropdown seems to work and my sample processes successfully. \r\n\r\nI'm going to do some more testing with tags and different VM names and will report back any additional findings.\nComment: So from what you telling it sound line your sample is x64 but you didnt set\ntags in machinery conf?\n\nEl mi\u00e9., 16 sept. 2020 23:26, Pieter Bork <notifications@github.com>\nescribi\u00f3:\n\n> I commented out Lines 118-138 in web/analysis/view.py\n> <https://github.com/kevoreilly/CAPEv2/blob/1f534ffcd6c4ed7ca0574f6f75a5381943259321/web/analysis/views.py#L118-L138>\n> which fixed the pymongo error being thrown.\n>\n> I've found that if I use \"Detect Automatically\" selected in the web UI, my\n> tasks will be \"pending\" forever. However, selecting my VM from the dropdown\n> seems to work and my sample processes successfully.\n>\n> I'm going to do some more testing with tags and different VM names and\n> will report back any additional findings.\n>\n> \u2014\n> You are receiving this because you commented.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/268#issuecomment-693674583>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH34LJWLMOEMZEEZSBGLSGEURXANCNFSM4RIBMVYQ>\n> .\n>\n\nComment: Yep, that was why Detect Automatically was not working. Last issue I'm having is that Cape doesn't seem to be able to start virtual machines by itself when tasks are acquired - I have to start the machine manually for processing to continue.\r\n\r\n```\r\n2020-09-17 17:54:19,272 [lib.cuckoo.core.scheduler] INFO: Task #13: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_c4q_byi5/c9dcf107a584e3fbeadfe1486bf5fd1c'\r\n2020-09-17 17:54:19,284 [lib.cuckoo.core.scheduler] INFO: Task #13: acquired machine win7_x64_1 (label=win7_x64_1, platform=windows)\r\n```\r\n\r\nIf I do nothing:\r\n```\r\n2020-09-17 16:55:04,321 [lib.cuckoo.core.scheduler] ERROR: Timeout hit while for machine win7_x64_1 to change status\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 308, in launch_analysis\r\n    machinery.start(self.machine.label)\r\n  File \"/opt/CAPEv2/modules/machinery/kvm.py\", line 29, in start\r\n    super(KVM, self).start(label)\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 445, in start\r\n    self._wait_status(label, self.RUNNING)\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 352, in _wait_status\r\n    raise CuckooMachineError(\"Timeout hit while for machine {0} \" \"to change status\".format(label))\r\n```\r\n\r\nAfter running `virsh start win7_x64_1`\r\n\r\n```\r\n2020-09-17 17:55:36,013 [lib.cuckoo.core.scheduler] INFO: Enabled route 'none'\r\n2020-09-17 17:55:36,024 [modules.auxiliary.sniffer] INFO: Started sniffer with PID 83733 (interface=virbr123, host=192.168.123.11, dump path=/opt/CAPEv2/storage/analyses/13/dump.pcap)\r\n2020-09-17 17:55:36,033 [lib.cuckoo.core.guest] INFO: Starting analysis #13 on guest (id=win7_x64_1, ip=192.168.123.11)\r\n2020-09-17 17:55:43,057 [lib.cuckoo.core.guest] INFO: Guest is running CAPE Agent 0.11 (id=win7_x64_1, ip=192.168.123.11)\r\n2020-09-17 17:55:43,566 [lib.cuckoo.core.guest] INFO: Uploading support files to guest (id=win7_x64_1, ip=192.168.123.11)\r\n```\r\n\r\nSeems like cape is missing permissions to start VMs, but this seems to work fine:\r\n```\r\n[cape@cape01 CAPEv2]$ python3\r\n>>> import libvirt\r\n>>> conn = libvirt.open('qemu:///system')\r\n>>> machine = conn.lookupByName('win7_x64_1')\r\n>>> machine.create()\r\n0\r\n>>> quit()\r\n[cape@cape01 CAPEv2]$ virsh list\r\n Id    Name                           State\r\n----------------------------------------------------\r\n 8     win7_x64_1                     running\r\n```\r\n\r\nIf I add `self.vms[label].create()` [on this line](https://github.com/kevoreilly/CAPEv2/blob/3bdde7f4e8069492e28bb7706c4398c98e8318f8/lib/cuckoo/common/abstracts.py#L443) then everything is working as expected. I'm not sure how machines are supposed to be getting created automatically when I don't see `.create()`  being called anywhere in [this start function](https://github.com/kevoreilly/CAPEv2/blob/3bdde7f4e8069492e28bb7706c4398c98e8318f8/lib/cuckoo/common/abstracts.py#L401-L445) or [this start function](https://github.com/kevoreilly/CAPEv2/blob/3bdde7f4e8069492e28bb7706c4398c98e8318f8/modules/machinery/kvm.py)?\r\n\nComment: go to the old cape repo and search in issues, or maybe it was cuckoo-modified, i don't remember already, and you will see that create is required when you incorrectly created vm",
+  "Title: test\nBody: ",
+  "Title: Missing Yara Directory /data/yara/macro?\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [*] I am running the latest version\r\n- [*] I checked the documentation and found no answer\r\n- [*] I checked to make sure that this issue has not already been filed\r\n- [*] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nPlease describe the behavior you are expecting\r\n\r\nIt shows no warning\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\nIt shows a warning message saying WARNING: Missing Yara Directory: /opt/CAPEv2/data/yara/macro? \r\n\r\n![image](https://user-images.githubusercontent.com/10760510/92922302-3a610880-f3fb-11ea-815f-c1f1058bcfd3.png)\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Launch python3 cuckoo.py -d\r\n2. Watch it load to find the error message\r\n3. CAPE launches normally, but with the error.\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | commit de5d726a8f94f63a86588a974fe155955077d381\r\n| Python version | v3.6.9\r\n| OS version        | Ubuntu 18.04.5 LTS\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\r\n**Not really related, but thought I would ask about this too.**\r\n\r\n![image](https://user-images.githubusercontent.com/10760510/92922881-24077c80-f3fc-11ea-8f21-437b285c687f.png)\r\n\r\n**This is really what I am concerned about**\r\n\r\n![image](https://user-images.githubusercontent.com/10760510/92923477-24544780-f3fd-11ea-96bf-525f8061188b.png)\r\n\r\n\r\n\nComment: hello, thanks, execute community module, there was fixes those days for that Signature and other bugs, macro folder created in repo, do git pull\nComment: So I did git pull and executed the community module and I am still seeing the error message. \r\n**Commit log** \r\n![image](https://user-images.githubusercontent.com/10760510/92927617-8a43cd80-f403-11ea-9286-0d4711ffab7b.png)\r\n**Error message**\r\n![image](https://user-images.githubusercontent.com/10760510/92927681-9d569d80-f403-11ea-93d8-a58267802f0b.png)\r\n\nComment: ![image](https://user-images.githubusercontent.com/10760510/92927812-d131c300-f403-11ea-99a6-47d5bdf77d62.png)\r\n\nComment: lool that is github if folder is empty it removes it :D so i left empty file inside\nComment: LOL alright so that fixed that, but this is still there. Does this affect the functionality at all? I would assume so since signature is not defined, some things might not be parsed? I haven't looked at the code apart from the analyzer.py and made a modification to add pythonw.exe and pyw.exe so it was viewed as a protected process. (maybe a pull request? not asking just suggesting)\r\n\r\n![image](https://user-images.githubusercontent.com/10760510/92928590-eb1fd580-f404-11ea-8783-d77c6db221a2.png)\r\n\r\nLastly, does CAPE have the ability to parse emails and extract files from it? I can't seem to figure out what I am doing wrong; I even select the detect automatically package as well as the eml package and it still doesn't extract it. Any ideas?\r\n\r\nThank you for your help and quick responses.\nComment: that doesn't affect functionality, that just are `community` modules and community sometime does errors ;) did you exec `community.py`?\r\n\r\nabout emails, no there nothing right now for that, but you can easilly extend eml/msg package for that ;) or even better sflock https://github.com/doomedraven/sflock\nComment: I did execute community.py -waf to no avail. I will check out sflock, I saw it on a Twitter post. It integrates with CAPE I take it?\nComment: for sflock yes, reexec community i just fixed \nComment: ok now they really fixed, i will enforce flake8 checks on PRs, thanks for reporting\nComment: I executed community.py again or redownload sflock? It still looks like it's not working. \r\n\r\n![image](https://user-images.githubusercontent.com/10760510/92931919-ce39d100-f409-11ea-945a-e05d3609c4f4.png)\r\n\r\n\r\n\nComment: community, well without output of your execution of coommunity i can't say nthing + you need to restart process.py after community\nComment: **Output from community**\r\n\r\nAlso restarted process.py\r\n\r\nDownloading modules from https://github.com/kevoreilly/community/archive/master.tar.gz\r\n\r\nInstalling FEEDS\r\nFile \"/opt/CAPEv2/modules/feeds/__init__.py\" installed\r\nFile \"/opt/CAPEv2/modules/feeds/bad_ssl_certs.py\" installed\r\n\r\nInstalling PROCESSING\r\nFile \"/opt/CAPEv2/modules/processing/__init__.py\" installed\r\nFile \"/opt/CAPEv2/modules/processing/cif.py\" installed\r\n\r\nInstalling SIGNATURES\r\nFile \"/opt/CAPEv2/modules/signatures/__init__.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/accesses_netlogon.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/accesses_sysvol.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/alphacrypt_apis.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/andromeda_apis.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/anomalous_deletefile.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antianalysis_detectfile.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antianalysis_detectreg.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antiav_360_libs.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antiav_ahnlab_libs.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antiav_avast_libs.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antiav_bitdefender_libs.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antiav_bullgaurd_libs.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antiav_bypass.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antiav_detectfile.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antiav_detectreg.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antiav_emsisoft_libs.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antiav_qurb_libs.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antiav_servicestop.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antiav_srp.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antidbg_devices.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antidbg_windows.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antidebug_addvectoredexceptionhandler.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antidebug_apioverride_libs.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antidebug_checkremotedebuggerpresent.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antidebug_debugactiveprocess.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antidebug_gettickcount.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antidebug_guardpages.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antidebug_ntcreatethreadex.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antidebug_nthookengine_libs.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antidebug_ntsetinformationthread.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antidebug_outputdebugstring.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antidebug_setunhandledexceptionfilter.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antiemu_wine.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antiemu_wine_func.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antisandbox_check_userdomain.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antisandbox_cuckoo.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antisandbox_cuckoo_files.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antisandbox_cuckoocrash.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antisandbox_fortinet_files.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antisandbox_joe_anubis_files.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antisandbox_mouse_hook.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antisandbox_restart.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antisandbox_sboxie_libs.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antisandbox_sboxie_mutex.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antisandbox_sboxie_objects.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antisandbox_scripttimer.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antisandbox_sleep.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antisandbox_sunbelt_files.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antisandbox_sunbelt_libs.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antisandbox_suspend.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antisandbox_threattrack_files.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antisandbox_unhook.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antivirus_virustotal.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antivm_bochs_keys.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antivm_dirobjects.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antivm_generic_bios.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antivm_generic_cpu.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antivm_generic_disk.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antivm_generic_disk_setupapi.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antivm_generic_diskreg.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antivm_generic_scsi.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antivm_generic_services.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antivm_generic_system.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antivm_hyperv_keys.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antivm_parallels_keys.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antivm_vbox_devices.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antivm_vbox_files.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antivm_vbox_keys.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antivm_vbox_libs.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antivm_vbox_provname.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antivm_vbox_window.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antivm_vmware_devices.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antivm_vmware_events.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antivm_vmware_files.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antivm_vmware_keys.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antivm_vmware_libs.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antivm_vmware_mutexes.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antivm_vpc_files.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antivm_vpc_keys.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antivm_vpc_mutex.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/antivm_xen_keys.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/api_spamming.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/backdoor_ketrican_regkeys.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/backdoor_okrum_mutex.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/bad_certs.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/bad_ssl_certs.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/banker_cridex.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/banker_geodo.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/banker_prinimalka.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/banker_spyeye_mutex.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/banker_zeus_mutex.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/banker_zeus_p2p.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/banker_zeus_url.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/bcdedit_command.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/betabot_apis.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/bitcoin_opencl.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/bootkit.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/bot_athenahttp.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/bot_dirtjumper.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/bot_drive.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/bot_drive2.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/bot_madness.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/bot_russkill.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/browser_addon.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/browser_bho.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/browser_needed.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/browser_proxy.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/browser_scanbox.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/browser_security.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/browser_startpage.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/bypass_applocker.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/bypass_firewall.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/bypass_uac.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/carberp_mutex.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/cerber_apis.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/chimera_apis.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/clamav.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/clears_logs.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/clickfraud_cookies.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/clickfraud_volume.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/cmdline_anomaly.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/codelux_apis.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/collects_systeminfo_cmd.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/compile_dotnet_code.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/copies_self.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/creates_exe.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/creates_largekey.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/creates_nullvalue.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/credential_access.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/credential_dumping.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/critical_process.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/cryptomining.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/cryptopools.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/cryptowall_apis.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/cve_2014_6332.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/cve_2015_2419.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/cve_2016-0189.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/cve_2016_7200.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/cypherit_mutex.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/darkcomet_regkeys.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/dead_connect.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/dead_link.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/debugs_self.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/decoy_doc.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/decoy_image.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/deepfreeze_mutex.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/deletes_self.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/deletes_shadowcopies.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/deletes_system_backup.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/dep_bypass.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/dep_disable.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/disables_app.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/disables_backups.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/disables_browserwarn.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/disables_drives_autodisconnect.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/disables_event_logging.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/disables_folder_options.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/disables_notificationcenter.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/disables_run_command.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/disables_smartscreen.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/disables_spdy.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/disables_sysrestore.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/disables_uac.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/disables_wer.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/disables_wfp.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/disables_windefender.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/disables_windowsupdate.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/disables_winfirewall.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/downloader_andromut_mutex.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/downloader_cabby.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/downloader_guloader.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/downloader_phorpiex_mutex.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/downloader_protonbot_mutex.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/dridex_apis.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/driver_load.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/dropper.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/dropper_js.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/dynamic_function_loading.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/dyre_apis.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/ek_angler.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/ek_gondad.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/ek_heapsray.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/ek_javaapplet.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/ek_neutrino.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/ek_nuclear.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/ek_rig.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/ek_silverlight.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/ek_sundown.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/ek_virtualcheck.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/encrypted_ioc.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/excel4_macro_urls.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/exec_crash.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/execution_suspicious.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/exploit_getbasekerneladdress.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/exploit_gethaldispatchtable.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/exploit_heapspray.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/exploitation_framework_koadic.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/family_proxyback.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/forces_mappeddrives_uac.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/generic_metrics.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/generic_phish.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/gootkit_apis.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/h1n1_apis.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/hancitor_apis.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/hawkeye_apis.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/http_request.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/infostealer_arkei.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/infostealer_azorult_mutex.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/infostealer_bitcoin.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/infostealer_browser.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/infostealer_browser_password.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/infostealer_ftp.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/infostealer_im.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/infostealer_keylog.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/infostealer_mail.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/infostealer_masslogger.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/infostealer_purplewave.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/infostealer_qulab.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/infostealer_raccoon.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/infostealer_vidar.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/injection_createremotethread.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/injection_explorer.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/injection_needextension.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/injection_network.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/injection_runpe.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/injection_rwx.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/injection_themeinitapihook.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/internet_dropper.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/ipc_namedpipe.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/ispy_apis.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/js_phish.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/js_suspicious_redirect.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/kazybot_apis.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/kelihos_apis.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/kibex_apis.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/kovter_apis.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/kraken_mutex.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/locker_regedit.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/locker_taskmgr.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/locky_apis.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/malicious_dynamic_function_loading.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/malware_data_encryption.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/martians_ie.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/martians_office.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/mimics_agent.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/mimics_filename.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/mimics_filetime.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/mimics_icon.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/mimics_processname.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/mimikatz_modules.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/modifies_certs.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/modifies_hostsfile.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/modifies_seccenter.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/modifies_uac_notify.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/modifies_wallpaper.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/move_file_on_reboot.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/multiple_ua.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/network_anomaly.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/network_bind.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/network_cnc_generic.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/network_cnc_http.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/network_dga.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/network_dns_suspicious.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/network_docfile_http.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/network_encrypts_single_packet.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/network_excessive_udp.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/network_explorer.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/network_http.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/network_icmp.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/network_irc.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/network_smtp.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/network_temp_file_storage.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/network_tor.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/network_tor_service.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/network_torgateway.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/nymaim_apis.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/office_codepage.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/office_dll_loading.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/office_exploit.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/office_macro.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/office_macro_suspicious.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/office_rtf.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/office_security.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/office_suspicious.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/office_suspicious_process.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/office_write_exe.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/origin_langid.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/origin_resource_langid.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/packer_anomaly.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/packer_armadillo_mutex.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/packer_armadillo_regkey.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/packer_aspack.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/packer_aspirecrypt.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/packer_bedsprotector.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/packer_confuser.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/packer_enigma.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/packer_entropy.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/packer_mpress.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/packer_nate.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/packer_nspack.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/packer_smartassembly.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/packer_spices.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/packer_themida.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/packer_titan.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/packer_upx.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/packer_vmprotect.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/packer_yoda.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/pdf_annot_urls.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/persistence_ads.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/persistence_autorun.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/persistence_bootexecute.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/persistence_fileless.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/persistence_ifeo.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/persistence_remotedesktop.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/persistence_service.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/persistence_shim.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/polymorphic.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/pony_apis.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/powerpool_mutex.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/powershell_command.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/ppp_pcre.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/prevents_safeboot.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/process_interest.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/process_needed.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/procmem_yara.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/ransomware_crypto.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/ransomware_cryptomix.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/ransomware_dharma.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/ransomware_dmalocker.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/ransomware_fileextensions.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/ransomware_filemodifications.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/ransomware_files.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/ransomware_fonix_mutex.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/ransomware_gandcrab.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/ransomware_germanwiper.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/ransomware_medusalocker.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/ransomware_message.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/ransomware_nemty.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/ransomware_radamant.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/ransomware_recyclebin.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/ransomware_revil_mutex.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/ransomware_satan_mutex.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/ransomware_snake_mutex.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/ransomware_sodinokibi.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/ransomware_stop.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/rat_beebus_mutex.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/rat_blackremote.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/rat_dcrat.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/rat_fynloski_mutex.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/rat_karagany.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/rat_limerat.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/rat_luminosity.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/rat_modi.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/rat_nanocore.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/rat_netwire.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/rat_njrat_regkeys.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/rat_oblique.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/rat_orcus.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/rat_parallax_mutex.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/rat_pcclient.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/rat_plugx_mutex.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/rat_poisonivy.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/rat_quasar.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/rat_ratsnif_mutex.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/rat_spynet.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/rat_trochilus.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/rat_venom.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/rat_warzone.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/rat_xpert.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/rat_xtreme_mutex.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/reads_self.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/recon_beacon.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/recon_checkip.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/recon_fingerprint.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/recon_programs.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/recon_systeminfo.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/recyclebin_access.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/remcos.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/remote_desktop.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/removes_zoneid_ads.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/script_downloader.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/secure_login_phish.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/securityxploded_modules.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/setsautoconfigurl.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/shifu_apis.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/sniffer_winpcap.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/spoofs_procname.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/spreading_autoruninf.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/stack_pivot.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/static_authenticode.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/static_dotnet_anomaly.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/static_java.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/static_pdf.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/static_pe_anomaly.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/static_rat_config.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/static_versioninfo_anomaly.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/stealth_childproc.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/stealth_file.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/stealth_hiddenextension.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/stealth_hiddenreg.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/stealth_hidenotifications.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/stealth_network.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/stealth_timelimit.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/stealth_webhistory.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/stealth_window.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/suricata_alert.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/sysinternals.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/tampers_etw.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/tampers_powershell_logging.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/targeted_flame.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/territorial_disputes_sigs.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/tinba_apis.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/trickbot_files.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/trickbot_mutex.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/trojan_fleercivet_mutex.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/trojan_lokibot_mutex.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/troldesh_apis.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/upatre_apis.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/ursnif_apis.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/user_enum.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/uses_adfind.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/vawtrak_apis.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/vawtrak_dll_apis.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/virus.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/virus_neshta.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/virus_renamer_mutex.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/volatility_sig.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/webmail_phish.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/webshell.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/whitelisting_bypass_dev_utils.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/whois_create.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/windows_utilities.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/wmi.py\" installed\r\nFile \"/opt/CAPEv2/modules/signatures/worm_allaple_mutex.py\" installed\r\n\r\nInstalling REPORTING\r\nFile \"/opt/CAPEv2/modules/reporting/__init__.py\" installed\r\nFile \"/opt/CAPEv2/modules/reporting/elasticsearchdb.py\" installed\r\nFile \"/opt/CAPEv2/modules/reporting/malheur.py\" installed\r\nFile \"/opt/CAPEv2/modules/reporting/moloch.py\" installed\r\nFile \"/opt/CAPEv2/modules/reporting/pcap2cert.py\" installed\r\n\r\nInstalling MACHINERY\r\nFile \"/opt/CAPEv2/modules/machinery/__init__.py\" installed\r\nFile \"/opt/CAPEv2/modules/machinery/aws.py\" installed\r\nFile \"/opt/CAPEv2/modules/machinery/kvmremote.py\" installed\r\nFile \"/opt/CAPEv2/modules/machinery/physical.py\" installed\r\n\r\nInstalling ANALYZER\r\nFile \"/opt/CAPEv2/analyzer/windows/bin/Procmon.exe\" installed\r\nFile \"/opt/CAPEv2/analyzer/windows/bin/procmon.pmc\" installed\r\nFile \"/opt/CAPEv2/analyzer/windows/modules/auxiliary/procmon.py\" installed\r\nFile \"/opt/CAPEv2/analyzer/windows/modules/auxiliary/sysmon.py\" installed\r\n\r\nInstalling DATA\r\nFile \"/opt/CAPEv2/data/malpedia.json\" installed\r\nFile \"/opt/CAPEv2/data/malpedia.py\" installed\r\nFile \"/opt/CAPEv2/data/mitre_attack.json\" installed\r\nFile \"/opt/CAPEv2/data/peutils/UserDB.TXT\" installed\r\nFile \"/opt/CAPEv2/data/procyon.jar\" installed\r\nFile \"/opt/CAPEv2/data/readme.md\" installed\r\nFile \"/opt/CAPEv2/data/trid/trid\" installed\r\nFile \"/opt/CAPEv2/data/trid/triddefs.trd\" installed\r\nFile \"/opt/CAPEv2/data/trid/tridupdate.py\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/AAR.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/AcidRain.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Adfind.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Adzok.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/AgentTeslaV2.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/AlienSpy.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Amadey.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Ap0calypse.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Arcom.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Aspire.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Aurora.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Avaddon.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Avalon.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/BACKSPACE.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/BackNet.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/BackOffLoader.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/BackOffPOS.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Baldr.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Bandook.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Bazar.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/BitterRAT.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/BlackNix.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/BlackShades.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/BlackshadesRAT.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/BlueBanana.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Bozok.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Buran.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/ChChes.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/ChaChaDDoS.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/ClientMesh.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Confucius_B.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Cotx_RAT.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/CryptoStealerGo.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Cutlet.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/CyberGate.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/DCRat.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/DTstealer.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/DarkComet.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/DarkRAT.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Dridex.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Echelon.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Ekans.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Enfal.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/EnigmaStub.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/EvilGrab.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Exaramel.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/FakeWMI.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/FirebirdRAT.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Formbook.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/GetCrypt.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/GoldenAxe.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/GoldenSpy.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Greame.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/GuLoader.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/HawkEye.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/HawkEyev9.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/HiddenVNC.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/HiddenWasp.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/HttpBrowser.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/ISRStealer.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Impacket.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Infinity.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/JavaDropper.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/JoeGo.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/KPortScan.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/KeyBase.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Kinsing.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/KoadicBAT.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/KoadicDOC.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/KoadicJS.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Konni.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/LaZagne.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Laturo.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/LimeRAT.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/LostDoor.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/LuminosityLink.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/LuxNet.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/M00nD3v.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Mangzamel.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/MassLogger.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Maze.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/MedusaLocker.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Megumin.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/MoDiRAT.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/NETEAGLE.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/NLBrute.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/NanoCore.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/NetWire.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Netwalker.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Nymaim.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/ObliqueRAT.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Orion.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Pandora.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Paradox.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Parallax.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/PatchWork.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Phoenix.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/PillowMint.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Plasma.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Plurox.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/PoisonIvy.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/PowerPool.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/PredatorPain.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/ProLock.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Punisher.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/PurpleWave.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/PyInstaller.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/PythoRAT.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/QRat.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/QuasarRAT.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Qulab.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/RDPWrap.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/REvil.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/RHttpCtrl.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Racoon.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/RagnarLocker.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/RedLeaf.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Redsip.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Responder.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Retefe.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Rietspoof.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Robbinhood.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/S05Kitty.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Sakula.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Sfile.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/ShadowTech.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/SmallNet.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/SmokeLoader.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/SpyGate.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Sub7Nation.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/T5000.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/TAIDOOR.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/TJKeylogger.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Tefosteal.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/TreasureHunter.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/UPX.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/VMProtectStub.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/VSSDestroy.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Vertex.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/VirusRat.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/W1RAT.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/WarzoneRAT.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/WellMess.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Windows_Credentials_Editor.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/XiaoBa.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/XpertRAT.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Xtreme.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/Zeppelin.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/adWind.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/jRat.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/kiwi_passwords.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/njRat.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/unrecom.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/CAPE/xRAT.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/binaries/Generic_Phishing_PDF.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/binaries/HeavensGate.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/binaries/LNK_Ruleset.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/binaries/OLEfile_in_CAD_FAS_LSP.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/binaries/Webshell_in_image.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/binaries/embedded.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/binaries/shellcodes.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/binaries/vmdetect.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/memory/Exploit_HT_Flash_Vars.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/memory/Exploit_HT_VRename.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/memory/adgholas.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/memory/angler.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/memory/astrum.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/memory/cve_2013_2551.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/memory/cve_2014_0515.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/memory/cve_2014_0569.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/memory/cve_2014_6332.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/memory/cve_2015_0016.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/memory/cve_2015_2419.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/memory/cve_2015_2545.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/memory/cve_2015_5122.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/memory/cve_2016_0189.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/memory/cve_2016_3298.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/memory/darkcomet.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/memory/dridex.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/memory/dyre.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/memory/eitest.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/memory/flash_exploits.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/memory/kazybot.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/memory/neutrino.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/memory/nuclear.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/memory/rig.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/memory/shellcodes.yar\" installed\r\nFile \"/opt/CAPEv2/data/yara/memory/sundown.yar\" installed\r\n\r\n\r\n\nComment: so just restart process to pick the changes, and you can reprocess the job with `python3 process.py -r ID_HERE`\nComment: So I tried that it and it doesn't restart the report, this is what happens. Tried with different switches as well. \r\n\r\n![image](https://user-images.githubusercontent.com/10760510/92935207-19ee7980-f40e-11ea-9e6a-03e37607a40d.png)\r\n\nComment: try -r 4 -d\nComment: **Output for that, I copy and pasted as HTML for easy reading**\r\n\r\n<pre>pywin32 is not installed (only is required if you want to use MS Excel)\r\n2020-09-11 14:07:47,951 [lib.cuckoo.core.plugins] DEBUG: Executing processing module &quot;CAPE&quot; on analysis at &quot;/opt/CAPEv2/storage/analyses/4&quot;\r\n2020-09-11 14:07:47,988 [lib.cuckoo.core.plugins] DEBUG: Executing processing module &quot;AnalysisInfo&quot; on analysis at &quot;/opt/CAPEv2/storage/analyses/4&quot;\r\n2020-09-11 14:07:48,003 [lib.cuckoo.core.plugins] DEBUG: Executing processing module &quot;BehaviorAnalysis&quot; on analysis at &quot;/opt/CAPEv2/storage/analyses/4&quot;\r\n2020-09-11 14:07:48,003 [lib.cuckoo.core.plugins] DEBUG: Executing processing module &quot;Curtain&quot; on analysis at &quot;/opt/CAPEv2/storage/analyses/4&quot;\r\n2020-09-11 14:07:48,004 [lib.cuckoo.core.plugins] DEBUG: Executing processing module &quot;Debug&quot; on analysis at &quot;/opt/CAPEv2/storage/analyses/4&quot;\r\n2020-09-11 14:07:48,005 [lib.cuckoo.core.plugins] DEBUG: Executing processing module &quot;Deduplicate&quot; on analysis at &quot;/opt/CAPEv2/storage/analyses/4&quot;\r\n2020-09-11 14:07:48,129 [lib.cuckoo.core.plugins] DEBUG: Executing processing module &quot;Dropped&quot; on analysis at &quot;/opt/CAPEv2/storage/analyses/4&quot;\r\n2020-09-11 14:07:48,130 [lib.cuckoo.core.plugins] DEBUG: Executing processing module &quot;NetworkAnalysis&quot; on analysis at &quot;/opt/CAPEv2/storage/analyses/4&quot;\r\n2020-09-11 14:07:48,275 [lib.cuckoo.core.plugins] DEBUG: Executing processing module &quot;ProcDump&quot; on analysis at &quot;/opt/CAPEv2/storage/analyses/4&quot;\r\n2020-09-11 14:07:48,276 [lib.cuckoo.core.plugins] DEBUG: Executing processing module &quot;Static&quot; on analysis at &quot;/opt/CAPEv2/storage/analyses/4&quot;\r\n2020-09-11 14:07:48,284 [lib.cuckoo.core.plugins] DEBUG: Executing processing module &quot;Strings&quot; on analysis at &quot;/opt/CAPEv2/storage/analyses/4&quot;\r\n2020-09-11 14:07:48,306 [lib.cuckoo.core.plugins] DEBUG: Executing processing module &quot;Suricata&quot; on analysis at &quot;/opt/CAPEv2/storage/analyses/4&quot;\r\n2020-09-11 14:07:48,326 [modules.processing.suricata] DEBUG: pcapfile list: {&apos;message&apos;: {&apos;count&apos;: 0, &apos;files&apos;: []}, &apos;return&apos;: &apos;OK&apos;} current pcap: {&apos;message&apos;: &apos;/opt/CAPEv2/storage/analyses/4/dump.pcap&apos;, &apos;return&apos;: &apos;OK&apos;}\r\n2020-09-11 14:07:53,327 [modules.processing.suricata] DEBUG: pcapfile list: {&apos;message&apos;: {&apos;count&apos;: 0, &apos;files&apos;: []}, &apos;return&apos;: &apos;OK&apos;} current pcap: {&apos;message&apos;: &apos;None&apos;, &apos;return&apos;: &apos;OK&apos;}\r\n2020-09-11 14:07:53,327 [modules.processing.suricata] DEBUG: Pcap not in list and not current pcap lets assume it&apos;s processed\r\n2020-09-11 14:07:53,330 [lib.cuckoo.core.plugins] DEBUG: Executing processing module &quot;TargetInfo&quot; on analysis at &quot;/opt/CAPEv2/storage/analyses/4&quot;\r\n2020-09-11 14:07:53,368 [lib.cuckoo.core.plugins] DEBUG: Executing processing module &quot;VirusTotal&quot; on analysis at &quot;/opt/CAPEv2/storage/analyses/4&quot;\r\n2020-09-11 14:07:53,603 [lib.cuckoo.core.plugins] DEBUG: Executing processing module &quot;ProcessMemory&quot; on analysis at &quot;/opt/CAPEv2/storage/analyses/4&quot;\r\n2020-09-11 14:07:53,611 [lib.cuckoo.core.plugins] DEBUG: Applying signature overlays for signatures: creates_exe\r\n2020-09-11 14:07:53,612 [lib.cuckoo.core.plugins] DEBUG: Running 340 evented signatures\r\n2020-09-11 14:07:53,612 [lib.cuckoo.core.plugins] DEBUG: \t |-- cape_detected_threat\r\n2020-09-11 14:07:53,612 [lib.cuckoo.core.plugins] DEBUG: \t |-- Compression\r\n2020-09-11 14:07:53,613 [lib.cuckoo.core.plugins] DEBUG: \t |-- Decryption\r\n2020-09-11 14:07:53,613 [lib.cuckoo.core.plugins] DEBUG: \t |-- Doppelganging\r\n2020-09-11 14:07:53,613 [lib.cuckoo.core.plugins] DEBUG: \t |-- EvilGrab\r\n2020-09-11 14:07:53,613 [lib.cuckoo.core.plugins] DEBUG: \t |-- InjectionInterProcess\r\n2020-09-11 14:07:53,613 [lib.cuckoo.core.plugins] DEBUG: \t |-- InjectionCreateRemoteThread\r\n2020-09-11 14:07:53,613 [lib.cuckoo.core.plugins] DEBUG: \t |-- InjectionProcessHollowing\r\n2020-09-11 14:07:53,613 [lib.cuckoo.core.plugins] DEBUG: \t |-- InjectionSetWindowLong\r\n2020-09-11 14:07:53,613 [lib.cuckoo.core.plugins] DEBUG: \t |-- PlugX\r\n2020-09-11 14:07:53,613 [lib.cuckoo.core.plugins] DEBUG: \t |-- RegBinary\r\n2020-09-11 14:07:53,613 [lib.cuckoo.core.plugins] DEBUG: \t |-- TransactedHollowing\r\n2020-09-11 14:07:53,613 [lib.cuckoo.core.plugins] DEBUG: \t |-- Unpacker\r\n2020-09-11 14:07:53,613 [lib.cuckoo.core.plugins] DEBUG: \t |-- accesses_mailslot\r\n2020-09-11 14:07:53,613 [lib.cuckoo.core.plugins] DEBUG: \t |-- accesses_netlogon_regkey\r\n2020-09-11 14:07:53,613 [lib.cuckoo.core.plugins] DEBUG: \t |-- accesses_sysvol\r\n2020-09-11 14:07:53,614 [lib.cuckoo.core.plugins] DEBUG: \t |-- alphacrypt_behavior\r\n2020-09-11 14:07:53,614 [lib.cuckoo.core.plugins] DEBUG: \t |-- andromeda_behavior\r\n2020-09-11 14:07:53,614 [lib.cuckoo.core.plugins] DEBUG: \t |-- anomalous_deletefile\r\n2020-09-11 14:07:53,614 [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_360_libs\r\n2020-09-11 14:07:53,614 [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_ahnlab_libs\r\n2020-09-11 14:07:53,614 [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_avast_libs\r\n2020-09-11 14:07:53,614 [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_bitdefender_libs\r\n2020-09-11 14:07:53,614 [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_bullgaurd_libs\r\n2020-09-11 14:07:53,614 [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_emsisoft_libs\r\n2020-09-11 14:07:53,614 [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_qurb_libs\r\n2020-09-11 14:07:53,614 [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_servicestop\r\n2020-09-11 14:07:53,614 [lib.cuckoo.core.plugins] DEBUG: \t |-- antidbg_windows\r\n2020-09-11 14:07:53,614 [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_addvectoredexceptionhandler\r\n2020-09-11 14:07:53,614 [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_apioverride_libs\r\n2020-09-11 14:07:53,615 [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_checkremotedebuggerpresent\r\n2020-09-11 14:07:53,615 [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_debugactiveprocess\r\n2020-09-11 14:07:53,615 [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_gettickcount\r\n2020-09-11 14:07:53,615 [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_guardpages\r\n2020-09-11 14:07:53,615 [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_ntcreatethreadex\r\n2020-09-11 14:07:53,615 [lib.cuckoo.core.plugins] DEBUG: \t |-- antiav_nthookengine_libs\r\n2020-09-11 14:07:53,615 [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_ntsetinformationthread\r\n2020-09-11 14:07:53,615 [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_outputdebugstring\r\n2020-09-11 14:07:53,615 [lib.cuckoo.core.plugins] DEBUG: \t |-- antidebug_setunhandledexceptionfilter\r\n2020-09-11 14:07:53,615 [lib.cuckoo.core.plugins] DEBUG: \t |-- antiemu_wine_func\r\n2020-09-11 14:07:53,615 [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_check_userdomain\r\n2020-09-11 14:07:53,615 [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_cuckoo\r\n2020-09-11 14:07:53,615 [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_cuckoocrash\r\n2020-09-11 14:07:53,615 [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_mouse_hook\r\n2020-09-11 14:07:53,616 [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_restart\r\n2020-09-11 14:07:53,616 [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_sboxie_libs\r\n2020-09-11 14:07:53,616 [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_sboxie_objects\r\n2020-09-11 14:07:53,616 [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_script_timer\r\n2020-09-11 14:07:53,616 [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_sleep\r\n2020-09-11 14:07:53,616 [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_sunbelt_libs\r\n2020-09-11 14:07:53,616 [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_suspend\r\n2020-09-11 14:07:53,616 [lib.cuckoo.core.plugins] DEBUG: \t |-- antisandbox_unhook\r\n2020-09-11 14:07:53,616 [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_directory_objects\r\n2020-09-11 14:07:53,616 [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_generic_disk\r\n2020-09-11 14:07:53,616 [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_generic_disk_setupapi\r\n2020-09-11 14:07:53,616 [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_generic_scsi\r\n2020-09-11 14:07:53,616 [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_generic_services\r\n2020-09-11 14:07:53,616 [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_vbox_libs\r\n2020-09-11 14:07:53,617 [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_vbox_provname\r\n2020-09-11 14:07:53,617 [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_vbox_window\r\n2020-09-11 14:07:53,617 [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_vmware_events\r\n2020-09-11 14:07:53,617 [lib.cuckoo.core.plugins] DEBUG: \t |-- antivm_vmware_libs\r\n2020-09-11 14:07:53,617 [lib.cuckoo.core.plugins] DEBUG: \t |-- api_spamming\r\n2020-09-11 14:07:53,617 [lib.cuckoo.core.plugins] DEBUG: \t |-- banker_prinimalka\r\n2020-09-11 14:07:53,617 [lib.cuckoo.core.plugins] DEBUG: \t |-- bcdedit_command\r\n2020-09-11 14:07:53,617 [lib.cuckoo.core.plugins] DEBUG: \t |-- betabot_behavior\r\n2020-09-11 14:07:53,617 [lib.cuckoo.core.plugins] DEBUG: \t |-- accesses_primary_patition\r\n2020-09-11 14:07:53,617 [lib.cuckoo.core.plugins] DEBUG: \t |-- bootkit\r\n2020-09-11 14:07:53,617 [lib.cuckoo.core.plugins] DEBUG: \t |-- direct_hdd_access\r\n2020-09-11 14:07:53,617 [lib.cuckoo.core.plugins] DEBUG: \t |-- physical_drive_access\r\n2020-09-11 14:07:53,617 [lib.cuckoo.core.plugins] DEBUG: \t |-- browser_needed\r\n2020-09-11 14:07:53,617 [lib.cuckoo.core.plugins] DEBUG: \t |-- browser_scanbox\r\n2020-09-11 14:07:53,618 [lib.cuckoo.core.plugins] DEBUG: \t |-- odbcconf_bypass\r\n2020-09-11 14:07:53,618 [lib.cuckoo.core.plugins] DEBUG: \t |-- regsvr32_squiblydoo_dll_load\r\n2020-09-11 14:07:53,618 [lib.cuckoo.core.plugins] DEBUG: \t |-- squiblydoo_bypass\r\n2020-09-11 14:07:53,618 [lib.cuckoo.core.plugins] DEBUG: \t |-- squiblytwo_bypass\r\n2020-09-11 14:07:53,618 [lib.cuckoo.core.plugins] DEBUG: \t |-- uac_bypass_cmstp\r\n2020-09-11 14:07:53,618 [lib.cuckoo.core.plugins] DEBUG: \t |-- uac_bypass_delegateexecute_sdclt\r\n2020-09-11 14:07:53,618 [lib.cuckoo.core.plugins] DEBUG: \t |-- uac_bypass_eventvwr\r\n2020-09-11 14:07:53,618 [lib.cuckoo.core.plugins] DEBUG: \t |-- uac_bypass_fodhelper\r\n2020-09-11 14:07:53,618 [lib.cuckoo.core.plugins] DEBUG: \t |-- cape_extracted_content\r\n2020-09-11 14:07:53,618 [lib.cuckoo.core.plugins] DEBUG: \t |-- cerber_behavior\r\n2020-09-11 14:07:53,618 [lib.cuckoo.core.plugins] DEBUG: \t |-- chimera_behavior\r\n2020-09-11 14:07:53,618 [lib.cuckoo.core.plugins] DEBUG: \t |-- clears_logs\r\n2020-09-11 14:07:53,618 [lib.cuckoo.core.plugins] DEBUG: \t |-- clickfraud_cookies\r\n2020-09-11 14:07:53,618 [lib.cuckoo.core.plugins] DEBUG: \t |-- clickfraud_volume\r\n2020-09-11 14:07:53,619 [lib.cuckoo.core.plugins] DEBUG: \t |-- cmdline_obfuscation\r\n2020-09-11 14:07:53,619 [lib.cuckoo.core.plugins] DEBUG: \t |-- cmdline_switches\r\n2020-09-11 14:07:53,619 [lib.cuckoo.core.plugins] DEBUG: \t |-- cmdline_terminate\r\n2020-09-11 14:07:53,619 [lib.cuckoo.core.plugins] DEBUG: \t |-- commandline_forfiles_wildcard\r\n2020-09-11 14:07:53,619 [lib.cuckoo.core.plugins] DEBUG: \t |-- cmdline_http_link\r\n2020-09-11 14:07:53,619 [lib.cuckoo.core.plugins] DEBUG: \t |-- commandline_long_string\r\n2020-09-11 14:07:53,619 [lib.cuckoo.core.plugins] DEBUG: \t |-- cmdline_reversed_http_link\r\n2020-09-11 14:07:53,619 [lib.cuckoo.core.plugins] DEBUG: \t |-- long_commandline\r\n2020-09-11 14:07:53,619 [lib.cuckoo.core.plugins] DEBUG: \t |-- powershell_renamed_commandline\r\n2020-09-11 14:07:53,619 [lib.cuckoo.core.plugins] DEBUG: \t |-- system_account_disovery_cmd\r\n2020-09-11 14:07:53,619 [lib.cuckoo.core.plugins] DEBUG: \t |-- system_info_disovery_cmd\r\n2020-09-11 14:07:53,619 [lib.cuckoo.core.plugins] DEBUG: \t |-- system_info_disovery_pwsh\r\n2020-09-11 14:07:53,619 [lib.cuckoo.core.plugins] DEBUG: \t |-- system_network_discovery_cmd\r\n2020-09-11 14:07:53,620 [lib.cuckoo.core.plugins] DEBUG: \t |-- system_network_discovery_pwsh\r\n2020-09-11 14:07:53,620 [lib.cuckoo.core.plugins] DEBUG: \t |-- system_user_disovery_cmd\r\n2020-09-11 14:07:53,620 [lib.cuckoo.core.plugins] DEBUG: \t |-- dotnet_code_compile\r\n2020-09-11 14:07:53,620 [lib.cuckoo.core.plugins] DEBUG: \t |-- creates_largekey\r\n2020-09-11 14:07:53,620 [lib.cuckoo.core.plugins] DEBUG: \t |-- creates_nullvalue\r\n2020-09-11 14:07:53,620 [lib.cuckoo.core.plugins] DEBUG: \t |-- file_credential_store_access\r\n2020-09-11 14:07:53,620 [lib.cuckoo.core.plugins] DEBUG: \t |-- lsass_credential_dumping\r\n2020-09-11 14:07:53,620 [lib.cuckoo.core.plugins] DEBUG: \t |-- registry_credential_dumping\r\n2020-09-11 14:07:53,620 [lib.cuckoo.core.plugins] DEBUG: \t |-- registry_credential_store_access\r\n2020-09-11 14:07:53,620 [lib.cuckoo.core.plugins] DEBUG: \t |-- registry_lsa_secrets_access\r\n2020-09-11 14:07:53,620 [lib.cuckoo.core.plugins] DEBUG: \t |-- critical_process\r\n2020-09-11 14:07:53,620 [lib.cuckoo.core.plugins] DEBUG: \t |-- cyrptomining_stratum_command\r\n2020-09-11 14:07:53,621 [lib.cuckoo.core.plugins] DEBUG: \t |-- cryptowall_behavior\r\n2020-09-11 14:07:53,621 [lib.cuckoo.core.plugins] DEBUG: \t |-- cve_2014_6332\r\n2020-09-11 14:07:53,621 [lib.cuckoo.core.plugins] DEBUG: \t |-- cve_2015_2419_js\r\n2020-09-11 14:07:53,621 [lib.cuckoo.core.plugins] DEBUG: \t |-- cve_2016-0189\r\n2020-09-11 14:07:53,621 [lib.cuckoo.core.plugins] DEBUG: \t |-- cve_2016_7200\r\n2020-09-11 14:07:53,621 [lib.cuckoo.core.plugins] DEBUG: \t |-- dead_connect\r\n2020-09-11 14:07:53,621 [lib.cuckoo.core.plugins] DEBUG: \t |-- dead_link\r\n2020-09-11 14:07:53,621 [lib.cuckoo.core.plugins] DEBUG: \t |-- debugs_self\r\n2020-09-11 14:07:53,621 [lib.cuckoo.core.plugins] DEBUG: \t |-- decoy_document\r\n2020-09-11 14:07:53,621 [lib.cuckoo.core.plugins] DEBUG: \t |-- decoy_image\r\n2020-09-11 14:07:53,621 [lib.cuckoo.core.plugins] DEBUG: \t |-- deletes_self\r\n2020-09-11 14:07:53,621 [lib.cuckoo.core.plugins] DEBUG: \t |-- deletes_shadow_copies\r\n2020-09-11 14:07:53,622 [lib.cuckoo.core.plugins] DEBUG: \t |-- deletes_system_state_backup\r\n2020-09-11 14:07:53,622 [lib.cuckoo.core.plugins] DEBUG: \t |-- dep_bypass\r\n2020-09-11 14:07:53,622 [lib.cuckoo.core.plugins] DEBUG: \t |-- dep_disable\r\n2020-09-11 14:07:53,622 [lib.cuckoo.core.plugins] DEBUG: \t |-- disables_backups\r\n2020-09-11 14:07:53,622 [lib.cuckoo.core.plugins] DEBUG: \t |-- disables_mappeddrives_autodisconnect\r\n2020-09-11 14:07:53,622 [lib.cuckoo.core.plugins] DEBUG: \t |-- disables_event_logging\r\n2020-09-11 14:07:53,622 [lib.cuckoo.core.plugins] DEBUG: \t |-- disables_spdy\r\n2020-09-11 14:07:53,622 [lib.cuckoo.core.plugins] DEBUG: \t |-- disables_wfp\r\n2020-09-11 14:07:53,622 [lib.cuckoo.core.plugins] DEBUG: \t |-- guloader_apis\r\n2020-09-11 14:07:53,622 [lib.cuckoo.core.plugins] DEBUG: \t |-- dridex_behavior\r\n2020-09-11 14:07:53,622 [lib.cuckoo.core.plugins] DEBUG: \t |-- driver_load\r\n2020-09-11 14:07:53,622 [lib.cuckoo.core.plugins] DEBUG: \t |-- exe_dropper_js\r\n2020-09-11 14:07:53,623 [lib.cuckoo.core.plugins] DEBUG: \t |-- dynamic_function_loading\r\n2020-09-11 14:07:53,623 [lib.cuckoo.core.plugins] DEBUG: \t |-- dyre_behavior\r\n2020-09-11 14:07:53,623 [lib.cuckoo.core.plugins] DEBUG: \t |-- angler_js\r\n2020-09-11 14:07:53,623 [lib.cuckoo.core.plugins] DEBUG: \t |-- gondad_js\r\n2020-09-11 14:07:53,623 [lib.cuckoo.core.plugins] DEBUG: \t |-- heapspray_js\r\n2020-09-11 14:07:53,623 [lib.cuckoo.core.plugins] DEBUG: \t |-- java_js\r\n2020-09-11 14:07:53,623 [lib.cuckoo.core.plugins] DEBUG: \t |-- Neutrino_js\r\n2020-09-11 14:07:53,623 [lib.cuckoo.core.plugins] DEBUG: \t |-- nuclear_js\r\n2020-09-11 14:07:53,623 [lib.cuckoo.core.plugins] DEBUG: \t |-- rig_js\r\n2020-09-11 14:07:53,623 [lib.cuckoo.core.plugins] DEBUG: \t |-- silverlight_js\r\n2020-09-11 14:07:53,623 [lib.cuckoo.core.plugins] DEBUG: \t |-- sundown_js\r\n2020-09-11 14:07:53,623 [lib.cuckoo.core.plugins] DEBUG: \t |-- virtualcheck_js\r\n2020-09-11 14:07:53,623 [lib.cuckoo.core.plugins] DEBUG: \t |-- encrypted_ioc\r\n2020-09-11 14:07:53,623 [lib.cuckoo.core.plugins] DEBUG: \t |-- exec_crash\r\n2020-09-11 14:07:53,624 [lib.cuckoo.core.plugins] DEBUG: \t |-- process_creation_suspicious_location\r\n2020-09-11 14:07:53,624 [lib.cuckoo.core.plugins] DEBUG: \t |-- exploit_getbasekerneladdress\r\n2020-09-11 14:07:53,624 [lib.cuckoo.core.plugins] DEBUG: \t |-- exploit_gethaldispatchtable\r\n2020-09-11 14:07:53,624 [lib.cuckoo.core.plugins] DEBUG: \t |-- exploit_heapspray\r\n2020-09-11 14:07:53,624 [lib.cuckoo.core.plugins] DEBUG: \t |-- koadic_apis\r\n2020-09-11 14:07:53,624 [lib.cuckoo.core.plugins] DEBUG: \t |-- koadic_network_activity\r\n2020-09-11 14:07:53,624 [lib.cuckoo.core.plugins] DEBUG: \t |-- generic_phish\r\n2020-09-11 14:07:53,624 [lib.cuckoo.core.plugins] DEBUG: \t |-- gootkit_behavior\r\n2020-09-11 14:07:53,624 [lib.cuckoo.core.plugins] DEBUG: \t |-- h1n1_behavior\r\n2020-09-11 14:07:53,624 [lib.cuckoo.core.plugins] DEBUG: \t |-- hancitor_behavior\r\n2020-09-11 14:07:53,624 [lib.cuckoo.core.plugins] DEBUG: \t |-- hawkeye_behavior\r\n2020-09-11 14:07:53,624 [lib.cuckoo.core.plugins] DEBUG: \t |-- http_request\r\n2020-09-11 14:07:53,624 [lib.cuckoo.core.plugins] DEBUG: \t |-- https_urls\r\n2020-09-11 14:07:53,624 [lib.cuckoo.core.plugins] DEBUG: \t |-- infostealer_browser\r\n2020-09-11 14:07:53,625 [lib.cuckoo.core.plugins] DEBUG: \t |-- infostealer_browser_password\r\n2020-09-11 14:07:53,625 [lib.cuckoo.core.plugins] DEBUG: \t |-- infostealer_keylog\r\n2020-09-11 14:07:53,625 [lib.cuckoo.core.plugins] DEBUG: \t |-- masslogger_artifacts\r\n2020-09-11 14:07:53,625 [lib.cuckoo.core.plugins] DEBUG: \t |-- masslogger_files\r\n2020-09-11 14:07:53,625 [lib.cuckoo.core.plugins] DEBUG: \t |-- masslogger_version\r\n2020-09-11 14:07:53,625 [lib.cuckoo.core.plugins] DEBUG: \t |-- purplewave_mutexes\r\n2020-09-11 14:07:53,625 [lib.cuckoo.core.plugins] DEBUG: \t |-- purplewave_network_activity\r\n2020-09-11 14:07:53,625 [lib.cuckoo.core.plugins] DEBUG: \t |-- Raccoon Behavior\r\n2020-09-11 14:07:53,625 [lib.cuckoo.core.plugins] DEBUG: \t |-- Vidar Behavior\r\n2020-09-11 14:07:53,625 [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_createremotethread\r\n2020-09-11 14:07:53,625 [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_explorer\r\n2020-09-11 14:07:53,625 [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_needextension\r\n2020-09-11 14:07:53,626 [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_network_traffic\r\n2020-09-11 14:07:53,626 [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_runpe\r\n2020-09-11 14:07:53,626 [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_rwx\r\n2020-09-11 14:07:53,626 [lib.cuckoo.core.plugins] DEBUG: \t |-- injection_themeinitapihook\r\n2020-09-11 14:07:53,626 [lib.cuckoo.core.plugins] DEBUG: \t |-- internet_dropper\r\n2020-09-11 14:07:53,626 [lib.cuckoo.core.plugins] DEBUG: \t |-- ipc_namedpipe\r\n2020-09-11 14:07:53,626 [lib.cuckoo.core.plugins] DEBUG: \t |-- ispy_behavior\r\n2020-09-11 14:07:53,626 [lib.cuckoo.core.plugins] DEBUG: \t |-- js_phish\r\n2020-09-11 14:07:53,626 [lib.cuckoo.core.plugins] DEBUG: \t |-- js_suspicious_redirect\r\n2020-09-11 14:07:53,626 [lib.cuckoo.core.plugins] DEBUG: \t |-- kazybot_behavior\r\n2020-09-11 14:07:53,626 [lib.cuckoo.core.plugins] DEBUG: \t |-- kelihos_behavior\r\n2020-09-11 14:07:53,626 [lib.cuckoo.core.plugins] DEBUG: \t |-- kibex_behavior\r\n2020-09-11 14:07:53,627 [lib.cuckoo.core.plugins] DEBUG: \t |-- kovter_behavior\r\n2020-09-11 14:07:53,627 [lib.cuckoo.core.plugins] DEBUG: \t |-- Locky_behavior\r\n2020-09-11 14:07:53,627 [lib.cuckoo.core.plugins] DEBUG: \t |-- malicious_dynamic_function_loading\r\n2020-09-11 14:07:53,627 [lib.cuckoo.core.plugins] DEBUG: \t |-- encrypt_data_agenttesla_http\r\n2020-09-11 14:07:53,627 [lib.cuckoo.core.plugins] DEBUG: \t |-- encrypt_data_agentteslat2_http\r\n2020-09-11 14:07:53,627 [lib.cuckoo.core.plugins] DEBUG: \t |-- encrypt_data_nanocore\r\n2020-09-11 14:07:53,627 [lib.cuckoo.core.plugins] DEBUG: \t |-- mimics_agent\r\n2020-09-11 14:07:53,627 [lib.cuckoo.core.plugins] DEBUG: \t |-- mimics_filetime\r\n2020-09-11 14:07:53,627 [lib.cuckoo.core.plugins] DEBUG: \t |-- masquerade_process_name\r\n2020-09-11 14:07:53,627 [lib.cuckoo.core.plugins] DEBUG: \t |-- mimikatz_modules\r\n2020-09-11 14:07:53,627 [lib.cuckoo.core.plugins] DEBUG: \t |-- modifies_desktop_wallpaper\r\n2020-09-11 14:07:53,628 [lib.cuckoo.core.plugins] DEBUG: \t |-- move_file_on_reboot\r\n2020-09-11 14:07:53,628 [lib.cuckoo.core.plugins] DEBUG: \t |-- multiple_useragents\r\n2020-09-11 14:07:53,628 [lib.cuckoo.core.plugins] DEBUG: \t |-- network_anomaly\r\n2020-09-11 14:07:53,628 [lib.cuckoo.core.plugins] DEBUG: \t |-- network_bind\r\n2020-09-11 14:07:53,628 [lib.cuckoo.core.plugins] DEBUG: \t |-- network_dns_blockchain\r\n2020-09-11 14:07:53,628 [lib.cuckoo.core.plugins] DEBUG: \t |-- network_dns_idn\r\n2020-09-11 14:07:53,628 [lib.cuckoo.core.plugins] DEBUG: \t |-- network_dns_opennic\r\n2020-09-11 14:07:53,628 [lib.cuckoo.core.plugins] DEBUG: \t |-- network_dns_suspicious_querytype\r\n2020-09-11 14:07:53,628 [lib.cuckoo.core.plugins] DEBUG: \t |-- network_dns_tunneling_request\r\n2020-09-11 14:07:53,628 [lib.cuckoo.core.plugins] DEBUG: \t |-- network_dns_doh_tls\r\n2020-09-11 14:07:53,628 [lib.cuckoo.core.plugins] DEBUG: \t |-- network_document_http\r\n2020-09-11 14:07:53,628 [lib.cuckoo.core.plugins] DEBUG: \t |-- encrypt_single_http_packet\r\n2020-09-11 14:07:53,628 [lib.cuckoo.core.plugins] DEBUG: \t |-- explorer_http\r\n2020-09-11 14:07:53,629 [lib.cuckoo.core.plugins] DEBUG: \t |-- network_tor\r\n2020-09-11 14:07:53,629 [lib.cuckoo.core.plugins] DEBUG: \t |-- nymaim_behavior\r\n2020-09-11 14:07:53,629 [lib.cuckoo.core.plugins] DEBUG: \t |-- office_addinloading\r\n2020-09-11 14:07:53,629 [lib.cuckoo.core.plugins] DEBUG: \t |-- office_com_load\r\n2020-09-11 14:07:53,629 [lib.cuckoo.core.plugins] DEBUG: \t |-- office_dotnet_load\r\n2020-09-11 14:07:53,629 [lib.cuckoo.core.plugins] DEBUG: \t |-- office_vb_load\r\n2020-09-11 14:07:53,629 [lib.cuckoo.core.plugins] DEBUG: \t |-- office_wmi_load\r\n2020-09-11 14:07:53,629 [lib.cuckoo.core.plugins] DEBUG: \t |-- office_cve2017_11882\r\n2020-09-11 14:07:53,629 [lib.cuckoo.core.plugins] DEBUG: \t |-- office_cve2017_11882_network\r\n2020-09-11 14:07:53,629 [lib.cuckoo.core.plugins] DEBUG: \t |-- office_flash_load\r\n2020-09-11 14:07:53,629 [lib.cuckoo.core.plugins] DEBUG: \t |-- office_postscript\r\n2020-09-11 14:07:53,629 [lib.cuckoo.core.plugins] DEBUG: \t |-- rtf_aslr_bypass\r\n2020-09-11 14:07:53,629 [lib.cuckoo.core.plugins] DEBUG: \t |-- rtf_anomaly_characterset\r\n2020-09-11 14:07:53,630 [lib.cuckoo.core.plugins] DEBUG: \t |-- rtf_anomaly_version\r\n2020-09-11 14:07:53,630 [lib.cuckoo.core.plugins] DEBUG: \t |-- rtf_embedded_content\r\n2020-09-11 14:07:53,630 [lib.cuckoo.core.plugins] DEBUG: \t |-- rtf_embedded_office_file\r\n2020-09-11 14:07:53,630 [lib.cuckoo.core.plugins] DEBUG: \t |-- rtf_exploit_static\r\n2020-09-11 14:07:53,630 [lib.cuckoo.core.plugins] DEBUG: \t |-- office_dde_command\r\n2020-09-11 14:07:53,630 [lib.cuckoo.core.plugins] DEBUG: \t |-- office_suspicious_processes\r\n2020-09-11 14:07:53,630 [lib.cuckoo.core.plugins] DEBUG: \t |-- office_write_exe\r\n2020-09-11 14:07:53,630 [lib.cuckoo.core.plugins] DEBUG: \t |-- packer_themida\r\n2020-09-11 14:07:53,630 [lib.cuckoo.core.plugins] DEBUG: \t |-- persistence_autorun\r\n2020-09-11 14:07:53,630 [lib.cuckoo.core.plugins] DEBUG: \t |-- persistence_autorun_tasks\r\n2020-09-11 14:07:53,630 [lib.cuckoo.core.plugins] DEBUG: \t |-- persistence_safeboot\r\n2020-09-11 14:07:53,630 [lib.cuckoo.core.plugins] DEBUG: \t |-- persistence_bootexecute\r\n2020-09-11 14:07:53,630 [lib.cuckoo.core.plugins] DEBUG: \t |-- persistence_registry_script\r\n2020-09-11 14:07:53,631 [lib.cuckoo.core.plugins] DEBUG: \t |-- persistence_ifeo\r\n2020-09-11 14:07:53,631 [lib.cuckoo.core.plugins] DEBUG: \t |-- persistence_slient_process_exit\r\n2020-09-11 14:07:53,631 [lib.cuckoo.core.plugins] DEBUG: \t |-- persistence_rdp_registry\r\n2020-09-11 14:07:53,631 [lib.cuckoo.core.plugins] DEBUG: \t |-- persistence_shim_database\r\n2020-09-11 14:07:53,631 [lib.cuckoo.core.plugins] DEBUG: \t |-- pony_behavior\r\n2020-09-11 14:07:53,631 [lib.cuckoo.core.plugins] DEBUG: \t |-- powershell_network_connection\r\n2020-09-11 14:07:53,631 [lib.cuckoo.core.plugins] DEBUG: \t |-- powershell_scriptblock_logging\r\n2020-09-11 14:07:53,631 [lib.cuckoo.core.plugins] DEBUG: \t |-- powershell_command_suspicious\r\n2020-09-11 14:07:53,631 [lib.cuckoo.core.plugins] DEBUG: \t |-- powershell_renamed\r\n2020-09-11 14:07:53,631 [lib.cuckoo.core.plugins] DEBUG: \t |-- powershell_reversed\r\n2020-09-11 14:07:53,631 [lib.cuckoo.core.plugins] DEBUG: \t |-- powershell_variable_obfuscation\r\n2020-09-11 14:07:53,631 [lib.cuckoo.core.plugins] DEBUG: \t |-- process_interest\r\n2020-09-11 14:07:53,631 [lib.cuckoo.core.plugins] DEBUG: \t |-- process_needed\r\n2020-09-11 14:07:53,632 [lib.cuckoo.core.plugins] DEBUG: \t |-- mass_data_encryption\r\n2020-09-11 14:07:53,632 [lib.cuckoo.core.plugins] DEBUG: \t |-- dharma_mutexes\r\n2020-09-11 14:07:53,632 [lib.cuckoo.core.plugins] DEBUG: \t |-- ransomware_dmalocker\r\n2020-09-11 14:07:53,632 [lib.cuckoo.core.plugins] DEBUG: \t |-- ransomware_file_modifications\r\n2020-09-11 14:07:53,632 [lib.cuckoo.core.plugins] DEBUG: \t |-- fonix_mutexes\r\n2020-09-11 14:07:53,632 [lib.cuckoo.core.plugins] DEBUG: \t |-- ransomware_message\r\n2020-09-11 14:07:53,632 [lib.cuckoo.core.plugins] DEBUG: \t |-- ransomware_message_multiple_locations\r\n2020-09-11 14:07:53,632 [lib.cuckoo.core.plugins] DEBUG: \t |-- nemty_network_activity\r\n2020-09-11 14:07:53,632 [lib.cuckoo.core.plugins] DEBUG: \t |-- nemty_note\r\n2020-09-11 14:07:53,632 [lib.cuckoo.core.plugins] DEBUG: \t |-- satan_mutexes\r\n2020-09-11 14:07:53,632 [lib.cuckoo.core.plugins] DEBUG: \t |-- snake_ransom_mutexes\r\n2020-09-11 14:07:53,632 [lib.cuckoo.core.plugins] DEBUG: \t |-- Sodinokibi Behavior\r\n2020-09-11 14:07:53,633 [lib.cuckoo.core.plugins] DEBUG: \t |-- stop_ransom_mutexes\r\n2020-09-11 14:07:53,633 [lib.cuckoo.core.plugins] DEBUG: \t |-- blackrat_apis\r\n2020-09-11 14:07:53,633 [lib.cuckoo.core.plugins] DEBUG: \t |-- blackrat_network_activity\r\n2020-09-11 14:07:53,633 [lib.cuckoo.core.plugins] DEBUG: \t |-- blackrat_registry_keys\r\n2020-09-11 14:07:53,633 [lib.cuckoo.core.plugins] DEBUG: \t |-- dcrat_behavior\r\n2020-09-11 14:07:53,633 [lib.cuckoo.core.plugins] DEBUG: \t |-- rat_luminosity\r\n2020-09-11 14:07:53,633 [lib.cuckoo.core.plugins] DEBUG: \t |-- rat_nanocore\r\n2020-09-11 14:07:53,633 [lib.cuckoo.core.plugins] DEBUG: \t |-- NewtWire Behavior\r\n2020-09-11 14:07:53,633 [lib.cuckoo.core.plugins] DEBUG: \t |-- obliquerat_network_activity\r\n2020-09-11 14:07:53,633 [lib.cuckoo.core.plugins] DEBUG: \t |-- OrcusRAT Behavior\r\n2020-09-11 14:07:53,633 [lib.cuckoo.core.plugins] DEBUG: \t |-- trochilusrat_APIs\r\n2020-09-11 14:07:53,633 [lib.cuckoo.core.plugins] DEBUG: \t |-- xpertrat_files\r\n2020-09-11 14:07:53,634 [lib.cuckoo.core.plugins] DEBUG: \t |-- xpertrat_mutexes\r\n2020-09-11 14:07:53,634 [lib.cuckoo.core.plugins] DEBUG: \t |-- reads_self\r\n2020-09-11 14:07:53,634 [lib.cuckoo.core.plugins] DEBUG: \t |-- recon_beacon\r\n2020-09-11 14:07:53,634 [lib.cuckoo.core.plugins] DEBUG: \t |-- recon_programs\r\n2020-09-11 14:07:53,634 [lib.cuckoo.core.plugins] DEBUG: \t |-- recon_systeminfo\r\n2020-09-11 14:07:53,634 [lib.cuckoo.core.plugins] DEBUG: \t |-- accesses_recyclebin\r\n2020-09-11 14:07:53,634 [lib.cuckoo.core.plugins] DEBUG: \t |-- uses_rdp_clip\r\n2020-09-11 14:07:53,634 [lib.cuckoo.core.plugins] DEBUG: \t |-- uses_remote_desktop_session\r\n2020-09-11 14:07:53,634 [lib.cuckoo.core.plugins] DEBUG: \t |-- removes_zoneid_ads\r\n2020-09-11 14:07:53,634 [lib.cuckoo.core.plugins] DEBUG: \t |-- script_created_process\r\n2020-09-11 14:07:53,634 [lib.cuckoo.core.plugins] DEBUG: \t |-- script_network_activity\r\n2020-09-11 14:07:53,634 [lib.cuckoo.core.plugins] DEBUG: \t |-- suspicious_js_script\r\n2020-09-11 14:07:53,634 [lib.cuckoo.core.plugins] DEBUG: \t |-- secure_login_phish\r\n2020-09-11 14:07:53,635 [lib.cuckoo.core.plugins] DEBUG: \t |-- securityxploded_modules\r\n2020-09-11 14:07:53,635 [lib.cuckoo.core.plugins] DEBUG: \t |-- sets_autoconfig_url\r\n2020-09-11 14:07:53,635 [lib.cuckoo.core.plugins] DEBUG: \t |-- shifu_behavior\r\n2020-09-11 14:07:53,635 [lib.cuckoo.core.plugins] DEBUG: \t |-- spoofs_procname\r\n2020-09-11 14:07:53,635 [lib.cuckoo.core.plugins] DEBUG: \t |-- stack_pivot\r\n2020-09-11 14:07:53,635 [lib.cuckoo.core.plugins] DEBUG: \t |-- stack_pivot_file_created\r\n2020-09-11 14:07:53,635 [lib.cuckoo.core.plugins] DEBUG: \t |-- stack_pivot_process_create\r\n2020-09-11 14:07:53,635 [lib.cuckoo.core.plugins] DEBUG: \t |-- stealth_childproc\r\n2020-09-11 14:07:53,635 [lib.cuckoo.core.plugins] DEBUG: \t |-- stealth_file\r\n2020-09-11 14:07:53,635 [lib.cuckoo.core.plugins] DEBUG: \t |-- stealth_network\r\n2020-09-11 14:07:53,635 [lib.cuckoo.core.plugins] DEBUG: \t |-- stealth_timeout\r\n2020-09-11 14:07:53,635 [lib.cuckoo.core.plugins] DEBUG: \t |-- stealth_window\r\n2020-09-11 14:07:53,636 [lib.cuckoo.core.plugins] DEBUG: \t |-- sysinternals_psexec\r\n2020-09-11 14:07:53,636 [lib.cuckoo.core.plugins] DEBUG: \t |-- sysinternals_tools\r\n2020-09-11 14:07:53,636 [lib.cuckoo.core.plugins] DEBUG: \t |-- territorial_disputes_sigs\r\n2020-09-11 14:07:53,636 [lib.cuckoo.core.plugins] DEBUG: \t |-- tinba_behavior\r\n2020-09-11 14:07:53,636 [lib.cuckoo.core.plugins] DEBUG: \t |-- TrickBotTaskDelete\r\n2020-09-11 14:07:53,636 [lib.cuckoo.core.plugins] DEBUG: \t |-- upatre_behavior\r\n2020-09-11 14:07:53,636 [lib.cuckoo.core.plugins] DEBUG: \t |-- ursnif_behavior\r\n2020-09-11 14:07:53,636 [lib.cuckoo.core.plugins] DEBUG: \t |-- user_enum\r\n2020-09-11 14:07:53,636 [lib.cuckoo.core.plugins] DEBUG: \t |-- uses_adfind\r\n2020-09-11 14:07:53,636 [lib.cuckoo.core.plugins] DEBUG: \t |-- vawtrak_behavior\r\n2020-09-11 14:07:53,636 [lib.cuckoo.core.plugins] DEBUG: \t |-- vawtrak_behavior\r\n2020-09-11 14:07:53,636 [lib.cuckoo.core.plugins] DEBUG: \t |-- virus\r\n2020-09-11 14:07:53,636 [lib.cuckoo.core.plugins] DEBUG: \t |-- neshta_files\r\n2020-09-11 14:07:53,637 [lib.cuckoo.core.plugins] DEBUG: \t |-- neshta_regkeys\r\n2020-09-11 14:07:53,637 [lib.cuckoo.core.plugins] DEBUG: \t |-- webmail_phish\r\n2020-09-11 14:07:53,637 [lib.cuckoo.core.plugins] DEBUG: \t |-- web_shell_processes\r\n2020-09-11 14:07:53,637 [lib.cuckoo.core.plugins] DEBUG: \t |-- persists_dev_util\r\n2020-09-11 14:07:53,637 [lib.cuckoo.core.plugins] DEBUG: \t |-- spawns_dev_util\r\n2020-09-11 14:07:53,637 [lib.cuckoo.core.plugins] DEBUG: \t |-- alters_windows_utility\r\n2020-09-11 14:07:53,637 [lib.cuckoo.core.plugins] DEBUG: \t |-- dotnet_csc_build\r\n2020-09-11 14:07:53,637 [lib.cuckoo.core.plugins] DEBUG: \t |-- multiple_explorer_instances\r\n2020-09-11 14:07:53,637 [lib.cuckoo.core.plugins] DEBUG: \t |-- overwrites_accessibility_utility\r\n2020-09-11 14:07:53,637 [lib.cuckoo.core.plugins] DEBUG: \t |-- script_tool_executed\r\n2020-09-11 14:07:53,637 [lib.cuckoo.core.plugins] DEBUG: \t |-- suspicious_certutil_use\r\n2020-09-11 14:07:53,637 [lib.cuckoo.core.plugins] DEBUG: \t |-- suspicious_command_tools\r\n2020-09-11 14:07:53,638 [lib.cuckoo.core.plugins] DEBUG: \t |-- suspicious_mpcmdrun_use\r\n2020-09-11 14:07:53,638 [lib.cuckoo.core.plugins] DEBUG: \t |-- suspicious_ping_use\r\n2020-09-11 14:07:53,638 [lib.cuckoo.core.plugins] DEBUG: \t |-- uses_windows_utilities\r\n2020-09-11 14:07:53,638 [lib.cuckoo.core.plugins] DEBUG: \t |-- uses_windows_utilities_appcmd\r\n2020-09-11 14:07:53,638 [lib.cuckoo.core.plugins] DEBUG: \t |-- uses_windows_utilities_csvde_ldifde\r\n2020-09-11 14:07:53,638 [lib.cuckoo.core.plugins] DEBUG: \t |-- uses_windows_utilities_cipher\r\n2020-09-11 14:07:53,638 [lib.cuckoo.core.plugins] DEBUG: \t |-- uses_windows_utilities_clickonce\r\n2020-09-11 14:07:53,638 [lib.cuckoo.core.plugins] DEBUG: \t |-- uses_windows_utilities_dsquery\r\n2020-09-11 14:07:53,638 [lib.cuckoo.core.plugins] DEBUG: \t |-- uses_windows_utilities_mode\r\n2020-09-11 14:07:53,638 [lib.cuckoo.core.plugins] DEBUG: \t |-- uses_windows_utilities_ntdsutil\r\n2020-09-11 14:07:53,638 [lib.cuckoo.core.plugins] DEBUG: \t |-- uses_windows_utilities_nltest\r\n2020-09-11 14:07:53,638 [lib.cuckoo.core.plugins] DEBUG: \t |-- uses_windows_utilities_to_create_scheduled_task\r\n2020-09-11 14:07:53,639 [lib.cuckoo.core.plugins] DEBUG: \t |-- wmic_command_suspicious\r\n2020-09-11 14:07:53,639 [lib.cuckoo.core.plugins] DEBUG: \t |-- scrcons_wmi_script_consumer\r\n2020-09-11 14:07:53,639 [lib.cuckoo.core.plugins] DEBUG: \t |-- wmi_create_process\r\n2020-09-11 14:07:53,639 [lib.cuckoo.core.plugins] DEBUG: \t `-- wmi_script_process\r\n[]\r\n2020-09-11 14:07:53,648 [lib.cuckoo.core.plugins] DEBUG: Running non-evented signatures\r\n2020-09-11 14:07:53,648 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;cape_detected_threat&quot;\r\n2020-09-11 14:07:53,648 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;Compression&quot;\r\n2020-09-11 14:07:53,648 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;Decryption&quot;\r\n2020-09-11 14:07:53,648 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;Doppelganging&quot;\r\n2020-09-11 14:07:53,649 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;EvilGrab&quot;\r\n2020-09-11 14:07:53,649 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;InjectionInterProcess&quot;\r\n2020-09-11 14:07:53,649 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;InjectionCreateRemoteThread&quot;\r\n2020-09-11 14:07:53,649 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;InjectionProcessHollowing&quot;\r\n2020-09-11 14:07:53,649 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;InjectionSetWindowLong&quot;\r\n2020-09-11 14:07:53,649 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;PlugX&quot;\r\n2020-09-11 14:07:53,649 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;RegBinary&quot;\r\n2020-09-11 14:07:53,649 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;TransactedHollowing&quot;\r\n2020-09-11 14:07:53,649 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;Unpacker&quot;\r\n2020-09-11 14:07:53,650 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;accesses_mailslot&quot;\r\n2020-09-11 14:07:53,650 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;accesses_netlogon_regkey&quot;\r\n2020-09-11 14:07:53,650 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;accesses_sysvol&quot;\r\n2020-09-11 14:07:53,650 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;alphacrypt_behavior&quot;\r\n2020-09-11 14:07:53,650 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;andromeda_behavior&quot;\r\n2020-09-11 14:07:53,650 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;anomalous_deletefile&quot;\r\n2020-09-11 14:07:53,650 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antianalysis_detectfile&quot;\r\n2020-09-11 14:07:53,652 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antianalysis_detectreg&quot;\r\n2020-09-11 14:07:53,653 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antiav_360_libs&quot;\r\n2020-09-11 14:07:53,653 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antiav_ahnlab_libs&quot;\r\n2020-09-11 14:07:53,653 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antiav_avast_libs&quot;\r\n2020-09-11 14:07:53,653 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antiav_bitdefender_libs&quot;\r\n2020-09-11 14:07:53,654 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antiav_bullgaurd_libs&quot;\r\n2020-09-11 14:07:53,654 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;modifies_attachment_manager&quot;\r\n2020-09-11 14:07:53,654 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antiav_detectfile&quot;\r\n2020-09-11 14:07:53,656 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antiav_detectreg&quot;\r\n2020-09-11 14:07:53,660 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antiav_emsisoft_libs&quot;\r\n2020-09-11 14:07:53,660 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antiav_qurb_libs&quot;\r\n2020-09-11 14:07:53,660 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antiav_servicestop&quot;\r\n2020-09-11 14:07:53,660 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antiav_srp&quot;\r\n2020-09-11 14:07:53,660 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antidbg_devices&quot;\r\n2020-09-11 14:07:53,661 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antidbg_windows&quot;\r\n2020-09-11 14:07:53,661 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antidebug_addvectoredexceptionhandler&quot;\r\n2020-09-11 14:07:53,661 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antiav_apioverride_libs&quot;\r\n2020-09-11 14:07:53,661 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antidebug_checkremotedebuggerpresent&quot;\r\n2020-09-11 14:07:53,661 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antidebug_debugactiveprocess&quot;\r\n2020-09-11 14:07:53,661 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antidebug_gettickcount&quot;\r\n2020-09-11 14:07:53,661 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antidebug_guardpages&quot;\r\n2020-09-11 14:07:53,661 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antidebug_ntcreatethreadex&quot;\r\n2020-09-11 14:07:53,662 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antiav_nthookengine_libs&quot;\r\n2020-09-11 14:07:53,662 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antidebug_ntsetinformationthread&quot;\r\n2020-09-11 14:07:53,662 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antidebug_outputdebugstring&quot;\r\n2020-09-11 14:07:53,662 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antidebug_setunhandledexceptionfilter&quot;\r\n2020-09-11 14:07:53,662 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antiemu_wine_reg&quot;\r\n2020-09-11 14:07:53,662 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antiemu_wine_func&quot;\r\n2020-09-11 14:07:53,662 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antisandbox_check_userdomain&quot;\r\n2020-09-11 14:07:53,662 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antisandbox_cuckoo&quot;\r\n2020-09-11 14:07:53,662 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antisandbox_cuckoo_files&quot;\r\n2020-09-11 14:07:53,663 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antisandbox_cuckoocrash&quot;\r\n2020-09-11 14:07:53,663 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antisandbox_fortinet_files&quot;\r\n2020-09-11 14:07:53,663 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antisandbox_joe_anubis_files&quot;\r\n2020-09-11 14:07:53,663 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antisandbox_mouse_hook&quot;\r\n2020-09-11 14:07:53,663 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antisandbox_restart&quot;\r\n2020-09-11 14:07:53,663 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antisandbox_sboxie_libs&quot;\r\n2020-09-11 14:07:53,663 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antisandbox_sboxie_mutex&quot;\r\n2020-09-11 14:07:53,663 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antisandbox_sboxie_objects&quot;\r\n2020-09-11 14:07:53,664 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antisandbox_script_timer&quot;\r\n2020-09-11 14:07:53,664 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antisandbox_sleep&quot;\r\n2020-09-11 14:07:53,664 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antisandbox_sunbelt_files&quot;\r\n2020-09-11 14:07:53,664 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antisandbox_sunbelt_libs&quot;\r\n2020-09-11 14:07:53,664 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antisandbox_suspend&quot;\r\n2020-09-11 14:07:53,664 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antisandbox_threattrack_files&quot;\r\n2020-09-11 14:07:53,664 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antisandbox_unhook&quot;\r\n2020-09-11 14:07:53,665 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antivirus_virustotal&quot;\r\n2020-09-11 14:07:53,665 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antivm_xen_keys&quot;\r\n2020-09-11 14:07:53,665 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antivm_directory_objects&quot;\r\n2020-09-11 14:07:53,665 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antivm_generic_bios&quot;\r\n2020-09-11 14:07:53,665 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antivm_generic_cpu&quot;\r\n2020-09-11 14:07:53,665 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antivm_generic_disk&quot;\r\n2020-09-11 14:07:53,666 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antivm_generic_disk_setupapi&quot;\r\n2020-09-11 14:07:53,666 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antivm_generic_diskreg&quot;\r\n2020-09-11 14:07:53,666 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antivm_generic_scsi&quot;\r\n2020-09-11 14:07:53,666 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antivm_generic_services&quot;\r\n2020-09-11 14:07:53,666 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antivm_generic_system&quot;\r\n2020-09-11 14:07:53,666 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antivm_hyperv_keys&quot;\r\n2020-09-11 14:07:53,667 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antivm_parallels_keys&quot;\r\n2020-09-11 14:07:53,667 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antivm_vbox_devices&quot;\r\n2020-09-11 14:07:53,667 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antivm_vbox_files&quot;\r\n2020-09-11 14:07:53,668 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antivm_vbox_keys&quot;\r\n2020-09-11 14:07:53,669 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antivm_vbox_libs&quot;\r\n2020-09-11 14:07:53,669 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antivm_vbox_provname&quot;\r\n2020-09-11 14:07:53,669 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antivm_vbox_window&quot;\r\n2020-09-11 14:07:53,669 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antivm_vmware_devices&quot;\r\n2020-09-11 14:07:53,669 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antivm_vmware_events&quot;\r\n2020-09-11 14:07:53,670 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antivm_vmware_files&quot;\r\n2020-09-11 14:07:53,670 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antivm_vmware_keys&quot;\r\n2020-09-11 14:07:53,670 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antivm_vmware_libs&quot;\r\n2020-09-11 14:07:53,671 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antivm_vmware_mutexes&quot;\r\n2020-09-11 14:07:53,671 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antivm_vpc_files&quot;\r\n2020-09-11 14:07:53,671 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antivm_vpc_keys&quot;\r\n2020-09-11 14:07:53,671 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antivm_vpc_mutex&quot;\r\n2020-09-11 14:07:53,672 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;antivm_xen_keys&quot;\r\n2020-09-11 14:07:53,672 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;api_spamming&quot;\r\n2020-09-11 14:07:53,672 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;ketrican_regkeys&quot;\r\n2020-09-11 14:07:53,672 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;okrum_mutexes&quot;\r\n2020-09-11 14:07:53,673 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;bad_certs&quot;\r\n2020-09-11 14:07:53,673 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;bad_ssl_certs&quot;\r\n2020-09-11 14:07:53,673 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;banker_cridex&quot;\r\n2020-09-11 14:07:53,673 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;geodo_banking_trojan&quot;\r\n2020-09-11 14:07:53,674 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;banker_prinimalka&quot;\r\n2020-09-11 14:07:53,675 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;banker_spyeye_mutexes&quot;\r\n2020-09-11 14:07:53,675 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;banker_zeus_mutex&quot;\r\n2020-09-11 14:07:53,675 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;banker_zeus_p2p&quot;\r\n2020-09-11 14:07:53,676 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;banker_zeus_url&quot;\r\n2020-09-11 14:07:53,676 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;bcdedit_command&quot;\r\n2020-09-11 14:07:53,676 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;betabot_behavior&quot;\r\n2020-09-11 14:07:53,676 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;bitcoin_opencl&quot;\r\n2020-09-11 14:07:53,676 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;accesses_primary_patition&quot;\r\n2020-09-11 14:07:53,676 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;bootkit&quot;\r\n2020-09-11 14:07:53,677 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;direct_hdd_access&quot;\r\n2020-09-11 14:07:53,677 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;physical_drive_access&quot;\r\n2020-09-11 14:07:53,677 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;bot_athenahttp&quot;\r\n2020-09-11 14:07:53,677 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;bot_dirtjumper&quot;\r\n2020-09-11 14:07:53,677 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;bot_drive&quot;\r\n2020-09-11 14:07:53,678 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;bot_drive2&quot;\r\n2020-09-11 14:07:53,678 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;bot_madness&quot;\r\n2020-09-11 14:07:53,678 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;bot_russkill&quot;\r\n2020-09-11 14:07:53,678 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;browser_addon&quot;\r\n2020-09-11 14:07:53,679 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;browser_helper_object&quot;\r\n2020-09-11 14:07:53,679 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;browser_needed&quot;\r\n2020-09-11 14:07:53,679 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;modify_proxy&quot;\r\n2020-09-11 14:07:53,680 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;browser_scanbox&quot;\r\n2020-09-11 14:07:53,680 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;browser_security&quot;\r\n2020-09-11 14:07:53,681 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;browser_startpage&quot;\r\n2020-09-11 14:07:53,681 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;odbcconf_bypass&quot;\r\n2020-09-11 14:07:53,681 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;regsvr32_squiblydoo_dll_load&quot;\r\n2020-09-11 14:07:53,681 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;squiblydoo_bypass&quot;\r\n2020-09-11 14:07:53,682 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;squiblytwo_bypass&quot;\r\n2020-09-11 14:07:53,682 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;bypass_firewall&quot;\r\n2020-09-11 14:07:53,682 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;uac_bypass_cmstp&quot;\r\n2020-09-11 14:07:53,682 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;uac_bypass_delegateexecute_sdclt&quot;\r\n2020-09-11 14:07:53,682 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;uac_bypass_eventvwr&quot;\r\n2020-09-11 14:07:53,682 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;uac_bypass_fodhelper&quot;\r\n2020-09-11 14:07:53,683 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;cape_extracted_content&quot;\r\n2020-09-11 14:07:53,683 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;carberp_mutex&quot;\r\n2020-09-11 14:07:53,683 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;cerber_behavior&quot;\r\n2020-09-11 14:07:53,683 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;chimera_behavior&quot;\r\n2020-09-11 14:07:53,683 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;clamav&quot;\r\n2020-09-11 14:07:53,683 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;clears_logs&quot;\r\n2020-09-11 14:07:53,684 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;clickfraud_cookies&quot;\r\n2020-09-11 14:07:53,684 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;clickfraud_volume&quot;\r\n2020-09-11 14:07:53,684 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;cmdline_obfuscation&quot;\r\n2020-09-11 14:07:53,684 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;cmdline_switches&quot;\r\n2020-09-11 14:07:53,684 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;cmdline_terminate&quot;\r\n2020-09-11 14:07:53,684 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;commandline_forfiles_wildcard&quot;\r\n2020-09-11 14:07:53,684 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;cmdline_http_link&quot;\r\n2020-09-11 14:07:53,684 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;commandline_long_string&quot;\r\n2020-09-11 14:07:53,684 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;cmdline_reversed_http_link&quot;\r\n2020-09-11 14:07:53,685 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;long_commandline&quot;\r\n2020-09-11 14:07:53,685 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;powershell_renamed_commandline&quot;\r\n2020-09-11 14:07:53,685 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;codelux_behavior&quot;\r\n2020-09-11 14:07:53,685 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;system_account_disovery_cmd&quot;\r\n2020-09-11 14:07:53,685 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;system_info_disovery_cmd&quot;\r\n2020-09-11 14:07:53,685 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;system_info_disovery_pwsh&quot;\r\n2020-09-11 14:07:53,686 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;system_network_discovery_cmd&quot;\r\n2020-09-11 14:07:53,686 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;system_network_discovery_pwsh&quot;\r\n2020-09-11 14:07:53,686 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;system_user_disovery_cmd&quot;\r\n2020-09-11 14:07:53,686 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;dotnet_code_compile&quot;\r\n2020-09-11 14:07:53,686 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;copies_self&quot;\r\n2020-09-11 14:07:53,686 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;creates_largekey&quot;\r\n2020-09-11 14:07:53,686 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;creates_nullvalue&quot;\r\n2020-09-11 14:07:53,686 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;enables_wdigest&quot;\r\n2020-09-11 14:07:53,686 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;file_credential_store_access&quot;\r\n2020-09-11 14:07:53,687 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;lsass_credential_dumping&quot;\r\n2020-09-11 14:07:53,687 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;registry_credential_dumping&quot;\r\n2020-09-11 14:07:53,687 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;registry_credential_store_access&quot;\r\n2020-09-11 14:07:53,687 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;registry_lsa_secrets_access&quot;\r\n2020-09-11 14:07:53,687 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;critical_process&quot;\r\n2020-09-11 14:07:53,687 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;cyrptomining_stratum_command&quot;\r\n2020-09-11 14:07:53,688 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;cryptopool_domains&quot;\r\n2020-09-11 14:07:53,688 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;cryptowall_behavior&quot;\r\n2020-09-11 14:07:53,688 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;cve_2014_6332&quot;\r\n2020-09-11 14:07:53,688 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;cve_2015_2419_js&quot;\r\n2020-09-11 14:07:53,688 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;cve_2016-0189&quot;\r\n2020-09-11 14:07:53,688 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;cve_2016_7200&quot;\r\n2020-09-11 14:07:53,688 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;cypherit_mutexes&quot;\r\n2020-09-11 14:07:53,688 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;darkcomet_regkeys&quot;\r\n2020-09-11 14:07:53,689 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;dead_connect&quot;\r\n2020-09-11 14:07:53,689 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;dead_link&quot;\r\n2020-09-11 14:07:53,689 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;debugs_self&quot;\r\n2020-09-11 14:07:53,689 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;decoy_document&quot;\r\n2020-09-11 14:07:53,689 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;decoy_image&quot;\r\n2020-09-11 14:07:53,689 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;deepfreeze_mutex&quot;\r\n2020-09-11 14:07:53,689 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;deletes_self&quot;\r\n2020-09-11 14:07:53,690 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;deletes_shadow_copies&quot;\r\n2020-09-11 14:07:53,690 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;deletes_system_state_backup&quot;\r\n2020-09-11 14:07:53,690 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;dep_bypass&quot;\r\n2020-09-11 14:07:53,690 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;dep_disable&quot;\r\n2020-09-11 14:07:53,690 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;disables_app_launch&quot;\r\n2020-09-11 14:07:53,690 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;disables_backups&quot;\r\n2020-09-11 14:07:53,691 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;disables_browser_warn&quot;\r\n2020-09-11 14:07:53,692 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;disables_mappeddrives_autodisconnect&quot;\r\n2020-09-11 14:07:53,692 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;disables_event_logging&quot;\r\n2020-09-11 14:07:53,692 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;disable_folder_options&quot;\r\n2020-09-11 14:07:53,693 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;disables_notificationcenter&quot;\r\n2020-09-11 14:07:53,693 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;disable_run_command&quot;\r\n2020-09-11 14:07:53,693 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;disables_smartscreen&quot;\r\n2020-09-11 14:07:53,693 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;disables_spdy&quot;\r\n2020-09-11 14:07:53,694 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;disables_system_restore&quot;\r\n2020-09-11 14:07:53,694 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;disables_uac&quot;\r\n2020-09-11 14:07:53,694 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;disables_wer&quot;\r\n2020-09-11 14:07:53,694 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;disables_wfp&quot;\r\n2020-09-11 14:07:53,694 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;disables_windows_defender&quot;\r\n2020-09-11 14:07:53,695 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;disables_windows_defender_logging&quot;\r\n2020-09-11 14:07:53,695 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;removes_windows_defender_contextmenu&quot;\r\n2020-09-11 14:07:53,696 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;windows_defender_powershell&quot;\r\n2020-09-11 14:07:53,696 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;disables_windowsupdate&quot;\r\n2020-09-11 14:07:53,696 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;disables_winfirewall&quot;\r\n2020-09-11 14:07:53,696 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;andromut_mutexes&quot;\r\n2020-09-11 14:07:53,697 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;downloader_cabby&quot;\r\n2020-09-11 14:07:53,697 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;guloader_apis&quot;\r\n2020-09-11 14:07:53,697 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;phorpiex_mutexes&quot;\r\n2020-09-11 14:07:53,697 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;protonbot_mutexes&quot;\r\n2020-09-11 14:07:53,697 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;dridex_behavior&quot;\r\n2020-09-11 14:07:53,697 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;driver_load&quot;\r\n2020-09-11 14:07:53,698 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;dropper&quot;\r\n2020-09-11 14:07:53,698 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;exe_dropper_js&quot;\r\n2020-09-11 14:07:53,698 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;dynamic_function_loading&quot;\r\n2020-09-11 14:07:53,698 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;dyre_behavior&quot;\r\n2020-09-11 14:07:53,698 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;angler_js&quot;\r\n2020-09-11 14:07:53,698 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;gondad_js&quot;\r\n2020-09-11 14:07:53,698 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;heapspray_js&quot;\r\n2020-09-11 14:07:53,698 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;java_js&quot;\r\n2020-09-11 14:07:53,698 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;Neutrino_js&quot;\r\n2020-09-11 14:07:53,698 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;nuclear_js&quot;\r\n2020-09-11 14:07:53,698 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;rig_js&quot;\r\n2020-09-11 14:07:53,699 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;silverlight_js&quot;\r\n2020-09-11 14:07:53,699 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;sundown_js&quot;\r\n2020-09-11 14:07:53,699 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;virtualcheck_js&quot;\r\n2020-09-11 14:07:53,699 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;encrypted_ioc&quot;\r\n2020-09-11 14:07:53,699 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;excel4_macro_urls&quot;\r\n2020-09-11 14:07:53,699 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;exec_crash&quot;\r\n2020-09-11 14:07:53,699 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;process_creation_suspicious_location&quot;\r\n2020-09-11 14:07:53,699 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;exploit_getbasekerneladdress&quot;\r\n2020-09-11 14:07:53,699 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;exploit_gethaldispatchtable&quot;\r\n2020-09-11 14:07:53,699 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;exploit_heapspray&quot;\r\n2020-09-11 14:07:53,700 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;koadic_apis&quot;\r\n2020-09-11 14:07:53,700 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;koadic_network_activity&quot;\r\n2020-09-11 14:07:53,701 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;family_proxyback&quot;\r\n2020-09-11 14:07:53,701 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;mapped_drives_uac&quot;\r\n2020-09-11 14:07:53,701 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;generic_phish&quot;\r\n2020-09-11 14:07:53,702 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;gootkit_behavior&quot;\r\n2020-09-11 14:07:53,702 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;h1n1_behavior&quot;\r\n2020-09-11 14:07:53,702 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;hancitor_behavior&quot;\r\n2020-09-11 14:07:53,702 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;hawkeye_behavior&quot;\r\n2020-09-11 14:07:53,702 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;http_request&quot;\r\n2020-09-11 14:07:53,702 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;https_urls&quot;\r\n2020-09-11 14:07:53,702 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;arkei_files&quot;\r\n2020-09-11 14:07:53,702 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;azorult_mutexes&quot;\r\n2020-09-11 14:07:53,703 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;infostealer_bitcoin&quot;\r\n2020-09-11 14:07:53,704 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;infostealer_browser&quot;\r\n2020-09-11 14:07:53,705 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;infostealer_browser_password&quot;\r\n2020-09-11 14:07:53,705 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;infostealer_ftp&quot;\r\n2020-09-11 14:07:53,707 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;infostealer_im&quot;\r\n2020-09-11 14:07:53,708 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;infostealer_keylog&quot;\r\n2020-09-11 14:07:53,708 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;infostealer_mail&quot;\r\n2020-09-11 14:07:53,708 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;masslogger_artifacts&quot;\r\n2020-09-11 14:07:53,708 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;masslogger_files&quot;\r\n2020-09-11 14:07:53,708 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;masslogger_version&quot;\r\n2020-09-11 14:07:53,709 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;purplewave_mutexes&quot;\r\n2020-09-11 14:07:53,709 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;purplewave_network_activity&quot;\r\n2020-09-11 14:07:53,709 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;qulab_files&quot;\r\n2020-09-11 14:07:53,709 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;qulab_mutexes&quot;\r\n2020-09-11 14:07:53,710 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;Raccoon Behavior&quot;\r\n2020-09-11 14:07:53,710 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;Vidar Behavior&quot;\r\n2020-09-11 14:07:53,710 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;injection_createremotethread&quot;\r\n2020-09-11 14:07:53,710 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;injection_explorer&quot;\r\n2020-09-11 14:07:53,710 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;injection_needextension&quot;\r\n2020-09-11 14:07:53,710 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;injection_network_traffic&quot;\r\n2020-09-11 14:07:53,710 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;injection_runpe&quot;\r\n2020-09-11 14:07:53,710 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;injection_rwx&quot;\r\n2020-09-11 14:07:53,710 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;injection_themeinitapihook&quot;\r\n2020-09-11 14:07:53,710 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;internet_dropper&quot;\r\n2020-09-11 14:07:53,711 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;ipc_namedpipe&quot;\r\n2020-09-11 14:07:53,711 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;ispy_behavior&quot;\r\n2020-09-11 14:07:53,711 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;js_phish&quot;\r\n2020-09-11 14:07:53,711 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;js_suspicious_redirect&quot;\r\n2020-09-11 14:07:53,711 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;kazybot_behavior&quot;\r\n2020-09-11 14:07:53,711 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;kelihos_behavior&quot;\r\n2020-09-11 14:07:53,711 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;kibex_behavior&quot;\r\n2020-09-11 14:07:53,711 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;kovter_behavior&quot;\r\n2020-09-11 14:07:53,711 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;bot_kraken_mutexes&quot;\r\n2020-09-11 14:07:53,711 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;locker_regedit&quot;\r\n2020-09-11 14:07:53,712 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;locker_taskmgr&quot;\r\n2020-09-11 14:07:53,712 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;Locky_behavior&quot;\r\n2020-09-11 14:07:53,712 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;malicious_dynamic_function_loading&quot;\r\n2020-09-11 14:07:53,712 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;encrypt_data_agenttesla_http&quot;\r\n2020-09-11 14:07:53,712 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;encrypt_data_agentteslat2_http&quot;\r\n2020-09-11 14:07:53,712 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;encrypt_data_nanocore&quot;\r\n2020-09-11 14:07:53,712 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;ie_martian_children&quot;\r\n2020-09-11 14:07:53,713 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;office_martian_children&quot;\r\n2020-09-11 14:07:53,714 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;mimics_agent&quot;\r\n2020-09-11 14:07:53,714 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;mimics_extension&quot;\r\n2020-09-11 14:07:53,714 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;mimics_filetime&quot;\r\n2020-09-11 14:07:53,714 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;mimics_icon&quot;\r\n2020-09-11 14:07:53,715 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;masquerade_process_name&quot;\r\n2020-09-11 14:07:53,715 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;mimikatz_modules&quot;\r\n2020-09-11 14:07:53,715 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;modifies_certs&quot;\r\n2020-09-11 14:07:53,716 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;modifies_hostfile&quot;\r\n2020-09-11 14:07:53,716 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;modify_security_center_warnings&quot;\r\n2020-09-11 14:07:53,716 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;modify_uac_prompt&quot;\r\n2020-09-11 14:07:53,717 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;modifies_desktop_wallpaper&quot;\r\n2020-09-11 14:07:53,717 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;move_file_on_reboot&quot;\r\n2020-09-11 14:07:53,717 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;multiple_useragents&quot;\r\n2020-09-11 14:07:53,717 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;network_anomaly&quot;\r\n2020-09-11 14:07:53,717 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;network_bind&quot;\r\n2020-09-11 14:07:53,717 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;network_country_distribution&quot;\r\n2020-09-11 14:07:53,717 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;network_multiple_direct_ip_connections&quot;\r\n2020-09-11 14:07:53,718 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;network_cnc_http&quot;\r\n2020-09-11 14:07:53,718 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;network_dga&quot;\r\n2020-09-11 14:07:53,718 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;network_dns_blockchain&quot;\r\n2020-09-11 14:07:53,718 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;network_dns_idn&quot;\r\n2020-09-11 14:07:53,718 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;network_dns_opennic&quot;\r\n2020-09-11 14:07:53,718 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;network_dns_suspicious_querytype&quot;\r\n2020-09-11 14:07:53,718 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;network_dns_tunneling_request&quot;\r\n2020-09-11 14:07:53,718 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;network_dns_doh_tls&quot;\r\n2020-09-11 14:07:53,719 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;network_document_http&quot;\r\n2020-09-11 14:07:53,719 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;encrypt_single_http_packet&quot;\r\n2020-09-11 14:07:53,719 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;network_excessive_udp&quot;\r\n2020-09-11 14:07:53,719 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;explorer_http&quot;\r\n2020-09-11 14:07:53,719 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;network_http&quot;\r\n2020-09-11 14:07:53,719 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;network_icmp&quot;\r\n2020-09-11 14:07:53,719 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;network_irc&quot;\r\n2020-09-11 14:07:53,719 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;network_smtp&quot;\r\n2020-09-11 14:07:53,720 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;network_temp_file_storage&quot;\r\n2020-09-11 14:07:53,720 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;network_tor&quot;\r\n2020-09-11 14:07:53,720 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;network_tor_service&quot;\r\n2020-09-11 14:07:53,720 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;network_torgateway&quot;\r\n2020-09-11 14:07:53,720 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;nymaim_behavior&quot;\r\n2020-09-11 14:07:53,720 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;office_code_page&quot;\r\n2020-09-11 14:07:53,720 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;office_addinloading&quot;\r\n2020-09-11 14:07:53,720 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;office_com_load&quot;\r\n2020-09-11 14:07:53,721 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;office_dotnet_load&quot;\r\n2020-09-11 14:07:53,721 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;office_perfkey&quot;\r\n2020-09-11 14:07:53,721 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;office_vb_load&quot;\r\n2020-09-11 14:07:53,721 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;office_wmi_load&quot;\r\n2020-09-11 14:07:53,721 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;office_cve2017_11882&quot;\r\n2020-09-11 14:07:53,721 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;office_cve2017_11882_network&quot;\r\n2020-09-11 14:07:53,721 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;office_flash_load&quot;\r\n2020-09-11 14:07:53,721 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;office_postscript&quot;\r\n2020-09-11 14:07:53,722 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;office_macro&quot;\r\n2020-09-11 14:07:53,722 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;office_macro_autoexecution&quot;\r\n2020-09-11 14:07:53,722 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;office_macro_ioc&quot;\r\n2020-09-11 14:07:53,722 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;office_macro_malicious_prediction&quot;\r\n2020-09-11 14:07:53,722 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;office_macro_suspicious&quot;\r\n2020-09-11 14:07:53,722 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;rtf_aslr_bypass&quot;\r\n2020-09-11 14:07:53,722 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;rtf_anomaly_characterset&quot;\r\n2020-09-11 14:07:53,722 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;rtf_anomaly_version&quot;\r\n2020-09-11 14:07:53,722 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;rtf_embedded_content&quot;\r\n2020-09-11 14:07:53,723 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;rtf_embedded_office_file&quot;\r\n2020-09-11 14:07:53,723 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;rtf_exploit_static&quot;\r\n2020-09-11 14:07:53,723 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;office_security&quot;\r\n2020-09-11 14:07:53,723 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;office_anomalous_feature&quot;\r\n2020-09-11 14:07:53,723 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;office_dde_command&quot;\r\n2020-09-11 14:07:53,723 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;office_suspicious_processes&quot;\r\n2020-09-11 14:07:53,723 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;office_write_exe&quot;\r\n2020-09-11 14:07:53,723 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;origin_langid&quot;\r\n2020-09-11 14:07:53,723 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;origin_resource_langid&quot;\r\n2020-09-11 14:07:53,724 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;packer_unknown_pe_section_name&quot;\r\n2020-09-11 14:07:53,724 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;packer_armadillo_mutex&quot;\r\n2020-09-11 14:07:53,724 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;packer_armadillo_regkey&quot;\r\n2020-09-11 14:07:53,724 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;packer_aspack&quot;\r\n2020-09-11 14:07:53,724 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;packer_aspirecrypt&quot;\r\n2020-09-11 14:07:53,724 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;packer_bedsprotector&quot;\r\n2020-09-11 14:07:53,724 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;packer_confuser&quot;\r\n2020-09-11 14:07:53,724 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;packer_enigma&quot;\r\n2020-09-11 14:07:53,724 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;packer_entropy&quot;\r\n2020-09-11 14:07:53,725 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;packer_mpress&quot;\r\n2020-09-11 14:07:53,725 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;packer_nate&quot;\r\n2020-09-11 14:07:53,725 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;packer_nspack&quot;\r\n2020-09-11 14:07:53,725 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;packer_smartassembly&quot;\r\n2020-09-11 14:07:53,725 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;packer_spices&quot;\r\n2020-09-11 14:07:53,725 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;packer_themida&quot;\r\n2020-09-11 14:07:53,725 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;packer_themida&quot;\r\n2020-09-11 14:07:53,725 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;packer_titan&quot;\r\n2020-09-11 14:07:53,725 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;packer_upx&quot;\r\n2020-09-11 14:07:53,725 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;packer_vmprotect&quot;\r\n2020-09-11 14:07:53,725 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;packer_yoda&quot;\r\n2020-09-11 14:07:53,726 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;pdf_annot_urls&quot;\r\n2020-09-11 14:07:53,726 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;persistence_ads&quot;\r\n2020-09-11 14:07:53,726 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;persistence_autorun&quot;\r\n2020-09-11 14:07:53,726 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;persistence_autorun_tasks&quot;\r\n2020-09-11 14:07:53,726 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;persistence_safeboot&quot;\r\n2020-09-11 14:07:53,726 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;persistence_bootexecute&quot;\r\n2020-09-11 14:07:53,726 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;persistence_registry_script&quot;\r\n2020-09-11 14:07:53,726 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;persistence_ifeo&quot;\r\n2020-09-11 14:07:53,727 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;persistence_slient_process_exit&quot;\r\n2020-09-11 14:07:53,727 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;persistence_rdp_registry&quot;\r\n2020-09-11 14:07:53,727 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;persistence_service&quot;\r\n2020-09-11 14:07:53,727 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;persistence_shim_database&quot;\r\n2020-09-11 14:07:53,728 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;polymorphic&quot;\r\n2020-09-11 14:07:53,728 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;pony_behavior&quot;\r\n2020-09-11 14:07:53,728 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;powerpool_mutexes&quot;\r\n2020-09-11 14:07:53,728 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;powershell_network_connection&quot;\r\n2020-09-11 14:07:53,728 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;powershell_scriptblock_logging&quot;\r\n2020-09-11 14:07:53,728 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;powershell_command_suspicious&quot;\r\n2020-09-11 14:07:53,728 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;powershell_renamed&quot;\r\n2020-09-11 14:07:53,729 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;powershell_reversed&quot;\r\n2020-09-11 14:07:53,729 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;powershell_variable_obfuscation&quot;\r\n2020-09-11 14:07:53,729 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;punch_plus_plus_pcres&quot;\r\n2020-09-11 14:07:53,729 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;prevents_safeboot&quot;\r\n2020-09-11 14:07:53,729 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;process_interest&quot;\r\n2020-09-11 14:07:53,729 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;process_needed&quot;\r\n2020-09-11 14:07:53,729 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;procmem_yara&quot;\r\n2020-09-11 14:07:53,729 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;mass_data_encryption&quot;\r\n2020-09-11 14:07:53,730 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;cryptomix_mutexes&quot;\r\n2020-09-11 14:07:53,730 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;dharma_mutexes&quot;\r\n2020-09-11 14:07:53,730 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;ransomware_dmalocker&quot;\r\n2020-09-11 14:07:53,730 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;ransomware_extensions&quot;\r\n2020-09-11 14:07:53,734 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;ransomware_file_modifications&quot;\r\n2020-09-11 14:07:53,734 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;ransomware_files&quot;\r\n2020-09-11 14:07:53,739 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;fonix_mutexes&quot;\r\n2020-09-11 14:07:53,740 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;gandcrab_mutexes&quot;\r\n2020-09-11 14:07:53,740 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;germanwiper_mutexes&quot;\r\n2020-09-11 14:07:53,740 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;medusalocker_mutexes&quot;\r\n2020-09-11 14:07:53,740 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;medusalocker_regkeys&quot;\r\n2020-09-11 14:07:53,741 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;ransomware_message&quot;\r\n2020-09-11 14:07:53,741 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;ransomware_message_multiple_locations&quot;\r\n2020-09-11 14:07:53,741 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;nemty_mutexes&quot;\r\n2020-09-11 14:07:53,741 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;nemty_network_activity&quot;\r\n2020-09-11 14:07:53,741 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;nemty_note&quot;\r\n2020-09-11 14:07:53,741 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;nemty_regkeys&quot;\r\n2020-09-11 14:07:53,742 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;ransomware_radamant&quot;\r\n2020-09-11 14:07:53,742 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;ransomware_recyclebin&quot;\r\n2020-09-11 14:07:53,742 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;revil_mutexes&quot;\r\n2020-09-11 14:07:53,743 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;satan_mutexes&quot;\r\n2020-09-11 14:07:53,743 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;snake_ransom_mutexes&quot;\r\n2020-09-11 14:07:53,744 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;Sodinokibi Behavior&quot;\r\n2020-09-11 14:07:53,744 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;stop_ransom_mutexes&quot;\r\n2020-09-11 14:07:53,744 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;rat_beebus_mutexes&quot;\r\n2020-09-11 14:07:53,744 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;blackrat_apis&quot;\r\n2020-09-11 14:07:53,744 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;blackrat_mutexes&quot;\r\n2020-09-11 14:07:53,745 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;blackrat_network_activity&quot;\r\n2020-09-11 14:07:53,746 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;blackrat_registry_keys&quot;\r\n2020-09-11 14:07:53,746 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;dcrat_behavior&quot;\r\n2020-09-11 14:07:53,746 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;dcrat_files&quot;\r\n2020-09-11 14:07:53,746 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;dcrat_mutexes&quot;\r\n2020-09-11 14:07:53,747 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;rat_fynloski_mutexes&quot;\r\n2020-09-11 14:07:53,747 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;karagany_system_event_objects&quot;\r\n2020-09-11 14:07:53,747 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;karagany_files&quot;\r\n2020-09-11 14:07:53,747 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;limerat_mutexes&quot;\r\n2020-09-11 14:07:53,747 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;limerat_regkeys&quot;\r\n2020-09-11 14:07:53,747 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;rat_luminosity&quot;\r\n2020-09-11 14:07:53,748 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;modirat_bheavior&quot;\r\n2020-09-11 14:07:53,752 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;rat_nanocore&quot;\r\n2020-09-11 14:07:53,752 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;NewtWire Behavior&quot;\r\n2020-09-11 14:07:53,752 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;njrat_regkeys&quot;\r\n2020-09-11 14:07:53,752 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;obliquerat_files&quot;\r\n2020-09-11 14:07:53,752 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;obliquerat_mutexes&quot;\r\n2020-09-11 14:07:53,753 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;obliquerat_network_activity&quot;\r\n2020-09-11 14:07:53,753 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;OrcusRAT Behavior&quot;\r\n2020-09-11 14:07:53,753 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;parallax_mutexes&quot;\r\n2020-09-11 14:07:53,753 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;rat_pcclient&quot;\r\n2020-09-11 14:07:53,753 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;rat_plugx_mutexes&quot;\r\n2020-09-11 14:07:53,753 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;rat_poisonivy_mutexes&quot;\r\n2020-09-11 14:07:53,754 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;rat_quasar_mutexes&quot;\r\n2020-09-11 14:07:53,754 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;ratsnif_mutexes&quot;\r\n2020-09-11 14:07:53,754 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;rat_spynet&quot;\r\n2020-09-11 14:07:53,754 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;trochilusrat_APIs&quot;\r\n2020-09-11 14:07:53,754 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;venomrat_mutexes&quot;\r\n2020-09-11 14:07:53,755 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;warzonerat_files&quot;\r\n2020-09-11 14:07:53,755 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;warzonerat_regkeys&quot;\r\n2020-09-11 14:07:53,755 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;xpertrat_files&quot;\r\n2020-09-11 14:07:53,755 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;xpertrat_mutexes&quot;\r\n2020-09-11 14:07:53,756 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;rat_xtreme_mutexes&quot;\r\n2020-09-11 14:07:53,756 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;reads_self&quot;\r\n2020-09-11 14:07:53,756 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;recon_beacon&quot;\r\n2020-09-11 14:07:53,756 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;recon_checkip&quot;\r\n2020-09-11 14:07:53,756 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;recon_fingerprint&quot;\r\n2020-09-11 14:07:53,757 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;recon_programs&quot;\r\n2020-09-11 14:07:53,757 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;recon_systeminfo&quot;\r\n2020-09-11 14:07:53,757 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;accesses_recyclebin&quot;\r\n2020-09-11 14:07:53,757 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;remcos_files&quot;\r\n2020-09-11 14:07:53,757 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;remcos_mutexes&quot;\r\n2020-09-11 14:07:53,758 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;remcos_regkeys&quot;\r\n2020-09-11 14:07:53,758 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;uses_rdp_clip&quot;\r\n2020-09-11 14:07:53,758 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;uses_remote_desktop_session&quot;\r\n2020-09-11 14:07:53,758 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;removes_zoneid_ads&quot;\r\n2020-09-11 14:07:53,758 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;script_created_process&quot;\r\n2020-09-11 14:07:53,758 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;script_network_activity&quot;\r\n2020-09-11 14:07:53,758 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;suspicious_js_script&quot;\r\n2020-09-11 14:07:53,758 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;secure_login_phish&quot;\r\n2020-09-11 14:07:53,758 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;securityxploded_modules&quot;\r\n2020-09-11 14:07:53,759 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;sets_autoconfig_url&quot;\r\n2020-09-11 14:07:53,759 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;shifu_behavior&quot;\r\n2020-09-11 14:07:53,759 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;sniffer_winpcap&quot;\r\n2020-09-11 14:07:53,759 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;spoofs_procname&quot;\r\n2020-09-11 14:07:53,759 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;spreading_autoruninf&quot;\r\n2020-09-11 14:07:53,759 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;stack_pivot&quot;\r\n2020-09-11 14:07:53,759 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;stack_pivot_file_created&quot;\r\n2020-09-11 14:07:53,759 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;stack_pivot_process_create&quot;\r\n2020-09-11 14:07:53,760 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;static_authenticode&quot;\r\n2020-09-11 14:07:53,760 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;invalid_authenticode_signature&quot;\r\n2020-09-11 14:07:53,760 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;static_dotnet_anomaly&quot;\r\n2020-09-11 14:07:53,760 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;static_java&quot;\r\n2020-09-11 14:07:53,760 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;static_pdf&quot;\r\n2020-09-11 14:07:53,760 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;static_pe_anomaly&quot;\r\n2020-09-11 14:07:53,760 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;pe_compile_timestomping&quot;\r\n2020-09-11 14:07:53,760 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;static_pe_pdbpath&quot;\r\n2020-09-11 14:07:53,760 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;static_rat_config&quot;\r\n2020-09-11 14:07:53,760 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;static_versioninfo_anomaly&quot;\r\n2020-09-11 14:07:53,761 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;stealth_childproc&quot;\r\n2020-09-11 14:07:53,761 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;stealth_file&quot;\r\n2020-09-11 14:07:53,761 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;stealth_hidden_extension&quot;\r\n2020-09-11 14:07:53,761 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;stealth_hiddenreg&quot;\r\n2020-09-11 14:07:53,761 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;stealth_hide_notifications&quot;\r\n2020-09-11 14:07:53,762 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;stealth_network&quot;\r\n2020-09-11 14:07:53,762 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;stealth_timeout&quot;\r\n2020-09-11 14:07:53,762 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;stealth_webhistory&quot;\r\n2020-09-11 14:07:53,762 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;stealth_window&quot;\r\n2020-09-11 14:07:53,762 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;suricata_alert&quot;\r\n2020-09-11 14:07:53,762 [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature &quot;suricata_alert&quot;\r\n2020-09-11 14:07:53,763 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;sysinternals_psexec&quot;\r\n2020-09-11 14:07:53,763 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;sysinternals_tools&quot;\r\n2020-09-11 14:07:53,763 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;tampers_etw&quot;\r\n2020-09-11 14:07:53,763 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;tampers_powershell_logging&quot;\r\n2020-09-11 14:07:53,764 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;targeted_flame&quot;\r\n2020-09-11 14:07:53,764 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;territorial_disputes_sigs&quot;\r\n2020-09-11 14:07:53,766 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;tinba_behavior&quot;\r\n2020-09-11 14:07:53,766 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;TrickBotTaskDelete&quot;\r\n2020-09-11 14:07:53,766 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;trickbot_mutex&quot;\r\n2020-09-11 14:07:53,766 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;fleercivet_mutex&quot;\r\n2020-09-11 14:07:53,766 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;lokibot_mutexes&quot;\r\n2020-09-11 14:07:53,767 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;troldesh_behavior&quot;\r\n2020-09-11 14:07:53,767 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;upatre_behavior&quot;\r\n2020-09-11 14:07:53,767 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;ursnif_behavior&quot;\r\n2020-09-11 14:07:53,767 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;user_enum&quot;\r\n2020-09-11 14:07:53,767 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;uses_adfind&quot;\r\n2020-09-11 14:07:53,768 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;vawtrak_behavior&quot;\r\n2020-09-11 14:07:53,768 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;vawtrak_behavior&quot;\r\n2020-09-11 14:07:53,768 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;virus&quot;\r\n2020-09-11 14:07:53,768 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;neshta_files&quot;\r\n2020-09-11 14:07:53,768 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;neshta_mutexes&quot;\r\n2020-09-11 14:07:53,768 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;neshta_regkeys&quot;\r\n2020-09-11 14:07:53,768 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;renamer_mutexes&quot;\r\n2020-09-11 14:07:53,768 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;volatility_devicetree_1&quot;\r\n2020-09-11 14:07:53,769 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;volatility_handles_1&quot;\r\n2020-09-11 14:07:53,769 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;volatility_ldrmodules_1&quot;\r\n2020-09-11 14:07:53,769 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;volatility_ldrmodules_2&quot;\r\n2020-09-11 14:07:53,769 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;volatility_malfind_1&quot;\r\n2020-09-11 14:07:53,769 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;volatility_malfind_2&quot;\r\n2020-09-11 14:07:53,769 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;volatility_modscan_1&quot;\r\n2020-09-11 14:07:53,769 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;volatility_svcscan_1&quot;\r\n2020-09-11 14:07:53,769 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;volatility_svcscan_2&quot;\r\n2020-09-11 14:07:53,769 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;volatility_svcscan_3&quot;\r\n2020-09-11 14:07:53,770 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;webmail_phish&quot;\r\n2020-09-11 14:07:53,770 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;owa_web_shell_files&quot;\r\n2020-09-11 14:07:53,770 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;web_shell_files&quot;\r\n2020-09-11 14:07:53,770 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;web_shell_processes&quot;\r\n2020-09-11 14:07:53,770 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;persists_dev_util&quot;\r\n2020-09-11 14:07:53,771 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;spawns_dev_util&quot;\r\n2020-09-11 14:07:53,771 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;whois_create&quot;\r\n2020-09-11 14:07:53,771 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;alters_windows_utility&quot;\r\n2020-09-11 14:07:53,771 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;dotnet_csc_build&quot;\r\n2020-09-11 14:07:53,772 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;multiple_explorer_instances&quot;\r\n2020-09-11 14:07:53,772 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;overwrites_accessibility_utility&quot;\r\n2020-09-11 14:07:53,772 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;script_tool_executed&quot;\r\n2020-09-11 14:07:53,772 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;suspicious_certutil_use&quot;\r\n2020-09-11 14:07:53,772 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;suspicious_command_tools&quot;\r\n2020-09-11 14:07:53,772 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;suspicious_mpcmdrun_use&quot;\r\n2020-09-11 14:07:53,772 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;suspicious_ping_use&quot;\r\n2020-09-11 14:07:53,772 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;uses_windows_utilities&quot;\r\n2020-09-11 14:07:53,773 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;uses_windows_utilities_appcmd&quot;\r\n2020-09-11 14:07:53,773 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;uses_windows_utilities_csvde_ldifde&quot;\r\n2020-09-11 14:07:53,773 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;uses_windows_utilities_cipher&quot;\r\n2020-09-11 14:07:53,773 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;uses_windows_utilities_clickonce&quot;\r\n2020-09-11 14:07:53,773 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;uses_windows_utilities_dsquery&quot;\r\n2020-09-11 14:07:53,773 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;uses_windows_utilities_mode&quot;\r\n2020-09-11 14:07:53,773 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;uses_windows_utilities_ntdsutil&quot;\r\n2020-09-11 14:07:53,773 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;uses_windows_utilities_nltest&quot;\r\n2020-09-11 14:07:53,773 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;uses_windows_utilities_to_create_scheduled_task&quot;\r\n2020-09-11 14:07:53,773 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;wmic_command_suspicious&quot;\r\n2020-09-11 14:07:53,773 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;scrcons_wmi_script_consumer&quot;\r\n2020-09-11 14:07:53,774 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;wmi_create_process&quot;\r\n2020-09-11 14:07:53,774 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;wmi_script_process&quot;\r\n2020-09-11 14:07:53,774 [lib.cuckoo.core.plugins] DEBUG: Running signature &quot;allaple_mutexes&quot;\r\n2020-09-11 14:07:53,777 [root] DEBUG: Deleting analysis data for Task 4\r\n2020-09-11 14:07:53,783 [root] DEBUG: Deleted previous MongoDB data for Task 4\r\n2020-09-11 14:07:53,788 [lib.cuckoo.core.plugins] DEBUG: Executing reporting module &quot;BinGraph&quot;\r\n2020-09-11 14:07:53,788 [lib.cuckoo.core.plugins] DEBUG: Executing reporting module &quot;Compression&quot;\r\n2020-09-11 14:07:53,789 [lib.cuckoo.core.plugins] DEBUG: Executing reporting module &quot;JsonDump&quot;\r\n2020-09-11 14:07:53,871 [lib.cuckoo.core.plugins] DEBUG: Executing reporting module &quot;MITRE_TTPS&quot;\r\n2020-09-11 14:07:53,871 [lib.cuckoo.core.plugins] DEBUG: Executing reporting module &quot;PCAP2CERT&quot;\r\n2020-09-11 14:07:53,885 [lib.cuckoo.core.plugins] DEBUG: Executing reporting module &quot;ReportHTML&quot;\r\n2020-09-11 14:07:54,233 [lib.cuckoo.core.plugins] DEBUG: Executing reporting module &quot;SubmitCAPE&quot;\r\n2020-09-11 14:07:54,237 [lib.cuckoo.core.plugins] DEBUG: Executing reporting module &quot;MongoDB&quot;\r\n</pre>\nComment: so as you can see you have all 340 signatures, that it doesn't match your stuff, means tht it didn't executed correctly or we don't have siganture for your need, you need to write it by yourself?\nComment: That's my issue, it doesn't extract the file from the .eml. I keep having to extract it from the email myself and then throw it into CAPE because otherwise it won't execute. It only executes the .eml and not the attachment within it. \nComment: Could it be that the file is a zip or rar inside of the email? \nComment: yep, then everything works as expected, it can be any type of archive inside, sflock will handle that, but we don't extract it for you, you are welcome to codoe that part of code ;) \nComment: So just so I am clear on this, sflock will extract the zip from the email, but won't send it to CAPE? \nComment: no, sflock extract files froom zip or other archives, but you need to extract it, you can extend sflock to add support for emails\nComment: Extend it as in add code to do that? \nComment: exactly\nComment: So let's say hypothetically I come up with a script to do this, how would I incorporate this into CAPE to run when a .eml file is detected? And also how would I share it with the community for people to use assuming it worked flawlessly? \nComment: Integrate it to sflock, is super easy, the rest would b3 almost done, you\nhave code how to parse eml/msg in my vt repo\n\nEl vie., 11 sept. 2020 16:46, powerade661 <notifications@github.com>\nescribi\u00f3:\n\n> So let's say hypothetically I come up with a script to do this, how would\n> I incorporate this into CAPE to run when a .eml file is detected? And also\n> how would I share it with the community for people to use assuming it\n> worked flawlessly?\n>\n> \u2014\n> You are receiving this because you modified the open/close state.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/266#issuecomment-691139204>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH37AIBTJUDKCHCJSHWLSFIZ5JANCNFSM4RHLMRWQ>\n> .\n>\n",
+  "Title: python script does not Behavioral Analysis\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nSubmit python script and try Behavioral Analysis\r\n\r\n# Current Behavior\r\n\r\n python script does not work while Behavioral Analysis\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Submit test python script via API to CAPE instance.\r\n2. finish report and look but  Behavioral Analysis report empty.\r\n3. look /opt/CAPEv2/storage/analyses/ID/analysis.log.\r\n \"lib.common.exceptions.CuckooError: The package \"modules.packages.python\" start function raised an error: Unable to find any Python executable.\" error exsist.\r\n\r\n## Context\r\n\r\nUsing machinery VirtualBox\r\nHost machine: ubuntu 20.04.1 LTS\r\nGuest machine: Windows 10  (python3.8 installed and set Environment variable)\r\n\r\n## Failure Logs\r\n\r\nAnalyzer log:\r\n```\r\n(venv-cape) root@cape:/opt/CAPEv2/storage/analyses/154# cat analysis.log \r\n2020-09-08 17:56:12,347 [root] INFO: Date set to: 20200909T00:54:36, timeout set to: 200\r\n2020-09-09 00:54:36,026 [root] DEBUG: Starting analyzer from: C:\\tmpwlzn1b50\r\n2020-09-09 00:54:36,026 [root] DEBUG: Storing results at: C:\\iunkQHR\r\n2020-09-09 00:54:36,026 [root] DEBUG: Pipe server name: \\\\.\\PIPE\\LcpgxE\r\n2020-09-09 00:54:36,026 [root] DEBUG: Python path: C:\\Users\\IEUser\\AppData\\Local\\Programs\\Python\\Python38-32\r\n2020-09-09 00:54:36,026 [root] DEBUG: No analysis package specified, trying to detect it automagically.\r\n2020-09-09 00:54:36,026 [root] INFO: Automatically selected analysis package \"python\"\r\n2020-09-09 00:54:36,026 [root] DEBUG: Trying to import analysis package \"python\"...\r\n2020-09-09 00:54:36,069 [root] DEBUG: Imported analysis package \"python\".\r\n2020-09-09 00:54:36,069 [root] DEBUG: Trying to initialize analysis package \"python\"...\r\n2020-09-09 00:54:36,069 [root] DEBUG: Initialized analysis package \"python\".\r\n2020-09-09 00:54:36,243 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.browser\"...\r\n2020-09-09 00:54:36,297 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.browser\".\r\n2020-09-09 00:54:36,297 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.curtain\"...\r\n2020-09-09 00:54:36,327 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.curtain\".\r\n2020-09-09 00:54:36,327 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.digisig\"...\r\n2020-09-09 00:54:36,509 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.digisig\".\r\n2020-09-09 00:54:36,509 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.disguise\"...\r\n2020-09-09 00:54:36,544 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.disguise\".\r\n2020-09-09 00:54:36,544 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.human\"...\r\n2020-09-09 00:54:36,648 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.human\".\r\n2020-09-09 00:54:36,648 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.procmon\"...\r\n2020-09-09 00:54:36,713 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.procmon\".\r\n2020-09-09 00:54:36,713 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.screenshots\"...\r\n2020-09-09 00:54:36,745 [modules.auxiliary.screenshots] DEBUG: Importing 'time'\r\n2020-09-09 00:54:36,745 [modules.auxiliary.screenshots] DEBUG: Importing 'StringIO'\r\n2020-09-09 00:54:36,745 [modules.auxiliary.screenshots] DEBUG: Importing 'Thread'\r\n2020-09-09 00:54:36,745 [modules.auxiliary.screenshots] DEBUG: Importing 'Auxiliary'\r\n2020-09-09 00:54:36,745 [modules.auxiliary.screenshots] DEBUG: Importing 'NetlogFile'\r\n2020-09-09 00:54:36,745 [modules.auxiliary.screenshots] DEBUG: Importing 'Screenshot'\r\n2020-09-09 00:54:36,787 [lib.api.screenshot] DEBUG: Importing 'math'\r\n2020-09-09 00:54:36,787 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageChops'\r\n2020-09-09 00:54:37,203 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageGrab'\r\n2020-09-09 00:54:37,230 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageDraw'\r\n2020-09-09 00:54:37,230 [modules.auxiliary.screenshots] DEBUG: Imports OK\r\n2020-09-09 00:54:37,230 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.screenshots\".\r\n2020-09-09 00:54:37,230 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.sysmon\"...\r\n2020-09-09 00:54:37,230 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.sysmon\".\r\n2020-09-09 00:54:37,230 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.usage\"...\r\n2020-09-09 00:54:37,289 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.usage\".\r\n2020-09-09 00:54:37,289 [root] DEBUG: Trying to initialize auxiliary module \"Browser\"...\r\n2020-09-09 00:54:37,289 [root] DEBUG: Initialized auxiliary module \"Browser\".\r\n2020-09-09 00:54:37,289 [root] DEBUG: Trying to start auxiliary module \"Browser\"...\r\n2020-09-09 00:54:37,289 [root] DEBUG: Started auxiliary module Browser\r\n2020-09-09 00:54:37,289 [root] DEBUG: Trying to initialize auxiliary module \"Curtain\"...\r\n2020-09-09 00:54:37,289 [root] DEBUG: Initialized auxiliary module \"Curtain\".\r\n2020-09-09 00:54:37,289 [root] DEBUG: Trying to start auxiliary module \"Curtain\"...\r\n2020-09-09 00:54:37,289 [root] DEBUG: Started auxiliary module Curtain\r\n2020-09-09 00:54:37,289 [root] DEBUG: Trying to initialize auxiliary module \"DigiSig\"...\r\n2020-09-09 00:54:37,289 [root] DEBUG: Initialized auxiliary module \"DigiSig\".\r\n2020-09-09 00:54:37,289 [root] DEBUG: Trying to start auxiliary module \"DigiSig\"...\r\n2020-09-09 00:54:37,289 [modules.auxiliary.digisig] DEBUG: Checking for a digital signature.\r\n2020-09-09 00:54:37,825 [modules.auxiliary.digisig] DEBUG: File format not recognized.\r\n2020-09-09 00:54:37,825 [modules.auxiliary.digisig] INFO: Uploading signature results to aux/DigiSig.json\r\n2020-09-09 00:54:37,825 [root] DEBUG: Started auxiliary module DigiSig\r\n2020-09-09 00:54:37,825 [root] DEBUG: Trying to initialize auxiliary module \"Disguise\"...\r\n2020-09-09 00:54:37,825 [root] DEBUG: Initialized auxiliary module \"Disguise\".\r\n2020-09-09 00:54:37,825 [root] DEBUG: Trying to start auxiliary module \"Disguise\"...\r\n2020-09-09 00:54:37,825 [modules.auxiliary.disguise] INFO: Disguising GUID to 6e74ed60-6046-4dd9-838d-99c679e24ed3\r\n2020-09-09 00:54:37,825 [root] DEBUG: Started auxiliary module Disguise\r\n2020-09-09 00:54:37,825 [root] DEBUG: Trying to initialize auxiliary module \"Human\"...\r\n2020-09-09 00:54:37,825 [root] DEBUG: Initialized auxiliary module \"Human\".\r\n2020-09-09 00:54:37,825 [root] DEBUG: Trying to start auxiliary module \"Human\"...\r\n2020-09-09 00:54:37,825 [root] DEBUG: Started auxiliary module Human\r\n2020-09-09 00:54:37,825 [root] DEBUG: Trying to initialize auxiliary module \"Procmon\"...\r\n2020-09-09 00:54:37,879 [root] DEBUG: Initialized auxiliary module \"Procmon\".\r\n2020-09-09 00:54:37,879 [root] DEBUG: Trying to start auxiliary module \"Procmon\"...\r\n2020-09-09 00:54:37,884 [root] DEBUG: Started auxiliary module Procmon\r\n2020-09-09 00:54:37,884 [root] DEBUG: Trying to initialize auxiliary module \"Screenshots\"...\r\n2020-09-09 00:54:37,884 [root] DEBUG: Initialized auxiliary module \"Screenshots\".\r\n2020-09-09 00:54:37,884 [root] DEBUG: Trying to start auxiliary module \"Screenshots\"...\r\n2020-09-09 00:54:37,884 [root] DEBUG: Started auxiliary module Screenshots\r\n2020-09-09 00:54:37,884 [root] DEBUG: Trying to initialize auxiliary module \"Sysmon\"...\r\n2020-09-09 00:54:37,884 [root] DEBUG: Initialized auxiliary module \"Sysmon\".\r\n2020-09-09 00:54:37,884 [root] DEBUG: Trying to start auxiliary module \"Sysmon\"...\r\n2020-09-09 00:54:37,884 [root] DEBUG: Started auxiliary module Sysmon\r\n2020-09-09 00:54:37,884 [root] DEBUG: Trying to initialize auxiliary module \"Usage\"...\r\n2020-09-09 00:54:37,884 [root] DEBUG: Initialized auxiliary module \"Usage\".\r\n2020-09-09 00:54:37,884 [root] DEBUG: Trying to start auxiliary module \"Usage\"...\r\n2020-09-09 00:54:37,884 [root] DEBUG: Started auxiliary module Usage\r\n2020-09-09 00:54:37,884 [root] INFO: Analyzer: Package modules.packages.python does not specify a DLL option\r\n2020-09-09 00:54:37,884 [root] INFO: Analyzer: Package modules.packages.python does not specify a DLL_64 option\r\n2020-09-09 00:54:37,884 [root] INFO: Analyzer: Package modules.packages.python does not specify a loader option\r\n2020-09-09 00:54:37,884 [root] INFO: Analyzer: Package modules.packages.python does not specify a loader_64 option\r\n2020-09-09 00:54:38,282 [root] ERROR: Traceback (most recent call last):\r\n  File \"C:/tmpwlzn1b50/analyzer.py\", line 502, in run\r\n    pids = self.package.start(self.target)\r\n  File \"C:\\tmpwlzn1b50\\modules\\packages\\python.py\", line 17, in start\r\n    python = self.get_path_glob(\"Python\")\r\n  File \"C:\\tmpwlzn1b50\\lib\\common\\abstracts.py\", line 96, in get_path_glob\r\n    raise CuckooPackageError(\"Unable to find any %s executable.\" % application)\r\nlib.common.exceptions.CuckooPackageError: Unable to find any Python executable.\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"C:/tmpwlzn1b50/analyzer.py\", line 1373, in <module>\r\n    success = analyzer.run()\r\n  File \"C:/tmpwlzn1b50/analyzer.py\", line 506, in run\r\n    raise CuckooError('The package \"{0}\" start function raised an ' \"error: {1}\".format(package_name, e))\r\nlib.common.exceptions.CuckooError: The package \"modules.packages.python\" start function raised an error: Unable to find any Python executable.\r\nTraceback (most recent call last):\r\n  File \"C:/tmpwlzn1b50/analyzer.py\", line 502, in run\r\n    pids = self.package.start(self.target)\r\n  File \"C:\\tmpwlzn1b50\\modules\\packages\\python.py\", line 17, in start\r\n    python = self.get_path_glob(\"Python\")\r\n  File \"C:\\tmpwlzn1b50\\lib\\common\\abstracts.py\", line 96, in get_path_glob\r\n    raise CuckooPackageError(\"Unable to find any %s executable.\" % application)\r\nlib.common.exceptions.CuckooPackageError: Unable to find any Python executable.\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"C:/tmpwlzn1b50/analyzer.py\", line 1373, in <module>\r\n    success = analyzer.run()\r\n  File \"C:/tmpwlzn1b50/analyzer.py\", line 506, in run\r\n    raise CuckooError('The package \"{0}\" start function raised an ' \"error: {1}\".format(package_name, e))\r\nlib.common.exceptions.CuckooError: The package \"modules.packages.python\" start function raised an error: Unable to find any Python executable.\r\n2020-09-09 00:54:38,282 [root] WARNING: Folder at path \"C:\\iunkQHR\\debugger\" does not exist, skip.\r\n2020-09-09 00:54:38,282 [root] INFO: Analysis completed.\r\n\r\n\r\n```\nComment: hello, can you check where is your python installed? the whole path to python.exe? as package looks just fine i just checked it should be `C:\\\\Python*\\\\python.exe`\nComment: Thank you for your support.\r\nThe path to python.exe is ` c:\\Users\\<username>\\AppData\\Local\\Programs\\Python\\Python38-32\\python.exe`\nComment: you are welcome, that is the problem, that isn't a default python path, did you install it with custom path? any fork of default python like activepython? any other?\nComment: ohh,\r\nbut i did not set custom path. i just checked `add python environment variable`\r\ni installed this one\r\nhttps://www.python.org/getit/\r\nShould I reinstall it so that` C:\\\\Python*\\\\python.exe`?\r\n\nComment: try to reinstall and pay atenttion to the path for me it installed it to c:\\ directly, can you check one thing, if you have `c:\\windows\\py.exe`?\nComment: i have c:\\windows\\py.exe !\r\n\nComment: ok then you don't need to do nothing, i will push check for that one and it will do the trick for you, do `git pull` in 1 min\nComment: done, `git pull` and now you should go fine, can you test it?\nComment: OK, Wait a moment\nComment: git pull  log\r\n```\r\n(venv-cape) root@cape:/opt/CAPEv2# git pull\r\nremote: Enumerating objects: 86, done.\r\nremote: Counting objects: 100% (86/86), done.\r\nremote: Compressing objects: 100% (27/27), done.\r\nremote: Total 104 (delta 62), reused 75 (delta 59), pack-reused 18\r\nReceiving objects: 100% (104/104), 307.09 KiB | 567.00 KiB/s, done.\r\nResolving deltas: 100% (63/63), completed with 21 local objects.\r\nFrom https://github.com/kevoreilly/CAPEv2\r\n   f6f1547..b3f78de  master     -> origin/master\r\nUpdating f6f1547..b3f78de\r\nFast-forward\r\n analyzer/windows/dll/capemon.dll            | Bin 632832 -> 632832 bytes\r\n analyzer/windows/dll/capemon_x64.dll        | Bin 764416 -> 763392 bytes\r\n analyzer/windows/lib/core/packages.py       |   6 ++-\r\n analyzer/windows/modules/packages/inp.py    |  32 ++++++++++++\r\n analyzer/windows/modules/packages/python.py |   1 +\r\n lib/cuckoo/core/plugins.py                  |   2 +-\r\n modules/machinery/kvm.py                    |   3 +-\r\n modules/processing/network.py               |   1 +\r\n modules/processing/static.py                |   4 +-\r\n utils/api.py                                |   4 +-\r\n utils/dist.py                               |  75 ++++++++++++++++------------\r\n utils/vpn2cape.py                           |   2 +-\r\n web/api/views.py                            |  14 +++---\r\n web/submission/views.py                     |   4 +-\r\n 14 files changed, 97 insertions(+), 51 deletions(-)\r\n create mode 100644 analyzer/windows/modules/packages/inp.py\r\n```\r\n\r\nbut this error ...  i restart cape and cape-web, so why?\r\n```\r\noes not specify a loader option\r\n2020-09-09 06:12:01,689 [root] INFO: Analyzer: Package modules.packages.python does not specify a loader_64 option\r\n2020-09-09 06:12:02,350 [root] ERROR: Traceback (most recent call last):\r\n  File \"C:/tmp7ksh1spy/analyzer.py\", line 502, in run\r\n    pids = self.package.start(self.target)\r\n  File \"C:\\tmp7ksh1spy\\modules\\packages\\python.py\", line 18, in start\r\n    python = self.get_path_glob(\"Python\")\r\n  File \"C:\\tmp7ksh1spy\\lib\\common\\abstracts.py\", line 96, in get_path_glob\r\n    raise CuckooPackageError(\"Unable to find any %s executable.\" % application)\r\nlib.common.exceptions.CuckooPackageError: Unable to find any Python executable.\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"C:/tmp7ksh1spy/analyzer.py\", line 1373, in <module>\r\n    success = analyzer.run()\r\n  File \"C:/tmp7ksh1spy/analyzer.py\", line 506, in run\r\n    raise CuckooError('The package \"{0}\" start function raised an ' \"error: {1}\".format(package_name, e))\r\nlib.common.exceptions.CuckooError: The package \"modules.packages.python\" start function raised an error: Unable to find any Python executable.\r\nTraceback (most recent call last):\r\n  File \"C:/tmp7ksh1spy/analyzer.py\", line 502, in run\r\n    pids = self.package.start(self.target)\r\n  File \"C:\\tmp7ksh1spy\\modules\\packages\\python.py\", line 18, in start\r\n    python = self.get_path_glob(\"Python\")\r\n  File \"C:\\tmp7ksh1spy\\lib\\common\\abstracts.py\", line 96, in get_path_glob\r\n    raise CuckooPackageError(\"Unable to find any %s executable.\" % application)\r\nlib.common.exceptions.CuckooPackageError: Unable to find any Python executable.\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"C:/tmp7ksh1spy/analyzer.py\", line 1373, in <module>\r\n    success = analyzer.run()\r\n  File \"C:/tmp7ksh1spy/analyzer.py\", line 506, in run\r\n    raise CuckooError('The package \"{0}\" start function raised an ' \"error: {1}\".format(package_name, e))\r\nlib.common.exceptions.CuckooError: The package \"modules.packages.python\" start function raised an error: Unable to find any Python executable.\r\n2020-09-09 06:12:02,350 [root] WARNING: Folder at path \"C:\\hMnAJYte\\debugger\" does not exist, skip.\r\n2020-09-09 06:12:02,350 [root] INFO: Analysis completed.\r\n(venv-cape) root@cape:/opt/CAPEv2/storage/analyses/162# \r\n```\r\n\nComment: well the uniq thing that i can suggest is to install python to that path c:\\ as it should be installed, i never saw python being installed in another path, so that is the problem\nComment: I don't understand why, but I think so too.\u3000i will try tomorrow.\nComment: closing as answered, that python installed in wrong path, did you solve it?\nComment: I haven't solved it yet.\r\nParsing the python script was postponed ...\r\nI will contact you if it goes well.",
+  "Title: Packages update and new INP package\nBody: \nComment: Legend",
+  "Title: DL&Exec Submit 'NoneType' object has no attribute 'platform'\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nDownload and execute samples using DL&Exec feature.\r\n\r\n# Current Behavior\r\n\r\nThrows error in web ui.\r\n\r\n# Failure Information (for bugs)\r\n\r\n```text\r\nRequest Method: | POST\r\n-- | --\r\nhttp://127.0.0.1:8000/submit/\r\n3.1.1\r\nAttributeError\r\n'NoneType' object has no attribute 'platform'\r\n/opt/CAPEv2/web/submission/views.py, line 593, in index\r\n/usr/bin/python3\r\n3.8.2\r\n['/opt/CAPEv2/web',  '/usr/lib/python38.zip',  '/usr/lib/python3.8',  '/usr/lib/python3.8/lib-dynload',  '/usr/local/lib/python3.8/dist-packages',  '/usr/lib/python3/dist-packages',  '/opt/CAPEv2/web/..',  '/opt/CAPEv2/modules/processing/parsers/CAPE',  '/opt/CAPEv2/web/..',  '/opt/CAPEv2/web/..',  '/opt/CAPEv2',  '/opt/CAPEv2/web/..',  '/opt/CAPEv2/web/..',  '/opt/CAPEv2/web/..',  '/opt/CAPEv2',  '/opt/CAPEv2/web',  '/opt/CAPEv2/web/..']\r\nFri, 04 Sep 2020 13:44:19 +0000\r\n```\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. enable dlexec in web.conf\r\n2. submit url in DL&Exec tab\r\n3. error from above\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | 9b045366ebfcab678c202290dc194ee10bedf673\r\n| OS version       | Linux cape 5.4.0-45-generic #49-Ubuntu SMP Wed Aug 26 13:38:52 UTC 2020 x86_64 x86_64 x86_64 GNU/Linux\r\n\r\n## Failure Logs\r\n\r\n```text\r\nRequest Method: | POST\r\n-- | --\r\nhttp://127.0.0.1:8000/submit/\r\n3.1.1\r\nAttributeError\r\n'NoneType' object has no attribute 'platform'\r\n/opt/CAPEv2/web/submission/views.py, line 593, in index\r\n/usr/bin/python3\r\n3.8.2\r\n['/opt/CAPEv2/web',  '/usr/lib/python38.zip',  '/usr/lib/python3.8',  '/usr/lib/python3.8/lib-dynload',  '/usr/local/lib/python3.8/dist-packages',  '/usr/lib/python3/dist-packages',  '/opt/CAPEv2/web/..',  '/opt/CAPEv2/modules/processing/parsers/CAPE',  '/opt/CAPEv2/web/..',  '/opt/CAPEv2/web/..',  '/opt/CAPEv2',  '/opt/CAPEv2/web/..',  '/opt/CAPEv2/web/..',  '/opt/CAPEv2/web/..',  '/opt/CAPEv2',  '/opt/CAPEv2/web',  '/opt/CAPEv2/web/..']\r\nFri, 04 Sep 2020 13:47:30 +0000\r\n```\r\n\nComment: hello thank you, i just tried to reproduce that on publica capesandbox.com and wasn't able, can you please provide more info about your setup, are those are linux vms? need a bit more details\nComment: i have pushed small check there, please do `git pull` but still would like to hear about your setup as it never happend to me before, maybe you removed `platform = X` in your machinery config?\nComment: @doomedraven It could very well be the fact I'm using `proxmox.conf`. If you are using different machinery it maybe why you cannot reproduce.\r\n\r\nI can confirm that the `platform = x` is there and that the regular submit works just fine.\r\n\r\n```text\r\n[proxmox]\r\nhostname = <redacted>\r\nusername = <redacted>\r\npassword = <redacted>\r\ninterface = ens19\r\nmachines = win7_x64_0, win7_x64_1, win10_x64_0, linux_x64_0\r\n\r\n[win7_x64_0]\r\nlabel = cape-win7-x64-0\r\nplatform = windows\r\nip = <redacted>\r\nsnapshot = cape\r\ninterface = ens19\r\nresultserver_ip = <redacted>\r\nresultserver_port = 2042\r\ntags = win7, x64\r\nmem_profile=Win7SP1x64_23418\r\n\r\n[win7_x64_1]\r\nlabel = cape-win7-x64-1\r\nplatform = windows\r\nip = <redacted>\r\nsnapshot = cape\r\ninterface = ens19\r\nresultserver_ip = <redacted>\r\nresultserver_port = 2042\r\ntags = win7, x64\r\nmem_profile=Win7SP1x64_23418\r\n\r\n[win10_x64_0]\r\nlabel = cape-win10-x64-0\r\nplatform = windows\r\nip = <redacted>\r\nsnapshot = cape\r\ninterface = ens19\r\nresultserver_ip = <redacted>\r\nresultserver_port = 2042\r\ntags = win10, x64\r\nmem_profile=Win10x64_10586\r\n\r\n[linux_x64_0]\r\nlabel = cape-linux-x64-0\r\nplatform = linux\r\nip = <redacted>\r\nsnapshot = cape\r\ninterface = ens19\r\nresultserver_ip = <redacted>\r\nresultserver_port = 2042\r\ntags = linux, x64\r\n```\r\n\r\nI also noticed on line `593` it has the following code:\r\n```text\r\nmachine_details = db.view_machine(machine[0])\r\n```\r\nThough other instances this is used to obtain `machine_details` it looks like this:\r\n```text\r\nmachine_details = db.view_machine(machine)\r\n```\r\nI did try changing this to match the others but it didn't work out, could be something with `proxmox` machinery further back in the code.\r\n\r\nI'll try a git pull and see if that works out.\nComment: well for start the `proxmon` is not supported by us, we only and strongly suggest `kvm`, but well this doesn't look like case of the root problem. It should be related to windows/linux platform, that code was done by another person, and it works for kvm(our favorite hypervisor).\r\n\r\nCan you please maybe do next to try help with hunting the root cause, just after here \r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/web/submission/views.py#L587\r\n\r\n`print(magic_type, platform, machine)` that should give some details, i suspect that is the problem with file format recon, was it PE or ELF or that is an script?\r\n\r\nand huge thanks for code escape formatting <3\nComment: Looks like the change you have made does indeed seem to fix the problem.\r\n\r\nYeah I'm not sure what the root cause was exactly to be honest.\r\n\r\n![image](https://user-images.githubusercontent.com/9785864/92302125-ec05c280-ef3f-11ea-9dc4-06c6c019b272.png)\r\n\r\nThe analysis also did complete just fine now, i'll try rolling back one commit and seeing if I can determine the root cause.\r\n\r\nYeah, I know proxmox isn't \"officially\" supported though it does make deployment and management of VMs much faster and the interface is great.\r\n\r\nThere are also a lot of good reasons to use KVM such as CPU emulation for arm, mips etc though all the decent opensource projects using kvm for a decent web ui either or don't support the cpu emulation which is really strange to me. This includes proxmox.\r\n\r\nIf you have any suggestions of a really good KVM web ui let me know, I'm all ears!\r\n\r\nI do use and have KVM configured on my malware analysis laptop using libvirt, spice but that's all local and not on actual server hardware.\nComment: can you check please the fileformat of that downloaded file? i suppouse it a script and wasn't recognized \r\n\r\nso by parts\r\n1. https://www.doomedraven.com/2016/05/kvm.html\r\n2. https://github.com/doomedraven/Tools/blob/master/Virtualization/kvm-qemu.sh\r\n\r\ncheck https://retspen.github.io/ if you want webgui to manage many kvm servers, my script should install but it can be a bit outdated for that part as i can't check frequently if they change that, i just check the core components like libvirt/qemu/etc\nComment: @doomedraven yeah, I'm very familiar with setting up the initial install of libvirt, and KVM I did my libvirt install completely on Gentoo making sure the kernel was compiled and optimized for it.\r\n\r\nYeah, I did also have a look at WebVirtMgr it's unfortunate it hasn't been given some love in 2 years, I'm trying to stick with what is currently maintained. Looks like this one is maintained and is what they moved to now: https://github.com/retspen/webvirtcloud. I have another server I'm building, I may give the webvirtcloud thing a shot and see how it goes and if it supports the all the architectures qemu can emulate as well.\r\n\r\nI started playing around with CAPE because Cuckoo is in quite the state of disrepair, I contributed to it once for a simple registry change, it didn't get merged for six months, once it did he didn't merge my code and simply put it in himself, I wasn't even added to the contributor list. :sob: \r\n\r\nI also have some research on extracting C2 data and decrypting all strings from KPot stealer if you want to use it https://github.com/lillypad/fkks. I also have it setup so you can decrypt the stolen data by intercepting the C2 request using your own C2 server.\r\n\r\n\r\nSo the file type is a PE file and not a script oddly enough, i think you parse mime-types but not certain, here you go!\r\n```text\r\n# Download link source is from VxVault\r\n$ wget hxxp[:]//45.139.236.14/wotsuper2[.]exe\r\n$ file wotsuper2.exe\r\nwotsuper2.exe: PE32 executable (GUI) Intel 80386, for MS Windows\r\n$ file --mime-type wotsuper2.exe\r\nwotsuper2.exe: application/x-dosexec\r\n```\nComment: nice tool thanks i need to check if my private kpot extractor still works with the samples that you have in your repo. hm is weird about the sample, but well at least it fixed now\r\nyes is why i abondoned cuckoo to, i was doing support and code PRs for years but then it just \"a dead PRs\" as i call them\r\n\r\nah yes they moved that to webvirtcloud.\r\nlet us know if you have some ideas/features/bugs findings\nComment: One of the things I was hoping to start contributing to is better Linux support.\r\n\r\nI was thinking of starting with some basic static analysis work that can be done in Python and put into JSON format or something simple that can be parsed and put in the web ui.\r\n\r\nI'm not a great web developer (as in I can't design a UI to save my life), but I wouldn't mind helping out a little regarding some of the other code.\r\n\r\nA few features I would like suggest and help with maybe (time permitting, I can do small things as I'm usually very busy):\r\n- Linux Static Analysis (basic python static analysis)\r\n- Linux Behavioral Analysis Tab populated using ProcMon (parse the traces for bad stuff) https://github.com/microsoft/ProcMon-for-Linux or perhaps SystemTap, (this is completely broken in Cuckoo ATM)\r\n- Interactive analysis support using noVNC, doesn't look too bad to setup, just need the analyzer to send over the a VNC client (platform specific), to connect back. Would be quite a fun addition much like Any Run.\nComment: * for linux static analysis you can enrich this https://github.com/kevoreilly/CAPEv2/blob/master/modules/processing/static.py#L1647\r\n* the procmon would be pretty interesting as systemtap is syper easy to bypass, never tried it, i will need to check it\r\n* one of the guy was working on the interactive mode but he lost the code :( but yes that would be neat\nComment: closing this as solved, let us know if we can help more, thanks again for reporting it",
+  "Title: tarfile in python 3.8 requires BytesIO \nBody: Hey there, report download endpoints are failing under Ubuntu 20.04's Python 3.8. PRing a patch to switch from StringIO to BytesIO. ",
+  "Title: Update dist.py handling of arguments for NodeApi\nBody: This resolves issue https://github.com/kevoreilly/CAPEv2/issues/260\nComment: thanks",
+  "Title: Cannot deactivate/reactivate worker node with PUT request to Distributed API\nBody: **Issue:**\r\n\r\nFollowing the documentation at https://capev2.readthedocs.io/en/latest/usage/dist.html#put-node-name, the Distributed API (dist.py) fails to set the \"enabled\" attribute to true for a node when invoked via a PUT request like so:\r\n\r\ncurl -XPUT http://localhost:9003/node/worker1 -F enabled=1\r\n\r\nThis results in the following error:\r\n\r\n```\r\nraise TypeError(\"Not a boolean value: %r\" % value)\r\nsqlalchemy.exc.StatementError: (builtins.TypeError) Not a boolean value: '1'\r\n[SQL: UPDATE node SET enabled=%(enabled)s WHERE node.id = %(node_id)s]\r\n```\r\n\r\n**Update:**\r\n\r\nI created PR https://github.com/kevoreilly/CAPEv2/pull/261 to resolve this issue.",
+  "Title: Anti-Sandbox through SetErrorMode function\nBody: hash: `77a9189c91b957315f2d07064af9415837a02befef4ac3207488d9a7dc37a8df`, pass: infected.\r\n\r\n[77a9189c91b957315f2d07064af9415837a02befef4ac3207488d9a7dc37a8df.zip](https://github.com/kevoreilly/CAPEv2/files/5155809/77a9189c91b957315f2d07064af9415837a02befef4ac3207488d9a7dc37a8df.zip)\r\n\r\n![anti_feature](https://user-images.githubusercontent.com/55275842/91841510-2bd85b80-ec5b-11ea-9c14-5af3304a0d37.png)\r\n\r\nHey guys, some malware added code to bypass sandboxes by using SetErrorMode function. More information about it feature you can find here https://asec.ahnlab.com/1202.\r\n\r\n![seterrormode](https://user-images.githubusercontent.com/55275842/91842232-5d9df200-ec5c-11ea-8ea6-dc97e454e983.png)\r\n\r\n\r\nCan we somehow fix it? I guess we should patch it in capemon.dll\r\n\nComment: Yup this needs fixing for sure - thanks for the details, leave it with me!\nComment: Fixed in https://github.com/kevoreilly/capemon/commit/2499fd7d10820670c81e158014918cf9f785c886\r\n\r\nGrateful for the sample - please see that it now executes properly: https://capesandbox.com/analysis/54127/\r\n\r\nThanks for helping make CAPE better.\nComment: thanks for the quick fix !",
+  "Title: proxmox machinery broken post 2020-08-29\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nanalysis is performed using proxmox machinery.\r\n\r\n# Current Behavior\r\n\r\nafter recent pull of master issue began being observed on 2020-08-29\r\n\r\nUpon submission of a sample the controller fails to initiate analysis through proxmox machinery.\r\n\r\n# Failure Information (for bugs)\r\n\r\n==> cuckoo.log <==\r\n2020-09-01 09:23:18,710 [lib.cuckoo.core.scheduler] INFO: Task #2482: Starting analysis of FILE '/opt/tmp/cuckoo-tmp/upload_6f3nnud9/9xasamvTkUFwRx'\r\n2020-09-01 09:23:18,806 [lib.cuckoo.core.scheduler] INFO: Task #2482: File already exists at '/opt/CAPEv2/storage/binaries/59e4659462484cb2521326bf335bef31a68d99748cfc082165562c5da42336c6'\r\n2020-09-01 09:23:18,835 [lib.cuckoo.core.scheduler] INFO: Task #2482: acquired machine c1 (label=c1, platform=windows)\r\n2020-09-01 09:23:21,494 [lib.cuckoo.core.scheduler] ERROR: Task #2482: Failure in AnalysisManager.run: 'name'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 308, in launch_analysis\r\n    machinery.start(self.machine.label)\r\n  File \"/opt/CAPEv2/modules/machinery/proxmox.py\", line 191, in start\r\n    vm, node = self.find_vm(label)\r\n  File \"/opt/CAPEv2/modules/machinery/proxmox.py\", line 65, in find_vm\r\n    if vm[\"name\"] == label:\r\nKeyError: 'name'\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 415, in run\r\n    success = self.launch_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 363, in launch_analysis\r\n    machinery.stop(self.machine.label)\r\n  File \"/opt/CAPEv2/modules/machinery/proxmox.py\", line 222, in stop\r\n    vm, node = self.find_vm(label)\r\n  File \"/opt/CAPEv2/modules/machinery/proxmox.py\", line 65, in find_vm\r\n    if vm[\"name\"] == label:\r\nKeyError: 'name'\r\n\r\n\r\n\nComment: hello, that is community machinery, we don't really support it so you need to fix it by yourself or wait till someone fixes it, we only recommends to use kvm",
+  "Title: Resolve KeyError while using /api/ w/ dist.py\nBody: This pull request resolves a KeyError exception while using dist.py w/ /api/.  Also included change to update the deprecated api.py as well.\r\n\r\n**Issue:**\r\n\r\nWhen trying to register a new node w/ the webui API the following is returned:\r\n`{\"message\": \"Invalid Cuckoo node (http://<MASTER_IP>:8000/api/): 'machines'\"}`\r\n\r\nThis is a KeyError exception as the response does not have the key \"machines\" but rather has the key \"data\".\r\n\r\n**Steps to reproduce:**\r\n\r\n1. Ensure that dist.py is running.\r\n2. Run the following command to register a node:\r\n`curl http://localhost:9003/node -F name=master -F url=http://<MASTER_IP>:8000/api/`\r\n",
+  "Title: Update views.py - max-upload error\nBody: \nComment: ah nice catch, thanks",
+  "Title: possible issue with analyzer/windows/modules/auxiliary/human.py for MSI\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nAfter checking the checkbox \"I accept the terms in the license agreement\" , click Next\r\n\r\n# Current Behavior\r\n\r\nInstead of clicking the checkbox \"I accept the terms in the license agreement\" first and then clicking Next. It unchecks the checkbox first, before clicking next.\r\nAn example that was available online: https://capesandbox.com/analysis/25379/\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\nUpload .msi file which requires someone or something to click the next buttons and accept the agreement\r\n\r\n## Context\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | 8e7154e839f3a9751c72dfb4d3e927ed97026863\r\n| OS version       | Ubuntu 18.04.4\r\n\nComment: hello, as i can see it checks for buttons not checkboxes, i never really had need of checkbox clck, so if you have time you can investigate how to enrich human.py to detect and extended it to click. if no it will be very low prior issue for us as we have another stuff to do\nComment: should be fixed now",
+  "Title: Tiny bug in read method\nBody: # Failure Information (for bugs)\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/modules/processing/behavior.py#L98\r\nhash: `56ba644dd45065c1f7c1c3c4a9d01ebead7538b4b6bf80328774b3e3c0c92377`\r\n\r\nThe method `read` is missing validation of the negative length value. If we got a negative value length (it happens very rarely) we'll get an exception and our process.py util went to infinity loop to parsing this task.\r\n\r\nTo fix this issue we should add an additional checking. It's also worth noting that the return value type should be a byte, not a string (it provokes another exception).\r\n\r\n```python\r\n    def read(self, length):\r\n        \"\"\" Read data from log file\r\n\r\n        @param length: Length in byte to read\r\n        \"\"\"\r\n        if not length or length < 0:\r\n            return b\"\"\r\n        buf = self.fd.read(length)\r\n        if not buf or len(buf) != length:\r\n            raise EOFError()\r\n        return buf\r\n``` \r\n\r\n## Failure Logs\r\n```\r\n  File \"/sandbox/capev2/utils/../modules/processing/behavior.py\", line 105, in read\r\n    buf = self.fd.read(length)\r\nValueError: read length must be positive or -1\r\n```\nComment: This is now fixed in https://github.com/kevoreilly/CAPEv2/commit/67a2ca037568ab7d8bb451d4de183fe22be59956 - thank you!",
+  "Title: GUI submission bug\nBody: # Expected Behavior\r\n\r\nSelecting a file in dynamic analysis tab of submission then changing to static submission and choosing file there will submit task based on which tab is selected.\r\n\r\n# Current Behavior\r\n\r\nIf you chose a file in they dynamic analysis submission tab, and then move to the static analysis submission tab, choose a file, and actually submit through the static analysis page then the file will be submitted for dynamic analysis instead of static analysis \r\n\r\n# Failure Information (for bugs)\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. go to submission page\r\n2. Choose file to upload under dynamic analysis pane\r\n3. Switch to static analysis pane\r\n4. Choose file to upload under static analysis pane\r\n5. Hit submit while still on static analysis pane\r\n\r\nYour file has been submitted for full dynamic analysis\r\n\r\n## Context\r\n\r\nthis is reproducible on the public server\nComment: that is how it was designed to work, if you switch tab but leave value in another field, that doesn't change submission type\nComment: The expected behavior for me would be to submit based on which pane you're currently on. If I'm on the static analysis pane then I would expect it to be submitted for static analysis. Right now it's submitting for dynamic analysis when I'm on the static analysis pane under the circumstance described above.\r\n\r\nOne quick fix could be clearing the file chosen for submission every time you change which pane you're on, for example, when I change from the dynamic analysis submission pane to the static analysis submission pane it will clear the data on the dynamic analysis submission pane so it won't submit for dynamic analysis when someone intends to submit for static analysis.\r\n\r\nAlternately, you could have different submission buttons for each pane, and they can clear the data from the panes that aren't currently selected before submitting to the service\nComment: well is not how django/html works, you are welcome to implement that ;) as i personally don't need it\nComment: This sounds like a nice-to-have but not a priority, it is bending over to accommodate a scenario that isn't really 'designed for' namely having multiple tabs with data present when the submit button is pressed.\r\n\r\nTherefore I think it's fair to say we will welcome any contribution that improves this in the future, but don't regard it as an issue per se.",
+  "Title: Request: static analysis parallel running\nBody: # Expected Behavior\r\n\r\nStatic analysis requests all go to the front of the queue to be processed in parallel since they don't use VMs.\r\n\r\n# Current Behavior\r\n\r\nCurrently, static analysis will wait for all tasks in front of them to be completed, including other static analysis tasks and dynamic analysis tasks.\r\n\r\n\nComment: that requires whole rewrite of processing part that im not gonna to do, if you want just config, you can tick static analysis, so it will run extractors on file and if you get conf then it won't submit to vm, and if no then it will\nComment: closing as responded",
+  "Title: Malware Score feature?\nBody: Hi, I see people suggesting CapeV2 instead of using Cuckoo Sandbox. However I don't see any score in CapeV2.\r\n\r\nIs this feature going to be implemented? Or is there any plugin that allow CapeV2 to show malware score?\r\n\nComment: Malscores are implemented and available, but off by default. From the changelog: \r\n\r\n> malscore now is off by default, can be enabled in conf/reporting.conf\r\n\r\nI also suggest checking conf/web.conf\nComment: @ditekshen Thank you. So, to enable malscores, I have to enable `misp` in [reporting.conf](https://github.com/kevoreilly/CAPEv2/blob/master/conf/reporting.conf)? By default it is disabled:\r\n```\r\n[misp]\r\nenabled = no\r\n```\nComment: misp is not required for CAPE malscores. This is different. The config may have been moved to web.conf\r\n\r\n```\r\n[malscore]\r\nenabled = no\r\n```\nComment: > misp is not required for CAPE malscores. This is different. The config may have been moved to web.conf\r\n> \r\n> ```\r\n> [malscore]\r\n> enabled = no\r\n> ```\r\n\r\nI see, noted!",
+  "Title: Master API do not see registered workers\nBody: - [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Background\r\nI am working on a research project, our goal is to collect some data for further processing (ai, analysis, machine learning). We are aiming at portable executable files. We have chosen the capev2 sandbox to analyze.\r\n\r\nAt the very end, we want to build a lab with around 50 physical computers. Now I am playing at a smaller scale (up to 10).\r\n\r\nTo protect our VMs against VM detection we use [vmcloak project](https://github.com/hatching/vmcloak). I have generated one snapshot of win 7 using Virtualbox and vmcloak.\r\n\r\nNow I am able to run analysis on 2 computers separately using cape sandbox. But I want to create cluster. So I am trying dist.py. \r\n\r\nI have set up two computers on one network and after some problems, I was able to register master and one worker as mentioned in docs. I did everything step by step - https://capev2.readthedocs.io/en/latest/usage/dist.html#proposed-setup. \r\n\r\n# Expected Behavior\r\n\r\nI am expecting that if I register workers through dist API like [this](https://capev2.readthedocs.io/en/latest/usage/dist.html#register-cuckoo-nodes), they are seen by the master's API and if I submit some executable to master it will distribute it to all nodes. I hopefully understood well that dist.py works with deprecated API (port 8090) so I am using this master API to submit exe file ([pafish](https://github.com/a0rtega/pafish)) as claimed in docs:\r\n\r\n> Submit a new analysis task\r\n> The method of submission is always the same: by rest api or via web-gui , both only pointing on the \u201cmaster node\u201d.\r\n\r\n# Current Behavior\r\nI was able to register and enable two machines (master and worker1). If I request GET/node I get two nodes. I followed [docs](https://capev2.readthedocs.io/en/latest/usage/dist.html#proposed-setup).\r\nNow I submit a file to master API on port 8090 - `curl -F file=@/path/to/file http://localhost:8090/tasks/create/file` and then one more, but it is pending even there are two machines. If I ask for status - http:///localhost:8090/cuckoo/status on master, I get ....machines:{ total: 1, available: 1}...\r\n\r\nIf I try  `curl -F file=@/path/to/file -F machine=worker1 http://localhost:8090/tasks/create/file` I see in cuckoo log - `Cannot acquire machine: No machines match selection criteria.`\r\n\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | f8858cbd793046587d47cd96a8d3e120a95bb36d\r\n| OS version       | Ubuntu 20.04\r\n\r\n## Logs\r\n\r\n[cuckoo.log](https://github.com/kevoreilly/CAPEv2/files/5084572/cuckoo.log)\r\n[dist.log](https://github.com/kevoreilly/CAPEv2/files/5084573/dist.log)\r\n[log.txt](https://github.com/kevoreilly/CAPEv2/files/5084574/log.txt)\r\n[process.log](https://github.com/kevoreilly/CAPEv2/files/5084575/process.log)\r\n\r\n\r\n\r\n\nComment: Hi koubadomik, the dist master is @doomedraven but he's on vacation at the mo. As I can't help with this particular issue, I would just ask for your patience until doomedraven gets back and can answer.\nComment: Sure, I'll wait. Thanks for informing me.\nComment: Hello, im here, not sure if i understand all parts so lets go by parts:\r\n\r\n0. all servers with cape works as standalone just fine?\r\n1. behav is the same between curl to port `8090` and `8000:/api/`?\r\n2. If I try curl -F file=@/path/to/file -F machine=worker1 http://localhost:8090/tasks/create/file I see in cuckoo log - `Cannot acquire machine: No machines match selection criteria.` <- you have set tags in vbox conf if sample is x64? or worker1 exist on all nodes? \nComment: Hi, I am on vacation now. I will let you know as I am back. Now I have no access to my computer. \r\n\r\nThere are actually two vms, each running on one physical machine with cape. Both physical machines are working ok with cape separately. After setting up one of them  _master_ and second _worker1_ and sending two samples to the master localhost:8090 api (awaiting one will be run on first pending vm and second on second pending vm) it runs one sample and one is waiting.\r\n\r\nI did not try port 8000 api (not deprecated one). Should I use it? According to the docs I thought that I should use 8090 even on master machine. On the other hand after registering worker1 I did not see its machines in web interface of master node.\r\n\r\nMaybe I made a mistake in `curl -F file=@/path/to/file -F machine=worker1 http://localhost:8090/tasks/create/file`. Because worker1 is name of node (physical machine) but not name of vm. I have to look at it once more. \r\n\r\nAs I was going through the web interface of master node I did see there some analyses for worker1 and they were marked as reported. I thought that web interface is connected to the new 8090 api. \r\n\r\nI do not want to waste your time so I will look at it. Maybe you can see only some misunderstanding in my answers so you can clarify. But I let you know as I am back. \r\n\r\nSorry for accidentally closing this issue. I am writing from phone so it is small for my fingers. \r\n\r\n\nComment: im using 8000, i will need to update docs, as that was done before many other changes i have done, yep if you set machine and that vm does't exist is that your error, you shouldn't set machine or if you set it, you should pass in options=\"node=worker1\" to explicitly force sample be analyzed onthat node\r\n\r\nenjoy your cavations\nComment: But during registration of node deprecated api is used on that node. I saw that in code is not /api in building url checking node is up. \r\n\r\nI will let you know. Thank you. And again sorry for closing issue accidently I am writing from phone.\nComment: 1. dist.py has it own rest api for some checks\r\n2. ya we register master, but it doesn't really uses that api(but you can to submit samples), but is more to submit to the main server can be used by webgui/api/depricated api, all works, as it already cape server so it picks samples automatically\nComment: the registration of master maybe should be changed, but there 2 ways of using master node\r\n1. like storage for reports and be a central webgui for all analysis\r\n2. like 1 but also analyze samples\nComment: I will try it, thank you. \nComment: you are welcome. but just remove the machine from curl and it should works ;) \nComment: Ok, now I use master 8000 API (new).\r\nOutput of localhost:9003\r\n\r\n`{\r\n   \"nodes\":{\r\n      \"master\":{\r\n         \"name\":\"master\",\r\n         \"url\":\"http://localhost:8090/\",\r\n         \"machines\":[\r\n            {\r\n               \"name\":\"win7_64_clean\",\r\n               \"platform\":\"windows\",\r\n               \"tags\":[\r\n                  \"\"\r\n               ]\r\n            }\r\n         ],\r\n         \"enabled\":true\r\n      },\r\n      \"worker1\":{\r\n         \"name\":\"worker1\",\r\n         \"url\":\"http://147.32.82.125:8090/\",\r\n         \"machines\":[\r\n            {\r\n               \"name\":\"win7_64_dirty\",\r\n               \"platform\":\"windows\",\r\n               \"tags\":[\r\n                  \"\"\r\n               ]\r\n            }\r\n         ],\r\n         \"enabled\":true\r\n      }\r\n   }\r\n}`\r\n\r\nSo two machines are available on two physical nodes.\r\n\r\nNow I would like to analyze using machine \"win7_64_dirty\".\r\n\r\nIf I use - `curl -F file=@/home/capecomp1/Downloads/pafish.exe -F machine=\"win7_64_dirty\" http://localhost:8000/api/tasks/create/file/\r\n`\r\nI get \r\n`{\r\n    \"error\": true,\r\n    \"error_value\": \"Machine 'win7_64_dirty' does not exist. Available: win7_64_clean\"\r\n}`\r\n\r\nI do not know why.\r\n\r\nIf I just upload a file `curl -F file=@/home/capecomp1/Downloads/pafish.exe http://localhost:8000/api/tasks/create/file/`, it uses only local win7_64_clean.\r\n\r\nWhere did I make any mistake?\r\n\r\n\nComment: btw as i told you, that doesn't work that way, machine only wrks if you have 1 server, if you use cluster, use some specific tags, and if you want to force specific node you can do that with options as i showed you before `options=\"node=workerX\"`\nComment: as super dirty trick you can use vm name as tag, but then just don't repeat them between workers\nComment: Ok, I got lost in answers above and you are right you just posted it at the very beginning, sorry. \r\nI will try tags. But If I try this - `curl -F file=@/home/capecomp1/Downloads/pafish.exe -F options=\"node=worker1\" http://localhost:8000/api/tasks/create/file`. It ignores the options and send it to node master.\nComment: 1. forget about `machine` option in clustered cape, that only useful in standalone server\r\n2. the `node=workerX`, works, but the problem is that if you use master to analyze samples, you need to use tags taht will help you to send sample to specific vm, if the tag is uniq between servers you don't need to set `node=X`\r\n3. so my suggestion if you have different vms, just get approach from tags in each server machinery config, and then update workers info in master, check `-h`/man there should be info about that as i need to leave\nComment: so about tags in machinery config, example\r\n\r\n```\r\ncat kvm.conf\r\n[kvm]\r\n# Specify a comma-separated list of available machines to be used. For each\r\n# specified ID you have to define a dedicated section containing the details\r\n# on the respective machine. (E.g. cuckoo1,cuckoo2,cuckoo3)\r\nmachines = cuckoo1,cuckoo2,cuckoo3,cuckoo4,cuckoo6,cuckoo7\r\ninterface = virbr1\r\n\r\n[cuckoo7]\r\nlabel = win7x64_3\r\nplatform = windows\r\nip = X\r\nmem_profile = Win7SP1x64\r\ntags = win7,x64,it\r\n\r\n[cuckoo8]\r\nlabel = win7x64_4\r\nplatform = windows\r\nip = X\r\nmem_profile = Win7SP1x64\r\ntags = win7,x64,jp\r\n\r\n[cuckoo9]\r\nlabel = win7x64_5\r\nplatform = windows\r\nip = X\r\nmem_profile = Win7SP1x64\r\ntags = win7,x64,ru\r\n\r\n[cuckoo10]\r\nlabel = win7x64_6\r\nplatform = windows\r\nip = X\r\nmem_profile = Win7SP1x64\r\ntags = win7,x64,ua\r\n```\r\n\r\nso if tag lets say `ua` is uniq between all servers for 1 vm, it will know where to send it for correct analysis\nComment: any success?\nComment: i'll keep you updated today, Combining this project with another. Today I am going to try it. Sorry\nComment: I think this is better, tags are working. But I have another mistake. Maybe it is some misconfiguration, I will check it tomorrow.\r\n\r\n`2020-08-31 18:41:15,968 INFO:dist:Thread-1 - Status.. master -> {'total': 13, 'pending': 1, 'running': 0, 'completed': 0, 'reported': 0}\r\n2020-08-31 18:41:15,992 ERROR:dist:Thread-1 - module 'posixpath' has no attribute 'exist'\r\nTraceback (most recent call last):\r\n  File \"dist.py\", line 185, in node_submit_task\r\n    if not os.path.exist(task.path):\r\nAttributeError: module 'posixpath' has no attribute 'exist'\r\n2020-08-31 18:41:15,992 CRITICAL:dist:Thread-1 - Error submitting task (task #1, node worker1): module 'posixpath' has no attribute 'exist'\r\nsomething is wrong with submission of task: 1\r\n2020-08-31 18:41:16,030 INFO:dist:Thread-1 - Status.. worker1 -> {'total': 0, 'pending': 0, 'running': 0, 'completed': 0, 'reported': 0}\r\n2020-08-31 18:41:16,071 ERROR:dist:Thread-1 - module 'posixpath' has no attribute 'exist'\r\nTraceback (most recent call last):\r\n  File \"dist.py\", line 185, in node_submit_task\r\n    if not os.path.exist(task.path):\r\nAttributeError: module 'posixpath' has no attribute 'exist'\r\n2020-08-31 18:41:16,071 CRITICAL:dist:Thread-1 - Error submitting task (task #1, node worker1): module 'posixpath' has no attribute 'exist'\r\nsomething is wrong with submission of task: 1\r\n`\nComment: ok by parts , for future please use markdown code escape as it hard to read, i just fixed the error, my bad c&p between private copy of dist.py and public one\nComment: @doomedraven I have a question as well regarding this topic. \r\n\r\n1.  api.py prints that it is deprecated so does this mean that it doesn't need to be run and is handled by the main web gui api?\r\n\r\nFor example, should I register master and the worker like so?\r\n\r\n```\r\ncurl http://localhost:9003/node -F name=master -F url=http://<MASTER_IP>:8000/api/\r\ncurl http://localhost:9003/node -F name=workerX -F url=http://<WORKER_IP>:8000/api/\r\n```\r\n\r\nI tried this and the result was:\r\n\r\n`{\"message\": \"Invalid Cuckoo node (http://<MASTER_IP>:8000/api/): 'machines'\"}\r\n`\r\n\r\nUpdate:\r\n\r\nI found the issue and created a pull request - https://github.com/kevoreilly/CAPEv2/pull/257\r\n\nComment: thanks for PR, well when we did dist.py we did it specially for api.py to separate the load. but later i started to backport everything to /api/ but i didn't finish it, so you need to use that api, and is not really depricated, is just that is not maintained/extended anymore as it should be used for cluster cape, but ya one day i will finish the `/api/` integration.\r\n\r\nthe registration of master is needed just for few reasons, as you saw it can be analyzer or just storage\nComment: @doomedraven \r\n\r\nThank you.  I'm hoping you could answer a couple more questions I have regarding this topic.\r\n\r\n1.  In order to use CAPE in a distributed fashion, do I have to set up distributed Mongo as well?\r\n2.  I see \"ERROR :-( The specified analysis does not exist or not finished yet\" when clicking on a distributed analysis.  Each of these analyses shows that it is in the \"reported\" status.  All of the analyses that ran through master don't have this issue however.  Are there any recommendations you have for how to troubleshoot this?  I logged onto the distributed system and reviewed cuckoo.log/process.log and everything seems normal.\r\n\r\n\r\n\r\n\nComment: Hello,\r\n1. yes you need set shard mongo and prefertly shard+replica, as if no if 1 node goes down or maintenance whole cluster goes down if you don't have replica set\r\n\r\n2. are they reported on worker servers? that is weird that normally happens when analysis didn't finished on worker\r\nlet me know if i can help more\nComment: Thank you for the answers and the fix, now I am able to distribute task, I have to play more with the processing results. \r\n\r\nI have one more question. Is necessary to use vmcloak or some alternative with capev2 or cape has some features to cloak the virtualization?\nComment: You are welcome, we dont use ir as vmcloak is for vboz only, we strongly\nsuggest to use kvm for best performance and anti-*, what i personally doing\nis create one base vm manually and then have it for years\n\nEl jue., 3 sept. 2020 16:47, Dominik Kouba <notifications@github.com>\nescribi\u00f3:\n\n> Thank you for the answers and the fix, now I am able to distribute task, I\n> have to play more with the processing results.\n>\n> I have one more question. Is necessary to use vmcloak or some alternative\n> with capev2 or cape has some features to cloak the virtualization?\n>\n> \u2014\n> You are receiving this because you were mentioned.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/250#issuecomment-686543420>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH37STWNF6MGTBPK3SSTSD6T7VANCNFSM4QBVHMZQ>\n> .\n>\n\nComment: But what about malware which is able to detect virtualization? We would like to analyse thousands of samples. Do You think it is unnecessary to have some kind of software like the vmcloak? Some of my colleagues suggested that I should use vmcloak or something like that, it is outdated and I know that with kvm it was easier and faster but what do you think? \nComment: again that tool is useful, but that is only for vbox, you can check my public version of kvm-qemu with all antovms \r\nhttps://github.com/doomedraven/Tools/blob/master/Virtualization/kvm-qemu.sh\r\n\r\nhttps://www.doomedraven.com/2016/05/kvm.html\r\n\r\nkvm is the best for defeat anti-* detections, vbox isn't so good for that, and not any other is so good as kvm\nComment: > Hello,\r\n> \r\n> 1. yes you need set shard mongo and prefertly shard+replica, as if no if 1 node goes down or maintenance whole cluster goes down if you don't have replica set\r\n> 2. are they reported on worker servers? that is weird that normally happens when analysis didn't finished on worker\r\n>    let me know if i can help more\r\n\r\nUpdate:\r\n\r\nLooks to all be working now.  Thanks again for all the help doomedraven you da man.\nComment: glad to hear that, you are welcome, let me know if i can help more\nComment: so does this issue solved? we still can speak here if you need any help, but it just to keep track of what is solved and what isn't\nComment: Give me this week, I am trying to set up everything, I will let you know as you can close this issue. I believe that is is going to work. I got stucked on the fact that analyses stopped working along the way as I set up distribution so I am trying everything from the begging, clean install. Thanks. \nComment: Hi,\r\nso I have couple of questions:\r\n1. I found in processing.conf that volatiliy is coming soon even here on github is written that volatility details are not woking. Are there any updates about this part of cape? \r\n\r\n2. I know that you recommend to run cape as non root user (without sudo). But if I do it, I get: `PermissionError: [Errno 13] Permission denied: '/opt/CAPEv2/log/cuckoo.log'`. The log is owned by cape user. I am logged in as another user, but according to the https://raw.githubusercontent.com/doomedraven/Tools/master/Sandbox/cape2.sh, cape user is not supposed to login. I think this is silly question, but where is the problem? I would like to run cape as non root user. Or should not I?\r\n\r\n3. After running cape (for now as root) without running rooter.py, I am getting `CuckooStartupError: The rooter is required but we can't connect to it as the rooter is not actually running. (In order to disable the use of rooter, please set route and internet to none in routing.conf).`. I do not know why, because in config is `router=none; internet=none`.\r\n\r\n4. I would like to get maximum output from cape (including volatility, networking and so on). If I try to run analysis of the file presented [here](https://capesandbox.com/analysis/58102/) in public instance of cape sandbox, there is a lot of things to see, even yara detection and so on. On the other hand If I run it in my instance of cape I have got much poorer output - without some process dumps, without network trafic, without dropped files, no yara detection...\r\n\r\nWhere could be the difference? Can you share with me configuration of public instance?\r\n\r\nI thought it could be because of network config but I use also tor. My vm is win7, updated, agent version is up to date also.\r\n\r\n\r\nHere is output after my analyses of same sample: \r\n[output.zip](https://github.com/kevoreilly/CAPEv2/files/5195165/output.zip)\r\n\r\n\r\nHere is my configuration directory:\r\n[config.zip](https://github.com/kevoreilly/CAPEv2/files/5195180/config.zip)\r\n\r\nThanks for your interest\r\n\nComment: 1. no, as i don't have time to do that, the uniq thing that need to be done is to write integration of their JsonRenderer, but we don't have time to do that, so if someone wants to help us, you are more than welcome\r\n\r\n2. well once you run as root, you break a lot of different permission, (REALLY WELCOME TO HELL :D), restore them thats all, you can login with your user and then just `sudo su cape` and volia you have cape user ;) \r\n\r\n3. bcz again you not checked -h and manual, that requires everything to be run as `cape` if no you have to provide correct group as argument\r\n\r\n4. bad setup? :P i won't hack into your box for investigation(take with humor ;)) but if you don't get that, that means something is bad on your end\r\n\r\n* You don''t need configs from public cape, jsut real them all to become familiar with them, and you really mostly need to disable what you don't need and do very small portion of configuration, like machinery conf and in cuckoo.conf mostly\r\n\r\ni don't have time right now to read logs and configs.\r\n\r\nadvice, before start vm with sandbox, check if everything works as if that would be normal vm, then start adding complications step by step, and check https://capev2.readthedocs.io/en/latest/# to ensure that you know what are you doing\nComment: Thanks, I will try to get a familiar step by step, actually, I did so several times, but I will go on. If you close this issue, can I ask somewhere else, of course, more specifically? \nComment: even if issue is closed, you still can write here for help without any problem, as i will be notified about new comments and answer when i can ",
+  "Title: updated Qakbot parser\nBody: \nComment: Updated extractor to support parsing either the unpacked parent or the core DLL statically. \nComment: Awesome!",
+  "Title: Update index.html\nBody: Add yara hit details and xref memory address",
+  "Title: Update procmemory.py\nBody: Find and report memory location of CAPE yara hit in full procdump",
+  "Title: Update index.html\nBody: Dark background in expanded view",
+  "Title: Update memory.py\nBody: Fix typo\nComment: Ta",
+  "Title: Update procmemory.py\nBody: Add detections for yara hits in full memory dump\nComment: Thanks",
+  "Title: ZIP file cannot  be analysised\nBody: I tried a few times on my sandbox, all ended in same error.\r\n\r\n##################################################################\r\nErrorLog\uff1a  \r\nFile \"C:/tmpjia_s08v/analyzer.py\", line 365, in run\r\n    __import__(package_name, globals(), locals(), [\"dummy\"])\r\nModuleNotFoundError: No module named 'modules.packages.zip'\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"C:/tmpjia_s08v/analyzer.py\", line 1373, in <module>\r\n    success = analyzer.run()\r\n  File \"C:/tmpjia_s08v/analyzer.py\", line 369, in run\r\n    raise CuckooError('Unable to import package \"{0}\", does ' \"not exist.\".format(package_name))\r\nlib.common.exceptions.CuckooError: Unable to import package \"modules.packages.zip\", does not exist.\r\nTraceback (most recent call last):\r\n  File \"C:/tmpjia_s08v/analyzer.py\", line 365, in run\r\n    __import__(package_name, globals(), locals(), [\"dummy\"])\r\nModuleNotFoundError: No module named 'modules.packages.zip'\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"C:/tmpjia_s08v/analyzer.py\", line 1373, in <module>\r\n    success = analyzer.run()\r\n  File \"C:/tmpjia_s08v/analyzer.py\", line 369, in run\r\n    raise CuckooError('Unable to import package \"{0}\", does ' \"not exist.\".format(package_name))\r\nlib.common.exceptions.CuckooError: Unable to import package \"modules.packages.zip\", does not exist.\r\n##################################################################\r\n\r\nI found same error on https://www.capesandbox.com/analysis/41065/ and many other zip samples, so I thought it might be an universal problem. As the errorcode is **ModuleNotFoundError: No module named 'modules.packages.zip'**. I discovered the folder CAPEv2/analyzer/windows/modules/packages/, there is no package named \"zip\", so this is the problem.\nComment: that should be extracted on server side and submitted extract files only, i have removed zip package as it doesn't know how to exec different file formats, ensure you are on latest sflock fron my repo",
+  "Title: return the memory dump and memory strings paths\nBody: ",
+  "Title: updates do_strings in memory.py\nBody: this resolves some TypeErrors that were generated and steals from procmemory.py to solve it.\nComment: thanks",
+  "Title: MWCP processing broken in current build\nBody: # Expected Behavior\r\n\r\nMWCPs process appropriate samples:\r\nhttps://capesandbox.com/analysis/29421/\r\n\r\n# Current Behavior\r\n\r\nMWCP doesn't process samples:\r\nhttps://capesandbox.com/analysis/38098/\r\n\r\n# Failure Information (for bugs)\r\n\r\nThese two analysis are for the same sample, but the earlier sample is successful in processing the MWCP but the second one isn't\r\n\r\nIt looks like something was broken between the two processing times unless CAPE acts differently when the same sample is resubmitted.\nComment: that was due a bug, it was fixed so now if you refresh that analysis it works",
+  "Title: Cape failed processing\nBody: # Expected Behavior\r\n\r\ncape succeeds processing files\r\n\r\n# Current Behavior\r\n\r\ncape failed processing on excell spreadsheet\r\n\r\n# Failure Information (for bugs)\r\n\r\nhttps://capesandbox.com/submit/status/39885/\nComment: Can you try submitting for less time? It's probably just timing out due to excessive behavior logs which is a perennial problem on the public instance. The answer is to submit with less time as we cannot increase the processing timeout any more - this just leads to the sandbox dying as it allows ludicrously sized behavior logs to get processed which just kills it for everyone.\nComment: I thought I submitted it with the standard time out of 200, what would be\nappropriate for the public instance?\n\nOn Wed, Aug 5, 2020, 1:52 PM kevoreilly <notifications@github.com> wrote:\n\n> Can you try submitting for less time? It's probably just timing out due to\n> excessive behavior logs which is a perennial problem on the public\n> instance. The answer is to submit with less time as we cannot increase the\n> processing timeout any more - this just leads to the sandbox dying as it\n> allows ludicrously sized behavior logs to get processed which just kills it\n> for everyone.\n>\n> \u2014\n> You are receiving this because you authored the thread.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/239#issuecomment-669337200>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AEEEQJWUJO7CG6LWVCKHRFTR7GL43ANCNFSM4PVXYNQA>\n> .\n>\n\nComment: Hmm it looks like it might be a different problem here - I'm reprocessing now in debug mode to see what's going wrong.\nComment: I'm not sure if that was the problem or not - I reprocessed the new job with timeout 100 and it worked.\r\n\r\nThe bigger question is a bit more tricky. There is basically no such thing as a perfect timeout - the current default of 200 is way too big for some samples, only just enough for others, I think the big problem is that people don't equate a failure in processing to a job that generated too much output to process in the timeout. This should be a prompt to try a lesser timeout. I almost never submit with the default timeout unless I know the malware needs it. If it doesn't detonate in, say, 60 secs I am happy to resubmit with 120 etc, rather than just accepting the default. To submit a ransomware sample for 200 seconds is just asking for trouble. It's like revving your car engine at the red line for 5 minutes just because it should be able to handle it.",
+  "Title: Execute all exported functions\nBody: Same issue as [Execute all exported functions](https://github.com/ctxis/CAPE/issues/366). Recap:\r\n\r\n> Certain implants that perform DLL sideloading include dummy functions to throw off analysis systems or researchers. For example, in the RedLeaves sample seen here on page **5**:\r\n> https://www.accenture.com/_acnmedia/PDF-76/Accenture-Hogfish-Threat-Analysis.pdf#zoom=50\r\n> \r\n> Could be an idea to to have an option, for example, \"allfunctions\", and if the DLL package is triggered, to run all exported functions present (as opposed to the \"function\" option, which allows you to set a specific function yourself).\r\n> \r\n> In the Behavior Analysis, the Process Tree would then allow to determine which function is real or being used.\r\n\r\nKev's reply:\r\n\r\n> This is a great idea and something I have looked at - I realised it would require pefile to be installed in the guest in order to enumerate the exports. I also considered the likelihood of crashing the process if an exported function was called with bad args, so decided it would be best done with a new process for every export. Other than that it should be straightforward. I will try and get this done, thanks for the suggestion.\r\n\r\nIf anyone's up for it, would be great! :+1: \nComment: done :)",
+  "Title: Small updates\nBody: ",
+  "Title: Emotet CAPE parser\nBody: # Expected Behavior\r\n\r\nLess than a 100 C2s for this sample: e3a8c36ee8def3882eaee14b5b91d7ce\r\n\r\nhttps://tria.ge/200730-mhbqzvny36/behavioral1\r\n\r\n# Current Behavior\r\n\r\nMore than 35 000 C2s parsed in CAPE:\r\n\r\nhttps://capesandbox.com/analysis/35438/\r\n\r\n\r\n\nComment: Not sure wtf happened there...\r\n\r\n... all I can say is it is fixed now: https://capesandbox.com/analysis/58680\r\n\r\nThanks for posting",
+  "Title: Cape vpn\nBody: # Expected Behavior\r\n\r\nmachine reaches out to the internet when setting VPN \r\n\r\n# Current Behavior\r\n\r\nMachine does not have network access when setting VPN\r\n\r\n# Failure Information (for bugs)\r\n\r\nhttps://capesandbox.com/analysis/35641/#network\r\n\nComment: restarted vpn, maybe was down, i need to improve the checking\nComment: https://github.com/kevoreilly/CAPEv2/blob/9b045366ebfcab678c202290dc194ee10bedf673/lib/cuckoo/core/scheduler.py#L555\r\nThis line of code disables vpn everytime an analysis is completed, causing the vpn issue. I was able to remove this if loop and vpn network is working fine for me.\r\nCape only needs to remove routing table entries and iptables entries which happens on line:\r\nhttps://github.com/kevoreilly/CAPEv2/blob/9b045366ebfcab678c202290dc194ee10bedf673/lib/cuckoo/core/scheduler.py#L551\nComment: well that depends how the vpn configuration is done, i never had issue and i have cape with vpn for idk like 3y\nComment: ah! In that case, do you mind sharing your vpn config with me so that my vpn doesn't disable every time an analysis finishes? Thank you in advance :)\nComment: hello you don't need to do nothign with .ovpn files, it just how you start the vpn,check this https://github.com/kevoreilly/CAPEv2/blob/master/utils/route.py  \r\nthen you have also this script that prepares all your vpns and configs to write, it just print and you will need to add that content https://github.com/kevoreilly/CAPEv2/blob/master/utils/vpn2cape.py\r\n\r\nand then run as it shows `sudo openvpn --config X.ovpn --script-security 2 --route-noexec --route-up utils/route.py &`\nComment: the main problem that we don't have right now any decent way to keep an eye that if vpn is up or not, as some time interface is up but it doesn't work, so we need some kind of check that check the exit ip and if that isn't correct then restart service/process, but i dn't have time to do it\nComment: Ah, I see! So is vpn2cape integrated with cape at the moment and where is it being called? or is it something you run manually to setup VMs before running cape?\r\nSo I added the following line to my config and it seems to be working for me, atleast it did over the weekend. Every-time my vpn went down it would restart. Need to leave it on for a longer period of time to be sure.\r\nauth-retry interact\r\nMy setup is a little different than yours I believe, correct me if I am wrong. I have vpn tunnels running with routes per routing table per vpn. Upon sample submission, cape only adds \"ip rule <vm ip> lookup <vpn tunnel>\" and of-course iptable rules.\nComment: you run it manually to prepare all the configs as you need to fill another confs that are not related to CAPE, but to linux\r\n\r\nwell so in your setup the problem is next, what if you want to route 2 VMs over the same vpn? if you have all setup, cape rooter does the rest for vms\nComment: Yes, that is true. I am having that issue at the moment. 2 vms cannot route through the same vpn at the same time.\r\nI ll try and replicate your vpn setup, once I have that, I can spend some time working on the script to check if vpn is working.\nComment: just follow the output from that vpn2cape and you will have working vpn \nComment: my current configs and a python script to monitor vpn tunnels\r\nhttps://github.com/demo-god/cape-scripts/tree/master/openvpn\nComment: Thanks i will try to check once i 2ill have some time\n\nEl mar., 15 sept. 2020 17:55, demo-god <notifications@github.com> escribi\u00f3:\n\n> my current configs and a python script to monitor vpn tunnels\n> https://github.com/demo-god/cape-scripts/tree/master/openvpn\n>\n> \u2014\n> You are receiving this because you commented.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/235#issuecomment-692809653>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3743V6G6CRLBQ4AJL3SF6FAXANCNFSM4POFW3IA>\n> .\n>\n\nComment: thanks there is similar one already https://github.com/kevoreilly/CAPEv2/blob/master/utils/vpncheck.py\nComment: Sorry, maybe bad question. But it is related to this topis.\r\nI did:\r\n1. create .ovpn file\r\n2. used vpn2cape.sh to generate configuration which I imported to routing.conf and enabled VPN\r\n3. run rooter as root (as referenced in documentation` sudo python3 /opt/CAPEv2/utils/rooter.py --iptables /usr/sbin/iptables --iptables-restore /usr/sbin/iptables-restore --iptables-save /usr/sbin/iptables-save -g cape`\r\n4.  `sudo openvpn --config /etc/openvpn/vpn0.ovpn --script-security 2 --route-noexec --route-up /opt/CAPEv2/utils/route.py` causes: \r\n```\r\nOptions error: --route-up script fails with '/opt/CAPEv2/utils/route.py': Permission denied (errno=13)\r\nOptions error: Please correct this error.\r\nUse --help for more information.\r\n\r\n```\r\n\r\nI definitely missed something, but it is running in sudo, so I do not know what permissions is it missing.\r\n\r\n\r\nBtw. if I run cuckoo itself with this config:\r\n```\r\n[routing]\r\nroute=vpn1\r\n.\r\n.\r\n.\r\n[vpn]\r\n# By default we disable VPN support as it requires running utils/rooter.py as\r\n# root next to cuckoo.py (which should run as regular user).\r\nenabled = yes\r\n\r\n# Comma-separated list of the available VPNs.\r\nvpns = vpn1\r\n\r\n[vpn1]\r\nname = /etc/openvpn/vpn0.ovpn\r\ndescription = vpn0\r\ninterface = tun1\r\nrt_table = [IP.ADDRESS.OF.SERVER]\r\n\r\n\r\n```\r\n\r\nCuckoo is giving: `CuckooStartupError: The VPN/Socks5 defined as default routing target has not been configured in routing.conf.`\r\n\r\nWhat I misconfigured/misunderstand?\r\n\r\nThank you in advance for any tip.\nComment: chmod a+x utils/route.py?\n\nEl jue., 19 nov. 2020 0:09, Dominik Kouba <notifications@github.com>\nescribi\u00f3:\n\n> Sorry, maybe bad question. But it is related to this topis.\n> I did:\n>\n>    1. create .ovpn file\n>    2. used vpn2cape.sh to generate configuration which I imported to\n>    routing.conf and enabled VPN\n>    3. run rooter as root (as referenced in documentation sudo python3\n>    /opt/CAPEv2/utils/rooter.py --iptables /usr/sbin/iptables\n>    --iptables-restore /usr/sbin/iptables-restore --iptables-save\n>    /usr/sbin/iptables-save -g cape\n>    4. sudo openvpn --config /etc/openvpn/vpn0.ovpn --script-security 2\n>    --route-noexec --route-up /opt/CAPEv2/utils/route.py causes:\n>\n> Options error: --route-up script fails with '/opt/CAPEv2/utils/route.py': Permission denied (errno=13)\n> Options error: Please correct this error.\n> Use --help for more information.\n>\n>\n> I definitely missed something, but it is running in sudo, so I do not know\n> what permissions is it missing.\n>\n> Btw. if I run cuckoo itself with this config:\n>\n> [routing]\n> route=vpn1\n> ..\n> .\n> ..\n> [vpn]\n> # By default we disable VPN support as it requires running utils/rooter.py as\n> # root next to cuckoo.py (which should run as regular user).\n> enabled = yes\n>\n> # Comma-separated list of the available VPNs.\n> vpns = vpn1\n>\n> [vpn1]\n> name = /etc/openvpn/vpn0.ovpn\n> description = vpn0\n> interface = tun1\n> rt_table = [IP.ADDRESS.OF.SERVER]\n>\n>\n>\n> Cuckoo is giving: CuckooStartupError: The VPN/Socks5 defined as default\n> routing target has not been configured in routing.conf.\n>\n> What I misconfigured/misunderstand?\n>\n> Thank you in advance for any tip.\n>\n> \u2014\n> You are receiving this because you modified the open/close state.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/235#issuecomment-730013974>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH32VL6YPMK6YNWN7JFTSQRH3ZANCNFSM4POFW3IA>\n> .\n>\n\nComment: oh, gosh.... You are right, thank you very much. So now I have to solve only the startup fail. \nComment: what is the startup error?\nComment: if I run cuckoo itself with this config:\r\n```\r\n[routing]\r\nroute=vpn1\r\n.\r\n.\r\n.\r\n[vpn]\r\n# By default we disable VPN support as it requires running utils/rooter.py as\r\n# root next to cuckoo.py (which should run as regular user).\r\nenabled = yes\r\n\r\n# Comma-separated list of the available VPNs.\r\nvpns = vpn1\r\n\r\n[vpn1]\r\nname = /etc/openvpn/vpn0.ovpn\r\ndescription = vpn0\r\ninterface = tun1\r\nrt_table = [IP.ADDRESS.OF.SERVER]\r\n`\r\n\r\nCuckoo is giving: `CuckooStartupError: The VPN/Socks5 defined as default routing target has not been configured in routing.conf.\r\n```\r\nWhat I misconfigured/misunderstand? Even if I try configure it in vpn.conf. Still the same error.\r\n\nComment: it should use name field -> `name = /etc/openvpn/vpn0.ovpn` as routing and idk why you set path to ovpn there\nComment: This was produced by `sudo python3 vpn2cape.py /etc/openvpn/`\r\n\r\n```\r\n[vpn_1]\r\nname = /etc/openvpn/vpn0.ovpn\r\ndescription = vpn0\r\ninterface = tun1\r\nrt_table = 147.32.82.210\r\n\r\n\r\n\r\n\r\n[+] VPNs for CAPE's routing.conf\r\nvpn_1\r\n\r\n\r\n\r\n[+] rt_table for /etc/iproute2/rt_tables\r\n5 147.32.82.210\r\n\r\n\r\n\r\n[+] Paths to execute all in one\r\nsudo openvpn --config vpn0.ovpn --script-security 2 --route-noexec --route-up utils/route.py &\r\n```\r\n\r\nAfter changing it to name string, cuckoo started. Tomorrow I will try network connectivity from the machine during analyses. Thanks again.\r\n\nComment: ah damn, thanks i will need to add note about that\nComment: How do you think I should test it?\r\nI thought that I will just run analysis and go to the running VM gui and try to connect to the internet through VPN. It is not working.   Should it work or I have to find another way of testing that VPN is ok and malware is able to access internet?\r\n\r\nBeside analysis I am running:\r\n`sudo openvpn --config /etc/openvpn/vpn0.ovpn --script-security 2 --route-noexec --route-up /opt/CAPEv2/utils/route.py`\r\n\r\nand \r\n\r\n`sudo python3 /opt/CAPEv2/utils/rooter.py --iptables /usr/sbin/iptables --iptables-restore /usr/sbin/iptables-restore --iptables-save /usr/sbin/iptables-save -g cape`\nComment: why not just to use `curl` using tunX interface?\nComment: now I will wait for some beer as i need to do your job :D\nComment: Indeed, sorry for asking every time, but before I think about a solution every time.\r\n\r\nOn the other hand I explored that the original cmd running VPN is giving - `Failed running command (--route-up): could not execute external program` which I missed, so I will solve this first and then use `curl` as you kindly provided :D. \r\nThanks again.\nComment: So I know that the vpn is working and I fixed even privileges issues which I have had with route.py \ud83e\udd26 \r\n\r\nThan I got `ERROR: root is wrong table value`. After some investigation I found that env. variable `common_name` is set to root and in route.py it is used as name of the target table to which rules are added. But I am not sure.\r\n\r\nI changed value of this variable to 5, as I have in rt_table file this line:\r\n`5       IP_ADDRESS_OF_VPN_SERVER`\r\n\r\nAfter that two rules are added through route.py to the table 5 when running vpn.\r\n```\r\nFri Nov 20 12:07:59 2020 /sbin1/ip addr add dev tun1 172.16.1.2/24 broadcast 172.16.1.255\r\nip rule add from 172.16.1.2 table 5\r\nip route add default via 172.16.1.1 dev tun1 table 5\r\n```\r\n\r\nIf I try connection from VM during analysis, it is not able to connect anywhere but to gw. \r\n\r\nI know that you are busy and you do not have time to solve my issues, I will go on with solving it. But just in case. Thanks.",
+  "Title: tar-file submitted to Windows VM does nothing\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [yes] I am running the latest version\r\n- [yes] I checked the documentation and found no answer\r\n- [yes] I checked to make sure that this issue has not already been filed\r\n- [yes] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\nI'm expecting to see Capev2 extract and submit files from the tar archive.\r\nWhen I submitted the same file to capesandbox.com, the logging show something different.\r\n\r\n# Current Behavior\r\nThe analysis runs until timeout and the result is not complete, because the executable that was inside the tar-file was not executed.\r\n\r\n# Failure Information (for bugs)\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. submit tar-archive containing Windows executable\r\n2. wait for result\r\n3. watch the incomplete analysis report\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | commit 8e3c40b506759cf0c4af23d314808e2c1599d960\r\n| OS version       | Ubuntu 20.04 host, Windows 7 32bit VM (KVM)\r\n\r\n## Failure Logs\r\n\r\nThis is a snippet from the capesandbox.com log:\r\n\r\n> 2020-05-13 09:29:15,496 [root] INFO: Date set to: 20200728T05:13:29, timeout set to: 300\r\n> 2020-07-28 05:13:29,078 [root] DEBUG: Starting analyzer from: C:\\tmp558c2t_g\r\n> 2020-07-28 05:13:29,078 [root] DEBUG: Storing results at: C:\\ZKUSxy\r\n> 2020-07-28 05:13:29,078 [root] DEBUG: Pipe server name: \\\\.\\PIPE\\ZPhWguX\r\n> 2020-07-28 05:13:29,078 [root] DEBUG: Python path: C:\\Users\\Louise\\AppData\\Local\\Programs\\Python\\Python38-32\r\n> 2020-07-28 05:13:29,078 [root] DEBUG: No analysis package specified, trying to detect it automagically.\r\n> 2020-07-28 05:13:29,093 [root] INFO: Automatically selected analysis package \"exe\"\r\n> 2020-07-28 05:13:29,093 [root] DEBUG: Trying to import analysis package \"exe\"...\r\n> 2020-07-28 05:13:29,125 [root] DEBUG: Imported analysis package \"exe\".\r\n> 2020-07-28 05:13:29,125 [root] DEBUG: Trying to initialize analysis package \"exe\"...\r\n> 2020-07-28 05:13:29,125 [root] DEBUG: Initialized analysis package \"exe\".\r\n> ---- cut ----\r\n> `2020-07-28 05:13:30,000 [root] INFO: Analyzer: Package modules.packages.exe does not specify a loader_64 option\r\n> 2020-07-28 05:13:30,093 [lib.api.process] INFO: Successfully executed process from path \"C:\\Users\\Louise\\AppData\\Local\\Temp\\1009745.exe\" with arguments \"\" with pid 3004\r\n> 2020-07-28 05:13:30,093 [lib.api.process] INFO: Monitor config for process 3004: C:\\tmp558c2t_g\\dll\\3004.ini\r\n> ---- cut ----\r\n\r\n\r\nThis is a snippet from my sandbox log:\r\n\r\n> 2020-07-28 12:39:42,574 [root] INFO: Date set to: 20200728T14:12:23, timeout set to: 200\r\n> 2020-07-28 14:12:23,000 [root] DEBUG: Starting analyzer from: C:\\tmptyf0aezq\r\n> 2020-07-28 14:12:23,000 [root] DEBUG: Storing results at: C:\\URUzzA\r\n> 2020-07-28 14:12:23,000 [root] DEBUG: Pipe server name: \\\\.\\PIPE\\evPLddPp\r\n> 2020-07-28 14:12:23,000 [root] DEBUG: Python path: C:\\Python38-32\r\n> 2020-07-28 14:12:23,015 [root] DEBUG: No analysis package specified, trying to detect it automagically.\r\n> 2020-07-28 14:12:23,046 [root] INFO: Automatically selected analysis package \"generic\"\r\n> 2020-07-28 14:12:23,062 [root] DEBUG: Trying to import analysis package \"generic\"...\r\n> 2020-07-28 14:12:23,062 [root] DEBUG: Imported analysis package \"generic\".\r\n> 2020-07-28 14:12:23,062 [root] DEBUG: Trying to initialize analysis package \"generic\"...\r\n> 2020-07-28 14:12:23,062 [root] DEBUG: Initialized analysis package \"generic\".\r\n> ---- cut ----\r\n> 2020-07-28 14:12:24,216 [root] INFO: Analyzer: Package modules.packages.generic does not specify a loader_64 option\r\n> 2020-07-28 14:12:24,528 [lib.api.process] INFO: Successfully executed process from path \"C:\\Windows\\system32\\cmd.exe\" with arguments \"/c start /wait \"\" \"C:\\Users\\Bob\\AppData\\Local\\Temp\\1009745.tar\"\" with pid 1896\r\n> 2020-07-28 14:12:24,528 [lib.api.process] INFO: Monitor config for process 1896: C:\\tmptyf0aezq\\dll\\1896.ini\r\n> ---- cut ----\r\n\r\nThe different process being executed is obvious here. It looks to me like the cuckoo process uploaded the extracted executable on capesandbox.com, but it uploaded the tar-archive to the Windows VM.\r\n\r\nI have tried solving this myself, but I have no idea where to start.\r\nAny help will be greatly appreciated!\r\n\r\nRegards,\r\nBob\nComment: hello could you provide file/hash or job id on public cape? so i could check what is wrong\nComment: and FYI https://github.com/doomedraven/sflock this is used to extract files\nComment: so what i would suggest is to ensure that you are on latest sflock `pip3 install -U https://github.com/doomedraven/sflock` so that will update everything, then restart cape-web if you run with systemd and you should be fine\nComment: Hi doomedraven, thanks for your help!\r\n\r\nThe job ID on public Cape is 33155, followed by Autotask 33156.\r\n\r\nWhen I execute the above pip3 command, it says it's already on the latest version:\r\n\r\n> root@cuckoo:~/temp# pip3 install -U sflock\r\n> Requirement already up-to-date: sflock in /usr/local/lib/python3.8/dist-packages (0.3.10)\r\n> Requirement already satisfied, skipping upgrade: cryptography>=2.1 in /usr/local/lib/python3.8/dist-packages (from sflock) (2.9.2)\r\n> Requirement already satisfied, skipping upgrade: click==6.6 in /usr/local/lib/python3.8/dist-packages (from sflock) (6.6)\r\n> Requirement already satisfied, skipping upgrade: peepdf>=0.4.1 in /usr/local/lib/python3.8/dist-packages (from sflock) (0.4.2)\r\n> Requirement already satisfied, skipping upgrade: python-magic>=0.4.13 in /usr/local/lib/python3.8/dist-packages (from sflock) (0.4.18)\r\n> Requirement already satisfied, skipping upgrade: olefile>=0.43 in /usr/lib/python3/dist-packages (from sflock) (0.46)\r\n> Requirement already satisfied, skipping upgrade: six>=1.4.1 in /usr/lib/python3/dist-packages (from cryptography>=2.1->sflock) (1.14.0)\r\n> Requirement already satisfied, skipping upgrade: cffi!=1.11.3,>=1.8 in /usr/local/lib/python3.8/dist-packages (from cryptography>=2.1->sflock) (1.14.0)\r\n> Requirement already satisfied, skipping upgrade: Pillow==3.2.0 in /usr/local/lib/python3.8/dist-packages (from peepdf>=0.4.1->sflock) (3.2.0)\r\n> Requirement already satisfied, skipping upgrade: jsbeautifier==1.6.2 in /usr/local/lib/python3.8/dist-packages (from peepdf>=0.4.1->sflock) (1.6.2)\r\n> Requirement already satisfied, skipping upgrade: pythonaes==1.0 in /usr/local/lib/python3.8/dist-packages (from peepdf>=0.4.1->sflock) (1.0)\r\n> Requirement already satisfied, skipping upgrade: future>=0.16.0 in /usr/local/lib/python3.8/dist-packages (from peepdf>=0.4.1->sflock) (0.18.2)\r\n> Requirement already satisfied, skipping upgrade: colorama==0.3.7 in /usr/local/lib/python3.8/dist-packages (from peepdf>=0.4.1->sflock) (0.3.7)\r\n> Requirement already satisfied, skipping upgrade: pycparser in /usr/local/lib/python3.8/dist-packages (from cffi!=1.11.3,>=1.8->cryptography>=2.1->sflock) (2.20)\r\n\r\nActually, what exactly happened was this error on the above command:\r\n> root@cuckoo:~/temp# pip3 install -U https://github.com/doomedraven/sflock\r\n> Collecting https://github.com/doomedraven/sflock\r\n>   Downloading https://github.com/doomedraven/sflock\r\n>      \\ 118 kB 1.5 MB/s\r\n>   ERROR: Cannot unpack file /tmp/pip-unpack-dbzaxpey/sflock (downloaded from /tmp/pip-req-build-phpcq6h7, content-type: text/html; charset=utf-8); cannot detect archive format\r\n> ERROR: Cannot determine archive format of /tmp/pip-req-build-phpcq6h7\r\n\r\nSo I first did a `wget https://github.com/doomedraven/sflock` and installed it with `pip3 install -U sflock`.\r\nI have restarted all cape services, just to be sure, and tried again. Unfortunately nothing has changed.\r\n\r\nI don't know if this is useful information, but here is a list with all the installed pip3 packages:\r\nroot@cuckoo:~/temp# pip3 list\r\n\r\n> Package                       Version\r\n> ----------------------------- --------------------\r\n> alabaster                     0.7.12\r\n> alembic                       1.0.11\r\n> altgraph                      0.17\r\n> androguard                    3.3.5\r\n> aniso8601                     8.0.0\r\n> apparmor                      2.13.3\r\n> appdirs                       1.4.3\r\n> apturl                        0.5.2\r\n> asgiref                       3.2.10\r\n> asn1crypto                    1.3.0\r\n> attrs                         19.3.0\r\n> Automat                       0.8.0\r\n> Babel                         2.8.0\r\n> backcall                      0.2.0\r\n> beautifulsoup4                4.9.1\r\n> blinker                       1.4\r\n> bottle                        0.12.18\r\n> bs4                           0.0.1\r\n> bson                          0.5.10\r\n> capstone                      4.0.2\r\n> catfish                       1.4.13\r\n> certifi                       2019.11.28\r\n> cffi                          1.14.0\r\n> chardet                       3.0.4\r\n> click                         6.6\r\n> colorama                      0.3.7\r\n> colorclass                    2.2.0\r\n> command-not-found             0.3\r\n> configobj                     5.0.6\r\n> constantly                    15.1.0\r\n> construct                     2.9.45\r\n> cryptography                  2.9.2\r\n> cupshelpers                   1.0\r\n> cybox                         2.1.0.21\r\n> cycler                        0.10.0\r\n> Cython                        0.29.20\r\n> dblatex                       0.3.11py3\r\n> dbus-python                   1.2.16\r\n> decorator                     4.4.2\r\n> defer                         1.0.6\r\n> Deprecated                    1.2.10\r\n> distlib                       0.3.0\r\n> distorm3                      3.5.0\r\n> distro                        1.4.0\r\n> distro-info                   0.23ubuntu1\r\n> Django                        3.0.8\r\n> django-ratelimit              3.0.0\r\n> dnspython                     1.16.0\r\n> docutils                      0.16\r\n> dpkt                          1.9.2\r\n> easygui                       0.98.1\r\n> entrypoints                   0.3\r\n> et-xmlfile                    1.0.1\r\n> filelock                      3.0.12\r\n> fire                          0.3.1\r\n> Flask                         1.1.2\r\n> Flask-RESTful                 0.3.8\r\n> Flask-SQLAlchemy              2.4.3\r\n> future                        0.18.2\r\n> GeoIP                         1.3.2\r\n> geoip2                        2.9.0\r\n> gevent                        20.4.0\r\n> gpg                           1.13.1-unknown\r\n> greenlet                      0.4.16\r\n> html5lib                      1.0.1\r\n> httplib2                      0.14.0\r\n> hyperlink                     19.0.0\r\n> idna                          2.8\r\n> ImageHash                     4.1.0\r\n> imagesize                     1.2.0\r\n> importlib-metadata            1.5.0\r\n> incremental                   16.10.1\r\n> ipaddr                        2.2.0\r\n> ipython                       7.16.1\r\n> ipython-genutils              0.2.0\r\n> itsdangerous                  1.1.0\r\n> java-random                   1.0\r\n> javaobj-py3                   0.4.1\r\n> jdcal                         1.4.1\r\n> jedi                          0.17.1\r\n> Jinja2                        2.11.2\r\n> jsbeautifier                  1.6.2\r\n> jsonschema                    3.2.0\r\n> keyring                       18.0.1\r\n> kiwisolver                    1.2.0\r\n> language-selector             0.1\r\n> lark-parser                   0.9.0\r\n> launchpadlib                  1.10.13\r\n> lazr.restfulclient            0.14.2\r\n> lazr.uri                      1.0.3\r\n> LibAppArmor                   2.13.3\r\n> libvirt-python                6.4.0\r\n> lightdm-gtk-greeter-settings  1.2.2\r\n> lxml                          4.5.1\r\n> maec                          4.1.0.16\r\n> Mako                          1.1.3\r\n> malwareconfig                 1.0.4\r\n> Markdown                      3.1.1\r\n> MarkupSafe                    1.1.1\r\n> matplotlib                    3.2.2\r\n> maxminddb                     1.5.4\r\n> menulibre                     2.2.1\r\n> mixbox                        1.0.3\r\n> more-itertools                4.2.0\r\n> msoffcrypto-tool              4.10.2\r\n> mugshot                       0.4.2\r\n> mwcp                          3.1.0\r\n> netifaces                     0.10.4\r\n> networkx                      2.4\r\n> nose                          1.3.7\r\n> ntlm-auth                     1.1.0\r\n> numpy                         1.19.0\r\n> oauthlib                      3.1.0\r\n> olefile                       0.46\r\n> oletools                      0.55.1\r\n> onboard                       1.4.1\r\n> openpyxl                      3.0.4\r\n> ordered-set                   4.0.2\r\n> packaging                     20.4\r\n> parso                         0.7.0\r\n> passlib                       1.7.2\r\n> pbkdf2                        1.3\r\n> pcodedmp                      1.2.6\r\n> Pebble                        4.5.3\r\n> peepdf                        0.4.2\r\n> pefile                        2019.4.18\r\n> pendulum                      2.0.5\r\n> pexpect                       4.8.0\r\n> pickleshare                   0.7.5\r\n> Pillow                        3.2.0\r\n> pip                           20.0.2\r\n> prompt-toolkit                3.0.5\r\n> psutil                        5.5.1\r\n> psycopg2                      2.8.5\r\n> ptyprocess                    0.6.0\r\n> pyasn1                        0.4.2\r\n> pyasn1-modules                0.2.1\r\n> pyattck                       2.0.2\r\n> pycairo                       1.16.2\r\n> pycparser                     2.20\r\n> pycrypto                      2.6.1\r\n> pycups                        1.9.73\r\n> pycurl                        7.43.0.2\r\n> pydeep                        0.4\r\n> pydot                         1.4.1\r\n> pyelftools                    0.26\r\n> pyfiglet                      0.8.post1\r\n> pygal                         2.4.0\r\n> Pygments                      2.2.0\r\n> PyGObject                     3.36.0\r\n> PyHamcrest                    1.9.0\r\n> PyInstaller                   3.6\r\n> PyJWT                         1.7.1\r\n> pymisp                        2.4.128\r\n> pymongo                       3.10.1\r\n> PyMySQL                       0.9.3\r\n> pyOpenSSL                     19.1.0\r\n> pyparsing                     2.3.0\r\n> pype32-py3                    0.1\r\n> pyrsistent                    0.16.0\r\n> PySocks                       1.7.1\r\n> python-apt                    2.0.0+ubuntu0.20.4.1\r\n> python-dateutil               2.8.1\r\n> python-debian                 0.1.36ubuntu1\r\n> python-editor                 1.0.4\r\n> python-magic                  0.4.18\r\n> python-whois                  0.7.3\r\n> pythonaes                     1.0\r\n> pytz                          2020.1\r\n> pytzdata                      2019.3\r\n> pyvmomi                       7.0\r\n> PyWavelets                    1.1.1\r\n> pyxlsb2                       0.0.2\r\n> PyYAML                        5.3.1\r\n> rarfile                       3.1\r\n> re2                           0.2.23\r\n> regex                         2020.6.8\r\n> reportlab                     3.5.34\r\n> requests                      2.24.0\r\n> requests-file                 1.5.1\r\n> requests-unixsocket           0.2.0\r\n> ruamel.yaml                   0.16.10\r\n> ruamel.yaml.clib              0.2.0\r\n> scipy                         1.5.1\r\n> scour                         0.37\r\n> SecretStorage                 2.3.1\r\n> service-identity              18.1.0\r\n> setuptools                    45.2.0\r\n> SFlock                        0.3.10\r\n> sgt-launcher                  0.2.5\r\n> simplejson                    3.17.0\r\n> six                           1.14.0\r\n> snowballstemmer               2.0.0\r\n> Socks5man                     0.3.0\r\n> soupsieve                     2.0.1\r\n> Sphinx                        3.1.2\r\n> sphinxcontrib-applehelp       1.0.2\r\n> sphinxcontrib-devhelp         1.0.2\r\n> sphinxcontrib-htmlhelp        1.0.3\r\n> sphinxcontrib-jsmath          1.0.1\r\n> sphinxcontrib-qthelp          1.0.3\r\n> sphinxcontrib-serializinghtml 1.1.4\r\n> SQLAlchemy                    1.3.18\r\n> SQLAlchemy-Utils              0.36.8\r\n> sqlparse                      0.3.1\r\n> ssh-import-id                 5.10\r\n> statistics                    1.0.3.5\r\n> supervisor                    4.1.0\r\n> suricata-update               1.1.0\r\n> suricatactl                   0.0.1.dev3\r\n> systemd-python                234\r\n> tabulate                      0.8.7\r\n> termcolor                     1.1.0\r\n> tldextract                    2.2.2\r\n> traitlets                     4.3.3\r\n> Twisted                       18.9.0\r\n> tzlocal                       2.1\r\n> ubuntu-advantage-tools        20.3\r\n> ubuntu-drivers-common         0.0.0\r\n> ufw                           0.36\r\n> unattended-upgrades           0.1\r\n> unicorn                       1.0.1\r\n> untangle                      1.1.1\r\n> urllib3                       1.25.8\r\n> vboxapi                       1.0\r\n> virtualenv                    20.0.17\r\n> volatility                    1.1.0b1\r\n> voluptuous                    0.11.7\r\n> wadllib                       1.3.3\r\n> wcwidth                       0.2.5\r\n> webencodings                  0.5.1\r\n> Werkzeug                      1.0.1\r\n> wheel                         0.34.2\r\n> wrapt                         1.12.1\r\n> xcffib                        0.8.1\r\n> xkit                          0.0.0\r\n> XLMMacroDeobfuscator          0.1.5\r\n> xlrd2                         1.2.6\r\n> xmltodict                     0.12.0\r\n> yara-python                   4.0.2\r\n> zipp                          1.0.0\r\n> zope.interface                4.7.1\r\n\nComment: hm thats weird, the problem is that as it works in capesandbox correctly, it should works everywhere\r\n\r\ntry this:\r\n```\r\nfrom sflock import unpack\r\nq = unpack(\"path_to_file\") #\u00a0if you get incorrect usage error try `q = unpack(b\"path_to_file\")`\r\nq.children\r\nq.children[0].to_dict()\r\n```\nComment: I did get the incorrect usage error, is that the problem here?\r\n\r\n```\r\nPython 3.8.2 (default, Jul 16 2020, 14:00:26)\r\n[GCC 9.3.0] on linux\r\nType \"help\", \"copyright\", \"credits\" or \"license\" for more information.\r\n>>> from sflock import unpack\r\n>>> q = unpack(\"test.tar\")\r\nTraceback (most recent call last):\r\n  File \"<stdin>\", line 1, in <module>\r\n  File \"/home/cape/.local/lib/python3.8/site-packages/sflock/main.py\", line 58, in unpack\r\n    raise IncorrectUsageException\r\nsflock.exception.IncorrectUsageException\r\n>>> q = unpack(b\"test.tar\")\r\n>>> q.children\r\n[<sflock.abstracts.File object at 0x7fbed67e7f40>]\r\n>>> q.children[0].to_dict()\r\n{'filename': b'1009745.exe', 'relapath': b'1009745.exe', 'relaname': b'1009745.exe', 'filepath': None, 'extrpath': [b'1009745.exe'], 'parentdirs': [], 'duplicate': False, 'size': 799744, 'children': [], 'type': 'file', 'finger': {'magic': 'PE32 executable (GUI) Intel 80386, for MS Windows', 'mime': 'application/x-dosexec', 'mime_human': 'dosexec', 'magic_human': 'PE32 executable (GUI) Intel 80386 (for MS Windows)'}, 'password': None, 'sha256': 'bbaae115e222ea3b5c61830b1101b7e92e530d2e9e42b17fbf9d05e64b2a73d5', 'platform': 'windows', 'package': 'exe', 'selected': True, 'preview': True, 'error': None}\r\n```\nComment: no, thats is fine, so it works just fine on your side too, not sure why it not extracted it\nComment: Hmm, is there anything else I can do, provide additional information or perform other tests?\r\n\r\nI'm not sure this is entirely related, because I think the agent shouldn't even have to deal with the zipfile itself, but I also tried to analyze a zip-file (without password) and this happened:\r\n```\r\n2020-07-28 12:39:41,248 [root] INFO: Date set to: 20200729T10:56:43, timeout set to: 60\r\n2020-07-29 10:56:43,015 [root] DEBUG: Starting analyzer from: C:\\tmptyf0aezq\r\n2020-07-29 10:56:43,015 [root] DEBUG: Storing results at: C:\\QwuWbE\r\n2020-07-29 10:56:43,015 [root] DEBUG: Pipe server name: \\\\.\\PIPE\\epwRreb\r\n2020-07-29 10:56:43,015 [root] DEBUG: Python path: C:\\Python38-32\r\n2020-07-29 10:56:43,015 [root] DEBUG: No analysis package specified, trying to detect it automagically.\r\n2020-07-29 10:56:43,015 [root] INFO: Automatically selected analysis package \"zip\"\r\n2020-07-29 10:56:43,015 [root] DEBUG: Trying to import analysis package \"zip\"...\r\n2020-07-29 10:56:43,093 [root] ERROR: Traceback (most recent call last):\r\n  File \"C:/tmptyf0aezq/analyzer.py\", line 365, in run\r\n    __import__(package_name, globals(), locals(), [\"dummy\"])\r\nModuleNotFoundError: No module named 'modules.packages.zip'\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"C:/tmptyf0aezq/analyzer.py\", line 1373, in <module>\r\n    success = analyzer.run()\r\n  File \"C:/tmptyf0aezq/analyzer.py\", line 369, in run\r\n    raise CuckooError('Unable to import package \"{0}\", does ' \"not exist.\".format(package_name))\r\nlib.common.exceptions.CuckooError: Unable to import package \"modules.packages.zip\", does not exist.\r\nTraceback (most recent call last):\r\n  File \"C:/tmptyf0aezq/analyzer.py\", line 365, in run\r\n    __import__(package_name, globals(), locals(), [\"dummy\"])\r\nModuleNotFoundError: No module named 'modules.packages.zip'\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"C:/tmptyf0aezq/analyzer.py\", line 1373, in <module>\r\n    success = analyzer.run()\r\n  File \"C:/tmptyf0aezq/analyzer.py\", line 369, in run\r\n    raise CuckooError('Unable to import package \"{0}\", does ' \"not exist.\".format(package_name))\r\nlib.common.exceptions.CuckooError: Unable to import package \"modules.packages.zip\", does not exist.\r\n2020-07-29 10:56:43,093 [root] WARNING: Folder at path \"C:\\QwuWbE\\debugger\" does not exist, skip.\r\n2020-07-29 10:56:43,093 [root] INFO: Analysis completed.\r\n```\nComment: nah, i removed zip support from it, due that it was confusing people and zip package doesn't know how to support many filetypes, how to run them correctly, so it should be extracted on server side and submit files to cape for analysis and in webgui you will see parent file to be able to link to zip or any other archive type\r\n\r\nwhat i can tell you try to add some logging to demux.py in `lib/cuckoo/common/demux.py` is where it extracted\nComment: I've done some testing and at some point I got to see the extracted file, but I have no idea how to proceed with this information.\r\n\r\n```\r\nPython 3.8.2 (default, Jul 16 2020, 14:00:26)\r\n[GCC 9.3.0] on linux\r\nType \"help\", \"copyright\", \"credits\" or \"license\" for more information.\r\n>>>\r\n>>> from lib.cuckoo.common.demux import demux_sample\r\n>>> package = \"\"\r\n>>> options = \"\"\r\n>>> file_path = \"/home/cape/test.tar\"\r\n>>>\r\n>>> demux_sample(file_path, package, options)\r\n\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/demux.py\", line 190, in demux_sflock\r\n    unpacked = unpack(filename, password=password)\r\n  File \"/home/cape/.local/lib/python3.8/site-packages/sflock/main.py\", line 61, in unpack\r\n    raise IncorrectUsageException\r\nsflock.exception.IncorrectUsageException\r\n[b'/home/cape/test.tar']\r\n>>>\r\n>>> demux_sample(file_path, package, 'password=\"\"')\r\n[b'/tmp/cuckoo-sflock/tmp7sa6o82c/1009745.exe']\r\n```\r\nAny debugging I put in there doesn't get printed though, so I still don't know why it's wrong.\nComment: the error is due to path without b, should be bytes not string\r\nhm so the cape works fine if it return you exe from there, did you try to resubmit sample again?\nComment: I have tried a couple of times, I keep getting the same results, unfortunately.\r\n\r\n```\r\n>>> from lib.cuckoo.common.demux import demux_sample\r\n>>> package = \"\"\r\n>>> options = \"\"\r\n>>> file_path = b\"/home/cape/test.tar\"\r\n>>>\r\n>>> demux_sample(file_path, package, options)\r\n\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/demux.py\", line 190, in demux_sflock\r\n    unpacked = unpack(filename, password=password)\r\n  File \"/home/cape/.local/lib/python3.8/site-packages/sflock/main.py\", line 61, in unpack\r\n    raise IncorrectUsageException\r\nsflock.exception.IncorrectUsageException\r\n[b'/home/cape/test.tar']\r\n```\r\nIf the path was the problem, should this not have worked? It works again when I change the options parameter to `'password=\"\"'`.\r\n```\r\n>>> demux_sample(file_path, package, 'password=\"\"')\r\n[b'/tmp/cuckoo-sflock/tmplf3otxup/1009745.exe']\r\n```\r\n\r\nThanks for trying to help me figure this out! I'm really baffled why I'm having this issue and seem to be the only one.\r\n\nComment: that is incorrect as you can't pass password in that way\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/lib/cuckoo/common/demux.py#L172\r\n\r\n`demux_sflock(filename, options, package):` so passing `password=` that is wrong options are string like this `password=X,name=x,blabla=blabla`, package can be `\"\"`\nComment: so the code is correct inside the cape as you can see it extracts it just fine, you just was passing incorect values there, im not really sure why it fails on your side if that works on capesandbox and you have latest sflock\nComment: what i would do is to add some logging of the options that you pass to that func when you submit a job to sandbox\nComment: > what i would do is to add some logging of the options that you pass to that func when you submit a job to sandbox\r\n\r\nI'm trying to do that, but I'm not familiar enough with Python unfortunately.\r\nI've been adding `log.debug(\"TEST {0}\".format(file_path))` and similar variables to various places (inside lib/cuckoo/core/database.py, lib/cuckoo/common/demux.py and web/submissions/views.py), but I can never find any logs with TEST.\r\n\r\nSorry for wasting your time with this, it's taking longer than necessary to find a fix for this! I appreciate your efforts though.\nComment: you can use `import code;code.interact(local=dict(locals(), **globals()))` that will give you a console inside in web on submission, i would place it somewhere in demux.py so you can see what it returns, but i can't help yoy too much as you see it returns exe anyway, so not sure what is wrong at all\nComment: I give up, I can't figure out what the problem is. It must be something with my Ubuntu installation I guess, since Cape is 100% clean.\r\nThanks again for trying to help me figure this out, but it's outside of me knowledge unfortunately.\r\nMaybe I'll do a clean reinstall of the whole server, since I've been building and upgrading on this since Ubuntu 16.04.\nComment: uff upgrading can hurt hard on that, is why i prefer clean installs, use 20.04 for clean install, and i hope it will be solved",
+  "Title: Guid randomizer\nBody: This is my first time doing a pull request, so I am not sure what format to write this in or even if I should have done this on the dev branch. There was a check to make sure that a UUID is never used twice, but that required writing them to a text file, and I was not sure if that was acceptable or not.\nComment: hello, thank you, PR here is fine, well i think it will be hard to overlap with another uuid",
+  "Title: cape extracted payload missing\nBody: # Expected Behavior\r\n\r\nThere should be an `CAPE` tab for this analysis https://www.capesandbox.com/analysis/26279/\r\n\r\n# Current Behavior\r\nFor the above mentioned analysis and some for others, that tab is missing though the analysis page says **`CAPE extracted potentially suspicious content`**\r\n\nComment: fixed, thanks",
+  "Title: CAPE doesn't process MWCP or \"try to extract without VM\" option\nBody: # Expected Behavior\r\n\r\nCAPE applies MWCPs to samples that match mwcp yara rules, and choosing config extraction without VM should resolve faster than using a VM\r\n\r\n# Current Behavior\r\n\r\nCAPE doesn't register static option and doesn't output the config from MWCP making it unsuitable for extracting configs of a large stream of samples: https://capesandbox.com/analysis/29378/\r\n\r\nFor this run I set the analysis package to Emotet manually, and tried to mark it as a static analysis, but it processed it just the same as a normal submission, with some extra down time up front.\r\n\r\n\r\n\nComment: fixed thanks\r\n\r\nif you set package is the same that run in vm, you should go to static tab and submit task there\r\n<img width=\"890\" alt=\"Captura de pantalla 2020-07-20 a las 21 43 03\" src=\"https://user-images.githubusercontent.com/1856495/87979223-00961480-cad2-11ea-9de4-653ca4b69d8b.png\">\r\n\r\nbut for some reason that doesn't work, looks like it due to TLP feature, once i will have some time i will investigate that\r\n\nComment: fixed\nComment: Sorry, could you clarify this sentence: \" if you set package is the same\nthat run in vm, you should go to static tab and submit task there\"?\n\nOn Mon, Jul 20, 2020 at 3:56 PM doomedraven <notifications@github.com>\nwrote:\n\n> Closed #231 <https://github.com/kevoreilly/CAPEv2/issues/231>.\n>\n> \u2014\n> You are receiving this because you authored the thread.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/231#event-3567582295>, or\n> unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AEEEQJTNB4SVGEPXEX6TPPTR4SOOVANCNFSM4PCUSPFA>\n> .\n>\n\nComment: See img if you dont want to submit to vm you should use the static tab/api\n\nEl mar., 21 jul. 2020 2:04, Solumnant <notifications@github.com> escribi\u00f3:\n\n> Sorry, could you clarify this sentence: \" if you set package is the same\n> that run in vm, you should go to static tab and submit task there\"?\n>\n> On Mon, Jul 20, 2020 at 3:56 PM doomedraven <notifications@github.com>\n> wrote:\n>\n> > Closed #231 <https://github.com/kevoreilly/CAPEv2/issues/231>.\n> >\n> > \u2014\n> > You are receiving this because you authored the thread.\n> > Reply to this email directly, view it on GitHub\n> > <https://github.com/kevoreilly/CAPEv2/issues/231#event-3567582295>, or\n> > unsubscribe\n> > <\n> https://github.com/notifications/unsubscribe-auth/AEEEQJTNB4SVGEPXEX6TPPTR4SOOVANCNFSM4PCUSPFA\n> >\n> > .\n> >\n>\n> \u2014\n> You are receiving this because you modified the open/close state.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/231#issuecomment-661467045>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH37V7PNQMD3BTAJWFF3R4TLSPANCNFSM4PCUSPFA>\n> .\n>\n\nComment: `file` tab is to send file to vm, `static` is to run parser on file without vm, but it should extract it before submit to vm anyway, but for some reason it doesn't work, would need to investigate, but no time for that right now\nComment: As long as I already have a ticket about MWCPs, could I ask how MWCPs get triggered and where their associate yara rules go?\r\n\r\nI assumed that they are triggered by same name yara rules in the data/yara/CAPE directory, but Smokeloader.py doesn't seem to have a yara rule in that directory.\r\n\r\nAre yara rules loaded from directories other than the above location? Are there ways to have a MWCP triggered other than a yara rule?\r\n\r\nI've been looking into the code up to process_file in cape.py under processing, but I thought I would just ask about the architecture directly.\nComment: please read https://www.doomedraven.com/2020/02/cape-sandbox-config-extraction.html\r\n\r\nyaras from cape folder but the rest is in blogpost\nComment: So for this instance with smokeloader, it's not by design that there isn't\na corresponding yara rule in\nhttps://github.com/kevoreilly/CAPEv2/tree/master/data/yara/CAPE .\n\nAll MWCPs are triggered by Yara rules in the above folder, so\nsmokeloader.py (\nhttps://github.com/kevoreilly/CAPEv2/blob/master/modules/processing/parsers/mwcp/SmokeLoader.py)\ncan\nnever be triggered/ is dead code because it doesn't have a smokeloader.yar\nto trigger it in data/yara/CAPE.\n\nI was confused by the fact that smokeloader.py has a yara rule in it, but\nthere is no smokeloader.yar, so I thought that there was logic to pull the\nyara rules from the mwcp .py files that I was missing.\n\nI guess that would be a bug report for that MWCP\n\nOn Thu, Jul 30, 2020 at 4:55 PM doomedraven <notifications@github.com>\nwrote:\n\n> please read\n> https://www.doomedraven.com/2020/02/cape-sandbox-config-extraction.html\n>\n> yaras from cape folder but the rest is in blogpost\n>\n> \u2014\n> You are receiving this because you authored the thread.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/231#issuecomment-666690206>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AEEEQJRNAA7N36HUJF7JC43R6HM2HANCNFSM4PCUSPFA>\n> .\n>\n\nComment: well there are different thing that can be: \r\n* yara can be in community repo\r\n* yara can be our private repo and deployed by us on our server only without sharing with the rest\nComment: Thank you.\n\nJust wanted to check my sanity.\n\nOn Thu, Jul 30, 2020 at 6:03 PM doomedraven <notifications@github.com>\nwrote:\n\n> well there are different thing that can be:\n>\n>    - yara can be in community repo\n>    - yara can be our private repo and deployed by us on our server only\n>    without sharing with the rest\n>\n> \u2014\n> You are receiving this because you authored the thread.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/231#issuecomment-666733670>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AEEEQJRUE5YEFBIBHRU3L3DR6HU4PANCNFSM4PCUSPFA>\n> .\n>\n\nComment: Hi Solumnant, I don't remember what happened to the Smokeloader sig, I think this family hasn't been updated in years but I should look at fixing it up once more.  Thanks for pointing this out!\nComment: https://capesandbox.com/analysis/38098/\r\n\r\nI'm not seeing mwcps being processed again. I know this sample works with MWCPs since it worked before. \r\n\r\nNow I'm just getting \"Sorry! No CAPE files.\"\nComment: It appears as though it is for more than just emotet, I added a yara rule that detected a file foomwcp.yar, but it didn't trigger foomwcp.py at https://github.com/Defense-Cyber-Crime-Center/DC3-MWCP/blob/master/mwcp/parsers/foo.py for any output\nComment: To qualify as a detection in cape and trigger a parser, the sig has to have a cape_type metadata string with 'loader' or 'payload' in.\nComment: Sorry, should have included the file and the yara rule here. I ran the yara rule on itself, so it's the payload too.  I think I satisfied that requirement when I ran it\r\n\r\nrule foomwcp{\r\nmeta:\r\n        author = \"boxy\"\r\n        description = \"description\"\r\n        cape_type = \"foo Payload\"\r\n\r\nstrings:\r\n$s1=\"8A085DFC3E5BEF71F611D372D8C0040E9A525F08B9B53DE9F0804946218E0FB8\"\r\ncondition:\r\nall of them}\nComment: Maybe uppercase problem, idk im afk rigth now\n\nEl mar., 4 ago. 2020 18:38, Solumnant <notifications@github.com> escribi\u00f3:\n\n> Sorry, should have included the file and the yara rule here. I ran the\n> yara rule on itself, so it's the payload too. I think I satisfied that\n> requirement when I ran it\n>\n> rule foomwcp{\n> meta:\n> author = \"boxy\"\n> description = \"description\"\n> cape_type = \"foo Payload\"\n>\n> strings:\n> $s1=\"8A085DFC3E5BEF71F611D372D8C0040E9A525F08B9B53DE9F0804946218E0FB8\"\n> condition:\n> all of them}\n>\n> \u2014\n> You are receiving this because you modified the open/close state.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/231#issuecomment-668702052>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3YJEXGOIIYK7ZNTZDTR7A2SDANCNFSM4PCUSPFA>\n> .\n>\n\nComment: I don't think it's that unless payload needs to be in the description too, I used the emotet sig as a template once I realized you needed meta for cape. it could be that it needs to have the same name in cape_type as the mwcp, I'll try that next\r\n\r\n        author = \"kevoreilly\"\r\n        description = \"Emotet Payload\"\r\n        cape_type = \"Emotet Payload\"\nComment: This is the same emotet sample being processed by the mwcp previously\r\n\r\nhttps://capesandbox.com/analysis/29421/\nComment: that was fixed recently, some jobs might lose conf so resubmit",
+  "Title: Analysis of pafish.exe on Win 10 1903 x64 results in BSOD\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nAnalysis finishes without error.\r\n\r\n# Current Behavior\r\n\r\nWith behavioral analysis enabled a BSOD occurs on guest machine during the analysis.\r\n\r\n# Failure Information (for bugs)\r\n\r\nWith behavioral analysis enabled a BSOD \"CRITICAL_PROCESS_DIED\" caused by svchost.exe occurs on guest machine during the analysis.\r\n\r\n## Steps to Reproduce\r\n\r\n1. Submit pafish (https://github.com/a0rtega/pafish) for analysis on Win10 1903 x64 with behavioral analysis enabled\r\n\r\n## Context\r\n\r\nUsing machinery KVM remote\r\nHost machine: Ubuntu 18.04\r\nGuest machine: Windows 10 1903 x64\r\n\r\n## Failure Logs\r\n\r\nAnalyzer log:\r\n\r\n```\r\n2020-06-10 11:19:51,086 [root] INFO: Date set to: 20200720T14:08:21, timeout set to: 200\r\n2020-07-20 14:08:21,947 [root] DEBUG: Starting analyzer from: C:\\tmpqu_0_15f\r\n2020-07-20 14:08:21,947 [root] DEBUG: Storing results at: C:\\jQFoCX\r\n2020-07-20 14:08:21,947 [root] DEBUG: Pipe server name: \\\\.\\PIPE\\CMDRTzfXW\r\n2020-07-20 14:08:21,947 [root] DEBUG: Python path: C:\\Python38\r\n2020-07-20 14:08:21,947 [root] DEBUG: No analysis package specified, trying to detect it automagically.\r\n2020-07-20 14:08:22,522 [root] INFO: Automatically selected analysis package \"exe\"\r\n2020-07-20 14:08:22,522 [root] DEBUG: Trying to import analysis package \"exe\"...\r\n2020-07-20 14:08:22,522 [root] DEBUG: Imported analysis package \"exe\".\r\n2020-07-20 14:08:22,522 [root] DEBUG: Trying to initialize analysis package \"exe\"...\r\n2020-07-20 14:08:22,522 [root] DEBUG: Initialized analysis package \"exe\".\r\n2020-07-20 14:08:22,522 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.browser\"...\r\n2020-07-20 14:08:22,763 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.browser\".\r\n2020-07-20 14:08:22,763 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.curtain\"...\r\n2020-07-20 14:08:23,542 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.curtain\".\r\n2020-07-20 14:08:23,542 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.digisig\"...\r\n2020-07-20 14:08:23,542 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.digisig\".\r\n2020-07-20 14:08:23,542 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.disguise\"...\r\n2020-07-20 14:08:23,542 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.disguise\".\r\n2020-07-20 14:08:23,542 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.human\"...\r\n2020-07-20 14:08:23,542 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.human\".\r\n2020-07-20 14:08:23,542 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.procmon\"...\r\n2020-07-20 14:08:23,542 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.procmon\".\r\n2020-07-20 14:08:23,542 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.screenshots\"...\r\n2020-07-20 14:08:23,542 [modules.auxiliary.screenshots] DEBUG: Importing 'time'\r\n2020-07-20 14:08:23,542 [modules.auxiliary.screenshots] DEBUG: Importing 'StringIO'\r\n2020-07-20 14:08:23,542 [modules.auxiliary.screenshots] DEBUG: Importing 'Thread'\r\n2020-07-20 14:08:23,542 [modules.auxiliary.screenshots] DEBUG: Importing 'Auxiliary'\r\n2020-07-20 14:08:23,542 [modules.auxiliary.screenshots] DEBUG: Importing 'NetlogFile'\r\n2020-07-20 14:08:23,542 [modules.auxiliary.screenshots] DEBUG: Importing 'Screenshot'\r\n2020-07-20 14:08:23,542 [lib.api.screenshot] DEBUG: Importing 'math'\r\n2020-07-20 14:08:23,542 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageChops'\r\n2020-07-20 14:08:23,542 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageGrab'\r\n2020-07-20 14:08:23,542 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageDraw'\r\n2020-07-20 14:08:23,542 [modules.auxiliary.screenshots] DEBUG: Imports OK\r\n2020-07-20 14:08:23,542 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.screenshots\".\r\n2020-07-20 14:08:23,542 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.sysmon\"...\r\n2020-07-20 14:08:23,542 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.sysmon\".\r\n2020-07-20 14:08:23,542 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.usage\"...\r\n2020-07-20 14:08:23,542 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.usage\".\r\n2020-07-20 14:08:23,542 [root] DEBUG: Trying to initialize auxiliary module \"Browser\"...\r\n2020-07-20 14:08:23,542 [root] DEBUG: Initialized auxiliary module \"Browser\".\r\n2020-07-20 14:08:23,542 [root] DEBUG: Trying to start auxiliary module \"Browser\"...\r\n2020-07-20 14:08:23,542 [root] DEBUG: Started auxiliary module Browser\r\n2020-07-20 14:08:23,542 [root] DEBUG: Trying to initialize auxiliary module \"Curtain\"...\r\n2020-07-20 14:08:23,542 [root] DEBUG: Initialized auxiliary module \"Curtain\".\r\n2020-07-20 14:08:23,542 [root] DEBUG: Trying to start auxiliary module \"Curtain\"...\r\n2020-07-20 14:08:23,542 [root] DEBUG: Started auxiliary module Curtain\r\n2020-07-20 14:08:23,542 [root] DEBUG: Trying to initialize auxiliary module \"DigiSig\"...\r\n2020-07-20 14:08:23,542 [root] DEBUG: Initialized auxiliary module \"DigiSig\".\r\n2020-07-20 14:08:23,542 [root] DEBUG: Trying to start auxiliary module \"DigiSig\"...\r\n2020-07-20 14:08:23,542 [modules.auxiliary.digisig] DEBUG: Checking for a digital signature.\r\n2020-07-20 14:09:13,201 [modules.auxiliary.digisig] DEBUG: File is not signed.\r\n2020-07-20 14:09:13,201 [modules.auxiliary.digisig] INFO: Uploading signature results to aux/DigiSig.json\r\n2020-07-20 14:09:13,280 [root] DEBUG: Started auxiliary module DigiSig\r\n2020-07-20 14:09:13,280 [root] DEBUG: Trying to initialize auxiliary module \"Disguise\"...\r\n2020-07-20 14:09:13,280 [root] DEBUG: Initialized auxiliary module \"Disguise\".\r\n2020-07-20 14:09:13,280 [root] DEBUG: Trying to start auxiliary module \"Disguise\"...\r\n2020-07-20 14:09:13,280 [root] DEBUG: Started auxiliary module Disguise\r\n2020-07-20 14:09:13,280 [root] DEBUG: Trying to initialize auxiliary module \"Human\"...\r\n2020-07-20 14:09:13,280 [root] DEBUG: Initialized auxiliary module \"Human\".\r\n2020-07-20 14:09:13,280 [root] DEBUG: Trying to start auxiliary module \"Human\"...\r\n2020-07-20 14:09:13,280 [root] DEBUG: Started auxiliary module Human\r\n2020-07-20 14:09:13,280 [root] DEBUG: Trying to initialize auxiliary module \"Procmon\"...\r\n2020-07-20 14:09:13,280 [root] DEBUG: Initialized auxiliary module \"Procmon\".\r\n2020-07-20 14:09:13,280 [root] DEBUG: Trying to start auxiliary module \"Procmon\"...\r\n2020-07-20 14:09:13,280 [root] DEBUG: Started auxiliary module Procmon\r\n2020-07-20 14:09:13,280 [root] DEBUG: Trying to initialize auxiliary module \"Screenshots\"...\r\n2020-07-20 14:09:13,280 [root] DEBUG: Initialized auxiliary module \"Screenshots\".\r\n2020-07-20 14:09:13,280 [root] DEBUG: Trying to start auxiliary module \"Screenshots\"...\r\n2020-07-20 14:09:13,280 [root] DEBUG: Started auxiliary module Screenshots\r\n2020-07-20 14:09:13,280 [root] DEBUG: Trying to initialize auxiliary module \"Sysmon\"...\r\n2020-07-20 14:09:13,280 [root] DEBUG: Initialized auxiliary module \"Sysmon\".\r\n2020-07-20 14:09:13,280 [root] DEBUG: Trying to start auxiliary module \"Sysmon\"...\r\n2020-07-20 14:09:13,280 [root] DEBUG: Started auxiliary module Sysmon\r\n2020-07-20 14:09:13,280 [root] DEBUG: Trying to initialize auxiliary module \"Usage\"...\r\n2020-07-20 14:09:13,280 [root] DEBUG: Initialized auxiliary module \"Usage\".\r\n2020-07-20 14:09:13,280 [root] DEBUG: Trying to start auxiliary module \"Usage\"...\r\n2020-07-20 14:09:13,280 [root] DEBUG: Started auxiliary module Usage\r\n2020-07-20 14:09:13,280 [root] INFO: Analyzer: Package modules.packages.exe does not specify a DLL option\r\n2020-07-20 14:09:13,280 [root] INFO: Analyzer: Package modules.packages.exe does not specify a DLL_64 option\r\n2020-07-20 14:09:13,280 [root] INFO: Analyzer: Package modules.packages.exe does not specify a loader option\r\n2020-07-20 14:09:13,280 [root] INFO: Analyzer: Package modules.packages.exe does not specify a loader_64 option\r\n2020-07-20 14:09:16,216 [lib.api.process] INFO: Successfully executed process from path \"C:\\Users\\ADMINI~1\\AppData\\Local\\Temp\\pafish.exe\" with arguments \"\" with pid 4560\r\n2020-07-20 14:09:16,216 [lib.api.process] INFO: Monitor config for process 4560: C:\\tmpqu_0_15f\\dll\\4560.ini\r\n2020-07-20 14:09:16,216 [lib.api.process] INFO: 32-bit DLL to inject is C:\\tmpqu_0_15f\\dll\\ChWmxcF.dll, loader C:\\tmpqu_0_15f\\bin\\MJvHPoZ.exe\r\n2020-07-20 14:09:20,125 [root] DEBUG: ReadConfig: Successfully loaded pipe name \\\\.\\PIPE\\CMDRTzfXW.\r\n2020-07-20 14:09:20,125 [root] DEBUG: Loader: Injecting process 4560 (thread 2328) with C:\\tmpqu_0_15f\\dll\\ChWmxcF.dll.\r\n2020-07-20 14:09:20,125 [root] DEBUG: Process image base: 0x00400000\r\n2020-07-20 14:09:23,495 [root] DEBUG: InjectDllViaIAT: IAT patching with dll name C:\\tmpqu_0_15f\\dll\\ChWmxcF.dll.\r\n2020-07-20 14:09:23,495 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\r\n2020-07-20 14:09:23,495 [root] DEBUG: Successfully injected DLL C:\\tmpqu_0_15f\\dll\\ChWmxcF.dll.\r\n2020-07-20 14:09:23,495 [lib.api.process] INFO: Injected into suspended 32-bit process with pid 4560\r\n2020-07-20 14:09:25,548 [lib.api.process] INFO: Successfully resumed process with pid 4560\r\n2020-07-20 14:09:34,326 [root] DEBUG: Python path set to 'C:\\Python38'.\r\n2020-07-20 14:09:34,326 [root] DEBUG: Dropped file limit defaulting to 100.\r\n2020-07-20 14:09:34,384 [root] DEBUG: RestoreHeaders: Restored original import table.\r\n2020-07-20 14:09:34,384 [root] DEBUG: CAPE initialised: 32-bit monitor loaded in process 4560 at 0x6b1a0000, image base 0x400000, stack from 0x616000-0x620000\r\n2020-07-20 14:09:34,384 [root] DEBUG: Commandline: C:\\Users\\Administrator\\AppData\\Local\\Temp\\\"C:\\Users\\ADMINI~1\\AppData\\Local\\Temp\\pafish.exe\".\r\n2020-07-20 14:09:40,713 [root] INFO: Loaded monitor into process with pid 4560\r\n2020-07-20 14:09:40,713 [root] INFO: Added new file to list with pid None and path C:\\Users\\Administrator\\AppData\\Local\\Temp\\pafish.log\r\n2020-07-20 14:09:40,764 [root] INFO: Disabling sleep skipping.\r\n2020-07-20 14:09:52,014 [root] INFO: Added new file to list with pid None and path C:\\Users\\Administrator\\AppData\\Local\\Temp\\hi_CPU_VM_rdtsc_force_vm_exit\r\n2020-07-20 14:09:52,045 [root] INFO: Added new file to list with pid None and path C:\\Users\\Administrator\\AppData\\Local\\Temp\\hi_CPU_VM_hv_vendor_name\r\n2020-07-20 14:09:52,064 [root] DEBUG: DLL loaded at 0x74CE0000: C:\\Windows\\system32\\uxtheme (0x7a000 bytes).\r\n2020-07-20 14:09:54,777 [root] DEBUG: DLL loaded at 0x75100000: C:\\Windows\\System32\\NSI (0x7000 bytes).\r\n2020-07-20 14:09:54,777 [root] DEBUG: DLL loaded at 0x6B750000: C:\\Windows\\SYSTEM32\\dhcpcsvc6 (0x13000 bytes).\r\n2020-07-20 14:09:54,777 [root] DEBUG: DLL loaded at 0x74310000: C:\\Windows\\SYSTEM32\\dhcpcsvc (0x15000 bytes).\r\n2020-07-20 14:09:54,905 [root] DEBUG: DLL loaded at 0x70460000: C:\\Windows\\SYSTEM32\\DNSAPI (0x91000 bytes).\r\n2020-07-20 14:09:55,182 [root] DEBUG: DLL loaded at 0x6B650000: C:\\Windows\\System32\\WINSTA (0x49000 bytes).\r\n2020-07-20 14:09:55,182 [root] DEBUG: DLL loaded at 0x6B6A0000: C:\\Windows\\System32\\drprov (0x9000 bytes).\r\n2020-07-20 14:09:55,276 [root] DEBUG: DLL loaded at 0x6B630000: C:\\Windows\\System32\\ntlanman (0x12000 bytes).\r\n2020-07-20 14:09:55,307 [root] DEBUG: DLL loaded at 0x6B600000: C:\\Windows\\System32\\DAVHLPR (0xa000 bytes).\r\n2020-07-20 14:09:55,323 [root] DEBUG: DLL loaded at 0x6B610000: C:\\Windows\\System32\\davclnt (0x19000 bytes).\r\n2020-07-20 14:09:55,443 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x2fc and local view 0x04340000 to global list.\r\n2020-07-20 14:09:55,443 [root] INFO: Stopping WMI Service\r\n2020-07-20 14:10:08,342 [root] INFO: Stopped WMI Service\r\n2020-07-20 14:10:08,495 [lib.api.process] INFO: Monitor config for process 824: C:\\tmpqu_0_15f\\dll\\824.ini\r\n2020-07-20 14:10:08,531 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmpqu_0_15f\\dll\\UPVBinwD.dll, loader C:\\tmpqu_0_15f\\bin\\RHXOnKvy.exe\r\n2020-07-20 14:10:08,560 [root] DEBUG: ReadConfig: Successfully loaded pipe name \\\\.\\PIPE\\CMDRTzfXW.\r\n2020-07-20 14:10:08,560 [root] DEBUG: Loader: Injecting process 824 (thread 0) with C:\\tmpqu_0_15f\\dll\\UPVBinwD.dll.\r\n2020-07-20 14:10:08,573 [root] DEBUG: InjectDll: No thread ID supplied. Initial thread ID 828, handle 0x188\r\n2020-07-20 14:10:08,573 [root] DEBUG: Process image base: 0x00007FF7B9880000\r\n2020-07-20 14:10:08,573 [root] DEBUG: InjectDllViaIAT: Not a new process, aborting IAT patch\r\n2020-07-20 14:10:08,573 [root] DEBUG: InjectDll: IAT patching failed, falling back to thread injection.\r\n2020-07-20 14:10:08,589 [root] DEBUG: Python path set to 'C:\\Python38'.\r\n2020-07-20 14:10:08,589 [root] DEBUG: Dropped file limit defaulting to 100.\r\n2020-07-20 14:10:08,634 [root] INFO: Disabling sleep skipping.\r\n2020-07-20 14:10:08,634 [root] DEBUG: CAPE initialised: 64-bit monitor loaded in process 824 at 0x00007FFCABA10000, image base 0x00007FF7B9880000, stack from 0x0000006AAE775000-0x0000006AAE780000\r\n2020-07-20 14:10:08,634 [root] DEBUG: Commandline: C:\\Windows\\sysnative\\svchost.exe -k DcomLaunch -p.\r\n2020-07-20 14:10:08,634 [root] INFO: Loaded monitor into process with pid 824\r\n2020-07-20 14:10:08,634 [root] DEBUG: InjectDllViaThread: Successfully injected Dll into process via RtlCreateUserThread.\r\n2020-07-20 14:10:08,634 [root] DEBUG: InjectDll: Successfully injected DLL via thread.\r\n2020-07-20 14:10:08,634 [root] DEBUG: Successfully injected DLL C:\\tmpqu_0_15f\\dll\\UPVBinwD.dll.\r\n2020-07-20 14:10:08,995 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 1420, handle 0x7bc.\r\n2020-07-20 14:10:08,995 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 1420, handle 0x7bc.\r\n2020-07-20 14:10:08,995 [root] DEBUG: Error 5 (0x5) - OpenProcessHandler: Error obtaining target process name: Access is denied.\r\n2020-07-20 14:10:09,058 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 2348, handle 0x1310.\r\n2020-07-20 14:10:09,106 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 3576, handle 0x1318.\r\n2020-07-20 14:10:09,152 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 3116, handle 0x1324.\r\n2020-07-20 14:10:09,152 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 5500, handle 0x1350.\r\n2020-07-20 14:10:09,479 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 5280, handle 0x1324.\r\n2020-07-20 14:10:11,126 [root] INFO: Starting WMI Service\r\n2020-07-20 14:10:11,126 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 2656, handle 0x1324.\r\n2020-07-20 14:10:11,126 [root] DEBUG: Error 5 (0x5) - OpenProcessHandler: Error obtaining target process name: Access is denied.\r\n2020-07-20 14:10:12,044 [root] INFO: Started WMI Service\r\n2020-07-20 14:10:12,044 [lib.api.process] INFO: Monitor config for process 3116: C:\\tmpqu_0_15f\\dll\\3116.ini\r\n2020-07-20 14:10:12,109 [lib.api.process] INFO: 64-bit DLL to inject is C:\\tmpqu_0_15f\\dll\\UPVBinwD.dll, loader C:\\tmpqu_0_15f\\bin\\RHXOnKvy.exe\r\n2020-07-20 14:10:12,109 [root] DEBUG: ReadConfig: Successfully loaded pipe name \\\\.\\PIPE\\CMDRTzfXW.\r\n2020-07-20 14:10:12,109 [root] DEBUG: Loader: Injecting process 3116 (thread 0) with C:\\tmpqu_0_15f\\dll\\UPVBinwD.dll.\r\n2020-07-20 14:10:12,109 [root] DEBUG: InjectDll: No thread ID supplied. Initial thread ID 3592, handle 0x170\r\n2020-07-20 14:10:12,109 [root] DEBUG: Process image base: 0x00007FF7B9880000\r\n2020-07-20 14:10:12,109 [root] DEBUG: InjectDllViaIAT: Not a new process, aborting IAT patch\r\n2020-07-20 14:10:12,109 [root] DEBUG: InjectDll: IAT patching failed, falling back to thread injection.\r\n2020-07-20 14:10:12,109 [root] DEBUG: Python path set to 'C:\\Python38'.\r\n2020-07-20 14:10:12,109 [root] DEBUG: Dropped file limit defaulting to 100.\r\n2020-07-20 14:10:12,109 [root] INFO: Disabling sleep skipping.\r\n2020-07-20 14:10:12,109 [root] DEBUG: CAPE initialised: 64-bit monitor loaded in process 3116 at 0x00007FFCABA10000, image base 0x00007FF7B9880000, stack from 0x000000CFFB8F5000-0x000000CFFB900000\r\n2020-07-20 14:10:12,109 [root] DEBUG: Commandline: C:\\Windows\\sysnative\\svchost.exe -k netsvcs -p.\r\n2020-07-20 14:10:12,292 [root] INFO: Loaded monitor into process with pid 3116\r\n2020-07-20 14:10:12,292 [root] DEBUG: InjectDllViaThread: Successfully injected Dll into process via RtlCreateUserThread.\r\n2020-07-20 14:10:12,292 [root] DEBUG: InjectDll: Successfully injected DLL via thread.\r\n2020-07-20 14:10:12,292 [root] DEBUG: Successfully injected DLL C:\\tmpqu_0_15f\\dll\\UPVBinwD.dll.\r\n2020-07-20 14:10:12,558 [root] DEBUG: DLL unloaded from 0x00007FFC93260000.\r\n2020-07-20 14:10:13,620 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 6520, handle 0x1360.\r\n2020-07-20 14:10:14,353 [root] DEBUG: DLL loaded at 0x76A20000: C:\\Windows\\System32\\clbcatq (0x80000 bytes).\r\n2020-07-20 14:10:14,967 [root] DEBUG: DLL loaded at 0x77310000: C:\\Windows\\System32\\bcrypt (0x19000 bytes).\r\n2020-07-20 14:10:14,967 [root] DEBUG: DLL loaded at 0x6B580000: C:\\Windows\\SYSTEM32\\wbemcomn (0x69000 bytes).\r\n2020-07-20 14:10:14,967 [root] DEBUG: DLL loaded at 0x6B5F0000: C:\\Windows\\system32\\wbem\\wbemprox (0xd000 bytes).\r\n2020-07-20 14:10:16,151 [root] DEBUG: DLL loaded at 0x6B570000: C:\\Windows\\system32\\wbem\\wbemsvc (0x10000 bytes).\r\n2020-07-20 14:10:16,448 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 6520, handle 0x6fc.\r\n2020-07-20 14:10:16,448 [root] DEBUG: OpenProcessHandler: Image base for process 6520 (handle 0x6fc): 0x00007FF7B9880000.\r\n2020-07-20 14:10:17,088 [root] DEBUG: DLL loaded at 0x6B4A0000: C:\\Windows\\system32\\wbem\\fastprox (0xcb000 bytes).\r\n2020-07-20 14:10:17,360 [root] DEBUG: DLL loaded at 0x74840000: C:\\Windows\\SYSTEM32\\USERENV (0x1e000 bytes).\r\n2020-07-20 14:10:17,360 [root] DEBUG: DLL loaded at 0x6B490000: C:\\Windows\\SYSTEM32\\amsi (0xf000 bytes).\r\n2020-07-20 14:10:17,417 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x3a0 and local view 0x6B470000 to global list.\r\n2020-07-20 14:10:17,417 [root] DEBUG: DLL loaded at 0x6B470000: C:\\Program Files (x86)\\Windows Defender\\MpOav (0x19000 bytes).\r\n2020-07-20 14:10:17,417 [root] DEBUG: DLL loaded at 0x74860000: C:\\Windows\\system32\\version (0x8000 bytes).\r\n2020-07-20 14:10:18,089 [root] DEBUG: DLL unloaded from 0x6B570000.\r\n2020-07-20 14:10:18,089 [root] DEBUG: DLL unloaded from 0x6B5F0000.\r\n2020-07-20 14:10:18,089 [root] DEBUG: DLL unloaded from 0x6B4A0000.\r\n2020-07-20 14:10:18,138 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 4560, handle 0x1360.\r\n2020-07-20 14:10:18,175 [root] DEBUG: DLL loaded at 0x6B580000: C:\\Windows\\SYSTEM32\\wbemcomn (0x69000 bytes).\r\n2020-07-20 14:10:18,175 [root] DEBUG: DLL loaded at 0x6B5F0000: C:\\Windows\\system32\\wbem\\wbemprox (0xd000 bytes).\r\n2020-07-20 14:10:18,198 [root] DEBUG: DLL loaded at 0x6B570000: C:\\Windows\\system32\\wbem\\wbemsvc (0x10000 bytes).\r\n2020-07-20 14:10:18,198 [root] DEBUG: DLL loaded at 0x6B4A0000: C:\\Windows\\system32\\wbem\\fastprox (0xcb000 bytes).\r\n2020-07-20 14:10:18,324 [root] DEBUG: DLL unloaded from 0x6B570000.\r\n2020-07-20 14:10:18,324 [root] DEBUG: DLL unloaded from 0x6B5F0000.\r\n2020-07-20 14:10:18,324 [root] DEBUG: DLL unloaded from 0x6B4A0000.\r\n2020-07-20 14:10:19,421 [root] DEBUG: set_caller_info: Adding region at 0x00007FFC7BFC0000 to caller regions list (ntdll::RtlDispatchException).\r\n2020-07-20 14:10:19,463 [root] DEBUG: DumpMemory: CAPE output file successfully created: C:\\jQFoCX\\CAPE\\824_44398408819101420172020 (size 0x1f7)\r\n2020-07-20 14:10:19,489 [root] DEBUG: DumpRegion: Dumped entire allocation from 0x00007FFC7BFC0000, size 0xb000.\r\n2020-07-20 14:10:21,280 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 4168, handle 0x1370.\r\n2020-07-20 14:10:26,014 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 6920, handle 0x1188.\r\n```\r\nAnalysis log (from CAPEv2):\r\n```\r\n2020-07-20 16:08:22,033 [lib.cuckoo.core.scheduler] DEBUG: Task #2: Processing task\r\n2020-07-20 16:08:22,039 [lib.cuckoo.core.scheduler] INFO: Task #2: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_cx8dth3o/pafish.exe'\r\n2020-07-20 16:08:22,047 [lib.cuckoo.core.scheduler] INFO: Task #2: File already exists at '/opt/CAPEv2/storage/binaries/2180f4a13add5e346e8cf6994876a9d2f5eac3fcb695db8569537010d24cd6d5'\r\n2020-07-20 16:08:22,067 [lib.cuckoo.core.scheduler] INFO: Task #2: acquired machine win10 (label=win10, platform=windows)\r\n2020-07-20 16:08:22,122 [root] DEBUG: Now tracking machine <machine IP> for task #2\r\n2020-07-20 16:08:22,142 [lib.cuckoo.common.abstracts] DEBUG: Starting machine win10\r\n2020-07-20 16:08:22,142 [lib.cuckoo.common.abstracts] DEBUG: Getting status for win10\r\n2020-07-20 16:08:22,171 [lib.cuckoo.common.abstracts] DEBUG: Using snapshot capev2 for virtual machine win10\r\n2020-07-20 16:08:46,735 [lib.cuckoo.common.abstracts] DEBUG: Getting status for win10\r\n2020-07-20 16:08:46,762 [lib.cuckoo.core.rooter] CRITICAL: Unable to passthrough root command (drop_enable) as the rooter unix socket doesn't exist.\r\n2020-07-20 16:08:46,763 [lib.cuckoo.core.scheduler] INFO: Enabled route 'none'\r\n2020-07-20 16:08:49,348 [lib.cuckoo.core.plugins] DEBUG: Started auxiliary module: Sniffer\r\n2020-07-20 16:08:49,379 [lib.cuckoo.core.guest] INFO: Starting analysis #2 on guest (id=win10, ip=<machine IP>)\r\n2020-07-20 16:08:50,245 [lib.cuckoo.core.guest] INFO: Guest is running CAPE Agent 0.11 (id=win10, ip=<machine IP>)\r\n2020-07-20 16:08:50,835 [lib.cuckoo.core.guest] DEBUG: Uploading analyzer to guest (id=win10, ip=<machine IP>, size=19241523)\r\n2020-07-20 16:09:20,782 [lib.cuckoo.core.guest] INFO: Uploading support files to guest (id=win10, ip=<machine IP>)\r\n2020-07-20 16:09:26,139 [root] DEBUG: Task #2: live log analysis.log initialized.\r\n2020-07-20 16:09:26,418 [lib.cuckoo.core.guest] DEBUG: win10: analysis #2 is still running\r\n2020-07-20 16:09:31,616 [lib.cuckoo.core.guest] DEBUG: win10: analysis #2 is still running\r\n2020-07-20 16:09:36,778 [lib.cuckoo.core.guest] DEBUG: win10: analysis #2 is still running\r\n2020-07-20 16:09:41,966 [lib.cuckoo.core.guest] DEBUG: win10: analysis #2 is still running\r\n2020-07-20 16:09:47,211 [lib.cuckoo.core.guest] DEBUG: win10: analysis #2 is still running\r\n2020-07-20 16:09:52,356 [lib.cuckoo.core.guest] DEBUG: win10: analysis #2 is still running\r\n2020-07-20 16:09:57,513 [lib.cuckoo.core.guest] DEBUG: win10: analysis #2 is still running\r\n2020-07-20 16:10:02,684 [lib.cuckoo.core.guest] DEBUG: win10: analysis #2 is still running\r\n2020-07-20 16:10:07,874 [lib.cuckoo.core.guest] DEBUG: win10: analysis #2 is still running\r\n2020-07-20 16:10:13,008 [lib.cuckoo.core.guest] DEBUG: win10: analysis #2 is still running\r\n2020-07-20 16:10:18,488 [lib.cuckoo.core.guest] DEBUG: win10: analysis #2 is still running\r\n2020-07-20 16:10:18,491 [root] DEBUG: Task #2: File upload for b'aux/DigiSig.json'\r\n2020-07-20 16:10:18,492 [root] DEBUG: Task #2 uploaded file length: 199\r\n2020-07-20 16:10:21,707 [root] DEBUG: Task #2: File upload for b'shots/0001.jpg'\r\n2020-07-20 16:10:22,064 [root] DEBUG: Task #2 uploaded file length: 39610\r\n2020-07-20 16:10:23,843 [lib.cuckoo.core.guest] DEBUG: win10: analysis #2 is still running\r\n2020-07-20 16:10:25,576 [root] DEBUG: Task #2: File upload for b'aux/usage.log'\r\n2020-07-20 16:10:29,022 [lib.cuckoo.core.guest] DEBUG: win10: analysis #2 is still running\r\n2020-07-20 16:10:33,115 [root] DEBUG: Task #2: File upload for b'shots/0002.jpg'\r\n2020-07-20 16:10:33,337 [root] DEBUG: Task #2 uploaded file length: 42675\r\n2020-07-20 16:10:34,496 [lib.cuckoo.core.guest] DEBUG: win10: analysis #2 is still running\r\n2020-07-20 16:10:38,986 [root] DEBUG: Task #2: File upload for b'shots/0003.jpg'\r\n2020-07-20 16:10:39,047 [root] DEBUG: Task #2 uploaded file length: 41375\r\n2020-07-20 16:10:39,570 [root] DEBUG: Task #2 is sending a BSON stream. For pid 4560\r\n2020-07-20 16:10:39,661 [lib.cuckoo.core.guest] DEBUG: win10: analysis #2 is still running\r\n2020-07-20 16:10:44,799 [lib.cuckoo.core.guest] DEBUG: win10: analysis #2 is still running\r\n2020-07-20 16:10:47,510 [root] DEBUG: Task #2: File upload for b'shots/0004.jpg'\r\n2020-07-20 16:10:47,594 [root] DEBUG: Task #2 uploaded file length: 54522\r\n2020-07-20 16:10:49,937 [lib.cuckoo.core.guest] DEBUG: win10: analysis #2 is still running\r\n2020-07-20 16:10:55,148 [lib.cuckoo.core.guest] DEBUG: win10: analysis #2 is still running\r\n2020-07-20 16:10:58,342 [root] DEBUG: Task #2: File upload for b'shots/0005.jpg'\r\n2020-07-20 16:10:58,578 [root] DEBUG: Task #2 uploaded file length: 67575\r\n2020-07-20 16:10:59,524 [root] DEBUG: Task #2: File upload for b'shots/0006.jpg'\r\n2020-07-20 16:10:59,611 [root] DEBUG: Task #2 uploaded file length: 77775\r\n2020-07-20 16:11:00,265 [lib.cuckoo.core.guest] DEBUG: win10: analysis #2 is still running\r\n2020-07-20 16:11:00,800 [root] DEBUG: Task #2: File upload for b'shots/0007.jpg'\r\n2020-07-20 16:11:00,998 [root] DEBUG: Task #2 uploaded file length: 89217\r\n2020-07-20 16:11:02,493 [root] DEBUG: Task #2: File upload for b'shots/0008.jpg'\r\n2020-07-20 16:11:02,553 [root] DEBUG: Task #2 uploaded file length: 90179\r\n2020-07-20 16:11:05,466 [lib.cuckoo.core.guest] DEBUG: win10: analysis #2 is still running\r\n2020-07-20 16:11:10,551 [lib.cuckoo.core.guest] DEBUG: win10: analysis #2 is still running\r\n2020-07-20 16:11:13,848 [root] DEBUG: Task #2 is sending a BSON stream. For pid 824\r\n2020-07-20 16:11:15,719 [lib.cuckoo.core.guest] DEBUG: win10: analysis #2 is still running\r\n2020-07-20 16:11:17,408 [root] DEBUG: Task #2 is sending a BSON stream. For pid 3116\r\n2020-07-20 16:11:17,977 [root] DEBUG: Task #2: File upload for b'shots/0009.jpg'\r\n2020-07-20 16:11:18,109 [root] DEBUG: Task #2 uploaded file length: 46512\r\n2020-07-20 16:11:20,813 [lib.cuckoo.core.guest] DEBUG: win10: analysis #2 is still running\r\n2020-07-20 16:11:24,674 [root] DEBUG: Task #2: File upload for b'CAPE/755d2e987afe8eab29c6f7cbd08bf4e6750ecfcd1efe1ead74d6c8a8441c04d4'\r\n2020-07-20 16:11:24,679 [root] DEBUG: Task #2 uploaded file length: 503\r\n2020-07-20 16:11:26,033 [lib.cuckoo.core.guest] DEBUG: win10: analysis #2 is still running\r\n2020-07-20 16:11:31,220 [lib.cuckoo.core.guest] DEBUG: win10: analysis #2 is still running\r\n2020-07-20 16:11:37,230 [lib.cuckoo.core.guest] ERROR: CAPE Agent failed without error status, please try upgrading to the latest version of agent.py (>= 0.10) and notify us if the issue persists.\r\nTraceback (most recent call last):\r\n  File \"/usr/local/lib/python3.6/dist-packages/urllib3/connection.py\", line 160, in _new_conn\r\n    (self._dns_host, self.port), self.timeout, **extra_kw\r\n  File \"/usr/local/lib/python3.6/dist-packages/urllib3/util/connection.py\", line 84, in create_connection\r\n    raise err\r\n  File \"/usr/local/lib/python3.6/dist-packages/urllib3/util/connection.py\", line 74, in create_connection\r\n    sock.connect(sa)\r\nsocket.timeout: timed out\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"/usr/local/lib/python3.6/dist-packages/urllib3/connectionpool.py\", line 677, in urlopen\r\n    chunked=chunked,\r\n  File \"/usr/local/lib/python3.6/dist-packages/urllib3/connectionpool.py\", line 392, in _make_request\r\n    conn.request(method, url, **httplib_request_kw)\r\n  File \"/usr/lib/python3.6/http/client.py\", line 1264, in request\r\n    self._send_request(method, url, body, headers, encode_chunked)\r\n  File \"/usr/lib/python3.6/http/client.py\", line 1310, in _send_request\r\n    self.endheaders(body, encode_chunked=encode_chunked)\r\n  File \"/usr/lib/python3.6/http/client.py\", line 1259, in endheaders\r\n    self._send_output(message_body, encode_chunked=encode_chunked)\r\n  File \"/usr/lib/python3.6/http/client.py\", line 1038, in _send_output\r\n    self.send(msg)\r\n  File \"/usr/lib/python3.6/http/client.py\", line 976, in send\r\n    self.connect()\r\n  File \"/usr/local/lib/python3.6/dist-packages/urllib3/connection.py\", line 187, in connect\r\n    conn = self._new_conn()\r\n  File \"/usr/local/lib/python3.6/dist-packages/urllib3/connection.py\", line 167, in _new_conn\r\n    % (self.host, self.timeout),\r\nurllib3.exceptions.ConnectTimeoutError: (<urllib3.connection.HTTPConnection object at 0x7f20e28a26a0>, 'Connection to <machine IP> timed out. (connect timeout=5)')\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"/usr/local/lib/python3.6/dist-packages/requests/adapters.py\", line 449, in send\r\n    timeout=timeout\r\n  File \"/usr/local/lib/python3.6/dist-packages/urllib3/connectionpool.py\", line 725, in urlopen\r\n    method, url, error=e, _pool=self, _stacktrace=sys.exc_info()[2]\r\n  File \"/usr/local/lib/python3.6/dist-packages/urllib3/util/retry.py\", line 439, in increment\r\n    raise MaxRetryError(_pool, url, error or ResponseError(cause))\r\nurllib3.exceptions.MaxRetryError: HTTPConnectionPool(host='<machine IP>', port=8000): Max retries exceeded with url: /status (Caused by ConnectTimeoutError(<urllib3.connection.HTTPConnection object at 0x7f20e28a26a0>, 'Connection to <machine IP> timed out. (connect timeout=5)'))\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/guest.py\", line 122, in get\r\n    r = session.get(url, *args, **kwargs)\r\n  File \"/usr/local/lib/python3.6/dist-packages/requests/sessions.py\", line 543, in get\r\n    return self.request('GET', url, **kwargs)\r\n  File \"/usr/local/lib/python3.6/dist-packages/requests/sessions.py\", line 530, in request\r\n    resp = self.send(prep, **send_kwargs)\r\n  File \"/usr/local/lib/python3.6/dist-packages/requests/sessions.py\", line 643, in send\r\n    r = adapter.send(request, **kwargs)\r\n  File \"/usr/local/lib/python3.6/dist-packages/requests/adapters.py\", line 504, in send\r\n    raise ConnectTimeout(e, request=request)\r\nrequests.exceptions.ConnectTimeout: HTTPConnectionPool(host='<machine IP>', port=8000): Max retries exceeded with url: /status (Caused by ConnectTimeoutError(<urllib3.connection.HTTPConnection object at 0x7f20e28a26a0>, 'Connection to <machine IP> timed out. (connect timeout=5)'))\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/guest.py\", line 366, in wait_for_completion\r\n    status = self.get(\"/status\", timeout=5).json()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/guest.py\", line 125, in get\r\n    \"CAPE Agent failed without error status, please try \"\r\nlib.cuckoo.common.exceptions.CuckooGuestError: CAPE Agent failed without error status, please try upgrading to the latest version of agent.py (>= 0.10) and notify us if the issue persists.\r\n2020-07-20 16:12:44,913 [lib.cuckoo.core.guest] DEBUG: win10: analysis #2 is still running\r\n...\r\n<multiple connection issues as VM is not responding due to BSOD>\r\n...\r\n2020-07-20 16:13:42,835 [lib.cuckoo.core.guest] INFO: win10: end of analysis reached!\r\n2020-07-20 16:13:43,917 [lib.cuckoo.core.plugins] DEBUG: Stopped auxiliary module: Sniffer\r\n2020-07-20 16:13:43,918 [lib.cuckoo.common.abstracts] DEBUG: Stopping machine win10\r\n2020-07-20 16:13:43,919 [lib.cuckoo.common.abstracts] DEBUG: Getting status for win10\r\n2020-07-20 16:13:44,372 [lib.cuckoo.common.abstracts] DEBUG: Getting status for win10\r\n2020-07-20 16:13:44,397 [root] DEBUG: Stopped tracking machine <machine IP> for task #2\r\n2020-07-20 16:13:44,397 [root] DEBUG: Cancel <Context for b'BSON'> for task 2\r\n2020-07-20 16:13:44,398 [root] DEBUG: Cancel <Context for b'BSON'> for task 2\r\n2020-07-20 16:13:44,399 [root] DEBUG: Cancel <Context for b'FILE'> for task 2\r\n2020-07-20 16:13:44,399 [root] DEBUG: Cancel <Context for b'LOG'> for task 2\r\n2020-07-20 16:13:44,399 [root] DEBUG: Cancel <Context for b'BSON'> for task 2\r\n2020-07-20 16:13:44,400 [lib.cuckoo.core.rooter] CRITICAL: Unable to passthrough root command (drop_disable) as the rooter unix socket doesn't exist.\r\n2020-07-20 16:13:44,402 [root] DEBUG: Task #2 uploaded file length: 150\r\n2020-07-20 16:13:44,433 [lib.cuckoo.core.scheduler] DEBUG: Task #2: Released database task with status True\r\n2020-07-20 16:13:44,434 [lib.cuckoo.core.scheduler] INFO: Task #2: analysis procedure completed\r\n```\r\n\r\n\nComment: Wow well anything that can produce a BSOD in Windows is worth investigating! However I do have my doubts as cape functions purely in user mode. Therefore if it really can produce a BSOD it must do so from usermode, which would probably be quite big news!\r\n\r\nAnyway, the proof is in the pudding as they say. However, the devil is in the detail! So I can't necessarily guarantee the same issue will be found if I build my own version of Pafish with my own compiler, settings, etc. So if you can, please submit the sample in question to capesandbox.com and let me know the job number. Then I will grab the sample and test on my Win10 vm at home - although it is a more recent build than yours, it will still be worth testing. We can take it from there, cheers!\nComment: I already did so - https://capesandbox.com/analysis/26744/\r\nI have also tested pafish on another public CAPEv2 instance - https://sandbox.xor.al/analysis/881/\r\nI can't see any sign of BSOD, so my guess is that issue might occur only on Win10\nComment: I'm attaching minidump retrieved from VM\r\n[pafish_BSOD.zip](https://github.com/kevoreilly/CAPEv2/files/4953898/pafish_BSOD.zip)\r\n\r\n\nComment: Thanks - just tested on my Win10 x64 v2004 and it worked without any issue:\r\n\r\n[pafish] Start\r\n[pafish] Windows version: 6.2 build 9200\r\n[pafish] CPU: GenuineIntel Intel(R) Core(TM)2 Duo CPU     T7700  @ 2.40GHz\r\n[pafish] CPU VM traced by checking the difference between CPU timestamp counters (rdtsc) forcing VM exit\r\n[pafish] End\r\n\r\nAre you able to run this sample directly in the vm?\nComment: Thanks for investigating this case!\r\n~~Are you sure that you have tested it on Win10, not Win8? I've noticed that your pafish reported `Windows version: 6.2 build 9200`.~~ I've just noticed that pafish reports 6.2 build 9200 on Win10\r\nYes, I am able to run sample directly in the VM. BSOD occurs only when behavioral analysis is enabled.\r\n\nComment: I am afraid I ultimately have to close this issue without fully investigating it, due to the time investment it would take for me to create a new vm with this specific version to test with. I am sorry to say I just don't have time unfortunately to do that for this issue which has only been seen in this one instance, \r\n\r\nAlso capemon is 100% usermode and is only doing api hooking so there is no obvious technical mechanism that a bug or other issue/feature could be causing a consistent repeatable fault in the kernel. I feel sure that if there was, more examples of this would have cropped up by now.",
+  "Title: Network part of the report is empty\nBody: # Expected Behavior\r\n\r\nThe network analysis in the final report is filled.\r\n\r\n# Current Behavior\r\n\r\nThe network analysis is empty.\r\n\r\nI downloaded a malware as a test sample on [https://capesandbox.com](https://capesandbox.com/). My local analysis is quite the same, except for the network :\r\n\r\n![empty](https://user-images.githubusercontent.com/15949162/87941209-0cb2af80-ca9b-11ea-9934-fb43d518cc7f.png)\r\n\r\n\r\n## Context\r\n\r\nI have a fresh CAPE installation. Everything is working except the network part.\r\n- The cape-rooter service is running with no error.\r\n- I executed the [disable_win7noise.bat](https://github.com/doomedraven/Tools/blob/master/Windows/disable_win7noise.bat) on the guest as recommended.\r\n- I created the virbr1 network interface (isolated) as explained [on this blog article](https://www.doomedraven.com/2020/04/how-to-create-virtual-machine-with-virt.html).\r\n- I can submit an analysis (the ping test is working too)\r\n\r\nHere is my kvm.conf file : \r\n```\r\n[kvm]\r\nmachines = win7_0,win7_1\r\ninterface = virbr1\r\n\r\n[win7_0]\r\nlabel = win7_0\r\nplatform = windows\r\nip = 192.168.100.100\r\nsnapshot = snapshot3\r\n\r\n[win7_1]\r\nlabel = win7_1\r\nplatform = windows\r\nip = 192.168.100.101\r\n```\r\n\r\nBy the way, my Windows guest seems to not have access to internet, is this the expected behaviour ?\r\n\r\nThank you in advance for the help ;)\nComment: hello, no, that isn't expected behavior, i would suggest you to check logs maybe there you will have some info, also could be something inside of the vm, static ip?\nComment: Thank you for the response. Logs provides no info about an eventual problem. But, the VM get no internet access, even in classical 'NAT' mode. I'm currently digging on this. \r\nThis is a virtualbox VM (created on an different computer, for ease) converted to qcow2 format. Maybe the problem is coming from there...\r\nI will come back with news soon.\nComment: well with that i can't help you, good luck with diging but it sound like vm problem\nComment: Well, I achieved to get internet access on the VM via the NAT adapter. So, I suppose this is not a VM problem anymore. But when I use my \"isolated\" network (HOSTONLY, like explained in [your article](https://www.doomedraven.com/2020/04/how-to-create-virtual-machine-with-virt.html)), I have no internet access. I can only ping the VM and the host.\r\n\r\nHere is my isolated network xml file : \r\n```\r\n<network connections=\"1\">\r\n  <name>isolated</name>\r\n  <uuid>92be1a08-5695-4f19-a499-89a7b1770151</uuid>\r\n  <bridge name=\"virbr1\" stp=\"on\" delay=\"0\"/>\r\n  <mac address=\"52:54:00:a8:c0:00\"/>\r\n  <domain name=\"isolated\"/>\r\n  <ip address=\"192.168.100.1\" netmask=\"255.255.255.0\">\r\n    <dhcp>\r\n      <range start=\"192.168.100.128\" end=\"192.168.100.254\"/>\r\n      <host mac=\"52:54:00:5c:7f:00\" name=\"win7_0\" ip=\"192.168.100.100\"/>\r\n    </dhcp>\r\n  </ip>\r\n</network>\r\n```\r\n\r\nIs it normal ?\nComment: rooter.py is in charge of networking, nat is leaking and allows exploiting of other vms, so host only should be used, the xml is fine\nComment: OK, I re-setup the analysis procedure and I test it as quickly as possible. Thanks\nComment: Hum. I tested it with a sample taken from [capesandbox.com](https://capesandbox.com). I only have few UDP packets. But nothing more :/ \r\nCould it be a problem with tor ?\r\n\r\nI also tried to surf on internet inside a VM during an analysis. The VM has no access to internet. However, the rooter service is running...\nComment: could be, you can check tor config in /etc/tor/torrc and set listening to 0.0.0.0 and using curl with socks5 option too do request\nComment: My torrc config, without the commented lines, is the following : \r\n```\r\nRunAsDaemon 1\r\n\r\nTransPort 192.168.100.1:9040\r\nDNSPort 192.168.100.1:5353\r\nNumCPUs 2\r\n```\r\nMaybe I got the wrong interface? Do I need to setup the IFACE_IP of the [cape2.sh](https://github.com/doomedraven/Tools/blob/master/Sandbox/cape2.sh) script to my virbr1 (isolated network) ip or not ? Anyway I tested with the other ip and it's not working.\r\n\r\nIf I set up the ips to 0.0.0.0 and try curl : \r\n```\r\ncurl --socks5-hostname localhost:9040 http://www.google.com/\r\ncurl: (7) Unable to receive initial SOCKS5 response.\r\n```\nComment: the port in socks should be 9050, 9040 is another thing\nComment: Oh ! Yes, sorry. Yes, now, I got the page in return.\r\n```\r\ncurl --socks5-hostname localhost:9050 http://www.google.com/\r\n<!doctype html><html itemscope=\"\" itemtype=\"http://schema.org/WebPage\" lang=\"en\"><head><meta content=\"Search the world's information, including webpages, images, videos and more. Google has many special features to help you find exactly what you're looking for.\" name=\"description\"><meta content=\"noodp\" name=\"robots\"><meta content=\"text/html; charset=UTF-8\" http-equiv=\"Content-Type\"><meta content=\"/images/branding/googleg/1x/googleg_standard_color_128dp.png\" itemprop=\"image\"><title>Google</title><script nonce=\"ILud7n0oIJyCaZgbUMEMtw==\">(function(){window.google={kEI:'UoUZX8TjMv2JytMPsMGL-AM',kEXPI:'0,202123,3,4,32,1151584,5663,731,223,5105,206,3204,10,1226,364,926,573,817,383,246,5,1354,406,242,1046,1268,668,470,293,21,3,519,532,89,181,2,10,189,86,48,52,364,22,219,1121036,1197727,317332,12208,13677,4855,32692,15247,864,28687,9188,8384,4859,1361,9290,3021,4747,11033,1808,4020,978,4788,1,1453,1689,5297,2054,920,873,1217,9405,1142,6290,3876,3220,4518,2776,919,2278,7,570,2226,1593,1165,114,2212,530,149,1103,840,519,1135,278,51,56,4258,312,1135,1,3,2049,620,2023,545,1232,143,377,1947,1030,1,1198,93,328,1284,16,2927,2246,1813,1787,3227,1990,855,7,2904,1870,37,788,469,6286,4455,641,2449,2459,1226,1742,4929,108,1710,43,1654,908,2,941,5011,7468,1,841,1337,666,432,3,346,2065,1,377,3540,706,149,189,2838,474,503,1,1985,158,1,2093,3942,47,1093,651,4,1528,17,1277,403,607,1236,271,874,405,1259,581,20,177,1918,372,744,973,10,42,214,1202,960,465,459,120,755,6,438,24,14,198,601,3466,292,744,1229,86,3,1493,877,910,1420,6,69,305,1362,449,499,1514,555,20,434,288,939,4,3,825,73,599,1414,554,2,237,6,419,345,370,610,282,1274,44,72,393,108,81,102,218,194,4,25,16,2,115,1,753,67,175,35,217,70,524,165,430,31,130,47,171,112,3,6,29,410,1,264,575,318,2,149,126,3,1646,656,205,2,100,115,62,169,6,46,1,294,115,478,416,430,106,540,4,71,163,2,14,142,308,227,267,337,287,1,34,115,756,57,1144,5786653,3473,8797119,1323,549,333,444,1,2,80,1,900,896,1,9,2,2551,1,748,141,59,736,563,1,4265,1,1,2,1017,9,305,3037,27,1,12,43,179,51,3,1,54,2,2,2,2,2,2,3,1,1,1,2,2,14,1,12,58,32,3502196,20458661',kBL:'aaAI'};google.sn='webhp';google.kHL='en';})();(function(){google.lc=[];google.li=0;google.getEI=function(a){for(var c;a&&(!a.getAttribute||!(c=a.getAttribute(\"eid\")));)a=a.parentNode;return c||google.kEI};google.getLEI=function(a){for(var c=null;a&&(!a.getAttribute||!(c=a.getAttribute(\"leid\")));)a=a.parentNode;return c};google.ml=function(){return null};google.time=function(){return Date.now()};google.log=function(a,c,b,d,g){if(b=google.logUrl(a,c,b,d,g)){a=new Image;var e=google.lc,f=google.li;e[f]=a;a.onerror=a.onload=a.onabort=function(){delete e[f]};google.vel&&google.vel.lu&&google.vel.lu(b);a.src=b;google.li=f+1}};google.logUrl=function(a,c,b,d,g){var e=\"\",f=google.ls||\"\";b||-1!=c.search(\"&ei=\")||(e=\"&ei=\"+google.getEI(d),-1==c.search(\"&lei=\")&&(d=google.getLEI(d))&&(e+=\"&lei=\"+d));d=\"\";!b&&google.cshid&&-1==c.search(\"&cshid=\")&&\"slh\"!=a&&(d=\"&cshid=\"+google.cshid);b=b||\"/\"+(g||\"gen_204\")+\"?atyp=i&ct=\"+a+\"&cad=\"+c+e+f+\"&zx=\"+google.time()+d;/^http:/i.test(b)&&\"https:\"==window.location.protocol&&(google.ml(Error(\"a\"),!1,{src:b,glmm:1}),b=\"\");return b};}).call(this);(function(){google.y={};google.x=function(a,b){if(a)var c=a.id;else{do c=Math.random();while(google.y[c])}google.y[c]=[a,b];return!1};google.lm=[];google.plm=function(a){google.lm.push.apply(google.lm,a)};google.lq=[];google.load=function(a,b,c){google.lq.push([[a],b,c])};google.loadAll=function(a,b){google.lq.push([a,b])};}).call(this);google.f={};(function(){\r\ndocument.documentElement.addEventListener(\"submit\",function(b){var a;if(a=b.target){var c=a.getAttribute(\"data-submitfalse\");a=\"1\"==c||\"q\"==c&&!a.elements.q.value?!0:!1}else a=!1;a&&(b.preventDefault(),b.stopPropagation())},!0);document.documentElement.addEventListener(\"click\",function(b){var a;a:{for(a=b.target;a&&a!=document.documentElement;a=a.parentElement)if(\"A\"==a.tagName){a=\"1\"==a.getAttribute(\"data-nohref\");break a}a=!1}a&&b.preventDefault()},!0);}).call(this);\r\nvar a=window.location,b=a.href.indexOf(\"#\");if(0<=b){var c=a.href.substring(b+1);/(^|&)q=/.test(c)&&-1==c.indexOf(\"#\")&&a.replace(\"/search?\"+c.replace(/(^|&)fp=[^&]*/g,\"\")+\"&cad=h\")};</script><style>#gbar,#guser{font-size:13px;padding-top:1px !important;}#gbar{height:22px}#guser{padding-bottom:7px !important;text-align:right}.gbh,.gbd{border-top:1px solid #c9d7f1;font-size:1px}.gbh{height:0;position:absolute;top:24px;width:100%}@media all{.gb1{height:22px;margin-right:.5em;vertical-align:top}#gbar{float:left}}a.gb1,a.gb4{text-decoration:underline !important}a.gb1,a.gb4{color:#00c !important}.gbi .gb4{color:#dd8e27 !important}.gbf .gb4{color:#900 !important}\r\n</style><style>body,td,a,p,.h{font-family:arial,sans-serif}body{margin:0;overflow-y:scroll}#gog{padding:3px 8px 0}td{line-height:.8em}.gac_m td{line-height:17px}form{margin-bottom:20px}.h{color:#36c}.q{color:#00c}em{font-weight:bold;font-style:normal}.lst{height:25px;width:496px}.gsfi,.lst{font:18px arial,sans-serif}.gsfs{font:17px arial,sans-serif}.ds{display:inline-box;display:inline-block;margin:3px 0 4px;margin-left:4px}input{font-family:inherit}body{background:#fff;color:#000}a{color:#11c;text-decoration:none}a:hover,a:active{text-decoration:underline}.fl a{color:#36c}a:visited{color:#551a8b}.sblc{padding-top:5px}.sblc a{display:block;margin:2px 0;margin-left:13px;font-size:11px}.lsbb{background:#eee;border:solid 1px;border-color:#ccc #999 #999 #ccc;height:30px}.lsbb{display:block}#fll a{display:inline-block;margin:0 12px}.lsb{background:url(/images/nav_logo229.png) 0 -261px repeat-x;border:none;color:#000;cursor:pointer;height:30px;margin:0;outline:0;font:15px arial,sans-serif;vertical-align:top}.lsb:active{background:#ccc}.lst:focus{outline:none}</style><script nonce=\"ILud7n0oIJyCaZgbUMEMtw==\"></script></head><body bgcolor=\"#fff\"><script nonce=\"ILud7n0oIJyCaZgbUMEMtw==\">(function(){var src='/images/nav_logo229.png';var iesg=false;document.body.onload = function(){window.n && window.n();if (document.images){new Image().src=src;}\r\nif (!iesg){document.f&&document.f.q.focus();document.gbqf&&document.gbqf.q.focus();}\r\n}\r\n})();</script><div id=\"mngb\"><div id=gbar><nobr><b class=gb1>Search</b> <a class=gb1 href=\"http://www.google.com/imghp?hl=en&tab=wi\">Images</a> <a class=gb1 href=\"http://maps.google.com/maps?hl=en&tab=wl\">Maps</a> <a class=gb1 href=\"https://play.google.com/?hl=en&tab=w8\">Play</a> <a class=gb1 href=\"http://www.youtube.com/?gl=US&tab=w1\">YouTube</a> <a class=gb1 href=\"http://news.google.com/nwshp?hl=en&tab=wn\">News</a> <a class=gb1 href=\"https://mail.google.com/mail/?tab=wm\">Gmail</a> <a class=gb1 href=\"https://drive.google.com/?tab=wo\">Drive</a> <a class=gb1 style=\"text-decoration:none\" href=\"https://www.google.com/intl/en/about/products?tab=wh\"><u>More</u> &raquo;</a></nobr></div><div id=guser width=100%><nobr><span id=gbn class=gbi></span><span id=gbf class=gbf></span><span id=gbe></span><a href=\"http://www.google.com/history/optout?hl=en\" class=gb4>Web History</a> | <a  href=\"/preferences?hl=en\" class=gb4>Settings</a> | <a target=_top id=gb_70 href=\"https://accounts.google.com/ServiceLogin?hl=en&passive=true&continue=http://www.google.com/\" class=gb4>Sign in</a></nobr></div><div class=gbh style=left:0></div><div class=gbh style=right:0></div></div><center><br clear=\"all\" id=\"lgpd\"><div id=\"lga\"><img alt=\"Google\" height=\"92\" src=\"/images/branding/googlelogo/1x/googlelogo_white_background_color_272x92dp.png\" style=\"padding:28px 0 14px\" width=\"272\" id=\"hplogo\"><br><br></div><form action=\"/search\" name=\"f\"><table cellpadding=\"0\" cellspacing=\"0\"><tr valign=\"top\"><td width=\"25%\">&nbsp;</td><td align=\"center\" nowrap=\"\"><input name=\"ie\" value=\"ISO-8859-1\" type=\"hidden\"><input value=\"en\" name=\"hl\" type=\"hidden\"><input name=\"source\" type=\"hidden\" value=\"hp\"><input name=\"biw\" type=\"hidden\"><input name=\"bih\" type=\"hidden\"><div class=\"ds\" style=\"height:32px;margin:4px 0\"><input class=\"lst\" style=\"margin:0;padding:5px 8px 0 6px;vertical-align:top;color:#000\" autocomplete=\"off\" value=\"\" title=\"Google Search\" maxlength=\"2048\" name=\"q\" size=\"57\"></div><br style=\"line-height:0\"><span class=\"ds\"><span class=\"lsbb\"><input class=\"lsb\" value=\"Google Search\" name=\"btnG\" type=\"submit\"></span></span><span class=\"ds\"><span class=\"lsbb\"><input class=\"lsb\" id=\"tsuid1\" value=\"I'm Feeling Lucky\" name=\"btnI\" type=\"submit\"><script nonce=\"ILud7n0oIJyCaZgbUMEMtw==\">(function(){var id='tsuid1';document.getElementById(id).onclick = function(){if (this.form.q.value){this.checked = 1;if (this.form.iflsig)this.form.iflsig.disabled = false;}\r\nelse top.location='/doodles/';};})();</script><input value=\"AINFCbYAAAAAXxmTYpk_FWs8rgu6fg3G3UeDsd4JC-dn\" name=\"iflsig\" type=\"hidden\"></span></span></td><td class=\"fl sblc\" align=\"left\" nowrap=\"\" width=\"25%\"><a href=\"/advanced_search?hl=en&amp;authuser=0\">Advanced search</a></td></tr></table><input id=\"gbv\" name=\"gbv\" type=\"hidden\" value=\"1\"><script nonce=\"ILud7n0oIJyCaZgbUMEMtw==\">(function(){var a,b=\"1\";if(document&&document.getElementById)if(\"undefined\"!=typeof XMLHttpRequest)b=\"2\";else if(\"undefined\"!=typeof ActiveXObject){var c,d,e=[\"MSXML2.XMLHTTP.6.0\",\"MSXML2.XMLHTTP.3.0\",\"MSXML2.XMLHTTP\",\"Microsoft.XMLHTTP\"];for(c=0;d=e[c++];)try{new ActiveXObject(d),b=\"2\"}catch(h){}}a=b;if(\"2\"==a&&-1==location.search.indexOf(\"&gbv=2\")){var f=google.gbvu,g=document.getElementById(\"gbv\");g&&(g.value=a);f&&window.setTimeout(function(){location.href=f},0)};}).call(this);</script></form><div id=\"gac_scont\"></div><div style=\"font-size:83%;min-height:3.5em\"><br></div><span id=\"footer\"><div style=\"font-size:10pt\"><div style=\"margin:19px auto;text-align:center\" id=\"fll\"><a href=\"/intl/en/ads/\">Advertising\ufffdPrograms</a><a href=\"/services/\">Business Solutions</a><a href=\"/intl/en/about.html\">About Google</a></div></div><p style=\"font-size:8pt;color:#767676\">&copy; 2020 - <a href=\"/intl/en/policies/privacy/\">Privacy</a> - <a href=\"/intl/en/policies/terms/\">Terms</a></p></span></center><script nonce=\"ILud7n0oIJyCaZgbUMEMtw==\">(function(){window.google.cdo={height:0,width:0};(function(){var a=window.innerWidth,b=window.innerHeight;if(!a||!b){var c=window.document,d=\"CSS1Compat\"==c.compatMode?c.documentElement:c.body;a=d.clientWidth;b=d.clientHeight}a&&b&&(a!=google.cdo.width||b!=google.cdo.height)&&google.log(\"\",\"\",\"/client_204?&atyp=i&biw=\"+a+\"&bih=\"+b+\"&ei=\"+google.kEI);}).call(this);})();(function(){var u='/xjs/_/js/k\\x3dxjs.hp.en_US.v1Yj6_3_xDY.O/m\\x3dsb_he,d/am\\x3dAE-wOQ/d\\x3d1/rs\\x3dACT90oHxuZHmSFByKKKhO9lKfARcvsOJJg';\r\nsetTimeout(function(){var b=document;var a=\"SCRIPT\";\"application/xhtml+xml\"===b.contentType&&(a=a.toLowerCase());a=b.createElement(a);a.src=u;google.timers&&google.timers.load&&google.tick&&google.tick(\"load\",\"xjsls\");document.body.appendChild(a)},0);})();(function(){window.google.xjsu='/xjs/_/js/k\\x3dxjs.hp.en_US.v1Yj6_3_xDY.O/m\\x3dsb_he,d/am\\x3dAE-wOQ/d\\x3d1/rs\\x3dACT90oHxuZHmSFByKKKhO9lKfARcvsOJJg';})();function _DumpException(e){throw e;}\r\nfunction _F_installCss(c){}\r\n(function(){google.jl={dw:false,em:[],emw:false,lls:'default',pdt:0,snet:true,uwp:true};})();(function(){var pmc='{\\x22d\\x22:{},\\x22sb_he\\x22:{\\x22agen\\x22:true,\\x22cgen\\x22:true,\\x22client\\x22:\\x22heirloom-hp\\x22,\\x22dh\\x22:true,\\x22dhqt\\x22:true,\\x22ds\\x22:\\x22\\x22,\\x22ffql\\x22:\\x22en\\x22,\\x22fl\\x22:true,\\x22host\\x22:\\x22google.com\\x22,\\x22isbh\\x22:28,\\x22jsonp\\x22:true,\\x22msgs\\x22:{\\x22cibl\\x22:\\x22Clear Search\\x22,\\x22dym\\x22:\\x22Did you mean:\\x22,\\x22lcky\\x22:\\x22I\\\\u0026#39;m Feeling Lucky\\x22,\\x22lml\\x22:\\x22Learn more\\x22,\\x22oskt\\x22:\\x22Input tools\\x22,\\x22psrc\\x22:\\x22This search was removed from your \\\\u003Ca href\\x3d\\\\\\x22/history\\\\\\x22\\\\u003EWeb History\\\\u003C/a\\\\u003E\\x22,\\x22psrl\\x22:\\x22Remove\\x22,\\x22sbit\\x22:\\x22Search by image\\x22,\\x22srch\\x22:\\x22Google Search\\x22},\\x22ovr\\x22:{},\\x22pq\\x22:\\x22\\x22,\\x22refpd\\x22:true,\\x22rfs\\x22:[],\\x22sbpl\\x22:16,\\x22sbpr\\x22:16,\\x22scd\\x22:10,\\x22stok\\xc\r\n```\nComment: so tor works\nComment: So, you agree, if the rooter is running properly, the VM should have access to internet ?\nComment: yes, is how cape works\nComment: But only while the job is running... This does not mean when the rooter service is running the vms have internet!\nComment: exactly\nComment: Yes I understand. I tried to load a webpage during an analysis, inside the running VM and I got nothing. And still nothing in the network stats (except several UDP packets). I don't understand.\r\nSorry to bother you with this, I'm going to keep looking\nComment: well if you start analysis and attach to you vm and you don't have internet, maybe you not configured properly networking inside of the vm?\nComment: Ho damn ! Am I obligated to set up the static ip inside the VM ?! Adding an ip line for each VM in my xml config file (for my isolated/host-only interface) it's not good enough ?\r\nWhen I define the static ip/mask/gateway inside the VM, is working, yes. But if If I want to automatize the sandbox addition, I do need to modify, for each, the static IP inside the Windows VM ?\r\nI saw in the documentation that CAPE is not working with DHCP, but I was wondering that what I've done in the XML network was sufficient. If not, sorry again !\nComment: How do you expect them to know the ip inside of the vm ?\r\nNetwork Configuration \u2014 CAPE Sandbox v2.1 Book <https://capev2.readthedocs.io/en/latest/installation/guest/network.html>\r\n\r\nYou can use kvm static ips, but then you will need to go deep on linux dns and other stuff to handle everything, so that depends on your skills \r\n\r\n> El 23 jul 2020, a las 15:21, Schietecatte Quentain <notifications@github.com> escribi\u00f3:\r\n> \r\n> \r\n> Ho damn ! Am I obligated to set up the static ip inside the VM ?! Adding an ip line for each VM in my xml config file (for my isolated/host-only interface) it's not good enough ?\r\n> When I define the static ip/mask/gateway inside the VM, is working, yes. But if If I want to automatize the sandbox addition, I do need to modify, for each, the static IP inside the Windows VM ?\r\n> I saw in the documentation that CAPE is not working with DHCP, but I was wondering that what I've done in the XML network was sufficient. If not, sorry again !\r\n> \r\n> \u2014\r\n> You are receiving this because you commented.\r\n> Reply to this email directly, view it on GitHub <https://github.com/kevoreilly/CAPEv2/issues/229#issuecomment-663003089>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAOFH3YLUZOEKTBGPT7COPTR5A2MTANCNFSM4PCKGMDQ>.\r\n> \r\n\r\n\nComment: So, my bad. Sorry for that. I assumed wrong. I will have a look to that. Thank you !",
+  "Title: Windows 10 analysis support\nBody: Are Windows 10 analysis systems supported yet?\nComment: Yep",
+  "Title: Fix curdir submission option\nBody: \nComment: thanks",
+  "Title: Cape web interface hangs after analysis complete\nBody: # Expected Behavior\r\n\r\nWeb interface returns when analysis is complete\r\n\r\n# Current Behavior\r\n\r\nWeb interface hangs after cape logs state analysis is complete\r\n\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Install cape and kvm using script on fresh ubutnu 20.04 lts\r\n2. Perform configuration of guest and host\r\n3. start cape and web interface\r\n4. submit sample\r\n\r\nI'm not sure what logs and files would be helpful beyond what is provided, so please ask for anything that is missing\r\n\r\n## Failure Logs\r\n\r\n![Screenshot from 2020-07-10 19-20-17](https://user-images.githubusercontent.com/17319974/87190686-71734a80-c2e2-11ea-99a3-b409238d579f.png)\r\n<pre>2020-07-10 17:29:14,306 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks.\r\n2020-07-10 19:03:55,332 [lib.cuckoo.core.scheduler] DEBUG: Task #1: Processing task\r\n2020-07-10 19:03:55,336 [lib.cuckoo.core.scheduler] INFO: Task #1: Starting analysis of FILE &apos;/tmp/cuckoo-tmp/upload_m3c3hpo6/UEuuMpk&apos;\r\n2020-07-10 19:03:55,353 [lib.cuckoo.core.scheduler] INFO: Task #1: acquired machine win7 (label=win7, platform=windows)\r\n2020-07-10 19:03:55,399 [root] DEBUG: Now tracking machine 192.168.100.46 for task #1\r\n2020-07-10 19:03:55,413 [lib.cuckoo.common.abstracts] DEBUG: Starting machine win7\r\n2020-07-10 19:03:55,413 [lib.cuckoo.common.abstracts] DEBUG: Getting status for win7\r\n2020-07-10 19:03:55,431 [lib.cuckoo.common.abstracts] DEBUG: Using snapshot cuckoo-cape for virtual machine win7\r\n2020-07-10 19:04:18,758 [lib.cuckoo.common.abstracts] DEBUG: Getting status for win7\r\n2020-07-10 19:04:18,802 [lib.cuckoo.core.scheduler] INFO: Enabled route &apos;tor&apos;\r\n2020-07-10 19:04:18,820 [modules.auxiliary.sniffer] INFO: Started sniffer with PID 79599 (interface=virbr1, host=192.168.100.46, dump path=/opt/CAPEv2/storage/analyses/1/dump.pcap)\r\n2020-07-10 19:04:18,821 [lib.cuckoo.core.plugins] DEBUG: Started auxiliary module: Sniffer\r\n2020-07-10 19:04:18,839 [lib.cuckoo.core.guest] INFO: Starting analysis #1 on guest (id=win7, ip=192.168.100.46)\r\n2020-07-10 19:04:18,864 [lib.cuckoo.core.guest] INFO: Guest is running CAPE Agent 0.11 (id=win7, ip=192.168.100.46)\r\n2020-07-10 19:04:18,919 [lib.cuckoo.core.guest] DEBUG: Uploading analyzer to guest (id=win7, ip=192.168.100.46, size=19239232)\r\n2020-07-10 19:04:20,346 [lib.cuckoo.core.guest] INFO: Uploading support files to guest (id=win7, ip=192.168.100.46)\r\n2020-07-10 19:04:25,429 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:04:30,497 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:04:35,564 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:04:40,636 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:04:45,709 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:04:50,781 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:04:55,845 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:05:00,922 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:05:05,995 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:05:11,070 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:05:16,124 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:05:21,206 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:05:26,285 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:05:31,357 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:05:36,432 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:05:41,508 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:05:46,579 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:05:51,651 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:05:56,727 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:06:01,778 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:06:06,861 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:06:11,933 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:06:17,009 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:06:22,067 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:06:27,138 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:06:32,229 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:06:37,347 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:06:42,462 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:06:47,544 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:06:52,661 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:06:57,759 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:07:02,881 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:07:07,992 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:07:13,072 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:07:18,184 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:07:23,298 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:07:28,411 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:07:33,510 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:07:38,592 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:07:43,707 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:07:48,819 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:07:53,935 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:07:59,042 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:08:04,130 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:08:09,240 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:08:14,353 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:08:19,467 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:08:24,590 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:08:29,663 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:08:34,744 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:08:39,843 [lib.cuckoo.core.guest] DEBUG: win7: analysis #1 is still running\r\n2020-07-10 19:08:40,844 [lib.cuckoo.core.guest] INFO: win7: end of analysis reached!\r\n2020-07-10 19:08:40,876 [lib.cuckoo.core.plugins] DEBUG: Stopped auxiliary module: Sniffer\r\n2020-07-10 19:08:40,877 [lib.cuckoo.common.abstracts] DEBUG: Dumping memory for machine win7\r\n2020-07-10 19:08:51,610 [lib.cuckoo.common.abstracts] DEBUG: Stopping machine win7\r\n2020-07-10 19:08:51,611 [lib.cuckoo.common.abstracts] DEBUG: Getting status for win7\r\n2020-07-10 19:08:52,002 [lib.cuckoo.common.abstracts] DEBUG: Getting status for win7\r\n2020-07-10 19:08:52,019 [root] DEBUG: Stopped tracking machine 192.168.100.46 for task #1\r\n2020-07-10 19:08:52,025 [lib.cuckoo.core.scheduler] INFO: Disabled route &apos;tor&apos;\r\n2020-07-10 19:08:52,063 [lib.cuckoo.core.scheduler] DEBUG: Task #1: Released database task with status True\r\n2020-07-10 19:08:52,063 [lib.cuckoo.core.scheduler] INFO: <font color=\"#06989A\">Task #1: analysis procedure completed</font>\r\n</pre>\r\n\nComment: On the dashboard, it states the analysis is completed, but under recent it says the status is processing\nComment: and why not to start processing? to really process it\nComment: I'm not sure what you're asking, could you please rephrase your comment?\r\n\r\nBased on the logs it says the analysis procedure was completed.\r\n\r\nIt never said it finished processing, but it's been over 20 minutes, so I'm assuming that something is broken somewhere.\r\n\r\nI had submitted the sample and hit analyze, so I submitted it correctly, and system monitor isn't showing any of my cores being particularly active so I don't think it's still actually processing it, although I could be wrong.\nComment: that is the problem i have automated too much for people that they not even know what they doing :D\r\n\r\nhttps://github.com/doomedraven/Tools/blob/master/Sandbox/cape2.sh#L853\r\n\r\nhttps://capev2.readthedocs.io/en/latest/usage/start.html#starting-processing-data-generated-by-virtual-machine\nComment: You were right, it was the processing service.\r\n\r\nNow the behavioral analysis isn't working, but I'm going to do my own troubleshooting before I come back to ask about that.\nComment: well just see logs what is wrong, you have everything in there, im gonna close this as issue is solved, but feel free to post here instead of open new one for this",
+  "Title: False positives using nymaim rule in VT\nBody: \r\n# Expected Behavior\r\n\r\nNymaim returns no results when scanning VT goodware retrohunt repository\r\n\r\n# Current Behavior\r\n\r\nNymaim rule returns 41 matches in VT Goodware retrohunt repository\r\n\r\n\r\n## Failure Logs\r\n\r\n30087869dcd262ad801ef8b73100ad6ee9b1612081127318f6547f3ef4d6b066\r\nc8d59cee5d6de69a5615954712d8059cdd5e94f757b3641400be8204fabca540\r\n994c0c9180eb9c0d3fc101991cae2172193cd165c04b1e93debaa549a787b947\r\nec9c1ad3c90076d420f1f5424e328cdb5f7c689226544b0587d24ab1f1664a3f\r\naa3393ba567ebfc7e8647ced529334d9baace6debc9fe670a7aa1af3862960fb\r\n688baef789b890811792710468b9fc05fd3419900f23e7fca413de21b23ab3fd\r\nade8cbbef476729a0ae6b867f8feb8fb2760e6201f150e14f5beb17a6b725690\r\n92042bc05d5cd4a68d54ef1829a627e71c64a5a6303122eb193a428d91b0fafd\r\nfbdb65cc03bcd87488d0baa590fa113132dfed44d72a33a92f0d5018e18845db\r\n264113966daeb6704602d0ac1b7ece0300e7a964192e2b2d1063bc74bc75854b\r\n63a0ec16770fa7a079d3b61dac6252ed3d07d154aecb85eb791622d990e62754\r\nd1dd839742540cbf425041a62ed714863f6b4979467375935c85f39345f8ea7d\r\na228e18ff64273e9a6193a95362f8e50d3672321fa60b3f7072c4a9ee42303c8\r\n8f6be839c1175b388f0aed891e3b50b718d6d7c0bfdb9364f350e600339ba924\r\n3e10e79da700a5a9a86be113103faadebba84e34d0c3e17536e9b203a81a2540\r\n0f4980adce345725ef9c68078778ba32fc4595acf458b8a51dada21faebcda22\r\n23ab185497731e8a1751c7d89137c0ebecc2040eb405313b15e66685d2c62600\r\n14973f586cf4b7dbf2153620af1f8ec5d80af496cf0b9a35792476b976b67429\r\n9fba50d6da6f6a4e66a040b9007ac334138a55db27f7d1d07d6254329e5004e6\r\n810dd8dbf96fb94187b28b884e767a7f5c5fd666b3965cb9ccaf857f912d5af7\r\n462b08160563d88dde4a2e5eb299fad084146b35a4e68f46a3f3b499d395b3b2\r\n40b93088a2a943044a8302a86c2ed34163ce37d8d1c979b69ccb119ac184e261\r\n4199c2f9032e309c2ecdbdd0f43da13887c7b87f7feea6ce49dcfcda2b8b3bd4\r\n55068e95f17eabb1087e576967ba6145b744f2df9cf90de7dd039844f1e474dc\r\n9cd3f45fa73ecec012c5fc0a6b3128e57ae6efd32b9a55b3b3d83905c3b836be\r\n\nComment: We dont have control over 3rd party cerviles we just show you info\n\nEl vie., 10 jul. 2020 20:28, Solumnant <notifications@github.com> escribi\u00f3:\n\n> Expected Behavior\n>\n> Nymaim returns no results when scanning VT goodware retrohunt repository\n> Current Behavior\n>\n> Nymaim rule returns 41 matches in VT Goodware retrohunt repository\n> Failure Logs\n>\n> 30087869dcd262ad801ef8b73100ad6ee9b1612081127318f6547f3ef4d6b066\n> c8d59cee5d6de69a5615954712d8059cdd5e94f757b3641400be8204fabca540\n> 994c0c9180eb9c0d3fc101991cae2172193cd165c04b1e93debaa549a787b947\n> ec9c1ad3c90076d420f1f5424e328cdb5f7c689226544b0587d24ab1f1664a3f\n> aa3393ba567ebfc7e8647ced529334d9baace6debc9fe670a7aa1af3862960fb\n> 688baef789b890811792710468b9fc05fd3419900f23e7fca413de21b23ab3fd\n> ade8cbbef476729a0ae6b867f8feb8fb2760e6201f150e14f5beb17a6b725690\n> 92042bc05d5cd4a68d54ef1829a627e71c64a5a6303122eb193a428d91b0fafd\n> fbdb65cc03bcd87488d0baa590fa113132dfed44d72a33a92f0d5018e18845db\n> 264113966daeb6704602d0ac1b7ece0300e7a964192e2b2d1063bc74bc75854b\n> 63a0ec16770fa7a079d3b61dac6252ed3d07d154aecb85eb791622d990e62754\n> d1dd839742540cbf425041a62ed714863f6b4979467375935c85f39345f8ea7d\n> a228e18ff64273e9a6193a95362f8e50d3672321fa60b3f7072c4a9ee42303c8\n> 8f6be839c1175b388f0aed891e3b50b718d6d7c0bfdb9364f350e600339ba924\n> 3e10e79da700a5a9a86be113103faadebba84e34d0c3e17536e9b203a81a2540\n> 0f4980adce345725ef9c68078778ba32fc4595acf458b8a51dada21faebcda22\n> 23ab185497731e8a1751c7d89137c0ebecc2040eb405313b15e66685d2c62600\n> 14973f586cf4b7dbf2153620af1f8ec5d80af496cf0b9a35792476b976b67429\n> 9fba50d6da6f6a4e66a040b9007ac334138a55db27f7d1d07d6254329e5004e6\n> 810dd8dbf96fb94187b28b884e767a7f5c5fd666b3965cb9ccaf857f912d5af7\n> 462b08160563d88dde4a2e5eb299fad084146b35a4e68f46a3f3b499d395b3b2\n> 40b93088a2a943044a8302a86c2ed34163ce37d8d1c979b69ccb119ac184e261\n> 4199c2f9032e309c2ecdbdd0f43da13887c7b87f7feea6ce49dcfcda2b8b3bd4\n> 55068e95f17eabb1087e576967ba6145b744f2df9cf90de7dd039844f1e474dc\n> 9cd3f45fa73ecec012c5fc0a6b3128e57ae6efd32b9a55b3b3d83905c3b836be\n>\n> \u2014\n> You are receiving this because you are subscribed to this thread.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/225>, or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH34XOQCZJTL4BZFC2QDR25MWLANCNFSM4OW2PQKQ>\n> .\n>\n\nComment: Thanks, wasn't sure where to raise it.",
+  "Title: Very small updates\nBody: ",
+  "Title: Analysis still in \"processing\" status, no report generated\nBody: # Expected Behavior\r\n\r\nThe task is in \"reported\" status with a viewable report in the web interface.\r\n\r\n# Current Behavior\r\n\r\nThe analysis runs good according to the logs (I think ?), but no report is generated (even in the /storage folder). The task status is always set to \"processing\" after the analysis.\r\n\r\n# Logs\r\n\r\n## Cuckoo command\r\n\r\n```\r\n\r\n   _______ _     _ _______ _     _  _____   _____\r\n   |       |     | |       |____/  |     | |     |\r\n   |_____  |_____| |_____  |    \\_ |_____| |_____|\r\n\r\n Cuckoo Sandbox 2.1-CAPE\r\n www.cuckoosandbox.org\r\n Copyright (c) 2010-2015\r\n\r\n CAPE: Config and Payload Extraction\r\n github.com/kevoreilly/CAPEv2\r\n\r\n2020-07-06 08:52:53,728 [root] DEBUG: Importing modules...\r\n2020-07-06 08:52:53,761 [volatility.framework.interfaces.layers] DEBUG: Imported python-magic, autodetecting compressed files based on content\r\n2020-07-06 08:52:54,648 [root] DEBUG: Imported \"auxiliary\" modules:\r\n2020-07-06 08:52:54,648 [root] DEBUG: \t `-- Sniffer\r\n2020-07-06 08:52:54,648 [root] DEBUG: Imported \"processing\" modules:\r\n2020-07-06 08:52:54,648 [root] DEBUG: \t |-- CAPE\r\n2020-07-06 08:52:54,648 [root] DEBUG: \t |-- AnalysisInfo\r\n2020-07-06 08:52:54,649 [root] DEBUG: \t |-- BehaviorAnalysis\r\n2020-07-06 08:52:54,649 [root] DEBUG: \t |-- Curtain\r\n2020-07-06 08:52:54,649 [root] DEBUG: \t |-- Debug\r\n2020-07-06 08:52:54,649 [root] DEBUG: \t |-- Decompression\r\n2020-07-06 08:52:54,649 [root] DEBUG: \t |-- Deduplicate\r\n2020-07-06 08:52:54,649 [root] DEBUG: \t |-- Dropped\r\n2020-07-06 08:52:54,649 [root] DEBUG: \t |-- MMBot\r\n2020-07-06 08:52:54,649 [root] DEBUG: \t |-- Memory\r\n2020-07-06 08:52:54,650 [root] DEBUG: \t |-- NetworkAnalysis\r\n2020-07-06 08:52:54,650 [root] DEBUG: \t |-- ProcDump\r\n2020-07-06 08:52:54,650 [root] DEBUG: \t |-- ProcessMemory\r\n2020-07-06 08:52:54,650 [root] DEBUG: \t |-- Procmon\r\n2020-07-06 08:52:54,650 [root] DEBUG: \t |-- Static\r\n2020-07-06 08:52:54,650 [root] DEBUG: \t |-- Strings\r\n2020-07-06 08:52:54,650 [root] DEBUG: \t |-- Suricata\r\n2020-07-06 08:52:54,650 [root] DEBUG: \t |-- Sysmon\r\n2020-07-06 08:52:54,650 [root] DEBUG: \t |-- TargetInfo\r\n2020-07-06 08:52:54,651 [root] DEBUG: \t |-- TrID\r\n2020-07-06 08:52:54,651 [root] DEBUG: \t |-- Usage\r\n2020-07-06 08:52:54,651 [root] DEBUG: \t `-- VirusTotal\r\n2020-07-06 08:52:54,651 [root] DEBUG: Imported \"signatures\" modules:\r\n2020-07-06 08:52:54,651 [root] DEBUG: \t |-- CAPEDetectedThreat\r\n2020-07-06 08:52:54,651 [root] DEBUG: \t |-- CAPE_Compression\r\n2020-07-06 08:52:54,651 [root] DEBUG: \t |-- CAPE_Decryption\r\n2020-07-06 08:52:54,651 [root] DEBUG: \t |-- CAPE_Doppelganging\r\n2020-07-06 08:52:54,651 [root] DEBUG: \t |-- CAPE_EvilGrab\r\n2020-07-06 08:52:54,652 [root] DEBUG: \t |-- CAPE_Injection\r\n2020-07-06 08:52:54,652 [root] DEBUG: \t |-- CAPE_InjectionCreateRemoteThread\r\n2020-07-06 08:52:54,652 [root] DEBUG: \t |-- CAPE_InjectionProcessHollowing\r\n2020-07-06 08:52:54,652 [root] DEBUG: \t |-- CAPE_InjectionSetWindowLong\r\n2020-07-06 08:52:54,652 [root] DEBUG: \t |-- CAPE_PlugX\r\n2020-07-06 08:52:54,652 [root] DEBUG: \t |-- CAPE_RegBinary\r\n2020-07-06 08:52:54,652 [root] DEBUG: \t |-- CAPE_TransactedHollowing\r\n2020-07-06 08:52:54,652 [root] DEBUG: \t |-- CAPE_Unpacker\r\n2020-07-06 08:52:54,653 [root] DEBUG: \t |-- CAPEExtractedContent\r\n2020-07-06 08:52:54,653 [root] DEBUG: \t `-- NetworkHTTPS\r\n2020-07-06 08:52:54,653 [root] DEBUG: Imported \"reporting\" modules:\r\n2020-07-06 08:52:54,653 [root] DEBUG: \t |-- BinGraph\r\n2020-07-06 08:52:54,653 [root] DEBUG: \t |-- CALLBACKHOME\r\n2020-07-06 08:52:54,653 [root] DEBUG: \t |-- Compression\r\n2020-07-06 08:52:54,653 [root] DEBUG: \t |-- CompressResults\r\n2020-07-06 08:52:54,653 [root] DEBUG: \t |-- JsonDump\r\n2020-07-06 08:52:54,653 [root] DEBUG: \t |-- MAEC41Report\r\n2020-07-06 08:52:54,654 [root] DEBUG: \t |-- MaecReport\r\n2020-07-06 08:52:54,654 [root] DEBUG: \t |-- MISP\r\n2020-07-06 08:52:54,654 [root] DEBUG: \t |-- MITRE_TTPS\r\n2020-07-06 08:52:54,654 [root] DEBUG: \t |-- MongoDB\r\n2020-07-06 08:52:54,654 [root] DEBUG: \t |-- RAMFSCLEAN\r\n2020-07-06 08:52:54,654 [root] DEBUG: \t |-- ReportHTML\r\n2020-07-06 08:52:54,654 [root] DEBUG: \t |-- ReportHTMLSummary\r\n2020-07-06 08:52:54,654 [root] DEBUG: \t |-- ReportPDF\r\n2020-07-06 08:52:54,654 [root] DEBUG: \t |-- ReSubmitExtractedEXE\r\n2020-07-06 08:52:54,655 [root] DEBUG: \t |-- Retention\r\n2020-07-06 08:52:54,655 [root] DEBUG: \t |-- SubmitCAPE\r\n2020-07-06 08:52:54,655 [root] DEBUG: \t `-- Syslog\r\n2020-07-06 08:52:54,655 [root] DEBUG: Imported \"machinery\" modules:\r\n2020-07-06 08:52:54,655 [root] DEBUG: \t `-- KVM\r\n2020-07-06 08:52:54,655 [root] DEBUG: Checking for locked tasks...\r\n2020-07-06 08:52:54,909 [root] DEBUG: Initializing Yara...\r\n2020-07-06 08:52:54,915 [root] DEBUG: \t |-- binaries HeavensGate.yar\r\n2020-07-06 08:52:54,930 [root] DEBUG: \t |-- CAPE AgentTesla.yar\r\n2020-07-06 08:52:54,930 [root] DEBUG: \t |-- CAPE Arkei.yar\r\n2020-07-06 08:52:54,930 [root] DEBUG: \t |-- CAPE AsyncRat.yar\r\n2020-07-06 08:52:54,930 [root] DEBUG: \t |-- CAPE Atlas.yar\r\n2020-07-06 08:52:54,930 [root] DEBUG: \t |-- CAPE Azer.yar\r\n2020-07-06 08:52:54,930 [root] DEBUG: \t |-- CAPE Azorult.yar\r\n2020-07-06 08:52:54,930 [root] DEBUG: \t |-- CAPE BadRabbit.yar\r\n2020-07-06 08:52:54,931 [root] DEBUG: \t |-- CAPE BitPaymer.yar\r\n2020-07-06 08:52:54,931 [root] DEBUG: \t |-- CAPE Cerber.yar\r\n2020-07-06 08:52:54,931 [root] DEBUG: \t |-- CAPE Clop.yar\r\n2020-07-06 08:52:54,931 [root] DEBUG: \t |-- CAPE CobaltStrikeBeacon.yar\r\n2020-07-06 08:52:54,931 [root] DEBUG: \t |-- CAPE Codoso.yar\r\n2020-07-06 08:52:54,931 [root] DEBUG: \t |-- CAPE Cryptoshield.yar\r\n2020-07-06 08:52:54,931 [root] DEBUG: \t |-- CAPE DoppelPaymer.yar\r\n2020-07-06 08:52:54,931 [root] DEBUG: \t |-- CAPE Dreambot.yar\r\n2020-07-06 08:52:54,932 [root] DEBUG: \t |-- CAPE DridexLoader.yar\r\n2020-07-06 08:52:54,932 [root] DEBUG: \t |-- CAPE DridexV4.yar\r\n2020-07-06 08:52:54,932 [root] DEBUG: \t |-- CAPE Emotet.yar\r\n2020-07-06 08:52:54,932 [root] DEBUG: \t |-- CAPE Emotet_Loader.yar\r\n2020-07-06 08:52:54,932 [root] DEBUG: \t |-- CAPE EternalRomance.yar\r\n2020-07-06 08:52:54,932 [root] DEBUG: \t |-- CAPE Fareit.yar\r\n2020-07-06 08:52:54,932 [root] DEBUG: \t |-- CAPE Gandcrab.yar\r\n2020-07-06 08:52:54,932 [root] DEBUG: \t |-- CAPE Gootkit.yar\r\n2020-07-06 08:52:54,932 [root] DEBUG: \t |-- CAPE Hancitor.yar\r\n2020-07-06 08:52:54,933 [root] DEBUG: \t |-- CAPE Hermes.yar\r\n2020-07-06 08:52:54,933 [root] DEBUG: \t |-- CAPE IcedID.yar\r\n2020-07-06 08:52:54,933 [root] DEBUG: \t |-- CAPE Imminent.yar\r\n2020-07-06 08:52:54,933 [root] DEBUG: \t |-- CAPE Jaff.yar\r\n2020-07-06 08:52:54,933 [root] DEBUG: \t |-- CAPE Kovter.yar\r\n2020-07-06 08:52:54,933 [root] DEBUG: \t |-- CAPE Kronos.yar\r\n2020-07-06 08:52:54,933 [root] DEBUG: \t |-- CAPE Lockbit.yar\r\n2020-07-06 08:52:54,933 [root] DEBUG: \t |-- CAPE Locky.yar\r\n2020-07-06 08:52:54,933 [root] DEBUG: \t |-- CAPE Loki.yar\r\n2020-07-06 08:52:54,934 [root] DEBUG: \t |-- CAPE Magniber.yar\r\n2020-07-06 08:52:54,934 [root] DEBUG: \t |-- CAPE MegaCortex.yar\r\n2020-07-06 08:52:54,934 [root] DEBUG: \t |-- CAPE Mole.yar\r\n2020-07-06 08:52:54,934 [root] DEBUG: \t |-- CAPE NanoLocker.yar\r\n2020-07-06 08:52:54,934 [root] DEBUG: \t |-- CAPE Nemty.yar\r\n2020-07-06 08:52:54,934 [root] DEBUG: \t |-- CAPE NetTraveler.yar\r\n2020-07-06 08:52:54,934 [root] DEBUG: \t |-- CAPE OlympicDestroyer.yar\r\n2020-07-06 08:52:54,934 [root] DEBUG: \t |-- CAPE PetrWrap.yar\r\n2020-07-06 08:52:54,934 [root] DEBUG: \t |-- CAPE Petya.yar\r\n2020-07-06 08:52:54,935 [root] DEBUG: \t |-- CAPE Phorpiex.yar\r\n2020-07-06 08:52:54,935 [root] DEBUG: \t |-- CAPE QakBot.yar\r\n2020-07-06 08:52:54,935 [root] DEBUG: \t |-- CAPE RCSession.yar\r\n2020-07-06 08:52:54,935 [root] DEBUG: \t |-- CAPE Ramnit.yar\r\n2020-07-06 08:52:54,935 [root] DEBUG: \t |-- CAPE Remcos.yar\r\n2020-07-06 08:52:54,935 [root] DEBUG: \t |-- CAPE RokRat.yar\r\n2020-07-06 08:52:54,935 [root] DEBUG: \t |-- CAPE Ryuk.yar\r\n2020-07-06 08:52:54,935 [root] DEBUG: \t |-- CAPE Scarab.yar\r\n2020-07-06 08:52:54,935 [root] DEBUG: \t |-- CAPE Sedreco.yar\r\n2020-07-06 08:52:54,936 [root] DEBUG: \t |-- CAPE Seduploader.yar\r\n2020-07-06 08:52:54,936 [root] DEBUG: \t |-- CAPE TClient.yar\r\n2020-07-06 08:52:54,936 [root] DEBUG: \t |-- CAPE TSCookie.yar\r\n2020-07-06 08:52:54,936 [root] DEBUG: \t |-- CAPE TrickBot.yar\r\n2020-07-06 08:52:54,936 [root] DEBUG: \t |-- CAPE Ursnif.yar\r\n2020-07-06 08:52:54,936 [root] DEBUG: \t |-- CAPE Ursnif3.yar\r\n2020-07-06 08:52:54,936 [root] DEBUG: \t |-- CAPE Varenyky.yar\r\n2020-07-06 08:52:54,936 [root] DEBUG: \t |-- CAPE Vidar.yar\r\n2020-07-06 08:52:54,936 [root] DEBUG: \t |-- CAPE WanaCry.yar\r\n2020-07-06 08:52:54,937 [root] DEBUG: \t |-- CAPE ZeroT.yar\r\n2020-07-06 08:52:54,937 [root] DEBUG: \t |-- CAPE ZeusPanda.yar\r\n2020-07-06 08:52:54,937 [root] DEBUG: \t |-- CAPE Zloader.yar\r\n2020-07-06 08:52:54,937 [root] DEBUG: \t |-- CAPE tRat.yar\r\n2020-07-06 08:52:54,940 [lib.cuckoo.core.scheduler] INFO: Using \"kvm\" machine manager with max_analysis_count=0, max_machines_count=10, and max_vmstartup_count=5\r\n2020-07-06 08:52:54,961 [lib.cuckoo.common.abstracts] DEBUG: Getting status for cuckoo1\r\n2020-07-06 08:52:54,976 [lib.cuckoo.core.scheduler] INFO: Loaded 1 machine/s\r\n2020-07-06 08:52:54,983 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks.\r\n2020-07-06 08:53:13,611 [lib.cuckoo.core.scheduler] DEBUG: Task #37: Processing task\r\n2020-07-06 08:53:13,615 [lib.cuckoo.core.scheduler] INFO: Task #37: Starting analysis of FILE '/tmp/cuckoo-tmp/upload__imo768y/sample1.exe'\r\n2020-07-06 08:53:13,636 [lib.cuckoo.core.scheduler] INFO: Task #37: File already exists at '/home/cape/CAPEv2/storage/binaries/7ff651aa9581a2cb706e1aeb7957f06a70a6718abd0a6449a039006e9eff06dc'\r\n2020-07-06 08:53:13,654 [lib.cuckoo.core.scheduler] INFO: Task #37: acquired machine cuckoo1 (label=cuckoo1, platform=windows)\r\n2020-07-06 08:53:14,288 [root] DEBUG: Now tracking machine 192.168.100.100 for task #37\r\n2020-07-06 08:53:14,304 [lib.cuckoo.common.abstracts] DEBUG: Starting machine cuckoo1\r\n2020-07-06 08:53:14,304 [lib.cuckoo.common.abstracts] DEBUG: Getting status for cuckoo1\r\n2020-07-06 08:53:14,330 [lib.cuckoo.common.abstracts] DEBUG: Using snapshot snapshot1 for virtual machine cuckoo1\r\n2020-07-06 08:53:22,486 [lib.cuckoo.common.abstracts] DEBUG: Getting status for cuckoo1\r\n2020-07-06 08:53:22,562 [lib.cuckoo.core.scheduler] INFO: Enabled route 'none'\r\n2020-07-06 08:53:22,586 [modules.auxiliary.sniffer] INFO: Started sniffer with PID 22325 (interface=virbr1, host=192.168.100.100, dump path=/home/cape/CAPEv2/storage/analyses/37/dump.pcap)\r\n2020-07-06 08:53:22,587 [lib.cuckoo.core.plugins] DEBUG: Started auxiliary module: Sniffer\r\n2020-07-06 08:53:22,606 [lib.cuckoo.core.guest] INFO: Starting analysis #37 on guest (id=cuckoo1, ip=192.168.100.100)\r\n2020-07-06 08:53:22,749 [lib.cuckoo.core.guest] INFO: Guest is running CAPE Agent 0.11 (id=cuckoo1, ip=192.168.100.100)\r\n2020-07-06 08:53:22,920 [lib.cuckoo.core.guest] DEBUG: Uploading analyzer to guest (id=cuckoo1, ip=192.168.100.100, size=17049934)\r\n2020-07-06 08:53:28,001 [lib.cuckoo.core.guest] INFO: Uploading support files to guest (id=cuckoo1, ip=192.168.100.100)\r\n2020-07-06 08:53:31,385 [root] DEBUG: Task #37: live log analysis.log initialized.\r\n2020-07-06 08:53:33,234 [lib.cuckoo.core.guest] DEBUG: cuckoo1: analysis #37 is still running\r\n2020-07-06 08:53:38,345 [lib.cuckoo.core.guest] DEBUG: cuckoo1: analysis #37 is still running\r\n2020-07-06 08:53:43,452 [lib.cuckoo.core.guest] DEBUG: cuckoo1: analysis #37 is still running\r\n2020-07-06 08:53:46,193 [root] DEBUG: Task #37: File upload for b'aux/DigiSig.json'\r\n2020-07-06 08:53:46,196 [root] DEBUG: Task #37 uploaded file length: 198\r\n2020-07-06 08:53:46,479 [root] DEBUG: Task #37: File upload for b'aux/usage.log'\r\n2020-07-06 08:53:48,335 [root] DEBUG: Task #37: File upload for b'shots/0001.jpg'\r\n2020-07-06 08:53:48,357 [root] DEBUG: Task #37 uploaded file length: 37000\r\n2020-07-06 08:53:48,546 [lib.cuckoo.core.guest] DEBUG: cuckoo1: analysis #37 is still running\r\n2020-07-06 08:53:53,683 [lib.cuckoo.core.guest] DEBUG: cuckoo1: analysis #37 is still running\r\n2020-07-06 08:53:57,138 [root] DEBUG: Task #37 is sending a BSON stream. For pid 2104\r\n2020-07-06 08:53:58,781 [lib.cuckoo.core.guest] DEBUG: cuckoo1: analysis #37 is still running\r\n2020-07-06 08:54:02,479 [root] DEBUG: Task #37: File upload for b'procdump/759cb7ef868b6289a5a8c89929feac52b8fa39bd1a483d44b7767655e90da228'\r\n2020-07-06 08:54:02,525 [root] DEBUG: Task #37 uploaded file length: 800768\r\n2020-07-06 08:54:03,864 [lib.cuckoo.core.guest] DEBUG: cuckoo1: analysis #37 is still running\r\n2020-07-06 08:54:08,939 [lib.cuckoo.core.guest] DEBUG: cuckoo1: analysis #37 is still running\r\n2020-07-06 08:54:14,093 [lib.cuckoo.core.guest] INFO: cuckoo1: analysis completed successfully\r\n2020-07-06 08:54:14,124 [lib.cuckoo.core.plugins] DEBUG: Stopped auxiliary module: Sniffer\r\n2020-07-06 08:54:14,132 [lib.cuckoo.common.abstracts] DEBUG: Stopping machine cuckoo1\r\n2020-07-06 08:54:14,133 [lib.cuckoo.common.abstracts] DEBUG: Getting status for cuckoo1\r\n2020-07-06 08:54:15,018 [lib.cuckoo.common.abstracts] DEBUG: Getting status for cuckoo1\r\n2020-07-06 08:54:15,057 [root] DEBUG: Stopped tracking machine 192.168.100.100 for task #37\r\n2020-07-06 08:54:15,058 [root] DEBUG: Cancel <Context for b'BSON'> for task 37\r\n2020-07-06 08:54:15,058 [root] DEBUG: Cancel <Context for b'LOG'> for task 37\r\n2020-07-06 08:54:15,058 [root] DEBUG: Cancel <Context for b'FILE'> for task 37\r\n2020-07-06 08:54:15,059 [root] DEBUG: Task #37 uploaded file length: 60\r\n2020-07-06 08:54:15,134 [lib.cuckoo.core.scheduler] DEBUG: Task #37: Released database task with status True\r\n2020-07-06 08:54:15,134 [lib.cuckoo.core.scheduler] INFO: Task #37: analysis procedure completed\r\n```\r\n## Agent analysis.log\r\n\r\n```\r\n2020-07-03 11:40:35,976 [root] INFO: Date set to: 20200706T08:53:12, timeout set to: 200\r\n2020-07-06 08:53:13,221 [root] DEBUG: Starting analyzer from: C:\\tmp4ch12i9a\r\n2020-07-06 08:53:13,595 [root] DEBUG: Storing results at: C:\\qiWkDPrmMb\r\n2020-07-06 08:53:13,922 [root] DEBUG: Pipe server name: \\\\.\\PIPE\\nbnoNjykF\r\n2020-07-06 08:53:14,364 [root] DEBUG: Python path: C:\\Program Files (x86)\\Python38-32\r\n2020-07-06 08:53:14,505 [root] DEBUG: No analysis package specified, trying to detect it automagically.\r\n2020-07-06 08:53:17,672 [root] INFO: Automatically selected analysis package \"exe\"\r\n2020-07-06 08:53:17,719 [root] DEBUG: Trying to import analysis package \"exe\"...\r\n2020-07-06 08:53:20,063 [root] DEBUG: Imported analysis package \"exe\".\r\n2020-07-06 08:53:20,182 [root] DEBUG: Trying to initialize analysis package \"exe\"...\r\n2020-07-06 08:53:20,375 [root] DEBUG: Initialized analysis package \"exe\".\r\n2020-07-06 08:53:20,947 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.browser\"...\r\n2020-07-06 08:53:21,032 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.browser\".\r\n2020-07-06 08:53:21,102 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.curtain\"...\r\n2020-07-06 08:53:21,224 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.curtain\".\r\n2020-07-06 08:53:21,241 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.digisig\"...\r\n2020-07-06 08:53:21,333 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.digisig\".\r\n2020-07-06 08:53:21,473 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.disguise\"...\r\n2020-07-06 08:53:22,047 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.disguise\".\r\n2020-07-06 08:53:22,110 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.human\"...\r\n2020-07-06 08:53:22,266 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.human\".\r\n2020-07-06 08:53:22,320 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.screenshots\"...\r\n2020-07-06 08:53:22,376 [modules.auxiliary.screenshots] DEBUG: Importing 'time'\r\n2020-07-06 08:53:22,408 [modules.auxiliary.screenshots] DEBUG: Importing 'StringIO'\r\n2020-07-06 08:53:22,408 [modules.auxiliary.screenshots] DEBUG: Importing 'Thread'\r\n2020-07-06 08:53:22,442 [modules.auxiliary.screenshots] DEBUG: Importing 'Auxiliary'\r\n2020-07-06 08:53:22,462 [modules.auxiliary.screenshots] DEBUG: Importing 'NetlogFile'\r\n2020-07-06 08:53:22,469 [modules.auxiliary.screenshots] DEBUG: Importing 'Screenshot'\r\n2020-07-06 08:53:22,532 [lib.api.screenshot] DEBUG: Importing 'math'\r\n2020-07-06 08:53:22,563 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageChops'\r\n2020-07-06 08:53:22,774 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageGrab'\r\n2020-07-06 08:53:22,860 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageDraw'\r\n2020-07-06 08:53:22,926 [modules.auxiliary.screenshots] DEBUG: Imports OK\r\n2020-07-06 08:53:23,043 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.screenshots\".\r\n2020-07-06 08:53:23,047 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.usage\"...\r\n2020-07-06 08:53:23,176 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.usage\".\r\n2020-07-06 08:53:23,235 [root] DEBUG: Trying to initialize auxiliary module \"Browser\"...\r\n2020-07-06 08:53:23,298 [root] DEBUG: Initialized auxiliary module \"Browser\".\r\n2020-07-06 08:53:23,328 [root] DEBUG: Trying to start auxiliary module \"Browser\"...\r\n2020-07-06 08:53:23,438 [root] DEBUG: Started auxiliary module Browser\r\n2020-07-06 08:53:23,508 [root] DEBUG: Trying to initialize auxiliary module \"Curtain\"...\r\n2020-07-06 08:53:23,577 [root] DEBUG: Initialized auxiliary module \"Curtain\".\r\n2020-07-06 08:53:23,667 [root] DEBUG: Trying to start auxiliary module \"Curtain\"...\r\n2020-07-06 08:53:23,713 [root] DEBUG: Started auxiliary module Curtain\r\n2020-07-06 08:53:23,719 [root] DEBUG: Trying to initialize auxiliary module \"DigiSig\"...\r\n2020-07-06 08:53:23,719 [root] DEBUG: Initialized auxiliary module \"DigiSig\".\r\n2020-07-06 08:53:23,719 [root] DEBUG: Trying to start auxiliary module \"DigiSig\"...\r\n2020-07-06 08:53:23,719 [modules.auxiliary.digisig] DEBUG: Checking for a digital signature.\r\n2020-07-06 08:53:26,672 [modules.auxiliary.digisig] DEBUG: File is not signed.\r\n2020-07-06 08:53:26,672 [modules.auxiliary.digisig] INFO: Uploading signature results to aux/DigiSig.json\r\n2020-07-06 08:53:26,707 [root] DEBUG: Started auxiliary module DigiSig\r\n2020-07-06 08:53:26,707 [root] DEBUG: Trying to initialize auxiliary module \"Disguise\"...\r\n2020-07-06 08:53:26,707 [root] DEBUG: Initialized auxiliary module \"Disguise\".\r\n2020-07-06 08:53:26,707 [root] DEBUG: Trying to start auxiliary module \"Disguise\"...\r\n2020-07-06 08:53:26,707 [root] DEBUG: Started auxiliary module Disguise\r\n2020-07-06 08:53:26,707 [root] DEBUG: Trying to initialize auxiliary module \"Human\"...\r\n2020-07-06 08:53:26,707 [root] DEBUG: Initialized auxiliary module \"Human\".\r\n2020-07-06 08:53:26,707 [root] DEBUG: Trying to start auxiliary module \"Human\"...\r\n2020-07-06 08:53:26,707 [root] DEBUG: Started auxiliary module Human\r\n2020-07-06 08:53:26,707 [root] DEBUG: Trying to initialize auxiliary module \"Screenshots\"...\r\n2020-07-06 08:53:26,902 [root] DEBUG: Initialized auxiliary module \"Screenshots\".\r\n2020-07-06 08:53:26,913 [root] DEBUG: Trying to start auxiliary module \"Screenshots\"...\r\n2020-07-06 08:53:26,928 [root] DEBUG: Started auxiliary module Screenshots\r\n2020-07-06 08:53:26,928 [root] DEBUG: Trying to initialize auxiliary module \"Usage\"...\r\n2020-07-06 08:53:26,944 [root] DEBUG: Initialized auxiliary module \"Usage\".\r\n2020-07-06 08:53:26,944 [root] DEBUG: Trying to start auxiliary module \"Usage\"...\r\n2020-07-06 08:53:26,975 [root] DEBUG: Started auxiliary module Usage\r\n2020-07-06 08:53:26,975 [root] INFO: Analyzer: Package modules.packages.exe does not specify a DLL option\r\n2020-07-06 08:53:27,001 [root] INFO: Analyzer: Package modules.packages.exe does not specify a DLL_64 option\r\n2020-07-06 08:53:27,051 [root] INFO: Analyzer: Package modules.packages.exe does not specify a loader option\r\n2020-07-06 08:53:27,082 [root] INFO: Analyzer: Package modules.packages.exe does not specify a loader_64 option\r\n2020-07-06 08:53:29,425 [lib.api.process] INFO: Successfully executed process from path \"C:\\Users\\capev2\\AppData\\Local\\Temp\\sample1.exe\" with arguments \"\" with pid 2104\r\n2020-07-06 08:53:29,425 [lib.api.process] INFO: Monitor config for process 2104: C:\\tmp4ch12i9a\\dll\\2104.ini\r\n2020-07-06 08:53:29,454 [lib.api.process] INFO: 32-bit DLL to inject is C:\\tmp4ch12i9a\\dll\\UWlirCU.dll, loader C:\\tmp4ch12i9a\\bin\\ZjvjGfU.exe\r\n2020-07-06 08:53:30,192 [root] DEBUG: ReadConfig: Successfully loaded pipe name \\\\.\\PIPE\\nbnoNjykF.\r\n2020-07-06 08:53:30,333 [root] DEBUG: Loader: Injecting process 2104 (thread 6348) with C:\\tmp4ch12i9a\\dll\\UWlirCU.dll.\r\n2020-07-06 08:53:30,351 [root] DEBUG: Process image base: 0x00400000\r\n2020-07-06 08:53:30,364 [root] DEBUG: InjectDllViaIAT: IAT patching with dll name C:\\tmp4ch12i9a\\dll\\UWlirCU.dll.\r\n2020-07-06 08:53:30,392 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\r\n2020-07-06 08:53:30,392 [root] DEBUG: Successfully injected DLL C:\\tmp4ch12i9a\\dll\\UWlirCU.dll.\r\n2020-07-06 08:53:30,454 [lib.api.process] INFO: Injected into suspended 32-bit process with pid 2104\r\n2020-07-06 08:53:32,520 [lib.api.process] INFO: Successfully resumed process with pid 2104\r\n2020-07-06 08:53:36,061 [root] DEBUG: Python path set to 'C:\\Program Files (x86)\\Python38-32'.\r\n2020-07-06 08:53:37,022 [root] DEBUG: Dropped file limit defaulting to 100.\r\n2020-07-06 08:53:37,892 [root] DEBUG: RestoreHeaders: Restored original import table.\r\n2020-07-06 08:53:38,470 [root] DEBUG: CAPE initialised: 32-bit monitor loaded in process 2104 at 0x6f860000, image base 0x400000, stack from 0x196000-0x1a0000\r\n2020-07-06 08:53:38,770 [root] DEBUG: Commandline: C:\\Users\\capev2\\AppData\\Local\\Temp\\\"C:\\Users\\capev2\\AppData\\Local\\Temp\\sample1.exe\".\r\n2020-07-06 08:53:39,392 [root] INFO: Loaded monitor into process with pid 2104\r\n2020-07-06 08:53:40,023 [root] DEBUG: DLL loaded at 0x74590000: C:\\Windows\\system32\\uxtheme (0x74000 bytes).\r\n2020-07-06 08:53:40,455 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x248 amd local view 0x77320000 to global list.\r\n2020-07-06 08:53:40,785 [root] DEBUG: DLL loaded at 0x77320000: C:\\Windows\\System32\\MSCTF (0xd2000 bytes).\r\n2020-07-06 08:53:41,058 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x250 amd local view 0x03B30000 to global list.\r\n2020-07-06 08:53:41,535 [root] INFO: Disabling sleep skipping.\r\n2020-07-06 08:53:41,556 [root] DEBUG: NtTerminateProcess hook: Attempting to dump process 2104\r\n2020-07-06 08:53:41,752 [root] DEBUG: GetHookCallerBase: thread 2592 (handle 0x0), return address 0x004752ED, allocation base 0x00400000.\r\n2020-07-06 08:53:41,948 [root] DEBUG: DoProcessDump: Dumping Imagebase at 0x00400000.\r\n2020-07-06 08:53:42,101 [root] DEBUG: DumpImageInCurrentProcess: Attempting to dump virtual PE image.\r\n2020-07-06 08:53:42,240 [root] DEBUG: DumpProcess: Instantiating PeParser with address: 0x00400000.\r\n2020-07-06 08:53:42,331 [root] DEBUG: DumpProcess: Module entry point VA is 0x000782BC.\r\n2020-07-06 08:53:42,674 [root] DEBUG: DLL loaded at 0x76DD0000: C:\\Windows\\System32\\bcryptPrimitives (0x5c000 bytes).\r\n2020-07-06 08:53:43,111 [root] DEBUG: DumpProcess: Module image dump success - dump size 0xc3800.\r\n2020-07-06 08:53:43,242 [root] DEBUG: DLL unloaded from 0x762B0000.\r\n2020-07-06 08:53:43,869 [root] INFO: Process with pid 2104 has terminated\r\n2020-07-06 08:53:50,167 [root] INFO: Process list is empty, terminating analysis.\r\n2020-07-06 08:53:51,362 [root] INFO: Created shutdown mutex.\r\n2020-07-06 08:53:52,596 [root] INFO: Shutting down package.\r\n2020-07-06 08:53:52,790 [root] INFO: Stopping auxiliary modules.\r\n2020-07-06 08:53:52,966 [root] INFO: Finishing auxiliary modules.\r\n2020-07-06 08:53:53,153 [root] INFO: Shutting down pipe server and dumping dropped files.\r\n2020-07-06 08:53:53,506 [root] WARNING: Folder at path \"C:\\qiWkDPrmMb\\debugger\" does not exist, skip.\r\n2020-07-06 08:53:53,862 [root] INFO: Analysis completed.\r\n```\r\n\nComment: did you start process.py?\nComment: \u00ccf I run process.py with the id 37 (my latest task), I get this :\r\n```\r\npywin32 is not installed (only is required if you want to use MS Excel)\r\n2020-07-06 09:08:31,509 [modules.processing.suricata] WARNING: Failed to connect to socket and send command /var/run/suricata/suricata-command.socket: [Errno 2] No such file or directory\r\n[]\r\n```\nComment: ya thats is fine, 1 line is from xlmdeobfuscator, second tellyou that suricata isn't running and empty list probably an print missed somewhere in code, but you run it incorrectly so far see in cape2.sh you have systemds for that and it runs as `python3 process.py -p X auto` where X is desired number of parallel processing\nComment: Damn ! I've just had a revelation ! Thanks a lot !\r\n\r\nI didn't enable the services :/ My bad.\r\n\r\nThank you again !\nComment: you are welcome, service should be enabled bydefault, i will check, let us knowo if you see any bugs\nComment: done, https://github.com/doomedraven/Tools/commit/1ffa92f22ea42d960053363964826b357ba519b8 thanks",
+  "Title: HWP improvements\nBody: ",
+  "Title: Incorrect \"FullName\" value reported in some cases\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\nThanks a bunch for continued dev work on CAPE! I'm guessing this is actually an issue in capemon, however that repo does not support issues, and I'm simply not knowledgeable enough to find from where this issue stems and resolve it. \r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [ ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nThe \"FullName\" should be printed/returned normally in all contiditions.\r\n\r\n# Current Behavior\r\nIn some cases, the \"FullName\" value for appears to have been modified which has leading characters (notably the HK within HKEY) as hex bytes. \r\n(https://capesandbox.com/analysis/18027/)[https://capesandbox.com/analysis/18027/] is an example (PID 3224).\r\n\r\n# Failure Information (for bugs)\r\nThe issue can be seen here.\r\n![image](https://user-images.githubusercontent.com/4827852/86493514-74e16180-bd37-11ea-9678-5d6af815fa6c.png)\r\n\r\n## Steps to Reproduce\r\n\r\n1. Upload the binary analyzed in [task 18027](https://capesandbox.com/analysis/18027/)\r\n1. Observe the API calls for `RegQueryValueExA` within the \"Behavior Analysis\" section of the results\r\n1. Find the call reporting for the \"ValueName\" of `MachineGuid`\r\n1. Observe the FullName contains two hex bytes at the beginning. \r\n\r\nOptionally, I've created a binary that does nothing but query for the MachineGuid and print it. It's available here [https://capesandbox.com/analysis/17775/#](https://capesandbox.com/analysis/17775/#)\r\n\r\n## Context\r\n\r\nI've tested this on a total of 3 CAPEv2 deployments. But included the link/details here for the deployment running on [capesandbox.com](https://capesandbox.com/). All 3 instances exhibit the same behavior.\r\n\r\nI'm not sure, at all, what is causing this erro. The best I could determine is *somewhere* within capemon, however that github project does not support issues. \r\n\r\nI discovered this issue will attempting to create a function within capemon to generate fake GUIDs for this registry key within the [`perform_ascii_registry_fakery`](https://github.com/kevoreilly/capemon/blob/389dc03fb10f45c23e670a33cd16832ba79e57bb/misc.c#L290) function. \r\n\r\nI have been able to verify that it's not just the MachineGUID key that exhibits this behavior.  \r\n[https://capesandbox.com/analysis/17744/](https://capesandbox.com/analysis/17744/) (PID 3108) exhibits the issue on `HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\LanguagePack\\SurrogateFallback\\Plane2`\r\nas show here\r\n![image](https://user-images.githubusercontent.com/4827852/86494677-c4c22780-bd3b-11ea-9fd0-41dafcde6a5d.png)\r\n\r\nAdditionally, this issue does not appear to be isolated to x64 VMs. \r\n[https://capesandbox.com/analysis/18720/](https://capesandbox.com/analysis/18720/) (PID: 2852) also exhibits the same behavior.\r\n\r\n![image](https://user-images.githubusercontent.com/4827852/86495682-0228b400-bd40-11ea-81ea-bc4129e3980b.png)\r\n\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | 0c172f486d7b5f3520e1d542b086e86f371e0873 (Jun 28, 2020)\r\n| OS version       | Ubuntu 20.04 Host running Win7SP1_x64 VM.\r\n\r\n## Failure Logs\r\n\r\nN/A\r\n\nComment: I must be going crazy, I could have sworn the [capemon repo](https://github.com/kevoreilly/capemon/) did not support issues, but I see now that it does.  I'd be happy to move/duplicate this issue there if that is preferred. \nComment: Its fine, @kevoreilly that is your part \ud83d\ude1c\nComment: Hi zoomequipd - sorry for the delay in replying! I actually did have a crack at this late one evening and ultimately ran out of steam when I couldn't get the first sample to repeat the api call in my instance at home with a new monitor I had built to try and narrow this down.\r\n\r\nAnyway - thanks for pointing this out, it is indeed a weird bug. But one that ultimately has nowhere to hide, so I will find it, My initial plan is just to rule in/out two possible candidate subfunctions in get_full_keyvalue_pathA and perform_ascii_registry_fakery, then drill in to which ever is doing the deed.\r\n\r\nAlso, you are not going crazy! I just shouldn't work late - I enabled issues in capemon as soon as I saw this :) Then just took days to respond :( Have been busy but will ultimately swat this unsightly bug!\nComment: > sorry for the delay in replying!\r\n\r\nNo worries at all! Thanks a ton for putting the time and effort into CAPE! \r\n\r\n> I couldn't get the first sample to repeat the api call\r\n\r\nThat malware needs a few things to work before it gets tries that api call, most notable, working internet and a good response back from a stage 1 C2. \r\n\r\nThe binary in [https://capesandbox.com/analysis/17775/](https://capesandbox.com/analysis/17775/) should make that api call without other dependencies. Source/release is available here [https://github.com/zoomequipd/machine_guid/](https://github.com/zoomequipd/machine_guid/) (it was my first c++ program, it's been fun learning a new skill while trying to achieve some goals with CAPE)\r\n\r\n>Also, you are not going crazy! \r\n\r\n\ud83d\udc4d \r\n\r\nThanks again!\r\n\r\n\r\n\nComment: Right I've found the bug :) The free(keybuf) on line 515 of hook_reg.c (https://github.com/kevoreilly/capemon/blob/capemon/hook_reg.c) comes before the log output - moving this to after the log call fixes the bug! So watch out for this fix in the next monitor update at which point I'll close this issue.\r\n\r\nThanks again for bringing this to my attention\nComment: Awesome! Thanks a bunch! \r\nJust so I understand 100%, this issue was only effecting the logging portion, and not what was being passed to the `perform_ascii_registry_fakery` function? \nComment: Right the fix is now published in the latest monitor update - the change is in https://github.com/kevoreilly/capemon/commit/2ab0fc55d07a6b1cdc7c23e9843bb6713c12d73a\r\n\r\nIt was a use-after-free or really a free-before-use as the buffer in keybuf was being freed before being used implicitly in keypath in the logging. So nothing passed to perform_ascii_registry_fakery was affected.",
+  "Title: added aws code\nBody: Added AWS conf file as well as aws.py code for machinery. To test or set this up:\r\n\r\n``` \r\n1. Edit \".cuckoo/conf/cuckoo.conf\"\r\n   machinery = aws\r\n   [resultserver] ip = <the private IP of this machine>\r\n2. Edit \".cuckoo/conf/aws.conf\" according to the instructions in the file\r\n```\r\n\u2022 It is recommended to run guest VMs on 64-bit Windows 7. Create a guest Windows 7 64 bit VM and import this into AWS using the following guide: VM to AMI using this manual. https://docs.aws.amazon.com/vm-import/latest/userguide/vmimport-image-import.html\r\n\r\n\u2022 Launch a new Windows 7 instance to set up the guest\r\n\r\n\u2022 Install Python and Pillow library https://cuckoo.sh/docs/installation/guest/requirements.html\r\n\r\n\u2022 Disable Windows Firewall and the Automatic Updates https://cuckoo.sh/docs/installation/guest/network.html\r\n\r\n\u2022 Install Cuckoo agent https://cuckoo.sh/docs/installation/guest/agent.html\r\n\r\n\u2022 For malware network analysis, each guest should have the Nest as their default route\r\n\r\n\u2022 Save this instance as a new image(AMI). This action will also create a new snapshot(snapshot-id can be found under the AMI details.) Add this snap-shot ID to the aws.conf as shown in the code.\r\n\r\nReference to: #219 \r\n\r\n\r\n\nComment: is this work?\nComment: moved to community repo",
+  "Title: Task #1: Failure in AnalysisManager.run: start() missing 1 required positional argument: 'task'\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nThe expected behavior is to start the analysis and complete it.\r\n\r\n# Current Behavior\r\n\r\nThere is a TypeError and the analysis fails. \r\n\r\n# Failure Information (for bugs)\r\n\r\n```\r\n2020-06-30 00:55:29,238 [modules.machinery.aws] DEBUG: Old volume vol-0f412abcd68db509f in state available\r\n2020-06-30 00:55:29,239 [modules.machinery.aws] DEBUG: Deleting old volume\r\n2020-06-30 00:55:29,322 [modules.machinery.aws] DEBUG: Creating new volume\r\n2020-06-30 00:55:29,678 [modules.machinery.aws] DEBUG: Created new volume vol-0f412abcd68db509f\r\n2020-06-30 00:55:32,954 [modules.machinery.aws] DEBUG: new volume vol-0f412abcd68db509f in state available\r\n2020-06-30 00:55:32,954 [modules.machinery.aws] DEBUG: Attaching new volume\r\n2020-06-30 00:55:33,202 [modules.machinery.aws] DEBUG: response {'AttachTime': datetime.datetime(2020, 6, 30, 0, 55, 33, 187000, tzinfo=tzlocal()), 'Device': '/dev/sda1', 'InstanceId': 'i-0ae7f9bc0f05e97c3', 'State': 'attaching', 'VolumeId': 'vol-0f412abcd68db509f', 'ResponseMetadata': {'RequestId': '3cb12346-e26a-4168-889b-6472f69f80e4', 'HTTPStatusCode': 200, 'HTTPHeaders': {'x-amzn-requestid': '3cb12346-e26a-4178-889b-6472f69f80e4', 'content-type': 'text/xml;charset=UTF-8', 'content-length': '411', 'date': 'Tue, 30 Jun 2020 00:55:32 GMT', 'server': 'AmazonEC2'}, 'RetryAttempts': 0}}\r\n2020-06-30 00:55:33,320 [modules.machinery.aws] DEBUG: new volume vol-0f412abcd68db509f in state in-use\r\n2020-06-30 00:55:33,329 [root] DEBUG: Stopped tracking machine 172.16.134.211 for task #2\r\n2020-06-30 00:55:33,388 [modules.machinery.aws] INFO: instance state: poweroff\r\n2020-06-30 00:55:33,737 [lib.cuckoo.core.scheduler] ERROR: Task #2: Failure in AnalysisManager.run: start() missing 1 required positional argument: 'task'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 413, in run\r\n    success = self.launch_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 304, in launch_analysis\r\n    machinery.start(self.machine.label)\r\nTypeError: start() missing 1 required positional argument: 'task'\r\nERROR    lib.cuckoo.core.scheduler: Task #2: Failure in AnalysisManager.run: start() missing 1 required positional argument: 'task'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 413, in run\r\n    success = self.launch_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 304, in launch_analysis\r\n    machinery.start(self.machine.label)\r\nTypeError: start() missing 1 required positional argument: 'task'\r\n```\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Start the web UI\r\n2. Upload any file. (I uploaded a .pdf file)\r\n\r\n## Context\r\nI'm trying the instance on Ec2 AWS. I adapted the code from https://github.com/CheckPointSW/Cuckoo-AWS\r\n\r\n## Failure Logs\r\n\r\nHome screen: \r\n\r\n![Screen Shot 2020-06-29 at 6 10 51 PM](https://user-images.githubusercontent.com/23186197/86071340-e1a4e500-ba33-11ea-8195-67bea9941882.png)\r\n\r\nRecent screen: \r\n![Screen Shot 2020-06-29 at 6 11 15 PM](https://user-images.githubusercontent.com/23186197/86071365-ee293d80-ba33-11ea-9ad7-6bdd5a59d9c4.png)\r\n\r\nUpload selections:\r\n![Screen Shot 2020-06-29 at 6 12 08 PM](https://user-images.githubusercontent.com/23186197/86071428-0dc06600-ba34-11ea-87cb-b0806cf4bc21.png)\r\n\nComment: Without see aws machinery module this is impossible to solve\nComment: Here are the AWS machinery modules:\r\n\r\n1. aws.py: https://github.com/CheckPointSW/Cuckoo-AWS/blob/master/cuckoo/machinery/aws.py \r\n2. aws.conf: https://github.com/CheckPointSW/Cuckoo-AWS/blob/master/cuckoo/private/cwd/conf/aws.conf\r\n\r\nmy config file looks the same without any changes. The only other changes I made are changing some py2.7 code to py3 code and file locations. Do you want me to directly paste the code or will this be good?\r\n\nComment: copy & paste from cuckoo doesn't work, you need to adjust function args, as in CAPE there no task args and is why it was failing, i pushed fix to your pr for this issue but there could be more issues you need to test it, and i strongly suggest to follow checking others machinery modules in CAPE to compare func args",
+  "Title: Official getting started and configuration guide\nBody: I'm looking to start up a CAPE instance and while I've been able to offsite articles, I was wondering if the project could provide an official getting started guide beyond the (very useful) scripts that are provided for installing cape and it's hypervisor for those that are new to installing sandboxing technology, and that may not understand the similarities and differences in running and configuring stock cuckoo VS cape.\r\n\r\nThe Medium has a good piece on installing and running CAPE (https://medium.com/@soji256/build-a-cape-sandbox-to-analyze-emotet-3d507599dda6), but it looks a bit out of date, and it might be nicer to provide the documentation alongside the version controlled repository so it can be kept up to date with the project.\nComment: hello after you use kvm-qemu.sh and cape2.sh you have all up and running(see logs in case if something failed), apart of that you just need to check configs in conf folder and create vms that is described in my blog, for the rest you have docs folder where you can fidn documentation, it can be outdated in some parts as we don't have time to keep it up to date, but should give general idea + check changelog.md\nComment: Could you post a link to your blog please?\r\n\r\nWhere are the logs written for the installer? I can see the bootstrap.log in the output and I've checked it in /var/logs, but I would like to make sure.\r\n\r\nShould I assume that the documents section is up to date and correct with regards to configuring and installing CAPE and that no breaking changes have been made?\r\n\r\nSorry if these are rudimentary problems, networking and configuration are my weak points in general. I had problems with CAPE last time I installed it with certain components working and others not working, so I just want to make sure things went well at every step to avoid problems down the road.\r\n\r\nThank you for providing and supporting the public use of this project.\nComment: https://www.doomedraven.com/2020/04/how-to-create-virtual-machine-with-virt.html\r\n\r\nif you use -h it will show you to use `|tee x.log`, if you didn't provide it you didn't save any log\r\n\r\nwell without see logs of problems we can't help ;) \r\nall services are running under systemd you can see source of script to see them\nComment: most of those blogpost also are outdated about instalation so bear that in mind that what they say can be very ourdated or not working on that way\nComment: Is there any documentation for CAPE being controlled by the same virtualization platform as the VMs? The virtualbox,conf only has options for the local machine hosting vbox itself. I looked at the distributed cuckoo documents, and it seems to refer to using two cuckoo instances rather than how the machines are connected\r\n\r\nIE, in my test server (and possibly prod), I'm running CAPE off vbox, and the VMs it's supposed to control off the same vbox instance since I can't reimage my base machine with ubuntu 18.04 LTS.\nComment: What? You have docs folder with all stuff are you using vm inside of vm?\n\nEl vie., 26 jun. 2020 20:09, Solumnant <notifications@github.com> escribi\u00f3:\n\n> Is there any documentation for CAPE being controlled by the same\n> virtualization platform as the VMs?\n>\n> IE, in my test server (and possibly prod), I'm running CAPE off vbox, and\n> the VMs it's supposed to control off the same vbox instance since I can't\n> reimage my base machine with ubuntu 18.04 LTS.\n>\n> \u2014\n> You are receiving this because you commented.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/218#issuecomment-650321331>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3535DEO5ZROYRY4OSTRYTP7FANCNFSM4OIVMSUQ>\n> .\n>\n\nComment: It would be more like running everything off the same virtualbox server. The virtualbox server would host CAPE and the analysis vms, with CAPE sending instructions out to the server that is hosting it.\r\n\r\nIt wouldn't be nested, CAPE and it's analysis machines would be run side by side.\r\n\r\nLooking at the documentation it looks like it only supports CAPE being the virtualization platform containing the hypervisor, but not CAPE being run alongside the VMs it controls, is that correct?\r\n\r\nThe virtualbox.conf seems to imply it can only control local vbox instances, and not parent instances.\nComment: yep, for that you need use remove vmware api or kvmremove but that not really supported by us, those are community modules, we only recommend kvm as best performance and antimalware patterns\nComment: or write your own module to do that :)\nComment: im gonna close this as main question is answered, but feel free to post question here\nComment: Thanks, yeah I noticed that this started veering out of scope and I was going to ask if there was a more appropriate place for me to ask these kinds of things. \nComment: Maybe vbox forum how to write vbox api instrumentation as there should be\napi ad far as i know\n\nEl vie., 26 jun. 2020 22:28, Solumnant <notifications@github.com> escribi\u00f3:\n\n> Thanks, yeah I noticed that this started veering out of scope and I was\n> going to ask if there was a more appropriate place for me to ask this kind\n> of thing.\n>\n> \u2014\n> You are receiving this because you modified the open/close state.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/218#issuecomment-650385279>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3ZO6CZEUACG726TQNLRYUAITANCNFSM4OIVMSUQ>\n> .\n>\n\nComment: Hi Solumnant - sorry to be slow to respond to this question - the first thing to point out is that in no way is CAPE limited to working alongside the hypervisor - I personally have run CAPE in a VM for years on VMware using two distinct machinery modules I created for these platforms (VIX and REST apis) - please see the machinery modules directory for these (there is also one for ESX).\r\n\r\nThe key question here is: can you (or CAPE) control the VMs 'remotely' or via the network? I don't know if this is possible with VirtualBox but that's what's needed; the machinery module needs a way of telling the hypervisor to revert the VMs or power them off. It's that simple but if it can't be done via some sort of network-based api then it's not possible.\r\n\r\nUltimately though in the end I've all but ditched the VMware based instances now as there is no future in these hypervisors! KVM all the way now - it's the only hypervisor recommended for CAPE!\nComment: and there is kvmremote.py but it not really supported by core devs, it was done by community so you can update it if needed ;) \nComment: Yes good point if you really need to run CAPE in a VM along side the others and distinct from the hypervisor, kvmremote.py machinery module for KVM would be the recommended route! Thanks @doomedraven \nComment: In case anyone finds this, a good resource would be https://capev2.readthedocs.io/",
+  "Title: Error: %1 is not a valid Win32 application\nBody: # Failure Information (for bugs)\r\n\r\nUploading a ZIP with an Office file inside, does not run the Office file. You get:\r\n\r\n> 2020-06-23 19:57:42,625 [lib.api.process] ERROR: Failed to execute process from path \"C:\\Users\\Louise\\AppData\\Local\\Temp\\Financial Sample.xlsx\" with arguments \"None\" (Error: %1 is not a valid Win32 application (ERROR_BAD_EXE_FORMAT))\r\n\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Create ZIP with Office file (xlsx, docx, ..) inside\r\n2. Upload (choose ZIP package or generic)\r\n\r\n## Failure Logs\r\n\r\n```\r\n2020-05-13 09:29:27,121 [root] INFO: Date set to: 20200623T19:57:38, timeout set to: 300\r\n2020-06-23 19:57:38,078 [root] DEBUG: Starting analyzer from: C:\\tmp558c2t_g\r\n2020-06-23 19:57:38,078 [root] DEBUG: Storing results at: C:\\qJYKXSaSG\r\n2020-06-23 19:57:38,078 [root] DEBUG: Pipe server name: \\\\.\\PIPE\\PbFahOUA\r\n2020-06-23 19:57:38,078 [root] DEBUG: Python path: C:\\Users\\Louise\\AppData\\Local\\Programs\\Python\\Python38-32\r\n2020-06-23 19:57:38,078 [root] DEBUG: No analysis package specified, trying to detect it automagically.\r\n2020-06-23 19:57:38,093 [root] INFO: Automatically selected analysis package \"zip\"\r\n2020-06-23 19:57:38,093 [root] DEBUG: Trying to import analysis package \"zip\"...\r\n2020-06-23 19:57:38,156 [root] DEBUG: Imported analysis package \"zip\".\r\n2020-06-23 19:57:38,156 [root] DEBUG: Trying to initialize analysis package \"zip\"...\r\n2020-06-23 19:57:38,156 [root] DEBUG: Initialized analysis package \"zip\".\r\n2020-06-23 19:57:38,281 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.browser\"...\r\n2020-06-23 19:57:38,296 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.browser\".\r\n2020-06-23 19:57:38,296 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.curtain\"...\r\n2020-06-23 19:57:38,312 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.curtain\".\r\n2020-06-23 19:57:38,312 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.digisig\"...\r\n2020-06-23 19:57:38,343 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.digisig\".\r\n2020-06-23 19:57:38,343 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.disguise\"...\r\n2020-06-23 19:57:38,390 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.disguise\".\r\n2020-06-23 19:57:38,390 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.human\"...\r\n2020-06-23 19:57:38,437 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.human\".\r\n2020-06-23 19:57:38,437 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.procmon\"...\r\n2020-06-23 19:57:38,453 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.procmon\".\r\n2020-06-23 19:57:38,453 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.screenshots\"...\r\n2020-06-23 19:57:38,453 [modules.auxiliary.screenshots] DEBUG: Importing 'time'\r\n2020-06-23 19:57:38,453 [modules.auxiliary.screenshots] DEBUG: Importing 'StringIO'\r\n2020-06-23 19:57:38,453 [modules.auxiliary.screenshots] DEBUG: Importing 'Thread'\r\n2020-06-23 19:57:38,453 [modules.auxiliary.screenshots] DEBUG: Importing 'Auxiliary'\r\n2020-06-23 19:57:38,453 [modules.auxiliary.screenshots] DEBUG: Importing 'NetlogFile'\r\n2020-06-23 19:57:38,453 [modules.auxiliary.screenshots] DEBUG: Importing 'Screenshot'\r\n2020-06-23 19:57:38,468 [lib.api.screenshot] DEBUG: Importing 'math'\r\n2020-06-23 19:57:38,468 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageChops'\r\n2020-06-23 19:57:41,171 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageGrab'\r\n2020-06-23 19:57:41,203 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageDraw'\r\n2020-06-23 19:57:41,218 [modules.auxiliary.screenshots] DEBUG: Imports OK\r\n2020-06-23 19:57:41,218 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.screenshots\".\r\n2020-06-23 19:57:41,218 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.sysmon\"...\r\n2020-06-23 19:57:41,265 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.sysmon\".\r\n2020-06-23 19:57:41,265 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.usage\"...\r\n2020-06-23 19:57:41,281 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.usage\".\r\n2020-06-23 19:57:41,281 [root] DEBUG: Trying to initialize auxiliary module \"Browser\"...\r\n2020-06-23 19:57:41,296 [root] DEBUG: Initialized auxiliary module \"Browser\".\r\n2020-06-23 19:57:41,296 [root] DEBUG: Trying to start auxiliary module \"Browser\"...\r\n2020-06-23 19:57:41,312 [root] DEBUG: Started auxiliary module Browser\r\n2020-06-23 19:57:41,312 [root] DEBUG: Trying to initialize auxiliary module \"Curtain\"...\r\n2020-06-23 19:57:41,312 [root] DEBUG: Initialized auxiliary module \"Curtain\".\r\n2020-06-23 19:57:41,328 [root] DEBUG: Trying to start auxiliary module \"Curtain\"...\r\n2020-06-23 19:57:41,328 [root] DEBUG: Started auxiliary module Curtain\r\n2020-06-23 19:57:41,328 [root] DEBUG: Trying to initialize auxiliary module \"DigiSig\"...\r\n2020-06-23 19:57:41,328 [root] DEBUG: Initialized auxiliary module \"DigiSig\".\r\n2020-06-23 19:57:41,328 [root] DEBUG: Trying to start auxiliary module \"DigiSig\"...\r\n2020-06-23 19:57:41,328 [modules.auxiliary.digisig] DEBUG: Checking for a digital signature.\r\n2020-06-23 19:57:42,453 [modules.auxiliary.digisig] DEBUG: File format not recognized.\r\n2020-06-23 19:57:42,453 [modules.auxiliary.digisig] INFO: Uploading signature results to aux/DigiSig.json\r\n2020-06-23 19:57:42,468 [root] DEBUG: Started auxiliary module DigiSig\r\n2020-06-23 19:57:42,468 [root] DEBUG: Trying to initialize auxiliary module \"Disguise\"...\r\n2020-06-23 19:57:42,468 [root] DEBUG: Initialized auxiliary module \"Disguise\".\r\n2020-06-23 19:57:42,468 [root] DEBUG: Trying to start auxiliary module \"Disguise\"...\r\n2020-06-23 19:57:42,484 [root] DEBUG: Started auxiliary module Disguise\r\n2020-06-23 19:57:42,484 [root] DEBUG: Trying to initialize auxiliary module \"Human\"...\r\n2020-06-23 19:57:42,484 [root] DEBUG: Initialized auxiliary module \"Human\".\r\n2020-06-23 19:57:42,484 [root] DEBUG: Trying to start auxiliary module \"Human\"...\r\n2020-06-23 19:57:42,500 [root] DEBUG: Started auxiliary module Human\r\n2020-06-23 19:57:42,500 [root] DEBUG: Trying to initialize auxiliary module \"Procmon\"...\r\n2020-06-23 19:57:42,500 [root] DEBUG: Initialized auxiliary module \"Procmon\".\r\n2020-06-23 19:57:42,500 [root] DEBUG: Trying to start auxiliary module \"Procmon\"...\r\n2020-06-23 19:57:42,500 [root] DEBUG: Started auxiliary module Procmon\r\n2020-06-23 19:57:42,515 [root] DEBUG: Trying to initialize auxiliary module \"Screenshots\"...\r\n2020-06-23 19:57:42,515 [root] DEBUG: Initialized auxiliary module \"Screenshots\".\r\n2020-06-23 19:57:42,515 [root] DEBUG: Trying to start auxiliary module \"Screenshots\"...\r\n2020-06-23 19:57:42,515 [root] DEBUG: Started auxiliary module Screenshots\r\n2020-06-23 19:57:42,515 [root] DEBUG: Trying to initialize auxiliary module \"Sysmon\"...\r\n2020-06-23 19:57:42,515 [root] DEBUG: Initialized auxiliary module \"Sysmon\".\r\n2020-06-23 19:57:42,515 [root] DEBUG: Trying to start auxiliary module \"Sysmon\"...\r\n2020-06-23 19:57:42,515 [root] DEBUG: Started auxiliary module Sysmon\r\n2020-06-23 19:57:42,515 [root] DEBUG: Trying to initialize auxiliary module \"Usage\"...\r\n2020-06-23 19:57:42,515 [root] DEBUG: Initialized auxiliary module \"Usage\".\r\n2020-06-23 19:57:42,515 [root] DEBUG: Trying to start auxiliary module \"Usage\"...\r\n2020-06-23 19:57:42,515 [root] DEBUG: Started auxiliary module Usage\r\n2020-06-23 19:57:42,515 [root] INFO: Analyzer: Package modules.packages.zip does not specify a DLL option\r\n2020-06-23 19:57:42,531 [root] INFO: Analyzer: Package modules.packages.zip does not specify a DLL_64 option\r\n2020-06-23 19:57:42,531 [root] INFO: Analyzer: Package modules.packages.zip does not specify a loader option\r\n2020-06-23 19:57:42,531 [root] INFO: Analyzer: Package modules.packages.zip does not specify a loader_64 option\r\n2020-06-23 19:57:42,562 [modules.packages.zip] DEBUG: Missing file option, auto executing: Financial Sample.xlsx\r\n2020-06-23 19:57:42,562 [modules.packages.zip] DEBUG: file_name: \"Financial Sample.xlsx\"\r\n2020-06-23 19:57:42,625 [lib.api.process] ERROR: Failed to execute process from path \"C:\\Users\\Louise\\AppData\\Local\\Temp\\Financial Sample.xlsx\" with arguments \"None\" (Error: %1 is not a valid Win32 application (ERROR_BAD_EXE_FORMAT))\r\n2020-06-23 19:57:42,625 [root] ERROR: Traceback (most recent call last):\r\n  File \"C:/tmp558c2t_g/analyzer.py\", line 509, in run\r\n    pids = self.package.start(self.target)\r\n  File \"C:\\tmp558c2t_g\\modules\\packages\\zip.py\", line 169, in start\r\n    return self.execute(file_path, self.options.get(\"arguments\"), file_path)\r\n  File \"C:\\tmp558c2t_g\\lib\\common\\abstracts.py\", line 127, in execute\r\n    raise CuckooPackageError(\"Unable to execute the initial process, \"\r\nlib.common.exceptions.CuckooPackageError: Unable to execute the initial process, analysis aborted.\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"C:/tmp558c2t_g/analyzer.py\", line 1469, in <module>\r\n    success = analyzer.run()\r\n  File \"C:/tmp558c2t_g/analyzer.py\", line 514, in run\r\n    raise CuckooError(\"The package \\\"{0}\\\" start function raised an \"\r\nlib.common.exceptions.CuckooError: The package \"modules.packages.zip\" start function raised an error: Unable to execute the initial process, analysis aborted.\r\nTraceback (most recent call last):\r\n  File \"C:/tmp558c2t_g/analyzer.py\", line 509, in run\r\n    pids = self.package.start(self.target)\r\n  File \"C:\\tmp558c2t_g\\modules\\packages\\zip.py\", line 169, in start\r\n    return self.execute(file_path, self.options.get(\"arguments\"), file_path)\r\n  File \"C:\\tmp558c2t_g\\lib\\common\\abstracts.py\", line 127, in execute\r\n    raise CuckooPackageError(\"Unable to execute the initial process, \"\r\nlib.common.exceptions.CuckooPackageError: Unable to execute the initial process, analysis aborted.\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"C:/tmp558c2t_g/analyzer.py\", line 1469, in <module>\r\n    success = analyzer.run()\r\n  File \"C:/tmp558c2t_g/analyzer.py\", line 514, in run\r\n    raise CuckooError(\"The package \\\"{0}\\\" start function raised an \"\r\nlib.common.exceptions.CuckooError: The package \"modules.packages.zip\" start function raised an error: Unable to execute the initial process, analysis aborted.\r\n2020-06-23 19:57:42,625 [root] WARNING: Folder at path \"C:\\qJYKXSaSG\\debugger\" does not exist, skip.\r\n2020-06-23 19:57:42,625 [root] INFO: Analysis completed.\r\n```\r\n\r\nExample analysis (XLSX): https://capesandbox.com/analysis/13267/\r\n\r\nDOC and DOCX: https://capesandbox.com/submit/status/13271/ & https://capesandbox.com/submit/status/13272/\nComment: again that is \"fake\" issue :P , zip file doesn't know how to run other files that are not exe, so zip package problem, dont use it and be happy :)",
+  "Title: Compression method not supported\nBody: # Failure Information (for bugs)\r\nCreating a ZIP with Encryption Method set as AES-256 does not execute/extract (with ZIP package chosen in Submission).\r\n\r\n> That compression method is not supported\r\n\r\n## Steps to Reproduce\r\n\r\n1. ZIP a file with AES-256 as encryption method\r\n2. Upload to CAPE, select ZIP package\r\n\r\n## Failure Logs\r\n\r\n```\r\n2020-05-13 09:07:47,930 [root] INFO: Date set to: 20200623T09:19:04, timeout set to: 300\r\n2020-06-23 09:19:04,031 [root] DEBUG: Starting analyzer from: C:\\tmpnwhtwc92\r\n2020-06-23 09:19:04,031 [root] DEBUG: Storing results at: C:\\tGHpaeMoH\r\n2020-06-23 09:19:04,031 [root] DEBUG: Pipe server name: \\\\.\\PIPE\\SdeVIcjF\r\n2020-06-23 09:19:04,031 [root] DEBUG: Python path: C:\\Users\\Rebecca\\AppData\\Local\\Programs\\Python\\Python38-32\r\n2020-06-23 09:19:04,031 [root] INFO: Analysis package \"zip\" has been specified.\r\n2020-06-23 09:19:04,031 [root] DEBUG: Trying to import analysis package \"zip\"...\r\n2020-06-23 09:19:04,046 [root] DEBUG: Imported analysis package \"zip\".\r\n2020-06-23 09:19:04,046 [root] DEBUG: Trying to initialize analysis package \"zip\"...\r\n2020-06-23 09:19:04,046 [root] DEBUG: Initialized analysis package \"zip\".\r\n2020-06-23 09:19:04,093 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.browser\"...\r\n2020-06-23 09:19:04,109 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.browser\".\r\n2020-06-23 09:19:04,109 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.curtain\"...\r\n2020-06-23 09:19:04,187 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.curtain\".\r\n2020-06-23 09:19:04,187 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.digisig\"...\r\n2020-06-23 09:19:04,203 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.digisig\".\r\n2020-06-23 09:19:04,203 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.disguise\"...\r\n2020-06-23 09:19:04,218 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.disguise\".\r\n2020-06-23 09:19:04,218 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.human\"...\r\n2020-06-23 09:19:04,234 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.human\".\r\n2020-06-23 09:19:04,234 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.procmon\"...\r\n2020-06-23 09:19:04,234 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.procmon\".\r\n2020-06-23 09:19:04,234 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.screenshots\"...\r\n2020-06-23 09:19:04,312 [modules.auxiliary.screenshots] DEBUG: Importing 'time'\r\n2020-06-23 09:19:04,312 [modules.auxiliary.screenshots] DEBUG: Importing 'StringIO'\r\n2020-06-23 09:19:04,312 [modules.auxiliary.screenshots] DEBUG: Importing 'Thread'\r\n2020-06-23 09:19:04,328 [modules.auxiliary.screenshots] DEBUG: Importing 'Auxiliary'\r\n2020-06-23 09:19:04,328 [modules.auxiliary.screenshots] DEBUG: Importing 'NetlogFile'\r\n2020-06-23 09:19:04,328 [modules.auxiliary.screenshots] DEBUG: Importing 'Screenshot'\r\n2020-06-23 09:19:04,328 [lib.api.screenshot] DEBUG: Importing 'math'\r\n2020-06-23 09:19:04,328 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageChops'\r\n2020-06-23 09:19:05,687 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageGrab'\r\n2020-06-23 09:19:05,734 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageDraw'\r\n2020-06-23 09:19:05,796 [modules.auxiliary.screenshots] DEBUG: Imports OK\r\n2020-06-23 09:19:05,812 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.screenshots\".\r\n2020-06-23 09:19:05,812 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.sysmon\"...\r\n2020-06-23 09:19:05,937 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.sysmon\".\r\n2020-06-23 09:19:05,937 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.usage\"...\r\n2020-06-23 09:19:06,109 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.usage\".\r\n2020-06-23 09:19:06,125 [root] DEBUG: Trying to initialize auxiliary module \"Browser\"...\r\n2020-06-23 09:19:06,125 [root] DEBUG: Initialized auxiliary module \"Browser\".\r\n2020-06-23 09:19:06,125 [root] DEBUG: Trying to start auxiliary module \"Browser\"...\r\n2020-06-23 09:19:06,140 [root] DEBUG: Started auxiliary module Browser\r\n2020-06-23 09:19:06,140 [root] DEBUG: Trying to initialize auxiliary module \"Curtain\"...\r\n2020-06-23 09:19:06,171 [root] DEBUG: Initialized auxiliary module \"Curtain\".\r\n2020-06-23 09:19:06,171 [root] DEBUG: Trying to start auxiliary module \"Curtain\"...\r\n2020-06-23 09:19:06,187 [root] DEBUG: Started auxiliary module Curtain\r\n2020-06-23 09:19:06,187 [root] DEBUG: Trying to initialize auxiliary module \"DigiSig\"...\r\n2020-06-23 09:19:06,187 [root] DEBUG: Initialized auxiliary module \"DigiSig\".\r\n2020-06-23 09:19:06,187 [root] DEBUG: Trying to start auxiliary module \"DigiSig\"...\r\n2020-06-23 09:19:06,203 [modules.auxiliary.digisig] DEBUG: Checking for a digital signature.\r\n2020-06-23 09:19:11,312 [modules.auxiliary.digisig] DEBUG: File format not recognized.\r\n2020-06-23 09:19:11,312 [modules.auxiliary.digisig] INFO: Uploading signature results to aux/DigiSig.json\r\n2020-06-23 09:19:11,328 [root] DEBUG: Started auxiliary module DigiSig\r\n2020-06-23 09:19:11,328 [root] DEBUG: Trying to initialize auxiliary module \"Disguise\"...\r\n2020-06-23 09:19:11,328 [root] DEBUG: Initialized auxiliary module \"Disguise\".\r\n2020-06-23 09:19:11,328 [root] DEBUG: Trying to start auxiliary module \"Disguise\"...\r\n2020-06-23 09:19:11,343 [root] DEBUG: Started auxiliary module Disguise\r\n2020-06-23 09:19:11,343 [root] DEBUG: Trying to initialize auxiliary module \"Human\"...\r\n2020-06-23 09:19:11,343 [root] DEBUG: Initialized auxiliary module \"Human\".\r\n2020-06-23 09:19:11,343 [root] DEBUG: Trying to start auxiliary module \"Human\"...\r\n2020-06-23 09:19:11,343 [root] DEBUG: Started auxiliary module Human\r\n2020-06-23 09:19:11,343 [root] DEBUG: Trying to initialize auxiliary module \"Procmon\"...\r\n2020-06-23 09:19:11,359 [root] DEBUG: Initialized auxiliary module \"Procmon\".\r\n2020-06-23 09:19:11,359 [root] DEBUG: Trying to start auxiliary module \"Procmon\"...\r\n2020-06-23 09:19:11,359 [root] DEBUG: Started auxiliary module Procmon\r\n2020-06-23 09:19:11,359 [root] DEBUG: Trying to initialize auxiliary module \"Screenshots\"...\r\n2020-06-23 09:19:11,359 [root] DEBUG: Initialized auxiliary module \"Screenshots\".\r\n2020-06-23 09:19:11,359 [root] DEBUG: Trying to start auxiliary module \"Screenshots\"...\r\n2020-06-23 09:19:11,359 [root] DEBUG: Started auxiliary module Screenshots\r\n2020-06-23 09:19:11,359 [root] DEBUG: Trying to initialize auxiliary module \"Sysmon\"...\r\n2020-06-23 09:19:11,359 [root] DEBUG: Initialized auxiliary module \"Sysmon\".\r\n2020-06-23 09:19:11,359 [root] DEBUG: Trying to start auxiliary module \"Sysmon\"...\r\n2020-06-23 09:19:11,359 [root] DEBUG: Started auxiliary module Sysmon\r\n2020-06-23 09:19:11,359 [root] DEBUG: Trying to initialize auxiliary module \"Usage\"...\r\n2020-06-23 09:19:11,359 [root] DEBUG: Initialized auxiliary module \"Usage\".\r\n2020-06-23 09:19:11,359 [root] DEBUG: Trying to start auxiliary module \"Usage\"...\r\n2020-06-23 09:19:11,375 [root] DEBUG: Started auxiliary module Usage\r\n2020-06-23 09:19:11,375 [root] INFO: Analyzer: Package modules.packages.zip does not specify a DLL option\r\n2020-06-23 09:19:11,375 [root] INFO: Analyzer: Package modules.packages.zip does not specify a DLL_64 option\r\n2020-06-23 09:19:11,375 [root] INFO: Analyzer: Package modules.packages.zip does not specify a loader option\r\n2020-06-23 09:19:11,375 [root] INFO: Analyzer: Package modules.packages.zip does not specify a loader_64 option\r\n2020-06-23 09:19:11,406 [root] ERROR: Traceback (most recent call last):\r\n  File \"C:\\tmpnwhtwc92\\modules\\packages\\zip.py\", line 64, in extract_zip\r\n    archive.extractall(path=extract_path, pwd=password)\r\n  File \"C:\\Users\\Rebecca\\AppData\\Local\\Programs\\Python\\Python38-32\\lib\\zipfile.py\", line 1647, in extractall\r\n    self._extract_member(zipinfo, path, pwd)\r\n  File \"C:\\Users\\Rebecca\\AppData\\Local\\Programs\\Python\\Python38-32\\lib\\zipfile.py\", line 1700, in _extract_member\r\n    with self.open(member, pwd=pwd) as source, \\\r\n  File \"C:\\Users\\Rebecca\\AppData\\Local\\Programs\\Python\\Python38-32\\lib\\zipfile.py\", line 1571, in open\r\n    return ZipExtFile(zef_file, mode, zinfo, pwd, True)\r\n  File \"C:\\Users\\Rebecca\\AppData\\Local\\Programs\\Python\\Python38-32\\lib\\zipfile.py\", line 819, in __init__\r\n    self._decompressor = _get_decompressor(self._compress_type)\r\n  File \"C:\\Users\\Rebecca\\AppData\\Local\\Programs\\Python\\Python38-32\\lib\\zipfile.py\", line 720, in _get_decompressor\r\n    _check_compression(compress_type)\r\n  File \"C:\\Users\\Rebecca\\AppData\\Local\\Programs\\Python\\Python38-32\\lib\\zipfile.py\", line 700, in _check_compression\r\n    raise NotImplementedError(\"That compression method is not supported\")\r\nNotImplementedError: That compression method is not supported\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"C:\\tmpnwhtwc92\\modules\\packages\\zip.py\", line 69, in extract_zip\r\n    archive.extractall(path=extract_path, pwd=password)\r\n  File \"C:\\Users\\Rebecca\\AppData\\Local\\Programs\\Python\\Python38-32\\lib\\zipfile.py\", line 1647, in extractall\r\n    self._extract_member(zipinfo, path, pwd)\r\n  File \"C:\\Users\\Rebecca\\AppData\\Local\\Programs\\Python\\Python38-32\\lib\\zipfile.py\", line 1700, in _extract_member\r\n    with self.open(member, pwd=pwd) as source, \\\r\n  File \"C:\\Users\\Rebecca\\AppData\\Local\\Programs\\Python\\Python38-32\\lib\\zipfile.py\", line 1571, in open\r\n    return ZipExtFile(zef_file, mode, zinfo, pwd, True)\r\n  File \"C:\\Users\\Rebecca\\AppData\\Local\\Programs\\Python\\Python38-32\\lib\\zipfile.py\", line 819, in __init__\r\n    self._decompressor = _get_decompressor(self._compress_type)\r\n  File \"C:\\Users\\Rebecca\\AppData\\Local\\Programs\\Python\\Python38-32\\lib\\zipfile.py\", line 720, in _get_decompressor\r\n    _check_compression(compress_type)\r\n  File \"C:\\Users\\Rebecca\\AppData\\Local\\Programs\\Python\\Python38-32\\lib\\zipfile.py\", line 700, in _check_compression\r\n    raise NotImplementedError(\"That compression method is not supported\")\r\nNotImplementedError: That compression method is not supported\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"C:/tmpnwhtwc92/analyzer.py\", line 509, in run\r\n    pids = self.package.start(self.target)\r\n  File \"C:\\tmpnwhtwc92\\modules\\packages\\zip.py\", line 119, in start\r\n    self.extract_zip(path, root, password, 0)\r\n  File \"C:\\tmpnwhtwc92\\modules\\packages\\zip.py\", line 71, in extract_zip\r\n    raise CuckooPackageError(\"Unable to extract Zip file: \"\r\nlib.common.exceptions.CuckooPackageError: Unable to extract Zip file: That compression method is not supported\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"C:/tmpnwhtwc92/analyzer.py\", line 1469, in <module>\r\n    success = analyzer.run()\r\n  File \"C:/tmpnwhtwc92/analyzer.py\", line 514, in run\r\n    raise CuckooError(\"The package \\\"{0}\\\" start function raised an \"\r\nlib.common.exceptions.CuckooError: The package \"modules.packages.zip\" start function raised an error: Unable to extract Zip file: That compression method is not supported\r\nTraceback (most recent call last):\r\n  File \"C:\\tmpnwhtwc92\\modules\\packages\\zip.py\", line 64, in extract_zip\r\n    archive.extractall(path=extract_path, pwd=password)\r\n  File \"C:\\Users\\Rebecca\\AppData\\Local\\Programs\\Python\\Python38-32\\lib\\zipfile.py\", line 1647, in extractall\r\n    self._extract_member(zipinfo, path, pwd)\r\n  File \"C:\\Users\\Rebecca\\AppData\\Local\\Programs\\Python\\Python38-32\\lib\\zipfile.py\", line 1700, in _extract_member\r\n    with self.open(member, pwd=pwd) as source, \\\r\n  File \"C:\\Users\\Rebecca\\AppData\\Local\\Programs\\Python\\Python38-32\\lib\\zipfile.py\", line 1571, in open\r\n    return ZipExtFile(zef_file, mode, zinfo, pwd, True)\r\n  File \"C:\\Users\\Rebecca\\AppData\\Local\\Programs\\Python\\Python38-32\\lib\\zipfile.py\", line 819, in __init__\r\n    self._decompressor = _get_decompressor(self._compress_type)\r\n  File \"C:\\Users\\Rebecca\\AppData\\Local\\Programs\\Python\\Python38-32\\lib\\zipfile.py\", line 720, in _get_decompressor\r\n    _check_compression(compress_type)\r\n  File \"C:\\Users\\Rebecca\\AppData\\Local\\Programs\\Python\\Python38-32\\lib\\zipfile.py\", line 700, in _check_compression\r\n    raise NotImplementedError(\"That compression method is not supported\")\r\nNotImplementedError: That compression method is not supported\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"C:\\tmpnwhtwc92\\modules\\packages\\zip.py\", line 69, in extract_zip\r\n    archive.extractall(path=extract_path, pwd=password)\r\n  File \"C:\\Users\\Rebecca\\AppData\\Local\\Programs\\Python\\Python38-32\\lib\\zipfile.py\", line 1647, in extractall\r\n    self._extract_member(zipinfo, path, pwd)\r\n  File \"C:\\Users\\Rebecca\\AppData\\Local\\Programs\\Python\\Python38-32\\lib\\zipfile.py\", line 1700, in _extract_member\r\n    with self.open(member, pwd=pwd) as source, \\\r\n  File \"C:\\Users\\Rebecca\\AppData\\Local\\Programs\\Python\\Python38-32\\lib\\zipfile.py\", line 1571, in open\r\n    return ZipExtFile(zef_file, mode, zinfo, pwd, True)\r\n  File \"C:\\Users\\Rebecca\\AppData\\Local\\Programs\\Python\\Python38-32\\lib\\zipfile.py\", line 819, in __init__\r\n    self._decompressor = _get_decompressor(self._compress_type)\r\n  File \"C:\\Users\\Rebecca\\AppData\\Local\\Programs\\Python\\Python38-32\\lib\\zipfile.py\", line 720, in _get_decompressor\r\n    _check_compression(compress_type)\r\n  File \"C:\\Users\\Rebecca\\AppData\\Local\\Programs\\Python\\Python38-32\\lib\\zipfile.py\", line 700, in _check_compression\r\n    raise NotImplementedError(\"That compression method is not supported\")\r\nNotImplementedError: That compression method is not supported\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"C:/tmpnwhtwc92/analyzer.py\", line 509, in run\r\n    pids = self.package.start(self.target)\r\n  File \"C:\\tmpnwhtwc92\\modules\\packages\\zip.py\", line 119, in start\r\n    self.extract_zip(path, root, password, 0)\r\n  File \"C:\\tmpnwhtwc92\\modules\\packages\\zip.py\", line 71, in extract_zip\r\n    raise CuckooPackageError(\"Unable to extract Zip file: \"\r\nlib.common.exceptions.CuckooPackageError: Unable to extract Zip file: That compression method is not supported\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"C:/tmpnwhtwc92/analyzer.py\", line 1469, in <module>\r\n    success = analyzer.run()\r\n  File \"C:/tmpnwhtwc92/analyzer.py\", line 514, in run\r\n    raise CuckooError(\"The package \\\"{0}\\\" start function raised an \"\r\nlib.common.exceptions.CuckooError: The package \"modules.packages.zip\" start function raised an error: Unable to extract Zip file: That compression method is not supported\r\n2020-06-23 09:19:11,406 [root] WARNING: Folder at path \"C:\\tGHpaeMoH\\debugger\" does not exist, skip.\r\n2020-06-23 09:19:11,406 [root] INFO: Analysis completed.\r\n```\r\n\r\nFailing analysis result (AES-256): https://capesandbox.com/analysis/12936/\r\nSuccesful analysis result (ZipCrypto): https://capesandbox.com/analysis/12937/\r\n\nComment: that is your vm problem, zipfile doesn't support that by default, so that should be handled before, or installed extended version of zipfile and rewrite zip package handling, but that would be better on sflock than send it to vm\nComment: sflock update to handle this\nComment: For my own reference: \r\n`pip3 install -U git+https://github.com/doomedraven/sflock`",
+  "Title: Update README.md\nBody: Add git merge update method instructions",
+  "Title: Fix unquarantine function\nBody: ",
+  "Title: Update filesizes in cuckoo.conf\nBody: More representative this way, 200MB should also still be sufficient.\nComment: did you test `analysis_size_limit = 200000000`? from y experience it can take a lot of time to process huge bsons, like 1-2h, but we have timeout anyway :)\nComment: Yes, should be fine - it was set to 1GB before. Thanks as always! :smile: ",
+  "Title: Using bytes instead of str for syslog data\nBody: With Python3, we need to use bytes instead of str for sock data. Here is the error reported by the module:\r\n\r\n2020-06-10 18:52:31,337 [lib.cuckoo.core.plugins] WARNING: The reporting module \"Syslog\" returned the following error: Failed to send data to syslog server\nComment: Thank you!",
+  "Title: rooter.py error\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nrooter.py is spawned from supervisor and listen to /tmp/cuckoo-rooter\r\n\r\n# Current Behavior\r\n\r\nrooter.py is running but can't be used. From cuckoo.log:\r\n\r\n`2020-06-10 11:16:28,699 [lib.cuckoo.core.rooter] CRITICAL: Unable to passthrough root command as we're unable to connect to the rooter unix socket: [Errno 111] Connection refused.\r\n`\r\n\r\n# Failure Information (for bugs)\r\n\r\nWhen rooter.py is launched:\r\n\r\n```\r\nTraceback (most recent call last):\r\n  File \"rooter.py\", line 384, in <module>\r\n    raise e\r\n  File \"rooter.py\", line 380, in <module>\r\n    command, addr = server.recvfrom(4096)\r\nOSError: [Errno 9] Bad file descriptor\r\n```\r\n\nComment: hey, how do you start rooter? first time see this\nComment: I forgot to add:\r\n```\r\n# ll /tmp/cuckoo-rooter\r\nsrw--w---- 1 root cape 0 Jun 10 11:19 /tmp/cuckoo-rooter=\r\n```\r\n\r\nrooter.py is started from supervisor:\r\n\r\n```\r\n[program:rooter]\r\ncommand=python3 rooter.py -g cape\r\ndirectory=/opt/CAPEv2/utils\r\nuser=root\r\nstartsecs=10\r\npriority = 100\r\nautostart=true\r\nautorestart=true\r\nstopasgroup=true\r\nstderr_logfile=/var/log/supervisor/router.err.log\r\nstdout_logfile=/var/log/supervisor/router.out.log\r\n```\nComment: can you stop that and start manually with adding `-v` and restart cape.service?\nComment: Seems to be ok when started manually:\r\n```\r\n# python3 rooter.py -v -g cape\r\n2020-06-10 11:41:19,032 [cuckoo-rooter] INFO: Processing command: nic_available ens160\r\n2020-06-10 11:41:19,137 [cuckoo-rooter] INFO: Processing command: forward_enable virbr0 ens160 192.168.122.107\r\n2020-06-10 11:41:19,137 [cuckoo-rooter] DEBUG: Running command: /sbin/iptables -D FORWARD -i virbr0 -j REJECT -m comment --comment CAPE-rooter\r\n2020-06-10 11:41:19,509 [cuckoo-rooter] DEBUG: Running command: /sbin/iptables -D FORWARD -o virbr0 -j REJECT -m comment --comment CAPE-rooter\r\n2020-06-10 11:41:19,511 [cuckoo-rooter] DEBUG: Running command: /sbin/iptables -I FORWARD -i virbr0 -o ens160 --source 192.168.122.107 -j ACCEPT -m comment --comment CAPE-rooter\r\n2020-06-10 11:41:19,539 [cuckoo-rooter] DEBUG: Running command: /sbin/iptables -I FORWARD -i ens160 -o virbr0 --destination 192.168.122.107 -j ACCEPT -m comment --comment CAPE-rooter\r\n2020-06-10 11:41:19,543 [cuckoo-rooter] INFO: Processing command: srcroute_enable main 192.168.122.107\r\n2020-06-10 11:41:19,543 [cuckoo-rooter] DEBUG: Running command: /sbin/ip rule add from 192.168.122.107 table main\r\n2020-06-10 11:41:19,559 [cuckoo-rooter] DEBUG: Running command: /sbin/ip route flush cache\r\n2020-06-10 11:42:40,711 [cuckoo-rooter] INFO: Processing command: forward_disable virbr0 ens160 192.168.122.107\r\n2020-06-10 11:42:40,712 [cuckoo-rooter] DEBUG: Running command: /sbin/iptables -D FORWARD -i virbr0 -o ens160 --source 192.168.122.107 -j ACCEPT -m comment --comment CAPE-rooter\r\n2020-06-10 11:42:40,751 [cuckoo-rooter] DEBUG: Running command: /sbin/iptables -D FORWARD -i ens160 -o virbr0 --destination 192.168.122.107 -j ACCEPT -m comment --comment CAPE-rooter\r\n2020-06-10 11:42:40,754 [cuckoo-rooter] INFO: Processing command: srcroute_disable main 192.168.122.107\r\n2020-06-10 11:42:40,754 [cuckoo-rooter] DEBUG: Running command: /sbin/ip rule del from 192.168.122.107 table main\r\n2020-06-10 11:42:40,811 [cuckoo-rooter] DEBUG: Running command: /sbin/ip route flush cache\r\n```\nComment: then idk what is wrong i never saw this error, try again start from systemd and maybe error is gone?\nComment: Restarted via supervisor and works now!? Strange... Let's close this case, for now, I'll keep an eye on this! Tx!\nComment: let us know if that happens again, i have stopped to use supervisor due to many weird bugs like that one, so just in case bear that in mind",
+  "Title: URL Submissions failed_processing\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ x ] I am running the latest version\r\n- [ x ] I checked the documentation and found no answer\r\n- [ x ] I checked to make sure that this issue has not already been filed\r\n- [ x ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\nThanks again for your help with the last issue! \r\nI was trying to use URL submission and ran into the following issue. Is it currently functional? I noticed it isn't displayed on the public CAPEv2 server so I thought it may be disabled by default for a reason. \r\n\r\n# Expected Behavior\r\n\r\nEnable URL submissions via api.conf\r\nSubmit URL using gui frontend\r\n![debug6](https://user-images.githubusercontent.com/52143989/83934696-6f185080-a778-11ea-95f9-f94f164b4833.PNG)\r\nanalysis + report generated for submitted URL\r\n\r\n# Current Behavior\r\n\r\nstuck in failed_processing status\r\ncuckoo.log empty\r\nfollowing error from process.py:\r\n![debug6_1](https://user-images.githubusercontent.com/52143989/83934738-ba326380-a778-11ea-91e4-5e07301b51a5.PNG)\r\n\r\n\r\n# Failure Information (for bugs)\r\n\r\nhappens for any submitted URL\r\n\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | 5902aef8a7996ac2d1c57514dd237acd2cff126c\r\n| OS version       | Ubuntu 18.0.4 LTS\r\n\r\n## Failure Logs\r\n[analysis.log](https://github.com/kevoreilly/CAPEv2/files/4739291/analysis.log)\r\n\nComment: i can't reproduce this, i will need process log from your side you can generate separated process log with `python3 utils/process.py -r <ID_here>` then in logs/ you will see process.ID.log\nComment: yes we don't display url analysis due to modern browser problem to track behavior\nComment: After entering that command I get the following output and no new log is produce in the .log file of the designated processid:\r\n![process1](https://user-images.githubusercontent.com/52143989/83957058-d9d59480-a829-11ea-8a01-cba9d60b8e9a.PNG)\r\n![process2](https://user-images.githubusercontent.com/52143989/83957061-dc37ee80-a829-11ea-8bc5-37ceab081143.PNG)\r\n![process3](https://user-images.githubusercontent.com/52143989/83957062-de01b200-a829-11ea-8f05-dde8cf585ac7.PNG)\r\n\r\n\r\n\nComment: Hm those errors was fixed few days ago too, weird\n\nEl dom., 7 jun. 2020 2:15, Matthew Malon <notifications@github.com>\nescribi\u00f3:\n\n> After entering that command I get the following output and no new log is\n> produce in the .log file of the designated processid:\n> [image: process1]\n> <https://user-images.githubusercontent.com/52143989/83957058-d9d59480-a829-11ea-8a01-cba9d60b8e9a.PNG>\n> [image: process2]\n> <https://user-images.githubusercontent.com/52143989/83957061-dc37ee80-a829-11ea-8bc5-37ceab081143.PNG>\n> [image: process3]\n> <https://user-images.githubusercontent.com/52143989/83957062-de01b200-a829-11ea-8f05-dde8cf585ac7.PNG>\n>\n> \u2014\n> You are receiving this because you commented.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/210#issuecomment-640135477>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH375ONHR43IXNDCHN4TRVLL3BANCNFSM4NVQLJ5Q>\n> .\n>\n\nComment: i just double checked and all this that you see is fixed here https://github.com/kevoreilly/CAPEv2/commit/d2995fc19199c8b062bbc627ef80c38f39e96246 not sure how that possible\nComment: I just updated and its working. I'll be sure to double check before posting next time. Thanks again for all your work, this is a really great project!\nComment: glad you like it, let us know if you find any other problem or have any suggestion/ideas ",
+  "Title: Some analyses report ERROR :-( The specified analysis does not exist, others report results properly\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ x ] I am running the latest version\r\n- [ x ] I checked the documentation and found no answer\r\n- [ x ] I checked to make sure that this issue has not already been filed\r\n- [ x ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nSubmit zipped exe file for analysis using default settings using web gui: \r\nAnalysis Package: Detecet Automatically\r\nreport generation complete, redirect to analysis results page\r\n\r\n\r\n# Current Behavior\r\n\r\nguest vm agent.py runs normally and hangs at:\r\nunable to open termination event for pid 280\r\n\r\nforwarded to results page:\r\nError :-( The specified analysis does not exist\r\n\r\n![debug13-1](https://user-images.githubusercontent.com/52143989/83828402-30b26100-a6a6-11ea-82e0-d1ca2801357b.PNG)\r\n\r\n\r\ncuckoo.log file exists in storage directory but is empty\r\ncuckoo -d still works properly in terminal\r\nnotable errors:\r\n![debug13](https://user-images.githubusercontent.com/52143989/83828282-e4672100-a6a5-11ea-96e7-bb493f5fbfde.PNG)\r\n![debug13-0](https://user-images.githubusercontent.com/52143989/83828204-b84ba000-a6a5-11ea-954e-91824548d18f.PNG)\r\n\r\n\r\n## Context\r\n\r\nusing postgresql\r\nguestvm: Windows7SP1x64\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | 9655201588c8201d6be49901d6be4990a1d1ef9a5c13074e4\r\n| OS version       | Ubuntu 18.04.4 LTS\r\n\r\n## Failure Logs\r\nanalysis.log\r\n\r\n2020-06-05 00:34:03,479 [root] INFO: Date set to: 20200605T01:03:09, timeout set to: 200\r\n2020-06-05 01:03:09,171 [root] DEBUG: Starting analyzer from: C:\\tmph562v0az\r\n2020-06-05 01:03:09,171 [root] DEBUG: Storing results at: C:\\tULGugeIe\r\n2020-06-05 01:03:09,187 [root] DEBUG: Pipe server name: \\\\.\\PIPE\\dnGqvE\r\n2020-06-05 01:03:09,187 [root] DEBUG: Python path: C:\\Users\\ie_user\\AppData\\Local\\Programs\\Python\\Python38-32\r\n2020-06-05 01:03:09,187 [root] DEBUG: No analysis package specified, trying to detect it automagically.\r\n2020-06-05 01:03:10,140 [root] INFO: Automatically selected analysis package \"exe\"\r\n2020-06-05 01:03:10,140 [root] DEBUG: Trying to import analysis package \"exe\"...\r\n2020-06-05 01:03:10,171 [root] DEBUG: Imported analysis package \"exe\".\r\n2020-06-05 01:03:10,171 [root] DEBUG: Trying to initialize analysis package \"exe\"...\r\n2020-06-05 01:03:10,171 [root] DEBUG: Initialized analysis package \"exe\".\r\n2020-06-05 01:03:10,187 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.browser\"...\r\n2020-06-05 01:03:10,187 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.browser\".\r\n2020-06-05 01:03:10,187 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.curtain\"...\r\n2020-06-05 01:03:10,359 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.curtain\".\r\n2020-06-05 01:03:10,359 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.digisig\"...\r\n2020-06-05 01:03:10,375 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.digisig\".\r\n2020-06-05 01:03:10,390 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.disguise\"...\r\n2020-06-05 01:03:10,390 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.disguise\".\r\n2020-06-05 01:03:10,390 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.human\"...\r\n2020-06-05 01:03:10,406 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.human\".\r\n2020-06-05 01:03:10,406 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.procmon\"...\r\n2020-06-05 01:03:10,421 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.procmon\".\r\n2020-06-05 01:03:10,421 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.screenshots\"...\r\n2020-06-05 01:03:10,437 [modules.auxiliary.screenshots] DEBUG: Importing 'time'\r\n2020-06-05 01:03:10,437 [modules.auxiliary.screenshots] DEBUG: Importing 'StringIO'\r\n2020-06-05 01:03:10,437 [modules.auxiliary.screenshots] DEBUG: Importing 'Thread'\r\n2020-06-05 01:03:10,437 [modules.auxiliary.screenshots] DEBUG: Importing 'Auxiliary'\r\n2020-06-05 01:03:10,437 [modules.auxiliary.screenshots] DEBUG: Importing 'NetlogFile'\r\n2020-06-05 01:03:10,437 [modules.auxiliary.screenshots] DEBUG: Importing 'Screenshot'\r\n2020-06-05 01:03:10,453 [lib.api.screenshot] DEBUG: Importing 'math'\r\n2020-06-05 01:03:10,468 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageChops'\r\n2020-06-05 01:03:10,531 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageGrab'\r\n2020-06-05 01:03:10,562 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageDraw'\r\n2020-06-05 01:03:10,562 [modules.auxiliary.screenshots] DEBUG: Imports OK\r\n2020-06-05 01:03:10,578 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.screenshots\".\r\n2020-06-05 01:03:10,578 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.sysmon\"...\r\n2020-06-05 01:03:10,609 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.sysmon\".\r\n2020-06-05 01:03:10,625 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.usage\"...\r\n2020-06-05 01:03:10,625 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.usage\".\r\n2020-06-05 01:03:10,656 [root] DEBUG: Trying to initialize auxiliary module \"Browser\"...\r\n2020-06-05 01:03:10,656 [root] DEBUG: Initialized auxiliary module \"Browser\".\r\n2020-06-05 01:03:10,671 [root] DEBUG: Trying to start auxiliary module \"Browser\"...\r\n2020-06-05 01:03:10,671 [root] DEBUG: Started auxiliary module Browser\r\n2020-06-05 01:03:10,687 [root] DEBUG: Trying to initialize auxiliary module \"Curtain\"...\r\n2020-06-05 01:03:10,703 [root] DEBUG: Initialized auxiliary module \"Curtain\".\r\n2020-06-05 01:03:10,703 [root] DEBUG: Trying to start auxiliary module \"Curtain\"...\r\n2020-06-05 01:03:10,718 [root] DEBUG: Started auxiliary module Curtain\r\n2020-06-05 01:03:10,750 [root] DEBUG: Trying to initialize auxiliary module \"DigiSig\"...\r\n2020-06-05 01:03:10,765 [root] DEBUG: Initialized auxiliary module \"DigiSig\".\r\n2020-06-05 01:03:10,781 [root] DEBUG: Trying to start auxiliary module \"DigiSig\"...\r\n2020-06-05 01:03:10,781 [modules.auxiliary.digisig] DEBUG: Checking for a digital signature.\r\n2020-06-05 01:03:28,671 [modules.auxiliary.digisig] DEBUG: File has a valid signature.\r\n2020-06-05 01:03:28,703 [modules.auxiliary.digisig] INFO: Uploading signature results to aux/DigiSig.json\r\n2020-06-05 01:03:28,718 [root] DEBUG: Started auxiliary module DigiSig\r\n2020-06-05 01:03:28,734 [root] DEBUG: Trying to initialize auxiliary module \"Disguise\"...\r\n2020-06-05 01:03:28,734 [root] DEBUG: Initialized auxiliary module \"Disguise\".\r\n2020-06-05 01:03:28,765 [root] DEBUG: Trying to start auxiliary module \"Disguise\"...\r\n2020-06-05 01:03:28,765 [root] DEBUG: Started auxiliary module Disguise\r\n2020-06-05 01:03:28,765 [root] DEBUG: Trying to initialize auxiliary module \"Human\"...\r\n2020-06-05 01:03:28,765 [root] DEBUG: Initialized auxiliary module \"Human\".\r\n2020-06-05 01:03:28,781 [root] DEBUG: Trying to start auxiliary module \"Human\"...\r\n2020-06-05 01:03:28,796 [root] DEBUG: Started auxiliary module Human\r\n2020-06-05 01:03:28,796 [root] DEBUG: Trying to initialize auxiliary module \"Procmon\"...\r\n2020-06-05 01:03:28,796 [root] DEBUG: Initialized auxiliary module \"Procmon\".\r\n2020-06-05 01:03:28,796 [root] DEBUG: Trying to start auxiliary module \"Procmon\"...\r\n2020-06-05 01:03:28,843 [root] DEBUG: Started auxiliary module Procmon\r\n2020-06-05 01:03:28,843 [root] DEBUG: Trying to initialize auxiliary module \"Screenshots\"...\r\n2020-06-05 01:03:28,875 [root] DEBUG: Initialized auxiliary module \"Screenshots\".\r\n2020-06-05 01:03:28,890 [root] DEBUG: Trying to start auxiliary module \"Screenshots\"...\r\n2020-06-05 01:03:28,906 [root] DEBUG: Started auxiliary module Screenshots\r\n2020-06-05 01:03:28,906 [root] DEBUG: Trying to initialize auxiliary module \"Sysmon\"...\r\n2020-06-05 01:03:28,906 [root] DEBUG: Initialized auxiliary module \"Sysmon\".\r\n2020-06-05 01:03:28,921 [root] DEBUG: Trying to start auxiliary module \"Sysmon\"...\r\n2020-06-05 01:03:28,937 [root] DEBUG: Started auxiliary module Sysmon\r\n2020-06-05 01:03:28,937 [root] DEBUG: Trying to initialize auxiliary module \"Usage\"...\r\n2020-06-05 01:03:28,937 [root] DEBUG: Initialized auxiliary module \"Usage\".\r\n2020-06-05 01:03:28,953 [root] DEBUG: Trying to start auxiliary module \"Usage\"...\r\n2020-06-05 01:03:28,953 [root] DEBUG: Started auxiliary module Usage\r\n2020-06-05 01:03:28,968 [root] INFO: Analyzer: Package modules.packages.exe does not specify a DLL option\r\n2020-06-05 01:03:28,968 [root] INFO: Analyzer: Package modules.packages.exe does not specify a DLL_64 option\r\n2020-06-05 01:03:28,984 [root] INFO: Analyzer: Package modules.packages.exe does not specify a loader option\r\n2020-06-05 01:03:28,984 [root] INFO: Analyzer: Package modules.packages.exe does not specify a loader_64 option\r\n2020-06-05 01:03:29,437 [lib.api.process] INFO: Successfully executed process from path \"C:\\Users\\ie_user\\AppData\\Local\\Temp\\mpas-fe.exe\" with arguments \"\" with pid 280\r\n2020-06-05 01:03:29,484 [lib.api.process] INFO: Monitor config for process 280: C:\\tmph562v0az\\dll\\280.ini\r\n2020-06-05 01:03:29,562 [lib.api.process] INFO: 32-bit DLL to inject is C:\\tmph562v0az\\dll\\qCMtLUqp.dll, loader C:\\tmph562v0az\\bin\\BLTRWSm.exe\r\n2020-06-05 01:03:29,781 [root] DEBUG: ReadConfig: Successfully loaded pipe name \\\\.\\PIPE\\dnGqvE.\r\n2020-06-05 01:03:29,796 [root] DEBUG: Loader: Injecting process 280 (thread 1312) with C:\\tmph562v0az\\dll\\qCMtLUqp.dll.\r\n2020-06-05 01:03:29,812 [root] DEBUG: Process image base: 0x00850000\r\n2020-06-05 01:03:29,828 [root] DEBUG: InjectDllViaIAT: IAT patching with dll name C:\\tmph562v0az\\dll\\qCMtLUqp.dll.\r\n2020-06-05 01:03:29,843 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\r\n2020-06-05 01:03:29,843 [root] DEBUG: Successfully injected DLL C:\\tmph562v0az\\dll\\qCMtLUqp.dll.\r\n2020-06-05 01:03:29,875 [lib.api.process] INFO: Injected into suspended 32-bit process with pid 280\r\n2020-06-05 01:03:31,890 [lib.api.process] INFO: Successfully resumed process with pid 280\r\n2020-06-05 01:03:31,937 [root] DEBUG: Python path set to 'C:\\Users\\ie_user\\AppData\\Local\\Programs\\Python\\Python38-32'.\r\n2020-06-05 01:03:31,984 [root] DEBUG: Dropped file limit defaulting to 100.\r\n2020-06-05 01:03:32,000 [root] DEBUG: RestoreHeaders: Restored original import table.\r\n2020-06-05 01:03:32,031 [root] DEBUG: CAPE initialised: 32-bit monitor loaded in process 280 at 0x73bc0000, image base 0x850000, stack from 0x126000-0x130000\r\n2020-06-05 01:03:32,046 [root] DEBUG: Commandline: C:\\Users\\ie_user\\AppData\\Local\\Temp\\\"C:\\Users\\ie_user\\AppData\\Local\\Temp\\mpas-fe.exe\".\r\n2020-06-05 01:03:32,140 [root] INFO: loaded: b'280'\r\n2020-06-05 01:03:32,156 [root] INFO: Disabling sleep skipping.\r\n2020-06-05 01:03:32,156 [root] INFO: Loaded monitor into process with pid 280\r\n2020-06-05 01:03:32,156 [root] INFO: Disabling sleep skipping.\r\n2020-06-05 01:03:32,171 [root] INFO: Disabling sleep skipping.\r\n2020-06-05 01:03:32,171 [root] INFO: Disabling sleep skipping.\r\n2020-06-05 01:03:32,218 [root] DEBUG: DLL loaded at 0x73100000: C:\\Windows\\system32\\version (0x9000 bytes).\r\n2020-06-05 01:03:32,234 [root] DEBUG: DLL unloaded from 0x00850000.\r\n2020-06-05 01:03:32,265 [root] DEBUG: DLL unloaded from 0x755C0000.\r\n2020-06-05 01:03:32,281 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 280, handle 0xc4.\r\n2020-06-05 01:03:32,296 [root] DEBUG: OpenProcessHandler: Image base for process 280 (handle 0xc4): 0x00850000.\r\n2020-06-05 01:03:32,343 [root] DEBUG: DLL loaded at 0x746D0000: C:\\Windows\\system32\\cabinet (0x15000 bytes).\r\n2020-06-05 01:03:32,406 [root] INFO: ('delete_file', 'C:\\\\Users\\\\ie_user\\\\AppData\\\\Local\\\\Temp\\\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\\\mpengine.dll')\r\n2020-06-05 01:03:32,421 [root] INFO: ('dump_file', 'C:\\\\Users\\\\ie_user\\\\AppData\\\\Local\\\\Temp\\\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\\\mpengine.dll', '', False, 'files')\r\n2020-06-05 01:03:32,421 [root] INFO: Error dumping file from path \"C:\\Users\\ie_user\\AppData\\Local\\Temp\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\mpengine.dll\": [Errno 13] Permission denied: 'C:\\\\Users\\\\ie_user\\\\AppData\\\\Local\\\\Temp\\\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\\\mpengine.dll'\r\n2020-06-05 01:03:35,703 [root] INFO: ('dump_file', 'C:\\\\Users\\\\ie_user\\\\AppData\\\\Local\\\\Temp\\\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\\\mpengine.dll', '', False, 'files')\r\n2020-06-05 01:03:39,687 [root] INFO: ('delete_file', 'C:\\\\Users\\\\ie_user\\\\AppData\\\\Local\\\\Temp\\\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\\\MpSigStub.exe')\r\n2020-06-05 01:03:39,703 [root] INFO: ('dump_file', 'C:\\\\Users\\\\ie_user\\\\AppData\\\\Local\\\\Temp\\\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\\\MpSigStub.exe', '', False, 'files')\r\n2020-06-05 01:03:39,718 [root] INFO: Error dumping file from path \"C:\\Users\\ie_user\\AppData\\Local\\Temp\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\MpSigStub.exe\": [Errno 13] Permission denied: 'C:\\\\Users\\\\ie_user\\\\AppData\\\\Local\\\\Temp\\\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\\\MpSigStub.exe'\r\n2020-06-05 01:03:40,031 [root] INFO: ('dump_file', 'C:\\\\Users\\\\ie_user\\\\AppData\\\\Local\\\\Temp\\\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\\\MpSigStub.exe', '', False, 'files')\r\n2020-06-05 01:03:40,437 [root] INFO: ('delete_file', 'C:\\\\Users\\\\ie_user\\\\AppData\\\\Local\\\\Temp\\\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\\\mpasbase.vdm')\r\n2020-06-05 01:03:40,468 [root] INFO: ('dump_file', 'C:\\\\Users\\\\ie_user\\\\AppData\\\\Local\\\\Temp\\\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\\\mpasbase.vdm', '', False, 'files')\r\n2020-06-05 01:03:40,484 [root] INFO: Error dumping file from path \"C:\\Users\\ie_user\\AppData\\Local\\Temp\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\mpasbase.vdm\": [Errno 13] Permission denied: 'C:\\\\Users\\\\ie_user\\\\AppData\\\\Local\\\\Temp\\\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\\\mpasbase.vdm'\r\n2020-06-05 01:03:47,453 [root] INFO: ('dump_file', 'C:\\\\Users\\\\ie_user\\\\AppData\\\\Local\\\\Temp\\\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\\\mpasbase.vdm', '', False, 'files')\r\n2020-06-05 01:03:58,453 [root] INFO: ('delete_file', 'C:\\\\Users\\\\ie_user\\\\AppData\\\\Local\\\\Temp\\\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\\\mpasdlta.vdm')\r\n2020-06-05 01:03:58,468 [root] INFO: ('dump_file', 'C:\\\\Users\\\\ie_user\\\\AppData\\\\Local\\\\Temp\\\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\\\mpasdlta.vdm', '', False, 'files')\r\n2020-06-05 01:03:58,468 [root] INFO: Error dumping file from path \"C:\\Users\\ie_user\\AppData\\Local\\Temp\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\mpasdlta.vdm\": [Errno 13] Permission denied: 'C:\\\\Users\\\\ie_user\\\\AppData\\\\Local\\\\Temp\\\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\\\mpasdlta.vdm'\r\n2020-06-05 01:03:59,921 [root] INFO: ('dump_file', 'C:\\\\Users\\\\ie_user\\\\AppData\\\\Local\\\\Temp\\\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\\\mpasdlta.vdm', '', False, 'files')\r\n2020-06-05 01:04:01,687 [root] DEBUG: DLL unloaded from 0x746D0000.\r\n2020-06-05 01:04:01,718 [root] DEBUG: DLL unloaded from 0x00850000.\r\n2020-06-05 01:04:01,734 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x118 amd local view 0x06560000 to global list.\r\n2020-06-05 01:04:01,765 [root] INFO: Announced 32-bit process name: MpSigStub.exe pid: 940\r\n2020-06-05 01:04:01,781 [lib.api.process] INFO: Monitor config for process 940: C:\\tmph562v0az\\dll\\940.ini\r\n2020-06-05 01:04:01,796 [lib.api.process] INFO: 32-bit DLL to inject is C:\\tmph562v0az\\dll\\qCMtLUqp.dll, loader C:\\tmph562v0az\\bin\\BLTRWSm.exe\r\n2020-06-05 01:04:01,843 [root] DEBUG: ReadConfig: Successfully loaded pipe name \\\\.\\PIPE\\dnGqvE.\r\n2020-06-05 01:04:01,859 [root] DEBUG: Loader: Injecting process 940 (thread 2808) with C:\\tmph562v0az\\dll\\qCMtLUqp.dll.\r\n2020-06-05 01:04:01,875 [root] DEBUG: Process image base: 0x00D60000\r\n2020-06-05 01:04:01,890 [root] DEBUG: InjectDllViaIAT: IAT patching with dll name C:\\tmph562v0az\\dll\\qCMtLUqp.dll.\r\n2020-06-05 01:04:01,890 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.\r\n2020-06-05 01:04:01,890 [root] DEBUG: Successfully injected DLL C:\\tmph562v0az\\dll\\qCMtLUqp.dll.\r\n2020-06-05 01:04:01,921 [lib.api.process] INFO: Injected into suspended 32-bit process with pid 940\r\n2020-06-05 01:04:01,937 [root] DEBUG: DLL loaded at 0x73250000: C:\\Windows\\system32\\apphelp (0x4c000 bytes).\r\n2020-06-05 01:04:02,015 [root] DEBUG: CreateProcessHandler: Injection info set for new process 940, ImageBase: 0x00D60000\r\n2020-06-05 01:04:02,015 [root] INFO: Announced 32-bit process name: MpSigStub.exe pid: 940\r\n2020-06-05 01:04:02,015 [lib.api.process] INFO: Monitor config for process 940: C:\\tmph562v0az\\dll\\940.ini\r\n2020-06-05 01:04:02,046 [lib.api.process] INFO: 32-bit DLL to inject is C:\\tmph562v0az\\dll\\qCMtLUqp.dll, loader C:\\tmph562v0az\\bin\\BLTRWSm.exe\r\n2020-06-05 01:04:02,062 [root] DEBUG: ReadConfig: Successfully loaded pipe name \\\\.\\PIPE\\dnGqvE.\r\n2020-06-05 01:04:02,078 [root] DEBUG: Loader: Injecting process 940 (thread 2808) with C:\\tmph562v0az\\dll\\qCMtLUqp.dll.\r\n2020-06-05 01:04:02,093 [root] DEBUG: Process image base: 0x00D60000\r\n2020-06-05 01:04:02,093 [root] DEBUG: InjectDllViaIAT: IAT patching with dll name C:\\tmph562v0az\\dll\\qCMtLUqp.dll.\r\n2020-06-05 01:04:02,109 [root] DEBUG: InjectDllViaIAT: This image has already been patched.\r\n2020-06-05 01:04:02,125 [root] DEBUG: Successfully injected DLL C:\\tmph562v0az\\dll\\qCMtLUqp.dll.\r\n2020-06-05 01:04:02,156 [lib.api.process] INFO: Injected into suspended 32-bit process with pid 940\r\n2020-06-05 01:04:02,187 [root] DEBUG: Python path set to 'C:\\Users\\ie_user\\AppData\\Local\\Programs\\Python\\Python38-32'.\r\n2020-06-05 01:04:02,203 [root] DEBUG: Dropped file limit defaulting to 100.\r\n2020-06-05 01:04:02,218 [root] INFO: Disabling sleep skipping.\r\n2020-06-05 01:04:02,218 [root] DEBUG: RestoreHeaders: Restored original import table.\r\n2020-06-05 01:04:02,249 [root] DEBUG: CAPE initialised: 32-bit monitor loaded in process 940 at 0x73bc0000, image base 0xd60000, stack from 0x296000-0x2a0000\r\n2020-06-05 01:04:02,249 [root] DEBUG: Commandline: C:\\Users\\ie_user\\AppData\\Local\\Temp\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\MpSigStub.exe \\stub 1.1.16900.5 \\payload 1.313.2253.0 \\program C:\\Users\\ie_user\\AppData\\Local\\Temp\\mpas-fe.exe.\r\n2020-06-05 01:04:02,296 [root] INFO: loaded: b'940'\r\n2020-06-05 01:04:02,328 [root] INFO: Loaded monitor into process with pid 940\r\n2020-06-05 01:04:02,343 [root] DEBUG: DLL loaded at 0x73100000: C:\\Windows\\system32\\version (0x9000 bytes).\r\n2020-06-05 01:04:02,359 [root] DEBUG: DLL unloaded from 0x00D60000.\r\n2020-06-05 01:04:02,375 [root] DEBUG: DLL unloaded from 0x755C0000.\r\n2020-06-05 01:04:02,390 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 940, handle 0xd4.\r\n2020-06-05 01:04:02,406 [root] DEBUG: OpenProcessHandler: Injection info created for Pid 280, handle 0xd8.\r\n2020-06-05 01:04:02,421 [root] DEBUG: OpenProcessHandler: Image base for process 280 (handle 0xd4): 0x00850000.\r\n2020-06-05 01:04:02,468 [root] DEBUG: DLL unloaded from 0x75800000.\r\n2020-06-05 01:04:02,484 [root] DEBUG: DLL unloaded from 0x00D60000.\r\n2020-06-05 01:04:02,578 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0xdc amd local view 0x73CF0000 to global list.\r\n2020-06-05 01:04:02,625 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x73B50000 for section view with handle 0xdc.\r\n2020-06-05 01:04:02,765 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x73CF0000 for section view with handle 0xdc.\r\n2020-06-05 01:04:02,812 [root] DEBUG: DLL loaded at 0x73CF0000: C:\\Program Files (x86)\\Windows Defender\\mpclient (0x63000 bytes).\r\n2020-06-05 01:04:02,812 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0xd4 amd local view 0x76AC0000 to global list.\r\n2020-06-05 01:04:02,843 [root] DEBUG: DLL loaded at 0x76AC0000: C:\\Windows\\syswow64\\OLEAUT32 (0x91000 bytes).\r\n2020-06-05 01:04:02,875 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x752F0000 for section view with handle 0xd4.\r\n2020-06-05 01:04:02,906 [root] DEBUG: DLL loaded at 0x752F0000: C:\\Windows\\syswow64\\USERENV (0x19000 bytes).\r\n2020-06-05 01:04:02,906 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x754A0000 for section view with handle 0xd4.\r\n2020-06-05 01:04:02,937 [root] DEBUG: DLL loaded at 0x754A0000: C:\\Windows\\syswow64\\profapi (0xb000 bytes).\r\n2020-06-05 01:04:02,937 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x74F90000 for section view with handle 0xd4.\r\n2020-06-05 01:04:02,968 [root] DEBUG: DLL loaded at 0x74F90000: C:\\Windows\\syswow64\\WINTRUST (0x2f000 bytes).\r\n2020-06-05 01:04:02,968 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x75BB0000 for section view with handle 0xd4.\r\n2020-06-05 01:04:03,000 [root] DEBUG: DLL loaded at 0x75BB0000: C:\\Windows\\syswow64\\CRYPT32 (0x122000 bytes).\r\n2020-06-05 01:04:03,015 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x74F40000 for section view with handle 0xd4.\r\n2020-06-05 01:04:03,046 [root] DEBUG: DLL loaded at 0x74F40000: C:\\Windows\\syswow64\\MSASN1 (0xc000 bytes).\r\n2020-06-05 01:04:03,062 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x75D10000 for section view with handle 0xd4.\r\n2020-06-05 01:04:03,078 [root] DEBUG: DLL loaded at 0x75D10000: C:\\Windows\\syswow64\\SHELL32 (0xc4c000 bytes).\r\n2020-06-05 01:04:03,109 [root] DEBUG: DLL unloaded from 0x755C0000.\r\n2020-06-05 01:04:03,156 [root] DEBUG: DLL unloaded from 0x00D60000.\r\n2020-06-05 01:04:03,203 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x118 amd local view 0x00110000 to global list.\r\n2020-06-05 01:04:03,249 [root] DEBUG: DLL unloaded from 0x75310000.\r\n2020-06-05 01:04:03,281 [root] DEBUG: ResumeThreadHandler: Dumping section view for process 940.\r\n2020-06-05 01:04:03,296 [root] DEBUG: DumpSectionViewsForPid: no shared section views found for pid 940.\r\n2020-06-05 01:04:03,328 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x138 amd local view 0x03A30000 to global list.\r\n2020-06-05 01:04:03,453 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x02200000 for section view with handle 0x138.\r\n2020-06-05 01:04:03,593 [root] DEBUG: DLL unloaded from 0x73CF0000.\r\n2020-06-05 01:04:05,968 [root] DEBUG: DLL unloaded from 0x00D60000.\r\n2020-06-05 01:04:06,031 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x71C80000 for section view with handle 0x138.\r\n2020-06-05 01:04:06,187 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x71140000 for section view with handle 0x138.\r\n2020-06-05 01:04:06,218 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x03A30000 for section view with handle 0x138.\r\n2020-06-05 01:04:06,265 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x71C80000 for section view with handle 0x138.\r\n2020-06-05 01:04:06,296 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x71140000 for section view with handle 0x138.\r\n2020-06-05 01:04:06,296 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x03A30000 for section view with handle 0x138.\r\n2020-06-05 01:04:06,796 [root] DEBUG: MapSectionViewHandler: Added section view with handle 0x168 amd local view 0x03A30000 to global list.\r\n2020-06-05 01:04:07,000 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x71C80000 for section view with handle 0x168.\r\n2020-06-05 01:04:07,031 [root] DEBUG: MapSectionViewHandler: Updated local view to 0x71140000 for section view with handle 0x168.\r\n2020-06-05 01:04:07,062 [root] DEBUG: DLL unloaded from 0x73CF0000.\r\n2020-06-05 01:04:07,093 [root] INFO: ('dump_file', 'C:\\\\Windows\\\\Temp\\\\MpSigStub.log', '', False, 'files')\r\n2020-06-05 01:04:07,125 [root] DEBUG: DLL unloaded from 0x755C0000.\r\n2020-06-05 01:04:07,140 [root] DEBUG: DLL unloaded from 0x73100000.\r\n2020-06-05 01:04:07,140 [root] DEBUG: NtTerminateProcess hook: Attempting to dump process 940\r\n2020-06-05 01:04:07,156 [root] DEBUG: GetHookCallerBase: thread 2808 (handle 0x0), return address 0x00DDAB63, allocation base 0x00D60000.\r\n2020-06-05 01:04:07,171 [root] DEBUG: DoProcessDump: Dumping Imagebase at 0x00D60000.\r\n2020-06-05 01:04:07,171 [root] DEBUG: DumpImageInCurrentProcess: Attempting to dump virtual PE image.\r\n2020-06-05 01:04:07,187 [root] DEBUG: DumpProcess: Instantiating PeParser with address: 0x00D60000.\r\n2020-06-05 01:04:07,203 [root] DEBUG: DumpProcess: Module entry point VA is 0x0007F460.\r\n2020-06-05 01:04:07,218 [root] INFO: b'C:\\\\tULGugeIe\\\\CAPE\\\\940_2093446978272495562020|940|0;?C:\\\\Users\\\\ie_user\\\\AppData\\\\Local\\\\Temp\\\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\\\MpSigStub.exe;?C:\\\\Users\\\\ie_user\\\\AppData\\\\Local\\\\Temp\\\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\\\MpSigStub.exe;?'\r\n2020-06-05 01:04:07,249 [root] INFO: cape\r\n2020-06-05 01:04:07,281 [root] INFO: ('dump_file', 'C:\\\\tULGugeIe\\\\CAPE\\\\940_2093446978272495562020', b'0;?C:\\\\Users\\\\ie_user\\\\AppData\\\\Local\\\\Temp\\\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\\\MpSigStub.exe;?C:\\\\Users\\\\ie_user\\\\AppData\\\\Local\\\\Temp\\\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\\\MpSigStub.exe;?', ['940'], 'procdump')\r\n2020-06-05 01:04:07,312 [root] INFO: ('dump_file', 'C:\\\\tULGugeIe\\\\CAPE\\\\940_2093446978272495562020', '', False, 'files')\r\n2020-06-05 01:04:07,484 [root] DEBUG: DumpProcess: Module image dump success - dump size 0x93800.\r\n2020-06-05 01:04:07,671 [root] DEBUG: DLL unloaded from 0x74FD0000.\r\n2020-06-05 01:04:07,687 [root] WARNING: Unable to open termination event for pid 940.\r\n2020-06-05 01:04:07,750 [root] INFO: ('delete_file', 'C:\\\\Users\\\\ie_user\\\\AppData\\\\Local\\\\Temp\\\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\\\mpasdlta.vdm')\r\n2020-06-05 01:04:07,781 [root] INFO: ('dump_file', 'C:\\\\Users\\\\ie_user\\\\AppData\\\\Local\\\\Temp\\\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\\\mpasdlta.vdm', '', False, 'files')\r\n2020-06-05 01:04:07,937 [root] INFO: ('delete_file', 'C:\\\\Users\\\\ie_user\\\\AppData\\\\Local\\\\Temp\\\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\\\mpasbase.vdm')\r\n2020-06-05 01:04:07,953 [root] INFO: ('dump_file', 'C:\\\\Users\\\\ie_user\\\\AppData\\\\Local\\\\Temp\\\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\\\mpasbase.vdm', '', False, 'files')\r\n2020-06-05 01:04:08,375 [root] INFO: ('delete_file', 'C:\\\\Users\\\\ie_user\\\\AppData\\\\Local\\\\Temp\\\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\\\MpSigStub.exe')\r\n2020-06-05 01:04:08,390 [root] INFO: ('dump_file', 'C:\\\\Users\\\\ie_user\\\\AppData\\\\Local\\\\Temp\\\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\\\MpSigStub.exe', '', False, 'files')\r\n2020-06-05 01:04:08,421 [root] INFO: ('delete_file', 'C:\\\\Users\\\\ie_user\\\\AppData\\\\Local\\\\Temp\\\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\\\mpengine.dll')\r\n2020-06-05 01:04:08,453 [root] INFO: ('dump_file', 'C:\\\\Users\\\\ie_user\\\\AppData\\\\Local\\\\Temp\\\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\\\mpengine.dll', '', False, 'files')\r\n2020-06-05 01:04:08,765 [root] DEBUG: DLL unloaded from 0x755C0000.\r\n2020-06-05 01:04:08,781 [root] DEBUG: DLL unloaded from 0x73100000.\r\n2020-06-05 01:04:08,812 [root] DEBUG: NtTerminateProcess hook: Attempting to dump process 280\r\n2020-06-05 01:04:08,828 [root] DEBUG: GetHookCallerBase: thread 1312 (handle 0x0), return address 0x008697D5, allocation base 0x00850000.\r\n2020-06-05 01:04:08,828 [root] DEBUG: DoProcessDump: Dumping Imagebase at 0x00850000.\r\n2020-06-05 01:04:08,859 [root] DEBUG: DumpImageInCurrentProcess: Attempting to dump virtual PE image.\r\n2020-06-05 01:04:08,859 [root] DEBUG: DumpProcess: Instantiating PeParser with address: 0x00850000.\r\n2020-06-05 01:04:08,859 [root] DEBUG: DumpProcess: Module entry point VA is 0x0001B3E0.\r\n2020-06-05 01:04:08,890 [root] DEBUG: PeParser: Section 4 size too big: 0x3185000\r\n2020-06-05 01:04:08,890 [root] DEBUG: DumpProcess: There was a problem reading one or more sections, the dump may be incomplete.\r\n2020-06-05 01:04:08,906 [root] INFO: b'C:\\\\tULGugeIe\\\\CAPE\\\\280_2056574076282495562020|280|0;?C:\\\\Users\\\\ie_user\\\\AppData\\\\Local\\\\Temp\\\\mpas-fe.exe;?C:\\\\Users\\\\ie_user\\\\AppData\\\\Local\\\\Temp\\\\mpas-fe.exe;?'\r\n2020-06-05 01:04:08,906 [root] INFO: cape\r\n2020-06-05 01:04:08,906 [root] INFO: ('dump_file', 'C:\\\\tULGugeIe\\\\CAPE\\\\280_2056574076282495562020', b'0;?C:\\\\Users\\\\ie_user\\\\AppData\\\\Local\\\\Temp\\\\mpas-fe.exe;?C:\\\\Users\\\\ie_user\\\\AppData\\\\Local\\\\Temp\\\\mpas-fe.exe;?', ['280'], 'procdump')\r\n2020-06-05 01:04:09,000 [root] INFO: ('dump_file', 'C:\\\\tULGugeIe\\\\CAPE\\\\280_2056574076282495562020', '', False, 'files')\r\n2020-06-05 01:04:09,031 [root] DEBUG: DumpProcess: Module image dump success - dump size 0x30000.\r\n2020-06-05 01:04:09,062 [root] DEBUG: DLL unloaded from 0x74FD0000.\r\n2020-06-05 01:04:09,093 [root] WARNING: Unable to open termination event for pid 280.\r\n2020-06-05 01:06:52,171 [root] INFO: Analysis timeout hit, terminating analysis.\r\n2020-06-05 01:06:52,171 [lib.api.process] ERROR: Failed to open terminate event for pid 280\r\n2020-06-05 01:06:52,171 [root] INFO: Terminate event set for process 280.\r\n2020-06-05 01:06:52,171 [root] INFO: Terminating process 280 before shutdown.\r\n2020-06-05 01:06:52,187 [root] INFO: Waiting for process 280 to exit.\r\n2020-06-05 01:06:53,187 [root] INFO: Waiting for process 280 to exit.\r\n2020-06-05 01:06:54,187 [root] INFO: Waiting for process 280 to exit.\r\n2020-06-05 01:06:55,187 [root] INFO: Waiting for process 280 to exit.\r\n2020-06-05 01:06:56,203 [root] INFO: Waiting for process 280 to exit.\r\n2020-06-05 01:06:57,234 [root] INFO: Waiting for process 280 to exit.\r\n2020-06-05 01:06:58,234 [lib.api.process] ERROR: Failed to terminate process with pid 280.\r\n2020-06-05 01:06:58,265 [root] INFO: Waiting for process 280 to exit.\r\n2020-06-05 01:06:59,328 [lib.api.process] ERROR: Failed to terminate process with pid 280.\r\n2020-06-05 01:06:59,328 [root] INFO: Waiting for process 280 to exit.\r\n2020-06-05 01:07:00,328 [lib.api.process] ERROR: Failed to terminate process with pid 280.\r\n2020-06-05 01:07:00,343 [root] INFO: Waiting for process 280 to exit.\r\n2020-06-05 01:07:01,343 [lib.api.process] ERROR: Failed to terminate process with pid 280.\r\n2020-06-05 01:07:01,343 [root] INFO: Waiting for process 280 to exit.\r\n2020-06-05 01:07:02,375 [lib.api.process] ERROR: Failed to terminate process with pid 280.\r\n2020-06-05 01:07:02,375 [root] INFO: Waiting for process 280 to exit.\r\n2020-06-05 01:07:03,375 [lib.api.process] ERROR: Failed to terminate process with pid 280.\r\n2020-06-05 01:07:03,390 [root] INFO: Waiting for process 280 to exit.\r\n2020-06-05 01:07:04,406 [lib.api.process] ERROR: Failed to terminate process with pid 280.\r\n2020-06-05 01:07:04,437 [root] INFO: Waiting for process 280 to exit.\r\n2020-06-05 01:07:05,453 [lib.api.process] ERROR: Failed to terminate process with pid 280.\r\n2020-06-05 01:07:05,453 [root] INFO: Waiting for process 280 to exit.\r\n2020-06-05 01:07:06,453 [lib.api.process] ERROR: Failed to terminate process with pid 280.\r\n2020-06-05 01:07:06,453 [root] INFO: Waiting for process 280 to exit.\r\n2020-06-05 01:07:07,468 [lib.api.process] ERROR: Failed to terminate process with pid 280.\r\n2020-06-05 01:07:07,484 [root] INFO: Waiting for process 280 to exit.\r\n2020-06-05 01:07:08,500 [lib.api.process] ERROR: Failed to terminate process with pid 280.\r\n2020-06-05 01:07:08,515 [root] INFO: Waiting for process 280 to exit.\r\n2020-06-05 01:07:09,531 [lib.api.process] ERROR: Failed to terminate process with pid 280.\r\n2020-06-05 01:07:09,531 [root] INFO: Waiting for process 280 to exit.\r\n2020-06-05 01:07:10,531 [lib.api.process] ERROR: Failed to terminate process with pid 280.\r\n2020-06-05 01:07:10,546 [root] INFO: Waiting for process 280 to exit.\r\n2020-06-05 01:07:11,546 [lib.api.process] ERROR: Failed to terminate process with pid 280.\r\n2020-06-05 01:07:11,546 [root] INFO: Waiting for process 280 to exit.\r\n2020-06-05 01:07:12,546 [lib.api.process] ERROR: Failed to terminate process with pid 280.\r\n2020-06-05 01:07:12,546 [root] INFO: Waiting for process 280 to exit.\r\n2020-06-05 01:07:13,562 [lib.api.process] ERROR: Failed to terminate process with pid 280.\r\n2020-06-05 01:07:13,578 [root] INFO: Waiting for process 280 to exit.\r\n2020-06-05 01:07:14,578 [lib.api.process] ERROR: Failed to terminate process with pid 280.\r\n2020-06-05 01:07:14,593 [root] INFO: Waiting for process 280 to exit.\r\n2020-06-05 01:07:15,593 [lib.api.process] ERROR: Failed to terminate process with pid 280.\r\n2020-06-05 01:07:15,609 [root] INFO: Waiting for process 280 to exit.\r\n2020-06-05 01:07:16,625 [lib.api.process] ERROR: Failed to terminate process with pid 280.\r\n2020-06-05 01:07:16,625 [root] INFO: Waiting for process 280 to exit.\r\n2020-06-05 01:07:17,625 [lib.api.process] ERROR: Failed to terminate process with pid 280.\r\n2020-06-05 01:07:17,640 [root] INFO: Waiting for process 280 to exit.\r\n2020-06-05 01:07:18,640 [lib.api.process] ERROR: Failed to terminate process with pid 280.\r\n2020-06-05 01:07:18,640 [root] INFO: Waiting for process 280 to exit.\r\n2020-06-05 01:07:19,640 [lib.api.process] ERROR: Failed to terminate process with pid 280.\r\n2020-06-05 01:07:19,640 [root] INFO: Waiting for process 280 to exit.\r\n2020-06-05 01:07:20,640 [lib.api.process] ERROR: Failed to terminate process with pid 280.\r\n2020-06-05 01:07:20,640 [root] INFO: Waiting for process 280 to exit.\r\n2020-06-05 01:07:21,656 [lib.api.process] ERROR: Failed to terminate process with pid 280.\r\n2020-06-05 01:07:21,656 [root] INFO: Waiting for process 280 to exit.\r\n2020-06-05 01:07:22,671 [lib.api.process] ERROR: Failed to terminate process with pid 280.\r\n2020-06-05 01:07:22,687 [root] INFO: Waiting for process 280 to exit.\r\n2020-06-05 01:07:23,687 [lib.api.process] ERROR: Failed to terminate process with pid 280.\r\n2020-06-05 01:07:23,687 [root] INFO: Waiting for process 280 to exit.\r\n2020-06-05 01:07:24,703 [lib.api.process] ERROR: Failed to terminate process with pid 280.\r\n2020-06-05 01:07:24,703 [root] INFO: Waiting for process 280 to exit.\r\n2020-06-05 01:07:25,718 [lib.api.process] ERROR: Failed to terminate process with pid 280.\r\n2020-06-05 01:07:25,750 [root] INFO: Waiting for process 280 to exit.\r\n2020-06-05 01:07:26,750 [lib.api.process] ERROR: Failed to terminate process with pid 280.\r\n2020-06-05 01:07:26,750 [root] INFO: Waiting for process 280 to exit.\r\n2020-06-05 01:07:27,765 [lib.api.process] ERROR: Failed to terminate process with pid 280.\r\n2020-06-05 01:07:27,765 [root] INFO: Waiting for process 280 to exit.\r\n\r\n\nComment: Hello can you share sample? Without reproduce ir in our side it will be\nhard to fix\n\nEl vie., 5 jun. 2020 4:13, Matthew Malon <notifications@github.com>\nescribi\u00f3:\n\n> This is opensource and you getting *free* support so be friendly!\n> Prerequisites\n>\n> Please answer the following questions for yourself before submitting an\n> issue.\n>\n>    - [ x ] I am running the latest version\n>    - [ x ] I checked the documentation and found no answer\n>    - [ x ] I checked to make sure that this issue has not already been\n>    filed\n>    - [ x ] I'm reporting the issue to the correct repository (for\n>    multi-repository projects)\n>\n> Expected Behavior\n>\n> Submit zipped exe file for analysis using default settings using web gui:\n> Analysis Package: Detecet Automatically\n> report generation complete, redirect to analysis results page\n> Current Behavior\n>\n> guest vm agent.py runs normally and hangs at:\n> unable to open termination event for pid 280\n>\n> forwarded to results page:\n> Error :-( The specified analysis does not exist\n>\n> [image: debug13-1]\n> <https://user-images.githubusercontent.com/52143989/83828402-30b26100-a6a6-11ea-82e0-d1ca2801357b.PNG>\n>\n> cuckoo.log file exists in storage directory but is empty\n> cuckoo -d still works properly in terminal\n> notable errors:\n> [image: debug13]\n> <https://user-images.githubusercontent.com/52143989/83828282-e4672100-a6a5-11ea-96e7-bb493f5fbfde.PNG>\n> [image: debug13-0]\n> <https://user-images.githubusercontent.com/52143989/83828204-b84ba000-a6a5-11ea-954e-91824548d18f.PNG>\n> Context\n>\n> using postgresql\n> guestvm: Windows7SP1x64\n> Question Answer\n> Git commit 9655201588c8201d6be49901d6be4990a1d1ef9a5c13074e4\n> OS version Ubuntu 18.04.4 LTS Failure Logs\n>\n> analysis.log\n>\n> 2020-06-05 00:34:03,479 [root] INFO: Date set to: 20200605T01:03:09,\n> timeout set to: 200\n> 2020-06-05 01:03:09,171 [root] DEBUG: Starting analyzer from:\n> C:\\tmph562v0az\n> 2020-06-05 01:03:09,171 [root] DEBUG: Storing results at: C:\\tULGugeIe\n> 2020-06-05 01:03:09,187 [root] DEBUG: Pipe server name: \\.\\PIPE\\dnGqvE\n> 2020-06-05 01:03:09,187 [root] DEBUG: Python path:\n> C:\\Users\\ie_user\\AppData\\Local\\Programs\\Python\\Python38-32\n> 2020-06-05 01:03:09,187 [root] DEBUG: No analysis package specified,\n> trying to detect it automagically.\n> 2020-06-05 01:03:10,140 [root] INFO: Automatically selected analysis\n> package \"exe\"\n> 2020-06-05 01:03:10,140 [root] DEBUG: Trying to import analysis package\n> \"exe\"...\n> 2020-06-05 01:03:10,171 [root] DEBUG: Imported analysis package \"exe\".\n> 2020-06-05 01:03:10,171 [root] DEBUG: Trying to initialize analysis\n> package \"exe\"...\n> 2020-06-05 01:03:10,171 [root] DEBUG: Initialized analysis package \"exe\".\n> 2020-06-05 01:03:10,187 [root] DEBUG: Trying to import auxiliary module\n> \"modules.auxiliary.browser\"...\n> 2020-06-05 01:03:10,187 [root] DEBUG: Imported auxiliary module\n> \"modules.auxiliary.browser\".\n> 2020-06-05 01:03:10,187 [root] DEBUG: Trying to import auxiliary module\n> \"modules.auxiliary.curtain\"...\n> 2020-06-05 01:03:10,359 [root] DEBUG: Imported auxiliary module\n> \"modules.auxiliary.curtain\".\n> 2020-06-05 01:03:10,359 [root] DEBUG: Trying to import auxiliary module\n> \"modules.auxiliary.digisig\"...\n> 2020-06-05 01:03:10,375 [root] DEBUG: Imported auxiliary module\n> \"modules.auxiliary.digisig\".\n> 2020-06-05 01:03:10,390 [root] DEBUG: Trying to import auxiliary module\n> \"modules.auxiliary.disguise\"...\n> 2020-06-05 01:03:10,390 [root] DEBUG: Imported auxiliary module\n> \"modules.auxiliary.disguise\".\n> 2020-06-05 01:03:10,390 [root] DEBUG: Trying to import auxiliary module\n> \"modules.auxiliary.human\"...\n> 2020-06-05 01:03:10,406 [root] DEBUG: Imported auxiliary module\n> \"modules.auxiliary.human\".\n> 2020-06-05 01:03:10,406 [root] DEBUG: Trying to import auxiliary module\n> \"modules.auxiliary.procmon\"...\n> 2020-06-05 01:03:10,421 [root] DEBUG: Imported auxiliary module\n> \"modules.auxiliary.procmon\".\n> 2020-06-05 01:03:10,421 [root] DEBUG: Trying to import auxiliary module\n> \"modules.auxiliary.screenshots\"...\n> 2020-06-05 01:03:10,437 [modules.auxiliary.screenshots] DEBUG: Importing\n> 'time'\n> 2020-06-05 01:03:10,437 [modules.auxiliary.screenshots] DEBUG: Importing\n> 'StringIO'\n> 2020-06-05 01:03:10,437 [modules.auxiliary.screenshots] DEBUG: Importing\n> 'Thread'\n> 2020-06-05 01:03:10,437 [modules.auxiliary.screenshots] DEBUG: Importing\n> 'Auxiliary'\n> 2020-06-05 01:03:10,437 [modules.auxiliary.screenshots] DEBUG: Importing\n> 'NetlogFile'\n> 2020-06-05 01:03:10,437 [modules.auxiliary.screenshots] DEBUG: Importing\n> 'Screenshot'\n> 2020-06-05 01:03:10,453 [lib.api.screenshot] DEBUG: Importing 'math'\n> 2020-06-05 01:03:10,468 [lib.api.screenshot] DEBUG: Importing\n> 'PIL.ImageChops'\n> 2020-06-05 01:03:10,531 [lib.api.screenshot] DEBUG: Importing\n> 'PIL.ImageGrab'\n> 2020-06-05 01:03:10,562 [lib.api.screenshot] DEBUG: Importing\n> 'PIL.ImageDraw'\n> 2020-06-05 01:03:10,562 [modules.auxiliary.screenshots] DEBUG: Imports OK\n> 2020-06-05 01:03:10,578 [root] DEBUG: Imported auxiliary module\n> \"modules.auxiliary.screenshots\".\n> 2020-06-05 01:03:10,578 [root] DEBUG: Trying to import auxiliary module\n> \"modules.auxiliary.sysmon\"...\n> 2020-06-05 01:03:10,609 [root] DEBUG: Imported auxiliary module\n> \"modules.auxiliary.sysmon\".\n> 2020-06-05 01:03:10,625 [root] DEBUG: Trying to import auxiliary module\n> \"modules.auxiliary.usage\"...\n> 2020-06-05 01:03:10,625 [root] DEBUG: Imported auxiliary module\n> \"modules.auxiliary.usage\".\n> 2020-06-05 01:03:10,656 [root] DEBUG: Trying to initialize auxiliary\n> module \"Browser\"...\n> 2020-06-05 01:03:10,656 [root] DEBUG: Initialized auxiliary module\n> \"Browser\".\n> 2020-06-05 01:03:10,671 [root] DEBUG: Trying to start auxiliary module\n> \"Browser\"...\n> 2020-06-05 01:03:10,671 [root] DEBUG: Started auxiliary module Browser\n> 2020-06-05 01:03:10,687 [root] DEBUG: Trying to initialize auxiliary\n> module \"Curtain\"...\n> 2020-06-05 01:03:10,703 [root] DEBUG: Initialized auxiliary module\n> \"Curtain\".\n> 2020-06-05 01:03:10,703 [root] DEBUG: Trying to start auxiliary module\n> \"Curtain\"...\n> 2020-06-05 01:03:10,718 [root] DEBUG: Started auxiliary module Curtain\n> 2020-06-05 01:03:10,750 [root] DEBUG: Trying to initialize auxiliary\n> module \"DigiSig\"...\n> 2020-06-05 01:03:10,765 [root] DEBUG: Initialized auxiliary module\n> \"DigiSig\".\n> 2020-06-05 01:03:10,781 [root] DEBUG: Trying to start auxiliary module\n> \"DigiSig\"...\n> 2020-06-05 01:03:10,781 [modules.auxiliary.digisig] DEBUG: Checking for a\n> digital signature.\n> 2020-06-05 01:03:28,671 [modules.auxiliary.digisig] DEBUG: File has a\n> valid signature.\n> 2020-06-05 01:03:28,703 [modules.auxiliary.digisig] INFO: Uploading\n> signature results to aux/DigiSig.json\n> 2020-06-05 01:03:28,718 [root] DEBUG: Started auxiliary module DigiSig\n> 2020-06-05 01:03:28,734 [root] DEBUG: Trying to initialize auxiliary\n> module \"Disguise\"...\n> 2020-06-05 01:03:28,734 [root] DEBUG: Initialized auxiliary module\n> \"Disguise\".\n> 2020-06-05 01:03:28,765 [root] DEBUG: Trying to start auxiliary module\n> \"Disguise\"...\n> 2020-06-05 01:03:28,765 [root] DEBUG: Started auxiliary module Disguise\n> 2020-06-05 01:03:28,765 [root] DEBUG: Trying to initialize auxiliary\n> module \"Human\"...\n> 2020-06-05 01:03:28,765 [root] DEBUG: Initialized auxiliary module \"Human\".\n> 2020-06-05 01:03:28,781 [root] DEBUG: Trying to start auxiliary module\n> \"Human\"...\n> 2020-06-05 01:03:28,796 [root] DEBUG: Started auxiliary module Human\n> 2020-06-05 01:03:28,796 [root] DEBUG: Trying to initialize auxiliary\n> module \"Procmon\"...\n> 2020-06-05 01:03:28,796 [root] DEBUG: Initialized auxiliary module\n> \"Procmon\".\n> 2020-06-05 01:03:28,796 [root] DEBUG: Trying to start auxiliary module\n> \"Procmon\"...\n> 2020-06-05 01:03:28,843 [root] DEBUG: Started auxiliary module Procmon\n> 2020-06-05 01:03:28,843 [root] DEBUG: Trying to initialize auxiliary\n> module \"Screenshots\"...\n> 2020-06-05 01:03:28,875 [root] DEBUG: Initialized auxiliary module\n> \"Screenshots\".\n> 2020-06-05 01:03:28,890 [root] DEBUG: Trying to start auxiliary module\n> \"Screenshots\"...\n> 2020-06-05 01:03:28,906 [root] DEBUG: Started auxiliary module Screenshots\n> 2020-06-05 01:03:28,906 [root] DEBUG: Trying to initialize auxiliary\n> module \"Sysmon\"...\n> 2020-06-05 01:03:28,906 [root] DEBUG: Initialized auxiliary module\n> \"Sysmon\".\n> 2020-06-05 01:03:28,921 [root] DEBUG: Trying to start auxiliary module\n> \"Sysmon\"...\n> 2020-06-05 01:03:28,937 [root] DEBUG: Started auxiliary module Sysmon\n> 2020-06-05 01:03:28,937 [root] DEBUG: Trying to initialize auxiliary\n> module \"Usage\"...\n> 2020-06-05 01:03:28,937 [root] DEBUG: Initialized auxiliary module \"Usage\".\n> 2020-06-05 01:03:28,953 [root] DEBUG: Trying to start auxiliary module\n> \"Usage\"...\n> 2020-06-05 01:03:28,953 [root] DEBUG: Started auxiliary module Usage\n> 2020-06-05 01:03:28,968 [root] INFO: Analyzer: Package\n> modules.packages.exe does not specify a DLL option\n> 2020-06-05 01:03:28,968 [root] INFO: Analyzer: Package\n> modules.packages.exe does not specify a DLL_64 option\n> 2020-06-05 01:03:28,984 [root] INFO: Analyzer: Package\n> modules.packages.exe does not specify a loader option\n> 2020-06-05 01:03:28,984 [root] INFO: Analyzer: Package\n> modules.packages.exe does not specify a loader_64 option\n> 2020-06-05 01:03:29,437 [lib.api.process] INFO: Successfully executed\n> process from path \"C:\\Users\\ie_user\\AppData\\Local\\Temp\\mpas-fe.exe\" with\n> arguments \"\" with pid 280\n> 2020-06-05 01:03:29,484 [lib.api.process] INFO: Monitor config for process\n> 280: C:\\tmph562v0az\\dll\\280.ini\n> 2020-06-05 01:03:29,562 [lib.api.process] INFO: 32-bit DLL to inject is\n> C:\\tmph562v0az\\dll\\qCMtLUqp.dll, loader C:\\tmph562v0az\\bin\\BLTRWSm.exe\n> 2020-06-05 01:03:29,781 [root] DEBUG: ReadConfig: Successfully loaded pipe\n> name \\.\\PIPE\\dnGqvE.\n> 2020-06-05 01:03:29,796 [root] DEBUG: Loader: Injecting process 280\n> (thread 1312) with C:\\tmph562v0az\\dll\\qCMtLUqp.dll.\n> 2020-06-05 01:03:29,812 [root] DEBUG: Process image base: 0x00850000\n> 2020-06-05 01:03:29,828 [root] DEBUG: InjectDllViaIAT: IAT patching with\n> dll name C:\\tmph562v0az\\dll\\qCMtLUqp.dll.\n> 2020-06-05 01:03:29,843 [root] DEBUG: InjectDllViaIAT: Successfully\n> patched IAT.\n> 2020-06-05 01:03:29,843 [root] DEBUG: Successfully injected DLL\n> C:\\tmph562v0az\\dll\\qCMtLUqp.dll.\n> 2020-06-05 01:03:29,875 [lib.api.process] INFO: Injected into suspended\n> 32-bit process with pid 280\n> 2020-06-05 01:03:31,890 [lib.api.process] INFO: Successfully resumed\n> process with pid 280\n> 2020-06-05 01:03:31,937 [root] DEBUG: Python path set to\n> 'C:\\Users\\ie_user\\AppData\\Local\\Programs\\Python\\Python38-32'.\n> 2020-06-05 01:03:31,984 [root] DEBUG: Dropped file limit defaulting to 100.\n> 2020-06-05 01:03:32,000 [root] DEBUG: RestoreHeaders: Restored original\n> import table.\n> 2020-06-05 01:03:32,031 [root] DEBUG: CAPE initialised: 32-bit monitor\n> loaded in process 280 at 0x73bc0000, image base 0x850000, stack from\n> 0x126000-0x130000\n> 2020-06-05 01:03:32,046 [root] DEBUG: Commandline:\n> C:\\Users\\ie_user\\AppData\\Local\\Temp\"C:\\Users\\ie_user\\AppData\\Local\\Temp\\mpas-fe.exe\".\n> 2020-06-05 01:03:32,140 [root] INFO: loaded: b'280'\n> 2020-06-05 01:03:32,156 [root] INFO: Disabling sleep skipping.\n> 2020-06-05 01:03:32,156 [root] INFO: Loaded monitor into process with pid\n> 280\n> 2020-06-05 01:03:32,156 [root] INFO: Disabling sleep skipping.\n> 2020-06-05 01:03:32,171 [root] INFO: Disabling sleep skipping.\n> 2020-06-05 01:03:32,171 [root] INFO: Disabling sleep skipping.\n> 2020-06-05 01:03:32,218 [root] DEBUG: DLL loaded at 0x73100000:\n> C:\\Windows\\system32\\version (0x9000 bytes).\n> 2020-06-05 01:03:32,234 [root] DEBUG: DLL unloaded from 0x00850000.\n> 2020-06-05 01:03:32,265 [root] DEBUG: DLL unloaded from 0x755C0000.\n> 2020-06-05 01:03:32,281 [root] DEBUG: OpenProcessHandler: Injection info\n> created for Pid 280, handle 0xc4.\n> 2020-06-05 01:03:32,296 [root] DEBUG: OpenProcessHandler: Image base for\n> process 280 (handle 0xc4): 0x00850000.\n> 2020-06-05 01:03:32,343 [root] DEBUG: DLL loaded at 0x746D0000:\n> C:\\Windows\\system32\\cabinet (0x15000 bytes).\n> 2020-06-05 01:03:32,406 [root] INFO: ('delete_file',\n> 'C:\\Users\\ie_user\\AppData\\Local\\Temp\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\mpengine.dll')\n> 2020-06-05 01:03:32,421 [root] INFO: ('dump_file',\n> 'C:\\Users\\ie_user\\AppData\\Local\\Temp\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\mpengine.dll',\n> '', False, 'files')\n> 2020-06-05 01:03:32,421 [root] INFO: Error dumping file from path\n> \"C:\\Users\\ie_user\\AppData\\Local\\Temp\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\mpengine.dll\":\n> [Errno 13] Permission denied:\n> 'C:\\Users\\ie_user\\AppData\\Local\\Temp\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\mpengine.dll'\n> 2020-06-05 01:03:35,703 [root] INFO: ('dump_file',\n> 'C:\\Users\\ie_user\\AppData\\Local\\Temp\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\mpengine.dll',\n> '', False, 'files')\n> 2020-06-05 01:03:39,687 [root] INFO: ('delete_file',\n> 'C:\\Users\\ie_user\\AppData\\Local\\Temp\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\MpSigStub.exe')\n> 2020-06-05 01:03:39,703 [root] INFO: ('dump_file',\n> 'C:\\Users\\ie_user\\AppData\\Local\\Temp\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\MpSigStub.exe',\n> '', False, 'files')\n> 2020-06-05 01:03:39,718 [root] INFO: Error dumping file from path\n> \"C:\\Users\\ie_user\\AppData\\Local\\Temp\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\MpSigStub.exe\":\n> [Errno 13] Permission denied:\n> 'C:\\Users\\ie_user\\AppData\\Local\\Temp\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\MpSigStub.exe'\n> 2020-06-05 01:03:40,031 [root] INFO: ('dump_file',\n> 'C:\\Users\\ie_user\\AppData\\Local\\Temp\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\MpSigStub.exe',\n> '', False, 'files')\n> 2020-06-05 01:03:40,437 [root] INFO: ('delete_file',\n> 'C:\\Users\\ie_user\\AppData\\Local\\Temp\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\mpasbase.vdm')\n> 2020-06-05 01:03:40,468 [root] INFO: ('dump_file',\n> 'C:\\Users\\ie_user\\AppData\\Local\\Temp\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\mpasbase.vdm',\n> '', False, 'files')\n> 2020-06-05 01:03:40,484 [root] INFO: Error dumping file from path\n> \"C:\\Users\\ie_user\\AppData\\Local\\Temp\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\mpasbase.vdm\":\n> [Errno 13] Permission denied:\n> 'C:\\Users\\ie_user\\AppData\\Local\\Temp\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\mpasbase.vdm'\n> 2020-06-05 01:03:47,453 [root] INFO: ('dump_file',\n> 'C:\\Users\\ie_user\\AppData\\Local\\Temp\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\mpasbase.vdm',\n> '', False, 'files')\n> 2020-06-05 01:03:58,453 [root] INFO: ('delete_file',\n> 'C:\\Users\\ie_user\\AppData\\Local\\Temp\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\mpasdlta.vdm')\n> 2020-06-05 01:03:58,468 [root] INFO: ('dump_file',\n> 'C:\\Users\\ie_user\\AppData\\Local\\Temp\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\mpasdlta.vdm',\n> '', False, 'files')\n> 2020-06-05 01:03:58,468 [root] INFO: Error dumping file from path\n> \"C:\\Users\\ie_user\\AppData\\Local\\Temp\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\mpasdlta.vdm\":\n> [Errno 13] Permission denied:\n> 'C:\\Users\\ie_user\\AppData\\Local\\Temp\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\mpasdlta.vdm'\n> 2020-06-05 01:03:59,921 [root] INFO: ('dump_file',\n> 'C:\\Users\\ie_user\\AppData\\Local\\Temp\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\mpasdlta.vdm',\n> '', False, 'files')\n> 2020-06-05 01:04:01,687 [root] DEBUG: DLL unloaded from 0x746D0000.\n> 2020-06-05 01:04:01,718 [root] DEBUG: DLL unloaded from 0x00850000.\n> 2020-06-05 01:04:01,734 [root] DEBUG: MapSectionViewHandler: Added section\n> view with handle 0x118 amd local view 0x06560000 to global list.\n> 2020-06-05 01:04:01,765 [root] INFO: Announced 32-bit process name:\n> MpSigStub.exe pid: 940\n> 2020-06-05 01:04:01,781 [lib.api.process] INFO: Monitor config for process\n> 940: C:\\tmph562v0az\\dll\\940.ini\n> 2020-06-05 01:04:01,796 [lib.api.process] INFO: 32-bit DLL to inject is\n> C:\\tmph562v0az\\dll\\qCMtLUqp.dll, loader C:\\tmph562v0az\\bin\\BLTRWSm.exe\n> 2020-06-05 01:04:01,843 [root] DEBUG: ReadConfig: Successfully loaded pipe\n> name \\.\\PIPE\\dnGqvE.\n> 2020-06-05 01:04:01,859 [root] DEBUG: Loader: Injecting process 940\n> (thread 2808) with C:\\tmph562v0az\\dll\\qCMtLUqp.dll.\n> 2020-06-05 01:04:01,875 [root] DEBUG: Process image base: 0x00D60000\n> 2020-06-05 01:04:01,890 [root] DEBUG: InjectDllViaIAT: IAT patching with\n> dll name C:\\tmph562v0az\\dll\\qCMtLUqp.dll.\n> 2020-06-05 01:04:01,890 [root] DEBUG: InjectDllViaIAT: Successfully\n> patched IAT.\n> 2020-06-05 01:04:01,890 [root] DEBUG: Successfully injected DLL\n> C:\\tmph562v0az\\dll\\qCMtLUqp.dll.\n> 2020-06-05 01:04:01,921 [lib.api.process] INFO: Injected into suspended\n> 32-bit process with pid 940\n> 2020-06-05 01:04:01,937 [root] DEBUG: DLL loaded at 0x73250000:\n> C:\\Windows\\system32\\apphelp (0x4c000 bytes).\n> 2020-06-05 01:04:02,015 [root] DEBUG: CreateProcessHandler: Injection info\n> set for new process 940, ImageBase: 0x00D60000\n> 2020-06-05 01:04:02,015 [root] INFO: Announced 32-bit process name:\n> MpSigStub.exe pid: 940\n> 2020-06-05 01:04:02,015 [lib.api.process] INFO: Monitor config for process\n> 940: C:\\tmph562v0az\\dll\\940.ini\n> 2020-06-05 01:04:02,046 [lib.api.process] INFO: 32-bit DLL to inject is\n> C:\\tmph562v0az\\dll\\qCMtLUqp.dll, loader C:\\tmph562v0az\\bin\\BLTRWSm.exe\n> 2020-06-05 01:04:02,062 [root] DEBUG: ReadConfig: Successfully loaded pipe\n> name \\.\\PIPE\\dnGqvE.\n> 2020-06-05 01:04:02,078 [root] DEBUG: Loader: Injecting process 940\n> (thread 2808) with C:\\tmph562v0az\\dll\\qCMtLUqp.dll.\n> 2020-06-05 01:04:02,093 [root] DEBUG: Process image base: 0x00D60000\n> 2020-06-05 01:04:02,093 [root] DEBUG: InjectDllViaIAT: IAT patching with\n> dll name C:\\tmph562v0az\\dll\\qCMtLUqp.dll.\n> 2020-06-05 01:04:02,109 [root] DEBUG: InjectDllViaIAT: This image has\n> already been patched.\n> 2020-06-05 01:04:02,125 [root] DEBUG: Successfully injected DLL\n> C:\\tmph562v0az\\dll\\qCMtLUqp.dll.\n> 2020-06-05 01:04:02,156 [lib.api.process] INFO: Injected into suspended\n> 32-bit process with pid 940\n> 2020-06-05 01:04:02,187 [root] DEBUG: Python path set to\n> 'C:\\Users\\ie_user\\AppData\\Local\\Programs\\Python\\Python38-32'.\n> 2020-06-05 01:04:02,203 [root] DEBUG: Dropped file limit defaulting to 100.\n> 2020-06-05 01:04:02,218 [root] INFO: Disabling sleep skipping.\n> 2020-06-05 01:04:02,218 [root] DEBUG: RestoreHeaders: Restored original\n> import table.\n> 2020-06-05 01:04:02,249 [root] DEBUG: CAPE initialised: 32-bit monitor\n> loaded in process 940 at 0x73bc0000, image base 0xd60000, stack from\n> 0x296000-0x2a0000\n> 2020-06-05 01:04:02,249 [root] DEBUG: Commandline:\n> C:\\Users\\ie_user\\AppData\\Local\\Temp\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\MpSigStub.exe\n> \\stub 1.1.16900.5 \\payload 1.313.2253.0 \\program\n> C:\\Users\\ie_user\\AppData\\Local\\Temp\\mpas-fe.exe.\n> 2020-06-05 01:04:02,296 [root] INFO: loaded: b'940'\n> 2020-06-05 01:04:02,328 [root] INFO: Loaded monitor into process with pid\n> 940\n> 2020-06-05 01:04:02,343 [root] DEBUG: DLL loaded at 0x73100000:\n> C:\\Windows\\system32\\version (0x9000 bytes).\n> 2020-06-05 01:04:02,359 [root] DEBUG: DLL unloaded from 0x00D60000.\n> 2020-06-05 01:04:02,375 [root] DEBUG: DLL unloaded from 0x755C0000.\n> 2020-06-05 01:04:02,390 [root] DEBUG: OpenProcessHandler: Injection info\n> created for Pid 940, handle 0xd4.\n> 2020-06-05 01:04:02,406 [root] DEBUG: OpenProcessHandler: Injection info\n> created for Pid 280, handle 0xd8.\n> 2020-06-05 01:04:02,421 [root] DEBUG: OpenProcessHandler: Image base for\n> process 280 (handle 0xd4): 0x00850000.\n> 2020-06-05 01:04:02,468 [root] DEBUG: DLL unloaded from 0x75800000.\n> 2020-06-05 01:04:02,484 [root] DEBUG: DLL unloaded from 0x00D60000.\n> 2020-06-05 01:04:02,578 [root] DEBUG: MapSectionViewHandler: Added section\n> view with handle 0xdc amd local view 0x73CF0000 to global list.\n> 2020-06-05 01:04:02,625 [root] DEBUG: MapSectionViewHandler: Updated local\n> view to 0x73B50000 for section view with handle 0xdc.\n> 2020-06-05 01:04:02,765 [root] DEBUG: MapSectionViewHandler: Updated local\n> view to 0x73CF0000 for section view with handle 0xdc.\n> 2020-06-05 01:04:02,812 [root] DEBUG: DLL loaded at 0x73CF0000: C:\\Program\n> Files (x86)\\Windows Defender\\mpclient (0x63000 bytes).\n> 2020-06-05 01:04:02,812 [root] DEBUG: MapSectionViewHandler: Added section\n> view with handle 0xd4 amd local view 0x76AC0000 to global list.\n> 2020-06-05 01:04:02,843 [root] DEBUG: DLL loaded at 0x76AC0000:\n> C:\\Windows\\syswow64\\OLEAUT32 (0x91000 bytes).\n> 2020-06-05 01:04:02,875 [root] DEBUG: MapSectionViewHandler: Updated local\n> view to 0x752F0000 for section view with handle 0xd4.\n> 2020-06-05 01:04:02,906 [root] DEBUG: DLL loaded at 0x752F0000:\n> C:\\Windows\\syswow64\\USERENV (0x19000 bytes).\n> 2020-06-05 01:04:02,906 [root] DEBUG: MapSectionViewHandler: Updated local\n> view to 0x754A0000 for section view with handle 0xd4.\n> 2020-06-05 01:04:02,937 [root] DEBUG: DLL loaded at 0x754A0000:\n> C:\\Windows\\syswow64\\profapi (0xb000 bytes).\n> 2020-06-05 01:04:02,937 [root] DEBUG: MapSectionViewHandler: Updated local\n> view to 0x74F90000 for section view with handle 0xd4.\n> 2020-06-05 01:04:02,968 [root] DEBUG: DLL loaded at 0x74F90000:\n> C:\\Windows\\syswow64\\WINTRUST (0x2f000 bytes).\n> 2020-06-05 01:04:02,968 [root] DEBUG: MapSectionViewHandler: Updated local\n> view to 0x75BB0000 for section view with handle 0xd4.\n> 2020-06-05 01:04:03,000 [root] DEBUG: DLL loaded at 0x75BB0000:\n> C:\\Windows\\syswow64\\CRYPT32 (0x122000 bytes).\n> 2020-06-05 01:04:03,015 [root] DEBUG: MapSectionViewHandler: Updated local\n> view to 0x74F40000 for section view with handle 0xd4.\n> 2020-06-05 01:04:03,046 [root] DEBUG: DLL loaded at 0x74F40000:\n> C:\\Windows\\syswow64\\MSASN1 (0xc000 bytes).\n> 2020-06-05 01:04:03,062 [root] DEBUG: MapSectionViewHandler: Updated local\n> view to 0x75D10000 for section view with handle 0xd4.\n> 2020-06-05 01:04:03,078 [root] DEBUG: DLL loaded at 0x75D10000:\n> C:\\Windows\\syswow64\\SHELL32 (0xc4c000 bytes).\n> 2020-06-05 01:04:03,109 [root] DEBUG: DLL unloaded from 0x755C0000.\n> 2020-06-05 01:04:03,156 [root] DEBUG: DLL unloaded from 0x00D60000.\n> 2020-06-05 01:04:03,203 [root] DEBUG: MapSectionViewHandler: Added section\n> view with handle 0x118 amd local view 0x00110000 to global list.\n> 2020-06-05 01:04:03,249 [root] DEBUG: DLL unloaded from 0x75310000.\n> 2020-06-05 01:04:03,281 [root] DEBUG: ResumeThreadHandler: Dumping section\n> view for process 940.\n> 2020-06-05 01:04:03,296 [root] DEBUG: DumpSectionViewsForPid: no shared\n> section views found for pid 940.\n> 2020-06-05 01:04:03,328 [root] DEBUG: MapSectionViewHandler: Added section\n> view with handle 0x138 amd local view 0x03A30000 to global list.\n> 2020-06-05 01:04:03,453 [root] DEBUG: MapSectionViewHandler: Updated local\n> view to 0x02200000 for section view with handle 0x138.\n> 2020-06-05 01:04:03,593 [root] DEBUG: DLL unloaded from 0x73CF0000.\n> 2020-06-05 01:04:05,968 [root] DEBUG: DLL unloaded from 0x00D60000.\n> 2020-06-05 01:04:06,031 [root] DEBUG: MapSectionViewHandler: Updated local\n> view to 0x71C80000 for section view with handle 0x138.\n> 2020-06-05 01:04:06,187 [root] DEBUG: MapSectionViewHandler: Updated local\n> view to 0x71140000 for section view with handle 0x138.\n> 2020-06-05 01:04:06,218 [root] DEBUG: MapSectionViewHandler: Updated local\n> view to 0x03A30000 for section view with handle 0x138.\n> 2020-06-05 01:04:06,265 [root] DEBUG: MapSectionViewHandler: Updated local\n> view to 0x71C80000 for section view with handle 0x138.\n> 2020-06-05 01:04:06,296 [root] DEBUG: MapSectionViewHandler: Updated local\n> view to 0x71140000 for section view with handle 0x138.\n> 2020-06-05 01:04:06,296 [root] DEBUG: MapSectionViewHandler: Updated local\n> view to 0x03A30000 for section view with handle 0x138.\n> 2020-06-05 01:04:06,796 [root] DEBUG: MapSectionViewHandler: Added section\n> view with handle 0x168 amd local view 0x03A30000 to global list.\n> 2020-06-05 01:04:07,000 [root] DEBUG: MapSectionViewHandler: Updated local\n> view to 0x71C80000 for section view with handle 0x168.\n> 2020-06-05 01:04:07,031 [root] DEBUG: MapSectionViewHandler: Updated local\n> view to 0x71140000 for section view with handle 0x168.\n> 2020-06-05 01:04:07,062 [root] DEBUG: DLL unloaded from 0x73CF0000.\n> 2020-06-05 01:04:07,093 [root] INFO: ('dump_file',\n> 'C:\\Windows\\Temp\\MpSigStub.log', '', False, 'files')\n> 2020-06-05 01:04:07,125 [root] DEBUG: DLL unloaded from 0x755C0000.\n> 2020-06-05 01:04:07,140 [root] DEBUG: DLL unloaded from 0x73100000.\n> 2020-06-05 01:04:07,140 [root] DEBUG: NtTerminateProcess hook: Attempting\n> to dump process 940\n> 2020-06-05 01:04:07,156 [root] DEBUG: GetHookCallerBase: thread 2808\n> (handle 0x0), return address 0x00DDAB63, allocation base 0x00D60000.\n> 2020-06-05 01:04:07,171 [root] DEBUG: DoProcessDump: Dumping Imagebase at\n> 0x00D60000.\n> 2020-06-05 01:04:07,171 [root] DEBUG: DumpImageInCurrentProcess:\n> Attempting to dump virtual PE image.\n> 2020-06-05 01:04:07,187 [root] DEBUG: DumpProcess: Instantiating PeParser\n> with address: 0x00D60000.\n> 2020-06-05 01:04:07,203 [root] DEBUG: DumpProcess: Module entry point VA\n> is 0x0007F460.\n> 2020-06-05 01:04:07,218 [root] INFO:\n> b'C:\\tULGugeIe\\CAPE\\940_2093446978272495562020|940|0;?C:\\Users\\ie_user\\AppData\\Local\\Temp\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\MpSigStub.exe;?C:\\Users\\ie_user\\AppData\\Local\\Temp\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\MpSigStub.exe;?'\n> 2020-06-05 01:04:07,249 [root] INFO: cape\n> 2020-06-05 01:04:07,281 [root] INFO: ('dump_file',\n> 'C:\\tULGugeIe\\CAPE\\940_2093446978272495562020',\n> b'0;?C:\\Users\\ie_user\\AppData\\Local\\Temp\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\MpSigStub.exe;?C:\\Users\\ie_user\\AppData\\Local\\Temp\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\MpSigStub.exe;?',\n> ['940'], 'procdump')\n> 2020-06-05 01:04:07,312 [root] INFO: ('dump_file',\n> 'C:\\tULGugeIe\\CAPE\\940_2093446978272495562020', '', False, 'files')\n> 2020-06-05 01:04:07,484 [root] DEBUG: DumpProcess: Module image dump\n> success - dump size 0x93800.\n> 2020-06-05 01:04:07,671 [root] DEBUG: DLL unloaded from 0x74FD0000.\n> 2020-06-05 01:04:07,687 [root] WARNING: Unable to open termination event\n> for pid 940.\n> 2020-06-05 01:04:07,750 [root] INFO: ('delete_file',\n> 'C:\\Users\\ie_user\\AppData\\Local\\Temp\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\mpasdlta.vdm')\n> 2020-06-05 01:04:07,781 [root] INFO: ('dump_file',\n> 'C:\\Users\\ie_user\\AppData\\Local\\Temp\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\mpasdlta.vdm',\n> '', False, 'files')\n> 2020-06-05 01:04:07,937 [root] INFO: ('delete_file',\n> 'C:\\Users\\ie_user\\AppData\\Local\\Temp\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\mpasbase.vdm')\n> 2020-06-05 01:04:07,953 [root] INFO: ('dump_file',\n> 'C:\\Users\\ie_user\\AppData\\Local\\Temp\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\mpasbase.vdm',\n> '', False, 'files')\n> 2020-06-05 01:04:08,375 [root] INFO: ('delete_file',\n> 'C:\\Users\\ie_user\\AppData\\Local\\Temp\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\MpSigStub.exe')\n> 2020-06-05 01:04:08,390 [root] INFO: ('dump_file',\n> 'C:\\Users\\ie_user\\AppData\\Local\\Temp\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\MpSigStub.exe',\n> '', False, 'files')\n> 2020-06-05 01:04:08,421 [root] INFO: ('delete_file',\n> 'C:\\Users\\ie_user\\AppData\\Local\\Temp\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\mpengine.dll')\n> 2020-06-05 01:04:08,453 [root] INFO: ('dump_file',\n> 'C:\\Users\\ie_user\\AppData\\Local\\Temp\\002C942C-F1DB-4A8D-B64D-F5B2790E75B1\\mpengine.dll',\n> '', False, 'files')\n> 2020-06-05 01:04:08,765 [root] DEBUG: DLL unloaded from 0x755C0000.\n> 2020-06-05 01:04:08,781 [root] DEBUG: DLL unloaded from 0x73100000.\n> 2020-06-05 01:04:08,812 [root] DEBUG: NtTerminateProcess hook: Attempting\n> to dump process 280\n> 2020-06-05 01:04:08,828 [root] DEBUG: GetHookCallerBase: thread 1312\n> (handle 0x0), return address 0x008697D5, allocation base 0x00850000.\n> 2020-06-05 01:04:08,828 [root] DEBUG: DoProcessDump: Dumping Imagebase at\n> 0x00850000.\n> 2020-06-05 01:04:08,859 [root] DEBUG: DumpImageInCurrentProcess:\n> Attempting to dump virtual PE image.\n> 2020-06-05 01:04:08,859 [root] DEBUG: DumpProcess: Instantiating PeParser\n> with address: 0x00850000.\n> 2020-06-05 01:04:08,859 [root] DEBUG: DumpProcess: Module entry point VA\n> is 0x0001B3E0.\n> 2020-06-05 01:04:08,890 [root] DEBUG: PeParser: Section 4 size too big:\n> 0x3185000\n> 2020-06-05 01:04:08,890 [root] DEBUG: DumpProcess: There was a problem\n> reading one or more sections, the dump may be incomplete.\n> 2020-06-05 01:04:08,906 [root] INFO:\n> b'C:\\tULGugeIe\\CAPE\\280_2056574076282495562020|280|0;?C:\\Users\\ie_user\\AppData\\Local\\Temp\\mpas-fe.exe;?C:\\Users\\ie_user\\AppData\\Local\\Temp\\mpas-fe.exe;?'\n> 2020-06-05 01:04:08,906 [root] INFO: cape\n> 2020-06-05 01:04:08,906 [root] INFO: ('dump_file',\n> 'C:\\tULGugeIe\\CAPE\\280_2056574076282495562020',\n> b'0;?C:\\Users\\ie_user\\AppData\\Local\\Temp\\mpas-fe.exe;?C:\\Users\\ie_user\\AppData\\Local\\Temp\\mpas-fe.exe;?',\n> ['280'], 'procdump')\n> 2020-06-05 01:04:09,000 [root] INFO: ('dump_file',\n> 'C:\\tULGugeIe\\CAPE\\280_2056574076282495562020', '', False, 'files')\n> 2020-06-05 01:04:09,031 [root] DEBUG: DumpProcess: Module image dump\n> success - dump size 0x30000.\n> 2020-06-05 01:04:09,062 [root] DEBUG: DLL unloaded from 0x74FD0000.\n> 2020-06-05 01:04:09,093 [root] WARNING: Unable to open termination event\n> for pid 280.\n> 2020-06-05 01:06:52,171 [root] INFO: Analysis timeout hit, terminating\n> analysis.\n> 2020-06-05 01:06:52,171 [lib.api.process] ERROR: Failed to open terminate\n> event for pid 280\n> 2020-06-05 01:06:52,171 [root] INFO: Terminate event set for process 280.\n> 2020-06-05 01:06:52,171 [root] INFO: Terminating process 280 before\n> shutdown.\n> 2020-06-05 01:06:52,187 [root] INFO: Waiting for process 280 to exit.\n> 2020-06-05 01:06:53,187 [root] INFO: Waiting for process 280 to exit.\n> 2020-06-05 01:06:54,187 [root] INFO: Waiting for process 280 to exit.\n> 2020-06-05 01:06:55,187 [root] INFO: Waiting for process 280 to exit.\n> 2020-06-05 01:06:56,203 [root] INFO: Waiting for process 280 to exit.\n> 2020-06-05 01:06:57,234 [root] INFO: Waiting for process 280 to exit.\n> 2020-06-05 01:06:58,234 [lib.api.process] ERROR: Failed to terminate\n> process with pid 280.\n> 2020-06-05 01:06:58,265 [root] INFO: Waiting for process 280 to exit.\n> 2020-06-05 01:06:59,328 [lib.api.process] ERROR: Failed to terminate\n> process with pid 280.\n> 2020-06-05 01:06:59,328 [root] INFO: Waiting for process 280 to exit.\n> 2020-06-05 01:07:00,328 [lib.api.process] ERROR: Failed to terminate\n> process with pid 280.\n> 2020-06-05 01:07:00,343 [root] INFO: Waiting for process 280 to exit.\n> 2020-06-05 01:07:01,343 [lib.api.process] ERROR: Failed to terminate\n> process with pid 280.\n> 2020-06-05 01:07:01,343 [root] INFO: Waiting for process 280 to exit.\n> 2020-06-05 01:07:02,375 [lib.api.process] ERROR: Failed to terminate\n> process with pid 280.\n> 2020-06-05 01:07:02,375 [root] INFO: Waiting for process 280 to exit.\n> 2020-06-05 01:07:03,375 [lib.api.process] ERROR: Failed to terminate\n> process with pid 280.\n> 2020-06-05 01:07:03,390 [root] INFO: Waiting for process 280 to exit.\n> 2020-06-05 01:07:04,406 [lib.api.process] ERROR: Failed to terminate\n> process with pid 280.\n> 2020-06-05 01:07:04,437 [root] INFO: Waiting for process 280 to exit.\n> 2020-06-05 01:07:05,453 [lib.api.process] ERROR: Failed to terminate\n> process with pid 280.\n> 2020-06-05 01:07:05,453 [root] INFO: Waiting for process 280 to exit.\n> 2020-06-05 01:07:06,453 [lib.api.process] ERROR: Failed to terminate\n> process with pid 280.\n> 2020-06-05 01:07:06,453 [root] INFO: Waiting for process 280 to exit.\n> 2020-06-05 01:07:07,468 [lib.api.process] ERROR: Failed to terminate\n> process with pid 280.\n> 2020-06-05 01:07:07,484 [root] INFO: Waiting for process 280 to exit.\n> 2020-06-05 01:07:08,500 [lib.api.process] ERROR: Failed to terminate\n> process with pid 280.\n> 2020-06-05 01:07:08,515 [root] INFO: Waiting for process 280 to exit.\n> 2020-06-05 01:07:09,531 [lib.api.process] ERROR: Failed to terminate\n> process with pid 280.\n> 2020-06-05 01:07:09,531 [root] INFO: Waiting for process 280 to exit.\n> 2020-06-05 01:07:10,531 [lib.api.process] ERROR: Failed to terminate\n> process with pid 280.\n> 2020-06-05 01:07:10,546 [root] INFO: Waiting for process 280 to exit.\n> 2020-06-05 01:07:11,546 [lib.api.process] ERROR: Failed to terminate\n> process with pid 280.\n> 2020-06-05 01:07:11,546 [root] INFO: Waiting for process 280 to exit.\n> 2020-06-05 01:07:12,546 [lib.api.process] ERROR: Failed to terminate\n> process with pid 280.\n> 2020-06-05 01:07:12,546 [root] INFO: Waiting for process 280 to exit.\n> 2020-06-05 01:07:13,562 [lib.api.process] ERROR: Failed to terminate\n> process with pid 280.\n> 2020-06-05 01:07:13,578 [root] INFO: Waiting for process 280 to exit.\n> 2020-06-05 01:07:14,578 [lib.api.process] ERROR: Failed to terminate\n> process with pid 280.\n> 2020-06-05 01:07:14,593 [root] INFO: Waiting for process 280 to exit.\n> 2020-06-05 01:07:15,593 [lib.api.process] ERROR: Failed to terminate\n> process with pid 280.\n> 2020-06-05 01:07:15,609 [root] INFO: Waiting for process 280 to exit.\n> 2020-06-05 01:07:16,625 [lib.api.process] ERROR: Failed to terminate\n> process with pid 280.\n> 2020-06-05 01:07:16,625 [root] INFO: Waiting for process 280 to exit.\n> 2020-06-05 01:07:17,625 [lib.api.process] ERROR: Failed to terminate\n> process with pid 280.\n> 2020-06-05 01:07:17,640 [root] INFO: Waiting for process 280 to exit.\n> 2020-06-05 01:07:18,640 [lib.api.process] ERROR: Failed to terminate\n> process with pid 280.\n> 2020-06-05 01:07:18,640 [root] INFO: Waiting for process 280 to exit.\n> 2020-06-05 01:07:19,640 [lib.api.process] ERROR: Failed to terminate\n> process with pid 280.\n> 2020-06-05 01:07:19,640 [root] INFO: Waiting for process 280 to exit.\n> 2020-06-05 01:07:20,640 [lib.api.process] ERROR: Failed to terminate\n> process with pid 280.\n> 2020-06-05 01:07:20,640 [root] INFO: Waiting for process 280 to exit.\n> 2020-06-05 01:07:21,656 [lib.api.process] ERROR: Failed to terminate\n> process with pid 280.\n> 2020-06-05 01:07:21,656 [root] INFO: Waiting for process 280 to exit.\n> 2020-06-05 01:07:22,671 [lib.api.process] ERROR: Failed to terminate\n> process with pid 280.\n> 2020-06-05 01:07:22,687 [root] INFO: Waiting for process 280 to exit.\n> 2020-06-05 01:07:23,687 [lib.api.process] ERROR: Failed to terminate\n> process with pid 280.\n> 2020-06-05 01:07:23,687 [root] INFO: Waiting for process 280 to exit.\n> 2020-06-05 01:07:24,703 [lib.api.process] ERROR: Failed to terminate\n> process with pid 280.\n> 2020-06-05 01:07:24,703 [root] INFO: Waiting for process 280 to exit.\n> 2020-06-05 01:07:25,718 [lib.api.process] ERROR: Failed to terminate\n> process with pid 280.\n> 2020-06-05 01:07:25,750 [root] INFO: Waiting for process 280 to exit.\n> 2020-06-05 01:07:26,750 [lib.api.process] ERROR: Failed to terminate\n> process with pid 280.\n> 2020-06-05 01:07:26,750 [root] INFO: Waiting for process 280 to exit.\n> 2020-06-05 01:07:27,765 [lib.api.process] ERROR: Failed to terminate\n> process with pid 280.\n> 2020-06-05 01:07:27,765 [root] INFO: Waiting for process 280 to exit.\n>\n> \u2014\n> You are receiving this because you are subscribed to this thread.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/209>, or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH34LRCV5WQQOQ647RJ3RVBIERANCNFSM4NTEULTA>\n> .\n>\n\nComment: Further details: works with cuckoo v2.0.7 with 32 and 64 bit Win7 guests. Other zipped .exe files execute and generate reports properly with this instance of Capev2. Max submission size increased to 1GB in cape configs. \r\n\r\nI'm noticing a trend where larger submissions (.exe) report the same error (i.e. status = reported, The specified analysis does not exist. This also happens when URLs are submitted, but I considered it to be an unrelated issue until now.  \r\n\nComment: errors that you reported is due to bytes vs string aka py3, so that normal that it works in cuckoo which is py2 only, thanks for file im gonna try to reproduce it\nComment: should be fixed now, you can regenerate analysis with `utils/process.py -r <ID_HERE>` was very fancy bug, that is due to cert problem, but fixed, so please test\nComment: It works! Thanks very much for the timely assistance! \nComment: Thanls fpr reporting this :)\n\nEl s\u00e1b., 6 jun. 2020 1:15, Matthew Malon <notifications@github.com>\nescribi\u00f3:\n\n> Closed #209 <https://github.com/kevoreilly/CAPEv2/issues/209>.\n>\n> \u2014\n> You are receiving this because you commented.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/209#event-3413664106>, or\n> unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH323AV6RVBHZYWCCMU3RVF37JANCNFSM4NTEULTA>\n> .\n>\n",
+  "Title: Update js.py\nBody: ",
+  "Title: Update Cobalt Beacon config parser\nBody: ",
+  "Title: Processing log error, No Module Named 'PIL'\nBody: Hi folks!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ x] I am running the latest version\r\n- [x ] I checked the documentation and found no answer\r\n- [x ] I checked to make sure that this issue has not already been filed\r\n- [x ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nScreenshots to be taken during processing and analysis\r\n\r\n# Current Behavior\r\n\r\nThere are currently no screenshots being taken on any samples.  Analysis of the log shows the following\r\n2020-05-19 13:58:32,537 [lib.api.screenshot] DEBUG: Importing 'math'\r\n2020-05-19 13:58:32,555 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageChops'\r\n2020-05-19 13:58:32,555 [lib.api.screenshot] ERROR: No module named 'PIL'\r\n\r\nWhen I run various imports such as 'import PIL' from the python3 console I receive no errors but for some reason it doesn't work during analysis. I have pillow and all prerequisites installed as far as I know.\r\n\r\nAny help would be appreciated. \r\n\nComment: hello weird, what version of `pillow` did you instal?\nComment: My apologies. I have it working now, which is what usually happens after I post about it lol. I did not actually have Pillow properly installed on the VM guest just the host. Once I did that it works like a charm.\nComment: pillow is modern fork of pil :), glad it working",
+  "Title: Update _office.html\nBody: ",
+  "Title: Start results in collapsed state\nBody: ",
+  "Title: Fix race conditions in Proxmox and our module\nBody: Hi,\r\n\r\nhere's the latest changes from my PR against cuckoo (cuckoosandbox/cuckoo#2723), tested and found to be working with current master. Thanks for adding it here! :)\r\n\r\nVMs sometimes remain locked for some seconds after a task completed.\r\nThey will get stuck in that state if another operation is attempted. So\r\nquery the current VM status to extract the lock status to continue\r\nwaiting for it to disappear.\r\n\r\nAlso, our machinery module was carrying internal state which got\r\ncorrupted under load. Switch to local variables throughout.\r\n\nComment: thanks a lot for update ",
+  "Title: Bring back dropped files count on tab\nBody: This was not tested :)\nComment: as we spoke in PM ;)",
+  "Title: Update community.py\nBody: Fix typo and category download logic\nComment: thanks",
+  "Title: Update packages.py\nBody: Fix typo\nComment: thanks",
+  "Title: Adds HWP package, fix MSI detection\nBody: ",
+  "Title: quick fix on community util\nBody: \nComment: ajajaj tanto borrar leak que borramos el feature :D\nComment: ya ves jajaj",
+  "Title: Update misp.py\nBody: ",
+  "Title: speedup webgui behavior2ajax\nBody: ",
+  "Title: Update misp.py\nBody: Put malpedia.json into data folder if not this will be crash :(",
+  "Title: enabled param in community.py wasnt initialized\nBody: Was causing errors like:\r\n\r\nenabled.append(\"feeds\")\r\nTraceback (most recent call last):\r\n  File \"<stdin>\", line 1, in <module>\r\nNameError: name 'enabled' is not defined\r\n\r\nor\r\n\r\nTraceback (most recent call last):\r\n  File \"community.py\", line 149, in <module>\r\n    main()\r\n  File \"community.py\", line 140, in main\r\n    if not enabled:\r\nUnboundLocalError: local variable 'enabled' referenced before assignment\nComment: Gracias",
+  "Title: Filename renamed\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x ] I am running the latest version\r\n- [ x] I checked the documentation and found no answer\r\n- [ x] I checked to make sure that this issue has not already been filed\r\n\r\n# Expected Behavior\r\nFilename as the same name as the original file\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\nAfter upload the file from WEBGUI the file as rnamed and not see what is the original filename\r\n\r\n\r\n\nComment: Is the filename longer than the length of a hash? It may be renamed due to its length.\nComment: i don't see enough details, what filename? hash? that is anti analysis defeat, many modern malware uses check of length to know if that is analyzer vm or real exe, damn Kevin you fas faster \nComment: let us know if that responds your question, closing as responded",
+  "Title: Update zip.py\nBody: - Typo in predefined password: \"intefected\" rather than \"infected\"\r\n\r\n- If password is not specified in CAPE arguments, password variable is type None, which causes exception on line 48 when we use the .encode() function. Proposed solution is to set the password to blank string if none is specified.\r\n\r\nYou could also set the value to an empty string when the arguments are created... but I don't know that area of the code!\nComment: Thinking this through, I missed something:\r\n\r\n- If the user does not specify a password, this means the archive is not encrypted, the archive is encrypted with the default value (infected), or the archive is encrypted with an unknown password.\r\n\r\n- The third option is addressed through error messaging. To address the first and second points, we need to check to see if the archive is encrypted - if it is and the password is empty, then try using the default password, if not, then just extract.\nComment: Zip package is only should be used if you submit multiple files and one of them is dependency, bcz all the unarchivemwnt is done by my fork of sflock on host before submit to vm",
+  "Title: ERROR: Cannot take screenshot: screen grab failed\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nInstalled new guest with config identical to others\r\n\r\nScreenshot module is not working\r\n\r\n# What is the current behavior?\r\n\r\n2020-05-01 11:15:36,468 [modules.auxiliary.screenshots] ERROR: Cannot take screenshot: screen grab failed\r\n\r\n## Context\r\n\r\nGuest OS: Win7 x64\r\nPython 3.8.2\r\nPillow 6.2.2\r\n\r\nagent.py runs with high privileges\r\n\r\nWhen I try manually, it works:\r\n\r\nfrom PIL import ImageGrab\r\ni = ImageGrab.grab()\r\ni.savet(\"test.png\")\r\n\r\nI presume it's a permission issue but how to check deeper?\r\n\nComment: `agent.py runs with high privileges` doesnt' say to much, cmd with admin isn't the same as start on boot for example\r\n\r\ntell us how you started agent/persistence? so we can dig deeper\nComment: any update?\nComment: Sorry, I was busy for the last days... Yes, it's fixed, I found the issue.\r\nI'm launching agent.py at startup via a scheduled task. The mistake I made: I executed the task at boot time even if the user was not yet logged in. You've to schedule the task when a user logs in. Apparently, it does not find the screen in the first case.\r\nTx!\nComment: thanks for details\nComment: Hello, I have the same error and am also running the agent by scheduling the task on user logon. \nBut cannot click screenshots. \nComment: Provide more details, what hypervisor? If KVM did you enable it in aux config? If not KVM, did you install pillow? What analysis.log says about screenshots?\nComment: Thank you for the response, lowering the UAC level solved the problem for me just a few minutes ago. \nI was running Windows 7 on virtualbox with pillow 6.2.2 version and python 2.7.18. \nThe analysis.log had the same error as this thread: Cannot take screenshot: screen grab failed. \nI tried playing with versions, the way I was scheduling the agent and its settings etc. and finally lowering the UAC level to Never Notify fixed it for me. Found it from https://github.com/cuckoosandbox/cuckoo/issues/1388 this issue. \n\nComment: Omg py 2.7 that so wrong, go and read readme and docs\r\n\r\nEl vie, 25 abr 2025, 15:45, Mashal Zainab ***@***.***>\r\nescribi\u00f3:\r\n\r\n> *mashalzainab* left a comment (kevoreilly/CAPEv2#191)\r\n> <https://github.com/kevoreilly/CAPEv2/issues/191#issuecomment-2830481354>\r\n>\r\n> Thank you for the response, lowering the UAC level solved the problem for\r\n> me just a few minutes ago.\r\n> I was running Windows 7 on virtualbox with pillow 6.2.2 version and python\r\n> 2.7.18.\r\n> The analysis.log had the same error as this thread: Cannot take\r\n> screenshot: screen grab failed.\r\n> I tried playing with versions, the way I was scheduling the agent and its\r\n> settings etc. and finally lowering the UAC level to Never Notify fixed it\r\n> for me. Found it from cuckoosandbox/cuckoo#1388\r\n> <https://github.com/cuckoosandbox/cuckoo/issues/1388> this issue.\r\n>\r\n> \u2014\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/191#issuecomment-2830481354>,\r\n> or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH35PV23FSPRPFUFBUXT23I37JAVCNFSM6AAAAAB33LQLKCVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDQMZQGQ4DCMZVGQ>\r\n> .\r\n> You are receiving this because you commented.Message ID:\r\n> ***@***.***>\r\n>\r\n",
+  "Title: Enforce timeout not working\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nAnalysis should be running for 300 seconds\r\n\r\n# Current Behavior\r\n\r\nAnalyses are running mostly just for 30 seconds, then stop because of timeout\r\n\r\n## Steps to Reproduce\r\n\r\n1. I submit the samples with \r\nsudo python3 /opt/CAPEv2/utils/submit.py --timeout 300 --enforce-timeout  /home/infected/Desktop/samples/6ccb8228a8ef14fab507c10c807865c1aae84f3081fcdfb093fd980e0b181417 \r\n\r\n## Failure Logs\r\n2020-03-15 15:50:09,425 [root] INFO: Date set to: 20200429T10:27:53, timeout set to: 300\r\n2020-04-29 11:27:53,050 [root] DEBUG: Starting analyzer from: C:\\tmpm3pe2151\r\n...\r\n2020-04-29 11:27:55,894 [root] INFO: Enabled timeout enforce, running for the full timeout\r\n..\r\n2020-04-29 12:28:17,753 [root] INFO: Analysis timeout hit, terminating analysis.\r\n\r\n\r\nthanks for your help\r\n\nComment: em that can't be the same file analysis as it took 14 days, provide full log\nComment: I don't know where this first timestamp comes from, it is freshly submitted\r\n\r\n2020-03-15 15:50:16,904 [root] INFO: Date set to: 20200429T11:28:45, timeout set to: 300\r\n2020-04-29 12:28:45,020 [root] DEBUG: Starting analyzer from: C:\\tmpm3pe2151\r\n2020-04-29 12:28:45,020 [root] DEBUG: Storing results at: C:\\VgPAKdmRmo\r\n2020-04-29 12:28:45,020 [root] DEBUG: Pipe server name: \\\\.\\PIPE\\BBvZAL\r\n2020-04-29 12:28:45,020 [root] DEBUG: Python path: C:\\Users\\donald\\AppData\\Local\\Programs\\Python\\Python37-32\r\n2020-04-29 12:28:45,020 [root] DEBUG: No analysis package specified, trying to detect it automagically.\r\n2020-04-29 12:28:45,020 [root] INFO: Automatically selected analysis package \"exe\"\r\n2020-04-29 12:28:45,020 [root] DEBUG: Trying to import analysis package \"exe\"...\r\n2020-04-29 12:28:45,020 [root] DEBUG: Imported analysis package \"exe\".\r\n2020-04-29 12:28:45,020 [root] DEBUG: Trying to initialize analysis package \"exe\"...\r\n2020-04-29 12:28:45,020 [root] DEBUG: Initialized analysis package \"exe\".\r\n2020-04-29 12:28:45,030 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.browser\"...\r\n2020-04-29 12:28:45,030 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.browser\".\r\n2020-04-29 12:28:45,030 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.curtain\"...\r\n2020-04-29 12:28:45,050 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.curtain\".\r\n2020-04-29 12:28:45,050 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.digisig\"...\r\n2020-04-29 12:28:45,050 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.digisig\".\r\n2020-04-29 12:28:45,050 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.disguise\"...\r\n2020-04-29 12:28:45,060 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.disguise\".\r\n2020-04-29 12:28:45,060 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.human\"...\r\n2020-04-29 12:28:45,060 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.human\".\r\n2020-04-29 12:28:45,060 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.screenshots\"...\r\n2020-04-29 12:28:45,070 [modules.auxiliary.screenshots] DEBUG: Importing 'time'\r\n2020-04-29 12:28:45,070 [modules.auxiliary.screenshots] DEBUG: Importing 'StringIO'\r\n2020-04-29 12:28:45,070 [modules.auxiliary.screenshots] DEBUG: Importing 'Thread'\r\n2020-04-29 12:28:45,070 [modules.auxiliary.screenshots] DEBUG: Importing 'Auxiliary'\r\n2020-04-29 12:28:45,070 [modules.auxiliary.screenshots] DEBUG: Importing 'NetlogFile'\r\n2020-04-29 12:28:45,070 [modules.auxiliary.screenshots] DEBUG: Importing 'Screenshot'\r\n2020-04-29 12:28:45,070 [lib.api.screenshot] DEBUG: Importing 'math'\r\n2020-04-29 12:28:45,070 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageChops'\r\n2020-04-29 12:28:45,080 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageGrab'\r\n2020-04-29 12:28:45,080 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageDraw'\r\n2020-04-29 12:28:45,080 [modules.auxiliary.screenshots] DEBUG: Imports OK\r\n2020-04-29 12:28:45,080 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.screenshots\".\r\n2020-04-29 12:28:45,080 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.usage\"...\r\n2020-04-29 12:28:45,080 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.usage\".\r\n2020-04-29 12:28:45,090 [root] DEBUG: Trying to initialize auxiliary module \"Browser\"...\r\n2020-04-29 12:28:45,090 [root] DEBUG: Initialized auxiliary module \"Browser\".\r\n2020-04-29 12:28:45,090 [root] DEBUG: Trying to start auxiliary module \"Browser\"...\r\n2020-04-29 12:28:45,090 [root] DEBUG: Started auxiliary module Browser\r\n2020-04-29 12:28:45,090 [root] DEBUG: Trying to initialize auxiliary module \"Curtain\"...\r\n2020-04-29 12:28:45,090 [root] DEBUG: Initialized auxiliary module \"Curtain\".\r\n2020-04-29 12:28:45,090 [root] DEBUG: Trying to start auxiliary module \"Curtain\"...\r\n2020-04-29 12:28:45,090 [root] DEBUG: Started auxiliary module Curtain\r\n2020-04-29 12:28:45,090 [root] DEBUG: Trying to initialize auxiliary module \"DigiSig\"...\r\n2020-04-29 12:28:45,090 [root] DEBUG: Initialized auxiliary module \"DigiSig\".\r\n2020-04-29 12:28:45,090 [root] DEBUG: Trying to start auxiliary module \"DigiSig\"...\r\n2020-04-29 12:28:45,090 [modules.auxiliary.digisig] DEBUG: Checking for a digital signature.\r\n2020-04-29 12:28:45,130 [modules.auxiliary.digisig] DEBUG: File is not signed.\r\n2020-04-29 12:28:45,130 [modules.auxiliary.digisig] INFO: Uploading signature results to aux/DigiSig.json\r\n2020-04-29 12:28:45,130 [root] DEBUG: Started auxiliary module DigiSig\r\n2020-04-29 12:28:45,130 [root] DEBUG: Trying to initialize auxiliary module \"Disguise\"...\r\n2020-04-29 12:28:45,130 [root] DEBUG: Initialized auxiliary module \"Disguise\".\r\n2020-04-29 12:28:45,130 [root] DEBUG: Trying to start auxiliary module \"Disguise\"...\r\n2020-04-29 12:28:45,130 [root] DEBUG: Started auxiliary module Disguise\r\n2020-04-29 12:28:45,140 [root] DEBUG: Trying to initialize auxiliary module \"Human\"...\r\n2020-04-29 12:28:45,140 [root] DEBUG: Initialized auxiliary module \"Human\".\r\n2020-04-29 12:28:45,140 [root] DEBUG: Trying to start auxiliary module \"Human\"...\r\n2020-04-29 12:28:45,140 [root] DEBUG: Started auxiliary module Human\r\n2020-04-29 12:28:45,140 [root] DEBUG: Trying to initialize auxiliary module \"Screenshots\"...\r\n2020-04-29 12:28:45,140 [root] DEBUG: Initialized auxiliary module \"Screenshots\".\r\n2020-04-29 12:28:45,140 [root] DEBUG: Trying to start auxiliary module \"Screenshots\"...\r\n2020-04-29 12:28:45,140 [root] DEBUG: Started auxiliary module Screenshots\r\n2020-04-29 12:28:45,140 [root] DEBUG: Trying to initialize auxiliary module \"Usage\"...\r\n2020-04-29 12:28:45,140 [root] DEBUG: Initialized auxiliary module \"Usage\".\r\n2020-04-29 12:28:45,140 [root] DEBUG: Trying to start auxiliary module \"Usage\"...\r\n2020-04-29 12:28:45,140 [root] DEBUG: Started auxiliary module Usage\r\n2020-04-29 12:28:45,140 [root] INFO: Analyzer: Package modules.packages.exe does not specify a DLL option\r\n2020-04-29 12:28:45,140 [root] INFO: Analyzer: Package modules.packages.exe does not specify a DLL_64 option\r\n2020-04-29 12:28:45,140 [root] INFO: Analyzer: Package modules.packages.exe does not specify a loader option\r\n2020-04-29 12:28:45,150 [root] INFO: Analyzer: Package modules.packages.exe does not specify a loader_64 option\r\n2020-04-29 12:28:45,160 [lib.api.process] INFO: Successfully executed process from path \"C:\\Users\\donald\\AppData\\Local\\Temp\\21267c168ba3060158997ad4891c128348bc11816cab5891f2e1c8275ff5f487.exe\" with arguments \"\" with pid 2160\r\n2020-04-29 12:28:45,160 [lib.api.process] INFO: Monitor config for process 2160: C:\\tmpm3pe2151\\dll\\2160.ini\r\n2020-04-29 12:28:45,160 [lib.api.process] INFO: 32-bit DLL to inject is C:\\tmpm3pe2151\\dll\\PplkzR.dll, loader C:\\tmpm3pe2151\\bin\\XQiDxlc.exe\r\n2020-04-29 12:28:45,170 [root] DEBUG: ReadConfig: Successfully loaded pipe name \\\\.\\PIPE\\BBvZAL.\r\n2020-04-29 12:28:45,170 [root] DEBUG: Loader: Injecting process 2160 (thread 4064) with C:\\tmpm3pe2151\\dll\\PplkzR.dll.\r\n2020-04-29 12:28:45,170 [root] DEBUG: Process image base: 0x01360000\r\n2020-04-29 12:28:45,170 [root] DEBUG: InjectDllViaIAT: Executable is .NET, injecting via queued APC.\r\n2020-04-29 12:28:45,170 [root] DEBUG: InjectDllViaQueuedAPC: APC injection queued.\r\n2020-04-29 12:28:45,170 [root] DEBUG: Successfully injected DLL C:\\tmpm3pe2151\\dll\\PplkzR.dll.\r\n2020-04-29 12:28:45,170 [lib.api.process] INFO: Injected into suspended 32-bit process with pid 2160\r\n2020-04-29 12:28:47,193 [lib.api.process] INFO: Successfully resumed process with pid 2160\r\n2020-04-29 12:28:47,193 [root] INFO: Enabled timeout enforce, running for the full timeout.\r\n2020-04-29 12:28:47,203 [root] DEBUG: Python path set to 'C:\\Users\\donald\\AppData\\Local\\Programs\\Python\\Python37-32'.\r\n2020-04-29 12:28:47,203 [root] DEBUG: Dropped file limit defaulting to 100.\r\n2020-04-29 12:28:47,213 [root] DEBUG: CAPE initialised: 32-bit monitor loaded in process 2160 at 0x63a40000, image base 0x1360000, stack from 0x205000-0x210000\r\n2020-04-29 12:28:47,213 [root] DEBUG: Commandline: C:\\Users\\donald\\AppData\\Local\\Temp\\\"C:\\Users\\donald\\AppData\\Local\\Temp\\21267c168ba3060158997ad4891c128348bc11816cab5891f2e1c8275ff5f487.exe\".\r\n2020-04-29 12:28:47,213 [root] DEBUG: Loaded monitor into process with pid 2160\r\n2020-04-29 12:28:47,213 [root] DEBUG: set_caller_info: Adding region at 0x00110000 to caller regions list (advapi32::RegQueryInfoKeyW).\r\n2020-04-29 12:28:47,213 [root] DEBUG: set_caller_info: Adding region at 0x014C0000 to caller regions list (advapi32::RegOpenKeyExW).\r\n2020-04-29 12:28:47,213 [root] DEBUG: set_caller_info: Adding region at 0x00510000 to caller regions list (kernel32::FindFirstFileExW).\r\n2020-04-29 12:28:47,223 [root] DEBUG: set_caller_info: Adding region at 0x00230000 to caller regions list (advapi32::RegOpenKeyExW).\r\n2020-04-29 12:28:47,223 [root] DEBUG: set_caller_info: Adding region at 0x00620000 to caller regions list (ntdll::LdrLoadDll).\r\n2020-04-29 12:28:47,223 [root] DEBUG: DLL loaded at 0x6F1D0000: C:\\Windows\\SYSTEM32\\MUI\\0409\\mscorees (0x3000 bytes).\r\n2020-04-29 12:28:47,233 [root] DEBUG: DLL loaded at 0x73DA0000: C:\\Windows\\system32\\uxtheme (0x40000 bytes).\r\n2020-04-29 12:28:47,233 [root] DEBUG: DLL unloaded from 0x73DA0000.\r\n2020-04-29 12:28:47,243 [root] DEBUG: DLL loaded at 0x739F0000: C:\\Windows\\system32\\dwmapi (0x13000 bytes).\r\n2020-04-29 12:28:47,243 [root] DEBUG: DLL loaded at 0x74EE0000: C:\\Windows\\system32\\CRYPTBASE (0xc000 bytes).\r\n2020-04-29 12:28:47,243 [root] INFO: Disabling sleep skipping.\r\n2020-04-29 12:28:48,244 [modules.auxiliary.human] INFO: Found button \"OK\", clicking it\r\n2020-04-29 12:28:48,254 [root] DEBUG: DLL loaded at 0x771B0000: C:\\Windows\\system32\\OLEAUT32 (0x8f000 bytes).\r\n2020-04-29 12:28:49,246 [root] DEBUG: NtTerminateProcess hook: Attempting to dump process 2160\r\n2020-04-29 12:28:49,246 [root] DEBUG: DumpInterestingRegions: Dumping Imagebase at 0x01360000.\r\n2020-04-29 12:28:49,246 [root] DEBUG: LooksLikeSectionBoundary: Exception occured reading around suspected boundary at 0x01362000\r\n2020-04-29 12:28:49,246 [root] DEBUG: DumpImageInCurrentProcess: Attempting to dump 'raw' PE image.\r\n2020-04-29 12:28:49,246 [root] DEBUG: DumpPE: Instantiating PeParser with address: 0x01360000.\r\n2020-04-29 12:28:49,256 [root] DEBUG: DumpPE: Empty or inaccessible last section, file image seems incomplete (from 0x013A1C00 to 0x013A1E00).\r\n2020-04-29 12:28:49,256 [root] INFO: b'C:\\\\VgPAKdmRmo\\\\CAPE\\\\2160_100008908849481129342020|2160|0;?C:\\\\Users\\\\donald\\\\AppData\\\\Local\\\\Temp\\\\21267c168ba3060158997ad4891c128348bc11816cab5891f2e1c8275ff5f487.exe;?C:\\\\Users\\\\donald\\\\AppData\\\\Local\\\\Temp\\\\21267c168ba3060158997ad4891c128348bc11816cab5891f2e1'\r\n2020-04-29 12:28:49,256 [root] INFO: cape\r\n2020-04-29 12:28:49,256 [root] INFO: ('dump_file', 'C:\\\\VgPAKdmRmo\\\\CAPE\\\\2160_100008908849481129342020', b'0;?C:\\\\Users\\\\donald\\\\AppData\\\\Local\\\\Temp\\\\21267c168ba3060158997ad4891c128348bc11816cab5891f2e1c8275ff5f487.exe;?C:\\\\Users\\\\donald\\\\AppData\\\\Local\\\\Temp\\\\21267c168ba3060158997ad4891c128348bc11816cab5891f2e1', ['2160'], 'procdump')\r\n2020-04-29 12:28:49,256 [root] INFO: ('dump_file', 'C:\\\\VgPAKdmRmo\\\\CAPE\\\\2160_100008908849481129342020', '', False, 'files')\r\n2020-04-29 12:28:49,256 [root] DEBUG: DumpPE: Error: Cannot dump PE file from memory.\r\n2020-04-29 12:28:49,266 [root] DEBUG: DumpImageInCurrentProcess: Failed to dump 'raw' PE image from 0x01360000, dumping memory region.\r\n2020-04-29 12:28:49,266 [root] DEBUG: DLL unloaded from 0x77160000.\r\n2020-04-29 12:28:49,266 [root] WARNING: Unable to open termination event for pid 2160.\r\n2020-04-29 12:28:49,326 [root] DEBUG: NtTerminateProcess hook: Attempting to dump process 2160\r\n2020-04-29 12:28:49,356 [root] DEBUG: GetHookCallerBase: thread 4064 (handle 0x0), return address 0x0020FA4C, allocation base 0x00110000.\r\n2020-04-29 12:28:49,396 [root] DEBUG: DumpInterestingRegions: Dumping Imagebase at 0x01360000.\r\n2020-04-29 12:28:49,426 [root] DEBUG: LooksLikeSectionBoundary: Exception occured reading around suspected boundary at 0x01362000\r\n2020-04-29 12:28:49,456 [root] DEBUG: DumpImageInCurrentProcess: Attempting to dump 'raw' PE image.\r\n2020-04-29 12:28:49,486 [root] DEBUG: DumpPE: Instantiating PeParser with address: 0x01360000.\r\n2020-04-29 12:28:49,516 [root] DEBUG: DumpPE: Empty or inaccessible last section, file image seems incomplete (from 0x013A1C00 to 0x013A1E00).\r\n2020-04-29 12:28:49,546 [root] INFO: b'C:\\\\VgPAKdmRmo\\\\CAPE\\\\2160_191830517629501129342020|2160|0;?C:\\\\Users\\\\donald\\\\AppData\\\\Local\\\\Temp\\\\21267c168ba3060158997ad4891c128348bc11816cab5891f2e1c8275ff5f487.exe;?C:\\\\Users\\\\donald\\\\AppData\\\\Local\\\\Temp\\\\21267c168ba3060158997ad4891c128348bc11816cab5891f2e1'\r\n2020-04-29 12:28:49,546 [root] INFO: cape\r\n2020-04-29 12:28:49,546 [root] INFO: ('dump_file', 'C:\\\\VgPAKdmRmo\\\\CAPE\\\\2160_191830517629501129342020', b'0;?C:\\\\Users\\\\donald\\\\AppData\\\\Local\\\\Temp\\\\21267c168ba3060158997ad4891c128348bc11816cab5891f2e1c8275ff5f487.exe;?C:\\\\Users\\\\donald\\\\AppData\\\\Local\\\\Temp\\\\21267c168ba3060158997ad4891c128348bc11816cab5891f2e1', ['2160'], 'procdump')\r\n2020-04-29 12:28:49,546 [root] INFO: ('dump_file', 'C:\\\\VgPAKdmRmo\\\\CAPE\\\\2160_191830517629501129342020', '', False, 'files')\r\n2020-04-29 12:28:49,576 [root] DEBUG: DumpPE: Error: Cannot dump PE file from memory.\r\n2020-04-29 12:28:49,606 [root] DEBUG: DumpImageInCurrentProcess: Failed to dump 'raw' PE image from 0x01360000, dumping memory region.\r\n2020-04-29 13:29:08,883 [root] INFO: Analysis timeout hit, terminating analysis.\r\n2020-04-29 13:29:08,883 [root] INFO: Created shutdown mutex.\r\n2020-04-29 13:29:09,894 [root] INFO: Shutting down package.\r\n2020-04-29 13:29:09,894 [root] INFO: Stopping auxiliary modules.\r\n2020-04-29 13:29:09,894 [root] INFO: Finishing auxiliary modules.\r\n2020-04-29 13:29:09,894 [root] INFO: Shutting down pipe server and dumping dropped files.\r\n2020-04-29 13:29:09,894 [root] WARNING: Folder at path \"C:\\VgPAKdmRmo\\debugger\" does not exist, skip.\r\n2020-04-29 13:29:09,894 [root] INFO: Analysis completed.\nComment: that is impossible to read, use markdown code escape for log posting\nComment: ok now is much better thanks\r\n\r\n```\r\n2020-03-15 15:50:16,904 [root] INFO: Date set to: 20200429T11:28:45, timeout set to: 300\r\n2020-04-29 12:28:45,020 [root] DEBUG: Starting analyzer from: C:\\tmpm3pe2151\r\n<removed>\r\n2020-04-29 13:29:09,894 [root] INFO: Analysis completed.\r\n```\r\n\r\ni would you suggest to see your screenshots as there should be an error or something\r\n`2020-04-29 12:28:48,244 [modules.auxiliary.human] INFO: Found button \"OK\", clicking it`\nComment: I can't see anything on the screenshot and also no error when watching the window while running. It happens to most of the samples I'm running\nComment: well i would tell submit it to capesandbox.com but right now is down we waiting for person that can bring it back, try to submit sample and disable human emulation that might show you the error, apart of that right now idk\nComment: I think I found the problem - the time in the Windows VMs was too far in the past. Have now adjusted this, it seems to work now. But I will run a few more samples to check it out. I will give an update on this in few hours\nComment: ok, cape sets time as you can see first line, but let us know about your findings\nComment: I did see this first line and didn't know where this timestamp comes from, until I saw that it is the time the Windows VM is running on, so the last snapshot. Updating the date and time for my used 5 VMs solved the problem now. Tested it one VM after one, 200 samples were running smoothly now. I will close, but will update if I can found any other reason.\r\n\r\nThanks for your support\nComment: Interesting issue, the windows clock set from analyzer should care about that, let us know id you find somethig else",
+  "Title: PyMISP error: Can't add hashes to MISP event\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nIntegration with MISP (IOC push)\r\n\r\n# Current Behavior\r\n\r\nEvents are created in MISP, tags are added but no IOC added to the newly created event.\r\n\r\n# Failure Information (for bugs)\r\n\r\n```\r\n2020-04-28 04:22:45,154 [modules.reporting.misp] ERROR: Failed to generate JSON report: 'PyMISP' object has no attribute 'add_hashes'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../modules/reporting/misp.py\", line 221, in run\r\n    self.sample_hashes(results, event)\r\n  File \"/opt/CAPEv2/utils/../modules/reporting/misp.py\", line 64, in sample_hashes\r\n    self.misp.add_hashes(\r\nAttributeError: 'PyMISP' object has no attribute 'add_hashes'\r\n```\r\n\r\nMy version of pymisp is 2.4.122.\nComment: you faked one of the points, you told you are on latest, and you aren't \r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/modules/reporting/misp.py\r\n\r\n```\r\n    def sample_hashes(self, results, event):\r\n        if results.get(\"target\", {}).get(\"file\", {}):\r\n            f = results[\"target\"][\"file\"]\r\n            misp_object = MISPObject('file')\r\n            misp_object.comment = \"File submitted to CAPEv2\"\r\n            misp_object.add_attribute('filename', value=f[\"name\"], category='Payload delivery')\r\n            misp_object.add_attribute('md5', value=f[\"md5\"], category='Payload delivery')\r\n            misp_object.add_attribute('sha1', value=f[\"sha1\"], category='Payload delivery')\r\n            misp_object.add_attribute('sha256', value=f[\"sha256\"], category='Payload delivery')\r\n            misp_object.add_attribute('ssdeep', value=f[\"ssdeep\"], category='Payload delivery')\r\n            self.misp.add_object(event, misp_object)\r\n\r\n```\r\n\r\nthere is no add_hashes\nComment: Sh*t, missed this one! Sorry for this!\nComment: np :P the uniq thing that we don't have any misp setup to really test it, but at least now you can use last pymisp so that should make it easier for end user\r\n\r\nso if you see any issues let us know we will try to fix that, but this one is fully relays on community usage/reporting\nComment: @xme can you please confirm that misp integration now works fine? or there any other problems?",
+  "Title: Update rooter.py\nBody: ",
+  "Title: Suricata install with cape2.sh incomplete\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X ] I am running the latest version\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nSuricata to be installed/configured via cape2.sh cleanly.\r\n\r\n# Current Behavior\r\n\r\nSuricata is not configured completely with script, it is missing the proper 'user' variable at line 982 in suricata.yaml, had to manually place correct user here replacing '${USER}'. This was leading to issues running Suricata during analysis due to failure to connect to unix.socket and problems running suricata-update as user could not be verified. \r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\nInstall cape using  cape2.sh script, with or without changing username.\r\n\r\n## Failure Logs\r\n\r\n2020-04-23 11:50:16,204 [modules.processing.suricata] WARNING: Failed to connect to socket and send command /var/run/suricata/suricata-command.socket: [Errno 2] No such file or directory\r\n\r\n23/4/2020 -- 11:56:43 - <Info> -- Writing rules to /var/lib/suricata/rules/suricata.rules: total: 65607; enabled: 52328; added: 53; removed 54; modified: 1926\r\n23/4/2020 -- 11:56:44 - <Info> -- Testing with suricata -T.\r\n23/4/2020 -- 11:56:44 - <Error> -- [ERRCODE: SC_ERR_UID_FAILED(155)] - unable to get the user ID, check if user exist!!\r\n23/4/2020 -- 11:56:44 - <Error> -- Suricata test failed, aborting.\r\n23/4/2020 -- 11:56:44 - <Error> -- Restoring previous rules.\r\n\r\ncape@fallout:/home/xeck29x$ LD_LIBRARY_PATH=/usr/local/lib /usr/bin/suricata -c /etc/suricata/suricata.yaml --unix-socket -k none --user cape --group cape\r\n[9894] 23/4/2020 -- 12:25:34 - (suricata.c:1084) <Notice> (LogVersion) -- This is Suricata version 5.0.2 RELEASE running in SYSTEM mode\r\n[9894] 23/4/2020 -- 12:25:34 - (util-privs.c:90) <Error> (SCDropMainThreadCaps) -- [ERRCODE: SC_ERR_CHANGING_CAPS_FAILED(157)] - capng_change_id for main thread failed\r\n\r\nSeems to be a permission issue as Suricata runs fine under sudo, seems related to https://redmine.openinfosecfoundation.org/issues/2366.\nComment: suricata should be running as root user, if you check in script i had that for supervisor, but i didn't write systemd for that, so that isn't issue, you just need to start as root, i will add systmed file for that later\r\n\r\nand don't get me wrong, but this script is aimed to help users to install base, but it won't be a silver bullet for everything, as that is external tool and can change in any moment, so users should finish/adjust some parts of external configs\nComment: example\r\n```\r\nsudo bash -c \"mkdir /var/run/suricata; chown cape:cape /var/run/suricata; LD_LIBRARY_PATH=/usr/local/lib /usr/bin/suricata -c /etc/suricata/suricata.yaml --unix-socket -k none --user cape --group cape\"\r\n```\nComment: i have updated suricata systemd and instalation(conf update)\nComment: when systemd starts suricata with:\r\n```yaml\r\nrun-as:\r\n    user: cape\r\n    group: cape\r\n```\r\nthe service fails:\r\n```\r\n24/3/2022 -- 01:29:03 - <Info> - Use pid file /tmp/suricata.pid from config file.\r\n24/3/2022 -- 01:29:03 - <Error> - [ERRCODE: SC_ERR_FATAL(171)] - capng_change_id for main thread failed\r\n```\r\n\r\nIf I comment that block in suricata.yml - the service starts OK, but then the permissions for the socket file are `0660` and cape user is not able to knock in it.\nComment: It's definetely works if I remove `CapabilityBoundingSet` line in the suricata's systemd unit file.\nComment: thanks for feedback Andrii, i will try to see if there is a way to set socket permission from systemd\nComment: @zentavr can you verify that you had this?\r\n```\r\ngroupadd pcap\r\n    usermod -a -G pcap ${USER}\r\n    chgrp pcap /usr/sbin/tcpdump\r\n    setcap cap_net_raw,cap_net_admin=eip /usr/sbin/tcpdump\r\n```\r\n\r\nthat enabled that CapabilityBoundingSet\nComment: @doomedraven, yes, I\u2019ve done that. The problem is not in tcpdump (actually it was another problem before I\u2019d enabled that), but the problem was that suricata dies when systemd wanted to start it.\r\n\r\nso in order to fix the issue:\r\n1. I\u2019ve removed that line in systemd unit definition\r\n2. Removed socket file if there was any\r\n3. Restarted systemd unit service (suricata is up, socket is there with 0660 permissions and correct user:group).\r\n \r\n\nComment: thanks, i will try to upgrade my suricata and check, maybe add setcap to suricata as we did for tcpdump would do, i will dig into that, thanks again for feedback\nComment: @doomedraven maybe you can play with [systemd socket](https://www.freedesktop.org/software/systemd/man/systemd.socket.html) unit, I\u2019ve done that long time ago when tried to connect gunicorn and nginx over socket file.\nComment: @doomedraven the trick you mentioned with setpcap is needed for cape process itself in order to dump the traffic of the VM. If you do not set that for tcpdump - cape process creates zombie tcpdump process and no .pcap file appears in the analysis catalog.\nComment: i just checked my sysmted, and i had commented `CapabilityBoundingSet=CAP_NET_ADMIN`, going to update install script and once i have time i will check, as do mod as for tcpdump doesn't do a trick\nComment: https://github.com/doomedraven/Tools/commit/36b81c935dae1105f67d03cc0af2ac3ae79be94d\nComment: Thanks, that is the fun of software updates. I will check after PTO\n\nEl jue., 24 mar. 2022 1:22, Andrii Miroshnychenko ***@***.***>\nescribi\u00f3:\n\n> It's definetely works if I remove CapabilityBoundingSet line in the\n> suricata's systemd unit file.\n>\n> \u2014\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/187#issuecomment-1076974465>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH354FROHMNFPHS5F3U3VBO7WLANCNFSM4MPBJGAA>\n> .\n> You are receiving this because you modified the open/close state.Message\n> ID: ***@***.***>\n>\n",
+  "Title: chg: Bump MISP reporting module\nBody: Note that I didn't test it at all, but it should work fine, and fix #184.\r\n\nComment: cool i will ensure the testing, thank you a lot, i had problem with named attributes but it looks like it was much more easier thay it was",
+  "Title: upload max size\nBody: Using CAPE fresh installation v2\r\n\r\nDuring sample analysis I got several warning messages in cuckoo.log file related to max upload size \r\n\r\n| OS version       | Ubuntu 18.04, Windows 7 x86, windows 10x64\r\n\r\n## Failure Logs\r\n\r\n2020-04-23 00:06:00,215 [root] DEBUG: Task #16 uploaded file length: 1310720\r\n2020-04-23 00:06:03,784 [lib.cuckoo.core.guest] DEBUG: Windows7_32bit_infected: analysis #16 still processing\r\n2020-04-23 00:06:05,219 [root] DEBUG: Task #16: File upload for b'files/e4dbda3f1c564a0c72519ff24abe4506b8f890a33ae918bb1dc3e9c4580f3d3c'\r\n2020-04-23 00:06:05,444 [root] WARNING: Uploaded file length larger than upload_max_size, stopping upload.\r\n2020-04-23 00:06:06,105 [root] DEBUG: Task #16 uploaded file length: 100485775\r\n2020-04-23 00:06:08,850 [lib.cuckoo.core.guest] DEBUG: Windows7_32bit_infected: analysis #16 still processing\r\n2020-04-23 00:06:10,754 [root] DEBUG: Task #16: File upload for b'files/342927a1cf9c912553b4042fda8d0d118f5ad9bff44666cc82035c089214c437'\r\n2020-04-23 00:06:11,009 [root] WARNING: Uploaded file length larger than upload_max_size, stopping upload.\r\n\r\n\nComment: become familiar with configs, and specialy with cuckoo.conf https://github.com/kevoreilly/CAPEv2/blob/master/conf/cuckoo.conf#L90\r\n\r\nisn't so hard to do search in repo ;) ",
+  "Title: Relying on a very outdated version of PyMISP\nBody: Someone mentioned an issue related to PyMISP using CAPEv2 and it seems that you're relying on an extremely outdated version of the API: most of the methods you're using have been spitting deprecation warning for over a year by now, and the PyMISP packages released after 2020-01-01 do not support them anymore at all.\r\n\r\nI will try to provide a PR (if you're interested), but as I'm not using CAPEv2, I cannot promise the accuracy of the code.\nComment: hello @Rafiot, thanks, ya pymisp in my memory is always broken in cuckoo/cuckoo-modified/cape/capev2, is why i hardcoded a pymisp version, due to deprication of X, so i just stopped to follow and try to keep it up to date, if you can do that would be amazing as it would make a lot of people happy to be able to use latest pymisp, and i have few testers that have capev2 integrated with their misp so they can test it\nComment: i can fix code accuracy, what I just need is the correct pymisp calls to register the data\nComment: thanks again\nComment: Thank you Rafiot!\nComment: You're welcome, I hope it works fine! ",
+  "Title: Analysis finishes but never completes processing/reporting\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nAnalysis submissions complete processing and a report is produced\r\n\r\n# Current Behavior\r\n\r\nAnalysis procedures complete, processing appears to never finish and thus no report created.\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Submit analysis\r\n2. Wait....\r\n3. Wait some more...\r\n4. Kill cuckoo\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| OS version       | Ubuntu 18.04.4 LTS\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\r\n/opt/CAPEv2$ python3 cuckoo.py\r\n\r\n2020-04-22 08:23:21,091 [lib.cuckoo.core.scheduler] INFO: Using \"kvm\" machine manager with max_analysis_count=0, max_machines_count=10, and max_vmstartup_count=5\r\n2020-04-22 08:23:21,245 [lib.cuckoo.common.abstracts] DEBUG: Getting status for cuckoo2\r\n2020-04-22 08:23:21,263 [lib.cuckoo.core.scheduler] INFO: Loaded 1 machine/s\r\n2020-04-22 08:23:21,284 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks.\r\n2020-04-22 08:26:19,482 [lib.cuckoo.core.scheduler] DEBUG: Task #6: Processing task\r\n2020-04-22 08:26:19,496 [lib.cuckoo.core.scheduler] INFO: Task #6: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_ptq1bzyw/putin.vbs'\r\n2020-04-22 08:26:19,530 [lib.cuckoo.core.scheduler] INFO: Task #6: acquired machine cuckoo2 (label=cuckoo2, platform=windows)\r\n2020-04-22 08:26:19,566 [root] DEBUG: Now tracking machine 192.168.122.52 for task #6\r\n2020-04-22 08:26:19,589 [lib.cuckoo.common.abstracts] DEBUG: Starting machine cuckoo2\r\n2020-04-22 08:26:19,589 [lib.cuckoo.common.abstracts] DEBUG: Getting status for cuckoo2\r\n2020-04-22 08:26:19,625 [lib.cuckoo.common.abstracts] DEBUG: Using snapshot snapshot1 for virtual machine cuckoo2\r\n2020-04-22 08:26:27,138 [lib.cuckoo.common.abstracts] DEBUG: Getting status for cuckoo2\r\n2020-04-22 08:26:27,262 [lib.cuckoo.core.scheduler] INFO: Enabled route 'internet'\r\n2020-04-22 08:26:27,298 [modules.auxiliary.sniffer] INFO: Started sniffer with PID 18848 (interface=virbr0, host=192.168.122.52, dump path=/opt/CAPEv2/storage/analyses/6/dump.pcap)\r\n2020-04-22 08:26:27,299 [lib.cuckoo.core.plugins] DEBUG: Started auxiliary module: Sniffer\r\n2020-04-22 08:26:27,321 [lib.cuckoo.core.guest] INFO: Starting analysis #6 on guest (id=cuckoo2, ip=192.168.122.52)\r\n2020-04-22 08:26:27,347 [lib.cuckoo.core.guest] INFO: Guest is running CAPE Agent 0.11 (id=cuckoo2, ip=192.168.122.52)\r\n2020-04-22 08:26:27,439 [lib.cuckoo.core.guest] DEBUG: Uploading analyzer to guest (id=cuckoo2, ip=192.168.122.52, size=19276943)\r\n2020-04-22 08:26:29,302 [lib.cuckoo.core.guest] INFO: Uploading support files to guest (id=cuckoo2, ip=192.168.122.52)\r\n2020-04-22 08:26:29,943 [root] DEBUG: Task #6: live log analysis.log initialized.\r\n2020-04-22 08:26:30,412 [root] DEBUG: Task #6: File upload for b'aux/DigiSig.json'\r\n2020-04-22 08:26:30,413 [root] DEBUG: Task #6 uploaded file length: 196\r\n2020-04-22 08:26:32,603 [root] DEBUG: Task #6 is sending a BSON stream. For pid 3012\r\n2020-04-22 08:26:34,395 [lib.cuckoo.core.guest] DEBUG: cuckoo2: analysis #6 still processing\r\n2020-04-22 08:26:39,307 [root] DEBUG: Task #6 is sending a BSON stream. For pid 604\r\n2020-04-22 08:26:39,458 [lib.cuckoo.core.guest] DEBUG: cuckoo2: analysis #6 still processing\r\n2020-04-22 08:26:43,524 [root] DEBUG: Task #6 is sending a BSON stream. For pid 2792\r\n2020-04-22 08:26:44,526 [lib.cuckoo.core.guest] DEBUG: cuckoo2: analysis #6 still processing\r\n2020-04-22 08:26:47,166 [root] DEBUG: Task #6: File upload for b'procdump/b894beab2eb9b430d3b9d84e9a9040e9eaed2fde059959eb066b23e9e13cbacc'\r\n2020-04-22 08:26:47,170 [root] DEBUG: Task #6 uploaded file length: 141824\r\n2020-04-22 08:26:49,584 [lib.cuckoo.core.guest] DEBUG: cuckoo2: analysis #6 still processing\r\n2020-04-22 08:26:54,668 [lib.cuckoo.core.guest] DEBUG: cuckoo2: analysis #6 still processing\r\n2020-04-22 08:26:59,721 [lib.cuckoo.core.guest] DEBUG: cuckoo2: analysis #6 still processing\r\n2020-04-22 08:27:04,775 [lib.cuckoo.core.guest] DEBUG: cuckoo2: analysis #6 still processing\r\n2020-04-22 08:27:09,821 [lib.cuckoo.core.guest] DEBUG: cuckoo2: analysis #6 still processing\r\n2020-04-22 08:27:14,861 [lib.cuckoo.core.guest] DEBUG: cuckoo2: analysis #6 still processing\r\n2020-04-22 08:27:19,904 [lib.cuckoo.core.guest] DEBUG: cuckoo2: analysis #6 still processing\r\n2020-04-22 08:27:24,947 [lib.cuckoo.core.guest] DEBUG: cuckoo2: analysis #6 still processing\r\n2020-04-22 08:27:29,988 [lib.cuckoo.core.guest] DEBUG: cuckoo2: analysis #6 still processing\r\n2020-04-22 08:27:35,027 [lib.cuckoo.core.guest] DEBUG: cuckoo2: analysis #6 still processing\r\n2020-04-22 08:27:38,275 [root] DEBUG: Task #6 is sending a BSON stream. For pid 2676\r\n2020-04-22 08:27:38,759 [root] DEBUG: Task #6: File upload for b'procdump/986fc4dc37362068cf5bdd0b8560fe94aa95619240d72e7126d17369ef1d6bf4'\r\n2020-04-22 08:27:38,770 [root] DEBUG: Task #6 uploaded file length: 9728\r\n2020-04-22 08:27:40,080 [lib.cuckoo.core.guest] DEBUG: cuckoo2: analysis #6 still processing\r\n2020-04-22 08:27:45,138 [lib.cuckoo.core.guest] DEBUG: cuckoo2: analysis #6 still processing\r\n2020-04-22 08:27:50,177 [lib.cuckoo.core.guest] DEBUG: cuckoo2: analysis #6 still processing\r\n2020-04-22 08:27:55,218 [lib.cuckoo.core.guest] DEBUG: cuckoo2: analysis #6 still processing\r\n2020-04-22 08:28:00,261 [lib.cuckoo.core.guest] DEBUG: cuckoo2: analysis #6 still processing\r\n2020-04-22 08:28:05,317 [lib.cuckoo.core.guest] DEBUG: cuckoo2: analysis #6 still processing\r\n2020-04-22 08:28:10,360 [lib.cuckoo.core.guest] DEBUG: cuckoo2: analysis #6 still processing\r\n2020-04-22 08:28:15,398 [lib.cuckoo.core.guest] DEBUG: cuckoo2: analysis #6 still processing\r\n2020-04-22 08:28:20,439 [lib.cuckoo.core.guest] DEBUG: cuckoo2: analysis #6 still processing\r\n2020-04-22 08:28:25,479 [lib.cuckoo.core.guest] DEBUG: cuckoo2: analysis #6 still processing\r\n2020-04-22 08:28:30,522 [lib.cuckoo.core.guest] DEBUG: cuckoo2: analysis #6 still processing\r\n2020-04-22 08:28:35,562 [lib.cuckoo.core.guest] DEBUG: cuckoo2: analysis #6 still processing\r\n2020-04-22 08:28:40,602 [lib.cuckoo.core.guest] DEBUG: cuckoo2: analysis #6 still processing\r\n2020-04-22 08:28:45,642 [lib.cuckoo.core.guest] DEBUG: cuckoo2: analysis #6 still processing\r\n2020-04-22 08:28:50,682 [lib.cuckoo.core.guest] DEBUG: cuckoo2: analysis #6 still processing\r\n2020-04-22 08:28:55,720 [lib.cuckoo.core.guest] DEBUG: cuckoo2: analysis #6 still processing\r\n2020-04-22 08:29:00,757 [lib.cuckoo.core.guest] DEBUG: cuckoo2: analysis #6 still processing\r\n2020-04-22 08:29:05,808 [lib.cuckoo.core.guest] DEBUG: cuckoo2: analysis #6 still processing\r\n2020-04-22 08:29:10,849 [lib.cuckoo.core.guest] DEBUG: cuckoo2: analysis #6 still processing\r\n2020-04-22 08:29:15,893 [lib.cuckoo.core.guest] DEBUG: cuckoo2: analysis #6 still processing\r\n2020-04-22 08:29:20,928 [lib.cuckoo.core.guest] DEBUG: cuckoo2: analysis #6 still processing\r\n2020-04-22 08:29:25,975 [lib.cuckoo.core.guest] DEBUG: cuckoo2: analysis #6 still processing\r\n2020-04-22 08:29:31,025 [lib.cuckoo.core.guest] DEBUG: cuckoo2: analysis #6 still processing\r\n2020-04-22 08:29:36,066 [lib.cuckoo.core.guest] DEBUG: cuckoo2: analysis #6 still processing\r\n2020-04-22 08:29:41,105 [lib.cuckoo.core.guest] DEBUG: cuckoo2: analysis #6 still processing\r\n2020-04-22 08:29:46,141 [lib.cuckoo.core.guest] DEBUG: cuckoo2: analysis #6 still processing\r\n2020-04-22 08:29:51,177 [lib.cuckoo.core.guest] DEBUG: cuckoo2: analysis #6 still processing\r\n2020-04-22 08:29:52,926 [root] DEBUG: Task #6: File upload for b'procdump/53193158565e10c76c466347ff47bedc67c2797ae0cf3351794cb471224411b6'\r\n2020-04-22 08:29:52,932 [root] DEBUG: Task #6 uploaded file length: 26624\r\n2020-04-22 08:29:54,087 [root] DEBUG: Task #6 had connection reset for <Context for b'BSON'>\r\n2020-04-22 08:29:54,088 [root] DEBUG: Task #6 had connection reset for <Context for b'BSON'>\r\n2020-04-22 08:29:54,088 [root] DEBUG: Task #6 had connection reset for <Context for b'LOG'>\r\n2020-04-22 08:29:54,089 [root] DEBUG: Task #6 had connection reset for <Context for b'BSON'>\r\n2020-04-22 08:29:54,089 [root] DEBUG: Task #6 had connection reset for <Context for b'BSON'>\r\n2020-04-22 08:29:54,198 [lib.cuckoo.core.guest] INFO: cuckoo2: analysis completed successfully\r\n2020-04-22 08:29:54,215 [lib.cuckoo.core.plugins] DEBUG: Stopped auxiliary module: Sniffer\r\n2020-04-22 08:29:54,215 [lib.cuckoo.common.abstracts] DEBUG: Stopping machine cuckoo2\r\n2020-04-22 08:29:54,215 [lib.cuckoo.common.abstracts] DEBUG: Getting status for cuckoo2\r\n2020-04-22 08:29:54,834 [lib.cuckoo.common.abstracts] DEBUG: Getting status for cuckoo2\r\n2020-04-22 08:29:54,874 [root] DEBUG: Stopped tracking machine 192.168.122.52 for task #6\r\n2020-04-22 08:29:54,874 [lib.cuckoo.core.rooter] CRITICAL: Unable to passthrough root command as we're unable to connect to the rooter unix socket: [Errno 13] Permission denied.\r\nCRITICAL lib.cuckoo.core.rooter: Unable to passthrough root command as we're unable to connect to the rooter unix socket: [Errno 13] Permission denied.\r\n2020-04-22 08:29:54,877 [lib.cuckoo.core.scheduler] INFO: Disabled route 'internet'\r\n2020-04-22 08:29:54,878 [lib.cuckoo.core.rooter] CRITICAL: Unable to passthrough root command as we're unable to connect to the rooter unix socket: [Errno 13] Permission denied.\r\nCRITICAL lib.cuckoo.core.rooter: Unable to passthrough root command as we're unable to connect to the rooter unix socket: [Errno 13] Permission denied.\r\n2020-04-22 08:29:54,908 [lib.cuckoo.core.scheduler] DEBUG: Task #6: Released database task with status True\r\n2020-04-22 08:29:54,908 [lib.cuckoo.core.scheduler] INFO: Task #6: analysis procedure completed\r\n^^^^ Will sit here indefinitely\r\n\r\n/opt/CAPEv2$ sudo python3 ./utils/rooter.py -v -g xeck29x\r\n2020-04-22 08:23:21,041 [cuckoo-rooter] INFO: Processing command: forward_drop  \r\n2020-04-22 08:23:21,042 [cuckoo-rooter] DEBUG: ('/sbin/iptables', '-P', 'FORWARD', 'DROP')\r\n2020-04-22 08:23:21,047 [cuckoo-rooter] INFO: Processing command: state_disable  \r\n2020-04-22 08:23:21,047 [cuckoo-rooter] DEBUG: ('/sbin/iptables', '-D', 'INPUT', '-m', 'state', '--state', 'ESTABLISHED,RELATED', '-j', 'ACCEPT')\r\n2020-04-22 08:23:21,052 [cuckoo-rooter] INFO: Processing command: state_enable  \r\n2020-04-22 08:23:21,052 [cuckoo-rooter] DEBUG: ('/sbin/iptables', '-A', 'INPUT', '-m', 'state', '--state', 'ESTABLISHED,RELATED', '-j', 'ACCEPT')\r\n2020-04-22 08:23:21,057 [cuckoo-rooter] INFO: Processing command: nic_available eno1 \r\n2020-04-22 08:23:21,061 [cuckoo-rooter] INFO: Processing command: rt_available main \r\n2020-04-22 08:23:21,075 [cuckoo-rooter] INFO: Processing command: disable_nat eno1 \r\n2020-04-22 08:23:21,075 [cuckoo-rooter] DEBUG: ('/sbin/iptables', '-t', 'nat', '-D', 'POSTROUTING', '-o', 'eno1', '-j', 'MASQUERADE')\r\n2020-04-22 08:23:21,079 [cuckoo-rooter] INFO: Processing command: enable_nat eno1 \r\n2020-04-22 08:23:21,079 [cuckoo-rooter] DEBUG: ('/sbin/iptables', '-t', 'nat', '-A', 'POSTROUTING', '-o', 'eno1', '-j', 'MASQUERADE')\r\n2020-04-22 08:23:21,275 [cuckoo-rooter] INFO: Processing command: forward_disable virbr0 eno1 192.168.122.52 \r\n2020-04-22 08:23:21,275 [cuckoo-rooter] DEBUG: ('/sbin/iptables', '-D', 'FORWARD', '-i', 'virbr0', '-o', 'eno1', '--source', '192.168.122.52', '-j', 'ACCEPT')\r\n2020-04-22 08:23:21,279 [cuckoo-rooter] DEBUG: ('/sbin/iptables', '-D', 'FORWARD', '-i', 'eno1', '-o', 'virbr0', '--destination', '192.168.122.52', '-j', 'ACCEPT')\r\n2020-04-22 08:25:58,064 [cuckoo-rooter] INFO: Processing command: forward_drop  \r\n2020-04-22 08:25:58,064 [cuckoo-rooter] DEBUG: ('/sbin/iptables', '-P', 'FORWARD', 'DROP')\r\n2020-04-22 08:25:58,069 [cuckoo-rooter] INFO: Processing command: state_disable  \r\n2020-04-22 08:25:58,069 [cuckoo-rooter] DEBUG: ('/sbin/iptables', '-D', 'INPUT', '-m', 'state', '--state', 'ESTABLISHED,RELATED', '-j', 'ACCEPT')\r\n2020-04-22 08:25:58,072 [cuckoo-rooter] DEBUG: ('/sbin/iptables', '-D', 'INPUT', '-m', 'state', '--state', 'ESTABLISHED,RELATED', '-j', 'ACCEPT')\r\n2020-04-22 08:25:58,077 [cuckoo-rooter] INFO: Processing command: state_enable  \r\n2020-04-22 08:25:58,078 [cuckoo-rooter] DEBUG: ('/sbin/iptables', '-A', 'INPUT', '-m', 'state', '--state', 'ESTABLISHED,RELATED', '-j', 'ACCEPT')\r\n2020-04-22 08:25:58,083 [cuckoo-rooter] INFO: Processing command: nic_available eno1 \r\n2020-04-22 08:25:58,088 [cuckoo-rooter] INFO: Processing command: rt_available main \r\n2020-04-22 08:25:58,093 [cuckoo-rooter] INFO: Processing command: disable_nat eno1 \r\n2020-04-22 08:25:58,093 [cuckoo-rooter] DEBUG: ('/sbin/iptables', '-t', 'nat', '-D', 'POSTROUTING', '-o', 'eno1', '-j', 'MASQUERADE')\r\n2020-04-22 08:25:58,097 [cuckoo-rooter] INFO: Processing command: enable_nat eno1 \r\n2020-04-22 08:25:58,098 [cuckoo-rooter] DEBUG: ('/sbin/iptables', '-t', 'nat', '-A', 'POSTROUTING', '-o', 'eno1', '-j', 'MASQUERADE')\r\n2020-04-22 08:25:59,992 [cuckoo-rooter] INFO: Processing command: forward_drop  \r\n2020-04-22 08:25:59,992 [cuckoo-rooter] DEBUG: ('/sbin/iptables', '-P', 'FORWARD', 'DROP')\r\n2020-04-22 08:25:59,996 [cuckoo-rooter] INFO: Processing command: state_disable  \r\n2020-04-22 08:25:59,997 [cuckoo-rooter] DEBUG: ('/sbin/iptables', '-D', 'INPUT', '-m', 'state', '--state', 'ESTABLISHED,RELATED', '-j', 'ACCEPT')\r\n2020-04-22 08:26:00,000 [cuckoo-rooter] DEBUG: ('/sbin/iptables', '-D', 'INPUT', '-m', 'state', '--state', 'ESTABLISHED,RELATED', '-j', 'ACCEPT')\r\n2020-04-22 08:26:00,003 [cuckoo-rooter] INFO: Processing command: state_enable  \r\n2020-04-22 08:26:00,003 [cuckoo-rooter] DEBUG: ('/sbin/iptables', '-A', 'INPUT', '-m', 'state', '--state', 'ESTABLISHED,RELATED', '-j', 'ACCEPT')\r\n2020-04-22 08:26:00,007 [cuckoo-rooter] INFO: Processing command: nic_available eno1 \r\n2020-04-22 08:26:00,011 [cuckoo-rooter] INFO: Processing command: rt_available main \r\n2020-04-22 08:26:00,014 [cuckoo-rooter] INFO: Processing command: disable_nat eno1 \r\n2020-04-22 08:26:00,014 [cuckoo-rooter] DEBUG: ('/sbin/iptables', '-t', 'nat', '-D', 'POSTROUTING', '-o', 'eno1', '-j', 'MASQUERADE')\r\n2020-04-22 08:26:00,018 [cuckoo-rooter] INFO: Processing command: enable_nat eno1 \r\n2020-04-22 08:26:00,018 [cuckoo-rooter] DEBUG: ('/sbin/iptables', '-t', 'nat', '-A', 'POSTROUTING', '-o', 'eno1', '-j', 'MASQUERADE')\r\n2020-04-22 08:26:27,248 [cuckoo-rooter] INFO: Processing command: nic_available eno1 \r\n2020-04-22 08:26:27,251 [cuckoo-rooter] INFO: Processing command: forward_enable virbr0 eno1 192.168.122.52 \r\n2020-04-22 08:26:27,251 [cuckoo-rooter] DEBUG: ('/sbin/iptables', '-D', 'FORWARD', '-i', 'virbr0', '-j', 'REJECT')\r\n2020-04-22 08:26:27,254 [cuckoo-rooter] DEBUG: ('/sbin/iptables', '-D', 'FORWARD', '-o', 'virbr0', '-j', 'REJECT')\r\n2020-04-22 08:26:27,256 [cuckoo-rooter] DEBUG: ('/sbin/iptables', '-A', 'FORWARD', '-i', 'virbr0', '-o', 'eno1', '--source', '192.168.122.52', '-j', 'ACCEPT')\r\n2020-04-22 08:26:27,259 [cuckoo-rooter] DEBUG: ('/sbin/iptables', '-A', 'FORWARD', '-i', 'eno1', '-o', 'virbr0', '--destination', '192.168.122.52', '-j', 'ACCEPT')\r\n2020-04-22 08:26:27,262 [cuckoo-rooter] INFO: Processing command: srcroute_enable main 192.168.122.52 \r\n2020-04-22 08:26:27,263 [cuckoo-rooter] DEBUG: ('/sbin/ip', 'rule', 'add', 'from', '192.168.122.52', 'table', 'main')\r\n2020-04-22 08:26:27,265 [cuckoo-rooter] DEBUG: ('/sbin/ip', 'route', 'flush', 'cache')\r\n\r\n-----\r\n\r\nLong time Cuckoo user, first time with CAPE, love the work you guys are doing! Not sure why rooter is throwing errors, as it appears rooter is working properly and both being ran under the same user. Any assistance to help me along here would be greatly appreciated!\nComment: Try running:\r\npython3 utils/process.py  -p7 auto\r\n\r\nThis should process your jobs. Normally this is handled automatically by creating a service, I highly recommend the script https://github.com/doomedraven/Tools/blob/master/Sandbox/cape2.sh which takes care of this.\nComment: Honestly, I'm not even sure if this install script finished properly, as I see what you mean where it should be setting everything via services at the end. I just re-ran the script and this is what it finishes with, not sure if this is expected:\r\n\r\nlibevent-dev is already the newest version (2.1.8-stable-4build1).\r\nlibreadline-dev is already the newest version (7.0-3).\r\nzlib1g-dev is already the newest version (1:1.2.11.dfsg-0ubuntu2).\r\ngit is already the newest version (1:2.17.1-1ubuntu0.7).\r\nlibncurses5-dev is already the newest version (6.1-1ubuntu1.18.04).\r\nThe following packages were automatically installed and are no longer required:\r\n  libappstream-glib8 libfwup1\r\nUse 'sudo apt autoremove' to remove them.\r\n0 upgraded, 0 newly installed, 0 to remove and 5 not upgraded.\r\nReading package lists... Done\r\nBuilding dependency tree       \r\nReading state information... Done\r\nThe following packages were automatically installed and are no longer required:\r\n  libappstream-glib8 libfwup1 libldns2\r\nUse 'sudo apt autoremove' to remove them.\r\nThe following packages will be REMOVED:\r\n  libcurl4-openssl-dev libldns-dev libssl-dev\r\nThe following NEW packages will be installed:\r\n  libssl1.0-dev\r\n0 upgraded, 1 newly installed, 3 to remove and 5 not upgraded.\r\nNeed to get 1,365 kB of archives.\r\nAfter this operation, 3,871 kB disk space will be freed.\r\nGet:1 http://us.archive.ubuntu.com/ubuntu bionic-updates/main amd64 libssl1.0-dev amd64 1.0.2n-1ubuntu5.3 [1,365 kB]\r\nFetched 1,365 kB in 0s (6,588 kB/s)     \r\n(Reading database ... 265201 files and directories currently installed.)\r\nRemoving libcurl4-openssl-dev:amd64 (7.58.0-2ubuntu3.8) ...\r\nRemoving libldns-dev:amd64 (1.7.0-3ubuntu4) ...\r\nRemoving libssl-dev:amd64 (1.1.1-1ubuntu2.1~18.04.5) ...\r\nSelecting previously unselected package libssl1.0-dev:amd64.\r\n(Reading database ... 264555 files and directories currently installed.)\r\nPreparing to unpack .../libssl1.0-dev_1.0.2n-1ubuntu5.3_amd64.deb ...\r\nUnpacking libssl1.0-dev:amd64 (1.0.2n-1ubuntu5.3) ...\r\nSetting up libssl1.0-dev:amd64 (1.0.2n-1ubuntu5.3) ...\r\nProcessing triggers for man-db (2.8.3-2ubuntu0.1) ...\r\nReading package lists... Done\r\nBuilding dependency tree       \r\nReading state information... Done\r\nThe following packages were automatically installed and are no longer required:\r\n  libappstream-glib8 libfwup1 libldns2\r\nUse 'sudo apt autoremove' to remove them.\r\nSuggested packages:\r\n  libssl-doc\r\nThe following packages will be REMOVED:\r\n  libssl1.0-dev\r\nThe following NEW packages will be installed:\r\n  libssl-dev\r\n0 upgraded, 1 newly installed, 1 to remove and 5 not upgraded.\r\nNeed to get 1,566 kB of archives.\r\nAfter this operation, 599 kB of additional disk space will be used.\r\nGet:1 http://us.archive.ubuntu.com/ubuntu bionic-updates/main amd64 libssl-dev amd64 1.1.1-1ubuntu2.1~18.04.5 [1,566 kB]\r\nFetched 1,566 kB in 0s (13.9 MB/s)   \r\n(Reading database ... 264640 files and directories currently installed.)\r\nRemoving libssl1.0-dev:amd64 (1.0.2n-1ubuntu5.3) ...\r\nSelecting previously unselected package libssl-dev:amd64.\r\n(Reading database ... 264555 files and directories currently installed.)\r\nPreparing to unpack .../libssl-dev_1.1.1-1ubuntu2.1~18.04.5_amd64.deb ...\r\nUnpacking libssl-dev:amd64 (1.1.1-1ubuntu2.1~18.04.5) ...\r\nSetting up libssl-dev:amd64 (1.1.1-1ubuntu2.1~18.04.5) ...\r\nCloning into 'redsocks2'...\r\nremote: Enumerating objects: 5, done.\r\nremote: Counting objects: 100% (5/5), done.\r\nremote: Compressing objects: 100% (5/5), done.\r\nremote: Total 1615 (delta 0), reused 0 (delta 0), pack-reused 1610\r\nReceiving objects: 100% (1615/1615), 1.15 MiB | 11.63 MiB/s, done.\r\nResolving deltas: 100% (1093/1093), done.\r\nCompile with OpenSSL by default. To compile with PolarSSL, run 'make USE_CRYPTO_POLARSSL=true' instead.\r\nmkdir -p gen\r\ntouch gen/.build\r\nrm -f -f gen/version.c.tmp\r\necho '/* this file is auto-generated during build */' > gen/version.c.tmp\r\necho '#include \"../version.h\"' >> gen/version.c.tmp\r\necho 'const char* redsocks_version = ' >> gen/version.c.tmp\r\nif [ -d .git ]; then \\\r\n\techo '\"redsocks.git/'`git describe --tags`' OpenSSL\"'; \\\r\n\tif [ `git status --porcelain | grep -v -c '^??'` != 0 ]; then \\\r\n\t\techo '\"-unclean\"'; \\\r\n\tfi; \\\r\n\techo '\"\\\\n\"'; \\\r\n\techo '\"Features: DISABLE_SHADOWSOCKS\"'; \\\r\nelse \\\r\n\techo '\"redsocks/0.67 OpenSSL\"'; \\\r\n\techo '\"\\\\n\"'; \\\r\n\techo '\"Features: DISABLE_SHADOWSOCKS\"'; \\\r\nfi >> gen/version.c.tmp\r\necho ';' >> gen/version.c.tmp\r\nmv -f gen/version.c.tmp gen/version.c\r\ncc -MM -fPIC -O3 -DDISABLE_SHADOWSOCKS -D_BSD_SOURCE -D_DEFAULT_SOURCE -Wall -std=c99 -D_XOPEN_SOURCE=600 -DUSE_CRYPTO_OPENSSL parser.c main.c redsocks.c log.c direct.c ipcache.c autoproxy.c http-connect.c socks4.c socks5.c http-relay.c base.c base64.c md5.c http-auth.c utils.c redudp.c socks5-udp.c tcpdns.c gen/version.c 2>/dev/null >.depend || \\\r\n( \\\r\n\tfor I in redsocks.h list.h encrypt.h tcpdns.h md5.h socks5.h log.h base.h libc-compat.h http-auth.h shadowsocks.h parser.h version.h main.h base64.h redudp.h ipcache.h utils.h; do \\\r\n\t\texport ${I//[-.]/_}_DEPS=\"`sed '/^\\#[ \\t]*include \\?\"\\(.*\\)\".*/!d;s//\\1/' $I`\"; \\\r\n\tdone; \\\r\n\techo -n >.depend; \\\r\n\tfor SRC in parser.c main.c redsocks.c log.c direct.c ipcache.c autoproxy.c http-connect.c socks4.c socks5.c http-relay.c base.c base64.c md5.c http-auth.c utils.c redudp.c socks5-udp.c tcpdns.c gen/version.c; do \\\r\n\t\techo -n \"${SRC%.c}.o: \" >>.depend; \\\r\n\t\texport SRC_DEPS=\"`sed '/\\#[ \\t]*include \\?\"\\(.*\\)\".*/!d;s//\\1/' $SRC | sort`\"; \\\r\n\t\twhile true; do \\\r\n\t\t\texport SRC_DEPS_OLD=\"$SRC_DEPS\"; \\\r\n\t\t\texport SRC_DEEP_DEPS=\"\"; \\\r\n\t\t\tfor HDR in $SRC_DEPS; do \\\r\n\t\t\t\teval export SRC_DEEP_DEPS=\"\\\"$SRC_DEEP_DEPS \\$${HDR//[-.]/_}_DEPS\\\"\"; \\\r\n\t\t\tdone; \\\r\n\t\t\texport SRC_DEPS=\"`echo $SRC_DEPS $SRC_DEEP_DEPS | sed 's/  */\\n/g' | sort -u`\"; \\\r\n\t\t\ttest \"$SRC_DEPS\" = \"$SRC_DEPS_OLD\" && break; \\\r\n\t\tdone; \\\r\n\t\techo $SRC $SRC_DEPS >>.depend; \\\r\n\tdone; \\\r\n)\r\nCompile with OpenSSL by default. To compile with PolarSSL, run 'make USE_CRYPTO_POLARSSL=true' instead.\r\ncc -fPIC -O3 -DDISABLE_SHADOWSOCKS -D_BSD_SOURCE -D_DEFAULT_SOURCE -Wall -std=c99 -D_XOPEN_SOURCE=600 -DUSE_CRYPTO_OPENSSL   -c -o parser.o parser.c\r\ncc -fPIC -O3 -DDISABLE_SHADOWSOCKS -D_BSD_SOURCE -D_DEFAULT_SOURCE -Wall -std=c99 -D_XOPEN_SOURCE=600 -DUSE_CRYPTO_OPENSSL   -c -o main.o main.c\r\ncc -fPIC -O3 -DDISABLE_SHADOWSOCKS -D_BSD_SOURCE -D_DEFAULT_SOURCE -Wall -std=c99 -D_XOPEN_SOURCE=600 -DUSE_CRYPTO_OPENSSL   -c -o redsocks.o redsocks.c\r\ncc -fPIC -O3 -DDISABLE_SHADOWSOCKS -D_BSD_SOURCE -D_DEFAULT_SOURCE -Wall -std=c99 -D_XOPEN_SOURCE=600 -DUSE_CRYPTO_OPENSSL   -c -o log.o log.c\r\ncc -fPIC -O3 -DDISABLE_SHADOWSOCKS -D_BSD_SOURCE -D_DEFAULT_SOURCE -Wall -std=c99 -D_XOPEN_SOURCE=600 -DUSE_CRYPTO_OPENSSL   -c -o direct.o direct.c\r\ncc -fPIC -O3 -DDISABLE_SHADOWSOCKS -D_BSD_SOURCE -D_DEFAULT_SOURCE -Wall -std=c99 -D_XOPEN_SOURCE=600 -DUSE_CRYPTO_OPENSSL   -c -o ipcache.o ipcache.c\r\ncc -fPIC -O3 -DDISABLE_SHADOWSOCKS -D_BSD_SOURCE -D_DEFAULT_SOURCE -Wall -std=c99 -D_XOPEN_SOURCE=600 -DUSE_CRYPTO_OPENSSL   -c -o autoproxy.o autoproxy.c\r\ncc -fPIC -O3 -DDISABLE_SHADOWSOCKS -D_BSD_SOURCE -D_DEFAULT_SOURCE -Wall -std=c99 -D_XOPEN_SOURCE=600 -DUSE_CRYPTO_OPENSSL   -c -o http-connect.o http-connect.c\r\ncc -fPIC -O3 -DDISABLE_SHADOWSOCKS -D_BSD_SOURCE -D_DEFAULT_SOURCE -Wall -std=c99 -D_XOPEN_SOURCE=600 -DUSE_CRYPTO_OPENSSL   -c -o socks4.o socks4.c\r\ncc -fPIC -O3 -DDISABLE_SHADOWSOCKS -D_BSD_SOURCE -D_DEFAULT_SOURCE -Wall -std=c99 -D_XOPEN_SOURCE=600 -DUSE_CRYPTO_OPENSSL   -c -o socks5.o socks5.c\r\ncc -fPIC -O3 -DDISABLE_SHADOWSOCKS -D_BSD_SOURCE -D_DEFAULT_SOURCE -Wall -std=c99 -D_XOPEN_SOURCE=600 -DUSE_CRYPTO_OPENSSL   -c -o http-relay.o http-relay.c\r\ncc -fPIC -O3 -DDISABLE_SHADOWSOCKS -D_BSD_SOURCE -D_DEFAULT_SOURCE -Wall -std=c99 -D_XOPEN_SOURCE=600 -DUSE_CRYPTO_OPENSSL   -c -o base.o base.c\r\ncc -fPIC -O3 -DDISABLE_SHADOWSOCKS -D_BSD_SOURCE -D_DEFAULT_SOURCE -Wall -std=c99 -D_XOPEN_SOURCE=600 -DUSE_CRYPTO_OPENSSL   -c -o base64.o base64.c\r\ncc -fPIC -O3 -DDISABLE_SHADOWSOCKS -D_BSD_SOURCE -D_DEFAULT_SOURCE -Wall -std=c99 -D_XOPEN_SOURCE=600 -DUSE_CRYPTO_OPENSSL   -c -o md5.o md5.c\r\ncc -fPIC -O3 -DDISABLE_SHADOWSOCKS -D_BSD_SOURCE -D_DEFAULT_SOURCE -Wall -std=c99 -D_XOPEN_SOURCE=600 -DUSE_CRYPTO_OPENSSL   -c -o http-auth.o http-auth.c\r\ncc -fPIC -O3 -DDISABLE_SHADOWSOCKS -D_BSD_SOURCE -D_DEFAULT_SOURCE -Wall -std=c99 -D_XOPEN_SOURCE=600 -DUSE_CRYPTO_OPENSSL   -c -o utils.o utils.c\r\ncc -fPIC -O3 -DDISABLE_SHADOWSOCKS -D_BSD_SOURCE -D_DEFAULT_SOURCE -Wall -std=c99 -D_XOPEN_SOURCE=600 -DUSE_CRYPTO_OPENSSL   -c -o redudp.o redudp.c\r\ncc -fPIC -O3 -DDISABLE_SHADOWSOCKS -D_BSD_SOURCE -D_DEFAULT_SOURCE -Wall -std=c99 -D_XOPEN_SOURCE=600 -DUSE_CRYPTO_OPENSSL   -c -o socks5-udp.o socks5-udp.c\r\ncc -fPIC -O3 -DDISABLE_SHADOWSOCKS -D_BSD_SOURCE -D_DEFAULT_SOURCE -Wall -std=c99 -D_XOPEN_SOURCE=600 -DUSE_CRYPTO_OPENSSL   -c -o tcpdns.o tcpdns.c\r\ncc -fPIC -O3 -DDISABLE_SHADOWSOCKS -D_BSD_SOURCE -D_DEFAULT_SOURCE -Wall -std=c99 -D_XOPEN_SOURCE=600 -DUSE_CRYPTO_OPENSSL   -c -o gen/version.o gen/version.c\r\nredudp.c:163:13: warning: \u2018bound_udp4_put\u2019 defined but not used [-Wunused-function]\r\n static void bound_udp4_put(const struct sockaddr_in *addr)\r\n             ^~~~~~~~~~~~~~\r\ntcpdns.c:349:13: warning: \u2018check_dns_delay\u2019 defined but not used [-Wunused-function]\r\n static void check_dns_delay()\r\n             ^~~~~~~~~~~~~~~\r\ncc -fPIC -O3 -DDISABLE_SHADOWSOCKS -D_BSD_SOURCE -D_DEFAULT_SOURCE -Wall -std=c99 -D_XOPEN_SOURCE=600 -DUSE_CRYPTO_OPENSSL -o redsocks2 parser.o main.o redsocks.o log.o direct.o ipcache.o autoproxy.o http-connect.o socks4.o socks5.o http-relay.o base.o base64.o md5.o http-auth.o utils.o redudp.o socks5-udp.o tcpdns.o gen/version.o  -levent -lssl -lcrypto -ldl\r\n89M\t/var/log/journal\r\n13M\t/var/log/audit\r\n1.4M\t/var/log/installer\r\n1.3M\t/var/log/syslog.1\r\n484K\t/var/log/kern.log.1\r\n368K\t/var/log/teamviewer15\r\n184K\t/var/log/auth.log.1\r\n176K\t/var/log/apt\r\n156K\t/var/log/syslog.2.gz\r\n148K\t/var/log/dpkg.log.2.gz\r\n\nComment: Ah maybe if you try commenting out redsocks on line 683 you might have better luck - I had to do this:\r\n\r\n#redsocks2\nComment: Didn't seem to help, ends right after checking the community file downloads, none of the services seem to start properly after a reboot.\nComment: well you don't need to run it with `all` you can see `-h` and install only that what is needed for you, as all is for our servers and what we need on our side\r\n\r\nwell say nothing start properly without posting each service log doesn't help to tell you what is wrong\nComment: and i don't see any error in rooter, where there is errors? is just debug lines to show what iptables are used \nComment: I want to use as much as I can, as you are offering it. Really I'm just evaluating rebuilding my Cuckoo environment vs using this vs moving to something commercial. \r\n\r\nLogs attached.\r\n\r\n[cape.txt](https://github.com/kevoreilly/CAPEv2/files/4518860/cape.txt)\r\n[cape-rooter.txt](https://github.com/kevoreilly/CAPEv2/files/4518861/cape-rooter.txt)\r\n[cape-web.txt](https://github.com/kevoreilly/CAPEv2/files/4518862/cape-web.txt)\r\n\r\n\r\n\r\n\r\n\nComment: yes we are more than happy to help but you know to get help ASAP always provide as much logs as possible and if you will use \r\n\r\n\r\nok did you read your logs?\r\ncape-web.txt -> ` Failed at step USER spawning /usr/bin/python3: No such process` do you have python3?\r\n\r\ncape-rooter.txt -> `The group (`cape`) does not exist. Please define the group / user through which Cuckoo will connect to the rooter, e.g., ./utils/rooter.py -g myuser`\r\n\r\ncape.txt -> `cape.service: Failed at step USER spawning /usr/bin/python3: No such process`\r\n\r\nso as you can see, the cape2.sh has option to set user in top of the script, but as you use custom user and didn't change that now you need to manually edit the systemd file and fix that\nComment: I did change it at the top of the script, does it need to be in double quotes?\r\n\r\nUSER=\"xeck29x\"\r\n\r\nRunning Python 3.6.9\nComment: ah wait im sleepy hard to sleep in this times, the systemd files are in repo, they are not part of the script you need to edit them by yourselve anyway, someone told me already about that, will try to update script this weekend\r\n\r\nbut does `/usr/bin/python3` exist?\nComment: xeck29x@fallout:~$ which python3\r\n/usr/bin/python3\r\n\r\nYes sir, get some rest my man, the world is nuts but sleep is so important. Thanks for taking a look, I'll keep an eye out for the updated script.\nComment: i would like but not all neighbors can sleep those day so they f**kup the rest.\r\n\r\nhm well for some reason systemd can't find your python3, if i tell you truth this is first time that i see this, you can investigate that i did quick google search but i don't see nothing, cape2.sh also can install supervisor but i don't suggest to use it\nComment: I think I found the problem, looks like the .service files are expecting the user and group as 'cape'.\r\n\r\nGNU nano 2.9.3           /etc/systemd/system/cape.service                     \r\n\r\n[Unit]\r\nDescription=Cuckoo\r\nDocumentation=https://github.com/kevoreilly/CAPEv2\r\n\r\n[Service]\r\nWorkingDirectory=/opt/CAPEv2/\r\nExecStart=/usr/bin/python3 cuckoo.py\r\n#ExecStart=/opt/CAPEv2/venv/bin/python3 /opt/CAPEv2/cuckoo.py\r\nUser=cape\r\nGroup=cape\r\nRestart=always\r\nRestartSec=5m\r\nLimitNOFILE=100000\r\n[Install]\r\nWantedBy=multi-user.target\r\n\r\nConfirmed fixed!\r\n\nComment: ah yes that also true, so you need to edit that 4 serices, cape, cape-rooter, cape-web, cape-processor to change user/group and that should solve the problem\r\n\r\ncool thanks for confirmatiion, i will update script to include this and install directly with correct user. so all your issues solved? :)\nComment: Looks like something else is still messed up. Services didn't start properly after a reboot, I can get cape running just by manually restarting it (sudo service cape restart), but the others do not. I'll keep poking around I think think I have enough to troubleshoot on my own, however I may just end up rebuilding using the 'cape' user since all the problems seem tied to that change.\r\n\r\nWe can close this out as nothing is pointing me to an issue with the project at this point.\nComment: you don't need reboot just `systemctl daemon-reload` to reread all system services config files\r\ndid you update the rooter service with `-g your_user`, what oyu maybe can still need to do is to check the owner of `ls -lah /opt/CAPEv2` to see if is cape or yourone, but with fixed daemons and ownership that sohuld be fine, well im closing as original is solved but feel free to post here\nComment: i have updated cape2.sh to install services with correct username\nComment: ah and i have introduced `base` comamnd\nComment: FYI whatever edits you made broke the script, can't execute, had a syntax error:\r\n\r\n./cape2.sh: line 779: syntax error near unexpected token `)'\r\n./cape2.sh: line 779: `'all')'\r\n\r\nEven with fixing this it doesn't run with 'all'\r\n\nComment: already fixed, missed `;;`, bad c&p :D",
+  "Title: Updates to index.html and demux.py\nBody: ",
+  "Title: More URL analysis issue?\nBody: I just got this error while analyzing a URL:\r\n\r\n```\r\n2020-04-21 05:05:21,726 [lib.api.process] INFO: Successfully executed process from path \"C:\\Program Files (x86)\\Internet Explorer\\iexplore.exe\" with arguments \"\"http://xxxxxxx\"\" with pid 4128\r\n2020-04-21 05:05:22,414 [lib.api.process] INFO: Monitor config for process 4128: C:\\tmp0pm2gis2\\dll\\4128.ini\r\n2020-04-21 05:05:30,564 [root] ERROR: Traceback (most recent call last):\r\n  File \"C:/tmp0pm2gis2/analyzer.py\", line 517, in run\r\n    pids = pack.start(self.target)\r\n  File \"C:\\tmp0pm2gis2\\modules\\packages\\ie.py\", line 17, in start\r\n    return self.execute(iexplore, \"\\\"%s\\\"\" % url, url)\r\n  File \"C:\\tmp0pm2gis2\\lib\\common\\abstracts.py\", line 134, in execute\r\n    p.inject(INJECT_QUEUEUSERAPC, interest)\r\n  File \"C:\\tmp0pm2gis2\\lib\\api\\process.py\", line 626, in inject\r\n    self.write_monitor_config(interest, nosleepskip)\r\n  File \"C:\\tmp0pm2gis2\\lib\\api\\process.py\", line 563, in write_monitor_config\r\n    config.write(\"referrer={0}\\n\".format(get_referrer_url(interest)))\r\n  File \"C:\\tmp0pm2gis2\\lib\\api\\process.py\", line 62, in get_referrer_url\r\n    vedstr = \"0CCEQfj\" + base64.urlsafe_b64encode(random_string(random.randint(5, 8) * 3))\r\n  File \"C:\\Users\\IEUser\\AppData\\Local\\Programs\\Python\\Python38-32\\lib\\base64.py\", line 118, in urlsafe_b64encode\r\n    return b64encode(s).translate(_urlsafe_encode_translation)\r\n  File \"C:\\Users\\IEUser\\AppData\\Local\\Programs\\Python\\Python38-32\\lib\\base64.py\", line 58, in b64encode\r\n    encoded = binascii.b2a_base64(s, newline=False)\r\nTypeError: a bytes-like object is required, not 'str'\r\n```\nComment: one more thing when you report issue please provide full details, as just error is ok but i can't reproduce it by myself so i need to know all steps and options that you used \nComment: Sorry for this... It has been submitted via the API...\r\nHere is the code snippet:\r\n\r\n```\r\n    def submit_url(self, target_url, options):\r\n        url = urljoin(self.web_endpoint, '/api/tasks/create/url/')\r\n        options['url'] = target_url\r\n        response = requests.post(url, data=options)\r\n        try:\r\n            self.task_id = response.json()['data']['task_ids'][0]\r\n        except:\r\n            raise ModuleExecutionError('{0}'.format(response.json()['error_value']))\r\n```\r\n\r\nNo other specific options...\nComment: thanks, should be tested now, i have pushed code that fix that bytes vs str, let me know if that is fixed\nComment: Updated to latest push and seems ok, tx!\nComment: Thanks for feedback\n\nEl mi\u00e9., 22 abr. 2020 15:00, Xavier Mertens <notifications@github.com>\nescribi\u00f3:\n\n> Closed #181 <https://github.com/kevoreilly/CAPEv2/issues/181>.\n>\n> \u2014\n> You are receiving this because you commented.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/181#event-3260474255>, or\n> unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3ZZF6XEPEAA7H2VYQDRN3S7ZANCNFSM4MNDINVA>\n> .\n>\n",
+  "Title: Virtual Address CAPE\nBody: Hi,\r\nIn my local CAPE I can't see the Virtual Address in the CAPE report section. In the online version it works fine but I'm not getting it. What I'm doing wrong?\r\n\r\nI would like to be able to contact you for some question about some CAPE behaviours  if it's possible.\r\n\r\nThanks\r\n\nComment: Hi blacksnape! Any chance you could send a screenshot of what you do see in your cape tab? First thing to check is that a payload is being properly extracted in the first place... But with so little info it's hard for me to say much more...\nComment: Hi @kevoreilly ,\r\nThanks for the fast reply.\r\nAs you can see in the online version I find the virtual address:\r\n\r\n![Screenshot 2020-04-20 at 14 24 42](https://user-images.githubusercontent.com/62393551/79751594-2107d480-8313-11ea-99d2-480680a8a18c.png)\r\n\r\nIn the local I don't get it:\r\n![Screenshot 2020-04-20 at 14 30 41](https://user-images.githubusercontent.com/62393551/79751934-bacf8180-8313-11ea-9ea0-cc859fb46bf1.png)\r\n\nComment: Hmm that is odd - I tried to look up the hash on capesandbox.com so I could find the analysis log to look up the monitor message for this metadata - couldn't find this mystery sample ;-)\r\n\r\nBut anyway here is another example:\r\n\r\nhttps://capesandbox.com/analysis/1635/\r\n\r\nIf you look in the analysis log, you can find the following line for the TrickBot payload extraction:\r\n\r\n2020-04-20 20:03:07,390 [root] INFO: ('dump_file', 'C:\\\\jgUTvDTu\\\\CAPE\\\\3124_1633977409731820142020', b'8;?C:\\\\Users\\\\Rebecca\\\\AppData\\\\Local\\\\Temp\\\\hBNb13.exe;?C:\\\\Users\\\\Rebecca\\\\AppData\\\\Local\\\\Temp\\\\hBNb13.exe;?0x01250000;?', ['3124'], 'CAPE')\r\n\r\nThe virtual address here is 0x01250000 - so the first thing to check is whether you have a similar line in your analysis log. This means at least the monitor is supplying the virtual address, it must be lost on the way to the ui. If it's missing, it could be a monitor issue. Let me know!\nComment: Hi @kevoreilly ,\r\n\r\nThe analysis is this: https://capesandbox.com/analysis/1583/\r\n\r\nIn the section cape you will find the result that I posted as a screen.\r\n\r\nIn the local cape my log appears like this:\r\n\r\n2020-04-20 15:07:13,497 [root] INFO: ('dump_file', 'C:\\\\hYiTcW\\\\CAPE\\\\2612_2406617091371320142020', b'9;?C:\\\\Users\\\\donald\\\\AppData\\\\Local\\\\Temp\\\\4aa2443f2b54cf0915ccc3c0118570bc2582d2c423f8668969dc1e98ecd5bd0a.exe;?C:\\\\Users\\\\donald\\\\AppData\\\\Local\\\\Temp\\\\4aa2443f2b54cf0915ccc3c0118570bc2582d2c423f8668969dc1e98ec', ['2612'], 'CAPE')\r\n\r\nSo it's already missing..\nComment: are you using latest capemon? as that not make too much sense\nComment: Yep it makes v little sense, definitely worth checking monitor is up to date \nComment: Would you be able to confirm you have tried the latest monitor and still have this issue? Otherwise I'll have to close this. \nComment: Hi sorry this is stale now - closing",
+  "Title: Create Bokbot.yar\nBody: \nComment: thanks\nComment: FYI all yara rules that is written by community is moved to community repo\nComment: Thnaks!\r\nwhat do you mean by core yara and community yara?\nComment: core yara, is done by @kevoreilly  or me, https://github.com/kevoreilly/community there is community stuff, so is that way we avoid to be responsable of FP, bad code, not maintained plugins that we don't use, so everyone can just remove them or do whatever they want on their side \nComment: as example you posted yara, that won't be shown in webgui due to missed correct type inside of cape_type, do search by `cape_type` in repo and you will see the difference\nComment: Thanks for the explanation!\nComment: You are welcome, thanks for yara\n\nEl dom., 19 abr. 2020 7:12, Rony <notifications@github.com> escribi\u00f3:\n\n> Thanks for the explanation!\n>\n> \u2014\n> You are receiving this because you modified the open/close state.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/pull/179#issuecomment-616035161>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3ZUYDRQL6Y2VJXAF33RNKB3TANCNFSM4MLMXXWA>\n> .\n>\n",
+  "Title: Update callback.py\nBody: Cleaned up a bit as the variable success was not consistent and breaking the callback. There was also a little confusion as to how things worked in here.",
+  "Title: Server Error (500) for curl https://www.capesandbox.com/api/tasks/get/iocs/<task-id>/\nBody: Example:\r\n`\r\ncurl https://www.capesandbox.com/api/tasks/get/iocs/1403/\r\n` \r\n throws \r\n`Server Error (500)`\nComment: thanks, i did a quick check, there is some bad data in that report that json/simple_json can't handle, i will try to check that when i will have some free time but that will be a low prior\nComment: ok it should be fixed now for future tasks `ep_bytes` was bytes instead of str and it was giving problem, thanks again for reporting, i will check again tomorrow if that was really solved, on dev server it works now\nComment: Well that was really fast. Thank you. All the best and stay safe and healthy.\nComment: this was a easy one for my luck :) let us know if you see any other bug or have any feature, thanks the same for you and yours \nComment: ok verified it works https://www.capesandbox.com/api/tasks/get/iocs/1454/\r\n\r\nim closing this, but feel free to reach to us if you find any other\nComment: https://www.capesandbox.com/api/tasks/get/iocs/1454/ is also working for me but with https://www.capesandbox.com/api/tasks/get/iocs/1612/ , for example, I am still getting the Server Error (500) . Also for 1611 and 1618 .\nComment: when you get that, is due to baddata introduced by something like in that case is\r\n`The string that could not be encoded/decoded was: \ufffd\ufffdt=\ufffd\ufffd`\r\n\r\nwhen i will have tiem i will check that thanks\nComment: works now",
+  "Title: Add Yara signatures\nBody: \nComment: Thank you!",
+  "Title: Dark theme :) \nBody: ",
+  "Title: Procmon usage/setup?\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nUse of procmon\r\n\r\n# Current Behavior\r\n\r\nSeen in logs:\r\n\r\n`2020-04-16 05:14:16,638 [root] WARNING: Cannot execute auxiliary module Procmon: In order to use the Process Monitor functionality it is required to have Procmon setup with Cuckoo. Please run the Cuckoo Community script which will automatically fetch all related files to get you up-and-running.`\r\n\r\n## Context\r\n\r\nI see this in the source code:\r\n\r\n```\r\n        bin_path = os.path.join(ROOT, \"bin\")\r\n\r\n        self.procmon_exe = os.path.join(bin_path, \"procmon.exe\")\r\n        self.procmon_pmc = os.path.join(bin_path, \"procmon.pmc\")\r\n        self.procmon_pml = os.path.join(bin_path, \"procmon.pml\")\r\n        self.procmon_xml = os.path.join(bin_path, \"procmon.xml\")\r\n\r\n        if not os.path.exists(self.procmon_exe) or \\\r\n                not os.path.exists(self.procmon_pmc):\r\n            raise CuckooPackageError(\r\n                \"In order to use the Process Monitor functionality it is \"\r\n                \"required to have Procmon setup with Cuckoo. Please run the \"\r\n                \"Cuckoo Community script which will automatically fetch all \"\r\n                \"related files to get you up-and-running.\"\r\n            )\r\n```\r\n\r\nI executed the community scripts, everything is up-to-date. Where should be installed procmon?\r\nTx!\r\n\nComment: files now in repo, execute community again, thanks\nComment: Sorry to bother you again...\r\n\r\nprocmon is now installed in the windows/bin directory but still the same message:\r\n\r\n```\r\nroot@cape:/opt/CAPEv2/analyzer/windows/bin# ll\r\ntotal 16916\r\ndrwxr-xr-x 2 cape cape     4096 Apr 16 09:51 ./\r\ndrwxr-xr-x 6 cape cape     4096 Apr 16 05:36 ../\r\n-rw-r--r-- 1 cape cape  2046608 Apr 16 08:32 Procmon.exe\r\n-rwxr-xr-x 1 cape cape   511328 Mar  3 12:48 capicom.dll*\r\n-rw-r--r-- 1 cape cape    97113 Mar  3 12:48 execsc.exe\r\n-rw-r--r-- 1 cape cape 13810880 Mar  3 12:48 flashplayer.exe\r\n-rw-r--r-- 1 cape cape   133120 Apr 12 06:32 loader.exe\r\n-rw-r--r-- 1 cape cape   140288 Apr 12 06:32 loader_x64.exe\r\n-rw-r--r-- 1 cape cape   103424 Mar  3 12:48 oldloader.exe\r\n-rw-r--r-- 1 cape cape   118784 Mar  3 12:48 oldloader_x64.exe\r\n-rw-r--r-- 1 cape cape     2144 Apr 16 08:32 procmon.pmc\r\n-rw-r--r-- 1 cape cape   339096 Mar  3 12:48 psexec.exe\r\n-rw-r--r-- 1 cape cape    75776 Mar  3 12:48 signtool.exe\r\n```\r\n\r\nI also tried with lowercase p ('procmon.exe') same issue...\r\n\r\n2020-04-18 10:26:43,046 [root] WARNING: Cannot execute auxiliary module Procmon: In order to use the Process Monitor functionality it is required to have Procmon setup with CAPE. Please run the CAPE Community script which will automatically fetch all related files to get you up-and-running.\nComment: np, hm weird, i will try to enable it, give me 1h im finishing to write blogpost on kvm vm creation with virt-manager\nComment: ok i have fixed all that one, yes you need to set it to lowercase, but the problem that there another problem that gives a lot of problem with convert procmon log as that isn't core plugin and not written by us i moved that to community, if you want you can investigate how to fix it `2020-04-18 15:20:51,437 [lib.common.results] WARNING: File C:\\X\\bin\\procmon.xml doesn't exist anymore` so i suppouse \r\n\r\nif fails on this, but i don't care about this plugin and won't spend more time fixing \r\n```\r\n# Convert the process monitor log into a readable XML file.\r\n            subprocess.call([\r\n                self.procmon_exe,\r\n                \"/OpenLog\", self.procmon_pml,\r\n                \"/LoadConfig\", self.procmon_pmc,\r\n                \"/SaveAs\", self.procmon_xml,\r\n                \"/SaveApplyFilter\",\r\n            ], startupinfo=self.startupinfo, shell=True)\r\n```\nComment: i have some good news for you, i have time and started vm and found what is wrong, will push fully working version in few mins",
+  "Title: Add calendar file\nBody: This should work when it's opened by Outlook. In regards to:\r\nhttp://www.pwncode.io/2020/04/outlook-calendar-file-ics-file-format.html\nComment: but as far as i understand, user still should click on link no?\nComment: Yes, correct. Not sure we can add that behaviour to the package. At least with this it will be opened in Outlook. :smiley: But from strings it's easy to check the link too tbh.",
+  "Title: Update plugins.py\nBody: ",
+  "Title: Add TLP designation\nBody: ",
+  "Title: Problem submitting text samples\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nSubmit text files (HTML code, Powershell, etc)\r\n\r\n# Current Behavior\r\n\r\nSubmit does not work\r\n\r\n# Failure Information (for bugs)\r\n\r\nFrom web.log generated by supervisord, I see this:\r\n\r\n```\r\n==> web.err.log <==\r\nPython 3.6.9 (default, Nov  7 2019, 10:44:02)\r\n[GCC 8.3.0] on linux\r\nType \"help\", \"copyright\", \"credits\" or \"license\" for more information.\r\n(InteractiveConsole)\r\n[10/Apr/2020 10:58:15] \"GET /submit/ HTTP/1.1\" 200 47495\r\n\r\n==> web.out.log <==\r\n>>>\r\n==> web.err.log <==\r\nPython 3.6.9 (default, Nov  7 2019, 10:44:02)\r\n[GCC 8.3.0] on linux\r\nType \"help\", \"copyright\", \"credits\" or \"license\" for more information.\r\n(InteractiveConsole)\r\n\r\n```\nComment: try `grep -r \"code.interact\" /opt/CAPEv2` i can't find that in repo, so maybe some old code in your side left, behaviour can be ignored as it commented as that interactiveConsole means code was called\nComment: Running the command... In the mean time, I found something strange.\r\nOne of tool submit an URL via the API but it seems that Cuckoo tries to open it as a file:\r\n\r\n```\r\n[15/Apr/2020 07:21:56] \"POST /api/tasks/create/url/ HTTP/1.1\" 200 212\r\n[15/Apr/2020 07:21:56] \"GET /api/tasks/view/90/ HTTP/1.1\" 200 1519\r\n\r\n==> cuckoo.err.log <==\r\n2020-04-15 07:21:57,445 [lib.cuckoo.core.scheduler] DEBUG: Task #90: Processing task\r\n2020-04-15 07:21:57,462 [lib.cuckoo.core.scheduler] INFO: Task #90: Starting analysis of URL 'https://xxxxxxxxx'\r\n2020-04-15 07:21:57,463 [lib.cuckoo.core.scheduler] ERROR: Task #90: Failure in AnalysisManager.run: [Errno 2] No such file or directory: 'https://xxxxxxxxx'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 414, in run\r\n    success = self.launch_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 246, in launch_analysis\r\n    sha256 = File(self.task.target).get_sha256()\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/objects.py\", line 317, in get_sha256\r\n    if not self._sha256: self.calc_hashes()\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/objects.py\", line 268, in calc_hashes\r\n    for chunk in self.get_chunks():\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/objects.py\", line 254, in get_chunks\r\n    with open(self.file_path, \"rb\") as fd:\r\nFileNotFoundError: [Errno 2] No such file or directory: 'https://xxxxxxxxx'\r\nERROR    lib.cuckoo.core.scheduler: Task #90: Failure in AnalysisManager.run: [Errno 2] No such file or directory: 'https://xxxxxxxxx'\r\n```\nComment: > try `grep -r \"code.interact\" /opt/CAPEv2` i can't find that in repo, so maybe some old code in your side left, behaviour can be ignored as it commented as that interactiveConsole means code was called\r\n\r\nFound this:\r\n```\r\nroot@cape:/opt/CAPEv2# grep -r \"code.interact\" /opt/CAPEv2\r\n/opt/CAPEv2/modules/processing/behavior.py:        #import code; code.interact(local=dict(locals(), **globals()))\r\n```\nComment: yes as i told in behavior can be ignored as it commented, what i can tell you is that you have that uncomemnted in an .pyc, so i would suggest just remove recursive all .pyc in /opt/CAPE\r\n\r\nwell url analysis is disabled due to IE problems as modern browser protection that nobody has enough time to investigate, is why it not works correctly, and hidden by default on webgui, i will check why it think url is file\nComment: can you post how you submitted the url analysis to check just in case if all fine in args\nComment: Here is the piece of code used to submit the URL:\r\n\r\n```\r\n    def submit_url(self, target_url, options):\r\n        url = urljoin(self.web_endpoint, '/api/tasks/create/url/')\r\n        options['url'] = target_url\r\n        response = requests.post(url, data=options)\r\n        try:\r\n            self.task_id = response.json()['data']['task_ids'][0]\r\n        except:\r\n            raise ModuleExecutionError('{0}'.format(response.json()['error_value']))\r\n```\nComment: fixed that part\nComment: well there is no errors anymore ,but IE 11 won't work, try to restart webgui, or start it as `PYTHONDONTWRITEBYTECODE=1 python3 manage.py runserver 0.0.0.0:8000` one friend has the same problem and that solved it, let me know if that solves your initial problem",
+  "Title: Office \"auto_close\" not triggered\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ ] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nMacros executed by auto_close, should be triggered somehow\r\nOR\r\nMake it possible to access the VM via the browser\r\n\r\n# Current Behavior\r\n\r\nauto_close macros are listed in the static analysis, but nothing shows in the behavioral analysis because the file doesn't close while running the analysis.\r\n\r\n## Steps to Reproduce\r\n\r\n1. Upload a office document with auto_close macro\r\n2. analyse with entering the VM\r\n3. Upload an office document with auto_close macro\r\n4. During the analysis, enter the vm and close the document\r\n5. Compare results (specifically the behavioral analysis)\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       |  fab86b48ac1307954b84d95d2543e3999d8b9c32\r\n| OS version       |Host: Ubuntu 18.04, client:Windows 7\r\n\r\n\r\n\nComment: We have a lot of other priorities rigth now, so you are welcome to\ncolaborate and implement that\n\nEl jue., 9 abr. 2020 14:08, Sasja Reynaert <notifications@github.com>\nescribi\u00f3:\n\n> This is opensource and you getting *free* support so be friendly!\n> Prerequisites\n>\n> Please answer the following questions for yourself before submitting an\n> issue.\n>\n>    - I am running the latest version\n>    - I checked the documentation and found no answer\n>    - I checked to make sure that this issue has not already been filed\n>    - I'm reporting the issue to the correct repository (for\n>    multi-repository projects)\n>\n> Expected Behavior\n>\n> Macros executed by auto_close, should be triggered somehow\n> OR\n> Make it possible to access the VM via the browser\n> Current Behavior\n>\n> auto_close macros are listed in the static analysis, but nothing shows in\n> the behavioral analysis because the file doesn't close while running the\n> analysis.\n> Steps to Reproduce\n>\n>    1. Upload a office document with auto_close macro\n>    2. analyse with entering the VM\n>    3. Upload an office document with auto_close macro\n>    4. During the analysis, enter the vm and close the document\n>    5. Compare results (specifically the behavioral analysis)\n>\n> Context\n>\n> Please provide any relevant information about your setup. This is\n> important in case the issue is not reproducible except for under certain\n> conditions.\n> Question Answer\n> Git commit fab86b4\n> <https://github.com/kevoreilly/CAPEv2/commit/fab86b48ac1307954b84d95d2543e3999d8b9c32>\n> OS version Host: Ubuntu 18.04, client:Windows 7\n>\n> \u2014\n> You are receiving this because you are subscribed to this thread.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/169>, or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH347NLJLSXQMUGIHQGDRLW3DHANCNFSM4MEVYPIA>\n> .\n>\n\nComment: The tricky part is 4: during analysis, enter vm and close document! Easier said than done :-)\r\n\r\nThe existing technology in cape for automating the interaction inside the vm is the human auxiliary module. I believe it's quite limited in terms of which gui components it can \"see\" in order to be able to click on, but this would be the place to start.\r\n\r\nLet me know how you get on, I look forward to the pull request :-)",
+  "Title: HTTPConnectionPool Read Timeout\nBody: I use Cuckoo sandbox as well and was working perfectly on that end. I ported the VMs I use, Win7 Sandboxes to use for CAPE and changed them to use Python3 & the new agent.py located in the git repo of CAPE. \r\n\r\nUnfortunately I keep getting this error sometime after the analysis starts. HTTPConnectionPool(host='192.168.56.102', port=8000): Read timed out. (read timeout=5). The python error logs says its a socket timeout. Any reason why this would be happening? My VBox Virtual Machine can contact the Host only 192.168.56.1 but is unable to throw the data back through the agent.py it seems.\r\n\r\nAt the end of the analysis this error pops up as well: Unable to passthrough root command as we're unable to connect to the rooter unix socket: [Errno 13] Permission denied although my rooter is running using sudo (sudo python3 rooter.py -g [username]). I am using INETSIM btw. Following that the web page just shows my analysis task as processing and never goes to reported.\nComment: Hello, When you see that i would suggest you to check the iptables, i saw it once and when i chechet it it was due to iptables \nComment: When the Virtual Machine (192.168.56.102) is on, I tried doing curl 192.168.56.102:8000 and actually get a response in the host. For Iptables I added a new rule to allow traffic coming from vboxnet0. Strangely still has that error above. \nComment: well i still don't see iptables posted here, curl doesn't go the same way as result server communicates once iptables are set\nComment: closing due of lack of feedback\r\n\r\nand about never reported is bcz you didn't start utils/process.py",
+  "Title: Adds chm package\nBody: chm.py already exists - this simply adds the logic for detecting these files.\nComment: thanks, in general it was opened in IE no?\nComment: Nope, triggered the generic package for me (so cmd). CHM needs hh.exe to run properly :+1: ",
+  "Title: Change default user from 'cape' to others\nBody: Hi one more issue, I want to actually change the user that deploys the files upon submitting a document. So currently now 'cape' owns the /opt/CAPEv2 and everytime it creates files in 'tmp/cuckoo-tmp' its under 'CAPE' as well. Is there a way to change this to another user. cause currently I am running cape of a different user and due to permissions upon creation the file is permission denied.\nComment: Yes, Learn how linux permission works ",
+  "Title: Cleaning out Old Tasks\nBody: With the removal of the --clean option from CAPE v1, how do we go about cleaning out all previous tasks without the use of the GUI. Also, I have a task that was interrupted as the file submitted was not found. Its listed in the web GUI as failed and I want to delete it but I cannot find the task data inside MongoDB or Postgresql. \r\n\r\nIt would also help if this option were to be reintroduced into CAPE v2 for mass cleanup.\nComment: Hi Hopyoprop! This option is thankfully still available!\r\n\r\npython utils/cleaners.py --clean\nComment: Whew alright. Thank you so much. Also for all the work to port to Python3.",
+  "Title: Web GUI: How to force a \"default\" guest image?\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n## Context\r\n\r\nI've added a very specific guest to my CAPE instance that should *not* be used by default. When I want to submit a file via the web gui, the default for the machine is \"First available\". Is there a way to force a default VM? (to not use the specific one). It's dangerous to have to change the machine manually... There are risks to forget to select the correct one.\r\nVia the API, it's possible to specify the machine to use...\nComment: well as by api you can specify the same via webgui\r\nthere is no way for such feature, as that would kill balancing of tasks, if you want want leaks from that vm why just not to enforce iptables for that vm ip?\nComment: or if you have a suggestion how to handle it without write code to show specific vm as selected\nComment: I'll check deeper on this...\nComment: i send you response in slack(YE) where you can set the default vm \nComment: closing this, let us know if you have an idea how to handle that apart of that that i told you in YE slack",
+  "Title: XLM macro deobfuscation enhancement\nBody: Test sample: 481c9200ebafb74cfe5ed73a750a9e06",
+  "Title: password option not used in excel 2013 with xls package\nBody: Example: https://capesandbox.com/analysis/288/\nComment: thanks, just tested, looks like sflock doesn't handle it \nComment: i just tested https://github.com/herumi/msoffice and it also doesn't support that, so we can't do nothing with this \nComment: Hmm. Even if we can't decrypt the static file, could we at least have cuckoomon input the password and click ok, so at least get the runtime data?\nComment: cuckoomon is dead, long live capemon ;P \r\nbut no that would be a problem there was an issue about this in one of the repos i think in cuckoo-modified, MS doesn't provide iface for easy manipulation, but \\cc @kevoreilly  maybe he can do some magic\nComment: what can solve this is interactive mode, which @enzok  started to port, but I don't have time to handle everything by myself, so if someone can help with that would be cool\nComment: Is that purely a Python 2 to 3 port.? I could do that. I know nothing about writing win32 C++ for capemon :P\nComment: yes + cape adaptation, check if enzok still has a branch for that, not sure, maybe he can tell us more\nComment: I lost the branch I was working on to incorporate guacamole into CAPE. I was able to recover some of the work, but didn't have the energy to recreate all of it. At the time I was focusing on VSphere interaction which ultimately was proving to be impractical due to recent VSphere changes. It should be much more possible to get something working with KVM though.",
+  "Title: Update objects.py\nBody: encode str buffers\nComment: thanks",
+  "Title: Excel document (xls) running on legacy office in public CAPEv2\nBody: Hi everyone,\r\n\r\nI just submitted a malicious XLS document that cannot be opened in Office 2013. I noticed that a newer version of Excel is pinned to the Taskbar. How do I get the public sandbox to run that? \nComment: ah yah, i need to rename office*2007 to 2016 to allow that\nComment: If you could do that soon that would be great. I want to analyze this xls before the dropper infrastructure is gone. I broke my local CAPEv1 sandbox, and have yet to rebuild with v2 :P\nComment: yes already done :)\nComment: let me know if that works\nComment: just in case you need to set the specific package\nComment: Looks like you need to accept the office privacy policy on each of the Office 2017 apps \ud83e\udd23 \r\n\r\nhttps://capesandbox.com/analysis/285/\nComment: omg that office, we had updated vms just another day let me see if we can trick that with registry value\nComment: ok lets see https://docs.microsoft.com/en-us/deployoffice/privacy/manage-privacy-controls\nComment: damn i will need to update vms tomorrow\nComment: ok solved, see job 303 for xls and 304 for payload\nComment: btw thanks for catch this\nComment: Looking at 303, it seems macros are not configured to auto-enable in the Excel 2017 settings. More VM changes :P\nComment: everything is enabled and allowed \nComment: @doomedraven  Looking at the screenshots of https://capesandbox.com/analysis/337/ macros are not enabled.\nComment: I forgot this sample names the target. Can you remove the analysis of this sample? The delete function doesn't work.\nComment: ok i will, deletion is banned for public\nComment: Thanks!\nComment: Unfortunatly, the same sample was analyzed multiple times. Please also delete IDs:\r\n342\r\n329\r\n303\r\n289\r\n285\r\n283\r\n252\nComment: done\nComment: Crap, I missed the last two IDs in the list. Sorry. One last time\r\n290\r\n282\nComment: next time i will ask for whiskey delivery first :P \nComment: :P Next time I will build my own instance to avoid this issue and work on some PRs... and maybe send you some later anyway for all your work on this :)\nComment: ;) well let me know if you find some more bugs",
+  "Title: Update utils.py\nBody: nice statistical algorithm, add some words for linux malware",
+  "Title: Update views.py\nBody: `if not xxx` will always be Flase\nComment: hello but i don't see any change related to that, only removed try/except which is required as inside of the search there is `raise`",
+  "Title: KeyError: (<weakref at 0x7fbf4a8f5d68; to 'function' at 0x7fbf43b9dd90 (go)>,) \nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [yes] I am running the latest version\r\n- [yes] I checked the documentation and found no answer\r\n- [yes] I checked to make sure that this issue has not already been filed\r\n- [yes] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nCuckoo to proceed with its execution\r\n\r\n# Current Behavior\r\n\r\nExited with the error below:\r\n\r\n# Failure Information (for bugs)\r\n\r\nException ignored in: <bound method Database.del of <lib.cuckoo.core.database.Database object at 0x7fbefcf22828>>\r\nTraceback (most recent call last):\r\nFile \"/opt/CAPEv2/lib/cuckoo/core/database.py\", line 447, in del\r\nFile \"/{redacted}/.local/lib/python3.6/site-packages/sqlalchemy/engine/base.py\", line 2039, in dispose\r\nFile \"/{redacted}/.local/lib/python3.6/site-packages/sqlalchemy/pool/impl.py\", line 251, in recreate\r\nFile \"\", line 2, in init\r\nFile \"/{redacted}/.local/lib/python3.6/site-packages/sqlalchemy/util/deprecations.py\", line 128, in warned\r\nFile \"/{redacted}/.local/lib/python3.6/site-packages/sqlalchemy/pool/base.py\", line 221, in init\r\nFile \"/{redacted}/.local/lib/python3.6/site-packages/sqlalchemy/event/base.py\", line 150, in _update\r\nFile \"/{redacted}/.local/lib/python3.6/site-packages/sqlalchemy/event/attr.py\", line 392, in _update\r\nFile \"/{redacted}/.local/lib/python3.6/site-packages/sqlalchemy/event/registry.py\", line 115, in _stored_in_collection_multi\r\nKeyError: (<weakref at 0x7fbf4a8f5d68; to 'function' at 0x7fbf43b9dd90 (go)>,) \r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\nfirst installation of cuckoo.  i ran cape2.sh, seems to be installing well.  but when i execute it, i have the above error.\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | na\r\n| OS version       | Ubuntu 18.04.4 LTS\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: That is sqlalchemy problem,\r\nTry tro resintall/upgrade sqlalchemy\r\n\r\n\r\nEl mar., 31 mar. 2020 0:11, helios4281 <notifications@github.com> escribi\u00f3:\r\n\r\n> This is opensource and you getting *free* support so be friendly!\r\n>\r\n> This is from a fresh installation of cuckoo and runs the cape2.sh.\r\n> After everything seems to install well, still cannot run Cuckoo, and\r\n> having this error:\r\n>\r\n> Exception ignored in: <bound method Database.del of\r\n> <lib.cuckoo.core.database.Database object at 0x7fbefcf22828>>\r\n> Traceback (most recent call last):\r\n> File \"/opt/CAPEv2/lib/cuckoo/core/database.py\", line 447, in del\r\n> File\r\n> \"/{redacted}/.local/lib/python3.6/site-packages/sqlalchemy/engine/base.py\",\r\n> line 2039, in dispose\r\n> File\r\n> \"/{redacted}/.local/lib/python3.6/site-packages/sqlalchemy/pool/impl.py\",\r\n> line 251, in recreate\r\n> File \"\", line 2, in init\r\n> File\r\n> \"/{redacted}/.local/lib/python3.6/site-packages/sqlalchemy/util/deprecations.py\",\r\n> line 128, in warned\r\n> File\r\n> \"/{redacted}/.local/lib/python3.6/site-packages/sqlalchemy/pool/base.py\",\r\n> line 221, in init\r\n> File\r\n> \"/{redacted}/.local/lib/python3.6/site-packages/sqlalchemy/event/base.py\",\r\n> line 150, in _update\r\n> File\r\n> \"/{redacted}/.local/lib/python3.6/site-packages/sqlalchemy/event/attr.py\",\r\n> line 392, in _update\r\n> File\r\n> \"/{redacted}/.local/lib/python3.6/site-packages/sqlalchemy/event/registry.py\",\r\n> line 115, in _stored_in_collection_multi\r\n> KeyError: (<weakref at 0x7fbf4a8f5d68; to 'function' at 0x7fbf43b9dd90\r\n> (go)>,)\r\n>\r\n> Thanks.\r\n> Regards,\r\n> Marco A dela Vega\r\n>\r\n> \u2014\r\n> You are receiving this because you are subscribed to this thread.\r\n> Reply to this email directly, view it on GitHub\r\n> <https://github.com/kevoreilly/CAPEv2/issues/156>, or unsubscribe\r\n> <https://github.com/notifications/unsubscribe-auth/AAOFH34Q4IZ3AQE5QNLFLIDRKEKJFANCNFSM4LXBPLIA>\r\n> .\r\n>\r\n\nComment: closing due to  lack of feedback, let us know if upgrading sqlalchemy that solved your problem\nComment: already reinstalled/upgraded sqlalchemy. still have same issue.  current sqlalchemy version:  sqlalchemy-1.3.15\nComment: hm i can't reproduce it in any of 2 servers that we running with v2,\r\n i have pushed tht part under try/except can you `git pull` and try again and post output if ti fails?\nComment: you can close/ignore this case.  i'll try to start from the scratch. thanks for the help though. \nComment: let us know what solves that for you",
+  "Title: Guest python crash: faulting module name: _ctypes.pyd\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nBehavior/dynamic analysis\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\nPop up in guest: Python has stopped working (without details)\r\n--> which results in no dynamic analysis in my result page\r\n\r\n# Failure Information (for bugs)\r\nError occurs right after the following log lines:\r\n[lib.cuckoo.core.guest] info: guest is running cuckoo agent 0.11 (id=cuckoo-cape, ip=192.168.56.101)\r\n[lib.cuckoo.core.guest] debug: uploading analyzer to guest 0.11 (id=cuckoo-cape, ip=192.168.56.101)\r\n[lib.cuckoo.core.guest] info: uploading support files to guest (id=cuckoo-cape, ip=192.168.56.101, size=17113585)\r\n[root] debug: task #8: live log analysis.log initialized\r\n\r\n\r\nApplication evtx log in windows:\r\nFaulting application name: python.exe \r\nfaulting module name: _ctypes.pyd\r\nException code: 0xc0000005\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| OS version       | Ubuntu 18.04.4, guest: Win7x64\r\n\r\nI tried with Python 3.8 and 3.7 on the guest\r\nOn my host I'm running python 3.6\r\n\r\nCape downloaded and installed on March 25, 2020.\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: hello is this happens to all samples or just some of them? if some can you add it please \r\n\r\ncan you try this: How to debug analyzer... ?\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/wiki/Tips'n'Tricks#how-to-debug-analyzer-and-any-script-that-executes-inside-of-the-virtual-machine\nComment: btw is your python version inside of the vm is x86 or x64?\nComment: Hi\r\n\r\nsorry up front if I'm doing something really stupid, but I have been trying to get this running for several days now.\r\n\r\nWhen trying to launch the analyzer, it immediately crashes with the same error in the windows event log. (_ctypes.pyd)\r\n\r\nPython inside the vm is x64\r\n\r\nThanks!\nComment: Ya and readme says x86 :) thats all you need to use x86 python version even\non x64 arch\n\nEl mar., 31 mar. 2020 0:03, Sasja Reynaert <notifications@github.com>\nescribi\u00f3:\n\n> Hi\n>\n> sorry up front if I'm doing something really stupid, but I have been\n> trying to get this running for several days now.\n>\n> When trying to launch the analyzer, it immediately crashes with the same\n> error in the windows event log. (_ctypes.pyd)\n>\n> Python inside the vm is x64\n>\n> Thanks!\n>\n> \u2014\n> You are receiving this because you commented.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/155#issuecomment-606275186>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH377HSQPIGINUXYWSH3RKEJMHANCNFSM4LW6BE6Q>\n> .\n>\n\nComment: Indeed it says: tested with x86\r\n\r\nThis resolved the issue, at least it is documented, and I see you included a check... Thanks\nComment: glad it works, yes i have added as that is very common mistake to run it with with x64 , enjoy",
+  "Title: Add rules and fix rule\nBody: ",
+  "Title: New rule plus updates to LNK rule\nBody: ",
+  "Title: Update analyzer.py\nBody: ",
+  "Title: Update config.py\nBody: ",
+  "Title: Update config.py\nBody: ",
+  "Title: Update views.py\nBody: ",
+  "Title: Update abstracts.py\nBody: ",
+  "Title: Update analyzer.py\nBody: ",
+  "Title: Update index.html\nBody: \nComment: nice catch, as i did sed /malfamily/detections/ and didn't spot it",
+  "Title: Add LNK Yara rules\nBody: ",
+  "Title: Update misp.py\nBody: ",
+  "Title: Update _info.html\nBody: ",
+  "Title: Add EnigmaStub\nBody: Add Yara rule for Enigma packer stub.\nComment: Thank you Bart!",
+  "Title: Results not displayed\nBody: Sample that has some anti-dbg functionality for older debugger such as SoftIce etc., opens handles to\r\n\r\n- \\??\\NTICE\r\n- \\??\\SICE\r\n- \\??\\SIWDEBUG\r\n\r\nSig:\r\nhttps://github.com/kevoreilly/community/blob/0c517f27af3ceefa7c1fbb8d4f79e80aba6fdc9e/modules/signatures/antidbg_devices.py\r\n\r\nIssue: \r\nHits are not displayed. For example:\r\n\r\n> Checks for the presence of known devices from debuggers and forensic tools\r\nIf you click on the results, it displays blank, it should display the found results.\r\n\r\nExample:\r\nhttps://capesandbox.com/analysis/15081/\r\n\r\n\nComment: ya, that is bcz \r\n```\r\nfor indicator in indicators:\r\n            if self.check_file(pattern=indicator, regex=True):\r\n                return True\r\n\r\n        return False\r\n```\r\n\r\nit not adding data to show, so that is correct behavior :P is easy to show what it matches, but not file, for get file match you need to rewrite the whole sig\r\n\r\ni have pushed update that will show you how to implement that feature and you can add that where it missed ;) \r\n\r\nhttps://github.com/kevoreilly/community/commit/544ae8fef86acfc751e23c4163d2bf4e84d9b18f",
+  "Title: Update plugins.py\nBody: ",
+  "Title: CuckooDisableMobule import error\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Current Behavior\r\n\r\nI'm looking for information about the following error:\r\n(reported in analysis logs)\r\n\r\n`2020-03-24 07:24:35,450 [root] WARNING: Unable to import the auxiliary module \"modules.auxiliary.procmon\": cannot import name 'CuckooDisableModule' from 'lib.common.exceptions' (C:\\tmpsq5gh5u_\\lib\\common\\exceptions.py)\r\n`\r\n\r\nIn lib/cuckoo/common/exceptions.py, I have:\r\n\r\n```\r\nclass CuckooDisableModule(CuckooOperationalError):\r\n    \"\"\"Exception for disabling a module dynamically.\"\"\"\r\n    pass\r\n\r\n```\nComment: thanks i will check that\nComment: update pushed\nComment: but we not really yet using this, so if that will keep failing i will just remove it at the moment or move to community repository, thanks for report it anyway :)\nComment: Works better. BTW, typo detected:\r\n\r\n2020-03-25 02:30:23,702 [root] WARNING: Unable to import the auxiliary module \"modules.auxiliary.procmon\": No module named 'lib.coommon'\r\n\r\n(in analyzer/windows/modules/auxiliary/procmon.py)\nComment: fixed thanks\nComment: so this can be closed?",
+  "Title: Update community.py\nBody: \nComment: nice offline install :) thanks",
+  "Title: Running a sample twice produces an invalid JSON roughly every second time\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nRunning the same file twice should create the same report (of course not PIDs and things like that) and it should contain valid JSON\r\n\r\n# Current Behavior\r\n\r\nRoughly every second time you submit a file it creates a JSON report which is not valid because there are \"}\" or other string fragments at the end of the JSON. I'll attach two reports to this case.\r\n\r\n95 is invalid (See the ' ion\" ' at one of the last lines)\r\n96 is a valid report\r\n\r\nThe were both created with the same sample I uploaded (I'll attach this one too - It's a benign powershell script which gets the public IP)\r\n\r\n# Failure Information (for bugs)\r\n\r\nTough one for me to troubleshoot. Woudl be interesting if this happens for others, too\r\n\r\n## Steps to Reproduce\r\n- Submit test1.ps1 once\r\n- Submit test1.ps1 a second time\r\n\r\nOne of the reports shouldn't be parseable due to text fragments on the end of the file\r\n\r\n## Context\r\n\r\nInstalled with cape2.sh\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | cec3fe0e7946cc929d5135d46170256ca22fa259\r\n| OS version       | linux capev2 5.3.0-42-generic #34-18.04-1-Ubuntu\r\n\r\n[test1.ps1.txt](https://github.com/kevoreilly/CAPEv2/files/4360222/test1.ps1.txt)\r\n[95_report.txt](https://github.com/kevoreilly/CAPEv2/files/4360215/95_report.txt)\r\n[96_report.txt](https://github.com/kevoreilly/CAPEv2/files/4360219/96_report.txt)\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\nComment: interesting, in my case it just adding `{}` instead of your `ion`, will need to debug from where this comes\nComment: That seems to differ what is there. I did another testrun and there was \"network_connection\" there. \nComment: interesting issue, we will add this to cape hackaton this week, so let us know if you see any other issue so we will kill it\nComment: Thanks a lot! I'll check if this is because the response to the ipinfo.io call returns a JSON itsself which maybe corrupts the report.json\nComment: hm im not really know how that possible and from where it comes, tried to debug that but without success \nComment: I had a closer look at this and used Robo 3T to view the Mongo DB content itsself and the JSON produced there is valid. This information should in my understanding narrow down where the problem happens since the informations get stored correctly. I'll further investigate and update this issue with my findings.\nComment: yes i was trying to reproduce that in our dev server over the weekend, and wasn't able to see exact point of this, i see bad data in each second run in json, but can't see where it fails, i suspect is somehow related to netwrok signatures, but will need to dig deeper once i will have some spare tiem\nComment: I think you are right. If I test samples which don't make use of network the JSON files are valid. \nComment: So my assumption was, that `json.dumps` is somehow misbehaving. Since it seems to have worked in CAPEv1 (Python 2.7) and in CAPEv2 (Python 3) it stopped working I thought it may have to deal with how Python works with JSON. According to this StackOverflow question it indeed changed:\r\n\r\nhttps://stackoverflow.com/questions/32411965/why-does-json-dumps-escape-non-ascii-characters-with-uxxxx\r\n\r\nSo what I did was adding \r\n\r\n`ensure_ascii=False `\r\n\r\nto modules/reporting/jsondump.py:\r\n\r\n```\r\n# Copyright (C) 2010-2015 Cuckoo Foundation.\r\n# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org\r\n# See the file 'docs/LICENSE' for copying permission.\r\n\r\nfrom __future__ import absolute_import\r\nimport os\r\nimport simplejson as json\r\nimport codecs\r\n\r\nfrom lib.cuckoo.common.abstracts import Report\r\nfrom lib.cuckoo.common.exceptions import CuckooReportError\r\n\r\nclass JsonDump(Report):\r\n    \"\"\"Saves analysis results in JSON format.\"\"\"\r\n\r\n    def run(self, results):\r\n        \"\"\"Writes report.\r\n        @param results: Cuckoo results dict.\r\n        @raise CuckooReportError: if fails to write report.\r\n        \"\"\"\r\n        indent = self.options.get(\"indent\", 4)\r\n        encoding = self.options.get(\"encoding\", \"utf-8\")\r\n        ram_boost = self.options.get(\"ram_boost\", True)\r\n\r\n        try:\r\n            path = os.path.join(self.reports_path, \"report.json\")\r\n            with codecs.open(path, \"w\", \"utf-8\") as report:\r\n                if ram_boost:\r\n                    buf = json.dumps(results, sort_keys=False, ensure_ascii=False\r\n                              indent=int(indent), encoding=encoding)\r\n                    report.write(buf)\r\n                else:\r\n                    json.dump(results, report, sort_keys=False, ensure_ascii=False\r\n                              indent=int(indent), encoding=encoding)\r\n        except (UnicodeError, TypeError, IOError) as e:\r\n            raise CuckooReportError(\"Failed to generate JSON report: %s\" % e)\r\n```\r\n\r\nand since then the JSON exports are valid!\r\n\r\nNot sure if this has any unintended side effects which I'm not seeing right now...\nComment: cool thank you for investigate that, that was added i think bcz some data was bytes and not just string, but that is easy to spot as it will throw exception, so thank you again for this, i will push that and later will figurate the problem\nComment: so the problem itself could be due to simplejson library\nComment: Yeah looks like if you use the legacy json you don't need the \"ensure_ascii\" part. At least my test.ps1 script rand three times without problems\nComment: well with legacy json it gives a lot of problems with bytes vs strings as people start adding their extensions and then complain lets see if this solve this, i hope so :)",
+  "Title: Samples submitted via API don't have internet access\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nIf I submit a sample over Web UI the sample uploaded has internet access as expected. If I use the API \r\n\r\nhttp://cape.ip/api/tasks/create/file/\r\n\r\nit seems that the sample has no internet access. For testing purposes I created a small PowerShell script\r\n\r\n`Invoke-RestMethod http://ipinfo.io/json | Select -exp ip`\r\n\r\nwhich I keep uploading - with the same result. I have the feeling, that I could add the network options through \"options\" but I'm unable to find documentation. The options available on the Submit-page don't list network specific options.\r\n\r\n# Current Behavior\r\n\r\nNo internet access for samples submitted via API\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n- Submit test powershell script via API to CAPE instance\r\n- HTTP Section and TCP Section stay empty\r\n- Upload sample via Web and there will be HTTP and TCP section filled\r\n\r\n\r\n\nComment: ya yoy need to set default routing in config or pass it as option\nComment: options=\"route=X\"\nComment: Do you know where I can set default routing in config?\nComment: https://github.com/kevoreilly/CAPEv2/blob/master/conf/routing.conf#L12\r\n\r\nplease read all configs to be come familiar with the configuration\nComment: That is already set\r\n\r\n```\r\nroute = internet\r\ninternet = ens33 \r\n```\r\n\r\n(my \"dirty line\")\nComment: ok yes there is ignorance of that for some reason, https://github.com/kevoreilly/CAPEv2/blob/master/lib/cuckoo/core/scheduler.py#L457 \r\ni will update code later to check config\nComment: Cool, thanks a lot for your work!\nComment: thanks for catching and repotring bugs, that is also important part, i will be back in few hours with update\nComment: Indeed setting it manually to \"internet\" instead of \"tor\" fixes the problem as a workaround\nComment: yep, we use that to not leak your server ip, that will be fixed today :)\nComment: ok fixed now, thanks for reporting, btw if you specify by options, it will overwrite conf option, just to make it easier for different testing",
+  "Title: TrId error\nBody: Hi,\r\nI have a problem with TrID in processing:\r\n\r\nERROR    lib.cuckoo.core.plugins: Failed to run the processing module \"TrID\":\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 228, in process\r\n    data = current.run()\r\n  File \"/opt/CAPEv2/utils/../modules/processing/trid.py\", line 31, in run\r\n    output = subprocess.check_output([ trid_binary, \"-d:%s\" % definitions, self.file_path], stderr=subprocess.STDOUT)\r\n  File \"/usr/lib/python3.6/subprocess.py\", line 356, in check_output\r\n    **kwargs).stdout\r\n  File \"/usr/lib/python3.6/subprocess.py\", line 438, in run\r\n    output=stdout, stderr=stderr)\r\nsubprocess.CalledProcessError: Command '['/opt/CAPEv2/data/trid/trid', '-d:/opt/CAPEv2/data/trid/triddefs.trd', '/opt/CAPEv2/storage/binaries/7f59bf0b9a1a27b3ab586a0c8a8cd523fcc1d530a0231de8df1e09e8e3387016']' died with <Signals.SIGABRT: 6>.\r\n2020-03-20 09:24:10,909 [lib.cuckoo.core.plugins] ERROR: Failed to run the processing module \"TrID\":\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/utils/../lib/cuckoo/core/plugins.py\", line 228, in process\r\n    data = current.run()\r\n  File \"/opt/CAPEv2/utils/../modules/processing/trid.py\", line 31, in run\r\n    output = subprocess.check_output([ trid_binary, \"-d:%s\" % definitions, self.file_path], stderr=subprocess.STDOUT)\r\n  File \"/usr/lib/python3.6/subprocess.py\", line 356, in check_output\r\n    **kwargs).stdout\r\n  File \"/usr/lib/python3.6/subprocess.py\", line 438, in run\r\n    output=stdout, stderr=stderr)\r\nsubprocess.CalledProcessError: Command '['/opt/CAPEv2/data/trid/trid', '-d:/opt/CAPEv2/data/trid/triddefs.trd', '/opt/CAPEv2/storage/binaries/7f59bf0b9a1a27b3ab586a0c8a8cd523fcc1d530a0231de8df1e09e8e3387016']' died with <Signals.SIGABRT: 6>.\r\n\nComment: that is problem with trid and your server itself not cape\r\n\r\n```\r\nsudo rm -f /usr/lib/locale/locale-archive\r\nsudo locale-gen --no-archive\r\n```",
+  "Title: Proc Memory missing\nBody: Hi,\r\nI activated procmemory in the configuration file but in the report it is missing. This problem occurred in the last days.  I have always had the data about process memory.\r\nIt would be cool to understand what changed and how to have the data back. I'm trying to evaluate CAPE sandbox and this information is needed by my script.\r\n\r\nThanks in advance\nComment: try to set `combo=1` in options\nComment: Hi @doomedraven \r\nthanks for the fast reply, I tried to add in both section of conf the combo option but it doesn't solve the problem..\r\nI have to modify something else?\r\nThanks\nComment: hello, in which both sections? can you share hash? no you don't need to modify nothing\nComment: I launched the submit script with --options \"combo=1\" but no process memory, just noticed more info under the CAPE section\nComment: can you share hash ?\nComment: You mean the hash of the sample?\r\nIf yes, it's this: 2869eae9dd579672ceb658ce860b7810\r\n\nComment: Hi doomdraven,\r\nDo you have any idea why it's missing? The \"combo=1\" solution doesn't solve my problem. I can see in options in the analysis report \"combo=1\" but there is no procmemory.\r\nThe master branch is: 8692ecce3f999fe931b2047803c6da0fd10c6386\r\nand the last commit: a7ede26f14f2bba675008d2aa03cb2a8ecb8ce2f\nComment: there was problem with monitor, yesterday it was updated, i need to test it, @kevoreilly  is our monitor guru\nComment: Hi blacksnape - do you mean that you are submitting samples with 'full process memory dumps' in the web ui, but you don't see a resulting 'process memory' tab in the resulting job?\r\n\r\n![image](https://user-images.githubusercontent.com/22219888/77422854-14509900-6dc6-11ea-9079-4951ef13d24a.png)\r\n\r\n![image](https://user-images.githubusercontent.com/22219888/77422921-2e8a7700-6dc6-11ea-9517-ecfb6d94ced9.png)\r\n\nComment: Thanks @doomedraven, always super fast !\r\n\r\nHi @kevoreilly,\r\nI submit the samples by terminal with submit.py and I can't have the procmem analysis in the report and obviously in the web ui too. I tried to add --options \"combo=1\" but doesn't solve.\r\n\nComment: Try \"procmemdump=1\" and let me know how that goes.\nComment: That fixed it. Thanks!\nComment: one tip then as this was so simple, i didn't pay attention, when you submit via webgui you can sniff all parameters with burp/mitmproxy/whatever or just see what options are enabled by default in webgui in analysis under options(need to click on it)",
+  "Title: Update vbs.py\nBody: ",
+  "Title: Update vbs.py\nBody: ",
+  "Title: MITRE not working despite being enabled\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nMITRE informations should  be available in a report if it is enabled in conf/reporting.conf\r\n\r\n# Current Behavior\r\n\r\nMITRE informations are not available in a report if it is enabled in conf/reporting.conf\r\n\r\n# Failure Information (for bugs)\r\n\r\nLooks like the default config \"reporting.conf\" [mitre] section is shipped without the line \r\n`local_file = data/mitre_attack.json`\r\n\r\nAfter adding the line so it reads\r\n\r\n```\r\n[mitre]\r\nenabled = yes\r\nlocal_file = data/mitre_attack.json\r\n```\r\n\r\nand restarting CAPE it works as expected\r\n\r\n## Steps to Reproduce\r\nAdd malware like hxxp://litetronix-me.com/images/Javarunetime.jar to CAPE, look at the report and you will notice MITRE tab is missing despite MITRE being enabled in config.\r\n\nComment: yap, that is bcz mitre things are based on signatures done by community (sigs X == ttp X) https://github.com/kevoreilly/community if you want to enrich them you are more than welcome \nComment: The signatures itsself are working as expected you just have to add the line\r\n\r\n`local_file = data/mitre_attack.json`\r\n\r\nas it was in Cape v1 to reporting.conf if you want to use mitre. Maybe I wasn't clear enough about that\nComment: em not really sure how it disappear it from repo, I have it on my setup, thanks for catch that",
+  "Title: Update netlog.py\nBody: There is no 'long integer' in Python 3 anymore\nComment: thanks",
+  "Title: change cuckoo -> cape in systemd\nBody: ",
+  "Title: Update utils.py\nBody: ",
+  "Title: Update startup.py\nBody: \nComment: btw https://github.com/kevoreilly/CAPEv2/commit/50735e1bbfcac10f6dc6ec8ac1ddad93ba31247f ;) \nComment: oh haha, thanks\nComment: thanks you for all the improvements, many parts of the code wasn't touched for more than 5y for sure\nComment: Yes I too have been much admiring and appreciating these improvements :-)",
+  "Title: Update objects.py\nBody: \nComment: thanks",
+  "Title: Patch 1\nBody: ",
+  "Title: Possible error in utils/rooter.py\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [ ] I checked the documentation and found no answer\r\n- [ ] I checked to make sure that this issue has not already been filed\r\n- [ ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\nFunction `init_rttable` should actually create routes but it errors out since `run()` returns a byte object and not a string which doesn't support `split`\r\n\r\nPlease describe the behavior you are expecting\r\n\r\nIf VPN gets enabled, rooter,py can't get up (Spawn error). If you disable VPN in router.conf everything works well.\r\n\r\nWhat is the current behavior?\r\n\r\n```\r\n2020-03-16 14:22:04,223 [cuckoo-rooter] DEBUG: b'0.0.0.0/1 via 10.8.8.1 \\n10.8.8.0/24 proto kernel scope link src 10.8.8.6 \\n128.0.0.0/1 via 10.8.8.1 \\n'\r\n2020-03-16 14:22:04,223 [cuckoo-rooter] ERROR: Error executing command\r\nTraceback (most recent call last):\r\n  File \"rooter.py\", line 393, in <module>\r\n    output = handlers[command](*args, **kwargs)\r\n  File \"rooter.py\", line 112, in init_rttable\r\n    for line in stdout.split(\"\\n\"):\r\nTypeError: a bytes-like object is required, not 'str'\r\nTraceback (most recent call last):\r\n  File \"rooter.py\", line 399, in <module>\r\n    \"exception\": str(e) if e else None,\r\nNameError: name 'e' is not defined\r\n```\r\n\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n- Enable VPN in router.conf\r\n- sudo supervisorctl restart all\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. step 1\r\n2. step 2\r\n3. you get it...\r\n\r\n## Context\r\n\r\nIn my case it helped to change \r\n\r\n`for line in stdout.split(\"\\n\")`\r\n\r\nto\r\n\r\n`for line in stdout.decode(\"ascii\").split(\"\\n\")`\r\n\r\nto fix the problem.\nComment: thanks, checking code\nComment: that was due to missing `universal_newlines=True` to return str and not bytes, can you check it please? i don't use vpn right now\nComment: You are correct, after changing\r\n\r\n`p = subprocess.Popen(args, stdout=subprocess.PIPE, stderr=subprocess.PIPE)`\r\n\r\nto\r\n\r\n`p = subprocess.Popen(args, stdout=subprocess.PIPE, stderr=subprocess.PIPE, universal_newlines=True)`\r\n\r\nin `utils/rooter.py` everything works as expected - even without my proposed change. One more thing: Did I mess up something or is this a bug?\r\n\r\nThanks!\r\n\nComment: It was a bugx so thanks for catch it\n\nEl mar., 17 mar. 2020 7:35, hariomenkel <notifications@github.com> escribi\u00f3:\n\n> You are correct, after changing\n>\n> p = subprocess.Popen(args, stdout=subprocess.PIPE, stderr=subprocess.PIPE)\n>\n> to\n>\n> p = subprocess.Popen(args, stdout=subprocess.PIPE, stderr=subprocess.PIPE,\n> universal_newlines=True)\n>\n> in utils/rooter.py everything works as expected - even without my\n> proposed change. One more thing: Did I mess up something or is this a bug?\n>\n> Thanks!\n>\n> \u2014\n> You are receiving this because you commented.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/124#issuecomment-599901888>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH37YHADW5WYKP4YLCL3RH4K35ANCNFSM4LMKN6NQ>\n> .\n>\n",
+  "Title: Update process.py\nBody: This string is tooooo long",
+  "Title: Update README.md\nBody: ",
+  "Title: Update process.py\nBody: now it looks a little bit clearer\nComment: thank you",
+  "Title: loader dev\nBody: ",
+  "Title: Update files.py\nBody: btw, it seems that we don't need 'Storage' 'Folders' and 'Files' in this file at all.",
+  "Title: Update plugins.py\nBody: add - to the list of characters, i have found some ET alerts that contain them",
+  "Title: Update community.py\nBody: ",
+  "Title: Change how LogPipe is passed so all Loader log messages are available\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nAll Loader log messages should be shown in CAPE Analysis log.\r\n\r\n# Current Behavior\r\n\r\nCalls to DoOutputDebugString and DoOutputErrorString in Loader only function after ReadConfig has been called, since that's where the random-named LogPipe is defined. This only happens for \"injection\" and \"load\" executions.\r\n\r\n## Steps to Reproduce\r\n\r\nReview Analysis log and notice many DoOutputDebugString and DoOutputErrorString calls are absent, such as \"DoOutputDebugString(\"CAPE loader.\\n\");\"\r\n\r\nMaybe the LogPipe can be passed as an argument to Loader invocation???\r\n\r\n## Context\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | commit 9046ad63a3564ecb3225f4062767ca51dc12b347 (HEAD -> capemon, origin/capemon, origin/HEAD)\r\n| OS version       | Ubuntu 18.04.4 LTS\r\n\r\n\nComment: Sorry, I realise this should be in CapeMon repo :(\nComment: Hi rotateLeft! Thanks a lot for the feedback. It's actually intentional that these log messages don't make it into the analysis log of the sandbox. We wouldn't want \"CAPE loader\" appearing every time the loader is called!\r\n\r\nThe real reason they're in there is because the loader is intended as dual-use. The CAPE monitor can be run in standalone mode by supplying a config.ini with standalone=1 inside. It can therefore be used for manual reverse engineering, or this can also be a convenient way to do monitor dev.\r\n\r\nIf you check the DoOutputDebugString function you will see it calls both pipe and OutputDebugString. Its dual use is thus that it also sends these messages to the system debug log, and thus they can be viewed by using Sysinternals DebugView.\r\n\r\nHere's an example screenshot debugging a recent QakBot sample locally using the loader and monitor in standalone mode where you can see the log messages that are intended for local use but not logged in the sandbox:\r\n\r\n![image](https://user-images.githubusercontent.com/22219888/78284483-6a84b100-7517-11ea-93e7-1f9f6b619875.png)\r\n",
+  "Title: more cleanup\nBody: ",
+  "Title: preparation to reintroduce community.py\nBody: ",
+  "Title: Delete Shade.yar\nBody: Creates FPs with legitime software (2cb8703d2abe5f4f5a5480d450e29204) and others.",
+  "Title: Create rat_orcus.py\nBody: Orcus RAT signature\nComment: moved to community",
+  "Title: Add upload sample to VT\nBody: Add download CAPE extracted config as text file\r\n\r\nVT upload can be enabled in config.",
+  "Title: Fix CAPE malware config parser\nBody: ",
+  "Title: Unable to inject into 32-bit process\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x] I am running the latest version\r\n- [x] I checked the documentation and found no answer\r\n- [x] I checked to make sure that this issue has not already been filed\r\n- [x] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nDLL injection must occur when the sample is launched\r\n\r\n# Current Behavior\r\n\r\nDLL injection fails\r\n\r\n# Failure Information (for bugs)\r\n\r\n```\r\n2020-03-12 12:34:57,364 [root] INFO: Analyzer: Package modules.packages.exe does not specify a DLL option\r\n2020-03-12 12:34:57,364 [root] INFO: Analyzer: Package modules.packages.exe does not specify a DLL_64 option\r\n2020-03-12 12:34:57,800 [lib.api.process] INFO: Successfully executed process from path \"C:\\Users\\IEUser\\AppData\\Local\\Temp\\administrator.exe\" with arguments \"\" with pid 3172\r\n2020-03-12 12:34:59,394 [lib.api.process] INFO: Monitor config for process 3172: C:\\tmp7xdvwb45\\dll\\3172.ini\r\n2020-03-12 12:34:59,612 [lib.api.process] INFO: Option 'procmemdump' with value '1' sent to monitor\r\n2020-03-12 12:34:59,612 [lib.api.process] INFO: Option 'procdump' with value '1' sent to monitor\r\n2020-03-12 12:34:59,612 [lib.api.process] INFO: 32-bit DLL to inject is C:\\tmp7xdvwb45\\dll\\PWxOFCoD.dll, loader C:\\tmp7xdvwb45\\bin\\dCmPkow.exe\r\n2020-03-12 12:35:01,059 [root] DEBUG: b'ReadConfig: Successfully loaded pipe name \\\\\\\\.\\\\PIPE\\\\ZHHpox.'\r\n2020-03-12 12:35:01,059 [root] DEBUG: b'Loader: Injecting process 3172 (thread 0) with C:\\\\tmp7xdvwb45\\\\dll\\\\PWxOFCoD.dll.'\r\n2020-03-12 12:35:01,081 [root] DEBUG: b'Error 299 (0x12b) - GetProcessInitialThreadId: Failed to read from process: Only part of a ReadProcessMemory or WriteProcessMemory request was completed.'\r\n2020-03-12 12:35:01,081 [root] DEBUG: b'InjectDll: No thread ID supplied, GetProcessInitialThreadId failed (SessionId=1).'\r\n2020-03-12 12:35:01,081 [root] DEBUG: b'Failed to inject DLL C:\\\\tmp7xdvwb45\\\\dll\\\\PWxOFCoD.dll.'\r\n2020-03-12 12:35:04,097 [lib.api.process] ERROR: Unable to inject into 32-bit process with pid 3172, error: 4294967281\r\n2020-03-12 12:35:04,097 [lib.api.process] INFO: Successfully resumed process with pid 3172\r\n\r\n```\r\n## Context\r\n\r\nApparently, the DLL's have been upgraded on the repo a few days ago. This morning I sync my local repo and now injection of the DLL fails... Not sure it's related but I did not have this behaviour before.\r\n\nComment: yes there a lot of features and features includes bugs, we observed the same behaviour on dev/testing server, should be fixed soon\nComment: Ok, let me know if you need some testers ;-)\nComment: i will post update on that here\nComment: Can I just ask which platform/bitness? Am investigating now\nComment: Win10 x64\nComment: The recent changes to loader being responsible for creating processes means the Thread Id isn't returned to lib.api.process. In GetProcessInitialThreadId, the call to PTEB Teb = (PTEB)NtCurrentTeb();\r\ndoesn't always hold true - testing on Win7 x64 SP1 suggests it's reliable for 32-bit, but in 1 out of every 3 or 5 executions with a 64-bit sample, the injection fails because TEB and PEB swap places when comparing loader.exe and target.exe memory layout. This behavior is untested for Win8/10.\r\n\r\nThis seems to work reliably, but might not be the right way to go about it...\r\n```\r\n\r\nDWORD GetProcessInitialThreadId(HANDLE ProcessHandle)\r\n{\r\n    DWORD ProcId;\r\n    HANDLE hThreadSnap = INVALID_HANDLE_VALUE;\r\n    THREADENTRY32 te32;\r\n    DWORD ThreadId = 0;\r\n\r\n    __try\r\n    {\r\n        ProcId = GetProcessId(ProcessHandle);\r\n\r\n        // ProcId ignored for TH32CS_SNAPTHREAD...\r\n        hThreadSnap = CreateToolhelp32Snapshot(TH32CS_SNAPTHREAD, ProcId); \r\n        if (hThreadSnap == INVALID_HANDLE_VALUE)\r\n            return 0;\r\n\r\n        te32.dwSize = sizeof(THREADENTRY32);\r\n\r\n        if (!Thread32First(hThreadSnap, &te32))\r\n            goto out;\r\n\r\n        do\r\n        {\r\n            if (te32.th32OwnerProcessID == ProcId)\r\n            {\r\n                ThreadId = te32.th32ThreadID;\r\n                goto out;\r\n            }\r\n\r\n        } while (Thread32Next(hThreadSnap, &te32));\r\n\r\n    out:\r\n        CloseHandle(hThreadSnap);\r\n        return ThreadId;\r\n    }\r\n    __except (EXCEPTION_EXECUTE_HANDLER)\r\n    {\r\n        return 0;\r\n    }\r\n}\r\n```\nComment: Hi guys, thanks for the feedback. The only reason I changed things to thrown away the thead id is that I hadn't found an easy way of passing two values back via subprocess. I experimented with passing a duplicated thread handle back instead but that doesn't work if the original loader process dies.\r\n\r\nTool help could be a good way to get the initial thread id but it's not ideal as you suggest - I'd rather not throw it away in the first place. Ultimately I think I am going to try passing them back as a string to std out and use subprocess communicate to retrieve and parse the string with both pid and tid.\nComment: But if that doesn't work I'll use your method rotateLeft, thanks for that. Nice code.\nComment: Right I've hopefully come up with a more reliable way of determining the intial teb address. It works on the assumption that the initial teb is always the same distance from the peb in a new process, and we can query the remote peb address using NtQueryInformationProcess. We can also get the local peb and teb addresses so we can calculate the distance between them, and thus calculate the remote teb address.\r\n\r\nFix in https://github.com/kevoreilly/CAPEv2/commit/4de53d7a6246b8cea02132bc0e3bad36bc935621\r\nLoader fix https://github.com/kevoreilly/capemon/commit/b9088cf5cc1337c75f5a5e08174c5959e1b50326\r\n\r\nI haven't had much time to test but I hope it solves these problems!\nComment: I sync'd my CAPEv2 instance and it seems to be ok now! \r\nTx for the good job!\nComment: at the moment we restore the old loader, and moved the dev to dev branch so once it will be done and well tested we will merge.",
+  "Title: Ability to upload sample to virustotal\nBody: I noticed that cape could not upload samples to VT for analysis, maybe we can add a checkbox or button to do it. If you're interested, I'd like to try it out.\nComment: Yes for sure go for it, just afd option to conf/auxiliar.conf under\nvirustotal section so that can be on/off, thank you\n\nEl jue., 12 mar. 2020 10:51, Firmy Yang <notifications@github.com> escribi\u00f3:\n\n> I noticed that cape could not upload samples to VT for analysis, maybe we\n> can add a checkbox or button to do it. If you're interested, I'd like to\n> try it out.\n>\n> \u2014\n> You are receiving this because you are subscribed to this thread.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/108>, or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH366IR2LOYAYHSFGZDDRHCWALANCNFSM4LGIJYGQ>\n> .\n>\n\nComment: I have code for this on my private instance. It's easy to integrate.\nComment: @firmianay check now, if that is what you wanted?\nComment: Great, thank you @enzok ",
+  "Title: Improve Symantec VBN coverage\nBody: I looked at the quarantine.py file and notice the Symantec section could use some huge improvement. I have done extensive research on Symantec\u2019s files and improved DeXRAY in the process. When I get some time, I would like to help improve the decrypting of Symantec files. Just leaving this here so I don\u2019t forget. \nComment: thank you\nComment: do you have some python script that we can use and integrate by us? from what all i see is perl\nComment: It would probably be easier for me to update the parser. I do have a project I\u2019ve been working on (2 years of my life off and on so far) and is a little overkill for this use case. This tool parses Symantec endpoint logs, VBNs and can extract the quarantine file from various types of VBNs. Need to finish up the documentation of the VBN file format. \n\n\nhttps://github.com/Beercow/SEPparser/blob/master/SEPparser.py\nComment: Sorry had to close for inactivity!\nComment: NP. I\u2019ll look into this as soon as I get a chance. ",
+  "Title: Update plugins.py\nBody: 'family' seems like a redundant variable\nComment: is what i had tried yesterday, but that isnot optimal solution https://github.com/kevoreilly/CAPEv2/commit/b66810ef22e24c5f39f42448ce40ec27a7fc6458, the idea is to not check the rest once it detected, and it going from more trusted \"software\" to lowest, as if we remove if not family it will enter each section and we don't want that, but thank you for your time :)\nComment: But now it also enter each section if `self.results.get(\"detections\", False)` returns False. So I think `if not family` is useless.\nComment: it should enter each section, if cape detection is empty, as it works as:\r\n```\r\nIf CAPE\r\nelif suricata\r\nelif VT\r\nelif ClamAV\r\n```\r\n\r\nthat is our detection way to try to get malfamily by that software/services\nComment: the thing here, is we check family,bcz it can not set, imagine that what that service detects, is blacklisted and family keeps empty, is why we walk that way, but if you have improvement idea is more than welcome\nComment: ok if you want to keep this control flow structure.",
+  "Title: Update disables_windefender.py\nBody: ",
+  "Title: Proxmox Issue\nBody: Hi,\r\nI'm moving forward and am trying to use proxmox.\r\nAt first run I was missing pip3 proxmoxer. Installed good.\r\n\r\nBefore and after I'm getting the following error:\r\n2020-03-11 14:50:31,169 [root] DEBUG: Importing modules...\r\n2020-03-11 14:50:31,184 [volatility.framework.interfaces.layers] DEBUG: Imported python-magic, autodetecting compressed files based on content\r\n2020-03-11 14:50:31,739 [lib.cuckoo.core.plugins] WARNING: Unable to import plugin \"modules.machinery.proxmox\": cannot import name 'config'\r\nWARNING  lib.cuckoo.core.plugins: Unable to import plugin \"modules.machinery.proxmox\": cannot import name 'config'\r\n2020-03-11 14:50:31,739 [root] DEBUG: Imported \"auxiliary\" modules:\r\n2020-03-11 14:50:31,739 [root] DEBUG:    `-- Sniffer\r\n\r\nDid I miss something or is it a lib.cuckoo.core.plugins issue?\r\nThanks alot and beer.io is down :(\nComment: ah i have a secret :D everything that i don't use, probably doesn't work, as I use kvm, but that should be easy to fix, hm beer.io works here\r\n\r\ni have fixed config problem in proxmon, but i don't have it to test, there a lot of community modules that we not using and we can't ensure 100% but with bug fixing we are more than happy to solve it \r\n\r\n\r\ncan you test now ?\nComment: thank you for the beer ;)\nComment: Hey, \r\nIt worked: cape is running, but I'm stuck. When I try to submit a sample I get: \r\n\r\nERROR :-(\r\nError adding task to Cuckoo's database.\r\n\r\n\r\non the CAPE host: ufw is currently disabled.\r\n\r\nCuckoo.py -d does not give any output:\r\n2020-03-12 16:57:18,080 [lib.cuckoo.core.scheduler] INFO: Using \"proxmox\" machine manager with max_analysis_count=0, max_machines_count=10, and max_vmstartup_count=5\r\n2020-03-12 16:57:18,096 [lib.cuckoo.core.scheduler] INFO: Loaded 1 machine/s\r\n2020-03-12 16:57:18,100 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks.\r\n \r\nDid I miss something?\r\nThanks again!\r\n\nComment: You're welcome :)\nComment: just a simple file upload no?, that is not related to proxmon, maybe you had run something as root? and that can break permissions\nComment: You're on right on spot!\r\nI've been having issues starting cuckoo without sudo: \r\nPermissionError: [Errno 13] Permission denied: '/opt/CAPEv2/log/cuckoo.log'\r\n\r\nStill learing :)\nComment: `sudo chown cape:cape /opt/CAPEv2 -R` \r\nthat should solve that but then you will need to fix the permission in /tmp where is the temp folder for uplaoded samples\nComment: Hi, \r\nSo I learned my error: I was installing Cape on Ubuntu Server with another username... Reinstalled with a user called cape and now the permissions are ok.\r\nI also saw that it is now being started automatically. \r\nConcerning the Proxmox I now get the following issue (opt/CAPEv2/log/cuckoo.log) when sending a sample:\r\n\r\n2020-03-13 09:39:03,071 [lib.cuckoo.core.scheduler] INFO: Using \"proxmox\" machine manager with max_analysis_count=0, max_machines_count=10, and max_vmstartup_count=5\r\n2020-03-13 09:39:03,089 [lib.cuckoo.core.scheduler] INFO: Loaded 1 machine/s\r\n2020-03-13 09:39:03,093 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks.\r\n2020-03-13 09:43:56,318 [lib.cuckoo.core.scheduler] DEBUG: Task #3: Processing task\r\n2020-03-13 09:43:56,323 [lib.cuckoo.core.scheduler] INFO: Task #3: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_mazfmr89/Sample_5b2bd21e6f493d5e917681d2(3).bin'\r\n2020-03-13 09:43:56,326 [lib.cuckoo.core.scheduler] INFO: Task #3: File already exists at '/opt/CAPEv2/storage/binaries/f4ba5e8f98fe70d764df71b7c390237b90ed0fc3408579a15a06ee56008a3531'\r\n2020-03-13 09:43:56,336 [lib.cuckoo.core.scheduler] INFO: Task #3: acquired machine cuckoo1 (label=win10MW, platform=windows)\r\n2020-03-13 09:43:56,343 [root] DEBUG: Now tracking machine 192.168.60.11 for task #3\r\n2020-03-13 09:43:56,353 [lib.cuckoo.core.scheduler] ERROR: The memory dump functionality is not available for the current machine manager.\r\n2020-03-13 09:43:56,353 [lib.cuckoo.core.scheduler] ERROR: Task #3: Failure in AnalysisManager.run: name 'ProxmoxAPI' is not defined\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 298, in launch_analysis\r\n    machinery.start(self.machine.label)\r\nTypeError: start() missing 1 required positional argument: 'task'\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 407, in run\r\n    success = self.launch_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 355, in launch_analysis\r\n    machinery.stop(self.machine.label)\r\n  File \"/opt/CAPEv2/modules/machinery/proxmox.py\", line 218, in stop\r\n    self.find_vm(label)\r\n  File \"/opt/CAPEv2/modules/machinery/proxmox.py\", line 52, in find_vm\r\n    proxmox = ProxmoxAPI(self.options.proxmox.hostname,\r\nNameError: name 'ProxmoxAPI' is not defined\r\n\r\nIs this something on my side?\r\nThanks for the support!\nComment: I'm also getting log mails as root concerning smtp_sinkhole.sh and socksproxies.sh:\r\nExcerpt from /var/mail/root:\r\nSubject: Cron <root@Cape> cd /opt/CAPEv2/utils/ && ./smtp_sinkhole.sh\r\n/bin/sh: 1: ./smtp_sinkhole.sh: Permission denied\r\n\r\nAnd\r\n\r\nSubject: Cron <root@Cape> /opt/CAPEv2/socksproxies.sh\r\n/bin/sh: 1: /opt/CAPEv2/socksproxies.sh: not found\r\n\r\nIs this something I should worry about?\r\n\r\n\nComment: about crons nop, i will need make that optional, that is from my setup, the smtp sinkhole can be due to missing exec permission `sudo chmod a+x /opt/CAPEv2/utils/smtp_sinkhole.sh`, socksproxies that is for socksproxy infra exit nodes\r\n\r\nabout proxymon i suspect you have it installed incorrectly, how did you install it? pip install or pip3 install?\r\n\r\nabout `TypeError: start() missing 1 required positional argument: 'task'` i will need to check, well you will be the person who will help to make working proxmon module :)\nComment: Hehe, thank you for your continuous and efficient support!!\r\nConcerning Proxmoxer: my bad with all the reinstalling, rollback, I forgot to reinstall proxmoxer...\r\nI installed it, got my credentials working (the @ \"realm\" such as pve after the user name in the proxmox.conf is important) but still get:\r\n\r\n2020-03-13 12:50:34,391 [lib.cuckoo.core.scheduler] INFO: Task #4: acquired machine cuckoo1 (label=win10MW, platform=windows)\r\n2020-03-13 12:50:34,398 [root] DEBUG: Now tracking machine 192.168.60.11 for task #4\r\n2020-03-13 12:50:34,417 [lib.cuckoo.core.scheduler] ERROR: The memory dump functionality is not available for the current machine manager.\r\n2020-03-13 12:50:34,435 [modules.machinery.proxmox] DEBUG: Stopping VM win10MW\r\n2020-03-13 12:50:34,457 [root] DEBUG: Stopped tracking machine 192.168.60.11 for task #4\r\n2020-03-13 12:50:34,462 [lib.cuckoo.core.scheduler] ERROR: Task #4: Failure in AnalysisManager.run: start() missing 1 required positional argument: 'task'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 407, in run\r\n    success = self.launch_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 298, in launch_analysis\r\n    machinery.start(self.machine.label)\r\nTypeError: start() missing 1 required positional argument: 'task'\r\n\nComment: cool, let me see why this happens\nComment: I also did the :\r\n`sudo chmod a+x /opt/CAPEv2/utils/smtp_sinkhole.sh`\r\n\r\nand now mail to root is saying:\r\nSubject: Cron <root@Cape> cd /opt/CAPEv2/utils/ && ./smtp_sinkhole.sh\r\n(...)\r\n./smtp_sinkhole.sh: 10: cd: can't cd to /opt/CAPE/utils\r\n\nComment: proxmon should be fixed, can you check it?\nComment: Will do now, I keep reinstalling from a fresh install, is there a quicker way?\nComment: no, `git pull` is the faster way\nComment: The proxmon issue seems fixed. But the agent.py on the Analysis machine is getting me errors.\r\nI made a snapshot with the script running via cmd, when I curl it I get:\r\n\r\n `{\"message\": \"CAPE Agent!\", \"version\": \"0.11\", \"features\": [\"execpy\", \"pinning\", \"logs\", \"largefile\", \"unicodepath\"]}`\r\n\r\nBut when I submit the file, I get the following:\r\n`2020-03-13 15:33:21,731 [lib.cuckoo.core.guest] INFO: Starting analysis #11 on guest (id=cuckoo1, ip=192.168.60.11\r\n\r\nsnapshot = OnlineTour2)\r\n2020-03-13 15:33:21,737 [lib.cuckoo.core.scheduler] ERROR: Cuckoo Agent failed without error status, please try upgrading to the latest version of agent.py (>= 0.10) and notify us if the issue persists.\r\n2020-03-13 15:33:21,742 [lib.cuckoo.core.plugins] DEBUG: Stopped auxiliary module: Sniffer\r\n2020-03-13 15:33:21,764 [modules.machinery.proxmox] DEBUG: Stopping VM win10MW\r\n`\r\nI'm going to try to debug the Win10 machine and will keep you posted.\nComment: Agent.py = 0.11; copied into notepad and saved as .py.\nComment: well if curl returned you this line `{\"message\": \"CAPE Agent!\", \"version\": \"0.11\", \"features\": [\"execpy\", \"pinning\", \"logs\", \"largefile\", \"unicodepath\"]}`\r\n\r\nthen agent is running fine, try this to see the problem in terminal https://github.com/kevoreilly/CAPEv2/wiki/Tips'n'Tricks#how-to-debug-analyzer-and-any-script-that-executes-inside-of-the-virtual-machine\nComment: The ps command is not functioning: Kill is complaining:\r\nUsage:\r\n kill [options] <pid> [...]\r\n\r\nand cuckoo.py is stiill functionnig. Shoud I just kill -1 the PID of cuckoo.py?\nComment: i have pointed you to `How to debug analyzer and any script that executes inside of the virtual machine` not to kill\nComment: oh sorry.\r\nI couldn't find out where to stop and start CAPE in a better way so I tried changing CAPE in etc/systemd/system/cape.service to CAPE_DBG=1 python3 cuckoo.py -d ; but now it doesn't start. \r\n\r\nSo I copied https://github.com/kevoreilly/CAPEv2/blob/master/analyzer/windows/analyzer.py\r\nto the VM and ran it with python (3.8.2) cmd as admin.\r\nI get the following error:\r\n![image](https://user-images.githubusercontent.com/61844903/76642271-2d9a4f80-6553-11ea-846f-73b6662ad542.png)\r\n\r\nAnd is : \"DISABLE human interaction emulation \" = \"Disable automated interaction\" or am I missing something?\r\n\r\nThanks for your patience\nComment: that doesn't work in that way\r\n1 if you don't know how systemd works, y suggest you to learn the bases\r\n2. copy 1 file doesn't work as it has a lot of subfiles\r\n\r\nmake favor to yourself and check how to use systemd ;)\nComment: Thanks for the tip, I learned a bit how systemd works and found the cape.service.  :)\r\n\r\nI then started CAPE_DBG=1 python3 cuckoo.py -d . Here are the first results:\r\nDebug Agent\r\n![Win10_debug_1](https://user-images.githubusercontent.com/61844903/76757518-037da300-6788-11ea-942e-6b6c236c8434.png)\r\n\r\nCape host\r\n![Cape_debug_1](https://user-images.githubusercontent.com/61844903/76757536-08daed80-6788-11ea-927b-9d09a234cc67.png)\r\n\r\nDebug agent:\r\n![Win10_debug_agent_1](https://user-images.githubusercontent.com/61844903/76757543-0aa4b100-6788-11ea-9601-54c49e38dfe0.png)\r\n\r\nJust to be sure I created a new Win10 analysis machine and checked with python 3.8.0.\r\nAn issue that keeps popping up is the: \r\n2020-03-16 12:12:11,902 [root] DEBUG: Task #19 had connection reset for <Context for b'LOG'>\r\n\r\nAm I still missing something?\r\n\nComment: I dont see any log from when you run analyzer.py by hand\n\nEl lun., 16 mar. 2020 13:16, phunki32 <notifications@github.com> escribi\u00f3:\n\n> Thanks for the tip, I learned a bit how systemd works and found the\n> cape.service. :)\n>\n> I then started CAPE_DBG=1 python3 cuckoo.py -d . Here are the first\n> results:\n> Windows 10\n> [image: Win10_debug_1]\n> <https://user-images.githubusercontent.com/61844903/76757518-037da300-6788-11ea-942e-6b6c236c8434.png>\n>\n> Cape host\n> [image: Cape_debug_1]\n> <https://user-images.githubusercontent.com/61844903/76757536-08daed80-6788-11ea-927b-9d09a234cc67.png>\n>\n> Debug agent:\n> [image: Win10_debug_agent_1]\n> <https://user-images.githubusercontent.com/61844903/76757543-0aa4b100-6788-11ea-9601-54c49e38dfe0.png>\n>\n> Just to be sure I created a new Win10 analysis machine and checked with\n> python 3.8.0.\n> An issue that keeps popping up is the:\n> 2020-03-16 12:12:11,902 [root] DEBUG: Task #19\n> <https://github.com/kevoreilly/CAPEv2/pull/19> had connection reset for\n> <Context for b'LOG'>\n>\n> Am I still missing something?\n>\n> \u2014\n> You are receiving this because you commented.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/104#issuecomment-599503896>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH35Z44HUCCVA4UBZQBTRHYKBFANCNFSM4LFX5VAA>\n> .\n>\n\nComment: In the first pic I start cmd as admin, then went to the tmp folder and gave command python analyzer.py . What am I missing? \r\n\"Start analyzer.py by hand in cmd.exe with admin privilages:\r\n\r\n    Ex: c:\\windows\\py.exe c:\\tmp\\analyzer.py\r\n\"\nComment: hm it not make any sense that it try to set date and exits like nothing\r\n\r\ncan you post output of this `cd /opt/CAPEv2 && git log -1` ? i suspect you are using old code\r\n\nComment: commit 607decbcf598e852aea5dfe3bfd38f873e03a0be (HEAD -> master, origin/master, origin/HEAD)\r\nAuthor: DoomedRaven <doommedraven@gmail.com>\r\nDate:   Mon Mar 16 10:51:09 2020 +0100\r\n\r\n    fix upload\r\n\nComment: hm, then i don't have clue what is wrong, as it works just fine here, and that isn't anymore proxmon issue, that is something inside of the vm, you will need to debug that by yourself, adding debug lines, using pdb, anything that is comfortable for you, could be something in win10 that cut exec, idk, too many things to check\nComment: Just redid a try:\r\noutput cuckoo host:\r\n2020-03-16 12:34:55,519 [lib.cuckoo.core.guest] DEBUG: Uploading analyzer to guest (id=cuckoo1, ip=192.168.60.11, size=18443821)\r\n2020-03-16 12:34:55,796 [lib.cuckoo.core.guest] INFO: Uploading support files to guest (id=cuckoo1, ip=192.168.60.11)\r\n2020-03-16 12:35:20,703 [root] DEBUG: Task #20: live log analysis.log initialized.\r\n2020-03-16 12:35:33,015 [root] DEBUG: Task #20 had connection reset for <Context for b'LOG'>\r\n\r\nAnalysis Machine:\r\n![image](https://user-images.githubusercontent.com/61844903/76759158-67ee3180-678b-11ea-9045-a312e3c7dd81.png)\r\n\r\n \nComment: I understand I'll do my best to try to understand what's going on. Before I go back to it what is the:\r\nconnection reset for <Context for b'LOG'> \r\n?\nComment: yes analyzer.py shouldn't exit\r\n`connection reset for <Context for b'LOG'>` <- vm killed connection\r\n\r\nthe problem is inside of the vm, ensure `python -V` as it maybe could exec bad python if you have both, c:\\windows\\py.exe should be used\r\n\r\ncheck security, firewall, all that things, but it nothing on your host, so focus on inside of the vm\nComment: Will do! Thank you very much for your patience, support and help!\nComment: you are welcome, let us know what it was, maybe that will help to others, leaving issue opened at the moment\nComment: well im closing this as the issue already isn't proxmon related, i hope you solved it",
+  "Title: Update sysmon.py\nBody: Small typo in sysmon.py: sysmon.log should be sysmon.xml\nComment: nice catch thanks",
+  "Title: Error with sysmon upload\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ X ] I am running the latest version\r\n- [ X ] I checked the documentation and found no answer\r\n- [ X ] I checked to make sure that this issue has not already been filed\r\n- [ X ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nCape should dump the sysmon event log to C:\\sysmon.xml and upload to host.\r\n\r\n# Current Behavior\r\n\r\nsysmon.xml is being created, but not uploaded.\r\n\r\n# Failure Information (for bugs)\r\n\r\nFrom Cape log:\r\n\r\n`2020-03-11 02:40:25,062 [modules.auxiliary.sysmon] ERROR: Sysmon log file not found in guest machine`\r\n\r\nFrom sysmon.py:\r\n\r\n```\r\n        if os.path.exists(\"C:\\\\sysmon.xml\"):\r\n            now = time.time()\r\n            upload_to_host(\"C:\\\\sysmon.xml\", f\"sysmon/{now}.sysmon.xml\", False)\r\n        else:\r\n            log.error(\"Sysmon log file not found in guest machine\")\r\n```\r\n\r\nI've tested that sysmon is actually being created, and it is - so the issue is obviously in the upload_to_host function. I'm not entirely sure how this function works being only new to this project, but there is definitely no files within the /sysmon folder of my Cape installation.\r\n\r\n## Steps to Reproduce\r\n\r\n- Enable sysmon module (with service installed in Windows sandbox!)\r\n- Run analysis\r\n- Sysmon file is not uploaded (if my issue is reproduceable!)\r\n\r\n\nComment: hahaha I solved it.\r\n\r\n`            subprocess.call([\"C:\\\\Windows\\\\System32\\\\wevtutil.exe\", \"query-events\", \"microsoft-windows-sysmon/operational\", \"/rd:true\", \"/e:root\", \"/format:xml\", \"/uni:true\"], startupinfo=self.startupinfo,  stdout=open(\"C:\\\\sysmon.log\", \"w\"))`\r\n\r\nvs\r\n\r\n`if os.path.exists(\"C:\\\\sysmon.xml\"):`\r\n\r\nWe're creating a file and then testing for the existence of a different file!\r\n\r\nMaybe we shoudl rename sysmon.log to sysmon.xml, or sysmon.xml to sysmonlog \ud83d\ude04 \nComment: https://github.com/kevoreilly/CAPEv2/pull/103",
+  "Title: Update rat_dcrat.py\nBody: \nComment: thank you\nComment: btw not sure if you noted but when you pushing different PRs, they are all in the same latest pull request\nComment: I saw that but wasn't sure why. I'll do more reading on this\nComment: not sure, but maybe bcz when you creating PR, you pushing to master and then pull request? you can change name from master to something else, but that just headups, as that doesn't hurt nothing at all :)",
+  "Title: Update disables_windefener.py\nBody: Too many samples copying/pasting stuff like this https://gist.github.com/pe3zx/7c5e0080c3b0869ccba1f1dc2ea0c5e0",
+  "Title: Update and rename SCInject\nBody: Some samples has changed a bit. The name change is to align with industry, etc. https://malpedia.caad.fkie.fraunhofer.de/details/win.guloader",
+  "Title: Update analysisinfo.py\nBody: Use a generic function instead\nComment: nice one, thanks",
+  "Title: HTML and PDF reports not found\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [ X ] I am running the latest version\r\n- [ X ] I checked the documentation and found no answer\r\n- [ X ] I checked to make sure that this issue has not already been filed\r\n- [ X ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nEnabling the HTML and PDF reporting modules in reporting.conf should generate HTML and PDF reports, with a download link included in the analysis.\r\n\r\n# Current Behavior\r\n\r\nThe links are generated for each analysis, but the files are \"not found\". Only the link to the JSON report is valid.\r\n\r\n# Failure Information (for bugs)\r\n\r\nLogs report that the HTML and PDF modules are loaded. Cannot identify any additional error information.\r\n\r\n## Steps to Reproduce\r\n\r\n- Deploy CAPEv2\r\n\r\n- Enable HTML and PDF modules\r\n\r\n- Try to access reports from analysed sample\r\n\r\n\nComment: hello, thanks for reporting, fixed now, do `git pull` to pull fixes",
+  "Title: Update misp.py\nBody: Add whitelist to network block ip",
+  "Title: Update ransomware_fileextensions.py\nBody: this extension makes FPs",
+  "Title: Update database.py\nBody: Fix error uniq",
+  "Title: Update misp.py\nBody: Added ssdeep :)",
+  "Title: Update objects.py\nBody: \nComment: thanks, there will be more fixes soon as i have them here in testing\nComment: I'm learning sandbox by reading some projects' codebase, and drop by fixing some minor bugs :P\nComment: cool, you learning in my way :) let us know if you need some clarification/explanation ;) ",
+  "Title: fix typo\nBody: \nComment: thank you",
+  "Title: Add BlackRemote/BlackRAT signatures\nBody: ",
+  "Title: Fix some archive submission issues:\nBody: 1. Handle sample support files included in archive\r\n2. Fix Py3 compatibility with SFlock",
+  "Title: Cannot use Sysmon module\nBody: - [x ] I am running the latest version\r\n- [x ] I checked the documentation and found no answer\r\n- [x ] I checked to make sure that this issue has not already been filed\r\n- [x ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nSysmon is activated on the configuration\r\n\r\n# Current Behavior\r\n\r\nSysmon module is reported as \"non implemented\" ?\r\n\r\n# Failure Information (for bugs)\r\n\r\nFrom analysis.log:\r\n\r\n```\r\n2020-03-06 13:06:52,757 [root] DEBUG: Trying to import auxiliary module \"modules.auxiliary.sysmon\"...\r\n2020-03-06 13:06:52,757 [root] DEBUG: Imported auxiliary module \"modules.auxiliary.sysmon\".\r\n```\r\n\r\nAnd later in the log:\r\n\r\n```\r\n2020-03-06 13:06:57,882 [root] DEBUG: Trying to initialize auxiliary module \"Sysmon\"...\r\n2020-03-06 13:06:57,882 [root] WARNING: Auxiliary module Sysmon was not implemented\r\n```\r\n\r\nNo other error or warning message...\nComment: In sysmon.py, there is a reference to 'analyzis.conf': \r\nWhere is this file? No trace in my setup?\r\n\r\n`self.config = Config(cfg=\"analysis.conf\")`\nComment: i don't see analyZis, but see analysis, https://github.com/kevoreilly/CAPEv2/search?p=1&q=Config%28cfg%3D\"analysis.conf\"%29&unscoped_q=Config%28cfg%3D\"analysis.conf\"%29\r\n\r\nwhat i suggest is to use this `CAPE_DBG=1 python3 cuckoo.py -d` \r\nthe rest is explained here https://github.com/kevoreilly/CAPEv2/wiki/Tips'n'Tricks#how-to-debug-analyzer-and-any-script-that-executes-inside-of-the-virtual-machine\r\n\r\nbut it should be there as it used by analyzer and many others\nComment: was you able to solve this?\nComment: i was able to verify that analysis.conf exist near to analyzer.py\nComment: Hi, I'll test asap... Regarding the typo, I did not find any analysis.conf file. Can you share a sample?\nComment: \r\n![Captura de pantalla 2020-03-11 a las 11 23 58](https://user-images.githubusercontent.com/1856495/76407034-085ae500-638b-11ea-8e83-decd865a3c24.png)\r\n\r\n<img width=\"164\" alt=\"Captura de pantalla 2020-03-11 a las 11 23 34\" src=\"https://user-images.githubusercontent.com/1856495/76407030-06912180-638b-11ea-8e8c-98b21d361f5f.png\">\r\n\nComment: Hi I'm trying to install Sysmon on the Ubuntu 22 guest \nAnd I get an error:  DEBUG: Trying to start auxiliary module \\\"Sysmon\\\"...\\n2025-07-09 08:21:43,650 [root] WARNING: Cannot execute auxiliary module Sysmon: In order to use the Sysmon functionality, it is required to have the sysmonconfig.xml file in the bin path.\nThanks for the help ",
+  "Title: agent.py\nBody: Hi,\r\n\r\nI've been trying to install CAPEv2 over the last few days and seem close to my objective :)\r\nThe new cape2.sh and kvm-qemu.sh (04.03.20) were used on fully updated (05.03.20) Ubuntu LTS18.04. I had different issues, notably with MongoDB which was not functioning correctly.\r\n\r\nMongoDB solution for me was to\r\nsystemctl disable mongodb.service\r\nand use\r\nmongod --dbpath /opt/CAPEv2/db\r\n\r\nBut now my issue is with the agent.py on a win7 machine. The agent is started but cape (python3 cuckoo -d) cannot communicate. When I curl the guest I get:\r\n\r\n\\<title>Error response</title>\r\nError response\r\nError code 501.\r\nMessage: Unsupported method ('GET').\r\nError code explanation: 501 = Server does not support this operation.\r\n\r\nAnd the Cuckoo Critical Error: \r\n\r\n-[lib.cuckoo.core.guest] CRITICAL: While trying to determine the Agent version that your VM is running we retrieved an unexpected HTTP status code: 501. If this is a false positive, please report this issue to the Cuckoo Developers. HTTP response headers: {\"Server\": \"BaseHTTP/0.3 Python/2.7.13\", \"Date\": \"Thu, 05 Mar 2020 16:44:57 GMT\", \"Connection\": \"close\", \"Content-Type\": \"text/html\"}\r\n\r\nAfter that the connection closes, and the server just reports 'processing'.\r\n\r\nI believe it is a python2.7 (agent) to python3 issue. But still looking into it. Is there anything else I should check before?\r\nThank you for your work and help!\r\n\nComment: Hello, you don't need to disable mongo, just check `systemctl status mongodb` for what is wrong, I had deployed new server with cape2.sh yesterday and didn't had any issue, so would like to see why it failing on your side\r\n\r\nabout agent, that is old agent and you not using it with py3, you started it with py2, how you started it in vm?\nComment: Hi, here is the output from mongodb. I'm also doing another fresh install and will tell you if it gives me a similar error. It's the first sandbox I'm installing so still learning :)\r\n\r\n~$ systemctl status mongodb.service \r\n\u25cf mongodb.service - High-performance, schema-free document-oriented database\r\n   Loaded: loaded (/etc/systemd/system/mongodb.service; disabled; vendor preset: enabled)\r\n   Active: failed (Result: exit-code) since Fri 2020-03-06 10:02:05 UTC; 32s ago\r\n  Process: 2470 ExecStartPre=/bin/mkdir -p /data/{config,}db && /bin/chown mongodb:mongodb /data -R (code=exited, status=1/FAILURE)\r\n\r\nI restarted the service to get the first journalctl -xe output:\r\n-- Unit mongodb.service has begun starting up.\r\nM\u00e4r 06 10:12:14 George audit[1]: SERVICE_START pid=1 uid=0 auid=4294967295 ses=4294967295 msg='unit=mongodb comm=\"systemd\" exe=\"/lib/systemd/systemd\" hostname=? addr=? terminal=? res=success'\r\nM\u00e4r 06 10:12:14 George audit[1]: SERVICE_STOP pid=1 uid=0 auid=4294967295 ses=4294967295 msg='unit=mongodb comm=\"systemd\" exe=\"/lib/systemd/systemd\" hostname=? addr=? terminal=? res=success'\r\nM\u00e4r 06 10:12:14 George mongodb[2441]: /bin/mkdir: invalid option -- 'R'\r\nM\u00e4r 06 10:12:14 George mongodb[2441]: Try '/bin/mkdir --help' for more information.\r\nM\u00e4r 06 10:12:14 George systemd[1]: mongodb.service: Control process exited, code=exited status=1\r\nM\u00e4r 06 10:12:14 George systemd[1]: mongodb.service: Failed with result 'exit-code'.\r\nM\u00e4r 06 10:12:14 George systemd[1]: Failed to start High-performance, schema-free document-oriented database.\r\n-- Subject: Unit mongodb.service has failed\r\n-- Defined-By: systemd\r\n\r\n\r\nmongod Output:\r\n2020-03-06T10:03:29.880+0000 I  CONTROL  [main] Automatically disabling TLS 1.0, to force-enable TLS 1.0 specify --sslDisabledProtocols 'none'\r\n2020-03-06T10:03:29.886+0000 I  CONTROL  [initandlisten] MongoDB starting : pid=2593 port=27017 dbpath=/data/db 64-bit host=George\r\n2020-03-06T10:03:29.886+0000 I  CONTROL  [initandlisten] db version v4.2.3\r\n2020-03-06T10:03:29.886+0000 I  CONTROL  [initandlisten] git version: 6874650b362138df74be53d366bbefc321ea32d4\r\n2020-03-06T10:03:29.886+0000 I  CONTROL  [initandlisten] OpenSSL version: OpenSSL 1.1.1  11 Sep 2018\r\n2020-03-06T10:03:29.886+0000 I  CONTROL  [initandlisten] allocator: tcmalloc\r\n2020-03-06T10:03:29.886+0000 I  CONTROL  [initandlisten] modules: none\r\n2020-03-06T10:03:29.886+0000 I  CONTROL  [initandlisten] build environment:\r\n2020-03-06T10:03:29.886+0000 I  CONTROL  [initandlisten]     distmod: ubuntu1804\r\n2020-03-06T10:03:29.886+0000 I  CONTROL  [initandlisten]     distarch: x86_64\r\n2020-03-06T10:03:29.886+0000 I  CONTROL  [initandlisten]     target_arch: x86_64\r\n2020-03-06T10:03:29.886+0000 I  CONTROL  [initandlisten] options: {}\r\n2020-03-06T10:03:29.893+0000 I  STORAGE  [initandlisten] exception in initAndListen: NonExistentPath: Data directory /data/db not found., terminating\r\n2020-03-06T10:03:29.894+0000 I  NETWORK  [initandlisten] shutdown: going to close listening sockets...\r\n2020-03-06T10:03:29.894+0000 I  -        [initandlisten] Stopping further Flow Control ticket acquisitions.\r\n2020-03-06T10:03:29.894+0000 I  CONTROL  [initandlisten] now exiting\r\n2020-03-06T10:03:29.895+0000 I  CONTROL  [initandlisten] shutting down with code:100\r\n\r\nI saw something about authentication, but can find it anymore. \r\n\r\nConcerning the agent.py, I copied the one from https://github.com/ctxis/CAPE/tree/master/agent (blush:)\r\n\r\nI just saw that the one in this repository is much newer... I'll try it with this one and Python3 and give you feedback.\r\n\r\nThank you for the quick reply!\nComment: ok i see error of mongo on my side i will try to fix that but error not make too much sense\r\n\r\nwhy do you use ctxis agent in totally different repo? is v1 and py2, this one is py3 and v2\nComment: Yes, my bad for mixing up the versions. I didn't realize that https://github.com/ctxis/CAPE was the old one and had to follow the link to cape2 (oops :)  )\r\nI'll start a fresh install from this repo, learning by doing :)\r\nThanks for the help!\r\n\nComment: np, im closing that, as agent problem is solved, and i will push mongo fix later in cape2.sh, you will need to replace mongodb.service",
+  "Title: Update database.py\nBody: I have some errors with the \"uniq\" value. Fixing this i can upload files.",
+  "Title: [issue resolved] Trickbot config dumped on CAPEv2 host: python3.6.9 , guest:python3.7.2\nBody: Hi \r\n\r\nI rewrote the CAPE parser specification to extract the Trickbot config from the process dump memory in order to run on CAPEv2 python environment (e.g host: python3.6.9 , guest:python 3.7.2).\r\n\r\nMalware config dumping from \"procdump_path\" had been enabled on this commit of today.\r\nhttps://github.com/kevoreilly/CAPEv2/commit/75b987a2a45c0dacc1de9120682c4d07c59eab51\r\nCAPE.py\r\n`                        #else:\r\n                        else:\r\n                            # We set append_file to False as we don't wan't to include\r\n                            # the files by default in the CAPE tab\r\n                            #self.process_file(file_path, CAPE_output, False)\r\n                            self.process_file(file_path, CAPE_output, False)`\r\n\r\n\r\nThus my code is just for adjusting my purpose to python3 env.\r\n\r\nBest Regards,\r\nTatsuya",
+  "Title: Revert \"Delete this signature\"\nBody: Reverts kevoreilly/CAPEv2#83",
+  "Title: Delete this signature\nBody: Makes false positive: \r\nExample (Trickbot): f69ae399eacdd1f1112ee880a1c851bf3895400fd5e89e7ce1d215b2f1674ec3\nComment: @naxonez can you point me where this the FP is generated with this sample? I can't see it anywhere I looked.\nComment: Hi,\n\nI had the issue with the following trickbot sample:\n\nhttps://capesandbox.com/analysis/13531/\n\nWith this signature, cape detects it as revil.\n\n\nRegards\n\n\nEl mar., 3 mar. 2020 18:39, di\u02c8tekSH\u0259n <notifications@github.com> escribi\u00f3:\n\n> @naxonez <https://github.com/naxonez> can you point me where this the FP\n> is generated with this sample? I can't see it anywhere I looked.\n>\n> \u2014\n> You are receiving this because you were mentioned.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/pull/83?email_source=notifications&email_token=AB4XIECE6TTJXGHTDJH76Q3RFU6F7A5CNFSM4LAHE4I2YY3PNVWWK3TUL52HS4DFVREXG43VMVBW63LNMVXHJKTDN5WW2ZLOORPWSZGOENUOBMI#issuecomment-594075825>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AB4XIEHB2HA2T6T77QDHTO3RFU6F7ANCNFSM4LAHE4IQ>\n> .\n>\n\nComment: ok i have recheked on my side that, it not giving me FP, naxonez is rechecking again on his side\nComment: That's odd. The sample has curly braces surrounding the guid, which should not match. I check on my side as well and I did not see it FP. Maybe it is a different sample? I will keep an eye on this on my dev boxes. I would keep it deleted until proven otherwise. Thanks @naxonez for reporting this.\nComment: i have reintroduced it",
+  "Title: Update signatures\nBody: Add new domain (network_temp_file_storage.py). Sample:\r\n```\r\n26df4e89ebc766b04a87b0832c7dc22114b995da298b8ca1e9d2d91a237dd585\r\n```\r\n\r\nFix to prevent db errors (ransomware_medusalocker.py).",
+  "Title: Update resultserver.py\nBody: fix typo",
+  "Title: Add Nemty ransomware signatures\nBody: ",
+  "Title: Add initial detection for suspicious DNS traffic\nBody: Sample (package: dll)\r\n```\r\n6f1e1047405f94b8ac1fb1c09780ce583f5650e4ef9035357f991149ae991a71\r\n```",
+  "Title: Update resultserver.py\nBody: Fix debugger file upload",
+  "Title: fix submission options\nBody: ",
+  "Title: Can start analysis: Invalid argument\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Failure Information (for bugs)\r\n\r\nLOG\r\n2020-02-25 06:59:50,691 [root] DEBUG: Starting analyzer from: C:\\tmpxxfk82pv\r\n2020-02-25 06:59:50,835 [root] DEBUG: Storing results at: C:\\NzOOhPQkuv\r\n2020-02-25 06:59:50,938 [root] DEBUG: Pipe server name: \\\\.\\PIPE\\QTeLLjd\r\n2020-02-25 06:59:50,938 [root] DEBUG: Python path: C:\\Users\\IEUser\\AppData\\Local\\Programs\\Python\\Python38-32\r\n2020-02-25 06:59:50,938 [root] DEBUG: No analysis package specified, trying to detect it automagically.\r\n2020-02-25 06:59:52,408 [root] ERROR: Traceback (most recent call last):\r\n  File \"C:/tmpxxfk82pv/analyzer.py\", line 1572, in <module>\r\n    success = analyzer.run()\r\n  File \"C:/tmpxxfk82pv/analyzer.py\", line 350, in run\r\n    package = choose_package(self.config.file_type, self.config.file_name, self.config.exports, self.target)\r\n  File \"C:\\tmpxxfk82pv\\lib\\core\\packages.py\", line 20, in choose_package\r\n    file_content = open(target, \"rb\").read()\r\nOSError: [Errno 22] Invalid argument: 'C:\\\\Users\\\\IEUser\\\\AppData\\\\Local\\\\Temp\\\\xxx.ps1'\r\nTraceback (most recent call last):\r\n  File \"C:/tmpxxfk82pv/analyzer.py\", line 1572, in <module>\r\n    success = analyzer.run()\r\n  File \"C:/tmpxxfk82pv/analyzer.py\", line 350, in run\r\n    package = choose_package(self.config.file_type, self.config.file_name, self.config.exports, self.target)\r\n  File \"C:\\tmpxxfk82pv\\lib\\core\\packages.py\", line 20, in choose_package\r\n    file_content = open(target, \"rb\").read()\r\nOSError: [Errno 22] Invalid argument: 'C:\\\\Users\\\\IEUser\\\\AppData\\\\Local\\\\Temp\\\\xxx.ps1'\r\n2020-02-25 06:59:52,476 [root] WARNING: Folder at path \"C:\\NzOOhPQkuv\\debugger\" does not exist, skip.\r\n2020-02-25 06:59:52,476 [root] INFO: Analysis completed.\r\n\r\nI don't know why they're escaped '\\', is it normal? \nComment: hello, thanks for feedback, could you point me where it escapes '' ? i doubt that is normal, does this happens to all powershell scripts? i will need to test it\nComment: Ok, my bad... There was an issue with the sandbox and Windows Defender was not disabled (it was before)... So, it removed the file while the analysis was running. Sorry for this... :(\r\n\r\nBut, I've another one no:\r\n\r\n2020-02-25 12:31:16,541 [root] INFO: Analyzer: Package modules.packages.exe does not specify a DLL option\r\n2020-02-25 12:31:16,541 [root] INFO: Analyzer: Package modules.packages.exe does not specify a DLL_64 option\r\n2020-02-25 12:31:16,588 [lib.api.process] INFO: Successfully executed process from path \"C:\\Users\\IEUser\\AppData\\Local\\Temp\\xxx.exe\" with arguments \"\" with pid 1652\r\n2020-02-25 12:31:16,604 [root] ERROR: Traceback (most recent call last):\r\n  File \"C:/tmph36vr9vs/analyzer.py\", line 509, in run\r\n    pids = pack.start(self.target)\r\n  File \"C:\\tmph36vr9vs\\modules\\packages\\exe.py\", line 37, in start\r\n    return self.execute(path, args, path)\r\n  File \"C:\\tmph36vr9vs\\lib\\common\\abstracts.py\", line 144, in execute\r\n    p.inject(INJECT_QUEUEUSERAPC, interest)\r\n  File \"C:\\tmph36vr9vs\\lib\\api\\process.py\", line 569, in inject\r\n    self.write_monitor_config(interest, nosleepskip)\r\n  File \"C:\\tmph36vr9vs\\lib\\api\\process.py\", line 485, in write_monitor_config\r\n    with open(config_path, \"w\", encoding=\"utf-8\") as config:\r\nPermissionError: [Errno 13] Permission denied: 'C:\\\\1652.ini'\r\n\r\nWhat is this ini file?\nComment: i think that is new windows config for windows10 support, not really sure, @kevoreilly what is that?\nComment: Ok, found again the problem... Event if the local user was \"administrator\", he has no rights to write to the root of C:... I switched from a 'startup' folder setup to a scheduled task that runs with \"all privileges\"... It's ok now! My sandbox seems to be running fine now... (Yes, my sandbox is Win10 64bits)\nComment: ah yes on windows 10 is different, we will need to add note about that, so all fixed? \nComment: reopen this if you need any other help\nComment: Hi guys - sorry to be slow to respond on this. xme I am glad you found a work-around for this issue, Win10 does not like the inis in the root of C: and it's very untidy, so I've moved the monitor configs to the same directory as the monitors :)\r\n\r\nhttps://github.com/kevoreilly/CAPEv2/commit/d32158d8ff76d582ae82c8f9825bb5892d778384",
+  "Title: Enable some basic memory dump processing until Vol3 is viable\nBody: Basically will just generate strings file and clean up the memory dump file if configured to do so.",
+  "Title: Add initial linux support - basic support, no behavior analysis\nBody: \nComment: Any chance we could make this something we can switch off in the config? The changes to the web ui are currently pretty grim looking for a windows only user...\nComment: I will change that\n\nEl mar., 25 feb. 2020 20:21, kevoreilly <notifications@github.com> escribi\u00f3:\n\n> Any chance we could make this something we can switch off in the config?\n> The changes to the web ui are currently pretty grim looking for a windows\n> only user...\n>\n> \u2014\n> You are receiving this because you modified the open/close state.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/pull/74?email_source=notifications&email_token=AAOFH35ATSP4I26IKNSYRKTREVVSBA5CNFSM4KZVAI7KYY3PNVWWK3TUL52HS4DFVREXG43VMVBW63LNMVXHJKTDN5WW2ZLOORPWSZGOEM5EWWY#issuecomment-591022939>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH3YHKSNY53QBBW4SLQLREVVSBANCNFSM4KZVAI7A>\n> .\n>\n",
+  "Title: Add signature for suspicious processes spawned by office docs\nBody: References:\r\nhttps://capesandbox.com/analysis/13098/\r\nhttps://capesandbox.com/submit/status/13113/\r\nhttps://blog.talosintelligence.com/2020/02/building-bypass-with-msbuild.html\r\n\r\nThis would also complement compile_dotnet_code.py",
+  "Title: Update signatures\nBody: Add new mutex (ransomware_revil_mutex.py): https://capesandbox.com/analysis/12910/\r\nFix copy/paste errors (ObliqueRAT.yar and rat_oblique.py) :)\r\nSimplify and improve (remcos.py)\nComment: you on fire :)",
+  "Title: Add ObliqueRAT signatures\nBody: Reference: https://blog.talosintelligence.com/2020/02/obliquerat-hits-victims-via-maldocs.html\nComment: thank you",
+  "Title: Add number formatting to malscore\nBody: ",
+  "Title: cuckoo3.sh and kvm-qemu.sh does not install properly\nBody: # Expected Behavior\r\n\r\nI ran the two scripts provided by @doomedraven and I expected to have a fully working CAPEv2 running. \r\n\r\n# Current Behavior\r\n\r\nSeveral things are not working after running the scripts.  I had to manually purge and reinstall things to get them to work.  This has everything to do with CAPE because right now the only way to install is by using @doomedraven written scripts.\r\n\r\n# Failure Information (for bugs)\r\n\r\n1. MongoDB would not start because the install script creates 3 systemd service files under /etc/systemd/system that do not need to be there. MongoDB installs its own systemd service file under /lib/systemd/system.\r\n2. Tor does not start after install/reboot using the install scripts.  I had to manually purge the tor package and reinstall.\r\n3. Libvirtd is not enabled or started.  KVM qemu is not detected by virt-manager.\r\n\r\n## Steps to Reproduce\r\n\r\n1. Install a fresh installation of Ubuntu 18.04, per the README.md\r\n2. Run the kvm-qemu.sh script, wait for it to finish, then reboot.\r\n3. Run the cuckoo3.sh script, wait for it to finish, then reboot.\r\n4. Monitor the startup process and see that above mentioned services do not start.\r\n\r\n## Context\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | commit ca9d51041c65b6e5cf1fbad70e0b99ce27e8b5d7\r\n| OS version       | Ubuntu 18.04\r\n\r\n## Notes\r\n\r\nA previous issue was closed prematurely without considering that the install scripts are flawed and do not leave you with a working CAPEv2. @kevoreilly please do not let this one get closed without addressing the issues reported.\r\n\nComment: it installs just fine i have tested it today just in case, so you should read the output log to see what is wrong, and after this you really expect help? https://github.com/ctxis/CAPE/issues/401",
+  "Title: Add Satan ransom and Parallax RAT sigs\nBody: Adds mutex sigs for Satan ransomware and Parallax RAT.",
+  "Title: Some services do not start after install.\nBody: # Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nAfter running the kvm-qemu.sh and cuckoo3.sh scripts, I expected to have a fully working CAPEv2 installation.\r\n\r\n# Current Behavior\r\n\r\nSome required services do not start. (Mongo and Tor ) \r\n\r\n# Failure Information (for bugs)\r\n\r\nMONGO\r\n```\r\n\u25cf mongodb.service - High-performance, schema-free document-oriented database\r\n   Loaded: loaded (/etc/systemd/system/mongodb.service; enabled; vendor preset: enabled)\r\n   Active: failed (Result: exit-code) since Tue 2020-02-18 19:09:29 UTC; 5min ago\r\n  Process: 8725 ExecStart=/usr/bin/numactl --interleave=all /usr/bin/mongod --quiet --shardsvr --bind_ip_all --port 27017 (code=exited, status=203/EXEC)\r\n  Process: 8721 ExecStartPre=/bin/chown mongodb:mongodb /data -R (code=exited, status=0/SUCCESS)\r\n  Process: 8715 ExecStartPre=/bin/mkdir -p /data/{config,}db (code=exited, status=0/SUCCESS)\r\n Main PID: 8725 (code=exited, status=203/EXEC)\r\n\r\nFeb 18 19:09:28 cuckoo systemd[1]: Started High-performance, schema-free document-oriented database.\r\nFeb 18 19:09:28 cuckoo systemd[1]: mongodb.service: Main process exited, code=exited, status=203/EXEC\r\nFeb 18 19:09:28 cuckoo systemd[1]: mongodb.service: Failed with result 'exit-code'.\r\nFeb 18 19:09:29 cuckoo systemd[1]: mongodb.service: Service hold-off time over, scheduling restart.\r\nFeb 18 19:09:29 cuckoo systemd[1]: mongodb.service: Scheduled restart job, restart counter is at 5.\r\nFeb 18 19:09:29 cuckoo systemd[1]: Stopped High-performance, schema-free document-oriented database.\r\nFeb 18 19:09:29 cuckoo systemd[1]: mongodb.service: Start request repeated too quickly.\r\nFeb 18 19:09:29 cuckoo systemd[1]: mongodb.service: Failed with result 'exit-code'.\r\nFeb 18 19:09:29 cuckoo systemd[1]: Failed to start High-performance, schema-free document-oriented database.\r\n```\r\n\r\nTOR\r\n```\r\n\u25cf tor@default.service - Anonymizing overlay network for TCP\r\n   Loaded: loaded (/lib/systemd/system/tor@default.service; enabled-runtime; vendor preset: enabled)\r\n   Active: failed (Result: exit-code) since Tue 2020-02-18 19:01:11 UTC; 14min ago\r\n Main PID: 2711 (code=exited, status=1/FAILURE)\r\n\r\nFeb 18 19:01:11 cuckoo tor[2711]: Feb 18 19:01:11.737 [notice] Closing partially-constructed Socks listener on 127.0.0.1:9050\r\nFeb 18 19:01:11 cuckoo tor[2711]: Feb 18 19:01:11.737 [warn] Failed to parse/validate config: Failed to bind one of the listener ports.\r\nFeb 18 19:01:11 cuckoo systemd[1]: Failed to start Anonymizing overlay network for TCP.\r\nFeb 18 19:01:11 cuckoo tor[2711]: Feb 18 19:01:11.737 [err] Reading config failed--see warnings above.\r\nFeb 18 19:01:11 cuckoo systemd[1]: tor@default.service: Service hold-off time over, scheduling restart.\r\nFeb 18 19:01:11 cuckoo systemd[1]: tor@default.service: Scheduled restart job, restart counter is at 5.\r\nFeb 18 19:01:11 cuckoo systemd[1]: Stopped Anonymizing overlay network for TCP.\r\nFeb 18 19:01:11 cuckoo systemd[1]: tor@default.service: Start request repeated too quickly.\r\nFeb 18 19:01:11 cuckoo systemd[1]: tor@default.service: Failed with result 'exit-code'.\r\nFeb 18 19:01:11 cuckoo systemd[1]: Failed to start Anonymizing overlay network for TCP.\r\n```\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. Install a fresh installation of Ubuntu 18.04\r\n2. Modify and run kvm-qemu.sh and reboot\r\n3. Modify and run cuckoo3.sh\r\n4. Reboot and monitor the startup process\r\n\r\n## Context\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | commit ca9d51041c65b6e5cf1fbad70e0b99ce27e8b5d7\r\n| OS version       | Ubuntu 18.04\r\n\r\n## Failure Logs\r\n\r\nNot sure which logs to provide.\r\n\nComment: I solved the Mongo problem by removing unnecessary service files from /etc/systemd/system.  The package installs mongod.service under /lib/systemd/system.  No need for these extra service files.\nComment: I solved the Tor problem by purging and reinstalling.  No config modifications done after reinstalling.\r\n\r\nI'm now able to move on to building my guest OS.\nComment: When I launch virtual machine manager...\r\n\r\n1. libvirtd is not enabled or started.\r\n2. a warning is displayed:  \"KVM is not available. This may mean the KVM package is not installed, or the KVM kernel modules are not loaded. Your virtual machines may perform poorly.\"\r\n\r\nAt this point, I have had to do several things manually in order to correct things that are not done correctly using the recommended install scripts.  Not sure what to do about the KVM warning since the kernel modules do not appear to exist.\nComment: nothing related to cape at all\nComment: Its related to your script  @doomedraven.  You claim that your script will install CAPEv2 without issues.  That isn't true at all.  Your install fails to start services.  So maybe you should take that into consideration instead of closing issues without at least talking about it.\r\n\r\nAs it stands your script DOES NOT install CAPEv2 or even KVM properly.  I expect others to have the same issues. I am going to keep opening issues until you address the problems with your script.\nComment: whatever you say, after [insult dev](https://github.com/ctxis/CAPE/issues/401) and we saw that issues comes from you not from cape, you need to change your way to behav when people helps you for free ",
+  "Title: Where is sudo kvm-qemu.sh?\nBody: I'm starting to build out CAPE v2 and in the README is mentions a non-existent shell script.  \r\n\r\nWhere is this kvm-qemu.sh script?\nComment: I would have make the hot link on the file name.\nComment: 2. KVM is the host link lol",
+  "Title: Add Emotet signatures (beta)\nBody: This is still in early stages. Mutex and registry work as expected. More progress/testing on the remaining is nice.",
+  "Title: Update ransomware_files.py\nBody: Add LockBit.",
+  "Title: Update static_pdf.py\nBody: PDF samples embedding CVE-2017-11882 documents:\r\n```\r\n113b19910bacf907d368e1dbcbee844ae8418be972222fb986e8e097165e7d29\r\n7f345a791f9204dc39d754e1a8af55d71ff2038c6827183c685d1f94ad7385ca\r\n```",
+  "Title: Update analyzer.py\nBody: Fix syntax error\nComment: Lol i had tested that and didt spot, thanks",
+  "Title: Emotet Config Parser - No IPs\nBody: Hi,\r\n\r\nI'm not getting any ip addresses extracted from different emotet samples.\r\nThe rsa key gets extracted without problems.\r\n\r\nI took the following example as a reference: https://cape.contextis.com/analysis/127913/\r\n\r\nI'm running the lastest version (with the todays procdump fix - thx for that :) ).\r\n\r\nThx for attention!\nComment: I found the mistake.\r\nMy yara-python wasn't build with all necessary modules. :)\nComment: glad you solved that :)",
+  "Title: Update ransomware_revil_mutex.py\nBody: This should have had a positive hit. Sample: https://capesandbox.com/analysis/12718/",
+  "Title: Add DCRat signatures\nBody: ",
+  "Title: Update ransomware_message.py\nBody: * Adds several indicators\r\n* Adds .hta file",
+  "Title: Add Arkei signature and update existing Yara sig\nBody: \nComment: <3",
+  "Title: Add signature for WarzoneRAT and update existing AveMaria Yara signature\nBody: The AveMaria.yar signature is renamed/updated to reflect correct detection association. Additional references:\r\n- https://www.kernelmode.info/forum/viewtopic8b5f.html?f=16&t=5525\r\n- https://research.checkpoint.com/2020/warzone-behind-the-enemy-lines/\nComment: are you sure this is ok? `data/yara/CAPE/AveMaria.yar \u2192 data/yara/CAPE/WarzoneRAT.yar`\nComment: All of the observed IoCs and behaviors seem to be consistent with published research reports. So my answer would be yes. Let me know if you have suggestions!\nComment: ah this is another name for avemaria, thanks, i will update this `families = [\"Warzone\", \"AveMaria\"]`\r\n\r\nthanks a lot",
+  "Title: Fix a typo causing a false negative\nBody: ",
+  "Title: KVM no domain with matching name found\nBody: While trying to fix the physical machinery issue I thought it would be easy to setup kvm :)\r\n\r\nCAPEv2 gives the following error:\r\n\r\n> libvirt: QEMU Driver error : Domain not found: no domain with matching name 'win7x64_malware01'\r\nCRITICAL: CuckooCriticalError: Error initializing machines: Cannot find machine win7x64_malware01\r\n\r\nBut the vm is running:\r\n\r\n> virsh list --all\r\n Id   Name                State\r\n 1    win7x64_malware01   running \r\n\r\nThe user is in the following KVM groups:\r\n- kvm\r\n- libvirt\r\n- libvirt-qemu\r\n\r\nAm I missing something ?\r\n\r\nThx for attention!\nComment: can you post kvm.conf?\nComment: [kvm]\r\n`#` Specify a comma-separated list of available machines to be used. For each\r\n`#` specified ID you have to define a dedicated section containing the details\r\n`#` on the respective machine. (E.g. cuckoo1,cuckoo2,cuckoo3)\r\nmachines = win7x64_malware01\r\n\r\ninterface = br1\r\n\r\n[win7x64_malware01]\r\n`#` Specify the label name of the current machine as specified in your\r\n`#` libvirt configuration.\r\nlabel = win7x64_malware01\r\n\r\n`#` Specify the operating system platform used by current machine\r\n`#` [windows/darwin/linux].\r\nplatform = windows\r\n\r\n`#` Specify the IP address of the current virtual machine. Make sure that the\r\n`#` IP address is valid and that the host machine is able to reach it. If not,\r\n`#` the analysis will fail. You may want to configure your network settings in\r\n`#` /etc/libvirt/<hypervisor>/networks/\r\nip = 192.168.145.20\r\n\r\n`#` (Optional) Specify the snapshot name to use. If you do not specify a snapshot\r\n`#` name, the KVM MachineManager will use the current snapshot.\r\n`#` Example (Snapshot1 is the snapshot name):\r\nsnapshot = Snap01_Rdy\r\n\r\n`#` (Optional) Specify the name of the network interface that should be used\r\n`#` when dumping network traffic from this machine with tcpdump. If specified,\r\n`#` overrides the default interface specified in auxiliary.conf\r\n`#` Example (virbr0 is the interface name):\r\n`#` interface = virbr0\r\n\r\n`#` (Optional) Specify the IP of the Result Server, as your virtual machine sees it.\r\n`#` The Result Server will always bind to the address and port specified in cuckoo.conf,\r\n`#` however you could set up your virtual network to use NAT/PAT, so you can specify here\r\n`#` the IP address for the Result Server as your machine sees it. If you don't specify an\r\n`#` address here, the machine will use the default value from cuckoo.conf.\r\n`#` NOTE: if you set this option you have to set result server IP to 0.0.0.0 in cuckoo.conf.\r\n`#` Example:\r\n`#` resultserver_ip = 192.168.122.101\r\n\r\n`#` (Optional) Specify the port for the Result Server, as your virtual machine sees it.\r\n`#` The Result Server will always bind to the address and port specified in cuckoo.conf,\r\n`#` however you could set up your virtual network to use NAT/PAT, so you can specify here\r\n`#` the port for the Result Server as your machine sees it. If you don't specify a port\r\n`#` here, the machine will use the default value from cuckoo.conf.\r\n`#` Example:\r\n`#` resultserver_port = 2042\r\n\r\n`#` (Optional) Set your own tags. These are comma separated and help to identify\r\n`#` specific VMs. You can run samples on VMs with tag you require.\r\n`#` Note that the x64 tag is currently special.  For submitted 64-bit PE files,\r\n`#` the x64 tag will automatically be added, forcing them to be run on a 64-bit\r\n`#` VM.  For this reason, make sure all 64-bit VMs have the x64 tag.\r\n`#` tags = windows_xp_sp3,x32,acrobat_reader_6\nComment: one trick instead of escape \\#  you can use markdown code block ;)\r\n\r\ni have feeling like you try to use qemu as kvm, as brX is qemu network interface and virtbrX is kvm\nComment: I enabled virbr0 and changed the config.\r\n\r\nWhat do you mean with 'use qemu as kvm'. Isn't the domain config telling which one to use ?\r\n`<domain type='kvm'>`\r\n\r\nEDIT:\r\n`<emulator>/usr/bin/kvm</emulator>`\nComment: yes, check if you have group libvirtd, with D at the end, + check here for hardening of kvm and some other trick just in case if you not saw, the conf looks good so far, im using kvm and never faced this problem\r\n\r\n\r\nnot related to issue\r\nhttps://github.com/doomedraven/Tools/blob/master/Virtualization/kvm-qemu.sh\r\nhttps://www.doomedraven.com/2016/05/kvm.html\nComment: I was able to reproduce the error with a little python script:\r\n```\r\nfrom __future__ import print_function\r\nimport sys\r\nimport libvirt\r\nfrom xml.dom import minidom\r\n\r\ndomName = 'win7x64_malware01'\r\n\r\nconn = libvirt.open('qemu:///system')\r\nif conn == None:\r\n    print('Failed to open connection to qemu:///system', file=sys.stderr)\r\n    exit(1)\r\n\r\ndomainIDs = conn.listDefinedDomains()\r\nif domainIDs == None:\r\n    print('Failed to get a list of domain IDs', file=sys.stderr)\r\n\r\nprint(\"Active domain IDs:\")\r\nif len(domainIDs) == 0:\r\n    print('  None')\r\nelse:\r\n    for domainID in domainIDs:\r\n        print('  '+str(domainID))\r\n\r\ndom = conn.lookupByName(domName)\r\nif dom == None:\r\n    print('Failed to find the domain '+domName, file=sys.stderr)\r\n    exit(1)\r\n\r\nflag = dom.isActive()\r\nif flag == True:\r\n    print('The domain is active.')\r\nelse:\r\n    print('The domain is not active.')\r\n\r\nconn.close()\r\nexit(0)\r\n```\r\nIt gives me the following output:\r\n```\r\nActive domain IDs:\r\n  None\r\nlibvirt: QEMU Driver error : Domain not found: no domain with matching name 'win7x64_malware01'\r\nTraceback (most recent call last):\r\n  File \"testkvm.py\", line 24, in <module>\r\n    dom = conn.lookupByName(domName)\r\n  File \"/usr/lib/python3/dist-packages/libvirt.py\", line 4183, in lookupByName\r\n    if ret is None:raise libvirtError('virDomainLookupByName() failed', conn=self)\r\nlibvirt.libvirtError: Domain not found: no domain with matching name 'win7x64_malware01'\r\n```\r\nAny idea ?\nComment: ```\r\npython check.py\r\nActive domain IDs:\r\n  ubuntu18.04-3\r\n  ubuntu18.04-6\r\n  win7x64_2\r\n  ubuntu18.04-5\r\n  ubuntu18.04-4\r\n  win7\r\n  ubuntu18.04\r\n  ubuntu18.04-2\r\n  win7_2\r\nThe domain is not active.\r\n```\r\n\r\n\r\ndo you have set this?\r\n\r\n```\r\necho LIBVIRT_DEFAULT_URI\r\nLIBVIRT_DEFAULT_URI=qemu:///system\r\n```\nComment: can you try to rename your vm without `_` maybe an old version and breaks it, idk what qemu/libivrt versions?\nComment: I'm using:\r\n```\r\n4.19.0-8-amd64 #1 SMP Debian 4.19.98-1 (2020-01-26) x86_64 GNU/Linux\r\nqemu-kvm: Version: 1:3.1+dfsg-8+deb10u4\r\nlibvirt-daemon:Version: 5.0.0-4+deb10u1\r\nlibvirt-clients: Version: 5.0.0-4+deb10u1\r\nvirt-manager: Version: 1:2.0.0-3\r\n```\r\nI renamed the vm but the error is still the same.\r\n\r\nHere's the env output:\r\n```\r\necho $LIBVIRT_DEFAULT_URI\r\nqemu:///system\r\n```\r\n\nComment: i don't know maybe that is a bug in an apt package, as my friends and me we suing that kvm-qemy.sh to deploy everything from sources(latest versions) + you on debian no? we not testing debian due to old libs ,as they gives problems, we use ubuntu 18.04 lts as core os and suggest that\nComment: After a reboot the vm was gone.\r\nvirsh list -all output was emtpy.\r\n\r\nI re-registered the vm and now everything works fine :)\r\n\r\nThx for all the help!\nComment: interesting issue, maybe you used define/create, one of them creates temp vm, glad you solved it, if you want a hardened vm check my script ;) let us know if you have any other issue",
+  "Title: Update Remcos parser for py3\nBody: ",
+  "Title: Edit RobbinHood\nBody: Fix RobbinHood spelling - as the one with 1 b refers to another ransomware which has different ransom notes.",
+  "Title: physical machinery broken\nBody: I can not get up the physical setup.\r\n\r\nIt always hit the following exception:\r\n\r\n`except socket.error as e:\r\n            # Could not contact agent.\r\n            log.debug(\"Agent unresponsive: %s (%s) (Error: %s).\",\r\n                      machine.id, machine.ip, e)`\r\n\r\nThe cuckoo log states that the agent is not responding.\r\n\r\nTesting the agent from the host with curl http://x.x.x.x:8000 works fine.\r\n\r\nBy negating the exception handling (dirty I know... :)) cuckoo gets up and proceeds with the analysis (sample gets executed) but crashes after trying to reboot the machine.\r\n\r\nI think that the TimeoutServer is the problem here.\r\n\r\n\r\n\nComment: i don't have physical setup so can't fix that, you will need to try to make it works on your own or wait till someone fixes that\nComment: one day that will be moved out to \"community\" again as we don't need not maintained code inside of the project to avoid the confusion ",
+  "Title: Fix emotet parser for python3\nBody: ",
+  "Title: Update recon_checkip.py\nBody: Adds multiple IP API lookups. (re-sorted as well)",
+  "Title: Update PE anomaly for compilation timestopming\nBody: Sample:\r\n```\r\nd943cf5fbec8d3858a37be216b2bfea96400597cccaf524590532b94273c0717\r\n```",
+  "Title: Add signature for disabling Folder Options menu\nBody: Examples:\r\n- https://www.microsoft.com/en-us/wdsi/threats/malware-encyclopedia-description?name=Win32%2FBrontok\r\n- https://blog.malwarebytes.com/detections/hijack-folderoptions/\nComment: thanks for another interesting signature",
+  "Title: kvmremote\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x ] I am running the latest version\r\n- [ ] I checked the documentation and found no answer\r\n- [ ] I checked to make sure that this issue has not already been filed\r\n- [ ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nOn start CAPE is espected to shutdown the vm\r\n\r\n# Current Behavior\r\n\r\nWhem I start CAPE is not shutdown the VM and also after submit a nalysis the vm is power off\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| OS version       | Ubuntu 18\r\n\r\n\r\n\nComment: no one of us using it, so you will need to fix by your own, sorry\nComment: why just not to use kvm module?",
+  "Title: XLS module was causing \"No such file\" error\nBody: I suppose this is the correct file to point to as long as was created on same commit.\r\n\r\n2020-02-05 15:30:07,249 [root] ERROR: Traceback (most recent call last):\r\n  File \"C:/tmpbu032h7r/analyzer.py\", line 1551, in <module>\r\n    success = analyzer.run()\r\n  File \"C:/tmpbu032h7r/analyzer.py\", line 497, in run\r\n    copy(os.path.join(\"bin\", LOADER32), LOADER32_NAME)\r\n  File \"C:\\Users\\SERVER\\AppData\\Local\\Programs\\Python\\Python38-32\\lib\\shutil.py\", line 409, in copy\r\n    copyfile(src, dst, follow_symlinks=follow_symlinks)\r\n  File \"C:\\Users\\SERVER\\AppData\\Local\\Programs\\Python\\Python38-32\\lib\\shutil.py\", line 259, in copyfile\r\n    with open(src, 'rb') as fsrc, open(dst, 'wb') as fdst:\r\nFileNotFoundError: [Errno 2] No such file or directory: 'bin\\\\newloader.exe'\r\nTraceback (most recent call last):\r\n  File \"C:/tmpbu032h7r/analyzer.py\", line 1551, in <module>\r\n    success = analyzer.run()\r\n  File \"C:/tmpbu032h7r/analyzer.py\", line 497, in run\r\n    copy(os.path.join(\"bin\", LOADER32), LOADER32_NAME)\r\n  File \"C:\\Users\\SERVER\\AppData\\Local\\Programs\\Python\\Python38-32\\lib\\shutil.py\", line 409, in copy\r\n    copyfile(src, dst, follow_symlinks=follow_symlinks)\r\n  File \"C:\\Users\\SERVER\\AppData\\Local\\Programs\\Python\\Python38-32\\lib\\shutil.py\", line 259, in copyfile\r\n    with open(src, 'rb') as fsrc, open(dst, 'wb') as fdst:\r\nFileNotFoundError: [Errno 2] No such file or directory: 'bin\\\\newloader.exe'\nComment: nice catch thanks\r\n\r\n@kevoreilly  grep if there any other with newloader\nComment: nvm already did it, was only this one",
+  "Title: Logging fixed to avoid TypeError\nBody: Those parameters cause this exception due to capital letter on backupCount variable.\r\n--- Logging error ---\r\nTraceback (most recent call last):\r\n  File \"/usr/lib/python3.6/logging/handlers.py\", line 72, in emit\r\n    self.doRollover()\r\n  File \"/usr/lib/python3.6/logging/handlers.py\", line 397, in doRollover\r\n    if self.backupCount > 0:\r\nTypeError: '>' not supported between instances of 'NoneType' and 'int'\r\n\nComment: thanks a lot i totally forgot about this one",
+  "Title: Fix screenshots download\nBody: When you try to download all screenshots from an analysis in ZIP format an exception occurs:\r\nstring argument expected, got 'bytes'\r\nThis change solve the problem. Tested OK\nComment: thanks",
+  "Title: fixed enhanced and quickfix on UnicodeError\nBody: Enhanced behaviour wasn't executing\r\nQuick fix for 'UnicodeError' (Some yaras can break all modules) ",
+  "Title: Attempt to fix config parsing bug in cape_utils.py\nBody: note: The logic maybe needs to be addressed as the extracted config can be overwritten and return empty.\r\nAdditional key checks.",
+  "Title: Fix CAPE.py bugs - read all file data, key check\nBody: Fix PeID static processing\r\nCode cleanup\nComment: Hey thanks can you change last one to list(set( please? ",
+  "Title: Add better error handling to BSON compression\nBody: ",
+  "Title: fixed UnboundLocalError: local variable os ...\nBody: Fixed error  \r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/modules/machinery/kvmremote.py\", line 129, in dump_memory\r\n    if not os.path.isfile(path):\r\nUnboundLocalError: local variable 'os' referenced before assignment",
+  "Title: Silent failure of Dropped Files tab when using ES as DB\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I am running the latest version\r\n- [X] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [X] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nIndicator of non-support for listing dropped files when using ES - https://github.com/kevoreilly/CAPEv2/blob/1f6f64e1f4eddf2ce603413895a545b2c2eae12b/web/analysis/views.py#L329\r\n\r\n# Current Behavior\r\n\r\nA silent failure and a display of 'No dropped files'. This is misleading to an analyst. \r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. submit executables that drop files\r\n2. view analysis once analysis has been completed\r\n3. go to 'Dropped Files' tab\r\n\nComment: Is this currently just not implemented or is there a reason it can't be implemented? If it's lacking implementation I might be able to implement and create a pull request.\nComment: That isnt implemented, community tried to implement that for ES2 and never\nfinished, so mongo isbthe unique solution but we keep code just in case\nsomeone wants to finish it\n\nEl mar., 28 ene. 2020 22:09, lps-rocks <notifications@github.com> escribi\u00f3:\n\n> Is this currently just not implemented or is there a reason it can't be\n> implemented? If it's lacking implementation I might be able to implement\n> and create a pull request.\n>\n> \u2014\n> You are receiving this because you are subscribed to this thread.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/37?email_source=notifications&email_token=AAOFH35U7ZNIHK5CBU4AOVTRACNHRA5CNFSM4KMZJYP2YY3PNVWWK3TUL52HS4DFVREXG43VMVBW63LNMVXHJKTDN5WW2ZLOORPWSZGOEKE462A#issuecomment-579456872>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH37C3CHBQSMOY24JAKDRACNHRANCNFSM4KMZJYPQ>\n> .\n>\n",
+  "Title: Fix007\nBody: \nComment: Thanks ",
+  "Title: Small updates\nBody: \nComment: ah nice sorry for bug\nComment: No worries, thank you!",
+  "Title: fixed split error and identation\nBody: Just a quick fix on this module\nComment: thank you",
+  "Title: Web not working\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [x ] I am running the latest version\r\n- [ x] I checked the documentation and found no answer\r\n- [x ] I checked to make sure that this issue has not already been filed\r\n- [ ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nError displaying web interfae\r\n\r\n# Current Behavior\r\n\r\nWhat is the current behavior?\r\n\r\n# Failure Information (for bugs)\r\n\r\nPlease help provide information about the failure if this is a bug. If it is not a bug, please remove the rest of this template.\r\n\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1. step 1\r\n2. step 2\r\n3. you get it...\r\n\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | Type `$ git log \\| head -n1` to find out\r\n| OS version       | Ubuntu 18.04\r\n\r\n## Failure Logs\r\n\r\nPlease include any relevant log snippets or files here.\r\n\r\n\r\n\r\n[28/Jan/2020 14:33:04] \"GET /static/css/style.css HTTP/1.1\" 404 77\r\n[28/Jan/2020 14:33:04] \"GET /static/css/lightbox.css HTTP/1.1\" 404 77\r\n[28/Jan/2020 14:33:04] \"GET /static/css/bootstrap.min.css HTTP/1.1\" 404 77\r\n[28/Jan/2020 14:33:04] \"GET /static/css/bootstrap-datetimepicker.min.css HTTP/1.1\" 404 77\r\n[28/Jan/2020 14:33:04] \"GET /static/js/jquery.js HTTP/1.1\" 404 77\r\n[28/Jan/2020 14:33:04] \"GET /static/graphic/cape.png HTTP/1.1\" 404 77\r\n[28/Jan/2020 14:33:04] \"GET /static/js/bootstrap.min.js HTTP/1.1\" 404 77\r\n[28/Jan/2020 14:33:04] \"GET /static/js/bootstrap-fileupload.js HTTP/1.1\" 404 77\r\n[28/Jan/2020 14:33:04] \"GET /static/js/bootstrap-transition.js HTTP/1.1\" 404 77\r\n[28/Jan/2020 14:33:04] \"GET /static/js/bootstrap-collapse.js HTTP/1.1\" 404 77\r\n[28/Jan/2020 14:33:04] \"GET /static/js/moment.min.js HTTP/1.1\" 404 77\r\n[28/Jan/2020 14:33:04] \"GET /static/js/lightbox.js HTTP/1.1\" 404 77\r\n[28/Jan/2020 14:33:04] \"GET /static/js/bootstrap-datetimepicker.min.js HTTP/1.1\" 404 77\r\n[28/Jan/2020 14:33:05] \"GET /static//img/cape.png HTTP/1.1\" 404 77\nComment: hello what do you mean `Error displaying web interfae` \r\n\r\nstart it with `--insecure`  as debug is disabled by default\nComment: any feedback?\nComment: HI, sorry for the delay \r\n\r\nif start with --insecure the web works fine\nComment: that is due to debug=False in `web/web/settings.py` i think we reenabled it to avoid problem",
+  "Title: Fix006\nBody: ",
+  "Title: Add shellcode Yara signature and parser\nBody: This should detect the shellcode pattern injected into RegAsm.exe by these tiny binaries making rounds on the Internet. The shellcode is basically a downloader for the second-stage obfuscated binary. Once detected, the parser will extract the URL of the second stage binary. Second stage payloads are mostly AgentTesla or Lokibot so far.\r\n\r\nSample first-stage binaries:\r\n```\r\n01224912907f1455f128aa33ff81bddef67c23a3be538c3aecdc7f95f6ef2f6c\r\n0d37ad6248f8d591fc7de33b927fd6f8bd121ba524afc9f1b380246b284a2d1e\r\n0e1ab8087e9e57d17025d6e6cac04703ea59c020189ca1604ac556a0a9cad789\r\n25d9f41deae0973d9f260e0736ae169edcb59421524c9d343e7553182624760f\r\n272a5226681ed39cdf02a4f67b776a6167eeb559c652d120b116cca9e552d4e7\r\n2d877b248fad3d405c45a62c6a703b81bb14fcda6da9ef5ebaf3ca84ef905cce\r\n3023efc15870e0c05c92cc5b0be041fd112ba00c1349427814a675ca3aaa0ce4\r\n3e08c1b16a72ad4bf587784034a57c5519c4bf308c2c9f83dea27d0a2e5aea77\r\n497e288ee8a76a486e01562a0ca785fc7d72a70a4557ccde5228c466195d4c99\r\n58f8f32ecb6f62c0b5ab43a8a8d5d52410924410262f2676b0267e5ac4722f34\r\n5f7de0274ce0adff214cd5067cbd7b0f461677f412d8c522d1cd774bf94b9dfc\r\n640a119a034a44f5c6154e7982bf5f75967237d77ec4a75d85c14c1b659c46b9\r\n654dfbed05cae4877054cc8342e973fad95f709acfa254190c54e9d80af8d6c7\r\n6b292bba2192545ccc8f553689fb7e46da50f05c685be43d64fe07de51e47451\r\n7a3795c9d64d1a6d0807106673efde3367f799062c311c66f08347cf6e928556\r\n80fe9d58614c3d32f58ba5075abca9b8dce955f9959ccc92d58d8863cc315306\r\n862db5dda2faf12659bc1a5dee1ab82e1a19b255df65d604c857936b337dd266\r\n86d403a70a0fc6f0bf285e395bd755707c96cfe0682dc96b2ccca438d986d1fb\r\n9f1e607bc37b5d67febda325f89092ec465690023c530fa060062d5106ce0926\r\na548a5a0cf623d98b2f47ca993afd6ce02728fa462fadf9ca3efe4e2b64c6835\r\nae38138b364a47f4c5cdb9365be02145f82f2e328eb8dd19f33b0d6ac14765bd\r\nb8bb5885109f1b0410e9e5bb0dfcd92f040bdb9180b7abb44b57eb4bcd0b2178\r\nb8c09ba98fe9e14d0ec736231a822e7fd239957105963ddc8589d262473a4e49\r\nbfda7e3699d11aef756b51623af5860307cbd9581f2043a9d0d80f4c9dbf4a9a\r\nd0fcfda63d2eb0c80d40eb907ae7706398c566301a89a6f21839cbb972fcaf4d\r\nd704c348ca67815c12b9ab1af81c1387b574d17341e57e4a005e84f70004dd02\r\nd7f68a623086586e887c816ca21c9d38bd5aade756b07fea11d75ba703d1a66e\r\nd9d1a7bbd710e0dad2d4bb269cca0a37470060b9bef0008069d3fabbcaecc47e\r\nead4423c46f41cecdb247fdf3065f472f5e1bf109047cb2fb47103ac6a9fb64b\r\neff39ab5fd0408845be2175041d7b98af35ea7b68e068525ad51a9584cb81123\r\n```\r\n\r\nAssociated URLs:\r\n```\r\nhxxps://cdn[.]filesend[.]jp/private/ARDfYW15xfRL0asR4rxh_cDB44-8_1yOKuALk5-w3wnBdAlGwN631MRu1cmTAoir/malaysiaorigin_encrypted_C69BF1F.bin\r\nhxxps://drive[.]google[.]com/uc?export=download&id=13FXtiOH96wENJsErEbebPuv7yUDCzKXV\r\nhxxps://drive[.]google[.]com/uc?export=download&id=15I8PZzPjwOpoP5g-Fe8cB1UT9fOHd6ym\r\nhxxps://drive[.]google[.]com/uc?export=download&id=15ji_9860LnCfyd-C6b0cj4NhG2i-4-UB\r\nhxxps://drive[.]google[.]com/uc?export=download&id=17LlAiQXQ572yE1E0P-Xwswe5NpgYDupZ\r\nhxxps://drive[.]google[.]com/uc?export=download&id=1bduF281PdOJQ9wWILe4MKElsyeBWYqWA\r\nhxxps://drive[.]google[.]com/uc?export=download&id=1bLZQwVjPYryMYlbf8gPdHCUjPnK3fCde\r\nhxxps://drive[.]google[.]com/uc?export=download&id=1Cui_T4TAsuLppaKPFmOKL5n5PEvIaRTP\r\nhxxps://drive[.]google[.]com/uc?export=download&id=1ET7DnOVaNxBfuR0z6r4UFcJYvhqoqqaU\r\nhxxps://drive[.]google[.]com/uc?export=download&id=1gF2Ouqtw33x50n4DZab-HGZjoUFS6Tpe\r\nhxxps://drive[.]google[.]com/uc?export=download&id=1HENJab3aTQ0wux8Pve78DO8jg4O173b9\r\nhxxps://drive[.]google[.]com/uc?export=download&id=1kO69OsuWdMLAjOUiSniYoagEeFZ4qFBV\r\nhxxps://drive[.]google[.]com/uc?export=download&id=1lCyRTyt20csOtAvNzk3szM2OHy9wqnmW\r\nhxxps://drive[.]google[.]com/uc?export=download&id=1O95cInjSy-Mar7EUIOX0L55147xnILlQ\r\nhxxps://drive[.]google[.]com/uc?export=download&id=1pqeHqblUPAUthvFuznhyJosTFv-_HuMh\r\nhxxps://drive[.]google[.]com/uc?export=download&id=1QjqAalF3OTHmqxfFPAe2bn19T4GBm7_l\r\nhxxps://drive[.]google[.]com/uc?export=download&id=1RunHwPzzh_Fm5n4hb-OC8i8vXkWpwr91\r\nhxxps://drive[.]google[.]com/uc?export=download&id=1uvvSFnoNJdsl_X2dZgTxSLEt3Z8yoqj7\r\nhxxps://drive[.]google[.]com/uc?export=download&id=1XjUHIgW5T6HcodhQNf4poqrFbSYVe2Qd\r\nhxxps://drive[.]google[.]com/uc?export=download&id=1y0C0QL6yXiOJQeJ2KV_up9rwS76TpbWd\r\nhxxps://drive[.]google[.]com/uc?export=download&id=1ZcfKYueTNb51zhkVmx3Hm3r7Xb2hiMQU\r\nhxxps://kloskterminals.com/fonts/office_encrypted_A0C4E0F.bin\r\nhxxps://onedrive[.]live[.]com/download?cid=265DAF943BE0D06F&resid=265DAF943BE0D06F%21131&authkey=AEoO91ngqrT5smk\r\nhxxp://www[.]forwardarch[.]com/damllakimya_encrypted_66217F0.bin\r\nhxxp://www[.]forwardarch[.]com/Host_encrypted_5B7430.bin\r\n```\r\n\r\nAssociated second-stage payloads:\r\n\r\n```\r\n03974779c835b9fd7d9b62dc793bfb152e001f8a4b5ab4aa10d1eba05c318939\r\n1b9536ef5d59a1ee80de1c4f7697b6085987e09b9b4022d3498a07d46570292b\r\n1bba76f23a89618b9a03fdcd97c0bbebab17d5295d8bcdb7645dd5dd678ea6d8\r\n206fb6e8039ec2b06a4dc840c7e6c2118eb2deffa51e53a1a864257784b7ae0f\r\n4cb36ad1030a2b74094be76f314a5ab34a933a15445c8291329832546aaa9f1a\r\n548471dc1cfb4ba6194d8b0da8854d5e3e040f6b35e365de1700993855910dc8\r\n5b80be13478d8b67cfd93922c48befb89a3bdb57104c733c704fd86b94247b20\r\n60ce8982162a43e89945b66c44210b5e502b75bb1b18ada325f6e5c6845cf870\r\n6ae5ddab6bcdfff120c910ecf1fcfa05e927db6042685f84c13c0d434d616622\r\n737cfcb0ad935cad2f30385ba8c2b079f3966d415e3638120184615510d95fbc\r\n81e4442324b4b7fc86a48c9cf6fac52b2e89272cdff0e062174a7b546604b12b\r\n8fb0066a7c568dd844a7bcdb1daeb463a962c522a43a9defa3b03ef4a906ad91\r\n92a5be4ae94deb46fbd851e908264ed61a9133b0724736d928a6f7194ff65632\r\n93a162351ba9cec2fc987a818aa7fd44a98bdb6df479c711fa5571beb98f6a01\r\na5e105e715a52f4d8a3cb5a13b5dba042da9765ec5b3a95a50db0448b9995c3d\r\nb30fab9e3921d3330fca53e94fce2708b549232300dfcdaadf897083c16eb92f\r\nc0173d6586f23e32a7e5b87b8fe0f8bdf0ee6daa1decceb16f4bea18a396056b\r\nce5355c374762b772ec62a5adeeb2ca07418e89cfdbde94a35dd356880dfe0b1\r\nd8b8b0172bd865a137d6645ac45d4a7197253844dd87422763ec845a54fd2b92\r\nda8ee7b69a399bc9299703f10e76e8848a58e7f44c34027722e990d0cdf5bcde\r\nec85c7f42e4155769df4927d951ac43a0dfd686c56f3dab07b25662f91208783\r\neca21b528d3414f04d2bec38e07a69338be46988e3aead96a8c4508ecf62d19a\r\nefac397e374fbd5a2ddb7daef651165cb43bd03dc1b2408c6c51572847a01897\r\n```\nComment: thanks a lot :) i did small rewrite of the parser\r\nhttps://github.com/kevoreilly/CAPEv2/blob/master/modules/processing/parsers/CAPE/SCInject.py\r\n\r\nthe idea is to have regex outside so it initialized once and used later and oneline for :)\nComment: Thanks! That looks a lot better.",
+  "Title: Fix - Show filepath of dropped file\nBody: instead of the hash\nComment: i think if you use full path youneed to use |safe\nComment: added |safe",
+  "Title: Android/APK-analysis\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Prerequisites\r\n\r\nPlease answer the following questions for yourself before submitting an issue.\r\n\r\n- [X] I will be running the latest version\r\n- [ ] I checked the documentation and found no answer\r\n- [X] I checked to make sure that this issue has not already been filed\r\n- [ ] I'm reporting the issue to the correct repository (for multi-repository projects)\r\n\r\n# Expected Behavior\r\n\r\nAs the title says, I'm wondering if any of Muhzii's fixes to Android analysis has been implemented into this fork, and/or if Android/APK-analysis will work/has been tested?\r\n\r\n# Current Behavior\r\n\r\nNo current behavior, not tested on my end(yet).\r\n\nComment: hello. No, is only windows focused, but if you want to backport/integrate that you are more than welcome, here are the biggest update of android stuff that I know https://github.com/cuckoosandbox/cuckoo/pull/2845",
+  "Title: Update cape_utils.py\nBody: ",
+  "Title: Add detection for anonymous temporary file services connectivity\nBody: Sample:\r\n```\r\nfe8cc72bba04ee7ba71a4a5c98501b25cd171dfef811bf2bf534440eb92db073\r\n```\nComment: thanks for interesting signatures\nComment: Yeah thanks a lot!",
+  "Title: Add signature to detect malware encryption\nBody: This covers two families for now. Hopefully more gets added.\nComment: nice stuff",
+  "Title: Add CypherIT/Frenchy shellcode packer signature\nBody: Have been collecting/testing this since August 2019. Additional information can be found here: https://research.checkpoint.com/2019/decypherit-all-eggs-in-one-basket/\r\n\r\nTested Samples:\r\n\r\n```\r\n02da2c34381cecfc909f32ed8c7e9b95696fcb827e51fdc5b23fa18326485940 (AgentTesla)\r\n046a547b698fc5f691119ec3ef08e02fc10873c60b1d08879188aec47bd72a23 (AgentTesla)\r\n07cd2c4cd8dcc5bbea48c137c5ca445889e50c2bac36c96af6e77c48193744f6 (AgentTesla)\r\n0e34d154167323b19ae76ef52ff135f68b35a37d1e4454f77f45618d585fa960 (AgentTesla)\r\n1688a4161ae0292575ff27c65fd33047642b4e4c31b0af825940f277365699e2 (AgentTesla)\r\n176c6d49d475cfcf0723824e0b401eff33d1e2f55a07bddbdc7a47755f7c9bd1 (AgentTesla)\r\n17908389f2e584e8498a2ad737c0a827439ca9173cf254f5344d12930281f08f (AgentTesla)\r\n18641d970be3485f8a9badbfca970c423645e76f869ccebf67d38a29254a8bab (AgentTesla)\r\n1aafc199a6852495ccd2891c427c9f94e8453c227249fa5fde64323e47ee300c (AgentTesla)\r\n280949834f1325329e0acebc02993a5197e57e0401dbcd41c4910684bc5ef485 (AgentTesla)\r\n2a89038f81bc8b932d356d10ed9eea4855b25452d19c82abeb766c4f2bd29d79 (AgentTesla)\r\n307dea0d3f6a110dab46f973c4a363cffa7cdbe063dc21540595cf800be76e82 (AgentTesla)\r\n357391330da116eacf362e86c209f95069edf15a1f2ff1877939914e2ca89d3a (AgentTesla)\r\n363e426a7a9fc982e0aaa7c7ee314bd39d95764a47db52b61d50b5b8e692a2ce (AgentTesla)\r\n3b0742951446d7810cab20c25a46dc039ee71b65d89bfc9168e2ed0dbd35b495 (AgentTesla)\r\n3c64ad508b629d094eb05cf4a16c3930bfb0b1fc363bb85fcecb624a256d11c3 (AgentTesla)\r\n484774400f9f6d66469349b00ed0f750654fd42c8b0aa0da45d5c8bac28f63d8 (AgentTesla)\r\n4ba992fd6af388a1421ed61cbd887da3e505c18e5faeae2b1448cc822813fac6 (AgentTesla)\r\n4c1bc02b6e04c63ac3e4cf011a47e43ddce002470dd39798d05367f09876cb51 (AgentTesla)\r\n5073c2bfd03245968f258456e9a0a79d4bd2f75672783d5108ef8e17def84ddb (AgentTesla)\r\n61729c50d146044643ecb493d91f8e3730ec3135d80041676a746c378bb12070 (AgentTesla)\r\n6c2aa1408417d28e4971a9287d6a1e24132432cbd51db2f50d5302a573e7cb6f (AgentTesla)\r\n690b5923d20ddae20456a142e2aa08da17965aeec22ee205e077e2b738958ed5 (AgentTesla)\r\n6bdd04f603e1fd8e6865f5691c86f296c94ad488bfe30cb326ce612aac62484b (AgentTesla)\r\n70c4f8d4ba7734aeb571ce224ae09091fba3a31adbf2414f80b457a8da38203b (AgentTesla)\r\n72e81ddfb3997411963b83c68b3fcbb8f5ccd8528e4cc1a31c6e9c37de19848f (AgentTesla)\r\n8091393768cf5deab106547033f2903da5a5c6b348931367cb711ce519a7995c (AgentTesla)\r\n97e3eb9ad13724c2f14075659b4feefc738a6e75886448ed1e16c11116f455ae (AgentTesla)\r\n815ac07486b02e2a2e71fd0e575c5b9c41504eb4d0f903f519c1b674d9763524 (AgentTesla)\r\n8569dcdb72e711a9c98e57983d023dd5a84bb817f2ef0238cc2065d6ced7c6b4 (AgentTesla)\r\n8610f469a8d7d884e6b6fbfc25072b78e5251b595d858e68989298817179a066 (AgentTesla)\r\n89fdba0145ed8733abfe81b1aeac810e816ee7e7e8a0821980550378551cccf2 (AgentTesla)\r\n8c949b7e4a2b053c2bcfa385bb028ef8ae732360a3976bfd06eab3b2301c508a (AgentTesla)\r\n8dfbfb6c99e396438dbdea73059e1c0546c2242111981afa2f0d3f6e318f8442 (AgentTesla)\r\n92a56fda5709f0d489d4359632199eab479a8fcbb33e5454424a86ee791f2f1f (AgentTesla)\r\n97eff76fe1977fdb6cb0cc0a9b278cd4aa9c454aea4f2d5672f5b953f6a8eb8d (AgentTesla)\r\n99e18b50a73d854b55b730d9ee0006554799f64f91661194dea0bc97b60be6b9 (AgentTesla)\r\n9e4035b96ff9dec31125d57a0b845cbe4fbaf057565583637601609c26a62976 (AgentTesla)\r\na506c9c011373ca1a98822ff187b91ff04cb7972dd0ac2cff4a1f5d5f532f269 (AgentTesla)\r\na758516e200a5afb49ab2082c433fa59a8dbe2cf28973da6691a74759de479e1 (AgentTesla)\r\na7801d1726b6c3c92bb8226cb3297bb0c8d3ee4670a1d74d6ec1f2e15c782332 (AgentTesla)\r\na831e672b9eb104d21af45f1d2e59e6b40e204721c928e9c5b47429ee11f872f (AgentTesla)\r\na8da9b7c73dccc1819907a4ce5cdbe46fb5bc87985640d77e8145d28b28628f0 (AgentTesla)\r\nb0947df6f5d431385d9c3ad737877f7eae1af4aa5eeebd5b0079b0797473fa16 (AgentTesla)\r\nb7bbaa994050c43be051e32465c8cd9dfdf30b1a53b9f1dc558432dd9b0d831a (AgentTesla)\r\nba93831961b4939d6189c8a39cdc65e117641f897b65459d92d2f193b13134dd (AgentTesla)\r\nbc3eb903cfc078f515952f1e89fa7aa78e8b567199a56add96ff22065012439d (AgentTesla)\r\nc09987c5a9d800d1d0b808994921480d8e0469cdb5cac9fc990388b5a286ce3d (AgentTesla)\r\nc431b1c96590c1c61f6c507c4d5f3f31dfc5844fa7c7ea268e99b068f61bdc5a (AgentTesla)\r\ncd1ca22c23e8ae8afc85d9a236cfb68f77999c2aef59f535712a5dc741a8aaea (AgentTesla)\r\nd0986d3a4e148ea7d315b81b55e70a2bcd9bf6385b6e510152c82f7ac2895948 (AgentTesla)\r\nd2b005781bafeafec5706269af0844e6646b0ff60d0e0092ee54b1157a0ffadd (AgentTesla)\r\nd43a8678ada46151f50203853e919a49ced7a6e9179a6f13117236b99d70ee6d (AgentTesla)\r\nd8f2f85894d8a8d4a0f2c5b9fc3ab388ab814033d6a4c2fb8eeec4423afc542d (AgentTesla)\r\ndeb9d67740a8b032071bf1cade9f3a70622b44ea83ff14db563bcbd611f5f4c5 (AgentTesla)\r\ne4c94c442555d692417b14e3187a5dab04ac0864c34b7f8876d21551a977bf75 (AgentTesla)\r\ne94d4d17555e0335a7f22adb3a140bf89f51d766c4a5e54f3269778ac8297b78 (AgentTesla)\r\nee197739f96481d28ad7e3e135d7caf2b8e5e68a977bcdaf0769e7d43f30264f (AgentTesla)\r\nf1730479ac0a4941f63f7f4e216f57964a089b28c5af3a40adc1f35e629271a5 (AgentTesla)\r\nf25901052061e433ccb4079f43955d61d9fdd7bc4eac8c0af62813b877ca42b2 (AgentTesla)\r\nf2a8728b5880f11fe7a2d6a0f156a166d5db1b9cb6f9b0e107d2ef6ad40b6db9 (AgentTesla)\r\nf5f7ce73417cab313cba64d821913acf222377a5cffcfd652a43fa7a310ae3a1 (AgentTesla)\r\nf785b68f4777b11ce1789d78d60e373b66c35e9293313598abb91501362815c1 (AgentTesla)\r\nf945a8b0c1515ffd87614c090d8946bef0154c8a68e77fe40f5b1b3a27a404fb (AgentTesla)\r\n1acddda80b85fe275fa1e6706937909c1d18f41fc2138ec07d6fa1404d461d5f (Nanocore)\r\n2e29947d7b512f3e10f1713124083d2da61b556c3a8b89fe7f0d15d79b08486c (Nanocore)\r\n3c094942e47ddfc79c9ffa196ad2537dbce8b97841fb01e1d62fbc803e3317de (Nanocore)\r\n508da5efd01dd70065931d2d0c80dbbccf2728a01961d427fc8d7ac74a60c5f9 (Nanocore)\r\n575cf314d16bad7eed307a575e3657b22204b9c8f809e9afca02db39cc0c333f (Nanocore)\r\n5e5502ec00aea3fcb59bc671fa23ebab7c13cca54fa2e83c86d5023fdcaca3af (Nanocore)\r\n6965af4ea7d344e68c0e6e6d0172e54c8f8b62e02c6b7c9fd85f7c79794cd765 (Nanocore)\r\n91d539af85599fda3fb2fb023866b72d64adc2bb95f6153e655cc844564de02e (Nanocore)\r\n975172a3a55f7be1ae6fcc73908626b6f92f2647d2e9e97421f42eeb6d53d126 (Nanocore)\r\nab88aec38e87890820488a8994521763859160b2026dc5db66476470386edfa0 (Nanocore)\r\nb08066e014b9f51ec0cb6ba2bfc3e2f663b8b526ae6b26e748aaef8d613fe80f (Nanocore)\r\ndd1feae3743c164e7058d0c0372a19a39feb1528ec5b50d27cad6c1deab0a6d6 (Nanocore)\r\nea7e582ffac6169d4fd22a852fab56cc3c61340ff36a1d65299c6b87b8baf71d (Nanocore)\r\nee4f0cca3dd81380897f9eeb961e763368f61a52d7f41d8c341170a75f306069 (Nanocore)\r\n35a3498ef894c29cc11efa20ace1fc28f38566dac2e5e11156413c7d893c12e8 (HawkEye)\r\n7a007425c85f92f8afab0e4fbe013b4a7417b17d68dbcac114b0a1f1d2d0c389 (HawkEye)\r\n815ce26a2608e755bb5d9d029bd9f4f7dffe8fc1ea2105ab3b1fb1d92fc45198 (HawkEye)\r\n8494ce17e1d1e2a8015c78dadd13e22347cfbb7eeb4bc0fa9f91296da09114aa (HawkEye)\r\n84f2f60ff2fe3113033908ec7fa7dd57dfa233f617d9676ebce7f1a997cb6ce8 (HawkEye)\r\n8f57f33a7fa92f0daa82ae57591bd985a282c6fd4065549de2ff791cddd58d73 (HawkEye)\r\n924f7561a9d2edf9478f558941b533080ba8fd33f469ad37d53bc8962382cf24 (HawkEye)\r\na9b11604d8683cb4b46223c39584836a8c35d49e224736a8dd9d6e65aa0bdf49 (HawkEye)\r\ncabae110afa57e30e21cf6d2b77b8be3b5f179f10534e9a18381e90ef61ea976 (HawkEye)\r\nf045c0a222245df33d7ba3a78f55f1aa5b3deea7ede0be470f6ccf1031592492 (HawkEye)\r\nfec1446cc333b702c82c32ee6563191c9c8ecc179c4383788881416fc244f0dc (HawkEye)\r\n358909198842649d86034d0d45bc8e721de3d3b857552d266d4cfeee2ff57312 (Formbook)\r\nbc4de1bbee879571e3b565e36dd07096cb81624b8402e3c8eb279ec8764ab1b6 (Formbook)\r\nc222b07df99688f8ba5c35ce475d970b9fd0597420061d42707b553d00c788aa (Formbook)\r\nce4fa221f57413a46474d033d76021db799096d2f7a64d47bb549717063280d3 (Formbook)\r\n1377f1947afc519f39ee725b556557a6ee53ae512ffcf457552b6d239645341a (Remcos)\r\n1401a2614b82dc1375312ddea0c21113085455d80cf5461f8bd5d8470946be68 (Remcos)\r\n3bd52ab059db40fbeb713b1caf07793c78ac6d825b4b8ba9d2b3fcf54f2d30d2 (Remcos)\r\n519e83f680188918b1bf528c47984ed7447fa2d4acc02f1a68d775b134955da0 (Remcos)\r\neb8662a90fae9047c1636c3bceff2c552924e363251545994f4f61f9e3188836 (Remcos)\r\nf9c6261dcd317a343f3c6fad9a5329cec1c29b8ee754d8548233e20aa4590a95 (Remcos)\r\n2be873726dedb8f3a26d8fb61c513c95354d9a9b47f81934670497fcdbe4e0da (Njrat / Bladabindi)\r\nab1ff8207742af14e27ac9d374ead574feab22c032d0b2b6a3033731fce87808 (Njrat / Bladabindi)\r\n651688fbe0e8dd48630bee11fa1659af2a8558a06fe7c9ecc3f51f8032a19304 (Azorult)\r\n8a407de1e700212f976a48a5add1320ce16a8ff143f947d37c0858af206da20e (Azorult)\r\nc1b45eb4ada3f1f2f07877ecd0ea59802fe8aac774bb41b214712e62c793648a (Fareit)\r\nf2cd14694d8c043e2061c9c3820a760b1488648abf642ad52b856998a84d882c (Fareit)\r\n27387ec53dfd8046f7c4bdcaed8d415b64710b5da5671e4e21f1a94efaddc5a4 (Lokibot)\r\nd8cae304584b879934aa18e2f8e5434b29924ac3782955bf83f9b91e59a07303 (Lokibot)\r\nf767831e5211083b12c553edb8e98eba8cbbe31abb8968cf5f4ac59443635fc7 (Lokibot)\r\n393ad71e5604b74db67d6da6151015e26edbf55f977625c994269941994b85b7 (LimeRAT)\r\n476e9763487384a9bd699cb05a83ffe6d2e85bce3211c9c9e5fc93c14f89fded (LimeRAT)\r\nb65a74a2e9780a5a3c10974f6f5c1c2caa10ab7881e2f5e58b109231c01a4b23 (Phoenix)\r\n014270226811bd61200bf58979c21f3a2a73f0f97e6119bcd45ec885894186e6 (AgentTeslav2)\r\n0e499165632f9158f7a3a43c51708e3dd374d6d303e8ea2c1de2aec7f0862128 (AgentTeslav2)\r\n816977411046f0569a482b704f5595d795816f4dd51a5f094af4ec99a89b03a7 (AgentTeslav2)\r\na0eb0137818ad7c4a63ed7c037fef7a1146729dcac8fa1b48e5a03c34d4e8503 (AgentTeslav2)\r\na61d0b049b1f6c145654281086d884f1b46442d0c09404300df1b55464737a60 (AgentTeslav2)\r\na4ebcec251be27fd43ae50cd5ed0ef126cc26e91bb10d29bb23b2956732c797d (AgentTeslav2)\r\nae07f36938ffa08f12e20e9d73c407b2295bb5e3e7b3f64b46aa54f255a84af1 (AgentTeslav2)\r\nd126ff6b8868fe839dcd29e7cbf2fd1966d49d5ad8320dd086f49969fd9b7b6e (AgentTeslav2)\r\ne6b629c5ca555786431543aac8afdd9f1561af2470be80713be7e98d00b45f72 (AgentTeslav2)\r\n```\nComment: nice thanks",
+  "Title: 1. Update Suricata file extraction to version 2\nBody: 2. Fix compressresults.py to handle byte values in json",
+  "Title: Proper memdump freespace fix for non-ramfs mode.\nBody: \nComment: thanks again, as im using tmpfs i totally forgot",
+  "Title: Fix for behavior module behaving badly.\nBody: \nComment: thanks",
+  "Title: fix - call method syntax error\nBody: ",
+  "Title: Fix mongodb drop table - connect_to_mongo was returning a Database ob\u2026\nBody: \u2026ject - drop_database method requires a MongoClient object",
+  "Title: Ignore innocuous keyerror when disposing db connection\nBody: This will get rid of the ugly error trace\nComment: heh nice trick thanks",
+  "Title: Fix reads_self signature\nBody: ",
+  "Title: Fix for overkill\nBody: \nComment: ups i accidentally removed it, sorry and thanks",
+  "Title: Connections to 1.1.1.1\nBody: For a while now, I've noticed the online CAPE instance always reports connections to 1.1.1.1, regardless of analysis (you can check any recent analysis on https://capesandbox.com/).\r\n\r\nLocally I'm still running the old CAPE, which doesn't have this issue - not sure where it's coming from.\nComment: That bcz we use 1.1.1.1 as dns\n\nEl s\u00e1b., 11 ene. 2020 17:24, Bart <notifications@github.com> escribi\u00f3:\n\n> For a while now, I've noticed the online CAPE instance always reports\n> connections to 1.1.1.1, regardless of analysis (you can check any recent\n> analysis on https://capesandbox.com/).\n>\n> Locally I'm still running the old CAPE, which doesn't have this issue -\n> not sure where it's coming from.\n>\n> \u2014\n> You are receiving this because you are subscribed to this thread.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/issues/16?email_source=notifications&email_token=AAOFH36W7FVQ6OTK2TWW7Z3Q5HXC3A5CNFSM4KFSY4HKYY3PNVWWK3TUL52HS4DFUVEXG43VMWVGG33NNVSW45C7NFSM4IFQVUYA>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AAOFH36IXOP5PW37PT2OIPDQ5HXC3ANCNFSM4KFSY4HA>\n> .\n>\n\nComment: closing as responded :)",
+  "Title: (BUG) api.py typo affect file uploads\nBody: \nComment: nice catch, thanks",
+  "Title: Add various signatures\nBody: I haven't tested these against CAPEv2 since I don't have the capacity to run it yet. Please ignore the PR if this is going to be an issue, and will PR against CAPEv1. Sorry for the commits mess, I inadvertently overwritten an existing signature :) \nComment: the signature should be more then transparent between version, the uniq change is python2 vs 3 syntax, so all fine, thanks :)",
+  "Title: Add Yara malware signatures\nBody: \nComment: Fantastic! Thanks a lot!",
+  "Title: Add SNAKE, edit Clop\nBody: ",
+  "Title: Proper modern clamav support, and a couple of sig fixes.\nBody: \nComment: Thank you WIlliam ",
+  "Title: Make image dedupe hash configurable. In my testing avg hash 'ahash' a\u2026\nBody: \u2026ctually provides the best balance between over/under prune. Also in testing doing a reverse sort of image list provides slightly more complete images. We resort after prune to put them back in the proper order.\nComment: thanks!",
+  "Title: Fix Screenshots to work with Pillow versions newer than 6.1\nBody:  https://github.com/python-pillow/Pillow/issues/4130\nComment: thanks a lot",
+  "Title: Update agent.py\nBody: ",
+  "Title: Add additonal option to redirect outpout to StringIO. This seems to b\u2026\nBody: \u2026e needed to support pythonw at least on 3.8/3.7/3.6 Pass 0 (default disabled) or 1 after port to enable output redirect. https://stackoverflow.com/questions/1218933/can-i-redirect-the-stdout-in-python-into-some-sort-of-string-buffer\nComment: nice to see you William :)\r\ni saw that in upstream cuckoo implemented, but didn't understand the utility of it, im more than happy to merge that, but also could you explain me the utility of this please?\nComment: ah pythonw, got it thanks\nComment: @wmetcalf i have improved it a bit, pushed to repo\r\n\r\n```\r\nparser.add_argument(\"--redirout\", action=\"store_true\", default=False)\r\nargs = parser.parse_args()\r\nif args.redirout:\r\n```",
+  "Title: Config has no attribute 'Routing'\nBody: ## This is opensource and you getting __free__ support so be friendly!\r\n\r\n# Expected Behavior\r\n\r\nOn submitting a new file, Analysis fails to start.  'Config has no attribute 'Routing'\r\n\r\n# Current Behavior\r\n\r\nCuckoo process errors.  Full output below.\r\n\r\n\r\n# Failure Information (for bugs)\r\n\r\n2020-01-05 03:25:42,233 [lib.cuckoo.core.scheduler] ERROR: ESC[31mTask #13: Failure in AnalysisManager.run: 'Config' object has no attribute 'routing'ESC[0m\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 460, in run\r\n    success = self.launch_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 307, in launch_analysis\r\n    self.route_network()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 534, in route_network\r\n    elif self.route == \"internet\" and self.cfg.routing.internet != \"none\":\r\nAttributeError: 'Config' object has no attribute 'routing'\r\n\r\n\r\n###Routing.conf (first few lines)\r\n```\r\n`\r\n[routing]\r\n# Default network routing mode; \"none\", \"internet\", or \"vpn_name\".\r\n# In none mode we don't do any special routing - the VM doesn't have any\r\n# network access (this has been the default actually for quite a while).\r\n# In internet mode by default all the VMs will be routed through the network\r\n# interface configured below (the \"dirty line\").\r\n# And in VPN mode by default the VMs will be routed through the VPN identified\r\n# by the given name of the VPN (as per vpn.conf).\r\n# Note that just like enabling VPN configuration setting this option to\r\n# anything other than \"none\" requires one to run utils/rooter.py as root next\r\n# to the CAPE instance (as it's required for setting up the routing).\r\nroute = internet\r\n\r\n# Network interface that allows a VM to connect to the entire internet, the\r\n# \"dirty line\" so to say. Note that, just like with the VPNs, this will allow\r\n# malicious traffic through your network. So think twice before enabling it.\r\n# (For example, to route all VMs through eth0 by default: \"internet = eth0\").\r\ninternet = ens32\r\n\r\n`\r\n```\r\n## Steps to Reproduce\r\n\r\nPlease provide detailed steps for reproducing the issue.\r\n\r\n1.) Submit file for analysis\r\n2.) Review logs\r\n## Context\r\n\r\nPlease provide any relevant information about your setup. This is important in case the issue is not reproducible except for under certain conditions.\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | 610812d54190f04b910502ba82cd2bd22b820a10\r\n| OS version       | Ubuntu 18.04.3 LTS\r\n\r\n## Failure Logs\r\n\r\n2020-01-05 03:25:42,233 [lib.cuckoo.core.scheduler] ERROR: ESC[31mTask #13: Failure in AnalysisManager.run: 'Config' object has no attribute 'routing'ESC[0m\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 460, in run\r\n    success = self.launch_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 307, in launch_analysis\r\n    self.route_network()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 534, in route_network\r\n    elif self.route == \"internet\" and self.cfg.routing.internet != \"none\":\r\nAttributeError: 'Config' object has no attribute 'routing'\nComment: oh nice catch, weird how i didn't get it before in local, fixing\nComment: should be fixed now, thanks for reporting, and special thansk for markdown escape when posting config, let me know if that was fixed\nComment: I'm on dbad1fca5e17512a84c6403e8ed787a7f9a575ed and still getting the error:\r\n\r\n```\r\nERROR    lib.cuckoo.core.scheduler: Task #14: Failure in AnalysisManager.run: 'Config' object has no attribute 'routing'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 460, in run\r\n    success = self.launch_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 307, in launch_analysis\r\n    self.route_network()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 534, in route_network\r\n    elif self.route == \"internet\" and self.routing_cfg.routing.internet != \"none\":\r\nAttributeError: 'Config' object has no attribute 'routing'\r\n```\r\n\r\n\r\n\r\n\nComment: ok setting your values from config i was able to reproduce the bug but a bit different, working on it\r\n```\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 460, in run\r\n    success = self.launch_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 307, in launch_analysis\r\n    self.route_network()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 534, in route_network\r\n    elif self.route == \"internet\" and self.routing_cfg.routing.internet != \"none\":\r\nAttributeError: 'AnalysisManager' object has no attribute 'routing_cfg'\r\n```\nComment: @benweber2 can you `git pull` and try now? i declared routing config in wrong class so moved it to the top as it uses in both classes\nComment: Still having an issue after 'git pull'.  Here is an extended log output while trying to resubmit a sample:\r\n\r\n```\r\nMessage: 'Task #15: Processing task'\r\nArguments: ()\r\n2020-01-05 22:41:28,725 [lib.cuckoo.core.scheduler] DEBUG: Task #15: Processing task\r\n--- Logging error ---\r\nTraceback (most recent call last):\r\n  File \"/usr/lib/python3.6/logging/handlers.py\", line 72, in emit\r\n    self.doRollover()\r\n  File \"/usr/lib/python3.6/logging/handlers.py\", line 397, in doRollover\r\n    if self.backupCount > 0:\r\nTypeError: '>' not supported between instances of 'NoneType' and 'int'\r\nCall stack:\r\n  File \"/usr/lib/python3.6/threading.py\", line 884, in _bootstrap\r\n    self._bootstrap_inner()\r\n  File \"/usr/lib/python3.6/threading.py\", line 916, in _bootstrap_inner\r\n    self.run()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 460, in run\r\n    success = self.launch_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 241, in launch_analysis\r\n    self.task.id, self.task.category.upper(), convert_to_printable(self.task.target)))\r\nMessage: \"Task #15: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_lg57o2qc/Xy5gI3siaiZz0X'\"\r\nArguments: ()\r\n2020-01-05 22:41:28,745 [lib.cuckoo.core.scheduler] INFO: Task #15: Starting analysis of FILE '/tmp/cuckoo-tmp/upload_lg57o2qc/Xy5gI3siaiZz0X'\r\n--- Logging error ---\r\nTraceback (most recent call last):\r\n  File \"/usr/lib/python3.6/logging/handlers.py\", line 72, in emit\r\n    self.doRollover()\r\n  File \"/usr/lib/python3.6/logging/handlers.py\", line 397, in doRollover\r\n    if self.backupCount > 0:\r\nTypeError: '>' not supported between instances of 'NoneType' and 'int'\r\nCall stack:\r\n  File \"/usr/lib/python3.6/threading.py\", line 884, in _bootstrap\r\n    self._bootstrap_inner()\r\n  File \"/usr/lib/python3.6/threading.py\", line 916, in _bootstrap_inner\r\n    self.run()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 460, in run\r\n    success = self.launch_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 255, in launch_analysis\r\n    if not self.store_file():\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 129, in store_file\r\n    log.info(\"Task #{0}: File already exists at '{1}'\".format(self.task.id, self.binary))\r\nMessage: \"Task #15: File already exists at '/opt/CAPEv2/storage/binaries/bc154f8a0b83d7ce9a4e18929dcde5e16730d044af583feac1c35bae7b78c0f4'\"\r\nArguments: ()\r\n2020-01-05 22:41:28,778 [lib.cuckoo.core.scheduler] INFO: Task #15: File already exists at '/opt/CAPEv2/storage/binaries/bc154f8a0b83d7ce9a4e18929dcde5e16730d044af583feac1c35bae7b78c0f4'\r\n--- Logging error ---\r\nTraceback (most recent call last):\r\n  File \"/usr/lib/python3.6/logging/handlers.py\", line 72, in emit\r\n    self.doRollover()\r\n  File \"/usr/lib/python3.6/logging/handlers.py\", line 397, in doRollover\r\n    if self.backupCount > 0:\r\nTypeError: '>' not supported between instances of 'NoneType' and 'int'\r\nCall stack:\r\n  File \"/usr/lib/python3.6/threading.py\", line 884, in _bootstrap\r\n    self._bootstrap_inner()\r\n  File \"/usr/lib/python3.6/threading.py\", line 916, in _bootstrap_inner\r\n    self.run()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 460, in run\r\n    success = self.launch_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 276, in launch_analysis\r\n    self.acquire_machine()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 183, in acquire_machine\r\n    self.task.id, machine.name, machine.label)\r\nMessage: 'Task #15: acquired machine win7 (label=win7)'\r\nArguments: ()\r\n2020-01-05 22:41:28,817 [lib.cuckoo.core.scheduler] INFO: Task #15: acquired machine win7 (label=win7)\r\n--- Logging error ---\r\nTraceback (most recent call last):\r\n  File \"/usr/lib/python3.6/logging/handlers.py\", line 72, in emit\r\n    self.doRollover()\r\n  File \"/usr/lib/python3.6/logging/handlers.py\", line 397, in doRollover\r\n    if self.backupCount > 0:\r\nTypeError: '>' not supported between instances of 'NoneType' and 'int'\r\nCall stack:\r\n  File \"/usr/lib/python3.6/threading.py\", line 884, in _bootstrap\r\n    self._bootstrap_inner()\r\n  File \"/usr/lib/python3.6/threading.py\", line 916, in _bootstrap_inner\r\n    self.run()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 460, in run\r\n    success = self.launch_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 287, in launch_analysis\r\n    ResultServer().add_task(self.task, self.machine)\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/resultserver.py\", line 454, in add_task\r\n    self.instance.add_task(task.id, machine.ip)\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/resultserver.py\", line 300, in add_task\r\n    log.debug(\"Now tracking machine %s for task #%s\", ipaddr, task_id)\r\nMessage: 'Now tracking machine %s for task #%s'\r\nArguments: ('192.168.122.105', 15)\r\n2020-01-05 22:41:28,912 [root] DEBUG: Now tracking machine 192.168.122.105 for task #15\r\n--- Logging error ---\r\nTraceback (most recent call last):\r\n  File \"/usr/lib/python3.6/logging/handlers.py\", line 72, in emit\r\n    self.doRollover()\r\n  File \"/usr/lib/python3.6/logging/handlers.py\", line 397, in doRollover\r\n    if self.backupCount > 0:\r\nTypeError: '>' not supported between instances of 'NoneType' and 'int'\r\nCall stack:\r\n  File \"/usr/lib/python3.6/threading.py\", line 884, in _bootstrap\r\n    self._bootstrap_inner()\r\n  File \"/usr/lib/python3.6/threading.py\", line 916, in _bootstrap_inner\r\n    self.run()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 460, in run\r\n    success = self.launch_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 304, in launch_analysis\r\n    machinery.start(self.machine.label)\r\n  File \"/opt/CAPEv2/modules/machinery/kvm.py\", line 29, in start\r\n    super(KVM, self).start(label)\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 399, in start\r\n    log.debug(\"Starting machine %s\", label)\r\nMessage: 'Starting machine %s'\r\nArguments: ('win7',)\r\n2020-01-05 22:41:28,939 [lib.cuckoo.common.abstracts] DEBUG: Starting machine win7\r\n--- Logging error ---\r\nTraceback (most recent call last):\r\n  File \"/usr/lib/python3.6/logging/handlers.py\", line 72, in emit\r\n    self.doRollover()\r\n  File \"/usr/lib/python3.6/logging/handlers.py\", line 397, in doRollover\r\n    if self.backupCount > 0:\r\nTypeError: '>' not supported between instances of 'NoneType' and 'int'\r\nCall stack:\r\n  File \"/usr/lib/python3.6/threading.py\", line 884, in _bootstrap\r\n    self._bootstrap_inner()\r\n  File \"/usr/lib/python3.6/threading.py\", line 916, in _bootstrap_inner\r\n    self.run()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 460, in run\r\n    success = self.launch_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 304, in launch_analysis\r\n    machinery.start(self.machine.label)\r\n  File \"/opt/CAPEv2/modules/machinery/kvm.py\", line 29, in start\r\n    super(KVM, self).start(label)\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 401, in start\r\n    if self._status(label) != self.POWEROFF:\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 504, in _status\r\n    log.debug(\"Getting status for %s\", label)\r\nMessage: 'Getting status for %s'\r\nArguments: ('win7',)\r\n2020-01-05 22:41:28,940 [lib.cuckoo.common.abstracts] DEBUG: Getting status for win7\r\n--- Logging error ---\r\nTraceback (most recent call last):\r\n  File \"/usr/lib/python3.6/logging/handlers.py\", line 72, in emit\r\n    self.doRollover()\r\n  File \"/usr/lib/python3.6/logging/handlers.py\", line 397, in doRollover\r\n    if self.backupCount > 0:\r\nTypeError: '>' not supported between instances of 'NoneType' and 'int'\r\nCall stack:\r\n  File \"/usr/lib/python3.6/threading.py\", line 884, in _bootstrap\r\n    self._bootstrap_inner()\r\n  File \"/usr/lib/python3.6/threading.py\", line 916, in _bootstrap_inner\r\n    self.run()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 460, in run\r\n    success = self.launch_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 304, in launch_analysis\r\n    machinery.start(self.machine.label)\r\n  File \"/opt/CAPEv2/modules/machinery/kvm.py\", line 29, in start\r\n    super(KVM, self).start(label)\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 416, in start\r\n    \"{1}\".format(vm_info.snapshot, label))\r\nMessage: 'Using snapshot 1577854212 for virtual machine win7'\r\nArguments: ()\r\n2020-01-05 22:41:28,976 [lib.cuckoo.common.abstracts] DEBUG: Using snapshot 1577854212 for virtual machine win7\r\n--- Logging error ---\r\nTraceback (most recent call last):\r\n  File \"/usr/lib/python3.6/logging/handlers.py\", line 72, in emit\r\n    self.doRollover()\r\n  File \"/usr/lib/python3.6/logging/handlers.py\", line 397, in doRollover\r\n    if self.backupCount > 0:\r\nTypeError: '>' not supported between instances of 'NoneType' and 'int'\r\nCall stack:\r\n  File \"/usr/lib/python3.6/threading.py\", line 884, in _bootstrap\r\n    self._bootstrap_inner()\r\n  File \"/usr/lib/python3.6/threading.py\", line 916, in _bootstrap_inner\r\n    self.run()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 460, in run\r\n    success = self.launch_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 304, in launch_analysis\r\n    machinery.start(self.machine.label)\r\n  File \"/opt/CAPEv2/modules/machinery/kvm.py\", line 29, in start\r\n    super(KVM, self).start(label)\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 444, in start\r\n    self._wait_status(label, self.RUNNING)\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 333, in _wait_status\r\n    current = self._status(label)\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 504, in _status\r\n    log.debug(\"Getting status for %s\", label)\r\nMessage: 'Getting status for %s'\r\nArguments: ('win7',)\r\n2020-01-05 22:41:37,541 [lib.cuckoo.common.abstracts] DEBUG: Getting status for win7\r\n--- Logging error ---\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 307, in launch_analysis\r\n    self.route_network()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 534, in route_network\r\n    elif self.route == \"internet\" and routing_cfg.routing.internet != \"none\":\r\nAttributeError: 'Config' object has no attribute 'routing'\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"/usr/lib/python3.6/logging/handlers.py\", line 72, in emit\r\n    self.doRollover()\r\n  File \"/usr/lib/python3.6/logging/handlers.py\", line 397, in doRollover\r\n    if self.backupCount > 0:\r\nTypeError: '>' not supported between instances of 'NoneType' and 'int'\r\nCall stack:\r\n  File \"/usr/lib/python3.6/threading.py\", line 884, in _bootstrap\r\n    self._bootstrap_inner()\r\n  File \"/usr/lib/python3.6/threading.py\", line 916, in _bootstrap_inner\r\n    self.run()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 460, in run\r\n    success = self.launch_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 358, in launch_analysis\r\n    machinery.stop(self.machine.label)\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 451, in stop\r\n    log.debug(\"Stopping machine %s\", label)\r\nMessage: 'Stopping machine %s'\r\nArguments: ('win7',)\r\n2020-01-05 22:41:37,570 [lib.cuckoo.common.abstracts] DEBUG: Stopping machine win7\r\n--- Logging error ---\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 307, in launch_analysis\r\n    self.route_network()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 534, in route_network\r\n    elif self.route == \"internet\" and routing_cfg.routing.internet != \"none\":\r\nAttributeError: 'Config' object has no attribute 'routing'\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"/usr/lib/python3.6/logging/handlers.py\", line 72, in emit\r\n    self.doRollover()\r\n  File \"/usr/lib/python3.6/logging/handlers.py\", line 397, in doRollover\r\n    if self.backupCount > 0:\r\nTypeError: '>' not supported between instances of 'NoneType' and 'int'\r\nCall stack:\r\n  File \"/usr/lib/python3.6/threading.py\", line 884, in _bootstrap\r\n    self._bootstrap_inner()\r\n  File \"/usr/lib/python3.6/threading.py\", line 916, in _bootstrap_inner\r\n    self.run()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 460, in run\r\n    success = self.launch_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 358, in launch_analysis\r\n    machinery.stop(self.machine.label)\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 453, in stop\r\n    if self._status(label) == self.POWEROFF:\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 504, in _status\r\n    log.debug(\"Getting status for %s\", label)\r\nMessage: 'Getting status for %s'\r\nArguments: ('win7',)\r\n2020-01-05 22:41:37,571 [lib.cuckoo.common.abstracts] DEBUG: Getting status for win7\r\n--- Logging error ---\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 307, in launch_analysis\r\n    self.route_network()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 534, in route_network\r\n    elif self.route == \"internet\" and routing_cfg.routing.internet != \"none\":\r\nAttributeError: 'Config' object has no attribute 'routing'\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"/usr/lib/python3.6/logging/handlers.py\", line 72, in emit\r\n    self.doRollover()\r\n  File \"/usr/lib/python3.6/logging/handlers.py\", line 397, in doRollover\r\n    if self.backupCount > 0:\r\nTypeError: '>' not supported between instances of 'NoneType' and 'int'\r\nCall stack:\r\n  File \"/usr/lib/python3.6/threading.py\", line 884, in _bootstrap\r\n    self._bootstrap_inner()\r\n  File \"/usr/lib/python3.6/threading.py\", line 916, in _bootstrap_inner\r\n    self.run()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 460, in run\r\n    success = self.launch_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 358, in launch_analysis\r\n    machinery.stop(self.machine.label)\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 471, in stop\r\n    self._wait_status(label, self.POWEROFF)\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 333, in _wait_status\r\n    current = self._status(label)\r\n  File \"/opt/CAPEv2/lib/cuckoo/common/abstracts.py\", line 504, in _status\r\n    log.debug(\"Getting status for %s\", label)\r\nMessage: 'Getting status for %s'\r\nArguments: ('win7',)\r\n2020-01-05 22:41:37,999 [lib.cuckoo.common.abstracts] DEBUG: Getting status for win7\r\n--- Logging error ---\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 307, in launch_analysis\r\n    self.route_network()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 534, in route_network\r\n    elif self.route == \"internet\" and routing_cfg.routing.internet != \"none\":\r\nAttributeError: 'Config' object has no attribute 'routing'\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"/usr/lib/python3.6/logging/handlers.py\", line 72, in emit\r\n    self.doRollover()\r\n  File \"/usr/lib/python3.6/logging/handlers.py\", line 397, in doRollover\r\n    if self.backupCount > 0:\r\nTypeError: '>' not supported between instances of 'NoneType' and 'int'\r\nCall stack:\r\n  File \"/usr/lib/python3.6/threading.py\", line 884, in _bootstrap\r\n    self._bootstrap_inner()\r\n  File \"/usr/lib/python3.6/threading.py\", line 916, in _bootstrap_inner\r\n    self.run()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 460, in run\r\n    success = self.launch_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 371, in launch_analysis\r\n    ResultServer().del_task(self.task, self.machine)\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/resultserver.py\", line 458, in del_task\r\n    self.instance.del_task(task.id, machine.ip)\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/resultserver.py\", line 316, in del_task\r\n    ipaddr, task_id\r\nMessage: 'Stopped tracking machine %s for task #%s'\r\nArguments: ('192.168.122.105', 15)\r\n2020-01-05 22:41:38,047 [root] DEBUG: Stopped tracking machine 192.168.122.105 for task #15\r\n--- Logging error ---\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 460, in run\r\n    success = self.launch_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 307, in launch_analysis\r\n    self.route_network()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 534, in route_network\r\n    elif self.route == \"internet\" and routing_cfg.routing.internet != \"none\":\r\nAttributeError: 'Config' object has no attribute 'routing'\r\n\r\nDuring handling of the above exception, another exception occurred:\r\n\r\nTraceback (most recent call last):\r\n  File \"/usr/lib/python3.6/logging/handlers.py\", line 72, in emit\r\n    self.doRollover()\r\n  File \"/usr/lib/python3.6/logging/handlers.py\", line 397, in doRollover\r\n    if self.backupCount > 0:\r\nTypeError: '>' not supported between instances of 'NoneType' and 'int'\r\nCall stack:\r\n  File \"/usr/lib/python3.6/threading.py\", line 884, in _bootstrap\r\n    self._bootstrap_inner()\r\n  File \"/usr/lib/python3.6/threading.py\", line 916, in _bootstrap_inner\r\n    self.run()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 506, in run\r\n    log.exception(\"Task #{0}: Failure in AnalysisManager.run: {1}\".format(self.task.id, e))\r\nMessage: \"Task #15: Failure in AnalysisManager.run: 'Config' object has no attribute 'routing'\"\r\nArguments: ()\r\n2020-01-05 22:41:38,065 [lib.cuckoo.core.scheduler] ERROR: Task #15: Failure in AnalysisManager.run: 'Config' object has no attribute 'routing'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 460, in run\r\n    success = self.launch_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 307, in launch_analysis\r\n    self.route_network()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 534, in route_network\r\n    elif self.route == \"internet\" and routing_cfg.routing.internet != \"none\":\r\nAttributeError: 'Config' object has no attribute 'routing'\r\nERROR    lib.cuckoo.core.scheduler: Task #15: Failure in AnalysisManager.run: 'Config' object has no attribute 'routing'\r\nTraceback (most recent call last):\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 460, in run\r\n    success = self.launch_analysis()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 307, in launch_analysis\r\n    self.route_network()\r\n  File \"/opt/CAPEv2/lib/cuckoo/core/scheduler.py\", line 534, in route_network\r\n    elif self.route == \"internet\" and routing_cfg.routing.internet != \"none\":\r\nAttributeError: 'Config' object has no attribute 'routing'\r\n```\r\nOutput of git log:\r\n\r\n```\r\nben@capev2:/opt/CAPEv2$ git log | head -n1\r\ncommit 955daa62c12bb8b05503edd5f44f5825c7a54637\r\n\r\n```\nComment: hm, i will need your help here, as i can't reproduce it, i just put breakpoint and i can see it just fine\r\n```\r\n>>> routing_cfg.routing.internet\r\n'eno1'\r\n```\r\n\r\nso what i need from you if you can do this:\r\ncan you edit `CAPEv2/lib/cuckoo/core/scheduler.py` in line 526 __before__\r\n```if self.route in (\"none\", \"None\", \"drop\"):```\r\n\r\nput `import code;code.interact(local=dict(locals(), **globals()))`\r\nthis will return you python console, and there just type this few commands\r\n```\r\ndir(routing_cfg)\r\nrouting_cfg\r\nrouting_cfg.routing.internet\r\n```\nComment: if you want i can push that to repo so you will just need to check that in logging\nComment: Output:\r\n```\r\n>>> dir(routing_cfg)\r\n['__class__', '__delattr__', '__dict__', '__dir__', '__doc__', '__eq__', '__format__', '__ge__', '__getattribute__', '__gt__', '__hash__', '__init__', '__init_subclass__', '__le__', '__lt__', '__module__', '__ne__', '__new__', '__reduce__', '__reduce_ex__', '__repr__', '__setattr__', '__sizeof__', '__str__', '__subclasshook__', '__weakref__', 'fullconfig', 'get', 'get_config', 'inetsim', 'routing', 'socks5', 'socks_ch', 'tor', 'vpn', 'vpn0']\r\n>>> routing_cfg\r\n<lib.cuckoo.common.config.Config object at 0x7f39f31b26d8>\r\n>>> routing_cfg.routing.internet\r\n'ens32'\r\n```\r\nI think this was an issue on my end.  Restarting the process to do make these edits seems to have fixed it.\nComment: ah yes, you need to restart failing service to load the update, yes looks like solved, now try to remove that import and try again\nComment: That fixed it.  Thanks for the continued work!\nComment: thanks for reporting bugs to make it better ",
+  "Title: File Resubmission error 'bytes-like object is required, not str'\nBody: # Expected Behavior\r\nResubmitting a file from an analysis page would restart an analysis\r\n\r\n# Current Behavior\r\nAfter selecting 'Resubmit Sample' on the analysis page and Selecting 'Analyze' on the Submission page, I receive a django traceback error\r\n\r\n# Failure Information (for bugs)\r\n\r\nLog in web.err.log:\r\n\r\n[04/Jan/2020 15:13:21] \"GET /submit/resubmit/bc154f8a0b83d7ce9a4e18929dcde5e16730d044af583feac1c35bae7b78c0f4/ HTTP/1.0\" 200 39487\r\nInternal Server Error: /submit/resubmit/bc154f8a0b83d7ce9a4e18929dcde5e16730d044af583feac1c35bae7b78c0f4/\r\nTraceback (most recent call last):\r\n  File \"/usr/local/lib/python3.6/dist-packages/django/core/handlers/exception.py\", line 34, in inner\r\n    response = get_response(request)\r\n  File \"/usr/local/lib/python3.6/dist-packages/django/core/handlers/base.py\", line 115, in _get_response\r\n    response = self.process_exception_by_middleware(e, request)\r\n  File \"/usr/local/lib/python3.6/dist-packages/django/core/handlers/base.py\", line 113, in _get_response\r\n    response = wrapped_callback(request, *callback_args, **callback_kwargs)\r\n  File \"/opt/CAPEv2/web/submission/views.py\", line 253, in index\r\n    clock, custom, memory, enforce_timeout, referrer, tags, orig_options, task_machines, static)\r\n  File \"/opt/CAPEv2/web/../lib/cuckoo/common/web_utils.py\", line 191, in download_file\r\n    orig_options, timeout, enforce_timeout = recon(filename, orig_options, timeout, enforce_timeout)\r\n  File \"/opt/CAPEv2/web/../lib/cuckoo/common/web_utils.py\", line 113, in recon\r\n    if \"name\" in filename:\r\nTypeError: a bytes-like object is required, not 'str'\r\n[04/Jan/2020 15:13:24] \"POST /submit/resubmit/bc154f8a0b83d7ce9a4e18929dcde5e16730d044af583feac1c35bae7b78c0f4/ HTTP/1.0\" 500 95566\r\n\r\n\r\n## Steps to Reproduce\r\n\r\nStep 1: Submit a file for analysis.\r\nStep 2: After analysis is complete, Select 'Resubmit Sample' on the analysis page.\r\nStep 3: On the Submission page, select 'Analyze'\r\nStep 4: Receive error\r\n\r\n## Context\r\n\r\n| Question         | Answer\r\n|------------------|--------------------\r\n| Git commit       | 29108496869efeef9385b57f008cf4779083f1a8\r\n| OS version       | Ubuntu 18.04.3 LTS\r\n\r\n\nComment: thanks, weird i though that was fixed, i will check that later\nComment: No problem!  Let me know if there is anything else I can provide.\nComment: fixed, somehow i removed the fix from repo, can you test it again please?\nComment: Confirmed fixed.  Thanks for the quick turn around!\r\n\r\nLove the project!\nComment: you are welcome, let us know if you find more, or have some suggestions/feature reqs ",
+  "Title: Add submission of vhd files\nBody: test sample \r\n\r\n7075e9c8713483fc0613863f6cb27089\r\n\nComment: nice, this requires `guestfs-python` no?\nComment: i think this would be nice to move to my sflock repo so we can use it outside of cape also no?\nComment: i can do that for sflock\nComment: Yes python-guestfs is required.\nComment: I didn't add it to sflock because of the guestfs requirement. Just added to decrpyt.py for simplicity.\nComment: Cool if you want to add to your sflock repo though.\nComment: well it easy to handle with try except if user have it installed, i will integrate that, to make cape more cleaner and im using sflock in another project so it will be more useful, will do this this days, thanks a lot for PR\nComment: i will need to test it, but prototype is already done https://github.com/doomedraven/sflock/commit/c8bbf0fd11fff9818ba9a1b5e14864fc89bd15e6\nComment: You should also add .vhdx in list of extensions.\n\nOn Fri, Jan 3, 2020, 3:32 PM doomedraven <notifications@github.com> wrote:\n\n> i will need to test it, but prototype is already done doomedraven/sflock@\n> c8bbf0f\n> <https://github.com/doomedraven/sflock/commit/c8bbf0fd11fff9818ba9a1b5e14864fc89bd15e6>\n>\n> \u2014\n> You are receiving this because you authored the thread.\n> Reply to this email directly, view it on GitHub\n> <https://github.com/kevoreilly/CAPEv2/pull/4?email_source=notifications&email_token=AB3X3YDUFVVIV6CA5JV425DQ36OEJA5CNFSM4KCPJM22YY3PNVWWK3TUL52HS4DFVREXG43VMVBW63LNMVXHJKTDN5WW2ZLOORPWSZGOEICASXI#issuecomment-570689885>,\n> or unsubscribe\n> <https://github.com/notifications/unsubscribe-auth/AB3X3YDQIEWVNG27PBFMNL3Q36OEJANCNFSM4KCPJM2Q>\n> .\n>\n\nComment: thansk, will add it\nComment: @enzok can you please test it with https://github.com/doomedraven/sflock?\nComment: btw @enzok 7zip works with this one just fine so im gonna change sflock once again to handle that with 7zip instead of extra deps\nComment: done, it now without dependencies and works with 7z :), so please update sflock, im closing the PR\r\n\r\n```\r\n>>> pp(q.children[0].to_dict())\r\n{'children': [],\r\n 'duplicate': False,\r\n 'error': None,\r\n 'extrpath': ['FedEx pending delivery for you.exe'],\r\n 'filename': 'FedEx pending delivery for you.exe',\r\n 'filepath': None,\r\n 'finger': {'magic': 'PE32 executable (GUI) Intel 80386, for MS Windows',\r\n            'magic_human': 'PE32 executable (GUI) Intel 80386 (for MS Windows)',\r\n            'mime': 'application/x-dosexec',\r\n            'mime_human': 'dosexec'},\r\n 'package': 'exe',\r\n 'parentdirs': [],\r\n 'password': None,\r\n 'platform': 'windows',\r\n 'preview': True,\r\n 'relaname': 'FedEx pending delivery for you.exe',\r\n 'relapath': 'FedEx pending delivery for you.exe',\r\n 'selected': False,\r\n 'sha256': 'f500df00ac0bac4da7df838c6bbc3a5ce330cfaa26665638701ef1412570afaf',\r\n 'size': 1520128L,\r\n 'type': 'file'}\r\n```",
+  "Title: Transfer open and relevant issues from other repo\nBody: Just for some improvements etc. that have been suggested in the past, it'd be useful to port them here - but only those that are open and still relevant - seems the ability to do that in Github exists:\r\nhttps://help.github.com/en/github/managing-your-work-on-github/transferring-an-issue-to-another-repository\r\n\r\nOf course, this is low priority, just think it'd be useful to keep some of them. Happy New Year! :smiley:  \nComment: what of them are relevant ? win10 support yes, trickbot meh, ie meh xD\nComment: Haha, good point!\r\n\r\nI think these are relevant:\r\n* [Windows 10](https://github.com/ctxis/CAPE/issues/64)\r\n* [IE 11 crashes](https://github.com/ctxis/CAPE/issues/95)\r\n* [Allow easy copy of binGraph diagrams from the webgui](https://github.com/ctxis/CAPE/issues/201)\r\n* [Execute all exported functions](https://github.com/ctxis/CAPE/issues/366)\r\n\r\nThese should probably be re-tested now that we have CAPEv2:\r\n* [High severity signatures firing during benign URL analysis in IE 7](https://github.com/ctxis/CAPE/issues/252)\r\n* [VM CPU usage at 100% when using ie URL analysis package](https://github.com/ctxis/CAPE/issues/333)\r\n* [Trickbot analysis fails](https://github.com/ctxis/CAPE/issues/384)\r\n\r\ncc @seanthegeek for those ^\r\n\r\nThese seem done:\r\n* [Dump binary registry data to file](https://github.com/ctxis/CAPE/issues/164)\r\n[Monitoring DLL Running in Another process\r\n](https://github.com/ctxis/CAPE/issues/168)\r\n* [Unable to connect to MongoDB: Unknown option username | ConfigurationError: Unknown option username](https://github.com/ctxis/CAPE/issues/370)\r\n* [File not detected as being in VT](https://github.com/ctxis/CAPE/issues/467)\r\n\r\nCould also be worth having a look at @johnpeng47's PR - I like the idea personally:\r\n[Enhanced API call filtering on web interface #234\r\n](https://github.com/ctxis/CAPE/pull/234)\nComment: this is nice summary, the problem is next \r\n\r\n`High severity signatures firing during benign URL analysis in IE 7` <- that is normal browser does that check, is to be expected, so if you have solution we are welcome to hear that, but we won't spend time on that to somehow \"whitelist\" and that might break real threat\r\n\r\n`Trickbot analysis fails` <- more than solved ;) \r\n\r\n`Allow easy copy of binGraph diagrams from the webgui` <- i was need to readapt bingraph and i don't see a decent/pretty way to put button there to download file so meh\r\n\r\n`Unable to connect to MongoDB: Unknown option username | ConfigurationError: Unknown option username` <- was fixed a lot of time ago\r\n\r\n`File not detected as being in VT` <- normally happens due to apikey limitation\r\n\r\nlatest one, author just remove code and left a package, his code is here https://github.com/ctxis/CAPE/commit/65ec6d21f931ad7b61ae45e25bec2d758283facb\r\n\r\n@kevoreilly  maybe time to close some of them, see my comments ?\nComment: `High severity signatures firing during benign URL analysis in IE 7`\r\nAgreed with your comment, better to have a bit more noise than the chance to miss stuff.\r\n\r\nThe others, thanks - glad to hear it!\nComment: Sweet! I'll get to testing sometime this weekend.\nComment: i spoke with Kevin, he wants the button to download graphs so i will check if i can quickly add it tomorrow and put button in some decent way\nComment: works for you guys?\r\n\r\n<img width=\"1264\" alt=\"Captura de pantalla 2019-12-31 a las 12 39 31\" src=\"https://user-images.githubusercontent.com/1856495/71620514-aa5f9380-2bca-11ea-875e-1fa7f0a0fa4e.png\">\r\n\nComment: > works for you guys?\r\n> \r\n> <img alt=\"Captura de pantalla 2019-12-31 a las 12 39 31\" width=\"1264\" src=\"https://user-images.githubusercontent.com/1856495/71620514-aa5f9380-2bca-11ea-875e-1fa7f0a0fa4e.png\">\r\n\r\nLooks great, thank you! :+1: \nComment: i have integrated extended search/filtering from @JohnPeng47, thanks\r\n\r\n<img width=\"1351\" alt=\"Captura de pantalla 2020-01-12 a las 12 31 43\" src=\"https://user-images.githubusercontent.com/1856495/72218119-a8d18c00-3537-11ea-925a-996c6d1d8311.png\">\r\n\r\n\r\n\r\n<img width=\"1326\" alt=\"Captura de pantalla 2020-01-12 a las 12 31 50\" src=\"https://user-images.githubusercontent.com/1856495/72218120-a8d18c00-3537-11ea-8fad-0839c420b5e7.png\">\r\n\nComment: Fixed the TrickBot parser - another issue bites the dust\nComment: I noticed URL/web page analysis is missing. Does that still need to be ported?\nComment: isn't missed, we disabled that due to not full IE 11 support\nComment: Think this one can be closed, only one left is https://github.com/ctxis/CAPE/issues/366 to be able to execute all imported functions, should we close this off and open a new issue perhaps? cc @kevoreilly \nComment: yep, would be better",
+  "Title: Add description\nBody: Could a description for the repo be added? E.g. same like before but changed URL:\r\n\r\n> Malware Configuration And Payload Extraction https://capesandbox.com\r\n\r\nNot super-important, but would be nice to add. Thank you!\nComment: i was looking to do that but i don't have rights, @kevoreilly can you add this?\nComment: Done - thanks for the reminder.",
+  "Title: [chg] avoid dealing with encoding and provide backwards compatibility\nBody: While running CAPEv2 with virtualbox machinery, the system enters in a loop state. It seems no match is found for the detected VM state when checked against the predefined set (e.g. POWEROFF, ABORTED, etc.); `setting universal_newlines=True` returns output as text instead of binary and it does the trick.\nComment: amazing, thanks a lot, as we use only kvm, is the most tested hypervisor, so we appreciate a lot your collaboration, and sorry for delay in merge\nComment: No stress! Keep going with the great job!"
+]
\ No newline at end of file
diff --git a/KnowledgeBaseBot/auto_answer.yml b/KnowledgeBaseBot/auto_answer.yml
new file mode 100644
index 00000000000..21223dfb5e4
--- /dev/null
+++ b/KnowledgeBaseBot/auto_answer.yml
@@ -0,0 +1,35 @@
+name: Auto Answer Bot (using uv run)
+
+on:
+  issues:
+    types: [opened]
+
+jobs:
+  answer:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout repository code
+        uses: actions/checkout@v4
+
+      - name: Set up Python with caching
+        uses: actions/setup-python@v5
+        with:
+          python-version: '3.10'
+          cache: 'pip'
+
+      - name: Install uv
+        uses: astral-sh/setup-uv@v6
+        with:
+          enable-cache: true
+
+      - name: Install the project
+        run: uv run pip install -r requirements.txt
+
+      - name: Run the answer bot with uv run
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+          GEMINI_API_KEY: ${{ secrets.GEMINI_API_KEY }}
+          ISSUE_NUMBER: ${{ github.event.issue.number }}
+          REPO_NAME: ${{ github.repository }}
+        # This single step installs dependencies (if needed) and runs the script
+        run: cd KnowledgeBaseBot && uv run python auto_answer_bot.py
diff --git a/KnowledgeBaseBot/auto_answer_bot.py b/KnowledgeBaseBot/auto_answer_bot.py
new file mode 100644
index 00000000000..77624297534
--- /dev/null
+++ b/KnowledgeBaseBot/auto_answer_bot.py
@@ -0,0 +1,118 @@
+import os
+import json
+import faiss
+from github import Github
+from sentence_transformers import SentenceTransformer
+import google.generativeai as genai
+
+# --- Configuration ---
+GITHUB_TOKEN = os.getenv('GITHUB_TOKEN')
+REPO_NAME = os.getenv('REPO_NAME')
+try:
+    ISSUE_NUMBER = int(os.getenv('ISSUE_NUMBER'))
+except (TypeError, ValueError):
+    print("Error: Invalid or missing ISSUE_NUMBER environment variable. Exiting.")
+    exit(1)
+MODEL_NAME = 'all-MiniLM-L6-v2'
+K_NEAREST_NEIGHBORS = 5 # Number of similar items to retrieve
+GEMINI_API_KEY = os.getenv('GEMINI_API_KEY')
+if not GEMINI_API_KEY:
+    exit("Missed GEMINI api key")
+genai.configure(api_key=GEMINI_API_KEY)
+
+# --- Initialization ---
+g = Github(GITHUB_TOKEN)
+repo = g.get_repo(REPO_NAME)
+issue = repo.get_issue(number=ISSUE_NUMBER)
+llm_model = SentenceTransformer(MODEL_NAME)
+
+# --- Load the Unified Knowledge Base ---
+index = faiss.read_index("unified_index.faiss")
+with open("metadata.json", "rb") as f:
+    metadata = json.load(f)
+with open("all_texts.json", "rb") as f:
+    all_texts = json.load(f)
+
+# --- Process the New Issue ---
+new_issue_text = f"Title: {issue.title}\nBody: {issue.body}"
+new_issue_embedding = llm_model.encode([new_issue_text]).astype('float32')
+
+# --- Semantic Search ---
+distances, indices = index.search(new_issue_embedding, K_NEAREST_NEIGHBORS)
+context_pieces = []
+
+for i in indices[0]:
+    source_metadata = metadata[i]
+    source_text = all_texts[i]
+
+    if source_metadata['source'] == 'documentation':
+        context_pieces.append(f"--- Context from Documentation (file: {source_metadata['file']}) ---\n{source_text}")
+    elif source_metadata['source'] == 'issue':
+        context_pieces.append(f"--- Context from a Similar Issue ({source_metadata['url']}) ---\n{source_text}")
+
+context = "\n\n".join(context_pieces)
+
+# --- Generate Answer with LLM (Improved Prompt) ---
+prompt = f"""
+You are an expert GitHub Triage Assistant for an open-source project. Your primary goal is to ensure every issue is actionable for the developers. Your secondary goal is to answer questions using the provided context. Follow these steps in order:
+
+**Step 1: Triage the User's Issue Quality**
+First, analyze the "New Issue" content. Does it contain enough detail to be actionable?
+- **GOOD ISSUE:** It has a clear description, steps to reproduce, error messages, or a specific question.
+- **POOR ISSUE:** It's a short, vague question (e.g., "it doesn't work"), it's missing crucial details, or the user has deleted the issue template.
+
+**Step 2: Take Action Based on Triage**
+
+<if_issue_is_poor>
+- Gently inform the user that more information is needed for the community to help.
+- Explain *why* details are important (e.g., "to understand the context and reproduce the problem").
+- Provide a clear, actionable list of what's missing. Use the official issue template as a guide (e.g., "Please provide steps to reproduce, the version you are using, and any error logs.").
+- Politely remind them that this is a community-supported open-source project and that clear, detailed reports are the best way to get helpful and fast responses from volunteers.
+- **Do NOT attempt to answer the question.** Your only goal is to improve the quality of the issue report.
+</if_issue_is_poor>
+
+<if_issue_is_good>
+- Acknowledge their well-detailed report.
+- Now, analyze the "Relevant Context" provided (from documentation and past issues).
+- Generate a clear and helpful response based **strictly** on this context.
+- If the documentation provides an answer, summarize it and cite the source file.
+- If a past issue offers a solution, explain it and provide the URL to that issue.
+- If the context doesn't seem to fully resolve their detailed question, state that and mention a maintainer will look into it.
+- Conclude by thanking them for their contribution to the project.
+</if_issue_is_good>
+**New Issue:**
+{new_issue_text}
+
+**Relevant Context (from Documentation and Past Issues):**
+{context}
+
+**Suggested Answer (include links to sources if available):**
+"""
+"""
+response = openai.chat.completions.create(
+  model="gpt-4", # Or "gpt-3.5-turbo", or any other model you prefer
+  messages=[
+    {"role": "system", "content": "You are an expert GitHub support assistant. Your mission is to answer user issues based solely on official documentation and the history of resolved issues."},
+    {"role": "user", "content": prompt}
+  ]
+)
+"""
+# The system prompt from OpenAI is handled by system_instruction in Gemini
+system_instruction = "You are an expert GitHub support assistant. Your mission is to answer user issues based solely on official documentation and the history of resolved issues."
+
+# https://ai.google.dev/gemini-api/docs/models
+# Create the model with the system instruction
+generative_model = genai.GenerativeModel(
+    model_name="gemini-2.5-flash",
+    system_instruction=system_instruction
+)
+
+response = generative_model.generate_content(prompt)
+# --- Post the Comment ---
+final_comment = f"Hello @{issue.user.login}, thanks for reaching out.\n\n"
+final_comment += response.text
+final_comment += "\n\n---\n*This is an automated message generated from our documentation and issue history. If this doesn't solve your problem, someone will try to help you soon. Ensure that you checked other issues for the same issue!.* 🤖"
+
+issue.create_comment(final_comment)
+
+print(f"Enriched answer posted to issue #{ISSUE_NUMBER}")
diff --git a/KnowledgeBaseBot/build_knowledge_base.py b/KnowledgeBaseBot/build_knowledge_base.py
new file mode 100644
index 00000000000..39d5e656b8c
--- /dev/null
+++ b/KnowledgeBaseBot/build_knowledge_base.py
@@ -0,0 +1,130 @@
+import os
+import json
+import faiss
+import numpy as np
+from github import Auth
+from github import Github
+from sentence_transformers import SentenceTransformer
+from langchain.text_splitter import RecursiveCharacterTextSplitter
+from langchain_community.document_loaders import DirectoryLoader
+from datetime import datetime, timezone
+
+# --- Configuration ---
+GITHUB_TOKEN = os.getenv('GITHUB_TOKEN')
+# GITHUB_TOKEN =
+REPO_NAME = "kevoreilly/CAPEv2"
+DOCS_PATH = "../docs" # Path to the folder with your documentation files (e.g., .md)
+MODEL_NAME = 'all-MiniLM-L6-v2' # An efficient embedding model
+
+# --- File Paths for State ---
+INDEX_FILE = "unified_index.faiss"
+METADATA_FILE = "metadata.json"
+TEXTS_FILE = "all_texts.json"
+STATE_FILE = "kb_state.json"
+
+# init pandoc
+# from pypandoc.pandoc_download import download_pandoc
+# download_pandoc()
+
+# --- Initialization ---
+auth = Auth.Token(GITHUB_TOKEN)
+g = Github(auth=auth)
+# auth=github.Auth.Token(...)
+repo = g.get_repo(REPO_NAME)
+model = SentenceTransformer(MODEL_NAME)
+
+# --- Load Existing Knowledge Base or Initialize a New One ---
+if os.path.exists(INDEX_FILE):
+    print("Loading existing knowledge base...")
+    index = faiss.read_index(INDEX_FILE)
+    with open(METADATA_FILE, "r") as f:
+        metadata = json.load(f)
+    with open(TEXTS_FILE, "r") as f:
+        all_texts = json.load(f)
+    with open(STATE_FILE, "r") as f:
+        last_update_time = datetime.fromisoformat(json.load(f))
+    print(f"Knowledge base loaded. Last update was at: {last_update_time}")
+    new_issues = repo.get_issues(state='all', since=last_update_time, sort='created', direction='asc')
+else:
+    print("No existing knowledge base found. Creating a new one.")
+    index = None
+    metadata = []
+    all_texts = []
+    # Set a very old date to fetch all issues for the first time
+    last_update_time = datetime(1970, 1, 1, tzinfo=timezone.utc)
+    new_issues = repo.get_issues(state='all', sort='updated', direction='asc')
+    # Initial processing of documentation (only on first build)
+    print("Processing documentation for the first time...")
+    loader = DirectoryLoader(DOCS_PATH, glob="**/*.rst")
+    docs = loader.load()
+    text_splitter = RecursiveCharacterTextSplitter(chunk_size=1000, chunk_overlap=100)
+    doc_chunks = text_splitter.split_documents(docs)
+    for chunk in doc_chunks:
+        all_texts.append(chunk.page_content)
+        metadata.append({'source': 'documentation', 'file': chunk.metadata.get('source', 'N/A')})
+
+# --- Process GitHub Issues ---
+# --- Fetch New Issues from GitHub ---
+print(f"Fetching issues updated since {last_update_time.isoformat()}...")
+# The 'since' parameter fetches issues updated on or after the given time
+# be aware since might not work
+
+new_issue_texts = []
+new_issue_metadata = []
+latest_issue_time = last_update_time
+existing_issue_urls = {m['url'] for m in metadata if m.get('source') == 'issue'}
+
+for issue in new_issues:
+    # We check the updated_at time to ensure we save the most recent timestamp
+    # ToDo this doesn't work properly
+    #if issue.updated_at.replace(tzinfo=timezone.utc) > latest_issue_time:
+    #    latest_issue_time = issue.updated_at.replace(tzinfo=timezone.utc)
+
+    # Simple logic to avoid adding duplicates. For a robust system, you might check IDs.
+    issue_url = issue.html_url
+    if issue_url in existing_issue_urls:
+        print(f"Skipping issue #{issue.number} as it might be a duplicate or minor update.")
+        continue
+
+    print(f"Processing new/updated issue #{issue.number}")
+    full_text = f"Title: {issue.title}\nBody: {issue.body}"
+    for comment in issue.get_comments():
+        full_text += f"\nComment: {comment.body}"
+
+    new_issue_texts.append(full_text)
+    new_issue_metadata.append({'source': 'issue', 'number': issue.number, 'url': issue.html_url})
+
+# --- Add New Issues to the Knowledge Base ---
+if new_issue_texts:
+    print(f"Found {len(new_issue_texts)} new/updated issues to add.")
+
+    # Generate embeddings for new issues only
+    new_embeddings = model.encode(new_issue_texts, show_progress_bar=True)
+    new_embeddings = np.array(new_embeddings).astype('float32')
+
+    # If the index is new, create it
+    if index is None:
+        dimension = new_embeddings.shape[1]
+        index = faiss.IndexFlatL2(dimension)
+
+    # Add new embeddings to the index and update metadata lists
+    index.add(new_embeddings)
+    all_texts.extend(new_issue_texts)
+    metadata.extend(new_issue_metadata)
+
+    print("Knowledge base updated.")
+else:
+    print("No new issues found. Knowledge base is already up-to-date.")
+
+# --- Save the Updated Knowledge Base and State ---
+print("Saving knowledge base and state...")
+faiss.write_index(index, INDEX_FILE)
+with open(METADATA_FILE, "w") as f:
+    json.dump(metadata, f, indent=2)
+with open(TEXTS_FILE, "w") as f:
+    json.dump(all_texts, f, indent=2)
+# Save the timestamp of the latest issue we processed for the next run
+with open(STATE_FILE, "w") as f:
+    json.dump(latest_issue_time.isoformat(), f)
+
+print("Process complete!")
diff --git a/KnowledgeBaseBot/kb_state.json b/KnowledgeBaseBot/kb_state.json
new file mode 100644
index 00000000000..c2eb669ae50
--- /dev/null
+++ b/KnowledgeBaseBot/kb_state.json
@@ -0,0 +1 @@
+"1970-01-01T00:00:00+00:00"
\ No newline at end of file
diff --git a/KnowledgeBaseBot/metadata.json b/KnowledgeBaseBot/metadata.json
new file mode 100644
index 00000000000..6585edaecb3
--- /dev/null
+++ b/KnowledgeBaseBot/metadata.json
@@ -0,0 +1,14740 @@
+[
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/index.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/index.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/reporting.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/reporting.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/reporting.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/auxiliary.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/auxiliary.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/auxiliary.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/packages.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/packages.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/packages.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/packages.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/packages.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/packages.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/packages.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/packages.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/packages.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/packages.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/packages.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/machinery.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/machinery.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/machinery.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/machinery.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/machinery.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/processing.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/processing.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/processing.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/processing.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/processing.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/signatures.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/signatures.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/signatures.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/signatures.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/signatures.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/signatures.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/signatures.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/signatures.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/signatures.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/signatures.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/signatures.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/signatures.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/signatures.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/signatures.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/signatures.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/signatures.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/signatures.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/signatures.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/signatures.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/signatures.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/signatures.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/signatures.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/customization/signatures.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/development/index.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/development/current_module_improvement.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/development/development_notes.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/development/development_notes.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/development/code_style.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/development/code_style.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/development/code_style.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/development/code_style.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/development/code_style.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/development/code_style.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/faq/index.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/faq/index.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/faq/index.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/faq/index.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/faq/index.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/faq/index.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/introduction/index.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/introduction/sandboxing.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/introduction/sandboxing.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/introduction/sandboxing.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/introduction/sandboxing.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/introduction/license.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/introduction/what.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/introduction/what.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/introduction/what.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/introduction/what.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/introduction/what.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/introduction/what.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/introduction/what.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/index.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/results.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/results.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/dist.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/dist.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/dist.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/dist.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/dist.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/dist.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/dist.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/dist.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/dist.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/dist.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/dist.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/dist.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/dist.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/dist.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/dist.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/interactive_desktop.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/interactive_desktop.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/utilities.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/utilities.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/utilities.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/utilities.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/utilities.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/utilities.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/utilities.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/web.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/web.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/web.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/web.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/web.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/web.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/web.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/web.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/web.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/web.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/web.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/web.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/web.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/web.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/web.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/web.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/web.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/web.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/rooter.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/rooter.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/rooter.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/rooter.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/cluster_administration.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/cluster_administration.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/cluster_administration.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/packages.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/packages.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/packages.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/packages.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/packages.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/packages.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/packages.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/packages.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/packages.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/patterns_replacement.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/submit.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/submit.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/submit.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/submit.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/submit.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/submit.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/submit.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/submit.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/submit.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/submit.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/submit.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/submit.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/submit.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/submit.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/submit.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/monitor.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/monitor.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/monitor.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/monitor.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/monitor.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/monitor.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/monitor.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/monitor.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/monitor.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/monitor.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/monitor.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/monitor.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/monitor.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/monitor.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/clean.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/start.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/start.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/start.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/start.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/start.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/api.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/api.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/api.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/api.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/api.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/api.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/api.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/api.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/api.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/api.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/api.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/api.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/api.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/api.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/api.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/performance.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/performance.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/internals.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/usage/internals.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/index.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/upgrade.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/upgrade.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/upgrade.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/upgrade.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/upgrade.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/index.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/configuration.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/configuration.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/configuration.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/configuration.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/configuration.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/configuration.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/configuration.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/configuration.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/configuration.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/configuration.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/cloud.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/cloud.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/routing.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/routing.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/routing.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/routing.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/routing.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/routing.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/routing.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/routing.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/routing.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/routing.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/routing.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/routing.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/routing.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/routing.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/routing.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/routing.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/routing.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/routing.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/routing.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/routing.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/routing.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/routing.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/routing.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/routing.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/routing.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/routing.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/installation.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/installation.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/installation.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/installation.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/installation.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/host/installation.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest_physical/index.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest_physical/creation.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest_physical/requirements.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest_physical/requirements.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest_physical/requirements.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest_physical/network.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest_physical/network.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest_physical/network.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest_physical/saving.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest_physical/saving.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest_physical/saving.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest_physical/saving.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/agent.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/agent.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/agent.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/agent.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/index.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/additional_configuration.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/additional_configuration.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/additional_configuration.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/cloning.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/cloning.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/linux.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/linux.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/linux.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/linux.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/linux.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/linux.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/creation.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/requirements.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/requirements.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/requirements.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/troubleshooting.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/troubleshooting.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/troubleshooting.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/troubleshooting.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/troubleshooting.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/troubleshooting.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/network.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/network.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/network.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/network.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/network.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/network.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/network.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/network.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/network.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/saving.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/saving.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/saving.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/saving.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/saving.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/saving.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/saving.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/saving.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/saving.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/installation/guest/saving.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/integrations/index.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/integrations/curtain.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/integrations/curtain.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/integrations/suricata.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/integrations/suricata.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/integrations/suricata.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/integrations/suricata.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/integrations/box-js.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/integrations/box-js.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/integrations/box-js.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/integrations/tracee-linux.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/integrations/tracee-linux.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/integrations/tracee-linux.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/integrations/librenms.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/integrations/librenms.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/finalremarks/index.rst"
+  },
+  {
+    "source": "documentation",
+    "file": "../docs/book/src/finalremarks/index.rst"
+  },
+  {
+    "source": "issue",
+    "number": 2707,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2707"
+  },
+  {
+    "source": "issue",
+    "number": 2706,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2706"
+  },
+  {
+    "source": "issue",
+    "number": 2705,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2705"
+  },
+  {
+    "source": "issue",
+    "number": 2704,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2704"
+  },
+  {
+    "source": "issue",
+    "number": 2703,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2703"
+  },
+  {
+    "source": "issue",
+    "number": 2702,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2702"
+  },
+  {
+    "source": "issue",
+    "number": 2701,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2701"
+  },
+  {
+    "source": "issue",
+    "number": 2700,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2700"
+  },
+  {
+    "source": "issue",
+    "number": 2699,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2699"
+  },
+  {
+    "source": "issue",
+    "number": 2698,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2698"
+  },
+  {
+    "source": "issue",
+    "number": 2697,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2697"
+  },
+  {
+    "source": "issue",
+    "number": 2696,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2696"
+  },
+  {
+    "source": "issue",
+    "number": 2695,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2695"
+  },
+  {
+    "source": "issue",
+    "number": 2694,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2694"
+  },
+  {
+    "source": "issue",
+    "number": 2693,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2693"
+  },
+  {
+    "source": "issue",
+    "number": 2692,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2692"
+  },
+  {
+    "source": "issue",
+    "number": 2691,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2691"
+  },
+  {
+    "source": "issue",
+    "number": 2690,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2690"
+  },
+  {
+    "source": "issue",
+    "number": 2689,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2689"
+  },
+  {
+    "source": "issue",
+    "number": 2688,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2688"
+  },
+  {
+    "source": "issue",
+    "number": 2687,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2687"
+  },
+  {
+    "source": "issue",
+    "number": 2686,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2686"
+  },
+  {
+    "source": "issue",
+    "number": 2685,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2685"
+  },
+  {
+    "source": "issue",
+    "number": 2684,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2684"
+  },
+  {
+    "source": "issue",
+    "number": 2683,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2683"
+  },
+  {
+    "source": "issue",
+    "number": 2682,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2682"
+  },
+  {
+    "source": "issue",
+    "number": 2681,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2681"
+  },
+  {
+    "source": "issue",
+    "number": 2680,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2680"
+  },
+  {
+    "source": "issue",
+    "number": 2679,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2679"
+  },
+  {
+    "source": "issue",
+    "number": 2678,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2678"
+  },
+  {
+    "source": "issue",
+    "number": 2677,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2677"
+  },
+  {
+    "source": "issue",
+    "number": 2676,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2676"
+  },
+  {
+    "source": "issue",
+    "number": 2675,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2675"
+  },
+  {
+    "source": "issue",
+    "number": 2674,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2674"
+  },
+  {
+    "source": "issue",
+    "number": 2673,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2673"
+  },
+  {
+    "source": "issue",
+    "number": 2672,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2672"
+  },
+  {
+    "source": "issue",
+    "number": 2671,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2671"
+  },
+  {
+    "source": "issue",
+    "number": 2670,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2670"
+  },
+  {
+    "source": "issue",
+    "number": 2669,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2669"
+  },
+  {
+    "source": "issue",
+    "number": 2668,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2668"
+  },
+  {
+    "source": "issue",
+    "number": 2667,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2667"
+  },
+  {
+    "source": "issue",
+    "number": 2666,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2666"
+  },
+  {
+    "source": "issue",
+    "number": 2665,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2665"
+  },
+  {
+    "source": "issue",
+    "number": 2664,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2664"
+  },
+  {
+    "source": "issue",
+    "number": 2663,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2663"
+  },
+  {
+    "source": "issue",
+    "number": 2662,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2662"
+  },
+  {
+    "source": "issue",
+    "number": 2661,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2661"
+  },
+  {
+    "source": "issue",
+    "number": 2660,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2660"
+  },
+  {
+    "source": "issue",
+    "number": 2659,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2659"
+  },
+  {
+    "source": "issue",
+    "number": 2658,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2658"
+  },
+  {
+    "source": "issue",
+    "number": 2657,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2657"
+  },
+  {
+    "source": "issue",
+    "number": 2656,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2656"
+  },
+  {
+    "source": "issue",
+    "number": 2655,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2655"
+  },
+  {
+    "source": "issue",
+    "number": 2654,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2654"
+  },
+  {
+    "source": "issue",
+    "number": 2653,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2653"
+  },
+  {
+    "source": "issue",
+    "number": 2652,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2652"
+  },
+  {
+    "source": "issue",
+    "number": 2651,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2651"
+  },
+  {
+    "source": "issue",
+    "number": 2650,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2650"
+  },
+  {
+    "source": "issue",
+    "number": 2649,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2649"
+  },
+  {
+    "source": "issue",
+    "number": 2648,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2648"
+  },
+  {
+    "source": "issue",
+    "number": 2647,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2647"
+  },
+  {
+    "source": "issue",
+    "number": 2646,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2646"
+  },
+  {
+    "source": "issue",
+    "number": 2645,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2645"
+  },
+  {
+    "source": "issue",
+    "number": 2644,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2644"
+  },
+  {
+    "source": "issue",
+    "number": 2643,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2643"
+  },
+  {
+    "source": "issue",
+    "number": 2642,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2642"
+  },
+  {
+    "source": "issue",
+    "number": 2641,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2641"
+  },
+  {
+    "source": "issue",
+    "number": 2640,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2640"
+  },
+  {
+    "source": "issue",
+    "number": 2639,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2639"
+  },
+  {
+    "source": "issue",
+    "number": 2638,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2638"
+  },
+  {
+    "source": "issue",
+    "number": 2637,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2637"
+  },
+  {
+    "source": "issue",
+    "number": 2636,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2636"
+  },
+  {
+    "source": "issue",
+    "number": 2635,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2635"
+  },
+  {
+    "source": "issue",
+    "number": 2634,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2634"
+  },
+  {
+    "source": "issue",
+    "number": 2633,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2633"
+  },
+  {
+    "source": "issue",
+    "number": 2632,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2632"
+  },
+  {
+    "source": "issue",
+    "number": 2631,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2631"
+  },
+  {
+    "source": "issue",
+    "number": 2630,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2630"
+  },
+  {
+    "source": "issue",
+    "number": 2629,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2629"
+  },
+  {
+    "source": "issue",
+    "number": 2628,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2628"
+  },
+  {
+    "source": "issue",
+    "number": 2627,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2627"
+  },
+  {
+    "source": "issue",
+    "number": 2626,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2626"
+  },
+  {
+    "source": "issue",
+    "number": 2625,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2625"
+  },
+  {
+    "source": "issue",
+    "number": 2624,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2624"
+  },
+  {
+    "source": "issue",
+    "number": 2623,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2623"
+  },
+  {
+    "source": "issue",
+    "number": 2622,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2622"
+  },
+  {
+    "source": "issue",
+    "number": 2621,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2621"
+  },
+  {
+    "source": "issue",
+    "number": 2620,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2620"
+  },
+  {
+    "source": "issue",
+    "number": 2619,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2619"
+  },
+  {
+    "source": "issue",
+    "number": 2618,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2618"
+  },
+  {
+    "source": "issue",
+    "number": 2617,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2617"
+  },
+  {
+    "source": "issue",
+    "number": 2616,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2616"
+  },
+  {
+    "source": "issue",
+    "number": 2615,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2615"
+  },
+  {
+    "source": "issue",
+    "number": 2614,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2614"
+  },
+  {
+    "source": "issue",
+    "number": 2613,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2613"
+  },
+  {
+    "source": "issue",
+    "number": 2612,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2612"
+  },
+  {
+    "source": "issue",
+    "number": 2611,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2611"
+  },
+  {
+    "source": "issue",
+    "number": 2610,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2610"
+  },
+  {
+    "source": "issue",
+    "number": 2609,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2609"
+  },
+  {
+    "source": "issue",
+    "number": 2608,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2608"
+  },
+  {
+    "source": "issue",
+    "number": 2607,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2607"
+  },
+  {
+    "source": "issue",
+    "number": 2606,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2606"
+  },
+  {
+    "source": "issue",
+    "number": 2605,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2605"
+  },
+  {
+    "source": "issue",
+    "number": 2604,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2604"
+  },
+  {
+    "source": "issue",
+    "number": 2603,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2603"
+  },
+  {
+    "source": "issue",
+    "number": 2602,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2602"
+  },
+  {
+    "source": "issue",
+    "number": 2601,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2601"
+  },
+  {
+    "source": "issue",
+    "number": 2600,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2600"
+  },
+  {
+    "source": "issue",
+    "number": 2599,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2599"
+  },
+  {
+    "source": "issue",
+    "number": 2598,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2598"
+  },
+  {
+    "source": "issue",
+    "number": 2597,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2597"
+  },
+  {
+    "source": "issue",
+    "number": 2596,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2596"
+  },
+  {
+    "source": "issue",
+    "number": 2595,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2595"
+  },
+  {
+    "source": "issue",
+    "number": 2594,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2594"
+  },
+  {
+    "source": "issue",
+    "number": 2593,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2593"
+  },
+  {
+    "source": "issue",
+    "number": 2592,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2592"
+  },
+  {
+    "source": "issue",
+    "number": 2591,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2591"
+  },
+  {
+    "source": "issue",
+    "number": 2590,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2590"
+  },
+  {
+    "source": "issue",
+    "number": 2589,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2589"
+  },
+  {
+    "source": "issue",
+    "number": 2588,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2588"
+  },
+  {
+    "source": "issue",
+    "number": 2587,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2587"
+  },
+  {
+    "source": "issue",
+    "number": 2586,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2586"
+  },
+  {
+    "source": "issue",
+    "number": 2585,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2585"
+  },
+  {
+    "source": "issue",
+    "number": 2584,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2584"
+  },
+  {
+    "source": "issue",
+    "number": 2583,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2583"
+  },
+  {
+    "source": "issue",
+    "number": 2582,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2582"
+  },
+  {
+    "source": "issue",
+    "number": 2581,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2581"
+  },
+  {
+    "source": "issue",
+    "number": 2580,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2580"
+  },
+  {
+    "source": "issue",
+    "number": 2579,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2579"
+  },
+  {
+    "source": "issue",
+    "number": 2578,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2578"
+  },
+  {
+    "source": "issue",
+    "number": 2577,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2577"
+  },
+  {
+    "source": "issue",
+    "number": 2576,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2576"
+  },
+  {
+    "source": "issue",
+    "number": 2575,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2575"
+  },
+  {
+    "source": "issue",
+    "number": 2574,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2574"
+  },
+  {
+    "source": "issue",
+    "number": 2573,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2573"
+  },
+  {
+    "source": "issue",
+    "number": 2572,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2572"
+  },
+  {
+    "source": "issue",
+    "number": 2571,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2571"
+  },
+  {
+    "source": "issue",
+    "number": 2570,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2570"
+  },
+  {
+    "source": "issue",
+    "number": 2569,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2569"
+  },
+  {
+    "source": "issue",
+    "number": 2568,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2568"
+  },
+  {
+    "source": "issue",
+    "number": 2567,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2567"
+  },
+  {
+    "source": "issue",
+    "number": 2566,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2566"
+  },
+  {
+    "source": "issue",
+    "number": 2565,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2565"
+  },
+  {
+    "source": "issue",
+    "number": 2564,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2564"
+  },
+  {
+    "source": "issue",
+    "number": 2563,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2563"
+  },
+  {
+    "source": "issue",
+    "number": 2562,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2562"
+  },
+  {
+    "source": "issue",
+    "number": 2561,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2561"
+  },
+  {
+    "source": "issue",
+    "number": 2560,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2560"
+  },
+  {
+    "source": "issue",
+    "number": 2559,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2559"
+  },
+  {
+    "source": "issue",
+    "number": 2558,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2558"
+  },
+  {
+    "source": "issue",
+    "number": 2557,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2557"
+  },
+  {
+    "source": "issue",
+    "number": 2556,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2556"
+  },
+  {
+    "source": "issue",
+    "number": 2555,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2555"
+  },
+  {
+    "source": "issue",
+    "number": 2554,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2554"
+  },
+  {
+    "source": "issue",
+    "number": 2553,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2553"
+  },
+  {
+    "source": "issue",
+    "number": 2552,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2552"
+  },
+  {
+    "source": "issue",
+    "number": 2551,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2551"
+  },
+  {
+    "source": "issue",
+    "number": 2550,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2550"
+  },
+  {
+    "source": "issue",
+    "number": 2549,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2549"
+  },
+  {
+    "source": "issue",
+    "number": 2548,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2548"
+  },
+  {
+    "source": "issue",
+    "number": 2547,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2547"
+  },
+  {
+    "source": "issue",
+    "number": 2546,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2546"
+  },
+  {
+    "source": "issue",
+    "number": 2545,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2545"
+  },
+  {
+    "source": "issue",
+    "number": 2544,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2544"
+  },
+  {
+    "source": "issue",
+    "number": 2543,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2543"
+  },
+  {
+    "source": "issue",
+    "number": 2542,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2542"
+  },
+  {
+    "source": "issue",
+    "number": 2541,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2541"
+  },
+  {
+    "source": "issue",
+    "number": 2540,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2540"
+  },
+  {
+    "source": "issue",
+    "number": 2539,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2539"
+  },
+  {
+    "source": "issue",
+    "number": 2538,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2538"
+  },
+  {
+    "source": "issue",
+    "number": 2537,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2537"
+  },
+  {
+    "source": "issue",
+    "number": 2536,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2536"
+  },
+  {
+    "source": "issue",
+    "number": 2535,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2535"
+  },
+  {
+    "source": "issue",
+    "number": 2534,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2534"
+  },
+  {
+    "source": "issue",
+    "number": 2533,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2533"
+  },
+  {
+    "source": "issue",
+    "number": 2532,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2532"
+  },
+  {
+    "source": "issue",
+    "number": 2531,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2531"
+  },
+  {
+    "source": "issue",
+    "number": 2530,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2530"
+  },
+  {
+    "source": "issue",
+    "number": 2529,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2529"
+  },
+  {
+    "source": "issue",
+    "number": 2528,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2528"
+  },
+  {
+    "source": "issue",
+    "number": 2527,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2527"
+  },
+  {
+    "source": "issue",
+    "number": 2526,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2526"
+  },
+  {
+    "source": "issue",
+    "number": 2525,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2525"
+  },
+  {
+    "source": "issue",
+    "number": 2524,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2524"
+  },
+  {
+    "source": "issue",
+    "number": 2523,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2523"
+  },
+  {
+    "source": "issue",
+    "number": 2522,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2522"
+  },
+  {
+    "source": "issue",
+    "number": 2521,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2521"
+  },
+  {
+    "source": "issue",
+    "number": 2520,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2520"
+  },
+  {
+    "source": "issue",
+    "number": 2519,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2519"
+  },
+  {
+    "source": "issue",
+    "number": 2518,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2518"
+  },
+  {
+    "source": "issue",
+    "number": 2517,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2517"
+  },
+  {
+    "source": "issue",
+    "number": 2516,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2516"
+  },
+  {
+    "source": "issue",
+    "number": 2515,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2515"
+  },
+  {
+    "source": "issue",
+    "number": 2514,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2514"
+  },
+  {
+    "source": "issue",
+    "number": 2513,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2513"
+  },
+  {
+    "source": "issue",
+    "number": 2512,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2512"
+  },
+  {
+    "source": "issue",
+    "number": 2511,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2511"
+  },
+  {
+    "source": "issue",
+    "number": 2510,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2510"
+  },
+  {
+    "source": "issue",
+    "number": 2509,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2509"
+  },
+  {
+    "source": "issue",
+    "number": 2508,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2508"
+  },
+  {
+    "source": "issue",
+    "number": 2507,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2507"
+  },
+  {
+    "source": "issue",
+    "number": 2506,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2506"
+  },
+  {
+    "source": "issue",
+    "number": 2505,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2505"
+  },
+  {
+    "source": "issue",
+    "number": 2504,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2504"
+  },
+  {
+    "source": "issue",
+    "number": 2503,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2503"
+  },
+  {
+    "source": "issue",
+    "number": 2502,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2502"
+  },
+  {
+    "source": "issue",
+    "number": 2501,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2501"
+  },
+  {
+    "source": "issue",
+    "number": 2500,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2500"
+  },
+  {
+    "source": "issue",
+    "number": 2499,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2499"
+  },
+  {
+    "source": "issue",
+    "number": 2498,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2498"
+  },
+  {
+    "source": "issue",
+    "number": 2497,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2497"
+  },
+  {
+    "source": "issue",
+    "number": 2496,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2496"
+  },
+  {
+    "source": "issue",
+    "number": 2495,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2495"
+  },
+  {
+    "source": "issue",
+    "number": 2494,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2494"
+  },
+  {
+    "source": "issue",
+    "number": 2493,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2493"
+  },
+  {
+    "source": "issue",
+    "number": 2492,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2492"
+  },
+  {
+    "source": "issue",
+    "number": 2491,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2491"
+  },
+  {
+    "source": "issue",
+    "number": 2490,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2490"
+  },
+  {
+    "source": "issue",
+    "number": 2489,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2489"
+  },
+  {
+    "source": "issue",
+    "number": 2488,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2488"
+  },
+  {
+    "source": "issue",
+    "number": 2487,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2487"
+  },
+  {
+    "source": "issue",
+    "number": 2486,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2486"
+  },
+  {
+    "source": "issue",
+    "number": 2485,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2485"
+  },
+  {
+    "source": "issue",
+    "number": 2484,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2484"
+  },
+  {
+    "source": "issue",
+    "number": 2483,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2483"
+  },
+  {
+    "source": "issue",
+    "number": 2482,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2482"
+  },
+  {
+    "source": "issue",
+    "number": 2481,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2481"
+  },
+  {
+    "source": "issue",
+    "number": 2480,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2480"
+  },
+  {
+    "source": "issue",
+    "number": 2479,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2479"
+  },
+  {
+    "source": "issue",
+    "number": 2478,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2478"
+  },
+  {
+    "source": "issue",
+    "number": 2477,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2477"
+  },
+  {
+    "source": "issue",
+    "number": 2476,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2476"
+  },
+  {
+    "source": "issue",
+    "number": 2475,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2475"
+  },
+  {
+    "source": "issue",
+    "number": 2474,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2474"
+  },
+  {
+    "source": "issue",
+    "number": 2473,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2473"
+  },
+  {
+    "source": "issue",
+    "number": 2472,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2472"
+  },
+  {
+    "source": "issue",
+    "number": 2471,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2471"
+  },
+  {
+    "source": "issue",
+    "number": 2470,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2470"
+  },
+  {
+    "source": "issue",
+    "number": 2469,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2469"
+  },
+  {
+    "source": "issue",
+    "number": 2468,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2468"
+  },
+  {
+    "source": "issue",
+    "number": 2467,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2467"
+  },
+  {
+    "source": "issue",
+    "number": 2466,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2466"
+  },
+  {
+    "source": "issue",
+    "number": 2465,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2465"
+  },
+  {
+    "source": "issue",
+    "number": 2464,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2464"
+  },
+  {
+    "source": "issue",
+    "number": 2463,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2463"
+  },
+  {
+    "source": "issue",
+    "number": 2462,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2462"
+  },
+  {
+    "source": "issue",
+    "number": 2461,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2461"
+  },
+  {
+    "source": "issue",
+    "number": 2460,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2460"
+  },
+  {
+    "source": "issue",
+    "number": 2459,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2459"
+  },
+  {
+    "source": "issue",
+    "number": 2458,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2458"
+  },
+  {
+    "source": "issue",
+    "number": 2457,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2457"
+  },
+  {
+    "source": "issue",
+    "number": 2456,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2456"
+  },
+  {
+    "source": "issue",
+    "number": 2455,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2455"
+  },
+  {
+    "source": "issue",
+    "number": 2454,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2454"
+  },
+  {
+    "source": "issue",
+    "number": 2453,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2453"
+  },
+  {
+    "source": "issue",
+    "number": 2452,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2452"
+  },
+  {
+    "source": "issue",
+    "number": 2451,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2451"
+  },
+  {
+    "source": "issue",
+    "number": 2450,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2450"
+  },
+  {
+    "source": "issue",
+    "number": 2449,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2449"
+  },
+  {
+    "source": "issue",
+    "number": 2448,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2448"
+  },
+  {
+    "source": "issue",
+    "number": 2447,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2447"
+  },
+  {
+    "source": "issue",
+    "number": 2446,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2446"
+  },
+  {
+    "source": "issue",
+    "number": 2445,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2445"
+  },
+  {
+    "source": "issue",
+    "number": 2444,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2444"
+  },
+  {
+    "source": "issue",
+    "number": 2443,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2443"
+  },
+  {
+    "source": "issue",
+    "number": 2442,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2442"
+  },
+  {
+    "source": "issue",
+    "number": 2441,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2441"
+  },
+  {
+    "source": "issue",
+    "number": 2440,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2440"
+  },
+  {
+    "source": "issue",
+    "number": 2439,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2439"
+  },
+  {
+    "source": "issue",
+    "number": 2438,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2438"
+  },
+  {
+    "source": "issue",
+    "number": 2437,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2437"
+  },
+  {
+    "source": "issue",
+    "number": 2436,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2436"
+  },
+  {
+    "source": "issue",
+    "number": 2435,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2435"
+  },
+  {
+    "source": "issue",
+    "number": 2434,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2434"
+  },
+  {
+    "source": "issue",
+    "number": 2433,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2433"
+  },
+  {
+    "source": "issue",
+    "number": 2432,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2432"
+  },
+  {
+    "source": "issue",
+    "number": 2431,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2431"
+  },
+  {
+    "source": "issue",
+    "number": 2430,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2430"
+  },
+  {
+    "source": "issue",
+    "number": 2429,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2429"
+  },
+  {
+    "source": "issue",
+    "number": 2428,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2428"
+  },
+  {
+    "source": "issue",
+    "number": 2427,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2427"
+  },
+  {
+    "source": "issue",
+    "number": 2426,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2426"
+  },
+  {
+    "source": "issue",
+    "number": 2425,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2425"
+  },
+  {
+    "source": "issue",
+    "number": 2424,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2424"
+  },
+  {
+    "source": "issue",
+    "number": 2423,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2423"
+  },
+  {
+    "source": "issue",
+    "number": 2422,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2422"
+  },
+  {
+    "source": "issue",
+    "number": 2421,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2421"
+  },
+  {
+    "source": "issue",
+    "number": 2420,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2420"
+  },
+  {
+    "source": "issue",
+    "number": 2419,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2419"
+  },
+  {
+    "source": "issue",
+    "number": 2418,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2418"
+  },
+  {
+    "source": "issue",
+    "number": 2417,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2417"
+  },
+  {
+    "source": "issue",
+    "number": 2416,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2416"
+  },
+  {
+    "source": "issue",
+    "number": 2415,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2415"
+  },
+  {
+    "source": "issue",
+    "number": 2414,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2414"
+  },
+  {
+    "source": "issue",
+    "number": 2413,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2413"
+  },
+  {
+    "source": "issue",
+    "number": 2412,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2412"
+  },
+  {
+    "source": "issue",
+    "number": 2411,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2411"
+  },
+  {
+    "source": "issue",
+    "number": 2410,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2410"
+  },
+  {
+    "source": "issue",
+    "number": 2409,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2409"
+  },
+  {
+    "source": "issue",
+    "number": 2408,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2408"
+  },
+  {
+    "source": "issue",
+    "number": 2407,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2407"
+  },
+  {
+    "source": "issue",
+    "number": 2406,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2406"
+  },
+  {
+    "source": "issue",
+    "number": 2404,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2404"
+  },
+  {
+    "source": "issue",
+    "number": 2403,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2403"
+  },
+  {
+    "source": "issue",
+    "number": 2402,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2402"
+  },
+  {
+    "source": "issue",
+    "number": 2401,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2401"
+  },
+  {
+    "source": "issue",
+    "number": 2400,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2400"
+  },
+  {
+    "source": "issue",
+    "number": 2399,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2399"
+  },
+  {
+    "source": "issue",
+    "number": 2398,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2398"
+  },
+  {
+    "source": "issue",
+    "number": 2397,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2397"
+  },
+  {
+    "source": "issue",
+    "number": 2396,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2396"
+  },
+  {
+    "source": "issue",
+    "number": 2395,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2395"
+  },
+  {
+    "source": "issue",
+    "number": 2394,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2394"
+  },
+  {
+    "source": "issue",
+    "number": 2393,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2393"
+  },
+  {
+    "source": "issue",
+    "number": 2392,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2392"
+  },
+  {
+    "source": "issue",
+    "number": 2391,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2391"
+  },
+  {
+    "source": "issue",
+    "number": 2390,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2390"
+  },
+  {
+    "source": "issue",
+    "number": 2389,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2389"
+  },
+  {
+    "source": "issue",
+    "number": 2388,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2388"
+  },
+  {
+    "source": "issue",
+    "number": 2387,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2387"
+  },
+  {
+    "source": "issue",
+    "number": 2386,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2386"
+  },
+  {
+    "source": "issue",
+    "number": 2385,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2385"
+  },
+  {
+    "source": "issue",
+    "number": 2384,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2384"
+  },
+  {
+    "source": "issue",
+    "number": 2383,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2383"
+  },
+  {
+    "source": "issue",
+    "number": 2382,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2382"
+  },
+  {
+    "source": "issue",
+    "number": 2381,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2381"
+  },
+  {
+    "source": "issue",
+    "number": 2380,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2380"
+  },
+  {
+    "source": "issue",
+    "number": 2379,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2379"
+  },
+  {
+    "source": "issue",
+    "number": 2378,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2378"
+  },
+  {
+    "source": "issue",
+    "number": 2377,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2377"
+  },
+  {
+    "source": "issue",
+    "number": 2376,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2376"
+  },
+  {
+    "source": "issue",
+    "number": 2375,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2375"
+  },
+  {
+    "source": "issue",
+    "number": 2374,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2374"
+  },
+  {
+    "source": "issue",
+    "number": 2373,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2373"
+  },
+  {
+    "source": "issue",
+    "number": 2372,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2372"
+  },
+  {
+    "source": "issue",
+    "number": 2371,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2371"
+  },
+  {
+    "source": "issue",
+    "number": 2370,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2370"
+  },
+  {
+    "source": "issue",
+    "number": 2369,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2369"
+  },
+  {
+    "source": "issue",
+    "number": 2368,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2368"
+  },
+  {
+    "source": "issue",
+    "number": 2367,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2367"
+  },
+  {
+    "source": "issue",
+    "number": 2366,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2366"
+  },
+  {
+    "source": "issue",
+    "number": 2365,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2365"
+  },
+  {
+    "source": "issue",
+    "number": 2364,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2364"
+  },
+  {
+    "source": "issue",
+    "number": 2363,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2363"
+  },
+  {
+    "source": "issue",
+    "number": 2362,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2362"
+  },
+  {
+    "source": "issue",
+    "number": 2361,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2361"
+  },
+  {
+    "source": "issue",
+    "number": 2360,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2360"
+  },
+  {
+    "source": "issue",
+    "number": 2359,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2359"
+  },
+  {
+    "source": "issue",
+    "number": 2358,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2358"
+  },
+  {
+    "source": "issue",
+    "number": 2357,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2357"
+  },
+  {
+    "source": "issue",
+    "number": 2356,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2356"
+  },
+  {
+    "source": "issue",
+    "number": 2355,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2355"
+  },
+  {
+    "source": "issue",
+    "number": 2354,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2354"
+  },
+  {
+    "source": "issue",
+    "number": 2353,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2353"
+  },
+  {
+    "source": "issue",
+    "number": 2352,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2352"
+  },
+  {
+    "source": "issue",
+    "number": 2351,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2351"
+  },
+  {
+    "source": "issue",
+    "number": 2350,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2350"
+  },
+  {
+    "source": "issue",
+    "number": 2349,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2349"
+  },
+  {
+    "source": "issue",
+    "number": 2348,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2348"
+  },
+  {
+    "source": "issue",
+    "number": 2347,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2347"
+  },
+  {
+    "source": "issue",
+    "number": 2346,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2346"
+  },
+  {
+    "source": "issue",
+    "number": 2345,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2345"
+  },
+  {
+    "source": "issue",
+    "number": 2344,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2344"
+  },
+  {
+    "source": "issue",
+    "number": 2343,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2343"
+  },
+  {
+    "source": "issue",
+    "number": 2342,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2342"
+  },
+  {
+    "source": "issue",
+    "number": 2341,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2341"
+  },
+  {
+    "source": "issue",
+    "number": 2340,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2340"
+  },
+  {
+    "source": "issue",
+    "number": 2339,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2339"
+  },
+  {
+    "source": "issue",
+    "number": 2338,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2338"
+  },
+  {
+    "source": "issue",
+    "number": 2337,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2337"
+  },
+  {
+    "source": "issue",
+    "number": 2336,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2336"
+  },
+  {
+    "source": "issue",
+    "number": 2335,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2335"
+  },
+  {
+    "source": "issue",
+    "number": 2334,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2334"
+  },
+  {
+    "source": "issue",
+    "number": 2333,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2333"
+  },
+  {
+    "source": "issue",
+    "number": 2332,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2332"
+  },
+  {
+    "source": "issue",
+    "number": 2331,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2331"
+  },
+  {
+    "source": "issue",
+    "number": 2330,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2330"
+  },
+  {
+    "source": "issue",
+    "number": 2329,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2329"
+  },
+  {
+    "source": "issue",
+    "number": 2328,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2328"
+  },
+  {
+    "source": "issue",
+    "number": 2327,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2327"
+  },
+  {
+    "source": "issue",
+    "number": 2326,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2326"
+  },
+  {
+    "source": "issue",
+    "number": 2325,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2325"
+  },
+  {
+    "source": "issue",
+    "number": 2324,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2324"
+  },
+  {
+    "source": "issue",
+    "number": 2323,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2323"
+  },
+  {
+    "source": "issue",
+    "number": 2322,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2322"
+  },
+  {
+    "source": "issue",
+    "number": 2321,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2321"
+  },
+  {
+    "source": "issue",
+    "number": 2320,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2320"
+  },
+  {
+    "source": "issue",
+    "number": 2319,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2319"
+  },
+  {
+    "source": "issue",
+    "number": 2318,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2318"
+  },
+  {
+    "source": "issue",
+    "number": 2317,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2317"
+  },
+  {
+    "source": "issue",
+    "number": 2316,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2316"
+  },
+  {
+    "source": "issue",
+    "number": 2315,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2315"
+  },
+  {
+    "source": "issue",
+    "number": 2314,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2314"
+  },
+  {
+    "source": "issue",
+    "number": 2313,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2313"
+  },
+  {
+    "source": "issue",
+    "number": 2312,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2312"
+  },
+  {
+    "source": "issue",
+    "number": 2311,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2311"
+  },
+  {
+    "source": "issue",
+    "number": 2310,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2310"
+  },
+  {
+    "source": "issue",
+    "number": 2309,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2309"
+  },
+  {
+    "source": "issue",
+    "number": 2308,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2308"
+  },
+  {
+    "source": "issue",
+    "number": 2307,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2307"
+  },
+  {
+    "source": "issue",
+    "number": 2306,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2306"
+  },
+  {
+    "source": "issue",
+    "number": 2305,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2305"
+  },
+  {
+    "source": "issue",
+    "number": 2304,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2304"
+  },
+  {
+    "source": "issue",
+    "number": 2303,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2303"
+  },
+  {
+    "source": "issue",
+    "number": 2302,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2302"
+  },
+  {
+    "source": "issue",
+    "number": 2301,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2301"
+  },
+  {
+    "source": "issue",
+    "number": 2300,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2300"
+  },
+  {
+    "source": "issue",
+    "number": 2299,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2299"
+  },
+  {
+    "source": "issue",
+    "number": 2298,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2298"
+  },
+  {
+    "source": "issue",
+    "number": 2297,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2297"
+  },
+  {
+    "source": "issue",
+    "number": 2296,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2296"
+  },
+  {
+    "source": "issue",
+    "number": 2295,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2295"
+  },
+  {
+    "source": "issue",
+    "number": 2294,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2294"
+  },
+  {
+    "source": "issue",
+    "number": 2293,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2293"
+  },
+  {
+    "source": "issue",
+    "number": 2292,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2292"
+  },
+  {
+    "source": "issue",
+    "number": 2291,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2291"
+  },
+  {
+    "source": "issue",
+    "number": 2290,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2290"
+  },
+  {
+    "source": "issue",
+    "number": 2289,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2289"
+  },
+  {
+    "source": "issue",
+    "number": 2288,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2288"
+  },
+  {
+    "source": "issue",
+    "number": 2287,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2287"
+  },
+  {
+    "source": "issue",
+    "number": 2286,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2286"
+  },
+  {
+    "source": "issue",
+    "number": 2285,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2285"
+  },
+  {
+    "source": "issue",
+    "number": 2284,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2284"
+  },
+  {
+    "source": "issue",
+    "number": 2283,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2283"
+  },
+  {
+    "source": "issue",
+    "number": 2282,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2282"
+  },
+  {
+    "source": "issue",
+    "number": 2281,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2281"
+  },
+  {
+    "source": "issue",
+    "number": 2280,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2280"
+  },
+  {
+    "source": "issue",
+    "number": 2279,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2279"
+  },
+  {
+    "source": "issue",
+    "number": 2278,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2278"
+  },
+  {
+    "source": "issue",
+    "number": 2277,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2277"
+  },
+  {
+    "source": "issue",
+    "number": 2276,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2276"
+  },
+  {
+    "source": "issue",
+    "number": 2275,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2275"
+  },
+  {
+    "source": "issue",
+    "number": 2274,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2274"
+  },
+  {
+    "source": "issue",
+    "number": 2273,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2273"
+  },
+  {
+    "source": "issue",
+    "number": 2272,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2272"
+  },
+  {
+    "source": "issue",
+    "number": 2271,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2271"
+  },
+  {
+    "source": "issue",
+    "number": 2270,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2270"
+  },
+  {
+    "source": "issue",
+    "number": 2269,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2269"
+  },
+  {
+    "source": "issue",
+    "number": 2268,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2268"
+  },
+  {
+    "source": "issue",
+    "number": 2267,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2267"
+  },
+  {
+    "source": "issue",
+    "number": 2266,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2266"
+  },
+  {
+    "source": "issue",
+    "number": 2265,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2265"
+  },
+  {
+    "source": "issue",
+    "number": 2264,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2264"
+  },
+  {
+    "source": "issue",
+    "number": 2263,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2263"
+  },
+  {
+    "source": "issue",
+    "number": 2262,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2262"
+  },
+  {
+    "source": "issue",
+    "number": 2261,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2261"
+  },
+  {
+    "source": "issue",
+    "number": 2260,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2260"
+  },
+  {
+    "source": "issue",
+    "number": 2259,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2259"
+  },
+  {
+    "source": "issue",
+    "number": 2258,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2258"
+  },
+  {
+    "source": "issue",
+    "number": 2257,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2257"
+  },
+  {
+    "source": "issue",
+    "number": 2256,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2256"
+  },
+  {
+    "source": "issue",
+    "number": 2255,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2255"
+  },
+  {
+    "source": "issue",
+    "number": 2254,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2254"
+  },
+  {
+    "source": "issue",
+    "number": 2253,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2253"
+  },
+  {
+    "source": "issue",
+    "number": 2252,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2252"
+  },
+  {
+    "source": "issue",
+    "number": 2251,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2251"
+  },
+  {
+    "source": "issue",
+    "number": 2250,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2250"
+  },
+  {
+    "source": "issue",
+    "number": 2249,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2249"
+  },
+  {
+    "source": "issue",
+    "number": 2248,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2248"
+  },
+  {
+    "source": "issue",
+    "number": 2247,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2247"
+  },
+  {
+    "source": "issue",
+    "number": 2246,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2246"
+  },
+  {
+    "source": "issue",
+    "number": 2245,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2245"
+  },
+  {
+    "source": "issue",
+    "number": 2244,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2244"
+  },
+  {
+    "source": "issue",
+    "number": 2243,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2243"
+  },
+  {
+    "source": "issue",
+    "number": 2242,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2242"
+  },
+  {
+    "source": "issue",
+    "number": 2241,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2241"
+  },
+  {
+    "source": "issue",
+    "number": 2240,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2240"
+  },
+  {
+    "source": "issue",
+    "number": 2239,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2239"
+  },
+  {
+    "source": "issue",
+    "number": 2238,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2238"
+  },
+  {
+    "source": "issue",
+    "number": 2237,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2237"
+  },
+  {
+    "source": "issue",
+    "number": 2236,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2236"
+  },
+  {
+    "source": "issue",
+    "number": 2235,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2235"
+  },
+  {
+    "source": "issue",
+    "number": 2234,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2234"
+  },
+  {
+    "source": "issue",
+    "number": 2233,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2233"
+  },
+  {
+    "source": "issue",
+    "number": 2232,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2232"
+  },
+  {
+    "source": "issue",
+    "number": 2231,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2231"
+  },
+  {
+    "source": "issue",
+    "number": 2230,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2230"
+  },
+  {
+    "source": "issue",
+    "number": 2229,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2229"
+  },
+  {
+    "source": "issue",
+    "number": 2228,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2228"
+  },
+  {
+    "source": "issue",
+    "number": 2227,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2227"
+  },
+  {
+    "source": "issue",
+    "number": 2226,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2226"
+  },
+  {
+    "source": "issue",
+    "number": 2225,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2225"
+  },
+  {
+    "source": "issue",
+    "number": 2224,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2224"
+  },
+  {
+    "source": "issue",
+    "number": 2223,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2223"
+  },
+  {
+    "source": "issue",
+    "number": 2222,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2222"
+  },
+  {
+    "source": "issue",
+    "number": 2221,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2221"
+  },
+  {
+    "source": "issue",
+    "number": 2220,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2220"
+  },
+  {
+    "source": "issue",
+    "number": 2219,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2219"
+  },
+  {
+    "source": "issue",
+    "number": 2218,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2218"
+  },
+  {
+    "source": "issue",
+    "number": 2217,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2217"
+  },
+  {
+    "source": "issue",
+    "number": 2216,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2216"
+  },
+  {
+    "source": "issue",
+    "number": 2215,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2215"
+  },
+  {
+    "source": "issue",
+    "number": 2214,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2214"
+  },
+  {
+    "source": "issue",
+    "number": 2213,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2213"
+  },
+  {
+    "source": "issue",
+    "number": 2212,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2212"
+  },
+  {
+    "source": "issue",
+    "number": 2211,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2211"
+  },
+  {
+    "source": "issue",
+    "number": 2210,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2210"
+  },
+  {
+    "source": "issue",
+    "number": 2209,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2209"
+  },
+  {
+    "source": "issue",
+    "number": 2208,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2208"
+  },
+  {
+    "source": "issue",
+    "number": 2207,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2207"
+  },
+  {
+    "source": "issue",
+    "number": 2206,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2206"
+  },
+  {
+    "source": "issue",
+    "number": 2205,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2205"
+  },
+  {
+    "source": "issue",
+    "number": 2204,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2204"
+  },
+  {
+    "source": "issue",
+    "number": 2203,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2203"
+  },
+  {
+    "source": "issue",
+    "number": 2202,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2202"
+  },
+  {
+    "source": "issue",
+    "number": 2201,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2201"
+  },
+  {
+    "source": "issue",
+    "number": 2200,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2200"
+  },
+  {
+    "source": "issue",
+    "number": 2199,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2199"
+  },
+  {
+    "source": "issue",
+    "number": 2198,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2198"
+  },
+  {
+    "source": "issue",
+    "number": 2197,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2197"
+  },
+  {
+    "source": "issue",
+    "number": 2196,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2196"
+  },
+  {
+    "source": "issue",
+    "number": 2195,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2195"
+  },
+  {
+    "source": "issue",
+    "number": 2194,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2194"
+  },
+  {
+    "source": "issue",
+    "number": 2193,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2193"
+  },
+  {
+    "source": "issue",
+    "number": 2192,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2192"
+  },
+  {
+    "source": "issue",
+    "number": 2191,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2191"
+  },
+  {
+    "source": "issue",
+    "number": 2190,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2190"
+  },
+  {
+    "source": "issue",
+    "number": 2189,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2189"
+  },
+  {
+    "source": "issue",
+    "number": 2188,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2188"
+  },
+  {
+    "source": "issue",
+    "number": 2187,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2187"
+  },
+  {
+    "source": "issue",
+    "number": 2186,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2186"
+  },
+  {
+    "source": "issue",
+    "number": 2185,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2185"
+  },
+  {
+    "source": "issue",
+    "number": 2184,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2184"
+  },
+  {
+    "source": "issue",
+    "number": 2183,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2183"
+  },
+  {
+    "source": "issue",
+    "number": 2182,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2182"
+  },
+  {
+    "source": "issue",
+    "number": 2181,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2181"
+  },
+  {
+    "source": "issue",
+    "number": 2180,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2180"
+  },
+  {
+    "source": "issue",
+    "number": 2179,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2179"
+  },
+  {
+    "source": "issue",
+    "number": 2178,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2178"
+  },
+  {
+    "source": "issue",
+    "number": 2177,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2177"
+  },
+  {
+    "source": "issue",
+    "number": 2176,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2176"
+  },
+  {
+    "source": "issue",
+    "number": 2175,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2175"
+  },
+  {
+    "source": "issue",
+    "number": 2174,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2174"
+  },
+  {
+    "source": "issue",
+    "number": 2173,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2173"
+  },
+  {
+    "source": "issue",
+    "number": 2172,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2172"
+  },
+  {
+    "source": "issue",
+    "number": 2171,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2171"
+  },
+  {
+    "source": "issue",
+    "number": 2170,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2170"
+  },
+  {
+    "source": "issue",
+    "number": 2169,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2169"
+  },
+  {
+    "source": "issue",
+    "number": 2168,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2168"
+  },
+  {
+    "source": "issue",
+    "number": 2167,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2167"
+  },
+  {
+    "source": "issue",
+    "number": 2166,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2166"
+  },
+  {
+    "source": "issue",
+    "number": 2165,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2165"
+  },
+  {
+    "source": "issue",
+    "number": 2164,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2164"
+  },
+  {
+    "source": "issue",
+    "number": 2163,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2163"
+  },
+  {
+    "source": "issue",
+    "number": 2162,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2162"
+  },
+  {
+    "source": "issue",
+    "number": 2161,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2161"
+  },
+  {
+    "source": "issue",
+    "number": 2160,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2160"
+  },
+  {
+    "source": "issue",
+    "number": 2159,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2159"
+  },
+  {
+    "source": "issue",
+    "number": 2158,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2158"
+  },
+  {
+    "source": "issue",
+    "number": 2157,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2157"
+  },
+  {
+    "source": "issue",
+    "number": 2156,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2156"
+  },
+  {
+    "source": "issue",
+    "number": 2155,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2155"
+  },
+  {
+    "source": "issue",
+    "number": 2154,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2154"
+  },
+  {
+    "source": "issue",
+    "number": 2153,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2153"
+  },
+  {
+    "source": "issue",
+    "number": 2152,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2152"
+  },
+  {
+    "source": "issue",
+    "number": 2151,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2151"
+  },
+  {
+    "source": "issue",
+    "number": 2150,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2150"
+  },
+  {
+    "source": "issue",
+    "number": 2149,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2149"
+  },
+  {
+    "source": "issue",
+    "number": 2148,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2148"
+  },
+  {
+    "source": "issue",
+    "number": 2147,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2147"
+  },
+  {
+    "source": "issue",
+    "number": 2146,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2146"
+  },
+  {
+    "source": "issue",
+    "number": 2145,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2145"
+  },
+  {
+    "source": "issue",
+    "number": 2144,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2144"
+  },
+  {
+    "source": "issue",
+    "number": 2143,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2143"
+  },
+  {
+    "source": "issue",
+    "number": 2142,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2142"
+  },
+  {
+    "source": "issue",
+    "number": 2141,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2141"
+  },
+  {
+    "source": "issue",
+    "number": 2140,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2140"
+  },
+  {
+    "source": "issue",
+    "number": 2139,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2139"
+  },
+  {
+    "source": "issue",
+    "number": 2138,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2138"
+  },
+  {
+    "source": "issue",
+    "number": 2137,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2137"
+  },
+  {
+    "source": "issue",
+    "number": 2136,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2136"
+  },
+  {
+    "source": "issue",
+    "number": 2135,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2135"
+  },
+  {
+    "source": "issue",
+    "number": 2134,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2134"
+  },
+  {
+    "source": "issue",
+    "number": 2133,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2133"
+  },
+  {
+    "source": "issue",
+    "number": 2132,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2132"
+  },
+  {
+    "source": "issue",
+    "number": 2131,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2131"
+  },
+  {
+    "source": "issue",
+    "number": 2130,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2130"
+  },
+  {
+    "source": "issue",
+    "number": 2129,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2129"
+  },
+  {
+    "source": "issue",
+    "number": 2128,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2128"
+  },
+  {
+    "source": "issue",
+    "number": 2127,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2127"
+  },
+  {
+    "source": "issue",
+    "number": 2126,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2126"
+  },
+  {
+    "source": "issue",
+    "number": 2125,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2125"
+  },
+  {
+    "source": "issue",
+    "number": 2124,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2124"
+  },
+  {
+    "source": "issue",
+    "number": 2123,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2123"
+  },
+  {
+    "source": "issue",
+    "number": 2122,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2122"
+  },
+  {
+    "source": "issue",
+    "number": 2121,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2121"
+  },
+  {
+    "source": "issue",
+    "number": 2120,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2120"
+  },
+  {
+    "source": "issue",
+    "number": 2119,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2119"
+  },
+  {
+    "source": "issue",
+    "number": 2118,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2118"
+  },
+  {
+    "source": "issue",
+    "number": 2117,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2117"
+  },
+  {
+    "source": "issue",
+    "number": 2116,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2116"
+  },
+  {
+    "source": "issue",
+    "number": 2115,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2115"
+  },
+  {
+    "source": "issue",
+    "number": 2114,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2114"
+  },
+  {
+    "source": "issue",
+    "number": 2113,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2113"
+  },
+  {
+    "source": "issue",
+    "number": 2112,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2112"
+  },
+  {
+    "source": "issue",
+    "number": 2111,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2111"
+  },
+  {
+    "source": "issue",
+    "number": 2110,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2110"
+  },
+  {
+    "source": "issue",
+    "number": 2109,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2109"
+  },
+  {
+    "source": "issue",
+    "number": 2108,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2108"
+  },
+  {
+    "source": "issue",
+    "number": 2107,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2107"
+  },
+  {
+    "source": "issue",
+    "number": 2106,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2106"
+  },
+  {
+    "source": "issue",
+    "number": 2105,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2105"
+  },
+  {
+    "source": "issue",
+    "number": 2104,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2104"
+  },
+  {
+    "source": "issue",
+    "number": 2103,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2103"
+  },
+  {
+    "source": "issue",
+    "number": 2102,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2102"
+  },
+  {
+    "source": "issue",
+    "number": 2101,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2101"
+  },
+  {
+    "source": "issue",
+    "number": 2100,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2100"
+  },
+  {
+    "source": "issue",
+    "number": 2099,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2099"
+  },
+  {
+    "source": "issue",
+    "number": 2098,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2098"
+  },
+  {
+    "source": "issue",
+    "number": 2097,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2097"
+  },
+  {
+    "source": "issue",
+    "number": 2096,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2096"
+  },
+  {
+    "source": "issue",
+    "number": 2095,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2095"
+  },
+  {
+    "source": "issue",
+    "number": 2094,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2094"
+  },
+  {
+    "source": "issue",
+    "number": 2093,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2093"
+  },
+  {
+    "source": "issue",
+    "number": 2092,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2092"
+  },
+  {
+    "source": "issue",
+    "number": 2091,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2091"
+  },
+  {
+    "source": "issue",
+    "number": 2090,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2090"
+  },
+  {
+    "source": "issue",
+    "number": 2089,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2089"
+  },
+  {
+    "source": "issue",
+    "number": 2088,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2088"
+  },
+  {
+    "source": "issue",
+    "number": 2087,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2087"
+  },
+  {
+    "source": "issue",
+    "number": 2086,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2086"
+  },
+  {
+    "source": "issue",
+    "number": 2085,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2085"
+  },
+  {
+    "source": "issue",
+    "number": 2084,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2084"
+  },
+  {
+    "source": "issue",
+    "number": 2083,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2083"
+  },
+  {
+    "source": "issue",
+    "number": 2082,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2082"
+  },
+  {
+    "source": "issue",
+    "number": 2081,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2081"
+  },
+  {
+    "source": "issue",
+    "number": 2080,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2080"
+  },
+  {
+    "source": "issue",
+    "number": 2079,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2079"
+  },
+  {
+    "source": "issue",
+    "number": 2078,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2078"
+  },
+  {
+    "source": "issue",
+    "number": 2077,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2077"
+  },
+  {
+    "source": "issue",
+    "number": 2076,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2076"
+  },
+  {
+    "source": "issue",
+    "number": 2075,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2075"
+  },
+  {
+    "source": "issue",
+    "number": 2074,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2074"
+  },
+  {
+    "source": "issue",
+    "number": 2073,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2073"
+  },
+  {
+    "source": "issue",
+    "number": 2072,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2072"
+  },
+  {
+    "source": "issue",
+    "number": 2071,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2071"
+  },
+  {
+    "source": "issue",
+    "number": 2070,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2070"
+  },
+  {
+    "source": "issue",
+    "number": 2069,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2069"
+  },
+  {
+    "source": "issue",
+    "number": 2068,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2068"
+  },
+  {
+    "source": "issue",
+    "number": 2067,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2067"
+  },
+  {
+    "source": "issue",
+    "number": 2066,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2066"
+  },
+  {
+    "source": "issue",
+    "number": 2065,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2065"
+  },
+  {
+    "source": "issue",
+    "number": 2064,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2064"
+  },
+  {
+    "source": "issue",
+    "number": 2063,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2063"
+  },
+  {
+    "source": "issue",
+    "number": 2062,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2062"
+  },
+  {
+    "source": "issue",
+    "number": 2061,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2061"
+  },
+  {
+    "source": "issue",
+    "number": 2060,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2060"
+  },
+  {
+    "source": "issue",
+    "number": 2059,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2059"
+  },
+  {
+    "source": "issue",
+    "number": 2058,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2058"
+  },
+  {
+    "source": "issue",
+    "number": 2057,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2057"
+  },
+  {
+    "source": "issue",
+    "number": 2056,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2056"
+  },
+  {
+    "source": "issue",
+    "number": 2055,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2055"
+  },
+  {
+    "source": "issue",
+    "number": 2054,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2054"
+  },
+  {
+    "source": "issue",
+    "number": 2053,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2053"
+  },
+  {
+    "source": "issue",
+    "number": 2052,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2052"
+  },
+  {
+    "source": "issue",
+    "number": 2051,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2051"
+  },
+  {
+    "source": "issue",
+    "number": 2050,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2050"
+  },
+  {
+    "source": "issue",
+    "number": 2049,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2049"
+  },
+  {
+    "source": "issue",
+    "number": 2048,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2048"
+  },
+  {
+    "source": "issue",
+    "number": 2047,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2047"
+  },
+  {
+    "source": "issue",
+    "number": 2046,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2046"
+  },
+  {
+    "source": "issue",
+    "number": 2045,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2045"
+  },
+  {
+    "source": "issue",
+    "number": 2044,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2044"
+  },
+  {
+    "source": "issue",
+    "number": 2043,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2043"
+  },
+  {
+    "source": "issue",
+    "number": 2042,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2042"
+  },
+  {
+    "source": "issue",
+    "number": 2041,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2041"
+  },
+  {
+    "source": "issue",
+    "number": 2040,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2040"
+  },
+  {
+    "source": "issue",
+    "number": 2039,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2039"
+  },
+  {
+    "source": "issue",
+    "number": 2038,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2038"
+  },
+  {
+    "source": "issue",
+    "number": 2037,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2037"
+  },
+  {
+    "source": "issue",
+    "number": 2036,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2036"
+  },
+  {
+    "source": "issue",
+    "number": 2035,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2035"
+  },
+  {
+    "source": "issue",
+    "number": 2034,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2034"
+  },
+  {
+    "source": "issue",
+    "number": 2033,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2033"
+  },
+  {
+    "source": "issue",
+    "number": 2032,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2032"
+  },
+  {
+    "source": "issue",
+    "number": 2031,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2031"
+  },
+  {
+    "source": "issue",
+    "number": 2030,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2030"
+  },
+  {
+    "source": "issue",
+    "number": 2029,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2029"
+  },
+  {
+    "source": "issue",
+    "number": 2028,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2028"
+  },
+  {
+    "source": "issue",
+    "number": 2027,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2027"
+  },
+  {
+    "source": "issue",
+    "number": 2026,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2026"
+  },
+  {
+    "source": "issue",
+    "number": 2025,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2025"
+  },
+  {
+    "source": "issue",
+    "number": 2024,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2024"
+  },
+  {
+    "source": "issue",
+    "number": 2023,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2023"
+  },
+  {
+    "source": "issue",
+    "number": 2022,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2022"
+  },
+  {
+    "source": "issue",
+    "number": 2021,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2021"
+  },
+  {
+    "source": "issue",
+    "number": 2020,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2020"
+  },
+  {
+    "source": "issue",
+    "number": 2019,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2019"
+  },
+  {
+    "source": "issue",
+    "number": 2018,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2018"
+  },
+  {
+    "source": "issue",
+    "number": 2017,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2017"
+  },
+  {
+    "source": "issue",
+    "number": 2016,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2016"
+  },
+  {
+    "source": "issue",
+    "number": 2015,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2015"
+  },
+  {
+    "source": "issue",
+    "number": 2014,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2014"
+  },
+  {
+    "source": "issue",
+    "number": 2013,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2013"
+  },
+  {
+    "source": "issue",
+    "number": 2012,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2012"
+  },
+  {
+    "source": "issue",
+    "number": 2011,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2011"
+  },
+  {
+    "source": "issue",
+    "number": 2010,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2010"
+  },
+  {
+    "source": "issue",
+    "number": 2009,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2009"
+  },
+  {
+    "source": "issue",
+    "number": 2008,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2008"
+  },
+  {
+    "source": "issue",
+    "number": 2007,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2007"
+  },
+  {
+    "source": "issue",
+    "number": 2006,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2006"
+  },
+  {
+    "source": "issue",
+    "number": 2005,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2005"
+  },
+  {
+    "source": "issue",
+    "number": 2004,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2004"
+  },
+  {
+    "source": "issue",
+    "number": 2003,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2003"
+  },
+  {
+    "source": "issue",
+    "number": 2002,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2002"
+  },
+  {
+    "source": "issue",
+    "number": 2001,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2001"
+  },
+  {
+    "source": "issue",
+    "number": 2000,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/2000"
+  },
+  {
+    "source": "issue",
+    "number": 1999,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1999"
+  },
+  {
+    "source": "issue",
+    "number": 1998,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1998"
+  },
+  {
+    "source": "issue",
+    "number": 1997,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1997"
+  },
+  {
+    "source": "issue",
+    "number": 1996,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1996"
+  },
+  {
+    "source": "issue",
+    "number": 1995,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1995"
+  },
+  {
+    "source": "issue",
+    "number": 1994,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1994"
+  },
+  {
+    "source": "issue",
+    "number": 1993,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1993"
+  },
+  {
+    "source": "issue",
+    "number": 1992,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1992"
+  },
+  {
+    "source": "issue",
+    "number": 1991,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1991"
+  },
+  {
+    "source": "issue",
+    "number": 1990,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1990"
+  },
+  {
+    "source": "issue",
+    "number": 1989,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1989"
+  },
+  {
+    "source": "issue",
+    "number": 1988,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1988"
+  },
+  {
+    "source": "issue",
+    "number": 1987,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1987"
+  },
+  {
+    "source": "issue",
+    "number": 1986,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1986"
+  },
+  {
+    "source": "issue",
+    "number": 1985,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1985"
+  },
+  {
+    "source": "issue",
+    "number": 1984,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1984"
+  },
+  {
+    "source": "issue",
+    "number": 1983,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1983"
+  },
+  {
+    "source": "issue",
+    "number": 1982,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1982"
+  },
+  {
+    "source": "issue",
+    "number": 1981,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1981"
+  },
+  {
+    "source": "issue",
+    "number": 1980,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1980"
+  },
+  {
+    "source": "issue",
+    "number": 1979,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1979"
+  },
+  {
+    "source": "issue",
+    "number": 1978,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1978"
+  },
+  {
+    "source": "issue",
+    "number": 1977,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1977"
+  },
+  {
+    "source": "issue",
+    "number": 1976,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1976"
+  },
+  {
+    "source": "issue",
+    "number": 1975,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1975"
+  },
+  {
+    "source": "issue",
+    "number": 1974,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1974"
+  },
+  {
+    "source": "issue",
+    "number": 1973,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1973"
+  },
+  {
+    "source": "issue",
+    "number": 1972,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1972"
+  },
+  {
+    "source": "issue",
+    "number": 1971,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1971"
+  },
+  {
+    "source": "issue",
+    "number": 1970,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1970"
+  },
+  {
+    "source": "issue",
+    "number": 1969,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1969"
+  },
+  {
+    "source": "issue",
+    "number": 1968,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1968"
+  },
+  {
+    "source": "issue",
+    "number": 1967,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1967"
+  },
+  {
+    "source": "issue",
+    "number": 1966,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1966"
+  },
+  {
+    "source": "issue",
+    "number": 1965,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1965"
+  },
+  {
+    "source": "issue",
+    "number": 1964,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1964"
+  },
+  {
+    "source": "issue",
+    "number": 1963,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1963"
+  },
+  {
+    "source": "issue",
+    "number": 1962,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1962"
+  },
+  {
+    "source": "issue",
+    "number": 1961,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1961"
+  },
+  {
+    "source": "issue",
+    "number": 1960,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1960"
+  },
+  {
+    "source": "issue",
+    "number": 1959,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1959"
+  },
+  {
+    "source": "issue",
+    "number": 1958,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1958"
+  },
+  {
+    "source": "issue",
+    "number": 1957,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1957"
+  },
+  {
+    "source": "issue",
+    "number": 1956,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1956"
+  },
+  {
+    "source": "issue",
+    "number": 1955,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1955"
+  },
+  {
+    "source": "issue",
+    "number": 1954,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1954"
+  },
+  {
+    "source": "issue",
+    "number": 1953,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1953"
+  },
+  {
+    "source": "issue",
+    "number": 1952,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1952"
+  },
+  {
+    "source": "issue",
+    "number": 1951,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1951"
+  },
+  {
+    "source": "issue",
+    "number": 1950,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1950"
+  },
+  {
+    "source": "issue",
+    "number": 1949,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1949"
+  },
+  {
+    "source": "issue",
+    "number": 1948,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1948"
+  },
+  {
+    "source": "issue",
+    "number": 1947,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1947"
+  },
+  {
+    "source": "issue",
+    "number": 1946,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1946"
+  },
+  {
+    "source": "issue",
+    "number": 1945,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1945"
+  },
+  {
+    "source": "issue",
+    "number": 1944,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1944"
+  },
+  {
+    "source": "issue",
+    "number": 1943,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1943"
+  },
+  {
+    "source": "issue",
+    "number": 1942,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1942"
+  },
+  {
+    "source": "issue",
+    "number": 1941,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1941"
+  },
+  {
+    "source": "issue",
+    "number": 1940,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1940"
+  },
+  {
+    "source": "issue",
+    "number": 1939,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1939"
+  },
+  {
+    "source": "issue",
+    "number": 1938,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1938"
+  },
+  {
+    "source": "issue",
+    "number": 1937,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1937"
+  },
+  {
+    "source": "issue",
+    "number": 1936,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1936"
+  },
+  {
+    "source": "issue",
+    "number": 1935,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1935"
+  },
+  {
+    "source": "issue",
+    "number": 1934,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1934"
+  },
+  {
+    "source": "issue",
+    "number": 1933,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1933"
+  },
+  {
+    "source": "issue",
+    "number": 1932,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1932"
+  },
+  {
+    "source": "issue",
+    "number": 1931,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1931"
+  },
+  {
+    "source": "issue",
+    "number": 1930,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1930"
+  },
+  {
+    "source": "issue",
+    "number": 1929,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1929"
+  },
+  {
+    "source": "issue",
+    "number": 1928,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1928"
+  },
+  {
+    "source": "issue",
+    "number": 1927,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1927"
+  },
+  {
+    "source": "issue",
+    "number": 1926,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1926"
+  },
+  {
+    "source": "issue",
+    "number": 1925,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1925"
+  },
+  {
+    "source": "issue",
+    "number": 1924,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1924"
+  },
+  {
+    "source": "issue",
+    "number": 1923,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1923"
+  },
+  {
+    "source": "issue",
+    "number": 1922,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1922"
+  },
+  {
+    "source": "issue",
+    "number": 1921,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1921"
+  },
+  {
+    "source": "issue",
+    "number": 1920,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1920"
+  },
+  {
+    "source": "issue",
+    "number": 1919,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1919"
+  },
+  {
+    "source": "issue",
+    "number": 1918,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1918"
+  },
+  {
+    "source": "issue",
+    "number": 1917,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1917"
+  },
+  {
+    "source": "issue",
+    "number": 1916,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1916"
+  },
+  {
+    "source": "issue",
+    "number": 1915,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1915"
+  },
+  {
+    "source": "issue",
+    "number": 1914,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1914"
+  },
+  {
+    "source": "issue",
+    "number": 1913,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1913"
+  },
+  {
+    "source": "issue",
+    "number": 1912,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1912"
+  },
+  {
+    "source": "issue",
+    "number": 1911,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1911"
+  },
+  {
+    "source": "issue",
+    "number": 1910,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1910"
+  },
+  {
+    "source": "issue",
+    "number": 1909,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1909"
+  },
+  {
+    "source": "issue",
+    "number": 1908,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1908"
+  },
+  {
+    "source": "issue",
+    "number": 1907,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1907"
+  },
+  {
+    "source": "issue",
+    "number": 1906,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1906"
+  },
+  {
+    "source": "issue",
+    "number": 1905,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1905"
+  },
+  {
+    "source": "issue",
+    "number": 1904,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1904"
+  },
+  {
+    "source": "issue",
+    "number": 1903,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1903"
+  },
+  {
+    "source": "issue",
+    "number": 1902,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1902"
+  },
+  {
+    "source": "issue",
+    "number": 1901,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1901"
+  },
+  {
+    "source": "issue",
+    "number": 1900,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1900"
+  },
+  {
+    "source": "issue",
+    "number": 1899,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1899"
+  },
+  {
+    "source": "issue",
+    "number": 1898,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1898"
+  },
+  {
+    "source": "issue",
+    "number": 1897,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1897"
+  },
+  {
+    "source": "issue",
+    "number": 1896,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1896"
+  },
+  {
+    "source": "issue",
+    "number": 1895,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1895"
+  },
+  {
+    "source": "issue",
+    "number": 1894,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1894"
+  },
+  {
+    "source": "issue",
+    "number": 1893,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1893"
+  },
+  {
+    "source": "issue",
+    "number": 1892,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1892"
+  },
+  {
+    "source": "issue",
+    "number": 1891,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1891"
+  },
+  {
+    "source": "issue",
+    "number": 1890,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1890"
+  },
+  {
+    "source": "issue",
+    "number": 1889,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1889"
+  },
+  {
+    "source": "issue",
+    "number": 1888,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1888"
+  },
+  {
+    "source": "issue",
+    "number": 1887,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1887"
+  },
+  {
+    "source": "issue",
+    "number": 1886,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1886"
+  },
+  {
+    "source": "issue",
+    "number": 1885,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1885"
+  },
+  {
+    "source": "issue",
+    "number": 1884,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1884"
+  },
+  {
+    "source": "issue",
+    "number": 1883,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1883"
+  },
+  {
+    "source": "issue",
+    "number": 1882,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1882"
+  },
+  {
+    "source": "issue",
+    "number": 1881,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1881"
+  },
+  {
+    "source": "issue",
+    "number": 1880,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1880"
+  },
+  {
+    "source": "issue",
+    "number": 1879,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1879"
+  },
+  {
+    "source": "issue",
+    "number": 1878,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1878"
+  },
+  {
+    "source": "issue",
+    "number": 1877,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1877"
+  },
+  {
+    "source": "issue",
+    "number": 1876,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1876"
+  },
+  {
+    "source": "issue",
+    "number": 1875,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1875"
+  },
+  {
+    "source": "issue",
+    "number": 1874,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1874"
+  },
+  {
+    "source": "issue",
+    "number": 1873,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1873"
+  },
+  {
+    "source": "issue",
+    "number": 1872,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1872"
+  },
+  {
+    "source": "issue",
+    "number": 1871,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1871"
+  },
+  {
+    "source": "issue",
+    "number": 1870,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1870"
+  },
+  {
+    "source": "issue",
+    "number": 1869,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1869"
+  },
+  {
+    "source": "issue",
+    "number": 1868,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1868"
+  },
+  {
+    "source": "issue",
+    "number": 1867,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1867"
+  },
+  {
+    "source": "issue",
+    "number": 1866,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1866"
+  },
+  {
+    "source": "issue",
+    "number": 1865,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1865"
+  },
+  {
+    "source": "issue",
+    "number": 1864,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1864"
+  },
+  {
+    "source": "issue",
+    "number": 1863,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1863"
+  },
+  {
+    "source": "issue",
+    "number": 1862,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1862"
+  },
+  {
+    "source": "issue",
+    "number": 1861,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1861"
+  },
+  {
+    "source": "issue",
+    "number": 1860,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1860"
+  },
+  {
+    "source": "issue",
+    "number": 1859,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1859"
+  },
+  {
+    "source": "issue",
+    "number": 1858,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1858"
+  },
+  {
+    "source": "issue",
+    "number": 1857,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1857"
+  },
+  {
+    "source": "issue",
+    "number": 1856,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1856"
+  },
+  {
+    "source": "issue",
+    "number": 1855,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1855"
+  },
+  {
+    "source": "issue",
+    "number": 1854,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1854"
+  },
+  {
+    "source": "issue",
+    "number": 1853,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1853"
+  },
+  {
+    "source": "issue",
+    "number": 1852,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1852"
+  },
+  {
+    "source": "issue",
+    "number": 1851,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1851"
+  },
+  {
+    "source": "issue",
+    "number": 1850,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1850"
+  },
+  {
+    "source": "issue",
+    "number": 1849,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1849"
+  },
+  {
+    "source": "issue",
+    "number": 1848,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1848"
+  },
+  {
+    "source": "issue",
+    "number": 1847,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1847"
+  },
+  {
+    "source": "issue",
+    "number": 1846,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1846"
+  },
+  {
+    "source": "issue",
+    "number": 1845,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1845"
+  },
+  {
+    "source": "issue",
+    "number": 1844,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1844"
+  },
+  {
+    "source": "issue",
+    "number": 1843,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1843"
+  },
+  {
+    "source": "issue",
+    "number": 1842,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1842"
+  },
+  {
+    "source": "issue",
+    "number": 1841,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1841"
+  },
+  {
+    "source": "issue",
+    "number": 1840,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1840"
+  },
+  {
+    "source": "issue",
+    "number": 1839,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1839"
+  },
+  {
+    "source": "issue",
+    "number": 1838,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1838"
+  },
+  {
+    "source": "issue",
+    "number": 1837,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1837"
+  },
+  {
+    "source": "issue",
+    "number": 1836,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1836"
+  },
+  {
+    "source": "issue",
+    "number": 1835,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1835"
+  },
+  {
+    "source": "issue",
+    "number": 1834,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1834"
+  },
+  {
+    "source": "issue",
+    "number": 1833,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1833"
+  },
+  {
+    "source": "issue",
+    "number": 1832,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1832"
+  },
+  {
+    "source": "issue",
+    "number": 1831,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1831"
+  },
+  {
+    "source": "issue",
+    "number": 1830,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1830"
+  },
+  {
+    "source": "issue",
+    "number": 1829,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1829"
+  },
+  {
+    "source": "issue",
+    "number": 1828,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1828"
+  },
+  {
+    "source": "issue",
+    "number": 1827,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1827"
+  },
+  {
+    "source": "issue",
+    "number": 1826,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1826"
+  },
+  {
+    "source": "issue",
+    "number": 1825,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1825"
+  },
+  {
+    "source": "issue",
+    "number": 1824,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1824"
+  },
+  {
+    "source": "issue",
+    "number": 1823,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1823"
+  },
+  {
+    "source": "issue",
+    "number": 1822,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1822"
+  },
+  {
+    "source": "issue",
+    "number": 1821,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1821"
+  },
+  {
+    "source": "issue",
+    "number": 1820,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1820"
+  },
+  {
+    "source": "issue",
+    "number": 1819,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1819"
+  },
+  {
+    "source": "issue",
+    "number": 1818,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1818"
+  },
+  {
+    "source": "issue",
+    "number": 1817,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1817"
+  },
+  {
+    "source": "issue",
+    "number": 1816,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1816"
+  },
+  {
+    "source": "issue",
+    "number": 1815,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1815"
+  },
+  {
+    "source": "issue",
+    "number": 1814,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1814"
+  },
+  {
+    "source": "issue",
+    "number": 1813,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1813"
+  },
+  {
+    "source": "issue",
+    "number": 1812,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1812"
+  },
+  {
+    "source": "issue",
+    "number": 1811,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1811"
+  },
+  {
+    "source": "issue",
+    "number": 1810,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1810"
+  },
+  {
+    "source": "issue",
+    "number": 1809,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1809"
+  },
+  {
+    "source": "issue",
+    "number": 1808,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1808"
+  },
+  {
+    "source": "issue",
+    "number": 1807,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1807"
+  },
+  {
+    "source": "issue",
+    "number": 1806,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1806"
+  },
+  {
+    "source": "issue",
+    "number": 1805,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1805"
+  },
+  {
+    "source": "issue",
+    "number": 1804,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1804"
+  },
+  {
+    "source": "issue",
+    "number": 1803,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1803"
+  },
+  {
+    "source": "issue",
+    "number": 1802,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1802"
+  },
+  {
+    "source": "issue",
+    "number": 1801,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1801"
+  },
+  {
+    "source": "issue",
+    "number": 1800,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1800"
+  },
+  {
+    "source": "issue",
+    "number": 1799,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1799"
+  },
+  {
+    "source": "issue",
+    "number": 1798,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1798"
+  },
+  {
+    "source": "issue",
+    "number": 1797,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1797"
+  },
+  {
+    "source": "issue",
+    "number": 1796,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1796"
+  },
+  {
+    "source": "issue",
+    "number": 1795,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1795"
+  },
+  {
+    "source": "issue",
+    "number": 1794,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1794"
+  },
+  {
+    "source": "issue",
+    "number": 1793,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1793"
+  },
+  {
+    "source": "issue",
+    "number": 1792,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1792"
+  },
+  {
+    "source": "issue",
+    "number": 1791,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1791"
+  },
+  {
+    "source": "issue",
+    "number": 1790,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1790"
+  },
+  {
+    "source": "issue",
+    "number": 1789,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1789"
+  },
+  {
+    "source": "issue",
+    "number": 1788,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1788"
+  },
+  {
+    "source": "issue",
+    "number": 1787,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1787"
+  },
+  {
+    "source": "issue",
+    "number": 1786,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1786"
+  },
+  {
+    "source": "issue",
+    "number": 1785,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1785"
+  },
+  {
+    "source": "issue",
+    "number": 1784,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1784"
+  },
+  {
+    "source": "issue",
+    "number": 1783,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1783"
+  },
+  {
+    "source": "issue",
+    "number": 1782,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1782"
+  },
+  {
+    "source": "issue",
+    "number": 1781,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1781"
+  },
+  {
+    "source": "issue",
+    "number": 1780,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1780"
+  },
+  {
+    "source": "issue",
+    "number": 1779,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1779"
+  },
+  {
+    "source": "issue",
+    "number": 1778,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1778"
+  },
+  {
+    "source": "issue",
+    "number": 1777,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1777"
+  },
+  {
+    "source": "issue",
+    "number": 1776,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1776"
+  },
+  {
+    "source": "issue",
+    "number": 1775,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1775"
+  },
+  {
+    "source": "issue",
+    "number": 1774,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1774"
+  },
+  {
+    "source": "issue",
+    "number": 1773,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1773"
+  },
+  {
+    "source": "issue",
+    "number": 1772,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1772"
+  },
+  {
+    "source": "issue",
+    "number": 1771,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1771"
+  },
+  {
+    "source": "issue",
+    "number": 1770,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1770"
+  },
+  {
+    "source": "issue",
+    "number": 1769,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1769"
+  },
+  {
+    "source": "issue",
+    "number": 1768,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1768"
+  },
+  {
+    "source": "issue",
+    "number": 1767,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1767"
+  },
+  {
+    "source": "issue",
+    "number": 1766,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1766"
+  },
+  {
+    "source": "issue",
+    "number": 1765,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1765"
+  },
+  {
+    "source": "issue",
+    "number": 1764,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1764"
+  },
+  {
+    "source": "issue",
+    "number": 1763,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1763"
+  },
+  {
+    "source": "issue",
+    "number": 1762,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1762"
+  },
+  {
+    "source": "issue",
+    "number": 1761,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1761"
+  },
+  {
+    "source": "issue",
+    "number": 1760,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1760"
+  },
+  {
+    "source": "issue",
+    "number": 1759,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1759"
+  },
+  {
+    "source": "issue",
+    "number": 1758,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1758"
+  },
+  {
+    "source": "issue",
+    "number": 1757,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1757"
+  },
+  {
+    "source": "issue",
+    "number": 1756,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1756"
+  },
+  {
+    "source": "issue",
+    "number": 1755,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1755"
+  },
+  {
+    "source": "issue",
+    "number": 1754,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1754"
+  },
+  {
+    "source": "issue",
+    "number": 1753,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1753"
+  },
+  {
+    "source": "issue",
+    "number": 1752,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1752"
+  },
+  {
+    "source": "issue",
+    "number": 1751,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1751"
+  },
+  {
+    "source": "issue",
+    "number": 1750,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1750"
+  },
+  {
+    "source": "issue",
+    "number": 1749,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1749"
+  },
+  {
+    "source": "issue",
+    "number": 1748,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1748"
+  },
+  {
+    "source": "issue",
+    "number": 1747,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1747"
+  },
+  {
+    "source": "issue",
+    "number": 1746,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1746"
+  },
+  {
+    "source": "issue",
+    "number": 1745,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1745"
+  },
+  {
+    "source": "issue",
+    "number": 1744,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1744"
+  },
+  {
+    "source": "issue",
+    "number": 1743,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1743"
+  },
+  {
+    "source": "issue",
+    "number": 1742,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1742"
+  },
+  {
+    "source": "issue",
+    "number": 1741,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1741"
+  },
+  {
+    "source": "issue",
+    "number": 1740,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1740"
+  },
+  {
+    "source": "issue",
+    "number": 1739,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1739"
+  },
+  {
+    "source": "issue",
+    "number": 1738,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1738"
+  },
+  {
+    "source": "issue",
+    "number": 1737,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1737"
+  },
+  {
+    "source": "issue",
+    "number": 1736,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1736"
+  },
+  {
+    "source": "issue",
+    "number": 1735,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1735"
+  },
+  {
+    "source": "issue",
+    "number": 1734,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1734"
+  },
+  {
+    "source": "issue",
+    "number": 1733,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1733"
+  },
+  {
+    "source": "issue",
+    "number": 1732,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1732"
+  },
+  {
+    "source": "issue",
+    "number": 1731,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1731"
+  },
+  {
+    "source": "issue",
+    "number": 1730,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1730"
+  },
+  {
+    "source": "issue",
+    "number": 1729,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1729"
+  },
+  {
+    "source": "issue",
+    "number": 1728,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1728"
+  },
+  {
+    "source": "issue",
+    "number": 1727,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1727"
+  },
+  {
+    "source": "issue",
+    "number": 1726,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1726"
+  },
+  {
+    "source": "issue",
+    "number": 1725,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1725"
+  },
+  {
+    "source": "issue",
+    "number": 1724,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1724"
+  },
+  {
+    "source": "issue",
+    "number": 1723,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1723"
+  },
+  {
+    "source": "issue",
+    "number": 1722,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1722"
+  },
+  {
+    "source": "issue",
+    "number": 1721,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1721"
+  },
+  {
+    "source": "issue",
+    "number": 1720,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1720"
+  },
+  {
+    "source": "issue",
+    "number": 1719,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1719"
+  },
+  {
+    "source": "issue",
+    "number": 1718,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1718"
+  },
+  {
+    "source": "issue",
+    "number": 1717,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1717"
+  },
+  {
+    "source": "issue",
+    "number": 1716,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1716"
+  },
+  {
+    "source": "issue",
+    "number": 1715,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1715"
+  },
+  {
+    "source": "issue",
+    "number": 1714,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1714"
+  },
+  {
+    "source": "issue",
+    "number": 1713,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1713"
+  },
+  {
+    "source": "issue",
+    "number": 1712,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1712"
+  },
+  {
+    "source": "issue",
+    "number": 1711,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1711"
+  },
+  {
+    "source": "issue",
+    "number": 1710,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1710"
+  },
+  {
+    "source": "issue",
+    "number": 1709,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1709"
+  },
+  {
+    "source": "issue",
+    "number": 1708,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1708"
+  },
+  {
+    "source": "issue",
+    "number": 1707,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1707"
+  },
+  {
+    "source": "issue",
+    "number": 1706,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1706"
+  },
+  {
+    "source": "issue",
+    "number": 1705,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1705"
+  },
+  {
+    "source": "issue",
+    "number": 1704,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1704"
+  },
+  {
+    "source": "issue",
+    "number": 1703,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1703"
+  },
+  {
+    "source": "issue",
+    "number": 1702,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1702"
+  },
+  {
+    "source": "issue",
+    "number": 1701,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1701"
+  },
+  {
+    "source": "issue",
+    "number": 1700,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1700"
+  },
+  {
+    "source": "issue",
+    "number": 1699,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1699"
+  },
+  {
+    "source": "issue",
+    "number": 1698,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1698"
+  },
+  {
+    "source": "issue",
+    "number": 1697,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1697"
+  },
+  {
+    "source": "issue",
+    "number": 1696,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1696"
+  },
+  {
+    "source": "issue",
+    "number": 1695,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1695"
+  },
+  {
+    "source": "issue",
+    "number": 1694,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1694"
+  },
+  {
+    "source": "issue",
+    "number": 1693,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1693"
+  },
+  {
+    "source": "issue",
+    "number": 1692,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1692"
+  },
+  {
+    "source": "issue",
+    "number": 1691,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1691"
+  },
+  {
+    "source": "issue",
+    "number": 1690,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1690"
+  },
+  {
+    "source": "issue",
+    "number": 1689,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1689"
+  },
+  {
+    "source": "issue",
+    "number": 1688,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1688"
+  },
+  {
+    "source": "issue",
+    "number": 1687,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1687"
+  },
+  {
+    "source": "issue",
+    "number": 1686,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1686"
+  },
+  {
+    "source": "issue",
+    "number": 1685,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1685"
+  },
+  {
+    "source": "issue",
+    "number": 1684,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1684"
+  },
+  {
+    "source": "issue",
+    "number": 1683,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1683"
+  },
+  {
+    "source": "issue",
+    "number": 1682,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1682"
+  },
+  {
+    "source": "issue",
+    "number": 1681,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1681"
+  },
+  {
+    "source": "issue",
+    "number": 1680,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1680"
+  },
+  {
+    "source": "issue",
+    "number": 1679,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1679"
+  },
+  {
+    "source": "issue",
+    "number": 1678,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1678"
+  },
+  {
+    "source": "issue",
+    "number": 1677,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1677"
+  },
+  {
+    "source": "issue",
+    "number": 1676,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1676"
+  },
+  {
+    "source": "issue",
+    "number": 1675,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1675"
+  },
+  {
+    "source": "issue",
+    "number": 1674,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1674"
+  },
+  {
+    "source": "issue",
+    "number": 1673,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1673"
+  },
+  {
+    "source": "issue",
+    "number": 1672,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1672"
+  },
+  {
+    "source": "issue",
+    "number": 1671,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1671"
+  },
+  {
+    "source": "issue",
+    "number": 1670,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1670"
+  },
+  {
+    "source": "issue",
+    "number": 1669,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1669"
+  },
+  {
+    "source": "issue",
+    "number": 1668,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1668"
+  },
+  {
+    "source": "issue",
+    "number": 1667,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1667"
+  },
+  {
+    "source": "issue",
+    "number": 1666,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1666"
+  },
+  {
+    "source": "issue",
+    "number": 1665,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1665"
+  },
+  {
+    "source": "issue",
+    "number": 1664,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1664"
+  },
+  {
+    "source": "issue",
+    "number": 1663,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1663"
+  },
+  {
+    "source": "issue",
+    "number": 1662,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1662"
+  },
+  {
+    "source": "issue",
+    "number": 1661,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1661"
+  },
+  {
+    "source": "issue",
+    "number": 1660,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1660"
+  },
+  {
+    "source": "issue",
+    "number": 1659,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1659"
+  },
+  {
+    "source": "issue",
+    "number": 1658,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1658"
+  },
+  {
+    "source": "issue",
+    "number": 1657,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1657"
+  },
+  {
+    "source": "issue",
+    "number": 1656,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1656"
+  },
+  {
+    "source": "issue",
+    "number": 1655,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1655"
+  },
+  {
+    "source": "issue",
+    "number": 1654,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1654"
+  },
+  {
+    "source": "issue",
+    "number": 1653,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1653"
+  },
+  {
+    "source": "issue",
+    "number": 1652,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1652"
+  },
+  {
+    "source": "issue",
+    "number": 1651,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1651"
+  },
+  {
+    "source": "issue",
+    "number": 1650,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1650"
+  },
+  {
+    "source": "issue",
+    "number": 1649,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1649"
+  },
+  {
+    "source": "issue",
+    "number": 1648,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1648"
+  },
+  {
+    "source": "issue",
+    "number": 1647,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1647"
+  },
+  {
+    "source": "issue",
+    "number": 1646,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1646"
+  },
+  {
+    "source": "issue",
+    "number": 1645,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1645"
+  },
+  {
+    "source": "issue",
+    "number": 1644,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1644"
+  },
+  {
+    "source": "issue",
+    "number": 1643,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1643"
+  },
+  {
+    "source": "issue",
+    "number": 1642,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1642"
+  },
+  {
+    "source": "issue",
+    "number": 1641,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1641"
+  },
+  {
+    "source": "issue",
+    "number": 1640,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1640"
+  },
+  {
+    "source": "issue",
+    "number": 1639,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1639"
+  },
+  {
+    "source": "issue",
+    "number": 1638,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1638"
+  },
+  {
+    "source": "issue",
+    "number": 1637,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1637"
+  },
+  {
+    "source": "issue",
+    "number": 1636,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1636"
+  },
+  {
+    "source": "issue",
+    "number": 1635,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1635"
+  },
+  {
+    "source": "issue",
+    "number": 1634,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1634"
+  },
+  {
+    "source": "issue",
+    "number": 1633,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1633"
+  },
+  {
+    "source": "issue",
+    "number": 1632,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1632"
+  },
+  {
+    "source": "issue",
+    "number": 1631,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1631"
+  },
+  {
+    "source": "issue",
+    "number": 1630,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1630"
+  },
+  {
+    "source": "issue",
+    "number": 1629,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1629"
+  },
+  {
+    "source": "issue",
+    "number": 1628,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1628"
+  },
+  {
+    "source": "issue",
+    "number": 1627,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1627"
+  },
+  {
+    "source": "issue",
+    "number": 1626,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1626"
+  },
+  {
+    "source": "issue",
+    "number": 1625,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1625"
+  },
+  {
+    "source": "issue",
+    "number": 1624,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1624"
+  },
+  {
+    "source": "issue",
+    "number": 1623,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1623"
+  },
+  {
+    "source": "issue",
+    "number": 1622,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1622"
+  },
+  {
+    "source": "issue",
+    "number": 1621,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1621"
+  },
+  {
+    "source": "issue",
+    "number": 1620,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1620"
+  },
+  {
+    "source": "issue",
+    "number": 1619,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1619"
+  },
+  {
+    "source": "issue",
+    "number": 1618,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1618"
+  },
+  {
+    "source": "issue",
+    "number": 1617,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1617"
+  },
+  {
+    "source": "issue",
+    "number": 1616,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1616"
+  },
+  {
+    "source": "issue",
+    "number": 1615,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1615"
+  },
+  {
+    "source": "issue",
+    "number": 1614,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1614"
+  },
+  {
+    "source": "issue",
+    "number": 1613,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1613"
+  },
+  {
+    "source": "issue",
+    "number": 1612,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1612"
+  },
+  {
+    "source": "issue",
+    "number": 1611,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1611"
+  },
+  {
+    "source": "issue",
+    "number": 1610,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1610"
+  },
+  {
+    "source": "issue",
+    "number": 1609,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1609"
+  },
+  {
+    "source": "issue",
+    "number": 1608,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1608"
+  },
+  {
+    "source": "issue",
+    "number": 1607,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1607"
+  },
+  {
+    "source": "issue",
+    "number": 1606,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1606"
+  },
+  {
+    "source": "issue",
+    "number": 1605,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1605"
+  },
+  {
+    "source": "issue",
+    "number": 1604,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1604"
+  },
+  {
+    "source": "issue",
+    "number": 1603,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1603"
+  },
+  {
+    "source": "issue",
+    "number": 1602,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1602"
+  },
+  {
+    "source": "issue",
+    "number": 1601,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1601"
+  },
+  {
+    "source": "issue",
+    "number": 1600,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1600"
+  },
+  {
+    "source": "issue",
+    "number": 1599,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1599"
+  },
+  {
+    "source": "issue",
+    "number": 1598,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1598"
+  },
+  {
+    "source": "issue",
+    "number": 1597,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1597"
+  },
+  {
+    "source": "issue",
+    "number": 1596,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1596"
+  },
+  {
+    "source": "issue",
+    "number": 1595,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1595"
+  },
+  {
+    "source": "issue",
+    "number": 1594,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1594"
+  },
+  {
+    "source": "issue",
+    "number": 1593,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1593"
+  },
+  {
+    "source": "issue",
+    "number": 1592,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1592"
+  },
+  {
+    "source": "issue",
+    "number": 1591,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1591"
+  },
+  {
+    "source": "issue",
+    "number": 1590,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1590"
+  },
+  {
+    "source": "issue",
+    "number": 1589,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1589"
+  },
+  {
+    "source": "issue",
+    "number": 1588,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1588"
+  },
+  {
+    "source": "issue",
+    "number": 1587,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1587"
+  },
+  {
+    "source": "issue",
+    "number": 1586,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1586"
+  },
+  {
+    "source": "issue",
+    "number": 1585,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1585"
+  },
+  {
+    "source": "issue",
+    "number": 1584,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1584"
+  },
+  {
+    "source": "issue",
+    "number": 1583,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1583"
+  },
+  {
+    "source": "issue",
+    "number": 1582,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1582"
+  },
+  {
+    "source": "issue",
+    "number": 1581,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1581"
+  },
+  {
+    "source": "issue",
+    "number": 1580,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1580"
+  },
+  {
+    "source": "issue",
+    "number": 1579,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1579"
+  },
+  {
+    "source": "issue",
+    "number": 1578,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1578"
+  },
+  {
+    "source": "issue",
+    "number": 1577,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1577"
+  },
+  {
+    "source": "issue",
+    "number": 1576,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1576"
+  },
+  {
+    "source": "issue",
+    "number": 1575,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1575"
+  },
+  {
+    "source": "issue",
+    "number": 1574,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1574"
+  },
+  {
+    "source": "issue",
+    "number": 1573,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1573"
+  },
+  {
+    "source": "issue",
+    "number": 1572,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1572"
+  },
+  {
+    "source": "issue",
+    "number": 1571,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1571"
+  },
+  {
+    "source": "issue",
+    "number": 1570,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1570"
+  },
+  {
+    "source": "issue",
+    "number": 1569,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1569"
+  },
+  {
+    "source": "issue",
+    "number": 1568,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1568"
+  },
+  {
+    "source": "issue",
+    "number": 1567,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1567"
+  },
+  {
+    "source": "issue",
+    "number": 1566,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1566"
+  },
+  {
+    "source": "issue",
+    "number": 1565,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1565"
+  },
+  {
+    "source": "issue",
+    "number": 1564,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1564"
+  },
+  {
+    "source": "issue",
+    "number": 1563,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1563"
+  },
+  {
+    "source": "issue",
+    "number": 1562,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1562"
+  },
+  {
+    "source": "issue",
+    "number": 1561,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1561"
+  },
+  {
+    "source": "issue",
+    "number": 1560,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1560"
+  },
+  {
+    "source": "issue",
+    "number": 1559,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1559"
+  },
+  {
+    "source": "issue",
+    "number": 1558,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1558"
+  },
+  {
+    "source": "issue",
+    "number": 1557,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1557"
+  },
+  {
+    "source": "issue",
+    "number": 1556,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1556"
+  },
+  {
+    "source": "issue",
+    "number": 1555,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1555"
+  },
+  {
+    "source": "issue",
+    "number": 1554,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1554"
+  },
+  {
+    "source": "issue",
+    "number": 1553,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1553"
+  },
+  {
+    "source": "issue",
+    "number": 1552,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1552"
+  },
+  {
+    "source": "issue",
+    "number": 1551,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1551"
+  },
+  {
+    "source": "issue",
+    "number": 1550,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1550"
+  },
+  {
+    "source": "issue",
+    "number": 1549,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1549"
+  },
+  {
+    "source": "issue",
+    "number": 1548,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1548"
+  },
+  {
+    "source": "issue",
+    "number": 1547,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1547"
+  },
+  {
+    "source": "issue",
+    "number": 1546,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1546"
+  },
+  {
+    "source": "issue",
+    "number": 1545,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1545"
+  },
+  {
+    "source": "issue",
+    "number": 1544,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1544"
+  },
+  {
+    "source": "issue",
+    "number": 1543,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1543"
+  },
+  {
+    "source": "issue",
+    "number": 1542,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1542"
+  },
+  {
+    "source": "issue",
+    "number": 1541,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1541"
+  },
+  {
+    "source": "issue",
+    "number": 1540,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1540"
+  },
+  {
+    "source": "issue",
+    "number": 1539,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1539"
+  },
+  {
+    "source": "issue",
+    "number": 1538,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1538"
+  },
+  {
+    "source": "issue",
+    "number": 1537,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1537"
+  },
+  {
+    "source": "issue",
+    "number": 1536,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1536"
+  },
+  {
+    "source": "issue",
+    "number": 1535,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1535"
+  },
+  {
+    "source": "issue",
+    "number": 1534,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1534"
+  },
+  {
+    "source": "issue",
+    "number": 1533,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1533"
+  },
+  {
+    "source": "issue",
+    "number": 1532,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1532"
+  },
+  {
+    "source": "issue",
+    "number": 1531,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1531"
+  },
+  {
+    "source": "issue",
+    "number": 1530,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1530"
+  },
+  {
+    "source": "issue",
+    "number": 1529,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1529"
+  },
+  {
+    "source": "issue",
+    "number": 1528,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1528"
+  },
+  {
+    "source": "issue",
+    "number": 1527,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1527"
+  },
+  {
+    "source": "issue",
+    "number": 1526,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1526"
+  },
+  {
+    "source": "issue",
+    "number": 1525,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1525"
+  },
+  {
+    "source": "issue",
+    "number": 1524,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1524"
+  },
+  {
+    "source": "issue",
+    "number": 1523,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1523"
+  },
+  {
+    "source": "issue",
+    "number": 1522,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1522"
+  },
+  {
+    "source": "issue",
+    "number": 1521,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1521"
+  },
+  {
+    "source": "issue",
+    "number": 1520,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1520"
+  },
+  {
+    "source": "issue",
+    "number": 1519,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1519"
+  },
+  {
+    "source": "issue",
+    "number": 1518,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1518"
+  },
+  {
+    "source": "issue",
+    "number": 1517,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1517"
+  },
+  {
+    "source": "issue",
+    "number": 1516,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1516"
+  },
+  {
+    "source": "issue",
+    "number": 1515,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1515"
+  },
+  {
+    "source": "issue",
+    "number": 1514,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1514"
+  },
+  {
+    "source": "issue",
+    "number": 1513,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1513"
+  },
+  {
+    "source": "issue",
+    "number": 1512,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1512"
+  },
+  {
+    "source": "issue",
+    "number": 1511,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1511"
+  },
+  {
+    "source": "issue",
+    "number": 1510,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1510"
+  },
+  {
+    "source": "issue",
+    "number": 1509,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1509"
+  },
+  {
+    "source": "issue",
+    "number": 1508,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1508"
+  },
+  {
+    "source": "issue",
+    "number": 1507,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1507"
+  },
+  {
+    "source": "issue",
+    "number": 1506,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1506"
+  },
+  {
+    "source": "issue",
+    "number": 1505,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1505"
+  },
+  {
+    "source": "issue",
+    "number": 1504,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1504"
+  },
+  {
+    "source": "issue",
+    "number": 1503,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1503"
+  },
+  {
+    "source": "issue",
+    "number": 1502,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1502"
+  },
+  {
+    "source": "issue",
+    "number": 1501,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1501"
+  },
+  {
+    "source": "issue",
+    "number": 1500,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1500"
+  },
+  {
+    "source": "issue",
+    "number": 1499,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1499"
+  },
+  {
+    "source": "issue",
+    "number": 1498,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1498"
+  },
+  {
+    "source": "issue",
+    "number": 1497,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1497"
+  },
+  {
+    "source": "issue",
+    "number": 1496,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1496"
+  },
+  {
+    "source": "issue",
+    "number": 1495,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1495"
+  },
+  {
+    "source": "issue",
+    "number": 1494,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1494"
+  },
+  {
+    "source": "issue",
+    "number": 1493,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1493"
+  },
+  {
+    "source": "issue",
+    "number": 1492,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1492"
+  },
+  {
+    "source": "issue",
+    "number": 1491,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1491"
+  },
+  {
+    "source": "issue",
+    "number": 1490,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1490"
+  },
+  {
+    "source": "issue",
+    "number": 1489,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1489"
+  },
+  {
+    "source": "issue",
+    "number": 1488,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1488"
+  },
+  {
+    "source": "issue",
+    "number": 1487,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1487"
+  },
+  {
+    "source": "issue",
+    "number": 1486,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1486"
+  },
+  {
+    "source": "issue",
+    "number": 1485,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1485"
+  },
+  {
+    "source": "issue",
+    "number": 1484,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1484"
+  },
+  {
+    "source": "issue",
+    "number": 1483,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1483"
+  },
+  {
+    "source": "issue",
+    "number": 1482,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1482"
+  },
+  {
+    "source": "issue",
+    "number": 1481,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1481"
+  },
+  {
+    "source": "issue",
+    "number": 1480,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1480"
+  },
+  {
+    "source": "issue",
+    "number": 1479,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1479"
+  },
+  {
+    "source": "issue",
+    "number": 1478,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1478"
+  },
+  {
+    "source": "issue",
+    "number": 1477,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1477"
+  },
+  {
+    "source": "issue",
+    "number": 1476,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1476"
+  },
+  {
+    "source": "issue",
+    "number": 1475,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1475"
+  },
+  {
+    "source": "issue",
+    "number": 1474,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1474"
+  },
+  {
+    "source": "issue",
+    "number": 1473,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1473"
+  },
+  {
+    "source": "issue",
+    "number": 1472,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1472"
+  },
+  {
+    "source": "issue",
+    "number": 1471,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1471"
+  },
+  {
+    "source": "issue",
+    "number": 1470,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1470"
+  },
+  {
+    "source": "issue",
+    "number": 1469,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1469"
+  },
+  {
+    "source": "issue",
+    "number": 1468,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1468"
+  },
+  {
+    "source": "issue",
+    "number": 1467,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1467"
+  },
+  {
+    "source": "issue",
+    "number": 1466,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1466"
+  },
+  {
+    "source": "issue",
+    "number": 1465,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1465"
+  },
+  {
+    "source": "issue",
+    "number": 1464,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1464"
+  },
+  {
+    "source": "issue",
+    "number": 1463,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1463"
+  },
+  {
+    "source": "issue",
+    "number": 1462,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1462"
+  },
+  {
+    "source": "issue",
+    "number": 1461,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1461"
+  },
+  {
+    "source": "issue",
+    "number": 1460,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1460"
+  },
+  {
+    "source": "issue",
+    "number": 1459,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1459"
+  },
+  {
+    "source": "issue",
+    "number": 1458,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1458"
+  },
+  {
+    "source": "issue",
+    "number": 1457,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1457"
+  },
+  {
+    "source": "issue",
+    "number": 1456,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1456"
+  },
+  {
+    "source": "issue",
+    "number": 1455,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1455"
+  },
+  {
+    "source": "issue",
+    "number": 1454,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1454"
+  },
+  {
+    "source": "issue",
+    "number": 1453,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1453"
+  },
+  {
+    "source": "issue",
+    "number": 1452,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1452"
+  },
+  {
+    "source": "issue",
+    "number": 1451,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1451"
+  },
+  {
+    "source": "issue",
+    "number": 1450,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1450"
+  },
+  {
+    "source": "issue",
+    "number": 1449,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1449"
+  },
+  {
+    "source": "issue",
+    "number": 1448,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1448"
+  },
+  {
+    "source": "issue",
+    "number": 1447,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1447"
+  },
+  {
+    "source": "issue",
+    "number": 1446,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1446"
+  },
+  {
+    "source": "issue",
+    "number": 1445,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1445"
+  },
+  {
+    "source": "issue",
+    "number": 1444,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1444"
+  },
+  {
+    "source": "issue",
+    "number": 1443,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1443"
+  },
+  {
+    "source": "issue",
+    "number": 1442,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1442"
+  },
+  {
+    "source": "issue",
+    "number": 1441,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1441"
+  },
+  {
+    "source": "issue",
+    "number": 1440,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1440"
+  },
+  {
+    "source": "issue",
+    "number": 1439,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1439"
+  },
+  {
+    "source": "issue",
+    "number": 1438,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1438"
+  },
+  {
+    "source": "issue",
+    "number": 1437,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1437"
+  },
+  {
+    "source": "issue",
+    "number": 1436,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1436"
+  },
+  {
+    "source": "issue",
+    "number": 1435,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1435"
+  },
+  {
+    "source": "issue",
+    "number": 1434,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1434"
+  },
+  {
+    "source": "issue",
+    "number": 1433,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1433"
+  },
+  {
+    "source": "issue",
+    "number": 1432,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1432"
+  },
+  {
+    "source": "issue",
+    "number": 1431,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1431"
+  },
+  {
+    "source": "issue",
+    "number": 1430,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1430"
+  },
+  {
+    "source": "issue",
+    "number": 1429,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1429"
+  },
+  {
+    "source": "issue",
+    "number": 1428,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1428"
+  },
+  {
+    "source": "issue",
+    "number": 1427,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1427"
+  },
+  {
+    "source": "issue",
+    "number": 1426,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1426"
+  },
+  {
+    "source": "issue",
+    "number": 1425,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1425"
+  },
+  {
+    "source": "issue",
+    "number": 1424,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1424"
+  },
+  {
+    "source": "issue",
+    "number": 1423,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1423"
+  },
+  {
+    "source": "issue",
+    "number": 1422,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1422"
+  },
+  {
+    "source": "issue",
+    "number": 1421,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1421"
+  },
+  {
+    "source": "issue",
+    "number": 1420,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1420"
+  },
+  {
+    "source": "issue",
+    "number": 1419,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1419"
+  },
+  {
+    "source": "issue",
+    "number": 1418,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1418"
+  },
+  {
+    "source": "issue",
+    "number": 1417,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1417"
+  },
+  {
+    "source": "issue",
+    "number": 1416,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1416"
+  },
+  {
+    "source": "issue",
+    "number": 1415,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1415"
+  },
+  {
+    "source": "issue",
+    "number": 1414,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1414"
+  },
+  {
+    "source": "issue",
+    "number": 1413,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1413"
+  },
+  {
+    "source": "issue",
+    "number": 1412,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1412"
+  },
+  {
+    "source": "issue",
+    "number": 1411,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1411"
+  },
+  {
+    "source": "issue",
+    "number": 1410,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1410"
+  },
+  {
+    "source": "issue",
+    "number": 1409,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1409"
+  },
+  {
+    "source": "issue",
+    "number": 1408,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1408"
+  },
+  {
+    "source": "issue",
+    "number": 1407,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1407"
+  },
+  {
+    "source": "issue",
+    "number": 1406,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1406"
+  },
+  {
+    "source": "issue",
+    "number": 1405,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1405"
+  },
+  {
+    "source": "issue",
+    "number": 1404,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1404"
+  },
+  {
+    "source": "issue",
+    "number": 1403,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1403"
+  },
+  {
+    "source": "issue",
+    "number": 1402,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1402"
+  },
+  {
+    "source": "issue",
+    "number": 1401,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1401"
+  },
+  {
+    "source": "issue",
+    "number": 1400,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1400"
+  },
+  {
+    "source": "issue",
+    "number": 1399,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1399"
+  },
+  {
+    "source": "issue",
+    "number": 1398,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1398"
+  },
+  {
+    "source": "issue",
+    "number": 1397,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1397"
+  },
+  {
+    "source": "issue",
+    "number": 1396,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1396"
+  },
+  {
+    "source": "issue",
+    "number": 1395,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1395"
+  },
+  {
+    "source": "issue",
+    "number": 1394,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1394"
+  },
+  {
+    "source": "issue",
+    "number": 1393,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1393"
+  },
+  {
+    "source": "issue",
+    "number": 1392,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1392"
+  },
+  {
+    "source": "issue",
+    "number": 1391,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1391"
+  },
+  {
+    "source": "issue",
+    "number": 1390,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1390"
+  },
+  {
+    "source": "issue",
+    "number": 1389,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1389"
+  },
+  {
+    "source": "issue",
+    "number": 1388,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1388"
+  },
+  {
+    "source": "issue",
+    "number": 1387,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1387"
+  },
+  {
+    "source": "issue",
+    "number": 1386,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1386"
+  },
+  {
+    "source": "issue",
+    "number": 1385,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1385"
+  },
+  {
+    "source": "issue",
+    "number": 1384,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1384"
+  },
+  {
+    "source": "issue",
+    "number": 1383,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1383"
+  },
+  {
+    "source": "issue",
+    "number": 1382,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1382"
+  },
+  {
+    "source": "issue",
+    "number": 1381,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1381"
+  },
+  {
+    "source": "issue",
+    "number": 1380,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1380"
+  },
+  {
+    "source": "issue",
+    "number": 1379,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1379"
+  },
+  {
+    "source": "issue",
+    "number": 1378,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1378"
+  },
+  {
+    "source": "issue",
+    "number": 1377,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1377"
+  },
+  {
+    "source": "issue",
+    "number": 1376,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1376"
+  },
+  {
+    "source": "issue",
+    "number": 1375,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1375"
+  },
+  {
+    "source": "issue",
+    "number": 1374,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1374"
+  },
+  {
+    "source": "issue",
+    "number": 1373,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1373"
+  },
+  {
+    "source": "issue",
+    "number": 1372,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1372"
+  },
+  {
+    "source": "issue",
+    "number": 1371,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1371"
+  },
+  {
+    "source": "issue",
+    "number": 1370,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1370"
+  },
+  {
+    "source": "issue",
+    "number": 1369,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1369"
+  },
+  {
+    "source": "issue",
+    "number": 1368,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1368"
+  },
+  {
+    "source": "issue",
+    "number": 1367,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1367"
+  },
+  {
+    "source": "issue",
+    "number": 1366,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1366"
+  },
+  {
+    "source": "issue",
+    "number": 1365,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1365"
+  },
+  {
+    "source": "issue",
+    "number": 1364,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1364"
+  },
+  {
+    "source": "issue",
+    "number": 1363,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1363"
+  },
+  {
+    "source": "issue",
+    "number": 1362,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1362"
+  },
+  {
+    "source": "issue",
+    "number": 1361,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1361"
+  },
+  {
+    "source": "issue",
+    "number": 1360,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1360"
+  },
+  {
+    "source": "issue",
+    "number": 1359,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1359"
+  },
+  {
+    "source": "issue",
+    "number": 1358,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1358"
+  },
+  {
+    "source": "issue",
+    "number": 1357,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1357"
+  },
+  {
+    "source": "issue",
+    "number": 1356,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1356"
+  },
+  {
+    "source": "issue",
+    "number": 1355,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1355"
+  },
+  {
+    "source": "issue",
+    "number": 1354,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1354"
+  },
+  {
+    "source": "issue",
+    "number": 1353,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1353"
+  },
+  {
+    "source": "issue",
+    "number": 1352,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1352"
+  },
+  {
+    "source": "issue",
+    "number": 1351,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1351"
+  },
+  {
+    "source": "issue",
+    "number": 1350,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1350"
+  },
+  {
+    "source": "issue",
+    "number": 1349,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1349"
+  },
+  {
+    "source": "issue",
+    "number": 1348,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1348"
+  },
+  {
+    "source": "issue",
+    "number": 1347,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1347"
+  },
+  {
+    "source": "issue",
+    "number": 1346,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1346"
+  },
+  {
+    "source": "issue",
+    "number": 1345,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1345"
+  },
+  {
+    "source": "issue",
+    "number": 1344,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1344"
+  },
+  {
+    "source": "issue",
+    "number": 1343,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1343"
+  },
+  {
+    "source": "issue",
+    "number": 1342,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1342"
+  },
+  {
+    "source": "issue",
+    "number": 1341,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1341"
+  },
+  {
+    "source": "issue",
+    "number": 1340,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1340"
+  },
+  {
+    "source": "issue",
+    "number": 1339,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1339"
+  },
+  {
+    "source": "issue",
+    "number": 1338,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1338"
+  },
+  {
+    "source": "issue",
+    "number": 1337,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1337"
+  },
+  {
+    "source": "issue",
+    "number": 1336,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1336"
+  },
+  {
+    "source": "issue",
+    "number": 1335,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1335"
+  },
+  {
+    "source": "issue",
+    "number": 1334,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1334"
+  },
+  {
+    "source": "issue",
+    "number": 1333,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1333"
+  },
+  {
+    "source": "issue",
+    "number": 1332,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1332"
+  },
+  {
+    "source": "issue",
+    "number": 1331,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1331"
+  },
+  {
+    "source": "issue",
+    "number": 1330,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1330"
+  },
+  {
+    "source": "issue",
+    "number": 1329,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1329"
+  },
+  {
+    "source": "issue",
+    "number": 1328,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1328"
+  },
+  {
+    "source": "issue",
+    "number": 1327,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1327"
+  },
+  {
+    "source": "issue",
+    "number": 1326,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1326"
+  },
+  {
+    "source": "issue",
+    "number": 1325,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1325"
+  },
+  {
+    "source": "issue",
+    "number": 1324,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1324"
+  },
+  {
+    "source": "issue",
+    "number": 1323,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1323"
+  },
+  {
+    "source": "issue",
+    "number": 1322,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1322"
+  },
+  {
+    "source": "issue",
+    "number": 1321,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1321"
+  },
+  {
+    "source": "issue",
+    "number": 1320,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1320"
+  },
+  {
+    "source": "issue",
+    "number": 1319,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1319"
+  },
+  {
+    "source": "issue",
+    "number": 1318,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1318"
+  },
+  {
+    "source": "issue",
+    "number": 1317,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1317"
+  },
+  {
+    "source": "issue",
+    "number": 1316,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1316"
+  },
+  {
+    "source": "issue",
+    "number": 1315,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1315"
+  },
+  {
+    "source": "issue",
+    "number": 1314,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1314"
+  },
+  {
+    "source": "issue",
+    "number": 1313,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1313"
+  },
+  {
+    "source": "issue",
+    "number": 1312,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1312"
+  },
+  {
+    "source": "issue",
+    "number": 1311,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1311"
+  },
+  {
+    "source": "issue",
+    "number": 1310,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1310"
+  },
+  {
+    "source": "issue",
+    "number": 1309,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1309"
+  },
+  {
+    "source": "issue",
+    "number": 1308,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1308"
+  },
+  {
+    "source": "issue",
+    "number": 1307,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1307"
+  },
+  {
+    "source": "issue",
+    "number": 1306,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1306"
+  },
+  {
+    "source": "issue",
+    "number": 1305,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1305"
+  },
+  {
+    "source": "issue",
+    "number": 1304,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1304"
+  },
+  {
+    "source": "issue",
+    "number": 1303,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1303"
+  },
+  {
+    "source": "issue",
+    "number": 1302,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1302"
+  },
+  {
+    "source": "issue",
+    "number": 1301,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1301"
+  },
+  {
+    "source": "issue",
+    "number": 1300,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1300"
+  },
+  {
+    "source": "issue",
+    "number": 1299,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1299"
+  },
+  {
+    "source": "issue",
+    "number": 1298,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1298"
+  },
+  {
+    "source": "issue",
+    "number": 1297,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1297"
+  },
+  {
+    "source": "issue",
+    "number": 1296,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1296"
+  },
+  {
+    "source": "issue",
+    "number": 1295,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1295"
+  },
+  {
+    "source": "issue",
+    "number": 1294,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1294"
+  },
+  {
+    "source": "issue",
+    "number": 1293,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1293"
+  },
+  {
+    "source": "issue",
+    "number": 1292,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1292"
+  },
+  {
+    "source": "issue",
+    "number": 1291,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1291"
+  },
+  {
+    "source": "issue",
+    "number": 1290,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1290"
+  },
+  {
+    "source": "issue",
+    "number": 1289,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1289"
+  },
+  {
+    "source": "issue",
+    "number": 1288,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1288"
+  },
+  {
+    "source": "issue",
+    "number": 1287,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1287"
+  },
+  {
+    "source": "issue",
+    "number": 1286,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1286"
+  },
+  {
+    "source": "issue",
+    "number": 1285,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1285"
+  },
+  {
+    "source": "issue",
+    "number": 1284,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1284"
+  },
+  {
+    "source": "issue",
+    "number": 1283,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1283"
+  },
+  {
+    "source": "issue",
+    "number": 1282,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1282"
+  },
+  {
+    "source": "issue",
+    "number": 1281,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1281"
+  },
+  {
+    "source": "issue",
+    "number": 1280,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1280"
+  },
+  {
+    "source": "issue",
+    "number": 1279,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1279"
+  },
+  {
+    "source": "issue",
+    "number": 1278,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1278"
+  },
+  {
+    "source": "issue",
+    "number": 1277,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1277"
+  },
+  {
+    "source": "issue",
+    "number": 1276,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1276"
+  },
+  {
+    "source": "issue",
+    "number": 1275,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1275"
+  },
+  {
+    "source": "issue",
+    "number": 1274,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1274"
+  },
+  {
+    "source": "issue",
+    "number": 1273,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1273"
+  },
+  {
+    "source": "issue",
+    "number": 1272,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1272"
+  },
+  {
+    "source": "issue",
+    "number": 1271,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1271"
+  },
+  {
+    "source": "issue",
+    "number": 1270,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1270"
+  },
+  {
+    "source": "issue",
+    "number": 1269,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1269"
+  },
+  {
+    "source": "issue",
+    "number": 1268,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1268"
+  },
+  {
+    "source": "issue",
+    "number": 1267,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1267"
+  },
+  {
+    "source": "issue",
+    "number": 1266,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1266"
+  },
+  {
+    "source": "issue",
+    "number": 1265,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1265"
+  },
+  {
+    "source": "issue",
+    "number": 1264,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1264"
+  },
+  {
+    "source": "issue",
+    "number": 1263,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1263"
+  },
+  {
+    "source": "issue",
+    "number": 1262,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1262"
+  },
+  {
+    "source": "issue",
+    "number": 1261,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1261"
+  },
+  {
+    "source": "issue",
+    "number": 1260,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1260"
+  },
+  {
+    "source": "issue",
+    "number": 1259,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1259"
+  },
+  {
+    "source": "issue",
+    "number": 1258,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1258"
+  },
+  {
+    "source": "issue",
+    "number": 1257,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1257"
+  },
+  {
+    "source": "issue",
+    "number": 1256,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1256"
+  },
+  {
+    "source": "issue",
+    "number": 1255,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1255"
+  },
+  {
+    "source": "issue",
+    "number": 1254,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1254"
+  },
+  {
+    "source": "issue",
+    "number": 1253,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1253"
+  },
+  {
+    "source": "issue",
+    "number": 1252,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1252"
+  },
+  {
+    "source": "issue",
+    "number": 1251,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1251"
+  },
+  {
+    "source": "issue",
+    "number": 1250,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1250"
+  },
+  {
+    "source": "issue",
+    "number": 1249,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1249"
+  },
+  {
+    "source": "issue",
+    "number": 1248,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1248"
+  },
+  {
+    "source": "issue",
+    "number": 1247,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1247"
+  },
+  {
+    "source": "issue",
+    "number": 1246,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1246"
+  },
+  {
+    "source": "issue",
+    "number": 1245,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1245"
+  },
+  {
+    "source": "issue",
+    "number": 1244,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1244"
+  },
+  {
+    "source": "issue",
+    "number": 1243,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1243"
+  },
+  {
+    "source": "issue",
+    "number": 1242,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1242"
+  },
+  {
+    "source": "issue",
+    "number": 1241,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1241"
+  },
+  {
+    "source": "issue",
+    "number": 1240,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1240"
+  },
+  {
+    "source": "issue",
+    "number": 1239,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1239"
+  },
+  {
+    "source": "issue",
+    "number": 1238,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1238"
+  },
+  {
+    "source": "issue",
+    "number": 1237,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1237"
+  },
+  {
+    "source": "issue",
+    "number": 1236,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1236"
+  },
+  {
+    "source": "issue",
+    "number": 1235,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1235"
+  },
+  {
+    "source": "issue",
+    "number": 1234,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1234"
+  },
+  {
+    "source": "issue",
+    "number": 1233,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1233"
+  },
+  {
+    "source": "issue",
+    "number": 1232,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1232"
+  },
+  {
+    "source": "issue",
+    "number": 1231,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1231"
+  },
+  {
+    "source": "issue",
+    "number": 1230,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1230"
+  },
+  {
+    "source": "issue",
+    "number": 1229,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1229"
+  },
+  {
+    "source": "issue",
+    "number": 1228,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1228"
+  },
+  {
+    "source": "issue",
+    "number": 1227,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1227"
+  },
+  {
+    "source": "issue",
+    "number": 1226,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1226"
+  },
+  {
+    "source": "issue",
+    "number": 1225,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1225"
+  },
+  {
+    "source": "issue",
+    "number": 1224,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1224"
+  },
+  {
+    "source": "issue",
+    "number": 1223,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1223"
+  },
+  {
+    "source": "issue",
+    "number": 1222,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1222"
+  },
+  {
+    "source": "issue",
+    "number": 1221,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1221"
+  },
+  {
+    "source": "issue",
+    "number": 1220,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1220"
+  },
+  {
+    "source": "issue",
+    "number": 1219,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1219"
+  },
+  {
+    "source": "issue",
+    "number": 1218,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1218"
+  },
+  {
+    "source": "issue",
+    "number": 1217,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1217"
+  },
+  {
+    "source": "issue",
+    "number": 1216,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1216"
+  },
+  {
+    "source": "issue",
+    "number": 1215,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1215"
+  },
+  {
+    "source": "issue",
+    "number": 1214,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1214"
+  },
+  {
+    "source": "issue",
+    "number": 1213,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1213"
+  },
+  {
+    "source": "issue",
+    "number": 1212,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1212"
+  },
+  {
+    "source": "issue",
+    "number": 1211,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1211"
+  },
+  {
+    "source": "issue",
+    "number": 1210,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1210"
+  },
+  {
+    "source": "issue",
+    "number": 1209,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1209"
+  },
+  {
+    "source": "issue",
+    "number": 1208,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1208"
+  },
+  {
+    "source": "issue",
+    "number": 1207,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1207"
+  },
+  {
+    "source": "issue",
+    "number": 1206,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1206"
+  },
+  {
+    "source": "issue",
+    "number": 1205,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1205"
+  },
+  {
+    "source": "issue",
+    "number": 1204,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1204"
+  },
+  {
+    "source": "issue",
+    "number": 1203,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1203"
+  },
+  {
+    "source": "issue",
+    "number": 1202,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1202"
+  },
+  {
+    "source": "issue",
+    "number": 1201,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1201"
+  },
+  {
+    "source": "issue",
+    "number": 1200,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1200"
+  },
+  {
+    "source": "issue",
+    "number": 1199,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1199"
+  },
+  {
+    "source": "issue",
+    "number": 1198,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1198"
+  },
+  {
+    "source": "issue",
+    "number": 1197,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1197"
+  },
+  {
+    "source": "issue",
+    "number": 1196,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1196"
+  },
+  {
+    "source": "issue",
+    "number": 1195,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1195"
+  },
+  {
+    "source": "issue",
+    "number": 1194,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1194"
+  },
+  {
+    "source": "issue",
+    "number": 1193,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1193"
+  },
+  {
+    "source": "issue",
+    "number": 1192,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1192"
+  },
+  {
+    "source": "issue",
+    "number": 1191,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1191"
+  },
+  {
+    "source": "issue",
+    "number": 1190,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1190"
+  },
+  {
+    "source": "issue",
+    "number": 1189,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1189"
+  },
+  {
+    "source": "issue",
+    "number": 1188,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1188"
+  },
+  {
+    "source": "issue",
+    "number": 1187,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1187"
+  },
+  {
+    "source": "issue",
+    "number": 1186,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1186"
+  },
+  {
+    "source": "issue",
+    "number": 1185,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1185"
+  },
+  {
+    "source": "issue",
+    "number": 1184,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1184"
+  },
+  {
+    "source": "issue",
+    "number": 1183,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1183"
+  },
+  {
+    "source": "issue",
+    "number": 1182,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1182"
+  },
+  {
+    "source": "issue",
+    "number": 1181,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1181"
+  },
+  {
+    "source": "issue",
+    "number": 1180,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1180"
+  },
+  {
+    "source": "issue",
+    "number": 1179,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1179"
+  },
+  {
+    "source": "issue",
+    "number": 1178,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1178"
+  },
+  {
+    "source": "issue",
+    "number": 1177,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1177"
+  },
+  {
+    "source": "issue",
+    "number": 1176,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1176"
+  },
+  {
+    "source": "issue",
+    "number": 1175,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1175"
+  },
+  {
+    "source": "issue",
+    "number": 1174,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1174"
+  },
+  {
+    "source": "issue",
+    "number": 1173,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1173"
+  },
+  {
+    "source": "issue",
+    "number": 1172,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1172"
+  },
+  {
+    "source": "issue",
+    "number": 1171,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1171"
+  },
+  {
+    "source": "issue",
+    "number": 1170,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1170"
+  },
+  {
+    "source": "issue",
+    "number": 1169,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1169"
+  },
+  {
+    "source": "issue",
+    "number": 1168,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1168"
+  },
+  {
+    "source": "issue",
+    "number": 1167,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1167"
+  },
+  {
+    "source": "issue",
+    "number": 1166,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1166"
+  },
+  {
+    "source": "issue",
+    "number": 1165,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1165"
+  },
+  {
+    "source": "issue",
+    "number": 1164,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1164"
+  },
+  {
+    "source": "issue",
+    "number": 1163,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1163"
+  },
+  {
+    "source": "issue",
+    "number": 1162,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1162"
+  },
+  {
+    "source": "issue",
+    "number": 1161,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1161"
+  },
+  {
+    "source": "issue",
+    "number": 1160,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1160"
+  },
+  {
+    "source": "issue",
+    "number": 1159,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1159"
+  },
+  {
+    "source": "issue",
+    "number": 1158,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1158"
+  },
+  {
+    "source": "issue",
+    "number": 1157,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1157"
+  },
+  {
+    "source": "issue",
+    "number": 1156,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1156"
+  },
+  {
+    "source": "issue",
+    "number": 1155,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1155"
+  },
+  {
+    "source": "issue",
+    "number": 1154,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1154"
+  },
+  {
+    "source": "issue",
+    "number": 1153,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1153"
+  },
+  {
+    "source": "issue",
+    "number": 1152,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1152"
+  },
+  {
+    "source": "issue",
+    "number": 1151,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1151"
+  },
+  {
+    "source": "issue",
+    "number": 1150,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1150"
+  },
+  {
+    "source": "issue",
+    "number": 1149,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1149"
+  },
+  {
+    "source": "issue",
+    "number": 1148,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1148"
+  },
+  {
+    "source": "issue",
+    "number": 1147,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1147"
+  },
+  {
+    "source": "issue",
+    "number": 1146,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1146"
+  },
+  {
+    "source": "issue",
+    "number": 1145,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1145"
+  },
+  {
+    "source": "issue",
+    "number": 1144,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1144"
+  },
+  {
+    "source": "issue",
+    "number": 1143,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1143"
+  },
+  {
+    "source": "issue",
+    "number": 1142,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1142"
+  },
+  {
+    "source": "issue",
+    "number": 1141,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1141"
+  },
+  {
+    "source": "issue",
+    "number": 1140,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1140"
+  },
+  {
+    "source": "issue",
+    "number": 1139,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1139"
+  },
+  {
+    "source": "issue",
+    "number": 1138,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1138"
+  },
+  {
+    "source": "issue",
+    "number": 1137,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1137"
+  },
+  {
+    "source": "issue",
+    "number": 1136,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1136"
+  },
+  {
+    "source": "issue",
+    "number": 1135,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1135"
+  },
+  {
+    "source": "issue",
+    "number": 1134,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1134"
+  },
+  {
+    "source": "issue",
+    "number": 1133,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1133"
+  },
+  {
+    "source": "issue",
+    "number": 1132,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1132"
+  },
+  {
+    "source": "issue",
+    "number": 1131,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1131"
+  },
+  {
+    "source": "issue",
+    "number": 1130,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1130"
+  },
+  {
+    "source": "issue",
+    "number": 1129,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1129"
+  },
+  {
+    "source": "issue",
+    "number": 1128,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1128"
+  },
+  {
+    "source": "issue",
+    "number": 1127,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1127"
+  },
+  {
+    "source": "issue",
+    "number": 1126,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1126"
+  },
+  {
+    "source": "issue",
+    "number": 1125,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1125"
+  },
+  {
+    "source": "issue",
+    "number": 1124,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1124"
+  },
+  {
+    "source": "issue",
+    "number": 1123,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1123"
+  },
+  {
+    "source": "issue",
+    "number": 1122,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1122"
+  },
+  {
+    "source": "issue",
+    "number": 1121,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1121"
+  },
+  {
+    "source": "issue",
+    "number": 1120,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1120"
+  },
+  {
+    "source": "issue",
+    "number": 1119,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1119"
+  },
+  {
+    "source": "issue",
+    "number": 1118,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1118"
+  },
+  {
+    "source": "issue",
+    "number": 1117,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1117"
+  },
+  {
+    "source": "issue",
+    "number": 1116,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1116"
+  },
+  {
+    "source": "issue",
+    "number": 1115,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1115"
+  },
+  {
+    "source": "issue",
+    "number": 1114,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1114"
+  },
+  {
+    "source": "issue",
+    "number": 1113,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1113"
+  },
+  {
+    "source": "issue",
+    "number": 1112,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1112"
+  },
+  {
+    "source": "issue",
+    "number": 1111,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1111"
+  },
+  {
+    "source": "issue",
+    "number": 1110,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1110"
+  },
+  {
+    "source": "issue",
+    "number": 1109,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1109"
+  },
+  {
+    "source": "issue",
+    "number": 1107,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1107"
+  },
+  {
+    "source": "issue",
+    "number": 1106,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1106"
+  },
+  {
+    "source": "issue",
+    "number": 1105,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1105"
+  },
+  {
+    "source": "issue",
+    "number": 1104,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1104"
+  },
+  {
+    "source": "issue",
+    "number": 1103,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1103"
+  },
+  {
+    "source": "issue",
+    "number": 1102,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1102"
+  },
+  {
+    "source": "issue",
+    "number": 1100,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1100"
+  },
+  {
+    "source": "issue",
+    "number": 1099,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1099"
+  },
+  {
+    "source": "issue",
+    "number": 1096,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1096"
+  },
+  {
+    "source": "issue",
+    "number": 1095,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1095"
+  },
+  {
+    "source": "issue",
+    "number": 1094,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1094"
+  },
+  {
+    "source": "issue",
+    "number": 1093,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1093"
+  },
+  {
+    "source": "issue",
+    "number": 1092,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1092"
+  },
+  {
+    "source": "issue",
+    "number": 1091,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1091"
+  },
+  {
+    "source": "issue",
+    "number": 1090,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1090"
+  },
+  {
+    "source": "issue",
+    "number": 1088,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1088"
+  },
+  {
+    "source": "issue",
+    "number": 1087,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1087"
+  },
+  {
+    "source": "issue",
+    "number": 1086,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1086"
+  },
+  {
+    "source": "issue",
+    "number": 1085,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1085"
+  },
+  {
+    "source": "issue",
+    "number": 1084,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1084"
+  },
+  {
+    "source": "issue",
+    "number": 1083,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1083"
+  },
+  {
+    "source": "issue",
+    "number": 1082,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1082"
+  },
+  {
+    "source": "issue",
+    "number": 1081,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1081"
+  },
+  {
+    "source": "issue",
+    "number": 1080,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1080"
+  },
+  {
+    "source": "issue",
+    "number": 1079,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1079"
+  },
+  {
+    "source": "issue",
+    "number": 1078,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1078"
+  },
+  {
+    "source": "issue",
+    "number": 1077,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1077"
+  },
+  {
+    "source": "issue",
+    "number": 1074,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1074"
+  },
+  {
+    "source": "issue",
+    "number": 1073,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1073"
+  },
+  {
+    "source": "issue",
+    "number": 1072,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1072"
+  },
+  {
+    "source": "issue",
+    "number": 1071,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1071"
+  },
+  {
+    "source": "issue",
+    "number": 1070,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1070"
+  },
+  {
+    "source": "issue",
+    "number": 1069,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1069"
+  },
+  {
+    "source": "issue",
+    "number": 1068,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1068"
+  },
+  {
+    "source": "issue",
+    "number": 1067,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1067"
+  },
+  {
+    "source": "issue",
+    "number": 1066,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1066"
+  },
+  {
+    "source": "issue",
+    "number": 1065,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1065"
+  },
+  {
+    "source": "issue",
+    "number": 1064,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1064"
+  },
+  {
+    "source": "issue",
+    "number": 1063,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1063"
+  },
+  {
+    "source": "issue",
+    "number": 1062,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1062"
+  },
+  {
+    "source": "issue",
+    "number": 1061,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1061"
+  },
+  {
+    "source": "issue",
+    "number": 1060,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1060"
+  },
+  {
+    "source": "issue",
+    "number": 1059,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1059"
+  },
+  {
+    "source": "issue",
+    "number": 1058,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1058"
+  },
+  {
+    "source": "issue",
+    "number": 1057,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1057"
+  },
+  {
+    "source": "issue",
+    "number": 1056,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1056"
+  },
+  {
+    "source": "issue",
+    "number": 1055,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1055"
+  },
+  {
+    "source": "issue",
+    "number": 1054,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1054"
+  },
+  {
+    "source": "issue",
+    "number": 1053,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1053"
+  },
+  {
+    "source": "issue",
+    "number": 1052,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1052"
+  },
+  {
+    "source": "issue",
+    "number": 1051,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1051"
+  },
+  {
+    "source": "issue",
+    "number": 1050,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1050"
+  },
+  {
+    "source": "issue",
+    "number": 1049,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1049"
+  },
+  {
+    "source": "issue",
+    "number": 1048,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1048"
+  },
+  {
+    "source": "issue",
+    "number": 1047,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1047"
+  },
+  {
+    "source": "issue",
+    "number": 1046,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1046"
+  },
+  {
+    "source": "issue",
+    "number": 1045,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1045"
+  },
+  {
+    "source": "issue",
+    "number": 1044,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1044"
+  },
+  {
+    "source": "issue",
+    "number": 1043,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1043"
+  },
+  {
+    "source": "issue",
+    "number": 1042,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1042"
+  },
+  {
+    "source": "issue",
+    "number": 1041,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1041"
+  },
+  {
+    "source": "issue",
+    "number": 1040,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1040"
+  },
+  {
+    "source": "issue",
+    "number": 1039,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1039"
+  },
+  {
+    "source": "issue",
+    "number": 1038,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1038"
+  },
+  {
+    "source": "issue",
+    "number": 1037,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1037"
+  },
+  {
+    "source": "issue",
+    "number": 1036,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1036"
+  },
+  {
+    "source": "issue",
+    "number": 1035,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1035"
+  },
+  {
+    "source": "issue",
+    "number": 1034,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1034"
+  },
+  {
+    "source": "issue",
+    "number": 1033,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1033"
+  },
+  {
+    "source": "issue",
+    "number": 1032,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1032"
+  },
+  {
+    "source": "issue",
+    "number": 1031,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1031"
+  },
+  {
+    "source": "issue",
+    "number": 1030,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1030"
+  },
+  {
+    "source": "issue",
+    "number": 1029,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1029"
+  },
+  {
+    "source": "issue",
+    "number": 1028,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1028"
+  },
+  {
+    "source": "issue",
+    "number": 1027,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1027"
+  },
+  {
+    "source": "issue",
+    "number": 1026,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1026"
+  },
+  {
+    "source": "issue",
+    "number": 1025,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1025"
+  },
+  {
+    "source": "issue",
+    "number": 1024,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1024"
+  },
+  {
+    "source": "issue",
+    "number": 1021,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1021"
+  },
+  {
+    "source": "issue",
+    "number": 1020,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1020"
+  },
+  {
+    "source": "issue",
+    "number": 1019,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1019"
+  },
+  {
+    "source": "issue",
+    "number": 1018,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1018"
+  },
+  {
+    "source": "issue",
+    "number": 1017,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1017"
+  },
+  {
+    "source": "issue",
+    "number": 1016,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1016"
+  },
+  {
+    "source": "issue",
+    "number": 1015,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1015"
+  },
+  {
+    "source": "issue",
+    "number": 1014,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1014"
+  },
+  {
+    "source": "issue",
+    "number": 1013,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1013"
+  },
+  {
+    "source": "issue",
+    "number": 1012,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1012"
+  },
+  {
+    "source": "issue",
+    "number": 1011,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1011"
+  },
+  {
+    "source": "issue",
+    "number": 1010,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1010"
+  },
+  {
+    "source": "issue",
+    "number": 1009,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1009"
+  },
+  {
+    "source": "issue",
+    "number": 1008,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1008"
+  },
+  {
+    "source": "issue",
+    "number": 1007,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1007"
+  },
+  {
+    "source": "issue",
+    "number": 1006,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1006"
+  },
+  {
+    "source": "issue",
+    "number": 1005,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1005"
+  },
+  {
+    "source": "issue",
+    "number": 1004,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1004"
+  },
+  {
+    "source": "issue",
+    "number": 1003,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1003"
+  },
+  {
+    "source": "issue",
+    "number": 1002,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1002"
+  },
+  {
+    "source": "issue",
+    "number": 1001,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1001"
+  },
+  {
+    "source": "issue",
+    "number": 1000,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/1000"
+  },
+  {
+    "source": "issue",
+    "number": 999,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/999"
+  },
+  {
+    "source": "issue",
+    "number": 998,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/998"
+  },
+  {
+    "source": "issue",
+    "number": 997,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/997"
+  },
+  {
+    "source": "issue",
+    "number": 996,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/996"
+  },
+  {
+    "source": "issue",
+    "number": 995,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/995"
+  },
+  {
+    "source": "issue",
+    "number": 994,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/994"
+  },
+  {
+    "source": "issue",
+    "number": 993,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/993"
+  },
+  {
+    "source": "issue",
+    "number": 992,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/992"
+  },
+  {
+    "source": "issue",
+    "number": 991,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/991"
+  },
+  {
+    "source": "issue",
+    "number": 990,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/990"
+  },
+  {
+    "source": "issue",
+    "number": 989,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/989"
+  },
+  {
+    "source": "issue",
+    "number": 988,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/988"
+  },
+  {
+    "source": "issue",
+    "number": 987,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/987"
+  },
+  {
+    "source": "issue",
+    "number": 986,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/986"
+  },
+  {
+    "source": "issue",
+    "number": 985,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/985"
+  },
+  {
+    "source": "issue",
+    "number": 984,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/984"
+  },
+  {
+    "source": "issue",
+    "number": 983,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/983"
+  },
+  {
+    "source": "issue",
+    "number": 982,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/982"
+  },
+  {
+    "source": "issue",
+    "number": 981,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/981"
+  },
+  {
+    "source": "issue",
+    "number": 980,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/980"
+  },
+  {
+    "source": "issue",
+    "number": 979,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/979"
+  },
+  {
+    "source": "issue",
+    "number": 978,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/978"
+  },
+  {
+    "source": "issue",
+    "number": 977,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/977"
+  },
+  {
+    "source": "issue",
+    "number": 976,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/976"
+  },
+  {
+    "source": "issue",
+    "number": 975,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/975"
+  },
+  {
+    "source": "issue",
+    "number": 974,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/974"
+  },
+  {
+    "source": "issue",
+    "number": 973,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/973"
+  },
+  {
+    "source": "issue",
+    "number": 972,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/972"
+  },
+  {
+    "source": "issue",
+    "number": 971,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/971"
+  },
+  {
+    "source": "issue",
+    "number": 970,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/970"
+  },
+  {
+    "source": "issue",
+    "number": 969,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/969"
+  },
+  {
+    "source": "issue",
+    "number": 967,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/967"
+  },
+  {
+    "source": "issue",
+    "number": 966,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/966"
+  },
+  {
+    "source": "issue",
+    "number": 965,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/965"
+  },
+  {
+    "source": "issue",
+    "number": 964,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/964"
+  },
+  {
+    "source": "issue",
+    "number": 963,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/963"
+  },
+  {
+    "source": "issue",
+    "number": 962,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/962"
+  },
+  {
+    "source": "issue",
+    "number": 961,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/961"
+  },
+  {
+    "source": "issue",
+    "number": 960,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/960"
+  },
+  {
+    "source": "issue",
+    "number": 959,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/959"
+  },
+  {
+    "source": "issue",
+    "number": 958,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/958"
+  },
+  {
+    "source": "issue",
+    "number": 957,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/957"
+  },
+  {
+    "source": "issue",
+    "number": 956,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/956"
+  },
+  {
+    "source": "issue",
+    "number": 955,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/955"
+  },
+  {
+    "source": "issue",
+    "number": 954,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/954"
+  },
+  {
+    "source": "issue",
+    "number": 953,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/953"
+  },
+  {
+    "source": "issue",
+    "number": 952,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/952"
+  },
+  {
+    "source": "issue",
+    "number": 951,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/951"
+  },
+  {
+    "source": "issue",
+    "number": 948,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/948"
+  },
+  {
+    "source": "issue",
+    "number": 947,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/947"
+  },
+  {
+    "source": "issue",
+    "number": 946,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/946"
+  },
+  {
+    "source": "issue",
+    "number": 945,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/945"
+  },
+  {
+    "source": "issue",
+    "number": 944,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/944"
+  },
+  {
+    "source": "issue",
+    "number": 943,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/943"
+  },
+  {
+    "source": "issue",
+    "number": 942,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/942"
+  },
+  {
+    "source": "issue",
+    "number": 941,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/941"
+  },
+  {
+    "source": "issue",
+    "number": 940,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/940"
+  },
+  {
+    "source": "issue",
+    "number": 939,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/939"
+  },
+  {
+    "source": "issue",
+    "number": 938,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/938"
+  },
+  {
+    "source": "issue",
+    "number": 937,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/937"
+  },
+  {
+    "source": "issue",
+    "number": 936,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/936"
+  },
+  {
+    "source": "issue",
+    "number": 935,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/935"
+  },
+  {
+    "source": "issue",
+    "number": 934,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/934"
+  },
+  {
+    "source": "issue",
+    "number": 933,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/933"
+  },
+  {
+    "source": "issue",
+    "number": 932,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/932"
+  },
+  {
+    "source": "issue",
+    "number": 931,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/931"
+  },
+  {
+    "source": "issue",
+    "number": 930,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/930"
+  },
+  {
+    "source": "issue",
+    "number": 929,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/929"
+  },
+  {
+    "source": "issue",
+    "number": 928,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/928"
+  },
+  {
+    "source": "issue",
+    "number": 927,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/927"
+  },
+  {
+    "source": "issue",
+    "number": 926,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/926"
+  },
+  {
+    "source": "issue",
+    "number": 925,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/925"
+  },
+  {
+    "source": "issue",
+    "number": 924,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/924"
+  },
+  {
+    "source": "issue",
+    "number": 923,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/923"
+  },
+  {
+    "source": "issue",
+    "number": 922,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/922"
+  },
+  {
+    "source": "issue",
+    "number": 921,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/921"
+  },
+  {
+    "source": "issue",
+    "number": 920,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/920"
+  },
+  {
+    "source": "issue",
+    "number": 919,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/919"
+  },
+  {
+    "source": "issue",
+    "number": 918,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/918"
+  },
+  {
+    "source": "issue",
+    "number": 917,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/917"
+  },
+  {
+    "source": "issue",
+    "number": 915,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/915"
+  },
+  {
+    "source": "issue",
+    "number": 914,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/914"
+  },
+  {
+    "source": "issue",
+    "number": 913,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/913"
+  },
+  {
+    "source": "issue",
+    "number": 912,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/912"
+  },
+  {
+    "source": "issue",
+    "number": 911,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/911"
+  },
+  {
+    "source": "issue",
+    "number": 910,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/910"
+  },
+  {
+    "source": "issue",
+    "number": 909,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/909"
+  },
+  {
+    "source": "issue",
+    "number": 908,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/908"
+  },
+  {
+    "source": "issue",
+    "number": 907,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/907"
+  },
+  {
+    "source": "issue",
+    "number": 906,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/906"
+  },
+  {
+    "source": "issue",
+    "number": 905,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/905"
+  },
+  {
+    "source": "issue",
+    "number": 904,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/904"
+  },
+  {
+    "source": "issue",
+    "number": 903,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/903"
+  },
+  {
+    "source": "issue",
+    "number": 902,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/902"
+  },
+  {
+    "source": "issue",
+    "number": 901,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/901"
+  },
+  {
+    "source": "issue",
+    "number": 900,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/900"
+  },
+  {
+    "source": "issue",
+    "number": 899,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/899"
+  },
+  {
+    "source": "issue",
+    "number": 898,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/898"
+  },
+  {
+    "source": "issue",
+    "number": 897,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/897"
+  },
+  {
+    "source": "issue",
+    "number": 896,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/896"
+  },
+  {
+    "source": "issue",
+    "number": 895,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/895"
+  },
+  {
+    "source": "issue",
+    "number": 894,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/894"
+  },
+  {
+    "source": "issue",
+    "number": 893,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/893"
+  },
+  {
+    "source": "issue",
+    "number": 892,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/892"
+  },
+  {
+    "source": "issue",
+    "number": 891,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/891"
+  },
+  {
+    "source": "issue",
+    "number": 890,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/890"
+  },
+  {
+    "source": "issue",
+    "number": 889,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/889"
+  },
+  {
+    "source": "issue",
+    "number": 888,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/888"
+  },
+  {
+    "source": "issue",
+    "number": 887,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/887"
+  },
+  {
+    "source": "issue",
+    "number": 886,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/886"
+  },
+  {
+    "source": "issue",
+    "number": 885,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/885"
+  },
+  {
+    "source": "issue",
+    "number": 884,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/884"
+  },
+  {
+    "source": "issue",
+    "number": 883,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/883"
+  },
+  {
+    "source": "issue",
+    "number": 882,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/882"
+  },
+  {
+    "source": "issue",
+    "number": 881,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/881"
+  },
+  {
+    "source": "issue",
+    "number": 880,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/880"
+  },
+  {
+    "source": "issue",
+    "number": 879,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/879"
+  },
+  {
+    "source": "issue",
+    "number": 878,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/878"
+  },
+  {
+    "source": "issue",
+    "number": 877,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/877"
+  },
+  {
+    "source": "issue",
+    "number": 876,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/876"
+  },
+  {
+    "source": "issue",
+    "number": 875,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/875"
+  },
+  {
+    "source": "issue",
+    "number": 874,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/874"
+  },
+  {
+    "source": "issue",
+    "number": 873,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/873"
+  },
+  {
+    "source": "issue",
+    "number": 872,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/872"
+  },
+  {
+    "source": "issue",
+    "number": 871,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/871"
+  },
+  {
+    "source": "issue",
+    "number": 870,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/870"
+  },
+  {
+    "source": "issue",
+    "number": 869,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/869"
+  },
+  {
+    "source": "issue",
+    "number": 868,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/868"
+  },
+  {
+    "source": "issue",
+    "number": 867,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/867"
+  },
+  {
+    "source": "issue",
+    "number": 866,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/866"
+  },
+  {
+    "source": "issue",
+    "number": 865,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/865"
+  },
+  {
+    "source": "issue",
+    "number": 864,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/864"
+  },
+  {
+    "source": "issue",
+    "number": 863,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/863"
+  },
+  {
+    "source": "issue",
+    "number": 862,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/862"
+  },
+  {
+    "source": "issue",
+    "number": 861,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/861"
+  },
+  {
+    "source": "issue",
+    "number": 860,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/860"
+  },
+  {
+    "source": "issue",
+    "number": 859,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/859"
+  },
+  {
+    "source": "issue",
+    "number": 858,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/858"
+  },
+  {
+    "source": "issue",
+    "number": 857,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/857"
+  },
+  {
+    "source": "issue",
+    "number": 856,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/856"
+  },
+  {
+    "source": "issue",
+    "number": 855,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/855"
+  },
+  {
+    "source": "issue",
+    "number": 854,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/854"
+  },
+  {
+    "source": "issue",
+    "number": 853,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/853"
+  },
+  {
+    "source": "issue",
+    "number": 852,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/852"
+  },
+  {
+    "source": "issue",
+    "number": 851,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/851"
+  },
+  {
+    "source": "issue",
+    "number": 850,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/850"
+  },
+  {
+    "source": "issue",
+    "number": 849,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/849"
+  },
+  {
+    "source": "issue",
+    "number": 848,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/848"
+  },
+  {
+    "source": "issue",
+    "number": 847,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/847"
+  },
+  {
+    "source": "issue",
+    "number": 846,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/846"
+  },
+  {
+    "source": "issue",
+    "number": 845,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/845"
+  },
+  {
+    "source": "issue",
+    "number": 844,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/844"
+  },
+  {
+    "source": "issue",
+    "number": 843,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/843"
+  },
+  {
+    "source": "issue",
+    "number": 842,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/842"
+  },
+  {
+    "source": "issue",
+    "number": 841,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/841"
+  },
+  {
+    "source": "issue",
+    "number": 840,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/840"
+  },
+  {
+    "source": "issue",
+    "number": 839,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/839"
+  },
+  {
+    "source": "issue",
+    "number": 838,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/838"
+  },
+  {
+    "source": "issue",
+    "number": 837,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/837"
+  },
+  {
+    "source": "issue",
+    "number": 836,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/836"
+  },
+  {
+    "source": "issue",
+    "number": 835,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/835"
+  },
+  {
+    "source": "issue",
+    "number": 834,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/834"
+  },
+  {
+    "source": "issue",
+    "number": 833,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/833"
+  },
+  {
+    "source": "issue",
+    "number": 832,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/832"
+  },
+  {
+    "source": "issue",
+    "number": 831,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/831"
+  },
+  {
+    "source": "issue",
+    "number": 830,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/830"
+  },
+  {
+    "source": "issue",
+    "number": 829,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/829"
+  },
+  {
+    "source": "issue",
+    "number": 828,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/828"
+  },
+  {
+    "source": "issue",
+    "number": 827,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/827"
+  },
+  {
+    "source": "issue",
+    "number": 826,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/826"
+  },
+  {
+    "source": "issue",
+    "number": 825,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/825"
+  },
+  {
+    "source": "issue",
+    "number": 824,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/824"
+  },
+  {
+    "source": "issue",
+    "number": 823,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/823"
+  },
+  {
+    "source": "issue",
+    "number": 822,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/822"
+  },
+  {
+    "source": "issue",
+    "number": 821,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/821"
+  },
+  {
+    "source": "issue",
+    "number": 820,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/820"
+  },
+  {
+    "source": "issue",
+    "number": 819,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/819"
+  },
+  {
+    "source": "issue",
+    "number": 818,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/818"
+  },
+  {
+    "source": "issue",
+    "number": 817,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/817"
+  },
+  {
+    "source": "issue",
+    "number": 816,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/816"
+  },
+  {
+    "source": "issue",
+    "number": 815,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/815"
+  },
+  {
+    "source": "issue",
+    "number": 814,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/814"
+  },
+  {
+    "source": "issue",
+    "number": 813,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/813"
+  },
+  {
+    "source": "issue",
+    "number": 812,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/812"
+  },
+  {
+    "source": "issue",
+    "number": 811,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/811"
+  },
+  {
+    "source": "issue",
+    "number": 810,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/810"
+  },
+  {
+    "source": "issue",
+    "number": 809,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/809"
+  },
+  {
+    "source": "issue",
+    "number": 808,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/808"
+  },
+  {
+    "source": "issue",
+    "number": 807,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/807"
+  },
+  {
+    "source": "issue",
+    "number": 806,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/806"
+  },
+  {
+    "source": "issue",
+    "number": 805,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/805"
+  },
+  {
+    "source": "issue",
+    "number": 804,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/804"
+  },
+  {
+    "source": "issue",
+    "number": 803,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/803"
+  },
+  {
+    "source": "issue",
+    "number": 802,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/802"
+  },
+  {
+    "source": "issue",
+    "number": 801,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/801"
+  },
+  {
+    "source": "issue",
+    "number": 800,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/800"
+  },
+  {
+    "source": "issue",
+    "number": 799,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/799"
+  },
+  {
+    "source": "issue",
+    "number": 798,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/798"
+  },
+  {
+    "source": "issue",
+    "number": 797,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/797"
+  },
+  {
+    "source": "issue",
+    "number": 796,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/796"
+  },
+  {
+    "source": "issue",
+    "number": 795,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/795"
+  },
+  {
+    "source": "issue",
+    "number": 794,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/794"
+  },
+  {
+    "source": "issue",
+    "number": 793,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/793"
+  },
+  {
+    "source": "issue",
+    "number": 792,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/792"
+  },
+  {
+    "source": "issue",
+    "number": 791,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/791"
+  },
+  {
+    "source": "issue",
+    "number": 790,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/790"
+  },
+  {
+    "source": "issue",
+    "number": 789,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/789"
+  },
+  {
+    "source": "issue",
+    "number": 788,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/788"
+  },
+  {
+    "source": "issue",
+    "number": 787,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/787"
+  },
+  {
+    "source": "issue",
+    "number": 786,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/786"
+  },
+  {
+    "source": "issue",
+    "number": 785,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/785"
+  },
+  {
+    "source": "issue",
+    "number": 784,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/784"
+  },
+  {
+    "source": "issue",
+    "number": 783,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/783"
+  },
+  {
+    "source": "issue",
+    "number": 782,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/782"
+  },
+  {
+    "source": "issue",
+    "number": 781,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/781"
+  },
+  {
+    "source": "issue",
+    "number": 780,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/780"
+  },
+  {
+    "source": "issue",
+    "number": 779,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/779"
+  },
+  {
+    "source": "issue",
+    "number": 778,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/778"
+  },
+  {
+    "source": "issue",
+    "number": 777,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/777"
+  },
+  {
+    "source": "issue",
+    "number": 776,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/776"
+  },
+  {
+    "source": "issue",
+    "number": 775,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/775"
+  },
+  {
+    "source": "issue",
+    "number": 774,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/774"
+  },
+  {
+    "source": "issue",
+    "number": 773,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/773"
+  },
+  {
+    "source": "issue",
+    "number": 772,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/772"
+  },
+  {
+    "source": "issue",
+    "number": 771,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/771"
+  },
+  {
+    "source": "issue",
+    "number": 770,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/770"
+  },
+  {
+    "source": "issue",
+    "number": 769,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/769"
+  },
+  {
+    "source": "issue",
+    "number": 768,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/768"
+  },
+  {
+    "source": "issue",
+    "number": 767,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/767"
+  },
+  {
+    "source": "issue",
+    "number": 766,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/766"
+  },
+  {
+    "source": "issue",
+    "number": 765,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/765"
+  },
+  {
+    "source": "issue",
+    "number": 764,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/764"
+  },
+  {
+    "source": "issue",
+    "number": 763,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/763"
+  },
+  {
+    "source": "issue",
+    "number": 762,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/762"
+  },
+  {
+    "source": "issue",
+    "number": 761,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/761"
+  },
+  {
+    "source": "issue",
+    "number": 760,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/760"
+  },
+  {
+    "source": "issue",
+    "number": 759,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/759"
+  },
+  {
+    "source": "issue",
+    "number": 758,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/758"
+  },
+  {
+    "source": "issue",
+    "number": 757,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/757"
+  },
+  {
+    "source": "issue",
+    "number": 756,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/756"
+  },
+  {
+    "source": "issue",
+    "number": 755,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/755"
+  },
+  {
+    "source": "issue",
+    "number": 754,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/754"
+  },
+  {
+    "source": "issue",
+    "number": 753,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/753"
+  },
+  {
+    "source": "issue",
+    "number": 752,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/752"
+  },
+  {
+    "source": "issue",
+    "number": 751,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/751"
+  },
+  {
+    "source": "issue",
+    "number": 750,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/750"
+  },
+  {
+    "source": "issue",
+    "number": 749,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/749"
+  },
+  {
+    "source": "issue",
+    "number": 748,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/748"
+  },
+  {
+    "source": "issue",
+    "number": 747,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/747"
+  },
+  {
+    "source": "issue",
+    "number": 746,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/746"
+  },
+  {
+    "source": "issue",
+    "number": 745,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/745"
+  },
+  {
+    "source": "issue",
+    "number": 744,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/744"
+  },
+  {
+    "source": "issue",
+    "number": 743,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/743"
+  },
+  {
+    "source": "issue",
+    "number": 742,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/742"
+  },
+  {
+    "source": "issue",
+    "number": 741,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/741"
+  },
+  {
+    "source": "issue",
+    "number": 740,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/740"
+  },
+  {
+    "source": "issue",
+    "number": 739,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/739"
+  },
+  {
+    "source": "issue",
+    "number": 738,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/738"
+  },
+  {
+    "source": "issue",
+    "number": 737,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/737"
+  },
+  {
+    "source": "issue",
+    "number": 736,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/736"
+  },
+  {
+    "source": "issue",
+    "number": 735,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/735"
+  },
+  {
+    "source": "issue",
+    "number": 734,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/734"
+  },
+  {
+    "source": "issue",
+    "number": 733,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/733"
+  },
+  {
+    "source": "issue",
+    "number": 732,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/732"
+  },
+  {
+    "source": "issue",
+    "number": 731,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/731"
+  },
+  {
+    "source": "issue",
+    "number": 730,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/730"
+  },
+  {
+    "source": "issue",
+    "number": 729,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/729"
+  },
+  {
+    "source": "issue",
+    "number": 728,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/728"
+  },
+  {
+    "source": "issue",
+    "number": 727,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/727"
+  },
+  {
+    "source": "issue",
+    "number": 726,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/726"
+  },
+  {
+    "source": "issue",
+    "number": 725,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/725"
+  },
+  {
+    "source": "issue",
+    "number": 724,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/724"
+  },
+  {
+    "source": "issue",
+    "number": 723,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/723"
+  },
+  {
+    "source": "issue",
+    "number": 722,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/722"
+  },
+  {
+    "source": "issue",
+    "number": 721,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/721"
+  },
+  {
+    "source": "issue",
+    "number": 720,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/720"
+  },
+  {
+    "source": "issue",
+    "number": 719,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/719"
+  },
+  {
+    "source": "issue",
+    "number": 718,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/718"
+  },
+  {
+    "source": "issue",
+    "number": 717,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/717"
+  },
+  {
+    "source": "issue",
+    "number": 716,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/716"
+  },
+  {
+    "source": "issue",
+    "number": 715,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/715"
+  },
+  {
+    "source": "issue",
+    "number": 714,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/714"
+  },
+  {
+    "source": "issue",
+    "number": 713,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/713"
+  },
+  {
+    "source": "issue",
+    "number": 712,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/712"
+  },
+  {
+    "source": "issue",
+    "number": 711,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/711"
+  },
+  {
+    "source": "issue",
+    "number": 710,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/710"
+  },
+  {
+    "source": "issue",
+    "number": 709,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/709"
+  },
+  {
+    "source": "issue",
+    "number": 708,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/708"
+  },
+  {
+    "source": "issue",
+    "number": 707,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/707"
+  },
+  {
+    "source": "issue",
+    "number": 706,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/706"
+  },
+  {
+    "source": "issue",
+    "number": 705,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/705"
+  },
+  {
+    "source": "issue",
+    "number": 704,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/704"
+  },
+  {
+    "source": "issue",
+    "number": 703,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/703"
+  },
+  {
+    "source": "issue",
+    "number": 702,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/702"
+  },
+  {
+    "source": "issue",
+    "number": 701,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/701"
+  },
+  {
+    "source": "issue",
+    "number": 700,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/700"
+  },
+  {
+    "source": "issue",
+    "number": 699,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/699"
+  },
+  {
+    "source": "issue",
+    "number": 698,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/698"
+  },
+  {
+    "source": "issue",
+    "number": 697,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/697"
+  },
+  {
+    "source": "issue",
+    "number": 696,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/696"
+  },
+  {
+    "source": "issue",
+    "number": 695,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/695"
+  },
+  {
+    "source": "issue",
+    "number": 694,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/694"
+  },
+  {
+    "source": "issue",
+    "number": 693,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/693"
+  },
+  {
+    "source": "issue",
+    "number": 692,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/692"
+  },
+  {
+    "source": "issue",
+    "number": 691,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/691"
+  },
+  {
+    "source": "issue",
+    "number": 690,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/690"
+  },
+  {
+    "source": "issue",
+    "number": 689,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/689"
+  },
+  {
+    "source": "issue",
+    "number": 688,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/688"
+  },
+  {
+    "source": "issue",
+    "number": 687,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/687"
+  },
+  {
+    "source": "issue",
+    "number": 686,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/686"
+  },
+  {
+    "source": "issue",
+    "number": 685,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/685"
+  },
+  {
+    "source": "issue",
+    "number": 684,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/684"
+  },
+  {
+    "source": "issue",
+    "number": 683,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/683"
+  },
+  {
+    "source": "issue",
+    "number": 682,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/682"
+  },
+  {
+    "source": "issue",
+    "number": 681,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/681"
+  },
+  {
+    "source": "issue",
+    "number": 680,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/680"
+  },
+  {
+    "source": "issue",
+    "number": 679,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/679"
+  },
+  {
+    "source": "issue",
+    "number": 678,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/678"
+  },
+  {
+    "source": "issue",
+    "number": 677,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/677"
+  },
+  {
+    "source": "issue",
+    "number": 676,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/676"
+  },
+  {
+    "source": "issue",
+    "number": 675,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/675"
+  },
+  {
+    "source": "issue",
+    "number": 674,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/674"
+  },
+  {
+    "source": "issue",
+    "number": 673,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/673"
+  },
+  {
+    "source": "issue",
+    "number": 672,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/672"
+  },
+  {
+    "source": "issue",
+    "number": 671,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/671"
+  },
+  {
+    "source": "issue",
+    "number": 669,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/669"
+  },
+  {
+    "source": "issue",
+    "number": 668,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/668"
+  },
+  {
+    "source": "issue",
+    "number": 667,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/667"
+  },
+  {
+    "source": "issue",
+    "number": 666,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/666"
+  },
+  {
+    "source": "issue",
+    "number": 665,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/665"
+  },
+  {
+    "source": "issue",
+    "number": 664,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/664"
+  },
+  {
+    "source": "issue",
+    "number": 663,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/663"
+  },
+  {
+    "source": "issue",
+    "number": 662,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/662"
+  },
+  {
+    "source": "issue",
+    "number": 661,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/661"
+  },
+  {
+    "source": "issue",
+    "number": 660,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/660"
+  },
+  {
+    "source": "issue",
+    "number": 659,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/659"
+  },
+  {
+    "source": "issue",
+    "number": 658,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/658"
+  },
+  {
+    "source": "issue",
+    "number": 657,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/657"
+  },
+  {
+    "source": "issue",
+    "number": 656,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/656"
+  },
+  {
+    "source": "issue",
+    "number": 655,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/655"
+  },
+  {
+    "source": "issue",
+    "number": 654,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/654"
+  },
+  {
+    "source": "issue",
+    "number": 653,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/653"
+  },
+  {
+    "source": "issue",
+    "number": 652,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/652"
+  },
+  {
+    "source": "issue",
+    "number": 651,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/651"
+  },
+  {
+    "source": "issue",
+    "number": 650,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/650"
+  },
+  {
+    "source": "issue",
+    "number": 649,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/649"
+  },
+  {
+    "source": "issue",
+    "number": 648,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/648"
+  },
+  {
+    "source": "issue",
+    "number": 647,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/647"
+  },
+  {
+    "source": "issue",
+    "number": 646,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/646"
+  },
+  {
+    "source": "issue",
+    "number": 645,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/645"
+  },
+  {
+    "source": "issue",
+    "number": 644,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/644"
+  },
+  {
+    "source": "issue",
+    "number": 643,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/643"
+  },
+  {
+    "source": "issue",
+    "number": 642,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/642"
+  },
+  {
+    "source": "issue",
+    "number": 641,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/641"
+  },
+  {
+    "source": "issue",
+    "number": 640,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/640"
+  },
+  {
+    "source": "issue",
+    "number": 639,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/639"
+  },
+  {
+    "source": "issue",
+    "number": 638,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/638"
+  },
+  {
+    "source": "issue",
+    "number": 637,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/637"
+  },
+  {
+    "source": "issue",
+    "number": 636,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/636"
+  },
+  {
+    "source": "issue",
+    "number": 635,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/635"
+  },
+  {
+    "source": "issue",
+    "number": 634,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/634"
+  },
+  {
+    "source": "issue",
+    "number": 633,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/633"
+  },
+  {
+    "source": "issue",
+    "number": 632,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/632"
+  },
+  {
+    "source": "issue",
+    "number": 631,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/631"
+  },
+  {
+    "source": "issue",
+    "number": 630,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/630"
+  },
+  {
+    "source": "issue",
+    "number": 629,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/629"
+  },
+  {
+    "source": "issue",
+    "number": 628,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/628"
+  },
+  {
+    "source": "issue",
+    "number": 627,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/627"
+  },
+  {
+    "source": "issue",
+    "number": 626,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/626"
+  },
+  {
+    "source": "issue",
+    "number": 625,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/625"
+  },
+  {
+    "source": "issue",
+    "number": 624,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/624"
+  },
+  {
+    "source": "issue",
+    "number": 623,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/623"
+  },
+  {
+    "source": "issue",
+    "number": 622,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/622"
+  },
+  {
+    "source": "issue",
+    "number": 621,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/621"
+  },
+  {
+    "source": "issue",
+    "number": 620,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/620"
+  },
+  {
+    "source": "issue",
+    "number": 619,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/619"
+  },
+  {
+    "source": "issue",
+    "number": 618,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/618"
+  },
+  {
+    "source": "issue",
+    "number": 617,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/617"
+  },
+  {
+    "source": "issue",
+    "number": 616,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/616"
+  },
+  {
+    "source": "issue",
+    "number": 615,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/615"
+  },
+  {
+    "source": "issue",
+    "number": 614,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/614"
+  },
+  {
+    "source": "issue",
+    "number": 613,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/613"
+  },
+  {
+    "source": "issue",
+    "number": 612,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/612"
+  },
+  {
+    "source": "issue",
+    "number": 611,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/611"
+  },
+  {
+    "source": "issue",
+    "number": 610,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/610"
+  },
+  {
+    "source": "issue",
+    "number": 609,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/609"
+  },
+  {
+    "source": "issue",
+    "number": 608,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/608"
+  },
+  {
+    "source": "issue",
+    "number": 607,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/607"
+  },
+  {
+    "source": "issue",
+    "number": 606,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/606"
+  },
+  {
+    "source": "issue",
+    "number": 605,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/605"
+  },
+  {
+    "source": "issue",
+    "number": 604,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/604"
+  },
+  {
+    "source": "issue",
+    "number": 603,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/603"
+  },
+  {
+    "source": "issue",
+    "number": 602,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/602"
+  },
+  {
+    "source": "issue",
+    "number": 601,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/601"
+  },
+  {
+    "source": "issue",
+    "number": 600,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/600"
+  },
+  {
+    "source": "issue",
+    "number": 599,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/599"
+  },
+  {
+    "source": "issue",
+    "number": 598,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/598"
+  },
+  {
+    "source": "issue",
+    "number": 597,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/597"
+  },
+  {
+    "source": "issue",
+    "number": 596,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/596"
+  },
+  {
+    "source": "issue",
+    "number": 595,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/595"
+  },
+  {
+    "source": "issue",
+    "number": 594,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/594"
+  },
+  {
+    "source": "issue",
+    "number": 593,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/593"
+  },
+  {
+    "source": "issue",
+    "number": 592,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/592"
+  },
+  {
+    "source": "issue",
+    "number": 591,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/591"
+  },
+  {
+    "source": "issue",
+    "number": 590,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/590"
+  },
+  {
+    "source": "issue",
+    "number": 589,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/589"
+  },
+  {
+    "source": "issue",
+    "number": 588,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/588"
+  },
+  {
+    "source": "issue",
+    "number": 587,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/587"
+  },
+  {
+    "source": "issue",
+    "number": 586,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/586"
+  },
+  {
+    "source": "issue",
+    "number": 585,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/585"
+  },
+  {
+    "source": "issue",
+    "number": 584,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/584"
+  },
+  {
+    "source": "issue",
+    "number": 583,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/583"
+  },
+  {
+    "source": "issue",
+    "number": 582,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/582"
+  },
+  {
+    "source": "issue",
+    "number": 581,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/581"
+  },
+  {
+    "source": "issue",
+    "number": 580,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/580"
+  },
+  {
+    "source": "issue",
+    "number": 579,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/579"
+  },
+  {
+    "source": "issue",
+    "number": 578,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/578"
+  },
+  {
+    "source": "issue",
+    "number": 577,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/577"
+  },
+  {
+    "source": "issue",
+    "number": 576,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/576"
+  },
+  {
+    "source": "issue",
+    "number": 575,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/575"
+  },
+  {
+    "source": "issue",
+    "number": 574,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/574"
+  },
+  {
+    "source": "issue",
+    "number": 573,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/573"
+  },
+  {
+    "source": "issue",
+    "number": 572,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/572"
+  },
+  {
+    "source": "issue",
+    "number": 571,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/571"
+  },
+  {
+    "source": "issue",
+    "number": 570,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/570"
+  },
+  {
+    "source": "issue",
+    "number": 568,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/568"
+  },
+  {
+    "source": "issue",
+    "number": 567,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/567"
+  },
+  {
+    "source": "issue",
+    "number": 566,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/566"
+  },
+  {
+    "source": "issue",
+    "number": 565,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/565"
+  },
+  {
+    "source": "issue",
+    "number": 564,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/564"
+  },
+  {
+    "source": "issue",
+    "number": 563,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/563"
+  },
+  {
+    "source": "issue",
+    "number": 562,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/562"
+  },
+  {
+    "source": "issue",
+    "number": 561,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/561"
+  },
+  {
+    "source": "issue",
+    "number": 560,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/560"
+  },
+  {
+    "source": "issue",
+    "number": 559,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/559"
+  },
+  {
+    "source": "issue",
+    "number": 558,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/558"
+  },
+  {
+    "source": "issue",
+    "number": 557,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/557"
+  },
+  {
+    "source": "issue",
+    "number": 556,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/556"
+  },
+  {
+    "source": "issue",
+    "number": 555,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/555"
+  },
+  {
+    "source": "issue",
+    "number": 554,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/554"
+  },
+  {
+    "source": "issue",
+    "number": 553,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/553"
+  },
+  {
+    "source": "issue",
+    "number": 552,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/552"
+  },
+  {
+    "source": "issue",
+    "number": 551,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/551"
+  },
+  {
+    "source": "issue",
+    "number": 550,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/550"
+  },
+  {
+    "source": "issue",
+    "number": 549,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/549"
+  },
+  {
+    "source": "issue",
+    "number": 548,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/548"
+  },
+  {
+    "source": "issue",
+    "number": 547,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/547"
+  },
+  {
+    "source": "issue",
+    "number": 546,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/546"
+  },
+  {
+    "source": "issue",
+    "number": 545,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/545"
+  },
+  {
+    "source": "issue",
+    "number": 544,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/544"
+  },
+  {
+    "source": "issue",
+    "number": 543,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/543"
+  },
+  {
+    "source": "issue",
+    "number": 542,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/542"
+  },
+  {
+    "source": "issue",
+    "number": 541,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/541"
+  },
+  {
+    "source": "issue",
+    "number": 540,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/540"
+  },
+  {
+    "source": "issue",
+    "number": 539,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/539"
+  },
+  {
+    "source": "issue",
+    "number": 538,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/538"
+  },
+  {
+    "source": "issue",
+    "number": 537,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/537"
+  },
+  {
+    "source": "issue",
+    "number": 536,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/536"
+  },
+  {
+    "source": "issue",
+    "number": 535,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/535"
+  },
+  {
+    "source": "issue",
+    "number": 534,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/534"
+  },
+  {
+    "source": "issue",
+    "number": 533,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/533"
+  },
+  {
+    "source": "issue",
+    "number": 532,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/532"
+  },
+  {
+    "source": "issue",
+    "number": 531,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/531"
+  },
+  {
+    "source": "issue",
+    "number": 530,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/530"
+  },
+  {
+    "source": "issue",
+    "number": 529,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/529"
+  },
+  {
+    "source": "issue",
+    "number": 528,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/528"
+  },
+  {
+    "source": "issue",
+    "number": 527,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/527"
+  },
+  {
+    "source": "issue",
+    "number": 526,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/526"
+  },
+  {
+    "source": "issue",
+    "number": 525,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/525"
+  },
+  {
+    "source": "issue",
+    "number": 524,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/524"
+  },
+  {
+    "source": "issue",
+    "number": 523,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/523"
+  },
+  {
+    "source": "issue",
+    "number": 522,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/522"
+  },
+  {
+    "source": "issue",
+    "number": 521,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/521"
+  },
+  {
+    "source": "issue",
+    "number": 520,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/520"
+  },
+  {
+    "source": "issue",
+    "number": 519,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/519"
+  },
+  {
+    "source": "issue",
+    "number": 518,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/518"
+  },
+  {
+    "source": "issue",
+    "number": 517,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/517"
+  },
+  {
+    "source": "issue",
+    "number": 516,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/516"
+  },
+  {
+    "source": "issue",
+    "number": 515,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/515"
+  },
+  {
+    "source": "issue",
+    "number": 514,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/514"
+  },
+  {
+    "source": "issue",
+    "number": 513,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/513"
+  },
+  {
+    "source": "issue",
+    "number": 512,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/512"
+  },
+  {
+    "source": "issue",
+    "number": 511,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/511"
+  },
+  {
+    "source": "issue",
+    "number": 510,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/510"
+  },
+  {
+    "source": "issue",
+    "number": 509,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/509"
+  },
+  {
+    "source": "issue",
+    "number": 508,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/508"
+  },
+  {
+    "source": "issue",
+    "number": 507,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/507"
+  },
+  {
+    "source": "issue",
+    "number": 506,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/506"
+  },
+  {
+    "source": "issue",
+    "number": 505,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/505"
+  },
+  {
+    "source": "issue",
+    "number": 504,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/504"
+  },
+  {
+    "source": "issue",
+    "number": 503,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/503"
+  },
+  {
+    "source": "issue",
+    "number": 502,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/502"
+  },
+  {
+    "source": "issue",
+    "number": 501,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/501"
+  },
+  {
+    "source": "issue",
+    "number": 500,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/500"
+  },
+  {
+    "source": "issue",
+    "number": 499,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/499"
+  },
+  {
+    "source": "issue",
+    "number": 498,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/498"
+  },
+  {
+    "source": "issue",
+    "number": 497,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/497"
+  },
+  {
+    "source": "issue",
+    "number": 496,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/496"
+  },
+  {
+    "source": "issue",
+    "number": 495,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/495"
+  },
+  {
+    "source": "issue",
+    "number": 494,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/494"
+  },
+  {
+    "source": "issue",
+    "number": 493,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/493"
+  },
+  {
+    "source": "issue",
+    "number": 492,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/492"
+  },
+  {
+    "source": "issue",
+    "number": 491,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/491"
+  },
+  {
+    "source": "issue",
+    "number": 490,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/490"
+  },
+  {
+    "source": "issue",
+    "number": 489,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/489"
+  },
+  {
+    "source": "issue",
+    "number": 488,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/488"
+  },
+  {
+    "source": "issue",
+    "number": 487,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/487"
+  },
+  {
+    "source": "issue",
+    "number": 486,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/486"
+  },
+  {
+    "source": "issue",
+    "number": 485,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/485"
+  },
+  {
+    "source": "issue",
+    "number": 484,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/484"
+  },
+  {
+    "source": "issue",
+    "number": 483,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/483"
+  },
+  {
+    "source": "issue",
+    "number": 482,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/482"
+  },
+  {
+    "source": "issue",
+    "number": 481,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/481"
+  },
+  {
+    "source": "issue",
+    "number": 480,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/480"
+  },
+  {
+    "source": "issue",
+    "number": 479,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/479"
+  },
+  {
+    "source": "issue",
+    "number": 478,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/478"
+  },
+  {
+    "source": "issue",
+    "number": 477,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/477"
+  },
+  {
+    "source": "issue",
+    "number": 476,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/476"
+  },
+  {
+    "source": "issue",
+    "number": 475,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/475"
+  },
+  {
+    "source": "issue",
+    "number": 474,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/474"
+  },
+  {
+    "source": "issue",
+    "number": 473,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/473"
+  },
+  {
+    "source": "issue",
+    "number": 472,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/472"
+  },
+  {
+    "source": "issue",
+    "number": 471,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/471"
+  },
+  {
+    "source": "issue",
+    "number": 470,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/470"
+  },
+  {
+    "source": "issue",
+    "number": 469,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/469"
+  },
+  {
+    "source": "issue",
+    "number": 468,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/468"
+  },
+  {
+    "source": "issue",
+    "number": 467,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/467"
+  },
+  {
+    "source": "issue",
+    "number": 466,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/466"
+  },
+  {
+    "source": "issue",
+    "number": 465,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/465"
+  },
+  {
+    "source": "issue",
+    "number": 464,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/464"
+  },
+  {
+    "source": "issue",
+    "number": 463,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/463"
+  },
+  {
+    "source": "issue",
+    "number": 462,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/462"
+  },
+  {
+    "source": "issue",
+    "number": 461,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/461"
+  },
+  {
+    "source": "issue",
+    "number": 460,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/460"
+  },
+  {
+    "source": "issue",
+    "number": 459,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/459"
+  },
+  {
+    "source": "issue",
+    "number": 458,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/458"
+  },
+  {
+    "source": "issue",
+    "number": 457,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/457"
+  },
+  {
+    "source": "issue",
+    "number": 456,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/456"
+  },
+  {
+    "source": "issue",
+    "number": 455,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/455"
+  },
+  {
+    "source": "issue",
+    "number": 454,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/454"
+  },
+  {
+    "source": "issue",
+    "number": 453,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/453"
+  },
+  {
+    "source": "issue",
+    "number": 452,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/452"
+  },
+  {
+    "source": "issue",
+    "number": 451,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/451"
+  },
+  {
+    "source": "issue",
+    "number": 450,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/450"
+  },
+  {
+    "source": "issue",
+    "number": 449,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/449"
+  },
+  {
+    "source": "issue",
+    "number": 448,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/448"
+  },
+  {
+    "source": "issue",
+    "number": 447,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/447"
+  },
+  {
+    "source": "issue",
+    "number": 446,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/446"
+  },
+  {
+    "source": "issue",
+    "number": 445,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/445"
+  },
+  {
+    "source": "issue",
+    "number": 444,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/444"
+  },
+  {
+    "source": "issue",
+    "number": 443,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/443"
+  },
+  {
+    "source": "issue",
+    "number": 442,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/442"
+  },
+  {
+    "source": "issue",
+    "number": 441,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/441"
+  },
+  {
+    "source": "issue",
+    "number": 440,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/440"
+  },
+  {
+    "source": "issue",
+    "number": 439,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/439"
+  },
+  {
+    "source": "issue",
+    "number": 438,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/438"
+  },
+  {
+    "source": "issue",
+    "number": 437,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/437"
+  },
+  {
+    "source": "issue",
+    "number": 436,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/436"
+  },
+  {
+    "source": "issue",
+    "number": 435,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/435"
+  },
+  {
+    "source": "issue",
+    "number": 434,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/434"
+  },
+  {
+    "source": "issue",
+    "number": 433,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/433"
+  },
+  {
+    "source": "issue",
+    "number": 432,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/432"
+  },
+  {
+    "source": "issue",
+    "number": 431,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/431"
+  },
+  {
+    "source": "issue",
+    "number": 430,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/430"
+  },
+  {
+    "source": "issue",
+    "number": 429,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/429"
+  },
+  {
+    "source": "issue",
+    "number": 428,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/428"
+  },
+  {
+    "source": "issue",
+    "number": 427,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/427"
+  },
+  {
+    "source": "issue",
+    "number": 426,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/426"
+  },
+  {
+    "source": "issue",
+    "number": 425,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/425"
+  },
+  {
+    "source": "issue",
+    "number": 424,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/424"
+  },
+  {
+    "source": "issue",
+    "number": 423,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/423"
+  },
+  {
+    "source": "issue",
+    "number": 422,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/422"
+  },
+  {
+    "source": "issue",
+    "number": 421,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/421"
+  },
+  {
+    "source": "issue",
+    "number": 420,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/420"
+  },
+  {
+    "source": "issue",
+    "number": 419,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/419"
+  },
+  {
+    "source": "issue",
+    "number": 418,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/418"
+  },
+  {
+    "source": "issue",
+    "number": 417,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/417"
+  },
+  {
+    "source": "issue",
+    "number": 416,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/416"
+  },
+  {
+    "source": "issue",
+    "number": 415,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/415"
+  },
+  {
+    "source": "issue",
+    "number": 414,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/414"
+  },
+  {
+    "source": "issue",
+    "number": 413,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/413"
+  },
+  {
+    "source": "issue",
+    "number": 412,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/412"
+  },
+  {
+    "source": "issue",
+    "number": 411,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/411"
+  },
+  {
+    "source": "issue",
+    "number": 410,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/410"
+  },
+  {
+    "source": "issue",
+    "number": 409,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/409"
+  },
+  {
+    "source": "issue",
+    "number": 408,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/408"
+  },
+  {
+    "source": "issue",
+    "number": 407,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/407"
+  },
+  {
+    "source": "issue",
+    "number": 406,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/406"
+  },
+  {
+    "source": "issue",
+    "number": 405,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/405"
+  },
+  {
+    "source": "issue",
+    "number": 404,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/404"
+  },
+  {
+    "source": "issue",
+    "number": 403,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/403"
+  },
+  {
+    "source": "issue",
+    "number": 402,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/402"
+  },
+  {
+    "source": "issue",
+    "number": 401,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/401"
+  },
+  {
+    "source": "issue",
+    "number": 400,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/400"
+  },
+  {
+    "source": "issue",
+    "number": 399,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/399"
+  },
+  {
+    "source": "issue",
+    "number": 398,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/398"
+  },
+  {
+    "source": "issue",
+    "number": 397,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/397"
+  },
+  {
+    "source": "issue",
+    "number": 396,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/396"
+  },
+  {
+    "source": "issue",
+    "number": 395,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/395"
+  },
+  {
+    "source": "issue",
+    "number": 394,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/394"
+  },
+  {
+    "source": "issue",
+    "number": 393,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/393"
+  },
+  {
+    "source": "issue",
+    "number": 392,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/392"
+  },
+  {
+    "source": "issue",
+    "number": 391,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/391"
+  },
+  {
+    "source": "issue",
+    "number": 390,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/390"
+  },
+  {
+    "source": "issue",
+    "number": 389,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/389"
+  },
+  {
+    "source": "issue",
+    "number": 388,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/388"
+  },
+  {
+    "source": "issue",
+    "number": 387,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/387"
+  },
+  {
+    "source": "issue",
+    "number": 386,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/386"
+  },
+  {
+    "source": "issue",
+    "number": 385,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/385"
+  },
+  {
+    "source": "issue",
+    "number": 384,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/384"
+  },
+  {
+    "source": "issue",
+    "number": 383,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/383"
+  },
+  {
+    "source": "issue",
+    "number": 382,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/382"
+  },
+  {
+    "source": "issue",
+    "number": 381,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/381"
+  },
+  {
+    "source": "issue",
+    "number": 380,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/380"
+  },
+  {
+    "source": "issue",
+    "number": 379,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/379"
+  },
+  {
+    "source": "issue",
+    "number": 378,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/378"
+  },
+  {
+    "source": "issue",
+    "number": 377,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/377"
+  },
+  {
+    "source": "issue",
+    "number": 376,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/376"
+  },
+  {
+    "source": "issue",
+    "number": 375,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/375"
+  },
+  {
+    "source": "issue",
+    "number": 374,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/374"
+  },
+  {
+    "source": "issue",
+    "number": 373,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/373"
+  },
+  {
+    "source": "issue",
+    "number": 372,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/372"
+  },
+  {
+    "source": "issue",
+    "number": 371,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/371"
+  },
+  {
+    "source": "issue",
+    "number": 370,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/370"
+  },
+  {
+    "source": "issue",
+    "number": 369,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/369"
+  },
+  {
+    "source": "issue",
+    "number": 368,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/368"
+  },
+  {
+    "source": "issue",
+    "number": 367,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/367"
+  },
+  {
+    "source": "issue",
+    "number": 366,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/366"
+  },
+  {
+    "source": "issue",
+    "number": 365,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/365"
+  },
+  {
+    "source": "issue",
+    "number": 364,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/364"
+  },
+  {
+    "source": "issue",
+    "number": 363,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/363"
+  },
+  {
+    "source": "issue",
+    "number": 362,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/362"
+  },
+  {
+    "source": "issue",
+    "number": 361,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/361"
+  },
+  {
+    "source": "issue",
+    "number": 360,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/360"
+  },
+  {
+    "source": "issue",
+    "number": 359,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/359"
+  },
+  {
+    "source": "issue",
+    "number": 358,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/358"
+  },
+  {
+    "source": "issue",
+    "number": 357,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/357"
+  },
+  {
+    "source": "issue",
+    "number": 356,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/356"
+  },
+  {
+    "source": "issue",
+    "number": 355,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/355"
+  },
+  {
+    "source": "issue",
+    "number": 354,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/354"
+  },
+  {
+    "source": "issue",
+    "number": 353,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/353"
+  },
+  {
+    "source": "issue",
+    "number": 352,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/352"
+  },
+  {
+    "source": "issue",
+    "number": 351,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/351"
+  },
+  {
+    "source": "issue",
+    "number": 350,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/350"
+  },
+  {
+    "source": "issue",
+    "number": 349,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/349"
+  },
+  {
+    "source": "issue",
+    "number": 348,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/348"
+  },
+  {
+    "source": "issue",
+    "number": 347,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/347"
+  },
+  {
+    "source": "issue",
+    "number": 346,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/346"
+  },
+  {
+    "source": "issue",
+    "number": 345,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/345"
+  },
+  {
+    "source": "issue",
+    "number": 344,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/344"
+  },
+  {
+    "source": "issue",
+    "number": 343,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/343"
+  },
+  {
+    "source": "issue",
+    "number": 342,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/342"
+  },
+  {
+    "source": "issue",
+    "number": 341,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/341"
+  },
+  {
+    "source": "issue",
+    "number": 340,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/340"
+  },
+  {
+    "source": "issue",
+    "number": 339,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/339"
+  },
+  {
+    "source": "issue",
+    "number": 338,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/338"
+  },
+  {
+    "source": "issue",
+    "number": 337,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/337"
+  },
+  {
+    "source": "issue",
+    "number": 336,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/336"
+  },
+  {
+    "source": "issue",
+    "number": 335,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/335"
+  },
+  {
+    "source": "issue",
+    "number": 334,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/334"
+  },
+  {
+    "source": "issue",
+    "number": 333,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/333"
+  },
+  {
+    "source": "issue",
+    "number": 332,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/332"
+  },
+  {
+    "source": "issue",
+    "number": 331,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/331"
+  },
+  {
+    "source": "issue",
+    "number": 330,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/330"
+  },
+  {
+    "source": "issue",
+    "number": 329,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/329"
+  },
+  {
+    "source": "issue",
+    "number": 328,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/328"
+  },
+  {
+    "source": "issue",
+    "number": 327,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/327"
+  },
+  {
+    "source": "issue",
+    "number": 326,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/326"
+  },
+  {
+    "source": "issue",
+    "number": 325,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/325"
+  },
+  {
+    "source": "issue",
+    "number": 324,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/324"
+  },
+  {
+    "source": "issue",
+    "number": 323,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/323"
+  },
+  {
+    "source": "issue",
+    "number": 322,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/322"
+  },
+  {
+    "source": "issue",
+    "number": 321,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/321"
+  },
+  {
+    "source": "issue",
+    "number": 320,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/320"
+  },
+  {
+    "source": "issue",
+    "number": 319,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/319"
+  },
+  {
+    "source": "issue",
+    "number": 318,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/318"
+  },
+  {
+    "source": "issue",
+    "number": 317,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/317"
+  },
+  {
+    "source": "issue",
+    "number": 316,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/316"
+  },
+  {
+    "source": "issue",
+    "number": 315,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/315"
+  },
+  {
+    "source": "issue",
+    "number": 314,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/314"
+  },
+  {
+    "source": "issue",
+    "number": 313,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/313"
+  },
+  {
+    "source": "issue",
+    "number": 312,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/312"
+  },
+  {
+    "source": "issue",
+    "number": 311,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/311"
+  },
+  {
+    "source": "issue",
+    "number": 310,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/310"
+  },
+  {
+    "source": "issue",
+    "number": 309,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/309"
+  },
+  {
+    "source": "issue",
+    "number": 308,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/308"
+  },
+  {
+    "source": "issue",
+    "number": 307,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/307"
+  },
+  {
+    "source": "issue",
+    "number": 306,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/306"
+  },
+  {
+    "source": "issue",
+    "number": 305,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/305"
+  },
+  {
+    "source": "issue",
+    "number": 304,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/304"
+  },
+  {
+    "source": "issue",
+    "number": 303,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/303"
+  },
+  {
+    "source": "issue",
+    "number": 302,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/302"
+  },
+  {
+    "source": "issue",
+    "number": 301,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/301"
+  },
+  {
+    "source": "issue",
+    "number": 300,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/300"
+  },
+  {
+    "source": "issue",
+    "number": 299,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/299"
+  },
+  {
+    "source": "issue",
+    "number": 298,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/298"
+  },
+  {
+    "source": "issue",
+    "number": 297,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/297"
+  },
+  {
+    "source": "issue",
+    "number": 296,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/296"
+  },
+  {
+    "source": "issue",
+    "number": 295,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/295"
+  },
+  {
+    "source": "issue",
+    "number": 294,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/294"
+  },
+  {
+    "source": "issue",
+    "number": 293,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/293"
+  },
+  {
+    "source": "issue",
+    "number": 292,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/292"
+  },
+  {
+    "source": "issue",
+    "number": 291,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/291"
+  },
+  {
+    "source": "issue",
+    "number": 290,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/290"
+  },
+  {
+    "source": "issue",
+    "number": 289,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/289"
+  },
+  {
+    "source": "issue",
+    "number": 288,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/288"
+  },
+  {
+    "source": "issue",
+    "number": 287,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/287"
+  },
+  {
+    "source": "issue",
+    "number": 286,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/286"
+  },
+  {
+    "source": "issue",
+    "number": 285,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/285"
+  },
+  {
+    "source": "issue",
+    "number": 284,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/284"
+  },
+  {
+    "source": "issue",
+    "number": 283,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/283"
+  },
+  {
+    "source": "issue",
+    "number": 282,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/282"
+  },
+  {
+    "source": "issue",
+    "number": 281,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/281"
+  },
+  {
+    "source": "issue",
+    "number": 280,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/280"
+  },
+  {
+    "source": "issue",
+    "number": 279,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/279"
+  },
+  {
+    "source": "issue",
+    "number": 278,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/278"
+  },
+  {
+    "source": "issue",
+    "number": 277,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/277"
+  },
+  {
+    "source": "issue",
+    "number": 276,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/276"
+  },
+  {
+    "source": "issue",
+    "number": 275,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/275"
+  },
+  {
+    "source": "issue",
+    "number": 274,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/274"
+  },
+  {
+    "source": "issue",
+    "number": 273,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/273"
+  },
+  {
+    "source": "issue",
+    "number": 272,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/272"
+  },
+  {
+    "source": "issue",
+    "number": 271,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/271"
+  },
+  {
+    "source": "issue",
+    "number": 270,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/270"
+  },
+  {
+    "source": "issue",
+    "number": 269,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/269"
+  },
+  {
+    "source": "issue",
+    "number": 268,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/268"
+  },
+  {
+    "source": "issue",
+    "number": 267,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/267"
+  },
+  {
+    "source": "issue",
+    "number": 266,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/266"
+  },
+  {
+    "source": "issue",
+    "number": 265,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/265"
+  },
+  {
+    "source": "issue",
+    "number": 264,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/264"
+  },
+  {
+    "source": "issue",
+    "number": 263,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/263"
+  },
+  {
+    "source": "issue",
+    "number": 262,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/262"
+  },
+  {
+    "source": "issue",
+    "number": 261,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/261"
+  },
+  {
+    "source": "issue",
+    "number": 260,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/260"
+  },
+  {
+    "source": "issue",
+    "number": 259,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/259"
+  },
+  {
+    "source": "issue",
+    "number": 258,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/258"
+  },
+  {
+    "source": "issue",
+    "number": 257,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/257"
+  },
+  {
+    "source": "issue",
+    "number": 256,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/256"
+  },
+  {
+    "source": "issue",
+    "number": 255,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/255"
+  },
+  {
+    "source": "issue",
+    "number": 254,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/254"
+  },
+  {
+    "source": "issue",
+    "number": 253,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/253"
+  },
+  {
+    "source": "issue",
+    "number": 252,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/252"
+  },
+  {
+    "source": "issue",
+    "number": 251,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/251"
+  },
+  {
+    "source": "issue",
+    "number": 250,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/250"
+  },
+  {
+    "source": "issue",
+    "number": 249,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/249"
+  },
+  {
+    "source": "issue",
+    "number": 248,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/248"
+  },
+  {
+    "source": "issue",
+    "number": 247,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/247"
+  },
+  {
+    "source": "issue",
+    "number": 246,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/246"
+  },
+  {
+    "source": "issue",
+    "number": 245,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/245"
+  },
+  {
+    "source": "issue",
+    "number": 244,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/244"
+  },
+  {
+    "source": "issue",
+    "number": 243,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/243"
+  },
+  {
+    "source": "issue",
+    "number": 242,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/242"
+  },
+  {
+    "source": "issue",
+    "number": 241,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/241"
+  },
+  {
+    "source": "issue",
+    "number": 240,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/240"
+  },
+  {
+    "source": "issue",
+    "number": 239,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/239"
+  },
+  {
+    "source": "issue",
+    "number": 238,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/238"
+  },
+  {
+    "source": "issue",
+    "number": 237,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/237"
+  },
+  {
+    "source": "issue",
+    "number": 236,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/236"
+  },
+  {
+    "source": "issue",
+    "number": 235,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/235"
+  },
+  {
+    "source": "issue",
+    "number": 234,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/234"
+  },
+  {
+    "source": "issue",
+    "number": 233,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/233"
+  },
+  {
+    "source": "issue",
+    "number": 232,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/232"
+  },
+  {
+    "source": "issue",
+    "number": 231,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/231"
+  },
+  {
+    "source": "issue",
+    "number": 230,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/230"
+  },
+  {
+    "source": "issue",
+    "number": 229,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/229"
+  },
+  {
+    "source": "issue",
+    "number": 228,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/228"
+  },
+  {
+    "source": "issue",
+    "number": 227,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/227"
+  },
+  {
+    "source": "issue",
+    "number": 226,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/226"
+  },
+  {
+    "source": "issue",
+    "number": 225,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/225"
+  },
+  {
+    "source": "issue",
+    "number": 224,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/224"
+  },
+  {
+    "source": "issue",
+    "number": 223,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/223"
+  },
+  {
+    "source": "issue",
+    "number": 222,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/222"
+  },
+  {
+    "source": "issue",
+    "number": 221,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/221"
+  },
+  {
+    "source": "issue",
+    "number": 220,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/220"
+  },
+  {
+    "source": "issue",
+    "number": 219,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/219"
+  },
+  {
+    "source": "issue",
+    "number": 218,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/218"
+  },
+  {
+    "source": "issue",
+    "number": 217,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/217"
+  },
+  {
+    "source": "issue",
+    "number": 216,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/216"
+  },
+  {
+    "source": "issue",
+    "number": 215,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/215"
+  },
+  {
+    "source": "issue",
+    "number": 214,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/214"
+  },
+  {
+    "source": "issue",
+    "number": 213,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/213"
+  },
+  {
+    "source": "issue",
+    "number": 212,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/212"
+  },
+  {
+    "source": "issue",
+    "number": 211,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/211"
+  },
+  {
+    "source": "issue",
+    "number": 210,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/210"
+  },
+  {
+    "source": "issue",
+    "number": 209,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/209"
+  },
+  {
+    "source": "issue",
+    "number": 208,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/208"
+  },
+  {
+    "source": "issue",
+    "number": 207,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/207"
+  },
+  {
+    "source": "issue",
+    "number": 206,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/206"
+  },
+  {
+    "source": "issue",
+    "number": 205,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/205"
+  },
+  {
+    "source": "issue",
+    "number": 204,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/204"
+  },
+  {
+    "source": "issue",
+    "number": 203,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/203"
+  },
+  {
+    "source": "issue",
+    "number": 202,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/202"
+  },
+  {
+    "source": "issue",
+    "number": 201,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/201"
+  },
+  {
+    "source": "issue",
+    "number": 200,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/200"
+  },
+  {
+    "source": "issue",
+    "number": 199,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/199"
+  },
+  {
+    "source": "issue",
+    "number": 198,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/198"
+  },
+  {
+    "source": "issue",
+    "number": 197,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/197"
+  },
+  {
+    "source": "issue",
+    "number": 196,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/196"
+  },
+  {
+    "source": "issue",
+    "number": 195,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/195"
+  },
+  {
+    "source": "issue",
+    "number": 194,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/194"
+  },
+  {
+    "source": "issue",
+    "number": 193,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/193"
+  },
+  {
+    "source": "issue",
+    "number": 192,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/192"
+  },
+  {
+    "source": "issue",
+    "number": 191,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/191"
+  },
+  {
+    "source": "issue",
+    "number": 190,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/190"
+  },
+  {
+    "source": "issue",
+    "number": 189,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/189"
+  },
+  {
+    "source": "issue",
+    "number": 188,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/188"
+  },
+  {
+    "source": "issue",
+    "number": 187,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/187"
+  },
+  {
+    "source": "issue",
+    "number": 186,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/186"
+  },
+  {
+    "source": "issue",
+    "number": 185,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/185"
+  },
+  {
+    "source": "issue",
+    "number": 184,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/184"
+  },
+  {
+    "source": "issue",
+    "number": 183,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/183"
+  },
+  {
+    "source": "issue",
+    "number": 182,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/182"
+  },
+  {
+    "source": "issue",
+    "number": 181,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/181"
+  },
+  {
+    "source": "issue",
+    "number": 180,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/180"
+  },
+  {
+    "source": "issue",
+    "number": 179,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/179"
+  },
+  {
+    "source": "issue",
+    "number": 178,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/178"
+  },
+  {
+    "source": "issue",
+    "number": 177,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/177"
+  },
+  {
+    "source": "issue",
+    "number": 176,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/176"
+  },
+  {
+    "source": "issue",
+    "number": 175,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/175"
+  },
+  {
+    "source": "issue",
+    "number": 174,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/174"
+  },
+  {
+    "source": "issue",
+    "number": 173,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/173"
+  },
+  {
+    "source": "issue",
+    "number": 172,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/172"
+  },
+  {
+    "source": "issue",
+    "number": 171,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/171"
+  },
+  {
+    "source": "issue",
+    "number": 170,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/170"
+  },
+  {
+    "source": "issue",
+    "number": 169,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/169"
+  },
+  {
+    "source": "issue",
+    "number": 168,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/168"
+  },
+  {
+    "source": "issue",
+    "number": 167,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/167"
+  },
+  {
+    "source": "issue",
+    "number": 166,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/166"
+  },
+  {
+    "source": "issue",
+    "number": 165,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/165"
+  },
+  {
+    "source": "issue",
+    "number": 163,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/163"
+  },
+  {
+    "source": "issue",
+    "number": 162,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/162"
+  },
+  {
+    "source": "issue",
+    "number": 161,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/161"
+  },
+  {
+    "source": "issue",
+    "number": 160,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/160"
+  },
+  {
+    "source": "issue",
+    "number": 159,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/159"
+  },
+  {
+    "source": "issue",
+    "number": 158,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/158"
+  },
+  {
+    "source": "issue",
+    "number": 157,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/157"
+  },
+  {
+    "source": "issue",
+    "number": 156,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/156"
+  },
+  {
+    "source": "issue",
+    "number": 155,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/155"
+  },
+  {
+    "source": "issue",
+    "number": 154,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/154"
+  },
+  {
+    "source": "issue",
+    "number": 153,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/153"
+  },
+  {
+    "source": "issue",
+    "number": 152,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/152"
+  },
+  {
+    "source": "issue",
+    "number": 151,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/151"
+  },
+  {
+    "source": "issue",
+    "number": 150,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/150"
+  },
+  {
+    "source": "issue",
+    "number": 149,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/149"
+  },
+  {
+    "source": "issue",
+    "number": 148,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/148"
+  },
+  {
+    "source": "issue",
+    "number": 147,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/147"
+  },
+  {
+    "source": "issue",
+    "number": 146,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/146"
+  },
+  {
+    "source": "issue",
+    "number": 145,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/145"
+  },
+  {
+    "source": "issue",
+    "number": 144,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/144"
+  },
+  {
+    "source": "issue",
+    "number": 143,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/143"
+  },
+  {
+    "source": "issue",
+    "number": 142,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/142"
+  },
+  {
+    "source": "issue",
+    "number": 141,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/141"
+  },
+  {
+    "source": "issue",
+    "number": 140,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/140"
+  },
+  {
+    "source": "issue",
+    "number": 139,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/139"
+  },
+  {
+    "source": "issue",
+    "number": 138,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/138"
+  },
+  {
+    "source": "issue",
+    "number": 137,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/137"
+  },
+  {
+    "source": "issue",
+    "number": 136,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/136"
+  },
+  {
+    "source": "issue",
+    "number": 135,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/135"
+  },
+  {
+    "source": "issue",
+    "number": 134,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/134"
+  },
+  {
+    "source": "issue",
+    "number": 133,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/133"
+  },
+  {
+    "source": "issue",
+    "number": 132,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/132"
+  },
+  {
+    "source": "issue",
+    "number": 131,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/131"
+  },
+  {
+    "source": "issue",
+    "number": 130,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/130"
+  },
+  {
+    "source": "issue",
+    "number": 129,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/129"
+  },
+  {
+    "source": "issue",
+    "number": 128,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/128"
+  },
+  {
+    "source": "issue",
+    "number": 127,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/127"
+  },
+  {
+    "source": "issue",
+    "number": 126,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/126"
+  },
+  {
+    "source": "issue",
+    "number": 125,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/125"
+  },
+  {
+    "source": "issue",
+    "number": 124,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/124"
+  },
+  {
+    "source": "issue",
+    "number": 123,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/123"
+  },
+  {
+    "source": "issue",
+    "number": 122,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/122"
+  },
+  {
+    "source": "issue",
+    "number": 121,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/121"
+  },
+  {
+    "source": "issue",
+    "number": 120,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/120"
+  },
+  {
+    "source": "issue",
+    "number": 119,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/119"
+  },
+  {
+    "source": "issue",
+    "number": 118,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/118"
+  },
+  {
+    "source": "issue",
+    "number": 117,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/117"
+  },
+  {
+    "source": "issue",
+    "number": 116,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/116"
+  },
+  {
+    "source": "issue",
+    "number": 115,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/115"
+  },
+  {
+    "source": "issue",
+    "number": 114,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/114"
+  },
+  {
+    "source": "issue",
+    "number": 113,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/113"
+  },
+  {
+    "source": "issue",
+    "number": 112,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/112"
+  },
+  {
+    "source": "issue",
+    "number": 111,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/111"
+  },
+  {
+    "source": "issue",
+    "number": 110,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/110"
+  },
+  {
+    "source": "issue",
+    "number": 109,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/109"
+  },
+  {
+    "source": "issue",
+    "number": 108,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/108"
+  },
+  {
+    "source": "issue",
+    "number": 107,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/107"
+  },
+  {
+    "source": "issue",
+    "number": 106,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/106"
+  },
+  {
+    "source": "issue",
+    "number": 105,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/105"
+  },
+  {
+    "source": "issue",
+    "number": 104,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/104"
+  },
+  {
+    "source": "issue",
+    "number": 103,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/103"
+  },
+  {
+    "source": "issue",
+    "number": 102,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/102"
+  },
+  {
+    "source": "issue",
+    "number": 101,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/101"
+  },
+  {
+    "source": "issue",
+    "number": 100,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/100"
+  },
+  {
+    "source": "issue",
+    "number": 99,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/99"
+  },
+  {
+    "source": "issue",
+    "number": 98,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/98"
+  },
+  {
+    "source": "issue",
+    "number": 97,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/97"
+  },
+  {
+    "source": "issue",
+    "number": 96,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/96"
+  },
+  {
+    "source": "issue",
+    "number": 95,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/95"
+  },
+  {
+    "source": "issue",
+    "number": 94,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/94"
+  },
+  {
+    "source": "issue",
+    "number": 93,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/93"
+  },
+  {
+    "source": "issue",
+    "number": 92,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/92"
+  },
+  {
+    "source": "issue",
+    "number": 91,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/91"
+  },
+  {
+    "source": "issue",
+    "number": 90,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/90"
+  },
+  {
+    "source": "issue",
+    "number": 89,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/89"
+  },
+  {
+    "source": "issue",
+    "number": 88,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/88"
+  },
+  {
+    "source": "issue",
+    "number": 87,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/87"
+  },
+  {
+    "source": "issue",
+    "number": 86,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/86"
+  },
+  {
+    "source": "issue",
+    "number": 85,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/85"
+  },
+  {
+    "source": "issue",
+    "number": 84,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/84"
+  },
+  {
+    "source": "issue",
+    "number": 83,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/83"
+  },
+  {
+    "source": "issue",
+    "number": 82,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/82"
+  },
+  {
+    "source": "issue",
+    "number": 81,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/81"
+  },
+  {
+    "source": "issue",
+    "number": 80,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/80"
+  },
+  {
+    "source": "issue",
+    "number": 79,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/79"
+  },
+  {
+    "source": "issue",
+    "number": 78,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/78"
+  },
+  {
+    "source": "issue",
+    "number": 77,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/77"
+  },
+  {
+    "source": "issue",
+    "number": 76,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/76"
+  },
+  {
+    "source": "issue",
+    "number": 75,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/75"
+  },
+  {
+    "source": "issue",
+    "number": 74,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/74"
+  },
+  {
+    "source": "issue",
+    "number": 73,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/73"
+  },
+  {
+    "source": "issue",
+    "number": 72,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/72"
+  },
+  {
+    "source": "issue",
+    "number": 71,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/71"
+  },
+  {
+    "source": "issue",
+    "number": 70,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/70"
+  },
+  {
+    "source": "issue",
+    "number": 69,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/69"
+  },
+  {
+    "source": "issue",
+    "number": 68,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/68"
+  },
+  {
+    "source": "issue",
+    "number": 67,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/67"
+  },
+  {
+    "source": "issue",
+    "number": 66,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/66"
+  },
+  {
+    "source": "issue",
+    "number": 65,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/65"
+  },
+  {
+    "source": "issue",
+    "number": 64,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/64"
+  },
+  {
+    "source": "issue",
+    "number": 63,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/63"
+  },
+  {
+    "source": "issue",
+    "number": 62,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/62"
+  },
+  {
+    "source": "issue",
+    "number": 61,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/61"
+  },
+  {
+    "source": "issue",
+    "number": 60,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/60"
+  },
+  {
+    "source": "issue",
+    "number": 59,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/59"
+  },
+  {
+    "source": "issue",
+    "number": 58,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/58"
+  },
+  {
+    "source": "issue",
+    "number": 57,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/57"
+  },
+  {
+    "source": "issue",
+    "number": 56,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/56"
+  },
+  {
+    "source": "issue",
+    "number": 55,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/55"
+  },
+  {
+    "source": "issue",
+    "number": 54,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/54"
+  },
+  {
+    "source": "issue",
+    "number": 53,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/53"
+  },
+  {
+    "source": "issue",
+    "number": 52,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/52"
+  },
+  {
+    "source": "issue",
+    "number": 51,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/51"
+  },
+  {
+    "source": "issue",
+    "number": 50,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/50"
+  },
+  {
+    "source": "issue",
+    "number": 49,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/49"
+  },
+  {
+    "source": "issue",
+    "number": 48,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/48"
+  },
+  {
+    "source": "issue",
+    "number": 47,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/47"
+  },
+  {
+    "source": "issue",
+    "number": 46,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/46"
+  },
+  {
+    "source": "issue",
+    "number": 45,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/45"
+  },
+  {
+    "source": "issue",
+    "number": 44,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/44"
+  },
+  {
+    "source": "issue",
+    "number": 43,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/43"
+  },
+  {
+    "source": "issue",
+    "number": 42,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/42"
+  },
+  {
+    "source": "issue",
+    "number": 41,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/41"
+  },
+  {
+    "source": "issue",
+    "number": 40,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/40"
+  },
+  {
+    "source": "issue",
+    "number": 39,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/39"
+  },
+  {
+    "source": "issue",
+    "number": 38,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/38"
+  },
+  {
+    "source": "issue",
+    "number": 37,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/37"
+  },
+  {
+    "source": "issue",
+    "number": 36,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/36"
+  },
+  {
+    "source": "issue",
+    "number": 35,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/35"
+  },
+  {
+    "source": "issue",
+    "number": 34,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/34"
+  },
+  {
+    "source": "issue",
+    "number": 33,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/33"
+  },
+  {
+    "source": "issue",
+    "number": 32,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/32"
+  },
+  {
+    "source": "issue",
+    "number": 31,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/31"
+  },
+  {
+    "source": "issue",
+    "number": 30,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/30"
+  },
+  {
+    "source": "issue",
+    "number": 29,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/29"
+  },
+  {
+    "source": "issue",
+    "number": 28,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/28"
+  },
+  {
+    "source": "issue",
+    "number": 27,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/27"
+  },
+  {
+    "source": "issue",
+    "number": 26,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/26"
+  },
+  {
+    "source": "issue",
+    "number": 25,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/25"
+  },
+  {
+    "source": "issue",
+    "number": 24,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/24"
+  },
+  {
+    "source": "issue",
+    "number": 23,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/23"
+  },
+  {
+    "source": "issue",
+    "number": 22,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/22"
+  },
+  {
+    "source": "issue",
+    "number": 21,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/21"
+  },
+  {
+    "source": "issue",
+    "number": 20,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/20"
+  },
+  {
+    "source": "issue",
+    "number": 19,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/19"
+  },
+  {
+    "source": "issue",
+    "number": 18,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/18"
+  },
+  {
+    "source": "issue",
+    "number": 17,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/17"
+  },
+  {
+    "source": "issue",
+    "number": 16,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/16"
+  },
+  {
+    "source": "issue",
+    "number": 15,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/15"
+  },
+  {
+    "source": "issue",
+    "number": 14,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/14"
+  },
+  {
+    "source": "issue",
+    "number": 13,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/13"
+  },
+  {
+    "source": "issue",
+    "number": 12,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/12"
+  },
+  {
+    "source": "issue",
+    "number": 11,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/11"
+  },
+  {
+    "source": "issue",
+    "number": 10,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/10"
+  },
+  {
+    "source": "issue",
+    "number": 9,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/9"
+  },
+  {
+    "source": "issue",
+    "number": 8,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/8"
+  },
+  {
+    "source": "issue",
+    "number": 7,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/7"
+  },
+  {
+    "source": "issue",
+    "number": 6,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/6"
+  },
+  {
+    "source": "issue",
+    "number": 5,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/5"
+  },
+  {
+    "source": "issue",
+    "number": 4,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/4"
+  },
+  {
+    "source": "issue",
+    "number": 3,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/3"
+  },
+  {
+    "source": "issue",
+    "number": 2,
+    "url": "https://github.com/kevoreilly/CAPEv2/issues/2"
+  },
+  {
+    "source": "issue",
+    "number": 1,
+    "url": "https://github.com/kevoreilly/CAPEv2/pull/1"
+  }
+]
\ No newline at end of file
diff --git a/KnowledgeBaseBot/readme.md b/KnowledgeBaseBot/readme.md
new file mode 100644
index 00000000000..104a27d07c8
--- /dev/null
+++ b/KnowledgeBaseBot/readme.md
@@ -0,0 +1,56 @@
+### CAPE issues knowledge database
+
+* The process has two main phases: a one-time setup you do on your computer, and the automated process that runs on GitHub.
+
+### Phase 1: Local Setup & Knowledge Base Creation
+* This is what you need to do on your own machine to prepare the bot's "brain" 🧠.
+
+1. Configure GitHub Secrets
+    * Go to your GitHub repository's Settings > Secrets and variables > Actions.
+    * Create two new repository secrets:
+        * GITHUB_TOKEN: You don't need to create this one from scratch. GitHub provides it automatically to the action, but you will need a Personal Access Token with repo scope for the local script below.
+        * GEMINI_API_KEY: Paste your API key from [Gemini](https://aistudio.google.com/apikey).
+
+2. Build the Knowledge Base
+
+Set environment variables: You need to provide your GitHub token so the script can access your repository's issues.
+
+```Bash
+# For macOS/Linux
+export GITHUB_TOKEN='your_personal_access_token'
+```
+
+* Run the script: Execute the builder script. This will read all your docs and issues and may take a few minutes.
+
+```Bash
+uv venv --python python3.10 git_venv
+source git_venv/bin/activate
+uv pip install -r requirements.txt --no-build-isolation
+uv run python build_knowledge_base.py
+```
+
+* After it finishes, you will see four new files in your folder: unified_index.faiss, metadata.pkl, all_texts.pkl, and kb_state.pkl. These files are your bot's knowledge base.
+
+### Phase 2: Deploy to GitHub
+Now you just need to upload everything to your repository.
+
+1. Commit and Push Everything
+
+Add all the files to git—including the new knowledge base files.
+
+```Bash
+git add .
+git commit -m "feat: Add auto-answer bot and knowledge base"
+git push
+```
+
+### You're Done! What Happens Now?
+* From this moment on, the process is fully automatic.
+* A user opens a new issue in your repository.
+* The `auto_answer.yml` workflow automatically triggers.
+* It runs the `auto_answer_bot.py` script.
+* The bot reads the new issue, searches for similar content in your knowledge base files (.faiss and .pkl), generates a helpful response using Google Gemini, and posts it as a comment.
+
+
+### Maintenance
+* Every few months, or after you close many new issues, you should run build_knowledge_base.py again locally and commit the updated knowledge base files to keep the bot's information fresh.
diff --git a/KnowledgeBaseBot/requirements.txt b/KnowledgeBaseBot/requirements.txt
new file mode 100644
index 00000000000..11f53df8ebc
--- /dev/null
+++ b/KnowledgeBaseBot/requirements.txt
@@ -0,0 +1,14 @@
+pip
+setuptools
+PyGithub
+sentence-transformers
+faiss-cpu
+numpy
+# pickle-mixin
+langchain
+unstructured[rst]
+beautifulsoup4
+google-generativeai
+numpy<2.0
+langchain-community
+pandoc
diff --git a/KnowledgeBaseBot/unified_index.faiss b/KnowledgeBaseBot/unified_index.faiss
new file mode 100644
index 00000000000..0b38a58c6c1
Binary files /dev/null and b/KnowledgeBaseBot/unified_index.faiss differ
diff --git a/LICENSE b/LICENSE
index f44f86ad234..fd7ff95621b 100644
--- a/LICENSE
+++ b/LICENSE
@@ -626,7 +626,7 @@ copy of the Program in return for a fee.
 The file UserDB.txt is copyrighted by BoB / Team PEiD distributed under the following
 MIT license.
 
-Permission is hereby granted, free of charge, to any person obtaining a copy of this 
+Permission is hereby granted, free of charge, to any person obtaining a copy of this
 software and associated documentation files (the "Software"), to deal in the Software
 without restriction, including without limitation the rights to use, copy, modify,
 merge, publish, distribute, sublicense, and/or sell copies of the Software, and to
@@ -636,10 +636,10 @@ conditions:
 The above copyright notice and this permission notice shall be included in all copies
 or substantial portions of the Software.
 
-THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, 
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED,
 INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR
 PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE
-FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR 
+FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR
 OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER
 DEALINGS IN THE SOFTWARE.
 
@@ -658,3 +658,7 @@ License, Version 2.0.
 The files bootstrap.min.js, bootstrap.min.css, bootstrap-responsive.min.css,
 glyphicons-halflings.png, glyphicons-halflings-white.png are copyrighted by Twitter, Inc.
 and licensed under the Apache License, Version 2.0.
+
+The file analyzer/windows/modules/amsi.py uses parts of pywintrace
+(https://github.com/fireeye/pywintrace), which is copyrighted by FireEye, Inc. and licensed
+under the Apache License, Version 2.0.
diff --git a/README.md b/README.md
index c42b94acc49..b074bb2a75c 100644
--- a/README.md
+++ b/README.md
@@ -1,21 +1,106 @@
-## CAPE: Malware Configuration And Payload Extraction
-
-CAPE is a malware sandbox. It was derived from Cuckoo with the goal of adding automated malware unpacking and config extraction - hence its name is an acronym: 'Config And Payload Extraction'. Automated unpacking allows classification based on Yara signatures to complement network (Suricata) and behavior (API) signatures.
-
-There is a free community instance online which anyone can use:
-
-https://capesandbox.com
-
-Although config and payload extraction was the original stated goal, it was the development of the debugger in CAPE which first inspired the project: in order to extract configs or unpacked payloads from arbitrary malware families without relying on process dumps (which sooner or later the bad guys will thwart), instruction-level monitoring and control is necessary. The novel debugger in CAPE follows the principle of maximising use of processor hardware and minimising (almost completely) use of Windows debugging interfaces, allowing malware to be stealthily instrumented and manipulated from the entry point with hardware breakpoints programmatically set during detonation by Yara signatures or API calls. This allows instruction traces to be captured, or actions to be performed such as control flow manipulation or dumping of a memory region.
-
-The debugger has allowed CAPE to continue to evolve beyond its original capabilities, which now include dynamic anti-evasion bypasses. Since modern malware commonly tries to evade analysis within sandboxes, for example by using timing traps for virtualisation or API hook detection, CAPE allows dynamic countermeasures to be developed combining debugger actions within Yara signatures to detect evasive malware as it detonates, and perform control-flow manipulation to force the sample to detonate fully or skip evasive actions. The list of dynamic bypasses in CAPE is growing but includes:
-- Guloader
-- Ursnif
-- Dridex
-- Zloader
-- Formbook
-- BuerLoader
-- Pafish
+## CAPE: Malware Configuration And Payload Extraction - [Documentation](https://capev2.readthedocs.io/en/latest/#)
+
+### CAPE is a malware sandbox.
+A sandbox is used to execute malicious files in an isolated environment
+whilst instrumenting their dynamic behaviour and collecting forensic artefacts.
+
+CAPE was derived from Cuckoo v1 which features the following core capabilities
+on the Windows platform:
+
+* Behavioral instrumentation based on API hooking
+* Capture of files created, modified and deleted during execution
+* Network traffic capture in PCAP format
+* Malware classification based on behavioral and network signatures
+* Screenshots of the desktop taken during the execution of the malware
+* Full memory dumps of the target system
+
+CAPE complements Cuckoo's traditional sandbox output with several key additions:
+
+* Automated dynamic malware unpacking
+* Malware classification based on YARA signatures of unpacked payloads
+* Static & dynamic malware configuration extraction
+* Automated debugger programmable via YARA signatures, allowing:
+    * Custom unpacking/config extractors
+    * Dynamic anti-sandbox countermeasures
+    * Instruction traces
+* Interactive desktop
+
+There is a free demonstration instance online that anyone can use:
+
+https://capesandbox.com - For account activation reach to https://twitter.com/capesandbox
+
+### Some History
+
+Cuckoo Sandbox started as a Google Summer of Code project in 2010 within
+The Honeynet Project. It was originally designed and developed by Claudio
+Guarnieri, the first beta release was published in 2011. In January 2014,
+Cuckoo v1.0 was released.
+
+2015 was a pivotal year, with a significant fork in Cuckoo's history.
+Development of the original monitor and API hooking method was halted in the
+main Cuckoo project. It was replaced by an [alternative monitor](https://github.com/cuckoosandbox/monitor)
+using a ``restructuredText``-based signature format compiled via Linux toolchain,
+created by Jurriaan Bremer.
+
+Around the same time, a fork called [Cuckoo-modified](https://github.com/spender-sandbox/cuckoo-modified)
+was created by Brad 'Spender' Spengler continuing development of the original
+monitor with significant improvements including 64-bit support and importantly
+introducing Microsoft's Visual Studio compiler.
+
+During that same year development of a dynamic command-line configuration and payload
+extraction tool called CAPE was begun at Context Information Security by Kevin O'Reilly.
+The name was coined as an acronym of 'Config And Payload Extraction' and the original
+research focused on using API hooks provided by Microsoft's [Detours](https://github.com/microsoft/Detours)
+library to capture unpacked malware payloads and configuration. However, it became
+apparent that API hooks alone provide insufficient power and precision to allow for
+unpacking of payloads or configs from arbitrary malware.
+
+For this reason research began into a novel debugger concept to allow malware to be
+precisely controlled and instrumented whilst avoiding use of Microsoft debugging
+interfaces, in order to be as stealthy as possible. This debugger was integrated
+into the proof-of-concept Detours-based command-line tool, combining with API hooks
+and resulting in very powerful capabilities.
+
+When initial work showed that it would be possible to replace Microsoft Detours
+with Cuckoo-modified's [API hooking engine](https://github.com/spender-sandbox/cuckoomon-modified),
+the idea for CAPE Sandbox was born. With the addition of the debugger, automated unpacking,
+YARA-based classification and integrated config extraction, in September 2016 at 44con, CAPE Sandbox was
+publicly released for the first time: [CAPE](https://github.com/ctxis/CAPE) version 1.
+
+In the summer of 2018 the project was fortunate to see the beginning of huge
+contributions from Andriy 'doomedraven' Brukhovetskyy, a long-time Cuckoo
+contributor. In 2019 he began the mammoth task of porting CAPE to Python 3
+and in October of that year [CAPEv2](https://github.com/kevoreilly/CAPEv2) was released.
+
+CAPE has been continuously developed and improved to keep pace with advancements
+in both malware and operating system capabilities. In 2021, the ability to program
+CAPE's debugger during detonation via dynamic YARA scans was added, allowing for
+dynamic bypasses to be created for anti-sandbox techniques. Windows 10 became the
+default operating system, and other significant additions include interactive desktop,
+AMSI (Anti-Malware Scan Interface) payload capture, 'syscall hooking' based on Microsoft
+Nirvana and debugger-based direct/indirect syscall countermeasures.
+
+### Classification
+![image](https://github.com/kevoreilly/CAPEv2/assets/22219888/15b34a87-6b2a-49bd-a58a-d16d5fee438e)
+
+Malware can be classified in CAPE via three mechanisms:
+* YARA scans of unpacked payloads
+* Suricata scans of network captures
+* Behavioral signatures scanning API hook output
+
+### Config Extraction
+
+![image](https://github.com/kevoreilly/CAPEv2/assets/22219888/a44f2f8a-10df-47cc-9690-5ef08f04ea6b)
+
+Parsing can be done using CAPE's own framework, alternatively the following frameworks are supported: [RATDecoders](https://github.com/kevthehermit/RATDecoders), [DC3-MWCP](https://github.com/Defense-Cyber-Crime-Center/DC3-MWCP), [MalDuck](https://github.com/CERT-Polska/malduck/tree/master/malduck/), or [MaCo](https://github.com/CybercentreCanada/maco)
+
+#### Special note about config parsing frameworks:
+* Due to the nature of malware, since it changes constantly when any new version is released, something might become broken!
+* We suggest using CAPE's framework which is simply pure Python with entry point `def extract_config(data):` that will be called by `cape_utils.py` and 0 complications.
+    * As a bonus, you can reuse your extractors in other projects.
+
+### Automated Unpacking
+![image](https://github.com/kevoreilly/CAPEv2/assets/22219888/090ce3fb-9dc8-4316-bc20-469c6fff725a)
 
 CAPE takes advantage of many malware techniques or behaviours to allow for unpacked payload capture:
 - Process injection
@@ -23,72 +108,86 @@ CAPE takes advantage of many malware techniques or behaviours to allow for unpac
     - DLL injection
     - Process Hollowing
     - Process Doppelganging
-- Decompression of executable modules in memory
-- Extraction of executable modules or shellcode in memory
+- Extraction or decompression of executable modules or shellcode in memory
 
-These behaviours will result in the capture of payloads being injected, extracted or decompressed for further analysis. In addition CAPE automatically creates a process dump for each process, or, in the case of a DLL, the DLL's module image in memory. This is useful for samples packed with simple packers, where often the module image dump is fully unpacked.
+These behaviours will result in the capture of payloads being injected, extracted, or decompressed for further analysis. In addition CAPE automatically creates a process dump for each process, or, in the case of a DLL, the DLL's module image in memory. This is useful for samples packed with simple packers, where often the module image dump is fully unpacked.
 
-Quick access to the debugger is made possible with the breakpoint options 'bp0' through 'bp3' accepting RVA or VA values to set breakpoints, whereupon a short instruction trace will be output, governed by 'count' and 'depth' options (e.g. bp0=0x1234,depth=1,count=100). To set a breakpoint at the module entry point, 'ep' is used instead of an address (e.g. bp0=ep). Alternatively 'break-on-return' allows for a breakpoint on the return address of a hooked API (e.g. break-on-return=NtGetContextThread). An optional 'base-on-api' parameter allows the image base for RVA breakpoints to be set by API call (e.g. base-on-api=NtReadFile,bp0=0x2345).
+In addition to CAPE's default 'passive' unpacking mechanisms, it is possible to enable 'active' unpacking which uses breakpoints to detect writing to newly allocated or protected memory regions, in order to capture unpacked payloads as early as possible prior to execution. This is enabled via web submission tickbox or by specifying option `unpacker=2` and is left off by default as it may impact detonation quality.
 
-Options 'action0' - 'action3' allow actions to be performed when breakpoints are hit, such as dumping memory regions (e.g. action0=dumpebx) or changing the execution control flow (e.g. action1=skip). CAPE's documentation contains further examples of such actions.
+CAPE can be programmed via YARA signature to unpack specific packers. For example, UPX-type packers are very common and, although in CAPE these result in unpacked payloads being passively captured, the default capture is made after the unpacked payload has begun executing. Therefore by detecting UPX-derived packers dynamically via custom YARA signature and setting a breakpoint on the final packer instruction, it is possible to capture the payload at its original entry point (OEP) before it has begun executing.
 
-'dump-on-api' allows a module to be dumped when it calls a specific API function which can be specified in the web interface which can be useful for quickly unpacking/dumping novel samples (e.g. dump-on-api=DnsQuery_A).
+![image](https://github.com/kevoreilly/CAPEv2/assets/22219888/daf702c8-a658-48fe-850a-d86f0a89dc82)
 
-CAPE also has an option 'upx=1' which can dynamically unpack samples that use 'hacked' (modified) UPX, very popular with malware authors. These samples are run in CAPE's debugger until their OEP (original entry point), whereupon they are dumped, fixed and their imports are automatically reconstructed, ready for analysis.
+![image](https://github.com/kevoreilly/CAPEv2/assets/22219888/76b2c800-1d96-4ea5-ae86-c261b3946424)
 
-CAPE is constantly growing in malware family coverage, but has config parsers for the following examples:
-- Emotet
-- TrickBot
-- QakBot
-- Hancitor
-- Ursnif
-- Dridex
-- SmokeLoader
-- IcedID
-- RedLeaf
-- ChChes
-- HttpBrowser
-- Enfal
-- PoisonIvy
-- Screech
-- TSCookie
+The `dump-on-api` option allows a module to be dumped when it calls a specific API function that can be specified in the web interface (e.g. `dump-on-api=DnsQuery_A`).
 
-CAPE uses Yara signatures as its principal classification method to detect unpacked payloads. This list is constantly growing, and includes:
-- Azorult, Formbook, Ryuk, Hermes, Shade, Remcos, Ramnit, Gootkit, QtBot, ZeroT, WanaCry, NetTraveler, Locky, BadRabbit, Magniber, Redsip, Kronos, PetrWrap, Kovter, Azer, Petya, Dreambot, Atlas, NanoLocker, Mole, Codoso, Cryptoshield, Loki, Jaff, IcedID, Scarab, Cutlet, RokRat, OlympicDestroyer, Gandcrab, Fareit, ZeusPanda, AgentTesla, Imminent, Arkei, Sorgu, tRat, T5000, TClient, TreasureHunter.
+### [Debugger](https://capev2.readthedocs.io/en/latest/usage/monitor.html)
+The debugger has allowed CAPE to continue to evolve beyond its original capabilities, which now include dynamic anti-evasion bypasses. Since modern malware commonly tries to evade analysis within sandboxes, for example by using timing traps for virtualisation or API hook detection, CAPE allows dynamic countermeasures to be developed combining debugger actions within Yara signatures to detect evasive malware as it detonates, and perform control-flow manipulation to force the sample to detonate fully or skip evasive actions.
 
-There is a community repository of signatures containing several hundred signatures developed by the CAPE community: https://github.com/kevoreilly/community
+![image](https://github.com/kevoreilly/CAPEv2/assets/22219888/801fb4d3-2569-44aa-b40e-d3d5cc7d8bb3)
+![image](https://github.com/kevoreilly/CAPEv2/assets/22219888/d76da82f-38b7-4cdf-ad9d-f16e8d2dfa66)
 
-Config parsing can be done using either of CAPE's config parsing frameworks, the RATDecoders framework from malwareconfig.com and DC3-MWCP (Defense Cyber Crime Center - Malware Configuration Parser). The many parsers/decoders from malwareconfig.com are also included, comprising among many others: Sakula, DarkComet, PredatorPain and PoisonIvy. Thanks to Kevin Breen/TechAnarchy for this framework and parsers (https://github.com/kevthehermit/RATDecoders), and to DC3 for their framework (https://github.com/Defense-Cyber-Crime-Center/DC3-MWCP). Special thanks to Jason Reaves (@sysopfb) for the TrickBot parser and Fabien Perigaud for the PlugX parser.
+Quick access to the debugger is made possible with the submission options `bp0` through `bp3` accepting RVA or VA values to set breakpoints, whereupon a short instruction trace will be output, governed by `count` and `depth` options (e.g. `bp0=0x1234,depth=1,count=100`).
+![image](https://github.com/kevoreilly/CAPEv2/assets/22219888/6aa3d31e-cd52-4549-997f-734fb755f10b)
 
-The repository containing the code for the monitor DLLs is a distinct one: https://github.com/kevoreilly/capemon.
+To set a breakpoint at the module entry point, `ep` is used instead of an address (e.g. `bp0=ep`). Alternatively `break-on-return` allows for a breakpoint on the return address of a hooked API (e.g. `break-on-return=NtGetContextThread`). An optional `base-on-api` parameter allows the image base for RVA breakpoints to be set by API call (e.g. `base-on-api=NtReadFile,bp0=0x2345`).
 
-Please contribute to this project by helping create new signatures, parsers or bypasses for further malware families. There are many in the works currently, so watch this space.
+![image](https://github.com/kevoreilly/CAPEv2/assets/22219888/3acfbde2-68e1-479d-a829-0c9142fb1be7)
 
-## CAPEv2!
+Options `action0` - `action3` allow actions to be performed when breakpoints are hit, such as dumping memory regions (e.g. `action0=dumpebx`) or changing the execution control flow (e.g. `action1=skip`). CAPE`s documentation contains further examples of such actions.
 
-A huge thank you to @D00m3dR4v3n for single-handedly porting CAPE to Python 3.
+### [capemon](https://github.com/kevoreilly/capemon)
+The repository containing the code for the CAPE's monitor is distinct.
 
-* Python3
-    * agent.py is tested with python (3.7.2|3.8) x86. __You should use x86 python version inside of the VM!__
-    * host tested with python3 version 3.6.8
+### Updates summary [changelog](https://github.com/kevoreilly/CAPEv2/blob/master/changelog.md)
 
-## Installation recommendations and scripts for optimal performance
-1. For best compability we strongly suggest installing on [Ubuntu 20.04 LTS](https://ubuntu.com/#download)
-2. [KVM](https://github.com/doomedraven/Tools/blob/master/Virtualization/kvm-qemu.sh) is recommended as hypervisor, replace `<W00T>` to real pattern
- * `sudo ./kvm-qemu.sh all <username> | tee kvm-qemu.log`
-3. To install CAPE itself, [cape2.sh](https://github.com/doomedraven/Tools/blob/master/Sandbox/cape2.sh) with all optimizations
- * `sudo ./cape2.sh base cape | tee cape.log`
-4. Reboot and enjoy
+### [Community contributions](https://github.com/CAPESandbox/community)
+There is a community repository of signatures containing several hundred signatures developed by the CAPE community. All new community feature should be pushed to that repo. Later they can be moved to core if devs are able and willing to maintain them.
 
-\* All scripts contain __help__ `-h`, but please check the scripts to __understand__ what they are doing.
+Please contribute to this project by helping create new signatures, parsers, or bypasses for further malware families. There are many in the works currently, so watch this space.
 
-__requirements.txt is decprecated now in favour of the script__
+A huge thank you to @D00m3dR4v3n for single-handedly porting CAPE to Python 3.
 
-### How to create VMs with virt-manager
+## Installation recommendations and scripts for optimal performance
+* Python3
+    * agent.py is tested with python (3.7.2|3.8) x86. __You should use x86 python version inside of the VM!__
+    * host tested with python3 version 3.10, 3.12, but newer versions should work too
+
+* __Only rooter should be executed as root__, the rest as __cape__ user. Running as root will mess with permissions.
+1. Become familiar with the [documentation](https://capev2.readthedocs.io/en/latest/) and __do read ALL__ config files inside of `conf` folder!
+2. For best compabitility we strongly suggest installing on [Ubuntu 24.04 LTS](https://ubuntu.com/#download) and using Windows 10 21H2 as target.
+3. `kvm-qemu.sh` and `cape2.sh` __SHOULD BE__ executed from `tmux` session to prevent any OS problems if ``ssh`` connections breaks.
+4. [KVM](https://github.com/kevoreilly/CAPEv2/blob/master/installer/kvm-qemu.sh) is recommended as the hypervisor.
+ * Replace `<username>` with a real pattern.
+ * You need to replace all `<WOOT>` inside!
+ * Read it! You must understand what it does! It has configuration in header of the script.
+ * `sudo ./kvm-qemu.sh all <username> 2>&1 | tee kvm-qemu.log`
+4. To install CAPE itself, [cape2.sh](https://github.com/kevoreilly/CAPEv2/blob/master/installer/cape2.sh) with all optimizations
+    * Read and understand what it does! This is not a silver bullet for all your problems! It has configuration in header of the script.
+    * `sudo ./cape2.sh base 2>&1 | tee cape.log`
+5. After installing everything save both installation logs as gold!
+6. Configure CAPE by doing mods to config files inside `conf` folder.
+7. Restart all CAPE services to pick config changes and run CAPE properly!
+    * CAPE Services
+        * cape.service
+        * cape-processor.service
+        * cape-web.service
+        * cape-rooter.service
+        * To restart any service use `systemctl restart <service_name>`
+        * To see service log use `journalctl -u <service_name>`
+    * To debug any problem, stop the relevant service and run the command that runs that service by hand to see more logs. Check `-h` for the help menu. Running the service in debug mode (`-d`) can help as well.
+5. Reboot and enjoy!
+
+
+* All scripts contain __help__ `-h`, but please check the scripts to __understand__ what they are doing.
+
+
+### How to create VMs with virt-manager see docs for configuration
 * [step by step](https://www.doomedraven.com/2020/04/how-to-create-virtual-machine-with-virt.html)
 
-## Virtual machine core dependecy
-* [choco.bat](https://github.com/doomedraven/Tools/blob/master/Windows/choco.bat)
+## Virtual machine core dependency
+* [choco.bat](https://github.com/kevoreilly/CAPEv2/blob/master/installer/choco.bat)
 
 ## How to update
 * CAPE: `git pull`
@@ -120,5 +219,13 @@ git merge kevoreilly/master
 git push
 ```
 
+### How to cite this work
+If you use CAPEv2 in your work, please cite it as specified in the "Cite this repository" GitHub menu.
+
+### Special note about 3rd part dependencies:
+* They becoming a headache, specially those that using `pefile` as each pins version that they want.
+    * Our suggestion is clone/fork them, remove `pefile` dependency as you already have it installed. Volia no more pain.
+
 ### Docs
 * [ReadTheDocs](https://capev2.readthedocs.io/en/latest/#)
+* [DeepWiki](https://deepwiki.com/kevoreilly/CAPEv2/1-overview) - AI generated, some might be wrong but generally pretty accurate.
diff --git a/SECURITY.md b/SECURITY.md
new file mode 100644
index 00000000000..f07f0ad8ed6
--- /dev/null
+++ b/SECURITY.md
@@ -0,0 +1,17 @@
+# Security Policy
+
+## Supported Versions
+
+Use this section to tell people about which versions of your project are
+currently being supported with security updates.
+
+| Version | Supported          |
+| ------- | ------------------ |
+| 5.1.x   | :white_check_mark: |
+| 5.0.x   | :x:                |
+| 4.0.x   | :white_check_mark: |
+| < 4.0   | :x:                |
+
+## Reporting a Vulnerability
+
+To report any issue send email to kev@capesandbox.com or https://twitter.com/CapeSandbox
diff --git a/acknowledgment.md b/acknowledgment.md
index d3b1e4e15d6..746f8dd4efc 100644
--- a/acknowledgment.md
+++ b/acknowledgment.md
@@ -31,6 +31,12 @@
     * Will Metcalf
     * firmianay
     * hariomenkel
+    * themanifold
+    * TheMythologist
+    * cccs-kevin 🇨🇦
+    * @r0ny123
+    * @KillerInstinct
+    * @KingKDot
     * And many others <3
 * Special thank you to Paul Royal and [Georgia Tech](https://www.cc.gatech.edu/)
 * Finally a massive debt of gratitude to Gabor Kiss, for teaching me everything I know, and setting me on the path to enlightenment.
diff --git a/admin/admin.py b/admin/admin.py
new file mode 100644
index 00000000000..61209688b84
--- /dev/null
+++ b/admin/admin.py
@@ -0,0 +1,362 @@
+#!/usr/bin/env python3
+
+# Copyright (C) 2021- doomedraven
+#
+# This program is free software: you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation, either version 3 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+import argparse
+import logging
+import os
+import shutil
+import subprocess
+import sys
+from hashlib import sha256
+from pathlib import Path
+from queue import Queue
+
+CAPE_ROOT = os.path.join(os.path.abspath(os.path.dirname(__file__)), "..")
+sys.path.append(CAPE_ROOT)
+
+from lib.cuckoo.common.admin_utils import (
+    CAPE_PATH,
+    POSTPROCESS,
+    AutoAddPolicy,
+    bulk_deploy,
+    compare_hashed_files,
+    delete_file,
+    delete_file_recon,
+    deploy_file,
+    enumerate_files_on_all_servers,
+    execute_command_on_all,
+    file_recon,
+    gen_hashfile,
+    get_file,
+    load_workers_list,
+    ssh,
+)
+
+try:
+    from admin_conf import (  # JUMP_BOX_PORT,; JUMP_BOX_SECOND_PORT,
+        JUMP_BOX,
+        JUMP_BOX_SECOND,
+        JUMP_BOX_SECOND_USERNAME,
+        LOAD_SERVERS_LIST,
+        SERVERS_STATIC_LIST,
+    )
+except ImportError:
+    sys.exit("You need to create admin_conf.py")
+
+from lib.cuckoo.common.sshclient import SSHJumpClient  # working solution
+
+JUMPBOX_USED = False
+jumpbox = False
+
+logging.getLogger("paramiko").setLevel(logging.WARNING)
+logging.getLogger("paramiko.transport").setLevel(logging.WARNING)
+
+if __name__ == "__main__":
+    parser = argparse.ArgumentParser()
+
+    parser.add_argument("--debug", action="store_true", help="Logger in debug mode", required=False, default=False)
+    parser.add_argument(
+        "-pd", "--paramiko-debug", action="store_true", help="Paramiko logger in debug mode", required=False, default=False
+    )
+    parser.add_argument("-u", "--username", default="jenkins", action="store", required=False)
+    parser.add_argument(
+        "-rs",
+        "--restart-service",
+        help="Restart processing, to be used with deployment options",
+        action="store_true",
+        default=False,
+        required=False,
+    )
+    parser.add_argument(
+        "-rw",
+        "--restart-uwsgi",
+        help="Restart UWSGI, by touching control file",
+        action="store_true",
+        default=False,
+        required=False,
+    )
+    parser.add_argument(
+        "-ci",
+        "--continues-integration",
+        help="Clone repo and get changes from HEAD~1 instead of local git repo",
+        action="store_true",
+        default=False,
+        required=False,
+    )
+    parser.add_argument("-jbo", "--jump-box", help="Ssh pivor over server", action="store_true", default=False, required=False)
+    parser.add_argument(
+        "-jbs",
+        "--jump-box-second",
+        help="Ssh pivot over two servers, you don't need to use -jbo if you using this one",
+        action="store_true",
+        default=False,
+        required=False,
+    )
+    parser.add_argument("--custom", help="Deploy custom stuff", action="store", default=False, required=False)
+    parser.add_argument(
+        "-yc",
+        "--yara-category",
+        choices=["CAPE", "binaries", "urls", "memory"],
+        default="CAPE",
+        action="store",
+        help="Yara category, default to CAPE",
+        required=False,
+    )
+    parser.add_argument("-s", "--static-server-list", default=False, action="store_true", required=False)
+    parser.add_argument("-df", "--deploy-file", help="Deploy local file", action="store", default=False, required=False, nargs="+")
+    parser.add_argument("-de", "--delete-file", help="Delete file(s)", action="store", default=False, required=False, nargs="+")
+    parser.add_argument(
+        "-e", "--execute-command", help="Execute command on server(s)", action="store", default=False, required=False
+    )
+    parser.add_argument("-cp", "--copy-file", help="Copy local file to servers.", nargs=2, default=False, required=False)
+    parser.add_argument(
+        "-dlc",
+        "--deploy-local-changes",
+        help="Deploy all local changes before you do 'git commit'",
+        action="store_true",
+        required=False,
+        default=False,
+    )
+    parser.add_argument(
+        "-drc",
+        "--deploy-remote-changes",
+        help="Deploy remote changes, after an merge and git pull as example. Compares the current git commit ref to master and deploys the changed files to the remote server.",
+        action="store_true",
+        required=False,
+        default=False,
+    )
+    parser.add_argument(
+        "-drh",
+        "--deploy-remote-head",
+        help="Deploy remote changes, after an merge and git pull as example. git diff --name-only HEAD~<INT>.",
+        action="store",
+        required=False,
+        default=False,
+    )
+    parser.add_argument(
+        "-sc",
+        "--sync-community",
+        help="Syncronize community repo. Ex: \n-sc 1 $HOME/github/community $HOME/github/CAPE/\n \t1 is HEAD~X community_folder_root CAPE_root_folder",
+        nargs=3,
+        action="store",
+        required=False,
+        default=False,
+    )
+
+    parser.add_argument(
+        "--dry-run",
+        help="Just print out list of files to change",
+        action="store_true",
+        required=False,
+        default=False,
+    )
+
+    parser.add_argument(
+        "-fpl",
+        "--fetch-process-log",
+        help="Download processing log to local from all the workers",
+        action="store_true",
+        required=False,
+        default=False,
+    )
+
+    parser.add_argument(
+        "-ff",
+        "--fetch-file",
+        help="Download specific file from each worker. Ex: /opt/CAPEv2/log/cuckoo.log. It will be stored as <server>_<base_filename>",
+        action="store",
+        required=False,
+        default=False,
+    )
+
+    compare_opt = parser.add_argument_group("Compare files")
+    compare_opt.add_argument(
+        "-pr",
+        "--private-repo",
+        help="Use this when comparing files. Private repo to Upstream CAPE",
+        action="store_true",
+        required=False,
+        default=False,
+    )
+    compare_opt.add_argument(
+        "-cfd",
+        "--check-files-difference",
+        help="Compare file hashes of each node from dumps. Example --check-files-difference 1 2. Note you must first generat them with --check-nodes",
+        action="store",
+        required=False,
+        default=False,
+        nargs=2,
+    )
+    compare_opt.add_argument(
+        "-gfl",
+        "--generate-files-listing",
+        help="Path from which to generate list of files and hashes on each node to compare if we have some bad deployments with wrong file hashes on some nodes",
+        action="store",
+        required=False,
+        default=False,
+    )
+
+    compare_opt.add_argument(
+        "--filename",
+        help="Name of the file in which store details",
+        action="store",
+        required=False,
+        default=False,
+    )
+
+    compare_opt.add_argument(
+        "-eas",
+        "--enum-all-servers",
+        help="Get file listing from all servers. You need to use this in combination with --generate-files-listing and --filename options",
+        action="store_true",
+        required=False,
+        default=False,
+    )
+
+    args = parser.parse_args()
+
+    files = []
+    if args.paramiko_debug:
+        logging.getLogger("paramiko").setLevel(logging.DEBUG)
+        logging.getLogger("paramiko.transport").setLevel(logging.DEBUG)
+
+    if args.username:
+        JUMP_BOX_USERNAME = args.username
+
+    # if args.debug:
+    #    log.setLevel(logging.DEBUG)
+
+    if args.jump_box_second and not args.dry_run:
+        ssh.connect(
+            JUMP_BOX_SECOND,
+            username=JUMP_BOX_SECOND_USERNAME,
+            look_for_keys=True,
+            allow_agent=True,
+            disabled_algorithms=dict(pubkeys=["rsa-sha2-512", "rsa-sha2-256"]),
+        )
+        JUMPBOX_USED = True
+
+    if JUMPBOX_USED and JUMP_BOX_USERNAME:
+        jumpbox = SSHJumpClient(jump_session=ssh if args.jump_box_second else None)
+        jumpbox.set_missing_host_key_policy(AutoAddPolicy())
+        jumpbox.connect(
+            JUMP_BOX,
+            username=JUMP_BOX_USERNAME,
+            look_for_keys=True,
+            allow_agent=True,
+            disabled_algorithms=dict(pubkeys=["rsa-sha2-512", "rsa-sha2-256"]),
+        )
+
+    if args.static_server_list:
+        servers = SERVERS_STATIC_LIST
+    elif LOAD_SERVERS_LIST:
+        servers = load_workers_list()
+    else:
+        sys.exit("You didn't specify servers to work with")
+
+    if args.continues_integration:
+        CI = True
+
+    if args.deploy_file:
+        queue = Queue()
+        for file in args.deploy_file:
+            if not os.path.exists(file):
+                print(f"Missed file: {file}")
+                continue
+            if file.endswith("admin.py"):
+                continue
+            parameters = file_recon(file, args.yara_category)
+            if not parameters:
+                sys.exit()
+            if args.dry_run:
+                print(parameters)
+                sys.exit(0)
+            queue.put([servers, file] + list(parameters))
+            _ = deploy_file(queue, jumpbox)
+
+    elif args.delete_file:
+        queue = Queue()
+        for file in args.delete_file:
+            if not os.path.exists(file):
+                print(f"Missed file: {file}")
+                continue
+            server_path = delete_file_recon(file)
+            if not server_path:
+                sys.exit()
+            if args.dry_run:
+                print(server_path)
+                sys.exit(0)
+            queue.put([servers, server_path])
+            _ = delete_file(queue, jumpbox)
+
+    elif args.execute_command:
+        execute_command_on_all(args.execute_command, servers, jumpbox)
+    elif args.copy_file:
+        local_file, remote_file = args.copy_file
+        local_sha256 = sha256(Path(local_file).read_bytes()).hexdigest()
+        queue = Queue()
+        queue.put((servers, local_file, remote_file, False, local_sha256))
+        _ = deploy_file(queue, jumpbox)
+    elif args.deploy_local_changes:
+        out = subprocess.check_output(["git", "ls-files", "--other", "--modified", "--exclude-standard"])
+        files = [file.decode("utf-8") for file in list(filter(None, out.split(b"\n")))]
+    elif args.deploy_remote_changes:
+        out = subprocess.check_output(["git", "diff", "--name-only", "origin/master"])
+        files = [file.decode("utf-8") for file in list(filter(None, out.split(b"\n")))]
+    elif args.deploy_remote_head:
+        out = subprocess.check_output(["git", "diff", "--name-only", f"HEAD~{args.deploy_remote_head}"])
+        files = [file.decode("utf-8") for file in list(filter(None, out.split(b"\n")))]
+    elif args.sync_community:
+        community_folder, destiny_folder, head = args.sync_community
+        cwd = os.getcwd()
+        os.chdir(os.path.expandvars(community_folder))
+        out = subprocess.check_output(["git", "diff", "--name-only", f"HEAD~{head}"])
+        community_files = [file.decode("utf-8") for file in list(filter(None, out.split(b"\n")))]
+        os.chdir(cwd)
+        for file in community_files:
+            dest_file = os.path.join(destiny_folder, file)
+            files.append(dest_file)
+            shutil.copyfile(os.path.join(community_folder, file), dest_file)
+    elif args.custom:
+        for root, dirs, files in os.walk(args.custom):
+            files.extend([os.path.join(root, name) for name in files])
+    elif args.fetch_process_log:
+        get_file(f"{CAPE_PATH}/log/process.log", servers, jumpbox)
+        sys.exit()
+    elif args.fetch_file:
+        get_file(args.fetch_file, servers, jumpbox)
+        sys.exit()
+
+    elif args.enum_all_servers:
+        enumerate_files_on_all_servers()
+    elif args.generate_files_listing and not args.enum_all_servers:
+        gen_hashfile(args.generate_files_listing, args.filename)
+    elif args.check_files_difference:
+        compare_hashed_files(args.check_files_difference, servers, jumpbox, args.private_repo)
+    else:
+        parser.print_help()
+    if args.deploy_local_changes or args.deploy_remote_changes or args.sync_community or args.deploy_remote_head or args.custom:
+        if not files:
+            sys.exit()
+
+        bulk_deploy(files, args.yara_category, args.dry_run, servers, jumpbox)
+
+    if args.restart_service and POSTPROCESS:
+        execute_command_on_all(POSTPROCESS, servers, jumpbox)
+
+    if args.restart_uwsgi:
+        execute_command_on_all("touch /tmp/capeuwsgireload", servers, jumpbox)
diff --git a/admin/admin_conf.py_example b/admin/admin_conf.py_example
new file mode 100644
index 00000000000..50e990fae5a
--- /dev/null
+++ b/admin/admin_conf.py_example
@@ -0,0 +1,56 @@
+#!/usr/bin/env python3
+# https://capev2.readthedocs.io/en/latest/usage/cluster_administration.html
+
+MASTER_NODE = ""
+CAPE_DIST_URL = f"http://{MASTER_NODE}:9003/node"
+# if not --static is set it will fetch from dist.py the data
+LOAD_SERVERS_LIST = False
+SERVERS_STATIC_LIST = ()
+
+
+REMOTE_SERVER_USER = "root"
+CAPE_PATH = "/opt/CAPEv2/"
+VOL_PATH = "/usr/local/lib/python3.8/dist-packages/volatility/plugins/"
+
+# Deploy over ssh pivoting
+JUMP_BOX = ""
+JUMP_BOX_USERNAME = ""
+JUMP_BOX_PORT = 22
+
+# Deploy over double ssh pivoting?
+JUMP_BOX_SECOND = ""
+JUMP_BOX_SECOND_USERNAME = ""
+JUMP_BOX_SECOND_PORT = 22
+
+NUM_THREADS = 5
+POSTPROCESS = "systemctl restart cape-processor; systemctl status cape-processor"
+
+EXCLUDE_DIRS = set(
+    [
+        "storage",
+        "workers",
+        ".github",
+        "log",
+        "logs",
+        "capa-rules",
+        "__pycache__",
+        "db",
+        "tests",
+        "vpn_monitor",
+        ".git",
+        ".ruff_cache",
+        ".mypy_cache",
+        ".pytest_cache",
+        "custom",
+        "black_formatter",
+        "conf",  # is not my job to ensure that you have proper config files
+    ]
+)
+EXCLUDE_FILENAMES = [".DS_Store", ".gitignore", "secret_key.py"]
+EXCLUDE_EXTENSIONS = (".pyc",)
+# this should be only between repos
+EXCLUDE_PREFIX = ()
+EXCLUDE_CAPE_FILES = ("file_extra_info.py", "family_detection_names.py")
+
+UPSTREAM_REPO_PATH = ""
+PRIVATE_REPO_PATH = ""
diff --git a/agent/agent.py b/agent/agent.py
index 49bc0bedc68..1b0947e49d7 100644
--- a/agent/agent.py
+++ b/agent/agent.py
@@ -2,55 +2,109 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-from __future__ import print_function
-import os
-import re
-import sys
+import argparse
+import base64
 import cgi
-import sys
+import enum
+import http.server
+import ipaddress
 import json
-import stat
-import shutil
-import traceback
+import os
 import platform
-import tempfile
-import argparse
+import random
+import shlex
+import shutil
+import socket
+import socketserver
+import stat
+import string
 import subprocess
-from io import BytesIO, StringIO
+import sys
+import tempfile
+import time
+import traceback
+from io import StringIO
+from threading import Lock
+from typing import Iterable
 from zipfile import ZipFile
 
-import http.server
-import socketserver
+try:
+    import re2 as re  # type: ignore
+except ImportError:
+    import re
 
 if sys.version_info[:2] < (3, 6):
     sys.exit("You are running an incompatible version of Python, please use >= 3.6")
 
 # You must run x86 version not x64
-if sys.maxsize > 2 ** 32:
+# The analysis process interacts with low-level Windows libraries that need a
+# x86 Python to be running.
+# (see https://github.com/kevoreilly/CAPEv2/issues/1680)
+if sys.maxsize > 2**32 and sys.platform == "win32":
     sys.exit("You should install python3 x86! not x64")
 
-AGENT_VERSION = "0.11"
+AGENT_VERSION = "0.20"
 AGENT_FEATURES = [
     "execpy",
+    "execute",
     "pinning",
     "logs",
     "largefile",
     "unicodepath",
 ]
-
-STATUS_INIT = 0x0001
-STATUS_RUNNING = 0x0002
-STATUS_COMPLETED = 0x0003
-STATUS_FAILED = 0x0004
-
+BASE_64_ENCODING = "base64"
+
+if sys.platform == "win32":
+    AGENT_FEATURES.append("mutex")
+    AGENT_FEATURES.append("browser_extension")
+    MUTEX_TIMEOUT_MS = 500
+    from ctypes import WinError, windll
+
+    kernel32 = windll.kernel32
+    SYNCHRONIZE = 0x100000
+    ERROR_FILE_NOT_FOUND = 0x2
+    WAIT_ABANDONED = 0x00000080
+    WAIT_OBJECT_0 = 0x0
+    WAIT_TIMEOUT = 0x102
+    WAIT_FAILED = 0xFFFFFFFF
+
+
+class Status(enum.IntEnum):
+    INIT = 1
+    RUNNING = 2
+    COMPLETE = 3
+    FAILED = 4
+    EXCEPTION = 5
+
+    def __str__(self):
+        return f"{self.name.lower()}"
+
+    @classmethod
+    def _missing_(cls, value):
+        if not isinstance(value, str):
+            return None
+        value = value.lower()
+        for member in cls:
+            if str(member) == value:
+                return member
+            if value.isnumeric() and int(value) == member.value:
+                return member
+        return None
+
+
+TERMINAL_STATUSES = [Status.COMPLETE, Status.FAILED, Status.EXCEPTION]
+
+AGENT_BROWSER_EXT_PATH = ""
+AGENT_BROWSER_LOCK = Lock()
 ANALYZER_FOLDER = ""
-state = dict()
-state["status"] = STATUS_INIT
-
-# To send output to stdin comment out this 2 lines
-sys.stdout = StringIO()
-sys.stderr = StringIO()
+agent_mutexes: dict = {}
+"""Holds handles of mutexes held by the agent."""
+state = {
+    "status": Status.INIT,
+    "description": "",
+    "async_subprocess": None,
+    "mutexes": agent_mutexes,
+}
 
 
 class MiniHTTPRequestHandler(http.server.SimpleHTTPRequestHandler):
@@ -86,8 +140,30 @@ def do_POST(self):
                     request.form[key] = value.value
         self.httpd.handle(self)
 
+    def do_DELETE(self):
+        environ = {
+            "REQUEST_METHOD": "DELETE",
+            "CONTENT_TYPE": self.headers.get("Content-Type"),
+        }
+
+        form = cgi.FieldStorage(fp=self.rfile, headers=self.headers, environ=environ)
 
-class MiniHTTPServer(object):
+        request.client_ip, request.client_port = self.client_address
+        request.form = {}
+        request.files = {}
+        request.method = "DELETE"
+
+        if form.list:
+            for key in form.keys():
+                value = form[key]
+                if value.filename:
+                    request.files[key] = value.file
+                else:
+                    request.form[key] = value.value
+        self.httpd.handle(self)
+
+
+class MiniHTTPServer:
     def __init__(self):
         self.handler = MiniHTTPRequestHandler
 
@@ -97,17 +173,28 @@ def __init__(self):
         self.routes = {
             "GET": [],
             "POST": [],
+            "DELETE": [],
         }
 
-    def run(self, host="0.0.0.0", port=8000):
-        self.s = socketserver.TCPServer((host, port), self.handler)
-        self.s.allow_reuse_address = True
+    def run(
+        self,
+        host: ipaddress.IPv4Address = ipaddress.IPv4Address("0.0.0.0"),
+        port: int = 8000,
+        event = None,
+    ):
+        socketserver.ThreadingTCPServer.allow_reuse_address = True
+        self.s = socketserver.ThreadingTCPServer((str(host), port), self.handler)
+
+        # tell anyone waiting that they're good to go
+        if event:
+            event.set()
+
         self.s.serve_forever()
 
-    def route(self, path, methods=["GET"]):
+    def route(self, path: str, methods: Iterable[str] = ["GET"]):
         def register(fn):
             for method in methods:
-                self.routes[method].append((re.compile(path + "$"), fn))
+                self.routes[method].append((re.compile(f"{path}$"), fn))
             return fn
 
         return register
@@ -116,7 +203,7 @@ def handle(self, obj):
         if "client_ip" in state and request.client_ip != state["client_ip"]:
             if request.client_ip != "127.0.0.1":
                 return
-            if obj.path != "/status" or request.method != "POST":
+            if obj.path not in ["/status", "/browser_extension"] or request.method != "POST":
                 return
 
         for route, fn in self.routes[obj.command]:
@@ -132,66 +219,113 @@ def handle(self, obj):
         obj.end_headers()
 
         if isinstance(ret, jsonify):
-            obj.wfile.write(ret.json().encode("utf-8"))
+            obj.wfile.write(ret.json().encode())
         elif isinstance(ret, send_file):
-            ret.write(obj.wfile)
+            ret.write(obj, obj.wfile)
+
+        if hasattr(self, "s") and self.s._BaseServer__shutdown_request:
+            self.close_connection = True
 
     def shutdown(self):
         # BaseServer also features a .shutdown() method, but you can't use
         # that from the same thread as that will deadlock the whole thing.
-        self.s._BaseServer__shutdown_request = True
+        if hasattr(self, "s"):
+            self.s._BaseServer__shutdown_request = True
+        else:
+            # When running unit tests in Windows, the system would hang here,
+            # until this `exit(1)` was added.
+            print(f"{self} has no 's' attribute")
+            exit(1)
 
 
-class jsonify(object):
+class jsonify:
     """Wrapper that represents Flask.jsonify functionality."""
 
-    def __init__(self, **kwargs):
-        self.status_code = 200
+    def __init__(self, status_code=200, **kwargs):
+        self.status_code = status_code
         self.values = kwargs
 
     def init(self):
         pass
 
-    def json(self):
-        return json.dumps(self.values)
+    def json(self) -> str:
+        for valkey in self.values:
+            if isinstance(self.values[valkey], bytes):
+                self.values[valkey] = self.values[valkey].decode("utf8", "replace")
+        try:
+            retdata = json.dumps(self.values)
+        except Exception as ex:
+            retdata = json.dumps({"error": f"Error serializing json data: {ex.args[0]}"})
+
+        return retdata
 
     def headers(self, obj):
         pass
 
 
-class send_file(object):
+class send_file:
     """Wrapper that represents Flask.send_file functionality."""
 
-    def __init__(self, path):
+    def __init__(self, path, encoding, streaming):
+        self.length = None
         self.path = path
         self.status_code = 200
+        self.encoding = encoding
+        self.streaming = False
+        if streaming == "1":
+            self.streaming = True
+
+    def okay_to_send(self):
+        return os.path.isfile(self.path) and os.access(self.path, os.R_OK)
 
     def init(self):
-        if not os.path.isfile(self.path):
-            self.status_code = 404
-            self.length = 0
+        if self.okay_to_send():
+            if self.encoding != BASE_64_ENCODING and not self.streaming:
+                self.length = os.path.getsize(self.path)
         else:
-            self.length = os.path.getsize(self.path)
+            self.status_code = 404
 
-    def write(self, sock):
-        if not self.length:
-            return
+    def write_streaming(self, httplog, sock):
+        """Streaming output. similar to using 'tail -f <file>"""
 
-        with open(self.path, "r") as f:
+        with open(self.path, "rb") as f:
             while True:
-                buf = f.read(1024 * 1024)
-                if not buf:
+                line = f.readline()
+                if not line:
+                    time.sleep(0.1)
+                    continue
+                try:
+                    sock.write(line)
+                except (BrokenPipeError, ConnectionResetError):
+                    httplog.log_message(f"Client disconnected while reading {self.path}")
                     break
 
-                sock.write(buf)
+    def write(self, httplog, sock):
+        if not self.okay_to_send():
+            return
+
+        if self.streaming:
+            self.write_streaming(httplog, sock)
+            return
+        try:
+            with open(self.path, "rb") as f:
+                buf = f.read(1024 * 1024)
+                while buf:
+                    if self.encoding == BASE_64_ENCODING:
+                        buf = base64.b64encode(buf)
+                    sock.write(buf)
+                    buf = f.read(1024 * 1024)
+        except Exception as ex:
+            httplog.log_error(f"Error reading file {self.path}: {ex}")
 
     def headers(self, obj):
-        obj.send_header("Content-Length", self.length)
+        if self.length is not None:
+            obj.send_header("Content-Length", self.length)
 
 
-class request(object):
-    form = {}
-    files = {}
+class request:
+    form: dict = {}
+    files: dict = {}
     client_ip = None
     client_port = None
     method = None
@@ -200,48 +334,187 @@ class request(object):
     }
 
 
-app = MiniHTTPServer()
+app: MiniHTTPServer = MiniHTTPServer()
+
+
+def isAdmin():
+    is_admin = None
+    try:
+        if sys.platform == "win32":
+            import ctypes
+
+            is_admin = ctypes.windll.shell32.IsUserAnAdmin() != 0
+        else:
+            is_admin = os.getuid() == 0
+    except Exception as e:
+        print(e)
 
+    return is_admin
 
-def json_error(error_code, message):
-    r = jsonify(message=message, error_code=error_code)
+
+def json_error(error_code: int, message: str, **kwargs) -> jsonify:
+    r = jsonify(message=message, error_code=error_code, **kwargs)
     r.status_code = error_code
     return r
 
 
-def json_exception(message):
+def json_exception(message: str) -> jsonify:
     r = jsonify(message=message, error_code=500, traceback=traceback.format_exc())
     r.status_code = 500
     return r
 
 
-def json_success(message, **kwargs):
-    return jsonify(message=message, **kwargs)
+def json_success(message: str, status_code=200, **kwargs) -> jsonify:
+    return jsonify(message=message, status_code=status_code, **kwargs)
 
 
 @app.route("/")
 def get_index():
-    return json_success("CAPE Agent!", version=AGENT_VERSION, features=AGENT_FEATURES)
+    is_admin = isAdmin()
+    return json_success("CAPE Agent!", version=AGENT_VERSION, features=AGENT_FEATURES, is_user_admin=bool(is_admin))
+
+
+def get_subprocess_status():
+    """Return the subprocess status."""
+    async_subprocess = state.get("async_subprocess")
+    message = "Analysis status"
+    exitcode = async_subprocess.poll()
+    if exitcode is None or (sys.platform == "win32" and exitcode == 259):
+        # Process is still running.
+        state["status"] = Status.RUNNING
+        return json_success(
+            message=message,
+            status=str(state.get("status")),
+            description=state.get("description"),
+            process_id=async_subprocess.pid,
+        )
+    # Process completed; reset async subprocess state.
+    state["async_subprocess"] = None
+    if exitcode == 0:
+        state["status"] = Status.COMPLETE
+        state["description"] = ""
+    else:
+        state["status"] = Status.FAILED
+        state["description"] = f"Exited with exit code {exitcode}"
+    return json_success(
+        message=message,
+        status=str(state.get("status")),
+        description=state.get("description"),
+        exitcode=exitcode,
+    )
+
+
+def open_mutex(mutex_name):
+    assert sys.platform == "win32"
+    access = SYNCHRONIZE  # only flag the mutex for use
+    inherit_handle = False  # don't pass the handle to children
+    hndl_mutex = kernel32.OpenMutexW(access, inherit_handle, mutex_name)
+    if not hndl_mutex:
+        winerr = WinError()
+        if winerr.errno == ERROR_FILE_NOT_FOUND:
+            return None, json_error(404, "mutex not found")
+        return None, json_error(500, f"error accessing mutex: {winerr}")
+    return hndl_mutex, None
+
+
+def wait_mutex(hndl_mutex):
+    assert sys.platform == "win32"
+    ret = kernel32.WaitForSingleObject(hndl_mutex, MUTEX_TIMEOUT_MS)
+    if ret in (WAIT_ABANDONED, WAIT_OBJECT_0):
+        return True, None
+    elif ret == WAIT_TIMEOUT:
+        return False, json_error(408, "timeout waiting for mutex")
+    elif ret == WAIT_FAILED:
+        # get the extended error information
+        winerr = WinError()
+        return False, json_error(500, f"failed waiting for mutex: {winerr}")
+    else:
+        return False, json_error(500, f"failed waiting for mutex: {ret}")
+
+
+def release_mutex(hndl_mutex):
+    assert sys.platform == "win32"
+    ret = kernel32.ReleaseMutex(hndl_mutex)
+    if not ret:
+        # get the extended error information
+        winerr = WinError()
+        return False, json_error(500, f"failed releasing mutex: {winerr}")
+    return True, None
 
 
 @app.route("/status")
 def get_status():
-    return json_success("Analysis status", status=state.get("status"), description=state.get("description"))
+    if state["status"] != Status.COMPLETE and state.get("async_subprocess") is not None:
+        return get_subprocess_status()
+    return json_success("Analysis status", status=str(state.get("status")), description=state.get("description"))
+
+
+@app.route("/mutex", methods=["POST"])
+def post_mutex():
+    if sys.platform != "win32":
+        return json_error(400, f"mutex feature not supported on {sys.platform}")
+    mutex_name = request.form.get("mutex", "")
+    if not mutex_name:
+        return json_error(400, "no mutex provided")
+    if mutex_name in agent_mutexes:
+        return json_success(f"have mutex: {mutex_name}")
+
+    # does the mutex exist?
+    hndl_mutex, error = open_mutex(mutex_name)
+    if error:
+        return error
+
+    # try waiting on it
+    ok, error = wait_mutex(hndl_mutex)
+    if ok:
+        # save the mutex handle for future requests
+        agent_mutexes[mutex_name] = hndl_mutex
+        return json_success(f"got mutex: {mutex_name}", status_code=201)
+    return error
+
+
+@app.route("/mutex", methods=["DELETE"])
+def delete_mutex():
+    if sys.platform != "win32":
+        return json_error(400, f"mutex feature not supported on {sys.platform}")
+    mutex_name = request.form.get("mutex", "")
+    if not mutex_name:
+        return json_error(400, "no mutex provided")
+    if mutex_name not in agent_mutexes:
+        return json_error(404, f"mutex does not exist: {mutex_name}")
+    hndl_mutex = agent_mutexes.pop(mutex_name)
+    ok, error = release_mutex(hndl_mutex)
+    if ok:
+        return json_success(f"released mutex: {mutex_name}")
+    return error
 
 
 @app.route("/status", methods=["POST"])
 def put_status():
-    if "status" not in request.form:
-        return json_error(400, "No status has been provided")
+    try:
+        status = Status(request.form.get("status"))
+    except ValueError:
+        return json_error(400, "No valid status has been provided")
 
-    state["status"] = request.form["status"]
+    # If the new status is terminal, unset the async subprocess so /status reports
+    # the final analysis state rather than the child process state.
+    if status in TERMINAL_STATUSES:
+        state["async_subprocess"] = None
+
+    state["status"] = status
     state["description"] = request.form.get("description")
     return json_success("Analysis status updated")
 
 
 @app.route("/logs")
 def get_logs():
-    return json_success("Agent logs", stdout=sys.stdout.getvalue(), stderr=sys.stderr.getvalue())
+    if isinstance(sys.stdout, StringIO):
+        stdoutbuf = sys.stdout.getvalue()
+        stderrbuf = sys.stderr.getvalue()
+    else:
+        stdoutbuf = "verbose mode, stdout not saved"
+        stderrbuf = "verbose mode, stderr not saved"
+    return json_success("Agent logs", stdout=stdoutbuf, stderr=stderrbuf)
 
 
 @app.route("/system")
@@ -264,25 +537,26 @@ def do_mkdir():
     if "dirpath" not in request.form:
         return json_error(400, "No dirpath has been provided")
 
-    mode = int(request.form.get("mode", 0o777))
-
     try:
-        os.makedirs(request.form["dirpath"], mode=mode)
-    except:
+        mode = int(request.form.get("mode", 0o777))
+
+        os.makedirs(request.form["dirpath"], mode=mode, exist_ok=True)
+    except Exception as ex:
+        print(f"error creating dir {ex}")
         return json_exception("Error creating directory")
 
     return json_success("Successfully created directory")
 
 
-@app.route("/mktemp", methods=["GET", "POST"])
+@app.route("/mktemp", methods=("GET", "POST"))
 def do_mktemp():
     suffix = request.form.get("suffix", "")
-    prefix = request.form.get("prefix", "tmp")
+    prefix = request.form.get("prefix", "")
     dirpath = request.form.get("dirpath")
 
     try:
         fd, filepath = tempfile.mkstemp(suffix=suffix, prefix=prefix, dir=dirpath)
-    except:
+    except Exception:
         return json_exception("Error creating temporary file")
 
     os.close(fd)
@@ -290,15 +564,17 @@ def do_mktemp():
     return json_success("Successfully created temporary file", filepath=filepath)
 
 
-@app.route("/mkdtemp", methods=["GET", "POST"])
+@app.route("/mkdtemp", methods=("GET", "POST"))
 def do_mkdtemp():
     suffix = request.form.get("suffix", "")
-    prefix = request.form.get("prefix", "tmp")
+    prefix = request.form.get("prefix", "")
     dirpath = request.form.get("dirpath")
 
     try:
         dirpath = tempfile.mkdtemp(suffix=suffix, prefix=prefix, dir=dirpath)
-    except:
+        if sys.platform == "win32":
+            subprocess.call(["icacls", dirpath, "/inheritance:e", "/grant", "*S-1-5-32-545:(OI)(CI)(RX)"])
+    except Exception:
         return json_exception("Error creating temporary directory")
 
     return json_success("Successfully created temporary directory", dirpath=dirpath)
@@ -315,8 +591,8 @@ def do_store():
     try:
         with open(request.form["filepath"], "wb") as f:
             shutil.copyfileobj(request.files["file"], f, 10 * 1024 * 1024)
-    except:
-        return json_exception("Error storing file")
+    except Exception as ex:
+        return json_exception(f"Error storing file: {ex}")
 
     return json_success("Successfully stored file")
 
@@ -326,7 +602,7 @@ def do_retrieve():
     if "filepath" not in request.form:
         return json_error(400, "No filepath has been provided")
 
-    return send_file(request.form["filepath"])
+    return send_file(request.form["filepath"], request.form.get("encoding", ""), request.form.get("streaming", ""))
 
 
 @app.route("/extract", methods=["POST"])
@@ -340,8 +616,8 @@ def do_extract():
     try:
         with ZipFile(request.files["zipfile"], "r") as archive:
             archive.extractall(request.form["dirpath"])
-    except:
-        return json_exception("Error extracting zip file")
+    except Exception as ex:
+        return json_exception(f"Error extracting zip file {ex}")
 
     return json_success("Successfully extracted zip file")
 
@@ -366,7 +642,7 @@ def do_remove():
             message = "Successfully deleted file"
         else:
             return json_error(404, "Path provided does not exist")
-    except:
+    except Exception:
         return json_exception("Error removing file or directory")
 
     return json_success(message)
@@ -374,8 +650,17 @@ def do_remove():
 
 @app.route("/execute", methods=["POST"])
 def do_execute():
+    local_ip = socket.gethostbyname(socket.gethostname())
+
     if "command" not in request.form:
         return json_error(400, "No command has been provided")
+    command_to_execute = shlex.split(request.form["command"])
+
+    # only allow date command from localhost. Even this is just to
+    # let it be tested
+    allowed_commands = ["date", "cmd /c date /t"]
+    if request.client_ip in ("127.0.0.1", local_ip) and request.form["command"] not in allowed_commands:
+        return json_error(500, "Not allowed to execute commands")
 
     # Execute the command asynchronously? As a shell command?
     async_exec = "async" in request.form
@@ -386,19 +671,62 @@ def do_execute():
 
     try:
         if async_exec:
-            subprocess.Popen(request.form["command"], shell=shell, cwd=cwd)
+            subprocess.Popen(command_to_execute, shell=shell, cwd=cwd)
         else:
-            p = subprocess.Popen(request.form["command"], shell=shell, cwd=cwd, stdout=subprocess.PIPE, stderr=subprocess.PIPE)
+            p = subprocess.Popen(command_to_execute, shell=shell, cwd=cwd, stdout=subprocess.PIPE, stderr=subprocess.PIPE)
             stdout, stderr = p.communicate()
-    except:
-        state["status"] = STATUS_FAILED
+            if request.form.get("encoding", "") == BASE_64_ENCODING:
+                stdout = base64.b64encode(stdout)
+                stderr = base64.b64encode(stderr)
+    except Exception as ex:
+        state["status"] = Status.FAILED
         state["description"] = "Error execute command"
-        return json_exception("Error executing command")
+        return json_exception(f"Error executing command: {ex}")
 
-    state["status"] = STATUS_RUNNING
+    state["status"] = Status.RUNNING
+    state["description"] = ""
     return json_success("Successfully executed command", stdout=stdout, stderr=stderr)
 
 
+def run_subprocess(command_args, cwd, base64_encode, shell=False):
+    """Execute the subprocess, wait for completion.
+
+    Return the exitcode (returncode), the stdout, and the stderr.
+    """
+    p = subprocess.Popen(
+        args=command_args,
+        cwd=cwd,
+        shell=shell,
+        stdout=subprocess.PIPE,
+        stderr=subprocess.PIPE,
+    )
+    stdout, stderr = p.communicate()
+    if base64_encode:
+        stdout = base64.b64encode(stdout)
+        stderr = base64.b64encode(stderr)
+    return p.returncode, stdout, stderr
+
+
+def background_subprocess(command_args, cwd, base64_encode, shell=False):
+    """Run subprocess, wait for completion, then exit.
+
+    This process must exit, so the parent process (agent) can find the exit status."""
+    # TODO: return the stdout/stderr to the parent process.
+    returncode, stdout, stderr = run_subprocess(command_args, cwd, base64_encode, shell)
+    sys.stdout.write(stdout.decode("ascii"))
+    sys.stderr.write(stderr.decode("ascii"))
+    sys.exit(returncode)
+
+
+def spawn(args, cwd, base64_encode, shell=False):
+    """Kick off a subprocess in the background."""
+    proc = subprocess.Popen(args, cwd=cwd, shell=shell)
+    state["status"] = Status.RUNNING
+    state["description"] = ""
+    state["async_subprocess"] = proc
+    return json_success("Successfully spawned command", process_id=proc.pid)
+
+
 @app.route("/execpy", methods=["POST"])
 def do_execpy():
     if "filepath" not in request.form:
@@ -406,28 +734,54 @@ def do_execpy():
 
     # Execute the command asynchronously? As a shell command?
     async_exec = "async" in request.form
+    base64_encode = request.form.get("encoding", "") == BASE_64_ENCODING
 
     cwd = request.form.get("cwd")
-    stdout = stderr = None
 
-    args = [
+    args = (
         sys.executable,
         request.form["filepath"],
-    ]
+    )
 
+    if async_exec and state["status"] == Status.RUNNING and state["async_subprocess"]:
+        return json_error(400, "Async process already running.")
     try:
         if async_exec:
-            subprocess.Popen(args, cwd=cwd)
-        else:
-            p = subprocess.Popen(args, cwd=cwd, stdout=subprocess.PIPE, stderr=subprocess.PIPE)
-            stdout, stderr = p.communicate()
-    except:
-        state["status"] = STATUS_FAILED
-        state["description"] = "Error executing command"
-        return json_exception("Error executing command")
-
-    state["status"] = STATUS_RUNNING
-    return json_success("Successfully executed command", stdout=stdout, stderr=stderr)
+            return spawn(args, cwd, base64_encode)
+        exitcode, stdout, stderr = run_subprocess(args, cwd, base64_encode)
+        if exitcode == 0:
+            state["status"] = Status.COMPLETE
+            state["description"] = ""
+            return json_success("Successfully executed command", stdout=stdout, stderr=stderr)
+        # Process exited with non-zero result.
+        state["status"] = Status.FAILED
+        message = "Error executing python command."
+        state["description"] = message
+        return json_error(400, message, stdout=stdout, stderr=stderr, exitcode=exitcode)
+    except Exception as ex:
+        state["status"] = Status.FAILED
+        state["description"] = "Error executing Python command"
+        return json_exception(f"Error executing Python command: {ex}")
+
+
+@app.route("/browser_extension", methods=["POST"])
+def do_browser_ext():
+    global AGENT_BROWSER_EXT_PATH
+    AGENT_BROWSER_LOCK.acquire()
+    if not AGENT_BROWSER_EXT_PATH:
+        try:
+            ext_tmpdir = tempfile.mkdtemp(prefix="")
+        except Exception:
+            AGENT_BROWSER_LOCK.release()
+            return json_exception("Error creating temporary directory")
+        ext_filepath = "bext_" + "".join(random.choice(string.ascii_letters) for _ in range(11)) + ".json"
+        AGENT_BROWSER_EXT_PATH = os.path.join(ext_tmpdir, ext_filepath)
+    network_data = request.form.get("networkData")
+    if network_data:
+        with open(AGENT_BROWSER_EXT_PATH, "w") as ext_fd:
+            ext_fd.write(network_data)
+    AGENT_BROWSER_LOCK.release()
+    return json_success("OK")
 
 
 @app.route("/pinning")
@@ -452,7 +806,12 @@ def do_kill():
 if __name__ == "__main__":
     parser = argparse.ArgumentParser()
     parser.add_argument("host", nargs="?", default="0.0.0.0")
-    parser.add_argument("port", nargs="?", default="8000")
-    # ToDo redir to stdout
+    parser.add_argument("port", type=int, nargs="?", default=8000)
+    parser.add_argument("-v", "--verbose", action="store_true")
     args = parser.parse_args()
-    app.run(host=args.host, port=int(args.port))
+
+    if not args.verbose:
+        sys.stdout = StringIO()
+        sys.stderr = StringIO()
+
+    app.run(host=args.host, port=args.port)
diff --git a/agent/pytest.ini b/agent/pytest.ini
new file mode 100644
index 00000000000..bdfc0ebb117
--- /dev/null
+++ b/agent/pytest.ini
@@ -0,0 +1,3 @@
+[pytest]
+pythonpath = .
+asyncio_mode = auto
diff --git a/agent/test_agent.py b/agent/test_agent.py
new file mode 100644
index 00000000000..bb4272cbe41
--- /dev/null
+++ b/agent/test_agent.py
@@ -0,0 +1,751 @@
+"""Tests for the agent."""
+
+import base64
+import datetime
+import io
+import json
+import multiprocessing
+import os
+import pathlib
+import random
+import shutil
+import subprocess
+import sys
+import tempfile
+import time
+import unittest
+import uuid
+import zipfile
+from typing import Optional
+from unittest import mock
+from urllib.parse import urljoin
+
+import pytest
+import requests
+
+import agent
+
+HOST = "127.0.0.1"
+PORT = 8000
+BASE_URL = f"http://{HOST}:{PORT}"
+
+DIRPATH = os.path.join(tempfile.gettempdir(), str(uuid.uuid4()))
+
+
+def make_temp_name():
+    return str(uuid.uuid4())
+
+
+class TestAgentFunctions:
+    @mock.patch("sys.platform", "win32")
+    def test_get_subprocess_259(self):
+        mock_process_id = 999998
+        mock_subprocess = mock.Mock(spec=subprocess.Popen)
+        mock_subprocess.poll = mock.Mock(return_value=259)
+        mock_subprocess.pid = mock_process_id
+        with mock.patch.dict(agent.state, {"async_subprocess": mock_subprocess}):
+            actual = agent.get_subprocess_status()
+        assert actual.status_code == 200
+        actual_json = json.loads(actual.json())
+        assert actual_json["status"] == "running"
+        assert actual_json["process_id"] == mock_process_id
+
+
+@mock.patch("sys.platform", "linux")
+class TestMutexAPILinux(unittest.TestCase):
+    def test_post_mutex_linux(self):
+        """Mutex POSTs are only supported on win32"""
+        mutex = self.id()
+        agent.request.form["mutex"] = mutex
+        response = agent.post_mutex()
+        assert isinstance(response, agent.jsonify)
+        assert response.status_code == 400
+
+    def test_delete_mutex_linux(self):
+        """Mutex DELETEs are only supported on win32"""
+        mutex = self.id()
+        agent.request.form["mutex"] = mutex
+        response = agent.delete_mutex()
+        assert isinstance(response, agent.jsonify)
+        assert response.status_code == 400
+
+
+@mock.patch("sys.platform", "win32")
+class TestMutexAPIWin32(unittest.TestCase):
+    def test_post_mutex_win32_201(self):
+        """Mutex POSTs succeed with mocked mutex APIs"""
+        mutex = self.id()
+        agent.request.form["mutex"] = mutex
+
+        # fake handle mutex based on test id
+        hndl_mutex = self.id()
+
+        # mock opening a mutex returning the fake handle
+        open_mutex_mock = mock.MagicMock()
+        open_mutex_mock.return_value = hndl_mutex, None
+        agent.open_mutex = open_mutex_mock
+
+        # mock mutex is acquired
+        wait_mutex_mock = mock.MagicMock()
+        wait_mutex_mock.return_value = True, None
+        agent.wait_mutex = wait_mutex_mock
+
+        response = agent.post_mutex()
+        wait_mutex_mock.assert_called_once_with(hndl_mutex)
+        assert isinstance(response, agent.jsonify)
+        assert response.status_code == 201
+
+    def test_post_mutex_win32_error_mutex_doesnt_exist(self):
+        """Mutex POSTs fail gracefully when mutexes won't open"""
+        mutex = self.id()
+        agent.request.form["mutex"] = mutex
+
+        # mock opening a mutex returning an error
+        open_mutex_mock = mock.MagicMock()
+        mock_error = mock.MagicMock()
+        open_mutex_mock.return_value = None, mock_error
+        agent.open_mutex = open_mutex_mock
+
+        response = agent.post_mutex()
+        assert response is mock_error
+
+    def test_post_mutex_win32_error_mutex_wait_failed(self):
+        """Mutex POSTs fail gracefully when mutex waiting fails"""
+        mutex = self.id()
+        agent.request.form["mutex"] = mutex
+
+        # fake handle mutex based on test id
+        hndl_mutex = self.id()
+
+        # mock opening a mutex returning the fake handle
+        open_mutex_mock = mock.MagicMock()
+        mock_error = mock.MagicMock()
+        open_mutex_mock.return_value = hndl_mutex, None
+        agent.open_mutex = open_mutex_mock
+
+        # mock mutex fails to be acquired
+        wait_mutex_mock = mock.MagicMock()
+        mock_error = mock.MagicMock()
+        wait_mutex_mock.return_value = None, mock_error
+        agent.wait_mutex = wait_mutex_mock
+
+        response = agent.post_mutex()
+        open_mutex_mock.assert_called_once_with(mutex)
+        wait_mutex_mock.assert_called_once_with(hndl_mutex)
+        assert response is mock_error
+
+    def test_delete_mutex_win32_404(self):
+        """Mutex DELETEs 404 when not held"""
+        mutex = self.id()
+        agent.request.form["mutex"] = mutex
+        self.assertNotIn(mutex, agent.agent_mutexes)
+        response = agent.delete_mutex()
+        assert isinstance(response, agent.jsonify)
+        assert response.status_code == 404
+
+    def test_delete_mutex_win32_error_releasing(self):
+        mutex = self.id()
+        agent.request.form["mutex"] = mutex
+
+        # inject a previously acquired mutex
+        hndl_mutex_mock = mock.MagicMock()
+        agent.agent_mutexes[mutex] = hndl_mutex_mock
+
+        # mock mutex fails to be released
+        release_mutex_mock = mock.MagicMock()
+        mock_error = mock.MagicMock()
+        release_mutex_mock.return_value = None, mock_error
+        agent.release_mutex = release_mutex_mock
+
+        response = agent.delete_mutex()
+        assert response is mock_error
+
+    def test_delete_mutex_win32_200(self):
+        mutex = self.id()
+        agent.request.form["mutex"] = mutex
+
+        # inject a previously acquired mutex
+        hndl_mutex_mock = mock.MagicMock()
+        agent.agent_mutexes[mutex] = hndl_mutex_mock
+
+        # mock mutex is released
+        release_mutex_mock = mock.MagicMock()
+        release_mutex_mock.return_value = True, None
+        agent.release_mutex = release_mutex_mock
+
+        response = agent.delete_mutex()
+        release_mutex_mock.assert_called_once_with(hndl_mutex_mock)
+        assert isinstance(response, agent.jsonify)
+        assert response.status_code == 200
+
+
+class TestAgent:
+    """Test the agent API."""
+
+    agent_process: Optional[multiprocessing.Process] = None
+
+    def setup_method(self):
+        agent.state = {"status": agent.Status.INIT, "description": "", "async_subprocess": None}
+        ev = multiprocessing.Event()
+        self.agent_process = multiprocessing.Process(
+            target=agent.app.run,
+            kwargs={"host": HOST, "port": PORT, "event": ev},
+        )
+        self.agent_process.start()
+
+        # Wait for http server to start.
+        if not ev.wait(5.0):
+            raise Exception("Failed to start agent HTTP server")
+
+        # Create temp directory for tests, as makes tidying up easier
+        os.mkdir(DIRPATH, 0o777)
+        assert os.path.isdir(DIRPATH)
+
+    def teardown_method(self):
+        # Remove the temporary directory and files.
+        try:
+            # Test the kill endpoint, which shuts down the agent service.
+            r = requests.get(f"{BASE_URL}/kill")
+            assert r.status_code == 200
+            assert r.json()["message"] == "Quit the CAPE Agent"
+        except requests.exceptions.ConnectionError:
+            pass
+        shutil.rmtree(DIRPATH, ignore_errors=True)
+        assert not os.path.isdir(DIRPATH)
+
+        if sys.platform == "win32":
+            # shutdown will hang on win32 without this
+            self.agent_process.terminate()
+
+        # Ensure agent process completes; release resources.
+        self.agent_process.join()
+        self.agent_process.close()
+
+    @staticmethod
+    def non_existent_directory():
+        root = pathlib.Path(tempfile.gettempdir()).root
+        current_pid = os.getpid()
+        non_existent = pathlib.Path(root, str(current_pid), str(random.randint(10000, 99999)))
+        assert not os.path.isdir(non_existent)
+        assert not os.path.exists(non_existent)
+        return non_existent
+
+    @staticmethod
+    def confirm_status(expected_status):
+        """Do a get and check the status."""
+        status_url = urljoin(BASE_URL, "status")
+        r = requests.get(status_url)
+        js = r.json()
+        assert js["message"] == "Analysis status"
+        assert js["status"] == expected_status
+        assert r.status_code == 200
+        return js
+
+    @staticmethod
+    def create_file(path, contents):
+        """Create the named file with the supplied contents."""
+        with open(path, "w") as file:
+            file.write(contents)
+        assert os.path.exists(path)
+        assert os.path.isfile(path)
+
+    @staticmethod
+    def file_contains(path, expected_contents):
+        """Examine the contents of a file."""
+        with open(path) as file:
+            actual_contents = file.read()
+            return bool(expected_contents in actual_contents)
+
+    @classmethod
+    def store_file(cls, file_contents):
+        """Store a file via the API, with the given contents. Return the filepath."""
+        contents = os.linesep.join(file_contents)
+        upload_file = {"file": ("name-here-matters-not", contents)}
+        filepath = os.path.join(DIRPATH, make_temp_name() + ".py")
+        form = {"filepath": filepath}
+        js = cls.post_form("store", form, files=upload_file)
+        assert js["message"] == "Successfully stored file"
+        assert os.path.isfile(filepath)
+        assert cls.file_contains(filepath, file_contents[0])
+        assert cls.file_contains(filepath, file_contents[-1])
+        return filepath
+
+    @staticmethod
+    def post_form(url_part, form_data, expected_status=200, files=None):
+        """Post to the URL and return the json."""
+        url = urljoin(BASE_URL, url_part)
+        r = requests.post(url, data=form_data, files=files)
+        assert r.status_code == expected_status
+        js = r.json()
+        return js
+
+    def test_root(self):
+        r = requests.get(f"{BASE_URL}/")
+        assert r.status_code == 200
+        js = r.json()
+        assert js["message"] == "CAPE Agent!"
+        assert "version" in js
+        assert "features" in js
+        assert "execute" in js["features"]
+        assert "execpy" in js["features"]
+        assert "pinning" in js["features"]
+
+    def test_status_write_valid_text(self):
+        """Write a status of 'exception'."""
+        # First, confirm the status is NOT 'exception'.
+        _ = self.confirm_status(str(agent.Status.INIT))
+        form = {"status": "exception"}
+        url_part = "status"
+        _ = self.post_form(url_part, form)
+        _ = self.confirm_status(str(agent.Status.EXCEPTION))
+
+    def test_status_write_valid_number(self):
+        """Write a status of '5'."""
+        # First, confirm the status is NOT 'exception'.
+        _ = self.confirm_status(str(agent.Status.INIT))
+        form = {"status": 5}
+        url_part = "status"
+        _ = self.post_form(url_part, form)
+        _ = self.confirm_status(str(agent.Status.EXCEPTION))
+
+    def test_status_write_invalid(self):
+        """Fail to provide a valid status."""
+        form = {"description": "Test Status"}
+        js = self.post_form("status", form, 400)
+        assert js["message"] == "No valid status has been provided"
+
+        form = {"status": "unexpected value"}
+        js = self.post_form("status", form, 400)
+        assert js["message"] == "No valid status has been provided"
+        _ = self.confirm_status(str(agent.Status.INIT))
+
+        # Write an unexpected random number.
+        form = {"status": random.randint(50, 99)}
+        js = self.post_form("status", form, 400)
+        assert js["message"] == "No valid status has been provided"
+        _ = self.confirm_status(str(agent.Status.INIT))
+
+    def test_logs(self):
+        """Test that the agent responds to a request for the logs."""
+        r = requests.get(f"{BASE_URL}/logs")
+        assert r.status_code == 200
+        js = r.json()
+        assert js["message"] == "Agent logs"
+        assert "stdout" in js
+        assert "stderr" in js
+
+    def test_system(self):
+        """Test that the agent responds to a request for the system/platform."""
+        r = requests.get(f"{BASE_URL}/system")
+        assert r.status_code == 200
+        js = r.json()
+        assert js["message"] == "System"
+        assert "system" in js
+        if sys.platform == "win32":
+            assert js["system"] == "Windows"
+        else:
+            assert js["system"] == "Linux"
+
+    def test_environ(self):
+        """Test that the agent responds to a request for the environment."""
+        r = requests.get(f"{BASE_URL}/environ")
+        assert r.status_code == 200
+        js = r.json()
+        assert js["message"] == "Environment variables"
+        assert "environ" in js
+
+    def test_path(self):
+        """Test that the agent responds to a request for its path."""
+        r = requests.get(f"{BASE_URL}/path")
+        assert r.status_code == 200
+        js = r.json()
+        assert js["message"] == "Agent path"
+        assert "filepath" in js
+        assert os.path.isfile(js["filepath"])
+
+    def test_mkdir_valid(self):
+        """Test that the agent creates a directory."""
+        new_dir = os.path.join(DIRPATH, make_temp_name())
+        form = {
+            "dirpath": new_dir,
+            "mode": 0o777,
+        }
+        js = self.post_form("mkdir", form)
+        assert js["message"] == "Successfully created directory"
+        assert os.path.exists(new_dir)
+        assert os.path.isdir(new_dir)
+
+    def test_mkdir_missing(self):
+        """Ensure we get an error returned when the mkdir request fails."""
+        form = {}
+        js = self.post_form("mkdir", form, 400)
+        assert js["message"] == "No dirpath has been provided"
+
+    @pytest.mark.skip("Not many paths are actually invalid")
+    def test_mkdir_invalid(self):
+        """Ensure we get an error returned when the mkdir request fails."""
+        # TODO come up with an invalid directory path for windows / linux
+        invalid = ""
+        form = {"dirpath": invalid, "mode": 0o777}
+        js = self.post_form("mkdir", form, 500)
+        assert js["message"] == "Error creating directory"
+
+    def test_mktemp_valid(self):
+        form = {
+            "dirpath": DIRPATH,
+            "prefix": "",
+            "suffix": "",
+        }
+        js = self.post_form("mktemp", form)
+        assert js["message"] == "Successfully created temporary file"
+        # tempfile.mkstemp adds random characters to suffix, so returned name
+        # will be different
+        assert "filepath" in js and js["filepath"].startswith(os.path.join(form["dirpath"], form["prefix"]))
+        assert os.path.exists(js["filepath"])
+        assert os.path.isfile(js["filepath"])
+
+    def test_mktemp_invalid(self):
+        """Ensure we get an error returned when the mktemp request fails."""
+        dirpath = self.non_existent_directory()
+        form = {
+            "dirpath": dirpath,
+            "prefix": "",
+            "suffix": "",
+        }
+        js = self.post_form("mktemp", form, 500)
+        assert js["message"] == "Error creating temporary file"
+
+    def test_mkdtemp_valid(self):
+        """Ensure we can use the mkdtemp endpoint."""
+        form = {
+            "dirpath": DIRPATH,
+            "prefix": "",
+            "suffix": "",
+        }
+        js = self.post_form("mkdtemp", form)
+        assert js["message"] == "Successfully created temporary directory"
+        # tempfile.mkdtemp adds random characters to suffix, so returned name
+        # will be different
+        assert "dirpath" in js and js["dirpath"].startswith(os.path.join(form["dirpath"], form["prefix"]))
+        assert os.path.exists(js["dirpath"])
+        assert os.path.isdir(js["dirpath"])
+
+    def test_mkdtemp_invalid(self):
+        """Ensure we get an error returned when the mkdtemp request fails."""
+        dirpath = self.non_existent_directory()
+        assert not dirpath.exists()
+        form = {
+            "dirpath": dirpath,
+            "prefix": "",
+            "suffix": "",
+        }
+        js = self.post_form("mkdtemp", form, 500)
+        assert js["message"] == "Error creating temporary directory"
+
+    def test_store(self):
+        sample_text = make_temp_name()
+        upload_file = {"file": ("ignored", os.linesep.join(("test data", sample_text, "test data")))}
+        form = {"filepath": os.path.join(DIRPATH, make_temp_name() + ".tmp")}
+
+        js = self.post_form("store", form, files=upload_file)
+        assert js["message"] == "Successfully stored file"
+        assert os.path.exists(form["filepath"])
+        assert os.path.isfile(form["filepath"])
+        assert self.file_contains(form["filepath"], sample_text)
+
+    def test_store_invalid(self):
+        # missing file
+        form = {"filepath": os.path.join(DIRPATH, make_temp_name() + ".tmp")}
+        js = self.post_form("store", form, 400)
+        assert js["message"] == "No file has been provided"
+
+        # missing filepath
+        upload_file = {"file": ("test_data.txt", "test data\ntest data\n")}
+        js = self.post_form("store", {}, 400, files=upload_file)
+        assert js["message"] == "No filepath has been provided"
+
+        # destination file path is invalid
+        upload_file = {"file": ("test_data.txt", "test data\ntest data\n")}
+        form = {"filepath": os.path.join(DIRPATH, make_temp_name(), "")}
+        js = self.post_form("store", form, 500, files=upload_file)
+        assert js["message"].startswith("Error storing file")
+
+    def test_retrieve(self):
+        """Create a file, then try to retrieve it."""
+        first_line = make_temp_name()
+        last_line = make_temp_name()
+        file_contents = os.linesep.join((first_line, "test data", last_line))
+        file_path = os.path.join(DIRPATH, make_temp_name() + ".tmp")
+        self.create_file(file_path, file_contents)
+
+        form = {"filepath": file_path}
+        # Can't use self.post_form here as no json will be returned.
+        r = requests.post(f"{BASE_URL}/retrieve", data=form)
+        assert r.status_code == 200
+        assert first_line in r.text
+        assert last_line in r.text
+        # Also test the base64-encoded retrieval.
+        form["encoding"] = "base64"
+        r = requests.post(f"{BASE_URL}/retrieve", data=form)
+        assert r.status_code == 200
+        decoded = base64.b64decode(r.text + "==").decode()
+        assert "test data" in decoded
+        assert first_line in decoded
+        assert last_line in decoded
+
+    def test_retrieve_invalid(self):
+        js = self.post_form("retrieve", {}, 400)
+        assert js["message"].startswith("No filepath has been provided")
+
+        # request to retrieve non existent file
+        form = {"filepath": os.path.join(DIRPATH, make_temp_name() + ".tmp")}
+        # Can't use self.post_form here as no json will be returned.
+        r = requests.post(f"{BASE_URL}/retrieve", data=form)
+        assert r.status_code == 404
+
+    def test_extract(self):
+        """Create a file zip file, then upload and extract the contents."""
+        file_dir = make_temp_name()
+        file_name = make_temp_name()
+        file_contents = make_temp_name()
+        zfile = io.BytesIO()
+        zf = zipfile.ZipFile(zfile, "w", zipfile.ZIP_DEFLATED, False)
+        zf.writestr(os.path.join(file_dir, file_name), file_contents)
+        zf.close()
+        zfile.seek(0)
+
+        upload_file = {"zipfile": ("test_file.zip", zfile.read())}
+        form = {"dirpath": DIRPATH}
+
+        js = self.post_form("extract", form, files=upload_file)
+        assert js["message"] == "Successfully extracted zip file"
+        expected_path = os.path.join(DIRPATH, file_dir, file_name)
+        assert os.path.exists(expected_path)
+        assert self.file_contains(expected_path, file_contents)
+
+        # todo should I check the filesytem for the file?
+
+    def test_extract_invalid(self):
+        form = {"dirpath": DIRPATH}
+        js = self.post_form("extract", form, 400)
+        assert js["message"] == "No zip file has been provided"
+
+        upload_file = {"zipfile": ("test_file.zip", "dummy data")}
+        js = self.post_form("extract", {}, 400, files=upload_file)
+        assert js["message"] == "No dirpath has been provided"
+
+    def test_remove(self):
+        tempdir = os.path.join(DIRPATH, make_temp_name())
+        tempfile = os.path.join(tempdir, make_temp_name())
+        os.mkdir(tempdir, 0o777)
+        self.create_file(tempfile, "test data\ntest data\n")
+
+        # delete temp file
+        form = {"path": tempfile}
+        js = self.post_form("remove", form)
+        assert js["message"] == "Successfully deleted file"
+
+        # delete temp directory
+        form = {"path": tempdir}
+        js = self.post_form("remove", form)
+        assert js["message"] == "Successfully deleted directory"
+
+    def test_remove_invalid(self):
+        tempdir = os.path.join(DIRPATH, make_temp_name())
+
+        # missing parameter
+        form = {}
+        js = self.post_form("remove", form, 400)
+        assert js["message"] == "No path has been provided"
+
+        # path doesn't exist
+        form = {"path": tempdir}
+        js = self.post_form("remove", form, 404)
+        assert js["message"] == "Path provided does not exist"
+
+    @pytest.mark.skipif(agent.isAdmin(), reason="Test fails if privileges are elevated.")
+    def test_remove_system_temp_dir(self):
+        # error removing file or dir (permission)
+        form = {"path": tempfile.gettempdir()}
+        js = self.post_form("remove", form, 500)
+        assert js["message"] == "Error removing file or directory"
+
+    def test_async_running(self):
+        """Test async execution shows as running after starting."""
+        # upload test python file
+        file_contents = (
+            f"# Comment a random number {random.randint(1000, 9999)}'",
+            "import sys",
+            "import time",
+            "print('hello world')",
+            "print('goodbye world', file=sys.stderr)",
+            "time.sleep(1)",
+            "sys.exit(0)",
+        )
+        filepath = self.store_file(file_contents)
+        form = {"filepath": filepath, "async": 1}
+
+        js = self.post_form("execpy", form)
+        assert js["message"] == "Successfully spawned command"
+        assert "stdout" not in js
+        assert "stderr" not in js
+        assert "process_id" in js
+        _ = self.confirm_status(str(agent.Status.RUNNING))
+
+    def test_async_complete(self):
+        """Test async execution shows as complete after exiting."""
+        # upload test python file
+        file_contents = (
+            f"# Comment a random number {random.randint(1000, 9999)}'",
+            "import sys",
+            "print('hello world')",
+            "sys.exit(0)",
+        )
+        filepath = self.store_file(file_contents)
+        form = {"filepath": filepath, "async": 1}
+
+        js = self.post_form("execpy", form)
+        assert js["message"] == "Successfully spawned command"
+        # sleep a moment to let it finish
+        time.sleep(1)
+        _ = self.confirm_status(str(agent.Status.COMPLETE))
+
+    def test_async_failure(self):
+        """Test that an unsuccessful script gets a status of 'failed'."""
+        # upload test python file. It will sleep, then try to import a nonexistent module.
+        file_contents = (
+            f"# Comment a random number {random.randint(1000, 9999)}'",
+            "import sys",
+            "import time",
+            "time.sleep(1)",
+            "import nonexistent",
+            "print('hello world')",
+            "print('goodbye world', file=sys.stderr)",
+            "sys.exit(0)",
+        )
+
+        filepath = self.store_file(file_contents)
+        form = {"filepath": filepath, "async": 1}
+
+        js = self.post_form("execpy", form)
+        assert js["message"] == "Successfully spawned command"
+        assert "stdout" not in js
+        assert "stderr" not in js
+        assert "process_id" in js
+        js = self.confirm_status(str(agent.Status.RUNNING))
+        assert "process_id" in js
+        time.sleep(2)
+
+        js = self.confirm_status(str(agent.Status.FAILED))
+        assert "process_id" not in js
+
+    def test_async_manual_status_override(self):
+        """Test that a manual status update overrides an in-progress async process."""
+        # Upload a Python file that sleeps for a short period, to ensure the
+        # async subprocess is running while we override the status.
+        file_contents = (
+            "import time",
+            "time.sleep(10)",
+        )
+
+        filepath = self.store_file(file_contents)
+        form = {"filepath": filepath, "async": 1}
+
+        execpy_resp = self.post_form("execpy", form)
+        assert execpy_resp.get("message") == "Successfully spawned command"
+
+        # While the subprocess is running, the status should initially be RUNNING.
+        self.confirm_status(str(agent.Status.RUNNING))
+
+        # Manually override the status to COMPLETE via POST /status.
+        override_form = {
+            "status": str(agent.Status.COMPLETE),
+            "description": "beep boop"
+        }
+        status_resp = self.post_form("status", override_form)
+        assert status_resp.get("message") == "Analysis status updated"
+
+        self.confirm_status(str(agent.Status.COMPLETE))
+
+    def test_execute(self):
+        """Test executing the 'date' command."""
+        if sys.platform == "win32":
+            form = {"command": "cmd /c date /t"}
+        else:
+            form = {"command": "date"}
+        js = self.post_form("execute", form)
+        assert js["message"] == "Successfully executed command"
+        assert "stdout" in js
+        assert "stderr" in js
+        current_year = datetime.date.today().isoformat()
+        assert current_year[:4] in js["stdout"]
+
+    def test_execute_error(self):
+        """Expect an error on invalid command to execute."""
+        js = self.post_form("execute", {}, 400)
+        assert js["message"] == "No command has been provided"
+
+        form = {"command": "ls"}
+        js = self.post_form("execute", form, 500)
+        assert js["message"] == "Not allowed to execute commands"
+
+    def test_execute_py(self):
+        """Test we can execute a simple python script."""
+        # The output line endings are different between linux and Windows.
+        file_contents = (
+            f"# Comment a random number {random.randint(1000, 9999)}'",
+            "import sys",
+            "print('hello world')",
+            "print('goodbye world', file=sys.stderr)",
+        )
+        filepath = self.store_file(file_contents)
+
+        form = {"filepath": filepath}
+        js = self.post_form("execpy", form)
+        assert js["message"] == "Successfully executed command"
+        assert "stdout" in js and "hello world" in js["stdout"]
+        assert "stderr" in js and "goodbye world" in js["stderr"]
+
+    def test_execute_py_error_no_file(self):
+        """Ensure we get a 400 back when there's no file provided."""
+        # The agent used to return 200 even in various failure scenarios.
+        js = self.post_form("execpy", {}, expected_status=400)
+        assert js["message"] == "No Python file has been provided"
+
+    def test_execute_py_error_nonexistent_file(self):
+        """Ensure we get a 400 back when a nonexistent filename is provided."""
+        filepath = os.path.join(DIRPATH, make_temp_name() + ".py")
+        form = {"filepath": filepath}
+        js = self.post_form("execpy", form, expected_status=400)
+        assert js["message"] == "Error executing python command."
+        assert "stderr" in js and "No such file or directory" in js["stderr"]
+        _ = self.confirm_status(str(agent.Status.FAILED))
+
+    def test_execute_py_error_non_zero_exit_code(self):
+        """Ensure we get a 400 back when there's a non-zero exit code."""
+        # Run a python script that exits non-zero.
+        file_contents = (
+            f"# Comment a random number {random.randint(1000, 9999)}'",
+            "import sys",
+            "print('hello world')",
+            "sys.exit(3)",
+        )
+        filepath = self.store_file(file_contents)
+        form = {"filepath": filepath}
+        js = self.post_form("execpy", form, expected_status=400)
+        assert js["message"] == "Error executing python command."
+        assert "hello world" in js["stdout"]
+        _ = self.confirm_status(str(agent.Status.FAILED))
+
+    def test_pinning(self):
+        r = requests.get(f"{BASE_URL}/pinning")
+        assert r.status_code == 200
+        js = r.json()
+        assert js["message"] == "Successfully pinned Agent"
+        assert "client_ip" in js
+
+        # Pinning again causes an error.
+        r = requests.get(f"{BASE_URL}/pinning")
+        assert r.status_code == 500
+        js = r.json()
+        assert js["message"] == "Agent has already been pinned to an IP!"
diff --git a/agent/test_python_architecture.py b/agent/test_python_architecture.py
new file mode 100644
index 00000000000..9548defe628
--- /dev/null
+++ b/agent/test_python_architecture.py
@@ -0,0 +1,26 @@
+"""Ensure our version check and architecture check function as desired."""
+
+import sys
+
+import pytest
+
+
+def test_32_bit(monkeypatch):
+    with monkeypatch.context() as m:
+        # Unload "agent" module if previously imported.
+        sys.modules.pop("agent", None)
+        m.setattr(sys, "maxsize", 2**64)
+        m.setattr(sys, "platform", "win32")
+        with pytest.raises(SystemExit):
+            # Should raise an exception.
+            import agent  # noqa: F401
+
+
+def test_python_version(monkeypatch):
+    with monkeypatch.context() as m:
+        # Unload "agent" module if previously imported.
+        sys.modules.pop("agent", None)
+        m.setattr(sys, "version_info", (3, 2, 1, "final", 0))
+        with pytest.raises(SystemExit):
+            # Should raise an exception.
+            import agent  # noqa: F401
diff --git a/analyzer/linux/analyzer.py b/analyzer/linux/analyzer.py
index c7e64fc89b3..1bc335de7c4 100644
--- a/analyzer/linux/analyzer.py
+++ b/analyzer/linux/analyzer.py
@@ -2,16 +2,19 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
+import datetime
+import hashlib
+import logging
 import os
-import sys
 import pkgutil
-import logging
+import re
+import sys
 import tempfile
-import traceback
 import time
-import datetime
+import traceback
 import zipfile
+from pathlib import Path
+from threading import Thread
 from urllib.parse import urlencode
 from urllib.request import urlopen
 
@@ -21,8 +24,8 @@
 from lib.common.exceptions import CuckooError, CuckooPackageError
 from lib.common.results import upload_to_host
 from lib.core.config import Config
-from lib.core.startup import create_folders, init_logging
 from lib.core.packages import choose_package_class
+from lib.core.startup import create_folders, init_logging
 from modules import auxiliary
 
 log = logging.getLogger()
@@ -33,6 +36,7 @@
 PROCESS_LIST = set()
 SEEN_LIST = set()
 PPID = Process(pid=PID).get_parent_pid()
+MEM_PATH = PATHS.get("memory")
 
 
 def add_pids(pids):
@@ -52,6 +56,87 @@ def dump_files():
     """Dump all the dropped files."""
     for file_path in FILES_LIST:
         log.info("PLS IMPLEMENT DUMP, want to dump %s", file_path)
+    upload_to_host(
+        os.environ.get("SSLKEYLOGFILE", "/sslkeylog.log"),
+        "tlsdump/tlsdump.log",
+        category="tlsdump",
+    )
+
+
+def monitor_new_processes(parent_pid, interval=0.25):
+    """Continuously monitor for new child processes."""
+    known_processes = set(get_all_child_processes(parent_pid))
+    while True:
+        current_processes = set(get_all_child_processes(parent_pid))
+        new_processes = current_processes - known_processes
+
+        for pid in new_processes:
+            log.info("New child process detected: %s", str(pid))
+            dump_memory(pid)
+            add_pids(pid)  # Add the new process to PROCESS_LIST
+
+        known_processes.update(new_processes)
+        time.sleep(interval)
+
+
+def get_all_child_processes(parent_pid, all_children=None):
+    """Recursively finds all child processes of a given parent PID."""
+    if all_children is None:
+        all_children = []
+    try:
+        children_file_path = f"/proc/{parent_pid}/task/{parent_pid}/children"
+        with open(children_file_path, "r") as f:
+            for child_pid in f.read().strip().split():
+                all_children.append(int(child_pid))
+                get_all_child_processes(int(child_pid), all_children)
+    except FileNotFoundError:
+        pass
+    return all_children
+
+
+def dump_memory(pid):
+    """Dump memory of a process, avoiding duplicates."""
+    # with process_lock:
+    if pid in DUMPED_LIST:
+        return  # Skip if already dumped
+    try:
+        maps_file = open(f"/proc/{pid}/maps", "r")
+        mem_file = open(f"/proc/{pid}/mem", "rb", 0)
+        output_file = open(f"{MEM_PATH}/{pid}.dmp", "wb")
+
+        for line in maps_file.readlines():
+            # Reference: https://man7.org/linux/man-pages/man5/proc_pid_maps.5.html
+            m = re.match(r"^([0-9a-f]+)-([0-9a-f]+) ([-rwxsp]{4}) ([0-9a-f]+) (\d\d:\d\d) (\d+) *(.*)$", line)
+            if not m:
+                log.error("Could not parse memory map line for pid %s: %s", pid, line)
+                continue
+            perms = m.group(3)
+            pathname = m.group(7)
+            if "r" in perms:
+                # Testing: Uncomment to skip memory regions associated with dynamic libraries
+                # if pathname and (pathname.endswith('.so') or 'lib' in pathname or '[' in pathname):
+                # continue
+                start = int(m.group(1), 16)
+                end = int(m.group(2), 16)
+                try:
+                    mem_file.seek(start)
+                    chunk = mem_file.read(end - start)
+                    output_file.write(chunk)
+                except (OSError, ValueError) as e:
+                    log.error("Could not read memory range %x-%x (%s) (%s): %s", start, end, perms, pathname, e)
+        maps_file.close()
+        mem_file.close()
+        output_file.close()
+    except FileNotFoundError:
+        log.error("Process with PID %s not found.", str(pid))
+    except PermissionError:
+        log.error("Permission denied to access process with PID %s.", str(pid))
+
+    if os.path.exists(f"{MEM_PATH}/{pid}.dmp"):
+        upload_to_host(f"{MEM_PATH}/{pid}.dmp", f"memory/{pid}.dmp")
+        DUMPED_LIST.add(pid)
+    else:
+        log.error("Memdump file not found in guest machine for PID %s", str(pid))
 
 
 class Analyzer:
@@ -62,8 +147,6 @@ class Analyzer:
     """
 
     def __init__(self):
-        # Parse the analysis configuration file generated by the agent.
-        self.config = Config(cfg="analysis.conf")
         self.target = None
 
     def prepare(self):
@@ -75,11 +158,15 @@ def prepare(self):
         # Initialize logging.
         init_logging()
 
-        if self.config.get("clock", None):
+        # Parse the analysis configuration file generated by the agent.
+        self.config = Config(cfg="analysis.conf")
+        self.options = self.config.get_options()
+
+        if self.config.get("clock"):
             # Set virtual machine clock.
             clock = datetime.datetime.strptime(self.config.clock, "%Y%m%dT%H:%M:%S")
             # Setting date and time.
-            os.system('date -s "{0}"'.format(clock.strftime("%y-%m-%d %H:%M:%S")))
+            os.system(f'date -s "{clock.strftime("%y-%m-%d %H:%M:%S")}"')
 
         # We update the target according to its category. If it's a file, then
         # we store the path.
@@ -88,7 +175,8 @@ def prepare(self):
         # If it's a URL, well.. we store the URL.
         elif self.config.category == "archive":
             zip_path = os.path.join(os.environ.get("TEMP", "/tmp"), self.config.file_name)
-            zipfile.ZipFile(zip_path).extractall(os.environ.get("TEMP", "/tmp"))
+            with zipfile.ZipFile(zip_path) as zf:
+                zf.extractall(os.environ.get("TEMP", "/tmp"))
             self.target = os.path.join(os.environ.get("TEMP", "/tmp"), self.config.options["filename"])
         else:
             self.target = self.config.target
@@ -99,7 +187,7 @@ def complete(self):
         dump_files()
 
         # Hell yeah.
-        log.info("Analysis completed.")
+        log.info("Analysis completed")
         return True
 
     def run(self):
@@ -108,41 +196,36 @@ def run(self):
         """
         self.prepare()
 
-        log.debug("Starting analyzer from: %s", os.getcwd())
+        log.debug("Starting analyzer from: %s", Path.cwd())
         log.debug("Storing results at: %s", PATHS["root"])
 
         # If no analysis package was specified at submission, we try to select
         # one automatically.
         """
         if not self.config.package:
-            log.debug("No analysis package specified, trying to detect it automagically.")
+            log.debug("No analysis package specified, trying to detect it automagically")
 
-            if self.config.category == "file":
-                package = "generic"
-            else:
-                package = "wget"
+            package = "generic" if self.config.category == "file" else "wget"
 
             # If we weren't able to automatically determine the proper package,
             # we need to abort the analysis.
             if not package:
-                raise CuckooError("No valid package available for file "
-                                  "type: {0}".format(self.config.file_type))
+                raise CuckooError(f"No valid package available for file type: {self.config.file_type}")
 
-            log.info("Automatically selected analysis package \"%s\"", package)
+            log.info('Automatically selected analysis package "%s"', package)
         # Otherwise just select the specified package.
         else:
             package = self.config.package
 
         # Generate the package path.
-        package_name = "modules.packages.%s" % package
+        package_name = f"modules.packages.{package}"
 
         # Try to import the analysis package.
         try:
             __import__(package_name, globals(), locals(), ["dummy"], 0)
         # If it fails, we need to abort the analysis.
         except ImportError:
-            raise CuckooError("Unable to import package \"{0}\", does "
-                              "not exist.".format(package_name))
+            raise CuckooError('Unable to import package "{package_name}", does not exist')
 
         # Initialize the package parent abstract.
         Package()
@@ -151,18 +234,15 @@ def run(self):
         try:
             package_class = Package.__subclasses__()[0]
         except IndexError as e:
-            raise CuckooError("Unable to select package class "
-                              "(package={0}): {1}".format(package_name, e))
+            raise CuckooError(f"Unable to select package class (package={package_name}): {e}")
         """
         if self.config.package:
-            suggestion = self.config.package
+            suggestion = "ff" if self.config.package == "ie" else self.config.package
         elif self.config.category != "file":
             suggestion = "url"
         else:
             suggestion = None
 
-        if self.config.package == "ie":
-            suggestion = "ff"
         # Try to figure out what analysis package to use with this target
         kwargs = {"suggestion": suggestion}
         if self.config.category == "file":
@@ -173,43 +253,41 @@ def run(self):
         if not package_class:
             raise Exception("Could not find an appropriate analysis package")
         # Package initialization
-        kwargs = {"options": self.config.options, "timeout": self.config.timeout}
+        kwargs = {"options": self.config.options, "timeout": self.config.timeout, "strace_ouput": PATHS["logs"]}
 
         # Initialize the analysis package.
         # pack = package_class(self.config.get_options())
         pack = package_class(self.target, **kwargs)
         # Initialize Auxiliary modules
         Auxiliary()
-        prefix = auxiliary.__name__ + "."
+        prefix = f"{auxiliary.__name__}."
         for loader, name, ispkg in pkgutil.iter_modules(auxiliary.__path__, prefix):
             if ispkg:
                 continue
 
             # Import the auxiliary module.
             try:
+                log.debug('Importing auxiliary module "%s"...', name)
                 __import__(name, globals(), locals(), ["dummy"], 0)
             except ImportError as e:
-                log.warning("Unable to import the auxiliary module " '"%s": %s', name, e)
+                log.warning('Unable to import the auxiliary module "%s": %s', name, e)
 
         # Walk through the available auxiliary modules.
         aux_enabled, aux_avail = [], []
         for module in sorted(Auxiliary.__subclasses__(), key=lambda x: x.priority, reverse=True):
             # Try to start the auxiliary module.
             try:
-                aux = module()
+                aux = module(self.options, self.config)
+                log.debug('Initialized auxiliary module "%s"', module.__name__)
                 aux_avail.append(aux)
+                log.debug('Trying to start auxiliary module "%s"...', module.__name__)
                 aux.start()
+                log.debug('Started auxiliary module "%s"', module.__name__)
+                aux_enabled.append(aux)
             except (NotImplementedError, AttributeError):
-                log.warning("Auxiliary module %s was not implemented", aux.__class__.__name__)
-                continue
+                log.warning("Auxiliary module %s was not implemented", module.__name__)
             except Exception as e:
-                log.warning("Cannot execute auxiliary module %s: %s", aux.__class__.__name__, e)
-                continue
-            finally:
-                log.debug("Started auxiliary module %s", aux.__class__.__name__)
-                # aux_enabled.append(aux)
-                if aux:
-                    aux_enabled.append(aux)
+                log.warning("Cannot execute auxiliary module %s: %s", module.__name__, e)
 
         # Start analysis package. If for any reason, the execution of the
         # analysis package fails, we have to abort the analysis.
@@ -217,11 +295,11 @@ def run(self):
             # pids = pack.start(self.target)
             pids = pack.start()
         except NotImplementedError:
-            raise CuckooError('The package "{0}" doesn\'t contain a run ' "function.".format(package_class))
+            raise CuckooError(f'The package "{package_class}" doesn\'t contain a run function')
         except CuckooPackageError as e:
-            raise CuckooError('The package "{0}" start function raised an ' "error: {1}".format(package_class, e))
+            raise CuckooError(f'The package "{package_class}" start function raised an error: {e}')
         except Exception as e:
-            raise CuckooError('The package "{0}" start function encountered ' "an unhandled exception: " "{1}".format(package_class, e))
+            raise CuckooError(f'The package "{package_class}" start function encountered an unhandled exception: {e}')
 
         # If the analysis package returned a list of process IDs, we add them
         # to the list of monitored processes and enable the process monitor.
@@ -233,21 +311,34 @@ def run(self):
         # where the package isn't enabling any behavioral analysis), we don't
         # enable the process monitor.
         else:
-            log.info("No process IDs returned by the package, running " "for the full timeout.")
+            log.info("No process IDs returned by the package, running for the full timeout")
             pid_check = False
 
+        if PROCESS_LIST:
+            PID = next(iter(PROCESS_LIST))
+        else:
+            raise ValueError("No PID available to monitor.")
+
+        # Start the monitoring thread before the analysis loop
+        monitor_thread = Thread(target=monitor_new_processes, args=(PID,), daemon=True)
+        monitor_thread.start()
+
         # Check in the options if the user toggled the timeout enforce. If so,
         # we need to override pid_check and disable process monitor.
         if self.config.enforce_timeout:
-            log.info("Enabled timeout enforce, running for the full timeout.")
+            log.info("Enabled timeout enforce, running for the full timeout")
             pid_check = False
 
         time_counter = 0
-
+        complete_folder = hashlib.md5(f"cape-{self.config.id}".encode()).hexdigest()
+        complete_analysis_pattern = os.path.join(os.environ.get("TMP", "/tmp"), complete_folder)
         while True:
             time_counter += 1
             if time_counter > int(self.config.timeout):
-                log.info("Analysis timeout hit, terminating analysis.")
+                log.info("Analysis timeout hit, terminating analysis")
+                break
+            if os.path.isdir(complete_analysis_pattern):
+                log.info("Analysis termination requested by user")
                 break
 
             try:
@@ -270,7 +361,7 @@ def run(self):
                     # If none of the monitored processes are still alive, we
                     # can terminate the analysis.
                     if not PROCESS_LIST:
-                        log.info("Process list is empty, " "terminating analysis.")
+                        log.info("Process list is empty, terminating analysis")
                         break
 
                     # Update the list of monitored processes available to the
@@ -284,14 +375,14 @@ def run(self):
                     # returns False, it means that it requested the analysis
                     # to be terminate.
                     if not pack.check():
-                        log.info("The analysis package requested the " "termination of the analysis.")
+                        log.info("The analysis package requested the termination of the analysis")
                         break
 
                 # If the check() function of the package raised some exception
                 # we don't care, we can still proceed with the analysis but we
                 # throw a warning.
                 except Exception as e:
-                    log.warning('The package "%s" check function raised ' "an exception: %s", package_class, e)
+                    log.warning('The package "%s" check function raised an exception: %s', package_class, e)
             except Exception as e:
                 log.exception("The PID watching loop raised an exception: %s", e)
             finally:
@@ -303,7 +394,7 @@ def run(self):
             # final operations through the finish() function.
             pack.finish()
         except Exception as e:
-            log.warning('The package "%s" finish function raised an ' "exception: %s", package_class, e)
+            log.warning('The package "%s" finish function raised an exception: %s', package_class, e)
 
         try:
             # Upload files the package created to files in the results folder
@@ -312,28 +403,31 @@ def run(self):
                 for package in package_files:
                     upload_to_host(package[0], os.path.join("files", package[1]))
         except Exception as e:
-            log.warning('The package "%s" package_files function raised an ' "exception: %s", package_class, e)
+            log.warning('The package "%s" package_files function raised an exception: %s', package_class, e)
 
         # Terminate the Auxiliary modules.
+        log.info("Stopping auxiliary modules")
         for aux in sorted(aux_enabled, key=lambda x: x.priority):
             try:
+                log.info("Stopping auxiliary module: %s", aux.__class__.__name__)
                 aux.stop()
             except (NotImplementedError, AttributeError):
                 continue
             except Exception as e:
                 log.warning("Cannot terminate auxiliary module %s: %s", aux.__class__.__name__, e)
 
+        log.info("Finishing auxiliary modules")
         if self.config.terminate_processes:
             # Try to terminate remaining active processes. We do this to make sure
             # that we clean up remaining open handles (sockets, files, etc.).
-            log.info("Terminating remaining processes before shutdown.")
+            log.info("Terminating remaining processes before shutdown")
 
             for pid in PROCESS_LIST:
                 proc = Process(pid=pid)
                 if proc.is_alive():
                     try:
                         proc.terminate()
-                    except:
+                    except Exception:
                         continue
 
         # Run the finish callback of every available Auxiliary module.
@@ -343,7 +437,7 @@ def run(self):
             except (NotImplementedError, AttributeError):
                 continue
             except Exception as e:
-                log.warning("Exception running finish callback of auxiliary " "module %s: %s", aux.__class__.__name__, e)
+                log.warning("Exception running finish callback of auxiliary module %s: %s", aux.__class__.__name__, e)
 
         # Let's invoke the completion procedure.
         self.complete()
@@ -379,7 +473,7 @@ def run(self):
         if len(log.handlers):
             log.exception(error_exc)
         else:
-            sys.stderr.write("{0}\n".format(error_exc))
+            sys.stderr.write(f"{error_exc}\n")
 
     # Once the analysis is completed or terminated for any reason, we report
     # back to the agent, notifying that it can report back to the host.
@@ -389,6 +483,7 @@ def run(self):
                 "status": "complete",
                 "description": success,
             }
-            urlopen("http://127.0.0.1:8000/status", urlencode(data).encode("utf-8")).read()
+            with urlopen("http://127.0.0.1:8000/status", urlencode(data).encode()) as response:
+                response.read()
         except Exception as e:
             print(e)
diff --git a/analyzer/linux/dbus_next/__init__.py b/analyzer/linux/dbus_next/__init__.py
new file mode 100644
index 00000000000..3734b618e09
--- /dev/null
+++ b/analyzer/linux/dbus_next/__init__.py
@@ -0,0 +1,41 @@
+from . import aio, introspection, message_bus, proxy_object, service
+
+# from . import glib
+from .constants import (
+    ArgDirection,
+    BusType,
+    ErrorType,
+    MessageFlag,
+    MessageType,
+    NameFlag,
+    PropertyAccess,
+    ReleaseNameReply,
+    RequestNameReply,
+)
+from .errors import (
+    AuthError,
+    DBusError,
+    InterfaceNotFoundError,
+    InvalidAddressError,
+    InvalidBusNameError,
+    InvalidInterfaceNameError,
+    InvalidIntrospectionError,
+    InvalidMemberNameError,
+    InvalidMessageError,
+    InvalidObjectPathError,
+    InvalidSignatureError,
+    SignalDisabledError,
+    SignatureBodyMismatchError,
+)
+from .message import Message
+from .signature import SignatureTree, SignatureType, Variant
+from .validators import (
+    assert_bus_name_valid,
+    assert_interface_name_valid,
+    assert_member_name_valid,
+    assert_object_path_valid,
+    is_bus_name_valid,
+    is_interface_name_valid,
+    is_member_name_valid,
+    is_object_path_valid,
+)
diff --git a/analyzer/linux/dbus_next/__version__.py b/analyzer/linux/dbus_next/__version__.py
new file mode 100644
index 00000000000..3faf575edd5
--- /dev/null
+++ b/analyzer/linux/dbus_next/__version__.py
@@ -0,0 +1,8 @@
+__title__ = "dbus_next"
+__description__ = "A zero-dependency DBus library for Python with asyncio support"
+__url__ = "https://github.com/altdesktop/python-dbus-next"
+__version__ = "0.2.3"
+__author__ = "Tony Crisci"
+__author_email__ = "tony@dubstepdish.com"
+__license__ = "MIT"
+__copyright__ = "Copyright 2019 Tony Crisci"
diff --git a/lib/cuckoo/common/graphs/__init__.py b/analyzer/linux/dbus_next/_private/__init__.py
similarity index 100%
rename from lib/cuckoo/common/graphs/__init__.py
rename to analyzer/linux/dbus_next/_private/__init__.py
diff --git a/analyzer/linux/dbus_next/_private/address.py b/analyzer/linux/dbus_next/_private/address.py
new file mode 100644
index 00000000000..5219184944f
--- /dev/null
+++ b/analyzer/linux/dbus_next/_private/address.py
@@ -0,0 +1,100 @@
+import os
+import re
+from urllib.parse import unquote
+
+from ..constants import BusType
+from ..errors import InvalidAddressError
+
+invalid_address_chars_re = re.compile(r"[^-0-9A-Za-z_/.%]")
+
+
+def parse_address(address_str):
+    addresses = []
+
+    for address in filter(lambda a: a, address_str.split(";")):
+        if address.find(":") == -1:
+            raise InvalidAddressError("address did not contain a transport")
+
+        transport, opt_string = address.split(":", 1)
+        options = {}
+
+        for kv in filter(lambda s: s, opt_string.split(",")):
+            if kv.find("=") == -1:
+                raise InvalidAddressError("address option did not contain a value")
+            k, v = kv.split("=", 1)
+            if invalid_address_chars_re.search(v):
+                raise InvalidAddressError("address contains invalid characters")
+            # XXX the actual unquote rules are simpler than this
+            v = unquote(v)
+            options[k] = v
+
+        addresses.append((transport, options))
+
+    if not addresses:
+        raise InvalidAddressError(f'address string contained no addresses: "{address_str}"')
+
+    return addresses
+
+
+def get_system_bus_address():
+    if "DBUS_SYSTEM_BUS_ADDRESS" in os.environ:
+        return os.environ["DBUS_SYSTEM_BUS_ADDRESS"]
+    return "unix:path=/var/run/dbus/system_bus_socket"
+
+
+display_re = re.compile(r".*:([0-9]+)\.?.*")
+remove_quotes_re = re.compile(r"""^['"]?(.*?)['"]?$""")
+
+
+def get_session_bus_address():
+    if "DBUS_SESSION_BUS_ADDRESS" in os.environ:
+        return os.environ["DBUS_SESSION_BUS_ADDRESS"]
+
+    home = os.environ["HOME"]
+    if "DISPLAY" not in os.environ:
+        raise InvalidAddressError(
+            "DBUS_SESSION_BUS_ADDRESS not set and could not get DISPLAY environment variable to get bus address"
+        )
+
+    display = os.environ["DISPLAY"]
+    try:
+        display = display_re.search(display).group(1)
+    except Exception:
+        raise InvalidAddressError(
+            f"DBUS_SESSION_BUS_ADDRESS not set and could not parse DISPLAY environment variable to get bus address: {display}"
+        )
+
+    # XXX: this will block but they're very small files and fs operations
+    # should be fairly reliable. fix this by passing in an async func to read
+    # the file for each io backend.
+    with open("/var/lib/dbus/machine-id") as f:
+        machine_id = f.read().rstrip()
+
+    dbus_info_file_name = f"{home}/.dbus/session-bus/{machine_id}-{display}"
+    dbus_info = None
+    try:
+        with open(dbus_info_file_name) as f:
+            dbus_info = f.read().rstrip()
+    except Exception:
+        raise InvalidAddressError(f"could not open dbus info file: {dbus_info_file_name}")
+
+    for line in dbus_info.split("\n"):
+        if line.strip().startswith("DBUS_SESSION_BUS_ADDRESS="):
+            _, addr = line.split("=", 1)
+            if not addr:
+                raise InvalidAddressError(
+                    f"DBUS_SESSION_BUS_ADDRESS variable not set correctly in dbus info file: {dbus_info_file_name}"
+                )
+            addr = remove_quotes_re.search(addr).group(1)
+            return addr
+
+    raise InvalidAddressError("could not find dbus session bus address")
+
+
+def get_bus_address(bus_type):
+    if bus_type == BusType.SESSION:
+        return get_session_bus_address()
+    elif bus_type == BusType.SYSTEM:
+        return get_system_bus_address()
+    else:
+        raise Exception("got unknown bus type: {bus_type}")
diff --git a/analyzer/linux/dbus_next/_private/constants.py b/analyzer/linux/dbus_next/_private/constants.py
new file mode 100644
index 00000000000..605c3cf0d58
--- /dev/null
+++ b/analyzer/linux/dbus_next/_private/constants.py
@@ -0,0 +1,18 @@
+from enum import Enum
+
+PROTOCOL_VERSION = 1
+
+LITTLE_ENDIAN = ord("l")
+BIG_ENDIAN = ord("B")
+
+
+class HeaderField(Enum):
+    PATH = 1
+    INTERFACE = 2
+    MEMBER = 3
+    ERROR_NAME = 4
+    REPLY_SERIAL = 5
+    DESTINATION = 6
+    SENDER = 7
+    SIGNATURE = 8
+    UNIX_FDS = 9
diff --git a/analyzer/linux/dbus_next/_private/marshaller.py b/analyzer/linux/dbus_next/_private/marshaller.py
new file mode 100644
index 00000000000..7e3f1ecae6d
--- /dev/null
+++ b/analyzer/linux/dbus_next/_private/marshaller.py
@@ -0,0 +1,160 @@
+from struct import pack
+
+from ..signature import SignatureTree
+
+
+class Marshaller:
+    def __init__(self, signature, body):
+        self.signature_tree = SignatureTree._get(signature)
+        self.signature_tree.verify(body)
+        self.buffer = bytearray()
+        self.body = body
+
+        self.writers = {
+            "y": self.write_byte,
+            "b": self.write_boolean,
+            "n": self.write_int16,
+            "q": self.write_uint16,
+            "i": self.write_int32,
+            "u": self.write_uint32,
+            "x": self.write_int64,
+            "t": self.write_uint64,
+            "d": self.write_double,
+            "h": self.write_uint32,
+            "o": self.write_string,
+            "s": self.write_string,
+            "g": self.write_signature,
+            "a": self.write_array,
+            "(": self.write_struct,
+            "{": self.write_dict_entry,
+            "v": self.write_variant,
+        }
+
+    def align(self, n):
+        offset = n - len(self.buffer) % n
+        if offset in (0, n):
+            return 0
+        self.buffer.extend(bytes(offset))
+        return offset
+
+    def write_byte(self, byte, _=None):
+        self.buffer.append(byte)
+        return 1
+
+    def write_boolean(self, boolean, _=None):
+        if boolean:
+            return self.write_uint32(1)
+        return self.write_uint32(0)
+
+    def write_int16(self, int16, _=None):
+        written = self.align(2)
+        self.buffer.extend(pack("<h", int16))
+        return written + 2
+
+    def write_uint16(self, uint16, _=None):
+        written = self.align(2)
+        self.buffer.extend(pack("<H", uint16))
+        return written + 2
+
+    def write_int32(self, int32, _):
+        written = self.align(4)
+        self.buffer.extend(pack("<i", int32))
+        return written + 4
+
+    def write_uint32(self, uint32, _=None):
+        written = self.align(4)
+        self.buffer.extend(pack("<I", uint32))
+        return written + 4
+
+    def write_int64(self, int64, _=None):
+        written = self.align(8)
+        self.buffer.extend(pack("<q", int64))
+        return written + 8
+
+    def write_uint64(self, uint64, _=None):
+        written = self.align(8)
+        self.buffer.extend(pack("<Q", uint64))
+        return written + 8
+
+    def write_double(self, double, _=None):
+        written = self.align(8)
+        self.buffer.extend(pack("<d", double))
+        return written + 8
+
+    def write_signature(self, signature, _=None):
+        signature = signature.encode()
+        signature_len = len(signature)
+        self.buffer.append(signature_len)
+        self.buffer.extend(signature)
+        self.buffer.append(0)
+        return signature_len + 2
+
+    def write_string(self, value, _=None):
+        value = value.encode()
+        value_len = len(value)
+        written = self.write_uint32(value_len)
+        self.buffer.extend(value)
+        written += value_len
+        self.buffer.append(0)
+        written += 1
+        return written
+
+    def write_variant(self, variant, _=None):
+        written = self.write_signature(variant.signature)
+        written += self.write_single(variant.type, variant.value)
+        return written
+
+    def write_array(self, array, type_):
+        # TODO max array size is 64MiB (67108864 bytes)
+        written = self.align(4)
+        # length placeholder
+        offset = len(self.buffer)
+        written += self.write_uint32(0)
+        child_type = type_.children[0]
+
+        if child_type.token in "xtd{(":
+            # the first alignment is not included in array size
+            written += self.align(8)
+
+        array_len = 0
+        if child_type.token == "{":
+            for key, value in array.items():
+                array_len += self.write_dict_entry([key, value], child_type)
+        elif child_type.token == "y":
+            array_len = len(array)
+            self.buffer.extend(array)
+        else:
+            for value in array:
+                array_len += self.write_single(child_type, value)
+
+        array_len_packed = pack("<I", array_len)
+        for i in range(offset, offset + 4):
+            self.buffer[i] = array_len_packed[i - offset]
+
+        return written + array_len
+
+    def write_struct(self, array, type_):
+        written = self.align(8)
+        for i, value in enumerate(array):
+            written += self.write_single(type_.children[i], value)
+        return written
+
+    def write_dict_entry(self, dict_entry, type_):
+        written = self.align(8)
+        written += self.write_single(type_.children[0], dict_entry[0])
+        written += self.write_single(type_.children[1], dict_entry[1])
+        return written
+
+    def write_single(self, type_, body):
+        t = type_.token
+
+        if t not in self.writers:
+            raise NotImplementedError(f'type isnt implemented yet: "{t}"')
+
+        return self.writers[t](body, type_)
+
+    def marshall(self):
+        self.buffer.clear()
+        for i, type_ in enumerate(self.signature_tree.types):
+            self.write_single(type_, self.body[i])
+        return self.buffer
diff --git a/analyzer/linux/dbus_next/_private/unmarshaller.py b/analyzer/linux/dbus_next/_private/unmarshaller.py
new file mode 100644
index 00000000000..c27ea24e22e
--- /dev/null
+++ b/analyzer/linux/dbus_next/_private/unmarshaller.py
@@ -0,0 +1,302 @@
+import array
+import socket
+from codecs import decode
+from struct import unpack_from
+
+from ..constants import MessageFlag, MessageType
+from ..errors import InvalidMessageError
+from ..message import Message
+from ..signature import SignatureTree, Variant
+from .constants import BIG_ENDIAN, LITTLE_ENDIAN, PROTOCOL_VERSION, HeaderField
+
+MAX_UNIX_FDS = 16
+
+
+class MarshallerStreamEndError(Exception):
+    pass
+
+
+class Unmarshaller:
+    def __init__(self, stream, sock=None):
+        self.unix_fds = []
+        self.buf = bytearray()
+        self.offset = 0
+        self.stream = stream
+        self.sock = sock
+        self.endian = None
+        self.message = None
+
+        self.readers = {
+            "y": self.read_byte,
+            "b": self.read_boolean,
+            "n": self.read_int16,
+            "q": self.read_uint16,
+            "i": self.read_int32,
+            "u": self.read_uint32,
+            "x": self.read_int64,
+            "t": self.read_uint64,
+            "d": self.read_double,
+            "h": self.read_uint32,
+            "o": self.read_string,
+            "s": self.read_string,
+            "g": self.read_signature,
+            "a": self.read_array,
+            "(": self.read_struct,
+            "{": self.read_dict_entry,
+            "v": self.read_variant,
+        }
+
+    def read(self, n, prefetch=False):
+        """
+        Read from underlying socket into buffer and advance offset accordingly.
+
+        :arg n:
+            Number of bytes to read. If not enough bytes are available in the
+            buffer, read more from it.
+        :arg prefetch:
+            Do not update current offset after reading.
+
+        :returns:
+            Previous offset (before reading). To get the actual read bytes,
+            use the returned value and self.buf.
+        """
+
+        def read_sock(length):
+            """reads from the socket, storing any fds sent and handling errors
+            from the read itself"""
+            if self.sock is not None:
+                unix_fd_list = array.array("i")
+
+                try:
+                    msg, ancdata, *_ = self.sock.recvmsg(length, socket.CMSG_LEN(MAX_UNIX_FDS * unix_fd_list.itemsize))
+                except BlockingIOError:
+                    raise MarshallerStreamEndError()
+
+                for level, type_, data in ancdata:
+                    if not (level == socket.SOL_SOCKET and type_ == socket.SCM_RIGHTS):
+                        continue
+                    unix_fd_list.frombytes(data[: len(data) - (len(data) % unix_fd_list.itemsize)])
+                    self.unix_fds.extend(list(unix_fd_list))
+
+                return msg
+            return self.stream.read(length)
+
+        # store previously read data in a buffer so we can resume on socket
+        # interruptions
+        missing_bytes = n - (len(self.buf) - self.offset)
+        if missing_bytes > 0:
+            data = read_sock(missing_bytes)
+            if data == b"":
+                raise EOFError()
+            elif data is None:
+                raise MarshallerStreamEndError()
+            self.buf.extend(data)
+            if len(data) != missing_bytes:
+                raise MarshallerStreamEndError()
+        prev = self.offset
+        if not prefetch:
+            self.offset += n
+        return prev
+
+    @staticmethod
+    def _padding(offset, align):
+        """
+        Get padding bytes to get to the next align bytes mark.
+
+        For any align value, the correct padding formula is:
+
+            (align - (offset % align)) % align
+
+        However, if align is a power of 2 (always the case here), the slow MOD
+        operator can be replaced by a bitwise AND:
+
+            (align - (offset & (align - 1))) & (align - 1)
+
+        Which can be simplified to:
+
+            (-offset) & (align - 1)
+        """
+        return (-offset) & (align - 1)
+
+    def align(self, n):
+        padding = self._padding(self.offset, n)
+        if padding > 0:
+            self.read(padding)
+
+    def read_byte(self, _=None):
+        return self.buf[self.read(1)]
+
+    def read_boolean(self, _=None):
+        data = self.read_uint32()
+        if data:
+            return True
+        return False
+
+    def read_int16(self, _=None):
+        return self.read_ctype("h", 2)
+
+    def read_uint16(self, _=None):
+        return self.read_ctype("H", 2)
+
+    def read_int32(self, _=None):
+        return self.read_ctype("i", 4)
+
+    def read_uint32(self, _=None):
+        return self.read_ctype("I", 4)
+
+    def read_int64(self, _=None):
+        return self.read_ctype("q", 8)
+
+    def read_uint64(self, _=None):
+        return self.read_ctype("Q", 8)
+
+    def read_double(self, _=None):
+        return self.read_ctype("d", 8)
+
+    def read_ctype(self, fmt, size):
+        self.align(size)
+        if self.endian == LITTLE_ENDIAN:
+            fmt = "<" + fmt
+        else:
+            fmt = ">" + fmt
+        o = self.read(size)
+        return unpack_from(fmt, self.buf, o)[0]
+
+    def read_string(self, _=None):
+        str_length = self.read_uint32()
+        o = self.read(str_length + 1)  # read terminating '\0' byte as well
+        # avoid buffer copies when slicing
+        str_mem_slice = memoryview(self.buf)[o : o + str_length]
+        return decode(str_mem_slice)
+
+    def read_signature(self, _=None):
+        signature_len = self.read_byte()
+        o = self.read(signature_len + 1)  # read terminating '\0' byte as well
+        # avoid buffer copies when slicing
+        sig_mem_slice = memoryview(self.buf)[o : o + signature_len]
+        return decode(sig_mem_slice)
+
+    def read_variant(self, _=None):
+        signature = self.read_signature()
+        signature_tree = SignatureTree._get(signature)
+        value = self.read_argument(signature_tree.types[0])
+        return Variant(signature_tree, value)
+
+    def read_struct(self, type_):
+        self.align(8)
+        return [self.read_argument(child_type) for child_type in type_.children]
+
+    def read_dict_entry(self, type_):
+        self.align(8)
+
+        key = self.read_argument(type_.children[0])
+        value = self.read_argument(type_.children[1])
+
+        return key, value
+
+    def read_array(self, type_):
+        self.align(4)
+        array_length = self.read_uint32()
+
+        child_type = type_.children[0]
+        if child_type.token in "xtd{(":
+            # the first alignment is not included in the array size
+            self.align(8)
+
+        beginning_offset = self.offset
+
+        result = None
+        if child_type.token == "{":
+            result = {}
+            while self.offset - beginning_offset < array_length:
+                key, value = self.read_dict_entry(child_type)
+                result[key] = value
+        elif child_type.token == "y":
+            o = self.read(array_length)
+            # avoid buffer copies when slicing
+            array_mem_slice = memoryview(self.buf)[o : o + array_length]
+            result = array_mem_slice.tobytes()
+        else:
+            result = []
+            while self.offset - beginning_offset < array_length:
+                result.append(self.read_argument(child_type))
+
+        return result
+
+    def read_argument(self, type_):
+        t = type_.token
+
+        if t not in self.readers:
+            raise Exception(f'dont know how to read yet: "{t}"')
+
+        return self.readers[t](type_)
+
+    def _unmarshall(self):
+        self.offset = 0
+        self.read(16, prefetch=True)
+        self.endian = self.read_byte()
+        if self.endian != LITTLE_ENDIAN and self.endian != BIG_ENDIAN:
+            raise InvalidMessageError("Expecting endianness as the first byte")
+        message_type = MessageType(self.read_byte())
+        flags = MessageFlag(self.read_byte())
+
+        protocol_version = self.read_byte()
+
+        if protocol_version != PROTOCOL_VERSION:
+            raise InvalidMessageError(f"got unknown protocol version: {protocol_version}")
+
+        body_len = self.read_uint32()
+        serial = self.read_uint32()
+
+        header_len = self.read_uint32()
+        msg_len = header_len + self._padding(header_len, 8) + body_len
+        self.read(msg_len, prefetch=True)
+        # backtrack offset since header array length needs to be read again
+        self.offset -= 4
+
+        header_fields = {}
+        for field_struct in self.read_argument(SignatureTree._get("a(yv)").types[0]):
+            field = HeaderField(field_struct[0])
+            header_fields[field.name] = field_struct[1].value
+
+        self.align(8)
+
+        path = header_fields.get(HeaderField.PATH.name)
+        interface = header_fields.get(HeaderField.INTERFACE.name)
+        member = header_fields.get(HeaderField.MEMBER.name)
+        error_name = header_fields.get(HeaderField.ERROR_NAME.name)
+        reply_serial = header_fields.get(HeaderField.REPLY_SERIAL.name)
+        destination = header_fields.get(HeaderField.DESTINATION.name)
+        sender = header_fields.get(HeaderField.SENDER.name)
+        signature = header_fields.get(HeaderField.SIGNATURE.name, "")
+        signature_tree = SignatureTree._get(signature)
+        # unix_fds = header_fields.get(HeaderField.UNIX_FDS.name, 0)
+
+        body = []
+
+        if body_len:
+            for type_ in signature_tree.types:
+                body.append(self.read_argument(type_))
+
+        self.message = Message(
+            destination=destination,
+            path=path,
+            interface=interface,
+            member=member,
+            message_type=message_type,
+            flags=flags,
+            error_name=error_name,
+            reply_serial=reply_serial,
+            sender=sender,
+            unix_fds=self.unix_fds,
+            signature=signature_tree,
+            body=body,
+            serial=serial,
+        )
+
+    def unmarshall(self):
+        try:
+            self._unmarshall()
+            return self.message
+        except MarshallerStreamEndError:
+            return None
diff --git a/analyzer/linux/dbus_next/_private/util.py b/analyzer/linux/dbus_next/_private/util.py
new file mode 100644
index 00000000000..11fd840a56a
--- /dev/null
+++ b/analyzer/linux/dbus_next/_private/util.py
@@ -0,0 +1,159 @@
+import ast
+import inspect
+from contextlib import suppress
+from typing import Any, List, Union
+
+from ..signature import SignatureTree, Variant
+
+
+def signature_contains_type(signature: Union[str, SignatureTree], body: List[Any], token: str) -> bool:
+    """For a given signature and body, check to see if it contains any members
+    with the given token"""
+    if type(signature) is str:
+        signature = SignatureTree._get(signature)
+
+    queue = []
+    contains_variants = False
+    for st in signature.types:
+        queue.append(st)
+
+    while True:
+        if not queue:
+            break
+        st = queue.pop()
+        if st.token == token:
+            return True
+        elif st.token == "v":
+            contains_variants = True
+        queue.extend(st.children)
+
+    if not contains_variants:
+        return False
+
+    for member in body:
+        queue.append(member)
+
+    while True:
+        if not queue:
+            return False
+        member = queue.pop()
+        if type(member) is Variant and signature_contains_type(member.signature, [member.value], token):
+            return True
+        elif type(member) is list:
+            queue.extend(member)
+        elif type(member) is dict:
+            queue.extend(member.values())
+
+
+def replace_fds_with_idx(signature: Union[str, SignatureTree], body: List[Any]) -> (List[Any], List[int]):
+    """Take the high level body format and convert it into the low level body
+    format. Type 'h' refers directly to the fd in the body. Replace that with
+    an index and return the corresponding list of unix fds that can be set on
+    the Message"""
+    if type(signature) is str:
+        signature = SignatureTree._get(signature)
+
+    if not signature_contains_type(signature, body, "h"):
+        return body, []
+
+    unix_fds = []
+
+    def _replace(fd):
+        try:
+            return unix_fds.index(fd)
+        except ValueError:
+            unix_fds.append(fd)
+            return len(unix_fds) - 1
+
+    _replace_fds(body, signature.types, _replace)
+
+    return body, unix_fds
+
+
+def replace_idx_with_fds(signature: Union[str, SignatureTree], body: List[Any], unix_fds: List[int]) -> List[Any]:
+    """Take the low level body format and return the high level body format.
+    Type 'h' refers to an index in the unix_fds array. Replace those with the
+    actual file descriptor or `None` if one does not exist."""
+    if type(signature) is str:
+        signature = SignatureTree._get(signature)
+
+    if not signature_contains_type(signature, body, "h"):
+        return body
+
+    def _replace(idx):
+        try:
+            return unix_fds[idx]
+        except IndexError:
+            return None
+
+    _replace_fds(body, signature.types, _replace)
+
+    return body
+
+
+def parse_annotation(annotation: str) -> str:
+    """
+    Because of PEP 563, if `from __future__ import annotations` is used in code
+    or on Python version >=3.10 where this is the default, return annotations
+    from the `inspect` module will return annotations as "forward definitions".
+    In this case, we must eval the result which we do only when given a string
+    constant.
+    """
+
+    def raise_value_error():
+        raise ValueError(f"service annotations must be a string constant (got {annotation})")
+
+    if not annotation or annotation is inspect.Signature.empty:
+        return ""
+    if type(annotation) is not str:
+        raise_value_error()
+    with suppress(SyntaxError):
+        body = ast.parse(annotation).body
+        if len(body) == 1 and type(body[0].value) is ast.Constant:
+            if type(body[0].value.value) is not str:
+                raise_value_error()
+            return body[0].value.value
+
+    return annotation
+
+
+def _replace_fds(body_obj: List[Any], children, replace_fn):
+    """Replace any type 'h' with the value returned by replace_fn() given the
+    value of the fd field. This is used by the high level interfaces which
+    allow type 'h' to be the fd directly instead of an index in an external
+    array such as in the spec."""
+    for index, st in enumerate(children):
+        if not any(sig in st.signature for sig in "hv"):
+            continue
+        if st.signature == "h":
+            body_obj[index] = replace_fn(body_obj[index])
+        elif st.token == "a":
+            if st.children[0].token == "{":
+                _replace_fds(body_obj[index], st.children, replace_fn)
+            else:
+                for i, child in enumerate(body_obj[index]):
+                    if st.signature == "ah":
+                        body_obj[index][i] = replace_fn(child)
+                    else:
+                        _replace_fds([child], st.children, replace_fn)
+        elif st.token in "(":
+            _replace_fds(body_obj[index], st.children, replace_fn)
+        elif st.token in "{":
+            for key, value in list(body_obj.items()):
+                body_obj.pop(key)
+                if st.children[0].signature == "h":
+                    key = replace_fn(key)
+                if st.children[1].signature == "h":
+                    value = replace_fn(value)
+                else:
+                    _replace_fds([value], [st.children[1]], replace_fn)
+                body_obj[key] = value
+
+        elif st.signature == "v":
+            if body_obj[index].signature == "h":
+                body_obj[index].value = replace_fn(body_obj[index].value)
+            else:
+                _replace_fds([body_obj[index].value], [body_obj[index].type], replace_fn)
+
+        elif st.children:
+            _replace_fds(body_obj[index], st.children, replace_fn)
diff --git a/analyzer/linux/dbus_next/aio/__init__.py b/analyzer/linux/dbus_next/aio/__init__.py
new file mode 100644
index 00000000000..020dcc71143
--- /dev/null
+++ b/analyzer/linux/dbus_next/aio/__init__.py
@@ -0,0 +1,2 @@
+from .message_bus import MessageBus
+from .proxy_object import ProxyInterface, ProxyObject
diff --git a/analyzer/linux/dbus_next/aio/message_bus.py b/analyzer/linux/dbus_next/aio/message_bus.py
new file mode 100644
index 00000000000..70203385a18
--- /dev/null
+++ b/analyzer/linux/dbus_next/aio/message_bus.py
@@ -0,0 +1,419 @@
+import array
+import asyncio
+import logging
+import socket
+from asyncio import Queue
+from copy import copy
+from typing import Optional
+
+from .. import introspection as intr
+from .._private.unmarshaller import Unmarshaller
+from ..auth import Authenticator, AuthExternal
+from ..constants import BusType, MessageFlag, MessageType, NameFlag, ReleaseNameReply, RequestNameReply
+from ..errors import AuthError
+from ..message import Message
+from ..message_bus import BaseMessageBus
+from ..service import ServiceInterface
+from .proxy_object import ProxyObject
+
+
+def _future_set_exception(fut, exc):
+    if fut is not None and not fut.done():
+        fut.set_exception(exc)
+
+
+def _future_set_result(fut, result):
+    if fut is not None and not fut.done():
+        fut.set_result(result)
+
+
+class _MessageWriter:
+    def __init__(self, bus):
+        self.messages = Queue()
+        self.negotiate_unix_fd = bus._negotiate_unix_fd
+        self.bus = bus
+        self.sock = bus._sock
+        self.loop = bus._loop
+        self.buf = None
+        self.fd = bus._fd
+        self.offset = 0
+        self.unix_fds = None
+        self.fut = None
+
+    def write_callback(self):
+        try:
+            while True:
+                if self.buf is None:
+                    if self.messages.qsize() == 0:
+                        # nothing more to write
+                        self.loop.remove_writer(self.fd)
+                        return
+                    buf, unix_fds, fut = self.messages.get_nowait()
+                    self.unix_fds = unix_fds
+                    self.buf = memoryview(buf)
+                    self.offset = 0
+                    self.fut = fut
+
+                if self.unix_fds and self.negotiate_unix_fd:
+                    ancdata = [(socket.SOL_SOCKET, socket.SCM_RIGHTS, array.array("i", self.unix_fds))]
+                    self.offset += self.sock.sendmsg([self.buf[self.offset :]], ancdata)
+                    self.unix_fds = None
+                else:
+                    self.offset += self.sock.send(self.buf[self.offset :])
+
+                if self.offset >= len(self.buf):
+                    # finished writing
+                    self.buf = None
+                    _future_set_result(self.fut, None)
+                else:
+                    # wait for writable
+                    return
+        except Exception as e:
+            _future_set_exception(self.fut, e)
+            self.bus._finalize(e)
+
+    def buffer_message(self, msg: Message, future=None):
+        self.messages.put_nowait((msg._marshall(negotiate_unix_fd=self.negotiate_unix_fd), copy(msg.unix_fds), future))
+
+    def schedule_write(self, msg: Message = None, future=None):
+        if msg is not None:
+            self.buffer_message(msg, future)
+        if self.bus.unique_name:
+            # don't run the writer until the bus is ready to send messages
+            self.loop.add_writer(self.fd, self.write_callback)
+
+
+class MessageBus(BaseMessageBus):
+    """The message bus implementation for use with asyncio.
+
+    The message bus class is the entry point into all the features of the
+    library. It sets up a connection to the DBus daemon and exposes an
+    interface to send and receive messages and expose services.
+
+    You must call :func:`connect() <dbus_next.aio.MessageBus.connect>` before
+    using this message bus.
+
+    :param bus_type: The type of bus to connect to. Affects the search path for
+        the bus address.
+    :type bus_type: :class:`BusType <dbus_next.BusType>`
+    :param bus_address: A specific bus address to connect to. Should not be
+        used under normal circumstances.
+    :param auth: The authenticator to use, defaults to an instance of
+        :class:`AuthExternal <dbus_next.auth.AuthExternal>`.
+    :type auth: :class:`Authenticator <dbus_next.auth.Authenticator>`
+    :param negotiate_unix_fd: Allow the bus to send and receive Unix file
+        descriptors (DBus type 'h'). This must be supported by the transport.
+    :type negotiate_unix_fd: bool
+
+    :ivar unique_name: The unique name of the message bus connection. It will
+        be :class:`None` until the message bus connects.
+    :vartype unique_name: str
+    :ivar connected: True if this message bus is expected to be able to send
+        and receive messages.
+    :vartype connected: bool
+    """
+
+    def __init__(
+        self, bus_address: str = None, bus_type: BusType = BusType.SESSION, auth: Authenticator = None, negotiate_unix_fd=False
+    ):
+        super().__init__(bus_address, bus_type, ProxyObject)
+        self._negotiate_unix_fd = negotiate_unix_fd
+        self._loop = asyncio.get_event_loop()
+        self._unmarshaller = self._create_unmarshaller()
+
+        self._writer = _MessageWriter(self)
+
+        if auth is None:
+            self._auth = AuthExternal()
+        else:
+            self._auth = auth
+
+        self._disconnect_future = self._loop.create_future()
+
+    async def connect(self) -> "MessageBus":
+        """Connect this message bus to the DBus daemon.
+
+        This method must be called before the message bus can be used.
+
+        :returns: This message bus for convenience.
+        :rtype: :class:`MessageBus <dbus_next.aio.MessageBus>`
+
+        :raises:
+            - :class:`AuthError <dbus_next.AuthError>` - If authorization to \
+              the DBus daemon failed.
+            - :class:`Exception` - If there was a connection error.
+        """
+        await self._authenticate()
+
+        future = self._loop.create_future()
+
+        self._loop.add_reader(self._fd, self._message_reader)
+
+        def on_hello(reply, err):
+            try:
+                if err:
+                    raise err
+                self.unique_name = reply.body[0]
+                self._writer.schedule_write()
+                _future_set_result(future, self)
+            except Exception as e:
+                _future_set_exception(future, e)
+                self.disconnect()
+                self._finalize(err)
+
+        hello_msg = Message(
+            destination="org.freedesktop.DBus",
+            path="/org/freedesktop/DBus",
+            interface="org.freedesktop.DBus",
+            member="Hello",
+            serial=self.next_serial(),
+        )
+
+        self._method_return_handlers[hello_msg.serial] = on_hello
+        self._stream.write(hello_msg._marshall())
+        self._stream.flush()
+
+        return await future
+
+    async def introspect(self, bus_name: str, path: str, timeout: float = 30.0) -> intr.Node:
+        """Get introspection data for the node at the given path from the given
+        bus name.
+
+        Calls the standard ``org.freedesktop.DBus.Introspectable.Introspect``
+        on the bus for the path.
+
+        :param bus_name: The name to introspect.
+        :type bus_name: str
+        :param path: The path to introspect.
+        :type path: str
+        :param timeout: The timeout to introspect.
+        :type timeout: float
+
+        :returns: The introspection data for the name at the path.
+        :rtype: :class:`Node <dbus_next.introspection.Node>`
+
+        :raises:
+            - :class:`InvalidObjectPathError <dbus_next.InvalidObjectPathError>` \
+                    - If the given object path is not valid.
+            - :class:`InvalidBusNameError <dbus_next.InvalidBusNameError>` - If \
+                  the given bus name is not valid.
+            - :class:`DBusError <dbus_next.DBusError>` - If the service threw \
+                  an error for the method call or returned an invalid result.
+            - :class:`Exception` - If a connection error occurred.
+            - :class:`asyncio.TimeoutError` - Waited for future but time run out.
+        """
+        future = self._loop.create_future()
+
+        def reply_handler(reply, err):
+            if err:
+                _future_set_exception(future, err)
+            else:
+                _future_set_result(future, reply)
+
+        super().introspect(bus_name, path, reply_handler)
+
+        return await asyncio.wait_for(future, timeout=timeout)
+
+    async def request_name(self, name: str, flags: NameFlag = NameFlag.NONE) -> RequestNameReply:
+        """Request that this message bus owns the given name.
+
+        :param name: The name to request.
+        :type name: str
+        :param flags: Name flags that affect the behavior of the name request.
+        :type flags: :class:`NameFlag <dbus_next.NameFlag>`
+
+        :returns: The reply to the name request.
+        :rtype: :class:`RequestNameReply <dbus_next.RequestNameReply>`
+
+        :raises:
+            - :class:`InvalidBusNameError <dbus_next.InvalidBusNameError>` - If \
+                  the given bus name is not valid.
+            - :class:`DBusError <dbus_next.DBusError>` - If the service threw \
+                  an error for the method call or returned an invalid result.
+            - :class:`Exception` - If a connection error occurred.
+        """
+        future = self._loop.create_future()
+
+        def reply_handler(reply, err):
+            if err:
+                _future_set_exception(future, err)
+            else:
+                _future_set_result(future, reply)
+
+        super().request_name(name, flags, reply_handler)
+
+        return await future
+
+    async def release_name(self, name: str) -> ReleaseNameReply:
+        """Request that this message bus release the given name.
+
+        :param name: The name to release.
+        :type name: str
+
+        :returns: The reply to the release request.
+        :rtype: :class:`ReleaseNameReply <dbus_next.ReleaseNameReply>`
+
+        :raises:
+            - :class:`InvalidBusNameError <dbus_next.InvalidBusNameError>` - If \
+                  the given bus name is not valid.
+            - :class:`DBusError <dbus_next.DBusError>` - If the service threw \
+                  an error for the method call or returned an invalid result.
+            - :class:`Exception` - If a connection error occurred.
+        """
+        future = self._loop.create_future()
+
+        def reply_handler(reply, err):
+            if err:
+                _future_set_exception(future, err)
+            else:
+                _future_set_result(future, reply)
+
+        super().release_name(name, reply_handler)
+
+        return await future
+
+    async def call(self, msg: Message) -> Optional[Message]:
+        """Send a method call and wait for a reply from the DBus daemon.
+
+        :param msg: The method call message to send.
+        :type msg: :class:`Message <dbus_next.Message>`
+
+        :returns: A message in reply to the message sent. If the message does
+            not expect a reply based on the message flags or type, returns
+            ``None`` after the message is sent.
+        :rtype: :class:`Message <dbus_next.Message>` or :class:`None` if no reply is expected.
+
+        :raises:
+            - :class:`Exception` - If a connection error occurred.
+        """
+        if msg.flags & MessageFlag.NO_REPLY_EXPECTED or msg.message_type is not MessageType.METHOD_CALL:
+            await self.send(msg)
+            return None
+
+        future = self._loop.create_future()
+
+        def reply_handler(reply, err):
+            if not future.done():
+                if err:
+                    _future_set_exception(future, err)
+                else:
+                    _future_set_result(future, reply)
+
+        self._call(msg, reply_handler)
+
+        await future
+
+        return future.result()
+
+    def send(self, msg: Message):
+        """Asynchronously send a message on the message bus.
+
+        .. note:: This method may change to a couroutine function in the 1.0
+            release of the library.
+
+        :param msg: The message to send.
+        :type msg: :class:`Message <dbus_next.Message>`
+
+        :returns: A future that resolves when the message is sent or a
+            connection error occurs.
+        :rtype: :class:`Future <asyncio.Future>`
+        """
+        if not msg.serial:
+            msg.serial = self.next_serial()
+
+        future = self._loop.create_future()
+        self._writer.schedule_write(msg, future)
+        return future
+
+    def get_proxy_object(self, bus_name: str, path: str, introspection: intr.Node) -> ProxyObject:
+        return super().get_proxy_object(bus_name, path, introspection)
+
+    async def wait_for_disconnect(self):
+        """Wait for the message bus to disconnect.
+
+        :returns: :class:`None` when the message bus has disconnected.
+        :rtype: :class:`None`
+
+        :raises:
+            - :class:`Exception` - If connection was terminated unexpectedly or \
+              an internal error occurred in the library.
+        """
+        return await self._disconnect_future
+
+    def _make_method_handler(self, interface, method):
+        if not asyncio.iscoroutinefunction(method.fn):
+            return super()._make_method_handler(interface, method)
+
+        def handler(msg, send_reply):
+            def done(fut):
+                with send_reply:
+                    result = fut.result()
+                    body, unix_fds = ServiceInterface._fn_result_to_body(result, method.out_signature_tree)
+                    send_reply(Message.new_method_return(msg, method.out_signature, body, unix_fds))
+
+            args = ServiceInterface._msg_body_to_args(msg)
+            fut = asyncio.ensure_future(method.fn(interface, *args))
+            fut.add_done_callback(done)
+
+        return handler
+
+    def _message_reader(self):
+        try:
+            while True:
+                if self._unmarshaller.unmarshall():
+                    self._on_message(self._unmarshaller.message)
+                    self._unmarshaller = self._create_unmarshaller()
+                else:
+                    break
+        except Exception as e:
+            self._finalize(e)
+
+    async def _auth_readline(self):
+        buf = b""
+        while buf[-2:] != b"\r\n":
+            buf += await self._loop.sock_recv(self._sock, 2)
+        return buf[:-2].decode()
+
+    async def _authenticate(self):
+        await self._loop.sock_sendall(self._sock, b"\0")
+
+        first_line = self._auth._authentication_start(negotiate_unix_fd=self._negotiate_unix_fd)
+
+        if first_line is not None:
+            if type(first_line) is not str:
+                raise AuthError("authenticator gave response not type str")
+            await self._loop.sock_sendall(self._sock, Authenticator._format_line(first_line))
+
+        while True:
+            response = self._auth._receive_line(await self._auth_readline())
+            if response is not None:
+                await self._loop.sock_sendall(self._sock, Authenticator._format_line(response))
+                self._stream.flush()
+            if response == "BEGIN":
+                break
+
+    def _create_unmarshaller(self):
+        sock = None
+        if self._negotiate_unix_fd:
+            sock = self._sock
+        return Unmarshaller(self._stream, sock)
+
+    def _finalize(self, err=None):
+        try:
+            self._loop.remove_reader(self._fd)
+        except Exception:
+            logging.warning("could not remove message reader", exc_info=True)
+        try:
+            self._loop.remove_writer(self._fd)
+        except Exception:
+            logging.warning("could not remove message writer", exc_info=True)
+
+        super()._finalize(err)
+
+        if self._disconnect_future.done():
+            return
+
+        if err and not self._user_disconnect:
+            _future_set_exception(self._disconnect_future, err)
+        else:
+            _future_set_result(self._disconnect_future, None)
diff --git a/analyzer/linux/dbus_next/aio/proxy_object.py b/analyzer/linux/dbus_next/aio/proxy_object.py
new file mode 100644
index 00000000000..7d3c65dd261
--- /dev/null
+++ b/analyzer/linux/dbus_next/aio/proxy_object.py
@@ -0,0 +1,168 @@
+import xml.etree.ElementTree as ET
+from typing import List, Union
+
+from .. import introspection as intr
+from .._private.util import replace_fds_with_idx, replace_idx_with_fds
+from ..constants import ErrorType
+from ..errors import DBusError
+from ..message import Message, MessageFlag
+from ..message_bus import BaseMessageBus
+from ..proxy_object import BaseProxyInterface, BaseProxyObject
+from ..signature import Variant
+
+
+class ProxyInterface(BaseProxyInterface):
+    """A class representing a proxy to an interface exported on the bus by
+    another client for the asyncio :class:`MessageBus
+    <dbus_next.aio.MessageBus>` implementation.
+
+    This class is not meant to be constructed directly by the user. Use
+    :func:`ProxyObject.get_interface()
+    <dbus_next.aio.ProxyObject.get_interface>` on a asyncio proxy object to get
+    a proxy interface.
+
+    This class exposes methods to call DBus methods, listen to signals, and get
+    and set properties on the interface that are created dynamically based on
+    the introspection data passed to the proxy object that made this proxy
+    interface.
+
+    A *method call* takes this form:
+
+    .. code-block:: python3
+
+        result = await interface.call_[METHOD](*args)
+
+    Where ``METHOD`` is the name of the method converted to snake case.
+
+    DBus methods are exposed as coroutines that take arguments that correpond
+    to the *in args* of the interface method definition and return a ``result``
+    that corresponds to the *out arg*. If the method has more than one out arg,
+    they are returned within a :class:`list`.
+
+    To *listen to a signal* use this form:
+
+    .. code-block:: python3
+
+        interface.on_[SIGNAL](callback)
+
+    To *stop listening to a signal* use this form:
+
+    .. code-block:: python3
+
+        interface.off_[SIGNAL](callback)
+
+    Where ``SIGNAL`` is the name of the signal converted to snake case.
+
+    DBus signals are exposed with an event-callback interface. The provided
+    ``callback`` will be called when the signal is emitted with arguments that
+    correspond to the *out args* of the interface signal definition.
+
+    To *get or set a property* use this form:
+
+    .. code-block:: python3
+
+        value = await interface.get_[PROPERTY]()
+        await interface.set_[PROPERTY](value)
+
+    Where ``PROPERTY`` is the name of the property converted to snake case.
+
+    DBus property getters and setters are exposed as coroutines. The ``value``
+    must correspond to the type of the property in the interface definition.
+
+    If the service returns an error for a DBus call, a :class:`DBusError
+    <dbus_next.DBusError>` will be raised with information about the error.
+    """
+
+    def _add_method(self, intr_method):
+        async def method_fn(*args, flags=MessageFlag.NONE):
+            input_body, unix_fds = replace_fds_with_idx(intr_method.in_signature, list(args))
+
+            msg = await self.bus.call(
+                Message(
+                    destination=self.bus_name,
+                    path=self.path,
+                    interface=self.introspection.name,
+                    member=intr_method.name,
+                    signature=intr_method.in_signature,
+                    body=input_body,
+                    flags=flags,
+                    unix_fds=unix_fds,
+                )
+            )
+
+            if flags & MessageFlag.NO_REPLY_EXPECTED:
+                return None
+
+            BaseProxyInterface._check_method_return(msg, intr_method.out_signature)
+
+            out_len = len(intr_method.out_args)
+
+            body = replace_idx_with_fds(msg.signature_tree, msg.body, msg.unix_fds)
+
+            if not out_len:
+                return None
+            elif out_len == 1:
+                return body[0]
+            return body
+
+        method_name = f"call_{BaseProxyInterface._to_snake_case(intr_method.name)}"
+        setattr(self, method_name, method_fn)
+
+    def _add_property(self, intr_property):
+        async def property_getter():
+            msg = await self.bus.call(
+                Message(
+                    destination=self.bus_name,
+                    path=self.path,
+                    interface="org.freedesktop.DBus.Properties",
+                    member="Get",
+                    signature="ss",
+                    body=[self.introspection.name, intr_property.name],
+                )
+            )
+
+            BaseProxyInterface._check_method_return(msg, "v")
+            variant = msg.body[0]
+            if variant.signature != intr_property.signature:
+                raise DBusError(ErrorType.CLIENT_ERROR, f'property returned unexpected signature "{variant.signature}"', msg)
+
+            return replace_idx_with_fds("v", msg.body, msg.unix_fds)[0].value
+
+        async def property_setter(val):
+            variant = Variant(intr_property.signature, val)
+
+            body, unix_fds = replace_fds_with_idx("ssv", [self.introspection.name, intr_property.name, variant])
+
+            msg = await self.bus.call(
+                Message(
+                    destination=self.bus_name,
+                    path=self.path,
+                    interface="org.freedesktop.DBus.Properties",
+                    member="Set",
+                    signature="ssv",
+                    body=body,
+                    unix_fds=unix_fds,
+                )
+            )
+
+            BaseProxyInterface._check_method_return(msg)
+
+        snake_case = BaseProxyInterface._to_snake_case(intr_property.name)
+        setattr(self, f"get_{snake_case}", property_getter)
+        setattr(self, f"set_{snake_case}", property_setter)
+
+
+class ProxyObject(BaseProxyObject):
+    """The proxy object implementation for the GLib :class:`MessageBus <dbus_next.glib.MessageBus>`.
+
+    For more information, see the :class:`BaseProxyObject <dbus_next.proxy_object.BaseProxyObject>`.
+    """
+
+    def __init__(self, bus_name: str, path: str, introspection: Union[intr.Node, str, ET.Element], bus: BaseMessageBus):
+        super().__init__(bus_name, path, introspection, bus, ProxyInterface)
+
+    def get_interface(self, name: str) -> ProxyInterface:
+        return super().get_interface(name)
+
+    def get_children(self) -> List["ProxyObject"]:
+        return super().get_children()
diff --git a/analyzer/linux/dbus_next/auth.py b/analyzer/linux/dbus_next/auth.py
new file mode 100644
index 00000000000..3a539223257
--- /dev/null
+++ b/analyzer/linux/dbus_next/auth.py
@@ -0,0 +1,102 @@
+import enum
+import os
+
+from .errors import AuthError
+
+# The auth interface here is unstable. I would like to eventually open this up
+# for people to define their own custom authentication protocols, but I'm not
+# familiar with what's needed for that exactly. To work with any message bus
+# implementation would require abstracting out all the IO. Async operations
+# might be challenging because different IO backends have different ways of
+# doing that. I might just end up giving the raw socket and leaving it all up
+# to the user, but it would be nice to have a little guidance in the interface
+# since a lot of it is strongly specified. If you have a need for this, contact
+# the project maintainer to help stabalize this interface.
+
+
+class _AuthResponse(enum.Enum):
+    OK = "OK"
+    REJECTED = "REJECTED"
+    DATA = "DATA"
+    ERROR = "ERROR"
+    AGREE_UNIX_FD = "AGREE_UNIX_FD"
+
+    @classmethod
+    def parse(klass, line):
+        args = line.split(" ")
+        response = klass(args[0])
+        return response, args[1:]
+
+
+# UNSTABLE
+class Authenticator:
+    """The base class for authenticators for :class:`MessageBus <dbus_next.message_bus.BaseMessageBus>` authentication.
+
+    In the future, the library may allow extending this class for custom authentication protocols.
+
+    :seealso: https://dbus.freedesktop.org/doc/dbus-specification.html#auth-protocol
+    """
+
+    def _authentication_start(self, negotiate_unix_fd=False):
+        raise NotImplementedError("authentication_start() must be implemented in the inheriting class")
+
+    def _receive_line(self, line):
+        raise NotImplementedError("receive_line() must be implemented in the inheriting class")
+
+    @staticmethod
+    def _format_line(line):
+        return f"{line}\r\n".encode()
+
+
+class AuthExternal(Authenticator):
+    """An authenticator class for the external auth protocol for use with the
+    :class:`MessageBus <dbus_next.message_bus.BaseMessageBus>`.
+
+    :sealso: https://dbus.freedesktop.org/doc/dbus-specification.html#auth-protocol
+    """
+
+    def __init__(self):
+        self.negotiate_unix_fd = False
+        self.negotiating_fds = False
+
+    def _authentication_start(self, negotiate_unix_fd=False) -> str:
+        self.negotiate_unix_fd = negotiate_unix_fd
+        hex_uid = str(os.getuid()).encode().hex()
+        return f"AUTH EXTERNAL {hex_uid}"
+
+    def _receive_line(self, line: str):
+        response, args = _AuthResponse.parse(line)
+
+        if response is _AuthResponse.OK:
+            if self.negotiate_unix_fd:
+                self.negotiating_fds = True
+                return "NEGOTIATE_UNIX_FD"
+            else:
+                return "BEGIN"
+
+        if response is _AuthResponse.AGREE_UNIX_FD:
+            return "BEGIN"
+
+        raise AuthError(f"authentication failed: {response.value}: {args}")
+
+
+class AuthAnnonymous(Authenticator):
+    """An authenticator class for the annonymous auth protocol for use with the
+    :class:`MessageBus <dbus_next.message_bus.BaseMessageBus>`.
+
+    :sealso: https://dbus.freedesktop.org/doc/dbus-specification.html#auth-protocol
+    """
+
+    def _authentication_start(self, negotiate_unix_fd=False) -> str:
+        if negotiate_unix_fd:
+            raise AuthError("annonymous authentication does not support negotiating unix fds right now")
+
+        return "AUTH ANONYMOUS"
+
+    def _receive_line(self, line: str) -> str:
+        response, args = _AuthResponse.parse(line)
+
+        if response != _AuthResponse.OK:
+            raise AuthError(f"authentication failed: {response.value}: {args}")
+
+        return "BEGIN"
diff --git a/analyzer/linux/dbus_next/constants.py b/analyzer/linux/dbus_next/constants.py
new file mode 100644
index 00000000000..1e2cd2e3d2b
--- /dev/null
+++ b/analyzer/linux/dbus_next/constants.py
@@ -0,0 +1,121 @@
+from enum import Enum, IntFlag
+
+
+class BusType(Enum):
+    """An enum that indicates a type of bus. On most systems, there are
+    normally two different kinds of buses running.
+    """
+
+    SESSION = 1  #: A bus for the current graphical user session.
+    SYSTEM = 2  #: A persistent bus for the whole machine.
+
+
+class MessageType(Enum):
+    """An enum that indicates a type of message."""
+
+    METHOD_CALL = 1  #: An outgoing method call.
+    METHOD_RETURN = 2  #: A return to a previously sent method call
+    ERROR = 3  #: A return to a method call that has failed
+    SIGNAL = 4  #: A broadcast signal to subscribed connections
+
+
+class MessageFlag(IntFlag):
+    """Flags that affect the behavior of sent and received messages"""
+
+    NONE = 0
+    NO_REPLY_EXPECTED = 1  #: The method call does not expect a method return.
+    NO_AUTOSTART = 2
+    ALLOW_INTERACTIVE_AUTHORIZATION = 4
+
+
+class NameFlag(IntFlag):
+    """A flag that affects the behavior of a name request."""
+
+    NONE = 0
+    ALLOW_REPLACEMENT = 1  #: If another client requests this name, let them have it.
+    REPLACE_EXISTING = 2  #: If another client owns this name, try to take it.
+    DO_NOT_QUEUE = 4  #: Name requests normally queue and wait for the owner to release the name. Do not enter this queue.
+
+
+class RequestNameReply(Enum):
+    """An enum that describes the result of a name request."""
+
+    PRIMARY_OWNER = 1  #: The bus owns the name.
+    IN_QUEUE = 2  #: The bus is in a queue and may receive the name after it is relased by the primary owner.
+    EXISTS = 3  #: The name has an owner and NameFlag.DO_NOT_QUEUE was given.
+    ALREADY_OWNER = 4  #: The bus already owns the name.
+
+
+class ReleaseNameReply(Enum):
+    """An enum that describes the result of a name release request"""
+
+    RELEASED = 1
+    NON_EXISTENT = 2
+    NOT_OWNER = 3
+
+
+class PropertyAccess(Enum):
+    """An enum that describes whether a DBus property can be gotten or set with
+    the ``org.freedesktop.DBus.Properties`` interface.
+    """
+
+    READ = "read"  #: The property is readonly.
+    WRITE = "write"  #: The property is writeonly.
+    READWRITE = "readwrite"  #: The property can be read or written to.
+
+    def readable(self):
+        """Get whether the property can be read."""
+        return self in (PropertyAccess.READ, PropertyAccess.READWRITE)
+
+    def writable(self):
+        """Get whether the property can be written to."""
+        return self in (PropertyAccess.WRITE, PropertyAccess.READWRITE)
+
+
+class ArgDirection(Enum):
+    """For an introspected argument, indicates whether it is an input parameter or a return value."""
+
+    IN = "in"
+    OUT = "out"
+
+
+class ErrorType(Enum):
+    """An enum for the type of an error for a message reply.
+
+    :seealso: http://man7.org/linux/man-pages/man3/sd-bus-errors.3.html
+    """
+
+    SERVICE_ERROR = "com.dubstepdish.dbus.next.ServiceError"  #: A custom error to indicate an exported service threw an exception.
+    INTERNAL_ERROR = "com.dubstepdish.dbus.next.InternalError"  #: A custom error to indicate something went wrong with the library.
+    CLIENT_ERROR = "com.dubstepdish.dbus.next.ClientError"  #: A custom error to indicate something went wrong with the client.
+
+    FAILED = "org.freedesktop.DBus.Error.Failed"
+    NO_MEMORY = "org.freedesktop.DBus.Error.NoMemory"
+    SERVICE_UNKNOWN = "org.freedesktop.DBus.Error.ServiceUnknown"
+    NAME_HAS_NO_OWNER = "org.freedesktop.DBus.Error.NameHasNoOwner"
+    NO_REPLY = "org.freedesktop.DBus.Error.NoReply"
+    IO_ERROR = "org.freedesktop.DBus.Error.IOError"
+    BAD_ADDRESS = "org.freedesktop.DBus.Error.BadAddress"
+    NOT_SUPPORTED = "org.freedesktop.DBus.Error.NotSupported"
+    LIMITS_EXCEEDED = "org.freedesktop.DBus.Error.LimitsExceeded"
+    ACCESS_DENIED = "org.freedesktop.DBus.Error.AccessDenied"
+    AUTH_FAILED = "org.freedesktop.DBus.Error.AuthFailed"
+    NO_SERVER = "org.freedesktop.DBus.Error.NoServer"
+    TIMEOUT = "org.freedesktop.DBus.Error.Timeout"
+    NO_NETWORK = "org.freedesktop.DBus.Error.NoNetwork"
+    ADDRESS_IN_USE = "org.freedesktop.DBus.Error.AddressInUse"
+    DISCONNECTED = "org.freedesktop.DBus.Error.Disconnected"
+    INVALID_ARGS = "org.freedesktop.DBus.Error.InvalidArgs"
+    FILE_NOT_FOUND = "org.freedesktop.DBus.Error.FileNotFound"
+    FILE_EXISTS = "org.freedesktop.DBus.Error.FileExists"
+    UNKNOWN_METHOD = "org.freedesktop.DBus.Error.UnknownMethod"
+    UNKNOWN_OBJECT = "org.freedesktop.DBus.Error.UnknownObject"
+    UNKNOWN_INTERFACE = "org.freedesktop.DBus.Error.UnknownInterface"
+    UNKNOWN_PROPERTY = "org.freedesktop.DBus.Error.UnknownProperty"
+    PROPERTY_READ_ONLY = "org.freedesktop.DBus.Error.PropertyReadOnly"
+    UNIX_PROCESS_ID_UNKNOWN = "org.freedesktop.DBus.Error.UnixProcessIdUnknown"
+    INVALID_SIGNATURE = "org.freedesktop.DBus.Error.InvalidSignature"
+    INCONSISTENT_MESSAGE = "org.freedesktop.DBus.Error.InconsistentMessage"
+    MATCH_RULE_NOT_FOUND = "org.freedesktop.DBus.Error.MatchRuleNotFound"
+    MATCH_RULE_INVALID = "org.freedesktop.DBus.Error.MatchRuleInvalid"
+    INTERACTIVE_AUTHORIZATION_REQUIRED = "org.freedesktop.DBus.Error.InteractiveAuthorizationRequired"
diff --git a/analyzer/linux/dbus_next/errors.py b/analyzer/linux/dbus_next/errors.py
new file mode 100644
index 00000000000..a439ecc0cba
--- /dev/null
+++ b/analyzer/linux/dbus_next/errors.py
@@ -0,0 +1,79 @@
+class SignatureBodyMismatchError(ValueError):
+    pass
+
+
+class InvalidSignatureError(ValueError):
+    pass
+
+
+class InvalidAddressError(ValueError):
+    pass
+
+
+class AuthError(Exception):
+    pass
+
+
+class InvalidMessageError(ValueError):
+    pass
+
+
+class InvalidIntrospectionError(ValueError):
+    pass
+
+
+class InterfaceNotFoundError(Exception):
+    pass
+
+
+class SignalDisabledError(Exception):
+    pass
+
+
+class InvalidBusNameError(TypeError):
+    def __init__(self, name):
+        super().__init__(f"invalid bus name: {name}")
+
+
+class InvalidObjectPathError(TypeError):
+    def __init__(self, path):
+        super().__init__(f"invalid object path: {path}")
+
+
+class InvalidInterfaceNameError(TypeError):
+    def __init__(self, name):
+        super().__init__(f"invalid interface name: {name}")
+
+
+class InvalidMemberNameError(TypeError):
+    def __init__(self, member):
+        super().__init__(f"invalid member name: {member}")
+
+
+from .constants import ErrorType, MessageType
+from .message import Message
+from .validators import assert_interface_name_valid
+
+
+class DBusError(Exception):
+    def __init__(self, type_, text, reply=None):
+        super().__init__(text)
+
+        if type(type_) is ErrorType:
+            type_ = type_.value
+
+        assert_interface_name_valid(type_)
+        if reply is not None and type(reply) is not Message:
+            raise TypeError("reply must be of type Message")
+
+        self.type = type_
+        self.text = text
+        self.reply = reply
+
+    @staticmethod
+    def _from_message(msg):
+        assert msg.message_type == MessageType.ERROR
+        return DBusError(msg.error_name, msg.body[0], reply=msg)
+
+    def _as_message(self, msg):
+        return Message.new_error(msg, self.type, self.text)
diff --git a/analyzer/linux/dbus_next/introspection.py b/analyzer/linux/dbus_next/introspection.py
new file mode 100644
index 00000000000..993536b6cc9
--- /dev/null
+++ b/analyzer/linux/dbus_next/introspection.py
@@ -0,0 +1,541 @@
+import xml.etree.ElementTree as ET
+from typing import List, Union
+
+from .constants import ArgDirection, PropertyAccess
+from .errors import InvalidIntrospectionError
+from .signature import SignatureTree, SignatureType
+from .validators import assert_interface_name_valid, assert_member_name_valid
+
+# https://dbus.freedesktop.org/doc/dbus-specification.html#introspection-format
+# TODO annotations
+
+
+class Arg:
+    """A class that represents an input or output argument to a signal or a method.
+
+    :ivar name: The name of this arg.
+    :vartype name: str
+    :ivar direction: Whether this is an input or an output argument.
+    :vartype direction: :class:`ArgDirection <dbus_next.ArgDirection>`
+    :ivar type: The parsed signature type of this argument.
+    :vartype type: :class:`SignatureType <dbus_next.SignatureType>`
+    :ivar signature: The signature string of this argument.
+    :vartype signature: str
+
+    :raises:
+        - :class:`InvalidMemberNameError <dbus_next.InvalidMemberNameError>` - If the name of the arg is not valid.
+        - :class:`InvalidSignatureError <dbus_next.InvalidSignatureError>` - If the signature is not valid.
+        - :class:`InvalidIntrospectionError <dbus_next.InvalidIntrospectionError>` - If the signature is not a single complete type.
+    """
+
+    def __init__(self, signature: Union[SignatureType, str], direction: List[ArgDirection] = None, name: str = None):
+        if name is not None:
+            assert_member_name_valid(name)
+
+        type_ = None
+        if type(signature) is SignatureType:
+            type_ = signature
+            signature = signature.signature
+        else:
+            tree = SignatureTree._get(signature)
+            if len(tree.types) != 1:
+                raise InvalidIntrospectionError(f"an argument must have a single complete type. (has {len(tree.types)} types)")
+            type_ = tree.types[0]
+
+        self.type = type_
+        self.signature = signature
+        self.name = name
+        self.direction = direction
+
+    def from_xml(element: ET.Element, direction: ArgDirection) -> "Arg":
+        """Convert a :class:`xml.etree.ElementTree.Element` into a
+        :class:`Arg`.
+
+        The element must be valid DBus introspection XML for an ``arg``.
+
+        :param element: The parsed XML element.
+        :type element: :class:`xml.etree.ElementTree.Element`
+        :param direction: The direction of this arg. Must be specified because it can default to different values depending on if it's in a method or signal.
+        :type direction: :class:`ArgDirection <dbus_next.ArgDirection>`
+
+        :raises:
+            - :class:`InvalidIntrospectionError <dbus_next.InvalidIntrospectionError>` - If the XML tree is not valid introspection data.
+        """
+        name = element.attrib.get("name")
+        signature = element.attrib.get("type")
+
+        if not signature:
+            raise InvalidIntrospectionError('a method argument must have a "type" attribute')
+
+        return Arg(signature, direction, name)
+
+    def to_xml(self) -> ET.Element:
+        """Convert this :class:`Arg` into an :class:`xml.etree.ElementTree.Element`."""
+        element = ET.Element("arg")
+        if self.name:
+            element.set("name", self.name)
+
+        if self.direction:
+            element.set("direction", self.direction.value)
+        element.set("type", self.signature)
+
+        return element
+
+
+class Signal:
+    """A class that represents a signal exposed on an interface.
+
+    :ivar name: The name of this signal
+    :vartype name: str
+    :ivar args: A list of output arguments for this signal.
+    :vartype args: list(Arg)
+    :ivar signature: The collected signature of the output arguments.
+    :vartype signature: str
+
+    :raises:
+        - :class:`InvalidMemberNameError <dbus_next.InvalidMemberNameError>` - If the name of the signal is not a valid member name.
+    """
+
+    def __init__(self, name: str, args: List[Arg] = None):
+        if name is not None:
+            assert_member_name_valid(name)
+
+        self.name = name
+        self.args = args or []
+        self.signature = "".join(arg.signature for arg in self.args)
+
+    def from_xml(element):
+        """Convert an :class:`xml.etree.ElementTree.Element` to a :class:`Signal`.
+
+        The element must be valid DBus introspection XML for a ``signal``.
+
+        :param element: The parsed XML element.
+        :type element: :class:`xml.etree.ElementTree.Element`
+        :param is_root: Whether this is the root node
+        :type is_root: bool
+
+        :raises:
+            - :class:`InvalidIntrospectionError <dbus_next.InvalidIntrospectionError>` - If the XML tree is not valid introspection data.
+        """
+        name = element.attrib.get("name")
+        if not name:
+            raise InvalidIntrospectionError('signals must have a "name" attribute')
+
+        args = [Arg.from_xml(child, ArgDirection.OUT) for child in element if child.tag == "arg"]
+        signal = Signal(name, args)
+
+        return signal
+
+    def to_xml(self) -> ET.Element:
+        """Convert this :class:`Signal` into an :class:`xml.etree.ElementTree.Element`."""
+        element = ET.Element("signal")
+        element.set("name", self.name)
+
+        for arg in self.args:
+            element.append(arg.to_xml())
+
+        return element
+
+
+class Method:
+    """A class that represents a method exposed on an :class:`Interface`.
+
+    :ivar name: The name of this method.
+    :vartype name: str
+    :ivar in_args: A list of input arguments to this method.
+    :vartype in_args: list(Arg)
+    :ivar out_args: A list of output arguments to this method.
+    :vartype out_args: list(Arg)
+    :ivar in_signature: The collected signature string of the input arguments.
+    :vartype in_signature: str
+    :ivar out_signature: The collected signature string of the output arguments.
+    :vartype out_signature: str
+
+    :raises:
+        - :class:`InvalidMemberNameError <dbus_next.InvalidMemberNameError>` - If the name of this method is not valid.
+    """
+
+    def __init__(self, name: str, in_args: List[Arg] = [], out_args: List[Arg] = []):
+        assert_member_name_valid(name)
+
+        self.name = name
+        self.in_args = in_args
+        self.out_args = out_args
+        self.in_signature = "".join(arg.signature for arg in in_args)
+        self.out_signature = "".join(arg.signature for arg in out_args)
+
+    def from_xml(element: ET.Element) -> "Method":
+        """Convert an :class:`xml.etree.ElementTree.Element` to a :class:`Method`.
+
+        The element must be valid DBus introspection XML for a ``method``.
+
+        :param element: The parsed XML element.
+        :type element: :class:`xml.etree.ElementTree.Element`
+        :param is_root: Whether this is the root node
+        :type is_root: bool
+
+        :raises:
+            - :class:`InvalidIntrospectionError <dbus_next.InvalidIntrospectionError>` - If the XML tree is not valid introspection data.
+        """
+        name = element.attrib.get("name")
+        if not name:
+            raise InvalidIntrospectionError('interfaces must have a "name" attribute')
+
+        in_args = []
+        out_args = []
+
+        for child in element:
+            if child.tag == "arg":
+                direction = ArgDirection(child.attrib.get("direction", "in"))
+                arg = Arg.from_xml(child, direction)
+                if direction == ArgDirection.IN:
+                    in_args.append(arg)
+                elif direction == ArgDirection.OUT:
+                    out_args.append(arg)
+
+        return Method(name, in_args, out_args)
+
+    def to_xml(self) -> ET.Element:
+        """Convert this :class:`Method` into an :class:`xml.etree.ElementTree.Element`."""
+        element = ET.Element("method")
+        element.set("name", self.name)
+
+        for arg in self.in_args:
+            element.append(arg.to_xml())
+        for arg in self.out_args:
+            element.append(arg.to_xml())
+
+        return element
+
+
+class Property:
+    """A class that represents a DBus property exposed on an
+    :class:`Interface`.
+
+    :ivar name: The name of this property.
+    :vartype name: str
+    :ivar signature: The signature string for this property. Must be a single complete type.
+    :vartype signature: str
+    :ivar access: Whether this property is readable and writable.
+    :vartype access: :class:`PropertyAccess <dbus_next.PropertyAccess>`
+    :ivar type: The parsed type of this property.
+    :vartype type: :class:`SignatureType <dbus_next.SignatureType>`
+
+    :raises:
+        - :class:`InvalidIntrospectionError <dbus_next.InvalidIntrospectionError>` - If the property is not a single complete type.
+        - :class `InvalidSignatureError <dbus_next.InvalidSignatureError>` - If the given signature is not valid.
+        - :class: `InvalidMemberNameError <dbus_next.InvalidMemberNameError>` - If the member name is not valid.
+    """
+
+    def __init__(self, name: str, signature: str, access: PropertyAccess = PropertyAccess.READWRITE):
+        assert_member_name_valid(name)
+
+        tree = SignatureTree._get(signature)
+        if len(tree.types) != 1:
+            raise InvalidIntrospectionError(f"properties must have a single complete type. (has {len(tree.types)} types)")
+
+        self.name = name
+        self.signature = signature
+        self.access = access
+        self.type = tree.types[0]
+
+    def from_xml(element):
+        """Convert an :class:`xml.etree.ElementTree.Element` to a :class:`Property`.
+
+        The element must be valid DBus introspection XML for a ``property``.
+
+        :param element: The parsed XML element.
+        :type element: :class:`xml.etree.ElementTree.Element`
+
+        :raises:
+            - :class:`InvalidIntrospectionError <dbus_next.InvalidIntrospectionError>` - If the XML tree is not valid introspection data.
+        """
+        name = element.attrib.get("name")
+        signature = element.attrib.get("type")
+        access = PropertyAccess(element.attrib.get("access", "readwrite"))
+
+        if not name:
+            raise InvalidIntrospectionError('properties must have a "name" attribute')
+        if not signature:
+            raise InvalidIntrospectionError('properties must have a "type" attribute')
+
+        return Property(name, signature, access)
+
+    def to_xml(self) -> ET.Element:
+        """Convert this :class:`Property` into an :class:`xml.etree.ElementTree.Element`."""
+        element = ET.Element("property")
+        element.set("name", self.name)
+        element.set("type", self.signature)
+        element.set("access", self.access.value)
+        return element
+
+
+class Interface:
+    """A class that represents a DBus interface exported on on object path.
+
+    Contains information about the methods, signals, and properties exposed on
+    this interface.
+
+    :ivar name: The name of this interface.
+    :vartype name: str
+    :ivar methods: A list of methods exposed on this interface.
+    :vartype methods: list(:class:`Method`)
+    :ivar signals: A list of signals exposed on this interface.
+    :vartype signals: list(:class:`Signal`)
+    :ivar properties: A list of properties exposed on this interface.
+    :vartype properties: list(:class:`Property`)
+
+    :raises:
+        - :class:`InvalidInterfaceNameError <dbus_next.InvalidInterfaceNameError>` - If the name is not a valid interface name.
+    """
+
+    def __init__(self, name: str, methods: List[Method] = None, signals: List[Signal] = None, properties: List[Property] = None):
+        assert_interface_name_valid(name)
+
+        self.name = name
+        self.methods = methods if methods is not None else []
+        self.signals = signals if signals is not None else []
+        self.properties = properties if properties is not None else []
+
+    @staticmethod
+    def from_xml(element: ET.Element) -> "Interface":
+        """Convert a :class:`xml.etree.ElementTree.Element` into a
+        :class:`Interface`.
+
+        The element must be valid DBus introspection XML for an ``interface``.
+
+        :param element: The parsed XML element.
+        :type element: :class:`xml.etree.ElementTree.Element`
+
+        :raises:
+            - :class:`InvalidIntrospectionError <dbus_next.InvalidIntrospectionError>` - If the XML tree is not valid introspection data.
+        """
+        name = element.attrib.get("name")
+        if not name:
+            raise InvalidIntrospectionError('interfaces must have a "name" attribute')
+
+        interface = Interface(name)
+
+        for child in element:
+            if child.tag == "method":
+                interface.methods.append(Method.from_xml(child))
+            elif child.tag == "signal":
+                interface.signals.append(Signal.from_xml(child))
+            elif child.tag == "property":
+                interface.properties.append(Property.from_xml(child))
+
+        return interface
+
+    def to_xml(self) -> ET.Element:
+        """Convert this :class:`Interface` into an :class:`xml.etree.ElementTree.Element`."""
+        element = ET.Element("interface")
+        element.set("name", self.name)
+
+        for method in self.methods:
+            element.append(method.to_xml())
+        for signal in self.signals:
+            element.append(signal.to_xml())
+        for prop in self.properties:
+            element.append(prop.to_xml())
+
+        return element
+
+
+class Node:
+    """A class that represents a node in an object path in introspection data.
+
+    A node contains information about interfaces exported on this path and
+    child nodes. A node can be converted to and from introspection XML exposed
+    through the ``org.freedesktop.DBus.Introspectable`` standard DBus
+    interface.
+
+    This class is an essential building block for a high-level DBus interface.
+    This is the underlying data structure for the :class:`ProxyObject
+    <dbus_next.proxy_object.BaseProxyInterface>`.  A :class:`ServiceInterface
+    <dbus_next.service.ServiceInterface>` definition is converted to this class
+    to expose XML on the introspectable interface.
+
+    :ivar interfaces: A list of interfaces exposed on this node.
+    :vartype interfaces: list(:class:`Interface <dbus_next.introspection.Interface>`)
+    :ivar nodes: A list of child nodes.
+    :vartype nodes: list(:class:`Node`)
+    :ivar name: The object path of this node.
+    :vartype name: str
+    :ivar is_root: Whether this is the root node. False if it is a child node.
+    :vartype is_root: bool
+
+    :raises:
+        - :class:`InvalidIntrospectionError <dbus_next.InvalidIntrospectionError>` - If the name is not a valid node name.
+    """
+
+    def __init__(self, name: str = None, interfaces: List[Interface] = None, is_root: bool = True):
+        if not is_root and not name:
+            raise InvalidIntrospectionError('child nodes must have a "name" attribute')
+
+        self.interfaces = interfaces if interfaces is not None else []
+        self.nodes = []
+        self.name = name
+        self.is_root = is_root
+
+    @staticmethod
+    def from_xml(element: ET.Element, is_root: bool = False):
+        """Convert an :class:`xml.etree.ElementTree.Element` to a :class:`Node`.
+
+        The element must be valid DBus introspection XML for a ``node``.
+
+        :param element: The parsed XML element.
+        :type element: :class:`xml.etree.ElementTree.Element`
+        :param is_root: Whether this is the root node
+        :type is_root: bool
+
+        :raises:
+            - :class:`InvalidIntrospectionError <dbus_next.InvalidIntrospectionError>` - If the XML tree is not valid introspection data.
+        """
+        node = Node(element.attrib.get("name"), is_root=is_root)
+
+        for child in element:
+            if child.tag == "interface":
+                node.interfaces.append(Interface.from_xml(child))
+            elif child.tag == "node":
+                node.nodes.append(Node.from_xml(child))
+
+        return node
+
+    @staticmethod
+    def parse(data: str) -> "Node":
+        """Parse XML data as a string into a :class:`Node`.
+
+        The string must be valid DBus introspection XML.
+
+        :param data: The XMl string.
+        :type data: str
+
+        :raises:
+            - :class:`InvalidIntrospectionError <dbus_next.InvalidIntrospectionError>` - If the string is not valid introspection data.
+        """
+        element = ET.fromstring(data)
+        if element.tag != "node":
+            raise InvalidIntrospectionError('introspection data must have a "node" for the root element')
+
+        return Node.from_xml(element, is_root=True)
+
+    def to_xml(self) -> ET.Element:
+        """Convert this :class:`Node` into an :class:`xml.etree.ElementTree.Element`."""
+        element = ET.Element("node")
+
+        if self.name:
+            element.set("name", self.name)
+
+        for interface in self.interfaces:
+            element.append(interface.to_xml())
+        for node in self.nodes:
+            element.append(node.to_xml())
+
+        return element
+
+    def tostring(self) -> str:
+        """Convert this :class:`Node` into a DBus introspection XML string."""
+        header = '<!DOCTYPE node PUBLIC "-//freedesktop//DTD D-BUS Object Introspection 1.0//EN"\n"http://www.freedesktop.org/standards/dbus/1.0/introspect.dtd">\n'
+
+        def indent(elem, level=0):
+            i = "\n" + level * "    "
+            if len(elem):
+                if not elem.text or not elem.text.strip():
+                    elem.text = i + "  "
+                if not elem.tail or not elem.tail.strip():
+                    elem.tail = i
+                for elem in elem:
+                    indent(elem, level + 1)
+                if not elem.tail or not elem.tail.strip():
+                    elem.tail = i
+            else:
+                if level and (not elem.tail or not elem.tail.strip()):
+                    elem.tail = i
+
+        xml = self.to_xml()
+        indent(xml)
+        return header + ET.tostring(xml, encoding="unicode").rstrip()
+
+    @staticmethod
+    def default(name: str = None) -> "Node":
+        """Create a :class:`Node` with the default interfaces supported by this library.
+
+        The default interfaces include:
+
+        * ``org.freedesktop.DBus.Introspectable``
+        * ``org.freedesktop.DBus.Peer``
+        * ``org.freedesktop.DBus.Properties``
+        * ``org.freedesktop.DBus.ObjectManager``
+        """
+        return Node(
+            name,
+            is_root=True,
+            interfaces=[
+                Interface(
+                    "org.freedesktop.DBus.Introspectable",
+                    methods=[Method("Introspect", out_args=[Arg("s", ArgDirection.OUT, "data")])],
+                ),
+                Interface(
+                    "org.freedesktop.DBus.Peer",
+                    methods=[Method("GetMachineId", out_args=[Arg("s", ArgDirection.OUT, "machine_uuid")]), Method("Ping")],
+                ),
+                Interface(
+                    "org.freedesktop.DBus.Properties",
+                    methods=[
+                        Method(
+                            "Get",
+                            in_args=[Arg("s", ArgDirection.IN, "interface_name"), Arg("s", ArgDirection.IN, "property_name")],
+                            out_args=[Arg("v", ArgDirection.OUT, "value")],
+                        ),
+                        Method(
+                            "Set",
+                            in_args=[
+                                Arg("s", ArgDirection.IN, "interface_name"),
+                                Arg("s", ArgDirection.IN, "property_name"),
+                                Arg("v", ArgDirection.IN, "value"),
+                            ],
+                        ),
+                        Method(
+                            "GetAll",
+                            in_args=[Arg("s", ArgDirection.IN, "interface_name")],
+                            out_args=[Arg("a{sv}", ArgDirection.OUT, "props")],
+                        ),
+                    ],
+                    signals=[
+                        Signal(
+                            "PropertiesChanged",
+                            args=[
+                                Arg("s", ArgDirection.OUT, "interface_name"),
+                                Arg("a{sv}", ArgDirection.OUT, "changed_properties"),
+                                Arg("as", ArgDirection.OUT, "invalidated_properties"),
+                            ],
+                        )
+                    ],
+                ),
+                Interface(
+                    "org.freedesktop.DBus.ObjectManager",
+                    methods=[
+                        Method(
+                            "GetManagedObjects",
+                            out_args=[Arg("a{oa{sa{sv}}}", ArgDirection.OUT, "objpath_interfaces_and_properties")],
+                        ),
+                    ],
+                    signals=[
+                        Signal(
+                            "InterfacesAdded",
+                            args=[
+                                Arg("o", ArgDirection.OUT, "object_path"),
+                                Arg("a{sa{sv}}", ArgDirection.OUT, "interfaces_and_properties"),
+                            ],
+                        ),
+                        Signal(
+                            "InterfacesRemoved",
+                            args=[
+                                Arg("o", ArgDirection.OUT, "object_path"),
+                                Arg("as", ArgDirection.OUT, "interfaces"),
+                            ],
+                        ),
+                    ],
+                ),
+            ],
+        )
diff --git a/analyzer/linux/dbus_next/message.py b/analyzer/linux/dbus_next/message.py
new file mode 100644
index 00000000000..bd4ae0be8df
--- /dev/null
+++ b/analyzer/linux/dbus_next/message.py
@@ -0,0 +1,251 @@
+from typing import Any, List
+
+from ._private.constants import LITTLE_ENDIAN, PROTOCOL_VERSION, HeaderField
+from ._private.marshaller import Marshaller
+from .constants import ErrorType, MessageFlag, MessageType
+from .errors import InvalidMessageError
+from .signature import SignatureTree, Variant
+from .validators import assert_bus_name_valid, assert_interface_name_valid, assert_member_name_valid, assert_object_path_valid
+
+
+class Message:
+    """A class for sending and receiving messages through the
+    :class:`MessageBus <dbus_next.message_bus.BaseMessageBus>` with the
+    low-level api.
+
+    A ``Message`` can be constructed by the user to send over the message bus.
+    When messages are received, such as from method calls or signal emissions,
+    they will use this class as well.
+
+    :ivar destination: The address of the client for which this message is intended.
+    :vartype destination: str
+    :ivar path: The intended object path exported on the destination bus.
+    :vartype path: str
+    :ivar interface: The intended interface on the object path.
+    :vartype interface: str
+    :ivar member: The intended member on the interface.
+    :vartype member: str
+    :ivar message_type: The type of this message. A method call, signal, method return, or error.
+    :vartype message_type: :class:`MessageType`
+    :ivar flags: Flags that affect the behavior of this message.
+    :vartype flags: :class:`MessageFlag`
+    :ivar error_name: If this message is an error, the name of this error. Must be a valid interface name.
+    :vartype error_name: str
+    :ivar reply_serial: If this is a return type, the serial this message is in reply to.
+    :vartype reply_serial: int
+    :ivar sender: The address of the sender of this message. Will be a unique name.
+    :vartype sender: str
+    :ivar unix_fds: A list of unix fds that were sent in the header of this message.
+    :vartype unix_fds: list(int)
+    :ivar signature: The signature of the body of this message.
+    :vartype signature: str
+    :ivar signature_tree: The signature parsed as a signature tree.
+    :vartype signature_tree: :class:`SignatureTree`
+    :ivar body: The body of this message. Must match the signature.
+    :vartype body: list(Any)
+    :ivar serial: The serial of the message. Will be automatically set during message sending if not present. Use the ``new_serial()`` method of the bus to generate a serial.
+    :vartype serial: int
+
+    :raises:
+        - :class:`InvalidMessageError` - If the message is malformed or missing fields for the message type.
+        - :class:`InvalidSignatureError` - If the given signature is not valid.
+        - :class:`InvalidObjectPathError` - If ``path`` is not a valid object path.
+        - :class:`InvalidBusNameError` - If ``destination`` is not a valid bus name.
+        - :class:`InvalidMemberNameError` - If ``member`` is not a valid member name.
+        - :class:`InvalidInterfaceNameError` - If ``error_name`` or ``interface`` is not a valid interface name.
+    """
+
+    def __init__(
+        self,
+        destination: str = None,
+        path: str = None,
+        interface: str = None,
+        member: str = None,
+        message_type: MessageType = MessageType.METHOD_CALL,
+        flags: MessageFlag = MessageFlag.NONE,
+        error_name: str = None,
+        reply_serial: int = None,
+        sender: str = None,
+        unix_fds: List[int] = [],
+        signature: str = "",
+        body: List[Any] = [],
+        serial: int = 0,
+    ):
+        self.destination = destination
+        self.path = path
+        self.interface = interface
+        self.member = member
+        self.message_type = message_type
+        self.flags = flags if type(flags) is MessageFlag else MessageFlag(bytes([flags]))
+        self.error_name = error_name if type(error_name) is not ErrorType else error_name.value
+        self.reply_serial = reply_serial
+        self.sender = sender
+        self.unix_fds = unix_fds
+        self.signature = signature.signature if type(signature) is SignatureTree else signature
+        self.signature_tree = signature if type(signature) is SignatureTree else SignatureTree._get(signature)
+        self.body = body
+        self.serial = serial
+
+        if self.destination is not None:
+            assert_bus_name_valid(self.destination)
+        if self.interface is not None:
+            assert_interface_name_valid(self.interface)
+        if self.path is not None:
+            assert_object_path_valid(self.path)
+        if self.member is not None:
+            assert_member_name_valid(self.member)
+        if self.error_name is not None:
+            assert_interface_name_valid(self.error_name)
+
+        def require_fields(*fields):
+            for field in fields:
+                if not getattr(self, field):
+                    raise InvalidMessageError(f"missing required field: {field}")
+
+        if self.message_type == MessageType.METHOD_CALL:
+            require_fields("path", "member")
+        elif self.message_type == MessageType.SIGNAL:
+            require_fields("path", "member", "interface")
+        elif self.message_type == MessageType.ERROR:
+            require_fields("error_name", "reply_serial")
+        elif self.message_type == MessageType.METHOD_RETURN:
+            require_fields("reply_serial")
+        else:
+            raise InvalidMessageError(f"got unknown message type: {self.message_type}")
+
+    @staticmethod
+    def new_error(msg: "Message", error_name: str, error_text: str) -> "Message":
+        """A convenience constructor to create an error message in reply to the given message.
+
+        :param msg: The message this error is in reply to.
+        :type msg: :class:`Message`
+        :param error_name: The name of this error. Must be a valid interface name.
+        :type error_name: str
+        :param error_text: Human-readable text for the error.
+
+        :returns: The error message.
+        :rtype: :class:`Message`
+
+        :raises:
+            - :class:`InvalidInterfaceNameError` - If the error_name is not a valid interface name.
+        """
+        return Message(
+            message_type=MessageType.ERROR,
+            reply_serial=msg.serial,
+            destination=msg.sender,
+            error_name=error_name,
+            signature="s",
+            body=[error_text],
+        )
+
+    @staticmethod
+    def new_method_return(msg: "Message", signature: str = "", body: List[Any] = [], unix_fds: List[int] = []) -> "Message":
+        """A convenience constructor to create a method return to the given method call message.
+
+        :param msg: The method call message this is a reply to.
+        :type msg: :class:`Message`
+        :param signature: The signature for the message body.
+        :type signature: str
+        :param body: The body of this message. Must match the signature.
+        :type body: list(Any)
+        :param unix_fds: List integer file descriptors to send with this message.
+        :type body: list(int)
+
+        :returns: The method return message
+        :rtype: :class:`Message`
+
+        :raises:
+            - :class:`InvalidSignatureError` - If the signature is not a valid signature.
+        """
+        return Message(
+            message_type=MessageType.METHOD_RETURN,
+            reply_serial=msg.serial,
+            destination=msg.sender,
+            signature=signature,
+            body=body,
+            unix_fds=unix_fds,
+        )
+
+    @staticmethod
+    def new_signal(
+        path: str, interface: str, member: str, signature: str = "", body: List[Any] = None, unix_fds: List[int] = None
+    ) -> "Message":
+        """A convenience constructor to create a new signal message.
+
+        :param path: The path of this signal.
+        :type path: str
+        :param interface: The interface of this signal.
+        :type interface: str
+        :param member: The member name of this signal.
+        :type member: str
+        :param signature: The signature of the signal body.
+        :type signature: str
+        :param body: The body of this signal message.
+        :type body: list(Any)
+        :param unix_fds: List integer file descriptors to send with this message.
+        :type body: list(int)
+
+        :returns: The signal message.
+        :rtype: :class:`Message`
+
+        :raises:
+            - :class:`InvalidSignatureError` - If the signature is not a valid signature.
+            - :class:`InvalidObjectPathError` - If ``path`` is not a valid object path.
+            - :class:`InvalidInterfaceNameError` - If ``interface`` is not a valid interface name.
+            - :class:`InvalidMemberNameError` - If ``member`` is not a valid member name.
+        """
+        body = body or []
+        return Message(
+            message_type=MessageType.SIGNAL,
+            interface=interface,
+            path=path,
+            member=member,
+            signature=signature,
+            body=body,
+            unix_fds=unix_fds,
+        )
+
+    def _matches(self, **kwargs):
+        for attr, val in kwargs.items():
+            if getattr(self, attr) != val:
+                return False
+
+        return True
+
+    def _marshall(self, negotiate_unix_fd=False):
+        # TODO maximum message size is 134217728 (128 MiB)
+        body_block = Marshaller(self.signature, self.body)
+        body_block.marshall()
+
+        fields = []
+
+        if self.path:
+            fields.append([HeaderField.PATH.value, Variant("o", self.path)])
+        if self.interface:
+            fields.append([HeaderField.INTERFACE.value, Variant("s", self.interface)])
+        if self.member:
+            fields.append([HeaderField.MEMBER.value, Variant("s", self.member)])
+        if self.error_name:
+            fields.append([HeaderField.ERROR_NAME.value, Variant("s", self.error_name)])
+        if self.reply_serial:
+            fields.append([HeaderField.REPLY_SERIAL.value, Variant("u", self.reply_serial)])
+        if self.destination:
+            fields.append([HeaderField.DESTINATION.value, Variant("s", self.destination)])
+        if self.signature:
+            fields.append([HeaderField.SIGNATURE.value, Variant("g", self.signature)])
+        if self.unix_fds and negotiate_unix_fd:
+            fields.append([HeaderField.UNIX_FDS.value, Variant("u", len(self.unix_fds))])
+
+        header_body = [
+            LITTLE_ENDIAN,
+            self.message_type.value,
+            self.flags.value,
+            PROTOCOL_VERSION,
+            len(body_block.buffer),
+            self.serial,
+            fields,
+        ]
+        header_block = Marshaller("yyyyuua(yv)", header_body)
+        header_block.marshall()
+        header_block.align(8)
+        return header_block.buffer + body_block.buffer
diff --git a/analyzer/linux/dbus_next/message_bus.py b/analyzer/linux/dbus_next/message_bus.py
new file mode 100644
index 00000000000..37bba3dfc15
--- /dev/null
+++ b/analyzer/linux/dbus_next/message_bus.py
@@ -0,0 +1,1041 @@
+import inspect
+import logging
+import socket
+import traceback
+import xml.etree.ElementTree as ET
+from typing import Callable, Optional, Type, Union
+
+from . import introspection as intr
+from ._private.address import get_bus_address, parse_address
+from ._private.util import replace_fds_with_idx, replace_idx_with_fds
+from .constants import BusType, ErrorType, MessageFlag, MessageType, NameFlag, ReleaseNameReply, RequestNameReply
+from .errors import DBusError, InvalidAddressError
+from .message import Message
+from .proxy_object import BaseProxyObject
+from .service import ServiceInterface
+from .signature import Variant
+from .validators import assert_bus_name_valid, assert_object_path_valid
+
+
+class BaseMessageBus:
+    """An abstract class to manage a connection to a DBus message bus.
+
+    The message bus class is the entry point into all the features of the
+    library. It sets up a connection to the DBus daemon and exposes an
+    interface to send and receive messages and expose services.
+
+    This class is not meant to be used directly by users. For more information,
+    see the documentation for the implementation of the message bus you plan to
+    use.
+
+    :param bus_type: The type of bus to connect to. Affects the search path for
+        the bus address.
+    :type bus_type: :class:`BusType <dbus_next.BusType>`
+    :param bus_address: A specific bus address to connect to. Should not be
+        used under normal circumstances.
+    :type bus_address: str
+    :param ProxyObject: The proxy object implementation for this message bus.
+        Must be passed in by an implementation that supports the high-level client.
+    :type ProxyObject: Type[:class:`BaseProxyObject
+        <dbus_next.proxy_object.BaseProxyObject>`]
+
+    :ivar unique_name: The unique name of the message bus connection. It will
+        be :class:`None` until the message bus connects.
+    :vartype unique_name: str
+    :ivar connected: True if this message bus is expected to be able to send
+        and receive messages.
+    :vartype connected: bool
+    """
+
+    def __init__(
+        self,
+        bus_address: Optional[str] = None,
+        bus_type: BusType = BusType.SESSION,
+        ProxyObject: Optional[Type[BaseProxyObject]] = None,
+    ):
+        self.unique_name = None
+        self._disconnected = False
+
+        # True if the user disconnected himself, so don't throw errors out of
+        # the main loop.
+        self._user_disconnect = False
+
+        self._method_return_handlers = {}
+        self._serial = 0
+        self._user_message_handlers = []
+        # the key is the name and the value is the unique name of the owner.
+        # This cache is kept up to date by the NameOwnerChanged signal and is
+        # used to route messages to the correct proxy object. (used for the
+        # high level client only)
+        self._name_owners = {}
+        # used for the high level service
+        self._path_exports = {}
+        self._bus_address = parse_address(bus_address) if bus_address else parse_address(get_bus_address(bus_type))
+        # the bus implementations need this rule for the high level client to
+        # work correctly.
+        self._name_owner_match_rule = (
+            "sender='org.freedesktop.DBus',interface='org.freedesktop.DBus',path='/org/freedesktop/DBus',member='NameOwnerChanged'"
+        )
+        # _match_rules: the keys are match rules and the values are ref counts
+        # (used for the high level client only)
+        self._match_rules = {}
+        self._high_level_client_initialized = False
+        self._ProxyObject = ProxyObject
+
+        # machine id is lazy loaded
+        self._machine_id = None
+
+        self._setup_socket()
+
+    @property
+    def connected(self):
+        if self.unique_name is None or self._disconnected or self._user_disconnect:
+            return False
+        return True
+
+    def export(self, path: str, interface: ServiceInterface):
+        """Export the service interface on this message bus to make it available
+        to other clients.
+
+        :param path: The object path to export this interface on.
+        :type path: str
+        :param interface: The service interface to export.
+        :type interface: :class:`ServiceInterface
+            <dbus_next.service.ServiceInterface>`
+
+        :raises:
+            - :class:`InvalidObjectPathError <dbus_next.InvalidObjectPathError>` - If the given object path is not valid.
+            - :class:`ValueError` - If an interface with this name is already exported on the message bus at this path
+        """
+        assert_object_path_valid(path)
+        if not isinstance(interface, ServiceInterface):
+            raise TypeError("interface must be a ServiceInterface")
+
+        if path not in self._path_exports:
+            self._path_exports[path] = []
+
+        for f in self._path_exports[path]:
+            if f.name == interface.name:
+                raise ValueError(
+                    f'An interface with this name is already exported on this bus at path "{path}": "{interface.name}"'
+                )
+
+        self._path_exports[path].append(interface)
+        ServiceInterface._add_bus(interface, self)
+        self._emit_interface_added(path, interface)
+
+    def unexport(self, path: str, interface: Optional[Union[ServiceInterface, str]] = None):
+        """Unexport the path or service interface to make it no longer
+        available to clients.
+
+        :param path: The object path to unexport.
+        :type path: str
+        :param interface: The interface instance or the name of the interface
+            to unexport. If ``None``, unexport every interface on the path.
+        :type interface: :class:`ServiceInterface
+            <dbus_next.service.ServiceInterface>` or str or None
+
+        :raises:
+            - :class:`InvalidObjectPathError <dbus_next.InvalidObjectPathError>` - If the given object path is not valid.
+        """
+        assert_object_path_valid(path)
+        if type(interface) not in (str, type(None)) and not isinstance(interface, ServiceInterface):
+            raise TypeError("interface must be a ServiceInterface or interface name")
+
+        if path not in self._path_exports:
+            return
+
+        exports = self._path_exports[path]
+
+        if type(interface) is str:
+            try:
+                interface = next(iface for iface in exports if iface.name == interface)
+            except StopIteration:
+                return
+
+        removed_interfaces = []
+        if interface is None:
+            del self._path_exports[path]
+            for iface in filter(lambda e: not self._has_interface(e), exports):
+                removed_interfaces.append(iface.name)
+                ServiceInterface._remove_bus(iface, self)
+        else:
+            for i, iface in enumerate(exports):
+                if iface is interface:
+                    removed_interfaces.append(iface.name)
+                    del self._path_exports[path][i]
+                    if not self._path_exports[path]:
+                        del self._path_exports[path]
+                    if not self._has_interface(iface):
+                        ServiceInterface._remove_bus(iface, self)
+                    break
+        self._emit_interface_removed(path, removed_interfaces)
+
+    def introspect(self, bus_name: str, path: str, callback: Callable[[Optional[intr.Node], Optional[Exception]], None]):
+        """Get introspection data for the node at the given path from the given
+        bus name.
+
+        Calls the standard ``org.freedesktop.DBus.Introspectable.Introspect``
+        on the bus for the path.
+
+        :param bus_name: The name to introspect.
+        :type bus_name: str
+        :param path: The path to introspect.
+        :type path: str
+        :param callback: A callback that will be called with the introspection
+            data as a :class:`Node <dbus_next.introspection.Node>`.
+        :type callback: :class:`Callable`
+
+        :raises:
+            - :class:`InvalidObjectPathError <dbus_next.InvalidObjectPathError>` - If the given object path is not valid.
+            - :class:`InvalidBusNameError <dbus_next.InvalidBusNameError>` - If the given bus name is not valid.
+        """
+        BaseMessageBus._check_callback_type(callback)
+
+        def reply_notify(reply, err):
+            try:
+                BaseMessageBus._check_method_return(reply, err, "s")
+                result = intr.Node.parse(reply.body[0])
+            except Exception as e:
+                callback(None, e)
+                return
+
+            callback(result, None)
+
+        self._call(
+            Message(destination=bus_name, path=path, interface="org.freedesktop.DBus.Introspectable", member="Introspect"),
+            reply_notify,
+        )
+
+    def _emit_interface_added(self, path, interface):
+        """Emit the ``org.freedesktop.DBus.ObjectManager.InterfacesAdded`` signal.
+
+        This signal is intended to be used to alert clients when
+        a new interface has been added.
+
+        :param path: Path of exported object.
+        :type path: str
+        :param interface: Exported service interface.
+        :type interface: :class:`ServiceInterface
+            <dbus_next.service.ServiceInterface>`
+        """
+        if self._disconnected:
+            return
+
+        def get_properties_callback(interface, result, user_data, e):
+            if e is not None:
+                try:
+                    raise e
+                except Exception:
+                    logging.error(
+                        "An exception ocurred when emitting ObjectManager.InterfacesAdded for %s. "
+                        "Some properties will not be included in the signal.",
+                        interface.name,
+                        exc_info=True,
+                    )
+
+            body = {interface.name: result}
+
+            self.send(
+                Message.new_signal(
+                    path=path,
+                    interface="org.freedesktop.DBus.ObjectManager",
+                    member="InterfacesAdded",
+                    signature="oa{sa{sv}}",
+                    body=[path, body],
+                )
+            )
+
+        ServiceInterface._get_all_property_values(interface, get_properties_callback)
+
+    def _emit_interface_removed(self, path, removed_interfaces):
+        """Emit the ``org.freedesktop.DBus.ObjectManager.InterfacesRemoved` signal.
+
+        This signal is intended to be used to alert clients when
+        a interface has been removed.
+
+        :param path: Path of removed (unexported) object.
+        :type path: str
+        :param removed_interfaces: List of unexported service interfaces.
+        :type removed_interfaces: list[str]
+        """
+        if self._disconnected:
+            return
+
+        self.send(
+            Message.new_signal(
+                path=path,
+                interface="org.freedesktop.DBus.ObjectManager",
+                member="InterfacesRemoved",
+                signature="oas",
+                body=[path, removed_interfaces],
+            )
+        )
+
+    def request_name(
+        self,
+        name: str,
+        flags: NameFlag = NameFlag.NONE,
+        callback: Optional[Callable[[Optional[RequestNameReply], Optional[Exception]], None]] = None,
+    ):
+        """Request that this message bus owns the given name.
+
+        :param name: The name to request.
+        :type name: str
+        :param flags: Name flags that affect the behavior of the name request.
+        :type flags: :class:`NameFlag <dbus_next.NameFlag>`
+        :param callback: A callback that will be called with the reply of the
+            request as a :class:`RequestNameReply <dbus_next.RequestNameReply>`.
+        :type callback: :class:`Callable`
+
+        :raises:
+            - :class:`InvalidBusNameError <dbus_next.InvalidBusNameError>` - If the given bus name is not valid.
+        """
+        assert_bus_name_valid(name)
+
+        if callback is not None:
+            BaseMessageBus._check_callback_type(callback)
+
+        def reply_notify(reply, err):
+            try:
+                BaseMessageBus._check_method_return(reply, err, "u")
+                result = RequestNameReply(reply.body[0])
+            except Exception as e:
+                callback(None, e)
+                return
+
+            callback(result, None)
+
+        if type(flags) is not NameFlag:
+            flags = NameFlag(flags)
+
+        self._call(
+            Message(
+                destination="org.freedesktop.DBus",
+                path="/org/freedesktop/DBus",
+                interface="org.freedesktop.DBus",
+                member="RequestName",
+                signature="su",
+                body=[name, flags],
+            ),
+            reply_notify if callback else None,
+        )
+
+    def release_name(self, name: str, callback: Optional[Callable[[Optional[ReleaseNameReply], Optional[Exception]], None]] = None):
+        """Request that this message bus release the given name.
+
+        :param name: The name to release.
+        :type name: str
+        :param callback: A callback that will be called with the reply of the
+            release request as a :class:`ReleaseNameReply
+            <dbus_next.ReleaseNameReply>`.
+        :type callback: :class:`Callable`
+
+        :raises:
+            - :class:`InvalidBusNameError <dbus_next.InvalidBusNameError>` - If the given bus name is not valid.
+        """
+        assert_bus_name_valid(name)
+
+        if callback is not None:
+            BaseMessageBus._check_callback_type(callback)
+
+        def reply_notify(reply, err):
+            try:
+                BaseMessageBus._check_method_return(reply, err, "u")
+                result = ReleaseNameReply(reply.body[0])
+            except Exception as e:
+                callback(None, e)
+                return
+
+            callback(result, None)
+
+        self._call(
+            Message(
+                destination="org.freedesktop.DBus",
+                path="/org/freedesktop/DBus",
+                interface="org.freedesktop.DBus",
+                member="ReleaseName",
+                signature="s",
+                body=[name],
+            ),
+            reply_notify if callback else None,
+        )
+
+    def get_proxy_object(self, bus_name: str, path: str, introspection: Union[intr.Node, str, ET.Element]) -> BaseProxyObject:
+        """Get a proxy object for the path exported on the bus that owns the
+        name. The object is expected to export the interfaces and nodes
+        specified in the introspection data.
+
+        This is the entry point into the high-level client.
+
+        :param bus_name: The name on the bus to get the proxy object for.
+        :type bus_name: str
+        :param path: The path on the client for the proxy object.
+        :type path: str
+        :param introspection: XML introspection data used to build the
+            interfaces on the proxy object.
+        :type introspection: :class:`Node <dbus_next.introspection.Node>` or str or :class:`ElementTree`
+
+        :returns: A proxy object for the given path on the given name.
+        :rtype: :class:`BaseProxyObject <dbus_next.proxy_object.BaseProxyObject>`
+
+        :raises:
+            - :class:`InvalidBusNameError <dbus_next.InvalidBusNameError>` - If the given bus name is not valid.
+            - :class:`InvalidObjectPathError <dbus_next.InvalidObjectPathError>` - If the given object path is not valid.
+            - :class:`InvalidIntrospectionError <dbus_next.InvalidIntrospectionError>` - If the introspection data for the node is not valid.
+        """
+        if self._ProxyObject is None:
+            raise Exception("the message bus implementation did not provide a proxy object class")
+
+        self._init_high_level_client()
+
+        return self._ProxyObject(bus_name, path, introspection, self)
+
+    def disconnect(self):
+        """Disconnect the message bus by closing the underlying connection asynchronously.
+
+        All pending  and future calls will error with a connection error.
+        """
+        self._user_disconnect = True
+        try:
+            self._sock.shutdown(socket.SHUT_RDWR)
+        except Exception:
+            logging.warning("could not shut down socket", exc_info=True)
+
+    def next_serial(self) -> int:
+        """Get the next serial for this bus. This can be used as the ``serial``
+        attribute of a :class:`Message <dbus_next.Message>` to manually handle
+        the serial of messages.
+
+        :returns: The next serial for the bus.
+        :rtype: int
+        """
+        self._serial += 1
+        return self._serial
+
+    def add_message_handler(self, handler: Callable[[Message], Optional[Union[Message, bool]]]):
+        """Add a custom message handler for incoming messages.
+
+        The handler should be a callable that takes a :class:`Message
+        <dbus_next.Message>`. If the message is a method call, you may return
+        another Message as a reply and it will be marked as handled. You may
+        also return ``True`` to mark the message as handled without sending a
+        reply.
+
+        :param handler: A handler that will be run for every message the bus
+            connection received.
+        :type handler: :class:`Callable` or None
+        """
+        error_text = "a message handler must be callable with a single parameter"
+        if not callable(handler):
+            raise TypeError(error_text)
+
+        handler_signature = inspect.signature(handler)
+        if len(handler_signature.parameters) != 1:
+            raise TypeError(error_text)
+
+        self._user_message_handlers.append(handler)
+
+    def remove_message_handler(self, handler: Callable[[Message], Optional[Union[Message, bool]]]):
+        """Remove a message handler that was previously added by
+        :func:`add_message_handler()
+        <dbus_next.message_bus.BaseMessageBus.add_message_handler>`.
+
+        :param handler: A message handler.
+        :type handler: :class:`Callable`
+        """
+        for i, h in enumerate(self._user_message_handlers):
+            if h == handler:
+                del self._user_message_handlers[i]
+                break
+
+    def send(self, msg: Message) -> None:
+        """Asynchronously send a message on the message bus.
+
+        :param msg: The message to send.
+        :type msg: :class:`Message <dbus_next.Message>`
+        """
+        raise NotImplementedError('the "send" method must be implemented in the inheriting class')
+
+    def _finalize(self, err):
+        """should be called after the socket disconnects with the disconnection
+        error to clean up resources and put the bus in a disconnected state"""
+        if self._disconnected:
+            return
+
+        self._disconnected = True
+
+        for handler in self._method_return_handlers.values():
+            try:
+                handler(None, err)
+            except Exception:
+                logging.warning("a message handler threw an exception on shutdown", exc_info=True)
+
+        self._method_return_handlers.clear()
+
+        for path in list(self._path_exports.keys()):
+            self.unexport(path)
+
+        self._user_message_handlers.clear()
+
+    def _has_interface(self, interface: ServiceInterface) -> bool:
+        for _, exports in self._path_exports.items():
+            for iface in exports:
+                if iface is interface:
+                    return True
+
+        return False
+
+    def _interface_signal_notify(self, interface, interface_name, member, signature, body, unix_fds=[]):
+        path = None
+        for p, ifaces in self._path_exports.items():
+            for i in ifaces:
+                if i is interface:
+                    path = p
+
+        if path is None:
+            raise Exception("Could not find interface on bus (this is a bug in dbus-next)")
+
+        self.send(
+            Message.new_signal(
+                path=path, interface=interface_name, member=member, signature=signature, body=body, unix_fds=unix_fds
+            )
+        )
+
+    def _introspect_export_path(self, path):
+        assert_object_path_valid(path)
+
+        if path in self._path_exports:
+            node = intr.Node.default(path)
+            for interface in self._path_exports[path]:
+                node.interfaces.append(interface.introspect())
+        else:
+            node = intr.Node(path)
+
+        children = set()
+
+        for export_path in self._path_exports:
+            try:
+                child_path = export_path.split(path, maxsplit=1)[1]
+            except IndexError:
+                continue
+
+            child_path = child_path.lstrip("/")
+            child_name = child_path.split("/", maxsplit=1)[0]
+
+            children.add(child_name)
+
+        node.nodes = [intr.Node(name) for name in children if name]
+
+        return node
+
+    def _setup_socket(self):
+        err = None
+
+        for transport, options in self._bus_address:
+            filename = None
+            ip_addr = ""
+            ip_port = 0
+
+            if transport == "unix":
+                self._sock = socket.socket(socket.AF_UNIX, socket.SOCK_STREAM)
+                self._stream = self._sock.makefile("rwb")
+                self._fd = self._sock.fileno()
+
+                if "path" in options:
+                    filename = options["path"]
+                elif "abstract" in options:
+                    filename = f'\0{options["abstract"]}'
+                else:
+                    raise InvalidAddressError("got unix transport with unknown path specifier")
+
+                try:
+                    self._sock.connect(filename)
+                    self._sock.setblocking(False)
+                    break
+                except Exception as e:
+                    err = e
+
+            elif transport == "tcp":
+                self._sock = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
+                self._stream = self._sock.makefile("rwb")
+                self._fd = self._sock.fileno()
+
+                if "host" in options:
+                    ip_addr = options["host"]
+                if "port" in options:
+                    ip_port = int(options["port"])
+
+                try:
+                    self._sock.connect((ip_addr, ip_port))
+                    self._sock.setblocking(False)
+                    break
+                except Exception as e:
+                    err = e
+
+            else:
+                raise InvalidAddressError(f"got unknown address transport: {transport}")
+
+        if err:
+            raise err
+
+    def _call(self, msg, callback):
+        BaseMessageBus._check_callback_type(callback)
+
+        if not msg.serial:
+            msg.serial = self.next_serial()
+
+        def reply_notify(reply, err):
+            if reply:
+                self._name_owners[msg.destination] = reply.sender
+            callback(reply, err)
+
+        self.send(msg)
+
+        if msg.flags & MessageFlag.NO_REPLY_EXPECTED:
+            callback(None, None)
+        else:
+            self._method_return_handlers[msg.serial] = reply_notify
+
+    @staticmethod
+    def _check_callback_type(callback):
+        """Raise a TypeError if the user gives an invalid callback as a parameter"""
+
+        text = "a callback must be callable with two parameters"
+
+        if not callable(callback):
+            raise TypeError(text)
+
+        fn_signature = inspect.signature(callback)
+        if len(fn_signature.parameters) != 2:
+            raise TypeError(text)
+
+    @staticmethod
+    def _check_method_return(msg, err, signature):
+        if err:
+            raise err
+        elif msg.message_type == MessageType.METHOD_RETURN and msg.signature == signature:
+            return
+        elif msg.message_type == MessageType.ERROR:
+            raise DBusError._from_message(msg)
+        else:
+            raise DBusError(ErrorType.INTERNAL_ERROR, "invalid message type for method call", msg)
+
+    def _on_message(self, msg):
+        try:
+            self._process_message(msg)
+        except Exception as e:
+            logging.error(f"got unexpected error processing a message: {e}.\n{traceback.format_exc()}")
+
+    def _send_reply(self, msg):
+        bus = self
+
+        class SendReply:
+            def __enter__(self):
+                return self
+
+            def __call__(self, reply):
+                if msg.flags & MessageFlag.NO_REPLY_EXPECTED:
+                    return
+
+                bus.send(reply)
+
+            def _exit(self, exc_type, exc_value, tb):
+                if exc_type is None:
+                    return
+
+                if issubclass(exc_type, DBusError):
+                    self(exc_value._as_message(msg))
+                    return True
+
+                if issubclass(exc_type, Exception):
+                    self(
+                        Message.new_error(
+                            msg,
+                            ErrorType.SERVICE_ERROR,
+                            f"The service interface raised an error: {exc_value}.\n{traceback.format_tb(tb)}",
+                        )
+                    )
+                    return True
+
+            def __exit__(self, exc_type, exc_value, tb):
+                self._exit(exc_type, exc_value, tb)
+
+            def send_error(self, exc):
+                self._exit(exc.__class__, exc, exc.__traceback__)
+
+        return SendReply()
+
+    def _process_message(self, msg):
+        handled = False
+
+        for handler in self._user_message_handlers:
+            try:
+                result = handler(msg)
+                if result:
+                    if type(result) is Message:
+                        self.send(result)
+                    handled = True
+                    break
+            except DBusError as e:
+                if msg.message_type == MessageType.METHOD_CALL:
+                    self.send(e._as_message(msg))
+                    handled = True
+                    break
+                else:
+                    logging.error(f"A message handler raised an exception: {e}.\n{traceback.format_exc()}")
+            except Exception as e:
+                logging.error(f"A message handler raised an exception: {e}.\n{traceback.format_exc()}")
+                if msg.message_type == MessageType.METHOD_CALL:
+                    self.send(
+                        Message.new_error(
+                            msg, ErrorType.INTERNAL_ERROR, f"An internal error occurred: {e}.\n{traceback.format_exc()}"
+                        )
+                    )
+                    handled = True
+                    break
+
+        if msg.message_type == MessageType.SIGNAL:
+            if msg._matches(
+                sender="org.freedesktop.DBus",
+                path="/org/freedesktop/DBus",
+                interface="org.freedesktop.DBus",
+                member="NameOwnerChanged",
+            ):
+                [name, old_owner, new_owner] = msg.body
+                if new_owner:
+                    self._name_owners[name] = new_owner
+                elif name in self._name_owners:
+                    del self._name_owners[name]
+
+        elif msg.message_type == MessageType.METHOD_CALL:
+            if not handled:
+                handler = self._find_message_handler(msg)
+
+                send_reply = self._send_reply(msg)
+
+                with send_reply:
+                    if handler:
+                        handler(msg, send_reply)
+                    else:
+                        send_reply(
+                            Message.new_error(
+                                msg,
+                                ErrorType.UNKNOWN_METHOD,
+                                f'{msg.interface}.{msg.member} with signature "{msg.signature}" could not be found',
+                            )
+                        )
+
+        else:
+            # An ERROR or a METHOD_RETURN
+            if msg.reply_serial in self._method_return_handlers:
+                if not handled:
+                    handler = self._method_return_handlers[msg.reply_serial]
+                    handler(msg, None)
+                del self._method_return_handlers[msg.reply_serial]
+
+    def _make_method_handler(self, interface, method):
+        def handler(msg, send_reply):
+            args = ServiceInterface._msg_body_to_args(msg)
+            result = method.fn(interface, *args)
+            body, fds = ServiceInterface._fn_result_to_body(result, signature_tree=method.out_signature_tree)
+            send_reply(Message.new_method_return(msg, method.out_signature, body, fds))
+
+        return handler
+
+    def _find_message_handler(self, msg):
+        handler = None
+
+        if msg._matches(interface="org.freedesktop.DBus.Introspectable", member="Introspect", signature=""):
+            handler = self._default_introspect_handler
+
+        elif msg._matches(interface="org.freedesktop.DBus.Properties"):
+            handler = self._default_properties_handler
+
+        elif msg._matches(interface="org.freedesktop.DBus.Peer"):
+            if msg._matches(member="Ping", signature=""):
+                handler = self._default_ping_handler
+            elif msg._matches(member="GetMachineId", signature=""):
+                handler = self._default_get_machine_id_handler
+        elif msg._matches(interface="org.freedesktop.DBus.ObjectManager", member="GetManagedObjects"):
+            handler = self._default_get_managed_objects_handler
+
+        else:
+            for interface in self._path_exports.get(msg.path, []):
+                for method in ServiceInterface._get_methods(interface):
+                    if method.disabled:
+                        continue
+                    if msg._matches(interface=interface.name, member=method.name, signature=method.in_signature):
+                        handler = self._make_method_handler(interface, method)
+                        break
+                if handler:
+                    break
+
+        return handler
+
+    def _default_introspect_handler(self, msg, send_reply):
+        introspection = self._introspect_export_path(msg.path).tostring()
+        send_reply(Message.new_method_return(msg, "s", [introspection]))
+
+    def _default_ping_handler(self, msg, send_reply):
+        send_reply(Message.new_method_return(msg))
+
+    def _default_get_machine_id_handler(self, msg, send_reply):
+        if self._machine_id:
+            send_reply(Message.new_method_return(msg, "s", self._machine_id))
+            return
+
+        def reply_handler(reply, err):
+            if err:
+                # the bus has been disconnected, cannot send a reply
+                return
+
+            if reply.message_type == MessageType.METHOD_RETURN:
+                self._machine_id = reply.body[0]
+                send_reply(Message.new_method_return(msg, "s", [self._machine_id]))
+            elif reply.message_type == MessageType.ERROR:
+                send_reply(Message.new_error(msg, reply.error_name, reply.body))
+            else:
+                send_reply(Message.new_error(msg, ErrorType.FAILED, "could not get machine_id"))
+
+        self._call(
+            Message(
+                destination="org.freedesktop.DBus",
+                path="/org/freedesktop/DBus",
+                interface="org.freedesktop.DBus.Peer",
+                member="GetMachineId",
+            ),
+            reply_handler,
+        )
+
+    def _default_get_managed_objects_handler(self, msg, send_reply):
+        result = {}
+        result_signature = "a{oa{sa{sv}}}"
+        error_handled = False
+
+        def is_result_complete():
+            if not result:
+                return True
+            for n, interfaces in result.items():
+                for value in interfaces.values():
+                    if value is None:
+                        return False
+
+            return True
+
+        nodes = [node for node in self._path_exports if msg.path == "/" or node.startswith(msg.path + "/")]
+
+        # first build up the result object to know when it's complete
+        for node in nodes:
+            result[node] = {}
+            for interface in self._path_exports[node]:
+                result[node][interface.name] = None
+
+        if is_result_complete():
+            send_reply(Message.new_method_return(msg, result_signature, [result]))
+            return
+
+        def get_all_properties_callback(interface, values, node, err):
+            nonlocal error_handled
+            if err is not None:
+                if not error_handled:
+                    error_handled = True
+                    send_reply.send_error(err)
+                return
+
+            result[node][interface.name] = values
+
+            if is_result_complete():
+                send_reply(Message.new_method_return(msg, result_signature, [result]))
+
+        for node in nodes:
+            for interface in self._path_exports[node]:
+                ServiceInterface._get_all_property_values(interface, get_all_properties_callback, node)
+
+    def _default_properties_handler(self, msg, send_reply):
+        methods = {"Get": "ss", "Set": "ssv", "GetAll": "s"}
+        if msg.member not in methods or methods[msg.member] != msg.signature:
+            raise DBusError(
+                ErrorType.UNKNOWN_METHOD,
+                f'properties interface doesn\'t have method "{msg.member}" with signature "{msg.signature}"',
+            )
+
+        interface_name = msg.body[0]
+        if interface_name == "":
+            raise DBusError(
+                ErrorType.NOT_SUPPORTED, "getting and setting properties with an empty interface string is not supported yet"
+            )
+
+        elif msg.path not in self._path_exports:
+            raise DBusError(ErrorType.UNKNOWN_OBJECT, f'no interfaces at path: "{msg.path}"')
+
+        match = [iface for iface in self._path_exports[msg.path] if iface.name == interface_name]
+        if not match:
+            if interface_name in (
+                "org.freedesktop.DBus.Properties",
+                "org.freedesktop.DBus.Introspectable",
+                "org.freedesktop.DBus.Peer",
+                "org.freedesktop.DBus.ObjectManager",
+            ):
+                # the standard interfaces do not have properties
+                if msg.member in ("Get", "Set"):
+                    prop_name = msg.body[1]
+                    raise DBusError(
+                        ErrorType.UNKNOWN_PROPERTY, f'interface "{interface_name}" does not have property "{prop_name}"'
+                    )
+                elif msg.member == "GetAll":
+                    send_reply(Message.new_method_return(msg, "a{sv}", [{}]))
+                    return
+                else:
+                    assert False
+            raise DBusError(ErrorType.UNKNOWN_INTERFACE, f'could not find an interface "{interface_name}" at path: "{msg.path}"')
+
+        interface = match[0]
+        properties = ServiceInterface._get_properties(interface)
+
+        if msg.member in ("Get", "Set"):
+            prop_name = msg.body[1]
+            match = [prop for prop in properties if prop.name == prop_name and not prop.disabled]
+            if not match:
+                raise DBusError(ErrorType.UNKNOWN_PROPERTY, f'interface "{interface_name}" does not have property "{prop_name}"')
+
+            prop = match[0]
+            if msg.member == "Get":
+                if not prop.access.readable():
+                    raise DBusError(ErrorType.UNKNOWN_PROPERTY, "the property does not have read access")
+
+                def get_property_callback(interface, prop, prop_value, err):
+                    try:
+                        if err is not None:
+                            send_reply.send_error(err)
+                            return
+
+                        body, unix_fds = replace_fds_with_idx(prop.signature, [prop_value])
+
+                        send_reply(Message.new_method_return(msg, "v", [Variant(prop.signature, body[0])], unix_fds=unix_fds))
+                    except Exception as e:
+                        send_reply.send_error(e)
+
+                ServiceInterface._get_property_value(interface, prop, get_property_callback)
+
+            elif msg.member == "Set":
+                if not prop.access.writable():
+                    raise DBusError(ErrorType.PROPERTY_READ_ONLY, "the property is readonly")
+                value = msg.body[2]
+                if value.signature != prop.signature:
+                    raise DBusError(ErrorType.INVALID_SIGNATURE, f'wrong signature for property. expected "{prop.signature}"')
+                assert prop.prop_setter
+
+                def set_property_callback(interface, prop, err):
+                    if err is not None:
+                        send_reply.send_error(err)
+                        return
+                    send_reply(Message.new_method_return(msg))
+
+                body = replace_idx_with_fds(value.signature, [value.value], msg.unix_fds)
+                ServiceInterface._set_property_value(interface, prop, body[0], set_property_callback)
+
+        elif msg.member == "GetAll":
+
+            def get_all_properties_callback(interface, values, user_data, err):
+                if err is not None:
+                    send_reply.send_error(err)
+                    return
+                body, unix_fds = replace_fds_with_idx("a{sv}", [values])
+                send_reply(Message.new_method_return(msg, "a{sv}", body, unix_fds=unix_fds))
+
+            ServiceInterface._get_all_property_values(interface, get_all_properties_callback)
+
+        else:
+            assert False
+
+    def _init_high_level_client(self):
+        """The high level client is initialized when the first proxy object is
+        gotten. Currently just sets up the match rules for the name owner cache
+        so signals can be routed to the right objects."""
+        if self._high_level_client_initialized:
+            return
+        self._high_level_client_initialized = True
+
+        def add_match_notify(msg, err):
+            if err:
+                logging.error(f'add match request failed. match="{self._name_owner_match_rule}", {err}')
+            if msg.message_type == MessageType.ERROR:
+                logging.error(f'add match request failed. match="{self._name_owner_match_rule}", {msg.body[0]}')
+
+        self._call(
+            Message(
+                destination="org.freedesktop.DBus",
+                interface="org.freedesktop.DBus",
+                path="/org/freedesktop/DBus",
+                member="AddMatch",
+                signature="s",
+                body=[self._name_owner_match_rule],
+            ),
+            add_match_notify,
+        )
+
+    def _add_match_rule(self, match_rule):
+        """Add a match rule. Match rules added by this function are refcounted
+        and must be removed by _remove_match_rule(). This is for use in the
+        high level client only."""
+        if match_rule == self._name_owner_match_rule:
+            return
+
+        if match_rule in self._match_rules:
+            self._match_rules[match_rule] += 1
+            return
+
+        self._match_rules[match_rule] = 1
+
+        def add_match_notify(msg, err):
+            if err:
+                logging.error(f'add match request failed. match="{match_rule}", {err}')
+            if msg.message_type == MessageType.ERROR:
+                logging.error(f'add match request failed. match="{match_rule}", {msg.body[0]}')
+
+        self._call(
+            Message(
+                destination="org.freedesktop.DBus",
+                interface="org.freedesktop.DBus",
+                path="/org/freedesktop/DBus",
+                member="AddMatch",
+                signature="s",
+                body=[match_rule],
+            ),
+            add_match_notify,
+        )
+
+    def _remove_match_rule(self, match_rule):
+        """Remove a match rule added with _add_match_rule(). This is for use in
+        the high level client only."""
+        if match_rule == self._name_owner_match_rule:
+            return
+
+        if match_rule in self._match_rules:
+            self._match_rules[match_rule] -= 1
+            if self._match_rules[match_rule] > 0:
+                return
+
+        del self._match_rules[match_rule]
+
+        def remove_match_notify(msg, err):
+            if self._disconnected:
+                return
+
+            if err:
+                logging.error(f'remove match request failed. match="{match_rule}", {err}')
+            if msg.message_type == MessageType.ERROR:
+                logging.error(f'remove match request failed. match="{match_rule}", {msg.body[0]}')
+
+        self._call(
+            Message(
+                destination="org.freedesktop.DBus",
+                interface="org.freedesktop.DBus",
+                path="/org/freedesktop/DBus",
+                member="RemoveMatch",
+                signature="s",
+                body=[match_rule],
+            ),
+            remove_match_notify,
+        )
diff --git a/analyzer/linux/dbus_next/proxy_object.py b/analyzer/linux/dbus_next/proxy_object.py
new file mode 100644
index 00000000000..b501d1e3653
--- /dev/null
+++ b/analyzer/linux/dbus_next/proxy_object.py
@@ -0,0 +1,265 @@
+import asyncio
+import inspect
+import logging
+import re
+import xml.etree.ElementTree as ET
+from typing import Coroutine, List, Type, Union
+
+from . import introspection as intr
+from . import message_bus
+from ._private.util import replace_idx_with_fds
+from .constants import ErrorType, MessageType
+from .errors import DBusError, InterfaceNotFoundError
+from .message import Message
+from .validators import assert_bus_name_valid, assert_object_path_valid
+
+
+class BaseProxyInterface:
+    """An abstract class representing a proxy to an interface exported on the bus by another client.
+
+    Implementations of this class are not meant to be constructed directly by
+    users. Use :func:`BaseProxyObject.get_interface` to get a proxy interface.
+    Each message bus implementation provides its own proxy interface
+    implementation that will be returned by that method.
+
+    Proxy interfaces can be used to call methods, get properties, and listen to
+    signals on the interface. Proxy interfaces are created dynamically with a
+    family of methods for each of these operations based on what members the
+    interface exposes. Each proxy interface implementation exposes these
+    members in a different way depending on the features of the backend. See
+    the documentation of the proxy interface implementation you use for more
+    details.
+
+    :ivar bus_name: The name of the bus this interface is exported on.
+    :vartype bus_name: str
+    :ivar path: The object path exported on the client that owns the bus name.
+    :vartype path: str
+    :ivar introspection: Parsed introspection data for the proxy interface.
+    :vartype introspection: :class:`Node <dbus_next.introspection.Interface>`
+    :ivar bus: The message bus this proxy interface is connected to.
+    :vartype bus: :class:`BaseMessageBus <dbus_next.message_bus.BaseMessageBus>`
+    """
+
+    def __init__(self, bus_name, path, introspection, bus):
+
+        self.bus_name = bus_name
+        self.path = path
+        self.introspection = introspection
+        self.bus = bus
+        self._signal_handlers = {}
+        self._signal_match_rule = f"type='signal',sender={bus_name},interface={introspection.name},path={path}"
+
+    _underscorer1 = re.compile(r"(.)([A-Z][a-z]+)")
+    _underscorer2 = re.compile(r"([a-z0-9])([A-Z])")
+
+    @staticmethod
+    def _to_snake_case(member):
+        subbed = BaseProxyInterface._underscorer1.sub(r"\1_\2", member)
+        return BaseProxyInterface._underscorer2.sub(r"\1_\2", subbed).lower()
+
+    @staticmethod
+    def _check_method_return(msg, signature=None):
+        if msg.message_type == MessageType.ERROR:
+            raise DBusError._from_message(msg)
+        elif msg.message_type != MessageType.METHOD_RETURN:
+            raise DBusError(ErrorType.CLIENT_ERROR, "method call didnt return a method return", msg)
+        elif signature is not None and msg.signature != signature:
+            raise DBusError(ErrorType.CLIENT_ERROR, f'method call returned unexpected signature: "{msg.signature}"', msg)
+
+    def _add_method(self, intr_method):
+        raise NotImplementedError("this must be implemented in the inheriting class")
+
+    def _add_property(self, intr_property):
+        raise NotImplementedError("this must be implemented in the inheriting class")
+
+    def _message_handler(self, msg):
+        if (
+            not msg._matches(message_type=MessageType.SIGNAL, interface=self.introspection.name, path=self.path)
+            or msg.member not in self._signal_handlers
+        ):
+            return
+
+        if msg.sender != self.bus_name and self.bus._name_owners.get(self.bus_name, "") != msg.sender:
+            # The sender is always a unique name, but the bus name given might
+            # be a well known name. If the sender isn't an exact match, check
+            # to see if it owns the bus_name we were given from the cache kept
+            # on the bus for this purpose.
+            return
+
+        match = [s for s in self.introspection.signals if s.name == msg.member]
+        if not len(match):
+            return
+        intr_signal = match[0]
+        if intr_signal.signature != msg.signature:
+            logging.warning(f'got signal "{self.introspection.name}.{msg.member}" with unexpected signature "{msg.signature}"')
+            return
+
+        body = replace_idx_with_fds(msg.signature, msg.body, msg.unix_fds)
+        for handler in self._signal_handlers[msg.member]:
+            cb_result = handler(*body)
+            if isinstance(cb_result, Coroutine):
+                asyncio.create_task(cb_result)
+
+    def _add_signal(self, intr_signal, interface):
+        def on_signal_fn(fn):
+            fn_signature = inspect.signature(fn)
+            if not callable(fn) or len(fn_signature.parameters) != len(intr_signal.args):
+                raise TypeError(f"reply_notify must be a function with {len(intr_signal.args)} parameters")
+
+            if not self._signal_handlers:
+                self.bus._add_match_rule(self._signal_match_rule)
+                self.bus.add_message_handler(self._message_handler)
+
+            if intr_signal.name not in self._signal_handlers:
+                self._signal_handlers[intr_signal.name] = []
+
+            self._signal_handlers[intr_signal.name].append(fn)
+
+        def off_signal_fn(fn):
+            try:
+                i = self._signal_handlers[intr_signal.name].index(fn)
+                del self._signal_handlers[intr_signal.name][i]
+                if not self._signal_handlers[intr_signal.name]:
+                    del self._signal_handlers[intr_signal.name]
+            except (KeyError, ValueError):
+                return
+
+            if not self._signal_handlers:
+                self.bus._remove_match_rule(self._signal_match_rule)
+                self.bus.remove_message_handler(self._message_handler)
+
+        snake_case = BaseProxyInterface._to_snake_case(intr_signal.name)
+        setattr(interface, f"on_{snake_case}", on_signal_fn)
+        setattr(interface, f"off_{snake_case}", off_signal_fn)
+
+
+class BaseProxyObject:
+    """An abstract class representing a proxy to an object exported on the bus by another client.
+
+    Implementations of this class are not meant to be constructed directly. Use
+    :func:`BaseMessageBus.get_proxy_object()
+    <dbus_next.message_bus.BaseMessageBus.get_proxy_object>` to get a proxy
+    object. Each message bus implementation provides its own proxy object
+    implementation that will be returned by that method.
+
+    The primary use of the proxy object is to select a proxy interface to act
+    on. Information on what interfaces are available is provided by
+    introspection data provided to this class. This introspection data can
+    either be included in your project as an XML file (recommended) or
+    retrieved from the ``org.freedesktop.DBus.Introspectable`` interface at
+    runtime.
+
+    :ivar bus_name: The name of the bus this object is exported on.
+    :vartype bus_name: str
+    :ivar path: The object path exported on the client that owns the bus name.
+    :vartype path: str
+    :ivar introspection: Parsed introspection data for the proxy object.
+    :vartype introspection: :class:`Node <dbus_next.introspection.Node>`
+    :ivar bus: The message bus this proxy object is connected to.
+    :vartype bus: :class:`BaseMessageBus <dbus_next.message_bus.BaseMessageBus>`
+    :ivar ~.ProxyInterface: The proxy interface class this proxy object uses.
+    :vartype ~.ProxyInterface: Type[:class:`BaseProxyInterface <dbus_next.proxy_object.BaseProxyObject>`]
+    :ivar child_paths: A list of absolute object paths of the children of this object.
+    :vartype child_paths: list(str)
+
+    :raises:
+        - :class:`InvalidBusNameError <dbus_next.InvalidBusNameError>` - If the given bus name is not valid.
+        - :class:`InvalidObjectPathError <dbus_next.InvalidObjectPathError>` - If the given object path is not valid.
+        - :class:`InvalidIntrospectionError <dbus_next.InvalidIntrospectionError>` - If the introspection data for the node is not valid.
+    """
+
+    def __init__(
+        self,
+        bus_name: str,
+        path: str,
+        introspection: Union[intr.Node, str, ET.Element],
+        bus: "message_bus.BaseMessageBus",
+        ProxyInterface: Type[BaseProxyInterface],
+    ):
+        assert_object_path_valid(path)
+        assert_bus_name_valid(bus_name)
+
+        if not isinstance(bus, message_bus.BaseMessageBus):
+            raise TypeError("bus must be an instance of BaseMessageBus")
+        if not issubclass(ProxyInterface, BaseProxyInterface):
+            raise TypeError("ProxyInterface must be an instance of BaseProxyInterface")
+
+        if type(introspection) is intr.Node:
+            self.introspection = introspection
+        elif type(introspection) is str:
+            self.introspection = intr.Node.parse(introspection)
+        elif type(introspection) is ET.Element:
+            self.introspection = intr.Node.from_xml(introspection)
+        else:
+            raise TypeError("introspection must be xml node introspection or introspection.Node class")
+
+        self.bus_name = bus_name
+        self.path = path
+        self.bus = bus
+        self.ProxyInterface = ProxyInterface
+        self.child_paths = [f"{path}/{n.name}" for n in self.introspection.nodes]
+
+        self._interfaces = {}
+
+        # lazy loaded by get_children()
+        self._children = None
+
+    def get_interface(self, name: str) -> BaseProxyInterface:
+        """Get an interface exported on this proxy object and connect it to the bus.
+
+        :param name: The name of the interface to retrieve.
+        :type name: str
+
+        :raises:
+            - :class:`InterfaceNotFoundError <dbus_next.InterfaceNotFoundError>` - If there is no interface by this name exported on the bus.
+        """
+        if name in self._interfaces:
+            return self._interfaces[name]
+
+        try:
+            intr_interface = next(i for i in self.introspection.interfaces if i.name == name)
+        except StopIteration:
+            raise InterfaceNotFoundError(f"interface not found on this object: {name}")
+
+        interface = self.ProxyInterface(self.bus_name, self.path, intr_interface, self.bus)
+
+        for intr_method in intr_interface.methods:
+            interface._add_method(intr_method)
+        for intr_property in intr_interface.properties:
+            interface._add_property(intr_property)
+        for intr_signal in intr_interface.signals:
+            interface._add_signal(intr_signal, interface)
+
+        def get_owner_notify(msg, err):
+            if err:
+                logging.error(f'getting name owner for "{name}" failed, {err}')
+                return
+            if msg.message_type == MessageType.ERROR:
+                if msg.error_name != ErrorType.NAME_HAS_NO_OWNER.value:
+                    logging.error(f'getting name owner for "{name}" failed, {msg.body[0]}')
+                return
+
+            self.bus._name_owners[self.bus_name] = msg.body[0]
+
+        if self.bus_name[0] != ":" and not self.bus._name_owners.get(self.bus_name, ""):
+            self.bus._call(
+                Message(
+                    destination="org.freedesktop.DBus",
+                    interface="org.freedesktop.DBus",
+                    path="/org/freedesktop/DBus",
+                    member="GetNameOwner",
+                    signature="s",
+                    body=[self.bus_name],
+                ),
+                get_owner_notify,
+            )
+
+        self._interfaces[name] = interface
+        return interface
+
+    def get_children(self) -> List["BaseProxyObject"]:
+        """Get the child nodes of this proxy object according to the introspection data."""
+        if self._children is None:
+            self._children = [self.__class__(self.bus_name, self.path, child, self.bus) for child in self.introspection.nodes]
+
+        return self._children
diff --git a/lib/cuckoo/common/graphs/binGraph/__init__.py b/analyzer/linux/dbus_next/py.typed
similarity index 100%
rename from lib/cuckoo/common/graphs/binGraph/__init__.py
rename to analyzer/linux/dbus_next/py.typed
diff --git a/analyzer/linux/dbus_next/service.py b/analyzer/linux/dbus_next/service.py
new file mode 100644
index 00000000000..3f4b3e84c5a
--- /dev/null
+++ b/analyzer/linux/dbus_next/service.py
@@ -0,0 +1,532 @@
+import asyncio
+import copy
+import inspect
+from functools import wraps
+from typing import Any, Dict, List, no_type_check_decorator
+
+from . import introspection as intr
+from ._private.util import parse_annotation, replace_fds_with_idx, replace_idx_with_fds, signature_contains_type
+from .constants import PropertyAccess
+from .errors import SignalDisabledError
+from .signature import SignatureBodyMismatchError, SignatureTree, Variant
+
+
+class _Method:
+    def __init__(self, fn, name, disabled=False):
+        in_signature = ""
+        out_signature = ""
+
+        inspection = inspect.signature(fn)
+
+        in_args = []
+        for i, param in enumerate(inspection.parameters.values()):
+            if i == 0:
+                # first is self
+                continue
+            annotation = parse_annotation(param.annotation)
+            if not annotation:
+                raise ValueError("method parameters must specify the dbus type string as an annotation")
+            in_args.append(intr.Arg(annotation, intr.ArgDirection.IN, param.name))
+            in_signature += annotation
+
+        out_args = []
+        out_signature = parse_annotation(inspection.return_annotation)
+        if out_signature:
+            for type_ in SignatureTree._get(out_signature).types:
+                out_args.append(intr.Arg(type_, intr.ArgDirection.OUT))
+
+        self.name = name
+        self.fn = fn
+        self.disabled = disabled
+        self.introspection = intr.Method(name, in_args, out_args)
+        self.in_signature = in_signature
+        self.out_signature = out_signature
+        self.in_signature_tree = SignatureTree._get(in_signature)
+        self.out_signature_tree = SignatureTree._get(out_signature)
+
+
+def method(name: str = None, disabled: bool = False):
+    """A decorator to mark a class method of a :class:`ServiceInterface` to be a DBus service method.
+
+    The parameters and return value must each be annotated with a signature
+    string of a single complete DBus type.
+
+    This class method will be called when a client calls the method on the DBus
+    interface. The parameters given to the function come from the calling
+    client and will conform to the dbus-next type system. The parameters
+    returned will be returned to the calling client and must conform to the
+    dbus-next type system. If multiple parameters are returned, they must be
+    contained within a :class:`list`.
+
+    The decorated method may raise a :class:`DBusError <dbus_next.DBusError>`
+    to return an error to the client.
+
+    :param name: The member name that DBus clients will use to call this method. Defaults to the name of the class method.
+    :type name: str
+    :param disabled: If set to true, the method will not be visible to clients.
+    :type disabled: bool
+
+    :example:
+
+    ::
+
+        @method()
+        def echo(self, val: 's') -> 's':
+            return val
+
+        @method()
+        def echo_two(self, val1: 's', val2: 'u') -> 'su':
+            return [val1, val2]
+    """
+    if name is not None and type(name) is not str:
+        raise TypeError("name must be a string")
+    if type(disabled) is not bool:
+        raise TypeError("disabled must be a bool")
+
+    @no_type_check_decorator
+    def decorator(fn):
+        @wraps(fn)
+        def wrapped(*args, **kwargs):
+            fn(*args, **kwargs)
+
+        fn_name = name or fn.__name__
+        wrapped.__dict__["__DBUS_METHOD"] = _Method(fn, fn_name, disabled=disabled)
+
+        return wrapped
+
+    return decorator
+
+
+class _Signal:
+    def __init__(self, fn, name, disabled=False):
+        inspection = inspect.signature(fn)
+
+        args = []
+        signature = ""
+        signature_tree = None
+
+        return_annotation = parse_annotation(inspection.return_annotation)
+
+        if return_annotation:
+            signature = return_annotation
+            signature_tree = SignatureTree._get(signature)
+            for type_ in signature_tree.types:
+                args.append(intr.Arg(type_, intr.ArgDirection.OUT))
+        else:
+            signature = ""
+            signature_tree = SignatureTree._get("")
+
+        self.signature = signature
+        self.signature_tree = signature_tree
+        self.name = name
+        self.disabled = disabled
+        self.introspection = intr.Signal(self.name, args)
+
+
+def signal(name: str = None, disabled: bool = False):
+    """A decorator to mark a class method of a :class:`ServiceInterface` to be a DBus signal.
+
+    The signal is broadcast on the bus when the decorated class method is
+    called by the user.
+
+    If the signal has an out argument, the class method must have a return type
+    annotation with a signature string of a single complete DBus type and the
+    return value of the class method must conform to the dbus-next type system.
+    If the signal has multiple out arguments, they must be returned within a
+    ``list``.
+
+    :param name: The member name that will be used for this signal. Defaults to
+        the name of the class method.
+    :type name: str
+    :param disabled: If set to true, the signal will not be visible to clients.
+    :type disabled: bool
+
+    :example:
+
+    ::
+
+        @signal()
+        def string_signal(self, val) -> 's':
+            return val
+
+        @signal()
+        def two_strings_signal(self, val1, val2) -> 'ss':
+            return [val1, val2]
+    """
+    if name is not None and type(name) is not str:
+        raise TypeError("name must be a string")
+    if type(disabled) is not bool:
+        raise TypeError("disabled must be a bool")
+
+    @no_type_check_decorator
+    def decorator(fn):
+        fn_name = name or fn.__name__
+        signal = _Signal(fn, fn_name, disabled)
+
+        @wraps(fn)
+        def wrapped(self, *args, **kwargs):
+            if signal.disabled:
+                raise SignalDisabledError("Tried to call a disabled signal")
+            result = fn(self, *args, **kwargs)
+            ServiceInterface._handle_signal(self, signal, result)
+            return result
+
+        wrapped.__dict__["__DBUS_SIGNAL"] = signal
+
+        return wrapped
+
+    return decorator
+
+
+class _Property(property):
+    def set_options(self, options):
+        self.options = getattr(self, "options", {})
+        for k, v in options.items():
+            self.options[k] = v
+
+        if "name" in options and options["name"] is not None:
+            self.name = options["name"]
+        else:
+            self.name = self.prop_getter.__name__
+
+        if "access" in options:
+            self.access = PropertyAccess(options["access"])
+        else:
+            self.access = PropertyAccess.READWRITE
+
+        if "disabled" in options:
+            self.disabled = options["disabled"]
+        else:
+            self.disabled = False
+
+        self.introspection = intr.Property(self.name, self.signature, self.access)
+
+        self.__dict__["__DBUS_PROPERTY"] = True
+
+    def __init__(self, fn, *args, **kwargs):
+        self.prop_getter = fn
+        self.prop_setter = None
+
+        inspection = inspect.signature(fn)
+        if len(inspection.parameters) != 1:
+            raise ValueError('the property must only have the "self" input parameter')
+
+        return_annotation = parse_annotation(inspection.return_annotation)
+
+        if not return_annotation:
+            raise ValueError("the property must specify the dbus type string as a return annotation string")
+
+        self.signature = return_annotation
+        tree = SignatureTree._get(return_annotation)
+
+        if len(tree.types) != 1:
+            raise ValueError("the property signature must be a single complete type")
+
+        self.type = tree.types[0]
+
+        if "options" in kwargs:
+            options = kwargs["options"]
+            self.set_options(options)
+            kwargs.pop("options")
+
+        super().__init__(fn, *args, **kwargs)
+
+    def setter(self, fn, **kwargs):
+        # XXX The setter decorator seems to be recreating the class in the list
+        # of class members and clobbering the options so we need to reset them.
+        # Why does it do that?
+        result = super().setter(fn, **kwargs)
+        result.prop_setter = fn
+        result.set_options(self.options)
+        return result
+
+
+def dbus_property(access: PropertyAccess = PropertyAccess.READWRITE, name: str = None, disabled: bool = False):
+    """A decorator to mark a class method of a :class:`ServiceInterface` to be a DBus property.
+
+    The class method must be a Python getter method with a return annotation
+    that is a signature string of a single complete DBus type. When a client
+    gets the property through the ``org.freedesktop.DBus.Properties``
+    interface, the getter will be called and the resulting value will be
+    returned to the client.
+
+    If the property is writable, it must have a setter method that takes a
+    single parameter that is annotated with the same signature. When a client
+    sets the property through the ``org.freedesktop.DBus.Properties``
+    interface, the setter will be called with the value from the calling
+    client.
+
+    The parameters of the getter and the setter must conform to the dbus-next
+    type system. The getter or the setter may raise a :class:`DBusError
+    <dbus_next.DBusError>` to return an error to the client.
+
+    :param name: The name that DBus clients will use to interact with this
+        property on the bus.
+    :type name: str
+    :param disabled: If set to true, the property will not be visible to
+        clients.
+    :type disabled: bool
+
+    :example:
+
+    ::
+
+        @dbus_property()
+        def string_prop(self) -> 's':
+            return self._string_prop
+
+        @string_prop.setter
+        def string_prop(self, val: 's'):
+            self._string_prop = val
+    """
+    if type(access) is not PropertyAccess:
+        raise TypeError("access must be a PropertyAccess class")
+    if name is not None and type(name) is not str:
+        raise TypeError("name must be a string")
+    if type(disabled) is not bool:
+        raise TypeError("disabled must be a bool")
+
+    @no_type_check_decorator
+    def decorator(fn):
+        options = {"name": name, "access": access, "disabled": disabled}
+        return _Property(fn, options=options)
+
+    return decorator
+
+
+class ServiceInterface:
+    """An abstract class that can be extended by the user to define DBus services.
+
+    Instances of :class:`ServiceInterface` can be exported on a path of the bus
+    with the :class:`export <dbus_next.message_bus.BaseMessageBus.export>`
+    method of a :class:`MessageBus <dbus_next.message_bus.BaseMessageBus>`.
+
+    Use the :func:`@method <dbus_next.service.method>`, :func:`@dbus_property
+    <dbus_next.service.dbus_property>`, and :func:`@signal
+    <dbus_next.service.signal>` decorators to mark class methods as DBus
+    methods, properties, and signals respectively.
+
+    :ivar name: The name of this interface as it appears to clients. Must be a
+        valid interface name.
+    :vartype name: str
+    """
+
+    def __init__(self, name: str):
+        # TODO cannot be overridden by a dbus member
+        self.name = name
+        self.__methods = []
+        self.__properties = []
+        self.__signals = []
+        self.__buses = set()
+
+        for name, member in inspect.getmembers(type(self)):
+            member_dict = getattr(member, "__dict__", {})
+            if type(member) is _Property:
+                # XXX The getter and the setter may show up as different
+                # members if they have different names. But if they have the
+                # same name, they will be the same member. So we try to merge
+                # them together here. I wish we could make this cleaner.
+                found = False
+                for prop in self.__properties:
+                    if prop.prop_getter is member.prop_getter:
+                        found = True
+                        if member.prop_setter is not None:
+                            prop.prop_setter = member.prop_setter
+
+                if not found:
+                    self.__properties.append(member)
+            elif "__DBUS_METHOD" in member_dict:
+                method = member_dict["__DBUS_METHOD"]
+                assert type(method) is _Method
+                self.__methods.append(method)
+            elif "__DBUS_SIGNAL" in member_dict:
+                signal = member_dict["__DBUS_SIGNAL"]
+                assert type(signal) is _Signal
+                self.__signals.append(signal)
+
+        # validate that writable properties have a setter
+        for prop in self.__properties:
+            if prop.access.writable() and prop.prop_setter is None:
+                raise ValueError(f'property "{prop.name}" is writable but does not have a setter')
+
+    def emit_properties_changed(self, changed_properties: Dict[str, Any], invalidated_properties: List[str] = []):
+        """Emit the ``org.freedesktop.DBus.Properties.PropertiesChanged`` signal.
+
+        This signal is intended to be used to alert clients when a property of
+        the interface has changed.
+
+        :param changed_properties: The keys must be the names of properties exposed by this bus. The values must be valid for the signature of those properties.
+        :type changed_properties: dict(str, Any)
+        :param invalidated_properties: A list of names of properties that are now invalid (presumably for clients who cache the value).
+        :type invalidated_properties: list(str)
+        """
+        # TODO cannot be overridden by a dbus member
+        variant_dict = {}
+
+        for prop in ServiceInterface._get_properties(self):
+            if prop.name in changed_properties:
+                variant_dict[prop.name] = Variant(prop.signature, changed_properties[prop.name])
+
+        body = [self.name, variant_dict, invalidated_properties]
+        for bus in ServiceInterface._get_buses(self):
+            bus._interface_signal_notify(self, "org.freedesktop.DBus.Properties", "PropertiesChanged", "sa{sv}as", body)
+
+    def introspect(self) -> intr.Interface:
+        """Get introspection information for this interface.
+
+        This might be useful for creating clients for the interface or examining the introspection output of an interface.
+
+        :returns: The introspection data for the interface.
+        :rtype: :class:`dbus_next.introspection.Interface`
+        """
+        # TODO cannot be overridden by a dbus member
+        return intr.Interface(
+            self.name,
+            methods=[method.introspection for method in ServiceInterface._get_methods(self) if not method.disabled],
+            signals=[signal.introspection for signal in ServiceInterface._get_signals(self) if not signal.disabled],
+            properties=[prop.introspection for prop in ServiceInterface._get_properties(self) if not prop.disabled],
+        )
+
+    @staticmethod
+    def _get_properties(interface):
+        return interface.__properties
+
+    @staticmethod
+    def _get_methods(interface):
+        return interface.__methods
+
+    @staticmethod
+    def _get_signals(interface):
+        return interface.__signals
+
+    @staticmethod
+    def _get_buses(interface):
+        return interface.__buses
+
+    @staticmethod
+    def _add_bus(interface, bus):
+        interface.__buses.add(bus)
+
+    @staticmethod
+    def _remove_bus(interface, bus):
+        interface.__buses.remove(bus)
+
+    @staticmethod
+    def _msg_body_to_args(msg):
+        if signature_contains_type(msg.signature_tree, msg.body, "h"):
+            # XXX: This deep copy could be expensive if messages are very
+            # large. We could optimize this by only copying what we change
+            # here.
+            return replace_idx_with_fds(msg.signature_tree, copy.deepcopy(msg.body), msg.unix_fds)
+        return msg.body
+
+    @staticmethod
+    def _fn_result_to_body(result, signature_tree):
+        """The high level interfaces may return single values which may be
+        wrapped in a list to be a message body. Also they may return fds
+        directly for type 'h' which need to be put into an external list."""
+        out_len = len(signature_tree.types)
+        if result is None:
+            result = []
+        else:
+            if out_len == 1:
+                result = [result]
+            else:
+                if type(result) is not list:
+                    raise SignatureBodyMismatchError("Expected signal to return a list of arguments")
+
+        if out_len != len(result):
+            raise SignatureBodyMismatchError(
+                f"Signature and function return mismatch, expected {len(signature_tree.types)} arguments but got {len(result)}"
+            )
+
+        return replace_fds_with_idx(signature_tree, result)
+
+    @staticmethod
+    def _handle_signal(interface, signal, result):
+        body, fds = ServiceInterface._fn_result_to_body(result, signal.signature_tree)
+        for bus in ServiceInterface._get_buses(interface):
+            bus._interface_signal_notify(interface, interface.name, signal.name, signal.signature, body, fds)
+
+    @staticmethod
+    def _get_property_value(interface, prop, callback):
+        # XXX MUST CHECK TYPE RETURNED BY GETTER
+        try:
+            if asyncio.iscoroutinefunction(prop.prop_getter):
+                task = asyncio.ensure_future(prop.prop_getter(interface))
+
+                def get_property_callback(task):
+                    try:
+                        result = task.result()
+                    except Exception as e:
+                        callback(interface, prop, None, e)
+                        return
+
+                    callback(interface, prop, result, None)
+
+                task.add_done_callback(get_property_callback)
+                return
+
+            callback(interface, prop, getattr(interface, prop.prop_getter.__name__), None)
+        except Exception as e:
+            callback(interface, prop, None, e)
+
+    @staticmethod
+    def _set_property_value(interface, prop, value, callback):
+        # XXX MUST CHECK TYPE TO SET
+        try:
+            if asyncio.iscoroutinefunction(prop.prop_setter):
+                task = asyncio.ensure_future(prop.prop_setter(interface, value))
+
+                def set_property_callback(task):
+                    try:
+                        task.result()
+                    except Exception as e:
+                        callback(interface, prop, e)
+                        return
+
+                    callback(interface, prop, None)
+
+                task.add_done_callback(set_property_callback)
+                return
+
+            setattr(interface, prop.prop_setter.__name__, value)
+            callback(interface, prop, None)
+        except Exception as e:
+            callback(interface, prop, e)
+
+    @staticmethod
+    def _get_all_property_values(interface, callback, user_data=None):
+        result = {}
+        result_error = None
+
+        for prop in ServiceInterface._get_properties(interface):
+            if prop.disabled or not prop.access.readable():
+                continue
+            result[prop.name] = None
+
+        if not result:
+            callback(interface, result, user_data, None)
+            return
+
+        def get_property_callback(interface, prop, value, e):
+            nonlocal result_error
+            if e is not None:
+                result_error = e
+                del result[prop.name]
+            else:
+                try:
+                    result[prop.name] = Variant(prop.signature, value)
+                except SignatureBodyMismatchError as e:
+                    result_error = e
+                    del result[prop.name]
+
+            if any(v is None for v in result.values()):
+                return
+
+            callback(interface, result, user_data, result_error)
+
+        for prop in ServiceInterface._get_properties(interface):
+            if prop.disabled or not prop.access.readable():
+                continue
+            ServiceInterface._get_property_value(interface, prop, get_property_callback)
diff --git a/analyzer/linux/dbus_next/signature.py b/analyzer/linux/dbus_next/signature.py
new file mode 100644
index 00000000000..3daaa628092
--- /dev/null
+++ b/analyzer/linux/dbus_next/signature.py
@@ -0,0 +1,395 @@
+from typing import Any, List, Union
+
+from .errors import InvalidSignatureError, SignatureBodyMismatchError
+from .validators import is_object_path_valid
+
+
+class SignatureType:
+    """A class that represents a single complete type within a signature.
+
+    This class is not meant to be constructed directly. Use the :class:`SignatureTree`
+    class to parse signatures.
+
+    :ivar ~.signature: The signature of this complete type.
+    :vartype ~.signature: str
+
+    :ivar children: A list of child types if this is a container type. Arrays \
+    have one child type, dict entries have two child types (key and value), and \
+    structs have child types equal to the number of struct members.
+    :vartype children: list(:class:`SignatureType`)
+    """
+
+    _tokens = "ybnqiuxtdsogavh({"
+
+    def __init__(self, token):
+        self.token = token
+        self.children = []
+        self._signature = None
+
+    def __eq__(self, other):
+        if type(other) is SignatureType:
+            return self.signature == other.signature
+        return super().__eq__(other)
+
+    def _collapse(self):
+        if self.token not in "a({":
+            return self.token
+
+        signature = [self.token]
+
+        for child in self.children:
+            signature.append(child._collapse())
+
+        if self.token == "(":
+            signature.append(")")
+        elif self.token == "{":
+            signature.append("}")
+
+        return "".join(signature)
+
+    @property
+    def signature(self) -> str:
+        if self._signature is not None:
+            return self._signature
+        self._signature = self._collapse()
+        return self._signature
+
+    @staticmethod
+    def _parse_next(signature):
+        if not signature:
+            return (None, "")
+
+        token = signature[0]
+
+        if token not in SignatureType._tokens:
+            raise InvalidSignatureError(f'got unexpected token: "{token}"')
+
+        # container types
+        if token == "a":
+            self = SignatureType("a")
+            (child, signature) = SignatureType._parse_next(signature[1:])
+            if not child:
+                raise InvalidSignatureError("missing type for array")
+            self.children.append(child)
+            return (self, signature)
+        elif token == "(":
+            self = SignatureType("(")
+            signature = signature[1:]
+            while True:
+                (child, signature) = SignatureType._parse_next(signature)
+                if not signature:
+                    raise InvalidSignatureError('missing closing ")" for struct')
+                self.children.append(child)
+                if signature[0] == ")":
+                    return (self, signature[1:])
+        elif token == "{":
+            self = SignatureType("{")
+            signature = signature[1:]
+            (key_child, signature) = SignatureType._parse_next(signature)
+            if not key_child or len(key_child.children):
+                raise InvalidSignatureError("expected a simple type for dict entry key")
+            self.children.append(key_child)
+            (value_child, signature) = SignatureType._parse_next(signature)
+            if not value_child:
+                raise InvalidSignatureError("expected a value for dict entry")
+            if not signature or signature[0] != "}":
+                raise InvalidSignatureError('missing closing "}" for dict entry')
+            self.children.append(value_child)
+            return (self, signature[1:])
+
+        # basic type
+        return (SignatureType(token), signature[1:])
+
+    def _verify_byte(self, body):
+        BYTE_MIN = 0x00
+        BYTE_MAX = 0xFF
+        if not isinstance(body, int):
+            raise SignatureBodyMismatchError(f'DBus BYTE type "y" must be Python type "int", got {type(body)}')
+        if body < BYTE_MIN or body > BYTE_MAX:
+            raise SignatureBodyMismatchError(f"DBus BYTE type must be between {BYTE_MIN} and {BYTE_MAX}")
+
+    def _verify_boolean(self, body):
+        if not isinstance(body, bool):
+            raise SignatureBodyMismatchError(f'DBus BOOLEAN type "b" must be Python type "bool", got {type(body)}')
+
+    def _verify_int16(self, body):
+        INT16_MIN = -0x7FFF - 1
+        INT16_MAX = 0x7FFF
+        if not isinstance(body, int):
+            raise SignatureBodyMismatchError(f'DBus INT16 type "n" must be Python type "int", got {type(body)}')
+        elif body > INT16_MAX or body < INT16_MIN:
+            raise SignatureBodyMismatchError(f'DBus INT16 type "n" must be between {INT16_MIN} and {INT16_MAX}')
+
+    def _verify_uint16(self, body):
+        UINT16_MIN = 0
+        UINT16_MAX = 0xFFFF
+        if not isinstance(body, int):
+            raise SignatureBodyMismatchError(f'DBus UINT16 type "q" must be Python type "int", got {type(body)}')
+        elif body > UINT16_MAX or body < UINT16_MIN:
+            raise SignatureBodyMismatchError(f'DBus UINT16 type "q" must be between {UINT16_MIN} and {UINT16_MAX}')
+
+    def _verify_int32(self, body):
+        INT32_MIN = -0x7FFFFFFF - 1
+        INT32_MAX = 0x7FFFFFFF
+        if not isinstance(body, int):
+            raise SignatureBodyMismatchError(f'DBus INT32 type "i" must be Python type "int", got {type(body)}')
+        elif body > INT32_MAX or body < INT32_MIN:
+            raise SignatureBodyMismatchError(f'DBus INT32 type "i" must be between {INT32_MIN} and {INT32_MAX}')
+
+    def _verify_uint32(self, body):
+        UINT32_MIN = 0
+        UINT32_MAX = 0xFFFFFFFF
+        if not isinstance(body, int):
+            raise SignatureBodyMismatchError(f'DBus UINT32 type "u" must be Python type "int", got {type(body)}')
+        elif body > UINT32_MAX or body < UINT32_MIN:
+            raise SignatureBodyMismatchError(f'DBus UINT32 type "u" must be between {UINT32_MIN} and {UINT32_MAX}')
+
+    def _verify_int64(self, body):
+        INT64_MAX = 9223372036854775807
+        INT64_MIN = -INT64_MAX - 1
+        if not isinstance(body, int):
+            raise SignatureBodyMismatchError(f'DBus INT64 type "x" must be Python type "int", got {type(body)}')
+        elif body > INT64_MAX or body < INT64_MIN:
+            raise SignatureBodyMismatchError(f'DBus INT64 type "x" must be between {INT64_MIN} and {INT64_MAX}')
+
+    def _verify_uint64(self, body):
+        UINT64_MIN = 0
+        UINT64_MAX = 18446744073709551615
+        if not isinstance(body, int):
+            raise SignatureBodyMismatchError(f'DBus UINT64 type "t" must be Python type "int", got {type(body)}')
+        elif body > UINT64_MAX or body < UINT64_MIN:
+            raise SignatureBodyMismatchError(f'DBus UINT64 type "t" must be between {UINT64_MIN} and {UINT64_MAX}')
+
+    def _verify_double(self, body):
+        if not isinstance(body, float) and not isinstance(body, int):
+            raise SignatureBodyMismatchError(f'DBus DOUBLE type "d" must be Python type "float" or "int", got {type(body)}')
+
+    def _verify_unix_fd(self, body):
+        try:
+            self._verify_uint32(body)
+        except SignatureBodyMismatchError:
+            raise SignatureBodyMismatchError('DBus UNIX_FD type "h" must be a valid UINT32')
+
+    def _verify_object_path(self, body):
+        if not is_object_path_valid(body):
+            raise SignatureBodyMismatchError('DBus OBJECT_PATH type "o" must be a valid object path')
+
+    def _verify_string(self, body):
+        if not isinstance(body, str):
+            raise SignatureBodyMismatchError(f'DBus STRING type "s" must be Python type "str", got {type(body)}')
+
+    def _verify_signature(self, body):
+        # I guess we could run it through the SignatureTree parser instead
+        if not isinstance(body, str):
+            raise SignatureBodyMismatchError(f'DBus SIGNATURE type "g" must be Python type "str", got {type(body)}')
+        if len(body.encode()) > 0xFF:
+            raise SignatureBodyMismatchError('DBus SIGNATURE type "g" must be less than 256 bytes')
+
+    def _verify_array(self, body):
+        child_type = self.children[0]
+
+        if child_type.token == "{":
+            if not isinstance(body, dict):
+                raise SignatureBodyMismatchError(
+                    f'DBus ARRAY type "a" with DICT_ENTRY child must be Python type "dict", got {type(body)}'
+                )
+            for key, value in body.items():
+                child_type.children[0].verify(key)
+                child_type.children[1].verify(value)
+        elif child_type.token == "y":
+            if not isinstance(body, bytes):
+                raise SignatureBodyMismatchError(
+                    f'DBus ARRAY type "a" with BYTE child must be Python type "bytes", got {type(body)}'
+                )
+                # no need to verify children
+        else:
+            if not isinstance(body, list):
+                raise SignatureBodyMismatchError(f'DBus ARRAY type "a" must be Python type "list", got {type(body)}')
+            for member in body:
+                child_type.verify(member)
+
+    def _verify_struct(self, body):
+        # TODO allow tuples
+        if not isinstance(body, list):
+            raise SignatureBodyMismatchError(f'DBus STRUCT type "(" must be Python type "list", got {type(body)}')
+
+        if len(body) != len(self.children):
+            raise SignatureBodyMismatchError(
+                'DBus STRUCT type "(" must have Python list members equal to the number of struct type members'
+            )
+
+        for i, member in enumerate(body):
+            self.children[i].verify(member)
+
+    def _verify_variant(self, body):
+        # a variant signature and value is valid by construction
+        if not isinstance(body, Variant):
+            raise SignatureBodyMismatchError(f'DBus VARIANT type "v" must be Python type "Variant", got {type(body)}')
+
+    def verify(self, body: Any) -> bool:
+        """Verify that the body matches this type.
+
+        :returns: True if the body matches this type.
+        :raises:
+            :class:`SignatureBodyMismatchError` if the body does not match this type.
+        """
+        if body is None:
+            raise SignatureBodyMismatchError('Cannot serialize Python type "None"')
+        elif self.token == "y":
+            self._verify_byte(body)
+        elif self.token == "b":
+            self._verify_boolean(body)
+        elif self.token == "n":
+            self._verify_int16(body)
+        elif self.token == "q":
+            self._verify_uint16(body)
+        elif self.token == "i":
+            self._verify_int32(body)
+        elif self.token == "u":
+            self._verify_uint32(body)
+        elif self.token == "x":
+            self._verify_int64(body)
+        elif self.token == "t":
+            self._verify_uint64(body)
+        elif self.token == "d":
+            self._verify_double(body)
+        elif self.token == "h":
+            self._verify_unix_fd(body)
+        elif self.token == "o":
+            self._verify_object_path(body)
+        elif self.token == "s":
+            self._verify_string(body)
+        elif self.token == "g":
+            self._verify_signature(body)
+        elif self.token == "a":
+            self._verify_array(body)
+        elif self.token == "(":
+            self._verify_struct(body)
+        elif self.token == "v":
+            self._verify_variant(body)
+        else:
+            raise Exception(f"cannot verify type with token {self.token}")
+
+        return True
+
+
+class SignatureTree:
+    """A class that represents a signature as a tree structure for conveniently
+    working with DBus signatures.
+
+    This class will not normally be used directly by the user.
+
+    :ivar types: A list of parsed complete types.
+    :vartype types: list(:class:`SignatureType`)
+
+    :ivar ~.signature: The signature of this signature tree.
+    :vartype ~.signature: str
+
+    :raises:
+        :class:`InvalidSignatureError` if the given signature is not valid.
+    """
+
+    _cache = {}
+
+    @staticmethod
+    def _get(signature: str = ""):
+        if signature in SignatureTree._cache:
+            return SignatureTree._cache[signature]
+        SignatureTree._cache[signature] = SignatureTree(signature)
+        return SignatureTree._cache[signature]
+
+    def __init__(self, signature: str = ""):
+        self.signature = signature
+
+        self.types = []
+
+        if len(signature) > 0xFF:
+            raise InvalidSignatureError("A signature must be less than 256 characters")
+
+        while signature:
+            (type_, signature) = SignatureType._parse_next(signature)
+            self.types.append(type_)
+
+    def __eq__(self, other):
+        if type(other) is SignatureTree:
+            return self.signature == other.signature
+        return super().__eq__(other)
+
+    def verify(self, body: List[Any]):
+        """Verifies that the give body matches this signature tree
+
+        :param body: the body to verify for this tree
+        :type body: list(Any)
+
+        :returns: True if the signature matches the body or an exception if not.
+
+        :raises:
+            :class:`SignatureBodyMismatchError` if the signature does not match the body.
+        """
+        if not isinstance(body, list):
+            raise SignatureBodyMismatchError(f"The body must be a list (got {type(body)})")
+        if len(body) != len(self.types):
+            raise SignatureBodyMismatchError(
+                f"The body has the wrong number of types (got {len(body)}, expected {len(self.types)})"
+            )
+        for i, type_ in enumerate(self.types):
+            type_.verify(body[i])
+
+        return True
+
+
+class Variant:
+    """A class to represent a DBus variant (type "v").
+
+    This class is used in message bodies to represent variants. The user can
+    expect a value in the body with type "v" to use this class and can
+    construct this class directly for use in message bodies sent over the bus.
+
+    :ivar signature: The signature for this variant. Must be a single complete type.
+    :vartype signature: str
+
+    :ivar signature_type: The parsed signature of this variant.
+    :vartype signature_type: :class:`SignatureType`
+
+    :ivar value: The value of this variant. Must correspond to the signature.
+    :vartype value: Any
+
+    :raises:
+        :class:`InvalidSignatureError` if the signature is not valid.
+        :class:`SignatureBodyMismatchError` if the signature does not match the body.
+    """
+
+    def __init__(self, signature: Union[str, SignatureTree, SignatureType], value: Any):
+        signature_str = ""
+        signature_tree = None
+        signature_type = None
+
+        if type(signature) is SignatureTree:
+            signature_tree = signature
+        elif type(signature) is SignatureType:
+            signature_type = signature
+            signature_str = signature.signature
+        elif type(signature) is str:
+            signature_tree = SignatureTree._get(signature)
+        else:
+            raise TypeError("signature must be a SignatureTree, SignatureType, or a string")
+
+        if signature_tree:
+            if len(signature_tree.types) != 1:
+                raise ValueError("variants must have a signature for a single complete type")
+            signature_str = signature_tree.signature
+            signature_type = signature_tree.types[0]
+
+        signature_type.verify(value)
+
+        self.type = signature_type
+        self.signature = signature_str
+        self.value = value
+
+    def __eq__(self, other):
+        if type(other) is Variant:
+            return self.signature == other.signature and self.value == other.value
+        return super().__eq__(other)
+
+    def __repr__(self):
+        return "<dbus_next.signature.Variant ('%s', %s)>" % (self.type.signature, self.value)
diff --git a/analyzer/linux/dbus_next/validators.py b/analyzer/linux/dbus_next/validators.py
new file mode 100644
index 00000000000..1997cfc50aa
--- /dev/null
+++ b/analyzer/linux/dbus_next/validators.py
@@ -0,0 +1,184 @@
+import re
+
+from .errors import InvalidBusNameError, InvalidInterfaceNameError, InvalidMemberNameError, InvalidObjectPathError
+
+_bus_name_re = re.compile(r"^[A-Za-z_-][A-Za-z0-9_-]*$")
+_path_re = re.compile(r"^[A-Za-z0-9_]+$")
+_element_re = re.compile(r"^[A-Za-z_][A-Za-z0-9_]*$")
+
+
+def is_bus_name_valid(name: str) -> bool:
+    """Whether this is a valid bus name.
+
+    .. seealso:: https://dbus.freedesktop.org/doc/dbus-specification.html#message-protocol-names-bus
+
+    :param name: The bus name to validate.
+    :type name: str
+
+    :returns: Whether the name is a valid bus name.
+    :rtype: bool
+    """
+    if not isinstance(name, str):
+        return False
+
+    if not name or len(name) > 255:
+        return False
+
+    if name.startswith(":"):
+        # a unique bus name
+        return True
+
+    if name.startswith("."):
+        return False
+
+    if name.find(".") == -1:
+        return False
+
+    for element in name.split("."):
+        if _bus_name_re.search(element) is None:
+            return False
+
+    return True
+
+
+def is_object_path_valid(path: str) -> bool:
+    """Whether this is a valid object path.
+
+    .. seealso:: https://dbus.freedesktop.org/doc/dbus-specification.html#message-protocol-marshaling-object-path
+
+    :param path: The object path to validate.
+    :type path: str
+
+    :returns: Whether the object path is valid.
+    :rtype: bool
+    """
+    if not isinstance(path, str):
+        return False
+
+    if not path:
+        return False
+
+    if not path.startswith("/"):
+        return False
+
+    if len(path) == 1:
+        return True
+
+    for element in path[1:].split("/"):
+        if _path_re.search(element) is None:
+            return False
+
+    return True
+
+
+def is_interface_name_valid(name: str) -> bool:
+    """Whether this is a valid interface name.
+
+    .. seealso:: https://dbus.freedesktop.org/doc/dbus-specification.html#message-protocol-names-interface
+
+    :param name: The interface name to validate.
+    :type name: str
+
+    :returns: Whether the name is a valid interface name.
+    :rtype: bool
+    """
+    if not isinstance(name, str):
+        return False
+
+    if not name or len(name) > 255:
+        return False
+
+    if name.startswith("."):
+        return False
+
+    if name.find(".") == -1:
+        return False
+
+    for element in name.split("."):
+        if _element_re.search(element) is None:
+            return False
+
+    return True
+
+
+def is_member_name_valid(member: str) -> bool:
+    """Whether this is a valid member name.
+
+    .. seealso:: https://dbus.freedesktop.org/doc/dbus-specification.html#message-protocol-names-member
+
+    :param member: The member name to validate.
+    :type member: str
+
+    :returns: Whether the name is a valid member name.
+    :rtype: bool
+    """
+    if not isinstance(member, str):
+        return False
+
+    if not member or len(member) > 255:
+        return False
+
+    if _element_re.search(member) is None:
+        return False
+
+    return True
+
+
+def assert_bus_name_valid(name: str):
+    """Raise an error if this is not a valid bus name.
+
+    .. seealso:: https://dbus.freedesktop.org/doc/dbus-specification.html#message-protocol-names-bus
+
+    :param name: The bus name to validate.
+    :type name: str
+
+    :raises:
+        - :class:`InvalidBusNameError` - If this is not a valid bus name.
+    """
+    if not is_bus_name_valid(name):
+        raise InvalidBusNameError(name)
+
+
+def assert_object_path_valid(path: str):
+    """Raise an error if this is not a valid object path.
+
+    .. seealso:: https://dbus.freedesktop.org/doc/dbus-specification.html#message-protocol-marshaling-object-path
+
+    :param path: The object path to validate.
+    :type path: str
+
+    :raises:
+        - :class:`InvalidObjectPathError` - If this is not a valid object path.
+    """
+    if not is_object_path_valid(path):
+        raise InvalidObjectPathError(path)
+
+
+def assert_interface_name_valid(name: str):
+    """Raise an error if this is not a valid interface name.
+
+    .. seealso:: https://dbus.freedesktop.org/doc/dbus-specification.html#message-protocol-names-interface
+
+    :param name: The interface name to validate.
+    :type name: str
+
+    :raises:
+        - :class:`InvalidInterfaceNameError` - If this is not a valid object path.
+    """
+    if not is_interface_name_valid(name):
+        raise InvalidInterfaceNameError(name)
+
+
+def assert_member_name_valid(member):
+    """Raise an error if this is not a valid member name.
+
+    .. seealso:: https://dbus.freedesktop.org/doc/dbus-specification.html#message-protocol-names-member
+
+    :param member: The member name to validate.
+    :type member: str
+
+    :raises:
+        - :class:`InvalidMemberNameError` - If this is not a valid object path.
+    """
+    if not is_member_name_valid(member):
+        raise InvalidMemberNameError(member)
diff --git a/analyzer/linux/lib/api/process.py b/analyzer/linux/lib/api/process.py
index 7aab595deaf..5a9fea3c3c7 100644
--- a/analyzer/linux/lib/api/process.py
+++ b/analyzer/linux/lib/api/process.py
@@ -2,10 +2,9 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
+import logging
 import os
 import subprocess
-import logging
 
 log = logging.getLogger(__name__)
 
@@ -17,30 +16,30 @@ class Process:
     first_process_pid = None
 
     def __init__(self, pid=0):
-        """@param pid: PID.
-        """
+        """@param pid: PID."""
         self.pid = pid
 
     def is_alive(self):
-        if not os.path.exists("/proc/%u" % self.pid):
+        if not os.path.exists(f"/proc/{self.pid}"):
             return False
         status = self.get_proc_status()
         if not status:
             return False
-        if "zombie" in status.get("State:", ""):
+        if "zombie" in status.get("State", ""):
             return False
         return True
 
     def get_parent_pid(self):
-        return self.get_proc_status().get("PPid", None)
+        return int(self.get_proc_status().get("PPid"))
 
     def get_proc_status(self):
         try:
-            status = open("/proc/%u/status" % self.pid).readlines()
-            status_values = dict((i[0], i[1]) for i in [j.strip().split(None, 1) for j in status])
+            with open(f"/proc/{self.pid}/status") as f:
+                status = f.readlines()
+            status_values = dict([tuple(map(str.strip, j.split(':',1))) for j in status])
             return status_values
-        except:
-            log.critical("could not get process status for pid %u", self.pid)
+        except Exception:
+            log.critical("Could not get process status for pid %s", self.pid)
         return {}
 
     def execute(self, cmd):
diff --git a/analyzer/linux/lib/api/screenshot.py b/analyzer/linux/lib/api/screenshot.py
index a978ef949ff..eb93756781c 100644
--- a/analyzer/linux/lib/api/screenshot.py
+++ b/analyzer/linux/lib/api/screenshot.py
@@ -1,31 +1,20 @@
 # Copyright (C) 2010-2015 Cuckoo Foundation.
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
-from __future__ import absolute_import
-import logging
-
-log = logging.getLogger(__name__)
 
-log.debug("Importing 'math'")
-import math
+import asyncio
 import logging
+import math
+import secrets
+import urllib.parse
 
 log = logging.getLogger(__name__)
 
 try:
-    log.debug("Importing 'pyscreenshot'")
-    try:
-        import pyscreenshot as ImageGrab
-    except ImportError:
-        log.error("Missed dependency: pip3 install pyscreenshot")
-        HAVE_PIL = False
     log.debug("Importing 'PIL.ImageChops'")
     # from PIL import ImageChops
     from PIL.ImageChops import difference
 
-    log.debug("Importing 'PIL.ImageGrab'")
-    from PIL import ImageGrab
-
     log.debug("Importing 'PIL.ImageDraw'")
     from PIL import ImageDraw
 
@@ -41,66 +30,255 @@
     HAVE_PIL = False
     log.error(e)
 
+try:
+    from dbus_next import DBusError, RequestNameReply, Variant
+    from dbus_next.aio import MessageBus
+except ImportError as err:
+    log.error(err)
+    HAVE_DBUS_NEXT = False
+else:
+    HAVE_DBUS_NEXT = True
+
+
+class ScreenshotsUnsupported(Exception):
+    pass
+
+
+if HAVE_PIL:
+
+    class Screenshot:
+        """Get screenshots."""
+
+        @staticmethod
+        def _draw_rectangle(img, xy):
+            """Draw a black rectangle.
+            @param img: PIL Image object
+            @param xy: Coordinates as refined in PIL rectangle() doc
+            @return: Image with black rectangle
+            """
+            dr = ImageDraw.Draw(img)
+            dr.rectangle(xy, fill="black", outline="black")
+            return img
+
+        @classmethod
+        def equal(cls, img1, img2, skip_area=None):
+            """Compares two screenshots using Root-Mean-Square Difference (RMS).
+            @param img1: screenshot to compare.
+            @param img2: screenshot to compare.
+            @return: equal status.
+            """
+            # Trick to avoid getting a lot of screen shots only because the time in the windows
+            # clock is changed.
+            # We draw a black rectangle on the coordinates where the clock is locates, and then
+            # run the comparison.
+            # NOTE: the coordinates are changing with VM screen resolution.
+            if skip_area:
+                # Copying objects to draw in another object.
+                img1 = img1.copy()
+                img2 = img2.copy()
+                # Draw a rectangle to cover windows clock.
+                for img in (img1, img2):
+                    cls._draw_rectangle(img, skip_area)
+
+            # To get a measure of how similar two images are, we use
+            # root-mean-square (RMS). If the images are exactly identical,
+            # this value is zero.
+            # diff = ImageChops.difference(img1, img2)
+            diff = difference(img1, img2)
+            h = diff.histogram()
+            sq = (value * ((idx % 256) ** 2) for idx, value in enumerate(h))
+            sum_of_squares = sum(sq)
+            rms = math.sqrt(sum_of_squares / (img1.size[0] * img1.size[1]))
+
+            # Might need to tweak the threshold.
+            return rms < 8
+
+
+if HAVE_DBUS_NEXT:
+
+    class ScreenshotGrabber:
+        def __init__(self):
+            self.bus = MessageBus(negotiate_unix_fd=True)
+            self._is_gnome = None
+
+        async def __aenter__(self):
+            await self.bus.connect()
+            if not await self.is_gnome():
+                await self.grant_permission()
+            return self
+
+        async def __aexit__(self, exc_type, exc, tb):
+            self.bus.disconnect()
+
+        async def is_gnome(self):
+            """
+            In this method, we check if Gnome is being used. If it is, then
+            `take_screenshot_gnome()` will be used to take screenshots.
+            Otherwise, `take_screenshot_nongnome()` will be used. See the documentation
+            for those methods for details.
+            """
+            if self._is_gnome is None:
+                bus_name = "org.gnome.Shell"
+                path = "/org/gnome/Shell"
+                interface_name = "org.gnome.Shell"
+                introspection = """
+                    <!DOCTYPE node PUBLIC "-//freedesktop//DTD D-BUS Object Introspection 1.0//EN"
+                    "http://www.freedesktop.org/standards/dbus/1.0/introspect.dtd">
+                    <node>
+                        <interface name="org.gnome.Shell">
+                            <property name="ShellVersion" type="s" access="read" />
+                        </interface>
+                    </node>
+                """
+                proxy = self.bus.get_proxy_object(bus_name, path, introspection)
+                interface = proxy.get_interface(interface_name)
+                try:
+                    version = await interface.get_shell_version()
+                except DBusError:
+                    self._is_gnome = False
+                    log.info("Detected non-Gnome desktop environment.")
+                else:
+                    self._is_gnome = True
+                    log.info("Detected Gnome version %s", str(version))
+                    name = "org.gnome.Screenshot"
+                    resp = await self.bus.request_name(name)
+                    if resp not in (
+                        RequestNameReply.PRIMARY_OWNER,
+                        RequestNameReply.ALREADY_OWNER,
+                    ):
+                        raise ScreenshotsUnsupported("Unable to acquire the name {name} on d-bus. Disabling screenshot capturing.")
+
+            return self._is_gnome
+
+        async def grant_permission(self):
+            bus_name = "org.freedesktop.impl.portal.PermissionStore"
+            path = "/org/freedesktop/impl/portal/PermissionStore"
+            interface_name = "org.freedesktop.impl.portal.PermissionStore"
+            introspection = """
+                <!DOCTYPE node PUBLIC "-//freedesktop//DTD D-BUS Object Introspection 1.0//EN"
+                "http://www.freedesktop.org/standards/dbus/1.0/introspect.dtd">
+                <node>
+                    <interface name="org.freedesktop.impl.portal.PermissionStore">
+                        <method name="Set">
+                            <arg name="table" direction="in" type="s" />
+                                <arg name="create" direction="in" type="b" />
+                                <arg name="id" direction="in" type="s" />
+                                <arg name="app_permissions" direction="in" type="a{sas}" />
+                                <arg name="data" direction="in" type="v" />
+                        </method>
+                    </interface>
+                </node>
+                """
+            proxy = self.bus.get_proxy_object(bus_name, path, introspection)
+            interface = proxy.get_interface(interface_name)
+            await interface.call_set("screenshot", True, "screenshot", {"": ["yes"]}, Variant("y", 0))
+
+        async def take_screenshot(self):
+            if await self.is_gnome():
+                return await self.take_screenshot_gnome()
+            return await self.take_screenshot_nongnome()
+
+        async def take_screenshot_gnome(self):
+            """
+            Gnome has gone through various iterations of supporting applications taking
+            screenshots. It used to not use the Portal interface, such as in Ubuntu
+            20.04. Then it used the portal interface but would require the user to grant
+            access for the application to use it, such as in Ubuntu 22.04. This was
+            before version 2 of the backend (i.e.  org.freedesktop.impl.portal.gnome)
+            was introduced. Then Gnome introduced version 2 of the backend interface.
+            This is seen in Ubuntu 22.10. It permits use of the PermissionStore to grant
+            that access, eliminating the need for user interaction. In all cases, though
+            the desktop flashes and makes a snapshot sound when taking the screenshot,
+            which is very annoying.
+            The method used here works for all (tested) versions of Gnome by using a
+            different interface...the one that gnome-screenshot uses. Ordinarily, using
+            this interface will not work because it limits who is the sender of the
+            message to certain Gnome applications. Because of this, in `is_gnome()`,
+            we impersonate being gnome-screenshot so that we can use this interface.
+            Another advantage of this is that we don't have the annoying screen
+            flash and sound when taking screenshots.
+            """
+            bus_name = "org.gnome.Shell.Screenshot"
+            base_path = "/org/gnome/Shell/Screenshot"
+            introspection = """
+                <!DOCTYPE node PUBLIC "-//freedesktop//DTD D-BUS Object Introspection 1.0//EN"
+                "http://www.freedesktop.org/standards/dbus/1.0/introspect.dtd">
+                <node>
+                    <interface name="org.gnome.Shell.Screenshot">
+                        <method name="Screenshot">
+                            <arg name="include_cursor" direction="in" type="b" />
+                            <arg name="flash" direction="in" type="b" />
+                            <arg name="filename" direction="in" type="s" />
+                            <arg name="success" direction="out" type="b" />
+                            <arg name="filename_used" direction="out" type="s" />
+                        </method>
+                    </interface>
+                </node>
+            """
+            proxy = self.bus.get_proxy_object(bus_name, base_path, introspection)
+            interface = proxy.get_interface("org.gnome.Shell.Screenshot")
+            success, screenshot_path = await interface.call_screenshot(False, False, "Screenshot.png")
+            if not success:
+                log.error("Failed to take screenshot.")
+                return None
+            return screenshot_path
+
+        async def take_screenshot_nongnome(self):
+            """
+            Take a screenshot in non-Gnome environments using the freedesktop portal
+            interface. Calling the `screenshot` interface returns a Request object,
+            which a signal is sent for when the screenshot is finished being written.
+            To avoid a race condition, we set up a signal handler before calling that
+            interface and then return the result from that handler.
+            """
+            bus_name = "org.freedesktop.portal.Desktop"
+            base_path = "/org/freedesktop/portal/desktop"
+            introspection = """
+                <!DOCTYPE node PUBLIC "-//freedesktop//DTD D-BUS Object Introspection 1.0//EN"
+                "http://www.freedesktop.org/standards/dbus/1.0/introspect.dtd">
+                <node>
+                    <interface name="org.freedesktop.portal.Screenshot">
+                        <method name="Screenshot">
+                            <arg name="parent_window" direction="in" type="s" />
+                                <arg name="options" direction="in" type="a{sv}" />
+                                <arg name="handle" direction="out" type="o" />
+                        </method>
+                        <property name="version" type="u" access="read" />
+                    </interface>
+                    <interface name="org.freedesktop.portal.Request">
+                        <signal name="Response">
+                            <arg name="response" direction="out" type="u" />
+                            <arg name="results" direction="out" type="a{sv}" />
+                        </signal>
+                    </interface>
+                </node>
+                """
+
+            queue = asyncio.Queue(1)
+
+            async def handler(response, results):
+                if response == 0:
+                    await queue.put(urllib.parse.urlparse(results["uri"].value).path)
+                else:
+                    log.warning("Received non-zero response when taking screenshot: %s", str(response))
+                    await queue.put(None)
+
+            # Set up the signal handler
+            sender = self.bus.unique_name.lstrip(":").replace(".", "_")
+            token = secrets.token_hex(16)
+            signal_path = f"{base_path}/request/{sender}/{token}"
+            proxy = self.bus.get_proxy_object(bus_name, signal_path, introspection)
+            interface = proxy.get_interface("org.freedesktop.portal.Request")
+            interface.on_response(handler)
+
+            # Call the screenshot interface. When the screenshot is ready, the handler
+            # will get called and put its path in the queue.
+            proxy = self.bus.get_proxy_object(bus_name, base_path, introspection)
+            interface = proxy.get_interface("org.freedesktop.portal.Screenshot")
+            options = {"handle_token": Variant("s", token)}
+            await interface.call_screenshot("", options)
+
+            # Do we need a timeout mechanism here?
+            screenshot_path = await queue.get()
 
-class Screenshot:
-    """Get screenshots."""
-
-    def _draw_rectangle(self, img, xy):
-        """Draw a black rectangle.
-        @param img: PIL Image object
-        @param xy: Coordinates as refined in PIL rectangle() doc
-        @return: Image with black rectangle
-        """
-        dr = ImageDraw.Draw(img)
-        dr.rectangle(xy, fill="black", outline="black")
-        return img
-
-    def have_pil(self):
-        """Is Python Image Library installed?
-        @return: installed status.
-        """
-        return HAVE_PIL
-
-    def equal(self, img1, img2, skip_area=None):
-        """Compares two screenshots using Root-Mean-Square Difference (RMS).
-        @param img1: screenshot to compare.
-        @param img2: screenshot to compare.
-        @return: equal status.
-        """
-        if not HAVE_PIL:
-            return None
-
-        # Trick to avoid getting a lot of screen shots only because the time in the windows
-        # clock is changed.
-        # We draw a black rectangle on the coordinates where the clock is locates, and then
-        # run the comparison.
-        # NOTE: the coordinates are changing with VM screen resolution.
-        if skip_area:
-            # Copying objects to draw in another object.
-            img1 = img1.copy()
-            img2 = img2.copy()
-            # Draw a rectangle to cover windows clock.
-            for img in (img1, img2):
-                self._draw_rectangle(img, skip_area)
-
-        # To get a measure of how similar two images are, we use
-        # root-mean-square (RMS). If the images are exactly identical,
-        # this value is zero.
-        # diff = ImageChops.difference(img1, img2)
-        diff = difference(img1, img2)
-        h = diff.histogram()
-        sq = (value * ((idx % 256) ** 2) for idx, value in enumerate(h))
-        sum_of_squares = sum(sq)
-        rms = math.sqrt(sum_of_squares / float(img1.size[0] * img1.size[1]))
-
-        # Might need to tweak the threshold.
-        return rms < 8
-
-    def take(self):
-        """Take a screenshot.
-        @return: screenshot or None.
-        """
-        if not HAVE_PIL:
-            return None
-
-        return ImageGrab.grab()
+            return screenshot_path
diff --git a/analyzer/linux/lib/common/abstracts.py b/analyzer/linux/lib/common/abstracts.py
index 1d8d8ddb4cf..9a05cf88010 100644
--- a/analyzer/linux/lib/common/abstracts.py
+++ b/analyzer/linux/lib/common/abstracts.py
@@ -2,12 +2,11 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 from lib.api.process import Process
 from lib.common.exceptions import CuckooPackageError
 
 
-class Package(object):
+class Package:
     """Base abstract analysis package."""
 
     PATHS = []
@@ -41,7 +40,7 @@ def execute(self, cmd):
         """
         p = Process()
         if not p.execute(cmd):
-            raise CuckooPackageError("Unable to execute the initial process, " "analysis aborted.")
+            raise CuckooPackageError("Unable to execute the initial process, analysis aborted")
 
         return p.pid
 
@@ -68,7 +67,7 @@ def get_pids(self):
         return []
 
 
-class Auxiliary(object):
+class Auxiliary:
     priority = 0
 
     def __init__(self, options={}, analyzer=None):
diff --git a/analyzer/linux/lib/common/apicalls.py b/analyzer/linux/lib/common/apicalls.py
deleted file mode 100644
index f6a58edcab9..00000000000
--- a/analyzer/linux/lib/common/apicalls.py
+++ /dev/null
@@ -1,70 +0,0 @@
-#!/usr/bin/env python
-# Copyright (C) 2015 Dmitry Rodionov
-# This software may be modified and distributed under the terms
-# of the MIT license. See the LICENSE file for details.
-from __future__ import absolute_import
-import os
-import json
-from getpass import getuser
-import logging
-from lib.core.config import Config
-from lib.common.common import sanitize_path, path_for_script, filelines, current_directory
-
-log = logging.getLogger(__name__)
-
-
-def apicalls(target, **kwargs):
-    """
-    """
-    if not target:
-        raise Exception("Invalid target for apicalls()")
-
-    cmd = _stap_command_line(target, **kwargs)
-    return cmd
-
-
-def _stap_command_line(target, **kwargs):
-    config = Config(cfg="analysis.conf")
-
-    def has_stap(p):
-        only_stap = [fn for fn in os.listdir(p) if fn.startswith("stap_") and fn.endswith(".ko")]
-        if only_stap:
-            return os.path.join(p, only_stap[0])
-        return False
-
-    path_cfg = config.get("analyzer_stap_path", None)
-    if path_cfg and os.path.exists(path_cfg):
-        path = path_cfg
-    elif os.path.exists("/root/.cuckoo") and has_stap("/root/.cuckoo"):
-        path = has_stap("/root/.cuckoo")
-    elif os.path.exists("/home/user/.cuckoo") and has_stap("/home/user/.cuckoo"):
-        path = has_stap("/home/user/.cuckoo")
-    else:
-        log.warning("Could not find STAP LKM, aborting systemtap analysis.")
-        return False
-
-    run_as_root = kwargs.get("run_as_root", False)
-
-    # cmd = ["sudo"]
-    # cmd += ["staprun"]
-    # cmd += ["-vv"]
-    # cmd += ["-o"]
-    # cmd += ["stap.log"]
-    # cmd += [path]
-    cmd = "sudo staprun -vv -o stap.log " + path
-
-    run_as_root = kwargs.get("run_as_root", False)
-
-    if "args" in kwargs:
-        target_cmd = '"%s %s"' % (target, " ".join(kwargs["args"]))
-    else:
-        target_cmd = '"%s"' % (target)
-
-    # When we don't want to run the target as root, we have to drop privileges
-    # with `sudo -u current_user` right before calling the target.
-    # if not run_as_root:
-    #    target_cmd = '"sudo -u %s %s"' % (getuser(), target_cmd)
-    #    cmd += "-DSUDO=1"
-    # cmd += ["-c", target_cmd]
-    cmd += " -c " + target_cmd
-    return cmd
diff --git a/analyzer/linux/lib/common/common.py b/analyzer/linux/lib/common/common.py
index b2e2048e218..86af5808003 100644
--- a/analyzer/linux/lib/common/common.py
+++ b/analyzer/linux/lib/common/common.py
@@ -8,12 +8,12 @@
 
 
 def sanitize_path(raw_path):
-    """ Replace spaces with backslashes+spaces """
+    """Replace spaces with backslashes+spaces"""
     return raw_path.replace(" ", "\\ ")
 
 
 def path_for_script(script):
-    """ Return the full path for the given script """
+    """Return the full path for the given script"""
     return path.join(current_directory(), script)
 
 
@@ -22,7 +22,7 @@ def current_directory():
 
 
 def filelines(source_file):
-    """ A generator that returns lines of the file.
+    """A generator that returns lines of the file.
     If there're no new lines it waits until the file is updated.
     """
     # Go to the end of the file
diff --git a/analyzer/linux/lib/common/constants.py b/analyzer/linux/lib/common/constants.py
index 8e4c822e004..a660a2bf4e4 100644
--- a/analyzer/linux/lib/common/constants.py
+++ b/analyzer/linux/lib/common/constants.py
@@ -1,9 +1,10 @@
 # Copyright (C) 2014-2016 Cuckoo Foundation.
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
-from __future__ import absolute_import
+
 import os
 import tempfile
+
 from lib.common.rand import random_string
 
 ROOT = os.path.join(tempfile.gettempdir(), random_string(6, 10))
@@ -16,3 +17,5 @@
     "memory": os.path.join(ROOT, "memory"),
     "drop": os.path.join(ROOT, "drop"),
 }
+
+OPT_CURDIR = "curdir"
diff --git a/analyzer/linux/lib/common/exceptions.py b/analyzer/linux/lib/common/exceptions.py
index de5798ee146..863e2d851ef 100644
--- a/analyzer/linux/lib/common/exceptions.py
+++ b/analyzer/linux/lib/common/exceptions.py
@@ -2,8 +2,6 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-
 
 class CuckooError(Exception):
     pass
diff --git a/analyzer/linux/lib/common/hashing.py b/analyzer/linux/lib/common/hashing.py
index ad0e02d3b10..203c7ffcfc5 100644
--- a/analyzer/linux/lib/common/hashing.py
+++ b/analyzer/linux/lib/common/hashing.py
@@ -1,7 +1,7 @@
 # Copyright (C) 2014-2016 Cuckoo Foundation.
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
-from __future__ import absolute_import
+
 import hashlib
 
 BUFSIZE = 1024 * 1024
@@ -17,12 +17,10 @@ def hash_file(method, path):
     @param path: file path
     @return: computed hash string
     """
-    f = open(path, "rb")
     h = method()
-    while True:
+    with open(path, "rb") as f:
         buf = f.read(BUFSIZE)
-        if not buf:
-            break
-        h.update(buf)
-    f.close()
+        while buf:
+            h.update(buf)
+            buf = f.read(BUFSIZE)
     return h.hexdigest()
diff --git a/analyzer/linux/lib/common/rand.py b/analyzer/linux/lib/common/rand.py
index 6f6f37b81b4..3eda4357338 100644
--- a/analyzer/linux/lib/common/rand.py
+++ b/analyzer/linux/lib/common/rand.py
@@ -1,4 +1,3 @@
-from __future__ import absolute_import
 import random
 import string
 
@@ -16,5 +15,5 @@ def random_string(minimum, maximum=None, charset=None):
 
 def random_integer(digits):
     start = 10 ** (digits - 1)
-    end = (10 ** digits) - 1
+    end = (10**digits) - 1
     return random.randint(start, end)
diff --git a/analyzer/linux/lib/common/results.py b/analyzer/linux/lib/common/results.py
index 03fddd9ede9..b43ca019d05 100644
--- a/analyzer/linux/lib/common/results.py
+++ b/analyzer/linux/lib/common/results.py
@@ -2,51 +2,82 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-import os
 import logging
+import os
 import socket
 import time
+from pathlib import Path
 
 from lib.core.config import Config
 
+config = Config(cfg="analysis.conf")
 log = logging.getLogger(__name__)
 
 BUFSIZE = 1024 * 1024
 
 
-def upload_to_host(file_path, dump_path, pids=[], metadata="", category=""):
-    nc = infd = None
+def upload_to_host(file_path, dump_path, pids="", ppids="", metadata="", category="", duplicated=False):
+    nc = None
     if not os.path.exists(file_path):
-        log.warning("File not exist: {}".format(file_path))
+        log.warning("File %s doesn't exist anymore", file_path)
+        return
+    file_size = Path(file_path).stat().st_size
+    log.info("File %s size is %d, Max size: %s", file_path, file_size, config.upload_max_size)
+    if int(config.upload_max_size) < file_size and not config.do_upload_max_size:
+        log.warning("File %s size is too big: %d, ignoring", file_path, file_size)
         return
 
     try:
         nc = NetlogFile()
         # nc = NetlogBinary(file_path.encode("utf-8", "replace"), dump_path, duplicate)
-        nc.init(dump_path, file_path, pids, metadata, category)
-        infd = open(file_path, "rb")  # rb
-        buf = infd.read(BUFSIZE)
-        log.info("Uploading file {} to host -> {}".format(file_path, dump_path))
-        while buf:
-            nc.send(buf, retry=True)
-            buf = infd.read(BUFSIZE)
+        nc.init(dump_path, file_path, pids, ppids, metadata, category, duplicated)
+        if not duplicated and file_path:
+            with open(file_path, "rb") as infd:
+                buf = infd.read(BUFSIZE)
+                while buf:
+                    nc.send(buf, retry=True)
+                    buf = infd.read(BUFSIZE)
     except Exception as e:
-        log.error("Exception uploading file {0} to host: {1}".format(file_path, e), exc_info=True)
+        log.exception("Exception uploading file %s to host: %s", file_path, e)
     finally:
-        if infd:
-            infd.close()
         if nc:
             nc.close()
 
 
-class NetlogConnection(object):
+def append_buffer_to_host(buffer, nc=None):
+    if nc.sock is None:
+        raise ConnectionResetError
+
+    size = len(buffer)
+    if config.upload_max_size < size + nc.buffer_size and not config.do_upload_max_size:
+        log.warning("Buffer is too big: %d; max size: %d", size + nc.buffer_size, config.upload_max_size)
+        return
+
+    idx = 0
+    while idx < size:
+        try:
+            nc.send(buffer[idx : idx + BUFSIZE], retry=False)
+            idx += BUFSIZE
+        except Exception:
+            raise ConnectionResetError
+
+    nc.buffer_size += size
+
+
+class NetlogConnection:
     def __init__(self, proto=""):
         config = Config(cfg="analysis.conf")
         self.hostip, self.hostport = config.ip, config.port
         self.sock = None
         self.proto = proto
         self.connected = False
+        self.buffer_size = 0
+
+    def __enter__(self):
+        return self
+
+    def __exit__(self, exc_type, exc_value, tb):
+        self.close()
 
     def connect(self):
         # Try to connect as quickly as possible. Just sort of force it to
@@ -74,52 +105,58 @@ def send(self, data, retry=True):
                 self.connect()
                 self.send(data, retry=False)
             else:
-                print(("Unhandled exception in NetlogConnection:", str(e)))
+                print(f"Unhandled exception in NetlogConnection: {e}")
         except Exception as e:
-            log.error(("Unhandled exception in NetlogConnection:", str(e)))
+            log.error("Unhandled exception in NetlogConnection: %s", e)
             # We really have nowhere to log this, if the netlog connection
             # does not work, we can assume that any logging won't work either.
             # So we just fail silently.
             self.close()
 
     def close(self):
+        if not self.sock:
+            return
+
         try:
             self.sock.shutdown(socket.SHUT_RDWR)
             self.sock.close()
             self.sock = None
         except Exception as e:
             print(e)
-            pass
 
 
 class NetlogBinary(NetlogConnection):
     def __init__(self, guest_path, uploaded_path, duplicated):
         if duplicated:
-            NetlogConnection.__init__(self, proto=b"DUPLICATEBINARY\n%s\n%s\n" % (uploaded_path.encode("utf-8", "replace"), guest_path))
+            NetlogConnection.__init__(
+                self, proto=b"DUPLICATEBINARY\n%s\n%s\n" % (uploaded_path.encode(errors="replace"), guest_path)
+            )
         else:
-            NetlogConnection.__init__(self, proto=b"BINARY\n%s\n%s\n" % (uploaded_path.encode("utf-8", "replace"), guest_path))
+            NetlogConnection.__init__(self, proto=b"BINARY\n%s\n%s\n" % (uploaded_path.encode(errors="replace"), guest_path))
         self.connect()
 
 
 class NetlogFile(NetlogConnection):
-    def init(self, dump_path, filepath=False, pids="", metadata="", category="files"):
+    def init(self, dump_path, filepath=False, pids="", ppids="", metadata="", category="files", duplicated=0):
         """
-            All arguments should be strings
+        All arguments should be strings
         """
-        if pids:
+        if not isinstance(pids, str):
             pids = " ".join(pids)
-        else:
-            pids = ""
+        if not isinstance(ppids, str):
+            ppids = " ".join(ppids)
         if filepath:
-            self.proto = b"FILE 2\n%s\n%s\n%s\n%s\n%s\n" % (
-                dump_path.encode("utf8"),
+            self.proto = b"FILE 2\n%s\n%s\n%s\n%s\n%s\n%s\n%d\n" % (
+                dump_path.encode(),
                 filepath.encode("utf-8", "replace"),
-                pids.encode("utf8") if isinstance(pids, str) else pids,
-                metadata.encode("utf8") if isinstance(metadata, str) else metadata,
-                category.encode("utf8") if isinstance(category, str) else category,
+                pids.encode(),
+                ppids.encode(),
+                metadata.encode() if isinstance(metadata, str) else metadata,
+                category.encode() if isinstance(category, str) else category,
+                1 if duplicated else 0,
             )
         else:
-            self.proto = b"FILE\n%s\n" % dump_path.encode("utf8")
+            self.proto = b"FILE\n%s\n" % dump_path.encode()
         self.connect()
 
 
@@ -131,4 +168,4 @@ def __init__(self):
 
     def emit(self, record):
         msg = self.format(record)
-        self.send(msg.encode("utf-8") + b"\n")
+        self.send(msg.encode() + b"\n")
diff --git a/analyzer/linux/lib/core/config.py b/analyzer/linux/lib/core/config.py
index 1409db28695..e4c7bbf078e 100644
--- a/analyzer/linux/lib/core/config.py
+++ b/analyzer/linux/lib/core/config.py
@@ -2,7 +2,6 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 import configparser
 
 
@@ -15,7 +14,7 @@ def __init__(self, cfg):
             for name, raw_value in config.items(section):
                 if name == "file_name":
                     value = config.get(section, name)
-                    if len(value) >= 2 and value[0] == "'" and value[-1] == "'":
+                    if len(value) >= 2 and value[0] == value[-1] == "'":
                         value = value[1:-1]
                 elif name == "options":
                     value = self.parse_options(config.get(section, name))
@@ -34,44 +33,37 @@ def __init__(self, cfg):
             self.options = {}
 
     def get(self, name, default=None):
-        if hasattr(self, name):
-            return getattr(self, name)
-        return default
+        return getattr(self, name, default)
 
     def get_options(self):
         """Get analysis options.
         @return: options dict.
         """
-        # The analysis package can be provided with some options in the
-        # following format:
-        #   option1=value1,option2=value2,option3=value3
-        #
-        # Here we parse such options and provide a dictionary that will be made
-        # accessible to the analysis package.
         options = {}
-        if hasattr(self, "options") and isinstance(self.options, str):
-            # Split the options by comma.
-            fields = self.options.split(",")
-            for field in fields:
-                # Split the name and the value of the option.
-                key, value = field.split("=", 1)
-                # If the parsing went good, we add the option to the dictionary.
-                options[key.strip()] = value.strip()
+        if isinstance(getattr(self, "options", None), str):
+            options = self.parse_options(self.options)
 
         return options
 
-    def parse_options(self, options):
+    @staticmethod
+    def parse_options(options):
         """Get analysis options.
         @return: options dict.
         """
         # The analysis package can be provided with some options in the
         # following format:
         #   option1=value1,option2=value2,option3=value3
+
+        # Here we parse such options and provide a dictionary that will be made
+        # accessible to the analysis package.
         ret = {}
+        # Split the options by comma.
         for field in options.split(","):
             if "=" not in field:
                 continue
 
+            # Split the name and the value of the option.
             key, value = field.split("=", 1)
+            # If the parsing went good, we add the option to the dictionary.
             ret[key.strip()] = value.strip()
         return ret
diff --git a/analyzer/linux/lib/core/packages.py b/analyzer/linux/lib/core/packages.py
index 4562cd54d50..199bd253834 100644
--- a/analyzer/linux/lib/core/packages.py
+++ b/analyzer/linux/lib/core/packages.py
@@ -2,18 +2,17 @@
 # Copyright (C) 2015 Dmitry Rodionov
 # This software may be modified and distributed under the terms
 # of the MIT license. See the LICENSE file for details.
-from __future__ import absolute_import
-
-from lib.common.apicalls import apicalls
 
 import inspect
-from os import sys, path, waitpid, environ
 import logging
-import time
+import shutil
 import subprocess
-from lib.common.results import NetlogFile
-from lib.core.config import Config
-from lib.api.process import Process
+import timeit
+from os import environ, makedirs, path, sys
+from threading import Event, Thread
+
+from lib.common.constants import OPT_CURDIR
+from lib.common.results import NetlogFile, append_buffer_to_host
 
 log = logging.getLogger(__name__)
 
@@ -29,7 +28,7 @@ def choose_package_class(file_type=None, file_name="", suggestion=None):
             log.info(file_name)
             name = "generic"
 
-    full_name = "modules.packages.%s" % name
+    full_name = f"modules.packages.{name}"
     try:
         # FIXME(rodionovd):
         # I couldn't figure out how to make __import__ import anything from
@@ -39,20 +38,21 @@ def choose_package_class(file_type=None, file_name="", suggestion=None):
         # from this module and then try to figure out the required member class
         module = __import__(full_name, globals(), locals(), ["*"])
     except ImportError:
-        raise Exception('Unable to import package "{0}": it does not ' "exist.".format(name))
+        raise Exception(f'Unable to import package "{name}": it does not exist')
     try:
         pkg_class = _found_target_class(module, name)
     except IndexError as err:
-        raise Exception("Unable to select package class (package={0}): " "{1}".format(full_name, err))
+        raise Exception(f"Unable to select package class (package={full_name}): {err}")
     return pkg_class
 
 
 def _found_target_class(module, name):
-    """ Searches for a class with the specific name: it should be
+    """Searches for a class with the specific name: it should be
     equal to capitalized $name.
     """
-    members = inspect.getmembers(module, inspect.isclass)
-    return [x[1] for x in members if x[0] == name.capitalize()][0]
+    for member in inspect.getmembers(module, inspect.isclass):
+        if member[0] == name.capitalize():
+            return member[1]
 
 
 def _guess_package_name(file_type, file_name):
@@ -72,33 +72,48 @@ def _guess_package_name(file_type, file_name):
         return "generic"
     elif "Unicode text" in file_type or file_name.endswith(".js"):
         return "js"
+    return None
+
+
+def create_custom_folders(directory_path: str):
+    """Create custom folders (recursively) given the full path."""
+    if path.exists(directory_path):
+        log.info("%s already exists, skipping creation", directory_path)
     else:
-        return None
+        try:
+            makedirs(directory_path)
+            log.info("%s created", directory_path)
+        except OSError:
+            log.error("Unable to create user-defined custom folder directory")
 
 
-class Package(object):
-    """ Base analysis package """
+class Package:
+    """Base analysis package"""
 
     def __init__(self, target, **kwargs):
         if not target:
-            raise Exception("Package(): `target` and `host` arguments are required")
+            raise Exception("Package(): 'target' and 'host' arguments are required")
 
         self.target = target
         # Any analysis options?
         self.options = kwargs.get("options", {})
         # A timeout for analysis
-        self.timeout = kwargs.get("timeout", None)
+        self.timeout = kwargs.get("timeout")
         # Command-line arguments for the target.
 
-        self.args = self.options.get("args", [])
+        self.args = self.options.get("arguments", [])
         # Choose an analysis method (or fallback to apicalls)
         self.method = self.options.get("method", "apicalls")
         # Should our target be launched as root or not
         self.run_as_root = _string_to_bool(self.options.get("run_as_root", "False"))
         # free: do not inject our monitor.
-        self.free = self.options.get("free", None)
+        self.free = self.options.get("free")
         self.proc = None
         self.pids = []
+        self.strace_output = kwargs.get("strace_ouput", "/tmp")
+        self.nc = NetlogFile()
+        self.thread = None
+        self._read_ready_ev = Event()
 
     def set_pids(self, pids):
         """Update list of monitored PIDs in the package context.
@@ -107,30 +122,45 @@ def set_pids(self, pids):
         self.pids = pids
 
     def prepare(self):
-        """ Preparation routine. Do anything you want here. """
+        """Preparation routine. Do anything you want here."""
         pass
 
+    def move_curdir(self, filepath):
+        """Move a file to the current working directory so it can be executed
+        from there.
+        @param filepath: the file to be moved
+        @return: the new filepath
+        """
+        if OPT_CURDIR not in self.options:
+            return filepath
+
+        curdir = path.expandvars(self.options[OPT_CURDIR])
+        create_custom_folders(curdir)
+
+        if not path.exists(curdir):
+            return filepath
+
+        newpath = path.join(curdir, path.basename(filepath))
+        shutil.move(filepath, newpath)
+        return newpath
+
     def start(self):
-        """ Runs an analysis process.
+        """Runs an analysis process.
         This function is a generator.
         """
         target_name = self.options.get("filename")
         if target_name:
             filepath = path.join(environ.get("TEMP", "/tmp"), target_name)
             # Remove the trailing slash (if any)
-            if filepath.endswith("/"):
-                self.target = filepath[:-1]
-            else:
-                self.target = filepath
+            self.target = filepath.rstrip("/")
+        self.target = self.move_curdir(self.target)
         self.prepare()
-        if self.free:
-            self.normal_analysis()
-            return self.proc.pid
-        elif self.method == "apicalls":
-            self.apicalls_analysis()
-            return self.proc.pid
-        else:
-            raise Exception("Unsupported analysis method. Try `apicalls`.")
+        self.nc.init("logs/strace.log", False)
+        self.thread = Thread(target=self.thread_send_strace_buffer, daemon=True)
+        self.thread.start()
+        self.strace_analysis()
+
+        return self.proc.pid
 
     def check(self):
         """Check."""
@@ -143,49 +173,68 @@ def package_files(self):
         """
         return None
 
+    def thread_send_strace_buffer(self):
+        # wait for the subprocess to start
+        self._read_ready_ev.wait()
+        for line in self.proc.stderr:
+            try:
+                append_buffer_to_host(line, self.nc)
+            except ConnectionResetError:
+                log.info("Strace streaming connection has been closed")
+                return
+            except Exception as e:
+                log.exception("Exception occured: %s", e)
+
     def finish(self):
         """Finish run.
         If specified to do so, this method dumps the memory of
         all running processes.
         """
-        if self.options.get("procmemdump"):
-            for pid in self.pids:
-                p = Process(pid=pid)
-                p.dump_memory()
-
+        self.nc.close()
         return True
 
     def get_pids(self):
         return []
 
-    def apicalls_analysis(self):
+    def strace_analysis(self):
         kwargs = {"args": self.args, "timeout": self.timeout, "run_as_root": self.run_as_root}
         log.info(self.target)
-        cmd = apicalls(self.target, **kwargs)
-        stap_start = time.time()
-        log.info(cmd)
-        self.proc = subprocess.Popen(cmd, env={"XAUTHORITY": "/root/.Xauthority", "DISPLAY": ":0"}, stderr=subprocess.PIPE, shell=True)
 
-        while "systemtap_module_init() returned 0" not in self.proc.stderr.readline().decode():
-            # log.debug(self.proc.stderr.readline())
-            pass
-
-        stap_stop = time.time()
-        log.info("Process startup took %.2f seconds" % (stap_stop - stap_start))
+        target_cmd = f"{self.target}"
+        if "args" in kwargs:
+            target_cmd += f' {" ".join(kwargs["args"])}'
+
+        # eg: strace_args=-e trace=!recvfrom;epoll_pwait
+        strace_args = self.options.get("strace_args", "").replace(";", ",")
+        # Tricking strace into always showing PID on stderr output
+        # https://github.com/strace/strace/issues/278#issuecomment-1815914576
+        cmd = f"sudo strace -o /dev/stderr -s 800 {strace_args} -ttf {target_cmd}"
+        # If nohuman is set to yes, it's possible to interact with interactive scripts or programs via VNC.
+        if self.options.get("nohuman"):
+            cmd = f"sudo strace -o /dev/stderr -s 800 {strace_args} -ttf xterm -hold -e {target_cmd}"
+        log.info(cmd)
+        self.proc = subprocess.Popen(
+            cmd, env={"XAUTHORITY": "/root/.Xauthority", "DISPLAY": ":0"}, stderr=subprocess.PIPE, shell=True
+        )
+        # give the reader thread a go-ahead
+        self._read_ready_ev.set()
+        log.info("Process started with strace")
         return True
 
     def normal_analysis(self):
         kwargs = {"args": self.args, "timeout": self.timeout, "run_as_root": self.run_as_root}
 
         # cmd = apicalls(self.target, **kwargs)
-        cmd = "%s %s" % (self.target, " ".join(kwargs["args"]))
-        stap_start = time.time()
-        self.proc = subprocess.Popen(cmd, env={"XAUTHORITY": "/root/.Xauthority", "DISPLAY": ":0"}, stderr=subprocess.PIPE, shell=True)
+        cmd = f"{self.target} {' '.join(kwargs['args'])}"
+        process_start = timeit.default_timer()
+        self.proc = subprocess.Popen(
+            cmd, env={"XAUTHORITY": "/root/.Xauthority", "DISPLAY": ":0"}, stderr=subprocess.PIPE, shell=True
+        )
 
         log.debug(self.proc.stderr.readline())
 
-        stap_stop = time.time()
-        log.info("Process startup took %.2f seconds" % (stap_stop - stap_start))
+        process_stop = timeit.default_timer()
+        log.info("Process startup took %.2f seconds", process_start - process_stop)
         return True
 
     @staticmethod
@@ -197,18 +246,6 @@ def _upload_file(local, remote):
                     nf.sock.sendall(chunk)  # dirty direct send, no reconnecting
             nf.close()
 
-    def stop(self):
-        log.info("Package requested stop")
-        try:
-            r = self.proc.poll()
-            log.debug("stap subprocess retval %r", r)
-            self.proc.kill()
-            # subprocess.check_call(["sudo","kill", str(self.proc.pid)])
-            waitpid(self.proc.pid, 0)
-            self._upload_file("stap.log", "logs/all.stap")
-        except Exception as e:
-            log.warning("Exception uploading log: %s", e)
-
 
 def _string_to_bool(raw):
     if not isinstance(raw, str):
diff --git a/analyzer/linux/lib/core/startup.py b/analyzer/linux/lib/core/startup.py
index 4ad5bba945a..070f09eb75a 100644
--- a/analyzer/linux/lib/core/startup.py
+++ b/analyzer/linux/lib/core/startup.py
@@ -2,9 +2,9 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-import os
 import logging
+import os
+from contextlib import suppress
 
 from lib.common.constants import PATHS
 from lib.common.results import NetlogHandler
@@ -18,10 +18,8 @@ def create_folders():
         if os.path.exists(folder):
             continue
 
-        try:
+        with suppress(OSError):
             os.makedirs(folder)
-        except OSError:
-            pass
 
 
 def init_logging():
diff --git a/analyzer/linux/modules/auxiliary/filecollector.py b/analyzer/linux/modules/auxiliary/filecollector.py
old mode 100644
new mode 100755
index 05c92cc542d..83fe88f4987
--- a/analyzer/linux/modules/auxiliary/filecollector.py
+++ b/analyzer/linux/modules/auxiliary/filecollector.py
@@ -1,17 +1,20 @@
+import hashlib
+import logging
 import os
 import time
-import logging
-import hashlib
 from threading import Thread
+
 from lib.common.abstracts import Auxiliary
-from lib.common.results import upload_to_host
+from lib.common.constants import ROOT
 from lib.common.hashing import hash_file
+from lib.common.results import upload_to_host
 
 try:
     import pyinotify
 
     HAVE_PYINOTIFY = True
 except ImportError:
+    print("Missed pyinotify dependency")
     HAVE_PYINOTIFY = False
 
 log = logging.getLogger(__name__)
@@ -23,31 +26,35 @@ class FileCollector(Auxiliary, Thread):
     """Gets files."""
 
     def start(self):
-        log.info("FileCollector started v0.07")
+        if not self.enabled:
+            return False
+
         self.event_processor.do_collect = True
 
     def stop(self):
-        """Stop monitoring."""
-        log.info("FileCollector requested stop")
+        if not self.enabled:
+            return False
+
         time.sleep(2)  # wait a while to process stuff in the queue
         self.do_run = False
-        self.thread.join()
-        log.info("FileCollector stopped")
-
-    def __init__(self):
-        log.info("FileCollector init started")
-        if HAVE_PYINOTIFY:
-            self.do_run = True
-
-        self.initComplete = False
-        self.thread = Thread(target=self.run)
-        self.thread.start()
-        while self.initComplete == False:
-            self.thread.join(0.5)
-
-        log.info("FileCollector init complete")
+        self.thread.join(timeout=5)
+
+    def __init__(self, options, config):
+        Auxiliary.__init__(self, options, config)
+        self.enabled = config.filecollector
+        self.do_run = self.enabled and HAVE_PYINOTIFY
+        if self.enabled:
+            self.initComplete = False
+            self.thread = Thread(target=self.run)
+            self.thread.start()
+            while not self.initComplete:
+                self.thread.join(0.5)
 
     def run(self):
+        if not HAVE_PYINOTIFY:
+            log.info("Missed dependency: pip3 install pyinotify")
+            return False
+
         log.info("FileCollector run started")
 
         for method in EventProcessor._methods:
@@ -59,7 +66,9 @@ def run(self):
 
         self.event_processor.do_collect = False
 
-        flags = pyinotify.IN_CREATE | pyinotify.IN_MODIFY | pyinotify.IN_CLOSE_WRITE | pyinotify.IN_MOVED_TO | pyinotify.IN_MOVED_FROM
+        flags = (
+            pyinotify.IN_CREATE | pyinotify.IN_MODIFY | pyinotify.IN_CLOSE_WRITE | pyinotify.IN_MOVED_TO | pyinotify.IN_MOVED_FROM
+        )
 
         watch_this = os.path.abspath("/")
         self.watch_manager.add_watch(watch_this, flags, auto_add=True)
@@ -72,19 +81,19 @@ def run(self):
             "var",  # we don't want to collect log files
             "lib",
             "lib64",
-            #                 "sbin",
-            #                 "etc",
+            # "sbin",
+            # "etc",
             "run",  # lots of spurious files
-            #                 "bin",
-            #                 "boot",
-            #                 "media",
-            #                 "srv"
+            # "bin",
+            # "boot",
+            # "media",
+            # "srv"
         ]
 
         for filename in os.listdir("/"):
-            if os.path.isdir("/" + filename) and filename not in ignore:
-                log.info("FileCollector trying to watch dir %s" % (filename))
-                watch_this = os.path.abspath("/" + filename)
+            if os.path.isdir(f"/{filename}") and filename not in ignore:
+                log.info("FileCollector trying to watch dir %s", filename)
+                watch_this = os.path.abspath(f"/{filename}")
                 self.watch_manager.add_watch(watch_this, flags, rec=True, auto_add=True)
 
         log.info("FileCollector setup complete")
@@ -104,6 +113,10 @@ def run(self):
 
     def process_generator(self, cls, method):
         # log.info("Generating message %s", method)
+
+        # excluded files or directories
+        noisy_content = ["sysmon", "gvfs-metadata"]
+
         def _method_name(self, event):
             try:
                 # log.info("Got file %s %s", event.pathname, method)
@@ -112,39 +125,45 @@ def _method_name(self, event):
                     # log.info("Not currently set to collect %s", event.pathname)
                     return
 
+                if event.pathname.startswith(ROOT):
+                    # log.info("Skipping random base directory for file %s", event.pathname)
+                    return
+
                 if event.pathname.startswith("/tmp/#"):
-                    # log.info("skipping wierd file %s", event.pathname)
+                    # log.info("Skipping wierd file %s", event.pathname)
                     return
 
                 if not os.path.isfile(event.pathname):
                     # log.info("Path is a directory or does not exist, ignoring: %s", event.pathname)
                     return
 
-                if os.path.basename(event.pathname) == "stap.log":
+                if "strace.log" in os.path.basename(event.pathname):
                     return
 
-                for x in range(0, 1):
-                    try:
-                        # log.info("trying to collect file %s", event.pathname)
-                        sha256 = hash_file(hashlib.sha256, event.pathname)
-                        filename = "%s_%s" % (sha256[:16], os.path.basename(event.pathname))
-                        if filename in self.uploadedHashes:
-                            # log.info("already collected file %s", event.pathname)
-                            return
-                        upload_path = os.path.join("files", filename)
-                        upload_to_host(event.pathname, upload_path)
-                        self.uploadedHashes.append(filename)
+                if any(noisy in event.pathname for noisy in noisy_content):
+                    # log.info("Skipping noisy file %s", event.pathname)
+                    return
+
+                try:
+                    # log.info("Trying to collect file %s", event.pathname)
+                    sha256 = hash_file(hashlib.sha256, event.pathname)
+                    if sha256 in self.uploadedHashes:
+                        # log.info("Already collected file %s", event.pathname)
                         return
-                    except Exception as e:
-                        log.info('Error dumping file from path "%s": %s', event.pathname, e)
+                    upload_path = os.path.join("files", sha256)
+                    upload_to_host(event.pathname, upload_path)
+                    self.uploadedHashes.append(sha256)
+                    return
+                except Exception as e:
+                    log.info('Error dumping file from path "%s": %s', event.pathname, e)
 
-                    # log.info("retrying %s", event.pathname)
-                    time.sleep(1)
+                # log.info("Retrying %s", event.pathname)
+                time.sleep(1)
 
             except Exception as e:
                 log.error("Exception processing event %s", e)
 
-        _method_name.__name__ = "process_{}".format(method)
+        _method_name.__name__ = f"process_{method}"
         setattr(cls, _method_name.__name__, _method_name)
 
 
diff --git a/analyzer/linux/modules/auxiliary/human.py b/analyzer/linux/modules/auxiliary/human.py
index ddaf15751be..3bbbbdcb5f0 100644
--- a/analyzer/linux/modules/auxiliary/human.py
+++ b/analyzer/linux/modules/auxiliary/human.py
@@ -3,24 +3,28 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-import random
 import logging
-from threading import Thread
+import random
 import time
-import subprocess
-import os
-from Xlib.display import Display
-import pyautogui
+from threading import Thread
+
+try:
+    import pyautogui
+    from Xlib.display import Display
+
+    HAVE_GUI_LIBS = True
+except Exception:
+    HAVE_GUI_LIBS = False
 
 from lib.common.abstracts import Auxiliary
 
 log = logging.getLogger(__name__)
-logging.disable(level=logging.DEBUG)
 
-RESOLUTION = {"x": pyautogui.size()[0], "y": pyautogui.size()[1]}
+if HAVE_GUI_LIBS:
+    RESOLUTION = {"x": pyautogui.size()[0], "y": pyautogui.size()[1]}
 
-DELAY = 0.5
-pyautogui.PAUSE = 1
+    DELAY = 0.5
+    pyautogui.PAUSE = 1
 
 
 def move_mouse():
@@ -42,18 +46,18 @@ def click_mouse():
 def destroyOfficeWindows(window):
     try:
         children = window.query_tree().children
-    except:
+    except Exception:
         return
     for w in children:
-        if w.get_wm_class() in [
+        if w.get_wm_class() in (
             ("libreoffice", "libreoffice-writer"),
             # ('soffice.bin', 'soffice.bin'),
             ("libreoffice", "libreoffice-calc"),
             ("libreoffice", "libreoffice-draw"),
             ("libreoffice", "libreoffice-impress"),
             ("win", "Xpdf"),
-        ]:
-            log.debug("Destroying: %s" % w.get_wm_class()[1])
+        ):
+            log.debug("Destroying: %s", w.get_wm_class()[1])
             w.destroy()
         destroyOfficeWindows(w)
 
@@ -62,33 +66,38 @@ class Human(Thread, Auxiliary):
     """Simulate human."""
 
     def start(self):
-        log.info("Human started v0.02")
         self.do_run = False
 
-    def __init__(self, options={}, analyzer=None):
-        self.do_run = True
+    def __init__(self, options, config):
+        Auxiliary.__init__(self, options, config)
+        self.config = config
+        self.enabled = self.config.human_linux
+        self.do_run = self.enabled and HAVE_GUI_LIBS
 
         Thread.__init__(self)
-        Auxiliary.__init__(self, options, analyzer)
         self.initComplete = False
         self.thread = Thread(target=self.run)
         self.thread.start()
-        while self.initComplete == False:
+        while not self.initComplete:
             self.thread.join(0.5)
 
         log.debug("Human init complete")
 
     def stop(self):
-        """Stop Human."""
-        log.debug("Human requested stop")
+        if not self.enabled:
+            return False
+
         self.do_run = False
         self.thread.join()
-        log.debug("Human stopped")
 
     def run(self):
         """Run Human.
         @return: operation status.
         """
+        if not self.enabled:
+            self.initComplete = True
+            return False
+
         seconds = 0
         # Global disable flag.
         if "human" in self.options:
diff --git a/analyzer/linux/modules/auxiliary/screenshots.py b/analyzer/linux/modules/auxiliary/screenshots.py
index b5890d64993..b1ef4c83100 100644
--- a/analyzer/linux/modules/auxiliary/screenshots.py
+++ b/analyzer/linux/modules/auxiliary/screenshots.py
@@ -1,30 +1,23 @@
 # Copyright (C) 2010-2015 Cuckoo Foundation.
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
-from __future__ import absolute_import
-import logging
 
-log = logging.getLogger(__name__)
+import asyncio
+import logging
+import threading
+from threading import Thread
 
-log.debug("Importing 'time'")
-import time
+from lib.api.screenshot import HAVE_DBUS_NEXT, HAVE_PIL
 
-log.debug("Importing 'StringIO'")
-from io import BytesIO
+if HAVE_PIL and HAVE_DBUS_NEXT:
+    from PIL import Image
 
-log.debug("Importing 'Thread'")
-from threading import Thread
+    from lib.api.screenshot import Screenshot, ScreenshotGrabber, ScreenshotsUnsupported
 
-log.debug("Importing 'Auxiliary'")
 from lib.common.abstracts import Auxiliary
+from lib.common.results import upload_to_host
 
-log.debug("Importing 'NetlogFile'")
-from lib.common.results import NetlogFile
-
-log.debug("Importing 'Screenshot'")
-from lib.api.screenshot import Screenshot
-
-log.debug("Imports OK")
+log = logging.getLogger(__name__)
 
 SHOT_DELAY = 1
 # Skip the following area when comparing screen shots.
@@ -33,54 +26,72 @@
 SKIP_AREA = None
 
 
-class Screenshots(Auxiliary, Thread):
+class Screenshots(Thread, Auxiliary):
     """Take screenshots."""
 
-    def __init__(self, options={}, analyzer=None):
-        Auxiliary.__init__(self, options={}, analyzer=None)
+    def __init__(self, options, config):
+        Auxiliary.__init__(self, options, config)
+        self.enabled = config.screenshots_linux
+        self.event = threading.Event()
         Thread.__init__(self)
-        self.do_run = True
 
     def stop(self):
-        """Stop screenshotting."""
-        self.do_run = False
+        if not self.enabled:
+            return False
+
+        self.event.set()
 
     def run(self):
         """Run screenshotting.
         @return: operation status.
         """
-        if not Screenshot().have_pil():
-            log.warning("Python Image Library is not installed, " "screenshots are disabled")
+        if not self.enabled:
+            return False
+
+        if not HAVE_PIL:
+            log.warning("Python Image Library is not installed, screenshots are disabled")
             return False
 
+        if not HAVE_DBUS_NEXT:
+            log.warning("dbus_next is not installed, screenshots are disabled")
+            return False
+
+        return asyncio.run(self.take_screenshots())
+
+    async def take_screenshots(self):
         img_counter = 0
         img_last = None
 
-        while self.do_run:
-            time.sleep(SHOT_DELAY)
-
-            try:
-                img_current = Screenshot().take()
-            except IOError as e:
-                log.error("Cannot take screenshot: %s", e)
-                continue
-
-            if img_last:
-                if Screenshot().equal(img_last, img_current, SKIP_AREA):
-                    continue
-
-            img_counter += 1
-            # workaround as PIL can't write to the socket file object :(
-            tmpio = BytesIO()
-            img_current.save(tmpio, format="JPEG")
-            tmpio.seek(0)
-
-            # now upload to host from the StringIO
-            nf = NetlogFile()
-            nf.init("shots/%s.jpg" % str(img_counter).rjust(4, "0"))
-            for chunk in tmpio:
-                nf.sock.send(chunk)
-            nf.close()
-            img_last = img_current
+        try:
+            async with ScreenshotGrabber() as grabber:
+                while not self.event.is_set():
+                    await asyncio.sleep(SHOT_DELAY)
+
+                    try:
+                        img_path = await grabber.take_screenshot()
+                    except Exception as e:
+                        log.error("Cannot take screenshot: %s", e)
+                        continue
+
+                    if not img_path:
+                        continue
+
+                    # Technically, we shouldn't be using this blocking call
+                    # (`close` or `upload_to_host`` either) in an asyncio
+                    # event loop, but since this function is the only task we're running,
+                    # we should be ok.
+                    img_current = Image.open(img_path)
+
+                    if img_last and Screenshot.equal(img_last, img_current, SKIP_AREA):
+                        continue
+
+                    img_counter += 1
+                    upload_to_host(img_path, f"shots/{img_counter:0>4}.png")
+                    if img_last:
+                        img_last.close()
+                    img_last = img_current
+        except ScreenshotsUnsupported as err:
+            log.error(str(err))
+            return False
 
         return True
diff --git a/analyzer/linux/modules/auxiliary/stap.py b/analyzer/linux/modules/auxiliary/stap.py
deleted file mode 100644
index 2aff422d1ea..00000000000
--- a/analyzer/linux/modules/auxiliary/stap.py
+++ /dev/null
@@ -1,67 +0,0 @@
-# Copyright (C) 2015-2017 Cuckoo Foundation.
-# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
-# See the file 'docs/LICENSE' for copying permission.
-
-from __future__ import absolute_import
-import logging
-import os
-import subprocess
-import time
-
-from lib.common.abstracts import Auxiliary
-from lib.common.results import upload_to_host
-from lib.core.config import Config
-
-log = logging.getLogger(__name__)
-
-
-class STAP(Auxiliary):
-    """System-wide syscall trace with stap."""
-
-    priority = -10  # low prio to wrap tightly around the analysis
-
-    def __init__(self, options={}, analyzer=None):
-        self.config = Config(cfg="analysis.conf")
-        self.proc = None
-
-    def start(self):
-        # helper function locating the stap module
-        def has_stap(p):
-            only_stap = [fn for fn in os.listdir(p) if fn.startswith("stap_") and fn.endswith(".ko")]
-            if only_stap:
-                return os.path.join(p, only_stap[0])
-            return False
-
-        path_cfg = self.config.get("analyzer_stap_path", None)
-        if path_cfg and os.path.exists(path_cfg):
-            path = path_cfg
-        elif os.path.exists("/root/.cuckoo") and has_stap("/root/.cuckoo"):
-            path = has_stap("/root/.cuckoo")
-        elif os.path.exists("/root/.cape") and has_stap("/root/.cape"):
-            path = has_stap("root/.cape")
-        else:
-            log.warning("Could not find STAP LKM, aborting systemtap analysis.")
-            return False
-
-        stap_start = time.time()
-        self.proc = subprocess.Popen(["staprun", "-vv", "-x", str(os.getpid()), "-o", "stap.log", path,], stderr=subprocess.PIPE)
-
-        while "systemtap_module_init() returned 0" not in self.proc.stderr.readline().decode("utf8"):
-            pass
-
-        self.proc.terminate()
-        self.proc.wait()
-
-        stap_stop = time.time()
-        log.info("STAP aux module startup took %.2f seconds" % (stap_stop - stap_start))
-        return True
-
-    def stop(self):
-        try:
-            r = self.proc.poll()
-            log.debug("stap subprocess retval %r", r)
-            self.proc.kill()
-        except Exception as e:
-            log.warning("Exception killing stap: %s", e)
-
-        upload_to_host("stap.log", "stap/stap.log", False)
diff --git a/analyzer/linux/modules/packages/bash.py b/analyzer/linux/modules/packages/bash.py
index 6a6bd0455b4..7b1946d8c6e 100644
--- a/analyzer/linux/modules/packages/bash.py
+++ b/analyzer/linux/modules/packages/bash.py
@@ -7,7 +7,7 @@
 
 
 class Bash(Package):
-    """ Bash shell script analysys package. """
+    """Bash shell script analysys package."""
 
     def prepare(self):
         self.args = [self.target] + self.args
diff --git a/analyzer/linux/modules/packages/deb.py b/analyzer/linux/modules/packages/deb.py
new file mode 100644
index 00000000000..4392e2e6a04
--- /dev/null
+++ b/analyzer/linux/modules/packages/deb.py
@@ -0,0 +1,14 @@
+#!/usr/bin/env python
+# Copyright (C) 2024 xiangchen96
+# This software may be modified and distributed under the terms
+# of the MIT license. See the LICENSE file for details.
+
+from lib.core.packages import Package
+
+
+class Deb(Package):
+    """Deb analysis package."""
+
+    def prepare(self):
+        self.args = [self.target] + self.args
+        self.target = "dpkg -i"
diff --git a/analyzer/linux/modules/packages/doc.py b/analyzer/linux/modules/packages/doc.py
index ec5ccc92e21..bea8f2eafd2 100644
--- a/analyzer/linux/modules/packages/doc.py
+++ b/analyzer/linux/modules/packages/doc.py
@@ -4,13 +4,14 @@
 # of the MIT license. See the LICENSE file for details.
 
 from os import system
+
 from lib.core.packages import Package
 
 
 class Doc(Package):
-    """ LibreOffice document. """
+    """LibreOffice document."""
 
     def prepare(self):
-        system('/bin/chmod +x "%s"' % self.target)
+        system(f'/bin/chmod +x "{self.target}"')
         self.args = [self.target] + self.args
         self.target = "/usr/bin/libreoffice --writer"
diff --git a/analyzer/linux/modules/packages/firefox.py b/analyzer/linux/modules/packages/firefox.py
index 48725696e9d..72d3e7a581b 100644
--- a/analyzer/linux/modules/packages/firefox.py
+++ b/analyzer/linux/modules/packages/firefox.py
@@ -3,12 +3,11 @@
 # This software may be modified and distributed under the terms
 # of the MIT license. See the LICENSE file for details.
 
-from os import system
 from lib.core.packages import Package
 
 
 class Ff(Package):
-    """ Firefox analysys package. """
+    """Firefox analysys package."""
 
     def prepare(self):
         self.args = [self.target] + self.args
diff --git a/analyzer/linux/modules/packages/generic.py b/analyzer/linux/modules/packages/generic.py
index db328f8c22a..5a758e0bec6 100644
--- a/analyzer/linux/modules/packages/generic.py
+++ b/analyzer/linux/modules/packages/generic.py
@@ -4,15 +4,16 @@
 # of the MIT license. See the LICENSE file for details.
 
 from os import system
+
 from lib.core.packages import Package
 
 
 class Generic(Package):
-    """ Generic analysis package. """
+    """Generic analysis package."""
 
     def prepare(self):
         # Make sure that our target is executable
         # /usr/bin/open will handle it
-        system('/bin/chmod +x "%s"' % self.target)
+        system(f'/bin/chmod +x "{self.target}"')
         self.args = [self.target] + self.args
         self.target = "sh -c"
diff --git a/analyzer/linux/modules/packages/js.py b/analyzer/linux/modules/packages/js.py
index 14bff08fe1c..be3ce6239b1 100644
--- a/analyzer/linux/modules/packages/js.py
+++ b/analyzer/linux/modules/packages/js.py
@@ -7,7 +7,7 @@
 
 
 class Js(Package):
-    """ Java script analysys package. """
+    """Java script analysys package."""
 
     def prepare(self):
         self.args = [self.target] + self.args
diff --git a/analyzer/linux/modules/packages/pdf.py b/analyzer/linux/modules/packages/pdf.py
index d351f0ff796..0fac2e88034 100644
--- a/analyzer/linux/modules/packages/pdf.py
+++ b/analyzer/linux/modules/packages/pdf.py
@@ -4,13 +4,14 @@
 # of the MIT license. See the LICENSE file for details.
 
 from os import system
+
 from lib.core.packages import Package
 
 
 class Pdf(Package):
-    """ Bash shell script analysys package. """
+    """Bash shell script analysys package."""
 
     def prepare(self):
-        system('/bin/chmod +x "%s"' % self.target)
+        system(f'/bin/chmod +x "{self.target}"')
         self.args = [self.target] + self.args
         self.target = "/usr/bin/xpdf"
diff --git a/analyzer/linux/modules/packages/perl.py b/analyzer/linux/modules/packages/perl.py
index fcc3fb5d9cf..64d53ed4360 100644
--- a/analyzer/linux/modules/packages/perl.py
+++ b/analyzer/linux/modules/packages/perl.py
@@ -3,14 +3,12 @@
 # This software may be modified and distributed under the terms
 # of the MIT license. See the LICENSE file for details.
 
-from os import system
 from lib.core.packages import Package
 
 
 class Perl(Package):
-    """ Mach-O executable analysys package. """
+    """Perl script analysis package."""
 
     def prepare(self):
-        # Make sure that our target is executable
-        # /usr/bin/open will handle it
-        system('/bin/chmod +x "%s"' % self.target)
+        self.args = [self.target] + self.args
+        self.target = "/usr/bin/perl"
diff --git a/analyzer/linux/modules/packages/python.py b/analyzer/linux/modules/packages/python.py
index 01b7cb85ef8..b0a5dd408c4 100644
--- a/analyzer/linux/modules/packages/python.py
+++ b/analyzer/linux/modules/packages/python.py
@@ -7,7 +7,7 @@
 
 
 class Python(Package):
-    """ Python script analysis package. """
+    """Python script analysis package."""
 
     def prepare(self):
         self.args = [self.target] + self.args
diff --git a/analyzer/linux/modules/packages/python_whl.py b/analyzer/linux/modules/packages/python_whl.py
new file mode 100644
index 00000000000..1e2be2c420b
--- /dev/null
+++ b/analyzer/linux/modules/packages/python_whl.py
@@ -0,0 +1,14 @@
+#!/usr/bin/env python
+# Copyright (C) 2024 xiangchen96
+# This software may be modified and distributed under the terms
+# of the MIT license. See the LICENSE file for details.
+
+from lib.core.packages import Package
+
+
+class Python_whl(Package):
+    """Python wheel analysis package."""
+
+    def prepare(self):
+        self.args = [self.target] + self.args
+        self.target = "/usr/bin/python -m pip install"
diff --git a/analyzer/linux/modules/packages/wget.py b/analyzer/linux/modules/packages/wget.py
index 7ded6ee627b..03a6981fc62 100644
--- a/analyzer/linux/modules/packages/wget.py
+++ b/analyzer/linux/modules/packages/wget.py
@@ -3,11 +3,11 @@
 # This software may be modified and distributed under the terms
 # of the MIT license. See the LICENSE file for details.
 
-from os import system, chmod
 import logging
+from os import chmod, system
 from subprocess import check_output
-from lib.core.packages import Package, choose_package_class
 
+from lib.core.packages import Package, choose_package_class
 
 log = logging.getLogger(__name__)
 
@@ -20,12 +20,12 @@ def _fileinfo(target):
 
 
 class Wget(Package):
-    """ Mach-O executable analysys package. """
+    """Mach-O executable analysys package."""
 
     def prepare(self):
         # todo use random tempfile
         # ToDo random name
-        ret = system('wget "%s" -O /tmp/file_malwr --no-check-certificate' % self.target)
+        ret = system(f'wget "{self.target}" -O /tmp/file_malwr --no-check-certificate')
         log.info(ret)
         # py3 permission
         chmod("/tmp/file_malwr", 0o755)
diff --git a/analyzer/linux/modules/packages/zip.py b/analyzer/linux/modules/packages/zip.py
index 3c44c1545fc..20e475b7071 100644
--- a/analyzer/linux/modules/packages/zip.py
+++ b/analyzer/linux/modules/packages/zip.py
@@ -4,26 +4,26 @@
 # of the MIT license. See the LICENSE file for details.
 
 import logging
-from shutil import move
-from os import path, environ
+from os import environ, path
 from random import SystemRandom
+from shutil import move
 from string import ascii_letters
 from subprocess import check_output
-from zipfile import ZipFile, BadZipfile
+from zipfile import BadZipfile, ZipFile
+
 from lib.core.packages import Package, choose_package_class
 
 log = logging.getLogger(__name__)
 
 
 class Zip(Package):
-
     real_package = None
 
     def prepare(self):
         password = self.options.get("password")
         files = self._extract(self.target, password)
         if not files or len(files) == 0:
-            raise Exception("Invalid (or empty) zip archive: %s" % self.target)
+            raise Exception(f"Invalid (or empty) zip archive: {self.target}")
         # Look for a file to analyse
         target_name = self.options.get("file")
         if not target_name:
@@ -33,10 +33,7 @@ def prepare(self):
 
         filepath = path.join(environ.get("TEMP", "/tmp"), target_name)
         # Remove the trailing slash (if any)
-        if filepath.endswith("/"):
-            self.target = filepath[:-1]
-        else:
-            self.target = filepath
+        self.target = filepath.rstrip("/")
 
         # Since we don't know what kind of file we're going to analyse, let's
         # detect it automatically and create an appropriate analysis package
@@ -47,9 +44,9 @@ def prepare(self):
         pkg_class = choose_package_class(file_info, target_name)
 
         if not pkg_class:
-            raise Exception("Unable to detect analysis package for the file %s" % target_name)
+            raise Exception(f"Unable to detect analysis package for the file {target_name}")
         else:
-            log.info('Analysing file "%s" using package "%s"', target_name, str(pkg_class))
+            log.info('Analysing file "%s" using package "%s"', target_name, pkg_class)
 
         kwargs = {"options": self.options, "timeout": self.timeout}
         # We'll forward start() method invocation to the proper package later
@@ -73,7 +70,7 @@ def _extract(self, filename, password):
         with ZipFile(archive_path, "r") as archive:
             try:
                 archive.extractall(path=extract_path, pwd=password)
-                log.info("extractall")
+                log.info("Extracted all")
             except BadZipfile:
                 raise Exception("Invalid Zip file")
             # Try to extract it again, but with a default password
@@ -81,7 +78,7 @@ def _extract(self, filename, password):
                 try:
                     archive.extractall(path=extract_path, pwd="infected")
                 except RuntimeError as err:
-                    raise Exception("Unable to extract Zip file: %s" % err)
+                    raise Exception(f"Unable to extract Zip file: {err}")
             finally:
                 self._extract_nested_archives(archive, extract_path, password)
         return archive.namelist()
@@ -93,23 +90,20 @@ def _extract_nested_archives(self, archive, where, password):
 
 
 def _prepare_archive_at_path(filename):
-    """ Verify that there's a readable zip archive at the given path.
+    """Verify that there's a readable zip archive at the given path.
     This function returns a new name for the archive (for most cases it's
     the same as the original one; but if an archive named "foo.zip" contains
     a file named "foo" this archive will be renamed to avoid being overwrite.
     """
     # Verify that the archive is actually readable
     try:
-        with ZipFile(filename, "r") as archive:
-            archive.close()
+        with ZipFile(filename, "r"):
+            pass
     except BadZipfile:
         return None
     # Test if zip file contains a file named as itself
     if _is_overwritten(filename):
-        log.debug(
-            "ZIP file contains a file with the same name, original is \
-        going to be overwrite"
-        )
+        log.debug("ZIP file contains a file with the same name, original is going to be overwritten")
         # In this case we just change the file name
         new_zip_path = filename + _random_extension()
         move(filename, new_zip_path)
@@ -118,16 +112,16 @@ def _prepare_archive_at_path(filename):
 
 
 def _is_overwritten(zip_path):
-    archive = ZipFile(zip_path, "r")
     try:
-        # Test if zip file contains a file named as itself
-        return any(n == path.basename(zip_path) for n in archive.namelist())
+        with ZipFile(zip_path, "r") as archive:
+            # Test if zip file contains a file named as itself
+            return any(n == path.basename(zip_path) for n in archive.namelist())
     except BadZipfile:
         raise Exception("Invalid Zip file")
 
 
 def _random_extension(length=5):
-    return "." + "".join(SystemRandom().choice(ascii_letters) for _ in range(length))
+    return f".{''.join(SystemRandom().choice(ascii_letters) for _ in range(length))}"
 
 
 def _fileinfo(target):
diff --git a/analyzer/windows/analyzer.py b/analyzer/windows/analyzer.py
index 4b4dfd66ad5..f6b540eece7 100644
--- a/analyzer/windows/analyzer.py
+++ b/analyzer/windows/analyzer.py
@@ -2,55 +2,66 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 # TODO
-#  https://github.com/cuckoosandbox/cuckoo/blob/ad5bf8939fb4b86d03c4d96014b174b8b56885e3/cuckoo/core/plugins.py#L29
+#  https://github.com/cuckoosandbox/cuckoo/blob/ad5bf8939fb4b86d03c4d96014b174b8b56885e3/cuckoo/core/plugins.py#L29
 
-from __future__ import absolute_import
+import hashlib
+import importlib
+import inspect
+import logging
 import os
-import sys
+import pkgutil
 import socket
 import struct
-import pkgutil
-import logging
-import hashlib
-import traceback
 import subprocess
-from ctypes import create_string_buffer, create_unicode_buffer, POINTER
-from ctypes import c_wchar_p, byref, c_int, sizeof, cast, c_void_p, c_ulong, addressof
-
-from threading import Lock, Thread
-from datetime import datetime, timedelta
+import sys
+import timeit
+import traceback
+from contextlib import suppress
+from ctypes import byref, c_buffer, c_int, create_string_buffer, sizeof, wintypes
+from pathlib import Path
 from shutil import copy
+from threading import Lock, Thread
+from typing import Union
 from urllib.parse import urlencode
 from urllib.request import urlopen
 
-from lib.common.rand import random_string
 from lib.api.process import Process
-from lib.common.abstracts import Package, Auxiliary
-from lib.common.constants import PATHS, PIPE, SHUTDOWN_MUTEX, TERMINATE_EVENT, LOGSERVER_PREFIX
-from lib.common.constants import CAPEMON32_NAME, CAPEMON64_NAME, LOADER32_NAME, LOADER64_NAME
-from lib.common.defines import ADVAPI32, KERNEL32, NTDLL
-from lib.common.defines import ERROR_MORE_DATA, ERROR_PIPE_CONNECTED
-from lib.common.defines import PIPE_ACCESS_DUPLEX, PIPE_TYPE_MESSAGE
-from lib.common.defines import PIPE_READMODE_MESSAGE, PIPE_WAIT
-from lib.common.defines import PIPE_UNLIMITED_INSTANCES, INVALID_HANDLE_VALUE
-from lib.common.defines import SYSTEM_PROCESS_INFORMATION
-from lib.common.defines import EVENT_MODIFY_STATE, SECURITY_DESCRIPTOR, SECURITY_ATTRIBUTES, SYSTEMTIME
+from lib.common.abstracts import Auxiliary, Package
+from lib.common.constants import (
+    CAPEMON32_NAME,
+    CAPEMON64_NAME,
+    LOADER32_NAME,
+    LOADER64_NAME,
+    LOGSERVER_PREFIX,
+    OPT_CURDIR,
+    OPT_EXECUTIONDIR,
+    PATHS,
+    PIPE,
+    SHUTDOWN_MUTEX,
+    TERMINATE_EVENT,
+)
+from lib.common.defines import (
+    ADVAPI32,
+    EVENT_MODIFY_STATE,
+    KERNEL32,
+    MAX_PATH,
+    PROCESS_QUERY_LIMITED_INFORMATION,
+    PSAPI,
+    SHELL32,
+    USER32,
+)
 from lib.common.exceptions import CuckooError, CuckooPackageError
 from lib.common.hashing import hash_file
 from lib.common.results import upload_to_host
 from lib.core.config import Config
-from lib.core.pipe import PipeServer, PipeForwarder, PipeDispatcher
-from lib.core.pipe import disconnect_pipes
 from lib.core.packages import choose_package
+from lib.core.pipe import PipeDispatcher, PipeForwarder, PipeServer, disconnect_pipes
 from lib.core.privileges import grant_debug_privilege
-from lib.core.startup import create_folders, init_logging, disconnect_logger, set_clock
+from lib.core.startup import create_folders, disconnect_logger, init_logging, set_clock
 from modules import auxiliary
 
 log = logging.getLogger()
 
-INJECT_CREATEREMOTETHREAD = 0
-INJECT_QUEUEUSERAPC = 1
-
 BUFSIZE = 512
 FILES_LIST_LOCK = Lock()
 FILES_LIST = []
@@ -67,6 +78,7 @@
 LOADER32 = None
 LOADER64 = None
 ANALYSIS_TIMED_OUT = False
+INTERACTIVE_MODE = False
 
 PID = os.getpid()
 PPID = Process(pid=PID).get_parent_pid()
@@ -85,27 +97,81 @@ def pid_from_service_name(servicename):
     return thepid
 
 
-def in_protected_path(fname):
-    """Checks file name against some protected names."""
-    if not fname:
-        return False
+def get_explorer_pid():
+    explorer_pid = c_int(0)
+    USER32.GetWindowThreadProcessId(USER32.GetShellWindow(), byref(explorer_pid))
+    return explorer_pid.value
+
+
+def pids_from_image_names(suffixlist):
+    """Get PIDs for processes whose image name ends with one of the given suffixes.
 
-    fnamelower = fname.lower()
+    Matches are not sensitive to casing; both the suffixes and process
+    image names are normalized prior to comparison.
+    """
+    retpids = []
+    arr = wintypes.DWORD * 10000  # arbitrary - is this enough?
+    lpid_process_ptr = arr()
+    num_bytes = wintypes.DWORD()
+    image_name = c_buffer(MAX_PATH)
+    ok = PSAPI.EnumProcesses(byref(lpid_process_ptr), sizeof(lpid_process_ptr), byref(num_bytes))
+    if not ok:
+        log.debug("psapi.EnumProcesses failed")
+        return retpids
+
+    suffixlist = tuple([x.lower() for x in suffixlist])
+    num_processes = int(num_bytes.value / sizeof(wintypes.DWORD))
+    pids = lpid_process_ptr[:num_processes]
+
+    for pid in pids:
+        h_process = KERNEL32.OpenProcess(PROCESS_QUERY_LIMITED_INFORMATION, False, pid)
+        if not h_process:
+            # log.debug("kernel32.OpenProcess failed for pid: %d", pid)
+            continue
+        n = PSAPI.GetProcessImageFileNameA(h_process, image_name, MAX_PATH)
+        KERNEL32.CloseHandle(h_process)
+        if not n:
+            # log.debug("psapi.GetProcessImageFileNameA failed for pid: %d", pid)
+            continue
+        image_name_pystr = image_name.value.decode().lower()
+        # e.g., image name: "\device\harddiskvolume4\windows\system32\services.exe"
+        if image_name_pystr.endswith(suffixlist):
+            retpids.append(pid)
+    return retpids
+
+
+def _normalized_protected_path(path: Union[str, bytes]) -> bytes:
+    if isinstance(path, str):
+        path = path.encode()
+    if os.path.isdir(path) and path[-1] != b"\\":
+        path += b"\\"
+    return path.lower()
 
-    for name in PROTECTED_PATH_LIST:
-        if name[-1] == "\\" and fnamelower.startswith(name):
+
+def in_protected_path(path: Union[str, bytes]) -> bool:
+    """Checks if a path is protected."""
+    if not path:
+        return False
+    path = _normalized_protected_path(path)
+    for protected_path in PROTECTED_PATH_LIST:
+        # protected_path is a list of bytes. The last one in the list is protected_path[-1:]
+        if protected_path[-1:] == b"\\" and path.startswith(protected_path):
             return True
-        elif fnamelower == name:
+        if protected_path == path:
             return True
-
     return False
 
 
+def add_protected_path(name: Union[str, bytes]):
+    """Adds a pathname to the protected list"""
+    PROTECTED_PATH_LIST.append(_normalized_protected_path(name))
+
+
 def add_pid_to_aux_modules(pid):
     for aux in AUX_ENABLED:
         try:
             aux.add_pid(pid)
-        except:
+        except Exception:
             continue
 
 
@@ -113,32 +179,24 @@ def del_pid_from_aux_modules(pid):
     for aux in AUX_ENABLED:
         try:
             aux.del_pid(pid)
-        except:
+        except Exception:
             continue
 
 
-def add_protected_path(name):
-    """Adds a pathname to the protected list"""
-    if os.path.isdir(name) and name[-1] != b"\\":
-        PROTECTED_PATH_LIST.append(name.lower() + b"\\")
-    else:
-        PROTECTED_PATH_LIST.append(name.lower())
-
-
 def upload_files(folder):
     """Create a copy of the given file path."""
-    log_folder = PATHS["root"] + "\\" + folder
+    log_folder = f"{PATHS['root']}\\{folder}"
     try:
         if os.path.exists(log_folder):
-            log.info('Uploading files at path "%s" ', log_folder)
+            log.info('Uploading files at path "%s"', log_folder)
         else:
-            log.warning('Folder at path "%s" does not exist, skip.', log_folder)
+            log.warning('Folder at path "%s" does not exist, skipping', log_folder)
             return
     except IOError as e:
         log.warning('Unable to access folder at path "%s": %s', log_folder, e)
         return
 
-    for root, dirs, files in os.walk(log_folder):
+    for root, _, files in os.walk(log_folder):
         for file in files:
             file_path = os.path.join(root, file)
             upload_path = os.path.join(folder, file)
@@ -164,13 +222,21 @@ def __init__(self):
         self.do_run = True
         self.time_counter = 0
 
+        self.command_pipe = None
+        self.default_dll = None
         self.process_lock = Lock()
         self.files_list_lock = Lock()
         self.pid = os.getpid()
+        self.pid_check = False
         self.ppid = Process(pid=self.pid).get_parent_pid()
         self.files = Files()
+        self.options = {}
         self.process_list = ProcessList()
+
+        # analysis package class
         self.package = None
+        # analysis package name
+        self.package_name = None
 
         self.CRITICAL_PROCESS_LIST = []
         self.SERVICES_PID = None
@@ -182,43 +248,9 @@ def __init__(self):
         self.LASTINJECT_TIME = None
         self.NUM_INJECTED = 0
 
-    def get_pipe_path(self, name):
-        """Return \\\\.\\PIPE on Windows XP and \\??\\PIPE elsewhere."""
-        version = sys.getwindowsversion()
-        if version.major == 5 and version.minor == 1:
-            return "\\\\.\\PIPE\\" + name
-        return "\\??\\PIPE\\" + name
-
-    def pids_from_process_name_list(self, namelist):
-        proclist = []
-        pidlist = []
-        buf = create_unicode_buffer(1024 * 1024)
-        p = cast(buf, c_void_p)
-        retlen = c_ulong(0)
-        retval = NTDLL.NtQuerySystemInformation(5, buf, 1024 * 1024, byref(retlen))
-        if retval:
-            return []
-        proc = cast(p, POINTER(SYSTEM_PROCESS_INFORMATION)).contents
-        while proc.NextEntryOffset:
-            p.value += proc.NextEntryOffset
-            proc = cast(p, POINTER(SYSTEM_PROCESS_INFORMATION)).contents
-            # proclist.append((proc.ImageName.Buffer[:proc.ImageName.Length/2], proc.UniqueProcessId))
-            proclist.append((proc.ImageName.Buffer, proc.UniqueProcessId))
-
-        for proc in proclist:
-            lowerproc = proc[0].lower()
-            for name in namelist:
-                if lowerproc == name:
-                    pidlist.append(proc[1])
-                    break
-        return pidlist
-
     def prepare(self):
         """Prepare env for analysis."""
-        global MONITOR_DLL
-        global MONITOR_DLL_64
-        # global SERVICES_PID
-        global HIDE_PIDS
+        global MONITOR_DLL, MONITOR_DLL_64, HIDE_PIDS
 
         # Get SeDebugPrivilege for the Python process. It will be needed in
         # order to perform the injections.
@@ -228,8 +260,8 @@ def prepare(self):
         # Create the folders used for storing the results.
         create_folders()
 
-        add_protected_path(os.getcwd().encode("utf-8"))
-        add_protected_path(PATHS["root"].encode("utf-8"))
+        add_protected_path(Path.cwd().__bytes__())
+        add_protected_path(PATHS["root"].encode())
 
         # Initialize logging.
         init_logging()
@@ -238,13 +270,15 @@ def prepare(self):
         self.config = Config(cfg="analysis.conf")
         self.options = self.config.get_options()
 
+        # Resolve the paths first in case some other part of the code needs those (fullpath) parameters.
+        for option_name in (OPT_CURDIR, OPT_EXECUTIONDIR):
+            if option_name in self.options:
+                self.options[option_name] = os.path.expandvars(self.options[option_name])
+
         # Set the default DLL to be used for this analysis.
         self.default_dll = self.options.get("dll")
 
-        # self.get_pipe_path(self.options.get("pipe", random_string(16, 32)))
         self.config.pipe = PIPE
-        # Generate a random name for the logging pipe server.
-        # self.get_pipe_path(random_string(16, 32))
         self.config.logpipe = LOGSERVER_PREFIX
         # Set virtual machine clock.
         set_clock(self.config.clock, self.config.timeout)
@@ -254,13 +288,15 @@ def prepare(self):
         MONITOR_DLL_64 = self.options.get("dll_64")
 
         # get PID for services.exe for monitoring services
-        svcpid = self.pids_from_process_name_list(["services.exe"])
+        svcpid = pids_from_image_names(["services.exe"])
         if svcpid:
+            if len(svcpid) > 1:
+                log.debug("found %d services.exe processes", len(svcpid))
             self.SERVICES_PID = svcpid[0]
             self.config.services_pid = svcpid[0]
             self.CRITICAL_PROCESS_LIST.append(int(svcpid[0]))
 
-        HIDE_PIDS = set(self.pids_from_process_name_list(self.files.PROTECTED_NAMES))
+        HIDE_PIDS = set(pids_from_image_names(self.files.PROTECTED_NAMES))
 
         # Initialize and start the Pipe Servers. This is going to be used for
         # communicating with the injected and monitored processes.
@@ -311,81 +347,81 @@ def complete(self):
 
         # Report missed injections
         for pid in INJECT_LIST:
-            log.warning("Monitor injection attempted but failed for process %d.", pid)
+            log.warning("Monitor injection attempted but failed for process %d", pid)
 
-        log.info("Analysis completed.")
+        log.info("Analysis completed")
 
     def get_completion_key(self):
-        if hasattr(self.config, "completion_key"):
-            return self.config.completion_key
-        else:
-            return ""
+        return getattr(self.config, "completion_key", "")
 
-    def run(self):
-        """Run analysis.
-        @return: operation status.
-        """
-        global MONITOR_DLL
-        global MONITOR_DLL_64
-        global LOADER32
-        global LOADER64
-        global ANALYSIS_TIMED_OUT
-
-        log.debug("Starting analyzer from: %s", os.getcwd())
-        log.debug("Storing results at: %s", PATHS["root"])
-        log.debug("Pipe server name: %s", PIPE)
-        log.debug("Python path: %s", os.path.dirname(sys.executable))
-
-        # If no analysis package was specified at submission, we try to select
-        # one automatically.
+    def choose_package(self):
+        # If no analysis package was specified at submission, we try to select one automatically.
         if not self.config.package:
-            log.debug("No analysis package specified, trying to detect " "it automagically.")
+            log.debug("no analysis package configured, picking one for you")
 
-            # If the analysis target is a file, we choose the package according
-            # to the file format.
+            # If the analysis target is a file, we choose the package according to the file format.
             if self.config.category == "file":
                 package = choose_package(self.config.file_type, self.config.file_name, self.config.exports, self.target)
-            # If it's an URL, we'll just use the default Internet Explorer
-            # package.
+            # If it's a URL, we'll just use the default Internet Explorer package.
             else:
                 package = "ie"
 
-            # If we weren't able to automatically determine the proper package,
-            # we need to abort the analysis.
+            # If we weren't able to automatically determine the proper package, we need to abort the analysis.
             if not package:
-                raise CuckooError("No valid package available for file " "type: {0}".format(self.config.file_type))
+                raise CuckooError(f"no analysis package was found for file type: {self.config.file_type}")
+
+            # Otherwise just select the specified package.
+            log.info('analysis package selected: "%s"', package)
 
-            log.info('Automatically selected analysis package "%s"', package)
-        # Otherwise just select the specified package.
         else:
             package = self.config.package
-            log.info('Analysis package "%s" has been specified.', package)
+            log.info('analysis package specified: "%s"', package)
+
         # Generate the package path.
-        package_name = "modules.packages.%s" % package
+        package_name = f"modules.packages.{package}"
         # Try to import the analysis package.
         try:
-            log.debug('Importing analysis package "%s"...', package)
-            __import__(package_name, globals(), locals(), ["dummy"])
-            #log.debug('Imported analysis package "%s".', package)
-        # If it fails, we need to abort the analysis.
-        except ImportError:
-            raise CuckooError('Unable to import package "{0}", does ' "not exist.".format(package_name))
+            log.debug('importing analysis package module: "%s"...', package_name)
+            pkg_module = importlib.import_module(package_name)
+            log.debug('imported analysis package "%s"', package)
+        except ImportError as e:
+            raise CuckooError(f'unable to import package "{self.package_name}", does not exist') from e
         except Exception as e:
-            log.exception(e)
-        # Initialize the package parent abstract.
-        Package()
-        # Enumerate the abstract subclasses.
-        try:
-            package_class = Package.__subclasses__()[0]
-        except IndexError as e:
-            raise CuckooError("Unable to select package class " "(package={0}): {1}".format(package_name, e))
-        except Exception as e:
-            log.exception(e)
+            raise CuckooError(f'Unable to import package "{self.package_name}", does not exist') from e
 
-        # Initialize the analysis package.
-        log.debug('Initializing analysis package "%s"...', package)
-        self.package = package_class(self.options, self.config)
-        #log.debug('Initialized analysis package "%s".', package)
+        # get the members inside the module
+        members = inspect.getmembers(pkg_module)
+        # now just the classes
+        member_classes = [m[1] for m in members if inspect.isclass(m[1])]
+        # now find the Package subclass
+        pkg_classes = [c for c in member_classes if issubclass(c, Package) and c != Package]
+
+        num_pkg_classes = len(pkg_classes)
+        if num_pkg_classes != 1:
+            raise CuckooError(f"expected a single Package subclass in {self.package_name}, got {num_pkg_classes}")
+
+        # Initialize the single analysis package class
+        log.debug('initializing analysis package "%s"...', package)
+        package_class = pkg_classes[0](self.options, self.config)
+        return package_name, package_class
+
+    def run(self):
+        """Run analysis.
+        @return: operation status.
+        """
+        global MONITOR_DLL, MONITOR_DLL_64, LOADER32, LOADER64, ANALYSIS_TIMED_OUT, INTERACTIVE_MODE
+
+        log.debug("Starting analyzer from: %s", Path.cwd())
+        log.debug("Storing results at: %s", PATHS["root"])
+        log.debug("Pipe server name: %s", PIPE)
+        log.debug("Python path: %s", os.path.dirname(sys.executable))
+
+        if SHELL32.IsUserAnAdmin():
+            log.info("analysis running as an admin")
+        else:
+            log.info("analysis running as a normal user")
+
+        self.package_name, self.package = self.choose_package()
 
         # Move the sample to the current working directory as provided by the
         # task - one is able to override the starting path of the sample.
@@ -393,34 +429,35 @@ def run(self):
         # instead of %TEMP%.
         if self.config.category == "file":
             self.target = self.package.move_curdir(self.target)
+        log.debug("New location of moved file: %s", self.target)
 
         # Set the DLL to that specified by package
-        if "dll" in self.package.options and self.package.options["dll"] is not None:
+        if self.package.options.get("dll") is not None:
             MONITOR_DLL = self.package.options["dll"]
-            log.info("Analyzer: DLL set to %s from package %s", MONITOR_DLL, package_name)
+            log.info("Analyzer: DLL set to %s from package %s", MONITOR_DLL, self.package_name)
         else:
-            log.info("Analyzer: Package %s does not specify a DLL option", package_name)
+            log.info("Analyzer: Package %s does not specify a DLL option", self.package_name)
 
         # Set the DLL_64 to that specified by package
-        if "dll_64" in self.package.options and self.package.options["dll_64"] is not None:
+        if self.package.options.get("dll_64") is not None:
             MONITOR_DLL_64 = self.package.options["dll_64"]
-            log.info("Analyzer: DLL_64 set to %s from package %s", MONITOR_DLL_64, package_name)
+            log.info("Analyzer: DLL_64 set to %s from package %s", MONITOR_DLL_64, self.package_name)
         else:
-            log.info("Analyzer: Package %s does not specify a DLL_64 option", package_name)
+            log.info("Analyzer: Package %s does not specify a DLL_64 option", self.package_name)
 
         # Set the loader to that specified by package
-        if "loader" in self.package.options and self.package.options["loader"] is not None:
+        if self.package.options.get("loader") is not None:
             LOADER32 = self.package.options["loader"]
-            log.info("Analyzer: Loader set to %s from package %s", LOADER32, package_name)
+            log.info("Analyzer: Loader set to %s from package %s", LOADER32, self.package_name)
         else:
-            log.info("Analyzer: Package %s does not specify a loader option", package_name)
+            log.info("Analyzer: Package %s does not specify a loader option", self.package_name)
 
         # Set the loader_64 to that specified by package
-        if "loader_64" in self.package.options and self.package.options["loader_64"] is not None:
+        if self.package.options.get("loader_64") is not None:
             LOADER64 = self.package.options["loader_64"]
-            log.info("Analyzer: Loader_64 set to %s from package %s", LOADER64, package_name)
+            log.info("Analyzer: Loader_64 set to %s from package %s", LOADER64, self.package_name)
         else:
-            log.info("Analyzer: Package %s does not specify a loader_64 option", package_name)
+            log.info("Analyzer: Package %s does not specify a loader_64 option", self.package_name)
 
         # randomize monitor DLL and loader executable names
         if MONITOR_DLL is not None:
@@ -440,44 +477,70 @@ def run(self):
         else:
             copy("bin\\loader_x64.exe", LOADER64_NAME)
 
+        si = subprocess.STARTUPINFO()
+        # STARTF_USESHOWWINDOW
+        si.dwFlags = 1
+        # SW_HIDE
+        si.wShowWindow = 0
+
+        # Force update of Windows certificates offline if update file exist
+        # To generate offline certs dump file run: CertUtil -generateSSTFromWU dump.sst
+        if os.path.exists("data\\dump.sst"):
+            try:
+                _ = subprocess.check_output(
+                    ["certutil", "-addstore", "-enterprise", "Root", "data\\dump.sst"], universal_newlines=True, startupinfo=si
+                )
+            except Exception as e:
+                log.error("Can't update certificates: %s", str(e))
+
         # Initialize Auxiliary modules
         Auxiliary()
-        prefix = auxiliary.__name__ + "."
-
-        # disable_screens = True
-        # if "disable_screens" in self.options and self.options["disable_screens"] == "0":
-        #    disable_screens = False
+        prefix = f"{auxiliary.__name__}."
+        windows_modules = ("human", "screenshots", "sysmon")
 
-        for loader, name, ispkg in pkgutil.iter_modules(auxiliary.__path__, prefix):
-            # if ispkg or (name=="modules.auxiliary.screenshots" and disable_screens):
-            #    continue
-            # Import the auxiliary module.
+        for _, name, _ in pkgutil.iter_modules(auxiliary.__path__, prefix):
             try:
-                log.debug('Importing auxiliary module "%s"...', name)
-                __import__(name, globals(), locals(), ["dummy"])
-                #log.debug('Imported auxiliary module "%s".', name)
+                mod_name = name.split(".")[-1]
+                if mod_name in windows_modules:
+                    mod_name += "_windows"
+                if hasattr(self.config, mod_name) and getattr(self.config, mod_name, False):
+                    __import__(name, globals(), locals(), ["dummy"])
+                    log.debug('Imported auxiliary module "%s"', name)
             except ImportError as e:
-                log.warning("Unable to import the auxiliary module " '"%s": %s', name, e)
+                log.warning('Unable to import the auxiliary module "%s": %s', name, e)
+
+        def configure_aux_from_data(instance):
+            # Do auxiliary module configuration stored in 'data/auxiliary/<package_name>'
+            _class = type(instance)
+            try:
+                log.debug("attempting to configure '%s' from data", _class.__name__)
+                instance.configure_from_data()
+            except ModuleNotFoundError:
+                # let it go, not every module is configurable from data
+                log.debug("module %s does not support data configuration, ignoring", _class.__name__)
+            except ImportError as iexc:
+                # let it go but emit a warning; assume a dependency is missing
+                log.warning("configuration error for module %s: %s", _class.__name__, iexc)
+            except Exception as exc:
+                log.error("error configuring module %s: %s", _class.__name__, exc)
+
         # Walk through the available auxiliary modules.
-        aux_avail = []
+        aux_modules = []
 
-        for module in Auxiliary.__subclasses__():
-            # Try to start the auxiliary module.
-            # if module.__name__ == "Screenshots" and disable_screens:
-            #    continue
+        for module in sorted(Auxiliary.__subclasses__(), key=lambda x: x.start_priority, reverse=True):
             try:
-                log.debug('Initializing auxiliary module "%s"...', module.__name__)
                 aux = module(self.options, self.config)
-                #log.debug('Initialized auxiliary module "%s".', module.__name__)
-                aux_avail.append(aux)
-                #log.debug('Trying to start auxiliary module "%s"...', module.__name__)
+                log.debug('Initialized auxiliary module "%s"', module.__name__)
+                aux_modules.append(aux)
+                configure_aux_from_data(aux)
+                log.debug('Trying to start auxiliary module "%s"...', module.__module__)
                 aux.start()
-            except (NotImplementedError, AttributeError):
-                log.warning("Auxiliary module %s was not implemented", module.__name__)
+            except (NotImplementedError, AttributeError) as e:
+                log.warning("Auxiliary module %s was not implemented: %s", module.__name__, e)
             except Exception as e:
-                log.warning("Cannot execute auxiliary module %s: %s", module.__name__, e)
+                log.warning("Cannot execute auxiliary module %s: %s", module.__module__, e)
             else:
-                log.debug("Started auxiliary module %s", module.__name__)
+                log.debug("Started auxiliary module %s", module.__module__)
                 AUX_ENABLED.append(aux)
 
         """
@@ -496,77 +559,129 @@ def run(self):
         zer0m0n.yarald("bin/rules.yarac")
 
         # Propagate the requested dump interval, if set.
-        zer0m0n.dumpint(int(self.options.get("dumpint", "0")))
+        zer0m0n.dumpint(int(self.options.get("dumpint", 0)))
         """
 
-        si = subprocess.STARTUPINFO()
-        # STARTF_USESHOWWINDOW
-        si.dwFlags = 1
-        # SW_HIDE
-        si.wShowWindow = 0
-        #log.info("Stopping WMI Service")
+        if self.options.get("interactive", False):
+            INTERACTIVE_MODE = True
+            log.info("Interactive mode enabled - injecting into explorer shell")
+            if self.config.category == "file" and self.options.get("manual", False):
+                with suppress(Exception):
+                    dest_path = os.path.join(os.environ["HOMEPATH"], "Desktop", os.path.basename(self.config.file_name))
+                    copy(self.target, dest_path)
+            # If it's an URL, we'll just use the default Internet Explorer package.
+            explorer_pid = get_explorer_pid()
+            if explorer_pid:
+                explorer = Process(options=self.options, config=self.config, pid=explorer_pid)
+                filepath = explorer.get_filepath()
+                explorer.inject(interest=filepath, nosleepskip=True)
+                self.LASTINJECT_TIME = timeit.default_timer()
+                explorer.close()
+                KERNEL32.Sleep(2000)
+        else:
+            INTERACTIVE_MODE = False
+
+        # log.info("Stopping WMI Service")
         subprocess.call(["net", "stop", "winmgmt", "/y"], startupinfo=si)
-        #log.info("Stopped WMI Service")
+        # log.info("Stopped WMI Service")
         subprocess.call("sc config winmgmt type= own", startupinfo=si)
 
         log.info("Restarting WMI Service")
         subprocess.call("net start winmgmt", startupinfo=si)
-        #log.info("Started WMI Service")
+        # log.info("Started WMI Service")
 
-        # Start analysis package. If for any reason, the execution of the
-        # analysis package fails, we have to abort the analysis.
+        # Do any analysis package configuration
         try:
-            pids = self.package.start(self.target)
+            self.package.configure(self.target)
         except NotImplementedError:
-            raise CuckooError('The package "{0}" doesn\'t contain a start ' "function.".format(package_name))
-        except CuckooPackageError as e:
-            raise CuckooError('The package "{0}" start function raised an ' "error: {1}".format(package_name, e))
+            # let it go, not every package is configurable
+            log.debug("package %s does not support configure, ignoring", self.package_name)
         except Exception as e:
-            raise CuckooError('The package "{0}" start function encountered ' "an unhandled exception: " "{1}".format(package_name, e))
+            raise CuckooPackageError("error configuring package %s: %s", self.package_name, e) from e
 
-        # If the analysis package returned a list of process IDs, we add them
-        # to the list of monitored processes and enable the process monitor.
-        if pids:
-            self.process_list.add_pids(pids)
-            pid_check = True
+        # Do any package configuration stored in "data/packages/<self.package_name>"
+        try:
+            self.package.configure_from_data(self.target)
+        except ModuleNotFoundError:
+            # let it go, not every package is configurable from data
+            log.debug("package %s does not support data configuration, ignoring", self.package_name)
+        except ImportError as ie:
+            # let it go but emit a warning; assume a dependency is missing
+            log.warning("configuration error for package %s: %s", self.package_name, ie)
+        except Exception as e:
+            raise CuckooPackageError("error configuring package %s: %s", self.package_name, e) from e
 
-        # If the package didn't return any process ID (for example in the case
-        # where the package isn't enabling any behavioral analysis), we don't
-        # enable the process monitor.
+        if self.options.get("manual", False):
+            self.pid_check = True
         else:
-            log.info("No process IDs returned by the package, running for the full timeout.")
-            pid_check = False
+            # Start analysis package. If for any reason, the execution of the
+            # analysis package fails, we have to abort the analysis.
+            try:
+                pids = self.package.start(self.target)
+            except NotImplementedError as e:
+                raise CuckooError(f'The package "{self.package_name}" doesn\'t contain a start function') from e
+            except CuckooPackageError as e:
+                raise CuckooError(f'The package "{self.package_name}" start function raised an error: {e}') from e
+            except Exception as e:
+                raise CuckooError(
+                    f'The package "{self.package_name}" start function encountered an unhandled exception: {e}'
+                ) from e
+
+            # If the analysis package returned a list of process IDs, we add them
+            # to the list of monitored processes and enable the process monitor.
+            if pids:
+                self.process_list.add_pids(pids)
+                self.pid_check = True
+
+            # If the package didn't return any process ID (for example in the case
+            # where the package isn't enabling any behavioral analysis), we don't
+            # enable the process monitor.
+            else:
+                log.info("No process IDs returned by the package, running for the full timeout")
 
         # Check in the options if the user toggled the timeout enforce. If so,
         # we need to override pid_check and disable process monitor.
         if self.config.enforce_timeout:
-            log.info("Enabled timeout enforce, running for the full timeout.")
-            pid_check = False
+            log.info("Enabled timeout enforce, running for the full timeout")
+            self.pid_check = False
+
+        # next phase; go to the analysis loop
+        self.analysis_loop(aux_modules)
+
+        return True
 
-        time_start = datetime.now()
+    def analysis_loop(self, aux_modules):
+        global ANALYSIS_TIMED_OUT
+        time_start = timeit.default_timer()
         kernel_analysis = self.options.get("kernel_analysis", False)
 
         emptytime = None
-
+        complete_folder = hashlib.md5(f"cape-{self.config.id}".encode()).hexdigest()
+        complete_analysis_pattern = os.path.join(os.environ["TMP"], complete_folder)
         while self.do_run:
-            self.time_counter = datetime.now() - time_start
-            if self.time_counter.total_seconds() < 0 or self.time_counter.total_seconds() >= int(self.config.timeout):
-                log.info("Analysis timeout hit, terminating analysis.")
+            self.time_counter = timeit.default_timer() - time_start
+            if self.time_counter >= int(self.config.timeout):
+                log.info("Analysis timeout hit, terminating analysis")
+                ANALYSIS_TIMED_OUT = True
+                break
+
+            if os.path.isdir(complete_analysis_pattern):
+                log.info("Analysis termination requested by user")
                 ANALYSIS_TIMED_OUT = True
                 break
 
             # If the process lock is locked, it means that something is
-            # operatinfg on the list of monitored processes. Therefore we
+            # operating on the list of monitored processes. Therefore we
             # cannot proceed with the checks until the lock is released.
             if self.process_lock.locked():
-                log.info("we are locked")
+                log.info("Process lock is locked")
                 KERNEL32.Sleep(1000)
                 continue
 
             try:
                 # If the process monitor is enabled we start checking whether
                 # the monitored processes are still alive.
-                if pid_check:
+                if self.pid_check:
                     # We also track the PIDs provided by zer0m0n.
                     # self.process_list.add_pids(zer0m0n.getpids())
                     if not kernel_analysis:
@@ -576,9 +691,7 @@ def run(self):
                                     try:
                                         Process(pid=pid).upload_memdump()
                                     except Exception as e:
-                                        log.error(e, exc_info=True)
-                                else:
-                                    log.info("procdump not enabled")
+                                        log.exception(e)
                                 log.info("Process with pid %s appears to have terminated", pid)
                                 if pid in self.process_list.pids:
                                     self.process_list.remove_pid(pid)
@@ -586,13 +699,16 @@ def run(self):
                         # If none of the monitored processes are still alive, we
                         # can terminate the analysis.
                         if not self.process_list.pids and (
-                            not self.LASTINJECT_TIME or (datetime.now() >= (self.LASTINJECT_TIME + timedelta(seconds=15)))
+                            not self.LASTINJECT_TIME or (timeit.default_timer() >= (self.LASTINJECT_TIME + 15))  # Add 15 seconds
                         ):
-                            if emptytime and (datetime.now() >= (emptytime + timedelta(seconds=5))):
-                                log.info("Process list is empty, terminating analysis.")
-                                break
+                            if emptytime and (timeit.default_timer() >= (emptytime + 5)):  # Add 5 seconds
+                                if INTERACTIVE_MODE:
+                                    continue
+                                else:
+                                    log.info("Process list is empty, terminating analysis")
+                                    break
                             elif not emptytime:
-                                emptytime = datetime.now()
+                                emptytime = timeit.default_timer()
                         else:
                             emptytime = None
 
@@ -607,14 +723,14 @@ def run(self):
                     # returns False, it means that it requested the analysis
                     # to be terminate.
                     if not self.package.check():
-                        log.info("The analysis package requested the " "termination of the analysis.")
+                        log.info("The analysis package requested the termination of the analysis")
                         break
 
                 # If the check() function of the package raised some exception
                 # we don't care, we can still proceed with the analysis but we
                 # throw a warning.
                 except Exception as e:
-                    log.warning('The package "%s" check function raised ' "an exception: %s", package_name, e)
+                    log.warning('The package "%s" check function raised an exception: %s', self.package_name, e)
             finally:
                 # Zzz.
                 KERNEL32.Sleep(1000)
@@ -622,81 +738,88 @@ def run(self):
         # Tell all processes to complete their monitoring
         if not kernel_analysis:
             for pid in self.process_list.pids:
-                proc = Process(pid=pid)
+                proc = Process(options=self.options, config=self.config, pid=pid)
                 if proc.is_alive():
                     try:
                         proc.set_terminate_event()
-                    except:
-                        log.error("Unable to set terminate event for process %d.", proc.pid)
+                    except Exception:
+                        log.error("Unable to set terminate event for process %d", proc.pid)
                         continue
-                    log.info("Terminate event set for process %d.", proc.pid)
-                if self.config.terminate_processes:
+                    log.info("Terminate event set for process %d", proc.pid)
+                if (
+                    self.config.terminate_processes
+                    and proc.is_alive()
+                    and pid not in self.CRITICAL_PROCESS_LIST
+                    and not proc.is_critical()
+                ):
                     # Try to terminate remaining active processes.
                     # (This setting may render full system memory dumps less useful!)
-                    if proc.is_alive() and not pid in self.CRITICAL_PROCESS_LIST and not proc.is_critical():
-                        log.info("Terminating process %d before shutdown.", proc.pid)
-                        proc_counter = 0
-                        while proc.is_alive():
-                            if proc_counter > 5:
-                                try:
-                                    proc.terminate()
-                                except:
-                                    continue
-                            log.info("Waiting for process %d to exit.", proc.pid)
-                            KERNEL32.Sleep(1000)
-                            proc_counter += 1
+                    log.info("Terminating process %d before shutdown", proc.pid)
+                    proc_counter = 0
+                    while proc.is_alive():
+                        if proc_counter > 5:
+                            try:
+                                proc.terminate()
+                            except Exception:
+                                continue
+                        log.info("Waiting for process %d to exit", proc.pid)
+                        KERNEL32.Sleep(1000)
+                        proc_counter += 1
 
         # Create the shutdown mutex.
         KERNEL32.CreateMutexA(None, False, SHUTDOWN_MUTEX)
-        log.info("Created shutdown mutex.")
+        log.info("Created shutdown mutex")
         # since the various processes poll for the existence of the mutex, sleep
         # for a second to ensure they see it before they're terminated
         KERNEL32.Sleep(1000)
 
-        log.info("Shutting down package.")
+        log.info("Shutting down package")
         try:
             # Before shutting down the analysis, the package can perform some
             # final operations through the finish() function.
             self.package.finish()
         except Exception as e:
-            log.warning('The package "%s" finish function raised an ' "exception: %s", package_name, e)
+            log.warning('The package "%s" finish function raised an exception: %s', self.package_name, e)
 
         try:
             # Upload files the package created to package_files in the
             # results folder.
-            for path, name in self.package.package_files() or []:
+            for path, name in self.package.package_files():
                 upload_to_host(path, os.path.join("package_files", name))
         except Exception as e:
-            log.warning('The package "%s" package_files function raised an ' "exception: %s", package_name, e)
+            log.warning('The package "%s" package_files function raised an exception: %s', self.package_name, e)
 
-        log.info("Stopping auxiliary modules.")
+        log.info("Stopping auxiliary modules")
         # Terminate the Auxiliary modules.
-        for aux in AUX_ENABLED:
+        for aux in sorted(AUX_ENABLED, key=lambda x: x.stop_priority, reverse=True):
             if not hasattr(aux, "stop"):
                 continue
             try:
+                log.info("Stopping auxiliary module: %s", aux.__class__.__name__)
                 aux.stop()
+                if isinstance(aux, Thread):
+                    aux.join(timeout=10)
+                    if aux.is_alive():
+                        log.warning("Failed to join {aux} thread.")
             except (NotImplementedError, AttributeError):
                 continue
             except Exception as e:
                 log.warning("Cannot terminate auxiliary module %s: %s", aux.__class__.__name__, e)
 
-        log.info("Finishing auxiliary modules.")
+        log.info("Finishing auxiliary modules")
         # Run the finish callback of every available Auxiliary module.
-        for aux in aux_avail:
+        for aux in aux_modules:
             try:
                 aux.finish()
             except (NotImplementedError, AttributeError):
                 continue
             except Exception as e:
-                log.warning("Exception running finish callback of auxiliary " "module %s: %s", aux.__class__.__name__, e)
+                log.warning("Exception running finish callback of auxiliary module %s: %s", aux.__class__.__name__, e)
 
-        log.info("Shutting down pipe server and dumping dropped files.")
-
-        return True
+        log.info("Shutting down pipe server and dumping dropped files")
 
 
-class Files(object):
+class Files:
     PROTECTED_NAMES = [
         "vmwareuser.exe",
         "vmwareservice.exe",
@@ -724,9 +847,10 @@ def __init__(self):
         self.files_orig = {}
         self.dumped = []
 
-    def is_protected_filename(self, file_name):
+    @classmethod
+    def is_protected_filename(cls, file_name):
         """Return whether or not to inject into a process with this name."""
-        return file_name.lower() in self.PROTECTED_NAMES
+        return file_name.lower() in cls.PROTECTED_NAMES
 
     def add_pid(self, filepath, pid, verbose=True):
         """Track a process identifier for this file."""
@@ -735,7 +859,8 @@ def add_pid(self, filepath, pid, verbose=True):
 
         if pid not in self.files[filepath.lower()]:
             self.files[filepath.lower()].append(pid)
-            verbose and log.info("Added pid %s for %r", pid, filepath)
+            if verbose:
+                log.info("Added pid %s for %s", pid, filepath)
 
             # PROCESS_LIST.append(int(pid))
             add_pid_to_aux_modules(int(pid))
@@ -749,10 +874,10 @@ def add_file(self, filepath, pid=None, category="files", metadata=""):
 
         self.add_pid(filepath, pid, verbose=False)
 
-    def dump_file(self, filepath, metadata="", pids=False, category="files"):
+    def dump_file(self, filepath, metadata="", pids="", ppids="", category="files"):
         """Dump a file to the host."""
         if not os.path.isfile(filepath):
-            log.warning("File at path %r does not exist, skip.", filepath)
+            log.warning("File at path %s does not exist, skipping", filepath)
             return False
 
         duplicated = False
@@ -770,15 +895,14 @@ def dump_file(self, filepath, metadata="", pids=False, category="files"):
             file_details = self.files_orig.get(filepath.lower())
             category = file_details["category"]
             metadata = file_details["metadata"]
-            path = self.files_orig.get(filepath.lower(), {}).get("path") or filepath
             pids = self.files.get(filepath.lower(), [])
-            filepath = self.files_orig.get(filepath.lower(), {}).get("path") or filepath
+            filepath = file_details.get("path", filepath)
 
         if category == "memory":
             if pids:
-                upload_path = os.path.join(category, "{}.dmp".format(pids[0]))
+                upload_path = os.path.join(category, f"{pids[0]}.dmp")
             else:
-                pids = [os.path.basename(filepath).split(".")[0]]
+                pids = [os.path.basename(filepath).split(".", 1)[0]]
                 upload_path = os.path.join(category, os.path.basename(filepath))
 
         else:
@@ -786,12 +910,12 @@ def dump_file(self, filepath, metadata="", pids=False, category="files"):
 
         try:
             # If available use the original filepath, the one that is not lowercased.
-            upload_to_host(filepath, upload_path, pids, metadata=metadata, category=category, duplicated=duplicated)
+            upload_to_host(filepath, upload_path, pids, ppids, metadata=metadata, category=category, duplicated=duplicated)
             self.dumped.append(sha256)
         except (IOError, socket.error) as e:
             log.error('Unable to upload dropped file at path "%s": %s', filepath, e)
         except Exception as e:
-            log.error(e, exc_info=True)
+            log.exception(e)
 
     def delete_file(self, filepath, pid=None):
         """A file is about to removed and thus should be dumped right away."""
@@ -815,7 +939,7 @@ def dump_files(self):
             self.delete_file(list(self.files.keys())[0])
 
 
-class ProcessList(object):
+class ProcessList:
     def __init__(self):
         self.pids = []
         self.pids_notrack = []
@@ -825,26 +949,29 @@ def add_pid(self, pid, track=True):
         Track determines whether the analyzer should be monitoring this
         process, i.e., whether Cuckoo should wait for this process to finish.
         """
-        if int(pid) not in self.pids and int(pid) not in self.pids_notrack:
+        pid = int(pid)
+        if pid not in self.pids and pid not in self.pids_notrack:
             if track:
-                self.pids.append(int(pid))
+                self.pids.append(pid)
             else:
-                self.pids_notrack.append(int(pid))
+                self.pids_notrack.append(pid)
 
     def add_pids(self, pids):
         """Add one or more process identifiers to the process list."""
         if isinstance(pids, (tuple, list)):
             for pid in pids:
-                self.add_pid(pid)
+                if pid is not None:
+                    self.add_pid(pid)
         else:
             self.add_pid(pids)
 
     def has_pid(self, pid, notrack=True):
         """Return whether or not this process identifier being tracked."""
-        if int(pid) in self.pids:
+        pid = int(pid)
+        if pid in self.pids:
             return True
 
-        if notrack and int(pid) in self.pids_notrack:
+        if notrack and pid in self.pids_notrack:
             return True
 
         return False
@@ -858,8 +985,9 @@ def remove_pid(self, pid):
             self.pids_notrack.remove(pid)
 
 
-class CommandPipeHandler(object):
+class CommandPipeHandler:
     """Pipe Handler.
+
     This class handles the notifications received through the Pipe Server and
     decides what to do with them.
     """
@@ -873,15 +1001,15 @@ def __init__(self, analyzer):
     def _handle_debug(self, data):
         """Debug message from the monitor."""
         try:
-            log.debug(data.decode("utf-8"))
-        except:
+            log.debug(data.decode())
+        except Exception:
             log.debug(data)
 
     def _handle_info(self, data):
         """Regular message from the monitor."""
         try:
-            log.info(data.decode("utf-8"))
-        except:
+            log.info(data.decode())
+        except Exception:
             log.debug(data)
 
     def _handle_warning(self, data):
@@ -895,19 +1023,18 @@ def _handle_critical(self, data):
     def _handle_loaded(self, data):
         """The monitor has loaded into a particular process."""
         if not data:
-            log.warning("Received loaded command with incorrect parameters, " "skipping it.")
+            log.warning("Received loaded command with incorrect parameters, skipping it")
             return
 
         # pid, track = data.split(b",")
         # if not pid.isdigit() or not track.isdigit():
-        #    log.warning("Received loaded command with incorrect parameters, "
-        #                "skipping it.")
+        #    log.warning("Received loaded command with incorrect parameters, skipping it")
         #    return
 
         self.analyzer.process_lock.acquire()
         pid = int(data)
         if pid not in self.analyzer.process_list.pids:
-            self.analyzer.process_list.add_pid(int(pid))  # , track=int(track))
+            self.analyzer.process_list.add_pid(pid)  # , track=int(track))
         if pid in INJECT_LIST:
             INJECT_LIST.remove(pid)
         self.analyzer.process_lock.release()
@@ -923,16 +1050,22 @@ def _handle_getpids(self, data):
         hidepids.update([self.analyzer.pid, self.analyzer.ppid])
         return struct.pack("%dI" % len(hidepids), *hidepids)
 
-    # remove pid from process list because we received a notification
-    # from kernel land
     def _handle_kterminate(self, data):
+        """Handle terminate notification.
+
+        Remove pid from process list because we received a notification
+        from kernel land
+        """
         process_id = int(data)
         if process_id and process_id in self.analyzer.process_list.pids:
             self.analyzer.process_list.remove_pid(process_id)
 
-    # same than below but we don't want to inject any DLLs because
-    # it's a kernel analysis
     def _handle_kprocess(self, data):
+        """Handle process notification.
+
+        Same than below but we don't want to inject any DLLs because
+        it's a kernel analysis
+        """
         self.analyzer.process_lock.acquire()
         process_id = int(data)
         thread_id = None
@@ -946,54 +1079,69 @@ def _handle_kprocess(self, data):
         self.analyzer.process_lock.release()
 
     def _handle_kerror(self, error_msg):
-        log.error("Error : %s", str(error_msg))
+        log.error("Error : %s", error_msg)
 
-    # if a new driver has been loaded, we stop the analysis
     def _handle_ksubvert(self, data):
-        for pid in self.analyzer.process_list.pids:
-            log.info("Process with pid %s has terminated", pid)
+        """Remove pids from the list.
+
+        If a new driver has been loaded, we stop the analysis.
+        """
+        # Use a list slice ([:]) to make a copy of the list we are changing.
+        for pid in self.analyzer.process_list.pids[:]:
+            log.info("No longer tracking process with pid %s", pid)
             self.analyzer.process_list.remove_pid(pid)
 
+    def _handle_shell(self, data):
+        explorer_pid = get_explorer_pid()
+        if explorer_pid:
+            explorer = Process(options=self.analyzer.options, config=self.analyzer.config, pid=explorer_pid)
+            self.analyzer.CRITICAL_PROCESS_LIST.append(int(explorer_pid))
+            filepath = explorer.get_filepath()
+            explorer.inject(interest=filepath, nosleepskip=True)
+            self.analyzer.LASTINJECT_TIME = timeit.default_timer()
+            explorer.close()
+            KERNEL32.Sleep(2000)
+
     def _handle_interop(self, data):
-        if not self.analyzer.MONITORED_DCOM:
+        if not self.analyzer.MONITORED_DCOM and not ANALYSIS_TIMED_OUT:
             self.analyzer.MONITORED_DCOM = True
             dcom_pid = pid_from_service_name("DcomLaunch")
             if dcom_pid:
-                servproc = Process(options=self.analyzer.options, config=self.analyzer.config, pid=dcom_pid, suspended=False)
+                servproc = Process(options=self.analyzer.options, config=self.analyzer.config, pid=dcom_pid)
                 self.analyzer.CRITICAL_PROCESS_LIST.append(int(dcom_pid))
                 filepath = servproc.get_filepath()
-                servproc.inject(injectmode=INJECT_QUEUEUSERAPC, interest=filepath, nosleepskip=True)
-                self.analyzer.LASTINJECT_TIME = datetime.now()
+                servproc.inject(interest=filepath, nosleepskip=True)
+                self.analyzer.LASTINJECT_TIME = timeit.default_timer()
                 servproc.close()
                 KERNEL32.Sleep(2000)
 
     def _handle_wmi(self, data):
-        if not self.analyzer.MONITORED_WMI and ANALYSIS_TIMED_OUT is False:
+        if not self.analyzer.MONITORED_WMI and not ANALYSIS_TIMED_OUT:
             self.analyzer.MONITORED_WMI = True
             if not self.analyzer.MONITORED_DCOM:
                 self.analyzer.MONITORED_DCOM = True
                 dcom_pid = pid_from_service_name("DcomLaunch")
                 if dcom_pid:
-                    servproc = Process(options=self.analyzer.options, config=self.analyzer.config, pid=dcom_pid, suspended=False)
+                    servproc = Process(options=self.analyzer.options, config=self.analyzer.config, pid=dcom_pid)
                     self.analyzer.CRITICAL_PROCESS_LIST.append(int(dcom_pid))
                     filepath = servproc.get_filepath()
-                    servproc.inject(injectmode=INJECT_QUEUEUSERAPC, interest=filepath, nosleepskip=True)
-                    self.analyzer.LASTINJECT_TIME = datetime.now()
+                    servproc.inject(interest=filepath, nosleepskip=True)
+                    self.analyzer.LASTINJECT_TIME = timeit.default_timer()
                     servproc.close()
                     KERNEL32.Sleep(2000)
 
             wmi_pid = pid_from_service_name("winmgmt")
             if wmi_pid:
-                servproc = Process(options=self.analyzer.options, config=self.analyzer.config, pid=wmi_pid, suspended=False)
+                servproc = Process(options=self.analyzer.options, config=self.analyzer.config, pid=wmi_pid)
                 self.analyzer.CRITICAL_PROCESS_LIST.append(int(wmi_pid))
                 filepath = servproc.get_filepath()
-                servproc.inject(injectmode=INJECT_QUEUEUSERAPC, interest=filepath, nosleepskip=True)
-                self.analyzer.LASTINJECT_TIME = datetime.now()
+                servproc.inject(interest=filepath, nosleepskip=True)
+                self.analyzer.LASTINJECT_TIME = timeit.default_timer()
                 servproc.close()
                 KERNEL32.Sleep(2000)
 
     def _handle_tasksched(self, data):
-        if not self.analyzer.MONITORED_TASKSCHED and ANALYSIS_TIMED_OUT is False:
+        if not self.analyzer.MONITORED_TASKSCHED and not ANALYSIS_TIMED_OUT:
             self.analyzer.MONITORED_TASKSCHED = True
             si = subprocess.STARTUPINFO()
             # STARTF_USESHOWWINDOW
@@ -1011,16 +1159,16 @@ def _handle_tasksched(self, data):
 
             sched_pid = pid_from_service_name("schedule")
             if sched_pid:
-                servproc = Process(options=self.analyzer.options, config=self.analyzer.config, pid=sched_pid, suspended=False)
+                servproc = Process(options=self.analyzer.options, config=self.analyzer.config, pid=sched_pid)
                 self.analyzer.CRITICAL_PROCESS_LIST.append(int(sched_pid))
                 filepath = servproc.get_filepath()
-                servproc.inject(injectmode=INJECT_QUEUEUSERAPC, interest=filepath, nosleepskip=True)
-                self.analyzer.LASTINJECT_TIME = datetime.now()
+                servproc.inject(interest=filepath, nosleepskip=True)
+                self.analyzer.LASTINJECT_TIME = timeit.default_timer()
                 servproc.close()
                 KERNEL32.Sleep(2000)
 
     def _handle_bits(self, data):
-        if not self.analyzer.MONITORED_BITS and ANALYSIS_TIMED_OUT is False:
+        if not self.analyzer.MONITORED_BITS and not ANALYSIS_TIMED_OUT:
             self.analyzer.MONITORED_BITS = True
             si = subprocess.STARTUPINFO()
             # STARTF_USESHOWWINDOW
@@ -1037,12 +1185,12 @@ def _handle_bits(self, data):
                 self.analyzer.MONITORED_DCOM = True
                 dcom_pid = pid_from_service_name("DcomLaunch")
                 if dcom_pid:
-                    servproc = Process(options=self.analyzer.options, config=self.analyzer.config, pid=dcom_pid, suspended=False)
+                    servproc = Process(options=self.analyzer.options, config=self.analyzer.config, pid=dcom_pid)
 
                     self.analyzer.CRITICAL_PROCESS_LIST.append(int(dcom_pid))
                     filepath = servproc.get_filepath()
-                    servproc.inject(injectmode=INJECT_QUEUEUSERAPC, interest=filepath, nosleepskip=True)
-                    self.analyzer.LASTINJECT_TIME = datetime.now()
+                    servproc.inject(interest=filepath, nosleepskip=True)
+                    self.analyzer.LASTINJECT_TIME = timeit.default_timer()
                     servproc.close()
                     KERNEL32.Sleep(2000)
 
@@ -1051,58 +1199,55 @@ def _handle_bits(self, data):
             log.info("Started BITS Service")
             bits_pid = pid_from_service_name("BITS")
             if bits_pid:
-                servproc = Process(options=self.analyzer.options, config=self.analyzer.config, pid=bits_pid, suspended=False)
+                servproc = Process(options=self.analyzer.options, config=self.analyzer.config, pid=bits_pid)
                 self.analyzer.CRITICAL_PROCESS_LIST.append(int(bits_pid))
                 filepath = servproc.get_filepath()
-                servproc.inject(injectmode=INJECT_QUEUEUSERAPC, interest=filepath, nosleepskip=True)
-                self.analyzer.LASTINJECT_TIME = datetime.now()
+                servproc.inject(interest=filepath, nosleepskip=True)
+                self.analyzer.LASTINJECT_TIME = timeit.default_timer()
                 servproc.close()
                 KERNEL32.Sleep(2000)
 
-    # Handle case of a service being started by a monitored process
-    # Switch the service type to own process behind its back so we
-    # can monitor the service more easily with less noise
     def _handle_service(self, servname):
-        if ANALYSIS_TIMED_OUT is False:
+        """Start a service and monitor it.
+
+        Handle case of a service being started by a monitored process.
+        Switch the service type to own process behind its back so we
+        can monitor the service more easily with less noise.
+        """
+        if not ANALYSIS_TIMED_OUT:
             si = subprocess.STARTUPINFO()
             # STARTF_USESHOWWINDOW
             si.dwFlags = 1
             # SW_HIDE
             si.wShowWindow = 0
-            subprocess.call("sc config " + servname.decode("utf-8") + " type= own", startupinfo=si)
+            subprocess.call(f"sc config {servname.decode()} type= own", startupinfo=si)
             log.info('Announced starting service "%s"', servname)
             if not self.analyzer.MONITORED_SERVICES:
                 # Inject into services.exe so we can monitor service creation
                 # if tasklist previously failed to get the services.exe PID we'll be
                 # unable to inject
                 if self.analyzer.SERVICES_PID:
-                    servproc = Process(
-                        options=self.analyzer.options, config=self.analyzer.config, pid=self.analyzer.SERVICES_PID, suspended=False
-                    )
+                    servproc = Process(options=self.analyzer.options, config=self.analyzer.config, pid=self.analyzer.SERVICES_PID)
                     self.analyzer.CRITICAL_PROCESS_LIST.append(int(self.analyzer.SERVICES_PID))
                     filepath = servproc.get_filepath()
-                    servproc.inject(injectmode=INJECT_QUEUEUSERAPC, interest=filepath, nosleepskip=True)
-                    self.analyzer.LASTINJECT_TIME = datetime.now()
+                    servproc.inject(interest=filepath, nosleepskip=True)
+                    self.analyzer.LASTINJECT_TIME = timeit.default_timer()
                     servproc.close()
                     KERNEL32.Sleep(1000)
                     self.analyzer.MONITORED_SERVICES = True
                 else:
-                    log.error("Unable to monitor service %s" % (servname))
+                    log.error("Unable to monitor service %s", servname)
 
     def _handle_resume(self, data):
         # RESUME:2560,3728'
-        self.analyzer.LASTINJECT_TIME = datetime.now()
-        if self.analyzer.options.get("unpack", "").lower() in ("yes", "true", "enabled", "on", "y"):
-            data = list(map(int, data.split(b",")))
-            if len(data) == 1:
-                pid, tid = data[0], 0
-            elif len(data) == 2:
-                pid, tid = data
-            log.debug("Resume: %s, %s", str(pid), str(tid))
-
-    # Handle attempted shutdowns/restarts -- flush logs for all monitored processes
-    # additional handling can be added later
+        self.analyzer.LASTINJECT_TIME = timeit.default_timer()
+        self._handle_process(data)
+
     def _handle_shutdown(self, data):
+        """Handle attempted shutdowns/restarts.
+
+        Flush logs for all monitored processes. Additional handling can be added later.
+        """
         log.info("Received shutdown request")
         self.analyzer.process_lock.acquire()
         for process_id in self.analyzer.process_list.pids:
@@ -1111,15 +1256,14 @@ def _handle_shutdown(self, data):
             if event_handle:
                 KERNEL32.SetEvent(event_handle)
                 KERNEL32.CloseHandle(event_handle)
-                if self.analyzer.options.get("procmemdump"):
-                    p = Process(pid=process_id)
-                    p.dump_memory()
-                self.files.dump_files()
+                self.analyzer.files.dump_files()
         self.analyzer.process_lock.release()
 
-    # Handle case of malware terminating a process -- notify the target
-    # ahead of time so that it can flush its log buffer
     def _handle_kill(self, data):
+        """Handle case of malware terminating a process.
+
+        Notify the target ahead of time so that it can flush its log buffer.
+        """
         self.analyzer.process_lock.acquire()
 
         process_id = int(data)
@@ -1135,11 +1279,11 @@ def _inject_process(self, process_id, thread_id, mode):
         self.analyzer.process_lock.acquire()
 
         # Set the current DLL to the default one provided at submission.
-        dll = self.analyzer.default_dll
+        # dll = self.analyzer.default_dll
 
         if process_id in (self.analyzer.pid, self.analyzer.ppid):
             if process_id not in self.ignore_list["pid"]:
-                log.warning("Received request to inject Cuckoo processes, " "skipping it.")
+                log.warning("Received request to inject Cuckoo processes, skipping it")
                 self.ignore_list["pid"].append(process_id)
             self.analyzer.process_lock.release()
             return
@@ -1151,7 +1295,9 @@ def _inject_process(self, process_id, thread_id, mode):
             # This pid is already on the notrack list, move it to the
             # list of tracked pids.
             if not self.analyzer.process_list.has_pid(process_id, notrack=False):
-                log.debug("Received request to inject pid=%d. It was already " "on our notrack list, moving it to the track list.")
+                log.debug(
+                    "Received request to inject pid=%d. It was already on our notrack list, moving it to the track list", process_id
+                )
 
                 self.analyzer.process_list.remove_pid(process_id)
                 self.analyzer.process_list.add_pid(process_id)
@@ -1164,8 +1310,8 @@ def _inject_process(self, process_id, thread_id, mode):
             self.analyzer.process_lock.release()
             return
 
-        # Open the process and inject the DLL. Hope it enjoys it.
-        proc = Process(pid=process_id, tid=thread_id)
+        # Open the process and inject the monitor
+        proc = Process(pid=process_id, thread_id=thread_id)
 
         filepath = proc.get_filepath()
         filename = os.path.basename(filepath)
@@ -1175,38 +1321,23 @@ def _inject_process(self, process_id, thread_id, mode):
             self.analyzer.process_list.add_pid(process_id)
 
             # We're done operating on the processes list,
-            # release the lock. Let the injection do its thing.
+            # release the lock
             self.analyzer.process_lock.release()
 
-            # If we have both pid and tid, then we can use APC to inject.
-            if process_id and thread_id:
-                proc.inject(injectmode=INJECT_QUEUEUSERAPC, interest=filepath, nosleepskip=True)
-            else:
-                proc.inject(injectmode=INJECT_CREATEREMOTETHREAD, interest=filepath, nosleepskip=True)
-
-            log.info("Injected into process with pid %s and name %r", proc.pid, filename)
+            proc.inject(interest=filepath, nosleepskip=True)
+            self.analyzer.LASTINJECT_TIME = timeit.default_timer()
+            log.info("Injected into process with pid %s and name %s", proc.pid, filename)
 
     def _handle_process(self, data):
         """Request for injection into a process."""
         # Parse the process identifier.
         # PROCESS:1:1824,2856
-        suspended = False
         process_id = thread_id = None
         # We parse the process ID.
-        suspended, data = data.split(b":")
-        if b"," not in data:
-            if data.isdigit():
-                process_id = int(data)
-        elif data.count(b",") == 1:
-            process_id, param = data.split(b",")
-            thread_id = None
-            if process_id.isdigit():
-                process_id = int(process_id)
-            else:
-                process_id = None
-            if param.isdigit():
-                thread_id = int(param)
-        if process_id and ANALYSIS_TIMED_OUT is False:
+        pid_s, tid_s = data.split(b",", 1)
+        process_id = int(pid_s)
+        thread_id  = int(tid_s)
+        if process_id and not ANALYSIS_TIMED_OUT:
             if process_id not in (self.analyzer.pid, self.analyzer.ppid):
                 # We inject the process only if it's not being
                 # monitored already, otherwise we would generate
@@ -1216,7 +1347,10 @@ def _handle_process(self, data):
                         INJECT_LIST.append(process_id)
                     # Open the process and inject the DLL.
                     proc = Process(
-                        options=self.analyzer.options, config=self.analyzer.config, pid=process_id, thread_id=thread_id, suspended=suspended
+                        options=self.analyzer.options,
+                        config=self.analyzer.config,
+                        pid=process_id,
+                        thread_id=thread_id,
                     )
                     filepath = proc.get_filepath()  # .encode('utf8', 'replace')
                     # if it's a URL analysis, provide the URL to all processes as
@@ -1226,6 +1360,8 @@ def _handle_process(self, data):
                         interest = filepath
                     else:
                         interest = self.analyzer.config.target
+                    if filepath.lower() in self.analyzer.files.files:
+                        self.analyzer.files.delete_file(filepath, process_id)
                     is_64bit = proc.is_64bit()
                     filename = os.path.basename(filepath)
                     if self.analyzer.SERVICES_PID and process_id == self.analyzer.SERVICES_PID:
@@ -1233,25 +1369,24 @@ def _handle_process(self, data):
                     log.info("Announced %s process name: %s pid: %d", "64-bit" if is_64bit else "32-bit", filename, process_id)
                     # We want to prevent multiple injection attempts if one is already underway
                     if not in_protected_path(filename):
-                        _ = proc.inject(INJECT_QUEUEUSERAPC, interest)
-                        self.LASTINJECT_TIME = datetime.now()
+                        _ = proc.inject(interest)
+                        self.analyzer.LASTINJECT_TIME = timeit.default_timer()
                         self.analyzer.NUM_INJECTED += 1
                     proc.close()
             else:
                 log.warning("Received request to inject process with pid %d, skipped", process_id)
         # return self._inject_process(int(data), None, 0)
-        return
 
     def _handle_process2(self, data):
         """Request for injection into a process using APC."""
         # Parse the process and thread identifier.
         if not data or data.count(b",") != 2:
-            log.warning("Received PROCESS2 command from monitor with an " "incorrect argument.")
+            log.warning("Received PROCESS2 command from monitor with an incorrect argument")
             return
 
         pid, tid, mode = data.split(b",")
         if not pid.isdigit() or not tid.isdigit() or not mode.isdigit():
-            log.warning("Received PROCESS2 command from monitor with an " "incorrect argument.")
+            log.warning("Received PROCESS2 command from monitor with an incorrect argument")
             return
 
         return self._inject_process(int(pid), int(tid), int(mode))
@@ -1259,14 +1394,20 @@ def _handle_process2(self, data):
     def _handle_file_new(self, file_path):
         """Notification of a new dropped file."""
         if os.path.exists(file_path):
-            self.analyzer.files.add_file(file_path.decode("utf-8"), self.pid)
+            self.analyzer.files.add_file(file_path.decode(), self.pid)
 
     def _handle_file_cape(self, data):
         """Notification of a new dropped file."""
-        # Syntax -> PATH|PID|Metadata
-        file_path, pid, metadata = data.split(b"|")
+        # Syntax -> PATH|PID|PPID|Metadata
+        file_path, pid, ppid, metadata = data.split(b"|")
         if os.path.exists(file_path):
-            self.analyzer.files.dump_file(file_path.decode("utf-8"), pids=[pid.decode("utf-8")], metadata=metadata, category="CAPE")
+            self.analyzer.files.dump_file(
+                file_path.decode(),
+                pids=[pid.decode()],
+                ppids=[ppid.decode()],
+                metadata=metadata,
+                category="CAPE",
+            )
 
     # In case of FILE_DEL, the client is trying to notify an ongoing
     # deletion of an existing file, therefore we need to dump it
@@ -1274,7 +1415,7 @@ def _handle_file_cape(self, data):
     def _handle_file_del(self, data):
         """Notification of a file being removed (if it exists) - we have to
         dump it before it's being removed."""
-        file_path = data.decode("utf8")
+        file_path = data.decode()
         if os.path.exists(file_path):
             self.analyzer.files.delete_file(file_path, self.pid)
 
@@ -1282,32 +1423,38 @@ def _handle_file_dump(self, file_path):
         # We extract the file path.
         # We dump immediately.
         if b"\\CAPE\\" in file_path:
-            # Syntax -> PATH|PID|Metadata
-            file_path, pid, metadata = file_path.split(b"|")
+            # Syntax -> PATH|PID|PPID|Metadata
+            file_path, pid, ppid, metadata = file_path.split(b"|")
             if os.path.exists(file_path):
-                self.analyzer.files.dump_file(file_path.decode("utf-8"), pids=[pid.decode("utf-8")], metadata=metadata, category="procdump")
+                self.analyzer.files.dump_file(
+                    file_path.decode(),
+                    pids=[pid.decode()],
+                    ppids=[ppid.decode()],
+                    metadata=metadata,
+                    category="procdump",
+                )
 
         else:
             if os.path.exists(file_path):
                 if b"\\memory\\" in file_path:
-                    self.analyzer.files.dump_file(file_path.decode("utf-8"), category="memory")
+                    self.analyzer.files.dump_file(file_path.decode(), category="memory")
                 else:
-                    self.analyzer.files.add_file(file_path.decode("utf-8"), self.pid)
+                    self.analyzer.files.add_file(file_path.decode(), self.pid)
             else:
                 log.info("File doesn't exist, %s", file_path)
 
     def _handle_dumpreqs(self, data):
         if not data.isdigit():
-            log.warning("Received DUMPREQS command with an incorrect argument %r.", data)
+            log.warning("Received DUMPREQS command with an incorrect argument %s", data)
             return
         pid = int(data)
         if pid not in self.tracked:
-            log.warning("Received DUMPREQS command but there are no reqs for pid %d.", pid)
+            log.warning("Received DUMPREQS command but there are no reqs for pid %d", pid)
             return
 
         dumpreqs = self.tracked[pid].get("dumpreq", [])
         for addr, length in dumpreqs:
-            log.debug("tracked dump req (%r, %r, %r)", pid, addr, length)
+            log.debug("Tracked dump req (%d, %s, %s)", pid, addr, length)
 
             if not addr or not length:
                 continue
@@ -1326,17 +1473,17 @@ def _handle_file_move(self, data):
         """A file is being moved - track these changes."""
         # Syntax = "FILE_MOVE:old_file_path::new_file_path".
         if b"::" not in data:
-            log.warning("Received FILE_MOVE command from monitor with an incorrect argument.")
+            log.warning("Received FILE_MOVE command from monitor with an incorrect argument")
             return
 
         old_filepath, new_filepath = data.split(b"::", 1)
-        new_filepath = new_filepath.decode("utf8")
-        self.analyzer.files.move_file(old_filepath.decode("utf8"), new_filepath, self.pid)
+        new_filepath = new_filepath.decode()
+        self.analyzer.files.move_file(old_filepath.decode(), new_filepath, self.pid)
 
     def dispatch(self, data):
         response = "NOPE"
         if not data or b":" not in data:
-            log.critical("Unknown command received from the monitor: %r", data.strip())
+            log.critical("Unknown command received from the monitor: %s", data.strip())
         else:
             # Backwards compatibility (old syntax is, e.g., "FILE_NEW:" vs the
             # new syntax, e.g., "1234:FILE_NEW:").
@@ -1346,15 +1493,14 @@ def dispatch(self, data):
             # if command not in (b"DEBUG", b"INFO"):
             #    log.info((command, arguments, "dispatch"))
             self.pid = None
-            fn = getattr(self, "_handle_%s" % command.lower().decode("utf-8"), None)
+            fn = getattr(self, f"_handle_{command.lower().decode()}", None)
             if not fn:
-                log.critical("Unknown command received from the monitor: %r", data.strip())
+                log.critical("Unknown command received from the monitor: %s", data.strip())
             else:
                 try:
                     response = fn(arguments)
                 except Exception as e:
-                    log.error(e, exc_info=True)
-                    log.exception("Pipe command handler exception occurred (command " "%s args %r).", command, arguments)
+                    log.exception("Pipe command handler exception occurred (command %s args %s). %s", command, arguments, str(e))
 
         return response
 
@@ -1364,6 +1510,7 @@ def dispatch(self, data):
     error = ""
     completion_key = ""
     data = {}
+    analyzer = None
     try:
         # Initialize the main analyzer class.
         analyzer = Analyzer()
@@ -1380,11 +1527,12 @@ def dispatch(self, data):
 
     # When user set wrong package, Example: Emotet package when submit doc, package only is for EXE!
     except CuckooError:
-        log.info("You probably submitted the job with wrong package")
+        log.exception("You probably submitted the job with wrong package")
         data["status"] = "exception"
         data["description"] = "You probably submitted the job with wrong package"
         try:
-            urlopen("http://127.0.0.1:8000/status", urlencode(data).encode("utf-8")).read()
+            with urlopen("http://127.0.0.1:8000/status", urlencode(data).encode()) as response:
+                response.read()
         except Exception as e:
             print(e)
         sys.exit()
@@ -1404,22 +1552,27 @@ def dispatch(self, data):
         if len(log.handlers):
             log.exception(error_exc)
         else:
-            sys.stderr.write("{0}\n".format(error_exc))
+            sys.stderr.write(f"{error_exc}\n")
 
     # Once the analysis is completed or terminated for any reason, we report
     # back to the agent, notifying that it can report back to the host.
     finally:
         try:
             # Let's invoke the completion procedure.
-            analyzer.complete()
-        except Exception as e:
+            if analyzer is not None:
+                analyzer.complete()
+        except Exception:
             complete_excp = traceback.format_exc()
             data["status"] = "exception"
             if "description" in data:
-                data["description"] += "%s\n%s" % (data["description"], complete_excp)
+                if isinstance(data["description"], str):
+                    data["description"] = f"{data['description']}\n{complete_excp}"
+                else:
+                    data["description"] = f"{str(data['description'])}\n{complete_excp}"
             else:
                 data["description"] = complete_excp
         try:
-            urlopen("http://127.0.0.1:8000/status", urlencode(data).encode("utf-8")).read()
+            with urlopen("http://127.0.0.1:8000/status", urlencode(data).encode()) as response:
+                response.read()
         except Exception as e:
             print(e)
diff --git a/analyzer/windows/bin/PPLinject.exe b/analyzer/windows/bin/PPLinject.exe
new file mode 100644
index 00000000000..c040aa61f24
Binary files /dev/null and b/analyzer/windows/bin/PPLinject.exe differ
diff --git a/analyzer/windows/bin/PPLinject64.exe b/analyzer/windows/bin/PPLinject64.exe
new file mode 100644
index 00000000000..5dcfef78a57
Binary files /dev/null and b/analyzer/windows/bin/PPLinject64.exe differ
diff --git a/analyzer/windows/bin/autoit3.exe b/analyzer/windows/bin/autoit3.exe
new file mode 100644
index 00000000000..fe6959b8305
Binary files /dev/null and b/analyzer/windows/bin/autoit3.exe differ
diff --git a/analyzer/windows/bin/capicom.dll b/analyzer/windows/bin/capicom.dll
deleted file mode 100755
index b1fdd491cc3..00000000000
Binary files a/analyzer/windows/bin/capicom.dll and /dev/null differ
diff --git a/analyzer/windows/bin/execsc.exe b/analyzer/windows/bin/execsc.exe
deleted file mode 100644
index cc267585b59..00000000000
Binary files a/analyzer/windows/bin/execsc.exe and /dev/null differ
diff --git a/analyzer/windows/bin/flashplayer.exe b/analyzer/windows/bin/flashplayer.exe
deleted file mode 100644
index a7658478e15..00000000000
Binary files a/analyzer/windows/bin/flashplayer.exe and /dev/null differ
diff --git a/analyzer/windows/bin/loader.exe b/analyzer/windows/bin/loader.exe
index 92b84fe25c5..52b4e15cc93 100644
Binary files a/analyzer/windows/bin/loader.exe and b/analyzer/windows/bin/loader.exe differ
diff --git a/analyzer/windows/bin/loader_x64.exe b/analyzer/windows/bin/loader_x64.exe
index a449af37be6..315e09b9bda 100644
Binary files a/analyzer/windows/bin/loader_x64.exe and b/analyzer/windows/bin/loader_x64.exe differ
diff --git a/analyzer/windows/bin/oldloader.exe b/analyzer/windows/bin/oldloader.exe
deleted file mode 100644
index 4cb7b8fb159..00000000000
Binary files a/analyzer/windows/bin/oldloader.exe and /dev/null differ
diff --git a/analyzer/windows/bin/oldloader_x64.exe b/analyzer/windows/bin/oldloader_x64.exe
deleted file mode 100644
index 2727d4ff585..00000000000
Binary files a/analyzer/windows/bin/oldloader_x64.exe and /dev/null differ
diff --git a/analyzer/windows/bin/signtool.exe b/analyzer/windows/bin/signtool.exe
index 9ec88715e09..e631c35dbc4 100644
Binary files a/analyzer/windows/bin/signtool.exe and b/analyzer/windows/bin/signtool.exe differ
diff --git a/analyzer/windows/data/msix.ps1 b/analyzer/windows/data/msix.ps1
new file mode 100644
index 00000000000..6d67bc108e8
--- /dev/null
+++ b/analyzer/windows/data/msix.ps1
@@ -0,0 +1,40 @@
+<#
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+https://github.com/Microsoft/Terminal#installing-and-running-windows-terminal
+NOTE: If you are using PowerShell 7+, please run
+Import-Module Appx -UseWindowsPowerShell
+before using Add-AppxPackage.
+Add-AppxPackage Microsoft.WindowsTerminal_<versionNumber>.msixbundle
+
+-NoProfile -ExecutionPolicy bypass
+
+$ps_version=(Get-host).version.Major
+$ps_7_command = ""
+if ($ps_version -gt 5)
+{
+    $ps_7_command = "Import-Module Appx -UseWindowsPowerShell"
+}
+
+# Microsoft Windows 10 X
+$os=Get-ComputerInfo | Select-Object OSName| ForEach-Object {$_.OsName }
+
+https://learn.microsoft.com/en-us/windows/msix/package/unsigned-package
+-AllowUnsigned only available on Window 11#>
+
+$pre_last_installed_app=Get-StartApps | Select-Object AppID -last 1 | ForEach-Object {$_.AppID }
+Add-AppPackage -path $Args[0]
+$last_installed_app=Get-StartApps | Select-Object AppID -last 1 | ForEach-Object {$_.AppID }
+
+if ($pre_last_installed_app -eq $last_installed_app)
+{
+    Write-Host Script Start
+    Write-Host "MSIX package wasn't installed properly, see screenshots and logs for more details"
+    exit
+    Write-Host Script End
+}
+# explorer shell:AppsFolder\$last_installed_app
+Start-Process shell:AppsFolder\$last_installed_app
+# -Verb RunAs
diff --git a/analyzer/windows/data/yara/AgentTesla.yar b/analyzer/windows/data/yara/AgentTesla.yar
new file mode 100644
index 00000000000..70542d1a6ee
--- /dev/null
+++ b/analyzer/windows/data/yara/AgentTesla.yar
@@ -0,0 +1,26 @@
+rule AgentTeslaV4JIT
+{
+    meta:
+        author = "kevoreilly"
+        description = "AgentTesla V4 JIT native config extractor"
+        cape_options = "bp0=$decode1+8,count=0,action0=string:ecx,typestring=AgentTesla Strings,no-logs=2"
+        packed = "7f8a95173e17256698324886bb138b7936b9e8c5b9ab8fffbfe01080f02f286c"
+    strings:
+        $decode1 = {8B 01 8B 40 3C FF 50 10 8B C8 E8 [4] 89 45 CC B8 1A 00 00 00}
+        $decode2 = {83 F8 18 75 2? 8B [2-5] D1 F8}
+        $decode3 = {8D 4C 0? 08 0F B6 01 [0-3] 0F B6 5? 04 33 C2 88 01 B8 19 00 00 00}
+    condition:
+        2 of them
+}
+
+rule AgentTeslaV3JIT
+{
+    meta:
+        author = "ClaudioWayne"
+        description = "AgentTesla V3 JIT native string decryption"
+        cape_options = "bp0=$decode+20,count=0,action0=string:eax+8,typestring=AgentTesla Strings,no-logs=2"
+    strings:
+        $decode = {8B C8 57 FF 75 08 8B [5] 8B 01 8B 40 3C FF [2] 8B F0 B8 03 00 00 00}
+    condition:
+        all of them
+}
diff --git a/analyzer/windows/data/yara/Amatera.yar b/analyzer/windows/data/yara/Amatera.yar
new file mode 100644
index 00000000000..51dfa0897d8
--- /dev/null
+++ b/analyzer/windows/data/yara/Amatera.yar
@@ -0,0 +1,14 @@
+rule Amatera
+{
+    meta:
+        author = "kevoreilly"
+        description = "Amatera syscall capture"
+        cape_options = "sysbp=$sysenter"
+        hash = "35eb93548a0c037d392f870c05e0e9fb1aeff3a5a505e1d4a087f7465ed1f6af"
+    strings:
+        $sysenter = {64 FF 15 C0 00 00 00 C3}
+        $harness = {0F B7 55 EC 52 E8 [4] 83 C4 04 C7 45 F0 [4] 8B 45 ?? 50 [0-40] FF 55 F0 83 C4 ?? 8B E5 5D C3}
+        $socket = {66 89 [2] 6A 00 6A ?? 8D [3] 68 (03|07) 20 01 00 8B 4D F8 E8 [4] 0F B6 (C0|C8) 85 (C0|C9) 75 04 32 C0 EB}
+    condition:
+        uint16(0) == 0x5A4D and all of them
+}
diff --git a/analyzer/windows/data/yara/AntiCuckoo.yar b/analyzer/windows/data/yara/AntiCuckoo.yar
new file mode 100644
index 00000000000..ae6336adece
--- /dev/null
+++ b/analyzer/windows/data/yara/AntiCuckoo.yar
@@ -0,0 +1,12 @@
+rule AntiCuckoo
+{
+    meta:
+        author = "kevoreilly"
+        description = "AntiCuckoo bypass: https://github.com/therealdreg/anticuckoo"
+        cape_options = "bp0=$HKActivOldStackCrash+36,action0=jmp,count=1"
+        hash = "ad5e52f144bb4a1dae3090978c6ecb4c7732538c9b62a6cedd32eccee6094be5"
+    strings:
+        $HKActivOldStackCrash = {5B 81 FB FA FA FA FA 74 01 41 3B E0 75 ?? 83 E9 0B 83 F9 04 7F 04 C6 45 ?? 00 89 4D ?? 89 65 ?? 80 7D ?? 00 74}
+    condition:
+        uint16(0) == 0x5A4D and all of them
+}
diff --git a/analyzer/windows/data/yara/AuraStealer.yar b/analyzer/windows/data/yara/AuraStealer.yar
new file mode 100644
index 00000000000..9302da2c43f
--- /dev/null
+++ b/analyzer/windows/data/yara/AuraStealer.yar
@@ -0,0 +1,29 @@
+rule AuraStealerBypass
+{
+    meta:
+        author = "enzok"
+        description = "Bypass AuraStealer"
+        cape_options = "bp0=$antivm1+3,action0=skip,count=0"
+        packed = "a9c47f10d5eb77d7d6b356be00b4814a7c1e5bb75739b464beb6ea03fc36cc85"
+    strings:
+        $antivm1 = {39 04 11 0f 94 C3 8B 44 ?? ?? 85 C0}  //+3, skip
+        $conf = {8D BE ?? 00 00 00 68 00 40 00 00 5? 5? FF D1 83 C4 ?? 8B 07 8B 57 04 29 C2}
+        $keyexpansion = {31 C0 8A 1C 82 88 1C 81 8A 5C 82 01 88 5C 81 01 8A 5C 82 02 88 5C 81 02 8A 5C 82 03 88 5C 81 03 4? 83 F8 08 75 ?? B? 08 00 00 00}
+    condition:
+        all of them
+}
+
+rule AuraStealerConfig
+{
+    meta:
+        author = "enzok"
+        description = "AuraStealer Config"
+        cape_options = "bp1=$conf*-1,action1=string:eax,count=1,hc1=1,typestring=AuraStealer Config"
+        packed = "a9c47f10d5eb77d7d6b356be00b4814a7c1e5bb75739b464beb6ea03fc36cc85"
+    strings:
+        $conf = {8D BE ?? 00 00 00 68 00 40 00 00 5? 5? FF D1 83 C4 ?? 8B 07 8B 57 04 29 C2}
+        $antivm1 = {39 04 11 0f 94 C3 8B 44 ?? ?? 85 C0}
+        $keyexpansion = {31 C0 8A 1C 82 88 1C 81 8A 5C 82 01 88 5C 81 01 8A 5C 82 02 88 5C 81 02 8A 5C 82 03 88 5C 81 03 4? 83 F8 08 75 ?? B? 08 00 00 00}
+    condition:
+        all of them
+}
diff --git a/analyzer/windows/data/yara/Blister.yar b/analyzer/windows/data/yara/Blister.yar
new file mode 100644
index 00000000000..a3c4bf273f9
--- /dev/null
+++ b/analyzer/windows/data/yara/Blister.yar
@@ -0,0 +1,17 @@
+rule Blister
+{
+    meta:
+        author = "kevoreilly"
+        description = "Blister Sleep Bypass"
+        cape_options = "bp0=$sleep1+6,bp1=$sleep2+7,action0=setsignflag,action1=clearcarryflag,count=3"
+        packed = "0a7778cf6f9a1bd894e89f282f2e40f9d6c9cd4b72be97328e681fe32a1b1a00"
+        packed = "afb77617a4ca637614c429440c78da438e190dd1ca24dc78483aa731d80832c2"
+    strings:
+        $sleep1 = {FF FF 83 7D F0 00 (E9|0F 8?)}
+        $sleep2 = {81 7D D8 90 B2 08 00 (E9|0F 8?)}
+        $protect = {50 6A 20 8D 45 ?? 50 8D 45 ?? 50 6A FF FF D7}
+        $lock = {56 33 F6 B9 FF FF FF 7F 89 75 FC 8B C1 F0 FF 45 FC 83 E8 01 75 F7}
+        $comp = {6A 04 59 A1 [4] 8B 78 04 8B 75 08 33 C0 F3 A7 75 0B 8B 45 0C 83 20 00 33 C0 40 EB 02 33 C0}
+     condition:
+        uint16(0) == 0x5A4D and 2 of ($protect, $lock, $comp) and all of ($sleep*)
+}
diff --git a/analyzer/windows/data/yara/BruteRatel.yar b/analyzer/windows/data/yara/BruteRatel.yar
new file mode 100644
index 00000000000..1e154b904f3
--- /dev/null
+++ b/analyzer/windows/data/yara/BruteRatel.yar
@@ -0,0 +1,51 @@
+rule BruteRatelSyscall
+{
+    meta:
+        author = "kevoreilly"
+        description = "BruteRatel Syscall Bypass"
+        cape_options = "sysbp=$syscall1+6,sysbp=$syscall2+8"
+    strings:
+        $syscall1 = {49 89 CA 4? 89 ?? (41 FF|FF)}
+        $syscall2 = {49 89 CA 48 8B 44 24 ?? FF 64 24}
+    condition:
+        all of them
+}
+
+rule BruteRatelPacker
+{
+    meta:
+        author = "kevoreilly"
+        description = "BruteRatel Outer Encryption Layer"
+        cape_options = "bp1=$outer*,action1=scan,count=0"
+    strings:
+        $outer = {83 45 F8 01 81 7D F8 FF 00 00 00 7E ?? 83 45 FC 01 8B 45 FC 3B 45 ?? 7E ?? 48}
+        $inner = {88 E3 32 1C 0E 88 5C 15 00 48 8D 49 01 48 8D 52 01 38 C1 76 ?? 48 01 CE EB ?? FF}
+        $date = {48 8B 17 48 85 D2 0F 85 [2] 00 00 8B 47 08 85 C0 0F 85 [2] 00 00}
+    condition:
+        ($outer) and not ($inner) and not ($date)
+}
+
+rule BruteRatelDate
+{
+    meta:
+        author = "kevoreilly"
+        description = "BruteRatel Date Check Bypass"
+        cape_options = "clear,bp1=$inner*,action1=scan,bp2=$date+6,action2=skip,count=0"
+    strings:
+        $inner = {88 E3 32 1C 0E 88 5C 15 00 48 8D 49 01 48 8D 52 01 38 C1 76 ?? 48 01 CE EB ?? FF}
+        $date = {48 8B 17 48 85 D2 0F 85 [2] 00 00 8B 47 08 85 C0 0F 85 [2] 00 00}
+    condition:
+        any of them
+}
+
+rule BruteRatelConfig
+{
+    meta:
+        author = "kevoreilly"
+        description = "BruteRatel Config Extraction"
+        cape_options = "clear,br1=$decode,count=0,action0=string:eax,typestring=BruteRatel Config"
+    strings:
+        $decode = {55 57 56 53 48 83 EC ?? 31 C0 48 89 CB 48 89 D7 44 89 C6 44 89 CD 44 39 01 77 ?? 41 8D 48 01 E8 [4] 31 C9}
+    condition:
+        all of them
+}
diff --git a/analyzer/windows/data/yara/BumbleBee.yar b/analyzer/windows/data/yara/BumbleBee.yar
new file mode 100644
index 00000000000..aa9f44982bf
--- /dev/null
+++ b/analyzer/windows/data/yara/BumbleBee.yar
@@ -0,0 +1,46 @@
+rule BumbleBeeLoader
+{
+    meta:
+        author = "enzo & kevoreilly"
+        description = "BumbleBee Loader"
+        cape_options = "coverage-modules=gdiplus,ntdll-protect=0"
+    strings:
+        $str_set = {C7 ?? 53 65 74 50}
+        $str_path = {C7 4? 04 61 74 68 00}
+        $openfile = {4D 8B C? [0-70] 4C 8B C? [0-70] 41 8B D? [0-70] 4? 8B C? [0-70] FF D?}
+        $createsection = {89 44 24 20 FF 93 [2] 00 00 80 BB [2] 00 00 00 8B F? 74}
+        $hook = {48 85 C9 74 20 48 85 D2 74 1B 4C 8B C9 45 85 C0 74 13 48 2B D1 42 8A 04 0A 41 88 01 49 FF C1 41 83 E8 01 75 F0 48 8B C1 C3}
+        $iternaljob = "IternalJob"
+    condition:
+        uint16(0) == 0x5A4D and 2 of them
+}
+
+rule BumbleBeeShellcode
+{
+    meta:
+        author = "kevoreilly"
+        description = "BumbleBee Loader 2023"
+        cape_options = "coverage-modules=gdiplus,ntdll-protect=0"
+        packed = "51bb71bd446bd7fc03cc1234fcc3f489f10db44e312c9ce619b937fad6912656"
+    strings:
+        $setpath = "setPath"
+        $alloc = {B8 01 00 00 00 48 6B C0 08 48 8D 0D [2] 00 00 48 03 C8 48 8B C1 48 89 [3] 00 00 00 8B 44 [2] 05 FF 0F 00 00 25 00 F0 FF FF 8B C0 48 89}
+        $hook = {48 85 C9 74 20 48 85 D2 74 1B 4C 8B C9 45 85 C0 74 13 48 2B D1 42 8A 04 0A 41 88 01 49 FF C1 41 83 E8 01 75 F0 48 8B C1 C3}
+        $algo = {41 8B C1 C1 E8 0B 0F AF C2 44 3B C0 73 6A 4C 8B [3] 44 8B C8 B8 00 08 00 00 2B C2 C1 E8 05 66 03 C2 8B 94 [2] 00 00 00}
+    condition:
+        2 of them
+}
+
+rule Bumblebee
+{
+    meta:
+        author = "enzo & kevoreilly"
+        description = "BumbleBee Anti-VM Bypass"
+        cape_options = "bp0=$antivm1+2,bp1=$antivm2+2,bp1=$antivm3+38,action0=jmp,action1=skip,count=0,force-sleepskip=1"
+    strings:
+        $antivm1 = {84 C0 74 09 33 C9 FF [4] 00 CC 33 C9 E8 [3] 00 4? 8B C8 E8}
+        $antivm2 = {84 C0 0F 85 [2] 00 00 33 C9 E8 [4] 48 8B C8 E8 [4] 48 8D 85}
+        $antivm3 = {33 C9 E8 [4] 48 8B C8 E8 [4] 83 CA FF 48 8B 0D [4] FF 15 [4] E8 [4] 84 c0}
+    condition:
+        uint16(0) == 0x5A4D and any of them
+}
diff --git a/analyzer/windows/data/yara/CargoBayLoader.yar b/analyzer/windows/data/yara/CargoBayLoader.yar
new file mode 100644
index 00000000000..dfa0e186ad4
--- /dev/null
+++ b/analyzer/windows/data/yara/CargoBayLoader.yar
@@ -0,0 +1,13 @@
+rule CargoBayLoader
+{
+    meta:
+        author = "kevoreilly"
+        description = "CargoBayLoader anti-vm bypass"
+        cape_options = "bp0=$jmp1+4,action0=skip,bp1=$jmp2+2,action1=skip,count=1,force-sleepskip=1"
+        hash = "75e975031371741498c5ba310882258c23b39310bd258239277708382bdbee9c"
+    strings:
+        $jmp1 = {40 42 0F 00 0F 82 [2] 00 00 48 8D 15 [4] BF 04 00 00 00 41 B8 04 00 00 00 4C 8D [3] 4C 89 F1 E8}
+        $jmp2 = {84 DB 0F 85 [2] 00 00 48 8D 15 [4] 41 BE 03 00 00 00 41 B8 03 00 00 00 4C 8D 7C [2] 4C 89 F9 E8}
+    condition:
+        uint16(0) == 0x5A4D and all of them
+}
diff --git a/analyzer/windows/data/yara/DarkGate.yar b/analyzer/windows/data/yara/DarkGate.yar
new file mode 100644
index 00000000000..bc0b87bc94c
--- /dev/null
+++ b/analyzer/windows/data/yara/DarkGate.yar
@@ -0,0 +1,17 @@
+rule DarkGate
+{
+    meta:
+        author = "enzok"
+        description = "DarkGate config"
+        cape_options = "bp0=$config2+3,action0=dump:edx::1025,count=0,typestring=DarkGate Config"
+        hash = "c1d35921f4fc3bac681a3d5148f517dc0ec90ab8c51e267c8c6cd5b1ca3dc085"
+    strings:
+        $part1 = {8B 55 ?? 8A 4D ?? 80 E1 3F C1 E1 02 8A 5D ?? 80 E3 30 81 E3 FF [3] C1 EB 04 02 CB 88 4C 10 FF FF 45 ?? 80 7D ?? 40}
+        $part2 = {8B 55 ?? 8A 4D ?? 80 E1 0F C1 E1 04 8A 5D ?? 80 E3 3C 81 E3 FF [3] C1 EB 02 02 CB 88 4C 10 FF FF 45 ?? 80 7D ?? 40}
+        $part3 = {8B 55 ?? 8A 4D ?? 80 E1 03 C1 E1 06 8A 5D ?? 80 E3 3F 02 CB 88 4C 10 FF FF 45}
+        $alphabet = "zLAxuU0kQKf3sWE7ePRO2imyg9GSpVoYC6rhlX48ZHnvjJDBNFtMd1I5acwbqT+="
+        $config1 = {B9 01 04 00 00 E8 [4] 8D 45}
+        $config2 = {8B 55 ?? 8D 45 ?? E8 [4] 8D 45 ?? 5? B? 06 00 00 00 B? 01 00 00 00 8B 45 ?? E8 [4] 8B 45 ?? B? [4] E8 [4] 75}
+    condition:
+        ($alphabet) and (any of ($part*) or all of ($config*))
+}
diff --git a/analyzer/windows/data/yara/DarkGateLoader.yar b/analyzer/windows/data/yara/DarkGateLoader.yar
new file mode 100644
index 00000000000..c44be35608f
--- /dev/null
+++ b/analyzer/windows/data/yara/DarkGateLoader.yar
@@ -0,0 +1,15 @@
+rule DarkGateLoader
+{
+    meta:
+        author = "enzok"
+        description = "DarkGate Loader"
+        cape_options = "bp0=$decrypt1+30,bp0=$decrypt2+29,action0=dump:eax::ebx,bp1=$decrypt3+80,action1=dumpsize:eax,bp2=$decrypt3+124,hc2=1,action2=dump:eax,count=0"
+        packed = "b15e4b4fcd9f0d23d902d91af9cc4e01417c426e55f6e0b4ad7256f72ac0231a"
+    strings:
+        $loader = "loader"
+        $decrypt1 = {B? 01 00 00 00 8B [3] E8 [4] 8B D7 32 54 [4] 88 54 18 FF 4? 4? 75}
+        $decrypt2 = {B? 01 00 00 00 8B [2] E8 [4] 8B D7 2B D3 [4] 88 54 18 FF 4? 4? 75}
+        $decrypt3 = {89 85 [4] 8B 85 [4] 8B F0 8D BD [4] B? 10 [3] F3 A5 8B 85 [4] 33 D2 [2] 8B 85 [4] 99}
+    condition:
+        $loader and any of ($decrypt*)
+}
diff --git a/analyzer/windows/data/yara/DoomedLoader.yar b/analyzer/windows/data/yara/DoomedLoader.yar
new file mode 100644
index 00000000000..690a25b8298
--- /dev/null
+++ b/analyzer/windows/data/yara/DoomedLoader.yar
@@ -0,0 +1,12 @@
+rule DoomedLoader
+{
+    meta:
+        author = "kevoreilly"
+        cape_options = "clear,bp0=$anti*-4,action0=setzeroflag,sysbp=$syscall+7,count=0,procdump=2"
+        packed = "914b1b3180e7ec1980d0bafe6fa36daade752bb26aec572399d2f59436eaa635"
+    strings:
+        $anti = {48 8B 4C 24 ?? E8 [4] 84 C0 B8 [4] 41 0F 45 C6 EB}
+        $syscall = {49 89 CA 8B 44 24 08 FF 64 24 10}
+    condition:
+        uint16(0) == 0x5A4D and all of them
+}
diff --git a/analyzer/windows/data/yara/EmotetPacker.yar b/analyzer/windows/data/yara/EmotetPacker.yar
new file mode 100644
index 00000000000..9fb78722aa3
--- /dev/null
+++ b/analyzer/windows/data/yara/EmotetPacker.yar
@@ -0,0 +1,13 @@
+rule EmotetPacker
+{
+    meta:
+        author = "kevoreilly"
+        description = "Emotet bypass"
+        cape_options = "bp0=$trap1+31,action0=skip,bp1=$trap2+43,action1=jmp:186,count=1"
+        hash = "5a95d1d87ce69881b58a0e3aafc1929861e2633cdd960021d7b23e2a36409e0d"
+    strings:
+        $trap1 = {8B 45 08 0F 28 0D [4] 0F 57 C0 0F 29 46 30 89 46 40 C7 46 44 00 00 00 00 0F 11 4E 48 E8}
+        $trap2 = {F2 0F 10 15 [4] BE 01 00 00 00 0F 01 F9 C7 44 24 60 00 00 00 00 89 4C 24 60 0F 01 F9 C7 44 24 5C 00 00 00 00 89 4C 24 5C 0F 1F 84 00 00 00 00 00}
+    condition:
+        uint16(0) == 0x5A4D and any of ($trap*)
+}
diff --git a/analyzer/windows/data/yara/Formbook.yar b/analyzer/windows/data/yara/Formbook.yar
index 6ba07fc969e..023819e72d1 100644
--- a/analyzer/windows/data/yara/Formbook.yar
+++ b/analyzer/windows/data/yara/Formbook.yar
@@ -1,11 +1,75 @@
-rule Formbook
+rule FormhookA
 {
     meta:
         author = "kevoreilly"
-        description = "Formbook Anti-analysis Bypass"
-        cape_options = "bp0=$remap_ntdll-25,action0=setedx:ntdll,count=0"
+        description = "Formbook Anti-hook Bypass"
+        cape_options = "clear,bp0=$remap_ntdll_0,action0=setedx:ntdll,count0=1,bp1=$remap_ntdll_1,action1=setdst:ntdll,count1=1"
+        packed = "9e38c0c3c516583da526016c4c6a671c53333d3d156562717db79eac63587522"
+        packed = "b8e44f4a0d92297c5bb5b217c121f0d032850b38749044face2b0014e789adfb"
     strings:
-        $remap_ntdll = {6A 00 6A 04 8D 4D ?? 51 6A 07 52 56 E8 [4] 8B 45 ?? 83 C4 20 3B 06 0F 95 C1 84 C9 74 0E 33 C0 B2 FF 00 54 30 ?? 40 83 F8 0D 72 F6}
+        $remap_ntdll_0 = {33 56 04 8D 86 [2] 00 00 68 F0 00 00 00 50 89 56 ?? E8 [4] 8B [1-5] 6A 00 6A 04 8D 4D ?? 51 6A 07 52 56 E8 [4] 8B 45 ?? 83 C4 20 3B}
+        $remap_ntdll_1 = {33 56 0C 8D 86 [2] 00 00 68 F0 00 00 00 50 89 56 ?? E8 [4] 8B [1-5] 6A 00 6A 04 8D 4D ?? 51 6A 07 52 56 E8 [4] 8B 45 ?? 83 C4 20 3B}
     condition:
-        ($remap_ntdll)
+        any of them
+}
+
+rule FormhookB
+{
+    meta:
+        author = "kevoreilly"
+        description = "Formbook Anti-hook Bypass"
+        cape_options = "clear,bp0=$entry,action0=scan,hc0=1,bp1=$new_remap,action1=setdst:ntdll,count1=0,bp2=$code+14,count=0"
+        packed = "08c5f44d57f5ccc285596b3d9921bf7fbbbf7f9a827bb3285a800e4c9faf6731"
+    strings:
+        $decode = {B8 67 66 66 66 F7 E? C1 FA 03 8B ?2 C1 E? 1F 03 ?2}
+        $entry = {55 8B EC 83 EC ?4 53 56 57 [480-520] 8B E5 5D C3}
+        $new_remap = {8B (86 [2] 00 00|46 ??|06) 5F 5E 5B 8B E5 5D C3}
+        $code = {8B 4E 18 50 6A 00 51 57 56 E8 9A 18 00 00 8B 55 10 8B 45 0C 8B 0F 83 C4 1C 52 50 FF D1 5F 5E 5D C3}
+    condition:
+        2 of them
+}
+
+rule FormconfA
+{
+    meta:
+        author = "kevoreilly"
+        description = "Formbook Config Extraction"
+        cape_options = "clear,bp0=$c2,action0=string:rcx+1,bp1=$decoy+67,action1=string:rcx+1,count=0,typestring=Formbook Config"
+        packed = "b8e44f4a0d92297c5bb5b217c121f0d032850b38749044face2b0014e789adfb"
+    strings:
+        $c2 = {44 8B C6 48 8B D3 49 8B CE E8 [4] 44 88 23 41 8B DD 48 8D [2] 66 66 66 0F 1F 84 00 00 00 00 00 BA 8D 00 00 00 41 FF C4}
+        $decoy = {8B D7 0F 1F 44 00 00 0F B6 03 FF C0 48 98 48 03 D8 48 FF CA 75 ?? 44 0F B6 03 48 8D 53 01 48 8D 4C [2] E8}
+    condition:
+        all of them
+}
+
+rule Formhelper
+{
+    meta:
+        author = "kevoreilly"
+        description = "Formbook Config Extraction"
+        cape_options = "clear,bp2=$config,action2=scan,count=0"
+        packed = "0270016f451f9ba630f2ea4e2ea006fb89356627835b560bb2f4551a735ba0e1"
+    strings:
+        $config = {40 55 53 56 57 41 54 41 55 41 56 41 57 48 8D AC 24 [4] 48 81 EC [2] 00 00 45 33 ?? 33 C0 4C 8B E9 4C 89}
+        $decode = {66 66 66 66 0F 1F 84 00 00 00 00 00 0F B6 41 01 48 FF C9 28 41 01 49 FF C9}
+    condition:
+        all of them
+}
+
+rule FormconfB
+{
+    meta:
+        author = "kevoreilly"
+        description = "Formbook Config Extraction"
+        cape_options = "clear,bp0=$c2_1,bp0=$c2_2,action0=string:rcx,bp1=$decoy,action1=string:rdi,bp2=$config,action2=scan,bp3=$sleep+5,action3=skip,count=0,typestring=Formbook Config"
+        packed = "60571b2683e7b753a77029ebe9b5e1cb9f3fbfa8d6a43e4b7239eefd13141ae4"
+    strings:
+        $c2_1 = {44 0F B6 5D ?? 45 84 DB 74 ?? 48 8D 4D [1-5] 41 80 FB 2F 74 11 0F B6 41 01 48 FF C1 FF C3 44 0F B6 D8 84 C0 75}
+        $c2_2 = {40 53 48 83 EC 20 48 8B DA 48 85 C9 74 28 80 39 00 74 23 48 85 D2 74 1E 48 8B D1 41 B8 04 00 00 00 48 8B CB E8}
+        $decoy = {44 8D 1C 33 [0-13] 48 8D 7D [1-5] 42 C6 44 [2] 00 [0-4] 48 8B CF E8}
+        $config = {40 55 53 56 57 41 54 41 55 41 56 41 57 48 8D AC 24 [4] 48 81 EC [2] 00 00 45 33 F6 33 C0 4C 8B E9 4C 89 75}
+        $sleep = {B9 88 13 00 00 FF D7 44 8B 9B [4] 41 81 FB 00 01 00 00 75 ?? 48 39 B3 [4] 74 ?? 8B 83 [4] 05 00 20 00 00 39 B0}
+    condition:
+        2 of them
 }
diff --git a/analyzer/windows/data/yara/GetTickCountAntiVM.yar b/analyzer/windows/data/yara/GetTickCountAntiVM.yar
new file mode 100644
index 00000000000..eec3c3fdcaf
--- /dev/null
+++ b/analyzer/windows/data/yara/GetTickCountAntiVM.yar
@@ -0,0 +1,20 @@
+rule GetTickCountAntiVM
+{
+    meta:
+        author = "kevoreilly"
+        description = "GetTickCountAntiVM bypass"
+        cape_options = "bp0=$antivm1-13,bp0=$antivm5-40,bp0=$antivm6,action0=wret,hc0=1,bp1=$antivm2-6,action1=wret,hc1=1,count=1,bp2=$antivm3+42,action2=jmp:96,bp3=$antivm4-9,action3=wret,hc3=1"
+        hash = "662bc7839ed7ddd82d5fdafa29fafd9a9ec299c28820fe4104fbba9be1a09c42"
+        hash = "00f1537b13933762e1146e41f3bac668123fac7eacd0aa1f7be0aa37a91ef3ce"
+        hash = "549bca48d0bac94b6a1e6eb36647cd007fed5c0e75a0e4aa315ceabdafe46541"
+        hash = "90c29a66209be554dfbd2740f6a54d12616da35d0e5e4af97eb2376b9d053457"
+    strings:
+        $antivm1 = {57 FF D6 FF D6 BF 01 00 00 00 FF D6 F2 0F 10 0D [4] 47 66 0F 6E C7 F3 0F E6 C0 66 0F 2F C8 73}
+        $antivm2 = {F2 0F 11 45 ?? FF 15 [4] 6A 00 68 10 27 00 00 52 50 E8 [4] 8B C8 E8 [4] F2 0F 59 45}
+        $antivm3 = {0F 57 C0 E8 [4] 8B 35 [4] BF 01 00 00 00 FF D6 F2 0F 10 0D [4] 47 66 0F 6E C7 F3 0F E6 C0 66 0F 2F C8 73}
+        $antivm4 = {F2 0F 11 45 EC FF 15 [4] 8B DA 8B C8 BA [4] 89 5D FC F7 E2 BF [4] 89 45 F4 8B F2 8B C1 B9}
+        $antivm5 = {BB 01 00 00 00 8B FB 90 FF 15 [4] FF C7 66 0F 6E C7 F3 0F E6 C0 66 0F 2F F8 73 EA}
+        $antivm6 = {48 81 EC 88 00 00 00 0F 57 C0 F2 0F 11 44 [2] F2 0F 10 05 [4] F2 0F 11 44 [2] F2 0F 10 05 [4] F2 0F 11}
+    condition:
+        any of them
+}
diff --git a/analyzer/windows/data/yara/Guloader.yar b/analyzer/windows/data/yara/Guloader.yar
index f27d5bc1756..ada44a7fd1e 100644
--- a/analyzer/windows/data/yara/Guloader.yar
+++ b/analyzer/windows/data/yara/Guloader.yar
@@ -1,30 +1,47 @@
-rule Guloader
+rule GuloaderB
 {
     meta:
         author = "kevoreilly"
-        description = "Guloader bypass"
-        cape_options = "bp0=$trap0,bp0=$trap1+4,action0=skip,bp1=$trap2+11,bp1=$trap3+19,action1=skip,bp2=$antihook,action2=goto:ntdll::NtAllocateVirtualMemory,count=0"
+        description = "Guloader bypass 2021 Edition"
+        cape_options = "bp0=$trap0,action0=ret,bp1=$trap1,action1=ret:2,bp2=$antihook,action2=goto:ntdll::NtAllocateVirtualMemory,count=0,bp3=$trap2+7,action3=skip"
+        packed = "9ec05fd611c2df63c12cc15df8e87e411f358b7a6747a44d4a320c01e3367ca8"
     strings:
-        $trap0 = {0F 85 [2] FF FF 81 BD ?? 00 00 00 [2] 00 00 0F 8F [2] FF FF 39 D2 83 FF 00}
-        $trap1 = {49 83 F9 00 75 [1-20] 83 FF 00 [2-6] 81 FF}
-        $trap2 = {39 CB 59 01 D7 49 85 C8 83 F9 00 75 B3}
-        $trap3 = {61 0F AE E8 0F 31 0F AE E8 C1 E2 20 09 C2 29 F2 83 FA 00 7E CE C3}
-        $antihook = {FF 34 08 [0-300] 8F 04 0B [0-300] 83 F9 18 [0-300] FF E3}
+        $trap0 = {81 C6 00 10 00 00 [0-88] 81 FE 00 F0 [2] 0F 84 [2] 00 00}
+        $trap1 = {31 FF [0-128] (B9|C7 85 F8 00 00 00) 60 5F A9 00}
+        $antihook = {FF 34 08 [0-360] 8F 04 0B [0-360] 83 F9 18 [0-460] FF E3}
+        $trap2 = {83 BD 9C 00 00 00 00 0F 85 [2] 00 00}
     condition:
-        2 of them
+        3 of them
 }
 
-rule GuloaderB
+rule GuloaderPrecursor
 {
     meta:
         author = "kevoreilly"
-        description = "Guloader bypass 2021 Edition"
-        cape_options = "bp0=$trap0,action0=ret,bp1=$trap1,action1=ret2,bp2=$antihook,action2=goto:ntdll::NtAllocateVirtualMemory,count=0,bp3=$trap2+7,action3=skip"
+        description = "Guloader precursor"
+        cape_options = "bp0=$antidbg,action0=scan,hc0=1,count=0"
     strings:
-        $trap0 = {81 C6 00 10 00 00 [0-88] 81 FE 00 F0 [2] 0F 84 [2] 00 00}
-        $trap1 = {31 FF [0-128] (B9|C7 85 F8 00 00 00) 60 5F A9 00}
-        $antihook = {FF 34 08 [0-360] 8F 04 0B [0-360] 83 F9 18 [0-460] FF E3}
-        $trap2 = {83 BD 9C 00 00 00 00 0F 85 [2] 00 00}
+        $antidbg = {39 48 04 (0F 85 [3] ??|75 ??) 39 48 08 (0F 85 [3] ??|75 ??) 39 48 0C (0F 85 [3] ??|75 ??)}
+        $except = {8B 45 08 [0-3] 8B 00 [0-3] 8B 58 18 [0-20] 81 38 05 00 00 C0 0F 85 [4-7] 83 FB 00 (0F 84|74)}
+    condition:
+        2 of them and not uint16(0) == 0x5A4D
+}
+
+rule GuloaderC
+{
+    meta:
+        author = "kevoreilly"
+        description = "Guloader bypass 2023 Edition"
+        cape_options = "clear,bp0=$trap0,bp0=$trap0A,hc0=0,action0=ret,bp1=$trap1,action1=ret:4,bp2=$antihook,action2=goto:ntdll::NtAllocateVirtualMemory,count=0"
+        packed = "d0c1e946f02503a290d24637b5c522145f58372a9ded9e647d24cd904552d235"
+        packed = "26760a2ef432470c7fd2d570746b7decdcf34414045906871f33d80ff4dfc6ba"
+    strings:
+        $antidbg = {39 48 04 0F 85 [4] 39 48 08 0F 85 [4] 39 48 0C 0F 85 [4] 39 48 10 0F 85 [4] 39 48 14 0F 85 [4] 39 48 18 0F 85}
+        $except = {8B 45 08 [0-3] 8B 00 [0-3] 8B 58 18 [0-20] 81 38 05 00 00 C0 0F 85 [4-7] 83 FB 00 (0F 84|74)}
+        $trap0 = {81 C6 00 10 00 00 [0-148] (39 CE|3B B5) [0-6] 0F 84 [2] 00 00}
+        $trap0A = {E8 00 00 00 00 59 [0-2800] 81 C6 00 10 00 00 [0-148] (39 CE|3B B5) [0-6] 0F 84 [2] 00 00}
+        $trap1 = {89 D6 60 0F 31 B8 [4] (05|35|2D|B8) [4] (05|35|2D|B8) [4] (05|35|2D|B8) [4] 0F A2}
+        $antihook = {FF 34 08 [0-360] 8F 04 0B [0-800] FF E3}
     condition:
-        2 of them
+        3 of them
 }
diff --git a/analyzer/windows/data/yara/HeavensSyscall.yar b/analyzer/windows/data/yara/HeavensSyscall.yar
new file mode 100644
index 00000000000..62b069cd251
--- /dev/null
+++ b/analyzer/windows/data/yara/HeavensSyscall.yar
@@ -0,0 +1,13 @@
+rule HeavensSyscall
+{
+    meta:
+        author = "kevoreilly"
+        description = "Bypass variants of heaven's gate direct syscalls"
+        cape_options = "clear,br0=$gate1-9,action1=seteax:0,count=0,sysbp=$sysenter+10"
+        packed = "2950b4131886e06bdb83ab1611b71273df23b0d31a4d8eb6baddd33327d87ffa"
+    strings:
+        $gate1 = {00 00 00 00 74 24 8D 45 F8 50 6A FF FF 95 [4] 85 C0 74 08 8B 4D F8 89 4D FC EB 07 C7 45 FC 00 00 00 00 8B 45 FC EB 02 33 C0 8B E5 5D C2 C0}
+        $sysenter = {68 [4] E8 [4] E8 [4] C2 ?? 00 CC CC CC CC CC CC CC CC}
+    condition:
+        uint16(0) == 0x8B55 and all of them
+}
diff --git a/analyzer/windows/data/yara/IcedID.yar b/analyzer/windows/data/yara/IcedID.yar
index a3cacf74d9d..eb70d565f13 100644
--- a/analyzer/windows/data/yara/IcedID.yar
+++ b/analyzer/windows/data/yara/IcedID.yar
@@ -1,4 +1,18 @@
-rule IcedID
+rule IcedIDSyscallWriteMem
+{
+    meta:
+        author = "kevoreilly"
+        description = "IcedID 'syscall' packer bypass - direct write variant"
+        cape_options = "bp0=$tokencheck+9,action0=jmp,count=0"
+        packed = "28075ecae5e224c06e250f2c949c826b81844bca421e9158a7a9e965a29ef894"
+        packed = "045dff9f14a03225df55997cb2ca74ff60ecaf317b9e033ea93386785db84161"
+    strings:
+        $tokencheck = {39 5D ?? 75 06 83 7D ?? 03 74 05 BB 01 00 00 00 41 89 1C ?? 48 8B 4D ?? 41 FF D?}
+    condition:
+        uint16(0) == 0x5A4D and all of them
+}
+
+rule IcedIDHook
 {
     meta:
         author = "kevoreilly"
@@ -9,3 +23,77 @@ rule IcedID
     condition:
         any of them
 }
+
+rule IcedIDPackerA
+{
+    meta:
+        author = "kevoreilly"
+        description = "IcedID export selection"
+        cape_options = "export=$export"
+        hash = "fbad60002286599ca06d0ecb3624740efbf13ee5fda545341b3e0bf4d5348cfe"
+    strings:
+        $init = "init"
+        $export = {48 89 5C 24 08 48 89 6C 24 10 48 89 74 24 18 57 48 81 EC [2] 00 00 41 8B E9 49 8B F0 48 8B FA 48 8B D9}
+        $alloc = {8B 50 50 33 C9 44 8D 49 40 41 B8 00 30 00 00 FF 15 [4] 48 89 44 24 28 [0-3] 48 89 84 24 ?? 00 00 00 E9}
+    condition:
+        uint16(0) == 0x5A4D and all of them
+}
+
+rule IcedIDPackerB
+{
+    meta:
+        author = "kevoreilly"
+        description = "IcedID export selection"
+        cape_options = "export=$export"
+        hash = "6517ef2c579002ec62ddeb01a3175917c75d79ceca355c415a4462922c715cb6"
+    strings:
+        $init = "init"
+        $export = {44 89 4C 24 20 4C 89 44 24 18 48 89 4C 24 08 41 55 41 56 41 57 48 81 EC ?? 00 00 00 B9 [2] 00 00 4C 8B EA E8}
+        $loop = {8B C2 48 8D 49 01 83 E0 07 FF C2 0F B6 44 30 ?? 30 41 FF 3B D5 72}
+        //$load = {41 FF D7 33 D2 41 B8 00 80 00 00 49 8B CF FF 54}
+    condition:
+        uint16(0) == 0x5A4D and all of them
+}
+
+rule IcedIDPackerC
+{
+    meta:
+        author = "kevoreilly"
+        description = "IcedID export selection"
+        cape_options = "export=$export"
+        hash = "c06805b6efd482c1a671ec60c1469e47772c8937ec0496f74e987276fa9020a5"
+        hash = "265c1857ac7c20432f36e3967511f1be0b84b1c52e4867889e367c0b5828a844"
+    strings:
+        $export = {44 89 4C 24 20 4C 89 44 24 18 48 89 54 24 10 3A ED 74}
+        $alloc = {41 B8 00 10 00 00 8B D0 33 C9 66 3B ?? (74|0F 84)}
+    condition:
+        uint16(0) == 0x5A4D and all of them
+}
+
+rule IcedIDPackerD
+{
+    meta:
+        author = "kevoreilly"
+        description = "IcedID export selection"
+        cape_options = "export=$export"
+        hash = "7b226f8cc05fa7d846c52eb0ec386ab37f9bae04372372509daa6bacc9f885d8"
+    strings:
+        $init = "init"
+        $export = {44 89 4C 24 20 4C 89 44 24 18 48 89 54 24 10 66 3B ED 74}
+        $load = {41 B8 00 80 00 00 33 D2 48 8B 4C [2] EB ?? B9 69 04 00 00 E8 [4] 48 89 84 [2] 00 00 00 66 3B ED 74}
+    condition:
+        uint16(0) == 0x5A4D and all of them
+}
+
+rule IcedSleep
+{
+    meta:
+        author = "kevoreilly"
+        description = "IcedID sleep bypass"
+        cape_options = "force-sleepskip=1"
+        packed = "e99f3517a36a9f7a55335699cfb4d84d08b042d47146119156f7f3bab580b4d7"
+    strings:
+        $sleep = {89 4C 24 08 48 83 EC 38 8B 44 24 40 48 69 C0 10 27 00 00 48 F7 D8 48 89 44 24 20 48 8D 54 24 20 33 C9 FF 15 [4] 48 83 C4 38 C3}
+    condition:
+        uint16(0) == 0x5A4D and all of them
+}
diff --git a/analyzer/windows/data/yara/Latrodectus.yar b/analyzer/windows/data/yara/Latrodectus.yar
new file mode 100644
index 00000000000..c7af3855842
--- /dev/null
+++ b/analyzer/windows/data/yara/Latrodectus.yar
@@ -0,0 +1,12 @@
+rule Latrodectus
+{
+    meta:
+        author = "kevoreilly"
+        description = "Latrodectus export selection"
+        cape_options = "export=$export"
+        hash = "378d220bc863a527c2bca204daba36f10358e058df49ef088f8b1045604d9d05"
+    strings:
+        $export = {48 8B C4 48 89 58 08 48 89 68 10 48 89 70 18 48 89 78 20 41 56 48 83 EC 30 4C 8B 05 [4] 33 D2 C7 40 [5] 88 50 ?? 49 63 40 3C 42 8B 8C 00 88 00 00 00 85 C9 0F 84}
+    condition:
+        uint16(0) == 0x5A4D and all of them
+}
diff --git a/analyzer/windows/data/yara/Lumma.yar b/analyzer/windows/data/yara/Lumma.yar
new file mode 100644
index 00000000000..be839b86aab
--- /dev/null
+++ b/analyzer/windows/data/yara/Lumma.yar
@@ -0,0 +1,27 @@
+rule Lumma
+{
+    meta:
+        author = "kevoreilly"
+        description = "Lumma config extraction"
+        cape_options = "bp0=$decode+5,action0=string:ebp,count=0,bp1=$patch+8,action1=skip,typestring=Lumma Config"
+        packed = "0ee580f0127b821f4f1e7c032cf76475df9724a9fade2e153a69849f652045f8"
+    strings:
+        $c2 = {8D 44 24 ?? 50 89 4C 24 ?? FF 31 E8 [4] 83 C4 08 B8 FF FF FF FF}
+        $decode = {C6 44 05 00 00 83 C4 2C 5E 5F 5B 5D C3}
+        $patch = {66 C7 0? 00 00 8B 46 1? C6 00 01 8B}
+    condition:
+        uint16(0) == 0x5a4d and 2 of them
+}
+
+rule LummaRemap
+{
+    meta:
+        author = "kevoreilly"
+        description = "Lumma ntdll-remap bypass"
+        cape_options = "ntdll-remap=0"
+        packed = "7972cbf2c143cea3f90f4d8a9ed3d39ac13980adfdcf8ff766b574e2bbcef1b4"
+    strings:
+        $remap = {C6 44 24 20 00 C7 44 24 1C C2 00 00 90 C7 44 24 18 00 00 FF D2 C7 44 24 14 00 BA 00 00 C7 44 24 10 B8 00 00 00 8B ?? 89 44 24 11}
+    condition:
+        any of them
+}
diff --git a/analyzer/windows/data/yara/ModiLoader.yar b/analyzer/windows/data/yara/ModiLoader.yar
new file mode 100644
index 00000000000..36dc76915a4
--- /dev/null
+++ b/analyzer/windows/data/yara/ModiLoader.yar
@@ -0,0 +1,53 @@
+rule ModiLoader
+{
+    meta:
+        author = "kevoreilly"
+        description = "ModiLoader detonation shim"
+        cape_options = "exclude-apis=NtAllocateVirtualMemory:NtProtectVirtualMemory"
+        hash = "1f0cbf841a6bc18d632e0bc3c591266e77c99a7717a15fc4b84d3e936605761f"
+    strings:
+        $epilog1 = {81 C2 A1 03 00 00 87 D1 29 D3 33 C0 5A 59 59 64 89 10 68}
+        $epilog2 = {6A 00 6A 01 8B 45 ?? 50 FF 55 ?? 33 C0 5A 59 59 64 89 10 68}
+    condition:
+        uint16(0) == 0x5a4d and all of them
+}
+
+rule ModiLoaderOld {
+    meta:
+        author = "ditekSHen"
+        description = "ModiLoader detonation shim"
+        cape_options = "ntdll-protect=0"
+    strings:
+        $x1 = "*()%@5YT!@#G__T@#$%^&*()__#@$#57$#!@" fullword wide
+        $x2 = "dntdll" fullword wide
+        $x3 = "USERPROFILE" fullword wide
+        $s1 = "%s, ProgID: \"%s\"" ascii
+        $s2 = "SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" ascii
+        $s3 = "responsetext" ascii
+        $s4 = "C:\\Users\\Public\\" ascii
+        $s5 = "[InternetShortcut]" fullword ascii
+        $c1 = "start /min powershell -WindowStyle Hidden -inputformat none -outputformat none -NonInteractive -Command \"Add-MpPreference -ExclusionPath 'C:\\Users'\" & exit" ascii  nocase
+        $c2 = "mkdir \"\\\\?\\C:\\Windows \"" ascii nocase
+        $c3 = "mkdir \"\\\\?\\C:\\Windows \\System32\"" ascii nocase
+        $c4 = "ECHO F|xcopy \"" ascii nocase
+        $c5 = "\"C:\\Windows \\System32\" /K /D /H /Y" ascii nocase
+        $c6 = "ping 127.0.0.1 -n 6 > nul" ascii nocase
+        $c7 = "del /q \"C:\\Windows \\System32\\*\"" ascii nocase
+        $c8 = "rmdir \"C:\\Windows \\System32\"" ascii nocase
+        $c9 = "rmdir \"C:\\Windows \"" ascii nocase
+        $g1 = "powershell" ascii nocase
+        $g2 = "mkdir \"\\\\?\\C:\\" ascii nocase
+        $g3 = "\" /K /D /H /Y" ascii nocase
+        $g4 = "ping 127.0.0.1 -n" ascii nocase
+        $g5 = "del /q \"" ascii nocase
+        $g6 = "rmdir \"" ascii nocase
+    condition:
+        uint16(0) == 0x5a4d and
+        (
+            (2 of ($x*) and (all of ($g*) or (2 of ($s*) and 2 of ($c*)))) or
+            (all of ($s*) and (2 of ($c*) or all of ($g*))) or
+            (4 of ($c*) and (1 of ($x*) or 2 of ($s*))) or
+            (all of ($g*) and 4 of ($c*)) or
+            13 of them
+        )         
+}
diff --git a/analyzer/windows/data/yara/MysterySnail.yar b/analyzer/windows/data/yara/MysterySnail.yar
new file mode 100644
index 00000000000..d9710c948d8
--- /dev/null
+++ b/analyzer/windows/data/yara/MysterySnail.yar
@@ -0,0 +1,11 @@
+rule MysterySnail
+{
+    meta:
+        author = "kevoreilly"
+        description = "MysterySnail anti-sandbox bypass"
+        cape_options = "bp0=$anti+62,action0=skip,count=0"
+    strings:
+        $anti = {F2 0F 10 [3] 66 0F 2F 05 [4] 76 0A 8B [3] FF C0 89 [3] B9 5B 05 00 00 FF 15 [4] E8 [4] 89 [3] 8B [3] 8B [3] 2B C8 8B C1 3B [3] 7E 16}
+    condition:
+        any of them
+}
diff --git a/analyzer/windows/data/yara/NSIS.yar b/analyzer/windows/data/yara/NSIS.yar
new file mode 100644
index 00000000000..0ea8921dbbc
--- /dev/null
+++ b/analyzer/windows/data/yara/NSIS.yar
@@ -0,0 +1,12 @@
+rule NSIS
+{
+    meta:
+        author = "kevoreilly"
+        description = "NSIS Integrity Check function"
+        cape_options = "exclude-apis=LdrLoadDll"
+        hash = "d0c1e946f02503a290d24637b5c522145f58372a9ded9e647d24cd904552d235"
+    strings:
+        $check = {6A 1C 8D 45 [3-8] E8 [4] 8B 45 ?? A9 F0 FF FF FF 75 ?? 81 7D ?? EF BE AD DE 75 ?? 81 7D ?? 49 6E 73 74 75 ?? 81 7D ?? 73 6F 66 74 75 ?? 81 7D ?? 4E 75 6C 6C 75 ?? 09 45 08 8B 45 08 8B 0D [4] 83 E0 02 09 05 [4] 8B 45 ?? 3B C6 89 0D [4] 0F 8? [2] 00 00 F6 45 08 08 75 06 F6 45 08 04 75}
+    condition:
+        uint16(0) == 0x5A4D and all of them
+}
diff --git a/analyzer/windows/data/yara/NitrogenLoader.yar b/analyzer/windows/data/yara/NitrogenLoader.yar
new file mode 100644
index 00000000000..7fe0e3314db
--- /dev/null
+++ b/analyzer/windows/data/yara/NitrogenLoader.yar
@@ -0,0 +1,66 @@
+rule LoaderSyscall
+{
+    meta:
+        author = "enzok"
+        description = "Loader Syscall"
+        cape_options = "sysbp=$syscall*-2,count=0"
+    strings:
+        $makehashes = {48 89 4C 24 ?? 48 89 54 24 ?? 4? 89 44 24 ?? 4? 89 4C 24 ?? 4? 83 EC ?? B? [4] E8 [3] 00}
+        $number = {49 89 C3 B? [4] E8 [3] 00}
+        $syscall = {48 83 C4 ?? 4? 8B 4C 24 ?? 4? 8B 54 24 ?? 4? 8B 44 24 ?? 4? 8B 4C 24 ?? 4? 89 CA 4? FF E3}
+    condition:
+        all of them
+}
+
+rule NitrogenLoaderAES
+{
+    meta:
+        author = "enzok"
+        description = "NitrogenLoader AES and IV"
+        cape_options = "bp0=$keyiv0+8,action0=dump:ecx::64,hc0=1,bp1=$keyiv0*-4,action1=dump:ecx::32,hc1=1,count=0"
+    strings:
+        $keyiv0 = {48 8B 8C 24 [4] E8 [3] 00 4? 89 84 24 [4] 4? 8B 84 24 [4] 4? 89 84 24 [4] 4? 8B 8C 24 [4] E8 [3] 00}
+		$keyiv1 = {48 89 84 24 [4] 4? 8B 84 24 [4] 4? 8B 94 24 [4] 4? 8D 8C 24 [4] E8 [3] FF}
+		$keyiv2 = {48 63 84 24 [4] 4? 8B C0 4? 8B 94 24 [4] 4? 8D 8C 24 [4] E8 [3] FF 4? 8B 84 24}
+    condition:
+        all of them
+}
+
+rule NitrogenLoaderBypass
+{
+    meta:
+        author = "enzok"
+        description = "Nitrogen Loader Exit Bypass"
+		cape_options = "bp2=$exit-2,action2=jmp,count=0"
+    strings:
+        $string1 = "LoadResource"
+		$syscall = {48 83 C4 ?? 4? 8B 4C 24 ?? 4? 8B 54 24 ?? 4? 8B 44 24 ?? 4? 8B 4C 24 ?? 4? 89 CA 4? FF E3}
+		$exit = {33 C9 E8 [4] E8 [4] 48 8D 84 24 [4] 48 89 44 24 ?? 4? B? E4 00 00 00 4? 8B 05 [4] B? 03 00 00 00 48 8D}
+	condition:
+        all of them
+}
+
+rule NitrogenLoaderConfig
+{
+    meta:
+        author = "enzok"
+        description = "NitrogenLoader Config Extraction"
+        cape_options = "bp0=$decrypt1*+1,bp1=$key*,hc0=1,count=0,action0=string:rcx,action1=string:rdx,typestring=NitrogenLoader Config"
+    strings:
+        $decrypt1 = {48 63 4? 24 ?? 33 D2 48 [0-3] F7 B4 24 [4] 48 8B C2 48 8B 8C 24 [4] 0F BE 04 01}
+        $decrypt2 = {8B ?? 24 [1-4] 33 C8 8B C1 48 63 4C 24 ?? 48 8B 94 24 [4] 88 04 0A}
+        $decrypt3 = {8B 8C 24 ?? ?? ?? ?? 2B C8 8B C1 48 63 4C 24 ?? 48 8B 94 24 [4] 88 04 0A}
+        $key = {74 ?? E8 [4] 85 C0 75 ?? 4? 8B 0D [3] 00 4? 8D 15 [3] 00 E8}
+        $taskman_1 = {E8 [4] B9 61 00 00 00 88 84 24 [4] E8 [4] B9 73 00 00 00 88 84 24 [4] E8 [4] B9 6B 00 00 00 88 84 24 [4] E8 [3] FF}
+        $taskman_2 = {B9 4D 00 00 00 88 84 24 [4] E8 [4] B9 61 00 00 00 88 84 24 [4] E8 [4] B9 6E 00 00 00 88 84 24 [4] E8 [3] FF}
+        $taskman_3 = {B9 61 00 00 00 88 84 24 [4] E8 [4] B9 67 00 00 00 88 84 24 [4] E8 [4] B9 65 00 00 00 88 84 24 [4] E8 [3] FF}
+        $taskman_4 = {B9 72 00 00 00 88 84 24 [4] E8 [4] 31 C9 88 84 24 [4] E8 [3] FF}
+        $installers_1 = {B9 49 00 00 00 E8 [4] B9 6E 00 00 00 88 84 24 [4] E8 [4] B9 73 00 00 00 88 84 24 [4] E8 [3] FF}
+        $installers_2 = {B9 74 00 00 00 88 84 24 [4] E8 [4] B9 61 00 00 00 88 84 24 [4] E8 [4] B9 6C 00 00 00 88 84 24 [4] E8 [3] FF}
+        $installers_3 = {B9 6C 00 00 00 88 84 24 [4] E8 [4] B9 65 00 00 00 88 84 24 [4] E8 [3] FF}
+        $installers_4 = {B9 72 00 00 00 88 84 24 [4] E8 [4] B9 73 00 00 00 88 84 24 [4] E8 [3] FF}
+        $rc4decrypt_1 = {48 89 ?? 4? 89 ?? E8 [4] 4? 8B ?? 24 [1-4] 4? 89 ?? 4? 89 ?? 4? 89 C1 [0-1] 89 ?? E8 [4] 4? 89}
+        $rc4decrypt_2 = {E8 [4] 8B ?? 24 [1-4] 4? 89 ?? 48 89 ?? 4? 89 C1 E8 [3] FF}
+    condition:
+        any of ($decrypt*) or ($key and (3 of ($taskman_*) or 3 of ($installers*) and 1 of ($rc4decrypt_*)))
+}
diff --git a/analyzer/windows/data/yara/Pafish.yar b/analyzer/windows/data/yara/Pafish.yar
deleted file mode 100644
index 1f96c116c53..00000000000
--- a/analyzer/windows/data/yara/Pafish.yar
+++ /dev/null
@@ -1,12 +0,0 @@
-rule Pafish
-{
-    meta:
-        author = "kevoreilly"
-        description = "Pafish bypass"
-        cape_options = "bp0=$rdtsc_vmexit-2,action0=skip,bp1=$rdtsc_vmexit-2,action1=skip,count=1"
-    strings:
-        $rdtsc_vmexit = {8B 45 E8 80 F4 00 89 C3 8B 45 EC 80 F4 00 89 C6 89 F0 09 D8 85 C0 75 07}
-    condition:
-        uint16(0) == 0x5A4D and $rdtsc_vmexit
-}
- 
\ No newline at end of file
diff --git a/analyzer/windows/data/yara/Pikabot.yar b/analyzer/windows/data/yara/Pikabot.yar
new file mode 100644
index 00000000000..0a5b25c28f0
--- /dev/null
+++ b/analyzer/windows/data/yara/Pikabot.yar
@@ -0,0 +1,28 @@
+rule Pikahook
+{
+    meta:
+        author = "kevoreilly"
+        description = "Pikabot anti-hook bypass"
+        cape_options = "clear,sysbp=$indirect+40,sysbpmode=1,force-sleepskip=1"
+        packed = "89dc50024836f9ad406504a3b7445d284e97ec5dafdd8f2741f496cac84ccda9"
+    strings:
+        $indirect = {31 C0 64 8B 0D C0 00 00 00 85 C9 74 01 40 50 8D 54 24 ?? E8 [4] A3 [4] 8B 25 [4] A1 [4] FF 15}
+        $sysenter1 = {89 44 24 08 8D 85 20 FC FF FF C7 44 24 04 FF FF 1F 00 89 04 24 E8}
+        $sysenter2 = {C7 44 24 0C 00 00 00 02 C7 44 24 08 00 00 00 02 8B 45 0C 89 44 24 04 8B 45 08 89 04 24 E8}
+    condition:
+        uint16(0) == 0x5A4D and 2 of them
+}
+
+rule PikExport
+{
+    meta:
+        author = "kevoreilly"
+        description = "Pikabot export selection"
+        cape_options = "export=$export"
+        hash = "238dcc5611ed9066b63d2d0109c9b623f54f8d7b61d5f9de59694cfc60a4e646"
+    strings:
+        $export = {55 8B EC 83 EC ?? C6 45 [2] C6 45 [2] C6 45 [2] C6 45 [2] C6 45}
+        $pe = {B8 08 00 00 00 6B C8 00 8B 55 ?? 8B 45 ?? 03 44 0A 78 89 45 ?? 8B 4D ?? 8B 51 18 89 55 E8 C7 45 F8 00 00 00 00}
+    condition:
+        uint16(0) == 0x5A4D and all of them
+}
diff --git a/analyzer/windows/data/yara/PrivateLoader.yar b/analyzer/windows/data/yara/PrivateLoader.yar
new file mode 100644
index 00000000000..18ad22fc210
--- /dev/null
+++ b/analyzer/windows/data/yara/PrivateLoader.yar
@@ -0,0 +1,12 @@
+rule PrivateLoader
+{
+    meta:
+        author = "kevoreilly"
+        description = "PrivateLoader indirect syscall capture"
+        cape_options = "clear,sysbp=$syscall*-2"
+        packed = "075d0dafd7b794fbabaf53d38895cfd7cffed4a3fe093b0fc7853f3b3ce642a4"
+    strings:
+        $syscall = {48 31 C0 4C 8B 19 8B 41 10 48 8B 49 08 49 89 CA 41 FF E3}
+    condition:
+        any of them
+}
diff --git a/analyzer/windows/data/yara/QakBot.yar b/analyzer/windows/data/yara/QakBot.yar
new file mode 100644
index 00000000000..831dd7b5661
--- /dev/null
+++ b/analyzer/windows/data/yara/QakBot.yar
@@ -0,0 +1,59 @@
+rule QakBot5
+{
+    meta:
+        author = "kevoreilly"
+        description = "QakBot WMI anti-anti-vm"
+        cape_options = "bp0=$loop+35,action0=skip,count=0"
+        packed = "f4bb0089dcf3629b1570fda839ef2f06c29cbf846c5134755d22d419015c8bd2"
+    strings:
+        $loop = {8B 75 ?? 48 8B 4C [2] FF 15 [4] 48 8B 4C [2] 48 8B 01 FF 50 ?? 8B DE 48 8B 4C [2] 48 85 C9 0F 85 [4] EB 4E}
+        $conf = {0F B7 1D [4] B9 [2] 00 00 E8 [4] 8B D3 48 89 45 ?? 45 33 C9 48 8D 0D [4] 4C 8B C0 48 8B F8 E8}
+    condition:
+        uint16(0) == 0x5A4D and any of them
+}
+
+rule QakBot4
+{
+    meta:
+        author = "kevoreilly"
+        description = "QakBot Config Extraction"
+        cape_options = "bp0=$params+23,action0=setdump:eax::ecx,bp1=$c2list1+40,bp1=$c2list2+38,action1=dump,bp2=$conf+13,action2=dump,count=1,typestring=QakBot Config"
+        packed = "f084d87078a1e4b0ee208539c53e4853a52b5698e98f0578d7c12948e3831a68"
+    strings:
+        $params = {8B 7D ?? 8B F1 57 89 55 ?? E8 [4] 8D 9E [2] 00 00 89 03 59 85 C0 75 08 6A FC 58 E9}
+        $c2list1 = {59 59 8D 4D D8 89 45 E0 E8 [4] 8B 45 E0 85 C0 74 ?? 8B 90 [2] 00 00 51 8B 88 [2] 00 00 6A 00 E8}
+        $c2list2 = {59 59 8B F8 8D 4D ?? 89 7D ?? E8 [4] 85 FF 74 52 8B 97 [2] 00 00 51 8B 8F [2] 00 00 53 E8}
+        $conf = {5F 5E 5B C9 C3 51 6A 00 E8 [4] 59 59 85 C0 75 01 C3}
+    condition:
+        uint16(0) == 0x5A4D and any of them
+}
+
+rule QakBotLoader
+{
+    meta:
+        author = "kevoreilly"
+        description = "QakBot Export Selection"
+        cape_options = "export=$export1,export=$export2,export=$export3"
+        hash = "6f99171c95a8ed5d056eeb9234dbbee123a6f95f481ad0e0a966abd2844f0e1a"
+    strings:
+        $export1 = {55 8B EC 83 EC 50 (3A|66 3B) ?? 74}
+        $export2 = {55 8B EC 3A ?? 74 [8-16] 74 [6-16] EB}
+        $export3 = {55 8B EC 66 3B ?? 74 [3-5] 74}
+        $wind = {(66 3B|3A) ?? 74 [1-14] BB 69 04 00 00 53 E? [5-20] 74}
+        $getteb = {EB 00 55 8B EC 66 3B E4 74 ?? [1-5] 64 A1 18 00 00 00 5D EB}
+    condition:
+        uint16(0) == 0x5A4D and (any of ($export*)) and ($wind or $getteb)
+}
+
+rule QakBotAntiVM
+{
+    meta:
+        author = "kevoreilly"
+        description = "QakBot AntiVM bypass"
+        cape_options = "bp0=$antivm1,action0=unwind,count=1"
+        hash = "e269497ce458b21c8427b3f6f6594a25d583490930af2d3395cb013b20d08ff7"
+    strings:
+        $antivm1 = {55 8B EC 3A E4 0F [2] 00 00 00 6A 04 58 3A E4 0F [2] 00 00 00 C7 44 01 [5] 81 44 01 [5] 66 3B FF 74 ?? 6A 04 58 66 3B ED 0F [2] 00 00 00 C7 44 01 [5] 81 6C 01 [5] EB}
+    condition:
+        all of them
+}
diff --git a/analyzer/windows/data/yara/RdtscpAntiVM.yar b/analyzer/windows/data/yara/RdtscpAntiVM.yar
new file mode 100644
index 00000000000..b32e83d9e08
--- /dev/null
+++ b/analyzer/windows/data/yara/RdtscpAntiVM.yar
@@ -0,0 +1,11 @@
+rule RdtscpAntiVM
+{
+    meta:
+        author = "kevoreilly"
+        description = "RdtscpAntiVM bypass"
+        cape_options = "nop-rdtscp=1"
+    strings:
+        $antivm = {46 0F 01 F9 [0-4] 66 0F 6E C6 F3 0F E6 C0 66 0F 2F ?? 73}
+    condition:
+        any of them
+}
diff --git a/analyzer/windows/data/yara/Rhadamanthys.yar b/analyzer/windows/data/yara/Rhadamanthys.yar
new file mode 100644
index 00000000000..2d200ad6e0c
--- /dev/null
+++ b/analyzer/windows/data/yara/Rhadamanthys.yar
@@ -0,0 +1,36 @@
+rule Rhadamanthys
+{
+    meta:
+        author = "kevoreilly"
+        cape_options = "bp0=$conf-11,hc0=1,action0=setdump:edx::ebx,bp1=$conf+64,hc1=1,action1=dump,count=0,typestring=Rhadamanthys Config,ntdll-protect=0"
+        packed = "9e28586ab70b1abdccfe087d81e326a0703f75e9551ced187d37c51130ad02f5"
+    strings:
+        $rc4 = {88 4C 01 08 41 81 F9 00 01 00 00 7C F3 89 75 08 33 FF 8B 4D 08 3B 4D 10 72 04 83 65 08 00}
+        $code = {8B 4D FC 3B CF 8B C1 74 0D 83 78 04 02 74 1C 8B 40 1C 3B C7 75 F3 3B CF 8B C1 74 57 83 78 04 17 74 09 8B 40 1C 3B C7 75 F3 EB}
+        $conf = {46 BB FF 00 00 00 23 F3 0F B6 44 31 08 03 F8 23 FB 0F B6 5C 39 08 88 5C 31 08 88 44 39 08 02 C3 8B 5D 08 0F B6 C0 8A 44 08 08}
+    condition:
+        2 of them
+}
+
+rule RhadaAnti
+{
+    meta:
+        author = "kevoreilly"
+        cape_options = "bp0=$anti,action0=jmp,count=0,ntdll-protect=0,dump-limit=0"
+    strings:
+        $anti = {74 0E FF 75 ?? 8D 45 ?? 50 E8 [4] 59 59 8D 45 ?? 50 56 68 04 01 00 00}
+    condition:
+        all of them
+}
+
+rule RhadUnhook
+{
+    meta:
+        cape_options = "bp0=$scan*,action0=scan:rbx,count=0,patch=$target+21:9090"
+        packed = "dd4af0f1888977f6d9eb820b19f4afc2a73d1c494a132ab4261498328005dda7"
+    strings:
+        $scan = {48 85 DB 0F 84 E1 00 00 00 4C 8D 44 24 70 48 8D 54 24 40 48 8B CE 44 89 7C 24 50 4C 89 64 24 40 48 C7 44 24 48 00 00 00 00 C6 44 24 54 00 FF}
+        $target = {4D 85 C9 48 8B C6 4A 8D 0C 1E 74 15 48 2B D8 49 2B DB 8A 04 0B 88 01 48 83 C1 01 49 83 E9 01 75 F1 5F 5E 5D 5B C3}
+    condition:
+        any of them
+}
diff --git a/analyzer/windows/data/yara/RisePro.yar b/analyzer/windows/data/yara/RisePro.yar
new file mode 100644
index 00000000000..2a6d0c9393c
--- /dev/null
+++ b/analyzer/windows/data/yara/RisePro.yar
@@ -0,0 +1,14 @@
+rule RisePro
+{
+    meta:
+        author = "kevoreilly"
+        //cape_options = "br0=$decode1-49,action1=string:eax,count=1,bp2=$decode2+25,action2=string:eax"
+        cape_options = "bp0=$c2+15,action0=string:edx,bp1=$c2+41,action1=string:ecx,count=1"
+        hash = "1b69a1dd5961241b926605f0a015fa17149c3b2759fb077a30a22d4ddcc273f6"
+    strings:
+        $decode1 = {8A 06 46 84 C0 75 F9 2B F1 B8 FF FF FF 7F 8B 4D ?? 8B 51 ?? 2B C2 3B C6 72 38 83 79 ?? 10 72 02 8B 09 52 51 56 53 51 FF 75 ?? 8B CF E8}
+        $decode2 = {8B D9 81 FF FF FF FF 7F 0F [2] 00 00 00 C7 43 ?? 0F 00 00 00 83 FF 10 73 1A 57 FF 75 ?? 89 7B ?? 53 E8 [4] 83 C4 0C C6 04 1F 00 5F 5B 5D C2 08 00}
+        $c2 = {FF 75 30 83 3D [4] 10 BA [4] B9 [4] 0F 43 15 [4] 83 3D [4] 10 0F 43 0D [4] E8 [4] A3}
+    condition:
+        uint16(0) == 0x5A4D and any of them
+}
diff --git a/analyzer/windows/data/yara/SingleStepAntiHook.yar b/analyzer/windows/data/yara/SingleStepAntiHook.yar
new file mode 100644
index 00000000000..9803f8aa105
--- /dev/null
+++ b/analyzer/windows/data/yara/SingleStepAntiHook.yar
@@ -0,0 +1,11 @@
+rule SingleStepAntiHook
+{
+    meta:
+        author = "kevoreilly"
+        description = "Single-step anti-hook Bypass"
+        cape_options = "bp0=$antihook+6,action0=skip,count=0"
+    strings:
+        $antihook = {FF D? 83 EC 08 9C 81 0C 24 00 01 00 00 9D}
+    condition:
+        any of them
+}
diff --git a/analyzer/windows/data/yara/SlowLoader.yar b/analyzer/windows/data/yara/SlowLoader.yar
new file mode 100644
index 00000000000..d4fa2bbbcc9
--- /dev/null
+++ b/analyzer/windows/data/yara/SlowLoader.yar
@@ -0,0 +1,12 @@
+rule SlowLoader
+{
+    meta:
+        author = "kevoreilly"
+        description = "SlowLoader detonation aide for slow cpus (thread race)"
+        cape_options = "break-on-return=CreateProcessA,action0=sleep:1000,count=0"
+        packed = "f6eeb73ffb3e6d6cc48f74344cb590614db7e3116ba00a52aefd7dff468a60a5"
+    strings:
+        $code = {0F B6 44 07 08 0F B6 54 1F 08 03 C2 25 FF 00 00 80 79 07 48 0D 00 FF FF FF 40 89 45 ?? 6A 00}
+    condition:
+        any of them
+}
\ No newline at end of file
diff --git a/analyzer/windows/data/yara/SmokeLoader.yar b/analyzer/windows/data/yara/SmokeLoader.yar
new file mode 100644
index 00000000000..eb7902c3cae
--- /dev/null
+++ b/analyzer/windows/data/yara/SmokeLoader.yar
@@ -0,0 +1,11 @@
+rule SmokeInjector
+{
+    meta:
+        author = "kevoreilly"
+        cape_options = "monitor=explorer"
+        packed = "d38f9ab81a054203e5b5940e6d34f3c8766f4f4104b14840e4695df511feaa30"
+    strings:
+        $dec1 = {80 04 08 [0-7] (49|83 E9 01) [0-7] 41 [0-7] 81 F1 [2] 00 00 [0-7] 01 D9 [0-7] FF E1}
+    condition:
+        uint16(0) == 0x5A4D and any of them
+}
diff --git a/analyzer/windows/data/yara/Socks5Systemz.yar b/analyzer/windows/data/yara/Socks5Systemz.yar
new file mode 100644
index 00000000000..8493b3b8986
--- /dev/null
+++ b/analyzer/windows/data/yara/Socks5Systemz.yar
@@ -0,0 +1,19 @@
+rule Socks5Systemz
+{
+    meta:
+        author = "kevoreilly"
+        description = "Socks5Systemz config extraction"
+        cape_options = "br0=user32::wsprintfA,br1=ntdll::sprintf,action2=string:[esp],action3=string:[esp],count=0,typestring=Socks5Systemz Config"
+        packed = "9b997d0de3fe83091726919a0dc653e22f8f8b20b1bb7d0b8485652e88396f29"
+    strings:
+        $chunk1 = {0F B6 84 8A [4] E9 [3] (00|FF)}
+        $chunk2 = {0F B6 04 8D [4] E9 [3] (00|FF)}
+        $chunk3 = {66 0F 6F 05 [4] E9 [3] (00|FF)}
+        $chunk4 = {F0 0F B1 95 [4] E9 [3] (00|FF)}
+        $chunk5 = {83 FA 04 E9 [3] (00|FF)}
+        $chunk6 = {8A 04 8D [4] E9 [3] (00|FF)}
+        $chunk7 = {83 C4 04 83 C4 04 E9}
+        $chunk8 = {83 C2 04 87 14 24 5C E9}
+    condition:
+        uint16(0) == 0x5A4D and 5 of them
+}
diff --git a/analyzer/windows/data/yara/Stealc.yar b/analyzer/windows/data/yara/Stealc.yar
new file mode 100644
index 00000000000..22f6d893caa
--- /dev/null
+++ b/analyzer/windows/data/yara/Stealc.yar
@@ -0,0 +1,56 @@
+rule StealcAnti
+{
+    meta:
+        author = "kevoreilly"
+        description = "Stealc detonation bypass"
+        cape_options = "bp0=$anti+17,action0=skip,count=1"
+        hash = "77d6f1914af6caf909fa2a246fcec05f500f79dd56e5d0d466d55924695c702d"
+    strings:
+        $anti = {53 57 57 57 FF 15 [4] 8B F0 74 03 75 01 B8 E8 [4] 74 03 75 01 B8}
+        $decode = {6A 03 33 D2 8B F8 59 F7 F1 8B C7 85 D2 74 04 2B C2 03 C1 6A 06 C1 E0 03 33 D2 59 F7 F1}
+    condition:
+        uint16(0) == 0x5A4D and all of them
+}
+
+rule StealcStrings
+{
+    meta:
+        author = "kevoreilly"
+        description = "Stealc string decryption"
+        cape_options = "bp0=$decode+17,action0=string:edx,count=0,typestring=Stealc Strings"
+        packed = "d0c824e886f14b8c411940a07dc133012b9eed74901b156233ac4cac23378add"
+    strings:
+        $decode = {51 8B 15 [4] 52 8B 45 ?? 50 E8 [4] 83 C4 0C 6A 04 6A 00 8D 4D ?? 51 FF 15 [4] 83 C4 0C 8B 45 ?? 8B E5 5D C3}
+    condition:
+        uint16(0) == 0x5A4D and any of them
+}
+
+rule StealcV2Strings
+{
+    meta:
+        author = "kevoreilly"
+        description = "StealcV2 string decryption"
+        cape_options = "bp0=$decode32*,action0=string:[esp],bp1=$decode64,action1=string:eax,bp2=$dump,action2=dumpstrings,count=0,typestring=Stealc Strings"
+        packed = "2f42dcf05dd87e6352491ff9d4ea3dc3f854df53d548a8da0c323be42df797b6"
+        packed = "8301936f439f43579cffe98e11e3224051e2fb890ffe9df680bbbd8db0729387"
+    strings:
+        $decode32 = {AB AB AB AB 8B 45 0C 89 4E 10 89 4E 14 39 45 08 75 0B C7 46 14 0F 00 00 00 88 0E EB 0F 2B 45 08 50 51 FF 75 ?? 8B}
+        $decode64 = {40 53 48 83 EC 20 48 8B 19 48 85 DB 74 ?? 48 8B 53 18 48 83 FA 0F 76 2C 48 8B 0B 48 FF C2 48 81 FA 00 10 00 00 72}
+        $dump32 = {33 C0 89 46 30 88 46 34 89 46 38 89 46 3C 89 46 40 89 46 44 89 46 48 89 46 4C 89 46 50 89 46 54 89 46 58 8B C6 5F 5E C3}
+        $dump64 = {48 8B C7 89 6F 40 40 88 6F 44 48 89 6F 48 48 89 6F 50 48 89 6F 58 48 89 6F 60 48 89 6F 68 48 89 6F 70 48 89 6F 78 48 89}
+    condition:
+        uint16(0) == 0x5A4D and 2 of them
+}
+
+rule StealcV2DateCheck
+{
+    meta:
+        author = "kevoreilly"
+        description = "StealcV2 date check bypass"
+        cape_options = "patch=$date32*-1:B000,patch=$date64*-2:B00090"
+    strings:
+        $date32 = {F3 A5 8D 45 ?? 50 E8 [4] 59 8B F8 8B F2 8D 45 ?? 50 E8 [4] 59 3B F2 7C 08 7F 04 3B F8 76 02 B3 01 8A C3}
+        $date64 = {0F 11 44 [2] 0F 11 8C [2] 00 00 00 89 8C [2] 00 00 00 48 8D 4C [2] E8 [4] 48 8B D8 48 8D 4C [2] E8 [4] 48 3B D8 0F 9F C0}
+    condition:
+        uint16(0) == 0x5A4D and any of them
+}
diff --git a/analyzer/windows/data/yara/Syscall.yar b/analyzer/windows/data/yara/Syscall.yar
new file mode 100644
index 00000000000..4a64deae8aa
--- /dev/null
+++ b/analyzer/windows/data/yara/Syscall.yar
@@ -0,0 +1,14 @@
+rule Syscall
+{
+    meta:
+        author = "kevoreilly"
+        description = "x64 syscall instruction (direct)"
+        cape_options = "clear,dump,sysbp=$syscall0+8,sysbp=$syscallA+10,sysbp=$syscallB+7,sysbp=$syscallC+18"
+    strings:
+        $syscall0 = {4C 8B D1 B8 [2] 00 00 (0F 05|FF 25 ?? ?? ?? ??) C3}    // mov eax, X
+        $syscallA = {4C 8B D1 66 8B 05 [4] (0F 05|FF 25 ?? ?? ?? ??) C3}    // mov ax, [p]
+        $syscallB = {4C 8B D1 66 B8 [2] (0F 05|FF 25 ?? ?? ?? ??) C3}       // mov ax, X
+        $syscallC = {4C 8B D1 B8 [2] 00 00 [10] 0F 05 C3}
+    condition:
+        any of them
+}
diff --git a/analyzer/windows/data/yara/Themida.yar b/analyzer/windows/data/yara/Themida.yar
new file mode 100644
index 00000000000..7ab2f700fde
--- /dev/null
+++ b/analyzer/windows/data/yara/Themida.yar
@@ -0,0 +1,12 @@
+rule Themida
+{
+    meta:
+        author = "kevoreilly"
+        description = "Themida detonation shim"
+        cape_options = "unhook-apis=NtSetInformationThread,force-sleepskip=0"
+        packed = "6337ff4cf413f56cc6c9a8e67f24b8d7f94f620eae06ac9f0b113b5ba82ea176"
+    strings:
+        $code = {FC 31 C9 49 89 CA 31 C0 31 DB AC 30 C8 88 E9 88 D5 88 F2 B6 08 66 D1 EB 66 D1 D8 73 09}
+    condition:
+        uint16(0) == 0x5A4D and all of them
+}
diff --git a/analyzer/windows/data/yara/UPX.yar b/analyzer/windows/data/yara/UPX.yar
new file mode 100644
index 00000000000..3ea137d40e4
--- /dev/null
+++ b/analyzer/windows/data/yara/UPX.yar
@@ -0,0 +1,12 @@
+rule UPX
+{
+    meta:
+        author = "kevoreilly"
+        description = "UPX dump on OEP (original entry point)"
+        cape_options = "bp0=$upx32*,bp0=$upx64*,hc0=1,action0=step2oep"
+    strings:
+        $upx32 = {6A 00 39 C4 75 FA 83 EC ?? E9}
+        $upx64 = {6A 00 48 39 C4 75 F9 48 83 EC [1-16] E9}
+    condition:
+        uint16(0) == 0x5A4D and any of them
+}
diff --git a/analyzer/windows/data/yara/Ursnif3.yar b/analyzer/windows/data/yara/Ursnif3.yar
deleted file mode 100644
index fe9490deebb..00000000000
--- a/analyzer/windows/data/yara/Ursnif3.yar
+++ /dev/null
@@ -1,13 +0,0 @@
-rule Ursnif3
-{
-    meta:
-        author = "kevoreilly"
-        description = "Ursnif Config Extraction"
-        cape_options = "br0=$crypto32-73,dumpsize=eax,action1=dumpebx,dumptype1=0x24,bp2=$timing_trap-6,action2=setesi:9,count=1"
-    strings:
-        $timing_trap = {6A 02 8B F8 58 8B CE D3 E0 50 FF 15 [4] 83 FF 01 74}
-        $crypto32_1 = {8B C3 83 EB 01 85 C0 75 0D 0F B6 16 83 C6 01 89 74 24 14 8D 58 07 8B C2 C1 E8 07 83 E0 01 03 D2 85 C0 0F 84 AB 01 00 00 8B C3 83 EB 01 85 C0 89 5C 24 20 75 13 0F B6 16 83 C6 01 BB 07 00 00 00}
-        $crypto32_2 = {8B 45 EC 0F B6 38 FF 45 EC 33 C9 41 8B C7 23 C1 40 40 D1 EF 75 1B 89 4D 08 EB 45}
-    condition:
-        ($timing_trap) and any of ($crypto32*)
-}
diff --git a/analyzer/windows/data/yara/UrsnifV3.yar b/analyzer/windows/data/yara/UrsnifV3.yar
new file mode 100644
index 00000000000..c97b2e4cd5e
--- /dev/null
+++ b/analyzer/windows/data/yara/UrsnifV3.yar
@@ -0,0 +1,16 @@
+rule UrsnifV3
+{
+    meta:
+        author = "kevoreilly"
+        description = "Ursnif Config Extraction"
+        cape_options = "br0=$crypto32_1-48,action1=dump:ebx::eax,bp2=$crypto32_3+50,action2=dump:ebx::eax,bp3=$crypto32_4+11,action3=dump:eax::ecx,typestring=UrsnifV3 Config,count=1"
+        packed = "75827be0c600f93d0d23d4b8239f56eb8c7dc4ab6064ad0b79e6695157816988"
+        packed = "5d6f1484f6571282790d64821429eeeadee71ba6b6d566088f58370634d2c579"
+    strings:
+        $crypto32_1 = {8B C3 83 EB 01 85 C0 75 0D 0F B6 16 83 C6 01 89 74 24 14 8D 58 07 8B C2 C1 E8 07 83 E0 01 03 D2 85 C0 0F 84 AB 01 00 00 8B C3 83 EB 01 85 C0 89 5C 24 20 75 13 0F B6 16 83 C6 01 BB 07 00 00 00}
+        $crypto32_3 = {F6 46 03 02 75 5? 8B 46 10 40 50 E8 [4] 8B D8 89 5C 24 1C 85 DB 74 41 F6 46 03 01 74 53 8B 46 10 89 44 24 1C 8B 46 0C 53 03 C7 E8 [4] 59}
+        $crypto32_4 = {C7 44 24 10 01 00 00 00 8B 4E 10 C6 04 08 00 8B 4D ?? 89 01 8B 46 ?? 8B 4D ?? 89 01 8B 44 24 10 5F 5E 5B 8B E5 5D C2 0C 00}
+        $cpuid = {8B C4 FF 18 8B F0 33 C0 0F A2 66 8C D8 66 8E D0 8B E5 8B C6 5E 5B 5D C3}
+    condition:
+        any of ($crypto32*) and $cpuid
+}
diff --git a/analyzer/windows/data/yara/XWorm.yar b/analyzer/windows/data/yara/XWorm.yar
new file mode 100644
index 00000000000..d0275456674
--- /dev/null
+++ b/analyzer/windows/data/yara/XWorm.yar
@@ -0,0 +1,11 @@
+rule XWorm
+{
+    meta:
+        author = "kevoreilly"
+        description = "XWorm Config Extractor"
+        cape_options = "bp0=$decrypt+11,action0=string:r10,count=1,typestring=XWorm Config"
+    strings:
+        $decrypt = {45 33 C0 39 09 FF 15 [4] 48 8B F0 E8 [4] 48 8B C8 48 8B D6 48 8B 00 48 8B 40 68 FF 50 ?? 90}
+    condition:
+        any of them
+}
diff --git a/analyzer/windows/data/yara/Zloader.yar b/analyzer/windows/data/yara/Zloader.yar
index 405971b6ae0..cf890259814 100644
--- a/analyzer/windows/data/yara/Zloader.yar
+++ b/analyzer/windows/data/yara/Zloader.yar
@@ -10,3 +10,17 @@ rule Zloader
     condition:
         uint16(0) == 0x5A4D and any of them
 }
+
+rule Zloader_2024
+{
+    meta:
+        author = "enzok"
+        description = "Zloader Registry and Modulename Bypass"
+        cape_options = "bp0=$reg_1*+1,bp0=$reg_2*+1,action0=seteax:1,count=0"
+    strings:
+        $reg_1 = {FF D0 83 F8 00 0F 94 C0 24 01 88 44 24 ?? 4? 8B [3] B? [9-25] E8 [4] 4? 89 F1 FF D0 8A [3] 24 01 0F B6 C0}
+        $reg_2 = {B9 [4] E8 [4] 8B [3] 89 C2 E8 [4] 4? [4] ff D0 8A [3] 24 01 0F B6 C0}
+        $name_1 = {56 5? 5? 4? 81 EC [4] C7 44 24 ?? 00 00 00 00 4? 8D 0D [4] E8 [4] 4? 89 [3] 4? 83 [3] 00 75}
+    condition:
+        uint16(0) == 0x5A4D and 2 of them
+}
diff --git a/analyzer/windows/dll/capemon.dll b/analyzer/windows/dll/capemon.dll
index e0f7a8fd7fc..b4a5f189da9 100755
Binary files a/analyzer/windows/dll/capemon.dll and b/analyzer/windows/dll/capemon.dll differ
diff --git a/analyzer/windows/dll/capemon_x64.dll b/analyzer/windows/dll/capemon_x64.dll
index c994fda71a6..0759f13b2bd 100755
Binary files a/analyzer/windows/dll/capemon_x64.dll and b/analyzer/windows/dll/capemon_x64.dll differ
diff --git a/analyzer/windows/dll/version.dll b/analyzer/windows/dll/version.dll
new file mode 100644
index 00000000000..388d91199d5
Binary files /dev/null and b/analyzer/windows/dll/version.dll differ
diff --git a/analyzer/windows/dll/version_x64.dll b/analyzer/windows/dll/version_x64.dll
new file mode 100644
index 00000000000..51e942113ba
Binary files /dev/null and b/analyzer/windows/dll/version_x64.dll differ
diff --git a/analyzer/windows/lib/api/process.py b/analyzer/windows/lib/api/process.py
index 87d5e5d7e0d..fef7ad5ade1 100644
--- a/analyzer/windows/lib/api/process.py
+++ b/analyzer/windows/lib/api/process.py
@@ -2,47 +2,83 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-import os
-import sys
+import base64
+import contextlib
 import logging
+import os
+import platform
 import random
 import subprocess
-import platform
-import urllib.request, urllib.parse, urllib.error
-import base64
-from time import time
-from ctypes import byref, c_ulong, create_string_buffer, create_unicode_buffer, c_int, sizeof
+import sys
+import urllib.error
+import urllib.parse
+import urllib.request
+from ctypes import byref, c_buffer, c_int, c_ulong, create_string_buffer, sizeof, windll, ArgumentError
+from pathlib import Path
 from shutil import copy
 
-from lib.common.results import upload_to_host
-from lib.common.constants import PIPE, PATHS, SHUTDOWN_MUTEX, TERMINATE_EVENT, LOGSERVER_PREFIX
-from lib.common.constants import CAPEMON32_NAME, CAPEMON64_NAME, LOADER32_NAME, LOADER64_NAME
-from lib.common.defines import ULONG_PTR
-from lib.common.defines import KERNEL32, NTDLL, SYSTEM_INFO, STILL_ACTIVE
-from lib.common.defines import THREAD_ALL_ACCESS, PROCESS_ALL_ACCESS, TH32CS_SNAPPROCESS
-from lib.common.defines import STARTUPINFO, PROCESS_INFORMATION, PROCESSENTRY32
-from lib.common.defines import CREATE_NEW_CONSOLE, CREATE_SUSPENDED
-from lib.common.defines import MEM_RESERVE, MEM_COMMIT, PAGE_READWRITE
-from lib.common.defines import MEMORY_BASIC_INFORMATION
-from lib.common.defines import WAIT_TIMEOUT, EVENT_MODIFY_STATE
-from lib.common.defines import MEM_IMAGE, MEM_MAPPED, MEM_PRIVATE
-from lib.common.defines import GENERIC_READ, GENERIC_WRITE, OPEN_EXISTING
+from lib.common.defines import (
+    CREATE_NEW_CONSOLE,
+    CREATE_SUSPENDED,
+    EVENT_MODIFY_STATE,
+    GENERIC_READ,
+    GENERIC_WRITE,
+    MAX_PATH,
+    OPEN_EXISTING,
+    PROCESS_ALL_ACCESS,
+    PROCESS_INFORMATION,
+    PROCESS_QUERY_LIMITED_INFORMATION,
+    PROCESSENTRY32,
+    STARTUPINFO,
+    STILL_ACTIVE,
+    SYSTEM_INFO,
+    TH32CS_SNAPPROCESS,
+    THREAD_ALL_ACCESS,
+    ULONG_PTR,
+)
+
+if sys.platform == "win32":
+    from lib.common.constants import (
+        CAPEMON32_NAME,
+        CAPEMON64_NAME,
+        LOADER32_NAME,
+        LOADER64_NAME,
+        LOGSERVER_PREFIX,
+        PATHS,
+        PIPE,
+        SHUTDOWN_MUTEX,
+        TERMINATE_EVENT,
+        TTD32_NAME,
+        TTD64_NAME,
+        SIDELOADER32_NAME,
+        SIDELOADER64_NAME,
+    )
+    from lib.common.defines import (
+        KERNEL32,
+        NTDLL,
+        PSAPI,
+    )
+    from lib.core.log import LogServer
+
+from lib.common.constants import OPT_CURDIR, OPT_EXECUTIONDIR
 from lib.common.errors import get_error_string
 from lib.common.rand import random_string
+from lib.common.results import upload_to_host
+from lib.core.compound import create_custom_folders
 from lib.core.config import Config
-from lib.core.log import LogServer
 
-INJECT_CREATEREMOTETHREAD = 0
-INJECT_QUEUEUSERAPC = 1
+# CSIDL constants
+CSIDL_WINDOWS = 0x0024
+CSIDL_SYSTEM = 0x0025
+CSIDL_SYSTEMX86 = 0x0029
+CSIDL_PROGRAM_FILES = 0x0026
+CSIDL_PROGRAM_FILESX86 = 0x002a
 
 IOCTL_PID = 0x222008
 IOCTL_CUCKOO_PATH = 0x22200C
 PATH_KERNEL_DRIVER = "\\\\.\\DriverSSDT"
 
-LOGSERVER_POOL = dict()
-ATTEMPTED_APC_INJECTS = dict()
-ATTEMPTED_THREAD_INJECTS = dict()
+LOGSERVER_POOL = {}
 
 log = logging.getLogger(__name__)
 
@@ -61,13 +97,28 @@ def get_referrer_url(interest):
 
     escapedurl = urllib.parse.quote(interest, "")
     itemidx = random.randint(1, 30)
-    vedstr = b"0CCEQfj" + base64.urlsafe_b64encode(random_string(random.randint(5, 8) * 3).encode("utf-8"))
-    eistr = base64.urlsafe_b64encode(random_string(12).encode("utf-8"))
-    usgstr = b"AFQj" + base64.urlsafe_b64encode(random_string(12).encode("utf-8"))
-    referrer = "http://www.google.com/url?sa=t&rct=j&q=&esrc=s&source=web&cd={0}&ved={1}&url={2}&ei={3}&usg={4}".format(
-        itemidx, vedstr, escapedurl, eistr, usgstr
-    )
-    return referrer
+    vedstr = b"0CCEQfj" + base64.urlsafe_b64encode(random_string(random.randint(5, 8) * 3).encode())
+    eistr = base64.urlsafe_b64encode(random_string(12).encode())
+    usgstr = b"AFQj" + base64.urlsafe_b64encode(random_string(12).encode())
+    return f"http://www.google.com/url?sa=t&rct=j&q=&esrc=s&source=web&cd={itemidx}&ved={vedstr}&url={escapedurl}&ei={eistr}&usg={usgstr}"
+
+
+def nt_path_to_dos_path_ansi(nt_path: str) -> str:
+    drive_letters = "ABCDEFGHIJKLMNOPQRSTUVWXYZ"
+    nt_path_bytes = nt_path.encode("utf-8", errors="ignore")
+    for letter in drive_letters:
+        drive = f"{letter}:"
+        target = create_string_buffer(1024)
+        res = KERNEL32.QueryDosDeviceA(drive.encode("ascii"), target, 1024)
+        if res != 0:
+            device_path = target.value
+            if nt_path_bytes.startswith(device_path):
+                converted = nt_path_bytes.replace(device_path, drive.encode("ascii"), 1)
+                return converted.decode("utf-8", errors="ignore")
+    return nt_path
+
+def NT_SUCCESS(val):
+    return val >= 0
 
 
 class Process:
@@ -79,12 +130,14 @@ class Process:
     # which check whether the VM has only been up for <10 minutes.
     startup_time = random.randint(1, 30) * 20 * 60 * 1000
 
-    def __init__(self, options={}, config=None, pid=0, h_process=0, thread_id=0, h_thread=0, suspended=False):
+    def __init__(self, options=None, config=None, pid=0, h_process=0, thread_id=0, h_thread=0, suspended=False):
         """@param pid: PID.
         @param h_process: process handle.
         @param thread_id: thread id.
         @param h_thread: thread handle.
         """
+        if options is None:
+            options = {}
         self.config = config
         self.options = options
         self.pid = pid
@@ -97,12 +150,12 @@ def __init__(self, options={}, config=None, pid=0, h_process=0, thread_id=0, h_t
 
     def __del__(self):
         """Close open handles."""
-        if self.h_process and self.h_process != KERNEL32.GetCurrentProcess():
+        if hasattr(self, "h_process") and self.h_process != KERNEL32.GetCurrentProcess():
             KERNEL32.CloseHandle(self.h_process)
-        if self.h_thread:
+        if hasattr(self, "h_thread") and self.h_thread != 0:
             KERNEL32.CloseHandle(self.h_thread)
 
-    def get_system_info(self):
+    def fill_system_info(self):
         """Get system information."""
         KERNEL32.GetSystemInfo(byref(self.system_info))
 
@@ -110,16 +163,26 @@ def open(self):
         """Open a process and/or thread.
         @return: operation status.
         """
+        # Logging calls in this method can get really noisy since it's called a
+        # lot. As a result only failed ctypes calls are logged, nothing else.
         ret = bool(self.pid or self.thread_id)
         if self.pid and not self.h_process:
             if self.pid == os.getpid():
                 self.h_process = KERNEL32.GetCurrentProcess()
             else:
                 self.h_process = KERNEL32.OpenProcess(PROCESS_ALL_ACCESS, False, self.pid)
+                if not self.h_process:
+                    self.h_process = KERNEL32.OpenProcess(PROCESS_QUERY_LIMITED_INFORMATION, False, self.pid)
+
             ret = True
 
+            if not self.h_process:
+                log.warning("failed to open process %d", self.pid)
+
         if self.thread_id and not self.h_thread:
             self.h_thread = KERNEL32.OpenThread(THREAD_ALL_ACCESS, False, self.thread_id)
+            if not self.h_thread:
+                log.warning("OpenThread(THREAD_ALL_ACCESS, ...) failed for thread %d", self.thread_id)
             ret = True
         return ret
 
@@ -128,7 +191,6 @@ def close(self):
         @return: operation status.
         """
         ret = bool(self.h_process or self.h_thread)
-        NT_SUCCESS = lambda val: val >= 0
 
         if self.h_process:
             ret = NT_SUCCESS(KERNEL32.CloseHandle(self.h_process))
@@ -142,14 +204,26 @@ def close(self):
 
     def exit_code(self):
         """Get process exit code.
+
+        Gets the exit code for the process handle via kernel32 and returns its
+        value. Note a valid value can be returned for processes that have not
+        exited, e.g. exit code 259 indicates the process is still active.
+
         @return: exit code value.
         """
         if not self.h_process:
             self.open()
 
         exit_code = c_ulong(0)
-        KERNEL32.GetExitCodeProcess(self.h_process, byref(exit_code))
-
+        ok = KERNEL32.GetExitCodeProcess(self.h_process, byref(exit_code))
+        if not ok:
+            log.debug("Failed getting exit code for %s", self)
+            return None
+        # Uncommenting the lines below will spam the analyzer.log file.
+        # if exit_code.value == STILL_ACTIVE:
+        #     log.debug("%s is STILL_ACTIVE", self)
+        # else:
+        #     log.debug("%s exit code is %d", self, exit_code.value)
         return exit_code.value
 
     def get_filepath(self):
@@ -159,8 +233,6 @@ def get_filepath(self):
         if not self.h_process:
             self.open()
 
-        NT_SUCCESS = lambda val: val >= 0
-
         pbi = create_string_buffer(530)
         size = c_int()
 
@@ -176,27 +248,40 @@ def get_filepath(self):
                 return fbuf.decode("utf16", errors="ignore")
             except Exception as e:
                 log.info(e)
-                return ""
 
         return ""
 
+    def get_folder_path(self, csidl):
+        """Use SHGetFolderPathW to get the system folder path for a given CSIDL."""
+        buf = create_string_buffer(MAX_PATH)
+        windll.shell32.SHGetFolderPathA(None, csidl, None, 0, buf)
+        return buf.value.decode('utf-8', errors='ignore')
+
+    def get_image_name(self):
+        """Get the image name; returns an empty string on error."""
+        if not self.h_process:
+            self.open()
+
+        ret = ""
+        image_name_buf = c_buffer(MAX_PATH)
+        n = PSAPI.GetProcessImageFileNameA(self.h_process, image_name_buf, MAX_PATH)
+        if not n:
+            log.debug("Failed getting image name for pid %d", self.pid)
+            return ret
+        image_name = image_name_buf.value.decode()
+        return image_name.split("\\")[-1]
+
     def is_alive(self):
         """Process is alive?
         @return: process status.
         """
-        # ToDo: Fix this, it's broken
-        # return self.exit_code() == STILL_ACTIVE
-        return True
+        return self.exit_code() == STILL_ACTIVE
 
     def is_critical(self):
-        """Determines if process is 'critical' or not, so we can prevent
-           terminating it
-        """
+        """Determines if process is 'critical' or not, so we can prevent terminating it"""
         if not self.h_process:
             self.open()
 
-        NT_SUCCESS = lambda val: val >= 0
-
         val = c_ulong(0)
         retlen = c_ulong(0)
         ret = NTDLL.NtQueryInformationProcess(self.h_process, 29, byref(val), sizeof(val), byref(retlen))
@@ -209,8 +294,6 @@ def get_parent_pid(self):
         if not self.h_process:
             self.open()
 
-        NT_SUCCESS = lambda val: val >= 0
-
         pbi = (ULONG_PTR * 6)()
         size = c_ulong()
 
@@ -224,18 +307,69 @@ def get_parent_pid(self):
 
         return None
 
+    def detect_dll_sideloading(self, directory_path: str) -> bool:
+        """Detect potential DLL sideloading in the provided directory."""
+        try:
+            directory = Path(directory_path)
+            if not directory.is_dir():
+                return False
+
+            if (directory/"capemon.dll").exists():
+                return False
+
+            # Early exit if directory is a known system location
+            try:
+                system_dirs = {
+                    Path(self.get_folder_path(CSIDL_WINDOWS)).resolve(),
+                    Path(self.get_folder_path(CSIDL_SYSTEM)).resolve(),
+                    Path(self.get_folder_path(CSIDL_SYSTEMX86)).resolve(),
+                    Path(self.get_folder_path(CSIDL_PROGRAM_FILES)).resolve(),
+                    Path(self.get_folder_path(CSIDL_PROGRAM_FILESX86)).resolve()
+                }
+                if directory.resolve() in system_dirs:
+                    return False
+            except (OSError, ArgumentError, ValueError) as e:
+                log.warning("detect_dll_sideloading: failed to retrieve system paths: %s", e)
+                return False
+
+            try:
+                local_dlls = {f.name.lower() for f in directory.glob("*.dll") if f.is_file()}
+                if not local_dlls:
+                    return False
+            except (OSError, PermissionError) as e:
+                log.warning("detect_dll_sideloading: could not list DLLs in %s: %s", directory_path, e)
+                return False
+
+            # Build set of known system DLLs
+            known_dlls = set()
+            for sys_dir in system_dirs:
+                try:
+                    if sys_dir.exists():
+                        known_dlls.update(f.name.lower() for f in sys_dir.glob("*.dll") if f.is_file())
+                except (OSError, PermissionError) as e:
+                    log.debug("detect_dll_sideloading: skipping system dir %s: %s", sys_dir, e)
+
+            suspicious = local_dlls & known_dlls
+            if suspicious:
+                for dll in suspicious:
+                    log.info("Potential dll side-loading detected in local directory: %s", dll)
+            return bool(suspicious)
+
+        except Exception as e:
+            log.error("detect_dll_sideloading: unexpected error with path %s: %s", directory_path, e)
+            return False
+
     def kernel_analyze(self):
-        """zer0m0n kernel analysis
-        """
+        """zer0m0n kernel analysis"""
         log.info("Starting kernel analysis")
         log.info("Installing driver")
         if is_os_64bit():
-            sys_file = os.path.join(os.getcwd(), "dll", "zer0m0n_x64.sys")
+            sys_file = os.path.join(Path.cwd(), "dll", "zer0m0n_x64.sys")
         else:
-            sys_file = os.path.join(os.getcwd(), "dll", "zer0m0n.sys")
-        exe_file = os.path.join(os.getcwd(), "dll", "logs_dispatcher.exe")
-        if not sys_file or not exe_file or not os.path.exists(sys_file) or not os.path.exists(exe_file):
-            log.warning("No valid zer0m0n files to be used for process with pid %d, injection aborted", self.pid)
+            sys_file = os.path.join(Path.cwd(), "dll", "zer0m0n.sys")
+        exe_file = os.path.join(Path.cwd(), "dll", "logs_dispatcher.exe")
+        if not os.path.isfile(sys_file) or not os.path.isfile(exe_file):
+            log.warning("no valid zer0m0n files to be used for %s, injection aborted", self)
             return False
 
         exe_name = service_name = driver_name = random_string(6)
@@ -278,42 +412,39 @@ def kernel_analyze(self):
             "[MiniFilter.DriverFiles]\r\n"
             "%DriverName%.sys\r\n"
             "[SourceDisksFiles]\r\n"
-            "{driver_name}.sys = 1,,\r\n"
+            f"{driver_name}.sys = 1,,\r\n"
             "[SourceDisksNames]\r\n"
             "1 = %DiskId1%,,,\r\n"
             "[Strings]\r\n"
-            'Prov = "{random_string8}"\r\n'
-            'ServiceDescription = "{random_string12}"\r\n'
-            'ServiceName = "{service_name}"\r\n'
-            'DriverName = "{driver_name}"\r\n'
-            'DiskId1 = "{service_name} Device Installation Disk"\r\n'
-            'DefaultInstance = "{service_name} Instance"\r\n'
-            'Instance1.Name = "{service_name} Instance"\r\n'
+            f'Prov = "{random_string(8)}"\r\n'
+            f'ServiceDescription = "{random_string(12)}"\r\n'
+            f'ServiceName = "{service_name}"\r\n'
+            f'DriverName = "{driver_name}"\r\n'
+            f'DiskId1 = "{service_name} Device Installation Disk"\r\n'
+            f'DefaultInstance = "{service_name} Instance"\r\n'
+            f'Instance1.Name = "{service_name} Instance"\r\n'
             'Instance1.Altitude = "370050"\r\n'
             "Instance1.Flags = 0x0"
-        ).format(service_name=service_name, driver_name=driver_name, random_string8=random_string(8), random_string12=random_string(12))
+        )
 
-        new_inf = os.path.join(os.getcwd(), "dll", "{0}.inf".format(service_name))
-        new_sys = os.path.join(os.getcwd(), "dll", "{0}.sys".format(driver_name))
+        new_inf = os.path.join(Path.cwd(), "dll", f"{service_name}.inf")
+        new_sys = os.path.join(Path.cwd(), "dll", f"{driver_name}.sys")
         copy(sys_file, new_sys)
-        new_exe = os.path.join(os.getcwd(), "dll", "{0}.exe".format(exe_name))
+        new_exe = os.path.join(Path.cwd(), "dll", f"{exe_name}.exe")
         copy(exe_file, new_exe)
-        log.info("[-] Driver name : " + new_sys)
-        log.info("[-] Inf name : " + new_inf)
-        log.info("[-] Application name : " + new_exe)
-        log.info("[-] Service : " + service_name)
-
-        fh = open(new_inf, "w")
-        fh.write(inf_data)
-        fh.close()
+        log.info("[-] Driver name : %s", new_sys)
+        log.info("[-] Inf name : %s", new_inf)
+        log.info("[-] Application name : %s", new_exe)
+        log.info("[-] Service : %s", service_name)
 
+        _ = Path(new_inf).write_text(inf_data)
         os_is_64bit = is_os_64bit()
         if os_is_64bit:
             wow64 = c_ulong(0)
             KERNEL32.Wow64DisableWow64FsRedirection(byref(wow64))
 
-        os.system('cmd /c "rundll32 setupapi.dll, InstallHinfSection DefaultInstall 132 ' + new_inf + '"')
-        os.system("net start " + service_name)
+        os.system(f'cmd /c "rundll32 setupapi.dll, InstallHinfSection DefaultInstall 132 {new_inf}"')
+        os.system(f"net start {service_name}")
 
         si = STARTUPINFO()
         si.cb = sizeof(si)
@@ -324,16 +455,15 @@ def kernel_analyze(self):
         if not ldp:
             if os_is_64bit:
                 KERNEL32.Wow64RevertWow64FsRedirection(wow64)
-            log.error("Failed starting " + exe_name + ".exe.")
+            log.error("Failed starting %s.exe", exe_name)
             return False
 
-        config_path = os.path.join(os.getenv("TEMP"), "%s.ini" % self.pid)
+        config_path = os.path.join(os.getenv("TEMP"), f"{self.pid}.ini")
+        cfg = Config("analysis.conf")
         with open(config_path, "w") as config:
-            cfg = Config("analysis.conf")
-
-            config.write("host-ip={0}\n".format(cfg.ip))
-            config.write("host-port={0}\n".format(cfg.port))
-            config.write("pipe={0}\n".format(PIPE))
+            config.write(f"host-ip={cfg.ip}\n")
+            config.write(f"host-port={cfg.port}\n")
+            config.write(f"pipe={PIPE}\n")
 
         log.info("Sending startup information")
         hFile = KERNEL32.CreateFileW(PATH_KERNEL_DRIVER, GENERIC_READ | GENERIC_WRITE, 0, None, OPEN_EXISTING, 0, None)
@@ -353,32 +483,17 @@ def kernel_analyze(self):
             flag = KERNEL32.Process32First(snapshot, byref(proc_info))
             while flag:
                 if proc_info.sz_exeFile == "VBoxService.exe":
-                    log.info("VBoxService.exe found !")
+                    log.info("VBoxService.exe found!")
                     pid_vboxservice = proc_info.th32ProcessID
-                    flag = 0
                 elif proc_info.sz_exeFile == "VBoxTray.exe":
                     pid_vboxtray = proc_info.th32ProcessID
-                    log.info("VBoxTray.exe found !")
-                    flag = 0
+                    log.info("VBoxTray.exe found!")
                 flag = KERNEL32.Process32Next(snapshot, byref(proc_info))
             bytes_returned = c_ulong(0)
-            msg = (
-                str(self.pid)
-                + "_"
-                + str(ppid)
-                + "_"
-                + str(os.getpid())
-                + "_"
-                + str(pi.dwProcessId)
-                + "_"
-                + str(pid_vboxservice)
-                + "_"
-                + str(pid_vboxtray)
-                + "\0"
-            )
+            msg = f"{self.pid}_{ppid}_{os.getpid()}_{pi.dwProcessId}_{pid_vboxservice}_{pid_vboxtray}\0"
             KERNEL32.DeviceIoControl(hFile, IOCTL_PID, msg, len(msg), None, 0, byref(bytes_returned), None)
-            msg = os.getcwd() + "\0"
-            KERNEL32.DeviceIoControl(hFile, IOCTL_CUCKOO_PATH, str(msg, "utf-8"), len(str(msg, "utf-8")), None, 0, byref(bytes_returned), None)
+            msg = f"{Path.cwd()}\0"
+            KERNEL32.DeviceIoControl(hFile, IOCTL_CUCKOO_PATH, msg, len(msg), None, 0, byref(bytes_returned), None)
         else:
             log.warning("Failed to access kernel driver")
 
@@ -392,7 +507,7 @@ def execute(self, path, args=None, suspended=False, kernel_analysis=False):
         @return: operation status.
         """
         if not os.access(path, os.X_OK):
-            log.error('Unable to access file at path "%s", ' "execution aborted", path)
+            log.error('Unable to access file at path "%s", execution aborted', path)
             return False
 
         startup_info = STARTUPINFO()
@@ -403,7 +518,7 @@ def execute(self, path, args=None, suspended=False, kernel_analysis=False):
         startup_info.wShowWindow = 1
         process_info = PROCESS_INFORMATION()
 
-        arguments = '"' + path + '" '
+        arguments = f'"{path}" '
         if args:
             arguments += args
 
@@ -412,8 +527,20 @@ def execute(self, path, args=None, suspended=False, kernel_analysis=False):
             self.suspended = True
             creation_flags += CREATE_SUSPENDED
 
+        # Use the custom execution directory if provided, otherwise launch in the same location
+        # where the sample resides (default %TEMP%)
+        if OPT_EXECUTIONDIR in self.options.keys():
+            execution_directory = self.options[OPT_EXECUTIONDIR]
+        elif OPT_CURDIR in self.options.keys():
+            execution_directory = self.options[OPT_CURDIR]
+        else:
+            execution_directory = os.getenv("TEMP")
+
+        # Try to create the custom directories so that the execution path is deemed valid
+        create_custom_folders(execution_directory)
+
         created = KERNEL32.CreateProcessW(
-            path, arguments, None, None, None, creation_flags, None, os.getenv("TEMP"), byref(startup_info), byref(process_info)
+            path, arguments, None, None, None, creation_flags, None, execution_directory, byref(startup_info), byref(process_info)
         )
 
         if created:
@@ -421,13 +548,13 @@ def execute(self, path, args=None, suspended=False, kernel_analysis=False):
             self.h_process = process_info.hProcess
             self.thread_id = process_info.dwThreadId
             self.h_thread = process_info.hThread
-            log.info('Successfully executed process from path "%s" with ' 'arguments "%s" with pid %d', path, args or "", self.pid)
+            log.info('Successfully executed process from path "%s" with arguments "%s" with pid %d', path, args or "", self.pid)
             if kernel_analysis:
                 return self.kernel_analyze()
             return True
         else:
             log.error(
-                'Failed to execute process from path "%s" with ' 'arguments "%s" (Error: %s)',
+                'Failed to execute process from path "%s" with arguments "%s" (Error: %s)',
                 path,
                 args,
                 get_error_string(KERNEL32.GetLastError()),
@@ -439,7 +566,7 @@ def resume(self):
         @return: operation status.
         """
         if not self.suspended:
-            log.warning("The process with pid %d was not suspended at creation" % self.pid)
+            log.warning("%s was not suspended at creation", self)
             return False
 
         if not self.h_thread:
@@ -449,15 +576,52 @@ def resume(self):
 
         if KERNEL32.ResumeThread(self.h_thread) != -1:
             self.suspended = False
-            log.info("Successfully resumed process with pid %d", self.pid)
+            log.info("Successfully resumed %s", self)
             return True
         else:
-            log.error("Failed to resume process with pid %d", self.pid)
+            log.error("Failed to resume %s", self)
+            return False
+
+    def ttd_stop(self):
+        """Time Travel Debugging stop"""
+
+        if not self.pid:
             return False
 
+        if self.is_64bit():
+            ttd_name = "bin\\TTD.exe"
+            bit_str = "64-bit"
+        else:
+            ttd_name = "bin\\wow64\\TTD.exe"
+            bit_str = "32-bit"
+
+        try:
+            result = subprocess.run(
+                [os.path.join(Path.cwd(), ttd_name), "-accepteula", "-stop", str(self.pid)],
+                stdout=subprocess.PIPE,
+                stderr=subprocess.PIPE,
+                text=True,
+                timeout=1,
+            )
+        except subprocess.TimeoutExpired as e:
+            if e.stdout:
+                log.info(" ".join(e.stdout.split()))
+            if e.stderr:
+                log.error(" ".join(e.stderr.split()))
+        except Exception as e:
+            log.error("Exception attempting TTD stop for %s process with pid %d: %s", bit_str, self.pid, e)
+
+        if result.stdout:
+            log.info(" ".join(result.stdout.split()))
+        if result.stderr:
+            log.error(" ".join(result.stderr.split()))
+
+        log.info("Stopped TTD for %s process with pid %d", bit_str, self.pid)
+
+        return True
+
     def set_terminate_event(self):
-        """Sets the termination event for the process.
-        """
+        """Sets the termination event for the process."""
         if self.h_process == 0:
             self.open()
 
@@ -466,22 +630,28 @@ def set_terminate_event(self):
         if self.terminate_event_handle:
             # make sure process is aware of the termination
             KERNEL32.SetEvent(self.terminate_event_handle)
-            log.info("Terminate event set for process %d", self.pid)
+            log.info("Terminate event set for %s", self)
             KERNEL32.CloseHandle(self.terminate_event_handle)
         else:
-            log.error("Failed to open terminate event for pid %d", self.pid)
+            log.error("Failed to open terminate event for %s", self)
             return
 
         # recreate event for monitor 'reply'
         self.terminate_event_handle = KERNEL32.CreateEventW(0, False, False, event_name)
         if not self.terminate_event_handle:
-            log.error("Failed to create terminate-reply event for process %d", self.pid)
+            log.error("Failed to create terminate-reply event for %s", self)
             return
 
         KERNEL32.WaitForSingleObject(self.terminate_event_handle, 5000)
-        log.info("Termination confirmed for process %d", self.pid)
+        log.info("Termination confirmed for %s", self)
         KERNEL32.CloseHandle(self.terminate_event_handle)
-        return
+
+        try:
+            ttd = int(self.options.get("ttd", 0))
+        except (ValueError, TypeError):
+            ttd = 0
+        if ttd:
+            self.ttd_stop()
 
     def terminate(self):
         """Terminate process.
@@ -491,10 +661,10 @@ def terminate(self):
             self.open()
 
         if KERNEL32.TerminateProcess(self.h_process, 1):
-            log.info("Successfully terminated process with pid %d.", self.pid)
+            log.info("Successfully terminated %s", self)
             return True
         else:
-            log.error("Failed to terminate process with pid %d.", self.pid)
+            log.error("Failed to terminate %s", self)
             return False
 
     def is_64bit(self):
@@ -504,91 +674,73 @@ def is_64bit(self):
         if self.h_process == 0:
             self.open()
 
-        try:
+        with contextlib.suppress(Exception):
             val = c_int(0)
             ret = KERNEL32.IsWow64Process(self.h_process, byref(val))
             if ret and not val.value and is_os_64bit():
                 return True
-        except:
-            pass
-
         return False
 
-    def check_inject(self):
-        if not self.pid:
-            return False
-
-        if self.thread_id or self.suspended:
-            if (self.pid, self.thread_id) in ATTEMPTED_APC_INJECTS:
-                return False
-            ATTEMPTED_APC_INJECTS[(self.pid, self.thread_id)] = True
-        else:
-            if self.pid in ATTEMPTED_THREAD_INJECTS:
-                return False
-            ATTEMPTED_THREAD_INJECTS[self.pid] = True
-
-        return True
-
     def write_monitor_config(self, interest=None, nosleepskip=False):
+        config_path = os.path.join(Path.cwd(), "dll", f"{self.pid}.ini")
+        log.info("Monitor config for %s: %s", self, config_path)
 
-        config_path = format(os.getcwd()) + "\\dll\\%s.ini" % self.pid
-        log.info("Monitor config for process %s: %s", self.pid, config_path)
-
-        with open(config_path, "w", encoding="utf-8") as config:
-            # start the logserver for this monitored process
-            logserver_path = LOGSERVER_PREFIX + str(self.pid)
-            if logserver_path not in LOGSERVER_POOL:
-                LOGSERVER_POOL[logserver_path] = LogServer(self.config.ip, self.config.port, logserver_path)
+        # start the logserver for this monitored process
+        logserver_path = f"{LOGSERVER_PREFIX}{self.pid}"
+        if logserver_path not in LOGSERVER_POOL:
+            LOGSERVER_POOL[logserver_path] = LogServer(self.config.ip, self.config.port, logserver_path)
 
+        if "tlsdump" not in self.options:
             Process.process_num += 1
-            firstproc = Process.process_num == 1
-
-            config.write("host-ip={0}\n".format(self.config.ip))
-            config.write("host-port={0}\n".format(self.config.port))
-            config.write("pipe={0}\n".format(PIPE))
-            config.write("logserver={0}\n".format(logserver_path))
-            config.write("results={0}\n".format(PATHS["root"]))
-            config.write("analyzer={0}\n".format(os.getcwd()))
-            config.write("pythonpath={0}\n".format(os.path.dirname(sys.executable)))
-            config.write("first-process={0}\n".format("1" if firstproc else "0"))
-            config.write("startup-time={0}\n".format(Process.startup_time))
-            config.write("file-of-interest={0}\n".format(interest))
-            config.write("shutdown-mutex={0}\n".format(SHUTDOWN_MUTEX))
-            config.write("terminate-event={0}{1}\n".format(TERMINATE_EVENT, self.pid))
+        firstproc = Process.process_num == 1
+
+        with open(config_path, "w", encoding="utf-8") as config:
+            config.write(f"host-ip={self.config.ip}\n")
+            config.write(f"host-port={self.config.port}\n")
+            config.write(f"pipe={PIPE}\n")
+            config.write(f"logserver={logserver_path}\n")
+            config.write(f"results={PATHS['root']}\n")
+            config.write(f"analyzer={Path.cwd()}\n")
+            config.write(f"pythonpath={os.path.dirname(sys.executable)}\n")
+            config.write(f"first-process={1 if firstproc else 0}\n")
+            config.write(f"startup-time={Process.startup_time}\n")
+            config.write(f"file-of-interest={interest}\n")
+            config.write(f"shutdown-mutex={SHUTDOWN_MUTEX}\n")
+            config.write(f"terminate-event={TERMINATE_EVENT}{self.pid}\n")
 
             if nosleepskip or (
-                "force-sleepskip" not in self.options
-                and len(interest) > 2
-                and interest[1] != ":"
-                and interest[0] != "\\"
-                and Process.process_num <= 2
+                "force-sleepskip" not in self.options and len(interest) > 2 and interest[:2] != "\\:" and Process.process_num <= 2
             ):
                 config.write("force-sleepskip=0\n")
 
             if "norefer" not in self.options and "referrer" not in self.options:
-                config.write("referrer={0}\n".format(get_referrer_url(interest)))
+                config.write(f"referrer={get_referrer_url(interest)}\n")
 
             server_options = [
-                "disable_cape",
                 "dll",
                 "dll_64",
                 "loader",
                 "loader_64",
                 "route",
                 "nohuman",
-                "unpack",
                 "main_task_id",
+                "function",
+                "file",
+                "free",
                 "auto",
+                "pre_script_args",
+                "pre_script_timeout",
+                "during_script_args",
+                "ttd",
             ]
 
             for optname, option in self.options.items():
                 if optname not in server_options:
-                    config.write("{0}={1}\n".format(optname, option))
+                    config.write(f"{optname}={option}\n")
                     log.info("Option '%s' with value '%s' sent to monitor", optname, option)
 
-    def inject(self, injectmode=INJECT_QUEUEUSERAPC, interest=None, nosleepskip=False):
+    def inject(self, interest=None, nosleepskip=False):
         """Cuckoo DLL injection.
-        @param injectmode: APC use
         @param interest: path to file of interest, handed to cuckoomon config
         @param nosleepskip: skip sleep or not
         """
@@ -597,58 +749,90 @@ def inject(self, injectmode=INJECT_QUEUEUSERAPC, interest=None, nosleepskip=Fals
         if not self.pid:
             return False
 
-        thread_id = 0
-        if self.thread_id:
-            thread_id = self.thread_id
-
+        thread_id = self.thread_id or 0
         if not self.is_alive():
-            log.warning("The process with pid %s is not alive, " "injection aborted", self.pid)
+            log.warning("the %s is not alive, injection aborted", self)
             return False
 
         if self.is_64bit():
+            ttd_name = TTD64_NAME
             bin_name = LOADER64_NAME
             dll = CAPEMON64_NAME
             bit_str = "64-bit"
         else:
+            ttd_name = TTD32_NAME
             bin_name = LOADER32_NAME
             dll = CAPEMON32_NAME
             bit_str = "32-bit"
 
-        bin_name = os.path.join(os.getcwd(), bin_name)
-        dll = os.path.join(os.getcwd(), dll)
+        bin_name = os.path.join(Path.cwd(), bin_name)
+        dll = os.path.join(Path.cwd(), dll)
 
         if not os.path.exists(bin_name):
-            log.warning("Invalid loader path %s for injecting DLL in process " "with pid %d, injection aborted.", bin_name, self.pid)
-            log.error("Please ensure the %s loader is in analyzer/windows/bin " "in order to analyze %s binaries.", bit_str, bit_str)
+            log.warning("invalid loader path %s for injecting DLL in %s, injection aborted", bin_name, self)
+            log.error("Please ensure the %s loader is in analyzer/windows/bin in order to analyze %s binaries", bit_str, bit_str)
             return False
 
         if not os.path.exists(dll):
-            log.warning("Invalid path %s for monitor DLL to be injected in process " "with pid %d, injection aborted.", dll, self.pid)
+            log.warning("invalid path %s for monitor DLL to be injected in %s, injection aborted", dll, self)
             return False
 
+        try:
+            ttd = int(self.options.get("ttd", 0))
+        except (ValueError, TypeError):
+            ttd = 0
+        if ttd:
+            self.options["no-iat"] = 1
+
         self.write_monitor_config(interest, nosleepskip)
 
+        path = os.path.dirname(nt_path_to_dos_path_ansi(self.get_filepath()))
+
+        if self.detect_dll_sideloading(path) and self.has_msimg32(path):
+            self.deploy_version_proxy(path)
+            return True
+
         log.info("%s DLL to inject is %s, loader %s", bit_str, dll, bin_name)
 
         try:
-            if thread_id or self.suspended:
-                ret = subprocess.run([bin_name, "inject", str(self.pid), str(thread_id), dll, str(INJECT_QUEUEUSERAPC)])
-            else:
-                ret = subprocess.run([bin_name, "inject", str(self.pid), str(thread_id), dll, str(INJECT_CREATEREMOTETHREAD)])
-
-            if ret.returncode != 0:
-                if ret.returncode == 1:
-                    log.info("Injected into suspended %s process with pid %d", bit_str, self.pid)
-                else:
-                    log.error("Unable to inject into %s process with pid %d, error: %d", bit_str, self.pid, ret.returncode)
-                return False
-            else:
-                return True
+            ret = subprocess.run([bin_name, "inject", str(self.pid), str(thread_id), dll])
 
+            if ret.returncode == 1:
+                log.info("Injected into %s %s", bit_str, self)
+            elif ret.returncode != 0:
+                log.error("Unable to inject into %s %s, error: %d", bit_str, self, ret.returncode)
         except Exception as e:
-            log.error(("process", e))
+            log.error("Error running process: %s", e)
             return False
 
+        if not ttd:
+            return True
+
+        try:
+            ret = subprocess.run(
+                [
+                    os.path.join(Path.cwd(), ttd_name),
+                    "-accepteula",
+                    "-out",
+                    os.path.join(PATHS["TTD"], f"{self.pid}.run"),
+                    "-attach",
+                    str(self.pid),
+                ],
+                stdout=subprocess.PIPE,
+                stderr=subprocess.PIPE,
+                text=True,
+                timeout=1,
+            )
+        except subprocess.TimeoutExpired as e:
+            if e.stdout:
+                log.info(" ".join(e.stdout.split()))
+            if e.stderr:
+                log.error(" ".join(e.stderr.split()))
+        except Exception as e:
+            log.error("Exception attempting TTD injection into %s process with pid %d: %s", bit_str, self.pid, e)
+
+        return True
+
     def upload_memdump(self):
         """Upload process memory dump.
         @return: operation status.
@@ -657,66 +841,56 @@ def upload_memdump(self):
             log.warning("No valid pid specified, memory dump cannot be uploaded")
             return False
 
-        file_path = os.path.join(PATHS["memory"], "{0}.dmp".format(self.pid))
+        file_path = os.path.join(PATHS["memory"], f"{self.pid}.dmp")
         try:
-            file_path = os.path.join(PATHS["memory"], "{0}.dmp".format(self.pid))
-            upload_to_host(file_path, os.path.join("memory", "{0}.dmp".format(self.pid)), category="memory")
+            upload_to_host(file_path, os.path.join("memory", f"{self.pid}.dmp"), category="memory")
         except Exception as e:
-            print(e)
-            log.error(e, exc_info=True)
-            log.error(os.path.join("memory", "{0}.dmp".format(self.pid)), file_path)
-        log.info("Memory dump of process %d uploaded", self.pid)
+            log.exception(e)
+            log.error(os.path.join("memory", f"{self.pid}.dmp"))
+            log.error(file_path)
+        log.info("Memory dump of %s uploaded", self)
 
         return True
 
-    def dump_memory(self):
-        """Dump process memory.
-        @return: operation status.
-        """
-        if not self.pid:
-            log.warning("No valid pid specified, memory dump aborted")
-            return False
+    def __str__(self):
+        """Get a string representation of this process."""
+        image_name = self.get_image_name() or "???"
+        return f"<{self.__class__.__name__} {self.pid} {image_name}>"
 
-        if not self.is_alive():
-            log.warning("The process with pid %d is not alive, memory " "dump aborted", self.pid)
+    def has_msimg32(self, directory_path: str) -> bool:
+        """Check if msimg32.dll exists in directory"""
+        try:
+            return any(
+                f.name.lower() == "msimg32.dll"
+                for f in Path(directory_path).glob("*")
+                if f.is_file()
+            )
+        except (OSError, PermissionError):
             return False
 
-        bin_name = ""
-        bit_str = ""
-        # file_path = os.path.join(PATHS["memory"], "{0}.dmp".format(self.pid))
-        file_path = os.path.join(PATHS["memory"], str(self.pid) + ".dmp")
+    def deploy_version_proxy(self, directory_path: str):
+        """Deploy version.dll proxy loader"""
         if self.is_64bit():
-            orig_bin_name = LOADER64_NAME
+            dll = CAPEMON64_NAME
+            side_dll = SIDELOADER64_NAME
             bit_str = "64-bit"
         else:
-            orig_bin_name = LOADER32_NAME
+            dll = CAPEMON32_NAME
+            side_dll = SIDELOADER32_NAME
             bit_str = "32-bit"
 
-        bin_name = os.path.join(os.getcwd(), orig_bin_name)
+        dll = os.path.join(Path.cwd(), dll)
 
-        if os.path.exists(bin_name):
-            ret = subprocess.call([bin_name, "dump", str(self.pid), file_path])
-            if ret == 1:
-                log.info("Dumped %s process with pid %d", bit_str, self.pid)
-            else:
-                log.error("Unable to dump %s process with pid %d, error: %d", bit_str, self.pid, ret)
-                return False
-        else:
-            log.error(
-                "Please place the %s binary from cuckoomon into analyzer/windows/bin in order to analyze %s binaries.",
-                os.path.basename(bin_name),
-                bit_str,
-            )
-            return False
+        if not os.path.exists(dll):
+            log.warning("invalid path %s for monitor DLL to be sideloaded in %s, sideloading aborted", dll, self)
+            return
 
         try:
-            file_path = os.path.join(PATHS["memory"], str(self.pid) + ".dmp")
-            upload_to_host(file_path, os.path.join("memory", str(self.pid) + ".dmp"))
-        except Exception as e:
-            print(e)
-            log.error(e, exc_info=True)
-            log.error(os.path.join("memory", "{0}.dmp".format(self.pid)), file_path)
-
-        log.info("Memory dump of process with pid %d completed", self.pid)
-
-        return True
+            copy(dll, os.path.join(directory_path, "capemon.dll"))
+            copy(side_dll, os.path.join(directory_path, "version.dll"))
+            copy(os.path.join(Path.cwd(), "dll", f"{self.pid}.ini"), os.path.join(directory_path, "config.ini"))
+        except OSError as e:
+            log.error("Failed to copy DLL: %s", e)
+            return
+        log.info("%s DLL to sideload is %s, sideloader %s", bit_str, os.path.join(directory_path, "capemon.dll"), os.path.join(directory_path, "version.dll"))
+        return
diff --git a/analyzer/windows/lib/api/screenshot.py b/analyzer/windows/lib/api/screenshot.py
index 49e51e2fa43..1ff9d749c7b 100644
--- a/analyzer/windows/lib/api/screenshot.py
+++ b/analyzer/windows/lib/api/screenshot.py
@@ -1,14 +1,9 @@
 # Copyright (C) 2010-2015 Cuckoo Foundation.
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
-from __future__ import absolute_import
-import logging
-
-log = logging.getLogger(__name__)
 
-log.debug("Importing 'math'")
-import math
 import logging
+import math
 
 log = logging.getLogger(__name__)
 
@@ -94,7 +89,4 @@ def take(self):
         """Take a screenshot.
         @return: screenshot or None.
         """
-        if not HAVE_PIL:
-            return None
-
-        return ImageGrab.grab()
+        return ImageGrab.grab() if HAVE_PIL else None
diff --git a/analyzer/windows/lib/api/utils.py b/analyzer/windows/lib/api/utils.py
index 61549c31dca..2555d341998 100644
--- a/analyzer/windows/lib/api/utils.py
+++ b/analyzer/windows/lib/api/utils.py
@@ -12,11 +12,9 @@
 # You should have received a copy of the GNU General Public License
 # along with this program.  If not, see <http://www.gnu.org/licenses/>.
 
-from __future__ import absolute_import
-import os
 import logging
-import subprocess
 import socket
+import subprocess
 
 try:
     import re2 as re
@@ -30,20 +28,16 @@ class Utils:
     """Various Utilities"""
 
     def is_valid_ipv4(self, ip):
-        if ip:
-            if re.match("^\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3}$", ip) == None:
-                return False
-            else:
-                try:
-                    socket.inet_aton(ip)
-                    return True
-                except socket.error:
-                    return False
-        else:
+        if ip and re.match(r"^\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3}$", ip) is None:
+            return False
+        try:
+            socket.inet_aton(ip)
+            return True
+        except socket.error:
             return False
 
     def cmd_wrapper(self, cmd):
-        # print("running command and waiting for it to finish %s" % (cmd))
+        # print(f"Running command and waiting for it to finish {cmd}")
         p = subprocess.Popen(cmd, stdout=subprocess.PIPE, stdin=subprocess.PIPE, stderr=subprocess.PIPE, shell=True)
         stdout, stderr = p.communicate()
-        return (p.returncode, stdout, stderr)
+        return p.returncode, stdout, stderr
diff --git a/analyzer/windows/lib/common/abstracts.py b/analyzer/windows/lib/common/abstracts.py
index d420d588c10..595ec6d2860 100644
--- a/analyzer/windows/lib/common/abstracts.py
+++ b/analyzer/windows/lib/common/abstracts.py
@@ -2,31 +2,41 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 import glob
-import os
+import importlib
+import inspect
 import logging
+import os
 import shutil
 
-INJECT_CREATEREMOTETHREAD = 0
-INJECT_QUEUEUSERAPC = 1
-
-log = logging.getLogger(__name__)
-log.info("Started imports")
 from lib.api.process import Process
-from lib.api.utils import Utils
+from lib.common.common import check_file_extension, disable_wow64_redirection
+from lib.common.constants import OPT_ARGUMENTS, OPT_CURDIR, OPT_DLLLOADER, OPT_FREE, OPT_FUNCTION, OPT_KERNEL_ANALYSIS
 from lib.common.exceptions import CuckooPackageError
+from lib.common.parse_pe import choose_dll_export, is_pe_image
+from lib.core.compound import create_custom_folders
+
+# from typing import Dict, Any
+
 
-log.info("End imports")
+log = logging.getLogger(__name__)
+
+PE_INDICATORS = [b"MZ", b"This program cannot be run in DOS mode"]
 
 
-class Package(object):
+class Package:
     """Base abstract analysis package."""
 
     PATHS = []
+    default_curdir = None
+    summary: str = None
+    description: str = None
+    option_names = []
 
-    def __init__(self, options={}, config=None):
+    def __init__(self, options=None, config=None):
         """@param options: options dict."""
+        if options is None:
+            options = {}
         self.config = config
         self.options = options
         self.pids = []
@@ -38,7 +48,7 @@ def set_pids(self, pids):
         """
         self.pids = pids
 
-    def start(self):
+    def start(self, target: str):
         """Run analysis package.
         @raise NotImplementedError: this method is abstract.
         """
@@ -48,18 +58,57 @@ def check(self):
         """Check."""
         return True
 
+    def configure(self, target: str):
+        """Do package-specific configuration.
+
+        Analysis packages can implement this method to perform pre-analysis
+        configuration in the execution environment. This method will be called
+        after the auxiliary modules are started but before the package start
+        method is called.
+
+        See the "configure_from_data" method for an alternative approach to
+        package-specific configuration that lets configuration be treated as
+        runtime data separate from the analysis package.
+        """
+        raise NotImplementedError
+
+    def configure_from_data(self, target: str):
+        """Do private package-specific configuration.
+
+        Analysis packages can implement this method to perform pre-analysis
+        configuration based on runtime data contained in "data/packages/<package_name>".
+
+        This method raises:
+         - ImportError when any exception occurs during import
+         - AttributeError if the module configure function is invalid.
+         - ModuleNotFoundError if the module does not support configuration from data
+        """
+        package_module_name = self.__class__.__module__.split(".")[-1]
+        module_name = f"data.packages.{package_module_name}"
+        try:
+            m = importlib.import_module(module_name)
+        except Exception as e:
+            raise ImportError(f"error importing {module_name}: {e}") from e
+
+        spec = inspect.getfullargspec(m.configure)
+        if len(spec.args) != 2:
+            err_msg = f"{module_name}.configure: expected 2 arguments, got {len(spec.args)}"
+            raise AttributeError(err_msg)
+        m.configure(self, target)
+
+    def get_paths(self):
+        """Get the default list of paths."""
+        return self.PATHS
+
     def enum_paths(self):
         """Enumerate available paths."""
-        for path in self.PATHS:
+        for path in self.get_paths():
             basedir = path[0]
-            sys32 = False
-            if len(path) > 1 and path[1].lower() == "system32":
-                sys32 = True
+            sys32 = len(path) > 1 and path[1].lower() == "system32"
             if basedir == "SystemRoot":
                 if not sys32 or "PE32+" not in self.config.file_type:
                     yield os.path.join(os.getenv("SystemRoot"), *path[1:])
-                elif sys32:
-                    yield os.path.join(os.getenv("SystemRoot"), "sysnative", *path[2:])
+                yield os.path.join(os.getenv("SystemRoot"), "sysnative", *path[2:])
             elif basedir == "ProgramFiles":
                 if os.getenv("ProgramFiles(x86)"):
                     yield os.path.join(os.getenv("ProgramFiles(x86)"), *path[1:])
@@ -67,8 +116,10 @@ def enum_paths(self):
             elif basedir == "HomeDrive":
                 # os.path.join() does not work well when giving just C:
                 # instead of C:\\, so we manually add the backslash.
-                homedrive = os.getenv("HomeDrive") + "\\"
+                homedrive = "{}\\".format(os.getenv("HomeDrive"))
                 yield os.path.join(homedrive, *path[1:])
+            elif os.getenv(basedir):
+                yield os.path.join(os.getenv(basedir), *path[1:])
             else:
                 yield os.path.join(*path)
 
@@ -78,10 +129,10 @@ def get_path(self, application):
         @return: executable path
         """
         for path in self.enum_paths():
-            if os.path.isfile(path):
+            if application in path and os.path.isfile(path):
                 return path
 
-        raise CuckooPackageError("Unable to find any %s executable." % application)
+        raise CuckooPackageError(f"Unable to find any {application} executable")
 
     def get_path_glob(self, application):
         """Search for the application in all available paths with glob support.
@@ -90,10 +141,10 @@ def get_path_glob(self, application):
         """
         for path in self.enum_paths():
             for path in glob.iglob(path):
-                if os.path.isfile(path):
+                if os.path.isfile(path) and (not application or application.lower() in path.lower()):
                     return path
 
-        raise CuckooPackageError("Unable to find any %s executable." % application)
+        raise CuckooPackageError(f"Unable to find any {application} executable")
 
     def get_path_app_in_path(self, application):
         """Search for the application in all available paths.
@@ -101,13 +152,10 @@ def get_path_app_in_path(self, application):
         @return: executable path
         """
         for path in self.enum_paths():
-            if os.path.isfile(path):
-                if application and application.lower() not in path.lower():
-                    continue
-                else:
-                    return path
+            if os.path.isfile(path) and (not application or application.lower() in path.lower()):
+                return path
 
-        raise CuckooPackageError("Unable to find any %s executable." % application)
+        raise CuckooPackageError(f"Unable to find any {application} executable")
 
     def execute(self, path, args, interest):
         """Starts an executable for analysis.
@@ -116,58 +164,32 @@ def execute(self, path, args, interest):
         @param interest: file of interest, passed to the cuckoomon config
         @return: process pid
         """
-        free = self.options.get("free")
-        suspended = True if not free else False
+        free = self.options.get(OPT_FREE, False)
+        suspended = not free
 
-        kernel_analysis = self.options.get("kernel_analysis")
-        kernel_analysis = True if kernel_analysis else False
+        kernel_analysis = bool(self.options.get(OPT_KERNEL_ANALYSIS, False))
 
         p = Process(options=self.options, config=self.config)
         if not p.execute(path=path, args=args, suspended=suspended, kernel_analysis=kernel_analysis):
-            raise CuckooPackageError("Unable to execute the initial process, " "analysis aborted.")
+            raise CuckooPackageError("Unable to execute the initial process, analysis aborted")
 
         if free:
             return None
 
         if not kernel_analysis:
-            p.inject(INJECT_QUEUEUSERAPC, interest)
+            p.inject(interest)
 
         p.resume()
         p.close()
 
         return p.pid
 
-    def debug(self, path, args, interest):
-        """Starts an executable for analysis.
-        @param path: executable path
-        @param args: executable arguments
-        @param interest: file of interest, passed to the cuckoomon config
-        @return: process pid
-        """
-
-        suspended = True
-
-        p = Process(options=self.options, config=self.config)
-        if not p.execute(path=path, args=args, suspended=suspended, kernel_analysis=False):
-            raise CuckooPackageError("Unable to execute the initial process, " "analysis aborted.")
-
-        is_64bit = p.is_64bit()
-
-        if is_64bit:
-            p.debug_inject(interest, childprocess=False)
-        else:
-            p.debug_inject(interest, childprocess=False)
-        p.resume()
-        p.close()
-
-        return p.pid
-
     def package_files(self):
         """A list of files to upload to host.
         The list should be a list of tuples (<path on guest>, <name of file in package_files folder>).
         (package_files is a folder that will be created in analysis folder).
         """
-        return None
+        return []
 
     def finish(self):
         """Finish run.
@@ -177,24 +199,121 @@ def finish(self):
 
         return True
 
+    @disable_wow64_redirection
     def move_curdir(self, filepath):
         """Move a file to the current working directory so it can be executed
         from there.
         @param filepath: the file to be moved
         @return: the new filepath
         """
-        if "curdir" in self.options:
-            self.curdir = os.path.expandvars(self.options["curdir"])
+        if OPT_CURDIR in self.options:
+            self.curdir = os.path.expandvars(self.options[OPT_CURDIR])
+        elif self.default_curdir:
+            self.curdir = os.path.expandvars(self.default_curdir)
         else:
             self.curdir = os.getenv("TEMP")
+        # Try to create the folders for the cases of the custom paths other than %TEMP%
+        create_custom_folders(self.curdir)
+
+        # in some cases it has problems to create folder IDK why
+        if not os.path.exists(self.curdir):
+            return filepath
+
         newpath = os.path.join(self.curdir, os.path.basename(filepath))
         shutil.move(filepath, newpath)
         return newpath
 
-
-class Auxiliary(object):
-    def __init__(self, options={}, config=None):
+    def execute_interesting_file(self, root: str, file_name: str, file_path: str):
+        """
+        Based on file extension or file contents, run relevant analysis package
+        """
+        # File extensions that require cmd.exe to run
+        if file_name.lower().endswith((".lnk", ".bat", ".cmd")):
+            cmd_path = self.get_path("cmd.exe")
+            cmd_args = f'/c "cd ^"{root}^" && start /wait ^"^" ^"{file_path}^"'
+            return self.execute(cmd_path, cmd_args, file_path)
+        # File extensions that require msiexec.exe to run
+        elif file_name.lower().endswith(".msi"):
+            msi_path = self.get_path("msiexec.exe")
+            msi_args = f'/I "{file_path}"'
+            return self.execute(msi_path, msi_args, file_path)
+        # File extensions that require wscript.exe to run
+        elif file_name.lower().endswith((".js", ".jse", ".vbs", ".vbe", ".wsf")):
+            cmd_path = self.get_path("cmd.exe")
+            wscript = self.get_path_app_in_path("wscript.exe")
+            cmd_args = f'/c "cd ^"{root}^" && {wscript} ^"{file_path}^"'
+            return self.execute(cmd_path, cmd_args, file_path)
+        # File extensions that require rundll32.exe/regsvr32.exe to run
+        elif file_name.lower().endswith((".dll", ".db", ".dat", ".tmp", ".temp")):
+            # We are seeing techniques where dll files are named with the .db/.dat/.tmp/.temp extensions
+            if not file_name.lower().endswith(".dll"):
+                # Let's confirm that at least this is a PE
+                with open(file_path, "rb") as f:
+                    if not any(PE_indicator in f.read() for PE_indicator in PE_INDICATORS):
+                        return
+            dll_export = choose_dll_export(file_path)
+            if dll_export == "DllRegisterServer":
+                rundll32 = self.get_path("regsvr32.exe")
+            else:
+                rundll32 = self.get_path_app_in_path("rundll32.exe")
+                function = self.options.get(OPT_FUNCTION, "#1")
+            arguments = self.options.get(OPT_ARGUMENTS)
+            dllloader = self.options.get(OPT_DLLLOADER)
+            dll_args = f'"{file_path}",{function}'
+            if arguments:
+                dll_args += f" {arguments}"
+            if dllloader:
+                newname = os.path.join(os.path.dirname(rundll32), dllloader)
+                shutil.copy(rundll32, newname)
+                rundll32 = newname
+            return self.execute(rundll32, dll_args, file_path)
+        # File extensions that require powershell.exe to run
+        elif file_name.lower().endswith(".ps1"):
+            powershell = self.get_path_app_in_path("powershell.exe")
+            args = f'-NoProfile -ExecutionPolicy bypass -File "{file_path}"'
+            return self.execute(powershell, args, file_path)
+        # File extensions that require winword.exe/wordview.exe to run
+        elif file_name.lower().endswith(".doc"):
+            # Try getting winword or wordview as a backup
+            try:
+                word = self.get_path_glob("WINWORD.EXE")
+            except CuckooPackageError:
+                word = self.get_path_glob("WORDVIEW.EXE")
+            return self.execute(word, f'"{file_path}" /q', file_path)
+        # File extensions that require excel.exe to run
+        elif file_name.lower().endswith(".xls"):
+            # Try getting excel
+            excel = self.get_path_glob("EXCEL.EXE")
+            return self.execute(excel, f'"{file_path}" /q', file_path)
+        # File extensions that require iexplore.exe to run
+        elif file_name.lower().endswith(".html"):
+            edge = self.get_path("msedge.exe")
+            return self.execute(edge, f'"{file_path}"', file_path)
+        # File extensions that are portable executables
+        elif is_pe_image(file_path):
+            file_path = check_file_extension(file_path, ".exe")
+            return self.execute(file_path, self.options.get(OPT_ARGUMENTS), file_path)
+        # Last ditch effort to attempt to execute this file
+        else:
+            # From zip_compound package
+            if "." not in os.path.basename(file_path):
+                new_path = f"{file_path}.exe"
+                os.rename(file_path, new_path)
+                file_path = new_path
+            cmd_path = self.get_path("cmd.exe")
+            cmd_args = f'/c "cd ^"{root}^" && start /wait ^"^" ^"{file_path}^"'
+            return self.execute(cmd_path, cmd_args, file_path)
+
+
+class Auxiliary:
+    # Setting all Auxiliary to have a default priority of 0
+    start_priority = 0
+    stop_priority = 0
+
+    def __init__(self, options=None, config=None):
         """@param options: options dict."""
+        if options is None:
+            options = {}
         self.options = options
         self.config = config
 
@@ -203,3 +322,29 @@ def add_pid(self, pid):
 
     def del_pid(self, pid):
         pass
+
+    def configure_from_data(self):
+        """Do private auxiliary module-specific configuration.
+
+        Auxiliary modules can implement this method to perform pre-analysis
+        configuration based on runtime data contained in "data/auxiliary/<package_name>".
+
+        This method raises:
+         - ImportError when any exception occurs during import
+         - AttributeError if the module configure function is invalid
+         - ModuleNotFoundError if the module does not support configuration from data
+        """
+        package_module_name = self.__class__.__module__.split(".")[-1]
+        module_name = f"data.auxiliary.{package_module_name}"
+        try:
+            mod = importlib.import_module(module_name)
+        except ModuleNotFoundError as exc:
+            raise exc
+        except Exception as exc:
+            raise ImportError(f"error importing {module_name}: {exc}") from exc
+
+        spec = inspect.getfullargspec(mod.configure)
+        if len(spec.args) != 1:
+            err_msg = f"{module_name}.configure: expected 1 arguments, got {len(spec.args)}"
+            raise AttributeError(err_msg)
+        mod.configure(self)
diff --git a/analyzer/windows/lib/common/common.py b/analyzer/windows/lib/common/common.py
new file mode 100644
index 00000000000..6d48adc4580
--- /dev/null
+++ b/analyzer/windows/lib/common/common.py
@@ -0,0 +1,52 @@
+import ctypes
+import logging
+import os
+import sys
+from ctypes import POINTER, wintypes
+from ctypes.wintypes import BOOL, HANDLE
+from functools import wraps
+
+log = logging.getLogger(__name__)
+
+
+def check_file_extension(path: str, ext: str) -> str:
+    # Check file extension.
+    # If the file doesn't have the proper extension force it and rename it.
+    if os.path.splitext(path)[-1].lower() != ext:
+        os.rename(path, f"{path}{ext}")
+        log.info("Submitted file is missing extension, adding %s", ext)
+        return path + ext
+    return path
+
+
+def disable_wow64_redirection(func):
+    if os.name == "nt" and sys.maxsize == 2**31 - 1:
+        log.info("disable_wow64_redirection")
+        kernel32 = ctypes.windll.kernel32
+
+        Wow64DisableWow64FsRedirection = kernel32.Wow64DisableWow64FsRedirection
+        Wow64DisableWow64FsRedirection.restype = BOOL
+        Wow64DisableWow64FsRedirection.argtypes = [POINTER(HANDLE)]
+
+        Wow64RevertWow64FsRedirection = kernel32.Wow64RevertWow64FsRedirection
+        Wow64RevertWow64FsRedirection.restype = BOOL
+        Wow64RevertWow64FsRedirection.argtypes = [HANDLE]
+    else:
+        log.info("wow64_redirection")
+
+    @wraps(func)
+    def wrapper(*args, **kwargs):
+        if os.name == "nt" and sys.maxsize == 2**31 - 1:
+            log.info("wrapping")
+            old_value = wintypes.HANDLE()
+            Wow64DisableWow64FsRedirection(ctypes.byref(old_value))
+
+            result = func(*args, **kwargs)
+
+            Wow64RevertWow64FsRedirection(old_value)
+            return result
+        else:
+            log.info("no wrapping")
+            return func(*args, **kwargs)
+
+    return wrapper
diff --git a/analyzer/windows/lib/common/constants.py b/analyzer/windows/lib/common/constants.py
index d68d357a4fd..ec0e9811496 100644
--- a/analyzer/windows/lib/common/constants.py
+++ b/analyzer/windows/lib/common/constants.py
@@ -2,10 +2,9 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 import os
-from lib.common.rand import random_string
 
+from lib.common.rand import random_string
 
 ROOT = os.path.join(os.getenv("SystemDrive"), "\\", random_string(6, 10))
 
@@ -16,13 +15,64 @@
     "shots": os.path.join(ROOT, "shots"),
     "memory": os.path.join(ROOT, "memory"),
     "drop": os.path.join(ROOT, "drop"),
+    "TTD": os.path.join(ROOT, "TTD"),
 }
 
-PIPE = "\\\\.\\PIPE\\" + random_string(6, 10)
-SHUTDOWN_MUTEX = "Global\\" + random_string(6, 10)
-TERMINATE_EVENT = "Global\\" + random_string(6, 10)
-CAPEMON32_NAME = "dll\\" + random_string(6, 8) + ".dll"
-CAPEMON64_NAME = "dll\\" + random_string(6, 8) + ".dll"
-LOADER32_NAME = "bin\\" + random_string(7, 7) + ".exe"
-LOADER64_NAME = "bin\\" + random_string(8, 8) + ".exe"
-LOGSERVER_PREFIX = "\\\\.\\PIPE\\" + random_string(8, 12)
+PIPE = f"\\\\.\\PIPE\\{random_string(6, 10)}"
+LOGSERVER_PREFIX = f"\\\\.\\PIPE\\{random_string(8, 12)}"
+SHUTDOWN_MUTEX = f"Global\\{random_string(6, 10)}"
+TERMINATE_EVENT = f"Global\\{random_string(6, 10)}"
+CAPEMON32_NAME = f"dll\\{random_string(6, 8)}.dll"
+CAPEMON64_NAME = f"dll\\{random_string(6, 8)}.dll"
+LOADER32_NAME = f"bin\\{random_string(7)}.exe"
+LOADER64_NAME = f"bin\\{random_string(8)}.exe"
+TTD32_NAME = "bin\\wow64\\TTD.exe"
+TTD64_NAME = "bin\\TTD.exe"
+SIDELOADER32_NAME = "dll\\version.dll"
+SIDELOADER64_NAME = "dll\\version_x64.dll"
+
+# Options
+OPT_APPDATA = "appdata"
+OPT_ARGUMENTS = "arguments"
+OPT_CLASS = "class"
+OPT_CURDIR = "curdir"
+OPT_DLLLOADER = "dllloader"
+OPT_EXECUTIONDIR = "executiondir"
+OPT_FILE = "file"
+OPT_FREE = "free"
+OPT_FUNCTION = "function"
+OPT_KERNEL_ANALYSIS = "kernel_analysis"
+OPT_INJECTION = "injection"
+OPT_MULTI_PASSWORD = "enable_multi_password"
+OPT_OFFSET = "offset"
+OPT_PASSWORD = "password"
+OPT_PROCDUMP = "procdump"
+OPT_SERVICENAME = "servicename"
+OPT_SERVICEDESC = "servicedesc"
+OPT_RUNASX86 = "runasx86"
+OPT_UNPACKER = "unpacker"
+
+ARCHIVE_OPTIONS = (OPT_FILE, OPT_PASSWORD)
+DLL_OPTIONS = (OPT_ARGUMENTS, OPT_DLLLOADER, OPT_FUNCTION)
+SERVICE_OPTIONS = (OPT_SERVICENAME, OPT_SERVICEDESC, OPT_ARGUMENTS)
+
+
+""" Excel, Word, and Powerpoint won't have macros enabled without interaction for
+documents that are outside one of its "Trusted Locations". Unless the user has
+provided a 'curdir' option, use MSOFFICE_TRUSTED_PATH as the directory where
+the document will be saved and executed from since that is a default trusted
+location for all 3 apps. See
+https://learn.microsoft.com/en-us/deployoffice/security/trusted-locations
+"""
+MSOFFICE_TRUSTED_PATH = os.path.join("%SystemDrive%", "Program Files", "Microsoft Office", "root", "Templates")
+TRUSTED_PATH_TEXT = (
+    f"Use MS Office Trusted Path location {MSOFFICE_TRUSTED_PATH} unless the user has provided a '{OPT_CURDIR}' option."
+)
+
+DLL_OPTION_TEXT = f"""\
+Use the '{OPT_DLLLOADER}' option to set the name of the process loading the DLL (defaults to rundll32.exe).
+Use the '{OPT_ARGUMENTS}' option to set the arguments to be passed to the exported function(s).
+Use the '{OPT_FUNCTION}' option to set the name of the exported function/ordinal to execute.
+The default function is '#1'.
+Can be multiple function/ordinals split by colon. Ex: function=#1:#3 or #2-4
+"""
diff --git a/analyzer/windows/lib/common/decode_vbe_jse.py b/analyzer/windows/lib/common/decode_vbe_jse.py
deleted file mode 100644
index 30fedc3bc3c..00000000000
--- a/analyzer/windows/lib/common/decode_vbe_jse.py
+++ /dev/null
@@ -1,375 +0,0 @@
-#!/usr/bin/env python
-
-from __future__ import absolute_import
-from __future__ import print_function
-
-__description__ = "Decode VBE script"
-__author__ = "Didier Stevens"
-__version__ = "0.0.2"
-__date__ = "2016/03/29"
-
-"""
-
-Source code put in public domain by Didier Stevens, no Copyright
-https://DidierStevens.com
-Use at your own risk
-
-History:
-  2016/03/28: start
-  2016/03/29: 0.0.2 added support for ZIP files and literal arguments with File2StringHash
-
-Todo:
-
-Reference:
-  https://gallery.technet.microsoft.com/Encode-and-Decode-a-VB-a480d74c
-"""
-
-import optparse
-import sys
-import os
-import signal
-import textwrap
-import re
-import zipfile
-import binascii
-
-MALWARE_PASSWORD = "infected"
-
-
-def PrintManual():
-    manual = """
-Manual:
-
-This program reads from the given file or standard input, and converts the encoded VBE script to VBS.
-
-The provided file can be a password protected ZIP file (with password infected) containing the VBE script.
-
-The content of the VBE script can also be passed as a literal argument. This is similar to a Here Document in Unix.
-Start the argument (the "filename") with character # to pass a literal argument.
-Example: decode-vbe.py "##@~^DgAAAA==\ko$K6,JCV^GJqAQAAA==^#~@"
-Result: MsgBox "Hello"
-
-It's also possible to use hexadecimal (prefix #h#) or base64 (prefix #b#) to pass a literal argument.
-Example: decode-vbe.py #h#23407E5E4467414141413D3D5C6B6F244B362C4A437F565E474A7141514141413D3D5E237E40
-Result: MsgBox "Hello"
-Example: decode-vbe.py #b#I0B+XkRnQUFBQT09XGtvJEs2LEpDf1ZeR0pxQVFBQUE9PV4jfkA=
-Result: MsgBox "Hello"
-
-"""
-    for line in manual.split("\n"):
-        print((textwrap.fill(line)))
-
-
-# Convert 2 Bytes If Python 3
-def C2BIP3(string):
-    if sys.version_info[0] > 2:
-        return bytes([ord(x) for x in string])
-    else:
-        return string
-
-
-def File2String(filename):
-    try:
-        f = open(filename, "rb")
-    except:
-        return None
-    try:
-        return f.read()
-    except:
-        return None
-    finally:
-        f.close()
-
-
-def File2StringHash(filename):
-    decoded = None
-    if filename.startswith("#h#"):
-        try:
-            decoded = binascii.a2b_hex(filename[3:])
-        finally:
-            return decoded
-    elif filename.startswith("#b#"):
-        try:
-            decoded = binascii.a2b_base64(filename[3:])
-        finally:
-            return decoded
-    elif filename.startswith("#"):
-        return filename[1:]
-    elif filename.lower().endswith(".zip"):
-        oZipfile = zipfile.ZipFile(filename, "r")
-        if len(oZipfile.infolist()) == 1:
-            oZipContent = oZipfile.open(oZipfile.infolist()[0], "r", C2BIP3(MALWARE_PASSWORD))
-            data = oZipContent.read()
-            oZipContent.close()
-        else:
-            data = File2String(filename)
-        oZipfile.close()
-        return data
-    else:
-        return File2String(filename)
-
-
-def FixPipe():
-    try:
-        signal.signal(signal.SIGPIPE, signal.SIG_DFL)
-    except:
-        pass
-
-
-# Fix for http://bugs.python.org/issue11395
-def StdoutWriteChunked(data):
-    while data != "":
-        sys.stdout.write(data[0:10000])
-        sys.stdout.flush()
-        data = data[10000:]
-
-
-def Decode(data):
-    dDecode = {}
-    dDecode[9] = "\x57\x6E\x7B"
-    dDecode[10] = "\x4A\x4C\x41"
-    dDecode[11] = "\x0B\x0B\x0B"
-    dDecode[12] = "\x0C\x0C\x0C"
-    dDecode[13] = "\x4A\x4C\x41"
-    dDecode[14] = "\x0E\x0E\x0E"
-    dDecode[15] = "\x0F\x0F\x0F"
-    dDecode[16] = "\x10\x10\x10"
-    dDecode[17] = "\x11\x11\x11"
-    dDecode[18] = "\x12\x12\x12"
-    dDecode[19] = "\x13\x13\x13"
-    dDecode[20] = "\x14\x14\x14"
-    dDecode[21] = "\x15\x15\x15"
-    dDecode[22] = "\x16\x16\x16"
-    dDecode[23] = "\x17\x17\x17"
-    dDecode[24] = "\x18\x18\x18"
-    dDecode[25] = "\x19\x19\x19"
-    dDecode[26] = "\x1A\x1A\x1A"
-    dDecode[27] = "\x1B\x1B\x1B"
-    dDecode[28] = "\x1C\x1C\x1C"
-    dDecode[29] = "\x1D\x1D\x1D"
-    dDecode[30] = "\x1E\x1E\x1E"
-    dDecode[31] = "\x1F\x1F\x1F"
-    dDecode[32] = "\x2E\x2D\x32"
-    dDecode[33] = "\x47\x75\x30"
-    dDecode[34] = "\x7A\x52\x21"
-    dDecode[35] = "\x56\x60\x29"
-    dDecode[36] = "\x42\x71\x5B"
-    dDecode[37] = "\x6A\x5E\x38"
-    dDecode[38] = "\x2F\x49\x33"
-    dDecode[39] = "\x26\x5C\x3D"
-    dDecode[40] = "\x49\x62\x58"
-    dDecode[41] = "\x41\x7D\x3A"
-    dDecode[42] = "\x34\x29\x35"
-    dDecode[43] = "\x32\x36\x65"
-    dDecode[44] = "\x5B\x20\x39"
-    dDecode[45] = "\x76\x7C\x5C"
-    dDecode[46] = "\x72\x7A\x56"
-    dDecode[47] = "\x43\x7F\x73"
-    dDecode[48] = "\x38\x6B\x66"
-    dDecode[49] = "\x39\x63\x4E"
-    dDecode[50] = "\x70\x33\x45"
-    dDecode[51] = "\x45\x2B\x6B"
-    dDecode[52] = "\x68\x68\x62"
-    dDecode[53] = "\x71\x51\x59"
-    dDecode[54] = "\x4F\x66\x78"
-    dDecode[55] = "\x09\x76\x5E"
-    dDecode[56] = "\x62\x31\x7D"
-    dDecode[57] = "\x44\x64\x4A"
-    dDecode[58] = "\x23\x54\x6D"
-    dDecode[59] = "\x75\x43\x71"
-    dDecode[60] = "\x4A\x4C\x41"
-    dDecode[61] = "\x7E\x3A\x60"
-    dDecode[62] = "\x4A\x4C\x41"
-    dDecode[63] = "\x5E\x7E\x53"
-    dDecode[64] = "\x40\x4C\x40"
-    dDecode[65] = "\x77\x45\x42"
-    dDecode[66] = "\x4A\x2C\x27"
-    dDecode[67] = "\x61\x2A\x48"
-    dDecode[68] = "\x5D\x74\x72"
-    dDecode[69] = "\x22\x27\x75"
-    dDecode[70] = "\x4B\x37\x31"
-    dDecode[71] = "\x6F\x44\x37"
-    dDecode[72] = "\x4E\x79\x4D"
-    dDecode[73] = "\x3B\x59\x52"
-    dDecode[74] = "\x4C\x2F\x22"
-    dDecode[75] = "\x50\x6F\x54"
-    dDecode[76] = "\x67\x26\x6A"
-    dDecode[77] = "\x2A\x72\x47"
-    dDecode[78] = "\x7D\x6A\x64"
-    dDecode[79] = "\x74\x39\x2D"
-    dDecode[80] = "\x54\x7B\x20"
-    dDecode[81] = "\x2B\x3F\x7F"
-    dDecode[82] = "\x2D\x38\x2E"
-    dDecode[83] = "\x2C\x77\x4C"
-    dDecode[84] = "\x30\x67\x5D"
-    dDecode[85] = "\x6E\x53\x7E"
-    dDecode[86] = "\x6B\x47\x6C"
-    dDecode[87] = "\x66\x34\x6F"
-    dDecode[88] = "\x35\x78\x79"
-    dDecode[89] = "\x25\x5D\x74"
-    dDecode[90] = "\x21\x30\x43"
-    dDecode[91] = "\x64\x23\x26"
-    dDecode[92] = "\x4D\x5A\x76"
-    dDecode[93] = "\x52\x5B\x25"
-    dDecode[94] = "\x63\x6C\x24"
-    dDecode[95] = "\x3F\x48\x2B"
-    dDecode[96] = "\x7B\x55\x28"
-    dDecode[97] = "\x78\x70\x23"
-    dDecode[98] = "\x29\x69\x41"
-    dDecode[99] = "\x28\x2E\x34"
-    dDecode[100] = "\x73\x4C\x09"
-    dDecode[101] = "\x59\x21\x2A"
-    dDecode[102] = "\x33\x24\x44"
-    dDecode[103] = "\x7F\x4E\x3F"
-    dDecode[104] = "\x6D\x50\x77"
-    dDecode[105] = "\x55\x09\x3B"
-    dDecode[106] = "\x53\x56\x55"
-    dDecode[107] = "\x7C\x73\x69"
-    dDecode[108] = "\x3A\x35\x61"
-    dDecode[109] = "\x5F\x61\x63"
-    dDecode[110] = "\x65\x4B\x50"
-    dDecode[111] = "\x46\x58\x67"
-    dDecode[112] = "\x58\x3B\x51"
-    dDecode[113] = "\x31\x57\x49"
-    dDecode[114] = "\x69\x22\x4F"
-    dDecode[115] = "\x6C\x6D\x46"
-    dDecode[116] = "\x5A\x4D\x68"
-    dDecode[117] = "\x48\x25\x7C"
-    dDecode[118] = "\x27\x28\x36"
-    dDecode[119] = "\x5C\x46\x70"
-    dDecode[120] = "\x3D\x4A\x6E"
-    dDecode[121] = "\x24\x32\x7A"
-    dDecode[122] = "\x79\x41\x2F"
-    dDecode[123] = "\x37\x3D\x5F"
-    dDecode[124] = "\x60\x5F\x4B"
-    dDecode[125] = "\x51\x4F\x5A"
-    dDecode[126] = "\x20\x42\x2C"
-    dDecode[127] = "\x36\x65\x57"
-
-    dCombination = {}
-    dCombination[0] = 0
-    dCombination[1] = 1
-    dCombination[2] = 2
-    dCombination[3] = 0
-    dCombination[4] = 1
-    dCombination[5] = 2
-    dCombination[6] = 1
-    dCombination[7] = 2
-    dCombination[8] = 2
-    dCombination[9] = 1
-    dCombination[10] = 2
-    dCombination[11] = 1
-    dCombination[12] = 0
-    dCombination[13] = 2
-    dCombination[14] = 1
-    dCombination[15] = 2
-    dCombination[16] = 0
-    dCombination[17] = 2
-    dCombination[18] = 1
-    dCombination[19] = 2
-    dCombination[20] = 0
-    dCombination[21] = 0
-    dCombination[22] = 1
-    dCombination[23] = 2
-    dCombination[24] = 2
-    dCombination[25] = 1
-    dCombination[26] = 0
-    dCombination[27] = 2
-    dCombination[28] = 1
-    dCombination[29] = 2
-    dCombination[30] = 2
-    dCombination[31] = 1
-    dCombination[32] = 0
-    dCombination[33] = 0
-    dCombination[34] = 2
-    dCombination[35] = 1
-    dCombination[36] = 2
-    dCombination[37] = 1
-    dCombination[38] = 2
-    dCombination[39] = 0
-    dCombination[40] = 2
-    dCombination[41] = 0
-    dCombination[42] = 0
-    dCombination[43] = 1
-    dCombination[44] = 2
-    dCombination[45] = 0
-    dCombination[46] = 2
-    dCombination[47] = 1
-    dCombination[48] = 0
-    dCombination[49] = 2
-    dCombination[50] = 1
-    dCombination[51] = 2
-    dCombination[52] = 0
-    dCombination[53] = 0
-    dCombination[54] = 1
-    dCombination[55] = 2
-    dCombination[56] = 2
-    dCombination[57] = 0
-    dCombination[58] = 0
-    dCombination[59] = 1
-    dCombination[60] = 2
-    dCombination[61] = 0
-    dCombination[62] = 2
-    dCombination[63] = 1
-
-    result = ""
-    index = -1
-    for char in data.replace("@&", chr(10)).replace("@#", chr(13)).replace("@*", ">").replace("@!", "<").replace("@$", "@"):
-        byte = ord(char)
-        if byte < 128:
-            index = index + 1
-        if (byte == 9 or byte > 31 and byte < 128) and byte != 60 and byte != 62 and byte != 64:
-            char = [c for c in dDecode[byte]][dCombination[index % 64]]
-        result += char
-
-    return result
-
-
-def DecodeVBEJSE(content, options):
-    data = False
-    """
-    FixPipe()
-    if sys.platform == 'win32':
-        import msvcrt
-        msvcrt.setmode(sys.stdout.fileno(), os.O_BINARY)
-    if filename == '':
-        content = sys.stdin.read()
-    else:
-        content = File2StringHash(filename)
-    print(content[:20])
-    """
-    oMatch = re.search(r"#@~\^......==(.+)......==\^#~@", content)
-    if oMatch == None:
-        print("No encoded script found!")
-    else:
-        data = Decode(oMatch.groups()[0])
-    return data
-
-
-def Main():
-    oParser = optparse.OptionParser(usage="usage: %prog [options] [file]\n" + __description__, version="%prog " + __version__)
-    oParser.add_option("-m", "--man", action="store_true", default=False, help="Print manual")
-    (options, args) = oParser.parse_args()
-
-    if options.man:
-        oParser.print_help()
-        PrintManual()
-        return
-
-    if len(args) > 1:
-        oParser.print_help()
-        print("")
-        print("  Source code put in the public domain by Didier Stevens, no Copyright")
-        print("  Use at your own risk")
-        print("  https://DidierStevens.com")
-        return
-    elif len(args) == 0:
-        data = DecodeVBEJSE("", options)
-    else:
-        data = DecodeVBEJSE(open(args[0], "rb").read(), options)
-    if data:
-        StdoutWriteChunked(data)
-
-
-if __name__ == "__main__":
-    Main()
diff --git a/analyzer/windows/lib/common/defines.py b/analyzer/windows/lib/common/defines.py
index d99a33d7d7d..39b11411aec 100644
--- a/analyzer/windows/lib/common/defines.py
+++ b/analyzer/windows/lib/common/defines.py
@@ -2,14 +2,35 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-from ctypes import *
-
-NTDLL = windll.ntdll
-KERNEL32 = windll.kernel32
-ADVAPI32 = windll.advapi32
-USER32 = windll.user32
-PDH = windll.pdh
+import sys
+from ctypes import (
+    POINTER,
+    Structure,
+    Union,
+    c_bool,
+    c_char,
+    c_double,
+    c_int,
+    c_ubyte,
+    c_uint,
+    c_ulonglong,
+    c_ushort,
+    c_void_p,
+    c_wchar_p,
+)
+
+if sys.platform == "win32":
+    from ctypes import WINFUNCTYPE, windll
+
+    NTDLL = windll.ntdll
+    KERNEL32 = windll.kernel32
+    ADVAPI32 = windll.advapi32
+    USER32 = windll.user32
+    SHELL32 = windll.shell32
+    PDH = windll.pdh
+    PSAPI = windll.psapi
+    EnumWindowsProc = WINFUNCTYPE(c_bool, POINTER(c_int), POINTER(c_int))
+    EnumChildProc = WINFUNCTYPE(c_bool, POINTER(c_int), POINTER(c_int))
 
 BYTE = c_ubyte
 USHORT = c_ushort
@@ -21,6 +42,7 @@
 UINT64 = c_ulonglong
 LPBYTE = POINTER(c_ubyte)
 LPTSTR = POINTER(c_char)
+PWSTR = c_wchar_p
 HANDLE = c_void_p
 PVOID = c_void_p
 LPVOID = c_void_p
@@ -39,6 +61,7 @@
 PROCESS_ALL_ACCESS = 0x001F0FFF
 THREAD_ALL_ACCESS = 0x001F03FF
 TOKEN_ALL_ACCESS = 0x000F01FF
+PROCESS_QUERY_LIMITED_INFORMATION = 0x00001000
 SE_PRIVILEGE_ENABLED = 0x00000002
 STILL_ACTIVE = 0x00000103
 
@@ -77,6 +100,7 @@
 ERROR_BROKEN_PIPE = 0x0000006D
 ERROR_MORE_DATA = 0x000000EA
 ERROR_PIPE_CONNECTED = 0x00000217
+ERROR_INVALID_HANDLE = 0x00000006
 
 WAIT_TIMEOUT = 0x00000102
 
@@ -93,8 +117,8 @@
 
 GENERIC_READ = 0x80000000
 GENERIC_WRITE = 0x40000000
-GENERIC_EXECUTE           = 0x20000000
-GENERIC_ALL               = 0x10000000
+GENERIC_EXECUTE = 0x20000000
+GENERIC_ALL = 0x10000000
 
 OPEN_EXISTING = 0x00000003
 
@@ -105,18 +129,30 @@
 
 PDH_FMT_DOUBLE = 0x00000200
 
-FILE_SHARE_READ   = 0x00000001
-FILE_SHARE_WRITE  = 0x00000002
+FILE_SHARE_READ = 0x00000001
+FILE_SHARE_WRITE = 0x00000002
 FILE_SHARE_DELETE = 0x00000004
 
-
-CREATE_NEW    = 1
+CREATE_NEW = 1
 CREATE_ALWAYS = 2
 OPEN_EXISTING = 3
-OPEN_ALWAYS   = 4
+OPEN_ALWAYS = 4
 TRUNCATE_EXISTING = 5
 CREATE_NO_WINDOW = 0x08000000
 
+MAX_PATH = 260
+
+# Button messages
+BM_SETCHECK = 0x000000F1
+BM_GETCHECK = 0x000000F0
+# Button states
+BST_UNCHECKED = 0x0000
+BST_CHECKED = 0x0001
+BST_INDETERMINATE = 0x0002
+
+# Process cannot access the file because it is being used by another process.
+ERROR_SHARING_VIOLATION = 0x00000020
+
 
 class STARTUPINFO(Structure):
     _fields_ = [
@@ -236,22 +272,6 @@ class UNICODE_STRING(Structure):
     ]
 
 
-class SYSTEM_PROCESS_INFORMATION(Structure):
-    _fields_ = [
-        ("NextEntryOffset", ULONG),
-        ("NumberOfThreads", ULONG),
-        ("Reserved0", UINT64),
-        ("Reserved1", UINT64),
-        ("Reserved2", UINT64),
-        ("CreateTime", UINT64),
-        ("UserTime", UINT64),
-        ("KernelTime", UINT64),
-        ("ImageName", UNICODE_STRING),
-        ("BasePriority", ULONG),
-        ("UniqueProcessId", PVOID),
-    ]
-
-
 class SECURITY_DESCRIPTOR(Structure):
     _pack_ = 1
     _fields_ = [
@@ -307,6 +327,3 @@ class PDH_FMT_COUNTERVALUE(Structure):
         ("CStatus", DWORD),
         ("doubleValue", DOUBLE),
     ]
-
-EnumWindowsProc = WINFUNCTYPE(c_bool, POINTER(c_int), POINTER(c_int))
-EnumChildProc = WINFUNCTYPE(c_bool, POINTER(c_int), POINTER(c_int))
diff --git a/analyzer/windows/lib/common/errors.py b/analyzer/windows/lib/common/errors.py
index aa63e7dd58e..89a139c62ba 100644
--- a/analyzer/windows/lib/common/errors.py
+++ b/analyzer/windows/lib/common/errors.py
@@ -35,12 +35,18 @@
     29: {"description": "The system cannot write to the specified device", "name": "ERROR_WRITE_FAULT"},
     30: {"description": "The system cannot read from the specified device", "name": "ERROR_READ_FAULT"},
     31: {"description": "A device attached to the system is not functioning", "name": "ERROR_GEN_FAILURE"},
-    32: {"description": "The process cannot access the file because it is being used by another process", "name": "ERROR_SHARING_VIOLATION"},
+    32: {
+        "description": "The process cannot access the file because it is being used by another process",
+        "name": "ERROR_SHARING_VIOLATION",
+    },
     33: {
         "description": "The process cannot access the file because another process has locked a portion of the file",
         "name": "ERROR_LOCK_VIOLATION",
     },
-    34: {"description": "The wrong diskette is in the drive. Insert %2 (Volume Serial Number: %3) into drive %1", "name": "ERROR_WRONG_DISK"},
+    34: {
+        "description": "The wrong diskette is in the drive. Insert %2 (Volume Serial Number: %3) into drive %1",
+        "name": "ERROR_WRONG_DISK",
+    },
     36: {"description": "Too many files opened for sharing", "name": "ERROR_SHARING_BUFFER_EXCEEDED"},
     38: {"description": "Reached the end of the file", "name": "ERROR_HANDLE_EOF"},
     39: {"description": "The disk is full", "name": "ERROR_HANDLE_DISK_FULL"},
@@ -62,7 +68,10 @@
     59: {"description": "An unexpected network error occurred", "name": "ERROR_UNEXP_NET_ERR"},
     60: {"description": "The remote adapter is not compatible", "name": "ERROR_BAD_REM_ADAP"},
     61: {"description": "The printer queue is full", "name": "ERROR_PRINTQ_FULL"},
-    62: {"description": "Space to store the file waiting to be printed is not available on the server", "name": "ERROR_NO_SPOOL_SPACE"},
+    62: {
+        "description": "Space to store the file waiting to be printed is not available on the server",
+        "name": "ERROR_NO_SPOOL_SPACE",
+    },
     63: {"description": "Your file waiting to be printed was deleted", "name": "ERROR_PRINT_CANCELLED"},
     64: {"description": "The specified network name is no longer available", "name": "ERROR_NETNAME_DELETED"},
     65: {"description": "Network access is denied", "name": "ERROR_NETWORK_ACCESS_DENIED"},
@@ -117,7 +126,10 @@
         "description": "Attempt to use a file handle to an open disk partition for an operation other than raw disk I/O",
         "name": "ERROR_DIRECT_ACCESS_HANDLE",
     },
-    131: {"description": "An attempt was made to move the file pointer before the beginning of the file", "name": "ERROR_NEGATIVE_SEEK"},
+    131: {
+        "description": "An attempt was made to move the file pointer before the beginning of the file",
+        "name": "ERROR_NEGATIVE_SEEK",
+    },
     132: {"description": "The file pointer cannot be set on the specified device or file", "name": "ERROR_SEEK_ON_DEVICE"},
     133: {
         "description": "A JOIN or SUBST command cannot be used for a drive that contains previously joined drives",
@@ -132,13 +144,22 @@
         "name": "ERROR_IS_SUBSTED",
     },
     136: {"description": "The system tried to delete the JOIN of a drive that is not joined", "name": "ERROR_NOT_JOINED"},
-    137: {"description": "The system tried to delete the substitution of a drive that is not substituted", "name": "ERROR_NOT_SUBSTED"},
+    137: {
+        "description": "The system tried to delete the substitution of a drive that is not substituted",
+        "name": "ERROR_NOT_SUBSTED",
+    },
     138: {"description": "The system tried to join a drive to a directory on a joined drive", "name": "ERROR_JOIN_TO_JOIN"},
-    139: {"description": "The system tried to substitute a drive to a directory on a substituted drive", "name": "ERROR_SUBST_TO_SUBST"},
+    139: {
+        "description": "The system tried to substitute a drive to a directory on a substituted drive",
+        "name": "ERROR_SUBST_TO_SUBST",
+    },
     140: {"description": "The system tried to join a drive to a directory on a substituted drive", "name": "ERROR_JOIN_TO_SUBST"},
     141: {"description": "The system tried to SUBST a drive to a directory on a joined drive", "name": "ERROR_SUBST_TO_JOIN"},
     142: {"description": "The system cannot perform a JOIN or SUBST at this time", "name": "ERROR_BUSY_DRIVE"},
-    143: {"description": "The system cannot join or substitute a drive to or for a directory on the same drive", "name": "ERROR_SAME_DRIVE"},
+    143: {
+        "description": "The system cannot join or substitute a drive to or for a directory on the same drive",
+        "name": "ERROR_SAME_DRIVE",
+    },
     144: {"description": "The directory is not a subdirectory of the root directory", "name": "ERROR_DIR_NOT_ROOT"},
     145: {"description": "The directory is not empty", "name": "ERROR_DIR_NOT_EMPTY"},
     146: {"description": "The path specified is being used in a substitute", "name": "ERROR_IS_SUBST_PATH"},
@@ -152,7 +173,10 @@
         "description": "System trace information was not specified in your CONFIG.SYS file, or tracing is disallowed",
         "name": "ERROR_SYSTEM_TRACE",
     },
-    151: {"description": "The number of specified semaphore events for DosMuxSemWait is not correct", "name": "ERROR_INVALID_EVENT_COUNT"},
+    151: {
+        "description": "The number of specified semaphore events for DosMuxSemWait is not correct",
+        "name": "ERROR_INVALID_EVENT_COUNT",
+    },
     152: {"description": "DosMuxSemWait did not execute; too many semaphores are already set", "name": "ERROR_TOO_MANY_MUXWAITERS"},
     153: {"description": "The DosMuxSemWait list is not correct", "name": "ERROR_INVALID_LIST_FORMAT"},
     154: {
@@ -172,7 +196,10 @@
     170: {"description": "The requested resource is in use", "name": "ERROR_BUSY"},
     171: {"description": "Device's command support detection is in progress", "name": "ERROR_DEVICE_SUPPORT_IN_PROGRESS"},
     173: {"description": "A lock request was not outstanding for the supplied cancel region", "name": "ERROR_CANCEL_VIOLATION"},
-    174: {"description": "The file system does not support atomic changes to the lock type", "name": "ERROR_ATOMIC_LOCKS_NOT_SUPPORTED"},
+    174: {
+        "description": "The file system does not support atomic changes to the lock type",
+        "name": "ERROR_ATOMIC_LOCKS_NOT_SUPPORTED",
+    },
     180: {"description": "The system detected a segment number that was not correct", "name": "ERROR_INVALID_SEGMENT_NUMBER"},
     182: {"description": "The operating system cannot run %1", "name": "ERROR_INVALID_ORDINAL"},
     183: {"description": "Cannot create a file when that file already exists", "name": "ERROR_ALREADY_EXISTS"},
@@ -187,7 +214,10 @@
     194: {"description": "The operating system cannot run %1", "name": "ERROR_ITERATED_DATA_EXCEEDS_64k"},
     195: {"description": "The operating system cannot run %1", "name": "ERROR_INVALID_MINALLOCSIZE"},
     196: {"description": "The operating system cannot run this application program", "name": "ERROR_DYNLINK_FROM_INVALID_RING"},
-    197: {"description": "The operating system is not presently configured to run this application", "name": "ERROR_IOPL_NOT_ENABLED"},
+    197: {
+        "description": "The operating system is not presently configured to run this application",
+        "name": "ERROR_IOPL_NOT_ENABLED",
+    },
     198: {"description": "The operating system cannot run %1", "name": "ERROR_INVALID_SEGDPL"},
     199: {"description": "The operating system cannot run this application program", "name": "ERROR_AUTODATASEG_EXCEEDS_64k"},
     200: {"description": "The code segment cannot be greater than or equal to 64K", "name": "ERROR_RING2SEG_MUST_BE_MOVABLE"},
@@ -204,14 +234,20 @@
     209: {"description": "The signal being posted is not correct", "name": "ERROR_INVALID_SIGNAL_NUMBER"},
     210: {"description": "The signal handler cannot be set", "name": "ERROR_THREAD_1_INACTIVE"},
     212: {"description": "The segment is locked and cannot be reallocated", "name": "ERROR_LOCKED"},
-    214: {"description": "Too many dynamic-link modules are attached to this program or dynamic-link module", "name": "ERROR_TOO_MANY_MODULES"},
+    214: {
+        "description": "Too many dynamic-link modules are attached to this program or dynamic-link module",
+        "name": "ERROR_TOO_MANY_MODULES",
+    },
     215: {"description": "Cannot nest calls to LoadModule", "name": "ERROR_NESTING_NOT_ALLOWED"},
     216: {
         "description": "This version of %1 is not compatible with the version of Windows you're running. Check your computer's system information to see whether you need a x86 (32-bit) or x64 (64-bit) version of the program, and then contact the software publisher",
         "name": "ERROR_EXE_MACHINE_TYPE_MISMATCH",
     },
     217: {"description": "The image file %1 is signed, unable to modify", "name": "ERROR_EXE_CANNOT_MODIFY_SIGNED_BINARY"},
-    218: {"description": "The image file %1 is strong signed, unable to modify", "name": "ERROR_EXE_CANNOT_MODIFY_STRONG_SIGNED_BINARY"},
+    218: {
+        "description": "The image file %1 is strong signed, unable to modify",
+        "name": "ERROR_EXE_CANNOT_MODIFY_STRONG_SIGNED_BINARY",
+    },
     220: {"description": "This file is checked out or locked for editing by another user", "name": "ERROR_FILE_CHECKED_OUT"},
     221: {"description": "The file must be checked out before saving changes", "name": "ERROR_CHECKOUT_REQUIRED"},
     222: {"description": "The file type being saved or retrieved has been blocked", "name": "ERROR_BAD_FILE_TYPE"},
@@ -248,7 +284,10 @@
     282: {"description": "The mounted file system does not support extended attributes", "name": "ERROR_EAS_NOT_SUPPORTED"},
     288: {"description": "Attempt to release mutex not owned by caller", "name": "ERROR_NOT_OWNER"},
     298: {"description": "Too many posts were made to a semaphore", "name": "ERROR_TOO_MANY_POSTS"},
-    299: {"description": "Only part of a ReadProcessMemory or WriteProcessMemory request was completed", "name": "ERROR_PARTIAL_COPY"},
+    299: {
+        "description": "Only part of a ReadProcessMemory or WriteProcessMemory request was completed",
+        "name": "ERROR_PARTIAL_COPY",
+    },
     300: {"description": "The oplock request is denied", "name": "ERROR_OPLOCK_NOT_GRANTED"},
     301: {"description": "An invalid oplock acknowledgment was received by the system", "name": "ERROR_INVALID_OPLOCK_PROTOCOL"},
     302: {"description": "The volume is too fragmented to complete this operation", "name": "ERROR_DISK_TOO_FRAGMENTED"},
@@ -266,7 +305,10 @@
         "description": "A requested file lock operation cannot be processed due to an invalid byte range",
         "name": "ERROR_INVALID_LOCK_RANGE",
     },
-    308: {"description": "The subsystem needed to support the image type is not present", "name": "ERROR_IMAGE_SUBSYSTEM_NOT_PRESENT"},
+    308: {
+        "description": "The subsystem needed to support the image type is not present",
+        "name": "ERROR_IMAGE_SUBSYSTEM_NOT_PRESENT",
+    },
     309: {
         "description": "The specified file already has a notification GUID associated with it",
         "name": "ERROR_NOTIFICATION_GUID_ALREADY_DEFINED",
@@ -283,11 +325,20 @@
         "name": "ERROR_MR_MID_NOT_FOUND",
     },
     318: {"description": "The scope specified was not found", "name": "ERROR_SCOPE_NOT_FOUND"},
-    319: {"description": "The Central Access Policy specified is not defined on the target machine", "name": "ERROR_UNDEFINED_SCOPE"},
+    319: {
+        "description": "The Central Access Policy specified is not defined on the target machine",
+        "name": "ERROR_UNDEFINED_SCOPE",
+    },
     320: {"description": "The Central Access Policy obtained from Active Directory is invalid", "name": "ERROR_INVALID_CAP"},
     321: {"description": "The device is unreachable", "name": "ERROR_DEVICE_UNREACHABLE"},
-    322: {"description": "The target device has insufficient resources to complete the operation", "name": "ERROR_DEVICE_NO_RESOURCES"},
-    323: {"description": "A data integrity checksum error occurred. Data in the file stream is corrupt", "name": "ERROR_DATA_CHECKSUM_ERROR"},
+    322: {
+        "description": "The target device has insufficient resources to complete the operation",
+        "name": "ERROR_DEVICE_NO_RESOURCES",
+    },
+    323: {
+        "description": "A data integrity checksum error occurred. Data in the file stream is corrupt",
+        "name": "ERROR_DATA_CHECKSUM_ERROR",
+    },
     324: {
         "description": "An attempt was made to modify both a KERNEL and normal Extended Attribute (EA) in the same operation",
         "name": "ERROR_INTERMIXED_KERNEL_EA_OPERATION",
@@ -297,7 +348,10 @@
         "description": "The command specified a data offset that does not align to the device's granularity/alignment",
         "name": "ERROR_OFFSET_ALIGNMENT_VIOLATION",
     },
-    328: {"description": "The command specified an invalid field in its parameter list", "name": "ERROR_INVALID_FIELD_IN_PARAMETER_LIST"},
+    328: {
+        "description": "The command specified an invalid field in its parameter list",
+        "name": "ERROR_INVALID_FIELD_IN_PARAMETER_LIST",
+    },
     329: {"description": "An operation is currently in progress with the device", "name": "ERROR_OPERATION_IN_PROGRESS"},
     330: {
         "description": "An attempt was made to send down the command via an invalid path to the target device",
@@ -330,6 +384,5 @@ def get_error_string(error_code):
     @return: error description if found.
     """
     if error_code in ERRORS:
-        return "%s (%s)" % (ERRORS[error_code]["description"], ERRORS[error_code]["name"])
-    else:
-        return str(error_code)
+        return f"{ERRORS[error_code]['description']} ({ERRORS[error_code]['name']})"
+    return str(error_code)
diff --git a/analyzer/windows/lib/common/hashing.py b/analyzer/windows/lib/common/hashing.py
index 491a09568e2..a781164230a 100644
--- a/analyzer/windows/lib/common/hashing.py
+++ b/analyzer/windows/lib/common/hashing.py
@@ -11,11 +11,10 @@ def hash_file(method, path):
     @param path: file path
     @return: computed hash string
     """
-    f = open(path, "rb")
     h = method()
-    while True:
+    with open(path, "rb") as f:
         buf = f.read(BUFSIZE)
-        if not buf:
-            break
-        h.update(buf)
+        while buf:
+            h.update(buf)
+            buf = f.read(BUFSIZE)
     return h.hexdigest()
diff --git a/analyzer/windows/lib/common/parse_pe.py b/analyzer/windows/lib/common/parse_pe.py
new file mode 100644
index 00000000000..b690bdf25aa
--- /dev/null
+++ b/analyzer/windows/lib/common/parse_pe.py
@@ -0,0 +1,106 @@
+import struct
+from contextlib import suppress
+
+try:
+    import pefile
+
+    HAVE_PEFILE = True
+except ImportError:
+    HAVE_PEFILE = False
+
+IMAGE_DOS_SIGNATURE = 0x5A4D
+IMAGE_NT_SIGNATURE = 0x00004550
+OPTIONAL_HEADER_MAGIC_PE = 0x10B
+OPTIONAL_HEADER_MAGIC_PE_PLUS = 0x20B
+IMAGE_FILE_EXECUTABLE_IMAGE = 0x0002
+IMAGE_FILE_MACHINE_I386 = 0x014C
+IMAGE_FILE_MACHINE_AMD64 = 0x8664
+DOS_HEADER_LIMIT = 0x40
+PE_HEADER_LIMIT = 0x200
+
+
+def is_pe_image(path) -> bool:
+    if not path:
+        return False
+
+    with open(path, "rb") as f:
+        buf = f.read(PE_HEADER_LIMIT)
+
+    if len(buf) < DOS_HEADER_LIMIT:
+        return False
+
+    dos_header = buf[:DOS_HEADER_LIMIT]
+    nt_headers = None
+    e_lfanew = False
+    if len(dos_header[:64]) == 64:
+        # Check for sane value in e_lfanew
+        e_lfanew = struct.unpack("<L", dos_header[60:64])[0]
+    if not e_lfanew or e_lfanew > PE_HEADER_LIMIT:
+        offset = 0
+        while offset < PE_HEADER_LIMIT - 86:
+            try:
+                machine_probe = struct.unpack("<H", buf[offset : offset + 2])[0]
+            except struct.error:
+                machine_probe = ""
+            if machine_probe and machine_probe in {IMAGE_FILE_MACHINE_I386, IMAGE_FILE_MACHINE_AMD64}:
+                nt_headers = buf[offset - 4 : offset + 252]
+                break
+            offset += 2
+    else:
+        nt_headers = buf[e_lfanew : e_lfanew + 256]
+    if not nt_headers:
+        return False
+
+    try:
+        if 0 in (
+            struct.unpack("<H", nt_headers[4:6])[0],
+            struct.unpack("<H", nt_headers[20:22])[0],
+            struct.unpack("<H", nt_headers[84:86])[0],
+        ):
+            return False
+        if struct.unpack("<H", nt_headers[22:24])[0] & IMAGE_FILE_EXECUTABLE_IMAGE == 0:
+            return False
+        if struct.unpack("<H", nt_headers[20:22])[0] & 3 != 0:
+            return False
+        if struct.unpack("<H", nt_headers[24:26])[0] not in {OPTIONAL_HEADER_MAGIC_PE, OPTIONAL_HEADER_MAGIC_PE_PLUS}:
+            return False
+    except struct.error:
+        return False
+
+    # After passing the above tests it should be safe to assume it's a PE image
+    return True
+
+
+def pe_trimmed_size(path) -> int:
+    if not HAVE_PEFILE:
+        return 0
+
+    with open(path, "rb") as f:
+        data = f.read(PE_HEADER_LIMIT * 2)
+
+    with suppress(Exception):
+        pe = pefile.PE(data=data, fast_load=False)
+        if pe.FILE_HEADER.NumberOfSections:
+            return (
+                pe.sections[pe.FILE_HEADER.NumberOfSections - 1].PointerToRawData
+                + pe.sections[pe.FILE_HEADER.NumberOfSections - 1].SizeOfRawData
+            )
+    return 0
+
+
+def choose_dll_export(path) -> str:
+    if not HAVE_PEFILE:
+        return ""
+
+    if not is_pe_image(path):
+        return ""
+
+    pe = pefile.PE(path)
+
+    if hasattr(pe, "DIRECTORY_ENTRY_EXPORT"):
+        for exp in pe.DIRECTORY_ENTRY_EXPORT.symbols:
+            with suppress(Exception):
+                if not exp.name:
+                    continue
+                if exp.name.decode() in ("DllInstall", "DllRegisterServer", "xlAutoOpen"):
+                    return exp.name.decode()
diff --git a/analyzer/windows/lib/common/rand.py b/analyzer/windows/lib/common/rand.py
index 6f6f37b81b4..c2a1fc099a6 100644
--- a/analyzer/windows/lib/common/rand.py
+++ b/analyzer/windows/lib/common/rand.py
@@ -1,4 +1,3 @@
-from __future__ import absolute_import
 import random
 import string
 
@@ -9,12 +8,12 @@ def random_string(minimum, maximum=None, charset=None):
 
     count = random.randint(minimum, maximum)
     if not charset:
-        return "".join(random.choice(string.ascii_letters) for x in range(count))
+        return "".join(random.choice(string.ascii_letters) for _ in range(count))
 
-    return "".join(random.choice(charset) for x in range(count))
+    return "".join(random.choice(charset) for _ in range(count))
 
 
 def random_integer(digits):
     start = 10 ** (digits - 1)
-    end = (10 ** digits) - 1
+    end = (10**digits) - 1
     return random.randint(start, end)
diff --git a/analyzer/windows/lib/common/registry.py b/analyzer/windows/lib/common/registry.py
new file mode 100644
index 00000000000..dc845f6fee2
--- /dev/null
+++ b/analyzer/windows/lib/common/registry.py
@@ -0,0 +1,144 @@
+# Copyright (C) 2010-2013 Claudio Guarnieri.
+# Copyright (C) 2014-2016 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+import logging
+import struct
+import winreg
+from ctypes import POINTER, byref, c_ushort, c_void_p, c_wchar_p, create_string_buffer, pointer, windll
+from ctypes.wintypes import DWORD, HANDLE, LONG, LPCWSTR, ULONG
+
+from lib.common.defines import UNICODE_STRING
+
+log = logging.getLogger(__name__)
+
+RegOpenKeyExW = windll.advapi32.RegOpenKeyExW
+RegOpenKeyExW.argtypes = HANDLE, LPCWSTR, DWORD, ULONG, POINTER(HANDLE)
+RegOpenKeyExW.restype = LONG
+
+RegCreateKeyExW = windll.advapi32.RegCreateKeyExW
+RegCreateKeyExW.argtypes = (
+    HANDLE,
+    LPCWSTR,
+    DWORD,
+    LPCWSTR,
+    DWORD,
+    DWORD,
+    DWORD,
+    POINTER(HANDLE),
+    POINTER(DWORD),
+)
+RegCreateKeyExW.restype = LONG
+
+RegQueryValueExW = windll.advapi32.RegQueryValueExW
+RegQueryValueExW.argtypes = HANDLE, LPCWSTR, POINTER(DWORD), POINTER(DWORD), c_void_p, POINTER(DWORD)
+RegQueryValueExW.restype = LONG
+
+RegSetValueExW = windll.advapi32.RegSetValueExW
+RegSetValueExW.argtypes = HANDLE, LPCWSTR, DWORD, DWORD, c_void_p, DWORD
+RegSetValueExW.restype = LONG
+
+RegDeleteKeyW = windll.advapi32.RegDeleteKeyW
+RegDeleteKeyW.argtypes = HANDLE, LPCWSTR
+RegDeleteKeyW.restype = LONG
+
+NtRenameKey = windll.ntdll.NtRenameKey
+NtRenameKey.argtypes = HANDLE, POINTER(UNICODE_STRING)
+
+RegCloseKey = windll.advapi32.RegCloseKey
+RegCloseKey.argtypes = (HANDLE,)
+
+_rootkeys = {
+    "HKEY_LOCAL_MACHINE": winreg.HKEY_LOCAL_MACHINE,
+    "HKEY_CURRENT_USER": winreg.HKEY_CURRENT_USER,
+}
+
+_regtypes = {
+    "REG_DWORD": winreg.REG_DWORD,
+    "REG_SZ": winreg.REG_SZ,
+    "REG_BINARY": winreg.REG_BINARY,
+}
+
+
+def rename_regkey(skey, ssubkey, dsubkey):
+    """Rename an entire tree of values in the registry.
+    Function by Thorsten Sick."""
+    res_handle = HANDLE()
+    options = DWORD(0)
+    res = RegOpenKeyExW(skey, ssubkey, options, winreg.KEY_ALL_ACCESS, byref(res_handle))
+    if not res:
+        bsize = c_ushort(len(dsubkey) * 2)
+        us = UNICODE_STRING()
+        us.Buffer = c_wchar_p(dsubkey)
+        us.Length = bsize
+        us.MaximumLength = bsize
+
+        res = NtRenameKey(res_handle, pointer(us))
+        if res:
+            log.warning("Error renaming %s\\%s to %s (0x%x)", skey, ssubkey, dsubkey, res % 2**32)
+
+    if res_handle:
+        RegCloseKey(res_handle)
+
+
+def regkey_exists(rootkey, subkey):
+    res_handle = HANDLE()
+    res = RegOpenKeyExW(rootkey, subkey, 0, winreg.KEY_QUERY_VALUE, byref(res_handle))
+    RegCloseKey(res_handle)
+    return not res
+
+
+def set_regkey(rootkey, subkey, name, type_, value):
+    if type_ == winreg.REG_SZ:
+        length = len(value) * 2 + 2
+    elif type_ == winreg.REG_MULTI_SZ:
+        value = "\u0000".join(value) + "\u0000\u0000"
+        length = len(value) * 2 + 2
+    elif type_ == winreg.REG_DWORD:
+        value = struct.pack("I", value)
+        length = 4
+    else:
+        length = len(value)
+
+    res_handle = HANDLE()
+    res = RegCreateKeyExW(rootkey, subkey, 0, None, 0, winreg.KEY_ALL_ACCESS, 0, byref(res_handle), None)
+    if not res:
+        RegSetValueExW(res_handle, name, 0, type_, value, length)
+        RegCloseKey(res_handle)
+
+
+def set_regkey_full(regkey, type_, value):
+    components = regkey.split("\\")
+    rootkey, subkey, name = components[0], components[1:-1], components[-1]
+    if rootkey not in _rootkeys:
+        log.warning("Unknown root key for registry key: %s", rootkey)
+        return
+
+    set_regkey(_rootkeys[rootkey], "\\".join(subkey), name, _regtypes.get(type_, type_), value)
+
+
+def del_regkey(rootkey, regkey):
+    RegDeleteKeyW(rootkey, regkey)
+
+
+def query_value(rootkey, subkey, name):
+    res_handle = HANDLE()
+    type_ = DWORD()
+    value = create_string_buffer(1024 * 1024)
+    length = DWORD(1024 * 1024)
+
+    res = RegOpenKeyExW(rootkey, subkey, 0, winreg.KEY_QUERY_VALUE, byref(res_handle))
+    if not res:
+        res = RegQueryValueExW(res_handle, name, None, byref(type_), value, byref(length))
+        RegCloseKey(res_handle)
+
+    if not res:
+        if type_.value == winreg.REG_SZ:
+            return value.raw[: length.value].decode("utf16").rstrip("\x00")
+        if type_.value == winreg.REG_MULTI_SZ:
+            value = value.raw[: length.value].decode("utf16")
+            return value.rstrip("\u0000").split("\u0000")
+        if type_.value == winreg.REG_DWORD:
+            return struct.unpack("I", value.raw[: length.value])[0]
+        return value.raw[: length.value]
diff --git a/analyzer/windows/lib/common/results.py b/analyzer/windows/lib/common/results.py
index 83762725776..b552bbe1c79 100644
--- a/analyzer/windows/lib/common/results.py
+++ b/analyzer/windows/lib/common/results.py
@@ -2,58 +2,100 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-import os
 import logging
+import os
 import socket
 import time
+from pathlib import Path
 
+from lib.common.parse_pe import is_pe_image, pe_trimmed_size
 from lib.core.config import Config
 
+config = Config(cfg="analysis.conf")
+
 log = logging.getLogger(__name__)
 
 BUFSIZE = 1024 * 1024
 
 
-def upload_to_host(file_path, dump_path, pids=[], metadata="", category="", duplicated=False):
-    nc = None
-    infd = None
-    we_open = False
+def get_upload_size(path):
+    size = Path(path).stat().st_size
+    if int(config.upload_max_size) < size and not config.do_upload_max_size:
+        if config.enable_trim and is_pe_image(path):
+            new_size = pe_trimmed_size(path)
+            if new_size:
+                size = new_size
+                if int(config.upload_max_size) < size and not config.do_upload_max_size:
+                    log.warning("PE File %s size is too big: %d, trim failed to bring size down", path, size)
+                    return
+            else:
+                log.warning("PE File %s size is too big: %d, trim failed - check pefile is installed in guest", path, size)
+                return
+        else:
+            log.warning("File %s size is too big: %d, ignoring", path, size)
+            return
+    return size
+
+
+def upload_to_host(file_path, dump_path, pids="", ppids="", metadata="", category="", duplicated=False):
     if not os.path.exists(file_path):
-        log.warning("File {} doesn't exist anymore".format(file_path))
+        log.warning("File %s doesn't exist anymore", file_path)
+        return
+
+    size = get_upload_size(file_path)
+    if not size:
         return
+
+    log.info("Uploading file %s to %s; Size is %d; Max size: %s", file_path, dump_path, size, config.upload_max_size)
     try:
-        nc = NetlogFile()
-        # nc = NetlogBinary(file_path.encode("utf-8", "replace"), dump_path, duplicate)
-        nc.init(dump_path, file_path, pids, metadata, category, duplicated)
-        if not duplicated:
-            if not infd and file_path:
-                infd = open(file_path, "rb")  # rb
-                we_open = True
-            buf = infd.read(BUFSIZE)
-            while buf:
-                nc.send(buf, retry=True)
-                buf = infd.read(BUFSIZE)
+        with NetlogFile() as nc:
+            nc.init(dump_path, file_path, pids, ppids, metadata, category, duplicated)
+            if not duplicated and file_path:
+                with open(file_path, "rb") as infd:
+                    buf = infd.read(BUFSIZE)
+                    while buf:
+                        read_size = len(buf)
+                        nc.send(buf[:size], retry=True)
+                        if read_size > size:
+                            break
+                        size -= read_size
+                        buf = infd.read(BUFSIZE)
     except Exception as e:
-        log.error("Exception uploading file {0} to host: {1}".format(file_path, e), exc_info=True)
-    finally:
-        if infd and we_open:
-            infd.close()
-        if nc:
-            nc.close()
+        log.exception("Exception uploading file %s to host: %s", file_path, e)
 
 
-class NetlogConnection(object):
+def upload_buffer_to_host(buffer, dump_path, filepath=False, pids="", ppids="", metadata="", category="", duplicated=False):
+    size = len(buffer)
+    log.info("Uploading buffer to %s; Size: %d", dump_path, size)
+    if int(config.upload_max_size) < size and not config.do_upload_max_size:
+        log.warning("Buffer is too big: %d; max size: %d", size, config.upload_max_size)
+        return
+    try:
+        with NetlogFile() as nc:
+            nc.init(dump_path, filepath, pids, ppids, metadata, category, duplicated)
+            if not duplicated:
+                idx = 0
+                while idx < size:
+                    nc.send(buffer[idx : idx + BUFSIZE], retry=True)
+                    idx += BUFSIZE
+    except Exception:
+        log.exception("Exception uploading buffer %s to host.", dump_path)
+
+
+class NetlogConnection:
     def __init__(self, proto=""):
-        config = Config(cfg="analysis.conf")
         self.hostip, self.hostport = config.ip, config.port
         self.sock = None
         self.proto = proto
-        self.connected = False
+
+    def __enter__(self):
+        return self
+
+    def __exit__(self, exc_type, exc_value, tb):
+        self.close()
 
     def connect(self):
-        # Try to connect as quickly as possible. Just sort of force it to
-        # connect with a short timeout.
+        # Try to connect as quickly as possible. Just sort of force it to connect with a short timeout.
         while not self.sock:
             try:
                 s = socket.create_connection((self.hostip, self.hostport), 0.1)
@@ -64,7 +106,6 @@ def connect(self):
             self.sock = s
             self.sock.settimeout(None)
             self.sock.sendall(self.proto)
-            self.connected = True
 
     def send(self, data, retry=True):
         if not self.sock:
@@ -77,53 +118,58 @@ def send(self, data, retry=True):
                 self.connect()
                 self.send(data, retry=False)
             else:
-                print(("Unhandled exception in NetlogConnection:", str(e)))
+                print(f"Unhandled exception in NetlogConnection: {e}")
         except Exception as e:
-            log.error(("Unhandled exception in NetlogConnection:", str(e)))
+            log.error("Unhandled exception in NetlogConnection: %s", e)
             # We really have nowhere to log this, if the netlog connection
             # does not work, we can assume that any logging won't work either.
             # So we just fail silently.
             self.close()
 
     def close(self):
+        if not self.sock:
+            return
+
         try:
             self.sock.shutdown(socket.SHUT_RDWR)
             self.sock.close()
             self.sock = None
         except Exception as e:
             print(e)
-            pass
 
 
 class NetlogBinary(NetlogConnection):
     def __init__(self, guest_path, uploaded_path, duplicated):
         if duplicated:
-            NetlogConnection.__init__(self, proto=b"DUPLICATEBINARY\n%s\n%s\n" % (uploaded_path.encode("utf-8", "replace"), guest_path))
+            NetlogConnection.__init__(
+                self, proto=b"DUPLICATEBINARY\n%s\n%s\n" % (uploaded_path.encode("utf-8", "replace"), guest_path)
+            )
         else:
             NetlogConnection.__init__(self, proto=b"BINARY\n%s\n%s\n" % (uploaded_path.encode("utf-8", "replace"), guest_path))
         self.connect()
 
 
 class NetlogFile(NetlogConnection):
-    def init(self, dump_path, filepath=False, pids="", metadata="", category="files", duplicated=0):
+    def init(self, dump_path, filepath=False, pids="", ppids="", metadata="", category="files", duplicated=0):
         """
-            All arguments should be strings
+        All arguments should be strings
         """
-        if pids:
+        if not isinstance(pids, str):
             pids = " ".join(pids)
-        else:
-            pids = ""
+        if not isinstance(ppids, str):
+            ppids = " ".join(ppids)
         if filepath:
-            self.proto = b"FILE 2\n%s\n%s\n%s\n%s\n%s\n%d\n" % (
-                dump_path.encode("utf8"),
+            self.proto = b"FILE 2\n%s\n%s\n%s\n%s\n%s\n%s\n%d\n" % (
+                dump_path.encode(),
                 filepath.encode("utf-8", "replace"),
-                pids.encode("utf8") if isinstance(pids, str) else pids,
-                metadata.encode("utf8") if isinstance(metadata, str) else metadata,
-                category.encode("utf8") if isinstance(category, str) else category,
+                pids.encode(),
+                ppids.encode(),
+                metadata.encode() if isinstance(metadata, str) else metadata,
+                category.encode() if isinstance(category, str) else category,
                 1 if duplicated else 0,
             )
         else:
-            self.proto = b"FILE\n%s\n" % dump_path.encode("utf8")
+            self.proto = b"FILE\n%s\n" % dump_path.encode()
         self.connect()
 
 
@@ -135,4 +181,4 @@ def __init__(self):
 
     def emit(self, record):
         msg = self.format(record)
-        self.send(msg.encode("utf-8") + b"\n")
+        self.send(msg.encode() + b"\n")
diff --git a/analyzer/windows/lib/common/zip_utils.py b/analyzer/windows/lib/common/zip_utils.py
new file mode 100644
index 00000000000..7ea21702a6a
--- /dev/null
+++ b/analyzer/windows/lib/common/zip_utils.py
@@ -0,0 +1,317 @@
+import hashlib
+import logging
+import os
+import re
+import shutil
+import subprocess
+from pathlib import Path
+from zipfile import BadZipfile, ZipFile
+
+from lib.common.constants import OPT_MULTI_PASSWORD
+from lib.common.exceptions import CuckooPackageError
+from lib.common.hashing import hash_file
+from lib.common.results import upload_to_host
+
+log = logging.getLogger(__name__)
+
+# FILE_NAME_REGEX = re.compile("[\s]{2}((?:[a-zA-Z0-9\.\-,_\\\\]+( [a-zA-Z0-9\.\-,_\\\\]+)?)+)\\r")
+FILE_NAME_REGEX = re.compile(r"\s{2}((?:[a-zA-Z0-9.\-,_\\]+(?: [a-zA-Z0-9.\-,_\\]+)?)*)\r")
+FILE_EXT_OF_INTEREST = [
+    ".bat",
+    ".cmd",
+    ".dat",
+    ".db",
+    ".dll",
+    ".doc",
+    ".exe",
+    ".html",
+    ".js",
+    ".jse",
+    ".lnk",
+    ".msi",
+    ".ps1",
+    ".scr",
+    ".temp",
+    ".tmp",
+    ".vbe",
+    ".vbs",
+    ".wsf",
+    ".xls",
+]
+
+
+def extract_archive(seven_zip_path, archive_path, extract_path, password="infected", try_multiple_passwords=False):
+    """Extracts a nested archive file.
+    @param seven_zip_path: path to 7z binary
+    @param archive_path: archive path
+    @param extract_path: where to extract
+    @param password: archive password
+    @param try_multiple_passwords: we will be splitting the password on the ':' symbol,
+        and trying each one to extract the archive
+    """
+    log.debug([seven_zip_path, "x", "-p", "-y", f"-o{extract_path}", archive_path])
+    p = subprocess.run(
+        [seven_zip_path, "x", "-p", "-y", f"-o{extract_path}", archive_path],
+        stdin=subprocess.DEVNULL,
+        stderr=subprocess.PIPE,
+        stdout=subprocess.PIPE,
+    )
+    stdoutput, stderr = p.stdout, p.stderr
+    log.debug("%s %s", p.stdout, p.stderr)
+
+    if try_multiple_passwords:
+        passwords = password.split(":")
+    else:
+        passwords = [password]
+
+    if b"Wrong password" in stderr:
+        if not Path(extract_path).match("local\\temp"):
+            shutil.rmtree(extract_path, ignore_errors=True)
+
+        # Default stderr, to be set at each iteration
+        stderr = b""
+
+        # Let's try every password in our password list until we get it right
+        for pword in passwords:
+            log.debug([seven_zip_path, "x", f"-p{pword}", "-y", f"-o{extract_path}", archive_path])
+            p = subprocess.run(
+                [seven_zip_path, "x", f"-p{pword}", "-y", f"-o{extract_path}", archive_path],
+                stdin=subprocess.DEVNULL,
+                stderr=subprocess.PIPE,
+                stdout=subprocess.PIPE,
+            )
+            stdoutput, stderr = p.stdout, p.stderr
+            log.debug("%s - %s", p.stdout, p.stderr)
+            if b"Wrong password" in stderr:
+                log.debug("The provided password '%s' was incorrect", str(pword))
+                continue
+            else:
+                # We did it!
+                break
+
+        # If we have run through the password list and are still receiving a "wrong password" message,
+        # we have failed to extract this archive
+        if b"Wrong password" in stderr:
+            raise Exception("Wrong password(s) provided")
+
+    elif b"Can not open the file as archive" in stdoutput:
+        raise TypeError("Unable to open the file as archive")
+
+
+def get_file_names(seven_zip_path, archive_path):
+    """Get the file names from archive file.
+    @param seven_zip_path: path to 7z binary
+    @param archive_path: archive file path
+    @return: A list of file names
+    """
+    log.debug([seven_zip_path, "l", archive_path])
+    p = subprocess.run(
+        [seven_zip_path, "l", archive_path], stdin=subprocess.DEVNULL, stderr=subprocess.PIPE, stdout=subprocess.PIPE
+    )
+    stdoutput = p.stdout.decode()
+    stdoutput_lines = stdoutput.split("\n")
+
+    in_table = False
+    items_under_header = False
+    file_names = []
+    for line in stdoutput_lines:
+        if in_table:
+            # This is a line in the table (header or footer separators)
+            if "-----" in line:
+                if items_under_header:
+                    items_under_header = False
+                else:
+                    items_under_header = True
+                continue
+
+            # These are the lines that we care about, since they contain the file names
+            if items_under_header:
+                # Find the end of the line (\r), note the carriage return since 7zip will run on Windows
+                file_name = re.search(FILE_NAME_REGEX, line)
+                if file_name:
+                    # The first capture group is the whole file name + returns
+                    # The second capture group is just the file name
+                    file_name = file_name.group(1)
+                    file_names.append(file_name)
+        else:
+            # Table Headers
+            if all(item.lower() in line.lower() for item in ("Date", "Time", "Attr", "Size", "Compressed", "Name")):
+                in_table = True
+
+    return file_names
+
+
+def extract_zip(zip_path, extract_path, password=b"infected", recursion_depth=1, try_multiple_passwords=False):
+    """Extracts a nested ZIP file.
+    @param zip_path: ZIP path
+    @param extract_path: where to extract
+    @param password: ZIP password
+    @param recursion_depth: how deep we are in a nested archive
+    @param try_multiple_passwords: we will be splitting the password on the ':' symbol,
+        and trying each one to extract the archive
+    """
+    # Test if zip file contains a file named as itself.
+    if is_overwritten(zip_path):
+        log.debug("ZIP file contains a file with the same name, original will be overwritten")
+        # TODO: add random string.
+        new_zip_path = f"{zip_path}.old"
+        shutil.move(zip_path, new_zip_path)
+        zip_path = new_zip_path
+
+    # requires bytes not str
+    if isinstance(password, str):
+        password = password.encode()
+
+    # Extraction.
+    with ZipFile(zip_path, "r") as archive:
+        # Check if the archive is encrypted
+        for zip_info in archive.infolist():
+            is_encrypted = zip_info.flag_bits & 0x1
+            # If encrypted and the user didn't provide a password
+            # set to default value
+            if is_encrypted and (password in (b"", b"infected")):
+                log.debug("Archive is encrypted, using default password value: infected")
+                if password == b"":
+                    password = b"infected"
+                    break
+            # Else, either password stays as user specified or archive is not encrypted
+
+        if try_multiple_passwords:
+            passwords = password.split(b":")
+        else:
+            passwords = [password]
+
+        # Let's try every password in our password list until we get it right
+        password_fail = False
+        for pword in passwords:
+            try:
+                archive.extractall(path=extract_path, pwd=pword)
+                password_fail = False
+                break
+            except BadZipfile as e:
+                raise CuckooPackageError("Invalid Zip file") from e
+            except RuntimeError as e:
+                if "Bad password for file" in repr(e):
+                    log.debug("Password '%s' was unsuccessful in extracting the archive.", str(pword))
+                    password_fail = True
+                    continue
+                else:
+                    # Try twice, just for kicks
+                    try:
+                        archive.extractall(path=extract_path, pwd=pword)
+                    except RuntimeError as e:
+                        raise CuckooPackageError("Unable to extract Zip file: %s", str(e)) from e
+            finally:
+                if recursion_depth < 4:
+                    # Extract nested archives.
+                    for name in archive.namelist():
+                        if name.endswith(".zip"):
+                            # Recurse.
+                            try:
+                                extract_zip(
+                                    os.path.join(extract_path, name),
+                                    extract_path,
+                                    # Note that the password list is passed on, not the current password in the iteration
+                                    password=password,
+                                    recursion_depth=recursion_depth + 1,
+                                    try_multiple_passwords=try_multiple_passwords,
+                                )
+                            except BadZipfile:
+                                log.warning(
+                                    "Nested file '%s' name ends with .zip extension is not a valid Zip. Skip extraction", name
+                                )
+                            except RuntimeError as run_err:
+                                log.error("Error extracting nested Zip file %s with details: %s", name, run_err)
+
+        if password_fail:
+            raise CuckooPackageError("Unable to extract password-protected Zip file with the password(s): %s", str(passwords))
+
+
+def is_overwritten(zip_path):
+    """Checks if the ZIP file contains another file with the same name, so it is going to be overwritten.
+    @param zip_path: zip file path
+    @return: comparison boolean
+    """
+    with ZipFile(zip_path, "r") as archive:
+        try:
+            # Test if zip file contains a file named as itself.
+            return any(name == os.path.basename(zip_path) for name in archive.namelist())
+        except BadZipfile as e:
+            raise CuckooPackageError("Invalid Zip file") from e
+
+
+def get_infos(zip_path):
+    """Get information from ZIP file.
+    @param zip_path: zip file path
+    @return: ZipInfo class
+    """
+    try:
+        with ZipFile(zip_path, "r") as archive:
+            return archive.infolist()
+    except BadZipfile as e:
+        raise CuckooPackageError("Invalid Zip file") from e
+
+
+def winrar_extractor(winrar_binary, extract_path, archive_path):
+    log.debug([winrar_binary, "x", archive_path, extract_path])
+    p = subprocess.run(
+        [winrar_binary, "x", archive_path, extract_path],
+        stdin=subprocess.DEVNULL,
+        stderr=subprocess.PIPE,
+        stdout=subprocess.PIPE,
+    )
+    # stdoutput, stderr = p.stdout, p.stderr
+    log.debug("%s - %s", p.stdout, p.stderr)
+
+    return os.listdir(extract_path)
+
+
+def get_interesting_files(file_names):
+    """
+    Using a regular expression that matches interesting file extensions, return interesting files
+    """
+    interesting_files = []
+
+    for f in file_names:
+        if any(f.lower().endswith(file_ext) for file_ext in FILE_EXT_OF_INTEREST):
+            interesting_files.append(f)
+
+    return interesting_files
+
+
+def upload_extracted_files(root, files_at_root):
+    """
+    Upload each file that was extracted, for further analysis
+    """
+    for entry in files_at_root:
+        try:
+            file_path = os.path.join(root, entry)
+            log.info("Uploading %s to host", str(file_path))
+            filename = f"files/{hash_file(hashlib.sha256, file_path)}"
+            upload_to_host(file_path, filename, metadata=Path(entry).name, duplicated=False)
+        except Exception as e:
+            log.warning("Couldn't upload file %s to host %s", str(Path(entry).name), str(e))
+
+
+def attempt_multiple_passwords(options: dict, password: str) -> bool:
+    """Does the user want us to try multiple passwords?"""
+    enable_multi_password = options.get(OPT_MULTI_PASSWORD, "")
+    if enable_multi_password.lower() in ("on", "yes", "true"):
+        # .get("password") defaults to infected but could return an empty string too so we need this check
+        # If user has requested we use multiple passwords, separated by colon
+        if password and ":" in password:
+            return True
+
+    return False
+
+
+def get_zip_file_names(zip_path):
+    """Get information from ZIP file.
+    @param zip_path: zip file path
+    @return: ZipInfo class
+    """
+    try:
+        with ZipFile(zip_path, "r") as archive:
+            return archive.namelist()
+    except BadZipfile as e:
+        raise CuckooPackageError("Invalid Zip file") from e
diff --git a/analyzer/windows/lib/core/compound.py b/analyzer/windows/lib/core/compound.py
new file mode 100644
index 00000000000..24cf935d345
--- /dev/null
+++ b/analyzer/windows/lib/core/compound.py
@@ -0,0 +1,41 @@
+# Copyright (C) 2021 CSIT
+# This file is part of CAPE Sandbox - http://www.capesandbox.com
+# See the file 'docs/LICENSE' for copying permission.
+
+import json
+import logging
+import os
+from json.decoder import JSONDecodeError
+
+from lib.common.exceptions import CuckooPackageError
+
+log = logging.getLogger(__name__)
+
+
+def extract_json_data(json_directory: str, json_filename: str):
+    """Extract data from json file
+    @param json_directory: The directory where the JSON file resides
+    @param json_filename: Name of the JSON file
+    @return: Entire JSON data, or {} if there is no JSON file
+    """
+    try:
+        json_path = os.path.join(json_directory, json_filename)
+        with open(json_path) as json_config_file:
+            return json.load(json_config_file)
+    except FileNotFoundError:
+        log.warning('JSON Config File "%s" not found inside ZIP Compound', json_filename)
+        return {}
+    except JSONDecodeError as e:
+        raise CuckooPackageError(f"JSON decode error. Please check format in `{json_filename}` file") from e
+
+
+def create_custom_folders(directory_path: str):
+    """Create custom folders (recursively) given the full path."""
+    if os.path.exists(directory_path):
+        log.info("%s already exists, skipping creation", directory_path)
+    else:
+        try:
+            os.makedirs(directory_path)
+            log.info("%s created", directory_path)
+        except OSError:
+            log.error("Unable to create user-defined custom folder directory")
diff --git a/analyzer/windows/lib/core/config.py b/analyzer/windows/lib/core/config.py
index 596dbc1e7ef..7bdd7c64cb6 100644
--- a/analyzer/windows/lib/core/config.py
+++ b/analyzer/windows/lib/core/config.py
@@ -2,21 +2,20 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 import configparser
 
 
 class Config:
     def __init__(self, cfg):
         """@param cfg: configuration file."""
-        config = configparser.ConfigParser(allow_no_value=True)
+        config = configparser.ConfigParser(allow_no_value=True, interpolation=None)
         config.read(cfg)
 
         for section in config.sections():
             for name, raw_value in config.items(section):
                 if name == "file_name":
                     value = config.get(section, name)
-                    if len(value) >= 2 and value[0] == "'" and value[-1] == "'":
+                    if len(value) >= 2 and value[0] == value[-1] == "'":
                         value = value[1:-1]
                 else:
                     try:
@@ -39,13 +38,13 @@ def get_options(self):
         # Here we parse such options and provide a dictionary that will be made
         # accessible to the analysis package.
         options = {}
-        if hasattr(self, "options") and isinstance(self.options, str):
+        if isinstance(getattr(self, "options", None), str):
             # Split the options by comma.
             fields = self.options.split(",")
             for field in fields:
                 try:
                     key, value = field.split("=", 1)
-                except ValueError as e:
+                except ValueError:
                     pass
                 else:
                     # If the parsing went good, we add the option to the
diff --git a/analyzer/windows/lib/core/log.py b/analyzer/windows/lib/core/log.py
index 425568d8db6..d9a5e653fa7 100644
--- a/analyzer/windows/lib/core/log.py
+++ b/analyzer/windows/lib/core/log.py
@@ -2,20 +2,26 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-import socket
 import logging
+import socket
 import traceback
-from ctypes import create_string_buffer, create_unicode_buffer
-from ctypes import byref, c_int, sizeof, addressof
+from ctypes import addressof, byref, c_int, create_string_buffer, sizeof
 from threading import Thread
 
-from lib.common.defines import ADVAPI32, KERNEL32
-from lib.common.defines import ERROR_MORE_DATA, ERROR_PIPE_CONNECTED
-from lib.common.defines import PIPE_ACCESS_INBOUND, PIPE_TYPE_MESSAGE
-from lib.common.defines import PIPE_READMODE_MESSAGE, PIPE_WAIT
-from lib.common.defines import PIPE_UNLIMITED_INSTANCES, INVALID_HANDLE_VALUE
-from lib.common.defines import SECURITY_DESCRIPTOR, SECURITY_ATTRIBUTES
+from lib.common.defines import (
+    ADVAPI32,
+    ERROR_MORE_DATA,
+    ERROR_PIPE_CONNECTED,
+    INVALID_HANDLE_VALUE,
+    KERNEL32,
+    PIPE_ACCESS_INBOUND,
+    PIPE_READMODE_MESSAGE,
+    PIPE_TYPE_MESSAGE,
+    PIPE_UNLIMITED_INSTANCES,
+    PIPE_WAIT,
+    SECURITY_ATTRIBUTES,
+    SECURITY_DESCRIPTOR,
+)
 
 log = logging.getLogger()
 
@@ -59,9 +65,9 @@ def handle_logs(self):
                 buf = create_string_buffer(LOGBUFSIZE)
                 success = KERNEL32.ReadFile(self.h_pipe, buf, sizeof(buf), byref(bytes_read), None)
                 try:
-                    data += buf.raw[:bytes_read.value]
+                    data += buf.raw[: bytes_read.value]
                 except MemoryError:
-                    log.error("MemoryError just happend")
+                    log.error("MemoryError just occurred")
                     break
                 if success or KERNEL32.GetLastError() != ERROR_MORE_DATA:
                     break
@@ -95,7 +101,7 @@ def run(self):
             return True
 
 
-class LogServer(object):
+class LogServer:
     def __init__(self, result_ip, result_port, logserver_path):
         # Create the Named Pipe.
         sd = SECURITY_DESCRIPTOR()
@@ -118,7 +124,7 @@ def __init__(self, result_ip, result_port, logserver_path):
         )
 
         if h_pipe == INVALID_HANDLE_VALUE:
-            log.warning("Unable to create log server pipe.")
+            log.warning("Unable to create log server pipe")
             return False
 
         logserver = LogServerThread(h_pipe, result_ip, result_port)
diff --git a/analyzer/windows/lib/core/packages.py b/analyzer/windows/lib/core/packages.py
index 0455743dfd3..2fbf6ac22e0 100644
--- a/analyzer/windows/lib/core/packages.py
+++ b/analyzer/windows/lib/core/packages.py
@@ -2,10 +2,7 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-import os
 import re
-from lib.common.decode_vbe_jse import DecodeVBEJSE
 
 
 def choose_package(file_type, file_name, exports, target):
@@ -25,6 +22,8 @@ def choose_package(file_type, file_name, exports, target):
     elif "DLL" in file_type:
         if file_name.endswith(".cpl"):
             return "cpl"
+        elif file_name.endswith(".xll"):
+            return "xls"
         else:
             if exports:
                 explist = exports.split(",")
@@ -33,59 +32,74 @@ def choose_package(file_type, file_name, exports, target):
             return "dll"
     elif "PE32" in file_type or "MS-DOS" in file_type:
         return "exe"
-    elif file_name.endswith((".msi",".msp",".appx")) or "MSI Installer" in file_type:
-        return "msi"    
-    elif "PDF" in file_type or file_name.endswith(".pdf"):
-        return "pdf"
+    elif file_name.endswith((".msi", ".msp", ".appx")) or "MSI Installer" in file_type:
+        return "msi"
     elif file_name.endswith(".pub"):
         return "pub"
+    elif file_name.endswith(".one"):
+        return "one"
     elif (
         "Rich Text Format" in file_type
         or "Microsoft Word" in file_type
         or "Microsoft Office Word" in file_type
         or "Microsoft OOXML" in file_type
         or "MIME entity" in file_type
-        or file_name.endswith((".doc", ".dot", ".docx", ".dotx", ".docm", ".dotm", ".docb", ".rtf", ".mht", ".mso"))
+        or file_name.endswith(
+            (".asd", ".doc", ".dot", ".docx", ".dotx", ".docm", ".dotm", ".docb", ".rtf", ".mht", ".mso", ".wbk", ".wiz")
+        )
     ):
         return "doc"
     elif (
         "Microsoft Office Excel" in file_type
         or "Microsoft Excel" in file_type
-        or file_name.endswith((".xls", ".xlt", ".xlm", ".xlsx", ".xltx", ".xlsm", ".xltm", ".xlsb", ".xla", ".xlam", ".xll", ".xlw", ".slk"))
+        or file_name.endswith(
+            (".xls", ".xlt", ".xlm", ".xlsx", ".xltx", ".xlsm", ".xltm", ".xlsb", ".xla", ".xlam", ".xll", ".xlw", ".slk", ".csv")
+        )
     ):
         return "xls"
     elif "PowerPoint" in file_type or file_name.endswith(
-        (".ppt", ".pot", ".pps", ".pptx", ".pptm", ".potx", ".potm", ".ppam", ".ppsx", ".ppsm", ".sldx", ".sldm")
+        (".ppt", ".ppa", ".pot", ".pps", ".pptx", ".pptm", ".potx", ".potm", ".ppam", ".ppsx", ".ppsm", ".sldx", ".sldm")
     ):
         return "ppt"
-    elif "Java Jar" in file_type or "Java archive" in file_type or file_name.endswith(".jar"):
+    elif b"MANIFEST" in file_content or "Java Jar" in file_type or "Java archive" in file_type or file_name.endswith(".jar"):
         return "jar"
     elif "Zip" in file_type:
         return "zip"
     elif "RAR archive" in file_type or file_name.endswith(".rar"):
         return "rar"
-    elif "Macromedia Flash" in file_type or file_name.endswith(".swf") or file_name.endswith(".fws"):
+    elif "Macromedia Flash" in file_type or file_name.endswith((".swf", ".fws")):
         return "swf"
-    elif file_name.endswith((".py", ".pyc")) or "Python script" in file_type:
+    elif file_name.endswith((".py", ".pyc")) or "Python script" in file_type or b"import" in file_content:
         return "python"
     elif file_name.endswith(".ps1"):
         return "ps1"
-    elif file_name.endswith(".msg"):
+    elif file_name.endswith((".msg", ".rpmsg")) or "rpmsg Restricted Permission Message" in file_type:
         return "msg"
-    elif file_name.endswith(".eml") or file_name.endswith(".ics") or "vCalendar calendar" in file_type:
+    elif file_name.endswith((".eml", ".ics")) or (
+        "RFC 822 mail" in file_type
+        or "old news" in file_type
+        or "mail forwarding" in file_type
+        or "smtp mail" in file_type
+        or "news" in file_type
+        or "news or mail" in file_type
+        or "saved news" in file_type
+        or "MIME entity" in file_type
+        or "vCalendar calendar" in file_type
+    ):
         return "eml"
-    elif file_name.endswith(".js") or file_name.endswith(".jse"):
+    elif file_name.endswith((".js", ".jse")):
         return "js"
-    elif file_name.endswith((".htm", ".html")):
-        return "html"
     elif file_name.endswith(".hta"):
         return "hta"
     elif file_name.endswith(".xps"):
         return "xps"
-    elif file_name.endswith(".wsf") or file_type == "XML document text":
-        return "wsf"
     elif "HTML" in file_type:
-        return "html"
+        if file_name.endswith(".wsf") or file_name.endswith(".wsc"):
+            return "wsf"
+        elif re.search(b'(?:<hta\\:application|<script\\s+language\\s*=\\s*"(J|VB|Perl)Script")', file_content, re.I):
+            return "html"
+        else:
+            return "chrome"
     elif file_name.endswith(".mht"):
         return "mht"
     elif file_name.endswith(".url") or "MS Windows 95 Internet shortcut" in file_type or "Windows URL shortcut" in file_type:
@@ -100,16 +114,40 @@ def choose_package(file_type, file_name, exports, target):
         return "hwp"
     elif file_name.endswith((".inp", ".int")) or b"InPage Arabic Document" in file_content:
         return "inp"
-    elif file_name.endswith(".vbs") or file_name.endswith(".vbe") or re.findall(br"\s?Dim\s", file_content, re.I):
-        return "vbs"
-    elif b"#@~^" in file_content[:100]:
-        data = DecodeVBEJSE(file_content, "")
-        if data:
-            if re.findall(br"\s?Dim\s", data, re.I):
-                return "vbs"
-            else:
-                return "js"
+    elif file_name.endswith((".xsl", ".xslt")) or "XSL stylesheet" in file_type:
+        return "xslt"
+    elif file_name.endswith(".sct"):
+        if re.search(rb"(?is)<\?XML.*?<scriptlet.*?<registration", file_content):
+            return "sct"
         else:
-            return "vbejse"
+            return "hta"
+    elif file_name.endswith(".wsf") or file_type == "XML document text":
+        return "wsf"
+    elif "PDF" in file_type or file_name.endswith(".pdf"):
+        return "pdf"
+    elif re.search(b'<script\\s+language="(J|VB|Perl)Script"', file_content, re.I):
+        return "wsf"
+    elif (
+        file_name.endswith((".vbs", ".vbe"))
+        or re.findall(rb"\s?Dim\s", file_content, re.I)
+        or re.findall(rb"\s?\x00D\x00i\x00m\x00\s", file_content, re.I)
+    ):
+        return "vbs"
+    elif b"Set-StrictMode" in file_content[:100]:
+        return "ps1"
+    elif file_name.endswith((".csproj", ".vbproj", ".vcxproj", ".dbproj", "fsproj")) or b"msbuild" in file_content:
+        return "msbuild"
+    elif file_name.endswith((".jtd", ".jtdc", ".jttc", ".jtt")):
+        return "ichitaro"
+    elif file_name.endswith(".reg"):
+        return "reg"
+    elif "ISO 9660" in file_type or file_name.endswith((".iso", ".udf", ".vhd")):
+        return "archive"
+    elif file_name.endswith(".a3x"):
+        return "autoit"
+    elif file_name.endswith(("cmd", "bat")) or b"@echo off" in file_content:
+        return "batch"
+    elif file_name.endswith(".rdp"):
+        return "rdp"
     else:
         return "generic"
diff --git a/analyzer/windows/lib/core/pipe.py b/analyzer/windows/lib/core/pipe.py
index 98c1e78c7ca..c5f399ae3e2 100644
--- a/analyzer/windows/lib/core/pipe.py
+++ b/analyzer/windows/lib/core/pipe.py
@@ -3,20 +3,33 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
+import errno
 import logging
 import socket
 import threading
-import errno
+from ctypes import addressof, byref, c_uint, create_string_buffer, sizeof
+
+from lib.common.defines import (
+    ADVAPI32,
+    ERROR_BROKEN_PIPE,
+    ERROR_MORE_DATA,
+    ERROR_PIPE_CONNECTED,
+    INVALID_HANDLE_VALUE,
+    KERNEL32,
+    PIPE_ACCESS_DUPLEX,
+    PIPE_ACCESS_INBOUND,
+    PIPE_READMODE_BYTE,
+    PIPE_READMODE_MESSAGE,
+    PIPE_TYPE_BYTE,
+    PIPE_TYPE_MESSAGE,
+    PIPE_UNLIMITED_INSTANCES,
+    PIPE_WAIT,
+    SECURITY_ATTRIBUTES,
+    SECURITY_DESCRIPTOR,
+)
+
+# from lib.common.defines import FILE_FLAG_WRITE_THROUGH
 
-from ctypes import create_string_buffer, c_uint, byref, sizeof, addressof
-
-from lib.common.defines import KERNEL32, PIPE_ACCESS_INBOUND, ERROR_MORE_DATA
-from lib.common.defines import PIPE_TYPE_BYTE, PIPE_WAIT, ERROR_PIPE_CONNECTED
-from lib.common.defines import PIPE_UNLIMITED_INSTANCES, INVALID_HANDLE_VALUE
-from lib.common.defines import FILE_FLAG_WRITE_THROUGH, PIPE_READMODE_BYTE
-from lib.common.defines import ERROR_BROKEN_PIPE, PIPE_TYPE_MESSAGE
-from lib.common.defines import PIPE_ACCESS_DUPLEX, PIPE_READMODE_MESSAGE
-from lib.common.defines import SECURITY_DESCRIPTOR, SECURITY_ATTRIBUTES, ADVAPI32
 log = logging.getLogger(__name__)
 
 BUFSIZE = 0x10000
@@ -48,12 +61,12 @@ def run(self):
         success = KERNEL32.ReadFile(self.pipe_handle, byref(pid), sizeof(pid), byref(bytes_read), None)
 
         if not success or bytes_read.value != sizeof(pid):
-            log.warning("Unable to read the process identifier of this log pipe instance.")
+            log.warning("Unable to read the process identifier of this log pipe instance")
             KERNEL32.CloseHandle(self.pipe_handle)
             return
 
         if self.active.get(pid.value):
-            log.warning("A second log pipe handler for an active process is " "being requested, denying request.")
+            log.warning("A second log pipe handler for an active process is being requested, denying request")
             KERNEL32.CloseHandle(self.pipe_handle)
             return
 
@@ -70,8 +83,7 @@ def run(self):
         open_handles.add(sock)
 
         while self.do_run:
-            success = KERNEL32.ReadFile(self.pipe_handle, byref(
-                buf), sizeof(buf), byref(bytes_read), None)
+            success = KERNEL32.ReadFile(self.pipe_handle, byref(buf), sizeof(buf), byref(bytes_read), None)
 
             if success or KERNEL32.GetLastError() == ERROR_MORE_DATA:
                 try:
@@ -89,8 +101,7 @@ def run(self):
             elif KERNEL32.GetLastError() == ERROR_BROKEN_PIPE:
                 break
             else:
-                log.warning(
-                    "The log pipe handler has failed, last error %d.", KERNEL32.GetLastError())
+                log.warning("The log pipe handler has failed, last error %d", KERNEL32.GetLastError())
                 break
 
         if pid.value:
@@ -141,7 +152,7 @@ def run(self):
 
             KERNEL32.WriteFile(self.pipe_handle, response, len(response), byref(bytes_written), None)
 
-        KERNEL32.CloseHandle(self.pipe_handle)
+        KERNEL32.DisconnectNamedPipe(self.pipe_handle)
 
     def stop(self):
         self.do_run = False
@@ -195,7 +206,7 @@ def run(self):
                 )
 
             if pipe_handle == INVALID_HANDLE_VALUE:
-                log.warning("Error opening logging pipe server.")
+                log.warning("Error opening logging pipe server")
                 continue
 
             if KERNEL32.ConnectNamedPipe(pipe_handle, None) or KERNEL32.GetLastError() == ERROR_PIPE_CONNECTED:
@@ -208,13 +219,12 @@ def run(self):
 
     def stop(self):
         self.do_run = False
-        for h in self.handlers:
+        for h in self.handlers.copy():
             try:
-                if h.isAlive():
+                if h.is_alive():
                     h.stop()
             except Exception as e:
-                log.error(e, exc_info=True)
-                pass
+                log.exception(e)
 
 
 def disconnect_pipes():
@@ -222,5 +232,5 @@ def disconnect_pipes():
         try:
             sock.shutdown(socket.SHUT_RDWR)
             sock.close()
-        except:
+        except Exception:
             log.exception("Could not close socket")
diff --git a/analyzer/windows/lib/core/privileges.py b/analyzer/windows/lib/core/privileges.py
index daf0b2fdb8e..0a240b364b1 100644
--- a/analyzer/windows/lib/core/privileges.py
+++ b/analyzer/windows/lib/core/privileges.py
@@ -2,12 +2,18 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-from ctypes import wintypes, POINTER
+from ctypes import POINTER, wintypes
 
-from lib.common.defines import ADVAPI32, KERNEL32, SE_PRIVILEGE_ENABLED
-from lib.common.defines import LUID, TOKEN_PRIVILEGES, PROCESS_ALL_ACCESS
-from lib.common.defines import TOKEN_ALL_ACCESS, LUID_AND_ATTRIBUTES
+from lib.common.defines import (
+    ADVAPI32,
+    KERNEL32,
+    LUID,
+    LUID_AND_ATTRIBUTES,
+    PROCESS_ALL_ACCESS,
+    SE_PRIVILEGE_ENABLED,
+    TOKEN_ALL_ACCESS,
+    TOKEN_PRIVILEGES,
+)
 
 
 def grant_debug_privilege(pid=None):
diff --git a/analyzer/windows/lib/core/startup.py b/analyzer/windows/lib/core/startup.py
index 4d79b2e5a59..0ddd8eef50d 100644
--- a/analyzer/windows/lib/core/startup.py
+++ b/analyzer/windows/lib/core/startup.py
@@ -2,15 +2,15 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-import os
+import contextlib
 import ctypes
 import logging
+import os
 from datetime import datetime
 
 from lib.common.constants import PATHS
-from lib.common.results import NetlogHandler
 from lib.common.defines import KERNEL32, SYSTEMTIME
+from lib.common.results import NetlogHandler
 
 log = logging.getLogger()
 
@@ -21,10 +21,8 @@ def create_folders():
         if os.path.exists(folder):
             continue
 
-        try:
+        with contextlib.suppress(OSError):
             os.makedirs(folder)
-        except OSError:
-            pass
 
 
 def init_logging():
@@ -50,7 +48,7 @@ def disconnect_logger():
 
 def set_clock(clock, timeout):
     # Output key info to analysis log
-    log.info("Date set to: {0}, timeout set to: {1}".format(clock, timeout))
+    log.info("Date set to: %s, timeout set to: %s", clock, timeout)
 
     clock = datetime.strptime(clock, "%Y%m%dT%H:%M:%S")
     st = SYSTEMTIME()
diff --git a/analyzer/windows/modules/auxiliary/amsi.py b/analyzer/windows/modules/auxiliary/amsi.py
new file mode 100644
index 00000000000..05750811be8
--- /dev/null
+++ b/analyzer/windows/modules/auxiliary/amsi.py
@@ -0,0 +1,1228 @@
+#!/usr/bin/env python
+
+# This has been adapted from https://github.com/fireeye/pywintrace, consolidated in to
+# 1 file, with unnecessary parts left out. Some changes have been made to limit the
+# amount of code needed at the expense of some flexibility that is unnecessary for
+# our purposes.
+
+########################################################################
+# Modifications Copyright 2024 Secureworks, Inc.
+#
+# Copyright 2017 FireEye Inc.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+########################################################################
+
+import ctypes as ct
+import ctypes.wintypes as wt
+import functools
+import json
+import logging
+import sys
+import threading
+import uuid
+
+logger = logging.getLogger(__name__)
+
+# common.py
+
+MAX_UINT = (2**32) - 1
+
+
+def convert_bool_str(input_string):
+    """
+    Helper to convert a string representation of a boolean to a real bool(tm).
+    """
+    if input_string.lower() in ("1", "true"):
+        return True
+    return False
+
+
+def rel_ptr_to_str(base, offset):
+    """
+    Helper function to convert a relative offset to a string to the actual string.
+    """
+    return ct.cast(rel_ptr_to_ptr(base, offset), ct.c_wchar_p).value
+
+
+def rel_ptr_to_ptr(base, offset):
+    """
+    Helper function to convert a relative offset to a void pointer.
+    """
+    return ct.cast((ct.cast(base, ct.c_voidp).value + offset), ct.c_voidp)
+
+
+class SYSTEMTIME(ct.Structure):
+    _fields_ = [
+        ("wYear", wt.WORD),
+        ("wMonth", wt.WORD),
+        ("wDayOfWeek", wt.WORD),
+        ("wDay", wt.WORD),
+        ("wHour", wt.WORD),
+        ("wMinute", wt.WORD),
+        ("wSecond", wt.WORD),
+        ("wMilliseconds", wt.WORD),
+    ]
+
+
+class TIME_ZONE_INFORMATION(ct.Structure):
+    _fields_ = [
+        ("Bias", ct.c_long),
+        ("StandardName", ct.c_wchar * 32),
+        ("StandardDate", SYSTEMTIME),
+        ("StandardBias", ct.c_long),
+        ("DaylightName", ct.c_wchar * 32),
+        ("DaylightDate", SYSTEMTIME),
+        ("DaylightBias", ct.c_long),
+    ]
+
+
+# in6addr.py
+
+
+class in6_addr(ct.Structure):
+    _fields_ = [("Byte", ct.c_byte * 16)]
+
+
+IN6_ADDR = in6_addr
+
+# GUID.py
+
+
+class GUID(ct.Structure):
+    _fields_ = [
+        ("Data1", ct.c_ulong),
+        ("Data2", ct.c_ushort),
+        ("Data3", ct.c_ushort),
+        ("Data4", ct.c_byte * 8),
+    ]
+
+    def __init__(self, name):
+        ct.oledll.ole32.CLSIDFromString(name, ct.byref(self))
+
+    def __str__(self):
+        p = ct.c_wchar_p()
+        ct.oledll.ole32.StringFromCLSID(ct.byref(self), ct.byref(p))
+        result = p.value
+        ct.windll.ole32.CoTaskMemFree(p)
+        return result
+
+
+# wmistr.py
+
+WNODE_FLAG_TRACED_GUID = 0x00020000
+
+
+class WNODE_HEADER(ct.Structure):
+    _fields_ = [
+        ("BufferSize", ct.c_ulong),
+        ("ProviderId", ct.c_ulong),
+        ("HistoricalContext", ct.c_uint64),
+        ("TimeStamp", wt.LARGE_INTEGER),
+        ("Guid", GUID),
+        ("ClientContext", ct.c_ulong),
+        ("Flags", ct.c_ulong),
+    ]
+
+
+# evntprov.py
+
+
+class EVENT_DESCRIPTOR(ct.Structure):
+    _fields_ = [
+        ("Id", ct.c_ushort),
+        ("Version", ct.c_ubyte),
+        ("Channel", ct.c_ubyte),
+        ("Level", ct.c_ubyte),
+        ("Opcode", ct.c_ubyte),
+        ("Task", ct.c_ushort),
+        ("Keyword", ct.c_ulonglong),
+    ]
+
+
+class EVENT_FILTER_DESCRIPTOR(ct.Structure):
+    _fields_ = [("Ptr", ct.c_ulonglong), ("Size", ct.c_ulong), ("Type", ct.c_ulong)]
+
+
+# evntcons.py
+
+EVENT_HEADER_FLAG_EXTENDED_INFO = 0x01
+EVENT_HEADER_FLAG_32_BIT_HEADER = 0x20
+PROCESS_TRACE_MODE_REAL_TIME = 0x00000100
+PROCESS_TRACE_MODE_EVENT_RECORD = 0x10000000
+
+
+class ETW_BUFFER_CONTEXT(ct.Structure):
+    _fields_ = [
+        ("ProcessorNumber", ct.c_ubyte),
+        ("Alignment", ct.c_ubyte),
+        ("LoggerId", ct.c_ushort),
+    ]
+
+
+class EVENT_HEADER(ct.Structure):
+    _fields_ = [
+        ("Size", ct.c_ushort),
+        ("HeaderType", ct.c_ushort),
+        ("Flags", ct.c_ushort),
+        ("EventProperty", ct.c_ushort),
+        ("ThreadId", ct.c_ulong),
+        ("ProcessId", ct.c_ulong),
+        ("TimeStamp", wt.LARGE_INTEGER),
+        ("ProviderId", GUID),
+        ("EventDescriptor", EVENT_DESCRIPTOR),
+        ("KernelTime", ct.c_ulong),
+        ("UserTime", ct.c_ulong),
+        ("ActivityId", GUID),
+    ]
+
+
+class EVENT_HEADER_EXTENDED_DATA_ITEM(ct.Structure):
+    _fields_ = [
+        ("Reserved1", ct.c_ushort),
+        ("ExtType", ct.c_ushort),
+        ("Linkage", ct.c_ushort),  # struct{USHORT :1, USHORT :15}
+        ("DataSize", ct.c_ushort),
+        ("DataPtr", ct.c_ulonglong),
+    ]
+
+
+class EVENT_RECORD(ct.Structure):
+    _fields_ = [
+        ("EventHeader", EVENT_HEADER),
+        ("BufferContext", ETW_BUFFER_CONTEXT),
+        ("ExtendedDataCount", ct.c_ushort),
+        ("UserDataLength", ct.c_ushort),
+        ("ExtendedData", ct.POINTER(EVENT_HEADER_EXTENDED_DATA_ITEM)),
+        ("UserData", ct.c_void_p),
+        ("UserContext", ct.c_void_p),
+    ]
+
+
+# evntrace.py
+
+EVENT_CONTROL_CODE_DISABLE_PROVIDER = 0
+EVENT_CONTROL_CODE_ENABLE_PROVIDER = 1
+EVENT_TRACE_CONTROL_STOP = 1
+EVENT_TRACE_REAL_TIME_MODE = 0x00000100  # Real time mode on
+TRACEHANDLE = ct.c_ulonglong
+INVALID_PROCESSTRACE_HANDLE = TRACEHANDLE(-1)
+TRACE_LEVEL_INFORMATION = 4
+
+
+class ENABLE_TRACE_PARAMETERS(ct.Structure):
+    _fields_ = [
+        ("Version", ct.c_ulong),
+        ("EnableProperty", ct.c_ulong),
+        ("ControlFlags", ct.c_ulong),
+        ("SourceId", GUID),
+        ("EnableFilterDesc", ct.POINTER(EVENT_FILTER_DESCRIPTOR)),
+        ("FilterDescCount", ct.c_ulong),
+    ]
+
+
+class EVENT_TRACE_HEADER_CLASS(ct.Structure):
+    _fields_ = [("Type", ct.c_ubyte), ("Level", ct.c_ubyte), ("Version", ct.c_uint16)]
+
+
+class EVENT_TRACE_HEADER(ct.Structure):
+    _fields_ = [
+        ("Size", ct.c_ushort),
+        ("HeaderType", ct.c_ubyte),
+        ("MarkerFlags", ct.c_ubyte),
+        ("Class", EVENT_TRACE_HEADER_CLASS),
+        ("ThreadId", ct.c_ulong),
+        ("ProcessId", ct.c_ulong),
+        ("TimeStamp", wt.LARGE_INTEGER),
+        ("Guid", GUID),
+        ("ClientContext", ct.c_ulong),
+        ("Flags", ct.c_ulong),
+    ]
+
+
+class EVENT_TRACE(ct.Structure):
+    _fields_ = [
+        ("Header", EVENT_TRACE_HEADER),
+        ("InstanceId", ct.c_ulong),
+        ("ParentInstanceId", ct.c_ulong),
+        ("ParentGuid", GUID),
+        ("MofData", ct.c_void_p),
+        ("MofLength", ct.c_ulong),
+        ("ClientContext", ct.c_ulong),
+    ]
+
+
+class TRACE_LOGFILE_HEADER(ct.Structure):
+    _fields_ = [
+        ("BufferSize", ct.c_ulong),
+        ("MajorVersion", ct.c_byte),
+        ("MinorVersion", ct.c_byte),
+        ("SubVersion", ct.c_byte),
+        ("SubMinorVersion", ct.c_byte),
+        ("ProviderVersion", ct.c_ulong),
+        ("NumberOfProcessors", ct.c_ulong),
+        ("EndTime", wt.LARGE_INTEGER),
+        ("TimerResolution", ct.c_ulong),
+        ("MaximumFileSize", ct.c_ulong),
+        ("LogFileMode", ct.c_ulong),
+        ("BuffersWritten", ct.c_ulong),
+        ("StartBuffers", ct.c_ulong),
+        ("PointerSize", ct.c_ulong),
+        ("EventsLost", ct.c_ulong),
+        ("CpuSpeedInMHz", ct.c_ulong),
+        ("LoggerName", ct.c_wchar_p),
+        ("LogFileName", ct.c_wchar_p),
+        ("TimeZone", TIME_ZONE_INFORMATION),
+        ("BootTime", wt.LARGE_INTEGER),
+        ("PerfFreq", wt.LARGE_INTEGER),
+        ("StartTime", wt.LARGE_INTEGER),
+        ("ReservedFlags", ct.c_ulong),
+        ("BuffersLost", ct.c_ulong),
+    ]
+
+
+# This must be "forward declared", because of the callback type below,
+# which is contained in the ct.Structure.
+class EVENT_TRACE_LOGFILE(ct.Structure):
+    pass
+
+
+# The type for event trace callbacks.
+EVENT_RECORD_CALLBACK = ct.WINFUNCTYPE(None, ct.POINTER(EVENT_RECORD))
+EVENT_TRACE_BUFFER_CALLBACK = ct.WINFUNCTYPE(ct.c_ulong, ct.POINTER(EVENT_TRACE_LOGFILE))
+
+EVENT_TRACE_LOGFILE._fields_ = [
+    ("LogFileName", ct.c_wchar_p),
+    ("LoggerName", ct.c_wchar_p),
+    ("CurrentTime", ct.c_longlong),
+    ("BuffersRead", ct.c_ulong),
+    ("ProcessTraceMode", ct.c_ulong),
+    ("CurrentEvent", EVENT_TRACE),
+    ("LogfileHeader", TRACE_LOGFILE_HEADER),
+    ("BufferCallback", EVENT_TRACE_BUFFER_CALLBACK),
+    ("BufferSize", ct.c_ulong),
+    ("Filled", ct.c_ulong),
+    ("EventsLost", ct.c_ulong),
+    ("EventRecordCallback", EVENT_RECORD_CALLBACK),
+    ("IsKernelTrace", ct.c_ulong),
+    ("Context", ct.c_void_p),
+]
+
+
+class EVENT_TRACE_PROPERTIES(ct.Structure):
+    _fields_ = [
+        ("Wnode", WNODE_HEADER),
+        ("BufferSize", ct.c_ulong),
+        ("MinimumBuffers", ct.c_ulong),
+        ("MaximumBuffers", ct.c_ulong),
+        ("MaximumFileSize", ct.c_ulong),
+        ("LogFileMode", ct.c_ulong),
+        ("FlushTimer", ct.c_ulong),
+        ("EnableFlags", ct.c_ulong),
+        ("AgeLimit", ct.c_ulong),
+        ("NumberOfBuffers", ct.c_ulong),
+        ("FreeBuffers", ct.c_ulong),
+        ("EventsLost", ct.c_ulong),
+        ("BuffersWritten", ct.c_ulong),
+        ("LogBuffersLost", ct.c_ulong),
+        ("RealTimeBuffersLost", ct.c_ulong),
+        ("LoggerThreadId", wt.HANDLE),
+        ("LogFileNameOffset", ct.c_ulong),
+        ("LoggerNameOffset", ct.c_ulong),
+    ]
+
+
+StartTraceW = ct.windll.advapi32.StartTraceW
+StartTraceW.argtypes = [
+    ct.POINTER(TRACEHANDLE),
+    ct.c_wchar_p,
+    ct.POINTER(EVENT_TRACE_PROPERTIES),
+]
+StartTraceW.restype = ct.c_ulong
+
+EnableTraceEx2 = ct.windll.advapi32.EnableTraceEx2
+EnableTraceEx2.argtypes = [
+    TRACEHANDLE,
+    ct.POINTER(GUID),
+    ct.c_ulong,
+    ct.c_char,
+    ct.c_ulonglong,
+    ct.c_ulonglong,
+    ct.c_ulong,
+    ct.POINTER(ENABLE_TRACE_PARAMETERS),
+]
+EnableTraceEx2.restype = ct.c_ulong
+
+OpenTraceW = ct.windll.advapi32.OpenTraceW
+OpenTraceW.argtypes = [ct.POINTER(EVENT_TRACE_LOGFILE)]
+OpenTraceW.restype = TRACEHANDLE
+
+ControlTraceW = ct.windll.advapi32.ControlTraceW
+ControlTraceW.argtypes = [
+    TRACEHANDLE,
+    ct.c_wchar_p,
+    ct.POINTER(EVENT_TRACE_PROPERTIES),
+    ct.c_ulong,
+]
+ControlTraceW.restype = ct.c_ulong
+
+ProcessTrace = ct.windll.advapi32.ProcessTrace
+ProcessTrace.argtypes = [
+    ct.POINTER(TRACEHANDLE),
+    ct.c_ulong,
+    ct.POINTER(wt.FILETIME),
+    ct.POINTER(wt.FILETIME),
+]
+ProcessTrace.restype = ct.c_ulong
+
+CloseTrace = ct.windll.advapi32.CloseTrace
+CloseTrace.argtypes = [TRACEHANDLE]
+CloseTrace.restype = ct.c_ulong
+
+# tdh.py
+
+DECODING_SOURCE = ct.c_uint
+ERROR_SUCCESS = 0x0
+ERROR_ALREADY_EXISTS = 0xB7
+ERROR_INSUFFICIENT_BUFFER = 0x7A
+ERROR_NOT_FOUND = 0x490
+MAP_FLAGS = ct.c_uint
+PROPERTY_FLAGS = ct.c_uint
+TDH_CONTEXT_TYPE = ct.c_uint
+
+TDH_INTYPE_NULL = 0
+TDH_INTYPE_UNICODESTRING = 1
+TDH_INTYPE_ANSISTRING = 2
+TDH_INTYPE_INT8 = 3
+TDH_INTYPE_UINT8 = 4
+TDH_INTYPE_INT16 = 5
+TDH_INTYPE_UINT16 = 6
+TDH_INTYPE_INT32 = 7
+TDH_INTYPE_UINT32 = 8
+TDH_INTYPE_INT64 = 9
+TDH_INTYPE_UINT64 = 10
+TDH_INTYPE_FLOAT = 11
+TDH_INTYPE_DOUBLE = 12
+TDH_INTYPE_BOOLEAN = 13
+TDH_INTYPE_BINARY = 14
+TDH_INTYPE_GUID = 15
+TDH_INTYPE_POINTER = 16
+TDH_INTYPE_FILETIME = 17
+TDH_INTYPE_SYSTEMTIME = 18
+TDH_INTYPE_SID = 19
+TDH_INTYPE_HEXINT32 = 20
+TDH_INTYPE_HEXINT64 = 21
+TDH_INTYPE_COUNTEDSTRING = 300
+TDH_INTYPE_COUNTEDANSISTRING = 301
+TDH_INTYPE_REVERSEDCOUNTEDSTRING = 302
+TDH_INTYPE_REVERSEDCOUNTEDANSISTRING = 303
+TDH_INTYPE_NONNULLTERMINATEDSTRING = 304
+TDH_INTYPE_NONNULLTERMINATEDANSISTRING = 305
+TDH_INTYPE_UNICODECHAR = 306
+TDH_INTYPE_ANSICHAR = 307
+TDH_INTYPE_SIZET = 308
+TDH_INTYPE_HEXDUMP = 309
+TDH_INTYPE_WBEMSID = 310
+
+TDH_OUTTYPE_NULL = 0
+TDH_OUTTYPE_STRING = 1
+TDH_OUTTYPE_DATETIME = 2
+TDH_OUTTYPE_BYTE = 3
+TDH_OUTTYPE_UNSIGNEDBYTE = 4
+TDH_OUTTYPE_SHORT = 5
+TDH_OUTTYPE_UNSIGNEDSHORT = 6
+TDH_OUTTYPE_INT = 7
+TDH_OUTTYPE_UNSIGNEDINT = 8
+TDH_OUTTYPE_LONG = 9
+TDH_OUTTYPE_UNSIGNEDLONG = 10
+TDH_OUTTYPE_FLOAT = 11
+TDH_OUTTYPE_DOUBLE = 12
+TDH_OUTTYPE_BOOLEAN = 13
+TDH_OUTTYPE_GUID = 14
+TDH_OUTTYPE_HEXBINARY = 15
+TDH_OUTTYPE_HEXINT8 = 16
+TDH_OUTTYPE_HEXINT16 = 17
+TDH_OUTTYPE_HEXINT32 = 18
+TDH_OUTTYPE_HEXINT64 = 19
+TDH_OUTTYPE_PID = 20
+TDH_OUTTYPE_TID = 21
+TDH_OUTTYPE_PORT = 22
+TDH_OUTTYPE_IPV4 = 23
+TDH_OUTTYPE_IPV6 = 24
+TDH_OUTTYPE_SOCKETADDRESS = 25
+TDH_OUTTYPE_CIMDATETIME = 26
+TDH_OUTTYPE_ETWTIME = 27
+TDH_OUTTYPE_XML = 28
+TDH_OUTTYPE_ERRORCODE = 29
+TDH_OUTTYPE_WIN32ERROR = 30
+TDH_OUTTYPE_NTSTATUS = 31
+TDH_OUTTYPE_HRESULT = 32
+TDH_OUTTYPE_CULTURE_INSENSITIVE_DATETIME = 33
+TDH_OUTTYPE_JSON = 34
+TDH_OUTTYPE_REDUCEDSTRING = 300
+TDH_OUTTYPE_NOPRIN = 301
+
+PropertyStruct = 0x1
+PropertyParamLength = 0x2
+
+TDH_CONVERTER_LOOKUP = {
+    TDH_OUTTYPE_UNSIGNEDBYTE: int,
+    TDH_OUTTYPE_INT: int,
+    TDH_OUTTYPE_UNSIGNEDINT: int,
+    TDH_OUTTYPE_LONG: int,
+    TDH_OUTTYPE_UNSIGNEDLONG: int,
+    TDH_OUTTYPE_FLOAT: float,
+    TDH_OUTTYPE_DOUBLE: float,
+    TDH_OUTTYPE_BOOLEAN: convert_bool_str,
+}
+
+
+class EVENT_MAP_ENTRY(ct.Structure):
+    _fields_ = [("OutputOffset", ct.c_ulong), ("InputOffset", ct.c_ulong)]
+
+
+class EVENT_MAP_INFO(ct.Structure):
+    _fields_ = [
+        ("NameOffset", ct.c_ulong),
+        ("Flag", MAP_FLAGS),
+        ("EntryCount", ct.c_ulong),
+        ("FormatStringOffset", ct.c_ulong),
+        ("MapEntryArray", EVENT_MAP_ENTRY * 0),
+    ]
+
+
+class PROPERTY_DATA_DESCRIPTOR(ct.Structure):
+    _fields_ = [
+        ("PropertyName", ct.c_ulonglong),
+        ("ArrayIndex", ct.c_ulong),
+        ("Reserved", ct.c_ulong),
+    ]
+
+
+class nonStructType(ct.Structure):
+    _fields_ = [
+        ("InType", ct.c_ushort),
+        ("OutType", ct.c_ushort),
+        ("MapNameOffset", ct.c_ulong),
+    ]
+
+
+class structType(ct.Structure):
+    _fields_ = [
+        ("StructStartIndex", wt.USHORT),
+        ("NumOfStructMembers", wt.USHORT),
+        ("padding", wt.ULONG),
+    ]
+
+
+class epi_u1(ct.Union):
+    _fields_ = [("nonStructType", nonStructType), ("structType", structType)]
+
+
+class epi_u2(ct.Union):
+    _fields_ = [("count", wt.USHORT), ("countPropertyIndex", wt.USHORT)]
+
+
+class epi_u3(ct.Union):
+    _fields_ = [("length", wt.USHORT), ("lengthPropertyIndex", wt.USHORT)]
+
+
+class epi_u4(ct.Union):
+    _fields_ = [("Reserved", wt.ULONG), ("Tags", wt.ULONG)]
+
+
+class EVENT_PROPERTY_INFO(ct.Structure):
+    _fields_ = [
+        ("Flags", PROPERTY_FLAGS),
+        ("NameOffset", ct.c_ulong),
+        ("epi_u1", epi_u1),
+        ("epi_u2", epi_u2),
+        ("epi_u3", epi_u3),
+        ("epi_u4", epi_u4),
+    ]
+
+
+class TDH_CONTEXT(ct.Structure):
+    _fields_ = [
+        ("ParameterValue", ct.c_ulonglong),
+        ("ParameterType", TDH_CONTEXT_TYPE),
+        ("ParameterSize", ct.c_ulong),
+    ]
+
+
+class TRACE_EVENT_INFO(ct.Structure):
+    _fields_ = [
+        ("ProviderGuid", GUID),
+        ("EventGuid", GUID),
+        ("EventDescriptor", EVENT_DESCRIPTOR),
+        ("DecodingSource", DECODING_SOURCE),
+        ("ProviderNameOffset", ct.c_ulong),
+        ("LevelNameOffset", ct.c_ulong),
+        ("ChannelNameOffset", ct.c_ulong),
+        ("KeywordsNameOffset", ct.c_ulong),
+        ("TaskNameOffset", ct.c_ulong),
+        ("OpcodeNameOffset", ct.c_ulong),
+        ("EventMessageOffset", ct.c_ulong),
+        ("ProviderMessageOffset", ct.c_ulong),
+        ("BinaryXMLOffset", ct.c_ulong),
+        ("BinaryXMLSize", ct.c_ulong),
+        ("ActivityIDNameOffset", ct.c_ulong),
+        ("RelatedActivityIDNameOffset", ct.c_ulong),
+        ("PropertyCount", ct.c_ulong),
+        ("TopLevelPropertyCount", ct.c_ulong),
+        ("Flags", ct.c_ulong),
+        ("EventPropertyInfoArray", EVENT_PROPERTY_INFO * 0),
+    ]
+
+
+TdhFormatProperty = ct.windll.Tdh.TdhFormatProperty
+TdhFormatProperty.argtypes = [
+    ct.POINTER(TRACE_EVENT_INFO),
+    ct.POINTER(EVENT_MAP_INFO),
+    ct.c_ulong,
+    ct.c_ushort,
+    ct.c_ushort,
+    ct.c_ushort,
+    ct.c_ushort,
+    ct.POINTER(ct.c_byte),
+    ct.POINTER(ct.c_ulong),
+    ct.c_wchar_p,
+    ct.POINTER(ct.c_ushort),
+]
+TdhFormatProperty.restype = ct.c_ulong
+
+TdhGetEventInformation = ct.windll.Tdh.TdhGetEventInformation
+TdhGetEventInformation.argtypes = [
+    ct.POINTER(EVENT_RECORD),
+    ct.c_ulong,
+    ct.POINTER(TDH_CONTEXT),
+    ct.POINTER(TRACE_EVENT_INFO),
+    ct.POINTER(ct.c_ulong),
+]
+TdhGetEventInformation.restype = ct.c_ulong
+
+TdhGetEventMapInformation = ct.windll.Tdh.TdhGetEventMapInformation
+TdhGetEventMapInformation.argtypes = [
+    ct.POINTER(EVENT_RECORD),
+    wt.LPWSTR,
+    ct.POINTER(EVENT_MAP_INFO),
+    ct.POINTER(ct.c_ulong),
+]
+TdhGetEventMapInformation.restype = ct.c_ulong
+
+TdhGetPropertySize = ct.windll.Tdh.TdhGetPropertySize
+TdhGetPropertySize.argtypes = [
+    ct.POINTER(EVENT_RECORD),
+    ct.c_ulong,
+    ct.POINTER(TDH_CONTEXT),
+    ct.c_ulong,
+    ct.POINTER(PROPERTY_DATA_DESCRIPTOR),
+    ct.POINTER(ct.c_ulong),
+]
+TdhGetPropertySize.restype = ct.c_ulong
+
+TdhGetProperty = ct.windll.Tdh.TdhGetProperty
+TdhGetProperty.argtypes = [
+    ct.POINTER(EVENT_RECORD),
+    ct.c_ulong,
+    ct.POINTER(TDH_CONTEXT),
+    ct.c_ulong,
+    ct.POINTER(PROPERTY_DATA_DESCRIPTOR),
+    ct.c_ulong,
+    ct.POINTER(ct.c_byte),
+]
+TdhGetProperty.restype = ct.c_ulong
+
+# etw.py
+
+
+class ProviderInfo:
+    def __init__(self, name, guid):
+        self.name = name
+        self.guid = guid
+        self.level = TRACE_LEVEL_INFORMATION
+        self.any_bitmask = 0
+        self.all_bitmask = 0
+
+
+class EventProvider:
+    def __init__(self, session_name, session_properties, providers):
+        self.session_name = session_name
+        self.session_properties = session_properties
+        self.providers = providers
+        self.session_handle = TRACEHANDLE()
+
+    def start(self):
+        status = StartTraceW(
+            ct.byref(self.session_handle),
+            self.session_name,
+            self.session_properties.get(),
+        )
+        if status != ERROR_SUCCESS:
+            raise ct.WinError(status)
+
+        for provider in self.providers:
+            status = EnableTraceEx2(
+                self.session_handle,
+                ct.byref(provider.guid),
+                EVENT_CONTROL_CODE_ENABLE_PROVIDER,
+                provider.level,
+                provider.any_bitmask,
+                provider.all_bitmask,
+                0,
+                None,
+            )
+            if status != ERROR_SUCCESS:
+                raise ct.WinError(status)
+
+    def stop(self):
+        """
+        Wraps the necessary processes needed for stopping an ETW provider session.
+
+        :return: Does not return anything
+        """
+        # don't stop if we don't have a handle, or it's the kernel trace and we started it ourself
+        if self.session_handle.value == 0:
+            return
+
+        for provider in self.providers:
+            status = EnableTraceEx2(
+                self.session_handle,
+                ct.byref(provider.guid),
+                EVENT_CONTROL_CODE_DISABLE_PROVIDER,
+                provider.level,
+                provider.any_bitmask,
+                provider.all_bitmask,
+                0,
+                None,
+            )
+            if status != ERROR_SUCCESS:
+                raise ct.WinError(status)
+
+        status = ControlTraceW(
+            self.session_handle,
+            self.session_name,
+            self.session_properties.get(),
+            EVENT_TRACE_CONTROL_STOP,
+        )
+        if status != ERROR_SUCCESS:
+            raise ct.WinError(status)
+
+        CloseTrace(self.session_handle)
+
+
+class EventConsumer:
+    """
+    Wraps all interactions with Event Tracing for Windows (ETW) event consumers. This includes
+    starting and stopping the consumer. Additionally, each consumer begins processing events in
+    a separate thread and uses a callback to process any events it receives in this thread -- those
+    methods are implemented here as well.
+
+    N.B. If using this class, do not call start() and stop() directly. Only use through via ctxmgr
+    """
+
+    def __init__(self, logger_name, event_callback=None):
+        self.trace_handle = None
+        self.process_thread = None
+        self.logger_name = logger_name
+        self.end_capture = threading.Event()
+        self.event_callback = event_callback
+        self.vfield_length = None
+        self.index = 0
+
+        self.trace_logfile = EVENT_TRACE_LOGFILE()
+        self.trace_logfile.ProcessTraceMode = PROCESS_TRACE_MODE_REAL_TIME | PROCESS_TRACE_MODE_EVENT_RECORD
+        self.trace_logfile.LoggerName = logger_name
+        self.trace_logfile.EventRecordCallback = EVENT_RECORD_CALLBACK(self._processEvent)
+
+    def start(self):
+        """
+        Starts a trace consumer.
+
+        :return: Returns True on Success or False on Failure
+        """
+        self.trace_handle = OpenTraceW(ct.byref(self.trace_logfile))
+        if self.trace_handle == INVALID_PROCESSTRACE_HANDLE:
+            raise ct.WinError()
+
+        # For whatever reason, the restype is ignored
+        self.trace_handle = TRACEHANDLE(self.trace_handle)
+        self.process_thread = threading.Thread(target=self._run, args=(self.trace_handle, self.end_capture))
+        self.process_thread.daemon = True
+        self.process_thread.start()
+
+    def stop(self):
+        """
+        Stops a trace consumer.
+
+        :return: Returns True on Success or False on Failure
+        """
+        # Signal to the thread that we are reading to stop processing events.
+        self.end_capture.set()
+
+        # Call CloseTrace to cause ProcessTrace to return (unblock)
+        CloseTrace(self.trace_handle)
+
+        # If ProcessThread is actively parsing an event, we want to give it a chance to finish
+        # before pulling the rug out from underneath it.
+        self.process_thread.join()
+
+    @staticmethod
+    def _run(trace_handle, end_capture):
+        """
+        Because ProcessTrace() blocks, this function is used to spin off new threads.
+
+        :param trace_handle: The handle for the trace consumer that we want to begin processing.
+        :param end_capture: A callback function which determines what should be done with the results.
+        :return: Does not return a value.
+        """
+        while True:
+            if ERROR_SUCCESS != ProcessTrace(ct.byref(trace_handle), 1, None, None):
+                end_capture.set()
+
+            if end_capture.is_set():
+                break
+
+    @staticmethod
+    def _getEventInformation(record):
+        """
+        Initially we are handed an EVENT_RECORD structure. While this structure technically contains
+        all of the information necessary, TdhGetEventInformation parses the structure and simplifies it
+        so we can more effectively parse and handle the various fields.
+
+        :param record: The EventRecord structure for the event we are parsing
+        :return: Returns a pointer to a TRACE_EVENT_INFO structure or None on error.
+        """
+        info = ct.POINTER(TRACE_EVENT_INFO)()
+        buffer_size = wt.DWORD()
+
+        # Call TdhGetEventInformation once to get the required buffer size and again to actually populate the structure.
+        status = TdhGetEventInformation(record, 0, None, None, ct.byref(buffer_size))
+        if ERROR_INSUFFICIENT_BUFFER == status:
+            info = ct.cast((ct.c_byte * buffer_size.value)(), ct.POINTER(TRACE_EVENT_INFO))
+            status = TdhGetEventInformation(record, 0, None, info, ct.byref(buffer_size))
+
+        if ERROR_SUCCESS != status:
+            raise ct.WinError(status)
+
+        return info
+
+    @staticmethod
+    def _getMapInfo(record, info, event_property):
+        """
+        When parsing a field in the event property structure, there may be a mapping between a given
+        name and the structure it represents. If it exists, we retrieve that mapping here.
+
+        Because this may legitimately return a NULL value we return a tuple containing the success or
+        failure status as well as either None (NULL) or an EVENT_MAP_INFO pointer.
+
+        :param record: The EventRecord structure for the event we are parsing
+        :param info: The TraceEventInfo structure for the event we are parsing
+        :param event_property: The EVENT_PROPERTY_INFO structure for the TopLevelProperty of the event we are parsing
+        :return: A tuple of the map_info structure and boolean indicating whether we succeeded or not
+        """
+        map_name = rel_ptr_to_str(info, event_property.epi_u1.nonStructType.MapNameOffset)
+        map_size = wt.DWORD()
+        map_info = ct.POINTER(EVENT_MAP_INFO)()
+
+        status = TdhGetEventMapInformation(record, map_name, None, ct.byref(map_size))
+        if ERROR_INSUFFICIENT_BUFFER == status:
+            map_info = ct.cast((ct.c_char * map_size.value)(), ct.POINTER(EVENT_MAP_INFO))
+            status = TdhGetEventMapInformation(record, map_name, map_info, ct.byref(map_size))
+
+        if ERROR_SUCCESS == status:
+            return map_info, True
+
+        # ERROR_NOT_FOUND is actually a perfectly acceptable status
+        if ERROR_NOT_FOUND == status:
+            return None, True
+
+        # We actually failed.
+        raise ct.WinError()
+
+    @staticmethod
+    def _getPropertyLength(record, info, event_property):
+        """
+        Each property encountered when parsing the top level property has an associated length. If the
+        length is available, retrieve it here. In some cases, the length is 0. This can signify that
+        we are dealing with a variable length field such as a structure, an IPV6 data, or a string.
+
+        :param record: The EventRecord structure for the event we are parsing
+        :param info: The TraceEventInfo structure for the event we are parsing
+        :param event_property: The EVENT_PROPERTY_INFO structure for the TopLevelProperty of the event we are parsing
+        :return: Returns the length of the property as a c_ulong() or None on error
+        """
+        flags = event_property.Flags
+
+        if flags & PropertyParamLength:
+            data_descriptor = PROPERTY_DATA_DESCRIPTOR()
+            event_property_array = ct.cast(info.contents.EventPropertyInfoArray, ct.POINTER(EVENT_PROPERTY_INFO))
+            j = wt.DWORD(event_property.epi_u3.length)
+            property_size = ct.c_ulong()
+            length = wt.DWORD()
+
+            # Setup the PROPERTY_DATA_DESCRIPTOR structure
+            data_descriptor.PropertyName = ct.cast(info, ct.c_voidp).value + event_property_array[j.value].NameOffset
+            data_descriptor.ArrayIndex = MAX_UINT
+
+            status = TdhGetPropertySize(record, 0, None, 1, ct.byref(data_descriptor), ct.byref(property_size))
+            if ERROR_SUCCESS != status:
+                raise ct.WinError(status)
+
+            status = TdhGetProperty(
+                record,
+                0,
+                None,
+                1,
+                ct.byref(data_descriptor),
+                property_size,
+                ct.cast(ct.byref(length), ct.POINTER(ct.c_byte)),
+            )
+            if ERROR_SUCCESS != status:
+                raise ct.WinError(status)
+            return length.value
+
+        in_type = event_property.epi_u1.nonStructType.InType
+        out_type = event_property.epi_u1.nonStructType.OutType
+
+        # This is a special case in which the input and output types dictate the size
+        if (in_type == TDH_INTYPE_BINARY) and (out_type == TDH_OUTTYPE_IPV6):
+            return ct.sizeof(IN6_ADDR)
+
+        return event_property.epi_u3.length
+
+    def _unpackSimpleType(self, record, info, event_property):
+        """
+        This method handles dumping all simple types of data (i.e., non-struct types).
+
+        :param record: The EventRecord structure for the event we are parsing
+        :param info: The TraceEventInfo structure for the event we are parsing
+        :param event_property: The EVENT_PROPERTY_INFO structure for the TopLevelProperty of the event we are parsing
+        :return: Returns a key-value pair as a dictionary. If we fail, the dictionary is {}
+        """
+        # Get the EVENT_MAP_INFO, if it is present.
+        map_info, success = self._getMapInfo(record, info, event_property)
+        if not success:
+            return {}
+
+        # Get the length of the value of the property we are dealing with.
+        property_length = self._getPropertyLength(record, info, event_property)
+        if property_length is None:
+            return {}
+        # The version of the Python interpreter may be different than the system architecture.
+        if record.contents.EventHeader.Flags & EVENT_HEADER_FLAG_32_BIT_HEADER:
+            ptr_size = 4
+        else:
+            ptr_size = 8
+
+        name_field = rel_ptr_to_str(info, event_property.NameOffset)
+        if property_length == 0 and self.vfield_length is not None:
+            if self.vfield_length == 0:
+                self.vfield_length = None
+                return {name_field: None}
+
+            # If vfield_length isn't 0, we should be able to parse the property.
+            property_length = self.vfield_length
+
+        # After calling the TdhFormatProperty function, use the UserDataConsumed parameter value to set the new values
+        # of the UserData and UserDataLength parameters (Subtract UserDataConsumed from UserDataLength and use
+        # UserDataLength to increment the UserData pointer).
+
+        # All of the variables needed to actually use TdhFormatProperty retrieve the value
+        user_data = record.contents.UserData + self.index
+        user_data_remaining = record.contents.UserDataLength - self.index
+
+        # if there is no data remaining then return
+        if user_data_remaining <= 0:
+            logger.warning("No more user data left, returning none for field %s", str(name_field))
+            return {name_field: None}
+
+        in_type = event_property.epi_u1.nonStructType.InType
+        out_type = event_property.epi_u1.nonStructType.OutType
+        formatted_data_size = wt.DWORD()
+        formatted_data = wt.LPWSTR()
+        user_data_consumed = ct.c_ushort()
+
+        status = TdhFormatProperty(
+            info,
+            map_info,
+            ptr_size,
+            in_type,
+            out_type,
+            ct.c_ushort(property_length),
+            user_data_remaining,
+            ct.cast(user_data, ct.POINTER(ct.c_byte)),
+            ct.byref(formatted_data_size),
+            None,
+            ct.byref(user_data_consumed),
+        )
+
+        if status == ERROR_INSUFFICIENT_BUFFER:
+            formatted_data = ct.cast((ct.c_char * formatted_data_size.value)(), wt.LPWSTR)
+            status = TdhFormatProperty(
+                info,
+                map_info,
+                ptr_size,
+                in_type,
+                out_type,
+                ct.c_ushort(property_length),
+                user_data_remaining,
+                ct.cast(user_data, ct.POINTER(ct.c_byte)),
+                ct.byref(formatted_data_size),
+                formatted_data,
+                ct.byref(user_data_consumed),
+            )
+
+        if status != ERROR_SUCCESS:
+            # We can handle this error and still capture the data.
+            logger.warning("Failed to get data field data for %s, incrementing by reported size", str(name_field))
+            self.index += property_length
+            return {name_field: None}
+
+        # Increment where we are in the user data segment that we are parsing.
+        self.index += user_data_consumed.value
+
+        if name_field.lower().endswith("length"):
+            try:
+                self.vfield_length = int(formatted_data.value, 10)
+            except ValueError:
+                logger.warning("Setting vfield_length to None")
+                self.vfield_length = None
+
+        data = formatted_data.value
+        # Convert the formatted data if necessary
+        if out_type in TDH_CONVERTER_LOOKUP and type(data) is TDH_CONVERTER_LOOKUP[out_type]:
+            data = TDH_CONVERTER_LOOKUP[out_type](data)
+
+        return {name_field: data}
+
+    def _unpackComplexType(self, record, info, event_property):
+        """
+        A complex type (e.g., a structure with sub-properties) can only contain simple types. Loop over all
+        sub-properties and dump the property name and value.
+
+        :param record: The EventRecord structure for the event we are parsing
+        :param info: The TraceEventInfo structure for the event we are parsing
+        :param event_property: The EVENT_PROPERTY_INFO structure for the TopLevelProperty of the event we are parsing
+        :return: A dictionary of the property and value for the event we are parsing
+        """
+        out = {}
+
+        array_size = self._getArraySize(record, info, event_property)
+        if array_size is None:
+            return {}
+
+        for _ in range(array_size):
+            start_index = event_property.epi_u1.structType.StructStartIndex
+            last_member = start_index + event_property.epi_u1.structType.NumOfStructMembers
+
+            for j in range(start_index, last_member):
+                # Because we are no longer dealing with the TopLevelProperty, we need to get the event_property_array
+                # again so we can get the EVENT_PROPERTY_INFO structure of the sub-property we are currently parsing.
+                event_property_array = ct.cast(
+                    info.contents.EventPropertyInfoArray,
+                    ct.POINTER(EVENT_PROPERTY_INFO),
+                )
+
+                key, value = self._unpackSimpleType(record, info, event_property_array[j])
+                if key is None and value is None:
+                    break
+
+                out[key] = value
+
+        return out
+
+    def _processEvent(self, record):
+        """
+        This is a callback function that fires whenever an event needs handling. It iterates through the structure to
+        parse the properties of each event. If a user defined callback is specified it then passes the parsed data to
+        it.
+
+
+        :param record: The EventRecord structure for the event we are parsing
+        :return: Nothing
+        """
+        parsed_data = {}
+
+        event_id = record.contents.EventHeader.EventDescriptor.Id
+        # set task name to provider guid for the time being
+        task_name = str(record.contents.EventHeader.ProviderId)
+
+        # add all header fields from EVENT_HEADER structure
+        # https://msdn.microsoft.com/en-us/library/windows/desktop/aa363759(v=vs.85).aspx
+        out = {
+            "EventHeader": {
+                "Size": record.contents.EventHeader.Size,
+                "HeaderType": record.contents.EventHeader.HeaderType,
+                "Flags": record.contents.EventHeader.Flags,
+                "EventProperty": record.contents.EventHeader.EventProperty,
+                "ThreadId": record.contents.EventHeader.ThreadId,
+                "ProcessId": record.contents.EventHeader.ProcessId,
+                "TimeStamp": record.contents.EventHeader.TimeStamp,
+                "ProviderId": task_name,
+                "EventDescriptor": {
+                    "Id": event_id,
+                    "Version": record.contents.EventHeader.EventDescriptor.Version,
+                    "Channel": record.contents.EventHeader.EventDescriptor.Channel,
+                    "Level": record.contents.EventHeader.EventDescriptor.Level,
+                    "Opcode": record.contents.EventHeader.EventDescriptor.Opcode,
+                    "Task": record.contents.EventHeader.EventDescriptor.Task,
+                    "Keyword": record.contents.EventHeader.EventDescriptor.Keyword,
+                },
+                "KernelTime": record.contents.EventHeader.KernelTime,
+                "UserTime": record.contents.EventHeader.UserTime,
+                "ActivityId": str(record.contents.EventHeader.ActivityId),
+            },
+            "Task Name": task_name,
+        }
+
+        try:
+            info = self._getEventInformation(record)
+
+            # Some events do not have an associated task_name value. In this case, we should use the provider
+            # name instead.
+            if info.contents.TaskNameOffset == 0:
+                task_name = rel_ptr_to_str(info, info.contents.ProviderNameOffset)
+            else:
+                task_name = rel_ptr_to_str(info, info.contents.TaskNameOffset)
+
+            task_name = task_name.strip().upper()
+
+            # Add a description for the event, if present
+            if info.contents.EventMessageOffset:
+                description = rel_ptr_to_str(info, info.contents.EventMessageOffset)
+            else:
+                description = ""
+
+            user_data = record.contents.UserData
+            if user_data is None:
+                user_data = 0
+
+            end_of_user_data = user_data + record.contents.UserDataLength
+            self.index = 0
+            self.vfield_length = None
+            property_array = ct.cast(info.contents.EventPropertyInfoArray, ct.POINTER(EVENT_PROPERTY_INFO))
+
+            for i in range(info.contents.TopLevelPropertyCount):
+                # If the user_data is the same value as the end_of_user_data, we are ending with a 0-length
+                # field. Though not documented, this is completely valid.
+                if user_data == end_of_user_data:
+                    break
+
+                # Determine whether we are processing a simple type or a complex type and act accordingly
+                if property_array[i].Flags & PropertyStruct:
+                    field = self._unpackComplexType(record, info, property_array[i])
+                else:
+                    field = self._unpackSimpleType(record, info, property_array[i])
+
+                parsed_data.update(field)
+
+            # Add the description field in
+            parsed_data["Description"] = description
+            parsed_data["Task Name"] = task_name
+            # Add ExtendedData if any
+            if record.contents.EventHeader.Flags & EVENT_HEADER_FLAG_EXTENDED_INFO:
+                parsed_data["EventExtendedData"] = self._parseExtendedData(record)
+        except Exception as e:
+            logger.warning("Unable to parse event: %s", str(e))
+
+        try:
+            out.update(parsed_data)
+            # Call the user's specified callback function
+            if self.event_callback:
+                self.event_callback(out)
+        except Exception as e:
+            logger.exception("Exception during callback: %s", str(e))
+
+
+class TraceProperties:
+    def __init__(self):
+        buf_size = ct.sizeof(EVENT_TRACE_PROPERTIES) + 2 * ct.sizeof(ct.c_wchar) * 1024
+        self._buf = (ct.c_char * buf_size)()
+        self._props = ct.cast(ct.pointer(self._buf), ct.POINTER(EVENT_TRACE_PROPERTIES))
+        self._props.contents.BufferSize = 1024
+        self._props.contents.Wnode.Flags = WNODE_FLAG_TRACED_GUID
+        self._props.contents.LogFileMode = EVENT_TRACE_REAL_TIME_MODE
+        self._props.contents.Wnode.BufferSize = buf_size
+        self._props.contents.LoggerNameOffset = ct.sizeof(EVENT_TRACE_PROPERTIES)
+
+    def get(self):
+        return self._props
+
+
+class AMSI:
+    def __init__(self, event_callback=None):
+        try:
+            self.providers = [ProviderInfo("AMSI", GUID("{2A576B87-09A7-520E-C21A-4942F0271D67}"))]
+        except OSError as err:
+            raise OSError("AMSI not supported on this platform") from err
+        self.provider = None
+        self.properties = TraceProperties()
+        self.session_name = str(uuid.uuid4())
+        self.running = False
+        self.event_callback = event_callback
+        self.trace_logfile = None
+
+    def __enter__(self):
+        self.start()
+        return self
+
+    def __exit__(self, exc, ex, tb):
+        self.stop()
+
+    def start(self):
+        if self.provider is None:
+            self.provider = EventProvider(self.session_name, self.properties, self.providers)
+
+        if not self.running:
+            self.running = True
+            try:
+                self.provider.start()
+            except OSError as err:
+                if err.winerror != ERROR_ALREADY_EXISTS:
+                    raise err
+
+            # Start the consumer
+            self.consumer = EventConsumer(
+                self.session_name,
+                self.event_callback,
+            )
+            self.consumer.start()
+
+    def stop(self):
+        """
+        Stops the current consumer and provider.
+
+        :return: Does not return anything.
+        """
+
+        if self.provider:
+            self.running = False
+            self.provider.stop()
+            self.consumer.stop()
+
+
+def jsonldump(obj, fp):
+    """Write each event object on its own line."""
+    json.dump(obj, fp)
+    fp.write("\n")
+
+
+def main():
+    with AMSI(event_callback=functools.partial(jsonldump, fp=sys.stdout)):
+        print("Listening for AMSI events. Press enter to stop...")
+        sys.stdin.readline()
+
+
+if __name__ == "__main__":
+    main()
diff --git a/analyzer/windows/modules/auxiliary/amsi_collector.py b/analyzer/windows/modules/auxiliary/amsi_collector.py
new file mode 100644
index 00000000000..c847ec79c9a
--- /dev/null
+++ b/analyzer/windows/modules/auxiliary/amsi_collector.py
@@ -0,0 +1,90 @@
+#!/usr/bin/env python
+
+import binascii
+import functools
+import logging
+import os
+import tempfile
+import threading
+
+from lib.common.abstracts import Auxiliary
+from lib.common.results import upload_buffer_to_host, upload_to_host
+
+from .amsi import AMSI, jsonldump
+
+logger = logging.getLogger(__name__)
+
+
+class AMSICollector(Auxiliary, threading.Thread):
+    def __init__(self, options, config):
+        Auxiliary.__init__(self, options, config)
+        threading.Thread.__init__(self)
+        self.enabled = config.amsi
+        self.stop_event = threading.Event()
+        self.tmpfile = None
+        self.upload_prefix = "aux/amsi"
+
+    def handle_event(self, event, logfh=None):
+        """
+        Process the AMSI event by appending a line to amsi.jsonl file containing its metadata.
+        That will get uploaded after we finish collecting events.
+
+        Upload the content of the event as its own file to be stored.
+        """
+        # https://redcanary.com/blog/amsi/ has some useful info on the event record fields.
+        content = event.pop("content", None)
+        if not content:
+            return
+
+        if logfh:
+            jsonldump(event, fp=logfh)
+
+        dump_path = f"{self.upload_prefix}/{event['hash'][2:].lower()}"
+        decoded_content = binascii.unhexlify(content[2:])
+        if event.get("appname", "") in ("DotNet", "coreclr"):
+            # The content is the full in-memory .NET assembly PE.
+            pass
+        else:
+            # The content is UTF-16 encoded text. We'll store it as utf-8, just like all other text files.
+            decoded_content = decoded_content.decode("utf-16", errors="replace").encode("utf-8")
+        upload_buffer_to_host(decoded_content, dump_path)
+
+    def stop(self):
+        self.stop_event.set()
+
+    def run(self):
+        if not self.enabled:
+            return
+
+        try:
+            with tempfile.NamedTemporaryFile("w", encoding="utf-8", delete=False) as fil:
+                self.tmpfile = fil.name
+                amsi = AMSI(event_callback=functools.partial(self.handle_event, logfh=fil))
+                logger.info("AMSI: Starting to listen for events.")
+                try:
+                    with amsi:
+                        self.stop_event.wait()
+                        logger.info("AMSI: Stopping event consumer.")
+                except PermissionError as err:
+                    raise PermissionError(
+                        "This module must be run with Administrator privilege in order to collect AMSI events."
+                    ) from err
+        except Exception:
+            logger.exception("AMSI: Exception raised.")
+            raise
+
+    def finish(self):
+        """Upload the file that contains the metadata for all of the events."""
+        if not self.tmpfile or not os.path.exists(self.tmpfile):
+            return
+        try:
+            if os.stat(self.tmpfile).st_size > 0:
+                upload_to_host(self.tmpfile, f"{self.upload_prefix}/amsi.jsonl")
+            else:
+                logger.debug("AMSI: no AMSI events were collected.")
+        except Exception:
+            logger.exception("AMSI: Exception was raised while uploading amsi.jsonl")
+            raise
+        finally:
+            os.unlink(self.tmpfile)
+            self.tmpfile = None
diff --git a/analyzer/windows/modules/auxiliary/browser.py b/analyzer/windows/modules/auxiliary/browser.py
index 1c542b85fad..8dc27e2ce6d 100644
--- a/analyzer/windows/modules/auxiliary/browser.py
+++ b/analyzer/windows/modules/auxiliary/browser.py
@@ -2,10 +2,9 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-import time
-import os
 import logging
+import os
+import time
 from threading import Thread
 
 from lib.api.process import Process
@@ -20,7 +19,8 @@ class Browser(Auxiliary, Thread):
     def __init__(self, options, config):
         Auxiliary.__init__(self, options, config)
         Thread.__init__(self)
-        self.do_run = True
+        self.enabled = config.browser
+        self.do_run = self.enabled
         self.seconds_elapsed = 0
 
     def stop(self):
@@ -29,14 +29,14 @@ def stop(self):
     def run(self):
         self.do_run = self.options.get("startbrowser", False)
         url = self.options.get("url")
-        browserdelay = int(self.options.get("browserdelay", "30"))
+        browserdelay = int(self.options.get("browserdelay", 30))
         while self.do_run:
             time.sleep(1)
-            self.seconds_elapsed = self.seconds_elapsed + 1
+            self.seconds_elapsed += 1
             if self.seconds_elapsed == browserdelay:
                 iexplore = os.path.join(os.getenv("ProgramFiles"), "Internet Explorer", "iexplore.exe")
                 ie = Process()
                 if not url:
                     url = "https://www.yahoo.com/"
-                ie.execute(path=iexplore, args='"' + url + '"', suspended=False)
+                ie.execute(path=iexplore, args=f'"{url}"', suspended=False)
                 ie.close()
diff --git a/analyzer/windows/modules/auxiliary/browsermonitor.py b/analyzer/windows/modules/auxiliary/browsermonitor.py
new file mode 100644
index 00000000000..4e0ce43a16d
--- /dev/null
+++ b/analyzer/windows/modules/auxiliary/browsermonitor.py
@@ -0,0 +1,67 @@
+# Copyright (C) 2024 fdiaz@virustotal.com
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+import logging
+import os
+import subprocess
+import tempfile
+import time
+from threading import Thread
+
+from lib.common.abstracts import Auxiliary
+from lib.common.results import upload_to_host
+
+log = logging.getLogger(__name__)
+
+
+class Browsermonitor(Auxiliary, Thread):
+    """Monitors Browser Extension request logs."""
+
+    def __init__(self, options=None, config=None):
+        if options is None:
+            options = {}
+        Auxiliary.__init__(self, options, config)
+        Thread.__init__(self)
+        self.do_run = False
+        self.enabled = config.browsermonitor
+        self.startupinfo = subprocess.STARTUPINFO()
+        self.startupinfo.dwFlags |= subprocess.STARTF_USESHOWWINDOW
+        self.browser_logfile = ""
+
+    def _find_browser_extension(self):
+        temp_dir = tempfile.gettempdir()
+        while not self.browser_logfile and self.do_run:
+            temp_dir_list = os.listdir(temp_dir)
+            for directory in temp_dir_list:
+                # TOR Browser saves directly to %temp%
+                if directory.startswith("bext_") and directory.endswith(".json"):
+                    log.debug("Found extension logs: %s", self.browser_logfile)
+                    self.browser_logfile = os.path.join(temp_dir, directory)
+                    break
+                tmp_directory_path = os.path.join(temp_dir, directory)
+                if not os.path.isdir(tmp_directory_path):
+                    continue
+                if not directory.startswith("tmp"):
+                    continue
+                tmp_dir_files = os.listdir(tmp_directory_path)
+                for file in tmp_dir_files:
+                    if file.startswith("bext_") and file.endswith(".json"):
+                        self.browser_logfile = os.path.join(temp_dir, directory, file)
+                        log.debug("Found extension logs: %s", self.browser_logfile)
+                        break
+            time.sleep(1)
+
+    def _collect_browser_logs(self):
+        upload_to_host(self.browser_logfile, "browser/requests.log")
+
+    def run(self):
+        self.do_run = True
+        if self.enabled:
+            self._find_browser_extension()
+
+    def stop(self):
+        if self.enabled:
+            self.do_run = False
+            if self.browser_logfile:
+                self._collect_browser_logs()
+        return True
diff --git a/analyzer/windows/modules/auxiliary/curtain.py b/analyzer/windows/modules/auxiliary/curtain.py
deleted file mode 100644
index 878849c5e8d..00000000000
--- a/analyzer/windows/modules/auxiliary/curtain.py
+++ /dev/null
@@ -1,74 +0,0 @@
-from __future__ import absolute_import
-import os
-import time
-import logging
-import subprocess
-from threading import Thread
-
-from lib.common.abstracts import Auxiliary
-from lib.common.results import upload_to_host
-from lib.core.config import Config
-
-log = logging.getLogger(__name__)
-
-__author__ = "Jeff White [karttoon] @noottrak"
-__email__ = "jwhite@paloaltonetworks.com"
-__version__ = "1.0.4"
-__date__ = "11OCT2019"
-
-
-class Curtain(Thread, Auxiliary):
-    def __init__(self, options={}, config=None):
-        Thread.__init__(self)
-        Auxiliary.__init__(self, options, config)
-        self.config = Config(cfg="analysis.conf")
-        self.enabled = self.config.curtain
-        self.do_run = self.enabled
-        self.startupinfo = subprocess.STARTUPINFO()
-        self.startupinfo.dwFlags |= subprocess.STARTF_USESHOWWINDOW
-
-    def collectLogs(self):
-        try:
-            subprocess.call(
-                [
-                    "C:\\Windows\\System32\\wevtutil.exe",
-                    "query-events",
-                    "microsoft-windows-powershell/operational",
-                    "/rd:true",
-                    "/e:root",
-                    "/format:xml",
-                    "/uni:true",
-                ],
-                startupinfo=self.startupinfo,
-                stdout=open("C:\\curtain.log", "w"),
-            )
-        except Exception as e:
-            log.error("Curtain - Error collecting PowerShell events - %s " % e)
-
-        # time.sleep(5)
-
-        if os.path.exists("C:\\curtain.log"):
-            now = time.time()
-            upload_to_host("C:\\curtain.log", f"curtain/{now}.curtain.log", False)
-        else:
-            log.error("Curtain log file not found!")
-
-    def clearLogs(self):
-        try:
-            subprocess.call(
-                ["C:\\Windows\\System32\\wevtutil.exe", "clear-log", "microsoft-windows-powershell/operational"], startupinfo=self.startupinfo
-            )
-        except Exception as e:
-            log.error("Curtain - Error clearing PowerShell events - %s" % e)
-
-    def run(self):
-        if self.enabled:
-            self.clearLogs()
-            return True
-        return False
-
-    def stop(self):
-        if self.enabled:
-            self.collectLogs()
-            return True
-        return False
diff --git a/analyzer/windows/modules/auxiliary/digisig.py b/analyzer/windows/modules/auxiliary/digisig.py
index cb400e3aa0c..81d2b65f006 100644
--- a/analyzer/windows/modules/auxiliary/digisig.py
+++ b/analyzer/windows/modules/auxiliary/digisig.py
@@ -2,12 +2,12 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-import os
 import json
-import logging
 import locale
+import logging
+import os
 from io import BytesIO
+from pathlib import Path
 
 from lib.api.utils import Utils
 from lib.common.abstracts import Auxiliary
@@ -35,13 +35,14 @@ class DigiSig(Auxiliary):
 
     def __init__(self, options, config):
         Auxiliary.__init__(self, options, config)
-        self.cert_build = list()
-        self.time_build = list()
-        self.json_data = {"sha1": None, "signers": list(), "timestamp": None, "valid": False, "error": None, "error_desc": None}
-        self.enabled = True
+        self.config = config
+        self.enabled = self.config.digisig
+        self.cert_build = []
+        self.time_build = []
+        self.json_data = {"sha1": None, "signers": [], "timestamp": None, "valid": False, "error": None, "error_desc": None}
 
     def build_output(self, outputType, line):
-        if line and line != "":
+        if line:
             if outputType == "cert":
                 self.cert_build.append(line.replace("    ", "-"))
             elif outputType == "time":
@@ -50,9 +51,8 @@ def build_output(self, outputType, line):
     def parse_digisig(self, data):
         parser_switch = None
         for line in data.splitlines():
-            if line.startswith("Hash of file (sha1)") or line.startswith("SHA1 hash of file"):
-                if not self.json_data["sha1"]:
-                    self.json_data["sha1"] = line.split(": ")[-1].lower()
+            if line.startswith(("Hash of file (sha1)", "SHA1 hash of file")) and not self.json_data["sha1"]:
+                self.json_data["sha1"] = line.rsplit(": ", 1)[-1].lower()
             # Start of certificate chain information
             if line.startswith("Signing Certificate Chain:"):
                 parser_switch = "cert"
@@ -61,7 +61,7 @@ def parse_digisig(self, data):
             if line.startswith("The signature is timestamped:"):
                 parser_switch = None
                 if not self.json_data["timestamp"]:
-                    self.json_data["timestamp"] = line.split(": ")[-1]
+                    self.json_data["timestamp"] = line.rsplit(": ", 1)[-1]
             if line.startswith("File is not timestamped."):
                 parser_switch = None
             # Start of timestamp verification
@@ -79,26 +79,24 @@ def parse_digisig(self, data):
                 parser_switch = None
             if parser_switch == "cert":
                 self.build_output("cert", line)
-            if parser_switch == "time":
+            elif parser_switch == "time":
                 self.build_output("time", line)
 
     def jsonify(self, signType, signers):
-        buf = dict()
-        lastnum = "0"
+        buf = {}
+        lastnum = 0
         for item in signers:
-            num = str(item.split(":")[0].count("-"))
-            signed = signType + " " + num
+            key, value = item.split(":", 1)
+            num = key.count("-")
+            signed = f"{signType} {num}"
             if lastnum != num and buf:
                 self.json_data["signers"].append(buf)
-                buf = dict()
-            key = item.split(":")[0].replace("-", "")
-            value = "".join(item.split(":")[1:]).strip()
+                buf = {}
+            key = key.replace("-", "")
+            value = value.strip()
             buf["name"] = signed
             # Lower case hashes to match the format of other hashes in Django
-            if key == "SHA1 hash":
-                buf[key] = value.lower()
-            else:
-                buf[key] = value
+            buf[key] = value.lower() if key == "SHA1 hash" else value
             lastnum = num
 
         if buf:
@@ -106,21 +104,20 @@ def jsonify(self, signType, signers):
 
     def start(self):
         if not self.enabled:
-            return True
-
+            return False
         try:
             if self.config.category != "file":
-                log.debug("Skipping authenticode validation, analysis is not " "a file.")
+                log.debug("Skipping authenticode validation, analysis is not a file")
                 return True
 
-            sign_path = os.path.join(os.getcwd(), "bin", "signtool.exe")
+            sign_path = os.path.join(Path.cwd(), "bin", "signtool.exe")
             if not os.path.exists(sign_path):
-                log.info("Skipping authenticode validation, signtool.exe was " "not found in bin/")
+                log.info("Skipping authenticode validation, signtool.exe was not found in bin/")
                 return True
 
-            log.debug("Checking for a digital signature.")
+            log.debug("Checking for a digital signature")
             file_path = os.path.join(os.environ["TEMP"] + os.sep, str(self.config.file_name))
-            cmd = '{0} verify /pa /v "{1}"'.format(sign_path, file_path)
+            cmd = f'{sign_path} verify /pa /v "{file_path}"'
             ret, out, err = util.cmd_wrapper(cmd)
             out = out.decode(locale.getpreferredencoding(), errors="ignore")
 
@@ -130,32 +127,32 @@ def start(self):
                 self.jsonify("Certificate Chain", self.cert_build)
                 self.jsonify("Timestamp Chain", self.time_build)
                 self.json_data["valid"] = True
-                log.debug("File has a valid signature.")
+                log.debug("File has a valid signature")
             # Non-zero return, it didn't validate or exist
             else:
                 self.json_data["error"] = True
-                errmsg = b" ".join(b"".join(err.split(b":")[1:]).split())
-                self.json_data["error_desc"] = errmsg.decode("utf-8")
+                errmsg = b" ".join(err.split(b":", 1)[1].split())
+                self.json_data["error_desc"] = errmsg.decode()
                 if b"file format cannot be verified" in err:
-                    log.debug("File format not recognized.")
+                    log.debug("File format not recognized")
                 elif b"No signature found" not in err:
-                    log.debug("File has an invalid signature.")
+                    log.debug("File has an invalid signature")
                     _ = self.parse_digisig(out)
                     self.jsonify("Certificate Chain", self.cert_build)
                     self.jsonify("Timestamp Chain", self.time_build)
                 else:
-                    log.debug("File is not signed.")
+                    log.debug("File is not signed")
 
             if self.json_data:
-                log.info("Uploading signature results to aux/{0}.json".format(self.__class__.__name__))
-                upload = BytesIO()
-                upload.write(json.dumps(self.json_data, ensure_ascii=False).encode("utf-8"))
-                upload.seek(0)
-                nf = NetlogFile()
-                nf.init("aux/DigiSig.json")
-                for chunk in upload:
-                    nf.sock.send(chunk)
-                nf.close()
+                log.info("Uploading signature results to aux/%s.json", self.__class__.__name__)
+                with BytesIO() as upload:
+                    upload.write(json.dumps(self.json_data, ensure_ascii=False).encode())
+                    upload.seek(0)
+                    nf = NetlogFile()
+                    nf.init("aux/DigiSig.json")
+                    for chunk in upload:
+                        nf.sock.send(chunk)
+                    nf.close()
 
         except Exception as e:
             print(e)
diff --git a/analyzer/windows/modules/auxiliary/disguise.py b/analyzer/windows/modules/auxiliary/disguise.py
index cccc5b67dff..4d8c2d0db7f 100644
--- a/analyzer/windows/modules/auxiliary/disguise.py
+++ b/analyzer/windows/modules/auxiliary/disguise.py
@@ -2,26 +2,46 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 import io
+import itertools
+import logging
 import os
 import re
 import subprocess
-import logging
 from random import randint
-from winreg import *
 from uuid import uuid4
-import platform
+from winreg import (
+    HKEY_CURRENT_USER,
+    HKEY_LOCAL_MACHINE,
+    KEY_READ,
+    KEY_SET_VALUE,
+    KEY_WOW64_64KEY,
+    REG_DWORD,
+    REG_SZ,
+    CreateKeyEx,
+    EnumKey,
+    EnumValue,
+    OpenKey,
+    QueryInfoKey,
+    SetValueEx,
+)
 
 from lib.common.abstracts import Auxiliary
 from lib.common.rand import random_integer, random_string
 
 log = logging.getLogger(__name__)
+si = subprocess.STARTUPINFO()
+si.dwFlags |= subprocess.STARTF_USESHOWWINDOW
 
 
 class Disguise(Auxiliary):
     """Disguise the analysis environment."""
 
+    def __init__(self, options, config):
+        Auxiliary.__init__(self, options, config)
+        self.enabled = config.disguise
+        self.config = config
+
     @staticmethod
     def run_as_system(command):
         if not command:
@@ -35,7 +55,9 @@ def run_as_system(command):
 
         output = None
         try:
-            output = subprocess.check_output([psexec_path, "-accepteula", "-nobanner", "-s"] + command, stderr=subprocess.STDOUT)
+            output = subprocess.check_output(
+                [psexec_path, "-accepteula", "-nobanner", "-s"] + command, stderr=subprocess.STDOUT, startupinfo=si
+            )
         except subprocess.CalledProcessError as e:
             log.error(e.output)
 
@@ -46,8 +68,7 @@ def disable_scs(self):
         commands = [["sc", "stop", "ClickToRunSvc"], ["sc", "config", "ClickToRunSvc", "start=", "disabled"]]
         for command in commands:
             try:
-                output = subprocess.check_output(command, stderr=subprocess.STDOUT)
-                # log.info(output)
+                subprocess.check_output(command, stderr=subprocess.STDOUT)
             except subprocess.CalledProcessError as e:
                 log.error(e.output)
 
@@ -56,37 +77,28 @@ def change_productid(self):
         The Windows ProductId is occasionally used by malware
         to detect public setups of Cuckoo, e.g., Malwr.com.
         """
-        key = OpenKey(HKEY_LOCAL_MACHINE, "SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion", 0, KEY_SET_VALUE)
-
-        value = "{0}-{1}-{2}-{3}".format(random_integer(5), random_integer(3), random_integer(7), random_integer(5))
-
-        SetValueEx(key, "ProductId", 0, REG_SZ, value)
-        CloseKey(key)
+        value = f"{random_integer(5)}-{random_integer(3)}-{random_integer(7)}-{random_integer(5)}"
+        with OpenKey(
+            HKEY_LOCAL_MACHINE, "SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion", 0, KEY_SET_VALUE | KEY_WOW64_64KEY
+        ) as key:
+            SetValueEx(key, "ProductId", 0, REG_SZ, value)
 
     def _office_helper(self, key, subkey, value, size=REG_SZ):
-        tmp_key = OpenKey(HKEY_CURRENT_USER, key, 0, KEY_SET_VALUE)
-        SetValueEx(tmp_key, subkey, 0, size, value)
-        CloseKey(tmp_key)
+        with OpenKey(HKEY_CURRENT_USER, key, 0, KEY_SET_VALUE) as tmp_key:
+            SetValueEx(tmp_key, subkey, 0, size, value)
 
     def set_office_params(self):
         baseOfficeKeyPath = r"Software\Microsoft\Office"
-        installedVersions = list()
+        installedVersions = []
 
         try:
-            officeKey = OpenKey(HKEY_CURRENT_USER, baseOfficeKeyPath, 0, KEY_READ)
-            for currentKey in range(0, QueryInfoKey(officeKey)[0]):
-                isVersion = True
-                officeVersion = EnumKey(officeKey, currentKey)
-                if "." in officeVersion:
-                    for intCheck in officeVersion.split("."):
-                        if not intCheck.isdigit():
-                            isVersion = False
-                            break
-
-                    if isVersion:
-                        installedVersions.append(officeVersion)
-
-            CloseKey(officeKey)
+            with OpenKey(HKEY_CURRENT_USER, baseOfficeKeyPath, 0, KEY_READ) as officeKey:
+                for currentKey in range(QueryInfoKey(officeKey)[0]):
+                    officeVersion = EnumKey(officeKey, currentKey)
+                    if "." in officeVersion:
+                        isVersion = all(intCheck.isdigit() for intCheck in officeVersion.split("."))
+                        if isVersion:
+                            installedVersions.append(officeVersion)
         except WindowsError:
             # Office isn't installed at all
             return
@@ -95,24 +107,24 @@ def set_office_params(self):
         self._office_helper("Software\\Microsoft\\Office\\Common\\Security", "UFIControls", REG_DWORD, 1)
         for oVersion in installedVersions:
             for software in ("Word", "Excel", "PowerPoint", "Publisher", "Outlook"):
-                productPath = r"{0}\{1}\{2}".format(baseOfficeKeyPath, oVersion, software)
-                self._office_helper(productPath + "\\Common\\General", "ShownOptIn", REG_DWORD, 1)
-                self._office_helper(productPath + "\\Security", "VBAWarnings", REG_DWORD, 1)
-                self._office_helper(productPath + "\\Security", "AccessVBOM", REG_DWORD, 1)
-                self._office_helper(productPath + "\\Security", "DisableDDEServerLaunch", REG_DWORD, 0)
-                self._office_helper(productPath + "\\Security", "MarkInternalAsUnsafe", REG_DWORD, 0)
-                self._office_helper(productPath + "\\Security\\ProtectedView", "DisableAttachmentsInPV", REG_DWORD, 1)
-                self._office_helper(productPath + "\\Security\\ProtectedView", "DisableInternetFilesInPV", REG_DWORD, 1)
-                self._office_helper(productPath + "\\Security\\ProtectedView", "DisableUnsafeLocationsInPV", REG_DWORD, 1)
-                # self._office_helper("HKEY_CURRENT_USER\\Software\\Policies\\Microsoft\\Office\\{}\\{}\\Security".format(oVersion, software), "MarkInternalAsUnsafe", REG_DWORD, 0)
-                self._office_helper(productPath + "\\Security", "ExtensionHardening", 0)
+                productPath = rf"{baseOfficeKeyPath}\{oVersion}\{software}"
+                self._office_helper(f"{productPath}\\Common\\General", "ShownOptIn", REG_DWORD, 1)
+                self._office_helper(f"{productPath}\\Security", "VBAWarnings", REG_DWORD, 1)
+                self._office_helper(f"{productPath}\\Security", "AccessVBOM", REG_DWORD, 1)
+                self._office_helper(f"{productPath}\\Security", "DisableDDEServerLaunch", REG_DWORD, 0)
+                self._office_helper(f"{productPath}\\Security", "MarkInternalAsUnsafe", REG_DWORD, 0)
+                self._office_helper(f"{productPath}\\Security\\ProtectedView", "DisableAttachmentsInPV", REG_DWORD, 1)
+                self._office_helper(f"{productPath}\\Security\\ProtectedView", "DisableInternetFilesInPV", REG_DWORD, 1)
+                self._office_helper(f"{productPath}\\Security\\ProtectedView", "DisableUnsafeLocationsInPV", REG_DWORD, 1)
+                # self._office_helper(f"HKEY_CURRENT_USER\\Software\\Policies\\Microsoft\\Office\\{oVersion}\\{software}\\Security", "MarkInternalAsUnsafe", REG_DWORD, 0)
+                self._office_helper(f"{productPath}\\Security", "ExtensionHardening", 0)
 
     def set_office_mrus(self):
         """Adds randomized MRU's to Office software(s).
         Occasionally used by macros to detect sandbox environments.
         """
         baseOfficeKeyPath = r"Software\Microsoft\Office"
-        installedVersions = list()
+        installedVersions = []
         basePaths = [
             "C:\\",
             "C:\\Windows\\Logs\\",
@@ -125,95 +137,76 @@ def set_office_mrus(self):
             "PowerPoint": ["ppt", "pptx"],
         }
         try:
-            officeKey = OpenKey(HKEY_CURRENT_USER, baseOfficeKeyPath, 0, KEY_READ)
-            for currentKey in range(0, QueryInfoKey(officeKey)[0]):
-                isVersion = True
-                officeVersion = EnumKey(officeKey, currentKey)
-                if "." in officeVersion:
-                    for intCheck in officeVersion.split("."):
-                        if not intCheck.isdigit():
-                            isVersion = False
-                            break
-
-                    if isVersion:
-                        installedVersions.append(officeVersion)
-
-            CloseKey(officeKey)
+            with OpenKey(HKEY_CURRENT_USER, baseOfficeKeyPath, 0, KEY_READ) as officeKey:
+                for currentKey in range(QueryInfoKey(officeKey)[0]):
+                    officeVersion = EnumKey(officeKey, currentKey)
+                    if "." in officeVersion:
+                        isVersion = all(intCheck.isdigit() for intCheck in officeVersion.split("."))
+                        if isVersion:
+                            installedVersions.append(officeVersion)
         except WindowsError:
             # Office isn't installed at all
             return
 
-        for oVersion in installedVersions:
-            for software in extensions:
-                values = list()
-                mruKeyPath = ""
-                productPath = r"{0}\{1}\{2}".format(baseOfficeKeyPath, oVersion, software)
-                try:
-                    productKey = OpenKey(HKEY_CURRENT_USER, productPath, 0, KEY_READ)
-                    CloseKey(productKey)
-                    mruKeyPath = r"{0}\File MRU".format(productPath)
-                    try:
-                        mruKey = OpenKey(HKEY_CURRENT_USER, mruKeyPath, 0, KEY_READ)
-                    except WindowsError:
-                        mruKey = CreateKeyEx(HKEY_CURRENT_USER, mruKeyPath, 0, KEY_READ)
+        for oVersion, software in itertools.product(installedVersions, extensions):
+            values = []
+            mruKeyPath = ""
+            productPath = rf"{baseOfficeKeyPath}\{oVersion}\{software}"
+            try:
+                with OpenKey(HKEY_CURRENT_USER, productPath, 0, KEY_READ):
+                    pass
+                mruKeyPath = rf"{productPath}\File MRU"
+                with CreateKeyEx(HKEY_CURRENT_USER, mruKeyPath, 0, KEY_READ) as mruKey:
                     displayValue = False
-                    for mruKeyInfo in range(0, QueryInfoKey(mruKey)[1]):
+                    for mruKeyInfo in range(QueryInfoKey(mruKey)[1]):
                         currentValue = EnumValue(mruKey, mruKeyInfo)
                         if currentValue[0] == "Max Display":
                             displayValue = True
                         values.append(currentValue)
-                    CloseKey(mruKey)
-                except WindowsError:
-                    # An Office version was found in the registry but the
-                    # software (Word/Excel/PowerPoint) was not installed.
-                    values = "notinstalled"
-
-                if values != "notinstalled" and len(values) < 5:
-                    mruKey = OpenKey(HKEY_CURRENT_USER, mruKeyPath, 0, KEY_SET_VALUE)
+            except WindowsError:
+                # An Office version was found in the registry but the
+                # software (Word/Excel/PowerPoint) was not installed.
+                values = "notinstalled"
+
+            if values != "notinstalled" and len(values) < 5:
+                with OpenKey(HKEY_CURRENT_USER, mruKeyPath, 0, KEY_SET_VALUE) as mruKey:
                     if not displayValue:
                         SetValueEx(mruKey, "Max Display", 0, REG_DWORD, 25)
 
                     for i in range(1, randint(10, 30)):
                         rString = random_string(minimum=11, charset="0123456789ABCDEF")
-                        if i % 2:
-                            baseId = "T01D1C" + rString
-                        else:
-                            baseId = "T01D1D" + rString
+                        baseId = f"T01D1C{rString}" if i % 2 else f"T01D1D{rString}"
                         setVal = "[F00000000][{0}][O00000000]*{1}{2}.{3}".format(
                             baseId,
                             basePaths[randint(0, len(basePaths) - 1)],
                             random_string(minimum=3, maximum=15, charset="abcdefghijkLMNOPQURSTUVwxyz_0369"),
                             extensions[software][randint(0, len(extensions[software]) - 1)],
                         )
-                        name = "Item {0}".format(i)
+                        name = f"Item {i}"
                         SetValueEx(mruKey, name, 0, REG_SZ, setVal)
-                    CloseKey(mruKey)
 
     def ramnit(self):
-        key = OpenKey(HKEY_LOCAL_MACHINE, "SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion", 0, KEY_SET_VALUE)
-
-        SetValueEx(key, "jfghdug_ooetvtgk", 0, REG_SZ, "TRUE")
-        CloseKey(key)
+        with OpenKey(
+            HKEY_LOCAL_MACHINE, "SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion", 0, KEY_SET_VALUE | KEY_WOW64_64KEY
+        ) as key:
+            SetValueEx(key, "jfghdug_ooetvtgk", 0, REG_SZ, "TRUE")
 
     """
     def netbios(self):
         try:
             # get netbios interface
             for path in ("CurrentControlSet", "ControlSet001", "ControlSet002"):
-                netbios_init = "System\\{}\\Services\\NetBT\\Parameters\\Interfaces\\".format(path)
-                netbios = OpenKey(HKEY_LOCAL_MACHINE, netbios_init,0, KEY_READ)
-                for currentKey in xrange(0, QueryInfoKey(netbios)[0]):
-                    subkey = EnumKey(netbios, currentKey)
-                    if  subkey.startswith("Tcpip_"):
-                        sub_netbios = OpenKey(HKEY_LOCAL_MACHINE, netbios_init+"\\"+subkey, 0, KEY_SET_VALUE)
-                        SetValueEx(sub_netbios, "NetbiosOptions", 0, REG_DWORD, 2)
-                        CloseKey(sub_netbios)
-                CloseKey(netbios)
+                netbios_init = f"System\\{path}\\Services\\NetBT\\Parameters\\Interfaces\\"
+                with OpenKey(HKEY_LOCAL_MACHINE, netbios_init,0, KEY_READ) as netbios:
+                    for currentKey in range(QueryInfoKey(netbios)[0]):
+                        subkey = EnumKey(netbios, currentKey)
+                        if  subkey.startswith("Tcpip_"):
+                            with OpenKey(HKEY_LOCAL_MACHINE, f"{netbios_init}\\{subkey}", 0, KEY_SET_VALUE) as sub_netbios:
+                                SetValueEx(sub_netbios, "NetbiosOptions", 0, REG_DWORD, 2)
 
             # disable lmhosts
-            lmhosts = OpenKey(HKEY_LOCAL_MACHINE, "System\\CurrentControlSet\\Services\\NetBT\\Parameters\\", 0, KEY_SET_VALUE)
-            SetValueEx(lmhosts, "EnableLMHOSTS", 0, REG_DWORD, 0)
-            CloseKey(sub_netbios)
+            with OpenKey(HKEY_LOCAL_MACHINE, "System\\CurrentControlSet\\Services\\NetBT\\Parameters\\", 0, KEY_SET_VALUE) as lmhosts:
+                SetValueEx(lmhosts, "EnableLMHOSTS", 0, REG_DWORD, 0)
 
         except Exception as e:
             print(e)
@@ -221,7 +214,7 @@ def netbios(self):
 
     def replace_reg_strings(self, regkey):
         regcmd = "C:\\Windows\\System32\\reg.exe"
-        filepath = os.path.join("C:\\Windows\\Temp", regkey.rstrip("\\").split("\\")[-1] + ".reg")
+        filepath = os.path.join("C:\\Windows\\Temp", regkey.rstrip("\\").rsplit("\\", 1)[-1] + ".reg")
 
         self.run_as_system([regcmd, "export", regkey, filepath, "/y"])
 
@@ -242,20 +235,21 @@ def replace_reg_strings(self, regkey):
     def randomizeUUID(self):
         createdUUID = str(uuid4())
 
-        log.info("Disguising GUID to " + str(createdUUID))
+        log.info("Disguising GUID to %s", createdUUID)
         keyPath = "SOFTWARE\\Microsoft\\Cryptography"
 
-        # Determing if the machine is 32 or 64 bit and open the registry key
-        if platform.machine().endswith('64'):
-            key = OpenKey(HKEY_LOCAL_MACHINE, keyPath, 0, KEY_SET_VALUE | KEY_WOW64_64KEY)
-        else:
-            key = OpenKey(HKEY_LOCAL_MACHINE, keyPath, 0, KEY_SET_VALUE)
+        with OpenKey(HKEY_LOCAL_MACHINE, keyPath, 0, KEY_SET_VALUE | KEY_WOW64_64KEY) as key:
+            # Replace the UUID with the new UUID
+            SetValueEx(key, "MachineGuid", 0, REG_SZ, createdUUID)
 
-        # Replace the UUID with the new UUID
-        SetValueEx(key, "MachineGuid", 0, REG_SZ, createdUUID)
-        CloseKey(key)
+    def add_persistent_route(self, gateway: str):
+        self.run_as_system(["C:\\Windows\\System32\\ROUTE.exe", "-p", "add", "0.0.0.0", "mask", "0.0.0.0", gateway])
+        self.run_as_system(["C:\\Windows\\System32\\ROUTE.exe", "-p", "change", "0.0.0.0", "mask", "0.0.0.0", gateway])
 
     def start(self):
+        if self.config.windows_static_route:
+            log.info("Config for route is: %s", str(self.config.windows_static_route))
+            self.add_persistent_route(self.config.windows_static_route_gateway)
         self.change_productid()
         self.set_office_mrus()
         self.ramnit()
@@ -264,4 +258,5 @@ def start(self):
         # self.netbios()
         # self.replace_reg_strings('HKLM\\SYSTEM\\CurrentControlSet\\Enum\\IDE')
         # self.replace_reg_strings('HKLM\\SYSTEM\\CurrentControlSet\\Enum\\SCSI')
+
         return True
diff --git a/analyzer/windows/modules/auxiliary/dns_etw.py b/analyzer/windows/modules/auxiliary/dns_etw.py
new file mode 100644
index 00000000000..093d50f7288
--- /dev/null
+++ b/analyzer/windows/modules/auxiliary/dns_etw.py
@@ -0,0 +1,230 @@
+import json
+import logging
+import os
+import pprint
+from collections.abc import Iterable, Mapping
+
+from lib.common.abstracts import Auxiliary
+from lib.common.results import upload_to_host
+from lib.core.config import Config
+
+log = logging.getLogger(__name__)
+
+SAFELIST = []
+
+ETW = False
+HAVE_ETW = False
+try:
+    from etw import ETW, ProviderInfo
+    from etw import evntrace as et
+    from etw.GUID import GUID
+
+    HAVE_ETW = True
+except ImportError as e:
+    log.debug(
+        "Could not load auxiliary module DNS_ETW due to '%s'\nIn order to use DNS_ETW functionality, it "
+        "is required to have pywintrace setup in python", str(e)
+    )
+
+__author__ = "[Canadian Centre for Cyber Security] @CybercentreCanada"
+
+
+def encode(data, encoding="utf-8"):
+    if isinstance(data, str):
+        return data.encode(encoding, "ignore")
+    elif isinstance(data, Mapping):
+        return dict(map(encode, data.items()))
+    elif isinstance(data, Iterable):
+        return type(data)(map(encode, data))
+    else:
+        return data
+
+
+if HAVE_ETW:
+
+    class ETW_provider(ETW):
+        def __init__(
+            self,
+            ring_buf_size=1024,
+            max_str_len=1024,
+            min_buffers=0,
+            max_buffers=0,
+            level=et.TRACE_LEVEL_INFORMATION,
+            any_keywords=None,
+            all_keywords=None,
+            filters=None,
+            event_callback=None,
+            logfile=None,
+            no_conout=False,
+        ):
+            """
+            Initializes an instance of DNS_ETW. The default parameters represent a very typical use case and should not be
+            overridden unless the user knows what they are doing.
+
+            :param ring_buf_size: The size of the ring buffer used for capturing events.
+            :param max_str_len: The maximum length of the strings the proceed the structure.
+                                Unless you know what you are doing, do not modify this value.
+            :param min_buffers: The minimum number of buffers for an event tracing session.
+                                Unless you know what you are doing, do not modify this value.
+            :param max_buffers: The maximum number of buffers for an event tracing session.
+                                Unless you know what you are doing, do not modify this value.
+            :param level: Logging level
+            :param any_keywords: List of keywords to match
+            :param all_keywords: List of keywords that all must match
+            :param filters: List of filters to apply to capture.
+            :param event_callback: Callback for processing events
+            :param logfile: Path to logfile.
+            :param no_conout: If true does not output live capture to console.
+            """
+
+            self.logfile = logfile
+            self.no_conout = no_conout
+            if event_callback:
+                self.event_callback = event_callback
+            else:
+                self.event_callback = self.on_event
+
+            providers = [
+                ProviderInfo(
+                    "Microsoft-Windows-DNS-Client",
+                    GUID("{1C95126E-7EEA-49A9-A3FE-A378B03DDB4D}"),
+                    level,
+                    any_keywords,
+                    all_keywords,
+                )
+            ]
+            self.event_id_filters = [3010, 3020, 60101]
+            super().__init__(
+                session_name="ETW_DNS",
+                ring_buf_size=ring_buf_size,
+                max_str_len=max_str_len,
+                min_buffers=min_buffers,
+                max_buffers=max_buffers,
+                event_callback=self.event_callback,
+                task_name_filters=filters,
+                providers=providers,
+                event_id_filters=self.event_id_filters,
+            )
+
+        def on_event(self, event_tufo):
+            """
+            Starts the capture using ETW.
+            :param event_tufo: tufo containing event information
+            :param logfile: Path to logfile.
+            :param no_conout: If true does not output live capture to console.
+            :return: Does not return anything.
+            """
+            event_id, event = event_tufo
+            # We can filter events based on whatever criteria here in event_tufo/event/event_id
+            if event_id not in self.event_id_filters:
+                return
+            if self.no_conout is False:
+                log.info("%d (%s)\n%s\n", event_id, event["Task Name"], pprint.pformat(encode(event)))
+            if event["QueryName"] in SAFELIST:
+                return
+            # Event 3010 query
+            # Pid --> event["EventHeader"]["ProcessId"]
+            # threadid --> event["EventHeader"]["ThreadId"]
+            # queryname --> event["QueryName"]
+            # dnsserveraddress --> event["DnsServerIpAddress"]
+            # Event 3020 response
+            # Pid --> event["EventHeader"]["ProcessId"]
+            # threadid --> event["EventHeader"]["ThreadId"]
+            # queryname --> event["QueryName"]
+            if self.logfile is not None:
+                with open(self.logfile, "a") as file:
+                    if event_id == 3010:
+                        printed_events = {
+                            "QueryType": "Query",
+                            "ProcessId": event["EventHeader"]["ProcessId"],
+                            "ThreadId": event["EventHeader"]["ThreadId"],
+                            "QueryName": event["QueryName"],
+                            "DNS Server": event["DnsServerIpAddress"],
+                        }
+                        json.dump(printed_events, file)
+                        file.write("\n")
+                    elif event_id == 3020:
+                        printed_events = {
+                            "QueryType": "Response",
+                            "ProcessId": event["EventHeader"]["ProcessId"],
+                            "ThreadId": event["EventHeader"]["ThreadId"],
+                            "QueryName": event["QueryName"],
+                        }
+                        json.dump(printed_events, file)
+                        file.write("\n")
+                    else:
+                        json.dump(event, file)
+                        file.write("\n")
+
+        def start(self):
+            # do pre-capture setup
+            self.do_capture_setup()
+            super().start()
+
+        def stop(self):
+            super().stop()
+            # do post-capture teardown
+            self.do_capture_teardown()
+
+        def do_capture_setup(self):
+            # do whatever setup for capture here
+            pass
+
+        def do_capture_teardown(self):
+            # do whatever for capture teardown here
+            pass
+
+    class DNS_ETW(Auxiliary):
+        """ETW logging"""
+
+        def __init__(self, options, config):
+            Auxiliary.__init__(self, options, config)
+            self.config = Config(cfg="analysis.conf")
+            self.enabled = self.config.dns_etw
+            self.do_run = self.enabled
+            self.output_dir = "C:\\\\etw_dns"
+            self.log_file = os.path.join(self.output_dir, "dns_provider.log")
+            if HAVE_ETW:
+                self.capture = ETW_provider(logfile=self.log_file, level=255, no_conout=True)
+
+        def start(self):
+            if not self.enabled or not HAVE_ETW:
+                return False
+            try:
+                log.debug("Starting DNS ETW")
+                # Start DNS_ETW_provider in the background
+                self.capture.start()
+            except Exception as e:
+                print(e)
+                import traceback
+
+                log.exception(traceback.format_exc())
+            return True
+
+        def stop(self):
+            if not HAVE_ETW:
+                return
+            log.debug("Stopping!!!")
+            self.capture.stop()
+            files_to_upload = set()
+
+            for d in os.listdir(self.output_dir):
+                path = os.path.join(self.output_dir, d)
+                if os.path.isfile(path):
+                    files_to_upload.add(path)
+                    continue
+                for f in os.listdir(path):
+                    file_path = os.path.join(path, f)
+                    files_to_upload.add(file_path)
+                continue
+
+            # Upload the ETW log files to the host.
+            log.debug(files_to_upload)
+            for f in files_to_upload:
+                # Prepend file name with etw to indicate DNS_ETW
+                # file_path_list = f.split("\\")
+                # file_name = file_path_list[-1]
+                # process = file_path_list[-2]
+                dumppath = os.path.join("DNS_ETW", "etw_dns.json")
+                log.debug("DNS_ETW Aux Module is uploading %s", f)
+                upload_to_host(f, dumppath)
diff --git a/analyzer/windows/modules/auxiliary/during_script.py b/analyzer/windows/modules/auxiliary/during_script.py
new file mode 100644
index 00000000000..e3c7bc8f638
--- /dev/null
+++ b/analyzer/windows/modules/auxiliary/during_script.py
@@ -0,0 +1,97 @@
+import glob
+import logging
+import os
+import subprocess
+from threading import Thread
+
+from lib.common.abstracts import Auxiliary
+from lib.common.results import NetlogFile
+from lib.core.config import Config
+
+log = logging.getLogger(__name__)
+
+
+class During_script(Thread, Auxiliary):
+    # De-priortise during_script to run last in Auxiliary
+    start_priority = -10
+
+    def __init__(self, options=None, config=None):
+        if options is None:
+            options = {}
+        Thread.__init__(self)
+        Auxiliary.__init__(self, options, config)
+        self.config = Config(cfg="analysis.conf")
+        self.enabled = self.config
+        # Go to the temp folder to look for during_script.py
+        tmp_folder = os.environ["TEMP"]
+        matched_files = glob.glob(os.path.join(tmp_folder, "during_script.*"))
+
+        # Check if the file exists and if the during_script is enabled
+        if matched_files and self.enabled.during_script:
+            log.debug("during_script matched_files: %s", matched_files)
+            self.file_path = matched_files[0]
+            self.file_ext = os.path.splitext(self.file_path)[-1]
+            self.do_run = True
+            if self.file_ext == ".py":
+                self.executable = ["python.exe", "-u"]
+            elif self.file_ext == ".ps1":
+                self.executable = ["powershell.exe", "-NoProfile", "-ExecutionPolicy", "bypass", "-File"]
+            else:
+                self.executable = ["powershell.exe"]
+
+            during_script_args = self.options.get("during_script_args", [])
+            if during_script_args:
+                try:
+                    self.during_script_args_list = during_script_args.split(" ")
+                except AttributeError:
+                    self.during_script_args_list = during_script_args
+            else:
+                self.during_script_args_list = []
+        else:
+            self.do_run = False
+
+    def run(self):
+        if not self.do_run:
+            return
+        try:
+            nf = NetlogFile()
+            nf.init("logs/during_script.log")
+            self.executable.append(self.file_path)
+            if isinstance(self.during_script_args_list, list):
+                for args in self.during_script_args_list:
+                    self.executable.append(args)
+            else:
+                self.executable.append(self.during_script_args_list)
+            log.info("During_script command: %s", " ".join(self.executable))
+            popen = subprocess.Popen(self.executable, bufsize=0, stdout=subprocess.PIPE, stderr=subprocess.PIPE)
+
+            self.popen = popen
+            self.nf = nf
+        except Exception as e:
+            log.error("Error running during_script due to error: %s", e)
+            return False
+        return True
+
+    def stop(self):
+        self.do_run = False
+
+        popen = self.popen
+        nf = self.nf
+        log.info("Stopping during_script")
+        try:
+            return_code = popen.poll()
+            if return_code is None:
+                popen.terminate()
+
+            stdout_data, stderr_data = popen.communicate()
+            nf.sock.send(stdout_data)
+            if stderr_data:
+                nf.sock.send(b"Process stderr\n")
+                nf.sock.send(b"--------------\n")
+                nf.sock.send(stderr_data)
+                raise subprocess.CalledProcessError(return_code, str(self.executable))
+            nf.close()
+        except Exception as e:
+            log.error("Error running during_script due to error: %s", e)
+            return False
+        return True
diff --git a/analyzer/windows/modules/auxiliary/evtx.py b/analyzer/windows/modules/auxiliary/evtx.py
new file mode 100644
index 00000000000..1899812f736
--- /dev/null
+++ b/analyzer/windows/modules/auxiliary/evtx.py
@@ -0,0 +1,233 @@
+import itertools
+import logging
+import os
+import subprocess
+import zipfile
+from threading import Thread
+
+from lib.common.abstracts import Auxiliary
+from lib.common.results import upload_to_host
+
+log = logging.getLogger(__name__)
+
+
+class Evtx(Thread, Auxiliary):
+    evtx_dump = "evtx.zip"
+
+    windows_logs = [
+        "Application",
+        "HardwareEvents",
+        "Internet Explorer",
+        "Key Management Service",
+        "OAlerts",
+        "Security",
+        "Setup",
+        "System",
+        "Windows PowerShell",
+        "Microsoft-Windows-Sysmon/Operational",
+    ]
+
+    def __init__(self, options=None, config=None):
+        if options is None:
+            options = {}
+        Thread.__init__(self)
+        Auxiliary.__init__(self, options, config)
+        self.enabled = config.evtx
+        self.startupinfo = subprocess.STARTUPINFO()
+        self.startupinfo.dwFlags |= subprocess.STARTF_USESHOWWINDOW
+
+    def enable_advanced_logging(self):
+        """
+        Enable Windows advanced audit features
+            ref: https://www.ultimatewindowssecurity.com/wiki/page.aspx?spid=RecBaselineAudPol
+        """
+        advanced_audit_policies = [
+            {"Security State Change": {"success": "enable", "failure": "enable"}},
+            {"Security System Extension": {"success": "enable", "failure": "enable"}},
+            {"System Integrity": {"success": "enable", "failure": "enable"}},
+            {"IPsec Driver": {"success": "disable", "failure": "disable"}},
+            {"Other System Events": {"success": "disable", "failure": "enable"}},
+            {"Logon": {"success": "enable", "failure": "enable"}},
+            {"Logoff": {"success": "enable", "failure": "enable"}},
+            {"Account Lockout": {"success": "enable", "failure": "enable"}},
+            {"IPsec Main Mode": {"success": "disable", "failure": "disable"}},
+            {"IPsec Quick Mode": {"success": "disable", "failure": "disable"}},
+            {"IPsec Extended Mode": {"success": "disable", "failure": "disable"}},
+            {"Other Logon/Logoff Events": {"success": "enable", "failure": "enable"}},
+            {"Network Policy Server": {"success": "enable", "failure": "enable"}},
+            {"Special Logon": {"success": "enable", "failure": "enable"}},
+            {"File System": {"success": "enable", "failure": "enable"}},
+            {"Registry": {"success": "enable", "failure": "enable"}},
+            {"Kernel Object": {"success": "enable", "failure": "enable"}},
+            {"SAM": {"success": "disable", "failure": "disable"}},
+            {"Certification Services": {"success": "enable", "failure": "enable"}},
+            {"Handle Manipulation": {"success": "disable", "failure": "disable"}},
+            {"Application Generated": {"success": "enable", "failure": "enable"}},
+            {"File Share": {"success": "enable", "failure": "enable"}},
+            {
+                "Filtering Platform Packet Drop": {
+                    "success": "disable",
+                    "failure": "disable",
+                }
+            },
+            {
+                "Filtering Platform Connection": {
+                    "success": "disable",
+                    "failure": "disable",
+                }
+            },
+            {
+                "Other Object Access Events": {
+                    "success": "disable",
+                    "failure": "disable",
+                }
+            },
+            {"Sensitive Privilege Use": {"success": "disable", "failure": "disable"}},
+            {
+                "Non Sensitive Privilege Use": {
+                    "success": "disable",
+                    "failure": "disable",
+                }
+            },
+            {
+                "Other Privilege Use Events": {
+                    "success": "disable",
+                    "failure": "disable",
+                }
+            },
+            {"RPC Events": {"success": "enable", "failure": "enable"}},
+            {"Audit Policy Change": {"success": "enable", "failure": "enable"}},
+            {
+                "Authentication Policy Change": {
+                    "success": "enable",
+                    "failure": "enable",
+                }
+            },
+            {
+                "MPSSVC Rule-Level Policy Change": {
+                    "success": "disable",
+                    "failure": "disable",
+                }
+            },
+            {
+                "Filtering Platform Policy Change": {
+                    "success": "disable",
+                    "failure": "disable",
+                }
+            },
+            {"Other Policy Change Events": {"success": "disable", "failure": "enable"}},
+            {"User Account Management": {"success": "enable", "failure": "enable"}},
+            {"Computer Account Management": {"success": "enable", "failure": "enable"}},
+            {"Security Group Management": {"success": "enable", "failure": "enable"}},
+            {
+                "Distribution Group Management": {
+                    "success": "enable",
+                    "failure": "enable",
+                }
+            },
+            {
+                "Application Group Management": {
+                    "success": "enable",
+                    "failure": "enable",
+                }
+            },
+            {
+                "Other Account Management Events": {
+                    "success": "enable",
+                    "failure": "enable",
+                }
+            },
+            {"Directory Service Access": {"success": "enable", "failure": "enable"}},
+            {"Directory Service Changes": {"success": "enable", "failure": "enable"}},
+            {
+                "Directory Service Replication": {
+                    "success": "disable",
+                    "failure": "enable",
+                }
+            },
+            {
+                "Detailed Directory Service Replication": {
+                    "success": "disable",
+                    "failure": "disable",
+                }
+            },
+            {"Credential Validation": {"success": "enable", "failure": "enable"}},
+            {
+                "Kerberos Service Ticket Operations": {
+                    "success": "enable",
+                    "failure": "enable",
+                }
+            },
+            {"Other Account Logon Events": {"success": "enable", "failure": "enable"}},
+            {
+                "Kerberos Authentication Service": {
+                    "success": "enable",
+                    "failure": "enable",
+                }
+            },
+        ]
+        for policy in advanced_audit_policies:
+            for subcategory, settings in policy.items():
+                try:
+                    cmd = (
+                        f'auditpol /set /subcategory:"{subcategory}" /success:{settings["success"]} /failure:{settings["failure"]}'
+                    )
+                    log.debug("Enabling advanced logging -> %s", cmd)
+                    subprocess.call(
+                        cmd,
+                        startupinfo=self.startupinfo,
+                    )
+                except Exception as err:
+                    log.error("Cannot enable advanced logging for subcategory %s - %s", subcategory, err)
+
+    def collect_windows_logs(self):
+        """
+        Collect selected evtx files, as specified in self.windows_logs
+        """
+
+        logs_folder = None
+        try:
+            logs_folder = "C:/windows/Sysnative/winevt/Logs"
+            os.listdir(logs_folder)
+        except Exception:
+            logs_folder = "C:/Windows/System32/winevt/Logs"
+
+        with zipfile.ZipFile(self.evtx_dump, "w", zipfile.ZIP_DEFLATED) as zip_obj:
+            for evtx_file_name, selected_evtx in itertools.product(os.listdir(logs_folder), self.windows_logs):
+                _selected_evtx = f"{selected_evtx}.evtx"
+                _selected_evtx = _selected_evtx.replace("/", "%4")
+                if _selected_evtx == evtx_file_name:
+                    full_path = os.path.join(logs_folder, evtx_file_name)
+                    if os.path.exists(full_path):
+                        log.debug("Adding %s to zip dump", full_path)
+                        zip_obj.write(full_path, evtx_file_name)
+
+        log.debug("Uploading %s to host", self.evtx_dump)
+        upload_to_host(self.evtx_dump, f"evtx/{self.evtx_dump}")
+
+    def wipe_windows_logs(self):
+        """
+        Wipe sequentially Windows logs
+        """
+        try:
+            for evtx_channel in self.windows_logs:
+                cmd = f"wevtutil cl {evtx_channel}"
+                log.debug("Wiping %s", evtx_channel)
+                subprocess.call(
+                    cmd,
+                    startupinfo=self.startupinfo,
+                )
+        except Exception as err:
+            log.error("Module error - %s", err)
+
+    def run(self):
+        if self.enabled:
+            self.enable_advanced_logging()
+            self.wipe_windows_logs()
+            return True
+        return False
+
+    def stop(self):
+        if self.enabled:
+            self.collect_windows_logs()
+        return True
diff --git a/analyzer/windows/modules/auxiliary/filepickup.py b/analyzer/windows/modules/auxiliary/filepickup.py
new file mode 100644
index 00000000000..fbfa3e6059f
--- /dev/null
+++ b/analyzer/windows/modules/auxiliary/filepickup.py
@@ -0,0 +1,35 @@
+import logging
+import os
+
+from lib.common.abstracts import Auxiliary
+from lib.common.results import upload_to_host
+
+log = logging.getLogger(__name__)
+
+
+__author__ = "[Canadian Centre for Cyber Security] @CybercentreCanada"
+
+
+class FilePickup(Auxiliary):
+    """In cases where you want to run something with 'free=yes' but know that a file will be generated,
+    you can use this aux module to tell CAPE to pick up the file"""
+
+    def __init__(self, options, config):
+        Auxiliary.__init__(self, options, config)
+        self.enabled = config.file_pickup
+        self.do_run = self.enabled
+
+    def start(self):
+        if not self.options.get("filepickup"):
+            self.do_run = False
+            return True
+
+        self.file_to_get = self.options.get("filepickup")
+
+    def stop(self):
+        if hasattr(self, "file_to_get"):
+            if self.file_to_get:
+                log.info("Uploading %s", self.file_to_get)
+                upload_to_host(self.file_to_get, os.path.join("files", os.path.basename(self.file_to_get)))
+
+        self.do_run = False
diff --git a/analyzer/windows/modules/auxiliary/human.py b/analyzer/windows/modules/auxiliary/human.py
index 3fd1c1b59fe..0f0192e7a4a 100644
--- a/analyzer/windows/modules/auxiliary/human.py
+++ b/analyzer/windows/modules/auxiliary/human.py
@@ -1,161 +1,294 @@
 #!/usr/bin/env python
+# -*- coding: utf-8 -*-
 # Copyright (C) 2010-2015 Cuckoo Foundation, Optiv, Inc. (brad.spengler@optiv.com)
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-import random
+import contextlib
 import logging
+import random
+import re
 import traceback
+from ctypes import POINTER, WINFUNCTYPE, byref, c_bool, c_int, create_unicode_buffer, memmove, sizeof, wintypes
+from datetime import datetime, timedelta
+from math import floor
 from threading import Thread
-from ctypes import WINFUNCTYPE, POINTER
-from ctypes import c_bool, c_int, create_unicode_buffer, create_string_buffer, memmove, sizeof
 
 from lib.common.abstracts import Auxiliary
-from lib.common.defines import KERNEL32, USER32
-from lib.common.defines import WM_GETTEXT, WM_GETTEXTLENGTH, WM_CLOSE, BM_CLICK
-from lib.common.defines import GMEM_MOVEABLE, CF_TEXT
+from lib.common.defines import (
+    BM_CLICK,
+    BM_GETCHECK,
+    BM_SETCHECK,
+    BST_CHECKED,
+    CF_TEXT,
+    GMEM_MOVEABLE,
+    KERNEL32,
+    USER32,
+    WM_CLOSE,
+    WM_GETTEXT,
+    WM_GETTEXTLENGTH,
+)
 
 log = logging.getLogger(__name__)
 
 EnumWindowsProc = WINFUNCTYPE(c_bool, POINTER(c_int), POINTER(c_int))
 EnumChildProc = WINFUNCTYPE(c_bool, POINTER(c_int), POINTER(c_int))
 
-RESOLUTION = {"x": USER32.GetSystemMetrics(0), "y": USER32.GetSystemMetrics(1)}
+CURSOR_POSITION_REGEX = r"\((\d+):(\d+)\)"
+WAIT_REGEX = r"WAIT(\d+)"
+INTERVAL_REGEX = r"INTERVAL(\d+)"
+
+# Enums for mouse instruction commands
+CLICK_CMD = "click"
+INTERVAL_CMD = "interval"
+STOP_CMD = "stop"
+WAIT_CMD = "wait"
+
+SM_CXSCREEN = 0
+SM_CYSCREEN = 1
+SM_CXFULLSCREEN = 16
+SM_CYFULLSCREEN = 17
+RESOLUTION = {"x": USER32.GetSystemMetrics(SM_CXSCREEN), "y": USER32.GetSystemMetrics(SM_CYSCREEN)}
+RESOLUTION_WITHOUT_TASKBAR = {"x": USER32.GetSystemMetrics(SM_CXFULLSCREEN), "y": USER32.GetSystemMetrics(SM_CYFULLSCREEN)}
 
 INITIAL_HWNDS = []
+# This global constant will contain the list of mouse instructions to action on the task, if applicable
+GIVEN_INSTRUCTIONS = []
+CLOSED_DOCUMENT_WINDOW = False
+DOCUMENT_WINDOW_CLICK_AROUND = False
+
+CLICK_BUTTONS = (
+    # english
+    "yes",
+    "ok",
+    "accept",
+    "next",
+    "install",
+    "run",
+    "agree",
+    "enable",
+    "retry",
+    "don't send",
+    "don't save",
+    "continue",
+    "connect",
+    "unzip",
+    "open",
+    "close the program",
+    "save",
+    "later",
+    "finish",
+    "end",
+    "keep",
+    "allow access",
+    "remind me later",
+    # german
+    "ja",
+    "weiter",
+    "akzeptieren",
+    "ende",
+    "starten",
+    "jetzt starten",
+    "neustarten",
+    "neu starten",
+    "jetzt neu starten",
+    "beenden",
+    "oeffnen",
+    "schliessen",
+    "installation weiterfuhren",
+    "fertig",
+    "beenden",
+    "fortsetzen",
+    "fortfahren",
+    "stimme zu",
+    "zustimmen",
+    "senden",
+    "nicht senden",
+    "speichern",
+    "nicht speichern",
+    "ausfuehren",
+    "spaeter",
+    "einverstanden",
+    # ru
+    "установить",
+)
+
+DONT_CLICK_BUTTONS = (
+    # english
+    "check online for a solution",
+    "don't ask me again for remote connections from this publisher",
+    "don't run",
+    "do not ask again until the next update is available",
+    "cancel",
+    "do not accept the agreement",
+    "i would like to help make reader even better",
+    "restart now",
+    # german
+    "abbrechen",
+    "online nach losung suchen",
+    "abbruch",
+    "nicht ausfuehren",
+    "hilfe",
+    "stimme nicht zu",
+    # ru
+    "приoстановить",
+    "отмена",
+)
+
+OFFICE_WINDOW_CLASSES = (
+    "nuidialog",
+    "bosa_sdm_msword",
+)
+
+
+def get_cursor_position():
+    pt = wintypes.POINT()
+    USER32.GetCursorPos(byref(pt))
+    return {"x": pt.x, "y": pt.y}
+
+
+def cursor_over_console_window():
+    # Get current cursor position
+    pt = wintypes.POINT()
+    USER32.GetCursorPos(byref(pt))
+
+    # Get the window handle at the cursor position
+    hwnd = USER32.WindowFromPoint(pt)
+
+    if not hwnd:
+        return False
+
+    # Check if the window is visible
+    if not USER32.IsWindowVisible(hwnd):
+        return False
+
+    # Get the window's class name
+    classname_ptr = create_unicode_buffer(128)
+    USER32.GetClassNameW(hwnd, classname_ptr, 128)
+    classname = str(classname_ptr.value)
+
+    terminal_classes = ["ConsoleWindowClass",]
+    return any(cls in classname for cls in terminal_classes)
+
+
+def get_window_text(hwnd):
+    length = USER32.SendMessageW(hwnd, WM_GETTEXTLENGTH, 0, 0)
+    if length == 0:
+        return ""
+    text = create_unicode_buffer(length + 1)
+    USER32.SendMessageW(hwnd, WM_GETTEXT, length + 1, text)
+    return text.value.replace("&", "")
+
+
+def is_button_checked(hwnd):
+    return bool(USER32.SendMessageW(hwnd, BM_GETCHECK, 0, 0) == BST_CHECKED)
+
+
+def send_click(hwnd):
+    USER32.SetForegroundWindow(hwnd)
+    KERNEL32.Sleep(1000)
+    USER32.SendMessageW(hwnd, BM_CLICK, 0, 0)
+
+
+def click_button(hwnd, classname):
+    button_text = get_window_text(hwnd)
+    if button_text == "":
+        return True
+
+    if not USER32.IsWindowEnabled(hwnd):
+        # Ignore buttons that are disabled
+        return True
+
+    if "Microsoft" in button_text and classname in OFFICE_WINDOW_CLASSES:
+        log.info("Issuing keypress on Office dialog")
+        USER32.SetForegroundWindow(hwnd)
+        # enter key down event
+        USER32.keybd_event(0x0D, 0x1C, 0, 0)
+        # enter key up event
+        USER32.keybd_event(0x0D, 0x1C, 2, 0)
+        return False
+
+    # Check if the button is set as "clickable" and click it.
+    button_text = button_text.lower()
+
+    ignore_matches = [text for text in DONT_CLICK_BUTTONS if text in button_text]
+    if ignore_matches:
+        return True
+
+    click_matches = [text for text in CLICK_BUTTONS if text in button_text]
+    if click_matches:
+        log.info('Found button "%s", clicking it', button_text)
+        send_click(hwnd)
+        # only stop searching when we click a button
+        return False
+    # continue searching through windows
+    return True
+
+
+def check_button(hwnd):
+    if is_button_checked(hwnd):
+        return True
+
+    button_text = get_window_text(hwnd).lower()
+
+    ignore_matches = [text for text in DONT_CLICK_BUTTONS if text in button_text]
+    if ignore_matches:
+        return True
 
-CLOSED_OFFICE = False
-
-
-def foreach_child(hwnd, lparam):
-    # List of buttons labels to click.
-    buttons = [
-        # english
-        "yes",
-        "ok",
-        "accept",
-        "next",
-        "install",
-        "run",
-        "agree",
-        "enable",
-        "retry",
-        "don't send",
-        "don't save",
-        "continue",
-        "unzip",
-        "open",
-        "close the program",
-        "save",
-        "later",
-        "finish",
-        "end",
-        "allow access",
-        "remind me later",
-        # german
-        "ja",
-        "weiter",
-        "akzeptieren",
-        "ende",
-        "starten",
-        "jetzt starten",
-        "neustarten",
-        "neu starten",
-        "jetzt neu starten",
-        "beenden",
-        "oeffnen",
-        "schliessen",
-        "installation weiterfuhren",
-        "fertig",
-        "beenden",
-        "fortsetzen",
-        "fortfahren",
-        "stimme zu",
-        "zustimmen",
-        "senden",
-        "nicht senden",
-        "speichern",
-        "nicht speichern",
-        "ausfuehren",
-        "spaeter",
-        "einverstanden",
-    ]
-
-    # List of buttons labels to not click.
-    dontclick = [
-        # english
-        "check online for a solution",
-        "don't run",
-        "do not ask again until the next update is available",
-        "cancel",
-        "do not accept the agreement",
-        "i would like to help make reader even better",
-        # german
-        "abbrechen",
-        "online nach losung suchen",
-        "abbruch",
-        "nicht ausfuehren",
-        "hilfe",
-        "stimme nicht zu",
-    ]
-
-    classname = create_unicode_buffer(128)
-    USER32.GetClassNameW(hwnd, classname, 128)
-
-    # Check if the class of the child is button.
-    if "button" in classname.value.lower() or classname.value in ("NUIDialog", "bosa_sdm_msword"):
-        # Get the text of the button.
-        length = USER32.SendMessageW(hwnd, WM_GETTEXTLENGTH, 0, 0)
-        if not length:
-            return True
-        text = create_unicode_buffer(length + 1)
-        USER32.SendMessageW(hwnd, WM_GETTEXT, length + 1, text)
-        textval = text.value.replace("&", "")
-        if "Microsoft" in textval and (classname.value in ("NUIDialog", "bosa_sdm_msword")):
-            log.info("Issuing keypress on Office dialog")
-            USER32.SetForegroundWindow(hwnd)
-            # enter key down/up
-            USER32.keybd_event(0x0D, 0x1C, 0, 0)
-            USER32.keybd_event(0x0D, 0x1C, 2, 0)
-            return False
-
-        # we don't want to bother clicking any non-visible child elements, as they
-        # generally won't respond and will cause us to fixate on them for the
-        # rest of the analysis, preventing progress with visible elements
-
-        if not USER32.IsWindowVisible(hwnd):
-            return True
-
-        # Check if the button is set as "clickable" and click it.
-        for button in buttons:
-            if button in textval.lower():
-                dontclickb = False
-                for btn in dontclick:
-                    if btn in textval.lower():
-                        dontclickb = True
-                if not dontclickb:
-                    log.info('Found button "%s", clicking it' % text.value)
-                    USER32.SetForegroundWindow(hwnd)
-                    KERNEL32.Sleep(1000)
-                    USER32.SendMessageW(hwnd, BM_CLICK, 0, 0)
-                    # only stop searching when we click a button
-                    return False
+    matches = [text for text in CLICK_BUTTONS if text in button_text]
+    if matches:
+        log.info('Found checkable button "%s", checking it', button_text)
+        # try clicking it first
+        send_click(hwnd)
+        if not is_button_checked(hwnd):
+            # if it's still unchecked, check it
+            USER32.SendMessageW(hwnd, BM_SETCHECK, BST_CHECKED, 0)
+        # only stop searching when we click a checkbox
+        return False
+    # continue searching through windows
+    return True
+
+
+def is_button(classname):
+    return bool("button" in classname or ("button" not in classname and classname in OFFICE_WINDOW_CLASSES))
+
+
+def is_checkbox(classname):
+    return "checkbox" in classname
+
+
+def is_radio_button(classname):
+    return "radiobutton" in classname
+
+
+def interact_with_window(hwnd, lparam):
+    # we don't want to bother clicking any non-visible child elements, as they
+    # generally won't respond and will cause us to fixate on them for the
+    # rest of the analysis, preventing progress with visible elements
+    if not USER32.IsWindowVisible(hwnd):
+        return True
+
+    classname_ptr = create_unicode_buffer(128)
+    USER32.GetClassNameW(hwnd, classname_ptr, 128)
+    classname = str(classname_ptr.value).lower()
+
+    if is_checkbox(classname) or is_radio_button(classname):
+        return check_button(hwnd)
+    elif is_button(classname):
+        return click_button(hwnd, classname)
+    # continue searching through windows
     return True
 
 
 # Callback procedure invoked for every enumerated window.
-def foreach_window(hwnd, lparam):
-    # If the window is visible, enumerate its child objects, looking
-    # for buttons.
-    if USER32.IsWindowVisible(hwnd):
-        # we also want to inspect the "parent" windows, not just the children
-        foreach_child(hwnd, lparam)
-        USER32.EnumChildWindows(hwnd, EnumChildProc(foreach_child), 0)
+def handle_window_interaction(hwnd, lparam):
+    # we also want to inspect the "parent" windows, not just the children
+    interact_with_window(hwnd, lparam)
+    USER32.EnumChildWindows(hwnd, EnumChildProc(interact_with_window), 0)
     return True
 
 
-def getwindowlist(hwnd, lparam):
+def get_window_list(hwnd, lparam):
     global INITIAL_HWNDS
     if USER32.IsWindowVisible(hwnd):
         INITIAL_HWNDS.append(hwnd)
@@ -163,8 +296,9 @@ def getwindowlist(hwnd, lparam):
 
 
 def move_mouse():
-    x = random.randint(0, RESOLUTION["x"])
-    y = random.randint(0, RESOLUTION["y"])
+    # To avoid mousing over desktop icons, use 1/4 of the total resolution as the starting pixel
+    x = random.randint(RESOLUTION_WITHOUT_TASKBAR["x"] // 4, RESOLUTION_WITHOUT_TASKBAR["x"])
+    y = random.randint(0, RESOLUTION_WITHOUT_TASKBAR["y"])
 
     # Originally was:
     # USER32.mouse_event(0x8000, x, y, 0, None)
@@ -176,8 +310,6 @@ def move_mouse():
 
 
 def click_mouse():
-    # Move mouse to top-middle position.
-    USER32.SetCursorPos(int(RESOLUTION["x"] / 2), 0)
     # Mouse down.
     USER32.mouse_event(2, 0, 0, 0, None)
     KERNEL32.Sleep(50)
@@ -185,59 +317,202 @@ def click_mouse():
     USER32.mouse_event(4, 0, 0, 0, None)
 
 
+def click_around(hwnd, workable_range_x, workable_range_y):
+    USER32.SetForegroundWindow(hwnd)
+    # first click the middle
+    USER32.SetCursorPos(RESOLUTION["x"] // 2, RESOLUTION["y"] // 2)
+    click_mouse()
+    KERNEL32.Sleep(50)
+    click_mouse()
+    KERNEL32.Sleep(500)
+    # click through the middle with offset for cell position on side and scroll bar
+    if not GIVEN_INSTRUCTIONS:
+        x = workable_range_x[0]
+        while x < workable_range_x[1]:
+            # make sure the window still exists
+            if USER32.IsWindowVisible(hwnd):
+                USER32.SetForegroundWindow(hwnd)
+                USER32.SetCursorPos(x, RESOLUTION["y"] // 2)
+                click_mouse()
+                KERNEL32.Sleep(50)
+                click_mouse()
+                KERNEL32.Sleep(50)
+                if not USER32.IsWindowVisible(hwnd):
+                    break
+                USER32.SetForegroundWindow(hwnd)
+                USER32.SetCursorPos(x, random.randint(workable_range_y[0], workable_range_y[1]))
+                click_mouse()
+                KERNEL32.Sleep(50)
+                click_mouse()
+                KERNEL32.Sleep(50)
+                if not USER32.IsWindowVisible(hwnd):
+                    break
+                USER32.SetForegroundWindow(hwnd)
+                USER32.SetCursorPos(x, random.randint(workable_range_y[0], workable_range_y[1]))
+                click_mouse()
+                KERNEL32.Sleep(50)
+                click_mouse()
+                KERNEL32.Sleep(50)
+                x += random.randint(150, 200)
+                KERNEL32.Sleep(50)
+            else:
+                log.info("Breaking out of document window click loop as our window went away")
+                break
+    else:
+        # We have instructions, now let's execute them!
+        for instruction in GIVEN_INSTRUCTIONS:
+            if USER32.IsWindowVisible(hwnd):
+                USER32.SetForegroundWindow(hwnd)
+                if instruction.lower() == CLICK_CMD:
+                    click_mouse()
+                else:
+                    point = re.match(CURSOR_POSITION_REGEX, instruction)
+                    if point and len(point.regs) == 3:
+                        USER32.SetCursorPos(int(point.group(1)), int(point.group(2)))
+                KERNEL32.Sleep(50)
+            else:
+                log.info("Breaking out of document window click loop as our window went away")
+                break
+
+
+def get_document_window_click_around(hwnd, lparm):
+    # (0,0) left upper corner
+    global DOCUMENT_WINDOW_CLICK_AROUND
+    if USER32.IsWindowVisible(hwnd):
+        text = create_unicode_buffer(1024)
+        USER32.GetWindowTextW(hwnd, text, 1024)
+        if any(
+            value in text.value
+            for value in (
+                "Adobe",
+                "Acrobat DC",
+                "Acrobat",
+                "Reader",
+                "PDF",
+            )
+        ):
+            # 2260 x 1325 PDF 0-160 y off limit x 460 last off limit
+            click_around(hwnd, (0, RESOLUTION["X"] - 460), (160, RESOLUTION_WITHOUT_TASKBAR["Y"]))
+        elif any(value in text.value for value in ("Microsoft Word",)):
+            # Word 1632 x 1092 Doc 0-300 y off limit
+            click_around(hwnd, (0, RESOLUTION["X"]), (300, RESOLUTION_WITHOUT_TASKBAR["Y"]))
+        elif any(value in text.value for value in ("Microsoft Excel",)):
+            # Excel 2624 x 1000 0-400 y off limit
+            click_around(hwnd, (0, RESOLUTION["X"]), (400, RESOLUTION_WITHOUT_TASKBAR["Y"]))
+        elif any(value in text.value for value in ("Microsoft PowerPoint",)):
+            # Powerpoint 1300 x 974 0-300 y off limit 0-930 off limit
+            click_around(hwnd, (300, RESOLUTION["X"]), (930, RESOLUTION_WITHOUT_TASKBAR["Y"]))
+        KERNEL32.Sleep(20000)
+        DOCUMENT_WINDOW_CLICK_AROUND = True
+    return True
+
+
 # Callback procedure invoked for every enumerated window.
-def get_office_window(hwnd, lparam):
-    global CLOSED_OFFICE
+def get_document_window(hwnd, lparam):
+    global CLOSED_DOCUMENT_WINDOW
     if USER32.IsWindowVisible(hwnd):
-        text = create_unicode_buffer(1024)  # create_unicode_buffer(1024)
+        text = create_unicode_buffer(1024)
         USER32.GetWindowTextW(hwnd, text, 1024)
-        if any([value in text.value for value in ("- Microsoft", "- Word", "- Excel", "- PowerPoint")]):
+        if any(
+            value in text.value
+            for value in (
+                "- Microsoft",
+                "- Word",
+                "- Excel",
+                "- PowerPoint",
+                "- Adobe",
+                "- Acrobat DC",
+                "- Acrobat",
+                "- Reader",
+                "- PDF",
+            )
+        ):
             # send ALT+F4 equivalent
-            log.info("Closing Office window.")
+            log.info("Closing document window")
             USER32.SendNotifyMessageW(hwnd, WM_CLOSE, None, None)
-            CLOSED_OFFICE = True
+            CLOSED_DOCUMENT_WINDOW = True
     return True
 
 
+def realistic_human_cursor_movement():
+    random_dimension = random.randint(0, 1)  # Random binary choice for either x or y coordonate
+    random_for_position_x = random.randint(
+        2, 8
+    )  # Dividing the screen in 2 to 8 for starting point (ignoring both extrimities as they are not needed)
+    factor_x = random.choice([1 / random_for_position_x, random_for_position_x])
+    random_for_position_y = random.randint(
+        2, 8
+    )  # Dividing the screen in 2 to 8 for starting point (ignoring both extrimities as they are not needed)
+    factor_y = random.choice([1 / random_for_position_y, random_for_position_y])
+    counter = 0
+    start_x = RESOLUTION_WITHOUT_TASKBAR["x"] // factor_x
+    start_y = RESOLUTION_WITHOUT_TASKBAR["y"] // factor_y
+    start = datetime.now()
+    while datetime.now() - start < timedelta(milliseconds=5000):
+        fuzzy_x = random.randint(0, RESOLUTION_WITHOUT_TASKBAR["x"] // 128)
+        fuzzy_y = random.randint(0, RESOLUTION_WITHOUT_TASKBAR["y"] // 128)
+        if random_dimension == 0:
+            counter += RESOLUTION_WITHOUT_TASKBAR["y"] // 64
+            x = floor(start_x)
+            y = floor(max(0, min(start_y + counter + fuzzy_y, RESOLUTION_WITHOUT_TASKBAR["y"])))
+        else:
+            counter += RESOLUTION_WITHOUT_TASKBAR["x"] // 64
+            x = floor(max(0, min(start_x + counter + +fuzzy_x, RESOLUTION_WITHOUT_TASKBAR["x"])))
+            y = floor(start_y)
+        USER32.SetCursorPos(x, y)
+        KERNEL32.Sleep(50)
+
+
+def populate_clipboard():
+    # add some random data to the clipboard
+    randchars = list("   aaaabcddeeeeeefghhhiiillmnnnooooprrrsssttttuwy")
+    cliplen = random.randint(10, 1000)
+    clipval = [randchars[random.randint(0, len(randchars) - 1)] for _ in range(cliplen)]
+
+    clipstr = "".join(clipval)
+    cliprawstr = create_unicode_buffer(clipstr)
+    USER32.OpenClipboard(None)
+    USER32.EmptyClipboard()
+
+    buf = KERNEL32.GlobalAlloc(GMEM_MOVEABLE, sizeof(cliprawstr))
+    lockbuf = KERNEL32.GlobalLock(buf)
+    memmove(lockbuf, cliprawstr, sizeof(cliprawstr))
+    KERNEL32.GlobalUnlock(buf)
+    USER32.SetClipboardData(CF_TEXT, buf)
+    USER32.CloseClipboard()
+
+
 class Human(Auxiliary, Thread):
     """Human after all"""
 
     def __init__(self, options, config):
+        global GIVEN_INSTRUCTIONS
         Auxiliary.__init__(self, options, config)
         Thread.__init__(self)
-        self.do_run = True
+        self.config = config
+        self.enabled = self.config.human_windows
+        self.do_run = self.enabled
+        instruction_arg = self.options.get("human_instructions", "")
+        if instruction_arg:
+            GIVEN_INSTRUCTIONS = instruction_arg.split(" ")
+            log.debug(GIVEN_INSTRUCTIONS)
 
     def stop(self):
         self.do_run = False
 
     def run(self):
+        global DOCUMENT_WINDOW_CLICK_AROUND
+        global GIVEN_INSTRUCTIONS
         try:
             seconds = 0
             randoff = random.randint(0, 10)
 
-            # add some random data to the clipboard
-            randchars = list("   aaaabcddeeeeeefghhhiiillmnnnooooprrrsssttttuwy")
-            cliplen = random.randint(10, 1000)
-            clipval = []
-            for i in range(cliplen):
-                clipval.append(randchars[random.randint(0, len(randchars) - 1)])
-            clipstr = "".join(clipval)
-            cliprawstr = create_unicode_buffer(clipstr)
-            USER32.OpenClipboard(None)
-            USER32.EmptyClipboard()
-
-            buf = KERNEL32.GlobalAlloc(GMEM_MOVEABLE, sizeof(cliprawstr))
-            lockbuf = KERNEL32.GlobalLock(buf)
-            memmove(lockbuf, cliprawstr, sizeof(cliprawstr))
-            KERNEL32.GlobalUnlock(buf)
-            USER32.SetClipboardData(CF_TEXT, buf)
-            USER32.CloseClipboard()
+            populate_clipboard()
 
             nohuman = self.options.get("nohuman")
             if nohuman:
                 return True
-
-            officedoc = False
+            doc = False
             if hasattr(self.config, "file_type"):
                 file_type = self.config.file_type
                 file_name = self.config.file_name
@@ -248,42 +523,89 @@ def run(self):
                     or "MIME entity" in file_type
                     or file_name.endswith((".doc", ".docx", ".rtf", ".mht", ".mso"))
                 ):
-                    officedoc = True
+                    doc = True
                 elif (
                     "Microsoft Office Excel" in file_type
                     or "Microsoft Excel" in file_type
                     or file_name.endswith((".xls", ".xlsx", ".xlsm", ".xlsb"))
                 ):
-                    officedoc = True
+                    doc = True
                 elif "Microsoft PowerPoint" in file_type or file_name.endswith(
                     (".ppt", ".pptx", ".pps", ".ppsx", ".pptm", ".potm", ".potx", ".ppsm")
                 ):
-                    officedoc = True
-
-            USER32.EnumWindows(EnumWindowsProc(getwindowlist), 0)
+                    doc = True
+                elif "PDF" in file_type or file_name.endswith(".pdf"):
+                    doc = True
+
+            USER32.EnumWindows(EnumWindowsProc(get_window_list), 0)
+            interval = 300  # Interval of 300 was chosen it looked like human speed
+            try:
+                iter(GIVEN_INSTRUCTIONS)
+            except TypeError:
+                pass
+            else:
+                for instruction in GIVEN_INSTRUCTIONS:
+                    log.info("Instruction: %s", instruction)
+                    try:
+                        if instruction.lower() == CLICK_CMD:
+                            click_mouse()
+                            continue
+                        elif instruction.lower() == STOP_CMD:
+                            return
+                        match = re.match(CURSOR_POSITION_REGEX, instruction, flags=re.IGNORECASE)
+                        if match and len(match.regs) == 3:
+                            USER32.SetCursorPos(int(match.group(1)), int(match.group(2)))
+                            KERNEL32.Sleep(interval)
+                            continue
+                        match = re.match(WAIT_REGEX, instruction, flags=re.IGNORECASE)
+                        if match and len(match.regs) == 2:
+                            KERNEL32.Sleep(int(match.group(1)))
+                        match = re.match(INTERVAL_REGEX, instruction, flags=re.IGNORECASE)
+                        if match and len(match.regs) == 2:
+                            interval = int(match.group(1))
+                    except Exception as e:
+                        log.error("One of the instruction given is invalid: %s with error %s", instruction, str(e))
+                        continue
 
             while self.do_run:
-                if officedoc and not (seconds % 60 and CLOSED_OFFICE):
-                    USER32.EnumWindows(EnumWindowsProc(get_office_window), 0)
+                if doc and seconds > 45 and (seconds % 30) == 0 and not DOCUMENT_WINDOW_CLICK_AROUND and not CLOSED_DOCUMENT_WINDOW:
+                    USER32.EnumWindows(EnumWindowsProc(get_document_window_click_around), 0)
+                    USER32.EnumWindows(EnumWindowsProc(get_document_window), 0)
 
                 # only move the mouse 75% of the time, as malware can choose to act on an "idle" system just as it can on an "active" system
-                if random.randint(0, 7) > 1:
-                    click_mouse()
-                    move_mouse()
+                rng = random.randint(0, 7)
+                if rng > 1:  # 0-1
+                    if rng < 4:  # 2-3 25% of the time move the cursor on the middle of the screen for x and move around
+                        USER32.SetCursorPos(RESOLUTION["x"] // 2, 0)
+                        # Avoid clicking on console windows and suspending execution
+                        if not cursor_over_console_window():
+                            click_mouse()
+                        move_mouse()
+                    elif (
+                        rng >= 6
+                    ):  # 6-7 25% of the time do realistic human movements for things like https://thehackernews.com/2023/11/lummac2-malware-deploys-new.html
+                        realistic_human_cursor_movement()
+                    else:  # 4-5 25% of the time move the cursor somewhere random and click/move around
+                        USER32.SetCursorPos(
+                            int(RESOLUTION_WITHOUT_TASKBAR["x"] / random.uniform(1, 16)),
+                            int(RESOLUTION_WITHOUT_TASKBAR["y"] / random.uniform(1, 16)),
+                        )
+                        # Avoid clicking on console windows and suspending execution
+                        if not cursor_over_console_window():
+                            click_mouse()
+                        move_mouse()
 
                 if (seconds % (15 + randoff)) == 0:
-                    curwind = USER32.GetForegroundWindow()
-                    other_hwnds = INITIAL_HWNDS[:]
-                    try:
+                    # curwind = USER32.GetForegroundWindow()
+                    other_hwnds = INITIAL_HWNDS.copy()
+                    with contextlib.suppress(Exception):
                         other_hwnds.remove(USER32.GetForegroundWindow())
-                    except:
-                        pass
                     if len(other_hwnds):
                         USER32.SetForegroundWindow(other_hwnds[random.randint(0, len(other_hwnds) - 1)])
 
-                USER32.EnumWindows(EnumWindowsProc(foreach_window), 0)
+                USER32.EnumWindows(EnumWindowsProc(handle_window_interaction), 0)
                 KERNEL32.Sleep(1000)
                 seconds += 1
-        except Exception as e:
+        except Exception:
             error_exc = traceback.format_exc()
             log.exception(error_exc)
diff --git a/analyzer/windows/modules/auxiliary/permissions.py b/analyzer/windows/modules/auxiliary/permissions.py
new file mode 100644
index 00000000000..17b655119b9
--- /dev/null
+++ b/analyzer/windows/modules/auxiliary/permissions.py
@@ -0,0 +1,62 @@
+import logging
+from subprocess import STARTF_USESHOWWINDOW, STARTUPINFO, call
+from threading import Thread
+
+from lib.common.abstracts import Auxiliary
+
+log = logging.getLogger(__name__)
+
+__author__ = "[Canadian Centre for Cyber Security] @CybercentreCanada"
+
+
+class Permissions(Auxiliary):
+    """
+    Change permissions for injected directory and Python interpreter
+    to prevent malware from messing with analysis
+    """
+
+    def __init__(self, options, config):
+        Auxiliary.__init__(self, options, config)
+        self.enabled = config.permissions
+        self.startupinfo = STARTUPINFO()
+        self.startupinfo.dwFlags |= STARTF_USESHOWWINDOW
+
+    def start(self):
+        if not self.enabled or not self.options.get("permissions"):
+            return False
+
+        # Put locations here that you want to protect. Do NOT put Path.cwd() or "C:\\tmp*" in the locations list,
+        # as this will crash CAPE. Try to cherry-pick directories that are important to your analysis.
+        # The locations must be pipe-separated. The default for CAPE is to separate items passed via options
+        # with a colon, but that does not work with file paths, so | it is!
+        locations = self.options.get("permissions")
+        locations = locations.split("|")
+
+        log.debug("Adjusting permissions for %s", locations)
+        for location in locations:
+            # First add a non-inherited permission for Admin Read+Execute
+            # icacls <location> /grant:r "BUILTIN\Administrators:(OI)(CI)(RX)" "BUILTIN\\Administrators:(RX)" /t /c /q
+            modify_admin_params = [
+                "icacls",
+                location,
+                "/grant:r",
+                "BUILTIN\\Administrators:(OI)(CI)(RX)",
+                "BUILTIN\\Administrators:(RX)",
+                "/t",
+                "/c",
+                "/q",
+            ]
+            t1 = Thread(target=call, args=(modify_admin_params,), kwargs={"startupinfo": self.startupinfo})
+            t1.start()
+            t1.join(timeout=15)
+            if t1.is_alive():
+                log.warning("'Modify admin' call was unable to complete in 15 seconds")
+
+            # Then remove all inherited permissions so that only SYSTEM has Write access
+            # icacls <location> /inheritancelevel:r /t /c /q
+            inheritance_params = ["icacls", location, "/inheritancelevel:r", "/t", "/c", "/q"]
+            t2 = Thread(target=call, args=(inheritance_params,), kwargs={"startupinfo": self.startupinfo})
+            t2.start()
+            t2.join(timeout=15)
+            if t2.is_alive():
+                log.warning("'Inheritance' call was unable to complete in 15 seconds")
diff --git a/analyzer/windows/modules/auxiliary/pre_script.py b/analyzer/windows/modules/auxiliary/pre_script.py
new file mode 100644
index 00000000000..bf1eec2731e
--- /dev/null
+++ b/analyzer/windows/modules/auxiliary/pre_script.py
@@ -0,0 +1,93 @@
+import glob
+import logging
+import os
+import subprocess
+
+from lib.common.abstracts import Auxiliary
+from lib.common.results import NetlogFile
+from lib.core.config import Config
+
+log = logging.getLogger(__name__)
+
+
+class Pre_script(Auxiliary):
+    def __init__(self, options=None, config=None):
+        if options is None:
+            options = {}
+        Auxiliary.__init__(self, options, config)
+        self.config = Config(cfg="analysis.conf")
+        self.enabled = self.config
+        tmp_folder = os.environ["TEMP"]
+        try:
+            self.prescript_detection = bool(self.options.get("prescript_detection", False))
+        except ValueError:
+            log.error("Invalid option for prescript_detection specified, defaulting to False")
+            self.prescript_detection = False
+        if self.prescript_detection:
+            prescript_path = os.path.join(".", "prescripts")
+            matched_files = [os.path.join(prescript_path, "prescript_detection.py")]
+        else:
+            # Go to the temp folder to look for pre_script.py
+            matched_files = glob.glob(os.path.join(tmp_folder, "pre_script.*"))
+
+        # Check if the file exists and if the pre_script is enabled
+        if matched_files and self.enabled.pre_script:
+            self.file_path = matched_files[0]
+            self.file_ext = os.path.splitext(self.file_path)[-1]
+            self.do_run = True
+
+            log.debug("pre_script matched_files: %s", matched_files)
+            # Try to retrieve timeout for pre_script_timeout (Default 60)
+            try:
+                self.timeout = int(self.options.get("pre_script_timeout", 60))
+            except ValueError:
+                log.error("Invalid timeout value specified, defaulting to 60 seconds")
+                self.timeout = 60
+
+            pre_script_args = self.options.get("pre_script_args", [])
+            if pre_script_args:
+                try:
+                    self.pre_script_args_list = pre_script_args.split(" ")
+                except AttributeError:
+                    self.pre_script_args_list = pre_script_args
+            else:
+                self.pre_script_args_list = []
+
+            # Setting Executable for python if the file ext is py else powershell
+            if self.file_ext == ".py":
+                self.executable = ["python.exe"]
+            elif self.file_ext == ".ps1":
+                self.executable = ["powershell.exe", "-NoProfile", "-ExecutionPolicy", "bypass", "-File"]
+            else:
+                self.executable = ["powershell.exe"]
+        else:
+            self.do_run = False
+
+    def start(self):
+        if not self.do_run:
+            return
+        try:
+            self.executable.append(self.file_path)
+            if isinstance(self.pre_script_args_list, list):
+                for args in self.pre_script_args_list:
+                    self.executable.append(args)
+            else:
+                self.executable.append(self.pre_script_args_list)
+            log.info("Pre_script command: %s", " ".join(self.executable))
+            p = subprocess.check_output(self.executable, timeout=self.timeout, stderr=subprocess.STDOUT)
+
+            nf = NetlogFile()
+            nf.init("logs/pre_script.log")
+            nf.sock.send(p)
+            nf.close()
+            log.info("Successfully ran pre_script, saved output to logs/pre_script.logs")
+            return True
+        except subprocess.CalledProcessError as e:
+            log.error("Error, return code: %s", e.returncode)
+            log.error("Error, Process stdout: %s", e.output)
+        except Exception as e:
+            log.error("Error running pre_script due to error: %s", e)
+            return False
+
+    def stop(self):
+        self.do_run = False
diff --git a/analyzer/windows/modules/auxiliary/recentfiles.py b/analyzer/windows/modules/auxiliary/recentfiles.py
new file mode 100644
index 00000000000..04a8cc427c9
--- /dev/null
+++ b/analyzer/windows/modules/auxiliary/recentfiles.py
@@ -0,0 +1,81 @@
+# Copyright (C) 2016-2017 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+import ctypes
+import logging
+import os
+import random
+from uuid import UUID
+
+from lib.common.abstracts import Auxiliary
+from lib.common.defines import PWSTR, SHARD_PATHA, SHELL32
+from lib.common.rand import random_string
+from lib.common.registry import set_regkey_full
+from lib.core.config import Config
+
+log = logging.getLogger(__name__)
+
+
+class RecentFiles(Auxiliary):
+    """Populate the Desktop with recent files in order to combat recent
+    anti-sandbox measures."""
+
+    extensions = [
+        "txt",
+        "rtf",
+        "doc",
+        "docx",
+        "docm",
+        "ppt",
+        "pptx",
+    ]
+
+    locations = {
+        "desktop": "{B4BFCC3A-DB2C-424C-B029-7FE99A87C641}",
+        "documents": "{FDD39AD0-238F-46AF-ADB4-6C85480369C7}",
+        "downloads": "{374DE290-123F-4565-9164-39C4925E467B}",
+    }
+
+    def __init__(self, options, config):
+        Auxiliary.__init__(self, options, config)
+        self.config = Config(cfg="analysis.conf")
+        self.enabled = self.config.recentfiles
+
+    def get_path(self):
+        location = self.options.get("recentfiles", "documents")
+        if location not in self.locations:
+            log.warning("Unknown RecentFiles location specified, " "defaulting to 'documents'.")
+            location = "documents"
+
+        dirpath = PWSTR()
+        r = SHELL32.SHGetKnownFolderPath(UUID(self.locations[location]).bytes_le, 0, None, ctypes.byref(dirpath))
+        if r:
+            log.warning("Error obtaining user directory: 0x%08x", r)
+            return
+
+        # TODO We should free the memory with CoTaskMemFree().
+        return dirpath.value
+
+    def start(self):
+        if not self.enabled:
+            return
+
+        dirpath = self.get_path()
+        if not dirpath:
+            return
+
+        for idx in range(random.randint(5, 10)):
+            filename = random_string(10, random.randint(10, 20))
+            ext = random.choice(self.extensions)
+            filepath = os.path.join(dirpath, "%s.%s" % (filename, ext))
+            open(filepath, "wb").write(os.urandom(random.randint(30, 999999)))
+            log.debug("Wrote 'recentfile' %s to disk.", filepath)
+
+            SHELL32.SHAddToRecentDocs(SHARD_PATHA, filepath)
+
+            set_regkey_full(
+                "HKEY_CURRENT_USER\\Software\\Microsoft\\Office\\14.0\\" "Word\\File MRU\\Item %d" % (idx + 1),
+                "REG_SZ",
+                "[F00000000][T01D1C40000000000]*%s" % filepath,
+            )
diff --git a/analyzer/windows/modules/auxiliary/screenshots.py b/analyzer/windows/modules/auxiliary/screenshots.py
index c9d19f4705a..e254e7a5cec 100644
--- a/analyzer/windows/modules/auxiliary/screenshots.py
+++ b/analyzer/windows/modules/auxiliary/screenshots.py
@@ -1,30 +1,17 @@
 # Copyright (C) 2010-2015 Cuckoo Foundation.
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
-from __future__ import absolute_import
-import logging
-
-log = logging.getLogger(__name__)
 
-log.debug("Importing 'time'")
+import logging
 import time
-
-log.debug("Importing 'StringIO'")
 from io import BytesIO
-
-log.debug("Importing 'Thread'")
 from threading import Thread
 
-log.debug("Importing 'Auxiliary'")
+from lib.api.screenshot import Screenshot
 from lib.common.abstracts import Auxiliary
-
-log.debug("Importing 'NetlogFile'")
 from lib.common.results import NetlogFile
 
-log.debug("Importing 'Screenshot'")
-from lib.api.screenshot import Screenshot
-
-log.debug("Imports OK")
+log = logging.getLogger(__name__)
 
 SHOT_DELAY = 1
 # Skip the following area when comparing screen shots.
@@ -39,7 +26,8 @@ class Screenshots(Auxiliary, Thread):
     def __init__(self, options, config):
         Auxiliary.__init__(self, options, config)
         Thread.__init__(self)
-        self.do_run = True
+        self.enabled = config.screenshots_windows
+        self.do_run = self.enabled
 
     def stop(self):
         """Stop screenshotting."""
@@ -50,7 +38,7 @@ def run(self):
         @return: operation status.
         """
         if not Screenshot().have_pil():
-            log.warning("Python Image Library is not installed, " "screenshots are disabled")
+            log.warning("Python Image Library is not installed, screenshots are disabled")
             return False
 
         img_counter = 0
@@ -65,22 +53,21 @@ def run(self):
                 log.error("Cannot take screenshot: %s", e)
                 continue
 
-            if img_last:
-                if Screenshot().equal(img_last, img_current, SKIP_AREA):
-                    continue
+            if img_last and Screenshot().equal(img_last, img_current, SKIP_AREA):
+                continue
 
             img_counter += 1
             # workaround as PIL can't write to the socket file object :(
-            tmpio = BytesIO()
-            img_current.save(tmpio, format="JPEG")
-            tmpio.seek(0)
-
-            # now upload to host from the StringIO
-            nf = NetlogFile()
-            nf.init("shots/%s.jpg" % str(img_counter).rjust(4, "0"))
-            for chunk in tmpio:
-                nf.sock.send(chunk)
-            nf.close()
-            img_last = img_current
+            with BytesIO() as tmpio:
+                img_current.save(tmpio, format="JPEG")
+                tmpio.seek(0)
+
+                # now upload to host from the StringIO
+                nf = NetlogFile()
+                nf.init(f"shots/{str(img_counter).rjust(4, '0')}.jpg")
+                for chunk in tmpio:
+                    nf.sock.send(chunk)
+                nf.close()
+                img_last = img_current
 
         return True
diff --git a/analyzer/windows/modules/auxiliary/sslkeylogfile.py b/analyzer/windows/modules/auxiliary/sslkeylogfile.py
new file mode 100644
index 00000000000..7565d053c64
--- /dev/null
+++ b/analyzer/windows/modules/auxiliary/sslkeylogfile.py
@@ -0,0 +1,55 @@
+import logging
+import os
+import tempfile
+
+from lib.common.abstracts import Auxiliary
+from lib.common.results import upload_to_host
+
+log = logging.getLogger(__name__)
+
+SSLKEYLOGFILE = "SSLKEYLOGFILE"
+
+
+class SslKeyLogFile(Auxiliary):
+    """Collect SSLKEYLOGFILE logs from guests."""
+
+    def __init__(self, options, config):
+        Auxiliary.__init__(self, options, config)
+        self.enabled = config.sslkeylogfile
+        if self.enabled:
+            self.upload_prefix = "aux/sslkeylogfile"
+            self.upload_file = "sslkeys.log"
+            self.log_path = ""
+
+    def upload_sslkeylogfile(self):
+        """Upload SSLKEYLOGFILE log to the host if present."""
+        try:
+            if self.log_path and os.path.isfile(self.log_path):
+                log.debug('Attemping to upload SSLKEYLOGFILE from "%s"', self.log_path)
+                upload_to_host(self.log_path, f"{self.upload_prefix}/{self.upload_file}")
+                log.debug("SSLKEYLOGFILE uploaded")
+        except Exception:
+            log.exception("SslKeyLogFile encountered an exception while uploading '%s'", self.log_path)
+            raise
+
+    def start(self):
+        if not self.enabled:
+            log.debug("SslKeyLogFile auxiliary module not enabled")
+            return
+        log.info("SslKeyLogFile auxiliary module enabled")
+        with tempfile.NamedTemporaryFile("w+", encoding="utf-8", delete=False) as keylog:
+            # Set SSLKEYLOGFILE system environment variable
+            log.info("Setting %s to %s", SSLKEYLOGFILE, keylog.name)
+            # Set system env
+            xcode = os.system("Setx {0} {1} /m".format(SSLKEYLOGFILE, keylog.name))
+            # Update local process env
+            os.environ[SSLKEYLOGFILE] = keylog.name
+
+            if xcode != 0:
+                log.info("Failed to set %s", SSLKEYLOGFILE)
+
+            self.log_path = keylog.name
+
+    def finish(self):
+        if self.enabled:
+            self.upload_sslkeylogfile()
diff --git a/analyzer/windows/modules/auxiliary/tlsdump.py b/analyzer/windows/modules/auxiliary/tlsdump.py
index a1f2dec9c74..ab70d35a8a6 100644
--- a/analyzer/windows/modules/auxiliary/tlsdump.py
+++ b/analyzer/windows/modules/auxiliary/tlsdump.py
@@ -3,21 +3,27 @@
 # See the file 'docs/LICENSE' for copying permission.
 
 import logging
+from ctypes import byref, sizeof
 
 from lib.api.process import Process
 from lib.common.abstracts import Auxiliary
-from lib.common.exceptions import CuckooError
-from ctypes import byref, c_ulong, create_string_buffer, create_unicode_buffer, c_int, sizeof
 from lib.common.defines import KERNEL32, PROCESSENTRY32, TH32CS_SNAPPROCESS
+from lib.common.exceptions import CuckooError
 
 log = logging.getLogger(__name__)
 
+
 class TLSDumpMasterSecrets(Auxiliary):
     """Dump TLS master secrets from lsass process"""
-    def __init__(self, options={}, config=None):
+
+    def __init__(self, options, config):
+        Auxiliary.__init__(self, options, config)
         self.config = config
-        self.options = options
-        self.options["tlsdump"] = "1"
+        self.enabled = self.config.tlsdump
+        if self.enabled:
+            self.options["tlsdump"] = "1"
+        else:
+            self.options["tlsdump"] = "0"
 
     def start(self):
         proc_info = PROCESSENTRY32()
@@ -32,16 +38,18 @@ def start(self):
                 flag = 0
             flag = KERNEL32.Process32Next(snapshot, byref(proc_info))
         if not pid:
-            log.warning("Unable to find lsass.exe process.")
+            log.warning("Unable to find lsass.exe process")
             return
         try:
             p = Process(options=self.options, config=self.config, pid=pid)
             filepath = p.get_filepath()
-            p.inject(injectmode=0, interest=filepath, nosleepskip=True)
+            p.inject(interest=filepath, nosleepskip=True)
         except CuckooError as e:
             if "process access denied" in e.message:
-                log.warning("You're not running the Agent as Administrator.")
+                log.warning("You're not running the Agent as Administrator")
             else:
-                log.warning("An unknown error occurred while trying to inject into "
-                    "the lsass.exe process to dump TLS master secrets: %s", e)
-        del self.options["tlsdump"]
\ No newline at end of file
+                log.warning(
+                    "An unknown error occurred while trying to inject into the lsass.exe process to dump TLS master secrets: %s",
+                    e,
+                )
+        del self.options["tlsdump"]
diff --git a/analyzer/windows/modules/auxiliary/usage.py b/analyzer/windows/modules/auxiliary/usage.py
index 522dc2a0b50..2b942783802 100644
--- a/analyzer/windows/modules/auxiliary/usage.py
+++ b/analyzer/windows/modules/auxiliary/usage.py
@@ -2,14 +2,13 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-from ctypes import *
 import logging
 import time
+from ctypes import byref, create_string_buffer, sizeof
 from threading import Thread
 
 from lib.common.abstracts import Auxiliary
-from lib.common.defines import PDH, KERNEL32, PVOID, DWORD, MEMORYSTATUSEX, PDH_FMT_COUNTERVALUE, PDH_FMT_DOUBLE
+from lib.common.defines import DWORD, KERNEL32, MEMORYSTATUSEX, PDH, PDH_FMT_COUNTERVALUE, PDH_FMT_DOUBLE, PVOID
 from lib.common.results import NetlogFile
 
 log = logging.getLogger(__name__)
@@ -21,7 +20,8 @@ class Usage(Auxiliary, Thread):
     def __init__(self, options, config):
         Auxiliary.__init__(self, options, config)
         Thread.__init__(self)
-        self.do_run = True
+        self.enabled = config.usage
+        self.do_run = self.enabled
         self.pidlist = []
 
     def stop(self):
diff --git a/analyzer/windows/modules/auxiliary/watchdownloads.py b/analyzer/windows/modules/auxiliary/watchdownloads.py
new file mode 100644
index 00000000000..c2aefa5ffda
--- /dev/null
+++ b/analyzer/windows/modules/auxiliary/watchdownloads.py
@@ -0,0 +1,76 @@
+# Copyright (C) 2025 Xiang Chen
+# This file is part of CAPE Sandbox
+# See the file 'docs/LICENSE' for copying permission.
+
+import logging
+import os
+import time
+from threading import Thread
+
+from lib.common.abstracts import Auxiliary
+from lib.common.results import upload_to_host
+
+log = logging.getLogger(__name__)
+
+folders_to_monitor = [
+    os.path.join(os.environ["HOMEPATH"], "downloads"),
+]
+
+
+HAVE_WATCHDOG = False
+try:
+    from watchdog.events import EVENT_TYPE_DELETED, FileSystemEvent, FileSystemEventHandler
+    from watchdog.observers import Observer
+
+    class MyEventHandler(FileSystemEventHandler):
+        def on_any_event(self, event: FileSystemEvent) -> None:
+            if event.event_type == EVENT_TYPE_DELETED:
+                return
+            try:
+                filename = os.path.basename(event.src_path)
+                if not filename.endswith((".part", "desktop.ini")):
+                    log.info("Monitor uploading %s", filename)
+                    upload_to_host(event.src_path, f"files/{filename}")
+            except Exception as e:
+                log.exception("Can't upload new file %s to host. %s", event.src_path, str(e))
+
+    HAVE_WATCHDOG = True
+except ImportError as e:
+    log.debug("Could not load auxiliary module WatchDownloads due to '%s'", str(e))
+
+
+class WatchDownloads(Auxiliary, Thread):
+    """Collect CPU/memory usage info from monitored processes"""
+
+    def __init__(self, options, config):
+        Auxiliary.__init__(self, options, config)
+        Thread.__init__(self)
+        self.enabled = self.config.watchdownloads
+        self.do_run = True
+
+    def stop(self):
+        """Stop collecting info"""
+        self.do_run = False
+
+    def run(self):
+        """Run capturing of info.
+        @return: operation status.
+        """
+        if not self.enabled:
+            return False
+
+        event_handler = MyEventHandler()
+        observer = Observer()
+        for folder in folders_to_monitor:
+            log.info("Monitoring %s", folder)
+            observer.schedule(event_handler, folder, recursive=True)
+        observer.start()
+
+        try:
+            while self.do_run:
+                time.sleep(1)
+        finally:
+            observer.stop()
+            observer.join()
+
+        return True
diff --git a/analyzer/windows/modules/auxiliary/wmi_etw.py b/analyzer/windows/modules/auxiliary/wmi_etw.py
new file mode 100644
index 00000000000..cbd2f5e379e
--- /dev/null
+++ b/analyzer/windows/modules/auxiliary/wmi_etw.py
@@ -0,0 +1,192 @@
+import json
+import logging
+import os
+import pprint
+from collections.abc import Iterable, Mapping
+
+from lib.common.abstracts import Auxiliary
+from lib.common.results import upload_to_host
+from lib.core.config import Config
+
+log = logging.getLogger(__name__)
+
+SAFELIST = []
+
+ETW = False
+HAVE_ETW = False
+try:
+    from etw import ETW, ProviderInfo
+    from etw import evntrace as et
+    from etw.GUID import GUID
+
+    HAVE_ETW = True
+except ImportError as e:
+    log.debug(
+        "Could not load auxiliary module WMI_ETW due to '%s'\nIn order to use WMI_ETW functionality, it "
+        "is required to have pywintrace setup in python", str(e)
+    )
+
+__author__ = "[Andrea Oliveri starting from code of Canadian Centre for Cyber Security]"
+
+
+def encode(data, encoding="utf-8"):
+    if isinstance(data, str):
+        return data.encode(encoding, "ignore")
+    elif isinstance(data, Mapping):
+        return dict(map(encode, data.items()))
+    elif isinstance(data, Iterable):
+        return type(data)(map(encode, data))
+    else:
+        return data
+
+
+if HAVE_ETW:
+
+    class ETW_provider(ETW):
+
+        def __init__(
+            self,
+            ring_buf_size=4096,
+            max_str_len=4096,
+            min_buffers=0,
+            max_buffers=0,
+            level=et.TRACE_LEVEL_INFORMATION,  # If >= 5 print more useless (?) stuff
+            any_keywords=None,
+            all_keywords=None,
+            filters=None,
+            event_callback=None,
+            logfile=None,
+            no_conout=False,
+        ):
+            """
+            Initializes an instance of WMI_ETW. The default parameters represent a very typical use case and should not be
+            overridden unless the user knows what they are doing.
+
+            :param ring_buf_size: The size of the ring buffer used for capturing events.
+            :param max_str_len: The maximum length of the strings the proceed the structure.
+                                Unless you know what you are doing, do not modify this value.
+            :param min_buffers: The minimum number of buffers for an event tracing session.
+                                Unless you know what you are doing, do not modify this value.
+            :param max_buffers: The maximum number of buffers for an event tracing session.
+                                Unless you know what you are doing, do not modify this value.
+            :param level: Logging level
+            :param any_keywords: List of keywords to match
+            :param all_keywords: List of keywords that all must match
+            :param filters: List of filters to apply to capture.
+            :param event_callback: Callback for processing events
+            :param logfile: Path to logfile.
+            :param no_conout: If true does not output live capture to console.
+            """
+
+            self.logfile = logfile
+            self.no_conout = no_conout
+            if event_callback:
+                self.event_callback = event_callback
+            else:
+                self.event_callback = self.on_event
+
+            providers = [
+                ProviderInfo(
+                    "Microsoft-Windows-WMI-Activity",
+                    GUID("{1418EF04-B0B4-4623-BF7E-D74AB47BBDAA}"),
+                    level,
+                    any_keywords,
+                    all_keywords,
+                )
+            ]
+            self.event_id_filters = []
+            super().__init__(
+                session_name="WMI_ETW",
+                ring_buf_size=ring_buf_size,
+                max_str_len=max_str_len,
+                min_buffers=min_buffers,
+                max_buffers=max_buffers,
+                event_callback=self.event_callback,
+                task_name_filters=filters,
+                providers=providers,
+                event_id_filters=self.event_id_filters,
+            )
+
+        def on_event(self, event_tufo):
+            """
+            Starts the capture using ETW.
+            :param event_tufo: tufo containing event information
+            :param logfile: Path to logfile.
+            :param no_conout: If true does not output live capture to console.
+            :return: Does not return anything.
+            """
+            event_id, event = event_tufo
+
+            if self.no_conout is False:
+                log.info("%d (%s)\n%s\n", event_id, event["Task Name"], pprint.pformat(encode(event)))
+
+            if self.logfile is not None:
+                with open(self.logfile, "a") as file:
+                    json.dump({"event_id": event_id, "event": event}, file)
+                    file.write("\n")
+
+        def start(self):
+            super().start()
+
+        def stop(self):
+            super().stop()
+
+    class WMI_ETW(Auxiliary):
+        """ETW logging"""
+
+        def __init__(self, options, config):
+            Auxiliary.__init__(self, options, config)
+            self.config = Config(cfg="analysis.conf")
+            self.enabled = self.config.wmi_etw
+            self.do_run = self.enabled
+
+            self.output_dir = "C:\\wmi\\"
+            try:
+                os.mkdir(self.output_dir)
+            except Exception as e:
+                print(e)
+                import traceback
+
+                log.exception(traceback.format_exc())
+
+            self.log_file = os.path.join(self.output_dir, "wmi_provider.log")
+            if HAVE_ETW:
+                self.capture = ETW_provider(logfile=self.log_file, level=255, no_conout=True)
+
+        def start(self):
+            if not self.enabled or not HAVE_ETW:
+                return False
+            try:
+                log.debug("Starting WMI ETW")
+                # Start WMI_ETW_provider in the background
+                self.capture.start()
+            except Exception as e:
+                print(e)
+                import traceback
+
+                log.exception(traceback.format_exc())
+            return True
+
+        def stop(self):
+            if not HAVE_ETW:
+                return
+            log.debug("Stopping WMI_ETW...")
+            self.capture.stop()
+            files_to_upload = set()
+
+            for d in os.listdir(self.output_dir):
+                path = os.path.join(self.output_dir, d)
+                if os.path.isfile(path):
+                    files_to_upload.add(path)
+                    continue
+                for f in os.listdir(path):
+                    file_path = os.path.join(path, f)
+                    files_to_upload.add(file_path)
+                continue
+
+            # Upload the ETW log files to the host.
+            log.debug(files_to_upload)
+            for f in files_to_upload:
+                dumppath = os.path.join("aux", "wmi_etw.json")
+                log.debug("WMI_ETW Aux Module is uploading %s", f)
+                upload_to_host(f, dumppath)
diff --git a/analyzer/windows/modules/packages/Ie4uinit.py b/analyzer/windows/modules/packages/Ie4uinit.py
new file mode 100644
index 00000000000..1d3cd52bae7
--- /dev/null
+++ b/analyzer/windows/modules/packages/Ie4uinit.py
@@ -0,0 +1,35 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+# https://lolbas-project.github.io/lolbas/Binaries/Ie4uinit/
+# https://bohops.com/2018/02/26/leveraging-inf-sct-fetch-execute-techniques-for-bypass-evasion-persistence/
+# https://bohops.com/2018/03/10/leveraging-inf-sct-fetch-execute-techniques-for-bypass-evasion-persistence-part-2/
+
+import os
+import shutil
+from lib.common.abstracts import Package
+
+
+class IE4uinit(Package):
+    """Ie4uinit analysis package."""
+
+    PATHS = [
+        ("SystemRoot", "system32", "ie4uinit.exe"),
+        # ("Windows", "SysWOW64", "ie4uinit.exe"),
+    ]
+    summary = "Executes commands from a specially prepared ie4uinit.inf file."
+    description = """Executes commands from a specially prepared ie4uinit.inf file."""
+
+    def start(self, path):
+        # rundll32.exe ieadvpack.dll,LaunchINFSection test.inf,,1, <- Requires DefaultInstall as entry point
+        # check if named " ie4uinit.inf"
+        ie4uinit = self.get_path_app_in_path("ie4uinit.exe")
+        dirname = os.path.dirname(path)
+        local_ie4uinit = os.path.join(dirname, "ie4uinit.exe")
+        shutil.copy(ie4uinit, local_ie4uinit)
+        ie4uinit = local_ie4uinit
+        if not path.endswith("ie4uinit.inf"):
+            new_file = os.path.join(dirname, "ie4uinit.inf")
+            shutil.copy(path, new_file)
+            path = new_file
+        return self.execute(ie4uinit, "-BaseSettings", path)
diff --git a/analyzer/windows/modules/packages/Shellcode-Unpacker.py b/analyzer/windows/modules/packages/Shellcode-Unpacker.py
deleted file mode 100644
index d259abab06d..00000000000
--- a/analyzer/windows/modules/packages/Shellcode-Unpacker.py
+++ /dev/null
@@ -1,38 +0,0 @@
-# Copyright (C) 2010-2015 Cuckoo Foundation.
-# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
-# See the file 'docs/LICENSE' for copying permission.
-
-from __future__ import absolute_import
-import os
-import shutil
-import logging
-
-from lib.common.abstracts import Package
-
-log = logging.getLogger(__name__)
-
-class Shellcode_Unpacker(Package):
-    """32-bit Shellcode Unpacker package."""
-
-    def __init__(self, options={}, config=None):
-        """@param options: options dict."""
-        self.config = config
-        self.options = options
-        self.options["unpacker"] = "1"
-        self.options["procdump"] = "0"
-        self.options["dump-caller-regions"] = "0"
-
-    def start(self, path):
-        loaderpath = "bin\\loader.exe"
-        arguments = "shellcode " + path
-
-        # we need to move out of the analyzer directory
-        # due to a check in monitor dll
-        basepath = os.path.dirname(path)
-        newpath = os.path.join(basepath, os.path.basename(loaderpath))
-        shutil.copy(loaderpath, newpath)
-
-        log.info("[-] newpath : " + newpath)
-        log.info("[-] arguments : " + arguments)
-
-        return self.execute(newpath, arguments, newpath)
diff --git a/analyzer/windows/modules/packages/UPX.py b/analyzer/windows/modules/packages/UPX.py
deleted file mode 100644
index 7c6aaea728c..00000000000
--- a/analyzer/windows/modules/packages/UPX.py
+++ /dev/null
@@ -1,43 +0,0 @@
-# Copyright (C) 2010-2015 Cuckoo Foundation.
-# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
-# See the file 'docs/LICENSE' for copying permission.
-
-from __future__ import absolute_import
-import os
-import shutil
-
-from lib.common.abstracts import Package
-
-
-class UPX(Package):
-    """CAPE UPX analysis package."""
-
-    # PATHS = [
-    #    ("SystemRoot", "system32"),
-    # ]
-
-    def __init__(self, options={}, config=None):
-        """@param options: options dict."""
-        self.config = config
-        self.options = options
-        self.pids = []
-        self.options["upx"] = "1"
-
-    def start(self, path):
-        arguments = self.options.get("arguments")
-        appdata = self.options.get("appdata")
-
-        # If the file doesn't have an extension, add .exe
-        if "." not in os.path.basename(path):
-            new_path = path + ".exe"
-            os.rename(path, new_path)
-            path = new_path
-
-        if appdata:
-            # run the executable from the APPDATA directory, required for some malware
-            basepath = os.getenv("APPDATA")
-            newpath = os.path.join(basepath, os.path.basename(path))
-            shutil.copy(path, newpath)
-            path = newpath
-
-        return self.execute(path, arguments, path)
diff --git a/analyzer/windows/modules/packages/UPX_dll.py b/analyzer/windows/modules/packages/UPX_dll.py
deleted file mode 100644
index 022dcc938b8..00000000000
--- a/analyzer/windows/modules/packages/UPX_dll.py
+++ /dev/null
@@ -1,50 +0,0 @@
-# Copyright (C) 2010-2015 Cuckoo Foundation.
-# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
-# See the file 'docs/LICENSE' for copying permission.
-
-from __future__ import absolute_import
-import os
-import shutil
-
-from lib.common.abstracts import Package
-
-
-class UPX_dll(Package):
-    """CAPE UPX DLL analysis package."""
-
-    PATHS = [
-        ("SystemRoot", "system32", "rundll32.exe"),
-    ]
-
-    def __init__(self, options={}, config=None):
-        """@param options: options dict."""
-        self.config = config
-        self.options = options
-        self.options["upx"] = "1"
-
-    def start(self, path):
-        rundll32 = self.get_path("rundll32.exe")
-        function = self.options.get("function", "#1")
-        arguments = self.options.get("arguments")
-        dllloader = self.options.get("dllloader")
-
-        # Check file extension.
-        ext = os.path.splitext(path)[-1].lower()
-        # If the file doesn't have the proper .dll extension force it
-        # and rename it. This is needed for rundll32 to execute correctly.
-        # See ticket #354 for details.
-        if ext != ".dll":
-            new_path = path + ".dll"
-            os.rename(path, new_path)
-            path = new_path
-
-        args = "{0},{1}".format(path, function)
-        if arguments:
-            args += " {0}".format(arguments)
-
-        if dllloader:
-            newname = os.path.join(os.path.dirname(rundll32), dllloader)
-            shutil.copy(rundll32, newname)
-            rundll32 = newname
-
-        return self.execute(rundll32, args, path)
diff --git a/analyzer/windows/modules/packages/Unpacker.py b/analyzer/windows/modules/packages/Unpacker.py
deleted file mode 100644
index 82d7344a0e7..00000000000
--- a/analyzer/windows/modules/packages/Unpacker.py
+++ /dev/null
@@ -1,40 +0,0 @@
-# Copyright (C) 2010-2015 Cuckoo Foundation.
-# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
-# See the file 'docs/LICENSE' for copying permission.
-
-from __future__ import absolute_import
-import os
-import shutil
-
-from lib.common.abstracts import Package
-
-
-class Unpacker(Package):
-    """CAPE Unpacker analysis package."""
-
-    # PATHS = [
-    #    ("SystemRoot", "system32"),
-    # ]
-
-    def __init__(self, options={}, config=None):
-        """@param options: options dict."""
-        self.config = config
-        self.options = options
-        self.pids = []
-        self.options["unpacker"] = "1"
-        self.options["procdump"] = "0"
-        self.options["injection"] = "0"
-
-    def start(self, path):
-        arguments = self.options.get("arguments")
-
-        # If the file doesn't have an extension, add .exe
-        # See CWinApp::SetCurrentHandles(), it will throw
-        # an exception that will crash the app if it does
-        # not find an extension on the main exe's filename
-        if "." not in os.path.basename(path):
-            new_path = path + ".exe"
-            os.rename(path, new_path)
-            path = new_path
-
-        return self.execute(path, arguments, path)
diff --git a/analyzer/windows/modules/packages/Unpacker_dll.py b/analyzer/windows/modules/packages/Unpacker_dll.py
deleted file mode 100644
index 822399016e4..00000000000
--- a/analyzer/windows/modules/packages/Unpacker_dll.py
+++ /dev/null
@@ -1,51 +0,0 @@
-# Copyright (C) 2010-2015 Cuckoo Foundation.
-# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
-# See the file 'docs/LICENSE' for copying permission.
-
-from __future__ import absolute_import
-import os
-import shutil
-
-from lib.common.abstracts import Package
-
-
-class Unpacker_dll(Package):
-    """CAPE Unpacker DLL analysis package."""
-
-    PATHS = [
-        ("SystemRoot", "system32", "rundll32.exe"),
-    ]
-
-    def __init__(self, options={}, config=None):
-        """@param options: options dict."""
-        self.config = config
-        self.options = options
-        self.options["unpacker"] = "1"
-        self.options["injection"] = "0"
-
-    def start(self, path):
-        rundll32 = self.get_path("rundll32.exe")
-        function = self.options.get("function", "#1")
-        arguments = self.options.get("arguments")
-        dllloader = self.options.get("dllloader")
-
-        # Check file extension.
-        ext = os.path.splitext(path)[-1].lower()
-        # If the file doesn't have the proper .dll extension force it
-        # and rename it. This is needed for rundll32 to execute correctly.
-        # See ticket #354 for details.
-        if ext != ".dll":
-            new_path = path + ".dll"
-            os.rename(path, new_path)
-            path = new_path
-
-        args = "{0},{1}".format(path, function)
-        if arguments:
-            args += " {0}".format(arguments)
-
-        if dllloader:
-            newname = os.path.join(os.path.dirname(rundll32), dllloader)
-            shutil.copy(rundll32, newname)
-            rundll32 = newname
-
-        return self.execute(rundll32, args, path)
diff --git a/analyzer/windows/modules/packages/Unpacker_js.py b/analyzer/windows/modules/packages/Unpacker_js.py
deleted file mode 100644
index 2b43bf37d2b..00000000000
--- a/analyzer/windows/modules/packages/Unpacker_js.py
+++ /dev/null
@@ -1,38 +0,0 @@
-# Copyright (C) 2015 Optiv, Inc. (brad.spengler@optiv.com)
-# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
-# See the file 'docs/LICENSE' for copying permission.
-
-from __future__ import absolute_import
-import os
-
-from lib.common.abstracts import Package
-
-
-class Unpacker_JS(Package):
-    """JavaScript analysis package."""
-
-    PATHS = [
-        ("SystemRoot", "system32", "wscript.exe"),
-    ]
-
-    def __init__(self, options={}, config=None):
-        """@param options: options dict."""
-        self.config = config
-        self.options = options
-        self.options["unpacker"] = "1"
-        self.options["procdump"] = "0"
-        self.options["injection"] = "0"
-
-    def start(self, path):
-        wscript = self.get_path("wscript.exe")
-        args = '"%s"' % path
-        ext = os.path.splitext(path)[-1].lower()
-        if ext != ".js" and ext != ".jse":
-            if os.path.isfile(path) and "#@~^" in open(path, "rb").read(100):
-                os.rename(path, path + ".jse")
-                path = path + ".jse"
-            else:
-                os.rename(path, path + ".js")
-                path = path + ".js"
-        args = '"%s"' % path
-        return self.execute(wscript, args, path)
diff --git a/analyzer/windows/modules/packages/Unpacker_ps1.py b/analyzer/windows/modules/packages/Unpacker_ps1.py
deleted file mode 100644
index b7d37014253..00000000000
--- a/analyzer/windows/modules/packages/Unpacker_ps1.py
+++ /dev/null
@@ -1,34 +0,0 @@
-# Copyright (C) 2010-2015 Cuckoo Foundation.
-# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
-# See the file 'docs/LICENSE' for copying permission.
-
-from __future__ import absolute_import
-import os
-
-from lib.common.abstracts import Package
-
-
-class PS1(Package):
-    """PowerShell Unpacker analysis package."""
-
-    PATHS = [
-        ("SystemRoot", "system32", "WindowsPowerShell", "v*.0", "powershell.exe"),
-    ]
-
-    def __init__(self, options={}, config=None):
-        """@param options: options dict."""
-        self.config = config
-        self.options = options
-        self.options["unpacker"] = "1"
-        self.options["procdump"] = "0"
-        self.options["injection"] = "0"
-
-    def start(self, path):
-        powershell = self.get_path_glob("PowerShell")
-
-        if not path.endswith(".ps1"):
-            os.rename(path, path + ".ps1")
-            path += ".ps1"
-
-        args = '-NoProfile -ExecutionPolicy bypass -File "{0}"'.format(path)
-        return self.execute(powershell, args, path)
diff --git a/analyzer/windows/modules/packages/Unpacker_regsvr.py b/analyzer/windows/modules/packages/Unpacker_regsvr.py
deleted file mode 100644
index 60b41b5155e..00000000000
--- a/analyzer/windows/modules/packages/Unpacker_regsvr.py
+++ /dev/null
@@ -1,45 +0,0 @@
-# Copyright (C) 2010-2015 Cuckoo Foundation.
-# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
-# See the file 'docs/LICENSE' for copying permission.
-
-from __future__ import absolute_import
-import os
-import shutil
-
-from lib.common.abstracts import Package
-
-
-class Unpacker_Regsvr(Package):
-    """CAPE Unpacker DLL analysis package."""
-
-    PATHS = [
-        ("SystemRoot", "system32", "regsvr32.exe"),
-    ]
-
-    def __init__(self, options={}, config=None):
-        """@param options: options dict."""
-        self.config = config
-        self.options = options
-        self.options["unpacker"] = "1"
-        self.options["procdump"] = "0"
-        self.options["injection"] = "0"
-
-    def start(self, path):
-        regsvr32 = self.get_path("regsvr32.exe")
-        arguments = self.options.get("arguments")
-
-        # Check file extension.
-        ext = os.path.splitext(path)[-1].lower()
-        # If the file doesn't have the proper .dll extension force it
-        # and rename it. This is needed for rundll32 to execute correctly.
-        # See ticket #354 for details.
-        if ext != ".dll":
-            new_path = path + ".dll"
-            os.rename(path, new_path)
-            path = new_path
-
-        args = path
-        if arguments:
-            args += " {0}".format(arguments)
-
-        return self.execute(regsvr32, args, path)
diff --git a/analyzer/windows/modules/packages/Unpacker_zip.py b/analyzer/windows/modules/packages/Unpacker_zip.py
deleted file mode 100644
index 2a1b0628ad3..00000000000
--- a/analyzer/windows/modules/packages/Unpacker_zip.py
+++ /dev/null
@@ -1,165 +0,0 @@
-# Copyright (C) 2010-2015 Cuckoo Foundation.
-# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
-# See the file 'docs/LICENSE' for copying permission.
-
-from __future__ import absolute_import
-import os
-import shutil
-import logging
-
-try:
-    import re2 as re
-except ImportError:
-    import re
-
-from zipfile import ZipFile, BadZipfile
-
-from lib.common.abstracts import Package
-from lib.common.exceptions import CuckooPackageError
-
-log = logging.getLogger(__name__)
-
-
-class Unpacker_zip(Package):
-    """CAPE Unpacker zip analysis package."""
-
-    PATHS = [
-        ("SystemRoot", "system32", "cmd.exe"),
-    ]
-
-    def __init__(self, options={}, config=None):
-        """@param options: options dict."""
-        self.config = config
-        self.options = options
-        self.pids = []
-        self.options["unpacker"] = "1"
-        self.options["procdump"] = "0"
-        self.options["injection"] = "0"
-
-    def extract_zip(self, zip_path, extract_path, password, recursion_depth):
-        """Extracts a nested ZIP file.
-        @param zip_path: ZIP path
-        @param extract_path: where to extract
-        @param password: ZIP password
-        @param recursion_depth: how deep we are in a nested archive
-        """
-        # Test if zip file contains a file named as itself.
-        if self.is_overwritten(zip_path):
-            log.debug("ZIP file contains a file with the same name, original is going to be overwrite")
-            # TODO: add random string.
-            new_zip_path = zip_path + ".old"
-            shutil.move(zip_path, new_zip_path)
-            zip_path = new_zip_path
-
-        # Unpacker.
-        with ZipFile(zip_path, "r") as archive:
-            try:
-                archive.extractall(path=extract_path, pwd=password)
-            except BadZipfile:
-                raise CuckooPackageError("Invalid Zip file")
-            except RuntimeError:
-                try:
-                    archive.extractall(path=extract_path, pwd="infected")
-                except RuntimeError as e:
-                    raise CuckooPackageError("Unable to extract Zip file: " "{0}".format(e))
-            finally:
-                if recursion_depth < 4:
-                    # Extract nested archives.
-                    for name in archive.namelist():
-                        if name.endswith(".zip"):
-                            # Recurse.
-                            try:
-                                self.extract_zip(os.path.join(extract_path, name), extract_path, password, recursion_depth + 1)
-                            except BadZipfile:
-                                log.warning("Nested zip file '%s' name end with 'zip' extension is not a valid zip. Skip extracting" % name)
-                            except RuntimeError as run_err:
-                                log.error("Error to extract nested zip file %s with details: %s" % name, run_err)
-
-    def is_overwritten(self, zip_path):
-        """Checks if the ZIP file contains another file with the same name, so it is going to be overwritten.
-        @param zip_path: zip file path
-        @return: comparison boolean
-        """
-        with ZipFile(zip_path, "r") as archive:
-            try:
-                # Test if zip file contains a file named as itself.
-                for name in archive.namelist():
-                    if name == os.path.basename(zip_path):
-                        return True
-                return False
-            except BadZipfile:
-                raise CuckooPackageError("Invalid Zip file")
-
-    def get_infos(self, zip_path):
-        """Get information from ZIP file.
-        @param zip_path: zip file path
-        @return: ZipInfo class
-        """
-        try:
-            with ZipFile(zip_path, "r") as archive:
-                return archive.infolist()
-        except BadZipfile:
-            raise CuckooPackageError("Invalid Zip file")
-
-    def start(self, path):
-        root = os.environ["TEMP"]
-        password = self.options.get("password")
-        exe_regex = re.compile("(\.exe|\.scr|\.msi|\.bat|\.lnk|\.js|\.jse|\.vbs|\.vbe|\.wsf)$", flags=re.IGNORECASE)
-        dll_regex = re.compile("(\.dll|\.ocx)$", flags=re.IGNORECASE)
-        zipinfos = self.get_infos(path)
-        self.extract_zip(path, root, password, 0)
-
-        file_name = self.options.get("file")
-        # If no file name is provided via option, take the first file.
-        if not file_name:
-            # No name provided try to find a better name.
-            if len(zipinfos):
-                # Attempt to find a valid exe extension in the archive
-                for f in zipinfos:
-                    if exe_regex.search(f.filename):
-                        file_name = f.filename
-                        break
-                if not file_name:
-                    for f in zipinfos:
-                        if dll_regex.search(f.filename):
-                            file_name = f.filename
-                            break
-                # Default to the first one if none found
-                file_name = file_name if file_name else zipinfos[0].filename
-                log.debug("Missing file option, auto executing: {0}".format(file_name))
-            else:
-                raise CuckooPackageError("Empty ZIP archive")
-
-        file_path = os.path.join(root, file_name)
-        log.debug('file_name: "%s"' % (file_name))
-        if file_name.lower().endswith(".lnk"):
-            cmd_path = self.get_path("cmd.exe")
-            cmd_args = '/c start /wait "" "{0}"'.format(file_path)
-            return self.execute(cmd_path, cmd_args, file_path)
-        elif file_name.lower().endswith(".msi"):
-            msi_path = self.get_path("msiexec.exe")
-            msi_args = '/I "{0}"'.format(file_path)
-            return self.execute(msi_path, msi_args, file_path)
-        elif file_name.lower().endswith((".js", ".jse", ".vbs", ".vbe", ".wsf")):
-            wscript = self.get_path_app_in_path("wscript.exe")
-            wscript_args = '"{0}"'.format(file_path)
-            return self.execute(wscript, wscript_args, file_path)
-        elif file_name.lower().endswith((".dll", ".ocx")):
-            rundll32 = self.get_path_app_in_path("rundll32.exe")
-            function = self.options.get("function", "#1")
-            arguments = self.options.get("arguments")
-            dllloader = self.options.get("dllloader")
-            dll_args = '"{0}",{1}'.format(file_path, function)
-            if arguments:
-                dll_args += " {0}".format(arguments)
-            if dllloader:
-                newname = os.path.join(os.path.dirname(rundll32), dllloader)
-                shutil.copy(rundll32, newname)
-                rundll32 = newname
-            return self.execute(rundll32, dll_args, file_path)
-        elif file_name.lower().endswith(".ps1"):
-            powershell = self.get_path_app_in_path("powershell.exe")
-            args = '-NoProfile -ExecutionPolicy bypass -File "{0}"'.format(path)
-            return self.execute(powershell, args, file_path)
-        else:
-            return self.execute(file_path, self.options.get("arguments"), file_path)
diff --git a/analyzer/windows/modules/packages/access.py b/analyzer/windows/modules/packages/access.py
new file mode 100644
index 00000000000..13d089e15cf
--- /dev/null
+++ b/analyzer/windows/modules/packages/access.py
@@ -0,0 +1,32 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+from lib.common.abstracts import Package
+from lib.common.common import check_file_extension
+
+
+class ACCESS(Package):
+    """ACCESS analysis package."""
+
+    def __init__(self, options=None, config=None):
+        if options is None:
+            options = {}
+        self.config = config
+        self.options = options
+
+    PATHS = [
+        ("ProgramFiles", "Microsoft Office", "MSACCESS.EXE"),
+        ("ProgramFiles", "Microsoft Office", "Office*", "MSACCESS.EXE"),
+        ("ProgramFiles", "Microsoft Office*", "root", "Office*", "MSACCESS.EXE"),
+        ("ProgramFiles", "Microsoft Office", "MSACCESS.EXE"),
+    ]
+    summary = "Opens an .accdr file using MSACCESS.EXE."
+    description = """Uses MSACCESS.EXE to open a .accdr file.
+    The .accdr filename extension will be added automatically."""
+
+    def start(self, path):
+        access = self.get_path_glob("MSACCESS.EXE")
+        if not path.endswith((".accdr", ".accde")):
+            path = check_file_extension(path, ".accdr")
+        return self.execute(access, f'"{path}"', path)
diff --git a/analyzer/windows/modules/packages/applet.py b/analyzer/windows/modules/packages/applet.py
index 7dfbe402627..d014d97cc58 100644
--- a/analyzer/windows/modules/packages/applet.py
+++ b/analyzer/windows/modules/packages/applet.py
@@ -2,10 +2,11 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 import tempfile
+from pathlib import Path
 
-from lib.common.abstracts import Package
+from lib.common.abstracts import CuckooPackageError, Package
+from lib.common.constants import OPT_CLASS
 
 
 class Applet(Package):
@@ -15,28 +16,34 @@ class Applet(Package):
         ("ProgramFiles", "Mozilla Firefox", "firefox.exe"),
         ("ProgramFiles", "Internet Explorer", "iexplore.exe"),
     ]
+    summary = "Opens a java applet using firefox (or iexplore)."
+    description = f"""Creates an HTML wrapper around the applet file.
+    The '{OPT_CLASS}' option is required; the applet will execute the
+    named class.  Opens the HTML file with firefox, or iexplore if firefox
+    is not available."""
+    option_names = (OPT_CLASS,)
 
     def make_html(self, path, class_name):
-        html = """
+        html = f"""
         <html>
             <body>
-                <applet archive="%s" code="%s" width="1" height="1">
+                <applet archive="{path}" code="{class_name}" width="1" height="1">
                 </applet>
             </body>
         </html>
-        """ % (
-            path,
-            class_name,
-        )
+        """
 
         _, file_path = tempfile.mkstemp(suffix=".html")
-        with open(file_path, "w") as file_handle:
-            file_handle.write(html)
+        _ = Path(file_path).write_text(html)
 
         return file_path
 
     def start(self, path):
-        browser = self.get_path("browser")
-        class_name = self.options.get("class")
+        try:
+            browser = self.get_path("firefox.exe")
+        except CuckooPackageError:
+            browser = self.get_path("iexplore.exe")
+
+        class_name = self.options.get(OPT_CLASS)
         html_path = self.make_html(path, class_name)
-        return self.execute(browser, '"%s"' % html_path, html_path)
+        return self.execute(browser, f'"{html_path}"', html_path)
diff --git a/analyzer/windows/modules/packages/archive.py b/analyzer/windows/modules/packages/archive.py
new file mode 100644
index 00000000000..95264d281ca
--- /dev/null
+++ b/analyzer/windows/modules/packages/archive.py
@@ -0,0 +1,153 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+import logging
+import os
+import shutil
+from pathlib import Path
+
+from lib.common.abstracts import Package
+from lib.common.constants import (
+    ARCHIVE_OPTIONS,
+    OPT_ARGUMENTS,
+    OPT_DLLLOADER,
+    OPT_FILE,
+    OPT_FUNCTION,
+    OPT_MULTI_PASSWORD,
+    OPT_PASSWORD,
+)
+from lib.common.exceptions import CuckooPackageError
+from lib.common.zip_utils import (
+    attempt_multiple_passwords,
+    extract_archive,
+    get_file_names,
+    get_interesting_files,
+    upload_extracted_files,
+    winrar_extractor,
+)
+from modules.packages.dll import DLL_OPTIONS
+
+log = logging.getLogger(__name__)
+
+
+class Archive(Package):
+    """Archive analysis package."""
+
+    PATHS = [
+        ("SystemRoot", "system32", "cmd.exe"),
+        ("SystemRoot", "system32", "wscript.exe"),
+        ("SystemRoot", "system32", "rundll32.exe"),
+        ("SystemRoot", "system32", "regsvr32.exe"),
+        ("SystemRoot", "sysnative", "WindowsPowerShell", "v1.0", "powershell.exe"),
+        ("SystemRoot", "system32", "xpsrchvw.exe"),
+        ("ProgramFiles", "7-Zip", "7z.exe"),
+        ("ProgramFiles", "WinRAR", "WinRAR.exe"),
+        ("ProgramFiles", "Microsoft Office", "WINWORD.EXE"),
+        ("ProgramFiles", "Microsoft Office", "Office*", "WINWORD.EXE"),
+        ("ProgramFiles", "Microsoft Office*", "root", "Office*", "WINWORD.EXE"),
+        ("ProgramFiles", "Microsoft Office", "WORDVIEW.EXE"),
+        ("ProgramFiles", "Microsoft Office", "EXCEL.EXE"),
+        ("ProgramFiles", "Microsoft Office", "Office*", "EXCEL.EXE"),
+        ("ProgramFiles", "Microsoft Office*", "root", "Office*", "EXCEL.EXE"),
+        ("ProgramFiles", "Microsoft", "Edge", "Application", "msedge.exe"),
+    ]
+    summary = "Looks for executables inside an archive."
+    description = f"""Uses 7z.exe to unpack the archive with the supplied '{OPT_PASSWORD}' option.
+    The default password is 'infected.'
+    If the '{OPT_MULTI_PASSWORD}' option is set, the '{OPT_PASSWORD}' option can contain
+    several possible passwords, colon-separated.
+    If 7z.exe could not open the archive, try WinRAR.exe.
+    If the '{OPT_FILE}' option was given, expect a file of that name to be in the archive,
+    and attempt to execute it. Else, attempt to execute all executables in the archive.
+    For each execution attempt, choose the appropriate method based on the file extension.
+    Various options apply depending on the file type.
+    The options '{OPT_FUNCTION}' and '{OPT_DLLLOADER}' will be applied to .DLL execution attempts.
+    The option '{OPT_ARGUMENTS}' will be applied to a .DLL or a PE executable.
+    """
+    option_names = sorted(set(DLL_OPTIONS + ARCHIVE_OPTIONS + (OPT_MULTI_PASSWORD,)))
+
+    def start(self, path):
+        # 7za and 7r is limited so better install it inside of the vm
+        # seven_zip_path = os.path.join(os.getcwd(), "bin", "7z.exe")
+        # if not os.path.exists(seven_zip_path):
+        # Let's hope it's in the VM image
+        seven_zip_path = self.get_path_app_in_path("7z.exe")
+        password = self.options.get(OPT_PASSWORD, "infected")
+        archive_name = Path(path).name
+
+        # We are extracting the archive to C:\\<archive_name> rather than the TEMP directory because
+        # actors are using LNK files that use relative directory traversal at arbitrary depth.
+        # They expect to find the root of the drive.
+        root = os.path.join("C:\\", archive_name)
+
+        # Check if root exists already due to the file path
+        if os.path.exists(root) and os.path.isfile(root):
+            root = os.path.join("C:\\", "extracted_iso", archive_name)
+
+        os.makedirs(root, exist_ok=True)
+
+        file_names = get_file_names(seven_zip_path, path)
+        if len(file_names):
+            try_multiple_passwords = attempt_multiple_passwords(self.options, password)
+            extract_archive(seven_zip_path, path, root, password, try_multiple_passwords)
+
+        # Try extract with winrar, in some cases 7z-full fails with .Iso
+        if not file_names:
+            winrar_path = self.get_path_app_in_path("WinRAR.exe")
+            if os.path.exists(winrar_path):
+                file_names = winrar_extractor(winrar_path, root, path)
+
+        if not file_names:
+            raise CuckooPackageError("Empty archive")
+
+        # Handle special characters that 7ZIP cannot
+        # We have the file names according to 7ZIP output (file_names)
+        # We have the file names that were actually extracted (files at root)
+        # If these values are different, replace all
+        files_at_root = [os.path.join(r, f).replace(f"{root}\\", "") for r, _, files in os.walk(root) for f in files]
+        log.debug(files_at_root)
+        if set(file_names) != set(files_at_root):
+            log.debug("Replacing %s with %s", str(file_names), str(files_at_root))
+            file_names = files_at_root
+
+        upload_extracted_files(root, files_at_root)
+
+        # Copy these files to the root directory, just in case!
+        dirs = []
+        for item in os.listdir(root):
+            d = os.path.join(root, item)
+            if os.path.isdir(d):
+                if d not in dirs:
+                    dirs.append(d)
+                    try:
+                        shutil.copytree(d, os.path.join("C:\\", item))
+                    except Exception as e:
+                        log.warning("Couldn't copy %s to root of C: %s", d, str(e))
+            else:
+                try:
+                    shutil.copy(d, "C:\\")
+                except Exception as e:
+                    log.warning("Couldn't copy %s to root of C: %s", d, str(e))
+
+        file_name = self.options.get(OPT_FILE)
+        # If no file name is provided via option, discover files to execute.
+        if not file_name:
+            ret_list = []
+
+            # Attempt to find at least one valid exe extension in the archive
+            interesting_files = get_interesting_files(file_names)
+
+            if not interesting_files:
+                log.debug("No interesting files found, auto executing the first file: %s", file_names[0])
+                interesting_files.append(file_names[0])
+
+            log.debug("Missing file option, auto executing: %s", interesting_files)
+            for interesting_file in interesting_files:
+                file_path = os.path.join(root, interesting_file)
+                ret_list.append(self.execute_interesting_file(root, interesting_file, file_path))
+
+            return ret_list
+        else:
+            file_path = os.path.join(root, file_name)
+            return self.execute_interesting_file(root, file_name, file_path)
diff --git a/analyzer/windows/modules/packages/autoit.py b/analyzer/windows/modules/packages/autoit.py
new file mode 100644
index 00000000000..2a9ce1d55f4
--- /dev/null
+++ b/analyzer/windows/modules/packages/autoit.py
@@ -0,0 +1,15 @@
+from lib.common.abstracts import Package
+from lib.common.constants import OPT_ARGUMENTS
+
+
+class AutoIT(Package):
+    """AutoIT analysis package."""
+
+    summary = "Executes the sample with autoit3."
+    description = f"""Uses 'bin\\autoit3.exe <sample> [arguments]' to execute the sample,
+    Set the '{OPT_ARGUMENTS}' option to provide additional arguments."""
+    option_names = (OPT_ARGUMENTS,)
+
+    def start(self, path):
+        arguments = self.options.get(OPT_ARGUMENTS, "")
+        return self.execute("bin\\autoit3.exe", f"{path} {arguments}", path)
diff --git a/analyzer/windows/modules/packages/batch.py b/analyzer/windows/modules/packages/batch.py
new file mode 100644
index 00000000000..6b8a56ac50a
--- /dev/null
+++ b/analyzer/windows/modules/packages/batch.py
@@ -0,0 +1,36 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+from lib.common.abstracts import Package
+from lib.common.common import check_file_extension
+
+
+class Batch(Package):
+    """batch analysis package."""
+
+    PATHS = [
+        ("SystemRoot", "system32", "cmd.exe"),
+    ]
+    summary = "Executes the batch scripts with cmd.exe."
+    description = """Uses 'cmd.exe /c start /wait "" "path"' to execute sample files.
+    For context behind this command:
+    /C          Carries out the command specified by string and then terminates
+    START       Starts a separate window to run a specified program or command.
+    /WAIT       Start application and wait for it to terminate.
+    ""          The name of the separate window
+    "path"      The path of the uploaded batch file.
+    """
+
+    def start(self, path):
+        cmd_path = self.get_path("cmd.exe")
+        # For context behind this command:
+        # /C          Carries out the command specified by string and then terminates
+        # START       Starts a separate window to run a specified program or command.
+        # WAIT        Start application and wait for it to terminate.
+        # ""          The name of the separate window
+        # "{path}"    The name of the specific batch file
+
+        path = check_file_extension(path, ".bat")
+        cmd_args = f'/c start /wait "" "{path}"'
+        return self.execute(cmd_path, cmd_args, path)
diff --git a/analyzer/windows/modules/packages/chm.py b/analyzer/windows/modules/packages/chm.py
index bc1a4b776d8..9dfef35c32e 100644
--- a/analyzer/windows/modules/packages/chm.py
+++ b/analyzer/windows/modules/packages/chm.py
@@ -2,11 +2,9 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-import os
-import shutil
-
 from lib.common.abstracts import Package
+from lib.common.common import check_file_extension
+from lib.common.constants import OPT_ARGUMENTS
 
 
 class CHM(Package):
@@ -15,17 +13,12 @@ class CHM(Package):
     PATHS = [
         ("SystemRoot", "hh.exe"),
     ]
+    summary = "Opens the compiled help file with hh.exe."
+    description = """Uses 'hh.exe <sample>' to open the sample.
+    The .chm filename extension will be added automatically."""
+    option_names = (OPT_ARGUMENTS,)
 
     def start(self, path):
         hh = self.get_path_glob("hh.exe")
-
-        # Check file extension.
-        ext = os.path.splitext(path)[-1].lower()
-        # If the file doesn't have the proper .chm extension force it
-        # and rename it. This is needed for hh to open correctly.
-        if ext != ".chm":
-            new_path = path + ".chm"
-            os.rename(path, new_path)
-            path = new_path
-
-        return self.execute(hh, '"%s"' % path, path)
+        path = check_file_extension(path, ".chm")
+        return self.execute(hh, f'"{path}"', path)
diff --git a/analyzer/windows/modules/packages/chrome.py b/analyzer/windows/modules/packages/chrome.py
index d35f8899d55..257f27f7f4a 100644
--- a/analyzer/windows/modules/packages/chrome.py
+++ b/analyzer/windows/modules/packages/chrome.py
@@ -2,7 +2,6 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 from lib.common.abstracts import Package
 
 
@@ -11,9 +10,16 @@ class Chrome(Package):
 
     PATHS = [
         ("ProgramFiles", "Google", "Chrome", "Application", "chrome.exe"),
+        ("LOCALAPPDATA", "Chromium", "Application", "chrome.exe"),
     ]
+    summary = "Opens the URL in Google Chrome."
+    description = """Uses 'chrome.exe --disable-features=RendererCodeIntegrity "<url>"' to open the supplied url."""
 
     def start(self, url):
-        chrome = self.get_path("Google Chrome")
-        # pass the URL instead of a filename in this case
-        return self.execute(chrome, '"%s"' % url, url)
+        chrome = self.get_path("chrome.exe")
+        args = [
+            "--disable-features=RendererCodeIntegrity",
+        ]
+        args.append('"{}"'.format(url))
+        args = " ".join(args)
+        return self.execute(chrome, args, url)
diff --git a/analyzer/windows/modules/packages/chromium.py b/analyzer/windows/modules/packages/chromium.py
new file mode 100644
index 00000000000..3ca12479a20
--- /dev/null
+++ b/analyzer/windows/modules/packages/chromium.py
@@ -0,0 +1,25 @@
+# Copyright (C) 2023 Sean Whalen
+# This file is part of CAPE Sandbox -https://github.com/kevoreilly/CAPEv2
+# See the file 'docs/LICENSE' for copying permission.
+
+from lib.common.abstracts import Package
+
+
+class Chromium(Package):
+    """Chromium analysis package."""
+
+    PATHS = [
+        ("LOCALAPPDATA", "Chromium", "Application", "chrome.exe"),
+        ("ProgramFiles", "Google", "Chrome", "Application", "chrome.exe"),
+    ]
+    summary = "Opens the URL in Chromium."
+    description = """Uses 'chrome.exe --disable-features=RendererCodeIntegrity "<url>"' to open the supplied url."""
+
+    def start(self, url):
+        chrome = self.get_path("chrome.exe")
+        args = [
+            "--disable-features=RendererCodeIntegrity",
+        ]
+        args.append('"{}"'.format(url))
+        args = " ".join(args)
+        return self.execute(chrome, args, url)
diff --git a/analyzer/windows/modules/packages/chromium_ext.py b/analyzer/windows/modules/packages/chromium_ext.py
new file mode 100644
index 00000000000..52496a5e902
--- /dev/null
+++ b/analyzer/windows/modules/packages/chromium_ext.py
@@ -0,0 +1,25 @@
+# Copyright (C) 2024 fdiaz@virustotal.com
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+import time
+import webbrowser
+
+from lib.common.abstracts import Package
+
+
+class ChromiumExt(Package):
+    """Chromium extension analysis package."""
+
+    PATHS = [
+        ("LOCALAPPDATA", "Chromium", "chrome.exe"),
+    ]
+    summary = "Opens the URL in Chromium with loaded extension."
+    description = """Runs Chromium preloaded with a custom extensios."""
+
+    def start(self, url):
+        webbrowser.register("chromium", None, webbrowser.BackgroundBrowser(self.get_path("chrome.exe")))
+        chromium = webbrowser.get("chromium")
+        chromium.open("about:blank")
+        time.sleep(10)
+        return chromium.open(url)
diff --git a/analyzer/windows/modules/packages/cpl.py b/analyzer/windows/modules/packages/cpl.py
index 87e7a825791..04c9dc0b661 100644
--- a/analyzer/windows/modules/packages/cpl.py
+++ b/analyzer/windows/modules/packages/cpl.py
@@ -2,7 +2,6 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 from lib.common.abstracts import Package
 
 
@@ -12,7 +11,9 @@ class CPL(Package):
     PATHS = [
         ("SystemRoot", "system32", "control.exe"),
     ]
+    summary = "Opens the sample using the control panel."
+    description = """Uses control.exe to open the sample."""
 
     def start(self, path):
         control = self.get_path("control.exe")
-        return self.execute(control, '"%s"' % path, path)
+        return self.execute(control, f'"{path}"', path)
diff --git a/analyzer/windows/modules/packages/crx.py b/analyzer/windows/modules/packages/crx.py
new file mode 100644
index 00000000000..7ba828ccb3d
--- /dev/null
+++ b/analyzer/windows/modules/packages/crx.py
@@ -0,0 +1,51 @@
+# Copyright (C) 2024 davidsb@virustotal.com
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+import logging
+import os
+
+from lib.common.abstracts import Package
+from lib.common.exceptions import CuckooPackageError
+from lib.common.zip_utils import extract_zip, get_infos, upload_extracted_files
+
+log = logging.getLogger(__name__)
+
+
+class CRX(Package):
+    """CRX extensions analysis package."""
+
+    PATHS = [
+        ("ProgramFiles", "Google", "Chrome", "Application", "chrome.exe"),
+        ("LOCALAPPDATA", "Chromium", "Application", "chrome.exe"),
+    ]
+    summary = "Load the crx sample in Google Chrome as extension."
+    description = "Uses 'chrome.exe --load-extension=<extracted_path> \
+                to load the supplied sample. Chrome should have developer \
+                mode option enabled."
+
+    def start(self, path):
+        extracted_path = os.path.join(os.environ["TEMP"], "sample")
+        file_names = []
+        blank_url = "http://about:blank"  # prevent loading list of files in injected directory
+        try:
+            zipinfos = get_infos(path)
+            extract_zip(zip_path=path, extract_path=extracted_path, recursion_depth=0)
+            for f in zipinfos:
+                file_names.append(f.filename)
+        except CuckooPackageError as e:
+            log.warning(e)
+            raise
+
+        if not len(file_names):
+            raise CuckooPackageError("Empty CRX archive")
+
+        upload_extracted_files(extracted_path, file_names)
+
+        chrome = self.get_path("chrome.exe")
+        args = [
+            f"--load-extension={extracted_path}",
+        ]
+        args.append('"{}"'.format(blank_url))
+        args = " ".join(args)
+        return self.execute(chrome, args, path)
diff --git a/analyzer/windows/modules/packages/dll.py b/analyzer/windows/modules/packages/dll.py
index c2f0b9d5d7b..068c951a0a0 100644
--- a/analyzer/windows/modules/packages/dll.py
+++ b/analyzer/windows/modules/packages/dll.py
@@ -2,11 +2,21 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
+import contextlib
+import logging
 import os
 import shutil
 
 from lib.common.abstracts import Package
+from lib.common.common import check_file_extension
+from lib.common.constants import DLL_OPTION_TEXT, DLL_OPTIONS, OPT_ARGUMENTS, OPT_DLLLOADER, OPT_FUNCTION
+
+log = logging.getLogger(__name__)
+
+_OPT_ENABLE_MULTI = "enable_multi"
+_OPT_MAX_DLL_EXPORTS = "max_dll_exports"
+_OPT_USE_EXPORT_NAME = "use_export_name"
+MAX_DLL_EXPORTS_DEFAULT = 8
 
 
 class Dll(Package):
@@ -15,39 +25,158 @@ class Dll(Package):
     PATHS = [
         ("SystemRoot", "System32", "rundll32.exe"),
     ]
+    summary = "Executes a .DLL file using rundll32.exe."
+    description = f"""Uses rundll32.exe to execute a function or functions in the DLL file.
+    {DLL_OPTION_TEXT}
+
+    Functions to execute may be specified by number, the default is '#1'.
+    Use the '{_OPT_ENABLE_MULTI}' option if multiple functions should be executed.
+    Function numbers should be separated by a colon, for example: '#1:#3:#5'.
+    A range of functions can be specified, for example: '#1..3' or '#2-4'
+
+    Functions to execute may be specified by name, if the '{_OPT_USE_EXPORT_NAME}' option is True.
+    The default function name is 'DllMain'
+    Specify the '{_OPT_ENABLE_MULTI}' option if multiple functions should be executed.
+    Function names should be separated by a colon, for example: 'func1:func2'.
+
+    When '{_OPT_ENABLE_MULTI}' is used and function names are not specified, attempt to identify exported functions.
+    If no exported function names were available, default to 'DllMain' and 'DllRegisterServer'.
+
+    By default, at most {MAX_DLL_EXPORTS_DEFAULT} functions will be executed; use the option
+    '{_OPT_MAX_DLL_EXPORTS}' to set a different limit.
+
+    The .dll filename extension will be added to the sample name automatically."""
+    option_names = sorted(set(DLL_OPTIONS + (_OPT_ENABLE_MULTI, _OPT_USE_EXPORT_NAME, _OPT_MAX_DLL_EXPORTS)))
 
     def start(self, path):
         rundll32 = self.get_path("rundll32.exe")
-        function = self.options.get("function") or "#1"
-        arguments = self.options.get("arguments") or ""
-        dllloader = self.options.get("dllloader")
+        arguments = self.options.get(OPT_ARGUMENTS, "")
+        dllloader = self.options.get(OPT_DLLLOADER)
 
-        # Check file extension.
-        ext = os.path.splitext(path)[-1].lower()
         # If the file doesn't have the proper .dll extension force it
         # and rename it. This is needed for rundll32 to execute correctly.
         # See ticket #354 for details.
-        if ext != ".dll":
-            new_path = path + ".dll"
-            os.rename(path, new_path)
-            path = new_path
+        path = check_file_extension(path, ".dll")
 
         if dllloader:
             newname = os.path.join(os.path.dirname(rundll32), dllloader)
             shutil.copy(rundll32, newname)
             rundll32 = newname
 
-        try:
-            start, end = (int(_.lstrip("#")) for _ in function.replace("..", "-").split("-", 1))
-            assert start < end
-            args = '/c for /l %i in ({start},1,{end}) do @{rundll32} "{path}",#%i {arguments}'.format(**locals())
-            # if there are multiple functions launch them by their ordinal number in a for loop via cmd.exe calling rundll32.exe
-            return self.execute("C:\\Windows\\System32\\cmd.exe", args.strip(), path)
-        except (ValueError, AssertionError):
-            pass
+        # If user has requested we use something (function, functions, ordinal, ordinal range)
+        function = self.options.get(OPT_FUNCTION)
+
+        # Does the user want us to run multiple exports that are available?
+        enable_multi = self.options.get(_OPT_ENABLE_MULTI, "")
+        if enable_multi.lower() in ("on", "yes", "true"):
+            enable_multi = True
+        else:
+            enable_multi = False
+
+        # Does the user want us to run multiple exports by name?
+        use_export_name = self.options.get(_OPT_USE_EXPORT_NAME, "")
+        if use_export_name.lower() in ("on", "yes", "true"):
+            use_export_name = True
+        else:
+            use_export_name = False
+
+        run_ordinal_range = False
+        run_multiple_functions = False
+
+        max_dll_exports = None
+        available_exports = []
+        if function:
+            # If user has requested we use functions (by name or by ordinal number), separated by colon
+            if enable_multi and ":" in function:
+                function = function.split(":")
+                run_multiple_functions = True
+
+            # If user has requested we use an ordinal range, separated by a hyphen or by ..
+            elif enable_multi and ("-" in function or ".." in function):
+                run_ordinal_range = True
+
+            # If the user has not enabled multi, but requested multiple functions, log it and default to #1
+            elif not enable_multi and (":" in function or "-" in function or ".." in function):
+                log.warning("You need to enable the `%s` option if you want to run multiple functions.", str(_OPT_ENABLE_MULTI))
+                # Setting function to the first ordinal number since the user does not want use to run multiple functions.
+                function = "#1"
+
+        # If user has not requested that we use a function(s), we should default to running main export entry or
+        # all available exports, up to a limit, if enabled
+        else:
+            # If the user does not want us to run multiple exports that are available, set function to default
+            if not enable_multi:
+                if not use_export_name:
+                    function = "#1"
+                else:
+                    function = "DllMain"
+
+            # The user does want us to run multiple functions if we can find them
+            else:
+                available_exports = list(filter(None, self.config.exports.split(",")))
+
+                # If there are no available exports, default
+                if not available_exports:
+                    if use_export_name:
+                        function = ["DllMain", "DllRegisterServer"]
+                        run_multiple_functions = True
+                    else:
+                        function = "#1"
+
+                # If there are available exports, set limit and determine if we are to use name or number
+                else:
+                    max_dll_exports = int(self.options.get(_OPT_MAX_DLL_EXPORTS, MAX_DLL_EXPORTS_DEFAULT))
+                    if max_dll_exports <= 0:
+                        max_dll_exports = MAX_DLL_EXPORTS_DEFAULT
+                    dll_exports_num = min(len(available_exports), max_dll_exports)
+
+                    if use_export_name:
+                        function = available_exports[:dll_exports_num]
+                        run_multiple_functions = True
+                    else:
+                        function = f"#1-{dll_exports_num}"
+                        run_ordinal_range = True
+
+        # To get to this stage, the user has enabled `enable_multi`, and has either specified an ordinal
+        # range or requested that we use available exports by ordinal number, up to a limit
+        if run_ordinal_range:
+            ret_list = []
+            with contextlib.suppress(ValueError, AssertionError):
+                start, end = (int(_.lstrip("#")) for _ in function.replace("..", "-").split("-", 1))
+                assert start < end
+                # if there are more exports than max_dll_exports we still want to run the last export
+                if max_dll_exports and len(available_exports) > max_dll_exports:
+                    end -= 1
+                    args = f'"{path}",#{len(available_exports)}'
+                    if arguments:
+                        args += f" {arguments}"
+                    ret_list.append(self.execute(rundll32, args, path))
+                # if there are multiple functions launch them by their ordinal number in a for loop
+                for i in range(start, end + 1, 1):
+                    args = f'"{path}",#{i}'
+                    if arguments:
+                        args += f" {arguments}"
+                    ret_list.append(self.execute(rundll32, args, path))
+
+        # To get to this stage, the user has enabled `enable_multi`, and has either specified a list of function names
+        # or requested that we use available exports by name, up to a limit
+        elif run_multiple_functions:
+            ret_list = []
+            for function_name in function:
+                args = f'"{path}"' if dllloader == "regsvcs.exe" else f'"{path}",{function_name}'
+                if arguments:
+                    args += f" {arguments}"
+
+                ret_list.append(self.execute(rundll32, args, path))
+            return ret_list
 
-        args = '"{0}",{1}'.format(path, function)
-        if arguments:
-            args += " {0}".format(arguments)
+        # To get to this stage, the user has either:
+        # - enabled `enable_multi`, did not provide a function, and does not want to use export names (default to #1)
+        # - specified a single function, either by name or by ordinal number
+        # - specified multiple functions, but did not enable `enable_multi`
+        else:
+            args = f'"{path}"' if dllloader == "regsvcs.exe" else f'"{path}",{function}'
+            if arguments:
+                args += f" {arguments}"
 
-        return self.execute(rundll32, args, path)
+            return self.execute(rundll32, args, path)
diff --git a/analyzer/windows/modules/packages/doc.py b/analyzer/windows/modules/packages/doc.py
index afb64d69424..5e300a48e08 100644
--- a/analyzer/windows/modules/packages/doc.py
+++ b/analyzer/windows/modules/packages/doc.py
@@ -2,19 +2,22 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-import os
-
 from lib.common.abstracts import Package
+from lib.common.common import check_file_extension
+from lib.common.constants import MSOFFICE_TRUSTED_PATH, TRUSTED_PATH_TEXT
+from lib.common.exceptions import CuckooPackageError
 
 
 class DOC(Package):
     """Word analysis package."""
 
-    def __init__(self, options={}, config=None):
+    default_curdir = MSOFFICE_TRUSTED_PATH
+
+    def __init__(self, options=None, config=None):
+        if options is None:
+            options = {}
         self.config = config
         self.options = options
-        self.options["office"] = "1"
 
     PATHS = [
         ("ProgramFiles", "Microsoft Office", "WINWORD.EXE"),
@@ -22,12 +25,18 @@ def __init__(self, options={}, config=None):
         ("ProgramFiles", "Microsoft Office*", "root", "Office*", "WINWORD.EXE"),
         ("ProgramFiles", "Microsoft Office", "WORDVIEW.EXE"),
     ]
+    summary = "Opens a document file with WINWORD.EXE."
+    description = f"""Uses 'WINWORD.EXE /q', or if unavailable, 'WORDVIEW.EXE /q'.
+    {TRUSTED_PATH_TEXT}
+    The .doc filename extension will be added automatically."""
 
     def start(self, path):
-        word = self.get_path_glob("Microsoft Office Word")
-        if "." not in os.path.basename(path):
-            new_path = path + ".doc"
-            os.rename(path, new_path)
-            path = new_path
-
-        return self.execute(word, "\"%s\" /q" % path, path)
+        # Try getting winword or wordview as a backup
+        try:
+            word = self.get_path_glob("WINWORD.EXE")
+        except CuckooPackageError:
+            word = self.get_path_glob("WORDVIEW.EXE")
+
+        if not path.endswith((".doc", ".docx", ".docm", ".dotm", ".odt")):
+            path = check_file_extension(path, ".doc")
+        return self.execute(word, f'"{path}" /q', path)
diff --git a/analyzer/windows/modules/packages/doc2016.py b/analyzer/windows/modules/packages/doc2016.py
index c875ea87ec8..c3fc4020d7b 100644
--- a/analyzer/windows/modules/packages/doc2016.py
+++ b/analyzer/windows/modules/packages/doc2016.py
@@ -2,30 +2,31 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-import os
-
 from lib.common.abstracts import Package
+from lib.common.common import check_file_extension
+from lib.common.constants import MSOFFICE_TRUSTED_PATH, TRUSTED_PATH_TEXT
 
 
 class DOC2016(Package):
     """Word analysis package."""
 
-    def __init__(self, options={}, config=None):
+    default_curdir = MSOFFICE_TRUSTED_PATH
+
+    def __init__(self, options=None, config=None):
+        if options is None:
+            options = {}
         self.config = config
         self.options = options
-        self.options["exclude-apis"] = "memcpy"
-        self.options["office"] = "1"
 
     PATHS = [
         ("ProgramFiles", "Microsoft Office*", "root", "Office16", "WINWORD.EXE"),
     ]
+    summary = "Opens a document file with WINWORD.EXE."
+    description = f"""Uses 'Office16\\WINWORD.EXE /q /dde /n' to open the sample.
+    {TRUSTED_PATH_TEXT}
+    The .doc filename extension will be added automatically."""
 
     def start(self, path):
-        word = self.get_path_glob("Microsoft Office Word")
-        if "." not in os.path.basename(path):
-            new_path = path + ".doc"
-            os.rename(path, new_path)
-            path = new_path
-
-        return self.execute(word, '"%s" /q /dde /n' % path, path)
+        word = self.get_path_glob("WINWORD.EXE")
+        path = check_file_extension(path, ".doc")
+        return self.execute(word, f'"{path}" /q /dde /n', path)
diff --git a/analyzer/windows/modules/packages/doc_antivm.py b/analyzer/windows/modules/packages/doc_antivm.py
new file mode 100644
index 00000000000..c177c6a446b
--- /dev/null
+++ b/analyzer/windows/modules/packages/doc_antivm.py
@@ -0,0 +1,70 @@
+import os
+import time
+
+from lib.common.abstracts import Package
+from lib.common.common import check_file_extension
+from lib.common.constants import MSOFFICE_TRUSTED_PATH, TRUSTED_PATH_TEXT
+from lib.common.exceptions import CuckooPackageError
+
+
+class DOC_ANTIVM(Package):
+    """Word analysis package, with anti-VM technique prevention."""
+
+    PATHS = [
+        ("ProgramFiles", "Microsoft Office", "WINWORD.EXE"),
+        ("ProgramFiles", "Microsoft Office", "Office*", "WINWORD.EXE"),
+        ("ProgramFiles", "Microsoft Office*", "root", "Office*", "WINWORD.EXE"),
+        ("ProgramFiles", "Microsoft Office", "WORDVIEW.EXE"),
+    ]
+    default_curdir = MSOFFICE_TRUSTED_PATH
+    summary = "Opens a document file with WINWORD.EXE."
+    description = f"""Uses 'WINWORD.EXE <sample> /q', or if unavailable, 'WORDVIEW.EXE <sample> /q'.
+    {TRUSTED_PATH_TEXT}
+    First starts up 20 calc.exe windows, and other standard applications, to thwart some anti-vm measures.
+    The .doc filename extension will be added automatically."""
+
+    def start(self, path):
+        # Determine if the submitter wants the sample to be monitored
+        free = self.options.get("free", False)
+
+        # We will be temporarily setting this option so that the background processes will not be monitored.
+        self.options["free"] = 1
+
+        # First, start 20 Calculator windows
+        for _ in range(20):
+            calc = os.path.join("C:\\windows", "system32", "calc.exe")
+            self.execute(calc, "", path)
+
+        # Next, open a bunch of standard applications
+        bnr = os.path.join("C:\\windows", "system32", "control.exe")
+        self.execute(bnr, "/name Microsoft.BackupAndRestore", path)
+
+        # sync center
+        mobs = os.path.join("C:\\windows", "system32", "mobsync.exe")
+        self.execute(mobs, "", path)
+
+        # rdp
+        rdp = os.path.join("C:\\windows", "system32", "mstsc.exe")
+        self.execute(rdp, "", path)
+
+        # char map
+        chrm = os.path.join("C:\\windows", "system32", "charmap.exe")
+        self.execute(chrm, "", path)
+
+        # paint
+        paint = os.path.join("C:\\windows", "system32", "mspaint.exe")
+        self.execute(paint, "", path)
+
+        # If the user did not request the monitor to be disabled, enable it
+        if not free:
+            self.options["free"] = 0
+
+        time.sleep(5)
+        # Try getting winword or wordview as a backup
+        try:
+            word = self.get_path_glob("WINWORD.EXE")
+        except CuckooPackageError:
+            word = self.get_path_glob("WORDVIEW.EXE")
+
+        path = check_file_extension(path, ".doc")
+        return self.execute(word, f'"{path}" /q', path)
diff --git a/analyzer/windows/modules/packages/edge.py b/analyzer/windows/modules/packages/edge.py
new file mode 100644
index 00000000000..12caf4a18b1
--- /dev/null
+++ b/analyzer/windows/modules/packages/edge.py
@@ -0,0 +1,15 @@
+from lib.common.abstracts import Package
+
+
+class Edge(Package):
+    """Edge analysis package."""
+
+    PATHS = [
+        ("ProgramFiles", "Microsoft", "Edge", "Application", "msedge.exe"),
+    ]
+    summary = "Opens the URL in Microsoft Edge."
+    description = """Uses msedge.exe to open the supplied url."""
+
+    def start(self, url):
+        edge = self.get_path("msedge.exe")
+        return self.execute(edge, f'"{url}"', url)
diff --git a/analyzer/windows/modules/packages/eml.py b/analyzer/windows/modules/packages/eml.py
index f6573aff13d..2fdc0b061b2 100644
--- a/analyzer/windows/modules/packages/eml.py
+++ b/analyzer/windows/modules/packages/eml.py
@@ -2,7 +2,6 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 from lib.common.abstracts import Package
 
 
@@ -14,7 +13,9 @@ class EML(Package):
         ("ProgramFiles", "Microsoft Office", "Office*", "OUTLOOK.EXE"),
         ("ProgramFiles", "Microsoft Office*", "root", "Office*", "OUTLOOK.EXE"),
     ]
+    summary = "Opens an email file with MS Outlook."
+    description = """Uses 'OUTLOOK.EXE /eml <sample>' to open the file."""
 
     def start(self, path):
-        outlook = self.get_path_glob("Microsoft Office Outlook")
-        return self.execute(outlook, '/eml "%s"' % path, path)
+        outlook = self.get_path_glob("OUTLOOK.EXE")
+        return self.execute(outlook, f'/eml "{path}"', path)
diff --git a/analyzer/windows/modules/packages/exe.py b/analyzer/windows/modules/packages/exe.py
index 914d660aceb..7f2acb07e1c 100644
--- a/analyzer/windows/modules/packages/exe.py
+++ b/analyzer/windows/modules/packages/exe.py
@@ -2,38 +2,45 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 import os
 import shutil
 from subprocess import call
+
 from lib.common.abstracts import Package
+from lib.common.common import check_file_extension
+from lib.common.constants import OPT_APPDATA, OPT_ARGUMENTS, OPT_EXECUTIONDIR, OPT_RUNASX86
 
 
 class Exe(Package):
     """EXE analysis package."""
 
+    summary = "Runs the supplied executable."
+    description = f"""\
+    Executes the given sample, passing '{OPT_ARGUMENTS}' if specified.
+    Use the '{OPT_APPDATA}' option to run the executable from the APPDATA directory.
+    Use the '{OPT_RUNASX86}' option to set the 32BITREQUIRED flag in the PE header,
+    using 'CorFlags.exe /32bit+'.
+    The .exe extension will be added automatically."""
+    option_names = (OPT_ARGUMENTS, OPT_APPDATA, OPT_RUNASX86)
+
     def start(self, path):
-        args = self.options.get("arguments")
-        appdata = self.options.get("appdata")
-        runasx86 = self.options.get("runasx86")
+        args = self.options.get(OPT_ARGUMENTS)
+        appdata = self.options.get(OPT_APPDATA)
+        runasx86 = self.options.get(OPT_RUNASX86)
 
         # If the file doesn't have an extension, add .exe
         # See CWinApp::SetCurrentHandles(), it will throw
         # an exception that will crash the app if it does
         # not find an extension on the main exe's filename
-        if "." not in os.path.basename(path):
-            new_path = path + ".exe"
-            os.rename(path, new_path)
-            path = new_path
+        path = check_file_extension(path, ".exe")
 
         if appdata:
             # run the executable from the APPDATA directory, required for some malware
             basepath = os.getenv("APPDATA")
             newpath = os.path.join(basepath, os.path.basename(path))
-            if os.path.exists(new_path):
-                os.remove(new_path)
             shutil.copy(path, newpath)
             path = newpath
+            self.options[OPT_EXECUTIONDIR] = basepath
         if runasx86:
             # ignore the return value, user must have CorFlags.exe installed in the guest VM
             call(["CorFlags.exe", path, "/32bit+"])
diff --git a/analyzer/windows/modules/packages/firefox.py b/analyzer/windows/modules/packages/firefox.py
index 06dfa10666e..d84f9670295 100644
--- a/analyzer/windows/modules/packages/firefox.py
+++ b/analyzer/windows/modules/packages/firefox.py
@@ -2,7 +2,6 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 from lib.common.abstracts import Package
 
 
@@ -12,8 +11,10 @@ class Firefox(Package):
     PATHS = [
         ("ProgramFiles", "Mozilla Firefox", "firefox.exe"),
     ]
+    summary = "Opens the URL in firefox."
+    description = """Uses firefox.exe to open the supplied url."""
 
     def start(self, url):
-        firefox = self.get_path("Mozilla Firefox")
+        firefox = self.get_path("firefox.exe")
         # pass the URL instead of a filename in this case
-        return self.execute(firefox, '"%s"' % url, url)
+        return self.execute(firefox, f'"{url}"', url)
diff --git a/analyzer/windows/modules/packages/firefox_ext.py b/analyzer/windows/modules/packages/firefox_ext.py
new file mode 100644
index 00000000000..69d76c520b7
--- /dev/null
+++ b/analyzer/windows/modules/packages/firefox_ext.py
@@ -0,0 +1,54 @@
+# Copyright (C) 2024 fdiaz@virustotal.com
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+import base64
+import logging
+import os
+import time
+import webbrowser
+
+from lib.common.abstracts import Package
+
+log = logging.getLogger(__name__)
+
+class Firefox_Ext(Package):
+    """Firefox analysis package (with extension)."""
+
+    PATHS = [
+        ("ProgramFiles", "Mozilla Firefox", "firefox.exe"),
+    ]
+    summary = "Opens the URL in firefox."
+    description = """Spawns firefox.exe and opens the supplied URL.
+
+    Allows setting a custom user-agent string via the 'user_agent' option.
+    The value should be provided base64-encoded.
+    """
+
+    # set your current firefox profile path (about:profiles)
+    profile_path = None
+
+    def start(self, url):
+        user_agent = self.options.get("user_agent")
+        log.debug("User agent option value: %s", user_agent)
+        try:
+            base64.b64decode(user_agent)
+        except Exception:
+            log.error("Invalid base64 encoded user agent provided.")
+            user_agent = None
+        if user_agent and self.profile_path:
+            config = os.path.join(self.profile_path, 'prefs.js')
+            ua_decoded = base64.b64decode(user_agent).decode('utf-8')
+            ua_config = f'user_pref("general.useragent.override", "{ua_decoded}");\n'
+            try:
+                os.makedirs(os.path.dirname(config), exist_ok=True)
+                with open(config, 'a') as file:
+                    file.write(ua_config)
+                log.info("Successfully appended user agent to prefs.js: %s", ua_decoded)
+            except Exception as e:
+                log.error("Failed to write user agent to prefs.js: %s", e)
+        firefox_path = self.get_path("firefox.exe")
+        webbrowser.register("firefox", None, webbrowser.BackgroundBrowser(firefox_path))
+        firefox = webbrowser.get("firefox")
+        firefox.open("about:blank")
+        time.sleep(7)  # Rough estimate, change based on your setup times.
+        return firefox.open(url)
diff --git a/analyzer/windows/modules/packages/generic.py b/analyzer/windows/modules/packages/generic.py
index d1f43e85364..602366d195e 100644
--- a/analyzer/windows/modules/packages/generic.py
+++ b/analyzer/windows/modules/packages/generic.py
@@ -2,9 +2,6 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-from random import randint
-
 from lib.common.abstracts import Package
 
 
@@ -16,8 +13,23 @@ class Generic(Package):
     PATHS = [
         ("SystemRoot", "system32", "cmd.exe"),
     ]
+    summary = "Executes the sample file with cmd.exe."
+    description = """Uses 'cmd.exe /c start /wait "" "path"' to execute sample files.
+    For context behind this command:
+    /C          Carries out the command specified by string and then terminates
+    START       Starts a separate window to run a specified program or command.
+    /WAIT       Start application and wait for it to terminate.
+    ""          The name of the separate window
+    "path"      The path of the uploaded sample
+    """
 
     def start(self, path):
         cmd_path = self.get_path("cmd.exe")
-        cmd_args = '/c start /wait "" "{0}"'.format(path)
+        # For context behind this command:
+        # /C          Carries out the command specified by string and then terminates
+        # START       Starts a separate window to run a specified program or command.
+        # WAIT        Start application and wait for it to terminate.
+        # ""          The name of the separate window
+        # "{path}"    The name of the specific program
+        cmd_args = f'/c start /wait "" "{path}"'
         return self.execute(cmd_path, cmd_args, path)
diff --git a/analyzer/windows/modules/packages/hta.py b/analyzer/windows/modules/packages/hta.py
index 7d8196d6b6c..b429d4a1ef3 100644
--- a/analyzer/windows/modules/packages/hta.py
+++ b/analyzer/windows/modules/packages/hta.py
@@ -2,13 +2,8 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-import os
-import logging
-
 from lib.common.abstracts import Package
-
-log = logging.getLogger(__name__)
+from lib.common.common import check_file_extension
 
 
 class HTA(Package):
@@ -17,12 +12,11 @@ class HTA(Package):
     PATHS = [
         ("SystemRoot", "system32", "mshta.exe"),
     ]
+    summary = "Executes the sample with mshta.exe."
+    description = """Uses 'mshta.exe <sample>' to run a .hta file.
+    The .hta filename extension will be added automatically."""
 
     def start(self, path):
         mshta = self.get_path("mshta.exe")
-
-        if not path.endswith(".hta"):
-            os.rename(path, path + ".hta")
-            path += ".hta"
-
-        return self.execute(mshta, '"%s"' % path, path)
+        path = check_file_extension(path, ".hta")
+        return self.execute(mshta, f'"{path}"', path)
diff --git a/analyzer/windows/modules/packages/html.py b/analyzer/windows/modules/packages/html.py
deleted file mode 100644
index dea12ba45cf..00000000000
--- a/analyzer/windows/modules/packages/html.py
+++ /dev/null
@@ -1,35 +0,0 @@
-# Copyright (C) 2010-2015 Cuckoo Foundation.
-# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
-# See the file 'docs/LICENSE' for copying permission.
-
-from __future__ import absolute_import
-import shutil
-import logging
-
-from lib.common.abstracts import Package
-
-log = logging.getLogger(__name__)
-
-
-class HTML(Package):
-    """HTML file analysis package."""
-
-    PATHS = [
-        ("ProgramFiles", "Internet Explorer", "iexplore.exe"),
-    ]
-
-    def start(self, path):
-        iexplore = self.get_path("browser")
-
-        # Travelling inside malware universe you should bring a towel with you.
-        # If a file detected as HTML is submitted without a proper extension,
-        # or without an extension at all (are you used to name samples with hash?),
-        # IE is going to open it as a text file, so your precious sample will not
-        # be executed.
-        # We help you sample to execute renaming it with a proper extension.
-        if not path.endswith((".htm", ".html")):
-            shutil.copy(path, path + ".html")
-            path += ".html"
-            log.info("Submitted file is missing extension, adding .html")
-
-        return self.execute(iexplore, '"%s"' % path, path)
diff --git a/analyzer/windows/modules/packages/hwp.py b/analyzer/windows/modules/packages/hwp.py
index 01175a749d6..53fc723c18b 100644
--- a/analyzer/windows/modules/packages/hwp.py
+++ b/analyzer/windows/modules/packages/hwp.py
@@ -9,7 +9,10 @@ class HWP(Package):
     """Hangul (Korean) Word Processor File 5.x analysis package."""
 
     PATHS = [("ProgramFiles", "Hnc", "Hwp80", "Hwp.exe"), ("ProgramFiles", "Hnc", "Office 2020", "HOffice110", "Bin", "Hword.exe")]
+    summary = "Opens a document with Hangul Word Processor"
+    description = """Uses 'Hnc\\Hwp80\\Hwp.exe <sample>' to open the sample.
+    Alternatively, uses 'Hnc\\Office 2020\\HOffice110\\Bin\\Hword.exe <sample>' to open the sample if Hwp.exe isn't found."""
 
     def start(self, path):
         word = self.get_path("Hangul (Korean) Word Processor File 5.x")
-        return self.execute(word, args=[path], mode="office", trigger="file:%s" % path)
+        return self.execute(word, args=[path], mode="office", trigger=f"file:{path}")
diff --git a/analyzer/windows/modules/packages/ichitaro.py b/analyzer/windows/modules/packages/ichitaro.py
new file mode 100644
index 00000000000..16345daaecd
--- /dev/null
+++ b/analyzer/windows/modules/packages/ichitaro.py
@@ -0,0 +1,33 @@
+# Copyright (C) 2021 bartblaze
+#
+# This program is free software: you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation, either version 3 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+from lib.common.abstracts import Package
+from lib.common.common import check_file_extension
+
+
+# While this should work, it is an experimental package - do a PR if you see fit! Ichitaro Viewer only.
+class ichitaro(Package):
+    """Ichitaro (Japanese) Word Processor analysis package."""
+
+    PATHS = [("ProgramFiles", "JustSystems", "TaroView", "TAROVIEW.EXE")]
+    summary = "Opens a .jtd file using Ichitaro viewer."
+    description = """Uses 'TaroView\\TAROVIEW.EXE <sample>' to open a .jtd file.
+    The .jtd file extension will be added automatically."""
+
+    def start(self, path):
+        ichitaro = self.get_path("TAROVIEW.EXE")
+        # Rename file to file.jtd so it can open properly.
+        path = check_file_extension(path, ".jtd")
+        return self.execute(ichitaro, f'"{path}"', path)
diff --git a/analyzer/windows/modules/packages/ie.py b/analyzer/windows/modules/packages/ie.py
index 246f582a99f..5bfcf7546ce 100644
--- a/analyzer/windows/modules/packages/ie.py
+++ b/analyzer/windows/modules/packages/ie.py
@@ -2,7 +2,6 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 from lib.common.abstracts import Package
 
 
@@ -12,8 +11,10 @@ class IE(Package):
     PATHS = [
         ("ProgramFiles", "Internet Explorer", "iexplore.exe"),
     ]
+    summary = "Opens the URL in Internet Explorer."
+    description = """Uses iexplore.exe to open the supplied url."""
 
     def start(self, url):
         iexplore = self.get_path("Internet Explorer")
         # pass the URL instead of a filename in this case
-        return self.execute(iexplore, '"%s"' % url, url)
+        return self.execute(iexplore, f'"{url}"', url)
diff --git a/analyzer/windows/modules/packages/inf.py b/analyzer/windows/modules/packages/inf.py
new file mode 100644
index 00000000000..2e19ef4aeb4
--- /dev/null
+++ b/analyzer/windows/modules/packages/inf.py
@@ -0,0 +1,30 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+# https://lolbas-project.github.io/lolbas/Binaries/Cmstp/
+
+from lib.common.abstracts import Package
+from lib.common.common import check_file_extension
+
+
+class INF(Package):
+    """INF analysis package."""
+
+    def __init__(self, options={}, config=None):
+        self.config = config
+        self.options = options
+
+    PATHS = [
+        ("SystemRoot", "System32", "cmstp.exe"),
+        ("SystemRoot", "SysWOW64", "cmstp.exe"),
+    ]
+    summary = "Opens the sample with cmstp.exe."
+    description = """Uses 'cmstp.exe /f <sample>' to open the sample
+    as a Connection Manager service profile.
+    The .inf filename extension will be added automatically."""
+
+    def start(self, path):
+        cmstp = self.get_path_glob("cmstp.exe")
+        path = check_file_extension(path, ".inf")
+        return self.execute(cmstp, f'/s "{path}"', path)
diff --git a/analyzer/windows/modules/packages/inp.py b/analyzer/windows/modules/packages/inp.py
index 13958aa528c..8a6e6aeb976 100644
--- a/analyzer/windows/modules/packages/inp.py
+++ b/analyzer/windows/modules/packages/inp.py
@@ -12,21 +12,25 @@
 #
 # You should have received a copy of the GNU General Public License
 # along with this program.  If not, see <http://www.gnu.org/licenses/>.
-import os
+
 from lib.common.abstracts import Package
+from lib.common.common import check_file_extension
+
 
-# While this should work, it is an experimental rule - do a PR if you see fit!
+# While this should work, it is an experimental package - do a PR if you see fit!
 class INP(Package):
     """Inpage (Urdu/Arabic) Word Processor analysis package."""
 
-    PATHS = [("ProgramFiles", "InPage Urdu Professional", "Inpage.exe"), ("ProgramFiles", "Concept Software Pvt. Ltd", "InPage Urdu Professional", "Inpage.exe")]
+    PATHS = [
+        ("ProgramFiles", "InPage Urdu Professional", "Inpage.exe"),
+        ("ProgramFiles", "Concept Software Pvt. Ltd", "InPage Urdu Professional", "Inpage.exe"),
+    ]
+    summary = "Opens a .inp file using InPage Urdu Professional."
+    description = """Uses 'Inpage.exe <sample>' to open a .inp file.
+    The .inp file extension will be added automatically."""
 
     def start(self, path):
         inp = self.get_path("Inpage.exe")
-        #Rename file to file.inp so it can open properly.
-        ext = os.path.splitext(path)[-1].lower()
-        if ext != ".inp":
-          new_path = path + ".inp"
-          os.rename(path, new_path)
-          path = new_path
-        return self.execute(inp, '"%s"' % path, path)
+        # Rename file to file.inp so it can open properly.
+        path = check_file_extension(path, ".inp")
+        return self.execute(inp, f'"{path}"', path)
diff --git a/analyzer/windows/modules/packages/jar.py b/analyzer/windows/modules/packages/jar.py
index ecc49a0a8de..9b4917eac80 100644
--- a/analyzer/windows/modules/packages/jar.py
+++ b/analyzer/windows/modules/packages/jar.py
@@ -2,8 +2,8 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 from lib.common.abstracts import Package
+from lib.common.constants import OPT_CLASS
 
 
 class Jar(Package):
@@ -12,14 +12,15 @@ class Jar(Package):
     PATHS = [
         ("ProgramFiles", "Java", "jre*", "bin", "java.exe"),
     ]
+    summary = "Executes a java class using java.exe."
+    description = f"""Uses 'java.exe -jar [path]' to run the given sample.
+    However, if the '{OPT_CLASS}' option is specified, use
+    'java.exe -cp [path] [class]' to run the named java class."""
+    option_names = (OPT_CLASS,)
 
     def start(self, path):
         java = self.get_path_glob("Java")
         class_path = self.options.get("class")
 
-        if class_path:
-            args = '-cp "%s" %s' % (path, class_path)
-        else:
-            args = '-jar "%s"' % path
-
+        args = f'-cp "{path}" {class_path}' if class_path else f'-jar "{path}"'
         return self.execute(java, args, path)
diff --git a/analyzer/windows/modules/packages/js.py b/analyzer/windows/modules/packages/js.py
index 07418da9b3e..130e9ab3c9b 100644
--- a/analyzer/windows/modules/packages/js.py
+++ b/analyzer/windows/modules/packages/js.py
@@ -2,10 +2,10 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 import os
 
 from lib.common.abstracts import Package
+from lib.common.constants import OPT_FREE
 
 
 class JS(Package):
@@ -14,34 +14,38 @@ class JS(Package):
     PATHS = [
         ("SystemRoot", "system32", "wscript.exe"),
     ]
+    summary = "Executes a .JS file using wscript.exe."
+    description = """Uses 'wscript.exe <sample>' to run a .js/.jse file.
+    In the case of '.jse' files, first start up 20 calc.exe windows, to thwart
+    some anti-vm measures.
+    The appropriate file extension will be added automatically."""
 
     def start(self, path):
         wscript = self.get_path("wscript.exe")
-        args = '"%s"' % path
         ext = os.path.splitext(path)[-1].lower()
-        if ext != ".js" and ext != ".jse":
-            if ext == ".jse" or (os.path.isfile(path) and "#@~^" == open(path, "rt").read(4)):
+        if ext not in (".js", ".jse"):
+            if ext == ".jse" or os.path.isfile(path) and open(path, "rt").read(4) == "#@~^":
                 if ext != ".jse":
-                    os.rename(path, path + ".jse")
-                    path = path + ".jse"
+                    os.rename(path, f"{path}.jse")
+                    path = f"{path}.jse"
                     ext = ".jse"
             else:
-                os.rename(path, path + ".js")
-                path = path + ".js"
+                os.rename(path, f"{path}.js")
+                path = f"{path}.js"
 
         if ext == ".jse":
             # antivm fix
-            free = self.options.get("free", False)
+            free = self.options.get(OPT_FREE, False)
             # to not track calcs
-            self.options["free"] = 1
+            self.options[OPT_FREE] = 1
             # fuck antivm
-            for i in range(20):
+            for _ in range(20):
                 # calc
-                calc = os.path.join("c:\\windows", "system32", "calc.exe")
+                calc = os.path.join("C:\\windows", "system32", "calc.exe")
                 # cl = Process()
                 self.execute(calc, "", path)
-            if free is False:
-                self.options["free"] = 0
+            if not free:
+                self.options[OPT_FREE] = 0
 
-        args = '"%s"' % path
+        args = f'"{path}"'
         return self.execute(wscript, args, path)
diff --git a/analyzer/windows/modules/packages/js_antivm.py b/analyzer/windows/modules/packages/js_antivm.py
index 66dafb847b6..8b3fb94d95a 100644
--- a/analyzer/windows/modules/packages/js_antivm.py
+++ b/analyzer/windows/modules/packages/js_antivm.py
@@ -2,40 +2,47 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 import os
 
 from lib.common.abstracts import Package
+from lib.common.constants import OPT_FREE
 
 
 class JS_ANTIVM(Package):
-    """JavaScript analysis package."""
+    """JavaScript analysis package, with anti-VM technique prevention.."""
 
     PATHS = [
         ("SystemRoot", "system32", "wscript.exe"),
     ]
+    summary = "Executes a .JS file using wscript.exe."
+    description = """Uses 'wscript.exe <sample>' to run a .js/.jse file.
+    First starts up 20 calc.exe windows, to thwart some anti-vm measures.
+    The appropriate file extension will be added automatically."""
 
     def start(self, path):
-        free = self.options.get("free", False)
-        # to not track calcs
-        self.options["free"] = 1
-        # fuck antivm
-        for _ in range(50):
-            # calc
-            calc = os.path.join("c:\\windows", "system32", "calc.exe")
-            # cl = Process()
+        # Determine if the submitter wants the sample to be monitored
+        free = self.options.get(OPT_FREE, False)
+
+        # We will be temporarily setting this option so that the background processes will not be monitored.
+        self.options[OPT_FREE] = 1
+
+        # Start 20 Calculator windows
+        for _ in range(20):
+            calc = os.path.join("C:\\windows", "system32", "calc.exe")
             self.execute(calc, "", path)
-        if free is False:
-            self.options["free"] = 0
+
+        # If the user did not request the monitor to be disabled, enable it
+        if not free:
+            self.options[OPT_FREE] = 0
+
         wscript = self.get_path("wscript.exe")
-        args = '"%s"' % path
         ext = os.path.splitext(path)[-1].lower()
-        if ext != ".js" and ext != ".jse":
-            if os.path.isfile(path) and "#@~^" == open(path, "rt").read(4):
-                os.rename(path, path + ".jse")
-                path = path + ".jse"
+        if ext not in (".js", ".jse"):
+            if os.path.isfile(path) and open(path, "rt").read(4) == "#@~^":
+                os.rename(path, f"{path}.jse")
+                path = f"{path}.jse"
             else:
-                os.rename(path, path + ".js")
-                path = path + ".js"
-        args = '"%s"' % path
+                os.rename(path, f"{path}.js")
+                path = f"{path}.js"
+        args = f'"{path}"'
         return self.execute(wscript, args, path)
diff --git a/analyzer/windows/modules/packages/lnk.py b/analyzer/windows/modules/packages/lnk.py
index 04620d102d1..1fb80916b33 100644
--- a/analyzer/windows/modules/packages/lnk.py
+++ b/analyzer/windows/modules/packages/lnk.py
@@ -1,25 +1,24 @@
-# Copyright (C) 2010-2015 Cuckoo Foundation, Optiv, Inc. (brad.spengler@optiv.com)
+# Copyright (C) 2010-2015 Cuckoo Foundation.
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-import os
 from lib.common.abstracts import Package
+from lib.common.common import check_file_extension
 
 
 class LNK(Package):
-    """LNK analysis package."""
+    """Windows LNK analysis package via powershell."""
 
     PATHS = [
-        ("SystemRoot", "system32", "cmd.exe"),
+        # PS <= 5
+        ("SystemRoot", "sysnative", "WindowsPowerShell", "v*.0", "powershell.exe"),
+        ("SystemRoot", "system32", "WindowsPowerShell", "v*.0", "powershell.exe"),
     ]
+    summary = "Executes a sample file with powershell."
+    description = "Uses 'powershell Start-Process -FilePath <sample>' to run a .lnk file."
 
     def start(self, path):
-        if "." not in os.path.basename(path):
-            new_path = path + ".lnk"
-            os.rename(path, new_path)
-            path = new_path
-
-        cmd_path = self.get_path("cmd.exe")
-        cmd_args = '/c start /wait "" "{0}"'.format(path)
-        return self.execute(cmd_path, cmd_args, path)
+        powershell = self.get_path_glob("PowerShell")
+        path = check_file_extension(path, ".lnk")
+        args = f'Start-Process -FilePath "{path}"'
+        return self.execute(powershell, args, path)
diff --git a/analyzer/windows/modules/packages/mht.py b/analyzer/windows/modules/packages/mht.py
index 39184394d16..1f26f8832ae 100644
--- a/analyzer/windows/modules/packages/mht.py
+++ b/analyzer/windows/modules/packages/mht.py
@@ -2,13 +2,8 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-import shutil
-import logging
-
 from lib.common.abstracts import Package
-
-log = logging.getLogger(__name__)
+from lib.common.common import check_file_extension
 
 
 class MHT(Package):
@@ -17,9 +12,12 @@ class MHT(Package):
     PATHS = [
         ("ProgramFiles", "Internet Explorer", "iexplore.exe"),
     ]
+    summary = "Opens a .mht file with Internet Explorer."
+    description = """Uses 'iexplore.exe <sample>' to open a .mht file.
+    The .mht filename extension will be added automatically."""
 
     def start(self, path):
-        iexplore = self.get_path("browser")
+        iexplore = self.get_path("iexplore.exe")
 
         # Travelling inside malware universe you should bring a towel with you.
         # If a file detected as HTML is submitted without a proper extension,
@@ -27,9 +25,5 @@ def start(self, path):
         # IE is going to open it as a text file, so your precious sample will not
         # be executed.
         # We help you sample to execute renaming it with a proper extension.
-        if not path.endswith(".mht"):
-            shutil.copy(path, path + ".mht")
-            path += ".mht"
-            log.info("Submitted file is missing extension, adding .mht")
-
-        return self.execute(iexplore, '"%s"' % path, path)
+        path = check_file_extension(path, ".mht")
+        return self.execute(iexplore, f'"{path}"', path)
diff --git a/analyzer/windows/modules/packages/msbuild.py b/analyzer/windows/modules/packages/msbuild.py
new file mode 100644
index 00000000000..80adff674ff
--- /dev/null
+++ b/analyzer/windows/modules/packages/msbuild.py
@@ -0,0 +1,24 @@
+# This file is part of CAPE Sandbox - https://github.com/kevoreilly/CAPEv2
+# See the file 'docs/LICENSE' for copying permission.
+
+from lib.common.abstracts import Package
+
+
+class MSBUILD(Package):
+    """msbuild analysis package."""
+
+    def __init__(self, options=None, config=None):
+        if options is None:
+            options = {}
+        self.config = config
+        self.options = options
+
+    PATHS = [
+        ("SystemRoot", "Microsoft.NET", "Framework", "v4.0.30319", "msbuild.exe"),
+    ]
+    summary = "Opens a dotnet project file with MSBuild."
+    description = """Uses 'MSBUILD.EXE <sample>' to open a dotnet project file."""
+
+    def start(self, path):
+        msbuild = self.get_path_glob("msbuild.exe")
+        return self.execute(msbuild, f'"{path}"', path)
diff --git a/analyzer/windows/modules/packages/msg.py b/analyzer/windows/modules/packages/msg.py
index ccaa0f90799..05a9c1982bd 100644
--- a/analyzer/windows/modules/packages/msg.py
+++ b/analyzer/windows/modules/packages/msg.py
@@ -2,7 +2,6 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 from lib.common.abstracts import Package
 
 
@@ -14,7 +13,9 @@ class MSG(Package):
         ("ProgramFiles", "Microsoft Office", "Office*", "OUTLOOK.EXE"),
         ("ProgramFiles", "Microsoft Office*", "root", "Office*", "OUTLOOK.EXE"),
     ]
+    summary = "Opens a .msg file with MS Outlook."
+    description = """Uses 'OUTLOOK.EXE /f <sample>' to open a .msg file."""
 
     def start(self, path):
-        outlook = self.get_path_glob("Microsoft Office Outlook")
-        return self.execute(outlook, '/f "%s"' % path, path)
+        outlook = self.get_path_glob("OUTLOOK.EXE")
+        return self.execute(outlook, f'/f "{path}"', path)
diff --git a/analyzer/windows/modules/packages/msi.py b/analyzer/windows/modules/packages/msi.py
index 26d7b6a5d44..80aca4ba081 100644
--- a/analyzer/windows/modules/packages/msi.py
+++ b/analyzer/windows/modules/packages/msi.py
@@ -2,7 +2,6 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 from lib.common.abstracts import Package
 
 
@@ -12,8 +11,11 @@ class Msi(Package):
     PATHS = [
         ("SystemRoot", "system32", "msiexec.exe"),
     ]
+    summary = "Executes a sample with msiexec.exe."
+    description = """Uses 'msiexec.exe /I <sample> /qb ACCEPTEULA=1 LicenseAccepted=1'
+    to run the sample."""
 
     def start(self, path):
         msi_path = self.get_path("msiexec.exe")
-        msi_args = "/I \"{0}\" /qb ACCEPTEULA=1 LicenseAccepted=1".format(path)
+        msi_args = f'/I "{path}" /qb ACCEPTEULA=1 LicenseAccepted=1'
         return self.execute(msi_path, msi_args, path)
diff --git a/analyzer/windows/modules/packages/msix.py b/analyzer/windows/modules/packages/msix.py
new file mode 100644
index 00000000000..dfa372cbdbe
--- /dev/null
+++ b/analyzer/windows/modules/packages/msix.py
@@ -0,0 +1,60 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+import json
+import logging
+import os
+from contextlib import suppress
+from pathlib import Path
+
+from lib.common.abstracts import Package
+from lib.common.common import check_file_extension
+from lib.common.zip_utils import extract_zip, get_zip_file_names
+
+log = logging.getLogger(__name__)
+
+
+class Msix(Package):
+    """MSIX/MsixBundle analysis package."""
+
+    PATHS = [
+        ("SystemRoot", "sysnative", "WindowsPowerShell", "v*.0", "powershell.exe"),
+        ("SystemRoot", "system32", "WindowsPowerShell", "v*.0", "powershell.exe"),
+    ]
+    summary = "Executes a sample .msix file with powershell."
+    description = """Uses the bundled msix.ps1 powershell script to run a .msix file.
+    Default behavior is to run 'powershell.exe -NoProfile -ExecutionPolicy bypass data\\msix.ps1 <sample>'
+    However, if the .msix package contains a file config.json, that config file will be
+    examined for applications/startScript/scriptPath.  If any are found, the first will be used
+    and the analyzer will run 'powershell.exe -NoProfile -ExecutionPolicy bypass -File "path"'.
+    The .msix extension will be added automatically."""
+
+    def start(self, path):
+        powershell = self.get_path_glob("PowerShell")
+        path = check_file_extension(path, ".msix")
+        orig_path = Path(path)
+        file_names = get_zip_file_names(path)
+        args = ""
+
+        if len(file_names) and "config.json" in file_names:
+            extract_zip(path, orig_path.parent)
+            log.debug("Extracted %d files from %s to %s", len(file_names), str(path), str(orig_path.parent))
+
+        with suppress(Exception):
+            config_path = str(orig_path.with_name("config.json"))
+            with open(config_path, "r") as config_file:
+                config_data = json.load(config_file)
+                script_paths = []
+                for application in config_data.get("applications", []):
+                    script_paths.append(application.get("startScript", {}).get("scriptPath", ""))
+
+                if script_paths:
+                    path = str(orig_path.with_name(script_paths[0]))
+                    args = f'-NoProfile -ExecutionPolicy bypass -File "{path}"'
+                    log.debug("msix file contains script %s", str(path))
+
+        if not args:
+            args = fr"-NoProfile -ExecutionPolicy bypass {os.getcwd()}\data\msix.ps1 {path}"
+            # now we need to get app id and launch it
+
+        return self.execute(powershell, args, powershell)
diff --git a/analyzer/windows/modules/packages/nodejs.py b/analyzer/windows/modules/packages/nodejs.py
new file mode 100644
index 00000000000..f9d4beb8866
--- /dev/null
+++ b/analyzer/windows/modules/packages/nodejs.py
@@ -0,0 +1,21 @@
+from lib.common.abstracts import Package
+from lib.common.common import check_file_extension
+from lib.common.constants import OPT_ARGUMENTS
+
+
+class NodeJS(Package):
+    """Package for executing JavaScript files using NodeJS."""
+
+    PATHS = [
+        ("ProgramFiles", "NodeJS", "node.exe"),
+        ("LOCALAPPDATA", "Programs", "NodeJS", "node.exe"),
+    ]
+    summary = "Executes a JS sample using NodeJS."
+    description = "Uses node.exe instead of wscript.exe to execute JavaScript files."
+    option_names = (OPT_ARGUMENTS,)
+
+    def start(self, path):
+        node = self.get_path("node.exe")
+        path = check_file_extension(path, ".js")
+        args = self.options.get(OPT_ARGUMENTS, "")
+        return self.execute(node, f'"{path}" {args}', path)
diff --git a/analyzer/windows/modules/packages/nsis.py b/analyzer/windows/modules/packages/nsis.py
index 3a2d4cd69ff..3dc4dfdae6f 100644
--- a/analyzer/windows/modules/packages/nsis.py
+++ b/analyzer/windows/modules/packages/nsis.py
@@ -1,9 +1,9 @@
 # Copyright (C) 2010-2015 Cuckoo Foundation.
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
-from __future__ import absolute_import
-import os
+
 from lib.common.abstracts import Package
+from lib.common.common import check_file_extension
 
 
 class NSIS(Package):
@@ -14,12 +14,19 @@ class NSIS(Package):
     PATHS = [
         ("SystemRoot", "system32", "cmd.exe"),
     ]
+    summary = "Executes the sample file with cmd.exe /NCRC"
+    description = """Uses 'cmd.exe /c start /wait "" "path" /NCRC' to execute sample files.
+    For context behind this command:
+    /C          Carries out the command specified by string and then terminates
+    START       Starts a separate window to run a specified program or command.
+    /WAIT       Start application and wait for it to terminate.
+    ""          The name of the separate window
+    "path"      The path of the uploaded sample
+    /NCRC       Disable CRC checking
+    """
 
     def start(self, path):
-        if "." not in os.path.basename(path):
-            new_path = path + ".exe"
-            os.rename(path, new_path)
-            path = new_path
+        path = check_file_extension(path, ".exe")
         cmd_path = self.get_path("cmd.exe")
-        cmd_args = '/c start /wait "" "{0}" /NCRC'.format(path)
+        cmd_args = f'/c start /wait "" "{path}" /NCRC'
         return self.execute(cmd_path, cmd_args, path)
diff --git a/analyzer/windows/modules/packages/ollydbg.py b/analyzer/windows/modules/packages/ollydbg.py
index 8fac9c55fe5..3e287de42a6 100644
--- a/analyzer/windows/modules/packages/ollydbg.py
+++ b/analyzer/windows/modules/packages/ollydbg.py
@@ -1,10 +1,15 @@
-from __future__ import absolute_import
 from lib.common.abstracts import Package
+from lib.common.constants import OPT_ARGUMENTS
 
 
 class OllyDbg(Package):
     """OllyDbg analysis package."""
 
+    summary = "Opens the sample with OllyDbg"
+    description = f"""Uses 'bin\\OllyDbg\\OLLYDBG.EXE <sample> [arguments]' to launch the sample.
+    The '{OPT_ARGUMENTS}' option can be used to pass additional arguments."""
+    option_names = (OPT_ARGUMENTS,)
+
     def start(self, path):
-        arguments = self.options.get("arguments", "")
-        return self.execute("bin\\OllyDbg\\OLLYDBG.EXE", "%s %s" % (path, arguments), path)
+        arguments = self.options.get(OPT_ARGUMENTS, "")
+        return self.execute("bin\\OllyDbg\\OLLYDBG.EXE", f"{path} {arguments}", path)
diff --git a/analyzer/windows/modules/packages/one.py b/analyzer/windows/modules/packages/one.py
new file mode 100644
index 00000000000..a3fb905c8ff
--- /dev/null
+++ b/analyzer/windows/modules/packages/one.py
@@ -0,0 +1,60 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+import os
+import time
+
+from lib.api.utils import Utils
+from lib.common.abstracts import Package
+
+_OPT_OFFICE = "office"
+_OPT_NO_IAT = "no-iat"
+_OPT_YARASCAN = "yarascan"
+
+util = Utils()
+
+
+class ONE(Package):
+    """OneNote analysis package."""
+
+    def __init__(self, options={}, config=None):
+        self.config = config
+        self.options = options
+        # self.options["exclude-apis"] = "memcpy"
+        self.options[_OPT_OFFICE] = 1
+        self.options[_OPT_YARASCAN] = 0
+        self.options[_OPT_NO_IAT] = 1
+
+    PATHS = [
+        ("ProgramFiles", "Microsoft Office", "ONENOTE.EXE"),
+        ("ProgramFiles", "Microsoft Office", "Office*", "ONENOTE.EXE"),
+        ("ProgramFiles", "Microsoft Office*", "root", "Office*", "ONENOTE.EXE"),
+    ]
+    summary = "Opens a sample file with ONENOTE.EXE."
+    description = f"""Uses 'ONENOTE.EXE /nologo /navigate <sample>'
+    to open a onenote .one file.
+    Turns off '{_OPT_YARASCAN}'.
+    Turns on '{_OPT_OFFICE}' and '{_OPT_NO_IAT}'.
+    Before execution, modifies the registry entries LowRiskFileTypes and DefaultFileTypeRisk,
+    to encourage execution.
+    The .one filename extension will be added automatically."""
+
+    def start(self, path):
+        onenote = self.get_path_glob("ONENOTE.EXE")
+        if "." not in os.path.basename(path):
+            new_path = f"{path}.one"
+            os.rename(path, new_path)
+            path = new_path
+
+        util.cmd_wrapper(
+            r'reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Associations" /v "LowRiskFileTypes" /t REG_SZ /d ".ade;.adp;.app;.asp;.bas;.bat;.cer;.chm;.cmd;.com;.cpl;.crt;.csh;.exe;.fxp;.hlp;.hta;.inf;.ins;.isp;.its;.js;.jse;.ksh;.lnk;.mad;.maf;.mag;.mam;.maq;.mar;.mas;.mat;.mau;.mav;.maw;.mda;.mdb;.mde;.mdt;.mdw;.mdz;.msc;.msi;.msp;.mst;.ops;.pcd;.pif;.prf;.prg;.pst;.reg;.scf;.scr;.sct;.shb;.shs;.tmp;.url;.vb;.vbe;.vbs;.vsmacros;.vss;.vst;.vsw;.ws;.wsc;.wsf;.wsh;" /f'
+        )
+        util.cmd_wrapper(
+            r'reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Associations" /v "DefaultFileTypeRisk" /t REG_DWORD /d "1808" /f'
+        )
+        util.cmd_wrapper(
+            r'reg delete "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FolderTypes\{ef87b4cb-f2ce-4785-8658-4ca6c63e38c6}" /f'
+        )
+        time.sleep(3)
+        return self.execute(onenote, f"/nologo /navigate {path}", path)
diff --git a/analyzer/windows/modules/packages/pdf.py b/analyzer/windows/modules/packages/pdf.py
index f2bb17474a5..f4d9780f6b0 100644
--- a/analyzer/windows/modules/packages/pdf.py
+++ b/analyzer/windows/modules/packages/pdf.py
@@ -2,8 +2,8 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 from lib.common.abstracts import Package
+from lib.common.exceptions import CuckooPackageError
 
 
 class PDF(Package):
@@ -11,14 +11,25 @@ class PDF(Package):
 
     PATHS = [
         ("ProgramFiles", "Adobe", "*a*", "Reader", "AcroRd32.exe"),
+        ("ProgramFiles", "Adobe", "Acrobat DC", "Acrobat", "Acrobat.exe"),
     ]
+    summary = "Opens .pdf file with Adobe Reader / Acrobat."
+    description = """Uses AcroRd32.exe or Acrobat.exe to open a PDF file.
+    The 'pdf' option is set automatically."""
 
-    def __init__(self, options={}, config=None):
+    def __init__(self, options=None, config=None):
         """@param options: options dict."""
+        if options is None:
+            options = {}
         self.config = config
         self.options = options
         self.options["pdf"] = "1"
 
     def start(self, path):
-        reader = self.get_path_glob("Adobe Reader")
-        return self.execute(reader, '"%s"' % path, path)
+        # Try getting AcroRd32 or Acrobat as a backup
+        try:
+            reader = self.get_path_glob("AcroRd32.exe")
+        except CuckooPackageError:
+            reader = self.get_path_glob("Acrobat.exe")
+
+        return self.execute(reader, f'"{path}"', path)
diff --git a/analyzer/windows/modules/packages/ppt.py b/analyzer/windows/modules/packages/ppt.py
index 5af9a6c945d..7c985f118ca 100644
--- a/analyzer/windows/modules/packages/ppt.py
+++ b/analyzer/windows/modules/packages/ppt.py
@@ -2,25 +2,31 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 from lib.common.abstracts import Package
+from lib.common.constants import MSOFFICE_TRUSTED_PATH, TRUSTED_PATH_TEXT
 
 
 class PPT(Package):
     """PowerPoint analysis package."""
 
-    def __init__(self, options={}, config=None):
+    default_curdir = MSOFFICE_TRUSTED_PATH
+
+    def __init__(self, options=None, config=None):
+        if options is None:
+            options = {}
         self.config = config
         self.options = options
-        self.options["exclude-apis"] = "memcpy"
-        self.options["office"] = "1"
 
     PATHS = [
         ("ProgramFiles", "Microsoft Office", "POWERPNT.EXE"),
         ("ProgramFiles", "Microsoft Office", "Office*", "POWERPNT.EXE"),
         ("ProgramFiles", "Microsoft Office*", "root", "Office*", "POWERPNT.EXE"),
     ]
+    summary = "Opens sample file with Powerpoint."
+    description = f"""Uses 'POWERPNT.EXE /s <sample>' to open a powerpoint presentation file.
+    {TRUSTED_PATH_TEXT}
+    """
 
     def start(self, path):
-        powerpoint = self.get_path_glob("Microsoft Office PowerPoint")
-        return self.execute(powerpoint, '/s "%s"' % path, path)
+        powerpoint = self.get_path_glob("POWERPNT.EXE")
+        return self.execute(powerpoint, f'/s "{path}"', path)
diff --git a/analyzer/windows/modules/packages/ppt2016.py b/analyzer/windows/modules/packages/ppt2016.py
index 27af95a835c..a067fe995dc 100644
--- a/analyzer/windows/modules/packages/ppt2016.py
+++ b/analyzer/windows/modules/packages/ppt2016.py
@@ -2,23 +2,29 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 from lib.common.abstracts import Package
+from lib.common.constants import MSOFFICE_TRUSTED_PATH, TRUSTED_PATH_TEXT
 
 
 class PPT2007(Package):
     """PowerPoint analysis package."""
 
-    def __init__(self, options={}, config=None):
+    default_curdir = MSOFFICE_TRUSTED_PATH
+
+    def __init__(self, options=None, config=None):
+        if options is None:
+            options = {}
         self.config = config
         self.options = options
-        self.options["exclude-apis"] = "memcpy"
-        self.options["office"] = "1"
 
     PATHS = [
         ("ProgramFiles", "Microsoft Office*", "root", "Office16", "POWERPNT.EXE"),
     ]
+    summary = "Opens sample file with Powerpoint."
+    description = f"""Uses 'Office16\\POWERPNT.EXE /s <sample>' to open a powerpoint presentation file.
+    {TRUSTED_PATH_TEXT}
+    """
 
     def start(self, path):
-        powerpoint = self.get_path_glob("Microsoft Office PowerPoint")
-        return self.execute(powerpoint, '/s "%s"' % path, path)
+        powerpoint = self.get_path_glob("POWERPNT.EXE")
+        return self.execute(powerpoint, f'/s "{path}"', path)
diff --git a/analyzer/windows/modules/packages/processes.py b/analyzer/windows/modules/packages/processes.py
deleted file mode 100644
index 2933f8774a9..00000000000
--- a/analyzer/windows/modules/packages/processes.py
+++ /dev/null
@@ -1,125 +0,0 @@
-from __future__ import absolute_import
-import os
-import time
-import shutil
-from subprocess import call
-from lib.common.abstracts import Package
-
-
-class PROCESSES(Package):
-
-    """Word analysis package."""
-
-    PATHS = [
-        ("ProgramFiles", "Microsoft Office", "WINWORD.EXE"),
-        ("ProgramFiles", "Microsoft Office", "Office*", "WINWORD.EXE"),
-        ("ProgramFiles", "Microsoft Office*", "root", "Office*", "WINWORD.EXE"),
-        ("ProgramFiles", "Microsoft Office", "WORDVIEW.EXE"),
-    ]
-
-    def start(self, path):
-        """
-            for i in xrange(20):
-                #calc
-                calc = os.path.join("c:\\windows", "system32", "calc.exe")
-                #cl = Process()
-                self.execute(calc, "", path)
-            #cl.close()
-            """
-        iexplore = os.path.join("c:\\Program Files", "Internet Explorer", "iexplore.exe")
-        # ie = Process()
-        self.execute(iexplore, "", path)
-        # ie.close()
-
-        # firefox
-        firefox = os.path.join("c:\\Program Files", "Mozilla Firefox", "firefox.exe")
-        # ff = Process()
-        self.execute(firefox, "", path)
-        # ff.close()
-
-        # winrar
-        # winrar = os.path.join("c:\\Program Files", "WinRAR", "WinRAR.exe")
-        # wr = Process()
-        # self.execute(winrar, "", path)
-        # wr.close()
-
-        # media player
-        mc = os.path.join("c:\\Program Files", "Windows Media Player", "wmplayer.exe")
-        # mc_p = Process()
-        self.execute(mc, "/prefetch:1", path)
-        # mc_p.close()
-
-        # adobe pdf reader
-        pdf = os.path.join("c:\\Program Files", "Adobe", "Reader 11.0", "Reader", "AcroRd32.exe")
-        # pdf_p = Process()
-        self.execute(mc, "", path)
-        # pdf_p.close()
-
-        # snipping tool
-        # snt = os.path.join("c:\\windows", "system32", "Snipping Tool.exe")
-        # snt_p = Process()
-        # self.execute(snt, "", path)
-        # snt_p.close()
-
-        # backup and restore tool
-        bnr = os.path.join("c:\\windows", "system32", "control.exe")
-        # bnr_p = Process()
-        self.execute(bnr, "/name Microsoft.BackupAndRestore", path)
-        # bnr_p.close()
-
-        # on screen keyboard
-        konscr = os.path.join("c:\\windows", "system32", "osk.exe")
-        # konscr_p = Process()
-        self.execute(konscr, "", path)
-        # konscr_p.close()
-
-        # sync center
-        mobs = os.path.join("c:\\windows", "system32", "mobsync.exe")
-        # mobs_p = Process()
-        self.execute(mobs, "", path)
-        # mobs_p.close()
-
-        # rdp
-        rdp = os.path.join("c:\\windows", "system32", "mstsc.exe")
-        # rdp_p = Process()
-        self.execute(rdp, "", path)
-        # rdp_p.close()
-
-        # char map
-        chrm = os.path.join("c:\\windows", "system32", "charmap.exe")
-        # chrm_p = Process()
-        self.execute(chrm, "", path)
-        # chrm_p.close()
-
-        # media center
-        # mc = os.path.join("c:\\windows", "system32", "ehshell.exe")
-        # mc_p = Process()
-        # self.execute(mc, "", path)
-        # mc_p.close()
-        """
-            #xps viewer
-            xps = os.path.join("c:\\windows", "system32", "xpschvw.exe")
-            #xps_v = Process()
-            self.execute(xps, "", path)
-            #xps_v.close()
-            """
-        # notepad
-        # notepad = os.path.join("c:\\windows", "system32", "notepad32.exe")
-        # np = Process()
-        # self.execute(notepad, "", path)
-        # np.close()
-
-        # calc
-        calc = os.path.join("c:\\windows", "system32", "calc.exe")
-        # cl = Process()
-        self.execute(calc, "", path)
-        # cl.close()
-
-        # paint
-        paint = os.path.join("c:\\windows", "system32", "mspaint.exe")
-        # pnt = Process()
-        self.execute(paint, "", path)
-        # pnt.close()
-        time.sleep(5)
-        word = self.get_path_glob("Microsoft Office Word")
-        return self.execute(word, '"%s" /q' % path, path)
diff --git a/analyzer/windows/modules/packages/processes_simple.py b/analyzer/windows/modules/packages/processes_simple.py
deleted file mode 100644
index 967d72ea9b7..00000000000
--- a/analyzer/windows/modules/packages/processes_simple.py
+++ /dev/null
@@ -1,124 +0,0 @@
-from __future__ import absolute_import
-import os
-import time
-import shutil
-from subprocess import call
-from lib.common.abstracts import Package
-
-
-class PROCESSES_simply(Package):
-
-    """Word analysis package."""
-
-    PATHS = [
-        ("ProgramFiles", "Microsoft Office", "WINWORD.EXE"),
-        ("ProgramFiles", "Microsoft Office", "Office*", "WINWORD.EXE"),
-        ("ProgramFiles", "Microsoft Office*", "root", "Office*", "WINWORD.EXE"),
-        ("ProgramFiles", "Microsoft Office", "WORDVIEW.EXE"),
-    ]
-
-    def start(self, path):
-
-        for i in range(20):
-            # calc
-            calc = os.path.join("c:\\windows", "system32", "calc.exe")
-            # cl = Process()
-            self.execute(calc, "", path)
-        # cl.close()
-        """
-            iexplore = os.path.join("c:\\Program Files", "Internet Explorer", "iexplore.exe")
-            #ie = Process()
-            self.execute(iexplore, "", path)
-            #ie.close()
-
-            #firefox
-            firefox = os.path.join("c:\\Program Files", "Mozilla Firefox", "firefox.exe")
-            #ff = Process()
-            self.execute(firefox, "", path)
-            #ff.close()
-
-            #winrar
-            #winrar = os.path.join("c:\\Program Files", "WinRAR", "WinRAR.exe")
-            #wr = Process()
-            #self.execute(winrar, "", path)
-            #wr.close()
-
-            #media player
-            mc = os.path.join("c:\\Program Files", "Windows Media Player", "wmplayer.exe")
-            #mc_p = Process()
-            self.execute(mc, "/prefetch:1", path)
-            #mc_p.close()
-
-            #adobe pdf reader
-            pdf = os.path.join("c:\\Program Files", "Adobe", "Reader 11.0", "Reader", "AcroRd32.exe")
-            #pdf_p = Process()
-            self.execute(mc, "", path)
-            #pdf_p.close()
-
-            #snipping tool
-            #snt = os.path.join("c:\\windows", "system32", "Snipping Tool.exe")
-            #snt_p = Process()
-            #self.execute(snt, "", path)
-            #snt_p.close()
-
-            #backup and restore tool
-            bnr = os.path.join("c:\\windows", "system32", "control.exe")
-            #bnr_p = Process()
-            self.execute(bnr, "/name Microsoft.BackupAndRestore", path)
-            #bnr_p.close()
-
-            #on screen keyboard
-            konscr = os.path.join("c:\\windows", "system32", "osk.exe")
-            #konscr_p = Process()
-            self.execute(konscr, "", path)
-            #konscr_p.close()
-
-            #sync center
-            mobs = os.path.join("c:\\windows", "system32", "mobsync.exe")
-            #mobs_p = Process()
-            self.execute(mobs, "", path)
-            #mobs_p.close()
-
-            #rdp
-            rdp = os.path.join("c:\\windows", "system32", "mstsc.exe")
-            #rdp_p = Process()
-            self.execute(rdp, "", path)
-            #rdp_p.close()
-
-            #char map
-            chrm = os.path.join("c:\\windows", "system32", "charmap.exe")
-            #chrm_p = Process()
-            self.execute(chrm, "", path)
-            #chrm_p.close()
-
-            #media center
-            #mc = os.path.join("c:\\windows", "system32", "ehshell.exe")
-            #mc_p = Process()
-            #self.execute(mc, "", path)
-            #mc_p.close()
-            #xps viewer
-            xps = os.path.join("c:\\windows", "system32", "xpschvw.exe")
-            #xps_v = Process()
-            self.execute(xps, "", path)
-            #xps_v.close()
-            #notepad
-            #notepad = os.path.join("c:\\windows", "system32", "notepad32.exe")
-            #np = Process()
-            #self.execute(notepad, "", path)
-            #np.close()
-
-            #calc
-            calc = os.path.join("c:\\windows", "system32", "calc.exe")
-            #cl = Process()
-            self.execute(calc, "", path)
-            #cl.close()
-
-            #paint
-            paint = os.path.join("c:\\windows", "system32", "mspaint.exe")
-            #pnt = Process()
-            self.execute(paint, "", path)
-            #pnt.close()
-            """
-        time.sleep(5)
-        word = self.get_path_glob("Microsoft Office Word")
-        return self.execute(word, '"%s" /q' % path, path)
diff --git a/analyzer/windows/modules/packages/ps1.py b/analyzer/windows/modules/packages/ps1.py
index bef08a8e956..df7ce69c994 100644
--- a/analyzer/windows/modules/packages/ps1.py
+++ b/analyzer/windows/modules/packages/ps1.py
@@ -2,27 +2,43 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-import os
-
 from lib.common.abstracts import Package
+from lib.common.common import check_file_extension
 
-# Originally proposed by David Maciejak.
+_OPT_PWSH = "pwsh"
 
 
 class PS1(Package):
     """PowerShell analysis package."""
 
+    POWERSHELL_CORE = [
+        # PS v7 (Powershell Core) optional.
+        ("ProgramFiles", "PowerShell", "*", "pwsh.exe"),
+    ]
     PATHS = [
+        # PS <= 5
+        ("SystemRoot", "sysnative", "WindowsPowerShell", "v*.0", "powershell.exe"),
         ("SystemRoot", "system32", "WindowsPowerShell", "v*.0", "powershell.exe"),
     ]
+    summary = "Executes a sample file with powershell."
+    description = f"""Uses 'powershell -NoProfile -ExecutionPolicy bypass -File <sample>'
+    to run a .ps1 file.
+    If the '{_OPT_PWSH}' option is set, Powershell Core (PS v7) will be preferred.
+    The .ps1 filename extension will be added automatically."""
+    option_names = (_OPT_PWSH,)
+
+    def get_paths(self):
+        """Return list of paths to search for the PowerShell executable.
+
+        If the user selected the option, insert PowerShell Core path at the start of
+        the list.
+        """
+        if self.options.get(_OPT_PWSH):
+            return self.POWERSHELL_CORE + self.PATHS
+        return self.PATHS
 
     def start(self, path):
         powershell = self.get_path_glob("PowerShell")
-
-        if not path.endswith(".ps1"):
-            os.rename(path, path + ".ps1")
-            path += ".ps1"
-
-        args = '-NoProfile -ExecutionPolicy bypass -File "{0}"'.format(path)
+        path = check_file_extension(path, ".ps1")
+        args = f'-NoProfile -ExecutionPolicy bypass -File "{path}"'
         return self.execute(powershell, args, path)
diff --git a/analyzer/windows/modules/packages/ps1_64.py b/analyzer/windows/modules/packages/ps1_64.py
deleted file mode 100644
index 7c743f45299..00000000000
--- a/analyzer/windows/modules/packages/ps1_64.py
+++ /dev/null
@@ -1,28 +0,0 @@
-# Copyright (C) 2010-2015 Cuckoo Foundation.
-# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
-# See the file 'docs/LICENSE' for copying permission.
-
-from __future__ import absolute_import
-import os
-
-from lib.common.abstracts import Package
-
-# Originally proposed by David Maciejak.
-
-
-class PS1(Package):
-    """PowerShell analysis package."""
-
-    PATHS = [
-        ("SystemRoot", "sysnative", "WindowsPowerShell", "v*.0", "powershell.exe"),
-    ]
-
-    def start(self, path):
-        powershell = self.get_path_glob("PowerShell")
-
-        if not path.endswith(".ps1"):
-            os.rename(path, path + ".ps1")
-            path += ".ps1"
-
-        args = '-NoProfile -ExecutionPolicy bypass -File "{0}"'.format(path)
-        return self.execute(powershell, args, path)
diff --git a/analyzer/windows/modules/packages/pub.py b/analyzer/windows/modules/packages/pub.py
index a1d4d148c43..1602615d8b7 100644
--- a/analyzer/windows/modules/packages/pub.py
+++ b/analyzer/windows/modules/packages/pub.py
@@ -2,35 +2,20 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-import os
-from lib.common.abstracts import Package
+from winreg import HKEY_CURRENT_USER, KEY_READ, KEY_SET_VALUE, REG_DWORD, CreateKeyEx, EnumKey, OpenKey, QueryInfoKey, SetValueEx
 
-from winreg import (
-    OpenKey,
-    CreateKeyEx,
-    SetValueEx,
-    CloseKey,
-    QueryInfoKey,
-    EnumKey,
-    EnumValue,
-    HKEY_LOCAL_MACHINE,
-    HKEY_CURRENT_USER,
-    KEY_SET_VALUE,
-    KEY_READ,
-    REG_SZ,
-    REG_DWORD,
-)
+from lib.common.abstracts import Package
+from lib.common.common import check_file_extension
 
 
 class PUB(Package):
     """Word analysis package."""
 
-    def __init__(self, options={}, config=None):
+    def __init__(self, options=None, config=None):
+        if options is None:
+            options = {}
         self.config = config
         self.options = options
-        self.options["exclude-apis"] = "memcpy"
-        self.options["office"] = "1"
 
     PATHS = [
         ("ProgramFiles", "Microsoft Office", "MSPUB.EXE"),
@@ -38,41 +23,39 @@ def __init__(self, options={}, config=None):
         ("ProgramFiles", "Microsoft Office*", "root", "Office*", "MSPUB.EXE"),
         ("ProgramFiles", "Microsoft Office", "MSPUB.EXE"),
     ]
+    summary = "Opens a .pub file with MS Publisher."
+    description = """Uses MSPUB.EXE to open a .pub file.
+    Before execution, sets these registry values in the key 'MS Office\\Publisher\\Security';
+    VBAWarnings=1, AccessVBOM=1, ExtensionHardening=0
+    The .pub filename extension will be added automatically."""
 
     def set_keys(self):
-
         baseOfficeKeyPath = r"Software\Microsoft\Office"
-        installedVersions = list()
+        installedVersions = []
         try:
-            officeKey = OpenKey(HKEY_CURRENT_USER, baseOfficeKeyPath, 0, KEY_READ)
-            for currentKey in range(0, QueryInfoKey(officeKey)[0]):
-                isVersion = True
-                officeVersion = EnumKey(officeKey, currentKey)
-                if "." in officeVersion:
-                    for intCheck in officeVersion.split("."):
-                        if not intCheck.isdigit():
-                            isVersion = False
-                            break
-
-                    if isVersion:
-                        installedVersions.append(officeVersion)
-            CloseKey(officeKey)
+            with OpenKey(HKEY_CURRENT_USER, baseOfficeKeyPath, 0, KEY_READ) as officeKey:
+                for currentKey in range(QueryInfoKey(officeKey)[0]):
+                    isVersion = True
+                    officeVersion = EnumKey(officeKey, currentKey)
+                    if "." in officeVersion:
+                        for intCheck in officeVersion.split("."):
+                            if not intCheck.isdigit():
+                                isVersion = False
+                                break
+                        if isVersion:
+                            installedVersions.append(officeVersion)
         except WindowsError:
             # Office isn't installed at all
             return
 
         for oVersion in installedVersions:
-            key = CreateKeyEx(HKEY_CURRENT_USER, r"{0}\{1}\Publisher\Security".format(baseOfficeKeyPath, oVersion), 0, KEY_SET_VALUE)
-
-            SetValueEx(key, "VBAWarnings", 0, REG_DWORD, 1)
-            SetValueEx(key, "AccessVBOM", 0, REG_DWORD, 1)
-            SetValueEx(key, "ExtensionHardening", 0, REG_DWORD, 0)
-            CloseKey(key)
+            with CreateKeyEx(HKEY_CURRENT_USER, rf"{baseOfficeKeyPath}\{oVersion}\Publisher\Security", 0, KEY_SET_VALUE) as key:
+                SetValueEx(key, "VBAWarnings", 0, REG_DWORD, 1)
+                SetValueEx(key, "AccessVBOM", 0, REG_DWORD, 1)
+                SetValueEx(key, "ExtensionHardening", 0, REG_DWORD, 0)
 
     def start(self, path):
         self.set_keys()
-        publisher = self.get_path_glob("Microsoft Office Publisher")
-        if not path.endswith(".pub"):
-            os.rename(path, path + ".pub")
-            path += ".pub"
-        return self.execute(publisher, '"%s"' % path, path)
+        publisher = self.get_path_glob("MSPUB.EXE")
+        path = check_file_extension(path, ".pub")
+        return self.execute(publisher, f'"{path}"', path)
diff --git a/analyzer/windows/modules/packages/pub2016.py b/analyzer/windows/modules/packages/pub2016.py
index fb2eb77ae02..196a395aefb 100644
--- a/analyzer/windows/modules/packages/pub2016.py
+++ b/analyzer/windows/modules/packages/pub2016.py
@@ -2,73 +2,56 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-import os
-from lib.common.abstracts import Package
+from winreg import HKEY_CURRENT_USER, KEY_READ, KEY_SET_VALUE, REG_DWORD, CreateKeyEx, EnumKey, OpenKey, QueryInfoKey, SetValueEx
 
-from winreg import (
-    OpenKey,
-    CreateKeyEx,
-    SetValueEx,
-    CloseKey,
-    QueryInfoKey,
-    EnumKey,
-    EnumValue,
-    HKEY_LOCAL_MACHINE,
-    HKEY_CURRENT_USER,
-    KEY_SET_VALUE,
-    KEY_READ,
-    REG_SZ,
-    REG_DWORD,
-)
+from lib.common.abstracts import Package
+from lib.common.common import check_file_extension
 
 
 class PUB2007(Package):
-    def __init__(self, options={}, config=None):
+    def __init__(self, options=None, config=None):
+        if options is None:
+            options = {}
         self.config = config
         self.options = options
-        self.options["exclude-apis"] = "memcpy"
-        self.options["office"] = "1"
 
     """Word analysis package."""
     PATHS = [
         ("ProgramFiles", "Microsoft Office*", "root", "Office16", "MSPUB.EXE"),
     ]
+    summary = "Opens a .pub file with MS Publisher."
+    description = """Uses Office16\\MSPUB.EXE to open a .pub file.
+    Before execution, sets these registry values in the key 'MS Office\\Publisher\\Security';
+    VBAWarnings=1, AccessVBOM=1, ExtensionHardening=0
+    The .pub filename extension will be added automatically."""
 
     def set_keys(self):
-
         baseOfficeKeyPath = r"Software\Microsoft\Office"
-        installedVersions = list()
+        installedVersions = []
         try:
-            officeKey = OpenKey(HKEY_CURRENT_USER, baseOfficeKeyPath, 0, KEY_READ)
-            for currentKey in range(0, QueryInfoKey(officeKey)[0]):
-                isVersion = True
-                officeVersion = EnumKey(officeKey, currentKey)
-                if "." in officeVersion:
-                    for intCheck in officeVersion.split("."):
-                        if not intCheck.isdigit():
-                            isVersion = False
-                            break
-
-                    if isVersion:
-                        installedVersions.append(officeVersion)
-            CloseKey(officeKey)
+            with OpenKey(HKEY_CURRENT_USER, baseOfficeKeyPath, 0, KEY_READ) as officeKey:
+                for currentKey in range(QueryInfoKey(officeKey)[0]):
+                    isVersion = True
+                    officeVersion = EnumKey(officeKey, currentKey)
+                    if "." in officeVersion:
+                        for intCheck in officeVersion.split("."):
+                            if not intCheck.isdigit():
+                                isVersion = False
+                                break
+                        if isVersion:
+                            installedVersions.append(officeVersion)
         except WindowsError:
             # Office isn't installed at all
             return
 
         for oVersion in installedVersions:
-            key = CreateKeyEx(HKEY_CURRENT_USER, r"{0}\{1}\Publisher\Security".format(baseOfficeKeyPath, oVersion), 0, KEY_SET_VALUE)
-
-            SetValueEx(key, "VBAWarnings", 0, REG_DWORD, 1)
-            SetValueEx(key, "AccessVBOM", 0, REG_DWORD, 1)
-            SetValueEx(key, "ExtensionHardening", 0, REG_DWORD, 0)
-            CloseKey(key)
+            with CreateKeyEx(HKEY_CURRENT_USER, rf"{baseOfficeKeyPath}\{oVersion}\Publisher\Security", 0, KEY_SET_VALUE) as key:
+                SetValueEx(key, "VBAWarnings", 0, REG_DWORD, 1)
+                SetValueEx(key, "AccessVBOM", 0, REG_DWORD, 1)
+                SetValueEx(key, "ExtensionHardening", 0, REG_DWORD, 0)
 
     def start(self, path):
         self.set_keys()
-        publisher = self.get_path_glob("Microsoft Office Publisher")
-        if not path.endswith(".pub"):
-            os.rename(path, path + ".pub")
-            path += ".pub"
-        return self.execute(publisher, '"%s"' % path, path)
+        publisher = self.get_path_glob("MSPUB.EXE")
+        path = check_file_extension(path, ".pub")
+        return self.execute(publisher, f'"{path}"', path)
diff --git a/analyzer/windows/modules/packages/python.py b/analyzer/windows/modules/packages/python.py
index 6bd9450ca1d..c5721368ca4 100644
--- a/analyzer/windows/modules/packages/python.py
+++ b/analyzer/windows/modules/packages/python.py
@@ -2,19 +2,29 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 from lib.common.abstracts import Package
+from lib.common.common import check_file_extension
+from lib.common.constants import OPT_ARGUMENTS
+from lib.common.exceptions import CuckooPackageError
 
 
 class Python(Package):
     """Python analysis package."""
 
-    PATHS = [
-        ("HomeDrive", "Python*", "python.exe"),
-        ("SYSTEMROOT", "py.exe")
-    ]
+    PATHS = [("HomeDrive", "Python*", "python.exe"), ("SystemRoot", "py.exe")]
+    summary = "Executes sample file with python."
+    description = f"""Uses python.exe or py.exe to run a python script.
+    If the '{OPT_ARGUMENTS}' option is set, the contents will be used as arguments to the python script."""
+    option_names = (OPT_ARGUMENTS,)
 
     def start(self, path):
-        python = self.get_path_glob("Python")
-        arguments = self.options.get("arguments", "")
-        return self.execute(python, "%s %s" % (path, arguments), path)
+        # Try getting python or py as a backup
+        try:
+            python = self.get_path_glob("python.exe")
+        except CuckooPackageError:
+            python = self.get_path_glob("py.exe")
+
+        arguments = self.options.get(OPT_ARGUMENTS, "")
+
+        path = check_file_extension(path, ".py")
+        return self.execute(python, f"{path} {arguments}", path)
diff --git a/analyzer/windows/modules/packages/rar.py b/analyzer/windows/modules/packages/rar.py
index 05e943f4b0c..b3cff87d952 100644
--- a/analyzer/windows/modules/packages/rar.py
+++ b/analyzer/windows/modules/packages/rar.py
@@ -2,21 +2,22 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
+import logging
 import os
 import shutil
-import logging
-import re
 
 try:
-    from rarfile import RarFile, BadRarFile
+    from rarfile import BadRarFile, RarFile
 
     HAS_RARFILE = True
 except ImportError:
     HAS_RARFILE = False
 
 from lib.common.abstracts import Package
+from lib.common.common import check_file_extension
+from lib.common.constants import ARCHIVE_OPTIONS, DLL_OPTIONS, OPT_ARGUMENTS, OPT_DLLLOADER, OPT_FILE, OPT_FUNCTION, OPT_PASSWORD
 from lib.common.exceptions import CuckooPackageError
+from lib.common.zip_utils import get_interesting_files, upload_extracted_files
 
 log = logging.getLogger(__name__)
 
@@ -26,7 +27,27 @@ class Rar(Package):
 
     PATHS = [
         ("SystemRoot", "system32", "cmd.exe"),
+        ("SystemRoot", "system32", "wscript.exe"),
+        ("SystemRoot", "system32", "rundll32.exe"),
+        ("SystemRoot", "sysnative", "WindowsPowerShell", "v1.0", "powershell.exe"),
+        ("ProgramFiles", "7-Zip", "7z.exe"),
+        ("SystemRoot", "system32", "xpsrchvw.exe"),
+        ("ProgramFiles", "Microsoft Office", "WINWORD.EXE"),
+        ("ProgramFiles", "Microsoft Office", "Office*", "WINWORD.EXE"),
+        ("ProgramFiles", "Microsoft Office*", "root", "Office*", "WINWORD.EXE"),
+        ("ProgramFiles", "Microsoft Office", "WORDVIEW.EXE"),
+        ("ProgramFiles", "Microsoft Office", "EXCEL.EXE"),
+        ("ProgramFiles", "Microsoft Office", "Office*", "EXCEL.EXE"),
+        ("ProgramFiles", "Microsoft Office*", "root", "Office*", "EXCEL.EXE"),
+        ("ProgramFiles", "Microsoft", "Edge", "Application", "msedge.exe"),
     ]
+    summary = "Unpacks a .rar archive with the given password and execute the contents appropriately."
+    description = f"""Extracts the contents of a .rar file. If the file name is not
+    supplied in the '{OPT_FILE}" option, examines the archive for files that look executable.
+    If none can be found, the first file in the archive is taken.
+    If the archive contains .dll files, then options '{OPT_FUNCTION}', '{OPT_ARGUMENTS}' and '{OPT_DLLLOADER}' will take effect.
+    The execution method is chosen based on the filename extension."""
+    option_names = sorted(set(ARCHIVE_OPTIONS + DLL_OPTIONS))
 
     def extract_rar(self, rar_path, extract_path, password):
         """Extracts a nested RAR file.
@@ -38,7 +59,7 @@ def extract_rar(self, rar_path, extract_path, password):
         if self.is_overwritten(rar_path):
             log.debug("RAR file contains a file with the same name, original is going to be overwrite")
             # TODO: add random string.
-            new_rar_path = rar_path + ".old"
+            new_rar_path = f"{rar_path}.old"
             shutil.move(rar_path, new_rar_path)
             rar_path = new_rar_path
 
@@ -52,7 +73,7 @@ def extract_rar(self, rar_path, extract_path, password):
                 try:
                     archive.extractall(path=extract_path, pwd="infected")
                 except RuntimeError as e:
-                    raise CuckooPackageError("Unable to extract Rar file: " "{0}".format(e))
+                    raise CuckooPackageError(f"Unable to extract Rar file: {e}")
             finally:
                 # Extract nested archives.
                 for name in archive.namelist():
@@ -88,42 +109,42 @@ def get_infos(self, rar_path):
 
     def start(self, path):
         if not HAS_RARFILE:
-            raise CuckooPackageError("rarfile Python module not installed in guest.")
+            raise CuckooPackageError("rarfile Python module not installed in guest")
 
         # Check file extension.
-        ext = os.path.splitext(path)[-1].lower()
-        if ext != ".rar":
-            new_path = path + ".rar"
-            os.rename(path, new_path)
-            path = new_path
+        path = check_file_extension(path, ".rar")
 
         root = os.environ["TEMP"]
-        password = self.options.get("password")
-        exe_regex = re.compile("(\.exe|\.scr|\.msi|\.bat|\.lnk)$", flags=re.IGNORECASE)
+        password = self.options.get(OPT_PASSWORD)
 
         rarinfos = self.get_infos(path)
         self.extract_rar(path, root, password)
 
-        file_name = self.options.get("file")
+        file_name = self.options.get(OPT_FILE)
         # If no file name is provided via option, take the first file.
         if not file_name:
-            # No name provided try to find a better name.
-            if len(rarinfos):
-                # Attempt to find a valid exe extension in the archive
-                for f in rarinfos:
-                    if exe_regex.search(f.filename):
-                        file_name = f.filename
-                        break
-                # Default to the first one if none found
-                file_name = file_name if file_name else rarinfos[0].filename
-                log.debug("Missing file option, auto executing: {0}".format(file_name))
-            else:
+            # If no file names to choose from, bail
+            if not len(rarinfos):
                 raise CuckooPackageError("Empty RAR archive")
 
-        file_path = os.path.join(root, file_name)
-        if file_name.lower().endswith(".lnk"):
-            cmd_path = self.get_path("cmd.exe")
-            cmd_args = '/c start /wait "" "{0}"'.format(file_path)
-            return self.execute(cmd_path, cmd_args, file_path)
+            file_names = [f.filename for f in rarinfos]
+
+            upload_extracted_files(root, file_names)
+            ret_list = []
+
+            # Attempt to find a valid exe extension in the archive
+            interesting_files = get_interesting_files(file_names)
+
+            if not interesting_files:
+                log.debug("No interesting files found, auto executing the first file: %s", file_names[0])
+                interesting_files.append(file_names[0])
+
+            log.debug("Missing file option, auto executing: %s", interesting_files)
+            for interesting_file in interesting_files:
+                file_path = os.path.join(root, interesting_file)
+                ret_list.append(self.execute_interesting_file(root, interesting_file, file_path))
+
+            return ret_list
         else:
-            return self.execute(file_path, self.options.get("arguments"), file_path)
+            file_path = os.path.join(root, file_name)
+            return self.execute_interesting_file(root, file_name, file_path)
diff --git a/analyzer/windows/modules/packages/rdp.py b/analyzer/windows/modules/packages/rdp.py
new file mode 100644
index 00000000000..f6124a67f98
--- /dev/null
+++ b/analyzer/windows/modules/packages/rdp.py
@@ -0,0 +1,17 @@
+from lib.common.abstracts import Package
+from lib.common.common import check_file_extension
+
+
+class RDP(Package):
+    """RDP analysis package."""
+
+    PATHS = [
+        ("SystemRoot", "system32", "mstsc.exe"),
+    ]
+
+    def start(self, path):
+        args = self.options.get("arguments")
+
+        path = check_file_extension(path, ".rdp")
+        mstsc = self.get_path_glob("mstsc.exe")
+        return self.execute(mstsc, f'"{path}" {args}', path)
diff --git a/analyzer/windows/modules/packages/reg.py b/analyzer/windows/modules/packages/reg.py
new file mode 100644
index 00000000000..cbe0423ff5f
--- /dev/null
+++ b/analyzer/windows/modules/packages/reg.py
@@ -0,0 +1,20 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+from lib.common.abstracts import Package
+
+
+class Reg(Package):
+    """Reg analysis package."""
+
+    PATHS = [
+        ("SystemRoot", "System32", "reg.exe"),
+    ]
+    summary = "Opens a registry file with reg.exe."
+    description = """Uses 'reg.exe import <path>' to open the sample."""
+
+    def start(self, path):
+        regexe = self.get_path("reg.exe")
+        reg_args = f'import "{path}"'
+        return self.execute(regexe, reg_args, path)
diff --git a/analyzer/windows/modules/packages/regsvr.py b/analyzer/windows/modules/packages/regsvr.py
index e2c215ecd92..1dfaca0bad7 100644
--- a/analyzer/windows/modules/packages/regsvr.py
+++ b/analyzer/windows/modules/packages/regsvr.py
@@ -2,11 +2,9 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-import os
-import shutil
-
 from lib.common.abstracts import Package
+from lib.common.common import check_file_extension
+from lib.common.constants import OPT_ARGUMENTS
 
 
 class Regsvr(Package):
@@ -15,23 +13,24 @@ class Regsvr(Package):
     PATHS = [
         ("SystemRoot", "system32", "regsvr32.exe"),
     ]
+    summary = "Opens the file with regsvr32.exe."
+    description = f"""Uses 'regsvr32.exe [arguments] <sample>' to open a .dll file.
+    If the '{OPT_ARGUMENTS}' option is set, the contents will be used as arguments to regsvr32.exe.
+    The .dll filename extension will be added automatically."""
+    option_names = (OPT_ARGUMENTS,)
 
     def start(self, path):
         regsvr32 = self.get_path("regsvr32.exe")
-        arguments = self.options.get("arguments")
+        arguments = self.options.get(OPT_ARGUMENTS)
 
-        # Check file extension.
-        ext = os.path.splitext(path)[-1].lower()
         # If the file doesn't have the proper .dll extension force it
         # and rename it. This is needed for rundll32 to execute correctly.
         # See ticket #354 for details.
-        if ext != ".dll":
-            new_path = path + ".dll"
-            os.rename(path, new_path)
-            path = new_path
+        path = check_file_extension(path, ".dll")
 
-        args = path
+        args = ""
         if arguments:
-            args += " {0}".format(arguments)
+            args += f"{arguments} "
+        args += path
 
         return self.execute(regsvr32, args, path)
diff --git a/analyzer/windows/modules/packages/sct.py b/analyzer/windows/modules/packages/sct.py
index 4a7c3dab30c..9b5745c5da0 100644
--- a/analyzer/windows/modules/packages/sct.py
+++ b/analyzer/windows/modules/packages/sct.py
@@ -1,8 +1,6 @@
 # This file is part of CAPE Sandbox - https://github.com/kevoreilly/CAPE
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-
 from lib.common.abstracts import Package
 
 
@@ -12,9 +10,11 @@ class SCT(Package):
     PATHS = [
         ("SystemRoot", "system32", "regsvr32.exe"),
     ]
+    summary = "Opens the sample with regsvr32.exe scrobj.dll"
+    description = """Uses 'regsvr32.exe /u /n /i:<sample> scrobj.dll' to launch the sample
+        script component."""
 
     def start(self, path):
         regsvr32 = self.get_path("regsvr32.exe")
-        args = "/u /n /i:{0} scrobj.dll".format(path)
-
+        args = f"/u /n /i:{path} scrobj.dll"
         return self.execute(regsvr32, args, path)
diff --git a/analyzer/windows/modules/packages/service.py b/analyzer/windows/modules/packages/service.py
index 269e75c3fc2..d66fc089ab3 100644
--- a/analyzer/windows/modules/packages/service.py
+++ b/analyzer/windows/modules/packages/service.py
@@ -1,16 +1,16 @@
 # Copyright (C) 2010-2015 Cuckoo Foundation.
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
-from __future__ import absolute_import
-import os
-import shutil
+
+import ctypes
+import logging
 import sys
+
 from lib.api.process import Process
 from lib.common.abstracts import Package
+from lib.common.common import check_file_extension
+from lib.common.constants import OPT_ARGUMENTS, OPT_SERVICEDESC, OPT_SERVICENAME, SERVICE_OPTIONS
 from lib.common.defines import ADVAPI32, KERNEL32
-import logging
-import traceback
-import ctypes
 
 INJECT_CREATEREMOTETHREAD = 0
 INJECT_QUEUEUSERAPC = 1
@@ -61,20 +61,21 @@ class Service(Package):
     PATHS = [
         ("SystemRoot", "system32", "sc.exe"),
     ]
+    summary = "Launches the given sample as a service."
+    description = """Uses 'svchost.exe -k capegroup <sample> [arguments]' to launch the sample
+    as a service.
+    The .exe filename extension will be added automatically."""
+    option_names = SERVICE_OPTIONS
 
     def start(self, path):
         try:
-            sc = self.get_path("sc.exe")
-            servicename = self.options.get("servicename", "CAPEService")
-            servicedesc = self.options.get("servicedesc", "CAPE Service")
-            arguments = self.options.get("arguments")
-            if "." not in os.path.basename(path):
-                new_path = path + ".exe"
-                os.rename(path, new_path)
-                path = new_path
-            binPath = '"{0}"'.format(path)
+            servicename = self.options.get(OPT_SERVICENAME, "CAPEService").encode("utf8")
+            servicedesc = self.options.get(OPT_SERVICEDESC, "CAPE Service").encode("utf8")
+            arguments = self.options.get(OPT_ARGUMENTS)
+            path = check_file_extension(path, ".exe")
+            binpath = f'"{path}"'.encode("utf8")
             if arguments:
-                binPath += " {0}".format(arguments)
+                binpath += f" {arguments}"
             scm_handle = ADVAPI32.OpenSCManagerA(None, None, SC_MANAGER_ALL_ACCESS)
             if scm_handle == 0:
                 log.info("Failed to open SCManager")
@@ -88,7 +89,7 @@ def start(self, path):
                 SERVICE_WIN32_OWN_PROCESS,
                 SERVICE_DEMAND_START,
                 SERVICE_ERROR_IGNORE,
-                binPath,
+                binpath,
                 None,
                 None,
                 None,
@@ -99,18 +100,14 @@ def start(self, path):
                 log.info("Failed to create service")
                 log.info(ctypes.FormatError())
                 return
-            log.info("Created service (handle: 0x%x)", service_handle)
-            servproc = Process(options=self.options, config=self.config, pid=self.config.services_pid, suspended=False)
+            log.info("Created service (handle: 0x%s)", service_handle)
+            servproc = Process(options=self.options, config=self.config, pid=self.config.services_pid)
             filepath = servproc.get_filepath()
-            is_64bit = servproc.is_64bit()
-            if is_64bit:
-                servproc.inject(injectmode=INJECT_QUEUEUSERAPC, interest=filepath, nosleepskip=True)
-            else:
-                servproc.inject(injectmode=INJECT_QUEUEUSERAPC, interest=filepath, nosleepskip=True)
+            servproc.inject(interest=filepath, nosleepskip=True)
             servproc.close()
             KERNEL32.Sleep(500)
             service_launched = ADVAPI32.StartServiceA(service_handle, 0, None)
-            if service_launched == True:
+            if service_launched:
                 log.info("Successfully started service")
             else:
                 log.info(ctypes.FormatError())
diff --git a/analyzer/windows/modules/packages/service_dll.py b/analyzer/windows/modules/packages/service_dll.py
new file mode 100644
index 00000000000..0fdc32ea253
--- /dev/null
+++ b/analyzer/windows/modules/packages/service_dll.py
@@ -0,0 +1,170 @@
+import ctypes
+import logging
+import sys
+from winreg import (
+    HKEY_LOCAL_MACHINE,
+    KEY_ALL_ACCESS,
+    KEY_WOW64_64KEY,
+    REG_EXPAND_SZ,
+    REG_MULTI_SZ,
+    CreateKeyEx,
+    DeleteValue,
+    OpenKeyEx,
+    SetValueEx,
+)
+
+from lib.api.process import Process
+from lib.common.abstracts import Package
+from lib.common.common import check_file_extension, disable_wow64_redirection
+from lib.common.constants import OPT_ARGUMENTS, OPT_SERVICEDESC, OPT_SERVICENAME, SERVICE_OPTIONS
+from lib.common.defines import ADVAPI32, KERNEL32
+
+SC_MANAGER_CONNECT = 0x0001
+SC_MANAGER_CREATE_SERVICE = 0x0002
+SC_MANAGER_ENUMERATE_SERVICE = 0x0004
+SC_MANAGER_LOCK = 0x0008
+SC_MANAGER_QUERY_LOCK_STATUS = 0x0010
+SC_MANAGER_MODIFY_BOOT_CONFIG = 0x0020
+SC_MANAGER_ALL_ACCESS = (
+    SC_MANAGER_CONNECT
+    | SC_MANAGER_CREATE_SERVICE
+    | SC_MANAGER_ENUMERATE_SERVICE
+    | SC_MANAGER_LOCK
+    | SC_MANAGER_QUERY_LOCK_STATUS
+    | SC_MANAGER_MODIFY_BOOT_CONFIG
+)
+SERVICE_QUERY_CONFIG = 0x0001
+SERVICE_CHANGE_CONFIG = 0x0002
+SERVICE_QUERY_STATUS = 0x0004
+SERVICE_ENUMERATE_DEPENDENTS = 0x0008
+SERVICE_START = 0x0010
+SERVICE_STOP = 0x0020
+SERVICE_PAUSE_CONTINUE = 0x0040
+SERVICE_INTERROGATE = 0x0080
+SERVICE_USER_DEFINED_CONTROL = 0x0100
+SERVICE_ALL_ACCESS = (
+    SERVICE_QUERY_CONFIG
+    | SERVICE_CHANGE_CONFIG
+    | SERVICE_QUERY_STATUS
+    | SERVICE_ENUMERATE_DEPENDENTS
+    | SERVICE_START
+    | SERVICE_STOP
+    | SERVICE_PAUSE_CONTINUE
+    | SERVICE_INTERROGATE
+    | SERVICE_USER_DEFINED_CONTROL
+)
+SERVICE_WIN32_OWN_PROCESS = 0x0010
+SERVICE_WIN32_SHARE_PROCESS = 0x0020
+SERVICE_INTERACTIVE_PROCESS = 0x0100
+SERVICE_DEMAND_START = 0x0003
+SERVICE_ERROR_IGNORE = 0x0000
+log = logging.getLogger(__name__)
+
+
+class ServiceDll(Package):
+    """Service Dll analysis package."""
+
+    def __init__(self, options=None, config=None):
+        if options is None:
+            options = {}
+        self.config = config
+        self.options = options
+
+    PATHS = [
+        ("SystemRoot", "system32", "sc.exe"),
+    ]
+    summary = "Launches the given sample as a service."
+    description = """Uses 'svchost.exe -k capegroup <sample> [arguments]' to launch the sample
+    as a service.
+    Sets the appropriate registry keys.
+    The .dll filename extension will be added automatically."""
+    option_names = SERVICE_OPTIONS
+
+    def set_keys(self, servicename, dllpath):
+        svchost_path = r"Software\Microsoft\Windows NT\CurrentVersion\Svchost"
+        service_path = rf"System\CurrentControlSet\Services\{servicename}"
+        parameter_path = rf"System\CurrentControlSet\Services\{servicename}\Parameters"
+
+        try:
+            log.info("Setting 'ServiceDll' path: %s", dllpath)
+            with CreateKeyEx(HKEY_LOCAL_MACHINE, parameter_path, 0, KEY_ALL_ACCESS | KEY_WOW64_64KEY) as key:
+                SetValueEx(key, "ServiceDll", 0, REG_EXPAND_SZ, dllpath)
+        except Exception as e:
+            log.info("Error setting 'ServiceDll' registry value: %s", e)
+            return
+
+        # try to remove the WOW64 field in service registry, which is created by CreateServiceA
+        try:
+            with OpenKeyEx(HKEY_LOCAL_MACHINE, service_path, 0, KEY_ALL_ACCESS | KEY_WOW64_64KEY) as key:
+                DeleteValue(key, "WOW64")
+        except Exception as e:
+            log.info("Error deleting WOW64 registry value: %s", e)
+            return
+
+        try:
+            log.info("Setting 'servicename': %s", servicename)
+            with CreateKeyEx(HKEY_LOCAL_MACHINE, svchost_path, 0, KEY_ALL_ACCESS | KEY_WOW64_64KEY) as key:
+                SetValueEx(key, "capegroup", 0, REG_MULTI_SZ, [servicename])
+        except Exception as e:
+            log.info("Error setting 'servicename' registry value: %s", e)
+            return
+
+    @disable_wow64_redirection
+    def start(self, path):
+        try:
+            servicename = self.options.get(OPT_SERVICENAME, "CAPEService").encode("utf8")
+            if servicename == "blank":
+                servicename = " ".encode("utf8")
+            servicedesc = self.options.get(OPT_SERVICEDESC, "CAPE Service").encode("utf8")
+            arguments = self.options.get(OPT_ARGUMENTS)
+            path = check_file_extension(path, ".dll")
+            svcpath = r"%SystemRoot%\system32\svchost.exe"
+            binpath = f"{svcpath} -k capegroup".encode("utf8")
+            dllpath = f"{path}"
+            if arguments:
+                dllpath += f" {arguments}"
+            scm_handle = ADVAPI32.OpenSCManagerA(None, None, SC_MANAGER_ALL_ACCESS)
+            if scm_handle == 0:
+                log.info("Failed to open SCManager")
+                log.info(ctypes.FormatError())
+                return
+            service_handle = ADVAPI32.CreateServiceA(
+                scm_handle,
+                servicename,
+                servicedesc,
+                SERVICE_ALL_ACCESS,
+                SERVICE_WIN32_SHARE_PROCESS,
+                SERVICE_DEMAND_START,
+                SERVICE_ERROR_IGNORE,
+                binpath,
+                None,
+                None,
+                None,
+                None,
+                None,
+            )
+            if service_handle == 0:
+                log.info("Failed to create service '%s'", servicename.decode())
+                log.info(ctypes.FormatError())
+                return
+            log.info("Created service '%s'", servicename.decode())
+            self.set_keys(servicename.decode(), dllpath)
+            servproc = Process(options=self.options, config=self.config, pid=self.config.services_pid)
+            servproc.inject(interest=path, nosleepskip=True)
+            servproc.close()
+            KERNEL32.Sleep(1000)
+            service_launched = ADVAPI32.StartServiceA(service_handle, 0, None)
+            if service_launched:
+                log.info("Successfully started service")
+            else:
+                log.info(ctypes.FormatError())
+                log.info("Failed to start service")
+            ADVAPI32.CloseServiceHandle(service_handle)
+            ADVAPI32.CloseServiceHandle(scm_handle)
+            return self.config.services_pid
+        except Exception as e:
+            log.info(sys.exc_info()[0])
+            log.info(e)
+            log.info(e.__dict__)
+            log.info(e.__class__)
+            log.exception(e)
diff --git a/analyzer/windows/modules/packages/Shellcode.py b/analyzer/windows/modules/packages/shellcode.py
similarity index 52%
rename from analyzer/windows/modules/packages/Shellcode.py
rename to analyzer/windows/modules/packages/shellcode.py
index 78029b2f646..b8abbcd9a18 100644
--- a/analyzer/windows/modules/packages/Shellcode.py
+++ b/analyzer/windows/modules/packages/shellcode.py
@@ -2,32 +2,40 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 import os
 import shutil
-import logging
 
 from lib.common.abstracts import Package
+from lib.common.constants import OPT_OFFSET, OPT_PROCDUMP
 
-log = logging.getLogger(__name__)
 
 class Shellcode(Package):
     """32-bit Shellcode analysis package."""
 
-    def __init__(self, options={}, config=None):
+    summary = "Executes 32-bit Shellcode using loader.exe."
+    description = f"""Uses 'bin\\loader.exe shellcode [offset] <sample>' to execute 32-bit Shellcode.
+    Use the option '{OPT_OFFSET}' to set the offset.
+    Turns off '{OPT_PROCDUMP}'."""
+    option_names = (OPT_OFFSET,)
+
+    def __init__(self, options=None, config=None):
         """@param options: options dict."""
+        if options is None:
+            options = {}
         self.config = config
         self.options = options
-        self.options["procdump"] = "0"
+        self.options[OPT_PROCDUMP] = "0"
 
     def start(self, path):
+        offset = self.options.get(OPT_OFFSET)
         loaderpath = "bin\\loader.exe"
-        arguments = "shellcode " + path
-
+        args = f"shellcode {path}"
+        if offset:
+            args += f" {offset}"
         # we need to move out of the analyzer directory
         # due to a check in monitor dll
         basepath = os.path.dirname(path)
         newpath = os.path.join(basepath, os.path.basename(loaderpath))
         shutil.copy(loaderpath, newpath)
 
-        return self.execute(newpath, arguments, newpath)
+        return self.execute(newpath, args, newpath)
diff --git a/analyzer/windows/modules/packages/Shellcode_x64.py b/analyzer/windows/modules/packages/shellcode_x64.py
similarity index 52%
rename from analyzer/windows/modules/packages/Shellcode_x64.py
rename to analyzer/windows/modules/packages/shellcode_x64.py
index 70732e60736..8b78d353968 100644
--- a/analyzer/windows/modules/packages/Shellcode_x64.py
+++ b/analyzer/windows/modules/packages/shellcode_x64.py
@@ -2,36 +2,40 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 import os
 import shutil
-import logging
 
 from lib.common.abstracts import Package
+from lib.common.constants import OPT_OFFSET, OPT_PROCDUMP
 
-log = logging.getLogger(__name__)
 
 class Shellcode_x64(Package):
     """64-bit Shellcode analysis package."""
 
-    def __init__(self, options={}, config=None):
+    summary = "Executes 64-bit Shellcode using loader_x64.exe."
+    description = f"""Uses bin\\loader_x64.exe shellcode [offset] <sample> to execute 64-bit Shellcode."
+    Use the '{OPT_OFFSET}' option to set the offset.
+    Turns off '{OPT_PROCDUMP}'."""
+    option_names = (OPT_OFFSET,)
+
+    def __init__(self, options=None, config=None):
         """@param options: options dict."""
+        if options is None:
+            options = {}
         self.config = config
         self.options = options
-        self.options["procdump"] = "0"
-        self.options["dump-caller-regions"] = "0"
+        self.options[OPT_PROCDUMP] = "0"
 
     def start(self, path):
+        offset = self.options.get(OPT_OFFSET)
         loaderpath = "bin\\loader_x64.exe"
-        arguments = "shellcode " + path
-
+        args = f"shellcode {path}"
+        if offset:
+            args += f" {offset}"
         # we need to move out of the analyzer directory
         # due to a check in monitor dll
         basepath = os.path.dirname(path)
         newpath = os.path.join(basepath, os.path.basename(loaderpath))
         shutil.copy(loaderpath, newpath)
 
-        log.info("[-] newpath : " + newpath)
-        log.info("[-] arguments : " + arguments)
-
-        return self.execute(newpath, arguments, newpath)
+        return self.execute(newpath, args, newpath)
diff --git a/analyzer/windows/modules/packages/swf.py b/analyzer/windows/modules/packages/swf.py
index 6d2660887ae..9bca77f96c5 100644
--- a/analyzer/windows/modules/packages/swf.py
+++ b/analyzer/windows/modules/packages/swf.py
@@ -2,19 +2,21 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 from lib.common.abstracts import Package
 
 
 class SWF(Package):
     """Shockwave Flash analysis package.
-        Download a version of standalone flash from adobe and 
-        place in bin/ as flashplayer.exe to use
+    Download a version of standalone flash from adobe and
+    place in bin/ as flashplayer.exe to use
 
-        You can find the bundles you want here: 
-        https://helpx.adobe.com/flash-player/kb/archived-flash-player-versions.html
-        You want the debug folder (in the zip). The filename will have 'sa' (stand-alone) in it
+    You can find the bundles you want here:
+    https://helpx.adobe.com/flash-player/kb/archived-flash-player-versions.html
+    You want the debug folder (in the zip). The filename will have 'sa' (stand-alone) in it
     """
 
+    summary = "Opens an .swf file using flashplayer.exe."
+    description = """Uses bin\\flashplayer.exe to open a shockwave flash (.swf) file."""
+
     def start(self, path):
         return self.execute("bin/flashplayer.exe", path, path)
diff --git a/analyzer/windows/modules/packages/tor_browser.py b/analyzer/windows/modules/packages/tor_browser.py
new file mode 100644
index 00000000000..064611db5ff
--- /dev/null
+++ b/analyzer/windows/modules/packages/tor_browser.py
@@ -0,0 +1,25 @@
+# Copyright (C) 2024 fdiaz@virustotal.com
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+import time
+import webbrowser
+
+from lib.common.abstracts import Package
+
+
+class TorBrowserExt(Package):
+    """TOR analysis package (with extension)."""
+
+    PATHS = [
+        ("LOCALAPPDATA", "Tor Browser", "Browser", "firefox.exe"),
+    ]
+    summary = "Opens the URL in firefox."
+    description = """Spawns TOR's firefox.exe and opens the supplied URL."""
+
+    def start(self, url):
+        webbrowser.register("firefox", None, webbrowser.BackgroundBrowser(self.get_path("firefox.exe")))
+        firefox = webbrowser.get("firefox")
+        time.sleep(15)  # Rough estimate, change based on your setup times.
+        firefox.open(url)
+        time.sleep(15)  # Prevent analysis from finishing too early.
+        return
diff --git a/analyzer/windows/modules/packages/vawtrak.py b/analyzer/windows/modules/packages/vawtrak.py
deleted file mode 100644
index 1c8b59e06b1..00000000000
--- a/analyzer/windows/modules/packages/vawtrak.py
+++ /dev/null
@@ -1,44 +0,0 @@
-# Andriy :P
-
-from __future__ import absolute_import
-import os
-import shutil
-from subprocess import call
-from lib.common.abstracts import Package
-
-
-class IE(Package):
-    """Internet Explorer analysis package."""
-
-    PATHS = [
-        ("ProgramFiles", "Internet Explorer", "iexplore.exe"),
-    ]
-
-    def start(self, path):
-        iexplore = self.get_path("Internet Explorer")
-        # pass the URL instead of a filename in this case
-        self.execute(iexplore, '"%s"' % "about:blank", "about:blank")
-
-        args = self.options.get("arguments")
-        appdata = self.options.get("appdata")
-        runasx86 = self.options.get("runasx86")
-
-        # If the file doesn't have an extension, add .exe
-        # See CWinApp::SetCurrentHandles(), it will throw
-        # an exception that will crash the app if it does
-        # not find an extension on the main exe's filename
-        if "." not in os.path.basename(path):
-            new_path = path + ".exe"
-            os.rename(path, new_path)
-            path = new_path
-
-        if appdata:
-            # run the executable from the APPDATA directory, required for some malware
-            basepath = os.getenv("APPDATA")
-            newpath = os.path.join(basepath, os.path.basename(path))
-            shutil.copy(path, newpath)
-            path = newpath
-        if runasx86:
-            # ignore the return value, user must have CorFlags.exe installed in the guest VM
-            call(["CorFlags.exe", path, "/32bit+"])
-        return self.execute(path, args, path)
diff --git a/analyzer/windows/modules/packages/vbejse.py b/analyzer/windows/modules/packages/vbejse.py
index 9ebd373927b..fe3744a1f5c 100644
--- a/analyzer/windows/modules/packages/vbejse.py
+++ b/analyzer/windows/modules/packages/vbejse.py
@@ -2,9 +2,8 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-import os
 from shutil import copyfile
+
 from lib.common.abstracts import Package
 
 
@@ -14,11 +13,16 @@ class VBSJSE(Package):
     PATHS = [
         ("SystemRoot", "system32", "wscript.exe"),
     ]
+    summary = "Opens a sample file with wscript.exe."
+    description = """Makes two copies of the sample, one with extension .vbe
+    and the second with extension .jse.
+    Using wscript.exe first opens the .vbe file and then the .jse file.
+    """
 
     def start(self, path):
-        wscript = self.get_path("WScript")
+        wscript = self.get_path("wscript.exe")
         # We are here bcz of no extension
-        copyfile(path, path + ".vbe")
-        copyfile(path, path + ".jse")
-        self.execute(wscript, '"%s.vbe"' % path, path + ".vbe")
-        return self.execute(wscript, '"%s.jse"' % path, path + ".jse")
+        copyfile(path, f"{path}.vbe")
+        copyfile(path, f"{path}.jse")
+        self.execute(wscript, f'"{path}.vbe"', f"{path}.vbe")
+        return self.execute(wscript, f'"{path}.jse"', f"{path}.jse")
diff --git a/analyzer/windows/modules/packages/vbs.py b/analyzer/windows/modules/packages/vbs.py
index b24924a6df9..05c062f644c 100644
--- a/analyzer/windows/modules/packages/vbs.py
+++ b/analyzer/windows/modules/packages/vbs.py
@@ -2,7 +2,6 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 import os
 
 from lib.common.abstracts import Package
@@ -17,20 +16,25 @@ class VBS(Package):
     PATHS = [
         ("SystemRoot", "system32", "wscript.exe"),
     ]
+    summary = "Executes a .vbs (or .vbe) file using wscript.exe."
+    description = """Uses wscript.exe to run a .vb/.vbe file.
+    The appropriate filename extension will be added automatically."""
 
     def start(self, path):
-        wscript = self.get_path("WScript")
+        wscript = self.get_path("wscript.exe")
 
         # Check file extension.
         # If the file doesn't have the proper .vbs extension force it
         # and rename it. This is needed for wscript to execute correctly.
         ext = os.path.splitext(path)[-1].lower()
-        if ext != ".vbs" and ext != ".vbe":
-            if os.path.isfile(path) and b"#@~^" in open(path, "rb").read(100):
-                os.rename(path, path + ".vbe")
-                path = path + ".vbe"
+        if ext not in (".vbs", ".vbe"):
+            with open(path, "r") as tmpfile:
+                magic_bytes = tmpfile.read(4)
+            if magic_bytes == "#@~^":
+                os.rename(path, f"{path}.vbe")
+                path = f"{path}.vbe"
             else:
-                os.rename(path, path + ".vbs")
-                path = path + ".vbs"
+                os.rename(path, f"{path}.vbs")
+                path = f"{path}.vbs"
 
-        return self.execute(wscript, '"%s"' % path, path)
+        return self.execute(wscript, f'"{path}"', path)
diff --git a/analyzer/windows/modules/packages/wsf.py b/analyzer/windows/modules/packages/wsf.py
index 41701e6c263..203ac51adcf 100644
--- a/analyzer/windows/modules/packages/wsf.py
+++ b/analyzer/windows/modules/packages/wsf.py
@@ -2,13 +2,9 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-import logging
-import os
 
 from lib.common.abstracts import Package
-
-log = logging.getLogger(__name__)
+from lib.common.common import check_file_extension
 
 
 class WSF(Package):
@@ -17,13 +13,12 @@ class WSF(Package):
     PATHS = [
         ("SystemRoot", "system32", "wscript.exe"),
     ]
+    summary = "Executes a .wsf file using wscript.exe."
+    description = """Uses wscript.exe to run a .wsf file.
+    The .wsf filename extension will be added automatically."""
 
     def start(self, path):
-        wscript = self.get_path("WScript")
-
+        wscript = self.get_path("wscript.exe")
         # Enforce the .wsf file extension as is required by wscript.
-        if not path.endswith(".wsf"):
-            os.rename(path, path + ".wsf")
-            path += ".wsf"
-
-        return self.execute(wscript, '"%s"' % path, path)
+        path = check_file_extension(path, ".wsf")
+        return self.execute(wscript, f'"{path}"', path)
diff --git a/analyzer/windows/modules/packages/xls.py b/analyzer/windows/modules/packages/xls.py
index e183e2d6941..f727b9f99ac 100644
--- a/analyzer/windows/modules/packages/xls.py
+++ b/analyzer/windows/modules/packages/xls.py
@@ -2,32 +2,34 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-
-from __future__ import absolute_import
-import os
 from lib.common.abstracts import Package
+from lib.common.common import check_file_extension
+from lib.common.constants import MSOFFICE_TRUSTED_PATH, TRUSTED_PATH_TEXT
 
 
 class XLS(Package):
     """Excel analysis package."""
 
-    def __init__(self, options={}, config=None):
+    default_curdir = MSOFFICE_TRUSTED_PATH
+
+    def __init__(self, options=None, config=None):
+        if options is None:
+            options = {}
         self.config = config
         self.options = options
-        self.options["exclude-apis"] = "memcpy"
-        self.options["office"] = "1"
 
     PATHS = [
         ("ProgramFiles", "Microsoft Office", "EXCEL.EXE"),
         ("ProgramFiles", "Microsoft Office", "Office*", "EXCEL.EXE"),
         ("ProgramFiles", "Microsoft Office*", "root", "Office*", "EXCEL.EXE"),
     ]
+    summary = "Opens the supplied document with EXCEL.EXE."
+    description = f"""Uses 'EXCEL.EXE <path> /dde' to open the file.
+    {TRUSTED_PATH_TEXT}
+    The .xls filename extension will be added automatically."""
 
     def start(self, path):
-        if "." not in os.path.basename(path):
-            new_path = path + ".xls"
-            os.rename(path, new_path)
-            path = new_path
-
-        excel = self.get_path_glob("Microsoft Office Excel")
-        return self.execute(excel, '"%s" /dde' % path, path)
+        if not path.endswith((".xls", ".xlsx", ".xlsb", ".xlsm", ".slk", ".ods")):
+            path = check_file_extension(path, ".xls")
+        excel = self.get_path_glob("EXCEL.EXE")
+        return self.execute(excel, f'"{path}" /dde', path)
diff --git a/analyzer/windows/modules/packages/xls2016.py b/analyzer/windows/modules/packages/xls2016.py
index 074c6836e84..f80a52aa3b3 100644
--- a/analyzer/windows/modules/packages/xls2016.py
+++ b/analyzer/windows/modules/packages/xls2016.py
@@ -2,30 +2,29 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-
-from __future__ import absolute_import
-import os
 from lib.common.abstracts import Package
+from lib.common.common import check_file_extension
+from lib.common.constants import MSOFFICE_TRUSTED_PATH, TRUSTED_PATH_TEXT
 
 
 class XLS2207(Package):
     """Excel analysis package."""
 
+    default_curdir = MSOFFICE_TRUSTED_PATH
+
     def __init__(self, options={}, config=None):
         self.config = config
         self.options = options
-        self.options["exclude-apis"] = "memcpy"
-        self.options["office"] = "1"
 
     PATHS = [
         ("ProgramFiles", "Microsoft Office*", "root", "Office16", "EXCEL.EXE"),
     ]
+    summary = "Opens the supplied document with Office16\\EXCEL.EXE."
+    description = f"""Uses 'EXCEL.EXE <path> /dde' to open the file.
+    {TRUSTED_PATH_TEXT}
+    The .xls filename extension will be added automatically."""
 
     def start(self, path):
-        if "." not in os.path.basename(path):
-            new_path = path + ".xls"
-            os.rename(path, new_path)
-            path = new_path
-
-        excel = self.get_path_glob("Microsoft Office Excel")
-        return self.execute(excel, '"%s" /dde' % path, path)
+        path = check_file_extension(path, ".xls")
+        excel = self.get_path_glob("EXCEL.EXE")
+        return self.execute(excel, f'"{path}" /dde', path)
diff --git a/analyzer/windows/modules/packages/xps.py b/analyzer/windows/modules/packages/xps.py
index 0cd29527452..71606558f13 100644
--- a/analyzer/windows/modules/packages/xps.py
+++ b/analyzer/windows/modules/packages/xps.py
@@ -2,7 +2,6 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 from lib.common.abstracts import Package
 
 
@@ -12,8 +11,10 @@ class Xps(Package):
     PATHS = [
         ("SystemRoot", "system32", "xpsrchvw.exe"),
     ]
+    summary = "Opens the sample file with xpsrchvw.exe."
+    description = """Uses xpsrchvw.exe to open the supplied sample."""
 
     def start(self, path):
         xpsrchvw_path = self.get_path("xpsrchvw.exe")
-        xpsrchvw_args = '"{0}"'.format(path)
+        xpsrchvw_args = f'"{path}"'
         return self.execute(xpsrchvw_path, xpsrchvw_args, path)
diff --git a/analyzer/windows/modules/packages/xslt.py b/analyzer/windows/modules/packages/xslt.py
new file mode 100644
index 00000000000..391c0707583
--- /dev/null
+++ b/analyzer/windows/modules/packages/xslt.py
@@ -0,0 +1,24 @@
+# Copyright (C) 2016 Brad Spengler
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+from lib.common.abstracts import Package
+from lib.common.common import check_file_extension
+
+
+class XSLT(Package):
+    """XSLT file analysis package."""
+
+    PATHS = [
+        ("SystemRoot", "system32", "wbem", "wmic.exe"),
+        ("SystemRoot", "SysWOW64", "wbem", "wmic.exe"),
+    ]
+    summary = "Opens sample file using wmic.exe."
+    description = """Uses 'wmic.exe process LIST /FORMAT:"<sample>"' to execute any
+    code embedded in the xml sample.
+    The .xsl filename extension will be added automatically."""
+
+    def start(self, path):
+        wmic = self.get_path("wmic.exe")
+        path = check_file_extension(path, ".xsl")
+        return self.execute(wmic, f'process LIST /FORMAT:"{path}"', path)
diff --git a/analyzer/windows/modules/packages/zip.py b/analyzer/windows/modules/packages/zip.py
index 02150a19aec..eb995218287 100644
--- a/analyzer/windows/modules/packages/zip.py
+++ b/analyzer/windows/modules/packages/zip.py
@@ -2,168 +2,118 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-import os
-import shutil
 import logging
-
-try:
-    import re2 as re
-except ImportError:
-    import re
-
-from zipfile import ZipFile, BadZipfile
+import os
 
 from lib.common.abstracts import Package
+from lib.common.constants import (
+    ARCHIVE_OPTIONS,
+    OPT_APPDATA,
+    OPT_ARGUMENTS,
+    OPT_DLLLOADER,
+    OPT_FILE,
+    OPT_FUNCTION,
+    OPT_MULTI_PASSWORD,
+    OPT_PASSWORD,
+)
 from lib.common.exceptions import CuckooPackageError
+from lib.common.zip_utils import (
+    attempt_multiple_passwords,
+    extract_archive,
+    extract_zip,
+    get_file_names,
+    get_infos,
+    get_interesting_files,
+    upload_extracted_files,
+)
+from modules.packages.dll import DLL_OPTIONS
 
 log = logging.getLogger(__name__)
 
+
 class Zip(Package):
     """Zip analysis package."""
+
     PATHS = [
-             ("SystemRoot", "system32", "cmd.exe"),
-             ("SystemRoot", "system32", "wscript.exe"),
-             ("SystemRoot", "system32", "rundll32.exe"),
-             ("SystemRoot", "sysnative", "WindowsPowerShell", "v1.0", "powershell.exe"),
-             ("SystemRoot", "system32", "xpsrchvw.exe"),
-            ]
-    def extract_zip(self, zip_path, extract_path, password=b"infected", recursion_depth=1):
-        """Extracts a nested ZIP file.
-        @param zip_path: ZIP path
-        @param extract_path: where to extract
-        @param password: ZIP password
-        @param recursion_depth: how deep we are in a nested archive
-        """
-        # Test if zip file contains a file named as itself.
-        if self.is_overwritten(zip_path):
-            log.debug("ZIP file contains a file with the same name, original is going to be overwrite")
-            # TODO: add random string.
-            new_zip_path = zip_path + ".old"
-            shutil.move(zip_path, new_zip_path)
-            zip_path = new_zip_path
+        ("SystemRoot", "system32", "cmd.exe"),
+        ("SystemRoot", "system32", "wscript.exe"),
+        ("SystemRoot", "system32", "rundll32.exe"),
+        ("SystemRoot", "sysnative", "WindowsPowerShell", "v1.0", "powershell.exe"),
+        ("ProgramFiles", "7-Zip", "7z.exe"),
+        ("SystemRoot", "system32", "xpsrchvw.exe"),
+        ("ProgramFiles", "Microsoft Office", "WINWORD.EXE"),
+        ("ProgramFiles", "Microsoft Office", "Office*", "WINWORD.EXE"),
+        ("ProgramFiles", "Microsoft Office*", "root", "Office*", "WINWORD.EXE"),
+        ("ProgramFiles", "Microsoft Office", "WORDVIEW.EXE"),
+        ("ProgramFiles", "Microsoft Office", "EXCEL.EXE"),
+        ("ProgramFiles", "Microsoft Office", "Office*", "EXCEL.EXE"),
+        ("ProgramFiles", "Microsoft Office*", "root", "Office*", "EXCEL.EXE"),
+        ("ProgramFiles", "Microsoft", "Edge", "Application", "msedge.exe"),
+    ]
+    summary = "Unpacks a .zip archive with the given password and execute the contents appropriately."
+    description = f"""Extracts the contents of a .zip file. If the file name is not
+    supplied in the 'file" option, examine the archive for files that look executable.
+    If none can be found, the first file in the archive is taken.
+    The default zipfile password is 'infected'.
+    If the '{OPT_APPDATA}' option is specified, run the executable from the APPDATA directory.
+    If the archive contains .dll files, then options '{OPT_FUNCTION}', '{OPT_ARGUMENTS}' and '{OPT_DLLLOADER}' will take effect.
+    """
+    option_names = sorted(set(ARCHIVE_OPTIONS + DLL_OPTIONS + (OPT_APPDATA, OPT_ARGUMENTS, OPT_MULTI_PASSWORD)))
 
-        #requires bytes not str
-        if not isinstance(password, bytes):
-            password = password.encode("utf-8")
+    def start(self, path):
+        password = self.options.get(OPT_PASSWORD, "infected")
+        try_multiple_passwords = attempt_multiple_passwords(self.options, password)
+        appdata = self.options.get(OPT_APPDATA)
+        root = os.environ["APPDATA"] if appdata else os.environ["TEMP"]
+        file_names = []
+        try:
+            zipinfos = get_infos(path)
+            extract_zip(path, root, password, 0, try_multiple_passwords)
+            for f in zipinfos:
+                file_names.append(f.filename)
+        except CuckooPackageError as e:
+            # We should not be trying to do other things if we cannot extract the initial
+            # password-protected zip file
+            if "Bad password for file" in repr(e):
+                raise
 
-        # Extraction.
-        with ZipFile(zip_path, "r") as archive:
+            # use 7z on files that Python zip module couldn't handle
+            seven_zip_path = self.get_path_app_in_path("7z.exe")
+            file_names = get_file_names(seven_zip_path, path)
+            if len(file_names):
+                extract_archive(seven_zip_path, path, root, password, try_multiple_passwords)
 
-            # Check if the archive is encrypted
-            for zip_info in archive.infolist():
-                is_encrypted = zip_info.flag_bits & 0x1
-                # If encrypted and the user didn't provide a password
-                # set to default value
-                if is_encrypted and password == b"":
-                    log.debug("Achive is encrypted and user did not provide a password, using default value: infected")
-                    password = b"infected"
-                # Else, either password stays as user specified or archive is not encrypted
+        # If the .zip only contains a 7zip file, then do:
+        if len(file_names) == 1 and file_names[0].endswith(".7z"):
+            seven_zip_path = self.get_path_app_in_path("7z.exe")
+            nested_7z = os.path.join(root, file_names[0])
+            file_names = get_file_names(seven_zip_path, nested_7z)
+            if len(file_names):
+                extract_archive(seven_zip_path, nested_7z, root, password, try_multiple_passwords)
 
-            try:
-                archive.extractall(path=extract_path, pwd=password)
-            except BadZipfile:
-                raise CuckooPackageError("Invalid Zip file")
-            except RuntimeError:
-                try:
-                    archive.extractall(path=extract_path, pwd=password)
-                except RuntimeError as e:
-                    raise CuckooPackageError("Unable to extract Zip file: "
-                                             "{0}".format(e))
-            finally:
-                if recursion_depth < 4:
-                    # Extract nested archives.
-                    for name in archive.namelist():
-                        if name.endswith(".zip"):
-                            # Recurse.
-                            try:
-                                self.extract_zip(os.path.join(extract_path, name), extract_path, password=password, recursion_depth=recursion_depth + 1)
-                            except BadZipfile:
-                                log.warning("Nested zip file '%s' name end with 'zip' extension is not a valid zip. Skip extracting" % name)
-                            except RuntimeError as run_err:
-                                log.error("Error to extract nested zip file %s with details: %s" % name, run_err)
+        file_name = self.options.get(OPT_FILE)
+        # If no file name is provided via option, discover files to execute.
+        if not file_name:
+            # If no file names to choose from, bail
+            if not len(file_names):
+                raise CuckooPackageError("Empty ZIP archive")
 
-    def is_overwritten(self, zip_path):
-        """Checks if the ZIP file contains another file with the same name, so it is going to be overwritten.
-        @param zip_path: zip file path
-        @return: comparison boolean
-        """
-        with ZipFile(zip_path, "r") as archive:
-            try:
-                # Test if zip file contains a file named as itself.
-                for name in archive.namelist():
-                    if name == os.path.basename(zip_path):
-                        return True
-                return False
-            except BadZipfile:
-                raise CuckooPackageError("Invalid Zip file")
+            upload_extracted_files(root, file_names)
+            ret_list = []
 
-    def get_infos(self, zip_path):
-        """Get information from ZIP file.
-        @param zip_path: zip file path
-        @return: ZipInfo class
-        """
-        try:
-            with ZipFile(zip_path, "r") as archive:
-                return archive.infolist()
-        except BadZipfile:
-            raise CuckooPackageError("Invalid Zip file")
+            # Attempt to find at least one valid exe extension in the archive
+            interesting_files = get_interesting_files(file_names)
 
-    def start(self, path):
-        root = os.environ["TEMP"]
-        password = self.options.get("password")
-        if password is None:
-            password = b""
-        exe_regex = re.compile('(\.exe|\.dll|\.scr|\.msi|\.bat|\.lnk|\.js|\.jse|\.vbs|\.vbe|\.wsf)$',flags=re.IGNORECASE)
-        zipinfos = self.get_infos(path)
-        self.extract_zip(path, root, password, 0)
+            if not interesting_files:
+                log.debug("No interesting files found, auto executing the first file: %s", file_names[0])
+                interesting_files.append(file_names[0])
 
-        file_name = self.options.get("file")
-        # If no file name is provided via option, take the first file.
-        if not file_name:
-            # No name provided try to find a better name.
-            if len(zipinfos):
-                # Attempt to find a valid exe extension in the archive
-                for f in zipinfos:
-                    if exe_regex.search(f.filename):
-                        file_name = f.filename
-                        break
-                # Default to the first one if none found
-                file_name = file_name if file_name else zipinfos[0].filename
-                log.debug("Missing file option, auto executing: {0}".format(file_name))
-            else:
-                raise CuckooPackageError("Empty ZIP archive")
+            log.debug("Missing file option, auto executing: %s", interesting_files)
+            for interesting_file in interesting_files:
+                file_path = os.path.join(root, interesting_file)
+                ret_list.append(self.execute_interesting_file(root, interesting_file, file_path))
 
-        file_path = os.path.join(root, file_name)
-        log.debug("file_name: \"%s\"" % (file_name))
-        if file_name.lower().endswith(".lnk"):
-            cmd_path = self.get_path("cmd.exe")
-            cmd_args = "/c start /wait \"\" \"{0}\"".format(file_path)
-            return self.execute(cmd_path, cmd_args, file_path)
-        elif file_name.lower().endswith(".msi"):
-            msi_path = self.get_path("msiexec.exe")
-            msi_args = "/I \"{0}\"".format(file_path)
-            return self.execute(msi_path, msi_args, file_path)
-        elif file_name.lower().endswith((".js", ".jse", ".vbs", ".vbe", ".wsf")):
-            wscript = self.get_path_app_in_path("wscript.exe")
-            wscript_args = "\"{0}\"".format(file_path)
-            return self.execute(wscript, wscript_args, file_path)
-        elif file_name.lower().endswith(".dll"):
-            rundll32 = self.get_path_app_in_path("rundll32.exe")
-            function = self.options.get("function", "#1")
-            arguments = self.options.get("arguments")
-            dllloader = self.options.get("dllloader")
-            dll_args = "\"{0}\",{1}".format(file_path, function)
-            if arguments:
-                dll_args += " {0}".format(arguments)
-            if dllloader:
-                newname = os.path.join(os.path.dirname(rundll32), dllloader)
-                shutil.copy(rundll32, newname)
-                rundll32 = newname
-            return self.execute(rundll32, dll_args, file_path)
-        elif file_name.lower().endswith(".ps1"):
-            powershell = self.get_path_app_in_path("powershell.exe")
-            args = "-NoProfile -ExecutionPolicy bypass -File \"{0}\"".format(path)
-            return self.execute(powershell, args, file_path)
+            return ret_list
         else:
-            return self.execute(file_path, self.options.get("arguments"), file_path)
+            file_path = os.path.join(root, file_name)
+            return self.execute_interesting_file(root, file_name, file_path)
diff --git a/analyzer/windows/modules/packages/zip_compound.py b/analyzer/windows/modules/packages/zip_compound.py
new file mode 100644
index 00000000000..50fc0fdf211
--- /dev/null
+++ b/analyzer/windows/modules/packages/zip_compound.py
@@ -0,0 +1,152 @@
+# Copyright (C) 2021 CSIT
+# This file is part of CAPE Sandbox - http://www.capesandbox.com
+# See the file 'docs/LICENSE' for copying permission.
+
+import logging
+import os
+import shutil
+from typing import Tuple
+
+from lib.common.abstracts import Package
+from lib.common.constants import (
+    DLL_OPTIONS,
+    OPT_APPDATA,
+    OPT_ARGUMENTS,
+    OPT_CURDIR,
+    OPT_DLLLOADER,
+    OPT_FILE,
+    OPT_FUNCTION,
+    OPT_PASSWORD,
+)
+from lib.common.exceptions import CuckooPackageError
+from lib.common.zip_utils import extract_zip
+from lib.core.compound import create_custom_folders, extract_json_data
+
+log = logging.getLogger(__name__)
+
+
+class ZipCompound(Package):
+    """Extended functionality from the zip package to process compound samples"""
+
+    PATHS = [
+        ("SystemRoot", "system32", "cmd.exe"),
+        ("SystemRoot", "system32", "wscript.exe"),
+        ("SystemRoot", "system32", "rundll32.exe"),
+        ("SystemRoot", "sysnative", "WindowsPowerShell", "v1.0", "powershell.exe"),
+        ("ProgramFiles", "7-Zip", "7z.exe"),
+        ("SystemRoot", "system32", "xpsrchvw.exe"),
+        ("ProgramFiles", "Microsoft Office", "WINWORD.EXE"),
+        ("ProgramFiles", "Microsoft Office", "Office*", "WINWORD.EXE"),
+        ("ProgramFiles", "Microsoft Office*", "root", "Office*", "WINWORD.EXE"),
+        ("ProgramFiles", "Microsoft Office", "WORDVIEW.EXE"),
+        ("ProgramFiles", "Microsoft Office", "EXCEL.EXE"),
+        ("ProgramFiles", "Microsoft Office", "Office*", "EXCEL.EXE"),
+        ("ProgramFiles", "Microsoft Office*", "root", "Office*", "EXCEL.EXE"),
+        ("ProgramFiles", "Microsoft", "Edge", "Application", "msedge.exe"),
+    ]
+    summary = "Unpacks a .zip archive with the given password and execute the contents appropriately."
+    description = f"""Extracts the contents of a .zip file.
+    Supply '{OPT_PASSWORD}' if the .zip file is encrypted (defaults to blank).
+    *NB*: Either '{OPT_FILE}' option must be set, or a '__configuration.json' file must be present in the zip file.
+    Sample json file:
+
+        {{
+            "path_to_extract": {{
+                "a.exe": "%USERPROFILE%\\Desktop\\a\\b\\c",
+                "folder_b": "%appdata%"
+            }},
+            "target_file":"a.exe"
+        }}
+
+    If the '{OPT_CURDIR}' option is specified, use that as the current directory.
+    Else, if the '{OPT_APPDATA}' option is specified, run the executable from the APPDATA directory.
+    The execution method is chosen based on the filename extension.
+    If executing a .dll file, then options '{OPT_FUNCTION}', '{OPT_ARGUMENTS}' and '{OPT_DLLLOADER}' will take effect.
+    """
+    option_names = sorted(set(DLL_OPTIONS + (OPT_CURDIR, OPT_FILE, OPT_PASSWORD, OPT_APPDATA)))
+
+    def process_unzipped_contents(self, unzipped_directory: str, json_filename: str) -> Tuple[str, str]:
+        """Checks JSON to move the various files to."""
+        raw_json = extract_json_data(unzipped_directory, json_filename)
+
+        json_dst_flds = raw_json.get("path_to_extract", {})
+        target_file = raw_json.get("target_file", "")
+
+        # Enforce the requirement of having a specified file. No guessing.
+        target_file = target_file or self.options.get(OPT_FILE)
+        if not target_file:
+            raise CuckooPackageError("File must be specified in the JSON or the web submission UI!")
+
+        # In case the "file" submission option is relative, we split here
+        target_srcdir, target_name = os.path.split(target_file)
+
+        # Note for 32bit samples: Even if JSON configutation specifies "System32",
+        # wow64 redirection will still happen
+        # Commented out since redirection-related issues should be uncommon.
+        # if is_os_64bit():
+        #     wow64 = c_ulong(0)
+        #     KERNEL32.Wow64DisableWow64FsRedirection(byref(wow64))
+
+        fin_target_path = os.path.join(unzipped_directory, target_file)
+
+        # Move files that are specified in JSON file
+        if json_dst_flds:
+            for f, dst_fld in json_dst_flds.items():
+                oldpath = os.path.join(unzipped_directory, f)
+                dst_fld = os.path.expandvars(dst_fld)
+                create_custom_folders(dst_fld)
+                # If a relative path is provided, take only the basename
+                fname = os.path.split(f)[1]
+                newpath = os.path.join(dst_fld, fname)
+
+                # We cannot just shutil.move src dirs if src name == dst name.
+                if os.path.isdir(oldpath):
+                    log.debug("Resolved Dir: %s for folder '%s'", dst_fld, fname)
+                    shutil.copytree(oldpath, newpath, dirs_exist_ok=True)
+                    shutil.rmtree(oldpath)
+                else:
+                    log.debug("Resolved Dir: %s for file '%s'", dst_fld, fname)
+                    shutil.move(oldpath, newpath)
+
+                if target_file.lower() == f.lower():
+                    fin_target_path = newpath
+                    self.options[OPT_CURDIR] = dst_fld
+                    log.debug("New curdir value: %s", self.options[OPT_CURDIR])
+
+        # Only runs if a relative path is given for target file
+        # Errors out if the file's containing folder is shifted
+        # before shifting the target file first.
+        if target_srcdir and not os.path.exists(fin_target_path):
+            raise CuckooPackageError(
+                "Error getting the correct path for the target file! \
+                Target file should be moved before moving its containing\
+                source folder"
+            )
+
+        log.debug("Final target name: %s", target_name)
+        log.info("Final target path: %s", fin_target_path)
+        return target_name, fin_target_path
+
+    def prepare_zip_compound(self, path: str, json_filename: str) -> Tuple[str, str, str]:
+        """Pre-process the submitted zip file"""
+        password = self.options.get(OPT_PASSWORD)
+        if password is None:
+            log.info("No archive password provided")
+            password = b""
+
+        if OPT_CURDIR in self.options:
+            root = self.options[OPT_CURDIR]
+        elif OPT_APPDATA in self.options:
+            root = os.environ["APPDATA"]
+        else:
+            root = os.environ["TEMP"]
+        create_custom_folders(root)
+
+        extract_zip(path, root, password, 0)
+
+        file_name, file_path = self.process_unzipped_contents(root, json_filename)
+        return root, file_name, file_path
+
+    def start(self, path, json_config="__configuration.json"):
+        root, file_name, file_path = self.prepare_zip_compound(path, json_config)
+        return self.execute_interesting_file(root, file_name, file_path)
diff --git a/analyzer/windows/prescripts/prescript_detection.py b/analyzer/windows/prescripts/prescript_detection.py
new file mode 100644
index 00000000000..09aa2a165a8
--- /dev/null
+++ b/analyzer/windows/prescripts/prescript_detection.py
@@ -0,0 +1,791 @@
+import argparse
+import json
+import logging
+import os
+import shutil
+import subprocess
+import sys
+from datetime import date, datetime
+from enum import Enum
+from pathlib import Path
+from winreg import (
+    HKEY_CLASSES_ROOT,
+    HKEY_CURRENT_CONFIG,
+    HKEY_CURRENT_USER,
+    HKEY_LOCAL_MACHINE,
+    HKEY_PERFORMANCE_DATA,
+    HKEY_USERS,
+    KEY_ALL_ACCESS,
+    REG_BINARY,
+    REG_DWORD,
+    REG_NONE,
+    REG_SZ,
+    CloseKey,
+    CreateKey,
+    OpenKey,
+    SetValueEx,
+)
+
+import pythoncom
+import win32api
+import win32com.client
+from win32com.taskscheduler import taskscheduler
+
+cwd = os.getcwd()
+sys.path.append(cwd)
+
+try:
+    from lib.common.zip_utils import extract_zip
+    from lib.core.compound import create_custom_folders, extract_json_data
+    from lib.core.config import Config
+except Exception as e:
+    print(f"{cwd} with {e}")
+    # sys.exit()
+
+ts = pythoncom.CoCreateInstance(
+    taskscheduler.CLSID_CTaskScheduler, None, pythoncom.CLSCTX_INPROC_SERVER, taskscheduler.IID_ITaskScheduler
+)
+
+scheduler = win32com.client.Dispatch("Schedule.Service")
+scheduler.Connect()
+root_folder = scheduler.GetFolder("\\")
+
+LIST_OF_VALID_ACTIONS = [
+    "run_script",
+    "add_file",
+    "add_directory",
+    "create_registry",
+    "modify_registry",
+    "create_scheduled_task",
+    "create_xml_scheduled_task",
+    "modify_scheduled_task",
+    "change_execution_dir",
+]
+
+ACTIONS_PARAMETERS = {
+    "run_script": ["path", "params", "timeout"],
+    "add_file": ["src_path", "dst_path", "overwrite"],
+    "add_directory": ["path"],
+    "create_registry": ["path", "key", "value"],
+    "modify_registry": ["path", "key", "value"],
+    "create_scheduled_task": [
+        "task_name",
+        "application_name",
+        "priority",
+        "working_directory",
+        "flags",
+        "parameters",
+        "comment",
+        "creator",
+        "account_information",
+        "path",
+        "trigger_type",
+        "start_time",
+        "duration",
+        "interval",
+        "expiration_time",
+        "additional_trigger_params",
+    ],
+    "create_xml_scheduled_task": ["task_name", "xml"],
+    "modify_scheduled_task": [
+        "task_name",
+        "path",
+        "new_task_name",
+        "comment",
+        "action_id",
+        "application_name",
+        "priority",
+        "parameters",
+        "working_directory",
+        "creator",
+        "account_information",
+        "flags",
+        "trigger",
+    ],
+    "change_execution_dir": ["path"],
+}
+
+Registry_paths = {
+    "hkey_classes_root": HKEY_CLASSES_ROOT,
+    "hkey_current_user": HKEY_CURRENT_USER,
+    "hkey_local_machine": HKEY_LOCAL_MACHINE,
+    "hkey_users": HKEY_USERS,
+    "hkey_performance_data": HKEY_PERFORMANCE_DATA,
+    "hkey_current_config": HKEY_CURRENT_CONFIG,
+}
+
+
+class TASK_ACTION_TYPES(Enum):
+    TASK_ACTION_EXEC = 0
+    TASK_ACTION_COM_HANDLER = 5
+    TASK_ACTION_SEND_EMAIL = 6
+    TASK_ACTION_SHOW_MESSAGE = 7
+
+
+class TASK_TRIGGER_TYPE(Enum):
+    TASK_TRIGGER_EVENT = 0
+    TASK_TRIGGER_TIME = 1
+    TASK_TRIGGER_DAILY = 2
+    TASK_TRIGGER_WEEKLY = 3
+    TASK_TRIGGER_MONTHLY = 4
+    TASK_TRIGGER_MONTHLYDOW = 5
+    TASK_TRIGGER_IDLE = 6
+    TASK_TRIGGER_REGISTRATION = 7
+    TASK_TRIGGER_BOOT = 8
+    TASK_TRIGGER_LOGON = 9
+    TASK_TRIGGER_SESSION_STATE_CHANGE = 11
+    TASK_TRIGGER_CUSTOM_TRIGGER_01 = 12
+
+
+class TASK_COMPATIBILITY(Enum):
+    TASK_COMPATIBILITY_AT = 0
+    TASK_COMPATIBILITY_V1 = 1
+    TASK_COMPATIBILITY_V2 = 2
+    TASK_COMPATIBILITY_V2_1 = 3
+    TASK_COMPATIBILITY_V2_2 = 4
+    TASK_COMPATIBILITY_V2_3 = 5
+    TASK_COMPATIBILITY_V2_4 = 6
+
+
+class TASK_CREATION(Enum):
+    TASK_VALIDATE_ONLY = 1
+    TASK_CREATE = 2
+    TASK_UPDATE = 4
+    TASK_CREATE_OR_UPDATE = 6
+    TASK_DISABLE = 8
+    TASK_DONT_ADD_PRINCIPAL_ACE = (10,)
+    TASK_IGNORE_REGISTRATION_TRIGGERS = 20
+
+
+class TASK_LOGON_TYPE(Enum):
+    TASK_LOGON_NONE = (0,)
+    TASK_LOGON_PASSWORD = 1
+    TASK_LOGON_S4U = 2
+    TASK_LOGON_INTERACTIVE_TOKEN = 3
+    TASK_LOGON_GROUP = 4
+    TASK_LOGON_SERVICE_ACCOUNT = 5
+    TASK_LOGON_INTERACTIVE_TOKEN_OR_PASSWORD = 6
+
+
+class TASK_PRIORITY(Enum):
+    THREAD_PRIORITY_TIME_CRITICAL = 0
+    THREAD_PRIORITY_HIGHEST = 1
+    THREAD_PRIORITY_ABOVE_NORMAL = 2
+    THREAD_PRIORITY_ABOVE_NORMAL2 = 3
+    THREAD_PRIORITY_NORMAL = 4
+    THREAD_PRIORITY_NORMAL2 = 5
+    THREAD_PRIORITY_NORMAL3 = 6
+    THREAD_PRIORITY_BELOW_NORMAL = 7
+    THREAD_PRIORITY_BELOW_NORMAL2 = 8
+    THREAD_PRIORITY_LOWEST = 9
+    THREAD_PRIORITY_IDLE = 10
+
+
+Scheduled_task_flags = [
+    taskscheduler.TASK_FLAG_INTERACTIVE,
+    taskscheduler.TASK_FLAG_DELETE_WHEN_DONE,
+    taskscheduler.TASK_FLAG_DISABLED,
+    taskscheduler.TASK_FLAG_HIDDEN,
+    taskscheduler.TASK_FLAG_RUN_ONLY_IF_LOGGED_ON,
+    taskscheduler.TASK_FLAG_START_ONLY_IF_IDLE,
+    taskscheduler.TASK_FLAG_SYSTEM_REQUIRED,
+    taskscheduler.TASK_FLAG_KILL_ON_IDLE_END,
+    taskscheduler.TASK_FLAG_RESTART_ON_IDLE_RESUME,
+    taskscheduler.TASK_FLAG_DONT_START_IF_ON_BATTERIES,
+    taskscheduler.TASK_FLAG_KILL_IF_GOING_ON_BATTERIES,
+    taskscheduler.TASK_FLAG_RUN_IF_CONNECTED_TO_INTERNET,
+]
+
+Scheduled_task_priority = [
+    taskscheduler.REALTIME_PRIORITY_CLASS,
+    taskscheduler.HIGH_PRIORITY_CLASS,
+    taskscheduler.NORMAL_PRIORITY_CLASS,
+    taskscheduler.IDLE_PRIORITY_CLASS,
+]
+
+trigger_flags = [
+    taskscheduler.TASK_TRIGGER_FLAG_HAS_END_DATE,
+    taskscheduler.TASK_TRIGGER_FLAG_KILL_AT_DURATION_END,
+    taskscheduler.TASK_TRIGGER_FLAG_DISABLED,
+]
+
+trigger_type = [
+    taskscheduler.TASK_TIME_TRIGGER_ONCE,
+    taskscheduler.TASK_TIME_TRIGGER_DAILY,
+    taskscheduler.TASK_TIME_TRIGGER_WEEKLY,
+    taskscheduler.TASK_TIME_TRIGGER_MONTHLYDATE,
+    taskscheduler.TASK_TIME_TRIGGER_MONTHLYDOW,
+    taskscheduler.TASK_EVENT_TRIGGER_ON_IDLE,
+    taskscheduler.TASK_EVENT_TRIGGER_AT_SYSTEMSTART,
+    taskscheduler.TASK_EVENT_TRIGGER_AT_LOGON,
+]
+
+log = logging.getLogger(__name__)
+
+# All the logs will be also available in logs/pre_script.log
+# We don't need to hijack the path of the zip_compound for rules and files destined for us they should use the relative path and it's going to get a copy in the temp cape folder and the prescript one
+# We also don't need to cleanup since the zip_compound is going to be reextracted and work appropriately just after this one and overwrite any leftovers
+
+# Format for zip_compound of __configuration.json:
+# {
+#    "path_to_extract":
+#    {
+#        "file_name": "path",
+#        "yara_file": "prescripts/rules",
+#        "script_file": "prescripts/scripts"
+#    },
+#    "target_file": "target_file_name"
+# }
+#
+
+# Yara rules metadata commands
+# So the metadata field which represent actions to take on a match have the following format al_cape_action#
+# The value is then a dictionary of the paramater for this action
+#
+#
+
+
+def add_file_to_path(src_path, dst_path, overwrite=False):
+    if os.path.exists(dst_path) and overwrite:
+        # in case of the src and dst are the same file
+        if os.path.samefile(src_path, dst_path):
+            log.info("Same file %s already in the victim vm", str(dst_path))
+            return
+        os.remove(dst_path)
+        shutil.copyfile(src=src_path, dst=dst_path)
+        log.info("File %s modified in the victim vm", str(dst_path))
+    elif os.path.exists(dst_path):
+        log.info("File %s already in the victim vm", str(dst_path))
+        return
+    else:
+        shutil.copyfile(src=src_path, dst=dst_path)
+        log.info("File %s added to victim vm", str(dst_path))
+
+
+def run_script(script_path, args, timeout):
+    exec = script_path + args
+    if script_path.endwith(".py"):
+        subprocess.check_output("python " + exec, timeout=timeout, stderr=subprocess.STDOUT)
+    else:
+        subprocess.check_output(exec, timeout=timeout, stderr=subprocess.STDOUT)
+    log.info("Running script %s with parameters %s on the victim vm", str(script_path), str(args))
+
+
+def add_directory(path):
+    os.makedirs(path, exist_ok=True)
+    log.info("Folder %s added to victim vm", str(path))
+
+
+def registry_path_to_winreg(path):
+    for value in Registry_paths.keys():
+        if value in path:
+            return value
+    return path
+
+
+def identify_registry_value_type(value):
+    if isinstance(value, bytes):
+        return REG_BINARY
+    elif isinstance(value, int):
+        return REG_DWORD
+    elif isinstance(value, None):
+        return REG_NONE
+    elif isinstance(value, str):
+        return REG_SZ
+    else:
+        return None
+
+
+def create_registry(path, key, value, value_type):
+    path = registry_path_to_winreg(path)
+    try:
+        RegistryKey = OpenKey(path, key, 0, KEY_ALL_ACCESS)
+    except Exception as _:
+        RegistryKey = CreateKey(path, key)
+    SetValueEx(RegistryKey, key, 0, value_type, value)
+    CloseKey(RegistryKey)
+    log.info("Created registry %s, with key %s and value %s on the victim vm", str(path), str(key), str(value))
+
+
+def modify_registry(path, key, value, value_type):
+    path = registry_path_to_winreg(path)
+    try:
+        RegistryKey = OpenKey(path, key, 0, KEY_ALL_ACCESS)
+    except Exception as _:
+        log.info("The target registry doesn't exist on the victim vm at path %s with key %s", str(path), str(key))
+    SetValueEx(RegistryKey, key, 0, value_type, value)
+    log.info("Modified registry %s, with key %s to value %s on the victim vm", str(path), str(key), str(value))
+
+
+def create_scheduled_task(
+    task_name,
+    application_name,
+    priority,
+    working_directory,
+    flags,
+    trigger,
+    parameters="",
+    idle_time=0,
+    comment="",
+    creator="",
+    account_information=win32api.GetUserName(),
+):
+    new_task = pythoncom.CoCreateInstance(taskscheduler.CLSID_CTask, None, pythoncom.CLSCTX_INPROC_SERVER, taskscheduler.IID_ITask)
+    ts.AddWorkItem(task_name, new_task)  ## task object is modified in place
+    new_task.SetFlags(flags)
+    if idle_time != 0:
+        new_task.SetIdleWait(idle_time, 3600)  # Wait for idle for 1h
+    new_task.SetComment(comment)
+    new_task.SetApplicationName(application_name)
+    new_task.SetPriority(priority)
+    new_task.SetParameters(parameters)
+    new_task.SetWorkingDirectory(working_directory)
+    new_task.SetCreator(creator)
+    new_task.SetAccountInformation(account_information, None)
+    tr_ind, tr = new_task.CreateTrigger()
+    tr.SetTrigger(trigger)
+    pf = new_task.QueryInterface(pythoncom.IID_IPersistFile)
+    pf.Save(None, 1)
+    log.info("Scheduled task %s created on the victim vm", str(task_name))
+
+
+def create_scheduled_task2(
+    task_name,
+    application_name,
+    priority,
+    working_directory,
+    flags={},
+    parameters="",
+    comment="",
+    creator="",
+    account_information=win32api.GetUserName(),
+    path="\\",
+    trigger_type=None,
+    start_time=datetime.now().time(),
+    duration=0,
+    interval=0,
+    expiration_time=None,
+    additional_trigger_params={},
+):
+    new_task = scheduler.NewTask(0)
+    if path != "\\":
+        root_folder.CreateFolder(path)
+        folder = root_folder.GetFolder(path)
+    folder = root_folder
+    new_task.RegistrationInfo.Description = comment
+    new_task.RegistrationInfo.Author = creator
+    new_task.Settings.Enabled = True
+    if flags != {}:
+        new_task.Settings.RunOnlyIfNetworkAvailable = flags.get("RunOnlyIfNetworkAvailable", False)  #
+        new_task.Settings.AllowHardTerminate = flags.get("AllowHardTerminate", False)  #
+        new_task.Settings.AllowDemandStart = flags.get("AllowDemandStart", True)  #
+        if "RestartInterval" in flags or "RestartCount" in flags:
+            new_task.Settings.RestartInterval = flags.get("RestartInterval", "PT24H")
+            new_task.Settings.RestartCount = flags.get("RestartCount", 1)
+        new_task.Settings.StartWhenAvailable = flags.get("StartWhenAvailable", False)  #
+        new_task.Settings.ExecutionTimeLimit = flags.get("ExecutionTimeLimit", "PT0S")
+        if "DeleteExpiredTaskAfter" in flags:
+            new_task.Settings.DeleteExpiredTaskAfter = flags.get("DeleteExpiredTaskAfter")
+        new_task.Settings.WakeToRun = flags.get("WakeToRun", False)  #
+        new_task.Settings.DisallowStartIfOnBatteries = flags.get("DisallowStartIfOnBatteries", False)  #
+        new_task.Settings.RunOnlyIfIdle = flags.get("RunOnlyIfIdle", False)  #
+        new_task.Settings.Hidden = flags.get("Hidden", False)  #
+        new_task.Settings.StopIfGoingOnBatteries = flags.get("StopIfGoingOnBatteries", False)  #
+        new_task.Settings.IdleSettings.StopOnIdleEnd = flags.get("StopOnIdleEnd", False)  #
+        new_task.Settings.IdleSettings.RestartOnIdle = flags.get("RestartOnIdle", False)  #
+    new_task.Settings.Priority = priority
+    # new_task.Settings.Compatibility
+    if trigger_type is not None:
+        trigger = new_task.Triggers.Create(trigger_type)
+    else:
+        trigger = new_task.Trigger.Create(TASK_TRIGGER_TYPE.TASK_TRIGGER_REGISTRATION.value)
+    if start_time != 0:
+        trigger.StartBoundary = start_time.isoformat()
+    if trigger_type in [
+        TASK_TRIGGER_TYPE.TASK_TRIGGER_TIME.value,
+        TASK_TRIGGER_TYPE.TASK_TRIGGER_DAILY.value,
+        TASK_TRIGGER_TYPE.TASK_TRIGGER_WEEKLY.value,
+        TASK_TRIGGER_TYPE.TASK_TRIGGER_MONTHLY.value,
+        TASK_TRIGGER_TYPE.TASK_TRIGGER_MONTHLYDOW.value,
+    ]:
+        if expiration_time is not None:
+            trigger.EndBoundary = expiration_time.isoformat()
+        trigger.Repetition.Duration = duration
+        trigger.Repetition.Interval = interval
+        trigger.Repetition.StopAtDurationEnd = True
+    if trigger_type == TASK_TRIGGER_TYPE.TASK_TRIGGER_DAILY.value:
+        trigger.DaysInterval = additional_trigger_params.get("DaysInterval", 1)
+    elif trigger_type == TASK_TRIGGER_TYPE.TASK_TRIGGER_WEEKLY.value:
+        trigger.DaysOfWeek = additional_trigger_params.get("DaysOfWeek", 127)  # Every day of the week default
+        trigger.WeeksInterval = additional_trigger_params.get("WeeksInterval", 1)
+    elif trigger_type == TASK_TRIGGER_TYPE.TASK_TRIGGER_MONTHLY.value:
+        trigger.DaysOfMonth = additional_trigger_params.get("DaysOfMonth", 1)
+        trigger.MonthsOfYear = additional_trigger_params.get("MonthsOfYear", 4095)
+        trigger.RunOnLastDayOfMonth = additional_trigger_params.get("RunOnLastDayOfMonth", False)
+    elif trigger_type == TASK_TRIGGER_TYPE.TASK_TRIGGER_MONTHLYDOW.value:
+        trigger.DaysOfWeek = additional_trigger_params.get("DaysOfWeek", 127)
+        trigger.MonthsOfYear = additional_trigger_params.get("MonthsOfYear", 4095)
+        trigger.RunOnLastWeekOfMonth = additional_trigger_params.get("RunOnLastWeekOfMonth", True)
+        trigger.WeeksOfMonth = additional_trigger_params.get("WeeksOfMonth", 15)
+    elif trigger_type == TASK_TRIGGER_TYPE.TASK_TRIGGER_EVENT.value:
+        trigger.Delay = additional_trigger_params.get("Delay", "PT5M")
+        trigger.Subscription = additional_trigger_params.get("Subscription", "empty_query")
+        trigger.ValueQueries = additional_trigger_params.get("ValueQueries", "")
+    elif trigger_type in [
+        TASK_TRIGGER_TYPE.TASK_TRIGGER_BOOT.value,
+        TASK_TRIGGER_TYPE.TASK_TRIGGER_LOGON.value,
+        TASK_TRIGGER_TYPE.TASK_TRIGGER_REGISTRATION.value,
+    ]:
+        trigger.Delay = additional_trigger_params.get("Delay", "PT5M")
+        if trigger_type == TASK_TRIGGER_TYPE.TASK_TRIGGER_LOGON.value:
+            trigger.UserId = additional_trigger_params.get("UserId", account_information)
+    new_task.Principal.DisplayName = creator
+    new_task.Principal.UserId = account_information
+    Action = new_task.Actions.Create(TASK_ACTION_TYPES.TASK_ACTION_EXEC.value)
+    Action.ID = "MyAction"
+    Action.Arguments = parameters
+    Action.Path = application_name
+    Action.WorkingDirectory = working_directory
+    folder.RegisterTaskDefinition(task_name, new_task, TASK_CREATION.TASK_CREATE_OR_UPDATE.value, "", "", 0)
+
+
+def create_scheduled_task_from_xml(task_name, xml_path):
+    cmd = ["schtasks", "/create", "/xml", xml_path, "/tn", task_name]
+    result = subprocess.run(cmd, capture_output=True, text=True)
+    return result.stdout, result.stderr
+
+
+def modify_scheduled_task(
+    task_name,
+    path=None,
+    new_task_name=None,
+    comment=None,
+    action_id=None,
+    application_name=None,
+    priority=None,
+    parameters=None,
+    working_directory=None,
+    creator=None,
+    account_information=None,
+    flags=None,
+    trigger=None,
+):
+    if path:
+        folder = root_folder.GetFolder(path)
+    else:
+        folder = root_folder
+    for task in folder.GetTasks(0):
+        if task.Name == task_name:
+            modified_task = task.Definition
+            if comment:
+                modified_task.RegistrationInfo.Description = comment
+            if application_name and parameters and working_directory:
+                if modified_task.Actions.Count == 1 and not action_id:
+                    modified_task.Actions.clear()
+                elif action_id:
+                    for index in range(1, modified_task.Actions.Count + 1):
+                        if modified_task.Actions.Item(index).Id == action_id:
+                            modified_task.Actions.Remove(index)
+                Action = modified_task.Actions.Create(TASK_ACTION_TYPES.TASK_ACTION_EXEC.value)
+                Action.ID = action_id or "MyAction"
+                Action.Arguments = parameters
+                Action.WorkingDirectory = working_directory
+                Action.Path = application_name
+            elif application_name or parameters or working_directory:
+                if action_id:
+                    for index in range(1, modified_task.Actions.Count + 1):
+                        if modified_task.Actions.Item(index).Id == action_id:
+                            if not application_name:
+                                application_name = modified_task.Actions.Item(index).Path
+                            if not working_directory:
+                                working_directory = modified_task.Actions.Item(index).WorkingDirectory
+                            if not parameters:
+                                parameters = modified_task.Actions.Item(index).Arguments
+                            modified_task.Actions.Remove(index)
+                    Action = modified_task.Actions.Create(TASK_ACTION_TYPES.TASK_ACTION_EXEC.value)
+                    Action.ID = action_id
+                    Action.Arguments = parameters
+                    Action.WorkingDirectory = working_directory
+                    Action.Path = application_name
+                elif modified_task.Actions.Count == 1:
+                    id = modified_task.Actions.Item(1).Id
+                    if not application_name:
+                        application_name = modified_task.Actions.Item(1).Path
+                    if not working_directory:
+                        working_directory = modified_task.Actions.Item(1).WorkingDirectory
+                    if not parameters:
+                        parameters = modified_task.Actions.Item(1).Arguments
+                    modified_task.Actions.Remove(1)
+                    Action = modified_task.Actions.Create(TASK_ACTION_TYPES.TASK_ACTION_EXEC.value)
+                    Action.ID = id or "MyAction"
+                    Action.Arguments = parameters
+                    Action.WorkingDirectory = working_directory
+                    Action.Path = application_name
+            if priority:
+                modified_task.Settings.Priority = priority
+            if creator:
+                modified_task.RegistrationInfo.Author = creator
+            if account_information:
+                modified_task.Principal.UserId = account_information
+            if trigger:
+                log.info("Not possible to change the trigger at this time")
+            if flags:
+                if "RunOnlyIfNetworkAvailable" in flags:
+                    modified_task.Settings.RunOnlyIfNetworkAvailable = flags.get("RunOnlyIfNetworkAvailable")
+                if "AllowHardTerminate" in flags:
+                    modified_task.Settings.AllowHardTerminate = flags.get("AllowHardTerminate")
+                if "AllowDemandStart" in flags:
+                    modified_task.Settings.AllowDemandStart = flags.get("AllowDemandStart")
+                if "RestartInterval" in flags:
+                    modified_task.Settings.RestartInterval = flags.get("RestartInterval")
+                if "RestartCount" in flags:
+                    modified_task.Settings.RestartCount = flags.get("RestartCount")
+                if "StartWhenAvailable" in flags:
+                    modified_task.Settings.StartWhenAvailable = flags.get("StartWhenAvailable")
+                if "ExecutionTimeLimit" in flags:
+                    modified_task.Settings.ExecutionTimeLimit = flags.get("ExecutionTimeLimit")
+                if "DeleteExpiredTaskAfter" in flags:
+                    modified_task.Settings.DeleteExpiredTaskAfter = flags.get("DeleteExpiredTaskAfter")
+                if "WakeToRun" in flags:
+                    modified_task.Settings.WakeToRun = flags.get("WakeToRun")
+                if "DisallowStartIfOnBatteries" in flags:
+                    modified_task.Settings.DisallowStartIfOnBatteries = flags.get("DisallowStartIfOnBatteries")
+                if "RunOnlyIfIdle" in flags:
+                    modified_task.Settings.RunOnlyIfIdle = flags.get("RunOnlyIfIdle")
+                if "Hidden" in flags:
+                    modified_task.Settings.Hidden = flags.get("Hidden")
+                if "StopIfGoingOnBatteries" in flags:
+                    modified_task.Settings.StopIfGoingOnBatteries = flags.get("StopIfGoingOnBatteries")
+                if "StopOnIdleEnd" in flags:
+                    modified_task.Settings.IdleSettings.StopOnIdleEnd = flags.get("StopOnIdleEnd")
+                if "RestartOnIdle" in flags:
+                    modified_task.Settings.IdleSettings.RestartOnIdle = flags.get("RestartOnIdle")
+                if "Enabled" in flags:
+                    modified_task.Settings.Enabled = flags.get("Enabled")
+            if new_task_name:
+                folder.RegisterTaskDefinition(new_task_name, modified_task, TASK_CREATION.TASK_UPDATE.value, "", "", 0)
+                folder.DeleteTask(task_name, 0)
+            else:
+                folder.RegisterTaskDefinition(task_name, modified_task, TASK_CREATION.TASK_UPDATE.value, "", "", 0)
+    log.info("Scheduled task %s modified on the victim vm", str(task_name))
+
+
+def create_trigger(
+    type, begin_date=date.today(), start_time=datetime.now().time(), duration=0, interval=0, expiration_time=None, flags=None
+):
+    new_trigger = pythoncom.CoCreateInstance(
+        taskscheduler.CLSID_CTask, None, pythoncom.CLSCTX_INPROC_SERVER, taskscheduler.IID_ITask
+    )
+    _, tr = new_trigger.CreateTrigger()
+    tt = tr.GetTrigger()
+    tt.TriggerType = type
+    if flags:
+        tt.Flags = flags
+    tt.BeginYear = int(begin_date.strftime("%Y"))
+    tt.BeginMonth = int(begin_date.strftime("%m"))
+    tt.BeginDay = int(begin_date.strftime("%d"))
+    tt.StartMinute = int(start_time.strftime("%M"))
+    tt.StartHour = int(start_time.strftime("%H"))
+    if expiration_time:
+        tt.EndYear = int(expiration_time.strftime("%Y"))
+        tt.EndMonth = int(expiration_time.strftime("%m"))
+        tt.EndDay = int(expiration_time.strftime("%d"))
+    if duration != 0 and duration >= interval:
+        tt.MinutesDuration = duration
+    if interval:
+        tt.MinutesInterval = interval
+    return tt
+
+
+def change_execution_dir(dir):
+    log.info("Changing execution directory to %s", dir)
+    log.warning("Changing directory not available in prescript testing")
+
+
+def main(args):
+    analysis_config_path = Path(os.path.join(cwd, "analysis.conf"))
+    if not analysis_config_path.exists():
+        print("Invalid analysis configuration file")
+        sample_path = None
+    else:
+        conf = Config(analysis_config_path)
+        sample_path = getattr(conf, "target", None)
+    if args.zip and sample_path:
+        extract_zip(sample_path, os.environ["TEMP"], "", 0)
+        raw_json = extract_json_data(os.environ["TEMP"], "__configuration.json")
+        json_dst_flds = raw_json.get("path_to_extract", {})
+        target_file = raw_json.get("target_file", "")
+
+        # Move files that are specified in JSON file
+        if json_dst_flds:
+            for f, dst_fld in json_dst_flds.items():
+                oldpath = os.path.join(os.environ["TEMP"], f)
+                dst_fld = os.path.expandvars(dst_fld)
+                create_custom_folders(dst_fld)
+                # If a relative path is provided, take only the basename
+                fname = os.path.split(f)[1]
+                newpath = os.path.join(dst_fld, fname)
+
+                # We cannot just shutil.move src dirs if src name == dst name.
+                if os.path.isdir(oldpath):
+                    log.debug("Resolved Dir: %s for folder '%s'", dst_fld, fname)
+                    shutil.copytree(oldpath, newpath, dirs_exist_ok=True)
+                    shutil.rmtree(oldpath)
+                else:
+                    log.debug("Resolved Dir: %s for file '%s'", dst_fld, fname)
+                    shutil.move(oldpath, newpath)
+        fin_target_path = os.path.join(os.environ["TEMP"], target_file)
+        sample_path = fin_target_path
+    else:
+        log.debug("Invalid analysis target for zip compound")
+    actions = {}
+    if args.actions:
+        # Only valid options for parsing are:
+        # 1: one big command line argument with a dict as string which get json.loads
+        # 2: separated dict with keys delimiter
+        # 3: position order with skip value
+        # 4: Having argparse do the heavy lifting and having a bunch of flags and conditions
+        previous_action = None
+        previous_action_key = None
+        for action_arg in args.actions:
+            if action_arg in LIST_OF_VALID_ACTIONS:
+                arg_position = 0
+                previous_action = action_arg
+                if action_arg not in actions.keys():
+                    actions[action_arg] = {}
+                    previous_action_key = action_arg
+                else:
+                    action_added = False
+                    index = 0
+                    while not action_added:
+                        action_to_key = f"{action_arg}{index}"
+                        index += 1
+                        if action_to_key not in actions.keys():
+                            previous_action_key = action_to_key
+                            actions[action_to_key] = {}
+                            action_added = True
+            else:
+                if action_arg == "None":
+                    arg_position += 1
+                    continue
+                actions[previous_action_key][ACTIONS_PARAMETERS[previous_action][arg_position]] = action_arg
+                arg_position += 1
+    for action, params_dict in actions.items():
+        try:
+            parsed_action = "".join(i for i in action if not i.isdigit())
+            if parsed_action not in LIST_OF_VALID_ACTIONS:
+                continue
+            if parsed_action == LIST_OF_VALID_ACTIONS[0]:
+                run_script(
+                    script_path=params_dict[ACTIONS_PARAMETERS[parsed_action][0]],
+                    args=params_dict[ACTIONS_PARAMETERS[parsed_action][1]],
+                    timeout=int(params_dict[ACTIONS_PARAMETERS[parsed_action][2]]),
+                )
+                log.info("Runned script with %s", str(params_dict))
+                # print(f"Runned script with {params_dict}")
+            elif parsed_action == LIST_OF_VALID_ACTIONS[1]:
+                add_file_to_path(
+                    src_path=params_dict[ACTIONS_PARAMETERS[parsed_action][0]],
+                    dst_path=params_dict[ACTIONS_PARAMETERS[parsed_action][1]],
+                    overwrite=bool(params_dict[ACTIONS_PARAMETERS[parsed_action][2]]),
+                )
+                log.info(
+                    "Adding file from %s to %s", params_dict[ACTIONS_PARAMETERS[parsed_action][0]], params_dict[ACTIONS_PARAMETERS[parsed_action][1]]
+                )
+                # print(
+                #    f"Adding file from {params_dict[ACTIONS_PARAMETERS[parsed_action][0]]} to {params_dict[ACTIONS_PARAMETERS[parsed_action][1]]}"
+                # )
+            elif parsed_action == LIST_OF_VALID_ACTIONS[2]:
+                add_directory(path=params_dict[ACTIONS_PARAMETERS[parsed_action][0]])
+                log.info("Created directory with %s", str(params_dict))
+                # print(f"Created directory with {params_dict}")
+            elif parsed_action == LIST_OF_VALID_ACTIONS[3]:
+                value_type = identify_registry_value_type(params_dict[ACTIONS_PARAMETERS[parsed_action][2]])
+                create_registry(
+                    path=params_dict[ACTIONS_PARAMETERS[parsed_action][0]],
+                    key=params_dict[ACTIONS_PARAMETERS[parsed_action][1]],
+                    value=params_dict[ACTIONS_PARAMETERS[parsed_action][2]],
+                    value_type=value_type,
+                )
+                log.info("Created registry with %s", str(params_dict))
+                # print(f"Created registry with {params_dict}")
+            elif parsed_action == LIST_OF_VALID_ACTIONS[4]:
+                value_type = identify_registry_value_type(params_dict[ACTIONS_PARAMETERS[parsed_action][2]])
+                modify_registry(
+                    path=params_dict[ACTIONS_PARAMETERS[parsed_action][0]],
+                    key=params_dict[ACTIONS_PARAMETERS[parsed_action][1]],
+                    value=params_dict[ACTIONS_PARAMETERS[parsed_action][2]],
+                    value_type=value_type,
+                )
+                log.info("Modified registry with %s", str(params_dict))
+                # print(f"Modified registry with {params_dict}")
+            elif parsed_action == LIST_OF_VALID_ACTIONS[5]:
+                parsed_params_dict = {}
+                for param in ACTIONS_PARAMETERS[parsed_action]:
+                    if param not in params_dict.keys():
+                        continue
+                    if params_dict[param] == "" or params_dict[param] is None:
+                        continue
+                    if param == "priority":
+                        parsed_params_dict[param] = int(params_dict[param])  # priority --> int
+                    elif param == "flags":
+                        format_ready_param = params_dict[param].replace('\\"', '"')
+                        parsed_params_dict[param] = json.loads(format_ready_param)  # flags --> dict
+                    elif param == "trigger_type":
+                        parsed_params_dict[param] = int(params_dict[param])  # trigger_type --> int
+                    elif param == "start_time":
+                        parsed_params_dict[param] = datetime.strptime(params_dict[param], "%H:%M:%S")  # start_time --> time
+                    elif param == "duration":
+                        parsed_params_dict[param] = int(params_dict[param])  # duration --> int
+                    elif param == "interval":
+                        parsed_params_dict[param] = int(params_dict[param])  # interval --> int
+                    elif param == "expiration_time":
+                        parsed_params_dict[param] = datetime.strptime(params_dict[param], "%H:%M:%S")  # expiration_time --> time
+                    elif param == "additional_trigger_params":
+                        format_ready_param = params_dict[param].replace('\\"', '"')
+                        parsed_params_dict[param] = json.loads(format_ready_param)  # additional_trigger_params --> dict
+                    else:
+                        parsed_params_dict[param] = params_dict[param]
+                create_scheduled_task2(**parsed_params_dict)
+                log.info("Created scheduled task with %s", str(params_dict))
+                # print(f"Created scheduled task with {params_dict}")
+            elif parsed_action == LIST_OF_VALID_ACTIONS[6]:
+                create_scheduled_task_from_xml(
+                    task_name=params_dict[ACTIONS_PARAMETERS[parsed_action][0]],
+                    xml_path=params_dict[ACTIONS_PARAMETERS[parsed_action][1]],
+                )
+                log.info("Created scheduled task from xml with %s", str(params_dict))
+                # print(f"Created scheduled task from xml with {params_dict}")
+            elif parsed_action == LIST_OF_VALID_ACTIONS[7]:
+                parsed_params_dict = {}
+                for param in ACTIONS_PARAMETERS[parsed_action]:
+                    if param not in params_dict.keys():
+                        continue
+                    if param == "priority":
+                        parsed_params_dict[param] = int(params_dict[param])  # priority --> int
+                    elif param == "action_id":
+                        parsed_params_dict[param] = int(params_dict[param])  # action_id --> int
+                    elif param == "flags":
+                        parsed_params_dict[param] = json.loads(params_dict[param])  # flags --> dict
+                    else:
+                        parsed_params_dict[param] = params_dict[param]
+                modify_scheduled_task(**parsed_params_dict)
+                log.info("Modified scheduled task with %s", str(params_dict))
+                # print(f"Modified scheduled task with {params_dict}")
+            elif parsed_action == LIST_OF_VALID_ACTIONS[8]:
+                change_execution_dir(path=params_dict[ACTIONS_PARAMETERS[parsed_action][0]])
+                log.info("Changed execution dir to %s", params_dict[ACTIONS_PARAMETERS[parsed_action][0]])
+                # print(f"Changed execution dir to {params_dict[ACTIONS_PARAMETERS[parsed_action][0]]}")
+
+        except Exception as e:
+            log.debug("Invalid action %s with parameters %s --> %s", str(action), str(params_dict), str(e))
+            # print(f"Invalid action {action} with parameters {params_dict} --> {e}")
+
+
+if __name__ == "__main__":
+    parser = argparse.ArgumentParser()
+    # Example of args to pass --zip --actions action_name param1 param2 action_name param param1
+    parser.add_argument("-z", "--zip", help="Zip_compound available", action="store_true", required=False, default=False)
+    parser.add_argument("-a", "--actions", help="Actions to take", action="store", nargs="*", required=False, default=None)
+    args = parser.parse_args()
+    main(args)
diff --git a/analyzer/windows/pytest.ini b/analyzer/windows/pytest.ini
new file mode 100644
index 00000000000..a635c5c0318
--- /dev/null
+++ b/analyzer/windows/pytest.ini
@@ -0,0 +1,2 @@
+[pytest]
+pythonpath = .
diff --git a/analyzer/windows/tests/lib/api/test_process.py b/analyzer/windows/tests/lib/api/test_process.py
new file mode 100644
index 00000000000..ba369b24ed2
--- /dev/null
+++ b/analyzer/windows/tests/lib/api/test_process.py
@@ -0,0 +1,29 @@
+import os
+import threading
+import unittest
+from unittest.mock import MagicMock, patch
+
+from lib.api.process import Process
+
+
+class ProcessTests(unittest.TestCase):
+    @patch("lib.api.process.PSAPI", MagicMock(), create=True)
+    def test_unknown_image_name(self):
+        process = Process()
+        assert f"{process}" == "<Process 0 ???>"
+
+    def test_known_image_name(self):
+        mock_image_name = MagicMock()
+        mock_image_name.return_value = self.id()
+        with patch("lib.api.process.Process.get_image_name", mock_image_name):
+            process = Process()
+            assert f"{process}" == f"<Process 0 {self.id()}>"
+
+    def test_process_self(self):
+        _ = Process(pid=os.getpid(), thread_id=threading.get_ident())
+
+    def test_process_fill_system_info(self):
+        p = Process()
+        p.fill_system_info()
+        # arbitrary sysinfo field assertion here
+        self.assertNotEqual(0, p.system_info.dwPageSize)
diff --git a/analyzer/windows/tests/lib/common/test_abstracts.py b/analyzer/windows/tests/lib/common/test_abstracts.py
new file mode 100644
index 00000000000..2df0f991625
--- /dev/null
+++ b/analyzer/windows/tests/lib/common/test_abstracts.py
@@ -0,0 +1,37 @@
+import importlib
+import unittest
+from unittest.mock import MagicMock, patch
+
+from lib.common import abstracts
+
+
+class TestPackageConfiguration(unittest.TestCase):
+    def test_private_package_configuration(self):
+        # test analysis package
+        package_module = self.__class__.__module__
+        # and its private configuration module
+        module_name = f"data.packages.{package_module}"
+
+        class TestPackage(abstracts.Package):
+            pass
+
+        test_pkg = TestPackage(package_module)
+
+        # private package configuration function with 2 args
+        configure_called = False
+
+        def configure(package, target):
+            self.assertIs(package, test_pkg)
+            self.assertEqual(target, self.id())
+            nonlocal configure_called
+            configure_called = True
+
+        mock_module = MagicMock()
+        mock_module.configure = configure
+
+        with patch.object(importlib, "import_module", return_value=mock_module) as m:
+            # do the private package configuration
+            test_pkg.configure_from_data(self.id())
+            # check it imported the private configuration module
+            m.assert_called_once_with(module_name)
+        self.assertTrue(configure_called)
diff --git a/analyzer/windows/tests/modules/packages/test_ps1.py b/analyzer/windows/tests/modules/packages/test_ps1.py
new file mode 100644
index 00000000000..7623abd001b
--- /dev/null
+++ b/analyzer/windows/tests/modules/packages/test_ps1.py
@@ -0,0 +1,26 @@
+import unittest
+
+from modules.packages.ps1 import PS1
+
+
+class TestPS1(unittest.TestCase):
+    def test_get_paths(self):
+        """By default, the first path should be powershell.exe"""
+        package_name = "modules.packages.ps1"
+        __import__(package_name, globals(), locals(), ["dummy"])
+        ps1_module = PS1()
+        paths = ps1_module.get_paths()
+        assert paths[0][-1] == "powershell.exe"
+        all_paths = set([path[-1] for path in paths])
+        assert "pwsh.exe" not in all_paths
+
+    def test_get_paths_powershell_core(self):
+        """When option pwsh selected, the first path should be pwsh.exe"""
+        options = {"pwsh": True}
+        package_name = "modules.packages.ps1"
+        __import__(package_name, globals(), locals(), ["dummy"])
+        ps1_module = PS1(options=options)
+        paths = ps1_module.get_paths()
+        assert paths[0][-1] == "pwsh.exe"
+        all_paths = set([path[-1] for path in paths])
+        assert "powershell.exe" in all_paths
diff --git a/analyzer/windows/tests/test_analysis_packages.py b/analyzer/windows/tests/test_analysis_packages.py
new file mode 100644
index 00000000000..d1bd1202198
--- /dev/null
+++ b/analyzer/windows/tests/test_analysis_packages.py
@@ -0,0 +1,313 @@
+"""Basic import/instantiate test for analysis packages."""
+
+import importlib
+import inspect
+import unittest
+
+from lib.common.abstracts import Package
+
+
+class TestAnalysisPackages(unittest.TestCase):
+    def class_from_analysis_package(self, module_name):
+        module = importlib.import_module(module_name)
+        members = inspect.getmembers(module)
+        member_classes = [m[1] for m in members if inspect.isclass(m[1])]
+        pkg_classes = [c for c in member_classes if issubclass(c, Package) and c != Package]
+        self.assertEqual(1, len(pkg_classes))
+        cls = pkg_classes[0]
+        self.assertTrue(issubclass(cls, Package))
+        return cls
+
+    def test_has_summary_description(self):
+        """Ensure each Package class in modules.packages has a summary and description."""
+        clazz = Package
+        module = importlib.import_module("modules.packages")
+        subclasses = [
+            cls
+            for _, mod in inspect.getmembers(module)
+            if inspect.ismodule(mod)
+            for name, cls in inspect.getmembers(mod)
+            if inspect.isclass(cls) and issubclass(cls, clazz) and cls != clazz
+        ]
+        self.assertGreater(len(subclasses), 0)
+        for subclass in subclasses:
+            self.assertTrue(hasattr(subclass, "summary"))
+            self.assertTrue(hasattr(subclass, "description"))
+            self.assertGreater(len(subclass.summary), 0)
+            self.assertGreater(len(subclass.description), 0)
+
+    def test_shellcode(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.shellcode")
+        obj = pkg_class()
+        self.assertEqual("offset", obj.option_names[0])
+        expected_summary = "Executes 32-bit Shellcode using loader.exe."
+        self.assertEqual(expected_summary, obj.summary)
+
+    def test_shellcode_x64(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.shellcode_x64")
+        pkg_class()
+
+    def test_access(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.access")
+        pkg_class()
+
+    def test_applet(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.applet")
+        obj = pkg_class()
+        self.assertEqual("class", obj.option_names[0])
+        expected_summary = "Opens a java applet using firefox (or iexplore)."
+        self.assertEqual(expected_summary, obj.summary)
+
+    def test_archive(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.archive")
+        pkg_class()
+
+    def test_autoit(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.autoit")
+        pkg_class()
+
+    def test_chm(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.chm")
+        pkg_class()
+
+    def test_chrome(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.chrome")
+        pkg_class()
+
+    def test_chromium(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.chromium")
+        pkg_class()
+
+    def test_cpl(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.cpl")
+        pkg_class()
+
+    def test_dll(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.dll")
+        pkg_class()
+
+    def test_doc(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.doc")
+        pkg_class()
+
+    def test_doc2016(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.doc2016")
+        pkg_class()
+
+    def test_doc_antivm(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.doc_antivm")
+        pkg_class()
+
+    def test_edge(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.edge")
+        pkg_class()
+
+    def test_eml(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.eml")
+        pkg_class()
+
+    def test_exe(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.exe")
+        obj = pkg_class()
+        self.assertEqual("Runs the supplied executable.", obj.summary)
+
+    def test_firefox(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.firefox")
+        obj = pkg_class()
+        self.assertEqual("Opens the URL in firefox.", obj.summary)
+
+    def test_generic(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.generic")
+        obj = pkg_class()
+        self.assertEqual("Executes the sample file with cmd.exe.", obj.summary)
+
+    def test_hta(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.hta")
+        expected_summary = "Executes the sample with mshta.exe."
+        obj = pkg_class()
+        self.assertEqual(expected_summary, obj.summary)
+
+    def test_hwp(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.hwp")
+        pkg_class()
+
+    def test_ichitaro(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.ichitaro")
+        pkg_class()
+
+    def test_ie(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.ie")
+        pkg_class()
+
+    def test_inf(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.inf")
+        pkg_class()
+
+    def test_inp(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.inp")
+        pkg_class()
+
+    def test_jar(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.jar")
+        expected_summary = "Executes a java class using java.exe."
+        obj = pkg_class()
+        self.assertEqual(expected_summary, obj.summary)
+        self.assertEqual("class", obj.option_names[0])
+
+    def test_js(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.js")
+        pkg_class()
+
+    def test_js_antivm(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.js_antivm")
+        pkg_class()
+
+    def test_lnk(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.lnk")
+        obj = pkg_class()
+        self.assertEqual("Executes a sample file with powershell.", obj.summary)
+
+    def test_mht(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.mht")
+        pkg_class()
+
+    def test_msbuild(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.msbuild")
+        pkg_class()
+
+    def test_msg(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.msg")
+        pkg_class()
+
+    def test_msi(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.msi")
+        obj = pkg_class()
+        expected_summary = "Executes a sample with msiexec.exe."
+        self.assertEqual(expected_summary, obj.summary)
+
+    def test_msix(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.msix")
+        obj = pkg_class()
+        expected_summary = "Executes a sample .msix file with powershell."
+        self.assertEqual(expected_summary, obj.summary)
+
+    def test_nsis(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.nsis")
+        pkg_class()
+
+    def test_ollydbg(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.ollydbg")
+        pkg_class()
+
+    def test_one(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.one")
+        obj = pkg_class()
+        expected_summary = "Opens a sample file with ONENOTE.EXE."
+        self.assertEqual(expected_summary, obj.summary)
+
+    def test_pdf(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.pdf")
+        obj = pkg_class()
+        expected_summary = "Opens .pdf file with Adobe Reader / Acrobat."
+        self.assertEqual(expected_summary, obj.summary)
+
+    def test_ppt(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.ppt")
+        obj = pkg_class()
+        expected_summary = "Opens sample file with Powerpoint."
+        self.assertEqual(expected_summary, obj.summary)
+
+    def test_ppt2016(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.ppt2016")
+        pkg_class()
+
+    def test_ps1(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.ps1")
+        expected_summary = "Executes a sample file with powershell."
+        obj = pkg_class()
+        self.assertEqual(expected_summary, obj.summary)
+        self.assertEqual("pwsh", obj.option_names[0])
+
+    def test_pub(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.pub")
+        expected_summary = "Opens a .pub file with MS Publisher."
+        obj = pkg_class()
+        self.assertEqual(expected_summary, obj.summary)
+
+    def test_pub2016(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.pub2016")
+        expected_summary = "Opens a .pub file with MS Publisher."
+        obj = pkg_class()
+        self.assertEqual(expected_summary, obj.summary)
+
+    def test_python(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.python")
+        expected_summary = "Executes sample file with python."
+        obj = pkg_class()
+        self.assertEqual(expected_summary, obj.summary)
+
+    def test_rar(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.rar")
+        expected_summary = "Unpacks a .rar archive with the given password and execute the contents appropriately."
+        obj = pkg_class()
+        self.assertEqual(expected_summary, obj.summary)
+
+    def test_reg(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.reg")
+        pkg_class()
+
+    def test_regsvr(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.regsvr")
+        pkg_class()
+
+    def test_sct(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.sct")
+        pkg_class()
+
+    def test_service(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.service")
+        pkg_class()
+
+    def test_service_dll(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.service_dll")
+        pkg_class()
+
+    def test_swf(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.swf")
+        pkg_class()
+
+    def test_vbejse(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.vbejse")
+        pkg_class()
+
+    def test_vbs(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.vbs")
+        pkg_class()
+
+    def test_wsf(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.wsf")
+        pkg_class()
+
+    def test_xls(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.xls")
+        pkg_class()
+
+    def test_xls2016(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.xls2016")
+        pkg_class()
+
+    def test_xps(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.xps")
+        pkg_class()
+
+    def test_xslt(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.xslt")
+        pkg_class()
+
+    def test_zip(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.zip")
+        pkg_class()
+
+    def test_zip_compound(self):
+        pkg_class = self.class_from_analysis_package("modules.packages.zip_compound")
+        pkg_class()
diff --git a/analyzer/windows/tests/test_analyzer.py b/analyzer/windows/tests/test_analyzer.py
new file mode 100644
index 00000000000..783e21dd505
--- /dev/null
+++ b/analyzer/windows/tests/test_analyzer.py
@@ -0,0 +1,988 @@
+"""Tests for Analyzer and CommandPipeHandler.
+
+Major components not yet tested:
+- Analyzer.run()
+- Analyzer.complete()
+"""
+
+import os
+import random
+import tempfile
+import unittest
+from unittest.mock import MagicMock, patch
+
+import analyzer
+from analyzer import Analyzer, CommandPipeHandler
+
+
+class TestModule(unittest.TestCase):
+    def test_pid_from_service_name(self):
+        # just check it doesn't crash
+        _ = analyzer.pid_from_service_name("W32Time")
+
+    def test_get_explorer_pid(self):
+        # just check it doesn't crash
+        _ = analyzer.get_explorer_pid()
+
+    def test_pids_from_image_names(self):
+        pids = analyzer.pids_from_image_names("python.exe")
+        # should be at least one Python process running
+        self.assertGreaterEqual(len(pids), 1)
+        self.assertIn(os.getpid(), pids)
+
+    def test_protected_path_file(self):
+        # test protecting bytes-based paths
+        with tempfile.NamedTemporaryFile() as ntf:
+            with patch("analyzer.PROTECTED_PATH_LIST", []):
+                analyzer.add_protected_path(ntf.name.encode())
+                self.assertTrue(analyzer.in_protected_path(ntf.name))
+                self.assertTrue(analyzer.in_protected_path(ntf.name.encode()))
+
+        # test protecting str-based paths
+        with tempfile.NamedTemporaryFile() as ntf:
+            with patch("analyzer.PROTECTED_PATH_LIST", []):
+                analyzer.add_protected_path(ntf.name)
+                self.assertTrue(analyzer.in_protected_path(ntf.name))
+                self.assertTrue(analyzer.in_protected_path(ntf.name.encode()))
+
+    def test_in_protected_path_dir(self):
+        # test protecting bytes-based paths
+        with tempfile.TemporaryDirectory() as tmpdir:
+            with patch("analyzer.PROTECTED_PATH_LIST", []):
+                analyzer.add_protected_path(tmpdir.encode())
+                self.assertTrue(analyzer.in_protected_path(tmpdir))
+                self.assertTrue(analyzer.in_protected_path(tmpdir.encode()))
+                file_in_tmpdir = os.path.join(tmpdir, "random-filename")
+                self.assertTrue(analyzer.in_protected_path(file_in_tmpdir))
+                self.assertTrue(analyzer.in_protected_path(file_in_tmpdir.encode()))
+
+        # test protecting str-based paths
+        with tempfile.TemporaryDirectory() as tmpdir:
+            with patch("analyzer.PROTECTED_PATH_LIST", []):
+                analyzer.add_protected_path(tmpdir)
+                self.assertTrue(analyzer.in_protected_path(tmpdir))
+                self.assertTrue(analyzer.in_protected_path(tmpdir.encode()))
+                file_in_tmpdir = os.path.join(tmpdir, "other-random-filename")
+                self.assertTrue(analyzer.in_protected_path(file_in_tmpdir))
+                self.assertTrue(analyzer.in_protected_path(file_in_tmpdir.encode()))
+
+
+class TestAnalyzerInternals(unittest.TestCase):
+    def test___init__(self):
+        _ = analyzer.Analyzer()
+
+    @patch("analyzer.PipeServer")
+    @patch("analyzer.Config")
+    @patch("analyzer.init_logging")
+    @patch("analyzer.set_clock")
+    def test_prepare(self, set_lock, init_logging, config, pipeserver):
+        test = analyzer.Analyzer()
+        test.prepare()
+
+
+class TestAnalyzerChoosePackage(unittest.TestCase):
+    def test_choose_package_shellcode(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "shellcode"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.shellcode", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "Shellcode")
+
+    def test_choose_package_Shellcode_x64(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "shellcode_x64"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.shellcode_x64", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "Shellcode_x64")
+
+    def test_choose_package_access(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "access"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.access", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "ACCESS")
+
+    def test_choose_package_applet(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "applet"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.applet", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "Applet")
+
+    def test_choose_package_archive(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "archive"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.archive", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "Archive")
+
+    def test_choose_package_autoit(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "autoit"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.autoit", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "AutoIT")
+
+    def test_choose_package_chm(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "chm"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.chm", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "CHM")
+
+    def test_choose_package_chrome(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "chrome"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.chrome", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "Chrome")
+
+    def test_choose_package_chromium(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "chromium"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.chromium", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "Chromium")
+
+    def test_choose_package_cpl(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "cpl"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.cpl", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "CPL")
+
+    def test_choose_package_dll(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "dll"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.dll", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "Dll")
+
+    def test_choose_package_doc(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "doc"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.doc", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "DOC")
+
+    def test_choose_package_doc2016(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "doc2016"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.doc2016", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "DOC2016")
+
+    def test_choose_package_doc_antivm(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "doc_antivm"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.doc_antivm", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "DOC_ANTIVM")
+
+    def test_choose_package_edge(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "edge"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.edge", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "Edge")
+
+    def test_choose_package_eml(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "eml"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.eml", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "EML")
+
+    def test_choose_package_exe(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "exe"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.exe", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "Exe")
+
+    def test_choose_package_firefox(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "firefox"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.firefox", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "Firefox")
+
+    def test_choose_package_generic(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "generic"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.generic", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "Generic")
+
+    def test_choose_package_hta(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "hta"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.hta", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "HTA")
+
+    def test_choose_package_hwp(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "hwp"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.hwp", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "HWP")
+
+    def test_choose_package_ichitaro(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "ichitaro"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.ichitaro", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "ichitaro")
+
+    def test_choose_package_ie(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "ie"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.ie", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "IE")
+
+    def test_choose_package_inf(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "inf"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.inf", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "INF")
+
+    def test_choose_package_inp(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "inp"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.inp", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "INP")
+
+    def test_choose_package_jar(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "jar"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.jar", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "Jar")
+
+    def test_choose_package_js(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "js"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.js", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "JS")
+
+    def test_choose_package_js_antivm(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "js_antivm"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.js_antivm", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "JS_ANTIVM")
+
+    def test_choose_package_lnk(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "lnk"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.lnk", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "LNK")
+
+    def test_choose_package_mht(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "mht"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.mht", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "MHT")
+
+    def test_choose_package_msbuild(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "msbuild"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.msbuild", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "MSBUILD")
+
+    def test_choose_package_msg(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "msg"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.msg", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "MSG")
+
+    def test_choose_package_msi(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "msi"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.msi", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "Msi")
+
+    def test_choose_package_msix(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "msix"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.msix", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "Msix")
+
+    def test_choose_package_nsis(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "nsis"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.nsis", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "NSIS")
+
+    def test_choose_package_ollydbg(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "ollydbg"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.ollydbg", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "OllyDbg")
+
+    def test_choose_package_one(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "one"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.one", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "ONE")
+
+    def test_choose_package_pdf(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "pdf"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.pdf", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "PDF")
+
+    def test_choose_package_ppt(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "ppt"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.ppt", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "PPT")
+
+    def test_choose_package_ppt2016(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "ppt2016"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.ppt2016", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "PPT2007")
+
+    def test_choose_package_ps1(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "ps1"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.ps1", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "PS1")
+
+    def test_choose_package_pub(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "pub"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.pub", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "PUB")
+
+    def test_choose_package_pub2016(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "pub2016"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.pub2016", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "PUB2007")
+
+    def test_choose_package_python(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "python"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.python", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "Python")
+
+    def test_choose_package_rar(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "rar"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.rar", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "Rar")
+
+    def test_choose_package_reg(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "reg"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.reg", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "Reg")
+
+    def test_choose_package_regsvr(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "regsvr"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.regsvr", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "Regsvr")
+
+    def test_choose_package_sct(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "sct"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.sct", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "SCT")
+
+    def test_choose_package_service(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "service"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.service", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "Service")
+
+    def test_choose_package_service_dll(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "service_dll"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.service_dll", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "ServiceDll")
+
+    def test_choose_package_swf(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "swf"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.swf", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "SWF")
+
+    def test_choose_package_vbejse(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "vbejse"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.vbejse", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "VBSJSE")
+
+    def test_choose_package_vbs(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "vbs"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.vbs", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "VBS")
+
+    def test_choose_package_wsf(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "wsf"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.wsf", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "WSF")
+
+    def test_choose_package_xls(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "xls"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.xls", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "XLS")
+
+    def test_choose_package_xls2016(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "xls2016"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.xls2016", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "XLS2207")
+
+    def test_choose_package_xps(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "xps"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.xps", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "Xps")
+
+    def test_choose_package_xslt(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "xslt"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.xslt", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "XSLT")
+
+    def test_choose_package_zip(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "zip"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.zip", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "Zip")
+
+    def test_choose_package_zip_compound(self):
+        test = analyzer.Analyzer()
+        test.config = MagicMock()
+        test.options = MagicMock()
+        test.config.package = "zip_compound"
+        pkg_name, pkg_class = test.choose_package()
+        self.assertEqual("modules.packages.zip_compound", pkg_name)
+        self.assertEqual(pkg_class.__class__.__name__, "ZipCompound")
+
+
+class TestAnalyzerMonitoring(unittest.TestCase):
+    def setUp(self):
+        patch_sleep = patch("lib.common.defines.KERNEL32.Sleep")
+        _ = patch_sleep.start()
+        self.addCleanup(patch_sleep.stop)
+        patch_call = patch("subprocess.call")
+        self.call = patch_call.start()
+        self.addCleanup(patch_call.stop)
+        self.analyzer = Analyzer()
+        self.pipe_handler = CommandPipeHandler(self.analyzer)
+        # Since the CommandPipeHandler.ignore_list is a class variable,
+        # we reset it between tests, so we get a fresh start.
+        self.pipe_handler.ignore_list = dict(pid=[])
+
+    def test_can_instantiate(self):
+        self.assertIsInstance(self.analyzer, Analyzer)
+        self.assertIsInstance(self.pipe_handler, CommandPipeHandler)
+
+    def test_handle_loaded(self):
+        random_pid = random.randint(1, 99999999)
+        ana = self.analyzer
+        with patch("analyzer.INJECT_LIST", [random_pid]):
+            self.assertEqual(1, len(analyzer.INJECT_LIST))
+            self.pipe_handler._handle_loaded(data=str(random_pid))
+            self.assertEqual(0, len(analyzer.INJECT_LIST))
+        self.assertIn(random_pid, ana.process_list.pids)
+
+    def test_handle_kterminate(self):
+        ana = self.analyzer
+        random_pid = random.randint(1, 99999999)
+        ana.process_list.pids.append(random_pid)
+        self.assertEqual(1, len(ana.process_list.pids))
+        self.pipe_handler._handle_kterminate(data=str(random_pid))
+        self.assertEqual(0, len(ana.process_list.pids))
+
+    @patch("analyzer.Process")
+    def test_handle_kprocess(self, mock_process):
+        ana = self.analyzer
+        random_pid = random.randint(1, 99999999)
+        self.assertEqual(0, len(ana.process_list.pids))
+        self.pipe_handler._handle_kprocess(data=str(random_pid))
+        self.assertEqual(1, len(ana.process_list.pids))
+        self.assertIn(random_pid, ana.process_list.pids)
+        mock_process.assert_called_once()
+
+    def test_handle_ksubvert(self):
+        ana = self.analyzer
+        random_pid1 = random.randint(1, 99999999)
+        random_pid2 = random.randint(1, 99999999)
+        random_pid3 = random.randint(1, 99999999)
+        ana.process_list.pids = [random_pid1, random_pid2, random_pid3]
+        self.pipe_handler._handle_ksubvert(data=None)
+        self.assertEqual(0, len(ana.process_list.pids))
+
+    @patch("analyzer.Process")
+    @patch("analyzer.get_explorer_pid")
+    def test_handle_shell(self, mock_get_explorer_pid, mock_process):
+        ana = self.analyzer
+        random_pid = random.randint(1, 99999999)
+        mock_get_explorer_pid.return_value = random_pid
+        self.assertIsNone(ana.LASTINJECT_TIME)
+        self.assertEqual(0, len(ana.CRITICAL_PROCESS_LIST))
+        self.pipe_handler._handle_shell(data=None)
+        self.assertEqual(1, len(ana.CRITICAL_PROCESS_LIST))
+        self.assertIn(random_pid, ana.CRITICAL_PROCESS_LIST)
+        self.assertIsNotNone(ana.LASTINJECT_TIME)
+        mock_process.assert_called_once()
+
+    @patch("analyzer.pid_from_service_name")
+    @patch("analyzer.Process")
+    def test_handle_interop(self, mock_process, mock_pid_from_service_name):
+        mock_process.return_value = MagicMock()
+        random_pid = random.randint(1, 99999999)
+        mock_pid_from_service_name.return_value = random_pid
+        ana = self.analyzer
+        self.assertEqual(0, len(ana.CRITICAL_PROCESS_LIST))
+        self.assertFalse(ana.MONITORED_DCOM)
+        self.assertIsNone(ana.LASTINJECT_TIME)
+        self.pipe_handler._handle_interop(None)
+        self.assertEqual(1, len(ana.CRITICAL_PROCESS_LIST))
+        self.assertTrue(ana.MONITORED_DCOM)
+        self.assertIsNotNone(ana.LASTINJECT_TIME)
+        self.assertIn(random_pid, ana.CRITICAL_PROCESS_LIST)
+        mock_pid_from_service_name.assert_called_once()
+        self.call.assert_not_called()
+
+    @patch("analyzer.Process")
+    def test_handle_interop_already(self, mock_process):
+        """If dcom process already monitored, do nothing."""
+        ana = self.analyzer
+        ana.MONITORED_DCOM = True
+        self.assertEqual(0, len(ana.CRITICAL_PROCESS_LIST))
+        self.pipe_handler._handle_interop(None)
+        # No change to process list or last inject time
+        self.assertEqual(0, len(ana.CRITICAL_PROCESS_LIST))
+        self.assertIsNone(ana.LASTINJECT_TIME)
+        mock_process.assert_not_called()
+        self.call.assert_not_called()
+
+    @patch("analyzer.pid_from_service_name")
+    @patch("analyzer.Process")
+    def test_handle_interop_timed_out(self, mock_process, mock_pid_from_service_name):
+        ana = self.analyzer
+        self.assertEqual(0, len(ana.CRITICAL_PROCESS_LIST))
+        self.assertFalse(ana.MONITORED_DCOM)
+        self.assertIsNone(ana.LASTINJECT_TIME)
+        with patch("analyzer.ANALYSIS_TIMED_OUT", True):
+            self.pipe_handler._handle_interop(None)
+        # No change to process list, DCOM, or last inject time
+        self.assertEqual(0, len(ana.CRITICAL_PROCESS_LIST))
+        self.assertFalse(ana.MONITORED_DCOM)
+        self.assertIsNone(ana.LASTINJECT_TIME)
+        mock_pid_from_service_name.assert_not_called()
+        mock_process.assert_not_called()
+        self.call.assert_not_called()
+
+    @patch("analyzer.pid_from_service_name")
+    def test_handle_wmi(self, mock_pid_from_service_name):
+        random_pid1 = random.randint(1, 99999999)
+        random_pid2 = random.randint(1, 99999999)
+        mock_pid_from_service_name.side_effect = [random_pid1, random_pid2]
+        ana = self.analyzer
+        self.assertEqual(0, len(ana.CRITICAL_PROCESS_LIST))
+        self.assertFalse(ana.MONITORED_WMI)
+        self.assertFalse(ana.MONITORED_DCOM)
+        self.assertIsNone(ana.LASTINJECT_TIME)
+        self.pipe_handler._handle_wmi(None)
+        self.assertEqual(2, len(ana.CRITICAL_PROCESS_LIST))
+        self.assertTrue(ana.MONITORED_WMI)
+        self.assertTrue(ana.MONITORED_DCOM)
+        self.assertIsNotNone(ana.LASTINJECT_TIME)
+        self.assertIn(random_pid1, ana.CRITICAL_PROCESS_LIST)
+        self.assertIn(random_pid2, ana.CRITICAL_PROCESS_LIST)
+
+    @patch("analyzer.pid_from_service_name")
+    def test_handle_wmi_already(self, mock_pid_from_service_name):
+        ana = self.analyzer
+        ana.MONITORED_WMI = True
+        self.assertEqual(0, len(ana.CRITICAL_PROCESS_LIST))
+        self.assertFalse(ana.MONITORED_DCOM)
+        self.assertIsNone(ana.LASTINJECT_TIME)
+        self.pipe_handler._handle_wmi(None)
+        # Should be no change to DCOM or last inject time
+        self.assertEqual(0, len(ana.CRITICAL_PROCESS_LIST))
+        self.assertFalse(ana.MONITORED_DCOM)
+        self.assertIsNone(ana.LASTINJECT_TIME)
+        mock_pid_from_service_name.assert_not_called()
+        self.call.assert_not_called()
+
+    def test_handle_wmi_timed_out(self):
+        ana = self.analyzer
+        self.assertFalse(ana.MONITORED_WMI)
+        self.assertFalse(ana.MONITORED_DCOM)
+        self.assertIsNone(ana.LASTINJECT_TIME)
+        with patch("analyzer.ANALYSIS_TIMED_OUT", True):
+            self.pipe_handler._handle_wmi(data=None)
+        # Should be no change to DCOM, WMI, or last inject time
+        self.assertFalse(ana.MONITORED_WMI)
+        self.assertFalse(ana.MONITORED_DCOM)
+        self.assertIsNone(ana.LASTINJECT_TIME)
+        self.call.assert_not_called()
+
+    @patch("analyzer.Process")
+    @patch("analyzer.pid_from_service_name")
+    def test_handle_tasksched(self, mock_pid_from_service_name, mock_process):
+        random_pid = random.randint(1, 99999999)
+        mock_pid_from_service_name.return_value = random_pid
+        ana = self.analyzer
+        self.assertEqual(0, len(ana.CRITICAL_PROCESS_LIST))
+        self.assertFalse(ana.MONITORED_TASKSCHED)
+        self.assertIsNone(ana.LASTINJECT_TIME)
+        self.pipe_handler._handle_tasksched(data=None)
+        self.assertEqual(1, len(ana.CRITICAL_PROCESS_LIST))
+        self.assertIn(random_pid, ana.CRITICAL_PROCESS_LIST)
+        self.assertTrue(ana.MONITORED_TASKSCHED)
+        self.assertIsNotNone(ana.LASTINJECT_TIME)
+        self.call.assert_called()
+        mock_process.assert_called_once()
+
+    def test_handle_tasksched_timed_out(self):
+        ana = self.analyzer
+        self.assertFalse(ana.MONITORED_TASKSCHED)
+        self.assertIsNone(ana.LASTINJECT_TIME)
+        with patch("analyzer.ANALYSIS_TIMED_OUT", True):
+            self.pipe_handler._handle_tasksched(data=None)
+        # Should be no change to TASKSCHED or last inject time
+        self.assertFalse(ana.MONITORED_TASKSCHED)
+        self.assertIsNone(ana.LASTINJECT_TIME)
+        self.call.assert_not_called()
+
+    @patch("analyzer.pid_from_service_name")
+    def test_handle_tasksched_already(self, mock_pid_from_service_name):
+        ana = self.analyzer
+        ana.MONITORED_TASKSCHED = True
+        self.assertIsNone(ana.LASTINJECT_TIME)
+        self.pipe_handler._handle_tasksched(data=None)
+        # Should be no change to last inject time
+        self.assertIsNone(ana.LASTINJECT_TIME)
+        self.call.assert_not_called()
+        mock_pid_from_service_name.assert_not_called()
+
+    @patch("analyzer.pid_from_service_name")
+    def test_handle_bits(self, mock_pid_from_service_name):
+        random_pid1 = random.randint(1, 99999999)
+        random_pid2 = random.randint(1, 99999999)
+        mock_pid_from_service_name.side_effect = [random_pid1, random_pid2]
+        ana = self.analyzer
+        self.assertEqual(0, len(ana.CRITICAL_PROCESS_LIST))
+        self.assertFalse(ana.MONITORED_BITS)
+        self.assertFalse(ana.MONITORED_DCOM)
+        self.assertIsNone(ana.LASTINJECT_TIME)
+        self.pipe_handler._handle_bits(data=None)
+        self.assertEqual(2, len(ana.CRITICAL_PROCESS_LIST))
+        self.assertTrue(ana.MONITORED_BITS)
+        self.assertTrue(ana.MONITORED_DCOM)
+        self.assertIsNotNone(ana.LASTINJECT_TIME)
+
+    def test_handle_bits_already(self):
+        ana = self.analyzer
+        self.assertFalse(ana.MONITORED_DCOM)
+        self.assertIsNone(ana.LASTINJECT_TIME)
+        ana.MONITORED_BITS = True
+        self.pipe_handler._handle_bits(data=None)
+        # Should be no change to DCOM or last inject time
+        self.assertFalse(ana.MONITORED_DCOM)
+        self.assertIsNone(ana.LASTINJECT_TIME)
+        self.call.assert_not_called()
+
+    def test_handle_bits_timed_out(self):
+        ana = self.analyzer
+        self.assertFalse(ana.MONITORED_BITS)
+        self.assertFalse(ana.MONITORED_DCOM)
+        self.assertIsNone(ana.LASTINJECT_TIME)
+        with patch("analyzer.ANALYSIS_TIMED_OUT", True):
+            self.pipe_handler._handle_bits(data=None)
+        # Should be no change to DCOM, BITS, or last inject time
+        self.assertFalse(ana.MONITORED_BITS)
+        self.assertFalse(ana.MONITORED_DCOM)
+        self.assertIsNone(ana.LASTINJECT_TIME)
+        self.call.assert_not_called()
+
+    @patch("analyzer.Process")
+    def test_handle_service(self, mock_process):
+        ana = self.analyzer
+        # Relies on SERVICES_PID being set.
+        ana.SERVICES_PID = 12345
+        self.assertEqual(0, len(ana.CRITICAL_PROCESS_LIST))
+        self.assertFalse(ana.MONITORED_SERVICES)
+        self.assertIsNone(ana.LASTINJECT_TIME)
+        self.pipe_handler._handle_service(servname=b"random-service-name")
+        self.assertEqual(1, len(ana.CRITICAL_PROCESS_LIST))
+        self.assertTrue(ana.MONITORED_SERVICES)
+        self.assertIsNotNone(ana.LASTINJECT_TIME)
+        mock_process.assert_called_once()
+        self.call.assert_called_once()
+
+    @patch("analyzer.Process")
+    def test_handle_service_already(self, mock_process):
+        ana = self.analyzer
+        self.assertIsNone(ana.LASTINJECT_TIME)
+        ana.MONITORED_SERVICES = True
+        self.pipe_handler._handle_service(servname=b"any-name-can-go-here")
+        # Should be no change to process list or last inject time
+        self.assertEqual(0, len(ana.CRITICAL_PROCESS_LIST))
+        self.assertIsNone(ana.LASTINJECT_TIME)
+        mock_process.assert_not_called()
+        # It still wil call "sc config"
+        self.call.assert_called_once()
+
+    @patch("analyzer.Process")
+    def test_handle_service_timed_out(self, mock_process):
+        ana = self.analyzer
+        self.assertFalse(ana.MONITORED_SERVICES)
+        self.assertIsNone(ana.LASTINJECT_TIME)
+        with patch("analyzer.ANALYSIS_TIMED_OUT", True):
+            self.pipe_handler._handle_service(servname="random-service-name")
+        # Should be no change to MONITORED_SERVICES or last inject time
+        self.assertFalse(ana.MONITORED_SERVICES)
+        self.assertIsNone(ana.LASTINJECT_TIME)
+        mock_process.assert_not_called()
+        self.call.assert_not_called()
+
+    @patch("analyzer.Process")
+    def test_inject_process(self, mock_process):
+        random_pid = random.randint(1, 99999999)
+        ana = self.analyzer
+        self.assertEqual(0, len(ana.process_list.pids))
+        self.assertEqual(0, len(self.pipe_handler.ignore_list["pid"]))
+        self.pipe_handler._inject_process(process_id=random_pid, thread_id=None, mode=None)
+        self.assertEqual(1, len(ana.process_list.pids))
+        self.assertIn(random_pid, ana.process_list.pids)
+        self.assertIsNotNone(ana.LASTINJECT_TIME)
+        mock_process.assert_called_once()
+        self.call.assert_not_called()
+
+    @patch("analyzer.Process")
+    def test_inject_process_self(self, mock_process):
+        """If _inject_process is called with the pid of the analyzer, do nothing."""
+        random_pid = random.randint(1, 99999999)
+        ana = self.analyzer
+        ana.pid = random_pid
+        self.assertEqual(0, len(self.pipe_handler.ignore_list["pid"]))
+        self.pipe_handler._inject_process(process_id=random_pid, thread_id=None, mode=None)
+        self.assertEqual(1, len(self.pipe_handler.ignore_list["pid"]))
+        self.assertIn(random_pid, self.pipe_handler.ignore_list["pid"])
+        # Should be no change to last inject time
+        self.assertIsNone(ana.LASTINJECT_TIME)
+        mock_process.assert_not_called()
+        self.call.assert_not_called()
+
+    @patch("analyzer.Process")
+    def test_inject_process_already(self, mock_process):
+        """If _inject_process is called with a pid we are already monitoring, do nothing."""
+        random_pid = random.randint(1, 99999999)
+        ana = self.analyzer
+        ana.process_list.pids.append(random_pid)
+        self.assertEqual(0, len(self.pipe_handler.ignore_list["pid"]))
+        self.pipe_handler._inject_process(process_id=random_pid, thread_id=None, mode=None)
+        self.assertEqual(1, len(self.pipe_handler.ignore_list["pid"]))
+        self.assertIn(random_pid, self.pipe_handler.ignore_list["pid"])
+        # Should be no change to last inject time
+        self.assertIsNone(ana.LASTINJECT_TIME)
+        mock_process.assert_not_called()
+        self.call.assert_not_called()
+
+    @patch("analyzer.Process")
+    def test_inject_process_already_notrack(self, mock_process):
+        """If _inject_process is called with a pid on the notrack list, move it to the track list.
+
+        Do nothing else.
+        """
+        random_pid = random.randint(1, 99999999)
+        ana = self.analyzer
+        ana.process_list.pids_notrack.append(random_pid)
+        self.assertEqual(0, len(self.pipe_handler.ignore_list["pid"]))
+        self.assertEqual(0, len(ana.process_list.pids))
+        self.pipe_handler._inject_process(process_id=random_pid, thread_id=None, mode=None)
+        self.assertEqual(1, len(self.pipe_handler.ignore_list["pid"]))
+        self.assertIn(random_pid, self.pipe_handler.ignore_list["pid"])
+        self.assertIn(random_pid, ana.process_list.pids)
+        self.assertEqual(0, len(ana.process_list.pids_notrack))
+        self.assertEqual(1, len(ana.process_list.pids))
+        # Should be no change to last inject time
+        self.assertIsNone(ana.LASTINJECT_TIME)
+        mock_process.assert_not_called()
+        self.call.assert_not_called()
+
+    @patch("analyzer.Process")
+    def test_handle_process(self, mock_process):
+        ana = self.analyzer
+        ana.config = MagicMock()
+        self.assertEqual(0, ana.NUM_INJECTED)
+        # TODO add a couple of mocks
+        random_pid = random.randint(1, 99999999)
+        random_tid = random.randint(1, 9999999)
+        data = bytes(f"{random_pid},{random_tid}".encode())
+        # This produces something like b"910271,1819029"
+        with patch("analyzer.INJECT_LIST", []):
+            self.pipe_handler._handle_process(data=data)
+            self.assertEqual(1, len(analyzer.INJECT_LIST))
+            self.assertIn(random_pid, analyzer.INJECT_LIST)
+        self.assertIsNotNone(ana.LASTINJECT_TIME)
+        mock_process.assert_called_once()
+        self.assertEqual(1, ana.NUM_INJECTED)
diff --git a/analyzer/windows/tests/test_analyzer_files.py b/analyzer/windows/tests/test_analyzer_files.py
new file mode 100644
index 00000000000..297b4f4d3c8
--- /dev/null
+++ b/analyzer/windows/tests/test_analyzer_files.py
@@ -0,0 +1,27 @@
+"""Tests for analyzer.Files class and for protected_path() functions."""
+
+import unittest
+
+from analyzer import Files
+
+
+class TestFiles(unittest.TestCase):
+    def test_can_instantiate(self):
+        files = Files()
+        self.assertIsInstance(files, Files)
+        self.assertFalse(files.files)
+        self.assertFalse(files.files_orig)
+        self.assertFalse(files.dumped)
+
+    def test_is_protected_filename(self):
+        files = Files()
+        not_protected = "not_protected"
+        self.assertFalse(files.is_protected_filename(not_protected))
+        should_be_protected = "PYTHON.EXE"
+        self.assertTrue(files.is_protected_filename(should_be_protected))
+
+    def test_is_protected_filename_class_method(self):
+        not_protected = "not_protected"
+        self.assertFalse(Files.is_protected_filename(not_protected))
+        should_be_protected = "PYTHON.EXE"
+        self.assertTrue(Files.is_protected_filename(should_be_protected))
diff --git a/analyzer/windows/tests/test_analyzer_process_list.py b/analyzer/windows/tests/test_analyzer_process_list.py
new file mode 100644
index 00000000000..df96c8c63ac
--- /dev/null
+++ b/analyzer/windows/tests/test_analyzer_process_list.py
@@ -0,0 +1,67 @@
+"""Tests for analyzer.ProcessList class."""
+
+import unittest
+
+from analyzer import ProcessList
+
+
+class TestProcessList(unittest.TestCase):
+    def test_can_instantiate(self):
+        process_list = ProcessList()
+        self.assertIsInstance(process_list, ProcessList)
+
+    def test_add_pid(self):
+        """Calling add_pid() on ProcessList should add the PID to the list."""
+        process_list = ProcessList()
+        self.assertEqual(0, len(process_list.pids))
+        self.assertEqual(0, len(process_list.pids_notrack))
+        pid1 = 12345
+        process_list.add_pid(pid1)
+        self.assertIn(pid1, process_list.pids)
+        pid2 = 334455
+        process_list.add_pid(pid2, track=False)
+        self.assertIn(pid2, process_list.pids_notrack)
+        self.assertNotIn(pid2, process_list.pids)
+        # Try adding the pid, it shouldn't get added
+        process_list.add_pid(pid2)
+        self.assertNotIn(pid2, process_list.pids)
+        self.assertEqual(1, len(process_list.pids))
+        self.assertEqual(1, len(process_list.pids_notrack))
+
+    def test_not_a_number(self):
+        pid1 = "not a number"
+        process_list = ProcessList()
+        with self.assertRaises(ValueError):
+            process_list.add_pid(pid1)
+
+    def test_add_pids(self):
+        """Calling add_pids() on ProcessList should add the pids to the list."""
+        pids_to_add = [1, 2, 3, 4, 5]
+        process_list = ProcessList()
+        process_list.add_pids(pids_to_add)
+        self.assertEqual(5, len(process_list.pids))
+        self.assertEqual(0, len(process_list.pids_notrack))
+
+    def test_has_pid(self):
+        pid1 = 808
+        pid2 = 31415
+        process_list = ProcessList()
+        process_list.pids = [pid1]
+        process_list.pids_notrack = [pid2]
+        self.assertTrue(process_list.has_pid(pid1))
+        self.assertTrue(process_list.has_pid(pid2))
+        self.assertTrue(process_list.has_pid(pid1, notrack=False))
+        self.assertFalse(process_list.has_pid(pid2, notrack=False))
+
+    def test_remove_pid(self):
+        """Calling remove_pid should remove pid from process_list."""
+        process_list = ProcessList()
+        pid_to_remove = 54321
+        process_list.pids = [pid_to_remove]
+        self.assertEqual(1, len(process_list.pids))
+        process_list.remove_pid(pid_to_remove)
+        self.assertEqual(0, len(process_list.pids))
+        process_list.pids_notrack = [pid_to_remove]
+        self.assertEqual(1, len(process_list.pids_notrack))
+        process_list.remove_pid(pid_to_remove)
+        self.assertEqual(0, len(process_list.pids_notrack))
diff --git a/changelog.md b/changelog.md
index f2a246fc946..f2b8895e95b 100644
--- a/changelog.md
+++ b/changelog.md
@@ -1,3 +1,1197 @@
+### [24.11.2025]
+* Monitor update: Fix issue with RESUME: monitor message from NtResumeProcess hook
+
+### [17.11.2025]
+* Monitor update: Add config option for monitor injection into supplied pid or "explorer" for shell: monitor=<pid/"explorer">
+
+### [06.11.2025]
+* Monitor updates:
+    * path_from_object_attributes(): fix issue with memcpy from bad ObjectName->Buffer (e.g. 0a9d9b402fb39cf8df21ca4e68b84577c39b3ecf00415c999b28fcc92a695663)
+    * Fix/improve exception handling code which queries current SEH handler
+    * Harden our_stackwalk() against invalid stack pointers (hooking_64)
+    * Add exported function name logging to thread hooks: NtCreateThreadEx, CreateThread, NtQueueApcThread, NtQueueApcThreadEx
+
+### [03.11.2025]
+* Rhadamanthys:
+    * static config extraction - thanks @YungBinary
+    * anti-anti detonation bypass
+
+### [22.10.2025]
+* Add monitor injection to previously unused RESUME: monitor message handler _handle_resume()
+* Remove obsolete 'suspended' parameter from PROCESS monitor message
+* Monitor updates:
+    * WriteMemoryHandler: prevent analysis log spam for small PE writes
+    * Cap per-process messages to prevent detonation slow-down & failure in e.g. 9f8333d81c13ea426953b758140836cff2cf7e7f32e36738f118c6257c6efd34
+    * Experimental debugger action 'guard' to trap on guard violation
+    * YaraHarness: write rules canary detection to analysis log & simplify 'dump' option
+    * Deprecate Win7 wow64 breakpoint workaround
+    * Implement Gemini suggestions from #111
+    * Merge pull request #111 from StephanTLavavej/unordered_map
+    * Improve NtContinueHandler debug register stealth/protection to allow detonation of e.g. 8443224de889424012ba57ec075fec219104fffa8c3ae13a2db27b4ba9d71a3b
+
+### [13.10.2025]
+* Monitor updates:
+    * Fix debug output for dump-limit config setting
+    * Expand 'DumpImage' debugger action to handle target imagebase address e.g. action0=dumpimage:0x400000,action1=dumpimage:ecx+0x280
+    * GetFunctionByName: bug fixess and improvements (thanks @heck-gd)
+    * Trace: fix issue with long conditional jump target calculation in InstructionHandler()
+
+### [06.10.2025]
+* Monitor update: Improve debugger breakpoint protection, fixes instruction counting anti-debug detection in CheckPoint ShowStopper (thanks @cccs-mog)
+
+### [03.10.2025]
+* Monitor update: Fix issue with hook_restore config setting being ignored (fixes #2715 - thanks @federicofantini)
+
+### [23.09.2025]
+* Monitor updates:
+    * unhook: attempt restoration of detected hook modifications
+    * config: fix issue parsing multiple sysbp addresses supplied via submission option
+    * Trace: don't step over named exported functions if trace-all set
+    * Tweak tracking of regions from syscall capture (InstrCallback.c)
+    * Enhance VerifyHeaders() to include EP bytes to detect shellcode overwrites (e.g. HijackLoader)
+
+### [2.09.2025]
+* Loader update: set patched import directory size to allow RestoreHeaders() to work properly, and hence VMProtect binaries
+
+### [1.09.2025]
+* Monitor update: CoCreateInstance hook: remove disable_sleep_skip() breaking e.g. 493b6a86546ac79b7647bd6f3c3523dd910e6a56e427c45197e957e268df8df2
+* Tweak StealcV2 date check bypass sig to improve coverage
+
+### [27.08.2025]
+* Monitor updates:
+    * FindFixAndRun hook: Internal cmd.exe hook targeting 'Exorcism' api FindFixAndRun for batch deobfuscation (thanks @KingKDot and @KillerInstinct)
+    * Remove Scylla code preventing dumping of MEW executables (thanks @shuiyc)
+
+### [18.08.2025]
+* Monitor update: YaraHarness: fix issue with ParseOptionLine() adding imagebase to sysbps (thanks @ClaudioWayne)
+
+### [13.08.2025]
+* Monitor update: Fix internal WMI_GetObjectAsync yara
+
+### [05.08.2025]
+* Monitor updates:
+    * Enhance dynamic patching capability: new PatchBytes() function, submission/yara option patch=<address>:<bytes>
+    * Create DumpStrings debugger action for corresponding function
+    * Standalone mode improvements (thanks heck-gd)
+    * Improve NtGetContextThread & NtSetContextThread hooks to handle e.g. a2d4e1c831808d0a791608db40cd1e4df598e5fee4bac1b239d4f8194f8e2d4a
+    * Debugger: add flag changes to trace output
+* Stealc V2 detection, dynamic strings & config extraction (requires accompanying CAPE-parsers update)
+
+### [11.06.2025]
+* __Action required!__ For users of Python 3.12+ in guest, update the agent to solve #2621 affecting e.g. MSI detonation
+* Agent update: Fix issue with analyzer directory creation lacking required ACLs for Python 3.12, remove predictable "tmp" prefix for directory name(s) (fixes #2621)
+
+### [10.06.2025]
+* Monitor update: WMI hooks: add handling for VT_NULL and enable WMI_Get logging
+
+### [06.06.2025]
+* Monitor updates:
+    * WMI hooks
+    * Fix format string vulnerability in debugger StringsOutput() function
+
+### [03.06.2025]
+* Monitor update: Fix bug in retarget_relative_displacement() relative offset calculation (thanks @ClaudioWayne)
+
+### [23.05.2025]
+* Socks5Systemz update: detection & config extraction, parser update also required (CAPE-parsers repo)
+* Monitor updates:
+    * Trace: do not wrap GetExportNameByAddress() in try/catch and do not use StepOverRegister in BreakOnReturnCallback()
+    * Debugger: fix br1 (break on return) config option parsing (config.c)
+    * Replace remaining uses of pipe("INFO:...) with DebugOutput()
+    * Trace: switch from using ScyllaGetExportNameByAddress() to GetExportNameByAddress()
+    * Harden ScanForExport() function (used by GetExportNameByAddress())
+
+### [8.05.2025]
+* PPLInject: Improve logging output if DLL transaction fails due to insufficiently large transaction target DLL in %SYSTEM%
+* Monitor update: Allow monitor to load without config ini file - defaults to standalone mode
+
+### [28.04.2025]
+* Monitor updates:
+    * .NET JIT cache dumps: off by default, configurable limit with option jit-dumps=X
+    * Windows Loader Snaps: vDbgPrintExWithPrefixInternal hook & option 'snaps=1' for loader snaps output in analysis log
+    * Disable AMSI dumps by default (and uncheck web submission tickbox)
+    * Native hookset (ntdll only) option: native=1
+    * CryptDuplicateKey hook (thanks @KillerInstinct)
+
+### [02.04.2025]
+* Monitor updates:
+    * Trace: allow custom stepping behavior with 'stepmode' option, stepmode=1 steps into short calls (e.g. Rhadamanthys control flow flattening)
+    * Hooking: replace sprintf calls with internal non-allocating implementation (num_to_hex(), uuid_to_string())
+    * CommandLineToArgvW hook
+* Cleaners update
+    * Now you can specify time range as 12h, 50m, 3d.
+    * Improved bulk cleanup for speed. Mongodb's calls collection now has task_id value. This allows to cleanup it faster.
+    * Servers that runs for years, might need to update their `tasks_tags` table schema by hand, only if you getting `ForeignKey violation`.
+```
+    ALTER TABLE tasks_tags DROP CONSTRAINT tasks_tags_task_id_fkey, ADD CONSTRAINT tasks_tags_task_id_fkey FOREIGN KEY (task_id) REFERENCES tasks (id) ON DELETE CASCADE;
+    ALTER TABLE tasks_tags DROP CONSTRAINT tasks_tags_tag_id_fkey, ADD CONSTRAINT tasks_tags_tag_id_fkey FOREIGN KEY (tag_id) REFERENCES tags (id) ON DELETE CASCADE;
+```
+
+### [14.03.2025] CAPA and FLOSS
+* CAPA and FLOSS configs are moved to `integrations.conf`
+
+### [01.03.2025] VirusTotal and MalwareBazaar
+* We have moved VirusTotal and MalwareBazaar to generic downloader so you can enable then in `integrations.conf`
+    * Downlod service allows you to set order + simplifies adding another services
+    * For `API` use `tasks/create/download_services/` instead of `tasks/create/vtdl/`. Example of data: `data={"hashes":"hash1,hash2"}`
+
+### [28.02.2025]
+* Monitor updates:
+    * NtCreateSection hook: add file path (from handle) to logging (thanks @scccccccccc)
+    * NtCreateSection LdrpCallInitRoutine hook: add coverage-module breakpoint setting, fix 64-bit address logging
+    * Trace: improve logging of conditional jump target addresses, on by default)
+
+### [27.02.2025]
+* Monitor update: Improve handling of bogus VirtualSize values in PE section table during dumping (e.g. e4f4afa1b85113656d4788a4f48fa5263b31b922d3e345093e082486193b0275)
+
+### [26.02.2025]
+* Monitor updates:
+    * Fix import reconstruction entrypoint setting - thanks @shuiyc
+    * Add hooks for MsiInstallProductA/W - thanks @KillerInstinct
+    * Add protected-pids config option (protected-pids=0 to disable, on by default)
+
+### [11.02.2025]
+* `selfextract.conf` renamed to `integrations.conf`.
+    * Please rename your config file.
+
+### [10.02.2025]
+* We are now on `Poetry v2`. If you see next message, you need to upgrade your `poetry` version.
+    * This one might be tricky as depends if your `poetry` was installed with `apt` or script. But something like this should works:
+        * `curl -sSL https://install.python-poetry.org | POETRY_HOME=/etc/poetry python3 -`
+```
+The Poetry configuration is invalid:
+  - Additional properties are not allowed ('requires-poetry' was unexpected)
+```
+* If you see missed `crispy_bootstrap4`. Just run `poetry install` as `cape` user.
+
+### [05.02.2025]
+* Monitor update: Fix hooking deadlock with delay-loaded dlls & make LdrpCallInitRoutine hook transparent
+
+### [28.01.2025]
+* Require `poetry>=2.0`.
+
+### [27.01.2025]
+* Monitor update: Fix import reconstruction (advanced submission option)
+
+### [23.01.2025]
+* Monitor update: Fix bug with dumping PE images with abnormally large PE header (e.g. 5ba3d13c57f6b08f34d8ec4f200091b458fdf48141c23ce959d9cda4804a7f5e) (thanks Kevin Ross)
+
+### [07.01.2025]
+* Monitor update: Fix bug with dump limit being tripped by AMSI preventing unpacked capture in e.g. e69ab87e878305285eab44652fa72b0168b53d2c9d95d5e40ae6311a5b6eec7b (thanks @YungBinary)
+
+### [31.12.2024]
+* Monitor updates:
+    * CoGetClassObject hook: add inspect_clsid for improved injection (e.g. 38a9847cb5ce4918bdfee2d54d5d3b79e1399cce15c7b68d86e8f0a5f48e3131)
+    * SetFileInformationByHandle hook
+    * GetComputerNameExW hook: add fake results for all NameTypes (e.g. 8056b8ff55c452cc87e35d69928cccbcfc5af848db1abb4fe0364510986e068b)
+    * RmStartSession hook (thanks para0x0dise)
+    * LdrpCallInitRoutine hook for Win10+
+
+### [01.11.2024] Parsers
+* Malware config parsers aka parsers are moved out of core of CAPE.
+    * Now they are at their own [repository](https://github.com/CAPESandbox/CAPE-parsers).
+        * Feature added. `load=X`, where `X` is one of those: all/core/community
+            * All = core and community
+        * Exclude parsers. Allows to not load some particular parsers. `exclude_parsers=["name1", "name2"]`
+    * Your custom parsers from `custom/parsers/` will still load and overwrite cape carser if name matches.
+* __Action required!__ `cd /opt/CAPEv2 && poetry install`
+
+### [04.10.2024]
+* Monitor update: Add GetClassObject hook to handle UAC bypass technique using CMSTPLUA COM object
+* PrivateLoader direct syscall capture
+
+### [01.10.2024]
+* Monitor update: Improve fix for size bug with unpacking embedded PEs
+
+### [26.09.2024] Browser monitoring
+* [Browser extension details](https://github.com/kevoreilly/CAPEv2/tree/master/extra/browser_extension/README.md). For code details see [PR](https://github.com/kevoreilly/CAPEv2/pull/2330)
+
+### [23.09.2024]
+* Monitor update: Fix size bug with unpacking embedded PEs
+* .NET loader 'SlowLoader' detonation shim for slower cpus (race condition)
+
+### [18.09.2024]
+* Monitor updates:
+    * Add disassembled instruction to exception output
+    * VBScript hook improvements (thanks Jeremy at Proofpoint)
+
+### [13.09.2024]
+* Fix issue with sign extension causing 32-bit values to be misrepresented in web ui (e.g. 0xffffffffc000005 for 0xc000005)
+* bytes2str(): if any values in dict type are already str then keep them
+* Expand behavior log process information with image base, image size and bitness
+
+### [10.09.2024]
+* Monitor update: Add capability to dynamically unhook previously hooked functions (unhook-apis option takes colon-separated list e.g. unhook-apis=NtSetInformationThread:NtDelayExecution)
+* Themida detonation shim
+
+### [03.09.2024]
+* Monitor updates:
+    * Add HtaFile to CLSIDS handled in WMI/DCOM (e.g. FormBook) - thanks Will Metcalf
+    * VBScript hooks
+
+### [16.08.2024]
+* TTD integration (Microsoft Time Travel Debugging)
+    * Use submission option ttd=1
+    * Place TTD binaries in analyzer/windows/bin (with wow64 subdirectory for 32-bit)
+    * .trc files output to TTD directory in results folder for manual retrieval
+* Monitor update: Small debugger fix
+
+### [07.08.2024]
+* Monitor update: Set language via lang=X (language code) submission option
+
+### [05.08.2024]
+* SparkRAT config parser - thanks t-mtsmt
+
+### [22.07.2024]
+* Monitor update: Enhancements to software (& syscall) breakpoint mechanism, add handling for Internet Shortcut CLSID (.url)
+
+### [11.07.2024]
+* Monitor updates:
+    * (in)direct syscall handling enhancements
+    * unpacking & scanning: improved entropy checks
+
+### [26.06.2024]
+* Monitor updates: debugger/trace enhancements
+
+### [21.06.2024]
+* Monitor updates: misc enhancements & fixes (see capemon repo for details)
+
+### [12.06.2024]
+* Monitor update: Unpacker enhancement: capture modified mapped images
+
+### [10.06.2024]
+* Monitor update: Fix for 64-bit Firefox
+
+### [04.06.2024]
+* Monitor update: New hooks (GetAddrInfoExW, CLSIDFromProgIDEx), 64-bit hooking fixes
+
+### [23.05.2024]
+* Integration of [rat_king_parser](https://github.com/jeFF0Falltrades/rat_king_parser) by @jeFF0Falltrades
+    * Requires `dnfile` upgrade. We can't update it in `pyporject` due to `flare-capa`.
+        * Upgrade `dnfile` by yourself by running: `poetry run pip3 install -U dnfile`
+
+### [22.05.2024]
+* Monitor update: Enhance DnsQuery* hooks to capture DNS server lists (e.g. Socks5Systemz)
+* Socks5Systemz detection & config extraction
+
+### [21.05.2024]
+* Monitor update: Hook full set of service APIs in sechost.dll
+
+### [20.05.2024]
+* YARA-X support - https://virustotal.github.io/yara-x/
+* Monitor update: Debugger fixes/improvements, misc other fixes (see capemon repo for details)
+
+### [11.04.2024]
+* Monitor updates:
+    * YARA upgrade to 4.5.0 (& disabled assertion dialogs)
+    * Enable 64-bit 'native' hooks to avoid SSN overwriting
+    * Expand YARA options to allow offsets relative to the end of a pattern to be specified using asterisk (e.g. bp0=$code*+6)
+
+### [25.03.2024]
+* Bypass for variant of Heaven's Gate direct syscall seen in ecrime loader
+* Monitor updates: misc fixes (see capemon repo for details)
+
+### [20.03.2024]
+* Formbook: ntdll remap bypass & config extraction updates
+* Monitor update: Trace GetRegister() tweak
+
+### [15.03.2024]
+* Monitor update: Further unpacker refinement: Improve filter for unwanted .NET payloads to avoid missing interesting payloads
+
+### [14.03.2024]
+* Monitor update: Unpacker refinement for e.g. Shikata Ga Nai - thanks @para0x0dise
+
+### [12.03.2024]
+* Monitor update: Initial IPv6 support - thanks @cccs-mog
+* Linux support details can be seen in this [Pull Request](https://github.com/kevoreilly/CAPEv2/pull/2001)
+* We remove all `x.conf` to finish the mess with the configs.
+    * DO NOT EDIT `.conf.default` files. cape2.sh makes a copy of them removing `.default`.
+    * If you don't use `cape2.sh`.
+        * Run: `for filename in conf/default/*.conf.default; do cp -vf "./$filename" "./$(echo "$filename" | sed -e 's/.default//g' | sed -e 's/default//g')";  done`
+
+### [07.03.2024]
+* Monitor updates:
+    * Countermeasure for NtCreateUserProcess block-non-Microsoft-DLLs mitigation policy affecting monitoring
+    * Expand 'syscall' breakpoints to handle indirect syscalls (sysbpmode=1)
+    * Small fixes & improvements
+* Pikabot detection update & anti-hook bypass
+
+### [29.02.2024]
+* TLP fields added to distributed database. Requires db upgrade: `cd utils/db_migration_db && alembic upgrade head`
+* Monitor fixes
+
+### [28.02.2024]
+* Add 'ShellWindows' COM object injection mechanism (e.g. Latrodectus MSIs)
+* Monitor: add option to disable ntdll remap protection: ntdll-remap=0
+* Lumma direct systenter unmap crash bypass
+
+### [26.02.2024]
+* Monitor updates: Service injection delay for e.g. msi detonation & EnumDisplayDevices hooks & anti-vm (thanks @enzo)
+* Updated DarkGate config & payload extraction (thanks @enzo)
+* Latrodectus auto-export selection
+
+### [23.02.2024]
+* Monitor updates: Debugger/Trace enhancements
+
+### [14.02.2024]
+* Monitor update: Protect NtFreeVirtualMemory hook against spurious pointer values (e.g. f4bb0089dcf3629b1570fda839ef2f06c29cbf846c5134755d22d419015c8bd2)
+
+### [08.02.2024] CAPA 7 + CAPE
+* [CAPA](https://github.com/mandiant/capa) allows to generate a summary of CAPE's analysis. This gives quick abstract summary of analysis. More details [CAPA v7 blogpost](https://www.mandiant.com/resources/blog/dynamic-capa-executable-behavior-cape-sandbox)
+* Monitor update: Fix logging bug causing rare buffer overflows (e.g. 780be7a70ce3567ef268f6c768fc5a3d2510310c603bf481ebffd65e4fe95ff3)
+
+### [05.02.2024]
+* PhemedroneStealer config extractor - thanks @tccontre18 - Br3akp0int
+
+### [31.01.2024]
+* Monitor update: Protect 64-bit hooks against unaligned stack (e.g. 780be7a70ce3567ef268f6c768fc5a3d2510310c603bf481ebffd65e4fe95ff3)
+
+### [24.01.2024]
+* Monitor update: Improve handling of irregularly mapped PE images (e.g. from 7911e39e07995e3afb97ac0e5a4608c10c2e278bef29924ecc3924edfcc495ca)
+
+### [23.01.2024]
+* Monitor updates:
+    * PE dumping refinements for small PEs
+    * Debugger: don't trace rundll32 entry point for dlls submitted with bpX=ep
+
+### [18.01.2024]
+* Monitor update: Harden against volatile register anti-hook technique in e.g. AgentTesla (thanks @ClaudioWayne)
+
+### [10.01.2024]
+* Monitor updates:
+    * Further process dump filter hardening
+    * Fix dotnet cache dumps
+
+### [05.01.2024]
+* Monitor updates: fix a couple of issues affecting detonation (see capemon repo for details)
+
+### [08.12.2023]
+* Monitor updates:
+    * Expand procdump config option to allow forced procdumps irrespective of code section changes (procdump=2)
+    * Improve dumping of images with missing section addresses (e.g. VMP)
+
+### [07.12.2023]
+* Monitor update: fix bug in dumping malformed PEs
+
+### [05.12.2023]
+* Monitor updates:
+    * Process dump filter enhancements & fix
+    * Enhanced checks (parent process path) for service hookset assignment
+    * Misc fixes
+
+### [04.12.2023] IPinfo.io database integration
+* Introduce support for IPinfo.io database. You can download database [here](https://ipinfo.io/account/data-downloads).
+* To enable it:
+    * `conf/processing.conf` -> `network` -> `country_lookup = yes` and point `maxmind_database` to proper file.
+
+### [30.11.2023]
+* Monitor update: Fix bug affecting some process dumps
+
+### [29.11.2023] Unify download services
+* Virustotal config moved from `auxiliary.conf` to `web.conf` under `download_services`
+
+### [24.11.2023]
+* AsyncRAT config parser overhaul
+* Monitor update: Debugger tweaks
+
+### [17.11.2023]
+* Monitor update: Debugger fixes & enhancements (action target registers can be pointers when within [], e.g. action2=string:[esp])
+
+### [14.11.2023]
+* Monitor update: Small detonation fix
+* Formbook detonation & config tweaks
+
+### [7.11.2023]
+* Monitor updates: Misc debugger tweaks
+* XWorm config extraction
+
+### [3.11.2023]
+* Monitor updates:
+    * New debugger actions: 'setsrc' & 'setdst' to set values pointed at by instruction operands
+    * Improve filtering of uninteresting process dumps
+    * Misc fixes/improvements
+
+### [1.11.2023] ZPAQ Support
+* __ACTION REQUIRED__
+    * `sudo apt install zpaq`
+    * as cape user: `poetry install`
+
+### [20.10.2023]
+* Monitor fixes: address new issue affecting procdump and add check in compileMethod hook
+
+### [19.10.2023]
+* Monitor update:
+    * Unpacker: reduce/filter unwanted .NET payloads
+
+### [13.10.2023]
+* Formbook updates
+* Monitor updates:
+    * NtContinueEx hook
+    * Debugger action enhancements: setptr, patch, sleep, exit
+    * Software breakpoint handler enhancement
+    * Misc fixes/improvements
+
+### [11.10.2023]
+* Formbook config extraction
+* Monitor updates:
+    * GetComputerNameExW hook added, PostThreadMessage hook enhancement
+    * Debugger action enhancements
+    * Misc fixes
+
+### Download files matched by YARA
+* When doing search by `capeyara` we expose button to download files that only matches that search criteria.
+    * For [@fumik0_](https://twitter.com/fumik0_) with love.
+
+### [22.9.2023] CSRF changes
+* __IMPORTANT__. If you using __https__ please update config to use new field for __CSRF__ in `conf/web.conf`.
+    * Before: `[general]` -> `hostname`.
+    * Now: `[security]` -> `csrf_trusted_origins`
+
+### [19.9.2023]
+* Storage of file data in MongoDB
+    * Store the parts of a report's file data that is independent of a detonation in a separate collection
+      to conserve disk space.
+* __ACTION REQUIRED__
+    * It is recommended to add a regular cron job to call `cd /opt/CAPEv2 && sudo -u cape poetry run python ./utils/cleaners.py --delete-unused-file-data-in-mongo`
+      to prune these entries that are no longer needed.
+
+### [13.9.2023]
+* Monitor updates:
+    * .NET JIT native cache handling improvements
+    * New debugger action 'string' to capture decrypted strings
+    * Fix issue in procname_watch_init() with non-null-terminated unicode paths - thanks Proofpoint for the report
+
+### [8.9.2023]
+* Monitor update:
+    * .NET JIT native cache scanning & dumping
+
+### [1.9.2023]
+* Monitor updates:
+    * Fix missing browser hooks config setting for Edge & Chrome
+    * Trace: add config option to try and skip loops which flood trace logs (loopskip=1)
+
+### [25.8.2023]
+* Monitor update: Upgrade monitor Yara to 4.3.2 (thanks Michael Weiser)
+
+### [19.8.2023]
+* Monitor update: fix memcpy hook logging issue
+
+### [16.8.2023]
+* Monitor updates:
+    * Filter uninteresting process dumps via new VerifyCodeSection() function checking code section for modification
+    * Fix issue with process path-based options being set too late (after yara init)
+    * YaraScan: do not call SetInitialBreakpoints() unless DebuggerInitialised flag is set
+
+### [10.8.2023]
+* Monitor updates:
+    * Fix for NtQueueApcThread hook: do not send thread handle in 'process' message
+    * Add WmiPrvSE.exe to services hookset to fix Win10 WMI/interop detonation issues
+
+### [8.8.2023]
+* Minimal YARA version now is 4.3.1
+* `file_extra_info` modules autoload, see example in `lib/cuckoo/common/file_extra_info_modules`
+* Initial compatibility with x64 python version in guests.
+* In `agent.py` add `is_admin` value.
+
+### [5.8.2023]
+* New anti-direct-syscall feature: 'syscall breakpoints' (64-bit only)
+    * redirect syscalls back through traditional hooks
+    * via monitor yara & updated monitor
+* Monitor updates:
+    * Unpacker: add dumping of decrypted PEs from CryptDecrypt(), NCryptDecrypt(), BCryptDecrypt()
+    * NtOpenProcessToken, NtQueryInformationToken, RtlWow64GetThreadContext hooks
+    * Syscall breakpoint implementation (64-bit)
+    * Fix hook issues with NtQueueApcThread, GetWriteWatch
+    * Misc fixes & improvements (see capemon repo for details)
+
+### [31.7.2023] Prescan feature
+* Allows to scan all new file tasks with YARA. Must be enabled in `web.conf` -> `[general]` -> `yara_recon`.
+    * This allows you to set CAPE arguments, as tags for example for proper VM pickup.
+    * YARA name must ends with `Crypter`, `Packer`, `Obfuscator` or `Loader` and have `cape_name` and `cape_options` in meta. Example:
+    * See `def recon` in `CAPEv2/lib/cuckoo/common/web_utils.py`
+```
+rule X_cryptor {
+    meta:
+        author = "doomedraven"
+        description = "New X Crypter"
+        cape_type = "New X Crypter"
+        cape_options = "tags=win10"
+    strings:
+        $a = "New awesome crypter <3" fullword
+    condition:
+        $a
+}
+```
+
+### [28.7.2023]
+* Syscall hooks now enabled by default
+* Monitor updates:
+    * improved syscall hook logging, unpacker & debugger integration
+    * new debugger actions "call" & "setbpX"
+    * misc improvements
+
+### [18.7.2023]
+* FLARE CAPA v6 support. Is now uniq supported version. They doing breaking changes.
+
+### [14.7.2023]
+* Monitor update: Add hook for LoadLibraryExW
+
+### [7.7.2023]
+* UPX-type dynamic unpacker in yara sig
+* Monitor updates:
+    * New debugger action 'Step2OEP' for packers like UPX
+    * Deprecate obsolete UPX unpacker code
+    * misc improvements & fixes
+
+### [24.6.2023] EuskalHack feature
+* .inf detonation. Requires `sflock2==0.3.50`
+* New admin/admin.py - Cluster edition - [Documentation](https://capev2.readthedocs.io/en/latest/usage/cluster_administration.html)
+* New dependency. Run `cd /opt/CAPEv2 && poetry install`
+*
+### [19.6.2023]
+* Monitor update: misc improvements & fixes
+
+### [13.6.2023]
+* Monitor update: fix issue with Microsoft Edge not launching properly (#1587)
+
+### [5.6.2023]
+* Stealc detection update
+* Monitor update: Fix NtWriteFile hook issue by removing critical sections - thanks to @RazviOverflow for report
+
+### [30.5.2023]
+* Monitor updates:
+    * Add GetWriteWatch & UpdateProcThreadAttribute hooks which allow Pikabot detonation - thanks @enzok!
+    * CoCreateInstance(Ex) hook improvements - thanks @heck-gd!
+    * PostThreadMessage hooks - thanks @nblog!
+* PikaBot detection update
+
+### [29.5.2023]
+* URL default analysis package selection in web.conf
+* SQLAlchemy2 migration started
+* MSIX extract
+
+### [21.4.2023]
+* Fix issue with Rhadamanthys & BumbleBeeLoader FPs due to monitor sigs in process dumps
+* Monitor update: Debugger hardening & new actions
+
+### [21.4.2023]
+* Monitor updates: Misc fixes (see capemon repo) & hooks for CreateProcessA/W to reduce noise
+
+### [6.4.2023]
+* Monitor update: Add hook for WinExec()
+
+### [5.4.2023] Configs make easier
+* Simplifing the configuration
+    * Do NOT edit any config that ends on `.default` as it will be default config.
+    * For more details read readme inside of `conf` folder.
+
+### [30.3.2023]
+* RedLine config extraction - thanks @Gi7w0rm
+* Monitor fixes:
+    * Harden GetExportAddress() against malformed PE images
+    * Add fallback payload metadata in ProcessTrackedRegions
+
+### [21.3.2023] Syscall Hooks
+* New feature (beta):
+    * Syscall hooks on Win10+ (via InstrumentationCallback) via submission checkbox or option: syscall=1
+* Ursnif/ISFB detection & config extraction update
+
+### [17.3.2023]
+* Monitor fixes:
+    * Unpacker: Improve ProcessTrackedRegion() to allow yara scans of mapped modules
+    * Disable sleep skips prior to thread creation (rather than after) and upon CoCreateInstance (WMI etc)
+
+### [16.3.2023] Loggers
+* New config `conf/logging.conf`. Remember to copy it to `custom/conf/logging.conf` for moddifications.
+    * Syslog handler for `cuckoo.py` and `process.py` can be on/off in config. Useful for global monitoring tools or cloud setups.
+    * Allow to create logs per analysis in analysis folder. Useful for distributed setup to show on webgui if enabled and have logs in main server.
+
+### [10.3.2023]
+* Monitor fixes:
+    * Prevent unpacker initialisation from adding imagebase to tracked regions, allow yara scans on caller
+    * CoGetClassObject hook: remove modification of dwClsContext parameter causing detonation failures
+
+### [9.3.2023]
+* Monitor updates:
+    * Remove cryptsp 'double' hooks in Office processes due to detonation failures (e.g. Word 2016)
+    * Prevent following child processes of WerSvc (to prevent werfault.exe producing mini dumps that are detected by yara due to in-memory monitor sigs)
+
+### [8.3.2023]
+* Virtual machine tags: For Windows only. Please set windows version in tag, any of: winxp, win7, win8, win10, win11.
+    * This is required for proper detonation for packages like MsiX.
+* New feature. In `web.conf` there is section `[packages]`:
+    * It allows to create new packages and push them to correct VMs.
+    * Or in case you want to detonate some of the packages only on specific VMs you can specify it there like: `package:vm_tag1,vm_tagX`
+* MsiX file proper recognization requires upgrade to `sflock2==0.3.48`, otherwise it will push it as zip or extract and add each file as separated job.
+
+### [1.03.2023]
+* Msix/MsixBundle package works only on Windows >= 10
+* Quarantine is integrated into normal file submission so you don't need to know if file is normal or quarantined.
+
+### [24.2.2023] CAPE 2.4: 🌻 Edition
+* New Unpacker option: `unpacker=2`
+* Deprecated:
+    * submitCAPE.py - no more additional jobs
+* Staging branch:
+    * We want to have CAPE stable. So new features will go to staging branch for 1-2 weeks before merged to master.
+    * If you want to help us to spot any possible issue use that branch on your dev side.
+* We need help to add as much tests as possible to cover all possible cases to prevent broken code.
+* Stop using `conf/` folder. All config should be in `custom/conf/`. This will simplify your life on CAPE updates when new entry added to base templates. [Details](https://github.com/kevoreilly/CAPEv2/blob/master/conf/readme.md)
+
+### [20.2.2023]
+* Scheduler update:
+    * A machine may be configured with `reserved = yes` in `<machinery>.conf`. For such machines, the scheduler will
+      not use it for tasks unless the user specifically requests it by its label.
+* Database update:
+    * The 'name' of all machines defined in `<machinery>.conf` must be unique. The same goes for their 'label' fields.
+
+### [16.2.2023]
+* Monitor update: Hooking engine stability fix for detonation issues (e.g. Word)
+
+### [4.2.2023]
+* Monitor updates:
+    * Extend svchost hookset to Winmgmt (netsvcs) service
+    * Fix for bug in get_full_keyvalue_pathUS() (thanks oalieno)
+
+### [2.2.2023]
+* Monitor update: Process dump improvements & 'export' option to allow DLL export to be defined by monitor yara signature
+
+### [1.2.2023]
+* Monitor update: Disable spawning WER processes (werfault.exe etc) via RtlReportSilentProcessExit hook
+
+### [30.01.2023]
+* Add `utils/fstab.py` utils which is used by `utils/dist.py` when NFS mode is used.
+    * Check configure NFS in [documentation](https://capev2.readthedocs.io/en/latest/usage/dist.html):
+* Now when you register new server in distributed cluster that uses NFS, it will automatically:
+    * Create worker folder
+    * Add NFS entry to `/etc/fstab`. Ex:
+        * `192.168.1.1:/opt/CAPEv2 /opt/CAPEv2/workers/192.168.1.1 nfs, auto,user,users,nofail,noatime,nolock,intr,tcp,actimeo=1800, 0 0`
+    * Mount folder
+
+### [26.1.2023] Configs
+* Please read [this](https://github.com/kevoreilly/CAPEv2/blob/master/conf/readme.md) to simplify your life with configs managment
+
+### [25.1.2023]
+* Google Cloud Platform (GCP) support in distributed CAPE aka dist.py
+
+### [5.1.2023]
+* Big duplicated code cleanup. Context: CAPE.py module processing all the files so it calling File(x).get_all() which is pretty heavy.
+* Deprecated standalone modules. They are moved inside of CAPE.py. Data will be under the same keys.
+    * Target info
+    * Dropped
+    * ProcDump
+* Url analysis moved to `nodules/processing/url_analysis.py`
+
+### [4.1.2023]
+* Monitor update: Fix 32-bit stack recursion hook issue (affecting, for example, golang binaries)
+
+### [28.12.2022] NETReactorSlayer
+* Integrated deobfuscator and unpacker for Eziriz .NET Reactor. [Source](https://github.com/SychicBoy/NETReactorSlayer).
+    * You need to download version for your CPU and extract it to `data/NETReactorSlayer.CLI`
+        * In case if you are on x64 host, then just run: `poetry run python utils/community.py -waf`
+    * Add execution permission with `chmod a+x data/NETReactorSlayer.CLI`
+* Now each section inside of `integrations.conf` has timeout value. Default is 60 seconds
+
+### [24.12.2022]
+* Monitor updates: Fix NtAllocateVirtualMemoryEx & NtMapViewOfSectionEx hooks and rebuild with Visual Studio 2022
+
+### [2.12.2022]
+* Monitor updates: add 32-bit hook compatibility to allow hooking of GetCommandLine APIs (and add GetCommandLineA hook)
+
+### [17.11.2022]
+* QakBot config extraction update
+* Emotet detection & config extractor updates
+
+### [10.11.2022]
+* Monitor fixes:
+    * Fixes for CreateTimerQueueTimer hook affecting Emotet detonation
+    * Remove function name resolving via ScyllaGetExportNameByAddress() in thread & process hooks due to issues
+
+### [14.11.2022]
+* Monitor fixes:
+    * hook recursion issue in 64-bit monitor
+    * UNICODE_STRING comparison issue in add_all_dlls_to_dll_ranges()
+
+### [7.11.2022]
+* Monitor updates: misc fixes & improvements (see capemon repo for details)
+* Fix merging of split configs per family in CAPE processing module
+
+### [11.10.2022] Archive package
+* [archive package](https://github.com/kevoreilly/CAPEv2/blob/master/analyzer/windows/modules/packages/archive.py) by [@cccs-kevin](https://github.com/cccs-kevin) with a nice talk explaining how to detonate some kind of malware properly [here](https://youtu.be/-70Mlkmtdds?t=13013). Thank you Kevin and CCCS team for this contribution. [Documentation](https://capev2.readthedocs.io/en/latest/usage/packages.html).
+
+### [6.10.2022]
+* Some not core dependencies are commented out and won't be installed anympore by default.
+* Our idea is to leave CAPE core with core dependencies to avoid conflicts with another libraries.
+
+### [1-10-2022]
+* Monitor update: GetSystemInfo anti-vm improvement & 64-bit hooking engine fix
+
+### [24-9-2022]
+* Monitor update: Per-api total cap (api-cap=X) and Javascript (wscript) hookset
+
+### [17-9-2022]
+* Monitor update: misc fixes (see capemon repo for details)
+
+### [12-9-2022]
+* Monitor update: TLSdump on Win10 & other improvements (see capemon repo for details)
+
+### [2-9-2022]
+* Monitor update: Fix issue with incorrect prototype for NtCreateThreadEx hook
+
+### [28-08-2022] [Maco - Malware config extractor framework](https://github.com/CybercentreCanada/Maco)
+* [MACO foramt for malware configs](https://github.com/kevoreilly/CAPEv2/pull/1037)
+
+### [26-08-2022]
+* [Interactive mode](https://github.com/kevoreilly/CAPEv2/pull/1065) thanks to @enzok based on his [guac-session](https://github.com/enzok/guac-session/). [Docs](https://capev2.readthedocs.io/en/latest/usage/interactive_desktop.html)
+
+### [18-8-2022]
+* Function `yara_detected` now returns 4 arguments. 4th is file metadata
+
+### [17-8-2022]
+* Monitor updates:
+    * Enable enhanced .NET dumps
+    * Misc updates & fixes (see capemon repo)
+
+### [30-7-2022]
+* [Details here](https://github.com/kevoreilly/CAPEv2/pull/1020)
+* __ACTION REQUIRED__
+    * `cd /opt/CAPEv2/utils/db_migration && alembic upgrade head`
+    * Restart:
+        * CAPE service `systemctl restart cape cape-processor`
+        * Web: uwsgi or cape-web
+
+### [15-7-2022]
+* Monitor updates:
+    * MSI detonation (Win10)
+    * Misc updates & fixes (see capemon repo)
+
+### [11-7-2022]
+* FLARE-CAPA fix, you must install it from `GitHub`. Pip version is different.
+* FLOSS 2.0 integration.
+* BinGraph requires CAPE's version: `poetry run pip install git+https://github.com/CAPESandbox/binGraph`
+* `on_demand` fixed.
+* __ACTION REQUIRED__
+    * Now that CAPA and Floss uses the same signatures we renamed `capa-signatures` to `flare-signatures`
+    * `python3 utils/community.py -cr`
+
+### [15-6-2022]
+* [Azure machinery](https://github.com/kevoreilly/CAPEv2/pull/922) by @cccs-kevin
+
+### [8-6-2022]
+* Use poetry to handle dependencies
+    * requirements.txt is still present to continue support for pip
+* Added pre-commit hooks
+* Add community blocklist to avoid pulling some undesired modules/signatures/etc.
+
+### [10-5-2022]
+* Added AWS machinery and ReversingLabs file lookup by @JaminB
+
+### [5-5-2022]
+* Monitor updates:
+    * Increase GlobalMemoryStatusEx faked return value
+    * Loosen requirements in TestPERequirements to allow zero-sized sections
+    * Fix issue with missing dropped files (e.g. 64-bit Al-khaser log.txt)
+    * Crypto hooks: add buffer length to logs, add dump-crypto to NCrypt APIs & use DumpMemoryRaw()
+    * Trace improvements (64-bit set register range and DoStepOver function)
+    * Debugger improvements (NoSetThreadContext for Win 10 breakpoints)
+    * Fix off-by-one in ReverseScanForNonZero()
+
+### [3-5-2022]
+*  lnkparse3 integration
+
+### [20-4-2022]
+* Emotet E5 update
+* Monitor updates:
+    * New hooks: LdrGetProcedureAddressForCaller, GetCommandLineW
+    * Fix issue with payload metadata incorrectly set in certain conditions
+
+### [19-4-2022]
+* Emotet E4 update (new 64-bit)
+
+### [1-4-2022]
+* Monitor update: Fix issue with attempted dll load notifications in tlsdump mode causing lsass to crash
+
+### [31-3-2022]
+* Monitor updates:
+    * dump-crypto option: add dumping of Bcrypt encrypt/decrypt apis
+    * Add general typestring to options, overrides type codes
+
+### [28-3-2022]
+* Monitor: Fix issue causing some exceptions in VirtualProtectEx and NtProtectVirtualMemory hooks
+* Unittests for core enabled on GitHub. Please help us cover as much as we can to make CAPE more stable than never.
+
+### [16-3-2022]
+* Monitor updates:
+    * Add 'Unwind' debugger action for x86
+    * Fix for NtCreateThreadEx hook not initialising thread breakpoints
+    * Filter dlls alongside target process executable in add_all_dlls_to_dll_ranges()
+    * Fix issues with WriteMemoryHandler invocation in hooks, update NtWow64 function prototypes
+    * Show dll load notifications in behavior log, use already_hooked() on load check
+    * Add module name to debugger log exception output
+    * Do RestoreHeaders() at end of init
+    * Add Yara logging switch
+
+### [4-3-2022]
+* Rewritten detection.
+    * Now if you have many different detections it will show all of them, not only 1. Details about each detection is in CAPE signature
+    * This is not backward compatible feature, so search won't return old matches
+
+### [2-3-2022]
+* Emotet updates
+
+### [23-2-2022]
+* Loader update: fix check for previous IAT patch with corrected size (fixes #748 - Obsidium packers)
+* PlugX updates
+* Emotet updates
+
+### [20-02-2022] [UnAutoIt](https://github.com/x0r19x91/UnAutoIt) by @x0r19x91
+* You need to compile it by yourself and put binary under `/opt/CAPEv2/data/UnAutoIt`
+```
+cd /opt/CAPEv2/data/
+snap install go --classic
+git clone https://github.com/x0r19x91/UnAutoIt && cd UnAutoIt
+GOOS="linux" GOARCH="amd64" go build -o UnAutoIt
+```
+
+### [19-02-2022] [Detect It Easy](https://github.com/horsicq/Detect-It-Easy/) by @horsicq
+* To install it you can download installer from [here](https://github.com/horsicq/DIE-engine/releases)
+```
+sudo apt install libqt5opengl5 libqt5script5 libqt5scripttools5 -y
+wget "https://github.com/horsicq/DIE-engine/releases/download/${DIE_VERSION}/die_${DIE_VERSION}_Ubuntu_${UBUNTU_VERSION}_amd64.deb" -O DIE.deb
+sudo dpkg -i DIE.deb
+```
+
+### [18-02-2022] Depricate static
+* To be able to generate the same info as was generated for initial binary under static tab. We decided to depricate static module and make it reusable for any other files like dropped, downloaded, etc.
+* So now you will be able all file static info on each file to speedup your analysis
+
+### [15-2-2022]
+* Monitor updates:
+    * Do not call notify_successful_load() if tlsdump mode (avoid lsass being added to analyzer process list)
+    * Fix: ensure module (ntdll) is writeable before calling restore_hooks_on_range()
+
+### [13-02-2022] PEEPDF
+* [peepdf](https://github.com/CAPESandbox/peepdf) isn't installed anymore by default, python3 version is pretty buggy, so if you want to fix it you are more than welcome!
+
+### [7-2-2022]
+* Monitor updates:
+    * Add hooks for NtAllocateVirtualMemoryEx, NtMapViewOfSectionEx, NtUnmapViewOfSectionEx (Win10+)
+    * Extend ntdll protection to cover VirtualProtectEx, make more stealthy
+
+### [5-02-2022] Config extractors
+* Make standard file key for all `path` keys. No more: `file`, `path`, etc. Now just `x["path"]`
+* MWCP, malwareconfigs, and malduck are not part of requirements.txt anymore! They bring their own dependencies that not everyone needs. If you enable that framework in processing.conf you need to install that dependencies.
+    * TIP: You need to figurate the proper version(is another reason why we abondone them)
+        * `poetry run pip install git+https://github.com/Defense-Cyber-Crime-Center/DC3-MWCP`
+        * `poetry run pip install git+https://github.com/kevthehermit/RATDecoders`
+        * `poetry run pip install git+https://github.com/CERT-Polska/malduck/`
+* `PyCrypto` replaced with [PyCryptoDoMeX](https://pycryptodome.readthedocs.io/en/latest/src/installation.html)
+* __ACTION REQUIRED__
+    * `poetry run pip install pycryptodomex==3.14.0`
+    * Restart:
+        * CAPE service `systemctl restart cape-processor`
+
+### [4-2-2022]
+* Monitor updates:
+    * Dump-on-API bug fix
+    * YaraHarness: fix issue with delta variable
+    * End yara later during shutdown
+    * Prevent unloading core modules (fix #531)
+    * New crypto hooks: CryptDeriveKey, CryptDestroyKey, CryptDestroyHash
+    * YaraInit: log number of loaded sigs rather than a list
+    * Debugger push & pop actions
+    * WriteMemoryHandler: tiny code clean
+    * CreateProcessHandler: improve logging
+    * Fix evasion techniques reported by (& many thanks to) Alexey Bukhteyev of Checkpoint, [writeup](https://research.checkpoint.com/2022/invisible-cuckoo-cape-sandbox-evasion/)
+* Update 'GetTickCount' anti-vm bypass with latest IcedID packers
+
+### [26-1-2022]
+* Config extension, for short details see [PR](https://github.com/kevoreilly/CAPEv2/pull/724) or full [read docs](https://capev2.readthedocs.io/en/latest/installation/host/configuration.html)
+
+### [20-1-2022]
+* MongoDB abstraction for easier upgrades when they depricate some apis + code cleanup
+
+### [19-1-2022]
+* Monitor: PE dumping more tolerant of inaccessible sections (e.g. recent Emotet)
+* Updates for latest Emotet Epoch 4
+
+### [8-1-2022]
+* Feature: AMSI dumps (enabled by default for Win10+)
+
+### [17-12-2021]
+* Monitor: x64 debugger updates & improvements
+* Al-khaser bypass
+* ElasticSearch to store reports support by @CorraMatte
+
+### [22-12-2021]
+* Add new field to DB `arch`. To avoid problems with pendings tasks when user didn't read config and set tags
+* If you using `dist.py` ensure next:
+    * If you have `x64` and `x86` VMs:
+        * `x64` VMs should have both `x64` and `x86` tags. Otherwise only `x64` tag
+    * `x86` VMs should have only `x86` tag.
+    * You can use any other tags, just to work properly you need those two.
+    * Tags requires update in `machine` table in distributed database if your server contains only x64 VMs.
+    * Probably will be improved in future for better solution
+* __ACTION REQUIRED__
+    * `cd /opt/CAPEv2/utils/db_migration && alembic upgrade head`
+    * Restart:
+        * CAPE service `systemctl restart cape`
+        * Web: uwsgi or cape-web
+
+### [14-12-2021]
+* Monitor: Add Add debugger actions: 'nop' and 'wret' to patch instructions with nop and ret
+* Yara dynamic bypass for latest Emotet packer anti-vm trick
+
+### [11-12-2021]
+* Monitor: Add RDTSCP NOP option as alternative for when emulation is too slow (and timestamp counter value not needed)
+* Yara signature to enable RDTSCP NOP dynamically for recent Emotet/ISFB packers
+
+### [07-12-2021] Decode them all
+* VBE/JSE/BATCH decoded and shown on WebGui
+* __ACTION REQUIRED__
+    * `poetry run pip install -U git+https://github.com/DissectMalware/batch_deobfuscator`
+* Monitor: Add support for parent pid in payload capture (thanks to Intezer)
+
+### [02-12-2021] - API changes
+* We spot that pyzipper adds huge overhead specially to distributed cape.
+* Repors now are just zips, screens also now zips, anything that is not contains malicious code is just pure zip, the rest is keeps the same.
+
+### [01-12-2021]
+* Monitor: Bcrypt hooks, disable yara scans in IE, silent rdtscp emulation, other misc tweaks
+
+### [23-11-2021]
+* Integrate [Kixtart-Detokenizer](https://github.com/jhumble/Kixtart-Detokenizer)
+* Simplify integration of another tools to unpack/extract files
+
+### [18-11-2021]
+* Add [RichHeader](https://github.com/RichHeaderResearch/RichPE) MD5
+* Improve Suricata family detection
+* Extract strings on demand feature
+
+### [08-11-2021]
+* Monitor: rdtscp emulation, optional exception & breakpoint logging
+
+### [04-11-2021]
+* Move Office hook options from packages to monitor
+* Monitor: Disable NtWaitForSingleObject hook for 32-bit Windows 8+ due to crashes
+
+### [03-11-2021]
+* Add MongoDB multifield index for all SHA256 fields.
+    * if you using any other fields for frequent lookup, add indexes for that on your side to speedup database
+
+### [01-11-2021]
+* Allow download reports as zip via API
+* Fix python analysis support in Windows
+
+### [22-10-2021]
+* POC: AntiRansomware:
+    * Can be enabled in `processing.conf` it will disable processing of files with extensions that are not in allowed list, see `modules/processing/antiransomware.py`
+    * Specially useful to disable them in CAPE.py that gather all the metadata, yara etc and can consume a lot of ram
+
+### [21-10-2021]
+* Monitor update: Monitor fix for scan crashes in e.g. Equation Editor/Cmd (thanks Will)
+
+### [19-10-2021]
+* Monitor update: Monitor fix for NtSuspendThread hook issue (thanks Intezer)
+
+### CENTS - Configuration Extraction to Network Traffic Signatures
+* For full description [read](https://github.com/kevoreilly/CAPEv2/pull/605)
+
+### [17-10-2021]
+* Monitor update: Win10x64 deadlock fix & other misc fixes (see capemon repo for details)
+
+### [2-10-2021] Hacktoberfest
+* Add test module to extraction framework to ensure that they are loaded properly: CAPE, MWCP, RATDecoders, Malduck
+* Monitor update: Fixes/hardening of dumps (PE & memory) and yara scans (e.g. SquirrelWaffle)
+* Handled errors that was giving problem to use `init_yara` sometime, used in Qakbot extractor
+    * `OSError: /opt/CAPEv2/lib/cuckoo/common/blzpack_lib.so: failed to map segment from shared object`
+* Bingraph:
+    * matplotlib `forward` deprication fixed
+    * moved to external dependency, we host CAPE's version here https://github.com/CAPESandbox/binGraph.
+    * __ACTION REQUIRED__
+        * `poetry run pip install -U git+https://github.com/CAPESandbox/binGraph`
+
+
+### [23-09-2021]
+* Monitor update: Add CLSIDs and IsValidUrl hook for CVE-2021-40444
+
+### [22-09-2021]
+* SquirrelWaffle detection & config extraction
+* Monitor improvements:
+    * Dumping stability improvements (ScanForDisguisedPE, IsDisguisedPEHeader, DumpMemory, DumpRegion)
+    * Add config option to allow enable/disable scans/dumps while loader lock held
+    * Monitor updates: dump/scan stability improvements, configurable loader lock scans/dumps, window hook fixes
+
+### [14-09-2021]
+* Update Lockbit yara sig
+* Update Bazar yara sig
+* We spot that some extractors only works with `mwcp==3.2.1`, requirements updated
+* FLARE-CAPA v3
+
+### [11-09-2021]
+* Monitor improvements:
+    * Restrict debugger breakpoint protection to current process (NtSetContextThread)
+    * Limit "Dropped file limit reached" messages to just one per process
+
+### [02-09-2021]
+* Monitor fixes:
+    * Some dropped files being missed (file_handle_terminate())
+    * Disable ntdll write-protection for Office processes
+
+### [06-09-2021]
+* Sflock update with more PE checks, as in many cases PE has other formats strings inside
+* __ACTION REQUIRED__
+    * `poetry run pip install -U sflock2`
+
+### [02-09-2021]
+* Monitor: Remove case-sensitivity from check for dll path (e.g. Hancitor maldoc-spawned dlls)
+
+### [28-08-2021]
+* Monitor: revert changes to IsPeImageRaw() while crashes (e.g. BazarLoader) are investigated
+
+### [25-08-2021]
+* __ACTION REQUIRED__
+    * `poetry run pip install -U pyattck`
+
+### [19-08-2021]
+* Move office settings from package options to in-monitor (automatic)
+* Fix issue with tlsdump/lsass being assigned 'first process' in analyzer
+* Usage graph moved to under statistics block
+
+### [18-08-2021]
+* Monitor update: stability fixes (window hooks, ...) & debugger improvements
+
+### [11-08-2021]
+* Distributed. Master node stop picking pending tasks when `node=X` is specified and master_storage_only=False
+
+### [10-08-2021]
+* Monitor update: Remove unnecessary check in TestPERequirements causing failed PE dumps
+* Search by hash now will cover any file in CAPE that contains hash.
+    * It searches in binary/Dropped files/CAPE payloads/ProcessDump
+    * payloads: md5 <- as example not needed anymore and will be deprecated in next month
+
+### [08-08-2021]
+* Monitor update: debugger improvements
+* Loader: fix debug output for shellcode start address including offset
+* Allow start offsets into shellcode to be set for Shellcode packages (offset=x)
+
+### [07-08-2021]
+* Monitor update: fix issue causing occasional crashes on x64 when calling ScyllaGetExportDirectory on apphelp.dll
+* XLMMacroDeobfuscator moved to `on_demand`
+
+### [28-07-2021]
+* bzip archives was replaced with zip with password, default infected, can be changes in conf/web.conf -> zipped_download -> zip_pwd
+    * use 7zip or pyzipper to extract
+
+### [23-07-2021] Distribute task based on route
+* Add hability to have different exit nodes on each cape worker in cluster, that will auto pickup proper worker server based on route.
+    * To update current nodes details on main db server, do the request with pull request
+
+### [21-07-2021] [Xll support](https://www.fortinet.com/blog/threat-research/signed-sealed-and-delivered-signed-xll-file-delivers-buer-loader)
+* __ACTION REQUIRED__
+    * `poetry run pip install -U sflock2`
+
+### [07-07-2021] Signature testing
+* Allow to execute one specific signature, loading data from mongo or json report. Specially useful for signature based extractors.
+    * python3 utils/process.py -r ID -sig -sn cape_detected_threat
+
+### [06-07-2021] [Malduck](https://github.com/CERT-Polska/malduck)
+* Integration of part of [mwcfg-modules](https://github.com/c3rb3ru5d3d53c/mwcfg-modules) by [@c3rb3ru5d3d53c](https://github.com/c3rb3ru5d3d53c)
+
+### [05-07-2021]
+* Add support for archives in static extraction, so you don't need to submit them one by one
+
+### [20-06-2021] [enter the sandman](https://www.youtube.com/watch?v=CD-E-LDc384) @doomedraven moved to CAPEv2
+* Expect more fixes :)
+
+### [17-06-2021]
+* Updates to processing module & monitor to allow type strings to replace old type codes
+* Updates to 'dump' Debugger action
+* Hit counts added to debugger breakpoints
+
+### [17-06-2021]
+* add `username` field to be used for custom auth
+* __ACTION REQUIRED__ if you using dist.py
+    * `cd utils/db_migration && alembic upgrade head`
+
+### [13-06-2021]
+* Introdiced checker of available space in process.py to prevent system run out of memory and generate a lot of troubles
+
+### [10-06-2021] dist.py
+* Migrates from ht_user/ht_pass to apikey for proper apiv2 integration
+* __ACTION REQUIRED__ if you using dist.py
+    * `cd utils/db_migration_dist && alembic upgrade head`
+
+### [09-06-2021] RAMFS renamed to TMPFS
+* As TMPFS is better and modernish, and it was a naming typo
+
+```
+# only if you using volatility to speedup IO
+mkdir -p /mnt/tmpfs
+mount -t tmpfs -o size=50g tmpfs /mnt/tmpfs
+chown cape:cape /mnt/tmpfs
+vim /etc/fstab
+tmpfs       /mnt/tmpfs tmpfs   nodev,nosuid,noexec,nodiratime,size=50g   0 0
+```
+
+* [ORJson](https://pypi.org/project/orjson/) library is now used for json report if installed
+    * orjson is a fast JSON library for Python. It benchmarks as the fastest Python library for JSON. Its serialization performance is 2x to 3x the nearest other library and 4.5x to 11.5x the standard library.
+
+### [07-06-2021] MongoDB auth fixed
+* [Example of user/role creation](https://pymongo.readthedocs.io/en/stable/examples/authentication.html)
+```
+use admin
+
+# To Create root user
+use admin
+db.createUser(
+      {
+          user: "username",
+          pwd:  passwordPrompt(),   // or cleartext password
+          roles: [ "root" ]
+      }
+  )
+
+# To create user with perm RW on db
+db.createUser(
+    {
+        user: "WORKER_USERNAME",
+        pwd:  passwordPrompt(),   // or cleartext password
+        roles: [{ role: "readWrite", db: "cuckoo" }]
+    }
+)
+```
+
+### [06-06-2021] Ratelimit strikes again
+* Reintroduce ratelimit to control abuses
+
+### [04-06-2021]
+* Allow anon users list reports and view them
+    * `conf/web.conf ->  general -> anon_viewable`
+
+### [31-05-2021]
+* Monitor updates:
+    * Fixes for NtCreateProcessEx hook, regsvr32 arg parsing, branch tracing (debugger)
+    * Remove instruction filtering from ntdll protection
+    * Add more debug logging to YaraHarness
+
+### [15-05-2021]
+* Reports download moved to main page, under file info as Strings, VirusTotal, Mitre
+
+### [02-05-2021] [Square Hammer](https://youtu.be/VqoyKzgkqR4)
+* Add button to ban user and their pending tasks on admin tab
+    * __ACTION REQUIRED!__
+        * `cd utils/db_migration/ && alembic upgrade head`
+        * `sudo systemctl restart cape.service cape-web.service`
+
+### [01-05-2021]
+* Dirty cluster admin utils helper -> `admin/admin.py`, see `-h`
+
+### [28-04-2021]
+* Strings tab are under the file info on main page
+* VirusTotal tab are also under the file info on main page
+* VT apiv3 integrated
+
 ### [23-04-2021]
 * Pyattck v3.0.1 support
 * If you are using alternative location to `/opt/CAPEv2` and wants to use `MITRE TTPs` next action is required:
@@ -14,13 +1208,13 @@
 
 ### [06-04-2021] Small performance improvements
 * New dependecy `ujson`
-    * __REQUIRED ACTION:__ -> `pip3 install ujson -U`
+    * __REQUIRED ACTION:__ -> `poetry run pip install ujson -U`
 
 
-### [23-03-2021] API Suscription
+### [23-03-2021] API Subscription
 * Default 5/m, it can be changed using Django Admin in user profile. ratelimit is deprecated
 * This was done with huge help from those writeups
-    - [How to add susctiption based throtting to django](https://dev.to/mattschwartz/how-to-add-subscription-based-throttling-to-a-django-api-28j0)
+    - [How to add subscription based throtting to django](https://dev.to/mattschwartz/how-to-add-subscription-based-throttling-to-a-django-api-28j0)
     - [How to add custom fields to user profile](https://simpleisbetterthancomplex.com/tutorial/2016/11/23/how-to-add-user-profile-to-django-admin.html)
 
 * __REQUIRED ACTION:__ -> `cd web && python3 manage.py migrate`
@@ -29,19 +1223,19 @@
 ### [09-02-2021] Registration more configrations
 * Allow enable/disable all new users to activate them by hand
 * Disable new users after email verification if set `manual_approve` in `conf/web.conf`
-* __REQUIRED ACTION:__ -> `pip3 install django-extensions`
+* __REQUIRED ACTION:__ -> `poetry run pip install django-extensions`
 
 ### [05-02-2021] Volatility3 integration done, some future optimizations might come later
 * ToDo: pass yara file to exec yarascan
 * Thanks to Xabier Ugarte-Pedrero and dadokkio for their work
-* `pip3 install volatility3`, then check
+* `poetry run pip install volatility3`, then check
     * `conf/processing.conf` -> `[memory]`
     * `conf/memory.conf` for the plugins
 
 * You will need to download `symbols`, see [volatility3 readme for details](https://github.com/volatilityfoundation/volatility3)
 
 ### [03-02-2021]
-* ratelimit 4 upgrade -> `pip3 install django-ratelimit -U`
+* ratelimit 4 upgrade -> `poetry run pip install django-ratelimit -U`
 
 ### [02-02-2021]
 * Link task to user_id, to be able to ban spammers and bad users
@@ -54,7 +1248,7 @@
     * just replace `/api/` to `/apiv2/` in your urls
 * Current API will be removed in future, so move toward new one
 * Updated API [documentation](https://capev2.readthedocs.io/en/latest/usage/api.html)
-* New dependency: `pip3 install djangorestframework`
+* New dependency: `poetry run pip install djangorestframework`
 * __REQUIRED ACTION:__ -> `cd /opt/CAPEv2/web/`
     * `python3 manage.py migrate && python3 manage.py collectstatic`
 
@@ -74,7 +1268,7 @@
 ### [14-01-2021] [Headers Quality](https://adamj.eu/tech/2019/04/10/how-to-score-a+-for-security-headers-on-your-django-website/)
 * [Content Security Policy](https://www.laac.dev/blog/content-security-policy-using-django/) - [writeup](https://www.laac.dev/blog/content-security-policy-using-django/)
 * [2FA for Django Admin](https://hackernoon.com/5-ways-to-make-django-admin-safer-eb7753698ac8)
-* New dependency: `pip3 install django-otp qrcode`
+* New dependency: `poetry run pip install django-otp qrcode`
  __REQUIRED ACTION:__ -> `cd /opt/CAPEv2/web/`
     * `python3 manage.py migrate` if no you will get `no such table: otp_totp_totpdevice`
 
@@ -82,12 +1276,12 @@
 * Adding [bootstrap-social](https://github.com/peterblazejewicz/bootstrap-social) to simplify sign buttons integration
 * Move SSO providers config to from `web/web/settings.py` to `web/web/local_settings.py`
 * `[oauth]` added to `conf/web.conf` for future on/off of the buttons
-* New dependency: `pip3 install django-settings-export`
+* New dependency: `poetry run pip install django-settings-export`
 
 ### [10-01-2020] Scrappers&Bots nightmare :)
 * Add Web signup/SSO, email verification - [more details](https://django-allauth.readthedocs.io/en/latest/overview.html) - Amazing [writeup](https://www.theophilusn.com/blog/django-with-bootstrap-4) was used for integration
 * [ReCaptcha protected admin](https://github.com/axil/django-captcha-admin/)
-* New dependencies -> `pip3 install django-allauth django-recaptcha==2.0.6 django-crispy-forms git+https://github.com/CAPESandbox/httpreplay.git`
+* New dependencies -> `poetry run pip install django-allauth django-recaptcha==2.0.6 django-crispy-forms git+https://github.com/CAPESandbox/httpreplay.git`
 * __REQUIRED ACTION:__ -> `cd /opt/CAPEv2/web/`
     * `python3 manage.py migrate` if no you will get `No such table as django_site`
     * `python3 manage.py collectstatic` -> to enable django admin css -> requires web/web/local_settings.py modifiy `STATIC_ROOT`
diff --git a/conf/copy_configs.sh b/conf/copy_configs.sh
new file mode 100644
index 00000000000..62fdf606b33
--- /dev/null
+++ b/conf/copy_configs.sh
@@ -0,0 +1,5 @@
+#!/bin/bash
+
+for filename in conf/default/*.conf.default; do
+    cp -vf "./$filename" "./$(echo "$filename" | sed -e 's/.default//g' | sed -e 's/default//g')";
+done
diff --git a/conf/api.conf b/conf/default/api.conf.default
similarity index 87%
rename from conf/api.conf
rename to conf/default/api.conf.default
index 5f5ea939166..a86be5729d8 100644
--- a/conf/api.conf
+++ b/conf/default/api.conf.default
@@ -1,15 +1,21 @@
 [api]
 # IP-based rate limiting
 ratelimit = yes
+
+# Default throttle limits at the user and subscription-level.
+# token_auth_enabled must be enabled
+default_user_ratelimit = 5/m
+default_subscription_ratelimit = 5/m
+
 # IP/Domain to be used for help page + callback URL's
 url = http://example.tld
 
-# Only for /api/, if user exist, means unlimited api, will be depricated soon
-users_db = /etc/nginx/.htpasswd
-
-# APIv2 - Enable token autorization?
+# APIv2 - Enable token autorization? User limit settings at http://127.0.0.1:8000/admin/auth/user/
 token_auth_enabled = no
 
+[list_exitnodes]
+enabled = no
+
 # Details about N of tasks(reported/failed) and time spend on each module
 [statistics]
 enabled = no
@@ -69,8 +75,7 @@ status = yes
 rps = 1/s
 rpm = 2/m
 
-# Submit VTDL tasks to Cuckoo.
-[vtdl]
+[downloading_services]
 enabled = no
 auth_only = no
 allmachines = no
@@ -142,6 +147,13 @@ auth_only = no
 rps = 1/s
 rpm = 5/m
 
+# Configure the ability to reprocess a task.
+[taskreprocess]
+enabled = no
+auth_only = no
+rps = 1/s
+rpm = 5/m
+
 # Configure the ability to delete a specified Task ID.
 [taskdelete]
 enabled = no
@@ -192,6 +204,20 @@ auth_only = no
 rps = 1/s
 #rpm = 10/m
 
+# Pull a PCAP from a specific task
+[tasktlspcap]
+enabled = yes
+auth_only = no
+rps = 1/s
+#rpm = 10/m
+
+# Pull a EVTX from a specific task
+[taskevtx]
+enabled = yes
+auth_only = no
+rps = 1/s
+#rpm = 10/m
+
 # Pull the dropped files from a specific task
 [taskdropped]
 enabled = yes
@@ -232,6 +258,10 @@ compress = no
 rps = 1/s
 rpm = 2/m
 
+# Pull a HAR file from a specific task with mitmdump enabled
+[taskmitmdump]
+enabled = no
+
 # Download a sample from a specific Task ID.
 [sampledl]
 enabled = no
@@ -334,3 +364,13 @@ enabled = no
 auth_only = no
 rps = 1/s
 rpm = 4/m
+
+# Allow to request stop of the analysis inside of the VM
+[user_stop]
+enabled = no
+
+[mitmdump]
+enabled = no
+auth_only = no
+rps = 1/s
+rpm = 4/m
diff --git a/conf/auxiliary.conf b/conf/default/auxiliary.conf.default
similarity index 57%
rename from conf/auxiliary.conf
rename to conf/default/auxiliary.conf.default
index a66b0caf88f..94a5707242b 100644
--- a/conf/auxiliary.conf
+++ b/conf/default/auxiliary.conf.default
@@ -15,11 +15,43 @@
 # reg add "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\PowerShell\Transcription" /v OutputDirectory /t REG_SZ /d C:\PSTranscipts /f /reg:64
 # reg add "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\PowerShell\Transcription" /v EnableInvocationHeader /t REG_DWORD /d 00000001 /f /reg:64
 
-#Modules to be enabled or not inside of the VM
-[auxiliar_modules]
+# Modules to be enabled or not inside of the VM
+[auxiliary_modules]
+amsi = no
+browser = yes
 curtain = no
-sysmon = no
+digisig = yes
+disguise = yes
+# This is only useful in case you use KVM's dnsmasq. You need to set windows_static_route_gateway. Disguise must be enabled
+windows_static_route = no
+windows_static_route_gateway = 192.168.1.1
+evtx = no
+human_windows = yes
+human_linux = no
 procmon = no
+recentfiles = no
+screenshots_windows = yes
+screenshots_linux = yes
+sysmon_windows = no
+sysmon_linux = no
+tlsdump = yes
+usage = no
+file_pickup = no
+permissions = no
+pre_script = no
+during_script = no
+filecollector = yes
+tracee_linux = no
+sslkeylogfile = no
+# Requires setting up browser extension, check extra/browser_extension
+browsermonitor = no
+wmi_etw = no
+dns_etw = no
+watchdownloads = no
+
+[AzSniffer]
+# Enable or disable the use of Azure Network Watcher packet capture feature, disable standard sniffer if this is in use to not create concurrent .pcap files
+enabled = no
 
 [sniffer]
 # Enable or disable the use of an external sniffer (tcpdump) [yes/no].
@@ -31,7 +63,7 @@ host = root@192.168.122.1
 
 # Specify the path to your local installation of tcpdump. Make sure this
 # path is correct.
-tcpdump = /usr/sbin/tcpdump
+tcpdump = /usr/bin/tcpdump
 
 # Specify the network interface name on which tcpdump should monitor the
 # traffic. Make sure the interface is active.
@@ -45,36 +77,19 @@ bpf = not arp
 #RTR2 = 192.168.1.1
 #INETSIM = 192.168.1.2
 
-[virustotaldl]
-# adds an option in the web interface to upload samples via VirusTotal
-# downloads for a comma-separated list of MD5/SHA1/SHA256 hashes
-enabled = no
-# note that unlike the VirusTotal processing module, the key required
-# here is a Intelligence API key, not a Public API key
-#dlintelkey = SomeKeyWithDLAccess
-dlpath = /tmp/
-
-# Web UI settings
-
-[display_browser_martians]
-enabled = no
-
-[display_office_martians]
-enabled = no
-
-[display_shrike]
-enabled = no
-
-[expanded_dashboard]
-# displays package, custom field, malfamily, clamav, PCAP link, and extended suricata results
-enabled = no
-
-[display_et_portal]
+[QemuScreenshots]
+# Enable or disable the use of QEMU as screenshot capture [yes/no].
+# screenshots_linux and screenshots_windows must be disabled
 enabled = no
 
-[display_pt_portal]
+[Mitmdump]
+# Enable or disable the use of mitmdump (mitmproxy) to get dump.har [yes/no].
+# This module requires mitmproxy to be installed see install_mitmproxy
+# (https://github.com/kevoreilly/CAPEv2/blob/master/installer/cape2.sh#L1320)
 enabled = no
 
-[zipped_download]
+[PolarProxy]
+# Enable or disable the use of PolarProxy to get dump.pcap with decrypted TLS streams [yes/no].
+# This module requires PolarProxy to be installed see install_polarproxy.
+# Use add the options "polarproxy=1" when submitting a sample.
 enabled = no
-zip_pwd = infected
diff --git a/conf/default/aws.conf.default b/conf/default/aws.conf.default
new file mode 100644
index 00000000000..9ea9a8f2c1a
--- /dev/null
+++ b/conf/default/aws.conf.default
@@ -0,0 +1,139 @@
+# https://y4nush.com/posts/installation-of-capev2-sandbox-on-aws/
+
+[aws]
+# Specify the AWS Region (for example, us-west-1)
+region_name = us-east-1
+
+# Specify the Availability Zone(for example, us-west-1a) to create a new volume (used at machine's restoration).
+availability_zone = us-east-1a
+
+# Access keys consist of two parts: an access key ID (for example, AKIAIOSFODNN7EXAMPLE)
+# and a secret access key (for example, wJalrXUtnFEMI/K7MDENG/bPxRfiCYEXAMPLEKEY).
+# To create access keys for your AWS account root user, you must use the AWS Management Console.
+# There is an option to attach an IAM role directly to the instance itself, instead of providing access and secret keys.
+# If access and secret keys are not provided, the machinery module will attempt to authenticate using IMDS.
+aws_access_key_id = AWS_ACCESS_KEY
+aws_secret_access_key = AWS_SECRET_KEY
+
+# Specify a comma-separated list of available machines to be used.
+# Each machine will be represented by the instance-id (for example, i-05f07711c635f817f).
+# For each specified instance-id you have to define a dedicated section containing the details
+# on the respective machine. (E.g. i-05f07711c635f817f,i-04d465547cba1af5e)
+# For better performance, it is recommended to leave this empty and set autoscale = yes.
+machines =
+
+# Default network interface.
+interface = eth0
+
+# To improve the performance, running_machines_gap is number of machines that are ready to perform a task (up and running).
+# running_machines_gap is the size of a pool which contains machines that were already started in advance.
+# Whenever a machine from the pool starts a task, the machinery will start another new machine.
+# In a scenario where all the list of machines are occupied, and autoscale mode is on, the machinery will instantly
+# scale up by creating new machines.
+# Thus, there will always be a constant number of ready machines for the user's requests.
+# It is recommended to set this value to 1 and above.
+running_machines_gap = 1
+
+# In a scenario where all the configured machines are occupied, the machinery will instantly scale up by creating
+# new machines and adding them to the Cuckoo internal database (DB). The new machines will be terminated after use.
+# The user can choose to prepare any number of machines, but does not have to (if autoscale in on).
+[autoscale]
+
+# Enable auto-scale in cuckoo(by setting autoscale = yes). recommended for better performance.
+autoscale = yes
+
+# Specify the maximum number of online machines that was created as a result of auto-scale operation.
+# Once reaching that limit, cuckoo will create a new machine only if another was terminated.
+# This limit prevents a situation of creating machine beyond the subnet capacity.
+dynamic_machines_limit = 2
+
+# Specify the Amazon Machine Image (AMI). It required to launch a new instance.
+# You should create an image from the guest machine.
+image_id = ami-abcdefgh123456789
+
+# Specify the machine's instance type(for example, t2.small)
+instance_type = t2.medium
+
+# Specify the subnet id where the machines will be placed
+subnet_id = subnet-abcd1234
+
+# Specify a comma-separated list of security groups IDs that will be associated with the machines.
+# On the Cuckoo default settings ,the security groups must allow tcp ports 2042,8000 and 8090 on the inbound.
+security_groups = sg-abcdefgh123456789
+
+# Specify the operating system platform used by the new machine
+# [windows/darwin/linux].
+platform = windows
+
+# Default network interface.
+# interface =
+
+# Mostly unused for now. Please don't fill it out.
+# options =
+
+# (Optional) Set your own tags. These are comma separated and help to identify
+# specific VMs. You can run samples on VMs with tag you require.
+# tags =
+
+# Specify the IP of the Result Server, as your virtual machine sees it.
+# It should be the nest ip address.
+# resultserver_ip =
+
+# Specify a port number to bind the result server on.
+# resultserver_port = 2042
+
+# Set the machine architecture
+# Required to auto select proper machine architecture for sample
+# x64 or x86
+arch = x64
+
+
+# This section is just a template for one pre-configured machine, if you choose to use it.
+# For better performance, it is best to leave it blank and let the auto-scaling to control the machines.
+
+[i-0123456789abcdef]
+# Specify the label name.
+# Label would be the instance-id of the current machine as specified in your AWS account.
+label = i-0123456789abcdef
+
+# Specify the operating system platform used by current machine
+# [windows/darwin/linux].
+platform = windows
+
+# Specify the IP address of the current virtual machine. Make sure that the
+# IP address is valid and that the host machine is able to reach it. If not,
+# the analysis will fail.
+# ip =
+
+# Specify the snapshot-id to use. it is used when creating a new volume when restoring a machine.
+# You should create a snapshot from the guest machine.
+snapshot =
+
+# (Optional) Specify the name of the network interface that should be used
+# when dumping network traffic from this machine with tcpdump. If specified,
+# overrides the default interface specified above.
+# Example (eth0 is the interface name):
+# interface =
+
+# (Optional) Specify the IP of the Result Server, as your virtual machine sees it.
+# The Result Server will always bind to the address and port specified in cuckoo.conf,
+# however you could set up your virtual network to use NAT/PAT, so you can specify here
+# the IP address for the Result Server as your machine sees it. If you don't specify an
+# address here, the machine will use the default value from cuckoo.conf.
+# NOTE: if you set this option you have to set result server IP to 0.0.0.0 in cuckoo.conf.
+# Example:
+# resultserver_ip =
+
+# (Optional) Specify the port for the Result Server, as your virtual machine sees it.
+# The Result Server will always bind to the address and port specified in cuckoo.conf,
+# however you could set up your virtual network to use NAT/PAT, so you can specify here
+# the port for the Result Server as your machine sees it. If you don't specify a port
+# here, the machine will use the default value from cuckoo.conf.
+# resultserver_port =
+
+# (Optional) Set your own tags. These are comma separated and help to identify
+# specific VMs. You can run samples on VMs with tag you require.
+# tags =
+
+# Mostly unused for now. Please don't fill it out.
+# options =
diff --git a/conf/default/az.conf.default b/conf/default/az.conf.default
new file mode 100644
index 00000000000..de670f30312
--- /dev/null
+++ b/conf/default/az.conf.default
@@ -0,0 +1,163 @@
+[az]
+# Specify the Azure Region (for example, CanadaCentral). This is case-sensitive
+region_name = <region_name>
+
+# Resource Groups for Azure
+# The service principal that controls the Azure resources should have READ
+# access on the virtual network where it lives, which should be in a different resource
+# group than where the sandbox resources live.
+vnet_resource_group = <resource_group>
+sandbox_resource_group = <resource_group>
+
+#Sniffer configurations
+# New sniffer logic implementing Azure Watchers packet capture with either local or blob storage file locations 
+# the configurations for AzSniffer module will be used to create the dump.pcap file needed for network analysis when using Azure VMSS for Guest VMs
+resource_group = 
+#Storage account where the .cap  file will be placed by the Azure Packet Capture, soon the local file path logic will be implemented too 
+storage_account = 
+vmss_name = 
+#location of the network watcher (region name)
+location =  
+tenant_id = 
+client_secret = 
+connection_string =
+
+# Subscription ID for Azure
+subscription_id = <subscription_id>
+
+# Client ID for Azure
+client_id = <client_id>
+
+# Secret for Azure (fill if you are authenthicating with secrets)
+secret = <secret>
+
+# Certificate for Azure (fill if your are authenthicating with certificate)
+certificate_path = <certificate_path>
+certificate_password = <certificate_password>
+
+# Tenant for Azure
+tenant = <tenant>
+
+# Default network interface.
+interface = eth1
+
+# Virtual Network containing Cuckoo host and guests
+vnet = <vnet>
+
+# Subnet within virtual network for Cuckoo containing the guests and the interface of the
+# host where the resultserver is listening
+subnet = <subnet>
+
+# This is the limit to the number of machines that can exist in a scale set
+scale_set_limit = 20
+
+# Specify the maximum number of online machines that was created as a result of auto-scale operation.
+# Once reaching that limit, cuckoo will create a new machine only if another was terminated.
+# This limit prevents a situation of creating machine beyond the subnet capacity.
+total_machines_limit = 50
+
+# Specify the machine's instance type(for example, Standard_F2s_v2, Standard_DS3_v2)
+instance_type = <instance_type>
+
+# Determines which type of ephemeral os disk to use. Be sure to research which machine supports which type and at what sizes.
+# Possible values are CacheDisk, ResourceDisk, and NvmeDisk. Defaults to CacheDisk
+# https://learn.microsoft.com/en-us/rest/api/compute/virtual-machines/list?view=rest-compute-2024-03-02&tabs=HTTP#diffdisksettings
+ephemeral_os_disk_placement =
+
+# This boolean flag is used to indicate if we want to programmatically determine how many cores are used
+# per VM of the instance_type mentioned above.
+# NOTE: If enabled, this is a long call that takes ~ 1 minute to complete. It takes place at
+# the initialization of the machinery. If disabled, you need to specify the instance_type_cores below.
+find_number_of_cores_for_sku = true
+
+# The number of cores (vCPUs) that a VM of the instance_type mentioned above uses.
+# If find_number_of_cores_for_sku is enabled, this value will be ignored.
+# Set to 0 if you want to programmatically determine this value.
+# See note above. Otherwise, set to an integer.
+# For example for the instance_type Standard_F2s_v2, there are 2 cores per VM so the value for
+# instance_type_cores should be 2.
+instance_type_cores = 0
+
+# Specify the IP of the Result Server, as your virtual machine sees it.
+# It should be the nest ip address.
+resultserver_ip = <resultserver_ip>
+
+# Specify a port number to bind the result server on.
+resultserver_port = 2042
+
+# Specify the shared gallery name to use.
+gallery_name = <gallery_name>
+
+# Specify the storage account type for the OS disk (for example, Standard_LRS)
+storage_account_type = <storage_account_type>
+
+# Reset pool size to initial_pool_size on CAPE restart
+reset_pool_size = true
+
+# Specify a comma-separated list of scale sets to be used, either available or to be created.
+# For each specified ID you have to define a dedicated section containing the details
+# about the respective scale set. (E.g. cuckoo1,cuckoo2,cuckoo3)
+# NOTE: NO SPACES
+scale_sets = cuckoo1
+
+# A percentage to be used for overprovisioning a scale set. To disable overprovisiong, set to 0
+overprovision = 0
+
+# This time, in seconds, is used to build up a queue of machines that need to be reimaged,
+# such that we can perform bulk reimaging.
+wait_time_to_reimage = 4
+
+# This time, in seconds, is the wait between checking if VMSSs should be scaled up/down.
+monitor_rate = 300
+
+# This boolean value is used to indicate if we want to use Azure Spot instances rather than
+# normal instances
+spot_instances = false
+
+quota_name = MyQuota
+# This value is used to set the number of machines that will be reserved outside the scale set (deducted from the quota). 
+quota_machine_exclusion = 5
+
+# This boolean value is used to indicate if we want to wait for each VM to have its agent running before we
+# start pulling tasks off of the stack
+wait_for_agent_before_starting = true
+
+# This integer value is used to determine how many times a VMSS that does not initialize properly can retry
+init_retries = 2
+
+# These are the value(s) of the DNS server(s) that you want the scale sets to use. (E.g. 1.1.1.1,8.8.8.8)
+# NOTE: NO SPACES
+dns_server_ips = <dns_server_ip>
+
+# This is the number of seconds that we should wait between checking if there are relevant tasks for a VMSS in the queue
+scale_down_polling_period = 1
+
+# This is switch used for machinery debugging/development, and should only be set to "true" in these scenarios
+just_start = false
+
+# This flag is used to indicate if VMSSs not associated with this particular CAPE deployment should be deleted if they
+# exist in the same sandbox_resource_group and contain the same AUTO_SCALE_CAPE KEY and VALUE.
+# If you have multiple CAPE deployments in the same sandbox_resource_group, set this to "true".
+# This is useful to set to "false" if you have leftover VMSSs from previous CAPE runs from your single deployment
+# that have different names from the current run. It doesn't happen often, but it could!
+multiple_capes_in_sandbox_rg = false
+
+[cuckoo1]
+# The gallery image name to use when creating the virtual machine scale set.
+gallery_image_name = <gallery_image_name>
+
+# Specify the operating system platform used by the virtual machines in the scale set
+# [windows/darwin/linux].
+platform = windows
+
+# Set the machine architecture
+# Required to auto select proper machine architecture for sample
+# x64 or x86
+arch = x64
+
+# A tag used to specify on which guest scale set a sample should be run. All
+# virtual machines in this scale set will have this tag
+pool_tag = <tag>
+
+# Initial virtual machine pool size for scale set. This should be a positive integer.
+initial_pool_size = 1
diff --git a/conf/cuckoo.conf b/conf/default/cuckoo.conf.default
similarity index 62%
rename from conf/cuckoo.conf
rename to conf/default/cuckoo.conf.default
index a022b023544..a0da4fb527b 100644
--- a/conf/cuckoo.conf
+++ b/conf/default/cuckoo.conf.default
@@ -1,5 +1,11 @@
 [cuckoo]
 
+# Ignore Signals, will quit CAPE inmediatelly instead wait jobs to finish
+ignore_signals = yes
+
+# Which category of tasks do you want to analyze?
+categories = static, pcap, url, file
+
 # If turned on, Cuckoo will delete the original file after its analysis
 # has been completed.
 delete_original = off
@@ -18,6 +24,23 @@ delete_bin_copy = off
 # of choice.
 machinery = kvm
 
+# Enable screenshots of analysis machines while running.
+machinery_screenshots = off
+
+# Specify if a scaling bounded semaphore should be used by the scheduler for tasking the VMs.
+# This is only applicable to auto-scaling machineries such as Azure and AWS.
+# There is a specific configuration key in each machinery that is used to initialize the semaphore.
+# For Azure, this configuration key is "total_machines_limit"
+# For AWS, this configuration key is "dynamic_machines_limit"
+scaling_semaphore = off
+# A configurable wait time between updating the limit value of the scaling bounded semaphore
+scaling_semaphore_update_timer = 10
+
+# Specify a timeout for tasks, useful if you are bound to timely reports awaited by users
+task_timeout = off
+task_pending_timeout = 0
+task_timeout_scan_interval = 30
+
 # Enable creation of memory dump of the analysis machine before shutting
 # down. Even if turned off, this functionality can also be enabled at
 # submission. Currently available for: VirtualBox and libvirt modules (KVM).
@@ -32,6 +55,11 @@ terminate_processes = off
 # Each task found in status "processing" is re-queued for analysis.
 reschedule = off
 
+# Fail "unserviceable" tasks as they are queued.
+# Any task found that will never be analyzed based on the available analysis machines
+# will have its status set to "failed".
+fail_unserviceable = on
+
 # Limit the amount of analysis jobs a Cuckoo process goes through.
 # This can be used together with a watchdog to mitigate risk of memory leaks.
 max_analysis_count = 0
@@ -44,13 +72,23 @@ max_machines_count = 10
 # Limit the amount of VMs that are allowed to start in parallel. Generally
 # speaking starting the VMs is one of the more CPU intensive parts of the
 # actual analysis. This option tries to avoid maxing out the CPU completely.
+# This configuration option is only relevant for machineries that have a set
+# amount of VMs and are restricted by CPU usage.
+# If you are using an auto-scaling machinery such as Azure or AWS,
+# set this value to 0.
 max_vmstartup_count = 5
 
+# Allow to schedule and analyze static jobs while all VMs are busy
+# it doesn't require VM, but by default logic it will be on hold
+allow_static = no
+
 # Minimum amount of free space (in MB) available before starting a new task.
 # This tries to avoid failing an analysis because the reports can't be written
 # due out-of-diskspace errors. Setting this value to 0 disables the check.
 # (Note: this feature is currently not supported under Windows.)
 freespace = 50000
+# Process tasks, but not reach out of memory
+freespace_processing = 15000
 
 # Temporary directory containing the files uploaded through Cuckoo interfaces
 # (web.py, api.py, Django web interface).
@@ -67,6 +105,20 @@ daydelta = 0
 # Path to the unix socket for running root commands.
 rooter = /tmp/cuckoo-rooter
 
+# Enable if you want to see a DEBUG log periodically containing backlog of pending tasks, locked vs unlocked machines.
+# NOTE: Enabling this feature adds 4 database calls every 10 seconds.
+periodic_log = off
+
+# Max filename length for submissions, before truncation. 196 is arbitrary.
+max_len = 196
+
+# If it is greater than this, call truncate the filename further for sanitizing purposes.
+# Length truncated to is controlled by sanitize_to_len.
+#
+# This is to prevent long filenames such as files named by hash.
+sanitize_len = 32
+sanitize_to_len = 24
+
 [resultserver]
 # The Result Server is used to receive in real time the behavioral logs
 # produced by the analyzer.
@@ -94,16 +146,16 @@ store_csvs = off
 # The value is expressed in bytes, by default 100MB.
 upload_max_size = 100000000
 
+# To enable trimming of huge binaries go to -> web.conf -> general -> enable_trim
+# Prevent upload of files that passes upload_max_size?
+do_upload_max_size = no
+
 [processing]
 # Set the maximum size of analyses generated files to process. This is used
 # to avoid the processing of big files which may take a lot of processing
 # time. The value is expressed in bytes, by default 200MB.
 analysis_size_limit = 200000000
 
-# The number of calls per process to process. 0 switches the limit off.
-# 10000 api calls should be processed in less than 2 minutes
-analysis_call_limit = 0
-
 # Enable or disable DNS lookups.
 resolve_dns = on
 
@@ -111,10 +163,6 @@ resolve_dns = on
 # This information currently is not displayed in the web interface
 reverse_dns = off
 
-# Use ram to boost processing speed. You will need more than 20GB of RAM for this feature.
-# Please read "performance" section in the documentation.
-ram_boost = no
-
 # Enable PCAP sorting, needed for the connection content view in the web interface.
 sort_pcap = on
 
@@ -125,13 +173,20 @@ sort_pcap = on
 # postgresql://foo:bar@localhost:5432/mydatabase
 # mysql://foo:bar@localhost/mydatabase
 # If empty, default is a SQLite in db/cuckoo.db.
-# For production we strongly suggest go with PostgreSQL
+# SQLite doens't support database upgrades!
+# For production we strongly suggest go with PostgreSQL
 connection =
+# If you use PostgreSQL: SSL mode
+# https://www.postgresql.org/docs/current/libpq-ssl.html#LIBPQ-SSL-SSLMODE-STATEMENTS
+psql_ssl_mode = disable
 
 # Database connection timeout in seconds.
 # If empty, default is set to 60 seconds.
 timeout =
 
+# Log all SQL statements issued to the database.
+log_statements = off
+
 [timeouts]
 # Set the default analysis timeout expressed in seconds. This value will be
 # used to define after how many seconds the analysis will terminate unless
@@ -149,20 +204,32 @@ critical = 60
 # shutting down a vm. Default is 300 seconds.
 vm_state = 300
 
-[logging]
-# Allows to activate log rotate for cuckoo.log and process.log
-enabled = on
-# Keep 30 days logs
-backup_count = 30
-
-[ramfs]
-# only if you using volatility for conf extraction
-# mkdir -p /mnt/ramfs
-# mount -t ramfs -o size=50g ramfs /mnt/ramfs
-# chown cuckoo:cuckoo /mnt/ramfs
-# vim /etc/fstab
-# ramfs       /mnt/ramfs ramfs   nodev,nosuid,noexec,nodiratime,size=50g   0 0
+[tmpfs]
+# only if you using volatility to speedup IO
+# mkdir -p /mnt/tmpfs
+# mount -t tmpfs -o size=50g ramfs /mnt/tmpfs
+# chown cape:cape /mnt/tmpfs
+#
+# vim /etc/fstab
+# tmpfs       /mnt/tmpfs tmpfs   nodev,nosuid,noexec,nodiratime,size=50g   0 0
+#
+# Add crontab with
+# @reboot chown cape:cape /mnt/tmpfs -R
 enabled = off
-path = /mnt/ramfs/
-# in mb
+path = /mnt/tmpfs/
+# in mb
 freespace = 2000
+
+[cleaner]
+# Invoke cleanup if <= of free space detected. see/set freespace/freespace_processing
+# format is 1d, 12h, 120m
+enabled = no
+# set any value to 0 to disable it. In days
+binaries = 0
+tmp = 0
+# Remove analysis folder
+analysis = 0
+# Delete mongo data
+mongo = no
+# Clean orphan files in mongodb
+unused_files_in_mongodb = no
diff --git a/conf/cuckoomx.conf b/conf/default/cuckoomx.conf.default
similarity index 99%
rename from conf/cuckoomx.conf
rename to conf/default/cuckoomx.conf.default
index 1df23296607..fcfb45779f5 100644
--- a/conf/cuckoomx.conf
+++ b/conf/default/cuckoomx.conf.default
@@ -6,4 +6,3 @@ password = cuckoo
 db = sqlite:///cuckoomx.db
 archive_password = infected
 cuckoo_url = http://host/analysis/
-
diff --git a/conf/default/distributed.conf.default b/conf/default/distributed.conf.default
new file mode 100644
index 00000000000..d12d1999c80
--- /dev/null
+++ b/conf/default/distributed.conf.default
@@ -0,0 +1,44 @@
+[distributed]
+enabled = no
+# Only save reports without analyze samples
+master_storage_only = no
+remove_task_on_worker = no
+# Remove failed job on workers
+failed_clean = no
+# Distributed CAPE database, to store nodes and tasks info.
+# For production use PostgresSQL. Sqlite is DEV ONLY
+db = sqlite:///dist.db
+# Tries before declare node as dead and deactivate it
+dead_count = 5
+# number of threads witch will retrieve files
+dist_threads = 4
+# Enable server side VMs tags filtering
+enable_tags = no
+# Fetch data over REST API or NFS, see docs how to setup NFS
+# NFS is ultra fast comparing to restapi.
+# Disable both if you don't need to fetch data from workers
+restapi = no
+nfs = no
+# Do not copy from workers following folders and files:
+ignore_patterns = binary, dump_sorted.pcap, memory.dmp, logs
+main_server_name = master
+
+[NFS]
+# Path will be $CAPE_ROOT/$nfs_mount_folder. Ex: /opt/CAPEv2/workers
+mount_folder = workers
+fstab_socket = /tmp/cape-fstab
+
+# Google Cloud Platform
+[GCP]
+enabled = no
+# Comma separated list of zones
+zones = ""
+project_id = ""
+# rest usage instead of GCP python client
+# https://cloud.google.com/docs/authentication/rest
+# gcloud auth print-access-token
+token = ""
+# Seconds between try to discoverd new instances
+autodiscovery = 600
+# Instances should start with following name pattern
+instance_name = cape-server
diff --git a/conf/esx.conf b/conf/default/esx.conf.default
similarity index 86%
rename from conf/esx.conf
rename to conf/default/esx.conf.default
index 1b9e2501c7f..8543836fc7e 100644
--- a/conf/esx.conf
+++ b/conf/default/esx.conf.default
@@ -29,12 +29,12 @@ ip = 192.168.122.105
 # Specify the snapshot name to use.
 snapshot = clean_snapshot
 
-# x64 binaries requires tags=x64
-# (Optional but IMPORTANT) Set your own tags. These are comma separated and help to identify
-# specific VMs. You can run samples on VMs with tag you require.
-# Note that the 64_bit tag is currently special.  For submitted 64-bit PE files,
-# the 64_bit tag will automatically be added, forcing them to be run on a 64-bit
-# VM.  For this reason, make sure all 64-bit VMs have the 64_bit tag.
+# Set the machine architecture
+# Required to auto select proper machine architecture for sample
+# x64 or x86
+arch = x86
+
+# VM.  For this reason, make sure all 64-bit VMs have the x64 tag.
 # tags = windows_xp_sp3,32_bit,acrobat_reader_6
 
 # (Optional) Specify the name of the network interface that should be used
diff --git a/conf/default/externalservices.conf.default b/conf/default/externalservices.conf.default
new file mode 100644
index 00000000000..4966701940b
--- /dev/null
+++ b/conf/default/externalservices.conf.default
@@ -0,0 +1,10 @@
+[misp]
+enabled = no
+url =
+apikey =
+hash_lookup = no
+
+# Register for API Account at www.whoisxmlapi.com is able to retrieve the API Key
+[whoisxmlapi]
+enabled = no
+apikey =
diff --git a/conf/default/gcp.conf.default b/conf/default/gcp.conf.default
new file mode 100644
index 00000000000..5425c07c6c7
--- /dev/null
+++ b/conf/default/gcp.conf.default
@@ -0,0 +1,63 @@
+[gcp]
+# Specify the Google Cloud Zone (for example, europe-north2-a). This is case-sensitive
+zone = <zone_name>
+
+# Specify the project identifier
+project = <project_id>
+
+# Running in a GCP environment. If true, the Compute Engine credentials will be used
+running_in_gcp = true
+
+# Specify the path to the service account key file. If not specified, the default service account will be used
+service_account_path =
+
+# Specify a comma-separated list of available machines to be used.
+# Each machine will be represented by the instance-name (for example, cape-server-windows).
+# For each specified instance-name you have to define a dedicated section containing the details
+# on the respective machine. (E.g. cape-server-windows,cape-server-linux)
+# For better performance, it is recommended to leave this empty and set autoscale = yes.
+machines =
+
+[cape-server-linux]
+# Specify the label name.
+# Label would be the instance-name of the current machine as specified in your GCP account.
+label = cape-server-linux
+
+# Specify the operating system platform used by current machine
+# [windows/darwin/linux].
+platform = linux
+
+# Set the machine architecture
+# x64 or x86
+arch = x64
+
+# Specify the IP address of the current virtual machine. Make sure that the
+# IP address is valid and that the host machine is able to reach it. If not,
+# the analysis will fail.
+# ip =
+
+# (Optional) Specify the name of the network interface that should be used
+# when dumping network traffic from this machine with tcpdump. If specified,
+# overrides the default interface specified above.
+# Example (eth0 is the interface name):
+# interface =
+
+# (Optional) Specify the IP of the Result Server, as your virtual machine sees it.
+# The Result Server will always bind to the address and port specified in cuckoo.conf,
+# however you could set up your virtual network to use NAT/PAT, so you can specify here
+# the IP address for the Result Server as your machine sees it. If you don't specify an
+# address here, the machine will use the default value from cuckoo.conf.
+# NOTE: if you set this option you have to set result server IP to 0.0.0.0 in cuckoo.conf.
+# Example:
+# resultserver_ip =
+
+# (Optional) Specify the port for the Result Server, as your virtual machine sees it.
+# The Result Server will always bind to the address and port specified in cuckoo.conf,
+# however you could set up your virtual network to use NAT/PAT, so you can specify here
+# the port for the Result Server as your machine sees it. If you don't specify a port
+# here, the machine will use the default value from cuckoo.conf.
+# resultserver_port =
+
+# (Optional) Set your own tags. These are comma separated and help to identify
+# specific VMs. You can run samples on VMs with tag you require.
+# tags =
diff --git a/conf/default/hosts.conf.default b/conf/default/hosts.conf.default
new file mode 100644
index 00000000000..463ea05f62c
--- /dev/null
+++ b/conf/default/hosts.conf.default
@@ -0,0 +1,2 @@
+[hosts]
+# All your private hosts goes here to not have them hardcoded all over CAPE
diff --git a/conf/default/integrations.conf.default b/conf/default/integrations.conf.default
new file mode 100644
index 00000000000..a129eab9560
--- /dev/null
+++ b/conf/default/integrations.conf.default
@@ -0,0 +1,155 @@
+# This config is to be able to enable/disable things like MSI/NSIS/UnAutoIt, 3rd part services integraitons, etc
+
+[general]
+pefiles = yes
+dotnet = no
+office = no
+java = no
+pdf = no
+lnk = no
+windows_script = no
+elf = no
+hwp = no
+
+# Number of workers for pool to run them in parallel
+max_workers = 6
+
+[mandiant_intel]
+enabled = no
+api_access =
+api_secret =
+
+# Create your apikey: https://threatfox.abuse.ch/api/#auth_key
+# MalwareBazaar uses this key too
+[abusech]
+threatfox = no
+malwarebazaar = no
+apikey =
+
+
+# sudo apt install msitools
+[msi_extract]
+enabled = yes
+binary = /usr/bin/msiextract
+timeout = 60
+
+[kixtart_extract]
+enabled = yes
+timeout = 60
+
+[vbe_extract]
+enabled = yes
+timeout = 60
+
+[batch_extract]
+enabled = yes
+timeout = 60
+
+# REPO DOESN'T EXIST ANYMORE!
+# cd /opt/CAPEv2/data/
+# snap install go --classic
+# git clone https://github.com/x0r19x91/UnAutoIt && cd UnAutoIt
+# GOOS="linux" GOARCH="amd64" go build -o UnAutoIt
+[UnAutoIt_extract]
+enabled = yes
+binary = data/UnAutoIt/UnAutoIt
+timeout = 60
+
+[RarSFX_extract]
+enabled = yes
+timeout = 60
+
+# apt install upx-ucl
+[UPX_unpack]
+enabled = yes
+timeout = 60
+
+# Nsis, 7Zip SFX, etc
+[SevenZip_unpack]
+binary = data/7zz
+enabled = yes
+timeout = 60
+
+# Use https://github.com/gdesmar/innoextract
+[Inno_extract]
+enabled = yes
+binary = data/innoextract
+timeout = 60
+
+# https://github.com/mstrobel/procyon/releases
+[procyon]
+enabled = yes
+binary = data/procyon.jar
+timeout = 60
+
+# sudo apt install de4dot
+[de4dot_deobfuscate]
+enabled = yes
+binary = /usr/bin/de4dot
+extra_args =
+timeout = 60
+
+# https://github.com/otavepto/NETReactorSlayer/releases
+[eziriz_deobfuscate]
+enabled = yes
+binary = data/NETReactorSlayer.CLI
+extra_args = --no-pause True
+timeout = 60
+
+[office_one]
+enabled = yes
+timeout = 60
+
+[msix_extract]
+enabled = no
+timeout = 60
+
+# PE file overlay
+[overlay]
+enabled = yes
+timeout = 60
+
+[UnGPG_extract]
+enabled = no
+timeout = 60
+
+[pyinstaller]
+enabled = no
+timeout = 60
+
+# Community
+# FLARE capa -> to update rules: poetry run python utils/community.py -cr
+[flare_capa]
+enabled = no
+# Generate it always or generate on demand only(user need to click button to generate it), still should be enabled to use this feature on demand
+on_demand = no
+# Analyze binary payloads
+static = no
+# Analyze CAPE payloads
+cape = no
+# Analyze ProcDump
+procdump = no
+# behavior analysis summary
+behavior = no
+
+# external download services
+[downloaders]
+# You can overwrite the downloaders order, must match filename without ".py". If name is missed is the same as disabled. Example:
+# order = virustotal,malwarebazaar
+order =
+
+[virustotal]
+enabled = no
+apikey =
+
+# Community
+[floss]
+enabled = no
+on_demand = yes
+static_strings = no
+stack_strings = yes
+decoded_strings = yes
+tight_strings = yes
+min_length = 5
+# Download FLOSS signatures from https://github.com/mandiant/flare-floss/tree/master/sigs
+sigs_path = data/flare-signatures
diff --git a/conf/kvm.conf b/conf/default/kvm.conf.default
similarity index 66%
rename from conf/kvm.conf
rename to conf/default/kvm.conf.default
index 2be79fb9597..403e7fbe549 100644
--- a/conf/kvm.conf
+++ b/conf/default/kvm.conf.default
@@ -5,6 +5,19 @@
 machines = cuckoo1
 
 interface = virbr0
+# To connect to local or remote host
+dsn = qemu:///system
+
+# To allow copy & paste. For details see example below
+[cape1]
+label = cape1
+platform = windows
+ip = 192.168.122.105
+arch = x86
+# tags = winxp,acrobat_reader_6
+# snapshot = Snapshot1
+# resultserver_ip = 192.168.122.101
+# reserved = no
 
 [cuckoo1]
 # Specify the label name of the current machine as specified in your
@@ -21,16 +34,16 @@ platform = windows
 # /etc/libvirt/<hypervisor>/networks/
 ip = 192.168.122.105
 
-# x64 binaries requires tags=x64
-# (Optional but IMPORTANT) Set your own tags. These are comma separated and help to identify
-# specific VMs. You can run samples on VMs with tag you require.
-# Note that the 64_bit tag is currently special.  For submitted 64-bit PE files,
-# the 64_bit tag will automatically be added, forcing them to be run on a 64-bit
-# VM.  For this reason, make sure all 64-bit VMs have the 64_bit tag.
-# tags = windows_xp_sp3,32_bit,acrobat_reader_6
+# Specify tags to display
+# Tags may be used to specify on which guest machines a sample should be run
+# NOTE - One of the following OS version tags MUST be included for Windows VMs:
+# winxp,win7, win10, win11
+# Some samples will only detonate on specific versions of Windows (see web.conf packages for more info)
+# Example: MSIX - Windows >= 10
+# tags = winxp,acrobat_reader_6
 
-# (Optional) Specify the snapshot name to use. If you do not specify a snapshot
-# name, the KVM MachineManager will use the current snapshot.
+# (Optional) Specify the snapshot name to use.
+# If empty, it will use the current/latest snapshot.
 # Example (Snapshot1 is the snapshot name):
 # snapshot = Snapshot1
 
@@ -56,3 +69,12 @@ ip = 192.168.122.105
 # here, the machine will use the default value from cuckoo.conf.
 # Example:
 # resultserver_port = 2042
+
+# Set the machine architecture
+# Required to auto select proper machine architecture for sample
+# x64 or x86
+arch = x86
+
+# (Optional) Specify whether or not the machine should be reserved, meaning that it will
+# only be used for a detonation if specifically requested by its label.
+# reserved = no
diff --git a/conf/default/logging.conf.default b/conf/default/logging.conf.default
new file mode 100644
index 00000000000..7226301ab27
--- /dev/null
+++ b/conf/default/logging.conf.default
@@ -0,0 +1,16 @@
+[logger]
+# Stream copy of log to Syslog. Useful for cloud setups
+syslog_cape = off
+syslog_process = off
+syslog_dev = /dev/log
+
+process_per_task_log = off
+# Store log inside of the analysis folder instead of log. Useful for distributed setup to fetch to main server to show on webgui.
+process_analysis_folder = off
+
+# Useful only with per_task_logs = off
+[log_rotation]
+# Activate log rotation for cuckoo.log and process.log.
+enabled = on
+# Keep 30 days of log history (default is 7).
+backup_count = 30
diff --git a/conf/malheur.conf b/conf/default/malheur.conf.default
similarity index 97%
rename from conf/malheur.conf
rename to conf/default/malheur.conf.default
index 6915aa40053..4fc0989254a 100644
--- a/conf/malheur.conf
+++ b/conf/default/malheur.conf.default
@@ -8,4 +8,4 @@ cluster = {
 
 features = {
 		mist_level = 2;
-};
\ No newline at end of file
+};
diff --git a/conf/memory.conf b/conf/default/memory.conf.default
similarity index 80%
rename from conf/memory.conf
rename to conf/default/memory.conf.default
index d67184e33d0..52e34dac0b4 100644
--- a/conf/memory.conf
+++ b/conf/default/memory.conf.default
@@ -22,17 +22,24 @@ enabled = no
 filter = on
 
 # Lists official processes. Does not detect hidden processes
-# http://code.google.com/p/volatility/wiki/CommandReference23#pslist
+# https://github.com/volatilityfoundation/volatility/wiki/Command-Reference#pslist
 [pslist]
 enabled = no
 filter = off
 
-# Lists hidden processes. Uses several tricks to identify them
-# http://code.google.com/p/volatility/wiki/CommandReferenceMal23#psxview
+# Process listing in tree form. Does not detect hidden processes (Don't work currently in CAPE)
+# https://github.com/volatilityfoundation/volatility/wiki/Command-Reference#pstree
 [pstree]
 enabled = no
 filter = off
 
+# Lists hidden processes. Enumerate processes in the Kernel memory using pool tag scanning _POOL_HEADER
+# https://github.com/volatilityfoundation/volatility/wiki/Command-Reference#psscan
+[psscan]
+enabled = no
+filter = off
+
+
 # Show callbacks
 # http://code.google.com/p/volatility/wiki/CommandReferenceMal23#callbacks
 [callbacks]
@@ -94,7 +101,7 @@ filter = on
 enabled = no
 filter = off
 
-# This will only run on Vista/7 profiles
+# This will only run on Vista/7/10 profiles
 [netscan]
 enabled = no
 filter = off
diff --git a/conf/default/mitmdump.conf.default b/conf/default/mitmdump.conf.default
new file mode 100644
index 00000000000..703da46560a
--- /dev/null
+++ b/conf/default/mitmdump.conf.default
@@ -0,0 +1,11 @@
+[cfg]
+# bin path to mitmdump
+bin = /opt/mitmproxy/mitmdump
+
+# Host ip where mitmdump is listening
+host = 127.0.0.1
+
+# Interface where mitmdump is listening
+interface = virbr0
+
+# Future options like custom ports, cert paths, etc
diff --git a/conf/multi.conf b/conf/default/multi.conf.default
similarity index 100%
rename from conf/multi.conf
rename to conf/default/multi.conf.default
diff --git a/conf/physical.conf b/conf/default/physical.conf.default
similarity index 76%
rename from conf/physical.conf
rename to conf/default/physical.conf.default
index 0fe03e78716..40e2a525431 100644
--- a/conf/physical.conf
+++ b/conf/default/physical.conf.default
@@ -4,6 +4,10 @@
 # on the respective machine. (E.g. physical1,physical2,physical3)
 machines = physical01
 interface = ens33
+# Specify the setup type: proxmox/vmware/pure
+# proxmox/vmware: It means that the entire lab is installed on hypervisor
+# pure: It means that the entire lab is installed in physical machines without any hypervisor
+type = pure
 
 # For Fog to work you need two API keys, one system wide and one which is tied to
 # your user. By default API is disabled in Fog. To enable it navigate to
@@ -42,10 +46,11 @@ ip = 192.168.117.164
 resultserver_ip = 192.168.117.136
 resultserver_port = 2042
 
-# x64 binaries requires tags=x64
-# (Optional but IMPORTANT) Set your own tags. These are comma separated and help to identify
-# specific VMs. You can run samples on VMs with tag you require.
-# Note that the 64_bit tag is currently special.  For submitted 64-bit PE files,
-# the 64_bit tag will automatically be added, forcing them to be run on a 64-bit
-# VM.  For this reason, make sure all 64-bit VMs have the 64_bit tag.
-# tags = windows_xp_sp3,32_bit,acrobat_reader_6
+# Set the machine architecture
+# Required to auto select proper machine architecture for sample
+# x64 or x86
+arch = x86
+
+# (Optional) Specify tags to display
+# Tags may be used to specify on which guest machines a sample should be run
+# tags = windows_xp_sp3,acrobat_reader_6
diff --git a/conf/default/polarproxy.conf.default b/conf/default/polarproxy.conf.default
new file mode 100644
index 00000000000..3ecf2da62cb
--- /dev/null
+++ b/conf/default/polarproxy.conf.default
@@ -0,0 +1,26 @@
+[cfg]
+# bin path to PolarProxy
+bin = /opt/PolarProxy/PolarProxy
+
+# Host ip where PolarProxy is listening
+host = 192.168.122.1
+
+# Interface where PolarProxy is listening
+interface = virbr0
+
+# PKCS#12 certificate/private key file
+cert = /opt/PolarProxy/PolarProxy-key-crt.p12
+
+# Password to unlock PKCS#12 file
+password = CHANGEME
+
+# See https://www.netresec.com/?page=TlsFirewall for details on PolarProxy TLS firewall
+# Newline separated file containing domain regexes for PolarProxy to not MITM
+bypass_list = /opt/PolarProxy/bypass-domains.txt
+# Newline separated file containing domain regexes for PolarProxy to block connections to
+block_list = /opt/PolarProxy/block-domains.txt
+
+# bin path to mergecap
+mergecap = /usr/bin/mergecap
+
+# Future options like custom ports, cert paths, etc
diff --git a/conf/processing.conf b/conf/default/processing.conf.default
similarity index 58%
rename from conf/processing.conf
rename to conf/default/processing.conf.default
index 87c13d41a7b..c1c392ba732 100644
--- a/conf/processing.conf
+++ b/conf/default/processing.conf.default
@@ -4,55 +4,71 @@
 # You can also add additional options under the section of your module and
 # they will be available in your Python class.
 
-# Requires dependencies of software in vm as by:
-# https://www.fireeye.com/blog/threat-research/2016/02/greater_visibilityt.html
-# Windows 7 SP1, .NET at least 4.5, powershell 5 preferly over v4
-# KB3109118 - Script block logging back port update for WMF4
-# x64 - https://cuckoo.sh/vmcloak/Windows6.1-KB3109118-v4-x64.msu
-# x32 - https://cuckoo.sh/vmcloak/Windows6.1-KB3109118-v4-x86.msu
-# KB2819745 - WMF 4 (Windows Management Framework version 4) update for Windows 7
-# x64 - https://cuckoo.sh/vmcloak/Windows6.1-KB2819745-x64-MultiPkg.msu
-# x32 - https://cuckoo.sh/vmcloak/Windows6.1-KB2819745-x86-MultiPkg.msu
-# KB3191566 - https://www.microsoft.com/en-us/download/details.aspx?id=54616
-# You should create following registry entries
-# reg add "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\PowerShell\ModuleLogging\ModuleNames" /v * /t REG_SZ /d * /f /reg:64
-# reg add "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging" /v EnableScriptBlockLogging /t REG_DWORD /d 00000001 /f /reg:64
-# reg add "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\PowerShell\Transcription" /v EnableTranscripting /t REG_DWORD /d 00000001 /f /reg:64
-# reg add "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\PowerShell\Transcription" /v OutputDirectory /t REG_SZ /d C:\PSTranscipts /f /reg:64
-# reg add "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\PowerShell\Transcription" /v EnableInvocationHeader /t REG_DWORD /d 00000001 /f /reg:64
+# Community
+# exclude files that doesn't match safe extension and ignore their files from processing inside of other modules like CAPE.py
+[antiransomware]
+enabled = no
+# ignore all files with extension found more than X
+skip_number = 30
+
+# Community
 [curtain]
-enabled = yes
+enabled = no
 
+# Community
 [sysmon]
 enabled = no
 
 [analysisinfo]
 enabled = yes
 
-# FLARE capa -> to update rules utils/community.py -cr
-# install -> cd /tmp && git clone --recurse-submodules https://github.com/fireeye/capa.git && cd capa && git submodule update --init rules && python -m pip3 install .
-[flare_capa]
-enabled = no
-# Generate it always or generate on demand only(user need to click button to generate it), still should be enabled to use this feature on demand
-on_demand = no
-# Analyze binary payloads
-static = no
-# Analyze CAPE payloads
-cape = no
-# Analyze ProcDump
-procdump = no
-
+# Community
 [decompression]
 enabled = no
 
 [dumptls]
 enabled = no
 
+[amsi]
+enabled = no
+
 [behavior]
 enabled = yes
+# Toggle specific modules within the BehaviorAnalysis class
+anomaly = yes
+processtree = yes
+summary = yes
+enhanced = yes
+encryptedbuffers = yes
+# Should the server use a compressed version of behavioural logs? This helps
+# in saving space in Mongo, accelerates searchs and reduce the size of the
+# final JSON report.
+loop_detection = no
+# The number of calls per process to process. 0 switches the limit off.
+# 10000 api calls should be processed in less than 2 minutes
+analysis_call_limit = 0
+# Use ram to boost processing speed. You will need more than 20GB of RAM for this feature.
+# Please read "performance" section in the documentation.
+ram_boost = no
+# https://capev2.readthedocs.io/en/latest/usage/patterns_replacement.html
+replace_patterns = no
+file_activities = no
+
+[tracee]
+enabled = no
+
+[strace]
+enabled = no
+# Toggle specific modules within the StraceAnalysis class
+processtree = no
+# Platform specific
+platform = linux
+update_file_descriptors = yes
 
 [debug]
 enabled = yes
+# Amount of text (bytes)
+buffer = 0
 
 [detections]
 enabled = yes
@@ -63,15 +79,6 @@ suricata = yes
 virustotal = no
 clamav = no
 
-[dropped]
-enabled = yes
-# Amount of text to carve from plaintext files (bytes)
-buffer = 8192
-
-# It is intended in CAPE for procdump to replace procmemory...
-[procdump]
-enabled = yes
-
 # ... but this mechanism may still be switched on
 [procmemory]
 enabled = yes
@@ -90,52 +97,54 @@ enabled = no
 enabled = yes
 sort_pcap = no
 # DNS whitelisting to ignore domains/IPs configured in network.py
-# This should be disabled when utilizing InetSim/Remnux as we end up resolving
-# the IP from fakedns which would then remove all domains associated with that
-# resolved IP
 dnswhitelist = yes
 # additional entries
 dnswhitelist_file = extra/whitelist_domains.txt
-ipwhitelist = no
+ipwhitelist = yes
 ipwhitelist_file = extra/whitelist_ips.txt
-
-# Should the server use a compressed version of behavioural logs? This helps
-# in saving space in Mongo, accelerates searchs and reduce the size of the
-# final JSON report.
-[loop_detection]
+network_passlist = no
+network_passlist_file = extra/whitelist_network.txt
+
+# Requires geoip2 and maxmind database
+country_lookup = no
+# Register and download for free from
+# https://www.maxmind.com/ or https://ipinfo.io/
+# For maxmind use: GeoLite2 Country
+# For ipinfo use: Free IP to Country + IP to ASN
+maxmind_database = data/GeoLite2-Country.mmdb
+
+[pcapng]
 enabled = no
 
-[static]
+[url_analysis]
 enabled = yes
-# Scan for UserDB.TXT signature matches
-userdb_signature = no
 # Enable a WHOIS lookup for the target domain of a URL analyses
 whois = yes
-# If you want to use the Procyon Java decompiler, install procyon with
-# 'apt install procyon-decompiler'
-# or use the latest jar file and replace it in the path option
-# Uncomment the procyon_path option
-# In testing, it generally seems to produce the best Java decompilation:
-# if using apt version set it to /usr/bin/procyon
-procyon_path = data/procyon.jar
 
 [strings]
 enabled = yes
+on_demand = no
 nullterminated_only = no
 minchars = 5
 
+# Community
 [trid]
 # Specify the path to the trid binary to use for static analysis.
 enabled = no
 identifier = data/trid/trid
 definitions = data/trid/triddefs.trd
 
-[targetinfo]
-enabled = yes
+[die]
+# Detect it Easy
+enabled = no
+binary = /usr/bin/diec
 
 [virustotal]
 enabled = yes
+on_demand = no
 timeout = 60
+# remove empty detections
+remove_empty = yes
 # Add your VirusTotal API key here. The default API key, kindly provided
 # by the VirusTotal team, should enable you with a sufficient throughput
 # and while being shared with all our users, it shouldn't affect your use.
@@ -144,14 +153,11 @@ do_file_lookup = yes
 do_url_lookup = yes
 urlscrub = (^http:\/\/serw\.clicksor\.com\/redir\.php\?url=|&InjectedParam=.+$)
 
+# Since Suricata 8, socket mode is deprecated.
 [suricata]
-# Notes on getting this to work check install_suricata function:
-# https://github.com/doomedraven/Tools/blob/master/Sandbox/cape2.sh
-
-enabled = yes
-#Runmode "cli" or "socket"
-runmode = socket
-#Outputfiles
+enabled = no
+runmode = cli
+# Outputfiles
 # if evelog is specified, it will be used instead of the per-protocol log files
 evelog = eve.json
 
@@ -167,15 +173,17 @@ fileslog = files-json.log
 filesdir = files
 # Amount of text to carve from plaintext files (bytes)
 buffer = 8192
-#Used for creating an archive of extracted files
-7zbin = /usr/bin/7z
+ #Used for creating an archive of extracted files
+7zbin = data/7zz
 zippass = infected
-##Runmode "cli" options
+# Runmode "cli" options
 bin = /usr/bin/suricata
 conf = /etc/suricata/suricata.yaml
-##Runmode "socket" Options
+
+# Runmode "socket" Options. Deprecated since Suricata 8.
 socket_file = /tmp/suricata-command.socket
 
+# Community
 [cif]
 enabled = no
 # url of CIF server
@@ -197,8 +205,22 @@ per_analysis_limit = 200
 
 [CAPE]
 enabled = yes
+# Ex targetinfo standalone module
+targetinfo = yes
+# Ex dropped standalone module
+dropped = yes
+# Ex procdump standalone module
+procdump = yes
+# Amount of text to carve from plaintext files (bytes)
+buffer = 8192
+# Process files not bigger than value below in Mb. We saw that after 90Mb it has biggest delay
+max_file_size = 90
+# Scan for UserDB.TXT signature matches
+userdb_signature = no
+# https://capev2.readthedocs.io/en/latest/usage/patterns_replacement.html
+replace_patterns = no
 
-# Deduplicate screenshots
+# Deduplicate screenshots - You need to install dependency ImageHash>=4.3.1
 [deduplication]
 #
 # Available hashs functions:
@@ -207,14 +229,15 @@ enabled = yes
 #  dhash:      Difference hash
 #  whash-haar: Haar wavelet hash
 #  whash-db4:  Daubechies wavelet hash
-enabled = yes
+enabled = no
 hashmethod = ahash
 
+# Community
 [vba2graph]
 # Mac - brew install graphviz
 # Ubuntu - sudo apt-get install graphviz
 # Arch - sudo pacman -S graphviz+
-# sudo pip3 install networkx>=2.1 graphviz>=0.8.4 pydot>=1.2.4
+# sudo poetry run pip install networkx>=2.1 graphviz>=0.8.4 pydot>=1.2.4
 enabled = yes
 on_demand = yes
 
@@ -226,7 +249,7 @@ ja3_path = data/ja3/ja3fingerprint.json
 [maliciousmacrobot]
 # https://maliciousmacrobot.readthedocs.io
 # Install mmbot
-#   sudo pip3 install mmbot
+#   sudo poetry run pip install mmbot
 # Create/Set required paths
 # Populate benign_path and malicious_path with appropriate macro maldocs (try the tests/samples in the github)
 #   https://github.com/egaus/MaliciousMacroBot/tree/master/tests/samples
@@ -241,11 +264,59 @@ benign_path = /opt/cuckoo/data/mmbot/benign
 malicious_path = /opt/cuckoo/data/mmbot/malicious
 model_path = /opt/cuckoo/data/mmbot/model
 
+# Community
 [xlsdeobf]
-# pip3 install git+https://github.com/DissectMalware/XLMMacroDeobfuscator.git
+# poetry run pip install git+https://github.com/DissectMalware/XLMMacroDeobfuscator.git
 enabled = no
+on_demand = no
 
+# Community
 [boxjs]
 enabled = no
 timeout = 60
 url = http://your_super_box_js:9000
+
+# Community
+# Extractors
+[mwcp]
+enabled = yes
+modules_path = modules/processing/parsers/mwcp/
+
+# Community
+[ratdecoders]
+enabled = yes
+modules_path = modules/processing/parsers/RATDecoders/
+
+# Community
+[malduck]
+enabled = yes
+modules_path = modules/processing/parsers/malduck/
+
+# installed from PYPI
+[CAPE_extractors]
+enabled = yes
+# Must ends with /
+modules_path = custom/parsers/
+# Config parsers all/core/community
+parsers = all
+# list of comma separated parsers. Ex: stealc,lumma
+exclude=
+
+# Community
+[reversinglabs]
+enabled = no
+url =
+key =
+
+# Community
+[script_log_processing]
+enabled = yes
+
+[html_scraper]
+enabled = no
+
+# Community
+[polarproxy]
+# Enable when using the PolarProxy option during analysis. This will merge the tls.pcap containing
+# plain-text TLS streams into the task PCAP.
+enabled = no
diff --git a/conf/proxmox.conf b/conf/default/proxmox.conf.default
similarity index 84%
rename from conf/proxmox.conf
rename to conf/default/proxmox.conf.default
index a439dcf21aa..b736c7701e8 100644
--- a/conf/proxmox.conf
+++ b/conf/default/proxmox.conf.default
@@ -11,12 +11,16 @@ password = REPLACE_ME
 # Default network interface.
 interface = REPLACE_ME
 
+# FOG on PROXMON options
+# Action done to VM
+action = reset
+nodes =
+
 # Specify a comma-separated list of available machines to be used. For each
 # specified ID you have to define a dedicated section containing the details
 # on the respective machine. (E.g. cuckoo1,cuckoo2,cuckoo3)
 machines = cuckoo1
 
-
 [cuckoo1]
 # Specify the label name of the current machine as specified in your
 # libvirt configuration.
@@ -32,13 +36,14 @@ platform = windows
 # /etc/libvirt/<hypervisor>/networks/
 ip = 192.168.122.105
 
-# x64 binaries requires tags=x64
-# (Optional but IMPORTANT) Set your own tags. These are comma separated and help to identify
-# specific VMs. You can run samples on VMs with tag you require.
-# Note that the 64_bit tag is currently special.  For submitted 64-bit PE files,
-# the 64_bit tag will automatically be added, forcing them to be run on a 64-bit
-# VM.  For this reason, make sure all 64-bit VMs have the 64_bit tag.
-# tags = windows_xp_sp3,32_bit,acrobat_reader_6
+# Set the machine architecture
+# Required to auto select proper machine architecture for sample
+# x64 or x86
+arch = x86
+
+# (Optional) Specify tags to display
+# Tags may be used to specify on which guest machines a sample should be run
+# tags = windows_xp_sp3,acrobat_reader_6
 
 # (Optional) Specify the snapshot name to use. If you do not specify a snapshot
 # name, the KVM MachineManager will use the current snapshot.
@@ -67,3 +72,11 @@ ip = 192.168.122.105
 # here, the machine will use the default value from cuckoo.conf.
 # Example:
 # resultserver_port = 2042
+
+# When FOG is on PROXMON
+[Node_1]
+# machineName(on the FOG server) = machineID(on Proxmox)
+# i.e.:
+# win7_1 = 120
+# win7_2 = 121
+# win10_1 = 126
diff --git a/conf/qemu.conf b/conf/default/qemu.conf.default
similarity index 82%
rename from conf/qemu.conf
rename to conf/default/qemu.conf.default
index 786dee378e0..93fb9bfeac8 100644
--- a/conf/qemu.conf
+++ b/conf/default/qemu.conf.default
@@ -36,6 +36,9 @@ kernel =
 # path to initrd image
 initrd =
 
+# Amount of RAM to be used as -m X(G|M) example: 512M or 1G
+memory =
+
 # Specify the operating system platform used by current machine
 # [windows/darwin/linux].
 platform =
@@ -45,13 +48,9 @@ platform =
 # the analysis will fail.
 ip =
 
-# x64 binaries requires tags=x64
-# (Optional but IMPORTANT) Set your own tags. These are comma separated and help to identify
-# specific VMs. You can run samples on VMs with tag you require.
-# Note that the 64_bit tag is currently special.  For submitted 64-bit PE files,
-# the 64_bit tag will automatically be added, forcing them to be run on a 64-bit
-# VM.  For this reason, make sure all 64-bit VMs have the 64_bit tag.
-# tags = windows_xp_sp3,32_bit,acrobat_reader_6
+# (Optional) Specify tags to display
+# Tags may be used to specify on which guest machines a sample should be run
+# tags = windows_xp_sp3,acrobat_reader_6
 
 # (Optional) Specify the name of the network interface that should be used
 # when dumping network traffic from this machine with tcpdump.
diff --git a/conf/reporting.conf b/conf/default/reporting.conf.default
similarity index 56%
rename from conf/reporting.conf
rename to conf/default/reporting.conf.default
index e6c42506d34..9dcd41fa34d 100644
--- a/conf/reporting.conf
+++ b/conf/default/reporting.conf.default
@@ -4,9 +4,15 @@
 # You can also add additional options under the section of your module and
 # they will be available in your Python class.
 
+# Community
+[cents]
+enabled = no
+on_demand = no
+# starting signature id for created Suricata rules
+start_sid = 1000000
+
 [mitre]
 enabled = no
-local_file = data/mitre_attack.json
 
 # https://github.com/geekscrapy/binGraph
 # requires -> apt-get install python-tk
@@ -18,28 +24,54 @@ binary = yes
 cape = yes
 procdump = yes
 
+# Community
 [pcap2cert]
-enabled = yes
+enabled = no
+
+# Community
+[litereport]
+enabled = no
+keys_to_copy = CAPE procdump info signatures dropped static target network shot malscore ttps
+behavior_keys_to_copy = processtree summary
+
+# Community
+[reportbackup]
+enabled = no
+# External service to use
+googledrive = no
+# Specify the ID of the shared Google Drive Folder where reports will be backed up to
+# Replace folder ID with own Google Drive shared folder (share access to created service account)
+# Without service account, upload process cannot complete due to browser not being able to launch
+drive_folder_id = id_here
+drive_credentials_location = data/google_creds.json
 
 [jsondump]
 enabled = yes
-# use the c-optimized JSON encoder, requires fitting entire JSON results in memory
-ram_boost = no
 indent = 4
 encoding = latin-1
+store_compressed = no
 
+# Community
 [reporthtml]
-# required for the WSGI interface
+# Standalone report, not requires CAPE webgui
 enabled = no
+# Include screenshots in report
+screenshots = no
+apicalls = no
 
+# Community
 [reporthtmlsummary]
 # much smaller, faster report generation, omits API logs and is non-interactive
 enabled = no
+# Include screenshots in report
+screenshots = no
 
+# Community
 [reportpdf]
 # Note that this requires reporthtmlsummary to be enabled above as well
 enabled = no
 
+# Community
 [maec41]
 enabled = no
 mode = overview
@@ -50,18 +82,22 @@ strings = true
 virustotal = true
 deduplicate = true
 
+# Community
 [maec5]
 enabled = no
 
 [mongodb]
-enabled = yes
+enabled = no
 host = 127.0.0.1
 port = 27017
 db = cuckoo
 # Set those values if you are using mongodb authentication
 # username =
 # password =
+# authsource = cuckoo
 
+# Set this value if you are using mongodb with TLS enabled
+# tlscafile =
 
 # Automatically delete large dict values that exceed mongos 16MB limitation
 # Note: This only deletes dict keys from data stored in MongoDB. You would
@@ -69,6 +105,8 @@ db = cuckoo
 # reporting module or from the jsondump module.
 fix_large_docs = yes
 
+# Community
+# Latest known working version is 7.16.2
 # Use ElasticSearch as the "database" which powers Django.
 # NOTE: If this is enabled, MongoDB should not be enabled, unless
 # search only option is set to yes. Then elastic search is only used for /search web page.
@@ -80,23 +118,10 @@ port = 9200
 # The report data is indexed in the form of {{index-yyyy.mm.dd}}
 # so the below index configuration option is actually an index 'prefix'.
 index = cuckoo
-
-[retention]
-enabled = no
-# run at most once every this many hours (unless reporting.conf is modified)
-run_every = 6
-# The amount of days old a task needs to be before deleting data
-# Set a value to no to never delete it
-memory = 14
-procmemory = 62
-pcap = 62
-sortedpcap = 14
-bsonlogs = 62
-dropped = 62
-screencaps = 62
-reports = 62
-mongo = 731
-elastic = no
+# username =
+# password =
+# use_ssl =
+# verify_certs =
 
 [syslog]
 enabled = no
@@ -111,6 +136,7 @@ logfile = yes
 # if yes, what logname? [Default: syslog.txt]
 logname = syslog.log
 
+# Community
 [moloch]
 enabled = no
 base = https://172.18.100.105:8005/
@@ -121,18 +147,19 @@ user = admin
 pass = admin
 realm = Moloch
 
-[resubmitexe]
-enabled = no
-resublimit = 5
-
 
+# Community
 [compression]
 enabled = no
 zipmemdump = yes
 zipmemstrings = yes
 zipprocdump = yes
 zipprocstrings = yes
+# pyzipper or 7zip
+compressiontool = pyzipper
+sevenzippath = data/7zz
 
+# Community
 [misp]
 enabled = no
 apikey =
@@ -160,45 +187,56 @@ dropped = no
 registry = no
 mutexes = no
 
+# Community
 [callback]
 enabled = no
 # will send as post data {"task_id":X}
 # can be coma separated urls
 url = http://IP/callback
 
-[distributed]
-enabled = no
-# save results on master, not analyze binaries
-master_storage_only = no
-remove_task_on_worker = no
-failed_clean = no
-# distributed cuckoo database, to store nodes and tasks info
-db = sqlite:///dist.db
-# tried before declare node as dead and deactivate it
-dead_count = 5
-# number of threads witch will retrieve files see api.py for dist
-dist_threads = 4
-# Tags breaks distributed logic,
-# don't activate it till you really know what you do
-enable_tags = no
-
-
-# CAPE auto-submission of detected samples
-# with a selected CAPE package.
-[submitCAPE]
-enabled = yes
-# check root keyword, if found not resubmit, allows custom extractions
-keyword = tr_extractor
-# distributed CAPE, only enable on clients
-distributed = no
-#  rest api url to master node
-url = http://IP:8000/api/tasks/create/file/
+[tmpfsclean]
+enabled = no
+key = tr_extractor
 
-# Compress results including CAPE output
-# to help avoid reaching the hard 16MB MongoDB limit.
-[compressresults]
+# Community
+# This calls the specified command, pointing it at the report.json as
+# well as setting $ENV{CAPE_TASK_ID} to the task ID of the run in question.
+[zexecreport]
+enabled=no
+command=/foo/bar.pl
+
+# Community
+# run statistics, this may take more time.
+[runstatistics]
 enabled = no
 
-[ramfsclean]
+# Community
+[malheur]
 enabled = no
-key = tr_extractor
+
+[browserext]
+enabled = no
+
+# Google Cloud Storage
+[gcs]
+enabled = no
+# The name of your Google Cloud Storage bucket where files will be uploaded.
+bucket_name = your-gcs-bucket-name
+
+# Comma-separated list of DIRECTORY names to exclude from the upload.
+# Good examples are 'shots' (contains all screenshots) or 'memory' (for full memory dumps).
+exclude_dirs = logs, shots
+
+# Comma-separated list of exact FILENAMES to exclude from the upload.
+# Good examples are large report formats you don't need in GCS.
+exclude_files =
+
+# Mode: zip - will submit all files and folders as unique zip archive. Useful to not spam pubsub notification on file creation.
+# Mode: file - will submit one by one.
+mode = zip
+
+# Can be vm or json
+auth_by = vm
+# only if auth_by = json. The absolute path to your Google Cloud service account JSON key file.
+# This file is required for authentication.
+credentials_path = data/gcp-credentials.json
diff --git a/conf/routing.conf b/conf/default/routing.conf.default
similarity index 78%
rename from conf/routing.conf
rename to conf/default/routing.conf.default
index 1cf178bb1e8..fd4e281efad 100644
--- a/conf/routing.conf
+++ b/conf/default/routing.conf.default
@@ -1,11 +1,16 @@
 [routing]
+
+# Enable pcap generation for non live connections?
+# If you have huge number of VMs, pcap generation can be a bottleneck
+enable_pcap = no
+
 # Default network routing mode; "none", "internet", or "vpn_name".
 # In none mode we don't do any special routing - the VM doesn't have any
 # network access (this has been the default actually for quite a while).
 # In internet mode by default all the VMs will be routed through the network
 # interface configured below (the "dirty line").
 # And in VPN mode by default the VMs will be routed through the VPN identified
-# by the given name of the VPN (as per vpn.conf).
+# by the given name of the VPN.
 # Note that just like enabling VPN configuration setting this option to
 # anything other than "none" requires one to run utils/rooter.py as root next
 # to the CAPE instance (as it's required for setting up the routing).
@@ -17,6 +22,14 @@ route = none
 # (For example, to route all VMs through eth0 by default: "internet = eth0").
 internet = none
 
+# When set to no masquerade rule has been not generated.
+nat = yes
+
+# When property nat set to yes. That property not used.
+# When property nat set to no and no_local_routing to yes, a vrf configuration 
+# will be generated and local traffic will go through by internet interface (dirty_line).
+no_local_routing = yes
+
 # Routing table name/id for "dirty line" interface. If "dirty line" is
 # also default gateway in the system you can leave "main" value. Otherwise add
 # new routing table by adding "<id> <name>" line to /etc/iproute2/rt_tables
@@ -24,6 +37,17 @@ internet = none
 # /etc/iproute2/rt_tables for existing names and IDs).
 rt_table = main
 
+# When using "dirty line", you can reject forwarding to a certain network segment.
+# For example, a request targeting 192.168.12.1/24,172.16.22.1/24 will not be
+# forwarded, but will be rejected:
+# "reject_segments = 192.168.12.1/24,172.16.22.1/24"
+reject_segments = none
+
+# When ussing "dirty line", you can reject guest access a certain port.
+# For example, a request targeting host's port 8000 and 8080 will be rejected:
+# "reject_hostports = 8000,8080"
+reject_hostports = none
+
 # To route traffic through multiple network interfaces CAPE uses
 # Policy Routing with separate routing table for each output interface
 # (VPN or "dirty line"). If this option is enabled CAPE on start will try
@@ -42,6 +66,12 @@ auto_rt = no
 # is enabled anyway, it is automatically enabled.
 drop = no
 
+# Should check if the inteface is up
+verify_interface = yes
+
+# Should check if rt_table exists before initializing
+verify_rt_table = yes
+
 [inetsim]
 # Inetsim quick deploy, chose your vm manager if is not kvm
 # wget https://googledrive.com/host/0B6fULLT_NpxMQ1Rrb1drdW42SkE/remnux-6.0-ova-public.ova
@@ -55,6 +85,9 @@ interface = virbr1
 # Redirect TCP ports (should we also support UDP?). If specified, this should
 # represent whitespace-separated src:dst pairs. E.g., "80:8080 443:8080" will
 # redirect all 80/443 traffic to 8080 on the specified InetSim host.
+# Source port range redirection is also supported. E.g., "996-2041:80" will
+# redirect all traffic directed at ports between 996 and 2041 inclusive to port 80
+# on the specified InetSim host.
 ports =
 
 
@@ -115,4 +148,3 @@ name = ch_socks
 description = ch_socks
 proxyport = 5008
 dnsport = 10053
-
diff --git a/conf/smtp_sinkhole.conf b/conf/default/smtp_sinkhole.conf.default
similarity index 93%
rename from conf/smtp_sinkhole.conf
rename to conf/default/smtp_sinkhole.conf.default
index 174b36ef5a4..5462230e615 100644
--- a/conf/smtp_sinkhole.conf
+++ b/conf/default/smtp_sinkhole.conf.default
@@ -2,7 +2,7 @@
 server = 172.16.200.52
 port = 465
 user = spam@malicious.systems
-password = 
+password =
 # coma space separated list, if more then one receiver
 to = spam@malicious.systems
 from = spam@malicious.systems
diff --git a/conf/virtualbox.conf b/conf/default/virtualbox.conf.default
similarity index 85%
rename from conf/virtualbox.conf
rename to conf/default/virtualbox.conf.default
index 5929649eee0..69b2e847c8f 100644
--- a/conf/virtualbox.conf
+++ b/conf/default/virtualbox.conf.default
@@ -27,13 +27,14 @@ platform = windows
 # the analysis will fail.
 ip = 192.168.56.101
 
-# x64 binaries requires tags=x64
-# (Optional but IMPORTANT) Set your own tags. These are comma separated and help to identify
-# specific VMs. You can run samples on VMs with tag you require.
-# Note that the 64_bit tag is currently special.  For submitted 64-bit PE files,
-# the 64_bit tag will automatically be added, forcing them to be run on a 64-bit
-# VM.  For this reason, make sure all 64-bit VMs have the 64_bit tag.
-# tags = windows_xp_sp3,32_bit,acrobat_reader_6
+# Set the machine architecture
+# Required to auto select proper machine architecture for sample
+# x64 or x86
+arch = x86
+
+# (Optional) Specify tags to display
+# Tags may be used to specify on which guest machines a sample should be run
+# tags = windows_xp_sp3,acrobat_reader_6
 
 # (Optional) Specify the snapshot name to use. If you do not specify a snapshot
 # name, the VirtualBox MachineManager will use the current snapshot.
diff --git a/conf/vmware.conf b/conf/default/vmware.conf.default
similarity index 82%
rename from conf/vmware.conf
rename to conf/default/vmware.conf.default
index 997d2500797..c29a7617673 100644
--- a/conf/vmware.conf
+++ b/conf/default/vmware.conf.default
@@ -29,13 +29,14 @@ platform = windows
 # the analysis will fail.
 ip = 10.152.152.55
 
-# x64 binaries requires tags=x64
-# (Optional but IMPORTANT) Set your own tags. These are comma separated and help to identify
-# specific VMs. You can run samples on VMs with tag you require.
-# Note that the 64_bit tag is currently special.  For submitted 64-bit PE files,
-# the 64_bit tag will automatically be added, forcing them to be run on a 64-bit
-# VM.  For this reason, make sure all 64-bit VMs have the 64_bit tag.
-# tags = windows_xp_sp3,32_bit,acrobat_reader_6
+# Set the machine architecture
+# Required to auto select proper machine architecture for sample
+# x64 or x86
+arch = x86
+
+# (Optional) Specify tags to display
+# Tags may be used to specify on which guest machines a sample should be run
+# tags = windows_xp_sp3,acrobat_reader_6
 
 # (Optional) Specify the name of the network interface that should be used
 # when dumping network traffic from this machine with tcpdump. If specified,
diff --git a/conf/default/vmwarerest.conf.default b/conf/default/vmwarerest.conf.default
new file mode 100644
index 00000000000..117cd50febb
--- /dev/null
+++ b/conf/default/vmwarerest.conf.default
@@ -0,0 +1,52 @@
+[vmwarerest]
+
+host = 192.168.52.1
+port = 8697
+enable_tls = no
+
+interface = ens33
+
+# Specify a comma-separated list of available machines to be used. For each
+# specified ID you have to define a dedicated section containing the details
+# on the respective machine. (E.g. cuckoo1,cuckoo2,cuckoo3)
+machines = win7x64sp1
+
+username = VMwareREST
+password = C@PE$@ndb0x
+
+[win7x64sp1]
+############
+id = win7x64sp1
+platform = windows
+ip = 192.168.142.129
+arch = x64
+
+# (Optional) Specify the name of the network interface that should be used
+# when dumping network traffic from this machine with tcpdump. If specified,
+# overrides the default interface specified in auxiliary.conf
+# Example (virbr0 is the interface name):
+# interface = virbr0
+
+# (Optional) Specify the IP of the Result Server, as your virtual machine sees it.
+# The Result Server will always bind to the address and port specified in cuckoo.conf,
+# however you could set up your virtual network to use NAT/PAT, so you can specify here
+# the IP address for the Result Server as your machine sees it. If you don't specify an
+# address here, the machine will use the default value from cuckoo.conf.
+# NOTE: if you set this option you have to set result server IP to 0.0.0.0 in cuckoo.conf.
+# Example:
+# resultserver_ip = 192.168.122.101
+
+# (Optional) Specify the port for the Result Server, as your virtual machine sees it.
+# The Result Server will always bind to the address and port specified in cuckoo.conf,
+# however you could set up your virtual network to use NAT/PAT, so you can specify here
+# the port for the Result Server as your machine sees it. If you don't specify a port
+# here, the machine will use the default value from cuckoo.conf.
+# Example:
+# resultserver_port = 2042
+
+# (Optional) Set your own tags. These are comma separated and help to identify
+# specific VMs. You can run samples on VMs with tag you require.
+# Note that the 64_bit tag is currently special.  For submitted 64-bit PE files,
+# the 64_bit tag will automatically be added, forcing them to be run on a 64-bit
+# VM.  For this reason, make sure all 64-bit VMs have the 64_bit tag.
+# tags = windows_xp_sp3,32_bit,acrobat_reader_6
\ No newline at end of file
diff --git a/conf/vmwareserver.conf b/conf/default/vmwareserver.conf.default
similarity index 83%
rename from conf/vmwareserver.conf
rename to conf/default/vmwareserver.conf.default
index f000172e0bf..9789eeab55b 100644
--- a/conf/vmwareserver.conf
+++ b/conf/default/vmwareserver.conf.default
@@ -33,13 +33,14 @@ platform = windows
 # the analysis will fail.
 ip = 10.152.152.55
 
-# x64 binaries requires tags=x64
-# (Optional but IMPORTANT) Set your own tags. These are comma separated and help to identify
-# specific VMs. You can run samples on VMs with tag you require.
-# Note that the 64_bit tag is currently special.  For submitted 64-bit PE files,
-# the 64_bit tag will automatically be added, forcing them to be run on a 64-bit
-# VM.  For this reason, make sure all 64-bit VMs have the 64_bit tag.
-# tags = windows_xp_sp3,32_bit,acrobat_reader_6
+# Set the machine architecture
+# Required to auto select proper machine architecture for sample
+# x64 or x86
+arch = x86
+
+# (Optional) Specify tags to display
+# Tags may be used to specify on which guest machines a sample should be run
+# tags = windows_xp_sp3,acrobat_reader_6
 
 # (Optional) Specify the name of the network interface that should be used
 # when dumping network traffic from this machine with tcpdump. If specified,
diff --git a/conf/vpn.conf b/conf/default/vpn.conf.default
similarity index 99%
rename from conf/vpn.conf
rename to conf/default/vpn.conf.default
index c6f775772b8..d463a01c6db 100644
--- a/conf/vpn.conf
+++ b/conf/default/vpn.conf.default
@@ -28,4 +28,3 @@ interface = tun0
 # ID and name must be unique across the system (refer /etc/iproute2/rt_tables
 # for existing names and IDs).
 rt_table = tun0
-
diff --git a/conf/vsphere.conf b/conf/default/vsphere.conf.default
similarity index 86%
rename from conf/vsphere.conf
rename to conf/default/vsphere.conf.default
index 42707827009..ffa091d0f57 100644
--- a/conf/vsphere.conf
+++ b/conf/default/vsphere.conf.default
@@ -45,13 +45,14 @@ snapshot = snapshot_name
 # the analysis will fail.
 ip = 192.168.1.100
 
-# x64 binaries requires tags=x64
-# (Optional but IMPORTANT) Set your own tags. These are comma separated and help to identify
-# specific VMs. You can run samples on VMs with tag you require.
-# Note that the 64_bit tag is currently special.  For submitted 64-bit PE files,
-# the 64_bit tag will automatically be added, forcing them to be run on a 64-bit
-# VM.  For this reason, make sure all 64-bit VMs have the 64_bit tag.
-# tags = windows_xp_sp3,32_bit,acrobat_reader_6
+# Set the machine architecture
+# Required to auto select proper machine architecture for sample
+# x64 or x86
+arch = x86
+
+# (Optional) Specify tags to display
+# Tags may be used to specify on which guest machines a sample should be run
+# tags = windows_xp_sp3,acrobat_reader_6
 
 # (Optional) Specify the name of the network interface that should be used
 # when dumping network traffic from this machine with tcpdump. If specified,
diff --git a/conf/default/web.conf.default b/conf/default/web.conf.default
new file mode 100644
index 00000000000..60a44c83bc6
--- /dev/null
+++ b/conf/default/web.conf.default
@@ -0,0 +1,228 @@
+# Enable Django authentication/signup for website
+[web_auth]
+enabled = no
+# You will also need to add django admin to make it working by running:
+# poetry run python manage.py createsuperuser
+# ReCaptcha protected admin login
+captcha = no
+2fa = no
+# To enable Oauth check https://django-allauth.readthedocs.io and web/web/settings.py.
+# Allow only SSO for users with specific domain. Can be allow to all if empty.
+social_auth_email_domain = example.com
+
+[registration]
+enabled = no
+manual_approve = yes
+email_required = yes
+email_confirmation = yes
+email_prefix_subject = "[CAPE Sandbox]"
+email_host = ""
+email_user = ""
+email_password =  ""
+email_port = 465
+use_ssl = 0
+use_tls = 0
+captcha_enabled = no
+
+# Do you want to ban temporal email services?
+disposable_email_disable = yes
+disposable_domain_list = data/safelist/disposable_domain_list.txt
+
+[general]
+# Prescan new file tasks with YARA for sample identification and custom execution
+# Useful to set options, tags, timeout, etc for packers/obfuscators/cryptors
+yara_recon = no
+max_sample_size = 30000000
+# Try to trim huge binaries that bigger than max_sample_size or enable allow_ingore_size and specify that option
+enable_trim = no
+# Required to be enabled and option set to ignore_size_check=1
+allow_ignore_size = no
+# Number of results to show on webgui on search action
+# Intermediate solution, the ideal solution is pagination with cursor .skip(X).limit(Y)
+search_limit = 50
+# Allow anon users to browser site but not submit/download
+anon_viewable = no
+# If webgui response time is too long, you can disable existent_tasks and top_detections
+existent_tasks = no
+top_detections = yes
+top_asn = yes
+# Enable checking for samples in MongoDB before fetching from external sources. Disable to reduce MongoDB load when the database is large.
+check_sample_in_mongodb = no
+# hostname of the cape instance
+hostname = 127.0.0.1
+;hostname = www.capesandbox.com
+# Check if config exists or try to extract before accept task as static
+check_config_exists = no
+# Assign architecture to task to fetch correct VM type
+dynamic_arch_determination = yes
+# Assign platform to task to fetch correct VM type
+dynamic_platform_determination = yes
+# Allow to download reports only to specific users, need to be activated in user profile, select checkbox near to "Reports" and set to "no" here
+reports_dl_allowed_to_all = yes
+# Expose process log per task if enabled
+expose_process_log = no
+# Show button to reprocess the task
+reprocess_tasks = no
+# Allows you to define URL splitter, "," is default
+url_splitter = ,
+# Limit number of files extracted from archive in demux.py
+demux_files_limit = 10
+
+# ratelimit for anon users
+[ratelimit]
+enabled = no
+rps = 1/rps
+rpm = 5/rpm
+
+# Show submit to all VMs on webgui
+[all_vms]
+enabled = no
+
+[admin]
+enabled = no
+
+[comments]
+enabled = no
+
+#enable linux fields on webgui
+[linux]
+# For advanced users only, can be buggy, linux analysis is work in progress for fun
+enabled = no
+# independent of enabled or not. To not show linux options, but process statically those files
+static_only = no
+
+[malscore]
+enabled = no
+
+[malstatus]
+enabled = no
+
+[vtupload]
+# Don't forget to set apikey in integrations.conf under virustotal
+enabled = no
+
+#No means delete is disabled on webgui
+[delete]
+enabled = no
+
+# Dl'n'Exec analysis tab on submission
+[dlnexec]
+enabled = no
+
+# url analysis tab on submission
+[url_analysis]
+enabled = no
+# Set your default browser preference or write your own one.
+# Existing: firefox, chrome, edge
+# analyzer/*/modules/packages/
+package = edge
+
+# TLP markings on submission and webgui
+[tlp]
+enabled = no
+
+#AMSI dump submission checkbox: can be useful to disable if no Win10+ instances
+#(amsidump is enabled by default in the monitor for Win10+)
+[amsidump]
+enabled = yes
+
+# Limitation for public instances, api has no limits
+[public]
+enabled = no
+priority = 1
+timeout = 300
+
+# Disable duplicated submissions for X hours
+[uniq_submission]
+enabled = no
+hours = 24
+
+# All providers can be found here https://django-allauth.readthedocs.io/en/latest/providers.html
+[oauth]
+amazon = no
+github = no
+gitlab = no
+twitter = no
+
+[display_browser_martians]
+enabled = no
+
+[display_office_martians]
+enabled = no
+
+[display_task_tags]
+# displays custom tags, if set during sample submission
+enabled = no
+
+[expanded_dashboard]
+# displays package, custom field, malfamily, clamav, PCAP link, and extended suricata results
+enabled = no
+
+[display_et_portal]
+enabled = no
+
+[display_pt_portal]
+enabled = no
+
+[zipped_download]
+enabled = yes
+zip_pwd = infected
+# Allow to download all Dropped/Procdump/etc
+download_all = no
+
+[evtx_download]
+enabled = no
+
+[pre_script]
+enabled = yes
+
+[during_script]
+enabled = yes
+
+[web_reporting]
+enabled = no
+
+[guacamole]
+enabled = no
+mode = vnc
+username =
+password =
+guacd_host = localhost
+guacd_port = 4822
+# Server that exposes the VNC ports (e.g., your KVM host)
+vnc_host = localhost
+# You might need to add your server IP to ALLOWED_HOSTS in web/web/settings.py if it not ["*""]
+# vnc or rdp
+guest_protocol = vnc
+guacd_recording_path = /opt/CAPEv2/storage/guacrecordings
+guest_width = 1280
+guest_height = 1024
+# rdp settings
+guest_rdp_port = 3389
+ignore_rdp_cert = false
+
+[packages]
+# VM tags may be used to specify on which guest machines a sample should be run
+# NOTE - One of the following OS version tags MUST be included for Windows VMs:
+# winxp, win7, win8, win10, win11
+# Ensure that VM is not set to reserved in config!
+# Some samples will only detonate on specific versions of Windows (see web.conf packages for more info)
+# Example: MSIX - Windows >= 10
+msix = win10,win11
+
+[security]
+# When using mounted folder you might want to set to no
+check_path_safe = yes
+# Can be multiple domains. Ex: domain.com,domain.net,domain.org
+csrf_trusted_origins =
+
+[package_exclusion]
+# Remove packages from submission page. Useful when the package application is not available
+# Example: packages = chrome,chromium,firefox
+packages =
+
+[yara_detail]
+enabled = no
+
+[pcap_ng]
+enabled = no
diff --git a/conf/xenserver.conf b/conf/default/xenserver.conf.default
similarity index 86%
rename from conf/xenserver.conf
rename to conf/default/xenserver.conf.default
index 73ada9abbf6..aca41f9818d 100644
--- a/conf/xenserver.conf
+++ b/conf/default/xenserver.conf.default
@@ -36,12 +36,12 @@ platform = windows
 # the analysis will fail.
 ip = 192.168.54.111
 
-# x64 binaries requires tags=x64
-# (Optional but IMPORTANT) Set your own tags. These are comma separated and help to identify
-# specific VMs. You can run samples on VMs with tag you require.
-# Note that the 64_bit tag is currently special.  For submitted 64-bit PE files,
-# the 64_bit tag will automatically be added, forcing them to be run on a 64-bit
-# VM.  For this reason, make sure all 64-bit VMs have the 64_bit tag.
+# Set the machine architecture
+# Required to auto select proper machine architecture for sample
+# x64 or x86
+arch = x86
+
+# VM.  For this reason, make sure all 64-bit VMs have the x64 tag.
 # tags = windows_xp_sp3,32_bit,acrobat_reader_6
 
 # (Optional) Specify the name of the network interface that should be used
diff --git a/conf/kvmremote.conf b/conf/kvmremote.conf
deleted file mode 100644
index 790484a4111..00000000000
--- a/conf/kvmremote.conf
+++ /dev/null
@@ -1,45 +0,0 @@
-[kvmremote]
-# Specify a comma-separated list of available machines to be used. For each
-# specified ID you have to define a dedicated section containing the details
-# on the respective machine. (E.g. machine1, machine2, machine3)
-machines = machine1
-
-# Specify a comma-separated list of KVM hypervisors to be used. For each
-# specified ID you have to define a dedicated section containing the details
-hypervisors = hypervisor1
-
-[hypervisor1]
-# Specify connection string for hypervisor
-dsn = qemu:///system
-# Specify interface used to sniff traffic with KVM
-interface = br0
-
-# Specify if memory dump mode is enabled, hypervisor is remote
-# (remote memory dump capability)
-# should use a ssh shared key and root user (as actions will be performed by root)
-# remote_host = root@192.168.122.1
-
-[machine1]
-# Specify the label name of the current machine as specified in your
-# physical machine configuration.
-label = machine1
-
-# Specify the IP address of the current machine. Make sure that the IP address
-# is valid and that the host machine is able to reach it. If not, the analysis
-# will fail.
-ip = 127.0.0.1
-
-# Specify the operating system platform used by current machine
-# [windows/darwin/linux].
-platform = windows
-
-# Specify hypervisor name for machine
-hypervisor = rex
-
-# x64 binaries requires tags=x64
-# (Optional but IMPORTANT) Set your own tags. These are comma separated and help to identify
-# specific VMs. You can run samples on VMs with tag you require.
-# Note that the 64_bit tag is currently special.  For submitted 64-bit PE files,
-# the 64_bit tag will automatically be added, forcing them to be run on a 64-bit
-# VM.  For this reason, make sure all 64-bit VMs have the 64_bit tag.
-# tags = windows_xp_sp3,32_bit,acrobat_reader_6
diff --git a/conf/readme.md b/conf/readme.md
new file mode 100644
index 00000000000..a115e2a69da
--- /dev/null
+++ b/conf/readme.md
@@ -0,0 +1,46 @@
+### Simplify your life
+
+* Community tag before module section means that module is done/maintained by community, not core dev.
+
+* Do NOT edit files with this name schema `<name>.conf.default` it will contain the same as repo config and in case if new field is added you don't need to update your config
+* Now you can use any of the following path to edit your configuration:
+    * `<name>.conf`
+    * `<name>.conf.d`
+    * `custom/conf/<name>.conf` # backward friendly
+    * `custom/conf/<name>.conf.d/*` # backward friendly
+
+* `$CAPE_ROOT = /opt/CAPEv2`
+
+`.conf.d` (e.g. `$CAPE_ROOT/conf/reporting.conf.d/`) directories may also
+be used to store additional configuration.
+
+In addition, for `Config()` objects, only read the files once, so that if,
+say, `Config("processing")` is created in multiple places, they'll both
+refer to the same object and the conf files would only be read once.
+
+A new `AnalysisConfig()` class was created to separate the distinction
+between these types of "singleton" Config objects that can read from
+multiple directories versus ones that just read from an analysis.conf
+(or some other single file).
+
+Allow environment variables to be referenced in config files.
+Allow config files to use values that are formatted like
+`%(ENV:SOME_ENVIRONMENT_VARIABLE)s`. In certain deployment strategies,
+this makes it easier to deal with secrets since they don't need to be
+stored on disk anywhere.
+
+* Don't include the envvars in `Config.get()`.
+
+`Config.get()` should only return the items that were actually in the
+config file.
+
+By: [Tommy Beadle](https://github.com/tbeadle) -> [commit](https://github.com/kevoreilly/CAPEv2/commit/e217139ff6cd1ad8f8e74626af990c1913653d21)
+
+### Extras - Mostly for devs only
+When jumping between branches is become hard to keep config syncronized.
+So as solution we introduce `CAPE_CD` aka `CAPE Config Directory` env variable.
+
+* Example:
+    * CAPE_CD=/opt/CAPEv2_conf poetry run python cuckoo.py
+    * CAPE_CD=/opt/CAPEv2_conf poetry run python utils/process.py
+    * CAPE_CD=/opt/CAPEv2_conf poetry run python manage.py runserver 0.0.0.0:8000
diff --git a/conf/web.conf b/conf/web.conf
deleted file mode 100644
index 4681453236a..00000000000
--- a/conf/web.conf
+++ /dev/null
@@ -1,184 +0,0 @@
-# Enable Django authentication/signup for website
-# More details here https://django-allauth.readthedocs.io
-# See web/web/settings.py for more configurations
-[web_auth]
-enabled = no
-# ReCaptcha protected admin login
-captcha = no
-2fa = no
-
-[registration]
-enabled = no
-manual_approve = yes
-email_required = yes
-email_confirmation = yes
-email_prefix_subject = "[CAPE Sandbox]"
-email_host = ""
-email_user = ""
-email_password =  ""
-email_port = 465
-use_ssl = 0
-use_tls = 0
-captcha_enabled = no
-
-# Do you wan to ban temporal email serivces?
-disposable_email_disable = yes
-disposable_domain_list = data/safelist/disposable_domain_list.txt
-
-[general]
-max_sample_size = 30000000
-# Number of results to show on webgui on search action
-# Intermediate solution, the ideal solution is pagination with cursor .skip(X).limit(Y)
-search_limit = 50
-
-#show submit to all VMs on webgui
-[all_vms]
-enabled = no
-
-[admin]
-enabled = no
-
-[comments]
-enabled = no
-
-#enable linux fields on webgui
-[linux]
-#For advanced users only, can be buggy, linux analysis is work in progress for fun
-enabled = no
-
-[malscore]
-enabled = no
-
-[vtupload]
-enabled = no
-
-#No means delete is disabled on webgui
-[delete]
-enabled = no
-
-#Dl'n'Exec analysis tab on submission
-[dlnexec]
-enabled = no
-
-#url analysis tab on submission
-[url_analysis]
-enabled = no
-
-#TLP markings on submission and webgui
-[tlp]
-enabled = no
-
-# Limitation for public instances, api has no limits
-[public]
-enabled = no
-priority = 1
-timeout = 300
-
-# Disable duplicated submissions for X hours
-[uniq_submission]
-enabled = no
-hours = 24
-
-[oauth]
-enabled = no
-agave = no
-amazon = no
-amazon_cognito = no
-angellist = no
-apple = no
-asana = no
-auth0 = no
-authentiq = no
-azure = no
-baidu = no
-basecamp = no
-battlenet = no
-bitbucket = no
-bitbucket_oauth2 = no
-bitly = no
-box = no
-cern = no
-coinbase = no
-dataporten = no
-daum = no
-digitalocean = no
-discord = no
-disqus = no
-douban = no
-doximity = no
-draugiem = no
-dropbox = no
-dwolla = no
-edmodo = no
-edx = no
-eventbrite = no
-eveonline = no
-evernote = no
-exist = no
-facebook = no
-feedly = no
-figma = no
-fivehundredpx = no
-flickr = no
-foursquare = no
-fxa = no
-github = no
-gitlab = no
-globus = no
-google = no
-hubic = no
-instagram = no
-jupyterhub = no
-kakao = no
-keycloak = no
-line = no
-linkedin = no
-linkedin_oauth2 = no
-mailchimp = no
-mailru = no
-meetup = no
-microsoft = no
-naver = no
-nextcloud = no
-odnoklassniki = no
-openid = no
-openstreetmap = no
-orcid = no
-patreon = no
-paypal = no
-persona = no
-pinterest = no
-quickbooks = no
-reddit = no
-robinhood = no
-salesforce = no
-sharefile = no
-shopify = no
-slack = no
-soundcloud = no
-spotify = no
-stackexchange = no
-steam = no
-stocktwits = no
-strava = no
-stripe = no
-telegram = no
-trello = no
-tumblr = no
-twentythreeandme = no
-twitch = no
-twitter = no
-untappd = no
-vimeo = no
-vimeo_oauth2 = no
-vk = no
-weibo = no
-weixin = no
-windowslive = no
-xing = no
-yahoo = no
-yandex = no
-ynab = no
-zoho = no
-zoom = no
-okta = no
diff --git a/cuckoo.py b/cuckoo.py
index d6d1a158e63..fa458a6067d 100644
--- a/cuckoo.py
+++ b/cuckoo.py
@@ -3,46 +3,62 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 import argparse
 import logging
 import os
 import sys
+from pathlib import Path
 
-if sys.version_info[:2] < (3, 5):
-    sys.exit("You are running an incompatible version of Python, please use >= 3.5")
+from lib.cuckoo.core.database import Database, init_database
+
+if sys.version_info[:2] < (3, 8):
+    sys.exit("You are running an incompatible version of Python, please use >= 3.8")
+
+if os.geteuid() == 0 and os.getenv("CAPE_AS_ROOT", "0") != "1":
+    sys.exit("Root is not allowed. You gonna break permission and other parts of CAPE. RTM!")
+
+from lib.cuckoo.common.exceptions import CuckooCriticalError, CuckooDependencyError
 
 try:
+    import bson
+
+    from lib.cuckoo.common.constants import CUCKOO_ROOT, CUCKOO_VERSION
     from lib.cuckoo.common.logo import logo
-    from lib.cuckoo.common.constants import CUCKOO_VERSION, CUCKOO_ROOT
-    from lib.cuckoo.common.exceptions import CuckooCriticalError
-    from lib.cuckoo.common.exceptions import CuckooDependencyError
-    from lib.cuckoo.core.startup import check_working_directory, check_configs
-    from lib.cuckoo.core.startup import create_structure
-    from lib.cuckoo.core.startup import init_logging, init_modules, check_webgui_mongo
-    from lib.cuckoo.core.startup import init_tasks, init_yara
-    from lib.cuckoo.core.scheduler import Scheduler
     from lib.cuckoo.core.resultserver import ResultServer
-    from lib.cuckoo.core.startup import init_rooter, init_routing
-
-    import bson
+    from lib.cuckoo.core.scheduler import Scheduler
+    from lib.cuckoo.core.startup import (
+        check_configs,
+        check_linux_dist,
+        check_tcpdump_permissions,
+        check_webgui_mongo,
+        check_working_directory,
+        create_structure,
+        init_logging,
+        init_modules,
+        init_rooter,
+        init_routing,
+        init_tasks,
+    )
 
     bson  # Pretend like it's actually being used (for static checkers.)
 except (CuckooDependencyError, ImportError) as e:
-    print("ERROR: Missing dependency: {0}".format(e))
+    print(f"ERROR: Missing dependency: {e}")
     sys.exit()
 
 log = logging.getLogger()
 
+check_linux_dist()
+
 
 def cuckoo_init(quiet=False, debug=False, artwork=False, test=False):
-    cur_path = os.getcwd()
+    cur_path = Path.cwd()
     os.chdir(CUCKOO_ROOT)
 
     logo()
     check_working_directory()
     check_configs()
     create_structure()
+    init_database()
 
     if artwork:
         import time
@@ -54,22 +70,24 @@ def cuckoo_init(quiet=False, debug=False, artwork=False, test=False):
         except KeyboardInterrupt:
             return
 
-    init_logging()
-
     if quiet:
-        log.setLevel(logging.WARN)
+        level = logging.WARN
     elif debug:
-        log.setLevel(logging.DEBUG)
+        level = logging.DEBUG
+    else:
+        level = logging.INFO
+    log.setLevel(level)
+    init_logging(level)
 
     check_webgui_mongo()
     init_modules()
-    init_tasks()
-    init_yara()
+    with Database().session.begin():
+        init_tasks()
     init_rooter()
     init_routing()
+    check_tcpdump_permissions()
 
-    # This is just a temporary hack, we need an actual test suite to integrate
-    # with Travis-CI.
+    # This is just a temporary hack, we need an actual test suite to integrate with Travis-CI.
     if test:
         return
 
@@ -78,14 +96,16 @@ def cuckoo_init(quiet=False, debug=False, artwork=False, test=False):
 
 
 def cuckoo_main(max_analysis_count=0):
-    cur_path = os.getcwd()
+    cur_path = Path.cwd()
     os.chdir(CUCKOO_ROOT)
 
+    sched = Scheduler(max_analysis_count)
     try:
-        sched = Scheduler(max_analysis_count)
         sched.start()
     except KeyboardInterrupt:
-        sched.stop()
+        log.info("Received keyboard interrupt, stopping.")
+    finally:
+        sched.shutdown_machinery()
 
     os.chdir(cur_path)
 
@@ -97,18 +117,35 @@ def cuckoo_main(max_analysis_count=0):
     parser.add_argument("-v", "--version", action="version", version="You are running Cuckoo Sandbox {0}".format(CUCKOO_VERSION))
     parser.add_argument("-a", "--artwork", help="Show artwork", action="store_true", required=False)
     parser.add_argument("-t", "--test", help="Test startup", action="store_true", required=False)
-    parser.add_argument("-m", "--max-analysis-count", help="Maximum number of analyses", type=int, required=False)
+    parser.add_argument("-m", "--max-analysis-count", help="Maximum number of analyses", type=int, required=False, default=0)
+    parser.add_argument(
+        "-s",
+        "--stop",
+        help="Send signal to STOP analyzing upcoming tasks. Finish existent tasks and quit. Proper restart to pick any core changes.",
+        action="store_true",
+        required=False,
+    )
     args = parser.parse_args()
 
-    try:
-        cuckoo_init(quiet=args.quiet, debug=args.debug, artwork=args.artwork, test=args.test)
-        if not args.artwork and not args.test:
-            cuckoo_main(max_analysis_count=args.max_analysis_count)
-    except CuckooCriticalError as e:
-        message = "{0}: {1}".format(e.__class__.__name__, e)
-        if len(log.handlers):
-            log.critical(message)
-        else:
-            sys.stderr.write("{0}\n".format(message))
-
-        sys.exit(1)
+    if args.stop:
+        import psutil
+
+        filename = Path(__file__).parts[-1]
+        for p in psutil.process_iter(attrs=["name", "pid", "cmdline"]):
+            # cuckoo.py but doing in this way in case we rename it in future
+            if filename in p.info["cmdline"]:
+                p.send_signal(1)
+                break
+    else:
+        try:
+            cuckoo_init(quiet=args.quiet, debug=args.debug, artwork=args.artwork, test=args.test)
+            if not args.artwork and not args.test:
+                cuckoo_main(max_analysis_count=args.max_analysis_count)
+        except CuckooCriticalError as e:
+            message = "{0}: {1}".format(e.__class__.__name__, e)
+            if any(filter(lambda hdlr: not isinstance(hdlr, logging.NullHandler), log.handlers)):
+                log.critical(message, exc_info=True)
+            else:
+                sys.stderr.write("{0}\n".format(message))
+
+            sys.exit(1)
diff --git a/cuckoo.pyproj b/cuckoo.pyproj
deleted file mode 100644
index 914ef4cbfaa..00000000000
--- a/cuckoo.pyproj
+++ /dev/null
@@ -1,695 +0,0 @@
-<?xml version="1.0" encoding="utf-8"?>
-<Project DefaultTargets="Build" xmlns="http://schemas.microsoft.com/developer/msbuild/2003" ToolsVersion="4.0">
-  <PropertyGroup>
-    <Configuration Condition=" '$(Configuration)' == '' ">Debug</Configuration>
-    <SchemaVersion>2.0</SchemaVersion>
-    <ProjectGuid>{365a3967-518e-457b-972a-3c90834f0f80}</ProjectGuid>
-    <ProjectHome />
-    <StartupFile />
-    <SearchPath />
-    <WorkingDirectory>.</WorkingDirectory>
-    <OutputPath>.</OutputPath>
-    <OutputPath>.</OutputPath>
-    <VisualStudioVersion Condition="'$(VisualStudioVersion)' == ''">10.0</VisualStudioVersion>
-    <VSToolsPath Condition="'$(VSToolsPath)' == ''">$(MSBuildExtensionsPath32)\Microsoft\VisualStudio\v$(VisualStudioVersion)</VSToolsPath>
-  </PropertyGroup>
-  <PropertyGroup Condition="'$(Configuration)' == 'Debug'" />
-  <PropertyGroup Condition="'$(Configuration)' == 'Release'" />
-  <PropertyGroup>
-    <PtvsTargetsFile>$(MSBuildExtensionsPath32)\Microsoft\VisualStudio\v$(VisualStudioVersion)\Python Tools\Microsoft.PythonTools.targets</PtvsTargetsFile>
-  </PropertyGroup>
-  <ItemGroup>
-    <Content Include="conf\analyzer\windows\bin\execsc.exe" />
-    <Content Include="conf\analyzer\windows\bin\loader.exe" />
-    <Content Include="conf\analyzer\windows\bin\loader_x64.exe" />
-    <Content Include="conf\analyzer\windows\dll\cuckoomon.dll" />
-    <Content Include="conf\analyzer\windows\dll\cuckoomon_x64.dll" />
-    <Content Include="conf\api.conf" />
-    <Content Include="conf\auxiliary.conf" />
-    <Content Include="conf\cuckoo.conf" />
-    <Content Include="conf\esx.conf" />
-    <Content Include="conf\kvm.conf" />
-    <Content Include="conf\malheur.conf" />
-    <Content Include="conf\memory.conf" />
-    <Content Include="conf\physical.conf" />
-    <Content Include="conf\processing.conf" />
-    <Content Include="conf\reporting.conf" />
-    <Content Include="conf\virtualbox.conf" />
-    <Content Include="conf\vmware.conf" />
-    <Content Include="conf\vsphere.conf" />
-    <Content Include="conf\xenserver.conf" />
-    <Content Include="data\yara\binaries\embedded.yar" />
-    <Content Include="data\yara\binaries\shellcodes.yar" />
-    <Content Include="data\yara\binaries\vmdetect.yar" />
-    <Content Include="data\yara\memory\.gitignore" />
-    <Content Include="data\yara\memory\darkcomet.yar" />
-    <Content Include="data\yara\memory\dridex.yar" />
-    <Content Include="data\yara\memory\dyre.yar" />
-    <Content Include="data\yara\memory\kazybot.yar" />
-    <Content Include="data\yara\urls\.gitignore" />
-    <Content Include="docs\AUTHORS" />
-    <Content Include="docs\book\src\customization\auxiliary.rst" />
-    <Content Include="docs\book\src\customization\index.rst" />
-    <Content Include="docs\book\src\customization\machinery.rst" />
-    <Content Include="docs\book\src\customization\packages.rst" />
-    <Content Include="docs\book\src\customization\processing.rst" />
-    <Content Include="docs\book\src\customization\reporting.rst" />
-    <Content Include="docs\book\src\customization\signatures.rst" />
-    <Content Include="docs\book\src\development\code_style.rst" />
-    <Content Include="docs\book\src\development\development_notes.rst" />
-    <Content Include="docs\book\src\development\index.rst" />
-    <Content Include="docs\book\src\faq\index.rst" />
-    <Content Include="docs\book\src\finalremarks\index.rst" />
-    <Content Include="docs\book\src\index.rst" />
-    <Content Include="docs\book\src\installation\guest\agent.rst" />
-    <Content Include="docs\book\src\installation\guest\cloning.rst" />
-    <Content Include="docs\book\src\installation\guest\creation.rst" />
-    <Content Include="docs\book\src\installation\guest\index.rst" />
-    <Content Include="docs\book\src\installation\guest\network.rst" />
-    <Content Include="docs\book\src\installation\guest\requirements.rst" />
-    <Content Include="docs\book\src\installation\guest\saving.rst" />
-    <Content Include="docs\book\src\installation\guest_physical\creation.rst" />
-    <Content Include="docs\book\src\installation\guest_physical\index.rst" />
-    <Content Include="docs\book\src\installation\guest_physical\network.rst" />
-    <Content Include="docs\book\src\installation\guest_physical\requirements.rst" />
-    <Content Include="docs\book\src\installation\guest_physical\saving.rst" />
-    <Content Include="docs\book\src\installation\host\configuration.rst" />
-    <Content Include="docs\book\src\installation\host\index.rst" />
-    <Content Include="docs\book\src\installation\host\installation.rst" />
-    <Content Include="docs\book\src\installation\host\requirements.rst" />
-    <Content Include="docs\book\src\installation\index.rst" />
-    <Content Include="docs\book\src\installation\upgrade.rst" />
-    <Content Include="docs\book\src\introduction\index.rst" />
-    <Content Include="docs\book\src\introduction\license.rst" />
-    <Content Include="docs\book\src\introduction\sandboxing.rst" />
-    <Content Include="docs\book\src\introduction\what.rst" />
-    <Content Include="docs\book\src\Makefile" />
-    <Content Include="docs\book\src\usage\api.rst" />
-    <Content Include="docs\book\src\usage\dist.rst" />
-    <Content Include="docs\book\src\usage\index.rst" />
-    <Content Include="docs\book\src\usage\packages.rst" />
-    <Content Include="docs\book\src\usage\results.rst" />
-    <Content Include="docs\book\src\usage\start.rst" />
-    <Content Include="docs\book\src\usage\submit.rst" />
-    <Content Include="docs\book\src\usage\utilities.rst" />
-    <Content Include="docs\book\src\usage\web.rst" />
-    <Content Include="docs\book\src\_images\screenshots\fog_host_management.png" />
-    <Content Include="docs\book\src\_images\screenshots\fog_image_management.png" />
-    <Content Include="docs\book\src\_images\screenshots\fog_scheduled_job.png" />
-    <Content Include="docs\book\src\_images\screenshots\windows_network.png" />
-    <Content Include="docs\book\src\_images\screenshots\windows_registry.png" />
-    <Content Include="docs\CHANGELOG" />
-    <Content Include="docs\LICENSE" />
-    <Content Include="docs\README" />
-    <Content Include="lib\cuckoo\common\peepdf\AUTHORS" />
-    <Content Include="lib\cuckoo\common\peepdf\CHANGELOG" />
-    <Content Include="lib\cuckoo\common\peepdf\colorama\PKG-INFO" />
-    <Content Include="lib\cuckoo\common\peepdf\COPYING" />
-    <Content Include="lib\cuckoo\common\peepdf\jsbeautifier\unpackers\README.specs.mkd" />
-    <Content Include="lib\cuckoo\common\peepdf\peepdf.dtd" />
-    <Content Include="lib\cuckoo\common\peepdf\README" />
-    <Content Include="lib\cuckoo\common\peepdf\TODO" />
-    <Content Include="modules\processing\parsers\mwcp\resources\fields.json" />
-    <Content Include="modules\processing\parsers\mwcp\resources\fields.txt" />
-    <Content Include="README.md" />
-    <Content Include="requirements.txt" />
-    <Compile Include="analyzer\windows\lib\api\utils.py">
-      <SubType>Code</SubType>
-    </Compile>
-    <Compile Include="analyzer\windows\lib\core\log.py">
-      <SubType>Code</SubType>
-    </Compile>
-    <Compile Include="analyzer\windows\modules\auxiliary\browser.py" />
-    <Compile Include="analyzer\windows\modules\auxiliary\digisig.py" />
-    <Compile Include="analyzer\windows\modules\auxiliary\usage.py" />
-    <Compile Include="analyzer\windows\modules\packages\chrome.py" />
-    <Compile Include="analyzer\windows\modules\packages\hta.py" />
-    <Compile Include="analyzer\windows\modules\packages\js.py" />
-    <Compile Include="analyzer\windows\modules\packages\msg.py" />
-    <Compile Include="analyzer\windows\modules\packages\eml.py" />
-    <Compile Include="analyzer\windows\modules\packages\rar.py" />
-    <Compile Include="analyzer\windows\modules\packages\regsvr.py" />
-    <Compile Include="analyzer\windows\modules\packages\firefox.py" />
-    <Compile Include="analyzer\windows\modules\packages\msi.py" />
-    <Compile Include="analyzer\windows\modules\packages\ppt.py" />
-    <Compile Include="analyzer\windows\modules\packages\swf.py" />
-    <Compile Include="analyzer\windows\modules\packages\wsf.py" />
-    <Compile Include="cuckoo.py" />
-    <Compile Include="agent\agent.py" />
-    <Compile Include="lib\cuckoo\common\decoders\alienspy.py">
-      <SubType>Code</SubType>
-    </Compile>
-    <Compile Include="lib\cuckoo\common\decoders\darkcomet.py">
-      <SubType>Code</SubType>
-    </Compile>
-    <Compile Include="lib\cuckoo\common\decoders\nanocore.py">
-      <SubType>Code</SubType>
-    </Compile>
-    <Compile Include="lib\cuckoo\common\decoders\njrat.py">
-      <SubType>Code</SubType>
-    </Compile>
-    <Compile Include="lib\cuckoo\common\decoders\qrat.py">
-      <SubType>Code</SubType>
-    </Compile>
-    <Compile Include="lib\cuckoo\common\decoders\__init__.py">
-      <SubType>Code</SubType>
-    </Compile>
-    <Compile Include="lib\cuckoo\common\demux.py">
-      <SubType>Code</SubType>
-    </Compile>
-    <Compile Include="lib\cuckoo\common\email_utils.py" />
-    <Compile Include="lib\cuckoo\common\icon.py">
-      <SubType>Code</SubType>
-    </Compile>
-    <Compile Include="lib\cuckoo\common\office\DridexURLDecoder.py" />
-    <Compile Include="lib\cuckoo\common\office\msgextract.py">
-      <SubType>Code</SubType>
-    </Compile>
-    <Compile Include="lib\cuckoo\common\office\olefile.py" />
-    <Compile Include="lib\cuckoo\common\office\oleid.py" />
-    <Compile Include="lib\cuckoo\common\office\olevba.py" />
-    <Compile Include="lib\cuckoo\common\office\pyparsing.py" />
-    <Compile Include="lib\cuckoo\common\office\__init__.py" />
-    <Compile Include="lib\cuckoo\common\pdftools\pdf-parser.py" />
-    <Compile Include="lib\cuckoo\common\pdftools\pdfid.py" />
-    <Compile Include="lib\cuckoo\common\pdftools\__init__.py" />
-    <Compile Include="lib\cuckoo\common\peepdf\aes.py" />
-    <Compile Include="lib\cuckoo\common\peepdf\aespython\aes_cipher.py" />
-    <Compile Include="lib\cuckoo\common\peepdf\aespython\aes_tables.py" />
-    <Compile Include="lib\cuckoo\common\peepdf\aespython\cbc_mode.py" />
-    <Compile Include="lib\cuckoo\common\peepdf\aespython\cfb_mode.py" />
-    <Compile Include="lib\cuckoo\common\peepdf\aespython\key_expander.py" />
-    <Compile Include="lib\cuckoo\common\peepdf\aespython\ofb_mode.py" />
-    <Compile Include="lib\cuckoo\common\peepdf\aespython\test_keys.py" />
-    <Compile Include="lib\cuckoo\common\peepdf\aespython\__init__.py" />
-    <Compile Include="lib\cuckoo\common\peepdf\ccitt.py" />
-    <Compile Include="lib\cuckoo\common\peepdf\colorama\ansi.py" />
-    <Compile Include="lib\cuckoo\common\peepdf\colorama\ansitowin32.py" />
-    <Compile Include="lib\cuckoo\common\peepdf\colorama\initialise.py" />
-    <Compile Include="lib\cuckoo\common\peepdf\colorama\win32.py" />
-    <Compile Include="lib\cuckoo\common\peepdf\colorama\winterm.py" />
-    <Compile Include="lib\cuckoo\common\peepdf\colorama\__init__.py" />
-    <Compile Include="lib\cuckoo\common\peepdf\jjdecode.py" />
-    <Compile Include="lib\cuckoo\common\peepdf\JSAnalysis.py" />
-    <Compile Include="lib\cuckoo\common\peepdf\jsbeautifier\unpackers\evalbased.py" />
-    <Compile Include="lib\cuckoo\common\peepdf\jsbeautifier\unpackers\javascriptobfuscator.py" />
-    <Compile Include="lib\cuckoo\common\peepdf\jsbeautifier\unpackers\myobfuscate.py" />
-    <Compile Include="lib\cuckoo\common\peepdf\jsbeautifier\unpackers\packer.py" />
-    <Compile Include="lib\cuckoo\common\peepdf\jsbeautifier\unpackers\urlencode.py" />
-    <Compile Include="lib\cuckoo\common\peepdf\jsbeautifier\unpackers\__init__.py" />
-    <Compile Include="lib\cuckoo\common\peepdf\jsbeautifier\__init__.py" />
-    <Compile Include="lib\cuckoo\common\peepdf\lzw.py" />
-    <Compile Include="lib\cuckoo\common\peepdf\PDFConsole.py" />
-    <Compile Include="lib\cuckoo\common\peepdf\PDFCore.py" />
-    <Compile Include="lib\cuckoo\common\peepdf\PDFCrypto.py" />
-    <Compile Include="lib\cuckoo\common\peepdf\PDFFilters.py" />
-    <Compile Include="lib\cuckoo\common\peepdf\PDFUtils.py" />
-    <Compile Include="lib\cuckoo\common\peepdf\__init__.py" />
-    <Compile Include="lib\cuckoo\common\quarantine.py">
-      <SubType>Code</SubType>
-    </Compile>
-    <Compile Include="lib\cuckoo\common\saztopcap.py" />
-    <Compile Include="lib\__init__.py" />
-    <Compile Include="modules\auxiliary\tor.py" />
-    <Compile Include="modules\feeds\bad_ssl_certs.py" />
-    <Compile Include="modules\feeds\__init__.py" />
-    <Compile Include="modules\processing\CAPE.py" />
-    <Compile Include="modules\processing\parsers\malwareconfig\AAR.py" />
-    <Compile Include="modules\processing\parsers\malwareconfig\adWind.py" />
-    <Compile Include="modules\processing\parsers\malwareconfig\Adzok.py" />
-    <Compile Include="modules\processing\parsers\malwareconfig\AlienSpy.py" />
-    <Compile Include="modules\processing\parsers\malwareconfig\Arcom.py" />
-    <Compile Include="modules\processing\parsers\malwareconfig\BlackNix.py" />
-    <Compile Include="modules\processing\parsers\malwareconfig\BlackShades.py" />
-    <Compile Include="modules\processing\parsers\malwareconfig\BlueBanana.py" />
-    <Compile Include="modules\processing\parsers\malwareconfig\Bozok.py" />
-    <Compile Include="modules\processing\parsers\malwareconfig\ClientMesh.py" />
-    <Compile Include="modules\processing\parsers\malwareconfig\CyberGate.py" />
-    <Compile Include="modules\processing\parsers\malwareconfig\DarkComet.py" />
-    <Compile Include="modules\processing\parsers\malwareconfig\DarkRAT.py" />
-    <Compile Include="modules\processing\parsers\malwareconfig\Greame.py" />
-    <Compile Include="modules\processing\parsers\malwareconfig\HawkEye.py" />
-    <Compile Include="modules\processing\parsers\malwareconfig\JavaDropper.py" />
-    <Compile Include="modules\processing\parsers\malwareconfig\LostDoor.py" />
-    <Compile Include="modules\processing\parsers\malwareconfig\LuminosityLink.py" />
-    <Compile Include="modules\processing\parsers\malwareconfig\LuxNet.py" />
-    <Compile Include="modules\processing\parsers\malwareconfig\NanoCore.py" />
-    <Compile Include="modules\processing\parsers\malwareconfig\NetWire.py" />
-    <Compile Include="modules\processing\parsers\malwareconfig\njRat.py" />
-    <Compile Include="modules\processing\parsers\malwareconfig\Pandora.py" />
-    <Compile Include="modules\processing\parsers\malwareconfig\Plasma.py" />
-    <Compile Include="modules\processing\parsers\malwareconfig\PoisonIvy.py" />
-    <Compile Include="modules\processing\parsers\malwareconfig\PredatorPain.py" />
-    <Compile Include="modules\processing\parsers\malwareconfig\Punisher.py" />
-    <Compile Include="modules\processing\parsers\malwareconfig\pyAndroRat.py" />
-    <Compile Include="modules\processing\parsers\malwareconfig\pyDendroid.py" />
-    <Compile Include="modules\processing\parsers\malwareconfig\pyRattyExtractor.py" />
-    <Compile Include="modules\processing\parsers\malwareconfig\pySandroRat.py" />
-    <Compile Include="modules\processing\parsers\malwareconfig\pySpyNote.py" />
-    <Compile Include="modules\processing\parsers\malwareconfig\Sakula.py" />
-    <Compile Include="modules\processing\parsers\malwareconfig\SmallNet.py" />
-    <Compile Include="modules\processing\parsers\malwareconfig\unrecom.py" />
-    <Compile Include="modules\processing\parsers\malwareconfig\xRAT.py" />
-    <Compile Include="modules\processing\parsers\malwareconfig\Xtreme.py" />
-    <Compile Include="modules\processing\parsers\malwareconfig\_jRat.py" />
-    <Compile Include="modules\processing\parsers\malwareconfig\_ShadowTech.py" />
-    <Compile Include="modules\processing\parsers\malwareconfig\_SpyGate.py" />
-    <Compile Include="modules\processing\parsers\malwareconfig\_VirusRat.py" />
-    <Compile Include="modules\processing\parsers\malwareconfig\__init__.py" />
-    <Compile Include="modules\processing\parsers\mwcp\malwareconfigparser.py" />
-    <Compile Include="modules\processing\parsers\mwcp\malwareconfigreporter.py" />
-    <Compile Include="modules\processing\parsers\mwcp\malwareconfigtester.py" />
-    <Compile Include="modules\processing\parsers\mwcp\parsers\EvilGrab.py" />
-    <Compile Include="modules\processing\parsers\mwcp\parsers\HttpBrowser.py" />
-    <Compile Include="modules\processing\parsers\mwcp\parsers\__init__.py" />
-    <Compile Include="modules\processing\parsers\mwcp\__init__.py" />
-    <Compile Include="modules\processing\parsers\plugxconfig\plugx.py" />
-    <Compile Include="modules\processing\parsers\plugxconfig\__init__.py" />
-    <Compile Include="modules\processing\parsers\__init__.py" />
-    <Compile Include="modules\processing\usage.py" />
-    <Compile Include="modules\reporting\compression.py">
-      <SubType>Code</SubType>
-    </Compile>
-    <Compile Include="modules\reporting\elasticsearchdb.py" />
-    <Compile Include="modules\reporting\maec41.py" />
-    <Compile Include="modules\reporting\malheur.py" />
-    <Compile Include="modules\processing\suricata.py" />
-    <Compile Include="modules\processing\cif.py" />
-    <Compile Include="modules\reporting\misp.py" />
-    <Compile Include="modules\reporting\moloch.py" />
-    <Compile Include="modules\reporting\reporthtmlsummary.py" />
-    <Compile Include="modules\reporting\reportpdf.py" />
-    <Compile Include="modules\reporting\resubmitexe.py">
-      <SubType>Code</SubType>
-    </Compile>
-    <Compile Include="modules\reporting\retention.py" />
-    <Compile Include="modules\reporting\submitCAPE.py" />
-    <Compile Include="modules\reporting\syslog.py" />
-    <Compile Include="modules\__init__.py" />
-    <Compile Include="tests\abstracts_tests.py" />
-    <Compile Include="tests\colors_tests.py" />
-    <Compile Include="tests\config_tests.py" />
-    <Compile Include="tests\integrity.py" />
-    <Compile Include="tests\objects_tests.py" />
-    <Compile Include="tests\processor_tests.py" />
-    <Compile Include="tests\reporter_tests.py" />
-    <Compile Include="tests\sniffer_tests.py" />
-    <Compile Include="tests\utils_tests.py" />
-    <Compile Include="utils\api.py" />
-    <Compile Include="utils\community.py" />
-    <Compile Include="utils\db_migration\versions\add_shrike_and_parent_id_columns.py" />
-    <Compile Include="utils\db_migration\versions\from_1_1_to_1_2-added_states.py" />
-    <Compile Include="utils\db_migration\versions\from_1_1_to_1_2-extend_file_type.py" />
-    <Compile Include="utils\db_migration\versions\from_1_2_to_1_2-accuvant-add_statistics.py">
-      <SubType>Code</SubType>
-    </Compile>
-    <Compile Include="utils\db_migration\versions\proper_indexes.py" />
-    <Compile Include="utils\dist.py" />
-    <Compile Include="utils\process.py" />
-    <Compile Include="utils\listdump.py" />
-    <Compile Include="utils\stats.py" />
-    <Compile Include="utils\submit.py" />
-    <Compile Include="utils\tcpdumpwrapper.py">
-      <SubType>Code</SubType>
-    </Compile>
-    <Compile Include="utils\web.py" />
-    <Compile Include="utils\__init__.py">
-      <SubType>Code</SubType>
-    </Compile>
-    <Compile Include="web\analysis\templatetags\generic_tags.py" />
-    <Compile Include="web\analysis\templatetags\key_tags.py" />
-    <Compile Include="web\analysis\templatetags\pdf_tags.py" />
-    <Compile Include="web\api\urls.py" />
-    <Compile Include="web\api\views.py" />
-    <Compile Include="web\api\__init__.py" />
-    <Compile Include="web\manage.py" />
-    <Compile Include="analyzer\windows\analyzer.py" />
-    <Compile Include="analyzer\windows\lib\__init__.py" />
-    <Compile Include="analyzer\windows\modules\__init__.py" />
-    <Compile Include="analyzer\windows\lib\api\process.py" />
-    <Compile Include="analyzer\windows\lib\api\screenshot.py" />
-    <Compile Include="analyzer\windows\lib\api\__init__.py" />
-    <Compile Include="analyzer\windows\lib\common\abstracts.py" />
-    <Compile Include="analyzer\windows\lib\common\constants.py" />
-    <Compile Include="analyzer\windows\lib\common\defines.py" />
-    <Compile Include="analyzer\windows\lib\common\errors.py" />
-    <Compile Include="analyzer\windows\lib\common\exceptions.py" />
-    <Compile Include="analyzer\windows\lib\common\hashing.py" />
-    <Compile Include="analyzer\windows\lib\common\rand.py" />
-    <Compile Include="analyzer\windows\lib\common\results.py" />
-    <Compile Include="analyzer\windows\lib\common\__init__.py" />
-    <Compile Include="analyzer\windows\lib\core\config.py" />
-    <Compile Include="analyzer\windows\lib\core\packages.py" />
-    <Compile Include="analyzer\windows\lib\core\privileges.py" />
-    <Compile Include="analyzer\windows\lib\core\startup.py" />
-    <Compile Include="analyzer\windows\lib\core\__init__.py" />
-    <Compile Include="analyzer\windows\modules\auxiliary\disguise.py" />
-    <Compile Include="analyzer\windows\modules\auxiliary\human.py" />
-    <Compile Include="analyzer\windows\modules\auxiliary\screenshots.py" />
-    <Compile Include="analyzer\windows\modules\auxiliary\__init__.py" />
-    <Compile Include="analyzer\windows\modules\packages\applet.py" />
-    <Compile Include="analyzer\windows\modules\packages\bin.py" />
-    <Compile Include="analyzer\windows\modules\packages\cpl.py" />
-    <Compile Include="analyzer\windows\modules\packages\dll.py" />
-    <Compile Include="analyzer\windows\modules\packages\doc.py" />
-    <Compile Include="analyzer\windows\modules\packages\exe.py" />
-    <Compile Include="analyzer\windows\modules\packages\generic.py" />
-    <Compile Include="analyzer\windows\modules\packages\html.py" />
-    <Compile Include="analyzer\windows\modules\packages\ie.py" />
-    <Compile Include="analyzer\windows\modules\packages\jar.py" />
-    <Compile Include="analyzer\windows\modules\packages\pdf.py" />
-    <Compile Include="analyzer\windows\modules\packages\ps1.py" />
-    <Compile Include="analyzer\windows\modules\packages\python.py" />
-    <Compile Include="analyzer\windows\modules\packages\vbs.py" />
-    <Compile Include="analyzer\windows\modules\packages\xls.py" />
-    <Compile Include="analyzer\windows\modules\packages\zip.py" />
-    <Compile Include="analyzer\windows\modules\packages\__init__.py" />
-    <Content Include="data\html\base-report.html" />
-    <Content Include="data\html\base-web.html" />
-    <Content Include="data\html\browse.html" />
-    <Content Include="data\html\error.html" />
-    <Content Include="data\html\pagination-menu.html" />
-    <Content Include="data\html\pagination-rpp.html" />
-    <Content Include="data\html\report.html" />
-    <Content Include="data\html\submit.html" />
-    <Content Include="data\html\success.html" />
-    <Content Include="data\peutils\UserDB.TXT" />
-    <Content Include="data\html\css\bootstrap-responsive.min.css" />
-    <Content Include="data\html\css\bootstrap.min.css" />
-    <Content Include="data\html\graphic\logo.html" />
-    <Content Include="data\html\img\glyphicons-halflings-white.png" />
-    <Content Include="data\html\img\glyphicons-halflings.png" />
-    <Content Include="data\html\js\bootstrap.min.js" />
-    <Content Include="data\html\js\functions.js" />
-    <Content Include="data\html\js\jquery.min.js" />
-    <Content Include="data\html\sections\behavior.html" />
-    <Content Include="data\html\sections\dropped.html" />
-    <Content Include="data\html\sections\errors.html" />
-    <Content Include="data\html\sections\file.html" />
-    <Content Include="data\html\sections\info.html" />
-    <Content Include="data\html\sections\network.html" />
-    <Content Include="data\html\sections\screenshots.html" />
-    <Content Include="data\html\sections\signatures.html" />
-    <Content Include="data\html\sections\static.html" />
-    <Content Include="data\html\sections\url.html" />
-    <Content Include="data\html\sections\volatility.html" />
-    <Compile Include="docs\book\src\conf.py" />
-    <Content Include="docs\book\src\_images\logo\cuckoo.png" />
-    <Content Include="docs\book\src\_images\schemas\architecture-main.png" />
-    <Content Include="docs\book\src\_images\screenshots\shared_folders.png" />
-    <Content Include="docs\book\src\_images\screenshots\windows_security.png" />
-    <Compile Include="lib\cuckoo\__init__.py" />
-    <Compile Include="lib\maec\maec11.py" />
-    <Compile Include="lib\maec\maec40.py" />
-    <Compile Include="lib\maec\__init__.py" />
-    <Compile Include="lib\cuckoo\common\abstracts.py" />
-    <Compile Include="lib\cuckoo\common\colors.py" />
-    <Compile Include="lib\cuckoo\common\config.py" />
-    <Compile Include="lib\cuckoo\common\constants.py" />
-    <Compile Include="lib\cuckoo\common\defines.py" />
-    <Compile Include="lib\cuckoo\common\dns.py" />
-    <Compile Include="lib\cuckoo\common\exceptions.py" />
-    <Compile Include="lib\cuckoo\common\fraunhofer_helper.py" />
-    <Compile Include="lib\cuckoo\common\irc.py" />
-    <Compile Include="lib\cuckoo\common\logo.py" />
-    <Compile Include="lib\cuckoo\common\logtbl.py" />
-    <Compile Include="lib\cuckoo\common\netlog.py" />
-    <Compile Include="lib\cuckoo\common\objects.py" />
-    <Compile Include="lib\cuckoo\common\utils.py" />
-    <Compile Include="lib\cuckoo\common\__init__.py" />
-    <Compile Include="lib\cuckoo\core\database.py" />
-    <Compile Include="lib\cuckoo\core\guest.py" />
-    <Compile Include="lib\cuckoo\core\plugins.py" />
-    <Compile Include="lib\cuckoo\core\resultserver.py" />
-    <Compile Include="lib\cuckoo\core\scheduler.py" />
-    <Compile Include="lib\cuckoo\core\startup.py" />
-    <Compile Include="lib\cuckoo\core\__init__.py" />
-    <Compile Include="modules\auxiliary\sniffer.py" />
-    <Compile Include="modules\auxiliary\__init__.py" />
-    <Compile Include="modules\machinery\esx.py" />
-    <Compile Include="modules\machinery\kvm.py" />
-    <Compile Include="modules\machinery\virtualbox.py" />
-    <Compile Include="modules\machinery\vmware.py" />
-    <Compile Include="modules\machinery\__init__.py" />
-    <Compile Include="modules\processing\analysisinfo.py" />
-    <Compile Include="modules\processing\behavior.py" />
-    <Compile Include="modules\processing\debug.py" />
-    <Compile Include="modules\processing\dropped.py" />
-    <Compile Include="modules\processing\memory.py" />
-    <Compile Include="modules\processing\network.py" />
-    <Compile Include="modules\processing\procmemory.py" />
-    <Compile Include="modules\processing\static.py" />
-    <Compile Include="modules\processing\strings.py" />
-    <Compile Include="modules\processing\targetinfo.py" />
-    <Compile Include="modules\processing\virustotal.py" />
-    <Compile Include="modules\processing\__init__.py" />
-    <Compile Include="modules\reporting\jsondump.py" />
-    <Compile Include="modules\reporting\mmdef.py" />
-    <Compile Include="modules\reporting\mongodb.py" />
-    <Compile Include="modules\reporting\reporthtml.py" />
-    <Compile Include="modules\reporting\__init__.py" />
-    <Compile Include="modules\signatures\creates_exe.py" />
-    <Compile Include="modules\signatures\generic_metrics.py" />
-    <Compile Include="modules\signatures\__init__.py" />
-    <Compile Include="utils\db_migration\env.py" />
-    <Compile Include="utils\db_migration\versions\from_0_6_to_1_1.py" />
-    <Compile Include="web\analysis\forms.py" />
-    <Compile Include="web\analysis\urls.py" />
-    <Compile Include="web\analysis\views.py" />
-    <Compile Include="web\analysis\__init__.py" />
-    <Compile Include="web\dashboard\urls.py" />
-    <Compile Include="web\dashboard\views.py" />
-    <Compile Include="web\dashboard\__init__.py" />
-    <Compile Include="web\submission\urls.py" />
-    <Compile Include="web\submission\views.py" />
-    <Compile Include="web\submission\__init__.py" />
-    <Content Include="web\static\fonts\glyphicons-halflings-regular.eot" />
-    <Content Include="web\static\fonts\glyphicons-halflings-regular.ttf" />
-    <Content Include="web\static\fonts\glyphicons-halflings-regular.woff" />
-    <Content Include="web\static\fonts\glyphicons-halflings-regular.woff2" />
-    <Content Include="web\templates\analysis\antivirus.html" />
-    <Content Include="web\templates\analysis\behavior\_api_call.html" />
-    <Content Include="web\templates\analysis\behavior\_search.html" />
-    <Content Include="web\templates\analysis\behavior\_search_results.html" />
-    <Content Include="web\templates\analysis\comments\index.html" />
-    <Content Include="web\templates\analysis\memory\_netscan.html" />
-    <Content Include="web\templates\analysis\memory\_sockscan.html" />
-    <Content Include="web\templates\analysis\network\_smtp.html" />
-    <Content Include="web\templates\analysis\shrike.html" />
-    <Content Include="web\templates\analysis\static\_dotnet.html" />
-    <Content Include="web\templates\analysis\static\_script.html" />
-    <Content Include="web\templates\analysis\static\_java.html" />
-    <Content Include="web\templates\analysis\static\_office.html" />
-    <Content Include="web\templates\analysis\statistics\index.html" />
-    <Content Include="web\templates\analysis\similar\index.html" />
-    <Content Include="web\templates\analysis\network\_cif.html" />
-    <Content Include="web\templates\analysis\reports\index.html" />
-    <Content Include="web\templates\analysis\network\_suricata_alerts.html" />
-    <Content Include="web\templates\analysis\network\_suricata_files.html" />
-    <Content Include="web\templates\analysis\network\_suricata_http.html" />
-    <Content Include="web\templates\analysis\network\_suricata_tls.html" />
-    <Content Include="web\templates\analysis\network\_udp.html" />
-    <Content Include="web\templates\analysis\network\_tcp.html" />
-    <Content Include="web\templates\analysis\procmemory\index.html" />
-    <Content Include="web\templates\analysis\static\_pdf.html" />
-    <Content Include="web\templates\analysis\static\_ratconfig.html" />
-    <Content Include="web\templates\analysis\surialert.html" />
-    <Content Include="web\templates\analysis\surifiles.html" />
-    <Content Include="web\templates\analysis\surihttp.html" />
-    <Content Include="web\templates\analysis\suritls.html" />
-    <Content Include="web\templates\api\index.html" />
-    <Content Include="web\templates\base.html" />
-    <Content Include="web\templates\error.html" />
-    <Content Include="web\templates\footer.html" />
-    <Content Include="web\templates\header.html" />
-    <Content Include="web\templates\submission\complete.html" />
-    <Content Include="web\templates\submission\status.html" />
-    <Content Include="web\templates\success_simple.html" />
-    <Content Include="web\templates\success.html" />
-    <Compile Include="web\web\headers.py" />
-    <Compile Include="web\web\local_settings.py" />
-    <Compile Include="web\web\settings.py" />
-    <Compile Include="web\web\urls.py" />
-    <Compile Include="web\web\wsgi.py" />
-    <Compile Include="web\web\__init__.py" />
-    <Compile Include="web\analysis\templatetags\analysis_tags.py" />
-    <Compile Include="web\analysis\templatetags\__init__.py" />
-    <Content Include="web\static\css\bootstrap-responsive.min.css" />
-    <Content Include="web\static\css\bootstrap.min.css" />
-    <Content Include="web\static\css\lightbox.css" />
-    <Content Include="web\static\css\style.css" />
-    <Content Include="web\static\fonts\glyphicons-halflings-regular.svg" />
-    <Content Include="web\static\graphic\background.png" />
-    <Content Include="web\static\graphic\cuckoo.png" />
-    <Content Include="web\static\img\close.png" />
-    <Content Include="web\static\img\next.png" />
-    <Content Include="web\static\img\prev.png" />
-    <Content Include="web\static\img\loading.gif" />
-    <Content Include="web\static\js\bootstrap-fileupload.js" />
-    <Content Include="web\static\js\bootstrap.min.js" />
-    <Content Include="web\static\js\jquery.js" />
-    <Content Include="web\static\js\lightbox.js" />
-    <Content Include="web\templates\analysis\index.html" />
-    <Content Include="web\templates\analysis\pending.html" />
-    <Content Include="web\templates\analysis\report.html" />
-    <Content Include="web\templates\analysis\search.html" />
-    <Content Include="web\templates\dashboard\index.html" />
-    <Content Include="web\templates\submission\index.html" />
-    <Content Include="web\templates\analysis\admin\index.html" />
-    <Content Include="web\templates\analysis\behavior\index.html" />
-    <Content Include="web\templates\analysis\behavior\_chunk.html" />
-    <Content Include="web\templates\analysis\behavior\_processes.html" />
-    <Content Include="web\templates\analysis\behavior\_tree.html" />
-    <Content Include="web\templates\analysis\dropped\index.html" />
-    <Content Include="web\templates\analysis\memory\index.html" />
-    <Content Include="web\templates\analysis\memory\_apihooks.html" />
-    <Content Include="web\templates\analysis\memory\_callbacks.html" />
-    <Content Include="web\templates\analysis\memory\_devicetree.html" />
-    <Content Include="web\templates\analysis\memory\_gdt.html" />
-    <Content Include="web\templates\analysis\memory\_idt.html" />
-    <Content Include="web\templates\analysis\memory\_malfind.html" />
-    <Content Include="web\templates\analysis\memory\_messagehooks.html" />
-    <Content Include="web\templates\analysis\memory\_modscan.html" />
-    <Content Include="web\templates\analysis\memory\_pslist.html" />
-    <Content Include="web\templates\analysis\memory\_ssdt.html" />
-    <Content Include="web\templates\analysis\memory\_svcscan.html" />
-    <Content Include="web\templates\analysis\memory\_timers.html" />
-    <Content Include="web\templates\analysis\memory\_yarascan.html" />
-    <Content Include="web\templates\analysis\network\index.html" />
-    <Content Include="web\templates\analysis\network\_dns.html" />
-    <Content Include="web\templates\analysis\network\_hosts.html" />
-    <Content Include="web\templates\analysis\network\_http.html" />
-    <Content Include="web\templates\analysis\network\_icmp.html" />
-    <Content Include="web\templates\analysis\network\_irc.html" />
-    <Content Include="web\templates\analysis\overview\index.html" />
-    <Content Include="web\templates\analysis\overview\_file.html" />
-    <Content Include="web\templates\analysis\overview\_info.html" />
-    <Content Include="web\templates\analysis\overview\_screenshots.html" />
-    <Content Include="web\templates\analysis\overview\_signatures.html" />
-    <Content Include="web\templates\analysis\overview\_summary.html" />
-    <Content Include="web\templates\analysis\overview\_url.html" />
-    <Content Include="web\templates\analysis\static\index.html" />
-    <Content Include="web\templates\analysis\static\_antivirus.html" />
-    <Content Include="web\templates\analysis\static\_pe32.html" />
-    <Content Include="web\templates\analysis\static\_strings.html" />
-  </ItemGroup>
-  <ItemGroup>
-    <Folder Include="agent" />
-    <Folder Include="analyzer\" />
-    <Folder Include="analyzer\windows\" />
-    <Folder Include="conf\analyzer\" />
-    <Folder Include="conf\analyzer\windows\" />
-    <Folder Include="conf\analyzer\windows\bin\" />
-    <Folder Include="conf\analyzer\windows\dll\" />
-    <Folder Include="analyzer\windows\lib" />
-    <Folder Include="analyzer\windows\lib\api" />
-    <Folder Include="analyzer\windows\lib\common" />
-    <Folder Include="analyzer\windows\lib\core" />
-    <Folder Include="analyzer\windows\modules" />
-    <Folder Include="analyzer\windows\modules\auxiliary" />
-    <Folder Include="analyzer\windows\modules\packages" />
-    <Folder Include="conf\" />
-    <Folder Include="data\" />
-    <Folder Include="data\html" />
-    <Folder Include="data\html\css" />
-    <Folder Include="data\html\graphic" />
-    <Folder Include="data\html\img" />
-    <Folder Include="data\html\js" />
-    <Folder Include="data\html\sections" />
-    <Folder Include="data\peutils" />
-    <Folder Include="data\yara\" />
-    <Folder Include="data\yara\binaries\" />
-    <Folder Include="data\yara\memory\" />
-    <Folder Include="data\yara\urls\" />
-    <Folder Include="docs\" />
-    <Folder Include="docs\book\" />
-    <Folder Include="docs\book\src" />
-    <Folder Include="docs\book\src\customization\" />
-    <Folder Include="docs\book\src\development\" />
-    <Folder Include="docs\book\src\faq\" />
-    <Folder Include="docs\book\src\finalremarks\" />
-    <Folder Include="docs\book\src\installation\" />
-    <Folder Include="docs\book\src\installation\guest\" />
-    <Folder Include="docs\book\src\installation\guest_physical\" />
-    <Folder Include="docs\book\src\installation\host\" />
-    <Folder Include="docs\book\src\introduction\" />
-    <Folder Include="docs\book\src\usage\" />
-    <Folder Include="docs\book\src\_images\" />
-    <Folder Include="docs\book\src\_images\logo" />
-    <Folder Include="docs\book\src\_images\schemas" />
-    <Folder Include="docs\book\src\_images\screenshots" />
-    <Folder Include="lib" />
-    <Folder Include="lib\cuckoo" />
-    <Folder Include="lib\cuckoo\common" />
-    <Folder Include="lib\cuckoo\common\decoders\" />
-    <Folder Include="lib\cuckoo\common\office\" />
-    <Folder Include="lib\cuckoo\common\pdftools\" />
-    <Folder Include="lib\cuckoo\common\peepdf\" />
-    <Folder Include="lib\cuckoo\common\peepdf\aespython\" />
-    <Folder Include="lib\cuckoo\common\peepdf\colorama\" />
-    <Folder Include="lib\cuckoo\common\peepdf\jsbeautifier\" />
-    <Folder Include="lib\cuckoo\common\peepdf\jsbeautifier\unpackers\" />
-    <Folder Include="lib\cuckoo\core" />
-    <Folder Include="lib\maec" />
-    <Folder Include="modules" />
-    <Folder Include="modules\auxiliary" />
-    <Folder Include="modules\feeds\" />
-    <Folder Include="modules\machinery" />
-    <Folder Include="modules\processing" />
-    <Folder Include="modules\processing\parsers\" />
-    <Folder Include="modules\processing\parsers\malwareconfig\" />
-    <Folder Include="modules\processing\parsers\mwcp\" />
-    <Folder Include="modules\processing\parsers\mwcp\parsers\" />
-    <Folder Include="modules\processing\parsers\mwcp\resources\" />
-    <Folder Include="modules\processing\parsers\plugxconfig\" />
-    <Folder Include="modules\reporting" />
-    <Folder Include="modules\signatures" />
-    <Folder Include="tests" />
-    <Folder Include="utils" />
-    <Folder Include="utils\db_migration" />
-    <Folder Include="utils\db_migration\versions" />
-    <Folder Include="web" />
-    <Folder Include="web\analysis" />
-    <Folder Include="web\analysis\templatetags" />
-    <Folder Include="web\api\" />
-    <Folder Include="web\dashboard" />
-    <Folder Include="web\static\" />
-    <Folder Include="web\static\css" />
-    <Folder Include="web\static\fonts" />
-    <Folder Include="web\static\graphic" />
-    <Folder Include="web\static\img" />
-    <Folder Include="web\static\js" />
-    <Folder Include="web\submission" />
-    <Folder Include="web\templates" />
-    <Folder Include="web\templates\analysis" />
-    <Folder Include="web\templates\analysis\admin" />
-    <Folder Include="web\templates\analysis\behavior" />
-    <Folder Include="web\templates\analysis\comments\" />
-    <Folder Include="web\templates\analysis\dropped" />
-    <Folder Include="web\templates\analysis\statistics\" />
-    <Folder Include="web\templates\analysis\similar\" />
-    <Folder Include="web\templates\analysis\reports\" />
-    <Folder Include="web\templates\analysis\memory" />
-    <Folder Include="web\templates\analysis\network" />
-    <Folder Include="web\templates\analysis\overview" />
-    <Folder Include="web\templates\analysis\procmemory\" />
-    <Folder Include="web\templates\analysis\static" />
-    <Folder Include="web\templates\api\" />
-    <Folder Include="web\templates\dashboard" />
-    <Folder Include="web\templates\submission" />
-    <Folder Include="web\web" />
-  </ItemGroup>
-  <ItemGroup>
-    <WebPiReference Include="https://www.microsoft.com/web/webpi/3.0/toolsproductlist.xml%3fDjango">
-      <Feed>https://www.microsoft.com/web/webpi/3.0/toolsproductlist.xml</Feed>
-      <ProductId>Django</ProductId>
-      <FriendlyName>Django 1.4</FriendlyName>
-    </WebPiReference>
-    <WebPiReference Include="https://www.microsoft.com/web/webpi/3.0/toolsproductlist.xml%3fPytho27">
-      <Feed>https://www.microsoft.com/web/webpi/3.0/toolsproductlist.xml</Feed>
-      <ProductId>Python27</ProductId>
-      <FriendlyName>Python 2.7</FriendlyName>
-    </WebPiReference>
-  </ItemGroup>
-  <Import Project="$(VSToolsPath)\Python Tools\Microsoft.PythonTools.Django.targets" />
-</Project>
diff --git a/cuckoo.sln b/cuckoo.sln
deleted file mode 100644
index 2d2bd1f855b..00000000000
--- a/cuckoo.sln
+++ /dev/null
@@ -1,20 +0,0 @@
-
-Microsoft Visual Studio Solution File, Format Version 12.00
-# Visual Studio 2012
-Project("{888888A0-9F3D-457C-B088-3A5042F75D52}") = "cuckoo", "cuckoo.pyproj", "{365A3967-518E-457B-972A-3C90834F0F80}"
-EndProject
-Global
-	GlobalSection(SolutionConfigurationPlatforms) = preSolution
-		Debug|Any CPU = Debug|Any CPU
-		Release|Any CPU = Release|Any CPU
-	EndGlobalSection
-	GlobalSection(ProjectConfigurationPlatforms) = postSolution
-		{365A3967-518E-457B-972A-3C90834F0F80}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
-		{365A3967-518E-457B-972A-3C90834F0F80}.Debug|Any CPU.Build.0 = Debug|Any CPU
-		{365A3967-518E-457B-972A-3C90834F0F80}.Release|Any CPU.ActiveCfg = Release|Any CPU
-		{365A3967-518E-457B-972A-3C90834F0F80}.Release|Any CPU.Build.0 = Release|Any CPU
-	EndGlobalSection
-	GlobalSection(SolutionProperties) = preSolution
-		HideSolutionNode = FALSE
-	EndGlobalSection
-EndGlobal
diff --git a/custom/.gitignore b/custom/.gitignore
new file mode 100644
index 00000000000..8e9508a9a89
--- /dev/null
+++ b/custom/.gitignore
@@ -0,0 +1,3 @@
+/*
+!/README.md
+!/.gitignore
diff --git a/lib/cuckoo/common/graphs/binGraph/graphs/__init__.py b/custom/parsers/__init__.py
similarity index 100%
rename from lib/cuckoo/common/graphs/binGraph/graphs/__init__.py
rename to custom/parsers/__init__.py
diff --git a/lib/cuckoo/common/graphs/binGraph/graphs/ent/__init__.py b/custom/signatures/__init__.py
similarity index 100%
rename from lib/cuckoo/common/graphs/binGraph/graphs/ent/__init__.py
rename to custom/signatures/__init__.py
diff --git a/lib/cuckoo/common/graphs/binGraph/graphs/hist/__init__.py b/custom/yara/CAPE/.placeholder
similarity index 100%
rename from lib/cuckoo/common/graphs/binGraph/graphs/hist/__init__.py
rename to custom/yara/CAPE/.placeholder
diff --git a/lib/cuckoo/common/office/__init__.py b/custom/yara/binaries/.placeholder
similarity index 100%
rename from lib/cuckoo/common/office/__init__.py
rename to custom/yara/binaries/.placeholder
diff --git a/lib/cuckoo/common/pdftools/__init__.py b/custom/yara/macro/.placeholder
similarity index 100%
rename from lib/cuckoo/common/pdftools/__init__.py
rename to custom/yara/macro/.placeholder
diff --git a/modules/processing/parsers/malduck/__init__.py b/custom/yara/memory/.placeholder
similarity index 100%
rename from modules/processing/parsers/malduck/__init__.py
rename to custom/yara/memory/.placeholder
diff --git a/modules/processing/parsers/mwcp/__init__.py b/custom/yara/monitor/.placeholder
similarity index 100%
rename from modules/processing/parsers/mwcp/__init__.py
rename to custom/yara/monitor/.placeholder
diff --git a/custom/yara/urls/.placeholder b/custom/yara/urls/.placeholder
new file mode 100644
index 00000000000..e69de29bb2d
diff --git a/data/.gitignore b/data/.gitignore
new file mode 100644
index 00000000000..3c287c17ceb
--- /dev/null
+++ b/data/.gitignore
@@ -0,0 +1,6 @@
+# Ignore binaries use for self-extracting.
+UnAutoIt
+7zz
+innoextract
+procyon.jar
+NETReactorSlayer.CLI
diff --git a/data/dnsbl.py b/data/dnsbl.py
new file mode 100644
index 00000000000..fd862f8c634
--- /dev/null
+++ b/data/dnsbl.py
@@ -0,0 +1,41 @@
+dnsbl_servers = (
+    "zen.spamhaus.org",
+    "dnsbl.sorbs.net",
+    "bl.spamcop.net",
+    "cbl.abuseat.org",
+    "b.barracudacentral.org",
+    "dnsbl-1.uceprotect.net",
+    "dnsbl-2.uceprotect.net",
+    "dnsbl-3.uceprotect.net",
+    "dnsbl.dronebl.org",
+    "noptr.spamrats.com",
+    "multi.surbl.org",
+    "psbl.surriel.com",
+    "dnsbl.invaluement.com",
+    "dyna.spamrats.com",
+    "spam.spamrats.com",
+    "dul.dnsbl.sorbs.net",
+    "dynip.rothen.com",
+    "spamsources.fabel.dk",
+    "truncate.gbudb.net",
+    "db.wpbl.info",
+    "dnsbl.zapbl.net",
+    "combined.rbl.msrbl.net",
+    "tor.dan.me.uk",
+    "relays.nether.net",
+    "rbl.efnetrbl.org",
+    "bl.kundenserver.de",
+    "rbl.interserver.net",
+    "rbl.rbldns.ru",
+    "all.rbl.jp",
+    "sbl.spamhaus.org",
+    "xbl.spamhaus.org",
+    "pbl.spamhaus.org",
+    "dnsbl-4.uceprotect.net",
+    "dnsbl-5.uceprotect.net",
+    "dnsbl-6.uceprotect.net",
+    "spamrbl.imp.ch",
+    "bogons.cymru.com",
+    "rbl.realtimeblacklist.com",
+    "http.dnsbl.sorbs.net",
+)
diff --git a/data/family_detection_names.py b/data/family_detection_names.py
new file mode 100644
index 00000000000..d9638d151e4
--- /dev/null
+++ b/data/family_detection_names.py
@@ -0,0 +1,7 @@
+# Here you can add your names for your detection to match it
+# First is how it was matched, second is how you want to represent it
+# We won't modify this. so you can keep your detections mapping schema here
+family_detection_names = {
+    # Example:
+    # "azorult": "Azorult",
+}
diff --git a/data/google_creds.json b/data/google_creds.json
new file mode 100644
index 00000000000..3570ed7ae56
--- /dev/null
+++ b/data/google_creds.json
@@ -0,0 +1,12 @@
+{
+    "type": "service_account",
+    "project_id": "-----",
+    "private_key_id": "----",
+    "private_key": "-----BEGIN PRIVATE KEY-----\n---------END PRIVATE KEY-----\n",
+    "client_email": "--------",
+    "client_id": "-----",
+    "auth_uri": "https://accounts.google.com/o/oauth2/auth",
+    "token_uri": "https://oauth2.googleapis.com/token",
+    "auth_provider_x509_cert_url": "https://www.googleapis.com/oauth2/v1/certs",
+    "client_x509_cert_url": "----------------"
+  }
diff --git a/data/html/base-report.html b/data/html/base-report.html
index 6cf18790665..f7d6a475ce5 100644
--- a/data/html/base-report.html
+++ b/data/html/base-report.html
@@ -2,19 +2,19 @@
   Cuckoo Sandbox - Automated Malware Analysis
   Copyright (C) 2010-2015 Cuckoo Foundation.
   http://www.cuckoosandbox.org
- 
+
   This file is part of Cuckoo.
- 
+
   Cuckoo is free software: you can redistribute it and/or modify
   it under the terms of the GNU General Public License as published by
   the Free Software Foundation, either version 3 of the License, or
   (at your option) any later version.
- 
+
   Cuckoo is distributed in the hope that it will be useful,
   but WITHOUT ANY WARRANTY; without even the implied warranty of
   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
   GNU General Public License for more details.
- 
+
   You should have received a copy of the GNU General Public License
   along with this program.  If not, see http://www.gnu.org/licenses/
 -->
@@ -22,7 +22,11 @@
 <html lang="en">
 <head>
 <meta charset="utf-8">
+{% if title %}
+<title>{{ title }} &#x2022; CAPE Sandbox</title>
+{% else %}
 <title>CAPE Sandbox</title>
+{% endif %}
 <meta name="viewport" content="width=device-width, initial-scale=1.0">
 <meta name="description" content="CAPE Sandbox">
 <meta name="author" content="CAPE Sandbox">
@@ -50,10 +54,8 @@
                         <a style="margin-right: 20px" href="#signatures">Signatures</a>
                         <a style="margin-right: 20px" href="#screenshots">Screenshots</a>
                         <a style="margin-right: 20px" href="#network">Network</a>
-                        {% if results.info.category == "file" %}
-                            <a style="margin-right: 20px" href="#static">Static</a>
-                        {% endif %}
                         <a style="margin-right: 20px" href="#dropped">Dropped</a>
+                        <a style="margin-right: 20px" href="#payloads">Payloads</a>
                         <a style="margin-right: 20px" href="#behavior">Behavior</a>
                         <a style="margin-right: 20px" href="#volatility">Volatility</a>
                     </nav>
diff --git a/data/html/base-web.html b/data/html/base-web.html
index 86f38b25fb9..4445416cd43 100644
--- a/data/html/base-web.html
+++ b/data/html/base-web.html
@@ -2,19 +2,19 @@
   Cuckoo Sandbox - Automated Malware Analysis
   Copyright (C) 2010-2015 Cuckoo Foundation.
   http://www.cuckoosandbox.org
- 
+
   This file is part of Cuckoo.
- 
+
   Cuckoo is free software: you can redistribute it and/or modify
   it under the terms of the GNU General Public License as published by
   the Free Software Foundation, either version 3 of the License, or
   (at your option) any later version.
- 
+
   Cuckoo is distributed in the hope that it will be useful,
   but WITHOUT ANY WARRANTY; without even the implied warranty of
   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
   GNU General Public License for more details.
- 
+
   You should have received a copy of the GNU General Public License
   along with this program.  If not, see http://www.gnu.org/licenses/
 -->
@@ -91,4 +91,4 @@
 {% include "js/functions.js" %}
 </script>
 </body>
-</html>
\ No newline at end of file
+</html>
diff --git a/data/html/css/style.css b/data/html/css/style.css
index 3dfd342839d..f33bb11ce23 100644
--- a/data/html/css/style.css
+++ b/data/html/css/style.css
@@ -7,6 +7,14 @@ body {
     padding-top: 60px;
     background: #1c1c1c repeat-x;
 }
+@media print {
+    html {
+        -webkit-print-color-adjust: exact;
+    }
+    .table{
+        color: #000!important;
+    }
+}
 
 @page {
     size: A3;
@@ -248,7 +256,7 @@ pre {
 .tcp-out pre {
     padding: 0;
     border: 0;
-    background-color: white;
+    /*background-color: white;*/
     color: #d9534f;
 }
 .tcp-in {
@@ -257,7 +265,7 @@ pre {
 .tcp-in pre {
     padding: 0;
     border: 0;
-    background-color: white;
+    /*background-color: white;*/
     color: #5bc0de;
 }
 #filter-toggle {
@@ -268,4 +276,4 @@ pre {
 .form-control {
     background-color: darkgray;
     color:black;
-}
+}
\ No newline at end of file
diff --git a/data/html/error.html b/data/html/error.html
index e0a580c6f3f..984f8f0e39e 100644
--- a/data/html/error.html
+++ b/data/html/error.html
@@ -8,4 +8,4 @@ <h3>Ouch! KaBoom!</h3>
             <strong>Error</strong>: {{error}}
         </div>
     </div>
-{% endblock %}
\ No newline at end of file
+{% endblock %}
diff --git a/web/templates/analysis/static/_dotnet.html b/data/html/generic/_dotnet.html
similarity index 75%
rename from web/templates/analysis/static/_dotnet.html
rename to data/html/generic/_dotnet.html
index c77b16df2a7..6892a44e887 100644
--- a/web/templates/analysis/static/_dotnet.html
+++ b/data/html/generic/_dotnet.html
@@ -1,18 +1,18 @@
 <section id="static_analysis">
-    {% if analysis.static and analysis.static.dotnet %}
-        {% if analysis.static.dotnet.typerefs or analysis.static.dotnet.assemblyrefs or analysis.static.dotnet.assemblyinfo or analysis.static.dotnet.customattrs %}
+    {% if file.dotnet %}
+        {% if file.dotnet.typerefs or file.dotnet.assemblyrefs or file.dotnet.assemblyinfo or file.dotnet.customattrs %}
             <div>
                 <h4>Assembly Information</h4>
                 <div id="dotnet_assembly_information">
                     <table class="table table-striped table-bordered" style="table-layout: fixed;">
-                        {% if analysis.static.dotnet.assemblyinfo %}
+                        {% if file.dotnet.assemblyinfo %}
                             <tr>
                                 <th style="width: 15%;">Name</th>
-                                <td>{{analysis.static.dotnet.assemblyinfo.name}}</td>
+                                <td>{{file.dotnet.assemblyinfo.name}}</td>
                             </tr>
                             <tr>
                                 <th style="width: 15%;">Version</th>
-                                <td>{{analysis.static.dotnet.assemblyinfo.version}}</td>
+                                <td>{{file.dotnet.assemblyinfo.version}}</td>
                             </tr>
                         {% endif %}
                      </table>
@@ -21,7 +21,7 @@ <h4>Assembly Information</h4>
             <hr />
         {% endif %}
 
-        {% if analysis.static.dotnet.assemblyrefs %}
+        {% if file.dotnet.assemblyrefs %}
             <div>
                 <h4>Assembly References</h4>
                 <div id="dotnet_assembly_references">
@@ -30,7 +30,7 @@ <h4>Assembly References</h4>
                         <th>Name</th>
                         <th>Version</th>
                     </tr>
-                    {% for asm in analysis.static.dotnet.assemblyrefs %}
+                    {% for asm in file.dotnet.assemblyrefs %}
                     <tr>
                         <td>{{asm.name}}</td>
                         <td>{{asm.version}}</td>
@@ -42,7 +42,7 @@ <h4>Assembly References</h4>
             <hr />
         {% endif %}
 
-        {% if analysis.static.dotnet.customattrs %}
+        {% if file.dotnet.customattrs %}
             <div>
                 <h4>Custom Attributes</h4>
                 <div id="dotnet_custom_attributes">
@@ -52,7 +52,7 @@ <h4>Custom Attributes</h4>
                         <th>Name</th>
                         <th>Value</th>
                     </tr>
-                    {% for attr in analysis.static.dotnet.customattrs %}
+                    {% for attr in file.dotnet.customattrs %}
                     <tr>
                         <td>{{attr.type}}</td>
                         <td>{{attr.name}}</td>
@@ -65,7 +65,7 @@ <h4>Custom Attributes</h4>
             <hr />
         {% endif %}
 
-        {% if analysis.static.dotnet.typerefs %}
+        {% if file.dotnet.typerefs %}
             <div>
                 <h4>Type References</h4>
                 <div id="dotnet_type_references">
@@ -74,7 +74,7 @@ <h4>Type References</h4>
                         <th>Assembly</th>
                         <th>Type Name</th>
                     </tr>
-                    {% for typeref in analysis.static.dotnet.typerefs %}
+                    {% for typeref in file.dotnet.typerefs %}
                     <tr>
                         <td>{{typeref.assembly}}</td>
                         <td>{{typeref.typename}}</td>
diff --git a/data/html/generic/_file_info.html b/data/html/generic/_file_info.html
new file mode 100644
index 00000000000..ff36b5df44f
--- /dev/null
+++ b/data/html/generic/_file_info.html
@@ -0,0 +1,370 @@
+<div class="panel panel-default">
+    <table class="table table-striped table-bordered"
+        {% if tab_name == "static" %}
+            style="table-layout: fixed;"
+        {% else %}
+           style="table-layout: fixed; width: 50%;margin-left: auto;margin-right: auto;"
+        {% endif %}
+        >
+
+        {% if source_url %}
+            <tr>
+                <th style="border-top: 0; width: 15%;">File downloaded from</th>
+                <td style="border-top: 0; word-wrap: break-word;">{{source_url|escape}}</td>
+            </tr>
+            {% endif %}
+
+        {% if file.cape_type %}
+            <tr>
+                <th style="border-top: 0; width: 15%;">Type</th>
+                <td style="border-top: 0; word-wrap: break-word;"><b>{{file.cape_type}}</b></td>
+            </tr>
+        {% endif %}
+        <tr>
+            <th style="border-top: 0; width: 15%;">Filename</th>
+            <td>
+                {% for name in file.name|str2list %}
+                <div style="border-top: 0; word-wrap: break-word;"><b>{{name|safe}}</b></div>
+                {% endfor %}
+            </td>
+        </tr>
+        {% if file.type %}
+            <tr>
+                <th style="border-top: 0; width: 15%;">File Type</th>
+                <td style="border-top: 0; word-wrap: break-word;"><b>{{file.type}}</b></td>
+            </tr>
+        {% endif %}
+        {% if file.guest_paths and tab_name == "dropped" %}
+            <tr>
+                <th style="border-top: 0; width: 15%;">Associated Filenames</th>
+                <td style="border-top: 0; word-wrap: break-word;">
+                    {% for path in file.guest_paths|str2list %}
+                        <div>{{path}}</div>
+                    {% endfor %}
+                </td>
+            </tr>
+        {% endif %}
+        <tr>
+            <th style="border-top: 0; width: 15%;">File Size</th>
+            <td style="border-top: 0; word-wrap: break-word;"><b>{{file.size}} bytes</b></td>
+        </tr>
+        {% if file.module_path and file.process_path != file.module_path %}
+            <tr>
+                <th>Module Path</th>
+                <td>{{file.module_path}}</td>
+            </tr>
+        {% endif %}
+        {% if file.cape_type_code == 8 or file.cape_type_code == 9 %}
+                <tr>
+                    <th>Virtual Address</th>
+                    <td>{{file.virtual_address}}</td>
+                </tr>
+            {% endif %}
+            {% if file.cape_type_code == 5 %}
+                <tr>
+                    <th>Section Handle</th>
+                    <td>{{file.section_handle}}</td>
+                </tr>
+            {% endif %}
+            {% if file.cape_type_code == 3 or file.cape_type_code == 4 %}
+                <tr>
+                    <th>Target Process</th>
+                    <td>{{file.target_process}}</td>
+                </tr>
+                <tr>
+                    <th>Target PID</th>
+                    <td>{{file.target_pid}}</td>
+                </tr>
+                <tr>
+                    <th>Target Path</th>
+                    <td>{{file.target_path}}</td>
+                </tr>
+                <tr>
+                    <th>Injecting Process</th>
+                    <td>{{file.process_name}}</td>
+                </tr>
+                <tr>
+                    <th>Injecting PID</th>
+                    <td>{{file.pid}}</td>
+                </tr>
+                <tr>
+                    <th>Path</th>
+                    <td>{{file.process_path}}</td>
+                </tr>
+            {% else %}
+                {% if file.process_name %}
+                <tr>
+                    <th>Process</th>
+                    <td>{{file.process_name}}</td>
+                </tr>
+                {% endif %}
+                {% if file.pid %}
+                <tr>
+                    <th>PID</th>
+                    <td>{{file.pid}}</td>
+                </tr>
+                {% endif %}
+                {% if file.process_path %}
+                <tr>
+                    <th>Path</th>
+                    <td>{{file.process_path}}</td>
+                </tr>
+                {% endif %}
+            {% endif %}
+        {% if file.timestamp %}
+            <tr>
+                <th>PE timestamp</th>
+                <td style="word-wrap: break-word;">{{file.timestamp}}</td>
+            </tr>
+        {% endif %}
+        <tr>
+            <th>MD5</th>
+            <td style="word-wrap: break-word;">{{file.md5}}</td>
+        </tr>
+        <tr>
+            <th>SHA1</th>
+            <td style="word-wrap: break-word;">{{file.sha1}}</td>
+        </tr>
+        <tr>
+            <th>SHA256</th>
+            <td style="word-wrap: break-word;">{{file.sha256}}
+                <a href="https://www.virustotal.com/gui/file/{{file.sha256}}/" style="color: #e74c3c">[VT]</a>
+                <a href="https://mwdb.cert.pl/file/{{file.sha256}}" style="color: #e74c3c">[MWDB]</a>
+                <a href="https://bazaar.abuse.ch/sample/{{file.sha256}}/" style="color: #e74c3c">[Bazaar]</a>
+            </td>
+        </tr>
+        {% if file.sha3_384 %}
+        <tr>
+            <th>SHA3-384</th>
+            <td style="word-wrap: break-word;">{{file.sha3_384}}</td>
+        </tr>
+        {% endif %}
+        {% if file.rh_hash %}
+            <tr>
+                <th>RichHeader Hash</th>
+                <td style="word-wrap: break-word;">{{file.rh_hash}}</td>
+            </tr>
+        {% endif %}
+        <tr>
+            <th>CRC32</th>
+            <td>{{file.crc32}}</td>
+        </tr>
+        {% if file.tlsh %}
+        <tr>
+            <th>TLSH</th>
+            <td style="word-wrap: break-word;">{{file.tlsh}}</td>
+        </tr>
+        {% endif %}
+        <tr>
+            <th>Ssdeep</th>
+            <td style="word-wrap: break-word;">{{file.ssdeep}}</td>
+        </tr>
+        {% if file.clamav %}
+        <tr>
+            <th>ClamAV</th>
+            <td>
+                <ul style="margin-bottom: 0;">
+                {% for sign in file.clamav %}
+                    <li>{{sign}}</li>
+                {% endfor %}
+                </ul>
+            </td>
+        </tr>
+        {% endif %}
+        {% if file.yara %}
+        <tr>
+            <th>Yara</th>
+            <td>
+                <ul style="margin-bottom: 0;">
+                {% for sign in file.yara %}
+                    <li>
+                    {{sign.name}} - {{sign.meta.description}}
+                    {% if sign.meta.author %}
+                        - Author: {{sign.meta.author}}
+                    {% endif %}
+                    </li>
+                {% endfor %}
+                </ul>
+            </td>
+        </tr>
+        {% endif %}
+        {% if file.cape_yara %}
+        <tr>
+            <th>CAPE Yara</th>
+            <td>
+                <ul style="margin-bottom: 0;">
+                {% for sign in file.cape_yara %}
+                    <li>
+                    {{sign.name}}
+                    {% if sign.meta.cape_type %} - {{sign.meta.cape_type}}
+                    {% elif sign.meta.description %} - {{sign.meta.description}}
+                    {% endif %}
+                    {% if sign.meta.author %} - Author: {{sign.meta.author}}{% endif %}
+                    </li>
+                {% endfor %}
+                </ul>
+            </td>
+        </tr>
+        {% endif %}
+        {% if file.trid %}
+        <tr>
+            <th>TriD</th>
+            <td>
+            <ul style="margin-top: 0;margin-bottom: 0;">
+                {% for str in file.trid %}
+                    <li>{{str}}</li>
+                {% endfor %}
+            </ul>
+            </td>
+        </tr>
+        {% endif %}
+
+        {% if file.die %}
+        <tr>
+            <th>Detect It Easy</th>
+            <td>
+            <ul style="margin-top: 0;margin-bottom: 0;">
+                {% for str in file.die %}
+                    <li>{{str}}</li>
+                {% endfor %}
+            </ul>
+            </td>
+        </tr>
+        {% endif %}
+
+        {% if file.dropdir %}
+        <tr>
+            <th></th>
+            <td></td>
+        </tr>
+        {% else %}
+
+        <tr>
+            <th>
+                {% if file.pe %}<a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#pe_{{file.sha256}}" role="button" aria-expanded="false" aria-controls="pe_{{file.sha256}}"  data-bs-toggle="tooltip" title="Display PE info"><span class="fas fa-file-lines"></span> PE</a>{% endif %}
+                {% if file.dotnet %}<a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#dotnet_{{file.sha256}}" role="button" aria-expanded="false" aria-controls="dotnet_{{file.sha256}}"  data-bs-toggle="tooltip" title="Display DotNet info"><span class="fas fa-file-lines"></span> DotNET</a>{% endif %}
+                {% if file.pdf %}<a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#pdf_{{file.sha256}}" role="button" aria-expanded="false" aria-controls="pdf_{{file.sha256}}"  data-bs-toggle="tooltip" title="Display PDF info"><span class="fas fa-file-lines"></span> PDF</a>{% endif %}
+                {% if file.lnk %}<a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#lnk_{{file.sha256}}" role="button" aria-expanded="false" aria-controls="lnk_{{file.sha256}}"  data-bs-toggle="tooltip" title="Display LNK info"><span class="fas fa-file-lines"></span> LNK</a>{% endif %}
+                {% if file.java %}<a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#java_{{file.sha256}}" role="button" aria-expanded="false" aria-controls="java_{{file.sha256}}"  data-bs-toggle="tooltip" title="Display Java info"><span class="fas fa-file-lines"></span> Java</a>{% endif %}
+            </th>
+            <td>
+                {% if file.flare_capa %}
+                    <a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#flare_capa_{{file.sha256}}" role="button" aria-expanded="false" aria-controls="flare_capa_{{file.sha256}}">FLARE CAPA</a>
+                {% endif %}
+                {% if file.strings %}
+                    <a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#strings_{{file.sha256}}" role="button" aria-expanded="false" aria-controls="strings_{{file.sha256}}"  data-bs-toggle="tooltip" title="Display strings"><span class="fas fa-envelope-open-text"></span> Strings</a>
+                {% endif %}
+                {% if file.floss %}
+                    <a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#floss_{{file.sha256}}" role="button" aria-expanded="false" aria-controls="floss_{{file.sha256}}"  data-bs-toggle="tooltip" title="Display floss strings"><span class="fas fa-envelope-open-text"></span> Floss</a>
+                {% endif %}
+                {% if file.data %}
+                    <a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#text_{{file.sha256}}" role="button" aria-expanded="false" aria-controls="text_{{file.sha256}}"  data-bs-toggle="tooltip" title="Display text"><span class="fas fa-envelope-open-text"></span> Text</a>
+                {% endif %}
+                {% if file.decoded_files %}
+                    <a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#decoded_files_{{file.sha256}}" role="button" aria-expanded="false" aria-controls="decoded_files_{{file.sha256}}"  data-bs-toggle="tooltip" title="Display text"><span class="fas fa-envelope-open-text"></span> {{file.decoded_files_tool}}</a>
+                {% endif %}
+                {% if file.extracted_files %}
+                    <a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#extracted_files_{{file.sha256}}" role="button" aria-expanded="false" aria-controls="extracted_files_{{file.sha256}}"  data-bs-toggle="tooltip" title="Display extracted files"><span class="fas fa-archive"></span> {{file.extracted_files_tool}} {% if file.extracted_files_time %} ({{"%0.2f" % file.extracted_files_time|float}} sec) {% endif %}</a>
+                {% endif %}
+            </td>
+        </tr>
+        {% endif %}
+
+        {% if file.flare_capa %}
+            <tr>
+                <th></th><td>
+                <div class="collapse" id="flare_capa_{{file.sha256}}">
+                    <div>
+                    <!--Inspired by @snemes trick, code placed in web/views/templateatgs/analysis_tags.py-->
+                    {% if file.flare_capa.CAPABILITY %}
+                        {{file.flare_capa|flare_capa_capability}}
+                    {% endif %}
+                    {% if file.flare_capa.ATTCK %}
+                        {{file.flare_capa|flare_capa_attck}}
+                    {% endif %}
+                    {% if file.flare_capa.MBC %}
+                        {{file.flare_capa|flare_capa_mbc}}
+                    {% endif %}
+                    </div>
+                </div>
+            </td>
+            </tr>
+            </br>
+        {% endif %}
+        {#
+        {% if graphs.vba2graph.content|getkey:file.sha256 %}
+            <tr><th></th>
+                <td>{{ graphs.vba2graph.content|getkey:file.sha256|safe }}</td>
+            </tr>
+        {% endif %}
+        #}
+        {% if file.virustotal %}
+            <tr>
+                <th></th>
+                <td>{% include "generic/_virustotal.html" %}</td>
+            </tr>
+        {% endif %}
+        {% if file.strings %}
+            <tr>
+                <th></th><td>
+                <div class="collapse" id="strings_{{file.sha256}}">
+                    <div>
+                    {% for string in file.strings %}
+                        <div>{{string}}</div>
+                    {% endfor %}
+                    </div>
+                </div>
+            </td>
+            </tr>
+        {% endif %}
+        {% if file.data %}
+            <tr>
+                <th></th><td>
+                <div class="collapse" id="text_{{file.sha256}}">
+                    <div>
+                    <p>{{file.data|escape}}</p>
+                    </div>
+                </div>
+                </td>
+            </tr>
+        {% endif %}
+        {% if file.decoded_files %}
+            <tr>
+                <th></th><td>
+                <div class="collapse" id="decoded_files_{{file.sha256}}">
+                    <div>
+                    <p>{{file.decoded_files|escape}}</p>
+                    </div>
+                </div>
+            </td>
+            </tr>
+        {% endif %}
+        {% if file.extracted_files %}
+            <tr>
+                <th></th><td>
+                <div class="collapse" id="extracted_files_{{file.sha256}}">
+                    <div class="table">
+                        {% for sub_file in file.extracted_files %}
+                            {% include "generic/_subfile_info.html" %}
+                        {% endfor %}
+                    </div>
+                </div>
+            </td>
+            </tr>
+            </br>
+        {% endif %}
+
+        {#
+            {% if file.pe %} <div class="collapse" id="pe_{{file.sha256}}"> <div> {% include "generic/_pe.html" %}</div></div></br>{% endif %}
+            {% if file.dotnet %} <div class="collapse" id="dotnet_{{file.sha256}}"> <div> {% include "generic/_dotnet.html" %}</div></div></br>{% endif %}
+            {% if file.pdf %} <div class="collapse" id="pdf_{{file.sha256}}"> <div> {% include "generic/_pdf.html" %}</div></div></br>{% endif %}
+            {% if file.lnk %} <div class="collapse" id="lnk_{{file.sha256}}"> <div> {% include "generic/_lnk.html" %}</div></div></br>{% endif %}
+            {% if file.java %} <div class="collapse" id="java_{{file.sha256}}"> <div> {% include "generic/_java.html" %}</div></div></br>{% endif %}
+            {% if file.office %} <div class="collapse" id="office_{{file.sha256}}"> <div> {% include "generic/_office.html" %}</div></div></br>{% endif %}
+            {% if file.office.XLMMacroDeobfuscator %} <div class="collapse" id="xlmmacro_{{file.sha256}}"> <div> {% include "generic/_xlmmacro.html" %}</div></div></br>{% endif %}
+            {% if file.floss %} <div class="collapse" id="floss_{{file.sha256}}"> <div> {% include "generic/_floss.html" %}</div></div></br>{% endif %}
+            {% if graphs.bingraph.content|getkey:file.sha256 %}<center><td>{{ graphs.bingraph.content|getkey:file.sha256|safe }}</td></center></br>{% endif %}
+        #}
+    </table>
+
+</div>
diff --git a/data/html/generic/_floss.html b/data/html/generic/_floss.html
new file mode 100644
index 00000000000..2e6982f0450
--- /dev/null
+++ b/data/html/generic/_floss.html
@@ -0,0 +1,46 @@
+<section id="static_floss">
+    {% if file.floss %}
+        {% if file.floss.decoded_strings %}
+        <h4>Decoded Strings</h4>
+            <div class="well" style="font-family: monospace;">
+                {% for string in file.floss.decoded_strings %}
+                    <div>{{string}}</div>
+                {% endfor %}
+            </div>
+        {% endif %}
+
+        {% if file.floss.stack_strings %}
+        <h4>Stack Strings</h4>
+            <div class="well" style="font-family: monospace;">
+                {% for string in file.floss.stack_strings %}
+                    <div>{{string}}</div>
+                {% endfor %}
+            </div>
+        {% endif %}
+
+        {% if file.floss.tight_strings %}
+        <h4>Tight Strings</h4>
+            <div class="well" style="font-family: monospace;">
+                {% for string in file.floss.tight_strings %}
+                    <div>{{string}}</div>
+                {% endfor %}
+            </div>
+        {% endif %}
+
+        {% if file.floss.static_strings %}
+        <h4>Static Strings</h4>
+            <div class="well" style="font-family: monospace;">
+                {% for string in file.floss.static_strings %}
+                    <div>{{string}}</div>
+                {% endfor %}
+            </div>
+        {% endif %}
+
+        {% if file.floss.msg %}
+        <div class="well" style="font-family: monospace;">
+            <div>{{file.floss.msg}}</div>
+        </div>
+        {% endif %}
+
+    {% endif %}
+</section>
diff --git a/data/html/generic/_java.html b/data/html/generic/_java.html
new file mode 100644
index 00000000000..12a20021062
--- /dev/null
+++ b/data/html/generic/_java.html
@@ -0,0 +1,7 @@
+<section id="static_java">
+    <div class="well" style="font-family: monospace;">
+        {% if file.java and file.java.decompiled %}
+            <div><pre>{{file.java.decompiled}}</pre></div>
+        {% endif %}
+    </div>
+</section>
diff --git a/web/templates/analysis/static/_lnk.html b/data/html/generic/_lnk.html
similarity index 66%
rename from web/templates/analysis/static/_lnk.html
rename to data/html/generic/_lnk.html
index 1017026d42f..b27bbf17472 100644
--- a/web/templates/analysis/static/_lnk.html
+++ b/data/html/generic/_lnk.html
@@ -1,6 +1,6 @@
 <section id="static_analysis">
-    {% if analysis.static and analysis.static.lnk %}
-        {% if analysis.static.lnk.flags %}
+    {% if file.lnk %}
+        {% if file.lnk.flags %}
         <div>
             <h4>Flags</h4>
             <div id="pe_information">
@@ -9,22 +9,22 @@ <h4>Flags</h4>
                         <col width="150" />
                         <col width="*" />
                     </colgroup>
-                    {% if analysis.static.lnk.flags.relapath %}
+                    {% if file.lnk.flags.relapath %}
                     <tr>
                         <td><strong>Icon</strong></td>
-                        <td>{{analysis.static.lnk.relapath}}</td>
+                        <td>{{file.lnk.relapath}}</td>
                     </tr>
                     {% endif %}
-                    {% if analysis.static.lnk.flags.shellidlist %}
+                    {% if file.lnk.flags.shellidlist %}
                     <tr>
                         <td><strong>CMD line</strong></td>
-                        <td>{{analysis.static.lnk.cmdline}}</td>
+                        <td>{{file.lnk.cmdline}}</td>
                     </tr>
                     {% endif %}
-                    {% if analysis.static.lnk.flags.icon %}
+                    {% if file.lnk.flags.icon %}
                     <tr>
                         <td><strong>Icon</strong></td>
-                        <td>{{analysis.static.lnk.icon}}</td>
+                        <td>{{file.lnk.icon}}</td>
                     </tr>
                     {% endif %}
 
@@ -33,7 +33,10 @@ <h4>Flags</h4>
             </div>
         </div>
         <hr />
+        {% elif file.lnk.data %}
+        <p>{{file.lnk|force_escape}}</p>
         {% endif %}
+
     {% else %}
         Nothing to display.
     {% endif %}
diff --git a/data/html/generic/_office.html b/data/html/generic/_office.html
new file mode 100644
index 00000000000..9e7f00c28d3
--- /dev/null
+++ b/data/html/generic/_office.html
@@ -0,0 +1,171 @@
+<section id="static_analysis">
+    {% load key_tags %}
+        {% if file.office %}
+            {% if file.mmbot %}
+                <div>
+                    <div id="mmbot_results">
+                        <h4>Malicious Macro Bot Results</h4>
+                        <table class="table table-striped table-bordered">
+                            <colgroup>
+                                <col width="250" />
+                                <col width="*" />
+                            </colgroup>
+                            {% for key, value in file.mmbot.items|dictsort:0 %}
+                                <tr>
+                                    <td>{{key}}</td>
+                                    <td>{{value}}</td>
+                                </tr>
+                            {% endfor %}
+                        </table>
+                    </div>
+                </div>
+            {% endif %}
+            {% if file.office.Metadata %}
+                {% if file.office.Metadata.SummaryInformation %}
+                <div>
+                    <div id="si_metadata">
+                        <h4>SummaryInformation Metadata</h4>
+                        <table class="table table-striped table-bordered">
+                            <colgroup>
+                                <col width="250" />
+                                <col width="*" />
+                            </colgroup>
+                            {% for key, value in file.office.Metadata.SummaryInformation.items|dictsort:0 %}
+                                <tr>
+                                    <td>{{key}}</td>
+                                    <td>{{value}}</td>
+                                </tr>
+                            {% endfor %}
+                        </table>
+                    </div>
+                </div>
+                <hr />
+                {% endif %}
+                {% if file.office.Metadata.DocumentSummaryInformation %}
+                <div>
+                    <div id="dsi_metadata">
+                        <h4>DocumentSummaryInformation Metadata</h4>
+                        <table class="table table-striped table-bordered">
+                            <colgroup>
+                                <col width="250" />
+                                <col width="*" />
+                            </colgroup>
+                            {% for key, value in file.office.Metadata.DocumentSummaryInformation.items|dictsort:0 %}
+                                <tr>
+                                    <td>{{key}}</td>
+                                    <td>{{value}}</td>
+                                </tr>
+                            {% endfor %}
+                        </table>
+                    </div>
+                </div>
+                <hr />
+                {% endif %}
+            {% endif %}
+            {% if file.office.Macro %}
+                {% if file.office.Macro.Analysis %}
+                    <div id="analysis_sigs">
+                        <h4>File Analysis (Signatures)</h4>
+                        {% for detection in file.office.Macro.Analysis %}
+                        <div>
+                            <div class="panel" id="accordion" style="margin-top: 20px;">
+                            <div class="card-header">
+                                <a class="accordion-toggle" data-parent="#analysis_sigs" data-toggle="collapse" href="#{{detection}}" aria-expanded="false"><i class="icon icon-cog"></i>{{detection}}</a>
+                            </div>
+                            <div id="{{detection}}" class="panel-collapse collapse" style="text-align: left;">
+                                <table class="table table-striped table-bordered">
+                                <colgroup>
+                                    <col width="200">
+                                    <col width="*">
+                                </colgroup>
+                                <th colspan="2">{{detection}}</th>
+                                {% for indicator, description in file.office.Macro.Analysis|getkey:detection %}
+                                    <tr>
+                                        <td>{{indicator}}</td>
+                                        <td>{{description}}</td>
+                                    </tr>
+                                {% endfor %}
+                                </table>
+                            </div>
+                            </div>
+                        {% endfor %}
+                    </div>
+                </div>
+                <hr />
+                {% endif %}
+                {% if file.office.Macro.Code and not file.office.XLMMacroDeobfuscator %}
+                <div>
+                    <div id="macro">
+                    <h4>Extracted Macros</h4>
+                    {% for macrodata in file.office.Macro.Code %}
+                    <table class="table table-striped table-bordered">
+                        <col style="width:20%">
+                        <col style="width:60%">
+                        <col style="width:20%">
+                        {% for name, code in file.office.Macro.Code|getkey:macrodata %}
+                        <tr>
+                            <td>VBA Filename</td>
+                            <td>{{name}}</td>
+                            <td><a class="accordion-toggle" data-toggle="collapse" data-parent="#accordion" href="#{{macrodata}}">Extracted Macro</a></td>
+                        </tr>
+                        </table>
+                        <div id="{{macrodata}}" class="collapse">
+                            <pre>{{code}}</pre>
+                        </div>
+                        {% endfor %}
+                    {% endfor %}
+                    </div>
+                </div>
+                {% endif %}
+            {% endif %}
+        {% endif %}
+        {% if file.office_rtf %}
+            <div>
+                <div id="si_metadata">
+                    <h4>RTF document details</h4>
+                    <table class="table table-striped table-bordered">
+                        {% for key, value in file.office_rtf.items %}
+                            <h5>Object ID: {{key}}</h5>
+                            <tr>
+                                <th width=10%>Filename</th>
+                                <td>Size</td>
+                                <th>Index</th>
+                                <td>Class Name</td>
+                                <td>Type Embed</td>
+                                <th>CVE</th>
+                            </tr>
+                            {% for block in value %}
+                                <tr>
+                                    {% if block.sha256 %}
+                                        <td><a href={% url "file" "rtf" file.info.id block.sha256 %} class="btn btn-secondary btn-small">{{block.filename}}</a></td>
+                                    {% else %}
+                                        <td>{{block.filename}}</td>
+                                    {% endif %}
+                                    <td>{{block.size}}</td>
+                                    <td>{{block.index}}</td>
+                                    <td>{{block.class_name}}</td>
+                                    <td>{{block.type_embed}}</td>
+                                    <td>{{block.CVE}}</td>
+                                </tr>
+                            {% endfor %}
+                        {% endfor %}
+                    </table>
+                </div>
+            </div>
+            <hr />
+        {% endif %}
+        {% if file.office_dde %}
+        <div id="si_metadata">
+        <table class="table table-striped table-bordered">
+            <colgroup>
+                <col width="200" />
+                <col width="*" />
+            </colgroup>
+            <tr>
+                <td><h4>DDE Detected</h4></td>
+                <td>{{file.office_dde}}</td>
+            </tr>
+        </table>
+        </div>
+{% endif %}
+</section>
diff --git a/web/templates/analysis/static/_pdf.html b/data/html/generic/_pdf.html
similarity index 68%
rename from web/templates/analysis/static/_pdf.html
rename to data/html/generic/_pdf.html
index 1093d058326..8fc4c1a444c 100644
--- a/web/templates/analysis/static/_pdf.html
+++ b/data/html/generic/_pdf.html
@@ -1,8 +1,6 @@
-{% load pdf_tags %}
-{% load key_tags %}
 <section id="static_analysis">
-    {% if analysis.static and analysis.static.pdf %}
-        {% if analysis.static.pdf.Info %}
+    {% if file.pdf %}
+        {% if file.pdf.Info %}
         <div>
             <h4>PDF Information</h4>
             <div id="PDF_Info">
@@ -11,56 +9,56 @@ <h4>PDF Information</h4>
                         <col width="250" />
                         <col width="*" />
                     </colgroup>
-                    {% if analysis.static.pdf.Info.Creator %}
+                    {% if file.pdf.Info.Creator %}
                         <tr>
                             <th>Creator</th>
-                            <td><span class="mono">{{analysis.static.pdf.Info.Creator}}</span></td>
+                            <td><span class="mono">{{file.pdf.Info.Creator}}</span></td>
                         </tr>
                     {% endif %}
-                    {% if analysis.static.pdf.Info.Producer %}
+                    {% if file.pdf.Info.Producer %}
                         <tr>
                             <th>Producer</th>
-                            <td><span class="mono">{{analysis.static.pdf.Info.Producer}}</span></td>
+                            <td><span class="mono">{{file.pdf.Info.Producer}}</span></td>
                         </tr>
                     {% endif %}
-                    {% if analysis.static.pdf.Info.Author %}
+                    {% if file.pdf.Info.Author %}
                         <tr>
                             <th>Author</th>
-                            <td><span class="mono">{{analysis.static.pdf.Info.Author}}</span></td>
+                            <td><span class="mono">{{file.pdf.Info.Author}}</span></td>
                         </tr>
                     {% endif %}
                     <tr>
                         <th>Total Entropy</th>
-                        <td><span class="mono">{{analysis.static.pdf.Info|getkey:"Total Entropy"}}</span></td>
+                        <td><span class="mono">{{file.pdf.Info|getkey:"Total Entropy"}}</span></td>
                     </tr>
                     <tr>
                         <th>Entropy In Streams</th>
-                        <td><span class="mono">{{analysis.static.pdf.Info|getkey:"Entropy In Streams"}}</span></td>
+                        <td><span class="mono">{{file.pdf.Info|getkey:"Entropy In Streams"}}</span></td>
                     </tr>
                     <tr>
                         <th>Entropy Out of Streams</th>
-                        <td><span class="mono">{{analysis.static.pdf.Info|getkey:"Entropy Out Streams"}}</span></td>
+                        <td><span class="mono">{{file.pdf.Info|getkey:"Entropy Out Streams"}}</span></td>
                     </tr>
                     <tr>
                         <th>Count of "%% EOF"</th>
-                        <td><span class="mono">{{analysis.static.pdf.Info|getkey:"Count %% EOF"}}</span></td>
+                        <td><span class="mono">{{file.pdf.Info|getkey:"Count %% EOF"}}</span></td>
                     </tr>
                     <tr>
                         <th>PDF Header</th>
-                        <td><span class="mono">{{analysis.static.pdf.Info|getkey:"PDF Header"}}</span></td>
+                        <td><span class="mono">{{file.pdf.Info|getkey:"PDF Header"}}</span></td>
                     </tr>
                     <tr>
                         <th>Data After EOF</th>
-                        <td><span class="mono">{{analysis.static.pdf.Info|getkey:"Data After EOF"}} bytes</span></td>
+                        <td><span class="mono">{{file.pdf.Info|getkey:"Data After EOF"}} bytes</span></td>
                     </tr>
                     <tr>
                         <th>File Size</th>
-                        <td><span class="mono">{{analysis.target.file.size}} bytes</span></td>
+                        <td><span class="mono">{{file.size}} bytes</span></td>
                     </tr>
-                    {% if analysis.static.pdf.Keywords|getkey:"/Page" %}
+                    {% if file.pdf.Keywords|getkey:"/Page" %}
                     <tr>
                         <th>Number of Pages</th>
-                        <td><span class="mono">{{analysis.static.pdf.Keywords|getkey:"/Page"}}</span></td>
+                        <td><span class="mono">{{file.pdf.Keywords|getkey:"/Page"}}</span></td>
                     </tr>
                     {% endif %}
                 </table>
@@ -69,7 +67,7 @@ <h4>PDF Information</h4>
         <hr />
         {% endif %}
 
-        {% if analysis.static.pdf.Dates %}
+        {% if file.pdf.Dates %}
         <div>
             <h4>PDF Date(s)</h4>
             <div id="date">
@@ -78,7 +76,7 @@ <h4>PDF Date(s)</h4>
                         <th>Name</th>
                         <th>Value</th>
                     </tr>
-                    {% for date in analysis.static.pdf.Dates %}
+                    {% for date in file.pdf.Dates %}
                     <tr>
                        <td>{{date.name}}</td>
                        <td>{{date.value|datefmt}}</td>
@@ -90,7 +88,7 @@ <h4>PDF Date(s)</h4>
         <hr />
         {% endif %}
 
-        {% if analysis.static.pdf.Keywords %}
+        {% if file.pdf.Keywords %}
         <div>
             <h4>Keyword Counts</h4>
             <div id="keywords">
@@ -103,7 +101,7 @@ <h4>Keyword Counts</h4>
                         <th>Keyword</th>
                         <th>Count</th>
                     </tr>
-                    {% for keyword, count in analysis.static.pdf.Keywords.iteritems %}
+                    {% for keyword, count in file.pdf.Keywords.items %}
                     <tr>
                         <td>{{keyword}}</td>
                         <td>{{count}}</td>
@@ -114,31 +112,31 @@ <h4>Keyword Counts</h4>
         </div>
         <hr />
         {% endif %}
-        {% if analysis.static.pdf.Annot_URLs %}
+        {% if file.pdf.Annot_URLs %}
         <div>
             <h4>Link Annotation URLs</h4>
             <div class="card card-body">
-                {% for url in analysis.static.pdf.Annot_URLs %}
+                {% for url in file.pdf.Annot_URLs %}
                     {{url}}<br />
                 {% endfor %}
             </div>
         </div>
         {% endif %}
-        {% if analysis.static.pdf.JS_URLs %}
+        {% if file.pdf.JS_URLs %}
         <div>
             <h4>Javascript URLs</h4>
             <div class="card card-body">
-                {% for url in analysis.static.pdf.JS_URLs %}
+                {% for url in file.pdf.JS_URLs %}
                     {{url}}<br />
                 {% endfor %}
             </div>
         </div>
         {% endif %}
-        {% if analysis.static.pdf.JSStreams %}
+        {% if file.pdf.JSStreams %}
         <div>
             <h4>Javascript Streams</h4>
             <div id="objects">
-                {% for obj in analysis.static.pdf.JSStreams %}
+                {% for obj in file.pdf.JSStreams %}
                 <table class="table table-striped table-bordered">
                 <colgroup>
                     <col width="250" />
diff --git a/data/html/generic/_pe.html b/data/html/generic/_pe.html
new file mode 100644
index 00000000000..ca8e70dd386
--- /dev/null
+++ b/data/html/generic/_pe.html
@@ -0,0 +1,429 @@
+<section id="static_analysis">
+    {% if file.pe %}
+            <div>
+                <h4>PE Information</h4>
+                <div id="pe_information">
+                    <table class="table table-striped table-bordered" style="table-layout: fixed;">
+                        {% if file.pe.imagebase %} <th style="width: 5%;">Image Base</th> {% endif %}
+                        {% if file.pe.entrypoint %} <th style="width: 5%;">Entry Point</th> {% endif %}
+                        {% if file.pe.reported_checksum %} <th style="width: 10%;">Reported Checksum</th> {% endif %}
+                        {% if file.pe.actual_checksum %} <th style="width: 10%;">Actual Checksum</th> {% endif %}
+                        {% if file.pe.osversion %} <th style="width: 10%;">Minimum OS Version</th> {% endif %}
+                        {% if file.pe.pdbpath %} <th style="width: 15%;">PDB Path</th> {% endif %}
+                        {% if file.pe.timestamp %} <th style="width: 10%;">Compile Time</th> {% endif %}
+                        {% if file.pe.imphash %} <th style="width: 15%;">Import Hash</th> {% endif %}
+                        {% if file.pe.icon %} <th style="width: 5%;">Icon</th>{% endif %}
+                        {% if file.pe.icon_hash %} <th style="width: 15%;">Icon Exact Hash</th> {% endif %}
+                        {% if file.pe.icon_fuzzy %} <th style="width: 15%;">Icon Similarity Hash</th> {% endif %}
+                        {% if file.pe.icon_dhash %} <th style="width: 10%;">Icon DHash</th> {% endif %}
+                        {% if file.pe.exported_dll_name %} <th style="width: 15%;">Exported DLL Name</th> {% endif %}
+
+                        <tr>
+                            {% if file.pe.imagebase %}
+                            <td>{{file.pe.imagebase}}</td>
+                            {% endif %}
+                            {% if file.pe.entrypoint %}
+                            <td>{{file.pe.entrypoint}}</td>
+                            {% endif %}
+                            {% if file.pe.reported_checksum %}
+                            <td>{{file.pe.reported_checksum}}</td>
+                            {% endif %}
+                            {% if file.pe.actual_checksum %}
+                            <td>{{file.pe.actual_checksum}}</td>
+                            {% endif %}
+                            {% if file.pe.osversion %}
+                            <td>{{file.pe.osversion}}</td>
+                            {% endif %}
+                            {% if file.pe.pdbpath %}
+                            <td>{{file.pe.pdbpath}}</td>
+                            {% endif %}
+                            {% if file.pe.timestamp %}
+                            <td>{{file.pe.timestamp}}</td>
+                            {% endif %}
+                            {% if file.pe.imphash %}
+                            <td>{{file.pe.imphash}}</td>
+                            {% endif %}
+                            {% if file.pe.icon %}
+                            <td><img src="data:image/jpeg;base64,{{file.pe.icon}}" width="32" height="32" /></td>
+                            {% endif %}
+                            {% if file.pe.icon_hash %}
+                            <td>{{file.pe.icon_hash}}</td>
+                            {% endif %}
+                            {% if file.pe.icon_fuzzy %}
+                            <td>{{file.pe.icon_fuzzy}}</td>
+                            {% endif %}
+                            {% if file.pe.icon_dhash %}
+                            <td>{{file.pe.icon_dhash}}</td>
+                            {% endif %}
+                            {% if file.pe.exported_dll_name %}
+                            <td>{{file.pe.exported_dll_name}}</td>
+                            {% endif %}
+                        </tr>
+                     </table>
+                </div>
+            </div>
+            <hr />
+        {% if file.pe.versioninfo %}
+            <div>
+                <h4>Version Infos</h4>
+                <div id="pe_versioninfo">
+                    <table class="table table-striped table-bordered">
+                        <colgroup>
+                            <col width="150" />
+                            <col width="*" />
+                        </colgroup>
+                        {% for info in file.pe.versioninfo %}
+                        {% if info.name %}
+                            <tr>
+                                <th>{{info.name}}</th>
+                                <td><span class="mono">{{info.value}}</span></td>
+                            </tr>
+                        {% endif %}
+                        {% endfor %}
+                    </table>
+                </div>
+            </div>
+            <hr />
+        {% endif %}
+        {% if file.pe.peid_signatures%}
+        <div>
+            <h4>PEiD Signatures</h4>
+            <div id="peid_signatures">
+                <table class="table table-striped table-bordered">
+                {% for sig in file.pe.peid_signatures %}
+                    <tr><td>{{sig}}</td></tr>
+                {% endfor %}
+                </table>
+            </div>
+        </div>
+        <hr />
+        {% endif %}
+        {% if file.pe.sections %}
+            <div>
+                <h4>Sections</h4>
+                <div id="pe_sections">
+                    <table class="table table-striped table-bordered">
+                        <tr>
+                            <th>Name</th>
+                            <th>RAW Address</th>
+                            <th>Virtual Address</th>
+                            <th>Virtual Size</th>
+                            <th>Size of Raw Data</th>
+                            <th>Characteristics</th>
+                            <th>Entropy</th>
+                        </tr>
+                        {% for section in file.pe.sections %}
+                            <tr>
+                                <td>{{section.name}}</td>
+                                <td>{{section.raw_address}}</td>
+                                <td>{{section.virtual_address}}</td>
+                                <td>{{section.virtual_size}}</td>
+                                <td>{{section.size_of_data}}</td>
+                                <td>{{section.characteristics}}</td>
+                                <td>{{section.entropy}}</td>
+                            </tr>
+                        {% endfor %}
+                </table>
+            </div>
+        </div>
+        <hr />
+        {% endif %}
+
+        {% if file.pe.overlay %}
+        <div>
+            <h4>Overlay</h4>
+            <div id="pe_overlay">
+                <table class="table table-striped table-bordered">
+                    <colgroup>
+                        <col width="150" />
+                        <col width="*" />
+                    </colgroup>
+                    <tr>
+                        <td><strong>Offset</strong></td>
+                        <td>{{file.pe.overlay.offset}}</td>
+                    </tr>
+                    <tr>
+                        <td><strong>Size</strong></td>
+                        <td>{{file.pe.overlay.size}}</td>
+                    </tr>
+                    </table>
+                </div>
+            </div>
+            <hr />
+        {% endif %}
+
+        {% if file.pe.resources %}
+        <div class="card">
+                <div class="card-header">
+                    <h5 class="mb-0">
+                    <button class="btn btn-link" data-toggle="collapse" href="#pe_resources" data-target="#pe_resources_{{file.sha256}}" aria-expanded="false">
+                        <strong>Resources</strong></a>
+                    </button>
+                    </h5>
+                </div>
+
+                <div id="pe_resources_{{file.sha256}}" class="collapse">
+                    <div class="card-body">
+                        <table class="table table-striped table-bordered">
+                            <tr>
+                                <th>Name</th>
+                                <th>Offset</th>
+                                <th>Size</th>
+                                <th>Language</th>
+                                <th>Sub-language</th>
+                                <th>Entropy</th>
+                                <th>File type</th>
+                            </tr>
+                            {% for section in file.pe.resources %}
+                                <tr>
+                                    <td>{{section.name}}</td>
+                                    <td>{{section.offset}}</td>
+                                    <td>{{section.size}}</td>
+                                    <td>{{section.language}}</td>
+                                    <td>{{section.sublanguage}}</td>
+                                    <td>{{section.entropy}}</td>
+                                    <td>{{section.filetype}}</td>
+                                </tr>
+                            {% endfor %}
+                        </table>
+                    </div>
+                </div>
+        </div>
+        <hr />
+        {% endif %}
+
+        {% if file.pe.imports %}
+        <div>
+            {% for dll, library in file.pe.imports.items() %}
+            <div class="card">
+                <div class="card-header">
+                    <h5 class="mb-0">
+                    <button class="btn btn-link" data-toggle="collapse" href="#{{dll}}" data-target="#{{dll}}" aria-expanded="false">
+                        <strong>Library {{dll}}</strong>:</a>
+                    </button>
+                    </h5>
+                </div>
+                <div id="{{dll}}" class="collapse">
+                    <div class="card-body">
+                        {% for function in library.imports %}
+                        <div>&bull; <span class="mono">{{function.address}} <a href="https://docs.microsoft.com/en-us/search/?terms={{function.name}}">{{function.name}}</a></span></div>
+                        {% endfor %}
+                    </div>
+                </div>
+            </div>
+            {% endfor %}
+        </div>
+        {% endif %}
+        <hr />
+
+        {% if file.pe.exports %}
+            <div>
+                <h4>Exports</h4>
+                <div id="pe_exports">
+                    <table class="table table-striped table-bordered table-dark">
+                        <tr>
+                            <th>Ordinal</th>
+                            <th>Address</th>
+                            <th>Name</th>
+                        </tr>
+                        {% for export in file.pe.exports %}
+                            <tr>
+                                <td>{{export.ordinal}}</td>
+                                <td>{{export.address}}</td>
+                                <td>{{export.name}}</td>
+                            </tr>
+                        {% endfor %}
+                    </table>
+                </div>
+            </div>
+        {% endif %}
+
+        {% if file.pe.digital_signers %}
+            <div class="card-header">
+                <center><a class="accordion-toggle" data-toggle="collapse" aria-expanded="false" href="#pe_digital_signers">Digital Signers</a></center>
+            </div>
+            <hr />
+            <div id="pe_digital_signers" class="collapse" style="text-align: left;">
+                <div id="digital_signers">
+                    {% for cert in file.pe.digital_signers %}
+                    <table class="table table-striped table-bordered">
+                        <colgroup>
+                            <col width="250" />
+                            <col width="*" />
+                        </colgroup>
+                        {% if cert.subject_commonName %}
+                            <tr>
+                                <th>Certificate Common Name</th>
+                                <td>{{cert.subject_commonName}}</td>
+                            </tr>
+                        {% endif %}
+                        {% if cert.subject_commonName %}
+                        <tr>
+                            <th>Subject Organization Name</th>
+                            <td>{{cert.subject_commonName}}</td>
+                        </tr>
+                        {% endif %}
+                        {% if cert.subject_organizationalUnitName %}
+                        <tr>
+                            <th>Subject Organization Unit Name</th>
+                            <td>{{cert.subject_organizationalUnitName}}</td>
+                        </tr>
+                        {% endif %}
+                        {% if cert.subject_streetAddress %}
+                        <tr>
+                            <th>Subject Street Address</th>
+                            <td>{{cert.subject_streetAddress}}</td>
+                        </tr>
+                        {% endif %}
+                        {% if cert.subject_localityName %}
+                        <tr>
+                            <th>Subject Locality</th>
+                            <td>{{cert.subject_localityName}}</td>
+                        </tr>
+                        {% endif %}
+                        {% if cert.subject_stateOrProvinceName %}
+                        <tr>
+                            <th>Subject State or Province</th>
+                            <td>{{cert.subject_stateOrProvinceName}}</td>
+                        </tr>
+                        {% endif %}
+                        {% if cert.subject_postalCode %}
+                        <tr>
+                            <th>Subject Postal Code</th>
+                            <td>{{cert.subject_postalCode}}</td>
+                        </tr>
+                        {% endif %}
+                        {% if cert.subject_countryName %}
+                        <tr>
+                            <th>Subject Country</th>
+                            <td>{{cert.subject_countryName}}</td>
+                        </tr>
+                        {% endif %}
+                        {% if cert.issuer_commonName %}
+                        <tr>
+                            <th>Issuer Common Name</th>
+                            <td>{{cert.issuer_commonName}}</td>
+                        </tr>
+                        {% endif %}
+                        {% if cert.issuer_organizationName %}
+                        <tr>
+                            <th>Issuer Organization Name</th>
+                            <td>{{cert.issuer_organizationName}}</td>
+                        </tr>
+                        {% endif %}
+                        {% if cert.issuer_organizationalUnitName %}
+                        <tr>
+                            <th>Issuer Organization Unit Name</th>
+                            <td>{{cert.issuer_organizationalUnitName}}</td>
+                        </tr>
+                        {% endif %}
+                        {% if cert.issuer_localityName %}
+                        <tr>
+                            <th>Issuer Locality</th>
+                            <td>{{cert.issuer_localityName}}</td>
+                        </tr>
+                        {% endif %}
+                        {% if cert.issuer_stateOrProvinceName %}
+                        <tr>
+                            <th>Issuer State or Province</th>
+                            <td>{{cert.issuer_stateOrProvinceName}}</td>
+                        </tr>
+                        {% endif %}
+                        {% if cert.issuer_countryName %}
+                        <tr>
+                            <th>Issuer Country</th>
+                            <td>{{cert.issuer_countryName}}</td>
+                        </tr>
+                        {% endif %}
+                        {% if cert.serial_number %}
+                        <tr>
+                            <th>Serial Number</th>
+                            <td>{{cert.serial_number}}</td>
+                        </tr>
+                        {% endif %}
+                        {% if cert.sha256_fingerprint %}
+                        <tr>
+                            <th>SHA256 Fingerprint</th>
+                            <td>{{cert.sha256_fingerprint}}</td>
+                        </tr>
+                        {% endif %}
+                        {% if cert.sha1_fingerprint %}
+                        <tr>
+                            <th>SHA1 Fingerprint</th>
+                            <td>{{cert.sha1_fingerprint}}</td>
+                        </tr>
+                        {% endif %}
+                        {% if cert.md5_fingerprint %}
+                        <tr>
+                            <th>MD5 Fingerprint</th>
+                            <td>{{cert.md5_fingerprint}}</td>
+                        </tr>
+                        {% endif %}
+                        {% if cert.not_before %}
+                        <tr>
+                            <th>Not valid before</th>
+                            <td>{{cert.not_before}}</td>
+                        </tr>
+                        {% endif %}
+                        {% if cert.not_after %}
+                        <tr>
+                            <th>Not valid after</th>
+                            <td>{{cert.not_after}}</td>
+                        </tr>
+                        {% endif %}
+                    {% endfor %}
+                    </table>
+                </div>
+            {% if file.pe.guest_signers.aux_signers %}
+            <div>
+                <h4>Microsoft Certificate Validation (Sign Tool)</h4>
+                <div id="digital_signers_validation">
+                    <table class="table table-striped table-bordered">
+                        <tr>
+                            <th width="20%">SHA1</th>
+                            <th width="20%">Timestamp</th>
+                            <th width="5%">Valid</th>
+                            <th width="55%">Error</th>
+                        </tr>
+                        <tr>
+                            <td>{{file.pe.guest_signers.aux_sha1}}</td>
+                            <td>{{file.pe.guest_signers.aux_timestamp}}</td>
+                            {% if file.pe.guest_signers.aux_valid %}
+                            <td><center><span class="badge badge-success">Yes</span></center></td>
+                            <td>None</td>
+                            {% else %}
+                            <td><center><span class="badge badge-danger">No</span></center></td>
+                            <td>{{file.pe.guest_signers.aux_error_desc}}</td>
+                            {% endif %}
+                        </tr>
+                    </table>
+                    <table class="table table-striped table-bordered">
+                        <tr>
+                            <th><b>Chain</b></th>
+                            <th><b>Issued to</b></th>
+                            <th><b>Issued by</b></th>
+                            <th><b>Expires</b></th>
+                            <th><b>SHA1 Hash</b></th>
+                        </tr>
+                        {#
+                        {% for signer in file.pe.guest_signers.aux_signers %}
+                        <tr>
+                                <td>{{signer.name}}</td>
+                                <td>{{signer|getkey"Issued to"}}</td>
+                                <td>{{signer|getkey"Issued by"}}</td>
+                                <td>{{signer.Expires}}</td>
+                                <td>{{signer|getkey:"SHA1 hash"}}</td>
+                        </tr>
+                        {% endfor %}
+                        #}
+                    </table>
+                </div>
+            </div>
+            {% endif %}
+            <hr />
+            </div>
+        {% endif %}
+    {% else %}
+        Nothing to display.
+    {% endif %}
+</section>
diff --git a/data/html/generic/_subfile_info.html b/data/html/generic/_subfile_info.html
new file mode 100644
index 00000000000..dac4482b48e
--- /dev/null
+++ b/data/html/generic/_subfile_info.html
@@ -0,0 +1,353 @@
+<!--this file is identical copy of _file_info.html but just changes "file." to "sub_file." to allow show the same info as subtab-->
+<div class="panel panel-default">
+    <table class="table table-striped table-bordered" style="table-layout: fixed;width: 50%;margin-left: auto;margin-right: auto;">
+        {% if sub_file.cape_type %}
+            <tr>
+                <th style="border-top: 0; width: 15%;">Type</th>
+                <td style="border-top: 0; word-wrap: break-word;"><b>{{sub_file.cape_type}}</b></td>
+            </tr>
+        {% endif %}
+        <tr>
+            <th style="border-top: 0; width: 15%;">Filename</th>
+            <td>
+                {% for name in sub_file.name|str2list %}
+                <div style="border-top: 0; word-wrap: break-word;"><b>{{name|safe}}</b></div>
+                {% endfor %}
+            </td>
+        </tr>
+        {% if sub_file.type %}
+            <tr>
+                <th style="border-top: 0; width: 15%;">File Type</th>
+                <td style="border-top: 0; word-wrap: break-word;"><b>{{sub_file.type}}</b></td>
+            </tr>
+        {% endif %}
+        {% if sub_file.guest_paths and tab_name == "dropped" %}
+            <tr>
+                <th style="border-top: 0; width: 15%;">Associated Filenames</th>
+                <td style="border-top: 0; word-wrap: break-word;">
+                    {% for path in sub_file.guest_paths|str2list %}
+                        <div>{{path}}</div>
+                    {% endfor %}
+                </td>
+            </tr>
+        {% endif %}
+        <tr>
+            <th style="border-top: 0; width: 15%;">File Size</th>
+            <td style="border-top: 0; word-wrap: break-word;"><b>{{sub_file.size}} bytes</b></td>
+        </tr>
+        {% if sub_file.module_path and sub_file.process_path != sub_file.module_path %}
+            <tr>
+                <th>Module Path</th>
+                <td>{{sub_file.module_path}}</td>
+            </tr>
+        {% endif %}
+        {% if sub_file.cape_type_code == 8 or sub_file.cape_type_code == 9 %}
+                <tr>
+                    <th>Virtual Address</th>
+                    <td>{{sub_file.virtual_address}}</td>
+                </tr>
+            {% endif %}
+            {% if sub_file.cape_type_code == 5 %}
+                <tr>
+                    <th>Section Handle</th>
+                    <td>{{sub_file.section_handle}}</td>
+                </tr>
+            {% endif %}
+            {% if sub_file.cape_type_code == 3 or sub_file.cape_type_code == 4 %}
+                <tr>
+                    <th>Target Process</th>
+                    <td>{{sub_file.target_process}}</td>
+                </tr>
+                <tr>
+                    <th>Target PID</th>
+                    <td>{{sub_file.target_pid}}</td>
+                </tr>
+                <tr>
+                    <th>Target Path</th>
+                    <td>{{sub_file.target_path}}</td>
+                </tr>
+                <tr>
+                    <th>Injecting Process</th>
+                    <td>{{sub_file.process_name}}</td>
+                </tr>
+                <tr>
+                    <th>Injecting PID</th>
+                    <td>{{sub_file.pid}}</td>
+                </tr>
+                <tr>
+                    <th>Path</th>
+                    <td>{{sub_file.process_path}}</td>
+                </tr>
+            {% else %}
+                {% if sub_file.process_name %}
+                <tr>
+                    <th>Process</th>
+                    <td>{{sub_file.process_name}}</td>
+                </tr>
+                {% endif %}
+                {% if sub_file.pid %}
+                <tr>
+                    <th>PID</th>
+                    <td>{{sub_file.pid}}</td>
+                </tr>
+                {% endif %}
+                {% if sub_file.process_path %}
+                <tr>
+                    <th>Path</th>
+                    <td>{{sub_file.process_path}}</td>
+                </tr>
+                {% endif %}
+            {% endif %}
+        {% if sub_file.timestamp %}
+            <tr>
+                <th>PE timestamp</th>
+                <td style="word-wrap: break-word;">{{sub_file.timestamp}}</td>
+            </tr>
+        {% endif %}
+        <tr>
+            <th>MD5</th>
+            <td style="word-wrap: break-word;">{{sub_file.md5}}</td>
+        </tr>
+        <tr>
+            <th>SHA1</th>
+            <td style="word-wrap: break-word;">{{sub_file.sha1}}</td>
+        </tr>
+        <tr>
+            <th>SHA256</th>
+            <td style="word-wrap: break-word;">{{sub_file.sha256}}
+                <a href="https://www.virustotal.com/gui/file/{{sub_file.sha256}}/" style="color: #e74c3c">[VT]</a>
+                <a href="https://mwdb.cert.pl/file/{{sub_file.sha256}}" style="color: #e74c3c">[MWDB]</a>
+                <a href="https://bazaar.abuse.ch/sample/{{sub_file.sha256}}/" style="color: #e74c3c">[Bazaar]</a>
+            </td>
+        </tr>
+        {% if sub_file.sha3_384 %}
+        <tr>
+            <th>SHA3-384</th>
+            <td style="word-wrap: break-word;">{{sub_file.sha3_384}}</td>
+        </tr>
+        {% endif %}
+        {% if sub_file.rh_hash %}
+            <tr>
+                <th>RichHeader Hash</th>
+                <td style="word-wrap: break-word;">{{sub_file.rh_hash}}</td>
+            </tr>
+        {% endif %}
+        <tr>
+            <th>CRC32</th>
+            <td>{{sub_file.crc32}}</td>
+        </tr>
+        {% if sub_file.tlsh %}
+        <tr>
+            <th>TLSH</th>
+            <td style="word-wrap: break-word;">{{sub_file.tlsh}}</td>
+        </tr>
+        {% endif %}
+        <tr>
+            <th>Ssdeep</th>
+            <td style="word-wrap: break-word;">{{sub_file.ssdeep}}</td>
+        </tr>
+        {% if sub_file.clamav %}
+        <tr>
+            <th>ClamAV</th>
+            <td>
+                <ul style="margin-bottom: 0;">
+                {% for sign in sub_file.clamav %}
+                    <li>{{sign}}</li>
+                {% endfor %}
+                </ul>
+            </td>
+        </tr>
+        {% endif %}
+        {% if sub_file.yara %}
+        <tr>
+            <th>Yara</th>
+            <td>
+                <ul style="margin-bottom: 0;">
+                {% for sign in sub_file.yara %}
+                    <li>
+                    {{sign.name}} - {{sign.meta.description}}
+                    {% if sign.meta.author %}
+                        - Author: {{sign.meta.author}}
+                    {% endif %}
+                    </li>
+                {% endfor %}
+                </ul>
+            </td>
+        </tr>
+        {% endif %}
+        {% if sub_file.cape_yara %}
+        <tr>
+            <th>CAPE Yara</th>
+            <td>
+                <ul style="margin-bottom: 0;">
+                {% for sign in sub_file.cape_yara %}
+                    <li>
+                    {{sign.name}}
+                    {% if sign.meta.cape_type %} - {{sign.meta.cape_type}}
+                    {% elif sign.meta.description %} - {{sign.meta.description}}
+                    {% endif %}
+                    {% if sign.meta.author %} - Author: {{sign.meta.author}}{% endif %}
+                    </li>
+                {% endfor %}
+                </ul>
+            </td>
+        </tr>
+        {% endif %}
+        {% if sub_file.trid %}
+        <tr>
+            <th>TriD</th>
+            <td>
+            <ul style="margin-top: 0;margin-bottom: 0;">
+                {% for str in sub_file.trid %}
+                    <li>{{str}}</li>
+                {% endfor %}
+            </ul>
+            </td>
+        </tr>
+        {% endif %}
+
+        {% if sub_file.die %}
+        <tr>
+            <th>Detect It Easy</th>
+            <td>
+            <ul style="margin-top: 0;margin-bottom: 0;">
+                {% for str in sub_file.die %}
+                    <li>{{str}}</li>
+                {% endfor %}
+            </ul>
+            </td>
+        </tr>
+        {% endif %}
+
+        {% if sub_file.dropdir %}
+        <tr>
+            <th></th>
+            <td></td>
+        </tr>
+        {% else %}
+        <tr>
+            <th>
+                {% if file.pe %}<a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#pe_{{sub_file.sha256}}" role="button" aria-expanded="false" aria-controls="pe_{{sub_file.sha256}}"  data-bs-toggle="tooltip" title="Display PE info"><span class="fas fa-file-lines"></span> PE</a>{% endif %}
+                {% if file.dotnet %}<a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#dotnet_{{sub_file.sha256}}" role="button" aria-expanded="false" aria-controls="dotnet_{{sub_file.sha256}}"  data-bs-toggle="tooltip" title="Display DotNet info"><span class="fas fa-file-lines"></span> DotNET</a>{% endif %}
+                {% if file.pdf %}<a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#pdf_{{sub_file.sha256}}" role="button" aria-expanded="false" aria-controls="pdf_{{sub_file.sha256}}"  data-bs-toggle="tooltip" title="Display PDF info"><span class="fas fa-file-lines"></span> PDF</a>{% endif %}
+                {% if file.lnk %}<a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#lnk_{{sub_file.sha256}}" role="button" aria-expanded="false" aria-controls="lnk_{{sub_file.sha256}}"  data-bs-toggle="tooltip" title="Display LNK info"><span class="fas fa-file-lines"></span> LNK</a>{% endif %}
+                {% if file.java %}<a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#java_{{sub_file.sha256}}" role="button" aria-expanded="false" aria-controls="java_{{sub_file.sha256}}"  data-bs-toggle="tooltip" title="Display Java info"><span class="fas fa-file-lines"></span> Java</a>{% endif %}
+                {% if file.office %}<a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#office_{{sub_file.sha256}}" role="button" aria-expanded="false" aria-controls="office_{{sub_file.sha256}}"  data-bs-toggle="tooltip" title="Display Office info"><span class="fas fa-file-lines"></span> Office</a>{% endif %}
+            </th>
+
+            </th>
+            <td>
+                {% if sub_file.flare_capa %}
+                    <a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#flare_capa_{{sub_file.sha256}}" role="button" aria-expanded="false" aria-controls="flare_capa_{{sub_file.sha256}}">FLARE CAPA</a>
+                {% endif %}
+                {% if sub_file.strings %}
+                    <a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#strings_{{sub_file.sha256}}" role="button" aria-expanded="false" aria-controls="strings_{{sub_file.sha256}}"  data-bs-toggle="tooltip" title="Display strings"><span class="fas fa-envelope-open-text"></span> Strings</a>
+                {% endif %}
+                {% if sub_file.floss %}
+                    <a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#floss_{{sub_file.sha256}}" role="button" aria-expanded="false" aria-controls="floss_{{sub_file.sha256}}"  data-bs-toggle="tooltip" title="Display floss strings"><span class="fas fa-envelope-open-text"></span> Floss</a>
+                {% endif %}
+                {% if sub_file.data %}
+                    <a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#text_{{sub_file.sha256}}" role="button" aria-expanded="false" aria-controls="text_{{sub_file.sha256}}"  data-bs-toggle="tooltip" title="Display text"><span class="fas fa-envelope-open-text"></span> Text</a>
+                {% endif %}
+                {% if sub_file.decoded_files %}
+                    <a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#decoded_files_{{sub_file.sha256}}" role="button" aria-expanded="false" aria-controls="decoded_files_{{sub_file.sha256}}"  data-bs-toggle="tooltip" title="Display text"><span class="fas fa-envelope-open-text"></span> {{sub_file.decoded_files_tool}}</a>
+                {% endif %}
+                {% if sub_file.extracted_files %}
+                    <a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#extracted_files_{{sub_file.sha256}}" role="button" aria-expanded="false" aria-controls="extracted_files_{{sub_file.sha256}}"  data-bs-toggle="tooltip" title="Display extracted files"><span class="fas fa-archive"></span> {{sub_file.extracted_files_tool}}</a>
+                {% endif %}
+            </td>
+        </tr>
+        {% endif %}
+    </table>
+    {% if sub_file.flare_capa %}
+            <tr>
+                <th></th><td>
+                <div class="collapse" id="flare_capa_{{sub_file.sha256}}">
+                    <div>
+                    <!--Inspired by @snemes trick, code placed in web/views/templateatgs/analysis_tags.py-->
+                    {% if sub_file.flare_capa.CAPABILITY %}
+                        {{sub_file.flare_capa|flare_capa_capability}}
+                    {% endif %}
+                    {% if sub_file.flare_capa.ATTCK %}
+                        {{sub_file.flare_capa|flare_capa_attck}}
+                    {% endif %}
+                    {% if sub_file.flare_capa.MBC %}
+                        {{sub_file.flare_capa|flare_capa_mbc}}
+                    {% endif %}
+                    </div>
+                </div>
+            </td>
+            </tr>
+            </br>
+        {% endif %}
+        {#
+        {% if graphs.vba2graph.content|getkey:sub_file.sha256 %}
+            <tr><th></th>
+                <td>{{ graphs.vba2graph.content|getkey:sub_file.sha256|safe }}</td>
+            </tr>
+        {% endif %}
+        #}
+        {% if sub_file.virustotal %}
+            <tr>
+                <th></th>
+                <td>{% include "generic/_virustotal.html" %}</td>
+            </tr>
+        {% endif %}
+        {% if sub_file.strings %}
+            <tr>
+                <th></th><td>
+                <div class="collapse" id="strings_{{sub_file.sha256}}">
+                    <div>
+                    {{sub_file.strings|safe}}
+                    </div>
+                </div>
+            </td>
+            </tr>
+        {% endif %}
+        {% if sub_file.data %}
+            <tr>
+                <th></th><td>
+                <div class="collapse" id="text_{{sub_file.sha256}}">
+                    <div>
+                    <p>{{sub_file.data|escape}}</p>
+                    </div>
+                </div>
+            </td>
+            </tr>
+        {% endif %}
+        {% if sub_file.decoded_files %}
+            <tr>
+                <th></th><td>
+                <div class="collapse" id="decoded_files_{{sub_file.sha256}}">
+                    <div>
+                    <p>{{sub_file.decoded_files|escape}}</p>
+                    </div>
+                </div>
+            </td>
+            </tr>
+        {% endif %}
+        {% if sub_file.extracted_files %}
+            <tr>
+                <th></th><td>
+                <div class="collapse" id="extracted_files_{{sub_file.sha256}}">
+                    <div>
+                        {% for sub_file in sub_file.extracted_files %}
+                            {% include "generic/_sub_file_info.html" %}
+                        {% endfor %}
+                    </div>
+                </div>
+            </td>
+            </tr>
+            </br>
+        {% endif %}
+    {#
+        {% if sub_file.pe %} <div class="collapse" id="pe_{{sub_file.sha256}}"> <div> {% include "generic/_pe.html" %}</div></div></br>{% endif %}
+        {% if sub_file.dotnet %} <div class="collapse" id="dotnet_{{sub_file.sha256}}"> <div> {% include "generic/_dotnet.html" %}</div></div></br>{% endif %}
+        {% if sub_file.pdf %} <div class="collapse" id="pdf_{{sub_file.sha256}}"> <div> {% include "generic/_pdf.html" %}</div></div></br>{% endif %}
+        {% if sub_file.lnk %} <div class="collapse" id="lnk_{{sub_file.sha256}}"> <div> {% include "generic/_lnk.html" %}</div></div></br>{% endif %}
+        {% if sub_file.java %} <div class="collapse" id="java_{{sub_file.sha256}}"> <div> {% include "generic/_java.html" %}</div></div></br>{% endif %}
+        {% if sub_file.office %} <div class="collapse" id="office_{{sub_file.sha256}}"> <div> {% include "generic/_office.html" %}</div></div></br>{% endif %}
+        {% if sub_file.floss %} <div class="collapse" id="floss_{{sub_file.sha256}}"> <div> {% include "generic/_floss.html" %}</div></div></br>{% endif %}
+        {% if graphs.bingraph.enabled and graphs.bingraph.content|getkey:sub_file.sha256 %}<center><td>{{ graphs.bingraph.content|getkey:sub_file.sha256|safe }}</td></center></br>{% endif %}
+    #}
+</div>
diff --git a/data/html/generic/_virustotal.html b/data/html/generic/_virustotal.html
new file mode 100644
index 00000000000..67dc9d8dcad
--- /dev/null
+++ b/data/html/generic/_virustotal.html
@@ -0,0 +1,40 @@
+{% if file.virustotal and not file.virustotal.error == True %}
+<div class="card-header">
+    <center><a class="accordion-toggle" data-toggle="collapse" aria-expanded="false" href="#virustotal_binary"><i class="fas fa-shield-virus"></i> VirusTotal ({{file.virustotal.positives}}/{{file.virustotal.total}}) {% if file.virustotal.detection %} - {{file.virustotal.detection}} {% endif %}</a></center>
+</div>
+
+<div class="collapse" id="virustotal_binary">
+    <div class="card card-body">
+        {% if file.virustotal.resource %}
+            <h4><a href="https://www.virustotal.com/en/file/{{file.virustotal.resource}}/analysis/">Full Results</a></h4>
+        {% endif %}
+
+        <table class="table table-striped table-bordered">
+            <tr>
+                <th>Engine</th><th>Result</th><th>Engine</th><th>Result</th><th>Engine</th><th>Result</th>
+            </tr>
+
+            {% for av, values in file.virustotal.scans.items() %}
+                <td>{{av}}</td>
+                <td>
+                    {% if not values.result %}
+                        <span class="text-muted">Clean</span>
+                    {% else %}
+                        <span class="text-danger">{{values.result}}
+                        {% if values.moloch %}
+                        <a href="{{values.moloch}}" target="_blank">[MLCH]</a>
+                        {% endif %}
+                        </span>
+                    {% endif %}
+                </td>
+            {% if loop.index %3 == 0 %}
+                </tr>
+            {% elif loop.last %}
+                </tr>
+            {% endif %}
+            {% endfor %}
+
+        </table>
+    </div>
+</div>
+{% endif %}
diff --git a/data/html/generic/_xlmmacro.html b/data/html/generic/_xlmmacro.html
new file mode 100644
index 00000000000..d7153c3bf77
--- /dev/null
+++ b/data/html/generic/_xlmmacro.html
@@ -0,0 +1,10 @@
+<section id="static_analysis">
+    <div>
+        <h4>XLM Macro</h4>
+        <pre>
+            {% for line in file.office.XLMMacroDeobfuscator.Code %}
+                {{line}}
+            {% endfor %}
+        </pre>
+    </div >
+</section>
diff --git a/data/html/graphic/logo.html b/data/html/graphic/logo.html
index 30c7e19a756..81c6ecc1552 100644
--- a/data/html/graphic/logo.html
+++ b/data/html/graphic/logo.html
@@ -1,2 +1,2 @@
 <img src="data:image/png;base64,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"
-border="0" />
\ No newline at end of file
+border="0" />
diff --git a/data/html/js/jquery.min.js b/data/html/js/jquery.min.js
index b054afbf9e5..e4f1310f966 100644
--- a/data/html/js/jquery.min.js
+++ b/data/html/js/jquery.min.js
@@ -2,4 +2,3 @@
 (function(a,b){function cy(a){return f.isWindow(a)?a:a.nodeType===9?a.defaultView||a.parentWindow:!1}function cu(a){if(!cj[a]){var b=c.body,d=f("<"+a+">").appendTo(b),e=d.css("display");d.remove();if(e==="none"||e===""){ck||(ck=c.createElement("iframe"),ck.frameBorder=ck.width=ck.height=0),b.appendChild(ck);if(!cl||!ck.createElement)cl=(ck.contentWindow||ck.contentDocument).document,cl.write((f.support.boxModel?"<!doctype html>":"")+"<html><body>"),cl.close();d=cl.createElement(a),cl.body.appendChild(d),e=f.css(d,"display"),b.removeChild(ck)}cj[a]=e}return cj[a]}function ct(a,b){var c={};f.each(cp.concat.apply([],cp.slice(0,b)),function(){c[this]=a});return c}function cs(){cq=b}function cr(){setTimeout(cs,0);return cq=f.now()}function ci(){try{return new a.ActiveXObject("Microsoft.XMLHTTP")}catch(b){}}function ch(){try{return new a.XMLHttpRequest}catch(b){}}function cb(a,c){a.dataFilter&&(c=a.dataFilter(c,a.dataType));var d=a.dataTypes,e={},g,h,i=d.length,j,k=d[0],l,m,n,o,p;for(g=1;g<i;g++){if(g===1)for(h in a.converters)typeof h=="string"&&(e[h.toLowerCase()]=a.converters[h]);l=k,k=d[g];if(k==="*")k=l;else if(l!=="*"&&l!==k){m=l+" "+k,n=e[m]||e["* "+k];if(!n){p=b;for(o in e){j=o.split(" ");if(j[0]===l||j[0]==="*"){p=e[j[1]+" "+k];if(p){o=e[o],o===!0?n=p:p===!0&&(n=o);break}}}}!n&&!p&&f.error("No conversion from "+m.replace(" "," to ")),n!==!0&&(c=n?n(c):p(o(c)))}}return c}function ca(a,c,d){var e=a.contents,f=a.dataTypes,g=a.responseFields,h,i,j,k;for(i in g)i in d&&(c[g[i]]=d[i]);while(f[0]==="*")f.shift(),h===b&&(h=a.mimeType||c.getResponseHeader("content-type"));if(h)for(i in e)if(e[i]&&e[i].test(h)){f.unshift(i);break}if(f[0]in d)j=f[0];else{for(i in d){if(!f[0]||a.converters[i+" "+f[0]]){j=i;break}k||(k=i)}j=j||k}if(j){j!==f[0]&&f.unshift(j);return d[j]}}function b_(a,b,c,d){if(f.isArray(b))f.each(b,function(b,e){c||bD.test(a)?d(a,e):b_(a+"["+(typeof e=="object"?b:"")+"]",e,c,d)});else if(!c&&f.type(b)==="object")for(var e in b)b_(a+"["+e+"]",b[e],c,d);else d(a,b)}function b$(a,c){var d,e,g=f.ajaxSettings.flatOptions||{};for(d in c)c[d]!==b&&((g[d]?a:e||(e={}))[d]=c[d]);e&&f.extend(!0,a,e)}function bZ(a,c,d,e,f,g){f=f||c.dataTypes[0],g=g||{},g[f]=!0;var h=a[f],i=0,j=h?h.length:0,k=a===bS,l;for(;i<j&&(k||!l);i++)l=h[i](c,d,e),typeof l=="string"&&(!k||g[l]?l=b:(c.dataTypes.unshift(l),l=bZ(a,c,d,e,l,g)));(k||!l)&&!g["*"]&&(l=bZ(a,c,d,e,"*",g));return l}function bY(a){return function(b,c){typeof b!="string"&&(c=b,b="*");if(f.isFunction(c)){var d=b.toLowerCase().split(bO),e=0,g=d.length,h,i,j;for(;e<g;e++)h=d[e],j=/^\+/.test(h),j&&(h=h.substr(1)||"*"),i=a[h]=a[h]||[],i[j?"unshift":"push"](c)}}}function bB(a,b,c){var d=b==="width"?a.offsetWidth:a.offsetHeight,e=b==="width"?1:0,g=4;if(d>0){if(c!=="border")for(;e<g;e+=2)c||(d-=parseFloat(f.css(a,"padding"+bx[e]))||0),c==="margin"?d+=parseFloat(f.css(a,c+bx[e]))||0:d-=parseFloat(f.css(a,"border"+bx[e]+"Width"))||0;return d+"px"}d=by(a,b);if(d<0||d==null)d=a.style[b];if(bt.test(d))return d;d=parseFloat(d)||0;if(c)for(;e<g;e+=2)d+=parseFloat(f.css(a,"padding"+bx[e]))||0,c!=="padding"&&(d+=parseFloat(f.css(a,"border"+bx[e]+"Width"))||0),c==="margin"&&(d+=parseFloat(f.css(a,c+bx[e]))||0);return d+"px"}function bo(a){var b=c.createElement("div");bh.appendChild(b),b.innerHTML=a.outerHTML;return b.firstChild}function bn(a){var b=(a.nodeName||"").toLowerCase();b==="input"?bm(a):b!=="script"&&typeof a.getElementsByTagName!="undefined"&&f.grep(a.getElementsByTagName("input"),bm)}function bm(a){if(a.type==="checkbox"||a.type==="radio")a.defaultChecked=a.checked}function bl(a){return typeof a.getElementsByTagName!="undefined"?a.getElementsByTagName("*"):typeof a.querySelectorAll!="undefined"?a.querySelectorAll("*"):[]}function bk(a,b){var c;b.nodeType===1&&(b.clearAttributes&&b.clearAttributes(),b.mergeAttributes&&b.mergeAttributes(a),c=b.nodeName.toLowerCase(),c==="object"?b.outerHTML=a.outerHTML:c!=="input"||a.type!=="checkbox"&&a.type!=="radio"?c==="option"?b.selected=a.defaultSelected:c==="input"||c==="textarea"?b.defaultValue=a.defaultValue:c==="script"&&b.text!==a.text&&(b.text=a.text):(a.checked&&(b.defaultChecked=b.checked=a.checked),b.value!==a.value&&(b.value=a.value)),b.removeAttribute(f.expando),b.removeAttribute("_submit_attached"),b.removeAttribute("_change_attached"))}function bj(a,b){if(b.nodeType===1&&!!f.hasData(a)){var c,d,e,g=f._data(a),h=f._data(b,g),i=g.events;if(i){delete h.handle,h.events={};for(c in i)for(d=0,e=i[c].length;d<e;d++)f.event.add(b,c,i[c][d])}h.data&&(h.data=f.extend({},h.data))}}function bi(a,b){return f.nodeName(a,"table")?a.getElementsByTagName("tbody")[0]||a.appendChild(a.ownerDocument.createElement("tbody")):a}function U(a){var b=V.split("|"),c=a.createDocumentFragment();if(c.createElement)while(b.length)c.createElement(b.pop());return c}function T(a,b,c){b=b||0;if(f.isFunction(b))return f.grep(a,function(a,d){var e=!!b.call(a,d,a);return e===c});if(b.nodeType)return f.grep(a,function(a,d){return a===b===c});if(typeof b=="string"){var d=f.grep(a,function(a){return a.nodeType===1});if(O.test(b))return f.filter(b,d,!c);b=f.filter(b,d)}return f.grep(a,function(a,d){return f.inArray(a,b)>=0===c})}function S(a){return!a||!a.parentNode||a.parentNode.nodeType===11}function K(){return!0}function J(){return!1}function n(a,b,c){var d=b+"defer",e=b+"queue",g=b+"mark",h=f._data(a,d);h&&(c==="queue"||!f._data(a,e))&&(c==="mark"||!f._data(a,g))&&setTimeout(function(){!f._data(a,e)&&!f._data(a,g)&&(f.removeData(a,d,!0),h.fire())},0)}function m(a){for(var b in a){if(b==="data"&&f.isEmptyObject(a[b]))continue;if(b!=="toJSON")return!1}return!0}function l(a,c,d){if(d===b&&a.nodeType===1){var e="data-"+c.replace(k,"-$1").toLowerCase();d=a.getAttribute(e);if(typeof d=="string"){try{d=d==="true"?!0:d==="false"?!1:d==="null"?null:f.isNumeric(d)?+d:j.test(d)?f.parseJSON(d):d}catch(g){}f.data(a,c,d)}else d=b}return d}function h(a){var b=g[a]={},c,d;a=a.split(/\s+/);for(c=0,d=a.length;c<d;c++)b[a[c]]=!0;return b}var c=a.document,d=a.navigator,e=a.location,f=function(){function J(){if(!e.isReady){try{c.documentElement.doScroll("left")}catch(a){setTimeout(J,1);return}e.ready()}}var e=function(a,b){return new e.fn.init(a,b,h)},f=a.jQuery,g=a.$,h,i=/^(?:[^#<]*(<[\w\W]+>)[^>]*$|#([\w\-]*)$)/,j=/\S/,k=/^\s+/,l=/\s+$/,m=/^<(\w+)\s*\/?>(?:<\/\1>)?$/,n=/^[\],:{}\s]*$/,o=/\\(?:["\\\/bfnrt]|u[0-9a-fA-F]{4})/g,p=/"[^"\\\n\r]*"|true|false|null|-?\d+(?:\.\d*)?(?:[eE][+\-]?\d+)?/g,q=/(?:^|:|,)(?:\s*\[)+/g,r=/(webkit)[ \/]([\w.]+)/,s=/(opera)(?:.*version)?[ \/]([\w.]+)/,t=/(msie) ([\w.]+)/,u=/(mozilla)(?:.*? rv:([\w.]+))?/,v=/-([a-z]|[0-9])/ig,w=/^-ms-/,x=function(a,b){return(b+"").toUpperCase()},y=d.userAgent,z,A,B,C=Object.prototype.toString,D=Object.prototype.hasOwnProperty,E=Array.prototype.push,F=Array.prototype.slice,G=String.prototype.trim,H=Array.prototype.indexOf,I={};e.fn=e.prototype={constructor:e,init:function(a,d,f){var g,h,j,k;if(!a)return this;if(a.nodeType){this.context=this[0]=a,this.length=1;return this}if(a==="body"&&!d&&c.body){this.context=c,this[0]=c.body,this.selector=a,this.length=1;return this}if(typeof a=="string"){a.charAt(0)!=="<"||a.charAt(a.length-1)!==">"||a.length<3?g=i.exec(a):g=[null,a,null];if(g&&(g[1]||!d)){if(g[1]){d=d instanceof e?d[0]:d,k=d?d.ownerDocument||d:c,j=m.exec(a),j?e.isPlainObject(d)?(a=[c.createElement(j[1])],e.fn.attr.call(a,d,!0)):a=[k.createElement(j[1])]:(j=e.buildFragment([g[1]],[k]),a=(j.cacheable?e.clone(j.fragment):j.fragment).childNodes);return e.merge(this,a)}h=c.getElementById(g[2]);if(h&&h.parentNode){if(h.id!==g[2])return f.find(a);this.length=1,this[0]=h}this.context=c,this.selector=a;return this}return!d||d.jquery?(d||f).find(a):this.constructor(d).find(a)}if(e.isFunction(a))return f.ready(a);a.selector!==b&&(this.selector=a.selector,this.context=a.context);return e.makeArray(a,this)},selector:"",jquery:"1.7.2",length:0,size:function(){return this.length},toArray:function(){return F.call(this,0)},get:function(a){return a==null?this.toArray():a<0?this[this.length+a]:this[a]},pushStack:function(a,b,c){var d=this.constructor();e.isArray(a)?E.apply(d,a):e.merge(d,a),d.prevObject=this,d.context=this.context,b==="find"?d.selector=this.selector+(this.selector?" ":"")+c:b&&(d.selector=this.selector+"."+b+"("+c+")");return d},each:function(a,b){return e.each(this,a,b)},ready:function(a){e.bindReady(),A.add(a);return this},eq:function(a){a=+a;return a===-1?this.slice(a):this.slice(a,a+1)},first:function(){return this.eq(0)},last:function(){return this.eq(-1)},slice:function(){return this.pushStack(F.apply(this,arguments),"slice",F.call(arguments).join(","))},map:function(a){return this.pushStack(e.map(this,function(b,c){return a.call(b,c,b)}))},end:function(){return this.prevObject||this.constructor(null)},push:E,sort:[].sort,splice:[].splice},e.fn.init.prototype=e.fn,e.extend=e.fn.extend=function(){var a,c,d,f,g,h,i=arguments[0]||{},j=1,k=arguments.length,l=!1;typeof i=="boolean"&&(l=i,i=arguments[1]||{},j=2),typeof i!="object"&&!e.isFunction(i)&&(i={}),k===j&&(i=this,--j);for(;j<k;j++)if((a=arguments[j])!=null)for(c in a){d=i[c],f=a[c];if(i===f)continue;l&&f&&(e.isPlainObject(f)||(g=e.isArray(f)))?(g?(g=!1,h=d&&e.isArray(d)?d:[]):h=d&&e.isPlainObject(d)?d:{},i[c]=e.extend(l,h,f)):f!==b&&(i[c]=f)}return i},e.extend({noConflict:function(b){a.$===e&&(a.$=g),b&&a.jQuery===e&&(a.jQuery=f);return e},isReady:!1,readyWait:1,holdReady:function(a){a?e.readyWait++:e.ready(!0)},ready:function(a){if(a===!0&&!--e.readyWait||a!==!0&&!e.isReady){if(!c.body)return setTimeout(e.ready,1);e.isReady=!0;if(a!==!0&&--e.readyWait>0)return;A.fireWith(c,[e]),e.fn.trigger&&e(c).trigger("ready").off("ready")}},bindReady:function(){if(!A){A=e.Callbacks("once memory");if(c.readyState==="complete")return setTimeout(e.ready,1);if(c.addEventListener)c.addEventListener("DOMContentLoaded",B,!1),a.addEventListener("load",e.ready,!1);else if(c.attachEvent){c.attachEvent("onreadystatechange",B),a.attachEvent("onload",e.ready);var b=!1;try{b=a.frameElement==null}catch(d){}c.documentElement.doScroll&&b&&J()}}},isFunction:function(a){return e.type(a)==="function"},isArray:Array.isArray||function(a){return e.type(a)==="array"},isWindow:function(a){return a!=null&&a==a.window},isNumeric:function(a){return!isNaN(parseFloat(a))&&isFinite(a)},type:function(a){return a==null?String(a):I[C.call(a)]||"object"},isPlainObject:function(a){if(!a||e.type(a)!=="object"||a.nodeType||e.isWindow(a))return!1;try{if(a.constructor&&!D.call(a,"constructor")&&!D.call(a.constructor.prototype,"isPrototypeOf"))return!1}catch(c){return!1}var d;for(d in a);return d===b||D.call(a,d)},isEmptyObject:function(a){for(var b in a)return!1;return!0},error:function(a){throw new Error(a)},parseJSON:function(b){if(typeof b!="string"||!b)return null;b=e.trim(b);if(a.JSON&&a.JSON.parse)return a.JSON.parse(b);if(n.test(b.replace(o,"@").replace(p,"]").replace(q,"")))return(new Function("return "+b))();e.error("Invalid JSON: "+b)},parseXML:function(c){if(typeof c!="string"||!c)return null;var d,f;try{a.DOMParser?(f=new DOMParser,d=f.parseFromString(c,"text/xml")):(d=new ActiveXObject("Microsoft.XMLDOM"),d.async="false",d.loadXML(c))}catch(g){d=b}(!d||!d.documentElement||d.getElementsByTagName("parsererror").length)&&e.error("Invalid XML: "+c);return d},noop:function(){},globalEval:function(b){b&&j.test(b)&&(a.execScript||function(b){a.eval.call(a,b)})(b)},camelCase:function(a){return a.replace(w,"ms-").replace(v,x)},nodeName:function(a,b){return a.nodeName&&a.nodeName.toUpperCase()===b.toUpperCase()},each:function(a,c,d){var f,g=0,h=a.length,i=h===b||e.isFunction(a);if(d){if(i){for(f in a)if(c.apply(a[f],d)===!1)break}else for(;g<h;)if(c.apply(a[g++],d)===!1)break}else if(i){for(f in a)if(c.call(a[f],f,a[f])===!1)break}else for(;g<h;)if(c.call(a[g],g,a[g++])===!1)break;return a},trim:G?function(a){return a==null?"":G.call(a)}:function(a){return a==null?"":(a+"").replace(k,"").replace(l,"")},makeArray:function(a,b){var c=b||[];if(a!=null){var d=e.type(a);a.length==null||d==="string"||d==="function"||d==="regexp"||e.isWindow(a)?E.call(c,a):e.merge(c,a)}return c},inArray:function(a,b,c){var d;if(b){if(H)return H.call(b,a,c);d=b.length,c=c?c<0?Math.max(0,d+c):c:0;for(;c<d;c++)if(c in b&&b[c]===a)return c}return-1},merge:function(a,c){var d=a.length,e=0;if(typeof c.length=="number")for(var f=c.length;e<f;e++)a[d++]=c[e];else while(c[e]!==b)a[d++]=c[e++];a.length=d;return a},grep:function(a,b,c){var d=[],e;c=!!c;for(var f=0,g=a.length;f<g;f++)e=!!b(a[f],f),c!==e&&d.push(a[f]);return d},map:function(a,c,d){var f,g,h=[],i=0,j=a.length,k=a instanceof e||j!==b&&typeof j=="number"&&(j>0&&a[0]&&a[j-1]||j===0||e.isArray(a));if(k)for(;i<j;i++)f=c(a[i],i,d),f!=null&&(h[h.length]=f);else for(g in a)f=c(a[g],g,d),f!=null&&(h[h.length]=f);return h.concat.apply([],h)},guid:1,proxy:function(a,c){if(typeof c=="string"){var d=a[c];c=a,a=d}if(!e.isFunction(a))return b;var f=F.call(arguments,2),g=function(){return a.apply(c,f.concat(F.call(arguments)))};g.guid=a.guid=a.guid||g.guid||e.guid++;return g},access:function(a,c,d,f,g,h,i){var j,k=d==null,l=0,m=a.length;if(d&&typeof d=="object"){for(l in d)e.access(a,c,l,d[l],1,h,f);g=1}else if(f!==b){j=i===b&&e.isFunction(f),k&&(j?(j=c,c=function(a,b,c){return j.call(e(a),c)}):(c.call(a,f),c=null));if(c)for(;l<m;l++)c(a[l],d,j?f.call(a[l],l,c(a[l],d)):f,i);g=1}return g?a:k?c.call(a):m?c(a[0],d):h},now:function(){return(new Date).getTime()},uaMatch:function(a){a=a.toLowerCase();var b=r.exec(a)||s.exec(a)||t.exec(a)||a.indexOf("compatible")<0&&u.exec(a)||[];return{browser:b[1]||"",version:b[2]||"0"}},sub:function(){function a(b,c){return new a.fn.init(b,c)}e.extend(!0,a,this),a.superclass=this,a.fn=a.prototype=this(),a.fn.constructor=a,a.sub=this.sub,a.fn.init=function(d,f){f&&f instanceof e&&!(f instanceof a)&&(f=a(f));return e.fn.init.call(this,d,f,b)},a.fn.init.prototype=a.fn;var b=a(c);return a},browser:{}}),e.each("Boolean Number String Function Array Date RegExp Object".split(" "),function(a,b){I["[object "+b+"]"]=b.toLowerCase()}),z=e.uaMatch(y),z.browser&&(e.browser[z.browser]=!0,e.browser.version=z.version),e.browser.webkit&&(e.browser.safari=!0),j.test(" ")&&(k=/^[\s\xA0]+/,l=/[\s\xA0]+$/),h=e(c),c.addEventListener?B=function(){c.removeEventListener("DOMContentLoaded",B,!1),e.ready()}:c.attachEvent&&(B=function(){c.readyState==="complete"&&(c.detachEvent("onreadystatechange",B),e.ready())});return e}(),g={};f.Callbacks=function(a){a=a?g[a]||h(a):{};var c=[],d=[],e,i,j,k,l,m,n=function(b){var d,e,g,h,i;for(d=0,e=b.length;d<e;d++)g=b[d],h=f.type(g),h==="array"?n(g):h==="function"&&(!a.unique||!p.has(g))&&c.push(g)},o=function(b,f){f=f||[],e=!a.memory||[b,f],i=!0,j=!0,m=k||0,k=0,l=c.length;for(;c&&m<l;m++)if(c[m].apply(b,f)===!1&&a.stopOnFalse){e=!0;break}j=!1,c&&(a.once?e===!0?p.disable():c=[]:d&&d.length&&(e=d.shift(),p.fireWith(e[0],e[1])))},p={add:function(){if(c){var a=c.length;n(arguments),j?l=c.length:e&&e!==!0&&(k=a,o(e[0],e[1]))}return this},remove:function(){if(c){var b=arguments,d=0,e=b.length;for(;d<e;d++)for(var f=0;f<c.length;f++)if(b[d]===c[f]){j&&f<=l&&(l--,f<=m&&m--),c.splice(f--,1);if(a.unique)break}}return this},has:function(a){if(c){var b=0,d=c.length;for(;b<d;b++)if(a===c[b])return!0}return!1},empty:function(){c=[];return this},disable:function(){c=d=e=b;return this},disabled:function(){return!c},lock:function(){d=b,(!e||e===!0)&&p.disable();return this},locked:function(){return!d},fireWith:function(b,c){d&&(j?a.once||d.push([b,c]):(!a.once||!e)&&o(b,c));return this},fire:function(){p.fireWith(this,arguments);return this},fired:function(){return!!i}};return p};var i=[].slice;f.extend({Deferred:function(a){var b=f.Callbacks("once memory"),c=f.Callbacks("once memory"),d=f.Callbacks("memory"),e="pending",g={resolve:b,reject:c,notify:d},h={done:b.add,fail:c.add,progress:d.add,state:function(){return e},isResolved:b.fired,isRejected:c.fired,then:function(a,b,c){i.done(a).fail(b).progress(c);return this},always:function(){i.done.apply(i,arguments).fail.apply(i,arguments);return this},pipe:function(a,b,c){return f.Deferred(function(d){f.each({done:[a,"resolve"],fail:[b,"reject"],progress:[c,"notify"]},function(a,b){var c=b[0],e=b[1],g;f.isFunction(c)?i[a](function(){g=c.apply(this,arguments),g&&f.isFunction(g.promise)?g.promise().then(d.resolve,d.reject,d.notify):d[e+"With"](this===i?d:this,[g])}):i[a](d[e])})}).promise()},promise:function(a){if(a==null)a=h;else for(var b in h)a[b]=h[b];return a}},i=h.promise({}),j;for(j in g)i[j]=g[j].fire,i[j+"With"]=g[j].fireWith;i.done(function(){e="resolved"},c.disable,d.lock).fail(function(){e="rejected"},b.disable,d.lock),a&&a.call(i,i);return i},when:function(a){function m(a){return function(b){e[a]=arguments.length>1?i.call(arguments,0):b,j.notifyWith(k,e)}}function l(a){return function(c){b[a]=arguments.length>1?i.call(arguments,0):c,--g||j.resolveWith(j,b)}}var b=i.call(arguments,0),c=0,d=b.length,e=Array(d),g=d,h=d,j=d<=1&&a&&f.isFunction(a.promise)?a:f.Deferred(),k=j.promise();if(d>1){for(;c<d;c++)b[c]&&b[c].promise&&f.isFunction(b[c].promise)?b[c].promise().then(l(c),j.reject,m(c)):--g;g||j.resolveWith(j,b)}else j!==a&&j.resolveWith(j,d?[a]:[]);return k}}),f.support=function(){var b,d,e,g,h,i,j,k,l,m,n,o,p=c.createElement("div"),q=c.documentElement;p.setAttribute("className","t"),p.innerHTML="   <link/><table></table><a href='/a' style='top:1px;float:left;opacity:.55;'>a</a><input type='checkbox'/>",d=p.getElementsByTagName("*"),e=p.getElementsByTagName("a")[0];if(!d||!d.length||!e)return{};g=c.createElement("select"),h=g.appendChild(c.createElement("option")),i=p.getElementsByTagName("input")[0],b={leadingWhitespace:p.firstChild.nodeType===3,tbody:!p.getElementsByTagName("tbody").length,htmlSerialize:!!p.getElementsByTagName("link").length,style:/top/.test(e.getAttribute("style")),hrefNormalized:e.getAttribute("href")==="/a",opacity:/^0.55/.test(e.style.opacity),cssFloat:!!e.style.cssFloat,checkOn:i.value==="on",optSelected:h.selected,getSetAttribute:p.className!=="t",enctype:!!c.createElement("form").enctype,html5Clone:c.createElement("nav").cloneNode(!0).outerHTML!=="<:nav></:nav>",submitBubbles:!0,changeBubbles:!0,focusinBubbles:!1,deleteExpando:!0,noCloneEvent:!0,inlineBlockNeedsLayout:!1,shrinkWrapBlocks:!1,reliableMarginRight:!0,pixelMargin:!0},f.boxModel=b.boxModel=c.compatMode==="CSS1Compat",i.checked=!0,b.noCloneChecked=i.cloneNode(!0).checked,g.disabled=!0,b.optDisabled=!h.disabled;try{delete p.test}catch(r){b.deleteExpando=!1}!p.addEventListener&&p.attachEvent&&p.fireEvent&&(p.attachEvent("onclick",function(){b.noCloneEvent=!1}),p.cloneNode(!0).fireEvent("onclick")),i=c.createElement("input"),i.value="t",i.setAttribute("type","radio"),b.radioValue=i.value==="t",i.setAttribute("checked","checked"),i.setAttribute("name","t"),p.appendChild(i),j=c.createDocumentFragment(),j.appendChild(p.lastChild),b.checkClone=j.cloneNode(!0).cloneNode(!0).lastChild.checked,b.appendChecked=i.checked,j.removeChild(i),j.appendChild(p);if(p.attachEvent)for(n in{submit:1,change:1,focusin:1})m="on"+n,o=m in p,o||(p.setAttribute(m,"return;"),o=typeof p[m]=="function"),b[n+"Bubbles"]=o;j.removeChild(p),j=g=h=p=i=null,f(function(){var d,e,g,h,i,j,l,m,n,q,r,s,t,u=c.getElementsByTagName("body")[0];!u||(m=1,t="padding:0;margin:0;border:",r="position:absolute;top:0;left:0;width:1px;height:1px;",s=t+"0;visibility:hidden;",n="style='"+r+t+"5px solid #000;",q="<div "+n+"display:block;'><div style='"+t+"0;display:block;overflow:hidden;'></div></div>"+"<table "+n+"' cellpadding='0' cellspacing='0'>"+"<tr><td></td></tr></table>",d=c.createElement("div"),d.style.cssText=s+"width:0;height:0;position:static;top:0;margin-top:"+m+"px",u.insertBefore(d,u.firstChild),p=c.createElement("div"),d.appendChild(p),p.innerHTML="<table><tr><td style='"+t+"0;display:none'></td><td>t</td></tr></table>",k=p.getElementsByTagName("td"),o=k[0].offsetHeight===0,k[0].style.display="",k[1].style.display="none",b.reliableHiddenOffsets=o&&k[0].offsetHeight===0,a.getComputedStyle&&(p.innerHTML="",l=c.createElement("div"),l.style.width="0",l.style.marginRight="0",p.style.width="2px",p.appendChild(l),b.reliableMarginRight=(parseInt((a.getComputedStyle(l,null)||{marginRight:0}).marginRight,10)||0)===0),typeof p.style.zoom!="undefined"&&(p.innerHTML="",p.style.width=p.style.padding="1px",p.style.border=0,p.style.overflow="hidden",p.style.display="inline",p.style.zoom=1,b.inlineBlockNeedsLayout=p.offsetWidth===3,p.style.display="block",p.style.overflow="visible",p.innerHTML="<div style='width:5px;'></div>",b.shrinkWrapBlocks=p.offsetWidth!==3),p.style.cssText=r+s,p.innerHTML=q,e=p.firstChild,g=e.firstChild,i=e.nextSibling.firstChild.firstChild,j={doesNotAddBorder:g.offsetTop!==5,doesAddBorderForTableAndCells:i.offsetTop===5},g.style.position="fixed",g.style.top="20px",j.fixedPosition=g.offsetTop===20||g.offsetTop===15,g.style.position=g.style.top="",e.style.overflow="hidden",e.style.position="relative",j.subtractsBorderForOverflowNotVisible=g.offsetTop===-5,j.doesNotIncludeMarginInBodyOffset=u.offsetTop!==m,a.getComputedStyle&&(p.style.marginTop="1%",b.pixelMargin=(a.getComputedStyle(p,null)||{marginTop:0}).marginTop!=="1%"),typeof d.style.zoom!="undefined"&&(d.style.zoom=1),u.removeChild(d),l=p=d=null,f.extend(b,j))});return b}();var j=/^(?:\{.*\}|\[.*\])$/,k=/([A-Z])/g;f.extend({cache:{},uuid:0,expando:"jQuery"+(f.fn.jquery+Math.random()).replace(/\D/g,""),noData:{embed:!0,object:"clsid:D27CDB6E-AE6D-11cf-96B8-444553540000",applet:!0},hasData:function(a){a=a.nodeType?f.cache[a[f.expando]]:a[f.expando];return!!a&&!m(a)},data:function(a,c,d,e){if(!!f.acceptData(a)){var g,h,i,j=f.expando,k=typeof c=="string",l=a.nodeType,m=l?f.cache:a,n=l?a[j]:a[j]&&j,o=c==="events";if((!n||!m[n]||!o&&!e&&!m[n].data)&&k&&d===b)return;n||(l?a[j]=n=++f.uuid:n=j),m[n]||(m[n]={},l||(m[n].toJSON=f.noop));if(typeof c=="object"||typeof c=="function")e?m[n]=f.extend(m[n],c):m[n].data=f.extend(m[n].data,c);g=h=m[n],e||(h.data||(h.data={}),h=h.data),d!==b&&(h[f.camelCase(c)]=d);if(o&&!h[c])return g.events;k?(i=h[c],i==null&&(i=h[f.camelCase(c)])):i=h;return i}},removeData:function(a,b,c){if(!!f.acceptData(a)){var d,e,g,h=f.expando,i=a.nodeType,j=i?f.cache:a,k=i?a[h]:h;if(!j[k])return;if(b){d=c?j[k]:j[k].data;if(d){f.isArray(b)||(b in d?b=[b]:(b=f.camelCase(b),b in d?b=[b]:b=b.split(" ")));for(e=0,g=b.length;e<g;e++)delete d[b[e]];if(!(c?m:f.isEmptyObject)(d))return}}if(!c){delete j[k].data;if(!m(j[k]))return}f.support.deleteExpando||!j.setInterval?delete j[k]:j[k]=null,i&&(f.support.deleteExpando?delete a[h]:a.removeAttribute?a.removeAttribute(h):a[h]=null)}},_data:function(a,b,c){return f.data(a,b,c,!0)},acceptData:function(a){if(a.nodeName){var b=f.noData[a.nodeName.toLowerCase()];if(b)return b!==!0&&a.getAttribute("classid")===b}return!0}}),f.fn.extend({data:function(a,c){var d,e,g,h,i,j=this[0],k=0,m=null;if(a===b){if(this.length){m=f.data(j);if(j.nodeType===1&&!f._data(j,"parsedAttrs")){g=j.attributes;for(i=g.length;k<i;k++)h=g[k].name,h.indexOf("data-")===0&&(h=f.camelCase(h.substring(5)),l(j,h,m[h]));f._data(j,"parsedAttrs",!0)}}return m}if(typeof a=="object")return this.each(function(){f.data(this,a)});d=a.split(".",2),d[1]=d[1]?"."+d[1]:"",e=d[1]+"!";return f.access(this,function(c){if(c===b){m=this.triggerHandler("getData"+e,[d[0]]),m===b&&j&&(m=f.data(j,a),m=l(j,a,m));return m===b&&d[1]?this.data(d[0]):m}d[1]=c,this.each(function(){var b=f(this);b.triggerHandler("setData"+e,d),f.data(this,a,c),b.triggerHandler("changeData"+e,d)})},null,c,arguments.length>1,null,!1)},removeData:function(a){return this.each(function(){f.removeData(this,a)})}}),f.extend({_mark:function(a,b){a&&(b=(b||"fx")+"mark",f._data(a,b,(f._data(a,b)||0)+1))},_unmark:function(a,b,c){a!==!0&&(c=b,b=a,a=!1);if(b){c=c||"fx";var d=c+"mark",e=a?0:(f._data(b,d)||1)-1;e?f._data(b,d,e):(f.removeData(b,d,!0),n(b,c,"mark"))}},queue:function(a,b,c){var d;if(a){b=(b||"fx")+"queue",d=f._data(a,b),c&&(!d||f.isArray(c)?d=f._data(a,b,f.makeArray(c)):d.push(c));return d||[]}},dequeue:function(a,b){b=b||"fx";var c=f.queue(a,b),d=c.shift(),e={};d==="inprogress"&&(d=c.shift()),d&&(b==="fx"&&c.unshift("inprogress"),f._data(a,b+".run",e),d.call(a,function(){f.dequeue(a,b)},e)),c.length||(f.removeData(a,b+"queue "+b+".run",!0),n(a,b,"queue"))}}),f.fn.extend({queue:function(a,c){var d=2;typeof a!="string"&&(c=a,a="fx",d--);if(arguments.length<d)return f.queue(this[0],a);return c===b?this:this.each(function(){var b=f.queue(this,a,c);a==="fx"&&b[0]!=="inprogress"&&f.dequeue(this,a)})},dequeue:function(a){return this.each(function(){f.dequeue(this,a)})},delay:function(a,b){a=f.fx?f.fx.speeds[a]||a:a,b=b||"fx";return this.queue(b,function(b,c){var d=setTimeout(b,a);c.stop=function(){clearTimeout(d)}})},clearQueue:function(a){return this.queue(a||"fx",[])},promise:function(a,c){function m(){--h||d.resolveWith(e,[e])}typeof a!="string"&&(c=a,a=b),a=a||"fx";var d=f.Deferred(),e=this,g=e.length,h=1,i=a+"defer",j=a+"queue",k=a+"mark",l;while(g--)if(l=f.data(e[g],i,b,!0)||(f.data(e[g],j,b,!0)||f.data(e[g],k,b,!0))&&f.data(e[g],i,f.Callbacks("once memory"),!0))h++,l.add(m);m();return d.promise(c)}});var o=/[\n\t\r]/g,p=/\s+/,q=/\r/g,r=/^(?:button|input)$/i,s=/^(?:button|input|object|select|textarea)$/i,t=/^a(?:rea)?$/i,u=/^(?:autofocus|autoplay|async|checked|controls|defer|disabled|hidden|loop|multiple|open|readonly|required|scoped|selected)$/i,v=f.support.getSetAttribute,w,x,y;f.fn.extend({attr:function(a,b){return f.access(this,f.attr,a,b,arguments.length>1)},removeAttr:function(a){return this.each(function(){f.removeAttr(this,a)})},prop:function(a,b){return f.access(this,f.prop,a,b,arguments.length>1)},removeProp:function(a){a=f.propFix[a]||a;return this.each(function(){try{this[a]=b,delete this[a]}catch(c){}})},addClass:function(a){var b,c,d,e,g,h,i;if(f.isFunction(a))return this.each(function(b){f(this).addClass(a.call(this,b,this.className))});if(a&&typeof a=="string"){b=a.split(p);for(c=0,d=this.length;c<d;c++){e=this[c];if(e.nodeType===1)if(!e.className&&b.length===1)e.className=a;else{g=" "+e.className+" ";for(h=0,i=b.length;h<i;h++)~g.indexOf(" "+b[h]+" ")||(g+=b[h]+" ");e.className=f.trim(g)}}}return this},removeClass:function(a){var c,d,e,g,h,i,j;if(f.isFunction(a))return this.each(function(b){f(this).removeClass(a.call(this,b,this.className))});if(a&&typeof a=="string"||a===b){c=(a||"").split(p);for(d=0,e=this.length;d<e;d++){g=this[d];if(g.nodeType===1&&g.className)if(a){h=(" "+g.className+" ").replace(o," ");for(i=0,j=c.length;i<j;i++)h=h.replace(" "+c[i]+" "," ");g.className=f.trim(h)}else g.className=""}}return this},toggleClass:function(a,b){var c=typeof a,d=typeof b=="boolean";if(f.isFunction(a))return this.each(function(c){f(this).toggleClass(a.call(this,c,this.className,b),b)});return this.each(function(){if(c==="string"){var e,g=0,h=f(this),i=b,j=a.split(p);while(e=j[g++])i=d?i:!h.hasClass(e),h[i?"addClass":"removeClass"](e)}else if(c==="undefined"||c==="boolean")this.className&&f._data(this,"__className__",this.className),this.className=this.className||a===!1?"":f._data(this,"__className__")||""})},hasClass:function(a){var b=" "+a+" ",c=0,d=this.length;for(;c<d;c++)if(this[c].nodeType===1&&(" "+this[c].className+" ").replace(o," ").indexOf(b)>-1)return!0;return!1},val:function(a){var c,d,e,g=this[0];{if(!!arguments.length){e=f.isFunction(a);return this.each(function(d){var g=f(this),h;if(this.nodeType===1){e?h=a.call(this,d,g.val()):h=a,h==null?h="":typeof h=="number"?h+="":f.isArray(h)&&(h=f.map(h,function(a){return a==null?"":a+""})),c=f.valHooks[this.type]||f.valHooks[this.nodeName.toLowerCase()];if(!c||!("set"in c)||c.set(this,h,"value")===b)this.value=h}})}if(g){c=f.valHooks[g.type]||f.valHooks[g.nodeName.toLowerCase()];if(c&&"get"in c&&(d=c.get(g,"value"))!==b)return d;d=g.value;return typeof d=="string"?d.replace(q,""):d==null?"":d}}}}),f.extend({valHooks:{option:{get:function(a){var b=a.attributes.value;return!b||b.specified?a.value:a.text}},select:{get:function(a){var b,c,d,e,g=a.selectedIndex,h=[],i=a.options,j=a.type==="select-one";if(g<0)return null;c=j?g:0,d=j?g+1:i.length;for(;c<d;c++){e=i[c];if(e.selected&&(f.support.optDisabled?!e.disabled:e.getAttribute("disabled")===null)&&(!e.parentNode.disabled||!f.nodeName(e.parentNode,"optgroup"))){b=f(e).val();if(j)return b;h.push(b)}}if(j&&!h.length&&i.length)return f(i[g]).val();return h},set:function(a,b){var c=f.makeArray(b);f(a).find("option").each(function(){this.selected=f.inArray(f(this).val(),c)>=0}),c.length||(a.selectedIndex=-1);return c}}},attrFn:{val:!0,css:!0,html:!0,text:!0,data:!0,width:!0,height:!0,offset:!0},attr:function(a,c,d,e){var g,h,i,j=a.nodeType;if(!!a&&j!==3&&j!==8&&j!==2){if(e&&c in f.attrFn)return f(a)[c](d);if(typeof a.getAttribute=="undefined")return f.prop(a,c,d);i=j!==1||!f.isXMLDoc(a),i&&(c=c.toLowerCase(),h=f.attrHooks[c]||(u.test(c)?x:w));if(d!==b){if(d===null){f.removeAttr(a,c);return}if(h&&"set"in h&&i&&(g=h.set(a,d,c))!==b)return g;a.setAttribute(c,""+d);return d}if(h&&"get"in h&&i&&(g=h.get(a,c))!==null)return g;g=a.getAttribute(c);return g===null?b:g}},removeAttr:function(a,b){var c,d,e,g,h,i=0;if(b&&a.nodeType===1){d=b.toLowerCase().split(p),g=d.length;for(;i<g;i++)e=d[i],e&&(c=f.propFix[e]||e,h=u.test(e),h||f.attr(a,e,""),a.removeAttribute(v?e:c),h&&c in a&&(a[c]=!1))}},attrHooks:{type:{set:function(a,b){if(r.test(a.nodeName)&&a.parentNode)f.error("type property can't be changed");else if(!f.support.radioValue&&b==="radio"&&f.nodeName(a,"input")){var c=a.value;a.setAttribute("type",b),c&&(a.value=c);return b}}},value:{get:function(a,b){if(w&&f.nodeName(a,"button"))return w.get(a,b);return b in a?a.value:null},set:function(a,b,c){if(w&&f.nodeName(a,"button"))return w.set(a,b,c);a.value=b}}},propFix:{tabindex:"tabIndex",readonly:"readOnly","for":"htmlFor","class":"className",maxlength:"maxLength",cellspacing:"cellSpacing",cellpadding:"cellPadding",rowspan:"rowSpan",colspan:"colSpan",usemap:"useMap",frameborder:"frameBorder",contenteditable:"contentEditable"},prop:function(a,c,d){var e,g,h,i=a.nodeType;if(!!a&&i!==3&&i!==8&&i!==2){h=i!==1||!f.isXMLDoc(a),h&&(c=f.propFix[c]||c,g=f.propHooks[c]);return d!==b?g&&"set"in g&&(e=g.set(a,d,c))!==b?e:a[c]=d:g&&"get"in g&&(e=g.get(a,c))!==null?e:a[c]}},propHooks:{tabIndex:{get:function(a){var c=a.getAttributeNode("tabindex");return c&&c.specified?parseInt(c.value,10):s.test(a.nodeName)||t.test(a.nodeName)&&a.href?0:b}}}}),f.attrHooks.tabindex=f.propHooks.tabIndex,x={get:function(a,c){var d,e=f.prop(a,c);return e===!0||typeof e!="boolean"&&(d=a.getAttributeNode(c))&&d.nodeValue!==!1?c.toLowerCase():b},set:function(a,b,c){var d;b===!1?f.removeAttr(a,c):(d=f.propFix[c]||c,d in a&&(a[d]=!0),a.setAttribute(c,c.toLowerCase()));return c}},v||(y={name:!0,id:!0,coords:!0},w=f.valHooks.button={get:function(a,c){var d;d=a.getAttributeNode(c);return d&&(y[c]?d.nodeValue!=="":d.specified)?d.nodeValue:b},set:function(a,b,d){var e=a.getAttributeNode(d);e||(e=c.createAttribute(d),a.setAttributeNode(e));return e.nodeValue=b+""}},f.attrHooks.tabindex.set=w.set,f.each(["width","height"],function(a,b){f.attrHooks[b]=f.extend(f.attrHooks[b],{set:function(a,c){if(c===""){a.setAttribute(b,"auto");return c}}})}),f.attrHooks.contenteditable={get:w.get,set:function(a,b,c){b===""&&(b="false"),w.set(a,b,c)}}),f.support.hrefNormalized||f.each(["href","src","width","height"],function(a,c){f.attrHooks[c]=f.extend(f.attrHooks[c],{get:function(a){var d=a.getAttribute(c,2);return d===null?b:d}})}),f.support.style||(f.attrHooks.style={get:function(a){return a.style.cssText.toLowerCase()||b},set:function(a,b){return a.style.cssText=""+b}}),f.support.optSelected||(f.propHooks.selected=f.extend(f.propHooks.selected,{get:function(a){var b=a.parentNode;b&&(b.selectedIndex,b.parentNode&&b.parentNode.selectedIndex);return null}})),f.support.enctype||(f.propFix.enctype="encoding"),f.support.checkOn||f.each(["radio","checkbox"],function(){f.valHooks[this]={get:function(a){return a.getAttribute("value")===null?"on":a.value}}}),f.each(["radio","checkbox"],function(){f.valHooks[this]=f.extend(f.valHooks[this],{set:function(a,b){if(f.isArray(b))return a.checked=f.inArray(f(a).val(),b)>=0}})});var z=/^(?:textarea|input|select)$/i,A=/^([^\.]*)?(?:\.(.+))?$/,B=/(?:^|\s)hover(\.\S+)?\b/,C=/^key/,D=/^(?:mouse|contextmenu)|click/,E=/^(?:focusinfocus|focusoutblur)$/,F=/^(\w*)(?:#([\w\-]+))?(?:\.([\w\-]+))?$/,G=function(
 a){var b=F.exec(a);b&&(b[1]=(b[1]||"").toLowerCase(),b[3]=b[3]&&new RegExp("(?:^|\\s)"+b[3]+"(?:\\s|$)"));return b},H=function(a,b){var c=a.attributes||{};return(!b[1]||a.nodeName.toLowerCase()===b[1])&&(!b[2]||(c.id||{}).value===b[2])&&(!b[3]||b[3].test((c["class"]||{}).value))},I=function(a){return f.event.special.hover?a:a.replace(B,"mouseenter$1 mouseleave$1")};f.event={add:function(a,c,d,e,g){var h,i,j,k,l,m,n,o,p,q,r,s;if(!(a.nodeType===3||a.nodeType===8||!c||!d||!(h=f._data(a)))){d.handler&&(p=d,d=p.handler,g=p.selector),d.guid||(d.guid=f.guid++),j=h.events,j||(h.events=j={}),i=h.handle,i||(h.handle=i=function(a){return typeof f!="undefined"&&(!a||f.event.triggered!==a.type)?f.event.dispatch.apply(i.elem,arguments):b},i.elem=a),c=f.trim(I(c)).split(" ");for(k=0;k<c.length;k++){l=A.exec(c[k])||[],m=l[1],n=(l[2]||"").split(".").sort(),s=f.event.special[m]||{},m=(g?s.delegateType:s.bindType)||m,s=f.event.special[m]||{},o=f.extend({type:m,origType:l[1],data:e,handler:d,guid:d.guid,selector:g,quick:g&&G(g),namespace:n.join(".")},p),r=j[m];if(!r){r=j[m]=[],r.delegateCount=0;if(!s.setup||s.setup.call(a,e,n,i)===!1)a.addEventListener?a.addEventListener(m,i,!1):a.attachEvent&&a.attachEvent("on"+m,i)}s.add&&(s.add.call(a,o),o.handler.guid||(o.handler.guid=d.guid)),g?r.splice(r.delegateCount++,0,o):r.push(o),f.event.global[m]=!0}a=null}},global:{},remove:function(a,b,c,d,e){var g=f.hasData(a)&&f._data(a),h,i,j,k,l,m,n,o,p,q,r,s;if(!!g&&!!(o=g.events)){b=f.trim(I(b||"")).split(" ");for(h=0;h<b.length;h++){i=A.exec(b[h])||[],j=k=i[1],l=i[2];if(!j){for(j in o)f.event.remove(a,j+b[h],c,d,!0);continue}p=f.event.special[j]||{},j=(d?p.delegateType:p.bindType)||j,r=o[j]||[],m=r.length,l=l?new RegExp("(^|\\.)"+l.split(".").sort().join("\\.(?:.*\\.)?")+"(\\.|$)"):null;for(n=0;n<r.length;n++)s=r[n],(e||k===s.origType)&&(!c||c.guid===s.guid)&&(!l||l.test(s.namespace))&&(!d||d===s.selector||d==="**"&&s.selector)&&(r.splice(n--,1),s.selector&&r.delegateCount--,p.remove&&p.remove.call(a,s));r.length===0&&m!==r.length&&((!p.teardown||p.teardown.call(a,l)===!1)&&f.removeEvent(a,j,g.handle),delete o[j])}f.isEmptyObject(o)&&(q=g.handle,q&&(q.elem=null),f.removeData(a,["events","handle"],!0))}},customEvent:{getData:!0,setData:!0,changeData:!0},trigger:function(c,d,e,g){if(!e||e.nodeType!==3&&e.nodeType!==8){var h=c.type||c,i=[],j,k,l,m,n,o,p,q,r,s;if(E.test(h+f.event.triggered))return;h.indexOf("!")>=0&&(h=h.slice(0,-1),k=!0),h.indexOf(".")>=0&&(i=h.split("."),h=i.shift(),i.sort());if((!e||f.event.customEvent[h])&&!f.event.global[h])return;c=typeof c=="object"?c[f.expando]?c:new f.Event(h,c):new f.Event(h),c.type=h,c.isTrigger=!0,c.exclusive=k,c.namespace=i.join("."),c.namespace_re=c.namespace?new RegExp("(^|\\.)"+i.join("\\.(?:.*\\.)?")+"(\\.|$)"):null,o=h.indexOf(":")<0?"on"+h:"";if(!e){j=f.cache;for(l in j)j[l].events&&j[l].events[h]&&f.event.trigger(c,d,j[l].handle.elem,!0);return}c.result=b,c.target||(c.target=e),d=d!=null?f.makeArray(d):[],d.unshift(c),p=f.event.special[h]||{};if(p.trigger&&p.trigger.apply(e,d)===!1)return;r=[[e,p.bindType||h]];if(!g&&!p.noBubble&&!f.isWindow(e)){s=p.delegateType||h,m=E.test(s+h)?e:e.parentNode,n=null;for(;m;m=m.parentNode)r.push([m,s]),n=m;n&&n===e.ownerDocument&&r.push([n.defaultView||n.parentWindow||a,s])}for(l=0;l<r.length&&!c.isPropagationStopped();l++)m=r[l][0],c.type=r[l][1],q=(f._data(m,"events")||{})[c.type]&&f._data(m,"handle"),q&&q.apply(m,d),q=o&&m[o],q&&f.acceptData(m)&&q.apply(m,d)===!1&&c.preventDefault();c.type=h,!g&&!c.isDefaultPrevented()&&(!p._default||p._default.apply(e.ownerDocument,d)===!1)&&(h!=="click"||!f.nodeName(e,"a"))&&f.acceptData(e)&&o&&e[h]&&(h!=="focus"&&h!=="blur"||c.target.offsetWidth!==0)&&!f.isWindow(e)&&(n=e[o],n&&(e[o]=null),f.event.triggered=h,e[h](),f.event.triggered=b,n&&(e[o]=n));return c.result}},dispatch:function(c){c=f.event.fix(c||a.event);var d=(f._data(this,"events")||{})[c.type]||[],e=d.delegateCount,g=[].slice.call(arguments,0),h=!c.exclusive&&!c.namespace,i=f.event.special[c.type]||{},j=[],k,l,m,n,o,p,q,r,s,t,u;g[0]=c,c.delegateTarget=this;if(!i.preDispatch||i.preDispatch.call(this,c)!==!1){if(e&&(!c.button||c.type!=="click")){n=f(this),n.context=this.ownerDocument||this;for(m=c.target;m!=this;m=m.parentNode||this)if(m.disabled!==!0){p={},r=[],n[0]=m;for(k=0;k<e;k++)s=d[k],t=s.selector,p[t]===b&&(p[t]=s.quick?H(m,s.quick):n.is(t)),p[t]&&r.push(s);r.length&&j.push({elem:m,matches:r})}}d.length>e&&j.push({elem:this,matches:d.slice(e)});for(k=0;k<j.length&&!c.isPropagationStopped();k++){q=j[k],c.currentTarget=q.elem;for(l=0;l<q.matches.length&&!c.isImmediatePropagationStopped();l++){s=q.matches[l];if(h||!c.namespace&&!s.namespace||c.namespace_re&&c.namespace_re.test(s.namespace))c.data=s.data,c.handleObj=s,o=((f.event.special[s.origType]||{}).handle||s.handler).apply(q.elem,g),o!==b&&(c.result=o,o===!1&&(c.preventDefault(),c.stopPropagation()))}}i.postDispatch&&i.postDispatch.call(this,c);return c.result}},props:"attrChange attrName relatedNode srcElement altKey bubbles cancelable ctrlKey currentTarget eventPhase metaKey relatedTarget shiftKey target timeStamp view which".split(" "),fixHooks:{},keyHooks:{props:"char charCode key keyCode".split(" "),filter:function(a,b){a.which==null&&(a.which=b.charCode!=null?b.charCode:b.keyCode);return a}},mouseHooks:{props:"button buttons clientX clientY fromElement offsetX offsetY pageX pageY screenX screenY toElement".split(" "),filter:function(a,d){var e,f,g,h=d.button,i=d.fromElement;a.pageX==null&&d.clientX!=null&&(e=a.target.ownerDocument||c,f=e.documentElement,g=e.body,a.pageX=d.clientX+(f&&f.scrollLeft||g&&g.scrollLeft||0)-(f&&f.clientLeft||g&&g.clientLeft||0),a.pageY=d.clientY+(f&&f.scrollTop||g&&g.scrollTop||0)-(f&&f.clientTop||g&&g.clientTop||0)),!a.relatedTarget&&i&&(a.relatedTarget=i===a.target?d.toElement:i),!a.which&&h!==b&&(a.which=h&1?1:h&2?3:h&4?2:0);return a}},fix:function(a){if(a[f.expando])return a;var d,e,g=a,h=f.event.fixHooks[a.type]||{},i=h.props?this.props.concat(h.props):this.props;a=f.Event(g);for(d=i.length;d;)e=i[--d],a[e]=g[e];a.target||(a.target=g.srcElement||c),a.target.nodeType===3&&(a.target=a.target.parentNode),a.metaKey===b&&(a.metaKey=a.ctrlKey);return h.filter?h.filter(a,g):a},special:{ready:{setup:f.bindReady},load:{noBubble:!0},focus:{delegateType:"focusin"},blur:{delegateType:"focusout"},beforeunload:{setup:function(a,b,c){f.isWindow(this)&&(this.onbeforeunload=c)},teardown:function(a,b){this.onbeforeunload===b&&(this.onbeforeunload=null)}}},simulate:function(a,b,c,d){var e=f.extend(new f.Event,c,{type:a,isSimulated:!0,originalEvent:{}});d?f.event.trigger(e,null,b):f.event.dispatch.call(b,e),e.isDefaultPrevented()&&c.preventDefault()}},f.event.handle=f.event.dispatch,f.removeEvent=c.removeEventListener?function(a,b,c){a.removeEventListener&&a.removeEventListener(b,c,!1)}:function(a,b,c){a.detachEvent&&a.detachEvent("on"+b,c)},f.Event=function(a,b){if(!(this instanceof f.Event))return new f.Event(a,b);a&&a.type?(this.originalEvent=a,this.type=a.type,this.isDefaultPrevented=a.defaultPrevented||a.returnValue===!1||a.getPreventDefault&&a.getPreventDefault()?K:J):this.type=a,b&&f.extend(this,b),this.timeStamp=a&&a.timeStamp||f.now(),this[f.expando]=!0},f.Event.prototype={preventDefault:function(){this.isDefaultPrevented=K;var a=this.originalEvent;!a||(a.preventDefault?a.preventDefault():a.returnValue=!1)},stopPropagation:function(){this.isPropagationStopped=K;var a=this.originalEvent;!a||(a.stopPropagation&&a.stopPropagation(),a.cancelBubble=!0)},stopImmediatePropagation:function(){this.isImmediatePropagationStopped=K,this.stopPropagation()},isDefaultPrevented:J,isPropagationStopped:J,isImmediatePropagationStopped:J},f.each({mouseenter:"mouseover",mouseleave:"mouseout"},function(a,b){f.event.special[a]={delegateType:b,bindType:b,handle:function(a){var c=this,d=a.relatedTarget,e=a.handleObj,g=e.selector,h;if(!d||d!==c&&!f.contains(c,d))a.type=e.origType,h=e.handler.apply(this,arguments),a.type=b;return h}}}),f.support.submitBubbles||(f.event.special.submit={setup:function(){if(f.nodeName(this,"form"))return!1;f.event.add(this,"click._submit keypress._submit",function(a){var c=a.target,d=f.nodeName(c,"input")||f.nodeName(c,"button")?c.form:b;d&&!d._submit_attached&&(f.event.add(d,"submit._submit",function(a){a._submit_bubble=!0}),d._submit_attached=!0)})},postDispatch:function(a){a._submit_bubble&&(delete a._submit_bubble,this.parentNode&&!a.isTrigger&&f.event.simulate("submit",this.parentNode,a,!0))},teardown:function(){if(f.nodeName(this,"form"))return!1;f.event.remove(this,"._submit")}}),f.support.changeBubbles||(f.event.special.change={setup:function(){if(z.test(this.nodeName)){if(this.type==="checkbox"||this.type==="radio")f.event.add(this,"propertychange._change",function(a){a.originalEvent.propertyName==="checked"&&(this._just_changed=!0)}),f.event.add(this,"click._change",function(a){this._just_changed&&!a.isTrigger&&(this._just_changed=!1,f.event.simulate("change",this,a,!0))});return!1}f.event.add(this,"beforeactivate._change",function(a){var b=a.target;z.test(b.nodeName)&&!b._change_attached&&(f.event.add(b,"change._change",function(a){this.parentNode&&!a.isSimulated&&!a.isTrigger&&f.event.simulate("change",this.parentNode,a,!0)}),b._change_attached=!0)})},handle:function(a){var b=a.target;if(this!==b||a.isSimulated||a.isTrigger||b.type!=="radio"&&b.type!=="checkbox")return a.handleObj.handler.apply(this,arguments)},teardown:function(){f.event.remove(this,"._change");return z.test(this.nodeName)}}),f.support.focusinBubbles||f.each({focus:"focusin",blur:"focusout"},function(a,b){var d=0,e=function(a){f.event.simulate(b,a.target,f.event.fix(a),!0)};f.event.special[b]={setup:function(){d++===0&&c.addEventListener(a,e,!0)},teardown:function(){--d===0&&c.removeEventListener(a,e,!0)}}}),f.fn.extend({on:function(a,c,d,e,g){var h,i;if(typeof a=="object"){typeof c!="string"&&(d=d||c,c=b);for(i in a)this.on(i,c,d,a[i],g);return this}d==null&&e==null?(e=c,d=c=b):e==null&&(typeof c=="string"?(e=d,d=b):(e=d,d=c,c=b));if(e===!1)e=J;else if(!e)return this;g===1&&(h=e,e=function(a){f().off(a);return h.apply(this,arguments)},e.guid=h.guid||(h.guid=f.guid++));return this.each(function(){f.event.add(this,a,e,d,c)})},one:function(a,b,c,d){return this.on(a,b,c,d,1)},off:function(a,c,d){if(a&&a.preventDefault&&a.handleObj){var e=a.handleObj;f(a.delegateTarget).off(e.namespace?e.origType+"."+e.namespace:e.origType,e.selector,e.handler);return this}if(typeof a=="object"){for(var g in a)this.off(g,c,a[g]);return this}if(c===!1||typeof c=="function")d=c,c=b;d===!1&&(d=J);return this.each(function(){f.event.remove(this,a,d,c)})},bind:function(a,b,c){return this.on(a,null,b,c)},unbind:function(a,b){return this.off(a,null,b)},live:function(a,b,c){f(this.context).on(a,this.selector,b,c);return this},die:function(a,b){f(this.context).off(a,this.selector||"**",b);return this},delegate:function(a,b,c,d){return this.on(b,a,c,d)},undelegate:function(a,b,c){return arguments.length==1?this.off(a,"**"):this.off(b,a,c)},trigger:function(a,b){return this.each(function(){f.event.trigger(a,b,this)})},triggerHandler:function(a,b){if(this[0])return f.event.trigger(a,b,this[0],!0)},toggle:function(a){var b=arguments,c=a.guid||f.guid++,d=0,e=function(c){var e=(f._data(this,"lastToggle"+a.guid)||0)%d;f._data(this,"lastToggle"+a.guid,e+1),c.preventDefault();return b[e].apply(this,arguments)||!1};e.guid=c;while(d<b.length)b[d++].guid=c;return this.click(e)},hover:function(a,b){return this.mouseenter(a).mouseleave(b||a)}}),f.each("blur focus focusin focusout load resize scroll unload click dblclick mousedown mouseup mousemove mouseover mouseout mouseenter mouseleave change select submit keydown keypress keyup error contextmenu".split(" "),function(a,b){f.fn[b]=function(a,c){c==null&&(c=a,a=null);return arguments.length>0?this.on(b,null,a,c):this.trigger(b)},f.attrFn&&(f.attrFn[b]=!0),C.test(b)&&(f.event.fixHooks[b]=f.event.keyHooks),D.test(b)&&(f.event.fixHooks[b]=f.event.mouseHooks)}),function(){function x(a,b,c,e,f,g){for(var h=0,i=e.length;h<i;h++){var j=e[h];if(j){var k=!1;j=j[a];while(j){if(j[d]===c){k=e[j.sizset];break}if(j.nodeType===1){g||(j[d]=c,j.sizset=h);if(typeof b!="string"){if(j===b){k=!0;break}}else if(m.filter(b,[j]).length>0){k=j;break}}j=j[a]}e[h]=k}}}function w(a,b,c,e,f,g){for(var h=0,i=e.length;h<i;h++){var j=e[h];if(j){var k=!1;j=j[a];while(j){if(j[d]===c){k=e[j.sizset];break}j.nodeType===1&&!g&&(j[d]=c,j.sizset=h);if(j.nodeName.toLowerCase()===b){k=j;break}j=j[a]}e[h]=k}}}var a=/((?:\((?:\([^()]+\)|[^()]+)+\)|\[(?:\[[^\[\]]*\]|['"][^'"]*['"]|[^\[\]'"]+)+\]|\\.|[^ >+~,(\[\\]+)+|[>+~])(\s*,\s*)?((?:.|\r|\n)*)/g,d="sizcache"+(Math.random()+"").replace(".",""),e=0,g=Object.prototype.toString,h=!1,i=!0,j=/\\/g,k=/\r\n/g,l=/\W/;[0,0].sort(function(){i=!1;return 0});var m=function(b,d,e,f){e=e||[],d=d||c;var h=d;if(d.nodeType!==1&&d.nodeType!==9)return[];if(!b||typeof b!="string")return e;var i,j,k,l,n,q,r,t,u=!0,v=m.isXML(d),w=[],x=b;do{a.exec(""),i=a.exec(x);if(i){x=i[3],w.push(i[1]);if(i[2]){l=i[3];break}}}while(i);if(w.length>1&&p.exec(b))if(w.length===2&&o.relative[w[0]])j=y(w[0]+w[1],d,f);else{j=o.relative[w[0]]?[d]:m(w.shift(),d);while(w.length)b=w.shift(),o.relative[b]&&(b+=w.shift()),j=y(b,j,f)}else{!f&&w.length>1&&d.nodeType===9&&!v&&o.match.ID.test(w[0])&&!o.match.ID.test(w[w.length-1])&&(n=m.find(w.shift(),d,v),d=n.expr?m.filter(n.expr,n.set)[0]:n.set[0]);if(d){n=f?{expr:w.pop(),set:s(f)}:m.find(w.pop(),w.length===1&&(w[0]==="~"||w[0]==="+")&&d.parentNode?d.parentNode:d,v),j=n.expr?m.filter(n.expr,n.set):n.set,w.length>0?k=s(j):u=!1;while(w.length)q=w.pop(),r=q,o.relative[q]?r=w.pop():q="",r==null&&(r=d),o.relative[q](k,r,v)}else k=w=[]}k||(k=j),k||m.error(q||b);if(g.call(k)==="[object Array]")if(!u)e.push.apply(e,k);else if(d&&d.nodeType===1)for(t=0;k[t]!=null;t++)k[t]&&(k[t]===!0||k[t].nodeType===1&&m.contains(d,k[t]))&&e.push(j[t]);else for(t=0;k[t]!=null;t++)k[t]&&k[t].nodeType===1&&e.push(j[t]);else s(k,e);l&&(m(l,h,e,f),m.uniqueSort(e));return e};m.uniqueSort=function(a){if(u){h=i,a.sort(u);if(h)for(var b=1;b<a.length;b++)a[b]===a[b-1]&&a.splice(b--,1)}return a},m.matches=function(a,b){return m(a,null,null,b)},m.matchesSelector=function(a,b){return m(b,null,null,[a]).length>0},m.find=function(a,b,c){var d,e,f,g,h,i;if(!a)return[];for(e=0,f=o.order.length;e<f;e++){h=o.order[e];if(g=o.leftMatch[h].exec(a)){i=g[1],g.splice(1,1);if(i.substr(i.length-1)!=="\\"){g[1]=(g[1]||"").replace(j,""),d=o.find[h](g,b,c);if(d!=null){a=a.replace(o.match[h],"");break}}}}d||(d=typeof b.getElementsByTagName!="undefined"?b.getElementsByTagName("*"):[]);return{set:d,expr:a}},m.filter=function(a,c,d,e){var f,g,h,i,j,k,l,n,p,q=a,r=[],s=c,t=c&&c[0]&&m.isXML(c[0]);while(a&&c.length){for(h in o.filter)if((f=o.leftMatch[h].exec(a))!=null&&f[2]){k=o.filter[h],l=f[1],g=!1,f.splice(1,1);if(l.substr(l.length-1)==="\\")continue;s===r&&(r=[]);if(o.preFilter[h]){f=o.preFilter[h](f,s,d,r,e,t);if(!f)g=i=!0;else if(f===!0)continue}if(f)for(n=0;(j=s[n])!=null;n++)j&&(i=k(j,f,n,s),p=e^i,d&&i!=null?p?g=!0:s[n]=!1:p&&(r.push(j),g=!0));if(i!==b){d||(s=r),a=a.replace(o.match[h],"");if(!g)return[];break}}if(a===q)if(g==null)m.error(a);else break;q=a}return s},m.error=function(a){throw new Error("Syntax error, unrecognized expression: "+a)};var n=m.getText=function(a){var b,c,d=a.nodeType,e="";if(d){if(d===1||d===9||d===11){if(typeof a.textContent=="string")return a.textContent;if(typeof a.innerText=="string")return a.innerText.replace(k,"");for(a=a.firstChild;a;a=a.nextSibling)e+=n(a)}else if(d===3||d===4)return a.nodeValue}else for(b=0;c=a[b];b++)c.nodeType!==8&&(e+=n(c));return e},o=m.selectors={order:["ID","NAME","TAG"],match:{ID:/#((?:[\w\u00c0-\uFFFF\-]|\\.)+)/,CLASS:/\.((?:[\w\u00c0-\uFFFF\-]|\\.)+)/,NAME:/\[name=['"]*((?:[\w\u00c0-\uFFFF\-]|\\.)+)['"]*\]/,ATTR:/\[\s*((?:[\w\u00c0-\uFFFF\-]|\\.)+)\s*(?:(\S?=)\s*(?:(['"])(.*?)\3|(#?(?:[\w\u00c0-\uFFFF\-]|\\.)*)|)|)\s*\]/,TAG:/^((?:[\w\u00c0-\uFFFF\*\-]|\\.)+)/,CHILD:/:(only|nth|last|first)-child(?:\(\s*(even|odd|(?:[+\-]?\d+|(?:[+\-]?\d*)?n\s*(?:[+\-]\s*\d+)?))\s*\))?/,POS:/:(nth|eq|gt|lt|first|last|even|odd)(?:\((\d*)\))?(?=[^\-]|$)/,PSEUDO:/:((?:[\w\u00c0-\uFFFF\-]|\\.)+)(?:\((['"]?)((?:\([^\)]+\)|[^\(\)]*)+)\2\))?/},leftMatch:{},attrMap:{"class":"className","for":"htmlFor"},attrHandle:{href:function(a){return a.getAttribute("href")},type:function(a){return a.getAttribute("type")}},relative:{"+":function(a,b){var c=typeof b=="string",d=c&&!l.test(b),e=c&&!d;d&&(b=b.toLowerCase());for(var f=0,g=a.length,h;f<g;f++)if(h=a[f]){while((h=h.previousSibling)&&h.nodeType!==1);a[f]=e||h&&h.nodeName.toLowerCase()===b?h||!1:h===b}e&&m.filter(b,a,!0)},">":function(a,b){var c,d=typeof b=="string",e=0,f=a.length;if(d&&!l.test(b)){b=b.toLowerCase();for(;e<f;e++){c=a[e];if(c){var g=c.parentNode;a[e]=g.nodeName.toLowerCase()===b?g:!1}}}else{for(;e<f;e++)c=a[e],c&&(a[e]=d?c.parentNode:c.parentNode===b);d&&m.filter(b,a,!0)}},"":function(a,b,c){var d,f=e++,g=x;typeof b=="string"&&!l.test(b)&&(b=b.toLowerCase(),d=b,g=w),g("parentNode",b,f,a,d,c)},"~":function(a,b,c){var d,f=e++,g=x;typeof b=="string"&&!l.test(b)&&(b=b.toLowerCase(),d=b,g=w),g("previousSibling",b,f,a,d,c)}},find:{ID:function(a,b,c){if(typeof b.getElementById!="undefined"&&!c){var d=b.getElementById(a[1]);return d&&d.parentNode?[d]:[]}},NAME:function(a,b){if(typeof b.getElementsByName!="undefined"){var c=[],d=b.getElementsByName(a[1]);for(var e=0,f=d.length;e<f;e++)d[e].getAttribute("name")===a[1]&&c.push(d[e]);return c.length===0?null:c}},TAG:function(a,b){if(typeof b.getElementsByTagName!="undefined")return b.getElementsByTagName(a[1])}},preFilter:{CLASS:function(a,b,c,d,e,f){a=" "+a[1].replace(j,"")+" ";if(f)return a;for(var g=0,h;(h=b[g])!=null;g++)h&&(e^(h.className&&(" "+h.className+" ").replace(/[\t\n\r]/g," ").indexOf(a)>=0)?c||d.push(h):c&&(b[g]=!1));return!1},ID:function(a){return a[1].replace(j,"")},TAG:function(a,b){return a[1].replace(j,"").toLowerCase()},CHILD:function(a){if(a[1]==="nth"){a[2]||m.error(a[0]),a[2]=a[2].replace(/^\+|\s*/g,"");var b=/(-?)(\d*)(?:n([+\-]?\d*))?/.exec(a[2]==="even"&&"2n"||a[2]==="odd"&&"2n+1"||!/\D/.test(a[2])&&"0n+"+a[2]||a[2]);a[2]=b[1]+(b[2]||1)-0,a[3]=b[3]-0}else a[2]&&m.error(a[0]);a[0]=e++;return a},ATTR:function(a,b,c,d,e,f){var g=a[1]=a[1].replace(j,"");!f&&o.attrMap[g]&&(a[1]=o.attrMap[g]),a[4]=(a[4]||a[5]||"").replace(j,""),a[2]==="~="&&(a[4]=" "+a[4]+" ");return a},PSEUDO:function(b,c,d,e,f){if(b[1]==="not")if((a.exec(b[3])||"").length>1||/^\w/.test(b[3]))b[3]=m(b[3],null,null,c);else{var g=m.filter(b[3],c,d,!0^f);d||e.push.apply(e,g);return!1}else if(o.match.POS.test(b[0])||o.match.CHILD.test(b[0]))return!0;return b},POS:function(a){a.unshift(!0);return a}},filters:{enabled:function(a){return a.disabled===!1&&a.type!=="hidden"},disabled:function(a){return a.disabled===!0},checked:function(a){return a.checked===!0},selected:function(a){a.parentNode&&a.parentNode.selectedIndex;return a.selected===!0},parent:function(a){return!!a.firstChild},empty:function(a){return!a.firstChild},has:function(a,b,c){return!!m(c[3],a).length},header:function(a){return/h\d/i.test(a.nodeName)},text:function(a){var b=a.getAttribute("type"),c=a.type;return a.nodeName.toLowerCase()==="input"&&"text"===c&&(b===c||b===null)},radio:function(a){return a.nodeName.toLowerCase()==="input"&&"radio"===a.type},checkbox:function(a){return a.nodeName.toLowerCase()==="input"&&"checkbox"===a.type},file:function(a){return a.nodeName.toLowerCase()==="input"&&"file"===a.type},password:function(a){return a.nodeName.toLowerCase()==="input"&&"password"===a.type},submit:function(a){var b=a.nodeName.toLowerCase();return(b==="input"||b==="button")&&"submit"===a.type},image:function(a){return a.nodeName.toLowerCase()==="input"&&"image"===a.type},reset:function(a){var b=a.nodeName.toLowerCase();return(b==="input"||b==="button")&&"reset"===a.type},button:function(a){var b=a.nodeName.toLowerCase();return b==="input"&&"button"===a.type||b==="button"},input:function(a){return/input|select|textarea|button/i.test(a.nodeName)},focus:function(a){return a===a.ownerDocument.activeElement}},setFilters:{first:function(a,b){return b===0},last:function(a,b,c,d){return b===d.length-1},even:function(a,b){return b%2===0},odd:function(a,b){return b%2===1},lt:function(a,b,c){return b<c[3]-0},gt:function(a,b,c){return b>c[3]-0},nth:function(a,b,c){return c[3]-0===b},eq:function(a,b,c){return c[3]-0===b}},filter:{PSEUDO:function(a,b,c,d){var e=b[1],f=o.filters[e];if(f)return f(a,c,b,d);if(e==="contains")return(a.textContent||a.innerText||n([a])||"").indexOf(b[3])>=0;if(e==="not"){var g=b[3];for(var h=0,i=g.length;h<i;h++)if(g[h]===a)return!1;return!0}m.error(e)},CHILD:function(a,b){var c,e,f,g,h,i,j,k=b[1],l=a;switch(k){case"only":case"first":while(l=l.previousSibling)if(l.nodeType===1)return!1;if(k==="first")return!0;l=a;case"last":while(l=l.nextSibling)if(l.nodeType===1)return!1;return!0;case"nth":c=b[2],e=b[3];if(c===1&&e===0)return!0;f=b[0],g=a.parentNode;if(g&&(g[d]!==f||!a.nodeIndex)){i=0;for(l=g.firstChild;l;l=l.nextSibling)l.nodeType===1&&(l.nodeIndex=++i);g[d]=f}j=a.nodeIndex-e;return c===0?j===0:j%c===0&&j/c>=0}},ID:function(a,b){return a.nodeType===1&&a.getAttribute("id")===b},TAG:function(a,b){return b==="*"&&a.nodeType===1||!!a.nodeName&&a.nodeName.toLowerCase()===b},CLASS:function(a,b){return(" "+(a.className||a.getAttribute("class"))+" ").indexOf(b)>-1},ATTR:function(a,b){var c=b[1],d=m.attr?m.attr(a,c):o.attrHandle[c]?o.attrHandle[c](a):a[c]!=null?a[c]:a.getAttribute(c),e=d+"",f=b[2],g=b[4];return d==null?f==="!=":!f&&m.attr?d!=null:f==="="?e===g:f==="*="?e.indexOf(g)>=0:f==="~="?(" "+e+" ").indexOf(g)>=0:g?f==="!="?e!==g:f==="^="?e.indexOf(g)===0:f==="$="?e.substr(e.length-g.length)===g:f==="|="?e===g||e.substr(0,g.length+1)===g+"-":!1:e&&d!==!1},POS:function(a,b,c,d){var e=b[2],f=o.setFilters[e];if(f)return f(a,c,b,d)}}},p=o.match.POS,q=function(a,b){return"\\"+(b-0+1)};for(var r in o.match)o.match[r]=new RegExp(o.match[r].source+/(?![^\[]*\])(?![^\(]*\))/.source),o.leftMatch[r]=new RegExp(/(^(?:.|\r|\n)*?)/.source+o.match[r].source.replace(/\\(\d+)/g,q));o.match.globalPOS=p;var s=function(a,b){a=Array.prototype.slice.call(a,0);if(b){b.push.apply(b,a);return b}return a};try{Array.prototype.slice.call(c.documentElement.childNodes,0)[0].nodeType}catch(t){s=function(a,b){var c=0,d=b||[];if(g.call(a)==="[object Array]")Array.prototype.push.apply(d,a);else if(typeof a.length=="number")for(var e=a.length;c<e;c++)d.push(a[c]);else for(;a[c];c++)d.push(a[c]);return d}}var u,v;c.documentElement.compareDocumentPosition?u=function(a,b){if(a===b){h=!0;return 0}if(!a.compareDocumentPosition||!b.compareDocumentPosition)return a.compareDocumentPosition?-1:1;return a.compareDocumentPosition(b)&4?-1:1}:(u=function(a,b){if(a===b){h=!0;return 0}if(a.sourceIndex&&b.sourceIndex)return a.sourceIndex-b.sourceIndex;var c,d,e=[],f=[],g=a.parentNode,i=b.parentNode,j=g;if(g===i)return v(a,b);if(!g)return-1;if(!i)return 1;while(j)e.unshift(j),j=j.parentNode;j=i;while(j)f.unshift(j),j=j.parentNode;c=e.length,d=f.length;for(var k=0;k<c&&k<d;k++)if(e[k]!==f[k])return v(e[k],f[k]);return k===c?v(a,f[k],-1):v(e[k],b,1)},v=function(a,b,c){if(a===b)return c;var d=a.nextSibling;while(d){if(d===b)return-1;d=d.nextSibling}return 1}),function(){var a=c.createElement("div"),d="script"+(new Date).getTime(),e=c.documentElement;a.innerHTML="<a name='"+d+"'/>",e.insertBefore(a,e.firstChild),c.getElementById(d)&&(o.find.ID=function(a,c,d){if(typeof c.getElementById!="undefined"&&!d){var e=c.getElementById(a[1]);return e?e.id===a[1]||typeof e.getAttributeNode!="undefined"&&e.getAttributeNode("id").nodeValue===a[1]?[e]:b:[]}},o.filter.ID=function(a,b){var c=typeof a.getAttributeNode!="undefined"&&a.getAttributeNode("id");return a.nodeType===1&&c&&c.nodeValue===b}),e.removeChild(a),e=a=null}(),function(){var a=c.createElement("div");a.appendChild(c.createComment("")),a.getElementsByTagName("*").length>0&&(o.find.TAG=function(a,b){var c=b.getElementsByTagName(a[1]);if(a[1]==="*"){var d=[];for(var e=0;c[e];e++)c[e].nodeType===1&&d.push(c[e]);c=d}return c}),a.innerHTML="<a href='#'></a>",a.firstChild&&typeof a.firstChild.getAttribute!="undefined"&&a.firstChild.getAttribute("href")!=="#"&&(o.attrHandle.href=function(a){return a.getAttribute("href",2)}),a=null}(),c.querySelectorAll&&function(){var a=m,b=c.createElement("div"),d="__sizzle__";b.innerHTML="<p class='TEST'></p>";if(!b.querySelectorAll||b.querySelectorAll(".TEST").length!==0){m=function(b,e,f,g){e=e||c;if(!g&&!m.isXML(e)){var h=/^(\w+$)|^\.([\w\-]+$)|^#([\w\-]+$)/.exec(b);if(h&&(e.nodeType===1||e.nodeType===9)){if(h[1])return s(e.getElementsByTagName(b),f);if(h[2]&&o.find.CLASS&&e.getElementsByClassName)return s(e.getElementsByClassName(h[2]),f)}if(e.nodeType===9){if(b==="body"&&e.body)return s([e.body],f);if(h&&h[3]){var i=e.getElementById(h[3]);if(!i||!i.parentNode)return s([],f);if(i.id===h[3])return s([i],f)}try{return s(e.querySelectorAll(b),f)}catch(j){}}else if(e.nodeType===1&&e.nodeName.toLowerCase()!=="object"){var k=e,l=e.getAttribute("id"),n=l||d,p=e.parentNode,q=/^\s*[+~]/.test(b);l?n=n.replace(/'/g,"\\$&"):e.setAttribute("id",n),q&&p&&(e=e.parentNode);try{if(!q||p)return s(e.querySelectorAll("[id='"+n+"'] "+b),f)}catch(r){}finally{l||k.removeAttribute("id")}}}return a(b,e,f,g)};for(var e in a)m[e]=a[e];b=null}}(),function(){var a=c.documentElement,b=a.matchesSelector||a.mozMatchesSelector||a.webkitMatchesSelector||a.msMatchesSelector;if(b){var d=!b.call(c.createElement("div"),"div"),e=!1;try{b.call(c.documentElement,"[test!='']:sizzle")}catch(f){e=!0}m.matchesSelector=function(a,c){c=c.replace(/\=\s*([^'"\]]*)\s*\]/g,"='$1']");if(!m.isXML(a))try{if(e||!o.match.PSEUDO.test(c)&&!/!=/.test(c)){var f=b.call(a,c);if(f||!d||a.document&&a.document.nodeType!==11)return f}}catch(g){}return m(c,null,null,[a]).length>0}}}(),function(){var a=c.createElement("div");a.innerHTML="<div class='test e'></div><div class='test'></div>";if(!!a.getElementsByClassName&&a.getElementsByClassName("e").length!==0){a.lastChild.className="e";if(a.getElementsByClassName("e").length===1)return;o.order.splice(1,0,"CLASS"),o.find.CLASS=function(a,b,c){if(typeof b.getElementsByClassName!="undefined"&&!c)return b.getElementsByClassName(a[1])},a=null}}(),c.documentElement.contains?m.contains=function(a,b){return a!==b&&(a.contains?a.contains(b):!0)}:c.documentElement.compareDocumentPosition?m.contains=function(a,b){return!!(a.compareDocumentPosition(b)&16)}:m.contains=function(){return!1},m.isXML=function(a){var b=(a?a.ownerDocument||a:0).documentElement;return b?b.nodeName!=="HTML":!1};var y=function(a,b,c){var d,e=[],f="",g=b.nodeType?[b]:b;while(d=o.match.PSEUDO.exec(a))f+=d[0],a=a.replace(o.match.PSEUDO,"");a=o.relative[a]?a+"*":a;for(var h=0,i=g.length;h<i;h++)m(a,g[h],e,c);return m.filter(f,e)};m.attr=f.attr,m.selectors.attrMap={},f.find=m,f.expr=m.selectors,f.expr[":"]=f.expr.filters,f.unique=m.uniqueSort,f.text=m.getText,f.isXMLDoc=m.isXML,f.contains=m.contains}();var L=/Until$/,M=/^(?:parents|prevUntil|prevAll)/,N=/,/,O=/^.[^:#\[\.,]*$/,P=Array.prototype.slice,Q=f.expr.match.globalPOS,R={children:!0,contents:!0,next:!0,prev:!0};f.fn.extend({find:function(a){var b=this,c,d;if(typeof a!="string")return f(a).filter(function(){for(c=0,d=b.length;c<d;c++)if(f.contains(b[c],this))return!0});var e=this.pushStack("","find",a),g,h,i;for(c=0,d=this.length;c<d;c++){g=e.length,f.find(a,this[c],e);if(c>0)for(h=g;h<e.length;h++)for(i=0;i<g;i++)if(e[i]===e[h]){e.splice(h--,1);break}}return e},has:function(a){var b=f(a);return this.filter(function(){for(var a=0,c=b.length;a<c;a++)if(f.contains(this,b[a]))return!0})},not:function(a){return this.pushStack(T(this,a,!1),"not",a)},filter:function(a){return this.pushStack(T(this,a,!0),"filter",a)},is:function(a){return!!a&&(typeof a=="string"?Q.test(a)?f(a,this.context).index(this[0])>=0:f.filter(a,this).length>0:this.filter(a).length>0)},closest:function(a,b){var c=[],d,e,g=this[0];if(f.isArray(a)){var h=1;while(g&&g.ownerDocument&&g!==b){for(d=0;d<a.length;d++)f(g).is(a[d])&&c.push({selector:a[d],elem:g,level:h});g=g.parentNode,h++}return c}var i=Q.test(a)||typeof a!="string"?f(a,b||this.context):0;for(d=0,e=this.length;d<e;d++){g=this[d];while(g){if(i?i.index(g)>-1:f.find.matchesSelector(g,a)){c.push(g);break}g=g.parentNode;if(!g||!g.ownerDocument||g===b||g.nodeType===11)break}}c=c.length>1?f.unique(c):c;return this.pushStack(c,"closest",a)},index:function(a){if(!a)return this[0]&&this[0].parentNode?this.prevAll().length:-1;if(typeof a=="string")return f.inArray(this[0],f(a));return f.inArray(a.jquery?a[0]:a,this)},add:function(a,b){var c=typeof a=="string"?f(a,b):f.makeArray(a&&a.nodeType?[a]:a),d=f.merge(this.get(),c);return this.pushStack(S(c[0])||S(d[0])?d:f.unique(d))},andSelf:function(){return this.add(this.prevObject)}}),f.each({parent:function(a){var b=a.parentNode;return b&&b.nodeType!==11?b:null},parents:function(a){return f.dir(a,"parentNode")},parentsUntil:function(a,b,c){return f.dir(a,"parentNode",c)},next:function(a){return f.nth(a,2,"nextSibling")},prev:function(a){return f.nth(a,2,"previousSibling")},nextAll:function(a){return f.dir(a,"nextSibling")},prevAll:function(a){return f.dir(a,"previousSibling")},nextUntil:function(a,b,c){return f.dir(a,"nextSibling",c)},prevUntil:function(a,b,c){return f.dir(a,"previousSibling",c)},siblings:function(a){return f.sibling((a.parentNode||{}).firstChild,a)},children:function(a){return f.sibling(a.firstChild)},contents:function(a){return f.nodeName(a,"iframe")?a.contentDocument||a.contentWindow.document:f.makeArray(a.childNodes)}},function(a,b){f.fn[a]=function(c,d){var e=f.map(this,b,c);L.test(a)||(d=c),d&&typeof d=="string"&&(e=f.filter(d,e)),e=this.length>1&&!R[a]?f.unique(e):e,(this.length>1||N.test(d))&&M.test(a)&&(e=e.reverse());return this.pushStack(e,a,P.call(arguments).join(","))}}),f.extend({filter:function(a,b,c){c&&(a=":not("+a+")");return b.length===1?f.find.matchesSelector(b[0],a)?[b[0]]:[]:f.find.matches(a,b)},dir:function(a,c,d){var e=[],g=a[c];while(g&&g.nodeType!==9&&(d===b||g.nodeType!==1||!f(g).is(d)))g.nodeType===1&&e.push(g),g=g[c];return e},nth:function(a,b,c,d){b=b||1;var e=0;for(;a;a=a[c])if(a.nodeType===1&&++e===b)break;return a},sibling:function(a,b){var c=[];for(;a;a=a.nextSibling)a.nodeType===1&&a!==b&&c.push(a);return c}});var V="abbr|article|aside|audio|bdi|canvas|data|datalist|details|figcaption|figure|footer|header|hgroup|mark|meter|nav|output|progress|section|summary|time|video",W=/ jQuery\d+="(?:\d+|null)"/g,X=/^\s+/,Y=/<(?!area|br|col|embed|hr|img|input|link|meta|param)(([\w:]+)[^>]*)\/>/ig,Z=/<([\w:]+)/,$=/<tbody/i,_=/<|&#?\w+;/,ba=/<(?:script|style)/i,bb=/<(?:script|object|embed|option|style)/i,bc=new RegExp("<(?:"+V+")[\\s/>]","i"),bd=/checked\s*(?:[^=]|=\s*.checked.)/i,be=/\/(java|ecma)script/i,bf=/^\s*<!(?:\[CDATA\[|\-\-)/,bg={option:[1,"<select multiple='multiple'>","</select>"],legend:[1,"<fieldset>","</fieldset>"],thead:[1,"<table>","</table>"],tr:[2,"<table><tbody>","</tbody></table>"],td:[3,"<table><tbody><tr>","</tr></tbody></table>"],col:[2,"<table><tbody></tbody><colgroup>","</colgroup></table>"],area:[1,"<map>","</map>"],_default:[0,"",""]},bh=U(c);bg.optgroup=bg.option,bg.tbody=bg.tfoot=bg.colgroup=bg.caption=bg.thead,bg.th=bg.td,f.support.htmlSerialize||(bg._default=[1,"div<div>","</div>"]),f.fn.extend({text:function(a){return f.access(this,function(a){return a===b?f.text(this):this.empty().append((this[0]&&this[0].ownerDocument||c).createTextNode(a))},null,a,arguments.length)},wrapAll:function(a){if(f.isFunction(a))return this.each(function(b){f(this).wrapAll(a.call(this,b))});if(this[0]){var b=f(a,this[0].ownerDocument).eq(0).clone(!0);this[0].parentNode&&b.insertBefore(this[0]),b.map(function(){var a=this;while(a.firstChild&&a.firstChild.nodeType===1)a=a.firstChild;return a}).append(this)}return this},wrapInner:function(a){if(f.isFunction(a))return this.each(function(b){f(this).wrapInner(a.call(this,b))});return this.each(function(){var b=f(this),c=b.contents();c.length?c.wrapAll(a):b.append(a)})},wrap:function(a){var b=f.isFunction(a);return this.each(function(c){f(this).wrapAll(b?a.call(this,c):a)})},unwrap:function(){return this.parent().each(function(){f.nodeName(this,"body")||f(this).replaceWith(this.childNodes)}).end()},append:function(){return this.domManip(arguments,!0,function(a){this.nodeType===1&&this.appendChild(a)})},prepend:function(){return this.domManip(arguments,!0,function(a){this.nodeType===1&&this.insertBefore(a,this.firstChild)})},before:function(){if(this[0]&&this[0].parentNode)return this.domManip(arguments,!1,function(a){this.parentNode.insertBefore(a,this)});if(arguments.length){var a=f
 .clean(arguments);a.push.apply(a,this.toArray());return this.pushStack(a,"before",arguments)}},after:function(){if(this[0]&&this[0].parentNode)return this.domManip(arguments,!1,function(a){this.parentNode.insertBefore(a,this.nextSibling)});if(arguments.length){var a=this.pushStack(this,"after",arguments);a.push.apply(a,f.clean(arguments));return a}},remove:function(a,b){for(var c=0,d;(d=this[c])!=null;c++)if(!a||f.filter(a,[d]).length)!b&&d.nodeType===1&&(f.cleanData(d.getElementsByTagName("*")),f.cleanData([d])),d.parentNode&&d.parentNode.removeChild(d);return this},empty:function(){for(var a=0,b;(b=this[a])!=null;a++){b.nodeType===1&&f.cleanData(b.getElementsByTagName("*"));while(b.firstChild)b.removeChild(b.firstChild)}return this},clone:function(a,b){a=a==null?!1:a,b=b==null?a:b;return this.map(function(){return f.clone(this,a,b)})},html:function(a){return f.access(this,function(a){var c=this[0]||{},d=0,e=this.length;if(a===b)return c.nodeType===1?c.innerHTML.replace(W,""):null;if(typeof a=="string"&&!ba.test(a)&&(f.support.leadingWhitespace||!X.test(a))&&!bg[(Z.exec(a)||["",""])[1].toLowerCase()]){a=a.replace(Y,"<$1></$2>");try{for(;d<e;d++)c=this[d]||{},c.nodeType===1&&(f.cleanData(c.getElementsByTagName("*")),c.innerHTML=a);c=0}catch(g){}}c&&this.empty().append(a)},null,a,arguments.length)},replaceWith:function(a){if(this[0]&&this[0].parentNode){if(f.isFunction(a))return this.each(function(b){var c=f(this),d=c.html();c.replaceWith(a.call(this,b,d))});typeof a!="string"&&(a=f(a).detach());return this.each(function(){var b=this.nextSibling,c=this.parentNode;f(this).remove(),b?f(b).before(a):f(c).append(a)})}return this.length?this.pushStack(f(f.isFunction(a)?a():a),"replaceWith",a):this},detach:function(a){return this.remove(a,!0)},domManip:function(a,c,d){var e,g,h,i,j=a[0],k=[];if(!f.support.checkClone&&arguments.length===3&&typeof j=="string"&&bd.test(j))return this.each(function(){f(this).domManip(a,c,d,!0)});if(f.isFunction(j))return this.each(function(e){var g=f(this);a[0]=j.call(this,e,c?g.html():b),g.domManip(a,c,d)});if(this[0]){i=j&&j.parentNode,f.support.parentNode&&i&&i.nodeType===11&&i.childNodes.length===this.length?e={fragment:i}:e=f.buildFragment(a,this,k),h=e.fragment,h.childNodes.length===1?g=h=h.firstChild:g=h.firstChild;if(g){c=c&&f.nodeName(g,"tr");for(var l=0,m=this.length,n=m-1;l<m;l++)d.call(c?bi(this[l],g):this[l],e.cacheable||m>1&&l<n?f.clone(h,!0,!0):h)}k.length&&f.each(k,function(a,b){b.src?f.ajax({type:"GET",global:!1,url:b.src,async:!1,dataType:"script"}):f.globalEval((b.text||b.textContent||b.innerHTML||"").replace(bf,"/*$0*/")),b.parentNode&&b.parentNode.removeChild(b)})}return this}}),f.buildFragment=function(a,b,d){var e,g,h,i,j=a[0];b&&b[0]&&(i=b[0].ownerDocument||b[0]),i.createDocumentFragment||(i=c),a.length===1&&typeof j=="string"&&j.length<512&&i===c&&j.charAt(0)==="<"&&!bb.test(j)&&(f.support.checkClone||!bd.test(j))&&(f.support.html5Clone||!bc.test(j))&&(g=!0,h=f.fragments[j],h&&h!==1&&(e=h)),e||(e=i.createDocumentFragment(),f.clean(a,i,e,d)),g&&(f.fragments[j]=h?e:1);return{fragment:e,cacheable:g}},f.fragments={},f.each({appendTo:"append",prependTo:"prepend",insertBefore:"before",insertAfter:"after",replaceAll:"replaceWith"},function(a,b){f.fn[a]=function(c){var d=[],e=f(c),g=this.length===1&&this[0].parentNode;if(g&&g.nodeType===11&&g.childNodes.length===1&&e.length===1){e[b](this[0]);return this}for(var h=0,i=e.length;h<i;h++){var j=(h>0?this.clone(!0):this).get();f(e[h])[b](j),d=d.concat(j)}return this.pushStack(d,a,e.selector)}}),f.extend({clone:function(a,b,c){var d,e,g,h=f.support.html5Clone||f.isXMLDoc(a)||!bc.test("<"+a.nodeName+">")?a.cloneNode(!0):bo(a);if((!f.support.noCloneEvent||!f.support.noCloneChecked)&&(a.nodeType===1||a.nodeType===11)&&!f.isXMLDoc(a)){bk(a,h),d=bl(a),e=bl(h);for(g=0;d[g];++g)e[g]&&bk(d[g],e[g])}if(b){bj(a,h);if(c){d=bl(a),e=bl(h);for(g=0;d[g];++g)bj(d[g],e[g])}}d=e=null;return h},clean:function(a,b,d,e){var g,h,i,j=[];b=b||c,typeof b.createElement=="undefined"&&(b=b.ownerDocument||b[0]&&b[0].ownerDocument||c);for(var k=0,l;(l=a[k])!=null;k++){typeof l=="number"&&(l+="");if(!l)continue;if(typeof l=="string")if(!_.test(l))l=b.createTextNode(l);else{l=l.replace(Y,"<$1></$2>");var m=(Z.exec(l)||["",""])[1].toLowerCase(),n=bg[m]||bg._default,o=n[0],p=b.createElement("div"),q=bh.childNodes,r;b===c?bh.appendChild(p):U(b).appendChild(p),p.innerHTML=n[1]+l+n[2];while(o--)p=p.lastChild;if(!f.support.tbody){var s=$.test(l),t=m==="table"&&!s?p.firstChild&&p.firstChild.childNodes:n[1]==="<table>"&&!s?p.childNodes:[];for(i=t.length-1;i>=0;--i)f.nodeName(t[i],"tbody")&&!t[i].childNodes.length&&t[i].parentNode.removeChild(t[i])}!f.support.leadingWhitespace&&X.test(l)&&p.insertBefore(b.createTextNode(X.exec(l)[0]),p.firstChild),l=p.childNodes,p&&(p.parentNode.removeChild(p),q.length>0&&(r=q[q.length-1],r&&r.parentNode&&r.parentNode.removeChild(r)))}var u;if(!f.support.appendChecked)if(l[0]&&typeof (u=l.length)=="number")for(i=0;i<u;i++)bn(l[i]);else bn(l);l.nodeType?j.push(l):j=f.merge(j,l)}if(d){g=function(a){return!a.type||be.test(a.type)};for(k=0;j[k];k++){h=j[k];if(e&&f.nodeName(h,"script")&&(!h.type||be.test(h.type)))e.push(h.parentNode?h.parentNode.removeChild(h):h);else{if(h.nodeType===1){var v=f.grep(h.getElementsByTagName("script"),g);j.splice.apply(j,[k+1,0].concat(v))}d.appendChild(h)}}}return j},cleanData:function(a){var b,c,d=f.cache,e=f.event.special,g=f.support.deleteExpando;for(var h=0,i;(i=a[h])!=null;h++){if(i.nodeName&&f.noData[i.nodeName.toLowerCase()])continue;c=i[f.expando];if(c){b=d[c];if(b&&b.events){for(var j in b.events)e[j]?f.event.remove(i,j):f.removeEvent(i,j,b.handle);b.handle&&(b.handle.elem=null)}g?delete i[f.expando]:i.removeAttribute&&i.removeAttribute(f.expando),delete d[c]}}}});var bp=/alpha\([^)]*\)/i,bq=/opacity=([^)]*)/,br=/([A-Z]|^ms)/g,bs=/^[\-+]?(?:\d*\.)?\d+$/i,bt=/^-?(?:\d*\.)?\d+(?!px)[^\d\s]+$/i,bu=/^([\-+])=([\-+.\de]+)/,bv=/^margin/,bw={position:"absolute",visibility:"hidden",display:"block"},bx=["Top","Right","Bottom","Left"],by,bz,bA;f.fn.css=function(a,c){return f.access(this,function(a,c,d){return d!==b?f.style(a,c,d):f.css(a,c)},a,c,arguments.length>1)},f.extend({cssHooks:{opacity:{get:function(a,b){if(b){var c=by(a,"opacity");return c===""?"1":c}return a.style.opacity}}},cssNumber:{fillOpacity:!0,fontWeight:!0,lineHeight:!0,opacity:!0,orphans:!0,widows:!0,zIndex:!0,zoom:!0},cssProps:{"float":f.support.cssFloat?"cssFloat":"styleFloat"},style:function(a,c,d,e){if(!!a&&a.nodeType!==3&&a.nodeType!==8&&!!a.style){var g,h,i=f.camelCase(c),j=a.style,k=f.cssHooks[i];c=f.cssProps[i]||i;if(d===b){if(k&&"get"in k&&(g=k.get(a,!1,e))!==b)return g;return j[c]}h=typeof d,h==="string"&&(g=bu.exec(d))&&(d=+(g[1]+1)*+g[2]+parseFloat(f.css(a,c)),h="number");if(d==null||h==="number"&&isNaN(d))return;h==="number"&&!f.cssNumber[i]&&(d+="px");if(!k||!("set"in k)||(d=k.set(a,d))!==b)try{j[c]=d}catch(l){}}},css:function(a,c,d){var e,g;c=f.camelCase(c),g=f.cssHooks[c],c=f.cssProps[c]||c,c==="cssFloat"&&(c="float");if(g&&"get"in g&&(e=g.get(a,!0,d))!==b)return e;if(by)return by(a,c)},swap:function(a,b,c){var d={},e,f;for(f in b)d[f]=a.style[f],a.style[f]=b[f];e=c.call(a);for(f in b)a.style[f]=d[f];return e}}),f.curCSS=f.css,c.defaultView&&c.defaultView.getComputedStyle&&(bz=function(a,b){var c,d,e,g,h=a.style;b=b.replace(br,"-$1").toLowerCase(),(d=a.ownerDocument.defaultView)&&(e=d.getComputedStyle(a,null))&&(c=e.getPropertyValue(b),c===""&&!f.contains(a.ownerDocument.documentElement,a)&&(c=f.style(a,b))),!f.support.pixelMargin&&e&&bv.test(b)&&bt.test(c)&&(g=h.width,h.width=c,c=e.width,h.width=g);return c}),c.documentElement.currentStyle&&(bA=function(a,b){var c,d,e,f=a.currentStyle&&a.currentStyle[b],g=a.style;f==null&&g&&(e=g[b])&&(f=e),bt.test(f)&&(c=g.left,d=a.runtimeStyle&&a.runtimeStyle.left,d&&(a.runtimeStyle.left=a.currentStyle.left),g.left=b==="fontSize"?"1em":f,f=g.pixelLeft+"px",g.left=c,d&&(a.runtimeStyle.left=d));return f===""?"auto":f}),by=bz||bA,f.each(["height","width"],function(a,b){f.cssHooks[b]={get:function(a,c,d){if(c)return a.offsetWidth!==0?bB(a,b,d):f.swap(a,bw,function(){return bB(a,b,d)})},set:function(a,b){return bs.test(b)?b+"px":b}}}),f.support.opacity||(f.cssHooks.opacity={get:function(a,b){return bq.test((b&&a.currentStyle?a.currentStyle.filter:a.style.filter)||"")?parseFloat(RegExp.$1)/100+"":b?"1":""},set:function(a,b){var c=a.style,d=a.currentStyle,e=f.isNumeric(b)?"alpha(opacity="+b*100+")":"",g=d&&d.filter||c.filter||"";c.zoom=1;if(b>=1&&f.trim(g.replace(bp,""))===""){c.removeAttribute("filter");if(d&&!d.filter)return}c.filter=bp.test(g)?g.replace(bp,e):g+" "+e}}),f(function(){f.support.reliableMarginRight||(f.cssHooks.marginRight={get:function(a,b){return f.swap(a,{display:"inline-block"},function(){return b?by(a,"margin-right"):a.style.marginRight})}})}),f.expr&&f.expr.filters&&(f.expr.filters.hidden=function(a){var b=a.offsetWidth,c=a.offsetHeight;return b===0&&c===0||!f.support.reliableHiddenOffsets&&(a.style&&a.style.display||f.css(a,"display"))==="none"},f.expr.filters.visible=function(a){return!f.expr.filters.hidden(a)}),f.each({margin:"",padding:"",border:"Width"},function(a,b){f.cssHooks[a+b]={expand:function(c){var d,e=typeof c=="string"?c.split(" "):[c],f={};for(d=0;d<4;d++)f[a+bx[d]+b]=e[d]||e[d-2]||e[0];return f}}});var bC=/%20/g,bD=/\[\]$/,bE=/\r?\n/g,bF=/#.*$/,bG=/^(.*?):[ \t]*([^\r\n]*)\r?$/mg,bH=/^(?:color|date|datetime|datetime-local|email|hidden|month|number|password|range|search|tel|text|time|url|week)$/i,bI=/^(?:about|app|app\-storage|.+\-extension|file|res|widget):$/,bJ=/^(?:GET|HEAD)$/,bK=/^\/\//,bL=/\?/,bM=/<script\b[^<]*(?:(?!<\/script>)<[^<]*)*<\/script>/gi,bN=/^(?:select|textarea)/i,bO=/\s+/,bP=/([?&])_=[^&]*/,bQ=/^([\w\+\.\-]+:)(?:\/\/([^\/?#:]*)(?::(\d+))?)?/,bR=f.fn.load,bS={},bT={},bU,bV,bW=["*/"]+["*"];try{bU=e.href}catch(bX){bU=c.createElement("a"),bU.href="",bU=bU.href}bV=bQ.exec(bU.toLowerCase())||[],f.fn.extend({load:function(a,c,d){if(typeof a!="string"&&bR)return bR.apply(this,arguments);if(!this.length)return this;var e=a.indexOf(" ");if(e>=0){var g=a.slice(e,a.length);a=a.slice(0,e)}var h="GET";c&&(f.isFunction(c)?(d=c,c=b):typeof c=="object"&&(c=f.param(c,f.ajaxSettings.traditional),h="POST"));var i=this;f.ajax({url:a,type:h,dataType:"html",data:c,complete:function(a,b,c){c=a.responseText,a.isResolved()&&(a.done(function(a){c=a}),i.html(g?f("<div>").append(c.replace(bM,"")).find(g):c)),d&&i.each(d,[c,b,a])}});return this},serialize:function(){return f.param(this.serializeArray())},serializeArray:function(){return this.map(function(){return this.elements?f.makeArray(this.elements):this}).filter(function(){return this.name&&!this.disabled&&(this.checked||bN.test(this.nodeName)||bH.test(this.type))}).map(function(a,b){var c=f(this).val();return c==null?null:f.isArray(c)?f.map(c,function(a,c){return{name:b.name,value:a.replace(bE,"\r\n")}}):{name:b.name,value:c.replace(bE,"\r\n")}}).get()}}),f.each("ajaxStart ajaxStop ajaxComplete ajaxError ajaxSuccess ajaxSend".split(" "),function(a,b){f.fn[b]=function(a){return this.on(b,a)}}),f.each(["get","post"],function(a,c){f[c]=function(a,d,e,g){f.isFunction(d)&&(g=g||e,e=d,d=b);return f.ajax({type:c,url:a,data:d,success:e,dataType:g})}}),f.extend({getScript:function(a,c){return f.get(a,b,c,"script")},getJSON:function(a,b,c){return f.get(a,b,c,"json")},ajaxSetup:function(a,b){b?b$(a,f.ajaxSettings):(b=a,a=f.ajaxSettings),b$(a,b);return a},ajaxSettings:{url:bU,isLocal:bI.test(bV[1]),global:!0,type:"GET",contentType:"application/x-www-form-urlencoded; charset=UTF-8",processData:!0,async:!0,accepts:{xml:"application/xml, text/xml",html:"text/html",text:"text/plain",json:"application/json, text/javascript","*":bW},contents:{xml:/xml/,html:/html/,json:/json/},responseFields:{xml:"responseXML",text:"responseText"},converters:{"* text":a.String,"text html":!0,"text json":f.parseJSON,"text xml":f.parseXML},flatOptions:{context:!0,url:!0}},ajaxPrefilter:bY(bS),ajaxTransport:bY(bT),ajax:function(a,c){function w(a,c,l,m){if(s!==2){s=2,q&&clearTimeout(q),p=b,n=m||"",v.readyState=a>0?4:0;var o,r,u,w=c,x=l?ca(d,v,l):b,y,z;if(a>=200&&a<300||a===304){if(d.ifModified){if(y=v.getResponseHeader("Last-Modified"))f.lastModified[k]=y;if(z=v.getResponseHeader("Etag"))f.etag[k]=z}if(a===304)w="notmodified",o=!0;else try{r=cb(d,x),w="success",o=!0}catch(A){w="parsererror",u=A}}else{u=w;if(!w||a)w="error",a<0&&(a=0)}v.status=a,v.statusText=""+(c||w),o?h.resolveWith(e,[r,w,v]):h.rejectWith(e,[v,w,u]),v.statusCode(j),j=b,t&&g.trigger("ajax"+(o?"Success":"Error"),[v,d,o?r:u]),i.fireWith(e,[v,w]),t&&(g.trigger("ajaxComplete",[v,d]),--f.active||f.event.trigger("ajaxStop"))}}typeof a=="object"&&(c=a,a=b),c=c||{};var d=f.ajaxSetup({},c),e=d.context||d,g=e!==d&&(e.nodeType||e instanceof f)?f(e):f.event,h=f.Deferred(),i=f.Callbacks("once memory"),j=d.statusCode||{},k,l={},m={},n,o,p,q,r,s=0,t,u,v={readyState:0,setRequestHeader:function(a,b){if(!s){var c=a.toLowerCase();a=m[c]=m[c]||a,l[a]=b}return this},getAllResponseHeaders:function(){return s===2?n:null},getResponseHeader:function(a){var c;if(s===2){if(!o){o={};while(c=bG.exec(n))o[c[1].toLowerCase()]=c[2]}c=o[a.toLowerCase()]}return c===b?null:c},overrideMimeType:function(a){s||(d.mimeType=a);return this},abort:function(a){a=a||"abort",p&&p.abort(a),w(0,a);return this}};h.promise(v),v.success=v.done,v.error=v.fail,v.complete=i.add,v.statusCode=function(a){if(a){var b;if(s<2)for(b in a)j[b]=[j[b],a[b]];else b=a[v.status],v.then(b,b)}return this},d.url=((a||d.url)+"").replace(bF,"").replace(bK,bV[1]+"//"),d.dataTypes=f.trim(d.dataType||"*").toLowerCase().split(bO),d.crossDomain==null&&(r=bQ.exec(d.url.toLowerCase()),d.crossDomain=!(!r||r[1]==bV[1]&&r[2]==bV[2]&&(r[3]||(r[1]==="http:"?80:443))==(bV[3]||(bV[1]==="http:"?80:443)))),d.data&&d.processData&&typeof d.data!="string"&&(d.data=f.param(d.data,d.traditional)),bZ(bS,d,c,v);if(s===2)return!1;t=d.global,d.type=d.type.toUpperCase(),d.hasContent=!bJ.test(d.type),t&&f.active++===0&&f.event.trigger("ajaxStart");if(!d.hasContent){d.data&&(d.url+=(bL.test(d.url)?"&":"?")+d.data,delete d.data),k=d.url;if(d.cache===!1){var x=f.now(),y=d.url.replace(bP,"$1_="+x);d.url=y+(y===d.url?(bL.test(d.url)?"&":"?")+"_="+x:"")}}(d.data&&d.hasContent&&d.contentType!==!1||c.contentType)&&v.setRequestHeader("Content-Type",d.contentType),d.ifModified&&(k=k||d.url,f.lastModified[k]&&v.setRequestHeader("If-Modified-Since",f.lastModified[k]),f.etag[k]&&v.setRequestHeader("If-None-Match",f.etag[k])),v.setRequestHeader("Accept",d.dataTypes[0]&&d.accepts[d.dataTypes[0]]?d.accepts[d.dataTypes[0]]+(d.dataTypes[0]!=="*"?", "+bW+"; q=0.01":""):d.accepts["*"]);for(u in d.headers)v.setRequestHeader(u,d.headers[u]);if(d.beforeSend&&(d.beforeSend.call(e,v,d)===!1||s===2)){v.abort();return!1}for(u in{success:1,error:1,complete:1})v[u](d[u]);p=bZ(bT,d,c,v);if(!p)w(-1,"No Transport");else{v.readyState=1,t&&g.trigger("ajaxSend",[v,d]),d.async&&d.timeout>0&&(q=setTimeout(function(){v.abort("timeout")},d.timeout));try{s=1,p.send(l,w)}catch(z){if(s<2)w(-1,z);else throw z}}return v},param:function(a,c){var d=[],e=function(a,b){b=f.isFunction(b)?b():b,d[d.length]=encodeURIComponent(a)+"="+encodeURIComponent(b)};c===b&&(c=f.ajaxSettings.traditional);if(f.isArray(a)||a.jquery&&!f.isPlainObject(a))f.each(a,function(){e(this.name,this.value)});else for(var g in a)b_(g,a[g],c,e);return d.join("&").replace(bC,"+")}}),f.extend({active:0,lastModified:{},etag:{}});var cc=f.now(),cd=/(\=)\?(&|$)|\?\?/i;f.ajaxSetup({jsonp:"callback",jsonpCallback:function(){return f.expando+"_"+cc++}}),f.ajaxPrefilter("json jsonp",function(b,c,d){var e=typeof b.data=="string"&&/^application\/x\-www\-form\-urlencoded/.test(b.contentType);if(b.dataTypes[0]==="jsonp"||b.jsonp!==!1&&(cd.test(b.url)||e&&cd.test(b.data))){var g,h=b.jsonpCallback=f.isFunction(b.jsonpCallback)?b.jsonpCallback():b.jsonpCallback,i=a[h],j=b.url,k=b.data,l="$1"+h+"$2";b.jsonp!==!1&&(j=j.replace(cd,l),b.url===j&&(e&&(k=k.replace(cd,l)),b.data===k&&(j+=(/\?/.test(j)?"&":"?")+b.jsonp+"="+h))),b.url=j,b.data=k,a[h]=function(a){g=[a]},d.always(function(){a[h]=i,g&&f.isFunction(i)&&a[h](g[0])}),b.converters["script json"]=function(){g||f.error(h+" was not called");return g[0]},b.dataTypes[0]="json";return"script"}}),f.ajaxSetup({accepts:{script:"text/javascript, application/javascript, application/ecmascript, application/x-ecmascript"},contents:{script:/javascript|ecmascript/},converters:{"text script":function(a){f.globalEval(a);return a}}}),f.ajaxPrefilter("script",function(a){a.cache===b&&(a.cache=!1),a.crossDomain&&(a.type="GET",a.global=!1)}),f.ajaxTransport("script",function(a){if(a.crossDomain){var d,e=c.head||c.getElementsByTagName("head")[0]||c.documentElement;return{send:function(f,g){d=c.createElement("script"),d.async="async",a.scriptCharset&&(d.charset=a.scriptCharset),d.src=a.url,d.onload=d.onreadystatechange=function(a,c){if(c||!d.readyState||/loaded|complete/.test(d.readyState))d.onload=d.onreadystatechange=null,e&&d.parentNode&&e.removeChild(d),d=b,c||g(200,"success")},e.insertBefore(d,e.firstChild)},abort:function(){d&&d.onload(0,1)}}}});var ce=a.ActiveXObject?function(){for(var a in cg)cg[a](0,1)}:!1,cf=0,cg;f.ajaxSettings.xhr=a.ActiveXObject?function(){return!this.isLocal&&ch()||ci()}:ch,function(a){f.extend(f.support,{ajax:!!a,cors:!!a&&"withCredentials"in a})}(f.ajaxSettings.xhr()),f.support.ajax&&f.ajaxTransport(function(c){if(!c.crossDomain||f.support.cors){var d;return{send:function(e,g){var h=c.xhr(),i,j;c.username?h.open(c.type,c.url,c.async,c.username,c.password):h.open(c.type,c.url,c.async);if(c.xhrFields)for(j in c.xhrFields)h[j]=c.xhrFields[j];c.mimeType&&h.overrideMimeType&&h.overrideMimeType(c.mimeType),!c.crossDomain&&!e["X-Requested-With"]&&(e["X-Requested-With"]="XMLHttpRequest");try{for(j in e)h.setRequestHeader(j,e[j])}catch(k){}h.send(c.hasContent&&c.data||null),d=function(a,e){var j,k,l,m,n;try{if(d&&(e||h.readyState===4)){d=b,i&&(h.onreadystatechange=f.noop,ce&&delete cg[i]);if(e)h.readyState!==4&&h.abort();else{j=h.status,l=h.getAllResponseHeaders(),m={},n=h.responseXML,n&&n.documentElement&&(m.xml=n);try{m.text=h.responseText}catch(a){}try{k=h.statusText}catch(o){k=""}!j&&c.isLocal&&!c.crossDomain?j=m.text?200:404:j===1223&&(j=204)}}}catch(p){e||g(-1,p)}m&&g(j,k,m,l)},!c.async||h.readyState===4?d():(i=++cf,ce&&(cg||(cg={},f(a).unload(ce)),cg[i]=d),h.onreadystatechange=d)},abort:function(){d&&d(0,1)}}}});var cj={},ck,cl,cm=/^(?:toggle|show|hide)$/,cn=/^([+\-]=)?([\d+.\-]+)([a-z%]*)$/i,co,cp=[["height","marginTop","marginBottom","paddingTop","paddingBottom"],["width","marginLeft","marginRight","paddingLeft","paddingRight"],["opacity"]],cq;f.fn.extend({show:function(a,b,c){var d,e;if(a||a===0)return this.animate(ct("show",3),a,b,c);for(var g=0,h=this.length;g<h;g++)d=this[g],d.style&&(e=d.style.display,!f._data(d,"olddisplay")&&e==="none"&&(e=d.style.display=""),(e===""&&f.css(d,"display")==="none"||!f.contains(d.ownerDocument.documentElement,d))&&f._data(d,"olddisplay",cu(d.nodeName)));for(g=0;g<h;g++){d=this[g];if(d.style){e=d.style.display;if(e===""||e==="none")d.style.display=f._data(d,"olddisplay")||""}}return this},hide:function(a,b,c){if(a||a===0)return this.animate(ct("hide",3),a,b,c);var d,e,g=0,h=this.length;for(;g<h;g++)d=this[g],d.style&&(e=f.css(d,"display"),e!=="none"&&!f._data(d,"olddisplay")&&f._data(d,"olddisplay",e));for(g=0;g<h;g++)this[g].style&&(this[g].style.display="none");return this},_toggle:f.fn.toggle,toggle:function(a,b,c){var d=typeof a=="boolean";f.isFunction(a)&&f.isFunction(b)?this._toggle.apply(this,arguments):a==null||d?this.each(function(){var b=d?a:f(this).is(":hidden");f(this)[b?"show":"hide"]()}):this.animate(ct("toggle",3),a,b,c);return this},fadeTo:function(a,b,c,d){return this.filter(":hidden").css("opacity",0).show().end().animate({opacity:b},a,c,d)},animate:function(a,b,c,d){function g(){e.queue===!1&&f._mark(this);var b=f.extend({},e),c=this.nodeType===1,d=c&&f(this).is(":hidden"),g,h,i,j,k,l,m,n,o,p,q;b.animatedProperties={};for(i in a){g=f.camelCase(i),i!==g&&(a[g]=a[i],delete a[i]);if((k=f.cssHooks[g])&&"expand"in k){l=k.expand(a[g]),delete a[g];for(i in l)i in a||(a[i]=l[i])}}for(g in a){h=a[g],f.isArray(h)?(b.animatedProperties[g]=h[1],h=a[g]=h[0]):b.animatedProperties[g]=b.specialEasing&&b.specialEasing[g]||b.easing||"swing";if(h==="hide"&&d||h==="show"&&!d)return b.complete.call(this);c&&(g==="height"||g==="width")&&(b.overflow=[this.style.overflow,this.style.overflowX,this.style.overflowY],f.css(this,"display")==="inline"&&f.css(this,"float")==="none"&&(!f.support.inlineBlockNeedsLayout||cu(this.nodeName)==="inline"?this.style.display="inline-block":this.style.zoom=1))}b.overflow!=null&&(this.style.overflow="hidden");for(i in a)j=new f.fx(this,b,i),h=a[i],cm.test(h)?(q=f._data(this,"toggle"+i)||(h==="toggle"?d?"show":"hide":0),q?(f._data(this,"toggle"+i,q==="show"?"hide":"show"),j[q]()):j[h]()):(m=cn.exec(h),n=j.cur(),m?(o=parseFloat(m[2]),p=m[3]||(f.cssNumber[i]?"":"px"),p!=="px"&&(f.style(this,i,(o||1)+p),n=(o||1)/j.cur()*n,f.style(this,i,n+p)),m[1]&&(o=(m[1]==="-="?-1:1)*o+n),j.custom(n,o,p)):j.custom(n,h,""));return!0}var e=f.speed(b,c,d);if(f.isEmptyObject(a))return this.each(e.complete,[!1]);a=f.extend({},a);return e.queue===!1?this.each(g):this.queue(e.queue,g)},stop:function(a,c,d){typeof a!="string"&&(d=c,c=a,a=b),c&&a!==!1&&this.queue(a||"fx",[]);return this.each(function(){function h(a,b,c){var e=b[c];f.removeData(a,c,!0),e.stop(d)}var b,c=!1,e=f.timers,g=f._data(this);d||f._unmark(!0,this);if(a==null)for(b in g)g[b]&&g[b].stop&&b.indexOf(".run")===b.length-4&&h(this,g,b);else g[b=a+".run"]&&g[b].stop&&h(this,g,b);for(b=e.length;b--;)e[b].elem===this&&(a==null||e[b].queue===a)&&(d?e[b](!0):e[b].saveState(),c=!0,e.splice(b,1));(!d||!c)&&f.dequeue(this,a)})}}),f.each({slideDown:ct("show",1),slideUp:ct("hide",1),slideToggle:ct("toggle",1),fadeIn:{opacity:"show"},fadeOut:{opacity:"hide"},fadeToggle:{opacity:"toggle"}},function(a,b){f.fn[a]=function(a,c,d){return this.animate(b,a,c,d)}}),f.extend({speed:function(a,b,c){var d=a&&typeof a=="object"?f.extend({},a):{complete:c||!c&&b||f.isFunction(a)&&a,duration:a,easing:c&&b||b&&!f.isFunction(b)&&b};d.duration=f.fx.off?0:typeof d.duration=="number"?d.duration:d.duration in f.fx.speeds?f.fx.speeds[d.duration]:f.fx.speeds._default;if(d.queue==null||d.queue===!0)d.queue="fx";d.old=d.complete,d.complete=function(a){f.isFunction(d.old)&&d.old.call(this),d.queue?f.dequeue(this,d.queue):a!==!1&&f._unmark(this)};return d},easing:{linear:function(a){return a},swing:function(a){return-Math.cos(a*Math.PI)/2+.5}},timers:[],fx:function(a,b,c){this.options=b,this.elem=a,this.prop=c,b.orig=b.orig||{}}}),f.fx.prototype={update:function(){this.options.step&&this.options.step.call(this.elem,this.now,this),(f.fx.step[this.prop]||f.fx.step._default)(this)},cur:function(){if(this.elem[this.prop]!=null&&(!this.elem.style||this.elem.style[this.prop]==null))return this.elem[this.prop];var a,b=f.css(this.elem,this.prop);return isNaN(a=parseFloat(b))?!b||b==="auto"?0:b:a},custom:function(a,c,d){function h(a){return e.step(a)}var e=this,g=f.fx;this.startTime=cq||cr(),this.end=c,this.now=this.start=a,this.pos=this.state=0,this.unit=d||this.unit||(f.cssNumber[this.prop]?"":"px"),h.queue=this.options.queue,h.elem=this.elem,h.saveState=function(){f._data(e.elem,"fxshow"+e.prop)===b&&(e.options.hide?f._data(e.elem,"fxshow"+e.prop,e.start):e.options.show&&f._data(e.elem,"fxshow"+e.prop,e.end))},h()&&f.timers.push(h)&&!co&&(co=setInterval(g.tick,g.interval))},show:function(){var a=f._data(this.elem,"fxshow"+this.prop);this.options.orig[this.prop]=a||f.style(this.elem,this.prop),this.options.show=!0,a!==b?this.custom(this.cur(),a):this.custom(this.prop==="width"||this.prop==="height"?1:0,this.cur()),f(this.elem).show()},hide:function(){this.options.orig[this.prop]=f._data(this.elem,"fxshow"+this.prop)||f.style(this.elem,this.prop),this.options.hide=!0,this.custom(this.cur(),0)},step:function(a){var b,c,d,e=cq||cr(),g=!0,h=this.elem,i=this.options;if(a||e>=i.duration+this.startTime){this.now=this.end,this.pos=this.state=1,this.update(),i.animatedProperties[this.prop]=!0;for(b in i.animatedProperties)i.animatedProperties[b]!==!0&&(g=!1);if(g){i.overflow!=null&&!f.support.shrinkWrapBlocks&&f.each(["","X","Y"],function(a,b){h.style["overflow"+b]=i.overflow[a]}),i.hide&&f(h).hide();if(i.hide||i.show)for(b in i.animatedProperties)f.style(h,b,i.orig[b]),f.removeData(h,"fxshow"+b,!0),f.removeData(h,"toggle"+b,!0);d=i.complete,d&&(i.complete=!1,d.call(h))}return!1}i.duration==Infinity?this.now=e:(c=e-this.startTime,this.state=c/i.duration,this.pos=f.easing[i.animatedProperties[this.prop]](this.state,c,0,1,i.duration),this.now=this.start+(this.end-this.start)*this.pos),this.update();return!0}},f.extend(f.fx,{tick:function(){var a,b=f.timers,c=0;for(;c<b.length;c++)a=b[c],!a()&&b[c]===a&&b.splice(c--,1);b.length||f.fx.stop()},interval:13,stop:function(){clearInterval(co),co=null},speeds:{slow:600,fast:200,_default:400},step:{opacity:function(a){f.style(a.elem,"opacity",a.now)},_default:function(a){a.elem.style&&a.elem.style[a.prop]!=null?a.elem.style[a.prop]=a.now+a.unit:a.elem[a.prop]=a.now}}}),f.each(cp.concat.apply([],cp),function(a,b){b.indexOf("margin")&&(f.fx.step[b]=function(a){f.style(a.elem,b,Math.max(0,a.now)+a.unit)})}),f.expr&&f.expr.filters&&(f.expr.filters.animated=function(a){return f.grep(f.timers,function(b){return a===b.elem}).length});var cv,cw=/^t(?:able|d|h)$/i,cx=/^(?:body|html)$/i;"getBoundingClientRect"in c.documentElement?cv=function(a,b,c,d){try{d=a.getBoundingClientRect()}catch(e){}if(!d||!f.contains(c,a))return d?{top:d.top,left:d.left}:{top:0,left:0};var g=b.body,h=cy(b),i=c.clientTop||g.clientTop||0,j=c.clientLeft||g.clientLeft||0,k=h.pageYOffset||f.support.boxModel&&c.scrollTop||g.scrollTop,l=h.pageXOffset||f.support.boxModel&&c.scrollLeft||g.scrollLeft,m=d.top+k-i,n=d.left+l-j;return{top:m,left:n}}:cv=function(a,b,c){var d,e=a.offsetParent,g=a,h=b.body,i=b.defaultView,j=i?i.getComputedStyle(a,null):a.currentStyle,k=a.offsetTop,l=a.offsetLeft;while((a=a.parentNode)&&a!==h&&a!==c){if(f.support.fixedPosition&&j.position==="fixed")break;d=i?i.getComputedStyle(a,null):a.currentStyle,k-=a.scrollTop,l-=a.scrollLeft,a===e&&(k+=a.offsetTop,l+=a.offsetLeft,f.support.doesNotAddBorder&&(!f.support.doesAddBorderForTableAndCells||!cw.test(a.nodeName))&&(k+=parseFloat(d.borderTopWidth)||0,l+=parseFloat(d.borderLeftWidth)||0),g=e,e=a.offsetParent),f.support.subtractsBorderForOverflowNotVisible&&d.overflow!=="visible"&&(k+=parseFloat(d.borderTopWidth)||0,l+=parseFloat(d.borderLeftWidth)||0),j=d}if(j.position==="relative"||j.position==="static")k+=h.offsetTop,l+=h.offsetLeft;f.support.fixedPosition&&j.position==="fixed"&&(k+=Math.max(c.scrollTop,h.scrollTop),l+=Math.max(c.scrollLeft,h.scrollLeft));return{top:k,left:l}},f.fn.offset=function(a){if(arguments.length)return a===b?this:this.each(function(b){f.offset.setOffset(this,a,b)});var c=this[0],d=c&&c.ownerDocument;if(!d)return null;if(c===d.body)return f.offset.bodyOffset(c);return cv(c,d,d.documentElement)},f.offset={bodyOffset:function(a){var b=a.offsetTop,c=a.offsetLeft;f.support.doesNotIncludeMarginInBodyOffset&&(b+=parseFloat(f.css(a,"marginTop"))||0,c+=parseFloat(f.css(a,"marginLeft"))||0);return{top:b,left:c}},setOffset:function(a,b,c){var d=f.css(a,"position");d==="static"&&(a.style.position="relative");var e=f(a),g=e.offset(),h=f.css(a,"top"),i=f.css(a,"left"),j=(d==="absolute"||d==="fixed")&&f.inArray("auto",[h,i])>-1,k={},l={},m,n;j?(l=e.position(),m=l.top,n=l.left):(m=parseFloat(h)||0,n=parseFloat(i)||0),f.isFunction(b)&&(b=b.call(a,c,g)),b.top!=null&&(k.top=b.top-g.top+m),b.left!=null&&(k.left=b.left-g.left+n),"using"in b?b.using.call(a,k):e.css(k)}},f.fn.extend({position:function(){if(!this[0])return null;var a=this[0],b=this.offsetParent(),c=this.offset(),d=cx.test(b[0].nodeName)?{top:0,left:0}:b.offset();c.top-=parseFloat(f.css(a,"marginTop"))||0,c.left-=parseFloat(f.css(a,"marginLeft"))||0,d.top+=parseFloat(f.css(b[0],"borderTopWidth"))||0,d.left+=parseFloat(f.css(b[0],"borderLeftWidth"))||0;return{top:c.top-d.top,left:c.left-d.left}},offsetParent:function(){return this.map(function(){var a=this.offsetParent||c.body;while(a&&!cx.test(a.nodeName)&&f.css(a,"position")==="static")a=a.offsetParent;return a})}}),f.each({scrollLeft:"pageXOffset",scrollTop:"pageYOffset"},function(a,c){var d=/Y/.test(c);f.fn[a]=function(e){return f.access(this,function(a,e,g){var h=cy(a);if(g===b)return h?c in h?h[c]:f.support.boxModel&&h.document.documentElement[e]||h.document.body[e]:a[e];h?h.scrollTo(d?f(h).scrollLeft():g,d?g:f(h).scrollTop()):a[e]=g},a,e,arguments.length,null)}}),f.each({Height:"height",Width:"width"},function(a,c){var d="client"+a,e="scroll"+a,g="offset"+a;f.fn["inner"+a]=function(){var a=this[0];return a?a.style?parseFloat(f.css(a,c,"padding")):this[c]():null},f.fn["outer"+a]=function(a){var b=this[0];return b?b.style?parseFloat(f.css(b,c,a?"margin":"border")):this[c]():null},f.fn[c]=function(a){return f.access(this,function(a,c,h){var i,j,k,l;if(f.isWindow(a)){i=a.document,j=i.documentElement[d];return f.support.boxModel&&j||i.body&&i.body[d]||j}if(a.nodeType===9){i=a.documentElement;if(i[d]>=i[e])return i[d];return Math.max(a.body[e],i[e],a.body[g],i[g])}if(h===b){k=f.css(a,c),l=parseFloat(k);return f.isNumeric(l)?l:k}f(a).css(c,h)},c,a,arguments.length,null)}}),a.jQuery=a.$=f,typeof define=="function"&&define.amd&&define.amd.jQuery&&define("jquery",[],function(){return f})})(window);
-
diff --git a/data/html/pagination-menu.html b/data/html/pagination-menu.html
index 6711f3e1ea5..5d6e36673d0 100644
--- a/data/html/pagination-menu.html
+++ b/data/html/pagination-menu.html
@@ -54,4 +54,4 @@
                     </ul>
                 </div>
             </div>
-        </div>
\ No newline at end of file
+        </div>
diff --git a/data/html/pagination-rpp.html b/data/html/pagination-rpp.html
index fe385201681..46ca8250a98 100644
--- a/data/html/pagination-rpp.html
+++ b/data/html/pagination-rpp.html
@@ -1,5 +1,5 @@
         <script language="text/javascript">
-            
+
         </script>
         <div class="span4" style="text-align: right;">
             <div class="pagination">
diff --git a/data/html/report.html b/data/html/report.html
index 66d72511fb1..c67812c1fa4 100644
--- a/data/html/report.html
+++ b/data/html/report.html
@@ -2,7 +2,7 @@
 {% block content %}
     {% include "sections/info.html" %}
     {% include "sections/errors.html" %}
-    {% if results.info.category == "file" %}
+    {% if results.info.category == "file,pcap,static" %}
         {% include "sections/file.html" %}
     {% elif results.info.category == "url" %}
         {% include "sections/url.html" %}
@@ -11,9 +11,11 @@
     {% include "sections/screenshots.html" %}
     {% include "sections/network.html" %}
     {% if results.info.category == "file" %}
-        {% include "sections/static.html" %}
+        {% include "sections/dropped.html" %}
+        {% include "sections/payloads.html" %}
+        {% include "sections/behavior.html" %}
+        {% if results.memory %}
+            {% include "sections/volatility.html" %}
+        {% endif %}
     {% endif %}
-    {% include "sections/dropped.html" %}
-    {% include "sections/behavior.html" %}
-    {% include "sections/volatility.html" %}
-{% endblock %}
\ No newline at end of file
+{% endblock %}
diff --git a/data/html/sections/behavior.html b/data/html/sections/behavior.html
index 81d077e06e3..45280b6a050 100644
--- a/data/html/sections/behavior.html
+++ b/data/html/sections/behavior.html
@@ -98,7 +98,14 @@ <h4>{{process.process_name}} <small>PID: {{process.process_id}}, Parent PID: {{p
     {% if results.behavior and results.behavior.processes %}
         {% for process in results.behavior.processes %}
         <div>
-            <h4><a href="javascript:showHide('process_{{process.process_id}}');">{{process.process_name}}</a> <small>PID: {{process.process_id}}, Parent PID: {{process.parent_id}}</small></h4>
+            <h4><a href="javascript:showHide('process_{{process.process_id}}');">{{process.process_name}}</a>
+                <small>PID: {{process.process_id}}, Parent PID: {{process.parent_id}}, Full Path: <b>{{process.module_path}}</b>
+                    {% if process.environ and process.environ.CommandLine %}
+                    , Command Line: <b>{{ process.environ.CommandLine }}</b>
+                    {% endif %}
+                </small>
+            </h4>
+            {% if results.local_conf.apicalls %}
             <div id="process_{{process.process_id}}" style="display: none;">
                 <table class="table table-bordered table-condensed" style="width: 100%; word-wrap:break-word;table-layout: fixed;">
                     <tr>
@@ -144,12 +151,14 @@ <h4><a href="javascript:showHide('process_{{process.process_id}}');">{{process.p
                     {% endfor %}
                 </table>
             </div>
+            {% endif %}
         </div>
         {% endfor %}
     {% else %}
         Nothing to display.
     {% endif %}
     {% endif %}
+    {% if results.behavior and results.behavior.summary %}
         <div class="card card-body">
             <b>Accessed Files</b>
             {% if results.behavior.summary.files %}
@@ -258,4 +267,5 @@ <h4><a href="javascript:showHide('process_{{process.process_id}}');">{{process.p
                 Nothing to display.
             {% endif %}
         </div>
+    {% endif %}
 </section>
diff --git a/data/html/sections/dropped.html b/data/html/sections/dropped.html
index b1361a0020e..ae05ee1728a 100644
--- a/data/html/sections/dropped.html
+++ b/data/html/sections/dropped.html
@@ -2,82 +2,19 @@
     <div class="section-title">
         <h4>Dropped Files</h4>
     </div>
+    {% set tab_name = 'dropped' %}
     {% if results.dropped %}
-        {% set counter = 1 %}
-        {% for dropped_file in results.dropped %}
+        {% for file in results.dropped %}
             <div>
                 {% if summary_report %}
-                <h4>{{dropped_file.name}}</h4>
-                <div id="dropped_{{counter}}">
+                    <h4>{% for name in file.name%} {{name}} {% endfor %}</h4>
+                    <div id="dropped_{{loop.index}}">
                 {% else %}
-                <h4><a href="javascript:showHide('dropped_{{counter}}');">{{dropped_file.name}}</a></h4>
-                <div id="dropped_{{counter}}" style="display: none;">
+                    <h4><a href="javascript:showHide('dropped_{{loop.index}}');">{% for name in file.name%} {{name}} {% endfor %}</a></h4>
+                    <div id="dropped_{{loop.index}}" style="display: none;">
+                    {% include "generic/_file_info.html" %}
                 {% endif %}
-                    <table class="table table-striped table-bordered" style="table-layout: fixed;">
-                        <tr>
-                            <th style="width: 15%;">File name</th>
-                            <td style="word-wrap: break-word;"><span class="mono">{{dropped_file.name}}</span></td>
-                        </tr>
-                        <tr>
-                            <th>Associated Filenames</th>
-                            <td style="word-wrap: break-word;">
-                                <ul style="margin-top: 0;margin-bottom: 0;">
-                                    {% for path in dropped_file.guest_paths %}
-                                    <li>{{path}}</li>
-                                    {% endfor %}
-                                </ul>
-                            </td>
-                        </tr>
-                        <tr>
-                            <th>File size</th>
-                            <td><span class="mono">{{dropped_file.size}} bytes</span></td>
-                        </tr>
-                        <tr>
-                            <th>File type</th>
-                            <td style="word-wrap: break-word;"><span class="mono">{{dropped_file.type}}</span></td>
-                        </tr>
-                        <tr>
-                            <th>MD5</th>
-                            <td style="word-wrap: break-word;"><span class="mono">{{dropped_file.md5}}</span></td>
-                        </tr>
-                        <tr>
-                            <th>SHA1</th>
-                            <td style="word-wrap: break-word;"><span class="mono">{{dropped_file.sha1}}</span></td>
-                        </tr>
-                        <tr>
-                            <th>SHA256</th>
-                            <td style="word-wrap: break-word;"><span class="mono">{{dropped_file.sha256}}</span></td>
-                        </tr>
-                        <tr>
-                            <th>SHA512</th>
-                            <td style="word-wrap: break-word;"><span class="mono">{{dropped_file.sha512}}</span></td>
-                        </tr>
-                        <tr>
-                            <th>Ssdeep</th>
-                            <td style="word-wrap: break-word;"><span class="mono">{{dropped_file.ssdeep}}</span></td>
-                        </tr>
-                        <tr>
-                            <th>Yara</th>
-                            <td>
-                                {% if dropped_file.yara|length == 0 %}
-                                    None matched
-                                {% else %}
-                                    <ul style="margin-top: 0;margin-bottom: 0;">
-                                        {% for sign in dropped_file.yara %}
-                                        <li>{{sign.name}} ({{sign.meta.description}})</li>
-                                        {% endfor %}
-                                    </ul>
-                                {% endif %}
-                            </td>
-                        </tr>
-                        <tr>
-                            <th>VirusTotal</th>
-                            <td><span class="mono"><a href="https://www.virustotal.com/en/file/{{dropped_file.sha256}}/analysis/">Search for Analysis</a></span></td>
-                        </tr>
-                    </table>
-                </div>
             </div>
-            {% set counter = counter + 1 %}
         {% endfor %}
     {% else %}
         Nothing to display.
diff --git a/data/html/sections/errors.html b/data/html/sections/errors.html
index 7c0122ab102..7585840c846 100644
--- a/data/html/sections/errors.html
+++ b/data/html/sections/errors.html
@@ -9,4 +9,4 @@ <h4>Errors</h4>
     {% endfor %}
     </ul>
 </section>
-{% endif %}
\ No newline at end of file
+{% endif %}
diff --git a/data/html/sections/file.html b/data/html/sections/file.html
index 4d27c3d5d01..b5cd1c3b75a 100644
--- a/data/html/sections/file.html
+++ b/data/html/sections/file.html
@@ -1,153 +1,20 @@
 <section id="file">
     <div class="section-title">
-        <h4>File Details</h4>
-    </div>
-    <table class="table table-striped table-bordered" style="table-layout: fixed;">
-        {% if results.target %}
-            <tr>
-                <th style="width: 15%;">File name</th>
-                <td><span class="mono" style="word-wrap: break-word;">{{results.target.file.name}}</span></td>
-            </tr>
-            <tr>
-                <th>File size</th>
-                <td><span class="mono">{{results.target.file.size}} bytes</span></td>
-            </tr>
-            <tr>
-                <th>File type</th>
-                <td><span class="mono" style="word-wrap: break-word;">{{results.target.file.type}}</span></td>
-            </tr>
-            <tr>
-                <th>CRC32</th>
-                <td><span class="mono">{{results.target.file.crc32}}</span></td>
-            </tr>
-            <tr>
-                <th>MD5</th>
-                <td><span class="mono" style="word-wrap: break-word;">{{results.target.file.md5}}</span></td>
-            </tr>
-            <tr>
-                <th>SHA1</th>
-                <td><span class="mono" style="word-wrap: break-word;">{{results.target.file.sha1}}</span></td>
-            </tr>
-            <tr>
-                <th>SHA256</th>
-                <td><span class="mono" style="word-wrap: break-word;">{{results.target.file.sha256}}</span></td>
-            </tr>
-            <tr>
-                <th>SHA512</th>
-                <td><span class="mono" style="word-wrap: break-word;">{{results.target.file.sha512}}</span></td>
-            </tr>
-            {% if results.target.file.sha3_384 %}
-            <tr>
-                <th>SHA3-384</th>
-                <td><span class="mono" style="word-wrap: break-word;">{{results.target.file.sha3_384}}</span></td>
-            </tr>
-            {% endif %}
-            {% if results.target.file.tlsh %}
-            <tr>
-                <th>TLSH</th>
-                <td><span class="mono" style="word-wrap: break-word;">{{results.target.file.tlsh}}</span></td>
-            </tr>
-            {% endif %}
-            <tr>
-                <th>Ssdeep</th>
-                <td><span class="mono" style="word-wrap: break-word;">{{results.target.file.ssdeep}}</span></td>
-            </tr>
-    	    {% if results.trid %}
-            <tr>
-                <th>TriD</th>
-		        <td>
-		        <ul style="margin-top: 0;margin-bottom: 0;">
-                    {% for str in results.trid %}
-                        <li>{{str}}</li>
-                    {% endfor %}
-		        </ul>
-		        <td>
-            </tr>
-    	    {% endif %}
-            <tr>
-                <th>ClamAV</th>
-                <td>
-                    <ul style="margin-top: 0;margin-bottom: 0;">
-                        {% for sig in results.target.file.clamav %}
-                        <li>{{sig}}</li>
-                        {% endfor %}
-                    </ul>
-                </td>
-            </tr>
-            <tr>
-                <th>Yara</th>
-                <td>
-                    {% if results.target.file.yara|length == 0 %}
-                        None matched
-                    {% else %}
-                        <ul style="margin-top: 0;margin-bottom: 0;">
-                            {% for sign in results.target.file.yara %}
-                            <li>{{sign.name}} ({{sign.meta.description}})</li>
-                            {% endfor %}
-                        </ul>
-                    {% endif %}
-                </td>
-            </tr>
-            {% if results.target.file.cape_yara %}
-            <tr>
-                <th>CAPE Yara</th>
-                <td>
-                    <ul style="margin-top: 0;margin-bottom: 0;">
-                        {% for sig in results.target.file.cape_yara %}
-                        <li>
-                            {% if sig.meta.cape_type %}
-                                {{sig.meta.cape_type}}
-                            {% elif sig.meta.description %}
-                                {{sig.meta.description}}
-                            {% endif %}
-                            {% if sig.meta.author %}
-                                - Author: {{sig.meta.author}}
-                            {% endif %}
-                            </li>
-                        {% endfor %}
-                    </ul>
-                </td>
-            </tr>
-            {% endif %}
-            <tr>
-                <th>VirusTotal</th>
-                <td>
-                    {% if results.virustotal %}
-                        {% if results.virustotal.response_code == 1 %}
-                            <a href={{results.virustotal.permalink}}>Permalink</a><br>
-                            VirusTotal Scan Date: {{results.virustotal.scan_date}}<br>
-                            Detection Rate: {{results.virustotal.positives}}/{{results.virustotal.total}}
-                            {% if not summary_report %}
-                                (<a id="virustotal_lbl" href="javascript:showHide('virustotal', 'virustotal_lbl');">Expand</a>)
-                            <div id="virustotal" style="display: none;margin-top: 5px;">
-                                <table class="table table-bordered table-condensed">
-                                    <tr>
-                                        <th>Antivirus</th>
-                                        <th>Version</th>
-                                        <th>Result</th>
-                                    </tr>
-                                    {% for key in results.virustotal.scans|sort %}
-                                    <tr>
-                                        <td>{{key}}</td>
-                                        <td>{{results["virustotal"]["scans"][key]["version"]}}</td>
-                                        {% if results["virustotal"]["scans"][key]["result"] == None %}
-                                            <td><span class="muted">Clean</span></td>
-                                        {% else %}
-                                            <td><span class="text-error">{{results["virustotal"]["scans"][key]["result"]}}</span></td>
-                                        {% endif %}
-                                    </tr>
-                                    {% endfor %}
-                                </table>
-                            </div>
-                            {% endif %}
-                        {% else %}
-                            File not found on VirusTotal
-                        {% endif %}
-                    {% else %}
-                        VirusTotal lookup disabled, add your API key to the module
-                    {% endif %}
-                </td>
-            </tr>
+        <h4>File Details  {% if results.info.parent_sample %} -
+        <a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#static_parent_file" role="button" aria-expanded="false" aria-controls="static_parent_file"  data-bs-toggle="tooltip" title="Display text"><span class="fas fa-envelope-open-text"></span> Parent file</a>
+        {% endif %}
+        </h4>
+        {% if results.info.parent_sample %}
+        <div class="collapse" id="static_parent_file">
+            {% for file in results.info.parent_sample|parentfixup|dict2list %}
+                {% include "generic/_file_info.html" %}
+            {% endfor %}
+        </div>
         {% endif %}
-    </table>
+    </div>
+    {% set tab_name = 'static' %}
+    {% if results.target.file %}
+        {% set file = results.target.file %}
+        {% include "generic/_file_info.html" %}
+    {% endif %}
 </section>
diff --git a/data/html/sections/info.html b/data/html/sections/info.html
index 3a3bd736db8..7058558cd99 100644
--- a/data/html/sections/info.html
+++ b/data/html/sections/info.html
@@ -1,4 +1,15 @@
 <section id="info">
+
+    {% if results.detections %}
+    <section id="malfamily">
+        <p style="text-align:center; font-size: 18px;font-weight-bold";>Detection(s):
+            {% for block  in results.detections %}
+                <span class="badge badge-danger">{{block.family}}</span>
+            {% endfor %}
+            </p>
+    </section>
+    {% endif %}
+
     {% if summary_report %}
     <div class="section-title">
         <h4>Sandbox Info</h4>
@@ -51,40 +62,26 @@ <h4>Sandbox Info</h4>
 </section>
 {% endif %}
 
-{% if results.detections %}
-<section id="malfamily">
-    <table class="table table-striped table-bordered">
-        <thead>
-            <tr>
-                <th>Detections</th>
-            </tr>
-        </thead>
-        <tbody>
-            <tr>
-                <td><h5>{{results.malfamily_tag}}: <span class="badge badge-danger">{{results.detections}}</span></h5></td>
-            </tr>
-        </tbody>
-    </table>
-</section>
-{% endif %}
-
-{% if results.CAPE.configs %}
+{% if "CAPE" in results and results.CAPE.configs %}
+<h4>Malware config(s)</h4>
 <section id="malware_conf">
     {% for config_block in results.CAPE.configs %}
         {% for family, config in config_block.items() %}
-        <table class="table table-striped table-bordered" style="table-layout: fixed;">
-            <tr>
-                <th style="border-top: 0; width: 15%;">Type</th>
-                <td style="border-top: 0; word-wrap: break-word;"><b>{{family}} Config</b></td>
-            </tr>
-            {% for key, value in config.items() %}
-            <tr>
-                <th style="border-top: 0; width: 15%;"><b>{{key}}</b></th>
-                <td style="border-top: 0; word-wrap: break-word;">{{malware_config(value)}}</td>
-            </tr>
-            {% endfor %}
-        </table>
+            {% if family not in "_associated_config_hashes,_associated_analysis_hashes" %}
+                <table class="table table-striped table-bordered" style="table-layout: fixed;">
+                    <tr>
+                        <th style="border-top: 0; width: 15%;">Type</th>
+                        <td style="border-top: 0; word-wrap: break-word;"><b>{{family}} Config</b></td>
+                    </tr>
+                    {% for key, value in config.items() %}
+                    <tr>
+                        <th style="border-top: 0; width: 15%;"><b>{{key}}</b></th>
+                        <td style="border-top: 0; word-wrap: break-word;">{{value|malware_config}}</td>
+                    </tr>
+                    {% endfor %}
+                </table>
+            {% endif %}
         {% endfor %}
     {% endfor %}
 </section>
-{% endif %}
\ No newline at end of file
+{% endif %}
diff --git a/data/html/sections/network.html b/data/html/sections/network.html
index a342d352e54..bca465900d0 100644
--- a/data/html/sections/network.html
+++ b/data/html/sections/network.html
@@ -144,7 +144,7 @@ <h4><a href="javascript:showHide('http');">HTTP Requests</a></h4>
             </div>
         </div>
         {% endif %}
-
+        <!--ToDo add https-->
         {% if results.network.smtp %}
         <div>
             {% if summary_report %}
diff --git a/data/html/sections/payloads.html b/data/html/sections/payloads.html
new file mode 100644
index 00000000000..64494cb31ac
--- /dev/null
+++ b/data/html/sections/payloads.html
@@ -0,0 +1,22 @@
+
+<section id="payloads">
+    <div class="section-title">
+        <h4>Payloads</h4>
+    </div>
+    {% if "CAPE" in results and results.CAPE.payloads %}
+        {% for file in results.CAPE.payloads %}
+            <div>
+                {% if summary_report %}
+                    <h4>{{file.name}}</h4>
+                    <div id="payload_{{loop.index}}">
+                {% else %}
+                    <h4><a href="javascript:showHide('payload_{{loop.index}}');">{{file.name}}</a></h4>
+                    <div id="payload_{{loop.index}}" style="display: none;">
+                    {% include "generic/_file_info.html" %}
+                {% endif %}
+            </div>
+        {% endfor %}
+    {% else %}
+        Nothing to display.
+    {% endif %}
+</section>
diff --git a/data/html/sections/signatures.html b/data/html/sections/signatures.html
index 29aa699b90b..51e4f7f4d31 100644
--- a/data/html/sections/signatures.html
+++ b/data/html/sections/signatures.html
@@ -1,4 +1,4 @@
-<section id="signatures">
+<section id="signatures" style="overflow-wrap: break-word;">
     <div class="section-title">
         <h4>Signatures</h4>
     </div>
@@ -9,7 +9,7 @@ <h4>Signatures</h4>
             {% elif sign.severity == 2 %}
                 <div class="alert alert-warning signature">
             {% elif sign.severity >= 3 %}
-                <div class="alert alert-error signature">
+                <div class="alert alert-danger signature">
             {% else %}
                 <div class="alert alert-info signature">
             {% endif %}
diff --git a/data/html/sections/static.html b/data/html/sections/static.html
deleted file mode 100644
index 0e5a29889c7..00000000000
--- a/data/html/sections/static.html
+++ /dev/null
@@ -1,369 +0,0 @@
-<section id="static">
-    <div class="section-title">
-        <h4>Static Analysis</h4>
-    </div>
-        {% if results.static and results.static.pe %}
-            <div>
-                {% if summary_report %}
-                <h4>PE Information</h4>
-                <div id="pe_information">
-                {% else %}
-                <h4><a href="javascript:showHide('pe_information');">PE Information</a></h4>
-                <div id="pe_information" style="display: none;">
-                {% endif %}
-                    <table class="table table-striped table-bordered" style="table-layout: fixed;">
-                        {% if results.static.pe.imagebase %}
-                            <tr>
-                                <th style="width: 15%;">Image Base</th>
-                                <td>{{results.static.pe.imagebase}}</td>
-                            </tr>
-                        {% endif %}
-                        {% if results.static.pe.entrypoint %}
-                            <tr>
-                                <th style="width: 15%;">Entry Point</th>
-                                <td>{{results.static.pe.entrypoint}}</td>
-                            </tr>
-                        {% endif %}
-                        {% if results.static.pe.reported_checksum %}
-                            <tr>
-                                <th style="width: 15%;">Reported Checksum</th>
-                                <td>{{results.static.pe.reported_checksum}}</td>
-                            </tr>
-                        {% endif %}
-                        {% if results.static.pe.actual_checksum %}
-                            <tr>
-                                <th style="width: 15%;">Actual Checksum</th>
-                                <td>{{results.static.pe.actual_checksum}}</td>
-                            </tr>
-                        {% endif %}
-                        {% if results.static.pe.osversion %}
-                            <tr>
-                                <th style="width: 15%;">Minimum OS Version</th>
-                                <td>{{results.static.pe.osversion}}</td>
-                            </tr>
-                        {% endif %}
-                        {% if results.static.pe.pdbpath %}
-                            <tr>
-                                <th style="width: 15%;">PDB Path</th>
-                                <td>{{results.static.pe.pdbpath}}</td>
-                            </tr>
-                        {% endif %}
-                        {% if results.static.pe.timestamp %}
-                            <tr>
-                                <th style="width: 15%;">Compile Time</th>
-                                <td>{{results.static.pe.timestamp}}</td>
-                            </tr>
-                        {% endif %}
-                        {% if results.static.pe.imphash %}
-                            <tr>
-                                <th style="width: 15%;">Import Hash</th>
-                                <td>{{results.static.pe.imphash}}</td>
-                            </tr>
-                        {% endif %}
-                        {% if results.static.pe.icon %}
-                            <tr>
-                                <th style="width: 15%;">Icon</th>
-                                <td><img src="data:image/jpeg;base64,{{results.static.pe.icon}}"/></td>
-                            </tr>
-                        {% endif %}
-                        {% if results.static.pe.icon_hash %}
-                            <tr>
-                                <th style="width: 15%;">Icon Exact Hash</th>
-                                <td>{{results.static.pe.icon_hash}}</td>
-                            </tr>
-                        {% endif %}
-                        {% if results.static.pe.icon_fuzzy %}
-                            <tr>
-                                <th style="width: 15%;">Icon Similarity Hash</th>
-                                <td>{{results.static.pe.icon_fuzzy}}</td>
-                            </tr>
-                        {% endif %}
-                        {% if results.static.pe.exported_dll_name %}
-                            <tr>
-                                <th style="width: 15%;">Exported DLL Name</th>
-                                <td>{{results.static.pe.exported_dll_name}}</td>
-                            </tr>
-                        {% endif %}
-                    </table>
-                </div>
-            </div>
-            <hr />
-
-        {% if results.static.pe.versioninfo %}
-            <div>
-                {% if summary_report %}
-                <h4>Version Infos</h4>
-                <div id="pe_versioninfo">
-                {% else %}
-                <h4><a href="javascript:showHide('pe_versioninfo');">Version Infos</a></h4>
-                <div id="pe_versioninfo" style="display: none;">
-                {% endif %}
-                    <table class="table table-striped table-bordered">
-                        <colgroup>
-                            <col width="150" />
-                            <col width="*" />
-                        </colgroup>
-                        {% for info in results.static.pe.versioninfo %}
-                            {% if info.name %}
-                            <tr>
-                                <td><strong>{{info.name}}</strong>:</td>
-                                <td><span class="mono">{{info.value}}</span></td>
-                            </tr>
-                            {% endif %}
-                        {% endfor %}
-                    </table>
-                </div>
-            </div>
-        {% endif %}
-
-       {% if results.static.pe.digital_signers %}
-        <div>
-	    {% if summary_report %}
-            <h4>Digital Signers</h4>
-            <div id="pe_digital_signers">
-	    {% else %}
-            <h4><a href="javascript:showHide('pe_digital_signers');">Digital Signers</a></h4>
-            <div id="pe_digital_signers" style="display: none;">
-	    {% endif %}
-                <table class="table table-striped table-bordered">
-                    <tr>
-                        <th>Certificate Common Name</th>
-                        <th>Serial Number</th>
-                        <th>SHA1 Fingerprint</th>
-                        <th>MD5 Fingerprint</th>
-                    </tr>
-                    {% for info in results.static.pe.digital_signers %}
-                        <tr>
-                            <td>{{info.cn}}</td>
-                            <td>{{info.sn}}</td>
-                            <td>{{info.sha1_fingerprint}}</td>
-                            <td>{{info.md5_fingerprint}}</td>
-                        </tr>
-                    {% endfor %}
-                </table>
-            </div>
-        </div>
-        {% endif %}
-
-        {% if results.static.pe.guest_signers and results.static.pe.guest_signers.aux_signers %}
-        <div>
-	    {% if summary_report %}
-            <h4>Microsoft Certificate Validation (Sign Tool)</h4>
-            <div id="pe_digital_signers_validation">
-	    {% else %}
-            <h4><a href="javascript:showHide('pe_digital_signers_validation');">Microsoft Certificate Validation (Sign Tool)</a></h4>
-            <div id="pe_digital_signers_validation" style="display: none;">
-	    {% endif %}
-                <table class="table table-striped table-bordered">
-                    <tr>
-                        <th width="20%">SHA1</th>
-                        <th width="20%">Timestamp</th>
-                        <th width="5%">Valid</th>
-                        <th width="55%">Error</th>
-                    </tr>
-                    <tr>
-                        <td>{{results.static.pe.guest_signers.aux_sha1}}</td>
-                        <td>{{results.static.pe.guest_signers.aux_timestamp}}</td>
-                        {% if results.static.pe.guest_signers.aux_valid %}
-                        <td><center><span class="label label-success">Yes</span></center></td>
-                        <td>None</td>
-                        {% else %}
-                        <td><center><span class="label label-danger">No</span></center></td>
-                        <td>{{results.static.pe.guest_signers.aux_error_desc}}</td>
-                        {% endif %}
-                    </tr>
-                </table>
-                {% for signer in results.static.pe.guest_signers.aux_signers %}
-                <table class="table table-striped table-bordered">
-                    <colgroup>
-                        <col style="width:15%">
-                        <col style="width:85%">
-                    </colgroup>
-                    <tbody>
-                        <tr>
-                            <td><b>Chain</b></td>
-                            <td>{{signer.name}}</td>
-                        </tr>
-                        <tr>
-                            <td><b>Issued to</b></td>
-			    <td>{{signer['Issued to']}}</td>
-                        </tr>
-                        <tr>
-                            <td><b>Issued by</b></td>
-			    <td>{{signer['Issued by']}}</td>
-                        </tr>
-                        <tr>
-                            <td><b>Expires</b></td>
-			    <td>{{signer.Expires}}</td>
-                        </tr>
-                        <tr>
-                            <td><b>SHA1 Hash</b></td>
-			    <td>{{signer['SHA1 hash']}}</td>
-                        </tr>
-                    </tbody>
-                 </table>
-		{% endfor %}
-            </div>
-        </div>
-        <hr />
-        {% endif %}
-
-        {% if results.static.pe.sections %}
-            <div>
-                {% if summary_report %}
-                <h4>Sections</h4>
-                <div id="pe_sections">
-                {% else %}
-                <h4><a href="javascript:showHide('pe_sections');">Sections</a></h4>
-                <div id="pe_sections" style="display: none;">
-                {% endif %}
-                    <table class="table table-striped table-bordered">
-                        <tr>
-                            <th>Name</th>
-                            <th>Virtual Address</th>
-                            <th>Virtual Size</th>
-                            <th>Size of Raw Data</th>
-                            <th>Characteristics</th>
-                            <th>Entropy</th>
-                        </tr>
-                        {% for section in results.static.pe.sections %}
-                            <tr>
-                                <td>{{section.name}}</td>
-                                <td>{{section.virtual_address}}</td>
-                                <td>{{section.virtual_size}}</td>
-                                <td>{{section.size_of_data}}</td>
-                                <td>{{section.characteristics}}</td>
-                                <td>{{section.entropy}}</td>
-                            </tr>
-                        {% endfor %}
-                    </table>
-                </div>
-            </div>
-        {% endif %}
-
-        {% if results.static.pe.overlay %}
-            <div>
-                {% if summary_report %}
-                <h4>Overlay</h4>
-                <div id="pe_overlay">
-                {% else %}
-                <h4><a href="javascript:showHide('pe_overlay');">Overlay</a></h4>
-                <div id="pe_overlay" style="display: none;">
-                {% endif %}
-                    <table class="table table-striped table-bordered">
-                        <colgroup>
-                            <col width="150" />
-                            <col width="*" />
-                        </colgroup>
-                        <tr>
-                            <td><strong>Offset</strong>:</td>
-                            <td>{{results.static.pe.overlay.offset}}</td>
-                        </tr>
-                        <tr>
-                            <td><strong>Size</strong>:</td>
-                            <td>{{results.static.pe.overlay.size}}</td>
-                        </tr>
-                    </table>
-                </div>
-            </div>
-        {% endif %}
-
-        {% if results.static.pe.resources %}
-            <div>
-                {% if summary_report %}
-                <h4>Resources</h4>
-                <div id="pe_resources">
-                {% else %}
-                <h4><a href="javascript:showHide('pe_resources');">Resources</a></h4>
-                <div id="pe_resources" style="display: none;">
-                {% endif %}
-                    <table class="table table-striped table-bordered">
-                        <tr>
-                            <th>Name</th>
-                            <th>Offset</th>
-                            <th>Size</th>
-                            <th>Language</th>
-                            <th>Sub-language</th>
-                            <th>Entropy</th>
-                            <th>File type</th>
-                        </tr>
-                        {% for section in results.static.pe.resources %}
-                            <tr>
-                                <td>{{section.name}}</td>
-                                <td>{{section.offset}}</td>
-                                <td>{{section.size}}</td>
-                                <td>{{section.language}}</td>
-                                <td>{{section.sublanguage}}</td>
-                                <td>{{section.entropy}}</td>
-                                <td>{{section.filetype}}</td>
-                            </tr>
-                        {% endfor %}
-                    </table>
-                </div>
-            </div>
-        {% endif %}
-
-        {% if results.static.pe.imports %}
-            <div>
-                {% if summary_report %}
-                <h4>Imports</h4>
-                <div id="pe_imports">
-                {% else %}
-                <h4><a href="javascript:showHide('pe_imports');">Imports</a></h4>
-                <div id="pe_imports" style="display: none;">
-                {% endif %}
-                    {% for library in results.static.pe.imports %}
-                        <div class="card">
-                            <div><strong>Library {{library.dll}}</strong>:</div>
-                            {% for function in library.imports %}
-                                <div>&bull; <span class="mono">{{function.address}}</span> - {{function.name}}</div>
-                            {% endfor %}
-                        </div>
-                    {% endfor %}
-                </div>
-            </div>
-        {% endif %}
-
-        {% if results.static.pe.exports %}
-            <div>
-                {% if summary_report %}
-                <h4>Exports</h4>
-                <div id="pe_exports">
-                {% else %}
-                <h4><a href="javascript:showHide('pe_exports');">Exports</a></h4>
-                <div id="pe_exports" style="display: none;">
-                {% endif %}
-                    <table class="table table-striped table-bordered">
-                        <tr>
-                            <th>Ordinal</th>
-                            <th>Address</th>
-                            <th>Name</th>
-                        </tr>
-                        {% for export in results.static.pe.exports %}
-                            <tr>
-                                <td>{{export.ordinal}}</td>
-                                <td>{{export.address}}</td>
-                                <td>{{export.name}}</td>
-                            </tr>
-                        {% endfor %}
-                    </table>
-                </div>
-            </div>
-        {% endif %}
-    {% endif %}
-
-    {% if results.strings and not summary_report %}
-            <div>
-                <h4><a href="javascript:showHide('strings');">Strings</a></h4>
-                <div id="strings" style="display: none;">
-                    {% for str in results.strings %}
-                        <div><span class="mono">{{str}}</span></div>
-                    {% endfor %}
-                </div> 
-            </div>
-    {% endif %}
-
-    {% if not results.strings and not results.static %}
-        Nothing to display.
-    {% endif %}
-</section>
diff --git a/data/html/sections/url.html b/data/html/sections/url.html
index 3ee7d549880..3428a2ccfa8 100644
--- a/data/html/sections/url.html
+++ b/data/html/sections/url.html
@@ -9,7 +9,7 @@ <h4>URL Details</h4>
         </colgroup>
         <tr>
             <th>URL</th>
-            <td><span class="mono">{{results.target.url}}</span></td>
+            <td><span class="mono">{{results.url_analysis.url}}</span></td>
         </tr>
         <tr>
             <th>VirusTotal</th>
diff --git a/data/html/sections/volatility.html b/data/html/sections/volatility.html
index 26de2f3e8b0..bef574e1493 100644
--- a/data/html/sections/volatility.html
+++ b/data/html/sections/volatility.html
@@ -1,10 +1,10 @@
-{% if not summary_report %}        
+{% if not summary_report %}
 <section id="volatility">
     <div class="section-title">
         <h4>Volatility</h4>
     </div>
 
-    {% if results.memory %}        
+    {% if results.memory %}
 
         <!-- Malfind -->
         <div class="card card-body">
diff --git a/data/html/statistics.html b/data/html/statistics.html
index 4492a28378f..3d84d95be7f 100644
--- a/data/html/statistics.html
+++ b/data/html/statistics.html
@@ -15,4 +15,4 @@ <h2>{{he}}</h2>
             </div>
         </div>
     </div>
-{% endblock %}
\ No newline at end of file
+{% endblock %}
diff --git a/data/html/success.html b/data/html/success.html
index 0408a695f21..6e8f10fd57c 100644
--- a/data/html/success.html
+++ b/data/html/success.html
@@ -8,4 +8,4 @@ <h3>New Analysis</h3>
             <strong>GOOD!</strong> File {{submitfile}} was submitted for analysis with Task ID <a href="/view/{{taskid}}">{{taskid}}</a>.
         </div>
     </div>
-{% endblock %}
\ No newline at end of file
+{% endblock %}
diff --git a/data/linux/linux-syscalls.json b/data/linux/linux-syscalls.json
new file mode 100644
index 00000000000..71381eaed2f
--- /dev/null
+++ b/data/linux/linux-syscalls.json
@@ -0,0 +1,6181 @@
+{
+    "_sourcefile": "https://raw.githubusercontent.com/mebeim/linux-syscalls/master/db/x86/64/x64/v6.5/table.json",
+	"kernel": {
+		"abi": {
+			"bits": 64,
+			"calling_convention": {
+				"parameters": [
+					"rdi",
+					"rsi",
+					"rdx",
+					"r10",
+					"r8",
+					"r9"
+				],
+				"syscall_nr": "rax"
+			},
+			"compat": false,
+			"name": "x64"
+		},
+		"architecture": {
+			"bits": 64,
+			"name": "x86"
+		},
+		"syscall_table_symbol": "sys_call_table",
+		"version": "v6.5",
+		"version_source": "vmlinux"
+	},
+	"syscalls": [
+		{
+			"esoteric": false,
+			"file": "fs/read_write.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 0,
+			"kconfig": null,
+			"line": 621,
+			"name": "read",
+			"number": 0,
+			"origname": "read",
+			"signature": [
+				"unsigned int fd",
+				"char *buf",
+				"size_t count"
+			],
+			"symbol": "__x64_sys_read"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/read_write.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 1,
+			"kconfig": null,
+			"line": 646,
+			"name": "write",
+			"number": 1,
+			"origname": "write",
+			"signature": [
+				"unsigned int fd",
+				"const char *buf",
+				"size_t count"
+			],
+			"symbol": "__x64_sys_write"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/open.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 2,
+			"kconfig": null,
+			"line": 1426,
+			"name": "open",
+			"number": 2,
+			"origname": "open",
+			"signature": [
+				"const char *filename",
+				"int flags",
+				"umode_t mode"
+			],
+			"symbol": "__x64_sys_open"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/open.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 3,
+			"kconfig": null,
+			"line": 1534,
+			"name": "close",
+			"number": 3,
+			"origname": "close",
+			"signature": [
+				"unsigned int fd"
+			],
+			"symbol": "__x64_sys_close"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/stat.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 4,
+			"kconfig": null,
+			"line": 415,
+			"name": "newstat",
+			"number": 4,
+			"origname": "newstat",
+			"signature": [
+				"const char *filename",
+				"struct stat *statbuf"
+			],
+			"symbol": "__x64_sys_newstat"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/stat.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 5,
+			"kconfig": null,
+			"line": 453,
+			"name": "newfstat",
+			"number": 5,
+			"origname": "newfstat",
+			"signature": [
+				"unsigned int fd",
+				"struct stat *statbuf"
+			],
+			"symbol": "__x64_sys_newfstat"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/stat.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 6,
+			"kconfig": null,
+			"line": 426,
+			"name": "newlstat",
+			"number": 6,
+			"origname": "newlstat",
+			"signature": [
+				"const char *filename",
+				"struct stat *statbuf"
+			],
+			"symbol": "__x64_sys_newlstat"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/select.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 7,
+			"kconfig": null,
+			"line": 1068,
+			"name": "poll",
+			"number": 7,
+			"origname": "poll",
+			"signature": [
+				"struct pollfd *ufds",
+				"unsigned int nfds",
+				"int timeout_msecs"
+			],
+			"symbol": "__x64_sys_poll"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/read_write.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 8,
+			"kconfig": null,
+			"line": 311,
+			"name": "lseek",
+			"number": 8,
+			"origname": "lseek",
+			"signature": [
+				"unsigned int fd",
+				"off_t offset",
+				"unsigned int whence"
+			],
+			"symbol": "__x64_sys_lseek"
+		},
+		{
+			"esoteric": false,
+			"file": "arch/x86/kernel/sys_x86_64.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 9,
+			"kconfig": null,
+			"line": 86,
+			"name": "mmap",
+			"number": 9,
+			"origname": "mmap",
+			"signature": [
+				"unsigned long addr",
+				"unsigned long len",
+				"unsigned long prot",
+				"unsigned long flags",
+				"unsigned long fd",
+				"unsigned long off"
+			],
+			"symbol": "__x64_sys_mmap"
+		},
+		{
+			"esoteric": false,
+			"file": "mm/mprotect.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 10,
+			"kconfig": "MMU",
+			"line": 836,
+			"name": "mprotect",
+			"number": 10,
+			"origname": "mprotect",
+			"signature": [
+				"unsigned long start",
+				"size_t len",
+				"unsigned long prot"
+			],
+			"symbol": "__x64_sys_mprotect"
+		},
+		{
+			"esoteric": false,
+			"file": "mm/mmap.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 11,
+			"kconfig": null,
+			"line": 2920,
+			"name": "munmap",
+			"number": 11,
+			"origname": "munmap",
+			"signature": [
+				"unsigned long addr",
+				"size_t len"
+			],
+			"symbol": "__x64_sys_munmap"
+		},
+		{
+			"esoteric": false,
+			"file": "mm/mmap.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 12,
+			"kconfig": null,
+			"line": 190,
+			"name": "brk",
+			"number": 12,
+			"origname": "brk",
+			"signature": [
+				"unsigned long brk"
+			],
+			"symbol": "__x64_sys_brk"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/signal.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 13,
+			"kconfig": null,
+			"line": 4435,
+			"name": "rt_sigaction",
+			"number": 13,
+			"origname": "rt_sigaction",
+			"signature": [
+				"int sig",
+				"const struct sigaction *act",
+				"struct sigaction *oact",
+				"size_t sigsetsize"
+			],
+			"symbol": "__x64_sys_rt_sigaction"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/signal.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 14,
+			"kconfig": null,
+			"line": 3166,
+			"name": "rt_sigprocmask",
+			"number": 14,
+			"origname": "rt_sigprocmask",
+			"signature": [
+				"int how",
+				"sigset_t *nset",
+				"sigset_t *oset",
+				"size_t sigsetsize"
+			],
+			"symbol": "__x64_sys_rt_sigprocmask"
+		},
+		{
+			"esoteric": false,
+			"file": "arch/x86/kernel/signal_64.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 15,
+			"kconfig": null,
+			"line": 243,
+			"name": "rt_sigreturn",
+			"number": 15,
+			"origname": "rt_sigreturn",
+			"signature": [],
+			"symbol": "__x64_sys_rt_sigreturn"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/ioctl.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 16,
+			"kconfig": null,
+			"line": 856,
+			"name": "ioctl",
+			"number": 16,
+			"origname": "ioctl",
+			"signature": [
+				"unsigned int fd",
+				"unsigned int cmd",
+				"unsigned long arg"
+			],
+			"symbol": "__x64_sys_ioctl"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/read_write.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 17,
+			"kconfig": null,
+			"line": 672,
+			"name": "pread64",
+			"number": 17,
+			"origname": "pread64",
+			"signature": [
+				"unsigned int fd",
+				"char *buf",
+				"size_t count",
+				"loff_t pos"
+			],
+			"symbol": "__x64_sys_pread64"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/read_write.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 18,
+			"kconfig": null,
+			"line": 706,
+			"name": "pwrite64",
+			"number": 18,
+			"origname": "pwrite64",
+			"signature": [
+				"unsigned int fd",
+				"const char *buf",
+				"size_t count",
+				"loff_t pos"
+			],
+			"symbol": "__x64_sys_pwrite64"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/read_write.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 19,
+			"kconfig": null,
+			"line": 1040,
+			"name": "readv",
+			"number": 19,
+			"origname": "readv",
+			"signature": [
+				"unsigned long fd",
+				"const struct iovec *vec",
+				"unsigned long vlen"
+			],
+			"symbol": "__x64_sys_readv"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/read_write.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 20,
+			"kconfig": null,
+			"line": 1046,
+			"name": "writev",
+			"number": 20,
+			"origname": "writev",
+			"signature": [
+				"unsigned long fd",
+				"const struct iovec *vec",
+				"unsigned long vlen"
+			],
+			"symbol": "__x64_sys_writev"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/open.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 21,
+			"kconfig": null,
+			"line": 540,
+			"name": "access",
+			"number": 21,
+			"origname": "access",
+			"signature": [
+				"const char *filename",
+				"int mode"
+			],
+			"symbol": "__x64_sys_access"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/pipe.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 22,
+			"kconfig": null,
+			"line": 1036,
+			"name": "pipe",
+			"number": 22,
+			"origname": "pipe",
+			"signature": [
+				"int *fildes"
+			],
+			"symbol": "__x64_sys_pipe"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/select.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 23,
+			"kconfig": null,
+			"line": 726,
+			"name": "select",
+			"number": 23,
+			"origname": "select",
+			"signature": [
+				"int n",
+				"fd_set *inp",
+				"fd_set *outp",
+				"fd_set *exp",
+				"struct __kernel_old_timeval *tvp"
+			],
+			"symbol": "__x64_sys_select"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sched/core.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 24,
+			"kconfig": null,
+			"line": 8555,
+			"name": "sched_yield",
+			"number": 24,
+			"origname": "sched_yield",
+			"signature": [],
+			"symbol": "__x64_sys_sched_yield"
+		},
+		{
+			"esoteric": false,
+			"file": "mm/mremap.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 25,
+			"kconfig": null,
+			"line": 908,
+			"name": "mremap",
+			"number": 25,
+			"origname": "mremap",
+			"signature": [
+				"unsigned long addr",
+				"unsigned long old_len",
+				"unsigned long new_len",
+				"unsigned long flags",
+				"unsigned long new_addr"
+			],
+			"symbol": "__x64_sys_mremap"
+		},
+		{
+			"esoteric": false,
+			"file": "mm/msync.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 26,
+			"kconfig": "MMU",
+			"line": 32,
+			"name": "msync",
+			"number": 26,
+			"origname": "msync",
+			"signature": [
+				"unsigned long start",
+				"size_t len",
+				"int flags"
+			],
+			"symbol": "__x64_sys_msync"
+		},
+		{
+			"esoteric": false,
+			"file": "mm/mincore.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 27,
+			"kconfig": "MMU",
+			"line": 232,
+			"name": "mincore",
+			"number": 27,
+			"origname": "mincore",
+			"signature": [
+				"unsigned long start",
+				"size_t len",
+				"unsigned char *vec"
+			],
+			"symbol": "__x64_sys_mincore"
+		},
+		{
+			"esoteric": false,
+			"file": "mm/madvise.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 28,
+			"kconfig": "ADVISE_SYSCALLS",
+			"line": 1458,
+			"name": "madvise",
+			"number": 28,
+			"origname": "madvise",
+			"signature": [
+				"unsigned long start",
+				"size_t len_in",
+				"int behavior"
+			],
+			"symbol": "__x64_sys_madvise"
+		},
+		{
+			"esoteric": false,
+			"file": "ipc/shm.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 29,
+			"kconfig": "SYSVIPC",
+			"line": 850,
+			"name": "shmget",
+			"number": 29,
+			"origname": "shmget",
+			"signature": [
+				"key_t key",
+				"size_t size",
+				"int shmflg"
+			],
+			"symbol": "__x64_sys_shmget"
+		},
+		{
+			"esoteric": false,
+			"file": "ipc/shm.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 30,
+			"kconfig": "SYSVIPC",
+			"line": 1696,
+			"name": "shmat",
+			"number": 30,
+			"origname": "shmat",
+			"signature": [
+				"int shmid",
+				"char *shmaddr",
+				"int shmflg"
+			],
+			"symbol": "__x64_sys_shmat"
+		},
+		{
+			"esoteric": false,
+			"file": "ipc/shm.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 31,
+			"kconfig": "SYSVIPC",
+			"line": 1299,
+			"name": "shmctl",
+			"number": 31,
+			"origname": "shmctl",
+			"signature": [
+				"int shmid",
+				"int cmd",
+				"struct shmid_ds *buf"
+			],
+			"symbol": "__x64_sys_shmctl"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/file.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 32,
+			"kconfig": null,
+			"line": 1284,
+			"name": "dup",
+			"number": 32,
+			"origname": "dup",
+			"signature": [
+				"unsigned int fildes"
+			],
+			"symbol": "__x64_sys_dup"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/file.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 33,
+			"kconfig": null,
+			"line": 1269,
+			"name": "dup2",
+			"number": 33,
+			"origname": "dup2",
+			"signature": [
+				"unsigned int oldfd",
+				"unsigned int newfd"
+			],
+			"symbol": "__x64_sys_dup2"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/signal.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 34,
+			"kconfig": null,
+			"line": 4628,
+			"name": "pause",
+			"number": 34,
+			"origname": "pause",
+			"signature": [],
+			"symbol": "__x64_sys_pause"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/time/hrtimer.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 35,
+			"kconfig": null,
+			"line": 2121,
+			"name": "nanosleep",
+			"number": 35,
+			"origname": "nanosleep",
+			"signature": [
+				"struct __kernel_timespec *rqtp",
+				"struct __kernel_timespec *rmtp"
+			],
+			"symbol": "__x64_sys_nanosleep"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/time/itimer.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 36,
+			"kconfig": null,
+			"line": 113,
+			"name": "getitimer",
+			"number": 36,
+			"origname": "getitimer",
+			"signature": [
+				"int which",
+				"struct __kernel_old_itimerval *value"
+			],
+			"symbol": "__x64_sys_getitimer"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/time/itimer.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 37,
+			"kconfig": null,
+			"line": 306,
+			"name": "alarm",
+			"number": 37,
+			"origname": "alarm",
+			"signature": [
+				"unsigned int seconds"
+			],
+			"symbol": "__x64_sys_alarm"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/time/itimer.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 38,
+			"kconfig": null,
+			"line": 332,
+			"name": "setitimer",
+			"number": 38,
+			"origname": "setitimer",
+			"signature": [
+				"int which",
+				"struct __kernel_old_itimerval *value",
+				"struct __kernel_old_itimerval *ovalue"
+			],
+			"symbol": "__x64_sys_setitimer"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sys.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 39,
+			"kconfig": null,
+			"line": 958,
+			"name": "getpid",
+			"number": 39,
+			"origname": "getpid",
+			"signature": [],
+			"symbol": "__x64_sys_getpid"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/read_write.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 40,
+			"kconfig": null,
+			"line": 1308,
+			"name": "sendfile64",
+			"number": 40,
+			"origname": "sendfile64",
+			"signature": [
+				"int out_fd",
+				"int in_fd",
+				"loff_t *offset",
+				"size_t count"
+			],
+			"symbol": "__x64_sys_sendfile64"
+		},
+		{
+			"esoteric": false,
+			"file": "net/socket.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 41,
+			"kconfig": "NET",
+			"line": 1663,
+			"name": "socket",
+			"number": 41,
+			"origname": "socket",
+			"signature": [
+				"int family",
+				"int type",
+				"int protocol"
+			],
+			"symbol": "__x64_sys_socket"
+		},
+		{
+			"esoteric": false,
+			"file": "net/socket.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 42,
+			"kconfig": "NET",
+			"line": 2016,
+			"name": "connect",
+			"number": 42,
+			"origname": "connect",
+			"signature": [
+				"int fd",
+				"struct sockaddr *uservaddr",
+				"int addrlen"
+			],
+			"symbol": "__x64_sys_connect"
+		},
+		{
+			"esoteric": false,
+			"file": "net/socket.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 43,
+			"kconfig": "NET",
+			"line": 1957,
+			"name": "accept",
+			"number": 43,
+			"origname": "accept",
+			"signature": [
+				"int fd",
+				"struct sockaddr *upeer_sockaddr",
+				"int *upeer_addrlen"
+			],
+			"symbol": "__x64_sys_accept"
+		},
+		{
+			"esoteric": false,
+			"file": "net/socket.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 44,
+			"kconfig": "NET",
+			"line": 2142,
+			"name": "sendto",
+			"number": 44,
+			"origname": "sendto",
+			"signature": [
+				"int fd",
+				"void *buff",
+				"size_t len",
+				"unsigned int flags",
+				"struct sockaddr *addr",
+				"int addr_len"
+			],
+			"symbol": "__x64_sys_sendto"
+		},
+		{
+			"esoteric": false,
+			"file": "net/socket.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 45,
+			"kconfig": "NET",
+			"line": 2200,
+			"name": "recvfrom",
+			"number": 45,
+			"origname": "recvfrom",
+			"signature": [
+				"int fd",
+				"void *ubuf",
+				"size_t size",
+				"unsigned int flags",
+				"struct sockaddr *addr",
+				"int *addr_len"
+			],
+			"symbol": "__x64_sys_recvfrom"
+		},
+		{
+			"esoteric": false,
+			"file": "net/socket.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 46,
+			"kconfig": "NET",
+			"line": 2584,
+			"name": "sendmsg",
+			"number": 46,
+			"origname": "sendmsg",
+			"signature": [
+				"int fd",
+				"struct user_msghdr *msg",
+				"unsigned int flags"
+			],
+			"symbol": "__x64_sys_sendmsg"
+		},
+		{
+			"esoteric": false,
+			"file": "net/socket.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 47,
+			"kconfig": "NET",
+			"line": 2792,
+			"name": "recvmsg",
+			"number": 47,
+			"origname": "recvmsg",
+			"signature": [
+				"int fd",
+				"struct user_msghdr *msg",
+				"unsigned int flags"
+			],
+			"symbol": "__x64_sys_recvmsg"
+		},
+		{
+			"esoteric": false,
+			"file": "net/socket.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 48,
+			"kconfig": "NET",
+			"line": 2353,
+			"name": "shutdown",
+			"number": 48,
+			"origname": "shutdown",
+			"signature": [
+				"int fd",
+				"int how"
+			],
+			"symbol": "__x64_sys_shutdown"
+		},
+		{
+			"esoteric": false,
+			"file": "net/socket.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 49,
+			"kconfig": "NET",
+			"line": 1801,
+			"name": "bind",
+			"number": 49,
+			"origname": "bind",
+			"signature": [
+				"int fd",
+				"struct sockaddr *umyaddr",
+				"int addrlen"
+			],
+			"symbol": "__x64_sys_bind"
+		},
+		{
+			"esoteric": false,
+			"file": "net/socket.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 50,
+			"kconfig": "NET",
+			"line": 1833,
+			"name": "listen",
+			"number": 50,
+			"origname": "listen",
+			"signature": [
+				"int fd",
+				"int backlog"
+			],
+			"symbol": "__x64_sys_listen"
+		},
+		{
+			"esoteric": false,
+			"file": "net/socket.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 51,
+			"kconfig": "NET",
+			"line": 2054,
+			"name": "getsockname",
+			"number": 51,
+			"origname": "getsockname",
+			"signature": [
+				"int fd",
+				"struct sockaddr *usockaddr",
+				"int *usockaddr_len"
+			],
+			"symbol": "__x64_sys_getsockname"
+		},
+		{
+			"esoteric": false,
+			"file": "net/socket.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 52,
+			"kconfig": "NET",
+			"line": 2090,
+			"name": "getpeername",
+			"number": 52,
+			"origname": "getpeername",
+			"signature": [
+				"int fd",
+				"struct sockaddr *usockaddr",
+				"int *usockaddr_len"
+			],
+			"symbol": "__x64_sys_getpeername"
+		},
+		{
+			"esoteric": false,
+			"file": "net/socket.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 53,
+			"kconfig": "NET",
+			"line": 1764,
+			"name": "socketpair",
+			"number": 53,
+			"origname": "socketpair",
+			"signature": [
+				"int family",
+				"int type",
+				"int protocol",
+				"int *usockvec"
+			],
+			"symbol": "__x64_sys_socketpair"
+		},
+		{
+			"esoteric": false,
+			"file": "net/socket.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 54,
+			"kconfig": "NET",
+			"line": 2271,
+			"name": "setsockopt",
+			"number": 54,
+			"origname": "setsockopt",
+			"signature": [
+				"int fd",
+				"int level",
+				"int optname",
+				"char *optval",
+				"int optlen"
+			],
+			"symbol": "__x64_sys_setsockopt"
+		},
+		{
+			"esoteric": false,
+			"file": "net/socket.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 55,
+			"kconfig": "NET",
+			"line": 2319,
+			"name": "getsockopt",
+			"number": 55,
+			"origname": "getsockopt",
+			"signature": [
+				"int fd",
+				"int level",
+				"int optname",
+				"char *optval",
+				"int *optlen"
+			],
+			"symbol": "__x64_sys_getsockopt"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/fork.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 56,
+			"kconfig": null,
+			"line": 3039,
+			"name": "clone",
+			"number": 56,
+			"origname": "clone",
+			"signature": [
+				"unsigned long clone_flags",
+				"unsigned long newsp",
+				"int *parent_tidptr",
+				"int *child_tidptr",
+				"unsigned long tls"
+			],
+			"symbol": "__x64_sys_clone"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/fork.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 57,
+			"kconfig": "MMU",
+			"line": 2994,
+			"name": "fork",
+			"number": 57,
+			"origname": "fork",
+			"signature": [],
+			"symbol": "__x64_sys_fork"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/fork.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 58,
+			"kconfig": null,
+			"line": 3010,
+			"name": "vfork",
+			"number": 58,
+			"origname": "vfork",
+			"signature": [],
+			"symbol": "__x64_sys_vfork"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/exec.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 59,
+			"kconfig": null,
+			"line": 2108,
+			"name": "execve",
+			"number": 59,
+			"origname": "execve",
+			"signature": [
+				"const char *filename",
+				"const char *const *argv",
+				"const char *const *envp"
+			],
+			"symbol": "__x64_sys_execve"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/exit.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 60,
+			"kconfig": null,
+			"line": 989,
+			"name": "exit",
+			"number": 60,
+			"origname": "exit",
+			"signature": [
+				"int error_code"
+			],
+			"symbol": "__x64_sys_exit"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/exit.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 61,
+			"kconfig": null,
+			"line": 1804,
+			"name": "wait4",
+			"number": 61,
+			"origname": "wait4",
+			"signature": [
+				"pid_t upid",
+				"int *stat_addr",
+				"int options",
+				"struct rusage *ru"
+			],
+			"symbol": "__x64_sys_wait4"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/signal.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 62,
+			"kconfig": null,
+			"line": 3796,
+			"name": "kill",
+			"number": 62,
+			"origname": "kill",
+			"signature": [
+				"pid_t pid",
+				"int sig"
+			],
+			"symbol": "__x64_sys_kill"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sys.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 63,
+			"kconfig": null,
+			"line": 1306,
+			"name": "newuname",
+			"number": 63,
+			"origname": "newuname",
+			"signature": [
+				"struct new_utsname *name"
+			],
+			"symbol": "__x64_sys_newuname"
+		},
+		{
+			"esoteric": false,
+			"file": "ipc/sem.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 64,
+			"kconfig": "SYSVIPC",
+			"line": 624,
+			"name": "semget",
+			"number": 64,
+			"origname": "semget",
+			"signature": [
+				"key_t key",
+				"int nsems",
+				"int semflg"
+			],
+			"symbol": "__x64_sys_semget"
+		},
+		{
+			"esoteric": false,
+			"file": "ipc/sem.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 65,
+			"kconfig": "SYSVIPC",
+			"line": 2298,
+			"name": "semop",
+			"number": 65,
+			"origname": "semop",
+			"signature": [
+				"int semid",
+				"struct sembuf *tsops",
+				"unsigned nsops"
+			],
+			"symbol": "__x64_sys_semop"
+		},
+		{
+			"esoteric": false,
+			"file": "ipc/sem.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 66,
+			"kconfig": "SYSVIPC",
+			"line": 1705,
+			"name": "semctl",
+			"number": 66,
+			"origname": "semctl",
+			"signature": [
+				"int semid",
+				"int semnum",
+				"int cmd",
+				"unsigned long arg"
+			],
+			"symbol": "__x64_sys_semctl"
+		},
+		{
+			"esoteric": false,
+			"file": "ipc/shm.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 67,
+			"kconfig": "SYSVIPC",
+			"line": 1837,
+			"name": "shmdt",
+			"number": 67,
+			"origname": "shmdt",
+			"signature": [
+				"char *shmaddr"
+			],
+			"symbol": "__x64_sys_shmdt"
+		},
+		{
+			"esoteric": false,
+			"file": "ipc/msg.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 68,
+			"kconfig": "SYSVIPC",
+			"line": 315,
+			"name": "msgget",
+			"number": 68,
+			"origname": "msgget",
+			"signature": [
+				"key_t key",
+				"int msgflg"
+			],
+			"symbol": "__x64_sys_msgget"
+		},
+		{
+			"esoteric": false,
+			"file": "ipc/msg.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 69,
+			"kconfig": "SYSVIPC",
+			"line": 971,
+			"name": "msgsnd",
+			"number": 69,
+			"origname": "msgsnd",
+			"signature": [
+				"int msqid",
+				"struct msgbuf *msgp",
+				"size_t msgsz",
+				"int msgflg"
+			],
+			"symbol": "__x64_sys_msgsnd"
+		},
+		{
+			"esoteric": false,
+			"file": "ipc/msg.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 70,
+			"kconfig": "SYSVIPC",
+			"line": 1270,
+			"name": "msgrcv",
+			"number": 70,
+			"origname": "msgrcv",
+			"signature": [
+				"int msqid",
+				"struct msgbuf *msgp",
+				"size_t msgsz",
+				"long msgtyp",
+				"int msgflg"
+			],
+			"symbol": "__x64_sys_msgrcv"
+		},
+		{
+			"esoteric": false,
+			"file": "ipc/msg.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 71,
+			"kconfig": "SYSVIPC",
+			"line": 640,
+			"name": "msgctl",
+			"number": 71,
+			"origname": "msgctl",
+			"signature": [
+				"int msqid",
+				"int cmd",
+				"struct msqid_ds *buf"
+			],
+			"symbol": "__x64_sys_msgctl"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/fcntl.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 72,
+			"kconfig": null,
+			"line": 440,
+			"name": "fcntl",
+			"number": 72,
+			"origname": "fcntl",
+			"signature": [
+				"unsigned int fd",
+				"unsigned int cmd",
+				"unsigned long arg"
+			],
+			"symbol": "__x64_sys_fcntl"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/locks.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 73,
+			"kconfig": null,
+			"line": 2061,
+			"name": "flock",
+			"number": 73,
+			"origname": "flock",
+			"signature": [
+				"unsigned int fd",
+				"unsigned int cmd"
+			],
+			"symbol": "__x64_sys_flock"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/sync.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 74,
+			"kconfig": null,
+			"line": 218,
+			"name": "fsync",
+			"number": 74,
+			"origname": "fsync",
+			"signature": [
+				"unsigned int fd"
+			],
+			"symbol": "__x64_sys_fsync"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/sync.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 75,
+			"kconfig": null,
+			"line": 223,
+			"name": "fdatasync",
+			"number": 75,
+			"origname": "fdatasync",
+			"signature": [
+				"unsigned int fd"
+			],
+			"symbol": "__x64_sys_fdatasync"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/open.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 76,
+			"kconfig": null,
+			"line": 145,
+			"name": "truncate",
+			"number": 76,
+			"origname": "truncate",
+			"signature": [
+				"const char *path",
+				"long length"
+			],
+			"symbol": "__x64_sys_truncate"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/open.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 77,
+			"kconfig": null,
+			"line": 203,
+			"name": "ftruncate",
+			"number": 77,
+			"origname": "ftruncate",
+			"signature": [
+				"unsigned int fd",
+				"unsigned long length"
+			],
+			"symbol": "__x64_sys_ftruncate"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/readdir.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 78,
+			"kconfig": null,
+			"line": 307,
+			"name": "getdents",
+			"number": 78,
+			"origname": "getdents",
+			"signature": [
+				"unsigned int fd",
+				"struct linux_dirent *dirent",
+				"unsigned int count"
+			],
+			"symbol": "__x64_sys_getdents"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/d_path.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 79,
+			"kconfig": null,
+			"line": 412,
+			"name": "getcwd",
+			"number": 79,
+			"origname": "getcwd",
+			"signature": [
+				"char *buf",
+				"unsigned long size"
+			],
+			"symbol": "__x64_sys_getcwd"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/open.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 80,
+			"kconfig": null,
+			"line": 545,
+			"name": "chdir",
+			"number": 80,
+			"origname": "chdir",
+			"signature": [
+				"const char *filename"
+			],
+			"symbol": "__x64_sys_chdir"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/open.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 81,
+			"kconfig": null,
+			"line": 571,
+			"name": "fchdir",
+			"number": 81,
+			"origname": "fchdir",
+			"signature": [
+				"unsigned int fd"
+			],
+			"symbol": "__x64_sys_fchdir"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/namei.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 82,
+			"kconfig": null,
+			"line": 5053,
+			"name": "rename",
+			"number": 82,
+			"origname": "rename",
+			"signature": [
+				"const char *oldname",
+				"const char *newname"
+			],
+			"symbol": "__x64_sys_rename"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/namei.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 83,
+			"kconfig": null,
+			"line": 4158,
+			"name": "mkdir",
+			"number": 83,
+			"origname": "mkdir",
+			"signature": [
+				"const char *pathname",
+				"umode_t mode"
+			],
+			"symbol": "__x64_sys_mkdir"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/namei.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 84,
+			"kconfig": null,
+			"line": 4276,
+			"name": "rmdir",
+			"number": 84,
+			"origname": "rmdir",
+			"signature": [
+				"const char *pathname"
+			],
+			"symbol": "__x64_sys_rmdir"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/open.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 85,
+			"kconfig": null,
+			"line": 1492,
+			"name": "creat",
+			"number": 85,
+			"origname": "creat",
+			"signature": [
+				"const char *pathname",
+				"umode_t mode"
+			],
+			"symbol": "__x64_sys_creat"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/namei.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 86,
+			"kconfig": null,
+			"line": 4704,
+			"name": "link",
+			"number": 86,
+			"origname": "link",
+			"signature": [
+				"const char *oldname",
+				"const char *newname"
+			],
+			"symbol": "__x64_sys_link"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/namei.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 87,
+			"kconfig": null,
+			"line": 4441,
+			"name": "unlink",
+			"number": 87,
+			"origname": "unlink",
+			"signature": [
+				"const char *pathname"
+			],
+			"symbol": "__x64_sys_unlink"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/namei.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 88,
+			"kconfig": null,
+			"line": 4522,
+			"name": "symlink",
+			"number": 88,
+			"origname": "symlink",
+			"signature": [
+				"const char *oldname",
+				"const char *newname"
+			],
+			"symbol": "__x64_sys_symlink"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/stat.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 89,
+			"kconfig": null,
+			"line": 507,
+			"name": "readlink",
+			"number": 89,
+			"origname": "readlink",
+			"signature": [
+				"const char *path",
+				"char *buf",
+				"int bufsiz"
+			],
+			"symbol": "__x64_sys_readlink"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/open.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 90,
+			"kconfig": null,
+			"line": 698,
+			"name": "chmod",
+			"number": 90,
+			"origname": "chmod",
+			"signature": [
+				"const char *filename",
+				"umode_t mode"
+			],
+			"symbol": "__x64_sys_chmod"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/open.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 91,
+			"kconfig": null,
+			"line": 662,
+			"name": "fchmod",
+			"number": 91,
+			"origname": "fchmod",
+			"signature": [
+				"unsigned int fd",
+				"umode_t mode"
+			],
+			"symbol": "__x64_sys_fchmod"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/open.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 92,
+			"kconfig": null,
+			"line": 817,
+			"name": "chown",
+			"number": 92,
+			"origname": "chown",
+			"signature": [
+				"const char *filename",
+				"uid_t user",
+				"gid_t group"
+			],
+			"symbol": "__x64_sys_chown"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/open.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 93,
+			"kconfig": null,
+			"line": 853,
+			"name": "fchown",
+			"number": 93,
+			"origname": "fchown",
+			"signature": [
+				"unsigned int fd",
+				"uid_t user",
+				"gid_t group"
+			],
+			"symbol": "__x64_sys_fchown"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/open.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 94,
+			"kconfig": null,
+			"line": 822,
+			"name": "lchown",
+			"number": 94,
+			"origname": "lchown",
+			"signature": [
+				"const char *filename",
+				"uid_t user",
+				"gid_t group"
+			],
+			"symbol": "__x64_sys_lchown"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sys.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 95,
+			"kconfig": null,
+			"line": 1884,
+			"name": "umask",
+			"number": 95,
+			"origname": "umask",
+			"signature": [
+				"int mask"
+			],
+			"symbol": "__x64_sys_umask"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/time/time.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 96,
+			"kconfig": null,
+			"line": 140,
+			"name": "gettimeofday",
+			"number": 96,
+			"origname": "gettimeofday",
+			"signature": [
+				"struct __kernel_old_timeval *tv",
+				"struct timezone *tz"
+			],
+			"symbol": "__x64_sys_gettimeofday"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sys.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 97,
+			"kconfig": null,
+			"line": 1518,
+			"name": "getrlimit",
+			"number": 97,
+			"origname": "getrlimit",
+			"signature": [
+				"unsigned int resource",
+				"struct rlimit *rlim"
+			],
+			"symbol": "__x64_sys_getrlimit"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sys.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 98,
+			"kconfig": null,
+			"line": 1858,
+			"name": "getrusage",
+			"number": 98,
+			"origname": "getrusage",
+			"signature": [
+				"int who",
+				"struct rusage *ru"
+			],
+			"symbol": "__x64_sys_getrusage"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sys.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 99,
+			"kconfig": null,
+			"line": 2810,
+			"name": "sysinfo",
+			"number": 99,
+			"origname": "sysinfo",
+			"signature": [
+				"struct sysinfo *info"
+			],
+			"symbol": "__x64_sys_sysinfo"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sys.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 100,
+			"kconfig": null,
+			"line": 1023,
+			"name": "times",
+			"number": 100,
+			"origname": "times",
+			"signature": [
+				"struct tms *tbuf"
+			],
+			"symbol": "__x64_sys_times"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/ptrace.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 101,
+			"kconfig": null,
+			"line": 1278,
+			"name": "ptrace",
+			"number": 101,
+			"origname": "ptrace",
+			"signature": [
+				"long request",
+				"long pid",
+				"unsigned long addr",
+				"unsigned long data"
+			],
+			"symbol": "__x64_sys_ptrace"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sys.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 102,
+			"kconfig": null,
+			"line": 986,
+			"name": "getuid",
+			"number": 102,
+			"origname": "getuid",
+			"signature": [],
+			"symbol": "__x64_sys_getuid"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/printk/printk.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 103,
+			"kconfig": null,
+			"line": 1822,
+			"name": "syslog",
+			"number": 103,
+			"origname": "syslog",
+			"signature": [
+				"int type",
+				"char *buf",
+				"int len"
+			],
+			"symbol": "__x64_sys_syslog"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sys.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 104,
+			"kconfig": null,
+			"line": 998,
+			"name": "getgid",
+			"number": 104,
+			"origname": "getgid",
+			"signature": [],
+			"symbol": "__x64_sys_getgid"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sys.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 105,
+			"kconfig": "MULTIUSER",
+			"line": 657,
+			"name": "setuid",
+			"number": 105,
+			"origname": "setuid",
+			"signature": [
+				"uid_t uid"
+			],
+			"symbol": "__x64_sys_setuid"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sys.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 106,
+			"kconfig": "MULTIUSER",
+			"line": 474,
+			"name": "setgid",
+			"number": 106,
+			"origname": "setgid",
+			"signature": [
+				"gid_t gid"
+			],
+			"symbol": "__x64_sys_setgid"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sys.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 107,
+			"kconfig": null,
+			"line": 992,
+			"name": "geteuid",
+			"number": 107,
+			"origname": "geteuid",
+			"signature": [],
+			"symbol": "__x64_sys_geteuid"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sys.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 108,
+			"kconfig": null,
+			"line": 1004,
+			"name": "getegid",
+			"number": 108,
+			"origname": "getegid",
+			"signature": [],
+			"symbol": "__x64_sys_getegid"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sys.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 109,
+			"kconfig": null,
+			"line": 1073,
+			"name": "setpgid",
+			"number": 109,
+			"origname": "setpgid",
+			"signature": [
+				"pid_t pid",
+				"pid_t pgid"
+			],
+			"symbol": "__x64_sys_setpgid"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sys.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 110,
+			"kconfig": null,
+			"line": 975,
+			"name": "getppid",
+			"number": 110,
+			"origname": "getppid",
+			"signature": [],
+			"symbol": "__x64_sys_getppid"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sys.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 111,
+			"kconfig": null,
+			"line": 1179,
+			"name": "getpgrp",
+			"number": 111,
+			"origname": "getpgrp",
+			"signature": [],
+			"symbol": "__x64_sys_getpgrp"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sys.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 112,
+			"kconfig": null,
+			"line": 1258,
+			"name": "setsid",
+			"number": 112,
+			"origname": "setsid",
+			"signature": [],
+			"symbol": "__x64_sys_setsid"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sys.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 113,
+			"kconfig": "MULTIUSER",
+			"line": 594,
+			"name": "setreuid",
+			"number": 113,
+			"origname": "setreuid",
+			"signature": [
+				"uid_t ruid",
+				"uid_t euid"
+			],
+			"symbol": "__x64_sys_setreuid"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sys.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 114,
+			"kconfig": "MULTIUSER",
+			"line": 428,
+			"name": "setregid",
+			"number": 114,
+			"origname": "setregid",
+			"signature": [
+				"gid_t rgid",
+				"gid_t egid"
+			],
+			"symbol": "__x64_sys_setregid"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/groups.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 115,
+			"kconfig": "MULTIUSER",
+			"line": 161,
+			"name": "getgroups",
+			"number": 115,
+			"origname": "getgroups",
+			"signature": [
+				"int gidsetsize",
+				"gid_t *grouplist"
+			],
+			"symbol": "__x64_sys_getgroups"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/groups.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 116,
+			"kconfig": "MULTIUSER",
+			"line": 198,
+			"name": "setgroups",
+			"number": 116,
+			"origname": "setgroups",
+			"signature": [
+				"int gidsetsize",
+				"gid_t *grouplist"
+			],
+			"symbol": "__x64_sys_setgroups"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sys.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 117,
+			"kconfig": "MULTIUSER",
+			"line": 742,
+			"name": "setresuid",
+			"number": 117,
+			"origname": "setresuid",
+			"signature": [
+				"uid_t ruid",
+				"uid_t euid",
+				"uid_t suid"
+			],
+			"symbol": "__x64_sys_setresuid"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sys.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 118,
+			"kconfig": "MULTIUSER",
+			"line": 747,
+			"name": "getresuid",
+			"number": 118,
+			"origname": "getresuid",
+			"signature": [
+				"uid_t *ruidp",
+				"uid_t *euidp",
+				"uid_t *suidp"
+			],
+			"symbol": "__x64_sys_getresuid"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sys.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 119,
+			"kconfig": "MULTIUSER",
+			"line": 831,
+			"name": "setresgid",
+			"number": 119,
+			"origname": "setresgid",
+			"signature": [
+				"gid_t rgid",
+				"gid_t egid",
+				"gid_t sgid"
+			],
+			"symbol": "__x64_sys_setresgid"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sys.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 120,
+			"kconfig": "MULTIUSER",
+			"line": 836,
+			"name": "getresgid",
+			"number": 120,
+			"origname": "getresgid",
+			"signature": [
+				"gid_t *rgidp",
+				"gid_t *egidp",
+				"gid_t *sgidp"
+			],
+			"symbol": "__x64_sys_getresgid"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sys.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 121,
+			"kconfig": null,
+			"line": 1172,
+			"name": "getpgid",
+			"number": 121,
+			"origname": "getpgid",
+			"signature": [
+				"pid_t pid"
+			],
+			"symbol": "__x64_sys_getpgid"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sys.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 122,
+			"kconfig": "MULTIUSER",
+			"line": 899,
+			"name": "setfsuid",
+			"number": 122,
+			"origname": "setfsuid",
+			"signature": [
+				"uid_t uid"
+			],
+			"symbol": "__x64_sys_setfsuid"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sys.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 123,
+			"kconfig": "MULTIUSER",
+			"line": 943,
+			"name": "setfsgid",
+			"number": 123,
+			"origname": "setfsgid",
+			"signature": [
+				"gid_t gid"
+			],
+			"symbol": "__x64_sys_setfsgid"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sys.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 124,
+			"kconfig": null,
+			"line": 1186,
+			"name": "getsid",
+			"number": 124,
+			"origname": "getsid",
+			"signature": [
+				"pid_t pid"
+			],
+			"symbol": "__x64_sys_getsid"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/capability.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 125,
+			"kconfig": "MULTIUSER",
+			"line": 141,
+			"name": "capget",
+			"number": 125,
+			"origname": "capget",
+			"signature": [
+				"cap_user_header_t header",
+				"cap_user_data_t dataptr"
+			],
+			"symbol": "__x64_sys_capget"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/capability.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 126,
+			"kconfig": "MULTIUSER",
+			"line": 220,
+			"name": "capset",
+			"number": 126,
+			"origname": "capset",
+			"signature": [
+				"cap_user_header_t header",
+				"const cap_user_data_t data"
+			],
+			"symbol": "__x64_sys_capset"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/signal.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 127,
+			"kconfig": null,
+			"line": 3238,
+			"name": "rt_sigpending",
+			"number": 127,
+			"origname": "rt_sigpending",
+			"signature": [
+				"sigset_t *uset",
+				"size_t sigsetsize"
+			],
+			"symbol": "__x64_sys_rt_sigpending"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/signal.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 128,
+			"kconfig": null,
+			"line": 3652,
+			"name": "rt_sigtimedwait",
+			"number": 128,
+			"origname": "rt_sigtimedwait",
+			"signature": [
+				"const sigset_t *uthese",
+				"siginfo_t *uinfo",
+				"const struct __kernel_timespec *uts",
+				"size_t sigsetsize"
+			],
+			"symbol": "__x64_sys_rt_sigtimedwait"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/signal.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 129,
+			"kconfig": null,
+			"line": 4021,
+			"name": "rt_sigqueueinfo",
+			"number": 129,
+			"origname": "rt_sigqueueinfo",
+			"signature": [
+				"pid_t pid",
+				"int sig",
+				"siginfo_t *uinfo"
+			],
+			"symbol": "__x64_sys_rt_sigqueueinfo"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/signal.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 130,
+			"kconfig": null,
+			"line": 4658,
+			"name": "rt_sigsuspend",
+			"number": 130,
+			"origname": "rt_sigsuspend",
+			"signature": [
+				"sigset_t *unewset",
+				"size_t sigsetsize"
+			],
+			"symbol": "__x64_sys_rt_sigsuspend"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/signal.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 131,
+			"kconfig": null,
+			"line": 4252,
+			"name": "sigaltstack",
+			"number": 131,
+			"origname": "sigaltstack",
+			"signature": [
+				"const stack_t *uss",
+				"stack_t *uoss"
+			],
+			"symbol": "__x64_sys_sigaltstack"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/utimes.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 132,
+			"kconfig": null,
+			"line": 215,
+			"name": "utime",
+			"number": 132,
+			"origname": "utime",
+			"signature": [
+				"char *filename",
+				"struct utimbuf *times"
+			],
+			"symbol": "__x64_sys_utime"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/namei.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 133,
+			"kconfig": null,
+			"line": 4076,
+			"name": "mknod",
+			"number": 133,
+			"origname": "mknod",
+			"signature": [
+				"const char *filename",
+				"umode_t mode",
+				"unsigned dev"
+			],
+			"symbol": "__x64_sys_mknod"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/exec_domain.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 135,
+			"kconfig": null,
+			"line": 38,
+			"name": "personality",
+			"number": 135,
+			"origname": "personality",
+			"signature": [
+				"unsigned int personality"
+			],
+			"symbol": "__x64_sys_personality"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/statfs.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 136,
+			"kconfig": null,
+			"line": 248,
+			"name": "ustat",
+			"number": 136,
+			"origname": "ustat",
+			"signature": [
+				"unsigned dev",
+				"struct ustat *ubuf"
+			],
+			"symbol": "__x64_sys_ustat"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/statfs.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 137,
+			"kconfig": null,
+			"line": 192,
+			"name": "statfs",
+			"number": 137,
+			"origname": "statfs",
+			"signature": [
+				"const char *pathname",
+				"struct statfs *buf"
+			],
+			"symbol": "__x64_sys_statfs"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/statfs.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 138,
+			"kconfig": null,
+			"line": 213,
+			"name": "fstatfs",
+			"number": 138,
+			"origname": "fstatfs",
+			"signature": [
+				"unsigned int fd",
+				"struct statfs *buf"
+			],
+			"symbol": "__x64_sys_fstatfs"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/filesystems.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 139,
+			"kconfig": "SYSFS_SYSCALL",
+			"line": 191,
+			"name": "sysfs",
+			"number": 139,
+			"origname": "sysfs",
+			"signature": [
+				"int option",
+				"unsigned long arg1",
+				"unsigned long arg2"
+			],
+			"symbol": "__x64_sys_sysfs"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sys.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 140,
+			"kconfig": null,
+			"line": 288,
+			"name": "getpriority",
+			"number": 140,
+			"origname": "getpriority",
+			"signature": [
+				"int which",
+				"int who"
+			],
+			"symbol": "__x64_sys_getpriority"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sys.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 141,
+			"kconfig": null,
+			"line": 218,
+			"name": "setpriority",
+			"number": 141,
+			"origname": "setpriority",
+			"signature": [
+				"int which",
+				"int who",
+				"int niceval"
+			],
+			"symbol": "__x64_sys_setpriority"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sched/core.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 142,
+			"kconfig": null,
+			"line": 8069,
+			"name": "sched_setparam",
+			"number": 142,
+			"origname": "sched_setparam",
+			"signature": [
+				"pid_t pid",
+				"struct sched_param *param"
+			],
+			"symbol": "__x64_sys_sched_setparam"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sched/core.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 143,
+			"kconfig": null,
+			"line": 8152,
+			"name": "sched_getparam",
+			"number": 143,
+			"origname": "sched_getparam",
+			"signature": [
+				"pid_t pid",
+				"struct sched_param *param"
+			],
+			"symbol": "__x64_sys_sched_getparam"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sched/core.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 144,
+			"kconfig": null,
+			"line": 8054,
+			"name": "sched_setscheduler",
+			"number": 144,
+			"origname": "sched_setscheduler",
+			"signature": [
+				"pid_t pid",
+				"int policy",
+				"struct sched_param *param"
+			],
+			"symbol": "__x64_sys_sched_setscheduler"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sched/core.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 145,
+			"kconfig": null,
+			"line": 8123,
+			"name": "sched_getscheduler",
+			"number": 145,
+			"origname": "sched_getscheduler",
+			"signature": [
+				"pid_t pid"
+			],
+			"symbol": "__x64_sys_sched_getscheduler"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sched/core.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 146,
+			"kconfig": null,
+			"line": 9041,
+			"name": "sched_get_priority_max",
+			"number": 146,
+			"origname": "sched_get_priority_max",
+			"signature": [
+				"int policy"
+			],
+			"symbol": "__x64_sys_sched_get_priority_max"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sched/core.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 147,
+			"kconfig": null,
+			"line": 9068,
+			"name": "sched_get_priority_min",
+			"number": 147,
+			"origname": "sched_get_priority_min",
+			"signature": [
+				"int policy"
+			],
+			"symbol": "__x64_sys_sched_get_priority_min"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sched/core.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 148,
+			"kconfig": null,
+			"line": 9133,
+			"name": "sched_rr_get_interval",
+			"number": 148,
+			"origname": "sched_rr_get_interval",
+			"signature": [
+				"pid_t pid",
+				"struct __kernel_timespec *interval"
+			],
+			"symbol": "__x64_sys_sched_rr_get_interval"
+		},
+		{
+			"esoteric": false,
+			"file": "mm/mlock.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 149,
+			"kconfig": "MMU",
+			"line": 621,
+			"name": "mlock",
+			"number": 149,
+			"origname": "mlock",
+			"signature": [
+				"unsigned long start",
+				"size_t len"
+			],
+			"symbol": "__x64_sys_mlock"
+		},
+		{
+			"esoteric": false,
+			"file": "mm/mlock.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 150,
+			"kconfig": "MMU",
+			"line": 639,
+			"name": "munlock",
+			"number": 150,
+			"origname": "munlock",
+			"signature": [
+				"unsigned long start",
+				"size_t len"
+			],
+			"symbol": "__x64_sys_munlock"
+		},
+		{
+			"esoteric": false,
+			"file": "mm/mlock.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 151,
+			"kconfig": "MMU",
+			"line": 704,
+			"name": "mlockall",
+			"number": 151,
+			"origname": "mlockall",
+			"signature": [
+				"int flags"
+			],
+			"symbol": "__x64_sys_mlockall"
+		},
+		{
+			"esoteric": false,
+			"file": "mm/mlock.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 152,
+			"kconfig": "MMU",
+			"line": 733,
+			"name": "munlockall",
+			"number": 152,
+			"origname": "munlockall",
+			"signature": [],
+			"symbol": "__x64_sys_munlockall"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/open.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 153,
+			"kconfig": null,
+			"line": 1569,
+			"name": "vhangup",
+			"number": 153,
+			"origname": "vhangup",
+			"signature": [],
+			"symbol": "__x64_sys_vhangup"
+		},
+		{
+			"esoteric": false,
+			"file": "arch/x86/kernel/ldt.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 154,
+			"kconfig": "MODIFY_LDT_SYSCALL",
+			"line": 667,
+			"name": "modify_ldt",
+			"number": 154,
+			"origname": "modify_ldt",
+			"signature": [
+				"int func",
+				"void *ptr",
+				"unsigned long bytecount"
+			],
+			"symbol": "__x64_sys_modify_ldt"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/namespace.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 155,
+			"kconfig": null,
+			"line": 4166,
+			"name": "pivot_root",
+			"number": 155,
+			"origname": "pivot_root",
+			"signature": [
+				"const char *new_root",
+				"const char *put_old"
+			],
+			"symbol": "__x64_sys_pivot_root"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sys.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 157,
+			"kconfig": null,
+			"line": 2408,
+			"name": "prctl",
+			"number": 157,
+			"origname": "prctl",
+			"signature": [
+				"int option",
+				"unsigned long arg2",
+				"unsigned long arg3",
+				"unsigned long arg4",
+				"unsigned long arg5"
+			],
+			"symbol": "__x64_sys_prctl"
+		},
+		{
+			"esoteric": false,
+			"file": "arch/x86/kernel/process_64.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 158,
+			"kconfig": null,
+			"line": 905,
+			"name": "arch_prctl",
+			"number": 158,
+			"origname": "arch_prctl",
+			"signature": [
+				"int option",
+				"unsigned long arg2"
+			],
+			"symbol": "__x64_sys_arch_prctl"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/time/time.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 159,
+			"kconfig": null,
+			"line": 269,
+			"name": "adjtimex",
+			"number": 159,
+			"origname": "adjtimex",
+			"signature": [
+				"struct __kernel_timex *txc_p"
+			],
+			"symbol": "__x64_sys_adjtimex"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sys.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 160,
+			"kconfig": null,
+			"line": 1731,
+			"name": "setrlimit",
+			"number": 160,
+			"origname": "setrlimit",
+			"signature": [
+				"unsigned int resource",
+				"struct rlimit *rlim"
+			],
+			"symbol": "__x64_sys_setrlimit"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/open.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 161,
+			"kconfig": null,
+			"line": 593,
+			"name": "chroot",
+			"number": 161,
+			"origname": "chroot",
+			"signature": [
+				"const char *filename"
+			],
+			"symbol": "__x64_sys_chroot"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/sync.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 162,
+			"kconfig": null,
+			"line": 111,
+			"name": "sync",
+			"number": 162,
+			"origname": "sync",
+			"signature": [],
+			"symbol": "__x64_sys_sync"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/acct.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 163,
+			"kconfig": "BSD_PROCESS_ACCT",
+			"line": 292,
+			"name": "acct",
+			"number": 163,
+			"origname": "acct",
+			"signature": [
+				"const char *name"
+			],
+			"symbol": "__x64_sys_acct"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/time/time.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 164,
+			"kconfig": null,
+			"line": 199,
+			"name": "settimeofday",
+			"number": 164,
+			"origname": "settimeofday",
+			"signature": [
+				"struct __kernel_old_timeval *tv",
+				"struct timezone *tz"
+			],
+			"symbol": "__x64_sys_settimeofday"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/namespace.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 165,
+			"kconfig": null,
+			"line": 3861,
+			"name": "mount",
+			"number": 165,
+			"origname": "mount",
+			"signature": [
+				"char *dev_name",
+				"char *dir_name",
+				"char *type",
+				"unsigned long flags",
+				"void *data"
+			],
+			"symbol": "__x64_sys_mount"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/namespace.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 166,
+			"kconfig": null,
+			"line": 1920,
+			"name": "umount",
+			"number": 166,
+			"origname": "umount",
+			"signature": [
+				"char *name",
+				"int flags"
+			],
+			"symbol": "__x64_sys_umount"
+		},
+		{
+			"esoteric": false,
+			"file": "mm/swapfile.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 167,
+			"kconfig": "SWAP",
+			"line": 2975,
+			"name": "swapon",
+			"number": 167,
+			"origname": "swapon",
+			"signature": [
+				"const char *specialfile",
+				"int swap_flags"
+			],
+			"symbol": "__x64_sys_swapon"
+		},
+		{
+			"esoteric": false,
+			"file": "mm/swapfile.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 168,
+			"kconfig": "SWAP",
+			"line": 2380,
+			"name": "swapoff",
+			"number": 168,
+			"origname": "swapoff",
+			"signature": [
+				"const char *specialfile"
+			],
+			"symbol": "__x64_sys_swapoff"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/reboot.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 169,
+			"kconfig": null,
+			"line": 700,
+			"name": "reboot",
+			"number": 169,
+			"origname": "reboot",
+			"signature": [
+				"int magic1",
+				"int magic2",
+				"unsigned int cmd",
+				"void *arg"
+			],
+			"symbol": "__x64_sys_reboot"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sys.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 170,
+			"kconfig": null,
+			"line": 1374,
+			"name": "sethostname",
+			"number": 170,
+			"origname": "sethostname",
+			"signature": [
+				"char *name",
+				"int len"
+			],
+			"symbol": "__x64_sys_sethostname"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sys.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 171,
+			"kconfig": null,
+			"line": 1428,
+			"name": "setdomainname",
+			"number": 171,
+			"origname": "setdomainname",
+			"signature": [
+				"char *name",
+				"int len"
+			],
+			"symbol": "__x64_sys_setdomainname"
+		},
+		{
+			"esoteric": false,
+			"file": "arch/x86/kernel/ioport.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 172,
+			"kconfig": "X86_IOPL_IOPERM",
+			"line": 173,
+			"name": "iopl",
+			"number": 172,
+			"origname": "iopl",
+			"signature": [
+				"unsigned int level"
+			],
+			"symbol": "__x64_sys_iopl"
+		},
+		{
+			"esoteric": false,
+			"file": "arch/x86/kernel/ioport.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 173,
+			"kconfig": "X86_IOPL_IOPERM",
+			"line": 152,
+			"name": "ioperm",
+			"number": 173,
+			"origname": "ioperm",
+			"signature": [
+				"unsigned long from",
+				"unsigned long num",
+				"int turn_on"
+			],
+			"symbol": "__x64_sys_ioperm"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/module/main.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 175,
+			"kconfig": "MODULES",
+			"line": 3030,
+			"name": "init_module",
+			"number": 175,
+			"origname": "init_module",
+			"signature": [
+				"void *umod",
+				"unsigned long len",
+				"const char *uargs"
+			],
+			"symbol": "__x64_sys_init_module"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/module/main.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 176,
+			"kconfig": "MODULES",
+			"line": 698,
+			"name": "delete_module",
+			"number": 176,
+			"origname": "delete_module",
+			"signature": [
+				"const char *name_user",
+				"unsigned int flags"
+			],
+			"symbol": "__x64_sys_delete_module"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/quota/quota.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 179,
+			"kconfig": "QUOTACTL",
+			"line": 917,
+			"name": "quotactl",
+			"number": 179,
+			"origname": "quotactl",
+			"signature": [
+				"unsigned int cmd",
+				"const char *special",
+				"qid_t id",
+				"void *addr"
+			],
+			"symbol": "__x64_sys_quotactl"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sys.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 186,
+			"kconfig": null,
+			"line": 964,
+			"name": "gettid",
+			"number": 186,
+			"origname": "gettid",
+			"signature": [],
+			"symbol": "__x64_sys_gettid"
+		},
+		{
+			"esoteric": false,
+			"file": "mm/readahead.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 187,
+			"kconfig": null,
+			"line": 760,
+			"name": "readahead",
+			"number": 187,
+			"origname": "readahead",
+			"signature": [
+				"int fd",
+				"loff_t offset",
+				"size_t count"
+			],
+			"symbol": "__x64_sys_readahead"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/xattr.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 188,
+			"kconfig": null,
+			"line": 684,
+			"name": "setxattr",
+			"number": 188,
+			"origname": "setxattr",
+			"signature": [
+				"const char *pathname",
+				"const char *name",
+				"const void *value",
+				"size_t size",
+				"int flags"
+			],
+			"symbol": "__x64_sys_setxattr"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/xattr.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 189,
+			"kconfig": null,
+			"line": 691,
+			"name": "lsetxattr",
+			"number": 189,
+			"origname": "lsetxattr",
+			"signature": [
+				"const char *pathname",
+				"const char *name",
+				"const void *value",
+				"size_t size",
+				"int flags"
+			],
+			"symbol": "__x64_sys_lsetxattr"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/xattr.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 190,
+			"kconfig": null,
+			"line": 698,
+			"name": "fsetxattr",
+			"number": 190,
+			"origname": "fsetxattr",
+			"signature": [
+				"int fd",
+				"const char *name",
+				"const void *value",
+				"size_t size",
+				"int flags"
+			],
+			"symbol": "__x64_sys_fsetxattr"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/xattr.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 191,
+			"kconfig": null,
+			"line": 797,
+			"name": "getxattr",
+			"number": 191,
+			"origname": "getxattr",
+			"signature": [
+				"const char *pathname",
+				"const char *name",
+				"void *value",
+				"size_t size"
+			],
+			"symbol": "__x64_sys_getxattr"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/xattr.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 192,
+			"kconfig": null,
+			"line": 803,
+			"name": "lgetxattr",
+			"number": 192,
+			"origname": "lgetxattr",
+			"signature": [
+				"const char *pathname",
+				"const char *name",
+				"void *value",
+				"size_t size"
+			],
+			"symbol": "__x64_sys_lgetxattr"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/xattr.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 193,
+			"kconfig": null,
+			"line": 809,
+			"name": "fgetxattr",
+			"number": 193,
+			"origname": "fgetxattr",
+			"signature": [
+				"int fd",
+				"const char *name",
+				"void *value",
+				"size_t size"
+			],
+			"symbol": "__x64_sys_fgetxattr"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/xattr.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 194,
+			"kconfig": null,
+			"line": 874,
+			"name": "listxattr",
+			"number": 194,
+			"origname": "listxattr",
+			"signature": [
+				"const char *pathname",
+				"char *list",
+				"size_t size"
+			],
+			"symbol": "__x64_sys_listxattr"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/xattr.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 195,
+			"kconfig": null,
+			"line": 880,
+			"name": "llistxattr",
+			"number": 195,
+			"origname": "llistxattr",
+			"signature": [
+				"const char *pathname",
+				"char *list",
+				"size_t size"
+			],
+			"symbol": "__x64_sys_llistxattr"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/xattr.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 196,
+			"kconfig": null,
+			"line": 886,
+			"name": "flistxattr",
+			"number": 196,
+			"origname": "flistxattr",
+			"signature": [
+				"int fd",
+				"char *list",
+				"size_t size"
+			],
+			"symbol": "__x64_sys_flistxattr"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/xattr.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 197,
+			"kconfig": null,
+			"line": 943,
+			"name": "removexattr",
+			"number": 197,
+			"origname": "removexattr",
+			"signature": [
+				"const char *pathname",
+				"const char *name"
+			],
+			"symbol": "__x64_sys_removexattr"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/xattr.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 198,
+			"kconfig": null,
+			"line": 949,
+			"name": "lremovexattr",
+			"number": 198,
+			"origname": "lremovexattr",
+			"signature": [
+				"const char *pathname",
+				"const char *name"
+			],
+			"symbol": "__x64_sys_lremovexattr"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/xattr.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 199,
+			"kconfig": null,
+			"line": 955,
+			"name": "fremovexattr",
+			"number": 199,
+			"origname": "fremovexattr",
+			"signature": [
+				"int fd",
+				"const char *name"
+			],
+			"symbol": "__x64_sys_fremovexattr"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/signal.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 200,
+			"kconfig": null,
+			"line": 3993,
+			"name": "tkill",
+			"number": 200,
+			"origname": "tkill",
+			"signature": [
+				"pid_t pid",
+				"int sig"
+			],
+			"symbol": "__x64_sys_tkill"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/time/time.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 201,
+			"kconfig": null,
+			"line": 62,
+			"name": "time",
+			"number": 201,
+			"origname": "time",
+			"signature": [
+				"__kernel_old_time_t *tloc"
+			],
+			"symbol": "__x64_sys_time"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/futex/syscalls.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 202,
+			"kconfig": "FUTEX",
+			"line": 164,
+			"name": "futex",
+			"number": 202,
+			"origname": "futex",
+			"signature": [
+				"u32 *uaddr",
+				"int op",
+				"u32 val",
+				"const struct __kernel_timespec *utime",
+				"u32 *uaddr2",
+				"u32 val3"
+			],
+			"symbol": "__x64_sys_futex"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sched/core.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 203,
+			"kconfig": null,
+			"line": 8450,
+			"name": "sched_setaffinity",
+			"number": 203,
+			"origname": "sched_setaffinity",
+			"signature": [
+				"pid_t pid",
+				"unsigned int len",
+				"unsigned long *user_mask_ptr"
+			],
+			"symbol": "__x64_sys_sched_setaffinity"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sched/core.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 204,
+			"kconfig": null,
+			"line": 8502,
+			"name": "sched_getaffinity",
+			"number": 204,
+			"origname": "sched_getaffinity",
+			"signature": [
+				"pid_t pid",
+				"unsigned int len",
+				"unsigned long *user_mask_ptr"
+			],
+			"symbol": "__x64_sys_sched_getaffinity"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/aio.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 206,
+			"kconfig": "AIO",
+			"line": 1331,
+			"name": "io_setup",
+			"number": 206,
+			"origname": "io_setup",
+			"signature": [
+				"unsigned nr_events",
+				"aio_context_t *ctxp"
+			],
+			"symbol": "__x64_sys_io_setup"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/aio.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 207,
+			"kconfig": "AIO",
+			"line": 1400,
+			"name": "io_destroy",
+			"number": 207,
+			"origname": "io_destroy",
+			"signature": [
+				"aio_context_t ctx"
+			],
+			"symbol": "__x64_sys_io_destroy"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/aio.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 208,
+			"kconfig": "AIO",
+			"line": 2214,
+			"name": "io_getevents",
+			"number": 208,
+			"origname": "io_getevents",
+			"signature": [
+				"aio_context_t ctx_id",
+				"long min_nr",
+				"long nr",
+				"struct io_event *events",
+				"struct __kernel_timespec *timeout"
+			],
+			"symbol": "__x64_sys_io_getevents"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/aio.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 209,
+			"kconfig": "AIO",
+			"line": 2044,
+			"name": "io_submit",
+			"number": 209,
+			"origname": "io_submit",
+			"signature": [
+				"aio_context_t ctx_id",
+				"long nr",
+				"struct iocb * *iocbpp"
+			],
+			"symbol": "__x64_sys_io_submit"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/aio.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 210,
+			"kconfig": "AIO",
+			"line": 2138,
+			"name": "io_cancel",
+			"number": 210,
+			"origname": "io_cancel",
+			"signature": [
+				"aio_context_t ctx_id",
+				"struct iocb *iocb",
+				"struct io_event *result"
+			],
+			"symbol": "__x64_sys_io_cancel"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/eventpoll.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 213,
+			"kconfig": "EPOLL",
+			"line": 2086,
+			"name": "epoll_create",
+			"number": 213,
+			"origname": "epoll_create",
+			"signature": [
+				"int size"
+			],
+			"symbol": "__x64_sys_epoll_create"
+		},
+		{
+			"esoteric": false,
+			"file": "mm/mmap.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 216,
+			"kconfig": "MMU",
+			"line": 2930,
+			"name": "remap_file_pages",
+			"number": 216,
+			"origname": "remap_file_pages",
+			"signature": [
+				"unsigned long start",
+				"unsigned long size",
+				"unsigned long prot",
+				"unsigned long pgoff",
+				"unsigned long flags"
+			],
+			"symbol": "__x64_sys_remap_file_pages"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/readdir.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 217,
+			"kconfig": null,
+			"line": 390,
+			"name": "getdents64",
+			"number": 217,
+			"origname": "getdents64",
+			"signature": [
+				"unsigned int fd",
+				"struct linux_dirent64 *dirent",
+				"unsigned int count"
+			],
+			"symbol": "__x64_sys_getdents64"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/fork.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 218,
+			"kconfig": null,
+			"line": 1936,
+			"name": "set_tid_address",
+			"number": 218,
+			"origname": "set_tid_address",
+			"signature": [
+				"int *tidptr"
+			],
+			"symbol": "__x64_sys_set_tid_address"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/signal.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 219,
+			"kconfig": null,
+			"line": 3023,
+			"name": "restart_syscall",
+			"number": 219,
+			"origname": "restart_syscall",
+			"signature": [],
+			"symbol": "__x64_sys_restart_syscall"
+		},
+		{
+			"esoteric": false,
+			"file": "ipc/sem.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 220,
+			"kconfig": "SYSVIPC",
+			"line": 2270,
+			"name": "semtimedop",
+			"number": 220,
+			"origname": "semtimedop",
+			"signature": [
+				"int semid",
+				"struct sembuf *tsops",
+				"unsigned int nsops",
+				"const struct __kernel_timespec *timeout"
+			],
+			"symbol": "__x64_sys_semtimedop"
+		},
+		{
+			"esoteric": false,
+			"file": "mm/fadvise.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 221,
+			"kconfig": "ADVISE_SYSCALLS",
+			"line": 205,
+			"name": "fadvise64",
+			"number": 221,
+			"origname": "fadvise64",
+			"signature": [
+				"int fd",
+				"loff_t offset",
+				"loff_t len",
+				"int advice"
+			],
+			"symbol": "__x64_sys_fadvise64"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/time/posix-timers.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 222,
+			"kconfig": "POSIX_TIMERS",
+			"line": 530,
+			"name": "timer_create",
+			"number": 222,
+			"origname": "timer_create",
+			"signature": [
+				"const clockid_t which_clock",
+				"struct sigevent *timer_event_spec",
+				"timer_t *created_timer_id"
+			],
+			"symbol": "__x64_sys_timer_create"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/time/posix-timers.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 223,
+			"kconfig": "POSIX_TIMERS",
+			"line": 940,
+			"name": "timer_settime",
+			"number": 223,
+			"origname": "timer_settime",
+			"signature": [
+				"timer_t timer_id",
+				"int flags",
+				"const struct __kernel_itimerspec *new_setting",
+				"struct __kernel_itimerspec *old_setting"
+			],
+			"symbol": "__x64_sys_timer_settime"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/time/posix-timers.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 224,
+			"kconfig": "POSIX_TIMERS",
+			"line": 719,
+			"name": "timer_gettime",
+			"number": 224,
+			"origname": "timer_gettime",
+			"signature": [
+				"timer_t timer_id",
+				"struct __kernel_itimerspec *setting"
+			],
+			"symbol": "__x64_sys_timer_gettime"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/time/posix-timers.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 225,
+			"kconfig": "POSIX_TIMERS",
+			"line": 767,
+			"name": "timer_getoverrun",
+			"number": 225,
+			"origname": "timer_getoverrun",
+			"signature": [
+				"timer_t timer_id"
+			],
+			"symbol": "__x64_sys_timer_getoverrun"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/time/posix-timers.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 226,
+			"kconfig": "POSIX_TIMERS",
+			"line": 1006,
+			"name": "timer_delete",
+			"number": 226,
+			"origname": "timer_delete",
+			"signature": [
+				"timer_t timer_id"
+			],
+			"symbol": "__x64_sys_timer_delete"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/time/posix-timers.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 227,
+			"kconfig": null,
+			"line": 1113,
+			"name": "clock_settime",
+			"number": 227,
+			"origname": "clock_settime",
+			"signature": [
+				"const clockid_t which_clock",
+				"const struct __kernel_timespec *tp"
+			],
+			"symbol": "__x64_sys_clock_settime"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/time/posix-timers.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 228,
+			"kconfig": null,
+			"line": 1132,
+			"name": "clock_gettime",
+			"number": 228,
+			"origname": "clock_gettime",
+			"signature": [
+				"const clockid_t which_clock",
+				"struct __kernel_timespec *tp"
+			],
+			"symbol": "__x64_sys_clock_gettime"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/time/posix-timers.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 229,
+			"kconfig": null,
+			"line": 1252,
+			"name": "clock_getres",
+			"number": 229,
+			"origname": "clock_getres",
+			"signature": [
+				"const clockid_t which_clock",
+				"struct __kernel_timespec *tp"
+			],
+			"symbol": "__x64_sys_clock_getres"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/time/posix-timers.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 230,
+			"kconfig": null,
+			"line": 1373,
+			"name": "clock_nanosleep",
+			"number": 230,
+			"origname": "clock_nanosleep",
+			"signature": [
+				"const clockid_t which_clock",
+				"int flags",
+				"const struct __kernel_timespec *rqtp",
+				"struct __kernel_timespec *rmtp"
+			],
+			"symbol": "__x64_sys_clock_nanosleep"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/exit.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 231,
+			"kconfig": null,
+			"line": 1033,
+			"name": "exit_group",
+			"number": 231,
+			"origname": "exit_group",
+			"signature": [
+				"int error_code"
+			],
+			"symbol": "__x64_sys_exit_group"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/eventpoll.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 232,
+			"kconfig": "EPOLL",
+			"line": 2333,
+			"name": "epoll_wait",
+			"number": 232,
+			"origname": "epoll_wait",
+			"signature": [
+				"int epfd",
+				"struct epoll_event *events",
+				"int maxevents",
+				"int timeout"
+			],
+			"symbol": "__x64_sys_epoll_wait"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/eventpoll.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 233,
+			"kconfig": "EPOLL",
+			"line": 2275,
+			"name": "epoll_ctl",
+			"number": 233,
+			"origname": "epoll_ctl",
+			"signature": [
+				"int epfd",
+				"int op",
+				"int fd",
+				"struct epoll_event *event"
+			],
+			"symbol": "__x64_sys_epoll_ctl"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/signal.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 234,
+			"kconfig": null,
+			"line": 3977,
+			"name": "tgkill",
+			"number": 234,
+			"origname": "tgkill",
+			"signature": [
+				"pid_t tgid",
+				"pid_t pid",
+				"int sig"
+			],
+			"symbol": "__x64_sys_tgkill"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/utimes.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 235,
+			"kconfig": null,
+			"line": 209,
+			"name": "utimes",
+			"number": 235,
+			"origname": "utimes",
+			"signature": [
+				"char *filename",
+				"struct __kernel_old_timeval *utimes"
+			],
+			"symbol": "__x64_sys_utimes"
+		},
+		{
+			"esoteric": false,
+			"file": "mm/mempolicy.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 237,
+			"kconfig": "NUMA",
+			"line": 1570,
+			"name": "mbind",
+			"number": 237,
+			"origname": "mbind",
+			"signature": [
+				"unsigned long start",
+				"unsigned long len",
+				"unsigned long mode",
+				"const unsigned long *nmask",
+				"unsigned long maxnode",
+				"unsigned int flags"
+			],
+			"symbol": "__x64_sys_mbind"
+		},
+		{
+			"esoteric": false,
+			"file": "mm/mempolicy.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 238,
+			"kconfig": "NUMA",
+			"line": 1597,
+			"name": "set_mempolicy",
+			"number": 238,
+			"origname": "set_mempolicy",
+			"signature": [
+				"int mode",
+				"const unsigned long *nmask",
+				"unsigned long maxnode"
+			],
+			"symbol": "__x64_sys_set_mempolicy"
+		},
+		{
+			"esoteric": false,
+			"file": "mm/mempolicy.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 239,
+			"kconfig": "NUMA",
+			"line": 1729,
+			"name": "get_mempolicy",
+			"number": 239,
+			"origname": "get_mempolicy",
+			"signature": [
+				"int *policy",
+				"unsigned long *nmask",
+				"unsigned long maxnode",
+				"unsigned long addr",
+				"unsigned long flags"
+			],
+			"symbol": "__x64_sys_get_mempolicy"
+		},
+		{
+			"esoteric": false,
+			"file": "ipc/mqueue.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 240,
+			"kconfig": "POSIX_MQUEUE",
+			"line": 942,
+			"name": "mq_open",
+			"number": 240,
+			"origname": "mq_open",
+			"signature": [
+				"const char *u_name",
+				"int oflag",
+				"umode_t mode",
+				"struct mq_attr *u_attr"
+			],
+			"symbol": "__x64_sys_mq_open"
+		},
+		{
+			"esoteric": false,
+			"file": "ipc/mqueue.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 241,
+			"kconfig": "POSIX_MQUEUE",
+			"line": 952,
+			"name": "mq_unlink",
+			"number": 241,
+			"origname": "mq_unlink",
+			"signature": [
+				"const char *u_name"
+			],
+			"symbol": "__x64_sys_mq_unlink"
+		},
+		{
+			"esoteric": false,
+			"file": "ipc/mqueue.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 242,
+			"kconfig": "POSIX_MQUEUE",
+			"line": 1284,
+			"name": "mq_timedsend",
+			"number": 242,
+			"origname": "mq_timedsend",
+			"signature": [
+				"mqd_t mqdes",
+				"const char *u_msg_ptr",
+				"size_t msg_len",
+				"unsigned int msg_prio",
+				"const struct __kernel_timespec *u_abs_timeout"
+			],
+			"symbol": "__x64_sys_mq_timedsend"
+		},
+		{
+			"esoteric": false,
+			"file": "ipc/mqueue.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 243,
+			"kconfig": "POSIX_MQUEUE",
+			"line": 1298,
+			"name": "mq_timedreceive",
+			"number": 243,
+			"origname": "mq_timedreceive",
+			"signature": [
+				"mqd_t mqdes",
+				"char *u_msg_ptr",
+				"size_t msg_len",
+				"unsigned int *u_msg_prio",
+				"const struct __kernel_timespec *u_abs_timeout"
+			],
+			"symbol": "__x64_sys_mq_timedreceive"
+		},
+		{
+			"esoteric": false,
+			"file": "ipc/mqueue.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 244,
+			"kconfig": "POSIX_MQUEUE",
+			"line": 1440,
+			"name": "mq_notify",
+			"number": 244,
+			"origname": "mq_notify",
+			"signature": [
+				"mqd_t mqdes",
+				"const struct sigevent *u_notification"
+			],
+			"symbol": "__x64_sys_mq_notify"
+		},
+		{
+			"esoteric": false,
+			"file": "ipc/mqueue.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 245,
+			"kconfig": "POSIX_MQUEUE",
+			"line": 1496,
+			"name": "mq_getsetattr",
+			"number": 245,
+			"origname": "mq_getsetattr",
+			"signature": [
+				"mqd_t mqdes",
+				"const struct mq_attr *u_mqstat",
+				"struct mq_attr *u_omqstat"
+			],
+			"symbol": "__x64_sys_mq_getsetattr"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/kexec.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 246,
+			"kconfig": "KEXEC",
+			"line": 230,
+			"name": "kexec_load",
+			"number": 246,
+			"origname": "kexec_load",
+			"signature": [
+				"unsigned long entry",
+				"unsigned long nr_segments",
+				"struct kexec_segment *segments",
+				"unsigned long flags"
+			],
+			"symbol": "__x64_sys_kexec_load"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/exit.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 247,
+			"kconfig": null,
+			"line": 1712,
+			"name": "waitid",
+			"number": 247,
+			"origname": "waitid",
+			"signature": [
+				"int which",
+				"pid_t upid",
+				"struct siginfo *infop",
+				"int options",
+				"struct rusage *ru"
+			],
+			"symbol": "__x64_sys_waitid"
+		},
+		{
+			"esoteric": false,
+			"file": "security/keys/keyctl.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 248,
+			"kconfig": "KEYS",
+			"line": 74,
+			"name": "add_key",
+			"number": 248,
+			"origname": "add_key",
+			"signature": [
+				"const char *_type",
+				"const char *_description",
+				"const void *_payload",
+				"size_t plen",
+				"key_serial_t ringid"
+			],
+			"symbol": "__x64_sys_add_key"
+		},
+		{
+			"esoteric": false,
+			"file": "security/keys/keyctl.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 249,
+			"kconfig": "KEYS",
+			"line": 167,
+			"name": "request_key",
+			"number": 249,
+			"origname": "request_key",
+			"signature": [
+				"const char *_type",
+				"const char *_description",
+				"const char *_callout_info",
+				"key_serial_t destringid"
+			],
+			"symbol": "__x64_sys_request_key"
+		},
+		{
+			"esoteric": false,
+			"file": "security/keys/keyctl.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 250,
+			"kconfig": "KEYS",
+			"line": 1874,
+			"name": "keyctl",
+			"number": 250,
+			"origname": "keyctl",
+			"signature": [
+				"int option",
+				"unsigned long arg2",
+				"unsigned long arg3",
+				"unsigned long arg4",
+				"unsigned long arg5"
+			],
+			"symbol": "__x64_sys_keyctl"
+		},
+		{
+			"esoteric": false,
+			"file": "block/ioprio.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 251,
+			"kconfig": "BLOCK",
+			"line": 69,
+			"name": "ioprio_set",
+			"number": 251,
+			"origname": "ioprio_set",
+			"signature": [
+				"int which",
+				"int who",
+				"int ioprio"
+			],
+			"symbol": "__x64_sys_ioprio_set"
+		},
+		{
+			"esoteric": false,
+			"file": "block/ioprio.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 252,
+			"kconfig": "BLOCK",
+			"line": 210,
+			"name": "ioprio_get",
+			"number": 252,
+			"origname": "ioprio_get",
+			"signature": [
+				"int which",
+				"int who"
+			],
+			"symbol": "__x64_sys_ioprio_get"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/notify/inotify/inotify_user.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 253,
+			"kconfig": "INOTIFY_USER",
+			"line": 725,
+			"name": "inotify_init",
+			"number": 253,
+			"origname": "inotify_init",
+			"signature": [],
+			"symbol": "__x64_sys_inotify_init"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/notify/inotify/inotify_user.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 254,
+			"kconfig": "INOTIFY_USER",
+			"line": 730,
+			"name": "inotify_add_watch",
+			"number": 254,
+			"origname": "inotify_add_watch",
+			"signature": [
+				"int fd",
+				"const char *pathname",
+				"u32 mask"
+			],
+			"symbol": "__x64_sys_inotify_add_watch"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/notify/inotify/inotify_user.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 255,
+			"kconfig": "INOTIFY_USER",
+			"line": 794,
+			"name": "inotify_rm_watch",
+			"number": 255,
+			"origname": "inotify_rm_watch",
+			"signature": [
+				"int fd",
+				"__s32 wd"
+			],
+			"symbol": "__x64_sys_inotify_rm_watch"
+		},
+		{
+			"esoteric": false,
+			"file": "mm/mempolicy.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 256,
+			"kconfig": "MIGRATION",
+			"line": 1691,
+			"name": "migrate_pages",
+			"number": 256,
+			"origname": "migrate_pages",
+			"signature": [
+				"pid_t pid",
+				"unsigned long maxnode",
+				"const unsigned long *old_nodes",
+				"const unsigned long *new_nodes"
+			],
+			"symbol": "__x64_sys_migrate_pages"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/open.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 257,
+			"kconfig": null,
+			"line": 1433,
+			"name": "openat",
+			"number": 257,
+			"origname": "openat",
+			"signature": [
+				"int dfd",
+				"const char *filename",
+				"int flags",
+				"umode_t mode"
+			],
+			"symbol": "__x64_sys_openat"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/namei.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 258,
+			"kconfig": null,
+			"line": 4153,
+			"name": "mkdirat",
+			"number": 258,
+			"origname": "mkdirat",
+			"signature": [
+				"int dfd",
+				"const char *pathname",
+				"umode_t mode"
+			],
+			"symbol": "__x64_sys_mkdirat"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/namei.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 259,
+			"kconfig": null,
+			"line": 4070,
+			"name": "mknodat",
+			"number": 259,
+			"origname": "mknodat",
+			"signature": [
+				"int dfd",
+				"const char *filename",
+				"umode_t mode",
+				"unsigned int dev"
+			],
+			"symbol": "__x64_sys_mknodat"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/open.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 260,
+			"kconfig": null,
+			"line": 811,
+			"name": "fchownat",
+			"number": 260,
+			"origname": "fchownat",
+			"signature": [
+				"int dfd",
+				"const char *filename",
+				"uid_t user",
+				"gid_t group",
+				"int flag"
+			],
+			"symbol": "__x64_sys_fchownat"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/utimes.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 261,
+			"kconfig": null,
+			"line": 203,
+			"name": "futimesat",
+			"number": 261,
+			"origname": "futimesat",
+			"signature": [
+				"int dfd",
+				"const char *filename",
+				"struct __kernel_old_timeval *utimes"
+			],
+			"symbol": "__x64_sys_futimesat"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/stat.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 262,
+			"kconfig": null,
+			"line": 440,
+			"name": "newfstatat",
+			"number": 262,
+			"origname": "newfstatat",
+			"signature": [
+				"int dfd",
+				"const char *filename",
+				"struct stat *statbuf",
+				"int flag"
+			],
+			"symbol": "__x64_sys_newfstatat"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/namei.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 263,
+			"kconfig": null,
+			"line": 4431,
+			"name": "unlinkat",
+			"number": 263,
+			"origname": "unlinkat",
+			"signature": [
+				"int dfd",
+				"const char *pathname",
+				"int flag"
+			],
+			"symbol": "__x64_sys_unlinkat"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/namei.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 264,
+			"kconfig": null,
+			"line": 5046,
+			"name": "renameat",
+			"number": 264,
+			"origname": "renameat",
+			"signature": [
+				"int olddfd",
+				"const char *oldname",
+				"int newdfd",
+				"const char *newname"
+			],
+			"symbol": "__x64_sys_renameat"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/namei.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 265,
+			"kconfig": null,
+			"line": 4697,
+			"name": "linkat",
+			"number": 265,
+			"origname": "linkat",
+			"signature": [
+				"int olddfd",
+				"const char *oldname",
+				"int newdfd",
+				"const char *newname",
+				"int flags"
+			],
+			"symbol": "__x64_sys_linkat"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/namei.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 266,
+			"kconfig": null,
+			"line": 4516,
+			"name": "symlinkat",
+			"number": 266,
+			"origname": "symlinkat",
+			"signature": [
+				"const char *oldname",
+				"int newdfd",
+				"const char *newname"
+			],
+			"symbol": "__x64_sys_symlinkat"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/stat.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 267,
+			"kconfig": null,
+			"line": 501,
+			"name": "readlinkat",
+			"number": 267,
+			"origname": "readlinkat",
+			"signature": [
+				"int dfd",
+				"const char *pathname",
+				"char *buf",
+				"int bufsiz"
+			],
+			"symbol": "__x64_sys_readlinkat"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/open.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 268,
+			"kconfig": null,
+			"line": 692,
+			"name": "fchmodat",
+			"number": 268,
+			"origname": "fchmodat",
+			"signature": [
+				"int dfd",
+				"const char *filename",
+				"umode_t mode"
+			],
+			"symbol": "__x64_sys_fchmodat"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/open.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 269,
+			"kconfig": null,
+			"line": 529,
+			"name": "faccessat",
+			"number": 269,
+			"origname": "faccessat",
+			"signature": [
+				"int dfd",
+				"const char *filename",
+				"int mode"
+			],
+			"symbol": "__x64_sys_faccessat"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/select.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 270,
+			"kconfig": null,
+			"line": 795,
+			"name": "pselect6",
+			"number": 270,
+			"origname": "pselect6",
+			"signature": [
+				"int n",
+				"fd_set *inp",
+				"fd_set *outp",
+				"fd_set *exp",
+				"struct __kernel_timespec *tsp",
+				"void *sig"
+			],
+			"symbol": "__x64_sys_pselect6"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/select.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 271,
+			"kconfig": null,
+			"line": 1101,
+			"name": "ppoll",
+			"number": 271,
+			"origname": "ppoll",
+			"signature": [
+				"struct pollfd *ufds",
+				"unsigned int nfds",
+				"struct __kernel_timespec *tsp",
+				"const sigset_t *sigmask",
+				"size_t sigsetsize"
+			],
+			"symbol": "__x64_sys_ppoll"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/fork.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 272,
+			"kconfig": null,
+			"line": 3507,
+			"name": "unshare",
+			"number": 272,
+			"origname": "unshare",
+			"signature": [
+				"unsigned long unshare_flags"
+			],
+			"symbol": "__x64_sys_unshare"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/futex/syscalls.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 273,
+			"kconfig": "FUTEX",
+			"line": 29,
+			"name": "set_robust_list",
+			"number": 273,
+			"origname": "set_robust_list",
+			"signature": [
+				"struct robust_list_head *head",
+				"size_t len"
+			],
+			"symbol": "__x64_sys_set_robust_list"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/futex/syscalls.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 274,
+			"kconfig": "FUTEX",
+			"line": 49,
+			"name": "get_robust_list",
+			"number": 274,
+			"origname": "get_robust_list",
+			"signature": [
+				"int pid",
+				"struct robust_list_head * *head_ptr",
+				"size_t *len_ptr"
+			],
+			"symbol": "__x64_sys_get_robust_list"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/splice.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 275,
+			"kconfig": null,
+			"line": 1568,
+			"name": "splice",
+			"number": 275,
+			"origname": "splice",
+			"signature": [
+				"int fd_in",
+				"loff_t *off_in",
+				"int fd_out",
+				"loff_t *off_out",
+				"size_t len",
+				"unsigned int flags"
+			],
+			"symbol": "__x64_sys_splice"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/splice.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 276,
+			"kconfig": null,
+			"line": 1934,
+			"name": "tee",
+			"number": 276,
+			"origname": "tee",
+			"signature": [
+				"int fdin",
+				"int fdout",
+				"size_t len",
+				"unsigned int flags"
+			],
+			"symbol": "__x64_sys_tee"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/sync.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 277,
+			"kconfig": null,
+			"line": 370,
+			"name": "sync_file_range",
+			"number": 277,
+			"origname": "sync_file_range",
+			"signature": [
+				"int fd",
+				"loff_t offset",
+				"loff_t nbytes",
+				"unsigned int flags"
+			],
+			"symbol": "__x64_sys_sync_file_range"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/splice.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 278,
+			"kconfig": null,
+			"line": 1532,
+			"name": "vmsplice",
+			"number": 278,
+			"origname": "vmsplice",
+			"signature": [
+				"int fd",
+				"const struct iovec *uiov",
+				"unsigned long nr_segs",
+				"unsigned int flags"
+			],
+			"symbol": "__x64_sys_vmsplice"
+		},
+		{
+			"esoteric": false,
+			"file": "mm/migrate.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 279,
+			"kconfig": "MIGRATION",
+			"line": 2430,
+			"name": "move_pages",
+			"number": 279,
+			"origname": "move_pages",
+			"signature": [
+				"pid_t pid",
+				"unsigned long nr_pages",
+				"const void * *pages",
+				"const int *nodes",
+				"int *status",
+				"int flags"
+			],
+			"symbol": "__x64_sys_move_pages"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/utimes.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 280,
+			"kconfig": null,
+			"line": 148,
+			"name": "utimensat",
+			"number": 280,
+			"origname": "utimensat",
+			"signature": [
+				"int dfd",
+				"const char *filename",
+				"struct __kernel_timespec *utimes",
+				"int flags"
+			],
+			"symbol": "__x64_sys_utimensat"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/eventpoll.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 281,
+			"kconfig": "EPOLL",
+			"line": 2367,
+			"name": "epoll_pwait",
+			"number": 281,
+			"origname": "epoll_pwait",
+			"signature": [
+				"int epfd",
+				"struct epoll_event *events",
+				"int maxevents",
+				"int timeout",
+				"const sigset_t *sigmask",
+				"size_t sigsetsize"
+			],
+			"symbol": "__x64_sys_epoll_pwait"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/signalfd.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 282,
+			"kconfig": "SIGNALFD",
+			"line": 314,
+			"name": "signalfd",
+			"number": 282,
+			"origname": "signalfd",
+			"signature": [
+				"int ufd",
+				"sigset_t *user_mask",
+				"size_t sizemask"
+			],
+			"symbol": "__x64_sys_signalfd"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/timerfd.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 283,
+			"kconfig": null,
+			"line": 406,
+			"name": "timerfd_create",
+			"number": 283,
+			"origname": "timerfd_create",
+			"signature": [
+				"int clockid",
+				"int flags"
+			],
+			"symbol": "__x64_sys_timerfd_create"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/eventfd.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 284,
+			"kconfig": null,
+			"line": 438,
+			"name": "eventfd",
+			"number": 284,
+			"origname": "eventfd",
+			"signature": [
+				"unsigned int count"
+			],
+			"symbol": "__x64_sys_eventfd"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/open.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 285,
+			"kconfig": null,
+			"line": 353,
+			"name": "fallocate",
+			"number": 285,
+			"origname": "fallocate",
+			"signature": [
+				"int fd",
+				"int mode",
+				"loff_t offset",
+				"loff_t len"
+			],
+			"symbol": "__x64_sys_fallocate"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/timerfd.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 286,
+			"kconfig": null,
+			"line": 558,
+			"name": "timerfd_settime",
+			"number": 286,
+			"origname": "timerfd_settime",
+			"signature": [
+				"int ufd",
+				"int flags",
+				"const struct __kernel_itimerspec *utmr",
+				"struct __kernel_itimerspec *otmr"
+			],
+			"symbol": "__x64_sys_timerfd_settime"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/timerfd.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 287,
+			"kconfig": null,
+			"line": 576,
+			"name": "timerfd_gettime",
+			"number": 287,
+			"origname": "timerfd_gettime",
+			"signature": [
+				"int ufd",
+				"struct __kernel_itimerspec *otmr"
+			],
+			"symbol": "__x64_sys_timerfd_gettime"
+		},
+		{
+			"esoteric": false,
+			"file": "net/socket.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 288,
+			"kconfig": "NET",
+			"line": 1951,
+			"name": "accept4",
+			"number": 288,
+			"origname": "accept4",
+			"signature": [
+				"int fd",
+				"struct sockaddr *upeer_sockaddr",
+				"int *upeer_addrlen",
+				"int flags"
+			],
+			"symbol": "__x64_sys_accept4"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/signalfd.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 289,
+			"kconfig": "SIGNALFD",
+			"line": 302,
+			"name": "signalfd4",
+			"number": 289,
+			"origname": "signalfd4",
+			"signature": [
+				"int ufd",
+				"sigset_t *user_mask",
+				"size_t sizemask",
+				"int flags"
+			],
+			"symbol": "__x64_sys_signalfd4"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/eventfd.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 290,
+			"kconfig": null,
+			"line": 433,
+			"name": "eventfd2",
+			"number": 290,
+			"origname": "eventfd2",
+			"signature": [
+				"unsigned int count",
+				"int flags"
+			],
+			"symbol": "__x64_sys_eventfd2"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/eventpoll.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 291,
+			"kconfig": "EPOLL",
+			"line": 2081,
+			"name": "epoll_create1",
+			"number": 291,
+			"origname": "epoll_create1",
+			"signature": [
+				"int flags"
+			],
+			"symbol": "__x64_sys_epoll_create1"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/file.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 292,
+			"kconfig": null,
+			"line": 1264,
+			"name": "dup3",
+			"number": 292,
+			"origname": "dup3",
+			"signature": [
+				"unsigned int oldfd",
+				"unsigned int newfd",
+				"int flags"
+			],
+			"symbol": "__x64_sys_dup3"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/pipe.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 293,
+			"kconfig": null,
+			"line": 1031,
+			"name": "pipe2",
+			"number": 293,
+			"origname": "pipe2",
+			"signature": [
+				"int *fildes",
+				"int flags"
+			],
+			"symbol": "__x64_sys_pipe2"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/notify/inotify/inotify_user.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 294,
+			"kconfig": "INOTIFY_USER",
+			"line": 720,
+			"name": "inotify_init1",
+			"number": 294,
+			"origname": "inotify_init1",
+			"signature": [
+				"int flags"
+			],
+			"symbol": "__x64_sys_inotify_init1"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/read_write.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 295,
+			"kconfig": null,
+			"line": 1052,
+			"name": "preadv",
+			"number": 295,
+			"origname": "preadv",
+			"signature": [
+				"unsigned long fd",
+				"const struct iovec *vec",
+				"unsigned long vlen",
+				"unsigned long pos_l",
+				"unsigned long pos_h"
+			],
+			"symbol": "__x64_sys_preadv"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/read_write.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 296,
+			"kconfig": null,
+			"line": 1072,
+			"name": "pwritev",
+			"number": 296,
+			"origname": "pwritev",
+			"signature": [
+				"unsigned long fd",
+				"const struct iovec *vec",
+				"unsigned long vlen",
+				"unsigned long pos_l",
+				"unsigned long pos_h"
+			],
+			"symbol": "__x64_sys_pwritev"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/signal.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 297,
+			"kconfig": null,
+			"line": 4061,
+			"name": "rt_tgsigqueueinfo",
+			"number": 297,
+			"origname": "rt_tgsigqueueinfo",
+			"signature": [
+				"pid_t tgid",
+				"pid_t pid",
+				"int sig",
+				"siginfo_t *uinfo"
+			],
+			"symbol": "__x64_sys_rt_tgsigqueueinfo"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/events/core.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 298,
+			"kconfig": "PERF_EVENTS",
+			"line": 12336,
+			"name": "perf_event_open",
+			"number": 298,
+			"origname": "perf_event_open",
+			"signature": [
+				"struct perf_event_attr *attr_uptr",
+				"pid_t pid",
+				"int cpu",
+				"int group_fd",
+				"unsigned long flags"
+			],
+			"symbol": "__x64_sys_perf_event_open"
+		},
+		{
+			"esoteric": false,
+			"file": "net/socket.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 299,
+			"kconfig": "NET",
+			"line": 2944,
+			"name": "recvmmsg",
+			"number": 299,
+			"origname": "recvmmsg",
+			"signature": [
+				"int fd",
+				"struct mmsghdr *mmsg",
+				"unsigned int vlen",
+				"unsigned int flags",
+				"struct __kernel_timespec *timeout"
+			],
+			"symbol": "__x64_sys_recvmmsg"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/notify/fanotify/fanotify_user.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 300,
+			"kconfig": "FANOTIFY",
+			"line": 1393,
+			"name": "fanotify_init",
+			"number": 300,
+			"origname": "fanotify_init",
+			"signature": [
+				"unsigned int flags",
+				"unsigned int event_f_flags"
+			],
+			"symbol": "__x64_sys_fanotify_init"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/notify/fanotify/fanotify_user.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 301,
+			"kconfig": "FANOTIFY",
+			"line": 1884,
+			"name": "fanotify_mark",
+			"number": 301,
+			"origname": "fanotify_mark",
+			"signature": [
+				"int fanotify_fd",
+				"unsigned int flags",
+				"__u64 mask",
+				"int dfd",
+				"const char  *pathname"
+			],
+			"symbol": "__x64_sys_fanotify_mark"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sys.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 302,
+			"kconfig": null,
+			"line": 1684,
+			"name": "prlimit64",
+			"number": 302,
+			"origname": "prlimit64",
+			"signature": [
+				"pid_t pid",
+				"unsigned int resource",
+				"const struct rlimit64 *new_rlim",
+				"struct rlimit64 *old_rlim"
+			],
+			"symbol": "__x64_sys_prlimit64"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/fhandle.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 303,
+			"kconfig": "FHANDLE",
+			"line": 98,
+			"name": "name_to_handle_at",
+			"number": 303,
+			"origname": "name_to_handle_at",
+			"signature": [
+				"int dfd",
+				"const char *name",
+				"struct file_handle *handle",
+				"int *mnt_id",
+				"int flag"
+			],
+			"symbol": "__x64_sys_name_to_handle_at"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/fhandle.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 304,
+			"kconfig": "FHANDLE",
+			"line": 262,
+			"name": "open_by_handle_at",
+			"number": 304,
+			"origname": "open_by_handle_at",
+			"signature": [
+				"int mountdirfd",
+				"struct file_handle *handle",
+				"int flags"
+			],
+			"symbol": "__x64_sys_open_by_handle_at"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/time/posix-timers.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 305,
+			"kconfig": null,
+			"line": 1162,
+			"name": "clock_adjtime",
+			"number": 305,
+			"origname": "clock_adjtime",
+			"signature": [
+				"const clockid_t which_clock",
+				"struct __kernel_timex *utx"
+			],
+			"symbol": "__x64_sys_clock_adjtime"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/sync.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 306,
+			"kconfig": null,
+			"line": 149,
+			"name": "syncfs",
+			"number": 306,
+			"origname": "syncfs",
+			"signature": [
+				"int fd"
+			],
+			"symbol": "__x64_sys_syncfs"
+		},
+		{
+			"esoteric": false,
+			"file": "net/socket.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 307,
+			"kconfig": "NET",
+			"line": 2660,
+			"name": "sendmmsg",
+			"number": 307,
+			"origname": "sendmmsg",
+			"signature": [
+				"int fd",
+				"struct mmsghdr *mmsg",
+				"unsigned int vlen",
+				"unsigned int flags"
+			],
+			"symbol": "__x64_sys_sendmmsg"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/nsproxy.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 308,
+			"kconfig": null,
+			"line": 546,
+			"name": "setns",
+			"number": 308,
+			"origname": "setns",
+			"signature": [
+				"int fd",
+				"int flags"
+			],
+			"symbol": "__x64_sys_setns"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sys.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 309,
+			"kconfig": null,
+			"line": 2730,
+			"name": "getcpu",
+			"number": 309,
+			"origname": "getcpu",
+			"signature": [
+				"unsigned *cpup",
+				"unsigned *nodep",
+				"struct getcpu_cache *unused"
+			],
+			"symbol": "__x64_sys_getcpu"
+		},
+		{
+			"esoteric": false,
+			"file": "mm/process_vm_access.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 310,
+			"kconfig": "CROSS_MEMORY_ATTACH",
+			"line": 291,
+			"name": "process_vm_readv",
+			"number": 310,
+			"origname": "process_vm_readv",
+			"signature": [
+				"pid_t pid",
+				"const struct iovec *lvec",
+				"unsigned long liovcnt",
+				"const struct iovec *rvec",
+				"unsigned long riovcnt",
+				"unsigned long flags"
+			],
+			"symbol": "__x64_sys_process_vm_readv"
+		},
+		{
+			"esoteric": false,
+			"file": "mm/process_vm_access.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 311,
+			"kconfig": "CROSS_MEMORY_ATTACH",
+			"line": 298,
+			"name": "process_vm_writev",
+			"number": 311,
+			"origname": "process_vm_writev",
+			"signature": [
+				"pid_t pid",
+				"const struct iovec *lvec",
+				"unsigned long liovcnt",
+				"const struct iovec *rvec",
+				"unsigned long riovcnt",
+				"unsigned long flags"
+			],
+			"symbol": "__x64_sys_process_vm_writev"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/kcmp.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 312,
+			"kconfig": "KCMP",
+			"line": 135,
+			"name": "kcmp",
+			"number": 312,
+			"origname": "kcmp",
+			"signature": [
+				"pid_t pid1",
+				"pid_t pid2",
+				"int type",
+				"unsigned long idx1",
+				"unsigned long idx2"
+			],
+			"symbol": "__x64_sys_kcmp"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/module/main.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 313,
+			"kconfig": "MODULES",
+			"line": 3161,
+			"name": "finit_module",
+			"number": 313,
+			"origname": "finit_module",
+			"signature": [
+				"int fd",
+				"const char *uargs",
+				"int flags"
+			],
+			"symbol": "__x64_sys_finit_module"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sched/core.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 314,
+			"kconfig": null,
+			"line": 8080,
+			"name": "sched_setattr",
+			"number": 314,
+			"origname": "sched_setattr",
+			"signature": [
+				"pid_t pid",
+				"struct sched_attr *uattr",
+				"unsigned int flags"
+			],
+			"symbol": "__x64_sys_sched_setattr"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sched/core.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 315,
+			"kconfig": null,
+			"line": 8233,
+			"name": "sched_getattr",
+			"number": 315,
+			"origname": "sched_getattr",
+			"signature": [
+				"pid_t pid",
+				"struct sched_attr *uattr",
+				"unsigned int usize",
+				"unsigned int flags"
+			],
+			"symbol": "__x64_sys_sched_getattr"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/namei.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 316,
+			"kconfig": null,
+			"line": 5039,
+			"name": "renameat2",
+			"number": 316,
+			"origname": "renameat2",
+			"signature": [
+				"int olddfd",
+				"const char *oldname",
+				"int newdfd",
+				"const char *newname",
+				"unsigned int flags"
+			],
+			"symbol": "__x64_sys_renameat2"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/seccomp.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 317,
+			"kconfig": "SECCOMP",
+			"line": 2007,
+			"name": "seccomp",
+			"number": 317,
+			"origname": "seccomp",
+			"signature": [
+				"unsigned int op",
+				"unsigned int flags",
+				"void *uargs"
+			],
+			"symbol": "__x64_sys_seccomp"
+		},
+		{
+			"esoteric": false,
+			"file": "drivers/char/random.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 318,
+			"kconfig": null,
+			"line": 1364,
+			"name": "getrandom",
+			"number": 318,
+			"origname": "getrandom",
+			"signature": [
+				"char *ubuf",
+				"size_t len",
+				"unsigned int flags"
+			],
+			"symbol": "__x64_sys_getrandom"
+		},
+		{
+			"esoteric": false,
+			"file": "mm/memfd.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 319,
+			"kconfig": "MEMFD_CREATE",
+			"line": 271,
+			"name": "memfd_create",
+			"number": 319,
+			"origname": "memfd_create",
+			"signature": [
+				"const char *uname",
+				"unsigned int flags"
+			],
+			"symbol": "__x64_sys_memfd_create"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/kexec_file.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 320,
+			"kconfig": "KEXEC_FILE",
+			"line": 325,
+			"name": "kexec_file_load",
+			"number": 320,
+			"origname": "kexec_file_load",
+			"signature": [
+				"int kernel_fd",
+				"int initrd_fd",
+				"unsigned long cmdline_len",
+				"const char *cmdline_ptr",
+				"unsigned long flags"
+			],
+			"symbol": "__x64_sys_kexec_file_load"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/bpf/syscall.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 321,
+			"kconfig": "BPF_SYSCALL",
+			"line": 5239,
+			"name": "bpf",
+			"number": 321,
+			"origname": "bpf",
+			"signature": [
+				"int cmd",
+				"union bpf_attr *uattr",
+				"unsigned int size"
+			],
+			"symbol": "__x64_sys_bpf"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/exec.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 322,
+			"kconfig": null,
+			"line": 2116,
+			"name": "execveat",
+			"number": 322,
+			"origname": "execveat",
+			"signature": [
+				"int fd",
+				"const char *filename",
+				"const char *const *argv",
+				"const char *const *envp",
+				"int flags"
+			],
+			"symbol": "__x64_sys_execveat"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/userfaultfd.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 323,
+			"kconfig": "USERFAULTFD",
+			"line": 2178,
+			"name": "userfaultfd",
+			"number": 323,
+			"origname": "userfaultfd",
+			"signature": [
+				"int flags"
+			],
+			"symbol": "__x64_sys_userfaultfd"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/sched/membarrier.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 324,
+			"kconfig": "MEMBARRIER",
+			"line": 614,
+			"name": "membarrier",
+			"number": 324,
+			"origname": "membarrier",
+			"signature": [
+				"int cmd",
+				"unsigned int flags",
+				"int cpu_id"
+			],
+			"symbol": "__x64_sys_membarrier"
+		},
+		{
+			"esoteric": false,
+			"file": "mm/mlock.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 325,
+			"kconfig": "MMU",
+			"line": 626,
+			"name": "mlock2",
+			"number": 325,
+			"origname": "mlock2",
+			"signature": [
+				"unsigned long start",
+				"size_t len",
+				"int flags"
+			],
+			"symbol": "__x64_sys_mlock2"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/read_write.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 326,
+			"kconfig": null,
+			"line": 1558,
+			"name": "copy_file_range",
+			"number": 326,
+			"origname": "copy_file_range",
+			"signature": [
+				"int fd_in",
+				"loff_t *off_in",
+				"int fd_out",
+				"loff_t *off_out",
+				"size_t len",
+				"unsigned int flags"
+			],
+			"symbol": "__x64_sys_copy_file_range"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/read_write.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 327,
+			"kconfig": null,
+			"line": 1060,
+			"name": "preadv2",
+			"number": 327,
+			"origname": "preadv2",
+			"signature": [
+				"unsigned long fd",
+				"const struct iovec *vec",
+				"unsigned long vlen",
+				"unsigned long pos_l",
+				"unsigned long pos_h",
+				"rwf_t flags"
+			],
+			"symbol": "__x64_sys_preadv2"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/read_write.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 328,
+			"kconfig": null,
+			"line": 1080,
+			"name": "pwritev2",
+			"number": 328,
+			"origname": "pwritev2",
+			"signature": [
+				"unsigned long fd",
+				"const struct iovec *vec",
+				"unsigned long vlen",
+				"unsigned long pos_l",
+				"unsigned long pos_h",
+				"rwf_t flags"
+			],
+			"symbol": "__x64_sys_pwritev2"
+		},
+		{
+			"esoteric": false,
+			"file": "mm/mprotect.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 329,
+			"kconfig": "X86_INTEL_MEMORY_PROTECTION_KEYS",
+			"line": 844,
+			"name": "pkey_mprotect",
+			"number": 329,
+			"origname": "pkey_mprotect",
+			"signature": [
+				"unsigned long start",
+				"size_t len",
+				"unsigned long prot",
+				"int pkey"
+			],
+			"symbol": "__x64_sys_pkey_mprotect"
+		},
+		{
+			"esoteric": false,
+			"file": "mm/mprotect.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 330,
+			"kconfig": "X86_INTEL_MEMORY_PROTECTION_KEYS",
+			"line": 850,
+			"name": "pkey_alloc",
+			"number": 330,
+			"origname": "pkey_alloc",
+			"signature": [
+				"unsigned long flags",
+				"unsigned long init_val"
+			],
+			"symbol": "__x64_sys_pkey_alloc"
+		},
+		{
+			"esoteric": false,
+			"file": "mm/mprotect.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 331,
+			"kconfig": "X86_INTEL_MEMORY_PROTECTION_KEYS",
+			"line": 880,
+			"name": "pkey_free",
+			"number": 331,
+			"origname": "pkey_free",
+			"signature": [
+				"int pkey"
+			],
+			"symbol": "__x64_sys_pkey_free"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/stat.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 332,
+			"kconfig": null,
+			"line": 677,
+			"name": "statx",
+			"number": 332,
+			"origname": "statx",
+			"signature": [
+				"int dfd",
+				"const char *filename",
+				"unsigned flags",
+				"unsigned int mask",
+				"struct statx *buffer"
+			],
+			"symbol": "__x64_sys_statx"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/aio.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 333,
+			"kconfig": "AIO",
+			"line": 2239,
+			"name": "io_pgetevents",
+			"number": 333,
+			"origname": "io_pgetevents",
+			"signature": [
+				"aio_context_t ctx_id",
+				"long min_nr",
+				"long nr",
+				"struct io_event *events",
+				"struct __kernel_timespec *timeout",
+				"const struct __aio_sigset *usig"
+			],
+			"symbol": "__x64_sys_io_pgetevents"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/rseq.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 334,
+			"kconfig": "RSEQ",
+			"line": 365,
+			"name": "rseq",
+			"number": 334,
+			"origname": "rseq",
+			"signature": [
+				"struct rseq *rseq",
+				"u32 rseq_len",
+				"int flags",
+				"u32 sig"
+			],
+			"symbol": "__x64_sys_rseq"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/signal.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 424,
+			"kconfig": null,
+			"line": 3871,
+			"name": "pidfd_send_signal",
+			"number": 424,
+			"origname": "pidfd_send_signal",
+			"signature": [
+				"int pidfd",
+				"int sig",
+				"siginfo_t *info",
+				"unsigned int flags"
+			],
+			"symbol": "__x64_sys_pidfd_send_signal"
+		},
+		{
+			"esoteric": false,
+			"file": "io_uring/io_uring.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 425,
+			"kconfig": "IO_URING",
+			"line": 4043,
+			"name": "io_uring_setup",
+			"number": 425,
+			"origname": "io_uring_setup",
+			"signature": [
+				"u32 entries",
+				"struct io_uring_params *params"
+			],
+			"symbol": "__x64_sys_io_uring_setup"
+		},
+		{
+			"esoteric": false,
+			"file": "io_uring/io_uring.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 426,
+			"kconfig": "IO_URING",
+			"line": 3562,
+			"name": "io_uring_enter",
+			"number": 426,
+			"origname": "io_uring_enter",
+			"signature": [
+				"unsigned int fd",
+				"u32 to_submit",
+				"u32 min_complete",
+				"u32 flags",
+				"const void *argp",
+				"size_t argsz"
+			],
+			"symbol": "__x64_sys_io_uring_enter"
+		},
+		{
+			"esoteric": false,
+			"file": "io_uring/io_uring.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 427,
+			"kconfig": "IO_URING",
+			"line": 4494,
+			"name": "io_uring_register",
+			"number": 427,
+			"origname": "io_uring_register",
+			"signature": [
+				"unsigned int fd",
+				"unsigned int opcode",
+				"void *arg",
+				"unsigned int nr_args"
+			],
+			"symbol": "__x64_sys_io_uring_register"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/namespace.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 428,
+			"kconfig": null,
+			"line": 2687,
+			"name": "open_tree",
+			"number": 428,
+			"origname": "open_tree",
+			"signature": [
+				"int dfd",
+				"const char *filename",
+				"unsigned flags"
+			],
+			"symbol": "__x64_sys_open_tree"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/namespace.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 429,
+			"kconfig": null,
+			"line": 4058,
+			"name": "move_mount",
+			"number": 429,
+			"origname": "move_mount",
+			"signature": [
+				"int from_dfd",
+				"const char *from_pathname",
+				"int to_dfd",
+				"const char *to_pathname",
+				"unsigned int flags"
+			],
+			"symbol": "__x64_sys_move_mount"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/fsopen.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 430,
+			"kconfig": null,
+			"line": 115,
+			"name": "fsopen",
+			"number": 430,
+			"origname": "fsopen",
+			"signature": [
+				"const char *_fs_name",
+				"unsigned int flags"
+			],
+			"symbol": "__x64_sys_fsopen"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/fsopen.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 431,
+			"kconfig": null,
+			"line": 314,
+			"name": "fsconfig",
+			"number": 431,
+			"origname": "fsconfig",
+			"signature": [
+				"int fd",
+				"unsigned int cmd",
+				"const char *_key",
+				"const void *_value",
+				"int aux"
+			],
+			"symbol": "__x64_sys_fsconfig"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/namespace.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 432,
+			"kconfig": null,
+			"line": 3929,
+			"name": "fsmount",
+			"number": 432,
+			"origname": "fsmount",
+			"signature": [
+				"int fs_fd",
+				"unsigned int flags",
+				"unsigned int attr_flags"
+			],
+			"symbol": "__x64_sys_fsmount"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/fsopen.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 433,
+			"kconfig": null,
+			"line": 158,
+			"name": "fspick",
+			"number": 433,
+			"origname": "fspick",
+			"signature": [
+				"int dfd",
+				"const char *path",
+				"unsigned int flags"
+			],
+			"symbol": "__x64_sys_fspick"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/pid.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 434,
+			"kconfig": null,
+			"line": 624,
+			"name": "pidfd_open",
+			"number": 434,
+			"origname": "pidfd_open",
+			"signature": [
+				"pid_t pid",
+				"unsigned int flags"
+			],
+			"symbol": "__x64_sys_pidfd_open"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/fork.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 435,
+			"kconfig": null,
+			"line": 3197,
+			"name": "clone3",
+			"number": 435,
+			"origname": "clone3",
+			"signature": [
+				"struct clone_args *uargs",
+				"size_t size"
+			],
+			"symbol": "__x64_sys_clone3"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/open.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 436,
+			"kconfig": null,
+			"line": 1559,
+			"name": "close_range",
+			"number": 436,
+			"origname": "close_range",
+			"signature": [
+				"unsigned int fd",
+				"unsigned int max_fd",
+				"unsigned int flags"
+			],
+			"symbol": "__x64_sys_close_range"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/open.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 437,
+			"kconfig": null,
+			"line": 1441,
+			"name": "openat2",
+			"number": 437,
+			"origname": "openat2",
+			"signature": [
+				"int dfd",
+				"const char *filename",
+				"struct open_how *how",
+				"size_t usize"
+			],
+			"symbol": "__x64_sys_openat2"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/pid.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 438,
+			"kconfig": null,
+			"line": 722,
+			"name": "pidfd_getfd",
+			"number": 438,
+			"origname": "pidfd_getfd",
+			"signature": [
+				"int pidfd",
+				"int fd",
+				"unsigned int flags"
+			],
+			"symbol": "__x64_sys_pidfd_getfd"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/open.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 439,
+			"kconfig": null,
+			"line": 534,
+			"name": "faccessat2",
+			"number": 439,
+			"origname": "faccessat2",
+			"signature": [
+				"int dfd",
+				"const char *filename",
+				"int mode",
+				"int flags"
+			],
+			"symbol": "__x64_sys_faccessat2"
+		},
+		{
+			"esoteric": false,
+			"file": "mm/madvise.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 440,
+			"kconfig": "ADVISE_SYSCALLS",
+			"line": 1463,
+			"name": "process_madvise",
+			"number": 440,
+			"origname": "process_madvise",
+			"signature": [
+				"int pidfd",
+				"const struct iovec *vec",
+				"size_t vlen",
+				"int behavior",
+				"unsigned int flags"
+			],
+			"symbol": "__x64_sys_process_madvise"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/eventpoll.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 441,
+			"kconfig": "EPOLL",
+			"line": 2378,
+			"name": "epoll_pwait2",
+			"number": 441,
+			"origname": "epoll_pwait2",
+			"signature": [
+				"int epfd",
+				"struct epoll_event *events",
+				"int maxevents",
+				"const struct __kernel_timespec *timeout",
+				"const sigset_t *sigmask",
+				"size_t sigsetsize"
+			],
+			"symbol": "__x64_sys_epoll_pwait2"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/namespace.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 442,
+			"kconfig": null,
+			"line": 4629,
+			"name": "mount_setattr",
+			"number": 442,
+			"origname": "mount_setattr",
+			"signature": [
+				"int dfd",
+				"const char *path",
+				"unsigned int flags",
+				"struct mount_attr *uattr",
+				"size_t usize"
+			],
+			"symbol": "__x64_sys_mount_setattr"
+		},
+		{
+			"esoteric": false,
+			"file": "fs/quota/quota.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 443,
+			"kconfig": "QUOTACTL",
+			"line": 973,
+			"name": "quotactl_fd",
+			"number": 443,
+			"origname": "quotactl_fd",
+			"signature": [
+				"unsigned int fd",
+				"unsigned int cmd",
+				"qid_t id",
+				"void *addr"
+			],
+			"symbol": "__x64_sys_quotactl_fd"
+		},
+		{
+			"esoteric": false,
+			"file": "security/landlock/syscalls.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 444,
+			"kconfig": "SECURITY_LANDLOCK",
+			"line": 157,
+			"name": "landlock_create_ruleset",
+			"number": 444,
+			"origname": "landlock_create_ruleset",
+			"signature": [
+				"const struct landlock_ruleset_attr *const attr",
+				"const size_t size",
+				"const __u32 flags"
+			],
+			"symbol": "__x64_sys_landlock_create_ruleset"
+		},
+		{
+			"esoteric": false,
+			"file": "security/landlock/syscalls.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 445,
+			"kconfig": "SECURITY_LANDLOCK",
+			"line": 305,
+			"name": "landlock_add_rule",
+			"number": 445,
+			"origname": "landlock_add_rule",
+			"signature": [
+				"const int ruleset_fd",
+				"const enum landlock_rule_type rule_type",
+				"const void *const rule_attr",
+				"const __u32 flags"
+			],
+			"symbol": "__x64_sys_landlock_add_rule"
+		},
+		{
+			"esoteric": false,
+			"file": "security/landlock/syscalls.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 446,
+			"kconfig": "SECURITY_LANDLOCK",
+			"line": 397,
+			"name": "landlock_restrict_self",
+			"number": 446,
+			"origname": "landlock_restrict_self",
+			"signature": [
+				"const int ruleset_fd",
+				"const __u32 flags"
+			],
+			"symbol": "__x64_sys_landlock_restrict_self"
+		},
+		{
+			"esoteric": false,
+			"file": "mm/secretmem.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 447,
+			"kconfig": "SECRETMEM",
+			"line": 231,
+			"name": "memfd_secret",
+			"number": 447,
+			"origname": "memfd_secret",
+			"signature": [
+				"unsigned int flags"
+			],
+			"symbol": "__x64_sys_memfd_secret"
+		},
+		{
+			"esoteric": false,
+			"file": "mm/oom_kill.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 448,
+			"kconfig": "MMU",
+			"line": 1198,
+			"name": "process_mrelease",
+			"number": 448,
+			"origname": "process_mrelease",
+			"signature": [
+				"int pidfd",
+				"unsigned int flags"
+			],
+			"symbol": "__x64_sys_process_mrelease"
+		},
+		{
+			"esoteric": false,
+			"file": "kernel/futex/syscalls.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 449,
+			"kconfig": "FUTEX",
+			"line": 246,
+			"name": "futex_waitv",
+			"number": 449,
+			"origname": "futex_waitv",
+			"signature": [
+				"struct futex_waitv *waiters",
+				"unsigned int nr_futexes",
+				"unsigned int flags",
+				"struct __kernel_timespec *timeout",
+				"clockid_t clockid"
+			],
+			"symbol": "__x64_sys_futex_waitv"
+		},
+		{
+			"esoteric": false,
+			"file": "mm/mempolicy.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 450,
+			"kconfig": "NUMA",
+			"line": 1505,
+			"name": "set_mempolicy_home_node",
+			"number": 450,
+			"origname": "set_mempolicy_home_node",
+			"signature": [
+				"unsigned long start",
+				"unsigned long len",
+				"unsigned long home_node",
+				"unsigned long flags"
+			],
+			"symbol": "__x64_sys_set_mempolicy_home_node"
+		},
+		{
+			"esoteric": false,
+			"file": "mm/filemap.c",
+			"good_location": true,
+			"grepped_location": false,
+			"index": 451,
+			"kconfig": null,
+			"line": 4207,
+			"name": "cachestat",
+			"number": 451,
+			"origname": "cachestat",
+			"signature": [
+				"unsigned int fd",
+				"struct cachestat_range *cstat_range",
+				"struct cachestat *cstat",
+				"unsigned int flags"
+			],
+			"symbol": "__x64_sys_cachestat"
+		}
+	],
+	"systrack_version": "0.3"
+}
\ No newline at end of file
diff --git a/data/safelist/disposable_domain_list.txt b/data/safelist/disposable_domain_list.txt
index d123c18033a..156767fe3aa 100644
--- a/data/safelist/disposable_domain_list.txt
+++ b/data/safelist/disposable_domain_list.txt
@@ -27076,3 +27076,7 @@ wqcefp.com
 lcleanersad.com
 kiabws.com
 kiabws.online
+upived.online
+relay.firefox.com
+bupt.edu.cn
+motivue.com
diff --git a/data/safelist/domains.py b/data/safelist/domains.py
index e2fb135090d..298cdb23cc9 100644
--- a/data/safelist/domains.py
+++ b/data/safelist/domains.py
@@ -1,64 +1,197 @@
-domain_passlist = [
+domain_passlist_re = [
     # Certificate Trust Update domains
-    "^ocsp\.usertrust\.com$",
-    "\.windows\.com$",
-    "^ocsp\.comodoca\.com$",
-    "^ctldl\.windowsupdate\.com$",
-    "^www\.download\.windowsupdate\.com$",
-    "^crl\.microsoft\.com$",
-    "^urs\.microsoft\.com$",
-    "\.microsoft\.com$",
-    "\.skype\.com$",
-    "\.live\.com$",
-    "clients[0-9]+\.google\.com$",
-    "\.googleapis\.com$",
-    "\.gvt1\.com$",
-    "\.msftncsi\.com$",
-    "^apps\.identrust\.com$",
-    "^isrg\.trustid\.ocsp\.identrust\.com$",
-    "^urs\.microsoft\.com$",
-    "^config\.edge\.skype\.com$",
-    "^client-office365-tas\.msedge\.net$",
-    "ecs\.office\.com$",
-    "^files\.acrobat\.com$",
-    "^acroipm2\.adobe\.com$",
-    "^acroipm\.adobe\.com$",
-    "^ocsp\.trust-provider\.com$",
-    "^ocsp\.comodoca4\.com$",
-    "^ocsp\.pki\.goog$",
-    "^oneclient.sfx.ms$",
-    "^ocsp\.verisign\.com$",
-    "^s2\.symcb\.com$",
-    "^sv\.symcd\.com$",
-    "^s\.symcd\.com$",
-    "^ts-ocsp\.ws\.symantec\.com$",
-    "^ocsp\.thawte\.com$",
-    "^crl\.thawte\.com$",
-    "^crt\.comodoca\.com$",
-    "^crt\.usertrust\.com$",
-    "^ocsp\.sectigo\.com$",
-    "^crl\.globalsign\.net$",
-    "^cacerts\.digicert\.com$",
-    "^ocsp\.digicert\.com$",
-    "^crl3\.digicert\.com$"
-    "^crl4\.digicert\.com$"
-    "\.amazontrust\.com$",
-    "\.opera\.com",
-    "\.ss2\.us$",
-    "\.google-analytics\.com$",
-    "\.googletagmanager\.com$",
-    "^stats\.g\.doubleclick\.net$",
-    "^www\.google\.com$",
-    "^cdn\.amplitude\.com$",
-    "\.msn\.com",
-    "\.operacdn\.com$",
-    "^cdn\.jsdelivr\.net",
-    "^fonts\.gstatic\.com$",
-    "\.edgesuite\.net$",
-    "^www\.bing\.com$",
-    "^api\.bing\.com$",
-    "^crl\.pki\.goog$",
-    "^crl\.identrust\.com$",
-    "^r3.o.lencr.org$",
+    r"^ocsp\.usertrust\.com$",
+    r"\.windows\.com$",
+    r"\.windowsupdate\.com$",
+    r"^ocsp\.comodoca\.com$",
+    r"^crl\.microsoft\.com$",
+    r"^urs\.microsoft\.com$",
+    r"\.microsoft\.com$",
+    r"\.skype\.com$",
+    r"\.live\.com$",
+    r"clients[0-9]+\.google\.com$",
+    r"\.googleapis\.com$",
+    r"\.gvt1\.com$",
+    r"\.msftncsi\.com$",
+    r"^apps\.identrust\.com$",
+    r"^isrg\.trustid\.ocsp\.identrust\.com$",
+    r"^urs\.microsoft\.com$",
+    r"^config\.edge\.skype\.com$",
+    r"^client-office365-tas\.msedge\.net$",
+    r"ecs\.office\.com$",
+    r"^files\.acrobat\.com$",
+    r"^acroipm2\.adobe\.com$",
+    r"^acroipm\.adobe\.com$",
+    r"^ocsp\.trust-provider\.com$",
+    r"^ocsp\.comodoca4\.com$",
+    r"^ocsp\.pki\.goog$",
+    r"^oneclient.sfx.ms$",
+    r"^ocsp\.verisign\.com$",
+    r"^s2\.symcb\.com$",
+    r"^sv\.symcd\.com$",
+    r"^s\.symcd\.com$",
+    r"^ts-ocsp\.ws\.symantec\.com$",
+    r"^ocsp\.thawte\.com$",
+    r"^crl\.thawte\.com$",
+    r"^crt\.comodoca\.com$",
+    r"^crt\.usertrust\.com$",
+    r"^ocsp\.sectigo\.com$",
+    r"^crl\.globalsign\.net$",
+    r"^cacerts\.digicert\.com$",
+    r"^ocsp\.digicert\.com$",
+    r"^crl3\.digicert\.com$",
+    r"^crl4\.digicert\.com$",
+    r"\.amazontrust\.com$",
+    r"\.opera\.com",
+    r"\.ss2\.us$",
+    r"\.google-analytics\.com$",
+    r"\.googletagmanager\.com$",
+    r"^stats\.g\.doubleclick\.net$",
+    r"^www\.google\.com$",
+    r"^cdn\.amplitude\.com$",
+    r"\.msn\.com",
+    r"\.operacdn\.com$",
+    r"^cdn\.jsdelivr\.net",
+    r"^fonts\.gstatic\.com$",
+    r"\.edgesuite\.net$",
+    r"^www\.bing\.com$",
+    r"^api\.bing\.com$",
+    r"^crl\.pki\.goog$",
+    r"^crl\.identrust\.com$",
+    r"^r3\.o\.lencr\.org$",
+    r"^x1\.c\.lencr\.org$",
+    r"^pki\.goog$",
+    r"^trustocean\.crt\.sectigo\.com$",
+    r"^statuse\.digitalcertvalidation\.com$",
+    r"certificates\.intel\.com",
+    r"nsatc\.net",
+    r"akamaiedge\.net",
+    r"edgekey\.net",
+    r"trafficmanager\.net",
+    r"hwcdn\.net",
+    r"akamai\.net",
+    r"akadns\.net",
+    r"v0cdn\.net",
+    r"msecnd\.net",
+    r"crl\.verisign\.com",
+    r"e-msedge\.net",
+    r"edgecastdns\.net",
+    r"swupmf\.adobe\.com",
+    r"officeapps\.live\.com",
+    r"ocsp\.godaddy\.com",
+    r"digicert\.com",
+    r"identrust\.com",
+    r"dns\.msftncsi\.com",
+    r"wpad",
+    r"teredo\.ipv6\.microsoft\.com",
+    r"rt\.microsoft\.com",
+    r"isatap",
+    r"ipv6.msftncsi\.com",
+    r"mozilla\.org",
+    r"mozilla\.com",
+    r"office\.net",
+]
+
 
+domain_passlist = [
+    # Certificate Trust Update domains
+    "ocsp.usertrust.com",
+    "windows.com",
+    "time.windows.com",
+    "ocsp.comodoca.com",
+    "ctldl.windowsupdate.com",
+    "www.download.windowsupdate.com",
+    "crl.microsoft.com",
+    "urs.microsoft.com",
+    "microsoft.com",
+    "skype.com",
+    "live.com",
+    "nsatc.net",
+    "akamaiedge.net",
+    "edgekey.net",
+    "trafficmanager.net",
+    "hwcdn.net",
+    "akamai.net",
+    "akadns.net",
+    "v0cdn.net",
+    "msecnd.net",
+    "crl.verisign.com",
+    "e-msedge.net",
+    "edgecastdns.net",
+    "swupmf.adobe.com",
+    "officeapps.live.com",
+    "ocsp.godaddy.com",
+    "digicert.com",
+    "identrust.com",
+    "dns.msftncsi.com",
+    "wpad",
+    "teredo.ipv6.microsoft.com",
+    "rt.microsoft.com",
+    "isatap",
+    "ipv6.msftncsi.com",
+    "clients0.google.com",
+    "clients1.google.com",
+    "clients2.google.com",
+    "clients3.google.com",
+    "clients4.google.com",
+    "clients5.google.com",
+    "clients6.google.com",
+    "clients7.google.com",
+    "clients8.google.com",
+    "clients9.google.com",
+    "googleapis.com",
+    "gvt1.com",
+    "msftncsi.com",
+    "apps.identrust.com",
+    "isrg.trustid.ocsp.identrust.com",
+    "urs.microsoft.com",
+    "config.edge.skype.com",
+    "client-office365-tas.msedge.net",
+    "ecs.office.com",
+    "files.acrobat.com",
+    "acroipm2.adobe.com",
+    "acroipm.adobe.com",
+    "ocsp.trust-provider.com",
+    "ocsp.comodoca4.com",
+    "ocsp.pki.goog",
+    "oneclient.sfx.ms",
+    "ocsp.verisign.com",
+    "s2.symcb.com",
+    "sv.symcd.com",
+    "s.symcd.com",
+    "ts-ocsp.ws.symantec.com",
+    "ocsp.thawte.com",
+    "crl.thawte.com",
+    "crt.comodoca.com",
+    "crt.usertrust.com",
+    "ocsp.sectigo.com",
+    "crl.globalsign.net",
+    "cacerts.digicert.com",
+    "ocsp.digicert.com",
+    "crl3.digicert.com",
+    "crl4.digicert.com",
+    "amazontrust.com",
+    "opera.com",
+    "ss2.us",
+    "google-analytics.com",
+    "googletagmanager.com",
+    "stats.g.doubleclick.net",
+    "www.google.com",
+    "cdn.amplitude.com",
+    "msn.com",
+    "operacdn.com",
+    "cdn.jsdelivr.net",
+    "fonts.gstatic.com",
+    "edgesuite.net",
+    "www.bing.com",
+    "api.bing.com",
+    "crl.pki.goog",
+    "crl.identrust.com",
+    "r3.o.lencr.org",
+    "x1.c.lencr.org",
+    "pki.goog",
+    "trustocean.crt.sectigo.com",
+    "statuse.digitalcertvalidation.com",
+    "certificates.intel.com",
+    "hostonly.hostonly",
 ]
diff --git a/data/safelist/replacepatterns.py b/data/safelist/replacepatterns.py
new file mode 100644
index 00000000000..e0e2130f38d
--- /dev/null
+++ b/data/safelist/replacepatterns.py
@@ -0,0 +1,36 @@
+# Add uppercase version too as ComputerName is USERNAME-PC
+SANDBOX_USERNAMES = []
+
+# Files blacklisted because of generating noise in reports.
+FILES_DENYLIST = [
+    "PIPE\\srvsvc",
+    "Device\\KsecDD",
+    "MountPointManager",
+    "DosDevices\\pipe",
+    "\\Device\\RasAcd",
+    "system32\\WindowsPowerShell\\v1.0\\Modules",  # Powershell path.
+    "WindowsPowerShell\\Modules",
+    "Windows\\Microsoft.Net\\assembly",
+    "\\??\\Nsi",
+]
+
+FILES_ENDING_DENYLIST = (".mui", "Zone.Identifier", ".Local", ".Local\\")
+
+SERVICES_DENYLIST = ["RASMAN", "WinHttpAutoProxySvc", "gpsvc", "CryptSvc"]
+MUTEX_DENYLIST = []
+
+NORMALIZED_PATHS = {
+    "C:\\Windows": "%WINDIR%",
+    "C:\\Users\\<USER>\\AppData\\Local": "%LocalAppData%",
+    "C:\\Users\\<USER>\\AppData\\": "%APPDATA%",
+}
+
+REGISTRY_TRANSLATION = {
+    "HKEY_CLASSES_ROOT": "HKCR",
+    "HKEY_CURRENT_USER": "HKCU",
+    "HKEY_LOCAL_MACHINE": "HKLM",
+    "HKEY_USERS": "HKU",
+    "HKEY_CURRENT_CONFIG": "HKCC",
+    "\\Registry\\User": "HKCU",
+    "\\Registry\\Machine": "HKLM",
+}
diff --git a/data/src/binpackage/Makefile b/data/src/binpackage/Makefile
index e052c988bc6..748f7c1488f 100644
--- a/data/src/binpackage/Makefile
+++ b/data/src/binpackage/Makefile
@@ -1,3 +1,2 @@
 execsc.exe: execsc.c
 	i586-mingw32msvc-cc -Wall -o $@ $<
-
diff --git a/data/src/binpackage/execsc.c b/data/src/binpackage/execsc.c
index 55194951ec1..d8cd5b8a7fc 100644
--- a/data/src/binpackage/execsc.c
+++ b/data/src/binpackage/execsc.c
@@ -20,4 +20,3 @@ int main (int argc, char ** argv) {
 
 	return 0;
 }
-
diff --git a/data/yara/CAPE/AdaptixBeacon.yar b/data/yara/CAPE/AdaptixBeacon.yar
new file mode 100644
index 00000000000..4e68fcc7a8a
--- /dev/null
+++ b/data/yara/CAPE/AdaptixBeacon.yar
@@ -0,0 +1,18 @@
+rule AdaptixBeacon
+{
+    meta:
+        author = "enzok"
+        description = "AdaptixBeacon Payload"
+        cape_type = "AdaptixBeacon Payload"
+        hash = "f78f5803be5704420cbb2e0ac3c57fcb3d9cdf443fbf1233c069760bee115b5d"
+    strings:
+        $conf_1 = {8D ?? ?? E8 [3] 00 4? 89 [1-2] 4? 8B 4C 24 ?? E8 [3] 00 4? 8B 53 48 66 [0-1] 89 04 ?? E8}
+        $conf_2 = {E8 [3] 00 48 8B 4C 24 ?? 48 89 43 78 E8 [3] 00 48 8B 4C 24 ?? 89 83 80 00 00 00 E8 [3] 00 03 83 80 00 00 00 48 8B 4C 24}
+        $conf_3 = {E8 [3] 00 4? 8B 4C 24 ?? 4? 89 ?? 4? 89 43 58 E8 [3] 00 4? 8B 4C 24 ?? 4? 89 ?? 4? 89 43 60 E8 [3] 00 4? 8B 4C 24 ?? 4? 89 ?? 4? 89 43 68}
+        $conf_4 = {8D ?? ?? 4? 89 ?? FF ?? 4? 89 ?? 4? 89 ?? 4? 8B ?? FF ?? ?? 4? 8B ?? 48 66 ?? 89 ?? ?? EB}
+        $conf_5 = {48 89 ?? 4? 89 ?? FF ?? 4? 89 ?? 4? 89 D9 4? 89 ?? ?? 4? 8B 03 FF ?? ?? 4? 89 ?? 4? 89 ?? 4? 89 ?? ?? 4? 8B 03 FF ?? ?? 4? 89}
+        $wininet_1 = {B9 77 00 00 00 [0-4] E8 [4] B9 69 00 00 00 88 ?4 24 [0-4] E8 [4] B9 6E 00 00 00 88 ?4 24}
+        $wininet_2 = {B9 69 00 00 00 88 ?4 24 [0-4] E8 [4] B9 6E 00 00 00 88 ?4 24 [0-4] E8 [4] B9 65 00 00 00 88 ?4 24}
+    condition:
+        1 of ($conf_*) and 1 of ($wininet_*)
+}
diff --git a/data/yara/CAPE/AgentTesla.yar b/data/yara/CAPE/AgentTesla.yar
index a2705c9b11e..0410093a7e9 100644
--- a/data/yara/CAPE/AgentTesla.yar
+++ b/data/yara/CAPE/AgentTesla.yar
@@ -44,7 +44,7 @@ rule AgentTeslaV2 {
     meta:
         author = "ditekshen"
         description = "AgenetTesla Type 2 Keylogger payload"
-        cape_type = "AgentTeslaV2 Payload"
+        cape_type = "AgentTesla Payload"
     strings:
         $s1 = "get_kbHook" ascii
         $s2 = "GetPrivateProfileString" ascii
@@ -70,7 +70,7 @@ rule AgentTeslaV3 {
     meta:
       author = "ditekshen"
       description = "AgentTeslaV3 infostealer payload"
-      cape_type = "AgentTeslaV3 payload"
+      cape_type = "AgentTesla payload"
     strings:
         $s1 = "get_kbok" fullword ascii
         $s2 = "get_CHoo" fullword ascii
@@ -85,6 +85,14 @@ rule AgentTeslaV3 {
         $s11 = "credential" fullword wide
         $s12 = "AccountConfiguration+" wide
         $s13 = "<a.+?href\\s*=\\s*([\"'])(?<href>.+?)\\1[^>]*>" fullword wide
+        $s14 = "set_Lenght" fullword ascii
+        $s15 = "get_Keys" fullword ascii
+        $s16 = "set_AllowAutoRedirect" fullword ascii
+        $s17 = "set_wtqQe" fullword ascii
+        $s18 = "set_UseShellExecute" fullword ascii
+        $s19 = "set_IsBodyHtml" fullword ascii
+        $s20 = "set_FElvMn" fullword ascii
+        $s21 = "set_RedirectStandardOutput" fullword ascii
 
         $g1 = "get_Clipboard" fullword ascii
         $g2 = "get_Keyboard" fullword ascii
@@ -99,5 +107,89 @@ rule AgentTeslaV3 {
         $m4 = "%startupfolder%\\%insfolder%\\%insname%/\\%insfolder%\\Software\\Microsoft\\Windows\\CurrentVersion\\Run%insregname%SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\StartupApproved\\RunTruehttp" ascii
         $m5 = "\\WindowsLoad%ftphost%/%ftpuser%%ftppassword%STORLengthWriteCloseGetBytesOpera" ascii
     condition:
-        (uint16(0) == 0x5a4d and (8 of ($s*) or (6 of ($*) and all of ($g*)))) or (2 of ($m*))
+        (uint16(0) == 0x5a4d and (8 of ($s*) or (6 of ($s*) and 4 of ($g*)))) or (2 of ($m*))
+}
+
+rule AgentTeslaV4
+{
+    meta:
+        author = "kevoreilly"
+        description = "AgentTesla Payload"
+        cape_type = "AgentTesla Payload"
+        packed = "7f8a95173e17256698324886bb138b7936b9e8c5b9ab8fffbfe01080f02f286c"
+    strings:
+        $decode1 = {(07|FE 0C 01 00) (07|FE 0C 01 00) 8E 69 (17|20 01 00 00 00) 63 8F ?? 00 00 01 25 47 (06|FE 0C 00 00) (1A|20 04 00 00 00) 58 4A D2 61 D2 52}
+        $decode2 = {(07|FE 0C 01 00) (08|FE 0C 02 00) 8F ?? 00 00 01 25 47 (07|FE 0C 01 00) (11 07|FE 0C 07 00) 91 (06|FE 0C 00 00) (1A|20 04 00 00 00) 58 4A 61 D2 61 D2 52}
+        $decode3 = {(07|FE 0C 01 00) (11 07|FE 0C 07 00) 8F ?? 00 00 01 25 47 (07|FE 0C 01 00) (08|FE 0C 02 00) 91 61 D2 52}
+    condition:
+        uint16(0) == 0x5A4D and all of them
+}
+
+rule AgentTeslaV4JIT
+{
+    meta:
+        author = "kevoreilly"
+        description = "AgentTesla JIT-compiled native code"
+        cape_type = "AgentTesla Payload"
+        packed = "7f8a95173e17256698324886bb138b7936b9e8c5b9ab8fffbfe01080f02f286c"
+    strings:
+        $decode1 = {8B 01 8B 40 3C FF 50 10 8B C8 E8 [4] 89 45 CC B8 1A 00 00 00}
+        $decode2 = {83 F8 18 75 2? 8B [2-5] D1 F8}
+        $decode3 = {8D 4C 0? 08 0F B6 01 [0-3] 0F B6 5? 04 33 C2 88 01 B8 19 00 00 00}
+    condition:
+        2 of them
+}
+
+rule AgentTeslaV5 {
+    meta:
+      author = "ClaudioWayne"
+      description = "AgentTeslaV5 infostealer payload"
+      cape_type = "AgentTesla payload"
+      sample = "893f4dc8f8a1dcee05a0840988cf90bc93c1cda5b414f35a6adb5e9f40678ce9"
+    strings:
+        $template1 = "<br>User Name: " fullword wide
+        $template2 = "<br>Username: " fullword wide
+        $template3 = "<br>RAM: " fullword wide
+        $template4 = "<br>Password: " fullword wide
+        $template5 = "<br>OSFullName: " fullword wide
+        $template6 = "<br><hr>Copied Text: <br>" fullword wide
+        $template7 = "<br>CPU: " fullword wide
+        $template8 = "<br>Computer Name: " fullword wide
+        $template9 = "<br>Application: " fullword wide
+
+        $chromium_browser1 = "Comodo\\Dragon\\User Data" fullword wide
+        $chromium_browser2 = "Fenrir Inc\\Sleipnir5\\setting\\modules\\ChromiumViewer" fullword wide
+        $chromium_browser3 = "Google\\Chrome\\User Data" fullword wide
+        $chromium_browser4 = "Elements Browser\\User Data" fullword wide
+        $chromium_browser5 = "Yandex\\YandexBrowser\\User Data" fullword wide
+        $chromium_browser6 = "MapleStudio\\ChromePlus\\User Data" fullword wide
+
+        $mozilla_browser1 = "\\Mozilla\\SeaMonkey\\" fullword wide
+        $mozilla_browser2 = "\\K-Meleon\\" fullword wide
+        $mozilla_browser3 = "\\NETGATE Technologies\\BlackHawk\\" fullword wide
+        $mozilla_browser4 = "\\Thunderbird\\" fullword wide
+        $mozilla_browser5 = "\\8pecxstudios\\Cyberfox\\" fullword wide
+        $mozilla_browser6 = "360Chrome\\Chrome\\User Data" fullword wide
+        $mozilla_browser7 = "\\Mozilla\\Firefox\\" fullword wide
+
+        $database1 = "Berkelet DB" fullword wide
+        $database2 = " 1.85 (Hash, version 2, native byte-order)" fullword wide
+        $database3 = "00061561" fullword wide
+        $database4 = "key4.db" fullword wide
+        $database5 = "key3.db" fullword wide
+        $database6 = "global-salt" fullword wide
+        $database7 = "password-check" fullword wide
+
+        $software1 = "\\FileZilla\\recentservers.xml" fullword wide
+        $software2 = "\\VirtualStore\\Program Files (x86)\\FTP Commander\\Ftplist.txt" fullword wide
+        $software3 = "\\The Bat!" fullword wide
+        $software4 = "\\Apple Computer\\Preferences\\keychain.plist" fullword wide
+        $software5 = "\\MySQL\\Workbench\\workbench_user_data.dat" fullword wide
+        $software6 = "\\Trillian\\users\\global\\accounts.dat" fullword wide
+        $software7 = "SOFTWARE\\Martin Prikryl\\WinSCP 2\\Sessions" fullword wide
+        $software8 = "FTP Navigator\\Ftplist.txt" fullword wide
+        $software9 = "NordVPN" fullword wide
+        $software10 = "JDownloader 2.0\\cfg" fullword wide
+    condition:
+        uint16(0) == 0x5a4d and 4 of ($template*) and 3 of ($chromium_browser*) and 3 of ($mozilla_browser*) and 3 of ($database*) and 5 of ($software*)
 }
diff --git a/data/yara/CAPE/Amadey.yar b/data/yara/CAPE/Amadey.yar
index ab46e07950c..90c94187509 100644
--- a/data/yara/CAPE/Amadey.yar
+++ b/data/yara/CAPE/Amadey.yar
@@ -1,12 +1,15 @@
 rule Amadey
 {
     meta:
-        author = "kevoreilly"
+        author = "kevoreilly, YungBinary"
         description = "Amadey Payload"
         cape_type = "Amadey Payload"
+        hash = "988258716d5296c1323303e8fe4efd7f4642c87bfdbe970fe9a3bb3f410f70a4"
     strings:
         $decode1 = {8B D1 B8 FF FF FF 7F D1 EA 2B C2 3B C8 76 07 BB FF FF FF 7F EB 08 8D 04 0A 3B D8 0F 42 D8}
-        $decode2 = {33 D2 8B 4D ?? 8B C7 F7 F6 8A 84 3B [4] 2A 44 0A 01 88 87 [4] 47 8B 45 ?? 8D 50 01}
+        $decode2 = {2B C8 8D 04 0A 33 D2 F7 F3 8B 5D ?? 8B CB 83 7B ?? 10}
+        $decode3 = {33 D2 8B 4D ?? 8B C7 F7 F6 8A 84 3B [4] 2A 44 0A 01 88 87 [4] 47 8B 45 ?? 8D 50 01}
+        $decode4 = {8A 04 02 88 04 0F 41 8B 7D ?? 8D 42 01 3B CB 7C}
     condition:
         uint16(0) == 0x5A4D and 2 of them
 }
diff --git a/data/yara/CAPE/Amatera.yar b/data/yara/CAPE/Amatera.yar
new file mode 100644
index 00000000000..6af16ae67db
--- /dev/null
+++ b/data/yara/CAPE/Amatera.yar
@@ -0,0 +1,14 @@
+rule Amatera
+{
+    meta:
+        author = "kevoreilly"
+        description = "Amatera Payload"
+        cape_type = "Amatera Payload"
+        hash = "35eb93548a0c037d392f870c05e0e9fb1aeff3a5a505e1d4a087f7465ed1f6af"
+    strings:
+        $sysenter = {64 FF 15 C0 00 00 00 C3}
+        $harness = {0F B7 55 EC 52 E8 [4] 83 C4 04 C7 45 F0 [4] 8B 45 ?? 50 [0-40] FF 55 F0 83 C4 ?? 8B E5 5D C3}
+        $socket = {66 89 [2] 6A 00 6A ?? 8D [3] 68 (03|07) 20 01 00 8B 4D F8 E8 [4] 0F B6 (C0|C8) 85 (C0|C9) 75 04 32 C0 EB}
+    condition:
+        uint16(0) == 0x5A4D and all of them
+}
diff --git a/data/yara/CAPE/Arkei.yar b/data/yara/CAPE/Arkei.yar
index f168915ed1e..7eff6c52021 100644
--- a/data/yara/CAPE/Arkei.yar
+++ b/data/yara/CAPE/Arkei.yar
@@ -1,7 +1,7 @@
 rule Arkei
 {
     meta:
-        author = "kevoreilly"
+        author = "kevoreilly, YungBinary"
         description = "Arkei Payload"
         cape_type = "Arkei Payload"
     strings:
@@ -19,6 +19,32 @@ rule Arkei
         $v7 = "files\\cc_" ascii wide
         $v8 = "files\\autofill_" ascii wide
         $v9 = "files\\cookies_" ascii wide
+        
+        $loaded_modules = {
+            64 A1 30 00 00 00
+            8B 40 0C
+            8B 40 0C
+            8B 00
+            8B 00
+            8B 40 18
+            89 45 FC
+            8B 45 FC
+            8B E5
+            5D
+            C3
+        }
+
+        $language_check = {
+            FF 15 ?? ?? ?? ??
+            0F B7 C0
+            89 45 ??
+            81 7D ?? 3F 04 ?? ??
+            7F
+        }
+
+        $ext1 = ".zoo" ascii
+        $ext2 = ".arc" ascii
+
     condition:
-        uint16(0) == 0x5A4D and (all of ($string*) or 7 of ($v*))
+        uint16(0) == 0x5A4D and (($loaded_modules and $language_check and $ext1 and $ext2) or (all of ($string*) or 7 of ($v*)))
 }
diff --git a/data/yara/CAPE/AsyncRAT.yar b/data/yara/CAPE/AsyncRAT.yar
new file mode 100644
index 00000000000..d7a42a60ee6
--- /dev/null
+++ b/data/yara/CAPE/AsyncRAT.yar
@@ -0,0 +1,287 @@
+rule AsyncRAT_kingrat {
+    meta:
+        author = "jeFF0Falltrades"
+        cape_type = "AsyncRAT Payload"
+
+    strings:
+        $str_async = "AsyncClient" wide ascii nocase
+        $str_aes_exc = "masterKey can not be null or empty" wide ascii
+        $str_schtasks = "schtasks /create /f /sc onlogon /rl highest" wide ascii
+        $byte_aes_key_base = { 7E [3] 04 73 [3] 06 80 }
+        $byte_aes_salt_base = { BF EB 1E 56 FB CD 97 3B B2 19 }
+        $patt_verify_hash = { 7e [3] 04 6f [3] 0a 6f [3] 0a 74 [3] 01 }
+        $patt_config = { 72 [3] 70 80 [3] 04 }
+
+        $dcrat_1 = "dcrat" wide ascii nocase
+        $dcrat_2 = "qwqdan" wide ascii
+        $dcrat_3 = "YW1zaS5kbGw=" wide ascii
+        $dcrat_4 = "VmlydHVhbFByb3RlY3Q=" wide ascii
+        $dcrat_5 = "save_Plugin" wide ascii
+
+        $ww2 = "WorldWindClient" wide fullword nocase
+        $ww3 = "WorldWindStealer" wide fullword nocase
+        $ww4 = "*WorldWind Pro - Results:*" wide fullword nocase
+        $ww5 = /WorldWind(\s)?Stealer/ ascii wide
+
+        $prynt = /Prynt(\s)?Stealer/ ascii wide
+
+    condition:
+        (not any of ($dcrat*) and not any of ($ww*) and not $prynt) and 6 of them and #patt_config >= 10
+}
+
+rule StormKitty {
+    meta:
+        author = "ditekSHen"
+        description = "StormKitty infostealer payload"
+        cape_type = "StormKitty Payload"
+    strings:
+        $x1 = "\\ARTIKA\\Videos\\Chrome-Password-Recovery" ascii
+        $x2 = "https://github.com/LimerBoy/StormKitty" fullword ascii
+        $x3 = "StormKitty" fullword ascii
+        $s1 = "GetBSSID" fullword ascii
+        $s2 = "GetAntivirus" fullword ascii
+        $s3 = "C:\\Users\\Public\\credentials.txt" fullword wide
+        $s4 = "^([a-zA-Z0-9_\\-\\.]+)@([a-zA-Z0-9_\\-\\.]+)\\.([a-zA-Z]{2,5})$" fullword wide
+        $s5 = "BCrypt.BCryptGetProperty() (get size) failed with status code:{0}" fullword wide
+        $s6 = "\"encrypted_key\":\"(.*?)\"" fullword wide
+
+        $ww2 = "WorldWindClient" wide fullword nocase
+        $ww3 = "WorldWindStealer" wide fullword nocase
+        $ww4 = "*WorldWind Pro - Results:*" wide fullword nocase
+        $ww5 = /WorldWind(\s)?Stealer/ ascii wide
+
+        $prynt = /Prynt(\s)?Stealer/ ascii wide
+
+    condition:
+        uint16(0) == 0x5a4d and (not any of ($ww*) and not $prynt) and (2 of ($x*) or 5 of ($s*) or (3 of ($s*) and 1 of ($x*)))
+}
+
+
+rule WorldWind {
+    meta:
+        author = "ditekSHen"
+        description = "Detects WorldWind infostealer"
+        cape_type = "WorldWind Payload"
+    strings:
+        $c1 = /WorldWind(\s)?Stealer/ ascii wide
+        $x2 = "@FlatLineStealer" ascii wide
+        $x3 = "@CashOutGangTalk" ascii wide
+        $m1 = ".Passwords.Targets." ascii
+        $m2 = ".Modules.Keylogger" ascii
+        $m3 = ".Modules.Clipper" ascii
+        $m4 = ".Modules.Implant" ascii
+        $s1 = "--- Clipper" wide
+        $s2 = "Downloading file: \"{file}\"" wide
+        $s3 = "/bot{0}/getUpdates?offset={1}" wide
+        $s4 = "send command to bot!" wide
+        $s5 = " *Keylogger " fullword wide
+        $s6 = "*Stealer" wide
+        $s7 = "Bot connected" wide
+    condition:
+        uint16(0) == 0x5a4d and 1 of ($c*) and (1 of ($x*) or 2 of ($m*) or 3 of ($s*))
+}
+
+
+rule Prynt {
+    meta:
+        author = "ditekSHen"
+        description = "Detects Prynt infostealer"
+        cape_type = "Prynt Payload"
+    strings:
+        $c1 = /Prynt(\s)?Stealer/ ascii wide
+        $x2 = "@FlatLineStealer" ascii wide
+        $x3 = "@CashOutGangTalk" ascii wide
+        $m1 = ".Passwords.Targets." ascii
+        $m2 = ".Modules.Keylogger" ascii
+        $m3 = ".Modules.Clipper" ascii
+        $m4 = ".Modules.Implant" ascii
+        $s1 = "--- Clipper" wide
+        $s2 = "Downloading file: \"{file}\"" wide
+        $s3 = "/bot{0}/getUpdates?offset={1}" wide
+        $s4 = "send command to bot!" wide
+        $s5 = " *Keylogger " fullword wide
+        $s6 = "*Stealer" wide
+        $s7 = "Bot connected" wide
+    condition:
+        uint16(0) == 0x5a4d and 1 of ($c*) and (1 of ($x*) or 2 of ($m*) or 3 of ($s*))
+}
+
+
+rule XWorm {
+    meta:
+        author = "ditekSHen"
+        description = "Detects XWorm"
+        cape_type = "XWorm Payload"
+    strings:
+        $x1 = "XWorm " wide nocase
+        $x2 = /XWorm\s(V|v)\d+\.\d+/ fullword wide
+        $s1 = "RunBotKiller" fullword wide
+        $s2 = "XKlog.txt" fullword wide
+        $s3 = /(shell|reg)fuc/ fullword wide
+        $s4 = "closeshell" fullword ascii
+        $s5 = { 62 00 79 00 70 00 73 00 73 00 00 ?? 63 00 61 00 6c 00 6c 00 75 00 61 00 63 00 00 ?? 73 00 63 00 }
+        $s6 = { 44 00 44 00 6f 00 73 00 54 00 00 ?? 43 00 69 00 6c 00 70 00 70 00 65 00 72 00 00 ?? 50 00 45 00 }
+        $s7 = { 69 00 6e 00 6a 00 52 00 75 00 6e 00 00 ?? 73 00 74 00 61 00 72 00 74 00 75 00 73 00 62 }
+        $s8 = { 48 6f 73 74 00 50 6f 72 74 00 75 70 6c 6f 61 64 65 72 00 6e 61 6d 65 65 65 00 4b 45 59 00 53 50 4c 00 4d 75 74 65 78 78 00 }
+        $v2_1 = "PING!" fullword wide
+        $v2_2 = "Urlhide" fullword wide
+        $v2_3 = /PC(Restart|Shutdown)/ fullword wide
+        $v2_4 = /(Start|Stop)(DDos|Report)/ fullword wide
+        $v2_5 = /Offline(Get|Keylogger)/ wide
+        $v2_6 = "injRun" fullword wide
+        $v2_7 = "Xchat" fullword wide
+        $v2_8 = "UACFunc" fullword ascii wide
+    condition:
+        uint16(0) == 0x5a4d and ((1 of ($x*) and (3 of ($s*) or 3 of ($v2*))) or 6 of them)
+}
+
+rule xworm_kingrat {
+    meta:
+        author = "jeFF0Falltrades"
+        cape_type = "XWorm payload"
+    strings:
+        $str_xworm = "xworm" wide ascii nocase
+        $str_xwormmm = "Xwormmm" wide ascii
+        $str_xclient = "XClient" wide ascii
+        $str_default_log = "\\Log.tmp" wide ascii
+        $str_create_proc = "/create /f /RL HIGHEST /sc minute /mo 1 /t" wide ascii
+        $str_ddos_start = "StartDDos" wide ascii
+        $str_ddos_stop = "StopDDos" wide ascii
+        $str_timeout = "timeout 3 > NUL" wide ascii
+        $byte_md5_hash = { 7e [3] 04 28 [3] 06 6f }
+        $patt_config = { 72 [3] 70 80 [3] 04 }
+    condition:
+        5 of them and #patt_config >= 7
+}
+
+rule DCRat {
+    meta:
+        author = "ditekSHen"
+        description = "DCRat payload"
+        cape_type = "DCRat Payload"
+    strings:
+        // DCRat
+        $dc1 = "DCRatBuild" ascii
+        $dc2 = "DCStlr" ascii
+        $x1 = "px\"><center>DCRat Keylogger" wide
+        $x2 = "DCRat-Log#" wide
+        $x3 = "DCRat.Code" wide
+        $string1 = "CaptureBrowsers" fullword ascii
+        $string2 = "DecryptBrowsers" fullword ascii
+        $string3 = "Browsers.IE10" ascii
+        $string4 = "Browsers.Chromium" ascii
+        $string5 = "WshShell" ascii
+        $string6 = "SysMngmts" fullword ascii
+        $string7 = "LoggerData" fullword ascii
+        // DCRat Plugins/Libraries
+        $plugin = "DCRatPlugin" fullword ascii
+        // AntiVM
+        $av1 = "AntiVM" ascii wide
+        $av2 = "vmware" fullword wide
+        $av3 = "VirtualBox" fullword wide
+        $av4 = "microsoft corporation" fullword wide
+        $av5 = "VIRTUAL" fullword wide
+        $av6 = "DetectVirtualMachine" fullword ascii
+        $av7 = "Select * from Win32_ComputerSystem" fullword wide
+        // Plugin_AutoStealer, Plugin_AutoKeylogger
+        $pl1 = "dcratAPI" fullword ascii
+        $pl2 = "dsockapi" fullword ascii
+        $pl3 = "file_get_contents" fullword ascii
+        $pl4 = "classthis" fullword ascii
+        $pl5 = "typemdt" fullword ascii
+        $pl6 = "Plugin_AutoStealer" ascii wide
+        $pl7 = "Plugin_AutoKeylogger" ascii wide
+        // variant
+        $v1 = "Plugin couldn't process this action!" wide
+        $v2 = "Unknown command!" wide
+        $v3 = "PLUGINCONFIGS" wide
+        $v4 = "Saving log..." wide
+        $v5 = "~Work.log" wide
+        $v6 = "MicrophoneNum" fullword wide
+        $v7 = "WebcamNum" fullword wide
+        $v8 = "%SystemDrive% - Slow" wide
+        $v9 = "%UsersFolder% - Fast" wide
+        $v10 = "%AppData% - Very Fast" wide
+        $v11 = /<span style=\"color: #F85C50;\">\[(Up|Down|Enter|ESC|CTRL|Shift|Win|Tab|CAPSLOCK: (ON|OFF))\]<\/span>/ wide
+        $px1 = "[Browsers] Scanned elements: " wide
+        $px2 = "[Browsers] Grabbing cookies" wide
+        $px3 = "[Browsers] Grabbing passwords" wide
+        $px4 = "[Browsers] Grabbing forms" wide
+        $px5 = "[Browsers] Grabbing CC" wide
+        $px6 = "[Browsers] Grabbing history" wide
+        $px7 = "[StealerPlugin] Invoke: " wide
+        $px8 = "[Other] Grabbing steam" wide
+        $px9 = "[Other] Grabbing telegram" wide
+        $px10 = "[Other] Grabbing discord tokens" wide
+        $px11 = "[Other] Grabbing filezilla" wide
+        $px12 = "[Other] Screenshots:" wide
+        $px13 = "[Other] Clipboard" wide
+        $px14 = "[Other] Saving system information" wide
+    condition:
+        uint16(0) == 0x5a4d and (all of ($dc*) or all of ($string*) or 2 of ($x*) or 6 of ($v*) or 5 of ($px*)) or ($plugin and (4 of ($av*) or 5 of ($pl*)))
+}
+
+rule dcrat_kingrat {
+    meta:
+        author = "jeFF0Falltrades"
+        cape_type = "DCRat Payload"
+    strings:
+        $venom_1 = "VenomRAT" wide ascii nocase
+        $venom_2 = "HVNC_REPLY_MESSAGE" wide ascii
+        $str_aes_exc = "masterKey can not be null or empty" wide ascii
+        $str_b64_amsi = "YW1zaS5kbGw=" wide ascii
+        $str_b64_virtual_protect = "VmlydHVhbFByb3RlY3Q=" wide ascii
+        $str_dcrat = "dcrat" wide ascii nocase
+        $str_plugin = "save_Plugin" wide ascii
+        $str_qwqdan = "qwqdan" wide ascii
+        $byte_aes_key_base = { 7E [3] 04 73 [3] 06 80 }
+        $patt_config = { 72 [3] 70 80 [3] 04 }
+        $patt_verify_hash = { 7e [3] 04 6f [3] 0a 6f [3] 0a 74 [3] 01 }
+
+    condition:
+        (not any of ($venom*)) and 5 of them and #patt_config >= 10
+}
+
+rule QuasarRAT {
+    meta:
+        author = "ditekshen"
+        description = "QuasarRAT payload"
+        cape_type = "QuasarRAT Payload"
+    strings:
+        $s1 = "GetKeyloggerLogsResponse" fullword ascii
+        $s2 = "GetKeyloggerLogs" fullword ascii
+        $s3 = "/>Log created on" wide
+        $s4 = "User: {0}{3}Pass: {1}{3}Host: {2}" wide
+        $s5 = "Domain: {1}{0}Cookie Name: {2}{0}Value: {3}{0}Path: {4}{0}Expired: {5}{0}HttpOnly: {6}{0}Secure: {7}" wide
+        $s6 = "grabber_" wide
+        $s7 = "<virtualKeyCode>" ascii
+        $s8 = "<RunHidden>k__BackingField" fullword ascii
+        $s9 = "<keyboardHookStruct>" ascii
+        $s10 = "add_OnHotKeysDown" ascii
+        $mutex = "QSR_MUTEX_" ascii wide
+        $ua1 = "Mozilla/5.0 (Windows NT 6.3; rv:48.0) Gecko/20100101 Firefox/48.0" fullword wide
+        $us2 = "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_3) AppleWebKit/537.75.14 (KHTML, like Gecko) Version/7.0.3 Safari/7046A194A" fullword wide
+    condition:
+        uint16(0) == 0x5a4d and ($mutex or (all of ($ua*) and 2 of them) or 6 of ($s*))
+}
+
+rule quasarrat_kingrat {
+    meta:
+        author = "jeFF0Falltrades"
+        cape_type = "QuasarRAT Payload"
+    strings:
+        $str_quasar = "Quasar." wide ascii
+        $str_hidden = "set_Hidden" wide ascii
+        $str_shell = "DoShellExecuteResponse" wide ascii
+    $str_close = "echo DONT CLOSE THIS WINDOW!" wide ascii
+        $str_pause = "ping -n 10 localhost > nul" wide ascii
+        $str_aes_exc = "masterKey can not be null or empty" wide ascii
+        $byte_aes_key_base = { 7E [3] 04 73 [3] 06 25 }
+        $byte_aes_salt_base = { BF EB 1E 56 FB CD 97 3B B2 19 }
+        $byte_special_folder = { 7e 73 [4] 28 [4] 80 }
+        $patt_config = { 72 [3] 70 80 [3] 04 }
+        $patt_verify_hash = { 7e [3] 04 6f [3] 0a 6f [3] 0a 74 [3] 01 }
+
+    condition:
+        6 of them and #patt_config >= 10
+}
diff --git a/data/yara/CAPE/AsyncRat.yar b/data/yara/CAPE/AsyncRat.yar
deleted file mode 100644
index 2ec279570b2..00000000000
--- a/data/yara/CAPE/AsyncRat.yar
+++ /dev/null
@@ -1,16 +0,0 @@
-rule AsyncRat
-{
-    meta:
-        author = "kevoreilly, JPCERT/CC Incident Response Group"
-        description = "AsyncRat Payload"
-        cape_type = "AsyncRat Payload"
-    strings:
-        $salt = {BF EB 1E 56 FB CD 97 3B B2 19 02 24 30 A5 78 43 00 3D 56 44 D2 1E 62 B9 D4 F1 80 E7 E6 C3 39 41}
-        $b1 = {00 00 00 0D 53 00 48 00 41 00 32 00 35 00 36 00 00}
-        $b2 = {09 50 00 6F 00 6E 00 67 00 00}
-        $string1 = "Pastebin" ascii wide nocase
-        $string2 = "Pong" wide
-        $string3 = "Stub.exe" ascii wide
-    condition:
-        uint16(0) == 0x5A4D and ($salt and (2 of ($str*) or 1 of ($b*))) or (all of ($b*) and 2 of ($str*))
-}
diff --git a/data/yara/CAPE/AuraStealer.yar b/data/yara/CAPE/AuraStealer.yar
new file mode 100644
index 00000000000..6126e6e6876
--- /dev/null
+++ b/data/yara/CAPE/AuraStealer.yar
@@ -0,0 +1,18 @@
+rule AuraStealer
+{
+    meta:
+        author = "enzok"
+        description = "AuraStealer Payload"
+        cape_type = "AuraStealer Payload"
+        unpacked = "a9c47f10d5eb77d7d6b356be00b4814a7c1e5bb75739b464beb6ea03fc36cc85"
+        packed = "bac52ffc8072893ff26cdbf1df1ecbcbb1762ded80249d3c9d420f62ed0dc202"
+    strings:
+        $conf = {8D BE ?? 00 00 00 68 00 40 00 00 5? 5? FF D1 83 C4 ?? 8B 07 8B 57 04 29 C2}
+        $key1 = {FF D2 8B 2B 8D 75 ?? 8B 5D ?? 33 5D ?? 8D 45}
+        $key2 = {89 0B 89 F9 5? 5? 5? E8 [4] 8B 3F 8D 6F 38 8B 77 30 33 77 34 8D 47 20 8D 4C 24 ?? 89 FA 5? E8}
+        $keyexpansion = {31 C0 8A 1C 82 88 1C 81 8A 5C 82 01 88 5C 81 01 8A 5C 82 02 88 5C 81 02 8A 5C 82 03 88 5C 81 03 4? 83 F8 08 75 ?? B? 08 00 00 00}
+        $antivm2 = {8B 43 04 8B 0D [4] 3B 81 [4] B? [2] 00 00 B? [2] 00 00 0F 44 D1 85 C0 0F 44 D1 8B 8A [4] 03 8A [4] FF E1 31 FF EB ?? 8B 78 0C 33 78 10 B? [4] 03 05 [4] FF D0}
+        $antivm1 = {39 04 11 0f 94 C3 8B 44 ?? ?? 85 C0}
+    condition:
+        3 of them
+}
diff --git a/data/yara/CAPE/AuroraStealer.yar b/data/yara/CAPE/AuroraStealer.yar
new file mode 100644
index 00000000000..44880aacaa3
--- /dev/null
+++ b/data/yara/CAPE/AuroraStealer.yar
@@ -0,0 +1,74 @@
+rule AuroraStealer {
+
+    meta:
+        author          = "Johannes Bader @viql"
+        version         = "v1.0"
+        tlp             = "TLP:WHITE"
+        date            = "2022-12-14"
+        description     = "detects Aurora Stealer samples"
+        malpedia_family = "win.aurora_stealer"
+        hash1_md5        = "51c153501e991f6ce4901e6d9578d0c8"
+        hash1_sha1       = "3816f17052b28603855bde3e57db77a8455bdea4"
+        hash1_sha256     = "c148c449e1f6c4c53a7278090453d935d1ab71c3e8b69511f98993b6057f612d"
+        hash2_md5        = "65692e1d5b98225dbfb1b6b2b8935689"
+        hash2_sha1       = "0b51765c175954c9e47c39309e020bcb0f90b783"
+        hash2_sha256     = "5a42aa4fc8180c7489ce54d7a43f19d49136bd15ed7decf81f6e9e638bdaee2b"
+        cape_type        = "AuroraStealer Payload"
+
+    strings:
+        $str_func_01 = "main.(*DATA_BLOB).ToByteArray"
+        $str_func_02 = "main.Base64Encode"
+        $str_func_03 = "main.Capture"
+        $str_func_04 = "main.CaptureRect"
+        $str_func_05 = "main.ConnectToServer"
+        $str_func_06 = "main.CreateImage"
+        $str_func_07 = "main.FileExsist"
+        $str_func_08 = "main.GetDisplayBounds"
+        $str_func_09 = "main.GetInfoUser"
+        $str_func_10 = "main.GetOS"
+        $str_func_11 = "main.Grab"
+        $str_func_12 = "main.MachineID"
+        $str_func_13 = "main.NewBlob"
+        $str_func_14 = "main.NumActiveDisplays"
+        $str_func_15 = "main.PathTrans"
+        $str_func_16 = "main.SendToServer_NEW"
+        $str_func_17 = "main.SetUsermame"
+        $str_func_18 = "main.Zip"
+        $str_func_19 = "main.base64Decode"
+        $str_func_20 = "main.countupMonitorCallback"
+        $str_func_21 = "main.enumDisplayMonitors"
+        $str_func_22 = "main.getCPU"
+        $str_func_23 = "main.getDesktopWindow"
+        $str_func_24 = "main.getGPU"
+        $str_func_25 = "main.getMasterKey"
+        $str_func_26 = "main.getMonitorBoundsCallback"
+        $str_func_27 = "main.getMonitorRealSize"
+        $str_func_28 = "main.sysTotalMemory"
+        $str_func_29 = "main.xDecrypt"
+        $str_type_01 = "type..eq.main.Browser_G"
+        $str_type_02 = "type..eq.main.STRUSER"
+        $str_type_03 = "type..eq.main.Telegram_G"
+        $str_type_04 = "type..eq.main.Crypto_G"
+        $str_type_05 = "type..eq.main.ScreenShot_G"
+        $str_type_06 = "type..eq.main.FileGrabber_G"
+        $str_type_07 = "type..eq.main.FTP_G"
+        $str_type_08 = "type..eq.main.Steam_G"
+        $str_type_09 = "type..eq.main.DATA_BLOB"
+        $str_type_10 = "type..eq.main.Grabber"
+        $varia_01 = "\\User Data\\Local State"
+        $varia_02 = "\\\\Opera Stable\\\\Local State"
+        $varia_03 = "Reconnect 1"
+        $varia_04 = "@ftmone"
+        $varia_05 = "^user^"
+        $varia_06 = "wmic path win32_VideoController get name"
+        $varia_07 = "\\AppData\\Roaming\\Telegram Desktop\\tdata"
+        $varia_08 = "C:\\Windows.old\\Users\\"
+        $varia_09 = "ScreenShot"
+        $varia_10 = "Crypto"
+    condition:
+        uint16(0) == 0x5A4D and
+        (
+            32 of ($str_*) or
+            9 of ($varia_*)
+        )
+}
\ No newline at end of file
diff --git a/data/yara/CAPE/Azorult.yar b/data/yara/CAPE/Azorult.yar
index 1c179cdd6a3..9f912f8a082 100644
--- a/data/yara/CAPE/Azorult.yar
+++ b/data/yara/CAPE/Azorult.yar
@@ -9,4 +9,4 @@ rule Azorult
         $string1 = "SELECT DATETIME( ((visits.visit_time/1000000)-11644473600),\"unixepoch\")"
     condition:
         uint16(0) == 0x5A4D and all of them
-}
\ No newline at end of file
+}
diff --git a/data/yara/CAPE/Bazar.yar b/data/yara/CAPE/Bazar.yar
new file mode 100644
index 00000000000..66f875125a9
--- /dev/null
+++ b/data/yara/CAPE/Bazar.yar
@@ -0,0 +1,11 @@
+rule Bazar
+{
+    meta:
+        author = "kevoreilly"
+        cape_type = "Bazar Payload"
+    strings:
+        $decode = {F7 E9 [0-2] C1 FA 0? 8B C2 C1 E8 1F 03 D0 6B C2 ?? 2B C8}
+        $rsa    = {C7 00 52 53 41 33 48 8D 48 09 C7 40 04 00 08 00 00 4C 8D 05 [3] 00 C6 40 08 03 B8 09 00 00 00 [0-3] 48 8D 89 80 00 00 00 41 0F 10 00}
+    condition:
+        uint16(0) == 0x5A4D and 2 of them
+}
diff --git a/data/yara/CAPE/BlackDropper.yar b/data/yara/CAPE/BlackDropper.yar
new file mode 100644
index 00000000000..fa8f218a74e
--- /dev/null
+++ b/data/yara/CAPE/BlackDropper.yar
@@ -0,0 +1,17 @@
+rule BlackDropper
+{
+    meta:
+        author = "enzok"
+        description = "BlackDropper"
+        cape_type = "BlackDropper Payload"
+        hash = "f8026ae3237bdd885e5fcaceb86bcab4087d8857e50ba472ca79ce44c12bc257"
+    strings:
+        $string1 = "BlackDropperCPP"
+        $string2 = "Builder.dll"
+        $string3 = "\\Builder.exe"
+        $crypt1 = {33 D2 48 8B 44 24 ?? 48 8B 4C 24 ?? 48 F7 F1 48 8B C2 48 8B D0 48 8D 4C 24 ?? E8}
+        $crypt2 = {0F BE 00 8B 4C 24 ?? 33 C8 8B C1 88 44 24 ?? 48 8B 54 24 ?? 48 8D 4C 24}
+        $crypt3 = {E8 [4] 0F B6 4C 24 ?? 88 08 E9}
+    condition:
+        2 of ($string*) or 2 of ($crypt*)
+}
\ No newline at end of file
diff --git a/data/yara/CAPE/Blister.yar b/data/yara/CAPE/Blister.yar
new file mode 100644
index 00000000000..5a641225db7
--- /dev/null
+++ b/data/yara/CAPE/Blister.yar
@@ -0,0 +1,17 @@
+rule Blister
+{
+    meta:
+        author = "kevoreilly"
+        description = "Blister Loader"
+        cape_type = "Blister Loader"
+        hash = "afb77617a4ca637614c429440c78da438e190dd1ca24dc78483aa731d80832c2"
+        hash = "d3eab2a134e7bd3f2e8767a6285b38d19cd3df421e8af336a7852b74f194802c"
+    strings:
+        $protect1 = {50 6A 20 8D 45 ?? 50 8D 45 ?? 50 6A FF FF D7}
+        $protect2 = {48 83 C9 FF 48 8D 55 ?? FF D6 48 8D 87 [2] 00 00 48 8D 4D ?? FF D0}
+        $lock1 = {B9 FF FF FF 7F 89 75 FC 8B C1 F0 FF 45 FC 83 E8 01 75}
+        $lock2 = {B8 FF FF FF 7F 41 BC 01 00 00 00 89 45 40 F0 FF 4D 40 49 2B C4 75}
+        $decode = {0F BE C0 49 03 CC 41 33 C1 44 69 C8 [4] 41 8B C1 C1 E8 0F 44 33 C8 8A 01 84 C0 75 E1 41 81 F9 [4] 74}
+     condition:
+        uint16(0) == 0x5A4D and 2 of them
+}
diff --git a/data/yara/CAPE/BruteRatel.yar b/data/yara/CAPE/BruteRatel.yar
new file mode 100644
index 00000000000..597a61fa103
--- /dev/null
+++ b/data/yara/CAPE/BruteRatel.yar
@@ -0,0 +1,14 @@
+rule BruteRatel
+{
+    meta:
+        author = "kevoreilly"
+        description = "BruteRatel Payload"
+        cape_type = "BruteRatel Payload"
+    strings:
+        $syscall1 = {49 89 CA 4? 89 ?? (41 FF|FF)}
+        $syscall2 = {49 89 CA 48 8B 44 24 ?? FF 64 24}
+        $jmpapi = {49 89 ?? 10 49 C7 45 08 ?? 00 00 00 E8 00 00 00 00 ?? (48|49) 83 [2] 41 FF E2}
+        $decode = {89 C2 8A 14 17 40 38 EA 75 06 FF C0 89 03 EB 0B 41 88 14 08 48 FF C1 FF 03 EB}
+    condition:
+        2 of them
+}
diff --git a/data/yara/CAPE/BuerLoader.yar b/data/yara/CAPE/BuerLoader.yar
index 224045fa1ce..8f0aecf4169 100644
--- a/data/yara/CAPE/BuerLoader.yar
+++ b/data/yara/CAPE/BuerLoader.yar
@@ -2,11 +2,11 @@ rule BuerLoader
 {
     meta:
         author = "kevoreilly & Rony (@r0ny_123)"
-        cape_type = "BuerLoader"
+        cape_type = "BuerLoader Payload"
     strings:
         $trap = {0F 31 89 45 ?? 6A 00 8D 45 ?? 8B CB 50 E8 [4] 0F 31}
         $decode = {8A 0E 84 C9 74 0E 8B D0 2A 0F 46 88 0A 42 8A 0E 84 C9 75 F4 5F 5E 5D C2 04 00}
         $op = {33 C0 85 D2 7E 1? 3B C7 7D [0-15] 40 3B C2 7C ?? EB 02}
     condition:
         uint16(0) == 0x5A4D and 2 of them
-}
\ No newline at end of file
+}
diff --git a/data/yara/CAPE/BumbleBee.yar b/data/yara/CAPE/BumbleBee.yar
new file mode 100644
index 00000000000..e65b80d92e6
--- /dev/null
+++ b/data/yara/CAPE/BumbleBee.yar
@@ -0,0 +1,68 @@
+rule BumbleBeeLoader
+{
+    meta:
+        author = "enzo & kevoreilly"
+        description = "BumbleBee Loader"
+        cape_type = "BumbleBeeLoader Payload"
+    strings:
+        $str_set = {C7 ?? 53 65 74 50}
+        $str_path = {C7 4? 04 61 74 68 00}
+        $openfile = {4D 8B C? [0-70] 4C 8B C? [0-70] 41 8B D? [0-70] 4? 8B C? [0-70] FF D?}
+        $createsection = {89 44 24 20 FF 93 [2] 00 00 80 BB [2] 00 00 00 8B F? 74}
+        $hook = {48 85 C9 74 20 48 85 D2 74 1B 4C 8B C9 45 85 C0 74 13 48 2B D1 42 8A 04 0A 41 88 01 49 FF C1 41 83 E8 01 75 F0 48 8B C1 C3}
+        $iternaljob = "IternalJob"
+    condition:
+        uint16(0) == 0x5A4D and 2 of them
+}
+
+rule BumbleBeeShellcode
+{
+    meta:
+        author = "kevoreilly"
+        description = "BumbleBee Loader 2023"
+        cape_type = "BumbleBeeLoader Payload"
+        packed = "51bb71bd446bd7fc03cc1234fcc3f489f10db44e312c9ce619b937fad6912656"
+    strings:
+        $setpath = "setPath"
+        $alloc = {B8 01 00 00 00 48 6B C0 08 48 8D 0D [2] 00 00 48 03 C8 48 8B C1 48 89 [3] 00 00 00 8B 44 [2] 05 FF 0F 00 00 25 00 F0 FF FF 8B C0 48 89}
+        $hook = {48 85 C9 74 20 48 85 D2 74 1B 4C 8B C9 45 85 C0 74 13 48 2B D1 42 8A 04 0A 41 88 01 49 FF C1 41 83 E8 01 75 F0 48 8B C1 C3}
+        $algo = {41 8B C1 C1 E8 0B 0F AF C2 44 3B C0 73 6A 4C 8B [3] 44 8B C8 B8 00 08 00 00 2B C2 C1 E8 05 66 03 C2 8B 94 [2] 00 00 00}
+        $cape_string = "cape_options"
+    condition:
+        2 of them and not $cape_string
+}
+
+rule BumbleBee
+{
+    meta:
+        author = "enzo & kevoreilly"
+        description = "BumbleBee Payload"
+        cape_type = "BumbleBee Payload"
+    strings:
+        $antivm1 = {84 C0 74 09 33 C9 FF [4] 00 CC 33 C9 E8 [3] 00 4? 8B C8 E8}
+        $antivm2 = {84 C0 0F 85 [2] 00 00 33 C9 E8 [4] 48 8B C8 E8 [4] 48 8D 85}
+        $antivm3 = {33 C9 E8 [4] 48 8B C8 E8 [4] 83 CA FF 48 8B 0D [4] FF 15}
+        $antivm4 = {33 C9 E8 [4] 48 8B C8 E8 [4] 90 48 8B 05 [4] 48 85 C0 74}
+	    $str_ua = "bumblebee"
+        $str_gate = "/gate"
+    condition:
+        uint16(0) == 0x5A4D and (any of ($antivm*) or all of ($str_*))
+}
+
+rule BumbleBee2024
+{
+    meta:
+        author = "enzok"
+        description = "BumbleBee 2024"
+        cape_type = "BumbleBee Payload"
+        packed = "a20d56ab2e53b3a599af9904f163bb2e1b2bb7f2c98432519e1fbe87c3867e66"
+    strings:
+        $rc4key = {48 [6] 48 [6] E8 [4] 4C 89 AD [4] 4C 89 AD [4] 4C 89 B5 [4] 4C 89 AD [4] 44 88 AD [4] 48 8D 15 [4] 44 38 2D [4] 75}
+        $botidlgt = {4C 8B C1 B? 4F 00 00 00 48 8D 0D [4] E8 [4] 4C 8B C3 48 8D 0D [4] B? 4F 00 00 00 E8 [4] 4C 8B C3 48 8D 0D [4] B? FF 0F 00 00 E8}
+        $botid = {90 48 [6] E8 [4] 4C 89 AD [4] 4C 89 AD [4] 4C 89 B5 [4] 4C 89 AD [4] 44 88 AD [4] 48 8D 15 [4] 44 38 2D [4] 75}
+        $port = {4C 89 6D ?? 4C 89 6D ?? 4c 89 75 ?? 4C 89 6D ?? 44 88 6D ?? 48 8D 05 [4] 44 38 2D [4] 75}
+        $dga1 = {4C 89 75 ?? 4C 89 6D ?? 44 88 6D ?? 48 8B 1D [4] 48 8D 0D [4] E8 [4] 8B F8}
+        $dga2 = {48 8D 0D [4] E8 [4] 8B F0 4C 89 6D ?? 4C 89 6D ?? 4C 89 75 ?? 4C 89 6D ?? 44 88 6D ?? 48 8D 15 [4] 44 38 2D [4] 75}
+    condition:
+        $rc4key and all of ($botid*) and 2 of ($port, $port, $dga1, $dga2)
+}
\ No newline at end of file
diff --git a/data/yara/CAPE/Carbanak.yar b/data/yara/CAPE/Carbanak.yar
new file mode 100644
index 00000000000..2538913cbc3
--- /dev/null
+++ b/data/yara/CAPE/Carbanak.yar
@@ -0,0 +1,14 @@
+rule Carbanak
+{
+    meta:
+        author = "enzok"
+        description = "Carnbanak Payload"
+        cape_type = "Carbanak Payload"
+        sample = "c9c1b06cb9c9bd6fc4451f5e2847a1f9524bb2870d7bb6f0ee09b9dd4e3e4c84"
+    strings:
+        $sboxinit = {0F BE 02 4? 8D 05 [-] 4? 8D 4D ?? E8 [3] 00 33 F6 4? 8D 5D ?? 4? 63 F8 8B 45 ?? B? B1 E3 14 06}
+        $decode_string = {0F BE 03 FF C9 83 F8 20 7D ?? B? 1F [3] 4? 8D 4A E2 EB ?? 3D 80 [3] 7D ?? B? 7F [3] 4? 8D 4A A1 EB ?? B? FF [3] 4? 8D 4A 81}
+        $constants = {0F B7 05 [3] 00 0F B7 1D [3] 00 83 25 [3] 00 00 89 05 [3] 00 0F B7 05 [3] 00 89 1D [3] 00 89 05 [3] 00 33 C0 4? 8D 4D}
+    condition:
+        uint16(0) == 0x5A4D and 2 of them
+}
\ No newline at end of file
diff --git a/data/yara/CAPE/CargoBayLoader.yar b/data/yara/CAPE/CargoBayLoader.yar
new file mode 100644
index 00000000000..a4404cbbb71
--- /dev/null
+++ b/data/yara/CAPE/CargoBayLoader.yar
@@ -0,0 +1,13 @@
+rule CargoBayLoader
+{
+    meta:
+        author = "kevoreilly"
+        description = "CargoBay Loader"
+        cape_type = "CargoBay Loader"
+        hash = "75e975031371741498c5ba310882258c23b39310bd258239277708382bdbee9c"
+    strings:
+        $jmp1 = {40 42 0F 00 0F 82 [2] 00 00 48 8D 15 [4] BF 04 00 00 00 41 B8 04 00 00 00 4C 8D [3] 4C 89 F1 E8}
+        $jmp2 = {84 DB 0F 85 [2] 00 00 48 8D 15 [4] 41 BE 03 00 00 00 41 B8 03 00 00 00 4C 8D 7C [2] 4C 89 F9 E8}
+    condition:
+        uint16(0) == 0x5A4D and all of them
+}
diff --git a/data/yara/CAPE/Cerber.yar b/data/yara/CAPE/Cerber.yar
index 915937afd89..3bee4e35931 100644
--- a/data/yara/CAPE/Cerber.yar
+++ b/data/yara/CAPE/Cerber.yar
@@ -5,9 +5,8 @@ rule Cerber
         description = "Cerber Payload"
         cape_type = "Cerber Payload"
     strings:
-        $code1 = {33 C0 66 89 45 8? 8D 7D 8? AB AB AB AB AB [0-2] 66 AB 8D 45 8? [0-3] E8 ?? ?? 00 00} 
+        $code1 = {33 C0 66 89 45 8? 8D 7D 8? AB AB AB AB AB [0-2] 66 AB 8D 45 8? [0-3] E8 ?? ?? 00 00}
     condition:
         //check for MZ Signature at offset 0
         uint16(0) == 0x5A4D and all of them
 }
-
diff --git a/data/yara/CAPE/ChaosBot.yar b/data/yara/CAPE/ChaosBot.yar
new file mode 100644
index 00000000000..1a2e472a2b7
--- /dev/null
+++ b/data/yara/CAPE/ChaosBot.yar
@@ -0,0 +1,24 @@
+rule ChaosBot 
+{
+    meta:
+        author = "YungBinary"
+        description = "https://x.com/YungBinary/status/1976580501508182269"
+        cape_type = "ChaosBot Payload"
+    strings: 
+        $s1 = { 48 6f 73 74 20 20 63 6f 6e 6e 65 63 74 65 64 2c 20 63 68 61 6e 6e 65 6c 20 63 72 65 61 74 65 64 3a 20 3c }
+        $s2 = { 73 68 65 6c 6c 20 64 6f 77 6e 6c 6f 61 64 20 63 64 20 46 61 69 6c 65 64 20 74 6f 20 63 68 61 6e 67 65 20 64 69 72 65 63 74 6f 72 79 3a }
+        $s3 = { 56 69 72 74 75 61 6c 50 72 6f 74 65 63 74 41 6d 73 69 53 63 61 6e 42 75 66 66 65 72 45 74 77 45 76 65 6e 74 57 72 69 74 65 43 4f 4d 50 55 54 45 52 4e 41 4d 45 }
+        $s4 = { 43 3a 5c 55 73 65 72 73 5c 50 75 62 6c 69 63 5c 6d 65 73 73 61 67 65 5f 2e 74 78 74 }
+        $bypass = { 
+            74 ?? 
+            66 C7 03 31 C0 
+            C6 43 02 C3 
+        } 
+        $antivm = { 
+            48 ?? 30 30 3A 30 43 3A 32 39 
+            49 39 ?? 00 
+        } 
+    condition: 
+        uint16(0) == 0x5a4d and (1 of ($s*) or ($antivm and $bypass)) 
+
+}
diff --git a/data/yara/CAPE/Clop.yar b/data/yara/CAPE/Clop.yar
deleted file mode 100644
index 19e7708331a..00000000000
--- a/data/yara/CAPE/Clop.yar
+++ /dev/null
@@ -1,11 +0,0 @@
-rule Clop
-{
-    meta:
-        author = "kevoreilly"
-        cape_type = "Clop Payload"
-    strings:
-        $string1 = "%s%s.Cl0p" wide
-        $string2 = "%s\\Cl0pReadMe.txt" wide
-    condition:
-        uint16(0) == 0x5A4D and all of them
-}
diff --git a/data/yara/CAPE/CobaltStrikeBeacon.yar b/data/yara/CAPE/CobaltStrikeBeacon.yar
index f28223fc5b2..5e766690b9a 100644
--- a/data/yara/CAPE/CobaltStrikeBeacon.yar
+++ b/data/yara/CAPE/CobaltStrikeBeacon.yar
@@ -1,13 +1,30 @@
 rule CobaltStrikeBeacon
 {
     meta:
-      author = "enzo"
-      description = "Cobalt Strike Beacon Payload"
-      cape_type = "CobaltStrikeBeacon Payload"
+        author = "ditekshen, enzo & Elastic"
+        description = "Cobalt Strike Beacon Payload"
+        cape_type = "CobaltStrikeBeacon Payload"
     strings:
-      $ver3a = { 69 68 69 68 69 6b ?? ?? 69 }
-      $ver3b = { 69 69 69 69 }
-      $ver4a = { 2e 2f 2e 2f 2e 2c ?? ?? 2e }
-      $ver4b = { 2e 2e 2e 2e }
-    condition: all of ($ver3*) or all of ($ver4*)
+        $s1 = "%%IMPORT%%" fullword ascii
+        $s2 = "www6.%x%x.%s" fullword ascii
+        $s3 = "cdn.%x%x.%s" fullword ascii
+        $s4 = "api.%x%x.%s" fullword ascii
+        $s5 = "%s (admin)" fullword ascii
+        $s6 = "could not spawn %s: %d" fullword ascii
+        $s7 = "Could not kill %d: %d" fullword ascii
+        $s8 = "Could not connect to pipe (%s): %d" fullword ascii
+        $s9 = /%s\.\d[(%08x).]+\.%x%x\.%s/ ascii
+        $pwsh1 = "IEX (New-Object Net.Webclient).DownloadString('http" ascii
+        $pwsh2 = "powershell -nop -exec bypass -EncodedCommand \"%s\"" fullword ascii
+        $ver3a = {69 68 69 68 69 6b ?? ?? 69}
+        $ver3b = "iiiiiiiiiiiiiiii"
+        $ver4a = {2e 2f 2e 2f 2e 2c ?? ?? 2e}
+        $ver4b = "................"
+        $a1 = "%02d/%02d/%02d %02d:%02d:%02d" xor(0x00-0xff)
+        $a2 = "Started service %s on %s" xor(0x00-0xff)
+        $a3 = "%s as %s\\%s: %d" xor(0x00-0xff)
+        $b_x64 = {4C 8B 53 08 45 8B 0A 45 8B 5A 04 4D 8D 52 08 45 85 C9 75 05 45 85 DB 74 33 45 3B CB 73 E6 49 8B F9 4C 8B 03}
+        $b_x86 = {8B 46 04 8B 08 8B 50 04 83 C0 08 89 55 08 89 45 0C 85 C9 75 04 85 D2 74 23 3B CA 73 E6 8B 06 8D 3C 08 33 D2}
+    condition:
+        all of ($ver3*) or all of ($ver4*) or 2 of ($a*) or any of ($b*) or 5 of ($s*) or (all of ($pwsh*) and 2 of ($s*)) or (#s9 > 6 and 4 of them)
 }
diff --git a/data/yara/CAPE/CobaltStrikeStager.yar b/data/yara/CAPE/CobaltStrikeStager.yar
new file mode 100644
index 00000000000..03eea7f3073
--- /dev/null
+++ b/data/yara/CAPE/CobaltStrikeStager.yar
@@ -0,0 +1,15 @@
+rule CobaltStrikeStager
+{
+    meta:
+        author = "@dan__mayer <daniel@stairwell.com>"
+        description = "Cobalt Strike Stager Payload"
+        cape_type = "CobaltStrikeStager Payload"
+    strings:
+        $smb = { 68 00 B0 04 00 68 00 B0 04 00 6A 01 6A 06 6A 03 52 68 45 70 DF D4 }
+        $http_x86 = { 68 6E 65 74 00 68 77 69 6E 69 54 68 4C 77 26 07 }
+        $http_x64 = { 49 BE 77 69 6E 69 6E 65 74 00 41 56 49 89 E6 4C 89 F1 41 BA 4C 77 26 07 }
+        $dns = { 68 00 10 00 00 68 FF FF 07 00 6A 00 68 58 A4 53 E5 }
+
+    condition:
+        any of them
+}
diff --git a/data/yara/CAPE/DarkCloud.yar b/data/yara/CAPE/DarkCloud.yar
new file mode 100644
index 00000000000..bfca023665c
--- /dev/null
+++ b/data/yara/CAPE/DarkCloud.yar
@@ -0,0 +1,39 @@
+rule DarkCloud {
+    meta:
+        author = "YungBinary"
+        description = "https://x.com/YungBinary/status/1971585972912689643"
+        cape_type = "DarkCloud Payload"
+    strings:
+        $darkcloud1 = "===============DARKCLOUD===============" fullword wide
+        $creds1 = "@GateUrl" wide
+        $creds2 = "@StrFtpUser" wide
+        $creds3 = "@StrFtpPass" wide
+        $creds4 = "@StrFtpServer" wide
+        $creds5 = "@StrReceiver" wide 
+        $creds6 = "@StrSmtpUser" wide
+        $creds7 = "@StrSmtpPass" wide
+        $sql1 = "SELECT item1 FROM metadata" wide
+        $sql2 = "SELECT name_on_card, expiration_month, expiration_year, card_number_encrypted FROM credit_cards" wide
+        $sql3 = "SELECT hostname, encryptedUsername, encryptedPassword FROM moz_logins" wide
+        $sql4 = "SELECT address FROM ConversationRecipients" wide
+        $sql5 = "SELECT address FROM ConversationSenders" wide
+        $app1 = "Application : Pidgin" wide
+        $app2 = "Application: CoreFTP" wide
+        $app3 = "Application: WinSCP" wide
+        $app4 = "Application: Outlook" wide
+        $app5 = "Application : FileZilla" fullword wide
+        $fingerprint1 = "Computer Name: " fullword wide
+        $fingerprint2 = "OS FullName: " fullword wide
+        $fingerprint3 = "CPU: " fullword wide
+        $fingerprint4 = "SELECT * FROM Win32_Processor" fullword wide
+        $fingerprint5 = "SELECT * FROM Win32_OperatingSystem" fullword wide
+    condition:
+        uint16(0) == 0x5a4d and 
+        (
+            $darkcloud1 and 1 of ($creds*) or 
+            (3 of ($creds*) and 1 of ($sql*)) or 
+            (2 of ($sql*) and 2 of ($app*)) or 
+            (2 of ($creds*) and 2 of ($fingerprint*)) or 
+            (2 of ($app*) and 2 of ($fingerprint*) and 1 of ($sql*))
+        )
+}
diff --git a/data/yara/CAPE/DarkGate.yar b/data/yara/CAPE/DarkGate.yar
new file mode 100644
index 00000000000..3f30eee0c23
--- /dev/null
+++ b/data/yara/CAPE/DarkGate.yar
@@ -0,0 +1,16 @@
+rule DarkGate
+{
+    meta:
+        author = "enzok"
+        description = "DarkGate Payload"
+        cape_type = "DarkGate Payload"
+    strings:
+        $part1 = {8B 55 ?? 8A 4D ?? 80 E1 3F C1 E1 02 8A 5D ?? 80 E3 30 81 E3 FF [3] C1 EB 04 02 CB 88 4C 10 FF FF 45 ?? 80 7D ?? 40}
+        $part2 = {8B 55 ?? 8A 4D ?? 80 E1 0F C1 E1 04 8A 5D ?? 80 E3 3C 81 E3 FF [3] C1 EB 02 02 CB 88 4C 10 FF FF 45 ?? 80 7D ?? 40}
+        $part3 = {8B 55 ?? 8A 4D ?? 80 E1 03 C1 E1 06 8A 5D ?? 80 E3 3F 02 CB 88 4C 10 FF FF 45}
+        $alphabet = "zLAxuU0kQKf3sWE7ePRO2imyg9GSpVoYC6rhlX48ZHnvjJDBNFtMd1I5acwbqT+="
+        $config1 = {B9 01 04 00 00 E8 [4] 8D 45}
+        $config2 = {8B 55 ?? 8D 45 ?? E8 [4] 8D 45 ?? 5? B? 06 00 00 00 B? 01 00 00 00 8B 45 ?? E8 [4] 8B 45 ?? B? [4] E8 [4] 75}
+    condition:
+        ($alphabet) and (any of ($part*) or all of ($config*))
+}
diff --git a/data/yara/CAPE/DoomedLoader.yar b/data/yara/CAPE/DoomedLoader.yar
new file mode 100644
index 00000000000..6678569859a
--- /dev/null
+++ b/data/yara/CAPE/DoomedLoader.yar
@@ -0,0 +1,12 @@
+rule DoomedLoader
+{
+    meta:
+        author = "kevoreilly"
+        cape_type = "DoomedLoader Payload"
+        packed = "914b1b3180e7ec1980d0bafe6fa36daade752bb26aec572399d2f59436eaa635"
+    strings:
+        $anti = {48 8B 4C 24 ?? E8 [4] 84 C0 B8 [4] 41 0F 45 C6 EB}
+        $syscall = {49 89 CA 8B 44 24 08 FF 64 24 10}
+    condition:
+        uint16(0) == 0x5A4D and all of them
+}
diff --git a/data/yara/CAPE/DoppelPaymer.yar b/data/yara/CAPE/DoppelPaymer.yar
index dabf8eae43f..9de5c4737c3 100644
--- a/data/yara/CAPE/DoppelPaymer.yar
+++ b/data/yara/CAPE/DoppelPaymer.yar
@@ -7,7 +7,7 @@ rule DoppelPaymer
 
     strings:
         $getproc32 = {81 FB ?? ?? ?? ?? 74 2D 8B CB E8 ?? ?? ?? ?? 85 C0 74 0C 8B C8 8B D7 E8 ?? ?? ?? ?? 5B 5F C3}
-        $cmd_string = "Setup run\n" wide
+        $cmd_string = "Setup run\\n" wide
     condition:
         uint16(0) == 0x5A4D and all of them
 }
diff --git a/data/yara/CAPE/DridexV4.yar b/data/yara/CAPE/DridexV4.yar
index 9f18735f288..bbf28141722 100644
--- a/data/yara/CAPE/DridexV4.yar
+++ b/data/yara/CAPE/DridexV4.yar
@@ -3,7 +3,7 @@ rule DridexV4
     meta:
         author = "kevoreilly"
         description = "Dridex v4 Payload"
-        cape_type = "Dridex v4 Payload"
+        cape_type = "DridexV4 Payload"
     strings:
         $decrypt32 = {6A 40 58 3B C8 0F 4D C1 39 46 04 7D 50 53 57 8B F8 81 E7 3F 00 00 80 79 05 4F 83 CF C0 47 F7 DF 99 1B FF 83 E2 3F 03 C2 F7 DF C1 F8 06 03 F8 C1 E7 06 57}
         $getproc32 = {81 FB ?? ?? ?? ?? 74 2D 8B CB E8 ?? ?? ?? ?? 85 C0 74 0C 8B C8 8B D7 E8 ?? ?? ?? ?? 5B 5F C3}
diff --git a/data/yara/CAPE/Emotet.yar b/data/yara/CAPE/Emotet.yar
index d91d0013d39..0c74df54fcb 100644
--- a/data/yara/CAPE/Emotet.yar
+++ b/data/yara/CAPE/Emotet.yar
@@ -16,9 +16,32 @@ rule Emotet
         $snippetA = {85 C0 74 5? 8B ?8 04 89 78 28 89 38 89 70 2C EB 04 41 89 48 04 39 34 CD [4] 75 F3 FF 75 DC FF 75 F0 8B 55 F8 FF 75 10 8B 4D EC E8 [4] 83 C4 0C 85 C0 74 05}
         $snippetB = {EB 04 4? 89 [2] 39 [6] 75 F3}
         $snippetC = {EB 03 4? 89 1? 39 [6] 75 F4}
+        $snippetD = {8D 44 [2] 50 68 [4] FF 74 [2] FF 74 [2] 8B 54 [2] 8B 4C [2] E8}
+        $snippetE = {FF 74 [2] 8D 54 [2] FF 74 [2] 68 [4] FF 74 [2] 8B 4C [2] E8 [4] 8B 54 [2] 83 C4 10 89 44 [2] 8B F8 03 44 [2] B9 [4] 89 44 [2] E9 [2] FF FF}
+        $snippetF = {FF 74 [2] 8D 44 [2] BA [4] FF 74 [2] 8B 4C [2] 50 E8 [4] 8B 54 [2] 8B D8 8B 84 [5] 83 C4 0C 03 C3 89 5C [2] 8B FB 89 44}
+        $snippetG = {FF 74 [2] 8B 54 [2] 8D 44 [2] 8B 4C [2] 50 E8 [4] 8B D0 83 C4 0C 8B 44 [2] 8B FA 03 C2 89 54 [2] 89 44}
+        $snippetH = {FF 74 [2] 8D 84 [5] 68 [4] 50 FF 74 [2] 8B 54 [2] 8B 4C [2] E8 [4] 8B 94 [5] 83 C4 10 89 84 [5] 8B F8 03 84}
+        $snippetI = {FF 74 [2] 8D 8C [5] FF 74 [2] 8B 54 [2] E8 [4] 8B 54 [2] 8B D8 8B 84 [5] 83 C4 0C 03 C3 89 5C [2] 8B FB 89 44 24 74}
+        $snippetJ = {FF 74 [2] 8B 4C [2] 8D 44 [2] 50 BA [4] E8 [4] 8B 54 [2] 8B F8 59 89 44 [2] 03 44 [2] 59 89 44 [2] B9 [4] E9}
+        $snippetK = {FF 74 [2] FF 74 [2] 8B 54 [2] E8 [4] 8B 54 [2] 83 C4 0C 89 44 [2] 8B F8 03 44 [2] B9 [4] 89 44 [2] E9}
+        $snippetL = {FF 74 [2] 8B 54 [2] 8D 4C [2] E8 [4] 59 89 44 [2] 8B F8 03 44 [2] 59 89 44 24 68 B9 [4] E9}
+        $snippetM = {FF 74 [2] 8D 84 [3] 00 00 B9 [4] 50 FF 74 [2] FF 74 [2] 8B 94 [3] 00 00 E8 [4] 83 C4 10 89 44 [2] 8B F8 B9 [4] 03 84 [3] 00 00 89 44 [2] E9}
+        $snippetN = {FF 74 [2] 8D 44 [2] B9 [4] FF 74 [2] 50 FF 74 [2] 8B 54 [2] E8 [4] 8B 8C [3] 00 00 83 C4 10 03 C8 89 44 [2] 89 4C [2] 8B F8 B9 45 89 77 05 E9}
+        $snippetO = {8D 44 [2] B9 [4] 50 FF 74 [2] 8B 54 [2] E8 [4] 8B D0 8B 44 [2] 59 59 03 C2 89 54 [2] 8B FA 89 44 [2] B9 [4] E9}
+        $snippetP = {FF 74 [2] 8B 54 [2] 8D 44 [2] 8B 4C [2] 68 [4] 50 E8 [4] 8B D0 83 C4 0C 8B 44 [2] 8B FA 03 C2 89 54 [2] 8B 54 [2] B9 [4] 89 44 [2] E9}
+        $snippetQ = {FF 74 [2] BA [4] 8D 4C [2] FF 74 [2] E8 [4] 59 89 84 [3] 00 00 8B F8 03 44 [2] 59 89 44 [2] B9 [4] 81 F9 [4] 74 28 8B 54 [2] E9}
+        $snippetR = {8D 44 [2] 50 FF 74 [2] 8B 54 [2] 8B 4C [2] 68 [4] E8 [4] 8B D0 83 C4 0C 8B 44 [2] 8B FA 03 C2 89 54 [2] 8B 54 [2] B9 [4] 89 44 [2] E9}
+        $snippetS = {FF 74 [2] 8D 54 [2] FF 74 [2] 8B 4C [2] E8 [4] 8B D0 83 C4 0C 8B 44 [2] 8B FA 03 C2 89 54 [2] 8B 54 [2] B9 [4] 89 44 [2] E9}
+        $snippetT = {8B 54 [2] 8D 44 [2] 8B 4C [2] 68 [4] 50 E8 [4] 8B 9C [3] 00 00 8B F8 59 59 03 D8 89 44 [2] 89 5C [2] B9 [4] EB}
+        $snippetU = {89 44 [2] 33 D2 8B 44 [2] F7 F1 B9 [4] 89 44 [2] 8D 44 [2] 81 74 [6] C7 44 [6] 81 44 [6] 81 74 [6] FF 74 [2] 50 FF 74 [2] FF 74 [2] 8B 54 [2] E8}
+        $snippetV = {81 74 [2] ED BC 9C 00 FF 74 [2] 50 68 [4] FF 74 [2] 8B 54 [2] 8B 4C [2] E8}
+        $snippetW = {4C 8D [2] 8B [2] 4C 8D 05 [4] F7 E1 2B CA D1 E9 03 CA C1 E9 06 89}
+        $snippetX = {4C 8D 0? [2] (00|01) 00 [0-80] 48 8D [0-9] 81 75 [5] C7 45 [5-14] 81}
+        $snippetY = {(3D [4] 0F 84 [4] 3D [4] 0F 85 [3] ??|B8 [4] E9 [3] ??) 48 8D 05 [4] 48 89 (81 [3] ??|41 ??) 48 8D 05 [4] 48 89 (81 [3] ??|41 ??) 48 8D 05 [4] 48 89}
+        $snippetZ = {(48 8B D8 48 85 C0 0F 84 [4-9] E9 [4-190] ?? | 55 53 48 8D AC 24 [2] FF FF 48 81 EC [2] 00 00 48 8B [3] 00 00 [0-80] ??) 48 8D 05 [4] 48 89 (85 [3] ??|4? ??) [0-220] 48 8D 05 [4] 48 89 (85 [3] ??|4? ??) [0-220] 48 8D 05 [4] 48 89 (85 [3] ??|4? ??)}
         $comboA1 = {83 EC 28 56 FF 75 ?? BE}
         $comboA2 = {83 EC 38 56 57 BE}
         $comboA3 = {EB 04 40 89 4? ?? 83 3C C? 00 75 F6}
     condition:
         uint16(0) == 0x5A4D and any of ($snippet*) or 2 of ($comboA*)
-}
\ No newline at end of file
+}
diff --git a/data/yara/CAPE/Emotet_Loader.yar b/data/yara/CAPE/EmotetLoader.yar
similarity index 86%
rename from data/yara/CAPE/Emotet_Loader.yar
rename to data/yara/CAPE/EmotetLoader.yar
index cffa8ab5053..827ed9599d8 100644
--- a/data/yara/CAPE/Emotet_Loader.yar
+++ b/data/yara/CAPE/EmotetLoader.yar
@@ -1,12 +1,12 @@
-rule Emotet_Loader
+rule EmotetLoader
 {
     meta:
         author = "kevoreilly"
         description = "Emotet Loader"
-        cape_type = "Emotet Loader"
+        cape_type = "EmotetLoader Payload"
     strings:
         $antihook = {8B 15 ?? ?? ?? ?? 03 15 ?? ?? ?? ?? 89 95 28 FF FF FF A1 ?? ?? ?? ?? 2D 4D 01 00 00 A3 ?? ?? ?? ?? 8B 0D ?? ?? ?? ?? 3B 0D ?? ?? ?? ?? 76 26 8B 95 18 FF FF FF 8B 42 38}
     condition:
         //check for MZ Signature at offset 0
         uint16(0) == 0x5A4D and any of them
-}
\ No newline at end of file
+}
diff --git a/data/yara/CAPE/EternalRomance.yar b/data/yara/CAPE/EternalRomance.yar
index 5bd8c5131eb..d88f29fe12b 100644
--- a/data/yara/CAPE/EternalRomance.yar
+++ b/data/yara/CAPE/EternalRomance.yar
@@ -10,11 +10,11 @@ rule EternalRomance
         $session7_32_1 = {2A 02 1C 00}
         $session7_64_1 = {2A 02 28 00}
         $session8_32_1 = {2A 02 24 00}
-        $session8_64_1 = {2A 02 38 00} 
+        $session8_64_1 = {2A 02 38 00}
         $session7_32_2 = {D5 FD E3 FF}
         $session7_64_2 = {D5 FD D7 FF}
         $session8_32_2 = {D5 FD DB FF}
-        $session8_64_2 = {D5 FD C7 FF} 
+        $session8_64_2 = {D5 FD C7 FF}
         $ipc = "IPC$"
         $pipe1 = "atsvc"
         $pipe2 = "browser"
diff --git a/data/yara/CAPE/Fareit.yar b/data/yara/CAPE/Fareit.yar
index b1e3f9d6675..0dba8961b57 100644
--- a/data/yara/CAPE/Fareit.yar
+++ b/data/yara/CAPE/Fareit.yar
@@ -9,4 +9,3 @@ rule Fareit
     condition:
         uint16(0) == 0x5A4D and any of ($string*)
 }
-
diff --git a/data/yara/CAPE/Formbook.yar b/data/yara/CAPE/Formbook.yar
new file mode 100644
index 00000000000..8815b1241f7
--- /dev/null
+++ b/data/yara/CAPE/Formbook.yar
@@ -0,0 +1,18 @@
+rule Formbook
+{
+    meta:
+        author = "kevoreilly"
+        description = "Formbook Payload"
+        cape_type = "Formbook Payload"
+        packed = "9e38c0c3c516583da526016c4c6a671c53333d3d156562717db79eac63587522"
+        packed = "2379a4e1ccdd7849ad7ea9e11ee55b2052e58dda4628cd4e28c3378de503de23"
+    strings:
+        $remap_ntdll = {33 56 0? 8D 86 [2] 00 00 68 F0 00 00 00 50 89 56 ?? E8 [4] 8B [1-5] 6A 00 6A 04 8D 4D ?? 51 6A 07 52 56 E8 [4] 8B 45 ?? 83 C4 20 3B}
+        $rc4dec = {F7 E9 C1 FA 03 8B C2 C1 E8 1F 03 C2 8D 04 80 03 C0 03 C0 8B D1 2B D0 8A 04 3A 88 8C 0D [4] 88 84 0D [4] 41 81 F9 00 01 00 00 7C}
+        $decrypt = {8A 50 01 28 10 48 49 75 F7 83 FE 01 76 14 8B C7 8D 4E FF 8D 9B 00 00 00 00 8A 50 01 28 10 40 49 75 F7}
+        $string = {33 C0 66 39 01 74 0B 8D 49 00 40 66 83 3C 41 00 75 F8 8B 55 0C 8D 44 00 02 50 52 51 E8}
+        $mutant = {64 A1 18 00 00 00 8B 40 ?? 89 45 ?? 8B 45 ?? 8B 40 ?? 8B E5 5D C3}
+        $postmsg = {8B 7D 0C 6A 00 6A 00 68 11 01 00 00 57 FF D6 85 C0 75 ?? 50}
+    condition:
+        2 of them
+}
\ No newline at end of file
diff --git a/data/yara/CAPE/Gandcrab.yar b/data/yara/CAPE/Gandcrab.yar
index 553d791d25d..3570dd9ba2c 100644
--- a/data/yara/CAPE/Gandcrab.yar
+++ b/data/yara/CAPE/Gandcrab.yar
@@ -11,4 +11,4 @@ rule Gandcrab
         $string4 = "KRAB-DECRYPT.txt" wide
     condition:
         uint16(0) == 0x5A4D and any of ($string*)
-}
\ No newline at end of file
+}
diff --git a/data/yara/CAPE/Guloader.yar b/data/yara/CAPE/Guloader.yar
index cf2a71c547a..fe2a9900eb0 100644
--- a/data/yara/CAPE/Guloader.yar
+++ b/data/yara/CAPE/Guloader.yar
@@ -3,12 +3,15 @@ rule Guloader
     meta:
         author = "kevoreilly"
         description = "Shellcode injector and downloader"
+        cape_type = "Guloader Payload"
     strings:
         $trap0 = {0F 85 [2] FF FF 81 BD ?? 00 00 00 [2] 00 00 0F 8F [2] FF FF 39 D2 83 FF 00}
         $trap1 = {49 83 F9 00 75 [1-20] 83 FF 00 [2-6] 81 FF}
         $trap2 = {39 CB 59 01 D7 49 85 C8 83 F9 00 75 B3}
         $trap3 = {61 0F AE E8 0F 31 0F AE E8 C1 E2 20 09 C2 29 F2 83 FA 00 7E CE C3}
-        $antihook = {FF 34 08 [0-48] 8F 04 0B [0-80] 83 C1 04 83 F9 18 75 [0-128] FF E3}
+        $antihook = {FF 34 08 [0-360] 8F 04 0B [0-800] FF E3}
+        $antidbg = {39 48 04 0F 85 [4] 39 48 08 0F 85 [4] 39 48 0C 0F 85 [4] 39 48 10 0F 85 [4] 39 48 14 0F 85 [4] 39 48 18 0F 85}
+        $except = {8B 45 08 8B 00 [0-1] 8B 58 18 [0-20] 81 38 05 00 00 C0 0F 85 [4-7] 83 FB 00 (0F 84|74)}
         $cape_string = "cape_options"
     condition:
         2 of them and not $cape_string
diff --git a/data/yara/CAPE/IcedID.yar b/data/yara/CAPE/IcedID.yar
index 6b8853ee969..a481c1c9814 100644
--- a/data/yara/CAPE/IcedID.yar
+++ b/data/yara/CAPE/IcedID.yar
@@ -1,7 +1,7 @@
 rule IcedID
 {
     meta:
-        author = "kevoreilly"
+        author = "kevoreilly, threathive"
         description = "IcedID Payload"
         cape_type = "IcedID Payload"
     strings:
@@ -11,6 +11,8 @@ rule IcedID
         $download1 = {8D 44 24 40 50 8D 84 24 44 03 00 00 68 04 21 40 00 50 FF D5 8D 84 24 4C 01 00 00 C7 44 24 28 01 00 00 00 89 44 24 1C 8D 4C 24 1C 8D 84 24 4C 03 00 00 83 C4 0C 89 44 24 14 8B D3 B8 BB 01 00 00 66 89 44 24 18 57}
         $download2 = {8B 75 ?? 8D 4D ?? 8B 7D ?? 8B D6 57 89 1E 89 1F E8 [4] 59 3D C8 00 00 00 75 05 33 C0 40 EB}
         $major_ver = {0F B6 05 ?? ?? ?? ?? 6A ?? 6A 72 FF 75 0C 6A 70 50 FF 35 ?? ?? ?? ?? 8D 45 80 FF 35 ?? ?? ?? ?? 6A 63 FF 75 08 6A 67 50 FF 75 10 FF 15 ?? ?? ?? ?? 83 C4 38 8B E5 5D C3}
+        $stage_2_request_binary = "id="
+        $stage_2_request_img = ".png"
     condition:
-        any of them
+        any of ($crypt*, $download*, $major_ver) and all of ($stage_2_request_*)
 }
diff --git a/data/yara/CAPE/IcedIDStage1.yar b/data/yara/CAPE/IcedIDLoader.yar
similarity index 62%
rename from data/yara/CAPE/IcedIDStage1.yar
rename to data/yara/CAPE/IcedIDLoader.yar
index 794df5456e7..7581f5bb21e 100644
--- a/data/yara/CAPE/IcedIDStage1.yar
+++ b/data/yara/CAPE/IcedIDLoader.yar
@@ -1,20 +1,22 @@
-rule IcedIDStage1
+rule IcedIDLoader
 {
     meta:
-        author = "kevoreilly, threathive, enzo"
-        description = "IcedID Payload"
-        cape_type = "IcedID Payload"
+        author = "kevoreilly, threathive, enzo, r0ny123"
+        description = "IcedID Loader"
+        cape_type = "IcedIDLoader Payload"
     strings:
         $crypt1 = {8A 04 ?? D1 C? F7 D? D1 C? 81 E? 20 01 00 00 D1 C? F7 D? 81 E? 01 91 00 00 32 C? 88}
         $crypt2 = {8B 44 24 04 D1 C8 F7 D0 D1 C8 2D 20 01 00 00 D1 C0 F7 D0 2D 01 91 00 00 C3}
         $crypt3 = {41 00 8B C8 C1 E1 08 0F B6 C4 66 33 C8 66 89 4? 24 A1 ?? ?? 41 00 89 4? 20 A0 ?? ?? 41 00 D0 E8 32 4? 32}
-        $crypt4 = {0F B6 C8 [0-3] 8B C1 83 E1 0F [0-1] C1 E8 04 [0-1] 0F BE [2-5] 66 [0-1] 89 04 ?? [0-1] 0F BE [2-5] 66 [0-1] 89 44 [2] [0-1] 83 [5] 84 C0 75}
+        $crypt4 = {0F B6 C8 [0-3] 8B C1 83 E1 0F [0-1] C1 E8 04 [0-1] 0F BE [2-5] 66 [0-1] 89 04 [1-2] 0F BE [2-5] 66 [0-1] 89 44 [2-3] 83 [4-5] 84 C0 75}
+        $crypt5 = {48 C1 E8 ?? 0F BE 44 05 ?? 66 89 04 5E 44 88 75 ?? C7 45 [5] C7 45 [5] C7 45 [5] C7 45 [5] 44 89 5D}
+        $crypt6 = {0F B6 D2 8B C2 48 C1 E8 04 0F BE 44 [2] 66 41 89 [0-80] 83 E2 0F 49 FF C0 0F BE 44 15 ?? 66 41 89 44}
         $download1 = {8D 44 24 40 50 8D 84 24 44 03 00 00 68 04 21 40 00 50 FF D5 8D 84 24 4C 01 00 00 C7 44 24 28 01 00 00 00 89 44 24 1C 8D 4C 24 1C 8D 84 24 4C 03 00 00 83 C4 0C 89 44 24 14 8B D3 B8 BB 01 00 00 66 89 44 24 18 57}
         $download2 = {8B 75 ?? 8D 4D ?? 8B 7D ?? 8B D6 57 89 1E 89 1F E8 [4] 59 3D C8 00 00 00 75 05 33 C0 40 EB}
         $download3 = {B8 50 00 00 00 66 89 45 ?? 4C 89 65 ?? 4C 89 75 ?? E8 [4] 48 8B 1E 3D 94 01 00 00}
         $major_ver = {0F B6 05 ?? ?? ?? ?? 6A ?? 6A 72 FF 75 0C 6A 70 50 FF 35 ?? ?? ?? ?? 8D 45 80 FF 35 ?? ?? ?? ?? 6A 63 FF 75 08 6A 67 50 FF 75 10 FF 15 ?? ?? ?? ?? 83 C4 38 8B E5 5D C3}
-        $decode = {4? 8D 15 [3] 00 8A 44 11 40 32 04 11 88 44 0D ?? 4? FF C1 4? 83 F9 20 72}
+        $decode1 = {4? 8D [5-6] 8A 4? [1-3] 32 }//0? 01 88 44 [2] 4?}
+        $decode2 = {42 0F B6 4C 02 ?? 42 0F B6 04 02 32 C8 88 8C 15 ?? ?? ?? ?? 48 FF C2 48 83 FA 20}
     condition:
         2 of them
 }
-
diff --git a/data/yara/CAPE/IcedIDStage2.yar b/data/yara/CAPE/IcedIDStage2.yar
deleted file mode 100644
index 4a15da9bc75..00000000000
--- a/data/yara/CAPE/IcedIDStage2.yar
+++ /dev/null
@@ -1,21 +0,0 @@
-rule IcedIDStage2
-{
-    meta:
-        author = "kevoreilly"
-        description = "IcedID Stage2 Payload"
-        cape_type = "IcedID Stage2 Payload"
-    strings:
-        $crypt1 = {8A 04 ?? D1 C? F7 D? D1 C? 81 E? 20 01 00 00 D1 C? F7 D? 81 E? 01 91 00 00 32 C? 88}
-        $crypt2 = {8B 44 24 04 D1 C8 F7 D0 D1 C8 2D 20 01 00 00 D1 C0 F7 D0 2D 01 91 00 00 C3}
-        $crypt3 = {41 00 8B C8 C1 E1 08 0F B6 C4 66 33 C8 66 89 4? 24 A1 ?? ?? 41 00 89 4? 20 A0 ?? ?? 41 00 D0 E8 32 4? 32}
-        $download1 = {8D 44 24 40 50 8D 84 24 44 03 00 00 68 04 21 40 00 50 FF D5 8D 84 24 4C 01 00 00 C7 44 24 28 01 00 00 00 89 44 24 1C 8D 4C 24 1C 8D 84 24 4C 03 00 00 83 C4 0C 89 44 24 14 8B D3 B8 BB 01 00 00 66 89 44 24 18 57}
-        $download2 = {8B 75 ?? 8D 4D ?? 8B 7D ?? 8B D6 57 89 1E 89 1F E8 [4] 59 3D C8 00 00 00 75 05 33 C0 40 EB}
-        $major_ver = {0F B6 05 ?? ?? ?? ?? 6A ?? 6A 72 FF 75 0C 6A 70 50 FF 35 ?? ?? ?? ?? 8D 45 80 FF 35 ?? ?? ?? ?? 6A 63 FF 75 08 6A 67 50 FF 75 10 FF 15 ?? ?? ?? ?? 83 C4 38 8B E5 5D C3}
-        $stage_2_request_binary = "id="
-        $stage_2_request_img = ".png"
-
-
-    condition:
-        any of ($crypt*, $download*, $major_ver) and all of ($stage_2_request_*)
-
-}
diff --git a/data/yara/CAPE/Imminent.yar b/data/yara/CAPE/Imminent.yar
deleted file mode 100644
index 2a6b74a39ec..00000000000
--- a/data/yara/CAPE/Imminent.yar
+++ /dev/null
@@ -1,15 +0,0 @@
-rule Imminent
-{
-    meta:
-        author = "kevoreilly"
-        description = "Imminent Payload"
-        cape_type = "Imminent Payload"
-    strings:
-        $string1 = "Imminent-Monitor" 
-        $string2 = "abuse@imminentmethods.net"
-        $string3 = "SevenZipHelper"
-        $string4 = "get_EntryPoint"
-        $string5 = "WrapNonExceptionThrows"
-    condition:
-        uint16(0) == 0x5A4D and all of them
-}
diff --git a/data/yara/CAPE/KoiLoader.yar b/data/yara/CAPE/KoiLoader.yar
new file mode 100644
index 00000000000..3f71f780ef1
--- /dev/null
+++ b/data/yara/CAPE/KoiLoader.yar
@@ -0,0 +1,35 @@
+rule KoiLoader
+{
+    meta:
+        author = "YungBinary"
+        description = "KoiLoader"
+        cape_type = "KoiLoader Payload"
+        hash = "b462e3235c7578450b2b56a8aff875a3d99d22f6970a01db3ba98f7ecb6b01a0"
+    strings:
+        $chunk_1 = {
+            68 27 11 68 05
+            8B 45 ??
+            50
+            E8 ?? ?? ?? ??
+            83 C4 08
+            89 45 ??
+            68 15 B1 B3 09
+            8B 4D ??
+            51
+            E8 ?? ?? ?? ??
+            83 C4 08
+            89 45 ??
+            68 B5 96 AA 0D
+            8B 55 ??
+            52
+            E8 ?? ?? ?? ??
+            83 C4 08
+            89 45 ??
+            6A 00
+            FF 15 ?? ?? ?? ??
+        }
+
+    condition:
+        $chunk_1
+
+}
diff --git a/data/yara/CAPE/Latrodectus.yar b/data/yara/CAPE/Latrodectus.yar
new file mode 100644
index 00000000000..a8b6c7f444d
--- /dev/null
+++ b/data/yara/CAPE/Latrodectus.yar
@@ -0,0 +1,34 @@
+rule Latrodectus
+{
+    meta:
+        author = "enzok"
+        description = "Latrodectus Payload"
+        cape_type = "Latrodectus Payload"
+        hash = "a547cff9991a713535e5c128a0711ca68acf9298cc2220c4ea0685d580f36811"
+    strings:
+        $fnvhash1 = {C7 04 24 C5 9D 1C 81 48 8B 44 24 20 48 89 44 24 08}
+        $fnvhash2 = {8B 0C 24 33 C8 8B C1 89 04 24 69 04 24 93 01 00 01}
+        $procchk1 = {E8 [3] FF 85 C0 74 [2] FF FF FF FF E9 [4] E8 [4] 89 44 24 ?? E8 [4] 83 F8 4B 73 ?? 83 [3] 06}
+        $procchk2 = {72 [2] FF FF FF FF E9 [4] E8 [4] 83 F8 32 73 ?? 83 [3] 06}
+		$version = {C7 44 2? ?? ?? 00 00 00 C7 44 2? ?? ?? 00 00 00 8B 05 [4] 89}
+    condition:
+        all of them
+}
+
+rule Latrodectus_AES
+{
+    meta:
+        author = "enzok"
+        description = "Latrodectus Payload"
+        cape_type = "Latrodectus Payload"
+        hash = "5cecb26a3f33c24b92a0c8f6f5175da0664b21d7c4216a41694e4a4cad233ca8"
+    strings:
+	    $fnvhash1 = {C7 04 24 C5 9D 1C 81 48 8B 44 24 20 48 89 44 24 08}
+        $fnvhash2 = {8B 0C 24 33 C8 8B C1 89 04 24 69 04 24 93 01 00 01}
+		$key =  {C6 44 2? ?? ?? [150] C6 44 2? ?? ?? B8 02}
+		$aes_ctr_1 = {8B 44 24 ?? FF C8 89 44 24 ?? 83 7C 24 ?? 00 7C ?? 4? 63 44 24 ?? 4? 8B 4C 24 ?? 0F B6 84 01 F0 00 00 00 3D FF 00 00 00}
+		$aes_ctr_2 = {48 03 C8 48 8B C1 0F B6 ?? 48 63 4C 24 ?? 0F B6 4C 0C ?? 33 C1 48 8B 4C 24 ?? 48 8B 54 24 ?? 48 03 D1 48 8B CA 88 01}
+		$version = {C7 44 2? ?? ?? 00 00 00 C7 44 2? ?? ?? 00 00 00 8B 05 [4] 89}
+    condition:
+        all of them
+}
\ No newline at end of file
diff --git a/data/yara/CAPE/Lockbit.yar b/data/yara/CAPE/Lockbit.yar
index 51c078dacd6..9e2965734e4 100644
--- a/data/yara/CAPE/Lockbit.yar
+++ b/data/yara/CAPE/Lockbit.yar
@@ -5,7 +5,11 @@ rule Lockbit
         description = "Lockbit Payload"
         cape_type = "Lockbit Payload"
     strings:
-        $crypto = {8B 4D 08 C1 E9 10 0F B6 D1 8B 4D 0C C1 E9 08 0F B6 C9 8B 14 95 [4] 8B 7D FC 33 14 8D [4] 8B CF C1 E9 18 33 14 8D [4] 0F B6 CB 33 14 8D [4] 8B CF 33 10}
+        $string1 = "/C ping 127.0.0.7 -n 3 > Nul & fsutil file setZeroData offset=0 length=524288 \"%s\" & Del /f /q \"%s\"" wide
+        $string2 = "Ransom" ascii wide
+        $crypto  = {8B 4D 08 C1 E9 10 0F B6 D1 8B 4D 0C C1 E9 08 0F B6 C9 8B 14 95 [4] 8B 7D FC 33 14 8D [4] 8B CF C1 E9 18 33 14 8D [4] 0F B6 CB 33 14 8D [4] 8B CF 33 10}
+        $decode1 = {8A ?4 34 ?C 0? 00 00 8B 8? 24 ?8 0? 00 00 0F BE ?? 0F BE C? 33 ?? 88 ?? 34 ?? 0? 00 00 46 83 FE 0? 72 DD}
+        $decode2 = {8A 44 24 ?? 30 44 0C ?? 41 83 F9 ?? 72 F2}
     condition:
-        uint16(0) == 0x5A4D and (any of them)
-} 
\ No newline at end of file
+        uint16(0) == 0x5A4D and (2 of them)
+}
diff --git a/data/yara/CAPE/Locky.yar b/data/yara/CAPE/Locky.yar
index 0a119e2cb5a..39f6d2327cc 100644
--- a/data/yara/CAPE/Locky.yar
+++ b/data/yara/CAPE/Locky.yar
@@ -12,4 +12,3 @@ rule Locky
         //check for MZ Signature at offset 0
         uint16(0) == 0x5A4D and all of them
 }
-
diff --git a/data/yara/CAPE/Loki.yar b/data/yara/CAPE/LokiBot.yar
similarity index 72%
rename from data/yara/CAPE/Loki.yar
rename to data/yara/CAPE/LokiBot.yar
index d11baec1557..01edd876fc3 100644
--- a/data/yara/CAPE/Loki.yar
+++ b/data/yara/CAPE/LokiBot.yar
@@ -1,9 +1,9 @@
-rule Loki
+rule LokiBot
 {
     meta:
         author = "kevoreilly"
-        description = "Loki Payload"
-        cape_type = "Loki Payload"
+        description = "LokiBot Payload"
+        cape_type = "LokiBot Payload"
     strings:
         $a1 = "DlRycq1tP2vSeaogj5bEUFzQiHT9dmKCn6uf7xsOY0hpwr43VINX8JGBAkLMZW"
         $a2 = "last_compatible_version"
diff --git a/data/yara/CAPE/Lumma.yar b/data/yara/CAPE/Lumma.yar
new file mode 100644
index 00000000000..1ca8dafefa0
--- /dev/null
+++ b/data/yara/CAPE/Lumma.yar
@@ -0,0 +1,16 @@
+rule Lumma
+{
+    meta:
+        author = "kevoreilly"
+        description = "Lumma Payload"
+        cape_type = "Lumma Payload"
+        packed = "0ee580f0127b821f4f1e7c032cf76475df9724a9fade2e153a69849f652045f8"
+        packed = "23ff1c20b16d9afaf1ce443784fc9a025434a010e2194de9dec041788c369887"
+    strings:
+        $decode1 = {C1 (E9|EA) 02 [0-3] 0F B6 (44|4C) ?? FF 83 (F8|F9) 3D 74 05 83 (F8|F9) 2E 75 01 (49|4A) [0-30] 2E 75}
+        $decode2 = {B0 40 C3 B0 3F C3 89 C8 04 D0 3C 09 77 06 80 C1 04 89 C8 C3 89 C8 04 BF 3C}
+        $decode3 = {B0 40 C3 B0 3F C3 80 F9 30 72 ?? 80 F9 39 77 06 80 C1 04 89 C8 C3}
+        $decode4 = {89 C8 04 D0 3C 09 77 ?? [3-11] 89 C8 [0-1] C3 89 C8 04 BF 3C 1A 72 ?? 89 C8 04 9F 3C}
+    condition:
+        uint16(0) == 0x5a4d and any of them
+}
diff --git a/data/yara/CAPE/MonsterV2.yar b/data/yara/CAPE/MonsterV2.yar
new file mode 100644
index 00000000000..b3ef952e1d4
--- /dev/null
+++ b/data/yara/CAPE/MonsterV2.yar
@@ -0,0 +1,21 @@
+rule MonsterV2
+{
+    meta:
+        author = "doomedraven,YungBinary"
+        description = "MonsterV2 Payload"
+        cape_type = "MonsterV2 Payload"
+        packed = "fe69e8db634319815270aa0e55fe4b9c62ce8e62484609c3a42904fbe5bb2ab3"
+    strings:
+        $decrypt_config = {
+            41 B8 0E 04 00 00
+            48 8D 15 ?? ?? ?? 00
+            48 8B C?
+            E8 ?? ?? ?? ?? [3-17]
+            4C 8B C?
+            48 8D 54 24 28
+            48 8B CE
+            E8 ?? ?? ?? ??
+        }
+    condition:
+        uint16(0) == 0x5A4D and $decrypt_config
+}
diff --git a/data/yara/CAPE/MyKings.yar b/data/yara/CAPE/MyKings.yar
new file mode 100644
index 00000000000..52362e71a45
--- /dev/null
+++ b/data/yara/CAPE/MyKings.yar
@@ -0,0 +1,23 @@
+rule MyKings 
+{
+    meta:
+        author = "YungBinary"
+        description = "https://x.com/YungBinary/status/1981108948498333900"
+        cape_type = "MyKings Payload"
+    strings: 
+        $s1 = "login.php?uid=0" wide
+        $s2 = "download.txt?rnd=" wide
+        $s3 = "AcceptOK" ascii
+        $s4 = "winsta0\\default" wide
+        $s5 = "base64_ip.txt" wide
+        $s6 = { 70 00 6F 00 77 00 65 00 72 00 74 00 6F 00 6F 00 6C 00 00 00 6B 00 61 00 73 00 70 00 65 00 72 00 73 00 6B 00 79 }
+        $s7 = { 53 00 61 00 66 00 65 00 00 00 00 00 45 00 73 00 65 00 74 }
+        $s8 = { 4E 00 6F 00 64 00 33 00 32 00 00 00 4D 00 61 00 6C 00 77 00 61 00 72 00 65 }
+        $s9 = "Custom C++ HTTP Client/1.0" wide
+        $s10 = "/ru \"SYSTEM\" /f" ascii
+        $s11 = "cmd.exe /C timeout /t 1 & del " wide
+        $s12 = "/login.aspx?uid=0" wide
+        $s13 = "cmd-230812.ru" base64
+    condition:
+        uint16(0) == 0x5a4d and (3 of ($s*))
+}
diff --git a/data/yara/CAPE/NetSupport.yar b/data/yara/CAPE/NetSupport.yar
new file mode 100644
index 00000000000..80437a1b4be
--- /dev/null
+++ b/data/yara/CAPE/NetSupport.yar
@@ -0,0 +1,16 @@
+import "pe"
+
+rule NetSupport
+{
+  meta:
+    author = "YungBinary"
+    description = "Detects NetSupport Manager RAT on disk or in memory"
+    cape_type = "NetSupport Payload"
+  strings:
+    $a1 = "NetSupport Manager" wide
+    $b1 = "NetSupport Remote Control" wide
+    $s1 = "Client Application" wide
+    $s2 = "NetSupport Ltd" wide
+  condition:
+    uint16(0) == 0x5a4d and ((pe.imports("PCICL32.dll", "_NSMClient32@8")) or (($a1 and $b1) or ($s1 and $s2)))
+}
diff --git a/data/yara/CAPE/NetTraveler.yar b/data/yara/CAPE/NetTraveler.yar
index be148177382..d11f2297166 100644
--- a/data/yara/CAPE/NetTraveler.yar
+++ b/data/yara/CAPE/NetTraveler.yar
@@ -5,10 +5,13 @@ rule NetTraveler
         description = "NetTraveler Payload"
         cape_type = "NetTraveler Payload"
     strings:
-        $string1 = {4E 61 6D 65 3A 09 25 73 0D 0A 54 79 70 65 3A 09 25 73 0D 0A 53 65 72 76 65 72 3A 09 25 73 0D 0A} // "Name: %s  Type: %s  Server: %s "
+        $string1 = { 4E 61 6D 65 3A 09 25 73 
+                     0D 0A 54 79 70 65 3A 09
+                     25 73 0D 0A 53 65 72 76 
+                     65 72 3A 09 25 73 0D 0A } // Name:\t%s\r\nType:\t%s\r\nServer:\t%s\r\n
         $string2 = "Password Expiried Time:"
         $string3 = "Memory: Total:%dMB,Left:%dMB (for %.2f%s)"
-        
+
     condition:
         uint16(0) == 0x5A4D and all of them
 }
diff --git a/data/yara/CAPE/Nighthawk.yar b/data/yara/CAPE/Nighthawk.yar
new file mode 100644
index 00000000000..e3456935877
--- /dev/null
+++ b/data/yara/CAPE/Nighthawk.yar
@@ -0,0 +1,24 @@
+import "pe"
+
+rule Nighthawk
+{
+    meta:
+        author = "Nikhil Ashok Hegde <@ka1do9>"
+        description = "NightHawk C2"
+        cape_type = "Nighthawk Payload"
+
+    strings:
+        // Not wildcarding register to have better yara performance
+        $keying_methods = { 85 C9 74 43 83 E9 01 74 1C 83 F9 01 0F 85 }
+
+        // AES-128 CBC sbox and inverse-sbox used in key expansion
+        $aes_sbox = { 63 7C 77 7B F2 6B 6F C5 30 }
+        $aes_inv_sbox = { 52 09 6A D5 30 36 A5 38 BF }
+
+    condition:
+        pe.is_pe and
+        // Nighthawk DLL is known to contain a ".profile" section which
+        // contains config
+        for any s in pe.sections: (s.name == ".profile") and
+        all of them
+}
diff --git a/data/yara/CAPE/NightshadeC2.yar b/data/yara/CAPE/NightshadeC2.yar
new file mode 100644
index 00000000000..b62bc519c14
--- /dev/null
+++ b/data/yara/CAPE/NightshadeC2.yar
@@ -0,0 +1,20 @@
+rule NightshadeC2
+{
+    meta:
+        author = "YungBinary"
+        description = "NightshadeC2 AKA CastleRAT - https://x.com/YungBinary/status/1963751038340534482"
+        hash = "963c012d56c62093d105ab5044517fdcce4ab826f7782b3e377932da1df6896d"
+        cape_type = "NightshadeC2 Payload"
+    strings:
+        $s1 = "keylog.txt" fullword wide
+        $s2 = "\"%ws\" --mute-audio --do-not-de-elevate" fullword wide
+        $s3 = "\"%ws\" -no-deelevate" fullword wide
+        $s4 = "MachineGuid" fullword wide
+        $s5 = "www.ip-api.com" fullword wide
+        $s6 = "rundll32 \"C:\\Windows\\System32\\shell32.dll\" #61" fullword wide
+        $s7 = "IsabellaWine" fullword wide
+        $s8 = "Shell_TrayWnd" fullword wide
+
+    condition:
+        uint16(0) == 0x5A4D and 3 of them
+}
diff --git a/data/yara/CAPE/NitroBunnyDownloader.yar b/data/yara/CAPE/NitroBunnyDownloader.yar
new file mode 100644
index 00000000000..53ebcbba24d
--- /dev/null
+++ b/data/yara/CAPE/NitroBunnyDownloader.yar
@@ -0,0 +1,18 @@
+rule NitroBunnyDownloader
+{
+    meta:
+        author = "enzok"
+        description = "NitroBunnyDownloader"
+        cape_type = "NitroBunnyDownloader Payload"
+        hash = "960e59200ec0a4b5fb3b44e6da763f5fec4092997975140797d4eec491de411b"
+    strings:
+        $config1 = {E8 [3] 00 41 B8 ?? ?? 00 00 48 8D 15 [3] 00 48 89 C1 48 89 ?? E8 [3] 00}
+        $config2 = {E8 [3] 00 48 8D 15 [3] 00 41 B8 ?? ?? 00 00 48 89 C1 48 89 ?? E8 [3] 00}
+        $string1 = "X-Amz-User-Agent:" wide
+        $string2 = "Amz-Security-Flag:" wide
+        $string3 = "/cart" wide
+        $string4 = "Cookie: " wide
+        $string5 = "wishlist" wide
+    condition:
+        uint16(0) == 0x5A4D and 1 of ($config*) and 2 of ($string*)
+}
diff --git a/data/yara/CAPE/NitrogenLoader.yar b/data/yara/CAPE/NitrogenLoader.yar
new file mode 100644
index 00000000000..d51906c18bf
--- /dev/null
+++ b/data/yara/CAPE/NitrogenLoader.yar
@@ -0,0 +1,35 @@
+rule NitrogenLoader
+{
+    meta:
+        author = "enzok"
+        description = "Nitrogen Loader"
+        cape_type = "NitrogenLoader Loader"
+        hash1 = "7b603d63a23201ff0b6ffa9acdd650df9caa1731837d559d93b3d8ce1d82a962"
+        hash2 = "50c2afd792bfe2966133ee385054eaae1f73b04e013ef3434ef2407f99d7f037"
+        hash3 = "4926dee7da0da522c34ffeebb32f28703fd689a52543332c8d28ccfea223f43a"
+    strings:
+        $stringaes1 = {63 7c 77 7b f2 6b 6f c5 30 01 67 2b fe d7 ab 76 ca 82 c9 7d fa}
+        $stringaes2 = {52 09 6a d5 30 36 a5 38 bf 40 a3 9e 81 f3 d7 fb 7c e3 39 82 9b}
+        $string1 = "GetComputerNameExA"
+        $string2 = "LoadResource"
+        $syscallmakehashes = {48 89 4C 24 ?? 48 89 54 24 ?? 4? 89 44 24 ?? 4? 89 4C 24 ?? 4? 83 EC ?? B? [4] E8 [3] 00}
+        $syscallnumber = {49 89 C3 B? [4] E8 [3] 00}
+        $syscall = {48 83 C4 ?? 4? 8B 4C 24 ?? 4? 8B 54 24 ?? 4? 8B 44 24 ?? 4? 8B 4C 24 ?? 4? 89 CA 4? FF E3}
+        $decryptstr1 = {33 D2 48 8B 04 24 B? 0C 00 00 00 48 F7 F1 48 8B C2 48 C1 E0 02 0F B6 C8 48 8B 44 24 ?? 48 D3 E8 48 25 AB 00 00 00}
+        $decryptrsc1 = {48 63 4? 24 ?? 33 D2 48 [0-3] F7 B4 24 [4] 48 8B C2 48 8B 8C 24 [4] 0F BE 04 01}
+        $decryptrsc2 = {8B ?? 24 [1-4] 33 C8 8B C1 48 63 4C 24 ?? 48 8B 94 24 [4] 88 04 0A}
+        $decryptrsc3 = {8B 8C 24 ?? ?? ?? ?? 2B C8 8B C1 48 63 4C 24 ?? 48 8B 94 24 [4] 88 04 0A}
+        $decryptstrs = {33 D2 48 8B 04 24 B9 0C 00 00 00 48 F7 F1 48 8B C2 48 C1 E0 02 0F B6 C8 48 8B 44 24 ?? 48 D3 E8 48 25 AB 00 00 00}
+        $taskman_1 = {E8 [4] B9 61 00 00 00 88 84 24 [4] E8 [4] B9 73 00 00 00 88 84 24 [4] E8 [4] B9 6B 00 00 00 88 84 24 [4] E8 [3] FF}
+        $taskman_2 = {B9 4D 00 00 00 88 84 24 [4] E8 [4] B9 61 00 00 00 88 84 24 [4] E8 [4] B9 6E 00 00 00 88 84 24 [4] E8 [3] FF}
+        $taskman_3 = {B9 61 00 00 00 88 84 24 [4] E8 [4] B9 67 00 00 00 88 84 24 [4] E8 [4] B9 65 00 00 00 88 84 24 [4] E8 [3] FF}
+        $taskman_4 = {B9 72 00 00 00 88 84 24 [4] E8 [4] 31 C9 88 84 24 [4] E8 [3] FF}
+        $installers_1 = {B9 49 00 00 00 E8 [4] B9 6E 00 00 00 88 84 24 [4] E8 [4] B9 73 00 00 00 88 84 24 [4] E8 [3] FF}
+        $installers_2 = {B9 74 00 00 00 88 84 24 [4] E8 [4] B9 61 00 00 00 88 84 24 [4] E8 [4] B9 6C 00 00 00 88 84 24 [4] E8 [3] FF}
+        $installers_3 = {B9 6C 00 00 00 88 84 24 [4] E8 [4] B9 65 00 00 00 88 84 24 [4] E8 [3] FF}
+        $installers_4 = {B9 72 00 00 00 88 84 24 [4] E8 [4] B9 73 00 00 00 88 84 24 [4] E8 [3] FF}
+        $rc4decrypt_1 = {48 89 ?? 4? 89 ?? E8 [4] 4? 8B ?? 24 [1-4] 4? 89 ?? 4? 89 ?? 4? 89 C1 [0-1] 89 ?? E8 [4] 4? 89}
+        $rc4decrypt_2 = {E8 [4] 8B ?? 24 [1-4] 4? 89 ?? 48 89 ?? 4? 89 C1 E8 [3] FF}
+    condition:
+        (2 of ($string*) and any of ($syscall*)) or 4 of ($decrypt*) or ((3 of ($taskman_*) or 3 of ($installers*)) and all of ($rc4decrypt_*))
+}
diff --git a/data/yara/CAPE/Obfuscar.yar b/data/yara/CAPE/Obfuscar.yar
new file mode 100644
index 00000000000..0639a5c5a25
--- /dev/null
+++ b/data/yara/CAPE/Obfuscar.yar
@@ -0,0 +1,12 @@
+rule Obfuscar
+{
+    meta:
+        author = "kevoreilly"
+        description = "Obfuscar xor routime"
+        // cape_type = "AgentTesla Payload"
+        // https://github.com/obfuscar/obfuscar/blob/65e9ced171e0f2a92d2c64c479c3a1ec3624802a/Obfuscar/Obfuscator.cs#L1693
+    strings:
+        $decode = {06 91 06 61 20 [4] 61 D2 9C 06 17 58 0A 06 7E [4] 8E 69 FE 04 2D ?? 2A}
+    condition:
+        uint16(0) == 0x5A4D and any of them
+}
diff --git a/data/yara/CAPE/Origin.yar b/data/yara/CAPE/Origin.yar
new file mode 100644
index 00000000000..e4bf3bece19
--- /dev/null
+++ b/data/yara/CAPE/Origin.yar
@@ -0,0 +1,30 @@
+rule Origin {
+    meta:
+        author = "kevoreilly"
+        description = "Origin Logger payload"
+        cape_type = "Origin Payload"
+        hash = "ee8a244c904756bdc3987fefc844596774437bcc50d4022ddcc94e957cab6a11"
+    strings:
+        $s1 = "set_RequestPluginName" fullword ascii
+        $s2 = "set_IsCreated" fullword ascii
+        $s3 = "set_AllowAutoRedirect" fullword ascii
+        $s4 = "set_Antivirus" fullword ascii
+        $s5 = "set_MaximumAutomaticRedirections" fullword ascii
+        $s6 = "set_ClientId" fullword ascii
+        $s7 = "set_SysInfo" fullword ascii
+        $s8 = "set_ServerCertificateValidationCallback" fullword ascii
+        $s9 = "set_CommandType" fullword ascii
+        $s10 = "set_TenantId" fullword ascii
+        $s11 = "set_KeepAlive" fullword ascii
+
+        $c1 = {03 16 32 0B 03 2C 08 02 6F 49 00 00 0A 2D 06}
+        $c2 = {20 F0 0F 00 00 28 ?? 00 00 0A 7E ?? 00 00 04 2D 11 14 FE}
+        $c3 = {06 20 20 4E 00 00 6F ?? 00 00 0A 06 17 6F ?? 00 00 0A 06 1F 32 6F}
+        $c4 = {20 00 01 00 00 28 ?? 00 00 06 28 ?? 00 00 06 28 ?? 00 00 0A 72 ?? 05 00 70 28 ?? 00 00 0A 0A 12 00 28}
+
+        $m1 = "OriginBotnet" ascii
+        $m2 = "UpdateBotRequest" ascii
+        $m3 = "<Deserialize>b__0" ascii
+    condition:
+        (uint16(0) == 0x5a4d and ((6 of ($s*) and 2 of ($c*)))) or (2 of ($m*))
+}
diff --git a/data/yara/CAPE/Oyster.yar b/data/yara/CAPE/Oyster.yar
new file mode 100644
index 00000000000..0bf27f00242
--- /dev/null
+++ b/data/yara/CAPE/Oyster.yar
@@ -0,0 +1,19 @@
+rule Oyster
+{
+    meta:
+        author = "enzok"
+        description = "Oyster Payload"
+        cape_type = "Oyster Payload"
+        hash = "8bae0fa9f589cd434a689eebd7a1fde949cc09e6a65e1b56bb620998246a1650"
+    strings:
+		$start_exit = {(05 | 00) 00 00 00 2E 96 1E A6}
+		$content_type = {F6 CE 56 F4 76 F6 96 2E 86 C6 96 36 0E 0E 86 04 5C A6 0E 9E 2A B4 2E 76 A6 2E 76 F6 C2}
+        $domain = {44 5C 44 76 96 86 B6 F6 26 44 34 44}
+        $id = {44 5C 44 64 96 44 DE}
+        $ip_local = {44 5C 44 36 86 C6 F6 36 FA 0E 96 44 34 44}
+        $table_part_1 = {00 80 40 C0 20 A0 60 E0 10 90 50 D0 30 B0 70 F0 08 88 48 C8 28 A8 68}
+        $table_part_2 = {97 57 D7 37 B7 77 F7 0F 8F 4F CF 2F AF 6F EF 1F 9F 5F DF 3F BF 7F FF}
+		$decode = {0F B6 0? 8D ?? FF 8A [2] 0F B6 80 [4] 88 04 ?? 46 0F B6 C? 0F B6 80 [4] 88 4? 01 3B F7}
+    condition:
+        4 of them
+}
diff --git a/data/yara/CAPE/Pafish.yar b/data/yara/CAPE/Pafish.yar
index 088c15549b9..041cd5517e0 100644
--- a/data/yara/CAPE/Pafish.yar
+++ b/data/yara/CAPE/Pafish.yar
@@ -10,4 +10,3 @@ rule Pafish
     condition:
         uint16(0) == 0x5A4D and $rdtsc_vmexit and not $cape_string
 }
- 
\ No newline at end of file
diff --git a/data/yara/CAPE/PetrWrap.yar b/data/yara/CAPE/PetrWrap.yar
index 735e4838cd2..3424bd9c6f2 100644
--- a/data/yara/CAPE/PetrWrap.yar
+++ b/data/yara/CAPE/PetrWrap.yar
@@ -7,7 +7,7 @@ rule PetrWrap
     strings:
         $a1 = "http://petya3jxfp2f7g3i.onion/"
         $a2 = "http://petya3sen7dyko2n.onion"
-        
+
         $b1 = "http://mischapuk6hyrn72.onion/"
         $b2 = "http://mischa5xyix2mrhd.onion/"
     condition:
diff --git a/data/yara/CAPE/Phorpiex.yar b/data/yara/CAPE/Phorpiex.yar
deleted file mode 100644
index 1411cc054d1..00000000000
--- a/data/yara/CAPE/Phorpiex.yar
+++ /dev/null
@@ -1,11 +0,0 @@
-rule Phorpiex
-{
-    meta:
-        author = "kevoreilly"
-        description = "Phorpiex Payload"
-        cape_type = "Phorpiex Payload"
-    strings:
-        $code = {99 B9 FF 00 00 00 F7 F9 83 C2 01 52 E8 0F 0D 00 00 99 B9 FF 00 00 00 F7 F9 83 C2 01 52 E8 FE 0C 00 00 99 B9 FF 00 00 00 F7 F9 83 C2 01 52 E8 ED 0C 00 00 99}
-    condition:
-        uint16(0) == 0x5A4D and ($code)
-}
diff --git a/data/yara/CAPE/PikaBot.yar b/data/yara/CAPE/PikaBot.yar
new file mode 100644
index 00000000000..e59be5d2e3c
--- /dev/null
+++ b/data/yara/CAPE/PikaBot.yar
@@ -0,0 +1,44 @@
+rule PikaBotLoader
+{
+    meta:
+        author = "kevoreilly"
+        description = "Pikabot Loader"
+        cape_type = "PikaBot Loader"
+    strings:
+        $indirect = {31 C0 64 8B 0D C0 00 00 00 85 C9 74 01 40 50 8D 54 24 ?? E8 [4] A3 [4] 8B 25 [4] A1}
+        $sysenter1 = {89 44 24 08 8D 85 ?? FC FF FF C7 44 24 04 FF FF 1F 00 89 04 24 E8}
+        $sysenter2 = {C7 44 24 0C 00 00 00 02 C7 44 24 08 00 00 00 02 8B 45 0C 89 44 24 04 8B 45 08 89 04 24 E8}
+    condition:
+        uint16(0) == 0x5A4D and 2 of them
+}
+
+rule PikaBot
+{
+    meta:
+        author = "kevoreilly"
+        description = "Pikabot Payload"
+        cape_type = "PikaBot Payload"
+        packed = "89dc50024836f9ad406504a3b7445d284e97ec5dafdd8f2741f496cac84ccda9"
+    strings:
+        $decode = {29 D1 01 4B ?? 8D 0C 10 89 4B ?? 85 F6 74 02 89 16}
+        $indirect = {31 C0 64 8B 0D C0 00 00 00 85 C9 74 01 40 50 8D 54 24 ?? E8 [4] A3 [4] 8B 25 [4] A1}
+        $config = {C7 44 24 [3] 00 00 C7 44 24 [4] 00 89 [1-4] ?? E8 [4] 31 C0 C7 44 24 [3] 00 00 89 44 24 ?? C7 04 24 [4] E8}
+    condition:
+        uint16(0) == 0x5A4D and 2 of them
+}
+
+rule Pik23
+{
+    meta:
+        author = "kevoreilly"
+        description = "PikaBot Payload February 2023"
+        cape_type = "PikaBot Payload"
+        hash = "59f42ecde152f78731e54ea27e761bba748c9309a6ad1c2fd17f0e8b90f8aed1"
+    strings:
+        $rdtsc = {89 55 FC 89 45 F8 0F 31 89 55 F4 89 45 FC 33 C0 B8 05 00 00 00 C1 E8 02 2B C3 3B C1 0F 31 89 55 F0 89 45 F8 8B 44 8D}
+        $int2d = {B8 00 00 00 00 CD 2D 90 C3 CC CC CC CC CC CC CC}
+        $subsys = {64 A1 30 00 00 00 8B 40 18 C3}
+        $rijndael = {EB 0F 0F B6 04 3? FE C? 8A 80 [4] 88 04 3? 0F B6 [3] 7C EA 5? 5? C9 C3}
+    condition:
+        uint16(0) == 0x5A4D and 3 of them
+}
diff --git a/data/yara/CAPE/QakBot.yar b/data/yara/CAPE/QakBot.yar
index e766129f99a..5905537e957 100644
--- a/data/yara/CAPE/QakBot.yar
+++ b/data/yara/CAPE/QakBot.yar
@@ -1,13 +1,29 @@
-rule QakBot
+rule QakBot5
 {
     meta:
-        author = "kevoreilly"
-        description = "QakBot Payload"
+        author = "kevoreilly, enzok"
+        description = "QakBot v5 Payload"
         cape_type = "QakBot Payload"
+        packed = "f4bb0089dcf3629b1570fda839ef2f06c29cbf846c5134755d22d419015c8bd2"
+        hash = "59559e97962e40a15adb2237c4d01cfead03623aff1725616caeaa5a8d273a35"
+    strings:
+        $loop = {8B 75 ?? 48 8B 4C [2] FF 15 [4] 48 8B 4C [2] 48 8B 01 FF 50 ?? 8B DE 48 8B 4C [2] 48 85 C9 0F 85 [4] EB 4E}
+        $c2list = {0F B7 1D [4] B? [2] 00 00 E8 [4] 8B D3 4? 89 45 ?? 4? 33 C9 4? 8D 0D [4] 4? 8B C0 4? 8B F8 E8}
+        $campaign = {0F B7 1D [4] B? [2] 00 00 E8 [4] 8B D3 4? 89 44 24 ?? 4? 33 C9 4? 8D 0D [4] 4? 8B C0 4? 8B F8 E8}
+    condition:
+        uint16(0) == 0x5A4D and 2 of them
+}
 
+rule QakBot4
+{
+    meta:
+        author = "kevoreilly"
+        description = "QakBot v4 Payload"
+        cape_type = "QakBot Payload"
     strings:
         $crypto1 = {8B 5D 08 0F B6 C2 8A 16 0F B6 1C 18 88 55 13 0F B6 D2 03 CB 03 CA 81 E1 FF 00 00 80 79 08 49 81 C9 00 FF FF FF 41}
-        $crypto2 = {5? 33 F? [0-9] 89 7? 24 ?? 89 7? 24 ?? 89 ?? 24 [1-4] C7 44 24 ?0 01 23 45 67 C7 44 24 ?4 89 AB CD EF C7 44 24 ?8 FE DC BA 98 C7 44 24 ?C 76 54 32 10 C7 44 24 ?0 F0 E1 D2 C3}
+        $sha1_1 = {5? 33 F? [0-9] 89 7? 24 ?? 89 7? 24 ?? 8? [1-3] 24 [1-4] C7 44 24 ?0 01 23 45 67 C7 44 24 ?4 89 AB CD EF C7 44 24 ?8 FE DC BA 98 C7 44 24 ?C 76 54 32 10 C7 44 24 ?0 F0 E1 D2 C3}
+        $sha1_2 = {33 C0 C7 01 01 23 45 67 89 41 14 89 41 18 89 41 5C C7 41 04 89 AB CD EF C7 41 08 FE DC BA 98 C7 41 0C 76 54 32 10 C7 41 10 F0 E1 D2 C3 89 41 60 89 41 64 C3}
         $anti_sandbox1 = {8D 4? FC [0-1] E8 [4-7] E8 [4] 85 C0 7E (04|07) [4-7] 33 (C0|D2) 74 02 EB FA}
         $anti_sandbox2 = {8D 45 ?? 50 E8 [2] 00 00 59 68 [4] FF 15 [4] 89 45 ?? 83 7D ?? 0F 76 0C}
         $decrypt_config1 = {FF 37 83 C3 EC 53 8B 5D 0C 8D 43 14 50 6A 14 53 E8 ?? ?? ?? ?? 83 C4 14 85 C0 ?? 26 ?? ?? 86 20 02 00 00 66 85 C0 ?? ?? FF 37 FF 75 10 53}
diff --git a/data/yara/CAPE/Quickbind.yar b/data/yara/CAPE/Quickbind.yar
new file mode 100644
index 00000000000..5ecf40b25cc
--- /dev/null
+++ b/data/yara/CAPE/Quickbind.yar
@@ -0,0 +1,18 @@
+rule Quickbind
+{
+    meta:
+        author = "enzok"
+        description = "Quickbind"
+        cape_type = "Quickbind Payload"
+    strings:
+        $anti_appdirs = {E8 [4] 83 F8 0? 7? ?? E8}
+        $anti_procs_ram = {E8 [4] 83 F8 0? 7? ?? E8 [4] 3D (FF 0E | 00 0F | FF 16) 00 00}
+        $anti_procs = {4C 89 F1 [0-9] FF D3 83 7C 24 ?? (03 | 07)}
+        $anti_ram = {E8 [4] 3D (FF 1F | 00 20 | 00 17 | FF 0E | FF 16 | FF 2F) 00 00}
+        $sleep = {B9 64 00 00 00 [0-7] FF}
+        $mutex_api = "CreateMutexW"
+        $mutex_error = {FF [1-5] 3D B7 00 00 00}
+    condition:
+        //any of them
+        3 of ($anti_*) and all of ($mutex_*) and $sleep
+}
diff --git a/data/yara/CAPE/Remcos.yar b/data/yara/CAPE/Remcos.yar
index 681a1a4fde6..da3abdae1a9 100644
--- a/data/yara/CAPE/Remcos.yar
+++ b/data/yara/CAPE/Remcos.yar
@@ -7,8 +7,8 @@ rule Remcos
     strings:
         $name  = "Remcos" nocase
         $time   = "%02i:%02i:%02i:%03i"
+        $crypto1 = {81 E1 FF 00 00 80 79 ?? 4? 81 C9 00 FF FF FF 4? 8A ?4 8?}
         $crypto2 = {0F B6 [1-7] 8B 45 08 [0-2] 8D 34 07 8B 01 03 C2 8B CB 99 F7 F9 8A 84 95 ?? ?? FF FF 30 06 47 3B 7D 0C 72}
-        $crypto1 = {81 E1 FF 00 00 80 79 08 49 81 C9 00 FF FF FF 41 8A 84 8D [4] 8B 4D ?? 30 04 0F 47 3B FE 72}
     condition:
         uint16(0) == 0x5A4D and ($name) and ($time) and any of ($crypto*)
 }
diff --git a/data/yara/CAPE/Rhadamanthys.yar b/data/yara/CAPE/Rhadamanthys.yar
new file mode 100644
index 00000000000..f7166940f8b
--- /dev/null
+++ b/data/yara/CAPE/Rhadamanthys.yar
@@ -0,0 +1,32 @@
+rule Rhadamanthys
+{
+    meta:
+        author = "kevoreilly, YungBinary"
+        description = "Rhadamanthys Payload"
+        cape_type = "Rhadamanthys Payload"
+    strings:
+        $rc4 = {88 4C 01 08 41 81 F9 00 01 00 00 7C F3 89 75 08 33 FF 8B 4D 08 3B 4D 10 72 04 83 65 08 00}
+        $code = {8B 4D FC 3B CF 8B C1 74 0D 83 78 04 02 74 1C 8B 40 1C 3B C7 75 F3 3B CF 8B C1 74 57 83 78 04 17 74 09 8B 40 1C 3B C7 75 F3 EB}
+        $conf_1 = {46 BB FF 00 00 00 23 F3 0F B6 44 31 08 03 F8 23 FB 0F B6 5C 39 08 88 5C 31 08 88 44 39 08 02 C3 8B 5D 08 0F B6 C0 8A 44 08 08}
+        $conf_2 = {0F B6 4F 2A 8D 77 2A 33 C0 6A 03 89 45 F8 89 45 FC 89 45 08 8B C1}
+        $beef = {57 8D 44 33 FC 53 83 C6 FC 50 56 E8 [4] 83 C4 10 66 81 3F EF BE 0F 85}
+        $anti = {50 68 [4] 68 [4] E8 [4] 83 C4 0C A3 [4] 85 C0 74}
+        $dnr = {99 52 50 8D 45 ?? 99 52 50 8B C7 99 52 50 8B C3 99 52 50}
+        $sys = {83 E4 F0 6A 33 E8 00 00 00 00 83 04 24 05 CB}
+    condition:
+        2 of them
+}
+
+rule RhadamanthysLoader
+{
+    meta:
+        author = "kevoreilly"
+        description = "Rhadamanthys Loader"
+        cape_type = "Rhadamanthys Loader"
+    strings:
+        $ref = {33 D2 B9 0B 00 00 00 F7 F1 B8 01 00 00 00 6B C8 00 8D 84 0D [4] 0F BE 0C 10 8B 95 [4] 03 95 [4] 0F B6 02 33 C1 8B 8D [4] 03 8D [4] 88 01}
+        $ntdll = {B9 6E 00 00 00 66 89 8D [4] BA 74 00 00 00 66 89 95 [4] B8 64 00 00 00 66 89 85 [4] B9 6C 00 00 00 66 89 8D [4] BA 6C 00 00 00 66 89 95}
+        $exit = {6A 00 6A 00 6A 00 6A 00 6A 00 6A 00 8B 95 [4] 52 8B 85 [4] 50 6A 00 68 FF FF 1F 00}
+    condition:
+        2 of them
+}
diff --git a/data/yara/CAPE/RokRat.yar b/data/yara/CAPE/RokRat.yar
index 495d9a69531..817b4aa4d78 100644
--- a/data/yara/CAPE/RokRat.yar
+++ b/data/yara/CAPE/RokRat.yar
@@ -9,4 +9,4 @@ rule RokRat
         $string1 = "/pho_%s_%d.jpg" wide
     condition:
         uint16(0) == 0x5A4D and (any of ($code*)) and (any of ($string*))
-}
\ No newline at end of file
+}
diff --git a/data/yara/CAPE/Rozena.yar b/data/yara/CAPE/Rozena.yar
new file mode 100644
index 00000000000..36229bf4ad0
--- /dev/null
+++ b/data/yara/CAPE/Rozena.yar
@@ -0,0 +1,10 @@
+rule Rozena
+{
+    meta:
+        cape_type = "Rozena Payload"
+    strings:
+        $ip_port = {FF D5 6A 0A 68 [4] 68 [4] 89 E6 50 50 50 50 40 50 40 50 68 [4] FF D5}
+        $socket = {6A 00 6A 04 56 57 68 [4] FF D5 [0-5] 8B 36 6A 40 68 00 10 00 00 56 6A 00 68}
+    condition:
+        all of them
+}
diff --git a/data/yara/CAPE/Sedreco.yar b/data/yara/CAPE/Sedreco.yar
index bd777c70670..a83ee2aa524 100644
--- a/data/yara/CAPE/Sedreco.yar
+++ b/data/yara/CAPE/Sedreco.yar
@@ -9,7 +9,7 @@ rule Sedreco
         $encrypt2 = {55 8B EC 83 EC 20 8B 4D 10 B8 AB AA AA AA}
 
         $encrypt64_1 = {48 89 4C 24 08 53 55 56 57 41 54 41 56 48 83 EC 18 45 8D 34 10 48 8B E9 B8 AB AA AA AA 4D 8B E1 44 89 44 24 60 41 F7 E0 8B F2 B8 AB AA AA AA}
-        
+
     condition:
         uint16(0) == 0x5A4D and $encrypt1 or $encrypt2 or $encrypt64_1
-}
\ No newline at end of file
+}
diff --git a/data/yara/CAPE/Seduploader.yar b/data/yara/CAPE/Seduploader.yar
index 6d448d96185..ae3c917ce65 100644
--- a/data/yara/CAPE/Seduploader.yar
+++ b/data/yara/CAPE/Seduploader.yar
@@ -8,4 +8,4 @@ rule Seduploader
         $decrypt1 = {8D 0C 30 C7 45 FC 0A 00 00 00 33 D2 F7 75 FC 8A 82 ?? ?? ?? ?? 32 04 0F 88 01 8B 45 0C 40 89 45 0C 3B C3 7C DB}
     condition:
         uint16(0) == 0x5A4D and any of ($decrypt*)
-}
\ No newline at end of file
+}
diff --git a/data/yara/CAPE/SmokeLoader.yar b/data/yara/CAPE/SmokeLoader.yar
new file mode 100644
index 00000000000..8447a546a48
--- /dev/null
+++ b/data/yara/CAPE/SmokeLoader.yar
@@ -0,0 +1,16 @@
+rule SmokeLoader
+{
+    meta:
+        author = "kevoreilly"
+        description = "SmokeLoader Payload"
+        cape_type = "SmokeLoader Payload"
+    strings:
+        $rc4_decrypt64_1 = {41 8D 41 01 44 0F B6 C8 42 0F B6 [2] 41 8D 04 12 44 0F B6 D0 42 8A [2] 42 88 [2] 42 88 [2] 42 0F B6 [2] 03 CA 0F B6 C1 8A [2] 30 0F 48 FF C7 49 FF CB 75}
+        $rc4_decrypt64_2 = {03 C8 8B C1 89 44 [2] 0F B6 8C [2] 01 00 00 33 D2 8B 04 24 F7 F1 8B C2 8B C0 48 8B 8C [2] 01 00 00 0F B6 04 01 8B 4C [2] 03 C8 8B C1 25 FF 00 00 00}
+        $rc4_decrypt64_3 = {8B 04 ?? FF C0 25 FF 00 00 00 89 04 ?? 8B 04 ?? 0F B6 44 [2] 8B 4C [2] 03 C8 8B C1 25 FF 00 00 00}
+        $rc4_decrypt32 = {47 B9 FF 00 00 00 23 F9 8A 54 [2] 0F B6 C2 03 F0 23 F1 8A 44 [2] 88 44 [2] 88 54 [2] 0F B6 4C [2] 0F B6 C2 03 C8 81 E1 FF 00 00 00 8A 44 [2] 30 04 2B 43 3B 9C 24 [4] 72 C0}
+        $fetch_c2_64 = {74 ?? B? E8 03 00 00 B9 58 02 00 00 FF [5] 48 (FF C?|83 EF 01) 75 (F0|EF)}
+        $fetch_c2_32 = {8B 96 [2] (00|01) 00 8B CE 5E 8B 14 95 [4] E9}
+    condition:
+        2 of them
+}
diff --git a/data/yara/CAPE/Socks5Systemz.yar b/data/yara/CAPE/Socks5Systemz.yar
new file mode 100644
index 00000000000..603cf9c4c87
--- /dev/null
+++ b/data/yara/CAPE/Socks5Systemz.yar
@@ -0,0 +1,19 @@
+rule Socks5Systemz
+{
+    meta:
+        author = "kevoreilly"
+        description = "Socks5Systemz Payload"
+        cape_type = "Socks5Systemz Payload"
+        packed = "9b997d0de3fe83091726919a0dc653e22f8f8b20b1bb7d0b8485652e88396f29"
+    strings:
+        $chunk1 = {0F B6 84 8A [4] E9 [3] (00|FF)}
+        $chunk2 = {0F B6 04 8D [4] E9 [3] (00|FF)}
+        $chunk3 = {66 0F 6F 05 [4] E9 [3] (00|FF)}
+        $chunk4 = {F0 0F B1 95 [4] E9 [3] (00|FF)}
+        $chunk5 = {83 FA 04 E9 [3] (00|FF)}
+        $chunk6 = {8A 04 8D [4] E9 [3] (00|FF)}
+        $chunk7 = {83 C4 04 83 C4 04 E9}
+        $chunk8 = {83 C2 04 87 14 24 5C E9}
+    condition:
+        uint16(0) == 0x5A4D and 5 of them
+}
diff --git a/data/yara/CAPE/SparkRAT.yar b/data/yara/CAPE/SparkRAT.yar
new file mode 100644
index 00000000000..7414d94e0f9
--- /dev/null
+++ b/data/yara/CAPE/SparkRAT.yar
@@ -0,0 +1,49 @@
+rule SparkRAT
+{
+    meta:
+        author = "t-mtsmt"
+        description = "SparkRAT Payload"
+        cape_type = "SparkRAT Payload"
+
+    strings:
+        $path_00 = "/client/common"
+        $path_01 = "/client/config"
+        $path_02 = "/client/core"
+        $path_03 = "/client/service/basic"
+        $path_04 = "/client/service/desktop"
+        $path_05 = "/client/service/file"
+        $path_06 = "/client/service/process"
+        $path_07 = "/client/service/terminal"
+        $path_08 = "/modules"
+        $path_09 = "/utils"
+
+        $cmd_00 = "PING"
+        $cmd_01 = "OFFLINE"
+        $cmd_02 = "LOCK"
+        $cmd_03 = "LOGOFF"
+        $cmd_04 = "HIBERNATE"
+        $cmd_05 = "SUSPEND"
+        $cmd_06 = "RESTART"
+        $cmd_07 = "SHUTDOWN"
+        $cmd_08 = "SCREENSHOT"
+        $cmd_09 = "TERMINAL_INIT"
+        $cmd_10 = "TERMINAL_INPUT"
+        $cmd_11 = "TERMINAL_RESIZE"
+        $cmd_12 = "TERMINAL_PING"
+        $cmd_13 = "TERMINAL_KILL"
+        $cmd_14 = "FILES_LIST"
+        $cmd_15 = "FILES_FETCH"
+        $cmd_16 = "FILES_REMOVE"
+        $cmd_17 = "FILES_UPLOAD"
+        $cmd_18 = "FILE_UPLOAD_TEXT"
+        $cmd_19 = "PROCESSES_LIST"
+        $cmd_20 = "PROCESS_KILL"
+        $cmd_21 = "DESKTOP_INIT"
+        $cmd_22 = "DESKTOP_PING"
+        $cmd_23 = "DESKTOP_KILL"
+        $cmd_24 = "DESKTOP_SHOT"
+        $cmd_25 = "COMMAND_EXEC"
+
+    condition:
+        3 of ($path_*) and 3 of ($cmd_*)
+}
\ No newline at end of file
diff --git a/data/yara/CAPE/SquirrelWaffle.yar b/data/yara/CAPE/SquirrelWaffle.yar
new file mode 100644
index 00000000000..753d06464f1
--- /dev/null
+++ b/data/yara/CAPE/SquirrelWaffle.yar
@@ -0,0 +1,11 @@
+rule SquirrelWaffle
+{
+    meta:
+        author = "kevoreilly & R3MRUM"
+        cape_type = "SquirrelWaffle Payload"
+    strings:
+        $code = {8D 45 ?? C6 45 ?? 00 0F 43 4D ?? 83 7D ?? 10 0F 43 45 ?? 8A 04 10 32 04 39 8D 4D ?? 0F B6 C0 50 6A 01 E8 [4] C6 45}
+        $decode = {F7 75 ?? 83 7D ?? 10 8D 4D ?? 8D 45 ?? C6 45 ?? 00 0F 43 4D ?? 83 7D ?? 10 0F 43 45 ?? 8A 04 10 32 04 39}
+    condition:
+        uint16(0) == 0x5A4D and all of them
+}
diff --git a/data/yara/CAPE/Stealc.yar b/data/yara/CAPE/Stealc.yar
new file mode 100644
index 00000000000..1b67d94ed2b
--- /dev/null
+++ b/data/yara/CAPE/Stealc.yar
@@ -0,0 +1,32 @@
+rule Stealc
+{
+    meta:
+        author = "kevoreilly"
+        description = "Stealc Payload"
+        cape_type = "Stealc Payload"
+        hash = "77d6f1914af6caf909fa2a246fcec05f500f79dd56e5d0d466d55924695c702d"
+    strings:
+        $nugget1 = {68 04 01 00 00 6A 00 FF 15 [4] 50 FF 15}
+        $nugget2 = {64 A1 30 00 00 00 8B 40 0C 8B 40 0C 8B 00 8B 00 8B 40 18 89 45 FC}
+    condition:
+        uint16(0) == 0x5A4D and all of them
+}
+
+rule StealcV2
+{
+    meta:
+        author = "kevoreilly"
+        description = "Stealc V2 Payload"
+        cape_type = "Stealc Payload"
+        packed = "2f42dcf05dd87e6352491ff9d4ea3dc3f854df53d548a8da0c323be42df797b6"
+        packed = "8301936f439f43579cffe98e11e3224051e2fb890ffe9df680bbbd8db0729387"
+    strings:
+        $decode32 = {AB AB AB AB 8B 45 0C 89 4E 10 89 4E 14 39 45 08 75 0B C7 46 14 0F 00 00 00 88 0E EB 0F 2B 45 08 50 51 FF 75 ?? 8B}
+        $dump32 = {33 C0 89 46 30 88 46 34 89 46 38 89 46 3C 89 46 40 89 46 44 89 46 48 89 46 4C 89 46 50 89 46 54 89 46 58 8B C6 5F 5E C3}
+        $date32 = {F3 A5 8D 45 ?? 50 E8 [4] 59 8B F8 8B F2 8D 45 A4 50 E8 [4] 59 3B F2 7C 08 7F 04 3B F8 76 02 B3 01 8A C3}
+        $decode64 = {40 53 48 83 EC 20 48 8B 19 48 85 DB 74 ?? 48 8B 53 18 48 83 FA 0F 76 2C 48 8B 0B 48 FF C2 48 81 FA 00 10 00 00 72}
+        $dump64 = {48 8B C7 89 6F 40 40 88 6F 44 48 89 6F 48 48 89 6F 50 48 89 6F 58 48 89 6F 60 48 89 6F 68 48 89 6F 70 48 89 6F 78 48 89}
+        $date64 = {0F 11 44 [2] 0F 11 8C [2] 00 00 00 89 8C [2] 00 00 00 48 8D 4C [2] E8 [4] 48 8B D8 48 8D 4C [2] E8 [4] 48 3B D8 0F 9F C0}
+    condition:
+        uint16(0) == 0x5A4D and 2 of them
+}
diff --git a/data/yara/CAPE/TClient.yar b/data/yara/CAPE/TClient.yar
index 90701227a5b..e8e5ffa5968 100644
--- a/data/yara/CAPE/TClient.yar
+++ b/data/yara/CAPE/TClient.yar
@@ -8,4 +8,4 @@ rule TClient
         $code1 = {41 0F B6 00 4D 8D 40 01 34 01 8B D7 83 E2 07 0F BE C8 FF C7 41 0F BE 04 91 0F AF C1 41 88 40 FF 81 FF 80 03 00 00 7C D8}
     condition:
         uint16(0) == 0x5A4D and any of ($code*)
-}
\ No newline at end of file
+}
diff --git a/data/yara/CAPE/TrickBot.yar b/data/yara/CAPE/TrickBot.yar
index f10659d0d99..9f0e867792a 100644
--- a/data/yara/CAPE/TrickBot.yar
+++ b/data/yara/CAPE/TrickBot.yar
@@ -5,9 +5,6 @@ rule TrickBot
         description = "TrickBot Payload"
         cape_type = "TrickBot Payload"
     strings:
-        $ua1 = "TrickLoader" ascii wide
-        $ua2 = "TrickBot" ascii wide
-        $ua3 = "BotLoader" ascii wide
         $str1 = "<moduleconfig>*</moduleconfig>" ascii wide
         $str2 = "group_tag" ascii wide
         $str3 = "client_id" ascii wide
@@ -19,7 +16,7 @@ rule TrickBot
         $code6 = {53 8B 5C 24 0C 56 8B 74 24 14 B8 ?? ?? ?? ?? F7 E9 C1 FA 02 8B C2 C1 E8 1F 03 C2 6B C0 16 8B D1 2B D0 8A 04 1A 30 04 31 41 3B CF 75 DD 5E 5B 5F C3}
         $code7 = {B8 ?? ?? 00 00 85 C9 74 32 BE ?? ?? ?? ?? BA ?? ?? ?? ?? BF ?? ?? ?? ?? BB ?? ?? ?? ?? 03 F2 8B 2B 83 C3 04 33 2F 83 C7 04 89 29 83 C1 04 3B DE 0F 43 DA}
     condition:
-        any of ($ua*) or all of ($str*) or any of ($code*)
+        all of ($str*) or any of ($code*)
 }
 
 rule Trickbot_PermaDll_UEFI_Module
diff --git a/data/yara/CAPE/Ursnif3.yar b/data/yara/CAPE/Ursnif3.yar
deleted file mode 100644
index 19479b2ce3e..00000000000
--- a/data/yara/CAPE/Ursnif3.yar
+++ /dev/null
@@ -1,14 +0,0 @@
-rule Ursnif3
-{
-    meta:
-        author = "kevoreilly"
-        description = "Ursnif Payload"
-        cape_type = "Ursnif Payload"
-    strings:
-        $golden_ratio = {8B 70 EC 33 70 F8 33 70 08 33 30 83 C0 04 33 F1 81 F6 B9 79 37 9E C1 C6 0B 89 70 08 41 81 F9 84 00 00 00}
-        $crypto32_1 = {8B C3 83 EB 01 85 C0 75 0D 0F B6 16 83 C6 01 89 74 24 14 8D 58 07 8B C2 C1 E8 07 83 E0 01 03 D2 85 C0 0F 84 AB 01 00 00 8B C3 83 EB 01 85 C0 89 5C 24 20 75 13 0F B6 16 83 C6 01 BB 07 00 00 00}
-        $crypto32_2 = {8B 45 EC 0F B6 38 FF 45 EC 33 C9 41 8B C7 23 C1 40 40 D1 EF 75 1B 89 4D 08 EB 45}
-        $cape_string = "cape_options"
-    condition:
-        uint16(0) == 0x5A4D and ($golden_ratio) and (any of them) and not $cape_string
-}
diff --git a/data/yara/CAPE/UrsnifV3.yar b/data/yara/CAPE/UrsnifV3.yar
new file mode 100644
index 00000000000..ef1bbe9a797
--- /dev/null
+++ b/data/yara/CAPE/UrsnifV3.yar
@@ -0,0 +1,18 @@
+rule UrsnifV3
+{
+    meta:
+        author = "kevoreilly"
+        description = "UrsnifV3 Payload"
+        cape_type = "UrsnifV3 Payload"
+        packed = "75827be0c600f93d0d23d4b8239f56eb8c7dc4ab6064ad0b79e6695157816988"
+        packed = "5d6f1484f6571282790d64821429eeeadee71ba6b6d566088f58370634d2c579"
+    strings:
+        $crypto32_1 = {8B C3 83 EB 01 85 C0 75 0D 0F B6 16 83 C6 01 89 74 24 14 8D 58 07 8B C2 C1 E8 07 83 E0 01 03 D2 85 C0 0F 84 AB 01 00 00 8B C3 83 EB 01 85 C0 89 5C 24 20 75 13 0F B6 16 83 C6 01 BB 07 00 00 00}
+        $crypto32_2 = {8B 45 ?? 0F B6 3? FF 45 [2-4] 8B C? 23 C? 40 40 D1 E? 7?}
+        $crypto32_3 = {F6 46 03 02 75 5? 8B 46 10 40 50 E8 [10-12] 74 ?? F6 46 03 01 74}
+        $crypto32_4 = {C7 44 24 10 01 00 00 00 8B 4? 10 [12] 8B [2] 89 01 8B 44 24 10 5F 5E 5B 8B E5 5D C2 0C 00}
+        $cpuid = {8B C4 FF 18 8B F0 33 C0 0F A2 66 8C D8 66 8E D0 8B E5 8B C6 5E 5B 5D C3}
+        $cape_string = "cape_options"
+    condition:
+        uint16(0) == 0x5A4D and 1 of ($crypto32_*) and $cpuid and not $cape_string
+}
diff --git a/data/yara/CAPE/VIPKeyLogger.yar b/data/yara/CAPE/VIPKeyLogger.yar
new file mode 100644
index 00000000000..2c3930d501f
--- /dev/null
+++ b/data/yara/CAPE/VIPKeyLogger.yar
@@ -0,0 +1,14 @@
+rule VIPKeyLogger
+{
+    meta:
+        author = "kevoreilly"
+        description = "Detects VIPKeyLogger Keylogger"
+        cape_type = "VIPKeyLogger Payload"
+        packed = "edaba79c3d43a416a86003f336d879ed3a513aa24dd401340584615647ed6da2"
+    strings:
+        $s1 = "/ VIP Recovery \\"  wide
+        $s2 = "Clipboard Logs ID"  wide
+        $s3 = "Keylogger" wide
+    condition:
+        uint16(0) == 0x5a4d and all of them
+}
diff --git a/data/yara/CAPE/Vidar.yar b/data/yara/CAPE/Vidar.yar
index 0bdc8c9196d..3e58ac0e814 100644
--- a/data/yara/CAPE/Vidar.yar
+++ b/data/yara/CAPE/Vidar.yar
@@ -1,17 +1,22 @@
 rule Vidar
 {
     meta:
-        author = "kevoreilly"
+        author = "kevoreilly,rony"
         description = "Vidar Payload"
         cape_type = "Vidar Payload"
+        packed = "0cff8404e73906f3a4932e145bf57fae7a0e66a7d7952416161a5d9bb9752fd8"
     strings:
         $decode = {FF 75 0C 8D 34 1F FF 15 ?? ?? ?? ?? 8B C8 33 D2 8B C7 F7 F1 8B 45 0C 8B 4D 08 8A 04 02 32 04 31 47 88 06 3B 7D 10 72 D8}
-        $wallet = "*walle*.dat"
-
-        $s1 = "\"os_crypt\":{\"encrypted_key\":\"" fullword ascii
-        $s2 = "screenshot.jpg" fullword wide
-        $s3 = "\\Local State" fullword ascii
-        $s4 = "Content-Disposition: form-data; name=\"" ascii
+        $xor_dec = {0F B6 [0-5] C1 E? ?? 33 ?? 81 E? [0-5] 89 ?? 7C AF 06}
+        $wallet = "*wallet*.dat" fullword ascii wide
+        $s1 = "\"os_crypt\":{\"encrypted_key\":\"" fullword ascii wide
+        $s2 = "screenshot.jpg" fullword ascii wide
+        $s3 = "\\Local State" fullword ascii wide
+        $s4 = "Content-Disposition: form-data; name=\"" fullword ascii wide
+        $s5 = "CC\\%s_%s.txt" fullword ascii wide
+        $s6 = "History\\%s_%s.txt" fullword ascii wide
+        $s7 = "Autofill\\%s_%s.txt" fullword ascii wide
+        $s8 = "Downloads\\%s_%s.txt" fullword ascii wide
     condition:
-        uint16(0) == 0x5A4D and (($decode and $wallet) or (all of ($s*)))
+        uint16be(0) == 0x4d5a and 6 of them 
 }
diff --git a/data/yara/CAPE/WanaCry.yar b/data/yara/CAPE/WanaCry.yar
index ebb5be90b9c..c8c9a405b3f 100644
--- a/data/yara/CAPE/WanaCry.yar
+++ b/data/yara/CAPE/WanaCry.yar
@@ -14,4 +14,3 @@ rule WanaCry
         //check for MZ Signature at offset 0
         uint16(0) == 0x5A4D and all of them
 }
-
diff --git a/data/yara/CAPE/WinosStager.yar b/data/yara/CAPE/WinosStager.yar
new file mode 100644
index 00000000000..8bcf6143b1f
--- /dev/null
+++ b/data/yara/CAPE/WinosStager.yar
@@ -0,0 +1,41 @@
+rule WinosStager 
+{
+    meta:
+        author = "YungBinary"
+        description = "https://www.esentire.com/blog/winos4-0-online-module-staging-component-used-in-cleversoar-campaign"
+        cape_type = "WinosStager Payload"
+    strings: 
+        $s1 = "Windows\\SysWOW64\\tracerpt.exe" ascii fullword
+        $s2 = "Windows\\System32\\tracerpt.exe" ascii fullword
+        $s3 = { 70 00 31 00 3A 00 00 00 }
+        $s4 = { 6F 00 31 00 3A 00 00 00 }
+        $s5 = { 70 00 32 00 3A 00 00 00 }
+        $s6 = { 6F 00 32 00 3A 00 00 00 }
+        $s7 = { 70 00 33 00 3A 00 00 00 }
+        $s8 = { 6F 00 33 00 3A 00 00 00 }
+        $s9 = "IpDates_info" wide fullword
+        $s10 = "%s-%04d%02d%02d-%02d%02d%02d.dmp" wide fullword
+        $s11 = "Console\\0" wide fullword
+        $s12 = "d33f351a4aeea5e608853d1a56661059" wide fullword
+
+        $config_parse = {
+            (3B CE | 7D ??)                                  // cmp ecx, esi or jge short loc_??????
+            (7D ?? | 0F 1F ?? 00)                            // jge short loc_?????? or nop dword ptr [??+00h]
+            (66 83 3C 4D ?? ?? ?? ?? 7C | 66 41 83 ?? ?? 7C) // cmp ??, 7Ch ; '|'
+            74 ??                                            // jz short loc_??????
+            (41 | 48 FF C1)                                  // inc ecx or inc rcx
+            (3B CE | FF C2)                                  // cmp ecx, esi or inc edx
+            (7C ?? | 49 3B CB 7C ??)                         // jl loc_?????? | cmp rcx, r11, jl short loc_??????
+        }
+        $zero_config = {
+            FF [1-5]                    // call
+            83 (7C|7D) [1-2] 0A         // cmp [ebp+??], 0Ah
+            0F 86 ?? ?? ?? ??           // jbe loc_??????
+            (68 D0 07 00 00 | 33 D2)    // push 7D0h or xor edx,edx
+            (6A 00 | 41 B8 D0 07 00 00) // push 0 or mov r8d, 0x7D0
+            (68 ?? ?? ?? ?? | 48 8B CD) // push offset wszConfig or mov rcx, rbp
+            E8                          // call
+        }
+    condition: 
+        uint16(0) == 0x5a4d and ((3 of ($s*)) or ($config_parse or $zero_config))
+}
diff --git a/data/yara/CAPE/XenoRAT.yar b/data/yara/CAPE/XenoRAT.yar
new file mode 100644
index 00000000000..4208eb54c91
--- /dev/null
+++ b/data/yara/CAPE/XenoRAT.yar
@@ -0,0 +1,14 @@
+rule XenoRAT {
+    meta:
+        author = "jeFF0Falltrades"
+        cape_type = "XenoRAT payload"
+    strings:
+        $str_xeno_rat_1 = "xeno rat" wide ascii nocase
+        $str_xeno_rat_2 = "xeno_rat" wide ascii nocase
+        $str_xeno_update_mgr = "XenoUpdateManager" wide ascii
+        $str_nothingset = "nothingset" wide ascii 
+        $byte_enc_dec_pre = { 1f 10 8d [4] (0a | 0b) }
+        $patt_config = { 72 [3] 70 80 [3] 04 }
+    condition:
+        4 of them and #patt_config >= 5
+ }
diff --git a/data/yara/CAPE/ZeusPanda.yar b/data/yara/CAPE/ZeusPanda.yar
index 0d6bcd8440a..09f7ab27315 100644
--- a/data/yara/CAPE/ZeusPanda.yar
+++ b/data/yara/CAPE/ZeusPanda.yar
@@ -5,7 +5,7 @@ rule ZeusPanda
         description = "ZeusPanda Payload"
         cape_type = "ZeusPanda Payload"
     strings:
-        $code1 = {8B 01 57 55 55 55 55 55 55 53 51 FF 50 0C 85 C0 78 E? 55 55 6A 03 6A 03 55 55 6A 0A FF 37} 
+        $code1 = {8B 01 57 55 55 55 55 55 55 53 51 FF 50 0C 85 C0 78 E? 55 55 6A 03 6A 03 55 55 6A 0A FF 37}
         $code2 = {8D 85 B0 FD FF FF 50 68 ?? ?? ?? ?? 8D 85 90 FA FF FF 68 0E 01 00 00 50 E8 ?? ?? ?? ?? 83 C4 10 83 F8 FF 7E ?? 68 04 01 00 00 8D 85 B0 FD FF FF}
     condition:
         //check for MZ Signature at offset 0
diff --git a/data/yara/CAPE/Zloader.yar b/data/yara/CAPE/Zloader.yar
index 7fde6bda47b..362941020c4 100644
--- a/data/yara/CAPE/Zloader.yar
+++ b/data/yara/CAPE/Zloader.yar
@@ -1,12 +1,18 @@
 rule Zloader
 {
     meta:
-        author = "kevoreilly"
+        author = "kevoreilly, enzok"
         description = "Zloader Payload"
         cape_type = "Zloader Payload"
+        hash = "adbd0c7096a7373be82dd03df1aae61cb39e0a155c00bbb9c67abc01d48718aa"
     strings:
         $rc4_init = {31 [1-3] 66 C7 8? 00 01 00 00 00 00 90 90 [0-5] 8? [5-90] 00 01 00 00 [0-15] (74|75)}
         $decrypt_conf = {83 C4 04 84 C0 74 5? E8 [4] E8 [4] E8 [4] E8 [4] ?8 [4] ?8 [4] ?8}
+        $decrypt_conf_1 = {48 8d [5-11] e8 [4] 48 [3-4] 48 [3-4] 48 [6] E8}
+        $decrypt_conf_2 = {48 8d [5] 4? [5] e8 [4] 48 [3-4] 48 8d [5] E8 [4] 48}
+        $decrypt_key_1 = {66 89 C2 4? 8D 0D [3] 00 4? B? FC 03 00 00 E8 [4] 4? 83 C4 [1-2] C3}
+        $decrypt_key_2 = {48 8d 0d [3] 00 66 89 ?? 4? 89 F0 4? [2-5] E8 [4-5] 4? 83 C4}
+        $decrypt_key_3 = {48 8d 0d [3] 00 e8 [4] 66 89 [3] b? [4] e8 [4] 66 8b}
     condition:
-        uint16(0) == 0x5A4D and any of them
+        uint16(0) == 0x5A4D and 1 of ($decrypt_conf*) and (1 of ($decrypt_key*) or $rc4_init)
 }
diff --git a/data/yara/CAPE/tRat.yar b/data/yara/CAPE/tRat.yar
deleted file mode 100644
index 737d6485bba..00000000000
--- a/data/yara/CAPE/tRat.yar
+++ /dev/null
@@ -1,13 +0,0 @@
-rule tRat
-{
-    meta:
-        author = "kevoreilly"
-        description = "tRat Payload"
-        cape_type = "tRat Payload"
-    strings:
-        $code1 = {8D 45 FC E8 ?? ?? ?? ?? 8B 55 FC 0F B6 54 32 FF 66 33 D3 0F B7 D2 2B D6 33 D6 2B D6 33 D6 88 54 30 FF 43 8B 45 FC E8 ?? ?? ?? ?? 0F B7 F3 3B C6 7F CE}
-        $code2 = {5A 83 E2 03 74 22 8B 0E 8B 1F 38 D9 75 41 4A 74 17 38 FD 75 3A 4A 74 10 81 E3 00 00 FF 00 81 E1 00 00 FF 00 39 D9 75 27}
-        $string1 = "TCComand"
-    condition:
-        uint16(0) == 0x5A4D and all of them
-}
\ No newline at end of file
diff --git a/data/yara/binaries/HeavensGate.yar b/data/yara/binaries/HeavensGate.yar
index 9b96f9b5cab..0e58379c579 100644
--- a/data/yara/binaries/HeavensGate.yar
+++ b/data/yara/binaries/HeavensGate.yar
@@ -9,7 +9,7 @@ rule HeavensGate
         $gate_v1 = {6A 33 E8 00 00 00 00 83 04 24 05 CB}
         $gate_v2 = {9A 00 00 00 00 33 00 89 EC 5D C3 48 83 EC 20 E8 00 00 00 00 48 83 C4 20 CB}
         $gate_v3 = {5A 66 BB 33 00 66 53 50 89 E0 83 C4 06 FF 28}
-    
+
     condition:
         ($gate_v1 or $gate_v2 or $gate_v3)
 }
diff --git a/data/yara/binaries/Themida.yar b/data/yara/binaries/Themida.yar
new file mode 100644
index 00000000000..8979904b429
--- /dev/null
+++ b/data/yara/binaries/Themida.yar
@@ -0,0 +1,11 @@
+rule Themida
+{
+    meta:
+        author = "kevoreilly"
+        description = "Themida Packer"
+        packed = "6337ff4cf413f56cc6c9a8e67f24b8d7f94f620eae06ac9f0b113b5ba82ea176"
+    strings:
+        $code = {FC 31 C9 49 89 CA 31 C0 31 DB AC 30 C8 88 E9 88 D5 88 F2 B6 08 66 D1 EB 66 D1 D8 73 09}
+    condition:
+        uint16(0) == 0x5A4D and all of them
+}
diff --git a/data/yara/macro/test b/data/yara/macro/test
index 8b137891791..e69de29bb2d 100644
--- a/data/yara/macro/test
+++ b/data/yara/macro/test
@@ -1 +0,0 @@
-
diff --git a/data/yara/readme.md b/data/yara/readme.md
new file mode 100644
index 00000000000..9349146290e
--- /dev/null
+++ b/data/yara/readme.md
@@ -0,0 +1,16 @@
+### Yara categories explained
+
+* Server side -> [`data/yara/<CATEGORY>`](https://github.com/kevoreilly/CAPEv2/tree/master/data/yara)
+
+    * This yara is initialized in `lib/cuckoo/core/startup.py`
+        * So if your yara doesn't work pay attention to output log of `cape-processor.service` or `process.py` if executed manually, might be autodisabled due to compilation problems
+
+    * CAPE - Will scan EVERYTHING, binaries, memory, payloads, procdumps, procmemory, etc...
+    * binaries - only applied to initial sample, that user submit
+    * urls -
+    * memory - used for Volatility's YaraScan module, if enabled
+    * macro - office extracted macros
+
+* VM side -> [`analizer/windows/data/yara`](https://github.com/kevoreilly/CAPEv2/tree/master/analyzer/windows/data/yara)
+    * Yaras for byppases or script monitor execution
+    * It's not precompiled on server side due to that monitor and server side yara should use the same version
diff --git a/dev_utils/__init__.py b/dev_utils/__init__.py
new file mode 100644
index 00000000000..13fb1d219c7
--- /dev/null
+++ b/dev_utils/__init__.py
@@ -0,0 +1,3 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
diff --git a/dev_utils/elasticsearchdb.py b/dev_utils/elasticsearchdb.py
new file mode 100644
index 00000000000..defcfca51b6
--- /dev/null
+++ b/dev_utils/elasticsearchdb.py
@@ -0,0 +1,132 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+# ToDo upgrade
+# Deprecation warnings in 7.15.0 pre-releases
+# https://github.com/elastic/elasticsearch-py/issues/1698
+
+import datetime
+import logging
+from typing import Iterable, List
+
+from lib.cuckoo.common.config import Config
+
+repconf = Config("reporting")
+if repconf.elasticsearchdb.enabled:
+    from elasticsearch import Elasticsearch
+
+    elastic_handler = Elasticsearch(
+        hosts=[repconf.elasticsearchdb.host],
+        port=repconf.elasticsearchdb.get("port", 9200),
+        http_auth=(repconf.elasticsearchdb.get("username"), repconf.elasticsearchdb.get("password")),
+        use_ssl=repconf.elasticsearchdb.get("use_ssl", False),
+        verify_certs=repconf.elasticsearchdb.get("verify_certs", False),
+        timeout=120,
+    )
+
+    ANALYSIS_INDEX_PREFIX = f"{repconf.elasticsearchdb.index}-analysis-"
+    CALLS_INDEX_PREFIX = f"{repconf.elasticsearchdb.index}-calls-"
+    SCROLL_SIZE = 5000
+    SCROLL_TIME = "5m"
+
+log = logging.getLogger(__name__)
+
+ANALYSIS_INDEX_MAPPING_SETTINGS = {
+    "mappings": {
+        "properties": {
+            "info": {
+                "properties": {
+                    "started": {"type": "date"},
+                    "machine": {"properties": {"started_on": {"type": "date"}, "shutdown_on": {"type": "date"}}},
+                }
+            },
+            "network": {"properties": {"dead_hosts": {"type": "keyword"}}},
+            "target": {"properties": {"file": {"properties": {"tlsh": {"type": "keyword"}}}}},
+            "dropped": {"properties": {"tlsh": {"type": "keyword"}}},
+            "CAPE": {"properties": {"payloads": {"properties": {"tlsh": {"type": "keyword"}}}}},
+        }
+    },
+    "settings": {
+        "index.blocks.read_only_allow_delete": "false",
+        "index.priority": "1",
+        "index.query.default_field": ["*"],
+        "index.refresh_interval": "1s",
+        "index.write.wait_for_active_shards": "1",
+        "index.routing.allocation.include._tier_preference": "data_content",
+        "index.number_of_replicas": "1",
+        "index.mapping.total_fields.limit": 20000,
+        "index.mapping.depth.limit": 1000,
+    },
+}
+
+
+def get_daily_analysis_index() -> str:
+    return f"{ANALYSIS_INDEX_PREFIX}{datetime.datetime.now().strftime('%Y.%m.%d')}"
+
+
+def daily_analysis_index_exists() -> bool:
+    return elastic_handler.indices.exists(index=get_daily_analysis_index())
+
+
+def get_daily_calls_index() -> str:
+    return f"{CALLS_INDEX_PREFIX}{datetime.datetime.now().strftime('%Y.%m.%d')}"
+
+
+def daily_calls_index_exists() -> bool:
+    return elastic_handler.indices.exists(index=get_daily_calls_index())
+
+
+def get_query_by_info_id(task_id: str) -> dict:
+    return {"match": {"info.id": task_id}}
+
+
+def get_analysis_index() -> str:
+    return f"{ANALYSIS_INDEX_PREFIX}*"
+
+
+def get_calls_index():
+    return f"{CALLS_INDEX_PREFIX}*"
+
+
+def delete_analysis_and_related_calls(task_id: str):
+    analyses = elastic_handler.search(index=get_analysis_index(), query=get_query_by_info_id(task_id))["hits"]["hits"]
+    if analyses:
+        log.debug("Deleting analysis data for Task %s", task_id)
+        for analysis in analyses:
+            analysis = analysis["_source"]
+            for process in analysis["behavior"].get("processes", []):
+                for call in process["calls"]:
+                    elastic_handler.delete_by_query(index=get_calls_index(), body={"query": {"match": {"_id": call}}})
+
+            elastic_handler.delete_by_query(index=get_analysis_index(), body={"query": get_query_by_info_id(task_id)})
+        log.debug("Deleted previous ElasticsearchDB data for Task %s", task_id)
+
+
+def scroll(scroll_id: str) -> dict:
+    return elastic_handler.scroll(scroll_id=scroll_id, scroll=SCROLL_TIME)
+
+
+def scroll_docs(index: str, query: dict, timeout: int = 600, _source: Iterable[str] = ()) -> dict:
+    return elastic_handler.search(
+        index=index, body=query, scroll=SCROLL_TIME, size=SCROLL_SIZE, request_timeout=timeout, _source=_source
+    )
+
+
+def all_docs(index: str, query: dict, _source: Iterable[str] = ()) -> List[dict]:
+    # Scroll documents
+    result_scroll = scroll_docs(index=index, query=query, _source=_source)
+    hits = result_scroll["hits"]["hits"]
+
+    if "_scroll_id" not in result_scroll:
+        return []
+
+    while len(result_scroll["hits"]["hits"]) > 0:
+        # Process current batch of hits
+        hits.extend(result_scroll["hits"]["hits"])
+
+        result_scroll = scroll(result_scroll["_scroll_id"])
+
+    elastic_handler.clear_scroll(scroll_id=result_scroll["_scroll_id"])
+
+    return hits
diff --git a/dev_utils/mongo_hooks.py b/dev_utils/mongo_hooks.py
new file mode 100644
index 00000000000..6270a86763a
--- /dev/null
+++ b/dev_utils/mongo_hooks.py
@@ -0,0 +1,201 @@
+import itertools
+import logging
+
+from pymongo import UpdateOne, errors
+
+from dev_utils.mongodb import (
+    mongo_bulk_write,
+    mongo_delete_data,
+    mongo_delete_data_range,
+    mongo_delete_many,
+    mongo_find,
+    mongo_find_one,
+    mongo_hook,
+    mongo_insert_one,
+    mongo_update_many,
+    mongo_update_one,
+)
+
+log = logging.getLogger(__name__)
+
+FILES_COLL = "files"
+FILE_KEY = "sha256"
+TASK_IDS_KEY = "_task_ids"
+FILE_REF_KEY = "file_ref"
+
+
+def normalize_file(file_dict, task_id):
+    """Pull out the detonation-independent attributes of the given file and
+    return an UpdateOne object usable by bulk_write to upsert a
+    document into the FILES_COLL collection with its _id set to the FILE_KEY of
+    the file. The given file_dict is updated in place to remove those
+    attributes and add a FILE_REF_KEY key containing the FILE_KEY that can be
+    used as a lookup in the FILES_COLL collection.
+    If the file has already been "normalized," then it is not modified and
+    None is returned.
+    """
+    if FILE_REF_KEY in file_dict:
+        # This has already been normalized.
+        return
+    key = file_dict.get(FILE_KEY, None)
+    if not key:
+        return
+    static_fields = (
+        # hashes
+        "crc32",
+        "md5",
+        "sha1",
+        "sha256",
+        "sha512",
+        "sha3_384",
+        "ssdeep",
+        "tlsh",
+        "rh_hash",
+        # other metadata & static analysis fields
+        "size",
+        "pe",
+        "ep_bytes",
+        "entrypoint",
+        "data",
+        "strings",
+    )
+    new_dict = {}
+    for fld in static_fields:
+        try:
+            new_dict[fld] = file_dict.pop(fld)
+        except KeyError:
+            pass
+
+    new_dict["_id"] = key
+    file_dict[FILE_REF_KEY] = key
+    return UpdateOne({"_id": key}, {"$set": new_dict, "$addToSet": {TASK_IDS_KEY: task_id}}, upsert=True, hint=[("_id", 1)])
+
+
+@mongo_hook((mongo_insert_one, mongo_update_one), "analysis")
+def normalize_files(report):
+    """Take the detonation-independent file data from various parts of
+    the report and extract them out to a separate collection, keeping a
+    reference to it (along with the detonation-dependent fields) in the
+    report.
+    """
+    requests = []
+    for file_dict in collect_file_dicts(report):
+        request = normalize_file(file_dict, report["info"]["id"])
+        if request:
+            requests.append(request)
+
+    try:
+        if requests:
+            mongo_bulk_write(FILES_COLL, requests, ordered=False)
+    except errors.OperationFailure as exc:
+        log.error("Mongo hook 'normalize_files' failed with code %d: %s", exc.code, exc)
+
+    return report
+
+
+@mongo_hook(mongo_find, "analysis")
+def denormalize_files_from_reports(reports):
+    """Pull the file info from the FILES_COLL collection in to associated parts of
+    the reports.
+    """
+    # Make sure we have a list whose objects we can modify in place instead of a mongo
+    # cursor as returned from mongo_find.
+    reports = list(reports)
+    file_dicts = [
+        file_dict
+        for file_dict in itertools.chain.from_iterable(collect_file_dicts(report) for report in reports)
+        if FILE_REF_KEY in file_dict
+    ]
+    if not file_dicts:
+        # These are likely partial reports (like for an ajax request of a specific
+        # part of the report), had a projection applied that does not include any file
+        # information, or only the old-style of storing file information is present in
+        # these documents.
+        return reports
+
+    file_refs = {file_dict[FILE_REF_KEY] for file_dict in file_dicts}
+
+    file_docs = {}
+    batch_size = 50
+    file_ref_iter = iter(file_refs)
+    while batch := tuple(itertools.islice(file_ref_iter, batch_size)):
+        # Reduce the size of the $in clause when there are large numbers of file refs by
+        # making multiple requests, passing batches of refs in.
+        for file_doc in mongo_find(FILES_COLL, {"_id": {"$in": batch}}, {TASK_IDS_KEY: 0}):
+            file_docs[file_doc.pop("_id")] = file_doc
+
+    for file_dict in file_dicts:
+        if file_dict[FILE_REF_KEY] not in file_docs:
+            log.warning("Failed to find %s in %s collection.", FILES_COLL, file_dict[FILE_REF_KEY])
+            continue
+        file_doc = file_docs[file_dict.pop(FILE_REF_KEY)]
+        file_dict.update(file_doc)
+
+    return reports
+
+
+@mongo_hook(mongo_find_one, "analysis")
+def denormalize_files(report):
+    """Pull the file info from the FILES_COLL collection in to associated parts of
+    the report.
+    """
+    denormalize_files_from_reports([report])
+    return report
+
+
+@mongo_hook(mongo_delete_data, "analysis")
+def remove_task_references_from_files(task_ids):
+    """Remove the given task_ids from the TASK_IDS_KEY field on "files"
+    documents that were referenced by those tasks that are being deleted.
+    """
+    mongo_update_many(
+        FILES_COLL,
+        {TASK_IDS_KEY: {"$elemMatch": {"$in": task_ids}}},
+        {"$pullAll": {TASK_IDS_KEY: task_ids}},
+    )
+
+
+@mongo_hook(mongo_delete_data_range, "analysis")
+def remove_task_references_from_files_range(*, range_start: int = 0, range_end: int = 0):
+    """Remove the given task_ids from the TASK_IDS_KEY field on "files"
+    documents that were referenced by those tasks that are being deleted.
+    """
+    range_query = {}
+    if range_start > 0:
+        range_query["$gte"] = range_start
+    if range_end > 0:
+        range_query["$lt"] = range_end
+    if range_query:
+        mongo_update_many(
+            FILES_COLL,
+            {TASK_IDS_KEY: {"$elemMatch": range_query}},
+            {"$pull": {TASK_IDS_KEY: range_query}},
+        )
+
+
+def delete_unused_file_docs():
+    """Delete entries in the FILES_COLL collection that are no longer
+    referenced by any analysis tasks. This should typically be invoked
+    via utils/cleaners.py in a cron job.
+    """
+    return mongo_delete_many(FILES_COLL, {TASK_IDS_KEY: {"$size": 0}})
+
+
+NORMALIZED_FILE_FIELDS = ("target.file", "dropped", "CAPE.payloads", "procdump", "procmemory")
+
+
+def collect_file_dicts(report) -> itertools.chain:
+    """Return an iterable containing all of the candidates for files
+    from various parts of the report to be normalized.
+    """
+    # ToDo extend to self extract
+    file_dicts = []
+    target_file = report.get("target", {}).get("file", None)
+    if target_file:
+        file_dicts.append([target_file])
+    file_dicts.append(report.get("dropped", None) or [])
+    file_dicts.append(report.get("CAPE", {}).get("payloads", None) or [])
+    file_dicts.append(report.get("procdump", None) or [])
+    if report.get("suricata", {}).get("files", []):
+        file_dicts.append(list(filter(None, [file_info.get("file_info", []) for file_info in report.get("suricata", {}).get("files", [])])))
+    return itertools.chain.from_iterable(file_dicts)
diff --git a/dev_utils/mongodb.py b/dev_utils/mongodb.py
index 08ee5ae8c2d..cb32967087e 100644
--- a/dev_utils/mongodb.py
+++ b/dev_utils/mongodb.py
@@ -1,22 +1,294 @@
-import os
-import sys
-import pymongo
+import collections
+import functools
+import itertools
+import logging
+import time
+from typing import Any, Callable, Sequence
 
-CAPE_ROOT = os.path.join(os.path.abspath(os.path.dirname(".")), "..")
-#CAPE_ROOT = os.path.join(os.path.abspath(os.path.dirname(__file__)), "..")
-sys.path.append(CAPE_ROOT)
+from bson import ObjectId
 
 from lib.cuckoo.common.config import Config
 
+log = logging.getLogger(__name__)
+logging.getLogger("pymongo").setLevel(logging.ERROR)
 repconf = Config("reporting")
 
-results_db = pymongo.MongoClient(
-    repconf.mongodb.host,
-    port=repconf.mongodb.port,
-    username=repconf.mongodb.get("username", None),
-    password=repconf.mongodb.get("password", None),
-    authSource=repconf.mongodb.db,
-)[repconf.mongodb.db]
+mdb = repconf.mongodb.get("db", "cuckoo")
 
-# import code;code.interact(local=dict(locals(), **globals()))
-q = results_db.analysis.find({"info.id":26}, {"memory":1})
+
+if repconf.mongodb.enabled:
+    from pymongo import MongoClient, version_tuple
+    from pymongo.errors import AutoReconnect, ConnectionFailure, OperationFailure, ServerSelectionTimeoutError
+
+    if version_tuple[0] < 4:
+        log.warning("You using old version of PyMongo, upgrade: poetry install")
+
+    def connect_to_mongo() -> MongoClient:
+        try:
+            return MongoClient(
+                host=repconf.mongodb.get("host", "127.0.0.1"),
+                port=repconf.mongodb.get("port", 27017),
+                username=repconf.mongodb.get("username"),
+                password=repconf.mongodb.get("password"),
+                authSource=repconf.mongodb.get("authsource", "cuckoo"),
+                tlsCAFile=repconf.mongodb.get("tlscafile", None),
+                connect=False,
+            )
+        except (ConnectionFailure, ServerSelectionTimeoutError):
+            log.error("Cannot connect to MongoDB")
+        except Exception as e:
+            log.warning("Unable to connect to MongoDB database: %s, %s", mdb, e)
+
+    # code.interact(local=dict(locals(), **globals()))
+    # q = results_db.analysis.find({"info.id": 26}, {"memory": 1})
+    # https://pymongo.readthedocs.io/en/stable/changelog.html
+
+    conn = connect_to_mongo()
+    results_db = conn[mdb]
+
+MAX_AUTO_RECONNECT_ATTEMPTS = 5
+
+
+def graceful_auto_reconnect(mongo_op_func: Callable):
+    """Gracefully handle a reconnection event."""
+
+    @functools.wraps(mongo_op_func)
+    def wrapper(*args, **kwargs):
+        for attempt in range(MAX_AUTO_RECONNECT_ATTEMPTS):
+            try:
+                return mongo_op_func(*args, **kwargs)
+            except AutoReconnect as e:
+                wait_t = 0.5 * pow(2, attempt)  # exponential back off
+                logging.warning("PyMongo auto-reconnecting...%s. Waiting %.1f seconds", e, wait_t)
+                time.sleep(wait_t)
+
+    return wrapper
+
+
+hooks = collections.defaultdict(lambda: collections.defaultdict(list))
+
+
+def mongo_hook(mongo_funcs, collection):
+    if not hasattr(mongo_funcs, "__iter__"):
+        mongo_funcs = [mongo_funcs]
+    for mongo_func in mongo_funcs:
+        assert mongo_func in (
+            mongo_insert_one,
+            mongo_update_one,
+            mongo_find,
+            mongo_find_one,
+            mongo_delete_data,
+            mongo_delete_data_range,
+        ), f"{mongo_func} can not have hooks applied"
+
+    def decorator(f):
+        @functools.wraps(f)
+        def inner(*args, **kwargs):
+            return f(*args, **kwargs)
+
+        for mongo_func in mongo_funcs:
+            hooks[mongo_func][collection].append(inner)
+        return inner
+
+    return decorator
+
+
+@graceful_auto_reconnect
+def mongo_bulk_write(collection: str, requests, **kwargs):
+    return getattr(results_db, collection).bulk_write(requests, **kwargs)
+
+
+@graceful_auto_reconnect
+def mongo_create_index(collection: str, index, background: bool = True, name: str = False):
+    if name:
+        getattr(results_db, collection).create_index(index, background=background, name=name)
+    else:
+        getattr(results_db, collection).create_index(index, background=background)
+
+
+@graceful_auto_reconnect
+def mongo_insert_one(collection: str, doc):
+    for hook in hooks[mongo_insert_one][collection]:
+        doc = hook(doc)
+    return getattr(results_db, collection).insert_one(doc)
+
+
+@graceful_auto_reconnect
+def mongo_find(collection: str, query, projection=False, sort=None, limit=None):
+    if sort is None:
+        sort = [("_id", -1)]
+
+    find_by = functools.partial(getattr(results_db, collection).find, query, sort=sort)
+    if projection:
+        find_by = functools.partial(find_by, projection=projection)
+    if limit:
+        find_by = functools.partial(find_by, limit=limit)
+
+    result = find_by()
+    if result:
+        for hook in hooks[mongo_find][collection]:
+            result = hook(result)
+    return result
+
+
+@graceful_auto_reconnect
+def mongo_find_one(collection: str, query, projection=False, sort=None):
+    if sort is None:
+        sort = [("_id", -1)]
+    if projection:
+        result = getattr(results_db, collection).find_one(query, projection, sort=sort)
+    else:
+        result = getattr(results_db, collection).find_one(query, sort=sort)
+    if result:
+        for hook in hooks[mongo_find_one][collection]:
+            result = hook(result)
+    return result
+
+
+@graceful_auto_reconnect
+def mongo_delete_one(collection: str, query):
+    return getattr(results_db, collection).delete_one(query)
+
+
+@graceful_auto_reconnect
+def mongo_delete_many(collection: str, query):
+    return getattr(results_db, collection).delete_many(query)
+
+
+@graceful_auto_reconnect
+def mongo_update_many(collection: str, query, update):
+    return getattr(results_db, collection).update_many(query, update)
+
+
+@graceful_auto_reconnect
+def mongo_update_one(collection: str, query, projection, bypass_document_validation: bool = False):
+    if query.get("$set", None):
+        for hook in hooks[mongo_find_one][collection]:
+            query["$set"] = hook(query["$set"])
+    return getattr(results_db, collection).update_one(query, projection, bypass_document_validation=bypass_document_validation)
+
+
+@graceful_auto_reconnect
+def mongo_aggregate(collection: str, query):
+    return getattr(results_db, collection).aggregate(query)
+
+
+@graceful_auto_reconnect
+def mongo_collection_names() -> list:
+    return results_db.list_collection_names()
+
+
+@graceful_auto_reconnect
+def mongo_find_one_and_update(collection, query, update, projection=None):
+    if projection is None:
+        projection = {"_id": 1}
+    return getattr(results_db, collection).find_one_and_update(query, update, projection)
+
+
+@graceful_auto_reconnect
+def mongo_drop_database(database: str):
+    conn.drop_database(database)
+
+
+def mongo_delete_data(task_ids: int | Sequence[int]) -> None:
+    """Delete the specified task or tasks."""
+    try:
+        if isinstance(task_ids, int):
+            task_ids = [task_ids]
+
+        if task_ids:
+            mongo_delete_calls(task_ids=task_ids)
+            mongo_delete_many("analysis", {"info.id": {"$in": task_ids}})
+            for hook in hooks[mongo_delete_data]["analysis"]:
+                hook(task_ids)
+    except Exception as e:
+        log.exception(e)
+
+
+def mongo_delete_data_range(*, range_start: int = 0, range_end: int = 0) -> None:
+    """Delete tasks in a specific range."""
+    INFO_ID = "info.id"
+    try:
+        info_id_query = {}
+        if range_start > 0:
+            info_id_query["$gte"] = range_start
+        if range_end > 0:
+            info_id_query["$lt"] = range_end
+        if info_id_query:
+            mongo_delete_calls_by_task_id_in_range(range_start=range_start, range_end=range_end)
+            mongo_delete_many("analysis", {INFO_ID: info_id_query})
+            for hook in hooks[mongo_delete_data_range]["analysis"]:
+                hook(range_start=range_start, range_end=range_end)
+    except Exception as e:
+        log.exception(e)
+
+
+def mongo_delete_calls(task_ids: Sequence[int] | None) -> None:
+    """Delete calls by primary key.
+
+    This obtains the call IDs from the analysis collection, which are then used
+    to delete calls in batches."""
+    log.info("attempting to delete calls for %d tasks", len(task_ids))
+
+    query = {"info.id": {"$in": task_ids}}
+    projection = {"behavior.processes.calls": 1}
+    tasks: list[dict[str, Any]] = mongo_find("analysis", query, projection)
+
+    if not tasks:
+        return
+
+    delete_target_ids: list[ObjectId] = []
+
+    def get_call_ids_from_task(task: dict[str, Any]) -> list[ObjectId]:
+        """Get the call IDs from an analysis document."""
+        processes = task.get("behavior", {}).get("processes", [])
+        calls = [proc.get("calls", []) for proc in processes]
+        return list(itertools.chain.from_iterable(calls))
+
+    for task in tasks:
+        delete_target_ids.extend(get_call_ids_from_task(task))
+
+    delete_target_ids = list(set(delete_target_ids))
+    chunk_size = 1000
+    for idx in range(0, len(delete_target_ids), chunk_size):
+        mongo_delete_many("calls", {"_id": {"$in": delete_target_ids[idx : idx + chunk_size]}})
+
+
+def mongo_delete_calls_by_task_id(task_ids: Sequence[int]) -> None:
+    """Delete calls by querying the calls collection by the task_id field.
+
+    Note, the task_id field was added to the calls collection in 9999881.
+    Objects added to the collection prior to this will not be deleted. Use
+    mongo_delete_calls for backwards compatibility.
+    """
+    mongo_delete_many("calls", {"task_id": {"$in": task_ids}})
+
+
+def mongo_delete_calls_by_task_id_in_range(*, range_start: int = 0, range_end: int = 0) -> None:
+    """Delete calls by querying the calls collection by the task_id field.
+
+    Note, the task_id field was added to the calls collection in 9999881.
+    Objects added to the collection prior to this will be persist. Use
+    mongo_delete_calls for backwards compatibility.
+    """
+    task_id_query: dict[str, int] = {}
+    if range_start > 0:
+        task_id_query["$gte"] = range_start
+    if range_end > 0:
+        task_id_query["$lt"] = range_end
+    if task_id_query:
+        mongo_delete_many("calls", {"task_id": task_id_query})
+
+
+def mongo_is_cluster():
+    # This is only useful at the moment for clean to prevent destruction of cluster database
+    try:
+        conn.admin.command("listShards")
+        return True
+    except OperationFailure:
+        return False
+
+
+# Mongodb hooks are registered by importing this module.
+# Import it down here because mongo_hooks import this module.
+from . import mongo_hooks  # noqa: F401
diff --git a/docs/book/src/_images/screenshots/create_kvm_snapshot.png b/docs/book/src/_images/screenshots/create_kvm_snapshot.png
new file mode 100644
index 00000000000..7c0bec411ef
Binary files /dev/null and b/docs/book/src/_images/screenshots/create_kvm_snapshot.png differ
diff --git a/docs/book/src/_images/screenshots/creating_isolated_network_0.png b/docs/book/src/_images/screenshots/creating_isolated_network_0.png
new file mode 100644
index 00000000000..97fb01440a4
Binary files /dev/null and b/docs/book/src/_images/screenshots/creating_isolated_network_0.png differ
diff --git a/docs/book/src/_images/screenshots/creating_isolated_network_1.png b/docs/book/src/_images/screenshots/creating_isolated_network_1.png
new file mode 100644
index 00000000000..b9937b2db94
Binary files /dev/null and b/docs/book/src/_images/screenshots/creating_isolated_network_1.png differ
diff --git a/docs/book/src/_images/screenshots/creating_isolated_network_2.png b/docs/book/src/_images/screenshots/creating_isolated_network_2.png
new file mode 100644
index 00000000000..6aa0f37ba9f
Binary files /dev/null and b/docs/book/src/_images/screenshots/creating_isolated_network_2.png differ
diff --git a/docs/book/src/_images/screenshots/creating_isolated_network_3.png b/docs/book/src/_images/screenshots/creating_isolated_network_3.png
new file mode 100644
index 00000000000..6c867f2806f
Binary files /dev/null and b/docs/book/src/_images/screenshots/creating_isolated_network_3.png differ
diff --git a/docs/book/src/_images/screenshots/creating_isolated_network_4.png b/docs/book/src/_images/screenshots/creating_isolated_network_4.png
new file mode 100644
index 00000000000..52407ad9ea8
Binary files /dev/null and b/docs/book/src/_images/screenshots/creating_isolated_network_4.png differ
diff --git a/docs/book/src/_images/screenshots/creating_isolated_network_5.png b/docs/book/src/_images/screenshots/creating_isolated_network_5.png
new file mode 100644
index 00000000000..a199f6a0745
Binary files /dev/null and b/docs/book/src/_images/screenshots/creating_isolated_network_5.png differ
diff --git a/docs/book/src/_images/screenshots/creating_task_scheduler_0.png b/docs/book/src/_images/screenshots/creating_task_scheduler_0.png
new file mode 100644
index 00000000000..ee35741c68e
Binary files /dev/null and b/docs/book/src/_images/screenshots/creating_task_scheduler_0.png differ
diff --git a/docs/book/src/_images/screenshots/creating_task_scheduler_1.png b/docs/book/src/_images/screenshots/creating_task_scheduler_1.png
new file mode 100644
index 00000000000..0b826c4ebec
Binary files /dev/null and b/docs/book/src/_images/screenshots/creating_task_scheduler_1.png differ
diff --git a/docs/book/src/_images/screenshots/creating_task_scheduler_2.png b/docs/book/src/_images/screenshots/creating_task_scheduler_2.png
new file mode 100644
index 00000000000..0278c1c5e06
Binary files /dev/null and b/docs/book/src/_images/screenshots/creating_task_scheduler_2.png differ
diff --git a/docs/book/src/_images/screenshots/debugger2disassembler.png b/docs/book/src/_images/screenshots/debugger2disassembler.png
new file mode 100644
index 00000000000..7adaec6e222
Binary files /dev/null and b/docs/book/src/_images/screenshots/debugger2disassembler.png differ
diff --git a/docs/book/src/_images/screenshots/guest_win10_disable_firewall.png b/docs/book/src/_images/screenshots/guest_win10_disable_firewall.png
new file mode 100644
index 00000000000..e1466dfe5fa
Binary files /dev/null and b/docs/book/src/_images/screenshots/guest_win10_disable_firewall.png differ
diff --git a/docs/book/src/_images/screenshots/guest_win10_disable_firewall_1.png b/docs/book/src/_images/screenshots/guest_win10_disable_firewall_1.png
new file mode 100644
index 00000000000..f954acdf1d1
Binary files /dev/null and b/docs/book/src/_images/screenshots/guest_win10_disable_firewall_1.png differ
diff --git a/docs/book/src/_images/screenshots/guest_win10_disable_updates.png b/docs/book/src/_images/screenshots/guest_win10_disable_updates.png
new file mode 100644
index 00000000000..a7aee7422ef
Binary files /dev/null and b/docs/book/src/_images/screenshots/guest_win10_disable_updates.png differ
diff --git a/docs/book/src/_images/screenshots/guest_win10_static_IP.png b/docs/book/src/_images/screenshots/guest_win10_static_IP.png
new file mode 100644
index 00000000000..364cff34285
Binary files /dev/null and b/docs/book/src/_images/screenshots/guest_win10_static_IP.png differ
diff --git a/docs/book/src/_images/screenshots/guest_win10_static_IP_1.png b/docs/book/src/_images/screenshots/guest_win10_static_IP_1.png
new file mode 100644
index 00000000000..7e1e653ce3a
Binary files /dev/null and b/docs/book/src/_images/screenshots/guest_win10_static_IP_1.png differ
diff --git a/docs/book/src/_images/screenshots/guest_win10_static_IP_2.png b/docs/book/src/_images/screenshots/guest_win10_static_IP_2.png
new file mode 100644
index 00000000000..31a9f7c91bb
Binary files /dev/null and b/docs/book/src/_images/screenshots/guest_win10_static_IP_2.png differ
diff --git a/docs/book/src/_images/screenshots/guest_win10_static_IP_3.png b/docs/book/src/_images/screenshots/guest_win10_static_IP_3.png
new file mode 100644
index 00000000000..7040e4f7a67
Binary files /dev/null and b/docs/book/src/_images/screenshots/guest_win10_static_IP_3.png differ
diff --git a/docs/book/src/_images/screenshots/internal_external_snapshot.png b/docs/book/src/_images/screenshots/internal_external_snapshot.png
new file mode 100644
index 00000000000..33edb535a3d
Binary files /dev/null and b/docs/book/src/_images/screenshots/internal_external_snapshot.png differ
diff --git a/docs/book/src/_images/screenshots/libvirt_error_virtmanager.png b/docs/book/src/_images/screenshots/libvirt_error_virtmanager.png
new file mode 100644
index 00000000000..555040366c9
Binary files /dev/null and b/docs/book/src/_images/screenshots/libvirt_error_virtmanager.png differ
diff --git a/docs/book/src/_images/screenshots/login_error_user_usersprofile.png b/docs/book/src/_images/screenshots/login_error_user_usersprofile.png
new file mode 100644
index 00000000000..b3a243dc531
Binary files /dev/null and b/docs/book/src/_images/screenshots/login_error_user_usersprofile.png differ
diff --git a/docs/book/src/_images/screenshots/no_signatures.png b/docs/book/src/_images/screenshots/no_signatures.png
new file mode 100644
index 00000000000..8aafdae1c3a
Binary files /dev/null and b/docs/book/src/_images/screenshots/no_signatures.png differ
diff --git a/docs/book/src/_images/screenshots/python_guest_win10_installation_PATH.png b/docs/book/src/_images/screenshots/python_guest_win10_installation_PATH.png
new file mode 100644
index 00000000000..af60e38a477
Binary files /dev/null and b/docs/book/src/_images/screenshots/python_guest_win10_installation_PATH.png differ
diff --git a/docs/book/src/_images/screenshots/rooter_0.png b/docs/book/src/_images/screenshots/rooter_0.png
new file mode 100644
index 00000000000..5884fdd1d70
Binary files /dev/null and b/docs/book/src/_images/screenshots/rooter_0.png differ
diff --git a/docs/book/src/_images/screenshots/running_agentpy_within_guest_0.png b/docs/book/src/_images/screenshots/running_agentpy_within_guest_0.png
new file mode 100644
index 00000000000..25f5a07287d
Binary files /dev/null and b/docs/book/src/_images/screenshots/running_agentpy_within_guest_0.png differ
diff --git a/docs/book/src/_images/screenshots/running_agentpy_within_guest_1.png b/docs/book/src/_images/screenshots/running_agentpy_within_guest_1.png
new file mode 100644
index 00000000000..4c98811ac1e
Binary files /dev/null and b/docs/book/src/_images/screenshots/running_agentpy_within_guest_1.png differ
diff --git a/docs/book/src/_images/screenshots/signatures.png b/docs/book/src/_images/screenshots/signatures.png
new file mode 100644
index 00000000000..fbf2af5dd5f
Binary files /dev/null and b/docs/book/src/_images/screenshots/signatures.png differ
diff --git a/docs/book/src/_images/screenshots/troubleshooting_0.png b/docs/book/src/_images/screenshots/troubleshooting_0.png
new file mode 100644
index 00000000000..29b72af6abf
Binary files /dev/null and b/docs/book/src/_images/screenshots/troubleshooting_0.png differ
diff --git a/docs/book/src/_images/screenshots/troubleshooting_error_0.png b/docs/book/src/_images/screenshots/troubleshooting_error_0.png
new file mode 100644
index 00000000000..929e5300d55
Binary files /dev/null and b/docs/book/src/_images/screenshots/troubleshooting_error_0.png differ
diff --git a/docs/book/src/_images/screenshots/troubleshooting_error_1.png b/docs/book/src/_images/screenshots/troubleshooting_error_1.png
new file mode 100644
index 00000000000..fce51b0f973
Binary files /dev/null and b/docs/book/src/_images/screenshots/troubleshooting_error_1.png differ
diff --git a/docs/book/src/_images/screenshots/troubleshooting_error_2.png b/docs/book/src/_images/screenshots/troubleshooting_error_2.png
new file mode 100644
index 00000000000..5acc8ef104c
Binary files /dev/null and b/docs/book/src/_images/screenshots/troubleshooting_error_2.png differ
diff --git a/docs/book/src/_images/screenshots/troubleshooting_error_3.png b/docs/book/src/_images/screenshots/troubleshooting_error_3.png
new file mode 100644
index 00000000000..9daeb2b22ef
Binary files /dev/null and b/docs/book/src/_images/screenshots/troubleshooting_error_3.png differ
diff --git a/docs/book/src/_static/.gitkeep b/docs/book/src/_static/.gitkeep
new file mode 100644
index 00000000000..e69de29bb2d
diff --git a/docs/book/src/conf.py b/docs/book/src/conf.py
index e84c237badd..bcd82987d49 100644
--- a/docs/book/src/conf.py
+++ b/docs/book/src/conf.py
@@ -9,10 +9,6 @@
 #
 # All configuration values have a default; values that are commented out
 # serve to show the default.
-
-from __future__ import absolute_import
-import sys, os
-
 # If extensions (or modules to document with autodoc) are in another directory,
 # add these directories to sys.path here. If the directory is relative to the
 # documentation root, use os.path.abspath to make it absolute, like shown here.
@@ -40,17 +36,17 @@
 master_doc = "index"
 
 # General information about the project.
-project = u"CAPE Sandbox"
-copyright = u"2010-2015, Cuckoo Foundation, 2016-2020, kevoreilly"
+project = "CAPE Sandbox"
+copyright = "2010-2015, Cuckoo Foundation, 2016-2024, kevoreilly"
 
 # The version info for the project you're documenting, acts as replacement for
 # |version| and |release|, also used in various other places throughout the
 # built documents.
 #
 # The short X.Y version.
-version = "2.1"
+version = "2.2"
 # The full version, including alpha/beta/rc tags.
-release = "2.1"
+release = "2.4"
 
 # The language for content autogenerated by Sphinx. Refer to documentation
 # for a list of supported languages.
@@ -91,7 +87,7 @@
 
 # The theme to use for HTML and HTML Help pages.  See the documentation for
 # a list of builtin themes.
-html_theme = "default"
+html_theme = "sphinx_rtd_theme"
 
 # Theme options are theme-specific and customize the look and feel of a theme
 # further.  For a list of options available for each theme, see the
@@ -178,7 +174,7 @@
 # Grouping the document tree into LaTeX files. List of tuples
 # (source start file, target name, title, author, documentclass [howto/manual]).
 latex_documents = [
-    ("index", "CAPESandbox.tex", u"CAPE Sandbox Book", u"CAPE Sandbox", "manual"),
+    ("index", "CAPESandbox.tex", "CAPE Sandbox Book", "CAPE Sandbox", "manual"),
 ]
 
 # The name of an image file (relative to this directory) to place at the top of
@@ -209,4 +205,4 @@
 
 # One entry per manual page. List of tuples
 # (source start file, name, description, authors, manual section).
-man_pages = [("index", "capesandbox", u"CAPE Sandbox Book", [u"CAPE Sandbox"], 1)]
+man_pages = [("index", "capesandbox", "CAPE Sandbox Book", ["CAPE Sandbox"], 1)]
diff --git a/docs/book/src/customization/auxiliary.rst b/docs/book/src/customization/auxiliary.rst
index e858f4c8ba8..48b98801f7a 100644
--- a/docs/book/src/customization/auxiliary.rst
+++ b/docs/book/src/customization/auxiliary.rst
@@ -27,3 +27,52 @@ very end of the analysis process, before launching the processing and reporting
 
 For example, an auxiliary module provided by default in CAPE is called *sniffer.py* and
 takes care of executing **tcpdump** in order to dump the generated network traffic.
+
+Auxiliary Module Configuration
+==============================
+
+Auxiliary modules can be "configured" before being started. This allows data to be added
+at runtime, whilst also allowing for the configuration to be stored separately from the
+CAPE python code.
+
+Private Auxiliary Module Configuration
+--------------------------------------
+
+Private auxiliary module configuration is stored outside the auxiliary class, in a module
+under the same name as the auxiliary module. This is useful when managing configuration
+of auxiliary modules separately if desired, for privacy reasons or otherwise.
+
+Here is a configuration module example that installs some software prior to the auxiliary
+module starting:
+
+    .. code-block:: python
+        :linenos:
+
+        # data/auxiliary/example.py
+        import subprocess
+        import logging
+        from pathlib import Path
+
+        log = logging.getLogger(__name__)
+        BIN_PATH = Path.cwd() / "bin"
+
+
+        def configure(aux_instance):
+            # here "example" refers to modules.auxiliary.example.Example
+            if not aux_instance.enabled:
+                return
+            msi = aux_instance.options.get("example_msi")
+            if not msi:
+                return
+            msi_path = BIN_PATH / msi
+            if not msi_path.exists():
+                log.warning("missing MSI %s", msi_path)
+                return
+            cmd = ["msiexec", "/i", msi_path, "/quiet"]
+            try:
+                log.info("Executing msi package...")
+                subprocess.check_output(cmd)
+                log.info("Installation succesful")
+            except subprocess.CalledProcessError as exc:
+                log.error("Installation failed: %s", exc)
+                return
diff --git a/docs/book/src/customization/machinery.rst b/docs/book/src/customization/machinery.rst
index cd5b2767162..786d4280980 100644
--- a/docs/book/src/customization/machinery.rst
+++ b/docs/book/src/customization/machinery.rst
@@ -6,7 +6,7 @@ Machinery Modules
 your virtualization software (or potentially even with physical disk imaging
 solutions).
 Since we decided to not enforce any particular vendor, from release 0.4 you
-are able to use your preferred solution and, in case it's not supported by
+can use your preferred solution and, in case it's not supported by
 default, write a custom Python module that defines how to make CAPE use it.
 
 Every machinery module should be located inside
@@ -49,7 +49,7 @@ Configuration
 
 Every machinery module should come with a dedicated configuration file
 located in *conf/<machinery module name>.conf*.
-For example for *modules/machinery/kvm.py* we have a *conf/kvm.conf*.
+For example, for *modules/machinery/kvm.py* we have a *conf/kvm.conf*.
 
 The configuration file should follow the default structure::
 
@@ -73,17 +73,17 @@ The configuration file should follow the default structure::
     # will fail.
     ip = 192.168.122.105
 
-A main section called ``[<name of the module>]`` with a ``machines`` field
+The main section is called ``[<name of the module>]`` with a ``machines`` field
 containing a comma-separated list of machines IDs.
 
-For each machine you should specify a ``label``, a ``platform`` and its
+For each machine, you should specify a ``label``, a ``platform``, and its
 ``ip``.
 
-These fields are required by CAPE in order to use the already embedded ``initialize()``
+These fields are required by CAPE to use the already embedded ``initialize()``
 function that generates the list of available machines.
 
 If you plan to change the configuration structure you should override the ``initialize()``
-function (inside your own module, no need to modify CAPE's core code).
+function (inside your module, no need to modify CAPE's core code).
 You can find its original code in the ``Machinery`` abstract inside
 *lib/cuckoo/common/abstracts.py*.
 
diff --git a/docs/book/src/customization/packages.rst b/docs/book/src/customization/packages.rst
index 004ba284ea2..c3102192abd 100644
--- a/docs/book/src/customization/packages.rst
+++ b/docs/book/src/customization/packages.rst
@@ -6,10 +6,10 @@ As explained in :doc:`../usage/packages`, analysis packages are structured
 Python classes that describe how CAPE's analyzer component should conduct
 the analysis procedure for a given file inside the guest environment.
 
-As you already know, you can create your own packages and add them along with
+As you already know, you can create your packages and add them along with
 the default ones.
 Designing new packages is very easy and requires just a minimal understanding
-of programming and of the Python language.
+of programming and the Python language.
 
 Getting started
 ===============
@@ -29,9 +29,9 @@ Windows executables (located at *analyzer/windows/packages/exe.py*):
                 args = self.options.get("arguments")
                 return self.execute(path, args)
 
-It seems really easy, thanks to all method inherited by Package object.
-Let's have a look as some of the main methods an analysis package inherits from
-Package object:
+It seems easy, thanks to all methods inherited by the Package object.
+Let's have a look at some of the main methods an analysis package inherits from
+the Package object:
 
     .. code-block:: python
         :linenos:
@@ -39,7 +39,7 @@ Package object:
         from lib.api.process import Process
         from lib.common.exceptions import CuckooPackageError
 
-        class Package(object):
+        class Package:
             def start(self):
                 raise NotImplementedError
 
@@ -75,7 +75,7 @@ Let's walk through the code:
     * Line **1**: import the ``Process`` API class, which is used to create and manipulate Windows processes.
     * Line **2**: import the ``CuckooPackageError`` exception, which is used to notify issues with the execution of the package to the analyzer.
     * Line **4**: define the main class, inheriting ``object``.
-    * Line **5**: define the ``start()`` function, which takes as argument the path to the file to execute. It should be implemented by each analysis package.
+    * Line **5**: define the ``start()`` function, which takes as an argument the path to the file to execute. It should be implemented by each analysis package.
     * Line **8**: define the ``check()`` function.
     * Line **13**: acquire the ``free`` option, which is used to define whether the process should be monitored or not.
     * Line **18**: initialize a ``Process`` instance.
@@ -95,7 +95,7 @@ Let's walk through the code:
 
 In this function you have to place all the initialization operations you want to run.
 This may include running the malware process, launching additional applications,
-taking memory snapshots and more.
+taking memory snapshots, and more.
 
 ``check()``
 -----------
@@ -103,7 +103,7 @@ taking memory snapshots and more.
 This function is executed by CAPE every second while the malware is running.
 You can use this function to perform any kind of recurrent operation.
 
-For example if in your analysis you are looking for just one specific indicator to
+For example, if in your analysis you are looking for just one specific indicator to
 be created (e.g. a file) you could place your condition in this function and if
 it returns ``False``, the analysis will terminate straight away.
 
@@ -123,7 +123,7 @@ whenever *C:\\config.bin* is created.
 ``execute()``
 -------------
 
-Wraps the malware execution and deal with DLL injection.
+Wraps the malware execution and deals with DLL injection.
 
 ``finish()``
 ------------
@@ -136,10 +136,10 @@ all the monitored processes.
 Options
 =======
 
-Every package have automatically access to a dictionary containing all user-specified
+Every package has automatically access to a dictionary containing all user-specified
 options (see :doc:`../usage/submit`).
 
-Such options are made available in the attribute ``self.options``. For example let's
+Such options are made available in the attribute ``self.options``. For example, let's
 assume that the user specified the following string at submission::
 
     foo=1,bar=2
@@ -162,11 +162,93 @@ The analysis package selected will have access to these values::
 
 These options can be used for anything you might need to configure inside your package.
 
+Package Configuration
+=====================
+
+Analysis packages can be "configured" before being started. Package configuration comes
+in two forms:
+
+#. Public configuration
+#. Private configuration
+
+Public configuration is stored within the analysis package class itself. Private
+configuration is stored externally, as data added to CAPE at runtime, separate from the
+CAPE Python code.
+
+Public Package Configuration
+----------------------------
+
+Public package configuration is stored directly in the analysis package itself.
+This form of configuration is useful when configuring the host execution environment
+before the analysis is started.
+
+For example, here is a alternative PDF package with lowered security settings:
+
+    .. code-block:: python
+        :linenos:
+
+        from lib.common.abstracts import Package
+        from lib.common.exceptions import CuckooPackageError
+        from lib.common.registry import *
+
+
+        class PDFLS(Package):
+            """PDF analysis package, with lowered security settings."""
+
+            PATHS = [
+                ("ProgramFiles", "Adobe", "Acrobat DC", "Acrobat", "Acrobat.exe"),
+            ]
+
+            def __init__(self, options=None, config=None):
+                """@param options: options dict."""
+                if options is None:
+                    options = {}
+                self.config = config
+                self.options = options
+                self.options["pdf"] = "1"
+
+            def configure(self, target):
+                rootkey, subkey = "HKEY_CURRENT_USER", r"SOFTWARE\Adobe\Adobe Acrobat\DC"
+                set_regkey(rootkey, fr"{subkey}\Privileged", "bProtectedMmode", REG_DWORD, 0)
+                set_regkey(rootkey, fr"{subkey}\JSPrefs", "bEnableJS", REG_DWORD, 1)
+                set_regkey(rootkey, fr"{subkey}\JSPrefs", "bEnableGlobalSecurity", REG_DWORD, 0)
+
+            def start(self, path):
+                reader = self.get_path_glob("Acrobat.exe")
+                return self.execute(reader, f'"{path}"', path)
+
+
+Private Package Configuration
+-----------------------------
+
+Private package configuration is stored outside the analysis package class, in a module
+under the same name as the analysis package. This is useful when managing configuration
+of package capabilities separately is desired, for privacy reasons or otherwise.
+
+For example, here is a private package configuration for exe analysis that disables
+ASLR for the target being analyzed:
+
+    .. code-block:: python
+        :linenos:
+
+        # data/packages/exe.py
+        import lief
+
+        def configure(package, target):
+            # here "package" refers to modules.packages.exe.Exe
+            if package.options.get("disable-aslr"):
+                pe_binary = lief.parse(target)
+                old_flags = pe_binary.optional.header.dll_characteristics
+                # unset DYNAMIC_BASE
+                new_flags = (old_flags & ~lief.PE.OptionalHeader.DLL_CHARACTERISTICS.DYNAMIC_BASE)
+                pe_binary.optional_header.dll_characteristics = new_flags
+                pe_binary.write(target)
+
 Process API
 ===========
 
 The ``Process`` class provides access to different process-related features and functions.
-You can import it in your analysis packages with::
+You can import it into your analysis packages with::
 
     from lib.api.process import Process
 
@@ -182,7 +264,7 @@ specify multiple arguments:
     * ``thread_id``: thread ID of a process you want to operate on.
     * ``h_thread``: handle of the thread of a process you want to operate on.
 
-This class implements several methods that you can use in your own scripts.
+This class implements several methods that you can use in your scripts.
 
 Methods
 -------
diff --git a/docs/book/src/customization/processing.rst b/docs/book/src/customization/processing.rst
index cb5cb4d5dc2..c7d1b820d67 100644
--- a/docs/book/src/customization/processing.rst
+++ b/docs/book/src/customization/processing.rst
@@ -18,7 +18,7 @@ modules available in the *modules/processing/* directory. Any additional
 module you decide to create must be placed inside that directory.
 
 Every module should also have a dedicated section in the file *conf/processing.conf*: for
-example if you create a module *module/processing/foobar.py* you will have to append
+example, if you create a module *module/processing/foobar.py* you will have to append
 the following section to *conf/processing.conf*::
 
     [foobar]
@@ -31,21 +31,21 @@ This container is simply just a big Python dictionary that includes
 the abstracted results produced by all the modules classified by their
 identification key.
 
-CAPE already provides a default set of modules which will
+CAPE already provides a default set of modules that will
 generate a *standard* global container. It's important for the existing
 reporting modules (HTML report etc.) that these default modules are
-not modified, otherwise the resulting global container structure would
+not modified, otherwise, the resulting global container structure would
 change and the reporting modules wouldn't be able to recognize it and
 extract the information used to build the final reports.
 
 The currently available default processing modules are:
-    * **AnalysisInfo** *(modules/processing/analysisinfo.py)* - generates some basic information on the current analysis, such as timestamps, version of CAPE and so on.
-    * **BehaviorAnalysis** *(modules/processing/behavior.py)* - parses the raw behavioral logs and perform some initial transformations and interpretations, including the complete processes tracing, a behavioral summary and a process tree.
+    * **AnalysisInfo** *(modules/processing/analysisinfo.py)* - generates some basic information on the current analysis, such as timestamps, version of CAPE, and so on.
+    * **BehaviorAnalysis** *(modules/processing/behavior.py)* - parses the raw behavioral logs and perform some initial transformations and interpretations, including the complete processes tracing, a behavioral summary, and a process tree.
     * **Debug** *(modules/processing/debug.py)* - includes errors and the *analysis.log* generated by the analyzer.
     * **Dropped** *(modules/processing/dropped.py)* - includes information on the files dropped by the malware and dumped by CAPE.
     * **Memory** *(modules/processing/memory.py)* - executes Volatility on a full memory dump.
-    * **NetworkAnalysis** *(modules/processing/network.py)* - parses the PCAP file and extracts some network information, such as DNS traffic, domains, IPs, HTTP requests, IRC and SMTP traffic.
-    * **ProcMemory** *(modules/processing/procmemory.py)* - performs analysis of process memory dump. **Note**: the module is able to process user defined Yara rules from data/yara/memory/index_memory.yar. Just edit this file to add your Yara rules.
+    * **NetworkAnalysis** *(modules/processing/network.py)* - parses the PCAP file and extracts some network information, such as DNS traffic, domains, IPs, HTTP requests, IRC, and SMTP traffic.
+    * **ProcMemory** *(modules/processing/procmemory.py)* - performs analysis of process memory dump. **Note**: the module can process user-defined Yara rules from data/yara/memory/index_memory.yar. Just edit this file to add your Yara rules.
     * **StaticAnalysis** *(modules/processing/static.py)* - performs some static analysis of PE32 files.
     * **Strings** *(modules/processing/strings.py)* - extracts strings from the analyzed binary.
     * **TargetInfo** *(modules/processing/targetinfo.py)* - includes information on the analyzed file, such as hashes.
@@ -54,10 +54,10 @@ The currently available default processing modules are:
 Getting started
 ===============
 
-In order to make them available to CAPE, all processing modules must be
+To make them available to CAPE, all processing modules must be
 placed inside the folder at *modules/processing/*.
 
-A basic processing module could look like:
+A basic processing module could look like this:
 
     .. code-block:: python
         :linenos:
@@ -74,14 +74,14 @@ A basic processing module could look like:
 Every processing module should contain:
     * A class inheriting ``Processing``.
     * A ``run()`` function.
-    * A ``self.key`` attribute defining the name to be used as a sub container for the returned data.
-    * A set of data (list, dictionary, string, etc.) that will be appended to the global container.
+    * A ``self.key`` attribute defining the name to be used as a sub-container for the returned data.
+    * A set of data (list, dictionary, string, etc.) will be appended to the global container.
 
 You can also specify an ``order`` value, which allows you to run the available processing modules in
-an ordered sequence. By default all modules are set with an ``order`` value of ``1`` and are executed
+an ordered sequence. By default, all modules are set with an ``order`` value of ``1`` and are executed
 in alphabetical order.
 
-If you want to change this value your module would look like:
+If you want to change this value your module would look like this:
 
     .. code-block:: python
         :linenos:
@@ -125,7 +125,7 @@ for the given analysis:
     * ``self.memory_path``: path to the full memory dump, if created.
     * ``self.pmemory_path``: path to the process memory dumps, if created.
 
-With these attributes you should be able to easily access all the raw results stored by CAPE and
+With these attributes, you should be able to easily access all the raw results stored by CAPE and
 perform your analytic operations on them.
 
 As a last note, a good practice is to use the ``CuckooProcessingError`` exception
diff --git a/docs/book/src/customization/reporting.rst b/docs/book/src/customization/reporting.rst
index dbb40426d61..adc074f1b15 100644
--- a/docs/book/src/customization/reporting.rst
+++ b/docs/book/src/customization/reporting.rst
@@ -14,7 +14,7 @@ Getting Started
 All reporting modules must be placed inside the directory *modules/reporting/*.
 
 Every module must also have a dedicated section in the file *conf/reporting.conf*: for
-example if you create a module *module/reporting/foobar.py* you will have to append
+example, if you create a module *module/reporting/foobar.py* you will have to append
 the following section to *conf/reporting.conf*::
 
     [foobar]
@@ -50,10 +50,10 @@ Following is an example of a working JSON reporting module:
                 except (UnicodeError, TypeError, IOError) as e:
                     raise CuckooReportError("Failed to generate JSON report: %s" % e)
 
-This code is very simple, it basically just receives the global container produced by the
-processing modules, converts it into JSON and writes it to a file.
+This code is very simple, it just receives the global container produced by the
+processing modules, converts it into JSON, and writes it to a file.
 
-There are few requirements for writing a valid reporting module:
+There are a few requirements for writing a valid reporting module:
 
     * Declare your class inheriting from ``Report``.
     * Have a ``run()`` function performing the main operations.
diff --git a/docs/book/src/customization/signatures.rst b/docs/book/src/customization/signatures.rst
index 4e87769f236..0b3c1118819 100644
--- a/docs/book/src/customization/signatures.rst
+++ b/docs/book/src/customization/signatures.rst
@@ -2,30 +2,30 @@
 Signatures
 ==========
 
-With CAPE you're able to create some customized signatures that you can run against
-the analysis results in order to identify some predefined pattern that might
-represent a particular malicious behavior or an indicator you're interested in.
+By taking advantage of CAPE's customizability, you can write signatures which will then
+by run against analysis results. These signatures can be used to identify a predefined
+pattern that represents a malicious behavior or an indicator that you're interested in.
 
-These signatures are very useful to give a context to the analyses: both because they
-simplify the interpretation of the results as well as for automatically identifying
+These signatures are very useful to give context to the analyses. They
+simplify the interpretation of the results and assist with automatically identifying
 malware samples of interest.
 
-Some examples of what you can use CAPE's signatures for:
-    * Identify a particular malware family you're interested in by isolating some unique behaviors (like file names or mutexes).
-    * Spot interesting modifications the malware performs on the system, such as installation of device drivers.
-    * Identify particular malware categories, such as Banking Trojans or Ransomware by isolating typical actions commonly performed by those.
+A few examples of what you can use CAPE's signatures for are:
+    * Identify a particular malware family that you're interested in, by isolating unique behaviors (like file names or mutexes).
+    * Spot interesting modifications that the malware performs on the system, such as the installation of device drivers.
+    * Identify particular malware categories, such as Banking Trojans or Ransomware, by isolating typical actions that are commonly performed by these categories.
 
-You can find signatures created by us and by other CAPE users on our `Community`_ repository.
+You can find signatures created by the CAPE administrators and other CAPE users on the `Community`_ repository.
 
 .. _`Community`: https://github.com/kevoreilly/community
 
-Getting started
+Getting Started
 ===============
 
-Creation of signatures is a very simple process and requires just a decent
+Creating a signature is a very simple process but requires a decent
 understanding of Python programming.
 
-First things first, all signatures must be located inside *modules/signatures/*.
+First things first, all signatures must be located inside the *modules/signatures/* directory.
 
 The following is a basic example signature:
 
@@ -46,17 +46,19 @@ The following is a basic example signature:
                 return self.check_file(pattern=".*\\.exe$",
                                        regex=True)
 
-As you can see the structure is really simple and consistent with the other
-modules. We're going to get into details later, but as you can see at line **12**
-from version 0.5 CAPE provides some helper functions that make the process of
-creating signatures much easier.
+As you can see the structure of the signature is really simple and consistent with the other CAPE
+modules. Note that on line **12** a helper function is used. These helper functions
+assist with signature-writing and we highly recommend becoming familiar with what helper functions are
+available to you (found in the
+[Signature class](https://github.com/kevoreilly/CAPEv2/blob/master/lib/cuckoo/common/abstracts.py))
+before you start writing signatures. Some documentation for :ref:`Helpers` can be found below.
 
-In this example we just walk through all the accessed files in the summary and check
-if there is anything ending with "*.exe*": in that case it will return ``True``, meaning that
-the signature matched, otherwise return ``False``.
+In the example above, the helper function is used to walk through all of the accessed files in the summary and check
+if there are any files ending with "*.exe*". If there is at least one, then the helper function will return ``True``;
+otherwise it will return ``False``. When a signature returns True, that means that the signature matched.
 
-In case the signature gets matched, a new entry in the "signatures" section will be added to
-the global container as follows::
+If the signature matches, a new entry in the "signatures" section will be added to
+the **global container** `self.results` as follows::
 
     "signatures": [
         {
@@ -74,7 +76,7 @@ the global container as follows::
     ]
 
 We could rewrite the exact same signature by accessing the **global container**
-directly:
+directly, rather than through the helper function `check_file`:
 
     .. code-block:: python
         :linenos:
@@ -96,41 +98,45 @@ directly:
 
                 return False
 
-This obviously requires you to know the structure of the **global container**,
-which you can observe represented in the JSON report of your analyses.
+If you access the **global container** directly, you must know its structure,
+which can be observed in the JSON report of your analyses.
 
 Creating your new signature
 ===========================
 
-In order to make you better understand the process of creating a signature, we
+To help you better understand the process of creating a signature, we
 are going to create a very simple one together and walk through the steps and
-the available options. For this purpose, we're simply going to create a
-signature that checks whether the malware analyzed opened a mutex named
+the available options. For this purpose, we're going to create a
+signature that checks whether the malware analyzed opens a mutex named
 "i_am_a_malware".
 
-The first thing to do is import the dependencies, create a skeleton and define
-some initial attributes. These are the ones you can currently set:
+The first thing to do is to import the dependencies, create a skeleton, and define
+some initial attributes. These are the attributes that you can currently set:
 
     * ``name``: an identifier for the signature.
     * ``description``: a brief description of what the signature represents.
     * ``severity``: a number identifying the severity of the events matched (generally between 1 and 3).
-    * ``categories``: a list of categories that describe the type of event being matched (for example "*banker*", "*injection*" or "*anti-vm*").
+    * ``confidence``: a number between 1 and 100 that represents how confident the signature writer is that this signature will not be raised as a false positive.
+    * ``weight``: a number used for calculating the `malscore` of a submission. This attribute acts as a multiplier of the product of severity and confidence.
+    * ``categories``: a list of categories that describe the type of event being matched (for example "*banker*", "*injection*" or "*anti-vm*"). For a list of all categories, see :ref:`Categories`.
     * ``families``: a list of malware family names, in case the signature specifically matches a known one.
     * ``authors``: a list of people who authored the signature.
     * ``references``: a list of references (URLs) to give context to the signature.
-    * ``enable``: if set to False the signature will be skipped.
+    * ``enabled``: if set to False the signature will be skipped.
     * ``alert``: if set to True can be used to specify that the signature should be reported (perhaps by a dedicated reporting module).
     * ``minimum``: the minimum required version of CAPE to successfully run this signature.
     * ``maximum``: the maximum required version of CAPE to successfully run this signature.
+    * ``ttps``: a list of MITRE ATT&CK IDs applicable to this signature.
+    * ``mbcs``: a list of MITRE Malware Behavior Catalog IDs applicable to this signature.
 
-In our example, we would create the following skeleton:
+In our example, we will create the following skeleton:
 
     .. code-block:: python
         :linenos:
 
         from lib.cuckoo.common.abstracts import Signature
 
-        class BadBadMalware(Signature): # We initialize the class inheriting Signature.
+        class BadBadMalware(Signature): # We initialize the class by inheriting Signature.
             name = "badbadmalware" # We define the name of the signature
             description = "Creates a mutex known to be associated with Win32.BadBadMalware" # We provide a description
             severity = 3 # We set the severity to maximum
@@ -142,10 +148,10 @@ In our example, we would create the following skeleton:
         def run(self):
             return
 
-This is a perfectly valid signature. It doesn't really do anything yet,
+This is a perfectly valid signature. It doesn't do anything yet,
 so now we need to define the conditions for the signature to be matched.
 
-As we said, we want to match a particular mutex name, so we proceed as follows:
+Since we want to match a particular mutex name, we use the helper function `check_mutex`:
 
     .. code-block:: python
         :linenos:
@@ -164,10 +170,10 @@ As we said, we want to match a particular mutex name, so we proceed as follows:
         def run(self):
             return self.check_mutex("i_am_a_malware")
 
-Simple as that, now our signature will return ``True`` whether the analyzed
+It's as simple as that! Now our signature will return ``True`` if the analyzed
 malware was observed opening the specified mutex.
 
-If you want to be more explicit and directly access the global container,
+If you want to be more explicit and directly access the **global container**,
 you could translate the previous signature in the following way:
 
     .. code-block:: python
@@ -195,9 +201,9 @@ Evented Signatures
 ==================
 
 Since version 1.0, CAPE provides a way to write more high-performance signatures.
-In the past every signature was required to loop through the whole collection of API calls
+In the past, every signature was required to loop through the whole collection of API calls
 collected during the analysis. This was necessarily causing some performance issues when such
-collection would be of a large size.
+a collection would be large.
 
 CAPE now supports both the old model as well as what we call "evented signatures".
 The main difference is that with this new format, all the signatures will be executed in parallel
@@ -257,18 +263,18 @@ An example signature using this technique is the following:
                 return None
 
 The inline comments are already self-explanatory.
-You can find many more example of both evented and traditional signatures in our `community repository`_.
+You can find many more examples of both evented and traditional signatures in our `community repository`_.
 
-.. _`community repository`:https://github.com/kevoreilly/community
+.. _`community repository`: https://github.com/kevoreilly/community
 
 Matches
 =======
 
-Starting from version 1.2, signatures are able to log exactly what triggered
+Starting from version 1.2, signatures can log exactly what triggered
 the signature. This allows users to better understand why this signature is
 present in the log, and to be able to better focus malware analysis.
 
-Two helpers have been included in order to specify matching data.
+Two helpers have been included to specify matching data.
 
 .. function:: Signature.add_match(process, type, match)
 
@@ -320,6 +326,8 @@ Two helpers have been included in order to specify matching data.
         def on_complete(self):
             return self.has_matches()
 
+.. _Helpers:
+
 Helpers
 =======
 
@@ -474,3 +482,109 @@ Following is a list of available methods.
         :linenos:
 
         self.check_url(pattern="^.+\/load\.php\?file=[0-9a-zA-Z]+$", regex=True)
+
+.. _Categories:
+
+Categories
+==========
+You can put signatures into categories to facilitate grouping or sorting. You can create your own category if you wish, but
+it is easier for other users if you associate a signature
+with a category that already exists. Here is a list of all categories available:
+
+- `account`: Adds or manipulates an administrative user account.
+- `anti-analysis`: Constructed to conceal or obfuscate itself to prevent analysis.
+- `anti-av`: Attempts to conceal itself from detection by antivirus.
+- `anti-debug`: Attempts to detect if it is being debugged.
+- `anti-emulation`: Detects the presence of an emulator.
+- `anti-sandbox`: Attempts to detect if it is in a sandbox.
+- `anti-vm`: Attempts to detect if it is being run in virtualized environment.
+- `antivirus`: Antivirus hit. File is infected.
+- `banker`: Designed to gain access to confidential information stored or processed through online banking.
+- `bootkit`: Manipulates machine configurations that would affect the boot of the machine.
+- `bot`: Appears to be a bot or exhibits bot-like behaviour.
+- `browser`: Manipulates browser-settings in a suspicious way.
+- `bypass`: Attempts to bypass operating systems security controls (firewall, amsi, applocker, UAC, etc.)
+- `c2`: Communicates with a server controlled by a malicious actor.
+- `clickfraud`: Manipulates browser settings to allow for insecure clicking.
+- `command`: A suspicious command was observed.
+- `credential_access`: Uses techniques to access credentials.
+- `credential_dumping`: Uses techniques to dump credentials.
+- `cryptomining`: Facilitates mining of cryptocurrency.
+- `discovery`: Uses techniques for discovery information about the system, the user, or the environment.
+- `dns`: Uses suspicious DNS queries.
+- `dotnet`: .NET code is used in a suspicious manner.
+- `downloader`: Trojan that downloads installs files.
+- `dropper`: Trojan that drops additional malware on an affected system.
+- `encryption`: Encryption algorithms are used for obfuscating data.
+- `evasion`: Techniques are used to avoid detection.
+- `execution`: Uses techniques to execute harmful code or create executables that could run harmful code.
+- `exploit`: Exploits an known software vulnerability or security flaw.
+- `exploit_kit`: Programs designed to crack or break computer and network security measures.
+- `generic`: Basic operating system objects are used in suspicious ways.
+- `infostealer`: Collects and disseminates information such as login details, usernames, passwords, etc.
+- `injection`: Input is not properly validated and gets processed by an interpreter as part of a command or query.
+- `keylogger`: Monitoring software detected.
+- `lateral`: Techniques used to move through environment and maintain access.
+- `loader`: Download and execute additional payloads on compromised machines.
+- `locker`: Prevents access to system data and files.
+- `macro`: A set of commands that automates a software to perform a certain action, found in Office macros.
+- `malware`: The file uses techniques associated with malicious software.
+- `martians`: Command shell or script process was created by unexpected parent process.
+- `masquerading`: The name or location of an object is manipulated to evade defenses and observation.
+- `network`: Suspicious network traffic was observed.
+- `office`: Makes API calls not consistent with expected/standard behaviour.
+- `packer`: Compresses, encrypts, and/or modifies a malicious file's format.
+- `persistence`: Technique used to maintain presence in system(s) across interruptions that could cut off access.
+- `phishing`: Techniques were observed that attempted to obtain information from the user.
+- `ransomware`: Designed to block access to a system until a sum of money is paid.
+- `rat`: Designed to provide the capability of covert surveillance and/or unauthorized access to a target.
+- `rootkit`: Designed to provide continued privileged access to a system while actively hiding its presence.
+- `static`: A suspicious characteristic was discovered during static analysis.
+- `stealth`: Leverages/modifies internal processes and settings to conceal itself.
+- `trojan`: Presents itself as legitimate in attempt to infiltrate a system.
+- `virus`: Malicious software program.
+
+Troubleshooting
+===============
+No signatures
+-------------
+
+Whenever you submit a sample for analysis, when it finishes you should be able to inspect the identified signatures. If you see the *No signatures* message, you might need to download or update them. Example from the web interface:
+
+    .. image:: ../_images/screenshots/no_signatures.png
+        :align: center
+
+
+If no signatures are showing when executing a given report, you must use the ``utils/community.py`` tool so as to download them:: 
+
+$ sudo -u cape poetry run python3 utils/community.py -waf
+
+If the execution of the script does not end successfully, make sure you solve it. For example::
+
+    Installing REPORTING
+    File "/opt/CAPEv2/modules/reporting/__init__.py" installed
+    File "/opt/CAPEv2/modules/reporting/elasticsearchdb.py" installed
+    Traceback (most recent call last):
+      File "/opt/CAPEv2/utils/community.py", line 257, in <module>
+        main()
+      File "/opt/CAPEv2/utils/community.py", line 252, in main
+        install(enabled, args.force, args.rewrite, args.file, args.token)
+      File "/opt/CAPEv2/utils/community.py", line 180, in install
+        open(filepath, "wb").write(t.extractfile(member).read())
+    PermissionError: [Errno 13] Permission denied: '/opt/CAPEv2/modules/reporting/elasticsearchdb.py'
+
+happened because ``elasticsearchdb.py`` did not belong to `cape:cape` but to `root:root`.
+
+After *chowning* it to `cape:cape`, the script finished successfully. You should now see in the report page something similar to this: 
+
+    .. image:: ../_images/screenshots/signatures.png
+        :align: center
+
+Errors/warnings in the logs
+---------------------------
+
+If you ever face errors or warnings in the logs related to the signatures module (like `Signature spawns_dev_util crashing after update <https://github.com/kevoreilly/CAPEv2/issues/1261>`_)), chances are high you must update the signatures you are working with. To do so, just run the ``community``` utility like so::
+
+$ sudo -u cape poetry run python3 community.py -waf -cr
+
+
diff --git a/docs/book/src/development/code_style.rst b/docs/book/src/development/code_style.rst
index f1fb7a8fa94..955f4d81bf6 100644
--- a/docs/book/src/development/code_style.rst
+++ b/docs/book/src/development/code_style.rst
@@ -2,7 +2,7 @@
 Coding Style
 ============
 
-In order to contribute code to the project, you must diligently follow the
+To contribute code to the project, you must diligently follow the
 style rules describe in this chapter. Having a clean and structured code is
 very important for our development lifecycle, and not compliant code will
 most likely be rejected.
@@ -27,18 +27,18 @@ Indentation
 -----------
 
 The code must have a 4-spaces-tabs indentation.
-Since Python enforce the indentation, make sure to configure your editor
+Since Python enforces the indentation, make sure to configure your editor
 properly or your code might cause malfunctioning.
 
 Maximum Line Length
 -------------------
 
-Limit all lines to a maximum of 79 characters.
+Limit all lines to a maximum of 132 characters.
 
 Blank Lines
 -----------
 
-Separate the class definition and the top level function with one blank line.
+Separate the class definition and the top-level function with one blank line.
 Methods definitions inside a class are separated by a single blank line::
 
     class MyClass:
@@ -98,7 +98,7 @@ In your module add::
 
 And use the ``log`` handle, for more details refer to the Python documentation.
 
-In case you really need to print a string to standard output, use the
+In case you need to print a string to standard output, use the
 ``print()`` function::
 
     print("foo")
@@ -110,7 +110,7 @@ In case you really need to print a string to standard output, use the
 Checking for keys in data structures
 ------------------------------------
 
-When checking for a key in a data structure use the clause "in" for example::
+When checking for a key in a data structure, use the clause "in" for example::
 
     if "bar" in foo:
         do_something(foo["bar"])
@@ -119,7 +119,7 @@ Exceptions
 ==========
 
 Custom exceptions must be defined in the *lib/cuckoo/common/exceptions.py* file
-or in the local module if the exception should not be global.
+or the local module if the exception should not be global.
 
 The following is the current CAPE exceptions chain::
 
@@ -160,7 +160,7 @@ When catching an exception and accessing its handle, use ``as e``::
     except Exception, something:
         bar()
 
-It's a good practice use "e" instead of "e.message".
+It's a good practice to use "e" instead of "e.message".
 
 Documentation
 =============
@@ -172,11 +172,56 @@ Additional comments may be added in logical blocks to make the code easier to un
 Automated testing
 =================
 
-We believe in automated testing to provide high quality code and avoid dumb
+We believe in automated testing to provide high-quality code and avoid dumb
 bugs.
 When possible, all code must be committed with proper unit tests. Particular
 attention must be placed when fixing bugs: it's good practice to write unit
 tests to reproduce the bug.
 All unit tests and fixtures are placed in the tests folder in the CAPE
 root.
-We adopted `Nose <http://nose.readthedocs.org/en/latest/>`_ as unit testing framework.
+We adopted `pytest <https://docs.pytest.org/en>`_ as the unit testing framework.
+
+Github actions
+==============
+Automated tests run as `github actions <https://github.com/features/actions>`_ ;
+see the ``.github`` directory.
+
+You may wish to run github actions locally. A tool that may help is
+`Nektos act <https://nektosact.com/>`_.
+One of the installation options for ``act`` is as a plugin for the
+`github CLI, <https://cli.github.com/>`_ and the actions are then triggered by
+``gh act``.
+
+As input for ``act`` it's often helpful to create a simulated github event, and
+save it as an input file.
+
+Example::
+
+    {
+      "act": true,
+      "repository" : {
+        "default_branch": "master"
+      }
+    }
+
+So to run the actions that normally are triggered by a push event::
+
+   gh act -s GITHUB_TOKEN="$(gh auth token)" --eventpath /tmp/github-event.json
+
+and to run the actions that are scheduled::
+
+   gh act schedule -s GITHUB_TOKEN="$(gh auth token)" --eventpath /tmp/github-event.json
+
+We created a file ``.actrc`` containing ``--env CAPE_AS_ROOT=1`` because ``act`` runs the tests
+as root, and otherwise the tests would exit saying you cannot run CAPE as root.
+
+Poetry and pre-commit hooks
+===========================
+
+After cloning the git repository, the first commands that you should do::
+
+    poetry install
+    poetry run pre-commit install
+
+This will install the pre-commit hooks, ensuring that all files have to conform
+to black and isort.
diff --git a/docs/book/src/development/current_module_improvement.rst b/docs/book/src/development/current_module_improvement.rst
index 31ce3ea856c..708597f9021 100644
--- a/docs/book/src/development/current_module_improvement.rst
+++ b/docs/book/src/development/current_module_improvement.rst
@@ -20,6 +20,6 @@ Suricata name detection
     CUCKOO_ROOT = os.path.join(os.path.abspath(os.path.dirname(__file__)), "..")
     sys.path.append(CUCKOO_ROOT)
 
-    from lib.cuckoo.core.plugins import get_suricata_family
+    from lib.cuckoo.common.suricata_detection import get_suricata_family
     # Signature example: "ET MALWARE Sharik/Smoke CnC Beacon 11"
     print(get_suricata_family(signature_string))
diff --git a/docs/book/src/development/development_notes.rst b/docs/book/src/development/development_notes.rst
index 8187f41e432..3484a802416 100644
--- a/docs/book/src/development/development_notes.rst
+++ b/docs/book/src/development/development_notes.rst
@@ -9,7 +9,7 @@ CAPE Sandbox source code is available in our `official git repository`_.
 
 .. _`official git repository`: https://github.com/kevoreilly/CAPEv2
 
-Up until version 1.0 we used to coordinate all ongoing development in a
+Up until version 1.0, we used to coordinate all ongoing development in a
 dedicated "development" branch and we've been exclusively merging pull requests
 in such branch.
 Since version 1.1 we moved development to the traditional "master" branch and we
@@ -21,8 +21,8 @@ Release Versioning
 
 CAPE releases are named using three numbers separated by dots, such as 1.2.3,
 where the first number is the release, the second number is the major version,
-the third number is the bugfix version.
-The testing stage from git ends with "-beta" and development stage with "-dev".
+and the third number is the bugfix version.
+The testing stage from git ends with "-beta" and the development stage with "-dev".
 
     .. warning::
 
@@ -30,7 +30,7 @@ The testing stage from git ends with "-beta" and development stage with "-dev".
         meant to be an official release, therefore we don't guarantee its functioning
         and we don't generally provide support.
         If you think you encountered a bug there, make sure that the nature of the
-        problem is not related to your own misconfiguration and collect all the details
+        problem is not related to your misconfiguration and collect all the details
         to be notified to our developers. Make sure to specify which exact version you
         are using, eventually with your current git commit id.
 
@@ -46,6 +46,6 @@ Contribute
 ==========
 
 To submit your patch just create a Pull Request from your GitHub fork.
-If you don't now how to create a Pull Request take a look to `GitHub help`_.
+If you don't know how to create a Pull Request take a look at `GitHub help`_.
 
 .. _`GitHub help`: https://help.github.com/articles/using-pull-requests/
diff --git a/docs/book/src/faq/index.rst b/docs/book/src/faq/index.rst
index b884a524b20..1aecbdc7a5b 100644
--- a/docs/book/src/faq/index.rst
+++ b/docs/book/src/faq/index.rst
@@ -5,7 +5,6 @@ FAQ
 Frequently Asked Questions:
 
     * :ref:`analyze_urls`
-    * :ref:`general_volatility`
     * :ref:`esxi_reqs`
     * :ref:`troubles_upgrade`
     * :ref:`troubles_problem`
@@ -21,15 +20,6 @@ Can I analyze URLs with CAPE?
 
 Yes you can. But modern browsers has a lot of problems
 
-.. _general_volatility:
-
-Can I use Volatility v3 with CAPE?
----------------------------------
-
-SOON ;)
-
-.. _`Volatility`: https://github.com/volatilityfoundation/volatility3/
-
 .. _esxi_reqs:
 
 What I need to use CAPE with VMware ESXi?
@@ -37,7 +27,7 @@ What I need to use CAPE with VMware ESXi?
 
 To run with VMware vSphere Hypervisor (or ESXi) CAPE levareges on libvirt.
 Libivirt is currently using VMware API to take control over virtual machines,
-althogh these API are available ony in licensed version.
+although these API are available ony in licensed version.
 In VMware vSphere free edition, these API are read only, so you are unable
 to use CAPE with it.
 For the minimum license needed, please have a look at VMware website.
@@ -88,6 +78,9 @@ the development and fixing of actual bugs.
     * Spend some of your own time trying fixing the issues before asking ours, you
       might even get to learn and understand CAPE better.
 
+.. _`Community`: https://github.com/kevoreilly/community
+.. _`Google`: https://www.google.com/
+
 Long story short: use the existing resources, put some efforts into it and don't
 abuse people.
 
@@ -169,7 +162,7 @@ At CAPE startup if you get an error message like this one::
     2014-01-07 18:42:12,686 [root] CRITICAL: CuckooCriticalError: Unable to bind result server on 192.168.56.1:2042: [Errno 99] Cannot assign requested address
 
 It means that CAPE is unable to start the result server on the IP address written
-in cuckoo.conf (or in machinery.conf if you are using the resultserver_ip option inside).
+in cuckoo.conf (or in :ref:`machinery_conf` if you are using the resultserver_ip option inside).
 This usually happen when you start CAPE without bringing up the virtual interface associated
 with the result server IP address.
 You can bring it up manually, it depends from one virtualization software to another, but
diff --git a/docs/book/src/finalremarks/index.rst b/docs/book/src/finalremarks/index.rst
index de122dadbef..7a29d86c4ec 100644
--- a/docs/book/src/finalremarks/index.rst
+++ b/docs/book/src/finalremarks/index.rst
@@ -18,18 +18,21 @@ Please read the following rules before posting:
 
  * Before posting, Google about your issue. **DO NOT** post questions that
    have already been answered over and over everywhere.
- * Posting messages saying just something like "Doesn't work, help me" are completely
+ * Posting messages saying just something like "Doesn't work, help me" is completely
    useless. If something is not working report the error, paste the logs,
    the config file, the information on the virtual machine, the
    results of the troubleshooting, etc. Give context. We are not wizards and we
    don't have a crystal ball.
- * Use a proper title. Stuff like "Doesn't work", "Help me", "Error" are not
+ * Use a proper title. Stuff like "Doesn't work", "Help me", and "Error" are not
    proper titles.
  * Try to use `pastebin.com`_, `pastie.org`_ or similar services to paste
    logs and configs: makes the message more readable.
  * **Github issues**. Please read the `Markdown`_
-   documentation before posting, how to escape and post configs as code block.
+   documentation before posting for tips on how to escape and post configs as code blocks.
 
+.. _pastebin.com: https://pastebin.com/
+.. _pastie.org: http://pastie.org/
+.. _Markdown: https://docs.github.com/en/get-started/writing-on-github/getting-started-with-writing-and-formatting-on-github/basic-writing-and-formatting-syntax
 
 Support Us
 ==========
@@ -38,14 +41,14 @@ CAPE Sandbox is a completely open source software, released freely to the public
 and developed mostly during free time by volunteers. If you enjoy it and want to
 see it kept developed and updated, please consider supporting us.
 
-We are always looking for financial support, hardware support and contributions of
+We are always looking for financial support, hardware support, and contributions of
 any sort. If you're interested in cooperating, feel free to contact us.
 
 People
 ======
 
-CAPE Sandbox is an open source project result of the efforts and contributions
-of a lot of people who enjoyed volunteering some of their time for a greater
+CAPE Sandbox is an open source project resulting from the efforts and contributions
+of a lot of people who enjoyed volunteering some of their time for the greater
 good :).
 
 Active Developers
diff --git a/docs/book/src/installation/guest/additional_configuration.rst b/docs/book/src/installation/guest/additional_configuration.rst
new file mode 100644
index 00000000000..63d7b4a87a6
--- /dev/null
+++ b/docs/book/src/installation/guest/additional_configuration.rst
@@ -0,0 +1,37 @@
+.. _additional_configuration:
+
+=============================================
+Additional Configuration
+=============================================
+
+In this chapter we will enumerate several recommendations so as to make your Guest virtual machine as stealthy and operational as it gets. Additionally, we intend to address some of the most common problems that may arise.
+
+Windows Guest
+=============
+
+Windows Debloating
+------------------
+There exist some tools that automatically try to debloat your Windows instance. That is, uninstalling lots of pre-installed software and disabling intrusive features of Windows. The purpose of these tools is optimization, performance, security or all of these. In the context of CAPE, they're useful to reduce noise and the probability of malware not detonating. Examples of these tools are `Debloat-Windows-10 <https://github.com/W4RH4WK/Debloat-Windows-10>`_ or `BlackBird <https://www.getblackbird.net/>`_. You can find a larger list `here <https://github.com/RazviOverflow/Malware_Resources?tab=readme-ov-file#windows-debloating-performance-privacy-optimization>`_.
+
+.. note::
+	It is recommended to use any of these tools to disable as much noise as possible. Remember to create a snapshot before executing them.
+
+Disable Microsoft Store
+-----------------------
+
+Sometimes the Microsoft Store opens up as soon as an analysis starts. In order to disable it, you can remove the environment variable ``%USERPROFILE%\AppData\Local\Microsoft\WindowsApps`` from the user ``PATH``, as specified in `this issue (#1237) <https://github.com/kevoreilly/CAPEv2/issues/1237#issuecomment-1308208474>`_.
+
+Reduce Overall Noise
+--------------------
+
+Sometimes disabling all Windows services (like UAC, defender, update, aero, firewall, etc...) is necessary in order to make the analysis as fluent as possible.
+Make sure you check this `script`_ out and use it to get rid of all unnecessary noise. This is just an example. Your VM may require a different configuration in order to reduce or delete any Windows noise.
+
+.. _script: https://github.com/kevoreilly/CAPEv2/blob/master/installer/disable_win7noise.bat
+
+Windows automatically enables the Virus Real-time Protection
+------------------------------------------------------------
+
+One possible annoying behavior of Windows occurs when it automatically enables the real-time protection whenever an analysis is started therefore deleting the sample (if it identifies the sample as malware).
+
+To definitely turn it off you can follow one or more options listed in `this site <https://www.tenforums.com/tutorials/3569-turn-off-real-time-protection-microsoft-defender-antivirus.html>`_.
diff --git a/docs/book/src/installation/guest/agent.rst b/docs/book/src/installation/guest/agent.rst
index eaa81a72877..ebdb1255835 100644
--- a/docs/book/src/installation/guest/agent.rst
+++ b/docs/book/src/installation/guest/agent.rst
@@ -2,20 +2,90 @@
 Installing the Agent
 ====================
 
-This agent is designed to be cross-platform, therefore you should be able
-to use it on Windows as well as on Linux and OS X.
-In order to make CAPE work properly, you'll have to install and start this agent.
+The CAPE agent is designed to be cross-platform, therefore you should
+be able to use it on Windows as well as on Linux and OS X. To make
+CAPE work properly, you'll have to install and start this agent on
+every guest.
 
-It's very simple.
+In the *agent/* directory you will find an *agent.py* file, just copy
+it to the Guest operating system (in whatever way you want, perhaps in
+a temporary shared folder, downloading it from a Host webserver, or
+mounting a CDROM containing the *agent.py* file) and run it. This will
+launch the HTTP server which will listen for connections.
 
-In the *agent/* directory you will find and *agent.py* file, just copy it
-to the Guest operating system (in whatever way you want, perhaps a temporary
-shared folder or by downloading it from a Host webserver) and run it.
-This will launch the HTTP server which will be listening for connections.
+.. important::
+   It is a **MUST** to launch ``agent.py/w`` with **elevated privileges**. One of the (arguably) easiest way of doing so is creating a Scheduled Task, as explained further below in this page.
 
-On Windows simply launching the script will also spawn a Python window, if
-you want to hide it you can rename the file from *agent.py* to **agent.pyw**
-which will prevent the window from spawning.
+On Windows, if you simply launch the script, a Python window will be
+spawned, with a title similar to ``C:\Windows\py.exe``. If you want to hide this window you can rename the file from
+*agent.py* to **agent.pyw** which will prevent the window from
+spawning upon launching the script. 
 
-If you want the script to be launched at Windows' boot, just place the file in
-the `Startup` folder, add to autorun service, etc see how malware does it for tricks ;).
+.. warning::
+   It is **encouraged** to use the agent in its window-less version (``.pyw`` extension) 
+   given that opening a ``cmd`` window will definitely interfere with `human.py <https://github.com/kevoreilly/CAPEv2/blob/master/analyzer/windows/modules/auxiliary/human.py>`_, causing 
+   several problems like blocking the `agent.py <https://github.com/kevoreilly/CAPEv2/blob/master/agent/agent.py>`_. communication with the host or 
+   producing no **behavioral analysis** output, just to mention some.
+
+Don't forget to test the agent before saving the snapshot. You can do it both navigating to ``VM_IP:8000`` with a browser from your Host or be executing: ``curl VM_IP:8000``. You should see an output similar to the following:
+
+.. image:: ../../_images/screenshots/running_agentpy_within_guest_0.png
+     :align: center
+
+.. image:: ../../_images/screenshots/running_agentpy_within_guest_1.png
+     :align: center
+
+
+Prior To Windows 10
+===================
+
+If you want the script to be launched at Windows' boot, place the file
+in the admin startup folder. To access this folder, open the app
+launcher with **Win+R** and search for "shell:common startup" which
+will open the folder you want (usually
+``C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp``). Do
+not place the agent in the user startup folder (usually
+``C:\Users\<Username>\AppData\Roaming\Microsoft\Windows\Start
+Menu\Programs\Startup``) as it will launch the agent without admin
+privileges and therefore insufficient permissions resulting in the
+agent not being able to work as intended.
+
+Windows 10+
+===========
+
+.. note:: Using the scheduler as documented below is not **strictly necessary**. It is sufficient to take a snapshot with the agent running.
+
+To start the script at boot, you will need to set the agent to be run
+as a scheduler task. Dropping it in
+``C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp`` will
+result in it being ran with improper privilege.
+
+..
+   1. Go to "Control Panel" > "System and Security" > "Administrative
+   Tools" to access Task Scheduler.
+
+1. Open Windows menu (Win key) and search for **Task Scheduler**.
+2. Select **Create Basic Task** from the action list.
+
+   .. image:: ../../_images/screenshots/creating_task_scheduler_0.png
+        :align: center
+
+3. Give the task a name (for example ``pizza.pyw``, the name is irrelevant as long as you don't make any mention to CAPE or anything blatant for anti-VM detection algorithms) and click **Next**.
+4. Set the trigger as **When I logon** and click **Next**.
+5. In the **Action** window, select **Start a program** and click **Next**.
+6. In the **Start a program** window, select the path of the *agent.py*, and click **Finish**.
+7. After the task is created, click the **Task Scheduler Library** and
+   find the one you just created. Right click on it and select
+   **Properties**.
+
+   .. image:: ../../_images/screenshots/creating_task_scheduler_1.png
+        :align: center
+
+8. In the general tab tell it to **Run with highest privileges**.
+
+   .. image:: ../../_images/screenshots/creating_task_scheduler_2.png
+        :align: center
+
+9. Select **OK**.
+
+After that all is done, it will come up on the next restart/login.
diff --git a/docs/book/src/installation/guest/cloning.rst b/docs/book/src/installation/guest/cloning.rst
index 769894474cd..dc2a91ddaf7 100644
--- a/docs/book/src/installation/guest/cloning.rst
+++ b/docs/book/src/installation/guest/cloning.rst
@@ -2,11 +2,19 @@
 Cloning the Virtual Machine
 ===========================
 
-In case you planned to use more than one virtual machine, there's no need to
-repeat all the steps done so far: you can clone it. In this way you'll have
+If you want to use more than one virtual machine based on a single "golden image", there's no need to
+repeat all the steps done so far: you can clone it. This way you'll have
 a copy of the original virtualized Windows with all requirements already
 installed.
 
-The new virtual machine will also contain all the settings of the original one,
-which is not good. Now you need to proceed repeating the steps explained in
-:doc:`network`, :doc:`agent` and :doc:`saving` for this new machine.
+There is a `Python command-line utility`_ available that can automate this process for you.
+
+.. _Python command-line utility: https://github.com/CAPESandbox/community/blob/master/utils/clone-machines.py
+
+The new virtual machine will also contain all of the settings of the original one,
+which is not good. Now you need to proceed by repeating the steps explained in
+:doc:`network`, :doc:`agent`, and :doc:`saving` for this new machine.
+
+One alternative to manually make the clones unique is to enable the disguise auxiliary module, windows_static_route and windows_static_route_gateway in conf/auxiliary.conf.
+The auxiliary option is applicable to dnsmasq user which can't set the default gateway there because of the usage of an isolated routing in kvm.
+One could run it once and snapshot to apply the modification or running the auxiliary module at every analysis.
diff --git a/docs/book/src/installation/guest/creation.rst b/docs/book/src/installation/guest/creation.rst
index bed6495e40d..945e63736ad 100644
--- a/docs/book/src/installation/guest/creation.rst
+++ b/docs/book/src/installation/guest/creation.rst
@@ -2,11 +2,11 @@
 Creation of the Virtual Machine
 ===============================
 
-Once you have :doc:`properly installed <../host/requirements>` your virtualization
-software, you can proceed on creating all the virtual machines you need.
+Once you have :doc:`properly installed <../host/installation>` your virtualization
+software, you can create the virtual machines that you need.
 
-Using and configuring your virtualization software is out of the scope of this
-guide, so please refer to the official documentation.
+The usage and configuration of your virtualization software is out of scope for this
+guide, so please refer to the virtualization software's official documentation.
 
     .. note::
 
@@ -16,14 +16,14 @@ guide, so please refer to the official documentation.
 
     .. note::
 
-        For analysis purposes you are recommended  Windows 7 with User
-        Access Control disabled. CAPE supports Windows 10 too
+        For analysis purposes, it is recommended to use Windows 10 21H2 with User
+        Access Control disabled.
 
     .. note::
 
-        KVM Users - Be sure to choose a hard drive image format that supports snapshots(QCOW2).
+        KVM Users - Be sure to choose a hard drive image format that supports snapshots, such as QCOW2.
         See :doc:`saving`
         for more information.
 
 When creating the virtual machine, CAPE doesn't require any specific
-configuration. You can choose the options that best fit your needs.
+configuration. Choose the options that best fit your needs.
diff --git a/docs/book/src/installation/guest/index.rst b/docs/book/src/installation/guest/index.rst
index ec392f476e5..668be17761f 100644
--- a/docs/book/src/installation/guest/index.rst
+++ b/docs/book/src/installation/guest/index.rst
@@ -1,19 +1,23 @@
+.. _preparing_the_guest:
+
 ===================
 Preparing the Guest
 ===================
 
-At this point you should have configured the CAPE host component and you
+At this point, you should have configured the CAPE host component and you
 should have designed and defined the number and the names of the virtual
 machines you are going to use for malware execution.
 
-Now it's time to create such machines and to configure them properly.
+Now it's time to create such machines and configure them properly.
 
 .. toctree::
 
     creation
     requirements
-    network
     agent
+    additional_configuration
+    network
+    troubleshooting
     saving
     cloning
-
+    linux
diff --git a/docs/book/src/installation/guest/linux.rst b/docs/book/src/installation/guest/linux.rst
index 238b89d1846..460b06a3b57 100644
--- a/docs/book/src/installation/guest/linux.rst
+++ b/docs/book/src/installation/guest/linux.rst
@@ -1,20 +1,21 @@
-=========================
-Installing the Linux host
-=========================
+==========================
+Installing the Linux guest
+==========================
 
-First prepare the networking for your machinery platform on the host side.
+Linux guests doesn't have official CAPAE support!
+First, prepare the networking for your machinery platform on the host side.
 
 .. This has not been tested recently:
 
 Sparc and PowerPC dependencies::
-    $ sudo apt-get install openbios-spark openbios-ppc
+    $ sudo apt-get install openbios-sparc openbios-ppc
 
 Next, get the list of virtual machines for which to configure the interface
 from ``conf/qemu.conf``.
 For example, ``ubuntu_x32``, ``ubuntu_x64``, ``ubuntu_arm``, ``ubuntu_mips``,
 ``ubuntu_mipsel``, et cetera.
-For each VM, preconfigure a network tap interfaces on the host, required to
-avoid have to start as root, e.g.::
+For each VM, preconfigure a network tap interface on the host, required to
+avoid having to start as root, e.g.::
 
     $ sudo ip tuntap add dev tap_ubuntu_x32 mode tap user cape
     $ sudo ip link set tap_ubuntu_x32 master br0
@@ -27,81 +28,50 @@ avoid have to start as root, e.g.::
     $ sudo ip link set dev br0 up
 
 **Note that if you run CAPE as a different user, replace ``cape`` after -u
-with your user. You also have script in utils/linux_mktaps.sh**
+with your user. You also have a script in utils/linux_mktaps.sh**
 
 
-Preparing x32/x64 Ubuntu 17.10 Linux guests
+Preparing x32/x64 Linux guests
 ===========================================
 
-Install support files dependencies::
+    .. warning::
+
+        For Linux guests on an Azure hypervisor, installing Python3 32-bit breaks the way that the Azure agent starts: https://docs.microsoft.com/en-us/azure/virtual-machines/extensions/agent-linux#installation.
+        So the use of the monitor is limited to what can be run with the 64-bit version of Python3. You will have to comment out the architecture check in the CAPE `agent.py` for the CAPE agent to start. To
+        reiterate, this warning is only relevant if you are using an Azure hypervisor.
+
+x32 guests
+----------
+Install support file dependencies::
 
     $ sudo apt update
-    $ sudo apt install python3-pip
-    $ pip3 install pyinotify
-    $ pip3 install pillow       # optional
-    $ pip3 install pyscreenshot # optional
+    $ sudo apt install python3-pip systemtap-runtime
+    $ sudo pip3 install pyinotify
+    $ sudo pip3 install Pillow       # optional
+    $ sudo pip3 install pyscreenshot # optional
+    $ sudo pip3 install pyautogui    # optional
 
-(For x64 architectures) Install python3 32 bits::
+x64 guests
+----------
+Install support file dependencies (we need Python3 32-bit)::
 
     $ sudo dpkg --add-architecture i386
     $ sudo apt update
-    $ sudo apt install python3:i386
-	
+    $ sudo apt install python3:i386 -y
+    $ sudo apt install python3-distutils -y
+    $ sudo apt install systemtap-runtime -y
+    $ curl -sSL https://bootstrap.pypa.io/get-pip.py -o get-pip.py
+    $ sudo python3 get-pip.py
+    $ sudo python3 -m pip install pyinotify
+    $ sudo python3 -m pip install Pillow       # optional
+    $ sudo python3 -m pip install pyscreenshot # optional
+    $ sudo python3 -m pip install pyautogui    # optional
+
 Ensure the agent automatically starts. The easiest way is to add it to crontab::
 
     $ sudo crontab -e
     @reboot python3 /path/to/agent.py
 
-Install dependencies inside of the virtual machine::
-
-    $ sudo apt-get install systemtap gcc patch linux-headers-$(uname -r)
-
-Install kernel debugging symbols::
-
-    $ sudo apt-key adv --keyserver keyserver.ubuntu.com --recv-keys C8CAB6595FDFF622
-
-    $ codename=$(lsb_release -cs)
-    $ sudo tee /etc/apt/sources.list.d/ddebs.list << EOF
-      deb http://ddebs.ubuntu.com/ ${codename}          main restricted universe multiverse
-      #deb http://ddebs.ubuntu.com/ ${codename}-security main restricted universe multiverse
-      deb http://ddebs.ubuntu.com/ ${codename}-updates  main restricted universe multiverse
-      deb http://ddebs.ubuntu.com/ ${codename}-proposed main restricted universe multiverse
-    EOF
-
-    $ sudo apt-get update
-    $ sudo apt-get install linux-image-$(uname -r)-dbgsym
-
-(For Debian 9 amd64) Install kernel debugging symbols::
-
-    $ sudo apt-get install linux-image-$(uname -r)-dbg
-
-Patch the SystemTap tapset, so that the CAPE analyzer can properly parse the
-output::
-
-    $ wget https://raw.githubusercontent.com/kevoreilly/CAPEv2/master/extra/systemtap/expand_execve_envp.patch
-    $ wget https://raw.githubusercontent.com/kevoreilly/CAPEv2/master/extra/systemtap/escape_delimiters.patch
-    $ sudo patch /usr/share/systemtap/tapset/linux/sysc_execve.stp < expand_execve_envp.patch
-    $ sudo patch /usr/share/systemtap/tapset/uconversions.stp < escape_delimiters.patch
-
-Compile the kernel extension::
-
-    $ wget https://raw.githubusercontent.com/kevoreilly/CAPEv2/master/extra/systemtap/strace.stp
-    $ sudo stap -p4 -r $(uname -r) strace.stp -m stap_ -v
-
-Once the compilation finishes you should see the file ``stap_.ko`` in the same
-folder. You will now be able to test the STAP kernel extension as follows::
-
-    $ sudo staprun -v ./stap_.ko
-
-Output should be something like as follows::
-
-    staprun:insert_module:x Module stap_ inserted from file path_to_stap_.ko
-
-The ``stap_.ko`` file should be placed in /root/.cape::
-
-    $ sudo mkdir /root/.cape
-    $ sudo mv stap_.ko /root/.cape/
-
 Disable the firewall inside of the VM, if it exists::
 
     $ sudo ufw disable
@@ -113,20 +83,40 @@ Disable NTP inside of the VM::
 Disable auto-update for noise reduction::
 
     $ sudo tee /etc/apt/apt.conf.d/20auto-upgrades << EOF
-      APT::Periodic::Update-Package-Lists "0";
-      APT::Periodic::Unattended-Upgrade "0";
+    APT::Periodic::Update-Package-Lists "0";
+    APT::Periodic::Download-Upgradeable-Packages "0";
+    APT::Periodic::AutocleanInterval "0";
+    APT::Periodic::Unattended-Upgrade "0";
     EOF
-	
-If needed, kill the unattended-upgrade process using htop or ps + kill.
-	
-Optional - preinstalled remove software and configurations::
 
-    $ sudo apt-get purge update-notifier update-manager update-manager-core ubuntu-release-upgrader-core
-    $ sudo apt-get purge whoopsie ntpdate cups-daemon avahi-autoipd avahi-daemon avahi-utils
-    $ sudo apt-get purge account-plugin-salut libnss-mdns telepathy-salut
+    $ sudo systemctl stop snapd.service && sudo systemctl mask snapd.service
+
+If needed, kill the unattended-upgrade process using ``htop`` or ``ps`` + ``kill``.
+
+Optional - remove preinstalled software and configurations::
+
+    $ sudo apt-get purge update-notifier update-manager update-manager-core ubuntu-release-upgrader-core -y
+    $ sudo apt-get purge whoopsie ntpdate cups-daemon avahi-autoipd avahi-daemon avahi-utils -y
+    $ sudo apt-get purge account-plugin-salut libnss-mdns telepathy-salut -y
 
 It is recommended to configure the Linux guest with a static IP addresses.
 Make sure the machine entry in the configuration has the correct IP address and
 has the ``platform`` variable set to ``linux``.
 Create a snapshot once the VM has been configured.
 It is now ready for analysis!
+
+Community Feature - Tracee
+---
+
+*For more information about Tracee in CAPEv2 and how to install it, visit its integration page: :ref:`tracee`.*
+
+To use [Tracee eBPF event tracing](https://github.com/kevoreilly/CAPEv2/pull/2235) in Linux, you will have to install Docker and the Tracee container **in the Ubuntu guest**:
+
+```shell
+docker pull docker.io/aquasec/tracee:0.20.0
+docker image tag aquasec/tracee:0.20.0 aquasec/tracee:latest
+```
+
+Afterwards, enable Tracee using the appropriate options in auxiliary.conf and processing.conf and install the [CAPEv2 Community Repo](https://github.com/CAPESandbox/community). Here is a guide: https://capev2.readthedocs.io/en/latest/usage/utilities.html#community-download-utility.
+
+Tracee should be able to automatically highlight events such as fileless execution and syscall hooking.
diff --git a/docs/book/src/installation/guest/network.rst b/docs/book/src/installation/guest/network.rst
index 8ce81bad39e..694569545ec 100644
--- a/docs/book/src/installation/guest/network.rst
+++ b/docs/book/src/installation/guest/network.rst
@@ -1,93 +1,211 @@
+.. _Network Configuration:
+
 =====================
 Network Configuration
 =====================
 
-Now it's time to setup the network for your virtual machine.
+Now it's time to set up the network for your virtual machine.
 
 Windows Settings
 ================
 
-Before configuring the underlying networking of the virtual machine, you might
-want to tweak some settings inside Windows itself.
+.. note::
 
-One of the most important things to do is **disabling** *Windows Firewall* and the
-*Automatic Updates*. The reason behind this is that they can affect the behavior
-of the malware under normal circumstances and that they can pollute the network
-analysis performed by CAPE, by dropping connections or including irrelevant
-requests.
+    As was discussed in the :ref:`previous chapter <additional_configuration>`, any additional configuration like **disabling** the *Windows Firewall* and the *Automatic Updates* should be done before configuring the network as stated below. Given that VMs may be left without internet connection, it is convenient to download and make changes before this happens. The reason for turning off updates and firewall is that these features can affect the behavior of the malware under normal circumstances and they can pollute the network analysis performed by CAPE, by dropping connections or including irrelevant requests.
 
-You can do so from Windows' Control Panel as shown in the picture:
 
-    .. image:: ../../_images/screenshots/windows_security.png
+Windows 10
+==========
+To do so in Windows 10, open Control Panel and search for ``Windows Defender Firewall``. Disable it completely:
+
+.. image:: ../../_images/screenshots/guest_win10_disable_firewall.png
+    :align: center
+
+.. image:: ../../_images/screenshots/guest_win10_disable_firewall_1.png
+    :align: center
+
+The next step is disabling automatic updates. To do so, open Control Panel and search for ``Administrative Tools``. Open it, then open ``Services``. Look for the ``Windows Update`` entry and double-click on it. Set Startup type to disabled and click stop.
+
+.. image:: ../../_images/screenshots/guest_win10_disable_updates.png
         :align: center
 
+Windows XP
+==========
+
+You can do so from Windows' Control Panel as shown in the picture:
+
+.. image:: ../../_images/screenshots/windows_security.png
+    :align: center
+
 Virtual Networking
 ==================
 
-Now you need to decide how to make your virtual machine able to access Internet
+Now you need to decide whether you want your virtual machine to be able to access the Internet
 or your local network.
 
-In order to make it work properly you'll have to configure your machine's
+To make the virtual machine's networking work properly you'll have to configure your machine's
 network so that the Host and the Guest can communicate.
-Testing the network access by pinging a guest is a good practice, to make sure the
+
+Testing the network access by pinging a guest from the host is good practice, to make sure that the
 virtual network was set up correctly.
-Use only static IP addresses for your guest, as today CAPE doesn't support DHCP
-and using it will break your setup.
 
-This stage is very much up to your own requirements and to the
-characteristics of your virtualization software.
+Only use static IP addresses for your guests, since CAPE doesn't support DHCP (at least, as of this writing).
 
-    .. warning:: Virtual networking errors!
-        Virtual networking is a vital component for CAPE, you must be really
-        sure to get connectivity between host and guest.
-        Most of the issues reported by users are related to a wrong setup of
-        their networking.
-        If you aren't sure about that check your virtualization software
-        documentation and test connectivity with ping and telnet.
+.. warning:: The range ``192.168.122.0/24`` is the default range for KVM's first interface (usually ``virbr01``) and it can be used as an **ANTI VM** check. If you want to read more about ANTI VM checks and how to set up your VM, check this `KVM ANTIVM post`_. 
+
+    .. _`KVM ANTIVM post`: https://www.doomedraven.com/2016/05/kvm.html
 
 The recommended setup is using a Host-Only networking layout with proper
 forwarding and filtering configuration done with ``iptables`` on the Host.
 
-We have automated this for you with:
+We have automated this for you with::
 
     $ utils/rooter.py
 
+You can read more about ``rooter.py`` in its dedicated chapter: :ref:`rooter`.
+
+In the chapter `Setting a static IP`_ you will find the instructions for configuring a Windows guest OS to use a static IP. In the chapter `Creating an isolated network`_ you will find instructions on how to create an isolated network (usually referred to as ``hostonly``) network and use it in your virtual machine. You can find further instructions on creating VMs with Virtual Machine Manage in `this post`_.
+
+.. _this post: https://www.doomedraven.com/2020/04/how-to-create-virtual-machine-with-virt.html
+
+.. _Creating an isolated network:
+
+Creating an isolated network
+============================
+
+The recommended setup is using an isolated network for your VM. In order to do so, you can follow the instructions below if you are using KVM and virt-manager (Virtual Machine Manager).
+
+First, in the Virtual Machine Manager GUI click con **Edit** -> **Connection Details**.
+
+.. image:: ../../_images/screenshots/creating_isolated_network_0.png
+        :align: center
+
+In the opened window click on the **+** sign, at the bottom left corner of the image. We are now defining the details of the new network. Give it a name (hostonly, for example) and make sure you select **Isolated** mode. Then, click on the **IPv$ configuration** drop-down menu and define the range of your network. In the image below only the third octet is changed.
+
+.. image:: ../../_images/screenshots/creating_isolated_network_1.png
+        :align: center
+
+Once the new isolated network is created, if you already created a VM, you can select it from Virtual Machine Manager by clicking ``Show virtual hardware details`` of that specific VM. Then click on the network adapter and choose the recently created network. Then click ``Apply``.
+
+.. image:: ../../_images/screenshots/creating_isolated_network_2.png
+        :align: center
+
+The next thing is checking the new interface was indeed created and the VM is actually using it. From your Host, execute the following command from a command prompt::
+
+> ip a
+
+.. image:: ../../_images/screenshots/creating_isolated_network_3.png
+            :align: center
+
+There should be an interface with the IP address you specified while creating it. in the image above the specific interface is ``virbr1``.
+
+From the guest VM (Windows OS in this example) execute the following command from a command prompt::
+
+> ipconfig
+
+.. image:: ../../_images/screenshots/creating_isolated_network_4.png
+            :align: center
+
+The assigned IP should be in the range of the ``hostonly`` network. 
+
+The guest VM and host **must** have connectivity between them. In order to check it, you can use tools like ``ping`` or ``telnet.``
+
+.. image:: ../../_images/screenshots/creating_isolated_network_5.png
+            :align: center
+
+Please bear in mind that this time the IP is assigned via DHCP, something CAPE does not support. Please set a static IP for your VM. Next chapter has instructions on that.
+
+.. _Setting a static IP:
+
+Setting a static IP
+===================
+
+To set up a static IP it is first recommended to inspect the assigned IP, which will be (ideally) in the range of your interface (presumably y virbr0). To see your actual IP settings execute the following command from a command prompt::
+
+> ipconfig /all
+
+.. image:: ../../_images/screenshots/guest_win10_static_IP.png
+        :align: center
+
+.. note:: 
+    The IP addresses and ranges used throughout this chapter are just examples. Please make sure you use your own working configurations and addresses.
+
+Open ``Control Panel`` and search for ``Network``. Find and open the ``Network and Sharing Center``. Click ``Change adapter settings.``
+
+.. image:: ../../_images/screenshots/guest_win10_static_IP_1.png
+        :align: center
+
+Now open the Ethernet adapter and click ``Properties``.
+
+.. image:: ../../_images/screenshots/guest_win10_static_IP_2.png
+        :align: center
+
+Then click ``Internet Protocol Version 4 (TCP/IPv4)`` and ``Properties``. Set the IP address, Subnet mask, Default gateway and DNS Server according to the results of the ipconfig command.
+
+.. image:: ../../_images/screenshots/guest_win10_static_IP_3.png
+        :align: center
+
+
+.. note:: 
+    You can set as static IP address the address previously given by DHCP or any other address you like within the range of your interface.
+
+Wait a few seconds and you should have Internet access (in case you are using NAT. Bear in mind an isolated network will not provide Internet connection).
+
+It is important to check connectivity between the Host and the Guest, like in the previous chapter.
+
+This stage is very much up to your requirements and the
+characteristics of your virtualization software.
+
+.. warning:: Virtual networking errors!
+    Virtual networking is a vital component for CAPE. You must be
+    sure that connectivity works between the host and the guests.
+    Most of the issues reported by users are related to an incorrect networking setup.
+    If you aren't sure about your networking, check your virtualization software
+    documentation and test connectivity with ``ping`` and ``telnet``.
+
+
 Disable Noisy Network Services
 ==============================
 
-Windows 7 introduced new network services that create a lot of noise, and can hinder PCAP processing.
-Where's how to disable them:
+Windows 7 introduced new network services that create a lot of noise and can hinder PCAP processing.
+Disable them by following the instructions below.
 
 Teredo
 ======
 
-Open a command prompt as Administrator, and run:
+Open a command prompt as Administrator, and run::
 
-    netsh interface teredo set state disabled
+    > netsh interface teredo set state disabled
 
 
 Link Local Multicast Name Resolution (LLMNR)
 ============================================
 
-Open the Group Policy editor py typing ``gpedit.msc`` into the Start Menu search box, and press enter.
+Open the Group Policy editor by typing ``gpedit.msc`` into the Start Menu search box, and press Enter.
 Then navigate to Computer Configuration> Administrative Templates>
 Network> DNS Client, and open Turn off Multicast Name Resolution.
 
 Set the policy to enabled.
 
+``gpedit.msc`` missing
+======================
+
+.. warning:: If ``gpedit.msc`` is not present in your system (if you are using Windows 10 Home Edition, for example), you can enable it by executing the following commands from an Administrator command prompt::
+
+    > FOR %F IN ("%SystemRoot%\servicing\Packages\Microsoft-Windows-GroupPolicy-ClientTools-Package~*.mum") DO (DISM /Online /NoRestart /Add-Package:"%F")
+    > FOR %F IN ("%SystemRoot%\servicing\Packages\Microsoft-Windows-GroupPolicy-ClientExtensions-Package~*.mum") DO (DISM /Online /NoRestart /Add-Package:"%F")
+
+If the commands were successful, you should now be able to execute Run (Win+R) -> ``gpedit.msc``.
+
 
 Network Connectivity Status Indicator, Error Reporting, etc
 ===========================================================
 
-Windows has many diagnostic tools such as the Network Connectivity Status Indicator and Error Reporting, that reach
-out to Microsoft servers over the internet. Fortunately, these can all be disabled with one Group Policy change.
+Windows has many diagnostic tools such as Network Connectivity Status Indicator and Error Reporting, that reach
+out to Microsoft servers over the Internet. Fortunately, these can all be disabled with one Group Policy change.
 
-Open the Group Policy editor py typing ``gpedit.msc`` into the Start Menu search box, and press enter.
+Open the Group Policy editor by typing ``gpedit.msc`` into the Start Menu search box, and press Enter.
 Then navigate to Computer Configuration> Administrative Templates>
 System> Internet Communication Management, and open Restrict Internet Communication.
 
 Set the policy to enabled.
-
-
-
-
diff --git a/docs/book/src/installation/guest/requirements.rst b/docs/book/src/installation/guest/requirements.rst
index 6398996ca03..a8c6806a8c7 100644
--- a/docs/book/src/installation/guest/requirements.rst
+++ b/docs/book/src/installation/guest/requirements.rst
@@ -2,47 +2,79 @@
 Requirements
 ============
 
-In order to make CAPE run properly in your virtualized Windows system, you
+To make CAPE run properly in your virtualized Windows system, you
 will have to install some required software and libraries.
 
 Install Python
 ==============
 
-Python is a strict requirement for the CAPE guest component (*analyzer*) in
-order to run properly.  Please note that only 32-bit versions of Python3 are
-supported at this time.
+Python is a strict requirement for the CAPE guest component (*analyzer*) to run properly.
 
-You can download the proper Windows installer from the `official website`_.
-Also in this case Python > 3.6 is preferred.
+.. warning::
+    Please note that **only 32-bit (x86) versions of Python3 are
+    supported** at this time for Windows, due to the way the analyzer
+    interacts with low-level Windows libraries. Using a 64-bit version
+    of Python will crash the analyzer in Windows. For other platforms the
+    version of Python can be 64-bit (x64).
 
-Some Python libraries are optional and provide some additional features to
+You can download the proper `Windows`_ / `Linux`_ installer from the `official website`_.
+Python versions > 3.10 and < 3.13 are preferred.
+
+.. important::
+    When installing Python, it is recommended to select the `Add Python <version> to PATH` option. And remove from that PATH `%USERPROFILE%\AppData\Local\Microsoft\WindowsApps`
+
+    .. image:: ../../_images/screenshots/python_guest_win10_installation_PATH.png
+        :align: center
+
+When the installation is done, it is recommended to test whether Python is correctly set into your PATH environment variable. In order to do so, you can execute the following commands from a command prompt::
+
+> python --version
+
+You should be prompted with Python's installed version. **If not**, make sure you add the binaries to your PATH. There are tutorials galore on the Internet.
+
+Some Python libraries are optional and provide some additional features to the
 CAPE guest component. They include:
 
-    * `Python Image Library`_: it's used for taking screenshots of the Windows desktop during the analysis.
+    * `Python Image Library`_: used for taking screenshots of the Windows desktop during the analysis.
 
-They are not strictly required by CAPE to work properly, but you are encouraged
+    The recommended installation is the execution of the following commands::
+
+    > python -m pip install --upgrade pip
+    > python -m pip install Pillow
+
+These Python libraries are not strictly required by CAPE, but you are encouraged
 to install them if you want to have access to all available features. Make sure
 to download and install the proper packages according to your Python version.
 
+.. _`Windows`: https://www.python.org/downloads/windows/
+.. _`Linux`: https://www.python.org/downloads/source/
 .. _`official website`: http://www.python.org/getit/
 .. _`Python Image Library`: https://python-pillow.org
 
 Additional Software
 ===================
 
-At this point you should have installed everything needed by CAPE to run
+At this point, you should have installed everything needed by CAPE to run
 properly.
 
-Depending on what kind of files you want to analyze and what kind of sandboxed
-Windows environment you want to run the malware samples in, you might want to install
-additional software such as browsers, PDF readers, office suites etc.
-Remember to disable the "auto update" or "check for updates" feature of
-any additional software.
+Depending on what kind of files you want to analyze and what kind of sandbox
+environment you want to run the malware samples in, you may want to install
+additional software such as browsers, PDF readers, office suites, etc.
+
+.. note::
+
+    Remember to disable the "Auto Update" or "Check For Updates" feature of
+    any additional software that you install.
+
+    For Microsoft Office we recommend Office 2010 SP2. This is both for its
+    susceptibility to exploits typically used in maldocs, and its proven
+    compatibility with CAPE. The only recommended alternative is Office 2016
+    (32-bit).
 
-This is completely up to you and to what your needs are. You can get some hints
-by reading the :doc:`../../introduction/sandboxing` chapter.
+    We do not recommend any Office version more recent than 2016 due to lack
+    of proven compatibility with both maldocs and CAPE.
 
-Some extra to consider from doomedraven ;)
+For hints about what your needs may be, give the :doc:`../../introduction/sandboxing` chapter a read.
 
-.. _`choco.bat`: https://github.com/doomedraven/Tools/blob/master/Windows/choco.bat
-.. _`disablewin7noise.bat`: https://github.com/doomedraven/Tools/blob/master/Windows/disable_win7noise.bat
+.. _`choco.bat`: https://github.com/kevoreilly/CAPEv2/blob/master/installer/choco.bat
+.. _`disablewin7noise.bat`:  https://github.com/kevoreilly/CAPEv2/blob/master/installer/disable_win7noise.bat
diff --git a/docs/book/src/installation/guest/saving.rst b/docs/book/src/installation/guest/saving.rst
index a6783efeffb..b638fefa9e1 100644
--- a/docs/book/src/installation/guest/saving.rst
+++ b/docs/book/src/installation/guest/saving.rst
@@ -4,42 +4,46 @@ Saving the Virtual Machine
 
 Now you should be ready to save the virtual machine to a snapshot state.
 
-Before doing this **make sure you rebooted it softly and that it's currently
+Before doing this, **make sure that you have rebooted the guest softly and that it's currently
 running, with CAPE's agent running and with Windows fully booted**.
 
-Now you can proceed saving the machine. The way to do it obviously depends on
-the virtualization software you decided to use.
+Now you can proceed with saving the machine, which depends on
+the virtualization software that you decided to use.
 
-If you follow all the below steps properly, your virtual machine should be ready
-to be used by CAPE.
+The virtualization software-specific instructions found below can assist with getting the virtual
+machine ready to be used by CAPE.
 
 KVM
 ===
 
-You can check here how to simple create virtual machine with virt-manager
+Here are some helpful links for creating a virtual machine with ``virt-manager``:
 
-.. _`Create virtual machine with virt-manager aka GUI client`: https://www.doomedraven.com/2020/04/how-to-create-virtual-machine-with-virt.html
+    * `Create a virtual machine with virt-manager aka GUI client`_
+    * `Advanced KVM preparation for malware analysis`_
 
-If decided to adopt KVM, you must first of all be sure to use a disk format for
-your virtual machines which supports snapshots.
-By default libvirt tools create RAW virtual disks, and since we need snapshots
-you'll either have to use QCOW2 or LVM. For the scope of this guide we adopt QCOW2,
-which is easier to setup than LVM.
+.. _Create a virtual machine with virt-manager aka GUI client: https://www.doomedraven.com/2020/04/how-to-create-virtual-machine-with-virt.html
+.. _Advanced KVM preparation for malware analysis: https://www.doomedraven.com/2016/05/kvm.html#modifying-kvm-qemu-kvm-settings-for-malware-analysis
 
-The easiest way to create such a virtual disk correctly is using the tools
-provided by the libvirt suite. You can either use ``virsh`` if you prefer
+If you have decided to adopt KVM, you must use a disk format for
+your virtual machines that supports snapshots.
+By default, ``libvirt`` tools create RAW virtual disks, and since we need snapshots
+you'll have to use either QCOW2 or LVM. For the scope of this guide, we adopt QCOW2,
+since it is easier to set up than LVM.
+
+The easiest way to create such a virtual disk is by using the tools
+provided by the ``libvirt`` suite. You can either use ``virsh`` if you prefer
 command-line interfaces or ``virt-manager`` for a nice GUI.
-You should be able to directly create it in QCOW2 format, but in case you have
+You should be able to directly create the virtual disk in the QCOW2 format, but in case you have
 a RAW disk you can convert it like this::
 
     $ cd /your/disk/image/path
     $ qemu-img convert -O qcow2 your_disk.raw your_disk.qcow2
 
-Now you have to edit your VM definition as follows::
+Now edit your VM definition as follows::
 
     $ virsh edit "<Name of VM>"
 
-Find the disk section, it looks like this::
+Find the disk section, which looks like this::
 
     <disk type='file' device='disk'>
         <driver name='qemu' type='raw'/>
@@ -48,7 +52,7 @@ Find the disk section, it looks like this::
         <address type='drive' controller='0' bus='0' unit='0'/>
     </disk>
 
-And change "type" to qcow2 and "source file" to your qcow2 disk image, like this::
+And change "type" to qcow2 and "source file" to your qcow2 disk image path, like this::
 
     <disk type='file' device='disk'>
         <driver name='qemu' type='qcow2'/>
@@ -75,32 +79,52 @@ Then within the domain element, add the following::
       <qemu:arg value='host,-hypervisor'/>
     </qemu:commandline>
 
-Instead of using "host", you can also choose a number of other CPU models from the
-list displayed with the "qemu-system-i386 -cpu help" command (SandyBridge, Haswell, etc).
+Instead of using "host", you can also choose from multiple other CPU models from the
+list displayed with the ``qemu-system-i386 -cpu help`` command (SandyBridge, Haswell, etc).
 
-Now test your virtual machine, if everything works prepare it for snapshotting while
+Now test your virtual machine. If everything works, prepare it for snapshotting while
 running CAPE's agent. This means the virtual machine needs to be running
-while you are taking the snapshot. Then you can shut it down.
-You can finally take a snapshot with the following command::
+when you take the snapshot.
+You can take a snapshot with the following command via ``virsh``::
 
     $ virsh snapshot-create "<Name of VM>"
     $ virsh snapshot-create-as --domain "<Name of VM>" --name "<Name of snapshot>"
 
-Having multiple snapshots can cause errors.
+After snapshotting the guest, you can shut it down.
+
+    .. warning::
+        Having multiple snapshots can cause errors such as:
+
+        ``ERROR: No snapshot found for virtual machine <VM-Name>``
+
+        VM snapshots can be managed using the following commands.
+
+            $ virsh snapshot-list "<VM-Name>"
+
+            $ virsh snapshot-delete "<VM-Name>" "<Snapshot-Name>""
+
+Snapshot with Virtual Manager (``virt-manager``)
+------------------------------------------------
+
+If you are using virtual manager (``virt-manager``) to manage you VMs (as mentioned in the :ref:`installation_kvm` chapter), you can also use it to create the snapshots.
 
-ERROR: No snapshot found for virtual machine VM-Name
+    .. warning:: Virtual manager allows you to create either internal or external snapshots (which you can read more about `here <https://wiki.libvirt.org/I_created_an_external_snapshot_but_libvirt_will_not_let_me_delete_or_revert_to_it.html#background>`_). The arguably easier mode of operation are internal snapshots, given that external ones use individual files that may mess up your whole libvirt - qemu - kvm installation in case of name/path modification or loss.
 
-VM snapshots can be managed using the following commands.
+When creating a new snapshot, in newer versions of KVM you can select whether you want an internal or external or one:
 
-    $ virsh snapshot-list "VM-Name"
+    .. image:: ../../_images/screenshots/create_kvm_snapshot.png
+        :align: center
 
-    $ virsh snapshot-delete "VM-Name" 1234567890
+When any given snapshot is external, it's label will be suffixed with "*(External)*".
+
+    .. image:: ../../_images/screenshots/internal_external_snapshot.png
+        :align: center
 
 VirtualBox
 ==========
 
 If you are going for VirtualBox you can take the snapshot from the graphical user
-interface or from the command line::
+interface or the command line::
 
     $ VBoxManage snapshot "<Name of VM>" take "<Name of snapshot>" --pause
 
@@ -114,12 +138,12 @@ VMware Workstation
 ==================
 
 If you decided to adopt VMware Workstation, you can take the snapshot from the graphical user
-interface or from the command line::
+interface or the command line::
 
     $ vmrun snapshot "/your/disk/image/path/wmware_image_name.vmx" your_snapshot_name
 
 Where your_snapshot_name is the name you choose for the snapshot.
-After that power off the machine from the GUI or from the command line::
+After that power off the machine from the GUI or the command line::
 
     $ vmrun stop "/your/disk/image/path/wmware_image_name.vmx" hard
 
@@ -156,7 +180,7 @@ The snapshot UUID is printed to the screen once the command completes.
 
 Regardless of how the snapshot was created, save the UUID in the virtual
 machine's configuration section. Once the snapshot has been created, you can
-shutdown the virtual machine.
+shut down the virtual machine.
 
 Booting from Disk
 -----------------
@@ -177,10 +201,33 @@ the following command::
     $ xe vm-disk-list vm="vm_name_or_uuid"
 
 Ignoring all CD-ROM and read-only disks, run the following command for each
-remaining disk to change it's behavior to reset on boot::
+remaining disk to change its behavior to reset on boot::
 
     $ xe vdi-param-set uuid="vdi_uuid" on-boot=reset
 
 After the disk is set to reset on boot, no permanent changes can be made to the
 virtual machine's disk. Modifications that occur while a virtual machine is
 running will not persist past shutdown.
+
+Azure
+=====
+Once you have a virtual machine that is ready to be your golden image for a 
+virtual machine scale set, take a snapshot of the virtual machine's disk.
+
+Official documentation on how to do this: `Create a snapshot of a virtual hard disk <https://docs.microsoft.com/en-us/azure/virtual-machines/snapshot-copy-managed-disk?tabs=portal>`_
+
+We are now going to turn this snapshot into an "image", which is the terminology 
+Azure uses as the base for all virtual machines in a scale set. 
+
+1. Create a Compute Gallery resource.
+    a. `Create a gallery for storing and sharing resources <https://docs.microsoft.com/en-us/azure/virtual-machines/create-gallery?tabs=portal%2Ccli2>`_
+2. Create an Image Definition in this Compute Gallery.
+    a. `Create an image definition and an image version <https://docs.microsoft.com/en-us/azure/virtual-machines/image-version?tabs=portal>`_
+    b. Operating System state must be SPECIALIZED
+    c. Create an Image Version, and select "Disks and/or snapshots" as the Source.
+    d. Select the snapshot of the golden image.
+
+The creation of an image from a snapshot takes a while, so be patient.
+
+In the ``az.conf`` file, you will need to specify the Compute Gallery Name as well as 
+the Image Definition Name.
\ No newline at end of file
diff --git a/docs/book/src/installation/guest/troubleshooting.rst b/docs/book/src/installation/guest/troubleshooting.rst
new file mode 100644
index 00000000000..a171351e057
--- /dev/null
+++ b/docs/book/src/installation/guest/troubleshooting.rst
@@ -0,0 +1,88 @@
+===============
+Troubleshooting
+===============
+
+Where to start diagnosing
+=========================
+
+Given the large number of technologies involved in CAPE installation, configuration and usage, chances are high one or more of them start failing, crashing or simply *dying*. When this happens, there are a few places you should always look first, since it could help you diagnosing the real problem and avoid wasting time looking at rabbit holes. These places are (no surprise here) the logs generated by each fundamental service involved in CAPE's execution. While all of them can be checked in their corresponding directories, `journalctl <https://man7.org/linux/man-pages/man1/journalctl.1.html>`_ can be leveraged to check all of them at once.
+
+.. note::
+    Please note the following errors are just random examples used to show how and where to start dealing with CAPE problems. You may never face these errors at all!
+
+Regardless of the error you are facing there are two places where you should start looking: (1) CAPE's logs (naming inherited from cuckoo) and (2) virtqemu logs (assuming you have :ref:`installed KVM/QEMU using the kvm_qemu.sh script <installation_kvm>`.)
+
+For example, lets consider the following situation:
+
+    **CAPE submission (either via web or <submit.py>) apparently works, but the VM is never spawned (and analysis never launched).**
+
+Without prior indication, the first place to check are CAPE logs, located in ``/opt/CAPEv2/log/`` (installation directory). The logs corresponding to the analyses are rotated daily, and the current log is ``cuckoo.log``. Checking the contents of ``/opt/CAPEv2/log/cuckoo.log`` one could easily spot the culprit:
+
+.. error::
+    *Error example in <cuckoo.log> file.*
+
+    .. image:: ../../_images/screenshots/troubleshooting_error_0.png
+        :align: center
+
+Furthermore, the error states something about ``libvirt``. This is a clear indication that the corresponding logs must also be inspected. In this case, the logs of ``libvirt`` are stored under the ``virtqemud`` service. **Whenever something seems wrong regarding the virtual machines, this is the place to look after**. It can be inspected with ``$ sudo journalctl -u virtqemud -r``:
+
+.. error::
+    *Error examples by inspecting vertqemud logs with journalctl.*
+
+    .. image:: ../../_images/screenshots/troubleshooting_error_1.png
+        :align: center  
+
+    .. image:: ../../_images/screenshots/troubleshooting_error_2.png
+        :align: center
+    
+Additionally, you should always try to see if you are able to manually replicate the error in order to discard technologies and find out which one is failing. Considering the scenario above, when trying to manually spawn the virtual machines:
+
+.. error::
+    *Error example in Virtual Manager - KVM.*
+
+    .. image:: ../../_images/screenshots/troubleshooting_error_3.png
+        :align: center  
+
+
+No Internet connection in the guest
+===================================
+There are reasons galore why your guest VM has no Internet connection when an analysis is fired up. Before digging into this problem, please make sure you followed the steps at :ref:`Network Configuration` to set up both the virtual machine and its connections. Furthermore, you should read the :ref:`routing` chapter in order to know and understand the different routing modes as well as the :ref:`rooter` chapter to understand what the ``Rooter`` is. 
+
+Some considerations:
+
+1. ``dirtyline`` should be the **interface that provides your host internet connection** like **eno1**, not a virtual interface like *virbr1*. This must be configured in the ``routing.conf`` configuration file.
+2. Check ``agent.py`` is running with elevated privileges within the guest VM. 
+3. Make sure you specify the correct **STATIC** IP in ``kvm.conf``.
+4. Make sure you specified the correct interface in ``auxiliary.conf``.
+
+Also, bear in mind there are already created (and some of them solved) issues about this particular problem. For example:
+
+* https://github.com/kevoreilly/CAPEv2/issues/1234
+* https://github.com/kevoreilly/CAPEv2/issues/1245
+* https://github.com/kevoreilly/CAPEv2/issues/371
+* https://github.com/kevoreilly/CAPEv2/issues/367
+* https://github.com/kevoreilly/CAPEv2/issues/136
+
+PCAP Generation
+===============
+
+If you are facing problems related to either tcpdump or the PCAP generation, take a look at `this issue (#1234) <https://github.com/kevoreilly/CAPEv2/issues/1234>`_.
+
+.. note::
+
+    Make sure the ``pcap`` group exists in your system and that the user you use to launch CAPE (presumably the `cape` user) belongs to it as well as the ``tcpdump`` binary.
+
+Make sure the correct path is specified in ``auxiliary.conf`` for ``tcpdump``. Check the path of your local installation of tcpdump with::
+
+    $ whereis tcpdump
+
+Check permissions of ``tcpdump`` binary. ``cape`` user must be able to run it. Also check whether you specified the correct interface in ``auxiliary.conf``.
+
+If you are still facing problems and the PCAP is not generating, verify the ``tcpdump`` binary belongs to the ``pcap`` group and it has the neede capabilities::
+
+    $ sudo chgrp pcap /usr/bin/tcpdump
+    $ sudo setcap cap_net_raw,cap_net_admin=eip /usr/bin/tcpdump
+
+Other issues about this problem:
+
+* https://github.com/kevoreilly/CAPEv2/issues/1193
diff --git a/docs/book/src/installation/guest_physical/creation.rst b/docs/book/src/installation/guest_physical/creation.rst
index 4a13feb5603..949eb799231 100644
--- a/docs/book/src/installation/guest_physical/creation.rst
+++ b/docs/book/src/installation/guest_physical/creation.rst
@@ -2,8 +2,8 @@
 Creation of the Physical Machine
 ================================
 
-Once you have :doc:`properly installed <../host/requirements>` your imaging
-software, you can proceed on creating all the physical machines you need.
+Once you have :doc:`properly installed <../host/installation>` your imaging
+software, you can proceed with creating all the physical machines you need.
 
 Using and configuring your imaging software is out of the scope of this
 guide, so please refer to the official documentation.
@@ -15,7 +15,7 @@ guide, so please refer to the official documentation.
         chapter.
 
     .. note::
-        For analysis purposes you are recommended to use Windows 7 with User
+        For analysis purposes, you are recommended to use Windows 10 21H2 with User
         Access Control disabled.
 
 
diff --git a/docs/book/src/installation/guest_physical/index.rst b/docs/book/src/installation/guest_physical/index.rst
index 7a85b096654..93a1c238c39 100644
--- a/docs/book/src/installation/guest_physical/index.rst
+++ b/docs/book/src/installation/guest_physical/index.rst
@@ -2,14 +2,15 @@
 Preparing the Guest (Physical Machine)
 ======================================
 
-At this point you should have configured the CAPE host component and you
+At this point, you should have configured the CAPE host component and you
 should have designed and defined the number and the names of the physical
 machines you are going to use for malware execution.
 
+- You don't need KVM or any other hypervisor to run physical machinery. You only need FOG.
 - Please see this writeup for more updated details 15.10.2020
 - https://mariohenkel.medium.com/using-cape-sandbox-and-fog-to-analyze-malware-on-physical-machines-4dda328d4e2c
 
-Now it's time to create such machines and to configure them properly.
+Now it's time to create such machines and configure them properly.
 
 .. toctree::
 
diff --git a/docs/book/src/installation/guest_physical/network.rst b/docs/book/src/installation/guest_physical/network.rst
index 4e3ddb14fed..24408fdb306 100644
--- a/docs/book/src/installation/guest_physical/network.rst
+++ b/docs/book/src/installation/guest_physical/network.rst
@@ -2,7 +2,7 @@
 Network Configuration
 =====================
 
-Now it's time to setup the network for your physical machine.
+Now it's time to set up the network for your physical machine.
 
 Windows Settings
 ================
@@ -10,7 +10,7 @@ Windows Settings
 Before configuring the underlying networking of the sandbox, you might
 want to tweak some settings inside Windows itself.
 
-One of the most important things to do is **disabling** *Windows Firewall* and the
+One of the most important things to do is **disable** *Windows Firewall* and the
 *Automatic Updates*. The reason behind this is that they can affect the behavior
 of the malware under normal circumstances and that they can pollute the network
 analysis performed by CAPE, by dropping connections or including irrelevant
@@ -22,11 +22,11 @@ You can do so from Windows' Control Panel as shown in the picture:
         :align: center
 
 Using a physical machine manager requires a few more configuration options than
-the virtual machine managers in order to run properly.  In addition to the steps
+the virtual machine managers to run properly.  In addition to the steps
 laid out in the regular Preparing the Guest section, some settings need to be changed
 for physical machines to work properly.
 
-    - Enable auto-logon (Allows for the agent to start upon reboot)
+    - Enable auto-login (Allows for the agent to start upon reboot)
     - Enable Remote RPC (Allows for CAPE to reboot the sandbox using RPC)
     - Turn off paging (Optional)
     - Disable Screen Saver (Optional)
@@ -45,17 +45,17 @@ In Windows 7 the following commands can be entered into an Administrative comman
 Networking
 ==========
 
-Now you need to decide how to make your physical machine able to access Internet
+Now you need to decide how to make your physical machine able to access the Internet
 or your local network.
 
-In order to make it work properly you'll have to configure your machine's
+To make it work properly you'll have to configure your machine's
 network so that the Host and the Guest can communicate.
 Testing the network access by pinging a guest is a good practice, to make sure the
 virtual network was set up correctly.
-Use only static IP addresses for your guest, as today CAPE doesn't support DHCP
+Use only static IP addresses for your guest, as today CAPE doesn't support DHCP,
 and using it will break your setup.
 
-This stage is very much up to your own requirements and to the
+This stage is very much up to your requirements and the
 characteristics of your virtualization software.
 
 For physical machines, make sure when setting the IP address of the guest to also set
diff --git a/docs/book/src/installation/guest_physical/requirements.rst b/docs/book/src/installation/guest_physical/requirements.rst
index d5f20bc5eaa..601398e6d2e 100644
--- a/docs/book/src/installation/guest_physical/requirements.rst
+++ b/docs/book/src/installation/guest_physical/requirements.rst
@@ -2,19 +2,18 @@
 Requirements
 ============
 
-In order to make CAPE run properly in your physical Windows system, you
+To make CAPE run properly in your physical Windows system, you
 will have to install some required software and libraries.
 
 Install Python
 ==============
 
-Python is a strict requirement for the CAPE guest component (*analyzer*) in
-order to run properly.
+Python is a strict requirement for the CAPE guest component (*analyzer*) to run properly.
 
 You can download the proper Windows installer from the `official website`_.
 Also in this case Python > 3.6 is preferred.
 
-Some Python libraries are optional and provide some additional features to
+Some Python libraries are optional and provide some additional features to the
 CAPE guest component. They include:
 
     * `Python Image Library`_: it's used for taking screenshots of the Windows desktop during the analysis.
@@ -29,30 +28,30 @@ to download and install the proper packages according to your Python version.
 Additional Software
 ===================
 
-At this point you should have installed everything needed by CAPE to run
+At this point, you should have installed everything needed by CAPE to run
 properly.
 
 Depending on what kind of files you want to analyze and what kind of sandboxed
 Windows environment you want to run the malware samples in, you might want to install
-additional software such as browsers, PDF readers, office suites etc.
+additional software such as browsers, PDF readers, office suites, etc.
 Remember to disable the "auto update" or "check for updates" feature of
 any additional software.
 
-This is completely up to you and to what your needs are. You can get some hints
+This is completely up to you and what your needs are. You can get some hints
 by reading the :doc:`../../introduction/sandboxing` chapter.
 
 
 Additional Host Requirements
 ============================
 The physical machine manager uses RPC requests to reboot physical machines.
-  The `net` command is required for this to be accomplished, and is available
+  The `net` command is required for this to be accomplished and is available
   from the samba-common-bin package.
 
 On Debian/Ubuntu:
 
     $ sudo apt-get install samba-common-bin
 
-In order for the physical machine manager to work, you must have a way
+For the physical machine manager to work, you must have a way
 for physical machines to be returned to a clean state.  In development/testing
 Fog (`http://www.fogproject.org/`_) was used as a platform to handle re-imaging
 the physical machines.  However, any re-imaging platform can be used
@@ -61,5 +60,5 @@ the physical machines.  However, any re-imaging platform can be used
 .. _`http://www.fogproject.org/`: http://www.fogproject.org/
 
 Some extras by doomedraven:
-.. _`choco.bat`: https://github.com/doomedraven/Tools/blob/master/Windows/choco.bat
-.. _`disablewin7noise.bat`: https://github.com/doomedraven/Tools/blob/master/Windows/disable_win7noise.bat
+.. _`choco.bat`: https://github.com/kevoreilly/CAPEv2/raw/master/installer/choco.bat
+.. _`disablewin7noise.bat`: https://github.com/kevoreilly/CAPEv2/blob/master/installer/disable_win7noise.bat
diff --git a/docs/book/src/installation/guest_physical/saving.rst b/docs/book/src/installation/guest_physical/saving.rst
index e881c38a558..c20cc7a40a5 100644
--- a/docs/book/src/installation/guest_physical/saving.rst
+++ b/docs/book/src/installation/guest_physical/saving.rst
@@ -3,13 +3,13 @@ Saving the Guest
 ================
 
 Now you should be ready to save the physical machine to a clean state.
-In order for the physical machine manager to work, you must have a way
+For the physical machine manager to work, you must have a way
 for physical machines to be returned to a clean state.
 
 Before doing this **make sure you rebooted it softly and that it's currently
 running, with CAPE's agent running and with Windows fully booted**.
 
-Now you can proceed saving the machine. The way to do it obviously depends on
+Now you can proceed with saving the machine. The way to do it depends on
 the imaging software you decided to use.
 
 In development/testing Fog (http://www.fogproject.org/) was used as a platform
@@ -34,19 +34,19 @@ Provide the proper inputs for your OS configuration and click "Add"
     .. image:: ../../_images/screenshots/fog_image_management.png
         :align: center
 
-Next you will need to add the host you plan to re-image to Fog.
+Next, you will need to add the host you plan to re-image to Fog.
 To add a host, open a web browser and navigate to the Host Management page of
 Fog (http://<your_fog_server>/fog/management/index.php?node=host).
 Click "Create New Host."
 Provide the proper inputs for your host configuration. Be sure to select the
-image you created above from the "Host Image" option, when finished click the
+image you created above from the "Host Image" option when finished click the
 "Add" button.
 
     .. image:: ../../_images/screenshots/fog_host_management.png
         :align: center
 
-At this point you should be ready to take an image from the guest machine.
-In order to take an image you will need to navigate to the Task Management page
+At this point, you should be ready to take an image from the guest machine.
+To take an image you will need to navigate to the Task Management page
 and list all hosts (http://<your_fog_server>/fog/management/index.php?node=tasks&sub=listhosts).
 From here you should be able to click the Upload icon (Green up arrow), which
 should instantly add a task to the queue to take an image.
@@ -65,16 +65,3 @@ screenshot below, but you may need to tweak these times for your environment.
 
     .. image:: ../../_images/screenshots/fog_scheduled_job.png
         :align: center
-
-
-Setup using VMWare (Bonus!)
-===========================
-
-Traditionally CAPE requires to be running some sort of virtualization software
-(e.g. KVM, VMware, Virtualbox, etc).
-The physical machine manager will also work with other virtual machines, so long
-as they are configured to revert to a snapshot on shutdown/reboot, and running
-the agent.py script.
-A use case for this functionality would be to run the CAPE server and the
-guest sandboxes each in their own virtual machine on a single host, allowing for
-development/testing of CAPE without requiring a dedicated Linux host.
diff --git a/docs/book/src/installation/host/cloud.rst b/docs/book/src/installation/host/cloud.rst
new file mode 100644
index 00000000000..cc18895bdda
--- /dev/null
+++ b/docs/book/src/installation/host/cloud.rst
@@ -0,0 +1,77 @@
+============================
+Deploying CAPE in the Cloud
+============================
+
+The following documentation will detail how to install CAPE using cloud resources.
+
+Azure
+=====
+To use Azure as a machinery for CAPE, significant work must be done to deploy and secure 
+the resource groups, network architecture, credential management, etc required.
+
+Resource groups
+---------------
+The description below details how to create the resource groups that are required for isolating resources that should be controlled by the Azure machinery, which is running on a virtual machine and will have raw malware on it.
+
+1. You will need three resource groups:
+    a. The first resource group (RG1) will be where VNET1 (see below) will reside. This resource group is for client machines that will send files to CAPE.
+    b. The second resource group (RG2) will be where VNET2 (see below) will reside, as well as the virtual machine that is running CAPE.
+    c. The third resource group (RG3) will be where the sandbox resources will live.
+
+Networking
+----------
+The description below details how a REST client could send files to CAPE, which would then detonate the 
+submitted files in an isolated network.
+
+1. You will need two virtual networks:
+    a. The first virtual network (VNET1) will be where the client resides and goes in resource group RG1. The virtual network requires a subnet (VNET1_SUB1) that has the following network security group (VNET1_NSG1) rules applied:
+        i. Allow inbound/outbound traffic over HTTP, going to or coming from the port where CAPE's REST API 
+        is listening at the IP for VNET2_SUB1_NIC. The default port is 8000.
+        ii. Allow inbound/outbound traffic over SSH (port 22) to the IP of VNET2_SUB1_NIC. This is so that we can connect to the Host from a safe virtual network (VNET1).
+    b. The second virtual network (VNET2) will be where the CAPE host and the guests will reside and goes in resource group RG2. A virtual network peering resource is required to connect VNET1 and VNET2. VNET2 will consist of two subnets, one that will allow access to CAPE's REST API (VNET2_SUB1) and another that will provide a detonation space for the guests (VNET2_SUB2). Apply a network security group to these two subnets (VNET2_NSG1). The main ALLOW rules that we need in VNET2_NSG1 are as follows:
+        i. Allow inbound traffic on port 8000 from VNET1_SUB1 -> VNET2_SUB1
+        ii. Allow ALL inbound traffic from VNET2_SUB2 -> VNET2_SUB2
+        iii. Allow ALL inbound traffic from VNET2_SUB2 -> 0.0.0.0/0
+        iv. Allow ALL outbound traffic from port 8000 from VNET2_SUB1 -> VNET1_SUB1
+        v. Allow ALL outbound traffic from VNET2_SUB2 -> VNET2_SUB2
+        vi. Allow ALL outbound traffic from VNET2_SUB2 -> 0.0.0.0/0
+        vii. Allow SOME inbound traffic from the Internet -> VNET2_SUB1 to allow the Azure machinery to communicate with Azure.
+        viii. Allow SOME outbound traffic from VNET2_SUB1 -> Internet to allow the Azure machinery to communicate with Azure.
+        ix. If you want to debug or watch the detonation in the guest from a machine in the same subnet as your REST client, you will need to open up ports 3389 (RDP for Windows guests) and 5900 (VNC for Linux guests) in both VNET1_NSG1 and VNET2_NSG1.
+
+2. You will need a host machine (for CAPE) that has two network interface cards, one on VNET2_SUB1 (VNET2_SUB1_NIC) and another on VNET2_SUB2 (VNET2_SUB2_NIC).
+    a. Put this VM in RG2.
+    b. Set the private IPs of these network interface cards to static.
+
+3. A route table resource has to be created in RG2 and applied to direct all traffic from guests through the host (VNET2_RT1). Apply this route table to VNET2_SUB2, and create a new rule that directs all traffic (0.0.0.0/0) to a virtual appliance, aka the IP of VNET2_SUB2_NIC.
+
+These are the main networking resources required to deploy CAPE in Azure. 
+
+Credential Management
+---------------------
+In the ``az.conf``, there are several crucial details that we will need for accessing/manipulating Azure resources. These details are ``client_id``, ``secret``, and ``tenant``.
+To get these details, perform the following:
+
+1. Create an Azure application:
+    a. In the Azure portal, head to "App registrations"
+    b. Click "New registration"
+    c. Give the app a name and determine what the supported account types are
+    d. Create the app
+    e. Head to the app resource in the portal
+    f. Select "API permissions" in the sidebar
+    g. Click "Add a permission"
+    h. Give the app "User.Read" to the Microsoft Graph API
+    i. On the sidebar, click "Certificates & secrets"
+    j. Select "+ New client secret"
+    k. Create a secret
+    l. Copy the secret details and paste it into the ``az.conf``
+    m. Select "Overview" on the sidebar
+    n. You can find the ``client_id`` and ``tenant_id`` details here. Copy and paste them into the ``az.conf``
+
+2. Now that you've gathered the required credentials for the ``az.conf``, you need to set the following roles for this app on the resources:
+    a. Give the app "Contributor " access to RG3.
+    b. Give the app "Reader" to VNET2.
+
+
+See :doc:`../guest/saving` for instructions on how to create a shared gallery image definition version, the equivalent of a snapshot for virtual machine scale sets.
+
diff --git a/docs/book/src/installation/host/configuration.rst b/docs/book/src/installation/host/configuration.rst
index 823e675b8ec..a989d931b7f 100644
--- a/docs/book/src/installation/host/configuration.rst
+++ b/docs/book/src/installation/host/configuration.rst
@@ -7,13 +7,33 @@ CAPE relies on six main configuration files:
     * :ref:`cuckoo_conf`: for configuring general behavior and analysis options.
     * :ref:`auxiliary_conf`: for enabling and configuring auxiliary modules.
     * :ref:`machinery_conf`: for defining the options for your virtualization software
-        (the file has the same name of the machinery module you choose in cuckoo.conf).
+        (the file has the same name as the machinery module you choose in cuckoo.conf).
     * :ref:`memory_conf`: Volatility configuration.
     * :ref:`processing_conf`: for enabling and configuring processing modules.
     * :ref:`reporting_conf`: for enabling or disabling report formats.
-
-To get CAPE working you have to edit :ref:`auxiliary_conf`:, :ref:`cuckoo_conf` and :ref:`machinery_conf` at least.
-We suggest you to check all configs before starting, to be familiar with posibilities that you have and what you want to be done.
+    * :ref:`routing_conf`: for defining the routing of internet connection for the VMs.
+
+To get CAPE working you have to edit :ref:`auxiliary_conf`, :ref:`cuckoo_conf`, and :ref:`machinery_conf` at least.
+We suggest you check all configs before starting, to be familiar with the possibilities that you have and what you want to be done.
+
+.. note::
+    We recommend to you: create a `custom/conf/` directory and put files in there
+    whose names are the same as those in the top-level `conf/` directory. These
+    files only need to include settings that will override the defaults.
+    In that way you won't have problems with any upcoming changes to default configs.
+
+    To allow for further flexibility, you can also create a `custom/conf/<type>.conf.d/`
+    (e.g. `custom/conf/reporting.conf.d/`) directory and place files in there. Any
+    file in that directory whose name ends in `.conf` will be read (in lexicographic
+    order). The last value read for a value will be the one that is used.
+
+.. warning::
+    Any section inside the configs that is marked #community at the top refers to a plugin
+    that was developed by our community, but that doesn't mean that we maintain it.
+    Those plugins might be outdated or broken due to software/dependency changes.
+    If you find anything like this broken, you are more than welcome to fix it and submit a pull request.
+    The alternative is to switch off the offending plugin. Opening an issue for any of these is pointless
+    as we don't maintain them and cannot support them.
 
 .. _cuckoo_conf:
 
@@ -27,21 +47,18 @@ The file is largely commented and self-explaining, but some of the options you m
 want to pay more attention to are:
 
     * ``machinery`` in ``[cuckoo]``: this defines which Machinery module you want CAPE to use to interact with your analysis machines. The value must be the name of the module without extension.
-    * ``ip`` and ``port`` in ``[resultserver]``: defines the local IP address and port that CAPE is going to use to bind the result server on. Make sure this matches the network configuration of your analysis machines, or they won't be able to return the collected results.
+    * ``ip`` and ``port`` in ``[resultserver]``: defines the local IP address and port that CAPE is going to use to bind the result server to. Make sure this matches the network configuration of your analysis machines, or they won't be able to return the collected results.
     * ``connection`` in ``[database]``: defines how to connect to the internal database. You can use any DBMS supported by `SQLAlchemy`_ using a valid `Database Urls`_ syntax.
 
 .. _`SQLAlchemy`: http://www.sqlalchemy.org/
 .. _`Database Urls`: http://docs.sqlalchemy.org/en/latest/core/engines.html#database-urls
 
-.. warning:: Check your interface for resultserver IP! Some virtualization software (for example Virtualbox)
-    don't bring up the virtual networking interfaces until a virtual machine is started.
-    CAPE needs to have the interface where you bind the resultserver up before the start, so please
-    check your network setup. If you are not sure about how to get the interface up, a good trick is to manually start
-    and stop an analysis virtual machine, this will bring virtual networking up.
-    If you are using NAT/PAT in your network, you can set up the resultserver IP
-    to 0.0.0.0 to listen on all interfaces, then use the specific options `resultserver_ip` and `resultserver_port`
-    in *<machinery>.conf* to specify the address and port as every machine sees them. Note that if you set
-    resultserver IP to 0.0.0.0 in cuckoo.conf you have to set `resultserver_ip` for all your virtual machines.
+.. note:: Default freespace value is 50GB
+    It is worth mentioning that the default ``freespace`` value in ``cuckoo.conf`` is 50000 MB aka 50 GB.
+
+Please check the latest version of cuckoo.conf here: `cuckoo.conf`_.
+
+.. _`cuckoo.conf`: https://github.com/kevoreilly/CAPEv2/blob/master/conf/cuckoo.conf
 
 .. _auxiliary_conf:
 
@@ -49,8 +66,9 @@ auxiliary.conf
 ==============
 
 Auxiliary modules are scripts that run concurrently with malware analysis, this file defines
-their options. Please see latest version here
-.. _ `auxiliary.conf`: https://github.com/kevoreilly/CAPEv2/blob/master/conf/auxiliary.conf
+their options. Please see the default version here: `auxiliary.conf`_.
+
+.. _`auxiliary.conf`: https://github.com/kevoreilly/CAPEv2/blob/master/conf/default/auxiliary.conf.default
 
 
 .. _machinery_conf:
@@ -61,17 +79,28 @@ their options. Please see latest version here
 Machinery modules are scripts that define how Cuckoo should interact with
 your virtualization software of choice.
 
-Every module should have a dedicated configuration file which defines the
-details on the available machines. For example, if you created a *kvm.py*
+Every module should have a dedicated configuration file that defines the
+details of the available machines. For example, if you created a *kvm.py*
 machinery module, you should specify *kvm* in *conf/cuckoo.conf*
 and have a *conf/kvm.conf* file.
 
 CAPE provides some modules by default and for the sake of this guide, we'll
-assume you're going to use KVM. Please see latest version here
+assume you're going to use KVM. Please see the latest version here: `kvm.conf`_.
+
+.. _`kvm.conf`: https://github.com/kevoreilly/CAPEv2/blob/master/conf/kvm.conf
+
+If you are using KVM (kvm.conf), for each VM you want to use for analysis there must be a dedicated section. First you have to create and configure the VM (following the instructions in the dedicated chapter, see :ref:`preparing_the_guest`). The name of the section must be the same as the label of the VM as printed by ``$ virsh list --all``. If no VMs are shown, you can execute the following command sequence: ``$ virsh``, ``$ connect qemu:///system``, ``$ list --all``; or you can check `this link <https://serverfault.com/a/861853>`_ to learn how to change the connection in Virtual Manager.
 
-.. _ `<machinery>.conf`: https://github.com/kevoreilly/CAPEv2/blob/master/conf/machinery.conf
 
-The comments for the options are self-explainatory.
+You can also find examples of other hypervisors like:
+
+* VirtualBox: `virtualbox.conf`_.
+* VMWare: `vmware.conf`_.
+
+.. _`virtualbox.conf`: https://github.com/kevoreilly/CAPEv2/blob/master/conf/virtualbox.conf
+.. _`vmware.conf`: https://github.com/kevoreilly/CAPEv2/blob/master/conf/vmware.conf
+
+The comments for the options are self-explanatory.
 
 You can use this same configuration structure for any other machinery module, although
 existing ones might have some variations or additional configuration options.
@@ -83,10 +112,10 @@ memory.conf
 ===========
 
 The Volatility tool offers a large set of plugins for memory dump analysis. Some of them are quite slow.
-In volatility.conf lets you to enable or disable the plugins of your choice.
+In volatility.conf lets you enable or disable the plugins of your choice.
 To use Volatility you have to follow two steps:
 
- * Enable it before in processing.conf
+ * Enable it in processing.conf
  * Enable memory_dump in cuckoo.conf
 
 In the memory.conf's basic section you can configure the Volatility profile and
@@ -126,6 +155,11 @@ You can enter a list of pids in pid_generic to filter out processes::
     # pid_generic: a list of process ids that already existed on the machine before the malware was started.
     pid_generic = 4, 680, 752, 776, 828, 840, 1000, 1052, 1168, 1364, 1428, 1476, 1808, 452, 580, 652, 248, 1992, 1696, 1260, 1656, 1156
 
+Please see the latest version here: `memory.conf`_.
+
+.. _`memory.conf`: https://github.com/kevoreilly/CAPEv2/blob/master/conf/memory.conf
+
+
 .. _processing_conf:
 
 processing.conf
@@ -135,9 +169,9 @@ This file allows you to enable, disable and configure all processing modules.
 These modules are located under `modules/processing/` and define how to digest
 the raw data collected during the analysis.
 
-You will find a section for each processing module::
+You will find a section for each processing module here: `processing.conf`_.
 
-.. _ `<processing>.conf`: https://github.com/kevoreilly/CAPEv2/blob/master/conf/processing.conf
+.. _`processing.conf`: https://github.com/kevoreilly/CAPEv2/blob/master/conf/processing.conf
 
 You might want to configure the `VirusTotal`_ key if you have an account of your own.
 
@@ -149,9 +183,37 @@ reporting.conf
 ==============
 
 The *conf/reporting.conf* file contains information on the automated reports generation.
-Please see latest version here:
+Please see the latest version here: `reporting.conf`_.
 
-.. _ `<reporting>.conf`: https://github.com/kevoreilly/CAPEv2/blob/master/conf/reporting.conf
+.. _`reporting.conf`: https://github.com/kevoreilly/CAPEv2/blob/master/conf/reporting.conf
 
-By setting those option to *on* or *off* you enable or disable the generation
+By setting these options to *on* or *off* you enable or disable the generation
 of such reports.
+
+.. _routing_conf:
+
+routing.conf
+============
+
+The *conf/routing.conf* file contains information about how the guest VM is connected (or not) to the Internet via the Host, or whether it is isolated. This file is used in conjunction with the ``rooter.py`` utility.
+
+Please see the latest version of routing.conf here: `routing.conf`_.
+
+.. _`routing.conf`: https://github.com/kevoreilly/CAPEv2/blob/master/conf/routing.conf
+
+You can read more about the *routing.conf* file and its options in the :ref:`routing` chapter and more about the ``rooter.py`` utility in the :ref:`rooter` chapter.
+
+
+Using environment variables in config files
+===========================================
+
+Any of the above config files may reference environment variables in their
+values by using ``%(ENV:VARIABLE_NAME)s``. For example, instead of putting a
+VirusTotal Intelligence API key in :ref:`auxiliary_conf`, you could use the
+following::
+
+    [virustotaldl]
+    enabled = yes
+    dlintelkey = %(ENV:DLINTELKEY)s
+
+assuming the ``DLINTELKEY`` environment variable contains the API key.
diff --git a/docs/book/src/installation/host/gcs.rst b/docs/book/src/installation/host/gcs.rst
new file mode 100644
index 00000000000..2d17e21f977
--- /dev/null
+++ b/docs/book/src/installation/host/gcs.rst
@@ -0,0 +1,48 @@
+.. _installation-and-setup:
+
+Installation and Setup
+----------------------
+
+Follow these steps to install and configure the GCS reporting module in your CAPE Sandbox environment.
+
+Prerequisites: Google Cloud Setup
+~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+
+Before installing the module, you need to prepare your Google Cloud environment.
+
+1.  **Create a GCS Bucket:** If you don't already have one, create a new bucket in the `Google Cloud Console <https://console.cloud.google.com/storage/browser>`_.
+
+2.  **Create a Service Account:**
+    * Go to **IAM & Admin** > **Service Accounts** in the Google Cloud Console.
+    * Click **Create Service Account** and give it a name (e.g., ``cape-sandbox-uploader``).
+    * Grant it the **Storage Object Creator** or **Storage Object Admin** role. This permission is necessary to write files to the bucket.
+
+3.  **Download JSON Key:**
+    * This step is optional if you use ``auth_by=vm``
+    * After creating the service account, go to its **Keys** tab.
+    * Click **Add Key** > **Create new key**.
+    * Select ``JSON`` as the key type and click **Create**. A JSON file will be downloaded.
+    * **Securely move this JSON file to your CAPE server**, for example, to ``/opt/CAPEv2/data/gcp-credentials.json``.
+
+    .. warning::
+       Do not place the credentials file in a publicly accessible directory.
+
+
+Module Installation and Configuration
+~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+
+1.  **Install the Python Library:**
+    The module depends on the official Google Cloud Storage library. Install it within your CAPE virtual environment.
+
+    .. note::
+       Install dependency ``poetry run pip install google-cloud-storage``.
+
+2.  **Update Configuration:**
+    * Edit ``/opt/CAPEv2/conf/reporting.conf``.
+    * ``[gcs]`` section, enable ``enabled=yes``.
+    * Set ``bucket_name`` to the name of your GCS bucket.
+    * Set ``auth_by`` to ``vm`` if using system account or ``json`` if using credential file.
+    * Set ``credentials_path`` to the **absolute path** where you saved your service account JSON key file.
+
+3.  **Restart CAPE-processor:**
+    Restart the CAPE service: ``systemctl restart cape-processor`` for the changes to take effect.
diff --git a/docs/book/src/installation/host/index.rst b/docs/book/src/installation/host/index.rst
index a1f2c8d19f2..29b59773223 100644
--- a/docs/book/src/installation/host/index.rst
+++ b/docs/book/src/installation/host/index.rst
@@ -4,7 +4,7 @@ Preparing the Host
 
 Even though it's reported to run on other operating systems too, CAPE is
 originally supposed to run on a *GNU/Linux* native system.
-For the purpose of this documentation, we chose **latest Ubuntu LTS** as
+For this documentation, we chose the **latest Ubuntu LTS** as the
 reference system for the commands examples.
 
 .. toctree::
@@ -12,3 +12,5 @@ reference system for the commands examples.
     installation
     configuration
     routing
+    cloud
+    gcs
diff --git a/docs/book/src/installation/host/installation.rst b/docs/book/src/installation/host/installation.rst
index 7efaffa3618..d2015a338c8 100644
--- a/docs/book/src/installation/host/installation.rst
+++ b/docs/book/src/installation/host/installation.rst
@@ -1,3 +1,5 @@
+.. _installation:
+
 =================
 Installing CAPE
 =================
@@ -5,20 +7,135 @@ Installing CAPE
 Proceed with download and installation. Read :doc:`../../introduction/what` to
 learn where you can obtain a copy of the sandbox.
 
-Automated installation, read full page before start
-=============
+Automated installation, read the full page before you start
+===========================================================
+
+We have automated all work for you but bear in mind that 3rd party dependencies change frequently and can break the installation,
+so please check the installation log and try to provide the fix / correct issue to the developers.
+
+.. warning::
+    We advise against modifying or updating any package installed by the script explained below. By using package managers like ``apt``  there are high chances your KVM/libvirt/CAPE installation will break and you will most likely end up riding the lanes of dependency hell.
+
+.. _installation_kvm:
+
+To install KVM
+==============
+
+While you can install and use any hypervisor you like, we recommend using KVM. The script to install everything related to KVM (including KVM itself) can be found here: `kvm-qemu.sh`_.
+
+.. note:: We recommend using the script to install everything related with KVM-Qemu since the script performs a stealthier configuration and achieves better performance than the installation from APT.
+
+.. _`kvm-qemu.sh`: https://github.com/kevoreilly/CAPEv2/blob/master/installer/kvm-qemu.sh
+
+**BEFORE** executing the script, you should replace the **<WOOT>** occurrences withing the script itself with real hardware patterns. You can use ``acpidump`` in Linux and ``acpiextract`` in Windows to obtain such patterns, as stated `in the script itself`_.
+
+.. warning:: 
+    If you are installing or using CAPE in a laboratory environment you can replace **<WOOT>** with any random 4 chars you like. However, if you are planning to use CAPE in real production environments and you want to hinder the sandbox/VM detection, you should use *REAL* hardware 4 chars. To find out which chars correspond to each piece of HW, you should use ACPIDUMP/ACPIEXTRACT and Google.
+
+.. _`in the script itself`: https://github.com/kevoreilly/CAPEv2/blob/master/installer/kvm-qemu.sh#L37
+
+In order to install KVM itself, execute the following command::
+
+    $ sudo chmod a+x kvm-qemu.sh
+    $ sudo ./kvm-qemu.sh all <username> | tee kvm-qemu.log
 
-We have automated all work for you, but beat in mind, that 3rd part dependencies changes frequently and can break it,
-so please check instalation log and try to provide fix/correct issue to developers
+`replacing <username> with your actual username.`
 
-.. _`cape2.sh`: https://github.com/doomedraven/Tools/edit/master/Sandbox/cape2.sh
+Remember to **reboot** after the installation.
 
-To Install base
+If you want to install Virtual Machine Manager (``virt-manager``), execute the following command::
+
+    $ sudo ./kvm-qemu.sh virtmanager <username> | tee kvm-qemu-virt-manager.log
+
+`replacing <username> with your actual username.`
+
+Remember to **reboot** after the installation.
+
+.. important:: 
+    It is important to assert everything works as expected before moving forward. The vast majority of errors at this point can be solved by reinstalling the specific component with `kvm-qemu.sh`_. For example, the error below was raised when trying to open ``virt-manager`` but ``libvirt`` installation was corrupted for some reason. Reinstalling libvirt with the script solved the issue.
+
+.. error::
+    .. image:: ../../_images/screenshots/libvirt_error_virtmanager.png
+        :align: center
+
+
+To install CAPE
 ================
 
-You need to give execution permission to script `chmod a+x cape2.sh`
-Please become familiar with available options using `./cape2.sh -h`
+The script to install CAPE can be found here: `cape2.sh`_.
+
+.. _`cape2.sh`: https://github.com/kevoreilly/CAPEv2/blob/master/installer/cape2.sh
+
+.. note:: 
+    CAPE is being maintained and updated in a `rolling <https://en.wikipedia.org/wiki/Rolling_release>`_ fashion. That is, there are no versions or releases. It is your responsibility to regularly ``pull`` the repo and stay up to date.
+
+Please keep in mind that all our scripts use the ``-h`` flag to print the help and usage message. However, it is recommended to read the scripts themselves to **understand** what they do.
+
+Please become familiar with available options using::
+
+    $ sudo chmod a+x cape2.sh
+    $ ./cape2.sh -h
+
+To install CAPE with all the optimizations, use one of the following commands::
+
+    $ sudo ./cape2.sh base cape | tee cape.log
+    $ sudo ./cape2.sh all cape | tee cape.log
+
+Remember to **reboot** after the installation.
+
+This should install all libraries and services for you, read the code if you need more details. Specifically, the installed services are:
+
+* cape.service
+* cape-processor.service
+* cape-web.service
+* cape-rooter.service
+
+To restart any service use::
+
+    $ systemctl restart <service_name>
+
+To see service log use::
+
+    $ journalctl -u <service_name>
+
+To install dependencies
+=======================
+
+You can install CAPE's dependencies with the traditional. However, we recommend using poetry. As all services are configured to use poetry and better deal with dependencies conflict. See next step for poetry::
+    $ pip3 install -r requirements.txt
+
+To install dependencies with poetry, execute the following command (from the main working directory of CAPE, usually ``/opt/CAPEv2/``)::
+
+    $ poetry install
+
+Once the installation is done, you can confirm a virtual environment has been created with::
+
+    $ poetry env list
+
+The output should be similar to::
+
+    $ poetry env list
+    capev2-t2x27zRb-py3.10 (Activated)
+
+From now on, you will have to execute CAPE within the virtual env of Poetry. To do so you need just ``poetry run <command>``. For example::
+
+    $ sudo -u cape poetry run python3 cuckoo.py
+
+If you need further assistance with Poetry, there are hundreds of cheat sheets on the Internet
+
+Optional dependencies
+~~~~~~~~~~~~~~~~~~~~~
+
+.. code:: bash
+
+   sudo -u cape poetry run pip install -r extra/optional_dependencies.txt
+
+
+**ATTENTION!** ``cape`` user
+============================
+
+Only the installation scripts and some utilities like ``rooter.py`` must be executed with ``sudo``, the rest of configuration scripts and programs **MUST** be executed under the ``cape`` user, which is created in the system after executing ``cape2.sh``.
 
-To install base, this should install all libraries and services for you, read code if you need more details:
+By default, the cape user has no login. In order to substitute it and use the cmd on its behalf, you can execute the following command::
 
-    $ sudo ./cape2.sh base cape
+    $ sudo su - cape -c /bin/bash
diff --git a/docs/book/src/installation/host/routing.rst b/docs/book/src/installation/host/routing.rst
index b8ba9e3f7ba..8d5ea79b474 100644
--- a/docs/book/src/installation/host/routing.rst
+++ b/docs/book/src/installation/host/routing.rst
@@ -1,15 +1,60 @@
+.. _routing:
+
 ============================
 Per-Analysis Network Routing
 ============================
 
-The more advanced per-analysis routing, it is naturally
+With the more advanced per-analysis routing, it is naturally
 also possible to have one default route - a setup that used to be popular
 before, when the more luxurious routing was not yet available.
 
-In our examples we'll be focusing on ``KVM`` as it is our default
+In our examples, we'll be focusing on ``KVM`` as it is our default
 machinery choice.
 
 
+.. warning::
+    In case if you see proxy IP:PORT in networking for example as tor `9040` port.
+    It happens due that you have installed `docker` on your host and it breaks some networking filters.
+
+To fix proxy IP:PORT problem, you need to run following script.
+Save it to file, give execution permission with sudo a+x iptables_fix.sh and run it with proper arguments::
+
+    !/bin/bash
+    # Fix when docker breaks your iptables
+    if [ $# -eq 0 ] || [ $# -lt 2 ]; then
+        echo "$0 <network range> <vir_iface> <real_iface>"
+        echo "    example: $0 192.168.1.0 virbr0 eno0"
+        exit 1
+    fi
+
+    echo "[+] Setting iptables"
+    iptables -t nat -A POSTROUTING -o "$2" -j MASQUERADE
+    iptables -A FORWARD -i "$2" -o "$2" -m state --state RELATED,ESTABLISHED -j ACCEPT
+    iptables -A FORWARD -i "$2" -o "$2" -j ACCEPT
+    iptables -I FORWARD -m physdev --physdev-is-bridged -j ACCEPT
+    iptables -I FORWARD -o "$2" -d  "$1"/24 -j ACCEPT
+    iptables -t nat -A POSTROUTING -s "$1"/24 -j MASQUERADE
+    iptables -A FORWARD -o "$2" -m state --state RELATED,ESTABLISHED -j ACCEPT
+    iptables -A FORWARD -i "$2" -o "$3" -j ACCEPT
+    iptables -A FORWARD -i "$2" -o lo -j ACCEPT
+
+    echo "[+] Setting network options"
+    # https://forums.fedoraforum.org/showthread.php?312824-Bridge-broken-after-docker-install&s=ffc1c60cccc19e46c01b9a8e0fcd0c35&p=1804899#post1804899
+    {
+        echo "net.bridge.bridge-nf-call-ip6tables=0";
+        echo "net.bridge.bridge-nf-call-iptables=0";
+        echo "net.bridge.bridge-nf-call-arptables=0";
+        echo "net.ipv4.conf.all.forwarding=1";
+        echo "net.ipv4.ip_forward=1";
+    } >> /etc/sysctl.conf
+    sysctl -p
+    echo "iptables -A FORWARD -i $2 -o $2 -j ACCEPT" >> /etc/network/if-pre-up.d/kvm_bridge_iptables
+
+    virsh nwfilter-list
+
+To make it permanent you can use `iptables-save`.
+
+
 Per-Analysis Network Routing Options
 ====================================
 
@@ -19,15 +64,14 @@ Following is the list of available routing options.
 | Routing Option          | Description                                      |
 +=========================+==================================================+
 | :ref:`routing_none`     | No routing whatsoever, the only option that does |
-|                         | *not* require the Rooter to be run (and   |
+|                         | *not* require the Rooter to be run (and          |
 |                         | therefore also the **default** routing option).  |
 +-------------------------+--------------------------------------------------+
-| :ref:`routing_drop`     | Completely drops all non-CAPE traffic,         |
+| :ref:`routing_drop`     | Completely drops all non-CAPE traffic,           |
 |                         | including traffic within the VMs' subnet.        |
 +-------------------------+--------------------------------------------------+
 | :ref:`routing_internet` | Full internet access as provided by the given    |
-|                         | network interface (similar to the                |
-|                         | :ref:`simple_global_routing` setup).             |
+|                         | network interface                                |
 +-------------------------+--------------------------------------------------+
 | :ref:`routing_inetsim`  | Routes all traffic to an InetSim instance -      |
 |                         | which provides fake services - running on the    |
@@ -35,6 +79,8 @@ Following is the list of available routing options.
 +-------------------------+--------------------------------------------------+
 | :ref:`routing_tor`      | Routes all traffic through Tor.                  |
 +-------------------------+--------------------------------------------------+
+| :ref:`routing_tun`      | Route traffic though any "tun" interface         |
++-------------------------+--------------------------------------------------+
 | :ref:`routing_vpn`      | Routes all traffic through one of perhaps        |
 |                         | multiple pre-defined VPN endpoints.              |
 +-------------------------+--------------------------------------------------+
@@ -42,70 +88,175 @@ Following is the list of available routing options.
 |                         | multiple pre-defined VPN endpoints.              |
 +-------------------------+--------------------------------------------------+
 
+
 Using Per-Analysis Network Routing
 ==================================
 
-Having knowledge about the available network routing options it is time to
-actually use it in practice. Assuming CAPE has been configured properly
-taking advantage of its features is really as simple as **starting the CAPE
+Now that you know the available network routing options, it is time to
+use them in practice. Assuming CAPE has been configured properly
+taking advantage of its features is as simple as **starting the CAPE
 Rooter and choosing a network routing option for your analysis**.
 
 Documentation on starting the ``Rooter`` may be found in the
 :ref:`cape_rooter_usage` document.
 
-Both global routing and per-analysis routing require ip forwarding to be enabled:
+Both global routing and per-analysis routing require ip forwarding to be enabled::
 
     $ echo 1 | sudo tee -a /proc/sys/net/ipv4/ip_forward
     $ sudo sysctl -w net.ipv4.ip_forward=1
 
-.. _routing_iproute2:
-
-Configuring iproute2
-====================
-
-For Linux kernel TCP/IP source routing reasons it is required to register each
-of the network interfaces that we use with ``iproute2``. This is trivial, but
-necessary.
-
-As an example we'll be configuring :ref:`routing_internet` (aka the
-``dirty line``) for which we'll be using the ``eth0`` network interface -
-reverting back to Ubuntu 14.04 and older terminology here for a second (Ubuntu
-16.04 uses network interface names based on the hardware manufacturer, as you
-will likely have seen happen on BSD-based systems since forever).
-
-To configure ``iproute2`` with ``eth0`` we're going to open the
-``/etc/iproute2/rt_tables`` file which will look roughly as follows::
-
-    #
-    # reserved values
-    #
-    255     local
-    254     main
-    253     default
-    0       unspec
-    #
-    # local
-    #
-
-Now roll a random number that is not yet present in this file with your dice
-of choice and use it to craft a new line at the end of the file. As an
-example, registering ``eth0`` with ``iproute2`` could look as follows::
-
-    #
-    # reserved values
-    #
-    255     local
-    254     main
-    253     default
-    0       unspec
-    #
-    # local
-    #
-
-    400     eth0
-
-And that's really all there is to it. You will have to do this for each
-network interface you intend to use for network routing.
+.. warning::
+    Please be aware by default these changes do not persist and will be reset after a system restart.
+
+.. _routing_netplan:
+
+Configuring netplan
+===================
+
+In modern releases of Ubuntu, all network configuration is handled by
+``netplan``, including routing tables.
+
+If you are using Ubuntu Server, disable ``cloud-init``, which is used by
+default.
+
+Do this by writing a file at
+``/etc/cloud/cloud.cfg.d/99-disable-network-config.cfg``, with the
+content ``network: {config: disabled}``, then delete
+``/etc/netplan/50-cloud-init.yaml``.
+
+If you are using a desktop version of Ubuntu instead,
+you will need to disable ``NetworkManager`` and enable ``networkd``.
+
+.. code:: text
+
+   sudo systemctl stop NetworkManager
+   sudo systemctl disable NetworkManager
+   sudo systemctl mask NetworkManager
+
+   sudo systemctl unmask systemd-networkd
+   sudo systemctl enable systemd-networkd
+   sudo systemctl start systemd-networkd
+
+Next, create your own ``netplan`` configuration file manually at
+``/etc/netplan/99-manual.yaml``
+
+The example ``netplan`` configuration below has a 5G hotspot interface named
+``enx00a0c6000000`` for :ref:`routing_internet` (aka the
+``dirty line``) and a management interface named ``enp8s0`` for hosting the
+CAPE web UI, SSH and other administrative services. In this configuration the
+dirty line is used as the default gateway for all internet traffic on the host.
+This helps prevent network leaks, firewall IDS/IPS issues, and keeps
+administrative traffic separate, where it could be placed in its own subnet
+for additional security.
+
+You will need to replace the interface names and IP addresses to reflect your
+own system.
+
+Each interface configuration needs a ``routes`` section that describes the
+routes that can be accessed via that interface. In order for the configuration
+to work with CAPE's per-analysis routing, each ``routes`` section must have an
+arbitrary but unique ``table`` integer value.
+
+.. code:: yaml
+
+   network:
+       version: 2
+       renderer: networkd
+       ethernets:
+           lo:
+               addresses: [ "127.0.0.1/8", "::1/128", "7.7.7.7/32" ]
+           enx00a0c6000000:
+               dhcp4: no
+               addresses: [ "192.168.1.2/24" ]
+               nameservers:
+                   addresses: [ "192.168.1.1" ]
+               routes:
+                   - to: default
+                     via: 192.168.1.1
+                   - to: 192.168.1.0/24
+                     via: 192.168.1.1
+                     table: 101
+               routing-policy:
+                - from: 192.168.1.0/24
+                  table: 101
+           enp8s0:
+               dhcp4: no
+               addresses: [ "10.23.6.66/24" ]
+               routes:
+                   - to: 10.23.6.0/24
+                     via: 10.23.6.1
+                     table: 102
+               routing-policy:
+                   - from: 10.23.6.0/24
+                     table: 102
+
+Run ``sudo netplan apply`` to apply the new ``netplan`` configuration. You can verify the new routing rules and tables have been created with:
+
+* ``ip r``. To show 'main' table.
+* ``ip r show table X``. To show 'X' table, where X is either the number or the name you specified in the netplan file.
+* ``ip r show table all``. To show all routing rules form all tables.
+
+.. note::
+    There are some considerations you should take into account when configuring and setting netplan and others components necessary so as to provide the Hosts with Internet connection:
+
+        * IP forwarding **MUST** be enabled.
+        * The routing table **NUMBER** specified in the netplan config file should be the **SAME** as the one specified in ``/etc/iproute2/rt_tables``.
+        * The routing table **NAME** specified in ``/etc/iproute2/rt_tables`` (next to its number) should be the **SAME** as the one specified specified in ``routing.conf`` (with the ``rt_table`` field).
+
+.. _routing_firewall:
+
+Protecting host ports
+=====================
+
+By default, most Linux network services listen on all network interface
+interfaces/addresses, leaving the services running on the host machine
+exposed to potential attacks from the analysis VMs.
+
+To mitigate this issue, use the ``ufw`` firewall included with Ubuntu.
+It will not break CAPE’s per-analysis network routing.
+
+Allow access to administrative services using the interface that is
+being used for management of the sandbox. Network interface details can
+be found by using the ``ip addr`` command.
+
+In this example the management interface name is ``enp8s0``, with an IP
+address of ``10.23.6.66``. Replace these values with the proper values
+for your server.
+
+.. code:: bash
+
+   # HTTP
+   sudo ufw allow in on enp8s0 to 10.23.6.66 port 80 proto tcp
+
+   # HTTPS
+   sudo ufw allow in on enp8s0 to 10.23.6.66 port 443 proto tcp
+
+   # SSH
+   sudo ufw allow in on enp8s0 to 10.23.6.66 port 22 proto tcp
+
+   # SMB (smbd is enabled by default on desktop versions of Ubuntu)
+   sudo ufw allow in on enp8s0 to 10.23.6.66 port 22 proto tcp
+
+   # RDP (if xrdp is used on the server)
+   sudo ufw allow in on enp8s0 to 10.23.6.66 port 445 proto tcp
+
+Allow analysis VMs to access the CAPE result server, which used TCP port
+``2042`` by default.
+
+In this example the host interface name is ``virbr1`` with an IP address
+of ``192.168.42.1``. Replace these values with the proper values for
+your server.
+
+.. code:: bash
+
+   sudo ufw allow in on virbr1 to 192.168.42.1 port 2042 proto tcp
+
+Enable the firewall after all of the rules have ben configured.
+
+.. code:: bash
+
+   sudo ufw enable
+
 
 .. _routing_none:
 
@@ -113,9 +264,8 @@ None Routing
 ^^^^^^^^^^^^
 
 The default routing mechanism in the sense that CAPE allows the analysis to
-route as defined by a third party. As in, it literally doesn't do anything.
-One may use the ``none routing`` in conjunction with the
-:ref:`simple_global_routing`.
+route as defined by a third party. As in, it doesn't do anything.
+One may use the ``none routing``
 
 .. _routing_drop:
 
@@ -142,7 +292,7 @@ as the ``dirty line`` due to its nature of allowing all potentially malicious
 samples to connect to the internet through the same uplink.
 
 .. note:: It is required to register the dirty line network interface with
-    iproute2 as described in the :ref:`routing_iproute2` section.
+    iproute2 as described in the :ref:`routing_netplan` section.
 
 .. _routing_inetsim:
 
@@ -150,8 +300,8 @@ InetSim Routing
 ^^^^^^^^^^^^^^^
 
 For those that have not heard of `InetSim`_, it's a project that provides
-fake services for malware to talk to. In order to use ``InetSim routing`` one
-will have to setup InetSim on the host machine (or in a separate VM) and
+fake services for malware to talk to. To use ``InetSim routing`` one
+will have to set up InetSim on the host machine (or in a separate VM) and
 configure CAPE so that it knows where to find the InetSim server.
 
 The configuration for InetSim is self-explanatory and can be found as part
@@ -161,31 +311,31 @@ of the ``$CWD/conf/routing.conf`` configuration file::
     enabled = yes
     server = 192.168.122.1
 
-In order to quickly get started with InetSim it is possible to download
+To quickly get started with InetSim it is possible to download
 the latest version of the `REMnux`_ distribution which features - among many
-other tools - the latest version of InetSim. Naturally this VM will
-require its own static IP address which should then be configured in the
+other tools - the latest version of InetSim. Naturally, this VM will
+require a static IP address which should then be configured in the
 ``routing.conf`` configuration file.
 
 .. _InetSim: http://www.inetsim.org/
 .. _REMnux: https://remnux.org/
 
-.. _routing_tor:
+We ``suggest running it on a virtual machine`` to avoid any possible leaks
 
-We ``Suggest to run it in virtual machine`` to avoid any possible leaks
+.. _routing_tor:
 
 Tor Routing
 ^^^^^^^^^^^
 
 .. note:: Although we **highly discourage** the use of Tor for malware analysis
     - the maintainers of ``Tor exit nodes`` already have a hard enough time
-    keeping up their servers - it is in fact a well-supported feature.
+    keeping up their servers - it is a well-supported feature.
 
-First of all Tor will have to be installed. Please find instructions on
+First of all, Tor will have to be installed. Please find instructions on
 installing the `latest stable version of Tor here`_.
 
 We'll then have to modify the ``Tor`` configuration file (not talking about
-CAPE's configuration for Tor yet!) In order to do so, we will have to
+CAPE's configuration for Tor yet!) To do so, we will have to
 provide Tor with the listening address and port for TCP/IP connections and UDP
 requests. For a default ``KVM`` setup, where the host machine has IP
 address ``192.168.122.1``, the following lines will have to be configured in
@@ -206,26 +356,38 @@ the ``enabled`` field goes a long way)::
     proxyport = 9040
 
 Note that the port numbers in the ``/etc/tor/torrc`` and
-``$CWD/conf/routing.conf`` files must match in order for the two to interact
+``$CWD/conf/routing.conf`` files must match for the two to interact
 correctly.
 
 .. _`latest stable version of Tor here`: https://www.torproject.org/docs/debian.html.en
 
+
+.. _routing_tun:
+
+Tun Routing
+^^^^^^^^^^^
+This allows you to route via any ``tun`` interface.  You can pass the tun
+interface name on demand per analysis. The interface name can be ``tunX``
+or ``tun_foo``.  This assumes you create the tunnel inferface outside of CAPE.
+
+Then you set the ``route=tun_foo`` on the ``/apiv2/tasks/create/file/``
+API call.
+
 .. _routing_vpn:
 
 VPN Routing
 ^^^^^^^^^^^
 
-It is possible to route analyses through a number of VPNs.
+It is possible to route analyses through multiple VPNs.
 By defining a couple of VPNs, perhaps ending up in different countries, it may
 be possible to see if potentially malicious samples behave differently
-depending on the country of origin of its IP address.
+depending on the country of origin of their IP address.
 
 The configuration for a VPN is much like the configuration of a VM. For each
 VPN you will need one section in the ``$CWD/conf/routing.conf`` configuration
-file detailing the relevant information for the VPN. In the configuration the
-VPN will also have to be *registered* in the list of available VPNs (exactly
-the same as you'd do for registering more VMs).
+file detailing the relevant information for the VPN. In the configuration, the
+VPN will also have to be *registered* in the list of available VPNs
+(the same as you'd do for registering more VMs).
 
 Configuration for a single VPN looks roughly as follows::
 
@@ -259,15 +421,32 @@ Configuration for a single VPN looks roughly as follows::
     # for existing names and IDs).
     rt_table = tun0
 
-.. note:: It is required to register each VPN network interface with iproute2
-    as described in the :ref:`routing_iproute2` section.
+.. note:: It is required to register each VPN network interface with netplan
+    as described in the :ref:`routing_netplan` section.
+
+Quick and dirty example of iproute2 configuration for VPN::
+
+    Example:
+        /etc/iproute2/rt_tables
+            5 host1
+            6 host2
+            7 host3
+
+        conf/routing.conf
+            [vpn5]
+            name = X.ovpn
+            description = X
+            interface = tunX
+            rt_table = host1
+
+Bear in mind that you will need to adjust some values inside of `VPN route script`_. Read it!
 
-* `Helper script, read code to understand it`_
-* `Example of wireguard integration`_
-.. _`Helper script, read code to understand it`: https://github.com/kevoreilly/CAPEv2/blob/master/utils/vpn2cape.py
-.. _`Example of wireguard integration`: https://musings.konundrum.org/2020/12/12/wireguard-and-cape.html
+* `Helper script vpt2cape.py, read code to understand it`_
 
-VPN persistance & autorestart `source`_::
+.. _`Helper script vpt2cape.py, read code to understand it`: https://github.com/kevoreilly/CAPEv2/blob/master/utils/vpn2cape.py
+.. _`VPN route script`: https://github.com/kevoreilly/CAPEv2/blob/master/utils/route.py
+
+VPN persistence & auto-restart `source`_::
 
     1. Run the command:
         # sudo nano /etc/default/openvpn`
@@ -275,7 +454,7 @@ VPN persistance & autorestart `source`_::
         then press ‘Ctrl X’ to save the changes and exit the text editor.
 
     2. Move the .ovpn file with the desired server location to the ‘/etc/openvpn’ folder:
-        # sudo cp /location/whereYouDownloadedConfigfilesTo/Germany.ovpn /etc/openvpn/
+        # sudo cp /location/whereYouDownloadedConfigFilesTo/Germany.ovpn /etc/openvpn/
 
     3. In the ‘/etc/openvpn’ folder, create a text file called login.creds:
         # sudo nano /etc/openvpn/login.creds
@@ -303,12 +482,71 @@ VPN persistance & autorestart `source`_::
 
 .. _routing_socks:
 
+Wireguard VPN
+^^^^^^^^^^^^^
+
+Setup Wireguard
+===============
+
+* `Original blog post on how to setup WireGuard with CAPE`_
+
+Install wireguard::
+
+    sudo apt install wireguard
+
+Download Wireguard configurations from your VPN provider and copy them into ``/etc/wireguard/wgX.conf``. E.g.::
+
+    /etc/wireguard/wg1.conf
+    /etc/wireguard/wg2.conf
+    /etc/wireguard/wg3.conf
+
+Each configuration is for a different exit destination.
+
+An example config for wg1.conf::
+
+    # VPN-exit-CC
+    [Interface]
+    PrivateKey = <REMOVED>
+    Address = xxx.xxx.xxx.xxx/32
+    Table = 420
+
+    # Following 2 lines added in attempt to allow local traffic
+    PreUp = iptables -A FORWARD -i %i -j ACCEPT; iptables -A FORWARD -o %i -j ACCEPT; iptables -t nat -A POSTROUTING -o %i -j MASQUERADE
+    PreDown = iptables -D FORWARD -i %i -j ACCEPT; iptables -D FORWARD -o %i -j ACCEPT; iptables -t nat -D POSTROUTING -o %i -j MASQUERADE
+
+    [Peer]
+    PublicKey = <REMOVED>
+    AllowedIPs = 0.0.0.0/0
+    Endpoint = xxx.xxx.xxx.xxx:51820
+
+The only changes I made to the original file from my VPN provider was adding ``Table = 420`` and the ``PreUp`` and ``PreDown`` lines to configure iptables.
+
+Then start the VPN: ``wg-quick up wg1``. If all goes well you can run wg and see that the tunnel is active. If you want to test it’s working I suggest::
+
+    curl https://ifconfig.me/
+    curl --interface wg1 https://ifconfig.me/
+
+Example snippet from ``/opt/CAPEv2/conf/routing.conf`` configuration::
+
+    [vpn0]
+    name = vpn0
+    description = vpn_CC_wg1
+    interface = wg1
+    rt_table = wg1
+
+.. note:: It is required to register each VPN network interface with netplan
+    as described in the :ref:`routing_netplan` section. Check quick and dirty note in original VPN section.
+
+.. _`Original blog post on how to setup WireGuard with CAPE`: https://musings.konundrum.org/2020/12/12/wireguard-and-cape.html
+
 SOCKS Routing
 ^^^^^^^^^^^^^
 You also can use socks proxy servers to route your traffic.
 To manage your socks server you can use Socks5man software.
-Bulding them by yourself, using your favorite software, bying, etc
-The configuration is pretty simple, and looks like VPN, but you don't need to configure nothing else
+Building them by yourself, using your favorite software, buying, etc
+The configuration is pretty simple and looks like VPN, but you don't need to configure anything else
+
+Requires to install dependency: ``poetry run pip install git+https://github.com/CAPESandbox/socks5man``
 
 Example::
 
@@ -325,3 +563,78 @@ Example::
     description = CC_socks
     proxyport = 5000
     dnsport = 10000
+
+===============
+Troubleshooting
+===============
+
+Configuring the Internet connection in the Hosts (VMs) can become a tedious task given the elements involved in the correct functioning. Here you can find several ways of debugging the connections from and to the Hosts besides ``cuckoo.py -d``.
+
+Manually testing Internet connection
+====================================
+You can manually test the Internet connection from inside the VMs without the need of performing any analysis. To do so, you have to use the . This utility allows you to enable or disable specific **routes** and debug them. It is a "Standalone script to debug VM problems that allows to enable routing on VM".
+
+First, **start** the ``cape-rooter`` service with::
+
+    $ sudo systemctl start cape-rooter.service
+
+Assuming you already have any VM running, to test the internet connection using ``router_manager.py`` you have to execute the following commands::
+
+    $ sudo python3 router_manager.py -r internet -e --vm-name win1 --verbose
+    $ sudo python3 router_manager.py -r internet -d --vm-name win1 --verbose
+
+The ``-e`` flag is used to enable a route and ``-d`` is used to disable it. You can read more about all the options the utility has by running::
+
+    $ sudo python3 router_manager.py -h
+
+.. note:: The `--vm-name` parameters expects any ID from the ones in <machinery>.conf, not the label you named each VM with. To see the available options you can execute ``$ sudo python3 router_manager.py --show-vm-names``.
+
+Whenever you use the `router_manager.py <https://github.com/kevoreilly/CAPEv2/blob/master/utils/router_manager.py>`_ utility to either enable or disable any given route, there are changes made to ``iptables`` are you should be able to see them take place.
+
+For instance, this is how it looks **BEFORE** enabling any route::
+
+
+    $ ip rule
+    0:  from all lookup local
+    32766:  from all lookup main
+    32767:  from all lookup default
+
+
+And this is how it looks **AFTER** executing the following commands::
+
+    $ sudo python3 router_manager.py -r internet -e --vm-name win1 --verbose
+    internet eno1 eno1 {'label': 'win10', 'platform': 'windows', 'ip': 'X.X.X.133', 'arch': 'x64'} None None
+    $ sudo python3 router_manager.py -r internet -e --vm-name win2 --verbose
+    internet eno1 eno1 {'label': 'win10-clone', 'platform': 'windows', 'ip': 'X.X.X.134', 'arch': 'x64'} None None
+
+    $ ip rule
+    0:  from all lookup local
+    32764:  from X.X.X.134 lookup eno1
+    32765:  from X.X.X.133 lookup eno1
+    32766:  from all lookup main
+    32767:  from all lookup default
+
+Then again, if everything is configured as expected, when executing the utility with the ``-d`` option the IP rules should disappear, reverting them to their original state.
+
+If your routing configuration is correct, you should now be able to successfully ``ping 8.8.8.8``. If you disable the route you shouldn't be able to ping anything on the Internet.
+
+.. note::
+    Sometimes ip rules may remain undeleted for several reasons. You can manually delete them with ``$ sudo ip rule delete from $IP``, where $IP is the IP the rule refers to.
+
+Debugging ``iptables`` rules
+=============================
+
+Every single time the :ref:`rooter` brings up or down any route (assuming it works as expected) or you do so by using the `router_manager.py <https://github.com/kevoreilly/CAPEv2/blob/master/utils/router_manager.py>`_ utility, your iptables set of rules is modified in one way or another.
+
+To inspect the changes being made and verify them, you can use the ``watch`` utility preinstalled in the vast majority of \*nix systems. For example, to view rules created by CAPE-rooter or the utility you can run the following command::
+
+    $ sudo watch -n 1 iptables -L -n -v
+
+You can also leverage ``watch`` to inspect the connections being made from the Guest to the Host or viceversa::
+
+    $ sudo watch -n 1 'netstat -peanut | grep $IP'
+
+where $IP is the IP of your Guest.
+
+
+
diff --git a/docs/book/src/installation/index.rst b/docs/book/src/installation/index.rst
index 59752291210..f3ff67e4170 100644
--- a/docs/book/src/installation/index.rst
+++ b/docs/book/src/installation/index.rst
@@ -7,7 +7,7 @@ This chapter explains how to install CAPE.
 
 .. note::
 
-    This documentation refers to *Host* as the underlying operating systems on
+    This documentation refers to *Host* as the underlying operating system on
     which you are running CAPE (generally being a GNU/Linux distribution) and
     to *Guest* as the Windows virtual machine used to run the isolated analysis.
 
@@ -17,4 +17,3 @@ This chapter explains how to install CAPE.
     guest/index
     guest_physical/index
     upgrade
-
diff --git a/docs/book/src/installation/upgrade.rst b/docs/book/src/installation/upgrade.rst
index 281467a455d..10a5a8d699e 100644
--- a/docs/book/src/installation/upgrade.rst
+++ b/docs/book/src/installation/upgrade.rst
@@ -2,12 +2,11 @@
 Upgrade from a previous release
 ===============================
 
-CAPE Sandbox grows really fast and in every release new features are added and
-some others are fixed or removed.
+CAPE Sandbox grows fast. In every release, features are added, fixed and/or removed.
 There are two ways to upgrade your CAPE: start from scratch or migrate your
 "old" setup.
 The suggested way to upgrade CAPE is to start from a fresh setup because it's
-easier and faster than migrate your old setup.
+easier and faster than migrating your old setup.
 
 Upgrade starting from scratch
 =============================
@@ -15,7 +14,7 @@ Upgrade starting from scratch
 To start from scratch you have to perform a fresh setup as described in :doc:`index`.
 The following steps are suggested:
 
-1. Backup your installation.
+1. Back up your installation.
 2. Read the documentation shipped with the new release.
 3. Make sure to have installed all required dependencies, otherwise install them.
 4. Do a CAPE fresh installation of the Host components.
@@ -35,7 +34,7 @@ release files, as it might raise some problems because:
 
 * You are overwriting Python source files (.py) but Python bytecode files (.pyc)
   are still in place.
-* There are configuration files changes across the two versions, check our
+* There are configuration file changes across the two versions, check our
   CHANGELOG file for added or removed configuration options.
 * The part of CAPE which runs inside guests (agent.py) may change.
 * If you are using an external database like the reporting module for MongoDb a
@@ -44,22 +43,22 @@ release files, as it might raise some problems because:
 Migrate your CAPE
 ===================
 
-The following steps are suggested as requirement to migrate your data:
+The following steps are suggested as a requirement to migrate your data:
 
-1. Backup your installation.
+1. Back up your installation.
 2. Read the documentation shipped with the new release.
 3. Make sure to have installed all required dependencies, otherwise install them.
 4. Download and extract the latest CAPE.
 5. Reconfigure CAPE as explained in this book (copying old configuration files
-   is not safe because options can change between releases), and update agent in
+   is not safe because options can change between releases), and update the agent in
    your virtual machines.
 6. Copy from your backup "storage" and "db" folders. (Reports and analyses
    already present in "storage" folder will keep the old format.)
 
 Now setup Alembic (the framework used for migrations) and dateutil with::
 
-    pip3 install alembic
-    pip3 install python-dateutil
+    poetry run pip install alembic
+    poetry run pip install python-dateutil
 
 Enter the alembic migration directory in "utils/db_migration" with::
 
@@ -69,7 +68,7 @@ Before starting the migration script you must set your database connection in "c
 if you are using a custom one. Alembic migration script will use the database
 connection parameters configured in cuckoo.conf.
 
-Again, please remember to backup before launching migration tool! A wrong
+Again, please remember to backup before launching the migration tool! A wrong
 configuration may corrupt your data, backup should save kittens!
 
 Run the database migrations with::
@@ -82,8 +81,40 @@ Python library upgrades:
 
 PIP3:
 
-   $ pip3 install -U <library>
+   $ poetry run pip install -U <library>
 
 PIP3+git:
-   $ pip3 install -U git+<repo_url>
-   $ pip3 install -U git+https://github.com/doomedraven/sflock
+   $ poetry run pip install -U git+<repo_url>
+   $ poetry run pip install -U git+https://github.com/CAPEsandbox/sflock
+
+Troubleshooting:
+================
+When trying to update your local CAPE installation with poetry with either of the following commands::
+
+   $ sudo -u cape poetry install
+   $ sudo -u cape poetry update
+
+you may encounter the following error::
+
+   CalledProcessError
+      Command '['git', '--git-dir', '/tmp/pypoetry-git-web3.pyocemorcf/.git', '--work-tree', '/tmp/pypoetry-git-web3.pyocemorcf', 'checkout', 'master']' returned non-zero exit status 1.
+
+
+Or maybe when trying to update ``poetry`` itself with::
+
+   $ sudo -u cape poetry self update
+
+you may face the following error::
+
+   RuntimeError
+      Poetry was not installed with the recommended installer. Cannot update automatically.
+
+That is because you probably installed poetry with pip.
+
+In order to solve it you must first upgrade your local ``poetry`` installation with::
+
+   $ sudo pip3 install poetry --upgrade
+
+and then run the update command again::
+
+   $ sudo -u cape poetry update
diff --git a/docs/book/src/integrations/box-js.rst b/docs/book/src/integrations/box-js.rst
index 2248e0526dc..b8c3568817a 100644
--- a/docs/book/src/integrations/box-js.rst
+++ b/docs/book/src/integrations/box-js.rst
@@ -2,14 +2,17 @@
 Box-js
 ======
 
-* :ref:`instalation`
-* :ref:`preparation`
-* :ref:`starting`
-* :ref:`restapi`
+* :ref:`box_installation`
+* :ref:`box_preparation`
+* :ref:`box_starting`
+* :ref:`box_restapi`
 
-.. _instalation:
+.. _box_installation:
 
-* Quick and dirty notes how to integrate box-js to CAPE::
+Installation
+============
+
+* Quick and dirty notes on how to integrate box-js to CAPE::
 
     $ curl -sL https://deb.nodesource.com/setup_14.x | sudo -E bash -
     $ sudo apt install docker.io nodejs git
@@ -21,11 +24,11 @@ Box-js
     $ cd /opt/box-js
     $ sudo npm audit fix --force
 
-.. _preparation:
+.. _box_preparation:
 
 Preparation
 ===========
-* We will leave ``fixing and hardening of box-js for you``, here are just few examples::
+* We will leave ``fixing and hardening of box-js for you``, here are just a few examples::
 
     USERNAME="CAPE"
     IP="0.0.0.0"
@@ -46,7 +49,7 @@ Preparation
 
     $ cd integrations/api/
 
-* replace Dockerfile with this content, required to run fixed/patched box-js inside of th docker::
+* replace Dockerfile with this content, required to run fixed/patched box-js inside of the Docker::
 
     FROM node:10-alpine
     #ENV http_proxy http://PROXY_IP:PORT
@@ -61,15 +64,15 @@ Preparation
     WORKDIR /samples
     CMD box-js /samples --output-dir=/samples --loglevel=debug
 
-.. _starting:
+.. _box_starting:
 
 Starting box-js rest-api
 ========================
-* Default port is ``9000`` you can change it inside of api.py
+* The default port is ``9000`` you can change it inside of api.py
 
     $ node api.js
 
-.. _restapi:
+.. _box_restapi:
 
 Box-js rest-api endpoints
 =========================
diff --git a/docs/book/src/integrations/curtain.rst b/docs/book/src/integrations/curtain.rst
new file mode 100644
index 00000000000..9b1604b5074
--- /dev/null
+++ b/docs/book/src/integrations/curtain.rst
@@ -0,0 +1,26 @@
+=======
+Curtain
+=======
+
+* Detailed writeup by `Mandiant's powershell blog post`_
+* Configuration required in Virtual Machine. Example for Windows 7::
+
+    Windows 7 SP1, .NET at least 4.5, powershell 5 preferably over v4
+    KB3109118 - Script block logging back port update for WMF4
+    x64 - https://cuckoo.sh/vmcloak/Windows6.1-KB3109118-v4-x64.msu
+    x32 - https://cuckoo.sh/vmcloak/Windows6.1-KB3109118-v4-x86.msu
+    KB2819745 - WMF 4 (Windows Management Framework version 4) update for Windows 7
+
+    x64 - https://cuckoo.sh/vmcloak/Windows6.1-KB2819745-x64-MultiPkg.msu
+    x32 - https://cuckoo.sh/vmcloak/Windows6.1-KB2819745-x86-MultiPkg.msu
+    KB3191566 - https://www.microsoft.com/en-us/download/details.aspx?id=54616
+
+    You should create following registry entries
+    reg add "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\PowerShell\ModuleLogging\ModuleNames" /v * /t REG_SZ /d * /f /reg:64
+    reg add "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging" /v EnableScriptBlockLogging /t REG_DWORD /d 00000001 /f /reg:64
+    reg add "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\PowerShell\Transcription" /v EnableTranscripting /t REG_DWORD /d 00000001 /f /reg:64
+    reg add "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\PowerShell\Transcription" /v OutputDirectory /t REG_SZ /d C:\PSTranscipts /f /reg:64
+    reg add "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\PowerShell\Transcription" /v EnableInvocationHeader /t REG_DWORD /d 00000001 /f /reg:64
+
+
+.. _`Mandiant's powershell blog post`: https://www.mandiant.com/resources/blog/greater-visibility
diff --git a/docs/book/src/integrations/index.rst b/docs/book/src/integrations/index.rst
index c3e45838b2d..0b4cfe6fa41 100644
--- a/docs/book/src/integrations/index.rst
+++ b/docs/book/src/integrations/index.rst
@@ -3,10 +3,13 @@
 Integrations
 =============
 
-This chapter explains how to Intagrate external/3rd part services to CAPE.
+This chapter explains how to integrate external/3rd party services to CAPE.
 CAPE is written in a modular architecture built to be as customizable as it can,
 to fit the needs of all users.
 
 .. toctree::
 
     box-js
+    curtain
+    librenms
+    suricata
diff --git a/docs/book/src/integrations/librenms.rst b/docs/book/src/integrations/librenms.rst
new file mode 100644
index 00000000000..f3c8cadcb86
--- /dev/null
+++ b/docs/book/src/integrations/librenms.rst
@@ -0,0 +1,66 @@
+========
+LibreNMS
+========
+
+LibreNMS is capable of monitoring stats for CAPEv2. This is handled
+by a SNMP extend.
+
+::
+
+    wget https://raw.githubusercontent.com/librenms/librenms-agent/master/snmp/cape -O /etc/snmp/cape
+    chmod +x /etc/snmp/cape
+    apt-get install libfile-readbackwards-perl libjson-perl libconfig-tiny-perl libdbi-perl libfile-slurp-perl libstatistics-lite-perl libdbi-perl libdbd-pg-perl
+
+With that all in place, you will then need to create a config file for
+it at ``/usr/local/etc/cape_extend.ini``. Unless you are doing
+anything custom DB wise, the settings below, but with the proper PW
+will work.
+
+::
+
+    # DBI connection DSN
+    dsn=dbi:Pg:dbname=cape;host=127.0.0.1
+
+    # DB user
+    user=cape
+
+    # DB PW
+    pass=12345
+
+This module will also send warnings, errors, and critical errors found in
+the logs to LibreNMS. To filter these,
+``/usr/local/etc/cape_extend.ignores`` can be used. The format for
+that is as below.
+
+::
+
+    <ignore level> <pattern>
+
+This the ignore level will be lower cased. The separator between the
+level and the regexp pattern is ``/[\ \t]+/``. So if you want to ignore
+the two warnings generated when VM traffic is dropped, you would use
+the two lines such as below.
+
+::
+
+    WARNING PCAP file does not exist at path
+    WARNING Unable to Run Suricata: Pcap file
+
+On the CAPEv2 side, you will need to make a few tweaks to ``reporting.conf``.
+``litereport`` will need enabled and  ``keys_to_copy`` should include
+'signatures' and 'detections'.
+
+Finally will need to enable the extend for your
+
+::
+
+    extend cape /etc/snmp/extends/cape
+
+Once snmpd is restarted and the the device rediscovered via LibreNMS,
+you will then be able to
+
+For more detailed monitoring, if using KVM, you will likely want to
+also considering using `HV::Monitor`, which will allow detailed
+monitoring various stats VMs.
+
+.. _`HV::Monitor`: https://docs.librenms.org/Extensions/Applications/#hv-monitor
diff --git a/docs/book/src/integrations/suricata.rst b/docs/book/src/integrations/suricata.rst
new file mode 100644
index 00000000000..6cd5d3a2094
--- /dev/null
+++ b/docs/book/src/integrations/suricata.rst
@@ -0,0 +1,112 @@
+========
+Suricata
+========
+
+Suricata can be used to grab binaries or the like off the wire and
+then feed them to CAPEv2 for detonation. This involves several parts.
+
+1. A box running Suricata listening on a network span.
+2. `suricata_extract_submit
+   <https://metacpan.org/dist/CAPE-Utils/view/src_bin/suricata_extract_submit>`_
+   from `CAPE::Utils <https://metacpan.org/dist/CAPE-Utils>`_ for
+   handling found binaries.
+3. A CAPEv2 box for detonation.
+4. `mojo_cape_submit
+   <https://metacpan.org/dist/CAPE-Utils/view/src_bin/mojo_cape_submit>`_
+   from `CAPE::Utils <https://metacpan.org/dist/CAPE-Utils>`_ for
+   accepting submissions via `suricata_extract_submit`.
+
+Suricata requires rules are capable of this and a output configured for `file
+extraction
+<https://docs.suricata.io/en/latest/file-extraction/file-extraction.html>`_.
+
+`CAPE::Utils` can be installed via the command `cpanm CAPE::Utils` and
+on some Linux distros the headers, which on Debian is included in the
+package `zlib1g-dev`.
+
+Once that is installed, a config file for `suricata_extract_submit`
+needs configured. The default location is
+`usr/local/etc/suricata_extract_submit.ini`.
+
+::
+
+    # the API key to use if needed
+    #apikey=
+    # URL to find mojo_cape_submit at
+    url=http://192.168.14.15:8080/
+    # the group/client/whathaveya slug
+    slug=foo
+    # where Suricata has the file store at
+    filestore=/var/log/suricata/files
+    # a file of IPs or subnets to ignore SRC or DEST IPs of
+    #ignore=
+    # a file of regex to use for checking host names go ignore
+    #ignoreHosts=
+    # if it should use HTTPS_PROXY and HTTP_PROXY from ENV or not
+    env_proxy=0
+    # stats file holding only the stats for the last run
+    stats_file=/var/cache/suricata_extract_submit_stats.json
+    # stats dir
+    stats_dir=/var/cache/suricata_extract_submit_stats/
+
+And then a cron job setup akin to below to handle the submission.
+
+::
+
+   */5 * * * * /usr/local/bin/suricata_extract_submit 2> /dev/null > /dev/null
+
+The output is safe to dump to /dev/null as script sends it's data to
+syslog as `suricata_extract_submit` to the `daemon` log.
+
+You can check if this has hung like below. 
+
+::
+
+   /usr/local/libexec/nagios/check_file_age -i -f /var/run/suricata_extract_submit.pid
+
+And if monitoring via `LibreNMS
+<https://docs.librenms.org/Extensions/Applications/#suricata-extract>`_
+the following line can be added to the SNMPD config to enable
+monitoring of it. There are then several rules available in the rules
+collection that can be used for alerting upon submission issues.
+
+::
+
+   extend suricata_extract /usr/local/bin/suricata_extract_submit_extend
+
+With the submission `CAPE::Utils` just needs installed on the CAPEv2
+system beingused for detonation. In the default configuration of
+CAPEv2 does not require `/usr/local/etc/cape_utils.ini` being used,
+but may be worthwhile reviewing the `documentation
+<https://metacpan.org/pod/CAPE::Utils#CONFIG-FILE>`_. You will need to
+make sure the directories specifeid via the variable `incoming` and
+`incoming_json` exists and is writable/readable by CAPEv2.
+
+And if using the supplied `systemd service
+<https://github.com/LilithSec/CAPE-Utils/blob/main/systemd/mojo_cape_submit.service>`_
+file the following config file needs configured at
+`/usr/local/etc/mojo_cape_submit.env`. For more information on
+deploying Mojolicious based apps, the listen string, or for writing
+your own service file or something similar, checkout docs for
+`Mojolicious Deployment
+<https://docs.mojolicious.org/Mojolicious/Guides/Cookbook#DEPLOYMENT>`_.
+
+::
+
+   CAPE_USER="cape"
+   LISTEN_ON="http://192.168.14.15:8080"
+
+Security `mojo_cape_submit` defaults to IP and can be controlled by
+the `auth` value in the config and has the default value of `subnet`
+as being
+`192.168.0.0/16,127.0.0.1/8,::1/128,172.16.0.0/12,10.0.0.0/8`, which
+allows submission via anything on common private/local subnets.
+
+If you using `LibreNMS
+<https://docs.librenms.org/Extensions/Applications/>`_, you can
+monitor monitor it via `mojo_cape_submit_extend` by adding the
+following to your SNMPD config.
+
+::
+
+   extend mojo_cape_submit /usr/local/bin/mojo_cape_submit_extend
diff --git a/docs/book/src/integrations/tracee-linux.rst b/docs/book/src/integrations/tracee-linux.rst
new file mode 100644
index 00000000000..b3d490a3b5f
--- /dev/null
+++ b/docs/book/src/integrations/tracee-linux.rst
@@ -0,0 +1,46 @@
+.. _tracee:
+
+========
+Tracee eBPF for Linux
+========
+
+CAPEv2 now has support for [Aqua Security Tracee](https://www.aquasec.com/products/tracee/), an eBPF-based threat detection engine with built-in signatures, for Linux dynamic analysis to complement the existing `strace` implementation.
+
+To use it, you need to install the [CAPEv2 Community Repo](https://github.com/CAPESandbox/community). Here is a guide: https://capev2.readthedocs.io/en/latest/usage/utilities.html#community-download-utility.
+
+Once you have installed the CAPEv2 Community Repo, you should have `analyzer/linux/modules/auxiliary/tracee.py`.
+
+Tracee has functionality to:
+
+- **capture artifacts** such as loaded kernel modules, suspicious memory regions and eBPF programs in their **run-time state**, allowing their **easy extraction even from packed and encrypted malwares**
+- **capture suspicious events** such as:
+    - Dynamic Code Loading
+    - Fileless Execution
+    - Syscall Table Hooking
+    - `kallsyms_lookup_name` -  it could be used in some rootkits ([more information](https://github.com/xcellerator/linux_kernel_hacking/issues/3))
+    - **Kernel Module Loading** - new kernel module loaded (possible kernel rookits)
+    - **Process VM Write** - detect potential code injection attacks using the `process_vm_writev` syscall
+    - **Scheduled Task Modification** - like cron
+    - **Standard I/O Over Socket** - potential remote shell
+    - **Many more...**
+- operate at the eBPF level to capture events
+
+The information captured from Tracee will then be displayed in a results UI:
+
+![Screenshot of the Tracee Behaviour UI](https://github.com/user-attachments/assets/039ea42f-36bd-4530-b5d9-48face5f642b)
+
+Configuring Tracee using Policies
+===
+
+The CAPEv2 Tracee module provides `analyzer/linux/modules/auxiliary/tracee/policy.yml` to Tracee. This policy.yml file defines how Tracee should behave and what events it should capture. You can modify locally it to fit your needs.
+
+Documentation for the policy file: https://aquasecurity.github.io/tracee/v0.20/docs/policies/
+
+Verifying Functionality
+===
+
+After performing the Tracee setup for Linux guests detailed in [Installing the Linux guest](https://capev2.readthedocs.io/en/latest/installation/guest/linux.html), you may want to verify the functionality of your installation and make sure everything is working well.
+
+You can obtain a **live malware sample** for Linux to load into CAPEv2 from https://bazaar.abuse.ch/sample/bd0141e88a0d56b508bc52db4dab68a49b6027a486e4d9514ec0db006fe71eed/. Please be careful with this file as it's actual malware. We do not take responsibility for anything that goes wrong.
+
+Once the task is finished processing, the "Detailed Behaviour (Tracee)" tab ought to be available.
\ No newline at end of file
diff --git a/docs/book/src/introduction/index.rst b/docs/book/src/introduction/index.rst
index 3d863b4e77c..7da31676b82 100644
--- a/docs/book/src/introduction/index.rst
+++ b/docs/book/src/introduction/index.rst
@@ -4,12 +4,11 @@ Introduction
 ============
 
 This is an introductory chapter to CAPE Sandbox.
-It explains some basic malware analysis concepts, what's CAPE and how it can fit
-in malware analysis.
+It explains some basic malware analysis concepts, what CAPE is, and how it can fit
+into malware analysis.
 
 .. toctree::
 
     sandboxing
     what
     license
-
diff --git a/docs/book/src/introduction/license.rst b/docs/book/src/introduction/license.rst
index c5264b0ca85..b9e910f5c02 100644
--- a/docs/book/src/introduction/license.rst
+++ b/docs/book/src/introduction/license.rst
@@ -10,7 +10,7 @@ Disclaimer
 ==========
 
 Cuckoo/CAPE is distributed as it is, in the hope that it will be useful, but without
-any warranty neither the implied merchantability or fitness for a particular
+any warranty nor the implied merchantability or fitness for a particular
 purpose.
 
 Whatever you do with this tool is uniquely your own responsibility.
@@ -24,7 +24,7 @@ Stichting in the Netherlands and it's mainly dedicated to support of the
 development and growth of Cuckoo Sandbox, an open source malware analysis
 system, and the surrounding projects and initiatives.
 
-The Foundation operates to secure financial and infrastructure support to our
+The Foundation operates to secure financial and infrastructure support for our
 software projects and coordinates the development and contributions from the
 community.
 
diff --git a/docs/book/src/introduction/sandboxing.rst b/docs/book/src/introduction/sandboxing.rst
index 264b4f86e50..8bc83a19dde 100644
--- a/docs/book/src/introduction/sandboxing.rst
+++ b/docs/book/src/introduction/sandboxing.rst
@@ -9,7 +9,7 @@ users and untrusted websites.*".
 
 This concept applies to malware analysis' sandboxing too: our goal is to run an
 unknown and untrusted application or file inside an isolated environment and get
-information on what it does.
+information about what the file does.
 
 Malware sandboxing is a practical application of the dynamical analysis
 approach: instead of statically analyzing the binary file, it gets executed and
@@ -18,7 +18,7 @@ monitored in real-time.
 This approach obviously has pros and cons, but it's a valuable technique to
 obtain additional details on the malware, such as its network behavior.
 Therefore it's a good practice to perform both static and dynamic analysis while
-inspecting a malware, in order to gain a deeper understanding of it.
+inspecting a malware, to gain a deeper understanding of it.
 
 Simple as it is, CAPE is a tool that allows you to perform sandboxed malware
 analysis.
@@ -29,23 +29,23 @@ Using a Sandbox
 ===============
 
 Before starting to install, configure and use CAPE, you should take some
-time to think on what you want to achieve with it and how.
+time to think about what you want to achieve with it and how.
 
 Some questions you should ask yourself:
 
     * What kind of files do I want to analyze?
     * What volume of analyses do I want to be able to handle?
-    * Which platform do I want to use to run my analysis on?
-    * What kind of information I want about the file?
+    * Which platform do I want to use to run my analysis?
+    * What kind of information do I want about the file?
 
 The creation of the isolated environment (the virtual machine) is probably the
 most critical and important part of a sandbox deployment: it should be done
 carefully and with proper planning.
 
-Before getting hands on the virtualization product of your choice, you should
+Before getting your hands on the virtualization product of your choice, you should
 already have a design plan that defines:
 
-    * Which operating system, language and patching level to use.
+    * Which operating system, language, and patching level to use.
     * Which software to install and which versions (particularly important when analyzing exploits).
 
 Consider that automated malware analysis is not deterministic and its success
@@ -55,19 +55,18 @@ achieve and may not always succeed.
 Your goal should be both to create a system able to handle all the requirements
 you need as well as try to make it as realistic as possible.
 
-For example you could consider leaving some intentional traces of normal usage,
-such as browsing history, cookies, documents, images etc. If a malware is
+For example, you could consider leaving some intentional traces of normal usage,
+such as browsing history, cookies, documents, images, etc. If a malware sample is
 designed to operate, manipulate or steal such files you'll be able to notice it.
 
-Virtualized operating systems usually carry a lot of traces with them that makes
+Virtualized operating systems usually carry a lot of traces with them which makes
 them very easily detectable. Even if you shouldn't overestimate this problem,
 you might want to take care of this and try to hide as many virtualization
 traces as possible.
-There is a lot of literature on Internet regarding virtualization detection
+There is a lot of literature on the Internet regarding virtualization detection
 techniques and countermeasures.
 
-Once you finished designing and preparing the prototype of system you want, you
-can proceed creating it and deploying it. You will be always in time to
+Once you finished designing and preparing the prototype of the system you want, you
+can proceed with creating and deploying it. You will be always in time to
 change things or slightly fix them, but remember that good planning at the
-beginning always means less troubles in the long run.
-
+beginning always means fewer troubles in the long run.
diff --git a/docs/book/src/introduction/what.rst b/docs/book/src/introduction/what.rst
index 9d8c6e6c448..fe58fa65021 100644
--- a/docs/book/src/introduction/what.rst
+++ b/docs/book/src/introduction/what.rst
@@ -2,99 +2,91 @@
 What is CAPE?
 ===============
 
-CAPE is an open source automated malware analysis system.
+CAPE is an open-source malware sandbox.
 
-It's used to automatically run and analyze files and collect comprehensive
-analysis results that outline what the malware does while running inside an
-isolated Windows operating system.
+A sandbox is used to execute malicious files in an isolated enviornment
+whilst instrumenting their dynamic behaviour and collecting forensic artefacts.
 
-It can retrieve the following type of results:
+CAPE was derived from Cuckoo v1 which features the following core capabilities
+on the Windows platform:
 
-    * Traces of win32 API calls performed by all processes spawned by the malware.
-    * Files being created, deleted and downloaded by the malware during its execution.
-    * Memory dumps of the malware processes.
-    * Network traffic trace in PCAP format.
-    * Screenshots of Windows desktop taken during the execution of the malware.
-    * Full memory dumps of the machines.
+    * Behavioral instrumentation based on API hooking
+    * Capture of files created, modified and deleted during execution
+    * Network traffic capture in PCAP format
+    * Malware classification based on behavioral and network signatures
+    * Screenshots of the desktop taken during the execution of the malware
+    * Full memory dumps of the target system
+
+CAPE complements Cuckoo's traditional sandbox output with several key additions:
+
+    * Automated dynamic malware unpacking
+    * Malware classification based on YARA signatures of unpacked payloads
+    * Static & dynamic malware configuration extraction
+    * Automated debugger programmable via YARA signatures, allowing:
+        * Custom unpacking/config extractors
+        * Dynamic anti-sandbox countermeasures
+        * Instruction traces
+    * Interactive desktop
 
 Some History
 ============
 
 Cuckoo Sandbox started as a `Google Summer of Code`_ project in 2010 within
-`The Honeynet Project`_.
-It was originally designed and developed by *Claudio “nex” Guarnieri*, who is
-still the main developer and coordinates all efforts from joined developers and
-contributors.
-
-After initial work during the summer 2010, the first beta release was published
-on Feb. 5th 2011, when Cuckoo was publicly announced and distributed for the
-first time.
-
-In March 2011, Cuckoo has been selected again as a supported project during
-Google Summer of Code 2011 with The Honeynet Project, during which
-*Dario Fernandes* joined the project and extended its functionality.
-
-On November 2nd 2011 Cuckoo the release of its 0.2 version to the public as the
-first real stable release.
-On late November 2011 *Alessandro "jekil" Tanasi* joined the team expanding
-Cuckoo's processing and reporting functionality.
-
-On December 2011 Cuckoo v0.3 gets released and quickly hits release 0.3.2 in
-early February.
-
-In late January 2012 we opened `Malwr.com`_, a free and public running Cuckoo
-Sandbox instance provided with a full fledged interface through which people
-can submit files to be analysed and get results back.
-
-In March 2012 Cuckoo Sandbox wins the first round of the `Magnificent7`_ program
-organized by `Rapid7`_.
-
-During the Summer of 2012 *Jurriaan "skier" Bremer* joined the development team,
-refactoring the Windows analysis component sensibly improving the analysis'
-quality.
-
-On 24th July 2012, Cuckoo Sandbox 0.4 is released.
-
-On 20th December 2012, Cuckoo Sandbox 0.5 "To The End Of The World" is released.
-
-On 15th April 2013 we released Cuckoo Sandbox 0.6, shortly after having launched
-the second version of `Malwr.com`_.
-
-On 1st August 2013 *Claudio “nex” Guarnieri*, *Jurriaan "skier" Bremer* and
-*Mark "rep" Schloesser* presented `Mo' Malware Mo' Problems - Cuckoo Sandbox to the rescue`_
-at Black Hat Las Vegas.
-
-On 9th January 2014, Cuckoo Sandbox 1.0 is released.
-
-In March 2014 `Cuckoo Foundation`_ born as non-profit organization dedicated to growth of Cuckoo Sandbox and the
-surrounding projects and initiatives.
-
-On 7th April 2014, Cuckoo Sandbox 1.1 is released.
-
-.. _`Google Summer of Code`: http://www.google-melange.com
-.. _`The Honeynet Project`: http://www.honeynet.org
-.. _`Malwr.com`: http://malwr.com
-.. _`Magnificent7`: http://community.rapid7.com/community/open_source/magnificent7
-.. _`Mo' Malware Mo' Problems - Cuckoo Sandbox to the rescue`: https://media.blackhat.com/us-13/US-13-Bremer-Mo-Malware-Mo-Problems-Cuckoo-Sandbox-Slides.pdf
-.. _`Rapid7`: http://www.rapid7.com
-.. _`Cuckoo Foundation`: http://cuckoofoundation.org/
-
-On 30th of November 2015 Cuckoo-modified was moved to Brad's repository, that got huge improvements to monitor and other parts of core system
+`The Honeynet Project`_. It was originally designed and developed by Claudio
+Guarnieri, the first beta release was published in 2011. In January 2014,
+Cuckoo v1.0 was released.
+
+2015 was a pivotal year, with a significant fork in Cuckoo's history.
+Development of the original monitor and API hooking method was halted in the
+main Cuckoo project. It was replaced by alternative monitor using a
+``restructuredText``-based signature format compiled via Linux toolchain,
+created by Jurriaan Bremer.
+
+Around the same time, a fork called cuckoo-modified was created by Brad 'Spender'
+Spengler continuing development of the original monitor with significant improvements
+including 64-bit support and importantly introducting Microsoft's Visual Studio compiler.
 .. _ `Cuckoo-modified`: https://github.com/spender-sandbox/cuckoo-modified
 
-On 16th September 2016 CAPE(Configuration And Payload Extraction) was born
+During that same year development of a dynamic command-line configuration and payload
+extraction tool called CAPE was begun at Context Information Security by Kevin O'Reilly.
+The name was coined as an acronym of 'Config And Payload Extraction' and the original
+research focused on using API hooks provided by Microsoft's Detours library to capture
+unpacked malware payloads and configuration. However, it became apparent that API hooks
+alone provide insufficient power and precision to allow for unpacking of payloads or
+configs from arbitrary malware.
+
+For this reason research began into a novel debugger concept to allow malware to be
+precisely controlled and instrumented whilst avoiding use of Microsoft debugging
+interfaces, in order to be as stealthy as possible. This debugger was integrated
+into the proof-of-concept Detours-based command-line tool, combining with API hooks
+and resulting in very powerful capabilities.
+
+When initial work showed that it would be possible to replace Microsoft Detours
+with cuckoo-modified's API hooking engine, the idea for CAPE Sandbox was born.
+With the addition of the debugger, automated unpacking, YARA-based classification
+and integrated config extraction, in September 2016 at 44con, CAPE Sandbox was
+publicly released for the first time:
 .. _ `CAPE CTXIS`: https://github.com/ctxis/CAPE
-.. _ `CAPE upstream`: https://github.com/kevoreilly/CAPE
 
-On 20th October 2019 CAPEv2 Python3
+In the summer of 2018 the project was fortunate to see the beginning of huge
+contributions from Andriy 'doomedraven' Brukhovetskyy, a long-time Cuckoo
+contributor. In 2019 he began the mammoth task of porting CAPE to Python 3
+and in October of that year CAPEv2 was released:
 .. _ `CAPEv2 upstream`: https://github.com/kevoreilly/CAPEv2
 
+CAPE has been continuously developed and improved to keep pace with advancements
+in both malware and operating system capabilities. In 2021, the ability to program
+CAPE's debugger during detonation via dynamic YARA scans was added, allowing for
+dynamic bypasses to be created for anti-sandbox techniques. Windows 10 became the
+default operating system, and other significant additions include interactive desktop,
+AMSI (Anti-Malware Scan Interface) payload capture, 'syscall hooking' based on Microsoft
+Nirvana and debugger-based direct/indirect syscall countermeasures.
 
 Use Cases
 =========
 
 CAPE is designed to be used both as a standalone application as well as to be
-integrated in larger frameworks, thanks to its extremely modular design.
+integrated into larger frameworks, thanks to its extremely modular design.
 
 It can be used to analyze:
 
@@ -111,8 +103,8 @@ It can be used to analyze:
     * Python files
     * *Almost anything else*
 
-Thanks to its modularity and powerful scripting capabilities, there's not limit
-to what you can achieve with CAPE.
+Thanks to its modularity and powerful scripting capabilities, there's no limit
+to what you can achieve with CAPE!
 
 For more information on customizing CAPE, see the :doc:`../customization/index`
 chapter.
@@ -120,36 +112,35 @@ chapter.
 Architecture
 ============
 
-CAPE Sandbox consists of a central management software which handles sample
+CAPE Sandbox consists of central management software which handles sample
 execution and analysis.
 
 Each analysis is launched in a fresh and isolated virtual machine.
-CAPE's infrastructure is composed by an Host machine (the management
+CAPE's infrastructure is composed of a Host machine (the management
 software) and a number of Guest machines (virtual machines for analysis).
 
 The Host runs the core component of the sandbox that manages the whole
 analysis process, while the Guests are the isolated environments
-where the malware samples get actually safely executed and analyzed.
+where the malware samples get safely executed and analyzed.
 
 The following picture explains CAPE's main architecture:
 
     .. image:: ../_images/schemas/architecture-main.png
         :align: center
 
-Although the recommended setup is *GNU/Linux* (Ubuntu LTS preferably) as host and
-*Windows 7* as guest.
+The recommended setup is *GNU/Linux* (Ubuntu LTS preferably) as the Host and
+*Windows 10 21H2* as a Guest.
 
 Obtaining CAPE
 ================
 
 CAPE can be downloaded from the `official git repository`_, where the stable and
-packaged releases are distributed, or can be cloned from our `official git
+packaged releases are distributed or can be cloned from our `official git
 repository`_.
 
     .. warning::
 
-        Tt most likely lacks updated documentation will happens, for that we try to keep `changelog`_.
+        It is very likely that documentation is not up-to-date, but for that we try to keep a `changelog`_.
 
 .. _`official git repository`: https://github.com/kevoreilly/CAPEv2
 .. _`changelog`: https://github.com/kevoreilly/CAPEv2/blob/master/changelog.md
-
diff --git a/docs/book/src/usage/api.rst b/docs/book/src/usage/api.rst
index f03c4ab3f26..e0411e0732b 100644
--- a/docs/book/src/usage/api.rst
+++ b/docs/book/src/usage/api.rst
@@ -1,26 +1,36 @@
-===================
-Current REST API v2
-===================
+========
+REST API
+========
 
-To see current REST api see ``/apiv2/`` you will find all endpoints and details how to do requests
+To see the current hosted REST API documentation head to ``/apiv2/``. You will find all endpoints and details on how to do requests.
 
-`api example`: https://capesandbox.com/apiv2/
+`API example`: https://capesandbox.com/apiv2/
 
-To enable it, we use django-rest-framework::
+To enable the REST API, we use `django-rest-framework`::
 
-    $ pip3 install djangorestframework
+    $ poetry run pip install djangorestframework
 
 .. _`django-rest-framework`: https://www.django-rest-framework.org
 
-To generate user autorization token:
+To generate a user authorization token:
 
 .. code-block:: python
 
-    # By hand
-    python3 manage.py drf_create_token <your_user>
+    # Ensure you are in CAPE's web directory
+    cd /opt/CAPEv2/web
 
-    # Auto generation
+    # To create super user aka admin
+    sudo -u cape poetry run python3 manage.py createsuperuser
+
+    # To create normal user, use web interface /admin/ (in case if you not changed path)
+
+    # By hand, only required if auth enabled and user MUST exist
+    sudo -u cape poetry run python3 manage.py drf_create_token <your_user>
+
+    # Auto generation local or any public instance
     curl -d "username=<USER>&password=<PASSWD>" http://127.0.0.1:8000/apiv2/api-token-auth/
+    curl -d "username=<USER>&password=<PASSWD>" https://capesandbox.com/apiv2/api-token-auth/
+    curl -d "username=<USER>&password=<PASSWD>" http(s)://<ANY_CAPE>/apiv2/api-token-auth/
 
     # Usage
     import requests
@@ -29,55 +39,24 @@ To generate user autorization token:
     headers = {'Authorization': 'Token <YOUR_TOKEN>'}
     r = requests.get(url, headers=headers)
 
-===========
-REST API v1
-===========
-
-To see current REST api see ``/api/`` you will find all endpoints and details how to do requests
-
-
-`api example`: https://capesandbox.com/api/
-
-To enable auth on this api you can use htpasswd::
-
-    $ apt install htpasswd
-
-.. _`htpasswd`: https://httpd.apache.org/docs/2.4/programs/htpasswd.html
-
-Once you have enabled it, you can just specify ``username`` and ``password`` as ``GET/POST`` parameters, and you will have unlimited api on limited for the rest
+`CAPE throttling`_, aka requests per minute/hour/day.
+=====================================================
 
-.. code-block:: python
-
-    # Simple example of authentificated api usage, just include username and password in each request
-    import requests
-    requests.get(URL, params={"username":"<your_username>", "password": "<your apikey>"})
-    requests.get(URL, data={"username":"<your_username>", "password": "<your apikey>"})
-
-
-==============================================================
-REST API deprecated, used only by dist.py aka distributed CAPE
-==============================================================
+* Requires token authentication enabled in ``api.conf``
+* Default 5/m
+* You can change the default throttle limits in ``api.conf``
+* To change the user limit go to django admin ``/admin/`` if you didn't change the path, and set the limit per user in the user profile at the bottom.
 
-As mentioned in :doc:`submit`, CAPE provides a simple and lightweight REST
-API server implemented in `Bottle.py`_, therefore in order to make the service
-work you'll need it installed. Bottle release must be 0.10 or above.
+.. _`CAPE throttling`: https://github.com/kevoreilly/CAPEv2/blob/master/web/apiv2/throttling.py
 
-With Pip::
 
-    $ pip3 install bottle
+.. warning::
+    All documentation below this warning is deprecated.
 
-.. _`Bottle.py`: http://www.bottlepy.org
 
-Starting the API server
-=======================
-
-In order to start the API server you can simply do::
-
-    $ ./utils/api.py
-
-By default it will bind the service on **localhost:8090**. If you want to change those values, you can for example do this::
-
-    $ ./utils/api.py --host 0.0.0.0 --port 1337
+=================
+api.py DEPRECATED
+=================
 
 Resources
 =========
@@ -127,17 +106,19 @@ Following is a list of currently available resources and a brief description of
 
         Adds a file to the list of pending tasks. Returns the ID of the newly created task.
 
-        **Example request**::
+        **Example request**
+        .. code-block:: bash
 
             curl -F file=@/path/to/file http://localhost:8090/tasks/create/file
 
-        **Example request using Python**::
+        **Example request using Python**
+        .. code-block:: python
 
             import requests
             import json
 
             REST_URL = "http://localhost:8090/tasks/create/file"
-            SAMPLE_FILE = "/path/to/malwr.exe"
+            SAMPLE_FILE = "/path/to/malware.exe"
 
             with open(SAMPLE_FILE, "rb") as sample:
                 multipart_file = {"file": ("temp_file_name", sample)}
@@ -186,7 +167,8 @@ Following is a list of currently available resources and a brief description of
 
             curl -F url="http://www.malicious.site" http://localhost:8090/tasks/create/url
 
-        **Example request using Python**::
+        **Example request using Python**
+        .. code-block:: python
 
             import requests
             import json
@@ -202,7 +184,7 @@ Following is a list of currently available resources and a brief description of
             json_decoder = json.JSONDecoder()
             task_id = json_decoder.decode(request.text)["task_id"]
 
-            # Add your code toerror checking if task_id is None.
+            # Add your code to error checking if task_id is None.
 
         **Example response**::
 
diff --git a/docs/book/src/usage/clean.rst b/docs/book/src/usage/clean.rst
index 3224f56ad37..41ed91c9cbe 100644
--- a/docs/book/src/usage/clean.rst
+++ b/docs/book/src/usage/clean.rst
@@ -4,15 +4,9 @@
 Clean all Tasks and Samples
 ===========================
 
-Since CAPEv2 a built-in **--clean** feature has been added which does not
-only have the same functionality as the now-deprecated :ref:`./utils/cleaner.py`
-utility <cleanup-utility>`, but also drops all associated information of the
-tasks and samples in the database. If you submit a task after running
-**--clean** then you'll start with ``Task #1`` again.
-
 To clean your setup, run `-h` to see available options::
 
-    $ ./utils/cleaner.py -h
+    $ poetry run python utils/cleaners.py -h
 
 To sum up, this command does the following:
 
@@ -24,5 +18,11 @@ To sum up, this command does the following:
 
 .. warning::
    If you use this command you will delete permanently all data stored by CAPE in all
-   storages: file system, SQL database and MongoDB/ElasticSearch database. Use it only
+   storages: file system, SQL database, and MongoDB/ElasticSearch database. Use it only
    if you are sure you would clean up all the data.
+
+After executing the ``poetry run python cleaners.py --clean`` utility, you must restart CAPE service as it destroys the database.::
+
+   $ sudo systemctl restart cape
+
+After any other option, you don't need to restart the service.
diff --git a/docs/book/src/usage/cluster_administration.rst b/docs/book/src/usage/cluster_administration.rst
new file mode 100644
index 00000000000..886963c0036
--- /dev/null
+++ b/docs/book/src/usage/cluster_administration.rst
@@ -0,0 +1,103 @@
+============================
+CAPE advanced administration
+============================
+
+WIP YET!
+--------
+
+Everything is easy when you have one server. But when you have many servers or even cluster some parts become more complicated.
+And when you run your private fork due to custom parts of CAPE, is where the challenge start.
+For that reason I wrote ``admin/admin.py``. With this utility script you can do a lot of different interesting things that @doomedraven
+faced with his CAPE clusters. Just to mention some:
+
+* Servers in different networks that requires different SSH pivoting.
+* Deploy 1 or N modified number of files (to be pushed to repo) or that was merged by another person and you need to deploy it after ``git pull``.
+* Compare ``upstream`` repo to your ``private fork`` or to list of files on your servers. This helps spot badly deployed files, where sha256 doesn't match.
+* Execute commands on all servers.
+* Pull files.
+* See ``-h for the rest of your options``
+
+Dependencies
+------------
+You need to add your ssh key to ``.ssh/authorized_keys``. I personally suggest to add it under ``root`` user.
+
+* Install dependencies:
+    * ``cd /opt/CAPEv2 && poetry run pip install scp paramiko mmh3 deepdiff``
+
+* To install them on all servers you can run:
+    * ``poetry run python admin/admin.py -e "sudo -H -u cape bash -c 'cd /opt/CAPEv2 && poetry run pip install mmh3 deepdiff'"``
+
+SSH Pivoting explained
+======================
+
+SSH pivoting is when you access to one server using another as ``proxy``. In case if you need deeper explanation of this. Google it!
+``admin.py`` support two types of of pivoting, simple and more complex. You need to configure ``admin/admin_conf.py``
+
+You -> ssh proxy server -> server(s)
+    * ``-jb`` or ``--jump-box`` - is simple one server proxy pivoting. Using ``JUMP_BOX`` from config.
+
+You -> second ssh proxy server -> first proxy server -> server(s)
+    * ``-jbs`` or ``--jump-box-second`` - is more complex setup when you have to use two proxy servers. Using ``JUMP_BOX_SECOND`` from config.
+
+
+Comparing files
+===============
+
+The idea of this is to spot files that doesn't match and fix them. Right now only deletion works, but in future it will support deploying of mismatched files.
+
+You can generate local listing for example for upstream repo or your private repo:
+    * ``poetry run python admin/admin.py --generate-files-listing --directory <path to folder upstream/private repo> --filename <path/name to store listing>``
+
+To get file listing from all your servers you can just run:
+    * ``poetry run python admin/admin.py --enum-all-servers``
+
+Compare two files:
+    * ``poetry run python admin/admin.py --check-files-difference <file1> <file2>``
+
+In case you use your own fork of CAPE. Is good to compare from time to time that you didn't miss any update and have all files properly updated.
+Some of us will have made custom mods to some files as for example: ``file_extra_info.py`` for example. You can exclude them in config under ``EXCLUDE_FILENAMES``.
+Also another known problem that most advanced users will have their own ``YARA`` rules, ``config extractors``, etc. For that my personal suggestion is to use prefix of your choice in that way you can filter them out in config with ``EXCLUDE_PREFIX``.
+To generate repositories listing run:
+
+    * ``poetry run python admin/admin.py -gfl <path to private fork> --filename <Your fork name>``
+    * ``poetry run python admin/admin.py -gfl <path to upstream repo> --filename upstream``
+
+That generates 2 files, with ``.json`` extension. Now you can compare the difference of your fork and upstream by running:
+    * ``poetry run python CAPEv2/admin/admin.py -cfd <Your fork name>.json upstream.json``
+
+Is also a good idea to verify your deployed servers to ensure that all files are properly deployed as there many reason when something can go wrong as for example:
+    * Admin disabled one node for maintenance and someone pushed a new/modified ``Yara rule``, ``config extractor``, etc to production. So that server will stay with old file.
+
+To generate all file listings on all servers you can run:
+    * ``poetry run python CAPEv2/admin/admin.py --enum-all-servers --generate-files-listing <path>``
+
+The rest of the possibilities
+=============================
+
+Restart ``processing`` on server(s):
+    * ``poetry run python admin/admin.py --restart-service``
+
+``Deploy`` one or multiple files:
+    * ``poetry run python admin/admin.py --deploy-file <file/files>``
+    * In case of ``Yara rule`` you can specify the category by using ``--yara-category``, default is ``CAPE`` folder.
+
+``Deploy local changes`` - Deploy all local changes before you do ``git commit``:
+    * ``poetry run python admin/admin.py --deploy-local-changes``
+
+``Deploy local changes`` - Deploy all local changes before you do ``git commit``:
+    * ``poetry run python admin/admin.py --deploy-local-changes``
+
+``Deploy remote changes`` - Deploy all local changes that is already merged and you just did ``git pull``:
+    * ``poetry run python admin/admin.py --deploy-remote-head 1``
+
+``Pull file`` from server(s):
+    * ``poetry run python admin/admin.py --fetch-file <server side path>``
+
+``Execute command on server(s)``. By default it runs them as root:
+    * ``poetry run python admin/admin.py --execute-command <command>``
+    * Few examples:
+        * ``poetry run python admin/admin.py -e "pip3 install mmh3 deepdiff"``
+        * ``poetry run python admin/admin.py -e "sudo -H -u cape bash -c 'pip3 install -U sflock2'"``
+
+``Copy file to remove server(s)`` - This one is useful in case of generic file that is not easy to properly recognize:
+    * ``poetry run python admin/admin.py --copy-file <local_path> <remote_path>``
diff --git a/docs/book/src/usage/dist.rst b/docs/book/src/usage/dist.rst
index 25e3813989c..c6754730b1b 100644
--- a/docs/book/src/usage/dist.rst
+++ b/docs/book/src/usage/dist.rst
@@ -2,9 +2,9 @@
 Distributed CAPE
 ==================
 
-This works under the main server web interface, so everything is transparent for end user, even if they were analyzer on another server(s)
+This works under the main server web interface, so everything is transparent for the end user, even if they were analyzed on another server(s).
 
-Deploy each server as normal serve and later just register it as worker on master server where dist.py is running
+Deploy each server as a normal server and later just register it as a worker on the master server where dist.py is running.
 
 Dependencies
 ============
@@ -12,20 +12,20 @@ Dependencies
 The distributed script uses a few Python libraries which can be installed
 through the following command (on Debian/Ubuntu)::
 
-    $ sudo pip3 install flask flask-restful flask-sqlalchemy requests
+    $ poetry run pip install flask flask-restful flask-sqlalchemy requests
 
 Starting the Distributed REST API
 =================================
 
-The Distributed REST API requires a few commandline options in order to run.
+The Distributed REST API requires a few command line options in order to run::
 
-    $ cd /opt/CAPEv2/web && python3 manage.py runserver 0.0.0.0:8000
+    $ cd /opt/CAPEv2/web && poetry run python manage.py runserver_plus 0.0.0.0:8000 --traceback --keep-meta-shutdown
 
 
 RESTful resources
 =================
 
-Following are all RESTful resources. Also make sure to check out the
+Following are all RESTful resources. Also, make sure to check out the
 :ref:`quick-usage` section which documents the most commonly used commands.
 
 +-----------------------------------+---------------------------------------------------------------+
@@ -64,7 +64,7 @@ machines are returned::
                     }
                 ],
                 "name": "localhost",
-                "url": "http://0:8090/"
+                "url": "http://0:8000/apiv2/"
             }
         }
     }
@@ -74,15 +74,15 @@ machines are returned::
 POST /node
 ----------
 
-Register a new CAPE node by providing the name and the URL. Optionally the ht_user and ht_pass,
-if your Node API is behing htaccess authentication::
+Register a new CAPE node by providing the name and the URL. Optionally the apikey if auth is enabled,
+You might need to enable ``list_exitnodes`` and ``machinelist`` in ``custom/conf/api.conf``
+if your Node API is using htaccess authentication::
 
-    $ curl http://localhost:9003/node -F name=localhost \
-        -F url=http://localhost:8090/ -F ht_user=username -F ht_pass=password
+    $ curl http://localhost:9003/node -F name=master -F url=http://localhost:8000/apiv2/ -F apikey=apikey -F enabled=1
     {
         "machines": [
             {
-                "name": "cuckoo1",
+                "name": "cape1",
                 "platform": "windows",
                 "tags": []
             }
@@ -100,7 +100,7 @@ Get basic information about a particular CAPE node::
     $ curl http://localhost:9003/node/localhost
     {
         "name": "localhost",
-        "url": "http://localhost:8090/"
+        "url": "http://localhost:8000/apiv2/"
     }
 
 .. _node_put:
@@ -111,17 +111,17 @@ PUT /node/<name>
 Update basic information of a CAPE node::
 
     $ curl -XPUT http://localhost:9003/node/localhost -F name=newhost \
-        -F url=http://1.2.3.4:8090/
+        -F url=http://1.2.3.4:8000/apiv2/
     null
 
     Additional Arguments:
 
     * enabled
         False=0 or True=1 to activate or deactivate worker node
-    * ht_user
-        Username of htaccess authentication
-    * ht_pass
-        Passford of htaccess authentication
+    * exitnodes
+        exitnodes=1 - Update exit nodes list, to show on main web UI
+    * apikey
+        apikey for authorization
 
 .. _node_delete:
 
@@ -144,7 +144,7 @@ For practical usage the following few commands will be most interesting.
 Register a CAPE node - a CAPE REST API running on the same machine in this
 case::
 
-    $ curl http://localhost:9003/node -F name=master -F url=http://localhost:8090/
+    $ curl http://localhost:9003/node -F name=master -F url=http://localhost:8000/apiv2/
     Master server must be called master, the rest of names we don't care
 
 
@@ -162,7 +162,7 @@ or::
     $ ./dist.py --node NAME --disable
 
 Submit a new analysis task
-    The method of submission is always the same: by rest api or via web-gui , both only pointing on the "master node".
+    The method of submission is always the same: by REST API or via web GUI, both only pointing to the "master node".
 
 Get the report of a task should be requested throw master node integrated /api/
 
@@ -170,92 +170,71 @@ Proposed setup
 ==============
 
 The following description depicts a Distributed CAPE setup with two CAPE
-machines, **master** and **worker**. In this setup the first machine,
-master, also hosts the Distributed CAPE REST API.
+machines, a **master** and a **worker**. In this setup the first machine,
+the master, also hosts the Distributed CAPE REST API.
 
 Configuration settings
 ----------------------
 
-Our setup will require a couple of updates with regards to the configuration
+Our setup will require a couple of updates about the configuration
 files.
 
-conf/cuckoo.conf
-^^^^^^^^^^^^^^^^
+Note about VMs tags in hypervisor conf as kvm.conf::
 
-Update ``process_results`` to ``off`` as we will be running our own results
-processing script (for performance reasons).
+* If you have ``x64`` and ``x86`` VMs:
+* ``x64`` VMs should have both ``x64`` and ``x86`` tags. Otherwise only ``x64`` tag
+* ``x86`` VMs should have only ``x86`` tag.
+* You can use any other tags, just to work properly you need those two.
+* Probably will be improved in future for better solution
 
-Update ``tmppath`` to something that holds enough storage to store a few
+custom/conf/cuckoo.conf
+^^^^^^^^^^^^^^^^^^^^^^^
+
+Optional: Update ``tmppath`` to something that holds enough storage to store a few
 hundred binaries. On some servers or setups ``/tmp`` may have a limited amount
 of space and thus this wouldn't suffice.
 
-Update ``connection`` to use something *not* sqlite3. Preferably PostgreSQL or
-MySQL. SQLite3 doesn't support multi-threaded applications that well and this
-will give errors at random if used.
+Update ``connection`` to use something that is *not* sqlite3. Preferably PostgreSQL.
+SQLite3 doesn't support multi-threaded applications that well and this
+will give errors at random if used. Neither support database schema upgrade.
 
-conf/processing.conf
-^^^^^^^^^^^^^^^^^^^^
+custom/conf/processing.conf
+^^^^^^^^^^^^^^^^^^^^^^^^^^^
 
 You may want to disable some processing modules, such as ``virustotal``.
 
-conf/reporting.conf
-^^^^^^^^^^^^^^^^^^^
+custom/conf/reporting.conf
+^^^^^^^^^^^^^^^^^^^^^^^^^^
 
 Depending on which report(s) are required for integration with your system it
 might make sense to only make those report(s) that you're going to use. Thus
 disable the other ones.
 
-Check also "[distributed]" section, where you can set database, path for samples,
-and few more values
-
-Activate "[compression]" to compress dump by "process.py" and save time with retrieve
-
-
-conf/virtualbox.conf
-^^^^^^^^^^^^^^^^^^^^
-
-Assuming ``VirtualBox`` is the Virtual Machine manager of choice, the ``mode``
-will have to be changed to ``headless`` or you will have some restless nights.
-
-Setup Cuckoo
-------------
+custom/conf/distributed.conf
+^^^^^^^^^^^^^^^^^^^^^^^^^^^^
 
-On each machine the following three scripts should be ran::
+Check also "[distributed]" section, where you can set the database, path for samples,
+and a few more values.
+*Do not* use sqlite3! Use PostgreSQL database for performance and thread safe.
 
-    ./cuckoo.py
-    cd web/ && python3 manage.py runserver 8000  # IP accessible by the Distributed script.
-    ./utils/process.py auto
+Update ``db`` to use something that is *not* sqlite3. Preferably PostgreSQL.
+SQLite3 doesn't support multi-threaded applications that well and this
+will give errors at random if used. Neither support database schema upgrade.
 
-One way to do this is by placing each script in its own ``screen(1)`` session
-as follows, this allows one to check back on each script to ensure it's
-(still) running successfully::
-
-    $ screen -S cuckoo  ./cuckoo.py
-    $ screen -S web     cd web/ && python3 manage.py runserver 8000
-    $ screen -S process ./utils/process.py auto
-
-Setup Distributed Cuckoo
-------------------------
-
-On the first machine start a separate ``screen(1)`` session for the
-Distributed CAPE script with all the required parameters (see the rest of
-the documentation on the parameters for this script)::
-
-    $ screen -S distributed ./utils/dist.py
 
 Register CAPE nodes
 ---------------------
 
 As outlined in :ref:`quick-usage` the CAPE nodes have to be registered with
-the Distributed CAPE script::
+the Distributed CAPE script
 
 without htaccess::
 
-    $ curl http://localhost:9003/node -F name=master -F url=http://localhost:8000/api/
+    $ curl http://localhost:9003/node -F name=master -F url=http://localhost:8000/apiv2/
 
 with htaccess::
 
-    $ curl http://localhost:9003/node -F name=worker -F url=http://1.2.3.4:8000/api/ \
+    $ curl http://localhost:9003/node -F name=worker -F url=http://1.2.3.4:8000/apiv2/ \
       -F username=user -F password=password
 
 Having registered the CAPE nodes all that's left to do now is to submit
@@ -265,81 +244,55 @@ found in the :ref:`quick-usage` section.
 VM Maintenance
 --------------
 
-Ocasionally you might want to perform maintenance on VM's without shutting down your whole node.
+Occasionally you might want to perform maintenance on VMs without shutting down your whole node.
 To do this, you need to remove the VM from being used by CAPE in its execution, preferably without
 having to restart the ``./cuckoo.py`` daemon.
 
-First get a list of available VM's that are running on the worker::
+First, get a list of available VMs that are running on the worker::
 
-   $ ./dist.py --node NAME
+   $ poetry run python dist.py --node NAME
 
-Secondly you can remove VM's from being used by CAPE with::
+Secondly, you can remove VMs from being used by CAPE with::
 
-   $ ./dist.py --node NAME --delete-vm VM_NAME
+   $ poetry run python dist.py --node NAME --delete-vm VM_NAME
 
-When you are done editing your VM's you need to add them back to be used by cuckoo. The easiest
-way to do that, is to disable the node, so no more tasks get submitted to it::
+When you are done editing your VMs you need to add them back to be used by ``cuckoo``. The easiest
+way to do that is to disable the node, so no more tasks get submitted to it::
 
-   $ ./dist.py --node NAME --disable
+   $ poetry run python dist.py --node NAME --disable
 
-Wait for all running VM's to finish their tasks, and then restart the workers ``./cuckoo.py``, this will
-re-insert the previously deleted VM's into the Database from ``conf/virtualbox.conf``.
+Wait for all running VMs to finish their tasks, and then restart the workers ``./cuckoo.py``, this will
+re-insert the previously deleted VMs into the Database from ``custom/conf/virtualbox.conf``.
 
 Update the VM list on the master::
 
-   $ ./dist.py --node NAME
+   $ poetry run python dist.py --node NAME
 
 And enable the worker again::
 
-   $ ./dist.py --node NAME --enable
+   $ poetry run python dist.py --node NAME --enable
 
 
 Good practice for production
----------------------
+----------------------------
 
-Number of retrieved threads can be configured in reporting.conf
+The number of retrieved threads can be configured in reporting.conf
 
 Installation of "uwsgi"::
-    # apt-get install uwsgi uwsgi-plugin-python nginx
-    # nginx is only required if you want use basic web auth
-
-Is better if you run "web" and "dist.py" as uwsgi application
-
-uwsgi config for dist.py - /opt/CAPE/utils/dist.ini::
-
-    [uwsgi]
-        plugins = python
-        callable = app
-        ;change this patch if is different
-        chdir = /opt/CAPE/utils
-        master = true
-        mount = /=dist.py
-        threads = 5
-        workers = 1
-        manage-script-name = true
-        ; if you will use with nginx, comment next line
-        socket = 0.0.0.0:9003
-        safe-pidfile = /tmp/dist.pid
-        protocol=http
-        enable-threads = true
-        lazy = true
-        timeout = 600
-        chmod-socket = 664
-        chown-socket = cuckoo:cuckoo
-        gui = cuckoo
-        uid = cuckoo
-        stats = 127.0.0.1:9191
-
-
-To run your api with config just execute as::
-
-    # WEBGUI is started by systemd as cape-web.service
-    $ uwsgi --ini /opt/cuckoo/utils/dist.ini
-
-To add your application to auto start after boot, move your config file to::
-
-    mv /opt/cuckoo/utils/dist.ini /etc/uwsgi/apps-available/cuckoo_dist.ini
-    ln -s /etc/uwsgi/apps-available/cuckoo_dist.ini /etc/uwsgi/apps-enabled
+
+    # nginx is optional
+    # apt install uwsgi uwsgi-plugin-python3 nginx
+
+
+It's better if you run "web" and "dist.py" as uwsgi application. To run your api with config just execute as::
+
+    # Web UI is started by systemd as cape-web.service
+    $ uwsgi --ini /opt/CAPEv2/uwsgi/capedist.ini
+
+To add your application to auto start after boot, copy your config file to::
+
+    cp /opt/CAPEv2/uwsgi/capedist.ini /etc/uwsgi/apps-available/cape_dist.ini
+    ln -s /etc/uwsgi/apps-available/cape_dist.ini /etc/uwsgi/apps-enabled
 
     service uwsgi restart
 
@@ -352,26 +305,26 @@ Optimizations::
             set max connection number to be able handle number of requests dist + dist2 + 10
 
 
-Distributed Mongo setup::
+Distributed Mongo setup
 
 Set one mongo as master and the rest just point to it, in this example cuckoo_dist.fe is our master server.
-Depend of your hardware you may prepend next command before mongod
+Depending on your hardware you may prepend the next command before mongod::
 
     $ numactl --interleave=all
 
 This execute on all nodes, master included:
-    * Very important, before creation or recreation of cluster, all /data should be removed to avoid problems with metadata
+    * Very important, before the creation or recreation of the cluster, all /data should be removed to avoid problems with metadata
 
     $ mkdir -p /data/{config,}db
 
-This commands should be executed only on master::
+These commands should be executed only on the master::
 
     # create config server instance with the "cuckoo_config" replica set
-    # Preferly to execute few config servers on different shards
+    # Preferably to execute few config servers on different shards
     /usr/bin/mongod --configsvr --replSet cuckoo_config --bind_ip_all
 
     # initialize the "cuckoo_config" replica set
-    mongo --port 27019
+    mongosh --port 27019
 
     Execute in mongo console:
         rs.initiate({
@@ -392,7 +345,8 @@ Add clients, execute on master mongo server::
     # start mongodb router instance that connects to the config server
     mongos --configdb cuckoo_config/192.168.1.13:27019 --port 27020 --bind_ip_all
 
-    mongo
+    # in another terminal
+    mongosh
     rs.initiate( {
        _id : "rs0",
        members: [
@@ -408,13 +362,16 @@ Add clients, execute on master mongo server::
     cfg.members[0].priority = 0.5
     cfg.members[1].priority = 0.5
     cfg.members[2].priority = 1
-    rs.reconfig(cfg)
+    rs.reconfig(cfg, {"force": true})
 
     # Add arbiter only
     rs.addArb("192.168.1.51:27017")
 
+    # Add replica set member, secondary
+    rs.add({"host": "192.168.1.50:27017", "priority": 0.5})
+
     # add shards
-    mongo --port 27020
+    mongosh --port 27020
 
     Execute in mongo console:
         sh.addShard( "rs0/192.168.1.13:27017")
@@ -435,7 +392,7 @@ Where 192.168.1.(2,3,4,5) is our CAPE workers::
     db.analysis.createIndex ( {"createdAt": 1 }, {expireAfterSeconds:60*60*24*5} )
     db.calls.createIndex ( {"createdAt": 1}, {expireAfterSeconds:60*60*24*5} )
 
-    mongo --port 27020
+    mongosh --port 27020
     sh.enableSharding("cuckoo")
     sh.shardCollection("cuckoo.analysis", { "_id": "hashed" })
     sh.shardCollection("cuckoo.calls", { "_id": "hashed" })
@@ -443,7 +400,8 @@ Where 192.168.1.(2,3,4,5) is our CAPE workers::
 
 To see stats on master::
 
-    mongos using mongo --host 127.0.0.1 --port 27020
+    mongos using
+    mongosh --host 127.0.0.1 --port 27020
     sh.status()
 
 Modify cape reporting.conf [mongodb] to point all mongos in reporting.conf to
@@ -476,17 +434,17 @@ See any of these files on your system::
 Administration and some useful commands::
 
     https://docs.mongodb.com/manual/reference/command/nav-sharding/
-    $ mongo --host 127.0.0.1 --port 27020
+    $ mongosh --host 127.0.0.1 --port 27020
     $ use admin
     $ db.adminCommand( { listShards: 1 } )
 
-    $ mongo --host 127.0.0.1 --port 27019
+    $ mongosh --host 127.0.0.1 --port 27019
     $ db.adminCommand( { movePrimary: "cuckoo", to: "shard0000" } )
     $ db.adminCommand( { removeShard : "shard0002" } )
 
     $ # required for post movePrimary
     $ db.adminCommand("flushRouterConfig")
-    $ mongo --port 27020 --eval 'db.adminCommand("flushRouterConfig")' admin
+    $ mongosh --port 27020 --eval 'db.adminCommand("flushRouterConfig")' admin
 
     $ use cuckoo
     $ db.analysis.find({"shard" : "shard0002"},{"shard":1,"jumbo":1}).pretty()
@@ -495,8 +453,89 @@ Administration and some useful commands::
     To migrate data ensure:
     $ sh.setBalancerState(true)
 
+
+User authentication and roles::
+
+    # To create ADMIN
+    use admin
+    db.createUser(
+        {
+            user: "ADMIN_USERNAME",
+            pwd: passwordPrompt(), // or cleartext password
+            roles: [ { role: "userAdminAnyDatabase", db: "admin" }, "readWriteAnyDatabase" ]
+        }
+    )
+
+    # To create user to read/write on specific database
+    use cuckoo
+    db.createUser(
+        {
+            user: "WORKER_USERNAME",
+            pwd:  passwordPrompt(),   // or cleartext password
+            roles: [ { role: "readWrite", db: "cuckoo" }, { role : "dbAdmin", db : "cuckoo"  }]
+        }
+    )
+
+
+    # To enable auth in ``/etc/mongod.conf``, add next lines
+    security:
+        authorization: enabled
+
+NFS data fetching::
+
+    Nice comparison between NFS, SSHFS, SMB
+    https://blog.ja-ke.tech/2019/08/27/nas-performance-sshfs-nfs-smb.html
+
+To configure NFS on the main server (NFS calls it client)
+
+    Install NFS client:
+        *  sudo apt install nfs-common
+
+    To install new service for fstab utils run as root::
+
+        ln -s /opt/CAPEv2/systemd/cape-fstab.service /lib/systemd/system/cape-fstab.service
+        systemctl daemon-reload
+        systemctl enable cape-fstab.service
+        systemctl start cape-fstab.service
+
+    Following steps about folder creation, entry in fstab are automated on 30.01.2023. See utils/fstab.py
+
+    On client create folder per worker:
+        mkdir -p /opt/CAPEv2/workers/<worker_name>
+
+    Add workers to fstab:
+        <worker_ip/hostname>:/opt/CAPEv2 /opt/CAPEv2/workers/<worker_name> nfs, auto,user,users,nofail,noatime,nolock,intr,tcp,actimeo=1800 0 0
+
+    Example:
+        192.168.1.3:/opt/CAPEv2 /opt/CAPEv2/workers/1 nfs, auto,user,users,nofail,noatime,nolock,intr,tcp,actimeo=1800 0 0
+
+CAPE worker(s) (NFS calls it servers)::
+
+    Install NFS:
+        * sudo apt install nfs-kernel-server
+        * systemctl enable nfs-kernel-server
+
+    Run `id cape`:
+        * to get uid and gid to place inside of the file, Example:
+            * `uid=997(cape) gid=1005(cape) groups=1005(cape),1002(libvirt),1003(kvm),1004(pcap)`
+
+    Add entry to `/etc/exports`
+        /opt/CAPEv2 <clinet_ip/hostname>(rw,no_subtree_check,all_squash,anonuid=<uid>,anongid=<gid>)
+    Example:
+        /opt/CAPEv2 192.168.1.1(rw,no_subtree_check,all_squash,anonuid=997,anongid=1005)
+
+    Run command on worker:
+        exportfs -rav
+
+On CAPE main server run:
+    Run `mount -a` to mount all NFS
+    Edit `custom/conf/reporting.conf` -> distributed -> nfs=yes
+
 Online:
 
+    Mongo Auth:
+        https://docs.mongodb.com/manual/tutorial/enable-authentication/
+
     Help about UWSGI:
         http://vladikk.com/2013/09/12/serving-flask-with-nginx-on-ubuntu/
 
diff --git a/docs/book/src/usage/index.rst b/docs/book/src/usage/index.rst
index 803bbe95d40..75cd714c64a 100644
--- a/docs/book/src/usage/index.rst
+++ b/docs/book/src/usage/index.rst
@@ -8,13 +8,18 @@ This chapter explains how to use CAPE.
 .. toctree::
 
     start
+    internals
     submit
     web
     api
     dist
+    cluster_administration
     packages
     results
     clean
-    utilities - processing generated data by Virtual Machine(s)
+    rooter
+    utilities
     performance
     monitor
+    interactive_desktop
+    patterns_replacement
diff --git a/docs/book/src/usage/interactive_desktop.rst b/docs/book/src/usage/interactive_desktop.rst
new file mode 100644
index 00000000000..49eea9fedb5
--- /dev/null
+++ b/docs/book/src/usage/interactive_desktop.rst
@@ -0,0 +1,75 @@
+.. _CAPE-Interactive desktop:
+
+===================
+Interactive session
+===================
+
+Installation
+============
+
+.. warning::
+
+    * Doesn't support cluster mode.
+
+To install dependencies please run::
+
+    $ sudo ./installer/cape2.sh guacamole
+
+New services added::
+
+    $ systemctl status guacd.service
+    $ systemctl status guac-web.service
+
+Web server configuration
+========================
+
+Enable and configure ``guacamole`` in ``conf/web.conf`` and restart ``cape-web.service`` and ``guacd.service``::
+
+    $ systemctl restart cape-web guacd.service
+
+Then configure NGINX. See :ref:`best_practices_for_production` for details.
+
+
+Virtual machine configuration
+=============================
+* At the moment we support only KVM and we don't have plans to support any other hypervisor.
+* To enable support for remote session you need to add a ``VNC`` display to your VM, otherwise it won't work.
+
+
+Having troubles?
+================
+
+To test if your ``guacamole`` working correctly you can use this code
+
+.. warning::
+
+    If you have opened VM in ``virt-manager`` you won't be able to get it via browser.
+    Close virt-manager VM view and refresh tab in browser.
+
+.. code-block:: python
+
+    from uuid import uuid3, NAMESPACE_DNS
+    from base64 import urlsafe_b64encode as ub64enc
+    sid = uuid3(NAMESPACE_DNS, "0000").hex[:16]
+    ip = "<YOUR_VM_IP>" # Example 192.168.2.2
+    vm_name = "<YOUR_VM_NAME>" # example win10
+    sd = ub64enc(f"{sid}|{vm_name}|{ip}".encode("utf8")).decode("utf8")
+    print(sd)
+
+    # Open in your browser https://<hostname>/guac/0000/<sd>
+
+* Start your VM and once it finish booting, open that url in browser to ensure that remote session working just fine.
+
+* If that doesn't work, check logs::
+
+    $ systemctl status guacd or journalctl -u guacd
+    $ cat /opt/CAPEv2/web/guac-server.log
+
+* Known problems and solution steps:
+
+1. Ensure that CAPE loads on ``port 80`` (later you can enable TLS/SSL). Sometime config instead of `sites-enabled/cape.conf` should be `conf.d/default.conf`.
+2. Once verified that it works with http, move to https.
+3. You can try `websocket test client`_.
+4. Try another browser.
+
+.. _websocket test client: https://chrome.google.com/webstore/detail/websocket-test-client/fgponpodhbmadfljofbimhhlengambbn/related
diff --git a/docs/book/src/usage/internals.rst b/docs/book/src/usage/internals.rst
new file mode 100644
index 00000000000..fb6204c87fc
--- /dev/null
+++ b/docs/book/src/usage/internals.rst
@@ -0,0 +1,32 @@
+==============
+CAPE internals
+==============
+
+CAPE base core components
+=========================
+* ``cuckoo.py`` or ``cape.service`` - Is in charge of schedule tasks, set proper routing, run them inside of the VM, etc
+* ``utils/process.py`` or ``cape-processor.service`` - Is in charge of process the data generated inside of the VM.
+* ``utils/rooter.py`` or ``cape-rooter.service`` - Is set proper iptables to route traffic from VM over exit node. As internet, proxy, vpn, etc.
+* ``web/manage.py`` or ``cape-web.service`` - Is web interface. It allows you to see reports if MongoDB or ElasticSearch is enabled, otherwise it only useful for restapi.
+
+CAPE advanced core components
+=============================
+* ``utils/dist.py`` or ``cape-dist.service`` - Allows you to have CAPE cluster with many different workers
+* ``utils/fstab.py`` or ``cape-fstab.service`` - Utility for distributed CAPE with ``NFS`` mode. It automatically adds entries to ``/etc/fstab`` and mounts it. Useful for cloud setups as ``Google Cloud Platform (GCP)`` for auto scaling.
+
+How CAPE processing works?
+==========================
+* All data processing is divided into stages where ``lib/cuckoo/core/plugins.py`` does the magic.
+* Check out ``lib/cuckoo/common/abstracts.py`` -> ``class <stage name>`` for all auxiliary ``functions`` that can help you make your code cleaner.
+* Check ``custom/conf/<stage name>.conf`` for all features/modules that you can enable/disable.
+* The data is moved from one stage to another. The main stages are::
+    * ``processing`` - Process raw data from VM, as behavior logs, dropped files, process dumps, event logs, etc.
+        * Data is under ``self.results``
+    * ``signatures`` - Is like ``Yara`` but on steroids. It allows you to do any checks on all processed data for detection for example.
+         * Community examples can be found in community repo under `signatures`_
+         * Data is under ``self.results``
+    * ``reporting`` - Once we have all data processed and signatures did their verdicts is time to generate final reports that will be consumed by end users.
+        *  Data is under ``results``
+
+
+.. _signatures: https://github.com/CAPESandbox/community/tree/master/modules/signatures
diff --git a/docs/book/src/usage/monitor.rst b/docs/book/src/usage/monitor.rst
index aa885739439..05fba0606d2 100644
--- a/docs/book/src/usage/monitor.rst
+++ b/docs/book/src/usage/monitor.rst
@@ -2,105 +2,136 @@
 CAPE's debugger
 ===============
 
-* Is unique among Windows debuggers, and is one of the most powerful features of the sandbox, having been built from scratch with the overriding design principles of minimal (almost zero) use of Windows debugging interfaces, maximal use of the processor's debugging hardware, and to be quick and easy to use.
-* Here is a quick guide on getting started with the debugger:
-* For starters it's worth emphasising that the debugger is programmable but not interactive; thus you configure it when submitting a sample, allow it to run, then check the results at the end in the form of the debugger log (in the debugger tab).
+CAPE's debugger is one of the most powerful features of the sandbox: a programmable debugger configured at submission by either Yara signature or submission options, allowing breakpoints to be set dynamically. This allows instruction traces of malware execution to be captured, as well as configuring actions to perform such as control flow manipulation for anti-sandbox bypasses, or dumping decrypted config regions or unpacked payloads.
 
-Breakpoints: bp0, bp1, bp2
-==========================
-* Perhaps the simplest of the debugger options is bp to set one of three cpu breakpoints. While the hardware does technically provide four breakpoints, one must be reserved for the debugger to maintain the ability to step-over during tracing (this is essential for single-step mode).
-* The simplest form of this option is to set it to 'ep': ``bp0=ep``
+What make CAPE's debugger unique among Windows debuggers is the fact that it has been built with minimal (almost zero) use of Windows debugging interfaces specifically for the purpose of malware analysis. Its goal is to make maximal use of the processor's debugging hardware but to avoid Windows interfaces which are typically targeted by anti-debug techniques.
 
-* This will instruct the debugger to break on the entry point of the main executable of each process and begin tracing. (In the case of a DLL, this breakpoint will also be set on the entrypoint of the DLL). When the breakpoint hits, any corresponding actions will be performed (see later) and the instruction broken upon will be output to the log. As long as the count (see later) hasn't been set to zero, the debugger will then proceed to trace the instruction flow in single-step mode.
-* To target specific code regions more accurately, breakpoints on specific addresses can be used. These values are interpreted as RVA values unless they are above a hardcoded value (0x200000) in which case they are interpreted as VA values. This allows both RVAs and VAs to be used interchangeably, in most cases the debugger will recognise due to its size that a value is a VA not an RVA and set the breakpoint appropriately.
-* There are four breakpoints in the Intel CPU to make use of, so we could in theory use all four directly. However, the debugger in CAPE exposes only the first three. The fourth (bp3) is kept free so that it can be used in stepping over calls. There is no help from the hardware for a debugger feature like stepping over, so a breakpoint is needed to implement the depth feature but is also required for calls that CAPE debugger *must* step over, such as calls into kernel mode for example.
-* We set and use bp0 through bp2 as follows. These breakpoints will be applied to each thread of each process in the analysis:
-    * bp0=ep,bp1=0x1234,bp2=0x5678
+The debugger is not interactive, its actions are pre-determined upon submission and the results can be found in the debugger log which is presented in a dedicated tab in the UI.
+
+Th following is a quick guide on getting started with the debugger.
+
+Breakpoints: bp0, bp1, bp2, bp3
+===============================
+The most important feature of the debugger is the ability to set and catch hardware breakpoints using the debug registers of the CPU. There are four breakpoints slots in the Intel CPU to make use of, however it's worth noting that there is no help from the hardware for implemening a debugger feature like stepping over calls, so to achieve this one of the four breakpoints is needed. There are instructions (such as syscalls) which cannot be stepped into, so which must be stepped over. So to allow this as well as stepping over calls via the 'depth' option, at least one breakpoint must be kept free. For more background information on the hardware used here see: https://en.wikipedia.org/wiki/X86_debug_register.
+
+* Breakpoints are set using the options bp0, bp1, bp2 and bp3, supplying an RVA value. For example ``bp0=0x1234``. The image base for the RVAs can be set dynamically in a number of ways, please see the remainder of the documentation.
+* In order to break on entry point, the option can be to set to 'ep': ``bp0=ep``.This will instruct the debugger to break on the entry point of the main executable of each process and begin tracing. (In the case of a DLL, this breakpoint will also be set on the entry point of the DLL).
 
 Depth
 =====
-* The behaviour of the instruction trace in single-step mode can be characterised in terms of whether it will step into a call, or over it. From this comes the concept of depth - the debugger will trace at the same depth in a trace by stepping over calls to deeper functions. Thus if we set a depth of zero (which is also the default) the behaviour will be to step over all the subsequent calls (at least until a ret is encountered):
-    * depth=0
-* If we set a depth of, say, three, then the debugger will step into calls into further levels of depth three times:
-    * depth=3
+In single-step mode, the behaviour of a trace can be characterised in terms of whether it steps into a call, or over it. From this comes the concept of depth; the debugger will trace at the same depth in a trace by stepping-over calls to deeper functions. Thus if we set a depth of zero (which is also the default) the behaviour will be to step over all the subsequent calls (at least until a ret is encountered):
+
+* ``depth=0``
+
+If we set a depth of, say, three, then the debugger will step into calls into further levels of depth three times:
+
+* ``depth=3``
 
 Count
 =====
-* The other obvious characteristic of our trace is its length, or count of instructions. This is set with the count option, for example:
-    * count=10000
-* The count may also be specified as a hexadecimal:
-    * count=0xff00
+Another important characteristic of a trace is its length or count of instructions. This is set with the count option, for example:
+
+* ``count=10000``
 
-* In order to limit the size of the output, the debugger starts with some default values for some important parameters which are worth understanding to enable more advanced use. The first two parameters that are really important are count and depth. As mentioned above, the default depth is zero and the default count is 0x4000.
+The count may also be specified as hexadecimal:
+
+* ``count=0xff00``
+
+The default count is 0x4000.
 
 Break-on-return
 ===============
-* Sometimes it might be more convenient or quicker to take advantage of the fact that a certain API call is made from an interesting code region, with its return or 'caller' address to the region in question accompanying the API output in the behavior log. We can tell the debugger to use that return address as a breakpoint with the break-on-return option, for example:
-    * break-on-return=RtlDecompressBuffer
+Sometimes it might be more convenient or quicker to take advantage of the fact that a certain API call is made from an interesting code region, with its return or 'caller' address to the region in question accompanying the API output in the behavior log. We can tell the debugger to use that return address as a breakpoint with the break-on-return option, for example:
+
+* ``break-on-return=RtlDecompressBuffer``
 
 Base-on-api
 ===========
-* Instead of breaking directly on the return address of an API, we may just wish to base our breakpoints on the same base address as a particular API. For this we use the base-on-api option, for example:
-    * base-on-api=NtSetInformationThread
+Instead of breaking directly on the return address of an API, we may just wish to base our breakpoints on the same base address as a particular API. For this we use the base-on-api option, for example:
+* ``base-on-api=NtSetInformationThread``
 
 * This option requires that the breakpoint RVA value be specified by one of the breakpoint options (bp, br).
 
 Base-on-alloc
 =============
-* An obvious restriction using this method is that the API call from which the image base is determined must be made before the code we wish to put a breakpoint on is executed. For this reason there exists an alternative option, base-on-alloc, which will attempt to set the breakpoint RVA relative to every newly executable region (whether through allocation or protection). The advantage with this method is that the breakpoint will always be set before the code can execute, but the downside is that breakpoints may repeatedly be set needlessly with allocations that are not of interest. This is simply set by the option:
-    * base-on-alloc=1
+An obvious restriction using this method is that the API call from which the image base is determined must be made before the code we wish to put a breakpoint on is executed. For this reason, there exists an alternative option, base-on-alloc, which will attempt to set the breakpoint RVA relative to every newly executable region (whether through allocation or protection). The advantage of this method is that the breakpoint will always be set before the code can execute, but the downside is that breakpoints may repeatedly be set needlessly with allocations that are not of interest. This is simply set by the option:
+* ``base-on-alloc=1``
 
 Actions
 =======
-* Often we might wish to perform an action when a breakpoint is hit. These actions can be defined by the options: action0, action1 and action2, each corresponding to a respective breakpoint. The action is specified by a simple string (not case sensitive). The list of actions is constantly growing, so if need arises for further actions, they can be simply added.
-* For example, we might wish to divert the execution flow upon a conditional jump JZ - 'flip' the direction of a branch. Since this is one of the most useful actions, there are a number of actions to choose from.
-* For direct control over the instruction pointer:
-    * Skip
-    * Jmp
-
-* To control the CPU zero flag:
-    * SetZeroFlag, ClearZeroFlag, FlipZeroFlag
-* To control the sign flag:
-    * SetSignFlag, ClearSignFlag, FlipSignFlag
-
-* The carry flag:
-    * SetCarryFlag, ClearCarryFlag & FlipCarryFlag
-
-* The 'skip' action is equivalent to 'nopping out' the instruction. The Jmp action results in the jump always being taken, no matter what the state of the flags or the condition. The remaiining options set, clear or flip the relevant flags. For example:
-    * bp0=0x1234,action0=skip
-
-* Here upon breaking on the instruction at 0x1234, the instruction will be skipped.
+Often we might wish to perform an action when a breakpoint is hit. These actions can be defined by the actions: action0, action1, action2, and action3, each corresponding to a respective breakpoint. The action is specified by a simple string (not case sensitive). The list of actions is constantly growing, so if the need arises for further actions, they can be simply added.
+
+Control flow manipulation:
+    * ``Skip`` --> Skip the instruction (equivalent to 'nopping out' the instruction)
+    * ``Jmp`` --> Jump a specified distance, or in the case of a conditional jump instruction, always taking the jump
+    * ``Goto`` --> Jump to a specified target address
+    * ``Ret`` --> Return (jump) to the address on top of the stack (and pop the address off the stack)
+    * ``Nop`` --> Overwrite the instruction in memory with a 'nop' (useful for example to avoid repeated breakpoints on a jmp)
+    * ``Wret`` --> Overwrite the instruction in memory with a 'ret' (useful for example to avoid repeated breakpoints on a call target)
+    * ``Scan`` --> Perform a Yara scan on the memory region containing the specified target address
+    * ``SetBP`` --> Set another breakpoint
+Dumping (payload capture/unpacking):
+    * ``DumpImage`` --> Dump the current executing module (or memory region)
+    * ``DumpSize`` --> Set size of dump to be captured with a subsequent 'dump' action
+    * ``SetDump`` --> Set both address and (optional) size of dump to be captured with a subsequent 'dump' action
+    * ``Dump`` --> Dump memory region specified by previous actions (e.g. DumpSize or SetDump)
+To control the CPU zero flag:
+    * ``SetZeroFlag, ClearZeroFlag, FlipZeroFlag``
+To control the sign flag:
+    * ``SetSignFlag, ClearSignFlag, FlipSignFlag``
+The carry flag:
+    * ``SetCarryFlag, ClearCarryFlag & FlipCarryFlag``
+Change Register value:
+    * ``SetEax (or SetRax)`` --> Change the register value Eax to the given value
+    * ``SetEbx etc..``
+Changing the count value:
+    * Count --> Change the count value as explained above
+Stack manipulation:
+    * ``Push`` --> Push a given value onto the stack.
+    * ``Pop`` --> Pop a value from the stack.
+Probing:
+    * ``DumpStack`` --> Display values on the stack (and their module name if possible)
+    * ``Print`` --> Print the string buffer at the given address
+Hooks:
+    * ``Hooks`` --> Enable or disable the hooks (using 1 or 0)
+Instruction traces can grow to be huge so often it's important to be able to stop at a chosen point. To stop the trace at a given breakpoint, the action is simply:
+    * ``Stop``
+
+The list of actions and their implementation can be found in Trace.c of Capemon(CAPE's monitor), specifically in the ActionDispatcher.
+It would be really easy to add additionnal actions and there is a lot of other gadgets which could be added there depending on the needs of the debugger's user.
 
 Type
 ====
-* Although the debugger defaults to execution breakpoints, it is also possible to set data breakpoints either for read only, or both read & write. This is specified with the options: type0, type1 and type2 for the corresponding breakpoint. The type option uses the following values:
+Although the debugger defaults to execution breakpoints, it is also possible to set data breakpoints either for read-only, or both read & write. This is specified with the options: type0, type1, type2, and type3 for the corresponding breakpoint. The type option uses the following values:
 
 * r - read only
 * w - write and read
 * x - execution
 * For example:
-    * type0=w,type1=r
+    * ``type0=w,type1=r``
 
 
-br1, br2, br3
-=============
-* Sometimes it may be convenient to set a breakpoint on the return address of a function, for example when it might be easier to write a YARA signature to detect a function but when you wish to break after it has executed.
-* For this the br options exist, where br0 will set a breakpoint on the return address of the function at the supplied address.
-* For example:
-    * br0=0x4567
-* Since the return address (for the breakpoint) is fetched from the top of the stack, the addresses supplied must either be the very first instruction of the function, or certainly must come before any instruction that modifies the stack pointer such as push or pop.
+br0, br1, br2, br3
+==================
+ Sometimes it may be convenient to set a breakpoint on the return address of a function, for example when it might be easier to write a YARA signature to detect a function but when you wish to break after it has been executed.
+ For this, the br options exist, where br0 will set a breakpoint on the return address of the function at the supplied address.
+ The format for the address is the same as the one for breakpoints mentionned above.
+ Since the return address (for the breakpoint) is fetched from the top of the stack, the addresses supplied must either be the very first instruction of the function or certainly must come before any instruction that modifies the stack pointer such as push or pop.
 
 Fake-rdtsc
 ==========
-* In order to 'emulate' (skip and fake) the rdtsc instruction, the option fake-rdtsc=1 may be set. This will only have an effect on rdtsc instructions that are traced over by the debugger. If the debugger is not tracing at the time the CPU executes the instruction, it cannot of course fake the return value.
+This advanced feature is there for interacting with the TSC register. To learn more on it and what it's used for see: https://en.wikipedia.org/wiki/Time_Stamp_Counter.
+
+* To 'emulate' (skip and fake) the rdtsc instruction, the option fake-rdtsc=1 may be set. This will only have an affect on rdtsc instructions that are traced over by the debugger. If the debugger is not tracing at the time the CPU executes the instruction, it cannot of course fake the return value.
 * The effect of this setting is to allow the first traced rdtsc instruction to execute normally, but thereafter to fake the return value with the original return value plus whatever value is specified in the option. For example:
-    * rdtsc=0x1000
+
+  * 'rdtsc=0x1000'
+
 * This will result in each subsequent rdtsc instruction after the first being faked with a value that has incremented by 0x1000.
 
 Practical examples
 ==================
-
-* Those examples can be outdated, but to get an idea is more than enough
+For more and the most up-to-date versions of examples please see `<https://github.com/kevoreilly/CAPEv2/tree/master/analyzer/windows/data/yara>`_
 
 .. code-block:: bash
 
@@ -159,3 +190,24 @@ Practical examples
         condition:
             ($golden_ratio) and any of ($crypto32*)
     }
+
+As shown in the example above, the debugger options are passed in the cape_options section of yar files in the analyzer of CAPE but could be passed to the submission itself like other parameters.
+It is important to note that even through it appear that br0 and br1 would have multiple values in the Guloader rule above, it is not the case and it's not possible to assign multiples values to them. This is because the yara is designed with an assumption in mind: the patterns $trap0 and $trap1 should never appear concurrently in the same sample. This particular sig is designed to deal with two variants of the same malware where bp0 and bp1 will only ever be set to either one of those values.
+
+Importing instruction traces into disassembler
+==============================================
+It is possible to import CAPE's debugger output into a dissassembler.
+One example procedure is as follow:
+
+* Highlight CFG in disassembler:
+
+.. code-block:: bash
+
+    1 Install lighthouse plugin from
+        pip3 install git+https://github.com/kevoreilly/lighthouse
+    2 Load payload into IDA
+    3 Check image base matches that from debugger log (if not rebase)
+    4 Go to File -> Load File -> Code coverage file and load debugger logfile (ignore any warnings - any address outside image base causes these)
+
+.. image:: ../_images/screenshots/debugger2disassembler.png
+    :align: center
diff --git a/docs/book/src/usage/packages.rst b/docs/book/src/usage/packages.rst
index 50972099a00..bf622f1d7d7 100644
--- a/docs/book/src/usage/packages.rst
+++ b/docs/book/src/usage/packages.rst
@@ -3,157 +3,217 @@ Analysis Packages
 =================
 
 The **analysis packages** are a core component of CAPE Sandbox.
-They consist in structured Python classes which, when executed in the guest machines,
+They consist of structured Python classes that, when executed in the guest machines,
 describe how CAPE's analyzer component should conduct the analysis.
 
-CAPE provides some default analysis packages that you can use, but you are
-able to create your own or modify the existing ones.
+CAPE provides some default analysis packages that you can use, but you can
+create your own or modify the existing ones.
 You can find them at *analyzer/windows/modules/packages/*.
 
 As described in :doc:`../usage/submit`, you can specify some options to the
 analysis packages in the form of ``key1=value1,key2=value2``. The existing analysis
 packages already include some default options that can be enabled.
 
-Following is the list of existing packages in alphabetical order:
+The following is a list of the existing packages in alphabetical order:
 
-    * PROBABLY outdated, see packages code for mode retails
-
-    * ``applet``: used to analyze **Java applets**.
+    * ``access``: used to run and analyze **Microsoft Office Access files** via ``msaccess.exe``.
+    * ``applet``: used to run and analyze **Java applets** via ``firefox.exe`` or ``iexplore.exe``.
 
         **Options**:
-            * ``free`` *[yes/no]*: if enabled, no behavioral logs will be produced and the malware will be executed freely.
-            * ``class``: specify the name of the class to be executed. This option is mandatory for a correct execution.
-            * ``procmemdump`` *[yes/no]*: if enabled, take memory dumps of all actively monitored processes.
-            * ``dll``: specify the name of an optional DLL to be used as a replacement for capemon.dll.
+            * ``class``: specify the name of the class to be executed. This option is mandatory for correct execution.
 
-    * ``bin``: used to analyze generic binary data, such as **shellcodes**.
+    * ``archive``: used to run and analyze **archives such as ISO, VHD and anything else that 7-Zip can extract** via ``7z.exe``.
 
-        **Options**:
-            * ``free`` *[yes/no]*: if enabled, no behavioral logs will be produced and the malware will be executed freely.
-            * ``procmemdump`` *[yes/no]*: if enabled, take memory dumps of all actively monitored processes.
-            * ``dll``: specify the name of an optional DLL to be used as a replacement for capemon.dll.
+        Explanation how it works can be found in this `Technical Session for CyberShock 2022, presented by CCCS <https://youtu.be/-70Mlkmtdds?t=13013>`_.
 
-    * ``cpl``: used to analyze **Control Panel Applets**.
+        *NB*: Passing ``file=`` as a task option will ensure that the entire archive is passed to the victim VM and extracted there,
+        prior to executing files of interest within in the extracted folder.
 
         **Options**:
-            * ``free`` *[yes/no]*: if enabled, no behavioral logs will be produced and the malware will be executed freely.
-            * ``procmemdump`` *[yes/no]*: if enabled, take memory dumps of all actively monitored processes.
-            * ``dll``: specify the name of an optional DLL to be used as a replacement for capemon.dll.
+            * ``arguments``: specify arguments to pass to the DLL through commandline.
+            * ``dllloader``: specify a process name to use to fake the DLL launcher name instead of ``rundll32.exe`` (this is used to fool possible anti-sandboxing tricks of certain malware).
+            * ``file``: specify the name of the file contained in the archive to execute. If none is specified, CAPE will try to execute *sample.exe*.
+            * ``function``: specify the function to be executed. If none is specified, CAPE will try to run the entry at ordinal 1.
+            * ``password``: specify the password of the archive. If none is specified, CAPE will try to extract the archive without password or use the password "*infected*".
 
-    * ``dll``: used to run and analyze **Dynamically Linked Libraries**.
+    * ``chm``: used to run and analyze **Microsoft Compiled HTML Help files** via ``hh.exe``.
+    * ``chrome``: used to open **the given URL** via ``chrome.exe``.
+    * ``chromium``: used to open **the given URL** via the Chromium version of ``chrome.exe``.
+    * ``cpl``: used to run and analyze **Control Panel Applets** via ``control.exe``.
+    * ``dll``: used to run and analyze **Dynamically Linked Libraries** via ``rundll32.exe``.
 
         **Options**:
-            * ``free`` *[yes/no]*: if enabled, no behavioral logs will be produced and the malware will be executed freely.
-            * ``function``: specify the function to be executed. If none is specified, CAPE will try to run ``DllMain``.
             * ``arguments``: specify arguments to pass to the DLL through commandline.
-            * ``loader``: specify a process name to use to fake the DLL launcher name instead of rundll32.exe (this is used to fool possible anti-sandboxing tricks of certain malware)
-            * ``procmemdump`` *[yes/no]*: if enabled, take memory dumps of all actively monitored processes.
-            * ``dll``: specify the name of an optional DLL to be used as a replacement for capemon.dll.
+            * ``dllloader``: specify a process name to use to fake the DLL launcher name instead of ``rundll32.exe`` (this is used to fool possible anti-sandboxing tricks of certain malware).
+            * ``enable_mutli``: *[yes/no, true/false, on/off]*: if enabled, multiple functions can be run.
+            * ``function``: specify the function to be executed. If none is specified, CAPE will try to run all available functions,
+              up to the limit found in the `max_dll_exports` task option.
+            * ``max_dll_exports``: A positive integer, representing how many functions you wish to execute. `enable_mutli` must be enabled.
+            * ``use_export_name``: *[yes/no, true/false, on/off]*: if enabled, functions will be run by name rather than by ordinal number.
 
-    * ``doc``: used to run and analyze **Microsoft Word documents**.
+    * ``doc_antivm``: used to run and analyze **Microsoft Word documents** via ``winword.exe`` or ``wordview.exe``.
+
+        *NB*: Multiple applications are executed prior to the sample's execution, to prevent certain anti-vm techniques.
 
         **Options**:
-            * ``free`` *[yes/no]*: if enabled, no behavioral logs will be produced and the malware will be executed freely.
-            * ``procmemdump`` *[yes/no]*: if enabled, take memory dumps of all actively monitored processes.
-            * ``dll``: specify the name of an optional DLL to be used as a replacement for capemon.dll.
+            * ``free``: *[yes/no]* if enabled, no behavioral logs will be produced and the malware will be executed freely.
+
+    * ``doc``: used to run and analyze **Microsoft Word documents** via ``winword.exe``.
 
-    * ``exe``: default analysis package used to analyze generic **Windows executables**.
+    * ``doc2016``: used to run and analyze **Microsoft Word documents** via Microsoft Office 2016's ``winword.exe``.
+    * ``edge``: used to open **the given URL** via ``msedge.exe``.
+    * ``eml``: used to run and analyze **Electronic Mail files** via ``outlook.exe``.
+    * ``exe``: default analysis package used to run and analyze generic **Windows executables**.
 
         **Options**:
-            * ``free`` *[yes/no]*: if enabled, no behavioral logs will be produced and the malware will be executed freely.
+            * ``appdata``: *[yes/no]* if enabled, run the executable from the APPDATA directory.
             * ``arguments``: specify any command line argument to pass to the initial process of the submitted malware.
-            * ``procmemdump`` *[yes/no]*: if enabled, take memory dumps of all actively monitored processes.
-            * ``dll``: specify the name of an optional DLL to be used as a replacement for capemon.dll.
+            * ``runasx86``: *[yes/no]* if enabled, run ``CorFlags.exe`` with ``/32bit+`` prior to execution.
+
+    * ``firefox``: used to open **the given URL** via ``firefox.exe``.
+    * ``generic``: used to run and analyze **generic samples** via ``cmd.exe``.
+    * ``hta``: used to run and analyze **HTML Applications** via ``mshta.exe``.
+    * ``hwp``: used to run and analyze **Hangul Word Processor files** via ``hwp.exe`` or ``hword.exe``.
+    * ``ichitaro``: used to run and analyze **Ichitaro Word Processor files** via ``taroview.exe``.
+    * ``ie``: used to open **the given URL** via ``iexplore.exe``.
+    * ``inp``: used to run and analyze **Inpage Word Processor files** via ``inpage.exe``.
+    * ``jar``: used to run and analyze **Java JAR containers** via ``java.exe``.
+
+        **Options**:
+            * ``class``: specify the path of the class to be executed. If none is specified, CAPE will try to execute the main function specified in the Jar's MANIFEST file.
+
+    * ``js_antivm``: used to run and analyze **JavaScript and JScript Encoded files** via ``wscript.exe``.
 
-    * ``generic``: used to run and analyze **generic samples** via cmd.exe.
+        *NB*: This package opens 20 Calculator windows prior to execution, to prevent certain anti-vm techniques.
 
         **Options**:
-            * ``free`` *[yes/no]*: if enabled, no behavioral logs will be produced and the malware will be executed freely.
-            * ``procmemdump`` *[yes/no]*: if enabled, take memory dumps of all actively monitored processes.
-            * ``dll``: specify the name of an optional DLL to be used as a replacement for capemon.dll.
+            * ``free``: *[yes/no]* if enabled, no behavioral logs will be produced and the malware will be executed freely.
+
+    * ``js``: used to run and analyze **JavaScript and JScript Encoded files** via ``wscript.exe``.
 
-    * ``html``: used to analyze **Internet Explorer**'s behavior when opening the given HTML file.
+        *NB*: This package opens 20 Calculator windows prior to .jse execution, to prevent certain anti-vm techniques.
 
         **Options**:
-            * ``free`` *[yes/no]*: if enabled, no behavioral logs will be produced and the malware will be executed freely.
-            * ``procmemdump`` *[yes/no]*: if enabled, take memory dumps of all actively monitored processes.
-            * ``dll``: specify the name of an optional DLL to be used as a replacement for capemon.dll.
+            * ``free``: *[yes/no]* if enabled, no behavioral logs will be produced and the malware will be executed freely.
 
-    * ``ie``: used to analyze **Internet Explorer**'s behavior when opening the given URL.
+    * ``lnk``: used to run and analyze **Windows Shortcuts** via ``cmd.exe``.
+    * ``mht``: used to run and analyze **MIME HTML files** via ``iexplore.exe``.
+    * ``msbuild``: used to run and analyze **Microsoft Build Engine files** via ``msbuild.exe``.
+    * ``msg``: used to run and analyze **Outlook Message Item files** via ``outlook.exe``.
+    * ``msi``: used to run and analyze **Windows Installer Package files** via ``msiexec.exe``.
+    * ``nsis``: used to run and analyze **Nullsoft Scriptable Install System files** via ``cmd.exe``.
+    * ``ollydbg``: used to run and analyze **generic samples** via ``ollydbg.exe``.
+
+        *NB*: The ``ollydbg.exe`` application must be in the analyzer's ``bin`` directory.
 
         **Options**:
-            * ``free`` *[yes/no]*: if enabled, no behavioral logs will be produced and the malware will be executed freely.
-            * ``procmemdump`` *[yes/no]*: if enabled, take memory dumps of all actively monitored processes.
-            * ``dll``: specify the name of an optional DLL to be used as a replacement for capemon.dll.
+            * ``arguments``: specify any command line argument to pass to the initial process of the submitted malware.
+
+    * ``one``: used to run and analyze **Microsoft OneNote documents** via ``onenote.exe``.
+    * ``pdf``: used to run and analyze **PDF documents** via ``acrord32.exe``.
+    * ``ppt``: used to run and analyze **Microsoft PowerPoint documents** via ``powerpnt.exe``.
+    * ``ppt2016``: used to run and analyze **Microsoft PowerPoint documents** via Microsoft Office 2016's ``powerpnt.exe``.
+    * ``ps1_x64``: used to run and analyze **PowerShell scripts** via ``powershell.exe`` in SysNative.
+
+        *NB*: This package uses the ``powershell.exe`` in SysNative.
+
+    * ``ps1``: used to run and analyze **PowerShell scripts** via ``powershell.exe`` in System32.
+
+        *NB*: This package uses the ``powershell.exe`` in System32.
 
-    * ``jar``: used to analyze **Java JAR** containers.
+    * ``pub``: used to run and analyze **Microsoft Publisher documents** via ``mspub.exe``.
+    * ``pub2016``: used to run and analyze **Microsoft Publisher documents** via Microsoft Office 2016's ``mspub.exe``.
+    * ``python``: used to run and analyze **Python scripts** via ``py.exe`` or ``python.exe``.
 
         **Options**:
-            * ``free`` *[yes/no]*: if enabled, no behavioral logs will be produced and the malware will be executed freely.
-            * ``class``: specify the path of the class to be executed. If none is specified, Cuckoo will try to execute the main function specified in the Jar's MANIFEST file.
-            * ``procmemdump`` *[yes/no]*: if enabled, take memory dumps of all actively monitored processes.
-            * ``dll``: specify the name of an optional DLL to be used as a replacement for capemon.dll.
+            * ``arguments``: specify any command line argument to pass to the initial process of the submitted malware.
+
+    * ``rar``: extracts **WinRAR Compressed Archive files** via the rarfile Python package, and runs an executable file (if it exists), with ``cmd.exe``.
 
-    * ``msi``: used to run and analyze **MSI windows installer**.
+        *NB*: The rarfile Python package must be installed on the guest.
 
         **Options**:
-            * ``free`` *[yes/no]*: if enabled, no behavioral logs will be produced and the malware will be executed freely.
-            * ``procmemdump`` *[yes/no]*: if enabled, take memory dumps of all actively monitored processes.
-            * ``dll``: specify the name of an optional DLL to be used as a replacement for capemon.dll.
+            * ``arguments``: specify any command line argument to pass to the initial process of the submitted malware.
+            * ``file``: specify the name of the file contained in the archive to execute. If none is specified, CAPE will try to execute *sample.exe*.
+            * ``password``: specify the password of the archive. If none is specified, CAPE will try to extract the archive without password or use the password "*infected*".
 
-    * ``pdf``: used to run and analyze **PDF documents**.
+    * ``reg``: used to run and analyze **Registry files** via ``reg.exe``.
+    * ``regsvr``: used to run and analyze **Dynamically Linked Libraries** via ``regsvr32.exe``.
 
         **Options**:
-            * ``free`` *[yes/no]*: if enabled, no behavioral logs will be produced and the malware will be executed freely.
-            * ``procmemdump`` *[yes/no]*: if enabled, take memory dumps of all actively monitored processes.
-            * ``dll``: specify the name of an optional DLL to be used as a replacement for capemon.dll.
+            * ``arguments``: specify any command line argument to pass to the initial process of the submitted malware.
 
-    * ``ppt``: used to run and analyze **Microsoft PowerPoint documents**.
+    * ``sct``: used to run and analyze **Windows Scriptlet files** via ``regsvr32.exe``.
+    * ``service_dll``: used to run and analyze **Service Dynamically Linked Libraries** via ``sc.exe``.
 
         **Options**:
-            * ``free`` *[yes/no]*: if enabled, no behavioral logs will be produced and the malware will be executed freely.
-            * ``procmemdump`` *[yes/no]*: if enabled, take memory dumps of all actively monitored processes.
-            * ``dll``: specify the name of an optional DLL to be used as a replacement for capemon.dll.
+            * ``arguments``: specify any command line argument to pass to the initial process of the submitted malware.
+            * ``servicename``: specify the name of the service. If no name is provided, CAPE with default to using *CAPEService*.
+            * ``servicedesc``: specify the description of the service. If no name is provided, CAPE with default to using *CAPE Service*.
 
-    * ``ps1``: used to run and analyze **PowerShell scripts**.
+    * ``service``: used to run and analyze **Services** via ``sc.exe``.
 
         **Options**:
-            * ``free`` *[yes/no]*: if enabled, no behavioral logs will be produced and the malware will be executed freely.
-            * ``procmemdump`` *[yes/no]*: if enabled, take memory dumps of all actively monitored processes.
-            * ``dll``: specify the name of an optional DLL to be used as a replacement for capemon.dll.
+            * ``arguments``: specify any command line argument to pass to the initial process of the submitted malware.
+            * ``servicename``: specify the name of the service. If no name is provided, CAPE with default to using *CAPEService*.
+            * ``servicedesc``: specify the description of the service. If no name is provided, CAPE with default to using *CAPE Service*.
 
-    * ``python``: used to run and analyze **Python scripts**.
+    * ``shellcode_x64``: used to run and analyze **Shellcode** via the 64-bit CAPE loader.
 
         **Options**:
-            * ``free`` *[yes/no]*: if enabled, no behavioral logs will be produced and the malware will be executed freely.
-            * ``procmemdump`` *[yes/no]*: if enabled, take memory dumps of all actively monitored processes.
-            * ``dll``: specify the name of an optional DLL to be used as a replacement for capemon.dll.
+            * ``offset``: specify the offset to run with the 64-bit CAPE loader.
 
-    * ``vbs``: used to run and analysis **VBScript files**.
+    * ``shellcode``: used to run and analyze **Shellcode** via the 32-bit CAPE loader, with unpacking!
 
         **Options**:
-            * ``free`` *[yes/no]*: if enabled, no behavioral logs will be produced and the malware will be executed freely.
-            * ``procmemdump`` *[yes/no]*: if enabled, take memory dumps of all actively monitored processes.
-            * ``dll``: specify the name of an optional DLL to be used as a replacement for capemon.dll.
+            * ``offset``: specify the offset to run with the 32-bit CAPE loader.
+
+    * ``swf``: used to run and analyze **Shockwave Flash** via ``flashplayer.exe``.
 
-    * ``xls``: used to run and analyze **Microsoft Excel documents**.
+        *NB*: You need to have ``flashplayer.exe`` in the analyzer's ``bin`` folder.
+
+    * ``vbejse``: used to run and analyze **VBScript Encoded and JScript Encoded files** via ``wscript.exe``.
+    * ``vbs``: used to run and analyze **VBScript and VBScript Encoded files** via ``wscript.exe``.
+    * ``wsf``: used to run and analyze **Windows Script Files** via ``wscript.exe``.
+    * ``xls``: used to run and analyze **Microsoft Excel documents** via ``excel.exe``.
+    * ``xls2016``: used to run and analyze **Microsoft Excel documents** via Microsoft Office 2016's ``excel.exe``.
+    * ``xslt``: used to run and analyze **eXtensible Stylesheet Language Transformation Files** via ``wmic.exe``.
+    * ``xps``: used to run and analyze **XML Paper Specification Files** via ``xpsrchvw.exe``.
+    * ``zip_compound``: used to run and analyze **Zip archives** with more specific settings.
+
+        *NB*: Either ``file`` option must be set, or a ``__configuration.json`` file must be present in the zip file.
+        Sample json file:
+
+        .. code-block:: json
+
+            {
+                "path_to_extract": {
+                    "a.exe": "%USERPROFILE%\\Desktop\\a\\b\\c",
+                    "folder_b": "%appdata%"
+                },
+                "target_file":"a.exe"
+            }
 
         **Options**:
-            * ``free`` *[yes/no]*: if enabled, no behavioral logs will be produced and the malware will be executed freely.
-            * ``procmemdump`` *[yes/no]*: if enabled, take memory dumps of all actively monitored processes.
-            * ``dll``: specify the name of an optional DLL to be used as a replacement for capemon.dll.
+            * ``appdata``: *[yes/no]* if enabled, create custom folders in the APPDATA directory.
+            * ``arguments``: specify arguments to pass to the DLL through commandline.
+            * ``curdir``: specify the directory to create custom folders.
+            * ``dllloader``: specify a process name to use to fake the DLL launcher name instead of ``rundll32.exe`` (this is used to fool possible anti-sandboxing tricks of certain malware).
+            * ``file``: specify the name of the file contained in the archive to execute. If none is specified, a ``__configuration.json`` file must be present in the zip file.
+            * ``function``: specify the function to be executed. If none is specified, CAPE will try to run the entry at ordinal 1.
+            * ``password``: specify the password of the archive. If none is specified, CAPE will try to extract the archive without password or use the password "*infected*".
 
-    * ``zip``: used to run and analyze **Zip archives**.
+    * ``zip``: extract **Zip archives** via the zipfile Python package, and runs an executable file (if it exists), with ``cmd.exe``.
 
         **Options**:
+            * ``appdata``: *[yes/no]* if enabled, create custom folders in the APPDATA directory.
+            * ``arguments``: specify arguments to pass to the DLL through commandline.
+            * ``dllloader``: specify a process name to use to fake the DLL launcher name instead of ``rundll32.exe`` (this is used to fool possible anti-sandboxing tricks of certain malware).
             * ``file``: specify the name of the file contained in the archive to execute. If none is specified, CAPE will try to execute *sample.exe*.
-            * ``free`` *[yes/no]*: if enabled, no behavioral logs will be produced and the malware will be executed freely.
-            * ``arguments``: specify any command line argument to pass to the initial process of the submitted malware.
+            * ``function``: specify the function to be executed. If none is specified, CAPE will try to run the entry at ordinal 1.
             * ``password``: specify the password of the archive. If none is specified, CAPE will try to extract the archive without password or use the password "*infected*".
-            * ``procmemdump`` *[yes/no]*: if enabled, take memory dumps of all actively monitored processes.
-            * ``dll``: specify the name of an optional DLL to be used as a replacement for capemon.dll.
 
-You can find more details on how to start creating new analysis packages in the
+You can find more details on how to start creating analysis packages in the
 :doc:`../customization/packages` customization chapter.
 
 As you already know, you can select which analysis package to use by specifying
@@ -161,12 +221,11 @@ its name at submission time (see :doc:`submit`) as follows::
 
     $ ./utils/submit.py --package <package name> /path/to/malware
 
-If none is specified, CAPE will try to detect the file type and select
+If no package is specified, CAPE will try to detect the file type and select
 the correct analysis package accordingly. If the file type is not supported by
-default the analysis will be aborted, therefore we encourage to
+default, the analysis will be aborted. Therefore we encourage to
 specify the package name whenever possible.
 
-For example, to launch a malware and specify some options you can do::
+For example, to launch a malware sample and specify some options you can do::
 
     $ ./utils/submit.py --package dll --options function=FunctionName,loader=explorer.exe /path/to/malware.dll
-
diff --git a/docs/book/src/usage/patterns_replacement.rst b/docs/book/src/usage/patterns_replacement.rst
new file mode 100644
index 00000000000..aed56689d78
--- /dev/null
+++ b/docs/book/src/usage/patterns_replacement.rst
@@ -0,0 +1,22 @@
+===================
+Pattern replacement
+===================
+* Replace/discard any host/network pattern.
+
+
+Cleaning Operation system patterns.
+===================================
+* Enable filtering inside ``custom/conf/processing.conf``::
+    * ``behavior`` -> ``replace_patterns``
+    * ``CAPE`` -> ``replace_patterns``
+
+* Put your patterns inside of ``data/safelist/replacepatterns.py``
+
+Cleaning Network patterns as IP(s)/Domains.
+===============================================
+* Enable filtering inside ``custom/conf/processing.conf`` -> ``network`` -> ``dnswhitelist/ipwhitelist``
+    * Add all IP(s) and domains to specified files that you want to remove from report into:
+        * ``extra/whitelist_domains.txt``
+        * ``extra/whitelist_ips.txt``
+    * By default we are filtering some of domains already from this list:
+        * ``data/safelist/domains.py``
diff --git a/docs/book/src/usage/performance.rst b/docs/book/src/usage/performance.rst
index 3427165e683..1d5dd9e2d42 100644
--- a/docs/book/src/usage/performance.rst
+++ b/docs/book/src/usage/performance.rst
@@ -7,20 +7,20 @@ There are several ways to tune the CAPE performance
 Processing
 ==========
 
-Processing are the three steps after the malware executed in a VM. Those are
+"Processing" consists of three steps after the malware is executed in a VM. Those are
 
 * processing of raw data
 * signature matching
 * reporting
 
 Processing can take up to 30 minutes if the original raw log is large. This is caused by many API calls in that log. Several
-steps will iterate through that API list which causes a slow down. There are several ways to mitigate the impact:
+steps will iterate through that API list which causes a slowdown. There are several ways to mitigate the impact:
 
 Evented signatures
 ------------------
 
-Evented signatures have a common loop through the api calls. Use them wherever possible and either switch of the
-old-style signatures with their own api-call loop or convert them to event based signatures
+Evented signatures have a common loop through the API calls. Use them wherever possible and either switch the
+old-style signatures with their api-call loop or convert them to event based signatures
 
 Reporting
 ---------
@@ -31,5 +31,5 @@ For automated environments switching off the html report will be a good choice.
 Ram-boost
 ---------
 
-Ram boost can be switched on in the configuration (in *conf/cuckoo.conf* ``ram_boost`` in ``[processing]``).
+Ram boost can be switched on in the configuration (in *conf/processing.conf* -> ``ram_boost`` in ``[behavior]``).
 This will keep the whole API list in Ram. Do that only if you have plenty of Ram (>20 GB for 8 VMs).
diff --git a/docs/book/src/usage/results.rst b/docs/book/src/usage/results.rst
index 22abc974d7d..4d57029b764 100644
--- a/docs/book/src/usage/results.rst
+++ b/docs/book/src/usage/results.rst
@@ -1,3 +1,5 @@
+.. _analysis_results:
+
 ================
 Analysis Results
 ================
@@ -43,9 +45,9 @@ interest to the end-user, as it's used internally by the sandbox.
 analysis.log
 ============
 
-This is a log file generated by the analyzer and that contains a trace of
+This is a log file generated by the analyzer that contains a trace of
 the analysis execution inside the guest environment. It will report the
-creation of processes, files and eventual errors occurred during the
+creation of processes, files, and eventual errors that occurred during the
 execution.
 
 dump.pcap
diff --git a/docs/book/src/usage/rooter.rst b/docs/book/src/usage/rooter.rst
new file mode 100644
index 00000000000..f5ba6b8b96b
--- /dev/null
+++ b/docs/book/src/usage/rooter.rst
@@ -0,0 +1,89 @@
+.. _rooter:
+
+=============
+CAPE Rooter
+=============
+
+The ``CAPE Rooter`` is a new concept, providing ``root`` access for various
+commands to CAPE (which itself generally speaking runs as non-root). This
+command is currently only available for Ubuntu and Debian-like systems.
+
+In particular, the ``rooter`` helps CAPE out with running network-related
+commands to provide **per-analysis routing** options. For more
+information on that, please refer to the :ref:`routing` document. CAPE and
+the ``rooter`` communicate through a UNIX socket for which the ``rooter``
+makes sure that CAPE can reach it.
+
+Its usage is as follows::
+
+    $ python3 rooter.py -h
+    usage: rooter.py [-h] [-g GROUP] [--systemctl SYSTEMCTL] [--iptables IPTABLES] [--iptables-save IPTABLES_SAVE] [--iptables-restore IPTABLES_RESTORE] [--ip IP] [-v] [socket]
+
+    positional arguments:
+    socket                Unix socket path
+
+    optional arguments:
+    -h, --help            show this help message and exit
+    -g GROUP, --group GROUP
+                            Unix socket group
+    --systemctl SYSTEMCTL
+                            Systemctl wrapper script for invoking OpenVPN
+    --iptables IPTABLES   Path to iptables
+    --iptables-save IPTABLES_SAVE
+                            Path to iptables-save
+    --iptables-restore IPTABLES_RESTORE
+                            Path to iptables-restore
+    --ip IP               Path to ip
+    -v, --verbose         Enable verbose logging
+
+..
+    By default, the ``rooter`` will default to ``chown``'ing the ``cape`` user as user and group for the UNIX socket, as recommended when :ref:`../installation/host/installation`.
+    If you're running CAPE under a user other than ``cape``, you will have to specify this to the ``rooter`` as follows::
+
+When executing the ``rooter`` utility, it will default to the ``cuckoo`` group.
+
+    .. image:: ../_images/screenshots/rooter_0.png
+        :align: center
+
+You must specify the user of the UNIX socket. As recommended in the :ref:`installation`, it should be the **cape** user. You can do so by executing the following command::
+
+    $ sudo python3 utils/rooter.py -g cape
+
+However, if you're running CAPE under a user other than ``cape``, you will have to specify this to the ``rooter`` as follows::
+
+    $ sudo python3 utils/rooter.py -g <user>
+
+The other options are fairly straightforward - you can specify the paths to
+specific Linux commands. By default, one shouldn't have to do this though, as
+the ``rooter`` takes the default paths for the various utilities as per a
+default setup.
+
+Virtualenv
+==========
+
+Since the ``rooter`` must be run as ``root`` user, there are
+some slight complications when using a ``virtualenv`` to run CAPE. More
+specifically, when running ``sudo python3 utils/rooter.py``, the ``$VIRTUAL_ENV``
+environment variable will not be passed along, due to which Python will not be
+executed from the same ``virtualenv`` as it would have been normally.
+
+To resolve this one simply has to execute the ``cape`` binary from the
+``virtualenv`` session directly. E.g., if your ``virtualenv`` is located at
+``~/venv``, then running the ``rooter`` command could be done as follows::
+
+    $ sudo ~/venv/bin/cape rooter
+
+.. _cape_rooter_usage:
+
+CAPE Rooter Usage
+=================
+
+Using the ``CAPE Rooter`` is pretty easy. If you know how to start
+it, you're good to go. Even though CAPE talks with the CAPE
+Rooter for each analysis with a routing option other than :ref:`routing_none`,
+the CAPE Rooter does not keep any state or attach to any CAPE instance in
+particular.
+
+It is therefore that once the CAPE Rooter has been started you may leave it
+be - the CAPE Rooter will take care of itself from that point onwards, no
+matter how often you restart your CAPE instance.
diff --git a/docs/book/src/usage/start.rst b/docs/book/src/usage/start.rst
index 052e01ed493..943554a524a 100644
--- a/docs/book/src/usage/start.rst
+++ b/docs/book/src/usage/start.rst
@@ -2,11 +2,13 @@
 Starting CAPE
 ===============
 
-To start CAPE use the command::
+Make sure to run it inside CAPE's root directory::
 
-    $ python3 cuckoo.py
+    $ cd /opt/CAPEv2
+
+To start CAPE, use the command::
 
-Make sure to run it inside CAPE's root directory.
+    $ python3 cuckoo.py
 
 You will get an output similar to this::
 
@@ -39,7 +41,50 @@ Now CAPE is ready to run and it's waiting for submissions.
 
 Most importantly ``--debug`` and ``--quiet`` respectively increase and decrease the logging verbosity.
 
-======================================================
+Poetry users
+============
+
+If you used poetry to install dependencies, you should launch cape with the following command::
+
+        $ sudo -u cape poetry run python3 cuckoo.py
+
+If you get any dependency-related error, make sure you execute the **extra/libvirt_installer.sh** script::
+
+        $ sudo -u cape poetry run extra/libvirt_installer.sh
+
+Troubleshooting
+===============
+
+``PermissionError: [Errno 13] Permission denied: '/opt/CAPEv2/log/cuckoo.log'``
+-------------------------------------------------------------------------------
+You are not executing the CAPE (``cuckoo.py``) file with the appropriate user.
+
+Remember that the user meant to execute CAPE is the `cape` user.
+In fact, after installing CAPE with ``cape2.sh``, the directory should look similar to the following structure:
+
+    .. image:: ../_images/screenshots/troubleshooting_0.png
+            :align: center
+
+In order to execute CAPE as the ``cape`` user you can either launch a shell or execute the following command (notice the command is using Poetry)::
+
+        $ sudo -u cape poetry run python3 cuckoo.py
+
+``CuckooCriticalError: Cannot bind ResultServer on port 2042 because it was in use, bailing``
+---------------------------------------------------------------------------------------------
+CAPE is already running in the background as ``cape.service``
+
+If you want to see the logs in realtime printed to stdout, stop the service by running the following command::
+
+	 $ sudo systemctl stop cape.service
+
+and run ``cuckoo.py`` again
+
+``CuckooCriticalError: Unable to bind Result server on <IP> [Errno 99]``
+------------------------------------------------------------------------
+Check the ``cuckoo.conf`` configuration file again.
+
+You will have to provide the host IP for the ``[resultserver]``, not the guest IP.
+
 Starting processing data generated by virtual machine
 ======================================================
 
@@ -67,4 +112,6 @@ See ``-h`` for all latest options, for better customization::
         -pt PROCESSING_TIMEOUT, --processing-timeout PROCESSING_TIMEOUT
                                 Max amount of time spent in processing before we fail a task
 
-$ python3 utils/process.py -p7 auto
+Command example::
+
+    $ python3 utils/process.py -p7 auto
diff --git a/docs/book/src/usage/submit.rst b/docs/book/src/usage/submit.rst
index f8508857c6d..1550737f09b 100644
--- a/docs/book/src/usage/submit.rst
+++ b/docs/book/src/usage/submit.rst
@@ -53,63 +53,128 @@ command-line utility. It currently has the following options available::
       --unique             Only submit new samples, ignore duplicates
       --quiet              Only print text on failure
 
-If you specify a directory as path, all the files contained in it will be
+If you specify a directory as the target path, all of the files contained within that directory will be
 submitted for analysis.
 
-The concept of analysis packages will be dealt later in this documentation (at
-:doc:`packages`). Following are some usage examples:
+The concept of analysis packages will be dealt with later in this documentation (at
+:doc:`packages`). The following are some examples of how to use the `submit.py` tool:
 
-*Example*: submit a local binary::
+    .. warning:: Remember to use the ``cape`` user. The following commands are executed as ``cape``.
 
-    $ ./utils/submit.py /path/to/binary
+*Example*: Submit a local binary::
 
-*Example*: submit an URL::
+    $ poetry run python utils/submit.py /path/to/binary
 
-    $ ./utils/submit.py --url http://www.example.com
+*Example*: Submit an URL::
 
-*Example*: submit a local binary and specify an higher priority::
+    $ poetry run python utils/submit.py --url http://www.example.com
 
-    $ ./utils/submit.py --priority 5 /path/to/binary
+*Example*: Submit a local binary and specify a higher priority::
 
-*Example*: submit a local binary and specify a custom analysis timeout of
+    $ poetry run python utils/submit.py --priority 5 /path/to/binary
+
+*Example*: Submit a local binary and specify a custom analysis timeout of
 60 seconds::
 
-    $ ./utils/submit.py --timeout 60 /path/to/binary
+    $ poetry run python utils/submit.py --timeout 60 /path/to/binary
 
-*Example*: submit a local binary and specify a custom analysis package::
+*Example*: Submit a local binary and specify a custom analysis package::
 
-    $ ./utils/submit.py --package <name of package> /path/to/binary
+    $ poetry run python utils/submit.py --package <name of package> /path/to/binary
 
-*Example*: submit a local binary and specify a custom analysis package and
+*Example*: Submit a local binary and specify a custom analysis package and
 some options (in this case a command line argument for the malware)::
 
-    $ ./utils/submit.py --package exe --options arguments=--dosomething /path/to/binary.exe
-
-*Example*: submit a local binary to be run on virtual machine *cape1*::
-
-    $ ./utils/submit.py --machine cape1 /path/to/binary
-
-*Example*: submit a local binary to be run on a Windows machine::
-
-    $ ./utils/submit.py --platform windows /path/to/binary
-
-*Example*: submit a local binary and take a full memory dump of the analysis machine::
-
-    $ ./utils/submit.py --memory /path/to/binary
+    $ poetry run python utils/submit.py --package exe --options arguments=--dosomething /path/to/binary.exe
+
+*Example*: Submit a local binary to be run on the virtual machine *cape1*::
+
+    $ poetry run python utils/submit.py --machine cape1 /path/to/binary
+
+*Example*: Submit a local binary to be run on a Windows machine::
+
+    $ poetry run python utils/submit.py --platform windows /path/to/binary
+
+*Example*: Submit a local binary and take a full memory dump of the analysis machine once the analysis is complete::
+
+    $ poetry run python utils/submit.py --memory /path/to/binary
+
+*Example*: Submit a local binary and force the analysis to be executed for the full timeout (disregarding the internal mechanism that CAPE uses to decide when to terminate the analysis)::
+
+    $ poetry run python utils/submit.py --enforce-timeout /path/to/binary
+
+*Example*: Submit a local binary and set the virtual machine clock. The format is %m-%d-%Y %H:%M:%S. If not specified, the current time is used. For example, if we want to run a sample on January 24th, 2001, at 14:41:20::
+
+    $ poetry run python utils/submit.py --clock "01-24-2001 14:41:20" /path/to/binary
+
+*Example*: Submit a sample for Volatility analysis (to reduce side effects of the CAPE hooking, switch it off with *options free=True*)::
+
+    $ poetry run python utils/submit.py --memory --options free=True /path/to/binary
+
+``--options`` Options Available
+-------------------------------
+- ``filename``: Rename the sample file
+- ``name``: This will force family extractor to run, Ex: name=trickbot
+- ``curdir``: Change from where execute sample, by default %TEMP%, Ex: curdir=%APPDATA% or
+        curdir=%APPDATA%\Microsoft\Windows\Start Menu\Programs\Startup
+- ``executiondir``: Sets directory to launch the file from. Need not be the same as the directory of sample file. Defaults to %TEMP% if both executiondir and curdir are not specified. Only supports full paths
+- ``free``: Run without monitoring (disables many capabilities) Ex: free=1
+- ``force-sleepskip``: Override default sleep skipping behavior:  0 disables all sleep skipping, 1 skips all sleeps.
+- ``full-logs``: By default, logs prior to network activity for URL analyses and prior to access of the file in question for non-executable formats are suppressed.  Set to 1 to disable log suppression.
+- ``force-flush``: For performance reasons, logs are buffered before being sent back to the result server.  We make every attempt to flush the buffer at critical points including when exceptions occur, but in some rare termination scenarios, logs may be lost.  Set to 1 to force flushing of the log buffers after any non-duplicate API is called, set to 2 to force flushing of every log.
+- ``no-stealth``: Set to 1 to disable anti-anti-VM/sandbox code enabled by default.
+- ``buffer-max``: When set to an integer of your choice, changes the maximum number of bytes that can be logged for most API buffers.
+- ``large-buffer-max``: Some hooked APIs permit larger buffers to be logged.  To change the limit for this, set this to an integer of your choice.
+- ``norefer``: Disables use of a fake referrer when performing URL analyses
+- ``file``: When using the zip or rar package, set the name of the file to execute
+- ``password``: When using the zip or rar package, set the password to use for extraction.  Also used when analyzing password-protected Office documents.
+- ``function``: When using the dll package, set the name of the exported function to execute
+- ``dllloader``: When using the dll package, set the name of the process loading the DLL (defaults to rundll32.exe).
+- ``arguments``: When using the dll, exe, or python packages, set the arguments to be passed to the executable or exported function.
+- ``appdata``: When using the exe package, set to 1 to run the executable out of the Application Data path instead of the Temp directory.
+- ``startbrowser``: Setting this option to 1 will launch a browser 30 seconds into the analysis (useful for some banking trojans).
+- ``browserdelay``: Sets the number of seconds to wait before starting the browser with the startbrowser option.  Defaults to 30 seconds.
+- ``url``: When used with the startbrowser option, this will determine the URL the started browser will access.
+- ``debug``: Set to 1 to enable reporting of critical exceptions occurring during analysis, set to 2 to enable reporting of all exceptions.
+- ``disable_hook_content``: Set to 1 to remove functionality of all hooks except those critical for monitoring other processes.  Set to 2 to apply to all hooks.
+- ``hook-type``: Valid for 32-bit analyses only.  Specifies the hook type to use: direct, indirect, or safe.  Safe attempts a Detours-style hook.
+- ``serial``: Spoof the serial of the system volume as the provided hex value
+- ``single-process``: When set to 1 this will limit behavior monitoring to the initial process only.
+- ``exclude-apis``: Exclude the colon-separated list of APIs from being hooked
+- ``exclude-dlls``: Exclude the colon-separated list of DLLs from being hooked
+- ``dropped-limit``: Override the default dropped file limit of 100 files
+- ``compression``: When set to 1 this will enable CAPE's extraction of compressed payloads
+- ``extraction``: When set to 1 this will enable CAPE's extraction of payloads from within each process
+- ``injection``: When set to 1 this will enable CAPE's capture of injected payloads between processes
+- ``combo``: This combines compression, injection and extraction with process dumps
+- ``dump-on-api``: Dump the calling module when a function from the colon-separated list of APIs is used
+- ``bp0``: Sets breakpoint 0 (processor/hardware) to a VA or RVA value (or module::export). Applies also to bp1-bp3.
+- ``file-offsets``: Breakpoints in bp0-bp3 will be interpreted as PE file offsets rather than RVAs
+- ``break-on-return``: Sets breakpoints on the return address(es) from a colon-separated list of APIs
+- ``base-on-api``: Sets the base address to which breakpoints will be applied (and sets breakpoints)
+- ``depth``: Sets the depth an instruction trace will step into (defaults to 0, requires Trace package)
+- ``count``: Sets the number of instructions in a trace (defaults to 128, requires Trace package)
+- ``referrer``: Specify the referrer to be used for URL tasks, overriding the default Google referrer
+- ``loop_detection``: Set this option to 1 to enable loop detection (compress call logs - behavior analysis)
+- ``static``: Check if config can be extracted statically, if not, send to vm
+- ``Dl&Exec add headers``: Example: dnl_user_agent: "CAPE Sandbox", dnl_referrer: google
+- ``servicedesc`` - for service package: Service description
+- ``arguments`` - for service package: Service arguments
+- ``store_memdump``: Will force STORE memdump, only when submitting to analyzer node directly, as distributed cluster can modify this
+- ``pre_script_args``: Command line arguments for pre_script. Example: pre_script_args=file1 file2 file3
+- ``pre_script_timeout``: pre_script_timeout will default to 60 seconds. Script will stop after timeout Example: pre_script_timeout=30
+- ``during_script_args``: Command line arguments for during_script. Example: during_script_args=file1 file2 file3
+- ``pwsh``: - for ps1 package: prefer PowerShell Core, if available in the vm
+- ``check_shellcode``: - Setting check_shellcode=0 will disable checking for shellcode during package identification and extracting from archive
+- ``unhook-apis``: - capability to dynamically unhook previously hooked functions (unhook-apis option takes colon-separated list e.g. unhook-apis=NtSetInformationThread:NtDelayExecution)
+- ``ttd``: - ttd=1. TTD integration (Microsoft Time Travel Debugging). Place TTD binaries in analyzer/windows/bin (with wow64 subdirectory for 32-bit). .trc files output to TTD directory in results folder for manual retrieval
 
-*Example*: submit a local binary and force the analysis to be executed for the full timeout (disregarding the internal mechanism that CAPE uses to decide when to terminate the analysis)::
-
-    $ ./utils/submit.py --enforce-timeout /path/to/binary
-
-*Example*: submit a local binary and set virtual machine clock. Format is %m-%d-%Y %H:%M:%S. If not specified, the current time is used. For example if we want run a sample the 24 january 2001 at 14:41:20::
-
-    $ ./utils/submit.py --clock "01-24-2001 14:41:20" /path/to/binary
-
-*Example*: submit a sample for Volatility analysis (to reduce side effects of the CAPE hooking, switch it off with *options free=True*)::
+.. _webpy:
 
-    $ ./utils/submit.py --memory --options free=True /path/to/binary
+Web Interface
+=============
 
-.. _webpy:
+Detailed usage of the web interface is described in :doc:`web`.
 
 .. _apipy:
 
@@ -131,14 +196,14 @@ Detailed usage of the Distributed CAPE API interface is described in
 Python Functions
 ================
 
-In order to keep track of submissions, samples and overall execution, CAPE
+To keep track of submissions, samples, and overall execution, CAPE
 uses a popular Python ORM called `SQLAlchemy`_ that allows you to make the sandbox
-use PostgreSQL, SQLite, MySQL and several other SQL database systems.
+use PostgreSQL, SQLite, MySQL, and several other SQL database systems.
 
-CAPE is designed to be easily integrated in larger solutions and to be fully
-automated. In order to automate analysis submission we suggest to use the REST
-API interface described in :doc:`api`, but in case you want to write your
-own Python submission script, you can also use the ``add_path()`` and ``add_url()`` functions.
+CAPE is designed to be easily integrated into larger solutions and to be fully
+automated. To automate analysis submission we suggest using the REST
+API interface described in :doc:`api`, but in case you want to write a
+Python submission script, you can also use the ``add_path()`` and ``add_url()`` functions.
 
 .. function:: add_path(file_path[, timeout=0[, package=None[, options=None[, priority=1[, custom=None[, machine=None[, platform=None[, memory=False[, enforce_timeout=False], clock=None[]]]]]]]]])
 
@@ -219,3 +284,29 @@ Example Usage:
     >>>
 
 .. _`SQLAlchemy`: http://www.sqlalchemy.org
+
+Troubleshooting
+===============
+
+submit.py
+---------
+
+If you try to submit an analysis using ``submit.py`` and your output looks like::
+
+    $ sudo -u cape poetry run python submit.py /path/to/binary/test.exe
+    Error: adding task to database
+
+It could be due to errors while trying to communicate with the PostgreSQL instance. PostgreSQL is installed and configured by default when executing ``cape2.sh``. Make sure your PostgreSQL instance is active and running. To check it out execute the following command::
+
+    $ sudo systemctl status postgresql
+
+If the status is other than **Active** (it can be in exited status, as long as it is Active), there is something that needs to be fixed.
+
+The logs for PostgreSQL can be found under */var/log/postgresql/\*.log*.
+
+If everything is working regarding PostgreSQL, **make sure** the ``cape`` user is able to access (both read and write) the directories involved in the analysis. For example, ``cape`` must be able to read and write in */tmp*.
+
+Analysis results
+================
+
+Check :ref:`analysis_results`.
diff --git a/docs/book/src/usage/utilities.rst b/docs/book/src/usage/utilities.rst
index 3bc58b6bcf7..cdc815577f1 100644
--- a/docs/book/src/usage/utilities.rst
+++ b/docs/book/src/usage/utilities.rst
@@ -10,7 +10,7 @@ tasks. You can find them under the "utils" folder. There more utilities than doc
 Cleanup utility
 ===============
 
-Use :ref:`./utils/cleaner.py -h` instead which *also* takes care of cleaning
+Use :ref:`CAPE-clean` instead which *also* takes care of cleaning
 sample and task information from MySQL and PostgreSQL databases. This utility
 will also delete all data from the configured MongoDB or ElasticSearch
 databases.
@@ -164,4 +164,3 @@ Following are the available options::
     --snapshot SNAPSHOT   Specific Virtual Machine Snapshot to use.
     --resultserver RESULTSERVER
                           IP:Port of the Result Server.
-
diff --git a/docs/book/src/usage/web.rst b/docs/book/src/usage/web.rst
index 31d55021c2e..5dc42fc1ad7 100644
--- a/docs/book/src/usage/web.rst
+++ b/docs/book/src/usage/web.rst
@@ -6,86 +6,102 @@ CAPE provides a full-fledged web interface in the form of a Django application.
 This interface will allow you to submit files, browse through the reports as well
 as search across all the analysis results.
 
+``cape2.sh`` adds ``systemd`` daemon called ``cape-web.service`` which listen on all interfaces::
+
+    $ /lib/systemd/system/cape-web.service
+
+To modify that you need to edit that file and change from ``0.0.0.0`` to your IP.
+You need to restart daemon to reload after change it::
+
+    $ systemctl daemon-reload
+
+If you get migration-related WARNINGS when launching the cape-web service, you should execute::
+
+    $ poetry run python3 manage.py migrate
+
+.. note:: In order to improve performance, it is recommended to move from SQLite to PostgreSQL.
+
 Configuration
 =============
 
-The web interface pulls data from a Mongo database or from ElasticSearch, so having
+The web interface pulls data from a Mongo database or ElasticSearch, so having
 either the MongoDB or ElasticSearchDB reporting modules enabled in ``reporting.conf``
 is mandatory for this interface. If that's not the case, the application won't start
-and it will raise an exception. Also, currently Django only supports having one of
+and it will raise an exception. Also, currently, Django only supports having one of
 the database modules enabled at a time.
 
-The interface can be configured by editing ``local_settings.py`` under ``web/web/``::
+Enable web interface auth
+-------------------------
+To enable web authentication you need to edit `conf/web.conf` -> `web_auth` -> `enabled = yes`,
+after that you need to create your django admin user by running following command from `web` folder::
 
-    # If you want to customize your CAPE path set it here.
-    # CAPE_PATH = "/where/CAPE/is/placed/"
+    $ poetry run python manage.py createsuperuser
 
-    # Maximum upload size.
-    MAX_UPLOAD_SIZE = 26214400
+For more security tips see `Exposed to internet`_ section.
 
-    # Override default secret key stored in secret_key.py
-    # Make this unique, and don't share it with anybody.
-    # SECRET_KEY = "YOUR_RANDOM_KEY"
 
-    # Local time zone for this installation. Choices can be found here:
-    # http://en.wikipedia.org/wiki/List_of_tz_zones_by_name
-    # although not all choices may be available on all operating systems.
-    # On Unix systems, a value of None will cause Django to use the same
-    # timezone as the operating system.
-    # If running in a Windows environment this must be set to the same as your
-    # system time zone.
-    TIME_ZONE = "America/Chicago"
+Enable/Disable REST API Endpoints
+---------------------------------
+By default, there are multiple REST API endpoints that are disabled.
+To enable them, head to the `API configuration file`_
 
-    # Language code for this installation. All choices can be found here:
-    # http://www.i18nguy.com/unicode/language-identifiers.html
-    LANGUAGE_CODE = "en-us"
+For example, to enable the `machines/list` endpoint, you must find the `[machinelist]`
+header in the configuration file just mentioned and set the `enabled` field to `yes`.
 
-    ADMINS = (
-        # ("Your Name", "your_email@example.com"),
-    )
+Restart the CAPE web service for the changes to take effect::
 
-    MANAGERS = ADMINS
+    $ systemctl restart cape-web
 
-    # Allow verbose debug error message in case of application fault.
-    # It's strongly suggested to set it to False if you are serving the
-    # web application from a web server front-end (i.e. Apache).
-    DEBUG = True
+.. _`API configuration file`: https://github.com/kevoreilly/CAPEv2/blob/master/conf/api.conf
 
-    # A list of strings representing the host/domain names that this Django site
-    # can serve.
-    # Values in this list can be fully qualified names (e.g. 'www.example.com').
-    # When DEBUG is True or when running tests, host validation is disabled; any
-    # host will be accepted. Thus it's usually only necessary to set it in production.
-    ALLOWED_HOSTS = ["*"]
 
 Usage
 =====
 
-In order to start the web interface, you can simply run the following command
+To start the web interface, you can simply run the following command
 from the ``web/`` directory::
 
-    $ python3 manage.py runserver
+    $ poetry run python3 manage.py runserver_plus --traceback --keep-meta-shutdown
 
 If you want to configure the web interface as listening for any IP on a
-specified port, you can start it with the following command (replace PORT
+specified port (by default the web interface is deployed at localhost:8000), you can start it with the following command (replace PORT
 with the desired port number)::
 
-    $ python3 manage.py runserver 0.0.0.0:PORT
+    $ poetry run python3 manage.py runserver_plus 0.0.0.0:8000 --traceback --keep-meta-shutdown
 
 You can serve CAPE's web interface using WSGI interface with common web servers:
-Apache, Nginx, Unicorn and so on.
+Apache, Nginx, Unicorn, and so on. Devs are using Nginx + Uwsgi.
 Please refer both to the documentation of the web server of your choice as well as `Django documentation`_.
 
 .. _`Django documentation`: https://docs.djangoproject.com/
 
+
+Subscription
+============
+
+Subscription allows you to control which users what can do what.
+
+Right now we support:
+
+    * Request - Limits per second/minute/hour using django-ratelimit extensions
+    * Reports - Allow or block downloading reports for specific users. Check conf/web.conf to enable this feature.
+
+To extend the capabilities of control what users can do check `Django migrations a primer`_.
+
+.. _`Django migrations a primer`: https://realpython.com/django-migrations-a-primer/
+
+In few words you need to add new fields to ``models.py`` and run ``poetry run python3 manage.py makemigrations``
+
+
 Exposed to internet
 ===================
 
-To get rid of many bots/scrappers so we suggest to deploy this amazing project `Nginx Ultimate bad bot blocker`_, follow readme for instalation steps
+To get rid of many bots/scrappers so we suggest deploying this amazing project `Nginx Ultimate bad bot blocker`_, follow the README for installation steps
 
-* Enable web auth with captcha in `conf/web.conf` preferly to avoid any bruteforce.
-* Enable `ReCaptcha`_. You will need to set ``Public`` and ``Secret`` keys in ``web/web/settings.py``
-* `AllAuth`_ aka SSO autentification with Google, Github, etc. `Video Tutorial`_ & `StackOverflow Example`_:
+* Enable web auth with captcha in `conf/web.conf` properly to avoid any brute force.
+* Enable `ReCaptcha`_. You will need to set ``RECAPTCHA_PUBLIC_KEY`` and ``RECAPTCHA_PRIVATE_KEY`` keys in ``web/web/local_settings.py``
+* You might need to "Verify" and set as "Stuff user" to your admin in the Django admin panel and add your domain to Sites in Django admin too
+* `AllAuth`_ aka SSO authentication with Google, Github, etc. `Video Tutorial`_ & `StackOverflow Example`_:
     * Note ``SITE_ID=1`` in django admin is ``example.com`` rename it to your domain to get it working
 
 .. _`AllAuth`: https://django-allauth.readthedocs.io/
@@ -94,3 +110,408 @@ To get rid of many bots/scrappers so we suggest to deploy this amazing project `
 .. _`Nginx Ultimate bad bot blocker`: https://github.com/mitchellkrogza/nginx-ultimate-bad-bot-blocker/
 .. _`ReCaptcha`: https://www.google.com/recaptcha/admin/
 
+
+.. _best_practices_for_production:
+
+Best practices for production
+=============================
+**Gunicorn + NGINX** is the recommended way of serving the CAPE web UI.
+
+Gunicorn
+--------
+First, configure the ``cape-web`` service to use Gunicorn
+
+Modify ``/lib/systemd/system/cape-web.service`` so the ``ExecStart``
+setting is set to:
+
+.. code:: systemd
+
+    ExecStart=/usr/bin/python3 -m poetry run gunicorn web.wsgi -w 4 -t 200 --capture-output --enable-stdio-inheritance
+
+Run
+
+.. code:: bash
+
+    sudo systemctl daemon-reload
+    sudo service cape-web restart
+
+NGINX
+-----
+Next, install NGINX and configure it to be a reverse proxy to Gunicorn.
+
+.. code:: bash
+
+    sudo apt install nginx
+
+Create a configuration file at ``/etc/nginx/conf.d/cape``.
+You might need to add ``include /etc/nginx/conf.d/*.conf;`` to ``http`` section inside of ``/etc/nginx/nginx.conf``.
+
+Replace ``www.capesandbox.com`` with your actual hostname.
+
+.. code-block:: nginx
+
+    server {
+        listen 80;
+        server_name www.capesandbox.com;
+        client_max_body_size 101M;
+        proxy_connect_timeout 75;
+        proxy_send_timeout 200;
+        proxy_read_timeout 200;
+
+
+        location ^~ /.well-known/acme-challenge/ {
+            default_type "text/plain";
+            root         /var/www/html;
+            break;
+        }
+
+        location = /.well-known/acme-challenge/ {
+            return 404;
+        }
+
+        location / {
+            proxy_pass http://127.0.0.1:8000;
+            proxy_set_header Host $host;
+            proxy_set_header X-Remote-User $remote_user;
+            proxy_set_header X-Real-IP $remote_addr;
+            proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+        }
+
+        location /static/ {
+            alias /opt/CAPEv2/web/static/;
+        }
+
+        location /static/admin/ {
+            proxy_pass http://127.0.0.1:8000;
+            proxy_set_header Host $host;
+            proxy_set_header X-Remote-User $remote_user;
+            proxy_set_header X-Real-IP $remote_addr;
+            proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+        }
+
+        location /guac {
+            proxy_pass http://127.0.0.1:8008;
+            proxy_set_header X-Forwarded-Proto $scheme;
+            proxy_set_header Host $host;
+            proxy_set_header X-Real-IP $remote_addr;
+            proxy_buffering off;
+            proxy_http_version 1.1;
+            proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+            proxy_set_header Upgrade $http_upgrade;
+            proxy_set_header Connection $http_connection;
+        }
+
+        location /recordings/playback/recfile {
+            alias /opt/CAPEv2/storage/guacrecordings/;
+            autoindex off;
+        }
+    }
+
+Now enable the nginx configuration by executing the following:
+
+.. code:: bash
+
+    rm -f /etc/nginx/conf.d/default
+    ln -s /etc/nginx/conf.d/cape /etc/nginx/conf.d/default
+
+
+If you want to block users from changing their own email addresses, add the following `location` directive inside of the `server` directive:
+
+.. code-block:: nginx
+
+    location /accounts/email/ {
+        return 403;
+    }
+
+If you want to block users from changing their own passwords, add the following `location` directive inside of the `server` directive:
+
+.. code-block:: nginx
+
+    location /accounts/email/ {
+        return 403;
+    }
+
+The recording files written by ``guacd`` are only readable by the ``cape`` user and other members of the ``cape`` group, so in order for NGINX to read and serve the recordings the ``www-data`` user must be added to the ``cape`` group.
+
+.. code-block:: bash
+
+    sudo usermod www-data -G cape
+
+Then restart NGINX
+
+.. code-block:: bash
+
+    sudo service nginx restart
+
+.. warning::
+
+    The CAPE Guacamole Django web application is currently separate from the main CAPE Django web application, and does not support any authentication. Anyone who can connect to the web server access can Guacamole consoles and recordings, if they know the CAPE analysis ID and Guacamole session GUID.
+
+    NGINX can be configured to require HTTP basic authentication for all CAPE web applications, as an alternative to the Django authentication system.
+
+    Install the ``apache2-utils`` package, which contains the ``htpasswd`` utility.
+
+    .. code-block:: bash
+
+        sudo apt install apache2-utils
+
+    Use the ``htpasswd`` file to create a new password file and add a first user, such as ``cape``.
+
+    .. code-block:: bash
+
+        sudo htpasswd -c /opt/CAPEv2/web/.htpasswd cape
+
+    Use the same command without the `-c` option to add another user to an existing password file.
+
+    Set the proper file permissions.
+
+    .. code-block:: bash
+
+        sudo chown root:www-data /opt/CAPEv2/web/.htpasswd
+        sudo chmod u=rw,g=r,o= /opt/CAPEv2/web/.htpasswd
+
+    Add the following lines to the NGINX configuration, just below the ``client_max_body_size`` line.
+
+    .. code-block:: nginx
+
+        auth_basic           "Authentication required";
+        auth_basic_user_file /opt/CAPEv2/web/.htpasswd;
+
+    Then restart NGINX
+
+    .. code-block:: bash
+
+        sudo service nginx restart
+
+Let's Encrypt certificates
+^^^^^^^^^^^^^^^^^^^^^^^^^^
+
+If you would like to install a free Let's Encrypt certificate on your NGINX
+server, follow these steps, replacing ``capesandbox.com`` with your actual
+hostname. Use ``cape2.sh`` to install dependencies. But also ensure that instruction
+are up to date with this https://certbot.eff.org/
+
+Install `certbot`.
+
+.. code-block:: bash
+
+    sudo cape2.sh letsencrypt
+
+Request the certificate
+
+.. code-block:: bash
+
+    sudo certbot certonly --webroot -w /var/www/html -d www.capesandbox.com -d capesandbox.com
+
+Install the certificate. When prompted, select the
+"Attempt to reinstall this existing certificate" option.
+
+.. code-block:: bash
+
+    sudo certbot --nginx -d www.capesandbox.com -d capesandbox.com
+
+
+Some extra security TIP(s)
+==========================
+
+* `ModSecurity tutorial`_ - rejects requests
+* `Fail2ban tutorial`_ - ban hosts
+* `Fail2ban + CloudFlare`_ - how to ban on CloudFlare aka CDN firewall level
+
+.. _`ModSecurity tutorial`: https://malware.expert/tutorial/writing-modsecurity-rules/
+.. _`Fail2ban tutorial`: https://www.digitalocean.com/community/tutorials/how-to-protect-an-nginx-server-with-fail2ban-on-ubuntu-14-04
+.. _`Fail2ban + CloudFlare`: https://guides.wp-bullet.com/integrate-fail2ban-cloudflare-api-v4-guide/
+
+
+* Example of cloudflare action ban::
+
+    # Author: Mike Andreasen from https://guides.wp-bullet.com
+    # Adapted Source: https://github.com/fail2ban/fail2ban/blob/master/config/action.d/cloudflare.conf
+    # Referenced from: https://www.normyee.net/blog/2012/02/02/adding-cloudflare-support-to-fail2ban by NORM YEE
+    #
+    # To get your Cloudflare API key: https://www.cloudflare.com/my-account, you should use GLOBAL KEY!
+
+    [Definition]
+
+    # Option:  actionstart
+    # Notes.:  command executed once at the start of Fail2Ban.
+    # Values:  CMD
+    #
+    actionstart =
+
+    # Option:  actionstop
+    # Notes.:  command executed once at the end of Fail2Ban
+    # Values:  CMD
+    #
+    actionstop =
+
+    # Option:  actioncheck
+    # Notes.:  command executed once before each actionban command
+    # Values:  CMD
+    #
+    actioncheck =
+
+    # Option:  actionban
+    # Notes.:  command executed when banning an IP. Take care that the
+    #          command is executed with Fail2Ban user rights.
+    # Tags:      IP address
+    #            number of failures
+    #            unix timestamp of the ban time
+    # Values:  CMD
+
+    actionban = curl -s -X POST "https://api.cloudflare.com/client/v4/user/firewall/access_rules/rules" -H "X-Auth-Email: <cfuser>" -H "X-Auth-Key: <cftoken>" -H "Content-Type: application/json" --data '{"mode":"block","configuration":{"target":"ip","value":"<ip>"},"notes":"Fail2ban"}'
+
+    # Option:  actionunban
+    # Notes.:  command executed when unbanning an IP. Take care that the
+    #          command is executed with Fail2Ban user rights.
+    # Tags:      IP address
+    #            number of failures
+    #            unix timestamp of the ban time
+    # Values:  CMD
+    #
+
+    actionunban = curl -s -X DELETE "https://api.cloudflare.com/client/v4/user/firewall/access_rules/rules/$( \
+                curl -s -X GET "https://api.cloudflare.com/client/v4/user/firewall/access_rules/rules?mode=block&configuration_target=ip&configuration_value=<ip>&page=1&per_page=1&match=all" \
+                -H "X-Auth-Email: <cfuser>" \
+                -H "X-Auth-Key: <cftoken>" \
+                -H "Content-Type: application/json" | awk -F"[,:}]" '{for(i=1;i<=NF;i++){if($i~/'id'\042/){print $(i+1)}}}' | tr -d '"' | head -n 1)" \
+                -H "X-Auth-Email: <cfuser>" \
+                -H "X-Auth-Key: <cftoken>" \
+                -H "Content-Type: application/json"
+
+    [Init]
+
+    # Option: cfuser
+    # Notes.: Replaces <cfuser> in actionban and actionunban with cfuser value below
+    # Values: Your CloudFlare user account
+
+    cfuser = put-your-cloudflare-email-here
+
+    # Option: cftoken
+    # Notes.: Replaces <cftoken> in actionban and actionunban with cftoken value below
+    # Values: Your CloudFlare API key
+    cftoken = put-your-API-key-here
+
+* Example of `fail2ban` rule to ban by path::
+
+    # This will ban any host that trying to access /api/ for 3 times in 1 minute
+    # Goes to /etc/fail2ban/filters.d/nginx-cape-api.conf
+    [Definition]
+    failregex = ^<HOST> -.*"(GET|POST|HEAD) /api/.*HTTP.*"
+    ignoreregex =
+
+    # goes to /etc/fail2ban/jail.local
+    [cape-api]
+    enabled = true
+    port    = http,https
+    filter  = nginx-cape-api
+    logpath = /var/log/nginx/access.log
+    maxretry = 3
+    findtime = 60
+    bantime = -1
+    # Remove cloudflare line if you don't use it
+    action = iptables-multiport
+             cloudflare
+
+    # This will ban any host that trying to brute force login or unauthorized requests for 5 times in 1 minute
+    # Goes to /etc/fail2ban/filters.d/filter.d/nginx-cape-login.conf
+    [Definition]
+    failregex = ^<HOST> -.*"(GET|POST|HEAD) /accounts/login/\?next=.*HTTP.*"
+    ignoreregex =
+
+    # goes to /etc/fail2ban/jail.local
+    [cape-login]
+    enabled = true
+    port    = http,https
+    filter  = nginx-cape-login
+    logpath = /var/log/nginx/access.log
+    maxretry = 5
+    findtime = 60
+    bantime = -1
+    # Remove cloudflare line if you don't use it
+    action = iptables-multiport
+              cloudflare
+
+* To check banned hosts::
+
+    $ sudo fail2ban-client status cape-api
+
+Troubleshooting
+===============
+
+Login error: no such column: users_userprofile.reports
+------------------------------------------------------
+
+    .. image:: ../_images/screenshots/login_error_user_usersprofile.png
+        :align: center
+
+This error usually appears after updating CAPEv2 and one or more changes have been made to the database schema. To solve it, you must use the `web/manage` utility like so::
+
+$ sudo -u cape poetry run python3 manage.py migrate
+
+The output should be similar to::
+
+
+    $ sudo -u cape poetry run python3 manage.py migrate
+    CAPE parser: No module named Nighthawk - No module named 'Crypto'
+    Missed dependency flare-floss: poetry run pip install -U flare-floss
+    Operations to perform:
+      Apply all migrations: account, admin, auth, authtoken, contenttypes, openid, sessions, sites, socialaccount, users
+    Running migrations:
+      Applying users.0002_reports... OK
+
+
+After the OK, the web service should be back to normal (no need to restart ``cape-web.service``).
+
+No such table: auth_user
+-------------------------
+
+When executing::
+
+$ poetry run python manage.py createsuperuser
+
+an error like ``django.db.utils.OperationalError: no such table: auth_user``
+may be raised. In order to solve it just execute the ``web/manage.py`` utility with the ``migrate`` option::
+
+$ sudo -u cape poetry run python3 web/manage.py migrate
+
+
+Slow web/API searches when using MongoDB as backend
+---------------------------------------------------
+
+* Check server lack of resources as memory ram, cpu or even slow hard drive.
+* Possible issue is the lack of proper indexes.
+* List your MongoDB indexes:
+
+.. code-block:: bash
+
+    db.analysis.getIndexes()
+
+* Test your query with explaination. Replace with your search patterns:
+
+.. code-block:: bash
+
+        db.analysis.find({"target.file.name": "<name>"}).explain("executionStats")
+
+* Pay attention to stage value:
+
+.. code-block:: bash
+
+    executionStages: {
+        stage: 'COLLSCAN', # <--- Full collection scan instead of index usage
+
+If you expect it to search in index, expected output should be like this:
+
+.. code-block:: bash
+
+    executionStages: {
+        stage: 'FETCH',
+        <stripped>
+        inputStage: {
+            stage: 'IXSCAN', # <--- Index usage
+
+* How to delete index
+
+.. code-block:: bash
+
+    db.collection.dropIndexes("<index name>")
diff --git a/docs/requirements.txt b/docs/requirements.txt
index e69de29bb2d..59709ec7211 100644
--- a/docs/requirements.txt
+++ b/docs/requirements.txt
@@ -0,0 +1 @@
+sphinx-rtd-theme==2.0.0
diff --git a/extra/browser_extension/README.md b/extra/browser_extension/README.md
new file mode 100644
index 00000000000..869b5013c25
--- /dev/null
+++ b/extra/browser_extension/README.md
@@ -0,0 +1,39 @@
+This browser extension intercepts requests done within a browser and sends them
+back to agent.py.
+
+Extension setup differs on a browser basis:
+
+
+==== Firefox ====
+
+Firefox requires having a signed extension. Head to
+https://addons.mozilla.org/en-US/developers/addons and sign your extension
+(adjust details on manifest.json) and install it in your browser.
+
+Alternatively it's possible to install an unsigned extension temporarily by
+heading to about:debugging and pointing to your compressed (.zip) extension but
+this is not supported.
+
+
+==== Chromium ====
+
+Download latest build from https://download-chromium.appspot.com/ -- Enable
+developer mode and load unpacked extension. Then, close the browser. Once you
+open chromium again, it will complain about the extension being unsafe and
+Chromium auto-disables it. Head back to the extensions page and give it
+permissions back. Then, the extension is permantently loaded. Tested on version
+131.0.X
+
+The default path for the `chromium_ext` package is %LOCALAPPDATA%/Chromium/chrome.exe,
+change the path in .py if needed.
+
+==== TOR Browser ====
+Follow the same steps as FIREFOX. By default TOR browser always starts in a
+Private Tab, allow the extension to run in Private Tabs by default. Because TOR
+joins the TOR network, it won't see localhost and instead calls the browser
+download API to save requests.
+
+Set the default downloads directory to %temp% for the auxiliary module to find
+the .JSON file. After setting the saving path to %temp%, below untick "Always
+ask you where to save files" so that the extension is able to call the
+`browser.download` API. 
diff --git a/extra/browser_extension/background.js b/extra/browser_extension/background.js
new file mode 100644
index 00000000000..64ff7f7ea92
--- /dev/null
+++ b/extra/browser_extension/background.js
@@ -0,0 +1,110 @@
+let isTORBrowser = false;
+let networkData = [];
+let downloadTORPath = "bext_default.json";
+
+function generateRandomFilename() {
+  const asciiLetters = 'abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ';
+  let filename = 'bext_';
+  for (let i = 0; i < 10; i++) {
+    filename += asciiLetters.charAt(Math.floor(Math.random() * asciiLetters.length));
+  }
+  filename += '.json';
+  return filename;
+}
+
+
+function storeNetworkData() {
+  const blob = new Blob([JSON.stringify(networkData, null, 2)], {type: "application/json"});
+  const url = URL.createObjectURL(blob);
+
+  browser.downloads.download({
+    url: url,
+    filename: downloadTORPath,
+    conflictAction: 'overwrite'
+  });
+}
+
+function onRequestEvent(details) {
+    if (details.url.includes("/browser_extension")) {
+      return;
+    }
+    const requestEvent = networkData.find(entry => entry.url === details.url);
+    if (requestEvent) {
+      return
+    }
+    const info = {
+        url: details.url,
+        method: details.method,
+        timeStamp: details.timeStamp,
+        requestHeaders: details.requestHeaders,
+    };
+    networkData.push(info);
+}
+
+function onResponseEvent(details) {
+  const requestEvent = networkData.find(entry => entry.url === details.url);
+  if (requestEvent) {
+      if (requestEvent.ip) {
+        return;
+      }
+      requestEvent.responseHeaders = details.responseHeaders;
+      requestEvent.type = details.type;
+      requestEvent.ip = details.ip;
+      requestEvent.originUrl = details.originUrl;
+      if (isTORBrowser) {
+        storeNetworkData();
+      } else {
+        sendEvents()
+      }
+  }
+}
+
+function sendEvents() {
+  const form = new FormData();
+  form.append('networkData', JSON.stringify(networkData));
+
+  fetch('http://localhost:8000/browser_extension', {
+    method: 'POST',
+    body: form
+  })
+  .then(response => response.json())
+  .catch(error => {
+    console.error('Error posting data to endpoint:', error);
+  });
+}
+
+
+browser.webRequest.onBeforeSendHeaders.addListener(
+    onRequestEvent,
+    {urls: ["<all_urls>"]},
+    ["requestHeaders"]
+);
+
+browser.webRequest.onCompleted.addListener(
+  onResponseEvent,
+  {urls: ["<all_urls>"]},
+  ["responseHeaders"]
+);
+
+browser.downloads.onCreated.addListener(function(downloadItem) {
+  const downloadId = downloadItem.id;
+  browser.downloads.onChanged.addListener(function(delta) {
+    if (delta.id === downloadId && delta.state && delta.state.current === "complete") {
+      const requestEvent = networkData.find(entry => entry.url === downloadItem.url);
+      if (requestEvent) {
+        requestEvent.filePath = downloadItem.filename;
+      }
+    }
+  });
+});
+
+browser.runtime.onStartup.addListener(function () {
+  networkData = [];
+});
+
+browser.runtime.getBrowserInfo().then((bInfo) => {
+  if (bInfo.vendor === "Tor Project") {
+    isTORBrowser = true;
+    downloadTORPath = generateRandomFilename();
+  }
+});
\ No newline at end of file
diff --git a/extra/browser_extension/manifest.json b/extra/browser_extension/manifest.json
new file mode 100644
index 00000000000..c020423006b
--- /dev/null
+++ b/extra/browser_extension/manifest.json
@@ -0,0 +1,23 @@
+{
+  "manifest_version": 2,
+  "name": "Hello Extension",
+  "version": "1.33.7",
+  "description": "Lorem ipsum dolor sit amet, consectetur adipiscing elit",
+  "permissions": [
+    "webRequest",
+    "webRequestBlocking",
+    "<all_urls>",
+    "downloads",
+    "http://localhost:8000/*"
+  ],
+  "browser_specific_settings": {
+    "gecko": {
+      "id": "me@domain.com"
+    }
+  },
+  "background": {
+    "scripts": ["background.js"],
+    "persistent": true
+  }
+}
+
diff --git a/extra/cape-fluentd.conf b/extra/cape-fluentd.conf
new file mode 100644
index 00000000000..890843804f1
--- /dev/null
+++ b/extra/cape-fluentd.conf
@@ -0,0 +1,40 @@
+# https://faun.pub/collecting-your-logs-to-stackdriver-in-gcp-basic-86772a0801c2
+
+# set repo and update
+# curl -sSO https://dl.google.com/cloudagents/add-logging-agent-repo.sh
+# sudo bash add-logging-agent-repo.sh
+# sudo apt-get update
+
+# install
+# sudo apt-get install -y google-fluentd google-fluentd-catch-all-config-structured
+
+# Copy this file to
+# sudo cp extra/cape-flientd.conf /etc/google-fluentd/config.d/cape.conf
+# sudo service google-fluentd start &&  sudo service google-fluentd status && sudo service google-fluentd restart
+
+<source>
+  @type tail
+  format none
+  path /opt/CAPEv2/log/process.log
+  pos_file /var/lib/google-fluentd/pos/cape-process.pos
+  read_from_head true
+  tag cape-processing
+</source>
+
+<source>
+  @type tail
+  format none
+  path /opt/CAPEv2/log/cuckoo.log
+  pos_file /var/lib/google-fluentd/pos/cape.pos
+  read_from_head true
+  tag cape
+</source>
+
+<source>
+  @type tail
+  format none
+  path /opt/CAPEv2/log/dist.log
+  pos_file /var/lib/google-fluentd/pos/cape-dist.pos
+  read_from_head true
+  tag cape-dist
+</source>
diff --git a/extra/guac related/fstab.in b/extra/guac related/fstab.in
new file mode 100644
index 00000000000..7c21e2f51ed
--- /dev/null
+++ b/extra/guac related/fstab.in	
@@ -0,0 +1,4 @@
+# guacd writes recording file with owner read/write permissions only
+# using bindfs as work around, unless someone can provide an easier solution
+
+/opt/guacrecordings /opt/www/guacrecordings fuse.bindfs perms=0000:u+rwD:g+rwD:o+rD 0 0
\ No newline at end of file
diff --git a/extra/guac related/nginx-site-config.txt b/extra/guac related/nginx-site-config.txt
new file mode 100644
index 00000000000..9ddef0b77a1
--- /dev/null
+++ b/extra/guac related/nginx-site-config.txt	
@@ -0,0 +1,111 @@
+server {
+    listen 80;
+    server_name www.capesandbox.com;
+    client_max_body_size 101M;
+    proxy_connect_timeout 75;
+    proxy_send_timeout 200;
+    proxy_read_timeout 200;
+
+
+    location ^~ /.well-known/acme-challenge/ {
+      default_type "text/plain";
+      root         /var/www/html;
+      break;
+  }
+
+  location = /.well-known/acme-challenge/ {
+    return 404;
+  }
+
+    location / {
+        proxy_pass http://127.0.0.1:8000;
+        proxy_set_header Host $host;
+        proxy_set_header X-Remote-User $remote_user;
+        proxy_set_header X-Real-IP $remote_addr;
+        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+    }
+
+    location /static/ {
+        alias /opt/CAPEv2/web/static/;
+    }
+
+    location /static/admin/ {
+        proxy_pass http://127.0.0.1:8000;
+        proxy_set_header Host $host;
+        proxy_set_header X-Remote-User $remote_user;
+        proxy_set_header X-Real-IP $remote_addr;
+        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+    }
+
+    location /guac/ {
+        proxy_pass http://127.0.0.1:8008;
+        proxy_set_header X-Forwarded-Proto $scheme;
+        proxy_set_header Host $host;
+        proxy_set_header X-Real-IP $remote_addr;
+        proxy_buffering off;
+        proxy_http_version 1.1;
+        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+        proxy_set_header Upgrade $http_upgrade;
+        proxy_set_header Connection $http_connection;
+    }
+
+    location /recordings/playback/recfile/ {
+        alias /opt/CAPEv2/storage/guacrecordings/;
+        autoindex off;
+    }
+} server {
+    listen 80;
+    server_name www.capesandbox.com;
+    client_max_body_size 101M;
+    proxy_connect_timeout 75;
+    proxy_send_timeout 200;
+    proxy_read_timeout 200;
+
+
+    location ^~ /.well-known/acme-challenge/ {
+      default_type "text/plain";
+      root         /var/www/html;
+      break;
+  }
+
+  location = /.well-known/acme-challenge/ {
+    return 404;
+  }
+
+    location / {
+        proxy_pass http://127.0.0.1:8000;
+        proxy_set_header Host $host;
+        proxy_set_header X-Remote-User $remote_user;
+        proxy_set_header X-Real-IP $remote_addr;
+        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+    }
+
+    location /static/ {
+        alias /opt/CAPEv2/web/static/;
+    }
+
+    location /static/admin/ {
+        proxy_pass http://127.0.0.1:8000;
+        proxy_set_header Host $host;
+        proxy_set_header X-Remote-User $remote_user;
+        proxy_set_header X-Real-IP $remote_addr;
+        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+    }
+
+    location /guac/ {
+        proxy_pass http://127.0.0.1:8008;
+        proxy_set_header X-Forwarded-Proto $scheme;
+        proxy_set_header Host $host;
+        proxy_set_header X-Real-IP $remote_addr;
+        proxy_buffering off;
+        proxy_http_version 1.1;
+        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+        proxy_set_header Upgrade $http_upgrade;
+        proxy_set_header Connection $http_connection;
+    }
+
+    location /recordings/playback/recfile/ {
+        alias /opt/CAPEv2/storage/guacrecordings/;
+        autoindex off;
+    }
+}
diff --git a/extra/libvirt_installer.sh b/extra/libvirt_installer.sh
new file mode 100755
index 00000000000..a352b7a696f
--- /dev/null
+++ b/extra/libvirt_installer.sh
@@ -0,0 +1,32 @@
+#!/bin/bash
+set -ex
+
+# run this via...
+# cd /opt/CAPEv2/ ; sudo -u cape /etc/poetry/bin/poetry run extra/libvirt_installer.sh
+
+LIB_VERSION=11.1.0
+cd /tmp || return
+
+if [ ! -f v${LIB_VERSION}.zip ]; then
+    wget "https://github.com/libvirt/libvirt-python/archive/v${LIB_VERSION}.zip"
+fi
+
+if [ ! -d libvirt-python-${LIB_VERSION} ]; then
+    unzip "v${LIB_VERSION}"
+fi
+
+cd "libvirt-python-${LIB_VERSION}"
+
+temp_libvirt_so_path=$(locate libvirt-qemu.so | head -n1 | awk '{print $1;}')
+temp_export_path=$(locate libvirt.pc | head -n1 | awk '{print $1;}')
+libvirt_so_path="${temp_libvirt_so_path%/*}/"
+if [[ $libvirt_so_path == "/usr/lib/x86_64-linux-gnu/" ]]; then
+    temp_libvirt_so_path=$(locate libvirt-qemu.so | tail -1 | awk '{print $1;}')
+    libvirt_so_path="${temp_libvirt_so_path%/*}/"
+fi
+
+export_path="${temp_export_path%/*}/"
+export PKG_CONFIG_PATH=$export_path
+
+python3 setup.py build
+pip install .
diff --git a/extra/linux_agent.sh b/extra/linux_agent.sh
new file mode 100644
index 00000000000..3542a3cccbc
--- /dev/null
+++ b/extra/linux_agent.sh
@@ -0,0 +1,26 @@
+#!/bin/bash
+
+# Install dependencies
+sudo apt update
+sudo apt install build-essential curl net-tools python3-pip -y
+sudo pip3 install pyinotify
+
+# agent.py installation
+sudo mkdir /root/.cape
+sudo wget https://raw.githubusercontent.com/kevoreilly/CAPEv2/master/agent/agent.py -O /root/.cape/agent.py 
+sudo sed -i '36,37 s/^/# /' /root/.cape/agent.py
+sudo crontab -l | { cat; echo "@reboot python3 /root/.cape/agent.py"; } | sudo crontab -
+
+# Disable firewall and NTP
+sudo ufw disable
+sudo timedatectl set-ntp off
+
+# Disable auto-update for noise reduction
+sudo tee /etc/apt/apt.conf.d/20auto-upgrades << EOF
+APT::Periodic::Update-Package-Lists "0";
+APT::Periodic::Download-Upgradeable-Packages "0";
+APT::Periodic::AutocleanInterval "0";
+APT::Periodic::Unattended-Upgrade "0";
+EOF
+
+sudo systemctl stop snapd.service && sudo systemctl mask snapd.service
diff --git a/extra/optional_dependencies.txt b/extra/optional_dependencies.txt
new file mode 100644
index 00000000000..9e6b31ecff2
--- /dev/null
+++ b/extra/optional_dependencies.txt
@@ -0,0 +1,29 @@
+# This is aux requirements file to install all side dependencies
+# Run: poetry run pip install -r extra/optional_dependencies.txt
+# Those deps are not in pyproject due to their hardcoded dependencies and conflicts with another libraries.
+# Those deps adds big value to specific tasks, but we can't satisfy all use cases. So end user MUST make it work by himself.
+ImageHash
+deepdiff
+flask
+flask-restful
+flask-sqlalchemy==3.0.5
+git+https://github.com/CAPESandbox/binGraph # requires sudo apt install libgraphviz-dev
+git+https://github.com/CAPESandbox/httpreplay
+pyasyncore
+git+https://github.com/CAPESandbox/socks5man
+git+https://github.com/DissectMalware/XLMMacroDeobfuscator.git
+git+https://github.com/DissectMalware/batch_deobfuscator
+graphviz>=0.8.4
+git+https://github.com/digitalsleuth/peepdf-3
+mmh3
+networkx[default,extra]>=2.1
+olefile
+pyclamd
+pydot>=1.2.4
+regex
+scp
+urlextract==1.5.0
+pdfminer==20191125
+pg_activity
+python-tlsh
+git+https://github.com/CAPESandbox/pyattck/
diff --git a/extra/services/moloch b/extra/services/moloch
index 5e4de8f3151..8398f31d25d 100644
--- a/extra/services/moloch
+++ b/extra/services/moloch
@@ -1,11 +1,11 @@
 #!/bin/bash
 ### BEGIN INIT INFO
-# Provides:             moloch 
+# Provides:             moloch
 # Required-Start:       $remote_fs $syslog
 # Required-Stop:        $remote_fs $syslog
 # Default-Start:        2 3 4 5
-# Default-Stop:         
-# Short-Description:    moloch 
+# Default-Stop:
+# Short-Description:    moloch
 ### END INIT INFO
 
 case "$1" in
@@ -16,7 +16,7 @@ case "$1" in
 ;;
   stop)
     pkill -f "elasticsearch-0.90.10.jar"
-    pkill -f "/data/moloch/bin/node viewer.js -c /data/moloch/etc/config.ini" 
+    pkill -f "/data/moloch/bin/node viewer.js -c /data/moloch/etc/config.ini"
 ;;
 
  restart)
diff --git a/extra/systemtap/escape_delimiters.patch b/extra/systemtap/escape_delimiters.patch
deleted file mode 100644
index ce4e873efda..00000000000
--- a/extra/systemtap/escape_delimiters.patch
+++ /dev/null
@@ -1,61 +0,0 @@
-Index: tapset/uconversions.stp
-IDEA additional info:
-Subsystem: com.intellij.openapi.diff.impl.patch.CharsetEP
-<+>UTF-8
-===================================================================
---- tapset/uconversions.stp	(revision df8ae714d682904f8f7aaaeca32b96ba3a602a47)
-+++ tapset/uconversions.stp	(revision )
-@@ -95,7 +95,7 @@
-  * returned as a string, without double quotes.
-  */
- function user_string_quoted:string (addr:long) {
--  try { return string_quoted(user_string(addr)) } catch { return sprintf("0x%x", addr) }
-+  try { return cuckoo_escape_delimiters(string_quoted(user_string(addr))) } catch { return sprintf("0x%x", addr) }
- }
-
-
-@@ -359,7 +359,7 @@
-  * and UTF-32 decoding as per @user_string_utf32.
-  */
- function user_string_quoted_utf32:string (addr:long) {
--  try { return string_quoted(user_string_utf32(addr)) } catch { return sprintf("0x%x", addr) }
-+  try { return cuckoo_escape_delimiters(string_quoted(user_string_utf32(addr))) } catch { return sprintf("0x%x", addr) }
- }
-
-
-@@ -439,7 +439,7 @@
-  * and UTF-16 decoding as per @user_string_utf16.
-  */
- function user_string_quoted_utf16:string (addr:long) {
--  try { return string_quoted(user_string_utf16(addr)) } catch { return sprintf("0x%x", addr) }
-+  try { return cuckoo_escape_delimiters(string_quoted(user_string_utf16(addr))) } catch { return sprintf("0x%x", addr) }
- }
-
-
-@@ -967,7 +967,11 @@
-  * the given address, the address itself is returned as a string, without
-  * double quotes.
-  */
--function user_buffer_quoted:string (addr:long, inlen:long, outlen:long)
-+function user_buffer_quoted:string (addr:long, inlen:long, outlen:long) {
-+  return cuckoo_escape_delimiters(user_buffer_quoted_wrapped(addr, inlen, outlen))
-+}
-+
-+function user_buffer_quoted_wrapped:string (addr:long, inlen:long, outlen:long)
- %{
-   size_t outlen = (size_t)clamp_t(int, STAP_ARG_outlen, 0, MAXSTRINGLEN);
-   if (outlen == 0)
-@@ -1002,3 +1006,13 @@
-     STAP_ERROR("Unable to access user space data at 0x%lx",
- 	       (unsigned long)(void *)(uintptr_t)STAP_ARG_addr);
- %}
-+
-+function cuckoo_escape_delimiters:string (str:string) {
-+  str = str_replace(str, "[", "\\x5b")
-+  str = str_replace(str, "]", "\\x5d")
-+  str = str_replace(str, "{", "\\x7b")
-+  str = str_replace(str, "}", "\\x7d")
-+  str = str_replace(str, "\\\"", "\\x22")
-+  str = str_replace(str, ",", "\\x2c")
-+  return str
-+}
diff --git a/extra/systemtap/expand_execve_envp.patch b/extra/systemtap/expand_execve_envp.patch
deleted file mode 100644
index ea12f9f6b7f..00000000000
--- a/extra/systemtap/expand_execve_envp.patch
+++ /dev/null
@@ -1,43 +0,0 @@
-Index: stuff/systemtap/sysc_execve.stp
-IDEA additional info:
-Subsystem: com.intellij.openapi.diff.impl.patch.CharsetEP
-<+>UTF-8
-===================================================================
---- stuff/systemtap/sysc_execve.stp	(date 1508829789000)
-+++ stuff/systemtap/sysc_execve.stp	(revision )
-@@ -33,7 +33,7 @@
- 	__argv = @choose_defined($__argv, $argv)
- 	args = __get_argv(__argv, 0)
- 	__envp = @choose_defined($__envp, $envp)
--	env_str = __count_envp(__envp)
-+	env_str = __get_argv(__envp, 0)
- 	@_SYSCALL_EXECVE_ARGSTR
- }
- probe dw_syscall.execve.return = kernel.function("sys_execve").return
-@@ -57,7 +57,7 @@
- 	__argv = @choose_defined($__argv, $argv)
- 	args = __get_compat_argv(__argv, 0)
- 	__envp = @choose_defined($__envp, $envp)
--	env_str = __count_compat_envp(__envp)
-+	env_str = __get_compat_argv(__envp, 0)
- 	@_SYSCALL_EXECVE_ARGSTR
- }
- probe syscall.compat_execve.return =
-@@ -75,7 +75,7 @@
- 	asmlinkage()
- 	filename = user_string_quoted(pointer_arg(1))
- 	args = __get_argv(pointer_arg(2), 0)
--	env_str = __count_envp(pointer_arg(3))
-+	env_str = __get_argv(pointer_arg(3), 0)
- 	@_SYSCALL_EXECVE_ARGSTR
- }
- probe nd_syscall.execve.return = kprobe.function("sys_execve").return
-@@ -97,7 +97,7 @@
- 	asmlinkage()
- 	filename = user_string_quoted(pointer_arg(1))
- 	args = __get_compat_argv(pointer_arg(2), 0)
--	env_str = __count_compat_envp(pointer_arg(3))
-+	env_str = __get_compat_argv(pointer_arg(3), 0)
- 	@_SYSCALL_EXECVE_ARGSTR
- }
- probe nd_syscall.compat_execve.return =
diff --git a/extra/systemtap/strace.stp b/extra/systemtap/strace.stp
deleted file mode 100644
index d501604c70e..00000000000
--- a/extra/systemtap/strace.stp
+++ /dev/null
@@ -1,76 +0,0 @@
-/* Copyright (C) 2015-2017 Cuckoo Foundation.
- # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
- # See the file 'docs/LICENSE' for copying permission.
- #
- # Based on the Systemtap "strace.stp" example, adapted to our needs
- */
-
-/* configuration options; set these with stap -G */
-global timestamp = 1     /* -Gtimestamp=0 means don't print a syscall timestamp */
-
-global thread_argstr%
-global thread_scname%
-global thread_time%
-
-global syscalls_nonreturn
-probe begin  {
-    /* list those syscalls that never .return */
-    syscalls_nonreturn["exit"] = 1
-    syscalls_nonreturn["exit_group"] = 1
-}
-
-probe nd_syscall.* {
-    if (pid() == target()) next         # skip our own helper process
-    if (!target_set_pid(pid())) next    # skip unrelated processes
-
-    t = tid()
-
-    /* last syscall that could've returned didn't */
-    if (thread_argstr[t] != "")
-        report(thread_scname[t], thread_argstr[t], "")
-
-    thread_argstr[t] = argstr
-    thread_scname[t] = name
-    if (timestamp)
-        thread_time[t] = gettimeofday_us()
-
-    if (name in syscalls_nonreturn)
-        report(name, argstr, "")
-}
-
-probe nd_syscall.*.return {
-    if (pid() == target()) next         # skip our own helper process
-    if (!target_set_pid(pid())) next    # skip unrelated processes
-
-    report(name, thread_argstr[tid()], retstr)
-}
-
-function report(syscall_name, syscall_argstr, syscall_retstr) {
-    t = tid()
-
-    if (timestamp) {
-        then = thread_time[t]
-
-        if (timestamp)
-            prefix = sprintf("%s.%06d ", ctime(then / 1000000), then % 1000000)
-
-        delete thread_time[t]
-    }
-
-    /* add a thread-id string in lots of cases, except if
-       stap strace.stp -c SINGLE_THREADED_CMD */
-    if (tid() != target()) {
-        prefix .= sprintf("%s@%x[%d] ", execname(), uaddr(), t)
-    }
-
-    syscall_argstr = str_replace(syscall_argstr, "(", "\\x28")
-    syscall_argstr = str_replace(syscall_argstr, ")", "\\x29")
-
-    if (syscall_retstr == "")
-        printf("%s%s(%s)\n", prefix, syscall_name, syscall_argstr)
-    else
-        printf("%s%s(%s) = %s\n", prefix, syscall_name, syscall_argstr, syscall_retstr)
-
-    delete thread_argstr[t]
-    delete thread_scname[t]
-}
diff --git a/extra/whitelist_domains.txt b/extra/whitelist_domains.txt
index f12d00b98a9..0709f1f413e 100644
--- a/extra/whitelist_domains.txt
+++ b/extra/whitelist_domains.txt
@@ -11,6 +11,7 @@ client-office365-tas\.msedge\.net$
 api\.onedrive\.com$
 \.live\.com$
 \.bing.com$
+\.res\.office365\.com$
 
 # Microsoft
 watson\.telemetry\.microsoft\.com$
@@ -26,12 +27,61 @@ download\.windowsupdate\.com$
 \.windows\.com$
 \.edgesuite\.net$
 \.blob\.core\.windows\.net$
+crl\.microsoft\.com$
 
 \.windows\.com\.akadns\.net$
 \.microsoft\.com\.nsatc\.net$
 
+-microsoft-com\.akamaized\.net$
+msn-com\.akamaized\.net$
+\.s-microsoft\.com$
+\.microsoft.net$
+\.msedge\.net$
+\.licdn\.com$
+\.xboxlive\.com$
+\.xboxservices\.com$
+\.onestore\.ms$
+\.passport\.net$
+\.virtualearth\.net$
+
+
+# Edge
+fp-vp-nocache\.azureedge\.net$
+\.clo.footprintdns\.com$
+edgeassetservice\.azureedge\.net$
+\.nelreports.net$
+
+# Edge analytics
+\.scorecardresearch\.com$
+
+# Edge Developer Tools analytics
+devtools\.azureedge\.net$
+cm\.mgid\.com$
+code\.yengo\.com$
+trace\.mediago\.io$
+trace\.popin\.cc$
+
+# Cloudflare Network Error Logging (NEL)
+\.nel\.cloudflare.com$
+
+# Cloudflare browser verification
+challenges\.cloudflare\.com$
+
+\.local$
+\.arpa$
+
 # Google
 update\.googleapis\.com$
+_googlecast\._tcp\.local$
+chrome\.cloudflare-dns\.com$
+
+# Firefox
+\.firefox.com$
+\.mozaws.net$
+\.mozgcp.net$
+\.mozilla.net$
+\.getpocket.com$
+mozilla.cloudflare-dns.com
 
 # https://github.com/threatstop/crl-ocsp-whitelist
 aces\.ocsp\.identrust\.com
@@ -93,6 +143,7 @@ ocsp09\.actalis\.it
 ocsp1\.hongkongpost\.gov\.hk
 ocsp1\.netlock\.hu
 ocsp1\.trustisfps\.com
+ocsp\.globalsign\.com
 ocsp2\.globalsign\.com
 ocsp2\.netlock\.hu
 ocsp2\.wisekey\.com
@@ -197,3 +248,17 @@ www\.cert\.fnmt\.es
 www\.certinomis\.com
 www\.certsign\.ro
 www\.trustis\.com
+
+# adobe
+\.adobe\.com$
+www\.adobe\.com$
+geo2\.adobe\.com
+armmf\.adobe\.com
+p13n\.adobe\.io
+ardownload3\.adobe\.com
+
+# digicert
+\.digicert\.com$
+ocsp\.digicert\.com
+crl3\.digicert\.com
+crl4\.digicert\.com
diff --git a/extra/whitelist_ips.txt b/extra/whitelist_ips.txt
new file mode 100644
index 00000000000..ac2d4087f0a
--- /dev/null
+++ b/extra/whitelist_ips.txt
@@ -0,0 +1,6 @@
+# CloudFlare's DNS server
+1.1.1.1
+1.0.0.1
+# Google's DNS server
+8.8.8.8
+8.8.4.4
diff --git a/extra/whitelist_network.txt b/extra/whitelist_network.txt
new file mode 100644
index 00000000000..e69de29bb2d
diff --git a/extra/yara_installer.sh b/extra/yara_installer.sh
new file mode 100755
index 00000000000..5ad6aa728ac
--- /dev/null
+++ b/extra/yara_installer.sh
@@ -0,0 +1,16 @@
+#!/bin/bash
+set -ex
+
+# run this via...
+# cd /opt/CAPEv2/ ; sudo -u cape /etc/poetry/bin/poetry run extra/yara_installer.sh
+
+if [ ! -d /tmp/yara-python ]; then
+    git clone --recursive https://github.com/VirusTotal/yara-python /tmp/yara-python
+fi
+
+/etc/poetry/bin/poetry --directory /opt/CAPEv2 run bash -c "cd /tmp/yara-python && python setup.py build --enable-cuckoo --enable-magic --enable-profiling"
+/etc/poetry/bin/poetry --directory /opt/CAPEv2 run pip install /tmp/yara-python
+
+if [ -d /tmp/yara-python ]; then
+    rm -rf /tmp/yara-python
+fi
diff --git a/installer/README.md b/installer/README.md
new file mode 100644
index 00000000000..2b39c2c2b23
--- /dev/null
+++ b/installer/README.md
@@ -0,0 +1,2 @@
+# From @doomedraven with love.
+* Use `sudo cape2.sh -h`
diff --git a/installer/cape2.sh b/installer/cape2.sh
new file mode 100755
index 00000000000..a1931243c86
--- /dev/null
+++ b/installer/cape2.sh
@@ -0,0 +1,1743 @@
+#!/bin/bash
+# set -ex
+# By @doomedraven - https://twitter.com/D00m3dR4v3n
+# Copyright (C) 2011-2023 doomedraven.
+# See the file 'LICENSE.md' for copying permission.
+
+# Huge thanks to: @NaxoneZ @kevoreilly @ENZOK @wmetcalf @ClaudioWayne
+
+# Ensure non-interactive mode for apt commands globally to prevent prompts during automated installations
+export DEBIAN_FRONTEND=noninteractive
+
+# Static values
+# Where to place everything
+# CAPE TcpDump will sniff this interface
+NETWORK_IFACE=virbr1
+# On which IP TOR should listen
+IFACE_IP="192.168.1.1"
+# Confiures default network interface ip route table
+INTERNET_IFACE=$(ip route | grep '^default'|awk '{print $5}')
+# DB password
+PASSWD="SuperPuperSecret"
+# Only in case if you using distributed CAPE And MongoDB sharding.
+DIST_MASTER_IP="192.168.1.1"
+USER="cape"
+# https://nginx.org/en/linux_packages.html
+nginx_version=1.27.3
+prometheus_version=2.20.1
+grafana_version=7.1.5
+node_exporter_version=1.0.1
+# https://github.com/crowdsecurity/cs-nginx-bouncer/releases/download/v$CSNB_VERSION/crowdsec-nginx-bouncer.tgz
+CSNB_VERSION="1.0.8"
+# if set to 1, enables snmpd and other various bits to support
+# monitoring via LibreNMS
+librenms_enable=0
+# snmp v1/2c community string to use
+snmp_community=ChangeMePublicRO
+# value for agentaddress... see snmpd.conf(5)
+# if blank the default will be used
+snmp_agentaddress=""
+snmp_location='Rack, Room, Building, City, Country [GPSX,Y]'
+snmp_contact='Foo <foo@bar>'
+clamav_enable=0
+# enable IPMI sensor checking with LibreNMS
+librenms_ipmi=0
+# args to pass to /usr/lib/nagios/plugins/check_mongodb.py
+librenms_mongo_args=''
+# warn value for the clamav check
+librenms_clamav_warn=2
+# crit value for the clamav check
+librenms_clamav_crit=3
+# enable librenms support for mdadm
+librenms_mdadm_enable=0
+
+# requires lsi_mrdsnmpmain
+# https://docs.librenms.org/Extensions/Applications/#megaraid
+librenms_megaraid_enable=0
+
+# disabling this will result in the web interface being disabled
+MONGO_ENABLE=1
+
+DIE_VERSION="3.10"
+
+TOR_SOCKET_TIMEOUT="60"
+
+# if a config file is present, read it in
+if [ -f "./cape-config.sh" ]; then
+    . ./cape-config.sh
+fi
+
+UBUNTU_VERSION=$(lsb_release -rs)
+OS="$(uname -s)"
+MAINTAINER="$(whoami)"_"$(hostname)"
+ARCH="$(dpkg --print-architecture)"
+
+function issues() {
+cat << EOI
+    No known problems yet
+EOI
+}
+
+function usage() {
+cat << EndOfHelp
+    You need to edit NETWORK_IFACE, IFACE_IP and PASSWD for correct install
+
+    * This ISN'T a silver bullet, we can't control all changes in all third part software, you are welcome to report updates
+
+    Usage: $0 <command> <iface_ip> [options] | tee $0.log
+        Example: $0 all 192.168.1.1 | tee $0.log
+    Commands - are case insensitive:
+        Base - Installs dependencies, CAPE, systemd, see code for full list
+        All - Installs everything - (don't use it if you don't know what will be installed ;))
+        Sandbox - Install CAPE
+        Dependencies - Install all dependencies with performance tricks
+        Systemd - Install systemd config for cape, we suggest to use systemd
+        Nginx <domain.com> - Install NGINX with realip plugin and other goodies, pass your domain as argument
+        LetsEncrypt <domain.com> - Install LetsEncrypt for your site, pass your domain as argument
+        Suricata - Install latest suricata with performance boost
+        PostgreSQL - Install latest PostgresSQL
+        PostgreSQL_Utility - Install pg_activity
+        Yara - Install latest yara
+        Yara-x - Install latest yara-x
+        Volatility3 - Install Volatility3 and windows symbols
+        Mongo - Install latest mongodb
+        LetsEncrypt - Install dependencies and retrieves certificate
+        Dist - will install CAPE distributed stuff
+        ClamAv - Install ClamAV and unofficial signatures
+        redsocks2 - install redsocks2
+        logrotate - install logrotate config to rotate daily or 10G logs
+        librenms - install and setup LibreNMS support
+        librenms_cron_config - print the cron entries for the LibreNMS bits
+        librenms_snmpd_config - print the snmpd config for use with LibreNMS
+        librenms_sneck_config - print the sneck config for use with LibreNMS
+        prometheus - Install Prometheus and Grafana
+        die - Install Detect It Easy
+        node_exporter - Install node_exporter to report data to Prometheus+Grafana, only on worker servers
+        jemalloc - Install jemalloc, required for CAPE to decrease memory usage
+            Details: https://zapier.com/engineering/celery-python-jemalloc/
+        crowdsecurity - Install CrowdSecurity for NGINX and webgui
+        docker - install docker
+        osslsigncode - Linux alternative to Windows signtool.exe
+        modsecurity - install Nginx ModSecurity plugin
+        Issues - show some known possible bugs/solutions
+    Options:
+        --disable-mongodb-avx-check - Disable check of AVX CPU feature for MongoDB
+        --disable-libvirt - Disable libvirt related packages installation
+    Useful links - THEY CAN BE OUTDATED; RTFM!!!
+        * https://cuckoo.sh/docs/introduction/index.html
+        * https://medium.com/@seifreed/how-to-deploy-cuckoo-sandbox-431a6e65b848
+        * https://infosecspeakeasy.org/t/howto-build-a-cuckoo-sandbox/27
+    Cuckoo V2 customizations neat howto
+        * https://www.adlice.com/cuckoo-sandbox-customization-v2/
+EndOfHelp
+}
+
+function install_crowdsecurity() {
+    echo "[+] Install crowdsecurity"
+    sudo apt-get install -y bash gettext whiptail curl wget
+    cd /tmp || return
+    if [ ! -d crowdsec-release.tgz ]; then
+        curl -s https://api.github.com/repos/crowdsecurity/crowdsec/releases/latest | grep browser_download_url| cut -d '"' -f 4  | wget -i -
+    fi
+    tar xvzf crowdsec-release.tgz
+    # ToDo fix this
+    directory=$(ls | grep "crowdsec-v*")
+    cd "$directory" || return
+    sudo ./wizard.sh -i
+    sudo cscli collections install crowdsecurity/nginx
+    sudo systemctl reload crowdsec
+    # install_docker
+    # sudo cscli dashboard setup -l 127.0.0.1 -p 8448
+
+    if [ ! -f crowdsec-nginx-bouncer-v$CSNB_VERSION ]; then
+        wget https://github.com/crowdsecurity/cs-nginx-bouncer/releases/download/v$CSNB_VERSION/crowdsec-nginx-bouncer.tgz
+        tar xvzf crowdsec-nginx-bouncer.tgz
+    fi
+    cd crowdsec-nginx-bouncer-v$CSNB_VERSION || return
+    sudo ./install.sh
+}
+
+function install_docker() {
+    echo "[+] Install docker"
+    # https://www.digitalocean.com/community/tutorials/how-to-install-and-use-docker-on-ubuntu-20-04
+    sudo apt-get install -y apt-transport-https ca-certificates curl software-properties-common
+
+    curl -fsSL https://download.docker.com/linux/ubuntu/gpg | sudo gpg --dearmor -o /etc/apt/keyrings/docker.gpg --yes
+    echo "deb [signed-by=/etc/apt/keyrings/docker.gpg arch=amd64] https://download.docker.com/linux/ubuntu $(lsb_release -cs) stable" > /etc/apt/sources.list.d/docker.list
+
+    sudo apt-get update
+    sudo apt-get install -y docker-ce
+    sudo usermod -aG docker ${USER}
+}
+
+function install_jemalloc() {
+    # https://zapier.com/engineering/celery-python-jemalloc/
+    if ! $(dpkg -l "libjemalloc*" | grep -q "ii  libjemalloc"); then
+        sudo apt-get install -y libjemalloc-dev
+    fi
+}
+
+function librenms_cron_config() {
+    echo '*/5 * * * * root /usr/bin/env PATH=/sbin:/bin:/usr/sbin:/usr/bin:/usr/local/sbin:/usr/local/bin /usr/local/bin/sneck -u 2> /dev/null > /dev/null'
+    echo '*/5 * * * * root /usr/bin/env PATH=/sbin:/bin:/usr/sbin:/usr/bin:/usr/local/sbin:/usr/local/bin /etc/snmp/extends/cape | /usr/local/bin/librenms_return_optimizer 2> /dev/null > /var/cache/cape.cache'
+    echo '*/5 * * * * root /usr/bin/env PATH=/sbin:/bin:/usr/sbin:/usr/bin:/usr/local/sbin:/usr/local/bin /etc/snmp/extends/smart -u'
+    echo '*/5 * * * * root /usr/bin/env PATH=/sbin:/bin:/usr/sbin:/usr/bin:/usr/local/sbin:/usr/local/bin /usr/local/bin/hv_monitor -c 2> /dev/null > /var/cache/hv_monitor.cache'
+    echo '*/5 * * * * root /usr/bin/env PATH=/sbin:/bin:/usr/sbin:/usr/bin:/usr/local/sbin:/usr/local/bin /etc/snmp/extends/osupdate 2> /dev/null > /var/cache/osupdate.extend'
+    echo '1 1 * * * root /bin/cat /sys/devices/virtual/dmi/id/board_serial > /etc/snmp/serial'
+}
+
+function librenms_sneck_config() {
+    if [ "$librenms_ipmi" -ge 1 ]; then
+        echo 'ipmi_sensor|/usr/lib/nagios/plugins/check_ipmi_sensor --nosel'
+    else
+        echo '#ipmi_sensor|/usr/lib/nagios/plugins/check_ipmi_sensor --nosel'
+    fi
+    echo 'virtqemud_procs|/usr/lib/nagios/plugins/check_procs --ereg-argument-array "^/usr/sbin/virtqemud" 1:1'
+    echo 'cape_procs|/usr/lib/nagios/plugins/check_procs --ereg-argument-array "poetry.*bin/python cuckoo.py" 1:1'
+    echo 'cape_processor_procs|/usr/lib/nagios/plugins/check_procs --ereg-argument-array "poetry.*bin/python process.py" 1:'
+    echo 'cape_rooter_procs|/usr/lib/nagios/plugins/check_procs --ereg-argument-array "poetry.*bin/python rooter.py" 1'
+    if [ "$clamav_enable" -ge 1 ]; then
+        echo "clamav|/usr/lib/nagios/plugins/check_clamav -w $librenms_clamav_warn -c $librenms_clamav_crit"
+    else
+        echo "#clamav|/usr/lib/nagios/plugins/check_clamav -w $librenms_clamav_warn -c $librenms_clamav_crit"
+    fi
+    if [ "$MONGO_ENABLE" -ge 1 ]; then
+        echo "mongodb|/usr/lib/nagios/plugins/check_mongodb.py $librenms_mongo_args"
+        echo 'cape_web_procs|/usr/lib/nagios/plugins/check_procs --ereg-argument-array "poetry.*bin/python manage.py" 1:'
+    else
+        echo "#mongodb|/usr/lib/nagios/plugins/check_mongodb.py $librenms_mongo_args"
+        echo 'cape_web_procs|/usr/lib/nagios/plugins/check_procs --ereg-argument-array "poetry.*bin/python manage.py" 0'
+    fi
+}
+
+function librenms_snmpd_config() {
+    echo "rocommunity $snmp_community"
+    echo
+    echo "syslocation $snmp_location"
+    echo "syscontact $snmp_contact"
+    echo
+    if [ "$librenms_megaraid_enable" -ge 1 ]; then
+        echo "pass .1.3.6.1.4.1.3582 /usr/sbin/lsi_mrdsnmpmain"
+    else
+        echo  "#pass .1.3.6.1.4.1.3582 /usr/sbin/lsi_mrdsnmpmain"
+    fi
+    echo
+    echo 'extend distro /etc/snmp/extends/distro'
+    echo "extend hardware '/bin/cat /sys/devices/virtual/dmi/id/product_name'"
+    echo "extend manufacturer '/bin/cat /sys/devices/virtual/dmi/id/sys_vendor'"
+    echo "extend serial '/bin/cat /etc/snmp/serial'"
+    echo
+    echo "extend cape /bin/cat /var/cache/cape.cache"
+    echo "extend smart /bin/cat /var/cache/smart"
+    echo "extend sneck /usr/bin/env PATH=/sbin:/bin:/usr/sbin:/usr/bin:/usr/local/sbin:/usr/local/bin /usr/local/bin/sneck -c -b"
+    echo "extend hv-monitor /bin/cat /var/cache/hv_monitor.cache"
+    echo "extend osupdate /bin/cat /var/cache/osupdate.extend"
+    if [ "$librenms_mdadm_enable" -ge 1 ]; then
+        echo "extend mdadm /usr/bin/env PATH=/sbin:/bin:/usr/sbin:/usr/bin:/usr/local/sbin:/usr/local/bin /etc/snmp/extends/mdadm"
+    else
+        echo "#extend mdadm /usr/bin/env PATH=/sbin:/bin:/usr/sbin:/usr/bin:/usr/local/sbin:/usr/local/bin /etc/snmp/extends/mdadm"
+    fi
+    echo
+    if [ ! -z "$snmp_agentaddress" ]; then
+        echo "agentaddress $snmp_agentaddress"
+    fi
+}
+
+function install_librenms() {
+    if [ "$librenms_enable" -ge 1 ]; then
+        echo "[+] Install librenms"
+        echo "Enabling stuff for LibreNMS"
+        sudo apt-get install -y zlib1g-dev cpanminus libjson-perl libfile-readbackwards-perl \
+                libjson-perl libconfig-tiny-perl libdbi-perl libfile-slurp-perl \
+                libstatistics-lite-perl libdbi-perl libdbd-pg-perl monitoring-plugins \
+                monitoring-plugins-contrib monitoring-plugins-standard dmidecode wget snmpd
+        cpanm HV::Monitor Monitoring::Sneck
+        mkdir -p /etc/snmp/extends
+        wget https://raw.githubusercontent.com/librenms/librenms-agent/master/snmp/distro -O /etc/snmp/extends/distro
+        wget https://raw.githubusercontent.com/librenms/librenms-agent/master/snmp/cape -O /etc/snmp/extends/cape
+        wget https://raw.githubusercontent.com/librenms/librenms-agent/master/snmp/smart -O /etc/snmp/extends/smart
+        wget https://raw.githubusercontent.com/librenms/librenms-agent/master/snmp/osupdate -O /etc/snmp/extends/osupdate
+        chmod +x /etc/snmp/extends/distro /etc/snmp/extends/cape  /etc/snmp/extends/smart /etc/snmp/extends/osupdate
+
+        if [ "$librenms_mdadm_enable" -ge 1 ]; then
+            sudo apt-get install -y jq
+            wget https://raw.githubusercontent.com/librenms/librenms-agent/master/snmp/mdadm -O /etc/snmp/extends/mdadm
+            chmod +x /etc/snmp/extends/mdadm
+        fi
+
+        /etc/snmp/extends/smart -g > /etc/snmp/extends/smart.config
+        echo "You will want to check /etc/snmp/extends/smart.config to see if it looks good."
+        echo "See /etc/snmp/extends/smart for more info"
+
+        cat /sys/devices/virtual/dmi/id/board_serial > /etc/snmp/serial
+
+        librenms_sneck_config > /usr/local/etc/sneck.conf
+        librenms_cron_config > /etc/cron.d/librenms_auto
+        librenms_snmpd_config > /etc/snmp/snmpd.conf
+
+        systemctl enable snmpd.service
+        systemctl restart snmpd.service
+        systemctl restart cron.service
+    else
+        echo "Skipping stuff for LibreNMS"
+    fi
+}
+
+function install_modsecurity() {
+    echo "[+] Install modsecurity"
+    # Tested on nginx 1.(16|18).X Based on https://www.nginx.com/blog/compiling-and-installing-modsecurity-for-open-source-nginx/ with fixes
+    sudo apt-get install -y git g++ apt-utils autoconf automake build-essential libcurl4-openssl-dev libgeoip-dev liblmdb-dev libpcre2-dev libtool libxml2-dev libyajl-dev pkgconf zlib1g-dev
+    git clone --depth 500 -b v3/master --single-branch https://github.com/SpiderLabs/ModSecurity
+    cd ModSecurity || return
+    git submodule init
+    git submodule update
+    ./build.sh
+    ./configure --with-pcre2
+    make -j"$(nproc)"
+    make install
+
+    cd .. || return
+    git clone --depth 1 https://github.com/SpiderLabs/ModSecurity-nginx.git
+
+    # this step is required to install plugin for existing setup
+    if [ ! -d nginx-"$nginx_version" ]; then
+        wget http://nginx.org/download/nginx-"$nginx_version".tar.gz
+        wget http://nginx.org/download/nginx-"$nginx_version".tar.gz.asc
+        gpg --verify "nginx-$nginx_version.tar.gz.asc"
+        tar zxf nginx-"$nginx_version".tar.gz
+    fi
+
+    cd nginx-"$nginx_version" || return
+    ./configure --with-compat --add-dynamic-module=../ModSecurity-nginx
+    make modules
+    mkdir -p /usr/lib/nginx/modules
+    mkdir -p /usr/share/nginx/modules
+    mkdir -p /var/lib/nginx/body
+    mkdir -p /etc/nginx/cert
+
+    cp objs/ngx_http_modsecurity_module.so /usr/lib/nginx/modules/ngx_http_modsecurity_module.so
+    cp objs/ngx_http_modsecurity_module.so /usr/share/nginx/modules/ngx_http_modsecurity_module.so
+    cd .. || return
+
+    mkdir /etc/nginx/modsec
+    wget -P /etc/nginx/modsec/ https://raw.githubusercontent.com/SpiderLabs/ModSecurity/v3/master/modsecurity.conf-recommended
+    mv /etc/nginx/modsec/modsecurity.conf-recommended /etc/nginx/modsec/modsecurity.conf
+    cp ModSecurity/unicode.mapping /etc/nginx/modsec
+    sed -i 's/SecRuleEngine DetectionOnly/SecRuleEngine On/' /etc/nginx/modsec/modsecurity.conf
+    echo 'Include "/etc/nginx/modsec/modsecurity.conf"' >/etc/nginx/modsec/main.conf
+
+    # ToDo
+    echo '''
+    1. Add next 2 rules to enabled-site under server section
+        modsecurity on;
+        modsecurity_rules_file /etc/nginx/modsec/main.conf;
+    '''
+
+}
+
+
+function install_nginx() {
+    echo "[+] Install nginx"
+    if [ ! -d nginx-$nginx_version ]; then
+        wget http://nginx.org/download/nginx-$nginx_version.tar.gz
+        wget http://nginx.org/download/nginx-$nginx_version.tar.gz.asc
+        gpg --verify "nginx-$nginx_version.tar.gz.asc"
+        tar xzvf nginx-$nginx_version.tar.gz
+    fi
+
+    PCRE_VERSION="10.37"
+    OPENSSL_VERSION="3.4.0"
+    ZLIB_VERSION="1.3.1"
+    if [ ! -d pcre2-$PCRE_VERSION ]; then
+        wget https://ftp.exim.org/pub/pcre/pcre2-$PCRE_VERSION.tar.gz  && tar xzvf pcre2-$PCRE_VERSION.tar.gz
+    fi
+
+    if [ ! -d zlib-1.3.1]; then
+        wget https://www.zlib.net/zlib-$ZLIB_VERSION.tar.gz && tar xzvf zlib-$ZLIB_VERSION.tar.gz
+    fi
+
+    if [ ! -d openssl-$OPENSSL_VERSION ]; then
+        wget https://www.openssl.org/source/openssl-$OPENSSL_VERSION.tar.gz && tar xzvf openssl-$OPENSSL_VERSION.tar.gz
+    fi
+    sudo add-apt-repository -y ppa:maxmind/ppa
+    sudo apt-get update && sudo apt-get upgrade -y
+    sudo apt-get install -y perl libperl-dev libgd3 libgd-dev libgeoip1 libgeoip-dev geoip-bin libxml2 libxml2-dev libxslt1.1 libxslt1-dev
+
+    cd nginx-$nginx_version || return
+
+    sudo cp man/nginx.8 /usr/share/man/man8
+    # ToDo auto confirmation of overwrite
+    sudo gzip /usr/share/man/man8/nginx.8
+    ls /usr/share/man/man8/ | grep nginx.8.gz
+
+    ./configure --prefix=/usr/share/nginx \
+                --sbin-path=/usr/sbin/nginx \
+                --modules-path=/usr/lib/nginx/modules \
+                --conf-path=/etc/nginx/nginx.conf \
+                --error-log-path=/var/log/nginx/error.log \
+                --http-log-path=/var/log/nginx/access.log \
+                --pid-path=/tmp/nginx.pid \
+                --lock-path=/var/lock/nginx.lock \
+                --user=www-data \
+                --group=www-data \
+                --build=Ubuntu \
+                --http-client-body-temp-path=/var/lib/nginx/body \
+                --http-fastcgi-temp-path=/var/lib/nginx/fastcgi \
+                --http-proxy-temp-path=/var/lib/nginx/proxy \
+                --http-scgi-temp-path=/var/lib/nginx/scgi \
+                --http-uwsgi-temp-path=/var/lib/nginx/uwsgi \
+                --with-openssl=../openssl-$OPENSSL_VERSION \
+                --with-openssl-opt=enable-ec_nistp_64_gcc_128 \
+                --with-openssl-opt=no-nextprotoneg \
+                --with-openssl-opt=no-weak-ssl-ciphers \
+                --with-openssl-opt=no-ssl3 \
+                --with-pcre=../pcre2-$PCRE_VERSION \
+                --with-pcre-jit \
+                --with-zlib=../zlib-$ZLIB_VERSION \
+                --with-compat \
+                --with-file-aio \
+                --with-threads \
+                --with-http_addition_module \
+                --with-http_auth_request_module \
+                --with-http_dav_module \
+                --with-http_flv_module \
+                --with-http_gunzip_module \
+                --with-http_gzip_static_module \
+                --with-http_mp4_module \
+                --with-http_random_index_module \
+                --with-http_realip_module \
+                --with-http_slice_module \
+                --with-http_ssl_module \
+                --with-http_sub_module \
+                --with-http_stub_status_module \
+                --with-http_v2_module \
+                --with-http_secure_link_module \
+                --with-mail \
+                --with-mail_ssl_module \
+                --with-stream \
+                --with-stream_realip_module \
+                --with-stream_ssl_module \
+                --with-stream_ssl_preread_module \
+                --with-debug \
+                --with-cc-opt='-g -O2 -fPIE -fstack-protector-strong -Wformat -Werror=format-security -Wdate-time -D_FORTIFY_SOURCE=2' \
+                --with-ld-opt='-Wl,-Bsymbolic-functions -fPIE -pie -Wl,-z,relro -Wl,-z,now' \
+                --with-http_v3_module
+
+
+    # checkinstall -D --pkgname="nginx-$nginx_version" --pkgversion="$nginx_version" --default
+    mkdir -p /tmp/nginx_builded/DEBIAN
+    make -j"$(nproc)"
+    echo -e "Package: nginx\nVersion: $nginx_version\nArchitecture: $ARCH\nMaintainer: $MAINTAINER\nDescription: nginx-$nginx_version" > /tmp/nginx_builded/DEBIAN/control
+    make -j"$(nproc)" install DESTDIR=/tmp/nginx_builded
+    dpkg-deb --build --root-owner-group /tmp/nginx_builded
+    dpkg -i --force-overwrite /tmp/nginx_builded.deb
+    rm /tmp/nginx_builded.deb
+
+    sudo ln -s /usr/lib/nginx/modules /etc/nginx/modules
+    sudo adduser --system --home /nonexistent --shell /bin/false --no-create-home --disabled-login --disabled-password --gecos "nginx user" --group nginx
+
+    install_modsecurity
+    mkdir -p /var/lib/nginx/body
+    mkdir -p /etc/nginx/cert
+
+    sudo openssl dhparam -out /etc/nginx/cert/dhparam.pem 2048
+
+    sudo mkdir -p /var/cache/nginx/client_temp /var/cache/nginx/fastcgi_temp /var/cache/nginx/proxy_temp /var/cache/nginx/scgi_temp /var/cache/nginx/uwsgi_temp
+    sudo chmod 700 /var/cache/nginx/*
+    sudo chown nginx:root /var/cache/nginx/*
+
+    sudo mkdir -p /etc/nginx/bots.d
+    sudo wget https://raw.githubusercontent.com/mitchellkrogza/nginx-ultimate-bad-bot-blocker/master/conf.d/globalblacklist.conf -O /etc/nginx/conf.d/globalblacklist.conf
+    sudo wget https://raw.githubusercontent.com/mitchellkrogza/nginx-ultimate-bad-bot-blocker/master/bots.d/blockbots.conf -O /etc/nginx/bots.d/blockbots.conf
+    sudo wget https://raw.githubusercontent.com/mitchellkrogza/nginx-ultimate-bad-bot-blocker/master/bots.d/ddos.conf -O /etc/nginx/bots.d/ddos.conf
+    sudo wget https://raw.githubusercontent.com/mitchellkrogza/nginx-ultimate-bad-bot-blocker/master/bots.d/whitelist-ips.conf -O /etc/nginx/bots.d/whitelist-ips.conf
+    sudo wget https://raw.githubusercontent.com/mitchellkrogza/nginx-ultimate-bad-bot-blocker/master/bots.d/whitelist-domains.conf -O /etc/nginx/bots.d/whitelist-domains.conf
+    sudo wget https://raw.githubusercontent.com/mitchellkrogza/nginx-ultimate-bad-bot-blocker/master/bots.d/blacklist-user-agents.conf -O /etc/nginx/bots.d/blacklist-user-agents.conf
+    sudo wget https://raw.githubusercontent.com/mitchellkrogza/nginx-ultimate-bad-bot-blocker/master/bots.d/custom-bad-referrers.conf -O /etc/nginx/bots.d/custom-bad-referrers.conf
+    sudo wget https://raw.githubusercontent.com/mitchellkrogza/nginx-ultimate-bad-bot-blocker/master/bots.d/blacklist-ips.conf -O /etc/nginx/bots.d/blacklist-ips.conf
+    sudo wget https://raw.githubusercontent.com/mitchellkrogza/nginx-ultimate-bad-bot-blocker/master/bots.d/bad-referrer-words.conf -O /etc/nginx/bots.d/bad-referrer-words.conf
+
+
+    if [ ! -f /lib/systemd/system/nginx.service ]; then
+        cat >> /lib/systemd/system/nginx.service << EOF
+[Unit]
+Description=nginx - high performance web server
+Documentation=https://nginx.org/en/docs/
+After=network-online.target remote-fs.target nss-lookup.target
+Wants=network-online.target
+
+[Service]
+Type=forking
+PIDFile=/tmp/nginx.pid
+ExecStartPre=/usr/sbin/nginx -t -c /etc/nginx/nginx.conf
+ExecStart=/usr/sbin/nginx -c /etc/nginx/nginx.conf
+ExecReload=/bin/kill -s HUP $MAINPID
+ExecStop=/bin/kill -s TERM $MAINPID
+
+[Install]
+WantedBy=multi-user.target
+EOF
+    fi
+
+    cp /etc/nginx/nginx.conf /etc/nginx/nginx.conf_backup
+    sed -i '1 i\load_module modules/ngx_http_modsecurity_module.so;' /etc/nginx/nginx.conf
+
+    sudo systemctl enable nginx.service
+    sudo systemctl start nginx.service
+    sudo systemctl is-enabled nginx.service
+
+    sudo mkdir /etc/nginx/{conf.d,snippets,sites-available,sites-enabled}
+    sudo chmod 640 /var/log/nginx/*
+    sudo chown nginx:adm /var/log/nginx/access.log /var/log/nginx/error.log
+
+
+    if [ ! -f /etc/logrotate.d/nginx ]; then
+        cat >> /etc/logrotate.d/nginx << EOF
+/var/log/nginx/*.log {
+    daily
+    missingok
+    rotate 52
+    compress
+    delaycompress
+    notifempty
+    create 640 nginx adm
+    sharedscripts
+    postrotate
+    if [ -f /tmp/nginx.pid ]; then
+            kill -USR1 $(cat /tmp/nginx.pid)
+    fi
+    endscript
+}
+EOF
+fi
+
+    sudo ln -s /etc/nginx/sites-available/"$1" /etc/nginx/sites-enabled/
+    #sudo wget https://support.cloudflare.com/hc/en-us/article_attachments/201243967/origin-pull-ca.pem -O
+
+    if [ ! -f /etc/nginx/sites-enabled/capesandbox ]; then
+        cat >> /etc/nginx/sites-enabled/capesandbox << EOF
+server {
+    listen 80 default_server;
+    server_name $1;
+    return 301 https://$host$request_uri;
+}
+
+server {
+    if ($http_user_agent = "") {
+        return 444;
+    }
+    # SSL configuration
+    listen 443 ssl http2;
+    //listen [::]:443 ssl http2;
+    //listen 443 http3 reuseport;  # UDP listener for QUIC+HTTP/3
+    ssl        on;
+    //ssl_protocols       TLSv1.3; # QUIC requires TLS 1.3
+    ssl_certificate         /etc/letsencrypt/live/$1/fullchain.pem;
+    ssl_certificate_key     /etc/letsencrypt/live/$1/privkey.pem;
+    ssl_client_certificate /etc/ssl/certs/cloudflare.crt;
+    ssl_verify_client on;
+
+    //add_header Alt-Svc 'quic=":443"'; # Advertise that QUIC is available
+    //add_header QUIC-Status $quic;     # Sent when QUIC was used
+
+    server_name $1 www.$1;
+    location / {
+        try_files $uri $uri/ =404;
+    }
+}:
+EOF
+fi
+
+    if [ ! -f /etc/ssl/certs/cloudflare.crt ]; then
+        cat >> /etc/ssl/certs/cloudflare.crt << EOF
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
+EOF
+fi
+}
+
+function install_letsencrypt(){
+    echo "[+] Install and configure letsencrypt"
+    sudo apt-get install -y python3 python3-venv libaugeas0
+    sudo pip install certbot certbot-nginx --break-system-packages
+    echo "server_name $1 www.$1;" > /etc/nginx/sites-available/"$1"
+    sudo ln -s /opt/certbot/bin/certbot /usr/bin/certbot
+    sudo certbot --nginx -d "$1" -d www."$1"
+
+}
+
+function install_fail2ban() {
+    echo "[+] Installing fail2ban"
+    sudo apt-get install -y fail2ban
+    sudo cp /etc/fail2ban/jail.conf /etc/fail2ban/jail.local
+    sudo sed -i /etc/fail2ban/jail.local
+    systemctl start fail2ban
+    systemctl enable fail2ban
+
+    #https://kifarunix.com/how-to-protect-ssh-server-authentication-with-fail2ban-on-ubuntu-18-04/2/
+}
+
+function install_logrotate() {
+    echo "[+] Installing logrotate"
+    # du -sh /var/log/* | sort -hr | head -n10
+    # thanks digitalocean.com for the manual
+    # https://www.digitalocean.com/community/tutorials/how-to-manage-logfiles-with-logrotate-on-ubuntu-16-04
+    if [ ! -f /etc/logrotate.d/cape.conf ]; then
+            cat >> /etc/logrotate.d/cape.conf << EOF
+#/var/log/*.log {
+#    daily
+#    missingok
+#    rotate 7
+#    compress
+#    create
+#    maxsize 10G
+#}
+EOF
+    fi
+
+    sudo /usr/sbin/logrotate --force /etc/logrotate.conf
+    du -sh /var/log/* | sort -hr | head -n10
+    # wipe kern.log
+    # cat /dev/null | sudo tee /var/log/kern.log
+}
+
+function redsocks2() {
+    echo "[+] Installing redsocks2"
+    cd /tmp || return
+    sudo apt-get install -y git libevent-dev libreadline-dev zlib1g-dev libncurses5-dev libssl1.0-dev libssl-dev
+    git clone https://github.com/semigodking/redsocks redsocks2 && cd redsocks2 || return
+    DISABLE_SHADOWSOCKS=true make -j"$(nproc)" #ENABLE_STATIC=true
+    sudo cp redsocks2 /usr/bin/
+}
+
+function distributed() {
+    echo "[+] Configure distributed configuration"
+    sudo apt-get install -y uwsgi uwsgi-plugin-python3 nginx 2>/dev/null
+    sudo -u ${USER} bash -c '/etc/poetry/bin/poetry run pip install flask flask-restful flask-sqlalchemy requests'
+
+    sudo cp /opt/CAPEv2/uwsgi/capedist.ini /etc/uwsgi/apps-available/cape_dist.ini
+    sudo ln -s /etc/uwsgi/apps-available/cape_dist.ini /etc/uwsgi/apps-enabled
+
+    sudo -u postgres -H sh -c "psql -c \"CREATE DATABASE ${USER}dist\"";
+    sudo -u postgres -H sh -c "psql -d \"${USER}\" -c \"GRANT ALL PRIVILEGES ON DATABASE ${USER}dist to ${USER};\""
+    sudo -u postgres -H sh -c "psql -d \"${USER}\" -c \"ALTER DATABASE ${USER}dist OWNER TO ${USER};\""
+
+    if [ "$MONGO_ENABLE" -ge 1 ]; then
+        sudo mkdir -p /data/{config,}db
+        sudo chown mongodb:mongodb /data/ -R
+
+        if [ ! -f /lib/systemd/system/mongos.service ]; then
+            cat >> /lib/systemd/system/mongos.service << EOL
+[Unit]
+Description=Mongo shard service
+After=network.target
+After=bind9.service
+[Service]
+PIDFile=/tmp/mongos.pid
+User=mongodb
+Group=mongodb
+# StandardOutput=syslog
+# StandardError=syslog
+SyslogIdentifier=mongodb
+ExecStart=/usr/bin/mongos --configdb cape_config/${DIST_MASTER_IP}:27019 --port 27020
+[Install]
+WantedBy=multi-user.target
+EOL
+        fi
+        systemctl daemon-reload
+        systemctl enable mongos.service
+        systemctl start mongos.service
+
+        echo -e "\n\n\n[+] CAPE distributed documentation: https://github.com/kevoreilly/CAPEv2/blob/master/docs/book/src/usage/dist.rst"
+        echo -e "\t https://docs.mongodb.com/manual/tutorial/enable-authentication/"
+        echo -e "\t https://docs.mongodb.com/manual/administration/security-checklist/"
+        echo -e "\t https://docs.mongodb.com/manual/core/security-users/#sharding-security"
+    fi
+}
+
+function install_suricata() {
+    echo '[+] Installing Suricata'
+    # Suricata 8 has many breaking changes. We don't have time to make it compatible
+    # sudo add-apt-repository -y ppa:oisf/suricata-stable
+    sudo add-apt-repository ppa:oisf/suricata-7.0
+    sudo apt-get -o Dpkg::Options::="--force-confold" -o Dpkg::Options::="--force-overwrite" install -y suricata
+    touch /etc/suricata/threshold.config
+
+    # Download etupdate to update Emerging Threats Open IDS rules:
+    mkdir -p "/etc/suricata/rules"
+    if ! crontab -l | grep -q -F '15 * * * * /usr/bin/suricata-update'; then
+        crontab -l | { cat; echo "15 * * * * /usr/bin/suricata-update --suricata /usr/bin/suricata --suricata-conf /etc/suricata/suricata.yaml -o /etc/suricata/rules/ &>/dev/null"; } | crontab -
+    fi
+    if [ -d /usr/share/suricata/rules/ ]; then
+        # copy files if rules folder contains files
+        if [ "$(ls -A /var/lib/suricata/rules/)" ]; then
+            cp "/usr/share/suricata/rules/"* "/etc/suricata/rules/"
+        fi
+    fi
+    if [ -d /var/lib/suricata/rules/ ]; then
+        # copy files if rules folder contains files
+        if [ "$(ls -A /var/lib/suricata/rules/)" ]; then
+            cp "/var/lib/suricata/rules/"* "/etc/suricata/rules/"
+        fi
+    fi
+
+    cat > /etc/suricata/cape.yaml <<EOF
+%YAML 1.1
+---
+
+default-rule-path: /etc/suricata/rules
+rule-files: suricata.rules
+mpm-algo: hs
+stream.reassembly.depth: 0
+stream.checksum-validation:  none
+netmap.checksum-checks: no
+pcap-file.checksum-checks: no
+app-layer.protocols.http.libhtp.default-config.request-body-limit: 0
+app-layer.protocols.http.libhtp.default-config.response-body-limit: 0
+app-layer.protocols.tls.ja3-fingerprints: yes
+
+vars.address-groups.EXTERNAL_NET: "ANY"
+# pid-file: /run/suricata.pid
+# https://forum.suricata.io/t/suricata-service-crashes-with-pthread-create-is-11-error-when-processing-pcap-with-capev2/3870/5
+security.limit-noproc: false
+
+outputs.1.eve-log.enabled: yes
+file-store.enabled: yes
+EOF
+
+    sed -i '$a include:\n  - cape.yaml\n' /etc/suricata/suricata.yaml
+    usermod -aG pcap suricata
+    usermod -aG suricata "${USER}"
+    # sudo chmod -R g+w /var/log/suricata/
+    # sudo chmod -R g+w /var/run/suricata/
+    # sudo chmod -R g+w /etc/suricata
+    systemctl restart suricata
+
+    # How to verify config options
+    # suricata --dump-config
+    # sudo suricata -T -c /etc/suricata/suricata.yaml
+    # echo "Important: For this change to take effect, you must log out and then log back in, or open a new shell with newgrp suricata."
+
+}
+
+function install_yara_x() {
+    echo '[+] Installing Yara-X'
+    sudo -u ${USER} bash -c 'curl https://sh.rustup.rs -sSf | sh'
+    cd /tmp || return
+    # if yara-x exists from previous install remove it
+    if [ -d yara-x ]; then
+        sudo rm -rf yara-x
+    fi
+    sudo -u ${USER} git clone https://github.com/VirusTotal/yara-x
+    cd yara-x || return
+    sudo -u ${USER} bash -c 'source "$HOME/.cargo/env" ; cargo install --path cli'
+    /etc/poetry/bin/poetry --directory /opt/CAPEv2/ run pip install yara-x
+}
+
+function install_yara() {
+    echo '[+] Checking for old YARA version to uninstall'
+    dpkg -l|grep "yara-v[0-9]\{1,2\}\.[0-9]\{1,2\}\.[0-9]\{1,2\}"|cut -d " " -f 3|sudo xargs dpkg --purge --force-all 2>/dev/null
+
+    echo '[+] Installing Yara'
+
+    sudo apt-get install -y libtool libjansson-dev libmagic1 libmagic-dev jq autoconf libyara-dev
+
+    cd /tmp || return
+    yara_info=$(curl -s https://api.github.com/repos/VirusTotal/yara/releases/latest)
+    yara_version=$(echo "$yara_info" |jq .tag_name|sed "s/\"//g")
+    yara_repo_url=$(echo "$yara_info" | jq ".zipball_url" | sed "s/\"//g")
+    if [ ! -f "$yara_version" ]; then
+        wget -q "$yara_repo_url"
+        unzip -o -q "$yara_version"
+        #wget "https://github.com/VirusTotal/yara/archive/v$yara_version.zip" && unzip "v$yara_version.zip"
+    fi
+    directory=$(ls | grep "VirusTotal-yara-*")
+    mkdir -p /tmp/yara_builded/DEBIAN
+    cd "$directory" || return
+    ./bootstrap.sh
+    ./configure --enable-cuckoo --enable-magic --enable-profiling
+    make -j"$(getconf _NPROCESSORS_ONLN)"
+    yara_version_only=$(echo $yara_version|cut -c 2-)
+    echo -e "Package: yara\nVersion: $yara_version_only\nArchitecture: $ARCH\nMaintainer: $MAINTAINER\nDescription: yara-$yara_version" > /tmp/yara_builded/DEBIAN/control
+    make -j"$(nproc)" install DESTDIR=/tmp/yara_builded
+    dpkg-deb --build --root-owner-group /tmp/yara_builded
+    dpkg -i --force-overwrite /tmp/yara_builded.deb
+    #checkinstall -D --pkgname="yara-$yara_version" --pkgversion="$yara_version_only" --default
+    ldconfig
+
+    # Run yara installer script
+    sudo -u ${USER} /etc/poetry/bin/poetry --directory /opt/CAPEv2 run extra/yara_installer.sh
+
+    if [ -d yara-python ]; then
+        sudo rm -rf yara-python
+    fi
+
+}
+
+function install_mongo(){
+    if [ "$MONGO_ENABLE" -ge 1 ]; then
+        echo "[+] Installing MongoDB"
+        # Mongo >=5 requires CPU AVX instruction support https://www.mongodb.com/docs/manual/administration/production-notes/#x86_64
+
+        MONGO_VERSION="8.0"
+        if ! grep -q ' avx ' /proc/cpuinfo; then
+            if [[ "$DISABLE_MONGO_AVX_CHECK" -eq 0 ]]; then
+                echo "[-] Mongo >= 5 is not supported"
+                MONGO_VERSION="4.4"
+            fi
+        fi
+
+        sudo curl -fsSL "https://pgp.mongodb.com/server-${MONGO_VERSION}.asc" | sudo gpg --dearmor -o /etc/apt/keyrings/mongo.gpg --yes
+        echo "deb [signed-by=/etc/apt/keyrings/mongo.gpg arch=amd64] https://repo.mongodb.org/apt/ubuntu $(lsb_release -cs)/mongodb-org/${MONGO_VERSION} multiverse" > /etc/apt/sources.list.d/mongodb.list
+
+        sudo apt-get update 2>/dev/null
+        sudo apt-get install -y libpcre3-dev numactl cron
+        sudo apt-get install -y mongodb-org
+
+        PIP_BREAK_SYSTEM_PACKAGES=1 pip3 install pymongo -U --break-system-packages
+
+        # sudo apt-get install -y ntp
+        # systemctl start ntp.service && sudo systemctl enable ntp.service
+cat >> /lib/systemd/system/enable-transparent-huge-pages.service <<EOF
+# https://www.mongodb.com/docs/manual/administration/tcmalloc-performance/
+[Unit]
+Description=Enable Transparent Hugepages (THP)
+DefaultDependencies=no
+After=sysinit.target local-fs.target
+Before=mongod.service
+[Service]
+Type=oneshot
+ExecStart=/bin/sh -c 'echo always | tee /sys/kernel/mm/transparent_hugepage/enabled > /dev/null && echo defer+madvise | tee /sys/kernel/mm/transparent_hugepage/defrag > /dev/null && echo 0 | tee /sys/kernel/mm/transparent_hugepage/khugepaged/max_ptes_none > /dev/null && echo 1 | tee /proc/sys/vm/overcommit_memory > /dev/null'
+[Install]
+WantedBy=basic.target
+EOF
+
+        systemctl daemon-reload
+        sudo systemctl enable enable-transparent-huge-pages
+
+        if [ -f /lib/systemd/system/mongod.service ]; then
+            systemctl stop mongod.service
+            systemctl disable mongod.service
+            rm /lib/systemd/system/mongod.service
+            rm /lib/systemd/system/mongod.service
+            systemctl daemon-reload
+        fi
+
+        if [ ! -f /lib/systemd/system/mongodb.service ]; then
+            crontab -l | { cat; echo "@reboot /bin/mkdir -p /data/configdb && /bin/mkdir -p /data/db && /bin/chown mongodb:mongodb /data -R"; } | crontab -
+            cat >> /lib/systemd/system/mongodb.service << EOF
+[Unit]
+Description=High-performance, schema-free document-oriented database
+Wants=network.target
+After=network.target
+[Service]
+PermissionsStartOnly=true
+Environment="GLIBC_TUNABLES=glibc.pthread.rseq=0"
+#ExecStartPre=/bin/mkdir -p /data/{config,}db && /bin/chown mongodb:mongodb /data -R
+# https://www.tutorialspoint.com/mongodb/mongodb_replication.htm
+ExecStart=/usr/bin/numactl --interleave=all /usr/bin/mongod --setParameter "tcmallocReleaseRate=5.0"
+# --replSet rs0
+ExecReload=/bin/kill -HUP $MAINPID
+Restart=always
+# enable on ramfs servers
+# --wiredTigerCacheSizeGB=50
+User=mongodb
+Group=mongodb
+# StandardOutput=syslog
+# StandardError=syslog
+SyslogIdentifier=mongodb
+LimitNOFILE=1048576
+[Install]
+WantedBy=multi-user.target
+EOF
+        fi
+        sudo mkdir -p /data/{config,}db
+        sudo chown mongodb:mongodb /data/ -R
+        systemctl unmask mongodb.service
+        systemctl enable mongodb.service
+        systemctl restart mongodb.service
+
+        echo "https://www.percona.com/blog/2016/08/12/tuning-linux-for-mongodb/"
+        echo "net.ipv4.tcp_fastopen = 3" | sudo tee /etc/sysctl.d/30-tcp_fastopen.conf
+
+    else
+        echo "[+] Skipping MongoDB"
+    fi
+
+}
+
+function install_elastic() {
+    echo "[+] Installing elastic"
+    sudo curl -fsSL "https://artifacts.elastic.co/GPG-KEY-elasticsearch" | sudo gpg --dearmor -o /etc/apt/keyrings/elasticsearch-keyring.gpg --yes
+
+    # Elasticsearch 7.x
+    echo "deb [signed-by=/etc/apt/keyrings/elasticsearch-keyring.gpg] https://artifacts.elastic.co/packages/7.x/apt stable main" > /etc/apt/sources.list.d/elastic-7.x.list
+
+    # Elasticsearch 8.x
+    # echo "deb [signed-by=/etc/apt/keyrings/elasticsearch-keyring.gpg] https://artifacts.elastic.co/packages/8.x/apt stable main" > /etc/apt/sources.list.d/elastic-8.x.list
+
+    sudo apt-get update && sudo apt-get install -y elasticsearch
+    PIP_BREAK_SYSTEM_PACKAGES=1 pip3 install elasticsearch
+
+    systemctl enable elasticsearch
+}
+
+function install_postgresql() {
+    echo "[+] Installing PostgreSQL"
+
+    curl https://www.postgresql.org/media/keys/ACCC4CF8.asc | gpg --dearmor | sudo tee /etc/apt/trusted.gpg.d/apt.postgresql.org.gpg >/dev/null
+    echo "deb [signed-by=/etc/apt/trusted.gpg.d/apt.postgresql.org.gpg arch=amd64] http://apt.postgresql.org/pub/repos/apt/ $(lsb_release -cs)-pgdg main" > /etc/apt/sources.list.d/pgdg.list
+
+    sudo apt-get update
+    sudo apt-get install -y libpq-dev postgresql postgresql-client
+
+    sudo systemctl enable postgresql.service
+    sudo systemctl start postgresql.service
+
+    sudo -u postgres -H sh -c "psql -d \"${USER}\" -c \"ALTER DATABASE cape REFRESH COLLATION VERSION;\""
+    sudo -u postgres -H sh -c "psql -d \"${USER}\" -c \"ALTER DATABASE postgres REFRESH COLLATION VERSION;\""
+}
+
+function install_capa() {
+    echo "[+] Installing capa"
+    # pip3 install flare-capa fails for me
+    cd /tmp || return
+    if [ ! -d /tmp/capa ]; then
+        # problem with test files of dotnet as it goes over ssh insted of https --recurse-submodules
+        git clone https://github.com/mandiant/capa.git
+    fi
+    cd capa || return
+    git pull
+    git submodule update --init rules
+    /etc/poetry/bin/poetry --directory /opt/CAPEv2/ run pip install /tmp/capa
+    cd /opt/CAPEv2
+    if [ -d /tmp/capa ]; then
+        sudo rm -rf /tmp/capa
+    fi
+}
+
+function dependencies() {
+    echo "[+] Installing dependencies"
+
+    timedatectl set-timezone UTC
+    export LANGUAGE=en_US.UTF-8
+    export LANG=en_US.UTF-8
+    export LC_ALL=en_US.UTF-8
+
+    #sudo snap install canonical-livepatch
+    #sudo canonical-livepatch enable APITOKEN
+
+    # deps
+    sudo apt-get install -y python3-pip build-essential libssl-dev libssl3 python3-dev cmake nfs-common crudini
+    sudo apt-get install -y innoextract msitools iptables psmisc jq sqlite3 tmux net-tools checkinstall graphviz python3-pydot git numactl python3 python3-dev python3-pip libjpeg-dev zlib1g-dev
+    sudo apt-get install -y zpaq upx-ucl wget zip unzip lzip rar unrar unace-nonfree cabextract geoip-database libgeoip-dev libjpeg-dev mono-utils ssdeep libfuzzy-dev exiftool
+    sudo DEBIAN_FRONTEND=noninteractive apt-get install -y uthash-dev libconfig-dev libarchive-dev libtool autoconf automake privoxy software-properties-common wkhtmltopdf xvfb xfonts-100dpi tcpdump libcap2-bin wireshark-common
+    sudo apt-get install -y python3-pil subversion uwsgi uwsgi-plugin-python3 python3-pyelftools git curl
+    sudo apt-get install -y openvpn wireguard
+    # for bingraph
+    sudo apt-get install -y libgraphviz-dev
+
+    # APT poetry is ultra outdated
+    curl -sSL https://install.python-poetry.org | POETRY_HOME=/etc/poetry python3 -
+    echo "PATH=$PATH:/etc/poetry/bin/" >> /etc/bash.bashrc
+    source /etc/bash.bashrc
+    poetry self add poetry-plugin-shell
+
+    sudo apt-get install -y locate # used by extra/libvirt_installer.sh
+
+    # de4dot selfextraction
+    sudo apt-get install -y libgdiplus libdnlib2.1-cil libgif7 libmono-accessibility4.0-cil libmono-ldap4.0-cil libmono-posix4.0-cil libmono-sqlite4.0-cil libmono-system-componentmodel-dataannotations4.0-cil libmono-system-data4.0-cil libmono-system-design4.0-cil libmono-system-drawing4.0-cil libmono-system-enterpriseservices4.0-cil libmono-system-ldap4.0-cil libmono-system-runtime-serialization-formatters-soap4.0-cil libmono-system-runtime4.0-cil libmono-system-transactions4.0-cil libmono-system-web-applicationservices4.0-cil libmono-system-web-services4.0-cil libmono-system-web4.0-cil libmono-system-windows-forms4.0-cil libmono-webbrowser4.0-cil
+    de4dot_package_name="de4dot_3.1.41592.3405-2_all.deb"
+    # if not exist download package
+    if [ ! -f $de4dot_package_name ]; then
+        wget http://archive.ubuntu.com/ubuntu/pool/universe/d/de4dot/$de4dot_package_name
+    fi
+    if [ -f $de4dot_package_name ]; then
+        sudo dpkg -i $de4dot_package_name
+        sudo rm $de4dot_package_name
+    else
+        echo "[-] de4dot package not found"
+        return
+    fi
+
+    # if broken sudo python -m pip uninstall pip && sudo apt-get install -y --reinstall python-pip
+    #pip3 install --upgrade pip
+    # /usr/bin/pip
+    # from pip import __main__
+    # if __name__ == '__main__':
+    #     sys.exit(__main__._main())
+
+    # re2 - dead on py3.11
+    # sudo apt-get install -y libre2-dev
+    #re2 for py3
+    # pip3 install cython
+    # pip3 install git+https://github.com/andreasvc/pyre2.git
+
+    install_postgresql
+
+    sudo -u postgres -H sh -c "psql -c \"CREATE USER ${USER} WITH PASSWORD '$PASSWD'\"";
+    sudo -u postgres -H sh -c "psql -c \"CREATE DATABASE ${USER}\"";
+    sudo -u postgres -H sh -c "psql -d \"${USER}\" -c \"GRANT ALL PRIVILEGES ON DATABASE ${USER} to ${USER};\""
+    sudo -u postgres -H sh -c "psql -d \"${USER}\" -c \"ALTER DATABASE ${USER} OWNER TO ${USER};\""
+
+    sudo apt-get install -y apparmor-utils
+    TCPDUMP_PATH=`which tcpdump`
+    aa-complain ${TCPDUMP_PATH}
+    aa-disable ${TCPDUMP_PATH}
+
+    if id "${USER}" &>/dev/null; then
+        echo "user ${USER} already exist"
+    else
+        groupadd ${USER}
+        useradd --system -g ${USER} -d /home/${USER}/ -m ${USER} --shell /bin/bash
+    fi
+
+    echo "${USER} ALL=NOPASSWD: ${TCPDUMP_PATH}" > /etc/sudoers.d/tcpdump
+    chmod 440 /etc/sudoers.d/tcpdump
+
+    usermod -a -G systemd-journal ${USER}
+
+    # https://www.torproject.org/docs/debian.html.en
+    sudo apt-get install -y gnupg2
+
+    wget -qO- https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89.asc | gpg --dearmor | sudo tee /usr/share/keyrings/deb.torproject.org-keyring.gpg >/dev/null
+
+    # Tor project has no release for Ubuntu noble (24-10-18)
+    # TODO: Check if it is still the case
+    if [ "$(lsb_release -cs)" = "noble" ]; then
+        echo "deb [signed-by=/usr/share/keyrings/deb.torproject.org-keyring.gpg arch=amd64] https://deb.torproject.org/torproject.org jammy main" > /etc/apt/sources.list.d/tor.list
+        echo "deb-src [signed-by=/usr/share/keyrings/deb.torproject.org-keyring.gpg arch=amd64] https://deb.torproject.org/torproject.org jammy main" >> /etc/apt/sources.list.d/tor.list
+    else
+        echo "deb [signed-by=/usr/share/keyrings/deb.torproject.org-keyring.gpg arch=amd64] https://deb.torproject.org/torproject.org $(lsb_release -cs) main" > /etc/apt/sources.list.d/tor.list
+        echo "deb-src [signed-by=/usr/share/keyrings/deb.torproject.org-keyring.gpg arch=amd64] https://deb.torproject.org/torproject.org $(lsb_release -cs) main" >> /etc/apt/sources.list.d/tor.list
+    fi
+
+    sudo apt-get update 2>/dev/null
+    sudo systemctl stop tor@default.service && sudo systemctl disable tor@default.service
+    sudo apt-get install -y tor deb.torproject.org-keyring libzstd1
+
+    sed -i 's/#RunAsDaemon 1/RunAsDaemon 1/g' /etc/tor/torrc
+
+    cat >> /etc/tor/torrc <<EOF
+TransPort ${IFACE_IP}:9040
+DNSPort ${IFACE_IP}:5353
+NumCPUs $(getconf _NPROCESSORS_ONLN)
+SocksTimeout ${TOR_SOCKET_TIMEOUT}
+ControlPort 9051
+HashedControlPassword 16:D14CC89AD7848B8C60093105E8284A2D3AB2CF3C20D95FECA0848CFAD2
+EOF
+
+    #Then restart Tor:
+    sudo systemctl enable tor
+    sudo systemctl start tor
+
+    #Edit the Privoxy configuration
+    #sudo sed -i 's/R#        forward-socks5t             /     127.0.0.1:9050 ./        forward-socks5t             /     127.0.0.1:9050 ./g' /etc/privoxy/config
+    #service privoxy restart
+
+    if ! grep -q -E '^* soft nofile' /etc/security/limits.conf; then
+        echo "* soft nofile 1048576" >> /etc/security/limits.conf
+    fi
+    if ! grep -q -E '^* hard nofile' /etc/security/limits.conf; then
+        echo "* hard nofile 1048576" >> /etc/security/limits.conf
+    fi
+    if ! grep -q -E '^root soft nofile' /etc/security/limits.conf; then
+        echo "root soft nofile 1048576" >> /etc/security/limits.conf
+    fi
+    if ! grep -q -E '^root hard nofile' /etc/security/limits.conf; then
+        echo "root soft hard 1048576" >> /etc/security/limits.conf
+    fi
+
+
+    if ! grep -q -E '^fs.file-max' /etc/sysctl.conf; then
+        echo "fs.file-max = 100000" >> /etc/sysctl.conf
+    fi
+    if ! grep -q -E '^net.ipv6.conf.all.disable_ipv6' /etc/sysctl.conf; then
+        echo "net.ipv6.conf.all.disable_ipv6 = 1" >> /etc/sysctl.conf
+    fi
+    if ! grep -q -E '^net.ipv6.conf.default.disable_ipv6' /etc/sysctl.conf; then
+        echo "net.ipv6.conf.default.disable_ipv6 = 1" >> /etc/sysctl.conf
+    fi
+    if ! grep -q -E '^net.ipv6.conf.lo.disable_ipv6' /etc/sysctl.conf; then
+        echo "net.ipv6.conf.lo.disable_ipv6 = 0" >> /etc/sysctl.conf
+    fi
+    if ! grep -q -E '^net.bridge.bridge-nf-call-ip6tables' /etc/sysctl.conf; then
+        echo "net.bridge.bridge-nf-call-ip6tables = 0" >> /etc/sysctl.conf
+    fi
+    if ! grep -q -E '^net.bridge.bridge-nf-call-iptables' /etc/sysctl.conf; then
+        echo "net.bridge.bridge-nf-call-iptables = 0" >> /etc/sysctl.conf
+    fi
+    if ! grep -q -E '^net.bridge.bridge-nf-call-arptables' /etc/sysctl.conf; then
+        echo "net.bridge.bridge-nf-call-arptables = 0" >> /etc/sysctl.conf
+    fi
+
+    # enable packet forwarding for IPv4
+    if ! grep -q -E '^net.ipv4.ip_forward=1' /etc/sysctl.conf; then
+        echo "net.ipv4.ip_forward=1" >> /etc/sysctl.conf
+    fi
+
+    sudo modprobe br_netfilter
+    sudo sysctl -p
+}
+
+function install_clamav() {
+    echo "[+] Installing clamav"
+    sudo apt-get install -y clamav clamav-daemon clamav-freshclam clamav-unofficial-sigs python3-pyclamd
+
+    cat >> /usr/share/clamav-unofficial-sigs/conf.d/00-clamav-unofficial-sigs.conf << EOF
+# This file contains user configuration settings for the clamav-unofficial-sigs.sh
+# Script provide by Bill Landry (unofficialsigs@gmail.com).
+# Script updates can be found at: http://sourceforge.net/projects/unofficial-sigs
+# License: BSD (Berkeley Software Distribution)
+PATH="/bin:/sbin:/usr/bin:/usr/sbin:/usr/local/bin:/usr/local/sbin"
+export PATH
+clam_user="clamav"
+clam_group="clamav"
+setmode="yes"
+clam_dbs="/var/lib/clamav"
+clamd_pid="/var/run/clamd.pid"
+reload_dbs="no"
+reload_opt="clamdscan --reload"  # Default
+enable_random="yes"
+min_sleep_time="60"    # Default minimum is 60 seconds (1 minute).
+max_sleep_time="600"   # Default maximum is 600 seconds (10 minutes).
+# ========================
+# Sanesecurity Database(s)
+# ========================
+# http://www.sanesecurity.com/clamav/databases.htm
+ss_dbs="
+   blurl.ndb
+   junk.ndb
+   jurlbl.ndb
+   phish.ndb
+   rogue.hdb
+   sanesecurity.ftm
+   scam.ndb
+   sigwhitelist.ign2
+   spamattach.hdb
+   spamimg.hdb
+   winnow.attachments.hdb
+   winnow_bad_cw.hdb
+   winnow_extended_malware.hdb
+   winnow_malware.hdb
+   winnow_malware_links.ndb
+   doppelstern.hdb
+   bofhland_cracked_URL.ndb
+   bofhland_malware_attach.hdb
+   bofhland_malware_URL.ndb
+   bofhland_phishing_URL.ndb
+   crdfam.clamav.hdb
+   phishtank.ndb
+   porcupine.ndb
+   foxhole_filename.cdb
+   foxhole_all.cdb
+"
+# ========================
+# SecuriteInfo Database(s)
+# ========================
+si_dbs="
+   honeynet.hdb
+   securiteinfo.hdb
+   securiteinfobat.hdb
+   securiteinfodos.hdb
+   securiteinfoelf.hdb
+   securiteinfohtml.hdb
+   securiteinfooffice.hdb
+   securiteinfopdf.hdb
+   securiteinfosh.hdb
+"
+si_update_hours="4"   # Default is 4 hours (6 update checks daily).
+mbl_dbs="
+   mbl.ndb
+"
+mbl_update_hours="6"   # Default is 6 hours (4 downloads daily).
+rsync_connect_timeout="15"
+rsync_max_time="60"
+curl_connect_timeout="15"
+curl_max_time="90"
+work_dir="/usr/unofficial-dbs"   #Top level working directory
+# Sub-directory names:
+ss_dir="$work_dir/ss-dbs"        # Sanesecurity sub-directory
+si_dir="$work_dir/si-dbs"        # SecuriteInfo sub-directory
+mbl_dir="$work_dir/mbl-dbs"      # MalwarePatrol sub-directory
+config_dir="$work_dir/configs"   # Script configs sub-directory
+gpg_dir="$work_dir/gpg-key"      # Sanesecurity GPG Key sub-directory
+add_dir="$work_dir/add-dbs"      # User defined databases sub-directory
+# If you would like to make a backup copy of the current running database
+# file before updating, leave the following variable set to "yes" and a
+# backup copy of the file will be created in the production directory
+# with -bak appended to the file name.
+keep_db_backup="no"
+# If you want to silence the information reported by curl, rsync, gpg
+# or the general script comments, change the following variables to
+# "yes".  If all variables are set to "yes", the script will output
+# nothing except error conditions.
+curl_silence="no"      # Default is "no" to report curl statistics
+rsync_silence="no"     # Default is "no" to report rsync statistics
+gpg_silence="no"       # Default is "no" to report gpg signature status
+comment_silence="no"   # Default is "no" to report script comments
+# Log update information to '$log_file_path/$log_file_name'.
+enable_logging="yes"
+log_file_path="/var/log"
+log_file_name="clamav-unofficial-sigs.log"
+# If necessary to proxy database downloads, define the rsync and/or curl
+# proxy settings here.  For rsync, the proxy must support connections to
+# port 873.  Both curl and rsync proxy setting need to be defined in the
+# format of "hostname:port".  For curl, also note the -x and -U flags,
+# which must be set as "-x hostname:port" and "-U username:password".
+rsync_proxy=""
+curl_proxy=""
+# After you have completed the configuration of this file, set the
+# following variable to "yes".
+user_configuration_complete="no"
+################################################################################
+#                          END OF USER CONFIGURATION                           #
+################################################################################
+add_dbs="
+    https://raw.githubusercontent.com/wmetcalf/clam-punch/master/miscreantpunch099.ldb
+    https://raw.githubusercontent.com/wmetcalf/clam-punch/master/exexor99.ldb
+    https://raw.githubusercontent.com/twinwave-security/twinclams/master/twinclams.ldb
+    https://raw.githubusercontent.com/twinwave-security/twinclams/master/twinwave.ign2
+"
+EOF
+    chown root:root /usr/share/clamav-unofficial-sigs/conf.d/00-clamav-unofficial-sigs.conf
+    chmod 644 /usr/share/clamav-unofficial-sigs/conf.d/00-clamav-unofficial-sigs.conf
+    usermod -a -G ${USER} clamav
+    echo "/opt/CAPEv2/storage/** r," | sudo tee -a /etc/apparmor.d/local/usr.sbin.clamd
+    sudo apparmor_parser -r /etc/apparmor.d/usr.sbin.clamd
+    sudo systemctl enable clamav-daemon
+    sudo systemctl start clamav-daemon
+    sudo -u clamav /usr/sbin/clamav-unofficial-sigs
+}
+
+function install_CAPE() {
+    echo "[+] Installing CAPEv2"
+
+    cd /opt || return
+    # if folder CAPEv2 dosn't exist, clone it
+    if [ ! -d CAPEv2 ]; then
+        git clone https://github.com/kevoreilly/CAPEv2/
+    fi
+    chown ${USER}:${USER} -R /opt/CAPEv2/
+    #chown -R root:${USER} /usr/var/malheur/
+    #chmod -R =rwX,g=rwX,o=X /usr/var/malheur/
+    # Adapting owner permissions to the ${USER} path folder
+
+    if ! crontab -l | grep -q -F 'delete-unused-file-data-in-mongo'; then
+        crontab -l | { cat; echo "30 1 * * 0 cd /opt/CAPEv2 && sudo -u ${USER} /etc/poetry/bin/poetry run python ./utils/cleaners.py --delete-unused-file-data-in-mongo"; } | crontab -
+    fi
+
+    cd "/opt/CAPEv2/" || return
+    sudo -u ${USER} bash -c 'export PYTHON_KEYRING_BACKEND=keyring.backends.null.Keyring; CRYPTOGRAPHY_DONT_BUILD_RUST=1 /etc/poetry/bin/poetry install'
+
+    if [ "$DISABLE_LIBVIRT" -eq 0 ]; then
+        sudo -u ${USER} bash -c 'export PYTHON_KEYRING_BACKEND=keyring.backends.null.Keyring; /etc/poetry/bin/poetry run extra/libvirt_installer.sh'
+        sudo usermod -aG kvm ${USER}
+        sudo usermod -aG libvirt ${USER}
+    fi
+
+    #packages are needed for build options in extra/yara_installer.sh
+    sudo apt-get install -y libjansson-dev libmagic1 libmagic-dev
+    sudo -u ${USER} bash -c '/etc/poetry/bin/poetry run /opt/CAPEv2/extra/yara_installer.sh'
+
+    if [ -d /tmp/yara-python ]; then
+        sudo rm -rf /tmp/yara-python
+    fi
+
+    # copy *.conf.default to *.conf so we have all properly updated fields, as we can't ignore old configs in repository
+    for filename in conf/default/*.conf.default; do cp -vf "./$filename" "./$(echo "$filename" | sed -e 's/.default//g' | sed -e 's/default//g')";  done
+
+    sed -i "/connection =/cconnection = postgresql://${USER}:${PASSWD}@localhost:5432/${USER}" conf/cuckoo.conf
+    # sed -i "/tor/{n;s/enabled = no/enabled = yes/g}" conf/routing.conf
+    # sed -i "/memory_dump = off/cmemory_dump = on" conf/cuckoo.conf
+    # sed -i "/machinery =/cmachinery = kvm" conf/cuckoo.conf
+    sed -i "/interface =/cinterface = ${NETWORK_IFACE}" conf/auxiliary.conf
+
+    chown ${USER}:${USER} -R "/opt/CAPEv2/"
+
+    if [ "$MONGO_ENABLE" -ge 1 ]; then
+        crudini --set conf/reporting.conf mongodb enabled yes
+    fi
+
+    if [ "$librenms_enable" -ge 1 ]; then
+        crudini --set conf/reporting.conf litereport enabled yes
+        crudini --set conf/reporting.conf runstatistics enabled yes
+    fi
+
+    python3 utils/community.py -waf -cr
+
+    # Configure direct internet connection
+    sudo echo "400 ${INTERNET_IFACE}" >> /etc/iproute2/rt_tables
+
+if [ ! -f /etc/sudoers.d/cape ]; then
+    cat >> /etc/sudoers.d/cape << EOF
+Cmnd_Alias CAPE_SERVICES = /usr/bin/systemctl restart cape-rooter, /usr/bin/systemctl restart cape-processor, /usr/bin/systemctl restart cape, /usr/bin/systemctl restart cape-web, /usr/bin/systemctl restart cape-dist, /usr/bin/systemctl restart cape-fstab, /usr/bin/systemctl restart suricata, /usr/bin/systemctl restart guac-web, /usr/bin/systemctl restart guacd
+${USER} ALL=(ALL) NOPASSWD:CAPE_SERVICES
+EOF
+fi
+if [ ! -f /etc/sudoers.d/ip_netns ]; then
+    cat >> /etc/sudoers.d/ip_netns << EOF
+${USER} ALL=NOPASSWD: /usr/sbin/ip netns exec * /usr/bin/sudo -u cape *
+EOF
+fi
+if [ ! -f /opt/mitmproxy/mitmdump_wrapper.sh ]; then
+    mkdir -p /opt/mitmproxy/
+    cat >> /opt/mitmproxy/mitmdump_wrapper.sh << EOF
+#!/bin/bash
+echo $$ > mitmdump.pid
+# exec full args
+exec $@
+EOF
+    chmod +x /opt/mitmproxy/mitmdump_wrapper.sh
+fi
+}
+
+function install_systemd() {
+    echo "[+] Installing systemd configuration"
+    cp /opt/CAPEv2/systemd/cape.service /lib/systemd/system/cape.service
+    cp /opt/CAPEv2/systemd/cape-processor.service /lib/systemd/system/cape-processor.service
+    cp /opt/CAPEv2/systemd/cape-web.service /lib/systemd/system/cape-web.service
+    cp /opt/CAPEv2/systemd/cape-rooter.service /lib/systemd/system/cape-rooter.service
+    cp /opt/CAPEv2/systemd/suricata.service /lib/systemd/system/suricata.service
+    systemctl daemon-reload
+    cape_web_enable_string=''
+    if [ "$MONGO_ENABLE" -ge 1 ]; then
+        cape_web_enable_string="cape-web"
+    fi
+
+    systemctl enable cape cape-rooter cape-processor "$cape_web_enable_string" suricata
+    systemctl restart cape cape-rooter cape-processor "$cape_web_enable_string" suricata
+
+    if [ ! -f "/etc/sudoers.d/cape" ] ; then
+        cat > /etc/sudoers.d/cape << EOF
+Cmnd_Alias CAPE_SVC = /usr/bin/systemctl stop cape, /usr/bin/systemctl start cape, /usr/bin/systemctl restart cape
+Cmnd_Alias CAPE_WEB_SVC = /usr/bin/systemctl stop cape-web, /usr/bin/systemctl start cape-web, /usr/bin/systemctl restart cape-web
+Cmnd_Alias CAPE_PROCESSING_SVC = /usr/bin/systemctl stop cape-processor, /usr/bin/systemctl start cape-processor, /usr/bin/systemctl restart cape-processor
+Cmnd_Alias CAPE_ROOTER_SVC = /usr/bin/systemctl stop cape-rooter, /usr/bin/systemctl start cape-rooter, /usr/bin/systemctl restart cape-rooter
+Cmnd_Alias SURICATA = /usr/bin/systemctl stop suricata, /usr/bin/systemctl start suricata, /usr/bin/systemctl restart suricata
+Cmnd_Alias UWSGI = /usr/bin/systemctl stop uwsgi, /usr/bin/systemctl start uwsgi, /usr/bin/systemctl restart uwsgi
+
+# disttributed cape related
+Cmnd_Alias CAPE_FSTAB_SVC = /usr/bin/systemctl stop cape-fstab, /usr/bin/systemctl start cape-fstab, /usr/bin/systemctl restart cape-fstab
+
+%${USER} ALL=CAPE_SVC
+%${USER} ALL=CAPE_WEB_SVC
+%${USER} ALL=CAPE_PROCESSING_SVC
+%${USER} ALL=CAPE_ROOTER_SVC
+%${USER} ALL=SURICATA
+%${USER} ALL=UWSGI
+
+%cape ALL=CAPE_FSTAB_SVC
+EOF
+    fi
+}
+
+
+function install_prometheus_grafana() {
+    echo "[+] Installing prometheus grafana"
+    # install only on master only master
+    wget https://github.com/prometheus/prometheus/releases/download/v"$prometheus_version"/prometheus-"$prometheus_version".linux-amd64.tar.gz && tar xf prometheus-"$prometheus_version".linux-amd64.tar.gz
+    cd prometheus-$prometheus_version.linux-amd6 && ./prometheus --config.file=prometheus.yml &
+
+    sudo apt-get install -y adduser libfontconfig1
+    wget https://dl.grafana.com/oss/release/grafana_"$grafana_version"_amd64.deb
+    sudo dpkg -i grafana_"$grafana_version"_amd64.deb
+
+    systemctl enable grafana
+
+    cat << EOL
+    Edit grafana config to listen on correct interface, default localhost, then
+    systemctl start grafana
+    Add prometheus data source: https://prometheus.io/docs/visualization/grafana/
+    Add this dashboard: https://grafana.com/grafana/dashboards/11074
+EOL
+}
+
+function install_node_exporter() {
+    echo "[+] Installing prometheus's node exported"
+    # deploy on all all monitoring servers
+    wget https://github.com/prometheus/node_exporter/releases/download/v"$node_exporter_version"/node_exporter-"$node_exporter_version".linux-amd64.tar.gz && tar xf node_exporter-"$node_exporter_version".linux-amd64.tar.gz
+    cd node_exporter-"$node_exporter_version".linux-amd6 && ./node_exporter &
+}
+
+function install_volatility3() {
+    echo "[+] Installing volatility3"
+    sudo apt-get install -y unzip
+    sudo -u ${USER} /etc/poetry/bin/poetry run pip3 install git+https://github.com/volatilityfoundation/volatility3
+    vol_path=$(sudo -u ${USER} /etc/poetry/bin/poetry run python3 -c "import volatility3.plugins;print(volatility3.__file__.replace('__init__.py', 'symbols/'))")
+    cd $vol_path || return
+    wget https://downloads.volatilityfoundation.org/volatility3/symbols/windows.zip -O windows.zip
+    unzip -o windows.zip
+    rm windows.zip
+    chown "${USER}:${USER}" $vol_path -R
+}
+
+function install_mitmproxy() {
+    echo "[+] Installing mitmproxy"
+    sudo mkdir /opt/mitmproxy
+    sudo chown ${USER}:${USER} /opt/mitmproxy
+    cd /opt/mitmproxy
+    mitmproxy_version=$(curl -s https://api.github.com/repos/mitmproxy/mitmproxy/releases/latest | grep '"tag_name":' | cut -d '"' -f 4 | sed 's/^v//')
+    wget https://downloads.mitmproxy.org/"$mitmproxy_version"/mitmproxy-"$mitmproxy_version"-linux-x86_64.tar.gz -O mitmproxy.tar.gz
+    tar xvzf mitmproxy.tar.gz
+    rm mitmproxy.tar.gz
+    chown "${USER}:${USER}" /opt/mitmproxy -R
+}
+
+function install_guacamole() {
+    echo "[+] Installing guacamole"
+    # Kudos to @Enzok https://github.com/kevoreilly/CAPEv2/pull/1065
+    # https://guacamole.apache.org/doc/gug/installing-guacamole.html
+    sudo add-apt-repository -y ppa:remmina-ppa-team/remmina-next-daily
+    sudo apt-get update
+    sudo apt-get install -y libcairo2-dev libjpeg-turbo8-dev libpng-dev libossp-uuid-dev freerdp2-dev
+    sudo apt-get install -y freerdp2-dev libssh2-1-dev libvncserver-dev libpulse-dev  libssl-dev libvorbis-dev libwebp-dev libpango1.0-dev libavcodec-dev libavformat-dev libavutil-dev libswscale-dev
+
+    # https://downloads.apache.org/guacamole/$guacamole_version/source/
+
+
+    if [ ! -d "/tmp/guac-build" ] ; then
+        mkdir /tmp/guac-build
+    fi
+    cd /tmp/guac-build || return
+
+    guacamole_version=$(curl -s https://downloads.apache.org/guacamole/|grep DIR|tail -1|cut -d">" -f 3| cut -d"/" -f 1)
+
+    if [ ! -f "guacamole-server-"$guacamole_version".tar.gz" ] ; then
+        wget https://downloads.apache.org/guacamole/"$guacamole_version"/source/guacamole-server-"$guacamole_version".tar.gz
+        wget https://downloads.apache.org/guacamole/"$guacamole_version"/source/guacamole-server-"$guacamole_version".tar.gz.asc
+        tar xf guacamole-server-"$guacamole_version".tar.gz
+    fi
+    cd guacamole-server-"$guacamole_version" || return
+    CFLAGS=-Wno-error ./configure --with-systemd-dir=/etc/systemd/system/
+    mkdir -p /tmp/guacamole-"${guacamole_version}"_builded/DEBIAN
+    echo -e "Package: guacamole\nVersion: ${guacamole_version}\nArchitecture: $ARCH\nMaintainer: $MAINTAINER\nDescription: Guacamole ${guacamole_version}" > /tmp/guacamole-"${guacamole_version}"_builded/DEBIAN/control
+    USE_SYSTEM=1 make -j"$(nproc)" install DESTDIR=/tmp/guacamole-"${guacamole_version}"_builded
+    USE_SYSTEM=1 dpkg-deb --build --root-owner-group /tmp/guacamole-"${guacamole_version}"_builded
+    sudo dpkg -i --force-overwrite /tmp/guacamole-"${guacamole_version}"_builded.deb
+    sudo ldconfig
+
+    #pip3 install -U 'Twisted[tls,http2]'
+    sudo apt-get install -y python3-twisted
+
+    if [ -f "/etc/systemd/system/guacd.service" ] ; then
+        sudo rm /etc/systemd/system/guacd.service
+    fi
+
+    if [ ! -f "/opt/lib/systemd/system/guac-web.service" ] ; then
+        cp /opt/CAPEv2/systemd/guacd.service /lib/systemd/system/guacd.service
+        cp /opt/CAPEv2/systemd/guac-web.service /lib/systemd/system/guac-web.service
+    fi
+
+    poetry_path="/etc/poetry/bin/poetry"
+    if ! grep -q $poetry_path /lib/systemd/system/guac-web.service ; then
+        sed -i "s|/usr/bin/poetry|$poetry_path|g" /lib/systemd/system/guac-web.service
+    fi
+
+    if [ ! -d "/opt/CAPEv2/storage/guacrecordings" ] ; then
+        sudo mkdir -p opt/CAPEv2/storage/guacrecordings && chown ${USER}:${USER} opt/CAPEv2/storage/guacrecordings
+    fi
+
+    # Add www-data to CAPE group to access guac recordings
+    sudo usermod www-data -G ${USER}
+
+    cd /opt/CAPEv2
+    sudo -u ${USER} bash -c "export PYTHON_KEYRING_BACKEND=keyring.backends.null.Keyring; ${poetry_path} install"
+    cd ..
+
+    systemctl daemon-reload
+    systemctl enable guacd.service guac-web.service
+    systemctl start guacd.service guac-web.service
+}
+
+function install_DIE() {
+    echo "[+] Installing Detect It Easy"
+    sudo apt-get install -y libqt5opengl5 libqt5script5 libqt5scripttools5 libqt5sql5
+    wget "https://github.com/horsicq/DIE-engine/releases/download/${DIE_VERSION}/die_${DIE_VERSION}_Ubuntu_${UBUNTU_VERSION}_amd64.deb" -O DIE.deb && dpkg -i DIE.deb
+}
+
+function install_fluentd() {
+    echo "[+] Installing fluentd"
+    curl -sSO https://dl.google.com/cloudagents/add-logging-agent-repo.sh && sudo bash add-logging-agent-repo.sh
+    sudo apt-get update && sudo apt-get install -y google-fluentd
+    sudo apt-get install -y google-fluentd-catch-all-config-structured
+    sudo service google-fluentd start && sudo service google-fluentd status
+}
+
+function install_postgres_pg_activity() {
+    echo "[+] Installing pg-activity"
+    # amazing tool for monitoring https://github.com/dalibo/pg_activity
+    # sudo -u postgres pg_activity -U postgres
+    sudo apt-get install -y pg-activity
+}
+
+function install_polarproxy() {
+    echo "[+] Installing PolarProxy"
+
+    cd "/opt/" || return
+
+    if [ ! -d PolarProxy ]; then
+        mkdir PolarProxy
+    fi
+
+    cd PolarProxy
+    curl -o PolarProxy.tar.gz https://www.netresec.com/?download=PolarProxy
+    tar xf PolarProxy.tar.gz
+    chmod a+x PolarProxy
+
+    local KEY_PEM=PolarProxy-key.pem
+    local CRT_PEM=PolarProxy-crt.pem
+    local CRT_P12=PolarProxy-key-crt.p12
+    local CRT_CRT=PolarProxy-crt.crt
+
+    # Generate key
+    openssl req -x509 \
+        -newkey rsa:4096 \
+        -passin pass:$PASSWD \
+        -keyout $KEY_PEM \
+        -subj "/C=US/ST=California/L=San Diego/O=Development/OU=Dev/CN=CAPEv2 PolarProxy" \
+        -out $CRT_PEM \
+        -nodes \
+        -days 365
+
+    # Generate certificate
+    openssl x509 \
+        -inform PEM \
+        -passin pass:$PASSWD \
+        -in $CRT_PEM \
+        -out $CRT_CRT
+
+    # Bundle key and cert for PolarProxy
+    openssl pkcs12 \
+        -in $CRT_PEM \
+        -inkey $KEY_PEM \
+        -out $CRT_P12 \
+        -export \
+        -password pass:$PASSWD \
+        -name PolarProxy
+
+    chown -R $USER:$USER /opt/PolarProxy
+
+    chmod 600 $CRT_P12
+}
+
+function install_passivedns() {
+    sudo apt-get install -y git binutils-dev libldns-dev libpcap-dev libdate-simple-perl libdatetime-perl libdbd-mysql-perl
+    cd /tmp || return
+
+    # From pevious install
+    if [ -d /tmp/passivedns ]; then
+        sudo rm -rf /tmp/passivedns
+    fi
+    git clone https://github.com/gamelinux/passivedns.git
+    cd passivedns/ || return
+    autoreconf --install
+    ./configure
+    make -j"$(getconf _NPROCESSORS_ONLN)"
+    sudo checkinstall -D --pkgname=passivedns --default
+    chown ${USER}:${USER} -R /tmp/passivedns/
+    sed -i 's/APT::Periodic::Unattended-Upgrade "1";/APT::Periodic::Unattended-Upgrade "0";/g' /etc/apt/apt.conf.d/20auto-upgrades
+
+    if [ -d /tmp/passivedns ]; then
+        cd /tmp || return
+        sudo rm -rf /tmp/passivedns
+    fi
+}
+
+# Doesn't work ${$1,,}
+COMMAND=$(echo "$1"|tr "{A-Z}" "{a-z}")
+
+case $COMMAND in
+    '-h')
+        usage
+        exit 0;;
+esac
+
+if [ $# -eq 3 ]; then
+    sandbox_version=$2
+    IFACE_IP=$3
+elif [ $# -eq 0 ]; then
+    echo "[-] check --help"
+    exit 1
+fi
+
+DISABLE_MONGO_AVX_CHECK=0
+DISABLE_LIBVIRT=0
+
+for i in "$@"; do
+    if [ "$i" == "--disable-mongodb-avx-check" ]; then
+        # Usage: disable AVX check for MongoDB
+        # Example usecase: Run script in docker container where AVX is not available
+        DISABLE_MONGO_AVX_CHECK=1
+    elif [ "$i" == "--disable-libvirt" ]; then
+        # Disable libvirt installation
+        DISABLE_LIBVIRT=1
+    fi
+done
+
+sandbox_version=$(echo "$sandbox_version"|tr "{A-Z}" "{a-z}")
+
+#check if start with root
+if [ "$EUID" -ne 0 ] && [[ -z "${BUILD_ENV}" ]]; then
+   echo 'This script must be run as root'
+   exit 1
+fi
+
+case "$COMMAND" in
+'base')
+    dependencies
+    install_mongo
+    install_CAPE
+    install_yara
+    install_systemd
+    install_suricata
+    install_jemalloc
+    if ! crontab -l | grep -q './smtp_sinkhole.sh'; then
+        crontab -l | { cat; echo "@reboot cd /opt/CAPEv2/utils/ && ./smtp_sinkhole.sh 2>/dev/null"; } | crontab -
+    fi
+    # Disabled due to frequent CAPA updates and it breaks it. Users should care about this subject
+    # Update FLARE CAPA rules and community every X hours
+    # if ! crontab -l | grep -q 'community.py -waf -cr'; then
+    #    crontab -l | { cat; echo "5 0 */1 * * cd /opt/CAPEv2/utils/ && poetry run python utils/community.py -waf -cr && poetry run pips install -U flare-capa  && systemctl restart cape-processor 2>/dev/null"; } | crontab -
+    # fi
+    if ! crontab -l | grep -q 'echo signal newnym'; then
+        crontab -l | { cat; echo "00 */1 * * * (echo authenticate '""'; echo signal newnym; echo quit) | nc localhost 9051 2>/dev/null"; } | crontab -
+    fi
+
+
+    ;;
+'all')
+    dependencies
+    install_CAPE
+    install_volatility3
+    install_mongo
+    install_yara
+    install_systemd
+    install_suricata
+    install_jemalloc
+    install_logrotate
+    install_mitmproxy
+    #socksproxies is to start redsocks stuff
+    if [ -f /opt/CAPEv2/socksproxies.sh ]; then
+        crontab -l | { cat; echo "@reboot /opt/CAPEv2/socksproxies.sh"; } | crontab -
+    fi
+    if ! crontab -l | grep -q './smtp_sinkhole.sh'; then
+        crontab -l | { cat; echo "@reboot cd /opt/CAPEv2/utils/ && ./smtp_sinkhole.sh 2>/dev/null"; } | crontab -
+    fi
+    # Update FLARE CAPA rules once per day
+    if ! crontab -l | grep -q 'community.py -waf -cr'; then
+        crontab -l | { cat; echo "5 0 */1 * * cd /opt/CAPEv2/utils/ && sudo -u ${USER} /etc/poetry/bin/poetry --directory /opt/CAPEv2/ run python3 community.py -waf -cr && poetry --directory /opt/CAPEv2/ run pip install -U flare-capa && systemctl restart cape-processor 2>/dev/null"; } | crontab -
+    fi
+    install_librenms
+    if [ "$clamav_enable" -ge 1 ]; then
+        install_clamav
+    fi
+    ;;
+'systemd')
+    install_systemd;;
+'suricata')
+    install_suricata;;
+'yara')
+    install_yara;;
+'yara-x')
+    install_yara_x;;
+'volatility3')
+    install_volatility3;;
+'postgresql')
+    install_postgresql;;
+'postgresql_utility')
+    install_postgres_pg_activity;;
+'elastic')
+    install_elastic;;
+'sandbox')
+    install_CAPE;;
+'dist')
+    distributed;;
+'fail2ban')
+    install_fail2ban;;
+'mongo')
+    install_mongo;;
+'redsocks2')
+    redsocks2;;
+'dependencies')
+    dependencies;;
+'logrotate')
+    install_logrotate;;
+'librenms')
+    install_librenms;;
+'librenms_cron_config')
+    librenms_cron_config;;
+'librenms_snmpd_config')
+    librenms_snmpd_config;;
+'librenms_sneck_config')
+    librenms_sneck_config;;
+'mitmproxy')
+    install_mitmproxy;;
+'polarproxy')
+    install_polarproxy;;
+'issues')
+    issues;;
+'nginx')
+    install_nginx;;
+'letsencrypt')
+    install_letsencrypt;;
+'clamav')
+    install_clamav;;
+'prometheus')
+    install_prometheus_grafana;;
+'node_exporter')
+    install_node_exporter;;
+'jemalloc')
+    install_jemalloc;;
+'guacamole')
+    install_guacamole;;
+'docker')
+    install_docker;;
+'modsecurity')
+    install_modsecurity;;
+'crowdsecurity')
+    install_crowdsecurity;;
+'die')
+    install_DIE;;
+'fluentd')
+    install_fluentd;;
+'passivedns')
+    install_passivedns;;
+*)
+    usage;;
+esac
+
+echo "[+] cape2.sh - Done"
diff --git a/installer/choco.bat b/installer/choco.bat
new file mode 100644
index 00000000000..60b55f70b63
--- /dev/null
+++ b/installer/choco.bat
@@ -0,0 +1,12 @@
+rem Chocolatey now requires PowerShell v3 (or higher) and .NET 4.0 (or higher) due to recent upgrades to TLS 1.2. 
+rem Please ensure .NET 4+ and PowerShell v3+ are installed prior to attempting FLARE VM installation. 
+rem Below are links to download .NET 4.5 and WMF 5.1 (PowerShell 5.1).
+rem .NET 4.5 https://www.microsoft.com/en-us/download/details.aspx?id=30653
+rem WMF 5.1 https://www.microsoft.com/en-us/download/details.aspx?id=54616
+
+
+powershell -Command "if ($PSVersionTable.PSVersion.Major -ge 5 -and $PSVersionTable.PSVersion.Minor -ge 1 ){Set-ExecutionPolicy Bypass -Scope Process -Force; iwr https://community.chocolatey.org/install.ps1 -UseBasicParsing | iex } else {Write-Output "'Chocolatey now requires PowerShell v3 (or higher) and .NET 4.0 (or higher) due to recent upgrades to TLS 1.2. Please ensure .NET 4+ and PowerShell v3+ are installed prior to attempting FLARE VM installation. `nBelow are links to download .NET 4.5 and WMF 5.1 (PowerShell 5.1). .NET 4.5 https://www.microsoft.com/en-us/download/details.aspx?id=30653 WMF 5.1 https://www.microsoft.com/en-us/download/details.aspx?id=54616'"}"
+choco upgrade chocolatey
+choco install -y dotnetfx dotnet4.7.2 dotnet vcredist-all wixtoolset msxml4.sp3 msxml6.sp1
+
+pip3 install pillow pywintrace
diff --git a/installer/disable_win7noise.bat b/installer/disable_win7noise.bat
new file mode 100644
index 00000000000..d47a9017ec3
--- /dev/null
+++ b/installer/disable_win7noise.bat
@@ -0,0 +1,151 @@
+REM NTP
+reg add "HKLM\SYSTEM\CurrentControlSet\Services\W32Time\Parameters" /v LocalNTP /t REG_DWORD /d 0 /f
+REM HELP
+REM http://www.windows-commandline.com/start-stop-service-command-line/
+REM disable UAC
+reg add "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System" /v EnableLUA /t REG_DWORD /d 0 /f
+REM disable Windows defender
+sc config WinDefend start= disabled
+REM disable windows update
+reg add "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update" /v AUOptions /t REG_DWORD /d 1 /f
+REM disable aero
+net stop uxsms
+REM disable the firewall
+netsh advfirewall set allprofiles state off
+REM disable IPv6
+netsh interface teredo set state disabled
+netsh interface ipv6 6to4 set state state=disabled undoonstop=disabled
+netsh interface ipv6 isatap set state state=disabled
+REM disable active probing
+reg add "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NlaSvc\Parameters\Internet" /v EnableActiveProbing /t REG_DWORD /d 0 /f
+reg add "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\NetworkConnectivityStatusIndicator" /v EnableActiveProbing /t REG_DWORD /d 0 /f
+REM disable passive probing
+reg add  "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NlaSvc\Parameters\Internet" /v PassivePollPeriod /t REG_DWORD /d 0 /f
+REM disable SSDP
+sc config SSDPSRV start= disabled
+net stop SSDPSRV
+REM disable computer browsing
+sc stop Browser
+sc config Browser start= disabled
+REM disable WinHTTP Web Proxy Auto-Discovery
+reg add "HKLM\SYSTEM\CurrentControlSet\services\WinHttpAutoProxySvc" /v Start /t REG_DWORD /d 4 /f
+REM disable Function Discovery Resource Publication service
+reg add "HKLM\SYSTEM\CurrentControlSet\services\FDResPup" /v Start /t REG_DWORD /d 4 /f
+REM IE blank page
+reg add "HKCU\Software\Microsoft\Internet Explorer\Main" /V "Start Page" /D "" /F
+REM disable IExplorer Proxy
+reg add "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings" /v ProxyEnable /t  REG_DWORD /d 00000000 /f
+REM disable netbios in TCP/IP
+wmic nicconfig where index=8 call SetTcpipNetbios 2
+REM disable netbios service
+reg add "HKLM\SYSTEM\CurrentControlSet\services\Lmhosts" /v Start /t REG_DWORD /d 4 /f
+REM disable LLMNR
+reg add "HKLM\Software\policies\Microsoft\Windows NT\DNSClient" /v "EnableMulticast" /t REG_DWORD /d 0 /f
+REMdisable SQM
+reg add "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\FlexGo\FGNotify\Prechecks"  /v Sqm /t REG_DWORD /d 00000002 /f
+REM Disable cert check
+reg add "HKLM\SYSTEM\CurrentControlSet\Services\HTTP\Parameters\SslBindingInfo" /v DefaultSslCertCheckMode /t REG_DWORD /d 1 /f
+REM disable ClickToRunSvc
+sc stop "ClickToRunSvc"
+sc config "ClickToRunSvc" start= disabled
+REM disable monitor-timeout
+POWERCFG -CHANGE -monitor-timeout-ac 0
+POWERCFG -CHANGE -monitor-timeout-dc 0
+
+REM dr.watson
+reg add "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AeDebug" /v AUTO /t REG_SZ /d 0 /f
+reg add "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AeDebug" /v AutoExclusionList /t REG_SZ /d 0 /f
+
+REM curtain
+reg add "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\PowerShell\ModuleLogging\ModuleNames" /v * /t REG_SZ /d * /f /reg:64
+reg add "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging" /v EnableScriptBlockLogging /t REG_DWORD /d 00000001 /f /reg:64
+reg add "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\PowerShell\Transcription" /v EnableTranscripting /t REG_DWORD /d 00000001 /f /reg:64
+reg add "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\PowerShell\Transcription" /v OutputDirectory /t REG_SZ /d C:\PSTranscipts /f /reg:64
+reg add "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\PowerShell\Transcription" /v EnableInvocationHeader /t REG_DWORD /d 00000001 /f /reg:64
+
+REM disable windows defender
+reg add "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender" /v DisableAntiSpyware /t REG_DWORD /d 0 /f
+
+REM https://superuser.com/questions/972501/how-to-stop-microsoft-from-gathering-telemetry-data-from-windows-7-8-and-8-1
+sc stop DiagTrack
+sc stop dmwappushservice
+sc delete DiagTrack
+sc delete dmwappushservice
+echo "" > C:\ProgramData\Microsoft\Diagnosis\ETLLogs\AutoLogger\AutoLogger-Diagtrack-Listener.etl
+reg add "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\DataCollection" /v AllowTelemetry /t REG_DWORD /d 0 /f
+reg add "HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\WMI\AutoLogger" /v AutoLogger-Diagtrack-Listener /t DWORD /d 0 /f
+
+REM Win10/11 telemetry
+sc config DiagTrack start= disabled
+sc config dmwappushservice start= disabled
+
+REM schtasks
+schtasks.exe /Change /TN "\Microsoft\Office\Office Automatic Updates 2.0" /Disable /ru ""
+schtasks.exe /Change /TN "\Microsoft\Office\Office ClickToRun Service Monitor" /Disable /ru ""
+schtasks.exe /Change /TN "\Microsoft\Office\Office Feature Updates" /Disable /ru ""
+schtasks.exe /Change /TN "\Microsoft\Office\Office Feature Updates Logon" /Disable /ru ""
+schtasks.exe /Change /TN "\Microsoft\Office\OfficeTelemetryAgentFallBack2016" /Disable /ru ""
+schtasks.exe /Change /TN "\Microsoft\Office\OfficeTelemetryAgentLogOn2016" /Disable /ru ""
+
+schtasks.exe /Change /TN "\Microsoft\Windows\Application Experience\AitAgent" /Disable /ru ""
+schtasks.exe /Change /TN "\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser" /Disable /ru ""
+schtasks.exe /Change /TN "\Microsoft\Windows\Application Experience\ProgramData\Updater" /Disable /ru ""
+schtasks.exe /Change /TN "\Microsoft\Windows\Customer Experience Improvement Program\KernelCeipTask" /Disable /ru ""
+schtasks.exe /Change /TN "\Microsoft\Windows\Customer Experience Improvement Program\UsbCeip" /Disable /ru ""
+schtasks.exe /Change /TN "\Microsoft\Windows\Customer Experience Improvement Program\Consolidator" /Disable /ru ""
+schtasks.exe /Change /TN "\Microsoft\Windows\Autochk\Proxy" /Disable /ru ""
+schtasks.exe /Change /TN "\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector" /Disable /ru ""
+schtasks.exe /Change /TN "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary" /Disable /ru ""
+
+schtasks.exe /Change /TN "\CCleaner Update" /Disable /ru ""
+schtasks.exe /Change /TN "\CCleaner UpdateSkipUAC" /Disable /ru ""
+schtasks.exe /Change /TN "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary" /Disable /ru ""
+schtasks.exe /Change /TN "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary" /Disable /ru ""
+
+
+REM Uninstall telemetry updates
+wusa /uninstall /kb:3065988 /quiet /norestart
+wusa /uninstall /kb:3083325 /quiet /norestart
+wusa /uninstall /kb:3083324 /quiet /norestart
+wusa /uninstall /kb:2976978 /quiet /norestart
+wusa /uninstall /kb:3075853 /quiet /norestart
+wusa /uninstall /kb:3065987 /quiet /norestart
+wusa /uninstall /kb:3050265 /quiet /norestart
+wusa /uninstall /kb:3050267 /quiet /norestart
+wusa /uninstall /kb:3075851 /quiet /norestart
+wusa /uninstall /kb:2902907 /quiet /norestart
+wusa /uninstall /kb:3068708 /quiet /norestart
+wusa /uninstall /kb:3022345 /quiet /norestart
+wusa /uninstall /kb:2952664 /quiet /norestart
+wusa /uninstall /kb:2990214 /quiet /norestart
+wusa /uninstall /kb:3035583 /quiet /norestart
+wusa /uninstall /kb:971033 /quiet /norestart
+wusa /uninstall /kb:3021917 /quiet /norestart
+wusa /uninstall /kb:3044374 /quiet /norestart
+wusa /uninstall /kb:3046480 /quiet /norestart
+wusa /uninstall /kb:3075249 /quiet /norestart
+wusa /uninstall /kb:3080149 /quiet /norestart
+wusa /uninstall /kb:2977759 /quiet /norestart
+wusa /uninstall /kb:3083710 /quiet /norestart
+wusa /uninstall /kb:3083711 /quiet /norestart
+wusa /uninstall /kb:3112336 /quiet /norestart
+wusa /uninstall /kb:3123862 /quiet /norestart
+
+REM office 2010
+reg add "HKEY_CURRENT_USER\Software\Microsoft\Office\Common\Security" /v DisableAllActiveX /t  REG_DWORD /d 0 /f
+reg add "HKEY_CURRENT_USER\Software\Microsoft\Office\Common\Security" /v UFIControls /t  REG_DWORD /d 1 /f
+for %%x in (Word Excel PowerPoint Publisher Outlook) do (
+    reg add "HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\%%x\Common\General" /v ShownOptIn /t  REG_DWORD /d 1 /f
+    reg add "HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\%%x\Security" /v VBAWarnings /t  REG_DWORD /d 1 /f
+    reg add "HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\%%x\Security" /v AccessVBOM /t  REG_DWORD /d 1 /f
+    reg add "HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\%%x\Security" /v DisableDDEServerLaunch /t  REG_DWORD /d 0 /f
+    reg add "HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\%%x\Security" /v ExtensionHardening /t  REG_DWORD /d 0 /f
+    reg add "HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\%%x\Security" /v ShownOptIn /t  REG_DWORD /d 1 /f
+    reg add "HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\%%x\Security" /v ShownOptIn /t  REG_DWORD /d 1 /f
+    reg add "HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\%%x\Security" /v ShownOptIn /t  REG_DWORD /d 1 /f
+    reg add "HKEY_CURRENT_USER\Software\Policies\Microsoft\Office\14.0\%%x\Security" /v MarkInternalAsUnsafe /t  REG_DWORD /d 0 /f
+    reg add "HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\%%x\Security\ProtectedView" /v DisableAttachmentsInPV /t  REG_DWORD /d 1 /f
+    reg add "HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\%%x\Security\ProtectedView" /v DisableInternetFilesInPV /t  REG_DWORD /d 1 /f
+    reg add "HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\%%x\Security\ProtectedView" /v DisableUnsafeLocationsInPV /t  REG_DWORD /d 1 /f
+    reg add "HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\%%x\Security" /v EnableDEP /t  REG_DWORD /d 1 /f
+)
diff --git a/installer/kvm-qemu.sh b/installer/kvm-qemu.sh
new file mode 100755
index 00000000000..81a9014c0f0
--- /dev/null
+++ b/installer/kvm-qemu.sh
@@ -0,0 +1,1375 @@
+#!/bin/bash
+
+# Copyright (C) 2011-2024 DoomedRaven.
+# This file is part of Tools - https://github.com/doomedraven/Tools
+# See the file 'LICENSE.md' for copying permission.
+# https://www.doomedraven.com/2016/05/kvm.html
+# https://www.doomedraven.com/2020/04/how-to-create-virtual-machine-with-virt.html
+# Use Ubuntu 24.04 LTS
+# Update date: 22.02.2025
+
+# Glory to Ukraine!
+
+: '
+Huge thanks to:
+    * @SamRSA8
+    * @http_error_418
+    * @2sec4you
+    * @seifreed
+    * @Fire9
+    * @abuse_ch
+    * @wmetcalf
+    * @ClaudioWayne
+    * @CplNathan
+    * @enzok
+    * many others
+'
+
+# ToDo investigate
+#https://www.jamescoyle.net/how-to/1810-qcow2-disk-images-and-performance
+#when backing storage is attached to virtio_blk (vda, vdb, etc.) storage controller - performance from iSCSI client connecting to the iSCSI target was in my environment ~ 20 IOPS, with throughput (depending on IO size) ~ 2-3 MiB/s. I changed virtual disk controller within virtual machine to SCSI and I'm able to get 1000+ IOPS and throughput 100+ MiB/s from my iSCSI clients.
+
+#https://linux.die.net/man/1/qemu-img
+#"cluster_size"
+#Changes the qcow2 cluster size (must be between 512 and 2M). Smaller cluster sizes can improve the image file size whereas larger cluster sizes generally provide better performance.
+
+# https://github.com/dylanaraps/pure-bash-bible
+# https://www.shellcheck.net/
+
+# Might need update the WMI queries but you have example how to dump the information
+# https://github.com/SecSamDev/cancamusa/blob/main/bin/extract-info.ps1
+
+
+# ACPI tables related
+# https://wiki.archlinux.org/index.php/DSDT
+# Dump on linux
+#   acpidump > acpidump.out
+# Dump on Windows
+#   https://acpica.org/downloads/binary-tools
+#    acpixtract -a acpi/4/acpi.dump
+
+# acpixtract -a acpidump.out
+# iasl -d DSDT.dat
+# Decompile: iasl -d dsdt.dat
+# Recompile: iasl -tc dsdt.dsl
+
+# if you want all arches support in QEMU, just set QTARGETS to empty
+QTARGETS="--target-list=i386-softmmu,x86_64-softmmu,i386-linux-user,x86_64-linux-user"
+
+
+#https://www.qemu.org/download/#source or https://download.qemu.org/
+qemu_version=9.2.2
+# libvirt - https://libvirt.org/sources/
+# changelog - https://libvirt.org/news.html
+libvirt_version=11.1.0
+seabios_version=1.16.3
+# virt-manager - https://github.com/virt-manager/virt-manager/releases
+# autofilled
+OS=""
+username=$SUDO_USER
+MAINTAINER=""
+# Skip last octet it will be auto populated
+VM_NETWORK_RANGE="192.168.1"
+DNS_PRIMARY="8.8.8.8"
+DNS_SECONDARY="8.8.4.4"
+
+systemctl mask sleep.target suspend.target hibernate.target hybrid-sleep.target
+
+#replace all occurances of CPU's in qemu with our fake one
+cpuid="Intel(R) Core(TM) i3-4130 CPU"
+#cpuid="AMD FX(tm)-4300 Quad-Core Processor"
+
+#KVMKVMKVM\\0\\0\\0 replacement
+hypervisor_string_replacemnt="GenuineIntel"
+#hypervisor_string_replacemnt="AuthenticAMD"
+
+#QEMU HARDDISK
+#qemu_hd_replacement="SanDisk SDSSD"
+qemu_hd_replacement="SAMSUNG MZ76E120"
+#QEMU DVD-ROM
+#qemu_dvd_replacement="HL-DT-ST WH1"
+#qemu_dvd_replacement="HL-PV-SG WB4"
+qemu_dvd_replacement="HL-PQ-SV WB8"
+
+#BOCHSCPU
+bochs_cpu_replacement="INTELCPU"
+#bochs_cpu_replacement="AMDCPU"
+
+#QEMU\/Bochs
+qemu_bochs_cpu='INTEL\/INTEL'
+#qemu_bochs_cpu='AMD\/AMD'
+
+#qemu
+qemu_space_replacement="intel "
+#qemu_space_replacement="amd "
+
+#06\/23\/99
+src_misc_bios_table="07\/02\/18"
+
+#04\/01\/2014
+src_bios_table_date2="11\/03\/2018"
+
+#01\/01\/2011
+src_fw_smbios_date="11\/03\/2018"
+
+# what to use as a replacement for QEMU in the tablet info
+PEN_REPLACER='<WOOT>'
+
+# what to use as a replacement for QEMU in the scsi disk info
+SCSI_REPLACER='<WOOT>'
+
+# what to use as a replacement for QEMU in the atapi disk info
+ATAPI_REPLACER='<WOOT>'
+
+# what to use as a replacement for QEMU in the microdrive info
+MICRODRIVE_REPLACER='<WOOT>'
+
+# what to use as a replacement for QEMU in bochs in drive info
+BOCHS_BLOCK_REPLACER='<WOOT>'
+BOCHS_BLOCK_REPLACER2='<WOOT>'
+BOCHS_BLOCK_REPLACER3='<WOOT>'
+
+# what to use as a replacement for BXPC in bochs in ACPI info
+BXPC_REPLACER='<WOOT>'
+
+# what to use as a replacement for seabios in config.h
+BOCHS_SEABIOS_BLOCK_REPLACER='<WOOT>'
+
+
+# if a config file is present, read it in
+if [ -f "./kvm-config.sh" ]; then
+        . ./kvm-config.sh
+fi
+
+
+# ToDO add to see if cpu supports VTx
+# egrep '(vmx|svm)' --color=always /proc/cpuinfo
+#* If your CPU is Intel, you need activate in __BIOS__ VT-x
+#    * (last letter can change, you can activate [TxT ](https://software.intel.com/en-us/blogs/2012/09/25/how-to-enable-an-intel-trusted-execution-technology-capable-server) too, and any other feature, but VT-* is very important)
+
+which aptitude 2>/dev/null
+if [ $? -eq 1 ]; then
+    sudo apt-get update 2>/dev/null
+    sudo apt-get install aptitude -y 2>/dev/null
+fi
+
+which pip3 2>/dev/null
+if [ $? -eq 1 ]; then
+    sudo python3-pip -y 2>/dev/null
+fi
+
+
+NC='\033[0m'
+RED='\033[0;31m'
+echo -e "${RED}[!] ONLY for UBUNTU 24.04${NC}"
+echo -e "${RED}\t[!] NEVER install packages from apt-get that installed by this script${NC}"
+echo -e "${RED}\t[!] NEVER use 'make install' - it poison system and no easy way to upgrade/uninstall/cleanup, use dpkg-deb${NC}"
+echo -e "${RED}\t[!] NEVER run 'python setup.py install' DO USE 'pip install .' the same as apt-get poisoning/upgrading${NC}\n"
+echo -e "${RED}\t[!] NEVER FORCE system upgrade (apt install -f), it will ignore blacklist and mess with packages installed by apt-get and this scritp!${NC}\n"
+echo -e "${RED}\t[!] NEVER! When upgrading ubuntu release, first uninstall qemu and libvirt, then upgrade and then install again! As is the same as force and bypasses apt mark-hold${NC}\n"
+
+function usage() {
+cat << EndOfHelp
+    Usage: $0 <func_name> <args> | tee $0.log
+    Commands - are case insensitive:
+        All - <username_optional> - Execs QEMU/SeaBios/KVM, username is optional
+        QEMU - Install QEMU from source,
+            DEFAULT support are x86 and x64, set ENV var QEMU_TARGERS=all to install for all arches
+        SeaBios - Install SeaBios and repalce QEMU bios file
+        Libvirt <username_optional> - install libvirt, username is optional
+        Apparmor - Install apparmor parsers
+        KVM - <3
+        GRUB - add IOMMU to grub command line
+        tcp_bbr - Enable TCP BBR congestion control
+            * https://www.cyberciti.biz/cloud-computing/increase-your-linux-server-internet-speed-with-tcp-bbr-congestion-control/
+        Mosh - mobile shell - https://mosh.org/
+        Clone - <VM_NAME> <path_to_hdd> <start_from_number> <#vm_to_create> <path_where_to_store> <network_range_base> <full/linked hdd>
+                * Example Win7x64 /VMs/Win7x64.qcow2 0 5 /var/lib/libvirt/images/ 192.168.1 linked
+                https://wiki.qemu.org/Documentation/CreateSnapshot
+        Libvmi - install LibVMI
+        Virtmanager - install virt-manager
+        Replace_qemu - only fix antivms in QEMU source
+        Replace_seabios <path> - only fix antivms in SeaBios source
+        Issues - will give you error - solution list
+        noip - Install No-ip deamon and enable on boot
+        SysRQ - enable SysRQ - https://sites.google.com/site/syscookbook/rhel/rhel-sysrq-key
+
+    Tips:
+        * Latest kernels having some KVM features :)
+            * apt-get search linux-image
+        * QCOW2 allocations types performance
+            * https://www.jamescoyle.net/how-to/1810-qcow2-disk-images-and-performance
+            * https://www.jamescoyle.net/how-to/2060-qcow2-physical-size-with-different-preallocation-settings
+EndOfHelp
+}
+
+function configure_needreboot(){
+    # Ubuntu 22
+    # Disabele: Daemons using outdated libraries
+    # https://stackoverflow.com/questions/73397110/how-to-stop-ubuntu-pop-up-daemons-using-outdated-libraries-when-using-apt-to-i
+    sed -i "/#\$nrconf{restart} = 'i';/s/.*/\$nrconf{restart} = 'a';/" /etc/needrestart/needrestart.conf
+    # Disabele: Pending kernel upgrade
+    # https://askubuntu.com/questions/1349884/how-to-disable-pending-kernel-upgrade-message
+    sed -i "s/#\$nrconf{kernelhints} = -1;/\$nrconf{kernelhints} = -1;/g" /etc/needrestart/needrestart.conf
+}
+
+function grub_iommu(){
+    # ToDo make a sed with regex which works on all cases
+    echo "[+] Updating GRUB for IOMMU support"
+    if ! sed -i 's/GRUB_CMDLINE_LINUX=""/GRUB_CMDLINE_LINUX="intel_iommu=on"/g' /etc/default/grub; then
+        echo "[-] GRUB patching failed, add intel_iommu=on manually"
+        return 1
+    fi
+    sudo update-grub
+    echo "[+] Please reboot"
+}
+
+function _sed_aux(){
+    # pattern path error_msg
+    if [ -f "$2" ] && ! sed -i "$1" "$2"; then
+        echo "$3"
+    fi
+}
+
+function _enable_tcp_bbr() {
+    # https://www.cyberciti.biz/cloud-computing/increase-your-linux-server-internet-speed-with-tcp-bbr-congestion-control/
+    # grep 'CONFIG_TCP_CONG_BBR' /boot/config-$(uname -r)
+    # grep 'CONFIG_NET_SCH_FQ' /boot/config-$(uname -r)
+    # egrep 'CONFIG_TCP_CONG_BBR|CONFIG_NET_SCH_FQ' /boot/config-$(uname -r)
+    if ! grep -q -E '^net.core.default_qdisc=fq' /etc/sysctl.conf; then
+        echo "net.core.default_qdisc=fq" >> /etc/sysctl.conf
+        echo "net.ipv4.tcp_congestion_control=bbr" >> /etc/sysctl.conf
+    fi
+
+    modprobe br_netfilter
+    echo "br_netfilter" >> /etc/modules
+    {
+        echo "net.bridge.bridge-nf-call-arptables = 0";
+        echo "net.bridge.bridge-nf-call-ip6tables = 0";
+        echo "net.bridge.bridge-nf-call-iptables = 0";
+        echo "net.core.rmem_max = 16777216";
+        echo "net.core.wmem_max = 16777216";
+        echo "net.ipv4.tcp_rmem = 4096 87380 16777216";
+        echo "net.ipv4.tcp_wmem = 4096 65536 16777216";
+        echo "net.ipv4.tcp_syncookies = 0" ;
+        echo "net.ipv4.tcp_mem = 50576   64768   98152" ;
+        echo "net.core.netdev_max_backlog = 2500" ;
+        echo "vm.swappiness = 1" ;
+        echo "vm.dirty_ratio = 15";
+    } >> /etc/sysctl.conf
+    sudo sysctl -p
+
+    sudo sysctl --system
+}
+
+function install_apparmor() {
+    aptitude install -f bison linux-generic-hwe-24.04 -y
+    aptitude install -f apparmor apparmor-profiles apparmor-profiles-extra apparmor-utils libapparmor-dev libapparmor1  python3-apparmor python3-libapparmor libapparmor-perl -y
+}
+
+
+function install_libvmi() {
+    # IMPORTANT:
+    # 1) LibVMI will have KVM support if libvirt is available during compile time.
+    #
+    # 2 )Enable GDB access to your KVM VM. This is done by adding '-s' to the VM creation line or
+    #       by modifying the VM XML definition used by libvirt as follows:
+    # Change:
+    # <domain type='kvm'>
+    # to:
+    # <domain type='kvm' xmlns:qemu='http://libvirt.org/schemas/domain/qemu/1.0'>
+    #
+    # Add:
+    # <qemu:commandline>
+    #   <qemu:arg value='-s'/>
+    # </qemu:commandline>
+    # under the <domain> level of the XML.
+
+    # The -s switch is a shorthand for -gdb tcp::1234
+
+    # LibVMI
+    cd /tmp || return
+
+    if [ ! -d "libvmi" ]; then
+        # git clone https://github.com/libvmi/libvmi.git
+        wget -q https://github.com/libvmi/libvmi/archive/refs/tags/v0.14.0.zip -O libvmi-v0.14.0.zip
+        unzip libvmi-v0.14.0.zip
+        echo "[+] Cloned LibVMI repo"
+    fi
+    mkdir -p /tmp/libvmi_builded/DEBIAN
+    echo -e "Package: libvmi\nVersion: 1.0-0\nArchitecture: $ARCH\nMaintainer: $MAINTAINER\nDescription: libvmi" > /tmp/libvmi_builded/DEBIAN/control
+    cd "libvmi-0.14.0" || return
+
+    # install deps
+    aptitude install -f -y cmake flex bison libglib2.0-dev libjson-c-dev libyajl-dev doxygen
+    # other deps
+    aptitude install -f -y pkg-config
+    mkdir build
+    cd build || return
+    cmake -DENABLE_XEN=OFF -DENABLE_KVM=ON -DENABLE_XENSTORE=OFF -DENABLE_BAREFLANK=OFF ..
+
+    make -j"$(nproc)" install DESTDIR=/tmp/libvmi_builded
+    dpkg-deb --build --root-owner-group /tmp/libvmi_builded
+    apt-get -y -o Dpkg::Options::="--force-overwrite" install /tmp/libvmi_builded.deb
+
+    /sbin/ldconfig
+
+    # LibVMI Python
+    cd /tmp || return
+
+    if [ ! -d "python" ]; then
+        # actual
+        # https://github.com/libvmi/python/tree/76d9ea85eefa0d77f6ad4d6089e757e844763917
+        # git checkout add_vmi_request_page_fault
+        # git pull
+        #git clone https://github.com/libvmi/python.git libvmi-python
+        PIP_BREAK_SYSTEM_PACKAGES=1 pip3 install libvmi
+        echo "[+] Cloned LibVMI Python repo"
+    fi
+    cd "libvmi-python" || return
+
+    # install deps
+    aptitude install -f -y python3-pkgconfig python3-cffi python3-future
+    #pip3 install .
+    python3 setup.py build
+    PIP_BREAK_SYSTEM_PACKAGES=1 pip3 install .
+
+    # Rekall
+    cd /tmp || return
+
+    if [ ! -d "rekall" ]; then
+        git clone https://github.com/google/rekall.git
+        echo "[+] Cloned Rekall repo"
+    fi
+
+    virtualenv /tmp/MyEnv
+    source /tmp/MyEnv/bin/activate
+    pip3 install --upgrade testresources setuptools pip wheel
+    pip3 install capstone
+    pip3 install --editable rekall/rekall-lib
+    # ERROR: rekall-efilter 1.6.0 has requirement future==0.16.0
+    pip3 install future==0.16.0
+    # TypeError: Set() missing 1 required positional argument: 'value'
+    pip3 install pyaff4==0.26.post6
+    pip3 install --editable rekall/rekall-core
+    pip3 install --editable rekall/rekall-agent
+    pip3 install --editable rekall
+    pip3 install --upgrade pyasn1
+    deactivate
+}
+
+# In progress...
+#
+# Errors: "The selected hypervisor has no events support!" - only Xen supported unfortunately
+#
+function install_pyvmidbg() {
+    # deps
+    aptitude install -f python3-docopt python3-lxml cabextract
+
+    # libvmi config entry
+    # /etc/libvmi.conf:
+    # win10 {
+    #    ostype = "Windows";
+    #    rekall_profile = "/etc/libvmi/rekall-profile.json";
+    # }
+
+    # Make Windows 10 profile
+    # Copy from Guest OS file "C:\Windows\System32\ntoskrnl.exe"
+    # rekall peinfo -f <path/to/ntoskrnl.exe>
+    #
+    # Once the PDB filename and GUID is known, creating the Rekall profile is done in two steps:
+    # rekall fetch_pdb <PDB filename> <GUID>
+    # rekall parse_pdb <PDB filename> > rekall-profile.json
+    #
+    # In case of Windows 10:
+    # rekall fetch_pdb ntkrnlmp <GUID>
+    # May cause error like "ERROR:rekall.1:Unrecognized type T_64PUINT4" (not dangerous)
+    # rekall parse_pdb ntkrnlmp > rekall-profile.json
+
+    # install rekall profile
+    # /etc/libvmi/rekall-profile.json
+
+    # git clone https://github.com/Wenzel/pyvmidbg.git
+    # virtualenv -p python3 venv
+    # source venv/bin/activate
+    # python3 setup.py build
+    # pip3 install .
+
+    # sudo python3 -m vmidbg 5000 <vm_name> --address 0.0.0.0 cmd -d
+
+    # git clone https://github.com/radare/radare2.git
+    # sys/install.sh
+    # r2 -d gdb://127.0.0.1:5000 -b 64
+}
+
+function install_libvirt() {
+    # http://ask.xmodulo.com/compile-virt-manager-debian-ubuntu.html
+    #rm -r /usr/local/lib/python2.7/dist-packages/libvirt*
+
+    # remove old
+    apt-get purge libvirt0 libvirt-bin -y
+    apt-mark hold libvirt0 libvirt-bin
+
+    # In Ubuntu 22.04 the libvirt0 package is named libvirt
+    apt-get purge libvirt libvirt-bin -y
+    apt-mark hold libvirt libvirt-bin
+
+    # Remove any library binaries that might have been leftover
+    rm -f /usr/local/lib/x86_64-linux-gnu/libvirt*
+
+    if [ ! -f /etc/apt/preferences.d/cape ]; then
+    # set to hold to avoid side problems
+        cat >> /etc/apt/preferences.d/cape << EOH
+Package: libvirt-bin
+Pin: release *
+Pin-Priority: -1
+Package: libvirt0
+Pin: release *
+Pin-Priority: -1
+Package: qemu
+Pin: release *
+Pin-Priority: -1
+Package: libvirt
+Pin: release *
+Pin-Priority: -1
+Package: gir1.2-libvirt-glib-1.0
+Pin: release *
+Pin-Priority: -1
+Package: libvirt-glib-1.0-0
+Pin: release *
+Pin-Priority: -1
+Package: libvirt-glib-1.0-data
+Pin: release *
+Pin-Priority: -1
+EOH
+    fi
+
+    # preferences.d doesnt work for me with qemu 7.0.0 and Ubuntu 22.04, to be sure, handle via dpkg
+    apt-mark hold qemu
+    echo "qemu hold" | sudo dpkg --set-selections 2>/dev/null
+    echo "[+] Checking/deleting old versions of Libvirt"
+    apt-get purge libvirt0 libvirt-bin libvirt-$libvirt_version 2>/dev/null
+    dpkg -l|grep "libvirt-[0-9]\{1,2\}\.[0-9]\{1,2\}\.[0-9]\{1,2\}"|cut -d " " -f 3|sudo xargs dpkg --purge --force-all 2>/dev/null
+    apt-get install meson plocate libxml2-utils gnutls-bin  gnutls-dev libxml2-dev bash-completion libreadline-dev numactl libnuma-dev python3-docutils flex libjson-c-dev pylint pycodestyle -y
+    # Remove old links
+    updatedb
+    temp_libvirt_so_path=$(locate libvirt-qemu.so | head -n1 | awk '{print $1;}')
+    libvirt_so_path="${temp_libvirt_so_path%/*}/"
+
+    if [[ -n "$libvirt_so_path" ]]; then
+        for so_path in $(ls "${libvirt_so_path}"libvirt*.so.0);  do
+            dest_path=/lib/$(uname -m)-linux-gnu/$(basename "$so_path")
+            if [ -f "$dest_path" ]; then
+                rm "$dest_path"
+            fi
+        done
+    fi
+
+    cd /tmp || return
+    if [ -f  libvirt-$libvirt_version.tar.xz ]; then
+        rm -r libvirt-$libvirt_version
+    else
+        wget -q https://libvirt.org/sources/libvirt-$libvirt_version.tar.xz
+        wget -q https://libvirt.org/sources/libvirt-$libvirt_version.tar.xz.asc
+        gpg --verify "libvirt-$libvirt_version.tar.xz.asc"
+    fi
+    tar xf libvirt-$libvirt_version.tar.xz
+    cd libvirt-$libvirt_version || return
+    if [ "$OS" = "Linux" ]; then
+        aptitude install -f plocate iptables python3-dev unzip numad libglib2.0-dev libsdl1.2-dev lvm2 python3-pip ebtables libosinfo-1.0-dev libnl-3-dev libnl-route-3-dev libyajl-dev xsltproc libdevmapper-dev libpciaccess-dev dnsmasq dmidecode librbd-dev libtirpc-dev -y 2>/dev/null
+
+        # see https://github.com/doomedraven/Tools/issues/100
+        install_apparmor
+
+        PIP_BREAK_SYSTEM_PACKAGES=1 pip3 install ipaddr ninja meson flake8 -U
+        # --prefix=/usr --localstatedir=/var --sysconfdir=/etc
+        #git init
+        #git remote add doomedraven https://github.com/libvirt/libvirt
+        # To see whole config sudo meson configure
+        # true now is enabled
+        cd /tmp/libvirt-$libvirt_version || return
+        sudo meson setup build -D system=true -D driver_remote=enabled -D driver_qemu=enabled -D driver_libvirtd=enabled -D qemu_group=libvirt -D qemu_user=root -D secdriver_apparmor=enabled -D apparmor_profiles=enabled -D bash_completion=auto
+
+        sudo ninja -C build
+        sudo ninja -C build install
+        if  [ $? -ne 0 ]; then
+            echo "${RED}Failed. Read the instalation log for details${NC}"
+            exit 1
+        fi
+
+        cd ..
+
+        updatedb
+        # ToDo fix bad destiny on some systems, example, first arg should be destiny to link not source
+        # /usr/lib/x86_64-linux-gnu/libvirt-qemu.so.0 -> /usr/lib64/libvirt-qemu.so
+        temp_libvirt_so_path=$(locate libvirt-qemu.so |grep -v "docker"| head -n1 | awk '{print $1;}')
+        temp_export_path=$(locate libvirt.pc | head -n1 | awk '{print $1;}')
+        libvirt_so_path="${temp_libvirt_so_path%/*}/"
+        if [[ $libvirt_so_path == "/usr/lib/x86_64-linux-gnu/" ]]; then
+            temp_libvirt_so_path=$(locate libvirt-qemu.so |grep -v "docker"| tail -1 | awk '{print $1;}')
+            libvirt_so_path="${temp_libvirt_so_path%/*}/"
+        fi
+        export_path="${temp_export_path%/*}/"
+        export PKG_CONFIG_PATH=$export_path
+
+        if [[ -n "$libvirt_so_path" ]]; then
+            # #ln -s /usr/lib64/libvirt-qemu.so /lib/x86_64-linux-gnu/libvirt-qemu.so.0
+            # 24.10.2024 Observed problem with ln -sf, but works just fine with cp
+            for so_path in $(ls "${libvirt_so_path}"libvirt*.so.0); do echo $so_path; cp "$so_path" /lib/$(uname -m)-linux-gnu/$(basename "$so_path"); done
+            ldconfig
+        else
+            echo "${RED}[!] Problem to create symlink, unknown libvirt_so_path path${NC}"
+            exit 1
+        fi
+    fi
+
+    # https://wiki.archlinux.org/index.php/Libvirt#Using_polkit
+    if [ -f /etc/libvirt/libvirtd.conf ]; then
+        path="/etc/libvirt/libvirtd.conf"
+    elif [ -f /usr/local/etc/libvirt/libvirtd.conf ]; then
+        path="/usr/local/etc/libvirt/libvirtd.conf"
+    fi
+
+    sed -i 's/#unix_sock_group/unix_sock_group/g' /etc/libvirt/*.conf
+    sed -i 's/#unix_sock_ro_perms = "0777"/unix_sock_ro_perms = "0770"/g' /etc/libvirt/*.conf
+    sed -i 's/#unix_sock_rw_perms = "0770"/unix_sock_rw_perms = "0770"/g' /etc/libvirt/*.conf
+    sed -i 's/#auth_unix_ro = "none"/auth_unix_ro = "none"/g' /etc/libvirt/*.conf
+    sed -i 's/#auth_unix_rw = "none"/auth_unix_rw = "none"/g' /etc/libvirt/*.conf
+    sed -i 's/#auth_unix_ro = "polkit"/auth_unix_ro = "none"/g' /etc/libvirt/*.conf
+    sed -i 's/#auth_unix_rw = "polkit"/auth_unix_rw = "none"/g' /etc/libvirt/*.conf
+
+    #echo "[+] Setting AppArmor for libvirt/kvm/qemu"
+    sed -i 's/#security_driver = "selinux"/security_driver = "apparmor"/g' /etc/libvirt/qemu.conf
+    # https://gitlab.com/apparmor/apparmor/wikis/Libvirt
+    FILES=(
+        /etc/apparmor.d/usr.sbin.libvirtd
+        /usr/sbin/libvirtd
+        /usr/libexec/virt-aa-helper
+    )
+    for file in "${FILES[@]}"; do
+        if [ -f "$file" ]; then
+            sudo aa-complain "$file"
+        fi
+    done
+
+    cd /tmp || return
+
+    if [ ! -f v$libvirt_version.zip ]; then
+        wget -q https://github.com/libvirt/libvirt-python/archive/v$libvirt_version.zip
+    fi
+    if [ -d "libvirt-python-$libvirt_version" ]; then
+        rm -r "libvirt-python-$libvirt_version"
+    fi
+    unzip v$libvirt_version.zip
+    cd "libvirt-python-$libvirt_version" || return
+    python3 setup.py build
+    PIP_BREAK_SYSTEM_PACKAGES=1 pip3 install .
+
+    cd ..
+    # Remove the $libvirt_version directory to permission errors when runing
+    # cd /opt/CAPEv2/ ; sudo -u cape /etc/poetry/bin/poetry run extra/poetry_libvirt_installer.sh later
+    rm -r libvirt-python-$libvirt_version
+
+    if [ "$OS" = "Linux" ]; then
+        # https://github.com/libvirt/libvirt/commit/e94979e901517af9fdde358d7b7c92cc055dd50c
+        groupname=""
+        if grep -q -E '^libvirtd:' /etc/group; then
+            groupname="libvirtd"
+        elif grep -q -E '^libvirt:' /etc/group; then
+            groupname="libvirt"
+        else
+            # create group if missed
+            groupname="libvirt"
+            groupadd libvirt
+        fi
+        usermod -G $groupname -a "$(whoami)"
+        if [[ -n "$username" ]]; then
+            usermod -G $groupname -a "$username"
+        fi
+
+        # check links
+        # sudo ln -s /usr/lib64/libvirt-qemu.so /lib/x86_64-linux-gnu/libvirt-qemu.so.0
+        # sudo ln -s /usr/lib64/libvirt.so.0 /lib/x86_64-linux-gnu/libvirt.so.0
+
+        # On Ubuntu 24.04 it introduces /etc/libvirt/network.conf
+        if [ -f /etc/libvirt/network.conf ]; then
+            sed -i 's/#firewall_backend = "nftables"/firewall_backend = "iptables"/g' /etc/libvirt/network.conf
+        fi
+
+        systemctl enable virtqemud.service virtnetworkd.service virtstoraged.service virtqemud.socket libvirtd.service
+        systemctl start libvirtd.service
+        echo "[+] You should logout and login "
+    fi
+
+}
+
+function install_virt_manager() {
+    #  pm-utils
+    # from build-dep
+    aptitude install -f libgirepository1.0-dev gtk-doc-tools python3 python3-pip gir1.2-govirt-1.0 libgovirt-dev \
+    libgovirt-common libgovirt2 unzip intltool augeas-doc ifupdown wodim cdrkit-doc indicator-application \
+    augeas-tools radvd auditd systemtap nfs-common zfsutils python-openssl-doc samba \
+    debootstrap sharutils-doc ssh-askpass gnome-keyring\
+    sharutils spice-client-glib-usb-acl-helper ubuntu-mono x11-common python3-gi \
+    python3-gi-cairo python3-pkg-resources \
+    python3-libxml2 libxml2-utils libxrandr2 libxrender1 libxshmfence1 libxtst6 libxv1 libyajl2 msr-tools osinfo-db \
+    python3-cairo python3-cffi-backend libxcb-present0 libxcb-render0 libxcb-shm0 libxcb-sync1 \
+    libxcb-xfixes0 libxcomposite1 libxcursor1 libxdamage1 libxfixes3 libxft2 libxi6 libxinerama1 \
+    libxkbcommon0 libusbredirhost1 libusbredirparser1 libv4l-0 libv4lconvert0 libvisual-0.4-0 libvorbis0a libvorbisenc2 \
+    libvte-2.91-0 libvte-2.91-common libwavpack1 libwayland-client0 libwayland-cursor0 libwayland-egl1-mesa libwayland-server0 \
+    libx11-xcb1 libxcb-dri2-0 libxcb-dri3-0 libsoup-gnome2.4-1 libsoup2.4-1 libspeex1 libspice-client-glib-2.0-8 \
+    libspice-client-gtk-3.0-5 libspice-server1 libtag1v5 libtag1v5-vanilla libthai-data libthai0 libtheora0 libtiff5-dev \
+    libtwolame0 libpython3-dev librados2 libraw1394-11 librbd1 librdmacm1 \
+    librsvg2-2 librsvg2-common libsamplerate0 libsdl1.2debian libshout3 libsndfile1 libpango-1.0-0 libpangocairo-1.0-0 \
+    libpangoft2-1.0-0 libpangoxft-1.0-0 libpciaccess0 libpixman-1-0 libproxy1v5 \
+    libpulse-mainloop-glib0 libpulse0 libgstreamer1.0-0 libgtk-3-0 libgtk-3-bin libgtk-3-common libgtk-vnc-2.0-0 \
+    libgudev-1.0-0 libgvnc-1.0-0 libharfbuzz0b libibverbs1 libiec61883-0 libindicator3-7 libiscsi7 libjack-jackd2-0 libjbig0 \
+    libjpeg-turbo8 libjpeg8 libjson-glib-1.0-0 libjson-glib-1.0-common liblcms2-2 libmp3lame0 libmpg123-0 libnl-route-3-200 \
+    libnspr4 libnss3 libogg0 libopus0 liborc-0.4-0 libosinfo-1.0-0 libcairo-gobject2 libcairo2 libcdparanoia0 libcolord2 \
+    libcups2 libdatrie1 libdbusmenu-glib4 libdbusmenu-gtk3-4 libdconf1 libdv4 libegl-mesa0 libegl1 libepoxy0 libfdt1 \
+    libfontconfig1 libgbm1 libgdk-pixbuf2.0-0 libgdk-pixbuf2.0-bin libgdk-pixbuf2.0-common libglapi-mesa libglvnd0  libgraphite2-3 \
+    libgstreamer-plugins-base1.0-0 libgstreamer-plugins-good1.0-0 gtk-update-icon-cache hicolor-icon-theme humanity-icon-theme \
+    ibverbs-providers  libaa1 libasound2 libasound2-data libasyncns0 libatk-bridge2.0-0 libatk1.0-0 \
+    libatspi2.0-0 libaugeas0 libavahi-client3 libavahi-common-data libavahi-common3 libavc1394-0 libbluetooth3 \
+    libcaca0 libcacard0 gir1.2-atk-1.0 gir1.2-freedesktop gir1.2-gdkpixbuf-2.0 gir1.2-gtk-3.0 gir1.2-gtk-vnc-2.0 \
+    gir1.2-libosinfo-1.0  gir1.2-pango-1.0 gir1.2-spiceclientglib-2.0 gir1.2-spiceclientgtk-3.0 gir1.2-vte-2.91 glib-networking \
+    glib-networking-common glib-networking-services gsettings-desktop-schemas gstreamer1.0-plugins-base gstreamer1.0-plugins-good \
+    gstreamer1.0-x adwaita-icon-theme at-spi2-core augeas-lenses cpu-checker dconf-gsettings-backend dconf-service \
+    fontconfig fontconfig-config fonts-dejavu-core genisoimage gir1.2-appindicator3-0.1 gir1.2-secret-1 \
+    gobject-introspection intltool pkg-config libxml2-dev libxslt-dev python3-dev gir1.2-gtk-vnc-2.0 gir1.2-spiceclientgtk-3.0 libgtk-3-dev \
+    plocate gir1.2-gtksource-4 libgtksourceview-4-0 libgtksourceview-4-common checkinstall pylint pycodestyle codespell -y
+    # should be installed first
+    # moved out as some 20.04 doesn't have this libs %)
+    aptitude install -f -y python3-ntlm-auth libpython3-stdlib libbrlapi-dev libgirepository1.0-dev python3-testresources
+    apt-get -y -o Dpkg::Options::="--force-overwrite" install ovmf
+    PIP_BREAK_SYSTEM_PACKAGES=1 pip3 install tqdm requests six urllib3 ipaddr ipaddress idna dbus-python certifi lxml cryptography pyOpenSSL chardet asn1crypto pycairo PySocks PyGObject pylint pytest
+
+    # not available in 22.04
+    if [ $(lsb_release -sc) != "jammy" ]; then
+        aptitude -f install python-enum34 libxenstore3.0 libnetcf1 libcroco3 libappindicator3-1 python-enum34-doc -y
+    fi
+
+    updatedb
+
+    temp_libvirt_so_path=$(locate libvirt-qemu.so | head -n1 | awk '{print $1;}')
+    temp_export_path=$(locate libvirt.pc | head -n1 | awk '{print $1;}')
+    libvirt_so_path="${temp_libvirt_so_path%/*}/"
+    export_path="${temp_export_path%/*}/"
+    export PKG_CONFIG_PATH=$export_path
+
+    cd /tmp || return
+    if [ ! -d "libvirt-glib" ]; then
+        git clone https://gitlab.com/libvirt/libvirt-glib.git
+    fi
+    cd libvirt-glib
+    meson setup builddir
+    meson compile -C builddir
+    sudo ninja -C builddir install
+    # for some reason i have to run it twice
+    sudo ninja -C builddir install
+    # mkdir -p /usr/local/lib/girepository-1.0/
+    # cp builddir/libvirt-glib/LibvirtGLib-1.0.typelib /usr/local/lib/girepository-1.0/
+    # Namespace LibvirtGLib not available
+    cp builddir/libvirt-glib/LibvirtGLib-1.0.typelib /usr/lib/girepository-1.0/
+    /sbin/ldconfig
+
+    if [ ! -d "virt-manager" ]; then
+        git clone https://github.com/virt-manager/virt-manager.git
+        echo "[+] Cloned Virt Manager repo"
+    fi
+    cd "virt-manager" || return
+    # https://github.com/virt-manager/virt-manager/blob/main/INSTALL.md
+    meson setup build
+    meson install -C build
+    if [ "$SHELL" = "/bin/zsh" ] || [ "$SHELL" = "/usr/bin/zsh" ] ; then
+        echo "export LIBVIRT_DEFAULT_URI=qemu:///system" >> "$HOME/.zsh"
+        # echo "export GI_TYPELIB_PATH=/usr/local/lib/girepository-1.0:$GI_TYPELIB_PATH" >> "$HOME/.zsh"
+    else
+        echo "export LIBVIRT_DEFAULT_URI=qemu:///system" >> "$HOME/.bashrc"
+        # echo "export GI_TYPELIB_PATH=/usr/local/lib/girepository-1.0:$GI_TYPELIB_PATH" >> "$HOME/.bashrc"
+    fi
+
+    if [ -f /usr/share/virt-manager/local/share/glib-2.0/schemas/org.virt-manager.virt-manager.gschema.xml ]; then
+        cp /usr/share/virt-manager/local/share/glib-2.0/schemas/org.virt-manager.virt-manager.gschema.xml /usr/share/glib-2.0/schemas/
+    elif [ -f /usr/local/share/glib-2.0/schemas/org.virt-manager.virt-manager.gschema.xml ]; then
+        cp /usr/local/share/glib-2.0/schemas/org.virt-manager.virt-manager.gschema.xml /usr/share/glib-2.0/schemas/
+    fi
+
+    sudo glib-compile-schemas --strict /usr/share/glib-2.0/schemas/
+    systemctl enable virtstoraged.service && systemctl start virtstoraged.service
+    systemctl enable libvirtd.service && systemctl start libvirtd.service
+
+    # i440FX-Issue Win7: Unable to complete install: 'XML error: The PCI controller with index='0' must be model='pci-root' for this machine type, but model='pcie-root' was found instead'
+    # Workaround: Edit Overiew in XML view and delete all controller entries with type="pci"
+    # Example:
+    # <controller type="pci" model="pcie-root"/>
+    # <controller type="pci" model="pcie-root-port"/>
+}
+
+function install_kvm_linux() {
+    sed -i 's/# deb-src/deb-src/g' /etc/apt/sources.list
+    apt-get update 2>/dev/null
+    aptitude install -f build-essential locate python3-pip gcc pkg-config cpu-checker intltool libtirpc-dev -y 2>/dev/null
+    aptitude install -f gtk-update-icon-cache -y 2>/dev/null
+
+    # WSL support
+    aptitude install -f gcc make gnutls-bin -y
+    install_libvirt
+
+    systemctl enable libvirtd.service virtlogd.socket
+    systemctl restart libvirtd.service virtlogd.socket
+
+    kvm-ok
+
+    if ! grep -q -E '^net.bridge.bridge-nf-call-ip6tables' /etc/sysctl.conf; then
+        cat >> /etc/sysctl.conf << EOF
+net.bridge.bridge-nf-call-ip6tables = 0
+net.bridge.bridge-nf-call-iptables = 0
+net.bridge.bridge-nf-call-arptables = 0
+EOF
+    fi
+    # Ubuntu 18.04:
+    # /dev/kvm permissions always changed to root after reboot
+    # "chown root:libvirt /dev/kvm" doesnt help
+    addgroup kvm
+    usermod -a -G kvm "$(whoami)"
+    if [[ -n "$username" ]]; then
+        usermod -a -G kvm "$username"
+    fi
+    chgrp kvm /dev/kvm
+    if [ ! -f /etc/udev/rules.d/50-qemu-kvm.rules ]; then
+        echo 'KERNEL=="kvm", GROUP="kvm", MODE="0660"' >> /etc/udev/rules.d/50-qemu-kvm.rules
+    fi
+
+    echo 1 > /sys/module/kvm/parameters/ignore_msrs
+    echo 0 > /sys/module/kvm/parameters/report_ignored_msrs
+
+    if [ ! -f /etc/modprobe.d/kvm.conf ]; then
+        cat >> /etc/modprobe.d/kvm.conf << EOF
+options kvm ignore_msrs=Y
+options kvm report_ignored_msrs=N
+EOF
+    fi
+}
+
+
+function replace_qemu_clues_public() {
+    echo '[+] Patching QEMU clues'
+    _sed_aux "s/QEMU HARDDISK/$qemu_hd_replacement/g" qemu*/hw/ide/core.c 'QEMU HARDDISK was not replaced in core.c'
+    _sed_aux "s/QEMU HARDDISK/$qemu_hd_replacement/g" qemu*/hw/scsi/scsi-disk.c 'QEMU HARDDISK was not replaced in scsi-disk.c'
+    _sed_aux "s/QEMU DVD-ROM/$qemu_dvd_replacement/g" qemu*/hw/ide/core.c 'QEMU DVD-ROM was not replaced in core.c'
+    _sed_aux "s/QEMU DVD-ROM/$qemu_dvd_replacement/g" qemu*/hw/ide/atapi.c 'QEMU DVD-ROM was not replaced in atapi.c'
+    _sed_aux "s/QEMU PenPartner tablet/$PEN_REPLACER PenPartner tablet/g" qemu*/hw/usb/dev-wacom.c 'QEMU PenPartner tablet'
+    _sed_aux 's/s->vendor = g_strdup("QEMU");/s->vendor = g_strdup("'"$SCSI_REPLACER"'");/g' qemu*/hw/scsi/scsi-disk.c 'Vendor string was not replaced in scsi-disk.c'
+    _sed_aux "s/QEMU CD-ROM/$qemu_dvd_replacement/g" qemu*/hw/scsi/scsi-disk.c 'Vendor string was not replaced in scsi-disk.c'
+    _sed_aux 's/padstr8(buf + 8, 8, "QEMU");/padstr8(buf + 8, 8, "'"$ATAPI_REPLACER"'");/g'  qemu*/hw/ide/atapi.c 'padstr was not replaced in atapi.c'
+    _sed_aux 's/QEMU MICRODRIVE/'"$MICRODRIVE_REPLACER"' MICRODRIVE/g' qemu*/hw/ide/core.c 'QEMU MICRODRIVE was not replaced in core.c'
+    _sed_aux "s/KVMKVMKVM\\\\0\\\\0\\\\0/$hypervisor_string_replacemnt/g" qemu*/target/i386/kvm/kvm.c 'KVMKVMKVM was not replaced in kvm.c'
+    _sed_aux 's/"bochs"/"'"$BOCHS_BLOCK_REPLACER"'"/g' qemu*/block/bochs.c 'BOCHS was not replaced in block/bochs.c'
+    _sed_aux 's/"BOCHS "/"ALASKA"/g' qemu*/include/hw/acpi/aml-build.h 'BOCHS was not replaced in block/bochs.c'
+    _sed_aux 's/Bochs Pseudo/Intel RealTime/g' qemu*/roms/ipxe/src/drivers/net/pnic.c 'Bochs Pseudo was not replaced in roms/ipxe/src/drivers/net/pnic.c'
+    _sed_aux 's/BXPC/'"$BXPC_REPLACER"'/g' qemu*/include/hw/acpi/aml-build.h 'BXPC was not replaced in include/hw/acpi/aml-build.h'
+}
+
+function replace_seabios_clues_public() {
+    echo "[+] Generating SeaBios Kconfig"
+    echo "[+] Fixing SeaBios antivms"
+    _sed_aux "s/Bochs/$BOCHS_SEABIOS_BLOCK_REPLACER/g" src/config.h 'Bochs was not replaced in src/config.h'
+    _sed_aux "s/BOCHSCPU/$bochs_cpu_replacement/g" src/config.h 'BOCHSCPU was not replaced in src/config.h'
+    _sed_aux "s/BOCHS /$BOCHS_SEABIOS_BLOCK_REPLACER/g" src/config.h 'BOCHS was not replaced in src/config.h'
+    _sed_aux "s/BXPC/$BXPC_REPLACER/g" src/config.h 'BXPC was not replaced in src/config.h'
+    _sed_aux "s/QEMU\/Bochs/$qemu_bochs_cpu/g" vgasrc/Kconfig 'QEMU\/Bochs was not replaced in vgasrc/Kconfig'
+    _sed_aux "s/qemu /$qemu_space_replacement/g" vgasrc/Kconfig 'qemu was not replaced in vgasrc/Kconfig'
+    _sed_aux "s/06\/23\/99/$src_misc_bios_table/g" src/misc.c 'change seabios date 1'
+    _sed_aux "s/04\/01\/2014/$src_bios_table_date2/g" src/fw/biostables.c 'change seabios date 2'
+    _sed_aux "s/01\/01\/2011/$src_fw_smbios_date/g" src/fw/smbios.c 'change seabios date 3'
+    _sed_aux 's/"SeaBios"/"AMIBios"/g' src/fw/biostables.c 'change seabios to amibios'
+    _sed_aux 's/"SeaBIOS"/"AMIBios"/g' src/fw/biostables.c 'change seabios to amibios'
+
+    FILES=(
+        src/hw/blockcmd.c
+        #src/fw/paravirt.c
+    )
+    for file in "${FILES[@]}"; do
+        _sed_aux 's/"QEMU"/"'"$BOCHS_BLOCK_REPLACER2"'"/g' "$file" "QEMU was not replaced in $file"
+    done
+
+    _sed_aux 's/"QEMU"/"'"$BOCHS_BLOCK_REPLACER3"'"/g' src/hw/blockcmd.c '"QEMU" was not replaced in  src/hw/blockcmd.c'
+
+    FILES=(
+        "src/fw/acpi-dsdt.dsl"
+        "src/fw/q35-acpi-dsdt.dsl"
+    )
+    for file in "${FILES[@]}"; do
+        _sed_aux 's/"BXPC"/"'"$BXPC_REPLACER"'"/g' "$file" "BXPC was not replaced in $file"
+    done
+    _sed_aux 's/"BXPC"/"AMPC"/g' "src/fw/ssdt-pcihp.dsl" 'BXPC was not replaced in src/fw/ssdt-pcihp.dsl'
+    _sed_aux 's/"BXDSDT"/"AMDSDT"/g' "src/fw/ssdt-pcihp.dsl" 'BXDSDT was not replaced in src/fw/ssdt-pcihp.dsl'
+    _sed_aux 's/"BXPC"/"AMPC"/g' "src/fw/ssdt-proc.dsl" 'BXPC was not replaced in "src/fw/ssdt-proc.dsl"'
+    _sed_aux 's/"BXSSDT"/"AMSSDT"/g' "src/fw/ssdt-proc.dsl" 'BXSSDT was not replaced in src/fw/ssdt-proc.dsl'
+    _sed_aux 's/"BXPC"/"AMPC"/g' "src/fw/ssdt-misc.dsl" 'BXPC was not replaced in src/fw/ssdt-misc.dsl'
+    _sed_aux 's/"BXSSDTSU"/"AMSSDTSU"/g' "src/fw/ssdt-misc.dsl" 'BXDSDT was not replaced in src/fw/ssdt-misc.dsl'
+    _sed_aux 's/"BXSSDTSUSP"/"AMSSDTSUSP"/g' src/fw/ssdt-misc.dsl 'BXSSDTSUSP was not replaced in src/fw/ssdt-misc.dsl'
+    _sed_aux 's/"BXSSDT"/"AMSSDT"/g' src/fw/ssdt-proc.dsl 'BXSSDT was not replaced in src/fw/ssdt-proc.dsl'
+    _sed_aux 's/"BXSSDTPCIHP"/"AMSSDTPCIHP"/g' src/fw/ssdt-pcihp.dsl 'BXPC was not replaced in src/fw/ssdt-pcihp.dsl'
+
+    FILES=(
+        src/fw/q35-acpi-dsdt.dsl
+        src/fw/acpi-dsdt.dsl
+        src/fw/ssdt-misc.dsl
+        src/fw/ssdt-proc.dsl
+        src/fw/ssdt-pcihp.dsl
+        src/config.h
+    )
+    for file in "${FILES[@]}"; do
+        _sed_aux 's/"BXPC"/"A M I"/g' "$file" "BXPC was not replaced in $file"
+    done
+}
+
+function install_qemu() {
+    cd /tmp || return
+
+    echo '[+] Cleaning QEMU old install if exists'
+    rm -r /usr/share/qemu >/dev/null 2>&1
+    dpkg -r ubuntu-vm-builder python-vm-builder >/dev/null 2>&1
+    dpkg -l |grep qemu |cut -d " " -f 3|xargs dpkg --purge --force-all >/dev/null 2>&1
+
+    echo '[+] Downloading QEMU source code'
+    if [ ! -f qemu-$qemu_version.tar.xz ]; then
+        wget -q "https://download.qemu.org/qemu-$qemu_version.tar.xz"
+        wget -q "https://download.qemu.org/qemu-$qemu_version.tar.xz.sig"
+        gpg --verify "qemu-$qemu_version.tar.xz.sig"
+    fi
+
+    if [ ! -f qemu-$qemu_version.tar.xz ]; then
+        echo "[-] Download qemu-$qemu_version failed"
+        exit
+    fi
+
+    if ! tar xf "qemu-$qemu_version.tar.xz" ; then
+        echo "[-] Failed to extract, check if download was correct"
+        exit 1
+    fi
+
+    if [ "$OS" = "Linux" ]; then
+        # ToDo add check if we have those repos already
+        aptitude install -f software-properties-common -y
+        add-apt-repository universe -y
+        apt-get update 2>/dev/null
+        aptitude install -f python3-pip ninja-build libssh2-1-dev vde2 liblzo2-dev libghc-gtk3-dev libsnappy-dev libbz2-dev libxml2-dev google-perftools libgoogle-perftools-dev libvde-dev python3-sphinx-rtd-theme -y
+        aptitude install -f debhelper libusb-1.0-0-dev libxen-dev uuid-dev xfslibs-dev libjpeg-dev libusbredirparser-dev device-tree-compiler texinfo libbluetooth-dev libbrlapi-dev libcap-ng-dev libcurl4-gnutls-dev libfdt-dev gnutls-dev libiscsi-dev libncurses5-dev libnuma-dev libcacard-dev librados-dev librbd-dev libsasl2-dev libseccomp-dev libspice-server-dev libaio-dev libcap-dev libattr1-dev libpixman-1-dev libgtk2.0-bin  libxml2-utils systemtap-sdt-dev uml-utilities libcapstone-dev -y
+        # qemu docs required
+        PERL_MM_USE_DEFAULT=1 perl -MCPAN -e install "Perl/perl-podlators"
+        PIP_BREAK_SYSTEM_PACKAGES=1 pip3 install sphinx ninja
+    fi
+    # WOOT
+    # some checks may be depricated, but keeping them for compatibility with old versions
+    #if [ $? -eq 0 ]; then
+        if declare -f -F "replace_qemu_clues"; then
+            # Private version
+            replace_qemu_clues
+        else
+            # Public version
+            replace_qemu_clues_public
+        fi
+
+        cd qemu-$qemu_version/roms/ || exit 1
+        echo '[+] Making bios.bin ...'
+        sed -i 's/CONFIG_XEN=y/CONFIG_XEN=n/g' ./config.seabios-microvm
+        sed -i 's/CONFIG_XEN=y/CONFIG_XEN=n/g' ./config.seabios-128k
+        sed -i 's/PYTHON=python/PYTHON=python3/g' seabios/Makefile
+        PIP_BREAK_SYSTEM_PACKAGES=1 make bios
+        if [ $? -eq 0 ]; then
+            echo '[+] Completed '
+        else
+            echo '[-] Failed $?'
+        fi
+
+        echo '[+] Making vgabios bins...'
+        PIP_BREAK_SYSTEM_PACKAGES=1 make vgabios
+        if [ $? -eq 0 ]; then
+            echo '[+] Completed '
+        else
+            echo '[-] Failed $?'
+        fi
+
+        cd -
+
+        # ToDo reintroduce it?
+        #if [ $fail -eq 0 ]; then
+            echo '[+] Starting compile it'
+            cd qemu-$qemu_version || return
+            # add in future --enable-netmap https://sgros-students.blogspot.com/2016/05/installing-and-testing-netmap.html
+            # remove --target-list=i386-softmmu,x86_64-softmmu,i386-linux-user,x86_64-linux-user  if you want all targets
+                ./configure $QTARGETS --prefix=/usr --libexecdir=/usr/lib/qemu --localstatedir=/var --bindir=/usr/bin/ --enable-gnutls --enable-docs --enable-gtk --enable-vnc --enable-vnc-sasl --enable-curl --enable-kvm  --enable-linux-aio --enable-cap-ng --enable-vhost-net --enable-vhost-crypto --enable-spice --enable-usb-redir --enable-lzo --enable-snappy --enable-bzip2 --enable-coroutine-pool --enable-replication --enable-tools
+                #  --enable-capstone
+            if  [ $? -eq 0 ]; then
+                echo '[+] Starting Install it'
+                if [ -f /usr/share/qemu/qemu_logo_no_text.svg ]; then
+                    rm /usr/share/qemu/qemu_logo_no_text.svg
+                fi
+                mkdir -p /tmp/qemu-"$qemu_version"_builded/DEBIAN
+                echo -e "Package: qemu\nVersion: $qemu_version\nArchitecture: $ARCH\nMaintainer: $MAINTAINER\nDescription: Custom antivm qemu" > /tmp/qemu-"$qemu_version"_builded/DEBIAN/control
+                make -j"$(nproc)" install DESTDIR=/tmp/qemu-"$qemu_version"_builded
+                if [ "$OS" = "Linux" ]; then
+                    dpkg-deb --build --root-owner-group /tmp/qemu-"$qemu_version"_builded
+                    apt-get -y -o Dpkg::Options::="--force-overwrite" install /tmp/qemu-"$qemu_version"_builded.deb
+                elif [ "$OS" = "Darwin" ]; then
+                    make -j"$(nproc)" install
+                fi
+                # hack for libvirt/virt-manager
+                if [ ! -L /usr/bin/qemu-system-x86_64-spice ]; then
+                    ln -s /usr/bin/qemu-system-x86_64 /usr/bin/qemu-system-x86_64-spice
+                fi
+                if [ ! -L /usr/bin/kvm-spice ]; then
+                    ln -s /usr/bin/qemu-system-x86_64 /usr/bin/kvm-spice
+                fi
+                if [ ! -L /usr/bin/kvm ]; then
+                    ln -s /usr/bin/qemu-system-x86_64 /usr/bin/kvm
+                fi
+                if  [ $? -eq 0 ]; then
+                    echo '[+] Patched, compiled and installed'
+                else
+                    echo '[-] Install failed'
+                fi
+            else
+                echo '[-] Compilling failed'
+            fi
+        #else
+        #    echo '[-] Check previous output'
+        #    exit
+        #fi
+
+    #else
+    #    echo '[-] Download QEMU source was not possible'
+    #fi
+    if [ "$OS" = "linux" ]; then
+        dpkg --get-selections | grep "qemu" | xargs apt-mark hold
+        dpkg --get-selections | grep "libvirt" | xargs apt-mark hold
+        # apt-mark unhold qemu libvirt
+    fi
+
+}
+
+function install_seabios() {
+    cd /tmp || return
+    echo '[+] Installing SeaBios dependencies'
+    aptitude install -f git acpica-tools -y
+    if [ ! -f "seabios_${seabios_version}.tar.gz" ]; then
+        rm "seabios_${seabios_version}"
+        wget https://github.com/coreboot/seabios/archive/refs/tags/rel-${seabios_version}.tar.gz -O "seabios_${seabios_version}.tar.gz"
+    fi
+
+    if tar xf "seabios_${seabios_version}.tar.gz"; then
+        cd "seabios-rel-${seabios_version}" || return
+        if declare -f -F "replace_seabios_clues"; then
+            replace_seabios_clues
+        else
+            replace_seabios_clues_public
+        fi
+        # make help
+        # make menuconfig -> BIOS tables -> disable Include default ACPI DSDT
+        # get rid of this hack
+        sed -i 's/CONFIG_XEN=y/CONFIG_XEN=n/g' .config
+        sed -i 's/PYTHON=python/PYTHON=python3/g' Makefile
+        # PIP_BREAK_SYSTEM_PACKAGES=1 make -j"$(nproc)" 2>/dev/null
+        # Windows 10(latest rev.) is uninstallable without ACPI_DSDT
+        # sed -i 's/CONFIG_ACPI_DSDT=y/CONFIG_ACPI_DSDT=n/g' .config
+        if PIP_BREAK_SYSTEM_PACKAGES=1 make -j "$(nproc)"; then
+            mkdir -p /usr/share/qemu
+            echo '[+] Replacing old bios.bin to new out/bios.bin'
+            bios=0
+            SHA256_BIOS=$(shasum -a 256 out/bios.bin|awk '{print $1}')
+
+            #if [ ! -f /usr/share/qemu/bios.bin_back ]; then
+            #    cp /usr/share/qemu/bios.bin /usr/share/qemu/bios.bin_back
+            #    cp /usr/share/qemu/bios-256k.bin /usr/share/qemu/bios-256k.bin_back
+            #fi
+
+            FILES=(
+                "/usr/share/qemu/bios.bin"
+                "/usr/share/qemu/bios-256k.bin"
+            )
+            for file in "${FILES[@]}"; do
+                cp -vf out/bios.bin "$file"
+                SHA256_BIOS_TMP=$(shasum -a 256 $file|awk '{print $1}')
+                if [[ $SHA256_BIOS_TMP != $SHA256_BIOS ]]; then
+                    echo "[-] BIOS hashes doesn't match: $SHA256_BIOS - $SHA256_BIOS_TMP"
+                    bios=0
+                else
+                    bios=1
+                fi
+            done
+
+            if grep -q -E 'prebuild.qemu.org' /usr/share/qemu/bios.bin; then
+                echo 'YOUR BIOS /usr/share/qemu/bios.bin is default, you might have max RAM limit inside of the VM, replace with latest compiled'
+                bios=0
+            fi
+
+            if [ $bios -eq 1 ]; then
+                echo '[+] Patched bios.bin placed correctly'
+            else
+                echo '[-] Bios patching failed'
+            fi
+        else
+            echo '[-] Bios compilation failed'
+        fi
+        cd - || return
+    else
+        echo '[-] Check if git installed or network connection is OK'
+    fi
+}
+
+function enable_sysrq(){
+    if ! grep -q -E '^kernel.sysrq=1' /etc/sysctl.conf; then
+        echo "kernel.sysrq=1" >> /etc/sysctl.conf
+    fi
+}
+
+function issues(){
+cat << EndOfHelp
+### Links:
+    * https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/virtualization_deployment_and_administration_guide/sect-troubleshooting-common_libvirt_errors_and_troubleshooting
+    * https://wiki.libvirt.org/page/Failed_to_connect_to_the_hypervisor
+
+### Errors and Solutions
+
+    * Error:
+        * VM can't use more than 2-3Gb of ram for x64 VM
+    * Solution:
+        * Ensure that you not using default QEMU bios.bin, use next command to check, it shouldn't find coincidences
+            * grep "prebuild.qemu.org" /usr/share/qemu/bios.bin
+    * Error:
+        * GLib-GIO-ERROR **: 09:05:35.162: Settings schema 'org.virt-manager.virt-manager' is not installed
+    * Solution:
+        * sudo glib-compile-schemas --strict /usr/share/glib-2.0/schemas/
+
+    * Error:
+        * error: internal error: cannot load AppArmor profile
+    * Solution:
+        * Any apparmor error try to run:  /usr/libexec/virt-aa-helper or journalctl -u libvirtd | cat
+        * most of the issues with AppArmor is related to libvirt problems
+
+    * Error:
+        * /usr/libexec/virt-aa-helper: error while loading shared libraries: libvirt.so.0: cannot open shared object file: No such file or directory
+    * Solution:
+        strace -Tfe trace=openat /usr/libexec/virt-aa-helper
+
+    * Error
+        /usr/libexec/virt-aa-helper: error while loading shared libraries: libvirt.so.0: cannot open shared object file: Permission denied
+    * Solution:
+        aa-complain /usr/libexec/virt-aa-helper
+
+    * Error:
+        * If you getting an apparmor error
+    * Solution
+        * sed -i 's/#security_driver = "apparmor"/security_driver = "apparmor"/g' /etc/libvirt/qemu.conf
+
+    * Error:
+        required by /usr/lib/libvirt/storage-file/libvirt_storage_file_fs.so
+    * Solution:
+        systemctl daemon-reload
+        systemctl restart libvirtd libvirt-guests.service
+
+    * Error:
+        /libvirt.so.0: version LIBVIRT_PRIVATE_x.x.0' not found (required by /usr/sbin/libvirtd)
+    * Solutions:
+        1. apt-get purge libvirt0 libvirt-bin
+        2. reboot
+        3. $0 libvirt
+
+        Can be extra help, but normally solved with first3 steps
+        1. ldd /usr/sbin/libvirtd
+        2. ls -lah /usr/lib/libvirt*
+            * Make sure what all symlinks pointing to last version
+    * Error:
+        * Libvirt sometimes causes access denied errors with access the locations different from "/var/lib/libvirt/images"
+    * Solution:
+        * sed -i 's/user = "root"/user = "$(whoami)"/g' /etc/libvirt/qemu.conf
+        * sed -i 's/user = "root"/group = "libvirt"/g' /etc/libvirt/qemu.conf
+
+    * Error:
+        libvirt: Polkit error : authentication unavailable: no polkit agent available to authenticate action 'org.libvirt.unix.manage'
+    * Solutions:
+        1.
+            sed -i 's/#unix_sock_group/unix_sock_group/g' /etc/libvirt/libvirtd.conf
+            sed -i 's/#unix_sock_ro_perms = "0777"/unix_sock_ro_perms = "0770"/g' /etc/libvirt/libvirtd.conf
+            sed -i 's/#unix_sock_rw_perms = "0770"/unix_sock_rw_perms = "0770"/g' /etc/libvirt/libvirtd.conf
+            sed -i 's/#auth_unix_ro = "none"/auth_unix_ro = "none"/g' /etc/libvirt/libvirtd.conf
+            sed -i 's/#auth_unix_rw = "none"/auth_unix_rw = "none"/g' /etc/libvirt/libvirtd.conf
+        2. Add ssh key to $HOME/.ssh/authorized_keys
+            virt-manager -c "qemu+ssh://user@host/system?socket=/var/run/libvirt/libvirt-sock"
+
+    * Error:
+        unable to execute QEMU command 'getfd'
+    * Solution:
+        Compile without apparmor
+
+    * Slow HDD/Snapshot taking performance?
+        Modify
+            <driver name='qemu' type='qcow2'/>
+        To
+            <driver name='qemu' type='qcow2' cache='none' io='native'/>
+    * Error:
+        error : virPidFileAcquirePath:422 : Failed to acquire pid file '/var/run/libvirtd.pid': Resource temporarily unavailable
+    * Solution
+        ps aux | grep libvirtd
+    * Error:
+        Failed to connect socket to '/var/run/libvirt/libvirt-sock': Permission denied
+    * Solution:
+        * usermod -G libvirt -a username
+        * log out and log in
+
+    * Error:
+        yara: error while loading shared libraries: libyara.so.3: cannot open shared object file: No such file or directory
+
+    Solution 1:
+        aptitude install -f libyara3
+    Solution 2:
+        sudo echo "/usr/local/lib" >> /etc/ld.so.conf
+        sudo ldconfig
+
+    # Fixes from http://ask.xmodulo.com/compile-virt-manager-debian-ubuntu.html
+    1. ImportError: No module named libvirt
+    $ ./kvm-qemu.sh libvirt
+
+    2. ImportError: No module named libxml2
+    $ pip3 install libxml2-python3
+
+    3. ImportError: No module named requests
+    $ aptitude install -f python-requests
+
+    4. Error launching details: Namespace GtkVnc not available
+    $ ./kvm-qemu.sh libvirt
+
+    5. ValueError: Namespace LibvirtGLib not available
+    $ ./kvm-qemu.sh libvirt
+        Is due to missed LibvirtGLib-1.0.typelib inside of /usr/lib/girepository-1.0/
+
+    6. ValueError: Namespace Libosinfo not available
+    $ aptitude install -f libosinfo-1.0
+
+    7. ImportError: No module named ipaddr
+    $ aptitude install -f python-ipaddr
+
+    8. Namespace Gtk not available: Could not open display: localhost:10.0
+    8 ValueError: Namespace GtkSource not available
+    $ aptitude install -f gir1.2-gtksource-4 libgtksourceview-4-0 libgtksourceview-4-common
+    * Error will specify version, example gi.require_version("GtkSource", "4"), if that version is not available for your distro
+    * you will need downgrade your virt-manager with $ sudo rm -r /usr/share/virt-manager and install older version
+
+    9. ImportError: cannot import name Vte
+    $ aptitude install -f gir1.2-vte-2.90
+
+    10. TypeError: Couldn't find foreign struct converter for 'cairo.Context'
+    $ aptitude install -f python3-gi-cairo
+
+
+EndOfHelp
+}
+
+
+function cloning() {
+    if [ $# -lt 6 ]; then
+        echo '[-] You must provide <VM_NAME> <path_to_hdd> <start_from_number> <#vm_to_create> <path_where_to_store> <network_base> <full/linked hdd>'
+        exit 1
+    fi
+
+    which virt-manager 2>/dev/null
+    if [ $? -eq 1 ]; then
+        echo "You need to install virt-manager. Run sudo $0 virtmanager"
+        exit 1
+    fi
+
+    virsh net-list --all|grep hostonly
+    if [ $? -eq 1 ]; then
+        cat > /tmp/hostonly.xml << EOF
+<network xmlns:dnsmasq='http://libvirt.org/schemas/network/dnsmasq/1.0'>
+  <name>hostonly</name>
+  <uuid>9385b182-075b-429e-a089-4b05374e87c2</uuid>
+  <bridge name='virbr1' stp='on' delay='0'/>
+  <mac address='12:22:34:44:56:66'/>
+  <domain name='hostonly'/>
+  <dns>
+    <forwarder addr='${DNS_PRIMARY}'/>
+    <forwarder addr='${DNS_SECONDARY}'/>
+  </dns>
+  <ip address='${VM_NETWORK_RANGE}.1' netmask='255.255.255.0'>
+    <dhcp>
+      <range start='${VM_NETWORK_RANGE}.2' end='${VM_NETWORK_RANGE}.254'/>
+    </dhcp>
+  </ip>
+  <route address='0.0.0.0' prefix='24' gateway='${VM_NETWORK_RANGE}.1'/>
+  <dnsmasq:options>
+    <!--set netbios-over-TCP/IP nameserver(s) aka WINS server(s)-->
+    <dnsmasq:option value='dhcp-option=44,0.0.0.0'/>
+    <!--netbios datagram distribution server-->
+    <dnsmasq:option value='dhcp-option=45,0.0.0.0'/>
+    <!--netbios node type-->
+    <dnsmasq:option value='dhcp-option=46,8'/>
+    <!--Send an empty WPAD option. This may be REQUIRED to get windows 7 to behave.-->
+    <dnsmasq:option value='dhcp-option=252,"\n"'/>
+    <!--Prevent DNS rebinding to internal hosts.-->
+    <dnsmasq:option value='stop-dns-rebind'/>
+    <!-- To allow rebinding for specific domains, uncomment and modify the following line. -->
+    <!-- <dnsmasq:option value='rebind-domain-ok=/example.com/'/> -->
+  </dnsmasq:options>
+</network>
+EOF
+
+    virsh net-define /tmp/hostonly.xml
+    virsh net-autostart hostonly
+    virsh net-start hostonly
+    fi
+    for i in $(seq "$3" "$4"); do
+        worked=1
+        # bad macaddress can be generated
+        while [ $worked -eq 1 ]; do
+            macaddr=$(hexdump -n 6 -ve '1/1 "%.2x "' /dev/random | awk -v a="2,6,a,e" -v r="$RANDOM" 'BEGIN{srand(r);}NR==1{split(a,b,",");r=int(rand()*4+1);printf "%s%s:%s:%s:%s:%s:%s\n",substr($1,0,1),b[r],$2,$3,$4,$5,$6}') 2>/dev/null
+            if virt-clone --print-xml -n "$1_$i" -o "$1" -m "$macaddr" -f "${5}/${1}_${i}.qcow2" |sed "s|<driver name=\"qemu\" type=\"qcow2\" cache=\"none\" io=\"native\"/>|<driver name=\"qemu\" type=\"qcow2\" cache=\"none\" discard=\"unmap\" detect_zeroes=\"on\" io=\"native\"/>|g" > "$5/$1_$i.xml"; then
+                if [ ! -f "${5}/${1}_${i}.qcow2" ]; then
+                    echo "Creating $5/$1_$i.qcow2"
+                    if [ "$7" == "linked" ]; then
+                        qemu-img create -f qcow2 -F qcow2 -b "$2" "$5/$1_$i.qcow2"
+                    else
+                        # full clone
+                        cp "$2" "$5/$1_$i.qcow2"
+                    fi
+                fi
+                #2>/dev/null
+                virsh net-update hostonly add-last ip-dhcp-host "<host mac='${macaddr}' name='${1}_${i}' ip='${VM_NETWORK_RANGE}.${i}'/>" --live --config
+                sed -i "s|<domain type='kvm'>|<domain type='kvm' xmlns:qemu='http://libvirt.org/schemas/domain/qemu/1.0'>|g" "$5/$1_$i.xml"
+                virsh define "$5/$1_$i.xml"
+                worked=0
+            fi
+        done
+        echo "<host mac='$macaddr' name='$1_$i' ip='$6.$((i+1))'/>"
+    done
+
+    echo "[+] Enjoy"
+}
+
+
+# Doesn't work ${$1,,}
+COMMAND=$(echo "$1"|tr "[:upper:]" "[:lower:]")
+
+case $COMMAND in
+    '-h')
+        usage
+        exit 0;;
+    'issues')
+        issues
+        exit 0;;
+esac
+
+#if ([ "$COMMAND" = "all" ] || [ "$COMMAND" = "libvirt" ]) && [ $# -eq 2 ]; then
+#    if [ id -u "$2" ]; then
+#        username="$2"
+#    else
+#        echo "[-] username $2 doesn't exist"
+#        exit 1
+#    fi
+#fi
+
+#check if start with root
+if [ "$EUID" -ne 0 ]; then
+    echo 'This script must be run as root'
+    exit 1
+fi
+
+OS="$(uname -s)"
+MAINTAINER="$(whoami)"_"$(hostname)"
+ARCH="$(dpkg --print-architecture)"
+# add-apt-repository universe
+# apt-get update && apt-get upgrade
+#make
+
+case "$COMMAND" in
+'issues')
+    issues;;
+'all')
+    configure_needreboot
+    aptitude install -f language-pack-UTF-8 python3-pip -y
+    install_qemu
+    install_seabios
+    install_kvm_linux
+    # add check if server or desktop
+    # install_virt_manager
+    # check if all features enabled
+    virt-host-validate qemu
+    systemctl daemon-reload
+    systemctl restart libvirtd libvirt-guests.service
+    _enable_tcp_bbr
+    grub_iommu
+    enable_sysrq
+    # check if is desktop, install virt-manager, ignore on server edition
+    if dpkg -l |grep -q "ii  ubuntu-desktop"; then
+        install_virt_manager
+    fi
+    ;;
+'apparmor')
+    install_apparmor;;
+'qemu')
+    install_qemu;;
+'seabios')
+    install_seabios;;
+'kvm')
+    install_kvm_linux;;
+'tcp_bbr')
+    _enable_tcp_bbr;;
+'replace_qemu')
+    if declare -f -F "replace_qemu_clues"; then
+        replace_qemu_clues
+    else
+        replace_qemu_clues_public
+    fi
+    ;;
+'sysrq')
+    enable_sysrq;;
+'libvirt')
+    install_libvirt;;
+'libvmi')
+    install_libvmi;;
+'virtmanager')
+    install_virt_manager;;
+'clone')
+    cloning "$2" "$3" "$4" "$5" "$6" "$7" "$8";;
+'noip')
+    if [ "$OS" = "Linux" ]; then
+        cd /tmp || return
+        if [ ! -f noip-duc-linux.tar.gz ]; then
+            wget -q http://www.no-ip.com/client/linux/noip-duc-linux.tar.gz
+        fi
+        tar xf noip-duc-linux.tar.gz
+        rm noip-duc-linux.tar.gz
+        cd "noip-*" || return
+        make install
+        crontab -l | { cat; echo "@reboot sleep 10 && /usr/local/bin/noip2 -c /usr/local/etc/no-ip2.conf"; } | crontab -
+    fi
+    ;;
+'replace_seabios')
+    if [ ! -d "$2" ]; then
+        echo "[-] Pass the path to SeaBios folder"
+        exit 1
+    fi
+    cd "$2" || exit 1
+    if declare -f -F "replace_seabios_clues"; then
+        replace_seabios_clues
+    else
+        replace_seabios_clues_public
+    fi
+    ;;
+'grub')
+    grub_iommu;;
+'needreboot')
+    configure_needreboot;;
+'mosh')
+    if [ "$OS" = "Linux" ]; then
+        sudo aptitude install -f mosh -y
+    else
+        echo "https://mosh.org/#getting"
+    fi
+    ;;
+*)
+    usage;;
+esac
diff --git a/installer/suricata_from_source.sh b/installer/suricata_from_source.sh
new file mode 100644
index 00000000000..657d2d151d3
--- /dev/null
+++ b/installer/suricata_from_source.sh
@@ -0,0 +1,82 @@
+#!/bin/bash
+sudo apt install -y checkinstall libssl-dev liblzma-dev python3 python3-pip python3-distutils libnspr4-dev libnss3-dev jq unzip \
+sqlite3 libsqlite3-dev libreadline-dev libmaxminddb-dev
+# install pcre
+#sudo apt -y install libbz2-1.0 libbz2-dev libbz2-ocaml libbz2-ocaml-dev
+#wget https://ftp.pcre.org/pub/pcre/pcre-8.43.zip
+#unzip pcre-8.43.zip && cd pcre-8.43
+#./configure --prefix=/usr --docdir=/usr/share/doc/pcre-8.43 --enable-unicode-propertiess --enable-pcre16s --enable-pcre32s --enable-pcregrep-libzs --enable-pcregrep-libbz2s --enable-pcretest-libreadlines --disable-static
+#make -j"$(nproc)"
+#sudo checkinstall -D --pkgname=pcre --pkgversion=8.43 --default
+#sudo dpkg -i --force-overwrite pcre_8.43-1_amd64.deb
+#sudo mv -v /usr/lib/libpcre.so.* /lib
+#sudo ln -sfv ../../lib/$(readlink /usr/lib/libpcre.so) /usr/lib/libpcre.so
+#ToDo
+# -- Checking for module 'libpcre>=8.41'
+# Speedup suricata >= 3.1
+# https://redmine.openinfosecfoundation.org/projects/suricata/wiki/Hyperscan
+# https://github.com/01org/hyperscan
+cd /tmp || return
+hyperscan_info=$(curl -s https://api.github.com/repos/intel/hyperscan/releases/latest)
+hyperscan_version=$(echo "$hyperscan_info "|jq .tag_name|sed "s/\"//g")
+wget -q $(echo "$hyperscan_info" | jq ".zipball_url" | sed "s/\"//g")
+unzip "$hyperscan_version"
+directory=$(ls | grep "intel-hyperscan-*")
+cd "$directory" || return
+#git clone https://github.com/01org/hyperscan.git
+#cd hyperscan/ || return
+mkdir builded
+cd builded || return
+sudo apt install cmake libboost-dev ragel libhtp2 -y
+# doxygen sphinx-common libpcap-dev
+cmake -DBUILD_STATIC_AND_SHARED=1 ../
+# tests
+#bin/unit-hyperscan
+make -j"$(nproc)"
+sudo checkinstall -D --pkgname=hyperscan --default
+echo '[+] Configure Suricata'
+mkdir /var/run/suricata
+sudo chown cuckoo:cuckoo /var/run/suricata -R
+# if we wan suricata with hyperscan:
+sudo apt -y install libpcre3 libpcre3-dbg \
+build-essential autoconf automake libtool libpcap-dev libnet1-dev \
+libyaml-0-2 libyaml-dev zlib1g zlib1g-dev libcap-ng-dev libcap-ng0 \
+make libmagic-dev libjansson-dev libjansson4 pkg-config liblz4-dev \
+python python3-pip libgeoip-dev
+# install rust, cargo
+curl --proto '=https' --tlsv1.2 -sSf https://sh.rustup.rs | sh
+source "$HOME"/.cargo/env
+cargo install cargo-vendor
+sudo apt -y install libnetfilter-queue-dev libnetfilter-queue1 libnfnetlink-dev libnfnetlink0
+pip3 install pyyaml
+echo "/usr/local/lib" | sudo tee --append /etc/ld.so.conf.d/usrlocal.conf
+sudo ldconfig
+#cd /tmp || return
+#wget https://github.com/luigirizzo/netmap/archive/v11.4.zip
+#unzip v11.4.zip
+#cd netmap-* || return
+#./configure
+#make -j"$(getconf _NPROCESSORS_ONLN)"
+suricata_version=5.0.1
+# https://redmine.openinfosecfoundation.org/projects/suricata/wiki/Ubuntu_Installation
+cd /tmp || return
+if [ ! -f suricata-"$suricata_version".tar.gz ]; then
+    wget https://www.openinfosecfoundation.org/download/suricata-"$suricata_version".tar.gz && tar xf suricata-"$suricata_version".tar.gz
+fi
+cd suricata-"$suricata_version" || return
+#wget "https://www.openinfosecfoundation.org/download/suricata-current.tar.gz"
+#wget "https://www.openinfosecfoundation.org/download/suricata-current.tar.gz.sig"
+#gpg --verify "suricata-current.tar.gz.sig"
+#tar -xzf "suricata-current.tar.gz"
+#rm "suricata-current.tar.gz"
+#directory=`ls -p | grep suricata*/`
+#cd $directory || return
+./configure --enable-nfqueue --prefix=/usr --sysconfdir=/etc --localstatedir=/var --with-libhs-includes=/usr/local/include/hs/ --with-libhs-libraries=/usr/local/lib/ --enable-profiling --enable-geoip
+make -j"$(getconf _NPROCESSORS_ONLN)" install-full
+# rust doesn't compile with checkinstall
+#sudo checkinstall -D --pkgname=suricata --default
+    LD_LIBRARY_PATH=/usr/lib /usr/bin/suricata --build-info|grep Hyperscan
+make install-conf
+cd python || return
+python setup.py build
+python setup.py install
diff --git a/installer/win10_disabler.ps1 b/installer/win10_disabler.ps1
new file mode 100644
index 00000000000..e8970241aed
--- /dev/null
+++ b/installer/win10_disabler.ps1
@@ -0,0 +1,90 @@
+# there is way much better tools for this, but some of them doesn't do what we need
+
+# https://github.com/ntdevlabs/tiny11builder
+
+# see the Microsoft Defender Antivirus status and press
+# Get-MpComputerStatus
+
+# List preferences
+# Get-MpPreference
+
+# https://github.com/W4RH4WK/Debloat-Windows-10/tree/master
+
+Write-Output "Disabling Windows defender features..."
+New-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows Defender" -Name DisableAntiSpyware -Value 1 -PropertyType DWORD -Force
+Set-MpPreference -ExclusionPath C:\ -DisableRemovableDriveScanning $true -DisableIntrusionPreventionSystem $true -DisableIOAVProtection $true -DisableRealtimeMonitoring $true -DisableBehaviorMonitoring $true  -DisableScriptScanning $true -EnableControlledFolderAccess Disabled -EnableNetworkProtection AuditMode -Force -MAPSReporting Disabled -SubmitSamplesConsent NeverSend
+# https://www.alitajran.com/disable-windows-firewall-with-powershell/
+
+Write-Output "Disabling Firewall..."
+Set-NetFirewallProfile -Profile Domain, Public, Private -Enabled False
+
+
+# https://stackoverflow.com/a/68843405
+Write-Output "Disabling SmartScreen Filter..."
+Set-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\System" -Name "EnableSmartScreen" -Type DWord -Value 0
+If (!(Test-Path "HKLM:\SOFTWARE\Policies\Microsoft\MicrosoftEdge\PhishingFilter")) {
+    New-Item -Path "HKLM:\SOFTWARE\Policies\Microsoft\MicrosoftEdge\PhishingFilter" -Force | Out-Null
+}
+Set-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\MicrosoftEdge\PhishingFilter" -Name "EnabledV9" -Type DWord -Value 0
+
+# Remove-ItemProperty -Path 'HKLM:\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings' -Name 'Security_HKLM_only'
+New-ItemProperty -Path 'HKLM:\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings' -Name 'Security_HKLM_only' -Value 0 -PropertyType 'DWord'
+New-Item -Path 'HKLM:\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings' -Name 'Zones'
+New-Item -Path 'HKLM:\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones' -Name '2'
+New-ItemProperty -Path 'HKLM:\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2' -Name '2301' -Value 3 -PropertyType 'DWord'
+
+
+# https://superuser.com/a/1767126
+Write-Host "Disabling browser auto update..."
+
+$msEdgeInstallationPath = 'C:\Program Files (x86)\Microsoft'
+$Process2Monitor = "MicrosoftEdgeUpdate";
+For ($i = 0; $i -lt 5; $i++) {
+    $ProcessesFound = Get-Process | ? { $Process2Monitor -contains $_.Name } | Select-Object -ExpandProperty Name; If ($ProcessesFound) { "Microsoft Edge updater running... Killing it" | Write-Host; Stop-Process -Name $Process2Monitor -Force; Break } else { "Microsoft Edge updater not running. Retrying in 1 second..." | Write-Host; Start-Sleep -Seconds 1}
+}
+
+Write-Host "Waiting for Microsoft Edge update to finish (60s Timeout)"
+For ($i = 0; $i -lt 60; $i++) {
+    $ProcessesFound = Get-Process | ? { $Process2Monitor -contains $_.Name } | Select-Object -ExpandProperty Name; If ($ProcessesFound) { "Microsoft Edge updater running... waiting its finish..." | Write-Host; Start-Sleep -Seconds 1 } else { "Microsoft Edge updater finished." | Write-Host; Break}
+}
+Rename-Item -Path "$msEdgeInstallationPath\EdgeUpdate\MicrosoftEdgeUpdate.exe" -NewName MicrosoftEdgeUpdateDisabled.exe -Force
+
+Write-Output "Disabling telemetry via Group Policies"
+New-Item -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\DataCollection" -Force
+Set-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\DataCollection" "AllowTelemetry" 0
+
+Write-Host "Block scheduled telemetry tasks"
+# See reference: https://answers.microsoft.com/en-us/windows/forum/windows_10-performance/permanently-disabling-windows-compatibility/6bf71583-81b0-4a74-ae2e-8fd73305aad1
+$tasks = @(
+    "\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser"
+    "\Microsoft\Windows\Application Experience\ProgramDataUpdater"
+    "\Microsoft\Windows\Application Experience\StartupAppTask"
+    "\Microsoft\Windows\Application Experience\PcaPatchDbTask"
+)
+
+foreach ($task in $tasks) {
+   Disable-ScheduledTask -TaskName $task
+}
+
+<#
+# CAPE agent.py autoinstall
+$jobname = "Recurring PowerShell Task"
+$script =  "w32tm /resync"
+$action = New-ScheduledTaskAction -Execute "$pshome\powershell.exe" -Argument  "$script"
+$duration = ([timeSpan]::maxvalue)
+$repeat = (New-TimeSpan -hours 3)
+$trigger =New-ScheduledTaskTrigger -Once -At (Get-Date).Date -RepetitionInterval $repeat -RepetitionDuration $duration
+
+
+$msg = "Enter the username and password that will run the task";
+$credential = $Host.UI.PromptForCredential("Task username and password",$msg,"$env:userdomain\$env:username",$env:userdomain)
+$username = $credential.UserName
+$password = $credential.GetNetworkCredential().Password
+$settings = New-ScheduledTaskSettingsSet -AllowStartIfOnBatteries -DontStopIfGoingOnBatteries -StartWhenAvailable -RunOnlyIfNetworkAvailable -DontStopOnIdleEnd
+ Register-ScheduledTask -TaskName $jobname -Action $action -Trigger $trigger -RunLevel Highest -User $username -Password $password -Settings $settings
+#>
+
+if (Test-Path "C:\Users\Default\AppData\Local\Microsoft\WindowsApp") {
+    Write-Output "Remove WindowsApp to prevent MS StoreStartup"
+    Remove-Item -path "C:\Users\Default\AppData\Local\Microsoft\WindowsApp" -recurse
+}
diff --git a/lib/cuckoo/common/abstracts.py b/lib/cuckoo/common/abstracts.py
index 9df8d64469a..f4d4a1f3892 100644
--- a/lib/cuckoo/common/abstracts.py
+++ b/lib/cuckoo/common/abstracts.py
@@ -3,43 +3,49 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-from __future__ import print_function
+import datetime
+import io
+import logging
 import os
 import socket
-import dns.resolver
-import requests
-import datetime
 import threading
-import logging
 import time
+import timeit
+import xml.etree.ElementTree as ET
+from builtins import NotImplementedError
+from contextlib import suppress
+from pathlib import Path
+from typing import Dict, List
 
 try:
-    import re2 as re
+    import dns.resolver
 except ImportError:
-    import re
+    print("Missed dependency -> poetry install")
 
-import xml.etree.ElementTree as ET
+import PIL
+import requests
 
+from data.dnsbl import dnsbl_servers
 from lib.cuckoo.common.config import Config
 from lib.cuckoo.common.constants import CUCKOO_ROOT
-from lib.cuckoo.common.exceptions import CuckooCriticalError
-from lib.cuckoo.common.exceptions import CuckooMachineError
-from lib.cuckoo.common.exceptions import CuckooOperationalError
-from lib.cuckoo.common.exceptions import CuckooReportError
-from lib.cuckoo.common.exceptions import CuckooDependencyError
-from lib.cuckoo.common.objects import Dictionary
-from lib.cuckoo.common.utils import create_folder
-from lib.cuckoo.core.database import Database
+from lib.cuckoo.common.dictionary import Dictionary
+from lib.cuckoo.common.exceptions import (
+    CuckooCriticalError,
+    CuckooDependencyError,
+    CuckooMachineError,
+    CuckooOperationalError,
+    CuckooReportError,
+)
+from lib.cuckoo.common.integrations.mitre import mitre_load
+from lib.cuckoo.common.path_utils import path_exists, path_mkdir
 from lib.cuckoo.common.url_validate import url as url_validator
+from lib.cuckoo.common.utils import create_folder, get_memdump_path, load_categories
+from lib.cuckoo.core.database import Database, Machine, _Database, Task
 
-log = logging.getLogger(__name__)
-cfg = Config()
-repconf = Config("reporting")
-machinery_conf = Config(cfg.cuckoo.machinery)
-
-# from django.core.validators import URLValidator
-# url_validator = URLValidator(schemes=["http", "https", "udp", "tcp"])
+try:
+    import re2 as re
+except ImportError:
+    import re
 
 try:
     import libvirt
@@ -50,38 +56,21 @@
 
 try:
     from tldextract import TLDExtract
+
     HAVE_TLDEXTRACT = True
+    logging.getLogger("filelock").setLevel("WARNING")
 except ImportError:
     HAVE_TLDEXTRACT = False
 
-HAVE_MITRE = False
-if repconf.mitre.enabled:
-    try:
-        from pyattck import Attck
-        attack_file = repconf.mitre.get("local_file", False)
-        if attack_file:
-            attack_file = os.path.join(CUCKOO_ROOT, attack_file)
-        try:
-            # V3
-            mitre = Attck(
-                data_path=os.path.join(CUCKOO_ROOT, "data", "mitre"),
-                config_file_path=os.path.join(CUCKOO_ROOT, "data", "mitre", "config.yml"),
-            )
-
-            if not hasattr(mitre, "_Attck__ENTERPRISE_GENERATED_DATA_JSON"):
-                # V2 mitre = Attck(dataset_json=attack_file)
-                mitre = Attck(dataset_json=attack_file)
-                HAVE_MITRE = True
-            else:
-                HAVE_MITRE = True
-        except TypeError:
-            # V2
-            mitre = Attck(dataset_json=attack_file)
-            HAVE_MITRE = True
-    except (ImportError, ModuleNotFoundError):
-        print("Missed pyattck dependency: check requirements.txt for exact pyattck version")
+repconf = Config("reporting")
+integrations_conf = Config("integrations")
+_, categories_need_VM = load_categories()
 
+mitre, HAVE_MITRE, _ = mitre_load(repconf.mitre.enabled)
 
+log = logging.getLogger(__name__)
+cfg = Config()
+machinery_conf = Config(cfg.cuckoo.machinery)
 
 myresolver = dns.resolver.Resolver()
 myresolver.timeout = 5.0
@@ -90,7 +79,7 @@
 myresolver.nameserver = ["8.8.8.8"]
 
 
-class Auxiliary(object):
+class Auxiliary:
     """Base abstract class for auxiliary modules."""
 
     def __init__(self):
@@ -115,48 +104,50 @@ def stop(self):
         raise NotImplementedError
 
 
-class Machinery(object):
+class Machinery:
     """Base abstract class for machinery modules."""
 
     # Default label used in machinery configuration file to supply virtual
     # machine name/label/vmx path. Override it if you dubbed it in another
     # way.
-    LABEL = "label"
+    LABEL: str = "label"
+
+    # This must be defined in sub-classes.
+    module_name: str
 
     def __init__(self):
-        self.module_name = ""
         self.options = None
         # Database pointer.
-        self.db = Database()
-        # Machine table is cleaned to be filled from configuration file
-        # at each start.
-        self.db.clean_machines()
+        self.db: _Database = Database()
+        self.set_options(self.read_config())
 
-    def set_options(self, options):
+    def read_config(self) -> None:
+        return Config(self.module_name)
+
+    def set_options(self, options: dict) -> None:
         """Set machine manager options.
         @param options: machine manager options dict.
         """
         self.options = options
+        mmanager_opts = self.options.get(self.module_name)
+        if not isinstance(mmanager_opts["machines"], list):
+            mmanager_opts["machines"] = str(mmanager_opts["machines"]).strip().split(",")
+
+    def initialize(self) -> None:
+        """Read, load, and verify machines configuration."""
+        # Machine table is cleaned to be filled from configuration file
+        # at each start.
+        self.db.clean_machines()
 
-    def initialize(self, module_name):
-        """Read, load, and verify machines configuration.
-        @param module_name: module name.
-        """
         # Load.
-        self._initialize(module_name)
+        self._initialize()
 
         # Run initialization checks.
         self._initialize_check()
 
-    def _initialize(self, module_name):
-        """Read configuration.
-        @param module_name: module name.
-        """
-        self.module_name = module_name
-        mmanager_opts = self.options.get(module_name)
-        if not isinstance(mmanager_opts["machines"], list):
-            mmanager_opts["machines"] = mmanager_opts["machines"].strip().split(",")
-
+    def _initialize(self) -> None:
+        """Read configuration."""
+        mmanager_opts = self.options.get(self.module_name)
         for machine_id in mmanager_opts["machines"]:
             try:
                 machine_opts = self.options.get(machine_id.strip())
@@ -166,6 +157,8 @@ def _initialize(self, module_name):
                 machine.platform = machine_opts["platform"]
                 machine.tags = machine_opts.get("tags")
                 machine.ip = machine_opts["ip"]
+                machine.arch = machine_opts["arch"]
+                machine.reserved = machine_opts.get("reserved", False)
 
                 # If configured, use specific network interface for this
                 # machine, else use the default value.
@@ -178,26 +171,15 @@ def _initialize(self, module_name):
                 # empty and use default behaviour.
                 machine.snapshot = machine_opts.get("snapshot")
 
-                if machine.get("resultserver_ip"):
-                    ip = machine["resultserver_ip"]
-                else:
-                    ip = cfg.resultserver.ip
-
-                if machine.get("resultserver_port"):
-                    port = machine["resultserver_port"]
-                else:
+                machine.resultserver_ip = machine_opts.get("resultserver_ip", cfg.resultserver.ip)
+                machine.resultserver_port = machine_opts.get("resultserver_port")
+                if machine.resultserver_port is None:
                     # The ResultServer port might have been dynamically changed,
                     # get it from the ResultServer singleton. Also avoid import
                     # recursion issues by importing ResultServer here.
                     from lib.cuckoo.core.resultserver import ResultServer
 
-                    port = ResultServer().port
-
-                ip = machine_opts.get("resultserver_ip", ip)
-                port = machine_opts.get("resultserver_port", port)
-
-                machine.resultserver_ip = ip
-                machine.resultserver_port = port
+                    machine.resultserver_port = ResultServer().port
 
                 # Strip parameters.
                 for key, value in machine.items():
@@ -207,35 +189,52 @@ def _initialize(self, module_name):
                 self.db.add_machine(
                     name=machine.id,
                     label=machine.label,
+                    arch=machine.arch,
                     ip=machine.ip,
                     platform=machine.platform,
                     tags=machine.tags,
                     interface=machine.interface,
                     snapshot=machine.snapshot,
-                    resultserver_ip=ip,
-                    resultserver_port=port,
+                    resultserver_ip=machine.resultserver_ip,
+                    resultserver_port=machine.resultserver_port,
+                    reserved=machine.reserved,
                 )
             except (AttributeError, CuckooOperationalError) as e:
-                log.warning("Configuration details about machine %s " "are missing: %s", machine_id.strip(), e)
+                log.warning("Configuration details about machine %s are missing: %s", machine_id.strip(), e)
                 continue
 
-    def _initialize_check(self):
-        """Runs checks against virtualization software when a machine manager
-        is initialized.
-        @note: in machine manager modules you may override or superclass
-               his method.
-        @raise CuckooMachineError: if a misconfiguration or a unkown vm state
-                                   is found.
+    def _initialize_check(self) -> None:
+        """Runs checks against virtualization software when a machine manager is initialized.
+        @note: in machine manager modules you may override or superclass his method.
+        @raise CuckooMachineError: if a misconfiguration or a unkown vm state is found.
         """
         try:
             configured_vms = self._list()
         except NotImplementedError:
             return
 
+        self.shutdown_running_machines(configured_vms)
+        self.check_screenshot_support()
+
+        if not cfg.timeouts.vm_state:
+            raise CuckooCriticalError("Virtual machine state change timeout setting not found, please add it to the config file")
+
+    def check_screenshot_support(self) -> None:
+        # If machinery_screenshots are enabled, check the machinery supports it.
+        if not cfg.cuckoo.machinery_screenshots:
+            return
+
+        # inspect function members available on the machinery class
+        func = getattr(self.__class__, "screenshot")
+        if func == Machinery.screenshot:
+            msg = f"machinery {self.module_name} does not support machinery screenshots"
+            raise CuckooCriticalError(msg)
+
+    def shutdown_running_machines(self, configured_vms: List[str]) -> None:
         for machine in self.machines():
             # If this machine is already in the "correct" state, then we
             # go on to the next machine.
-            if machine.label in configured_vms and self._status(machine.label) in [self.POWEROFF, self.ABORTED]:
+            if machine.label in configured_vms and self._status(machine.label) in (self.POWEROFF, self.ABORTED):
                 continue
 
             # This machine is currently not in its correct state, we're going
@@ -243,47 +242,85 @@ def _initialize_check(self):
             try:
                 self.stop(machine.label)
             except CuckooMachineError as e:
-                msg = (
-                    "Please update your configuration. Unable to shut "
-                    "'{0}' down or find the machine in its proper state:"
-                    " {1}".format(machine.label, e)
-                )
-                raise CuckooCriticalError(msg)
-
-        if not cfg.timeouts.vm_state:
-            raise CuckooCriticalError("Virtual machine state change timeout " "setting not found, please add it to " "the config file.")
+                msg = f"Please update your configuration. Unable to shut '{machine.label}' down or find the machine in its proper state: {e}"
+                raise CuckooCriticalError(msg) from e
 
     def machines(self):
         """List virtual machines.
         @return: virtual machines list
         """
-        return self.db.list_machines()
+        return self.db.list_machines(include_reserved=True)
 
-    def availables(self):
-        """How many machines are free.
+    def availables(self, label=None, platform=None, tags=None, arch=None, include_reserved=False, os_version=None):
+        """How many (relevant) machines are free.
+        @param label: machine ID.
+        @param platform: machine platform.
+        @param tags: machine tags
+        @param arch: machine arch
         @return: free machines count.
         """
-        return self.db.count_machines_available()
+        return self.db.count_machines_available(
+            label=label, platform=platform, tags=tags, arch=arch, include_reserved=include_reserved, os_version=os_version
+        )
 
-    def acquire(self, machine_id=None, platform=None, tags=None):
-        """Acquire a machine to start analysis.
-        @param machine_id: machine ID.
-        @param platform: machine platform.
-        @param tags: machine tags
-        @return: machine or None.
+    def find_machine_to_service_task(self, task):
+        """Find a machine that is able to service the given task.
+        This can be overridden by machinery modules for custom logic.
+        By default, it delegates to the database implementation.
         """
-        if machine_id:
-            return self.db.lock_machine(label=machine_id)
-        elif platform:
-            return self.db.lock_machine(platform=platform, tags=tags)
-        else:
-            return self.db.lock_machine(tags=tags)
+        return self.db.find_machine_to_service_task(task)
+
+    def _machine_can_service_task(self, machine: Machine, task: Task) -> bool:
+        """Check if a machine can service a task based on platform, arch, and tags."""
+        # 1. Platform check
+        if task.platform and machine.platform != task.platform:
+            return False
+
+        task_tags = {tag.name for tag in task.tags}
+        machine_tags = {tag.name for tag in machine.tags}
+
+        # Define architecture tags.
+        arch_tags = {"x86", "x64"}  # Add other relevant archs if needed
+        task_arch = next((tag for tag in task_tags if tag in arch_tags), None)
+
+        # 2. Architecture compatibility check
+        if task_arch:
+            if machine.platform == "windows":
+                # 32-bit Windows can't run 64-bit tasks.
+                if machine.arch == "x86" and task_arch == "x64":
+                    return False
+            else:  # Strict matching for Linux/other platforms
+                # The machine's arch must equal the task's arch.
+                if machine.arch != task_arch:
+                    return False
+
+        # 3. Check remaining tags
+        # All tags that are NOT architecture tags must be present on the machine.
+        other_tags = task_tags - arch_tags
+        if not other_tags.issubset(machine_tags):
+            return False
+
+        # For strict platforms (not Windows), the machine must explicitly have the arch tag.
+        if task_arch and machine.platform != "windows":
+            if task_arch not in machine_tags:
+                return False
+
+        # For a Windows machine to run an x64 task, it must have the x64 tag.
+        if task_arch == "x64" and machine.platform == "windows":
+            if "x64" not in machine_tags:
+                return False
+
+        return True
 
-    def release(self, label=None):
+    def scale_pool(self, machine: Machine) -> None:
+        """This can be overridden in sub-classes to scale the pool of machines once one has been acquired."""
+        return
+
+    def release(self, machine: Machine) -> Machine:
         """Release a machine.
         @param label: machine name.
         """
-        self.db.unlock_machine(label)
+        return self.db.unlock_machine(machine)
 
     def running(self):
         """Returns running virtual machines.
@@ -291,17 +328,29 @@ def running(self):
         """
         return self.db.list_machines(locked=True)
 
+    def running_count(self):
+        return self.db.count_machines_running()
+
+    def screenshot(self, label, path):
+        """Screenshot a running virtual machine.
+        @param label: machine name
+        @param path: where to store the screenshot
+        @raise NotImplementedError
+        """
+        raise NotImplementedError
+
     def shutdown(self):
         """Shutdown the machine manager. Kills all alive machines.
         @raise CuckooMachineError: if unable to stop machine.
         """
-        if len(self.running()) > 0:
-            log.info("Still %s guests alive. Shutting down...", len(self.running()))
-            for machine in self.running():
+        running = self.running()
+        if len(running) > 0:
+            log.info("Still %d guests still alive, shutting down...", len(running))
+            for machine in running:
                 try:
                     self.stop(machine.label)
                 except CuckooMachineError as e:
-                    log.warning("Unable to shutdown machine %s, please check " "manually. Error: %s", machine.label, e)
+                    log.warning("Unable to shutdown machine %s, please check manually. Error: %s", machine.label, e)
 
     def set_status(self, label, status):
         """Set status for a virtual machine.
@@ -352,13 +401,19 @@ def _wait_status(self, label, state):
         if isinstance(state, str):
             state = [state]
         while current not in state:
-            log.debug("Waiting %i cuckooseconds for machine %s to switch " "to status %s", waitme, label, state)
+            log.debug("Waiting %d seconds for machine %s to switch to status %s", waitme, label, state)
             if waitme > int(cfg.timeouts.vm_state):
-                raise CuckooMachineError("Timeout hit while for machine {0} " "to change status".format(label))
+                raise CuckooMachineError(f"Timeout hit while for machine {label} to change status")
             time.sleep(1)
             waitme += 1
             current = self._status(label)
 
+    def delete_machine(self, name):
+        """Delete a virtual machine.
+        @param name: virtual machine name
+        """
+        _ = self.db.delete_machine(name)
+
 
 class LibVirtMachinery(Machinery):
     """Libvirt based machine manager.
@@ -377,16 +432,11 @@ class LibVirtMachinery(Machinery):
 
     def __init__(self):
         if not HAVE_LIBVIRT:
-            raise CuckooDependencyError("Unable to import libvirt")
-
-        super(LibVirtMachinery, self).__init__()
+            raise CuckooDependencyError(
+                "Unable to import libvirt. Ensure that you properly installed it by running: cd /opt/CAPEv2/ ; sudo -u cape poetry run extra/libvirt_installer.sh"
+            )
 
-    def initialize(self, module):
-        """Initialize machine manager module. Override default to set proper
-        connection string.
-        @param module:  machine manager module
-        """
-        super(LibVirtMachinery, self).initialize(module)
+        super().__init__()
 
     def _initialize_check(self):
         """Runs all checks when a machine manager is initialized.
@@ -394,14 +444,14 @@ def _initialize_check(self):
         """
         # Version checks.
         if not self._version_check():
-            raise CuckooMachineError("Libvirt version is not supported, " "please get an updated version")
+            raise CuckooMachineError("Libvirt version is not supported, please get an updated version")
 
         # Preload VMs
         self.vms = self._fetch_machines()
 
         # Base checks. Also attempts to shutdown any machines which are
         # currently still active.
-        super(LibVirtMachinery, self)._initialize_check()
+        super()._initialize_check()
 
     def start(self, label):
         """Starts a virtual machine.
@@ -410,41 +460,44 @@ def start(self, label):
         """
         log.debug("Starting machine %s", label)
 
+        vm_info = self.db.view_machine_by_label(label)
+        if vm_info is None:
+            msg = f"Unable to find machine with label {label} in database."
+            raise CuckooMachineError(msg)
+
         if self._status(label) != self.POWEROFF:
-            msg = "Trying to start a virtual machine that has not " "been turned off {0}".format(label)
+            msg = f"Trying to start a virtual machine that has not been turned off {label}"
             raise CuckooMachineError(msg)
 
         conn = self._connect(label)
 
-        vm_info = self.db.view_machine_by_label(label)
-
         snapshot_list = self.vms[label].snapshotListNames(flags=0)
 
         # If a snapshot is configured try to use it.
         if vm_info.snapshot and vm_info.snapshot in snapshot_list:
             # Revert to desired snapshot, if it exists.
-            log.debug("Using snapshot {0} for virtual machine " "{1}".format(vm_info.snapshot, label))
+            log.debug("Using snapshot %s for virtual machine %s", vm_info.snapshot, label)
             try:
                 vm = self.vms[label]
                 snapshot = vm.snapshotLookupByName(vm_info.snapshot, flags=0)
                 self.vms[label].revertToSnapshot(snapshot, flags=0)
-            except libvirt.libvirtError:
-                msg = "Unable to restore snapshot {0} on " "virtual machine {1}".format(vm_info.snapshot, label)
-                raise CuckooMachineError(msg)
+            except libvirt.libvirtError as e:
+                msg = f"Unable to restore snapshot {vm_info.snapshot} on virtual machine {label}. Your snapshot MUST BE in running state!"
+                raise CuckooMachineError(msg) from e
             finally:
                 self._disconnect(conn)
         elif self._get_snapshot(label):
             snapshot = self._get_snapshot(label)
-            log.debug("Using snapshot {0} for virtual machine " "{1}".format(snapshot.getName(), label))
+            log.debug("Using snapshot %s for virtual machine %s", snapshot.getName(), label)
             try:
                 self.vms[label].revertToSnapshot(snapshot, flags=0)
-            except libvirt.libvirtError:
-                raise CuckooMachineError("Unable to restore snapshot on " "virtual machine {0}".format(label))
+            except libvirt.libvirtError as e:
+                raise CuckooMachineError(f"Unable to restore snapshot on virtual machine {label}. Your snapshot MUST BE in running state!") from e
             finally:
                 self._disconnect(conn)
         else:
             self._disconnect(conn)
-            raise CuckooMachineError("No snapshot found for virtual machine " "{0}".format(label))
+            raise CuckooMachineError(f"No snapshot found for virtual machine {label}")
 
         # Check state.
         self._wait_status(label, self.RUNNING)
@@ -457,17 +510,17 @@ def stop(self, label):
         log.debug("Stopping machine %s", label)
 
         if self._status(label) == self.POWEROFF:
-            raise CuckooMachineError("Trying to stop an already stopped " "machine {0}".format(label))
+            raise CuckooMachineError(f"Trying to stop an already stopped machine {label}")
 
         # Force virtual machine shutdown.
         conn = self._connect(label)
         try:
             if not self.vms[label].isActive():
-                log.debug("Trying to stop an already stopped machine %s. " "Skip", label)
+                log.debug("Trying to stop an already stopped machine %s, skipping", label)
             else:
                 self.vms[label].destroy()  # Machete's way!
         except libvirt.libvirtError as e:
-            raise CuckooMachineError("Error stopping virtual machine " "{0}: {1}".format(label, e))
+            raise CuckooMachineError(f"Error stopping virtual machine {label}: {e}") from e
         finally:
             self._disconnect(conn)
         # Check state.
@@ -475,11 +528,47 @@ def stop(self, label):
 
     def shutdown(self):
         """Override shutdown to free libvirt handlers - they print errors."""
-        super(LibVirtMachinery, self).shutdown()
+        for machine in self.machines():
+            # If the machine is already shutdown, move on
+            if self._status(machine.label) in (self.POWEROFF, self.ABORTED):
+                continue
+            try:
+                log.info("Shutting down machine '%s'", machine.label)
+                self.stop(machine.label)
+            except CuckooMachineError as e:
+                log.warning("Unable to shutdown machine %s, please check manually. Error: %s", machine.label, e)
 
         # Free handlers.
         self.vms = None
 
+    def screenshot(self, label, path):
+        """Screenshot a running virtual machine.
+        @param label: machine name
+        @param path: where to store the screenshot
+        """
+        conn = self._connect()
+        try:
+            vm = conn.lookupByName(label)
+        except libvirt.libvirtError as e:
+            raise CuckooMachineError(f"Error screenshotting virtual machine {label}: {e}") from e
+        stream0, screen = conn.newStream(), 0
+        # ignore the mime type returned by the call to screenshot()
+        _ = vm.screenshot(stream0, screen)
+
+        buffer = io.BytesIO()
+
+        def stream_handler(_, data, buffer):
+            buffer.write(data)
+
+        folder_name, _ = path.rsplit("/", 1)
+        if not path_exists(folder_name):
+            path_mkdir(folder_name, parent=True, exist_ok=True)
+
+        stream0.recvAll(stream_handler, buffer)
+        stream0.finish()
+        streamed_img = PIL.Image.open(buffer)
+        streamed_img.convert(mode="RGB").save(path)
+
     def dump_memory(self, label, path):
         """Takes a memory dump.
         @param path: path to where to store the memory dump.
@@ -494,7 +583,7 @@ def dump_memory(self, label, path):
             fd.close()
             self.vms[label].coreDump(path, flags=libvirt.VIR_DUMP_MEMORY_ONLY)
         except libvirt.libvirtError as e:
-            raise CuckooMachineError("Error dumping memory virtual machine " "{0}: {1}".format(label, e))
+            raise CuckooMachineError(f"Error dumping memory virtual machine {label}: {e}") from e
         finally:
             self._disconnect(conn)
 
@@ -520,7 +609,7 @@ def _status(self, label):
         try:
             state = self.vms[label].state(flags=0)
         except libvirt.libvirtError as e:
-            raise CuckooMachineError("Error getting status for virtual " "machine {0}: {1}".format(label, e))
+            raise CuckooMachineError(f"Error getting status for virtual machine {label}: {e}") from e
         finally:
             self._disconnect(conn)
 
@@ -529,7 +618,7 @@ def _status(self, label):
                 status = self.RUNNING
             elif state[0] == 3:
                 status = self.PAUSED
-            elif state[0] == 4 or state[0] == 5:
+            elif state[0] in {4, 5}:
                 status = self.POWEROFF
             else:
                 status = self.ERROR
@@ -539,7 +628,7 @@ def _status(self, label):
             self.set_status(label, status)
             return status
         else:
-            raise CuckooMachineError("Unable to get status for " "{0}".format(label))
+            raise CuckooMachineError(f"Unable to get status for {label}")
 
     def _connect(self, label=None):
         """Connects to libvirt subsystem.
@@ -547,12 +636,12 @@ def _connect(self, label=None):
         """
         # Check if a connection string is available.
         if not self.dsn:
-            raise CuckooMachineError("You must provide a proper " "connection string")
+            raise CuckooMachineError("You must provide a proper connection string")
 
         try:
             return libvirt.open(self.dsn)
-        except libvirt.libvirtError:
-            raise CuckooMachineError("Cannot connect to libvirt")
+        except libvirt.libvirtError as e:
+            raise CuckooMachineError("Cannot connect to libvirt") from e
 
     def _disconnect(self, conn):
         """Disconnects to libvirt subsystem.
@@ -560,17 +649,14 @@ def _disconnect(self, conn):
         """
         try:
             conn.close()
-        except libvirt.libvirtError:
-            raise CuckooMachineError("Cannot disconnect from libvirt")
+        except libvirt.libvirtError as e:
+            raise CuckooMachineError("Cannot disconnect from libvirt") from e
 
     def _fetch_machines(self):
         """Fetch machines handlers.
         @return: dict with machine label as key and handle as value.
         """
-        vms = {}
-        for vm in self.machines():
-            vms[vm.label] = self._lookup(vm.label)
-        return vms
+        return {vm.label: self._lookup(vm.label) for vm in self.machines()}
 
     def _lookup(self, label):
         """Search for a virtual machine.
@@ -581,8 +667,8 @@ def _lookup(self, label):
         conn = self._connect(label)
         try:
             vm = conn.lookupByName(label)
-        except libvirt.libvirtError:
-            raise CuckooMachineError("Cannot find machine " "{0}".format(label))
+        except libvirt.libvirtError as e:
+            raise CuckooMachineError(f"Cannot find machine {label}") from e
         finally:
             self._disconnect(conn)
         return vm
@@ -594,8 +680,8 @@ def _list(self):
         conn = self._connect()
         try:
             names = conn.listDefinedDomains()
-        except libvirt.libvirtError:
-            raise CuckooMachineError("Cannot list domains")
+        except libvirt.libvirtError as e:
+            raise CuckooMachineError("Cannot list domains") from e
         finally:
             self._disconnect(conn)
         return names
@@ -604,17 +690,14 @@ def _version_check(self):
         """Check if libvirt release supports snapshots.
         @return: True or false.
         """
-        if libvirt.getVersion() >= 8000:
-            return True
-        else:
-            return False
+        return libvirt.getVersion() >= 8000
 
     def _get_snapshot(self, label):
         """Get current snapshot for virtual machine
         @param label: virtual machine name
         @return None or current snapshot
         @raise CuckooMachineError: if cannot find current snapshot or
-                                   when there are too many snapshots available
+            when there are too many snapshots available
         """
 
         def _extract_creation_time(node):
@@ -638,16 +721,18 @@ def _extract_creation_time(node):
                 log.debug("No current snapshot, using latest snapshot")
 
                 # No current snapshot, try to get the last one from config file.
-                snapshot = sorted(vm.listAllSnapshots(flags=0), key=_extract_creation_time, reverse=True)[0]
+                all_snapshots = vm.listAllSnapshots(flags=0)
+                if all_snapshots:
+                    snapshot = sorted(all_snapshots, key=_extract_creation_time, reverse=True)[0]
         except libvirt.libvirtError:
-            raise CuckooMachineError("Unable to get snapshot for " "virtual machine {0}".format(label))
+            raise CuckooMachineError(f"Unable to get snapshot for virtual machine {label}")
         finally:
             self._disconnect(conn)
 
         return snapshot
 
 
-class Processing(object):
+class Processing:
     """Base abstract class for processing module."""
 
     order = 1
@@ -677,6 +762,7 @@ def set_path(self, analysis_path):
         @param analysis_path: analysis folder path.
         """
         self.analysis_path = analysis_path
+        self.aux_path = os.path.join(self.analysis_path, "aux")
         self.log_path = os.path.join(self.analysis_path, "analysis.log")
         self.package_files = os.path.join(self.analysis_path, "package_files")
         self.file_path = os.path.realpath(os.path.join(self.analysis_path, "binary"))
@@ -688,14 +774,16 @@ def set_path(self, analysis_path):
         self.shots_path = os.path.join(self.analysis_path, "shots")
         self.pcap_path = os.path.join(self.analysis_path, "dump.pcap")
         self.pmemory_path = os.path.join(self.analysis_path, "memory")
-        self.memory_path = os.path.join(self.analysis_path, "memory.dmp")
+        self.memory_path = get_memdump_path(analysis_path.rsplit("/", 1)[-1])
+        # self.memory_path = os.path.join(self.analysis_path, "memory.dmp")
         self.network_path = os.path.join(self.analysis_path, "network")
         self.tlsmaster_path = os.path.join(self.analysis_path, "tlsmaster.txt")
+        self.self_extracted = os.path.join(self.analysis_path, "selfextracted")
+        self.reports_path = os.path.join(self.analysis_path, "reports")
 
     def add_statistic_tmp(self, name, field, pretime):
-        posttime = datetime.datetime.now()
-        timediff = posttime - pretime
-        value = float("%d.%03d" % (timediff.seconds, timediff.microseconds / 1000))
+        timediff = timeit.default_timer() - pretime
+        value = round(timediff, 3)
 
         if name not in self.results["temp_processing_stats"]:
             self.results["temp_processing_stats"][name] = {}
@@ -713,7 +801,7 @@ def run(self):
         raise NotImplementedError
 
 
-class Signature(object):
+class Signature:
     """Base class for Cuckoo signatures."""
 
     name = ""
@@ -729,6 +817,8 @@ class Signature(object):
     enabled = True
     minimum = None
     maximum = None
+    ttps = []
+    mbcs = []
 
     # Higher order will be processed later (only for non-evented signatures)
     # this can be used for having meta-signatures that check on other lower-
@@ -750,8 +840,27 @@ def __init__(self, results=None):
         self._current_call_dict = None
         self._current_call_raw_cache = None
         self._current_call_raw_dict = None
-        self.hostname2ips = dict()
+        self.hostname2ips = {}
         self.machinery_conf = machinery_conf
+        self.matched = False
+
+        # These are set during the iteration of evented signatures
+        self.pid = None
+        self.cid = None
+        self.call = None
+
+    def statistics_custom(self, pretime, extracted: bool = False):
+        """
+        Aux function for custom stadistics on signatures
+        @param pretime: start time as datetime object
+        @param extracted: conf extraction from inside signature to count success extraction vs sig run
+        """
+        timediff = timeit.default_timer() - pretime
+        self.results["custom_statistics"] = {
+            "name": self.name,
+            "time": round(timediff, 3),
+            "extracted": int(extracted),
+        }
 
     def set_path(self, analysis_path):
         """Set analysis folder path.
@@ -767,7 +876,10 @@ def set_path(self, analysis_path):
         self.shots_path = os.path.join(self.analysis_path, "shots")
         self.pcap_path = os.path.join(self.analysis_path, "dump.pcap")
         self.pmemory_path = os.path.join(self.analysis_path, "memory")
-        self.memory_path = os.path.join(self.analysis_path, "memory.dmp")
+        # self.memory_path = os.path.join(self.analysis_path, "memory.dmp")
+        self.memory_path = get_memdump_path(analysis_path.rsplit("/", 1)[-1])
+        self.self_extracted = os.path.join(self.analysis_path, "selfextracted")
+        self.files_metadata = os.path.join(self.analysis_path, "files.json")
 
         try:
             create_folder(folder=self.reports_path)
@@ -775,59 +887,104 @@ def set_path(self, analysis_path):
             CuckooReportError(e)
 
     def yara_detected(self, name):
+        name_pattern = re.compile(name, re.I)
+
+        def _check_matches(data_block, path, label_override=None):
+            if not isinstance(data_block, dict):
+                return
 
-        target = self.results.get("target", {})
+            for keyword in ("cape_yara", "yara"):
+                for yara_block in data_block.get(keyword, []):
+                    if name_pattern.search(yara_block.get("name", "")):
+                        label = label_override if label_override else keyword
+                        yield label, path, yara_block, data_block
+
+        def _process_selfextract(parent_block):
+            selfextract = parent_block.get("selfextract")
+            if not selfextract:
+                return
+
+            tools_iter = selfextract.values() if isinstance(selfextract, dict) else []
+
+            for toolsblock in tools_iter:
+                for extracted_file in toolsblock.get("extracted_files", []) or []:
+                    yield from _check_matches(
+                        extracted_file,
+                        path=extracted_file.get("path"),
+                        label_override="sample"
+                    )
+
+        results = self.results
+        target = results.get("target", {})
+
+        # 1. Procesar Target
         if target.get("category") in ("file", "static") and target.get("file"):
-            for keyword in ("yara", "cape_yara"):
-                for block in self.results["target"]["file"].get(keyword, list()):
-                    if re.findall(name, block["name"], re.I):
-                        yield "sample", self.results["target"]["file"]["path"], block
-
-        for block in self.results.get("CAPE", {}).get("payloads", []) or []:
-            for sub_keyword in ("yara", "cape_yara"):
-                for sub_block in block.get(sub_keyword, []):
-                    if re.findall(name, sub_block["name"], re.I):
-                        yield sub_keyword, block["path"], sub_block
-
-        for keyword in ("procdump", "procmemory", "extracted", "dropped"):
-            if keyword in self.results and self.results[keyword] is not None:
-                for block in self.results.get(keyword, []):
-                    if not isinstance(block, dict):
-                        continue
-                    for sub_keyword in ("yara", "cape_yara"):
-                        for sub_block in block.get(sub_keyword, []):
-                            if re.findall(name, sub_block["name"], re.I):
-                                if keyword in ("procdump", "dropped", "extracted", "procmemory"):
-                                    if block.get("file", False):
-                                        path = block["file"]
-                                    elif block.get("path", False):
-                                        path = block["path"]
-                                    else:
-                                        path = ""
-                                elif keyword == "CAPE":
-                                    path = block["path"]
-                                else:
-                                    path = ""
-                                yield keyword, path, sub_block
-
-                    if keyword == "procmemory":
-                        for pe in block.get("extracted_pe", []) or []:
-                            for sub_keyword in ("yara", "cape_yara"):
-                                for sub_block in pe.get(sub_keyword, []) or []:
-                                    if re.findall(name, sub_block["name"], re.I):
-                                        yield "extracted_pe", pe["path"], sub_block
-
-        macro_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(self.results["info"]["id"]), "macros")
-        for macroname in self.results.get("static", {}).get("office", {}).get("Macro", {}).get("info", []) or []:
-            for yara_block in self.results["static"]["office"]["Macro"]["info"].get("macroname", []) or []:
-                for sub_block in self.results["static"]["office"]["Macro"]["info"]["macroname"].get(yara_block, []) or []:
-                    if re.findall(name, sub_block["name"], re.I):
-                        yield "macro", os.path.join(macro_path, macroname), sub_block
-
-        if self.results.get("static", {}).get("office", {}).get("XLMMacroDeobfuscator", False):
-            for sub_block in self.results["static"]["office"]["XLMMacroDeobfuscator"].get("info", []).get("yara_macro", []) or []:
-                if re.findall(name, sub_block["name"], re.I):
-                    yield "macro", os.path.join(macro_path, "xlm_macro"), sub_block
+            file_info = target["file"]
+            yield from _check_matches(file_info, file_info.get("path"), label_override="sample")
+            yield from _process_selfextract(file_info)
+
+        cape_payloads = results.get("CAPE", {}).get("payloads", []) or []
+        for block in cape_payloads:
+            yield from _check_matches(block, block.get("path"))
+            yield from _process_selfextract(block)
+
+        search_keys = ("procdump", "procmemory", "extracted", "dropped")
+        for keyword in search_keys:
+            blocks = results.get(keyword, []) or []
+            if not blocks:
+                continue
+
+            for block in blocks:
+                if not isinstance(block, dict):
+                    continue
+
+                path = block.get("path", "")
+                yield from _check_matches(block, path, label_override=keyword)
+
+                if keyword == "procmemory":
+                    for pe in block.get("extracted_pe", []) or []:
+                        yield from _check_matches(pe, pe.get("path"), label_override="extracted_pe")
+
+                yield from _process_selfextract(block)
+
+        # ToDo not sure if static still exist
+        office_info = results.get("static", {}).get("office", {})
+        macro_info = office_info.get("Macro", {}).get("info", [])
+        analysis_id = str(results.get("info", {}).get("id", "unknown"))
+        macro_base_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", analysis_id, "macros")
+
+        if macro_info:
+            if isinstance(macro_info, list):
+                for item in macro_info:
+                    yield from _check_matches(item, os.path.join(macro_base_path, item.get("name", "macro")), label_override="macro")
+            elif isinstance(macro_info, dict):
+                for macroname, macro_data in macro_info.items():
+                    yield from _check_matches(macro_data, os.path.join(macro_base_path, macroname), label_override="macro")
+
+        xlm_info = office_info.get("XLMMacroDeobfuscator", {}).get("info", {})
+        if xlm_info:
+            for yara_block in xlm_info.get("yara_macro", []) or []:
+                if name_pattern.search(yara_block.get("name", "")):
+                    yield (
+                        "macro",
+                        os.path.join(macro_base_path, "xlm_macro"),
+                        yara_block,
+                        xlm_info
+                    )
+
+    def signature_matched(self, signame: str) -> bool:
+        # Check if signature has matched (useful for ordered signatures)
+        matched_signatures = [sig["name"] for sig in self.results.get("signatures", [])]
+        return signame in matched_signatures
+
+    def get_signature_data(self, signame: str) -> List[Dict[str, str]]:
+        # Retrieve data from matched signature (useful for ordered signatures)
+        if self.signature_matched(signame):
+            signature = next((match for match in self.results.get("signatures", []) if match.get("name") == signame), None)
+
+            if signature:
+                return signature.get("data", []) + signature.get("new_data", [])
+        return []
 
     def add_statistic(self, name, field, value):
         if name not in self.results["statistics"]["signatures"]:
@@ -836,25 +993,25 @@ def add_statistic(self, name, field, value):
         self.results["statistics"]["signatures"][name][field] = value
 
     def get_pids(self):
-        pids = list()
+        pids = []
         logs = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(self.results["info"]["id"]), "logs")
         processes = self.results.get("behavior", {}).get("processtree", [])
         if processes:
             for pid in processes:
-                pids.append(str(pid.get("pid", "")))
-                pids += [str(cpid["pid"]) for cpid in pid.get("children", []) if "pid" in cpid]
+                pids.append(int(pid.get("pid", "")))
+                pids += [int(cpid["pid"]) for cpid in pid.get("children", []) if "pid" in cpid]
         # in case if bsons too big
-        if os.path.exists(logs):
-            pids += [pidb.replace(".bson", "") for pidb in os.listdir(logs) if ".bson" in pidb]
+        if path_exists(logs):
+            pids += [int(pidb.replace(".bson", "")) for pidb in os.listdir(logs) if ".bson" in pidb]
 
         #  in case if injection not follows
-        if "procmemory" in self.results and self.results["procmemory"] is not None:
-            pids += [str(block["pid"]) for block in self.results["procmemory"]]
-        if "procdump" in self.results and self.results["procdump"] is not None:
-            pids += [str(block["pid"]) for block in self.results["procdump"]]
+        if self.results.get("procmemory") is not None:
+            pids += [int(block["pid"]) for block in self.results["procmemory"]]
+        if self.results.get("procdump") is not None:
+            pids += [int(block["pid"]) for block in self.results["procdump"]]
 
-        log.info(list(set(pids)))
-        return ",".join(list(set(pids)))
+        log.debug(list(set(pids)))
+        return list(set(pids))
 
     def advanced_url_parse(self, url):
         if HAVE_TLDEXTRACT:
@@ -869,14 +1026,17 @@ def advanced_url_parse(self, url):
             log.info("missed tldextract dependency")
 
     def _get_ip_by_host(self, hostname):
-        for data in self.results.get("network", {}).get("hosts", []):
-            if data.get("hostname", "") == hostname:
-                return [data.get("ip", "")]
-        return []
+        return next(
+            (
+                [data.get("ip", "")]
+                for data in self.results.get("network", {}).get("hosts", [])
+                if data.get("hostname", "") == hostname
+            ),
+            [],
+        )
 
     def _get_ip_by_host_dns(self, hostname):
-
-        ips = list()
+        ips = []
 
         try:
             answers = myresolver.query(hostname, "A")
@@ -884,16 +1044,19 @@ def _get_ip_by_host_dns(self, hostname):
                 n = dns.reversename.from_address(rdata.address)
                 try:
                     answers_inv = myresolver.query(n, "PTR")
-                    for rdata_inv in answers_inv:
-                        ips.append(rdata.address)
+                    ips.extend(rdata.address for _ in answers_inv)
                 except dns.resolver.NoAnswer:
                     ips.append(rdata.address)
                 except dns.resolver.NXDOMAIN:
                     ips.append(rdata.address)
+        except dns.name.NeedAbsoluteNameOrOrigin:
+            print(
+                "An attempt was made to convert a non-absolute name to wire when there was also a non-absolute (or missing) origin"
+            )
         except dns.resolver.NoAnswer:
             print("IPs: Impossible to get response")
         except Exception as e:
-            log.info(e)
+            log.info(str(e))
 
         return ips
 
@@ -902,11 +1065,11 @@ def _is_ip(self, ip):
         try:
             socket.inet_aton(ip)
             return True
-        except:
+        except Exception:
             return False
 
     def _check_valid_url(self, url, all_checks=False):
-        """ Checks if url is correct
+        """Checks if url is correct
         @param url: string
         @return: url or None
         """
@@ -923,8 +1086,8 @@ def _check_valid_url(self, url, all_checks=False):
                 url = url[last + 3 :]
 
         try:
-            if url_validator("http://%s" % url):
-                return "http://%s" % url
+            if url_validator(f"http://{url}"):
+                return f"http://{url}"
         except Exception as e:
             print(e)
 
@@ -952,12 +1115,11 @@ def _check_value(self, pattern, subject, regex=False, all=False, ignorecase=True
                             retset.add(item)
                         else:
                             return item
-            else:
-                if exp.match(subject):
-                    if all:
-                        retset.add(subject)
-                    else:
-                        return subject
+            elif exp.match(subject):
+                if all:
+                    retset.add(subject)
+                else:
+                    return subject
             if all and len(retset) > 0:
                 return retset
         elif ignorecase:
@@ -966,17 +1128,14 @@ def _check_value(self, pattern, subject, regex=False, all=False, ignorecase=True
                 for item in subject:
                     if item.lower() == lowerpattern:
                         return item
-            else:
-                if subject.lower() == lowerpattern:
-                    return subject
-        else:
-            if isinstance(subject, list):
-                for item in subject:
-                    if item == pattern:
-                        return item
-            else:
-                if subject == pattern:
-                    return subject
+            elif subject.lower() == lowerpattern:
+                return subject
+        elif isinstance(subject, list):
+            for item in subject:
+                if item == pattern:
+                    return item
+        elif subject == pattern:
+            return subject
 
         return None
 
@@ -984,10 +1143,7 @@ def check_process_name(self, pattern, all=False):
         if "behavior" in self.results and "processes" in self.results["behavior"]:
             for process in self.results["behavior"]["processes"]:
                 if re.findall(pattern, process["process_name"], re.I):
-                    if all:
-                        return process
-                    else:
-                        return True
+                    return process if all else True
         return False
 
     def check_file(self, pattern, regex=False, all=False):
@@ -1000,7 +1156,7 @@ def check_file(self, pattern, regex=False, all=False):
         @return: depending on the value of param 'all', either a set of
                       matched items or the first matched item
         """
-        subject = self.results["behavior"]["summary"]["files"]
+        subject = self.results.get("behavior", {}).get("summary", {}).get("files", [])
         return self._check_value(pattern=pattern, subject=subject, regex=regex, all=all)
 
     def check_read_file(self, pattern, regex=False, all=False):
@@ -1013,7 +1169,7 @@ def check_read_file(self, pattern, regex=False, all=False):
         @return: depending on the value of param 'all', either a set of
                       matched items or the first matched item
         """
-        subject = self.results["behavior"]["summary"]["read_files"]
+        subject = self.results.get("behavior", {}).get("summary", {}).get("read_files", [])
         return self._check_value(pattern=pattern, subject=subject, regex=regex, all=all)
 
     def check_write_file(self, pattern, regex=False, all=False):
@@ -1026,7 +1182,7 @@ def check_write_file(self, pattern, regex=False, all=False):
         @return: depending on the value of param 'all', either a set of
                       matched items or the first matched item
         """
-        subject = self.results["behavior"]["summary"]["write_files"]
+        subject = self.results.get("behavior", {}).get("summary", {}).get("write_files", [])
         return self._check_value(pattern=pattern, subject=subject, regex=regex, all=all)
 
     def check_delete_file(self, pattern, regex=False, all=False):
@@ -1039,7 +1195,7 @@ def check_delete_file(self, pattern, regex=False, all=False):
         @return: depending on the value of param 'all', either a set of
                       matched items or the first matched item
         """
-        subject = self.results["behavior"]["summary"]["delete_files"]
+        subject = self.results.get("behavior", {}).get("summary", {}).get("delete_files", [])
         return self._check_value(pattern=pattern, subject=subject, regex=regex, all=all)
 
     def check_key(self, pattern, regex=False, all=False):
@@ -1052,7 +1208,7 @@ def check_key(self, pattern, regex=False, all=False):
         @return: depending on the value of param 'all', either a set of
                       matched items or the first matched item
         """
-        subject = self.results["behavior"]["summary"]["keys"]
+        subject = self.results.get("behavior", {}).get("summary", {}).get("keys", [])
         return self._check_value(pattern=pattern, subject=subject, regex=regex, all=all)
 
     def check_read_key(self, pattern, regex=False, all=False):
@@ -1065,7 +1221,7 @@ def check_read_key(self, pattern, regex=False, all=False):
         @return: depending on the value of param 'all', either a set of
                       matched items or the first matched item
         """
-        subject = self.results["behavior"]["summary"]["read_keys"]
+        subject = self.results.get("behavior", {}).get("summary", {}).get("read_keys", [])
         return self._check_value(pattern=pattern, subject=subject, regex=regex, all=all)
 
     def check_write_key(self, pattern, regex=False, all=False):
@@ -1078,7 +1234,7 @@ def check_write_key(self, pattern, regex=False, all=False):
         @return: depending on the value of param 'all', either a set of
                       matched items or the first matched item
         """
-        subject = self.results["behavior"]["summary"]["write_keys"]
+        subject = self.results.get("behavior", {}).get("summary", {}).get("write_keys", [])
         return self._check_value(pattern=pattern, subject=subject, regex=regex, all=all)
 
     def check_delete_key(self, pattern, regex=False, all=False):
@@ -1091,7 +1247,7 @@ def check_delete_key(self, pattern, regex=False, all=False):
         @return: depending on the value of param 'all', either a set of
                       matched items or the first matched item
         """
-        subject = self.results["behavior"]["summary"]["delete_keys"]
+        subject = self.results.get("behavior", {}).get("summary", {}).get("delete_keys", [])
         return self._check_value(pattern=pattern, subject=subject, regex=regex, all=all)
 
     def check_mutex(self, pattern, regex=False, all=False):
@@ -1104,7 +1260,7 @@ def check_mutex(self, pattern, regex=False, all=False):
         @return: depending on the value of param 'all', either a set of
                       matched items or the first matched item
         """
-        subject = self.results["behavior"]["summary"]["mutexes"]
+        subject = self.results.get("behavior", {}).get("summary", {}).get("mutexes", [])
         return self._check_value(pattern=pattern, subject=subject, regex=regex, all=all, ignorecase=False)
 
     def check_started_service(self, pattern, regex=False, all=False):
@@ -1117,8 +1273,8 @@ def check_started_service(self, pattern, regex=False, all=False):
         @return: depending on the value of param 'all', either a set of
                       matched items or the first matched item
         """
-        subject = self.results["behavior"]["summary"]["started_services"]
-        return self._check_value(pattern=pattern, subject=subject, regex=regex, all=all, ignorecase=True)
+        subject = self.results.get("behavior", {}).get("summary", {}).get("started_services", [])
+        return self._check_value(pattern=pattern, subject=subject, regex=regex, all=all)
 
     def check_created_service(self, pattern, regex=False, all=False):
         """Checks for a service being created.
@@ -1130,8 +1286,8 @@ def check_created_service(self, pattern, regex=False, all=False):
         @return: depending on the value of param 'all', either a set of
                       matched items or the first matched item
         """
-        subject = self.results["behavior"]["summary"]["created_services"]
-        return self._check_value(pattern=pattern, subject=subject, regex=regex, all=all, ignorecase=True)
+        subject = self.results.get("behavior", {}).get("summary", {}).get("created_services", [])
+        return self._check_value(pattern=pattern, subject=subject, regex=regex, all=all)
 
     def check_executed_command(self, pattern, regex=False, all=False, ignorecase=True):
         """Checks for a command being executed.
@@ -1145,7 +1301,7 @@ def check_executed_command(self, pattern, regex=False, all=False, ignorecase=Tru
         @return: depending on the value of param 'all', either a set of
                       matched items or the first matched item
         """
-        subject = self.results["behavior"]["summary"]["executed_commands"]
+        subject = self.results.get("behavior", {}).get("summary", {}).get("executed_commands", [])
         return self._check_value(pattern=pattern, subject=subject, regex=regex, all=all, ignorecase=ignorecase)
 
     def check_api(self, pattern, process=None, regex=False, all=False):
@@ -1164,9 +1320,8 @@ def check_api(self, pattern, process=None, regex=False, all=False):
             retset = set()
         for item in self.results["behavior"]["processes"]:
             # Check if there's a process name filter.
-            if process:
-                if item["process_name"] != process:
-                    continue
+            if process and item["process_name"] != process:
+                continue
 
             # Loop through API calls.
             for call in item["calls"]:
@@ -1178,10 +1333,7 @@ def check_api(self, pattern, process=None, regex=False, all=False):
                     else:
                         return call["api"]
 
-        if all and len(retset) > 0:
-            return retset
-
-        return None
+        return retset if all and len(retset) > 0 else None
 
     def check_argument_call(self, call, pattern, name=None, api=None, category=None, regex=False, all=False, ignorecase=False):
         """Checks for a specific argument of an invoked API.
@@ -1203,21 +1355,18 @@ def check_argument_call(self, call, pattern, name=None, api=None, category=None,
             retset = set()
 
         # Check if there's an API name filter.
-        if api:
-            if call["api"] != api:
-                return False
+        if api and call["api"] != api:
+            return False
 
         # Check if there's a category filter.
-        if category:
-            if call["category"] != category:
-                return False
+        if category and call["category"] != category:
+            return False
 
         # Loop through arguments.
         for argument in call["arguments"]:
             # Check if there's an argument name filter.
-            if name:
-                if argument["name"] != name:
-                    continue
+            if name and argument["name"] != name:
+                continue
 
             # Check if the argument value matches.
             ret = self._check_value(pattern=pattern, subject=argument["value"], regex=regex, all=all, ignorecase=ignorecase)
@@ -1254,9 +1403,8 @@ def check_argument(self, pattern, name=None, api=None, category=None, process=No
         # Loop through processes.
         for item in self.results["behavior"]["processes"]:
             # Check if there's a process name filter.
-            if process:
-                if item["process_name"] != process:
-                    continue
+            if process and item["process_name"] != process:
+                continue
 
             # Loop through API calls.
             for call in item["calls"]:
@@ -1272,21 +1420,50 @@ def check_argument(self, pattern, name=None, api=None, category=None, process=No
 
         return None
 
+    def check_threatfox(self, searchterm: str):
+        if not integrations_conf.abusech.threatfox or not integrations_conf.abusech.apikey:
+            return
+        try:
+            response = requests.post(
+                "https://threatfox-api.abuse.ch/api/v1/",
+                json={"query": "search_ioc", "search_term": searchterm,  "exact_match": True},
+                headers={"Auth-Key": integrations_conf.abusech.apikey, "User-Agent": "CAPE Sandbox"},
+            )
+            return response.json()
+        except Exception as e:
+            log.error("ThreatFox error: %s", str(e))
+
+    def check_dnsbbl(self, domain: str):
+        """
+        https://en.wikipedia.org/wiki/Domain_Name_System_blocklist
+        @param domain: domain to check in black list
+        """
+        try:
+            ip_address = socket.gethostbyname(domain)
+            for server in dnsbl_servers:
+                query = ".".join(reversed(str(ip_address).split("."))) + "." + server
+                with suppress(socket.error):
+                    threading.Thread(target=socket.gethostbyname, args=(query,)).start()
+                    return True, server  # Found blacklisted server
+            return False, None  # No blacklisted server found
+        except socket.gaierror:
+            return "Invalid domain or IP address.", None
+
     def check_ip(self, pattern, regex=False, all=False):
         """Checks for an IP address being contacted.
         @param pattern: string or expression to check for.
         @param regex: boolean representing if the pattern is a regular
-                      expression or not and therefore should be compiled.
+            expression or not and therefore should be compiled.
         @param all: boolean representing if all results should be returned
-                      in a set or not
+            in a set or not
         @return: depending on the value of param 'all', either a set of
-                      matched items or the first matched item
+            matched items or the first matched item
         """
 
         if all:
             retset = set()
 
-        if not "network" in self.results:
+        if "network" not in self.results:
             return None
 
         hosts = self.results["network"].get("hosts")
@@ -1310,17 +1487,17 @@ def check_domain(self, pattern, regex=False, all=False):
         """Checks for a domain being contacted.
         @param pattern: string or expression to check for.
         @param regex: boolean representing if the pattern is a regular
-                      expression or not and therefore should be compiled.
+            expression or not and therefore should be compiled.
         @param all: boolean representing if all results should be returned
-                      in a set or not
+            in a set or not
         @return: depending on the value of param 'all', either a set of
-                      matched items or the first matched item
+            matched items or the first matched item
         """
 
         if all:
             retset = set()
 
-        if not "network" in self.results:
+        if "network" not in self.results:
             return None
 
         domains = self.results["network"].get("domains")
@@ -1344,17 +1521,17 @@ def check_url(self, pattern, regex=False, all=False):
         """Checks for a URL being contacted.
         @param pattern: string or expression to check for.
         @param regex: boolean representing if the pattern is a regular
-                      expression or not and therefore should be compiled.
+            expression or not and therefore should be compiled.
         @param all: boolean representing if all results should be returned
-                      in a set or not
+            in a set or not
         @return: depending on the value of param 'all', either a set of
-                      matched items or the first matched item
+            matched items or the first matched item
         """
 
         if all:
             retset = set()
 
-        if not "network" in self.results:
+        if "network" not in self.results:
             return None
 
         httpitems = self.results["network"].get("http")
@@ -1374,22 +1551,26 @@ def check_url(self, pattern, regex=False, all=False):
         return None
 
     def get_initial_process(self):
-        """ Obtains the initial process information
+        """Obtains the initial process information
         @return: dict containing initial process information or None
         """
 
-        if not "behavior" in self.results or not "processes" in self.results["behavior"] or not len(self.results["behavior"]["processes"]):
+        if (
+            "behavior" not in self.results
+            or "processes" not in self.results["behavior"]
+            or not len(self.results["behavior"]["processes"])
+        ):
             return None
 
         return self.results["behavior"]["processes"][0]
 
     def get_environ_entry(self, proc, env_name):
-        """ Obtains environment entry from process
+        """Obtains environment entry from process
         @param proc: Process to inspect
         @param env_name: Name of environment entry
         @return: value of environment entry or None
         """
-        if not proc or not "environ" in proc or not env_name in proc["environ"]:
+        if not proc or env_name not in proc.get("environ", {}):
             return None
 
         return proc["environ"][env_name]
@@ -1404,10 +1585,7 @@ def get_argument(self, call, name):
         # If not, we can start caching it and store a copy converted to a dict.
         if call is not self._current_call_cache:
             self._current_call_cache = call
-            self._current_call_dict = dict()
-
-            for argument in call["arguments"]:
-                self._current_call_dict[argument["name"]] = argument["value"]
+            self._current_call_dict = {argument["name"]: argument["value"] for argument in call["arguments"]}
 
         # Return the required argument.
         if name in self._current_call_dict:
@@ -1440,10 +1618,9 @@ def get_raw_argument(self, call, name):
         # If not, we can start caching it and store a copy converted to a dict.
         if call is not self._current_call_raw_cache:
             self._current_call_raw_cache = call
-            self._current_call_raw_dict = dict()
-
-            for argument in call["arguments"]:
-                self._current_call_raw_dict[argument["name"]] = argument["raw_value"]
+            self._current_call_raw_dict = {
+                argument["name"]: argument["raw_value"] for argument in call["arguments"] if "raw_value" in argument
+            }
 
         # Return the required argument.
         if name in self._current_call_raw_dict:
@@ -1451,20 +1628,38 @@ def get_raw_argument(self, call, name):
 
         return None
 
-    def check_suricata_alerts(self, pattern, blacklist=[]):
+    def check_suricata_alerts(self, pattern, blacklist=None):
         """Check for pattern in Suricata alert signature
         @param pattern: string or expression to check for.
         @return: True/False
         """
+        if blacklist is None:
+            blacklist = []
         res = False
         if isinstance(self.results.get("suricata", {}), dict):
             for alert in self.results.get("suricata", {}).get("alerts", []):
                 sid = alert.get("sid", 0)
-                if (sid not in self.banned_suricata_sids and sid not in blacklist) and re.findall(pattern, alert.get("signature", ""), re.I):
+                if (sid not in self.banned_suricata_sids and sid not in blacklist) and re.findall(
+                    pattern, alert.get("signature", ""), re.I
+                ):
                     res = True
                     break
         return res
 
+    def mark_call(self, *args, **kwargs):
+        """Mark the current call as explanation as to why this signature matched."""
+
+        mark = {
+            "type": "call",
+            "pid": self.pid,
+            "cid": self.cid,
+        }
+
+        if args or kwargs:
+            log.warning("You have provided extra arguments to the mark_call() method which does not support doing so.")
+
+        self.data.append(mark)
+
     def add_match(self, process, type, match):
         """Adds a match to the signature data.
         @param process: The process triggering the match.
@@ -1473,20 +1668,17 @@ def add_match(self, process, type, match):
         """
         signs = []
         if isinstance(match, list):
-            for item in match:
-                signs.append({"type": type, "value": item})
+            signs.extend({"type": type, "value": item} for item in match)
         else:
             signs.append({"type": type, "value": match})
 
         process_summary = None
         if process:
-            process_summary = {}
-            process_summary["process_name"] = process["process_name"]
-            process_summary["process_id"] = process["process_id"]
+            process_summary = {"process_name": process["process_name"], "process_id": process["process_id"]}
 
         self.new_data.append({"process": process_summary, "signs": signs})
 
-    def has_matches(self):
+    def has_matches(self) -> bool:
         """Returns true if there is matches (data is not empty)
         @return: boolean indicating if there is any match registered
         """
@@ -1522,6 +1714,7 @@ def as_result(self):
         return dict(
             name=self.name,
             description=self.description,
+            categories=self.categories,
             severity=self.severity,
             weight=self.weight,
             confidence=self.confidence,
@@ -1533,7 +1726,7 @@ def as_result(self):
         )
 
 
-class Report(object):
+class Report:
     """Base abstract class for reporting module."""
 
     order = 1
@@ -1562,8 +1755,10 @@ def set_path(self, analysis_path):
         self.shots_path = os.path.join(self.analysis_path, "shots")
         self.pcap_path = os.path.join(self.analysis_path, "dump.pcap")
         self.pmemory_path = os.path.join(self.analysis_path, "memory")
-        self.memory_path = os.path.join(self.analysis_path, "memory.dmp")
+        # self.memory_path = os.path.join(self.analysis_path, "memory.dmp")
+        self.memory_path = get_memdump_path(analysis_path.rsplit("/", 1)[-1])
         self.files_metadata = os.path.join(self.analysis_path, "files.json")
+        self.self_extracted = os.path.join(self.analysis_path, "selfextracted")
 
         try:
             create_folder(folder=self.reports_path)
@@ -1589,7 +1784,7 @@ def run(self):
         raise NotImplementedError
 
 
-class Feed(object):
+class Feed:
     """Base abstract class for feeds."""
 
     name = ""
@@ -1604,33 +1799,30 @@ def __init__(self):
         self.frequency = 24
         self.updatefeed = False
 
-    def update(self):
+    def update(self) -> bool:
         """Determine if the feed needs to be updated based on the configured
         frequency and update if it we have passed that time threshold.
         """
-        self.feedpath = CUCKOO_ROOT + "/data/feeds/" + self.feedname + ".feed"
+        self.feedpath = os.path.join(CUCKOO_ROOT, "data", "feeds", f"{self.feedname}.feed")
         freq = self.frequency * 3600
         # Check if feed file exists
         mtime = 0
         if os.path.isfile(self.feedpath):
             mtime = os.path.getmtime(self.feedpath)
             # Check if feed file is older than configured update frequency
-            if time.time() - mtime > freq:
-                self.updatefeed = True
-            else:
-                self.updatefeed = False
+            self.updatefeed = time.time() - mtime > freq
         else:
             self.updatefeed = True
 
         if self.updatefeed:
-            headers = dict()
+            headers = {}
             if mtime:
                 timestr = datetime.datetime.utcfromtimestamp(mtime).strftime("%a, %d %b %Y %H:%M:%S GMT")
                 headers["If-Modified-Since"] = timestr
             try:
                 req = requests.get(self.downloadurl, headers=headers, verify=True)
             except requests.exceptions.RequestException as e:
-                log.warn("Error downloading feed for {0} : {1}".format(self.feedname, e))
+                log.warning("Error downloading feed for %s: %s", self.feedname, e)
                 return False
             if req.status_code == 200:
                 self.downloaddata = req.content
@@ -1638,7 +1830,7 @@ def update(self):
 
         return False
 
-    def get_feedpath(self):
+    def get_feedpath(self) -> str:
         return self.feedpath
 
     def modify(self):
@@ -1647,20 +1839,17 @@ def modify(self):
         """
         raise NotImplementedError
 
-    def run(self, modified=False):
+    def run(self, modified: bool = False):
         if self.updatefeed:
             lock = threading.Lock()
             with lock:
                 if modified and self.data:
-                    with open(self.feedpath, "w") as feedfile:
-                        feedfile.write(self.data)
+                    _ = Path(self.feedpath).write_text(self.data)
                 elif self.downloaddata:
-                    with open(self.feedpath, "w") as feedfile:
-                        feedfile.write(self.downloaddata)
-        return
+                    _ = Path(self.feedpath).write_text(self.downloaddata)
 
 
-class ProtocolHandler(object):
+class ProtocolHandler:
     """Abstract class for protocol handlers coming out of the analysis."""
 
     def __init__(self, task_id, ctx, version=None):
diff --git a/lib/cuckoo/common/admin_utils.py b/lib/cuckoo/common/admin_utils.py
new file mode 100644
index 00000000000..9808bf72e80
--- /dev/null
+++ b/lib/cuckoo/common/admin_utils.py
@@ -0,0 +1,539 @@
+import json
+import logging
+import os
+import re
+
+# from glob import glob
+import shutil
+import sys
+from contextlib import suppress
+from hashlib import sha256
+from pathlib import Path
+from queue import Queue
+from socket import if_nameindex
+from threading import Thread
+
+import urllib3
+
+try:
+    from deepdiff import DeepDiff  # extract as diffextract
+
+    HAVE_DEEPDIFF = True
+except ImportError:
+    HAVE_DEEPDIFF = False
+    print("poetry run pip install mmh3 deepdiff")
+
+try:
+    from paramiko import AutoAddPolicy, ProxyCommand, SSHClient, SSHConfig
+    from paramiko.ssh_exception import (
+        AuthenticationException,
+        BadHostKeyException,
+        PasswordRequiredException,
+        ProxyCommandFailure,
+        SSHException,
+    )
+    from scp import SCPClient, SCPException
+
+
+    conf = SSHConfig()
+    conf.parse(open(os.path.expanduser("~/.ssh/config")))
+
+    HAVE_PARAMIKO = True
+except ImportError:
+    print("poetry run pip install -U paramiko scp")
+    HAVE_PARAMIKO = False
+
+
+from lib.cuckoo.common.colors import green, red
+from lib.cuckoo.common.sshclient import SSHJumpClient
+from utils.community_blocklist import blocklist
+
+try:
+    from admin_conf import (
+        CAPE_DIST_URL,
+        CAPE_PATH,
+        EXCLUDE_CAPE_FILES,
+        EXCLUDE_DIRS,
+        EXCLUDE_EXTENSIONS,
+        EXCLUDE_FILENAMES,
+        JUMP_BOX_USERNAME,
+        MASTER_NODE,
+        NUM_THREADS,
+        PRIVATE_REPO_PATH,
+        REMOTE_SERVER_USER,
+        UPSTREAM_REPO_PATH,
+        VOL_PATH,
+    )
+except ModuleNotFoundError:
+    sys.exit("[-] You need to create admin_conf.py, see admin_conf.py_example")
+
+
+# this is bad, but getLogger doesn't work, this can be cause of duplication of log entries if used outside
+logging.basicConfig(level=logging.INFO)
+log = logging.getLogger()
+
+ssh = SSHClient()
+ssh.load_system_host_keys()
+ssh.set_missing_host_key_policy(AutoAddPolicy())
+
+urllib3.disable_warnings()
+
+
+def session_checker():
+    """
+    Detects CHROME_REMOTE_DESKTOP_SESSION and missed key for a session
+    """
+    if os.getenv("CHROME_REMOTE_DESKTOP_SESSION") == "1":
+        sys.exit(
+            """Please run in the same terminal before executing this script:\n
+unset CHROME_REMOTE_DESKTOP_SESSION
+eval "$(ssh-agent -s)"
+ssh-add -t 1h ~/.ssh/<your_key>
+            """
+        )
+
+
+def load_workers_list():
+    servers = []
+    # Need to add some check as it do this if we don't provide args
+    try:
+        http = urllib3.PoolManager()
+        r = http.request("GET", CAPE_DIST_URL)
+        if r.status == 200:
+            res = json.loads(r.data.decode("utf-8")).get("nodes", [])
+            servers = [res[server]["url"].split("://")[1].split(":")[0] for server in res] + [MASTER_NODE]
+    except (urllib3.exceptions.NewConnectionError, urllib3.exceptions.MaxRetryError):
+        sys.exit("Can't retrieve list of servers")
+
+    return servers
+
+
+def compare_hashed_files(files: list, servers: list, ssh_proxy: SSHClient, private_repo: bool = False):
+    # TODO find a way to do left join/set
+
+    left, right = files
+    diff = {}
+    added_or_modified = []
+
+    if not os.path.exists(left) or not os.path.exists(right):
+        log.error("Ensure that files to compare does exist")
+        return
+
+    # server = p.name.replace("_cape_hashed.json", "").replace(".json", "")
+    right = json.loads(Path(right).read_bytes())
+
+    # server = p.name.replace("_cape_hashed.json", "").replace(".json", "")
+    left = json.loads(Path(left).read_bytes())
+
+    # generate list of missed
+    # generate list of where hash doesn't match, support file exclusion as file_extra_info with custom modules
+    folders = set()
+    to_remove = set()
+    dd = DeepDiff(left, right)
+    for k in ("dictionary_item_added", "dictionary_item_removed", "values_changed"):
+        for value in dd.get(k, []):
+            path = value.split("'")[-2]
+            # path = diffextract(dd, value)
+            if path.endswith(EXCLUDE_CAPE_FILES):
+                continue
+            diff.setdefault(k, []).append(path)
+
+            # folders to create on server side
+            if k in ("dictionary_item_added", "values_changed"):
+                folders.add(Path(path).parent.__str__())
+                added_or_modified.append(path)
+            else:
+                to_remove.add(path)
+
+    from pprint import pprint as pp
+
+    pp(added_or_modified)
+
+    copy_files = input("Do you want to copy files to your local fork? y/n ").lower()
+    deploy_files = input("Do you want to deploy ? y/n ").lower()
+
+    if deploy_files == "y":
+        queue = Queue()
+
+    if copy_files == "y" or deploy_files == "y":
+        # we copy files from upstream CAPE to our private fork
+        for path in added_or_modified:
+            # get parent folder here, check if we have it in blocklist, check files list
+            key = Path(path).parts[0]
+            if key and key in blocklist and path in blocklist[key].values():
+                print("[+] Skipping blocked file ", path)
+                continue
+            origin_path = os.path.join(UPSTREAM_REPO_PATH, path)
+            # import code;code.interact(local=dict(locals(), **globals()))
+            if not os.path.exists(origin_path):
+                print(f"[-] File doesn't exist: {origin_path}")
+                continue
+
+            if copy_files == "y":
+                print(origin_path, os.path.join(PRIVATE_REPO_PATH, path))
+                with suppress(shutil.SameFileError):
+                    shutil.copy(origin_path, os.path.join(PRIVATE_REPO_PATH, path))
+
+            if origin_path.endswith("admin.py"):
+                continue
+
+            parameters = file_recon(origin_path, "CAPE")
+            if not parameters:
+                sys.exit()
+            queue.put([servers, origin_path] + list(parameters))
+
+        if deploy_files == "y":
+            _ = deploy_file(queue, ssh_proxy)
+
+    # need way to suggest deployment of those files, bulk_deploy
+
+    # Create folders? get paths, make uniq, run command on all before deploy to server
+    # pp(diff)
+    # import code;code.interact(local=dict(locals(), **globals()))
+    # print(to_remove)
+    # execute_command_on_all(f"rm {' '.join(list(to_remove))}", servers, ssh_proxy)
+    # ToDo finish visualization
+    # Need to add option to redeploy new/modified files
+
+
+def enumerate_files_on_all_servers(servers: list, ssh_proxy: SSHClient, dir_folder: str, filename: str):
+    cmd = f"python3 {CAPE_PATH}/admin/admin.py -gfl {dir_folder} -f /tmp/{filename} -s"
+    execute_command_on_all(cmd, servers, ssh_proxy)
+    get_file(f"/tmp/{filename}.json", servers, ssh_proxy)
+
+    # ToDo add support for workers to enumerate over NFS for faster results
+    # compare here now
+    # server_files = glob("*_cape_hashed.json")
+    # if Path("upstream.json").exists():
+    #    server_files.append("upstream.json")
+    # compare_hashed_files(server_files)
+
+
+def gen_hashfile(folder, json_filename):
+    all_files = dict()
+
+    if not os.path.exists(folder):
+        log.error("Folder: %s doesn't exist", folder)
+        return
+
+    for root, dirs, files in os.walk(folder, topdown=True):
+        dirs[:] = set(dirs) - EXCLUDE_DIRS
+        for filename in files:
+            if filename in EXCLUDE_FILENAMES or filename.endswith(EXCLUDE_EXTENSIONS):  # or filename.startswith(EXCLUDE_PREFIX):
+                continue
+            file_path = os.path.join(root, filename)
+            p = Path(file_path)
+            if p.is_symlink:
+                file_path = p.resolve().__str__()
+            if not p.exists():
+                continue
+            file_hash = sha256(p.read_bytes()).hexdigest()
+            all_files.setdefault(file_path.replace(CAPE_PATH, "").split("CAPEv2/")[-1], file_hash)
+
+    log.info("Writing dump file to: %s.json", json_filename)
+    with open(f"{json_filename}.json", "w") as f:
+        f.write(json.dumps(all_files, indent=4))
+
+
+def file_recon(file, yara_category="CAPE"):
+    if not Path(file).exists():
+        return
+
+    LOCAL_SHA256 = False
+    filename = os.path.basename(file)
+    OWNER = "cape:cape"
+    # Requires read as Bytes due to different hashes if encodes
+    with open(file, "rb") as ff:
+        f = ff.read()
+
+    LOCAL_SHA256 = sha256(f).hexdigest()
+    # print(file, "file", os.path.exists(file))
+    if b"SignatureMock.run" in f:
+        return
+    if b"(TcrSignature):" in f or b"(Signature)" in f:
+        TARGET = f"{CAPE_PATH}custom/signatures/{filename}"
+    elif filename in ("loader.exe", "loader_x64.exe"):
+        TARGET = f"{CAPE_PATH}/analyzer/windows/bin/{filename}"
+    elif "/binary/" in file or "/binaries/" in file:
+        TARGET = f"{CAPE_PATH}custom/yara/binaries/{filename}"
+    elif b"def _generator(self" in f:
+        TARGET = f"{VOL_PATH}{filename}"
+        OWNER = "root:staff"
+    elif re.findall(rb"class .*\(Report\):", f):
+        TARGET = f"{CAPE_PATH}/modules/reporting/{filename}"
+    elif re.findall(rb"class .*\(Processing\):", f):
+        TARGET = f"{CAPE_PATH}/modules/processing/{filename}"
+    elif filename.endswith(".yar") and b"rule " in f and b"condition:" in f:
+        # capemon yara
+        if "/analyzer/" in file:
+            TARGET = f"{CAPE_PATH}analyzer/windows/data/yara/{filename}"
+        else:
+            # server side rule
+            TARGET = f"{CAPE_PATH}data/yara/{yara_category}/{filename}"
+    elif re.findall(rb"class .*\(Package\):", f):
+        folder = "windows"
+        if "/linux/" in file:
+            folder = "linux"
+        TARGET = f"{CAPE_PATH}/analyzer/{folder}/modules/packages/{filename}"
+    elif b"def choose_package(file_type, file_name, exports, target)" in f:
+        TARGET = f"{CAPE_PATH}/analyzer/windows/lib/core/{filename}"
+    elif b"class Signature(object):" in f and b"class Processing(object):" in f:
+        TARGET = f"{CAPE_PATH}/lib/cuckoo/common/{filename}"
+    elif b"class Analyzer:" in f and b"class PipeHandler(Thread):" in f and b"class PipeServer(Thread):" in f:
+        TARGET = f"{CAPE_PATH}analyzer/windows/{filename}"
+    elif filename in ("capemon.dll", "capemon_x64.dll"):
+        TARGET = f"{CAPE_PATH}analyzer/windows/dll/{filename}"
+    # generic deployer of files
+    elif file.startswith("CAPEv2/"):
+        # Remove CAPEv2/ from path to build new path
+        TARGET = f"{CAPE_PATH}" + file[7:]
+    elif filename.endswith(".service"):
+        TARGET = "/lib/systemd/system/{filename}"
+        OWNER = "root:root"
+    elif "Extractors/StandAlone/" in file:
+        TARGET = f"{CAPE_PATH}custom/parsers/"
+        stem = "Extractors/StandAlone"
+        if file.startswith(stem) and os.path.dirname(file) != stem:
+            # another directory inside Standalone
+            extra_dir = os.path.dirname(file)[len(stem) + 1 :]
+            TARGET += f"{extra_dir}/"
+        TARGET += f"{filename}"
+    elif file.endswith("admin.py") and "/web/" not in file:
+        print("Ignoring admin.py")
+        return False
+    elif file.startswith("CAPEv2/"):
+        TARGET = file
+    else:
+        print(f"I'm sorry, I don't know how to deploy this kind of file.: {filename}, {file}")
+        return False
+
+    # build command to be executed remotely
+    REMOTE_COMMAND = f"chown {OWNER} {TARGET}; chmod 644 {TARGET};"
+    if filename.endswith(".py") and TARGET:
+        REMOTE_COMMAND += "rm -f {0}.pyc; ls -la {0}.*".format(TARGET.replace(".py", ""))
+    return TARGET, REMOTE_COMMAND, LOCAL_SHA256
+
+
+# For session reuse
+sockets = {}
+
+
+def _connect_via_jump_box(server: str, ssh_proxy: SSHClient):
+    session_checker()
+    host = conf.lookup(server)
+    try:
+        """
+        This is SSH pivoting it ssh to host Y via host X, can be used due to different networks
+        We doing direct-tcpip channel and pasing it as socket to be used
+        """
+        if ssh_proxy and JUMP_BOX_USERNAME:
+            if server not in sockets:
+                ssh = SSHJumpClient(jump_session=ssh_proxy if ssh_proxy else None)
+                ssh.set_missing_host_key_policy(AutoAddPolicy())
+                # ssh_port = 22 if ":" not in server else int(server.split(":")[1])
+                ssh.connect(
+                    server,
+                    username=JUMP_BOX_USERNAME,
+                    key_filename=host.get("identityfile"),
+                    banner_timeout=200,
+                    look_for_keys=False,
+                    allow_agent=True,
+                    # disabled_algorithms=dict(pubkeys=["rsa-sha2-512", "rsa-sha2-256"]),
+                )
+                sockets[server] = ssh
+            else:
+                # ToDo check if alive and reconnect
+                ssh = sockets[server]
+
+        else:
+            ssh = SSHJumpClient()
+            ssh.load_system_host_keys()
+            ssh.set_missing_host_key_policy(AutoAddPolicy())
+            # ssh_port = 22 if ":" not in server else int(server.split(":")[1])
+            ssh.connect(
+                server,
+                username=REMOTE_SERVER_USER,
+                key_filename=host.get("identityfile"),
+                banner_timeout=200,
+                look_for_keys=False,
+                allow_agent=True,
+                sock=ProxyCommand(host.get("proxycommand")),
+            )
+    except (BadHostKeyException, AuthenticationException, PasswordRequiredException) as e:
+        sys.exit(
+            f"Connect error: {str(e)}. Also pay attention to this log for more details /var/log/auth.log and paramiko might need update.\nAlso ensure that you have added your public ssh key to /root/.ssh/authorized_keys"
+        )
+    except ProxyCommandFailure as e:
+        # Todo reconnect
+        log.error("Can't connect to server: %s", str(e))
+    return ssh
+
+
+def execute_command_on_all(remote_command, servers: list, ssh_proxy: SSHClient):
+    for server in servers:
+        try:
+            ssh = _connect_via_jump_box(server, ssh_proxy)
+            _, ssh_stdout, _ = ssh.exec_command(remote_command)
+            ssh_out = ssh_stdout.read().decode("utf-8").strip()
+            if "Active: active (running)" in ssh_out and "systemctl status" not in remote_command:
+                log.info("[+] Service %s", green("restarted successfully and is UP"))
+            else:
+                srv = str(server.split(".")[1])
+                if ssh_out:
+                    log.info(green(f"[+] {srv} - {ssh_out}"))
+                else:
+                    log.info(green(f"[+] {srv}"))
+            ssh.close()
+        except TimeoutError as e:
+            sys.exit(f"Did you forget to use jump box? {str(e)}")
+        except SSHException as e:
+            log.error("Can't read remote bufffer: %s", str(e))
+        except Exception as e:
+            log.exception(e)
+
+
+def bulk_deploy(files, yara_category, dry_run=False, servers: list = [], ssh_proxy: SSHClient = False):
+    # You are not permitted to remove elements from the list while iterating over it using a for loop.
+    for file in files[:]:
+        original_name = file
+        if not file.startswith(("CAPE", "Custom", "Extractors")):
+            files.remove(original_name)
+            continue
+
+        if file.endswith(("processor_tests.py", "reporter_tests.py", "admin.py", ".conf")):
+            files.remove(original_name)
+            continue
+
+        if not Path(original_name).exists():
+            print(f"File doesn't exists: {original_name}. Skipping")
+            files.remove(original_name)
+            continue
+
+    if dry_run:
+        print(files)
+        return
+
+    queue = Queue()
+    for file in files:
+        parameters = file_recon(file, yara_category)
+        if not parameters:
+            print(parameters, file)
+            continue
+        queue.put([servers, file] + list(parameters))
+
+    for _ in range(NUM_THREADS):
+        worker = Thread(target=deploy_file, args=(queue, ssh_proxy))
+        worker.daemon = True
+        worker.start()
+    queue.join()
+
+
+def get_file(path, servers: list, ssh_proxy: SSHClient, yara_category: str = "CAPE", dry_run: bool = False):
+    for server in servers:
+        try:
+            print(server)
+            ssh = _connect_via_jump_box(server, ssh_proxy)
+            with SCPClient(ssh.get_transport()) as scp:
+                try:
+                    scp.get(path, f"{server}_{os.path.basename(path)}")
+                    print(f"Copied {os.path.basename(path)} from {server}")
+                except SCPException as e:
+                    print(e)
+        except Exception as e:
+            print(e)
+
+
+def deploy_file(queue, ssh_proxy: SSHClient):
+    error_list = list()
+
+    while not queue.empty():
+        servers, local_file, remote_file, remote_command, local_sha256 = queue.get()
+
+        error = False
+        print(servers, local_file, remote_file, remote_command, local_sha256)
+        for server in servers:
+            try:
+                ssh = _connect_via_jump_box(server, ssh_proxy)
+                with SCPClient(ssh.get_transport()) as scp:
+                    try:
+                        scp.put(local_file, remote_file)
+                    except SCPException as e:
+                        print(e)
+
+                if remote_command:
+                    _, ssh_stdout, _ = ssh.exec_command(remote_command)
+
+                    ssh_out = ssh_stdout.read().decode("utf-8")
+                    log.info(ssh_out)
+
+                _, ssh_stdout, _ = ssh.exec_command(f"sha256sum {remote_file} | cut -d' ' -f1")
+                remote_sha256 = ssh_stdout.read().strip().decode("utf-8")
+                if local_sha256 == remote_sha256:
+                    log.info("[+] %s - Hashes are %s: %s - %s", server.split(".")[1], green("correct"), local_sha256, remote_file)
+                else:
+                    log.info(
+                        "[-] %s - Hashes are %s: \n\tLocal: %s\n\tRemote: %s - %s",
+                        server,
+                        red("incorrect"),
+                        local_sha256,
+                        remote_sha256,
+                        remote_file,
+                    )
+                    error = 1
+                    error_list.append(remote_file)
+                ssh.close()
+            except TimeoutError as e:
+                log.error(e)
+
+        if not error:
+            log.info(green(f"Completed! {remote_file}\n"))
+        else:
+            log.info(red(f"Completed with errors. {remote_file}\n"))
+        queue.task_done()
+
+    return error_list
+
+
+def delete_file(queue, ssh_proxy: SSHClient):
+    error_list = list()
+
+    while not queue.empty():
+        servers, remote_file = queue.get()
+
+        error = False
+        for server in servers:
+            try:
+                ssh = _connect_via_jump_box(server, ssh_proxy)
+                _, ssh_stdout, _ = ssh.exec_command(f"rm {remote_file}")
+                ssh_out = ssh_stdout.read().decode("utf-8")
+                if ssh_out:
+                    log.info(ssh_out)
+                ssh.close()
+            except TimeoutError as e:
+                log.error(e)
+                error = 1
+
+        if not error:
+            log.info(green("Completed! %s\n", remote_file))
+        else:
+            log.info(red("Completed with errors. %s\n", remote_file))
+        queue.task_done()
+
+    return error_list
+
+
+def delete_file_recon(path: str) -> str:
+    base_path = CAPE_PATH
+    f_name = Path(path).name
+    if "Extractors/StandAlone/" in path:
+        return f"{base_path}/custom/parsers/{f_name}"
+    elif "yara/CAPE" in path and path.endswith((".yar", ".yara")):
+        return f"{base_path}/data/yara/CAPE/{f_name}"
+    elif "modules/signatures" in path:
+        return f"{base_path}/modules/signatures/{f_name}"
+
+
+def check_net_iface():
+    for _, device in if_nameindex():
+        if device.startswith("utun"):
+            return True
diff --git a/lib/cuckoo/common/blzpack.py b/lib/cuckoo/common/blzpack.py
deleted file mode 100644
index ba711fe3188..00000000000
--- a/lib/cuckoo/common/blzpack.py
+++ /dev/null
@@ -1,74 +0,0 @@
-#included from https://github.com/sysopfb/brieflz
-import os
-from ctypes import *
-import binascii
-import zlib
-import struct
-
-CURR_DIR = os.path.abspath(os.path.dirname(__file__))
-LIB_PATH = os.path.join(CURR_DIR, 'blzpack_lib.so')
-brieflz = cdll.LoadLibrary(LIB_PATH)
-
-
-
-DEFAULT_BLOCK_SIZE = 1024 * 1024
-
-def compress_data(data, blocksize, level):
-    compressed_data = ""
-    while len(data) > 0:
-        buf = create_string_buffer(data[:blocksize])
-        cb = c_int(len(buf))
-        cbOut = brieflz.blz_max_packed_size(blocksize)
-        packed = create_string_buffer(cbOut)
-        workmem = create_string_buffer(brieflz.blz_workmem_size_level(blocksize,1))
-        cbOut = c_int(cbOut)
-        retval = brieflz.blz_pack_level(byref(buf), byref(packed), cb, byref(workmem), level)
-        if retval > 0:
-            temp = packed.raw[:retval]
-            tempret = struct.pack(">IIIIII", 1651276314, level, len(temp), zlib.crc32(temp) % (1<<32), len(buf), zlib.crc32(data[:blocksize])%(1<<32)) + temp
-            compressed_data += tempret
-        else:
-            print("Compression Error")
-            return None
-        data = data[blocksize:]
-    return compressed_data
-
-def decompress_data(data, blocksize=DEFAULT_BLOCK_SIZE, level=1):
-    decompressed_data = b""
-    max_packed_size = brieflz.blz_max_packed_size(blocksize);
-
-    (magic,level,packedsize,crc,hdr_depackedsize,crc2) = struct.unpack_from('>IIIIII', data)
-    data = data[24:]
-    while magic == 0x626C7A1A and len(data) > 0:
-        compressed_data = create_string_buffer(data[:packedsize])
-        workdata = create_string_buffer(blocksize)
-        depackedsize = brieflz.blz_depack(byref(compressed_data), byref(workdata), c_int(hdr_depackedsize))
-        if depackedsize != hdr_depackedsize:
-            print("Decompression error")
-            print("DepackedSize: "+str(depackedsize) + "\nHdrVal: "+str(hdr_depackedsize))
-            return None
-        decompressed_data += workdata.raw[:depackedsize]
-        data = data[packedsize:]
-        if len(data) > 0:
-            (magic,level,packedsize,crc,hdr_depackedsize,crc2) = struct.unpack_from('>IIIIII', data)
-            data = data[24:]
-        else:
-            break
-    return decompressed_data
-
-def main():
-    #blocksize = DEFAULT_BLOCK_SIZE
-    blocksize = 100
-    level = 1
-    data = "This is a test of brieflz compression"*100
-    retval = compress_data(data, blocksize, level)
-    if retval != None:
-        print("Compression SUCCESS!\nCompressed Data: ")
-        print(binascii.hexlify(retval))
-        retval = decompress_data(retval, blocksize, level)
-        if retval != None and retval == data:
-            print("Decompress SUCCESS!\nDecompress Data: ")
-            print(retval)
-
-if __name__ == "__main__":
-   main()
diff --git a/lib/cuckoo/common/blzpack_lib.so b/lib/cuckoo/common/blzpack_lib.so
deleted file mode 100755
index 5c12be5afea..00000000000
Binary files a/lib/cuckoo/common/blzpack_lib.so and /dev/null differ
diff --git a/lib/cuckoo/common/cape_utils.py b/lib/cuckoo/common/cape_utils.py
index c4e1d3a1b8b..6299e3c4d22 100644
--- a/lib/cuckoo/common/cape_utils.py
+++ b/lib/cuckoo/common/cape_utils.py
@@ -1,99 +1,111 @@
-from __future__ import absolute_import
-import os
-import imp
-import sys
-import glob
-import json
-import logging
-import tempfile
 import hashlib
-import subprocess
-from io import BytesIO
-from collections import Mapping, Iterable
+import logging
+
+# import tempfile
+from collections.abc import Iterable, Mapping
+from contextlib import suppress
+from pathlib import Path
 
 from lib.cuckoo.common.config import Config
 from lib.cuckoo.common.constants import CUCKOO_ROOT
 from lib.cuckoo.common.objects import File
+from lib.cuckoo.common.path_utils import path_read_file
 
-log = logging.getLogger(__name__)
+try:
+    import pydeep
+
+    ssdeep_threshold = 95
+    HAVE_PYDEEP = True
+except ImportError:
+    HAVE_PYDEEP = False
 
-malware_parsers = dict()
-cape_malware_parsers = dict()
+HAS_MWCP = False
+HAS_MALWARECONFIGS = False
+HAVE_CAPE_EXTRACTORS = False
+with suppress(ImportError):
+    from cape_parsers import load_cape_parsers, load_malwareconfig_parsers, load_mwcp_parsers  # load_malduck_parsers
+
+    HAS_MWCP = True
+    HAS_MALWARECONFIGS = True
+    HAVE_CAPE_EXTRACTORS = True
+
+mwcp_decoders = {}
+rat_decoders = {}
+cape_malware_parsers = {}
 
 # Config variables
+cfg = Config()
 repconf = Config("reporting")
+process_cfg = Config("processing")
+
+log = logging.getLogger(__name__)
+
 
 if repconf.mongodb.enabled:
-    import pymongo
-    results_db = pymongo.MongoClient(repconf.mongodb.host, port=repconf.mongodb.port, username=repconf.mongodb.get("username", None), password=repconf.mongodb.get("password", None), authSource=repconf.mongodb.db)[repconf.mongodb.db]
+    from dev_utils.mongodb import mongo_find_one
+
+if repconf.elasticsearchdb.enabled:
+    from dev_utils.elasticsearchdb import elastic_handler, get_analysis_index
+
+    es = elastic_handler
 
 try:
     import pefile
+
     HAVE_PEFILE = True
 except ImportError:
-    print("Missed pefile library. Install it with: pip3 install pefile")
+    print("Missed pefile library. Install it with: poetry install")
     HAVE_PEFILE = False
 
-# Import All config parsers
-try:
-    import mwcp
+if process_cfg.mwcp.enabled and HAS_MWCP:
+    mwcp_decoders, mwcp = load_mwcp_parsers()
+    HAS_MWCP = bool(mwcp_decoders)
 
-    logging.getLogger("mwcp").setLevel(logging.CRITICAL)
-    mwcp.register_parser_directory(os.path.join(CUCKOO_ROOT, "modules", "processing", "parsers", "mwcp"))
-    malware_parsers = {block.name.split(".")[-1]: block.name for block in mwcp.get_parser_descriptions(config_only=False)}
-    HAS_MWCP = True
-except ImportError as e:
-    HAS_MWCP = False
-    log.info("Missed MWCP -> pip3 install git+https://github.com/Defense-Cyber-Crime-Center/DC3-MWCP\nDetails: {}".format(e))
+if not process_cfg.ratdecoders.enabled and HAS_MALWARECONFIGS:
+    HAS_MALWARECONFIGS, rat_decoders, fileparser = load_malwareconfig_parsers()
 
-try:
-    from malwareconfig import fileparser
-    from malwareconfig.modules import __decoders__, __preprocessors__
-
-    HAS_MALWARECONFIGS = True
-except ImportError:
-    HAS_MALWARECONFIGS = False
-    log.info("Missed RATDecoders -> pip3 install git+https://github.com/kevthehermit/RATDecoders")
-except Exception as e:
-    log.error(e, exc_info=True)
+HAVE_MALDUCK = False
 """
-try:
-    # https://github.com/CERT-Polska/malduck/blob/master/tests/test_extractor.py
-    from malduck import procmem, procmempe
-    from malduck.extractor import ExtractorModules, ExtractManager
-    malduck_modules = ExtractorModules(os.path.join(CUCKOO_ROOT, "modules", "processing", "parsers", "malduck"))
-    HAVE_MALDUCK = True
-except ImportError:
-    HAVE_MALDUCK = False
-    log.info("Missed MalDuck -> pip3 install git+https://github.com/CERT-Polska/malduck/")
+# ToDo move
+if process_cfg.malduck.enabled:
+    try:
+        # from malduck.extractor.loaders import load_modules
+        from malduck.extractor import ExtractManager, ExtractorModules
+        from malduck.extractor.extractor import Extractor
+        from malduck.yara import Yara
+
+        from lib.cuckoo.common.load_extra_modules import malduck_load_decoders
+
+        malduck_rules = Yara.__new__(Yara)
+        malduck_modules = ExtractorModules.__new__(ExtractorModules)
+        # tmp_modules = load_modules(os.path.join(CUCKOO_ROOT, process_cfg.malduck.modules_path))
+        # malduck_modules_names = dict((k.rsplit(".", 1)[-1], v) for k, v in tmp_modules.items())
+        malduck_modules_names = malduck_load_decoders(CUCKOO_ROOT)
+        malduck_modules.extractors = Extractor.__subclasses__()
+        HAVE_MALDUCK = True
+        # del tmp_modules
+        assert "test_malduck" in malduck_modules_names
+    except ImportError:
+        log.info("Missed MalDuck -> pip3 install git+https://github.com/CERT-Polska/malduck/")
 """
 
-cape_decoders = os.path.join(CUCKOO_ROOT, "modules", "processing", "parsers", "CAPE")
-CAPE_DECODERS = [os.path.basename(decoder)[:-3] for decoder in glob.glob(cape_decoders + "/[!_]*.py")]
+if process_cfg.CAPE_extractors.enabled:
+    from lib.cuckoo.common.load_extra_modules import cape_load_custom_decoders
 
-for name in CAPE_DECODERS:
-    try:
-        file, pathname, description = imp.find_module(name, [cape_decoders])
-        module = imp.load_module(name, file, pathname, description)
-        cape_malware_parsers[name] = module
-    except (ImportError, IndexError) as e:
-        if "datadirs" in str(e):
-            log.error("You are using wrong pype32 library. pip3 uninstall pype32 && pip3 install -U pype32-py3")
-        log.warning("CAPE parser: No module named {} - {}".format(name, e))
-
-parser_path = os.path.join(CUCKOO_ROOT, "modules", "processing", "parsers", "CAPE")
-if parser_path not in sys.path:
-    sys.path.append(parser_path)
-
-try:
-    from modules.processing.parsers.plugxconfig import plugx
+    cape_malware_parsers = {}
+    if HAVE_CAPE_EXTRACTORS:
+        exclude_parsers = []
+        if process_cfg.CAPE_extractors.parsers:
+            exclude_parsers = [parser_name.strip() for parser_name in process_cfg.CAPE_extractors.parsers.split(",")]
+        cape_malware_parsers = load_cape_parsers(load=process_cfg.CAPE_extractors.parsers, exclude_parsers=exclude_parsers)
+    # Custom overwrites core
+    cape_malware_parsers.update(cape_load_custom_decoders(CUCKOO_ROOT))
+    if cape_malware_parsers:
+        HAVE_CAPE_EXTRACTORS = True
+    if "test cape" not in cape_malware_parsers:
+        log.info("Missed cape-parsers! Run: poetry install")
 
-    plugx_parser = plugx.PlugXConfig()
-except ImportError as e:
-    plugx_parser = False
-    log.error(e)
 
-processing_conf = Config("processing")
 suppress_parsing_list = ["Cerber", "Emotet_Payload", "Ursnif", "QakBot"]
 
 pe_map = {
@@ -101,11 +113,10 @@
     "PE32": ": 32-bit ",
 }
 
-cfg = Config()
 BUFSIZE = int(cfg.processing.analysis_size_limit)
 
 
-def hash_file(method, path):
+def hash_file(method, path: str) -> str:
     """Calculates an hash on a file by path.
     @param method: callable hashing method
     @param path: file path
@@ -121,36 +132,6 @@ def hash_file(method, path):
     return h.hexdigest()
 
 
-def upx_harness(raw_data):
-    upxfile = tempfile.NamedTemporaryFile(delete=False)
-    upxfile.write(raw_data)
-    upxfile.close()
-    try:
-        ret = subprocess.call("(upx -d %s)" % upxfile.name, shell=True, stdout=subprocess.PIPE, stderr=subprocess.PIPE)
-    except Exception as e:
-        log.error("CAPE: UPX Error %s", e)
-        os.unlink(upxfile.name)
-        return
-
-    if ret == 0:
-        sha256 = hash_file(hashlib.sha256, upxfile.name)
-        newname = os.path.join(os.path.dirname(upxfile.name), sha256)
-        os.rename(upxfile.name, newname)
-        log.info("CAPE: UPX - Statically unpacked binary %s.", upxfile.name)
-        return newname
-    elif ret == 127:
-        log.error("CAPE: Error - UPX not installed.")
-    elif ret == 1:
-        log.error("CAPE: Error - UPX CantUnpackException")
-    elif ret == 2:
-        log.error("CAPE: Error - UPX 'not packed' exception.")
-    else:
-        log.error("CAPE: Unknown error - check UPX is installed and working.")
-
-    os.unlink(upxfile.name)
-    return
-
-
 def convert(data):
     if isinstance(data, str):
         return str(data)
@@ -158,124 +139,283 @@ def convert(data):
         return dict(list(map(convert, data.items())))
     elif isinstance(data, Iterable):
         return type(data)(list(map(convert, data)))
-    else:
-        return data
+    return data
 
 
-def static_config_parsers(yara_hit, file_data):
+def is_duplicated_binary(file_info: dict, cape_file: dict, append_file: bool) -> bool:
+    """
+    Determines if a binary file is a duplicate based on various criteria.
+
+    Args:
+        file_info (dict): Information about the file being checked.
+        cape_file (dict): Information about the existing CAPE file.
+        append_file (bool): Flag indicating whether to append the file.
+
+    Returns:
+        bool: False if the file is determined to be a duplicate, otherwise returns the value of append_file.
+    """
+    if HAVE_PYDEEP:
+        ssdeep_grade = pydeep.compare(file_info["ssdeep"].encode(), cape_file["ssdeep"].encode())
+        if ssdeep_grade >= ssdeep_threshold:
+            log.debug("Duplicate payload skipped: ssdeep grade %d, threshold %d", ssdeep_grade, ssdeep_threshold)
+            append_file = False
+    if not file_info.get("pe") or not cape_file.get("pe"):
+        return append_file
+    if file_info["pe"].get("entrypoint") and file_info["pe"].get("ep_bytes") and cape_file["pe"].get("entrypoint"):
+        if (
+            file_info["pe"]["entrypoint"] == cape_file["pe"]["entrypoint"]
+            and file_info["cape_type_code"] == cape_file["cape_type_code"]
+            and file_info["pe"]["ep_bytes"] == cape_file["pe"]["ep_bytes"]
+        ):
+            log.debug("CAPE duplicate output file skipped: matching entrypoint")
+            append_file = False
+
+    return append_file
+
+
+def static_config_parsers(cape_name: str, file_path: str, file_data: bytes) -> dict:
+    """
+    Process CAPE Yara hits and extract configuration data using various parsers.
+
+    This function attempts to extract configuration data from a given file using different parsers
+    such as CAPE extractors, DC3-MWCP, and Malwareconfigs. The function returns a dictionary containing
+    the extracted configuration data.
+
+    Args:
+        cape_name (str): The name of the CAPE parser to use.
+        file_path (str): The path to the file being analyzed.
+        file_data (bytes): The binary data of the file being analyzed.
+
+    Returns:
+        dict: A dictionary containing the extracted configuration data. If no configuration data is
+            extracted, an empty dictionary is returned.
+    """
     """Process CAPE Yara hits"""
-    cape_name = yara_hit.replace("_", " ")
-    cape_config = dict()
-    cape_config[cape_name] = dict()
+    cape_config = {}
     parser_loaded = False
+    # CAPE - pure python parsers
+    # MWCP
+    # RatDecoders
+    # MalDuck
     # Attempt to import a parser for the hit
-    # DC3-MWCP
+    if HAVE_CAPE_EXTRACTORS and cape_name in cape_malware_parsers:
+        log.debug("Running CAPE on %s", file_path)
+        try:
+            # changed from cape_config to cape_configraw because of avoiding overridden. duplicated value name.
+            if hasattr(cape_malware_parsers[cape_name], "extract_config"):
+                cape_configraw = cape_malware_parsers[cape_name].extract_config(file_data)
+            else:
+                cape_configraw = cape_malware_parsers[cape_name].config(file_data)
+            if isinstance(cape_configraw, list):
+                for key, value in cape_configraw[0].items():
+                    # python3 map object returns iterator by default, not list and not serializeable in JSON.
+                    if isinstance(value, map):
+                        value = list(value)
+                    cape_config.setdefault(cape_name, {}).update({key: [value]})
+                parser_loaded = True
+            elif isinstance(cape_configraw, dict):
+                for key, value in cape_configraw.items():
+                    # python3 map object returns iterator by default, not list and not serializeable in JSON.
+                    if isinstance(value, map):
+                        value = list(value)
+                    cape_config.setdefault(cape_name, {}).update({key: [value]})
+                parser_loaded = True
+        except Exception as e:
+            log.exception("CAPE: parsing error on %s with %s: %s", file_path, cape_name, e)
 
-    if cape_name and HAS_MWCP and cape_name in malware_parsers:
+    # DC3-MWCP
+    if HAS_MWCP and not parser_loaded and cape_name and cape_name in mwcp_decoders:
+        log.debug("Running MWCP on %s", file_path)
         try:
-            reporter = mwcp.Reporter()
-            reporter.run_parser(malware_parsers[cape_name], data=file_data)
-            if not reporter.errors:
+            report = mwcp.run(mwcp_decoders[cape_name], data=file_data)
+            reportmeta = report.as_dict_legacy()
+            if not report.errors:
                 parser_loaded = True
-                tmp_dict = dict()
-                if reporter.metadata.get("debug"):
-                    del reporter.metadata["debug"]
-                if reporter.metadata.get("other"):
-                    for key, value in reporter.metadata["other"].items():
+                tmp_dict = {}
+                if reportmeta.get("debug"):
+                    del reportmeta["debug"]
+                if reportmeta.get("other"):
+                    for key, value in reportmeta["other"].items():
                         tmp_dict.setdefault(key, [])
                         if value not in tmp_dict[key]:
                             tmp_dict[key].append(value)
-                    del reporter.metadata["other"]
+                    del reportmeta["other"]
 
-                tmp_dict.update(reporter.metadata)
-                cape_config[cape_name] = convert(tmp_dict)
+                tmp_dict.update(reportmeta)
+                cape_config.setdefault(cape_name, {}).update(convert(tmp_dict))
                 log.debug("CAPE: DC3-MWCP parser for %s completed", cape_name)
             else:
-                error_lines = reporter.errors[0].split("\n")
+                error_lines = report.errors[0].split("\n")
                 for line in error_lines:
                     if line.startswith("ImportError: "):
-                        log.debug("CAPE: DC3-MWCP parser: %s", line.split(": ")[1])
-            reporter._Reporter__cleanup()
-            del reporter
+                        log.debug("CAPE: DC3-MWCP parser: %s", line.split(": ", 2)[1])
         except pefile.PEFormatError:
-            log.error("pefile PEFormatError")
+            log.error("pefile PEFormatError on %s", file_path)
         except Exception as e:
-            log.error("CAPE: DC3-MWCP config parsing error with {}: {}".format(cape_name, e))
-
-    if not parser_loaded and cape_name in cape_malware_parsers:
-        try:
-            # changed from cape_config to cape_configraw because of avoiding overridden. duplicated value name.
-            cape_configraw = cape_malware_parsers[cape_name].config(file_data)
-            if isinstance(cape_configraw, list):
-                for (key, value) in cape_configraw[0].items():
-                    # python3 map object returns iterator by default, not list and not serializeable in JSON.
-                    if isinstance(value, map):
-                        value = list(value)
-                    cape_config[cape_name].update({key: [value]})
-            elif isinstance(cape_configraw, dict):
-                for (key, value) in cape_configraw.items():
-                    # python3 map object returns iterator by default, not list and not serializeable in JSON.
-                    if isinstance(value, map):
-                        value = list(value)
-                    cape_config[cape_name].update({key: [value]})
-        except Exception as e:
-            log.error("CAPE: parsing error with {}: {}".format(cape_name, e))
-
-    elif HAS_MALWARECONFIGS and not parser_loaded and cape_name in __decoders__:
+            log.error(
+                "CAPE: DC3-MWCP config parsing error on %s with %s: %s",
+                file_path,
+                cape_name,
+                str(e),
+            )
+
+    elif HAS_MALWARECONFIGS and not parser_loaded and cape_name in rat_decoders:
+        log.debug("Running Malwareconfigs on %s", file_path)
         try:
+            module = False
             file_info = fileparser.FileParser(rawdata=file_data)
-            module = __decoders__[file_info.malware_name]["obj"]()
-            module.set_file(file_info)
-            module.get_config()
-            malwareconfig_config = module.config
-            # ToDo remove
-            if isinstance(malwareconfig_config, list):
-                for (key, value) in malwareconfig_config[0].items():
-                    cape_config[cape_name].update({key: [value]})
-            elif isinstance(malwareconfig_config, dict):
-                for (key, value) in malwareconfig_config.items():
-                    cape_config[cape_name].update({key: [value]})
+            # Detects name by embed yara
+            if file_info.malware_name in rat_decoders:
+                module = rat_decoders[file_info.malware_name]["obj"]()
+            elif cape_name in rat_decoders:
+                module = rat_decoders[cape_name]["obj"]()
+            else:
+                log.warning("%s: %s wasn't matched by plugin's yara", file_path, cape_name)
+
+            if module:
+                module.set_file(file_info)
+                module.get_config()
+                malwareconfig_config = module.config
+                # ToDo remove
+                if isinstance(malwareconfig_config, list):
+                    for key, value in malwareconfig_config[0].items():
+                        cape_config.setdefault(cape_name, {}).update({key: [value]})
+                elif isinstance(malwareconfig_config, dict):
+                    for key, value in malwareconfig_config.items():
+                        cape_config.setdefault(cape_name, {}).update({key: [value]})
         except Exception as e:
-            log.warning("malwareconfig parsing error with %s: %s, you should submit issue/fix to https://github.com/kevthehermit/RATDecoders/", cape_name, e,)
-
-        if cape_name in cape_config and cape_config[cape_name] == {}:
-            return {}
+            if "rules" in str(e):
+                log.warning("You probably need to compile yara-python with dotnet support")
+            else:
+                log.exception(e)
+                log.warning(
+                    "malwareconfig parsing error for %s with %s: %s, you should submit issue/fix to https://github.com/kevthehermit/RATDecoders/",
+                    file_path,
+                    cape_name,
+                    str(e),
+                )
+    """
+    elif HAVE_MALDUCK and not parser_loaded and cape_name.lower() in malduck_modules_names:
+        log.debug("Running Malduck on %s", file_path)
+        if not File.yara_initialized:
+            File.init_yara()
+        # placing here due to not load yara in not related tools
+        malduck_rules.rules = File.yara_rules["CAPE"]
+        malduck_modules.rules = malduck_rules
+        ext = ExtractManager.__new__(ExtractManager)
+        ext.configs = {}
+        ext.modules = malduck_modules
+        tmp_file = tempfile.NamedTemporaryFile(delete=False)
+        tmp_file.write(file_data)
+        ext.push_file(tmp_file.name)
+        tmp_file.close()
+
+        tmp_config = ext.config
+        del ext
+        if tmp_config:
+            for key, value in tmp_config[0].items():
+                cape_config.setdefault(cape_name, {}).update({key: [value]})
+    """
 
     return cape_config
 
-def static_config_lookup(file_path, sha256=False):
+
+def static_config_lookup(file_path: str, sha256: str = False) -> dict:
+    """
+    Look up static configuration information for a given file based on its SHA-256 hash.
+
+    This function calculates the SHA-256 hash of the file at the specified path if not provided,
+    and then queries either a MongoDB or Elasticsearch database to retrieve configuration information.
+
+    Args:
+        file_path (str): The path to the file for which to look up configuration information.
+        sha256 (str, optional): The SHA-256 hash of the file. If not provided, it will be calculated.
+
+    Returns:
+        dict or None: A dictionary containing the configuration information if found, otherwise None.
+    """
     if not sha256:
         sha256 = hashlib.sha256(open(file_path, "rb").read()).hexdigest()
-    cape_tasks = results_db.analysis.find({"target.file.sha256": sha256}, {"CAPE.cape_config":1, "info.id": 1, "_id":0})
-    for task in cape_tasks or []:
-        if task.get("cape_config") and task["cape_config"]:
-            return task
 
-def static_extraction(path):
+    if repconf.mongodb.enabled:
+        document_dict = mongo_find_one(
+            "analysis", {"target.file.sha256": sha256}, {"CAPE.configs": 1, "info.id": 1, "_id": 0}, sort=[("_id", -1)]
+        )
+    elif repconf.elasticsearchdb.enabled:
+        document_dict = es.search(
+            index=get_analysis_index(),
+            body={"query": {"match": {"target.file.sha256": sha256}}},
+            _source=["CAPE.configs", "info.id"],
+            sort={"_id": {"order": "desc"}},
+        )["hits"]["hits"][0]["_source"]
+    else:
+        document_dict = None
+
+    if not document_dict:
+        return
+
+    has_config = document_dict.get("CAPE", {}).get("configs", [])
+    if has_config:
+        return document_dict["info"]
+
+
+# add your families here, should match file name as in cape yara
+named_static_extractors = []
+
+
+def static_extraction(path: str) -> dict:
+    """
+    Extracts static configuration from a file using YARA rules and named static extractors.
+
+    Args:
+        path (str): The file path to be analyzed.
+
+    Returns:
+        dict or bool: The extracted configuration as a dictionary if successful,
+                    False if no configuration is found or an error occurs.
+
+    Raises:
+        Exception: Logs any exceptions that occur during the extraction process.
+    """
+    config = {}
     try:
         hits = File(path).get_yara(category="CAPE")
-        if not hits:
-            return False
-        # Get the file data
-        with open(path, "rb") as file_open:
-            file_data = file_open.read()
-        for hit in hits:
-            config = static_config_parsers(hit["name"], file_data)
-            if config:
-                return config
-        return False
+        path_name = Path(path).name
+        if not hits and path_name not in named_static_extractors:
+            return config
+        file_data = path_read_file(path)
+        if path_name in named_static_extractors:
+            config = static_config_parsers(path_name, path, file_data)
+        else:
+            for hit in hits:
+                cape_name = File.get_cape_name_from_yara_hit(hit)
+                config = static_config_parsers(cape_name, path, file_data)
+                if config:
+                    break
     except Exception as e:
         log.error(e)
 
-    return False
+    return config
+
+
+def cape_name_from_yara(details: dict, pid: int, results: dict) -> str:
+    """
+    Extracts the CAPE name from YARA hit details and associates it with a process ID (pid) in the results dictionary.
+
+    Args:
+        details (dict): A dictionary containing YARA hit details, expected to have a key "cape_yara" with a list of hits.
+        pid (int): The process ID to associate the CAPE name with.
+        results (dict): A dictionary to store the association between detections and process IDs.
 
-def cape_name_from_yara(details, pid, results):
+    Returns:
+        str: The CAPE name extracted from the YARA hit, or None if no CAPE name is found.
+    """
     for hit in details.get("cape_yara", []) or []:
-        if "meta" in hit and any([file_type in hit["meta"].get("cape_type", "").lower() for file_type in ("payload", "config", "loader")]):
+        if File.yara_hit_provides_detection(hit):
             if "detections2pid" not in results:
                 results.setdefault("detections2pid", {})
-            results["detections2pid"].setdefault(str(pid), list())
-            name = hit["name"].replace("_", " ")
+            results["detections2pid"].setdefault(str(pid), [])
+            name = File.get_cape_name_from_yara_hit(hit)
             if name not in results["detections2pid"][str(pid)]:
                 results["detections2pid"][str(pid)].append(name)
             return name
diff --git a/lib/cuckoo/common/cents/__init__.py b/lib/cuckoo/common/cents/__init__.py
new file mode 100644
index 00000000000..e69de29bb2d
diff --git a/lib/cuckoo/common/cleaners_utils.py b/lib/cuckoo/common/cleaners_utils.py
new file mode 100644
index 00000000000..14953df9bf6
--- /dev/null
+++ b/lib/cuckoo/common/cleaners_utils.py
@@ -0,0 +1,817 @@
+import atexit
+import logging
+import os
+import shutil
+import sys
+import time
+from contextlib import suppress
+from datetime import datetime, timedelta
+from multiprocessing.pool import ThreadPool
+
+from lib.cuckoo.common.config import Config
+from lib.cuckoo.common.constants import CUCKOO_ROOT
+from lib.cuckoo.common.dist_db import Task as DTask
+from lib.cuckoo.common.dist_db import create_session
+from lib.cuckoo.common.exceptions import CuckooOperationalError
+from lib.cuckoo.common.path_utils import path_delete, path_exists, path_get_date, path_is_dir, path_mkdir
+from lib.cuckoo.core.database import (
+    TASK_FAILED_ANALYSIS,
+    TASK_FAILED_PROCESSING,
+    TASK_FAILED_REPORTING,
+    TASK_PENDING,
+    TASK_RECOVERED,
+    TASK_REPORTED,
+    Database,
+    Sample,
+    Task,
+    _Database,
+)
+from lib.cuckoo.core.startup import create_structure, init_console_logging
+
+log = logging.getLogger(__name__)
+
+config = Config()
+repconf = Config("reporting")
+webconf = Config("web")
+resolver_pool = ThreadPool(50)
+atexit.register(resolver_pool.close)
+
+HAVE_TMPFS = False
+if hasattr(config, "tmpfs"):
+    tmpfs = config.tmpfs
+    HAVE_TMPFS = True
+
+# Initialize the database connection.
+db: _Database = Database()
+if repconf.mongodb.enabled:
+    # mdb = repconf.mongodb.get("db", "cuckoo")
+    from dev_utils.mongo_hooks import delete_unused_file_docs
+    from dev_utils.mongodb import (
+        connect_to_mongo,
+        mdb,
+        mongo_delete_data,
+        mongo_drop_database,
+        mongo_find,
+        mongo_is_cluster,
+        mongo_update_one,
+        mongo_update_many,
+        mongo_delete_calls_by_task_id_in_range,
+        mongo_delete_data_range,
+    )
+elif repconf.elasticsearchdb.enabled:
+    from dev_utils.elasticsearchdb import all_docs, delete_analysis_and_related_calls, get_analysis_index
+
+
+def convert_into_time(time_range: str) -> datetime:
+    """
+    Converts a string representing a time range (e.g., '12h', '1d', '5m')
+    into a datetime object representing the time in the past.
+
+    Args:
+        time_range: A string in the format of a number followed by a unit
+                    ('d' for days, 'h' for hours, 'm' for minutes, 's' for seconds).
+
+    Returns:
+        A datetime object representing the time in the past based on the
+        provided time range.
+
+    Raises:
+        ValueError: If the input string is in an invalid format or the unit
+                    is not recognized.
+    """
+    if not isinstance(time_range, str) or len(time_range) < 2:
+        raise ValueError("Invalid time range format.")
+
+    unit = time_range[-1].lower()
+    value_str = time_range[:-1]
+
+    if not value_str.isdigit():
+        raise ValueError("Invalid numeric value.")
+
+    value = int(value_str)
+    now = datetime.now()
+
+    time_units = {
+        "d": "days",
+        "h": "hours",
+        "m": "minutes",
+        "s": "seconds",
+    }
+
+    if unit in time_units:
+        kwargs = {time_units[unit]: value}
+        return now - timedelta(**kwargs)
+    else:
+        raise ValueError(f"Invalid time unit '{unit}'.")
+
+
+# todo rewrite for time range
+def free_space_monitor(path=False, return_value=False, processing=False, analysis=False):
+    """
+    @param path: path to check
+    @param return_value: return available size
+    @param processing: size from cuckoo.conf -> freespace_processing.
+    @param analysis: check the main storage size
+    """
+
+    cleanup_dict = {
+        "delete_mongo": config.cleaner.mongo,
+    }
+    if config.cleaner.binaries:
+        cleanup_dict["delete_binaries_items_older_than"] = config.cleaner.binaries
+    if config.cleaner.tmp:
+        cleanup_dict["delete_tmp_items_older_than"] = config.cleaner.tmp
+    if config.cleaner.analysis:
+        cleanup_dict["delete_older_than"] = config.cleaner.analysis
+    if config.cleaner.unused_files_in_mongodb:
+        cleanup_dict["delete_unused_file_data_in_mongo"] = 1
+
+    need_space, space_available = False, 0
+    # Calculate the free disk space in megabytes.
+    # Check main FS if processing
+    if processing:
+        free_space = config.cuckoo.freespace_processing
+    elif not analysis and HAVE_TMPFS and tmpfs.enabled:
+        path = tmpfs.path
+        free_space = tmpfs.freespace
+    else:
+        free_space = config.cuckoo.freespace
+
+    if path and not path_exists(path):
+        sys.exit("Restart daemon/process, happens after full cleanup")
+
+    printed_error = False
+    while True:
+        try:
+            space_available = shutil.disk_usage(path).free >> 20
+            need_space = space_available < free_space
+        except FileNotFoundError:
+            log.error("Folder doesn't exist, maybe due to clean")
+            path_mkdir(path)
+            continue
+
+        if return_value:
+            return need_space, space_available
+
+        if need_space:
+            if not printed_error:
+                log.error(
+                    "Not enough free disk space! (Only %d MB!). You can change limits it in cuckoo.conf -> freespace",
+                    space_available,
+                )
+                printed_error = True
+
+            # Invoke cleaups here if enabled
+            if config.cleaner.enabled:
+                # prepare dict on startup
+                execute_cleanup(cleanup_dict)
+
+                # ToDo timedelta
+                """
+                if config.cleaner.binaries and cleanup_dict["delete_binaries_items_older_than"]:
+                    cleanup_dict["delete_binaries_items_older_than"] -= 1
+                if config.cleaner.tmp and cleanup_dict["delete_tmp_items_older_than"]:
+                    cleanup_dict["delete_tmp_items_older_than"] -= 1
+                if config.cleaner.analysis and cleanup_dict["delete_older_than"]:
+                    cleanup_dict["delete_older_than"] -= 1
+                """
+
+            time.sleep(5)
+        else:
+            break
+
+
+def delete_folder(folder):
+    """Delete a folder and all its subdirectories.
+    @param folder: path to delete.
+    @raise CuckooOperationalError: if fails to delete folder.
+    """
+    if path_exists(folder):
+        try:
+            shutil.rmtree(folder)
+        except OSError as e:
+            raise CuckooOperationalError(f"Unable to delete folder: {folder}") from e
+
+
+def connect_to_es():
+    from dev_utils.elasticsearchdb import elastic_handler
+
+    es = elastic_handler
+
+    return es
+
+
+def is_reporting_db_connected():
+    try:
+        if not webconf.web_reporting.enabled:
+            return True
+        if repconf.mongodb.enabled:
+            results_db = connect_to_mongo()[mdb]
+            # Database objects do not implement truth value testing or bool(). Please compare with None instead: database is not None
+            if results_db is None:
+                log.info("Can't connect to mongo")
+                return False
+            return True
+        elif repconf.elasticsearchdb.enabled:
+            connect_to_es()
+            return True
+    except Exception as e:
+        log.error("Can't connect to reporting db %s", str(e))
+        return False
+
+
+def delete_bulk_tasks_n_folders(ids: list, delete_mongo: bool, delete_db_tasks=False):
+    for i in range(0, len(ids), 10):
+        ids_tmp = ids[i : i + 10]
+        for id in ids_tmp:
+            try:
+                path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(id))
+                if path_is_dir(path):
+                    delete_folder(path)
+            except Exception as e:
+                log.error(e)
+
+        if delete_mongo:
+            if mongo_is_cluster():
+                response = input("You are deleting mongo data in cluster, are you sure you want to continue? y/n")
+                if response.lower() in ("n", "not"):
+                    sys.exit()
+            mongo_delete_data(ids_tmp)
+            if delete_db_tasks:
+                try:
+                    db.delete_tasks(task_ids=ids_tmp)
+                except Exception as e:
+                    log.error("Failed to delete tasks from DB: %s", str(e))
+
+
+def fail_job(tid):
+    log.info("set %s job to failed", tid)
+    db.set_status(tid, TASK_FAILED_ANALYSIS)
+
+
+def delete_data(tid):
+    try:
+        log.info("removing %s from analysis db", tid)
+        if repconf.mongodb.enabled:
+            mongo_delete_data(tid)
+        elif repconf.elasticsearchdb.enabled:
+            delete_analysis_and_related_calls(tid)
+    except Exception as e:
+        log.exception("failed to remove analysis info (may not exist) %s due to %s", tid, e)
+    with db.session.begin():
+        if db.delete_task(tid):
+            delete_folder(os.path.join(CUCKOO_ROOT, "storage", "analyses", str(tid)))
+        else:
+            log.info("failed to remove faile task %s from DB", tid)
+
+
+def dist_delete_data(data, dist_db):
+    id_list = []
+    for id, file in data:
+        try:
+            if path_exists(file):
+                try:
+                    path_delete(file)
+                except Exception as e:
+                    log.info(e)
+            # clean dist_db
+            dist_task = dist_db.query(Task).filter(DTask.main_task.id == id).first()
+            if dist_task:
+                dist_db.delete(dist_task.id)
+            id_list.append(id)
+        except Exception as e:
+            log.info(e)
+
+    db.delete_tasks(id_list)
+
+
+def cuckoo_clean():
+    """Clean up cuckoo setup.
+    It deletes logs, all stored data from file system and configured databases (SQL
+    and MongoDB.
+    """
+    # Init logging.
+    # This need to init a console logger handler, because the standard
+    # logger (init_logging()) logs to a file which will be deleted.
+    create_structure()
+
+    # Drop all tables.
+    db.drop()
+
+    if repconf.mongodb.enabled:
+        try:
+            mongo_drop_database(mdb)
+        except Exception as e:
+            log.error("Can't drop MongoDB. Error %s", str(e))
+
+    elif repconf.elasticsearchdb.enabled and not repconf.elasticsearchdb.searchonly:
+        analyses = all_docs(index=get_analysis_index(), query={"query": {"match_all": {}}}, _source=["info.id"])
+        if analyses:
+            for analysis in analyses:
+                delete_analysis_and_related_calls(analysis["_source"]["info"]["id"])
+
+    # Paths to clean.
+    paths = [
+        os.path.join(CUCKOO_ROOT, "db"),
+        os.path.join(CUCKOO_ROOT, "log"),
+        os.path.join(CUCKOO_ROOT, "storage"),
+        # ToDo temp cleanup
+    ]
+
+    # Delete various directories.
+    for path in paths:
+        if path_is_dir(path):
+            try:
+                shutil.rmtree(path)
+            except (IOError, OSError) as e:
+                log.warning("Error removing directory %s: %s", path, e)
+
+    # Delete all compiled Python objects ("*.pyc").
+    for dirpath, dirnames, filenames in os.walk(CUCKOO_ROOT):
+        for fname in filenames:
+            if not fname.endswith(".pyc"):
+                continue
+
+            path = os.path.join(CUCKOO_ROOT, dirpath, fname)
+
+            try:
+                path_delete(path)
+            except (IOError, OSError) as e:
+                log.warning("Error removing file %s: %s", path, e)
+
+
+def cuckoo_clean_failed_tasks():
+    """Clean up failed tasks
+    It deletes all stored data from file system and configured databases (SQL
+    and MongoDB for failed tasks.
+    """
+    # Init logging.
+    # This need to init a console logger handler, because the standard
+    # logger (init_logging()) logs to a file which will be deleted.
+    create_structure()
+
+    # ToDo multi status
+    tasks_list = db.list_tasks(status=f"{TASK_FAILED_ANALYSIS}|{TASK_FAILED_PROCESSING}|{TASK_FAILED_REPORTING}|{TASK_RECOVERED}")
+    # ToDo rewrite for bulk delete
+    ids = [task.id for task in tasks_list]
+    delete_bulk_tasks_n_folders(ids, delete_mongo=True)
+    tasks_list = db.delete_tasks(status=f"{TASK_FAILED_ANALYSIS}|{TASK_FAILED_PROCESSING}|{TASK_FAILED_REPORTING}|{TASK_RECOVERED}")
+
+
+def cuckoo_clean_bson_suri_logs():
+    """Clean up raw suri log files probably not needed if storing in mongo. Does not remove extracted files"""
+    # Init logging.
+    # This need to init a console logger handler, because the standard
+    # logger (init_logging()) logs to a file which will be deleted.
+    create_structure()
+    from glob import glob
+
+    tasks_list = db.list_tasks(
+        status=f"{TASK_FAILED_ANALYSIS}|{TASK_FAILED_PROCESSING}|{TASK_FAILED_REPORTING}|{TASK_RECOVERED}|{TASK_REPORTED}"
+    )
+    for task in tasks_list:
+        path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(task.id))
+        if path_exists(path):
+            jsonlogs = glob(f"{path}/logs/*json*")
+            bsondata = glob(f"{path}/logs/*.bson")
+            filesmeta = glob(f"{path}/logs/files/*.meta")
+            for f in jsonlogs, bsondata, filesmeta:
+                for fe in f:
+                    try:
+                        # log.info("removing %s", fe)
+                        path_delete(fe)
+                    except Exception as Err:
+                        log.info("failed to remove sorted_pcap from disk %s", Err)
+
+
+def cuckoo_clean_failed_url_tasks():
+    """Clean up failed tasks
+    It deletes all stored data from file system and configured databases (SQL
+    and MongoDB for failed tasks.
+    """
+    # Init logging.
+    # This need to init a console logger handler, because the standard
+    # logger (init_logging()) logs to a file which will be deleted.
+    create_structure()
+    if not is_reporting_db_connected():
+        return
+
+    if repconf.mongodb.enabled:
+        query = {"info.category": "url", "network.http.0": {"$exists": False}}
+        rtmp = mongo_find("analysis", query, projection={"info.id": 1}, sort=[("_id", -1)], limit=100)
+        ids = [task["info"]["id"] for task in rtmp]
+        delete_bulk_tasks_n_folders(ids, delete_mongo=True, delete_db_tasks=True)
+    elif repconf.elasticsearchdb.enabled:
+        rtmp = [
+            d["_source"]
+            for d in all_docs(
+                index=get_analysis_index(),
+                query={"query": {"bool": {"must": [{"exists": {"field": "network.http"}}, {"match": {"info.category": "url"}}]}}},
+                _source=["info.id"],
+            )
+        ]
+        if rtmp and len(rtmp) > 0:
+            resolver_pool.map(lambda tid: delete_data(tid), rtmp)
+
+
+def cuckoo_clean_lower_score(malscore: int):
+    """Clean up tasks with score <= X
+    It deletes all stored data from file system and configured databases (SQL
+    and MongoDB for tasks.
+    """
+    # Init logging.
+    # This need to init a console logger handler, because the standard
+    # logger (init_logging()) logs to a file which will be deleted.
+
+    create_structure()
+    id_arr = []
+    if not is_reporting_db_connected():
+        return
+
+    if repconf.mongodb.enabled:
+        result = list(mongo_find("analysis", {"malscore": {"$lte": malscore}}))
+        id_arr = [entry["info"]["id"] for entry in result]
+
+    elif repconf.elasticsearchdb.enabled:
+        id_arr = [
+            d["_source"]["info"]["id"]
+            for d in all_docs(
+                index=get_analysis_index(), query={"query": {"range": {"malscore": {"lte": malscore}}}}, _source=["info.id"]
+            )
+        ]
+    log.info("number of matching records %s", len(id_arr))
+    # resolver_pool.map(lambda tid: delete_data(tid), id_arr)
+    if id_arr:
+        delete_bulk_tasks_n_folders(id_arr, delete_mongo=True, delete_db_tasks=True)
+
+
+def tmp_clean_before(timerange: str):
+    """Clean up tmp folder
+    It deletes all items in tmp folder before now - timerange.
+    """
+    older_than = convert_into_time(timerange)
+    tmp_folder_path = config.cuckoo.get("tmppath")
+    # 3rd party?
+    for folder in ("cuckoo-tmp", "cape-external", "cuckoo-sflock"):
+        for root, directories, files in os.walk(os.path.join(tmp_folder_path, folder), topdown=True):
+            for name in files + directories:
+                path = os.path.join(root, name)
+                path_ctime = path_get_date(os.path.join(root, path))
+                if datetime.fromtimestamp(path_ctime) > older_than:
+                    try:
+                        if path_is_dir(path):
+                            log.info("Delete folder: %s", path)
+                            delete_folder(path)
+                        elif path_exists(path):
+                            log.info("Delete file: %s", path)
+                            path_delete(path)
+                    except Exception as e:
+                        log.error(e)
+
+
+def cuckoo_clean_before(args: dict):
+    """Clean up failed tasks
+    It deletes all stored data from file system and configured databases (SQL
+    and MongoDB for tasks completed before now - time range.
+    """
+    # Init logging.
+    # This need to init a console logger handler, because the standard
+    # logger (init_logging()) logs to a file which will be deleted.
+
+    create_structure()
+    id_arr = []
+
+    if not is_reporting_db_connected():
+        return
+
+    timerange = args.get("delete_older_than")
+    if not timerange:
+        log.info("No days argument provided bailing")
+        return
+
+    category = None
+    added_before = convert_into_time(timerange)
+    if args.get("files_only_filter"):
+        log.info("file filter applied")
+        category = "file"
+    elif args.get("urls_only_filter"):
+        log.info("url filter applied")
+        category = "url"
+
+    old_tasks = db.list_tasks(added_before=added_before, category=category, not_status=TASK_PENDING)
+
+    # We need this to cleanup file system and MongoDB calls collection
+    id_arr = [e.id for e in old_tasks]
+    log.info("number of matching records %s before suri/custom filter", len(id_arr))
+    if id_arr and args.get("suricata_zero_alert_filter"):
+        result = list(
+            mongo_find("analysis", {"suricata.alerts.alert": {"$exists": False}, "$or": id_arr}, {"info.id": 1, "_id": 0})
+        )
+        id_arr = [entry["info"]["id"] for entry in result]
+    if id_arr and args.get("custom_include_filter"):
+        result = list(
+            mongo_find(
+                "analysis", {"info.custom": {"$regex": args.get("custom_include_filter")}, "$or": id_arr}, {"info.id": 1, "_id": 0}
+            )
+        )
+        id_arr = [entry["info"]["id"] for entry in result]
+    highest_id = max(id_arr, default=0)
+    log.info("number of matching records %s. Highest id: %d", len(id_arr), highest_id)
+    # delete_bulk_tasks_n_folders(id_arr, args.get("delete_mongo"), db_delete_before=1)
+    # resolver_pool.map(lambda tid: delete_data(tid), id_arr)
+    # ids = [tid["info.id"] for tid in tids]
+    for i in range(0, len(id_arr), 100):
+        ids_tmp = id_arr[i : i + 100]
+        for id in ids_tmp:
+            try:
+                path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(id))
+                if path_is_dir(path):
+                    delete_folder(path)
+            except Exception as e:
+                log.error(e)
+
+    if args.get("delete_mongo"):
+        if mongo_is_cluster():
+            response = input("You are deleting mongo data in cluster, are you sure you want to continue? y/n")
+            if response.lower() in ("n", "not"):
+                sys.exit()
+        mongo_delete_data_range(range_end=highest_id)
+        # cleanup_files_collection_by_id(highest_id)
+
+    db.delete_tasks(added_before=added_before, category=category)
+
+
+def cuckoo_clean_sorted_pcap_dump():
+    """Clean up failed tasks
+    It deletes all stored data from file system and configured databases (SQL
+    and MongoDB for failed tasks.
+    """
+    # Init logging.
+    # This need to init a console logger handler, because the standard
+    # logger (init_logging()) logs to a file which will be deleted.
+    create_structure()
+
+    if not is_reporting_db_connected():
+        return
+
+    if repconf.elasticsearchdb.enabled:
+        es = connect_to_es()
+
+    done = False
+
+    while not done:
+        if repconf.mongodb.enabled:
+            query = {"network.sorted_pcap_id": {"$exists": True}}
+            rtmp = mongo_find("analysis", query, projection={"info.id": 1}, sort=[("_id", -1)], limit=100)
+        elif repconf.elasticsearchdb.enabled:
+            rtmp = [
+                d["_source"]
+                for d in all_docs(
+                    index=get_analysis_index(),
+                    query={"query": {"exists": {"field": "network.sorted_pcap_id"}}},
+                    _source=["info.id"],
+                )
+            ]
+        else:
+            rtmp = 0
+
+        if rtmp and len(rtmp) > 0:
+            for e in rtmp:
+                if e["info"]["id"]:
+                    try:
+                        # ToDo replace to $in
+                        if repconf.mongodb.enabled:
+                            mongo_update_one(
+                                "analysis", {"info.id": int(e["info"]["id"])}, {"$unset": {"network.sorted_pcap_id": ""}}
+                            )
+                        elif repconf.elasticsearchdb.enabled:
+                            es.update(index=e["index"], id=e["info"]["id"], body={"network.sorted_pcap_id": ""})
+                    except Exception:
+                        log.info(("failed to remove sorted pcap from db for id %s", e["info"]["id"]))
+                    try:
+                        path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(e["info"]["id"]), "dump_sorted.pcap")
+                        path_delete(path)
+                    except Exception as e:
+                        log.info(("failed to remove sorted_pcap from disk %s", e))
+                else:
+                    done = True
+        else:
+            done = True
+
+
+def cuckoo_clean_pending_tasks(timerange: str = None, delete: bool = False):
+    """Clean up pending tasks
+    It deletes all stored data from file system and configured databases (SQL
+    and MongoDB for pending tasks.
+    """
+    # Init logging.
+    # This need to init a console logger handler, because the standard
+    # logger (init_logging()) logs to a file which will be deleted.
+    create_structure()
+
+    if not is_reporting_db_connected():
+        return
+
+    if timerange:
+        before_time = convert_into_time(timerange)
+
+    pending_tasks = [task.id for task in db.list_tasks(status=TASK_PENDING, added_before=before_time)]
+    # clean_handler = delete_data if delete else fail_job
+    # resolver_pool.map(lambda tid: clean_handler(pending_tasks), pending_tasks)
+    if delete:
+        db.delete_tasks(status=TASK_PENDING, added_before=before_time)
+    else:
+        resolver_pool.map(lambda tid: fail_job(pending_tasks), pending_tasks)
+
+
+def cuckoo_clean_range_tasks(range_: str):
+    """Clean up tasks between range: 1-5
+    It deletes all stored data from file system and configured databases (SQL
+    and MongoDB for selected tasks.
+    """
+    # Init logging.
+    # This need to init a console logger handler, because the standard
+    # logger (init_logging()) logs to a file which will be deleted.
+    create_structure()
+    start_str, end_str = range_.split("-")
+    start = int(start_str.strip())
+    end = int(end_str.strip())
+    pending_tasks = db.list_tasks(id_after=(start - 1), id_before=(end + 1))
+    ids: list[int] = [task.id for task in pending_tasks]
+    delete_bulk_tasks_n_folders(ids, delete_mongo=False)
+    mongo_delete_data(ids)
+    db.delete_tasks(id_after=(start - 1), id_before=(end + 1))
+
+
+def delete_unused_file_data_in_mongo():
+    """Cleans the entries in the 'files' collection that no longer have any analysis
+    tasks associated with them.
+    """
+    log.info("Removing file entries in Mongo that are no longer referenced.")
+    result = delete_unused_file_docs()
+    log.info("Removed %s file %s.", result.deleted_count, "entry" if result.deleted_count == 1 else "entries")
+
+
+def cuckoo_dedup_cluster_queue():
+    """
+    Cleans duplicated pending tasks from cluster queue
+    """
+
+    session = db.Session()
+    dist_session = create_session(repconf.distributed.db, echo=False)
+    dist_db = dist_session()
+    hash_dict = {}
+    duplicated = (
+        session.query(Sample, Task).join(Task).filter(Sample.id == Task.sample_id, Task.status == "pending").order_by(Sample.sha256)
+    )
+
+    for sample, task in duplicated:
+        with suppress(UnicodeDecodeError):
+            # hash -> [[id, file]]
+            hash_dict.setdefault(sample.sha256, []).append((task.id, task.target))
+
+    resolver_pool.map(lambda sha256: dist_delete_data(hash_dict[sha256][1:], dist_db), hash_dict)
+
+
+def cape_clean_tlp():
+    create_structure()
+
+    if not is_reporting_db_connected():
+        return
+
+    tlp_tasks = db.get_tlp_tasks()
+    delete_bulk_tasks_n_folders(tlp_tasks, False)
+
+
+def binaries_clean_before(timerange: str):
+    # In case if "delete_bin_copy = off" we might need to clean binaries
+    # find storage/binaries/ -name "*" -type f -mtime 5 -delete
+
+    olden_than = convert_into_time(timerange)
+    binaries_folder = os.path.join(CUCKOO_ROOT, "storage", "binaries")
+    if not path_exists(binaries_folder):
+        log.error("Binaries folder doesn't exist")
+        return
+
+    for _, _, filenames in os.walk(binaries_folder):
+        for sha256 in filenames:
+            bin_path = os.path.join(binaries_folder, sha256)
+            if not os.path.exists(bin_path):
+                continue
+            st_ctime = path_get_date(bin_path)
+            if datetime.fromtimestamp(st_ctime) > olden_than:
+                # ToDo check database here to ensure that file is not used
+                if path_exists(bin_path) and not db.sample_still_used(sha256, 0):
+                    path_delete(bin_path)
+
+
+def cleanup_mongodb_calls_collection(args: dict):
+    if not is_reporting_db_connected():
+        return
+
+    timerange = args.get("cleanup_mongo_calls")
+    if not timerange:
+        log.info("No time range argument provided bailing")
+        return
+
+    added_before = convert_into_time(timerange)
+    highest_id = db.list_tasks(added_before=added_before, limit=1)
+    if highest_id:
+        mongo_delete_calls_by_task_id_in_range(range_end=highest_id[0].id)
+
+
+def cleanup_files_collection_by_id(task_id: int):
+    """
+    This function scans and pull out task_ids lower than task_id argument.
+    It useful when admin had to do emergency cleanup directly using postgres/mongodb without cleaner
+    """
+    if not is_reporting_db_connected():
+        return
+    """
+        db.files.updateMany({},{$pull: {"_task_ids": {$lt: 1280759}}})
+        {
+            acknowledged: true,
+            insertedId: null,
+            matchedCount: 1212950,
+            modifiedCount: 1177791,
+            upsertedCount: 0
+        }
+        db.runCommand({ compact: "files"})
+        { bytesFreed: Long('107198922752'), ok: 1 }
+
+    """
+    mongo_update_many({}, {"$pull": {"_task_ids": {"$lt": task_id}}})
+
+
+def execute_cleanup(args: dict, init_log=True):
+    if init_log:
+        init_console_logging()
+
+    if args.get("clean"):
+        cuckoo_clean()
+
+    if args.get("tlp"):
+        cape_clean_tlp()
+
+    if args.get("failed_clean"):
+        cuckoo_clean_failed_tasks()
+
+    if args.get("failed_url_clean"):
+        cuckoo_clean_failed_url_tasks()
+
+    if args.get("delete_older_than"):
+        cuckoo_clean_before(args)
+
+    if args.get("pcap_sorted_clean"):
+        cuckoo_clean_sorted_pcap_dump()
+
+    if args.get("bson_suri_logs_clean"):
+        cuckoo_clean_bson_suri_logs()
+
+    if args.get("pending_clean"):
+        cuckoo_clean_pending_tasks(args["time_range"])
+
+    if args.get("malscore"):
+        cuckoo_clean_lower_score(args["malscore"])
+
+    if args.get("delete_range"):
+        cuckoo_clean_range_tasks(args["delete_range"])
+
+    if args.get("deduplicated_cluster_queue"):
+        cuckoo_dedup_cluster_queue()
+
+    if args.get("delete_tmp_items_older_than"):
+        tmp_clean_before(args["delete_tmp_items_older_than"])
+
+    if args.get("delete_binaries_items_older_than"):
+        binaries_clean_before(args["delete_binaries_items_older_than"])
+
+    if args.get("delete_unused_file_data_in_mongo"):
+        delete_unused_file_data_in_mongo()
+
+    if args.get("cleanup_files_collection_by_id"):
+        cleanup_files_collection_by_id(args["cleanup_files_collection_by_id"])
+
+    if args.get("cleanup_mongo_calls"):
+        cleanup_mongodb_calls_collection(args)
+
+
+# Example Usage:
+if __name__ == "__main__":
+    try:
+        past_time_1 = convert_into_time("12h")
+        print(f"12 hours ago: {past_time_1}")
+
+        past_time_2 = convert_into_time("1d")
+        print(f"1 day ago: {past_time_2}")
+
+        past_time_3 = convert_into_time("5m")
+        print(f"5 minutes ago: {past_time_3}")
+
+        past_time_4 = convert_into_time("30s")
+        print(f"30 seconds ago: {past_time_4}")
+
+        # Example of invalid input
+        convert_into_time("invalid")
+    except ValueError as e:
+        print(f"Error: {e}")
diff --git a/lib/cuckoo/common/colors.py b/lib/cuckoo/common/colors.py
index 66853a82c94..a88c303d0a2 100644
--- a/lib/cuckoo/common/colors.py
+++ b/lib/cuckoo/common/colors.py
@@ -2,12 +2,11 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 import os
 import sys
 
 
-def color(text, color_code):
+def color(text: str, color_code: int) -> str:
     """Colorize text.
     @param text: text.
     @param color_code: color.
@@ -19,40 +18,40 @@ def color(text, color_code):
     # mintty -> "xterm" (supports colors)
     if sys.platform == "win32" and os.getenv("TERM") != "xterm":
         return text
-    return "\x1b[%dm%s\x1b[0m" % (color_code, text)
+    return "\x1b[{}m{}\x1b[0m".format(color_code, text)
 
 
-def black(text):
+def black(text: str) -> str:
     return color(text, 30)
 
 
-def red(text):
+def red(text: str) -> str:
     return color(text, 31)
 
 
-def green(text):
+def green(text: str) -> str:
     return color(text, 32)
 
 
-def yellow(text):
+def yellow(text: str) -> str:
     return color(text, 33)
 
 
-def blue(text):
+def blue(text: str) -> str:
     return color(text, 34)
 
 
-def magenta(text):
+def magenta(text: str) -> str:
     return color(text, 35)
 
 
-def cyan(text):
+def cyan(text: str) -> str:
     return color(text, 36)
 
 
-def white(text):
+def white(text: str) -> str:
     return color(text, 37)
 
 
-def bold(text):
+def bold(text: str) -> str:
     return color(text, 1)
diff --git a/lib/cuckoo/common/compare.py b/lib/cuckoo/common/compare.py
index c5613bcba42..c8ad5d71d96 100644
--- a/lib/cuckoo/common/compare.py
+++ b/lib/cuckoo/common/compare.py
@@ -2,26 +2,31 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-import zlib
-import json
-import collections
+import contextlib
+from typing import Dict
 
 from lib.cuckoo.common.config import Config
 
 repconf = Config("reporting")
 
+if repconf.mongodb.enabled:
+    from dev_utils.mongodb import mongo_find_one
 
-def behavior_categories_percent(calls):
-    catcounts = collections.defaultdict(lambda: 0)
+if repconf.elasticsearchdb.enabled:
+    from dev_utils.elasticsearchdb import get_analysis_index, get_calls_index, get_query_by_info_id
+
+
+def behavior_categories_percent(calls: Dict[str, str]) -> Dict[str, int]:
+    catcounts = {}
 
     for call in calls:
-        catcounts[call.get("category", "none")] += 1
+        category = call.get("category", "none")
+        catcounts[category] = catcounts.get(category, 0) + 1
 
-    return dict(catcounts)
+    return catcounts
 
 
-def combine_behavior_percentages(stats):
+def combine_behavior_percentages(stats: dict) -> dict:
     # get all categories present
     cats = set()
     for v in stats.values():
@@ -32,31 +37,29 @@ def combine_behavior_percentages(stats):
     for tid in stats:
         sums[tid] = {}
         for cat in cats:
-            try:
-                sums[tid][cat] = sum(j.get(cat, 0) for j in stats[tid].values())
-            except ZeroDivisionError:
-                pass
-
-    totals = dict((k, sum(v.values())) for k, v in sums.items())
+            sums[tid][cat] = sum(j.get(cat, 0) for j in stats[tid].values())
+    totals = {k: sum(v.values()) for k, v in sums.items()}
 
     percentages = {}
     for tid in stats:
         percentages[tid] = {}
         for cat in cats:
-            try:
+            with contextlib.suppress(ZeroDivisionError):
                 percentages[tid][cat] = round(sums[tid][cat] * 1.0 / totals[tid] * 100, 2)
-            except ZeroDivisionError:
-                pass
     return percentages
 
 
-def helper_percentages_mongo(results_db, tid1, tid2, ignore_categories=["misc"]):
+def helper_percentages_mongo(tid1, tid2, ignore_categories: set = None) -> dict:
+    if ignore_categories is None:
+        ignore_categories = {"misc"}
     counts = {}
 
-    for tid in [tid1, tid2]:
+    for tid in (tid1, tid2):
         counts[tid] = {}
 
-        pids_calls = results_db.analysis.find_one({"info.id": int(tid)}, {"behavior.processes.process_id": 1, "behavior.processes.calls": 1})
+        pids_calls = mongo_find_one(
+            "analysis", {"info.id": int(tid)}, {"behavior.processes.process_id": 1, "behavior.processes.calls": 1}
+        )
 
         if not pids_calls:
             continue
@@ -66,7 +69,7 @@ def helper_percentages_mongo(results_db, tid1, tid2, ignore_categories=["misc"])
             counts[tid][pid] = {}
 
             for coid in pdoc["calls"]:
-                chunk = results_db.calls.find_one({"_id": coid}, {"calls.category": 1})
+                chunk = mongo_find_one("calls", {"_id": coid}, {"calls.category": 1})
                 category_counts = behavior_categories_percent(chunk["calls"])
                 for cat, count in category_counts.items():
                     if cat in ignore_categories:
@@ -76,28 +79,22 @@ def helper_percentages_mongo(results_db, tid1, tid2, ignore_categories=["misc"])
     return combine_behavior_percentages(counts)
 
 
-def helper_summary_mongo(results_db, tid1, tid2):
-    summaries = dict()
+def helper_summary_mongo(tid1, tid2):
     left_sum, right_sum = None, None
-    left_sum = results_db.analysis.find_one({"info.id": int(tid1)}, {"behavior.summary": 1})
-    right_sum = results_db.analysis.find_one({"info.id": int(tid2)}, {"behavior.summary": 1})
-    if left_sum and right_sum:
-        summaries = get_similar_summary(left_sum, right_sum)
-
-    return summaries
+    left_sum = mongo_find_one("analysis", {"info.id": int(tid1)}, {"behavior.summary": 1})
+    right_sum = mongo_find_one("analysis", {"info.id": int(tid2)}, {"behavior.summary": 1})
+    return get_similar_summary(left_sum, right_sum) if left_sum and right_sum else {}
 
 
-def helper_percentages_elastic(es_obj, tid1, tid2, idx, ignore_categories=["misc"]):
+def helper_percentages_elastic(es_obj, tid1, tid2, ignore_categories=None):
+    if ignore_categories is None:
+        ignore_categories = ["misc"]
     counts = {}
 
-    for tid in [tid1, tid2]:
+    for tid in (tid1, tid2):
         counts[tid] = {}
-        results = es_obj.search(index=idx, doc_type="analysis", q='info.id: "%s"' % tid)["hits"]["hits"]
-        if results:
-            pids_calls = results[-1]["_source"]
-        else:
-            pids_calls = None
-
+        results = es_obj.search(index=get_analysis_index(), query=get_query_by_info_id(tid))["hits"]["hits"]
+        pids_calls = results[-1]["_source"] if results else None
         if not pids_calls:
             continue
 
@@ -106,7 +103,9 @@ def helper_percentages_elastic(es_obj, tid1, tid2, idx, ignore_categories=["misc
             counts[tid][pid] = {}
 
             for coid in pdoc["calls"]:
-                chunk = es_obj.search(index=idx, doc_type="calls", q='_id: "%s"' % coid)["hits"]["hits"][-1]["_source"]
+                chunk = es_obj.search(index=get_calls_index(), body={"query": {"match": {"_id": coid}}})["hits"]["hits"][-1][
+                    "_source"
+                ]
                 category_counts = behavior_categories_percent(chunk["calls"])
                 for cat, count in category_counts.items():
                     if cat in ignore_categories:
@@ -116,35 +115,27 @@ def helper_percentages_elastic(es_obj, tid1, tid2, idx, ignore_categories=["misc
     return combine_behavior_percentages(counts)
 
 
-def helper_summary_elastic(es_obj, tid1, tid2, idx):
-    summaries = dict()
+def helper_summary_elastic(es_obj, tid1, tid2):
     left_sum, right_sum = None, None
-    buf = es_obj.search(index=idx, doc_type="analysis", q='info.id: "%s"' % tid1)["hits"]["hits"]
+    buf = es_obj.search(index=get_analysis_index(), query=get_query_by_info_id(tid1))["hits"]["hits"]
     if buf:
         left_sum = buf[-1]["_source"]
 
-    buf = es_obj.search(index=idx, doc_type="analysis", q='info.id: "%s"' % tid2)["hits"]["hits"]
+    buf = es_obj.search(index=get_analysis_index(), query=get_query_by_info_id(tid2))["hits"]["hits"]
     if buf:
         right_sum = buf[-1]["_source"]
 
-    if left_sum and right_sum:
-        summaries = get_similar_summary(left_sum, right_sum)
-
-    return summaries
+    return get_similar_summary(left_sum, right_sum) if left_sum and right_sum else {}
 
 
 def get_similar_summary(left_sum, right_sum):
-    ret = dict()
-
-    if repconf.compressresults.enabled:
-        left_sum["behavior"]["summary"] = json.loads(zlib.decompress(left_sum["behavior"]["summary"]))
-        right_sum["behavior"]["summary"] = json.loads(zlib.decompress(right_sum["behavior"]["summary"]))
+    ret = {}
 
     for summary in left_sum["behavior"]["summary"]:
         for item in left_sum["behavior"]["summary"][summary]:
             if item in right_sum["behavior"]["summary"][summary]:
                 if summary not in list(ret.keys()):
-                    ret[summary] = list()
+                    ret[summary] = []
                 ret[summary].append(item)
 
     return ret
diff --git a/lib/cuckoo/common/compressor.py b/lib/cuckoo/common/compressor.py
index 6d4a0889800..1097cb4f04f 100644
--- a/lib/cuckoo/common/compressor.py
+++ b/lib/cuckoo/common/compressor.py
@@ -1,7 +1,8 @@
-import os
-import struct
 import binascii
 import logging
+import os
+import struct
+from pathlib import Path
 
 log = logging.getLogger(__name__)
 
@@ -14,11 +15,17 @@
 else:
     # The BSON module provided by pymongo works through its "BSON" class.
     if hasattr(bson, "BSON"):
-        bson_decode = lambda d: bson.BSON(d).decode()
+
+        def bson_decode(d):
+            return bson.BSON(d).decode()
+
     # The BSON module provided by "pip3 install bson" works through the
     # "loads" function (just like pickle etc.)
     elif hasattr(bson, "loads"):
-        bson_decode = lambda d: bson.loads(d)
+
+        def bson_decode(d):
+            return bson.loads(d)
+
     else:
         HAVE_BSON = False
 
@@ -36,7 +43,7 @@ def add(self, element):
         if len(self.buffer) == self.order * 2:
             tmp = self.buffer.pop(0)
 
-        if type(element) == list:
+        if isinstance(element, list):
             self.buffer.append(element)
         else:
             self.buffer.append([element, 1])
@@ -46,10 +53,10 @@ def add(self, element):
 
     def analyse(self):
         tmp = [c[0][0] for c in self.buffer]
-        if tmp[0 : self.order] == tmp[self.order :]:
+        if tmp[: self.order] == tmp[self.order :]:
             for i in range(self.order):
                 self.buffer[i][1] += self.buffer[i + self.order][1]
-            self.buffer = self.buffer[0 : self.order]
+            self.buffer = self.buffer[: self.order]
 
 
 class Compressor:
@@ -69,8 +76,8 @@ def add(self, element):
             self.final.append(out)
 
     def flush(self):
-        for i in range(len(self.ngrams)):
-            current_buffer = self.ngrams[i].buffer
+        for i, ngram in enumerate(self.ngrams):
+            current_buffer = ngram.buffer
             for out in current_buffer:
                 for u in range(i + 1, len(self.ngrams)):
                     out = self.ngrams[u].add(out)
@@ -96,7 +103,7 @@ def __next_message(self):
 
     def run(self, file_path):
         if not os.path.isfile(file_path) and os.stat(file_path).st_size:
-            log.warning("File %s does not exists or it is invalid.", file_path)
+            log.warning("File %s does not exists or it is invalid", file_path)
             return False
 
         self.fd_in = open(file_path, "rb")
@@ -107,28 +114,26 @@ def run(self, file_path):
 
             if msg:
                 mtype = msg.get("type")  # message type [debug, new_process, info]
-                if mtype not in ["debug", "new_process", "info"]:
-                    _id = msg.get("I", -1)
-                    if not self.category.startswith("__"):
-                        tid = msg.get("T", -1)
-                        time = msg.get("t", 0)
-
-                        if tid not in self.threads:
-                            self.threads[tid] = Compressor(100)
-
-                        csum = self.checksum(msg)
-                        self.ccounter += 1
-                        v = (csum, self.ccounter, time)
-                        self.threads[tid].add(v)
-
-                        if csum not in self.callmap:
-                            self.callmap[csum] = msg
-                    else:
-                        self.head.append(data)
-                else:
+                if mtype in {"debug", "new_process", "info"}:
                     self.category = msg.get("category", "None")
                     self.head.append(data)
 
+                elif self.category.startswith("__"):
+                    self.head.append(data)
+                else:
+                    tid = msg.get("T", -1)
+                    time = msg.get("t", 0)
+
+                    if tid not in self.threads:
+                        self.threads[tid] = Compressor(100)
+
+                    csum = self.checksum(msg)
+                    self.ccounter += 1
+                    v = (csum, self.ccounter, time)
+                    self.threads[tid].add(v)
+
+                    if csum not in self.callmap:
+                        self.callmap[csum] = msg
         self.fd_in.close()
 
         return self.flush(file_path)
@@ -137,9 +142,10 @@ def flush(self, file_path):
         # This function flushes ngram buffers within compressor and merges
         # threads compressed call lists trying preserve original order
 
-        compressed_path = file_path + ".compressed"
-        if os.path.isfile(compressed_path):
-            os.remove(compressed_path)
+        compressed_path = f"{file_path}.compressed"
+        p = Path(compressed_path)
+        if p.is_file():
+            p.unlink()
 
         fd = open(compressed_path, "wb")
 
@@ -164,8 +170,8 @@ def flush(self, file_path):
                 edata = bson.BSON.encode(d)
                 fd.write(edata)
 
-            os.rename(file_path, "{}.raw".format(file_path))
-            os.symlink("{}.compressed".format(file_path), file_path)
+            os.rename(file_path, f"{file_path}.raw")
+            os.symlink(f"{file_path}.compressed", file_path)
         else:
             return False
 
@@ -177,14 +183,8 @@ def checksum(self, msg):
 
         index = msg.get("I", -1)
         args = "".join([str(c) for c in msg["args"]])
-        content = [
-            str(index),  # api call
-            str(msg["T"]),  # thread id
-            str(msg["R"]),  # caller
-            str(args),  # call args
-            str(self.category),  # category
-            str(msg["P"]),  # parentcaller
-        ]
+        content = [str(index), str(msg["T"]), str(msg["R"]), args, str(self.category), str(msg["P"])]
+
         content = "".join(content)
 
         return binascii.crc32(bytes(content, "utf8"))
diff --git a/lib/cuckoo/common/config.py b/lib/cuckoo/common/config.py
index 9f4037d620b..fd0fc1341ba 100644
--- a/lib/cuckoo/common/config.py
+++ b/lib/cuckoo/common/config.py
@@ -2,17 +2,18 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-import os
 import configparser
+import glob
+import os
+from typing import Dict, Iterable
 
-from lib.cuckoo.common.constants import CUCKOO_ROOT
-from lib.cuckoo.common.exceptions import CuckooOperationalError
-from lib.cuckoo.common.objects import Dictionary
-from lib.cuckoo.common.colors import red, bold
+from lib.cuckoo.common.colors import bold, red
+from lib.cuckoo.common.constants import CUCKOO_ROOT, CUSTOM_CONF_DIR
+from lib.cuckoo.common.dictionary import Dictionary
+from lib.cuckoo.common.exceptions import CuckooCriticalError, CuckooOperationalError
 
 
-def parse_options(options):
+def parse_options(options: str) -> Dict[str, str]:
     """Parse the analysis options field to a dictionary."""
     ret = {}
     for field in options.split(","):
@@ -24,49 +25,60 @@ def parse_options(options):
     return ret
 
 
-def emit_options(options):
-    """Emit the analysis options from a dictionary to a string."""
-    return ",".join("%s=%s" % (k, v) for k, v in sorted(options.items()))
+class _BaseConfig:
+    """Configuration file parser."""
 
+    def __init__(self):
+        self.fullconfig = None
+        self.refresh()
 
-class Config:
-    """Configuration file parser."""
+    def _get_files_to_read(self):
+        raise NotImplementedError
 
-    def __init__(self, file_name="cuckoo", cfg=None):
-        """
-        @param file_name: file name without extension.
-        @param cfg: configuration file path.
+    def get(self, section):
+        """Get options for the given section.
+        @param section: section to fetch.
+        @raise CuckooOperationalError: if section not found.
+        @return: dict of option key/values.
         """
-        config = configparser.ConfigParser()
-
-        if cfg:
-            config.read(cfg)
-        else:
-            try:
-                config.read(os.path.join(CUCKOO_ROOT, "conf", "%s.conf" % file_name))
-            except UnicodeDecodeError as e:
-                print(
-                    bold(
-                        red(
-                            "please fix your config file: {}.conf - Pay attention for bytes c2 xa - {}\n\n{}".format(
-                                file_name, e.object, e.reason
-                            )
-                        )
+        try:
+            return getattr(self, section)
+        except AttributeError as e:
+            raise CuckooOperationalError(f"Option {section} is not found in configuration, error: {e}") from e
+
+    def get_config(self):
+        return self.fullconfig
+
+    def refresh(self):
+        self.fullconfig = self._read_files(self._get_files_to_read())._sections
+
+    def _read_files(self, files: Iterable[str]):
+        # Escape the percent signs so that ConfigParser doesn't try to do
+        # interpolation of the value as well.
+        config = configparser.ConfigParser({f"ENV:{key}": val.replace("%", "%%") for key, val in os.environ.items()})
+
+        try:
+            config.read(files)
+        except UnicodeDecodeError as e:
+            print(
+                bold(
+                    red(
+                        f"please fix your config file(s): {', '.join(files)} - "
+                        f"Pay attention for bytes c2 xa - {e.object}\n\n{e.reason}"
                     )
                 )
-                raise UnicodeDecodeError
-
-        self.fullconfig = config._sections
+            )
+            raise
 
         for section in config.sections():
-            setattr(self, section, Dictionary())
-            for name, _ in config.items(section):
+            dct = Dictionary()
+            for name, value in config.items(section):
+                if name.startswith("env:"):
+                    continue
                 try:
-                    # Ugly fix to avoid '0' and '1' to be parsed as a
-                    # boolean value.
-                    # We raise an exception to goto fail^w parse it
-                    # as integer.
-                    if config.get(section, name) in ["0", "1"]:
+                    # Ugly fix to avoid '0' and '1' to be parsed as a boolean value.
+                    # We raise an exception to parse it as an integer.
+                    if value in {"0", "1"}:
                         raise ValueError
 
                     value = config.getboolean(section, name)
@@ -76,18 +88,57 @@ def __init__(self, file_name="cuckoo", cfg=None):
                     except ValueError:
                         value = config.get(section, name)
 
-                setattr(getattr(self, section), name, value)
+                setattr(dct, name, value)
+            setattr(self, section, dct)
 
-    def get(self, section):
-        """Get option.
-        @param section: section to fetch.
-        @raise CuckooOperationalError: if section not found.
-        @return: option value.
-        """
-        try:
-            return getattr(self, section)
-        except AttributeError as e:
-            raise CuckooOperationalError("Option %s is not found in " "configuration, error: %s" % (section, e))
+        return config
 
-    def get_config(self):
-        return self.fullconfig
+
+class ConfigMeta(type):
+    """Only create one instance of a Config for each (non-analysis) config file."""
+
+    configs = {}
+
+    def __call__(self, fname_base: str = "cuckoo"):
+        if fname_base not in self.configs:
+            self.configs[fname_base] = super(ConfigMeta, self).__call__(fname_base=fname_base)
+
+        return self.configs[fname_base]
+
+    @classmethod
+    def refresh(cls):
+        """This should really only be needed for testing."""
+        for config in cls.configs.values():
+            config.refresh()
+
+
+class Config(_BaseConfig, metaclass=ConfigMeta):
+    def __init__(self, fname_base: str = "cuckoo"):
+        self._fname_base = fname_base
+        super().__init__()
+
+    def _get_files_to_read(self):
+        # Allows test workflows to ignore custom root configs
+        include_root_configs = "CAPE_DISABLE_ROOT_CONFIGS" not in os.environ
+        files = [os.path.join(CUCKOO_ROOT, "conf", "default", f"{self._fname_base}.conf.default")]
+        if include_root_configs:
+            files.append(os.path.join(CUCKOO_ROOT, "conf", f"{self._fname_base}.conf"))
+            files.extend(sorted(glob.glob(os.path.join(CUCKOO_ROOT, "conf", f"{self._fname_base}.conf.d", "*.conf"))))
+        files.append(os.path.join(CUSTOM_CONF_DIR, f"{self._fname_base}.conf"))
+        files.extend(sorted(glob.glob(os.path.join(CUSTOM_CONF_DIR, f"{self._fname_base}.conf.d", "*.conf"))))
+
+        if "CAPE_CD" in os.environ:
+            files.append(os.path.join(os.environ["CAPE_CD"], f"{self._fname_base}.conf"))
+
+        if not files:
+            raise CuckooCriticalError(f"No {self._fname_base} config files could be found!")
+        return files
+
+
+class AnalysisConfig(_BaseConfig):
+    def __init__(self, cfg="analysis.conf"):
+        self._cfg = cfg
+        super().__init__()
+
+    def _get_files_to_read(self):
+        return (self._cfg,)
diff --git a/lib/cuckoo/common/constants.py b/lib/cuckoo/common/constants.py
index f81f11a9f1a..882e2b487c1 100644
--- a/lib/cuckoo/common/constants.py
+++ b/lib/cuckoo/common/constants.py
@@ -2,15 +2,17 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 import os
 
 _current_dir = os.path.abspath(os.path.dirname(__file__))
 CUCKOO_ROOT = os.path.normpath(os.path.join(_current_dir, "..", "..", ".."))
 
-ANALYSIS_BASE_PATH = os.path.join(CUCKOO_ROOT, "storage", "analyses")
+CUSTOM_ROOT = os.path.join(CUCKOO_ROOT, "custom")
+CUSTOM_CONF_DIR = os.path.join(CUSTOM_ROOT, "conf")
 
-CUCKOO_VERSION = "2.2-CAPE"
+ANALYSIS_BASE_PATH = os.path.join(CUCKOO_ROOT, "storage")
+
+CUCKOO_VERSION = "2.4-CAPE"
 CUCKOO_GUEST_PORT = 8000
 CUCKOO_GUEST_INIT = 0x001
 CUCKOO_GUEST_RUNNING = 0x002
diff --git a/lib/cuckoo/common/demux.py b/lib/cuckoo/common/demux.py
index 76df20ee1e2..19fb110c129 100644
--- a/lib/cuckoo/common/demux.py
+++ b/lib/cuckoo/common/demux.py
@@ -2,40 +2,54 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-from __future__ import print_function
+import logging
 import os
 import tempfile
-import logging
+from typing import List
 
 from lib.cuckoo.common.config import Config
-from lib.cuckoo.common.objects import File
 from lib.cuckoo.common.exceptions import CuckooDemuxError
-from lib.cuckoo.common.utils import get_options
+from lib.cuckoo.common.objects import File
+from lib.cuckoo.common.path_utils import path_exists, path_mkdir, path_write_file
+from lib.cuckoo.common.quarantine import unquarantine
+from lib.cuckoo.common.trim_utils import trim_file, trimmed_path
+from lib.cuckoo.common.utils import get_options, sanitize_filename
 
+sfFile = False
 try:
+    # from sflock import __version__ as sf_version
     from sflock import unpack
-    from sflock.unpack.office import OfficeFile
     from sflock.abstracts import File as sfFile
     from sflock.exception import UnpackException
+    from sflock.unpack.office import OfficeFile
 
     HAS_SFLOCK = True
 except ImportError:
-    print("You must install sflock\n" "sudo apt-get install p7zip-full rar unace-nonfree cabextract\n" "pip3 install -U git+https://github.com/doomedraven/sflock")
+    print("\n\n[!] Missing dependencies. Run: poetry install\n\n")
     HAS_SFLOCK = False
 
 log = logging.getLogger(__name__)
 cuckoo_conf = Config()
-tmp_path = cuckoo_conf.cuckoo.get("tmppath", "/tmp").encode("utf8")
+web_cfg = Config("web")
+tmp_path = cuckoo_conf.cuckoo.get("tmppath", "/tmp")
+linux_enabled = web_cfg.linux.get("enabled", False) or web_cfg.linux.get("static_only", False)
 
-demux_extensions_list = [
-    "",
+try:
+    demux_files_limit = int(web_cfg.general.demux_files_limit)
+except ValueError:
+    log.error("Invalid value for demux_files_limit in web.conf, defaulting to 10")
+    demux_files_limit = 10  # Default value
+
+demux_extensions_list = {
+    b".accdr",
     b".exe",
     b".dll",
     b".com",
     b".jar",
     b".pdf",
     b".msi",
+    b".msix",
+    b".msixbundle",
     b".bin",
     b".scr",
     b".zip",
@@ -89,162 +103,266 @@
     b".sh",
     b".pl",
     b".lnk",
-]
+    b".one",
+    b".onetoc2",
+}
 
-whitelist_extensions = ("doc", "xls", "ppt", "pub", "jar")
+whitelist_extensions = {"doc", "xls", "ppt", "pub", "jar"}
 
-blacklist_extensions = ("apk", "dmg")
+blacklist_extensions = {"apk", "dmg"}
 
 # list of valid file types to extract - TODO: add more types
-VALID_TYPES = ["PE32", "Java Jar", "Outlook", "Message"]
-VALID_LINUX_TYPES = ["Bourne-Again", "POSIX shell script", "ELF", "Python", "MS Windows shortcut"]
+VALID_TYPES = {"PE32", "Java Jar", "Outlook", "Message", "MS Windows shortcut", "PDF document", *File.LINUX_TYPES}
+VALID_PACKAGES = {"doc", "xls", "ppt", "pdf"}
+OFFICE_TYPES = [
+    "Composite Document File",
+    "CDFV2 Encrypted",
+    "Excel 2007+",
+    "Word 2007+",
+    "Microsoft OOXML",
+]
 
 
-def options2passwd(options):
-    password = False
+def options2passwd(options: str) -> str:
+    password = ""
     if "password=" in options:
         password = get_options(options).get("password")
         if password and isinstance(password, bytes):
-            password = password.decode("utf8")
+            password = password.decode()
 
     return password
 
 
-def demux_office(filename, password):
+def demux_office(filename: bytes, password: str, platform: str) -> List[bytes]:
     retlist = []
-    basename = os.path.basename(filename)
-    target_path = os.path.join(tmp_path, b"cuckoo-tmp/msoffice-crypt-tmp")
-    if not os.path.exists(target_path):
-        os.makedirs(target_path)
-    decrypted_name = os.path.join(target_path, basename)
+    target_path = os.path.join(tmp_path, "cuckoo-tmp/msoffice-crypt-tmp")
+    if not path_exists(target_path):
+        path_mkdir(target_path)
+    decrypted_name = os.path.join(target_path, os.path.basename(filename).decode())
 
     if HAS_SFLOCK:
         ofile = OfficeFile(sfFile.from_path(filename))
         d = ofile.decrypt(password)
-        if hasattr(d, "contents"):
-            with open(decrypted_name, "w") as outs:
-                outs.write(d.contents)
-            # TODO add decryption verification checks
-            if "Encrypted" not in d.magic:
-                retlist.append(decrypted_name)
+        # TODO: add decryption verification checks
+        if hasattr(d, "contents") and "Encrypted" not in d.magic:
+            _ = path_write_file(decrypted_name, d.contents)
+            retlist.append((decrypted_name.encode(), platform))
     else:
         raise CuckooDemuxError("MS Office decryptor not available")
 
     if not retlist:
-        retlist.append(filename)
+        retlist.append((filename, platform))
 
     return retlist
 
 
-def is_valid_type(magic):
-    # check for valid file types and don't rely just on file extentsion
-    VALID_TYPES.extend(VALID_LINUX_TYPES)
-    for ftype in VALID_TYPES:
-        if ftype in magic:
-            return True
-    return False
+def is_valid_type(magic: str) -> bool:
+    # check for valid file types and don't rely just on file extension
+    return any(ftype in magic for ftype in VALID_TYPES)
+
+
+def is_valid_package(package: str) -> bool:
+    # check if the file has a valid package type
+    if not package:
+        return False
+    return any(ptype in package for ptype in VALID_PACKAGES)
 
 
-def _sf_chlildren(child):
-    path_to_extract = False
+# ToDo fix return type
+def _sf_children(child: sfFile):  # -> bytes:
+    path_to_extract = ""
     _, ext = os.path.splitext(child.filename)
     ext = ext.lower()
-    if ext in demux_extensions_list or is_valid_type(child.magic):
-        target_path = os.path.join(tmp_path, b"cuckoo-sflock")
-        if not os.path.exists(target_path):
-            os.mkdir(target_path)
+    if (
+        ext in demux_extensions_list
+        or is_valid_package(child.package)
+        or is_valid_type(child.magic)
+        or (not ext and is_valid_type(child.magic))
+        # msix
+        or all([pattern in child.contents for pattern in (b"Registry.dat", b"AppxManifest.xml")])
+    ):
+        target_path = os.path.join(tmp_path, "cuckoo-sflock")
+        if not path_exists(target_path):
+            path_mkdir(target_path)
         tmp_dir = tempfile.mkdtemp(dir=target_path)
         try:
             if child.contents:
-                path_to_extract = os.path.join(tmp_dir, child.filename)
-                with open(path_to_extract, "wb") as f:
-                    f.write(child.contents)
+                path_to_extract = os.path.join(tmp_dir, sanitize_filename((child.filename).decode()))
+                _ = path_write_file(path_to_extract, child.contents)
         except Exception as e:
-            log.error(e, exc_info=True)
-    return path_to_extract
+            log.exception(e)
+    return (path_to_extract.encode(), child.platform, child.magic, child.filesize)
 
 
-def demux_sflock(filename, options, package):
+# ToDo fix typing need to add str as error msg
+def demux_sflock(filename: bytes, options: str, check_shellcode: bool = True):  # -> List[bytes]:
     retlist = []
-    # only extract from files with no extension or with .bin (downloaded from us) or .zip PACKAGE, we do extract from zip archives, to ignore it set ZIP PACKAGES
-    ext = os.path.splitext(filename)[1]
-    if ext == b".bin":
-        return retlist
-
-    # to handle when side file for exec is required
-    if "file=" in options:
-        return [filename]
+    # do not extract from .bin (downloaded from us)
+    if os.path.splitext(filename)[1] == b".bin":
+        return retlist, ""
 
+    # ToDo need to introduce error msgs here
     try:
-        password = "infected"
-        tmp_pass = options2passwd(options)
-        if tmp_pass:
-            password = tmp_pass
-
+        password = options2passwd(options) or "infected"
         try:
-            unpacked = unpack(filename, password=password)
+            unpacked = unpack(filename, password=password, check_shellcode=check_shellcode)
         except UnpackException:
-            unpacked = unpack(filename)
+            unpacked = unpack(filename, check_shellcode=check_shellcode)
 
         if unpacked.package in whitelist_extensions:
-            return [filename]
+            file = File(filename)
+            magic_type = file.get_type()
+            platform = file.get_platform()
+            file_size = file.get_size()
+            return [[filename, platform, magic_type, file_size]], ""
         if unpacked.package in blacklist_extensions:
-            return retlist
-        for sf_child in unpacked.children or []:
-            if sf_child.to_dict().get("children") and sf_child.to_dict()["children"]:
-                retlist += [_sf_chlildren(ch) for ch in sf_child.to_dict()["children"]]
+            return [], "blacklisted package"
+        for sf_child in unpacked.children:
+            if sf_child.to_dict().get("children"):
+                for ch in sf_child.children:
+                    tmp_child = _sf_children(ch)
+                    # check if path is not empty
+                    if tmp_child and tmp_child[0]:
+                        retlist.append(tmp_child)
+
+                # child is not available, the original file should be put into the list
+                if not retlist:
+                    tmp_child = _sf_children(sf_child)
+                    # check if path is not empty
+                    if tmp_child and tmp_child[0]:
+                        retlist.append(tmp_child)
             else:
-                retlist.append(_sf_chlildren(sf_child))
+                tmp_child = _sf_children(sf_child)
+                # check if path is not empty
+                if tmp_child and tmp_child[0]:
+                    retlist.append(tmp_child)
     except Exception as e:
-        log.error(e, exc_info=True)
-
-    return list(filter(None, retlist))
+        log.exception(e)
+    return list(filter(None, retlist)), ""
 
 
-def demux_sample(filename, package, options):
+def demux_sample(filename: bytes, package: str, options: str, use_sflock: bool = True, platform: str = ""):  # -> tuple[bytes, str]:
     """
     If file is a ZIP, extract its included files and return their file paths
     If file is an email, extracts its attachments and return their file paths (later we'll also extract URLs)
     """
     # sflock requires filename to be bytes object for Py3
-    if isinstance(filename, str):
-        filename = filename.encode("utf8")
-    # if a package was specified, then don't do anything special
+    # TODO: Remove after checking all uses of demux_sample use bytes ~TheMythologist
+    if isinstance(filename, str) and use_sflock:
+        filename = filename.encode()
+
+    error_list = []
+    retlist = []
+    # if a package was specified, trim if allowed and required
     if package:
-        return [filename]
+        if package in ("msix",):
+            retlist.append((filename, "windows"))
+        else:
+            if File(filename).get_size() <= web_cfg.general.max_sample_size or (
+                web_cfg.general.allow_ignore_size and "ignore_size_check" in options
+            ):
+                retlist.append((filename, platform))
+            else:
+                if web_cfg.general.enable_trim and trim_file(filename):
+                    retlist.append((trimmed_path(filename), platform))
+                else:
+                    error_list.append(
+                        {
+                            os.path.basename(
+                                filename
+                            ).decode(): "File too big, enable 'allow_ignore_size' in web.conf or use 'ignore_size_check' option"
+                        }
+                    )
+        return retlist, error_list
+
+    # handle quarantine files
+    tmp_path = unquarantine(filename)
+    if tmp_path:
+        filename = tmp_path
 
     # don't try to extract from office docs
     magic = File(filename).get_type()
-
     # if file is an Office doc and password is supplied, try to decrypt the doc
     if "Microsoft" in magic:
-        ignore = ["Outlook", "Message", "Disk Image"]
-        if any(x in magic for x in ignore):
-            pass
-        elif "Composite Document File" in magic or "CDFV2 Encrypted" in magic:
-            password = False
-            tmp_pass = options2passwd(options)
-            if tmp_pass:
-                password = tmp_pass
+        pass
+        # ignore = {"Outlook", "Message", "Disk Image"}
+    elif any(x in magic for x in OFFICE_TYPES):
+        password = options2passwd(options) or None
+        if use_sflock:
+            if HAS_SFLOCK:
+                retlist = demux_office(filename, password, platform)
+                return retlist, error_list
+            else:
+                log.error("Detected password protected office file, but no sflock is installed: poetry install")
+                error_list.append(
+                    {
+                        os.path.basename(
+                            filename
+                        ).decode(): "Detected password protected office file, but no sflock is installed or correct password provided"
+                    }
+                )
 
     # don't try to extract from Java archives or executables
-    if "Java Jar" in magic:
-        return [filename]
-    if "PE32" in magic or "MS-DOS executable" in magic:
-        return [filename]
-    if any(x in magic for x in VALID_LINUX_TYPES):
-        return [filename]
-
-    retlist = list()
-    if HAS_SFLOCK:
-        # all in one unarchiver
-        retlist = demux_sflock(filename, options, package)
-    # if it wasn't a ZIP or an email or we weren't able to obtain anything interesting from either, then just submit the
+    if (
+        "Java Jar" in magic
+        or "Java archive data" in magic
+        or "PE32" in magic
+        or "MS-DOS executable" in magic
+        or any(x in magic for x in File.LINUX_TYPES)
+    ):
+        retlist = []
+        if File(filename).get_size() <= web_cfg.general.max_sample_size or (
+            web_cfg.general.allow_ignore_size and "ignore_size_check" in options
+        ):
+            retlist.append((filename, platform))
+        else:
+            if web_cfg.general.enable_trim and trim_file(filename):
+                retlist.append((trimmed_path(filename), platform))
+            else:
+                error_list.append(
+                    {
+                        os.path.basename(
+                            filename
+                        ).decode(): "File too big, enable 'allow_ignore_size' in web.conf or use 'ignore_size_check' option",
+                    }
+                )
+        return retlist, error_list
+
+    new_retlist = []
+
+    check_shellcode = True
+    if options and "check_shellcode=0" in options:
+        check_shellcode = False
+
+    # all in one unarchiver
+    retlist, error_msg = demux_sflock(filename, options, check_shellcode) if HAS_SFLOCK and use_sflock else ([], "")
+    # if it isn't a ZIP or an email, or we aren't able to obtain anything interesting from either, then just submit the
     # original file
     if not retlist:
-        retlist.append(filename)
+        if error_msg:
+            error_list.append({os.path.basename(filename).decode(): error_msg})
+        new_retlist.append((filename, platform))
     else:
-        if len(retlist) > 10:
-            retlist = retlist[:10]
-
-    return retlist
+        for filename, platform, magic_type, file_size in retlist:
+            # verify not Windows binaries here:
+            if platform == "linux" and not linux_enabled and "Python" not in magic_type:
+                error_list.append({os.path.basename(filename).decode(): "Linux processing is disabled"})
+                continue
+
+            if file_size > web_cfg.general.max_sample_size:
+                if web_cfg.general.allow_ignore_size and "ignore_size_check" in options:
+                    if web_cfg.general.enable_trim:
+                        # maybe identify here
+                        if trim_file(filename):
+                            filename = trimmed_path(filename)
+                else:
+                    error_list.append(
+                        {
+                            os.path.basename(
+                                filename
+                            ).decode(): "File too big, enable 'allow_ignore_size' in web.conf or use 'ignore_size_check' option",
+                        }
+                    )
+            new_retlist.append((filename, platform))
+
+    return new_retlist[:demux_files_limit], error_list
diff --git a/lib/cuckoo/common/dictionary.py b/lib/cuckoo/common/dictionary.py
new file mode 100644
index 00000000000..f2a08401d33
--- /dev/null
+++ b/lib/cuckoo/common/dictionary.py
@@ -0,0 +1,17 @@
+import copy
+
+
+class Dictionary(dict):
+    """Cuckoo custom dict."""
+
+    def __deepcopy__(self, memo=None):
+        new = self.__class__()
+        for key, value in self.items():
+            new[key] = copy.deepcopy(value, memo=memo)
+        return new
+
+    def __getattr__(self, key):
+        return self.get(key)
+
+    __setattr__ = dict.__setitem__
+    __delattr__ = dict.__delitem__
diff --git a/lib/cuckoo/common/dist_db.py b/lib/cuckoo/common/dist_db.py
index b18e57356b8..aeb6afc9ebd 100644
--- a/lib/cuckoo/common/dist_db.py
+++ b/lib/cuckoo/common/dist_db.py
@@ -1,87 +1,126 @@
-from __future__ import absolute_import
+import sys
 from datetime import datetime
+from typing import List, Optional
 
 # http://pythoncentral.io/introductory-tutorial-python-sqlalchemy/
-from sqlalchemy import Column, ForeignKey, Integer, Text, String, Boolean, Index, DateTime, or_, and_, desc
-from sqlalchemy.ext.declarative import declarative_base
-from sqlalchemy import create_engine
-from sqlalchemy.orm import sessionmaker, relationship
-from sqlalchemy.sql import func
+from sqlalchemy import (
+    Column,
+    create_engine,
+    DateTime,
+    ForeignKey,
+    Integer,
+    String,
+    Table,
+    Text,
+)
+from sqlalchemy.exc import OperationalError
+from sqlalchemy.orm import DeclarativeBase, Mapped, mapped_column, relationship, sessionmaker
 from sqlalchemy.types import TypeDecorator
 
-Base = declarative_base()
 
-schema = '431b7f0b3240'
+# 1. Use DeclarativeBase as the modern starting point
+class Base(DeclarativeBase):
+    pass
 
-class Node(Base):
-    """Cuckoo node database model."""
 
+schema = "83fd58842164"
+
+# This association table definition is correct and doesn't need changes
+worker_exitnodes = Table(
+    "worker_exitnodes",
+    Base.metadata,
+    Column("node_id", Integer, ForeignKey("node.id"), primary_key=True),
+    Column("exit_id", Integer, ForeignKey("exitnodes.id"), primary_key=True),
+)
+
+
+# 2. Modernized all models with Mapped/mapped_column and explicit relationships
+class ExitNodes(Base):
+    __tablename__ = "exitnodes"
+
+    id: Mapped[int] = mapped_column(primary_key=True)
+    name: Mapped[str] = mapped_column(String(255), unique=True)
+
+    # This relationship completes the link from the Node model
+    nodes: Mapped[List["Node"]] = relationship(secondary=worker_exitnodes, back_populates="exitnodes")
+
+    def __repr__(self) -> str:
+        return f"<ExitNode(id={self.id}, name='{self.name}')>"
+
+
+class Node(Base):
     __tablename__ = "node"
-    id = Column(Integer, primary_key=True)
-    name = Column(Text, nullable=False)
-    url = Column(Text, nullable=True)
-    enabled = Column(Boolean, default=False)
-    ht_user = Column(String(255), nullable=False)
-    ht_pass = Column(String(255), nullable=False)
-    last_check = Column(DateTime(timezone=False))
-    machines = relationship("Machine", backref="node", lazy="dynamic")
+    id: Mapped[int] = mapped_column(primary_key=True)
+    name: Mapped[str] = mapped_column(Text)
+    url: Mapped[Optional[str]] = mapped_column(Text)
+    enabled: Mapped[bool] = mapped_column(default=False)
+    apikey: Mapped[str] = mapped_column(String(255))
+    last_check: Mapped[Optional[datetime]] = mapped_column(DateTime(timezone=False))
 
+    # Replaced legacy `backref` with explicit `back_populates`
+    machines: Mapped[List["Machine"]] = relationship(back_populates="node")
+    exitnodes: Mapped[List["ExitNodes"]] = relationship(
+        secondary=worker_exitnodes, back_populates="nodes", lazy="subquery"
+    )  # really need lazy?
 
+
+# The TypeDecorator is a valid pattern; added type hints for clarity
 class StringList(TypeDecorator):
-    """List of comma-separated strings as field."""
+    """Saves a Python list of strings as a single comma-separated string in the DB."""
 
     impl = Text
+    cache_ok = True  # Indicates the type is safe to cache
 
-    def process_bind_param(self, value, dialect):
+    def process_bind_param(self, value: Optional[List[str]], dialect) -> Optional[str]:
+        if value is None:
+            return None
         return ", ".join(value)
 
-    def process_result_value(self, value, dialect):
-        return value.split(", ")
+    def process_result_value(self, value: Optional[str], dialect) -> Optional[List[str]]:
+        if value is None:
+            return None
+        return [item.strip() for item in value.split(",")]
 
 
 class Machine(Base):
-    """Machine database model related to a Cuckoo node."""
-
     __tablename__ = "machine"
-    id = Column(Integer, primary_key=True)
-    name = Column(Text, nullable=False)
-    platform = Column(Text, nullable=False)
-    tags = Column(StringList)
-    node_id = Column(Integer, ForeignKey("node.id"))
+    id: Mapped[int] = mapped_column(primary_key=True)
+    name: Mapped[str] = mapped_column(Text)
+    platform: Mapped[str] = mapped_column(Text)
+    tags: Mapped[Optional[List[str]]] = mapped_column(StringList)
+    node_id: Mapped[Optional[int]] = mapped_column(ForeignKey("node.id"))
 
+    # This relationship completes the link from the Node model
+    node: Mapped["Node"] = relationship(back_populates="machines")
 
-class Task(Base):
-    """Analysis task database model."""
 
+class Task(Base):
     __tablename__ = "task"
-    id = Column(Integer, primary_key=True)
-    path = Column(Text)
-    category = Column(Text)
-    package = Column(Text)
-    timeout = Column(Integer)
-    priority = Column(Integer)
-    options = Column(Text)
-    machine = Column(Text)
-    platform = Column(Text)
-    route = Column(Text)
-    tags = Column(Text)
-    custom = Column(Text)
-    memory = Column(Text)
-    clock = Column(DateTime(timezone=False), default=datetime.now(), nullable=False)
-    enforce_timeout = Column(Text)
-    # Cuckoo node and Task ID this has been submitted to.
-    node_id = Column(Integer, ForeignKey("node.id"))
-    task_id = Column(Integer)
-    finished = Column(Boolean, nullable=False, default=False)
-    main_task_id = Column(Integer)
-    retrieved = Column(Boolean, nullable=False, default=False)
-    notificated = Column(Boolean, nullable=True, default=False)
-    deleted = Column(Boolean, nullable=False, default=False)
-    __table_args__ = (
-        Index("node_id_index", "node_id"),
-        Index("task_id_index", "task_id"),
-        Index("main_task_id_index", "main_task_id", unique=False),
-    )
+    id: Mapped[int] = mapped_column(primary_key=True)
+    path: Mapped[Optional[str]] = mapped_column(Text)
+    category: Mapped[Optional[str]] = mapped_column(Text)
+    package: Mapped[Optional[str]] = mapped_column(Text)
+    timeout: Mapped[Optional[int]] = mapped_column(Integer)
+    priority: Mapped[Optional[int]] = mapped_column(Integer)
+    options: Mapped[Optional[str]] = mapped_column(Text)
+    machine: Mapped[Optional[str]] = mapped_column(Text)
+    platform: Mapped[Optional[str]] = mapped_column(Text)
+    route: Mapped[Optional[str]] = mapped_column(Text)
+    tags: Mapped[Optional[str]] = mapped_column(Text)
+    custom: Mapped[Optional[str]] = mapped_column(Text)
+    memory: Mapped[Optional[str]] = mapped_column(Text)
+    clock: Mapped[datetime] = mapped_column(default=datetime.now)
+    enforce_timeout: Mapped[Optional[str]] = mapped_column(Text)
+    tlp: Mapped[Optional[str]] = mapped_column(Text)
+
+    node_id: Mapped[Optional[int]] = mapped_column(ForeignKey("node.id"), index=True)
+    task_id: Mapped[Optional[int]] = mapped_column(index=True)
+    main_task_id: Mapped[Optional[int]] = mapped_column(index=True)
+
+    finished: Mapped[bool] = mapped_column(default=False)
+    retrieved: Mapped[bool] = mapped_column(default=False)
+    notificated: Mapped[bool] = mapped_column(default=False)
+    deleted: Mapped[bool] = mapped_column(default=False)
 
     def __init__(
         self,
@@ -101,6 +140,7 @@ def __init__(
         main_task_id=None,
         retrieved=False,
         route=None,
+        tlp=None,
     ):
         self.path = path
         self.category = category
@@ -121,11 +161,17 @@ def __init__(
         self.finished = False
         self.retrieved = False
         self.route = route
-
-
-def create_session(db_connectionn, echo=False):
-    # ToDo add chema version check
-    engine = create_engine(db_connectionn, echo=echo) # pool_size=40, max_overflow=0,
-    Base.metadata.create_all(engine)
-    session = sessionmaker(autocommit=False, autoflush=True, bind=engine)
-    return session
+        self.tlp = tlp
+
+
+# 4. Modernized database initialization function
+def create_session(db_connection: str, echo: bool = False) -> sessionmaker:
+    """Initializes the database engine and creates tables."""
+    try:
+        engine = create_engine(db_connection, echo=echo)
+        Base.metadata.create_all(engine)
+        # Return the session factory for use in the application
+        return sessionmaker(bind=engine, autoflush=False)
+    except OperationalError as e:
+        print(f"Database Error: {e}")
+        sys.exit(1)
diff --git a/lib/cuckoo/common/dns.py b/lib/cuckoo/common/dns.py
index f457d058617..a6b2d6a440b 100644
--- a/lib/cuckoo/common/dns.py
+++ b/lib/cuckoo/common/dns.py
@@ -2,43 +2,42 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 import select
 import socket
 import threading
+from typing import Callable
 
 try:
     import pycares
 
     HAVE_CARES = True
-except:
+except Exception:
     HAVE_CARES = False
 
 # try:
 #    import gevent, gevent.socket
 #    HAVE_GEVENT = True
-# except:
+# except Exception:
 HAVE_GEVENT = False
 
-
 # these are used by all resolvers
 DNS_TIMEOUT = 5
 DNS_TIMEOUT_VALUE = ""
 
 
-def set_timeout(value):
+def set_timeout(value: int):
     global DNS_TIMEOUT
     DNS_TIMEOUT = value
 
 
-def set_timeout_value(value):
+def set_timeout_value(value: str):
     global DNS_TIMEOUT_VALUE
     DNS_TIMEOUT_VALUE = value
 
 
 # standard gethostbyname in thread
 # http://code.activestate.com/recipes/473878/
-def with_timeout(func, args=(), kwargs={}):
+def with_timeout(func: Callable, args=(), kwargs={}):
     """This function will spawn a thread and run the given function
     using the args, kwargs and return the given default value if the
     timeout_duration is exceeded.
@@ -60,7 +59,7 @@ def run(self):
     it = ResultThread()
     it.start()
     it.join(DNS_TIMEOUT)
-    if it.isAlive():
+    if it.is_alive():
         return DNS_TIMEOUT_VALUE
     else:
         if it.error:
@@ -68,11 +67,11 @@ def run(self):
         return it.result
 
 
-def resolve_thread(name):
+def resolve_thread(name: str) -> str:
     return with_timeout(gethostbyname, (name,))
 
 
-def gethostbyname(name):
+def gethostbyname(name: str) -> str:
     try:
         ip = socket.gethostbyname(name)
     except socket.gaierror:
@@ -81,7 +80,7 @@ def gethostbyname(name):
 
 
 # C-ARES (http://c-ares.haxx.se/)
-def resolve_cares(name):
+def resolve_cares(name: str) -> str:
     # create new c-ares channel
     careschan = pycares.Channel(timeout=DNS_TIMEOUT, tries=1)
 
@@ -99,7 +98,7 @@ def setresult_cb(res, error):
 
     # now do the actual work
     readfds, writefds = careschan.getsock()
-    canreadfds, canwritefds, _ = select.select(readfds, writefds, [], DNS_TIMEOUT)
+    canreadfds, _, _ = select.select(readfds, writefds, [], DNS_TIMEOUT)
     for rfd in canreadfds:
         careschan.process_fd(rfd, -1)
 
@@ -113,9 +112,10 @@ def setresult_cb(res, error):
 class Resultholder:
     pass
 
+
 """
 # gevent based resolver with timeout
-def resolve_gevent(name):
+def resolve_gevent(name: str):
     result = resolve_gevent_real(name)
     # if it failed, do this a second time because of strange libevent behavior
     # basically sometimes the Timeout fires immediately instead of after
@@ -136,15 +136,11 @@ def resolve_gevent_real(name):
     return result
 """
 
+
 # choose resolver automatically
-def resolve(name):
+def resolve(name: str) -> str:
     if HAVE_CARES:
         return resolve_cares(name)
-    #elif HAVE_GEVENT:
+    # elif HAVE_GEVENT:
     #    return resolve_gevent(name)
-    else:
-        return resolve_thread(name)
-
-
-# another alias
-resolve_best = resolve
+    return resolve_thread(name)
diff --git a/lib/cuckoo/common/dotnet_utils.py b/lib/cuckoo/common/dotnet_utils.py
new file mode 100644
index 00000000000..7573707f745
--- /dev/null
+++ b/lib/cuckoo/common/dotnet_utils.py
@@ -0,0 +1,69 @@
+import logging
+
+try:
+    import dnfile
+
+    HAVE_DNFILE = True
+    logging.getLogger("dnfile").setLevel(logging.CRITICAL)
+    logging.getLogger("dnfile.stream").setLevel(logging.CRITICAL)
+except ImportError:
+    HAVE_DNFILE = False
+
+
+log = logging.getLogger("dotnet_utils")
+
+
+def dotnet_user_strings(file: str = False, data: bytes = False, dn_whitelisting: list = []) -> list:
+    """
+    Extracts user strings from a .NET file or data blob using dnfile.
+
+    Args:
+        file (str): Path to the .NET file. Default is False.
+        data (bytes): Byte data of the .NET file. Default is False.
+        dn_whitelisting (list): List of string patterns to whitelist. Default is an empty list.
+
+    Returns:
+        list: A list of extracted user strings that are not in the whitelist.
+
+    Raises:
+        Exception: If there is an error processing the .NET file or data.
+    """
+
+    if not HAVE_DNFILE:
+        return []
+
+    try:
+        if file:
+            dn = dnfile.dnPE(file)
+        elif data:
+            dn = dn = dnfile.dnPE(data=data)
+
+        dn_strings = []
+        if not hasattr(dn, "net") or not hasattr(dn.net, "metadata") or not hasattr(dnfile, "streams"):
+            return []
+
+        us: dnfile.stream.UserStringHeap = dn.net.metadata.streams.get(b"#US", None)
+        if us:
+            size = us.sizeof()
+            offset = 1
+            while offset < size:
+                ret = us.get_with_size(offset)
+                if not ret:
+                    break
+
+                buf, readlen = ret
+                try:
+                    if not buf.endswith(b"\x00\x00\x00"):
+                        buf = buf[:-1]
+                    s = dnfile.stream.UserString(buf)
+                    if s.value and not any([pattern in s.value for pattern in dn_whitelisting]):
+                        dn_strings.append(s.value)
+                except UnicodeDecodeError:
+                    log.debug("Bad string:", buf.replace(b"\x00", b""))
+                # continue to next entry
+                offset += readlen
+    except Exception as e:
+        log.error("dnFile error: ", str(e))
+
+    dn.close()
+    return dn_strings
diff --git a/lib/cuckoo/common/email_utils.py b/lib/cuckoo/common/email_utils.py
index 2226456e167..ca212ba19c3 100644
--- a/lib/cuckoo/common/email_utils.py
+++ b/lib/cuckoo/common/email_utils.py
@@ -2,13 +2,12 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 import email
 import mimetypes
 from email.header import decode_header, make_header
 
 from . import utils
-import six
+from .path_utils import path_get_filename
 
 SAFE_MEDIA_TYPE = ["text/plain", "text/html"]
 EMAIL_MAGIC = ["MIME-Version:", "Received:", "From:", "Return-Path:", "Delivered-To:"]
@@ -29,7 +28,6 @@ def find_attachments_in_email(s, expand_attachment):
 
 
 def _find_attachments_in_email(mesg, expand_attachment, atts):
-
     # MHTML detection
     if mesg.get_content_maintype() == "multipart" and mesg.get_content_subtype() == "related":
         for part in mesg.walk():
@@ -58,15 +56,15 @@ def _find_attachments_in_email(mesg, expand_attachment, atts):
         filename = part.get_filename()
         if filename is None:
             ext = mimetypes.guess_extension(content_type) or ""
-            filename = "<unknown>" + ext
+            filename = f"<unknown>{ext}"
         else:
             # Sanitize the header value
             filename = _decode_header(filename)
-            filename = utils.get_filename_from_path(filename)
+            filename = path_get_filename(filename)
         tempfile_path = utils.store_temp_file(payload, filename)
         atts.append((tempfile_path, filename, content_type))
 
 
 def _decode_header(s):
     t = decode_header(s)
-    return six.text_type(make_header(t))
+    return str(make_header(t))
diff --git a/lib/cuckoo/common/exceptions.py b/lib/cuckoo/common/exceptions.py
index 971250cbe24..1e04be88912 100644
--- a/lib/cuckoo/common/exceptions.py
+++ b/lib/cuckoo/common/exceptions.py
@@ -15,6 +15,11 @@ class CuckooStartupError(CuckooCriticalError):
     pass
 
 
+class CuckooDatabaseInitializationError(CuckooCriticalError):
+    def __str__(self):
+        return "The database has not been initialized yet. You must call init_database before attempting to use it."
+
+
 class CuckooDatabaseError(CuckooCriticalError):
     """Cuckoo database error."""
 
@@ -33,6 +38,12 @@ class CuckooOperationalError(Exception):
     pass
 
 
+class CuckooUnserviceableTaskError(CuckooOperationalError):
+    """There are no machines in the pool that can service the task."""
+
+    pass
+
+
 class CuckooMachineError(CuckooOperationalError):
     """Error managing analysis machine."""
 
@@ -69,6 +80,12 @@ class CuckooGuestError(CuckooOperationalError):
     pass
 
 
+class CuckooNetworkError(CuckooOperationalError):
+    """Network issues"""
+
+    pass
+
+
 class CuckooGuestCriticalTimeout(CuckooGuestError):
     """The Host was unable to connect to the Guest."""
 
diff --git a/lib/cuckoo/common/extractor_utils.py b/lib/cuckoo/common/extractor_utils.py
new file mode 100644
index 00000000000..9964d3d5f01
--- /dev/null
+++ b/lib/cuckoo/common/extractor_utils.py
@@ -0,0 +1,143 @@
+import struct
+
+import pefile
+
+
+# dotnet
+def get_mdtoken(data: bytes) -> int:
+    """
+    Extracts a metadata token from the given byte data.
+
+    The function interprets the first 4 bytes of the input data as an unsigned
+    integer in little-endian format and then masks it with 0xFFFFFF to obtain
+    the metadata token.
+
+    Args:
+        data (bytes): The byte data from which to extract the metadata token.
+
+    Returns:
+        int: The extracted metadata token.
+    """
+    return struct.unpack_from("<I", data)[0] & 0xFFFFFF
+
+
+def get_data_offset(pe: pefile.PE, string_offset: int, addr: int) -> int:
+    alignment = calc_section_alignment(pe, string_offset, addr)
+    return string_offset + addr - alignment
+
+
+def calc_section_alignment(pe: pefile.PE, offset: int, addr: int) -> int:
+    """
+    Calculate the alignment between two sections in a PE file.
+
+    Args:
+        pe (pefile.PE): The PE file object.
+        offset (int): The offset value, typically calculated as
+                    struct.unpack("i", blob[0x43:0x47])[0] + 0x47.
+        addr (int): The address where data starts, which can be a YARA address match.
+
+    Returns:
+        int: The calculated alignment between the sections. Returns 0 if sections are not found or an error occurs.
+
+    Raises:
+        Exception: If an error occurs during the calculation, it will be caught and printed.
+
+    offset is: Ex struct.unpack("i", blob[0x43:0x47])[0] + 0x47
+    addr is where data starts, can be YARA address match
+    """
+    alignment = 0
+    try:
+        text = pe.get_section_by_rva(offset)
+        rdata = pe.get_section_by_rva(offset + addr)
+        if not text or not rdata:
+            return alignment
+        # add (section1VA - sectionXVA) - (section1Raw - sectionXRaw)
+        alignment = (rdata.VirtualAddress - text.VirtualAddress) - (rdata.PointerToRawData - text.PointerToRawData)
+    except Exception as e:
+        print(e)
+    return alignment
+
+
+def function_offset_from_VA(addr: int, blob: bytes, pe: pefile.PE):
+    """
+    Calculate the function offset from a given virtual address (VA) in a PE file.
+
+    Args:
+        addr (int): The virtual address to start from.
+        blob (bytes): The binary data blob containing the instructions.
+        pe (PE): The PE file object, typically from the pefile module.
+
+    Returns:
+        tuple: A tuple containing:
+            - function_addr (int): The calculated function address.
+            - offset (int): The offset of the next instruction after the function call.
+    """
+    shift_pos = blob.find(b"\xE8") + 1
+    function_addr = pe.get_rva_from_offset(addr + shift_pos) + pe.OPTIONAL_HEADER.ImageBase
+    # print(f"Getting offset for function: {hex(function_addr)}")
+    next_instruction = pe.get_rva_from_offset(addr + shift_pos) + pe.OPTIONAL_HEADER.ImageBase + 5
+    addr = struct.unpack("i", blob[shift_pos : shift_pos + 4])[0]
+    return function_addr, pe.get_offset_from_rva(next_instruction + addr - pe.OPTIONAL_HEADER.ImageBase)
+
+
+def function_offset_from_offset(addr: int, binary: bytes, pe: pefile.PE):
+    """
+    Calculates the virtual address and file offset of a subfunction call within a binary.
+
+    Args:
+        addr (int): The starting address to search for the CALL instruction.
+        binary (bytes): The binary data of the executable.
+        pe (pefile.PE): The PE file object representing the executable.
+
+    Returns:
+        tuple: A tuple containing:
+            - call_virtual_address (int): The virtual address of the CALL instruction.
+            - subfunc_file_offset (int): The file offset of the subfunction being called.
+    """
+    # where our subcall starts - example: 8
+    shift_pos = binary[addr:].find(b"\xE8")
+    call_file_offset = addr + shift_pos
+    # convert file offset to RVA + add address image base
+    # print(pe.get_rva_from_offset(call_file_offset))
+    call_virtual_address = pe.get_rva_from_offset(call_file_offset) + pe.OPTIONAL_HEADER.ImageBase
+    # convert rva address to subfunc offset, we add 1 to skip E8 aka CALL instruction
+    subfunc_offset = struct.unpack_from("i", binary, call_file_offset + 1)[0]
+    # calculate next instruction after our CALL
+    subfunc_virtual_address = (call_virtual_address + 5 + subfunc_offset) & 0xFFFFFFFF
+    # convert VA to offset in file
+    return call_virtual_address, pe.get_offset_from_rva(subfunc_virtual_address - pe.OPTIONAL_HEADER.ImageBase)
+
+
+def find_function_xrefs(data, start, end):
+    """
+    Finds function cross-references (xrefs) within a specified range in the given binary data.
+
+    Args:
+        data (bytes): The binary data to search for function xrefs.
+        start (int): The starting address (inclusive) of the range to search.
+        end (int): The ending address (exclusive) of the range to search.
+
+    Returns:
+        dict: A dictionary where keys are target addresses of CALL instructions and values are lists of addresses
+            where these CALL instructions are located.
+    """
+    function_xrefs = {}
+    # The re.finditer function only finds *non-overlapping* matches, which fails to find some CALL instructions
+    for rva in range(start, end):
+        if not 0 <= rva < len(data) - 5:
+            continue
+        if data[rva] != 0xE8:
+            continue
+        # print( data[rva - 2 : rva].hex())
+        if data[rva - 2 : rva] in (b"\x81\x40", b"\x81\x45", b"\x81\x75", b"\xc7\x40", b"\xc7\x45", b"\xc7\x75"):
+            # this is not a real function call
+            continue
+        offset = struct.unpack_from("=i", data, rva + 1)[0]
+        target = (rva + 5) + offset
+
+        if not 0 <= target < len(data):
+            continue
+        if start <= target < end:
+            function_xrefs.setdefault(target, []).append(rva)
+            # log.debug("Found a CALL instruction: %#x -> %#x", rva + ib, target + ib)
+    return function_xrefs
diff --git a/lib/cuckoo/common/files.py b/lib/cuckoo/common/files.py
index a561981486e..a9634c05633 100644
--- a/lib/cuckoo/common/files.py
+++ b/lib/cuckoo/common/files.py
@@ -2,21 +2,22 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-import os
-import hashlib
-import tempfile
-import ntpath
-import shutil
 import errno
+import hashlib
 import logging
+import os
+import shutil
+import tempfile
+from pathlib import PureWindowsPath
+
 from lib.cuckoo.common.config import Config
 from lib.cuckoo.common.exceptions import CuckooOperationalError
 from lib.cuckoo.common.misc import getuser
+from lib.cuckoo.common.path_utils import path_exists, path_mkdir
 
 cuckoo_conf = Config()
 
-log = logging.getLogger()
+log = logging.getLogger(__name__)
 
 
 def temppath():
@@ -25,32 +26,41 @@ def temppath():
 
     # Backwards compatibility with older configuration.
     if not tmppath or tmppath == "/tmp":
-        return os.path.join(tempfile.gettempdir(), "cuckoo-tmp-%s" % getuser())
+        return os.path.join(tempfile.gettempdir(), f"cuckoo-tmp-{getuser()}")
 
     return tmppath
 
 
-def open_exclusive(path, mode="xb", bufsize=-1):
+def open_exclusive(path, mode="xb"):
     """Open a file with O_EXCL, failing if it already exists
     [In Python 3, use open with x]"""
     fd = os.open(path, os.O_CREAT | os.O_EXCL | os.O_WRONLY, 0o644)
     try:
-        return os.fdopen(fd, mode, bufsize)
+        return os.fdopen(fd, mode)
+    except OSError as e:
+        log.error(e, "You might need to add whitelist folder in resultserver.py")
+        os.close(fd)
+        raise
+
+
+def open_inclusive(path, mode="ab"):
+    fd = os.open(path, os.O_CREAT | os.O_APPEND | os.O_WRONLY, 0o644)
+    try:
+        return os.fdopen(fd, mode)
     except OSError as e:
-        log.error(e, "You migth need to add whitelist folder in resultserver.py")
+        log.error(e, "You might need to add whitelist folder in resultserver.py")
         os.close(fd)
         raise
 
 
-class Storage(object):
+class Storage:
     @staticmethod
     def get_filename_from_path(path):
         """Cross-platform filename extraction from path.
         @param path: file path.
         @return: filename.
         """
-        dirpath, filename = ntpath.split(path)
-        return filename if filename else ntpath.basename(dirpath)
+        return PureWindowsPath(path).name
 
 
 class Folders(Storage):
@@ -74,16 +84,16 @@ def create(root=".", folders=None):
             folder_path = os.path.join(root, folder)
             if not os.path.isdir(folder_path):
                 try:
-                    os.makedirs(folder_path)
+                    path_mkdir(folder_path)
                 except OSError as e:
                     if e.errno == errno.EEXIST:
                         # Race condition, ignore
                         continue
-                    raise CuckooOperationalError("Unable to create folder: %s" % folder_path)
+                    raise CuckooOperationalError(f"Unable to create folder: {folder_path}") from e
 
     @staticmethod
     def copy(src, dest):
-        if os.path.exists(dest):
+        if path_exists(dest):
             shutil.rmtree(dest)
         shutil.copytree(src, dest)
 
@@ -98,11 +108,11 @@ def delete(*folder):
         @raise CuckooOperationalError: if fails to delete folder.
         """
         folder = os.path.join(*folder)
-        if os.path.exists(folder):
+        if path_exists(folder):
             try:
                 shutil.rmtree(folder)
-            except OSError:
-                raise CuckooOperationalError("Unable to delete folder: %s" % folder)
+            except OSError as e:
+                raise CuckooOperationalError(f"Unable to delete folder: {folder}") from e
 
 
 class Files(Storage):
@@ -171,14 +181,12 @@ def hash_file(method, filepath):
         @param path: file path
         @return: computed hash string
         """
-        f = open(filepath, "rb")
-        h = method()
-        while True:
+        with open(filepath, "rb") as f:
+            h = method()
             buf = f.read(1024 * 1024)
-            if not buf:
-                break
-            h.update(buf)
-        f.close()
+            while buf:
+                h.update(buf)
+                buf = f.read(1024 * 1024)
         return h.hexdigest()
 
     @staticmethod
diff --git a/lib/cuckoo/common/fraunhofer_helper.py b/lib/cuckoo/common/fraunhofer_helper.py
index 101d48a8394..c9eabe18165 100644
--- a/lib/cuckoo/common/fraunhofer_helper.py
+++ b/lib/cuckoo/common/fraunhofer_helper.py
@@ -13,16 +13,28 @@
 # You should have received a copy of the GNU General Public License
 # along with this program.  If not, see <http://www.gnu.org/licenses/>.
 
-import os
-import json
 import gzip
+import json
+import os
 
 from lib.cuckoo.common.constants import CUCKOO_ROOT
+from lib.cuckoo.common.path_utils import path_exists
+
 
 def get_dga_lookup_dict():
+    """
+    Retrieves the DGA (Domain Generation Algorithm) lookup dictionary from a gzipped JSON file.
+
+    The function constructs the file path to the DGA lookup dictionary, checks if the file exists,
+    and if it does, reads and decompresses the file, then loads its contents as a JSON object.
+    If the file does not exist, it returns an empty dictionary.
+
+    Returns:
+        dict: The DGA lookup dictionary if the file exists, otherwise an empty dictionary.
+    """
     dga_lookup_path = os.path.join(CUCKOO_ROOT, "data", "dga_lookup_dict.json.gz")
-    if os.path.exists(dga_lookup_path):
+    if path_exists(dga_lookup_path):
         with gzip.GzipFile(dga_lookup_path, "r") as fin:
-            return json.loads(fin.read().decode("utf-8"))
+            return json.loads(fin.read().decode())
 
     return {}
diff --git a/lib/cuckoo/common/gcp.py b/lib/cuckoo/common/gcp.py
new file mode 100644
index 00000000000..204f1c6c625
--- /dev/null
+++ b/lib/cuckoo/common/gcp.py
@@ -0,0 +1,116 @@
+# From doomedraven for GCP with love
+import logging
+import time
+
+from lib.cuckoo.common.config import Config
+
+try:
+    from google.api_core.exceptions import Forbidden
+    from google.cloud import compute_v1
+
+    HAVE_GCP = True
+except ImportError:
+    # pip install --upgrade google-cloud-compute
+    HAVE_GCP = False
+
+try:
+    HAVE_REQUESTS = True
+    import requests
+except ImportError:
+    HAVE_REQUESTS = False
+
+log = logging.getLogger(__name__)
+
+
+def check_node_up(host: str) -> bool:
+    """Auxiliar function for autodiscovery of instances when cluster autoscale"""
+    try:
+        r = requests.get(f"http://{host}:8000/apiv2/", verify=False, timeout=300)
+        if r.ok:
+            return True
+    except Exception as e:
+        log.critical("Possible invalid CAPE node: %s", e)
+    return False
+
+
+class GCP(object):
+    def __init__(self) -> None:
+        self.dist_cfg = Config("distributed")
+        self.project_id = self.dist_cfg.GCP.project_id
+        self.zones = [zone.strip() for zone in self.dist_cfg.GCP.zones.split(",")]
+        self.GCP_BASE_URL = "https://compute.googleapis.com/compute/v1/"
+
+        self.headers = {
+            "X-Goog-User-Project": self.project_id,
+            "Authorization": f"Bearer {self.dist_cfg.GCP.token}",
+        }
+
+    def list_instances(self) -> dict:
+        """Auto discovery of new servers"""
+        servers = {}
+        if self.dist_cfg.GCP.token:
+            for zone in self.zones:
+                try:
+                    r = requests.get(f"{self.GCP_BASE_URL}projects/{self.project_id}/zones/{zone}/instances", headers=self.headers)
+                    for instance in r.json().get("items", []):
+                        if not instance["name"].startswith(self.dist_cfg.GCP.instance_name):
+                            continue
+                        ips = [
+                            # Need to replace to internal IP not natIP
+                            access["natIP"]
+                            for net_iface in instance.get("networkInterfaces", [])
+                            for access in net_iface.get("accessConfigs", [])
+                        ]
+                        servers.setdefault(instance["name"], ips)
+                except Exception as e:
+                    log.exception(e)
+        elif HAVE_GCP:
+            try:
+                instance_client = compute_v1.InstancesClient()
+            except Forbidden:
+                log.error("You don't have enough priviledges to list instances")
+                return servers
+
+            for zone in self.zones:
+                instance_list = instance_client.list(project=self.project_id, zone=zone)
+                for instance in instance_list.items:
+                    if not instance.name.startswith(self.dist_cfg.GCP.instance_name):
+                        continue
+                    # Public IP
+                    # ips = [access.nat_i_p for net_iface in instance.network_interfaces for access in net_iface.access_configs]
+                    # Private IP
+                    ips = [net_iface.network_i_p for net_iface in instance.network_interfaces]
+                    servers.setdefault(instance.name, ips)
+
+        else:
+            log.error("Install google-cloud-compute client or provide GCP token in config.")
+
+        return servers
+
+    def autodiscovery(self):
+        while True:
+            servers = self.list_instances()
+            if not servers:
+                time.sleep(600)
+
+            for name, ips in servers.items():
+                for ip in ips:
+                    log.debug("Checking server: %s with IP: %s", name, ip)
+                    try:
+                        up = check_node_up(ip)
+                        if not up:
+                            continue
+                        try:
+                            r = requests.post(
+                                "http://localhost:9003/node",
+                                data={"name": name, "url": f"http://{ip}:8000/apiv2/", "enabled": True},
+                            )  # -F apikey=apikey
+                            if not r.ok:
+                                log.error("Can't registger worker with IP: %s. status_code: %d ", ip, r.status_code)
+                        except Exception as e:
+                            log.exception(e)
+                        break
+                    except Exception as e:
+                        log.exception(e)
+
+            time.sleep(int(self.dist_cfg.GCP.autodiscovery))
diff --git a/lib/cuckoo/common/graphs/binGraph/binGraph.py b/lib/cuckoo/common/graphs/binGraph/binGraph.py
deleted file mode 100644
index 0a49306ccaa..00000000000
--- a/lib/cuckoo/common/graphs/binGraph/binGraph.py
+++ /dev/null
@@ -1,353 +0,0 @@
-#!/usr/bin/env python
-# encoding: utf-8
-
-from __future__ import absolute_import
-import sys
-import pkgutil
-import os
-import logging
-import argparse
-import io
-import base64
-import json
-import datetime
-
-__version__ = {}
-__version__["codename"] = "Iron Airedale"  # http://www.codenamegenerator.com/?prefix=metal&dictionary=dogs
-__version__["digit"] = 3.2
-__version__["run_date"] = datetime.datetime.now().isoformat()
-
-
-# ## Global graphing default values
-__figformat__ = "png"  # Output format of saved figure
-__figsize__ = (12, 4)  # Size of figure in inches
-__figdpi__ = 100  # DPI of figure
-__json__ = False  # Show the plot interactively
-__showplt__ = False  # Show the plot interactively
-__blob__ = False  # Treat all files as binary blobs. Disable intelligently parsing of file format specific features.
-
-# ## Logging
-# # Lower the matplotlib logger
-logging.getLogger("matplotlib").setLevel(logging.CRITICAL)
-
-# # Setup logging format
-# logging.basicConfig(stream=sys.stderr, format='%(name)s | %(levelname)s | %(message)s')
-log = logging.getLogger("binGraph")
-log.setLevel(logging.INFO)
-
-# ### Helper functions
-
-
-def File2Strings(filename):
-    try:
-        f = open(filename, "r")
-    except:
-        return None
-    try:
-        return [line.rstrip("\n") for line in f.readlines()]
-    except:
-        return None
-    finally:
-        f.close()
-
-
-# # Gather files to process - give it a list of paths (files or directories)
-# # and it will return all files in a list
-def find_files(search_paths, recurse):
-
-    __files__ = []
-    for f in search_paths:
-
-        if recurse and os.path.isdir(f):
-
-            for dir_name, dirs, files in os.walk(f):
-                log.debug("Found directory: {}".format(dir_name))
-
-                for fname in files:
-                    abs_fpath = os.path.join(dir_name, fname)
-
-                    if os.path.isfile(abs_fpath) and not os.path.islink(abs_fpath) and not os.stat(abs_fpath).st_size == 0:
-                        log.info('File found: "{}"'.format(abs_fpath))
-                        __files__.append(abs_fpath)
-
-        elif os.path.isfile(f) and not os.path.islink(f) and not os.stat(f).st_size == 0:
-            abs_fpath = os.path.abspath(f)
-            log.debug('Found file: "{}"'.format(abs_fpath))
-            __files__.append(abs_fpath)
-
-        else:
-            log.critical('Not a file, skipping: "{}"'.format(f))
-            pass
-
-    return __files__
-
-
-# # Cleanup given filename
-def clean_fname(fn):
-
-    return "".join([c for c in fn if c.isalnum()])
-
-
-# # Generate the different file names required
-def gen_names(ffrmt, abs_fpath, abs_save_path, save_prefix=None, graphtype=None, findex=None):
-
-    base_save_fname = "{prefix}-{findex}-{graphtype}-{cleaned_fname}.{ffrmt}"
-
-    if save_prefix:
-        save_fname = base_save_fname.replace("{prefix}", save_prefix)
-    else:
-        save_fname = base_save_fname.replace("{prefix}-", "")
-
-    save_fname = save_fname.replace("{graphtype}", graphtype)
-
-    cleaned_fname = clean_fname(os.path.basename(abs_fpath))
-
-    if type(findex) == int:
-        save_fname = save_fname.replace("{findex}", str(findex))
-        save_fname = save_fname.replace("{cleaned_fname}", cleaned_fname)
-    else:
-        save_fname = save_fname.replace("{findex}-", "")
-        save_fname = save_fname.replace("-{cleaned_fname}", "")
-
-    save_fname = save_fname.replace("{ffrmt}", ffrmt)
-
-    abs_save_fpath = os.path.join(abs_save_path, save_fname)
-
-    return abs_save_fpath, os.path.basename(abs_fpath), cleaned_fname
-
-
-# # Dynamically import graphtypes
-def get_graph_modules():
-
-    graphs_dir = os.path.join(os.path.dirname(os.path.abspath(__file__)), "graphs")
-    graph_individuals = [x[0] for x in os.walk(graphs_dir)][1:]
-
-    modules = {}
-
-    for graph in graph_individuals:
-
-        for importer, package_name, _ in pkgutil.iter_modules([graph]):
-
-            if sys.version_info[0] < 3:
-                full_package_name = "{}".format(os.path.basename(graph))
-            else:
-                full_package_name = "{}.graph".format(os.path.basename(graph), package_name)
-
-            if not (full_package_name in sys.modules):
-
-                if sys.version_info[0] < 3:
-                    module = importer.find_module("graph", graph)
-                else:
-                    module = importer.find_module(full_package_name)
-
-                if module:
-                    module = module.load_module(full_package_name)
-
-                modules[os.path.basename(graph)] = module
-
-    return modules
-
-
-# # Try and import the graphs
-try:
-    graphs = get_graph_modules()
-except Exception as e:
-    log.critical("Failed to import graph: {}".format(e))
-    exit(0)
-
-# # Main routine - import this and provide a
-def generate_graphs(args_dict):
-    log.debug("args_dict = " + str(args_dict))
-    """
-        Dictionary of arguments to generate the graphs.
-        See individual graphs for possible arguments
-
-        args_dict = {
-          'files': ['/home/molley/bad_file.exe'],
-          'recurse': False,
-          '__dummy': False,
-          'prefix': None,
-          'save_dir': '/home/molley/output/',
-          'json': False,
-          'graphtitle': None,
-          'showplt': False,
-          'format': 'png',
-          'figsize': (12, 4),
-          'dpi': 100,
-          'blob': False,
-          'verbose': False,
-          'graphtype': 'ent',
-          'chunks': 750,
-          'ibytes': [{
-            'name': '0s',
-            'bytes': [0],
-            'colour': (0.0, 1.0, 0.0, 1.0)
-          }],
-          'entcolour': '#ff00ff'
-        }
-    """
-
-    # # Set logging
-    if args_dict.get("verbose", False):
-        logging.getLogger().setLevel(logging.DEBUG)
-        logging.getLogger("matplotlib").setLevel(logging.WARNING)
-
-    # # Detect if all graphs are being requested
-    __graphtypes__ = []
-    if args_dict["graphtype"] == "all":
-        __graphtypes__ = graphs
-    else:
-        __graphtypes__ = {args_dict["graphtype"]: graphs[args_dict["graphtype"]]}
-
-    log.debug("Generating graphs: {}".format(", ".join(list(__graphtypes__.keys()))))
-
-    # # Iterate over all given files
-    for index, abs_fpath in enumerate(args_dict["files"]):
-        log.debug('Processing: "{}"'.format(abs_fpath))
-
-        for module_name, module in __graphtypes__.items():
-            abs_save_fpath, fname, cleaned_fname = gen_names(
-                args_dict["format"],
-                abs_fpath,
-                args_dict["save_dir"],
-                save_prefix=args_dict["prefix"],
-                graphtype=module_name,
-                findex=(index if len(args_dict["files"]) > 1 else None),
-            )
-            args_dict["abs_fpath"] = abs_fpath  # Define the current file we are acting on
-            args_dict["fname"] = fname
-            args_dict["cleaned_fname"] = cleaned_fname
-
-            # # Generate and output the graph
-            plt, save_kwargs, json_data = module.generate(**args_dict)
-            fig = plt.gcf()
-            fig.set_size_inches(*args_dict["figsize"], forward=True)
-
-            plt.tight_layout()
-
-            if args_dict["showplt"]:
-                log.info("Opening graph interactively")
-                plt.show()
-
-            elif args_dict["json"]:
-                log.info("Saving as json file")
-
-                output = {}
-                output["info"] = json_data
-
-                buf = io.BytesIO()
-                plt.savefig(buf, format=args_dict["format"], dpi=args_dict["dpi"], forward=True, **save_kwargs)
-                output["graph"] = base64.b64encode(buf.getvalue()).decode()
-                buf.close()
-
-                output["cmdline"] = " ".join(args_dict)
-                output["version"] = __version__
-
-                abs_save_fpath = os.path.splitext(abs_save_fpath)[0] + ".json"
-                with open(abs_save_fpath, "w") as outfile:
-                    json.dump(output, outfile)
-
-                log.info('Graph saved to: "{}"'.format(abs_save_fpath))
-
-            else:
-                plt.savefig(abs_save_fpath, format=args_dict["format"], dpi=args_dict["dpi"], forward=True, **save_kwargs)
-                log.info('Graph saved to: "{}"'.format(abs_save_fpath))
-
-            plt.clf()
-            plt.cla()
-            plt.close()
-
-
-# # Main
-if __name__ == "__main__":
-
-    # # Import the defaults
-    parser = argparse.ArgumentParser()
-    parser.add_argument(
-        "-f",
-        "--file",
-        dest="files",
-        type=str,
-        required=True,
-        nargs="+",
-        metavar="malware.exe",
-        help='Give me a graph of these files (space separated). Provide a list of files with the "@files.txt" syntax (for example output from the `find` command). See - if this is the only argument specified.',
-    )
-    parser.add_argument("-r", "--recurse", action="store_true", help="If --file is a directory, add files recursively")
-    parser.add_argument(
-        "-",
-        dest="__dummy",
-        action="store_true",
-        help='*** Required if --file or -f is the only argument given before a graph type is provided (it\'s greedy!). E.g. "binGraph.py --file mal.exe - bin_ent"',
-    )
-    parser.add_argument("--prefix", type=str, metavar="", help="Add this prefix to the saved filenames")
-    parser.add_argument("--out", type=str, dest="save_dir", default=os.getcwd(), metavar="/data/graphs/", help="Where to save the graph files")
-    parser.add_argument("--json", action="store_true", default=__json__, help="Ouput graphs as json with graph images encoded as Base64")
-    parser.add_argument("--graphtitle", type=str, metavar='"file.exe"', default=None, help="Given title for graphs")
-    parser.add_argument("--showplt", action="store_true", default=__showplt__, help="Show plot interactively (disables saving to file)")
-    parser.add_argument(
-        "--format",
-        type=str,
-        default=__figformat__,
-        choices=["png", "pdf", "ps", "eps", "svg"],
-        required=False,
-        metavar="png",
-        help="Graph output format. All matplotlib outputs are supported: e.g. png, pdf, ps, eps, svg",
-    )
-    parser.add_argument("--figsize", type=int, nargs=2, default=__figsize__, metavar="#", help="Figure width and height in inches")
-    parser.add_argument("--dpi", type=int, default=__figdpi__, metavar=__figdpi__, help="Figure dpi")
-    parser.add_argument(
-        "--blob",
-        action="store_true",
-        default=__blob__,
-        help="Do not intelligently parse certain file types. Treat all files as a binary blob. E.g. don't add PE entry point or section splitter to the graph",
-    )
-    parser.add_argument("-v", "--verbose", action="store_true", help="Print debug information to stderr")
-
-    subparsers = parser.add_subparsers(
-        dest="graphtype",
-        help="Graph type to generate. Graphs can also be individually generated by running the in isolation: python graphs/ent/graph.py -f file.bin",
-    )
-    subparsers.required = True
-
-    subparsers.add_parser("all")
-
-    # # Loop over all graph types to add their graph specific options
-    for name, module in graphs.items():
-        module_parser = subparsers.add_parser(name)
-        module.args_setup(module_parser)
-
-    args = parser.parse_args()
-
-    ## # Verify global arguments
-
-    # # Get a list of files from the arguments
-    __files__ = []
-    for file in args.files:
-        if file.startswith("@"):
-            files = File2Strings(file[1:])
-            if files is None:
-                raise Exception("Error reading {}".format(file))
-            __files__ += list(files)
-        else:
-            __files__ += find_files([file], args.recurse)
-
-    args.files = __files__
-
-    # # Is the save_dir actually a dirctory?
-    args.save_dir = os.path.abspath(args.save_dir)
-    if not os.path.isdir(args.save_dir):
-        log.critical("--out is not a directory: {}".format(args.save_dir))
-        exit(1)
-
-    # # Detect if all graphs are being requested
-    __graphtypes__ = []
-    if args.graphtype == "all":
-        __graphtypes__ = graphs
-    else:
-        __graphtypes__ = {args.graphtype: graphs[args.graphtype]}
-    # # Allow graph modules to verify if their arguments have been set correctly
-    for name, module in __graphtypes__.items():
-        module.args_validation(args)
-
-    generate_graphs(args.__dict__)
diff --git a/lib/cuckoo/common/graphs/binGraph/graphs/ent/graph.py b/lib/cuckoo/common/graphs/binGraph/graphs/ent/graph.py
deleted file mode 100644
index 45aed55051b..00000000000
--- a/lib/cuckoo/common/graphs/binGraph/graphs/ent/graph.py
+++ /dev/null
@@ -1,558 +0,0 @@
-#!/usr/bin/env python
-
-"""
-Entropy and byte occurrence analysis over all file
--------------------------------------------
-abs_fpath str:          Absolute file path - File to load and analyse
-fname str:              Filename
-blob bool:              Do not intelligently parse certain file types. Treat all files as a binary blob. E.g. don\'t add PE entry point or section splitter to the graph
-
-chunks int:             How many chunks to split the file over. Smaller chunks give a more averaged graph, a larger number of chunks give more detail
-ibytes list of dicts:   Dicts are interesting bytes wanting to be displayed on the graph. These can often show relationships and reason for dips or
-                        increases in entropy at particular points. Bytes within each type are defined as lists of _decimals_, _not_ hex. Fields are:
-                        name = The printed name
-                        bytes = The bytes to represent
-                        colour = The colour of the line
-entcolour str           Colour of the entropy graph
-"""
-from __future__ import division
-
-# # Import graph specific libs
-from __future__ import absolute_import
-import matplotlib
-
-matplotlib.use("Agg")
-import matplotlib.pyplot as plt
-import matplotlib.ticker as ticker
-from matplotlib.ticker import MaxNLocator
-
-import hashlib
-import numpy as np
-import statistics
-from collections import Counter
-import os
-import json
-import sys
-import re
-
-try:
-    import pefile
-except ImportError as e1:
-    try:
-        import lief
-    except ImportError as e2:
-        pass
-
-
-# # Python 2/3 fix
-import json
-
-try:
-    from json.decoder import JSONDecodeError
-except ImportError:
-    JSONDecodeError = ValueError
-
-import logging
-
-log = logging.getLogger("graph.ent")
-
-# # Graph defaults
-__chunks__ = 750
-__ibytes__ = '[ {"name":"0\'s", "colour": "#15ff04", "bytes": [0]}, {"name":"Exploit", "bytes": [44,144], "colour":"#ff2b01"}, {"name":"Printable ASCII", "colour":"b", "bytes": [32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52,53,54,55,56,57,58,59,60,61,62,63,64,65,66,67,68,69,70,71,72,73,74,75,76,77,78,79,80,81,82,83,84,85,86,87,88,89,90,91,92,93,94,95,96,97,98,99,100,101,102,103,104,105,106,107,108,109,110,111,112,113,114,115,116,117,118,119,120,121,122,123,124,125,126]} ]'
-__ibytes_dict__ = json.loads(__ibytes__)
-__entcolour__ = "#ff00ff"
-
-# # Set args in args parse - the given parser is a sub parser
-def args_setup(arg_parser):
-    arg_parser.add_argument(
-        "-c",
-        "--chunks",
-        type=int,
-        default=__chunks__,
-        metavar="750",
-        help="Defines how many chunks the binary is split into (and therefore the amount of bytes submitted for shannon sampling per time). Higher number gives more detail",
-    )
-    arg_parser.add_argument(
-        "--ibytes",
-        type=str,
-        nargs="?",
-        metavar=' { "name":"0s", "bytes":[0] }, { "name":"Exploit", "bytes":[44, 144], "colour":"r" } ',
-        default=__ibytes__,
-        help="""
-                    Bytes occurances to add to the graph - used to add extra visability into the type of bytes included in the binary. To disable this option, set the flag without an argument.
-                    The "name" value is the name of the bytes for the legend, the "bytes" value is the bytes to count the percentage of per section, the "colour" value maybe a matplotlib colour
-                    ( r,g,b etc.), a hex with or without an alpha value, or not defined (a seeded colour is chosen). The easiest way to construct these values is to create a dictionary and convert it using \'print(json.loads(dict))\'""",
-    )
-    arg_parser.add_argument("--entcolour", type=str, metavar="#cf3da2ff", default=__entcolour__, help="Colour of the Entropy line")
-
-
-# # Validate graph specific arguments - Set the defaults here
-class ArgValidationEx(Exception):
-    pass
-
-
-def args_validation(args):
-
-    # # Test to see what matplotlib backend is setup
-    backend = matplotlib.get_backend()
-    if not backend == "TkAgg":
-        log.warning('{} matplotlib backend in use. This graph generation was tested with "TkAgg", bugs may lie ahead...'.format(backend))
-
-    # # Test to see if we should use defaults
-    if args.graphtype == "all":
-        args.chunks = __chunks__
-        args.ibytes = __ibytes__
-        args.entcolour = __entcolour__
-
-    # # Test ibytes is jalid json
-    try:
-        args.ibytes = json.loads(args.ibytes)
-    except JSONDecodeError as e:
-        raise ArgValidationEx('Error decoding json --ibytes value. {}: "{}"'.format(e, args.ibytes))
-    except TypeError as e:
-        args.ibytes = False
-
-    # # Test to see if ibytes are sane
-    if args.ibytes:
-
-        ibytes_list = []
-
-        for ib in args.ibytes:
-
-            ibyte = {}
-
-            if not type(ib) == dict:
-                raise ArgValidationEx('Error validating --ibytes - value is not a dict: "{}"'.format(ibytes_list))
-            elif type(ib) == dict:
-                if not ("name" in list(ib.keys()) and "bytes" in list(ib.keys())):
-                    raise ArgValidationEx("Error validating --ibytes - name or bytes field not present: {}".format(ib))
-
-                ibyte["name"] = ib["name"]
-                ibyte["bytes"] = []
-
-                if not len(ib["bytes"]) > 0:
-                    raise ArgValidationEx('Error validating --ibytes - Missing "bytes" values: {}'.format(ib))
-
-                for b in ib["bytes"]:
-                    if not type(b) == int:
-                        raise ArgValidationEx('Error validating --ibytes is not an int: "{}"'.format(b))
-                    else:
-                        ibyte["bytes"].append(b)
-
-                # # Get/set the colour if it exists
-                if not "colour" in list(ib.keys()):
-                    log.warning("No colour defined for --ibytes byte range: {} {}".format(ib["name"], ib["bytes"]))
-                    ibyte["colour"] = matplotlib.colors.to_rgba(hash_colour(ib["name"]))
-                else:
-                    ibyte["colour"] = matplotlib.colors.to_rgba(ib["colour"])
-
-            else:
-                raise ArgValidationEx("Error validating --ibytes: {}".format(ib))
-
-            ibytes_list.append(ibyte)
-
-        args.ibytes = ibytes_list
-
-
-# # Generate the graph
-def generate(abs_fpath, fname, blob, chunks=__chunks__, ibytes=__ibytes_dict__, **kwargs):
-
-    with open(abs_fpath, "rb") as fh:
-        log.debug('Opening: "{}"'.format(fname))
-
-        # # Calculate the overall chunksize
-        fs = os.fstat(fh.fileno()).st_size
-        if chunks > fs:
-            chunksize = 1
-            nr_chunksize = 1
-        else:
-            chunksize = -(-fs // chunks)
-            nr_chunksize = fs / chunks
-
-        log.debug("Filesize: {}, Chunksize (rounded): {}, Chunksize: {}, Chunks: {}".format(fs, chunksize, nr_chunksize, chunks))
-        log.debug("Using ibytes: {}".format(ibytes))
-        log.debug("Producing shannon ent with chunksize {}".format(chunksize))
-
-        for index, _ in enumerate(ibytes):
-            ibytes[index]["percentages"] = []
-
-        shannon_samples = []
-        for chunk in get_chunk(fh, chunksize=chunksize):
-
-            # # Calculate ent
-            ent = shannon_ent(chunk)
-            shannon_samples.append(ent)
-
-            # # Calculate percentages of given bytes, if provided
-            if ibytes:
-                cbytes = Counter(chunk)
-
-                for index, _ in enumerate(ibytes):
-                    occurrence = 0
-                    for b in ibytes[index]["bytes"]:
-                        occurrence += cbytes[b]
-
-                    ibytes[index]["percentages"].append((float(occurrence) / float(len(chunk))) * 100)
-
-    log.debug('Closed: "{}"'.format(fname))
-
-    # # Create the figure
-    fig, host = plt.subplots()
-    parsedbin = ""
-    log.debug("Plotting shannon samples")
-    host.plot(np.array(shannon_samples), label="Entropy", c=kwargs["entcolour"], zorder=1001, linewidth=1.2)
-
-    host.set_ylabel("Entropy\n".format(chunksize))
-    host.set_xlabel("File offset")
-    host.xaxis.set_major_formatter(ticker.FuncFormatter(lambda x, pos: ("0x{:02X}".format(int(x * chunksize)))))
-    host.xaxis.set_major_locator(MaxNLocator(10))
-    plt.xticks(rotation=-10, ha="left")
-
-    # # Draw the graphs in order
-    zorder = 1000
-
-    # # Plot individual byte percentages
-    if ibytes:
-
-        axBytePc = host.twinx()
-        # axBytePc.set_ylabel('Occurrence of "interesting" bytes')
-        axBytePc.yaxis.set_major_formatter(ticker.FuncFormatter(lambda x, pos: ("{:d}%".format(int(x)))))
-
-        for index, _ in enumerate(ibytes):
-            c = ibytes[index]["colour"]
-            axBytePc.plot(np.array(ibytes[index]["percentages"]), label=ibytes[index]["name"], c=c, zorder=zorder, linewidth=1.2, alpha=0.75)
-            zorder -= 1
-
-        axBytePc.set_ybound(lower=-0.3, upper=101)
-
-    # # Amount of space required between the title and graph elements (such as the section name)
-    # # Append a \n if you need more space!
-    title_gap = "\n"
-
-    # # Filetype specific additions
-    if blob:
-        log.warning("Parsing file as blob (as requested)")
-    else:
-
-        bp = bin_proxy(abs_fpath)
-
-        if None in (bp.bin, bp.type):
-            log.warning("Failed to parse binary format, parsing like --blob")
-
-        else:
-
-            if bp.type == "PE":
-
-                log.debug("Adding PE customisations")
-
-                # # Entrypoint (EP) pointer and vline
-                phy_ep_pointer = bp.get_physical_from_rva(bp.get_virtual_ep())
-                if phy_ep_pointer:
-                    phy_ep_pointer = phy_ep_pointer / nr_chunksize
-                    log.debug("{}: {}".format("Entrypoint", hex(bp.get_virtual_ep())))
-
-                    host.axvline(x=phy_ep_pointer, linestyle=":", c="#0000ff", zorder=zorder - 1)
-                    host.text(x=phy_ep_pointer, y=1.07, s="EntryPoint", color="b", rotation=45, va="bottom", ha="left")
-
-                end_of_last_section = 0
-                longest_section_name = 0
-
-                # # Section vlines
-                for index, section in bp.sections():
-                    zorder -= 1
-
-                    section_name = safe_section_name(section.name, index)
-                    section_offset = section.offset / nr_chunksize
-                    section_size = section.size / nr_chunksize
-
-                    log.debug("{}: {}".format(section_name, hex(section.offset)))
-
-                    host.axvline(x=section_offset, linestyle="--", zorder=zorder)
-                    host.text(x=section_offset, y=1.07, s=section_name, rotation=45, va="bottom", ha="left")
-
-                    # # Get end of last section
-                    if (section_offset + section_size) > end_of_last_section:
-                        end_of_last_section = section_offset + section_size
-
-                    # # Get longest section name
-                    longest_section_name = len(section_name) if len(section_name) > longest_section_name else longest_section_name
-
-                # # End of final section vline
-                host.axvline(x=end_of_last_section, linestyle="--", zorder=zorder)
-                host.text(x=end_of_last_section, y=1.07, s="Overlay", color="b", rotation=45, va="bottom", ha="left")
-
-                # # Eval the space required to show the section names
-                if longest_section_name <= 9:
-                    title_gap = "\n\n"
-                elif longest_section_name <= 15:
-                    title_gap = "\n\n\n"
-
-            elif bp.type == "ELF":
-
-                log.debug("Adding ELF customisations")
-
-                # # Entrypoint (EP) pointer and vline
-                phy_ep_pointer = parsedbin.virtual_address_to_offset(parsedbin.header.entrypoint) / nr_chunksize
-                log.debug("{}: {}".format("Entrypoint", hex(parsedbin.header.entrypoint)))
-
-                host.axvline(x=phy_ep_pointer, linestyle=":", c="r", zorder=zorder - 1)
-                host.text(x=phy_ep_pointer, y=1.07, s="Entry", rotation=45, va="bottom", ha="left")
-
-                longest_section_name = 0
-                # # Section vlines
-                for index, section in enumerate(parsedbin.sections):
-                    zorder -= 1
-
-                    section_name = safe_section_name(section.name, index)
-                    section_offset = section.offset / nr_chunksize
-
-                    log.debug("{}: {}".format(section_name, hex(section.offset)))
-
-                    host.axvline(x=section_offset, linestyle="--", zorder=zorder)
-                    host.text(x=section_offset, y=1.07, s=section_name, rotation=45, va="bottom", ha="left")
-
-                    # # Get longest section name
-                    longest_section_name = len(section_name) if len(section_name) > longest_section_name else longest_section_name
-
-                # # Eval the space required to show the section names
-                if longest_section_name <= 5:
-                    title_gap = "\n" * 2
-                elif longest_section_name <= 9:
-                    title_gap = "\n" * 3
-                elif longest_section_name <= 15:
-                    title_gap = "\n" * 4
-
-            else:
-                log.debug("File is a currently unsupported format - (supported by lief, not yet supported by binGraph)")
-
-    # # Plot the entropy graph
-    host.set_xbound(lower=-0.5, upper=len(shannon_samples) + 0.5)
-    host.set_ybound(lower=0, upper=1.05)
-
-    # # Add legends + title (adjust for different options given)
-    legends = []
-    if ibytes:
-        legends.append(host.legend(loc="upper left", bbox_to_anchor=(1.1, 1), frameon=False))
-        legends.append(axBytePc.legend(loc="upper left", bbox_to_anchor=(1.1, 0.85), frameon=False))
-    else:
-        legends.append(host.legend(loc="upper left", bbox_to_anchor=(1.01, 1), frameon=False))
-
-    host.set_title("{title_gap}".format(title_gap=title_gap))
-
-    # # Return the plt, kwargs for the plt.savefig function, and additional information for json data
-    json_data = {"title": fname, "info": {"Mean": statistics.mean(shannon_samples), "Standard deviation": statistics.stdev(shannon_samples)}}
-
-    return plt, {"bbox_inches": "tight", "bbox_extra_artists": tuple(legends)}, json_data
-
-
-# ### Helper functions
-
-# # Abstracts the bin properties away from specific library calls enabling lief and pefile usage
-class bin_proxy(object):
-    """Abstract for different binary parsers types in use"""
-
-    def __init__(self, abs_fpath, lib=None):
-        super(bin_proxy, self).__init__()
-        self.abs_fpath = abs_fpath
-
-        if lib:
-            self.lib = lib
-        else:
-
-            if "pefile" in sys.modules:
-                self.lib = "pefile"
-            elif "lief" in sys.modules:
-                self.lib = "lief"
-            else:
-                # # We dont have a parser
-                return None, None
-
-        self.bin, self.type = None, None
-        self.__parse_bin()
-
-    class __ParseError(Exception):
-
-        pass
-
-    def __parse_bin(self):
-
-        if self.lib == "lief":
-            try:
-                self.bin = lief.parse(filepath=self.abs_fpath)
-                if type(self.bin) == lief.PE.Binary:
-                    self.type = "PE"
-                    log.debug("Parsed with lief as: {}".format(self.type))
-                else:
-                    log.debug("File is a currently unsupported format: {}".format(self.type))
-
-            except lief.bad_file as e:
-                log.warning("Failed to parse with lief: {}".format(e))
-
-        elif self.lib == "pefile":
-            try:
-                self.bin = pefile.PE(self.abs_fpath)
-                self.type = "PE"
-
-                log.debug("Parsed with pefile as: {}".format(self.type))
-
-            except pefile.PEFormatError as e:
-                log.warning("Failed to parse with pefile: {}".format(e))
-
-    def get_virtual_ep(self):
-
-        if self.lib == "lief":
-            return self.bin.optional_header.addressof_entrypoint
-        elif self.lib == "pefile":
-            return self.bin.OPTIONAL_HEADER.AddressOfEntryPoint
-
-    def get_physical_from_rva(self, rva):
-
-        if self.lib == "lief":
-            return self.bin.rva_to_offset(rva)
-        elif self.lib == "pefile":
-            return self.bin.get_physical_by_rva(rva)
-
-    def sections(self):
-
-        index = 0
-        sections = []
-
-        for lib_section in self.bin.sections:
-
-            section = section_proxy(self.lib, lib_section)
-
-            yield index, section
-            index += 1
-
-
-# # Part of bin_proxy - abstracts section calls
-class section_proxy(object):
-    """Abstract for different binary parsers types in use"""
-
-    def __init__(self, lib, lib_section):
-        super(section_proxy, self).__init__()
-        self.lib = lib
-        self.lib_section = lib_section
-
-        if self.lib == "lief":
-            self.name = lib_section.name
-            self.offset = lib_section.offset
-        elif self.lib == "pefile":
-            self.name = str(lib_section.Name.rstrip(b"\x00").decode("utf-8"))
-            self.offset = self.lib_section.PointerToRawData
-            self.size = self.lib_section.SizeOfRawData
-
-
-# # Read files as chunks
-def get_chunk(fh, chunksize=8192):
-    while True:
-        chunk = fh.read(chunksize)
-
-        # # Convert to bytearray if not python 3
-        if sys.version_info[0] <= 3:
-            chunk = bytearray(chunk)
-
-        if chunk:
-            yield list(chunk)
-        else:
-            break
-
-
-# # Some samples may have a corrupt section name (e.g. 206c0533ce9bf83ecdf904bec2f3532d)
-def safe_section_name(s_name, index):
-    if s_name == "" or s_name == None:
-        s_name = "sect_{:d}".format(index)
-
-    # # Long sections names upset matplotlib
-    if len(s_name) > 15:
-        s_name = "{}...".format(s_name[0:12])
-
-    return s_name
-
-
-# # Assign a colour to the section name. Static between samples
-def hash_colour(text):
-
-    name_colour = int("F" + hashlib.md5(text.encode("utf-8")).hexdigest()[:4], base=16)
-    np.random.seed(int(name_colour))
-    return matplotlib.colors.to_rgba(np.random.rand(3,))
-
-
-# # Calculate entropy given a list
-def shannon_ent(labels, base=256):
-    value, counts = np.unique(labels, return_counts=True)
-    norm_counts = counts / counts.sum()
-    e = 0
-    base = e if base is None else base
-    return -(norm_counts * np.log(norm_counts) / np.log(base)).sum()
-
-
-if __name__ == "__main__":
-
-    import argparse
-
-    logging.basicConfig(stream=sys.stderr, format="%(levelname)s | %(message)s", level=logging.DEBUG)
-    logging.getLogger("matplotlib").setLevel(logging.CRITICAL)
-    log = logging.getLogger("ent")
-
-    # ## Global graphing default values
-    __figformat__ = "png"  # Output format of saved figure
-    __figsize__ = (12, 4)  # Size of figure in inches
-    __figdpi__ = 100  # DPI of figure
-    __showplt__ = False  # Show the plot interactively
-    __blob__ = False  # Treat all files as binary blobs. Disable intelligently parsing of file format specific features.
-
-    parser = argparse.ArgumentParser()
-    parser.add_argument(
-        "-f",
-        "--file",
-        type=str,
-        required=True,
-        metavar="malware.exe",
-        help="Give me a graph of this file. See - if this is the only argument specified.",
-    )
-    parser.add_argument("--showplt", action="store_true", default=__showplt__, help="Show plot interactively (disables saving to file)")
-    parser.add_argument(
-        "--format",
-        type=str,
-        default=__figformat__,
-        choices=["png", "pdf", "ps", "eps", "svg"],
-        required=False,
-        metavar="png",
-        help="Graph output format",
-    )
-    parser.add_argument("--figsize", type=int, nargs=2, default=__figsize__, metavar="#", help="Figure width and height in inches")
-    parser.add_argument("--dpi", type=int, default=__figdpi__, metavar=__figdpi__, help="Figure dpi")
-    parser.add_argument(
-        "--blob",
-        action="store_true",
-        default=__blob__,
-        help="Do not intelligently parse certain file types. Treat all files as a binary blob. E.g. don't add PE entry point or section splitter to the graph",
-    )
-
-    args_setup(parser)
-
-    args = parser.parse_args()
-
-    args.graphtype = __name__
-
-    args_validation(args)
-
-    args_dict = args.__dict__
-    args_dict["abs_fpath"] = args.file
-    args_dict["fname"] = os.path.basename(args.file)
-    args_dict["abs_save_fpath"] = "{}.{}".format(os.path.basename(args_dict["abs_fpath"]), args.format)
-
-    plt, save_kwargs, json_data = generate(**args_dict)
-
-    fig = plt.gcf()
-    fig.set_size_inches(*args.figsize, forward=True)
-
-    plt.tight_layout()
-
-    if args.showplt:
-        log.debug("Opening graph interactively")
-        plt.show()
-    else:
-        plt.savefig(args_dict["abs_save_fpath"], format=args.format, dpi=args.dpi, forward=True, **save_kwargs)
-        log.info('Graph saved to: "{}"'.format(args_dict["abs_save_fpath"]))
diff --git a/lib/cuckoo/common/graphs/binGraph/graphs/hist/graph.py b/lib/cuckoo/common/graphs/binGraph/graphs/hist/graph.py
deleted file mode 100644
index 0e32c9ec232..00000000000
--- a/lib/cuckoo/common/graphs/binGraph/graphs/hist/graph.py
+++ /dev/null
@@ -1,235 +0,0 @@
-#!/usr/bin/env python
-
-"""
-Byte histogram over all file
--------------------------------------------
-abs_fpath:      Absolute file path - File to load and analyse
-fname:          Filename
-
-no_zero bool:   Remove 0x00 from the graph, sometimes this blows other results due to there being numerous amounts - also see log
-width int:      Sample width
-g_log bool:     Whether to apply a log scale to occurance axis
-no_order bool:  Remove the ordered histogram - it shows overall distribution
-"""
-
-from __future__ import division
-
-from __future__ import absolute_import
-import os
-import sys
-import numpy as np
-import matplotlib
-
-matplotlib.use("Agg")
-import matplotlib.ticker as ticker
-import matplotlib.pyplot as plt
-from matplotlib.ticker import MaxNLocator
-from collections import Counter
-
-import logging
-
-log = logging.getLogger("graph.hist")
-
-# # Graph defaults
-__no_zero__ = False
-__width__ = 1
-__g_log__ = True
-__no_order__ = False
-__colours__ = ["#ff01d5", "#01ff2b"]
-
-# Set args in args parse
-def args_setup(arg_parser):
-
-    arg_parser.add_argument(
-        "--no_zero",
-        action="store_true",
-        default=__no_zero__,
-        help="Remove 0x00 from the graph, sometimes this blows other results due to there being numerous amounts - also see --no_log",
-    )
-    arg_parser.add_argument("--width", type=int, default=__width__, metavar=__width__, help="Sample width")
-    arg_parser.add_argument("--no_log", action="store_false", default=__g_log__, help="Do _not_ apply a log scale to occurance axis")
-    arg_parser.add_argument(
-        "--no_order", action="store_true", default=__no_order__, help="Remove the ordered histogram - It shows overall distribution when on"
-    )
-    arg_parser.add_argument(
-        "--colours", type=str, nargs=2, default=__colours__, metavar="#ff01d5", help="Colours for the graph. First value is the ordered graph"
-    )
-
-
-# Validate graph specific arguments
-class ArgValidationEx(Exception):
-    pass
-
-
-def args_validation(args):
-
-    # # Test to see what matplotlib backend is setup
-    backend = matplotlib.get_backend()
-    if not backend == "TkAgg":
-        log.warning('{} matplotlib backend in use. This graph generation was tested with "TkAgg", bugs may lie ahead...'.format(backend))
-
-    # # Test to see if we should use defaults
-    if args.graphtype == "all":
-        args.no_zero = __no_zero__
-        args.width = __width__
-        args.no_log = __g_log__
-        args.no_order = __no_order__
-        args.colours = __colours__
-
-    try:
-        args.colours[0] = matplotlib.colors.to_rgba(args.colours[0])
-        args.colours[1] = matplotlib.colors.to_rgba(args.colours[1])
-    except ValueError as e:
-        raise ArgValidationEx("Error parsing --colours: {}".format(e))
-
-
-def generate(abs_fpath, fname, no_zero=__no_zero__, width=__width__, g_log=__g_log__, no_order=__no_order__, colours=__colours__, **kwargs):
-
-    file_array = []
-    with open(abs_fpath, "rb") as fh:
-        for x in bytearray(fh.read()):
-            file_array.append(x)
-
-    log.debug('Read: "{}", length: {}'.format(fname, len(file_array)))
-
-    log.debug("Ignore 0's: {}".format(no_zero))
-    no_zero = -int(no_zero)
-
-    fig, ax = plt.subplots()
-
-    # # Add a byte hist ordered 1 > 255
-    ordered_row = []
-    c = Counter(file_array)
-    for x in range(no_zero, 256):
-        ordered_row.append(c[x])
-
-    ax.bar(
-        np.array(list(range(no_zero, 256))),
-        np.array(ordered_row),
-        align="edge",
-        width=width,
-        label="Bytes",
-        color=colours[0],
-        log=g_log,
-        zorder=0,
-        linewidth=0,
-    )
-    log.debug("Graphed binary array")
-
-    # # Add a byte hist ordered by occurrence - shows general distribution
-    if not no_order:
-        sorted_row = []
-        c = Counter(file_array)
-        for x in range(no_zero, 256):
-            sorted_row.append(c[x])
-
-        sorted_row.sort()
-        sorted_row.reverse()
-
-        ax.bar(
-            np.array(list(range(no_zero, 256))),
-            np.array(sorted_row),
-            width=width,
-            label="Ordered",
-            color=colours[1],
-            log=g_log,
-            zorder=1,
-            alpha=0.5,
-            linewidth=0,
-        )
-        log.debug("Graphed ordered binary array")
-
-    # # Formatting and watermarking
-    ax.xaxis.set_major_formatter(ticker.FuncFormatter(lambda x, pos: ("0x{:02X}".format(int(x)))))
-    ax.xaxis.set_major_locator(MaxNLocator(20))
-    ax.set_xlabel(
-        "Bytes (0x00 included: {}, {})".format((True if no_zero == 0 else False), ("width 1" if width == 1 else "width: " + str(width)))
-    )
-    ax.set_ylabel("Occurrence (log {})".format(g_log))
-
-    # Include 0x00 byte?
-    if no_zero:
-        ax.set_xlim(1, 255)
-        ax.set_xbound(lower=1, upper=255)
-        log.debug("Ignoring 0x00, setting xlim/xbounds to (1,255)")
-    else:
-        ax.set_xlim(0, 255)
-        ax.set_xbound(lower=0, upper=255)
-        log.debug("Setting xlim/xbounds to (0,255)")
-
-    plt.legend(loc="upper center", ncol=3, bbox_to_anchor=(0.5, 1.07), framealpha=1)
-
-    plt.title("Byte histogram: {}\n".format(fname))
-
-    return plt, {}, {}
-
-
-if __name__ == "__main__":
-
-    import argparse, sys
-
-    logging.basicConfig(stream=sys.stderr, format="%(levelname)s | %(message)s", level=logging.DEBUG)
-    logging.getLogger("matplotlib").setLevel(logging.CRITICAL)
-    log = logging.getLogger("hist")
-
-    # ## Global graphing default values
-    __figformat__ = "png"  # Output format of saved figure
-    __figsize__ = (12, 4)  # Size of figure in inches
-    __figdpi__ = 100  # DPI of figure
-    __showplt__ = False  # Show the plot interactively
-    __blob__ = False  # Treat all files as binary blobs. Disable intelligently parsing of file format specific features.
-
-    parser = argparse.ArgumentParser()
-    parser.add_argument(
-        "-f",
-        "--file",
-        type=str,
-        required=True,
-        metavar="malware.exe",
-        help="Give me a graph of this file. See - if this is the only argument specified.",
-    )
-    parser.add_argument("--showplt", action="store_true", default=__showplt__, help="Show plot interactively (disables saving to file)")
-    parser.add_argument(
-        "--format",
-        type=str,
-        default=__figformat__,
-        choices=["png", "pdf", "ps", "eps", "svg"],
-        required=False,
-        metavar="png",
-        help="Graph output format",
-    )
-    parser.add_argument("--figsize", type=int, nargs=2, default=__figsize__, metavar="#", help="Figure width and height in inches")
-    parser.add_argument("--dpi", type=int, default=__figdpi__, metavar=__figdpi__, help="Figure dpi")
-    parser.add_argument(
-        "--blob",
-        action="store_true",
-        default=__blob__,
-        help="Do not intelligently parse certain file types. Treat all files as a binary blob. E.g. don't add PE entry point or section splitter to the graph",
-    )
-
-    args_setup(parser)
-
-    args = parser.parse_args()
-
-    args.graphtype = __name__
-
-    args_validation(args)
-
-    args_dict = args.__dict__
-    args_dict["abs_fpath"] = args.file
-    args_dict["fname"] = os.path.basename(args.file)
-    args_dict["abs_save_fpath"] = "{}.{}".format(os.path.basename(args_dict["abs_fpath"]), args.format)
-
-    plt, save_kwargs, json_data = generate(**args_dict)
-
-    fig = plt.gcf()
-    fig.set_size_inches(*args.figsize, forward=True)
-
-    plt.tight_layout()
-
-    if args.showplt:
-        log.debug("Opening graph interactively")
-        plt.show()
-    else:
-        plt.savefig(args_dict["abs_save_fpath"], format=args.format, dpi=args.dpi, forward=True, **save_kwargs)
-        log.info('Graph saved to: "{}"'.format(args_dict["abs_save_fpath"]))
diff --git a/lib/cuckoo/common/hypervisor_config.py b/lib/cuckoo/common/hypervisor_config.py
new file mode 100644
index 00000000000..53a36949bf5
--- /dev/null
+++ b/lib/cuckoo/common/hypervisor_config.py
@@ -0,0 +1,50 @@
+import json
+
+import requests
+
+from lib.cuckoo.common.config import Config
+
+proxmox_conf = Config("proxmox")
+
+
+def proxmox_shutdown_vm(machineName: str):
+    """
+    Shuts down a virtual machine on a Proxmox server.
+
+    Args:
+        machineName (str): The name of the virtual machine to shut down.
+
+    Raises:
+        Exception: If there is an error during the shutdown process.
+
+    Notes:
+        - This function does not support multiple Proxmox servers.
+        - The Proxmox server configuration is expected to be available in the `proxmox_conf` object.
+        - The function retrieves the VM ID from the `proxmox_conf.Node_1` configuration using the provided machine name.
+        - The function sends a POST request to the Proxmox API to obtain an authentication ticket and CSRF prevention token.
+        - The function then sends another POST request to shut down the specified virtual machine.
+        - If the shutdown is successful, a message is printed to indicate success.
+        - If an error occurs, it is caught and printed.
+    """
+
+    proxmox_server = proxmox_conf.proxmox.hostname
+    # Not supporting multiple servers
+    nodes = proxmox_conf.proxmox.nodes
+    vmID = getattr(proxmox_conf.Node_1, machineName)
+
+    url = f"https://{proxmox_server}/api2/json/access/ticket"
+    data = {"username": proxmox_conf.proxmox.username, "password": proxmox_conf.proxmox.password}
+
+    try:
+        response = requests.post(url, data=data, verify=False)
+        json_Data = json.loads(response.text)
+        cookie = json_Data["data"]["ticket"]
+        csrf = json_Data["data"]["CSRFPreventionToken"]
+        headers = {"cookie": f"PVEAuthCookie={cookie}", "CSRFPreventionToken": csrf}
+
+        url2 = f"https://{proxmox_server}/api2/json/nodes/{nodes}/qemu/{vmID}/status/{proxmox_conf.proxmox.action}"
+        response_2 = requests.post(url2, headers=headers, verify=False)
+        if response_2.status_code == 200:
+            print("Machine has been reset successfully...\n")
+    except Exception as e:
+        print("hypervisor config", e)
diff --git a/lib/cuckoo/common/icon.py b/lib/cuckoo/common/icon.py
index 2ffcbdf7081..cfc88ff5017 100644
--- a/lib/cuckoo/common/icon.py
+++ b/lib/cuckoo/common/icon.py
@@ -2,20 +2,11 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-from ctypes import (
-    Structure,
-    sizeof,
-    create_string_buffer,
-    string_at,
-    c_ubyte as BYTE,
-    c_ushort as WORD,
-    c_uint as DWORD,
-    cast,
-    pointer,
-    POINTER,
-    byref,
-)
+from ctypes import POINTER, Structure, byref, cast, create_string_buffer, pointer, sizeof, string_at
+from ctypes import c_ubyte as BYTE
+from ctypes import c_uint as DWORD
+from ctypes import c_ushort as WORD
+
 
 class GRPICONDIR(Structure):
     _pack_ = 1
@@ -65,7 +56,7 @@ class ICONDIRENTRY(Structure):
     ]
 
 
-class PEGroupIconDir(object):
+class PEGroupIconDir:
     def __init__(self, data):
         self.data = data
         self.icondir = None
diff --git a/lib/cuckoo/common/integrations/XLMMacroDeobfuscator.py b/lib/cuckoo/common/integrations/XLMMacroDeobfuscator.py
new file mode 100644
index 00000000000..a9c32e39723
--- /dev/null
+++ b/lib/cuckoo/common/integrations/XLMMacroDeobfuscator.py
@@ -0,0 +1,70 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+import logging
+import os
+
+from lib.cuckoo.common.config import Config
+from lib.cuckoo.common.constants import CUCKOO_ROOT
+from lib.cuckoo.common.objects import File
+from lib.cuckoo.common.path_utils import path_exists, path_mkdir, path_write_file
+
+log = logging.getLogger(__name__)
+
+processing_conf = Config("processing")
+
+"""
+path = "/opt/CAPEv2/storage/analyses/2894126/binary"
+task_id = 2894126
+from lib.cuckoo.common.integrations.XLMMacroDeobfuscator import xlmdeobfuscate
+details = xlmdeobfuscate(path, task_id, on_demand=True)
+"""
+
+HAVE_XLM_DEOBF = False
+if processing_conf.xlsdeobf.enabled:
+    try:
+        HAVE_XLM_DEOBF = True
+        from XLMMacroDeobfuscator.deobfuscator import process_file as XLMMacroDeobf
+    except ImportError:
+        print(
+            "Missed dependey XLMMacroDeobfuscator: poetry run pip install -U git+https://github.com/DissectMalware/XLMMacroDeobfuscator.git"
+        )
+
+    xlm_kwargs = {
+        # "file": filepath,
+        "noninteractive": True,
+        "extract_only": False,
+        "start_with_shell": False,
+        "return_deobfuscated": True,
+        "no_indent": False,
+        "output_formula_format": "CELL:[[CELL-ADDR]], [[STATUS]], [[INT-FORMULA]]",
+        "day": -1,
+        # "password": password,
+    }
+
+
+def xlmdeobfuscate(filepath: str, task_id: str, password: str = "", on_demand: bool = False):
+    if not HAVE_XLM_DEOBF or processing_conf.xlsdeobf.on_demand and not on_demand:
+        return
+    xlm_kwargs["file"] = filepath
+    xlm_kwargs["password"] = password
+
+    macro_folder = os.path.join(CUCKOO_ROOT, "storage", "analyses", task_id, "macros")
+
+    try:
+        deofuscated_xlm = XLMMacroDeobf(**xlm_kwargs)
+        if deofuscated_xlm:
+            xlmmacro = {"Code": deofuscated_xlm}
+            if not path_exists(macro_folder):
+                path_mkdir(macro_folder)
+            macro_file = os.path.join(macro_folder, "xlm_macro")
+            _ = path_write_file(macro_file, "\n".join(deofuscated_xlm), mode="text")
+            xlmmacro["info"] = {"yara_macro": File(macro_file).get_yara(category="macro")}
+            xlmmacro["info"]["yara_macro"].extend(File(macro_file).get_yara(category="CAPE"))
+            return xlmmacro
+    except Exception as e:
+        if "no attribute 'workbook'" in str(e) or "Can't find workbook" in str(e):
+            log.info("Workbook not found. Probably not an Excel file")
+        else:
+            log.exception(e)
diff --git a/lib/cuckoo/common/integrations/capa.py b/lib/cuckoo/common/integrations/capa.py
index af843fe0b93..7e7a6ce22d4 100644
--- a/lib/cuckoo/common/integrations/capa.py
+++ b/lib/cuckoo/common/integrations/capa.py
@@ -1,52 +1,109 @@
 # Copyright (C) 2010-2015 Cuckoo Foundation.
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
-from __future__ import absolute_import
-import os
+
 import collections
 import logging
+import os
+# from contextlib import suppress
+from typing import Any, Dict, Set
 
 from lib.cuckoo.common.config import Config
 from lib.cuckoo.common.constants import CUCKOO_ROOT
+from lib.cuckoo.common.path_utils import path_exists, path_object
 
 log = logging.getLogger(__name__)
 
-processing_conf = Config("processing")
+reporting_conf = Config("reporting")
+integrations_conf = Config("integrations")
 
+rules = False
 HAVE_FLARE_CAPA = False
-if processing_conf.flare_capa.enabled:
+if integrations_conf.flare_capa.enabled:
     try:
-        import capa.main
-        import capa.rules
-        import capa.engine
-        import capa.features
-        from capa.render import convert_capabilities_to_result_document as capa_convert_capabilities_to_result_document
-        from capa.engine import *
-        import capa.render.utils as rutils
-        from capa.main import UnsupportedRuntimeError
-
-        rules_path = os.path.join(CUCKOO_ROOT, "data", "capa-rules")
-        if os.path.exists(rules_path):
-            capa.main.RULES_PATH_DEFAULT_STRING = os.path.join(CUCKOO_ROOT, "data", "capa-rules")
-            rules = capa.main.get_rules(capa.main.RULES_PATH_DEFAULT_STRING, disable_progress=True)
-            rules = capa.rules.RuleSet(rules)
-            HAVE_FLARE_CAPA = True
+        # from platform import python_version
+
+        from capa.version import __version__ as capa_version
+        from packaging import version
+
+        # if version.parse(python_version()) >= version.parse("3.10.0"):
+        capa_compatible_version = "9"
+
+        # ToDo use major?
+        if version.parse(capa_version).base_version.split(".")[0] != capa_compatible_version:
+            print("FLARE-CAPA missed or incompatible version. Run: poetry install")
         else:
-            print("FLARE CAPA rules missed! You can download them using python community.py -cr")
-            HAVE_FLARE_CAPA = False
-    except ImportError:
+            import capa.capabilities.common
+            import capa.engine
+            import capa.features
+            import capa.features.freeze.features as frzf
+            import capa.loader
+            import capa.main
+            import capa.render.default
+            import capa.render.json
+            import capa.render.result_document as rd
+            import capa.render.utils as rutils
+            import capa.rules
+            from capa.exceptions import EmptyReportError, UnsupportedFormatError
+            from capa.features.common import FORMAT_AUTO, OS_AUTO
+            from capa.rules import InvalidRule, InvalidRuleSet, InvalidRuleWithPath
+            from pydantic_core._pydantic_core import ValidationError
+
+            # Reduce vivisect logging verbosity
+            logging.getLogger("vivisect").setLevel(logging.INFO)
+            logging.getLogger("vivisect.base").setLevel(logging.CRITICAL)
+            logging.getLogger("vivisect.impemu").setLevel(logging.CRITICAL)
+            logging.getLogger("vivisect.parsers").setLevel(logging.CRITICAL)
+            logging.getLogger("vivisect.tools").setLevel(logging.CRITICAL)
+            logging.getLogger("vivisect.analysis").setLevel(logging.CRITICAL)
+
+            rules_path = os.path.join(CUCKOO_ROOT, "data", "capa-rules")
+            if path_exists(rules_path):
+                try:
+                    rules = capa.rules.get_rules([path_object(rules_path)])
+                    HAVE_FLARE_CAPA = True
+                except InvalidRuleWithPath:
+                    print("FLARE_CAPA InvalidRuleWithPath")
+                    HAVE_FLARE_CAPA = False
+                except InvalidRuleSet:
+                    print("FLARE_CAPA InvalidRuleSet")
+                    HAVE_FLARE_CAPA = False
+                except InvalidRule:
+                    print("FLARE_CAPA InvalidRuleSet")
+                    HAVE_FLARE_CAPA = False
+                except TypeError:
+                    print("FLARE_CAPA problems. Probably install CAPA from github")
+                    HAVE_FLARE_CAPA = False
+            else:
+                print("FLARE CAPA rules missed! You can download them using: poetry run python utils/community.py -cr")
+                HAVE_FLARE_CAPA = False
+
+            signatures_path = os.path.join(CUCKOO_ROOT, "data", "flare-signatures")
+            if path_exists(signatures_path):
+                capa.main.SIGNATURES_PATH_DEFAULT_STRING = path_object(signatures_path)
+                try:
+                    signatures = capa.loader.get_signatures(capa.main.SIGNATURES_PATH_DEFAULT_STRING)
+                    HAVE_FLARE_CAPA = True
+                except IOError:
+                    print("FLARE_CAPA InvalidSignatures")
+            else:
+                print("FLARE CAPA signature missed! You can download them using: poetry run python utils/community.py -cr")
+                HAVE_FLARE_CAPA = False
+    except ImportError as e:
         HAVE_FLARE_CAPA = False
-        print("FLARE-CAPA missed, pip3 install flare-capa")
+        print(e)
+        print("FLARE-CAPA missed: poetry install")
 
-def render_meta(doc, ostream):
 
-    ostream["md5"] = doc["meta"]["sample"]["md5"]
-    ostream["sha1"] = doc["meta"]["sample"]["sha1"]
-    ostream["sha256"] = doc["meta"]["sample"]["sha256"]
-    ostream["path"] = doc["meta"]["sample"]["path"]
+# == Render ddictionary helpers
+def render_meta(doc, result):
+    result["md5"] = doc.meta.sample.md5
+    result["sha1"] = doc.meta.sample.sha1
+    result["sha256"] = doc.meta.sample.sha256
+    result["path"] = doc.meta.sample.path
 
 
-def find_subrule_matches(doc):
+def find_subrule_matches(doc) -> Set[str]:
     """
     collect the rule names that have been matched as a subrule match.
     this way we can avoid displaying entries for things that are too specific.
@@ -54,27 +111,27 @@ def find_subrule_matches(doc):
     matches = set([])
 
     def rec(node):
-        if not node["success"]:
+        if not node.success:
             # there's probably a bug here for rules that do `not: match: ...`
             # but we don't have any examples of this yet
             return
 
-        elif node["node"]["type"] == "statement":
-            for child in node["children"]:
+        elif isinstance(node.node, rd.StatementNode):
+            for child in node.children:
                 rec(child)
 
-        elif node["node"]["type"] == "feature":
-            if node["node"]["feature"]["type"] == "match":
-                matches.add(node["node"]["feature"]["match"])
+        elif isinstance(node.node, rd.FeatureNode):
+            if isinstance(node.node.feature, frzf.MatchFeature):
+                matches.add(node.node.feature.match)
 
     for rule in rutils.capability_rules(doc):
-        for node in rule["matches"].values():
+        for _, node in rule.matches:
             rec(node)
 
     return matches
 
 
-def render_capabilities(doc, ostream):
+def render_capabilities(doc, result):
     """
     example::
         {'CAPABILITY': {'accept command line arguments': 'host-interaction/cli',
@@ -87,25 +144,25 @@ def render_capabilities(doc, ostream):
     """
     subrule_matches = find_subrule_matches(doc)
 
-    ostream["CAPABILITY"] = dict()
+    result["CAPABILITY"] = {}
     for rule in rutils.capability_rules(doc):
-        if rule["meta"]["name"] in subrule_matches:
+        if rule.meta.name in subrule_matches:
             # rules that are also matched by other rules should not get rendered by default.
             # this cuts down on the amount of output while giving approx the same detail.
             # see #224
             continue
 
-        count = len(rule["matches"])
+        count = len(rule.matches)
         if count == 1:
-            capability = rule["meta"]["name"]
+            capability = rule.meta.name
         else:
-            capability = "%s (%d matches)" % (rule["meta"]["name"], count)
+            capability = "%s (%d matches)" % (rule.meta.name, count)
 
-        ostream["CAPABILITY"].setdefault(rule["meta"]["namespace"], list())
-        ostream["CAPABILITY"][rule["meta"]["namespace"]].append(capability)
+        result["CAPABILITY"].setdefault(rule.meta.namespace, [])
+        result["CAPABILITY"][rule.meta.namespace].append(capability)
 
 
-def render_attack(doc, ostream):
+def render_attack(doc, result):
     """
     example::
         {'ATT&CK': {'COLLECTION': ['Input Capture::Keylogging [T1056.001]'],
@@ -113,120 +170,136 @@ def render_attack(doc, ostream):
                                 'Virtualization/Sandbox Evasion::System Checks '
                                 '[T1497.001]'],
             'DISCOVERY': ['File and Directory Discovery [T1083]',
-                          'Query Registry [T1012]',
-                          'System Information Discovery [T1082]'],
+                            'Query Registry [T1012]',
+                            'System Information Discovery [T1082]'],
             'EXECUTION': ['Shared Modules [T1129]']}
         }
     """
-    ostream["ATTCK"] = dict()
+    result["ATTCK"] = {}
     tactics = collections.defaultdict(set)
     for rule in rutils.capability_rules(doc):
-        if not rule["meta"].get("att&ck"):
+        if not rule.meta.attack:
             continue
-
-        for attack in rule["meta"]["att&ck"]:
-            tactic, _, rest = attack.partition("::")
-            if "::" in rest:
-                technique, _, rest = rest.partition("::")
-                subtechnique, _, id = rest.rpartition(" ")
-                tactics[tactic].add((technique, subtechnique, id))
-            else:
-                technique, _, id = rest.rpartition(" ")
-                tactics[tactic].add((technique, id))
+        for attack in rule.meta.attack:
+            tactics[attack.tactic].add((attack.technique, attack.subtechnique, attack.id))
 
     for tactic, techniques in sorted(tactics.items()):
         inner_rows = []
-        for spec in sorted(techniques):
-            if len(spec) == 2:
-                technique, id = spec
+        for technique, subtechnique, id in sorted(techniques):
+            if subtechnique is None:
                 inner_rows.append("%s %s" % (technique, id))
-            elif len(spec) == 3:
-                technique, subtechnique, id = spec
-                inner_rows.append("%s::%s %s" % (technique, subtechnique, id))
             else:
-                raise RuntimeError("unexpected ATT&CK spec format")
-        ostream["ATTCK"].setdefault(tactic.upper(), inner_rows)
+                inner_rows.append("%s::%s %s" % (technique, subtechnique, id))
+        result["ATTCK"].setdefault(tactic.upper(), inner_rows)
 
 
-def render_mbc(doc, ostream):
+def render_mbc(doc, result):
     """
     example::
-        {'MBC': {'ANTI-BEHAVIORAL ANALYSIS': ['Debugger Detection::Timing/Delay Check '
-                                      'GetTickCount [B0001.032]',
-                                      'Emulator Detection [B0004]',
-                                      'Virtual Machine Detection::Instruction '
-                                      'Testing [B0009.029]',
-                                      'Virtual Machine Detection [B0009]'],
-         'COLLECTION': ['Keylogging::Polling [F0002.002]'],
-         'CRYPTOGRAPHY': ['Encrypt Data::RC4 [C0027.009]',
-                          'Generate Pseudo-random Sequence::RC4 PRGA '
-                          '[C0021.004]']}
+        {'MBC': {'ANTI-BEHAVIORAL ANALYSIS': [
+            'Debugger Detection::Timing/Delay Check '
+            'GetTickCount [B0001.032]',
+            'Emulator Detection [B0004]',
+            'Virtual Machine Detection::Instruction '
+            'Testing [B0009.029]',
+            'Virtual Machine Detection [B0009]'],
+        'COLLECTION': ['Keylogging::Polling [F0002.002]'],
+        'CRYPTOGRAPHY': [
+            'Encrypt Data::RC4 [C0027.009]',
+            'Generate Pseudo-random Sequence::RC4 PRGA [C0021.004]']}
         }
     """
-    ostream["MBC"] = dict()
+    result["MBC"] = {}
     objectives = collections.defaultdict(set)
     for rule in rutils.capability_rules(doc):
-        if not rule["meta"].get("mbc"):
+        if not rule.meta.mbc:
             continue
 
-        mbcs = rule["meta"]["mbc"]
-        if not isinstance(mbcs, list):
-            raise ValueError("invalid rule: MBC mapping is not a list")
-
-        for mbc in mbcs:
-            objective, _, rest = mbc.partition("::")
-            if "::" in rest:
-                behavior, _, rest = rest.partition("::")
-                method, _, id = rest.rpartition(" ")
-                objectives[objective].add((behavior, method, id))
-            else:
-                behavior, _, id = rest.rpartition(" ")
-                objectives[objective].add((behavior, id))
+        for mbc in rule.meta.mbc:
+            objectives[mbc.objective].add((mbc.behavior, mbc.method, mbc.id))
 
     for objective, behaviors in sorted(objectives.items()):
         inner_rows = []
-        for spec in sorted(behaviors):
-            if len(spec) == 2:
-                behavior, id = spec
-                inner_rows.append("%s %s" % (behavior, id))
-            elif len(spec) == 3:
-                behavior, method, id = spec
-                inner_rows.append("%s::%s %s" % (behavior, method, id))
+        for behavior, method, id in sorted(behaviors):
+            if method is None:
+                inner_rows.append("%s [%s]" % (behavior, id))
             else:
-                raise RuntimeError("unexpected MBC spec format")
-        ostream["MBC"].setdefault(objective.upper(), inner_rows)
+                inner_rows.append("%s::%s [%s]" % (behavior, method, id))
+        result["MBC"].setdefault(objective.upper(), inner_rows)
 
 
-def render_dictionary(doc):
-    ostream = dict()
-    render_meta(doc, ostream)
-    render_attack(doc, ostream)
-    render_mbc(doc, ostream)
-    render_capabilities(doc, ostream)
+def render_dictionary(doc) -> Dict[str, Any]:
+    result: Dict[str, Any] = {}
+    render_meta(doc, result)
+    render_attack(doc, result)
+    render_mbc(doc, result)
+    render_capabilities(doc, result)
+    return result
 
-    return ostream
+# ===== CAPA END
 
 
-# ===== CAPA END
-def flare_capa_details(file_path, category=False, on_demand=False):
-    capa_dictionary = False
+# ==== render dictionary helpers
+def flare_capa_details(
+    file_path: str,
+    category: str = False,
+    on_demand: bool = False,
+    disable_progress: bool = True,
+    backend: str = "viv",
+    results: dict = {},
+) -> Dict[str, Any]:
+    # load rules from disk
+    capa_output = {}
     if (
         HAVE_FLARE_CAPA
-        and processing_conf.flare_capa.enabled
-        and processing_conf.flare_capa.get(category, False)
-        and (processing_conf.flare_capa.on_demand is False or on_demand is True)
+        and integrations_conf.flare_capa.enabled
+        and integrations_conf.flare_capa.get(category, False)
+        and not integrations_conf.flare_capa.on_demand
+        or on_demand
     ):
+        # ToDo check if PE file in TYPE
         try:
-            extractor = capa.main.get_extractor(file_path, "auto", backend="smda", disable_progress=True)
-            meta = capa.main.collect_metadata("", file_path, capa.main.RULES_PATH_DEFAULT_STRING, "auto", extractor)
-            capabilities, counts = capa.main.find_capabilities(rules, extractor, disable_progress=True)
-            meta["analysis"].update(counts)
-            doc = capa_convert_capabilities_to_result_document(meta, rules, capabilities)
-            capa_dictionary = render_dictionary(doc)
+            file_path_object = path_object(file_path)
+            # extract features and find capabilities
+            if backend == "viv":
+                extractor = capa.loader.get_extractor(
+                    file_path_object, FORMAT_AUTO, OS_AUTO, capa.loader.BACKEND_VIV, [], False, disable_progress=disable_progress
+                )
+            elif backend == "cape" and results:
+                try:
+                    extractor = capa.features.extractors.cape.extractor.CapeExtractor.from_report(results)
+                except ValidationError as e:
+                    log.debug("CAPA ValidationError %s", e)
+                    return {}
+            else:
+                log.error("CAPA: Missed results probably")
+                return {}
+
+            capabilities = capa.capabilities.common.find_capabilities(rules, extractor, disable_progress=disable_progress)
+            # collect metadata (used only to make rendering more complete)
+            meta = capa.loader.collect_metadata([], file_path_object, FORMAT_AUTO, OS_AUTO, [path_object(rules_path)], extractor, capabilities)
+            meta.analysis.layout = capa.loader.compute_layout(rules, extractor, capabilities.matches)
+            capa_output: Any = False
+
+            # ...as python dictionary, simplified as textable but in dictionary
+            doc = rd.ResultDocument.from_capa(meta, rules, capabilities.matches)
+            capa_output = render_dictionary(doc)
         except MemoryError:
             log.warning("FLARE CAPA -> MemoryError")
-        except UnsupportedRuntimeError:
-            log.error("FLARE CAPA -> UnsupportedRuntimeError")
+        except AttributeError as e:
+            log.exception(e)
+            log.warning("FLARE CAPA -> Use GitHub's version. poetry install")
+        except UnsupportedFormatError:
+            log.error("FLARE CAPA -> UnsupportedFormatError")
+        except EmptyReportError:
+            log.info("FLARE CAPA -> No process data available")
         except Exception as e:
-            log.error(e, exc_info=True)
-    return capa_dictionary
+            log.exception(e)
+
+    return capa_output
+
+
+if __name__ == "__main__":
+    import sys
+    from lib.cuckoo.common.integrations.capa import flare_capa_details, HAVE_FLARE_CAPA
+    details = flare_capa_details(sys.argv[1], "static", on_demand=True)
diff --git a/lib/cuckoo/common/integrations/clamav.py b/lib/cuckoo/common/integrations/clamav.py
new file mode 100644
index 00000000000..ed8065312c3
--- /dev/null
+++ b/lib/cuckoo/common/integrations/clamav.py
@@ -0,0 +1,50 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation, Optiv, Inc. (brad.spengler@optiv.com)
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+import logging
+import os
+from contextlib import suppress
+
+from lib.cuckoo.common.config import Config
+
+log = logging.getLogger(__name__)
+
+HAVE_CLAMAV = False
+CLAMAV_ENABLED = Config("processing").detections.clamav
+
+if CLAMAV_ENABLED:
+    with suppress(ImportError):
+        import pyclamd
+
+        HAVE_CLAMAV = True
+
+
+def get_clamav(file_path):
+    """Get ClamAV signatures matches.
+    Enable in: processing -> [CAPE] -> clamav
+
+    Requires pyclamd module. Additionally if running with apparmor, an exception must be made.
+    apt-get install clamav clamav-daemon clamav-freshclam clamav-unofficial-sigs -y
+    poetry run pip install -U pyclamd
+    systemctl enable clamav-daemon
+    systemctl start clamav-daemon
+    usermod -a -G cape clamav
+    echo "/opt/CAPEv2/storage/** r," | sudo tee -a /etc/apparmor.d/local/usr.sbin.clamd
+    @return: matched ClamAV signatures.
+    """
+    matches = []
+
+    if HAVE_CLAMAV and os.path.getsize(file_path) > 0:
+        try:
+            cd = pyclamd.ClamdUnixSocket()
+            results = cd.allmatchscan(file_path)
+            if results:
+                for entry in results[file_path]:
+                    if entry[0] == "FOUND" and entry[1] not in matches:
+                        matches.append(entry[1])
+        except ConnectionError:
+            log.warning("failed to connect to clamd socket")
+        except Exception as e:
+            log.warning("failed to scan file with clamav %s", e)
+
+    return matches
diff --git a/lib/cuckoo/common/integrations/file_extra_info.py b/lib/cuckoo/common/integrations/file_extra_info.py
new file mode 100644
index 00000000000..4d164c1ecf5
--- /dev/null
+++ b/lib/cuckoo/common/integrations/file_extra_info.py
@@ -0,0 +1,1022 @@
+import concurrent.futures
+import functools
+import hashlib
+import json
+import logging
+import os
+import re
+import shlex
+import shutil
+import signal
+import subprocess
+
+# from contextlib import suppress
+from typing import Any, DefaultDict, List, Optional, Set, Union
+
+import pebble
+
+from lib.cuckoo.common.config import Config
+from lib.cuckoo.common.constants import CUCKOO_ROOT
+from lib.cuckoo.common.integrations.file_extra_info_modules import (
+    ExtractorReturnType,
+    SuccessfulExtractionReturnType,
+    collect_extracted_filenames,
+    extractor_ctx,
+    time_tracker,
+)
+from lib.cuckoo.common.integrations.parse_dotnet import DotNETExecutable
+from lib.cuckoo.common.integrations.parse_java import Java
+from lib.cuckoo.common.integrations.parse_lnk import LnkShortcut
+from lib.cuckoo.common.integrations.parse_office import HAVE_OLETOOLS, Office
+from lib.cuckoo.common.integrations.parse_pdf import PDF
+from lib.cuckoo.common.integrations.parse_pe import HAVE_PEFILE, PortableExecutable
+from lib.cuckoo.common.integrations.parse_rdp import parse_rdp_file
+from lib.cuckoo.common.integrations.parse_wsf import WindowsScriptFile  # EncodedScriptFile
+
+# from lib.cuckoo.common.integrations.parse_elf import ELF
+from lib.cuckoo.common.load_extra_modules import file_extra_info_load_modules
+from lib.cuckoo.common.objects import File
+from lib.cuckoo.common.path_utils import (
+    path_delete,
+    path_exists,
+    path_get_size,
+    path_is_file,
+    path_mkdir,
+    path_read_file,
+    path_write_file,
+)
+from lib.cuckoo.common.utils import get_options, is_text_file
+
+try:
+    from sflock import unpack
+
+    HAVE_SFLOCK = True
+except ImportError:
+    HAVE_SFLOCK = False
+
+# https://github.com/volexity/threat-intel/tree/main/tools/one-extract
+try:
+    HAVE_ONE = True
+    from lib.cuckoo.common.integrations.office_one import OneNoteExtractor, OneNoteExtractorException
+except ImportError:
+    HAVE_ONE = False
+
+DuplicatesType = DefaultDict[str, Set[str]]
+
+cfg = Config()
+processing_conf = Config("processing")
+integration_conf = Config("integrations")
+
+try:
+    from modules.signatures.recon_checkip import dns_indicators
+except ImportError:
+    dns_indicators = ()
+
+HAVE_FLARE_CAPA = False
+# required to not load not enabled dependencies
+if integration_conf.flare_capa.enabled and not integration_conf.flare_capa.on_demand:
+    from lib.cuckoo.common.integrations.capa import HAVE_FLARE_CAPA, flare_capa_details
+
+HAVE_FLOSS = False
+if integration_conf.floss.enabled and not integration_conf.floss.on_demand:
+    from lib.cuckoo.common.integrations.floss import HAVE_FLOSS, Floss
+
+log = logging.getLogger(__name__)
+
+logging.getLogger("Kixtart-Detokenizer").setLevel(logging.CRITICAL)
+
+try:
+    from lib.cuckoo.common.integrations.Kixtart.detokenize import Kixtart
+
+    HAVE_KIXTART = True
+except ImportError:
+    HAVE_KIXTART = False
+
+try:
+    from lib.cuckoo.common.integrations.vbe_decoder import decode_file as vbe_decode_file
+
+    HAVE_VBE_DECODER = True
+except ImportError:
+    HAVE_VBE_DECODER = False
+
+try:
+    from batch_deobfuscator.batch_interpreter import BatchDeobfuscator, handle_bat_file
+
+    batch_deobfuscator = BatchDeobfuscator()
+    HAVE_BAT_DECODER = True
+except ImportError:
+    HAVE_BAT_DECODER = False
+    print("OPTIONAL! Missed dependency: poetry run pip install -U git+https://github.com/DissectMalware/batch_deobfuscator")
+
+unautoit_binary = ""
+innoextact_binary = ""
+if integration_conf.UnAutoIt_extract.binary:
+    unautoit_binary = os.path.join(CUCKOO_ROOT, integration_conf.UnAutoIt_extract.binary)
+if integration_conf.Inno_extract.binary:
+    innoextact_binary = os.path.join(CUCKOO_ROOT, integration_conf.Inno_extract.binary)
+sevenzip_binary = os.path.join(CUCKOO_ROOT, "data/7zz")
+if integration_conf.SevenZip_unpack.binary:
+    tmp_sevenzip_binary = os.path.join(CUCKOO_ROOT, integration_conf.SevenZip_unpack.binary)
+    if path_exists(tmp_sevenzip_binary):
+        sevenzip_binary = tmp_sevenzip_binary
+# fallback
+if not path_exists(sevenzip_binary):
+    sevenzip_binary = "/usr/bin/7z"
+
+if processing_conf.trid.enabled:
+    trid_binary = os.path.join(CUCKOO_ROOT, processing_conf.trid.identifier)
+    definitions = os.path.join(CUCKOO_ROOT, processing_conf.trid.definitions)
+
+extra_info_modules = file_extra_info_load_modules(CUCKOO_ROOT)
+
+HAVE_STRINGS = False
+if processing_conf.strings.enabled and not processing_conf.strings.on_demand:
+    from lib.cuckoo.common.integrations.strings import extract_strings
+
+    HAVE_STRINGS = True
+
+    if processing_conf.strings.dotnet:
+        from lib.cuckoo.common.dotnet_utils import dotnet_user_strings
+
+HAVE_VIRUSTOTAL = False
+if processing_conf.virustotal.enabled and not processing_conf.virustotal.on_demand:
+    from lib.cuckoo.common.integrations.virustotal import vt_lookup
+
+    HAVE_VIRUSTOTAL = True
+
+HAVE_MANDIANT_INTEL = False
+if integration_conf.mandiant_intel.enabled:
+    from lib.cuckoo.common.integrations.mandiant_intel import mandiant_lookup
+
+    HAVE_MANDIANT_INTEL = True
+
+exclude_startswith = ("parti_",)
+excluded_extensions = (".parti",)
+tools_folder = os.path.join(cfg.cuckoo.get("tmppath", "/tmp"), "cape-external")
+
+
+def static_file_info(
+    data_dictionary: dict,
+    file_path: str,
+    task_id: str,
+    package: str,
+    options: str,
+    destination_folder: str,
+    results: dict,
+    duplicated: DuplicatesType,
+):
+    size_mb = int(path_get_size(file_path) / (1024 * 1024))
+    if size_mb > int(processing_conf.CAPE.max_file_size):
+        log.info("static_file_info: skipping file that exceeded max_file_size: %s: %d MB", file_path, size_mb)
+        return
+
+    options_dict = get_options(options)
+    if options_dict.get("static_file_info", "") == "off":
+        return
+
+    if (
+        not HAVE_OLETOOLS
+        and "Zip archive data, at least v2.0" in data_dictionary["type"]
+        and package in {"doc", "ppt", "xls", "pub"}
+    ):
+        log.info("Missed dependencies: pip3 install oletools")
+
+    # ToDo we need type checking as it wont work for most of static jobs
+    if HAVE_PEFILE and ("PE32" in data_dictionary["type"] or "MS-DOS executable" in data_dictionary["type"]):
+        data_dictionary["pe"] = PortableExecutable(file_path).run(task_id)
+
+        if HAVE_FLARE_CAPA:
+            # https://github.com/mandiant/capa/issues/2620
+            capa_details = flare_capa_details(file_path, "static")
+            if capa_details:
+                data_dictionary["flare_capa"] = capa_details
+
+        if HAVE_FLOSS and integration_conf.floss.enabled and "Mono" not in data_dictionary["type"]:
+            floss_strings = Floss(file_path, "static", "pe").run()
+            if floss_strings:
+                data_dictionary["floss"] = floss_strings
+
+        if "Mono" in data_dictionary["type"]:
+            if integration_conf.general.dotnet:
+                data_dictionary["dotnet"] = DotNETExecutable(file_path).run()
+                if processing_conf.strings.dotnet:
+                    dotnet_strings = dotnet_user_strings(file_path)
+                    if dotnet_strings:
+                        data_dictionary.setdefault("dotnet_strings", dotnet_strings)
+
+    elif (HAVE_OLETOOLS and package in {"doc", "ppt", "xls", "pub"} and integration_conf.general.office) or data_dictionary.get("name", "").endswith((".doc", ".ppt", ".xls", ".pub")):
+        # options is dict where we need to get pass get_options
+        data_dictionary["office"] = Office(file_path, task_id, data_dictionary["sha256"], options_dict).run()
+    elif ("PDF" in data_dictionary["type"] or file_path.endswith(".pdf")) and integration_conf.general.pdf:
+        data_dictionary["pdf"] = PDF(file_path).run()
+    elif (
+        package in {"wsf", "hta"} or data_dictionary["type"] == "XML document text" or file_path.endswith(".wsf")
+    ) and integration_conf.general.windows_script:
+        data_dictionary["wsf"] = WindowsScriptFile(file_path).run()
+    # elif package in {"js", "vbs"}:
+    #    data_dictionary["js"] = EncodedScriptFile(file_path).run()
+    elif (package == "lnk" or "MS Windows shortcut" in data_dictionary["type"]) and integration_conf.general.lnk:
+        data_dictionary["lnk"] = LnkShortcut(file_path).run()
+    elif ("Java Jar" in data_dictionary["type"] or file_path.endswith(".jar")) and integration_conf.general.java:
+        if integration_conf.procyon.binary and not path_exists(integration_conf.procyon.binary):
+            log.error("procyon_path specified in processing.conf but the file does not exist")
+        else:
+            data_dictionary["java"] = Java(file_path, integration_conf.procyon.binary).run()
+    elif file_path.endswith(".rdp") or data_dictionary.get("name", {}).endswith(".rdp"):
+        data_dictionary["rdp"] = parse_rdp_file(file_path)
+    # It's possible to fool libmagic into thinking our 2007+ file is a zip.
+    # So until we have static analysis for zip files, we can use oleid to fail us out silently,
+    # yeilding no static analysis results for actual zip files.
+    # elif ("ELF" in data_dictionary["type"] or file_path.endswith(".elf")) and integration_conf.general.elf:
+    #    data_dictionary["elf"] = ELF(file_path).run()
+    #    data_dictionary["keys"] = f.get_keys()
+    # elif HAVE_OLETOOLS and package == "hwp" and integration_conf.general.hwp:
+    #    data_dictionary["hwp"] = HwpDocument(file_path).run()
+
+    data = path_read_file(file_path)
+
+    if not file_path.startswith(exclude_startswith) and not file_path.endswith(excluded_extensions):
+        data_dictionary["data"] = is_text_file(data_dictionary, file_path, processing_conf.CAPE.buffer, data)
+
+        if processing_conf.trid.enabled:
+            data_dictionary["trid"] = trid_info(file_path)
+
+        if processing_conf.die.enabled:
+            data_dictionary["die"] = detect_it_easy_info(file_path)
+
+        if HAVE_FLOSS and processing_conf.floss.enabled and "Mono" not in data_dictionary["type"]:
+            floss_strings = Floss(file_path, package).run()
+            if floss_strings:
+                data_dictionary["floss"] = floss_strings
+
+        if data_dictionary["data"]:
+            # Don't store "strings" for text files, but don't let the web frontend
+            # think that we want to look them up on-demand (i.e. display the
+            # "strings" button linking to an on_demand URL).
+            data_dictionary["strings"] = []
+        elif HAVE_STRINGS:
+            strings = extract_strings(file_path, dedup=True)
+            data_dictionary["strings"] = strings
+        else:
+            # Don't store anything in data_dictionary["strings"] so that the frontend
+            # will display the "strings" button and allow them to be fetched on-demand.
+            pass
+
+        # ToDo we need url support
+        if HAVE_VIRUSTOTAL and processing_conf.virustotal.enabled:
+            vt_details = vt_lookup("file", file_path, results)
+            if vt_details:
+                data_dictionary["virustotal"] = vt_details
+
+        if HAVE_MANDIANT_INTEL and processing_conf.mandiant_intel.enabled:
+            mandiant_intel_details = mandiant_lookup("file", file_path, results)
+            if mandiant_intel_details:
+                data_dictionary["mandiant_intel"] = mandiant_intel_details
+
+    generic_file_extractors(
+        file_path,
+        destination_folder,
+        data_dictionary,
+        options_dict,
+        results,
+        duplicated,
+    )
+
+
+def detect_it_easy_info(file_path: str):
+    if not path_exists(processing_conf.die.binary):
+        log.warning("detect-it-easy binary not found at path %s", processing_conf.die.binary)
+        return []
+
+    try:
+        die_output = subprocess.check_output(
+            [processing_conf.die.binary, "-j", file_path],
+            stderr=subprocess.STDOUT,
+            universal_newlines=True,
+        )
+
+        def get_json() -> dict[str, Any]:
+            """Get the JSON element from the detect it easy output.
+
+            This is required due to non-JSON output in JSON mode.
+            https://github.com/horsicq/Detect-It-Easy/issues/242
+            """
+            matches = re.findall(r"\{.*\}", die_output, re.S)
+            return json.loads(matches[0]) if matches else {}
+
+        def get_matches() -> list[str]:
+            """Get the string values from the detect it easy output."""
+            return [sub["string"] for block in get_json().get("detects", []) for sub in block.get("values", [])]
+
+        return [] if "detects" not in die_output else get_matches()
+    except subprocess.CalledProcessError as err:
+        log.error(
+            "Detect-It-Easy: Failed to execute cmd=`%s`, stdout=`%s`, stderr=`%s`",
+            shlex.join(err.cmd),
+            err.stdout,
+            err.stderr,
+        )
+    except json.decoder.JSONDecodeError as e:
+        log.debug("DIE results are not in json format: %s", str(e))
+    except Exception as e:
+        log.error("DIE error: %s", str(e))
+    return []
+
+
+def trid_info(file_path: dict):
+    try:
+        output = subprocess.check_output(
+            [trid_binary, f"-d:{definitions}", file_path],
+            stderr=subprocess.STDOUT,
+            universal_newlines=True,
+        )
+        return output.split("\n")[6:-1]
+    except subprocess.CalledProcessError:
+        log.warning(
+            "You need to configure your server to make TrID work properly. Run trid by hand on file as example to ensure that it works properly."
+        )
+        log.warning("sudo rm -f /usr/lib/locale/locale-archive && sudo locale-gen --no-archive")
+    except PermissionError:
+        log.error(
+            "You have permission error. FIX IT! sudo chown cape:cape /opt/CAPEv2/data/trid -R && sudo chmod a+x /opt/CAPEv2/data/trid/trid"
+        )
+    except Exception as e:
+        log.error("Trid error: %s", str(e))
+
+
+def _extracted_files_metadata(
+    folder: str,
+    destination_folder: str,
+    files: List[str],
+    results: Optional[dict] = None,
+) -> List[dict]:
+    """
+    args:
+        folder - where files extracted
+        destination_folder - where to move extracted files
+        files - file names relative to 'folder'
+    """
+    metadata = []
+    filelog = os.path.join(os.path.dirname(destination_folder), "files.json")
+    with open(filelog, "a") as f:
+        for file in files:
+            full_path = os.path.join(folder, file)
+            if not path_is_file(full_path):
+                # ToDo walk subfolders
+                continue
+
+            size_mb = int(path_get_size(full_path) / (1024 * 1024))
+            if size_mb > int(processing_conf.CAPE.max_file_size):
+                log.info("_extracted_files_metadata: file exceeded max_file_size: %s: %d MB", full_path, size_mb)
+                continue
+
+            file = File(full_path)
+            file_info, pefile_object = file.get_all()
+            if pefile_object:
+                results.setdefault("pefiles", {}).setdefault(file_info["sha256"], pefile_object)
+
+            if processing_conf.trid.enabled:
+                file_info["trid"] = trid_info(full_path)
+
+            if processing_conf.die.enabled:
+                file_info["die"] = detect_it_easy_info(full_path)
+
+            dest_path = os.path.join(destination_folder, file_info["sha256"])
+            file_info["path"] = dest_path
+            file_info["guest_paths"] = [file_info["name"]]
+            file_info["name"] = os.path.basename(dest_path)
+            if not path_exists(dest_path):
+                shutil.move(full_path, dest_path)
+                print(
+                    json.dumps(
+                        {
+                            "path": os.path.join("files", file_info["sha256"]),
+                            "filepath": file_info["name"],
+                            "pids": [],
+                            "ppids": [],
+                            "metadata": "",
+                            "category": "files",
+                        },
+                        ensure_ascii=False,
+                    ),
+                    file=f,
+                )
+            file_info["data"] = is_text_file(file_info, destination_folder, processing_conf.CAPE.buffer)
+            metadata.append(file_info)
+
+    return metadata
+
+
+def pass_signal(proc, signum, frame):
+    proc.send_signal(signum)
+
+
+def run_tool(*args, **kwargs) -> Union[bytes, str]:
+    """Start a subprocess to run the given tool. Make sure to pass a SIGTERM signal to
+    that process if it is received.
+    """
+    kwargs["stdout"] = subprocess.PIPE
+    old_handler = None
+    try:
+        proc = subprocess.Popen(*args, **kwargs)
+        old_handler = signal.signal(signal.SIGTERM, functools.partial(pass_signal, proc))
+        (stdout, stderr) = proc.communicate()
+        return stdout
+    finally:
+        if old_handler:
+            signal.signal(signal.SIGTERM, old_handler)
+
+
+def generic_file_extractors(
+    file: str,
+    destination_folder: str,
+    data_dictionary: dict,
+    options: dict,
+    results: dict,
+    duplicated: DuplicatesType,
+    tests: bool = False,
+):
+    """
+    file - path to binary
+    destination_folder - where to move extracted files
+    filetype - magic string
+    data_dictionary - where to add data
+    options - initial task options, might contain password
+
+    Run all extra extractors/unpackers/extra scripts here, each extractor should check file header/type/identification:
+    """
+
+    if not path_exists(destination_folder):
+        path_mkdir(destination_folder)
+
+    # Arguments that all extractors need.
+    args = (file,)
+    # Arguments that some extractors need. They will always get passed, so the
+    # extractor functions need to accept `**_` and just discard them.
+    kwargs = {
+        "filetype": data_dictionary["type"],
+        "data_dictionary": data_dictionary,
+        "options": options,
+        "tests": tests,
+    }
+
+    file_info_funcs = [
+        msi_extract,
+        kixtart_extract,
+        vbe_extract,
+        batch_extract,
+        UnAutoIt_extract,
+        UPX_unpack,
+        RarSFX_extract,
+        Inno_extract,
+        SevenZip_unpack,
+        de4dot_deobfuscate,
+        eziriz_deobfuscate,
+        office_one,
+        msix_extract,
+        UnGPG_extract,
+    ]
+
+    futures = {}
+    with pebble.ProcessPool(max_workers=int(integration_conf.general.max_workers)) as pool:
+        # Prefer custom modules over the built-in ones, since only 1 is allowed
+        # to be the extracted_files_tool.
+        if extra_info_modules:
+            for module in extra_info_modules:
+                func_timeout = int(getattr(module, "timeout", 60))
+                funcname = module.__name__.split(".")[-1]
+                futures[funcname] = pool.schedule(module.extract_details, args=args, kwargs=kwargs, timeout=func_timeout)
+
+        for extraction_func in file_info_funcs:
+            funcname = extraction_func.__name__.split(".")[-1]
+            if (
+                not getattr(integration_conf, funcname, {}).get("enabled", False)
+                and getattr(extraction_func, "enabled", False) is False
+            ):
+                continue
+
+            func_timeout = int(getattr(integration_conf, funcname, {}).get("timeout", 60))
+            futures[funcname] = pool.schedule(extraction_func, args=args, kwargs=kwargs, timeout=func_timeout)
+    pool.join()
+
+    for funcname, future in futures.items():
+        func_result = None
+        try:
+            func_result = future.result()
+        except concurrent.futures.TimeoutError as err:
+            timeout = err.args[0]
+            log.debug("Function: %s took longer than %d seconds", funcname, timeout)
+            continue
+        except TypeError as err:
+            log.debug("TypeError on getting results: %s", str(err))
+        except Exception as err:
+            log.exception("file_extra_info: %s", err)
+            continue
+        if not func_result:
+            continue
+        extraction_result = func_result.get("result")
+        if extraction_result is None:
+            continue
+        tempdir = extraction_result.get("tempdir")
+        if extraction_result.get("data_dictionary"):
+            data_dictionary.update(extraction_result["data_dictionary"])
+            extraction_result.pop("data_dictionary")
+        """
+        if extraction_result.get("parent_sample"):
+            results.setdefault("info", {}).setdefault("parent_sample", {})
+            results["info"]["parent_sample"] = extraction_result["parent_sample"]
+            extraction_result.pop("parent_sample")
+        """
+        try:
+            extracted_files = extraction_result.get("extracted_files", [])
+            if not extracted_files:
+                continue
+            old_tool_name = data_dictionary.get("extracted_files_tool")
+            new_tool_name = extraction_result["tool_name"]
+            if old_tool_name:
+                log.debug("Files already extracted from %s by %s. Also extracted with %s", file, old_tool_name, new_tool_name)
+                continue
+            metadata = _extracted_files_metadata(tempdir, destination_folder, files=extracted_files, results=results)
+            data_dictionary.setdefault("selfextract", {})
+            data_dictionary["selfextract"][new_tool_name] = {
+                "extracted_files": metadata,
+                "extracted_files_time": func_result["took_seconds"],
+                "password": extraction_result.get("password", ""),
+            }
+        finally:
+            if tempdir:
+                # ToDo doesn't work
+                shutil.rmtree(tempdir, ignore_errors=True)
+
+
+def _generic_post_extraction_process(file: str, tool_name: str, decoded: str) -> SuccessfulExtractionReturnType:
+    with extractor_ctx(file, tool_name, folder=tools_folder) as ctx:
+        basename = f"{os.path.basename(file)}_decoded"
+        decoded_file_path = os.path.join(ctx["tempdir"], basename)
+        _ = path_write_file(decoded_file_path, decoded, mode="text")
+        ctx["extracted_files"] = [basename]
+
+    return ctx
+
+
+@time_tracker
+def batch_extract(file: str, **_) -> ExtractorReturnType:
+    # https://github.com/DissectMalware/batch_deobfuscator
+    # https://www.fireeye.com/content/dam/fireeye-www/blog/pdfs/dosfuscation-report.pdf
+
+    if not HAVE_BAT_DECODER or not file.endswith(".bat"):
+        return
+
+    decoded = handle_bat_file(batch_deobfuscator, file)
+    if not decoded:
+        return
+
+    # compare hashes to ensure that they are not the same
+    data = path_read_file(file)
+    original_sha256 = hashlib.sha256(data).hexdigest()
+    decoded_sha256 = hashlib.sha256(decoded).hexdigest()
+
+    if original_sha256 == decoded_sha256:
+        return
+
+    return _generic_post_extraction_process(file, "Batch", decoded)
+
+
+@time_tracker
+def vbe_extract(file: str, **_) -> ExtractorReturnType:
+    if not HAVE_VBE_DECODER:
+        log.debug("Missed VBE decoder")
+        return
+
+    decoded = False
+    data = path_read_file(file)
+    if b"#@~^" not in data[:100]:
+        return
+
+    try:
+        decoded = vbe_decode_file(file, data)
+    except Exception as e:
+        log.exception(e)
+
+    if not decoded:
+        log.debug("VBE content wasn't decoded")
+        return
+
+    return _generic_post_extraction_process(file, "Vbe", decoded)
+
+
+@time_tracker
+def eziriz_deobfuscate(file: str, *, data_dictionary: dict, **_) -> ExtractorReturnType:
+    if file.endswith("_Slayed"):
+        return
+
+    if all(".NET Reactor" not in string for string in data_dictionary.get("die", [])):
+        return
+
+    binary = shlex.split(integration_conf.eziriz_deobfuscate.binary.strip())[0]
+    binary = os.path.join(CUCKOO_ROOT, binary)
+    if not binary:
+        log.warning("eziriz_deobfuscate.binary is not defined in the configuration.")
+        return
+
+    if not path_exists(binary):
+        log.error(
+            "Missing dependency: Download from https://github.com/otavepto/NETReactorSlayer/releases and place under %s.",
+            binary,
+        )
+        return
+
+    if not os.access(binary, os.X_OK):
+        log.error("You need to add execution permissions: chmod a+x data/NETReactorSlayer.CLI")
+        return
+
+    with extractor_ctx(file, "eziriz", prefix="eziriz_", folder=tools_folder) as ctx:
+        tempdir = ctx["tempdir"]
+        dest_path = os.path.join(tempdir, os.path.basename(file))
+        _ = run_tool(
+            [
+                os.path.join(CUCKOO_ROOT, binary),
+                *shlex.split(integration_conf.eziriz_deobfuscate.extra_args.strip()),
+                file,
+            ],
+            universal_newlines=True,
+            stderr=subprocess.PIPE,
+        )
+        deobf_file = file + "_Slayed"
+        if path_exists(deobf_file):
+            shutil.move(deobf_file, dest_path)
+            ctx["extracted_files"] = collect_extracted_filenames(tempdir)
+
+    return ctx
+
+
+@time_tracker
+def de4dot_deobfuscate(file: str, *, filetype: str, **_) -> ExtractorReturnType:
+    if "Mono" not in filetype:
+        return
+
+    binary = shlex.split(integration_conf.de4dot_deobfuscate.binary.strip())[0]
+    if not binary:
+        log.warning("de4dot_deobfuscate.binary is not defined in the configuration.")
+        return
+    if not path_exists(binary):
+        log.error("Missed dependency: sudo apt install de4dot")
+        return
+
+    with extractor_ctx(file, "de4dot", prefix="de4dot_", folder=tools_folder) as ctx:
+        tempdir = ctx["tempdir"]
+        dest_path = os.path.join(tempdir, os.path.basename(file))
+        _ = run_tool(
+            [
+                binary,
+                *shlex.split(integration_conf.de4dot_deobfuscate.extra_args.strip()),
+                "-f",
+                file,
+                "-o",
+                dest_path,
+            ],
+            universal_newlines=True,
+            stderr=subprocess.PIPE,
+        )
+        ctx["extracted_files"] = collect_extracted_filenames(tempdir)
+
+    return ctx
+
+
+@time_tracker
+def msi_extract(file: str, *, filetype: str, **kwargs) -> ExtractorReturnType:
+    """Work on MSI Installers"""
+
+    if "MSI Installer" not in filetype:
+        return
+
+    extracted_files = []
+    # sudo apt install msitools
+    with extractor_ctx(file, "MsiExtract", prefix="msidump_", folder=tools_folder) as ctx:
+        tempdir = ctx["tempdir"]
+        output = False
+        if not kwargs.get("tests"):
+            # msiextract in different way that 7z, we need to add subfolder support
+            output = run_tool(
+                [integration_conf.msi_extract.binary, file, "--directory", tempdir],
+                universal_newlines=True,
+                stderr=subprocess.PIPE,
+            )
+        if output:
+            extracted_files = [
+                extracted_file
+                for extracted_file in list(filter(None, output.split("\n")))
+                if path_is_file(os.path.join(tempdir, extracted_file))
+            ]
+        else:
+            output = run_tool(
+                [sevenzip_binary, "e", f"-o{tempdir}", "-y", file],
+                universal_newlines=True,
+                stderr=subprocess.PIPE,
+            )
+            valid_msi_filetypes = ["PE32", "text", "Microsoft Cabinet archive"]
+            for root, _, filenames in os.walk(tempdir):
+                for filename in filenames:
+                    path = os.path.join(root, filename)
+                    if any([x in File(path).get_type() for x in valid_msi_filetypes]):
+                        os.rename(path, os.path.join(root, filename.split(".")[-1].strip("'").strip("!")))
+                    else:
+                        path_delete(path)
+            extracted_files = collect_extracted_filenames(tempdir)
+
+        ctx["extracted_files"] = extracted_files
+
+    return ctx
+
+
+@time_tracker
+def Inno_extract(file: str, *, data_dictionary: dict, **_) -> ExtractorReturnType:
+    """Work on Inno Installers"""
+
+    if all("Inno Setup" not in string for string in data_dictionary.get("die", [])):
+        return
+
+    if not path_exists(innoextact_binary):
+        log.error("Missed dependency: Get a release from https://github.com/gdesmar/innoextract")
+        return
+
+    password = ""
+    with extractor_ctx(file, "InnoExtract", prefix="innoextract_", folder=tools_folder) as ctx:
+        tempdir = ctx["tempdir"]
+        output = run_tool(
+            [innoextact_binary, file, "--output-dir", tempdir],
+            universal_newlines=True,
+            stderr=subprocess.PIPE,
+        )
+        if (
+            "Warning: Setup contains encrypted files, use the --password option to extract them" in output
+            or "- encrypted" in output
+        ):
+            output = run_tool(
+                [innoextact_binary, "--crack", file],
+                universal_newlines=True,
+                stderr=subprocess.PIPE,
+            )
+            if "Password found: " in output:
+                password = output.split("\n")[0].split(": ")[1]
+            if password:
+                _ = run_tool(
+                    [innoextact_binary, file, "--output-dir", tempdir, "--password", password],
+                    universal_newlines=True,
+                    stderr=subprocess.PIPE,
+                )
+                ctx["password"] = password
+        ctx["extracted_files"] = collect_extracted_filenames(tempdir)
+
+    return ctx
+
+
+@time_tracker
+def kixtart_extract(file: str, **_) -> ExtractorReturnType:
+    """
+    https://github.com/jhumble/Kixtart-Detokenizer/blob/main/detokenize.py
+    """
+
+    if not HAVE_KIXTART:
+        return
+
+    data = path_read_file(file)
+
+    if not data.startswith(b"\x1a\xaf\x06\x00\x00\x10"):
+        return
+
+    with extractor_ctx(file, "Kixtart", prefix="kixtart_", folder=tools_folder) as ctx:
+        tempdir = ctx["tempdir"]
+        kix = Kixtart(file, dump_dir=tempdir)
+        kix.decrypt()
+        kix.dump()
+        ctx["extracted_files"] = collect_extracted_filenames(tempdir)
+
+    return ctx
+
+
+UN_AUTOIT_NOTIF = False
+
+
+@time_tracker
+def UnAutoIt_extract(file: str, *, data_dictionary: dict, **_) -> ExtractorReturnType:
+    global UN_AUTOIT_NOTIF
+    merged_lists = data_dictionary.get("yara", []) + data_dictionary.get("cape_yara", [])
+    if all(not block.get("name", "").lower().startswith("autoit") for block in merged_lists):
+        return
+
+    # this is useless to notify in each iteration
+    if not UN_AUTOIT_NOTIF and not path_exists(unautoit_binary):
+        # log.warning(f"Missing UnAutoIt binary: {unautoit_binary}. Download from - https://github.com/x0r19x91/UnAutoIt")
+        UN_AUTOIT_NOTIF = True
+        return
+
+    with extractor_ctx(file, "UnAutoIt", prefix="unautoit_", folder=tools_folder) as ctx:
+        tempdir = ctx["tempdir"]
+        output = run_tool(
+            [unautoit_binary, "extract-all", "--output-dir", tempdir, file],
+            universal_newlines=True,
+            stderr=subprocess.PIPE,
+        )
+        if output:
+            ctx["extracted_files"] = collect_extracted_filenames(tempdir)
+
+    return ctx
+
+
+@time_tracker
+def UPX_unpack(file: str, *, filetype: str, data_dictionary: dict, **_) -> ExtractorReturnType:
+    if (
+        "UPX compressed" not in filetype
+        and all("UPX" not in string for string in data_dictionary.get("die", []))
+        and all(block.get("name") != "UPX" for block in data_dictionary.get("yara", {}))
+    ):
+        return
+
+    with extractor_ctx(file, "UnUPX", prefix="unupx_", folder=tools_folder) as ctx:
+        basename = f"{os.path.basename(file)}_unpacked"
+        dest_path = os.path.join(ctx["tempdir"], basename)
+        output = run_tool(
+            [
+                "upx",
+                "-d",
+                file,
+                f"-o{dest_path}",
+            ],
+            universal_newlines=True,
+            stderr=subprocess.PIPE,
+        )
+        if output and "Unpacked 1 file." in output:
+            ctx["extracted_files"] = [basename]
+
+    return ctx
+
+
+# ToDo do not ask for password + test with pass
+@time_tracker
+def SevenZip_unpack(file: str, *, filetype: str, data_dictionary: dict, options: dict, **_) -> ExtractorReturnType:
+    tool = False
+
+    if not path_exists(sevenzip_binary):
+        logging.error("Missed 7zip executable. Run: poetry run python utils/community.py -waf")
+        return
+
+    # Check for msix file since it's a zip
+    file_data = File(file).file_data
+    if not file_data:
+        log.debug("sevenzip: No file data")
+        return
+
+    if (
+        ".msix" in data_dictionary.get("name", "")
+        or all([pattern in file_data for pattern in (b"Registry.dat", b"AppxManifest.xml")])
+        or any("MSIX Windows app" in string for string in data_dictionary.get("trid", []))
+    ):
+        return
+
+    if all([pattern in file_data for pattern in (b"AndroidManifest.xml", b"classes.dex")]):
+        return
+
+    # Only for real 7zip, breaks others
+    password = options.get("password", "infected")
+    if any(
+        "7-zip Installer data" in string for string in data_dictionary.get("die", [])
+    ) or "Zip archive data" in data_dictionary.get("type", ""):
+        tool = "SevenZip"
+        prefix = "SevenZip_"
+        password = options.get("password", "infected")
+        password = f"-p{password}"
+
+    elif any(
+        "Microsoft Cabinet" in string for string in data_dictionary.get("die", [])
+    ) or "Microsoft Cabinet" in data_dictionary.get("type", ""):
+        tool = "UnCab"
+        prefix = "cab_"
+        password = ""
+
+    elif "Nullsoft Installer self-extracting archive" in filetype or any(
+        "Nullsoft Scriptable Install System" in string for string in data_dictionary.get("die", [])
+    ):
+        tool = "UnNSIS"
+        prefix = "unnsis_"
+        password = ""
+        """
+        elif (
+            any("SFX: WinRAR" in string for string in data_dictionary.get("die", [{}]))
+            or any("RAR Self Extracting archive" in string for string in data_dictionary.get("trid", []]))
+            or "RAR self-extracting archive" in data_dictionary.get("type", "")
+        ):
+            tool = "UnRarSFX"
+            prefix = "unrar_"
+        """
+    else:
+        return
+
+    with extractor_ctx(file, tool, prefix=prefix, folder=tools_folder) as ctx:
+        tempdir = ctx["tempdir"]
+        HAVE_SFLOCK = False
+        if HAVE_SFLOCK and tool not in ("UnNSIS",):
+            unpacked = unpack(file.encode(), password=password)
+            for child in unpacked.children:
+                _ = path_write_file(os.path.join(tempdir, child.filename.decode()), child.contents)
+        else:
+            sevenzip_args = [sevenzip_binary, "e", file, f"-o{tempdir}", "-y"]
+            # Need this, otherwie NSIS fails
+            if password:
+                sevenzip_args.append(password)
+            _ = run_tool(sevenzip_args, universal_newlines=True, stderr=subprocess.PIPE)
+        ctx["extracted_files"] = collect_extracted_filenames(tempdir)
+
+    return ctx
+
+
+# ToDo move to sflock
+@time_tracker
+def RarSFX_extract(file, *, data_dictionary, options: dict, **_) -> ExtractorReturnType:
+    if (
+        all("SFX: WinRAR" not in string for string in data_dictionary.get("die", []))
+        and all("RAR Self Extracting archive" not in string for string in data_dictionary.get("trid", []))
+        and "RAR self-extracting archive" not in data_dictionary.get("type", "")
+    ):
+        return
+
+    if not path_exists("/usr/bin/unrar"):
+        log.warning("Missed UnRar binary: /usr/bin/unrar. sudo apt install unrar")
+        return
+
+    with extractor_ctx(file, "UnRarSFX", prefix="unrar_", folder=tools_folder) as ctx:
+        tempdir = ctx["tempdir"]
+        password = options.get("password", "infected")
+        output = run_tool(
+            ["/usr/bin/unrar", "e", "-kb", f"-p{password}", file, tempdir],
+            universal_newlines=True,
+            stderr=subprocess.PIPE,
+        )
+        if output:
+            ctx["extracted_files"] = collect_extracted_filenames(tempdir)
+
+    return ctx
+
+
+@time_tracker
+def office_one(file, **_) -> ExtractorReturnType:
+    if not HAVE_ONE or open(file, "rb").read(16) not in (
+        b"\xE4\x52\x5C\x7B\x8C\xD8\xA7\x4D\xAE\xB1\x53\x78\xD0\x29\x96\xD3",
+        b"\xA1\x2F\xFF\x43\xD9\xEF\x76\x4C\x9E\xE2\x10\xEA\x57\x22\x76\x5F",
+    ):
+        return
+
+    with extractor_ctx(file, "OfficeOne", prefix="office_one", folder=tools_folder) as ctx:
+        tempdir = ctx["tempdir"]
+        try:
+            document = OneNoteExtractor(path_read_file(file))
+            for index, file_data in enumerate(document.extract_files()):
+                target_path = os.path.join(tempdir, f"_{index}.extracted")
+                _ = path_write_file(target_path, file_data)
+        except OneNoteExtractorException:
+            log.error("Can't process One file: %s", file)
+        ctx["extracted_files"] = collect_extracted_filenames(tempdir)
+
+    return ctx
+
+
+@time_tracker
+def msix_extract(file: str, *, data_dictionary: dict, **_) -> ExtractorReturnType:
+    """Work on MSIX Package"""
+
+    if not all([pattern in File(file).file_data for pattern in (b"Registry.dat", b"AppxManifest.xml")]) and not any(
+        "MSIX Windows app" in string for string in data_dictionary.get("trid", [])
+    ):
+        return
+
+    with extractor_ctx(file, "MSIX", prefix="msixdump_", folder=tools_folder) as ctx:
+        tempdir = ctx["tempdir"]
+        _ = run_tool(
+            ["unzip", file, "-d", tempdir],
+            universal_newlines=True,
+            stderr=subprocess.PIPE,
+        )
+        ctx["extracted_files"] = collect_extracted_filenames(tempdir)
+
+    return ctx
+
+
+@time_tracker
+def UnGPG_extract(file: str, filetype: str, data_dictionary: dict, options: dict, **_) -> ExtractorReturnType:
+
+    if "PGP symmetric key encrypted data" not in data_dictionary.get("type", ""):
+        return
+
+    password = options.get("password", "infected")
+    filename = os.path.basename(file)
+    with extractor_ctx(file, "UnGPG", prefix="unpgp", folder=tools_folder) as ctx:
+        tempdir = ctx["tempdir"]
+        output = run_tool(
+            ["gpg", "--passphrase", password, "--batch", "--quiet", "--yes", "-o", os.path.join(tempdir, filename), "-d", file],
+            universal_newlines=True,
+            stderr=subprocess.PIPE,
+        )
+        if output:
+            ctx["extracted_files"] = collect_extracted_filenames(tempdir)
+
+    return ctx
diff --git a/lib/cuckoo/common/integrations/file_extra_info_modules/__init__.py b/lib/cuckoo/common/integrations/file_extra_info_modules/__init__.py
new file mode 100644
index 00000000000..fc22fcdf8f4
--- /dev/null
+++ b/lib/cuckoo/common/integrations/file_extra_info_modules/__init__.py
@@ -0,0 +1,72 @@
+import contextlib
+import functools
+import logging
+import os
+import shlex
+import subprocess
+import tempfile
+import timeit
+from typing import List, Optional, TypedDict
+
+from lib.cuckoo.common.path_utils import path_mkdir, path_object
+
+log = logging.getLogger(__name__)
+
+
+class SuccessfulExtractionReturnType(TypedDict, total=False):
+    tempdir: str
+    extracted_files: List[str]
+    tool_name: str
+
+
+ExtractorReturnType = Optional[SuccessfulExtractionReturnType]
+
+
+def collect_extracted_filenames(tempdir):
+    """Gather a list of files relative to the given directory."""
+    extracted_files = []
+    for root, _, files in os.walk(tempdir):
+        for file in files:
+            path = path_object(os.path.join(root, file))
+            if path.is_file():
+                extracted_files.append(str(path.relative_to(tempdir)))
+    return extracted_files
+
+
+def time_tracker(func):
+    @functools.wraps(func)
+    def wrapped(*args, **kwargs):
+        time_start = timeit.default_timer()
+        result = func(*args, **kwargs)
+        return {
+            "result": result,
+            "took_seconds": timeit.default_timer() - time_start,
+        }
+
+    return wrapped
+
+
+@contextlib.contextmanager
+def extractor_ctx(filepath, tool_name, prefix=None, folder="/tmp/cape-external"):
+    path_mkdir(folder, exist_ok=True)
+
+    tempdir = tempfile.mkdtemp(prefix=prefix, dir=folder)
+    retval = {"tempdir": tempdir}
+    try:
+        yield retval
+    except subprocess.CalledProcessError as err:
+        log.error(
+            "%s: Failed to extract files from %s: cmd=`%s`, stdout=`%s`, stderr=`%s`",
+            tool_name,
+            filepath,
+            shlex.join(err.cmd),
+            err.stdout,
+            err.stderr,
+        )
+    except Exception:
+        log.exception("Exception was raised while attempting to use %s on %s", tool_name, filepath)
+    else:
+        if retval.get("extracted_files", []):
+            retval["tool_name"] = tool_name
+        else:
+            retval.pop("extracted_files", None)
diff --git a/lib/cuckoo/common/integrations/file_extra_info_modules/overlay.py b/lib/cuckoo/common/integrations/file_extra_info_modules/overlay.py
new file mode 100644
index 00000000000..31bcf4136fc
--- /dev/null
+++ b/lib/cuckoo/common/integrations/file_extra_info_modules/overlay.py
@@ -0,0 +1,40 @@
+import logging
+import os
+
+from lib.cuckoo.common.integrations.file_extra_info_modules import (
+    ExtractorReturnType,
+    collect_extracted_filenames,
+    extractor_ctx,
+    time_tracker,
+)
+from lib.cuckoo.common.path_utils import path_write_file
+
+# from base64 import b64encode
+
+
+log = logging.getLogger(__name__)
+
+
+@time_tracker
+def extract_details(file, *, data_dictionary, **_) -> ExtractorReturnType:
+    if not data_dictionary.get("pe", {}).get("overlay"):
+        return {}
+
+    data = ""
+    overlay_size = int(data_dictionary["pe"]["overlay"]["size"], 16)
+    # Extract out the overlay data
+    try:
+        with open(file, "rb") as f:
+            f.seek(-overlay_size, os.SEEK_END)
+            data = f.read()
+        # data_dictionary["pe"]["overlay"]["data"] = b64encode(data[: min(overlay_size, 4096)])
+    except Exception as e:
+        log.error(e)
+
+    with extractor_ctx(file, "overlay", prefix="overlay") as ctx:
+        if data:
+            tempdir = ctx["tempdir"]
+            # You might need to change this 2 lines. See other examples in `file_extra_info.py`
+            _ = path_write_file(os.path.join(tempdir, "overlay"), data)
+            ctx["extracted_files"] = collect_extracted_filenames(tempdir)
+    return ctx
diff --git a/lib/cuckoo/common/integrations/file_extra_info_modules/pyinstaller.py b/lib/cuckoo/common/integrations/file_extra_info_modules/pyinstaller.py
new file mode 100644
index 00000000000..c68cf054322
--- /dev/null
+++ b/lib/cuckoo/common/integrations/file_extra_info_modules/pyinstaller.py
@@ -0,0 +1,32 @@
+import logging
+
+from lib.cuckoo.common.integrations.file_extra_info_modules import (
+    ExtractorReturnType,
+    collect_extracted_filenames,
+    extractor_ctx,
+    time_tracker,
+)
+from lib.cuckoo.common.integrations.pyinstxtractor import PyInstArchive
+
+log = logging.getLogger(__name__)
+
+
+@time_tracker
+def extract_details(file, *, data_dictionary, **_) -> ExtractorReturnType:
+    if all("PyInstaller" not in string for string in data_dictionary.get("die", [])):
+        return {}
+
+    with extractor_ctx(file, "PyInstaller", prefix="PyInstaller") as ctx:
+        tempdir = ctx["tempdir"]
+        arch = PyInstArchive({"file": file, "destination_folder": tempdir, "entry_points": True})
+        if arch.open() and arch.checkFile() and arch.getCArchiveInfo():
+            arch.parseTOC()
+            arch.extractFiles()
+            arch.close()
+            log.debug(
+                "[+] Successfully extracted pyinstaller archive: %s\nYou can now use a python decompiler on the pyc files within the extracted directory",
+            )
+        arch.close()
+
+        ctx["extracted_files"] = collect_extracted_filenames(tempdir)
+    return ctx
diff --git a/lib/cuckoo/common/integrations/file_extra_info_modules/readme.md b/lib/cuckoo/common/integrations/file_extra_info_modules/readme.md
new file mode 100644
index 00000000000..056ea4dc3da
--- /dev/null
+++ b/lib/cuckoo/common/integrations/file_extra_info_modules/readme.md
@@ -0,0 +1,37 @@
+### This allows us to put custom modules without editing configs and easier to maintain private forks.
+
+* `extract_details` is the entry point called by `file_extra_info.py`
+* Here is a skeleton example of module:
+
+```
+import os
+import sys
+import logging
+
+from lib.cuckoo.common.path_utils import path_write_file
+from lib.cuckoo.common.integrations.file_extra_info_modules import time_tracker, ExtractorReturnType, extractor_ctx, collect_extracted_filenames
+
+
+log = logging.getLogger(__name__)
+
+# Enable/disable
+enabled = True
+# Module timeout
+timeout = 100
+
+@time_tracker
+def extract_details(file, *, data_dictionary, **_) -> ExtractorReturnType:
+
+    <your code goes here>
+
+    with extractor_ctx(file, "NAME", prefix="PREFIX_NAME") as ctx:
+        if extracted:
+            tempdir = ctx["tempdir"]
+            # You might need to change this 2 lines. See other examples in `file_extra_info.py`
+            for i, block in enumerate(extracted):
+                _ = path_write_file(os.path.join(tempdir, str(i)), block[1])
+                ctx["extracted_files"] = collect_extracted_filenames(tempdir)
+            ctx["data_dictionary"] = data_dictionary
+    return ctx
+
+```
diff --git a/lib/cuckoo/common/integrations/floss.py b/lib/cuckoo/common/integrations/floss.py
new file mode 100644
index 00000000000..7fa43aa2274
--- /dev/null
+++ b/lib/cuckoo/common/integrations/floss.py
@@ -0,0 +1,132 @@
+import contextlib
+import logging
+import mmap
+import os.path
+from pathlib import Path
+
+from lib.cuckoo.common.config import Config
+from lib.cuckoo.common.constants import CUCKOO_ROOT
+from lib.cuckoo.common.path_utils import path_exists
+
+integrations_conf = Config("integrations")
+
+HAVE_FLOSS = False
+try:
+    import floss.main as fm
+    from floss.strings import extract_ascii_unicode_strings
+
+    HAVE_FLOSS = True
+except ImportError:
+    print("Missed dependency flare-floss: poetry run pip install -U flare-floss")
+
+log = logging.getLogger(__name__)
+
+
+class Floss:
+    """Extract strings from sample using FLOSS."""
+
+    def __init__(self, filepath: str, package: str, on_demand: bool = False):
+        self.file_path = filepath
+        self.package = package
+        self.on_demand = on_demand
+
+    def run(self):
+        """Run FLOSS to extract strings from sample.
+        @return: dictionary of floss strings.
+        """
+
+        if not HAVE_FLOSS:
+            return
+
+        if integrations_conf.floss.on_demand and not self.on_demand:
+            return
+
+        results = {}
+
+        if not path_exists(self.file_path):
+            log.error("Sample file doesn't exist: %s", self.file_path)
+            return
+
+        try:
+            if not fm.is_supported_file_type(Path(self.file_path)):
+                if self.package == "shellcode":
+                    fileformat = "sc32"
+                elif self.package == "shellcode_x64":
+                    fileformat = "sc64"
+                else:
+                    return results
+            else:
+                fileformat = "pe"
+
+            min_length = integrations_conf.floss.min_length
+            fm.set_log_config(fm.DebugLevel.NONE, True)
+            tmpres = {}
+            results = {}
+
+            if integrations_conf.floss.static_strings:
+                with open(self.file_path, "rb") as f:
+                    with contextlib.closing(mmap.mmap(f.fileno(), 0, access=mmap.ACCESS_READ)) as buf:
+                        tmpres["static_strings"] = list(extract_ascii_unicode_strings(buf, min_length))
+
+            sigspath = fm.get_signatures(Path(os.path.join(CUCKOO_ROOT, integrations_conf.floss.sigs_path)))
+            vw = fm.load_vw(Path(self.file_path), fileformat, sigspath, False)
+
+            try:
+                selected_functions = fm.select_functions(vw, None)
+            except ValueError as e:
+                # failed to find functions in workspace
+                print(e.args[0])
+                return
+
+            decoding_function_features, library_functions = fm.find_decoding_function_features(
+                vw,
+                selected_functions,
+                True,
+            )
+
+            if integrations_conf.floss.stack_strings:
+                selected_functions = fm.get_functions_without_tightloops(decoding_function_features)
+                tmpres["stack_strings"] = fm.extract_stackstrings(
+                    vw,
+                    selected_functions,
+                    min_length,
+                    verbosity=False,
+                    disable_progress=True,
+                )
+
+            if integrations_conf.floss.tight_strings:
+                tightloop_functions = fm.get_functions_with_tightloops(decoding_function_features)
+                tmpres["tight_strings"] = fm.extract_tightstrings(
+                    vw,
+                    tightloop_functions,
+                    min_length=min_length,
+                    verbosity=False,
+                    disable_progress=True,
+                )
+
+            if integrations_conf.floss.decoded_strings:
+                top_functions = fm.get_top_functions(decoding_function_features, 20)
+                fvas_to_emulate = fm.get_function_fvas(top_functions)
+                fvas_tight_functions = fm.get_tight_function_fvas(decoding_function_features)
+                fvas_to_emulate = fm.append_unique(fvas_to_emulate, fvas_tight_functions)
+
+                tmpres["decoded_strings"] = fm.decode_strings(
+                    vw,
+                    fvas_to_emulate,
+                    min_length,
+                    verbosity=False,
+                    disable_progress=True,
+                )
+
+            for stype in tmpres.keys():
+                if tmpres[stype]:
+                    results[stype] = []
+                for sval in tmpres[stype]:
+                    results[stype].append(sval.string)
+
+        except Exception as e:
+            log.exception(e)
+
+        fm.set_log_config(fm.DebugLevel.DEFAULT, False)
+
+        return results
diff --git a/lib/cuckoo/common/integrations/mandiant_intel.py b/lib/cuckoo/common/integrations/mandiant_intel.py
new file mode 100644
index 00000000000..53f4fca393f
--- /dev/null
+++ b/lib/cuckoo/common/integrations/mandiant_intel.py
@@ -0,0 +1,154 @@
+import base64
+import json
+import logging
+
+import requests
+from urllib3.exceptions import InsecureRequestWarning
+
+from lib.cuckoo.common.config import Config
+from lib.cuckoo.common.objects import File
+from lib.cuckoo.common.path_utils import path_exists
+from lib.cuckoo.common.utils import add_family_detection
+
+requests.packages.urllib3.disable_warnings(category=InsecureRequestWarning)
+
+log = logging.getLogger(__name__)
+
+MANDIANT_AUTH_URL = "https://api.intelligence.mandiant.com/token"
+MANDIANT_SEARCH_URL = "https://api.intelligence.mandiant.com/v4/search"
+
+integragrations_conf = Config("integrations")
+
+api_access = integragrations_conf.mandiant_intel.api_access
+api_secret = integragrations_conf.mandiant_intel.api_secret
+
+
+class MandiantAPIClient:
+    def __init__(self):
+        self.api_access = api_access
+        self.api_secret = api_secret
+        self.auth_url = MANDIANT_AUTH_URL
+        self.search_url = MANDIANT_SEARCH_URL
+        self.token = None
+
+    def _generate_auth_header(self):
+        auth_token_bytes = f"{self.api_access}:{self.api_secret}".encode("ascii")
+        base64_auth_token_bytes = base64.b64encode(auth_token_bytes)
+        return base64_auth_token_bytes.decode("ascii")
+
+    def get_new_token(self):
+        if self.token:
+            return
+
+        headers = {
+            "Authorization": f"Basic {self._generate_auth_header()}",
+            "Content-Type": "application/x-www-form-urlencoded",
+            "Accept": "application/json",
+            "X-App-Name": "get-indicator-infos",
+        }
+        params = {"grant_type": "client_credentials"}
+
+        try:
+            response = requests.post(url=self.auth_url, headers=headers, verify=False, allow_redirects=False, data=params)
+        except Exception as e:
+            return {"error": True, "msg": f"Error during token request: {e}"}
+
+        if response.status_code == 200:
+            self.token = response.json().get("access_token")
+            return self.token
+        else:
+            return {"error": True, "msg": f"Failed to obtain token from server: {response.status_code}"}
+
+    def search(self, indicator):
+        if not self.token:
+            log.error("No valid token available. Please authenticate first.")
+            return
+
+        headers = {
+            "Authorization": f"Bearer {self.token}",
+            "Content-Type": "application/json",
+            "Accept": "application/json",
+            "X-App-Name": "get-indicator-infos",
+        }
+
+        body = {
+            "search": f"{indicator}",
+            "type": "all",
+            "limit": 50,
+            "sort_by": ["relevance"],
+            "sort_order": "asc",
+            "next": "",
+        }
+
+        try:
+            response = requests.post(
+                url=self.search_url, headers=headers, verify=False, allow_redirects=False, data=json.dumps(body)
+            )
+        except Exception as e:
+            return {"error": True, "msg": f"Error during search request: {e}"}
+
+        if response.status_code == 200:
+            return self.parse_response(response.json())
+        elif response.status_code == 401:
+            self.token = None
+            if self.get_new_token():
+                return self.search(indicator)
+            else:
+                log.error("Failed to refresh token.")
+                return
+        else:
+            return {"error": True, "msg": f"Search failed: {response.status_code}"}
+
+    def parse_response(self, response):
+        actors = []
+        malwares = []
+        objects = response.get("objects")
+        if not objects:
+            return
+
+        for obj in objects:
+            if "actors" in obj:
+                actors.extend(actor.get("name") for actor in obj["actors"] if "name" in actor)
+            if "malwares" in obj:
+                malwares.extend(malware.get("name") for malware in obj["malwares"] if "name" in malware)
+
+        return {"actor": actors, "malware": malwares}
+
+
+def mandiant_lookup(category: str, target: str, results: dict = {}):
+    if not integragrations_conf.mandiant_intel.enabled:
+        return results
+
+    mandiant_intel = {}
+
+    if category == "file":
+        sha256 = False
+        if not path_exists(target) and len(target) != 64:
+            return {"error": True, "msg": "File doesn't exist"}
+
+        sha256 = target if len(target) == 64 else File(target).get_sha256()
+        client = MandiantAPIClient()
+        mandiant_intel = {}
+        mandiant_intel["sha256"] = sha256
+        if client.get_new_token():
+            result = client.search(sha256)
+            if result:
+                mandiant_intel["detections"] = result
+                names = result.get("malware", [])
+                for name in names:
+                    add_family_detection(results, name, "Mandiant", sha256)
+
+    return mandiant_intel
+
+
+if __name__ == "__main__":
+    import sys
+
+    indicator = sys.argv[1]
+
+    client = MandiantAPIClient()
+
+    if client.get_new_token():
+        result = client.search(indicator)
+        if result:
+            print(json.dumps(result, indent=4))
diff --git a/lib/cuckoo/common/integrations/mitre.py b/lib/cuckoo/common/integrations/mitre.py
new file mode 100644
index 00000000000..918efc1b8b4
--- /dev/null
+++ b/lib/cuckoo/common/integrations/mitre.py
@@ -0,0 +1,116 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+import logging
+import os
+
+from lib.cuckoo.common.constants import CUCKOO_ROOT
+
+log = logging.getLogger("mitre")
+
+
+def mitre_generate_attck(results, mitre):
+    attck = {}
+    ttp_dict = {}
+
+    if not mitre or not hasattr(mitre, "enterprise"):
+        print("Missed dependency: poetry run pip install git+https://github.com/CAPESandbox/pyattck")
+        return attck
+
+    # [{'signature': 'http_request', 'ttps': ['T1071']}, {'signature': 'modify_proxy', 'ttps': ['T1112']}, {'signature': 'recon_fingerprint', 'ttps': ['T1012', 'T1082']}]
+    for ttp_block in results["ttps"]:
+        for ttp in ttp_block.get("ttps", []):
+            ttp_dict.setdefault(ttp, set()).add(ttp_block["signature"])
+    try:
+        for technique in mitre.enterprise.techniques:
+            if technique.technique_id not in list(ttp_dict.keys()):
+                continue
+            for tactic in technique.tactics:
+                attck.setdefault(tactic.name, []).append(
+                    {
+                        "t_id": technique.technique_id,
+                        "ttp_name": technique.name,
+                        "description": technique.description,
+                        "signature": list(ttp_dict[technique.technique_id]),
+                    }
+                )
+    except FileNotFoundError:
+        print("MITRE Att&ck data missed, execute: 'poetry run python utils/community.py -waf --mitre'")
+    except AttributeError:
+        print("Missed dependency: poetry run pip install git+https://github.com/CAPESandbox/pyattck")
+    except Exception as e:
+        # simplejson.errors.JSONDecodeError
+        log.error(("Mitre", e))
+
+    return attck
+
+
+def init_mitre_attck(online: bool = False):
+    config = False
+    mitre = False
+
+    try:
+        from pyattck import Attck
+
+        if online:
+            from pyattck.configuration import Configuration
+
+            config = Configuration()
+    except ImportError:
+        print("Missed dependency: install pyattck library, see requirements for proper version")
+        return
+
+    try:
+        mitre = Attck(
+            nested_techniques=True,
+            use_config=False,
+            save_config=False,
+            config_file_path=os.path.join(CUCKOO_ROOT, "data", "mitre", "config.yml"),
+            data_path=os.path.join(CUCKOO_ROOT, "data", "mitre"),
+            enterprise_attck_json=(
+                config.enterprise_attck_json if online else os.path.join(CUCKOO_ROOT, "data", "mitre", "enterprise_attck_json.json")
+            ),
+            pre_attck_json=config.pre_attck_json if online else os.path.join(CUCKOO_ROOT, "data", "mitre", "pre_attck_json.json"),
+            mobile_attck_json=(
+                config.mobile_attck_json if online else os.path.join(CUCKOO_ROOT, "data", "mitre", "mobile_attck_json.json")
+            ),
+            ics_attck_json=config.ics_attck_json if online else os.path.join(CUCKOO_ROOT, "data", "mitre", "ics_attck_json.json"),
+            nist_controls_json=(
+                config.nist_controls_json if online else os.path.join(CUCKOO_ROOT, "data", "mitre", "nist_controls_json.json")
+            ),
+            generated_nist_json=(
+                config.generated_nist_json if online else os.path.join(CUCKOO_ROOT, "data", "mitre", "generated_nist_json.json")
+            ),
+        )
+    except Exception as e:
+        log.error("Can't initialize mitre's Attck class: %s", str(e))
+
+    return mitre
+
+
+def mitre_update():
+    """Urls might change, for proper urls see https://github.com/swimlane/pyattck"""
+
+    mitre = init_mitre_attck(online=True)
+    if mitre:
+        print("[+] Updating MITRE datasets")
+        mitre.update()
+
+
+def mitre_load(enabled: bool = False):
+    mitre = False
+    HAVE_MITRE = False
+    pyattck_version = ()
+
+    if not enabled:
+        return mitre, HAVE_MITRE, pyattck_version
+
+    try:
+        mitre = init_mitre_attck()
+        HAVE_MITRE = True
+
+    except ImportError:
+        print("Missed pyattck dependency: check requirements.txt for exact pyattck version")
+
+    return mitre, HAVE_MITRE, pyattck_version
diff --git a/lib/cuckoo/common/integrations/office_one.py b/lib/cuckoo/common/integrations/office_one.py
new file mode 100644
index 00000000000..bd7d20604da
--- /dev/null
+++ b/lib/cuckoo/common/integrations/office_one.py
@@ -0,0 +1,174 @@
+# OneNoteExtractor
+# Copyright (C) 2023 Volexity, Inc.
+
+"""Quick extractor for OneNote files, allowing for programmatic extraction of subfiles."""
+
+import json
+import logging
+import re
+import struct
+
+# builtins
+from datetime import datetime, timedelta
+from typing import Iterator
+
+EMBEDDED_FILE_MAGIC = b"\xe7\x16\xe3\xbd\x65\x26\x11\x45\xa4\xc4\x8d\x4d\x0b\x7a\x9e\xac"  # noqa E501
+TITLE_MAGIC = b"\xf3\x1c\x00\x1c\x30\x1c\x00\x1c\xff\x1d\x00\x14\x82\x1d\x00\x14"  # noqa E501
+HEADER = b"\xe4\x52\x5c\x7b\x8c\xd8\xa7\x4d\xae\xb1\x53\x78\xd0\x29\x96\xd3"
+
+# Files used for testing
+# 93fb9f37eb70c095e26cedc594ca55ab27710039d0f4e92878e6539975ae58aa
+# c9098f9680174838236499bcbee0cf8b6ebd900bdd4cfa6045d0c2ee91f5f81a
+# 28ceae52efb536176dfcabb931ff84551dec9bfa3285a6b54cd33e36b7855c5b
+# 5b8de945d22780ef5c0dcdb40848f47515601d3be4f1fe1ac541375d187c3832
+# e0d9f2a72d64108a93e0cfd8066c04ed8eabe2ed43b80b3f589b9b21e7f9a488
+# 3f00a56cbf9a0e59309f395a6a0b3457c7675a657b3e091d1a9440bd17963f59
+# 9bf99fc32dc69f213812c3c747e8dd41fef63ad0fd0aec01a6b399aeb10a166a
+# 73e77e4f5d51ea67cb63539260741b703f0ea9a40782611eb005b5df804865dc
+# b6d84f95fb91c71dbc66377d995ef5ccccd94880afc5d8dd678e9672c44a76f0
+# a748f4e526c1a5fed7e57887ef951e451236ee3ad39cf6161d18e5c2230aca0b
+# 222b1a425f75fc7998a0bbabd52277cd82bb5ec50b75f4fb67568b3b754f5406
+# 7d51b0f696ad7c3d92fe0485052aebacca367d64f37aebd446fdf613b4719024
+# 2283c3be89eb6cbf0e1579a6e398a5d1f81a50793fcca22fbc6cbdab53dc2d31
+# b13c979dae8236f1e7f322712b774cedb05850c989fc08312a348e2385ed1b21
+# cf9525d9589671d35a4ab7c8cfccc74fb2b974d506e1e00f4ee46840b4e6d6dd
+# eb674dc2e3787de0948e0af5a50aa365b21eb2dd40c0ef9034e44ed1c46b11d1
+
+logger = logging.getLogger(__name__)
+
+
+class OneNoteExtractorException(Exception):
+    """Custom exception handler for OneNoteExtractor."""
+
+    pass
+
+
+class OneNoteMetadataObject(object):
+    """Object to represent OneNoteMetadata components."""
+
+    def __init__(
+        self, object_id: int, offset: int, title_size: int, title: str, creation_date: datetime, last_modification_date: datetime
+    ) -> None:
+        self.object_id = object_id
+        self.title_size = title_size
+        self.offset = offset
+        self.title = title
+        self.creation_date = creation_date
+        self.last_modification_date = last_modification_date
+
+    def __repr__(self) -> str:
+        """Print JSON repr of this object."""
+        j = self.to_dict()
+        return json.dumps(j, sort_keys=True, indent=4)
+
+    def to_dict(self) -> dict:
+        """Return a dictionary representation of a metadata object."""
+        r = {}
+        for k, v in self.__dict__.items():
+            if isinstance(v, datetime):
+                v = v.strftime("%Y-%m-%dT%H:%M:%SZ")
+            r[k] = v
+        return r
+
+
+class OneNoteExtractor:
+    """Simple OneNoteExtractor class to assist in extraction of embedded files."""
+
+    def __init__(self, data: bytes) -> None:
+        """Init a OneNoteExtractor object.
+
+        :param data: file data from a .one file
+
+        :raises OneNoteExtractorException: when data doesn't match known .one file format
+        """
+        self.data = data
+        self.is_valid = self._is_valid()
+        if self.is_valid is False:
+            raise OneNoteExtractorException("Invalid OneNote file encountered")
+
+    def _is_valid(self) -> bool:
+        """Check if the first 16 bytes in `self.data` match known OneNote file header structure."""
+        if self.data[0:16] == HEADER:
+            return True
+        return False
+
+    def _get_time(self, date: bytes) -> datetime:
+        i_value = struct.unpack("<Q", bytearray(date))[0]
+        h_value = datetime(1601, 1, 1) + timedelta(microseconds=i_value / 10)
+        return h_value
+
+    def extract_files(self) -> Iterator[bytes]:
+        """Find embedded objects in .one files.
+
+        Returns an iterator containing those objects.
+        """
+        if self.is_valid is False:
+            logger.error("Cannot extract files - header is invalid.")
+            return False
+
+        match = re.finditer(EMBEDDED_FILE_MAGIC, self.data, re.DOTALL)
+        if match:
+            try:
+                counter = 0
+                for counter, m in enumerate(match):
+                    size_offset = m.start() + 16
+                    size = self.data[size_offset : size_offset + 4]
+                    i_size = struct.unpack("<I", bytearray(size))[0]
+                    yield self.data[m.start() + 36 : m.start() + 36 + i_size]
+                logger.debug("%d files extracted.", counter)
+                return
+            except Exception as e:
+                logger.error("Error while parsing the file: %s", str(e))
+                return
+        else:
+            logger.debug("No embedded files found.")
+
+    def extract_meta(self) -> Iterator[OneNoteMetadataObject]:
+        """Extract metadata from embedded objects in .one files.
+
+        Returns an iterator containing those objects.
+        """
+        match = re.finditer(TITLE_MAGIC, self.data, re.DOTALL)
+        ret = []
+        if match:
+            for index, m in enumerate(match):
+                try:
+                    offset = m.start() - 4
+                    adjust = self.data[offset + 2 : offset + 4]
+                    i_adjustment = struct.unpack("<H", bytearray(adjust))[0]
+                    size_offset = offset + 4 + (4 * i_adjustment)
+                    size = self.data[size_offset : size_offset + 4]
+                    i_size = struct.unpack("<I", bytearray(size))[0]
+                    str = self.data[size_offset + 4 : size_offset + 4 + i_size].decode()
+                    creatDate_offset = size_offset + 4 + i_size + 32
+                    creatDate = self.data[creatDate_offset : creatDate_offset + 8]
+                    h_createDate = self._get_time(creatDate)
+                    cpt = creatDate_offset + 16
+                    valid = False
+                    while cpt < creatDate_offset + 100:
+                        if self.data[cpt : cpt + 6] == b"\x01\x01\x00\x00\x00\x00":
+                            valid = True
+                            break
+                        if self.data[cpt : cpt + 6] == b"\x01\x00\x00\x00\x00\x00":
+                            valid = True
+                            break
+                        cpt = cpt + 1
+                    if valid:
+                        LastDate_offset = cpt - 7
+                        LastDate = self.data[LastDate_offset : LastDate_offset + 8]
+                    else:
+                        LastDate = None
+                    h_LastDate = None
+                    if LastDate:
+                        h_LastDate = self._get_time(LastDate)
+                    yield OneNoteMetadataObject(
+                        object_id=index,
+                        offset=offset,
+                        title_size=i_size,
+                        title=str.replace("\x00", ""),
+                        creation_date=h_createDate,
+                        last_modification_date=h_LastDate,
+                    )
+                except Exception as e:
+                    logger.error("Error while parsing object %s - Error: %s", cpt, str(e))
+        return ret
diff --git a/lib/cuckoo/common/integrations/parse_dotnet.py b/lib/cuckoo/common/integrations/parse_dotnet.py
new file mode 100644
index 00000000000..6a86fb30eb4
--- /dev/null
+++ b/lib/cuckoo/common/integrations/parse_dotnet.py
@@ -0,0 +1,155 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation, Optiv, Inc. (brad.spengler@optiv.com)
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+import logging
+import subprocess
+from typing import Any, Dict, List
+
+from lib.cuckoo.common.path_utils import path_exists
+from lib.cuckoo.common.utils import convert_to_printable
+
+log = logging.getLogger(__name__)
+
+# Note universal_newlines should be False as some binaries fails to convert bytes to text
+
+
+class DotNETExecutable:
+    """.NET analysis"""
+
+    def __init__(self, file_path):
+        self.file_path = file_path
+
+    def _get_custom_attrs(self) -> List[Dict[str, str]]:
+        try:
+            ret = []
+            output = subprocess.check_output(["/usr/bin/monodis", "--customattr", self.file_path], universal_newlines=False).split(
+                b"\n"
+            )
+            for line in output[1:]:
+                splitline = line.decode("latin-1").split()
+                if not splitline or len(splitline) < 7:
+                    continue
+                typeval = splitline[1].rstrip(":")
+                nameval = splitline[6].split("::", 1)[0]
+                if "(string)" not in splitline[6]:
+                    continue
+                rem = " ".join(splitline[7:])
+                startidx = rem.find('["')
+                if startidx < 0:
+                    continue
+                endidx = rem.rfind('"]')
+                # also ignore empty strings
+                if endidx <= 2:
+                    continue
+                valueval = rem[startidx + 2 : endidx - 2]
+                ret.append(
+                    {
+                        "type": convert_to_printable(typeval),
+                        "name": convert_to_printable(nameval),
+                        "value": convert_to_printable(valueval),
+                    }
+                )
+            return ret
+        except UnicodeDecodeError:
+            log.error("UnicodeDecodeError: /usr/bin/monodis --customattr %s", self.file_path)
+        except subprocess.CalledProcessError as e:
+            log.error("Monodis: %s", str(e))
+        except Exception as e:
+            log.exception(e)
+            return None
+
+    def _get_assembly_refs(self) -> List[Dict[str, str]]:
+        try:
+            ret = []
+            output = subprocess.check_output(["/usr/bin/monodis", "--assemblyref", self.file_path], universal_newlines=False).split(
+                b"\n"
+            )
+            for idx, line in enumerate(output):
+                splitline = line.decode("latin-1").split("Version=")
+                if len(splitline) < 2:
+                    continue
+                verval = splitline[1]
+                splitline = output[idx + 1].split(b"Name=")
+                if len(splitline) < 2:
+                    continue
+                nameval = splitline[1]
+                item = {
+                    "name": convert_to_printable(nameval.decode()),
+                    "version": convert_to_printable(verval),
+                }
+                ret.append(item)
+            return ret
+
+        except subprocess.CalledProcessError as e:
+            log.error("Monodis: %s", str(e))
+        except Exception as e:
+            log.exception(e)
+            return None
+
+    def _get_assembly_info(self) -> Dict[str, str]:
+        try:
+            ret = {}
+            output = subprocess.check_output(["/usr/bin/monodis", "--assembly", self.file_path], universal_newlines=False).split(
+                b"\n"
+            )
+            for line in output:
+                line = line.decode("latin-1")
+                if line.startswith("Name:"):
+                    ret["name"] = convert_to_printable(line[5:].strip())
+                elif line.startswith("Version:"):
+                    ret["version"] = convert_to_printable(line[8:].strip())
+            return ret
+        except subprocess.CalledProcessError as e:
+            log.error("Monodis: %s", str(e))
+        except Exception as e:
+            log.exception(e)
+            return None
+
+    def _get_type_refs(self) -> List[Dict[str, str]]:
+        try:
+            ret = []
+            output = subprocess.check_output(["/usr/bin/monodis", "--typeref", self.file_path], universal_newlines=False).split(
+                b"\n"
+            )
+            for line in output[1:]:
+                restline = "".join(line.decode("latin-1").split(":")[1:])
+                restsplit = restline.split("]")
+                asmname = restsplit[0][2:]
+                typename = "".join(restsplit[1:])
+                if asmname and typename:
+                    item = {
+                        "assembly": convert_to_printable(asmname),
+                        "typename": convert_to_printable(typename),
+                    }
+                    ret.append(item)
+            return ret
+
+        except subprocess.CalledProcessError as e:
+            log.error("Monodis: %s", str(e))
+        except Exception as e:
+            log.exception(e)
+            return None
+
+    def run(self) -> Dict[str, Any]:
+        """Run analysis.
+        @return: analysis results dict or None.
+        """
+        if not path_exists(self.file_path):
+            return None
+
+        try:
+            results = {
+                "typerefs": self._get_type_refs(),
+                "assemblyrefs": self._get_assembly_refs(),
+                "assemblyinfo": self._get_assembly_info(),
+                "customattrs": self._get_custom_attrs(),
+            }
+
+            if all(results):
+                return results
+            else:
+                return
+        except Exception as e:
+            log.exception(e)
+            return None
diff --git a/lib/cuckoo/common/integrations/parse_elf.py b/lib/cuckoo/common/integrations/parse_elf.py
new file mode 100644
index 00000000000..6886779fb7a
--- /dev/null
+++ b/lib/cuckoo/common/integrations/parse_elf.py
@@ -0,0 +1,237 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation, Optiv, Inc. (brad.spengler@optiv.com)
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+from typing import Any, Dict, List
+
+from lib.cuckoo.common.utils import convert_to_printable
+
+try:
+    from elftools.common.exceptions import ELFError
+    from elftools.elf.constants import E_FLAGS
+    from elftools.elf.descriptions import (
+        describe_dyn_tag,
+        describe_e_machine,
+        describe_e_type,
+        describe_e_version_numeric,
+        describe_ei_class,
+        describe_ei_data,
+        describe_ei_osabi,
+        describe_ei_version,
+        describe_note,
+        describe_p_flags,
+        describe_p_type,
+        describe_reloc_type,
+        describe_sh_type,
+        describe_symbol_bind,
+        describe_symbol_type,
+    )
+    from elftools.elf.dynamic import DynamicSection
+    from elftools.elf.elffile import ELFFile
+    from elftools.elf.enums import ENUM_D_TAG
+    from elftools.elf.relocation import RelocationSection
+    from elftools.elf.sections import SymbolTableSection
+    from elftools.elf.segments import NoteSegment
+except ImportError:
+    ELFFile = False
+
+
+class ELF:
+    def __init__(self, file_path):
+        self.file_path = file_path
+        self.elf = None
+        self.result = {}
+
+    def run(self) -> Dict[str, Any]:
+        try:
+            with open(self.file_path, "rb") as f:
+                self.elf = ELFFile(f)
+            self.result["file_header"] = self._get_file_header()
+            self.result["section_headers"] = self._get_section_headers()
+            self.result["program_headers"] = self._get_program_headers()
+            self.result["dynamic_tags"] = self._get_dynamic_tags()
+            self.result["symbol_tables"] = self._get_symbol_tables()
+            self.result["relocations"] = self._get_relocations()
+            self.result["notes"] = self._get_notes()
+            # TODO: add library name per import (see #807)
+        except ELFError as e:
+            if e.message != "Magic number does not match":
+                raise
+
+        return self.result
+
+    def _get_file_header(self) -> Dict[str, str]:
+        return {
+            # TODO
+            "magic": convert_to_printable(self.elf.e_ident_raw[:4]),
+            "class": describe_ei_class(self.elf.header.e_ident["EI_CLASS"]),
+            "data": describe_ei_data(self.elf.header.e_ident["EI_DATA"]),
+            "ei_version": describe_ei_version(self.elf.header.e_ident["EI_VERSION"]),
+            "os_abi": describe_ei_osabi(self.elf.header.e_ident["EI_OSABI"]),
+            "abi_version": self.elf.header.e_ident["EI_ABIVERSION"],
+            "type": describe_e_type(self.elf.header["e_type"]),
+            "machine": describe_e_machine(self.elf.header["e_machine"]),
+            "version": describe_e_version_numeric(self.elf.header["e_version"]),
+            "entry_point_address": self._print_addr(self.elf.header["e_entry"]),
+            "start_of_program_headers": self.elf.header["e_phoff"],
+            "start_of_section_headers": self.elf.header["e_shoff"],
+            "flags": f"{self._print_addr(self.elf.header['e_flags'])}{self._decode_flags(self.elf.header['e_flags'])}",
+            "size_of_this_header": self.elf.header["e_ehsize"],
+            "size_of_program_headers": self.elf.header["e_phentsize"],
+            "number_of_program_headers": self.elf.header["e_phnum"],
+            "size_of_section_headers": self.elf.header["e_shentsize"],
+            "number_of_section_headers": self.elf.header["e_shnum"],
+            "section_header_string_table_index": self.elf.header["e_shstrndx"],
+        }
+
+    def _get_section_headers(self) -> List[Dict[str, str]]:
+        return [
+            {
+                "name": section.name,
+                "type": describe_sh_type(section["sh_type"]),
+                "addr": self._print_addr(section["sh_addr"]),
+                "size": section["sh_size"],
+            }
+            for section in self.elf.iter_sections()
+        ]
+
+    def _get_program_headers(self) -> List[Dict[str, str]]:
+        return [
+            {
+                "type": describe_p_type(segment["p_type"]),
+                "addr": self._print_addr(segment["p_vaddr"]),
+                "flags": describe_p_flags(segment["p_flags"]).strip(),
+                "size": segment["p_memsz"],
+            }
+            for segment in self.elf.iter_segments()
+        ]
+
+    def _get_dynamic_tags(self) -> List[Dict[str, str]]:
+        dynamic_tags = []
+        for section in self.elf.iter_sections():
+            if not isinstance(section, DynamicSection):
+                continue
+            dynamic_tags.extend(
+                {
+                    "tag": self._print_addr(ENUM_D_TAG.get(tag.entry.d_tag, tag.entry.d_tag)),
+                    "type": str(tag.entry.d_tag)[3:],
+                    "value": self._parse_tag(tag),
+                }
+                for tag in section.iter_tags()
+            )
+
+        return dynamic_tags
+
+    def _get_symbol_tables(self) -> List[Dict[str, str]]:
+        symbol_tables = []
+        for section in self.elf.iter_sections():
+            if not isinstance(section, SymbolTableSection):
+                continue
+            symbol_tables.extend(
+                {
+                    "value": self._print_addr(symbol["st_value"]),
+                    "type": describe_symbol_type(symbol["st_info"]["type"]),
+                    "bind": describe_symbol_bind(symbol["st_info"]["bind"]),
+                    "ndx_name": symbol.name,
+                }
+                for symbol in section.iter_symbols()
+            )
+
+        return symbol_tables
+
+    def _get_relocations(self) -> List[Dict[str, str]]:
+        relocations = []
+        for section in self.elf.iter_sections():
+            if not isinstance(section, RelocationSection):
+                continue
+            section_relocations = set()
+            for rel in section.iter_relocations():
+                relocation = {
+                    "offset": self._print_addr(rel["r_offset"]),
+                    "info": self._print_addr(rel["r_info"]),
+                    "type": describe_reloc_type(rel["r_info_type"], self.elf),
+                    "value": "",
+                    "name": "",
+                }
+
+                if rel["r_info_sym"] != 0:
+                    symtable = self.elf.get_section(section["sh_link"])
+                    symbol = symtable.get_symbol(rel["r_info_sym"])
+                    # Some symbols have zero "st_name", so instead use
+                    # the name of the section they point at
+                    if symbol["st_name"] == 0:
+                        symsec = self.elf.get_section(symbol["st_shndx"])
+                        symbol_name = symsec.name
+                    else:
+                        symbol_name = symbol.name
+
+                    relocation["value"] = self._print_addr(symbol["st_value"])
+                    relocation["name"] = symbol_name
+
+                section_relocations.add(relocation)
+
+            relocations.append(
+                {
+                    "name": section.name,
+                    "entries": section_relocations,
+                }
+            )
+        return relocations
+
+    def _get_notes(self) -> List[Dict[str, str]]:
+        notes = []
+        for segment in self.elf.iter_segments():
+            if not isinstance(segment, NoteSegment):
+                continue
+            notes.extend(
+                {
+                    "owner": note["n_name"],
+                    "size": self._print_addr(note["n_descsz"]),
+                    "note": describe_note(note),
+                    "name": note["n_name"],
+                }
+                for note in segment.iter_notes()
+            )
+
+        return notes
+
+    def _print_addr(self, addr: int) -> str:
+        return f"0x{addr:08x}" if self.elf.elfclass == 32 else f"0x{addr:016x}"
+
+    def _decode_flags(self, flags) -> str:
+        description = ""
+        if self.elf["e_machine"] == "EM_ARM":
+            if flags & E_FLAGS.EF_ARM_HASENTRY:
+                description = ", has entry point"
+
+            version = flags & E_FLAGS.EF_ARM_EABIMASK
+            if version == E_FLAGS.EF_ARM_EABI_VER5:
+                description = ", Version5 EABI"
+        elif self.elf["e_machine"] == "EM_MIPS":
+            if flags & E_FLAGS.EF_MIPS_NOREORDER:
+                description = ", noreorder"
+            if flags & E_FLAGS.EF_MIPS_CPIC:
+                description = ", cpic"
+            if not (flags & E_FLAGS.EF_MIPS_ABI2) and not (flags & E_FLAGS.EF_MIPS_ABI_ON32):
+                description = ", o32"
+            if (flags & E_FLAGS.EF_MIPS_ARCH) == E_FLAGS.EF_MIPS_ARCH_1:
+                description = ", mips1"
+
+        return description
+
+    def _parse_tag(self, tag) -> str:
+        if tag.entry.d_tag == "DT_NEEDED":
+            return f"Shared library: [{tag.needed}]"
+        elif tag.entry.d_tag == "DT_RPATH":
+            return f"Library rpath: [{tag.rpath}]"
+        elif tag.entry.d_tag == "DT_RUNPATH":
+            return f"Library runpath: [{tag.runpath}]"
+        elif tag.entry.d_tag == "DT_SONAME":
+            return f"Library soname: [{tag.soname}]"
+        elif isinstance(tag.entry.d_tag, str) and tag.entry.d_tag.endswith(("SZ", "ENT")):
+            return f"{tag['d_val']} (bytes)"
+        elif isinstance(tag.entry.d_tag, str) and tag.entry.d_tag.endswith(("NUM", "COUNT")):
+            return str(tag["d_val"])
+        elif tag.entry.d_tag == "DT_PLTREL":
+            return describe_dyn_tag(tag.entry.d_val).lstrip("DT_")
+        return self._print_addr(tag["d_val"])
diff --git a/lib/cuckoo/common/integrations/parse_encoded_script.py b/lib/cuckoo/common/integrations/parse_encoded_script.py
new file mode 100644
index 00000000000..0215b273f21
--- /dev/null
+++ b/lib/cuckoo/common/integrations/parse_encoded_script.py
@@ -0,0 +1,527 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation, Optiv, Inc. (brad.spengler@optiv.com)
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+import base64
+import logging
+import struct
+from pathlib import Path
+from typing import Dict
+
+log = logging.getLogger(__name__)
+
+
+# TODO: this probably can be replaced by vbe_decoder
+class EncodedScriptFile:
+    """Deobfuscates and interprets Windows Script Files."""
+
+    encoding = (
+        1,
+        2,
+        0,
+        1,
+        2,
+        0,
+        2,
+        0,
+        0,
+        2,
+        0,
+        2,
+        1,
+        0,
+        2,
+        0,
+        1,
+        0,
+        2,
+        0,
+        1,
+        1,
+        2,
+        0,
+        0,
+        2,
+        1,
+        0,
+        2,
+        0,
+        0,
+        2,
+        1,
+        1,
+        0,
+        2,
+        0,
+        2,
+        0,
+        1,
+        0,
+        1,
+        1,
+        2,
+        0,
+        1,
+        0,
+        2,
+        1,
+        0,
+        2,
+        0,
+        1,
+        1,
+        2,
+        0,
+        0,
+        1,
+        1,
+        2,
+        0,
+        1,
+        0,
+        2,
+    )
+
+    lookup = (
+        (
+            0x00,
+            0x01,
+            0x02,
+            0x03,
+            0x04,
+            0x05,
+            0x06,
+            0x07,
+            0x08,
+            0x7B,
+            0x0A,
+            0x0B,
+            0x0C,
+            0x0D,
+            0x0E,
+            0x0F,
+            0x10,
+            0x11,
+            0x12,
+            0x13,
+            0x14,
+            0x15,
+            0x16,
+            0x17,
+            0x18,
+            0x19,
+            0x1A,
+            0x1B,
+            0x1C,
+            0x1D,
+            0x1E,
+            0x1F,
+            0x32,
+            0x30,
+            0x21,
+            0x29,
+            0x5B,
+            0x38,
+            0x33,
+            0x3D,
+            0x58,
+            0x3A,
+            0x35,
+            0x65,
+            0x39,
+            0x5C,
+            0x56,
+            0x73,
+            0x66,
+            0x4E,
+            0x45,
+            0x6B,
+            0x62,
+            0x59,
+            0x78,
+            0x5E,
+            0x7D,
+            0x4A,
+            0x6D,
+            0x71,
+            0x00,
+            0x60,
+            0x00,
+            0x53,
+            0x00,
+            0x42,
+            0x27,
+            0x48,
+            0x72,
+            0x75,
+            0x31,
+            0x37,
+            0x4D,
+            0x52,
+            0x22,
+            0x54,
+            0x6A,
+            0x47,
+            0x64,
+            0x2D,
+            0x20,
+            0x7F,
+            0x2E,
+            0x4C,
+            0x5D,
+            0x7E,
+            0x6C,
+            0x6F,
+            0x79,
+            0x74,
+            0x43,
+            0x26,
+            0x76,
+            0x25,
+            0x24,
+            0x2B,
+            0x28,
+            0x23,
+            0x41,
+            0x34,
+            0x09,
+            0x2A,
+            0x44,
+            0x3F,
+            0x77,
+            0x3B,
+            0x55,
+            0x69,
+            0x61,
+            0x63,
+            0x50,
+            0x67,
+            0x51,
+            0x49,
+            0x4F,
+            0x46,
+            0x68,
+            0x7C,
+            0x36,
+            0x70,
+            0x6E,
+            0x7A,
+            0x2F,
+            0x5F,
+            0x4B,
+            0x5A,
+            0x2C,
+            0x57,
+        ),
+        (
+            0x00,
+            0x01,
+            0x02,
+            0x03,
+            0x04,
+            0x05,
+            0x06,
+            0x07,
+            0x08,
+            0x57,
+            0x0A,
+            0x0B,
+            0x0C,
+            0x0D,
+            0x0E,
+            0x0F,
+            0x10,
+            0x11,
+            0x12,
+            0x13,
+            0x14,
+            0x15,
+            0x16,
+            0x17,
+            0x18,
+            0x19,
+            0x1A,
+            0x1B,
+            0x1C,
+            0x1D,
+            0x1E,
+            0x1F,
+            0x2E,
+            0x47,
+            0x7A,
+            0x56,
+            0x42,
+            0x6A,
+            0x2F,
+            0x26,
+            0x49,
+            0x41,
+            0x34,
+            0x32,
+            0x5B,
+            0x76,
+            0x72,
+            0x43,
+            0x38,
+            0x39,
+            0x70,
+            0x45,
+            0x68,
+            0x71,
+            0x4F,
+            0x09,
+            0x62,
+            0x44,
+            0x23,
+            0x75,
+            0x00,
+            0x7E,
+            0x00,
+            0x5E,
+            0x00,
+            0x77,
+            0x4A,
+            0x61,
+            0x5D,
+            0x22,
+            0x4B,
+            0x6F,
+            0x4E,
+            0x3B,
+            0x4C,
+            0x50,
+            0x67,
+            0x2A,
+            0x7D,
+            0x74,
+            0x54,
+            0x2B,
+            0x2D,
+            0x2C,
+            0x30,
+            0x6E,
+            0x6B,
+            0x66,
+            0x35,
+            0x25,
+            0x21,
+            0x64,
+            0x4D,
+            0x52,
+            0x63,
+            0x3F,
+            0x7B,
+            0x78,
+            0x29,
+            0x28,
+            0x73,
+            0x59,
+            0x33,
+            0x7F,
+            0x6D,
+            0x55,
+            0x53,
+            0x7C,
+            0x3A,
+            0x5F,
+            0x65,
+            0x46,
+            0x58,
+            0x31,
+            0x69,
+            0x6C,
+            0x5A,
+            0x48,
+            0x27,
+            0x5C,
+            0x3D,
+            0x24,
+            0x79,
+            0x37,
+            0x60,
+            0x51,
+            0x20,
+            0x36,
+        ),
+        (
+            0x00,
+            0x01,
+            0x02,
+            0x03,
+            0x04,
+            0x05,
+            0x06,
+            0x07,
+            0x08,
+            0x6E,
+            0x0A,
+            0x0B,
+            0x0C,
+            0x0D,
+            0x0E,
+            0x0F,
+            0x10,
+            0x11,
+            0x12,
+            0x13,
+            0x14,
+            0x15,
+            0x16,
+            0x17,
+            0x18,
+            0x19,
+            0x1A,
+            0x1B,
+            0x1C,
+            0x1D,
+            0x1E,
+            0x1F,
+            0x2D,
+            0x75,
+            0x52,
+            0x60,
+            0x71,
+            0x5E,
+            0x49,
+            0x5C,
+            0x62,
+            0x7D,
+            0x29,
+            0x36,
+            0x20,
+            0x7C,
+            0x7A,
+            0x7F,
+            0x6B,
+            0x63,
+            0x33,
+            0x2B,
+            0x68,
+            0x51,
+            0x66,
+            0x76,
+            0x31,
+            0x64,
+            0x54,
+            0x43,
+            0x00,
+            0x3A,
+            0x00,
+            0x7E,
+            0x00,
+            0x45,
+            0x2C,
+            0x2A,
+            0x74,
+            0x27,
+            0x37,
+            0x44,
+            0x79,
+            0x59,
+            0x2F,
+            0x6F,
+            0x26,
+            0x72,
+            0x6A,
+            0x39,
+            0x7B,
+            0x3F,
+            0x38,
+            0x77,
+            0x67,
+            0x53,
+            0x47,
+            0x34,
+            0x78,
+            0x5D,
+            0x30,
+            0x23,
+            0x5A,
+            0x5B,
+            0x6C,
+            0x48,
+            0x55,
+            0x70,
+            0x69,
+            0x2E,
+            0x4C,
+            0x21,
+            0x24,
+            0x4E,
+            0x50,
+            0x09,
+            0x56,
+            0x73,
+            0x35,
+            0x61,
+            0x4B,
+            0x58,
+            0x3B,
+            0x57,
+            0x22,
+            0x6D,
+            0x4D,
+            0x25,
+            0x28,
+            0x46,
+            0x4A,
+            0x32,
+            0x41,
+            0x3D,
+            0x5F,
+            0x4F,
+            0x42,
+            0x65,
+        ),
+    )
+
+    unescape = {
+        "#": "\r",
+        "&": "\n",
+        "!": "<",
+        "*": ">",
+        "$": "@",
+    }
+
+    def __init__(self, filepath: str):
+        self.filepath = filepath
+
+    def run(self) -> Dict[str, str]:
+        try:
+            source = Path(self.filepath).read_bytes()
+        except UnicodeDecodeError:
+            return {}
+        source = self.decode(source)
+        if not source:
+            return {}
+        results = {"enscript": source[:65536]}
+        if len(source) > 65536:
+            results["encscript"] += "\r\n<truncated>"
+        return results
+
+    def decode(self, source: bytes, start: bytes = b"#@~^", end: bytes = b"^#~@") -> str:
+        if start not in source or end not in source:
+            return
+
+        o = source.index(start) + len(start) + 8
+        end = source.index(end) - 8
+        c, m, r = bytes([]), 0, []
+
+        while o < end:
+            ch = source[o]
+            if ch == 64:  # b"@":
+                r.append(self.unescape.get(source[o + 1], b"?"))
+                c += r[-1]
+                o, m = o + 1, m + 1
+            elif ch < 128:
+                r.append(self.lookup[self.encoding[m % 64]][ch])
+                c += r[-1]
+                m += 1
+            else:
+                r.append(ch)
+            o += 1
+
+        if (c % 2**32) != base64.b64decode(struct.unpack("=I", source[o : o + 4]))[0]:
+            log.info("Invalid checksum for Encoded WSF file!")
+
+        return b"".join(r).decode("latin-1")
diff --git a/lib/cuckoo/common/integrations/parse_hwp.py b/lib/cuckoo/common/integrations/parse_hwp.py
new file mode 100644
index 00000000000..5d64bd24ba5
--- /dev/null
+++ b/lib/cuckoo/common/integrations/parse_hwp.py
@@ -0,0 +1,50 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation, Optiv, Inc. (brad.spengler@optiv.com)
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+import logging
+import zlib
+from typing import Dict, List
+
+try:
+    import olefile
+
+    HAVE_OLEFILE = True
+except ImportError:
+    HAVE_OLEFILE = False
+    print("Missed olefile dependency: pip3 install olefile")
+
+
+log = logging.getLogger(__name__)
+
+
+class HwpDocument:
+    """Static analysis of HWP documents."""
+
+    def __init__(self, filepath: str):
+        self.filepath = filepath
+        self.files: Dict[str, bytes] = {}
+        # self.ex = ExtractManager.for_task(task_id)
+
+    def unpack_hwp(self):
+        """Unpacks ole-based zip files."""
+        with olefile.OleFileIO(self.filepath) as ole:
+            streams = ole.listdir()
+            for stream in streams:
+                stream_name = "/".join(stream)
+            try:
+                with ole.openstream(stream) as f:
+                    contents = f.read()
+                stream_content = zlib.decompress(contents, -15)
+                self.files[stream_name] = stream_content
+            except Exception as e:
+                log.exception(e)
+
+    def extract_eps(self) -> List[bytes]:
+        """Extract some information from Encapsulated Post Script files."""
+        return [content for filename, content in self.files.items() if filename.lower().endswith((".eps", ".ps"))]
+
+    def run(self) -> Dict[str, List[bytes]]:
+        self.unpack_hwp()
+        self.ex.peek_office(self.files)
+        return {"eps": self.extract_eps()}
diff --git a/lib/cuckoo/common/integrations/parse_java.py b/lib/cuckoo/common/integrations/parse_java.py
new file mode 100644
index 00000000000..4d45863c3f9
--- /dev/null
+++ b/lib/cuckoo/common/integrations/parse_java.py
@@ -0,0 +1,48 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation, Optiv, Inc. (brad.spengler@optiv.com)
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+import contextlib
+import logging
+from pathlib import Path
+from subprocess import PIPE, Popen
+from typing import Any, Dict
+
+from lib.cuckoo.common.utils import convert_to_printable, store_temp_file
+
+log = logging.getLogger(__name__)
+
+
+class Java:
+    """Java Static Analysis"""
+
+    def __init__(self, file_path: str, decomp_jar: str):
+        self.file_path = file_path
+        self.decomp_jar = decomp_jar
+
+    def run(self) -> Dict[str, Any]:
+        """Run analysis.
+        @return: analysis results dict or None.
+        """
+        p = Path(self.file_path)
+        if not p.exists():
+            return None
+
+        results = {"java": {}}
+
+        if self.decomp_jar:
+            data = p.read_bytes()
+            jar_file = store_temp_file(data, "decompile.jar")
+
+            try:
+                if self.decomp_jar.endswith(".jar"):
+                    p = Popen(["java", "-jar", self.decomp_jar, jar_file], stdout=PIPE)
+                else:
+                    p = Popen([self.decomp_jar, jar_file], stdout=PIPE)
+                results["decompiled"] = convert_to_printable(p.stdout.read())
+            except Exception as e:
+                log.exception(e)
+
+            with contextlib.suppress(Exception):
+                Path(jar_file.decode()).unlink()
+        return results
diff --git a/lib/cuckoo/common/integrations/parse_lnk.py b/lib/cuckoo/common/integrations/parse_lnk.py
new file mode 100644
index 00000000000..02f0ecb9c4d
--- /dev/null
+++ b/lib/cuckoo/common/integrations/parse_lnk.py
@@ -0,0 +1,158 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation, Optiv, Inc. (brad.spengler@optiv.com)
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+import ctypes
+import logging
+import struct
+from typing import Any, Dict, Tuple
+
+from lib.cuckoo.common.structures import LnkEntry, LnkHeader
+
+try:
+    import LnkParse3
+    from LnkParse3.exceptions import LnkParserError
+
+    HAVE_LNK3 = True
+except ImportError:
+    HAVE_LNK3 = False
+
+log = logging.getLogger(__name__)
+
+
+class LnkShortcut:
+    signature = [0x4C, 0x00, 0x00, 0x00]
+    guid = [
+        0x01,
+        0x14,
+        0x02,
+        0x00,
+        0x00,
+        0x00,
+        0x00,
+        0x00,
+        0xC0,
+        0x00,
+        0x00,
+        0x00,
+        0x00,
+        0x00,
+        0x00,
+        0x46,
+    ]
+    flags = [
+        "shellidlist",
+        "references",
+        "description",
+        "relapath",
+        "workingdir",
+        "cmdline",
+        "icon",
+    ]
+    attrs = [
+        "readonly",
+        "hidden",
+        "system",
+        None,
+        "directory",
+        "archive",
+        "ntfs_efs",
+        "normal",
+        "temporary",
+        "sparse",
+        "reparse",
+        "compressed",
+        "offline",
+        "not_indexed",
+        "encrypted",
+    ]
+
+    def __init__(self, filepath: str = None):
+        self.filepath = filepath
+
+    def read_uint16(self, offset: int) -> int:
+        return struct.unpack("H", self.buf[offset : offset + 2])[0]
+
+    def read_uint32(self, offset: int) -> int:
+        return struct.unpack("I", self.buf[offset : offset + 4])[0]
+
+    def read_stringz(self, offset: int) -> bytes:
+        return self.buf[offset : self.buf.index(b"\x00", offset)]
+
+    def read_string16(self, offset: int) -> Tuple[int, str]:
+        length = self.read_uint16(offset) * 2
+        ret = self.buf[offset + 2 : offset + 2 + length].decode("utf16")
+        return offset + 2 + length, ret
+
+    def run(self) -> Dict[str, Any]:
+        with open(self.filepath, "rb") as f:
+            if HAVE_LNK3:
+                try:
+                    data = LnkParse3.lnk_file(f).get_json(get_all=True)
+                    if "creation_time" in data.get("header", {}) and data["header"].get("creation_time"):
+                        data["header"]["creation_time"] = data["header"]["creation_time"].strftime("%Y-%m-%d %H:%S:%M")
+                    if "accessed_time" in data.get("header", {}) and data["header"].get("accessed_time"):
+                        data["header"]["accessed_time"] = data["header"]["accessed_time"].strftime("%Y-%m-%d %H:%S:%M")
+                    if "modified_time" in data.get("header", {}) and data["header"].get("modified_time"):
+                        data["header"]["modified_time"] = data["header"]["modified_time"].strftime("%Y-%m-%d %H:%S:%M")
+                except (LnkParserError, struct.error) as e:
+                    log.error("Parse LNK error: %s", str(e))
+                    return {}
+                # breaks json due to datetime objects
+                if "target" in data:
+                    del data["target"]
+                return data
+            else:
+                self.buf = f.read()
+                if len(self.buf) < ctypes.sizeof(LnkHeader):
+                    log.warning("Provided .lnk file is corrupted or incomplete")
+                    return
+
+                header = LnkHeader.from_buffer_copy(self.buf[: ctypes.sizeof(LnkHeader)])
+                if header.signature.copy() != self.signature or header.guid.copy() != self.guid:
+                    return
+
+                ret = {"flags": {}, "attrs": []}
+
+                for x in range(7):
+                    ret["flags"][self.flags[x]] = bool(header.flags & (1 << x))
+
+                for x in range(14):
+                    if header.attrs & (1 << x):
+                        ret["attrs"].append(self.attrs[x])
+
+                offset = 78 + self.read_uint16(76)
+                if len(self.buf) < offset + 28:
+                    log.warning("Provided .lnk file is corrupted or incomplete")
+                    return
+
+                off = LnkEntry.from_buffer_copy(self.buf[offset : offset + 28])
+
+                # Local volume.
+                if off.volume_flags & 1:
+                    ret["basepath"] = self.read_stringz(offset + off.base_path)
+                # Network volume.
+                else:
+                    try:
+                        ret["net_share"] = self.read_stringz(offset + off.net_volume + 20)
+                    except (TypeError, ValueError):
+                        log.error("parse_lnk: subsection not found")
+
+                    network_drive = self.read_uint32(offset + off.net_volume + 12)
+                    if network_drive:
+                        ret["network_drive"] = self.read_stringz(offset + network_drive)
+
+                ret["remaining_path"] = self.read_stringz(offset + off.path_remainder)
+
+                extra = offset + off.length
+                if ret["flags"]["description"]:
+                    extra, ret["description"] = self.read_string16(extra)
+                if ret["flags"]["relapath"]:
+                    extra, ret["relapath"] = self.read_string16(extra)
+                if ret["flags"]["workingdir"]:
+                    extra, ret["workingdir"] = self.read_string16(extra)
+                if ret["flags"]["cmdline"]:
+                    extra, ret["cmdline"] = self.read_string16(extra)
+                if ret["flags"]["icon"]:
+                    extra, ret["icon"] = self.read_string16(extra)
+                return ret
diff --git a/lib/cuckoo/common/integrations/parse_office.py b/lib/cuckoo/common/integrations/parse_office.py
new file mode 100644
index 00000000000..f2b907027a2
--- /dev/null
+++ b/lib/cuckoo/common/integrations/parse_office.py
@@ -0,0 +1,376 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation, Optiv, Inc. (brad.spengler@optiv.com)
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+import contextlib
+import hashlib
+import logging
+import os
+import xml.dom.minidom
+import zipfile
+from typing import Any, Dict
+
+import lib.cuckoo.common.integrations.vbadeobf as vbadeobf
+from lib.cuckoo.common.config import Config
+from lib.cuckoo.common.constants import CUCKOO_ROOT
+from lib.cuckoo.common.objects import File
+from lib.cuckoo.common.path_utils import path_exists, path_mkdir, path_read_file, path_write_file
+from lib.cuckoo.common.utils import convert_to_printable
+
+try:
+    import olefile
+
+    HAVE_OLEFILE = True
+except ImportError:
+    HAVE_OLEFILE = False
+    print("Missed olefile dependency: poetry run pip install olefile")
+
+try:
+    from csv import Error as csv_error
+
+    import oletools.olevba
+    from oletools import oleobj
+    from oletools.msodde import process_file as extract_dde
+    from oletools.oleid import OleID
+    from oletools.olevba import UnexpectedDataError, VBA_Parser, detect_autoexec, detect_hex_strings, detect_suspicious, filter_vba
+    from oletools.rtfobj import RtfObjParser, is_rtf
+
+    # disable this noisy logging
+    old_enable_logging = oletools.olevba.enable_logging
+
+    def enable_logging():
+        log = logging.getLogger(__name__)
+        log.setLevel(logging.CRITICAL)
+
+    oletools.olevba.enable_logging = enable_logging
+
+    HAVE_OLETOOLS = True
+except ImportError:
+    print("Missed oletools dependency: poetry run pip install olefile")
+    HAVE_OLETOOLS = False
+
+logging.getLogger("msodde").setLevel(logging.CRITICAL)
+logging.getLogger("olevba").setLevel(logging.CRITICAL)
+logging.getLogger("crypto").setLevel(logging.CRITICAL)
+
+processing_conf = Config("processing")
+
+HAVE_VBA2GRAPH = False
+if not processing_conf.vba2graph.on_demand:
+    from lib.cuckoo.common.integrations.vba2graph import HAVE_VBA2GRAPH, vba2graph_func
+
+HAVE_XLM_DEOBF = False
+if not processing_conf.xlsdeobf.on_demand:
+    from lib.cuckoo.common.integrations.XLMMacroDeobfuscator import HAVE_XLM_DEOBF, xlmdeobfuscate
+
+
+log = logging.getLogger(__name__)
+
+
+class Office:
+    """Office Document Static Analysis
+    Supported formats:
+    - Word 97-2003 (.doc, .dot), Word 2007+ (.docm, .dotm)
+    - Excel 97-2003 (.xls), Excel 2007+ (.xlsm, .xlsb)
+    - PowerPoint 97-2003 (.ppt), PowerPoint 2007+ (.pptm, .ppsm)
+    - Word/PowerPoint 2007+ XML (aka Flat OPC)
+    - Word 2003 XML (.xml)
+    - Word/Excel Single File Web Page / MHTML (.mht)
+    - Publisher (.pub)
+    - Rich Text Format (.rtf)
+
+    Office Document Static Analysis
+
+    This class provides methods to perform static analysis on various Office document formats.
+    Supported formats include:
+
+    Attributes:
+        file_path (str): Path to the file to be analyzed.
+        options (Dict[str, str]): Analysis options.
+        task_id (str): Task identifier.
+        sha256 (str): SHA-256 hash of the file.
+
+    Methods:
+        _get_meta(meta) -> Dict[str, Dict[str, str]]:
+            Extracts metadata from OLE files.
+
+        _get_xml_meta(filepath) -> Dict[str, Dict[str, str]]:
+            Extracts metadata from XML files within Office documents.
+
+        _parse_rtf(data: bytes) -> Dict[str, list]:
+            Parses RTF data and extracts embedded objects.
+
+        _parse(filepath: str) -> Dict[str, Any]:
+            Parses an Office document for static information.
+
+        run() -> Dict[str, Any]:
+            Runs the analysis and returns the results.
+
+    """
+
+    def __init__(self, file_path: str, task_id: str, sha256: str, options: Dict[str, str]):
+        self.file_path = file_path
+        self.options = options
+        self.task_id = task_id
+        self.sha256 = sha256
+
+    def _get_meta(self, meta) -> Dict[str, Dict[str, str]]:
+        ret = {"SummaryInformation": {}}
+        for prop in meta.SUMMARY_ATTRIBS:
+            value = getattr(meta, prop)
+            if not value:
+                continue
+            ret["SummaryInformation"][prop] = convert_to_printable(str(value))
+        ret["DocumentSummaryInformation"] = {}
+        for prop in meta.DOCSUM_ATTRIBS:
+            value = getattr(meta, prop)
+            if not value:
+                continue
+            ret["DocumentSummaryInformation"][prop] = convert_to_printable(str(value))
+        return ret
+
+    def _get_xml_meta(self, filepath) -> Dict[str, Dict[str, str]]:
+        try:
+            with zipfile.ZipFile(filepath) as zfile:
+                core = xml.dom.minidom.parseString(zfile.read("docProps/core.xml"))
+                app = xml.dom.minidom.parseString(zfile.read("docProps/app.xml"))
+        except zipfile.BadZipFile:
+            return {}
+
+        metares = {"SummaryInformation": {}, "DocumentSummaryInformation": {}}
+
+        for elem in core._get_documentElement().childNodes:
+            try:
+                if isinstance(elem, xml.dom.minidom.Text):
+                    continue
+
+                n = elem._get_tagName()
+                data = core.getElementsByTagName(n)
+                if not data:
+                    continue
+
+                data = data[0].childNodes
+                if not data:
+                    continue
+
+                if not hasattr(data[0], "data"):
+                    continue
+                metares["SummaryInformation"][n.split(":")[1]] = convert_to_printable(data[0].data)
+            except (IndexError, AttributeError) as e:
+                log.exception(e)
+
+        for elem in app._get_documentElement().childNodes:
+            try:
+                n = elem._get_tagName()
+                data = app.getElementsByTagName(n)
+                if not data:
+                    continue
+
+                data = data[0].childNodes
+                if not data:
+                    continue
+
+                if not hasattr(data[0], "data"):
+                    continue
+                metares["DocumentSummaryInformation"][n] = convert_to_printable(data[0].data)
+            except (IndexError, AttributeError) as e:
+                log.exception(e)
+
+        return metares
+
+    def _parse_rtf(self, data: bytes) -> Dict[str, list]:
+        results = {}
+        rtfp = RtfObjParser(data)
+        rtfp.parse()
+        save_dir = os.path.join(CUCKOO_ROOT, "storage", "analyses", self.task_id, "rtf_objects")
+        if rtfp.objects and not path_exists(save_dir):
+            path_mkdir(save_dir, exist_ok=True)
+        for rtfobj in rtfp.objects:
+            results.setdefault(str(rtfobj.format_id), [])
+            temp_dict = {"class_name": "", "size": "", "filename": "", "type_embed": "", "CVE": "", "sha256": "", "index": ""}
+
+            if rtfobj.is_package:
+                log.debug("Saving file from OLE Package in object #%d:", rtfobj.format_id)
+                log.debug("  Filename = %s", rtfobj.filename)
+                log.debug("  Source path = %s", rtfobj.src_path)
+                log.debug("  Temp path = %s", rtfobj.temp_path)
+                sha256 = hashlib.sha256(rtfobj.olepkgdata).hexdigest()
+                fname = convert_to_printable(rtfobj.filename) if rtfobj.filename else sha256
+                log.debug("  Saving to file %s", sha256)
+                temp_dict["filename"] = fname
+                _ = path_write_file(os.path.join(save_dir, sha256), rtfobj.olepkgdata)
+                temp_dict["sha256"] = sha256
+                temp_dict["size"] = len(rtfobj.olepkgdata)
+                # temp_dict["source_path"] = convert_to_printable(rtfobj.src_path))
+            elif rtfobj.is_ole and rtfobj.oledata_size is not None:
+                ole_object_mapping = {oleobj.OleObject.TYPE_EMBEDDED: "Embedded", oleobj.OleObject.TYPE_LINKED: "Linked"}
+                temp_dict["type_embed"] = ole_object_mapping.get(rtfobj.format_id, "Unknown")
+                if getattr(rtfobj, "clsid", None) is not None and "CVE" in rtfobj.clsid_desc:
+                    temp_dict["CVE"] = rtfobj.clsid_desc
+                # Detect OLE2Link exploit
+                # http://www.kb.cert.org/vuls/id/921560
+                if rtfobj.class_name == b"OLE2Link":
+                    temp_dict["CVE"] = "Possibly an exploit for the OLE2Link vulnerability (VU#921560, CVE-2017-0199)"
+                log.debug("Saving file embedded in OLE object #%d:", rtfobj.format_id)
+                log.debug("  format_id  = %d", rtfobj.format_id)
+                log.debug("  class name = %s", rtfobj.class_name)
+                log.debug("  data size  = %d", rtfobj.oledata_size)
+                class_name = rtfobj.class_name.decode("ascii", "ignore").encode("ascii")
+                temp_dict["class_name"] = convert_to_printable(class_name)
+                temp_dict["size"] = rtfobj.oledata_size
+                # set a file extension according to the class name:
+                class_name = rtfobj.class_name.lower()
+                if class_name.startswith(b"word"):
+                    ext = "doc"
+                elif class_name.startswith(b"package"):
+                    ext = "package"
+                else:
+                    ext = "bin"
+                sha256 = hashlib.sha256(rtfobj.oledata).hexdigest()
+                temp_dict["filename"] = f"object_{rtfobj.start:08X}.{ext}"
+                save_path = os.path.join(save_dir, sha256)
+                log.debug("  Saving to file %s", sha256)
+                _ = path_write_file(save_path, rtfobj.oledata)
+                temp_dict["sha256"] = sha256
+            else:
+                log.debug("Saving raw data in object #%d:", rtfobj.format_id)
+                temp_dict["filename"] = f"object_{rtfobj.start:08X}.raw"
+                sha256 = hashlib.sha256(rtfobj.rawdata).hexdigest()
+                save_path = os.path.join(save_dir, sha256)
+                log.debug("  Saving object to file %s", sha256)
+                _ = path_write_file(save_path, rtfobj.rawdata)
+                temp_dict["sha256"] = sha256
+                temp_dict["size"] = len(rtfobj.rawdata)
+            temp_dict["index"] = f"{rtfobj.start:08X}h"
+            results[str(rtfobj.format_id)].append(temp_dict)
+
+        return results
+
+    def _parse(self, filepath: str) -> Dict[str, Any]:
+        """Parses an office document for static information.
+        @param filepath: Path to the file to be analyzed.
+        @return: results dict or None
+        """
+
+        officeresults = {}
+        if not HAVE_OLETOOLS:
+            return officeresults
+
+        vba = False
+        if is_rtf(filepath):
+            try:
+                contents = path_read_file(filepath)
+                temp_results = self._parse_rtf(contents)
+                if temp_results:
+                    officeresults["rtf"] = temp_results
+            except Exception as e:
+                log.exception(e)
+        else:
+            try:
+                vba = VBA_Parser(filepath)
+            except ValueError as e:
+                log.error("Error VBA_Parser: %s", str(e))
+            except Exception:
+                # ToDo really return
+                return officeresults
+        try:
+            # extract DDE
+            dde = extract_dde(filepath)
+            if dde:
+                officeresults["dde"] = convert_to_printable(dde)
+        except (csv_error, UnicodeDecodeError):
+            pass
+        except AttributeError:
+            log.warning("OleFile library bug: AttributeError! fix: poetry run pip install olefile")
+        except Exception as e:
+            log.exception(e)
+
+        officeresults["Metadata"] = {}
+        macro_folder = os.path.join(CUCKOO_ROOT, "storage", "analyses", self.task_id, "macros")
+        if olefile.isOleFile(filepath):
+            try:
+                with olefile.OleFileIO(filepath) as ole:
+                    meta = ole.get_metadata()
+                    # must be left this way or we won't see the results
+                    officeresults["Metadata"] = self._get_meta(meta)
+            except AttributeError as e:
+                log.error("Problems with olefile library: %s", e)
+        else:
+            with contextlib.suppress(KeyError):
+                officeresults["Metadata"] = self._get_xml_meta(filepath)
+        if vba and vba.detect_vba_macros():
+            officeresults["Metadata"]["HasMacros"] = "Yes"
+            # Create IOC and category vars. We do this before processing the
+            # macro(s) to avoid overwriting data when there are multiple
+            # macros in a single file.
+            officeresults["Macro"] = {"Code": {}, "info": {}, "Analysis": {}}
+            ctr = 0
+
+            try:
+                for _, _, vba_filename, vba_code in vba.extract_macros():
+                    vba_code = filter_vba(vba_code)
+                    if vba_code.strip() != "":
+                        # Handle all macros
+                        ctr += 1
+                        outputname = f"Macro{ctr}"
+                        officeresults["Macro"]["Code"][outputname] = [
+                            (convert_to_printable(vba_filename), convert_to_printable(vba_code))
+                        ]
+                        if not path_exists(macro_folder):
+                            path_mkdir(macro_folder)
+                        macro_file = os.path.join(macro_folder, outputname)
+                        _ = path_write_file(macro_file, convert_to_printable(vba_code), mode="text")
+                        officeresults["Macro"]["info"][outputname] = {"yara_macro": File(macro_file).get_yara(category="macro")}
+                        officeresults["Macro"]["info"][outputname]["yara_macro"].extend(File(macro_file).get_yara(category="CAPE"))
+
+                        try:
+                            iocs = vbadeobf.parse_macro(vba_code)
+                            for pattern, match in iocs:
+                                officeresults["Macro"]["Analysis"].setdefault("IOCs", []).append((pattern, match))
+                        except ValueError as e:
+                            log.error("Can't parse macros for %s - %s ", filepath, str(e))
+                        except Exception as e:
+                            log.exception(e)
+                        for keyword, description in detect_autoexec(vba_code):
+                            officeresults["Macro"]["Analysis"].setdefault("AutoExec", []).append(
+                                (keyword.replace(".", "_"), description)
+                            )
+                        for keyword, description in detect_suspicious(vba_code):
+                            officeresults["Macro"]["Analysis"].setdefault("Suspicious", []).append(
+                                (keyword.replace(".", "_"), description)
+                            )
+                        for encoded, decoded in detect_hex_strings(vba_code):
+                            officeresults["Macro"]["Analysis"].setdefault("HexStrings", []).append(
+                                (encoded, convert_to_printable(decoded))
+                            )
+            except (AssertionError, UnexpectedDataError, ValueError, AttributeError) as e:
+                log.warning("Macros in parse_office.py", e)
+
+            if HAVE_VBA2GRAPH:
+                vba2graph_func(filepath, self.task_id, self.sha256)
+
+        else:
+            officeresults["Metadata"]["HasMacros"] = "No"
+
+        try:
+            for indicator in OleID(filepath).check():
+                if indicator.value and indicator.name in {"Word Document", "Excel Workbook", "PowerPoint Presentation"}:
+                    officeresults["Metadata"]["DocumentType"] = indicator.name
+        except Exception as e:
+            log.exception(e)
+
+        if HAVE_XLM_DEOBF:
+            tmp_xlmmacro = xlmdeobfuscate(filepath, self.task_id, self.options.get("password", ""))
+            if tmp_xlmmacro:
+                officeresults["XLMMacroDeobfuscator"] = tmp_xlmmacro
+
+        return officeresults
+
+    def run(self) -> Dict[str, Any]:
+        """Run analysis.
+        @return: analysis results dict or None.
+        """
+        if not path_exists(self.file_path):
+            log.error("parse_office File not found: %s", self.file_path)
+            return {}
+        return self._parse(self.file_path)
diff --git a/lib/cuckoo/common/integrations/parse_pdf.py b/lib/cuckoo/common/integrations/parse_pdf.py
new file mode 100644
index 00000000000..3038f0287be
--- /dev/null
+++ b/lib/cuckoo/common/integrations/parse_pdf.py
@@ -0,0 +1,74 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation, Optiv, Inc. (brad.spengler@optiv.com)
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+import json
+import logging
+from typing import Any, Dict
+
+from lib.cuckoo.common.integrations.pdfminer import pdfminer_parse
+from lib.cuckoo.common.integrations.peepdf import peepdf_parse
+from lib.cuckoo.common.path_utils import path_exists
+
+try:
+    HAVE_PDF = True
+    from lib.cuckoo.common.integrations.pdftools.pdfid import PDFiD, PDFiD2JSON
+except ImportError:
+    HAVE_PDF = False
+
+
+log = logging.getLogger(__name__)
+
+
+class PDF:
+    """PDF Analysis."""
+
+    def __init__(self, file_path: str):
+        self.file_path = file_path
+
+    def _parse(self, filepath: str) -> Dict[str, Any]:
+        """Parses the PDF for static information.
+        @param filepath: Path to file to be analyzed.
+        @return: results dict or None.
+        """
+        if not HAVE_PDF:
+            return {}
+
+        # Load the PDF with PDFiD and convert it to JSON for processing
+        pdf_data = PDFiD(filepath, False, True)
+        try:
+            pdf_json = PDFiD2JSON(pdf_data, True)
+            pdfid_data = json.loads(pdf_json)[0]
+        except IndexError as e:
+            log.error("parse_pdf: %s", str(e))
+            return {}
+
+        pdfresult = {
+            "Info": {
+                "PDF Header": pdfid_data["pdfid"]["header"],
+                "Total Entropy": pdfid_data["pdfid"]["totalEntropy"],
+                "Entropy In Streams": pdfid_data["pdfid"]["streamEntropy"],
+                "Entropy Out Streams": pdfid_data["pdfid"]["nonStreamEntropy"],
+                "Count %% EOF": pdfid_data["pdfid"]["countEof"],
+                "Data After EOF": pdfid_data["pdfid"]["countChatAfterLastEof"],
+            },
+            # Note, PDFiD doesn't interpret some dates properly, specifically it doesn't
+            # seem to be able to properly represent time zones that involve fractions of
+            # an hour
+            "Dates": pdfid_data["pdfid"]["dates"]["date"],
+            # Get keywords, counts and format.
+            "Keywords": {str(keyword["name"]): keyword["count"] for keyword in pdfid_data["pdfid"]["keywords"]["keyword"]},
+        }
+        pdfresult = peepdf_parse(self.file_path, pdfresult)
+        pdfresult = pdfminer_parse(self.file_path, pdfresult)
+
+        return pdfresult
+
+    def run(self) -> Dict[str, Any]:
+        """Run analysis.
+        @return: analysis results dict or None.
+        """
+        if not path_exists(self.file_path):
+            return None
+        log.debug("Starting to load PDF")
+        return self._parse(self.file_path)
diff --git a/lib/cuckoo/common/integrations/parse_pe.py b/lib/cuckoo/common/integrations/parse_pe.py
new file mode 100644
index 00000000000..e21ede0a2ba
--- /dev/null
+++ b/lib/cuckoo/common/integrations/parse_pe.py
@@ -0,0 +1,969 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation, Optiv, Inc. (brad.spengler@optiv.com)
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+import array
+import base64
+import binascii
+import hashlib
+import itertools
+import json
+import logging
+import math
+import struct
+from contextlib import suppress
+from datetime import datetime
+from io import BytesIO
+from pathlib import Path
+from typing import Dict, List, Tuple
+
+from PIL import Image
+
+from lib.cuckoo.common.config import Config
+from lib.cuckoo.common.constants import CUCKOO_ROOT
+from lib.cuckoo.common.icon import PEGroupIconDir
+from lib.cuckoo.common.path_utils import path_exists, path_read_file
+
+try:
+    import cryptography
+    from cryptography.hazmat.backends.openssl.backend import backend
+    from cryptography.hazmat.primitives import hashes
+
+    HAVE_CRYPTO = True
+except ImportError:
+    HAVE_CRYPTO = False
+    print("Missed cryptography library: poetry install")
+
+try:
+    import magic
+
+    HAVE_MAGIC = True
+except ImportError:
+    HAVE_MAGIC = False
+
+
+try:
+    import pefile
+
+    HAVE_PEFILE = True
+except ImportError:
+    HAVE_PEFILE = False
+
+try:
+    import re2 as re
+except ImportError:
+    import re
+
+process_cfg = Config("processing")
+
+HAVE_USERDB = False
+if process_cfg.CAPE.userdb_signature:
+    try:
+        import peutils
+
+        userdb_path = Path(CUCKOO_ROOT, "data", "peutils", "UserDB.TXT")
+        userdb_signatures = peutils.SignatureDatabase()
+        if userdb_path.exists():
+            userdb_signatures.load(userdb_path)
+            HAVE_USERDB = True
+    except (ImportError, AttributeError) as e:
+        print(f"Failed to initialize peutils: {e}")
+
+
+log = logging.getLogger(__name__)
+
+IMAGE_DOS_SIGNATURE = 0x5A4D
+IMAGE_NT_SIGNATURE = 0x00004550
+OPTIONAL_HEADER_MAGIC_PE = 0x10B
+OPTIONAL_HEADER_MAGIC_PE_PLUS = 0x20B
+IMAGE_FILE_EXECUTABLE_IMAGE = 0x0002
+IMAGE_FILE_MACHINE_I386 = 0x014C
+IMAGE_FILE_MACHINE_AMD64 = 0x8664
+DOS_HEADER_LIMIT = 0x40
+PE_HEADER_LIMIT = 0x200
+
+
+def IsPEImage(buf: bytes, size: int = False) -> bool:
+    if not buf:
+        return False
+    if not size:
+        size = len(buf)
+    if size < DOS_HEADER_LIMIT:
+        return False
+    dos_header = buf[:DOS_HEADER_LIMIT]
+    nt_headers = None
+
+    e_lfanew = False
+    if len(dos_header[:64]) == 64:
+        # Check for sane value in e_lfanew
+        e_lfanew = struct.unpack("<L", dos_header[60:64])[0]
+    if not e_lfanew or e_lfanew > PE_HEADER_LIMIT:
+        offset = 0
+        while offset < PE_HEADER_LIMIT - 86:
+            # TODO
+            try:
+                machine_probe = struct.unpack("<H", buf[offset : offset + 2])[0]
+            except struct.error:
+                machine_probe = ""
+            if machine_probe and machine_probe in {IMAGE_FILE_MACHINE_I386, IMAGE_FILE_MACHINE_AMD64}:
+                nt_headers = buf[offset - 4 : offset + 252]
+                break
+            offset += 2
+    else:
+        nt_headers = buf[e_lfanew : e_lfanew + 256]
+
+    if not nt_headers:
+        return False
+
+    try:
+        # if ((pNtHeader->FileHeader.Machine == 0) || (pNtHeader->FileHeader.SizeOfOptionalHeader == 0 || pNtHeader->OptionalHeader.SizeOfHeaders == 0))
+        if 0 in (
+            struct.unpack("<H", nt_headers[4:6])[0],
+            struct.unpack("<H", nt_headers[20:22])[0],
+            struct.unpack("<H", nt_headers[84:86])[0],
+        ):
+            return False
+
+        # if (!(pNtHeader->FileHeader.Characteristics & IMAGE_FILE_EXECUTABLE_IMAGE))
+        if struct.unpack("<H", nt_headers[22:24])[0] & IMAGE_FILE_EXECUTABLE_IMAGE == 0:
+            return False
+
+        # if (pNtHeader->FileHeader.SizeOfOptionalHeader & (sizeof (ULONG_PTR) - 1))
+        if struct.unpack("<H", nt_headers[20:22])[0] & 3 != 0:
+            return False
+
+        # if ((pNtHeader->OptionalHeader.Magic != IMAGE_NT_OPTIONAL_HDR32_MAGIC) && (pNtHeader->OptionalHeader.Magic != IMAGE_NT_OPTIONAL_HDR64_MAGIC))
+        if struct.unpack("<H", nt_headers[24:26])[0] not in {OPTIONAL_HEADER_MAGIC_PE, OPTIONAL_HEADER_MAGIC_PE_PLUS}:
+            return False
+
+    except struct.error:
+        return False
+
+    # After passing the above tests it should be safe to assume it's a PE image
+
+    return True
+
+
+class PortableExecutable:
+    """PE analysis."""
+
+    def __init__(self, file_path: str = False, data: bytes = False):
+        """@param file_path: file path."""
+        if file_path:
+            self.file_path = file_path if isinstance(file_path, str) else file_path.decode()
+        self._file_data = None
+        self.pe = None
+        self.HAVE_PE = False
+        try:
+            if data:
+                self.pe = pefile.PE(data=data)
+            else:
+                self.pe = pefile.PE(self.file_path)
+            self.HAVE_PE = True
+        except Exception as e:
+            log.debug("PE type not recognised: %s", e)
+        # self.results = results
+
+    @property
+    def file_data(self):
+        if not self._file_data and path_exists(self.file_path):
+            self._file_data = path_read_file(self.file_path)
+        return self._file_data
+
+    def is_64bit(self) -> bool:
+        """Determines if a PE is 64bit.
+        @return: True if 64bit, False if not
+        """
+        if not self.pe:
+            return None
+        if self.pe.FILE_HEADER.Machine == IMAGE_FILE_MACHINE_AMD64:
+            return True
+        return False
+
+    # Obtained from
+    # https://github.com/erocarrera/pefile/blob/master/pefile.py
+    # Copyright Ero Carrera and released under the MIT License:
+    # https://github.com/erocarrera/pefile/blob/master/LICENSE
+
+    def get_entropy(self, data: bytes) -> float:
+        """Computes the entropy value for the provided data
+        @param data: data to be analyzed.
+        @return: entropy value as float.
+        """
+        entropy = 0.0
+
+        if not data:
+            return entropy
+
+        occurrences = array.array("L", [0] * 256)
+
+        for x in data:
+            occurrences[x] += 1
+
+        for x in occurrences:
+            if x:
+                p_x = float(x) / len(data)
+                entropy -= p_x * math.log(p_x, 2)
+
+        return entropy
+
+    def get_peid_signatures(self, pe: pefile.PE) -> list:
+        """Gets PEID signatures.
+        @return: matched signatures or None.
+        """
+        if not pe or not HAVE_USERDB:
+            return None
+
+        try:
+            result = userdb_signatures.match_all(pe, ep_only=True)
+            if result:
+                return list(result)
+        except Exception as e:
+            log.exception(e)
+
+        return None
+
+    def get_overlay_raw(self) -> int:
+        """Get information on the PE overlay
+        @return: overlay offset or None.
+        """
+        if not self.pe:
+            return None
+
+        return (
+            self.pe.sections[self.pe.FILE_HEADER.NumberOfSections - 1].PointerToRawData
+            + self.pe.sections[self.pe.FILE_HEADER.NumberOfSections - 1].SizeOfRawData
+        )
+
+    def get_overlay(self, pe: pefile.PE) -> dict:
+        """Get information on the PE overlay
+        @return: overlay dict or None.
+        """
+        if not pe:
+            return None
+
+        try:
+            off = pe.get_overlay_data_start_offset()
+        except Exception:
+            log.error(
+                "Your version of pefile is out of date.  "
+                "Please update to the latest version on https://github.com/erocarrera/pefile"
+            )
+            return None
+
+        if off is None:
+            return None
+        return {"offset": f"0x{off:08x}", "size": f"0x{len(pe.__data__) - off:08x}"}
+
+    def get_reported_checksum(self, pe: pefile.PE) -> str:
+        """Get checksum from optional header
+        @return: checksum or None.
+        """
+        return f"0x{pe.OPTIONAL_HEADER.CheckSum:08x}" if pe else None
+
+    def get_actual_checksum(self, pe: pefile.PE) -> str:
+        """Get calculated checksum of PE
+        @return: checksum or None.
+        """
+        if not pe:
+            return None
+
+        try:
+            return f"0x{pe.generate_checksum():08x}"
+        except Exception:
+            return None
+
+    def get_osversion(self, pe: pefile.PE) -> str:
+        """Get minimum required OS version for PE to execute
+        @return: minimum OS version or None.
+        """
+        return f"{pe.OPTIONAL_HEADER.MajorOperatingSystemVersion}.{pe.OPTIONAL_HEADER.MinorOperatingSystemVersion}" if pe else None
+
+    # This function is duplicated
+    def _get_filetype(self, data: bytes) -> str:
+        """Gets filetype, uses libmagic if available.
+        @param data: data to be analyzed.
+        @return: file type or None.
+        """
+        if not HAVE_MAGIC:
+            return None
+
+        if not data:
+            return None
+
+        try:
+            ms = magic.open(magic.MAGIC_SYMLINK)
+            ms.load()
+            file_type = ms.buffer(data)
+        except Exception:
+            try:
+                file_type = magic.from_buffer(data)
+            except Exception:
+                return None
+        finally:
+            with suppress(Exception):
+                ms.close()
+        return file_type
+
+    def get_resources(self, pe: pefile.PE) -> List[Dict[str, str]]:
+        """Get resources.
+        @return: resources dict or None.
+        """
+        if not pe:
+            return None
+
+        resources = []
+
+        if not hasattr(pe, "DIRECTORY_ENTRY_RESOURCE"):
+            return resources
+
+        for resource_type in pe.DIRECTORY_ENTRY_RESOURCE.entries:
+            try:
+                if resource_type.name is not None:
+                    name = str(resource_type.name)
+                else:
+                    name = str(pefile.RESOURCE_TYPE.get(resource_type.struct.Id))
+                if hasattr(resource_type, "directory"):
+                    for resource_id in resource_type.directory.entries:
+                        if hasattr(resource_id, "directory"):
+                            for resource_lang in resource_id.directory.entries:
+                                data = pe.get_data(resource_lang.data.struct.OffsetToData, resource_lang.data.struct.Size)
+                                resources.append(
+                                    {
+                                        "name": name,
+                                        "offset": f"0x{resource_lang.data.struct.OffsetToData:08x}",
+                                        "size": f"0x{resource_lang.data.struct.Size:08x}",
+                                        "filetype": self._get_filetype(data),
+                                        "language": pefile.LANG.get(resource_lang.data.lang),
+                                        "sublanguage": pefile.get_sublang_name_for_lang(
+                                            resource_lang.data.lang, resource_lang.data.sublang
+                                        ),
+                                        "entropy": f"{float(self.get_entropy(data)):.02f}",
+                                    }
+                                )
+            except pefile.PEFormatError as e:
+                log.debug("get_resources error: %s", str(e))
+            except Exception as e:
+                log.exception(e)
+                continue
+
+        return resources
+
+    def get_machine_type(self, pe: pefile.PE) -> str:
+        if not pe or not hasattr(pe, "FILE_HEADER"):
+            return None
+
+        try:
+            machine_val = pe.FILE_HEADER.Machine
+            return pefile.MACHINE_TYPE.get(machine_val, hex(machine_val))
+        except Exception as e:
+            log.exception(e)
+
+        return None
+
+    def get_pdb_path(self, pe: pefile.PE) -> str:
+        if not pe or not hasattr(pe, "DIRECTORY_ENTRY_DEBUG"):
+            return None
+
+        try:
+            for dbg in pe.DIRECTORY_ENTRY_DEBUG:
+                dbgst = dbg.struct
+                dbgdata = pe.__data__[dbgst.PointerToRawData : dbgst.PointerToRawData + dbgst.SizeOfData]
+
+                if dbgst.Type == 2:  # CODEVIEW
+                    if dbgdata[:4] == b"RSDS":
+                        return dbgdata[24:].decode("latin-1").rstrip("\0")
+                    elif dbgdata[:4] == b"NB10":
+                        return dbgdata[16:].decode("latin-1").rstrip("\0")
+                elif dbgst.Type == 4:  # MISC
+                    if len(dbgdata) == 9:
+                        length = struct.unpack_from("IIB", dbgdata)[1]
+                        return dbgdata[12:length].decode("latin-1").rstrip("\0")
+        except Exception as e:
+            log.exception(e)
+
+        return None
+
+    def get_imported_symbols(self, pe: pefile.PE) -> Dict[str, dict]:
+        """Gets imported symbols.
+        @return: imported symbols dict or None.
+        """
+        if not pe:
+            return None
+
+        imports = {}
+
+        if not hasattr(pe, "DIRECTORY_ENTRY_IMPORT"):
+            return imports
+
+        for entry in pe.DIRECTORY_ENTRY_IMPORT:
+            try:
+                symbols = [
+                    {"address": hex(imported_symbol.address), "name": imported_symbol.name.decode("latin-1")}
+                    for imported_symbol in entry.imports
+                    if imported_symbol.name and imported_symbol.address
+                ]
+
+                dll_name = entry.dll.decode("latin-1").split(".", 1)[0]
+                if dll_name in imports:
+                    imports[dll_name]["imports"].extend(symbols)
+                else:
+                    imports[dll_name] = {
+                        "dll": entry.dll.decode("latin-1"),
+                        "imports": symbols,
+                    }
+            except Exception as e:
+                log.exception(e)
+                continue
+        return imports
+
+    def get_exported_dll_name(self, pe: pefile.PE) -> str:
+        """Gets exported DLL name, if any
+        @return: exported DLL name as string or None.
+        """
+        if not pe:
+            return None
+
+        if hasattr(pe, "DIRECTORY_ENTRY_EXPORT"):
+            dllname = pe.get_string_at_rva(pe.DIRECTORY_ENTRY_EXPORT.struct.Name)
+            return dllname.decode("latin-1")
+        return None
+
+    def get_exported_symbols(self, pe: pefile.PE) -> List[dict]:
+        """Gets exported symbols.
+        @return: list of dicts of exported symbols or None.
+        """
+        if not pe:
+            return None
+
+        exports = []
+
+        if hasattr(pe, "DIRECTORY_ENTRY_EXPORT"):
+            exports.extend(
+                {
+                    "address": hex(pe.OPTIONAL_HEADER.ImageBase + exported_symbol.address),
+                    "name": exported_symbol.name.decode("latin-1") if exported_symbol.name else "",
+                    "ordinal": exported_symbol.ordinal,
+                }
+                for exported_symbol in pe.DIRECTORY_ENTRY_EXPORT.symbols
+            )
+
+        return exports
+
+    def get_directory_entries(self, pe: pefile.PE) -> List[Dict[str, str]]:
+        """Gets image directory entries.
+        @return: directory entries dict or None.
+        """
+        return (
+            [
+                {"name": entry.name, "virtual_address": f"0x{entry.VirtualAddress:08x}", "size": f"0x{entry.Size:08x}"}
+                for entry in pe.OPTIONAL_HEADER.DATA_DIRECTORY
+            ]
+            if pe
+            else None
+        )
+
+    def _convert_section_characteristics(self, val: int) -> str:
+        flags = (
+            "",
+            "",
+            "",
+            "IMAGE_SCN_TYPE_NO_PAD",
+            "",
+            "IMAGE_SCN_CNT_CODE",
+            "IMAGE_SCN_CNT_INITIALIZED_DATA",
+            "IMAGE_SCN_CNT_UNINITIALIZED_DATA",
+            "IMAGE_SCN_LNK_OTHER",
+            "IMAGE_SCN_LNK_INFO",
+            "",
+            "IMAGE_SCN_LNK_REMOVE",
+            "IMAGE_SCN_LNK_COMDAT",
+            "",
+            "IMAGE_SCN_NO_DEFER_SPEC_EXC",
+            "IMAGE_SCN_GPREL",
+            "",
+            "IMAGE_SCN_MEM_PURGEABLE",
+            "IMAGE_SCN_MEM_LOCKED",
+            "IMAGE_SCN_MEM_PRELOAD",
+            # alignment bytes
+            "",
+            "",
+            "",
+            "",
+            "IMAGE_SCN_LNK_NRELOC_OVFL",
+            "IMAGE_SCN_MEM_DISCARDABLE",
+            "IMAGE_SCN_MEM_NOT_CACHED",
+            "IMAGE_SCN_MEM_NOT_PAGED",
+            "IMAGE_SCN_MEM_SHARED",
+            "IMAGE_SCN_MEM_EXECUTE",
+            "IMAGE_SCN_MEM_READ",
+            "IMAGE_SCN_MEM_WRITE",
+        )
+        alignment = (
+            "",
+            "IMAGE_SCN_ALIGN_1BYTES",
+            "IMAGE_SCN_ALIGN_2BYTES",
+            "IMAGE_SCN_ALIGN_4BYTES",
+            "IMAGE_SCN_ALIGN_8BYTES",
+            "IMAGE_SCN_ALIGN_16BYTES",
+            "IMAGE_SCN_ALIGN_32BYTES",
+            "IMAGE_SCN_ALIGN_64BYTES",
+            "IMAGE_SCN_ALIGN_128BYTES",
+            "IMAGE_SCN_ALIGN_256BYTES",
+            "IMAGE_SCN_ALIGN_512BYTES",
+            "IMAGE_SCN_ALIGN_1024BYTES",
+            "IMAGE_SCN_ALIGN_2048BYTES",
+            "IMAGE_SCN_ALIGN_4096BYTES",
+            "IMAGE_SCN_ALIGN_8192BYTES",
+            "",
+        )
+        tags = [flagstr for idx, flagstr in enumerate(flags) if flags[idx] and (val & (1 << idx))]
+
+        if val & 0x00F00000:
+            alignval = (val >> 20) & 0xF
+            if alignment[alignval]:
+                tags.append(alignment[alignval])
+
+        return "|".join(tags)
+
+    def get_sections(self, pe: pefile.PE) -> List[Dict[str, str]]:
+        """Gets sections.
+        @return: sections dict or None.
+        """
+        if not pe:
+            return None
+
+        sections = []
+
+        for entry in pe.sections:
+            try:
+                sections.append(
+                    {
+                        "name": entry.Name.strip(b"\x00").decode("latin-1"),
+                        "raw_address": f"0x{entry.PointerToRawData:08x}",
+                        "virtual_address": f"0x{entry.VirtualAddress:08x}",
+                        "virtual_size": f"0x{entry.Misc_VirtualSize:08x}",
+                        "size_of_data": f"0x{entry.SizeOfRawData:08x}",
+                        "characteristics": self._convert_section_characteristics(entry.Characteristics),
+                        "characteristics_raw": f"0x{entry.Characteristics:08x}",
+                        "entropy": f"{float(entry.get_entropy()):.02f}",
+                    }
+                )
+            except Exception as e:
+                log.exception(e)
+                continue
+
+        return sections
+
+    def generate_icon_dhash(self, image: Image.Image, hash_size: int = 8) -> str:
+        # based on https://gist.github.com/fr0gger/1263395ebdaf53e67f42c201635f256c
+        image = image.convert("L").resize((hash_size + 1, hash_size), Image.Resampling.LANCZOS)
+
+        difference = []
+
+        for row, col in itertools.product(range(hash_size), range(hash_size)):
+            pixel_left = image.getpixel((col, row))
+            pixel_right = image.getpixel((col + 1, row))
+            difference.append(pixel_left > pixel_right)
+
+        decimal_value = 0
+        hex_string = []
+
+        for index, value in enumerate(difference):
+            if value:
+                decimal_value += 2 ** (index % 8)
+            if index % 8 == 7:
+                hex_string.append(f"{hex(decimal_value):2}"[2:].rjust(2, "0"))
+                decimal_value = 0
+
+        return "".join(hex_string)
+
+    def get_icon_info(self, pe: pefile.PE) -> Tuple[str, str, str, str]:
+        """Get icon in PNG format and information for searching for similar icons
+        @return: tuple of (image data in PNG format encoded as base64, md5 hash of image data, md5 hash of "simplified"
+         image for fuzzy matching)
+        """
+        if not pe or not hasattr(pe, "DIRECTORY_ENTRY_RESOURCE"):
+            return None, None, None, None
+
+        try:
+            idx = [entry.id for entry in pe.DIRECTORY_ENTRY_RESOURCE.entries]
+            if pefile.RESOURCE_TYPE["RT_GROUP_ICON"] not in idx:
+                return None, None, None, None
+            try:
+                rt_group_icon_idx = idx.index(pefile.RESOURCE_TYPE["RT_GROUP_ICON"])
+                rt_group_icon_dir = pe.DIRECTORY_ENTRY_RESOURCE.entries[rt_group_icon_idx]
+                entry = rt_group_icon_dir.directory.entries[0]
+                offset = entry.directory.entries[0].data.struct.OffsetToData
+                size = entry.directory.entries[0].data.struct.Size
+                peicon = PEGroupIconDir(pe.get_memory_mapped_image()[offset : offset + size])
+            except Exception as e:
+                log.error(e)
+                return None, None, None, None
+            bigwidth = 0
+            bigheight = 0
+            bigbpp = 0
+            bigidx = -1
+            iconidx = 0
+            if hasattr(peicon, "icons") and peicon.icons:
+                for idx, icon in enumerate(peicon.icons):
+                    if icon.bWidth >= bigwidth and icon.bHeight >= bigheight and icon.wBitCount >= bigbpp:
+                        bigwidth = icon.bWidth
+                        bigheight = icon.bHeight
+                        bigbpp = icon.wBitCount
+                        bigidx = icon.nID
+                        iconidx = idx
+
+            rt_icon_idx = False
+            rt_icon_idx_tmp = [entry.id for entry in pe.DIRECTORY_ENTRY_RESOURCE.entries]
+            if pefile.RESOURCE_TYPE["RT_ICON"] in rt_icon_idx_tmp:
+                rt_icon_idx = rt_icon_idx_tmp.index(pefile.RESOURCE_TYPE["RT_ICON"])
+            if not isinstance(rt_icon_idx, int):
+                return None, None, None, None
+            rt_icon_dir = pe.DIRECTORY_ENTRY_RESOURCE.entries[rt_icon_idx]
+            for entry in rt_icon_dir.directory.entries:
+                if entry.id == bigidx:
+                    offset = entry.directory.entries[0].data.struct.OffsetToData
+                    size = entry.directory.entries[0].data.struct.Size
+                    icon = peicon.get_icon_file(iconidx, pe.get_memory_mapped_image()[offset : offset + size])
+
+                    with BytesIO() as byteio:
+                        byteio.write(icon)
+                        byteio.seek(0)
+                        try:
+                            with Image.open(byteio) as img, BytesIO() as output:
+                                img.save(output, format="PNG")
+
+                                dhash = self.generate_icon_dhash(img)
+
+                                img = (
+                                    img.resize((8, 8), Image.BILINEAR)
+                                    .convert("RGB")
+                                    .convert("P", palette=Image.ADAPTIVE, colors=2)
+                                    .convert("L")
+                                )
+                                lowval = img.getextrema()[0]
+                                img = img.point(lambda i: 255 if i > lowval else 0).convert("1")
+                                simplified = bytearray(img.getdata())
+
+                                m = hashlib.md5()
+                                m.update(output.getvalue())
+                                fullhash = m.hexdigest()
+
+                                m = hashlib.md5()
+                                m.update(simplified)
+                                simphash = m.hexdigest()
+                                icon = base64.b64encode(output.getvalue()).decode()
+                        except ValueError:
+                            log.error("parse_pe.py -> get_incon_info -> buffer is not large enough")
+                            return None, None, None, None
+                        except OSError as e:
+                            log.error(e)
+                            return None, None, None, None
+                    return icon, fullhash, simphash, dhash
+        except Exception as e:
+            log.exception(e)
+
+        return None, None, None, None
+
+    def get_versioninfo(self, pe: pefile.PE) -> List[dict]:
+        """Get version info.
+        @return: info dict or None.
+        """
+        if not pe:
+            return None
+
+        peresults = []
+
+        if not hasattr(pe, "VS_VERSIONINFO") and not hasattr(pe, "FileInfo"):
+            return peresults
+
+        for infoentry in pe.FileInfo:
+            for entry in infoentry:
+                try:
+                    if hasattr(entry, "StringTable"):
+                        for st_entry in entry.StringTable:
+                            for str_entry in st_entry.entries.items():
+                                entry = {"name": str_entry[0].decode("latin-1"), "value": str_entry[1].decode("latin-1")}
+                                if entry["name"] == "Translation" and len(entry["value"]) == 10:
+                                    entry["value"] = f"0x0{entry['value'][2:5]} 0x0{entry['value'][7:10]}"
+                                peresults.append(entry)
+                    elif hasattr(entry, "Var"):
+                        for var_entry in entry.Var:
+                            if hasattr(var_entry, "entry"):
+                                name = list(var_entry.entry.keys())[0]
+                                value = list(var_entry.entry.values())[0]
+                                if isinstance(name, bytes):
+                                    name = name.decode("latin-1")
+                                if isinstance(value, bytes):
+                                    value = value.decode("latin-1")
+                                entry = {
+                                    "name": name,
+                                    "value": value,
+                                }
+                                if entry["name"] == "Translation" and len(entry["value"]) == 10:
+                                    entry["value"] = f"0x0{entry['value'][2:5]} 0x0{entry['value'][7:10]}"
+                                peresults.append(entry)
+                except Exception as e:
+                    log.exception(e)
+                    continue
+
+        return peresults
+
+    def get_imphash(self, pe: pefile.PE) -> str:
+        """Gets imphash.
+        @return: imphash string or None.
+        """
+        if not pe:
+            return None
+
+        try:
+            return pe.get_imphash()
+        except AttributeError:
+            return None
+
+    def get_timestamp(self, pe: pefile.PE) -> str:
+        """Get compilation timestamp.
+        @return: timestamp or None.
+        """
+        if not pe:
+            return None
+
+        try:
+            pe_timestamp = pe.FILE_HEADER.TimeDateStamp
+        except AttributeError:
+            return None
+
+        return datetime.fromtimestamp(pe_timestamp).strftime("%Y-%m-%d %H:%M:%S")
+
+    def get_digital_signers(self, pe: pefile.PE) -> List[dict]:
+        """If this executable is signed, get its signature(s)."""
+        if not pe:
+            return []
+
+        if not HAVE_CRYPTO:
+            log.critical("You do not have the cryptography library installed preventing certificate extraction. poetry install")
+            return []
+
+        dir_index = pefile.DIRECTORY_ENTRY["IMAGE_DIRECTORY_ENTRY_SECURITY"]
+
+        if len(pe.OPTIONAL_HEADER.DATA_DIRECTORY) < dir_index:
+            return []
+
+        dir_entry = pe.OPTIONAL_HEADER.DATA_DIRECTORY[dir_index]
+        if not dir_entry or not dir_entry.VirtualAddress or not dir_entry.Size:
+            return []
+
+        retlist = []
+        address = pe.OPTIONAL_HEADER.DATA_DIRECTORY[dir_index].VirtualAddress
+
+        # check if file is digitally signed
+        if address == 0:
+            return retlist
+
+        certs = []
+        try:
+            signatures = pe.write()[address + 8 :]
+
+            if isinstance(signatures, bytearray):
+                signatures = bytes(signatures)
+
+            with suppress(Exception):
+                certs = backend.load_der_pkcs7_certificates(signatures)
+
+        except AttributeError:
+            log.debug("Can't get PE signatures")
+
+        for cert in certs:
+            md5 = binascii.hexlify(cert.fingerprint(hashes.MD5())).decode()
+            sha1 = binascii.hexlify(cert.fingerprint(hashes.SHA1())).decode()
+            sha256 = binascii.hexlify(cert.fingerprint(hashes.SHA256())).decode()
+            cert_data = {
+                "md5_fingerprint": md5,
+                "sha1_fingerprint": sha1,
+                "sha256_fingerprint": sha256,
+                "serial_number": str(cert.serial_number),
+                "not_before": cert.not_valid_before.isoformat(),
+                "not_after": cert.not_valid_after.isoformat(),
+            }
+            try:
+                for attribute in cert.subject:
+                    cert_data[f"subject_{attribute.oid._name}"] = attribute.value
+            except ValueError as e:
+                log.warning(e)
+            try:
+                for attribute in cert.issuer:
+                    cert_data[f"issuer_{attribute.oid._name}"] = attribute.value
+            except ValueError as e:
+                log.warning(e)
+            try:
+                for extension in cert.extensions:
+                    if extension.oid._name == "authorityKeyIdentifier" and extension.value.key_identifier:
+                        cert_data[f"extensions_{extension.oid._name}"] = base64.b64encode(extension.value.key_identifier).decode()
+                    elif extension.oid._name == "subjectKeyIdentifier" and extension.value.digest:
+                        cert_data[f"extensions_{extension.oid._name}"] = base64.b64encode(extension.value.digest).decode()
+                    elif extension.oid._name == "certificatePolicies":
+                        for index, policy in enumerate(extension.value):
+                            if policy.policy_qualifiers:
+                                for qualifier in policy.policy_qualifiers:
+                                    if qualifier.__class__ is not cryptography.x509.extensions.UserNotice:
+                                        cert_data[f"extensions_{extension.oid._name}_{index}"] = qualifier
+                    elif extension.oid._name == "cRLDistributionPoints":
+                        for index, point in enumerate(extension.value):
+                            for full_name in point.full_name:
+                                cert_data[f"extensions_{extension.oid._name}_{index}"] = full_name.value
+                    elif extension.oid._name == "authorityInfoAccess":
+                        for authority_info in extension.value:
+                            if authority_info.access_method._name == "caIssuers":
+                                cert_data[f"extensions_{extension.oid._name}_caIssuers"] = authority_info.access_location.value
+                            elif authority_info.access_method._name == "OCSP":
+                                cert_data[f"extensions_{extension.oid._name}_OCSP"] = authority_info.access_location.value
+                    elif extension.oid._name == "subjectAltName":
+                        for index, name in enumerate(extension.value._general_names):
+                            if isinstance(name.value, bytes):
+                                cert_data[f"extensions_{extension.oid._name}_{index}"] = base64.b64encode(name.value).decode()
+                            else:
+                                cert_data[f"extensions_{extension.oid._name}_{index}"] = (
+                                    name.value.rfc4514_string() if hasattr(name.value, "rfc4514_string") else name.value
+                                )
+            except ValueError:
+                continue
+
+            retlist.append(cert_data)
+
+        return retlist
+
+    def get_guest_digital_signers(self, task_id: str = False) -> dict:
+        if not task_id:
+            return {}
+        cert_info_path = Path(CUCKOO_ROOT, "storage", "analyses", task_id, "aux", "DigiSig.json")
+        if cert_info_path.exists():
+            cert_data = json.loads(cert_info_path.read_text())
+            if cert_data:
+                return {
+                    "aux_sha1": cert_data["sha1"],
+                    "aux_timestamp": cert_data["timestamp"],
+                    "aux_valid": cert_data["valid"],
+                    "aux_error": cert_data["error"],
+                    "aux_error_desc": cert_data["error_desc"],
+                    "aux_signers": cert_data["signers"],
+                }
+        return {}
+
+    def get_dll_exports(self) -> str:
+        file_type = self._get_filetype(self.file_data)
+        if HAVE_PEFILE and file_type and ("PE32" in file_type or "MS-DOS executable" in file_type) and self.HAVE_PE:
+            try:
+                if hasattr(self.pe, "DIRECTORY_ENTRY_EXPORT"):
+                    exports = []
+                    for exported_symbol in self.pe.DIRECTORY_ENTRY_EXPORT.symbols:
+                        try:
+                            if not exported_symbol.name:
+                                continue
+                            if isinstance(exported_symbol.name, bytes):
+                                exports.append(re.sub(b"[^A-Za-z0-9_?@-]", b"", exported_symbol.name).decode())
+                            else:
+                                exports.append(re.sub("[^A-Za-z0-9_?@-]", "", exported_symbol.name))
+                        except Exception as e:
+                            log.exception(e)
+
+                    return ",".join(exports)
+            except Exception as e:
+                log.error("PE type not recognised")
+                log.exception(e)
+
+        return ""
+
+    def choose_dll_export(self) -> str:
+        if not self.pe:
+            return None
+        if hasattr(self.pe, "DIRECTORY_ENTRY_EXPORT"):
+            for exp in self.pe.DIRECTORY_ENTRY_EXPORT.symbols:
+                try:
+                    if not exp.name:
+                        continue
+                    if exp.name.decode() in ("DllInstall", "DllRegisterServer", "xlAutoOpen"):
+                        return exp.name.decode()
+                except Exception as e:
+                    log.exception(e)
+        return None
+
+    def get_entrypoint(self, pe: pefile.PE) -> str:
+        """Get entry point (PE).
+        @return: entry point.
+        """
+
+        try:
+            return f"0x{pe.OPTIONAL_HEADER.AddressOfEntryPoint:08x}"
+        except Exception:
+            return None
+
+    def get_imagebase(self, pe: pefile.PE) -> str:
+        """Get information on the Image Base
+        @return: image base or None.
+        """
+        try:
+            return f"0x{pe.OPTIONAL_HEADER.ImageBase:08x}"
+        except Exception:
+            return None
+
+    def get_ep_bytes(self, pe: pefile.PE) -> str:
+        """Get entry point bytes (PE).
+        @return: entry point bytes (16).
+        """
+        try:
+            return binascii.b2a_hex(pe.get_data(pe.OPTIONAL_HEADER.AddressOfEntryPoint, 0x10)).decode()
+        except Exception:
+            return None
+
+    def run(self, task_id: str = False) -> dict:
+        """Run analysis.
+        @return: analysis results dict or None.
+        """
+        if not path_exists(self.file_path):
+            log.debug("File doesn't exist anymore")
+            return {}
+
+        # Advanced check if is real PE
+        contents = path_read_file(self.file_path)
+        if not IsPEImage(contents):
+            return {}
+
+        if not self.HAVE_PE:
+            return {}
+
+        peresults = {
+            "guest_signers": self.get_guest_digital_signers(task_id),
+            "digital_signers": self.get_digital_signers(self.pe),
+            "imagebase": self.get_imagebase(self.pe),
+            "entrypoint": self.get_entrypoint(self.pe),
+            "ep_bytes": self.get_ep_bytes(self.pe),
+            "peid_signatures": self.get_peid_signatures(self.pe),
+            "reported_checksum": self.get_reported_checksum(self.pe),
+            "actual_checksum": self.get_actual_checksum(self.pe),
+            "osversion": self.get_osversion(self.pe),
+            "machine_type": self.get_machine_type(self.pe),
+            "pdbpath": self.get_pdb_path(self.pe),
+            "imports": self.get_imported_symbols(self.pe),
+            "exported_dll_name": self.get_exported_dll_name(self.pe),
+            "exports": self.get_exported_symbols(self.pe),
+            "dirents": self.get_directory_entries(self.pe),
+            "sections": self.get_sections(self.pe),
+            "overlay": self.get_overlay(self.pe),
+            "resources": self.get_resources(self.pe),
+            "versioninfo": self.get_versioninfo(self.pe),
+            "imphash": self.get_imphash(self.pe),
+            "timestamp": self.get_timestamp(self.pe),
+        }
+        (
+            peresults["icon"],
+            peresults["icon_hash"],
+            peresults["icon_fuzzy"],
+            peresults["icon_dhash"],
+        ) = self.get_icon_info(self.pe)
+
+        if peresults.get("imports", False):
+            peresults["imported_dll_count"] = len(peresults["imports"])
+
+        self.pe.close()
+        return peresults
diff --git a/lib/cuckoo/common/integrations/parse_rdp.py b/lib/cuckoo/common/integrations/parse_rdp.py
new file mode 100644
index 00000000000..b900e01a568
--- /dev/null
+++ b/lib/cuckoo/common/integrations/parse_rdp.py
@@ -0,0 +1,240 @@
+import argparse
+import base64
+import datetime
+import json
+import logging
+import sys
+from contextlib import suppress
+from hashlib import sha1, sha256
+from struct import unpack
+
+MISSED_DEPS = False
+try:
+    import mscerts
+    from asn1crypto import pem, x509
+    from certvalidator import CertificateValidator, ValidationContext
+    from cryptography import x509 as cx509
+    from cryptography.hazmat.primitives import hashes, serialization
+    from cryptography.hazmat.primitives.serialization import pkcs7
+    from cryptography.x509.oid import ExtensionOID
+except ImportError:
+    print("pip3 install certvalidator asn1crypto mscerts")
+    MISSED_DEPS = True
+try:
+    import re2 as re
+except ImportError:
+    import re
+
+property_patterns = {
+    "alternate_full_address": re.compile(r"alternate\s+full\s+address\s*:\s*s\s*:\s*(.*)", re.I),
+    "alternate_shell": re.compile(r"alternate\s+shell\s*:\s*s\s*:\s*(.*)", re.I),
+    "authentication_level": re.compile(r"authentication\s+level\s*:\s*i\s*:\s*(\d+)", re.I),
+    "autoreconnection_enabled": re.compile(r"autoreconnection\s*enabled\s*:\s*i\s*:\s*(\d+)", re.I),
+    "audiocapturemode": re.compile(r"audiocapturemode\s*:\s*i\s*:\s*(\d+)", re.I),
+    "audiomode": re.compile(r"audiomode\s*:\s*i\s*:\s*(\d+)", re.I),
+    "bandwidthautodetect": re.compile(r"bandwidthautodetect\s*:\s*i\s*:\s*(\d+)", re.I),
+    "camerastoredirect": re.compile(r"camerastoredirect\s*:\s*s\s*:\s*(.*)", re.I),
+    "compression": re.compile(r"compression\s*:\s*i\s*:\s*(\d+)", re.I),
+    "disableconnectionsharing": re.compile(r"disableconnectionsharing\s*:\s*i\s*:\s*(\d+)", re.I),
+    "drivestoredirect": re.compile(r"drivestoredirect\s*:\s*s\s*:\s*(.*)", re.I),
+    "enablecredsspsupport": re.compile(r"enablecredsspsupport\s*:\s*i\s*:\s*(\d+)", re.I),
+    "enablerdsaadauth": re.compile(r"enablerdsaadauth\s*:\s*i\s*:\s*(\d+)", re.I),
+    "full_address": re.compile(r"full\s+address\s*:\s*s\s*:\s*(.*)", re.I),
+    "gatewaycredentialssource": re.compile(r"gatewaycredentialssource\s*:\s*i\s*:\s*(\d+)", re.I),
+    "gatewayhostname": re.compile(r"gatewayhostname\s*:\s*s\s*:\s*(.*)", re.I),
+    "gatewayprofileusagemethod": re.compile(r"gatewayprofileusagemethod\s*:\s*i\s*:\s*(\d+)", re.I),
+    "gatewayusagemethod": re.compile(r"gatewayusagemethod\s*:\s*i\s*:\s*(\d+)", re.I),
+    "keyboardhook": re.compile(r"keyboardhook\s*:\s*i\s*:\s*(\d+)", re.I),
+    "networkautodetect": re.compile(r"networkautodetect\s*:\s*i\s*:\s*(\d+)", re.I),
+    "promptcredentialonce": re.compile(r"promptcredentialonce\s*:\s*i\s*:\s*(\d+)", re.I),
+    "redirectclipboard": re.compile(r"redirectclipboard\s*:\s*i\s*:\s*(\d+)", re.I),
+    "redirectcomports": re.compile(r"redirectcomports\s*:\s*i\s*:\s*(\d+)", re.I),
+    "redirectlocation": re.compile(r"redirectlocation\s*:\s*i\s*:\s*(\d+)", re.I),
+    "redirectprinters": re.compile(r"redirectprinters\s*:\s*i\s*:\s*(\d+)", re.I),
+    "redirectsmartcards": re.compile(r"redirectsmartcards\s*:\s*i\s*:\s*(\d+)", re.I),
+    "redirectwebauthn": re.compile(r"redirectwebauthn\s*:\s*i\s*:\s*(\d+)", re.I),
+    "screen_mode_id": re.compile(r"screen mode id\s*:\s*i\s*:\s*(\d+)", re.I),
+    "usbdevicestoredirect": re.compile(r"usbdevicestoredirect\s*:\s*s\s*:\s*(.*)", re.I),
+    "videoplaybackmode": re.compile(r"videoplaybackmode\s*:\s*i\s*:\s*(\d+)", re.I),
+    "remoteapplicationcmdline": re.compile(r"remoteapplicationcmdline\s*:\s*s\s*:\s*(.*)", re.I),
+    "remoteapplicationexpandcmdline": re.compile(r"remoteapplicationexpandcmdline\s*:\s*i\s*:\s*(\d+)", re.I),
+    "remoteapplicationexpandworkingdir": re.compile(r"remoteapplicationexpandworkingdir\s*:\s*i\s*:\s*(\d+)", re.I),
+    "remoteapplicationfile": re.compile(r"remoteapplicationfile\s*:\s*s\s*:\s*(.*)", re.I),
+    "remoteapplicationicon": re.compile(r"remoteapplicationicon\s*:\s*s\s*:\s*(.*)", re.I),
+    "remoteapplicationmode": re.compile(r"remoteapplicationmode\s*:\s*i\s*:\s*(\d+)", re.I),
+    "remoteapplicationname": re.compile(r"remoteapplicationname\s*:\s*s\s*:\s*(.*)", re.I),
+    "remoteapplicationprogram": re.compile(r"remoteapplicationprogram\s*:\s*s\s*:\s*(.*)", re.I),
+    "devicestoredirect": re.compile(r"devicestoredirect\s*:\s*s\s*:\s*(.*)", re.I),
+    "signature": re.compile(r"signature\s*:\s*s\s*:\s*([A-Za-z0-9+/=\s]+)", re.I),
+    "signscope": re.compile(r"signscope\s*:\s*s\s*:\s*(.*)", re.I),
+}
+
+log = logging.getLogger()
+
+
+def validate_sig(hostname, alternate_faddress, pkcs7_certificates):
+    sign_data = {
+        "can_sign": False,
+        "usage_error": "",
+        "valid": False,
+        "validation_errors": [],
+        "general_error": "",
+        "main_valid": False,
+        "alt_valid": False,
+    }
+    if MISSED_DEPS:
+        return sign_data
+    try:
+        ca_bundle_path = mscerts.where()
+        trust_roots = []
+        with open(ca_bundle_path, "rb") as f:
+            pem_data = f.read()
+            for _, _, der_bytes in pem.unarmor(pem_data, multiple=True):
+                trust_roots.append(der_bytes)
+        certs = [x509.Certificate.load(cert.public_bytes(serialization.Encoding.DER)) for cert in pkcs7_certificates]
+        context = ValidationContext(trust_roots=trust_roots)
+        main_cert = certs[0]
+        validator = CertificateValidator(main_cert, intermediate_certs=certs[1:], validation_context=context)
+        try:
+            validator.validate_usage({"digital_signature"})
+            sign_data["can_sign"] = True
+        except Exception as e:
+            sign_data["usage_error"] = f"{e}"
+        try:
+            validator.validate_tls(hostname)
+            sign_data["main_valid"] = True
+        except Exception as e:
+            sign_data["validation_errors"].append(f"{e}")
+        if alternate_faddress:
+            try:
+                validator.validate_tls(alternate_faddress)
+                sign_data["alt_valid"] = True
+            except Exception as e:
+                sign_data["validation_errors"].append(f"{e}")
+        if sign_data["main_valid"] or sign_data["alt_valid"]:
+            sign_data["valid"] = True
+    except Exception as e:
+        sign_data["general_error"] = f"{e}"
+    return sign_data
+
+
+def parse_rdp_file(file_path):
+    rdp_properties = {}
+    try:
+        content = ""
+        encoding = "utf-8"
+        with open(file_path, "rb") as f:
+            raw = f.read(4)
+            if raw.startswith(b"\xff\xfe\x00\x00"):
+                encoding = "utf-32-le"
+            elif raw.startswith(b"\x00\x00\xfe\xff"):
+                encoding = "utf-32-be"
+            elif raw.startswith(b"\xfe\xff"):
+                encoding = "utf-16-be"
+            elif raw.startswith(b"\xff\xfe"):
+                encoding = "utf-16-le"
+            elif raw.startswith(b"\xef\xbb\xbf"):
+                encoding = "utf-8-sig"
+
+        with open(file_path, "r", encoding=encoding, errors="ignore") as f:
+            content = f.read()
+        if content and re.search(r"full\s+address\s*:\s*s\s*:", content, re.I):
+            for line in content.splitlines():
+                for prop, pattern in property_patterns.items():
+                    match = pattern.search(line)
+                    if match:
+                        value = match.group(1).strip()
+                        if value != "":
+                            rdp_properties[prop] = value
+        else:
+            print("full_address is a required field... what sort of nonsense are you trying to feed me?")
+            return rdp_properties
+        if "full_address" not in rdp_properties:
+            print(
+                "full_address is a required field but is not in parsed Properties what sort of nonsense are you trying to feed me?"
+            )
+            return rdp_properties
+        rdp_properties["signscope_but_missing_sig"] = False
+        if "signscope" in rdp_properties and "signature" not in rdp_properties:
+            rdp_properties["signscope_but_missing_sig"] = True
+        elif "signature" in rdp_properties and "signscope" in rdp_properties:
+            rdp_properties["certificate_truncated_or_invalid"] = False
+            signature_base64 = rdp_properties["signature"]
+            rdp_properties["certificates"] = []
+            rdp_properties["certificate_chain_len"] = 0
+            signature_bytes = b""
+            rdp_properties["certificate_truncated_or_invalid"] = True
+            with suppress(Exception):
+                signature_bytes = base64.b64decode(signature_base64.replace("\n", "").replace("\r", ""))
+            size_bytes = signature_bytes[8:12]
+            data_size = 0
+            with suppress(Exception):
+                data_size = unpack("<I", size_bytes)[0]
+            try:
+                if len(signature_bytes) < data_size:
+                    rdp_properties["certificate_truncated_or_invalid"] = True
+                signature_bytes = signature_bytes[12 : 12 + data_size]
+                try:
+                    if signature_bytes:
+                        rdp_properties["signature_hex"] = signature_bytes.hex()
+                        rdp_properties["signature_sha1"] = sha1(signature_bytes).hexdigest()
+                        rdp_properties["signature_sha256"] = sha256(signature_bytes).hexdigest()
+                        certs = pkcs7.load_der_pkcs7_certificates(signature_bytes)
+                        rdp_properties["certificate_chain_validation"] = validate_sig(
+                            f"{rdp_properties['full_address']}", f"{rdp_properties['alternate_full_address']}", certs
+                        )
+                        for cert in certs:
+                            cert_info = {
+                                "subject": cert.subject.rfc4514_string(),
+                                "issuer": cert.issuer.rfc4514_string(),
+                                "not_before": cert.not_valid_before_utc.isoformat(),
+                                "not_after": cert.not_valid_after_utc.isoformat(),
+                                "serial_number": str(cert.serial_number),
+                                "fingerprint_sha256": cert.fingerprint(hashes.SHA256()).hex(),
+                                "fingerprint_sha1": cert.fingerprint(hashes.SHA1()).hex(),
+                            }
+                            morris_day_and_the_utc_time = datetime.datetime.now(datetime.timezone.utc)
+                            if cert.not_valid_before_utc <= morris_day_and_the_utc_time <= cert.not_valid_after_utc:
+                                cert_info["cert_valid_date"] = True
+                            else:
+                                cert_info["cert_valid"] = False
+                            san_values = []
+                            with suppress(Exception):
+                                san_extension = cert.extensions.get_extension_for_oid(ExtensionOID.SUBJECT_ALTERNATIVE_NAME)
+                                san_values = san_extension.value.get_values_for_type(cx509.DNSName)
+                            cert_info["subject_alternative_names"] = san_values if san_values else None
+                            rdp_properties["certificates"].append(cert_info)
+                except Exception as e:
+                    print(f"Error parsing certificate: {e}")
+            except Exception as e:
+                print(f"Error parsing certificate: {e}")
+            rdp_properties["certificate_chain_len"] = len(rdp_properties["certificates"])
+    except Exception as e:
+        print(f"Error reading or parsing RDP file: {e}")
+
+    return rdp_properties
+
+
+def main():
+    parser = argparse.ArgumentParser(
+        description="DUMB RDP Props to JSON dump.. Cert parsing doesn't work Weird nonsense in these DER certs aside from 8 byte junk then 4 byte size header https://www.youtube.com/watch?v=ceR4TDuqE5A"
+    )
+    parser.add_argument("-i", "--input", required=True, help="Input RDP file path")
+    parser.add_argument("-o", "--output", required=True, help="Output file path to save JSON results")
+    args = parser.parse_args()
+
+    rdp_properties = parse_rdp_file(args.input)
+    if not rdp_properties:
+        print("Failed to parse RDP file.")
+        sys.exit(1)
+    try:
+        output = json.dumps(rdp_properties, indent=4)
+        with open(args.output, "w") as outfile:
+            outfile.write(output)
+    except Exception as e:
+        print(f"it went pear shaped..{e}")
+        sys.exit(1)
+
+
+if __name__ == "__main__":
+    main()
diff --git a/lib/cuckoo/common/integrations/parse_url.py b/lib/cuckoo/common/integrations/parse_url.py
new file mode 100644
index 00000000000..4ffebf88999
--- /dev/null
+++ b/lib/cuckoo/common/integrations/parse_url.py
@@ -0,0 +1,163 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation, Optiv, Inc. (brad.spengler@optiv.com)
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+import json
+import logging
+from datetime import datetime
+from typing import List
+
+try:
+    import re2 as re
+except ImportError:
+    import re
+
+try:
+    from whois import whois
+
+    HAVE_WHOIS = True
+except Exception:
+    HAVE_WHOIS = False
+
+try:
+    import bs4
+
+    HAVE_BS4 = True
+except ImportError:
+    HAVE_BS4 = False
+
+
+import requests
+
+log = logging.getLogger(__name__)
+
+
+class URL:
+    """URL 'Static' Analysis"""
+
+    def __init__(self, url: str):
+        self.url = url
+        dcheck = re.match(r"^(?:https?:\/\/)?(?:www\.)?(?P<domain>[^:\/\n]+)", self.url)
+        if dcheck:
+            self.domain = dcheck.group("domain")
+            # Work around a bug where a "." can tail a url target if
+            # someone accidentally appends one during submission
+            self.domain = self.domain.rstrip(".")
+        else:
+            self.domain = ""
+
+    def parse_json_in_javascript(self, data: str = "", ignore_nest_level: int = 0) -> List[dict]:
+        nest_count = -ignore_nest_level
+        string_buf = ""
+        json_buf = []
+        for character in data:
+            if character == "{":
+                nest_count += 1
+            if nest_count > 0:
+                string_buf += character
+            if character == "}":
+                nest_count -= 1
+            if nest_count == 0 and string_buf:
+                json_buf.append(string_buf)
+                string_buf = ""
+
+        if json_buf:
+            return [json.loads(data) for data in json_buf if len(data) > 4]
+
+        return []
+
+    def run(self) -> dict:
+        results = {}
+        if self.domain:
+            try:
+                w = whois(self.domain)
+                # Create static fields if they don't exist, EG if the WHOIS
+                # data is stale.
+                fields = (
+                    "updated_date",
+                    "status",
+                    "name",
+                    "city",
+                    "expiration_date",
+                    "zipcode",
+                    "domain_name",
+                    "country",
+                    "whois_server",
+                    "state",
+                    "registrar",
+                    "referral_url",
+                    "address",
+                    "name_servers",
+                    "org",
+                    "creation_date",
+                    "emails",
+                )
+                for field in fields:
+                    if not w.get(field):
+                        w[field] = ["None"]
+            except Exception:
+                # No WHOIS data returned
+                log.warning("No WHOIS data for domain: %s", self.domain)
+                return results
+
+            # These can be a list or string, just make them all lists
+            for key in w:
+                buf = []
+                # Handle and format dates
+                if "_date" in key:
+                    buf = (
+                        [str(dt).replace("T", " ").split(".", 1)[0] for dt in w[key]]
+                        if isinstance(w[key], list)
+                        else [str(w[key]).replace("T", " ").split(".", 1)[0]]
+                    )
+
+                elif isinstance(w[key], list):
+                    continue
+                else:
+                    buf = [w[key]]
+                w[key] = buf
+
+            output = (
+                "Name: {0}\nCountry: {1}\nState: {2}\nCity: {3}\n"
+                "ZIP Code: {4}\nAddress: {5}\n\nOrginization: {6}\n"
+                "Domain Name(s):\n    {7}\nCreation Date:\n    {8}\n"
+                "Updated Date:\n    {9}\nExpiration Date:\n    {10}\n"
+                "Email(s):\n    {11}\n\nRegistrar(s):\n    {12}\nName "
+                "Server(s):\n    {13}\nReferral URL(s):\n    {14}"
+            )
+            output = output.format(
+                w["name"][0],
+                w["country"][0],
+                w["state"][0],
+                w["city"][0],
+                w["zipcode"][0],
+                w["address"][0],
+                w["org"][0],
+                "\n    ".join(w["domain_name"]),
+                "\n    ".join(w["creation_date"]),
+                "\n    ".join(w["updated_date"]),
+                "\n    ".join(w["expiration_date"]),
+                "\n    ".join(w["emails"]),
+                "\n    ".join(w["registrar"]),
+                "\n    ".join(w["name_servers"]),
+                "\n    ".join(w["referral_url"]),
+            )
+            results["whois"] = output
+
+        # TODO: this should be in config
+        if self.domain == "bit.ly":
+            resp = requests.get(f"{self.url}+")
+            soup = bs4.BeautifulSoup(resp.text, "html.parser")
+            output = []
+            for script in (x.extract() for x in soup.find_all("script")):
+                if script.contents:
+                    content = script.contents[0]
+                    if "long_url_no_protocol" in content:
+                        output = self.parse_json_in_javascript(content, 1)
+
+            if output:
+                results["bitly"] = {k: v for d in output for k, v in d.items()}
+                newtime = datetime.fromtimestamp(int(results["bitly"]["created_at"]))
+                results["bitly"]["created_at"] = f"{newtime.strftime('%Y-%m-%d %H:%M:%S')} GMT"
+
+        return results
diff --git a/lib/cuckoo/common/integrations/parse_wsf.py b/lib/cuckoo/common/integrations/parse_wsf.py
new file mode 100644
index 00000000000..7f60e0fd353
--- /dev/null
+++ b/lib/cuckoo/common/integrations/parse_wsf.py
@@ -0,0 +1,60 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation, Optiv, Inc. (brad.spengler@optiv.com)
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+from pathlib import Path
+from typing import List
+
+from lib.cuckoo.common.integrations.parse_encoded_script import EncodedScriptFile
+
+try:
+    import re2 as re
+except ImportError:
+    import re
+
+try:
+    import bs4
+
+    HAVE_BS4 = True
+except ImportError:
+    HAVE_BS4 = False
+
+
+class WindowsScriptFile:
+    script_re = "<\\s*script\\s*.*>.*?<\\s*/\\s*script\\s*>"
+
+    def __init__(self, filepath):
+        self.filepath = filepath
+
+    def run(self) -> List[str]:
+        ret = []
+        try:
+            source = Path(self.filepath).read_text()
+        except UnicodeDecodeError:
+            return ret
+
+        # Get rid of superfluous comments.
+        source = re.sub("/\\*.*?\\*/", "", source, flags=re.S)
+
+        for script in re.findall(self.script_re, source, re.I | re.S):
+            try:
+                x = bs4.BeautifulSoup(script, "html.parser")
+                language = x.script.attrs.get("language", "").lower()
+            except Exception:
+                language = None
+
+            # We can't rely on bs4 or any other HTML/XML parser to provide us
+            # with the raw content of the xml tag as they decode html entities
+            # and all that, leaving us with a corrupted string.
+            source = re.match("<.*>(.*)</.*>$", script, re.S).group(0)
+
+            # Decode JScript.Encode encoding.
+            if language in {"jscript.encode", "vbscript.encode"}:
+                source = EncodedScriptFile(self.filepath).decode(source.encode())
+
+            if len(source) > 65536:
+                source = f"{source[:65536]}\r\n<truncated>"
+
+            ret.append(source)
+
+        return ret
diff --git a/lib/cuckoo/common/integrations/pdfminer.py b/lib/cuckoo/common/integrations/pdfminer.py
new file mode 100644
index 00000000000..f5861aa11bf
--- /dev/null
+++ b/lib/cuckoo/common/integrations/pdfminer.py
@@ -0,0 +1,61 @@
+import logging
+from typing import Any, Dict, Iterable, Set, Union
+
+try:
+    from pdfminer import pdfdocument, pdfparser, pdftypes
+
+    HAVE_PDFMINER = True
+except ImportError:
+    HAVE_PDFMINER = False
+
+log = logging.getLogger(__name__)
+
+
+def _search_for_url(obj: Union[dict, list]) -> Iterable[str]:
+    if obj is None:
+        return
+
+    if isinstance(obj, pdftypes.PDFStream):
+        yield from _search_for_url(obj.attrs)
+    elif isinstance(obj, list):
+        for v in obj:
+            yield from _search_for_url(v)
+    elif isinstance(obj, dict):
+        for key, value in obj.items():
+            if key == "URI":
+                if isinstance(value, bytes):
+                    yield value.decode()
+                elif isinstance(value, str):
+                    yield value
+                continue
+
+            yield from _search_for_url(value)
+
+
+def _mine_for_urls(file_path: str) -> Set[str]:
+    urls = set()
+    try:
+        with open(file_path, "rb") as f:
+            parser = pdfparser.PDFParser(f)
+            doc = pdfdocument.PDFDocument(parser)
+
+            for xref in doc.xrefs:
+                for object_id in xref.get_objids():
+                    try:
+                        obj = doc.getobj(object_id)
+                        urls.update(_search_for_url(obj))
+                    except Exception as e:
+                        log.exception(e)
+    except Exception as e:
+        log.exception(e)
+
+    return urls
+
+
+def pdfminer_parse(filepath: str, pdfresult: Dict[str, Any]) -> Dict[str, Any]:
+    if not HAVE_PDFMINER:
+        return pdfresult
+
+    urls = _mine_for_urls(filepath)
+    pdfresult["All_URLs"] = list(urls)
+    return pdfresult
diff --git a/lib/cuckoo/common/integrations/peepdf.py b/lib/cuckoo/common/integrations/peepdf.py
new file mode 100644
index 00000000000..8c6770d3989
--- /dev/null
+++ b/lib/cuckoo/common/integrations/peepdf.py
@@ -0,0 +1,189 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation, Optiv, Inc. (brad.spengler@optiv.com)
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+import contextlib
+import logging
+from typing import Any, Dict
+
+from lib.cuckoo.common.utils import convert_to_printable
+
+try:
+    from peepdf.JSAnalysis import analyseJS, isJavascript
+    from peepdf.PDFCore import PDFParser
+
+    HAVE_PEEPDF = True
+except ImportError:
+    HAVE_PEEPDF = False
+    print("OPTIONAL! Missed dependency: poetry run pip install peepdf-3")
+
+log = logging.getLogger(__name__)
+
+
+def _get_obj_val(pdf, version: int, obj):
+    with contextlib.suppress(Exception):
+        if obj.type == "reference":
+            return pdf.body[version].getObject(obj.id)
+    return obj
+
+
+def _clean_string(value: str) -> str:
+    # handle BOM for typical english unicode while avoiding some
+    # invalid BOM seen in malicious PDFs (like using the utf16le BOM
+    # for an ascii string)
+    if value.startswith("\xfe\xff"):
+        if not any(ord(x) for x in value[2::2]):
+            return value[3::2]
+    elif value.startswith("\xff\xfe"):
+        if not any(ord(x) for x in value[3::2]):
+            return value[2::2]
+    return value
+
+
+def _set_base_uri(pdf):
+    try:
+        for version in range(pdf.updates + 1):
+            trailer, _ = pdf.trailer[version]
+            if trailer:
+                elem = trailer.getTrailerDictionary().getElementByName("/Root")
+                if elem:
+                    elem = _get_obj_val(pdf, version, elem)
+                if elem:
+                    elem = elem.getElementByName("/URI")
+                if elem:
+                    elem = _get_obj_val(pdf, version, elem)
+                if elem:
+                    elem = elem.getElementByName("/Base")
+                if elem:
+                    elem = _get_obj_val(pdf, version, elem)
+                if elem:
+                    return elem.getValue()
+    except Exception as e:
+        log.exception(e)
+        return
+
+
+def peepdf_parse(filepath: str, pdfresult: Dict[str, Any]) -> Dict[str, Any]:
+    """Extract JavaScript from PDF objects."""
+
+    if not HAVE_PEEPDF:
+        return pdfresult
+
+    log.debug("About to parse with PDFParser")
+    parser = PDFParser()
+    try:
+        _, pdf = parser.parse(filepath, forceMode=True, looseMode=True, manualAnalysis=False)
+    except Exception as e:
+        log.debug("Error parsing pdf: %s", str(e))
+        return pdfresult
+    urlset = set()
+    annoturiset = set()
+    objects = []
+    retobjects = []
+    metadata = {}
+
+    base_uri = _set_base_uri(pdf)
+    if not base_uri:
+        base_uri = ""
+
+    for i, body in enumerate(pdf.body):
+        metatmp = pdf.getBasicMetadata(i)
+        if metatmp:
+            metadata = metatmp
+        objects = body.objects
+        for index in objects:
+            oid = objects[index].thisId
+            offset = objects[index].offset
+            size = objects[index].size
+            details = objects[index].obj
+            obj_data = {
+                "Object ID": oid,
+                "Offset": offset,
+                "Size": size,
+            }
+            if details.objType == "stream":
+                decoded_stream = details.decodedStream
+                if isJavascript(decoded_stream.strip()):
+                    jsdata = None
+                    try:
+                        jslist, unescapedbytes, urlsfound, errors, ctxdummy = analyseJS(decoded_stream.strip())
+                        jsdata = jslist[0]
+                    except Exception as e:
+                        log.exception(e)
+                        continue
+                    if errors or jsdata is None:
+                        continue
+                    for url in urlsfound:
+                        urlset.add(url)
+                    # The following loop is required to "JSONify" the strings returned from PyV8.
+                    # As PyV8 returns byte strings, we must parse out bytecode and
+                    # replace it with an escape '\'. We can't use encode("string_escape")
+                    # as this would mess up the new line representation which is used for
+                    # beautifying the javascript code for Django's web interface.
+                    ret_data = ""
+                    for char in jsdata:
+                        if ord(char) > 127:
+                            tmp = f"\\x{char.encode().hex()}"
+                        else:
+                            tmp = char
+                        ret_data += tmp
+                    obj_data["Data"] = ret_data
+                    retobjects.append(obj_data)
+            elif details.objType == "dictionary" and details.containsJScode:
+                js_elem = details.getElementByName("/JS")
+                if js_elem:
+                    jsdata = None
+                    try:
+                        jslist, unescapedbytes, urlsfound, errors, ctxdummy = analyseJS(js_elem.value)
+                        jsdata = jslist[0]
+                    except Exception as e:
+                        log.exception(e)
+                        continue
+                    if errors or not jsdata:
+                        continue
+
+                    urlset.update(urlsfound)
+                    # The following loop is required to "JSONify" the strings returned from PyV8.
+                    # As PyV8 returns byte strings, we must parse out bytecode and
+                    # replace it with an escape '\'. We can't use encode("string_escape")
+                    # as this would mess up the new line representation which is used for
+                    # beautifying the javascript code for Django's web interface.
+                    ret_data = ""
+                    for char in jsdata:
+                        if ord(char) > 127:
+                            tmp = f"\\x{char.encode().hex()}"
+                        else:
+                            tmp = char
+                        ret_data += tmp
+                    obj_data["Data"] = ret_data
+                    retobjects.append(obj_data)
+            elif details.objType == "dictionary" and details.hasElement("/A"):
+                # verify it to be a link type annotation
+                subtype_elem = details.getElementByName("/Subtype")
+                type_elem = details.getElementByName("/Type")
+                if not subtype_elem or not type_elem:
+                    continue
+                subtype_elem = _get_obj_val(pdf, i, subtype_elem)
+                type_elem = _get_obj_val(pdf, i, type_elem)
+                if subtype_elem.getValue() != "/Link" or type_elem.getValue() != "/Annot":
+                    continue
+                a_elem = details.getElementByName("/A")
+                a_elem = _get_obj_val(pdf, i, a_elem)
+                if a_elem and a_elem.getType() == "dictionary" and a_elem.hasElement("/URI"):
+                    uri_elem = a_elem.getElementByName("/URI")
+                    if uri_elem:
+                        uri_elem = _get_obj_val(pdf, i, uri_elem)
+                        annoturiset.add(f"{base_uri}{uri_elem.getValue()}")
+        pdfresult["JSStreams"] = retobjects
+    if "creator" in metadata:
+        pdfresult["Info"]["Creator"] = convert_to_printable(_clean_string(metadata["creator"]))
+    if "producer" in metadata:
+        pdfresult["Info"]["Producer"] = convert_to_printable(_clean_string(metadata["producer"]))
+    if "author" in metadata:
+        pdfresult["Info"]["Author"] = convert_to_printable(_clean_string(metadata["author"]))
+    if len(urlset):
+        pdfresult["JS_URLs"] = list(urlset)
+    if len(annoturiset):
+        pdfresult["Annot_URLs"] = list(annoturiset)
+
+    return pdfresult
diff --git a/lib/cuckoo/common/integrations/pyinstxtractor.py b/lib/cuckoo/common/integrations/pyinstxtractor.py
new file mode 100644
index 00000000000..497fdee37ef
--- /dev/null
+++ b/lib/cuckoo/common/integrations/pyinstxtractor.py
@@ -0,0 +1,457 @@
+"""
+PyInstaller Extractor v2.0 (Supports pyinstaller 6.11.1, 6.11.0, 6.10.0, 6.9.0, 6.8.0, 6.7.0, 6.6.0, 6.5.0, 6.4.0, 6.3.0, 6.2.0, 6.1.0, 6.0.0, 5.13.2, 5.13.1, 5.13.0, 5.12.0, 5.11.0, 5.10.1, 5.10.0, 5.9.0, 5.8.0, 5.7.0, 5.6.2, 5.6.1, 5.6, 5.5, 5.4.1, 5.4, 5.3, 5.2, 5.1, 5.0.1, 5.0, 4.10, 4.9, 4.8, 4.7, 4.6, 4.5.1, 4.5, 4.4, 4.3, 4.2, 4.1, 4.0, 3.6, 3.5, 3.4, 3.3, 3.2, 3.1, 3.0, 2.1, 2.0)
+Author : Extreme Coders
+E-mail : extremecoders(at)hotmail(dot)com
+Web    : https://0xec.blogspot.com
+Date   : 26-March-2020
+Url    : https://github.com/extremecoders-re/pyinstxtractor
+
+For any suggestions, leave a comment on
+https://forum.tuts4you.com/topic/34455-pyinstaller-extractor/
+
+This script extracts a pyinstaller generated executable file.
+Pyinstaller installation is not needed. The script has it all.
+
+For best results, it is recommended to run this script in the
+same version of python as was used to create the executable.
+This is just to prevent unmarshalling errors(if any) while
+extracting the PYZ archive.
+
+Usage : Just copy this script to the directory where your exe resides
+        and run the script with the exe file name as a parameter
+
+C:\\path\\to\\exe\\>python pyinstxtractor.py <filename>
+$ /path/to/exe/python pyinstxtractor.py <filename>
+
+Licensed under GNU General Public License (GPL) v3.
+You are free to modify this source.
+
+CHANGELOG
+================================================
+
+Version 1.1 (Jan 28, 2014)
+-------------------------------------------------
+- First Release
+- Supports only pyinstaller 2.0
+
+Version 1.2 (Sept 12, 2015)
+-------------------------------------------------
+- Added support for pyinstaller 2.1 and 3.0 dev
+- Cleaned up code
+- Script is now more verbose
+- Executable extracted within a dedicated sub-directory
+
+(Support for pyinstaller 3.0 dev is experimental)
+
+Version 1.3 (Dec 12, 2015)
+-------------------------------------------------
+- Added support for pyinstaller 3.0 final
+- Script is compatible with both python 2.x & 3.x (Thanks to Moritz Kroll @ Avira Operations GmbH & Co. KG)
+
+Version 1.4 (Jan 19, 2016)
+-------------------------------------------------
+- Fixed a bug when writing pyc files >= version 3.3 (Thanks to Daniello Alto: https://github.com/Djamana)
+
+Version 1.5 (March 1, 2016)
+-------------------------------------------------
+- Added support for pyinstaller 3.1 (Thanks to Berwyn Hoyt for reporting)
+
+Version 1.6 (Sept 5, 2016)
+-------------------------------------------------
+- Added support for pyinstaller 3.2
+- Extractor will use a random name while extracting unnamed files.
+- For encrypted pyz archives it will dump the contents as is. Previously, the tool would fail.
+
+Version 1.7 (March 13, 2017)
+-------------------------------------------------
+- Made the script compatible with python 2.6 (Thanks to Ross for reporting)
+
+Version 1.8 (April 28, 2017)
+-------------------------------------------------
+- Support for sub-directories in .pyz files (Thanks to Moritz Kroll @ Avira Operations GmbH & Co. KG)
+
+Version 1.9 (November 29, 2017)
+-------------------------------------------------
+- Added support for pyinstaller 3.3
+- Display the scripts which are run at entry (Thanks to Michael Gillespie @ malwarehunterteam for the feature request)
+
+Version 2.0 (March 26, 2020)
+-------------------------------------------------
+- Project migrated to github
+- Supports pyinstaller 3.6
+- Added support for Python 3.7, 3.8
+- The header of all extracted pyc's are now automatically fixed
+"""
+
+import logging
+import marshal
+import os
+import struct
+import sys
+import zlib
+from contextlib import suppress
+from uuid import uuid4 as uniquename
+
+log = logging.getLogger()
+
+
+class CTOCEntry:
+    def __init__(self, position, cmprsdDataSize, uncmprsdDataSize, cmprsFlag, typeCmprsData, name):
+        self.position = position
+        self.cmprsdDataSize = cmprsdDataSize
+        self.uncmprsdDataSize = uncmprsdDataSize
+        self.cmprsFlag = cmprsFlag
+        self.typeCmprsData = typeCmprsData
+        self.name = name
+
+
+class PyInstArchive:
+    PYINST20_COOKIE_SIZE = 24  # For pyinstaller 2.0
+    PYINST21_COOKIE_SIZE = 24 + 64  # For pyinstaller 2.1+
+    MAGIC = b"MEI\014\013\012\013\016"  # Magic number which identifies pyinstaller
+
+    def __init__(self, kwargs):
+        self.filePath = kwargs["file"]
+        self.destination_folder = kwargs["destination_folder"]
+        self.only_entrypoints = kwargs["entry_points"]
+        self.pycMagic = b"\0" * 4
+        self.barePycList = []  # List of pyc's whose headers have to be fixed
+
+    def open(self):
+        try:
+            self.fPtr = open(self.filePath, "rb")
+            self.fileSize = os.stat(self.filePath).st_size
+        except Exception as e:
+            log.error("[!] Could not open: %s. Error: %s", self.filePath, str(e))
+            return False
+        return True
+
+    def close(self):
+        with suppress(Exception):
+            self.fPtr.close()
+
+    def checkFile(self):
+        log.debug("[+] Processing %s", self.filePath)
+        searchChunkSize = 8192
+        endPos = self.fileSize
+        self.cookiePos = -1
+
+        if endPos < len(self.MAGIC):
+            log.error("[!] File is too short or truncated")
+            return False
+
+        while True:
+            startPos = endPos - searchChunkSize if endPos >= searchChunkSize else 0
+            chunkSize = endPos - startPos
+            if chunkSize < len(self.MAGIC):
+                break
+
+            self.fPtr.seek(startPos, os.SEEK_SET)
+            data = self.fPtr.read(chunkSize)
+            offs = data.rfind(self.MAGIC)
+            if offs != -1:
+                self.cookiePos = startPos + offs
+                break
+
+            endPos = startPos + len(self.MAGIC) - 1
+            if startPos == 0:
+                break
+
+        if self.cookiePos == -1:
+            log.error("[!] Missing cookie, unsupported pyinstaller version or not a pyinstaller archive")
+            return False
+
+        self.fPtr.seek(self.cookiePos + self.PYINST20_COOKIE_SIZE, os.SEEK_SET)
+        if b"python" in self.fPtr.read(64).lower():
+            log.debug("[+] Pyinstaller version: 2.1+")
+            self.pyinstVer = 21  # pyinstaller 2.1+
+        else:
+            self.pyinstVer = 20  # pyinstaller 2.0
+            log.debug("[+] Pyinstaller version: 2.0")
+        return True
+
+    def getCArchiveInfo(self):
+        try:
+            if self.pyinstVer == 20:
+                self.fPtr.seek(self.cookiePos, os.SEEK_SET)
+                # Read CArchive cookie
+                (magic, lengthofPackage, toc, tocLen, pyver) = struct.unpack("!8siiii", self.fPtr.read(self.PYINST20_COOKIE_SIZE))
+            elif self.pyinstVer == 21:
+                self.fPtr.seek(self.cookiePos, os.SEEK_SET)
+                # Read CArchive cookie
+                (magic, lengthofPackage, toc, tocLen, pyver, pylibname) = struct.unpack(
+                    "!8sIIii64s", self.fPtr.read(self.PYINST21_COOKIE_SIZE)
+                )
+        except Exception as e:
+            log.error("[!] The file is not a pyinstaller archive: %s", str(e))
+            return False
+
+        self.pymaj, self.pymin = (pyver // 100, pyver % 100) if pyver >= 100 else (pyver // 10, pyver % 10)
+        log.debug("[+] Python version: %d.%d", self.pymaj, self.pymin)
+
+        # Additional data after the cookie
+        tailBytes = (
+            self.fileSize - self.cookiePos - (self.PYINST20_COOKIE_SIZE if self.pyinstVer == 20 else self.PYINST21_COOKIE_SIZE)
+        )
+
+        # Overlay is the data appended at the end of the PE
+        self.overlaySize = lengthofPackage + tailBytes
+        self.overlayPos = self.fileSize - self.overlaySize
+        self.tableOfContentsPos = self.overlayPos + toc
+        self.tableOfContentsSize = tocLen
+
+        log.debug("[+] Length of package: %d bytes", lengthofPackage)
+        return True
+
+    def parseTOC(self):
+        # Go to the table of contents
+        self.fPtr.seek(self.tableOfContentsPos, os.SEEK_SET)
+
+        self.tocList = []
+        parsedLen = 0
+
+        # Parse table of contents
+        while parsedLen < self.tableOfContentsSize:
+            (entrySize,) = struct.unpack("!i", self.fPtr.read(4))
+            nameLen = struct.calcsize("!iIIIBc")
+
+            (entryPos, cmprsdDataSize, uncmprsdDataSize, cmprsFlag, typeCmprsData, name) = struct.unpack(
+                "!IIIBc{0}s".format(entrySize - nameLen), self.fPtr.read(entrySize - 4)
+            )
+
+            try:
+                name = name.decode("utf-8").rstrip("\0")
+            except UnicodeDecodeError:
+                newName = str(uniquename())
+                log.warning("[!] File name %s contains invalid bytes. Using random name %s", name, newName)
+                name = newName
+
+            # Prevent writing outside the extraction directory
+            if name.startswith("/"):
+                name = name.lstrip("/")
+
+            if len(name) == 0:
+                name = str(uniquename())
+                log.warning("[!] Found an unamed file in CArchive. Using random name %s", name)
+
+            self.tocList.append(
+                CTOCEntry(self.overlayPos + entryPos, cmprsdDataSize, uncmprsdDataSize, cmprsFlag, typeCmprsData, name)
+            )
+
+            parsedLen += entrySize
+        log.info("[+] Found %d files in CArchive", len(self.tocList))
+
+    def _writeRawData(self, filepath, data):
+        nm = filepath.replace("\\", os.path.sep).replace("/", os.path.sep).replace("..", "__")
+        nmDir = os.path.dirname(nm)
+        if nmDir != "" and not os.path.exists(nmDir):  # Check if path exists, create if not
+            os.makedirs(nmDir)
+
+        with open(nm, "wb") as f:
+            f.write(data)
+
+    def extractFiles(self):
+        log.debug("[+] Beginning extraction...please standby")
+        # extractionDir = os.path.join(os.getcwd(), os.path.basename(self.filePath) + "_extracted")
+        extractionDir = self.destination_folder
+        if not os.path.exists(extractionDir):
+            os.mkdir(extractionDir)
+
+        # os.chdir(extractionDir)
+
+        for entry in self.tocList:
+            destination_entry = os.path.join(self.destination_folder, entry.name)
+            self.fPtr.seek(entry.position, os.SEEK_SET)
+            data = self.fPtr.read(entry.cmprsdDataSize)
+
+            if entry.cmprsFlag == 1:
+                try:
+                    data = zlib.decompress(data)
+                except zlib.error:
+                    log.error("[!] Failed to decompress %s", entry.name)
+                    continue
+                # Malware may tamper with the uncompressed size
+                # Comment out the assertion in such a case
+                assert len(data) == entry.uncmprsdDataSize  # Sanity Check
+
+            if entry.typeCmprsData in (b"d", b"o"):
+                # d -> ARCHIVE_ITEM_DEPENDENCY
+                # o -> ARCHIVE_ITEM_RUNTIME_OPTION
+                # These are runtime options, not files
+                continue
+
+            basePath = os.path.dirname(entry.name)
+            if basePath != "":
+                # Check if path exists, create if not
+                if not os.path.exists(basePath):
+                    os.makedirs(basePath)
+
+            if entry.typeCmprsData == b"s":
+                # s -> ARCHIVE_ITEM_PYSOURCE
+                # Entry point are expected to be python scripts
+                log.info("[+] Possible entry point: %s.pyc", entry.name)
+
+                if self.pycMagic == b"\0" * 4:
+                    # if we don't have the pyc header yet, fix them in a later pass
+                    self.barePycList.append(destination_entry + ".pyc")
+                self._writePyc(destination_entry + ".pyc", data)
+
+            elif entry.typeCmprsData == (b"M", b"m") and not self.only_entrypoints:
+                # M -> ARCHIVE_ITEM_PYPACKAGE
+                # m -> ARCHIVE_ITEM_PYMODULE
+                # packages and modules are pyc files with their header intact
+
+                # From PyInstaller 5.3 and above pyc headers are no longer stored
+                # https://github.com/pyinstaller/pyinstaller/commit/a97fdf
+                if data[2:4] == b"\r\n":
+                    # < pyinstaller 5.3
+                    if self.pycMagic == b"\0" * 4:
+                        self.pycMagic = data[0:4]
+                    self._writeRawData(destination_entry + ".pyc", data)
+                else:
+                    # >= pyinstaller 5.3
+                    if self.pycMagic == b"\0" * 4:
+                        # if we don't have the pyc header yet, fix them in a later pass
+                        self.barePycList.append(destination_entry + ".pyc")
+                    self._writePyc(destination_entry + ".pyc", data)
+            else:
+                if not self.only_entrypoints:
+                    self._writeRawData(destination_entry, data)
+
+                    if entry.typeCmprsData in (b"z", b"Z"):
+                        self._extractPyz(destination_entry)
+
+        # Fix bare pyc's if any
+        self._fixBarePycs()
+
+    def _fixBarePycs(self):
+        for pycFile in self.barePycList:
+            with open(pycFile, "r+b") as pycFile:
+                # Overwrite the first four bytes
+                pycFile.write(self.pycMagic)
+
+    def _writePyc(self, filename, data):
+        with open(filename, "wb") as pycFile:
+            pycFile.write(self.pycMagic)  # pyc magic
+
+            if self.pymaj >= 3 and self.pymin >= 7:  # PEP 552 -- Deterministic pycs
+                pycFile.write(b"\0" * 4)  # Bitfield
+                pycFile.write(b"\0" * 8)  # (Timestamp + size) || hash
+
+            else:
+                pycFile.write(b"\0" * 4)  # Timestamp
+                if self.pymaj >= 3 and self.pymin >= 3:
+                    pycFile.write(b"\0" * 4)  # Size parameter added in Python 3.3
+
+            pycFile.write(data)
+
+    def _extractPyz(self, name):
+        dirName = name + "_extracted"
+        # Create a directory for the contents of the pyz
+        if not os.path.exists(dirName):
+            os.mkdir(dirName)
+
+        with open(name, "rb") as f:
+            pyzMagic = f.read(4)
+            assert pyzMagic == b"PYZ\0"  # Sanity Check
+
+            pyzPycMagic = f.read(4)  # Python magic value
+            if self.pycMagic == b"\0" * 4:
+                self.pycMagic = pyzPycMagic
+            elif self.pycMagic != pyzPycMagic:
+                self.pycMagic = pyzPycMagic
+                log.warning("[!] pyc magic of files inside PYZ archive are different from those in CArchive")
+
+            # Skip PYZ extraction if not running under the same python version
+            if self.pymaj != sys.version_info.major or self.pymin != sys.version_info.minor:
+                log.warning(
+                    "[!] Warning: This script is running in a different Python version than the one used to build the executable."
+                )
+                log.info(
+                    "[!] Please run this script in Python %d.%d to prevent extraction errors during unmarshalling.\nSkipping pyz extraction",
+                    self.pymaj,
+                    self.pymin,
+                )
+                return
+
+            (tocPosition,) = struct.unpack("!i", f.read(4))
+            f.seek(tocPosition, os.SEEK_SET)
+
+            try:
+                toc = marshal.load(f)
+            except Exception as e:
+                log.error("[!] Unmarshalling FAILED. Cannot extract %s. Extracting remaining files. Error: %s", name, str(e))
+                return
+
+            log.debug("[+] Found %d files in PYZ archive", len(toc))
+
+            # From pyinstaller 3.1+ toc is a list of tuples
+            if isinstance(toc, list):
+                toc = dict(toc)
+
+            for key in toc.keys():
+                (ispkg, pos, length) = toc[key]
+                f.seek(pos, os.SEEK_SET)
+                fileName = key
+
+                with suppress(Exception):
+                    # for Python > 3.3 some keys are bytes object some are str object
+                    fileName = fileName.decode("utf-8")
+
+                # Prevent writing outside dirName
+                fileName = fileName.replace("..", "__").replace(".", os.path.sep)
+                if ispkg == 1:
+                    filePath = os.path.join(dirName, fileName, "__init__.pyc")
+                else:
+                    filePath = os.path.join(dirName, fileName + ".pyc")
+
+                fileDir = os.path.dirname(filePath)
+                if not os.path.exists(fileDir):
+                    os.makedirs(fileDir)
+
+                try:
+                    data = f.read(length)
+                    data = zlib.decompress(data)
+                except Exception as e:
+                    print("[!] Error: Failed to decompress %s, probably encrypted. Extracting as is. Error: %s", filePath, str(e))
+                    open(filePath + ".encrypted", "wb").write(data)
+                else:
+                    self._writePyc(filePath, data)
+
+
+def main(kwargs):
+    # kwargs = {"file": "path_to_file", "destination_folder": "path_where_to_extract", "entry_points": False/True}
+    arch = PyInstArchive(kwargs)
+    if arch.open() and arch.checkFile() and arch.getCArchiveInfo():
+        arch.parseTOC()
+        arch.extractFiles()
+        arch.close()
+        log.debug(
+            "[+] Successfully extracted pyinstaller archive: %s\nYou can now use a python decompiler on the pyc files within the extracted directory",
+            kwargs["file"],
+        )
+        return
+    arch.close()
+
+
+if __name__ == "__main__":
+    import argparse
+
+    parser = argparse.ArgumentParser(
+        prog="PyInstaller Extractor",
+        description="PyInstaller Extractor is a Python script to extract the contents of a PyInstaller generated executable file.",
+    )
+    parser.add_argument("-f", "--file", action="store")
+    parser.add_argument("-d", "--destination-folder", action="store", help="Folder to store extracted files")
+    parser.add_argument("-e", "--entry-points", action="store_true", help="Extract only possible entry points")
+
+    options = parser.parse_args()
+    if not options.file or not os.path.exists(options.file):
+        parser.print_help()
+        sys.exit()
+
+    # Convert to dict/kwargs
+    options = vars(options)
+    logging.basicConfig()
+    log.setLevel(logging.DEBUG)
+    main(options)
diff --git a/lib/cuckoo/common/integrations/strings.py b/lib/cuckoo/common/integrations/strings.py
new file mode 100644
index 00000000000..7f66e525615
--- /dev/null
+++ b/lib/cuckoo/common/integrations/strings.py
@@ -0,0 +1,63 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation, Optiv, Inc. (brad.spengler@optiv.com)
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+import logging
+from pathlib import Path
+
+from lib.cuckoo.common.config import Config
+from lib.cuckoo.common.utils import bytes2str
+
+try:
+    import re2 as re
+
+    HAVE_RE2 = True
+except ImportError:
+    import re
+
+    HAVE_RE2 = False
+
+processing_cfg = Config("processing")
+log = logging.getLogger(__name__)
+
+
+def extract_strings(filepath: str = False, data: bytes = False, on_demand: bool = False, dedup: bool = False, minchars: int = 0):
+    """Extract strings from analyzed file.
+    @return: list of printable strings.
+    """
+    if not processing_cfg.strings.enabled or processing_cfg.strings.on_demand and not on_demand:
+        return
+
+    nulltermonly = processing_cfg.strings.nullterminated_only
+    if minchars == 0:
+        minchars = processing_cfg.strings.minchars
+
+    if filepath:
+        p = Path(filepath)
+        if not p.exists():
+            log.error("Sample file doesn't exist: %s", filepath)
+            return
+        try:
+            data = p.read_bytes()
+        except (IOError, OSError) as e:
+            log.error("Error reading file: %s", e)
+            return
+
+    if not data:
+        return
+
+    endlimit = b"8192" if not HAVE_RE2 else b""
+    if nulltermonly:
+        apat = b"([\x20-\x7e]{" + str(minchars).encode() + b"," + endlimit + b"})\x00"
+        upat = b"((?:[\x20-\x7e][\x00]){" + str(minchars).encode() + b"," + endlimit + b"})\x00\x00"
+    else:
+        apat = b"[\x20-\x7e]{" + str(minchars).encode() + b"," + endlimit + b"}"
+        upat = b"(?:[\x20-\x7e][\x00]){" + str(minchars).encode() + b"," + endlimit + b"}"
+
+    strings = [bytes2str(string) for string in re.findall(apat, data)]
+    strings.extend(str(ws.decode("utf-16le")) for ws in re.findall(upat, data))
+
+    if dedup:
+        strings = list(set(strings))
+
+    return strings
diff --git a/lib/cuckoo/common/integrations/vba2graph.py b/lib/cuckoo/common/integrations/vba2graph.py
index e7923d5d886..7b73b2d0b74 100644
--- a/lib/cuckoo/common/integrations/vba2graph.py
+++ b/lib/cuckoo/common/integrations/vba2graph.py
@@ -1,37 +1,1123 @@
 # Copyright (C) 2010-2015 Cuckoo Foundation.
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
-from __future__ import absolute_import
-import os
+# Credits to @MalwareCantFly
+# Code taken from https://github.com/MalwareCantFly/Vba2Graph
+
+import errno
 import logging
+import os
+import sys
+from io import StringIO
+from subprocess import Popen
 
 from lib.cuckoo.common.config import Config
 from lib.cuckoo.common.constants import CUCKOO_ROOT
+from lib.cuckoo.common.path_utils import path_exists, path_mkdir
+
+try:
+    import networkx as nx
+    from networkx.drawing.nx_pydot import write_dot
+except ImportError:
+    print("Optional! Missed regex dependency: poetry run pip install networkx[default,extra]")
+
+try:
+    import regex as re
+except ImportError:
+    print("Optional! Missed regex dependency: poetry run pip install regex")
 
 log = logging.getLogger(__name__)
 
 processing_conf = Config("processing")
 
+LINE_SEP = "\n"
 HAVE_VBA2GRAPH = False
+
+lst_mal_case_sensetive = [
+    "Open",
+    "Write",
+    "Put",
+    "Output",
+    "Print #",
+    "Binary",
+    "FileCopy",
+    "CopyFile",
+    "Kill",
+    "CreateTextFile",
+    "ADODB.Stream",
+    "WriteText",
+    "SaveToFile",
+    "vbNormal",
+    "vbNormalFocus",
+    "vbHide",
+    "vbMinimizedFocus",
+    "vbMaximizedFocus",
+    "vbNormalNoFocus",
+    "vbMinimizedNoFocus",
+    r"\\w+\\.Run",
+    "MacScript",
+    "popen",
+    r"exec[lv][ep]?",
+    "noexit",
+    "ExecutionPolicy",
+    "noprofile",
+    "command",
+    "EncodedCommand",
+    "invoke-command",
+    "scriptblock",
+    "Invoke-Expression",
+    "AuthorizationManager",
+    "Start-Process",
+    r"Application\\.Visible",
+    "ShowWindow",
+    "SW_HIDE",
+    "MkDir",
+    "ActiveWorkbook.SaveAs",
+    "Application.AltStartupPath",
+    "CreateObject",
+    "New-Object",
+    "Windows",
+    "FindWindow",
+    r"libc\\.dylib",
+    "dylib",
+    "CreateThread",
+    "VirtualAlloc",
+    "VirtualAllocEx",
+    "RtlMoveMemory",
+    "EnumSystemLanguageGroupsW?",
+    "EnumDateFormats(?:W|(?:Ex){1,2})?",
+    "URLDownloadToFileA",
+    "User-Agent",
+    r"Net\\.WebClient",
+    "DownloadFile",
+    "DownloadString",
+    "SendKeys",
+    "AppActivate",
+    "CallByName",
+    "RegOpenKeyExAs",
+    "RegOpenKeyEx",
+    "RegCloseKey",
+    "RegQueryValueExA",
+    "RegQueryValueEx",
+    "RegRead",
+    "GetVolumeInformationA",
+    "GetVolumeInformation",
+    "1824245000",
+    r"HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\ProductId",
+    "popupkiller",
+    "SbieDll\\.dll",
+    "SandboxieControlWndClass",
+    "currentuser",
+    "Schmidti",
+    "AccessVBOM",
+    "VBAWarnings",
+    "ProtectedView",
+    "DisableAttachementsInPV",
+    "DisableInternetFilesInPV",
+    "DisableUnsafeLocationsInPV",
+    "blockcontentexecutionfrominternet",
+    "VBProject",
+    "VBComponents",
+    "CodeModule",
+    "AddFromString",
+    "Call",
+    "GetObject",
+    "ExecQuery",
+    "GetStringValue",
+    "GetDWORDValue",
+    r"ActiveDocument\\.\\w+",
+    "DOMDocument",
+    "IXMLDOMElement",
+    "ComputerName",
+    "Domain",
+    "RegRead",
+    "RegWrite",
+    "#If Mac",
+    "appdata",
+    r"WordBasic\\.\\w+",
+    "WriteLine",
+    "Cells",
+    r"Application\\.\\w+",
+    "Sleep",
+    "Process",
+    r"NormalTemplate\\.\\w+",
+    r"\\w+\\.Application",
+    "CommandBars",
+    r"System\\.\\w+",
+    "setRequestHeader",
+    "Send",
+    "setOption",
+    "RecentFiles",
+    "Mozilla",
+    "UserName",
+    "DeleteFile",
+    "Delete",
+    r"\\.Execute",
+    r"\\.Content",
+    "MsgBox",
+    r"\\.Quit",
+    "Run",
+    "Now",
+    "Comments",
+    "PROCESSOR_ARCHITECTURE",
+    "CopyFolder",
+    "winmgmts",
+    r"bin\\.base64",
+    r"\\.CreateKey",
+    r"\\.Create",
+    r"\\.SpawnInstance_",
+    r"Selection\\.WholeStory",
+    r"\\.CreateShortcut",
+    r"\\.CreateFolder",
+    r"\\.DynamicInvoke",
+    r"\\.CreateInstance",
+    r"\\.MSFConnect",
+    r"\\.RegisterTaskDefinition",
+    r"Shell\.Application|ShellExecute|WScript\\.Shell|Shell",
+    r"\\.Load",
+    r"\\.transformNode",
+    "ExecuteExcel4Macro",
+    r".\\Show",
+]
+
+# Recognize attempts to hide values in form controls and properties
+lst_mal_case_sensetive += [
+    r"\\.caption",
+    r"\\.text",
+    r"\\.value",
+    r"\\.ControlTipText",
+    r"\\.tag",
+    r"\\.CustomDocumentProperties",
+    r"\\.AlternativeText",
+]
+
+lst_obfuscation_keywords = [
+    "Asc",
+    "Mid",
+    "Left",
+    "Right",
+    "Tan",
+    "StrReverse",
+    "Xor",
+    "ChrB",
+    "ChrW",
+    "Chr",
+    "CStr",
+    "StrConv",
+    "Replace",
+    "Int",
+    "Hex",
+    "Sqr",
+    "CByte",
+    "Log",
+    "Rnd",
+]
+
+lst_mal_case_insensetive = [
+    r"SYSTEM\\ControlSet001\\Services\\Disk\\Enum",
+    "VIRTUAL",
+    "VMWARE",
+    "VBOX",
+    r'"[\\w-_\\/]+\.(?:EXE|PIF|GADGET|MSI|MSP|MSC|VBS|VBE|VB|JSE|JS|WSF|WSC|WSH|WS|BAT|CMD|DLL|SCR|HTA|CPL|CLASS|JAR|PS1XML|PS1|PS2XML|PS2|PSC1|PSC2|SCF|LNK|INF|REG)"',
+    "FileSystemObject",
+    "GetSpecialFolder",
+    "PowerShell",
+    r"SELECT \\* FROM \w+",
+    "deletefolder",
+    r"regsvr\\.32",
+    r"scrobj\\.dll",
+    r"cmd\\.exe",
+    r'Environ\\("ALLUSERSPROFILE"\\)|Environ\\("TEMP"\\)|Environ\\("TMP"\\)|Environ',
+    r"Msxml2\\.XMLHTTP|Microsoft\\.XMLHTTP|MSXML2\\.ServerXMLHTTP|microsoft\.xmlhttp|http",
+]
+
+lst_autorun = [
+    "AutoExec",
+    "AutoOpen",
+    "DocumentOpen",
+    "AutoExit",
+    "AutoClose",
+    "Document_Close",
+    "DocumentBeforeClose",
+    "DocumentChange",
+    "AutoNew",
+    "Document_New",
+    "NewDocument",
+    "Document_Open",
+    "Document_BeforeClose",
+    "Auto_Open",
+    "Workbook_Open",
+    "Workbook_Activate",
+    "Workbook_Deactivate",
+    "Auto_Close",
+    "Workbook_Close",
+    r"\\w+_Painted",
+    r"\\w+_Change",
+    r"\\w+_DocumentBeforePrint",
+    r"\\w+_DocumentOpen",
+    r"\\w+_DocumentBeforeClose",
+    r"\\w+_DocumentBeforeSave",
+    r"\\w+_GotFocus",
+    r"\\w+_LostFocus",
+    r"\\w+_MouseHover",
+    r"\\w+_Resize",
+    "App_WorkbookOpen",
+    "App_NewWorkbook",
+    "App_WorkbookBeforeClose",
+    "Workbook_BeforeClose",
+    "FileSave",
+    "CloseWithoutSaving",
+    "FileOpen",
+    "FileClose",
+    "FileExit",
+    "Workbook_SheetSelectionChange",
+    "Workbook_BeforeSave",
+    "FileTemplates",
+    "ViewVBCode",
+    "ToolsMacro",
+    "FormatStyle",
+    "OpenMyMacro",
+    "HelpAbout",
+    r"\\w+_Layout",
+    r"\\w+_Painting",
+    r"\\w+_BeforeNavigate2",
+    r"\\w+_BeforeScriptExecute",
+    r"\\w+_DocumentComplete",
+    r"\\w+_DownloadBegin",
+    r"\\w+_DownloadComplete",
+    r"\\w+_FileDownload",
+    r"\\w+_NavigateComplete2",
+    r"\\w+_NavigateError",
+    r"\\w+_ProgressChange",
+    r"\\w+_PropertyChange",
+    r"\\w+_PropertyChange",
+    r"\\w+_StatusTextChange",
+    r"\\w+_TitleChange",
+    r"\\w+_MouseMove",
+    r"\\w+_MouseEnter",
+    r"\\w+_MouseLeave",
+    r"\\w+_Activate",
+]
+
+lst_mal_case_sensetive += lst_obfuscation_keywords
+
+color_schemes = [
+    {  # regular theme - boring black on white
+        "COLOR_BACKGROUND": "#FFFFFF",
+        "COLOR_DEFAULT_BOX": "black",
+        "COLOR_DEFAULT_TEXT": "black",
+        "COLOR_DEFAULT_EDGES": "black",
+        "COLOR_DEFAULT_EDGES_FONT": "black",
+        "COLOR_REGULAR_KEYWORD": "black",
+        "COLOR_OBFUSCATION_KEYWORD": "#666699",
+        "COLOR_CRITICAL_NUM_OF_CALLS": "red",
+        "COUNT_CRITICAL_NUM_OF_CALLS": 10,
+        "COLOR_PROPERTY": "purple",
+        "COLOR_TRIGGERED_CALL_EDGE": "purple",
+        "COLOR_AUTORUN_FUNCTIONS": "red",
+        "COLOR_EXTERNAL_FUNCTION": "brown",
+    },
+    {  # darker theme - cyan colors
+        "COLOR_BACKGROUND": "#40334E",
+        "COLOR_DEFAULT_BOX": "#6A416D",
+        "COLOR_DEFAULT_TEXT": "#E9BA69",
+        "COLOR_DEFAULT_EDGES": "white",
+        "COLOR_DEFAULT_EDGES_FONT": "white",
+        "COLOR_REGULAR_KEYWORD": "#9E62E7",
+        "COLOR_OBFUSCATION_KEYWORD": "#666699",
+        "COLOR_CRITICAL_NUM_OF_CALLS": "red",
+        "COUNT_CRITICAL_NUM_OF_CALLS": 10,
+        "COLOR_PROPERTY": "#ABDACC",
+        "COLOR_TRIGGERED_CALL_EDGE": "#F6C565",
+        "COLOR_AUTORUN_FUNCTIONS": "red",
+        "COLOR_EXTERNAL_FUNCTION": "#ABDACC",
+    },
+    {  # 80s theme
+        "COLOR_BACKGROUND": "#6075AF",
+        "COLOR_DEFAULT_BOX": "#F3879B",
+        "COLOR_DEFAULT_TEXT": "#88D3F4",
+        "COLOR_DEFAULT_EDGES": "white",
+        "COLOR_DEFAULT_EDGES_FONT": "white",
+        "COLOR_REGULAR_KEYWORD": "#FFE5D3",
+        "COLOR_OBFUSCATION_KEYWORD": "#8999c2",
+        "COLOR_CRITICAL_NUM_OF_CALLS": "#F6C565",
+        "COUNT_CRITICAL_NUM_OF_CALLS": 10,
+        "COLOR_PROPERTY": "#ABDACC",
+        "COLOR_TRIGGERED_CALL_EDGE": "#F6C565",
+        "COLOR_AUTORUN_FUNCTIONS": "#F6C565",
+        "COLOR_EXTERNAL_FUNCTION": "#ABDACC",
+    },
+    {  # terminal theme
+        "COLOR_BACKGROUND": "black",
+        "COLOR_DEFAULT_BOX": "#31FF00",
+        "COLOR_DEFAULT_TEXT": "#31FF00",
+        "COLOR_DEFAULT_EDGES": "#31FF00",
+        "COLOR_DEFAULT_EDGES_FONT": "#31FF00",
+        "COLOR_REGULAR_KEYWORD": "#31FF00",
+        "COLOR_OBFUSCATION_KEYWORD": "#356235",
+        "COLOR_CRITICAL_NUM_OF_CALLS": "#c2ffb3",
+        "COUNT_CRITICAL_NUM_OF_CALLS": 10,
+        "COLOR_PROPERTY": "#c2ffb3",
+        "COLOR_TRIGGERED_CALL_EDGE": "#c2ffb3",
+        "COLOR_AUTORUN_FUNCTIONS": "#c2ffb3",
+        "COLOR_EXTERNAL_FUNCTION": "#c2ffb3",
+    },
+]
+
+# set default color scheme
+color_scheme = color_schemes[0]
+
 if processing_conf.vba2graph.enabled:
+    HAVE_VBA2GRAPH = True
+
     try:
-        from lib.cuckoo.common.office.vba2graph import vba2graph_from_vba_object, vba2graph_gen
-        HAVE_VBA2GRAPH = True
+        from oletools.olevba import VBA_Parser
+
+        # Temporary workaround. Change when oletools 0.56 will be released.
+        VBA_Parser.detect_vba_stomping = lambda self: False
+        HAVE_OLETOOLS = True
     except ImportError:
-        HAVE_VBA2GRAPH = False
+        HAVE_OLETOOLS = False
 
 
-def vba2graph_func(file_path, id, on_demand=False):
-    if HAVE_VBA2GRAPH and processing_conf.vba2graph.enabled and (processing_conf.vba2graph.on_demand is False or on_demand is True):
+def vba2graph_func(file_path: str, id: str, sha256: str, on_demand: bool = False):
+    if HAVE_VBA2GRAPH and processing_conf.vba2graph.enabled and (not processing_conf.vba2graph.on_demand or on_demand):
         try:
-            vba2graph_svg_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", id, "vba2graph", "svg", "vba2graph.svg")
-            if os.path.exists(vba2graph_svg_path):
-                return
             vba2graph_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", id, "vba2graph")
-            if not os.path.exists(vba2graph_path):
-                os.makedirs(vba2graph_path)
+            vba2graph_svg_path = os.path.join(vba2graph_path, f"{sha256}.svg")
+            if path_exists(vba2graph_svg_path):
+                return
+            if not path_exists(vba2graph_path):
+                path_mkdir(vba2graph_path)
             vba_code = vba2graph_from_vba_object(file_path)
             if vba_code:
-                vba2graph_gen(vba_code, vba2graph_path)
+                vba2graph_gen(input_vba_content=vba_code, output_folder=vba2graph_path, input_file_name=sha256)
+        except ModuleNotFoundError as e:
+            log.error("Missed  vba2graph dependency: %s", str(e))
+        except Exception as e:
+            log.error("Inside vba2graph_func: %s", str(e))
+
+
+def vba2graph_from_vba_object(filepath):
+    """vba2graph as library
+    Args:
+        filepath (string): path to file
+    """
+    log.info("Extracting macros from file")
+    if HAVE_OLETOOLS:
+        try:
+            vba = VBA_Parser(filepath)
+        except ValueError as e:
+            log.error("VBA_Parser in vba2graph: %s", str(e))
+            return False
         except Exception as e:
-            log.info(e)
+            log.error(e)
+            return False
+    full_vba_code = ""
+    for subfilename, stream_path, vba_filename, vba_code in vba.extract_macros():
+        full_vba_code += "VBA MACRO %s \n" % vba_filename
+        full_vba_code += "- " * 39 + "\n"
+        # Temporary workaround. Change when oletools 0.56 will be released.
+        if isinstance(vba_code, bytes):
+            vba_code = vba_code.decode("utf8", errors="replace")
+        full_vba_code += vba_code
+    vba.close()
+    if full_vba_code:
+        input_vba_content = handle_olevba_input(full_vba_code)
+        return input_vba_content
+    return False
+
+
+def handle_olevba_input(file_content):
+    """Parses olevba output and returns the VBA code
+
+    Args:
+        file_content (string): the content of olevba output
+
+    Returns:
+        string: only VBA code
+    """
+    input_vba_content = ""
+    inside_data = False
+    inside_code = False
+    log.info("Parsing olevba content")
+
+    content_lines = file_content.split(LINE_SEP)
+
+    for vba_line in content_lines:
+        # ignore olevba ascii art
+        if vba_line.startswith("+") or vba_line.startswith("|"):
+            continue
+        if vba_line.startswith("-----"):
+            inside_data = False
+            inside_code = False
+        elif vba_line.startswith("- - - -"):
+            inside_data = True
+        elif inside_data and inside_code and not vba_line.startswith("(empty macro)"):
+            input_vba_content += vba_line + LINE_SEP
+        elif vba_line.startswith("VBA MACRO"):
+            inside_code = True
+
+    return input_vba_content
+
+
+def vba2graph_gen(input_vba_content, output_folder="output", input_file_name="vba2graph", color_scheme=color_scheme):
+    """Generage graph from processed vba macros
+    Args:
+        input_vba_content (string): data generated by handle_olevba_input
+        output_folder (string): output folder
+        input_file_name (string): base filename
+        color_scheme (int): color scheme number [0, 1, 2, 3] (default: 0 - B&W)
+    """
+
+    # ****************************************************************************
+    # *                               Process Input                              *
+    # ****************************************************************************
+
+    vba_content_lines = vba_seperate_lines(input_vba_content)
+    vba_content_lines_no_whitespace = vba_clean_whitespace(vba_content_lines)
+    vba_content_lines_no_metadata = vba_clean_metadata(vba_content_lines_no_whitespace)
+    vba_content_deobfuscated = vba_deobfuscation(vba_content_lines_no_metadata)
+    vba_func_dict = vba_extract_functions(vba_content_deobfuscated)
+    vba_prop_dict = vba_extract_properties(vba_content_lines_no_metadata)
+
+    # treat properties like functions and merge both dictionaries
+    vba_func_dict = dict(vba_func_dict.items() | vba_prop_dict.items())
+
+    ##############################################################################
+    # at this point, vba_func_dict should contain the code of functions and
+    # properties, without comments or whitespaces.
+    ##############################################################################
+
+    # ****************************************************************************
+    # *                              Generate Graph                              *
+    # ****************************************************************************
+
+    DG = create_call_graph(vba_func_dict)
+    DG = find_keywords_in_graph(vba_func_dict, DG)
+    DG = find_change_flow(vba_func_dict, DG)
+    DG = design_graph_dot(DG)
+
+    # ****************************************************************************
+    # *                           Generate Output Files                          *
+    # ****************************************************************************
+
+    log.info("Generating output files")
+
+    ############################################
+    # Generate functions listing for debugging #
+    ############################################
+
+    bas_folder = output_folder + os.sep + "bas"
+    try:
+        os.makedirs(bas_folder)
+    except OSError as exc:
+        if exc.errno != errno.EEXIST:
+            log.error("Error creating debugging output folder")
+    code_output_path = bas_folder + os.sep + input_file_name + ".bas"
+    create_functions_listing(vba_func_dict, code_output_path)
+
+    ################################
+    # Generate DOT file from graph #
+    ################################
+    dot_folder = output_folder + os.sep + "dot"
+    try:
+        os.makedirs(dot_folder)
+    except OSError as exc:
+        if exc.errno != errno.EEXIST:
+            log.error("Error creating DOT output folder")
+    dot_output_path = dot_folder + os.sep + input_file_name + ".dot"
+
+    # redirect NetworkX write_dot output to StringIO for further manipulation
+    str_io_dot = StringIO()
+    write_dot(DG, str_io_dot)
+    str_dot = str_io_dot.getvalue().replace("\\", "")
+    str_io_dot.close()
+
+    # check if our DOT file is broken (one of the funciton names was reserved keyword)
+    str_dot = fix_dot_output(str_dot)
+
+    with open(dot_output_path, "wb") as the_file:
+        the_file.write(str_dot.encode("utf-8", errors="ignore"))
+
+    ##############################
+    # Generate PNG file from DOT #
+    ##############################
+    png_folder = output_folder + os.sep + "png"
+    try:
+        os.makedirs(png_folder)
+    except OSError as exc:
+        if exc.errno != errno.EEXIST:
+            log.error("Error creating PNG output folder")
+    png_output_path = png_folder + os.sep + input_file_name + ".png"
+    process = Popen(["dot", "-Tpng", dot_output_path, "-o", png_output_path])
+    process.wait()
+
+    ##############################
+    # Generate SVG file from DOT #
+    ##############################
+    svg_folder = output_folder + os.sep + "svg"
+    try:
+        os.makedirs(svg_folder)
+    except OSError as exc:
+        if exc.errno != errno.EEXIST:
+            log.error("Error creating PNG output folder")
+    svg_output_path = svg_folder + os.sep + input_file_name + ".svg"
+    process = Popen(["dot", "-Tsvg", dot_output_path, "-o", svg_output_path])
+    process.wait()
+
+
+def vba_seperate_lines(input_vba_content):
+    """Takes the full VBA input and breaks it into lines
+
+    Args:
+        input_vba_content (string): full VBA content
+
+    Returns:
+        string[]: array of VBA code lines
+    """
+    # make sure we normalize different line seperators
+    input_vba_content = input_vba_content.replace("\r\n", LINE_SEP)
+
+    # concat VBA lines that were split by " _"
+    input_vba_content = input_vba_content.replace(" _" + LINE_SEP, " ")
+
+    # split lines by LINE_SEP
+    return input_vba_content.split(LINE_SEP)
+
+
+def vba_clean_whitespace(vba_content_lines):
+    """Removes unnecessary whitespace from the VBA code
+
+    Args:
+        vba_content_lines (string[]): Array of VBA code lines
+
+    Returns:
+        string[]: Array of VBA code lines, without unnecessary whitespace
+    """
+    result_vba_lines = []
+
+    # process lines one by one
+    for vba_line in vba_content_lines:
+        # remove leading and trailing whitespace
+        # & reduce multiple whitespaces into one space
+        vba_line = " ".join(vba_line.split())
+
+        # check and discard empty lines
+        if vba_line == "":
+            continue
+
+        result_vba_lines.append(vba_line)
+
+    return result_vba_lines
+
+
+def vba_clean_metadata(vba_content_lines):
+    """Removes unnecessary comments and metadata from the VBA code
+
+    Args:
+        vba_content_lines (string[]): VBA code lines without unnecessary whitespace
+
+    Returns:
+        string[]: VBA code lines without comments and metadata
+    """
+    result_vba_lines = []
+    # process lines one by one
+    for vba_line in vba_content_lines:
+        # check and discard empty lines
+        if vba_line.startswith("Attribute") or vba_line.startswith("'"):
+            continue
+
+        # crop inline comments
+        possible_inline_comment_pos = vba_line.find(" '")
+        if possible_inline_comment_pos > -1:
+            # look for '"' after the ', in order to find FP inline comment detections
+            if vba_line.find('"', possible_inline_comment_pos) < 0:
+                inline_comment_pos = possible_inline_comment_pos
+                vba_line = vba_line[:inline_comment_pos]
+
+        result_vba_lines.append(vba_line)
+
+    return result_vba_lines
+
+
+def vba_deobfuscation(vba_content_lines):
+    """Solves simple obfuscation techniques
+
+    Args:
+        vba_content_lines (string[]): VBA code lines without comments, metadata or spaces
+
+    Returns:
+        string[]: clean VBA code lines with less obfuscation
+    """
+    result_vba_lines = []
+
+    # process lines one by one
+    for vba_line in vba_content_lines:
+        # Technique #1
+        # solve simple string concatenation
+        # "Wsc" & "ript" would become "Wscript"
+        # Reference maldoc: d050a5b4d8a990951c8a9310ed700dd6
+        vba_line = vba_line.replace('" & "', "")
+        result_vba_lines.append(vba_line)
+
+    return result_vba_lines
+
+
+def vba_extract_functions(vba_content_lines):
+    """Seperates the input VBA code into functions
+
+    Args:
+        vba_content_lines (string[]): VBA code lines without comments, metadata or spaces
+
+    Returns:
+        dict[func_name]=func_code: Dictionary of VBA functions found
+    """
+    vba_func_dict = {}
+    inside_function = False
+    func_name = ""
+
+    # process lines one by one
+    for vba_line in vba_content_lines:
+        # ****************************************************************************
+        # *                   Handle External Function Declaration                   *
+        # ****************************************************************************
+
+        #   Create dummy empty function with func_name:
+        #       mcvWGqJifEVHwB (URLDownloadToFileA)
+        # Examples:
+        #   Private Declare Function NyKQpQhtmrFfWX Lib "kernel32" Alias "lstrcmpA" (ByVal pCaller As Long,..
+        #   - would become: NyKQpQhtmrFfWX (lstrcmpA) (External)
+        #   Private Declare PtrSafe Function mcvWGqJifEVHwB Lib "urlmon" Alias "URLDownloadToFileA" (ByVal pfsseerwseer As Long,...
+        #   - would become: mcvWGqJifEVHwB (URLDownloadToFileA) (External)
+
+        if " Lib " in vba_line and " Alias " in vba_line and not inside_function:
+            if " Function " in vba_line:
+                func_type = " Function "
+            else:
+                func_type = " Sub "
+
+            declared_func_name = vba_line[vba_line.find(func_type) + len(func_type) : vba_line.find(" Lib ")]
+            external_func_name = vba_line[
+                vba_line.find(' Alias "') + len(' Alias "') : vba_line.find('" (', vba_line.find(' Alias "') + len(' Alias "'))
+            ]
+            func_name = declared_func_name + " (" + external_func_name + ")" + " (External)"
+
+            if "libc.dylib" in vba_line:
+                func_name += "(Mac)"
+
+            vba_func_dict[func_name] = ""
+            continue
+
+        #   Create dummy empty function with func_name that do not have Alias:
+        # Examples:
+        #   Public Declare PtrSafe Sub Sleep Lib "kernel32" (ByVal dwMilliseconds As LongPtr)
+        #   - would become: Sleep
+        #   Public Declare Sub Sleep Lib "kernel32" (ByVal dwMilliseconds As Long)
+        #   - would become: Sleep
+
+        if " Lib " in vba_line and not inside_function:
+            if " Function " in vba_line:
+                func_type = " Function "
+            else:
+                func_type = " Sub "
+            func_name = vba_line[vba_line.find(func_type) + len(func_type) : vba_line.find(" Lib ")] + " (External)"
+
+            if "libc.dylib" in vba_line:
+                func_name += "(Mac)"
+
+            vba_func_dict[func_name] = ""
+            continue
+
+        # ****************************************************************************
+        # *                    Handle Regular Function Declaration                   *
+        # ****************************************************************************
+
+        # look for function start keywords
+        func_start_pos = max(vba_line.find("Sub "), vba_line.find("Function "))
+
+        # Some macros have the word "Function" as string inside a code line.
+        # This should remove FP funtions, by checking the line start
+        legit_declare_line_start = False
+        if (
+            vba_line.startswith("Sub")
+            or vba_line.startswith("Function")
+            or vba_line.startswith("Private")
+            or vba_line.startswith("Public")
+        ):
+            legit_declare_line_start = True
+
+        is_func_end = vba_line.startswith("End Sub") or vba_line.startswith("End Function")
+
+        # check if we've reached the end of a function
+        if is_func_end:
+            inside_function = False
+            continue
+
+        # check if we've hit a new function
+        elif legit_declare_line_start and func_start_pos > -1:
+            inside_function = True
+
+            # extract function name from declaration
+            if "Function " in vba_line:
+                func_name = vba_line[(func_start_pos + len("Function ")) : vba_line.find("(")]
+            elif "Sub " in vba_line:
+                func_name = vba_line[(func_start_pos + len("Sub ")) : vba_line.find("(")]
+            else:
+                log.error("Error parsing function name")
+                sys.exit(1)
+
+        # check if we are inside a function code
+        elif inside_function:
+            if func_name in vba_func_dict:
+                # append code to to an existing function
+                vba_func_dict[func_name] += LINE_SEP + vba_line
+            else:
+                # create a new function name inside the dict
+                # & add the first line of code
+                vba_func_dict[func_name] = vba_line
+
+        # we are in a global section code line
+        else:
+            pass
+
+    return vba_func_dict
+
+
+def vba_extract_properties(vba_content_lines):
+    """Find and extract the use of VBA Properties, in order to obfuscate macros
+
+    Args:
+        vba_content_lines (string[]): VBA code lines without comments, metadata or spaces
+
+    Returns:
+        dict[property_name]=property_code: Dictionary of VBA Properties found
+    """
+
+    vba_prop_dict = {}
+    inside_property = False
+    prop_name = ""
+
+    # process lines one by one
+    for vba_line in vba_content_lines:
+        # look for property start keywords
+        prop_start_pos = max(vba_line.find("Property Let "), vba_line.find("Property Get "))
+
+        # look for property end keywords
+        is_prop_end = vba_line.startswith("End Property")
+
+        # check if we've reached the end of a property
+        if is_prop_end:
+            inside_property = False
+            continue
+
+        # check if we've hit a new property
+        elif prop_start_pos > -1:
+            inside_property = True
+
+            # extract property name from declaration
+            if "Property Let " in vba_line or "Property Get " in vba_line:
+                prop_name = vba_line[(prop_start_pos + len("Property Let ")) : vba_line.find("(")] + " (Property)"
+
+            else:
+                log.error("Error parsing property name")
+                sys.exit(1)
+
+        # check if we are inside a property code
+        elif inside_property:
+            if prop_name in vba_prop_dict:
+                # append code to to an existing property
+                vba_prop_dict[prop_name] += LINE_SEP + vba_line
+            else:
+                # create a new property name inside the dict
+                # & add the first line of code
+                vba_prop_dict[prop_name] = vba_line
+
+        # we are in a global section code line
+        else:
+            pass
+
+    return vba_prop_dict
+
+
+def create_call_graph(vba_func_dict):
+    """Creates directed graph object (DG) from VBA functions dicitonary
+
+    Args:
+        vba_func_dict (dict[func_name]=func_code): Functions dictionary
+
+    Returns:
+        networkx.DiGraph: Directed Graph (DG) representing VBA call graph
+    """
+    DG = nx.DiGraph()
+    for func_name in vba_func_dict:
+        DG.add_node(func_name, keywords="")
+    # analyze function calls
+    for func_name in vba_func_dict:
+        func_code = vba_func_dict[func_name]
+        # split function code into tokens
+        func_code_tokens = list(filter(None, re.split(r'["(, \\-!?:\\r\\n)&=.><]+', func_code)))
+        # inside each function's code, we are looking for a function name
+        for func_name1 in vba_func_dict:
+            orig_func_name = func_name1
+            # in case of a external function declaration,
+            # we should use only the Alias from the function name:
+            #   mcvWGqJifEVHwB (URLDownloadToFileA)
+            #   - would become: mcvWGqJifEVHwB
+            space_pos = func_name1.find(" ")
+            if space_pos > -1:
+                func_name1 = func_name1[:space_pos]
+
+            for i in range(0, func_code_tokens.count(func_name1)):
+                # ignore self-edges
+                if func_name != func_name1:
+                    # found a function call
+                    if orig_func_name not in DG[func_name]:
+                        DG.add_edge(func_name, orig_func_name, count=1)
+                    else:
+                        new_count = DG[func_name][orig_func_name]["count"] + 1
+                        DG[func_name][orig_func_name]["count"] = new_count
+                        DG[func_name][orig_func_name]["label"] = "x" + str(new_count)
+                        if new_count >= color_scheme["COUNT_CRITICAL_NUM_OF_CALLS"]:
+                            DG[func_name][orig_func_name]["fontcolor"] = color_scheme["COLOR_CRITICAL_NUM_OF_CALLS"]
+    return DG
+
+
+def find_keywords_in_graph(vba_func_dict, DG):
+    """Find and highlight possible malicious keywords in graph
+
+    Args:
+        vba_func_dict (dict[func_name]=func_code): Functions dictionary
+        DG (networkx.DiGraph): Generated directed graph
+
+    Returns:
+        networkx.DiGraph: Directed Graph with keywords highlighted in red
+    """
+    # analyze function calls
+    for func_name in vba_func_dict:
+        func_code = vba_func_dict[func_name]
+        # split function code into lines
+        func_code_lines = filter(None, re.split("\n", func_code))
+
+        # handle malicious keywords
+        keywords_re_sensetive = "(" + ")|(".join(lst_mal_case_sensetive) + ")"
+        keywords_re_insensetive = "(" + ")|(".join(lst_mal_case_insensetive) + ")"
+
+        # iterate over all the words in func_code and match mal_regexes
+        dict_items = {}
+        for token in func_code_lines:
+            match_findall_sensetive = re.findall(keywords_re_sensetive, token)
+            match_findall_insensetive = re.findall(keywords_re_insensetive, token, re.IGNORECASE)
+            match_findall = match_findall_sensetive + match_findall_insensetive
+            if match_findall:
+                for match in match_findall:
+                    match_list = list(match)
+
+                    # use dictionary dict_items to count occurances of keywords
+                    for list_item in match_list:
+                        if list_item != "":
+                            if list_item not in dict_items:
+                                dict_items[list_item] = 1
+                            else:
+                                dict_items[list_item] = dict_items[list_item] + 1
+
+        # add keywords to graph
+        for dic_key in dict_items:
+            if dic_key in lst_obfuscation_keywords:
+                keyword_color = color_scheme["COLOR_OBFUSCATION_KEYWORD"]
+            else:
+                keyword_color = color_scheme["COLOR_REGULAR_KEYWORD"]
+
+            keyword_count = dict_items[dic_key]
+            if DG.nodes[func_name]["keywords"] != "":
+                DG.nodes[func_name]["keywords"] = DG.nodes[func_name]["keywords"] + ","
+
+            DG.nodes[func_name]["keywords"] = (
+                DG.nodes[func_name]["keywords"]
+                + "<font color='"
+                + keyword_color
+                + "'>"
+                + dic_key
+                + "["
+                + str(keyword_count)
+                + "]"
+                + "</font>"
+            )
+
+        # handle autorun keywords
+        keywords_re = "(" + ")|(".join(lst_autorun) + ")"
+        if re.match(keywords_re, func_name, re.IGNORECASE):
+            DG.nodes[func_name]["color"] = color_scheme["COLOR_AUTORUN_FUNCTIONS"]
+    return DG
+
+
+def find_change_flow(vba_func_dict, DG):
+    """Finds alternative macros call flow that is utilized by malicious macros:
+    A _Change event is created for an object, and then the object text is changed using code.
+    This creates a dummy call flow without explicitly calling a function.
+
+    Args:
+        vba_func_dict (dict[func_name]=func_code): Functions dictionary
+        DG (networkx.DiGraph): Generated directed graph
+
+    Returns:
+        networkx.DiGraph: Directed Graph with highlighted Change triggers
+    """
+    # Find all the all the objects that have a _Change event
+    # like TextBox1_Change
+    changed_objects = []
+    for func_name in vba_func_dict:
+        if "_Change" in func_name:
+            changed_object = func_name.replace("_Change", "")
+            changed_objects.append(changed_object)
+
+    # Find  pieces of code that assign to an object, which would
+    # cause a _Change event Trigger
+    for func_name in vba_func_dict:
+        func_code = vba_func_dict[func_name]
+        # split function code into lines
+        func_code_lines = filter(None, re.split("\n", func_code))
+        for func_line in func_code_lines:
+            for changed_object in changed_objects:
+                # look for .[changed_object] pattern, followd by "="
+                found_loc = func_line.find("." + changed_object)
+                if found_loc > -1:
+                    if func_line.find("=", found_loc) > -1:
+                        # we found object with Change event that was assigned a value
+
+                        # show this connection as a function call
+                        DG.add_edge(
+                            func_name,
+                            changed_object + "_Change",
+                            label="Triggers",
+                            fontcolor=color_scheme["COLOR_TRIGGERED_CALL_EDGE"],
+                        )
+    return DG
+
+
+def design_graph_dot(DG):
+    """Select the design of regular graph nodes (colors and content)
+
+    Args:
+        DG (networkx.DiGraph): Generated directed graph
+
+    Returns:
+        networkx.DiGraph: Directed Graph with node design and content
+    """
+    # locate malicious keywords
+    for key in DG:
+        if "color" not in DG.nodes[key]:
+            DG.nodes[key]["color"] = color_scheme["COLOR_DEFAULT_BOX"]
+        DG.nodes[key]["fontcolor"] = color_scheme["COLOR_DEFAULT_TEXT"]
+
+        # handle functions without keywords - create box shape
+        if DG.nodes[key]["keywords"] == "":
+            DG.nodes[key]["shape"] = "box"
+
+            # color external functions
+            if "(External)" in key:
+                DG.nodes[key]["color"] = color_scheme["COLOR_EXTERNAL_FUNCTION"]
+
+        # handle functions with keywords - create html table
+        else:
+            DG.nodes[key]["shape"] = "plaintext"
+            DG.nodes[key]["margin"] = 0
+
+            header = key
+            content = DG.nodes[key]["keywords"]
+            DG.nodes[key]["label"] = (
+                r"<<TABLE BORDER=\"0\" CELLBORDER=\"1\" CELLSPACING=\"0\"><TR><TD><FONT FACE=\"Courier\">"
+                + header
+                + r"</FONT></TD></TR><TR><TD><FONT FACE=\"Courier Bold\">"
+                + content
+                + r"</FONT></TD></TR></TABLE>>"
+            )
+            # fix a bug in DOT generation
+            DG.nodes[key]["keywords"] = ""
+
+            # color VBA properties
+            if "(Property)" in key:
+                DG.nodes[key]["color"] = color_scheme["COLOR_PROPERTY"]
+
+    # graph background color
+    DG.add_node("graph", bgcolor=color_scheme["COLOR_BACKGROUND"])
+    DG.add_node("edge", color=color_scheme["COLOR_DEFAULT_EDGES"], fontcolor=color_scheme["COLOR_DEFAULT_EDGES_FONT"])
+
+    return DG
+
+
+def create_functions_listing(function_dict, code_output_path):
+    """Creates a .bas file with a listing of all the recognized VBA functions
+
+    Args:
+        function_dict (func_dict[func_name]=func_code): Functions dictionary
+        code_output_path (string): Listing output path
+    """
+    f_output = open(code_output_path, "w")
+
+    for func_name in function_dict:
+        # limit func_name size to display
+        func_name_limited = func_name[:70]
+        prefix_padding = int((77 - len(func_name_limited)) / 2) * " "
+        suffix_padding = int(77 - len(prefix_padding) - len(func_name_limited)) * " "
+
+        f_output.write("'" + "*" * 79)
+        f_output.write("\n")
+        f_output.write("'*" + prefix_padding + func_name_limited + suffix_padding + "*")
+        f_output.write("\n")
+        f_output.write("'" + "*" * 79)
+        f_output.write("\n")
+        f_output.write(function_dict[func_name])
+        f_output.write("\n")
+
+    f_output.close()
+
+
+def fix_dot_output(str_dot):
+    """Make changes to NX write_dot output
+    Args:
+        str_dot (string): output of NX write_dot function
+    """
+
+    # change function names that collide with protected DOT keywords
+    # reference: https://www.graphviz.org/doc/info/lang.html
+    dot_keywords = ["node", "edge", "graph", "digraph", "subgraph", "strict"]
+
+    str_dot_lines = str_dot.split("\n")
+
+    new_str_dot = ""
+    # iterate over all the dot file lines and change function names which
+    # are reserved DOT keywords
+    for cur_line in str_dot_lines:
+        new_str_dot_line = cur_line
+
+        pass_line = False
+        # check if we are in the first disgraph declaration line
+        # example: strict digraph  {
+        if "digraph  " in cur_line:
+            pass_line = True
+
+        # check if we are in a graph declaration line
+        # example: graph [bgcolor="#6075AF"];
+        if "bgcolor=" in cur_line:
+            pass_line = True
+
+        # check if we are in a generic edge declaration line
+        # example: edge [color=white, fontcolor=white];
+        if "edge" in cur_line and "keywords" not in cur_line and "count" not in cur_line:
+            pass_line = True
+
+        # if we are not in a reserved keyword line, and
+        # if we find a reserved keyword in cur line -> add underscore to this function name
+        if not pass_line:
+            for dot_keyword in dot_keywords:
+                re_result = re.search("(?i)" + dot_keyword + " ", cur_line)
+                if re_result:
+                    found_keyword_with_space = re_result.group()
+                    found_keyword = found_keyword_with_space[:-1]
+                    replace_keyword_with = found_keyword + "_" + " "
+                    new_str_dot_line = new_str_dot_line.replace(found_keyword_with_space, replace_keyword_with)
+
+        new_str_dot += new_str_dot_line + "\n"
+
+    return new_str_dot
diff --git a/lib/cuckoo/common/office/vbadeobf.py b/lib/cuckoo/common/integrations/vbadeobf.py
similarity index 71%
rename from lib/cuckoo/common/office/vbadeobf.py
rename to lib/cuckoo/common/integrations/vbadeobf.py
index 4df6f39b761..1103a31665d 100644
--- a/lib/cuckoo/common/office/vbadeobf.py
+++ b/lib/cuckoo/common/integrations/vbadeobf.py
@@ -2,22 +2,28 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
+import binascii
+import contextlib
 import string
-from six.moves import zip
+from base64 import b64decode
+from itertools import chain, repeat
+from typing import Callable, List, Tuple
+
+from lib.cuckoo.common.utils import convert_to_printable
 
 try:
     import re2 as re
 except ImportError:
     import re
 
-from itertools import chain, repeat
-from lib.cuckoo.common.utils import convert_to_printable
-from os.path import exists
-
 # Regexs from Decalages olevba.py + a commonly observed path regex.
 PATTERNS = (
-    ("URL", re.compile(r"(http|https|ftp)\://[a-zA-Z0-9\-\.]+(:[a-zA-Z0-9]*)?/?([a-zA-Z0-9\-\._\?\,/\\\+&amp;%\$#\=~])*[^\.\,\)\(\'\s]")),
+    (
+        "URL",
+        re.compile(
+            r"(http|https|ftp)\://[a-zA-Z0-9\-\.]+(:[a-zA-Z0-9]*)?/?([a-zA-Z0-9\-\._\?\,/\\\+&amp;%\$#\=~])*[^\.\,\)\(\'\s]"
+        ),
+    ),
     (
         "IPv4 address",
         re.compile(r"\b(([0-9]|[1-9][0-9]|1[0-9]{2}|2[0-4][0-9]|25[0-5])\.){3}([0-9]|[1-9][0-9]|1[0-9]{2}|2[0-4][0-9]|25[0-5])\b"),
@@ -35,51 +41,50 @@
 DECRYPTORS = {}
 
 
-def is_printable(s):
+def is_printable(s: str) -> bool:
     return all(c in string.printable for c in s)
 
 
-def filter_printable(s):
+def filter_printable(s: str) -> str:
     return "".join(c for c in s if c in string.printable)
 
 
-def repeating_xor(s, key):
+def repeating_xor(s: str, key: str) -> str:
     repeating_key = chain.from_iterable(repeat(key))
     return "".join(chr(ord(c) ^ ord(k)) for c, k in zip(s, repeating_key))
 
 
-def quote(f):
-    return lambda *args: '"""' + f(*args) + '"""'
+def quote(f: Callable[[re.Match], str]):
+    return lambda *args: f'"""{f(*args)}"""'
 
 
-def decrypt(enc_type):
-    def wrapper(f):
+def decrypt(enc_type: str) -> Callable[[Callable[[re.Match], str]], Callable[[re.Match], str]]:
+    def wrapper(f: Callable[[re.Match], str]) -> Callable[[re.Match], str]:
         DECRYPTORS[enc_type] = f
         return f
 
     return wrapper
 
 
-def normalize_code(macro):
-    macro = re.sub(r"_\s*\n", " ", macro)  # Remove underscore line continuation.
-    return macro
+def normalize_code(macro: str) -> str:
+    return re.sub(r"_\s*\n", " ", macro)  # Remove underscore line continuation.
 
 
 @quote
-def decode_chr(m):
-    ascii = re.findall(r"Chr[A-Z$]?\((\d+)\)", m.group(1))
-    return "".join(chr(int(n)) for n in ascii)
+def decode_chr(m: re.Match) -> str:
+    ascii_chars = re.findall(r"Chr[A-Z$]?\((\d+)\)", m.group(1))
+    return "".join(chr(int(n)) for n in ascii_chars)
 
 
 @quote
-def decode_base64(m):
+def decode_base64(m: re.Match) -> str:
     s = m.group(1)
     if (len(s) % 4 != 0 and not s.endswith("=")) or ("=" in s.rstrip("=")):
         return s
 
     try:
-        decoded = s.decode("base64")
-    except:
+        decoded = b64decode(s).decode()
+    except (binascii.Error, UnicodeDecodeError):
         return s
 
     if not is_printable(decoded):
@@ -88,71 +93,64 @@ def decode_base64(m):
 
 
 @quote
-def decode_hex(m):
+def decode_hex(m: re.Match) -> str:
     s = m.group(1)
     if len(s) % 2 != 0:
         return s
     try:
-        result = "".join(c for c in s.decode("hex"))
-    except Exception as e:
+        result = "".join(binascii.unhexlify(s))
+    except Exception:
         return ""
     return result
 
 
 @quote
-def decode_reverse(m):
+def decode_reverse(m: re.Match) -> str:
     return m.group(1)[::-1]
 
 
 @quote
-def concatenate(m):
-    line = m.group(0)
+def concatenate(m: re.Match) -> str:
     return "".join(re.findall(r'"""(.*?)"""', m.group(0)))
 
 
 @decrypt("xor")
 @quote
-def decrypt_xor(m):
+def decrypt_xor(m: re.Match) -> str:
     return repeating_xor(m.group(1), m.group(2))
 
 
 @decrypt("sub")
 @quote
-def decrypt_sub(m):
-    try:
+def decrypt_sub(m: re.Match):
+    with contextlib.suppress(Exception):
+        # TODO: Needs a relook, will likely error
         first = int([c for c in m.group(1) if c.isdigit()])
         second = int([c for c in m.group(2) if c.isdigit()])
         if first and second:
             return chr(first - second)
-    except:
-        pass
     return m.group()
 
 
-def find_enc_function(macro):
+def find_enc_function(macro) -> Tuple[str, str]:
     match, type = re.search(r"(?ims)Public Function (\w+).+? Xor .+?End Function", macro), "xor"
     if not match:
         match, type = re.search(r"(?ims)Public Function (\w+).+?\d+\s*-\s*\d+.+?End Function", macro), "sub"
     return (match.group(1), type) if match else (None, None)
 
 
-def handle_techniques(line, **opts):
-
-    vb_vars = opts["vb_vars"]
+def handle_techniques(line: str, **opts) -> str:
     enc_func_name = opts["enc_func_name"]
     decrypt_func = opts["decrypt_func"]
 
-    def var_substitute(m):
-        var = m.group(1)
-
     line = line.replace('"', '"""')
     line = re.sub(r'"""([A-F0-9]{2,})"""', decode_hex, line)
     line = re.sub(r'"""([\w_+=/]{2,})"""', decode_base64, line)
     line = re.sub(r"(?i)Chr[A-Z$]\(Asc[A-Z$](.+?)\)\)", r"\1", line)
     line = re.sub(r'(?i)Asc[A-Z$]\("""(\w)\w*"""\)', lambda m: ord(m.group(1)), line)
     line = re.sub(r"(?i)((?:Chr[A-Z$]?\(\d+\)\s*&?\s*)+)", decode_chr, line)
-    line = re.sub(r'(?i)\b%s\s*\(\w+\("""(.+?)"""\),\s*\w+\("""(.+?)"""' % enc_func_name, decrypt_func, line)
-    line = re.sub(r'(?i)\b%s\((?:""")?(.+?)(?:""")?,\s*(?:""")?(.+?)(?:""")?\)' % enc_func_name, decrypt_func, line)
+    line = re.sub(rf'(?i)\b{enc_func_name}\s*\(\w+\("""(.+?)"""\),\s*\w+\("""(.+?)"""', decrypt_func, line)
+    line = re.sub(rf'(?i)\b{enc_func_name}\((?:""")?(.+?)(?:""")?,\s*(?:""")?(.+?)(?:""")?\)', decrypt_func, line)
     line = re.sub(r'(?i)StrReverse\(.+?"""(.+?)"""\)', decode_reverse, line)
     line = re.sub(r'""".+?"""\s+&+\s+""".+?""".+', concatenate, line)
     while "Chr(Asc(" in line:
@@ -170,7 +168,7 @@ def var_substitute(m):
     return line
 
 
-def extract_iocs(s):
+def extract_iocs(s: str) -> Tuple[str, str]:
     for desc, pattern in PATTERNS:
         m = pattern.findall(s)
         if m:
@@ -188,13 +186,11 @@ def extract_iocs(s):
     return None
 
 
-def parse_macro(macro):
+def parse_macro(macro: str) -> List[Tuple[str, str]]:
     opts = {}
     vb_vars = {}
     result = {}
-    cleaned = ""
-    strings = set()
-    iocs = []
+    iocs = set()
     macro = normalize_code(macro)
 
     enc_func_name, enc_type = find_enc_function(macro)
@@ -220,12 +216,12 @@ def parse_macro(macro):
             vb_vars[name] = substituted
 
         # Walk the deobfuscated macro and check for any IOCs
-        for string in substituted.splitlines():
-            ioc = extract_iocs(string)
+        for line in substituted.splitlines():
+            ioc = extract_iocs(line)
             if ioc:
-                iocs.append(ioc)
+                iocs.add(ioc)
 
     # Dedup IOCs
-    result = sorted(set(iocs), key=lambda p: p[0])
+    result = sorted(iocs, key=lambda p: p[0])
 
     return result
diff --git a/lib/cuckoo/common/integrations/vbe_decoder.py b/lib/cuckoo/common/integrations/vbe_decoder.py
new file mode 100644
index 00000000000..01936536a41
--- /dev/null
+++ b/lib/cuckoo/common/integrations/vbe_decoder.py
@@ -0,0 +1,313 @@
+#!/usr/bin/env python3
+
+__description__ = "Decode an encoded VBScript, often seen as a .vbe file"
+__author__ = "John Hammond"
+__date__ = "02/10/2021"
+
+"""
+Credit for this baseline code goes to Didier Stevens, from his original repo.
+https://github.com/DidierStevens/DidierStevensSuite/blob/master/decode-vbe.py
+
+All I have done is merely cleaned the code a bit, made it Python3 friendly,
+and handled support for multiple #@~...#~@ markings.
+https://github.com/JohnHammond/vbe-decoder/blob/master/vbe-decoder.py
+"""
+
+
+import re
+import sys
+from pathlib import Path
+from typing import List
+
+
+def decode_data(data: str) -> str:
+
+    # Magic number used for the VBE voodoo magic below
+    decoding_offset = 9
+
+    # Decoding mapping for unique bytes in the encoded scheme
+    decodings = (
+        "\x57\x6E\x7B",
+        "\x4A\x4C\x41",
+        "\x0B\x0B\x0B",
+        "\x0C\x0C\x0C",
+        "\x4A\x4C\x41",
+        "\x0E\x0E\x0E",
+        "\x0F\x0F\x0F",
+        "\x10\x10\x10",
+        "\x11\x11\x11",
+        "\x12\x12\x12",
+        "\x13\x13\x13",
+        "\x14\x14\x14",
+        "\x15\x15\x15",
+        "\x16\x16\x16",
+        "\x17\x17\x17",
+        "\x18\x18\x18",
+        "\x19\x19\x19",
+        "\x1A\x1A\x1A",
+        "\x1B\x1B\x1B",
+        "\x1C\x1C\x1C",
+        "\x1D\x1D\x1D",
+        "\x1E\x1E\x1E",
+        "\x1F\x1F\x1F",
+        "\x2E\x2D\x32",
+        "\x47\x75\x30",
+        "\x7A\x52\x21",
+        "\x56\x60\x29",
+        "\x42\x71\x5B",
+        "\x6A\x5E\x38",
+        "\x2F\x49\x33",
+        "\x26\x5C\x3D",
+        "\x49\x62\x58",
+        "\x41\x7D\x3A",
+        "\x34\x29\x35",
+        "\x32\x36\x65",
+        "\x5B\x20\x39",
+        "\x76\x7C\x5C",
+        "\x72\x7A\x56",
+        "\x43\x7F\x73",
+        "\x38\x6B\x66",
+        "\x39\x63\x4E",
+        "\x70\x33\x45",
+        "\x45\x2B\x6B",
+        "\x68\x68\x62",
+        "\x71\x51\x59",
+        "\x4F\x66\x78",
+        "\x09\x76\x5E",
+        "\x62\x31\x7D",
+        "\x44\x64\x4A",
+        "\x23\x54\x6D",
+        "\x75\x43\x71",
+        "\x4A\x4C\x41",
+        "\x7E\x3A\x60",
+        "\x4A\x4C\x41",
+        "\x5E\x7E\x53",
+        "\x40\x4C\x40",
+        "\x77\x45\x42",
+        "\x4A\x2C\x27",
+        "\x61\x2A\x48",
+        "\x5D\x74\x72",
+        "\x22\x27\x75",
+        "\x4B\x37\x31",
+        "\x6F\x44\x37",
+        "\x4E\x79\x4D",
+        "\x3B\x59\x52",
+        "\x4C\x2F\x22",
+        "\x50\x6F\x54",
+        "\x67\x26\x6A",
+        "\x2A\x72\x47",
+        "\x7D\x6A\x64",
+        "\x74\x39\x2D",
+        "\x54\x7B\x20",
+        "\x2B\x3F\x7F",
+        "\x2D\x38\x2E",
+        "\x2C\x77\x4C",
+        "\x30\x67\x5D",
+        "\x6E\x53\x7E",
+        "\x6B\x47\x6C",
+        "\x66\x34\x6F",
+        "\x35\x78\x79",
+        "\x25\x5D\x74",
+        "\x21\x30\x43",
+        "\x64\x23\x26",
+        "\x4D\x5A\x76",
+        "\x52\x5B\x25",
+        "\x63\x6C\x24",
+        "\x3F\x48\x2B",
+        "\x7B\x55\x28",
+        "\x78\x70\x23",
+        "\x29\x69\x41",
+        "\x28\x2E\x34",
+        "\x73\x4C\x09",
+        "\x59\x21\x2A",
+        "\x33\x24\x44",
+        "\x7F\x4E\x3F",
+        "\x6D\x50\x77",
+        "\x55\x09\x3B",
+        "\x53\x56\x55",
+        "\x7C\x73\x69",
+        "\x3A\x35\x61",
+        "\x5F\x61\x63",
+        "\x65\x4B\x50",
+        "\x46\x58\x67",
+        "\x58\x3B\x51",
+        "\x31\x57\x49",
+        "\x69\x22\x4F",
+        "\x6C\x6D\x46",
+        "\x5A\x4D\x68",
+        "\x48\x25\x7C",
+        "\x27\x28\x36",
+        "\x5C\x46\x70",
+        "\x3D\x4A\x6E",
+        "\x24\x32\x7A",
+        "\x79\x41\x2F",
+        "\x37\x3D\x5F",
+        "\x60\x5F\x4B",
+        "\x51\x4F\x5A",
+        "\x20\x42\x2C",
+        "\x36\x65\x57",
+    )
+
+    # The combination switching for the encoded bytes
+    combinations = (
+        0,
+        1,
+        2,
+        0,
+        1,
+        2,
+        1,
+        2,
+        2,
+        1,
+        2,
+        1,
+        0,
+        2,
+        1,
+        2,
+        0,
+        2,
+        1,
+        2,
+        0,
+        0,
+        1,
+        2,
+        2,
+        1,
+        0,
+        2,
+        1,
+        2,
+        2,
+        1,
+        0,
+        0,
+        2,
+        1,
+        2,
+        1,
+        2,
+        0,
+        2,
+        0,
+        0,
+        1,
+        2,
+        0,
+        2,
+        1,
+        0,
+        2,
+        1,
+        2,
+        0,
+        0,
+        1,
+        2,
+        2,
+        0,
+        0,
+        1,
+        2,
+        0,
+        2,
+        1,
+    )
+
+    # Replace the data with some strings we already know the meaning of
+    replacements = {"@&": chr(10), "@#": chr(13), "@*": ">", "@!": "<", "@$": "@"}
+    for to_replace, replace_with in replacements.items():
+        data = data.replace(to_replace, replace_with)
+
+    # Now that it is prepared, replace all the other encoded data
+    result = ""
+    index = -1
+    bad_bytes = {60, 62, 64}
+    for char in data:
+        byte = ord(char)
+        if byte < 128:
+            index += 1
+        if byte == decoding_offset or 31 < byte < 128 and byte not in bad_bytes:
+            # Do the translation to get the right byte
+            char = decodings[byte - decoding_offset][combinations[index % 64]]
+
+        result += char
+
+    return result
+
+
+def fatal_error(message: str):
+    """
+    Convenience function to display an error message and quit.
+    """
+    sys.stderr.write(f"[!] fatal error, {message}\n")
+    sys.exit(-1)
+
+
+def success(message: str):
+    """
+    Convenience function to display a success message and quit.
+    """
+    sys.stderr.write(f"[+] success, {message}\n")
+
+
+def validate_files(files: List[str]):
+    """
+    Check if the supplied files actually exist and are in fact files
+    """
+    for file in files:
+        p = Path(file)
+        if not p.exists() or not p.is_file():
+            fatal_error(f"supplied file '{file}' does not exist")
+
+
+def decode_files(files: List[str]) -> str:
+    return "\n".join(decode_file(file) for file in files)
+
+
+def decode_file(file: str, contents: bytes = False) -> str:
+    if not contents:
+        try:
+            contents = Path(file).read_bytes().decode("latin-1", errors="ignore")
+        except Exception as e:
+            fatal_error(f"{e.message}")
+
+    else:
+        if isinstance(contents, bytes):
+            contents = contents.decode("latin-1", errors="ignore")
+
+    encoded_data = re.findall(r"#@~\^......==(.+)......==\^#~@", contents)
+    return "\n".join(decode_data(data) for data in encoded_data)
+
+
+def main(files: List[str], output_file: str):
+    """
+    Decode an encoded VBScript, often seen as a .vbe file
+    """
+
+    # Ensure we can work with these files, and then decode them
+    validate_files(files)
+    output = decode_files(files)
+
+    # Return the results as requested.
+    if not output_file:
+        sys.stdout.write(output)
+    else:
+        try:
+            _ = Path(output_file).write_text(output)
+            success(f"wrote decoded vbscript to '{output_file}'")
+        except Exception as e:
+            fatal_error(f"{e.message}")
+
+
+if __name__ == "__main__":
+    import argparse
+
+    parser = argparse.ArgumentParser(description=__description__)
+    parser.add_argument("files", metavar="file", type=str, nargs="+", help="file to decode")
+    parser.add_argument("-o", "--output", metavar="output", type=str, default=None, help="output file (default stdout)")
+    args = parser.parse_args()
+
+    main(args.files, args.output)
diff --git a/lib/cuckoo/common/integrations/virustotal.py b/lib/cuckoo/common/integrations/virustotal.py
new file mode 100644
index 00000000000..cb7068f5e7c
--- /dev/null
+++ b/lib/cuckoo/common/integrations/virustotal.py
@@ -0,0 +1,282 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation, Optiv, Inc. (brad.spengler@optiv.com)
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+import base64
+import logging
+import operator
+from collections import defaultdict
+from http import HTTPStatus
+
+import requests
+
+from lib.cuckoo.common.config import Config
+from lib.cuckoo.common.objects import File
+from lib.cuckoo.common.path_utils import path_exists
+from lib.cuckoo.common.utils import add_family_detection
+
+try:
+    import re2 as re
+except ImportError:
+    import re
+
+log = logging.getLogger(__name__)
+
+# https://docs.virustotal.com/v3/reference/files
+VIRUSTOTAL_FILE_URL = "https://www.virustotal.com/api/v3/files/{id}"
+# https://docs.virustotal.com/v3/reference/url-object
+VIRUSTOTAL_URL_URL = "https://www.virustotal.com/api/v3/urls/{id}"
+
+processing_conf = Config("processing")
+
+key = processing_conf.virustotal.key
+do_file_lookup = processing_conf.virustotal.get("do_file_lookup", False)
+do_url_lookup = processing_conf.virustotal.get("do_url_lookup", False)
+urlscrub = processing_conf.virustotal.urlscrub
+timeout = int(processing_conf.virustotal.timeout)
+remove_empty = processing_conf.virustotal.remove_empty
+
+headers = {"x-apikey": key}
+
+"""
+from modules.processing.virustotal import vt_lookup
+res = vt_lookup("file", "d17f3c491d68d8cb37c37752689bdca8c2664a2bc305530e2e2beb3704fcca4b", on_demand=True)
+"""
+
+banlist = (
+    "other",
+    "troj",
+    "trojan",
+    "win32",
+    "trojandownloader",
+    "trojandropper",
+    "dropper",
+    "tsgeneric",
+    "malware",
+    "dldr",
+    "downloader",
+    "injector",
+    "agent",
+    "nsis",
+    "genetic",
+    "generik",
+    "generic",
+    "generickd",
+    "genericgb",
+    "generickdz",
+    "behaveslike",
+    "heur",
+    "inject2",
+    "trojanspy",
+    "trojanpws",
+    "reputation",
+    "script",
+    "score",
+    "w97m",
+    "pp97m",
+    "lookslike",
+    "macro",
+    "dloadr",
+    "kryptik",
+    "graftor",
+    "artemis",
+    "zbot",
+    "w2km",
+    "docdl",
+    "variant",
+    "packed",
+    "trojware",
+    "worm",
+    "backdoor",
+    "email",
+    "obfuscated",
+    "cryptor",
+    "obfus",
+    "virus",
+    "xpack",
+    "crypt",
+    "rootkit",
+    "malwares",
+    "malicious",
+    "suspicious",
+    "riskware",
+    "risk",
+    "win64",
+    "troj64",
+    "drop",
+    "hacktool",
+    "exploit",
+    "msil",
+    "inject",
+    "dropped",
+    "program",
+    "unwanted",
+    "heuristic",
+    "patcher",
+    "tool",
+    "potentially",
+    "rogue",
+    "keygen",
+    "unsafe",
+    "application",
+    "risktool",
+    "multi",
+    "msoffice",
+    "ransom",
+    "autoit",
+    "yakes",
+    "java",
+    "ckrf",
+    "html",
+    "bngv",
+    "bnaq",
+    "o97m",
+    "blqi",
+    "bmbg",
+    "mikey",
+    "kazy",
+    "x97m",
+    "msword",
+    "cozm",
+    "eldorado",
+    "fakems",
+    "cloud",
+    "stealer",
+    "dangerousobject",
+    "symmi",
+    "zusy",
+    "dynamer",
+    "obfsstrm",
+    "krypt",
+    "lazy",
+    "linux",
+    "unix",
+    "ftmn",
+)
+
+
+def get_vt_consensus(namelist: list):
+    finaltoks = defaultdict(int)
+    for name in namelist:
+        toks = re.findall(r"[A-Za-z0-9]+", name)
+        for tok in toks:
+            finaltoks[tok.title()] += 1
+    for tok in list(finaltoks):
+        lowertok = tok.lower()
+        accepted = True
+        numlist = [x for x in tok if x.isdigit()]
+        if len(numlist) > 2 or len(tok) < 4:
+            accepted = False
+        if accepted:
+            for black in banlist:
+                if black == lowertok:
+                    accepted = False
+                    break
+        if not accepted:
+            del finaltoks[tok]
+
+    sorted_finaltoks = sorted(list(finaltoks.items()), key=operator.itemgetter(1), reverse=True)
+    if len(sorted_finaltoks) == 1 and sorted_finaltoks[0][1] >= 2:
+        return sorted_finaltoks[0][0]
+    elif len(sorted_finaltoks) > 1 and (sorted_finaltoks[0][1] >= sorted_finaltoks[1][1] * 2 or sorted_finaltoks[0][1] > 8):
+        return sorted_finaltoks[0][0]
+    elif len(sorted_finaltoks) > 1 and sorted_finaltoks[0][1] == sorted_finaltoks[1][1] and sorted_finaltoks[0][1] > 2:
+        return sorted_finaltoks[0][0]
+    return ""
+
+
+def vt_lookup(category: str, target: str, results: dict = {}, on_demand: bool = False):
+    if not processing_conf.virustotal.enabled or processing_conf.virustotal.get("on_demand", False) and not on_demand:
+        return {}
+    if category not in ("file", "url"):
+        return {"error": True, "msg": "VT category isn't supported"}
+
+    sha256 = False
+    if category == "file":
+        if not do_file_lookup:
+            return {"error": True, "msg": "VT File lookup disabled in processing.conf"}
+        if not path_exists(target) and len(target) != 64:
+            return {"error": True, "msg": "File doesn't exist"}
+
+        sha256 = target if len(target) == 64 else File(target).get_sha256()
+        url = VIRUSTOTAL_FILE_URL.format(id=sha256)
+
+    elif category == "url":
+        if not do_url_lookup:
+            return {"error": True, "msg": "VT URL lookup disabled in processing.conf"}
+        if urlscrub:
+            urlscrub_compiled_re = None
+            try:
+                urlscrub_compiled_re = re.compile(urlscrub)
+            except Exception as e:
+                log.error("Failed to compile urlscrub regex:", str(e))
+                return {}
+            try:
+                target = re.sub(urlscrub_compiled_re, "", target)
+            except Exception as e:
+                return {"error": True, "msg": f"Failed to scrub url: {e}"}
+
+        # normalize the URL the way VT appears to
+        if not target.lower().startswith(("http://", "https://")):
+            target = f"http://{target}"
+
+        url_id = base64.urlsafe_b64encode(target.encode()).decode().strip("=")
+        url = VIRUSTOTAL_URL_URL.format(id=url_id)
+
+    try:
+        r = requests.get(url, headers=headers, verify=True, timeout=timeout)
+        if r.status_code == HTTPStatus.NOT_FOUND:
+            log.info("%s '%s' not found in VT", category, url.split("/")[-1])
+            return {}
+        if not r.ok:
+            log.error("VT: Request failed")
+            return {"error": True, "msg": f"Unable to complete connection to VirusTotal. Status code: {r.status_code}"}
+        if b"QuotaExceededError" in r.content:
+            log.error("VT: Quota limit")
+            return {"error": True, "msg": "QuotaExceededError"}
+        vt_response = r.json()
+        engines = vt_response.get("data", {}).get("attributes", {}).get("last_analysis_results", {})
+        if not engines:
+            log.error("VT: Engines field is empty")
+            return {}
+        virustotal = {
+            "names": vt_response.get("data", {}).get("attributes", {}).get("names"),
+            "scan_id": vt_response.get("data", {}).get("id"),
+            "md5": vt_response.get("data", {}).get("attributes", {}).get("md5"),
+            "sha1": vt_response.get("data", {}).get("attributes", {}).get("sha1"),
+            "sha256": vt_response.get("data", {}).get("attributes", {}).get("sha256"),
+            "tlsh": vt_response.get("data", {}).get("attributes", {}).get("tlsh"),
+            "positives": vt_response.get("data", {}).get("attributes", {}).get("last_analysis_stats", {}).get("malicious"),
+            "total": len(engines.keys()),
+            "permalink": vt_response.get("data", {}).get("links", {}).get("self"),
+        }
+        if remove_empty:
+            virustotal["scans"] = {engine.replace(".", "_"): block for engine, block in engines.items() if block["result"]}
+        else:
+            virustotal["scans"] = {engine.replace(".", "_"): block for engine, block in engines.items() if block["result"]}
+        if sha256:
+            virustotal["resource"] = sha256
+        virustotal["results"] = []
+        detectnames = []
+        for engine, block in engines.items():
+            virustotal["results"] += [{"vendor": engine.replace(".", "_"), "sig": block["result"]}]
+            if block["result"] and "Trojan.Heur." not in block["result"]:
+                # weight Microsoft's detection, they seem to be more accurate than the rest
+                if engine == "Microsoft":
+                    detectnames.append(block["result"])
+                detectnames.append(block["result"])
+
+        virustotal["detection"] = get_vt_consensus(detectnames)
+        if virustotal.get("detection", False) and results:
+            add_family_detection(results, virustotal["detection"], "VirusTotal", virustotal["sha256"])
+        if virustotal.get("positives", False) and virustotal.get("total", False):
+            virustotal["summary"] = f"{virustotal['positives']}/{virustotal['total']}"
+
+        return virustotal
+    except requests.exceptions.RequestException as e:
+        return {
+            "error": True,
+            "msg": f"Unable to complete connection to VirusTotal: {e}",
+        }
+
+    return {}
diff --git a/lib/cuckoo/common/iocs.py b/lib/cuckoo/common/iocs.py
new file mode 100644
index 00000000000..91e01d00d89
--- /dev/null
+++ b/lib/cuckoo/common/iocs.py
@@ -0,0 +1,449 @@
+import os
+import json
+import logging
+from lib.cuckoo.common.constants import CUCKOO_ROOT
+
+
+log = logging.getLogger(__name__)
+
+
+def createProcessTreeNode(process):
+    """Creates a single ProcessTreeNode corresponding to a single node in the tree observed cuckoo.
+    @param process: process from cuckoo dict.
+    """
+    process_node_dict = {
+        "pid": process["pid"],
+        "name": process["name"],
+        "spawned_processes": [createProcessTreeNode(child_process) for child_process in process["children"]],
+    }
+    return process_node_dict
+
+
+def _my_dict_set(dict1, key1, dict2, key2, default=None):
+    if not dict2:
+        return
+    val = dict2.get(key2)
+    if val is not None:
+        dict1[key1] = val
+    elif default is not None:
+        dict1[key1] = default
+
+
+def _my_dict_set_len(dict1, key1, dict2, key2, default=None):
+    if not dict2:
+        return
+    val = dict2.get(key2)
+    if val is not None:
+        dict1[key1] = len(val)
+    elif default is not None:
+        dict1[key1] = default
+
+
+def load_iocs(task_id, detail):
+    try:
+        path = os.path.join(CUCKOO_ROOT, "storage", "analyses", "%s" % task_id, "reports", "iocs.json")
+        with open(path, "r") as fff:
+            iocs = json.load(fff)
+        if not detail:
+            iocs = iocs_strip_details(iocs)
+        return iocs
+    except Exception as eee:
+        log.error("Cannot load iocs file: %s", eee)
+    return None
+
+
+def dump_iocs(report, task_id: int = 0):
+    try:
+        if not task_id:
+            log.error("Cannot dump iocs, report has no task_id: %d", task_id)
+            return
+        path = os.path.join(CUCKOO_ROOT, "storage", "analyses", "%s" % task_id, "reports", "iocs.json")
+        iocs = report_to_iocs(report, True)
+        with open(path, "w") as fff:
+            json.dump(iocs, fff, sort_keys=False, indent=4, ensure_ascii=False)
+    except Exception as eee:
+        log.error("Cannot dump iocs file: %s", eee)
+    return None
+
+
+def report_to_iocs(buf, detail):
+    data = {"detections": buf.get("detections")}
+    for key in ("certs", "malscore"):
+        _my_dict_set(data, key, buf, key)
+    data_info = buf.get("info", {})
+    data["info"] = data_info
+    data_info.pop("custom", None)  # safest than del
+    # The machines key won't exist in cases where an x64 binary is submitted
+    # when there are no x64 machines.
+    machine = data_info.get("machine", {})
+    if machine and isinstance(machine, dict):
+        for key in ("manager", "label", "id"):
+            machine.pop(key, None)
+    data["signatures"] = []
+    """
+    # Grab sigs
+    for sig in buf["signatures"]:
+        del sig["alert"]
+        data["signatures"].append(sig)
+    """
+    # Grab target file info
+    target = buf.get("target")
+    if target:
+        data["target"] = target
+        if target["category"] == "file":
+            fff = target["file"]
+            fff.pop("path", None)
+            fff.pop("guest_paths", None)
+
+    data_network = {}
+    data["network"] = data_network
+    network = buf.get("network")
+    if network:
+        traffic = {}
+        data_network["traffic"] = traffic
+        for netitem in ["tcp", "udp", "irc", "http", "dns", "smtp", "hosts", "domains"]:
+            _my_dict_set_len(traffic, "%s_count" % netitem, network, netitem, default=0)
+        traffic["http"] = network.get("http", {})
+        data_network["hosts"] = network.get("hosts", [])
+        data_network["domains"] = network.get("domains", [])
+
+    ids = {}
+    data_network["ids"] = ids
+    suricata = buf.get("suricata")
+    if suricata and isinstance(suricata, dict):
+        alerts = suricata.get("alerts", [])
+        ids["alerts"] = alerts
+        ids["totalalerts"] = len(alerts)
+        ids["http"] = suricata.get("http", [])
+        ids["totalfiles"] = len(suricata.get("files", []))
+        ids["files"] = []
+        for surifile in suricata["files"]:
+            file_info = surifile.get("file_info")
+            if file_info:
+                tmpfile = surifile
+                for key in ("sha1", "md5", "sha256", "sha512"):
+                    _my_dict_set(tmpfile, key, file_info, key)
+                tmpfile.pop("file_info", None)
+                ids["files"].append(tmpfile)
+
+    data_static = {}
+    data["static"] = data_static
+    static = buf.get("static")
+    if static:
+        pe = {}
+        data_static["pe"] = pe
+        for item in ("peid_signatures", "pe_timestamp", "pe_imphash", "pe_icon_hash", "pe_icon_fuzzy"):
+            _my_dict_set(pe, item, static, item)
+        if detail:
+            _my_dict_set(pe, "pe_versioninfo", static, "pe_versioninfo")
+
+        pdf = {}
+        data_static["pdf"] = pdf
+        _my_dict_set_len(pdf, "objects", static, "Objects")
+        current = static.get("Info")
+        _my_dict_set(pdf, "header", current, "PDF Header")
+        current = static.get("Streams")
+        _my_dict_set(pdf, "pages", current, "/Page")
+
+        office = {}
+        data_static["office"] = office
+        current = static.get("Macro")
+        if current:
+            _my_dict_set(office, "signatures", current, "Analysis")
+            _my_dict_set_len(office, "macros", current, "Code")
+
+    behavior = buf.get("behavior", {})
+    summary = behavior.get("summary", {})
+    current = {"modified": summary.get("write_files", []), "deleted": summary.get("delete_files", [])}
+    if detail:
+        current["read"] = summary.get("read_files", [])
+    data["files"] = current
+    current = {"modified": summary.get("write_keys", []), "deleted": summary.get("delete_keys", [])}
+    if detail:
+        current["read"] = summary.get("read_keys", [])
+    data["registry"] = current
+    data["mutexes"] = summary.get("mutexes", [])
+    data["executed_commands"] = summary.get("executed_commands", [])
+    data["process_tree"] = {}
+    processtree = behavior.get("processtree")
+    if processtree:
+        data["process_tree"] = {
+            "pid": processtree[0]["pid"],
+            "name": processtree[0]["name"],
+            "spawned_processes": [createProcessTreeNode(child_process) for child_process in processtree[0].get("children", [])],
+        }
+    data_dropped = []
+    data["dropped"] = data_dropped
+    for entry in buf.get("dropped", []):
+        tmpdict = ((key, entry.get(key)) for key in ("clamav", "sha256", "md5", "yara", "trid", "type", "guest_paths"))
+        tmpdict = {key: val for key, val in tmpdict if val}
+        data_dropped.append(tmpdict)
+
+    if not detail:
+        return data
+
+    _my_dict_set(data, "resolved_apis", summary, "resolved_apis")
+    http = network.get("http") if network else None
+    if http:
+        data_http = {}
+        data_network["http"] = data_http
+        for req in http:
+            data_http["host"] = req.get("host", "")
+            req_data = req.get("data", "")
+            off = req_data.find("\r\n")
+            if off > -1:
+                req_data = req_data[:off]
+            data_http["data"] = req_data
+            _my_dict_set(data_http, "method", req, "method", default="")
+            _my_dict_set(data_http, "ua", req, "user-agent", default="")
+    _my_dict_set(data, "strings", buf, "strings", default=["No Strings"])
+    _my_dict_set(data, "trid", buf, "trid", default=["None matched"])
+    return data
+
+
+def iocs_strip_details(iocs):
+    iocs.pop("resolved_apis", None)
+    iocs.get("network", {}).pop("http", None)
+    iocs.pop("strings", None)
+    iocs.pop("trid", None)
+    iocs.get("static", {}).get("pe", {}).pop("pe_versioninfo", None)
+    iocs.get("files", {}).pop("read_files", None)
+    iocs.get("registry", {}).pop("read_keys", None)
+    return iocs
+
+
+def orig_report_to_ioc(buf, detail):
+    data = {}
+    if "certs" in buf:
+        data["certs"] = buf["certs"]
+    data["detections"] = buf.get("detections")
+    data["malscore"] = buf["malscore"]
+    data["info"] = buf["info"]
+    del data["info"]["custom"]
+    # The machines key won't exist in cases where an x64 binary is submitted
+    # when there are no x64 machines.
+    if data.get("info", {}).get("machine", {}) and isinstance(data["info"]["machine"], dict):
+        del data["info"]["machine"]["manager"]
+        del data["info"]["machine"]["label"]
+        del data["info"]["machine"]["id"]
+    data["signatures"] = []
+    """
+    # Grab sigs
+    for sig in buf["signatures"]:
+        del sig["alert"]
+        data["signatures"].append(sig)
+    """
+    # Grab target file info
+    if "target" in list(buf.keys()):
+        data["target"] = buf["target"]
+        if data["target"]["category"] == "file":
+            del data["target"]["file"]["path"]
+            del data["target"]["file"]["guest_paths"]
+
+    data["network"] = {}
+    if "network" in list(buf.keys()) and buf["network"]:
+        data["network"]["traffic"] = {}
+        for netitem in ["tcp", "udp", "irc", "http", "dns", "smtp", "hosts", "domains"]:
+            if netitem in buf["network"]:
+                data["network"]["traffic"][netitem + "_count"] = len(buf["network"][netitem])
+            else:
+                data["network"]["traffic"][netitem + "_count"] = 0
+        data["network"]["traffic"]["http"] = buf["network"]["http"]
+        data["network"]["hosts"] = buf["network"]["hosts"]
+        data["network"]["domains"] = buf["network"]["domains"]
+    data["network"]["ids"] = {}
+    if "suricata" in list(buf.keys()) and isinstance(buf["suricata"], dict):
+        data["network"]["ids"]["totalalerts"] = len(buf["suricata"]["alerts"])
+        data["network"]["ids"]["alerts"] = buf["suricata"]["alerts"]
+        data["network"]["ids"]["http"] = buf["suricata"]["http"]
+        data["network"]["ids"]["totalfiles"] = len(buf["suricata"]["files"])
+        data["network"]["ids"]["files"] = []
+        for surifile in buf["suricata"]["files"]:
+            if "file_info" in list(surifile.keys()):
+                tmpfile = surifile
+                tmpfile["sha1"] = surifile["file_info"]["sha1"]
+                tmpfile["md5"] = surifile["file_info"]["md5"]
+                tmpfile["sha256"] = surifile["file_info"]["sha256"]
+                tmpfile["sha512"] = surifile["file_info"]["sha512"]
+                del tmpfile["file_info"]
+                data["network"]["ids"]["files"].append(tmpfile)
+
+    data["static"] = {}
+    if "static" in list(buf.keys()):
+        pe = {}
+        pdf = {}
+        office = {}
+        if buf["static"].get("peid_signatures"):
+            pe["peid_signatures"] = buf["static"]["peid_signatures"]
+        if buf["static"].get("pe_timestamp"):
+            pe["pe_timestamp"] = buf["static"]["pe_timestamp"]
+        if buf["static"].get("pe_imphash"):
+            pe["pe_imphash"] = buf["static"]["pe_imphash"]
+        if buf["static"].get("pe_icon_hash"):
+            pe["pe_icon_hash"] = buf["static"]["pe_icon_hash"]
+        if buf["static"].get("pe_icon_fuzzy"):
+            pe["pe_icon_fuzzy"] = buf["static"]["pe_icon_fuzzy"]
+        if buf["static"].get("Objects"):
+            pdf["objects"] = len(buf["static"]["Objects"])
+        if buf["static"].get("Info"):
+            if "PDF Header" in list(buf["static"]["Info"].keys()):
+                pdf["header"] = buf["static"]["Info"]["PDF Header"]
+        if "Streams" in buf["static"]:
+            if "/Page" in list(buf["static"]["Streams"].keys()):
+                pdf["pages"] = buf["static"]["Streams"]["/Page"]
+        if buf["static"].get("Macro"):
+            if "Analysis" in buf["static"]["Macro"]:
+                office["signatures"] = {}
+                for item in buf["static"]["Macro"]["Analysis"]:
+                    office["signatures"][item] = []
+                    for indicator, desc in buf["static"]["Macro"]["Analysis"][item]:
+                        office["signatures"][item].append((indicator, desc))
+            if "Code" in buf["static"]["Macro"]:
+                office["macros"] = len(buf["static"]["Macro"]["Code"])
+        data["static"]["pe"] = pe
+        data["static"]["pdf"] = pdf
+        data["static"]["office"] = office
+
+    data["files"] = {}
+    data["files"]["modified"] = []
+    data["files"]["deleted"] = []
+    data["registry"] = {}
+    data["registry"]["modified"] = []
+    data["registry"]["deleted"] = []
+    data["mutexes"] = []
+    data["executed_commands"] = []
+    data["dropped"] = []
+
+    if "behavior" in buf and "summary" in buf["behavior"]:
+        if "write_files" in buf["behavior"]["summary"]:
+            data["files"]["modified"] = buf["behavior"]["summary"]["write_files"]
+        if "delete_files" in buf["behavior"]["summary"]:
+            data["files"]["deleted"] = buf["behavior"]["summary"]["delete_files"]
+        if "write_keys" in buf["behavior"]["summary"]:
+            data["registry"]["modified"] = buf["behavior"]["summary"]["write_keys"]
+        if "delete_keys" in buf["behavior"]["summary"]:
+            data["registry"]["deleted"] = buf["behavior"]["summary"]["delete_keys"]
+        if "mutexes" in buf["behavior"]["summary"]:
+            data["mutexes"] = buf["behavior"]["summary"]["mutexes"]
+        if "executed_commands" in buf["behavior"]["summary"]:
+            data["executed_commands"] = buf["behavior"]["summary"]["executed_commands"]
+
+    data["process_tree"] = {}
+    if "behavior" in buf and "processtree" in buf["behavior"] and len(buf["behavior"]["processtree"]) > 0:
+        data["process_tree"] = {
+            "pid": buf["behavior"]["processtree"][0]["pid"],
+            "name": buf["behavior"]["processtree"][0]["name"],
+            "spawned_processes": [
+                createProcessTreeNode(child_process) for child_process in buf["behavior"]["processtree"][0]["children"]
+            ],
+        }
+    if "dropped" in buf:
+        for entry in buf["dropped"]:
+            tmpdict = {}
+            if entry.get("clamav", False):
+                tmpdict["clamav"] = entry["clamav"]
+            if entry["sha256"]:
+                tmpdict["sha256"] = entry["sha256"]
+            if entry["md5"]:
+                tmpdict["md5"] = entry["md5"]
+            if entry["yara"]:
+                tmpdict["yara"] = entry["yara"]
+            if entry.get("trid", False):
+                tmpdict["trid"] = entry["trid"]
+            if entry["type"]:
+                tmpdict["type"] = entry["type"]
+            if entry["guest_paths"]:
+                tmpdict["guest_paths"] = entry["guest_paths"]
+            data["dropped"].append(tmpdict)
+
+    if not detail:
+        return data
+
+    if "static" in buf:
+        if buf["static"].get("pe_versioninfo"):
+            data["static"]["pe"]["pe_versioninfo"] = buf["static"]["pe_versioninfo"]
+
+    if "behavior" in buf and "summary" in buf["behavior"]:
+        if "read_files" in buf["behavior"]["summary"]:
+            data["files"]["read"] = buf["behavior"]["summary"]["read_files"]
+        if "read_keys" in buf["behavior"]["summary"]:
+            data["registry"]["read"] = buf["behavior"]["summary"]["read_keys"]
+        if "resolved_apis" in buf["behavior"]["summary"]:
+            data["resolved_apis"] = buf["behavior"]["summary"]["resolved_apis"]
+
+    if buf["network"] and "http" in buf["network"]:
+        data["network"]["http"] = {}
+        for req in buf["network"]["http"]:
+            if "host" in req:
+                data["network"]["http"]["host"] = req["host"]
+            else:
+                data["network"]["http"]["host"] = ""
+            if "data" in req and "\r\n" in req["data"]:
+                data["network"]["http"]["data"] = req["data"].split("\r\n", 1)[0]
+            else:
+                data["network"]["http"]["data"] = ""
+            if "method" in req:
+                data["network"]["http"]["method"] = req["method"]
+            else:
+                data["network"]["http"]["method"] = ""
+                if "user-agent" in req:
+                    data["network"]["http"]["ua"] = req["user-agent"]
+                else:
+                    data["network"]["http"]["ua"] = ""
+
+    if "strings" in list(buf.keys()):
+        data["strings"] = buf["strings"]
+    else:
+        data["strings"] = ["No Strings"]
+
+    if "trid" in list(buf.keys()):
+        data["trid"] = buf["trid"]
+    else:
+        data["trid"] = ["None matched"]
+    return data
+
+
+def deep_diff(obj1, obj2, path="root"):
+    if type(obj1) is not type(obj2):
+        print("[%s] type missmatch %s != %s" % (path, type(obj1), type(obj2)))
+    elif isinstance(obj1, dict):
+        for key1, val1 in obj1.items():
+            if key1 not in obj2:
+                print("[%s] %s missing on right hand" % (path, key1))
+            else:
+                deep_diff(val1, obj2[key1], "%s.%s" % (path, key1))
+        for key2 in obj2.keys():
+            if key2 not in obj1:
+                print("[%s] %s missing on left hand" % (path, key2))
+    elif isinstance(obj1, list):
+        idx = 0
+        for val1, val2 in zip(obj1, obj2):
+            deep_diff(val1, val2, "%s.%s" % (path, idx))
+            idx += 1
+    else:
+        if obj1 != obj2:
+            print("[%s] %s != %s" % (path, obj1, obj2))
+
+
+if __name__ == "__main__":
+    import sys
+    import time
+
+    total = 0
+    for func in report_to_iocs, orig_report_to_ioc:
+        for fname in sys.argv[1:]:
+            with open(fname) as fff:
+                report = json.load(fff)
+                start = time.time()
+                iocs = func(report, True)
+                end = time.time()
+                total += end - start
+        print("Processing %s (json load excluded): %0.2fms" % (func.__name__, total * 1000))
+    for fname in sys.argv[1:]:
+        with open(fname) as fff:
+            report = json.load(fff)
+        new_iocs = report_to_iocs(report, True)
+        with open(fname) as fff:
+            report = json.load(fff)
+        orig_iocs = orig_report_to_ioc(report, True)
+        deep_diff(new_iocs, orig_iocs)
diff --git a/lib/cuckoo/common/irc.py b/lib/cuckoo/common/irc.py
index 93416047782..cc93aa28350 100644
--- a/lib/cuckoo/common/irc.py
+++ b/lib/cuckoo/common/irc.py
@@ -5,21 +5,16 @@
 
 """IRC Protocol"""
 
-from __future__ import absolute_import
-from io import BytesIO
 import logging
-
-try:
-    import re2 as re
-except ImportError:
-    import re
+import re
+from io import BytesIO
 
 from lib.cuckoo.common.utils import convert_to_printable
 
 log = logging.getLogger("Processing.Pcap.irc.protocol")
 
 
-class ircMessage(object):
+class ircMessage:
     """IRC Protocol Request."""
 
     # Client commands
@@ -85,18 +80,18 @@ def _unpack(self, buf):
         @buf: tcp stream data
         """
         try:
-            f = BytesIO(buf)
-            lines = f.readlines()
+            with BytesIO(buf) as f:
+                lines = f.readlines()
         except Exception:
             log.error("Failed reading tcp stream buffer")
             return False
 
         logirc = False
         for element in lines:
-            if not re.match(b"^:", element) is None:
+            if re.match(b"^:", element) is not None:
                 command = "([a-zA-Z]+|[0-9]{3})"
                 params = "(\x20.+)"
-                irc_server_msg = re.findall("(^:[\w+.{}!@|()]+\x20)" + command + params, element)
+                irc_server_msg = re.findall(r"(^:[\w+.{}!@|()]+\x20)" + command + params, element)
                 if irc_server_msg:
                     self._sc["prefix"] = convert_to_printable(irc_server_msg[0][0].strip())
                     self._sc["command"] = convert_to_printable(irc_server_msg[0][1].strip())
@@ -108,7 +103,7 @@ def _unpack(self, buf):
                 irc_client_msg = re.findall(b"([a-zA-Z]+\x20)(.+[\x0a\0x0d])", element)
                 if irc_client_msg and irc_client_msg[0][0].strip() in self.__methods_client:
                     self._cc["command"] = convert_to_printable(irc_client_msg[0][0].strip())
-                    if self._cc["command"] in ["NICK", "USER"]:
+                    if self._cc["command"] in ("NICK", "USER"):
                         logirc = True
                     self._cc["params"] = convert_to_printable(irc_client_msg[0][1].strip())
                     self._cc["type"] = "client"
@@ -126,12 +121,7 @@ def getClientMessages(self, buf):
         except Exception:
             return None
 
-        entry_cc = []
-        for msg in self._messages:
-            if msg["type"] == "client":
-                entry_cc.append(msg)
-
-        return entry_cc
+        return [msg for msg in self._messages if msg["type"] == "client"]
 
     def getClientMessagesFilter(self, buf, filters):
         """Get irc client commands of tcp streams.
@@ -143,13 +133,7 @@ def getClientMessagesFilter(self, buf, filters):
         except Exception:
             return None
 
-        entry_cc = []
-
-        for msg in self._messages:
-            if msg["type"] == "client" and msg["command"] not in filters:
-                entry_cc.append(msg)
-
-        return entry_cc
+        return [msg for msg in self._messages if msg["type"] == "client" and msg["command"] not in filters]
 
     def getServerMessages(self, buf):
         """Get irc server commands of tcp streams.
@@ -162,13 +146,7 @@ def getServerMessages(self, buf):
         except Exception:
             return None
 
-        entry_sc = []
-
-        for msg in self._messages:
-            if msg["type"] == "server":
-                entry_sc.append(msg)
-
-        return entry_sc
+        return [msg for msg in self._messages if msg["type"] == "server"]
 
     def getServerMessagesFilter(self, buf, filters):
         """Get irc server commands of tcp streams.
@@ -180,12 +158,7 @@ def getServerMessagesFilter(self, buf, filters):
         except Exception:
             return None
 
-        entry_sc = []
-        for msg in self._messages:
-            if msg["type"] == "server" and msg["command"] not in filters:
-                entry_sc.append(msg)
-
-        return entry_sc
+        return [msg for msg in self._messages if msg["type"] == "server" and msg["command"] not in filters]
 
     def isthereIRC(self, buf):
         """Check if there is irc messages in a stream TCP.
@@ -195,9 +168,6 @@ def isthereIRC(self, buf):
 
         try:
             self._unpack(buf)
-            if self._messages:
-                return True
-            else:
-                return False
+            return bool(self._messages)
         except Exception:
             return False
diff --git a/lib/cuckoo/common/load_extra_modules.py b/lib/cuckoo/common/load_extra_modules.py
new file mode 100644
index 00000000000..1a4e3985a3f
--- /dev/null
+++ b/lib/cuckoo/common/load_extra_modules.py
@@ -0,0 +1,235 @@
+import glob
+import importlib
+import inspect
+import logging
+import os
+import pkgutil
+from pathlib import Path
+
+from lib.cuckoo.common.config import Config
+
+log = logging.getLogger(__name__)
+
+integrations_conf = Config("integrations")
+
+
+def ratdecodedr_load_decoders(path: str):
+    """
+    Loads and returns a dictionary of RAT decoder modules from the specified path.
+
+    This function walks recursively through all modules and packages in the given path,
+    imports them, and collects classes that are subclasses of the `Decoder` class from
+    the `malwareconfig.common` module. It skips packages and handles import errors gracefully.
+
+    Args:
+        path (str): The path to the directory containing the RAT decoder modules.
+
+    Returns:
+        dict: A dictionary where the keys are decoder names and the values are dictionaries
+            containing the following information about each decoder:
+            - obj: The decoder class object.
+            - decoder_name: The name of the decoder.
+            - decoder_description: A description of the decoder.
+            - decoder_version: The version of the decoder.
+            - decoder_author: The author of the decoder.
+    """
+    from malwareconfig.common import Decoder
+
+    dec_modules = {}
+    # Walk recursively through all modules and packages.
+    for loader, module_name, ispkg in pkgutil.walk_packages(path, "modules.processing.parsers.RATDecoders."):
+        # If current item is a package, skip.
+        if ispkg:
+            continue
+        # Try to import the module, otherwise skip.
+        try:
+            module = importlib.import_module(module_name)
+        except ImportError as e:
+            log.error("Unable to import Module %s - %s", module_name, e)
+            continue
+
+        for mod_name, mod_object in inspect.getmembers(module):
+            if inspect.isclass(mod_object) and issubclass(mod_object, Decoder) and mod_object is not Decoder:
+                dec_modules[mod_object.decoder_name] = dict(
+                    obj=mod_object,
+                    decoder_name=mod_object.decoder_name,
+                    decoder_description=mod_object.decoder_description,
+                    decoder_version=mod_object.decoder_version,
+                    decoder_author=mod_object.decoder_author,
+                )
+    return dec_modules
+
+
+def cape_load_custom_decoders(CUCKOO_ROOT: str):
+    """
+    Loads custom decoders for CAPE from specified directories within the CUCKOO_ROOT path.
+
+    This function searches for Python modules in the "modules/processing/parsers/CAPE" and
+    "custom/parsers" directories within the CUCKOO_ROOT path. It imports these modules and
+    stores them in a dictionary where the keys are the module names with spaces replaced by
+    underscores, and the values are the imported modules.
+
+    Args:
+        CUCKOO_ROOT (str): The root directory of the CUCKOO installation.
+
+    Returns:
+        dict: A dictionary where the keys are the names of the decoders and the values are
+            the imported modules.
+
+    Raises:
+        ImportError: If a module cannot be imported.
+        IndexError: If there is an indexing error during module import.
+        AttributeError: If there is an attribute error during module import.
+        SyntaxError: If there is a syntax error in the module code.
+        Exception: For any other exceptions that occur during module import.
+    """
+
+    cape_modules = {}
+    cape_decoders = os.path.join(CUCKOO_ROOT, "modules", "processing", "parsers", "CAPE")
+    CAPE_DECODERS = {"cape": [os.path.basename(decoder)[:-3] for decoder in glob.glob(f"{cape_decoders}/[!_]*.py")]}
+
+    custom_cape_decoders = os.path.join(CUCKOO_ROOT, "custom", "parsers")
+    CAPE_DECODERS.setdefault("custom", []).extend(
+        [os.path.basename(decoder)[:-3] for decoder in glob.glob(f"{custom_cape_decoders}/[!_]*.py")]
+    )
+
+    versions = {
+        "cape": "modules.processing.parsers.CAPE",
+        "custom": "custom.parsers",
+    }
+
+    for version, names in CAPE_DECODERS.items():
+        for name in names:
+            try:
+                # The name of the module must match what's given as the cape_type for yara
+                # hits with the " Config", " Payload", or " Loader" ending removed and with  spaces replaced with underscores.
+                # For example, a cape_type of "Emotet Payload" would trigger a config parser named "Emotet.py".
+                cape_modules[name.replace("_", " ")] = importlib.import_module(f"{versions[version]}.{name}")
+            except (ImportError, IndexError, AttributeError) as e:
+                log.error("CAPE parser: No module named  %s - %s", name, e)
+            except SyntaxError as e:
+                log.error("CAPE parser: Fix your code in %s - %s", name, e)
+            except Exception as e:
+                log.error("CAPE parser: Fix your code in %s - %s", name, e)
+
+    return cape_modules
+
+
+def malduck_load_decoders(CUCKOO_ROOT: str):
+    """
+    Loads and imports malduck decoder modules from the specified CUCKOO_ROOT directory.
+
+    Args:
+        CUCKOO_ROOT (str): The root directory of the CUCKOO installation.
+
+    Returns:
+        dict: A dictionary where the keys are the names of the decoder modules and the values are the imported module objects.
+
+    Raises:
+        ImportError: If a module cannot be imported.
+        IndexError: If there is an issue with the module name.
+    """
+
+    malduck_modules = {}
+    malduck_decoders = os.path.join(CUCKOO_ROOT, "modules", "processing", "parsers", "malduck")
+    MALDUCK_DECODERS = [os.path.basename(decoder)[:-3] for decoder in glob.glob(f"{malduck_decoders}/[!_]*.py")]
+
+    for name in MALDUCK_DECODERS:
+        try:
+            malduck_modules[name] = importlib.import_module(f"modules.processing.parsers.malduck.{name}")
+        except (ImportError, IndexError) as e:
+            log.error("malduck parser: No module named %s - %s", name, e)
+
+    return malduck_modules
+
+
+def file_extra_info_load_modules(CUCKOO_ROOT: str):
+    """
+    Loads extra file information modules from the specified CUCKOO_ROOT directory.
+
+    This function searches for Python modules in the "file_extra_info_modules" directory
+    within the given CUCKOO_ROOT path. It imports and returns a list of modules that are
+    enabled based on their internal configuration or the integrations_conf settings.
+
+    Args:
+        CUCKOO_ROOT (str): The root directory of the CUCKOO installation.
+
+    Returns:
+        list: A list of imported modules that are enabled. If the directory does not exist,
+            an empty list is returned.
+
+    Raises:
+        ImportError: If a module cannot be imported.
+        IndexError: If there is an indexing error during module import.
+        AttributeError: If an attribute is missing during module import.
+    """
+    file_extra_modules = []
+    extra_modules = os.path.join(CUCKOO_ROOT, "lib", "cuckoo", "common", "integrations", "file_extra_info_modules")
+    if not Path(extra_modules).exists():
+        return []
+
+    EXTRA_MODULES = [os.path.basename(decoder)[:-3] for decoder in glob.glob(f"{extra_modules}/[!_]*.py")]
+
+    for name in EXTRA_MODULES:
+        try:
+            module = importlib.import_module(f"lib.cuckoo.common.integrations.file_extra_info_modules.{name}")
+            if not getattr(module, "enabled", False) and not integrations_conf.__dict__.get(name, {}).get("enabled", False):
+                continue
+            file_extra_modules.append(module)
+        except (ImportError, IndexError, AttributeError) as e:
+            log.error("file_extra_info module: No module named %s - %s", name, e)
+
+    return file_extra_modules
+
+
+def load_downloaders(CUCKOO_ROOT: str):
+    """
+    Loads and returns a dictionary of downloader modules from the specified CUCKOO_ROOT directory.
+
+    This function searches for Python modules in the "downloaders" directory within the given
+    CUCKOO_ROOT path. It imports these modules and stores them in a dictionary where the keys
+    are the module names and the values are the imported modules.
+
+    Args:
+        CUCKOO_ROOT (str): The root directory of the CUCKOO installation.
+
+    Returns:
+        dict: A dictionary where the keys are the names of the downloader modules and the values
+            are the imported module objects.
+
+    Raises:
+        ImportError: If a module cannot be imported.
+        IndexError: If there is an indexing error during module import.
+        AttributeError: If an attribute is missing during module import.
+    """
+    downloaders = {}
+    downloaders_modules = {}
+    versions = {}
+    custom_downloaders = os.path.join(CUCKOO_ROOT, "custom", "downloaders")
+    if os.path.exists(custom_downloaders):
+        downloaders_modules.setdefault("custom", []).extend(
+            [os.path.basename(decoder)[:-3] for decoder in glob.glob(f"{custom_downloaders}/[!_]*.py")]
+        )
+        versions["custom"] = "custom.downloaders"
+
+    # breakpoint()
+    downloaders_dir = os.path.join(CUCKOO_ROOT, "lib", "downloaders")
+    downloaders_modules = {"cape": [os.path.basename(downloader)[:-3] for downloader in glob.glob(f"{downloaders_dir}/[!_]*.py")]}
+    versions["cape"] = "lib.downloaders"
+
+    for version, names in downloaders_modules.items():
+        for name in names:
+            try:
+                module = importlib.import_module(f"{versions[version]}.{name}")
+                if name == "malwarebazaar":
+                    # config under [abusech]
+                    if not integrations_conf.__dict__.get("abusech", {}).get("malwarebazaar", False):
+                        continue
+                else:
+                    if not getattr(module, "enabled", False) and not integrations_conf.__dict__.get(name, {}).get("enabled", False):
+                        continue
+                downloaders[name] = module
+            except (ImportError, IndexError, AttributeError) as e:
+                log.error("Downloader: No module named %s - %s", name, e)
+
+    return downloaders
diff --git a/lib/cuckoo/common/logo.py b/lib/cuckoo/common/logo.py
index 1b8c1425015..91df182b05a 100644
--- a/lib/cuckoo/common/logo.py
+++ b/lib/cuckoo/common/logo.py
@@ -2,10 +2,8 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-from __future__ import print_function
-import sys
 import random
+import sys
 
 from lib.cuckoo.common.colors import color, yellow
 from lib.cuckoo.common.constants import CUCKOO_VERSION
@@ -15,161 +13,24 @@ def logo():
     """Cuckoo asciiarts.
     @return: asciiarts array.
     """
-    logos = []
-
-    logos.append(
-        """
-                                 _|
-     _|_|_|  _|    _|    _|_|_|  _|  _|      _|_|      _|_|
-   _|        _|    _|  _|        _|_|      _|    _|  _|    _|
-   _|        _|    _|  _|        _|  _|    _|    _|  _|    _|
-     _|_|_|    _|_|_|    _|_|_|  _|    _|    _|_|      _|_|"""
-    )
-
-    logos.append(
-        """
-                      __
-  .----..--.--..----.|  |--..-----..-----.
-  |  __||  |  ||  __||    < |  _  ||  _  |
-  |____||_____||____||__|__||_____||_____|"""
-    )
-
-    logos.append(
-        """
-                          .:
-                          ::
-    .-.     ,  :   .-.    ;;.-.  .-.   .-.
-   ;       ;   ;  ;       ;; .' ;   ;';   ;'
-   `;;;;'.'`..:;._`;;;;'_.'`  `.`;;'  `;;'"""
-    )
-
-    logos.append(
-        """
-  eeee e   e eeee e   e  eeeee eeeee
-  8  8 8   8 8  8 8   8  8  88 8  88
-  8e   8e  8 8e   8eee8e 8   8 8   8
-  88   88  8 88   88   8 8   8 8   8
-  88e8 88ee8 88e8 88   8 8eee8 8eee8"""
-    )
-
-    logos.append(
-        """
-  _____________________________________/\/\_______________________________
-  ___/\/\/\/\__/\/\__/\/\____/\/\/\/\__/\/\__/\/\____/\/\/\______/\/\/\___
-  _/\/\________/\/\__/\/\__/\/\________/\/\/\/\____/\/\__/\/\__/\/\__/\/\_
-  _/\/\________/\/\__/\/\__/\/\________/\/\/\/\____/\/\__/\/\__/\/\__/\/\_
-  ___/\/\/\/\____/\/\/\/\____/\/\/\/\__/\/\__/\/\____/\/\/\______/\/\/\___
-  ________________________________________________________________________"""
-    )
-
-    logos.append(
-        """
-   _______ _     _ _______ _     _  _____   _____
-   |       |     | |       |____/  |     | |     |
-   |_____  |_____| |_____  |    \\_ |_____| |_____|"""
-    )
-
-    logos.append(
-        """
-                     _
-    ____ _   _  ____| |  _ ___   ___
-   / ___) | | |/ ___) |_/ ) _ \ / _ \\
-  ( (___| |_| ( (___|  _ ( |_| | |_| |
-   \\____)____/ \\____)_| \\_)___/ \\___/"""
-    )
-
-    logos.append(
-        """
-   ______   __  __   ______   ___   ___   ______   ______
-  /_____/\\ /_/\\/_/\\ /_____/\\ /___/\\/__/\\ /_____/\\ /_____/\\
-  \\:::__\\/ \\:\\ \\:\\ \\\\:::__\\/ \\::.\\ \\\\ \\ \\\\:::_ \\ \\\\:::_ \\ \\
-   \\:\\ \\  __\\:\\ \\:\\ \\\\:\\ \\  __\\:: \\/_) \\ \\\\:\\ \\ \\ \\\\:\\ \\ \\ \\
-    \\:\\ \\/_/\\\\:\\ \\:\\ \\\\:\\ \\/_/\\\\:. __  ( ( \\:\\ \\ \\ \\\\:\\ \\ \\ \\
-     \\:\\_\\ \\ \\\\:\\_\\:\\ \\\\:\\_\\ \\ \\\\: \\ )  \\ \\ \\:\\_\\ \\ \\\\:\\_\\ \\ \\
-      \\_____\\/ \\_____\\/ \\_____\\/ \\__\\/\\__\\/  \\_____\\/ \\_____\\/"""
-    )
-
-    logos.append(
-        """
-    sSSs   .S       S.     sSSs   .S    S.     sSSs_sSSs      sSSs_sSSs
-   d%%SP  .SS       SS.   d%%SP  .SS    SS.   d%%SP~YS%%b    d%%SP~YS%%b
-  d%S'    S%S       S%S  d%S'    S%S    S&S  d%S'     `S%b  d%S'     `S%b
-  S%S     S%S       S%S  S%S     S%S    d*S  S%S       S%S  S%S       S%S
-  S&S     S&S       S&S  S&S     S&S   .S*S  S&S       S&S  S&S       S&S
-  S&S     S&S       S&S  S&S     S&S_sdSSS   S&S       S&S  S&S       S&S
-  S&S     S&S       S&S  S&S     S&S~YSSY%b  S&S       S&S  S&S       S&S
-  S&S     S&S       S&S  S&S     S&S    `S%  S&S       S&S  S&S       S&S
-  S*b     S*b       d*S  S*b     S*S     S%  S*b       d*S  S*b       d*S
-  S*S.    S*S.     .S*S  S*S.    S*S     S&  S*S.     .S*S  S*S.     .S*S
-   SSSbs   SSSbs_sdSSS    SSSbs  S*S     S&   SSSbs_sdSSS    SSSbs_sdSSS
-    YSSP    YSSP~YSSY      YSSP  S*S     SS    YSSP~YSSY      YSSP~YSSY
-                                 SP
-                                 Y"""
-    )
-
-    logos.append(
-        """
-           _______                   _____                    _____
-          /::\\    \\                 /\\    \\                  /\\    \\
-         /::::\\    \\               /::\\____\\                /::\\    \\
-        /::::::\\    \\             /::::|   |               /::::\\    \\
-       /::::::::\\    \\           /:::::|   |              /::::::\\    \\
-      /:::/~~\\:::\\    \\         /::::::|   |             /:::/\\:::\\    \\
-     /:::/    \\:::\\    \\       /:::/|::|   |            /:::/  \\:::\\    \\
-    /:::/    / \\:::\\    \\     /:::/ |::|   |           /:::/    \\:::\\    \\
-   /:::/____/   \\:::\\____\\   /:::/  |::|___|______    /:::/    / \\:::\\    \\
-  |:::|    |     |:::|    | /:::/   |::::::::\\    \\  /:::/    /   \\:::\\ ___\\
-  |:::|____|     |:::|    |/:::/    |:::::::::\\____\\/:::/____/  ___\\:::|    |
-   \\:::\\    \\   /:::/    / \\::/    / ~~~~~/:::/    /\\:::\\    \\ /\\  /:::|____|
-    \\:::\\    \\ /:::/    /   \\/____/      /:::/    /  \\:::\\    /::\\ \\::/    /
-     \\:::\\    /:::/    /                /:::/    /    \\:::\\   \\:::\\ \\/____/
-      \\:::\\__/:::/    /                /:::/    /      \\:::\\   \\:::\\____\\
-       \\::::::::/    /                /:::/    /        \\:::\\  /:::/    /
-        \\::::::/    /                /:::/    /          \\:::\\/:::/    /
-         \\::::/    /                /:::/    /            \\::::::/    /
-          \\::/____/                /:::/    /              \\::::/    /
-           ~~                      \\::/    /                \\::/____/
-                                    \\/____/
-                                                       it's Cuckoo!"""
-    )
-
-    logos.append(
-        """
-            _       _                   _             _              _            _
-          /\\ \\     /\\_\\               /\\ \\           /\\_\\           /\\ \\         /\\ \\
-         /  \\ \\   / / /         _    /  \\ \\         / / /  _       /  \\ \\       /  \\ \\
-        / /\\ \\ \\  \\ \\ \\__      /\\_\\ / /\\ \\ \\       / / /  /\\_\\    / /\\ \\ \\     / /\\ \\ \\
-       / / /\\ \\ \\  \\ \\___\\    / / // / /\\ \\ \\     / / /__/ / /   / / /\\ \\ \\   / / /\\ \\ \\
-      / / /  \\ \\_\\  \\__  /   / / // / /  \\ \\_\\   / /\\_____/ /   / / /  \\ \\_\\ / / /  \\ \\_\\
-     / / /    \\/_/  / / /   / / // / /    \\/_/  / /\\_______/   / / /   / / // / /   / / /
-    / / /          / / /   / / // / /          / / /\\ \\ \\     / / /   / / // / /   / / /
-   / / /________  / / /___/ / // / /________  / / /  \\ \\ \\   / / /___/ / // / /___/ / /
-  / / /_________\\/ / /____\\/ // / /_________\\/ / /    \\ \\ \\ / / /____\\/ // / /____\\/ /
-  \\/____________/\\/_________/ \\/____________/\\/_/      \\_\\_\\\\/_________/ \\/_________/"""
-    )
-
-    logos.append(
+    logos = (
         """
                                ),-.     /
   Cuckoo Sandbox              <(a  `---','
      no chance for malwares!  ( `-, ._> )
                                ) _>.___/
-                                   _/"""
-    )
-
-    logos.append(
+                                   _/""",
         """
   .-----------------.
   | Cuckoo Sandbox? |
   |     OH NOES!    |\\  '-.__.-'
   '-----------------' \\  /oo |--.--,--,--.
                          \\_.-'._i__i__i_.'
-                               \"\"\"\"\"\"\"\"\""""
+                               \"\"\"\"\"\"\"\"\"""",
     )
-
-    print((color(random.choice(logos), random.randrange(31, 37))))
+    print(color(random.choice(logos), random.randrange(31, 37)))
     print()
-    print((" Cuckoo Sandbox %s" % yellow(CUCKOO_VERSION)))
+    print(f" Cuckoo Sandbox {yellow(CUCKOO_VERSION)}")
     print(" www.cuckoosandbox.org")
     print(" Copyright (c) 2010-2015")
     print()
diff --git a/lib/cuckoo/common/logtbl.py b/lib/cuckoo/common/logtbl.py
index ca61c85ea62..0c1dbd8e8ec 100644
--- a/lib/cuckoo/common/logtbl.py
+++ b/lib/cuckoo/common/logtbl.py
@@ -8,7 +8,8 @@
 by hand.
 
 """
-table = [
+
+table = (
     ("__process__", "__init__", ("",)),
     ("__thread__", "__init__", ("",)),
     ("NtDeleteFile", "filesystem", ("O", "FileName")),
@@ -115,8 +116,16 @@
     ("WriteConsoleW", "system", ("pU", "ConsoleHandle", "Buffer")),
     ("InternetOpenA", "network", ("spssp", "Agent", "AccessType", "ProxyName", "ProxyBypass", "Flags")),
     ("InternetOpenW", "network", ("upuup", "Agent", "AccessType", "ProxyName", "ProxyBypass", "Flags")),
-    ("InternetConnectA", "network", ("pslsslp", "InternetHandle", "ServerName", "ServerPort", "Username", "Password", "Service", "Flags")),
-    ("InternetConnectW", "network", ("puluulp", "InternetHandle", "ServerName", "ServerPort", "Username", "Password", "Service", "Flags")),
+    (
+        "InternetConnectA",
+        "network",
+        ("pslsslp", "InternetHandle", "ServerName", "ServerPort", "Username", "Password", "Service", "Flags"),
+    ),
+    (
+        "InternetConnectW",
+        "network",
+        ("puluulp", "InternetHandle", "ServerName", "ServerPort", "Username", "Password", "Service", "Flags"),
+    ),
     ("InternetOpenUrlA", "network", ("psSp", "ConnectionHandle", "URL", "Headers", "Flags")),
     ("InternetOpenUrlW", "network", ("puUp", "ConnectionHandle", "URL", "Headers", "Flags")),
     ("HttpOpenRequestA", "network", ("psl", "InternetHandle", "Path", "Flags")),
@@ -295,7 +304,11 @@
     ("ZwQuerySystemInformation", "process", ("s", "SystemInformationClass")),
     ("ZwWriteVirtualMemory", "process", ("sssss", "ProcessHandle", "PID", "BaseAddress", "Buffer", "NumberOfBytesToWrite")),
     ("ZwDebugActiveProcess", "process", ("sss", "ProcessHandle", "PID", "DebugHandle")),
-    ("ZwCreateProcess", "process", ("ssssss", "ProcessHandle", "PID", "DesiredAccess", "InheritObjectTable", "ParentProcess", "SectionHandle")),
+    (
+        "ZwCreateProcess",
+        "process",
+        ("ssssss", "ProcessHandle", "PID", "DesiredAccess", "InheritObjectTable", "ParentProcess", "SectionHandle"),
+    ),
     (
         "ZwCreateProcessEx",
         "process",
@@ -344,6 +357,15 @@
     (
         "ZwCreateUserProcess",
         "process",
-        ("sssssss", "ProcessHandle", "ThreadHandle", "PID", "ProcessDesiredAccess", "ThreadDesiredAccess", "ImagePathName", "CommandLine"),
+        (
+            "sssssss",
+            "ProcessHandle",
+            "ThreadHandle",
+            "PID",
+            "ProcessDesiredAccess",
+            "ThreadDesiredAccess",
+            "ImagePathName",
+            "CommandLine",
+        ),
     ),
-]
+)
diff --git a/lib/cuckoo/common/mapTTPs.py b/lib/cuckoo/common/mapTTPs.py
new file mode 100644
index 00000000000..186f8b94e9b
--- /dev/null
+++ b/lib/cuckoo/common/mapTTPs.py
@@ -0,0 +1,48 @@
+import json
+import os
+from collections import defaultdict
+
+from lib.cuckoo.common.abstracts import CUCKOO_ROOT
+
+ttpDict = {}
+ttps_map_file = os.path.join(CUCKOO_ROOT, "data", "mitre", "TTPs.json")
+if os.path.exists(ttps_map_file):
+    try:
+        ttpDict = json.loads(open(ttps_map_file, "r").read())
+    except Exception as e:
+        print("Can't load TTPs.json file", e)
+
+
+# Read the config file
+def mapTTP(oldTTPs: list, mbcs: list):
+    """
+    Maps old TTPs (Tactics, Techniques, and Procedures) to a new format and groups them by signature.
+
+    Args:
+        oldTTPs (list): A list of dictionaries containing old TTPs. Each dictionary should have a "ttp" key.
+        mbcs (list): A list of MBCs (Malware Behavior Catalog) mapped by signature.
+
+    Returns:
+        list: A list of dictionaries where each dictionary contains:
+            - "signature" (str): The signature of the TTP.
+            - "ttps" (list): A list of unique TTPs associated with the signature.
+            - "mbcs" (list): A list of MBCs associated with the signature.
+    """
+    ttpsList = []
+    grouped_ttps = defaultdict(list)
+
+    for ttpObj in oldTTPs:
+        if "." in ttpObj["ttp"]:
+            continue
+        elif ttpDict.get(ttpObj["ttp"]):
+            ttpObj["ttp"] = ttpDict.get(ttpObj["ttp"])
+            ttpsList.append(ttpObj)
+            continue
+
+    for item in ttpsList:
+        grouped_ttps[item["signature"]].append(item["ttp"])
+
+    return [
+        {"signature": signature, "ttps": list(dict.fromkeys(ttps)), "mbcs": mbcs.get(signature, [])}
+        for signature, ttps in grouped_ttps.items()
+    ]
diff --git a/lib/cuckoo/common/misc.py b/lib/cuckoo/common/misc.py
index 113e1f6a080..2dff920a580 100644
--- a/lib/cuckoo/common/misc.py
+++ b/lib/cuckoo/common/misc.py
@@ -1,8 +1,7 @@
-from __future__ import absolute_import
 import os
+
 from lib.cuckoo.common.constants import CUCKOO_ROOT
 
-_root = CUCKOO_ROOT
 try:
     import pwd
 
@@ -10,11 +9,11 @@
 except ImportError:
     HAVE_PWD = False
 
+_root = CUCKOO_ROOT
+
 
-def getuser():
-    if HAVE_PWD:
-        return pwd.getpwuid(os.getuid())[0]
-    return ""
+def getuser() -> str:
+    return pwd.getpwuid(os.getuid())[0] if HAVE_PWD else ""
 
 
 def cwd(*args, **kwargs):
@@ -24,8 +23,8 @@ def cwd(*args, **kwargs):
     if kwargs.get("root"):
         return _root
     elif kwargs.get("analysis"):
-        return os.path.join(_root, "storage", "analyses", "%s" % kwargs["analysis"], *args)
+        return os.path.join(_root, "storage", "analyses", str(kwargs["analysis"]), *args)
     elif kwargs:
-        raise RuntimeError("Invalid arguments provided to cwd(): %r %r" % (args, kwargs))
+        raise RuntimeError(f"Invalid arguments provided to cwd(): {args} {kwargs}")
     else:
         return os.path.join(_root, *args)
diff --git a/lib/cuckoo/common/netlog.py b/lib/cuckoo/common/netlog.py
index e3eb79682d5..215b624b9da 100644
--- a/lib/cuckoo/common/netlog.py
+++ b/lib/cuckoo/common/netlog.py
@@ -2,10 +2,9 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
+import datetime
 import logging
 import struct
-import datetime
 
 try:
     import bson
@@ -16,15 +15,22 @@
 else:
     # The BSON module provided by pymongo works through its "BSON" class.
     if hasattr(bson, "BSON"):
-        bson_decode = lambda d: bson.decode(d)
+
+        def bson_decode(d):
+            return bson.decode(d)
+
     # The BSON module provided by "pip3 install bson" works through the "loads" function (just like pickle etc.)
     elif hasattr(bson, "loads"):
-        bson_decode = lambda d: bson.loads(d)
+
+        def bson_decode(d):
+            return bson.loads(d)
+
     else:
         HAVE_BSON = False
 
 from lib.cuckoo.common.logtbl import table as LOGTBL
-from lib.cuckoo.common.utils import get_filename_from_path, default_converter
+from lib.cuckoo.common.path_utils import path_get_filename
+from lib.cuckoo.common.utils import default_converter
 
 log = logging.getLogger(__name__)
 
@@ -34,23 +40,26 @@
 # thus we can reuse report generation / signatures for other API trace sources.
 ###############################################################################
 
-TYPECONVERTERS = {"h": lambda v: "0x%08x" % default_converter(v), "p": lambda v: "0x%.08x" % default_converter(v)}
+TYPECONVERTERS = {
+    "h": lambda v: f"0x{default_converter(v) & 0xFFFFFFFF:08x}" if v < 0 else f"0x{default_converter(v):08x}",
+    "p": lambda v: f"0x{default_converter(v) & 0xFFFFFFFF:08x}" if v < 0 else f"0x{default_converter(v):08x}",
+}
 
 # 20 Mb max message length.
 MAX_MESSAGE_LENGTH = 20 * 1024 * 1024
 
 
 def pointer_converter_32bit(v):
-    return "0x%08x" % (v % 2 ** 32)
+    return f"0x{v % 2 ** 32:08x}"
 
 
 def pointer_converter_64bit(v):
-    return "0x%016x" % (v % 2 ** 64)
+    return f"0x{v % 2 ** 64:016x}"
 
 
 def default_converter_32bit(v):
     if isinstance(v, int) and v < 0:
-        return v % 2 ** 32
+        return v % 2**32
 
     # Try to avoid various unicode issues through usage of latin-1 encoding.
     if isinstance(v, str):
@@ -66,20 +75,18 @@ def default_converter_64bit(v):
     # return v % 2**64
 
     # Try to avoid various unicode issues through usage of latin-1 encoding.
-    if isinstance(v, str):
-        return v.decode("latin-1")
-    return v
+    return v.decode("latin-1") if isinstance(v, str) else v
 
 
 def check_names_for_typeinfo(arginfo):
-    argnames = [i[0] if type(i) in (list, tuple) else i for i in arginfo]
+    argnames = [i[0] if isinstance(i, (list, tuple)) else i for i in arginfo]
 
     converters = []
     for i in arginfo:
-        if type(i) in (list, tuple):
-            r = TYPECONVERTERS.get(i[1], None)
+        if isinstance(i, (list, tuple)):
+            r = TYPECONVERTERS.get(i[1])
             if not r:
-                log.debug("Analyzer sent unknown format " "specifier '{0}'".format(i[1]))
+                log.debug("Analyzer sent unknown format specifier '%s'", i[1])
                 r = default_converter
             converters.append(r)
         else:
@@ -88,7 +95,7 @@ def check_names_for_typeinfo(arginfo):
     return argnames, converters
 
 
-class BsonParser(object):
+class BsonParser:
     """Interprets .bson logs from the monitor.
     The monitor provides us with "info" messages that explain how the function
     arguments will come through later on. This class remembers these info
@@ -186,24 +193,24 @@ def read_next_message(self):
                 return
 
             if len(data) != 4:
-                log.critical("BsonParser lacking data.")
+                log.critical("BsonParser lacking data")
                 return
 
             blen = struct.unpack("I", data)[0]
             if blen > MAX_MESSAGE_LENGTH:
-                log.critical("BSON message larger than MAX_MESSAGE_LENGTH, " "stopping handler.")
+                log.critical("BSON message larger than MAX_MESSAGE_LENGTH, stopping handler")
                 return False
 
             data += self.fd.read(blen - 4)
 
             if len(data) < blen:
-                log.critical("BsonParser lacking data.")
+                log.critical("BsonParser lacking data")
                 return
 
             try:
                 dec = bson_decode(data)
             except Exception as e:
-                log.warning("BsonParser decoding problem {0} on " "data[:50] {1}".format(e, repr(data[:50])))
+                log.warning("BsonParser decoding problem %s on data[:50] %s", e, data[:50])
                 return False
 
             mtype = dec.get("type", "none")
@@ -229,7 +236,7 @@ def read_next_message(self):
                     category = [_ for _ in LOGTBL if _[0] == name]
 
                     # If we found an entry, take its category, otherwise we take
-                    # the default string "unknown."
+                    # the default string "unknown".
                     category = category[0][1] if category else "unknown"
 
                 argnames, converters = check_names_for_typeinfo(arginfo)  # self.determine_unserializers(arginfo)
@@ -247,7 +254,7 @@ def read_next_message(self):
                     continue
 
             elif mtype == "debug":
-                log.info("Debug message from monitor: " "{0}".format(dec.get("msg", "")))
+                log.info("Debug message from monitor: %s", dec.get("msg", ""))
 
             elif mtype == "new_process":
                 # new_process message from VMI monitor.
@@ -261,17 +268,17 @@ def read_next_message(self):
             else:
                 # Regular api call.
                 if index not in self.infomap:
-                    log.warning("Got API with unknown index - monitor needs " "to explain first: {0}".format(dec))
+                    log.warning("Got API with unknown index - monitor needs to explain first: %s", dec)
                     return True
 
                 apiname, arginfo, argnames, converters, category = self.infomap[index]
                 args = dec.get("args", [])
 
                 if len(args) != len(argnames):
-                    log.warning("Inconsistent arg count (compared to arg names) " "on %s: %s names %s", dec, argnames, apiname)
+                    log.warning("Inconsistent arg count (compared to arg names) on %s: %s names %s", dec, argnames, apiname)
                     continue
 
-                argdict = dict((argnames[i], converters[i](args[i])) for i in range(len(args)))
+                argdict = {argnames[i]: converters[i](arg) for i, arg in enumerate(args)}
 
                 if apiname == "__process__":
                     # Special new process message from cuckoomon.
@@ -285,7 +292,7 @@ def read_next_message(self):
                     pid = argdict["ProcessIdentifier"]
                     ppid = argdict["ParentProcessIdentifier"]
                     modulepath = argdict["ModulePath"]
-                    procname = get_filename_from_path(modulepath)
+                    procname = path_get_filename(modulepath)
 
                     self.fd.log_process(context, vmtime, pid, ppid, modulepath, procname)
                     return True
diff --git a/lib/cuckoo/common/objects.py b/lib/cuckoo/common/objects.py
index 5e8aaee59e5..7a5505232f5 100644
--- a/lib/cuckoo/common/objects.py
+++ b/lib/cuckoo/common/objects.py
@@ -2,25 +2,38 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-import os
-import mmap
-import time
+import binascii
+import contextlib
 import copy
-import struct
 import hashlib
 import logging
-import binascii
+import mmap
+import os
+import struct
 import subprocess
+from pathlib import Path
+from typing import Any, Dict
 
 from lib.cuckoo.common.constants import CUCKOO_ROOT
-from lib.cuckoo.common.defines import PAGE_NOACCESS, PAGE_READONLY, PAGE_READWRITE, PAGE_WRITECOPY, PAGE_EXECUTE, PAGE_EXECUTE_READ
-from lib.cuckoo.common.defines import PAGE_EXECUTE_READWRITE, PAGE_EXECUTE_WRITECOPY, PAGE_GUARD, PAGE_NOCACHE, PAGE_WRITECOMBINE
-#from lib.cuckoo.core.startup import init_yara
-from lib.cuckoo.common.exceptions import CuckooStartupError
+from lib.cuckoo.common.defines import (
+    PAGE_EXECUTE,
+    PAGE_EXECUTE_READ,
+    PAGE_EXECUTE_READWRITE,
+    PAGE_EXECUTE_WRITECOPY,
+    PAGE_GUARD,
+    PAGE_NOACCESS,
+    PAGE_READONLY,
+    PAGE_READWRITE,
+    PAGE_WRITECOPY,
+)
+from lib.cuckoo.common.integrations.clamav import get_clamav
+from lib.cuckoo.common.integrations.parse_pe import IMAGE_FILE_MACHINE_AMD64, IMAGE_FILE_MACHINE_I386, IsPEImage
+from lib.cuckoo.common.path_utils import path_exists
 
 try:
+    # python-magic, not file-magic!
     import magic
+
     HAVE_MAGIC = True
 except ImportError:
     HAVE_MAGIC = False
@@ -32,20 +45,6 @@
 except ImportError:
     HAVE_PYDEEP = False
 
-try:
-    import yara
-
-    HAVE_YARA = True
-except ImportError:
-    HAVE_YARA = False
-
-try:
-    import pyclamd
-
-    HAVE_CLAMAV = True
-except ImportError:
-    HAVE_CLAMAV = False
-
 try:
     import re2 as re
 except ImportError:
@@ -60,14 +59,34 @@
 
 try:
     import tlsh
+
     HAVE_TLSH = True
 except ImportError:
-    print("Missed dependency: pip3 install python-tlsh")
+    print("Missed dependency: poetry run pip install -r extra/optional_dependencies.txt")
     HAVE_TLSH = False
 
-log = logging.getLogger(__name__)
+try:
+    import yara
 
-FILE_CHUNK_SIZE = 16 * 1024
+    HAVE_YARA = True
+    if not int(yara.__version__[0]) >= 4:
+        raise ImportError("Missed library. Run: poetry install")
+except ImportError:
+    print("Missed library. Run: poetry install")
+    HAVE_YARA = False
+
+HAVE_YARA_X = False
+yara_x = False
+"""
+try:
+    import yara_x
+
+    HAVE_YARA_X = True
+except ImportError:
+    # print("Missed library. Run: poetry install pip3 install yara-x")
+"""
+
+log = logging.getLogger(__name__)
 
 yara_error = {
     "1": "ERROR_INSUFFICIENT_MEMORY",
@@ -120,87 +139,14 @@
     "49": "ERROR_REGULAR_EXPRESSION_TOO_COMPLEX",
 }
 
-IMAGE_DOS_SIGNATURE = 0x5A4D
-IMAGE_NT_SIGNATURE = 0x00004550
-OPTIONAL_HEADER_MAGIC_PE = 0x10B
-OPTIONAL_HEADER_MAGIC_PE_PLUS = 0x20B
-IMAGE_FILE_EXECUTABLE_IMAGE = 0x0002
-IMAGE_FILE_MACHINE_I386 = 0x014C
-IMAGE_FILE_MACHINE_AMD64 = 0x8664
-DOS_HEADER_LIMIT = 0x40
-PE_HEADER_LIMIT = 0x200
-
-def IsPEImage(buf, size=False):
-    if not buf:
-        return False
-    if not size:
-        size = len(buf)
-    if size < DOS_HEADER_LIMIT:
-        return False
-    if isinstance(buf, str):
-        buf = buf.encode("utf-8")
-    dos_header = buf[:DOS_HEADER_LIMIT]
-    nt_headers = None
-
-    if size < PE_HEADER_LIMIT:
-        return False
-
-    # Check for sane value in e_lfanew
-    (e_lfanew,) = struct.unpack("<L", dos_header[60:64])
-    if not e_lfanew or e_lfanew > PE_HEADER_LIMIT:
-        offset = 0
-        while offset < PE_HEADER_LIMIT - 86:
-            # ToDo
-            try:
-                machine_probe = struct.unpack("<H", buf[offset: offset + 2])[0]
-            except struct.error:
-                machine_probe = ""
-            if machine_probe and machine_probe in (IMAGE_FILE_MACHINE_I386, IMAGE_FILE_MACHINE_AMD64):
-                nt_headers = buf[offset - 4 : offset + 252]
-                break
-            offset = offset + 2
-    else:
-        nt_headers = buf[e_lfanew : e_lfanew + 256]
-
-    if not nt_headers:
-        return False
-
-    try:
-        # if ((pNtHeader->FileHeader.Machine == 0) || (pNtHeader->FileHeader.SizeOfOptionalHeader == 0 || pNtHeader->OptionalHeader.SizeOfHeaders == 0))
-        if struct.unpack("<H", nt_headers[4:6]) == 0 or struct.unpack("<H", nt_headers[20:22]) == 0 or struct.unpack("<H", nt_headers[84:86]) == 0:
-            return False
-
-        # if (!(pNtHeader->FileHeader.Characteristics & IMAGE_FILE_EXECUTABLE_IMAGE))
-        if (struct.unpack("<H", nt_headers[22:24])[0] & IMAGE_FILE_EXECUTABLE_IMAGE) == 0:
-            return False
-
-        # if (pNtHeader->FileHeader.SizeOfOptionalHeader & (sizeof (ULONG_PTR) - 1))
-        if struct.unpack("<H", nt_headers[20:22])[0] & 3 != 0:
-            return False
-
-        # if ((pNtHeader->OptionalHeader.Magic != IMAGE_NT_OPTIONAL_HDR32_MAGIC) && (pNtHeader->OptionalHeader.Magic != IMAGE_NT_OPTIONAL_HDR64_MAGIC))
-        if (
-            struct.unpack("<H", nt_headers[24:26])[0] != OPTIONAL_HEADER_MAGIC_PE
-            and struct.unpack("<H", nt_headers[24:26])[0] != OPTIONAL_HEADER_MAGIC_PE_PLUS
-        ):
-            return False
-
-    except struct.error:
-        return False
-
-    # To pass the above tests it should now be safe to assume it's a PE image
-
-    return True
-
-
-class Dictionary(dict):
-    """Cuckoo custom dict."""
-
-    def __getattr__(self, key):
-        return self.get(key, None)
-
-    __setattr__ = dict.__setitem__
-    __delattr__ = dict.__delitem__
+type_list = [
+    "RAR self-extracting archive",
+    "Nullsoft Installer self-extracting archive",
+    "7-zip Installer data",
+    "Inno Setup",
+    "MSI Installer",
+    "Microsoft Cabinet",  # ToDo add die support here
+]
 
 
 class PCAP:
@@ -218,13 +164,18 @@ def __init__(self, url):
         self.url = url
 
 
-class File(object):
+class File:
     """Basic file object class with all useful utilities."""
 
+    # ToDo python can be executed on windows too
+    LINUX_TYPES = {"Bourne-Again", "POSIX shell script", "ELF"}  # , "Python"
+    DARWIN_TYPES = {"Mach-O"}
+
     # The yara rules should not change during one Cuckoo run and as such we're
     # caching 'em. This dictionary is filled during init_yara().
+    # ToDo find a way to get compiled YARA hash so we can loopup files if hash is the same
     yara_rules = {}
-
+    yara_initialized = False
     # static fields which indicate whether the user has been
     # notified about missing dependencies already
     notified_yara = False
@@ -234,7 +185,9 @@ def __init__(self, file_path, guest_paths=None, file_name=None):
         """@param file_path: file path."""
         self.file_name = file_name
         self.file_path = file_path
+        self.file_path_ansii = file_path if isinstance(file_path, str) else file_path.decode()
         self.guest_paths = guest_paths
+        self.path_object = Path(self.file_path_ansii)
 
         # these will be populated when first accessed
         self._file_data = None
@@ -251,13 +204,10 @@ def get_name(self):
         """Get file name.
         @return: file name.
         """
-        if self.file_name:
-            return self.file_name
-        file_name = os.path.basename(self.file_path)
-        return file_name
+        return self.file_name or Path(self.file_path).name
 
     def valid(self):
-        return os.path.exists(self.file_path) and os.path.isfile(self.file_path) and os.path.getsize(self.file_path) != 0
+        return self.path_object.exists() and self.path_object.is_file() and self.path_object.stat().st_size
 
     def get_data(self):
         """Read file contents.
@@ -265,12 +215,12 @@ def get_data(self):
         """
         return self.file_data
 
-    def get_chunks(self):
+    def get_chunks(self, size=16):
         """Read file contents in chunks (generator)."""
-
+        chunk_size = size * 1024
         with open(self.file_path, "rb") as fd:
             while True:
-                chunk = fd.read(FILE_CHUNK_SIZE)
+                chunk = fd.read(chunk_size)
                 if not chunk:
                     break
                 yield chunk
@@ -297,34 +247,29 @@ def calc_hashes(self):
             if HAVE_TLSH:
                 tlsh_hash.update(chunk)
 
-        self._crc32 = "".join("%02X" % ((crc >> i) & 0xFF) for i in [24, 16, 8, 0])
+        self._crc32 = "".join(f"{(crc >> i) & 0xFF:02X}" for i in (24, 16, 8, 0))
         self._md5 = md5.hexdigest()
         self._sha1 = sha1.hexdigest()
         self._sha256 = sha256.hexdigest()
         self._sha512 = sha512.hexdigest()
         self._sha3_384 = sha3_384.hexdigest()
         if HAVE_TLSH:
-            try:
+            with contextlib.suppress(ValueError):
                 tlsh_hash.final()
                 self._tlsh_hash = tlsh_hash.hexdigest()
-            except ValueError:
-                pass
-                #print("TLSH: less than 50 of input, ignoring")
 
     @property
     def file_data(self):
         if not self._file_data:
-            self._file_data = open(self.file_path, "rb").read()
+            if self.path_object.exists():
+                self._file_data = self.path_object.read_bytes()
         return self._file_data
 
     def get_size(self):
         """Get file size.
         @return: file size.
         """
-        if os.path.exists(self.file_path):
-            return os.path.getsize(self.file_path)
-        else:
-            return 0
+        return self.path_object.stat().st_size if self.path_object.exists() else 0
 
     def get_crc32(self):
         """Get CRC32.
@@ -387,26 +332,7 @@ def get_ssdeep(self):
             return None
 
         try:
-            return pydeep.hash_file(self.file_path).decode("utf-8")
-        except Exception:
-            return None
-
-    def get_entrypoint(self, pe):
-        """Get entry point (PE).
-        @return: entry point.
-        """
-
-        try:
-            return pe.OPTIONAL_HEADER.AddressOfEntryPoint
-        except Exception:
-            return None
-
-    def get_ep_bytes(self, pe):
-        """Get entry point bytes (PE).
-        @return: entry point bytes (16).
-        """
-        try:
-            return binascii.b2a_hex(pe.get_data(pe.OPTIONAL_HEADER.AddressOfEntryPoint, 0x10)).decode("utf-8")
+            return pydeep.hash_file(self.file_path).decode()
         except Exception:
             return None
 
@@ -415,32 +341,34 @@ def get_content_type(self):
         @return: file content type.
         """
         file_type = None
-        if os.path.exists(self.file_path):
+        if self.path_object.exists():
             if HAVE_MAGIC:
-                if hasattr(magic, "from_file"):
-                    try:
-                        file_type = magic.from_file(self.file_path)
-                    except Exception as e:
-                        log.error(e, exc_info=True)
+                try:
+                    file_type = magic.from_file(self.file_path_ansii)
+                except magic.MagicException as e:
+                    log.error("Magic error: %s", str(e))
+                except Exception as e:
+                    log.exception(e)
                 if not file_type and hasattr(magic, "open"):
                     try:
-                        ms = magic.open(magic.MAGIC_MIME|magic.MAGIC_SYMLINK)
+                        ms = magic.open(magic.MAGIC_MIME | magic.MAGIC_SYMLINK)
                         ms.load()
                         file_type = ms.file(self.file_path)
                         ms.close()
                     except Exception as e:
-                        log.error(e, exc_info=True)
+                        log.exception(e)
 
             if file_type is None:
                 try:
-                    p = subprocess.Popen(["file", "-b", "-L", "--mime-type", self.file_path], universal_newlines=True, stdout=subprocess.PIPE)
+                    p = subprocess.Popen(
+                        ["file", "-b", "-L", "--mime-type", self.file_path], universal_newlines=True, stdout=subprocess.PIPE
+                    )
                     file_type = p.stdout.read().strip()
                 except Exception as e:
-                    log.error(e, exc_info=True)
+                    log.exception(e)
 
         return file_type
 
-
     def get_type(self):
         """Get MIME file type.
         @return: file type.
@@ -451,173 +379,393 @@ def get_type(self):
             try:
                 if IsPEImage(self.file_data):
                     self._pefile = True
-                    if not HAVE_PEFILE:
-                        if not File.notified_pefile:
-                            File.notified_pefile = True
-                            log.warning("Unable to import pefile (install with `pip3 install pefile`)")
-                    else:
+                    if HAVE_PEFILE:
                         try:
                             self.pe = pefile.PE(data=self.file_data, fast_load=True)
                         except pefile.PEFormatError:
                             self.file_type = "PE image for MS Windows"
-                            log.error('Unable to instantiate pefile on image')
-                        if self.pe:
+                            log.debug("Unable to instantiate pefile on image: %s", self.file_path)
+                        emulated_isa = {IMAGE_FILE_MACHINE_AMD64, IMAGE_FILE_MACHINE_I386}
+                        if self.pe and self.pe.FILE_HEADER.Machine in emulated_isa:
                             is_dll = self.pe.is_dll()
                             is_x64 = self.pe.FILE_HEADER.Machine == IMAGE_FILE_MACHINE_AMD64
+                            gui_type = "console" if self.pe.OPTIONAL_HEADER.Subsystem == 3 else "GUI"
+                            dotnet_string = ""
+                            with contextlib.suppress(AttributeError, IndexError):
+                                dotnet_string = (
+                                    " Mono/.Net assembly"
+                                    if self.pe.OPTIONAL_HEADER.DATA_DIRECTORY[
+                                        pefile.DIRECTORY_ENTRY["IMAGE_DIRECTORY_ENTRY_COM_DESCRIPTOR"]
+                                    ].VirtualAddress
+                                    != 0
+                                    else ""
+                                )
                             # Emulate magic for now
                             if is_dll and is_x64:
-                                self.file_type = "PE32+ executable (DLL) (GUI) x86-64, for MS Windows"
+                                self.file_type = f"PE32+ executable (DLL) (GUI) x86-64{dotnet_string}, for MS Windows"
                             elif is_dll:
-                                self.file_type = "PE32 executable (DLL) (GUI) Intel 80386, for MS Windows"
+                                self.file_type = f"PE32 executable (DLL) (GUI) Intel 80386{dotnet_string}, for MS Windows"
                             elif is_x64:
-                                self.file_type = "PE32+ executable (GUI) x86-64, for MS Windows"
+                                self.file_type = f"PE32+ executable ({gui_type}) x86-64{dotnet_string}, for MS Windows"
                             else:
-                                self.file_type = "PE32 executable (GUI) Intel 80386, for MS Windows"
+                                self.file_type = f"PE32 executable ({gui_type}) Intel 80386{dotnet_string}, for MS Windows"
+                            log.debug("file type set using basic heuristics for: %s", self.file_path)
+                    elif not File.notified_pefile:
+                        File.notified_pefile = True
+                        log.warning("Unable to import pefile (install with `pip3 install pefile`)")
             except Exception as e:
-                log.error(e, exc_info=True)
-
-            if not self.file_type:
-                self.file_type = self.get_content_type()
+                log.exception(e)
+        if not self.file_type:
+            self.file_type = self.get_content_type()
 
         return self.file_type
 
-    def _yara_encode_string(self, s):
+    def _yara_encode_string(self, yara_string):
         # Beware, spaghetti code ahead.
+        if not isinstance(yara_string, bytes):
+            return yara_string
         try:
-            new = s  # .encode("utf-8")
+            new = yara_string.decode()
         except UnicodeDecodeError:
-            s = s.lstrip("uU").encode("hex").upper()
-            s = " ".join(s[i : i + 2] for i in range(0, len(s), 2))
-            new = "{ %s }" % s
+            # yara_string = binascii.hexlify(yara_string.lstrip("uU")).upper()
+            yara_string = binascii.hexlify(yara_string).upper()
+            yara_string = b" ".join(yara_string[i : i + 2] for i in range(0, len(yara_string), 2))
+            new = f"{{ {yara_string.decode()} }}"
 
         return new
 
+    @classmethod
+    def init_yara(self, raise_exception: bool = False):
+        """Generates index for yara signatures."""
+
+        categories = ("binaries", "urls", "memory", "CAPE", "macro", "monitor")
+        log.debug("Initializing Yara...")
+
+        # Generate root directory for yara rules.
+        yara_root = os.path.join(CUCKOO_ROOT, "data", "yara")
+        custom_yara_root = os.path.join(CUCKOO_ROOT, "custom", "yara")
+        # Loop through all categories.
+        for category in categories:
+            rules, indexed = {}, []
+            # Check if there is a directory for the given category.
+            for path in (yara_root, custom_yara_root):
+                category_root = os.path.join(path, category)
+                if not path_exists(category_root):
+                    log.warning("Missing Yara directory: %s?", category_root)
+                    continue
+
+                for category_root, _, filenames in os.walk(category_root, followlinks=True):
+                    if category_root.endswith("deprecated"):
+                        continue
+                    for filename in filenames:
+                        if not filename.endswith((".yar", ".yara")):
+                            continue
+                        filepath = os.path.join(category_root, filename)
+                        rules[f"rule_{category}_{len(rules)}"] = filepath
+                        indexed.append(filename)
+
+                # Need to define each external variable that will be used in the
+            # future. Otherwise Yara will complain.
+            externals = {"filename": ""}
+
+            while True:
+                if HAVE_YARA_X:
+                    compiler = yara_x.Compiler(relaxed_re_syntax=True)
+                    for name, path in rules.items():
+                        try:
+                            with open(path, "r") as f:
+                                compiler.new_namespace(name)
+                                compiler.add_source(f.read())
+                        except yara_x.CompileError as err:
+                            if raise_exception:
+                                log.error("Yara problem: %s - Error:", name, str(err))
+                                raise yara_x.CompileError
+                            print(err, name)
+                            # ToDo bad rule defense
+
+                    File.yara_rules[category] = yara_x.Scanner(compiler.build())
+
+                elif HAVE_YARA:
+                    try:
+                        File.yara_rules[category] = yara.compile(filepaths=rules, externals=externals)
+                        File.yara_initialized = True
+                        break
+                    except yara.SyntaxError as e:
+                        bad_rule = f"{str(e).split('.yar', 1)[0]}.yar"
+                        log.debug(
+                            "Trying to disable rule: %s. Can't compile it. Ensure that your YARA is properly installed.", bad_rule
+                        )
+                        if os.path.basename(bad_rule) not in indexed:
+                            break
+                        for k, v in rules.items():
+                            if v == bad_rule:
+                                del rules[k]
+                                indexed.remove(os.path.basename(bad_rule))
+                                log.error(
+                                    "Can't compile YARA rule: %s. Maybe is bad yara but can be missing YARA's module.", bad_rule
+                                )
+                                break
+                    except yara.Error as e:
+                        log.error("There was a syntax error in one or more Yara rules: %s", e)
+                        break
+            if category == "memory":
+                index_memory = os.path.join(yara_root, "index_memory.yarc")
+                if HAVE_YARA_X:
+                    for name, path in rules.items():
+                        try:
+                            with open(path, "r") as f:
+                                compiler.new_namespace(name)
+                                compiler.add_source(f.read())
+                        except yara_x.CompileError as err:
+                            if raise_exception:
+                                log.error("Yara problem: %s - Error:", name, str(err))
+                                raise yara_x.CompileError
+                            print(err, name)
+                    builded = compiler.build()
+                    with open(index_memory, "wb") as f:
+                        builded.serialize_into(f)
+                elif HAVE_YARA:
+                    try:
+                        mem_rules = yara.compile(filepaths=rules, externals=externals)
+                        mem_rules.save(index_memory)
+                    except yara.Error as e:
+                        if "could not open file" in str(e):
+                            log.info("Can't write index_memory.yarc. Did you starting it with correct user?")
+                        else:
+                            log.error(e)
+
+            indexed = sorted(indexed)
+            for entry in indexed:
+                if (category, entry) == indexed[-1]:
+                    log.debug("\t `-- %s %s", category, entry)
+                else:
+                    log.debug("\t |-- %s %s", category, entry)
+
     def get_yara(self, category="binaries", externals=None):
         """Get Yara signatures matches.
         @return: matched Yara signatures.
         """
-        results = []
-        if not HAVE_YARA:
-            if not File.notified_yara:
-                File.notified_yara = True
-                log.warning("Unable to import yara (please compile from sources)")
-            return results
+        if not HAVE_YARA_X and HAVE_YARA and float(yara.__version__[:-2]) < 4.3:
+            log.error("You using outdated YARA version. run: poetry run extra/yara_installer.sh")
+            return []
+
+        if not File.yara_initialized:
+            File.init_yara()
 
         if not os.path.getsize(self.file_path):
-            return results
-        """
-        try:
-            # TODO Once Yara obtains proper Unicode filepath support we can
-            # remove this check. See also the following Github issue:
-            # https://github.com/VirusTotal/yara-python/issues/48
-            assert len(str(self.file_path)) == len(self.file_path)
-        except (UnicodeEncodeError, AssertionError):
-            log.warning("Can't run Yara rules on %r as Unicode paths are currently not supported in combination with Yara!", self.file_path)
-            return results
-        """
+            log.debug("YARA scan ignored, file is empty: %s", self.file_path)
+            return []
 
+        results = []
         try:
-            results, rule = [], File.yara_rules[category]
-            if isinstance(self.file_path, bytes):
-                path = self.file_path.decode("utf-8")
-            else:
-                path = self.file_path
-            for match in rule.match(path, externals=externals):
-                strings = set()
-                for s in match.strings:
-                    strings.add(self._yara_encode_string(s[2]))
-
-                addresses = {}
-                for s in match.strings:
-                    addresses[s[1].strip("$")] = s[0]
-
-                results.append({"name": match.rule, "meta": match.meta, "strings": list(strings), "addresses": addresses,})
+            rules = File.yara_rules[category]
+            if HAVE_YARA_X:
+                for yara_results in rules.scan_file(self.file_path):
+                    for match in yara_results.matching_rules:
+                        strings = []
+                        addresses = {}
+                        for yara_string in match.patterns:
+                            for x in yara_string.matches:
+                                # strings.extend({self._yara_encode_string(x.matched_data)})
+                                addresses.update({yara_string.identifier.strip("$"): x.offset})
+                        results.append(
+                            {
+                                "name": match.identifier,
+                                "meta": dict(match.metadata),
+                                "strings": [],
+                                "addresses": addresses,
+                            }
+                        )
+            elif HAVE_YARA:
+                for match in rules.match(self.file_path_ansii, externals=externals):
+                    strings = []
+                    addresses = {}
+                    for yara_string in match.strings:
+                        for x in yara_string.instances:
+                            y_string = self._yara_encode_string(x.matched_data)
+                            if y_string not in strings:
+                                strings.append(y_string)
+                            # ToDo Review of optimized
+                            addresses.update({yara_string.identifier.strip("$"): x.offset})
+                    results.append(
+                        {
+                            "name": match.rule,
+                            "meta": match.meta,
+                            "strings": strings,
+                            "addresses": addresses,
+                        }
+                    )
         except Exception as e:
-            errcode = str(e).split()[-1]
+            errcode = str(e).rsplit(maxsplit=1)[-1]
             if errcode in yara_error:
                 log.exception("Unable to match Yara signatures for %s: %s", self.file_path, yara_error[errcode])
+
             else:
                 log.exception("Unable to match Yara signatures for %s: unknown code %s", self.file_path, errcode)
 
         return results
 
-    def get_clamav(self):
-        """Get ClamAV signatures matches.
-        Requires pyclamd module. Additionally if running with apparmor, an exception must be made.
-        apt-get install clamav clamav-daemon clamav-freshclam clamav-unofficial-sigs -y
-        pip3 install -U pyclamd
-        systemctl enable clamav-daemon
-        systemctl start clamav-daemon
-        usermod -a -G cuckoo clamav
-        echo "/opt/CAPEv2/storage/** r," | sudo tee -a /etc/apparmor.d/local/usr.sbin.clamd
-        @return: matched ClamAV signatures.
+    cape_name_regex = re.compile(r" (?:payload|config|loader|strings)$", re.I)
+
+    @classmethod
+    def yara_hit_provides_detection(cls, hit: Dict[str, Any]) -> bool:
+        cape_type = hit["meta"].get("cape_type", "")
+        return bool(cls.cape_name_regex.search(cape_type))
+
+    @classmethod
+    def get_cape_name_from_yara_hit(cls, hit: Dict[str, Any]) -> str:
+        """Use the cape_type as defined in the metadata for the yara hit
+        (e.g. "SocGholish Payload") and return the part before
+        "Loader", "Payload", "Config", or "Strings"
         """
-        matches = []
+        return cls.get_cape_name_from_cape_type(hit["meta"].get("cape_type", ""))
 
-        if HAVE_CLAMAV and os.path.getsize(self.file_path) > 0:
-            try:
-                cd = pyclamd.ClamdUnixSocket()
-                results = cd.allmatchscan(self.file_path)
-                if results:
-                    for entry in results[self.file_path]:
-                        if entry[0] == "FOUND" and entry[1] not in matches:
-                            matches.append(entry[1])
-            except ConnectionError as e:
-                log.warning("failed to connect to clamd socket")
-            except Exception as e:
-                log.warning("failed to scan file with clamav {0}".format(e))
-            finally:
-                return matches
-        return matches
+    @classmethod
+    def get_cape_name_from_cape_type(cls, cape_type: str) -> str:
+        """Return the part of the cape_type (e.g. "SocGholish Payload") preceding
+        " Payload", " Config", " Loader", or " Strings"
+        """
+        if bool(cls.cape_name_regex.search(cape_type)):
+            return cls.cape_name_regex.sub("", cape_type)
+        else:
+            return ""
 
     def get_tlsh(self):
         """
         Get TLSH.
         @return: TLSH.
         """
-        if hasattr(self, "_tlsh_hash"):
-            if not self._tlsh_hash:
-                self.calc_hashes()
-            return self._tlsh_hash
-        else:
-            return False
+        if not hasattr(self, "_tlsh_hash"):
+            return None
+        if not self._tlsh_hash:
+            self.calc_hashes()
+        return self._tlsh_hash
+
+    def get_rh_hash(self):
+        if not self.pe:
+            return None
+
+        # source https://github.com/RichHeaderResearch/RichPE/blob/master/richpe.py#L34
+        rich_header = self.pe.parse_rich_header()
+        if rich_header is None:
+            return None
+
+        # Get list of @Comp.IDs and counts from Rich header
+        # Elements in rich_fields at even indices are @Comp.IDs
+        # Elements in rich_fields at odd indices are counts
+        rich_fields = rich_header.get("values")
+        if len(rich_fields) % 2 != 0:
+            return None
+
+        # The RichPE hash of a file is computed by computing the md5 of specific
+        # metadata within  the Rich header and the PE header
+        md5 = hashlib.md5()
+
+        # Update hash using @Comp.IDs and masked counts from Rich header
+        while len(rich_fields):
+            compid = rich_fields.pop(0)
+            count = rich_fields.pop(0)
+            mask = 2 ** (count.bit_length() // 2 + 1) - 1
+            count |= mask
+            md5.update(struct.pack("<L", compid))
+            md5.update(struct.pack("<L", count))
+
+        # Update hash using metadata from the PE header
+        md5.update(struct.pack("<L", self.pe.FILE_HEADER.Machine))
+        md5.update(struct.pack("<L", self.pe.FILE_HEADER.Characteristics))
+        md5.update(struct.pack("<L", self.pe.OPTIONAL_HEADER.Subsystem))
+        md5.update(struct.pack("<B", self.pe.OPTIONAL_HEADER.MajorLinkerVersion))
+        md5.update(struct.pack("<B", self.pe.OPTIONAL_HEADER.MinorLinkerVersion))
+        md5.update(struct.pack("<L", self.pe.OPTIONAL_HEADER.MajorOperatingSystemVersion))
+        md5.update(struct.pack("<L", self.pe.OPTIONAL_HEADER.MinorOperatingSystemVersion))
+        md5.update(struct.pack("<L", self.pe.OPTIONAL_HEADER.MajorImageVersion))
+        md5.update(struct.pack("<L", self.pe.OPTIONAL_HEADER.MinorImageVersion))
+        md5.update(struct.pack("<L", self.pe.OPTIONAL_HEADER.MajorSubsystemVersion))
+        md5.update(struct.pack("<L", self.pe.OPTIONAL_HEADER.MinorSubsystemVersion))
+
+        # Close PE file and return RichPE hash digest
+        return md5.hexdigest()
+
+    def is_sfx(self):
+        filetype = self.get_content_type()
+        return any([ftype in filetype for ftype in type_list])
+
+    def get_all_hashes(self):
+        return {
+            "crc32": self.get_crc32(),
+            "md5": self.get_md5(),
+            "sha1": self.get_sha1(),
+            "sha256": self.get_sha256(),
+            "sha512": self.get_sha512(),
+            "rh_hash": self.get_rh_hash(),
+            "ssdeep": self.get_ssdeep(),
+            "tlsh": self.get_tlsh(),
+            "sha3_384": self.get_sha3_384(),
+        }
 
     def get_all(self):
         """Get all information available.
         @return: information dict.
         """
 
-        infos = {}
-        infos["name"] = self.get_name()
-        infos["path"] = self.file_path
-        infos["guest_paths"] = self.guest_paths
-        infos["size"] = self.get_size()
-        infos["crc32"] = self.get_crc32()
-        infos["md5"] = self.get_md5()
-        infos["sha1"] = self.get_sha1()
-        infos["sha256"] = self.get_sha256()
-        infos["sha512"] = self.get_sha512()
-        infos["ssdeep"] = self.get_ssdeep()
-        infos["type"] = self.get_type()
-        infos["yara"] = self.get_yara()
-        infos["cape_yara"] = self.get_yara(category="CAPE")
-        infos["clamav"] = self.get_clamav()
-        infos["tlsh"] = self.get_tlsh()
-        infos["sha3_384"] = self.get_sha3_384()
-
-        if self.pe:
-            infos["entrypoint"] = self.get_entrypoint(self.pe)
-            infos["ep_bytes"] = self.get_ep_bytes(self.pe)
-            infos["timestamp"] = time.strftime("%Y-%m-%d %H:%M:%S", time.gmtime(self.pe.FILE_HEADER.TimeDateStamp))
+        infos = {
+            "name": self.get_name(),
+            "path": self.file_path,
+            "guest_paths": self.guest_paths,
+            "size": self.get_size(),
+            "crc32": self.get_crc32(),
+            "md5": self.get_md5(),
+            "sha1": self.get_sha1(),
+            "sha256": self.get_sha256(),
+            "sha512": self.get_sha512(),
+            "rh_hash": self.get_rh_hash(),
+            "ssdeep": self.get_ssdeep(),
+            "type": self.get_type(),
+            "yara": self.get_yara(),
+            "cape_yara": self.get_yara(category="CAPE"),
+            "clamav": get_clamav(self.file_path),
+            "tlsh": self.get_tlsh(),
+            "sha3_384": self.get_sha3_384(),
+        }
 
         return infos, self.pe
 
+    def get_platform(self):
+        retval = "windows"
+        ftype = self.get_type()
+        if isinstance(ftype, str):
+            # ToDo check if linux enabled
+            if any(x in ftype for x in File.LINUX_TYPES):
+                retval = "linux"
+            elif any(x in ftype for x in File.DARWIN_TYPES):
+                retval = "darwin"
+        return retval
+
+    def predict_arch(self):
+        ftype = self.get_type()
+        if isinstance(ftype, str):
+            if "ARM" in ftype or "arm executable" in ftype or "Aarch64" in ftype:
+                return "arm"
+            elif "MIPSEL" in ftype:
+                return "mipsel"
+            elif "MIPS" in ftype:
+                return "mips"
+            elif "SPARC" in ftype:
+                return "sparc"
+            elif "PowerPC" in ftype:
+                return "powerpc"
+            elif "PE32+" in ftype or "64-bit" in ftype or "x86-64" in ftype:
+                return "x64"
+            elif "PE32" in ftype or "32-bit" in ftype or "x86" in ftype or "80386" in ftype:
+                return "x86"
+        return None
+
 
 class Static(File):
     pass
 
 
-class ProcDump(object):
+class ProcDump:
     def __init__(self, dump_file, pretty=False):
         self._dumpfile = open(dump_file, "rb")
         self.dumpfile = mmap.mmap(self._dumpfile.fileno(), 0, access=mmap.ACCESS_READ)
@@ -648,22 +796,22 @@ def _prot_to_str(self, prot):
         if prot & PAGE_GUARD:
             return "G"
         prot &= 0xFF
-        return self.protmap[prot]
+        return self.protmap.get(prot, "UNKNOWN")
 
     def pretty_print(self):
         new_addr_space = copy.deepcopy(self.address_space)
         for map in new_addr_space:
-            map["start"] = "0x%.08x" % map["start"]
-            map["end"] = "0x%.08x" % map["end"]
-            map["size"] = "0x%.08x" % map["size"]
+            map["start"] = f"0x{map['start']:08x}"
+            map["end"] = f"0x{map['end']:08x}"
+            map["size"] = f"0x{map['size']:08x}"
             if map["prot"] is None:
                 map["prot"] = "Mixed"
             else:
                 map["prot"] = self._prot_to_str(map["prot"])
             for chunk in map["chunks"]:
-                chunk["start"] = "0x%.08x" % chunk["start"]
-                chunk["end"] = "0x%.08x" % chunk["end"]
-                chunk["size"] = "0x%.08x" % chunk["size"]
+                chunk["start"] = f"0x{chunk['start']:08x}"
+                chunk["end"] = f"0x{chunk['end']:08x}"
+                chunk["size"] = f"0x{chunk['size']:08x}"
                 chunk["prot"] = self._prot_to_str(chunk["prot"])
         return new_addr_space
 
@@ -686,26 +834,28 @@ def parse_dump(self):
             data = f.read(24)
             if data == b"":
                 break
-            alloc = dict()
             addr, size, mem_state, mem_type, mem_prot = struct.unpack("QIIII", data)
             offset = f.tell()
             if addr != lastend and len(curchunk):
                 address_space.append(self._coalesce_chunks(curchunk))
                 curchunk = []
             lastend = addr + size
-            alloc["start"] = addr
-            alloc["end"] = addr + size
-            alloc["size"] = size
-            alloc["prot"] = mem_prot
-            alloc["state"] = mem_state
-            alloc["type"] = mem_type
-            alloc["offset"] = offset
-            alloc["PE"] = False
+            alloc = {
+                "start": addr,
+                "end": addr + size,
+                "size": size,
+                "prot": mem_prot,
+                "state": mem_state,
+                "type": mem_type,
+                "offset": offset,
+                "PE": False,
+            }
+
             try:
                 if f.read(2) == b"MZ":
                     alloc["PE"] = True
                 f.seek(size - 2, 1)
-            except:
+            except Exception:
                 break
             curchunk.append(alloc)
         if len(curchunk):
@@ -730,21 +880,18 @@ def get_data(self, addr, size):
 
     def search(self, regex, flags=0, all=False):
         if all:
-            result = dict()
-            result["detail"] = []
+            result = {"detail": []}
             matches = []
             for map in self.address_space:
                 for chunk in map["chunks"]:
                     self.dumpfile.seek(chunk["offset"])
                     match = re.finditer(regex, self.dumpfile.read(chunk["end"] - chunk["start"]), flags)
                     thismatch = []
-                    try:
+                    with contextlib.suppress(StopIteration):
                         while True:
                             m = next(match)
                             thismatch.append(m)
                             matches.append(m.group(0))
-                    except StopIteration:
-                        pass
                     if thismatch:
                         result["detail"].append({"match": thismatch, "chunk": chunk})
             result["matches"] = matches
@@ -755,80 +902,4 @@ def search(self, regex, flags=0, all=False):
                     self.dumpfile.seek(chunk["offset"])
                     match = re.search(regex, self.dumpfile.read(chunk["end"] - chunk["start"]), flags)
                     if match:
-                        result = dict()
-                        result["match"] = match
-                        result["chunk"] = chunk
-                        return result
-
-
-# ToDo remove/unify required for static extraction
-
-def init_yara():
-    """Generates index for yara signatures."""
-
-    categories = ("binaries", "urls", "memory", "CAPE", "macro")
-
-    log.debug("Initializing Yara...")
-
-    # Generate root directory for yara rules.
-    yara_root = os.path.join(CUCKOO_ROOT, "data", "yara")
-
-    # We divide yara rules in three categories.
-    # CAPE adds a fourth
-
-    # Loop through all categories.
-    for category in categories:
-        # Check if there is a directory for the given category.
-        category_root = os.path.join(yara_root, category)
-        if not os.path.exists(category_root):
-            log.warning("Missing Yara directory: %s?", category_root)
-            continue
-
-        rules, indexed = {}, []
-        for category_root, _, filenames in os.walk(category_root, followlinks=True):
-            for filename in filenames:
-                if not filename.endswith((".yar", ".yara")):
-                    continue
-
-                filepath = os.path.join(category_root, filename)
-
-                try:
-                    # TODO Once Yara obtains proper Unicode filepath support we
-                    # can remove this check. See also this Github issue:
-                    # https://github.com/VirusTotal/yara-python/issues/48
-                    assert len(str(filepath)) == len(filepath)
-                except (UnicodeEncodeError, AssertionError):
-                    log.warning("Can't load Yara rules at %r as Unicode filepaths are " "currently not supported in combination with Yara!", filepath)
-                    continue
-
-                rules["rule_%s_%d" % (category, len(rules))] = filepath
-                indexed.append(filename)
-
-            # Need to define each external variable that will be used in the
-        # future. Otherwise Yara will complain.
-        externals = {
-            "filename": "",
-        }
-
-        try:
-            File.yara_rules[category] = yara.compile(filepaths=rules, externals=externals)
-        except yara.Error as e:
-            raise CuckooStartupError("There was a syntax error in one or more Yara rules: %s" % e)
-
-        # ToDo for Volatility3 yarascan
-        # The memory.py processing module requires a yara file with all of its
-        # rules embedded in it, so create this file to remain compatible.
-        # if category == "memory":
-        #    f = open(os.path.join(yara_root, "index_memory.yar"), "w")
-        #    for filename in sorted(indexed):
-        #        f.write('include "%s"\n' % os.path.join(category_root, filename))
-
-        indexed = sorted(indexed)
-        for entry in indexed:
-            if (category, entry) == indexed[-1]:
-                log.debug("\t `-- %s %s", category, entry)
-            else:
-                log.debug("\t |-- %s %s", category, entry)
-
-
-init_yara()
+                        return {"match": match, "chunk": chunk}
diff --git a/lib/cuckoo/common/office/msgextract.py b/lib/cuckoo/common/office/msgextract.py
deleted file mode 100644
index 2ee07eb7a54..00000000000
--- a/lib/cuckoo/common/office/msgextract.py
+++ /dev/null
@@ -1,217 +0,0 @@
-#!/usr/local/bin/python
-# -*- coding: latin-1 -*-
-"""
-ExtractMsg:
-    Extracts emails and attachments saved in Microsoft Outlook's .msg files
-
-https://github.com/mattgwwalker/msg-extractor
-"""
-
-from __future__ import absolute_import
-import six
-
-__author__ = "Matthew Walker"
-__date__ = "2013-11-19"
-__version__ = "0.2"
-
-# --- LICENSE -----------------------------------------------------------------
-#
-#    Copyright 2013 Matthew Walker, 2015 Optiv, Inc. (brad.spengler@optiv.com)
-#
-#    This program is free software: you can redistribute it and/or modify
-#    it under the terms of the GNU General Public License as published by
-#    the Free Software Foundation, either version 3 of the License, or
-#    (at your option) any later version.
-#
-#    This program is distributed in the hope that it will be useful,
-#    but WITHOUT ANY WARRANTY; without even the implied warranty of
-#    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-#    GNU General Public License for more details.
-#
-#    You should have received a copy of the GNU General Public License
-#    along with this program.  If not, see <http://www.gnu.org/licenses/>.
-
-import os
-import sys
-import glob
-import traceback
-from email.parser import Parser as EmailParser
-import email.utils
-import olefile as OleFile
-from lib.cuckoo.common.utils import store_temp_file
-
-
-def windowsUnicode(string):
-    if string is None:
-        return None
-    if sys.version_info[0] >= 3:  # Python 3
-        return str(string, "utf_16_le")
-    else:  # Python 2
-        return six.text_type(string, "utf_16_le")
-
-
-class Attachment:
-    def __init__(self, msg, dir_):
-        # Get long filename
-        self.longFilename = msg._getStringStream([dir_, "__substg1.0_3707"])
-
-        # Get short filename
-        self.shortFilename = msg._getStringStream([dir_, "__substg1.0_3704"])
-
-        # Get attachment data
-        self.data = msg._getStream([dir_, "__substg1.0_37010102"])
-
-    def save(self):
-        # Use long filename as first preference
-        filename = self.longFilename
-        # Otherwise use the short filename
-        if filename is None:
-            filename = self.shortFilename
-        # Otherwise just make something up!
-        if filename is None:
-            import random
-            import string
-
-            filename = "UnknownAttachment" + "".join(random.choice(string.ascii_uppercase + string.digits) for _ in range(5)) + ".bin"
-
-        base, ext = os.path.splitext(filename)
-        basename = os.path.basename(filename)
-        ext = ext.lower()
-        if ext == "" and len(basename) and basename[0] == ".":
-            return None
-        extensions = [
-            "",
-            ".exe",
-            ".dll",
-            ".com",
-            ".pdf",
-            ".msi",
-            ".bin",
-            ".scr",
-            ".zip",
-            ".tar",
-            ".tgz",
-            ".gz",
-            ".rar",
-            ".htm",
-            ".html",
-            ".hta",
-            ".doc",
-            ".dot",
-            ".docx",
-            ".dotx",
-            ".docm",
-            ".dotm",
-            ".docb",
-            ".mht",
-            ".mso",
-            ".js",
-            ".jse",
-            ".vbs",
-            ".vbe",
-            ".xls",
-            ".xlt",
-            ".xlm",
-            ".xlsx",
-            ".xltx",
-            ".xlsm",
-            ".xltm",
-            ".xlsb",
-            ".xla",
-            ".xlam",
-            ".xll",
-            ".xlw",
-            ".ppt",
-            ".pot",
-            ".pps",
-            ".pptx",
-            ".pptm",
-            ".potx",
-            ".potm",
-            ".ppam",
-            ".ppsx",
-            ".ppsm",
-            ".sldx",
-            ".sldm",
-            ".wsf",
-        ]
-        foundext = False
-        for theext in extensions:
-            if ext == theext:
-                foundext = True
-                break
-
-        if not foundext:
-            return None
-
-        return store_temp_file(self.data, filename)
-
-
-class Message(OleFile.OleFileIO):
-    def __init__(self, filename):
-        OleFile.OleFileIO.__init__(self, filename)
-
-    def _getStream(self, filename):
-        if self.exists(filename):
-            stream = self.openstream(filename)
-            return stream.read()
-        else:
-            return None
-
-    def _getStringStream(self, filename, prefer="unicode"):
-        """Gets a string representation of the requested filename.
-        Checks for both ASCII and Unicode representations and returns
-        a value if possible.  If there are both ASCII and Unicode
-        versions, then the parameter /prefer/ specifies which will be
-        returned.
-        """
-
-        if isinstance(filename, list):
-            # Join with slashes to make it easier to append the type
-            filename = "/".join(filename)
-
-        asciiVersion = self._getStream(filename + "001E")
-        unicodeVersion = windowsUnicode(self._getStream(filename + "001F"))
-        if asciiVersion is None:
-            return unicodeVersion
-        elif unicodeVersion is None:
-            return asciiVersion
-        else:
-            if prefer == "unicode":
-                return unicodeVersion
-            else:
-                return asciiVersion
-
-    @property
-    def body(self):
-        # Get the message body
-        return self._getStringStream("__substg1.0_1000")
-
-    @property
-    def attachments(self):
-        try:
-            return self._attachments
-        except Exception:
-            # Get the attachments
-            attachmentDirs = []
-
-            for dir_ in self.listdir():
-                if dir_[0].startswith("__attach") and dir_[0] not in attachmentDirs:
-                    attachmentDirs.append(dir_[0])
-
-            self._attachments = []
-
-            for attachmentDir in attachmentDirs:
-                self._attachments.append(Attachment(self, attachmentDir))
-
-            return self._attachments
-
-    def get_extracted_attachments(self):
-        retlist = []
-        # Save the attachments
-        for attachment in self.attachments:
-            saved = attachment.save()
-            if saved:
-                retlist.append(saved)
-
-        return retlist
diff --git a/lib/cuckoo/common/office/rtfdump.py b/lib/cuckoo/common/office/rtfdump.py
deleted file mode 100755
index d35f577fc86..00000000000
--- a/lib/cuckoo/common/office/rtfdump.py
+++ /dev/null
@@ -1,1075 +0,0 @@
-#!/usr/bin/env python
-from __future__ import absolute_import
-from __future__ import print_function
-
-__description__ = "Analyze RTF files"
-__author__ = "Didier Stevens"
-__version__ = "0.0.9"
-__date__ = "2018/12/09"
-
-"""
-
-Source code put in public domain by Didier Stevens, no Copyright
-https://DidierStevens.com
-Use at your own risk
-
-History:
-  2015/09/01: start
-  2015/09/02: continue
-  2015/09/09: added --cut ...l and bytes appended after last group
-  2015/09/11: added re.I for hex regexes
-  2015/09/12: CutData refactoring
-  2015/09/14: added YARA support
-  2015/09/15: added basic HEX deobfuscation (options -F and -S)
-  2015/11/18: added support for -c :-number
-  2016/01/23: added support to ExtractHex for obfuscated hex code; updated CutData
-  2016/01/23: added option -i
-  2016/07/23: 0.0.2 continue; sample 1B8113DC81489FF37202A1E038A7781D
-  2016/07/24: continue
-  2016/07/26: continue
-  2016/07/27: continue
-  2016/07/30: 0.0.3 added option recursionlimit
-  2016/08/09: 0.0.4 refactoring
-  2016/08/12: continue
-  2017/02/11: 0.0.5 added \dde000... handling; added option -E
-  2017/12/09: 0.0.6 added longestContiguousHexstring; extra info -f O
-  2017/12/10: cDump & YARACompile
-  2017/12/24: 0.0.7 made changes level 0 -> remainder
-  2018/12/07: 0.0.8 added support for -s a; added selection warning; added option -A; added yara #x# #r#; updated ParseCutTerm; added --jsonoutput
-  2018/12/09: 0.0.9 changed extra output for remainder
-
-Todo:
-"""
-
-import optparse
-import sys
-import os
-import zipfile
-import binascii
-import textwrap
-import re
-import string
-import hashlib
-import json
-from io import StringIO
-import collections
-import glob
-
-try:
-    import yara
-except:
-    pass
-
-dumplinelength = 16
-MALWARE_PASSWORD = "infected"
-
-
-def PrintManual():
-    manual = """
-Manual:
-
-"""
-    for line in manual.split("\n"):
-        print(textwrap.fill(line))
-
-
-# Convert 2 Bytes If Python 3
-def C2BIP3(string):
-    if sys.version_info[0] > 2:
-        return bytes([ord(x) for x in string])
-    else:
-        return string
-
-
-# CIC: Call If Callable
-def CIC(expression):
-    if callable(expression):
-        return expression()
-    else:
-        return expression
-
-
-# IFF: IF Function
-def IFF(expression, valueTrue, valueFalse):
-    if expression:
-        return CIC(valueTrue)
-    else:
-        return CIC(valueFalse)
-
-
-def File2String(filename):
-    try:
-        f = open(filename, "rb")
-    except:
-        return None
-    try:
-        return f.read()
-    except:
-        return None
-    finally:
-        f.close()
-
-
-# -BEGINCODE cDump------------------------------------------------------------------------------------
-# import binascii
-# import sys
-# if sys.version_info[0] >= 3:
-#    from io import StringIO
-# else:
-#    from io import StringIO
-
-
-class cDump:
-    def __init__(self, data, prefix="", offset=0, dumplinelength=16):
-        self.data = data
-        self.prefix = prefix
-        self.offset = offset
-        self.dumplinelength = dumplinelength
-
-    def HexDump(self):
-        oDumpStream = self.cDumpStream(self.prefix)
-        hexDump = ""
-        for i, b in enumerate(self.data):
-            if i % self.dumplinelength == 0 and hexDump != "":
-                oDumpStream.Addline(hexDump)
-                hexDump = ""
-            hexDump += IFF(hexDump == "", "", " ") + "%02X" % self.C2IIP2(b)
-        oDumpStream.Addline(hexDump)
-        return oDumpStream.Content()
-
-    def CombineHexAscii(self, hexDump, asciiDump):
-        if hexDump == "":
-            return ""
-        countSpaces = 3 * (self.dumplinelength - len(asciiDump))
-        if len(asciiDump) <= self.dumplinelength / 2:
-            countSpaces += 1
-        return hexDump + "  " + (" " * countSpaces) + asciiDump
-
-    def HexAsciiDump(self, rle=False):
-        oDumpStream = self.cDumpStream(self.prefix)
-        position = ""
-        hexDump = ""
-        asciiDump = ""
-        previousLine = None
-        countRLE = 0
-        for i, b in enumerate(self.data):
-            b = self.C2IIP2(b)
-            if i % self.dumplinelength == 0:
-                if hexDump != "":
-                    line = self.CombineHexAscii(hexDump, asciiDump)
-                    if not rle or line != previousLine:
-                        if countRLE > 0:
-                            oDumpStream.Addline("* %d 0x%02x" % (countRLE, countRLE * self.dumplinelength))
-                        oDumpStream.Addline(position + line)
-                        countRLE = 0
-                    else:
-                        countRLE += 1
-                    previousLine = line
-                position = "%08X:" % (i + self.offset)
-                hexDump = ""
-                asciiDump = ""
-            if i % self.dumplinelength == self.dumplinelength / 2:
-                hexDump += " "
-            hexDump += " %02X" % b
-            asciiDump += IFF(b >= 32 and b < 128, chr(b), ".")
-        if countRLE > 0:
-            oDumpStream.Addline("* %d 0x%02x" % (countRLE, countRLE * self.dumplinelength))
-        oDumpStream.Addline(self.CombineHexAscii(position + hexDump, asciiDump))
-        return oDumpStream.Content()
-
-    def Base64Dump(self, nowhitespace=False):
-        encoded = binascii.b2a_base64(self.data)
-        if nowhitespace:
-            return encoded
-        oDumpStream = self.cDumpStream(self.prefix)
-        length = 64
-        for i in range(0, len(encoded), length):
-            oDumpStream.Addline(encoded[0 + i : length + i])
-        return oDumpStream.Content()
-
-    class cDumpStream:
-        def __init__(self, prefix=""):
-            self.oStringIO = StringIO()
-            self.prefix = prefix
-
-        def Addline(self, line):
-            if line != "":
-                self.oStringIO.write(self.prefix + line + "\n")
-
-        def Content(self):
-            return self.oStringIO.getvalue()
-
-    @staticmethod
-    def C2IIP2(data):
-        if sys.version_info[0] > 2:
-            return data
-        else:
-            return ord(data)
-
-
-def HexDump(data):
-    return cDump(data, dumplinelength=dumplinelength).HexDump()
-
-
-def HexAsciiDump(data, rle=False):
-    return cDump(data, dumplinelength=dumplinelength).HexAsciiDump(rle=rle)
-
-
-# Fix for http://bugs.python.org/issue11395
-def StdoutWriteChunked(data):
-    while data != "":
-        sys.stdout.write(data[0:10000])
-        try:
-            sys.stdout.flush()
-        except IOError:
-            return
-        data = data[10000:]
-
-
-def IfWIN32SetBinary(io):
-    if sys.platform == "win32":
-        import msvcrt
-
-        msvcrt.setmode(io.fileno(), os.O_BINARY)
-
-
-def File2Strings(filename):
-    try:
-        f = open(filename, "r")
-    except:
-        return None
-    try:
-        return map(lambda line: line.rstrip("\n"), f.readlines())
-    except:
-        return None
-    finally:
-        f.close()
-
-
-def ProcessAt(argument):
-    if argument.startswith("@"):
-        strings = File2Strings(argument[1:])
-        if strings == None:
-            raise Exception("Error reading %s" % argument)
-        else:
-            return strings
-    else:
-        return [argument]
-
-
-def AddPlugin(cClass):
-    global plugins
-
-    plugins.append(cClass)
-
-
-def ExpandFilenameArguments(filenames):
-    return list(collections.OrderedDict.fromkeys(sum(map(glob.glob, sum(map(ProcessAt, filenames), [])), [])))
-
-
-class cPluginParent:
-    macroOnly = False
-
-
-def LoadPlugins(plugins, verbose):
-    if plugins == "":
-        return
-    scriptPath = os.path.dirname(sys.argv[0])
-    for plugin in sum(map(ProcessAt, plugins.split(",")), []):
-        try:
-            if not plugin.lower().endswith(".py"):
-                plugin += ".py"
-            if os.path.dirname(plugin) == "":
-                if not os.path.exists(plugin):
-                    scriptPlugin = os.path.join(scriptPath, plugin)
-                    if os.path.exists(scriptPlugin):
-                        plugin = scriptPlugin
-            exec(open(plugin, "r").read(), globals(), globals())
-        except Exception as e:
-            print("Error loading plugin: %s" % plugin)
-            if verbose:
-                raise e
-
-
-def AddDecoder(cClass):
-    global decoders
-
-    decoders.append(cClass)
-
-
-class cDecoderParent:
-    pass
-
-
-def LoadDecoders(decoders, verbose):
-    if decoders == "":
-        return
-    scriptPath = os.path.dirname(sys.argv[0])
-    for decoder in sum(map(ProcessAt, decoders.split(",")), []):
-        try:
-            if not decoder.lower().endswith(".py"):
-                decoder += ".py"
-            if os.path.dirname(decoder) == "":
-                if not os.path.exists(decoder):
-                    scriptDecoder = os.path.join(scriptPath, decoder)
-                    if os.path.exists(scriptDecoder):
-                        decoder = scriptDecoder
-            exec(open(decoder, "r").read(), globals(), globals())
-        except Exception as e:
-            print("Error loading decoder: %s" % decoder)
-            if verbose:
-                raise e
-
-
-class cIdentity(cDecoderParent):
-    name = "Identity function decoder"
-
-    def __init__(self, stream, options):
-        self.stream = stream
-        self.options = options
-        self.available = True
-
-    def Available(self):
-        return self.available
-
-    def Decode(self):
-        self.available = False
-        return self.stream
-
-    def Name(self):
-        return ""
-
-
-def DecodeFunction(decoders, options, stream):
-    if decoders == []:
-        return stream
-    return decoders[0](stream, options.decoderoptions).Decode()
-
-
-class cIteminfo:
-    def __init__(self, level, beginPosition, endPosition, countChildren):
-        self.level = level
-        self.beginPosition = beginPosition
-        self.endPosition = endPosition
-        self.countChildren = countChildren
-
-
-def BuildTree(rtfdata, level, index, sequence, options):
-    children = 0
-    level += 1
-    if index >= len(rtfdata):
-        return None
-    if rtfdata[index] != "{":
-        error = "Parser error: Expected character {"
-        print(error)
-        raise Exception(error)
-    start = index
-    oIteminfo = cIteminfo(level, start, None, None)
-    sequence.append(oIteminfo)
-    index += 1
-    while index < len(rtfdata):
-        if rtfdata[index] == "{" and (index == 0 or rtfdata[index - 1] != "\\"):
-            index = BuildTree(rtfdata, level, index, sequence, options)
-            children += 1
-        elif rtfdata[index] == "}" and (index == 0 or rtfdata[index - 1] != "\\"):
-            oIteminfo.endPosition = index
-            oIteminfo.countChildren = children
-            return index + 1
-        else:
-            index += 1
-    if options.select == "":
-        print("Parser warning: Missing terminating character } level = %d" % level)
-    oIteminfo.endPosition = index
-    oIteminfo.countChildren = children
-    return index
-
-
-def Trimdde(data):
-    if not data.startswith("\r\n\\dde"):
-        return data
-    data = data[6:]
-    counter = 0
-    while data[counter] == "0" and counter < 250:
-        counter += 1
-    return data[counter:]
-
-
-def ExtractHex(data):
-    data = Trimdde(data)
-    if data.startswith("\r\n\\dde"):
-        print(repr(data[0:40]))
-    backslash = False
-    backslashtext = ""
-    hexstring = [StringIO()]
-    countUnexpectedCharacters = 0
-    binstatus = 0
-    binnumber = ""
-    bintext = ""
-    i = 0
-    while i < len(data):
-        char = data[i]
-        if binstatus > 0:
-            if binstatus == 1:
-                if char in string.digits:
-                    binnumber += char
-                else:
-                    binstatus = 2
-                    if binnumber == "":
-                        binint = 0
-                    else:
-                        binint = int(binnumber) & 0xFFFFFFFF
-                    bintext = ""
-                    if binint == 0:
-                        binstatus = 0
-                    if not char in string.whitespace:
-                        i -= 1
-            elif binstatus == 2:
-                bintext += char
-                binint -= 1
-                if binint == 0:
-                    binstatus = 0
-                    hexstring.append(["bin", bintext])
-                    hexstring.append(StringIO())
-                    binnumber = ""
-                    bintext = ""
-        elif backslash:
-            if char in string.letters or char in string.digits or char == "-":
-                backslashtext += char
-                if backslashtext == "\\bin":
-                    binstatus = 1
-                    binnumber = ""
-                    backslash = False
-                    backslashtext = ""
-            elif backslashtext == "\\":
-                backslash = False
-                backslashtext = ""
-            else:
-                #                if backslashtext != '\\-':
-                #                    print(repr(backslashtext))
-                backslash = False
-                backslashtext = ""
-                i -= 1
-        elif char == "\\":
-            backslash = True
-            backslashtext = char
-        elif char in string.hexdigits:
-            hexstring[-1].write(char)
-        elif char in string.whitespace:
-            pass
-        elif char in ["{", "}"]:
-            pass
-        else:
-            countUnexpectedCharacters += 1
-        #            print(hexstring)
-        #            print(repr(char))
-        #            if not char in ['\0']:
-        #                raise('xxx')
-        i += 1
-    return (
-        [IFF(isinstance(x, list), x, lambda: x.getvalue()) for x in hexstring],
-        max([""] + re.findall("[0-9a-f]+", data, re.I), key=len),
-        countUnexpectedCharacters,
-    )
-
-
-def ReadDWORD(data):
-    if len(data) < 4:
-        return None, None
-    return ord(data[0]) + ord(data[1]) * 0x100 + ord(data[2]) * 0x10000 + ord(data[3]) * 0x1000000, data[4:]
-
-
-# https://msdn.microsoft.com/en-us/library/dd942076.aspx
-# https://www.linkedin.com/pulse/microsoft-office-zero-day-detecting-hta-handler-kevin-douglas
-def ExtractOleInfo(data):
-    dataSave = data
-    word1, data = ReadDWORD(data)
-    if word1 == None or word1 != 0x00000501:
-        return []
-    word2, data = ReadDWORD(data)
-    if word2 == None or word2 != 0x00000002:
-        return []
-    word3, data = ReadDWORD(data)
-    if word3 == None:
-        return []
-    if word3 > 0 and word3 <= len(data):
-        name = data[:word3]
-        data = data[word3:]
-    else:
-        return []
-    word4, data = ReadDWORD(data)
-    if word4 == None or word4 != 0x00000000:
-        return []
-    word5, data = ReadDWORD(data)
-    if word5 == None or word5 != 0x00000000:
-        return []
-    sizeEmbedded, data = ReadDWORD(data)
-    if sizeEmbedded == None:
-        return []
-
-    position = 6 * 4 + word3
-    return [
-        name,
-        position,
-        sizeEmbedded,
-        hashlib.md5(dataSave[position : position + sizeEmbedded]).hexdigest(),
-        binascii.b2a_hex(dataSave[position : position + 4]),
-    ]
-
-
-def Info(data):
-    result = ExtractOleInfo(data)
-    if result == []:
-        return "Error: extraction failed"
-    return "Name: %s\nPosition embedded: %08x\nSize embedded: %08x\nmd5: %s\nmagic: %s\n" % (
-        repr(result[0]),
-        result[1],
-        result[2],
-        result[3],
-        result[4],
-    )
-
-
-CUTTERM_NOTHING = 0
-CUTTERM_POSITION = 1
-CUTTERM_FIND = 2
-CUTTERM_LENGTH = 3
-
-
-def ExtractPackage(data):
-    result = ExtractOleInfo(data)
-    return data[result[1] : result[1] + result[2]]
-
-
-def Replace(string, dReplacements):
-    if string in dReplacements:
-        return dReplacements[string]
-    else:
-        return string
-
-
-def ParseInteger(argument):
-    sign = 1
-    if argument.startswith("+"):
-        argument = argument[1:]
-    elif argument.startswith("-"):
-        argument = argument[1:]
-        sign = -1
-    if argument.startswith("0x"):
-        return sign * int(argument[2:], 16)
-    else:
-        return sign * int(argument)
-
-
-def ParseCutTerm(argument):
-    if argument == "":
-        return CUTTERM_NOTHING, None, ""
-    oMatch = re.match(r"\-?0x([0-9a-f]+)", argument, re.I)
-    if oMatch == None:
-        oMatch = re.match(r"\-?(\d+)", argument)
-    else:
-        value = int(oMatch.group(1), 16)
-        if argument.startswith("-"):
-            value = -value
-        return CUTTERM_POSITION, value, argument[len(oMatch.group(0)) :]
-    if oMatch == None:
-        oMatch = re.match(r"\[([0-9a-f]+)\](\d+)?([+-](?:0x[0-9a-f]+|\d+))?", argument, re.I)
-    else:
-        value = int(oMatch.group(1))
-        if argument.startswith("-"):
-            value = -value
-        return CUTTERM_POSITION, value, argument[len(oMatch.group(0)) :]
-    if oMatch == None:
-        oMatch = re.match(r"\[\'(.+?)\'\](\d+)?([+-](?:0x[0-9a-f]+|\d+))?", argument)
-    else:
-        if len(oMatch.group(1)) % 2 == 1:
-            raise Exception("Uneven length hexadecimal string")
-        else:
-            return (
-                CUTTERM_FIND,
-                (
-                    binascii.a2b_hex(oMatch.group(1)),
-                    int(Replace(oMatch.group(2), {None: "1"})),
-                    ParseInteger(Replace(oMatch.group(3), {None: "0"})),
-                ),
-                argument[len(oMatch.group(0)) :],
-            )
-    if oMatch == None:
-        return None, None, argument
-    else:
-        return (
-            CUTTERM_FIND,
-            (oMatch.group(1), int(Replace(oMatch.group(2), {None: "1"})), ParseInteger(Replace(oMatch.group(3), {None: "0"}))),
-            argument[len(oMatch.group(0)) :],
-        )
-
-
-def ParseCutArgument(argument):
-    type, value, remainder = ParseCutTerm(argument.strip())
-    if type == CUTTERM_NOTHING:
-        return CUTTERM_NOTHING, None, CUTTERM_NOTHING, None
-    elif type == None:
-        if remainder.startswith(":"):
-            typeLeft = CUTTERM_NOTHING
-            valueLeft = None
-            remainder = remainder[1:]
-        else:
-            return None, None, None, None
-    else:
-        typeLeft = type
-        valueLeft = value
-        if typeLeft == CUTTERM_POSITION and valueLeft < 0:
-            return None, None, None, None
-        if typeLeft == CUTTERM_FIND and valueLeft[1] == 0:
-            return None, None, None, None
-        if remainder.startswith(":"):
-            remainder = remainder[1:]
-        else:
-            return None, None, None, None
-    type, value, remainder = ParseCutTerm(remainder)
-    if type == CUTTERM_POSITION and remainder == "l":
-        return typeLeft, valueLeft, CUTTERM_LENGTH, value
-    elif type == None or remainder != "":
-        return None, None, None, None
-    elif type == CUTTERM_FIND and value[1] == 0:
-        return None, None, None, None
-    else:
-        return typeLeft, valueLeft, type, value
-
-
-def Find(data, value, nth):
-    position = -1
-    while nth > 0:
-        position = data.find(value, position + 1)
-        if position == -1:
-            return -1
-        nth -= 1
-    return position
-
-
-def CutData(stream, cutArgument):
-    if cutArgument == "":
-        return stream
-
-    typeLeft, valueLeft, typeRight, valueRight = ParseCutArgument(cutArgument)
-
-    if typeLeft == None:
-        return stream
-
-    if typeLeft == CUTTERM_NOTHING:
-        positionBegin = 0
-    elif typeLeft == CUTTERM_POSITION:
-        positionBegin = valueLeft
-    elif typeLeft == CUTTERM_FIND:
-        positionBegin = Find(stream, valueLeft[0], valueLeft[1])
-        if positionBegin == -1:
-            return ""
-        positionBegin += valueLeft[2]
-    else:
-        raise Exception("Unknown value typeLeft")
-
-    if typeRight == CUTTERM_NOTHING:
-        positionEnd = len(stream)
-    elif typeRight == CUTTERM_POSITION and valueRight < 0:
-        positionEnd = len(stream) + valueRight
-    elif typeRight == CUTTERM_POSITION:
-        positionEnd = valueRight + 1
-    elif typeRight == CUTTERM_LENGTH:
-        positionEnd = positionBegin + valueRight
-    elif typeRight == CUTTERM_FIND:
-        positionEnd = Find(stream, valueRight[0], valueRight[1])
-        if positionEnd == -1:
-            return ""
-        else:
-            positionEnd += len(valueRight[0])
-        positionEnd += valueRight[2]
-    else:
-        raise Exception("Unknown value typeRight")
-
-    return stream[positionBegin:positionEnd]
-
-
-def HexDecode(hexstream, options):
-    if hexstream == None:
-        return ""
-    result = ""
-    for entry in hexstream:
-        if isinstance(entry, str):
-            if len(entry) % 2 == 1:
-                if options.hexshift:
-                    hexdata = "0" + entry
-                else:
-                    hexdata = entry + "0"
-            elif options.hexshift:
-                hexdata = "0" + entry + "0"
-            else:
-                hexdata = entry
-            result += binascii.a2b_hex(hexdata)
-        else:
-            result += entry[1]
-    return result
-
-
-def HexDecodeIfRequested(info, options):
-    if options.hexdecode:
-        hexstream = info.hexstring
-        if hexstream == None:
-            return info.content
-        return HexDecode(hexstream, options)
-    else:
-        return info.content
-
-
-def HexBinCount(hexstream):
-    hexcount = 0
-    bincount = 0
-    for entry in hexstream:
-        if isinstance(entry, str):
-            hexcount += len(entry)
-        else:
-            bincount += len(entry[1])
-    return hexcount, bincount
-
-
-class cAnalysis:
-    def __init__(
-        self,
-        index,
-        leader,
-        level,
-        beginPosition,
-        endPosition,
-        countChildren,
-        countUnexpectedCharacters,
-        controlWord,
-        content,
-        hexstring,
-        longestContiguousHexstring,
-        oleInfo,
-    ):
-        self.index = index
-        self.leader = leader
-        self.level = level
-        self.beginPosition = beginPosition
-        self.endPosition = endPosition
-        self.countChildren = countChildren
-        self.countUnexpectedCharacters = countUnexpectedCharacters
-        self.controlWord = controlWord
-        self.content = content
-        self.hexstring = hexstring
-        self.longestContiguousHexstring = longestContiguousHexstring
-        self.oleInfo = oleInfo
-
-
-def GenerateMAGIC(data):
-    return binascii.b2a_hex(data) + " " + "".join([IFF(ord(c) >= 32, c, ".") for c in data])
-
-
-def RTFSub(oStringIO, prefix, rules, options):
-    global plugins
-    global decoders
-
-    if options.filter != "":
-        if not options.filter in ["O", "h"]:
-            print("Unknown filter: %s" % options.filter)
-            return
-
-    returnCode = 0
-
-    sys.setrecursionlimit(options.recursionlimit)
-
-    counter = 1
-    rtfdata = oStringIO.read()
-    if not rtfdata.startswith("{"):
-        print("This file does not start with an opening brace: {\nCheck if it is an RTF file.\nMAGIC: %s" % GenerateMAGIC(rtfdata[0:4]))
-        return -1
-    sequence = []
-    BuildTree(rtfdata, 0, 0, sequence, options)
-    remainder = rtfdata[sequence[0].endPosition + 1 :]
-    if len(remainder) > 0:
-        sequence.append(cIteminfo(0, sequence[0].endPosition + 1, len(rtfdata) - 1, 0))
-    dAnalysis = {}
-    for oIteminfo in sequence:
-        controlWord = ""
-        if oIteminfo.level != 0:
-            oMatch = re.match(r"(\\\*)?\\[a-z]+(-?[0-9]+)? ?", rtfdata[oIteminfo.beginPosition + 1 :])
-            if oMatch != None:
-                controlWord = oMatch.group(0)
-            beginContent = oIteminfo.beginPosition + 1 + len(controlWord)
-            endContent = oIteminfo.endPosition - 1
-            if beginContent < endContent:
-                content = rtfdata[beginContent : endContent + 1]
-            else:
-                content = ""
-        else:
-            content = rtfdata[oIteminfo.beginPosition :]
-        hexstring, longestContiguousHexstring, countUnexpectedCharacters = ExtractHex(content)
-        if oIteminfo.level == 0:
-            leader = "Remainder      "
-        else:
-            leader = "%sLevel %2d                      " % (" " * (oIteminfo.level - 1), oIteminfo.level)
-        dAnalysis[counter] = cAnalysis(
-            counter,
-            leader,
-            oIteminfo.level,
-            oIteminfo.beginPosition,
-            oIteminfo.endPosition + IFF(oIteminfo.level == 0, 1, 0),
-            oIteminfo.countChildren,
-            countUnexpectedCharacters,
-            controlWord,
-            content,
-            hexstring,
-            longestContiguousHexstring,
-            ExtractOleInfo(HexDecode(hexstring, options)),
-        )
-        counter += 1
-
-    if options.jsonoutput:
-        object = []
-        for counter in range(1, len(dAnalysis) + 1):
-            data = HexDecodeIfRequested(dAnalysis[counter], options)
-            if options.extract and len(data) > 0:
-                try:
-                    data = ExtractPackage(data)
-                except:
-                    data = ""
-            object.append({"id": counter, "name": str(counter), "content": binascii.b2a_base64(data).strip("\n")})
-        print(json.dumps({"version": 2, "id": "didierstevens.com", "type": "content", "fields": ["id", "name", "content"], "items": object}))
-        return
-
-    if options.select == "":
-        for counter in range(1, len(dAnalysis) + 1):
-            hexcount, bincount = HexBinCount(dAnalysis[counter].hexstring)
-            if options.filter == "" or options.filter == "O" and dAnalysis[counter].oleInfo != [] or options.filter == "h" and hexcount > 0:
-                line = "%5d %s c=%5d p=%08x l=%8d h=%8d;%8d b=%8d %s u=%8d %s" % (
-                    counter,
-                    dAnalysis[counter].leader[0:15],
-                    dAnalysis[counter].countChildren,
-                    dAnalysis[counter].beginPosition,
-                    dAnalysis[counter].endPosition - dAnalysis[counter].beginPosition,
-                    hexcount,
-                    len(dAnalysis[counter].longestContiguousHexstring),
-                    bincount,
-                    IFF(dAnalysis[counter].oleInfo != [], "O", " "),
-                    dAnalysis[counter].countUnexpectedCharacters,
-                    dAnalysis[counter].controlWord.strip(),
-                )
-                if dAnalysis[counter].controlWord.strip() == "\\*\\objclass":
-                    line += " " + dAnalysis[counter].content
-                linePrinted = False
-                if options.yara == None:
-                    print(line)
-                    if dAnalysis[counter].oleInfo != []:
-                        print(
-                            "      Name: %s Size: %d md5: %s magic: %s"
-                            % (
-                                repr(dAnalysis[counter].oleInfo[0]),
-                                dAnalysis[counter].oleInfo[2],
-                                dAnalysis[counter].oleInfo[3],
-                                dAnalysis[counter].oleInfo[4],
-                            )
-                        )
-                    if dAnalysis[counter].level == 0:
-                        message = []
-                        countWhitespace = len([c for c in dAnalysis[counter].content if c in string.whitespace])
-                        countNull = dAnalysis[counter].content.count("\x00")
-                        if countWhitespace == len(dAnalysis[counter].content):
-                            message.append("Only whitespace = %d" % countWhitespace)
-                        elif countNull == len(dAnalysis[counter].content):
-                            message.append("Only NULL bytes = %d" % countNull)
-                        elif countWhitespace + countNull == len(dAnalysis[counter].content):
-                            message.append("Only whitespace = %d and NULL bytes = %d" % (countWhitespace, countNull))
-                        else:
-                            if countWhitespace > 0:
-                                message.append("Whitespace = %d" % countWhitespace)
-                            if countNull > 0:
-                                message.append("NULL bytes = %d" % countNull)
-                            if dAnalysis[counter].content.count("{") > 0:
-                                message.append("Left curly braces = %d" % dAnalysis[counter].content.count("{"))
-                            if dAnalysis[counter].content.count("}") > 0:
-                                message.append("Right curly braces = %d" % dAnalysis[counter].content.count("}"))
-                        print("      " + "  ".join(message))
-                    linePrinted = True
-                elif dAnalysis[counter].content != None:
-                    stream = HexDecodeIfRequested(dAnalysis[counter], options)
-                    oDecoders = [cIdentity(stream, None)]
-                    for cDecoder in decoders:
-                        try:
-                            oDecoder = cDecoder(stream, options.decoderoptions)
-                            oDecoders.append(oDecoder)
-                        except Exception as e:
-                            print("Error instantiating decoder: %s" % cDecoder.name)
-                            if options.verbose:
-                                raise e
-                            return returnCode
-                    for oDecoder in oDecoders:
-                        while oDecoder.Available():
-                            for result in rules.match(data=oDecoder.Decode()):
-                                if not linePrinted:
-                                    print(line)
-                                    linePrinted = True
-                                print(
-                                    "               YARA rule%s: %s"
-                                    % (IFF(oDecoder.Name() == "", "", " (stream decoder: %s)" % oDecoder.Name()), result.rule)
-                                )
-                                if options.yarastrings:
-                                    for stringdata in result.strings:
-                                        print("               %06x %s:" % (stringdata[0], stringdata[1]))
-                                        print("                %s" % binascii.hexlify(C2BIP3(stringdata[2])))
-                                        print("                %s" % repr(stringdata[2]))
-    else:
-        if len(decoders) > 1:
-            print("Error: provide only one decoder when using option select")
-            return returnCode
-        if options.dump:
-            DumpFunction = lambda x: x
-            IfWIN32SetBinary(sys.stdout)
-        elif options.hexdump:
-            DumpFunction = HexDump
-        elif options.info:
-            DumpFunction = Info
-        elif options.asciidumprle:
-            DumpFunction = lambda x: HexAsciiDump(x, True)
-        else:
-            DumpFunction = HexAsciiDump
-        if options.extract:
-            ExtractFunction = ExtractPackage
-        else:
-            ExtractFunction = lambda x: x
-
-        for key in dAnalysis.keys():
-            if options.select != "a" and options.select != str(key):
-                del dAnalysis[key]
-        if len(dAnalysis) == 0:
-            print("Warning: no item was selected with expression %s" % options.select)
-            return
-        for key in sorted(dAnalysis.keys()):
-            StdoutWriteChunked(
-                DumpFunction(
-                    ExtractFunction(DecodeFunction(decoders, options, CutData(HexDecodeIfRequested(dAnalysis[key], options), options.cut)))
-                )
-            )
-
-    return returnCode
-
-
-def YARACompile(ruledata):
-    if ruledata.startswith("#"):
-        if ruledata.startswith("#h#"):
-            rule = binascii.a2b_hex(ruledata[3:])
-        elif ruledata.startswith("#b#"):
-            rule = binascii.a2b_base64(ruledata[3:])
-        elif ruledata.startswith("#s#"):
-            rule = 'rule string {strings: $a = "%s" ascii wide nocase condition: $a}' % ruledata[3:]
-        elif ruledata.startswith("#q#"):
-            rule = ruledata[3:].replace("'", '"')
-        elif ruledata.startswith("#x#"):
-            rule = "rule hexadecimal {strings: $a = { %s } condition: $a}" % ruledata[3:]
-        elif ruledata.startswith("#r#"):
-            rule = "rule regex {strings: $a = /%s/ ascii wide nocase condition: $a}" % ruledata[3:]
-        else:
-            rule = ruledata[1:]
-        return yara.compile(source=rule, externals={"streamname": "", "VBA": False})
-    else:
-        dFilepaths = {}
-        if os.path.isdir(ruledata):
-            for root, dirs, files in os.walk(ruledata):
-                for file in files:
-                    filename = os.path.join(root, file)
-                    dFilepaths[filename] = filename
-        else:
-            for filename in ProcessAt(ruledata):
-                dFilepaths[filename] = filename
-        return yara.compile(filepaths=dFilepaths, externals={"streamname": "", "VBA": False})
-
-
-def RTFDump(filename, options):
-    global plugins
-    plugins = []
-    LoadPlugins(options.plugins, True)
-
-    global decoders
-    decoders = []
-    LoadDecoders(options.decoders, True)
-
-    returnCode = 0
-
-    rules = None
-    if options.yara != None:
-        if not "yara" in sys.modules:
-            print("Error: option yara requires the YARA Python module.")
-            return returnCode
-        rules = YARACompile(options.yara)
-
-    if filename == "":
-        IfWIN32SetBinary(sys.stdin)
-        oStringIO = StringIO(sys.stdin.read())
-    elif filename.lower().endswith(".zip"):
-        oZipfile = zipfile.ZipFile(filename, "r")
-        oZipContent = oZipfile.open(oZipfile.infolist()[0], "r", C2BIP3(MALWARE_PASSWORD))
-        oStringIO = StringIO(oZipContent.read())
-        oZipContent.close()
-        oZipfile.close()
-    else:
-        oStringIO = StringIO(open(filename, "rb").read())
-
-    returnCode = RTFSub(oStringIO, "", rules, options)
-
-    return returnCode
-
-
-def Main():
-    oParser = optparse.OptionParser(usage="usage: %prog [options] [file]\n" + __description__, version="%prog " + __version__)
-    oParser.add_option("-m", "--man", action="store_true", default=False, help="Print manual")
-    oParser.add_option("-s", "--select", default="", help="select item nr for dumping (a for all)")
-    oParser.add_option("-d", "--dump", action="store_true", default=False, help="perform dump")
-    oParser.add_option("-x", "--hexdump", action="store_true", default=False, help="perform hex dump")
-    oParser.add_option("-a", "--asciidump", action="store_true", default=False, help="perform ascii dump")
-    oParser.add_option("-A", "--asciidumprle", action="store_true", default=False, help="perform ascii dump with RLE")
-    oParser.add_option(
-        "-H",
-        "--hexdecode",
-        action="store_true",
-        default=False,
-        help="decode hexadecimal data; append 0 in case of uneven number of hexadecimal digits",
-    )
-    oParser.add_option("-S", "--hexshift", action="store_true", default=False, help="shift one nibble")
-    oParser.add_option("-p", "--plugins", type=str, default="", help="plugins to load (separate plugins with a comma , ; @file supported)")
-    oParser.add_option("--pluginoptions", type=str, default="", help="options for the plugin")
-    oParser.add_option("-q", "--quiet", action="store_true", default=False, help="only print output from plugins")
-    oParser.add_option("-y", "--yara", help="YARA rule-file, @file or directory to check streams (YARA search doesn't work with -s option)")
-    oParser.add_option("-D", "--decoders", type=str, default="", help="decoders to load (separate decoders with a comma , ; @file supported)")
-    oParser.add_option("--decoderoptions", type=str, default="", help="options for the decoder")
-    oParser.add_option("--yarastrings", action="store_true", default=False, help="Print YARA strings")
-    oParser.add_option("-V", "--verbose", action="store_true", default=False, help="verbose output with decoder errors")
-    oParser.add_option("-c", "--cut", type=str, default="", help="cut data")
-    oParser.add_option("-i", "--info", action="store_true", default=False, help="print extra info for selected item")
-    oParser.add_option("-E", "--extract", action="store_true", default=False, help="extract package")
-    oParser.add_option("-f", "--filter", type=str, default="", help="filter")
-    oParser.add_option("--recursionlimit", type=int, default=2000, help="set recursionlimit for Python (default 2000)")
-    oParser.add_option("-j", "--jsonoutput", action="store_true", default=False, help="produce json output")
-    (options, args) = oParser.parse_args()
-
-    if options.man:
-        oParser.print_help()
-        PrintManual()
-        return 0
-
-    if ParseCutArgument(options.cut)[0] == None:
-        print("Error: the expression of the cut option (-c) is invalid: %s" % options.cut)
-        return 0
-
-    if len(args) > 1:
-        oParser.print_help()
-        print("")
-        print("  Source code put in the public domain by Didier Stevens, no Copyright")
-        print("  Use at your own risk")
-        print("  https://DidierStevens.com")
-        return 0
-    elif len(args) == 0:
-        return RTFDump("", options)
-    else:
-        return RTFDump(args[0], options)
-
-
-if __name__ == "__main__":
-    sys.exit(Main())
diff --git a/lib/cuckoo/common/office/vba2graph.py b/lib/cuckoo/common/office/vba2graph.py
deleted file mode 100644
index bc248635be2..00000000000
--- a/lib/cuckoo/common/office/vba2graph.py
+++ /dev/null
@@ -1,1096 +0,0 @@
-#!/usr/bin/env python
-# -*- coding: utf-8 -*-
-"""Main vba2graph file
-Version: 0.2
-
-This script creates fancy VBA call graphs from olevba output.
-
-Run Examples:
-    $ python vba2graph.py -i [your_olevba_output] -o [output_dir]
-    $ python vba2graph.py -f [office_file_with_macro] -o [output_dir]
-    $ olevba [malicous_doc_with_macro] | python vba2graph.py
-
-Dependencies:
-    - networkx>=2.1
-    - regex
-    - graphviz>=0.8.4
-    - pydot>=1.2.4
-    - latest olevba
-
-Notes:
-    - Main function is at the buttom :)
-"""
-
-# ****************************************************************************
-# *                              General Imports                             *
-# ****************************************************************************
-
-import os
-import sys
-import errno
-import argparse
-import regex as re
-from io import StringIO
-from subprocess import Popen
-
-# ****************************************************************************
-# *                           Dependencies Imports                           *
-# ****************************************************************************
-
-import networkx as nx
-from networkx.drawing.nx_pydot import write_dot
-try:
-    from oletools.olevba import VBA_Parser
-    # Temporary workaround. Change when oletools 0.56 will be released.
-    VBA_Parser.detect_vba_stomping = lambda self: False
-    HAVE_OLETOOLS = True
-except ImportError:
-    HAVE_OLETOOLS = False
-# ****************************************************************************
-# *                            Initialize Logging                            *
-# ****************************************************************************
-
-import logging
-logger = logging.getLogger("-vba2graph-")
-
-# ****************************************************************************
-# *                                Global Vars                               *
-# ****************************************************************************
-
-# possible color names:
-#   graphviz.org/doc/info/colors.html
-#   wingraphviz.sourceforge.net/wingraphviz/language/fontcolor.htm
-
-LINE_SEP = "\n"
-
-color_schemes = [
-    {   # regular theme - boring black on white
-        "COLOR_BACKGROUND": "#FFFFFF",
-        "COLOR_DEFAULT_BOX": "black",
-        "COLOR_DEFAULT_TEXT": "black",
-        "COLOR_DEFAULT_EDGES": "black",
-        "COLOR_DEFAULT_EDGES_FONT": "black",
-
-        "COLOR_REGULAR_KEYWORD": "black",
-        "COLOR_OBFUSCATION_KEYWORD": "#666699",
-
-        "COLOR_CRITICAL_NUM_OF_CALLS": "red",
-        "COUNT_CRITICAL_NUM_OF_CALLS": 10,
-
-        "COLOR_PROPERTY": "purple",
-        "COLOR_TRIGGERED_CALL_EDGE": "purple",
-        "COLOR_AUTORUN_FUNCTIONS": "red",
-        "COLOR_EXTERNAL_FUNCTION": "brown"
-    },
-    {   # darker theme - cyan colors
-        "COLOR_BACKGROUND": "#40334E",
-        "COLOR_DEFAULT_BOX": "#6A416D",
-        "COLOR_DEFAULT_TEXT": "#E9BA69",
-        "COLOR_DEFAULT_EDGES": "white",
-        "COLOR_DEFAULT_EDGES_FONT": "white",
-
-        "COLOR_REGULAR_KEYWORD": "#9E62E7",
-        "COLOR_OBFUSCATION_KEYWORD": "#666699",
-
-        "COLOR_CRITICAL_NUM_OF_CALLS": "red",
-        "COUNT_CRITICAL_NUM_OF_CALLS": 10,
-
-        "COLOR_PROPERTY": "#ABDACC",
-        "COLOR_TRIGGERED_CALL_EDGE": "#F6C565",
-        "COLOR_AUTORUN_FUNCTIONS": "red",
-        "COLOR_EXTERNAL_FUNCTION": "#ABDACC"
-    },
-    {   # 80s theme
-        "COLOR_BACKGROUND": "#6075AF",
-        "COLOR_DEFAULT_BOX": "#F3879B",
-        "COLOR_DEFAULT_TEXT": "#88D3F4",
-        "COLOR_DEFAULT_EDGES": "white",
-        "COLOR_DEFAULT_EDGES_FONT": "white",
-
-        "COLOR_REGULAR_KEYWORD": "#FFE5D3",
-        "COLOR_OBFUSCATION_KEYWORD": "#8999c2",
-
-        "COLOR_CRITICAL_NUM_OF_CALLS": "#F6C565",
-        "COUNT_CRITICAL_NUM_OF_CALLS": 10,
-
-        "COLOR_PROPERTY": "#ABDACC",
-        "COLOR_TRIGGERED_CALL_EDGE": "#F6C565",
-        "COLOR_AUTORUN_FUNCTIONS": "#F6C565",
-        "COLOR_EXTERNAL_FUNCTION": "#ABDACC"
-    },
-    {   # terminal theme
-        "COLOR_BACKGROUND": "black",
-        "COLOR_DEFAULT_BOX": "#31FF00",
-        "COLOR_DEFAULT_TEXT": "#31FF00",
-        "COLOR_DEFAULT_EDGES": "#31FF00",
-        "COLOR_DEFAULT_EDGES_FONT": "#31FF00",
-
-        "COLOR_REGULAR_KEYWORD": "#31FF00",
-        "COLOR_OBFUSCATION_KEYWORD": "#356235",
-
-        "COLOR_CRITICAL_NUM_OF_CALLS": "#c2ffb3",
-        "COUNT_CRITICAL_NUM_OF_CALLS": 10,
-
-        "COLOR_PROPERTY": "#c2ffb3",
-        "COLOR_TRIGGERED_CALL_EDGE": "#c2ffb3",
-        "COLOR_AUTORUN_FUNCTIONS": "#c2ffb3",
-        "COLOR_EXTERNAL_FUNCTION": "#c2ffb3"
-    }
-]
-
-# set default color scheme
-color_scheme = color_schemes[0]
-
-# ****************************************************************************
-# *                           Keywords Dictionaries                          *
-# ****************************************************************************
-# Keywords partial source: https://github.com/decalage2/oletools/blob/master/oletools/olevba.py
-
-# Recognize keywords of automatic execution
-lst_autorun = [
-    'AutoExec', 'AutoOpen', 'DocumentOpen', 'AutoExit', 'AutoClose',
-    'Document_Close', 'DocumentBeforeClose', 'DocumentChange', 'AutoNew',
-    'Document_New', 'NewDocument', 'Document_Open', 'Document_BeforeClose',
-    'Auto_Open', 'Workbook_Open', 'Workbook_Activate', 'Workbook_Deactivate', 'Auto_Close',
-    'Workbook_Close', u'\w+_Painted', u'\w+_Change', u'\w+_DocumentBeforePrint',
-    u'\w+_DocumentOpen', u'\w+_DocumentBeforeClose', u'\w+_DocumentBeforeSave',
-    u'\w+_GotFocus', u'\w+_LostFocus', u'\w+_MouseHover', u'\w+_Resize',
-    'App_WorkbookOpen', 'App_NewWorkbook', 'App_WorkbookBeforeClose', 'Workbook_BeforeClose',
-    'FileSave', 'CloseWithoutSaving', 'FileOpen', 'FileClose', 'FileExit',
-    'Workbook_SheetSelectionChange', 'Workbook_BeforeSave', 'FileTemplates',
-    'ViewVBCode', 'ToolsMacro', 'FormatStyle', 'OpenMyMacro', 'HelpAbout',
-    u'\w+_Layout', u'\w+_Painting',
-    u'\w+_BeforeNavigate2', u'\w+_BeforeScriptExecute', u'\w+_DocumentComplete', u'\w+_DownloadBegin',
-    u'\w+_DownloadComplete', u'\w+_FileDownload', u'\w+_NavigateComplete2', u'\w+_NavigateError',
-    u'\w+_ProgressChange', u'\w+_PropertyChange', u'\w+_PropertyChange', u'\w+_StatusTextChange',
-    u'\w+_TitleChange', u'\w+_MouseMove', u'\w+_MouseEnter', u'\w+_MouseLeave', u'\w+_Activate'
-]
-
-# Recognize keywords of possible malicious intent
-lst_mal_case_sensetive = [
-    "Open", 'Write', 'Put', 'Output', 'Print #', 'Binary', 'FileCopy',
-    'CopyFile', 'Kill', 'CreateTextFile', 'ADODB.Stream', 'WriteText',
-    'SaveToFile', 'vbNormal', 'vbNormalFocus', 'vbHide',
-    'vbMinimizedFocus', 'vbMaximizedFocus', 'vbNormalNoFocus',
-    'vbMinimizedNoFocus', u'\w+\.Run', 'MacScript',
-    'popen', r'exec[lv][ep]?', 'noexit',
-    'ExecutionPolicy', 'noprofile', 'command', 'EncodedCommand',
-    'invoke-command', 'scriptblock', 'Invoke-Expression',
-    'AuthorizationManager', 'Start-Process', 'Application\.Visible',
-    'ShowWindow', 'SW_HIDE', 'MkDir', 'ActiveWorkbook.SaveAs',
-    'Application.AltStartupPath', 'CreateObject', 'New-Object',
-    'Windows', 'FindWindow', 'libc\.dylib', 'dylib',
-    'CreateThread', 'VirtualAlloc', 'VirtualAllocEx', 'RtlMoveMemory',
-    'EnumSystemLanguageGroupsW?', u'EnumDateFormats(?:W|(?:Ex){1,2})?',
-    'URLDownloadToFileA',  'User-Agent',
-    'Net\.WebClient', 'DownloadFile', 'DownloadString',
-    'SendKeys', 'AppActivate', 'CallByName',
-    'RegOpenKeyExAs', 'RegOpenKeyEx', 'RegCloseKey',
-    'RegQueryValueExA', 'RegQueryValueEx', 'RegRead',
-    'GetVolumeInformationA', 'GetVolumeInformation', '1824245000',
-    r'HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\ProductId',
-    'popupkiller', 'SbieDll\.dll', 'SandboxieControlWndClass',
-    'currentuser', 'Schmidti', 'AccessVBOM', 'VBAWarnings',
-    'ProtectedView', 'DisableAttachementsInPV', 'DisableInternetFilesInPV',
-    'DisableUnsafeLocationsInPV', 'blockcontentexecutionfrominternet',
-    'VBProject', 'VBComponents', 'CodeModule', 'AddFromString', 'Call', 'GetObject',
-    'ExecQuery', 'GetStringValue', 'GetDWORDValue', u'ActiveDocument\.\w+', 'DOMDocument',
-    'IXMLDOMElement', 'ComputerName', 'Domain', 'RegRead', 'RegWrite', '#If Mac',
-    'appdata', u'WordBasic\.\w+', 'WriteLine',
-    'Cells', u'Application\.\w+', 'Sleep', 'Process', u'NormalTemplate\.\w+',
-    u'\w+\.Application', 'CommandBars', u'System\.\w+', "setRequestHeader", "Send", "setOption",
-    "RecentFiles", "Mozilla", "UserName", "DeleteFile", "Delete", "\.Execute", "\.Content",
-    "MsgBox", "\.Quit",  'Run', 'Now', 'Comments', 'PROCESSOR_ARCHITECTURE',
-    'CopyFolder', 'winmgmts', 'bin\.base64', '\.CreateKey', '\.Create',
-    '\.SpawnInstance_', 'Selection\.WholeStory', '\.CreateShortcut', '\.CreateFolder',
-    '\.DynamicInvoke', '\.CreateInstance', '\.MSFConnect', '\.RegisterTaskDefinition',
-    'Shell\.Application|ShellExecute|WScript\.Shell|Shell', '\.Load', '\.transformNode',
-    'ExecuteExcel4Macro', '.\Show'
-]
-
-# Recognize attempts to hide values in form controls and properties
-lst_mal_case_sensetive += ["\.caption", "\.text", "\.value", "\.ControlTipText", "\.tag",
-    "\.CustomDocumentProperties", "\.AlternativeText"
-]
-
-lst_obfuscation_keywords = ['Asc', 'Mid', 'Left', 'Right', 'Tan', 'StrReverse', 'Xor',
-    'ChrB', 'ChrW', 'Chr', 'CStr', 'StrConv', 'Replace', 'Int', 'Hex', 'Sqr', 'CByte',
-    'Log', 'Rnd'
-]
-
-lst_mal_case_sensetive += lst_obfuscation_keywords
-
-lst_mal_case_insensetive = [
-    r'SYSTEM\\ControlSet001\\Services\\Disk\\Enum', 'VIRTUAL', 'VMWARE', 'VBOX',
-    u'"[\w-_\\/]+\.(?:EXE|PIF|GADGET|MSI|MSP|MSC|VBS|VBE|VB|JSE|JS|WSF|WSC|WSH|WS|BAT|CMD|DLL|SCR|HTA|CPL|CLASS|JAR|PS1XML|PS1|PS2XML|PS2|PSC1|PSC2|SCF|LNK|INF|REG)"',
-    'FileSystemObject', 'GetSpecialFolder', 'PowerShell', u'SELECT \* FROM \w+', 'deletefolder',
-    'regsvr\.32', 'scrobj\.dll', 'cmd\.exe',
-    'Environ\(\"ALLUSERSPROFILE\"\)|Environ\(\"TEMP\"\)|Environ\(\"TMP\"\)|Environ',
-    'Msxml2\.XMLHTTP|Microsoft\.XMLHTTP|MSXML2\.ServerXMLHTTP|microsoft\.xmlhttp|http'
-]
-
-# ****************************************************************************
-# *                             Helper Functions                             *
-# ****************************************************************************
-
-def list_files_in_dir(dir_path):
-    """Creates a list of files paths
-    from the files residing inside the dir_path
-
-    Args:
-        dir_path (string): Directory to list
-
-    Returns:
-        string array: list of file paths from the requested dir
-    """
-    file_list = []
-    for dirpath, dirs, files in os.walk(dir_path):
-        for filename in files:
-            # ignore hidden files
-            if filename.startswith("."):
-                continue
-            full_file_path = os.path.join(dirpath, filename)
-            file_list.append(full_file_path)
-    return file_list
-
-
-# ****************************************************************************
-# *                              Debug Functions                             *
-# ****************************************************************************
-
-
-def create_functions_listing(function_dict, code_output_path):
-    """Creates a .bas file with a listing of all the recognized VBA functions
-
-    Args:
-        function_dict (func_dict[func_name]=func_code): Functions dictionary
-        code_output_path (string): Listing output path
-    """
-    f_output = open(code_output_path, "w")
-
-    for func_name in function_dict:
-        # limit func_name size to display
-        func_name_limited = func_name[:70]
-        prefix_padding = int((77 - len(func_name_limited)) / 2) * " "
-        suffix_padding = int(77 - len(prefix_padding) - len(func_name_limited)) * " "
-
-        f_output.write("'" + "*" * 79)
-        f_output.write("\n")
-        f_output.write("'*" + prefix_padding + func_name_limited + suffix_padding + "*")
-        f_output.write("\n")
-        f_output.write("'" + "*" * 79)
-        f_output.write("\n")
-        f_output.write(function_dict[func_name])
-        f_output.write("\n")
-
-    f_output.close()
-
-# ****************************************************************************
-# *                             Input Functions                              *
-# ****************************************************************************
-
-def handle_input(input_path="", is_piped=False, input_content=""):
-    """Reads the input and returns the content
-
-    Args:
-        input_path (string): path to input file, if applicable
-        is_piped (bool): did the input come through pipe
-        pipe_input_content (string): the piped input, if applicable
-
-    Returns:
-        string: VBA contents of the input
-    """
-    global logger
-    # handle pipe read
-    if is_piped:
-        logger = logging.getLogger("-pipe-")
-        logger.info("Reading content")
-        if input_content.startswith("olevba"):
-            return handle_olevba_input(input_content)
-        else:
-            logger.info("Reading as VBA code")
-            return input_content
-
-    # handle file read
-    else:
-        logger = logging.getLogger("-" + input_path + "-")
-        return handle_file_input(input_path)
-
-
-def handle_file_input(input_path):
-    """Reads the input file and returns the content
-
-    Args:
-        input_path (string): path to input string
-
-    Returns:
-        string: contents of the input_path
-    """
-    logger.info("Reading file")
-    with open(input_path, "r") as f_input:
-        file_content = f_input.read()
-        if file_content.startswith("olevba"):
-            return handle_olevba_input(file_content)
-        else:
-            logger.info("Reading as VBA code")
-            return file_content
-
-
-def handle_olevba_input(file_content):
-    """Parses olevba output and returns the VBA code
-
-    Args:
-        file_content (string): the content of olevba output
-
-    Returns:
-        string: only VBA code
-    """
-    input_vba_content = ""
-    inside_data = False
-    inside_code = False
-    logger.info("Parsing olevba content")
-
-    content_lines = file_content.split(LINE_SEP)
-
-    for vba_line in content_lines:
-        # ignore olevba ascii art
-        if vba_line.startswith("+") or vba_line.startswith("|"):
-            continue
-        if vba_line.startswith("-----"):
-            inside_data = False
-            inside_code = False
-        elif vba_line.startswith("- - - -"):
-            inside_data = True
-        elif inside_data and inside_code and not vba_line.startswith("(empty macro)"):
-            input_vba_content += vba_line + LINE_SEP
-        elif vba_line.startswith("VBA MACRO"):
-            inside_code = True
-
-    return input_vba_content
-
-
-# ****************************************************************************
-# *                           Processing Functions                           *
-# ****************************************************************************
-
-def vba_seperate_lines(input_vba_content):
-    """Takes the full VBA input and breaks it into lines
-
-    Args:
-        input_vba_content (string): full VBA content
-
-    Returns:
-        string[]: array of VBA code lines
-    """
-    # make sure we normalize different line seperators
-    input_vba_content = input_vba_content.replace("\r\n", LINE_SEP)
-
-    # concat VBA lines that were split by " _"
-    input_vba_content = input_vba_content.replace(" _" + LINE_SEP, " ")
-
-    # split lines by LINE_SEP
-    return input_vba_content.split(LINE_SEP)
-
-
-def vba_clean_whitespace(vba_content_lines):
-    """Removes unnecessary whitespace from the VBA code
-
-    Args:
-        vba_content_lines (string[]): Array of VBA code lines
-
-    Returns:
-        string[]: Array of VBA code lines, without unnecessary whitespace
-    """
-    result_vba_lines = []
-
-    # process lines one by one
-    for vba_line in vba_content_lines:
-
-        # remove leading and trailing whitespace
-        # & reduce multiple whitespaces into one space
-        vba_line = " ".join(vba_line.split())
-
-        # check and discard empty lines
-        if vba_line == "":
-            continue
-
-        result_vba_lines.append(vba_line)
-
-    return result_vba_lines
-
-
-def vba_clean_metadata(vba_content_lines):
-    """Removes unnecessary comments and metadata from the VBA code
-
-    Args:
-        vba_content_lines (string[]): VBA code lines without unnecessary whitespace
-
-    Returns:
-        string[]: VBA code lines without comments and metadata
-    """
-    result_vba_lines = []
-    # process lines one by one
-    for vba_line in vba_content_lines:
-        # check and discard empty lines
-        if (vba_line.startswith("Attribute") or vba_line.startswith("'")):
-            continue
-
-        # crop inline comments
-        possible_inline_comment_pos = vba_line.find(" '")
-        if possible_inline_comment_pos > -1:
-            # look for '"' after the ', in order to find FP inline comment detections
-            if vba_line.find('"', possible_inline_comment_pos) < 0:
-                inline_comment_pos = possible_inline_comment_pos
-                vba_line = vba_line[:inline_comment_pos]
-
-        result_vba_lines.append(vba_line)
-
-    return result_vba_lines
-
-
-def vba_deobfuscation(vba_content_lines):
-    """Solves simple obfuscation techniques
-
-    Args:
-        vba_content_lines (string[]): VBA code lines without comments, metadata or spaces
-
-    Returns:
-        string[]: clean VBA code lines with less obfuscation
-    """
-    result_vba_lines = []
-
-    # process lines one by one
-    for vba_line in vba_content_lines:
-        # Technique #1
-        # solve simple string concatenation
-        # "Wsc" & "ript" would become "Wscript"
-        # Reference maldoc: d050a5b4d8a990951c8a9310ed700dd6
-        vba_line = vba_line.replace('" & "', "")
-        result_vba_lines.append(vba_line)
-
-    return result_vba_lines
-
-
-def vba_extract_functions(vba_content_lines):
-    """Seperates the input VBA code into functions
-
-    Args:
-        vba_content_lines (string[]): VBA code lines without comments, metadata or spaces
-
-    Returns:
-        dict[func_name]=func_code: Dictionary of VBA functions found
-    """
-    vba_func_dict = {}
-    inside_function = False
-    func_name = ""
-
-    # process lines one by one
-    for vba_line in vba_content_lines:
-        # ****************************************************************************
-        # *                   Handle External Function Declaration                   *
-        # ****************************************************************************
-
-        #   Create dummy empty function with func_name:
-        #       mcvWGqJifEVHwB (URLDownloadToFileA)
-        # Examples:
-        #   Private Declare Function NyKQpQhtmrFfWX Lib "kernel32" Alias "lstrcmpA" (ByVal pCaller As Long,..
-        #   - would become: NyKQpQhtmrFfWX (lstrcmpA) (External)
-        #   Private Declare PtrSafe Function mcvWGqJifEVHwB Lib "urlmon" Alias "URLDownloadToFileA" (ByVal pfsseerwseer As Long,...
-        #   - would become: mcvWGqJifEVHwB (URLDownloadToFileA) (External)
-
-        if " Lib " in vba_line and ' Alias ' in vba_line and not inside_function:
-            if " Function " in vba_line:
-                func_type = " Function "
-            else:
-                func_type = " Sub "
-
-            declared_func_name = vba_line[vba_line.find(func_type) + len(
-                func_type):vba_line.find(" Lib ")]
-            external_func_name = vba_line[
-                vba_line.find(" Alias \"") + len(" Alias \""):vba_line.find(
-                    "\" (",
-                    vba_line.find(" Alias \"") + len(" Alias \""))]
-            func_name = declared_func_name + " (" + external_func_name + ")" + " (External)"
-
-            if "libc.dylib" in vba_line:
-                func_name += "(Mac)"
-
-            vba_func_dict[func_name] = ""
-            continue
-
-        #   Create dummy empty function with func_name that do not have Alias:
-        # Examples:
-        #   Public Declare PtrSafe Sub Sleep Lib "kernel32" (ByVal dwMilliseconds As LongPtr)
-        #   - would become: Sleep
-        #   Public Declare Sub Sleep Lib "kernel32" (ByVal dwMilliseconds As Long)
-        #   - would become: Sleep
-
-        if " Lib " in vba_line and not inside_function:
-            if " Function " in vba_line:
-                func_type = " Function "
-            else:
-                func_type = " Sub "
-            func_name = vba_line[vba_line.find(func_type) + len(
-                func_type):vba_line.find(" Lib ")] + " (External)"
-
-            if "libc.dylib" in vba_line:
-                func_name += "(Mac)"
-
-            vba_func_dict[func_name] = ""
-            continue
-
-        # ****************************************************************************
-        # *                    Handle Regular Function Declaration                   *
-        # ****************************************************************************
-
-        # look for function start keywords
-        func_start_pos = max(vba_line.find("Sub "), vba_line.find("Function "))
-
-        # Some macros have the word "Function" as string inside a code line.
-        # This should remove FP funtions, by checking the line start
-        legit_declare_line_start = False
-        if vba_line.startswith("Sub") or vba_line.startswith("Function") or vba_line.startswith("Private") or vba_line.startswith("Public"):
-            legit_declare_line_start = True
-
-        is_func_end = vba_line.startswith("End Sub") or vba_line.startswith("End Function")
-
-        # check if we've reached the end of a function
-        if is_func_end:
-            inside_function = False
-            continue
-
-        # check if we've hit a new function
-        elif legit_declare_line_start and func_start_pos > -1:
-            inside_function = True
-
-            # extract function name from declaration
-            if "Function " in vba_line:
-                func_name = vba_line[(
-                    func_start_pos + len("Function ")):vba_line.find("(")]
-            elif "Sub " in vba_line:
-                func_name = vba_line[(
-                    func_start_pos + len("Sub ")):vba_line.find("(")]
-            else:
-                logger.error("Error parsing function name")
-                sys.exit(1)
-
-        # check if we are inside a function code
-        elif inside_function:
-            if func_name in vba_func_dict:
-                # append code to to an existing function
-                vba_func_dict[func_name] += LINE_SEP + vba_line
-            else:
-                # create a new function name inside the dict
-                # & add the first line of code
-                vba_func_dict[func_name] = vba_line
-
-        # we are in a global section code line
-        else:
-            pass
-
-    return vba_func_dict
-
-
-def vba_extract_properties(vba_content_lines):
-    """Find and extract the use of VBA Properties, in order to obfuscate macros
-
-    Args:
-        vba_content_lines (string[]): VBA code lines without comments, metadata or spaces
-
-    Returns:
-        dict[property_name]=property_code: Dictionary of VBA Properties found
-    """
-
-    vba_prop_dict = {}
-    inside_property = False
-    prop_name = ""
-
-    # process lines one by one
-    for vba_line in vba_content_lines:
-
-        # look for property start keywords
-        prop_start_pos = max(vba_line.find("Property Let "), vba_line.find("Property Get "))
-
-        # look for property end keywords
-        is_prop_end = vba_line.startswith("End Property")
-
-        # check if we've reached the end of a property
-        if is_prop_end:
-            inside_property = False
-            continue
-
-        # check if we've hit a new property
-        elif prop_start_pos > -1:
-            inside_property = True
-
-            # extract property name from declaration
-            if "Property Let " in vba_line or "Property Get " in vba_line:
-                prop_name = vba_line[(
-                    prop_start_pos + len("Property Let ")):vba_line.find("(")] + " (Property)"
-
-            else:
-                logger.error("Error parsing property name")
-                sys.exit(1)
-
-        # check if we are inside a property code
-        elif inside_property:
-            if prop_name in vba_prop_dict:
-                # append code to to an existing property
-                vba_prop_dict[prop_name] += LINE_SEP + vba_line
-            else:
-                # create a new property name inside the dict
-                # & add the first line of code
-                vba_prop_dict[prop_name] = vba_line
-
-        # we are in a global section code line
-        else:
-            pass
-
-    return vba_prop_dict
-
-
-# ****************************************************************************
-# *                        Graph Generation Functions                        *
-# ****************************************************************************
-
-def create_call_graph(vba_func_dict):
-    """Creates directed graph object (DG) from VBA functions dicitonary
-
-    Args:
-        vba_func_dict (dict[func_name]=func_code): Functions dictionary
-
-    Returns:
-        networkx.DiGraph: Directed Graph (DG) representing VBA call graph
-    """
-    DG = nx.DiGraph()
-    for func_name in vba_func_dict:
-        DG.add_node(func_name, keywords="")
-    # analyze function calls
-    for func_name in vba_func_dict:
-
-        func_code = vba_func_dict[func_name]
-        # split function code into tokens
-        func_code_tokens = list(filter(None, re.split('[\"(, \-!?:\r\n)&=.><]+',
-                                                 func_code)))
-        # inside each function's code, we are looking for a function name
-        for func_name1 in vba_func_dict:
-            orig_func_name = func_name1
-            # in case of a external function declaration,
-            # we should use only the Alias from the function name:
-            #   mcvWGqJifEVHwB (URLDownloadToFileA)
-            #   - would become: mcvWGqJifEVHwB
-            space_pos = func_name1.find(" ")
-            if space_pos > -1:
-                func_name1 = func_name1[:space_pos]
-
-            for i in range(0, func_code_tokens.count(func_name1)):
-                # ignore self-edges
-                if func_name != func_name1:
-                    # found a function call
-                    if orig_func_name not in DG[func_name]:
-                        DG.add_edge(func_name, orig_func_name, count=1)
-                    else:
-                        new_count = DG[func_name][orig_func_name]["count"] + 1
-                        DG[func_name][orig_func_name]["count"] = new_count
-                        DG[func_name][orig_func_name]["label"] = "x" + str(new_count)
-                        if new_count >= color_scheme["COUNT_CRITICAL_NUM_OF_CALLS"]:
-                            DG[func_name][orig_func_name]["fontcolor"] = color_scheme["COLOR_CRITICAL_NUM_OF_CALLS"]
-    return DG
-
-
-def find_keywords_in_graph(vba_func_dict, DG):
-    """Find and highlight possible malicious keywords in graph
-
-    Args:
-        vba_func_dict (dict[func_name]=func_code): Functions dictionary
-        DG (networkx.DiGraph): Generated directed graph
-
-    Returns:
-        networkx.DiGraph: Directed Graph with keywords highlighted in red
-    """
-    # analyze function calls
-    for func_name in vba_func_dict:
-
-        func_code = vba_func_dict[func_name]
-        # split function code into lines
-        func_code_lines = filter(None, re.split("\n", func_code))
-
-        # handle malicious keywords
-        keywords_re_sensetive = "(" + ")|(".join(lst_mal_case_sensetive) + ")"
-        keywords_re_insensetive = "(" + ")|(".join(lst_mal_case_insensetive) + ")"
-
-        # iterate over all the words in func_code and match mal_regexes
-        dict_items = {}
-        for token in func_code_lines:
-            match_findall_sensetive = re.findall(keywords_re_sensetive, token)
-            match_findall_insensetive = re.findall(keywords_re_insensetive, token, re.IGNORECASE)
-            match_findall = match_findall_sensetive + match_findall_insensetive
-            if match_findall:
-                for match in match_findall:
-                    match_list = list(match)
-
-                    # use dictionary dict_items to count occurances of keywords
-                    for list_item in match_list:
-                        if list_item != "":
-                            if list_item not in dict_items:
-                                dict_items[list_item] = 1
-                            else:
-                                dict_items[list_item] = dict_items[list_item] + 1
-
-        # add keywords to graph
-        for dic_key in dict_items:
-            if dic_key in lst_obfuscation_keywords:
-                keyword_color = color_scheme["COLOR_OBFUSCATION_KEYWORD"]
-            else:
-                keyword_color = color_scheme["COLOR_REGULAR_KEYWORD"]
-
-            keyword_count = dict_items[dic_key]
-            if DG.nodes[func_name]["keywords"] != "":
-                DG.nodes[func_name]["keywords"] = DG.nodes[func_name]["keywords"] + ","
-
-            DG.nodes[func_name]["keywords"] = DG.nodes[func_name]["keywords"] + "<font color='" + keyword_color + "'>" + dic_key + "[" + str(keyword_count) + "]" + "</font>"
-
-        # handle autorun keywords
-        keywords_re = "(" + ")|(".join(lst_autorun) + ")"
-        if re.match(keywords_re, func_name, re.IGNORECASE):
-            DG.nodes[func_name]["color"] = color_scheme["COLOR_AUTORUN_FUNCTIONS"]
-    return DG
-
-
-def find_change_flow(vba_func_dict, DG):
-    """Finds alternative macros call flow that is utilized by malicious macros:
-    A _Change event is created for an object, and then the object text is changed using code.
-    This creates a dummy call flow without explicitly calling a function.
-
-    Args:
-        vba_func_dict (dict[func_name]=func_code): Functions dictionary
-        DG (networkx.DiGraph): Generated directed graph
-
-    Returns:
-        networkx.DiGraph: Directed Graph with highlighted Change triggers
-    """
-    # Find all the all the objects that have a _Change event
-    # like TextBox1_Change
-    changed_objects = []
-    for func_name in vba_func_dict:
-        if "_Change" in func_name:
-            changed_object = func_name.replace("_Change", "")
-            changed_objects.append(changed_object)
-
-    # Find  pieces of code that assign to an object, which would
-    # cause a _Change event Trigger
-    for func_name in vba_func_dict:
-        func_code = vba_func_dict[func_name]
-        # split function code into lines
-        func_code_lines = filter(None, re.split("\n", func_code))
-        for func_line in func_code_lines:
-            for changed_object in changed_objects:
-                # look for .[changed_object] pattern, followd by "="
-                found_loc = func_line.find("." + changed_object)
-                if found_loc > -1:
-                    if func_line.find("=", found_loc) > -1:
-                        # we found object with Change event that was assigned a value
-
-                        # show this connection as a function call
-                        DG.add_edge(func_name, changed_object + "_Change", label="Triggers", fontcolor=color_scheme["COLOR_TRIGGERED_CALL_EDGE"])
-    return DG
-
-
-def design_graph_dot(DG):
-    """Select the design of regular graph nodes (colors and content)
-
-    Args:
-        DG (networkx.DiGraph): Generated directed graph
-
-    Returns:
-        networkx.DiGraph: Directed Graph with node design and content
-    """
-    # locate malicious keywords
-    for key in DG:
-        if "color" not in DG.nodes[key]:
-            DG.nodes[key]["color"] = color_scheme["COLOR_DEFAULT_BOX"]
-        DG.nodes[key]["fontcolor"] = color_scheme["COLOR_DEFAULT_TEXT"]
-
-        # handle functions without keywords - create box shape
-        if DG.nodes[key]["keywords"] == "":
-            DG.nodes[key]['shape'] = "box"
-
-            # color external functions
-            if "(External)" in key:
-                DG.nodes[key]["color"] = color_scheme["COLOR_EXTERNAL_FUNCTION"]
-
-        # handle functions with keywords - create html table
-        else:
-            DG.nodes[key]["shape"] = "plaintext"
-            DG.nodes[key]["margin"] = 0
-
-            header = key
-            content = DG.nodes[key]["keywords"]
-            DG.nodes[key]["label"] = r"<<TABLE BORDER=\"0\" CELLBORDER=\"1\" CELLSPACING=\"0\"><TR><TD><FONT FACE=\"Courier\">" + header + r"</FONT></TD></TR><TR><TD><FONT FACE=\"Courier Bold\">" + content + r"</FONT></TD></TR></TABLE>>"
-            # fix a bug in DOT generation
-            DG.nodes[key]["keywords"] = ""
-
-            # color VBA properties
-            if "(Property)" in key:
-                DG.nodes[key]["color"] = color_scheme["COLOR_PROPERTY"]
-
-    # graph background color
-    DG.add_node("graph", bgcolor=color_scheme["COLOR_BACKGROUND"])
-    DG.add_node("edge", color=color_scheme["COLOR_DEFAULT_EDGES"], fontcolor=color_scheme["COLOR_DEFAULT_EDGES_FONT"])
-
-
-    return DG
-
-
-def fix_dot_output(str_dot):
-    """ Make changes to NX write_dot output
-    Args:
-        str_dot (string): output of NX write_dot function
-    """
-
-    # change function names that collide with protected DOT keywords
-    # reference: https://www.graphviz.org/doc/info/lang.html
-    dot_keywords = ["node", "edge", "graph", "digraph", "subgraph", "strict"]
-
-    str_dot_lines = str_dot.split("\n")
-
-    new_str_dot = ""
-    # iterate over all the dot file lines and change function names which
-    # are reserved DOT keywords
-    for cur_line in str_dot_lines:
-        new_str_dot_line = cur_line
-
-        pass_line = False
-        # check if we are in the first disgraph declaration line
-        # example: strict digraph  {
-        if "digraph  " in cur_line:
-            pass_line = True
-
-        # check if we are in a graph declaration line
-        # example: graph [bgcolor="#6075AF"];
-        if "bgcolor=" in cur_line:
-            pass_line = True
-
-        # check if we are in a generic edge declaration line
-        # example: edge [color=white, fontcolor=white];
-        if "edge" in cur_line and "keywords" not in cur_line and "count" not in cur_line:
-            pass_line = True
-
-        # if we are not in a reserved keyword line, and
-        # if we find a reserved keyword in cur line -> add underscore to this function name
-        if not pass_line:
-            for dot_keyword in dot_keywords:
-                re_result = re.search("(?i)" + dot_keyword + " ", cur_line)
-                if re_result:
-                    found_keyword_with_space = re_result.group()
-                    found_keyword = found_keyword_with_space[:-1]
-                    replace_keyword_with = found_keyword + "_" + " "
-                    new_str_dot_line = new_str_dot_line.replace(found_keyword_with_space, replace_keyword_with)
-
-        new_str_dot += new_str_dot_line + "\n"
-
-    return new_str_dot
-
-
-def vba2graph_from_vba_object(filepath):
-    """ vba2graph as library
-    Args:
-        filepath (string): path to file
-    """
-    logger.info("Extracting macros from file")
-    if HAVE_OLETOOLS:
-        try:
-            vba = VBA_Parser(filepath)
-        except Exception as e:
-            return False
-    full_vba_code = ""
-    for (subfilename, stream_path, vba_filename, vba_code) in vba.extract_macros():
-        full_vba_code += 'VBA MACRO %s \n' % vba_filename
-        full_vba_code += '- '*39 + '\n'
-        # Temporary workaround. Change when oletools 0.56 will be released.
-        if isinstance(vba_code, bytes):
-            vba_code = vba_code.decode('utf8', errors='replace')
-        full_vba_code += vba_code
-    vba.close()
-    if full_vba_code:
-        input_vba_content = handle_olevba_input(full_vba_code)
-        return input_vba_content
-    return False
-
-def vba2graph_gen(input_vba_content, output_folder="output", input_file_name="vba2graph", color_scheme=color_scheme):
-
-    """ Generage graph from processed vba macros
-    Args:
-        input_vba_content (string): data generated by handle_olevba_input
-        output_folder (string): output folder
-        input_file_name (string): base filename
-        color_scheme (int): color scheme number [0, 1, 2, 3] (default: 0 - B&W)
-    """
-
-    # ****************************************************************************
-    # *                               Process Input                              *
-    # ****************************************************************************
-
-    vba_content_lines = vba_seperate_lines(input_vba_content)
-    vba_content_lines_no_whitespace = vba_clean_whitespace(vba_content_lines)
-    vba_content_lines_no_metadata = vba_clean_metadata(
-        vba_content_lines_no_whitespace)
-    vba_content_deobfuscated = vba_deobfuscation(vba_content_lines_no_metadata)
-    vba_func_dict = vba_extract_functions(vba_content_deobfuscated)
-    vba_prop_dict = vba_extract_properties(vba_content_lines_no_metadata)
-
-    # treat properties like functions and merge both dictionaries
-    vba_func_dict = dict(vba_func_dict.items() | vba_prop_dict.items())
-
-    ##############################################################################
-    # at this point, vba_func_dict should contain the code of functions and
-    # properties, without comments or whitespaces.
-    ##############################################################################
-
-    # ****************************************************************************
-    # *                              Generate Graph                              *
-    # ****************************************************************************
-
-    DG = create_call_graph(vba_func_dict)
-    DG = find_keywords_in_graph(vba_func_dict, DG)
-    DG = find_change_flow(vba_func_dict, DG)
-    DG = design_graph_dot(DG)
-
-    # ****************************************************************************
-    # *                           Generate Output Files                          *
-    # ****************************************************************************
-
-    logger.info("Generating output files")
-
-    ############################################
-    # Generate functions listing for debugging #
-    ############################################
-
-    bas_folder = output_folder + os.sep + "bas"
-    try:
-        os.makedirs(bas_folder)
-    except OSError as exc:
-        if exc.errno != errno.EEXIST:
-            logger.error("Error creating debugging output folder")
-    code_output_path = bas_folder + os.sep + input_file_name + '.bas'
-    create_functions_listing(vba_func_dict, code_output_path)
-
-    ################################
-    # Generate DOT file from graph #
-    ################################
-    dot_folder = output_folder + os.sep + "dot"
-    try:
-        os.makedirs(dot_folder)
-    except OSError as exc:
-        if exc.errno != errno.EEXIST:
-            logger.error("Error creating DOT output folder")
-    dot_output_path = dot_folder + os.sep + input_file_name + '.dot'
-
-    # redirect NetworkX write_dot output to StringIO for further manipulation
-    str_io_dot = StringIO()
-    write_dot(DG, str_io_dot)
-    str_dot = str_io_dot.getvalue().replace('\\', '')
-    str_io_dot.close()
-
-    # check if our DOT file is broken (one of the funciton names was reserved keyword)
-    str_dot = fix_dot_output(str_dot)
-
-    with open(dot_output_path, 'wb') as the_file:
-        the_file.write(str_dot.encode("utf-8", errors="ignore"))
-
-    ##############################
-    # Generate PNG file from DOT #
-    ##############################
-    png_folder = output_folder + os.sep + "png"
-    try:
-        os.makedirs(png_folder)
-    except OSError as exc:
-        if exc.errno != errno.EEXIST:
-            logger.error("Error creating PNG output folder")
-    png_output_path = png_folder + os.sep + input_file_name + '.png'
-    process = Popen(['dot', '-Tpng', dot_output_path, '-o', png_output_path])
-    process.wait()
-
-    ##############################
-    # Generate SVG file from DOT #
-    ##############################
-    svg_folder = output_folder + os.sep + "svg"
-    try:
-        os.makedirs(svg_folder)
-    except OSError as exc:
-        if exc.errno != errno.EEXIST:
-            logger.error("Error creating PNG output folder")
-    svg_output_path = svg_folder + os.sep + input_file_name + '.svg'
-    process = Popen(['dot', '-Tsvg', dot_output_path, '-o', svg_output_path])
-    process.wait()
-
-def main():
-    global color_scheme
-    # set default output folder
-    output_folder = "output"
-    input_file_name = "vba2graph"
-
-    # ****************************************************************************
-    # *                              Argument Parser                             *
-    # ****************************************************************************
-
-    input_vba_content = ""
-
-    # check if the input was sent though the pipe
-    is_pipe = not os.isatty(sys.stdin.fileno())
-
-    # argument parser would be modified, depended on if we have input in the pipe
-    ap = argparse.ArgumentParser()
-    ap.add_argument("-o", "--output", required=False, help="output folder (default: \"output\")")
-    ap.add_argument("-c", "--colors", required=False, type=int, choices=[0, 1, 2, 3], help="color scheme number [0, 1, 2, 3] (default: 0 - B&W)")
-
-    if is_pipe:
-        input_content = sys.stdin.read()
-        input_file_name = "piped_file"
-        input_vba_content = handle_input(input_path="", is_piped=True, input_content=input_content)
-        cmd_args = vars(ap.parse_args())
-
-    else:
-        input_group = ap.add_mutually_exclusive_group(required=True)
-        input_group.add_argument("-i", "--input", required=False, default=False, help="olevba generated file or .bas file")
-        input_group.add_argument("-f", "--file", required=False, default=False, help="Office file with macros")
-
-        cmd_args = vars(ap.parse_args())
-
-        macro_file = False
-        if cmd_args.get("input", False):
-            file_path = cmd_args.get("input", False)
-        elif cmd_args.get("file", False):
-            file_path = cmd_args.get("file", False)
-            macro_file = True
-
-        # handle files
-        if os.path.isfile(file_path):
-            if macro_file is False:
-                input_vba_content = handle_input(file_path, is_piped=False)
-            else:
-                input_vba_content = vba2graph_from_vba_object(file_path)
-
-        # handle wrong input
-        else:
-            logger.error("Invalid input path")
-            sys.exit(1)
-
-        input_file_name = os.path.basename(file_path)
-
-    # set selected color scheme
-    selected_color_scheme = cmd_args["colors"]
-    if selected_color_scheme is not None:
-        color_scheme = color_schemes[selected_color_scheme]
-
-    # set selected output folder
-    selected_output_folder = cmd_args["output"]
-    if selected_output_folder is not None:
-        output_folder = cmd_args["output"]
-
-    vba2graph_gen(input_vba_content, output_folder, input_file_name, color_scheme)
-
-
-if __name__ == '__main__' and __package__ is None:
-    logging.basicConfig(level=logging.INFO)
-    main()
diff --git a/lib/cuckoo/common/path_utils.py b/lib/cuckoo/common/path_utils.py
new file mode 100644
index 00000000000..b0d72da0be2
--- /dev/null
+++ b/lib/cuckoo/common/path_utils.py
@@ -0,0 +1,78 @@
+# Copyright (C) 2023 doomedraven
+
+from pathlib import Path, PureWindowsPath
+
+from lib.cuckoo.common.constants import ANALYSIS_BASE_PATH
+
+
+def path_to_ascii(path: bytes):
+    return path.decode() if isinstance(path, bytes) else path
+
+
+def path_object(path: bytes):
+    return Path(path_to_ascii(path))
+
+
+def path_get_filename(path):
+    """Cross-platform filename extraction from path.
+    @param path: file path.
+    @return: filename.
+    """
+    return PureWindowsPath(path_to_ascii(path)).name
+
+
+def path_delete(path: str):
+    Path(path_to_ascii(path)).unlink()
+
+
+def path_mkdir(path: str, parent: bool = True, exist_ok=False, mode=0o755):
+    Path(path_to_ascii(path)).mkdir(parents=parent, exist_ok=exist_ok, mode=mode)
+
+
+def path_safe(path: str) -> bool:
+    try:
+        return str(Path(path).resolve(strict=True)).startswith(ANALYSIS_BASE_PATH)
+    except FileNotFoundError:
+        return False
+
+
+def path_exists(path: str, windows: bool = False) -> bool:
+    if not windows:
+        return Path(path_to_ascii(path)).exists()
+    return PureWindowsPath(path_to_ascii(path)).exists()
+
+
+def path_get_size(path: str):
+    return Path(path_to_ascii(path)).stat().st_size
+
+
+def path_get_date(path: str, value: str = "st_ctime"):
+    return getattr(Path(path_to_ascii(path)).stat(), value)
+
+
+def path_is_file(path: str) -> bool:
+    return Path(path_to_ascii(path)).is_file()
+
+
+def path_is_dir(path: str) -> bool:
+    return Path(path_to_ascii(path)).is_dir()
+
+
+def path_read_file(path: str, mode="bytes"):
+    if mode == "bytes":
+        return Path(path_to_ascii(path)).read_bytes()
+    return Path(path_to_ascii(path)).read_text()
+
+
+def path_write_file(path: str, content, mode="bytes"):
+    if mode == "bytes":
+        return Path(path_to_ascii(path)).write_bytes(content)
+    return Path(path_to_ascii(path)).write_text(content)
+
+
+def path_cwd():
+    return Path.cwd()
+
+
+def path_mount_point(path: str):
+    return Path(path_to_ascii(path)).is_mount()
diff --git a/lib/cuckoo/common/pcap_utils.py b/lib/cuckoo/common/pcap_utils.py
new file mode 100644
index 00000000000..75302a59850
--- /dev/null
+++ b/lib/cuckoo/common/pcap_utils.py
@@ -0,0 +1,199 @@
+import logging
+import shutil
+import subprocess
+import tempfile
+from pathlib import Path
+
+from utils.tls import tlslog_to_sslkeylogfile
+
+EDITCAP = "editcap"
+EDITCAP_TIMEOUT = 60
+
+log = logging.getLogger(__name__)
+
+
+def append_file_contents_to_file(file_with_contents: Path, append_to_file: Path):
+    """Append the contents of one file to another file.
+
+    Args:
+        file_with_contents: Path to the source file to read from
+        append_to_file: Path to the destination file to append to
+    """
+    with file_with_contents.open("r") as src, append_to_file.open("a+") as dst:
+        dst.write(src.read())
+
+
+def file_exists_not_empty(path: Path | None) -> bool:
+    """Check if a file exists and is not empty.
+
+    Args:
+        path: Path to the file to check, or None
+
+    Returns:
+        True if the path is not None, the file exists, and has size > 0, False otherwise
+    """
+    return bool(path and path.exists() and path.stat().st_size > 0)
+
+
+def generate_pcapng(sslkeylogfile_path: Path, pcap_path: Path, outfile: Path, timeout: int = EDITCAP_TIMEOUT):
+    """Generate a pcapng file from a pcap file and SSL key log file using editcap.
+
+    Args:
+        sslkeylogfile_path: Path to the SSL key log file containing TLS decryption keys
+        pcap_path: Path to the input pcap file
+        outfile: Path where the output pcapng file should be written
+        timeout: Maximum time in seconds to wait for editcap to complete (default: EDITCAP_TIMEOUT)
+
+    Raises:
+        EmptyPcapError: If the pcap file doesn't exist or is empty
+        subprocess.CalledProcessError: If editcap exits with a non-zero status
+        subprocess.TimeoutExpired: If editcap execution exceeds the timeout
+    """
+    if not file_exists_not_empty(pcap_path):
+        raise EmptyPcapError(pcap_path)
+    cmd = [EDITCAP, "--inject-secrets", f"tls,{sslkeylogfile_path}", pcap_path, outfile]
+    log.debug("generating pcapng with command '%s", cmd)
+    subprocess.check_call(cmd, timeout=timeout)
+
+
+def _has_magic(file: str | Path, magic_numbers: tuple[int, ...]) -> bool:
+    """Check if a file starts with one of the given magic numbers.
+
+    Args:
+        file: Path to the file to check
+        magic_numbers: Tuple of magic numbers to check for (as integers in big-endian)
+
+    Returns:
+        True if the file starts with one of the magic numbers, False otherwise
+
+    Note:
+        Magic numbers are read in big-endian byte order (the natural way to represent
+        hex values). If you need to check files with different byte orders, include
+        both byte order variations in the magic_numbers tuple.
+    """
+    if not magic_numbers:
+        return False
+
+    max_magic = max(magic_numbers)
+    magic_byte_len = (max_magic.bit_length() + 7) // 8
+
+    try:
+        with open(file, "rb") as fd:
+            magic_bytes = fd.read(magic_byte_len)
+            # Return false if the file is too small to contain the magic number
+            if len(magic_bytes) < magic_byte_len:
+                return False
+
+            magic_number = int.from_bytes(magic_bytes, byteorder="big")
+            return magic_number in magic_numbers
+    except (OSError, IOError):
+        return False
+
+
+def is_pcap(file: str | Path) -> bool:
+    """Check if a file is a PCAP file by checking its magic number.
+
+    PCAP files start with either 0xA1B2C3D4 (big-endian) or 0xD4C3B2A1 (little-endian).
+    """
+    return _has_magic(file, (0xA1B2C3D4, 0xD4C3B2A1))
+
+
+def is_pcapng(file: str | Path) -> bool:
+    """Check if a file is a PCAPNG file by checking its magic number.
+
+    PCAPNG files start with 0x0A0D0D0A (Section Header Block magic).
+    """
+    return _has_magic(file, (0x0A0D0D0A,))
+
+
+class EmptyPcapError(Exception):
+    """Exception raised when a pcap file is empty or doesn't exist."""
+
+    def __init__(self, pcap_path: Path):
+        """Initialize the EmptyPcapError.
+
+        Args:
+            pcap_path: Path to the empty or non-existent pcap file
+        """
+        self.pcap_path = pcap_path
+        super().__init__(f"pcap file is empty: {pcap_path}")
+
+
+class PcapToNg:
+    """Combine a PCAP, TLS key log and SSL key log into a .pcapng file.
+
+    Requires the `editcap` executable."""
+
+    def __init__(self, pcap_path: str | Path, tlsdump_log: Path | str | None = None, sslkeys_log: Path | str | None = None):
+        """Initialize the PcapToNg converter.
+
+        Args:
+            pcap_path: Path to the source pcap file
+            tlsdump_log: Optional path to the CAPEMON TLS dump log file
+            sslkeys_log: Optional path to the SSLKEYLOGFILE format key log
+        """
+        self.pcap_path = Path(pcap_path)
+        self.pcapng_path = Path(f"{self.pcap_path}ng")
+        self.tlsdump_log = Path(tlsdump_log) if tlsdump_log else None
+        self.sslkeys_log = Path(sslkeys_log) if sslkeys_log else None
+
+    def generate(self, outfile: Path | str | None = None):
+        """Generate a pcapng file by combining the pcap with TLS/SSL key logs.
+
+        This method will:
+        1. Skip generation if the output already exists and is a valid pcapng
+        2. Combine TLS dump logs and SSL key logs into a temporary file
+        3. Use editcap to inject the TLS secrets into the pcap to create a pcapng
+
+        Args:
+            outfile: Optional path where the pcapng should be written.
+                    If None, uses the pcap_path with 'ng' suffix.
+
+        Note:
+            Errors are logged but not raised. The method returns silently if:
+            - The output file already exists
+            - The input pcap doesn't exist or is empty
+            - editcap is not found in PATH
+            - editcap execution fails
+        """
+        if not outfile:
+            outfile = self.pcapng_path
+        elif isinstance(outfile, str):
+            outfile = Path(outfile)
+
+        if outfile.exists() and is_pcapng(outfile):
+            log.debug('pcapng already exists, nothing to do "%s"', outfile)
+            return
+
+        if not self.pcap_path.exists():
+            log.debug('pcap not found, nothing to do "%s"', self.pcap_path)
+            return
+
+        if self.pcap_path.stat().st_size == 0:
+            log.debug('pcap is empty, nothing to do "%s"', self.pcap_path)
+            return
+
+        if not shutil.which(EDITCAP):
+            log.error("%s not in path and is required", EDITCAP)
+            return
+
+        failmsg = "failed to generate .pcapng"
+        try:
+            # Combine all TLS logs into a single file in a format that can be read by editcap
+            with tempfile.NamedTemporaryFile("w", dir=self.pcap_path.parent, encoding="utf-8") as tmp_ssl_key_log:
+                tmp_ssl_key_log_path = Path(tmp_ssl_key_log.name)
+                # Write CAPEMON keys
+                if file_exists_not_empty(self.tlsdump_log):
+                    log.debug("writing tlsdump.log to temp key log file")
+                    tlslog_to_sslkeylogfile(self.tlsdump_log, tmp_ssl_key_log_path)
+                # Write SSLKEYLOGFILE keys
+                if file_exists_not_empty(self.sslkeys_log):
+                    log.debug("writing SSLKEYLOGFILE to temp key log file")
+                    append_file_contents_to_file(self.sslkeys_log, tmp_ssl_key_log_path)
+                generate_pcapng(tmp_ssl_key_log_path, self.pcap_path, outfile)
+        except subprocess.CalledProcessError as exc:
+            log.error("%s: editcap exited with code: %d", failmsg, exc.returncode)
+        except subprocess.TimeoutExpired:
+            log.error("%s: editcap reached timeout", failmsg)
+        except (OSError, EmptyPcapError) as exc:
+            log.error("%s: %s", failmsg, exc)
diff --git a/lib/cuckoo/common/pdftools/pdf-parser.py b/lib/cuckoo/common/pdftools/pdf-parser.py
deleted file mode 100644
index 263e9cab5ce..00000000000
--- a/lib/cuckoo/common/pdftools/pdf-parser.py
+++ /dev/null
@@ -1,1844 +0,0 @@
-#!/usr/bin/python
-from __future__ import absolute_import
-from __future__ import print_function
-
-__description__ = "pdf-parser, use it to parse a PDF document"
-__author__ = "Didier Stevens"
-__version__ = "0.7.4"
-__date__ = "2019/11/05"
-__minimum_python_version__ = (2, 5, 1)
-__maximum_python_version__ = (3, 7, 5)
-
-"""
-Source code put in public domain by Didier Stevens, no Copyright
-https://DidierStevens.com
-Use at your own risk
-
-History:
-  2008/05/02: continue
-  2008/05/03: continue
-  2008/06/02: streams
-  2008/10/19: refactor, grep & extract functionality
-  2008/10/20: reference
-  2008/10/21: cleanup
-  2008/11/12: V0.3 dictionary parser
-  2008/11/13: option elements
-  2008/11/14: continue
-  2009/05/05: added /ASCIIHexDecode support (thanks Justin Prosco)
-  2009/05/11: V0.3.1 updated usage, added --verbose and --extract
-  2009/07/16: V0.3.2 Added Canonicalize (thanks Justin Prosco)
-  2009/07/18: bugfix EqualCanonical
-  2009/07/24: V0.3.3 Added --hash option
-  2009/07/25: EqualCanonical for option --type, added option --nocanonicalizedoutput
-  2009/07/28: V0.3.4 Added ASCII85Decode support
-  2009/08/01: V0.3.5 Updated ASCIIHexDecode to support whitespace obfuscation
-  2009/08/30: V0.3.6 TestPythonVersion
-  2010/01/08: V0.3.7 Added RLE and LZW support (thanks pARODY); added dump option
-  2010/01/09: Fixed parsing of incomplete startxref
-  2010/09/22: V0.3.8 Changed dump option, updated PrettyPrint, added debug option
-  2011/12/17: fixed bugs empty objects
-  2012/03/11: V0.3.9 fixed bugs double nested [] in PrettyPrintSub (thanks kurt)
-  2013/01/11: V0.3.10 Extract and dump bug fixes by Priit; added content option
-  2013/02/16: Performance improvement in cPDFTokenizer by using StringIO for token building by Christophe Vandeplas; xrange replaced with range
-  2013/02/16: V0.4.0 added http/https support; added error handling for missing file or URL; ; added support for ZIP file with password 'infected'
-  2013/03/13: V0.4.1 fixes for Python 3
-  2013/04/11: V0.4.2 modified PrettyPrintSub for strings with unprintable characters
-  2013/05/04: Added options searchstream, unfiltered, casesensitive, regex
-  2013/09/18: V0.4.3 fixed regression bug -w option
-  2014/09/25: V0.5.0 added option -g
-  2014/09/29: Added PrintGenerateObject and PrintOutputObject
-  2014/12/05: V0.6.0 Added YARA support
-  2014/12/09: cleanup, refactoring
-  2014/12/13: Python 3 fixes
-  2015/01/11: Added support for multiple YARA rule files; added request to search in trailer
-  2015/01/31: V0.6.1 Added optionyarastrings
-  2015/02/09: Added decoders
-  2015/04/05: V0.6.2 Added generateembedded
-  2015/04/06: fixed bug reported by Kurt for stream produced by Ghostscript where endstream is not preceded by whitespace; fixed prettyprint bug
-  2015/04/24: V0.6.3 when option dump's filename is -, content is dumped to stdout
-  2015/08/12: V0.6.4 option hash now also calculates hashes of streams when selecting or searching objects; and displays hexasciidump first line
-  2016/07/27: V0.6.5 bugfix whitespace 0x00 0x0C after stream 0x0D 0x0A reported by @mr_me
-  2016/11/20: V0.6.6 added workaround zlib errors FlateDecode
-  2016/12/17: V0.6.7 added option -k
-  2017/01/07: V0.6.8 changed cPDFParseDictionary to handle strings () with % character
-  2017/10/28: fixed bug
-  2017/10/29: added # support for option -y
-  2018/06/29: V0.6.9 added option --overridingfilters
-  2018/10/20: added keywords to statistics
-  2019/02/22: V0.7.0 added option -O --objstm to parse the stream of /ObjStm objects, inspired by a contributor wishing anonymity
-  2019/03/01: V0.7.1 added ContainsName for correct keyword statistics (-a)
-  2019/04/12: V0.7.2 Python 2.6.6 compatibility fix
-  2019/07/30: bug fixes (including fixes Josef Hinteregger)
-  2019/09/26: V0.7.3 added multiple id selection to option -o; added man page (-m); added environment variable PDFPARSER_OPTIONS; bug fixes
-  2019/11/05: V0.7.4 fixed plugin path when compiled with pyinstaller, replaced eval with int
-
-Todo:
-  - handle printf todo
-  - support for JS hex string EC61C64349DB8D88AF0523C4C06E0F4D.pdf.vir
-
-"""
-
-import re
-import optparse
-import zlib
-import binascii
-import hashlib
-import sys
-import zipfile
-import time
-import os
-import textwrap
-
-if sys.version_info[0] >= 3:
-    from io import StringIO
-    import urllib.request
-
-    urllib23 = urllib.request
-    import configparser as ConfigParser
-else:
-    from cStringIO import StringIO
-    import urllib2
-
-    urllib23 = urllib2
-    import ConfigParser
-try:
-    import yara
-except:
-    pass
-
-CHAR_WHITESPACE = 1
-CHAR_DELIMITER = 2
-CHAR_REGULAR = 3
-
-CONTEXT_NONE = 1
-CONTEXT_OBJ = 2
-CONTEXT_XREF = 3
-CONTEXT_TRAILER = 4
-
-PDF_ELEMENT_COMMENT = 1
-PDF_ELEMENT_INDIRECT_OBJECT = 2
-PDF_ELEMENT_XREF = 3
-PDF_ELEMENT_TRAILER = 4
-PDF_ELEMENT_STARTXREF = 5
-PDF_ELEMENT_MALFORMED = 6
-
-dumplinelength = 16
-
-
-def PrintManual():
-    manual = """
-Manual:
-
-This manual is a work in progress.
-
-There is a free PDF analysis book:
-https://blog.didierstevens.com/2010/09/26/free-malicious-pdf-analysis-e-book/
-
-Option -o is used to select objects by id. Provide a single id or multiple ids separated by a comma (,).
-
-When environment variable PDFPARSER_OPTIONS is defined, the options it defines are added implicitely to the command line arguments.
-Use this to define options you want included with each use of pdf-parser.py.
-Like option -O, to parse stream objects (/ObjStm).
-By defining PDFPARSER_OPTIONS=-O, pdf-parser will always parse stream objects (when found).
-PS: this feature is experimental.
-
-"""
-    for line in manual.split("\n"):
-        print(textwrap.fill(line))
-
-
-# Convert 2 Bytes If Python 3
-
-
-def C2BIP3(string):
-    if sys.version_info[0] > 2:
-        if type(string) == bytes:
-            return string
-        else:
-            return bytes([ord(x) for x in string])
-    else:
-        return string
-
-
-# Convert 2 String If Python 3
-
-
-def C2SIP3(bytes):
-    if sys.version_info[0] > 2:
-        return "".join([chr(byte) for byte in bytes])
-    else:
-        return bytes
-
-
-# CIC: Call If Callable
-
-
-def CIC(expression):
-    if callable(expression):
-        return expression()
-    else:
-        return expression
-
-
-# IFF: IF Function
-
-
-def IFF(expression, valueTrue, valueFalse):
-    if expression:
-        return CIC(valueTrue)
-    else:
-        return CIC(valueFalse)
-
-
-def Timestamp(epoch=None):
-    if epoch == None:
-        localTime = time.localtime()
-    else:
-        localTime = time.localtime(epoch)
-    return "%04d%02d%02d-%02d%02d%02d" % localTime[0:6]
-
-
-def CopyWithoutWhiteSpace(content):
-    result = []
-    for token in content:
-        if token[0] != CHAR_WHITESPACE:
-            result.append(token)
-    return result
-
-
-def Obj2Str(content):
-    return "".join(map(lambda x: repr(x[1])[1:-1], CopyWithoutWhiteSpace(content)))
-
-
-class cPDFDocument:
-    def __init__(self, file):
-        self.file = file
-        if type(file) != str:
-            self.infile = file
-        elif file.lower().startswith(("http://", "https://")):
-            try:
-                if sys.hexversion >= 0x020601F0:
-                    self.infile = urllib23.urlopen(file, timeout=5)
-                else:
-                    self.infile = urllib23.urlopen(file)
-            except urllib23.HTTPError:
-                print("Error accessing URL %s" % file)
-                print(sys.exc_info()[1])
-                sys.exit()
-        elif file.lower().endswith(".zip"):
-            try:
-                self.zipfile = zipfile.ZipFile(file, "r")
-                self.infile = self.zipfile.open(self.zipfile.infolist()[0], "r", C2BIP3("infected"))
-            except:
-                print("Error opening file %s" % file)
-                print(sys.exc_info()[1])
-                sys.exit()
-        else:
-            try:
-                self.infile = open(file, "rb")
-            except:
-                print("Error opening file %s" % file)
-                print(sys.exc_info()[1])
-                sys.exit()
-        self.ungetted = []
-        self.position = -1
-
-    def byte(self):
-        if len(self.ungetted) != 0:
-            self.position += 1
-            return self.ungetted.pop()
-        inbyte = self.infile.read(1)
-        if not inbyte or inbyte == "":
-            self.infile.close()
-            return None
-        self.position += 1
-        return ord(inbyte)
-
-    def unget(self, byte):
-        self.position -= 1
-        self.ungetted.append(byte)
-
-
-def CharacterClass(byte):
-    if byte == 0 or byte == 9 or byte == 10 or byte == 12 or byte == 13 or byte == 32:
-        return CHAR_WHITESPACE
-    if (
-        byte == 0x28
-        or byte == 0x29
-        or byte == 0x3C
-        or byte == 0x3E
-        or byte == 0x5B
-        or byte == 0x5D
-        or byte == 0x7B
-        or byte == 0x7D
-        or byte == 0x2F
-        or byte == 0x25
-    ):
-        return CHAR_DELIMITER
-    return CHAR_REGULAR
-
-
-def IsNumeric(str):
-    return re.match("^[0-9]+", str)
-
-
-class cPDFTokenizer:
-    def __init__(self, file):
-        self.oPDF = cPDFDocument(file)
-        self.ungetted = []
-
-    def Token(self):
-        if len(self.ungetted) != 0:
-            return self.ungetted.pop()
-        if self.oPDF == None:
-            return None
-        self.byte = self.oPDF.byte()
-        if self.byte == None:
-            self.oPDF = None
-            return None
-        elif CharacterClass(self.byte) == CHAR_WHITESPACE:
-            file_str = StringIO()
-            while self.byte != None and CharacterClass(self.byte) == CHAR_WHITESPACE:
-                file_str.write(chr(self.byte))
-                self.byte = self.oPDF.byte()
-            if self.byte != None:
-                self.oPDF.unget(self.byte)
-            else:
-                self.oPDF = None
-            self.token = file_str.getvalue()
-            return (CHAR_WHITESPACE, self.token)
-        elif CharacterClass(self.byte) == CHAR_REGULAR:
-            file_str = StringIO()
-            while self.byte != None and CharacterClass(self.byte) == CHAR_REGULAR:
-                file_str.write(chr(self.byte))
-                self.byte = self.oPDF.byte()
-            if self.byte != None:
-                self.oPDF.unget(self.byte)
-            else:
-                self.oPDF = None
-            self.token = file_str.getvalue()
-            return (CHAR_REGULAR, self.token)
-        else:
-            if self.byte == 0x3C:
-                self.byte = self.oPDF.byte()
-                if self.byte == 0x3C:
-                    return (CHAR_DELIMITER, "<<")
-                else:
-                    self.oPDF.unget(self.byte)
-                    return (CHAR_DELIMITER, "<")
-            elif self.byte == 0x3E:
-                self.byte = self.oPDF.byte()
-                if self.byte == 0x3E:
-                    return (CHAR_DELIMITER, ">>")
-                else:
-                    self.oPDF.unget(self.byte)
-                    return (CHAR_DELIMITER, ">")
-            elif self.byte == 0x25:
-                file_str = StringIO()
-                while self.byte != None:
-                    file_str.write(chr(self.byte))
-                    if self.byte == 10 or self.byte == 13:
-                        self.byte = self.oPDF.byte()
-                        break
-                    self.byte = self.oPDF.byte()
-                if self.byte != None:
-                    if self.byte == 10:
-                        file_str.write(chr(self.byte))
-                    else:
-                        self.oPDF.unget(self.byte)
-                else:
-                    self.oPDF = None
-                self.token = file_str.getvalue()
-                return (CHAR_DELIMITER, self.token)
-            return (CHAR_DELIMITER, chr(self.byte))
-
-    def TokenIgnoreWhiteSpace(self):
-        token = self.Token()
-        while token != None and token[0] == CHAR_WHITESPACE:
-            token = self.Token()
-        return token
-
-    def Tokens(self):
-        tokens = []
-        token = self.Token()
-        while token != None:
-            tokens.append(token)
-            token = self.Token()
-        return tokens
-
-    def unget(self, byte):
-        self.ungetted.append(byte)
-
-
-class cPDFParser:
-    def __init__(self, file, verbose=False, extract=None, objstm=None):
-        self.context = CONTEXT_NONE
-        self.content = []
-        self.oPDFTokenizer = cPDFTokenizer(file)
-        self.verbose = verbose
-        self.extract = extract
-        self.objstm = objstm
-
-    def GetObject(self):
-        while True:
-            if self.context == CONTEXT_OBJ:
-                self.token = self.oPDFTokenizer.Token()
-            else:
-                self.token = self.oPDFTokenizer.TokenIgnoreWhiteSpace()
-            if self.token:
-                if self.token[0] == CHAR_DELIMITER:
-                    if self.token[1][0] == "%":
-                        if self.context == CONTEXT_OBJ:
-                            self.content.append(self.token)
-                        else:
-                            return cPDFElementComment(self.token[1])
-                    elif self.token[1] == "/":
-                        self.token2 = self.oPDFTokenizer.Token()
-                        if self.token2[0] == CHAR_REGULAR:
-                            if self.context != CONTEXT_NONE:
-                                self.content.append((CHAR_DELIMITER, self.token[1] + self.token2[1]))
-                            elif self.verbose:
-                                print("todo 1: %s" % (self.token[1] + self.token2[1]))
-                        else:
-                            self.oPDFTokenizer.unget(self.token2)
-                            if self.context != CONTEXT_NONE:
-                                self.content.append(self.token)
-                            elif self.verbose:
-                                print("todo 2: %d %s" % (self.token[0], repr(self.token[1])))
-                    elif self.context != CONTEXT_NONE:
-                        self.content.append(self.token)
-                    elif self.verbose:
-                        print("todo 3: %d %s" % (self.token[0], repr(self.token[1])))
-                elif self.token[0] == CHAR_WHITESPACE:
-                    if self.context != CONTEXT_NONE:
-                        self.content.append(self.token)
-                    elif self.verbose:
-                        print("todo 4: %d %s" % (self.token[0], repr(self.token[1])))
-                else:
-                    if self.context == CONTEXT_OBJ:
-                        if self.token[1] == "endobj":
-                            self.oPDFElementIndirectObject = cPDFElementIndirectObject(
-                                self.objectId, self.objectVersion, self.content, self.objstm
-                            )
-                            self.context = CONTEXT_NONE
-                            self.content = []
-                            return self.oPDFElementIndirectObject
-                        else:
-                            self.content.append(self.token)
-                    elif self.context == CONTEXT_TRAILER:
-                        if self.token[1] == "startxref" or self.token[1] == "xref":
-                            self.oPDFElementTrailer = cPDFElementTrailer(self.content)
-                            self.oPDFTokenizer.unget(self.token)
-                            self.context = CONTEXT_NONE
-                            self.content = []
-                            return self.oPDFElementTrailer
-                        else:
-                            self.content.append(self.token)
-                    elif self.context == CONTEXT_XREF:
-                        if self.token[1] == "trailer" or self.token[1] == "xref":
-                            self.oPDFElementXref = cPDFElementXref(self.content)
-                            self.oPDFTokenizer.unget(self.token)
-                            self.context = CONTEXT_NONE
-                            self.content = []
-                            return self.oPDFElementXref
-                        else:
-                            self.content.append(self.token)
-                    else:
-                        if IsNumeric(self.token[1]):
-                            self.token2 = self.oPDFTokenizer.TokenIgnoreWhiteSpace()
-                            if IsNumeric(self.token2[1]):
-                                self.token3 = self.oPDFTokenizer.TokenIgnoreWhiteSpace()
-                                if self.token3[1] == "obj":
-                                    self.objectId = int(self.token[1], 10)
-                                    self.objectVersion = int(self.token2[1], 10)
-                                    self.context = CONTEXT_OBJ
-                                else:
-                                    self.oPDFTokenizer.unget(self.token3)
-                                    self.oPDFTokenizer.unget(self.token2)
-                                    if self.verbose:
-                                        print("todo 6: %d %s" % (self.token[0], repr(self.token[1])))
-                            else:
-                                self.oPDFTokenizer.unget(self.token2)
-                                if self.verbose:
-                                    print("todo 7: %d %s" % (self.token[0], repr(self.token[1])))
-                        elif self.token[1] == "trailer":
-                            self.context = CONTEXT_TRAILER
-                            self.content = [self.token]
-                        elif self.token[1] == "xref":
-                            self.context = CONTEXT_XREF
-                            self.content = [self.token]
-                        elif self.token[1] == "startxref":
-                            self.token2 = self.oPDFTokenizer.TokenIgnoreWhiteSpace()
-                            if self.token2 and IsNumeric(self.token2[1]):
-                                return cPDFElementStartxref(int(self.token2[1], 10))
-                            else:
-                                self.oPDFTokenizer.unget(self.token2)
-                                if self.verbose:
-                                    print("todo 9: %d %s" % (self.token[0], repr(self.token[1])))
-                        elif self.extract:
-                            self.bytes = ""
-                            while self.token:
-                                self.bytes += self.token[1]
-                                self.token = self.oPDFTokenizer.Token()
-                            return cPDFElementMalformed(self.bytes)
-                        elif self.verbose:
-                            print("todo 10: %d %s" % (self.token[0], repr(self.token[1])))
-            else:
-                break
-
-
-class cPDFElementComment:
-    def __init__(self, comment):
-        self.type = PDF_ELEMENT_COMMENT
-        self.comment = comment
-
-
-#                        if re.match('^%PDF-[0-9]\.[0-9]', self.token[1]):
-#                            print(repr(self.token[1]))
-#                        elif re.match('^%%EOF', self.token[1]):
-#                            print(repr(self.token[1]))
-
-
-class cPDFElementXref:
-    def __init__(self, content):
-        self.type = PDF_ELEMENT_XREF
-        self.content = content
-
-
-class cPDFElementTrailer:
-    def __init__(self, content):
-        self.type = PDF_ELEMENT_TRAILER
-        self.content = content
-
-    def Contains(self, keyword):
-        data = ""
-        for i in range(0, len(self.content)):
-            if self.content[i][1] == "stream":
-                break
-            else:
-                data += Canonicalize(self.content[i][1])
-        return data.upper().find(keyword.upper()) != -1
-
-
-def IIf(expr, truepart, falsepart):
-    if expr:
-        return truepart
-    else:
-        return falsepart
-
-
-class cPDFElementIndirectObject:
-    def __init__(self, id, version, content, objstm=None):
-        self.type = PDF_ELEMENT_INDIRECT_OBJECT
-        self.id = id
-        self.version = version
-        self.content = content
-        self.objstm = objstm
-        # fix stream for Ghostscript bug reported by Kurt
-        if self.ContainsStream():
-            position = len(self.content) - 1
-            if position < 0:
-                return
-            while self.content[position][0] == CHAR_WHITESPACE and position >= 0:
-                position -= 1
-            if position < 0:
-                return
-            if self.content[position][0] != CHAR_REGULAR:
-                return
-            if self.content[position][1] == "endstream":
-                return
-            if not self.content[position][1].endswith("endstream"):
-                return
-            self.content = (
-                self.content[0:position]
-                + [(self.content[position][0], self.content[position][1][: -len("endstream")])]
-                + [(self.content[position][0], "endstream")]
-                + self.content[position + 1 :]
-            )
-
-    def GetType(self):
-        content = CopyWithoutWhiteSpace(self.content)
-        dictionary = 0
-        for i in range(0, len(content)):
-            if content[i][0] == CHAR_DELIMITER and content[i][1] == "<<":
-                dictionary += 1
-            if content[i][0] == CHAR_DELIMITER and content[i][1] == ">>":
-                dictionary -= 1
-            if dictionary == 1 and content[i][0] == CHAR_DELIMITER and EqualCanonical(content[i][1], "/Type") and i < len(content) - 1:
-                return content[i + 1][1]
-        return ""
-
-    def GetReferences(self):
-        content = CopyWithoutWhiteSpace(self.content)
-        references = []
-        for i in range(0, len(content)):
-            if (
-                i > 1
-                and content[i][0] == CHAR_REGULAR
-                and content[i][1] == "R"
-                and content[i - 2][0] == CHAR_REGULAR
-                and IsNumeric(content[i - 2][1])
-                and content[i - 1][0] == CHAR_REGULAR
-                and IsNumeric(content[i - 1][1])
-            ):
-                references.append((content[i - 2][1], content[i - 1][1], content[i][1]))
-        return references
-
-    def References(self, index):
-        for ref in self.GetReferences():
-            if ref[0] == index:
-                return True
-        return False
-
-    def ContainsStream(self):
-        for i in range(0, len(self.content)):
-            if self.content[i][0] == CHAR_REGULAR and self.content[i][1] == "stream":
-                return self.content[0:i]
-        return False
-
-    def Contains(self, keyword):
-        data = ""
-        for i in range(0, len(self.content)):
-            if self.content[i][1] == "stream":
-                break
-            else:
-                data += Canonicalize(self.content[i][1])
-        return data.upper().find(keyword.upper()) != -1
-
-    def ContainsName(self, keyword):
-        for token in self.content:
-            if token[1] == "stream":
-                return False
-            if token[0] == CHAR_DELIMITER and EqualCanonical(token[1], keyword):
-                return True
-        return False
-
-    def StreamContains(self, keyword, filter, casesensitive, regex, overridingfilters):
-        if not self.ContainsStream():
-            return False
-        streamData = self.Stream(filter, overridingfilters)
-        if filter and streamData == "No filters":
-            streamData = self.Stream(False, overridingfilters)
-        if regex:
-            return re.search(keyword, streamData, IIf(casesensitive, 0, re.I))
-        elif casesensitive:
-            return keyword in streamData
-        else:
-            return keyword.lower() in streamData.lower()
-
-    def Stream(self, filter=True, overridingfilters=""):
-        state = "start"
-        countDirectories = 0
-        data = ""
-        filters = []
-        for i in range(0, len(self.content)):
-            if state == "start":
-                if self.content[i][0] == CHAR_DELIMITER and self.content[i][1] == "<<":
-                    countDirectories += 1
-                if self.content[i][0] == CHAR_DELIMITER and self.content[i][1] == ">>":
-                    countDirectories -= 1
-                if countDirectories == 1 and self.content[i][0] == CHAR_DELIMITER and EqualCanonical(self.content[i][1], "/Filter"):
-                    state = "filter"
-                elif countDirectories == 0 and self.content[i][0] == CHAR_REGULAR and self.content[i][1] == "stream":
-                    state = "stream-whitespace"
-            elif state == "filter":
-                if self.content[i][0] == CHAR_DELIMITER and self.content[i][1][0] == "/":
-                    filters = [self.content[i][1]]
-                    state = "search-stream"
-                elif self.content[i][0] == CHAR_DELIMITER and self.content[i][1] == "[":
-                    state = "filter-list"
-            elif state == "filter-list":
-                if self.content[i][0] == CHAR_DELIMITER and self.content[i][1][0] == "/":
-                    filters.append(self.content[i][1])
-                elif self.content[i][0] == CHAR_DELIMITER and self.content[i][1] == "]":
-                    state = "search-stream"
-            elif state == "search-stream":
-                if self.content[i][0] == CHAR_REGULAR and self.content[i][1] == "stream":
-                    state = "stream-whitespace"
-            elif state == "stream-whitespace":
-                if self.content[i][0] == CHAR_WHITESPACE:
-                    whitespace = self.content[i][1]
-                    if whitespace.startswith("\x0D\x0A") and len(whitespace) > 2:
-                        data += whitespace[2:]
-                    elif whitespace.startswith("\x0A") and len(whitespace) > 1:
-                        data += whitespace[1:]
-                else:
-                    data += self.content[i][1]
-                state = "stream-concat"
-            elif state == "stream-concat":
-                if self.content[i][0] == CHAR_REGULAR and self.content[i][1] == "endstream":
-                    if filter:
-                        if overridingfilters == "":
-                            return self.Decompress(data, filters)
-                        elif overridingfilters == "raw":
-                            return data
-                        else:
-                            return self.Decompress(data, overridingfilters.split(" "))
-                    else:
-                        return data
-                else:
-                    data += self.content[i][1]
-            else:
-                return "Unexpected filter state"
-        return filters
-
-    def Decompress(self, data, filters):
-        for filter in filters:
-            if EqualCanonical(filter, "/FlateDecode") or EqualCanonical(filter, "/Fl"):
-                try:
-                    data = FlateDecode(data)
-                except zlib.error as e:
-                    message = "FlateDecode decompress failed"
-                    if len(data) > 0 and ord(data[0]) & 0x0F != 8:
-                        message += ", unexpected compression method: %02x" % ord(data[0])
-                    return message + ". zlib.error %s" % e.message
-            elif EqualCanonical(filter, "/ASCIIHexDecode") or EqualCanonical(filter, "/AHx"):
-                try:
-                    data = ASCIIHexDecode(data)
-                except:
-                    return "ASCIIHexDecode decompress failed"
-            elif EqualCanonical(filter, "/ASCII85Decode") or EqualCanonical(filter, "/A85"):
-                try:
-                    data = ASCII85Decode(data.rstrip(">"))
-                except:
-                    return "ASCII85Decode decompress failed"
-            elif EqualCanonical(filter, "/LZWDecode") or EqualCanonical(filter, "/LZW"):
-                try:
-                    data = LZWDecode(data)
-                except:
-                    return "LZWDecode decompress failed"
-            elif EqualCanonical(filter, "/RunLengthDecode") or EqualCanonical(filter, "/R"):
-                try:
-                    data = RunLengthDecode(data)
-                except:
-                    return "RunLengthDecode decompress failed"
-            #            elif i.startswith('/CC')                        # CCITTFaxDecode
-            #            elif i.startswith('/DCT')                       # DCTDecode
-            else:
-                return "Unsupported filter: %s" % repr(filters)
-        if len(filters) == 0:
-            return "No filters"
-        else:
-            return data
-
-    def StreamYARAMatch(self, rules, decoders, decoderoptions, filter, overridingfilters):
-        if not self.ContainsStream():
-            return None
-        streamData = self.Stream(filter, overridingfilters)
-        if filter and streamData == "No filters":
-            streamData = self.Stream(False, overridingfilters)
-
-        oDecoders = [cIdentity(streamData, None)]
-        for cDecoder in decoders:
-            try:
-                oDecoder = cDecoder(streamData, decoderoptions)
-                oDecoders.append(oDecoder)
-            except Exception as e:
-                print("Error instantiating decoder: %s" % cDecoder.name)
-                raise e
-        results = []
-        for oDecoder in oDecoders:
-            while oDecoder.Available():
-                yaraResults = rules.match(data=oDecoder.Decode())
-                if yaraResults != []:
-                    results.append([oDecoder.Name(), yaraResults])
-
-        return results
-
-
-class cPDFElementStartxref:
-    def __init__(self, index):
-        self.type = PDF_ELEMENT_STARTXREF
-        self.index = index
-
-
-class cPDFElementMalformed:
-    def __init__(self, content):
-        self.type = PDF_ELEMENT_MALFORMED
-        self.content = content
-
-
-def TrimLWhiteSpace(data):
-    while data != [] and data[0][0] == CHAR_WHITESPACE:
-        data = data[1:]
-    return data
-
-
-def TrimRWhiteSpace(data):
-    while data != [] and data[-1][0] == CHAR_WHITESPACE:
-        data = data[:-1]
-    return data
-
-
-class cPDFParseDictionary:
-    def __init__(self, content, nocanonicalizedoutput):
-        self.content = content
-        self.nocanonicalizedoutput = nocanonicalizedoutput
-        dataTrimmed = TrimLWhiteSpace(TrimRWhiteSpace(self.content))
-        if dataTrimmed == []:
-            self.parsed = None
-        elif self.isOpenDictionary(dataTrimmed[0]) and (
-            self.isCloseDictionary(dataTrimmed[-1]) or self.couldBeCloseDictionary(dataTrimmed[-1])
-        ):
-            self.parsed = self.ParseDictionary(dataTrimmed)[0]
-        else:
-            self.parsed = None
-
-    def isOpenDictionary(self, token):
-        return token[0] == CHAR_DELIMITER and token[1] == "<<"
-
-    def isCloseDictionary(self, token):
-        return token[0] == CHAR_DELIMITER and token[1] == ">>"
-
-    def couldBeCloseDictionary(self, token):
-        return token[0] == CHAR_DELIMITER and token[1].rstrip().endswith(">>")
-
-    def ParseDictionary(self, tokens):
-        state = 0  # start
-        dictionary = []
-        while tokens != []:
-            if state == 0:
-                if self.isOpenDictionary(tokens[0]):
-                    state = 1
-                else:
-                    return None, tokens
-            elif state == 1:
-                if self.isOpenDictionary(tokens[0]):
-                    pass
-                elif self.isCloseDictionary(tokens[0]):
-                    return dictionary, tokens
-                elif tokens[0][0] != CHAR_WHITESPACE:
-                    key = ConditionalCanonicalize(tokens[0][1], self.nocanonicalizedoutput)
-                    value = []
-                    state = 2
-            elif state == 2:
-                if self.isOpenDictionary(tokens[0]):
-                    value, tokens = self.ParseDictionary(tokens)
-                    dictionary.append((key, value))
-                    state = 1
-                elif self.isCloseDictionary(tokens[0]):
-                    dictionary.append((key, value))
-                    return dictionary, tokens
-                elif value == [] and tokens[0][0] == CHAR_WHITESPACE:
-                    pass
-                elif value == [] and tokens[0][1] == "[":
-                    value.append(tokens[0][1])
-                elif value != [] and value[0] == "[" and tokens[0][1] != "]":
-                    value.append(tokens[0][1])
-                elif value != [] and value[0] == "[" and tokens[0][1] == "]":
-                    value.append(tokens[0][1])
-                    dictionary.append((key, value))
-                    value = []
-                    state = 1
-                elif value == [] and tokens[0][1] == "(":
-                    value.append(tokens[0][1])
-                elif value != [] and value[0] == "(" and tokens[0][1] != ")":
-                    if tokens[0][1][0] == "%":
-                        tokens = [tokens[0]] + cPDFTokenizer(StringIO(tokens[0][1][1:])).Tokens() + tokens[1:]
-                        value.append("%")
-                    else:
-                        value.append(tokens[0][1])
-                elif value != [] and value[0] == "(" and tokens[0][1] == ")":
-                    value.append(tokens[0][1])
-                    balanced = 0
-                    for item in value:
-                        if item == "(":
-                            balanced += 1
-                        elif item == ")":
-                            balanced -= 1
-                    if balanced < 0 and self.verbose:
-                        print("todo 11: " + repr(value))
-                    if balanced < 1:
-                        dictionary.append((key, value))
-                        value = []
-                        state = 1
-                elif value != [] and tokens[0][1][0] == "/":
-                    dictionary.append((key, value))
-                    key = ConditionalCanonicalize(tokens[0][1], self.nocanonicalizedoutput)
-                    value = []
-                    state = 2
-                else:
-                    value.append(ConditionalCanonicalize(tokens[0][1], self.nocanonicalizedoutput))
-            tokens = tokens[1:]
-
-    def Retrieve(self):
-        return self.parsed
-
-    def PrettyPrintSubElement(self, prefix, e):
-        if e[1] == []:
-            print("%s  %s" % (prefix, e[0]))
-        elif type(e[1][0]) == type(""):
-            if len(e[1]) == 3 and IsNumeric(e[1][0]) and e[1][1] == "0" and e[1][2] == "R":
-                joiner = " "
-            else:
-                joiner = ""
-            value = joiner.join(e[1]).strip()
-            reprValue = repr(value)
-            if "'" + value + "'" != reprValue:
-                value = reprValue
-            print("%s  %s %s" % (prefix, e[0], value))
-        else:
-            print("%s  %s" % (prefix, e[0]))
-            self.PrettyPrintSub(prefix + "    ", e[1])
-
-    def PrettyPrintSub(self, prefix, dictionary):
-        if dictionary != None:
-            print("%s<<" % prefix)
-            for e in dictionary:
-                self.PrettyPrintSubElement(prefix, e)
-            print("%s>>" % prefix)
-
-    def PrettyPrint(self, prefix):
-        self.PrettyPrintSub(prefix, self.parsed)
-
-    def Get(self, select):
-        for key, value in self.parsed:
-            if key == select:
-                return value
-        return None
-
-    def GetNestedSub(self, dictionary, select):
-        for key, value in dictionary:
-            if key == select:
-                return self.PrettyPrintSubElement("", [select, value])
-            if type(value) == type([]) and len(value) > 0 and type(value[0]) == type((None,)):
-                result = self.GetNestedSub(value, select)
-                if result != None:
-                    return self.PrettyPrintSubElement("", [select, result])
-        return None
-
-    def GetNested(self, select):
-        return self.GetNestedSub(self.parsed, select)
-
-
-def FormatOutput(data, raw):
-    if raw:
-        if type(data) == type([]):
-            return "".join(map(lambda x: x[1], data))
-        else:
-            return data
-    elif sys.version_info[0] > 2:
-        return ascii(data)
-    else:
-        return repr(data)
-
-
-# Fix for http://bugs.python.org/issue11395
-
-
-def StdoutWriteChunked(data):
-    if sys.version_info[0] > 2:
-        sys.stdout.buffer.write(data)
-    else:
-        while data != "":
-            sys.stdout.write(data[0:10000])
-            try:
-                sys.stdout.flush()
-            except IOError:
-                return
-            data = data[10000:]
-
-
-def IfWIN32SetBinary(io):
-    if sys.platform == "win32":
-        import msvcrt
-
-        msvcrt.setmode(io.fileno(), os.O_BINARY)
-
-
-def PrintOutputObject(object, options):
-    if options.dump == "-":
-        filtered = object.Stream(options.filter == True, options.overridingfilters)
-        if filtered == []:
-            filtered = ""
-        IfWIN32SetBinary(sys.stdout)
-        StdoutWriteChunked(filtered)
-        return
-
-    print("obj %d %d" % (object.id, object.version))
-    if object.objstm != None:
-        print(" Containing /ObjStm: %d %d" % object.objstm)
-    print(" Type: %s" % ConditionalCanonicalize(object.GetType(), options.nocanonicalizedoutput))
-    print(" Referencing: %s" % ", ".join(map(lambda x: "%s %s %s" % x, object.GetReferences())))
-    dataPrecedingStream = object.ContainsStream()
-    oPDFParseDictionary = None
-    if dataPrecedingStream:
-        print(" Contains stream")
-        if options.debug:
-            print(" %s" % FormatOutput(dataPrecedingStream, options.raw))
-        oPDFParseDictionary = cPDFParseDictionary(dataPrecedingStream, options.nocanonicalizedoutput)
-        if options.hash:
-            streamContent = object.Stream(False, options.overridingfilters)
-            print("  unfiltered")
-            print("   len: %6d md5: %s" % (len(streamContent), hashlib.md5(streamContent).hexdigest()))
-            print("   %s" % HexAsciiDumpLine(streamContent))
-            streamContent = object.Stream(True, options.overridingfilters)
-            print("  filtered")
-            print("   len: %6d md5: %s" % (len(streamContent), hashlib.md5(streamContent).hexdigest()))
-            print("   %s" % HexAsciiDumpLine(streamContent))
-            streamContent = None
-    else:
-        if options.debug or options.raw:
-            print(" %s" % FormatOutput(object.content, options.raw))
-        oPDFParseDictionary = cPDFParseDictionary(object.content, options.nocanonicalizedoutput)
-    print("")
-    oPDFParseDictionary.PrettyPrint("  ")
-    print("")
-    if options.filter and not options.dump:
-        filtered = object.Stream(overridingfilters=options.overridingfilters)
-        if filtered == []:
-            print(" %s" % FormatOutput(object.content, options.raw))
-        else:
-            print(" %s" % FormatOutput(filtered, options.raw))
-    if options.content:
-        if object.ContainsStream():
-            stream = object.Stream(False, options.overridingfilters)
-            if stream != []:
-                print(" %s" % FormatOutput(stream, options.raw))
-        else:
-            print("".join([token[1] for token in object.content]))
-
-    if options.dump:
-        filtered = object.Stream(options.filter == True, options.overridingfilters)
-        if filtered == []:
-            filtered = ""
-        try:
-            fDump = open(options.dump, "wb")
-            try:
-                fDump.write(C2BIP3(filtered))
-            except:
-                print("Error writing file %s" % options.dump)
-            fDump.close()
-        except:
-            print("Error writing file %s" % options.dump)
-    print("")
-    return
-
-
-def Canonicalize(sIn):
-    if sIn == "":
-        return sIn
-    elif sIn[0] != "/":
-        return sIn
-    elif sIn.find("#") == -1:
-        return sIn
-    else:
-        i = 0
-        iLen = len(sIn)
-        sCanonical = ""
-        while i < iLen:
-            if sIn[i] == "#" and i < iLen - 2:
-                try:
-                    sCanonical += chr(int(sIn[i + 1 : i + 3], 16))
-                    i += 2
-                except:
-                    sCanonical += sIn[i]
-            else:
-                sCanonical += sIn[i]
-            i += 1
-        return sCanonical
-
-
-def EqualCanonical(s1, s2):
-    return Canonicalize(s1) == s2
-
-
-def ConditionalCanonicalize(sIn, nocanonicalizedoutput):
-    if nocanonicalizedoutput:
-        return sIn
-    else:
-        return Canonicalize(sIn)
-
-
-# http://code.google.com/p/pdfminerr/source/browse/trunk/pdfminer/pdfminer/ascii85.py
-
-
-def ASCII85Decode(data):
-    import struct
-
-    n = b = 0
-    out = ""
-    for c in data:
-        if "!" <= c and c <= "u":
-            n += 1
-            b = b * 85 + (ord(c) - 33)
-            if n == 5:
-                out += struct.pack(">L", b)
-                n = b = 0
-        elif c == "z":
-            assert n == 0
-            out += "\0\0\0\0"
-        elif c == "~":
-            if n:
-                for _ in range(5 - n):
-                    b = b * 85 + 84
-                out += struct.pack(">L", b)[: n - 1]
-            break
-    return out
-
-
-def ASCIIHexDecode(data):
-    return binascii.unhexlify("".join([c for c in data if c not in " \t\n\r"]).rstrip(">"))
-
-
-# if inflating fails, we try to inflate byte per byte (sample 4da299d6e52bbb79c0ac00bad6a1d51d4d5fe42965a8d94e88a359e5277117e2)
-
-
-def FlateDecode(data):
-    try:
-        return zlib.decompress(C2BIP3(data))
-    except:
-        if len(data) <= 10:
-            raise
-        oDecompress = zlib.decompressobj()
-        oStringIO = StringIO()
-        count = 0
-        for byte in C2BIP3(data):
-            try:
-                oStringIO.write(oDecompress.decompress(byte))
-                count += 1
-            except:
-                break
-        if len(data) - count <= 2:
-            return oStringIO.getvalue()
-        else:
-            raise
-
-
-def RunLengthDecode(data):
-    f = StringIO(data)
-    decompressed = ""
-    runLength = ord(f.read(1))
-    while runLength:
-        if runLength < 128:
-            decompressed += f.read(runLength + 1)
-        if runLength > 128:
-            decompressed += f.read(1) * (257 - runLength)
-        if runLength == 128:
-            break
-        runLength = ord(f.read(1))
-    #    return sub(r'(\d+)(\D)', lambda m: m.group(2) * int(m.group(1)), data)
-    return decompressed
-
-
-#### LZW code sourced from pdfminer
-# Copyright (c) 2004-2009 Yusuke Shinyama <yusuke at cs dot nyu dot edu>
-#
-# Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated
-# documentation files (the "Software"), to deal in the Software without restriction, including without limitation
-# the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software,
-# and to permit persons to whom the Software is furnished to do so, subject to the following conditions:
-
-
-class LZWDecoder(object):
-    def __init__(self, fp):
-        self.fp = fp
-        self.buff = 0
-        self.bpos = 8
-        self.nbits = 9
-        self.table = None
-        self.prevbuf = None
-        return
-
-    def readbits(self, bits):
-        v = 0
-        while 1:
-            # the number of remaining bits we can get from the current buffer.
-            r = 8 - self.bpos
-            if bits <= r:
-                # |-----8-bits-----|
-                # |-bpos-|-bits-|  |
-                # |      |----r----|
-                v = (v << bits) | ((self.buff >> (r - bits)) & ((1 << bits) - 1))
-                self.bpos += bits
-                break
-            else:
-                # |-----8-bits-----|
-                # |-bpos-|---bits----...
-                # |      |----r----|
-                v = (v << r) | (self.buff & ((1 << r) - 1))
-                bits -= r
-                x = self.fp.read(1)
-                if not x:
-                    raise EOFError
-                self.buff = ord(x)
-                self.bpos = 0
-        return v
-
-    def feed(self, code):
-        x = ""
-        if code == 256:
-            self.table = [chr(c) for c in range(256)]  # 0-255
-            self.table.append(None)  # 256
-            self.table.append(None)  # 257
-            self.prevbuf = ""
-            self.nbits = 9
-        elif code == 257:
-            pass
-        elif not self.prevbuf:
-            x = self.prevbuf = self.table[code]
-        else:
-            if code < len(self.table):
-                x = self.table[code]
-                self.table.append(self.prevbuf + x[0])
-            else:
-                self.table.append(self.prevbuf + self.prevbuf[0])
-                x = self.table[code]
-            l = len(self.table)
-            if l == 511:
-                self.nbits = 10
-            elif l == 1023:
-                self.nbits = 11
-            elif l == 2047:
-                self.nbits = 12
-            self.prevbuf = x
-        return x
-
-    def run(self):
-        while 1:
-            try:
-                code = self.readbits(self.nbits)
-            except EOFError:
-                break
-            x = self.feed(code)
-            yield x
-        return
-
-
-####
-
-
-def LZWDecode(data):
-    return "".join(LZWDecoder(StringIO(data)).run())
-
-
-def PrintGenerateObject(object, options, newId=None):
-    if newId == None:
-        objectId = object.id
-    else:
-        objectId = newId
-    dataPrecedingStream = object.ContainsStream()
-    if dataPrecedingStream:
-        if options.filter:
-            decompressed = object.Stream(True, options.overridingfilters)
-            if decompressed == "No filters" or decompressed.startswith("Unsupported filter: "):
-                print(
-                    "    oPDF.stream(%d, %d, %s, %s)"
-                    % (
-                        objectId,
-                        object.version,
-                        repr(object.Stream(False, options.overridingfilters).rstrip()),
-                        repr(re.sub("/Length\s+\d+", "/Length %d", FormatOutput(dataPrecedingStream, True)).strip()),
-                    )
-                )
-            else:
-                dictionary = FormatOutput(dataPrecedingStream, True)
-                dictionary = re.sub(r"/Length\s+\d+", "", dictionary)
-                dictionary = re.sub(r"/Filter\s*/[a-zA-Z0-9]+", "", dictionary)
-                dictionary = re.sub(r"/Filter\s*\[.+\]", "", dictionary)
-                dictionary = re.sub(r"^\s*<<", "", dictionary)
-                dictionary = re.sub(r">>\s*$", "", dictionary)
-                dictionary = dictionary.strip()
-                print("    oPDF.stream2(%d, %d, %s, %s, 'f')" % (objectId, object.version, repr(decompressed.rstrip()), repr(dictionary)))
-        else:
-            print(
-                "    oPDF.stream(%d, %d, %s, %s)"
-                % (
-                    objectId,
-                    object.version,
-                    repr(object.Stream(False, options.overridingfilters).rstrip()),
-                    repr(re.sub("/Length\s+\d+", "/Length %d", FormatOutput(dataPrecedingStream, True)).strip()),
-                )
-            )
-    else:
-        print("    oPDF.indirectobject(%d, %d, %s)" % (objectId, object.version, repr(FormatOutput(object.content, True).strip())))
-
-
-def PrintObject(object, options):
-    if options.generate:
-        PrintGenerateObject(object, options)
-    else:
-        PrintOutputObject(object, options)
-
-
-def File2Strings(filename):
-    try:
-        f = open(filename, "r")
-    except:
-        return None
-    try:
-        return map(lambda line: line.rstrip("\n"), f.readlines())
-    except:
-        return None
-    finally:
-        f.close()
-
-
-def ProcessAt(argument):
-    if argument.startswith("@"):
-        strings = File2Strings(argument[1:])
-        if strings == None:
-            raise Exception("Error reading %s" % argument)
-        else:
-            return strings
-    else:
-        return [argument]
-
-
-def YARACompile(ruledata):
-    if ruledata.startswith("#"):
-        if ruledata.startswith("#h#"):
-            rule = binascii.a2b_hex(ruledata[3:])
-        elif ruledata.startswith("#b#"):
-            rule = binascii.a2b_base64(ruledata[3:])
-        elif ruledata.startswith("#s#"):
-            rule = 'rule string {strings: $a = "%s" ascii wide nocase condition: $a}' % ruledata[3:]
-        elif ruledata.startswith("#q#"):
-            rule = ruledata[3:].replace("'", '"')
-        else:
-            rule = ruledata[1:]
-        return yara.compile(source=rule)
-    else:
-        dFilepaths = {}
-        if os.path.isdir(ruledata):
-            for root, dirs, files in os.walk(ruledata):
-                for file in files:
-                    filename = os.path.join(root, file)
-                    dFilepaths[filename] = filename
-        else:
-            for filename in ProcessAt(ruledata):
-                dFilepaths[filename] = filename
-        return yara.compile(filepaths=dFilepaths)
-
-
-def AddDecoder(cClass):
-    global decoders
-
-    decoders.append(cClass)
-
-
-class cDecoderParent:
-    pass
-
-
-def GetScriptPath():
-    if getattr(sys, "frozen", False):
-        return os.path.dirname(sys.executable)
-    else:
-        return os.path.dirname(sys.argv[0])
-
-
-def LoadDecoders(decoders, verbose):
-    if decoders == "":
-        return
-    scriptPath = GetScriptPath()
-    for decoder in sum(map(ProcessAt, decoders.split(",")), []):
-        try:
-            if not decoder.lower().endswith(".py"):
-                decoder += ".py"
-            if os.path.dirname(decoder) == "":
-                if not os.path.exists(decoder):
-                    scriptDecoder = os.path.join(scriptPath, decoder)
-                    if os.path.exists(scriptDecoder):
-                        decoder = scriptDecoder
-            exec(open(decoder, "r").read(), globals(), globals())
-        except Exception as e:
-            print("Error loading decoder: %s" % decoder)
-            if verbose:
-                raise e
-
-
-class cIdentity(cDecoderParent):
-    name = "Identity function decoder"
-
-    def __init__(self, stream, options):
-        self.stream = stream
-        self.options = options
-        self.available = True
-
-    def Available(self):
-        return self.available
-
-    def Decode(self):
-        self.available = False
-        return self.stream
-
-    def Name(self):
-        return ""
-
-
-def DecodeFunction(decoders, options, stream):
-    if decoders == []:
-        return stream
-    return decoders[0](stream, options.decoderoptions).Decode()
-
-
-class cDumpStream:
-    def __init__(self):
-        self.text = ""
-
-    def Addline(self, line):
-        if line != "":
-            self.text += line + "\n"
-
-    def Content(self):
-        return self.text
-
-
-def HexDump(data):
-    oDumpStream = cDumpStream()
-    hexDump = ""
-    for i, b in enumerate(data):
-        if i % dumplinelength == 0 and hexDump != "":
-            oDumpStream.Addline(hexDump)
-            hexDump = ""
-        hexDump += IFF(hexDump == "", "", " ") + "%02X" % ord(b)
-    oDumpStream.Addline(hexDump)
-    return oDumpStream.Content()
-
-
-def CombineHexAscii(hexDump, asciiDump):
-    if hexDump == "":
-        return ""
-    return hexDump + "  " + (" " * (3 * (dumplinelength - len(asciiDump)))) + asciiDump
-
-
-def HexAsciiDump(data):
-    oDumpStream = cDumpStream()
-    hexDump = ""
-    asciiDump = ""
-    for i, b in enumerate(data):
-        if i % dumplinelength == 0:
-            if hexDump != "":
-                oDumpStream.Addline(CombineHexAscii(hexDump, asciiDump))
-            hexDump = "%08X:" % i
-            asciiDump = ""
-        hexDump += " %02X" % ord(b)
-        asciiDump += IFF(ord(b) >= 32, b, ".")
-    oDumpStream.Addline(CombineHexAscii(hexDump, asciiDump))
-    return oDumpStream.Content()
-
-
-def HexAsciiDumpLine(data):
-    return HexAsciiDump(data[0:16])[10:-1]
-
-
-def ParseINIFile():
-    oConfigParser = ConfigParser.ConfigParser(allow_no_value=True)
-    oConfigParser.optionxform = str
-    oConfigParser.read(os.path.join(GetScriptPath(), "pdfid.ini"))
-    keywords = []
-    if oConfigParser.has_section("keywords"):
-        for key, value in oConfigParser.items("keywords"):
-            if not key in keywords:
-                keywords.append(key)
-    return keywords
-
-
-def MatchObjectID(id, selection):
-    return str(id) in selection.split(",")
-
-
-def GetArguments():
-    arguments = sys.argv[1:]
-    envvar = os.getenv("PDFPARSER_OPTIONS")
-    if envvar == None:
-        return arguments
-    return envvar.split(" ") + arguments
-
-
-def Main():
-    """pdf-parser, use it to parse a PDF document
-    """
-
-    global decoders
-
-    oParser = optparse.OptionParser(usage="usage: %prog [options] pdf-file|zip-file|url\n" + __description__, version="%prog " + __version__)
-    oParser.add_option("-m", "--man", action="store_true", default=False, help="Print manual")
-    oParser.add_option("-s", "--search", help="string to search in indirect objects (except streams)")
-    oParser.add_option(
-        "-f",
-        "--filter",
-        action="store_true",
-        default=False,
-        help="pass stream object through filters (FlateDecode, ASCIIHexDecode, ASCII85Decode, LZWDecode and RunLengthDecode only)",
-    )
-    oParser.add_option("-o", "--object", help="id(s) of indirect object(s) to select, use comma (,) to separate ids (version independent)")
-    oParser.add_option("-r", "--reference", help="id of indirect object being referenced (version independent)")
-    oParser.add_option("-e", "--elements", help="type of elements to select (cxtsi)")
-    oParser.add_option("-w", "--raw", action="store_true", default=False, help="raw output for data and filters")
-    oParser.add_option("-a", "--stats", action="store_true", default=False, help="display stats for pdf document")
-    oParser.add_option("-t", "--type", help="type of indirect object to select")
-    oParser.add_option("-O", "--objstm", action="store_true", default=False, help="parse stream of /ObjStm objects")
-    oParser.add_option("-v", "--verbose", action="store_true", default=False, help="display malformed PDF elements")
-    oParser.add_option("-x", "--extract", help="filename to extract malformed content to")
-    oParser.add_option("-H", "--hash", action="store_true", default=False, help="display hash of objects")
-    oParser.add_option("-n", "--nocanonicalizedoutput", action="store_true", default=False, help="do not canonicalize the output")
-    oParser.add_option("-d", "--dump", help="filename to dump stream content to")
-    oParser.add_option("-D", "--debug", action="store_true", default=False, help="display debug info")
-    oParser.add_option(
-        "-c",
-        "--content",
-        action="store_true",
-        default=False,
-        help="display the content for objects without streams or with streams without filters",
-    )
-    oParser.add_option("--searchstream", help="string to search in streams")
-    oParser.add_option("--unfiltered", action="store_true", default=False, help="search in unfiltered streams")
-    oParser.add_option("--casesensitive", action="store_true", default=False, help="case sensitive search in streams")
-    oParser.add_option("--regex", action="store_true", default=False, help="use regex to search in streams")
-    oParser.add_option(
-        "--overridingfilters", type=str, default="", help="override filters with given filters (use raw for the raw stream content)"
-    )
-    oParser.add_option(
-        "-g", "--generate", action="store_true", default=False, help="generate a Python program that creates the parsed PDF file"
-    )
-    oParser.add_option(
-        "--generateembedded", type=int, default=0, help="generate a Python program that embeds the selected indirect object as a file"
-    )
-    oParser.add_option("-y", "--yara", help="YARA rule (or directory or @file) to check streams (can be used with option --unfiltered)")
-    oParser.add_option("--yarastrings", action="store_true", default=False, help="Print YARA strings")
-    oParser.add_option("--decoders", type=str, default="", help="decoders to load (separate decoders with a comma , ; @file supported)")
-    oParser.add_option("--decoderoptions", type=str, default="", help="options for the decoder")
-    oParser.add_option("-k", "--key", help="key to search in dictionaries")
-    (options, args) = oParser.parse_args(GetArguments())
-
-    if options.man:
-        oParser.print_help()
-        PrintManual()
-        return 0
-
-    if len(args) != 1:
-        oParser.print_help()
-        print("")
-        print("  %s" % __description__)
-        print("  Source code put in the public domain by Didier Stevens, no Copyright")
-        print("  Use at your own risk")
-        print("  https://DidierStevens.com")
-
-    else:
-        decoders = []
-        LoadDecoders(options.decoders, True)
-
-        oPDFParser = cPDFParser(args[0], options.verbose, options.extract)
-        cntComment = 0
-        cntXref = 0
-        cntTrailer = 0
-        cntStartXref = 0
-        cntIndirectObject = 0
-        dicObjectTypes = {}
-        keywords = ["/JS", "/JavaScript", "/AA", "/OpenAction", "/AcroForm", "/RichMedia", "/Launch", "/EmbeddedFile", "/XFA", "/URI"]
-        for extrakeyword in ParseINIFile():
-            if not extrakeyword in keywords:
-                keywords.append(extrakeyword)
-
-        #        dKeywords = {keyword: [] for keyword in keywords}
-        # Done for compatibility with 2.6.6
-        dKeywords = {}
-        for keyword in keywords:
-            dKeywords[keyword] = []
-
-        selectComment = False
-        selectXref = False
-        selectTrailer = False
-        selectStartXref = False
-        selectIndirectObject = False
-        if options.elements:
-            for c in options.elements:
-                if c == "c":
-                    selectComment = True
-                elif c == "x":
-                    selectXref = True
-                elif c == "t":
-                    selectTrailer = True
-                elif c == "s":
-                    selectStartXref = True
-                elif c == "i":
-                    selectIndirectObject = True
-                else:
-                    print("Error: unknown --elements value %s" % c)
-                    return
-        else:
-            selectIndirectObject = True
-            if (
-                not options.search
-                and not options.object
-                and not options.reference
-                and not options.type
-                and not options.searchstream
-                and not options.key
-            ):
-                selectComment = True
-                selectXref = True
-                selectTrailer = True
-                selectStartXref = True
-            if options.search or options.key or options.reference:
-                selectTrailer = True
-
-        if options.type == "-":
-            optionsType = ""
-        else:
-            optionsType = options.type
-
-        if options.generate or options.generateembedded != 0:
-            savedRoot = ["1", "0", "R"]
-            print("#!/usr/bin/python")
-            print("")
-            print('"""')
-            print("")
-            print("Program generated by pdf-parser.py by Didier Stevens")
-            print("https://DidierStevens.com")
-            print("Use at your own risk")
-            print("")
-            print("Input PDF file: %s" % args[0])
-            print("This Python program was created on: %s" % Timestamp())
-            print("")
-            print('"""')
-            print("")
-            print("import mPDF")
-            print("import sys")
-            print("")
-            print("def Main():")
-            print("    if len(sys.argv) != 2:")
-            print("        print('Usage: %s pdf-file' % sys.argv[0])")
-            print("        return")
-            print("    oPDF = mPDF.cPDF(sys.argv[1])")
-
-        if options.generateembedded != 0:
-            print("    oPDF.header('1.1')")
-            print(r"    oPDF.comment('\xd0\xd0\xd0\xd0')")
-            print(
-                r"    oPDF.indirectobject(1, 0, '<<\r\n /Type /Catalog\r\n /Outlines 2 0 R\r\n /Pages 3 0 R\r\n /Names << /EmbeddedFiles << /Names [(test.bin) 7 0 R] >> >>\r\n>>')"
-            )
-            print(r"    oPDF.indirectobject(2, 0, '<<\r\n /Type /Outlines\r\n /Count 0\r\n>>')")
-            print(r"    oPDF.indirectobject(3, 0, '<<\r\n /Type /Pages\r\n /Kids [4 0 R]\r\n /Count 1\r\n>>')")
-            print(
-                r"    oPDF.indirectobject(4, 0, '<<\r\n /Type /Page\r\n /Parent 3 0 R\r\n /MediaBox [0 0 612 792]\r\n /Contents 5 0 R\r\n /Resources <<\r\n             /ProcSet [/PDF /Text]\r\n             /Font << /F1 6 0 R >>\r\n            >>\r\n>>')"
-            )
-            print(r"    oPDF.stream(5, 0, 'BT /F1 12 Tf 70 700 Td 15 TL (This PDF document embeds file test.bin) Tj ET', '<< /Length %d >>')")
-            print(
-                r"    oPDF.indirectobject(6, 0, '<<\r\n /Type /Font\r\n /Subtype /Type1\r\n /Name /F1\r\n /BaseFont /Helvetica\r\n /Encoding /MacRomanEncoding\r\n>>')"
-            )
-            print(r"    oPDF.indirectobject(7, 0, '<<\r\n /Type /Filespec\r\n /F (test.bin)\r\n /EF << /F 8 0 R >>\r\n>>')")
-
-        if options.yara != None:
-            if not "yara" in sys.modules:
-                print("Error: option yara requires the YARA Python module.")
-                return
-            rules = YARACompile(options.yara)
-
-        oPDFParserOBJSTM = None
-        while True:
-            if oPDFParserOBJSTM == None:
-                object = oPDFParser.GetObject()
-            else:
-                object = oPDFParserOBJSTM.GetObject()
-                if object == None:
-                    oPDFParserOBJSTM = None
-                    object = oPDFParser.GetObject()
-            if options.objstm and hasattr(object, "GetType") and EqualCanonical(object.GetType(), "/ObjStm") and object.ContainsStream():
-                # parsing objects inside an /ObjStm object by extracting & parsing the stream content to create a synthesized PDF document, that is then parsed by cPDFParser
-                oPDFParseDictionary = cPDFParseDictionary(object.ContainsStream(), options.nocanonicalizedoutput)
-                numberOfObjects = int(oPDFParseDictionary.Get("/N")[0])
-                offsetFirstObject = int(oPDFParseDictionary.Get("/First")[0])
-                indexes = list(map(int, C2SIP3(object.Stream())[:offsetFirstObject].strip().split(" ")))
-                if len(indexes) % 2 != 0 or len(indexes) / 2 != numberOfObjects:
-                    raise Exception("Error in index of /ObjStm stream")
-                streamObject = C2SIP3(object.Stream()[offsetFirstObject:])
-                synthesizedPDF = ""
-                while len(indexes) > 0:
-                    objectNumber = indexes[0]
-                    offset = indexes[1]
-                    indexes = indexes[2:]
-                    if len(indexes) >= 2:
-                        offsetNextObject = indexes[1]
-                    else:
-                        offsetNextObject = len(streamObject)
-                    synthesizedPDF += "%d 0 obj\n%s\nendobj\n" % (objectNumber, streamObject[offset:offsetNextObject])
-                oPDFParserOBJSTM = cPDFParser(StringIO(synthesizedPDF), options.verbose, options.extract, (object.id, object.version))
-            if object != None:
-                if options.stats:
-                    if object.type == PDF_ELEMENT_COMMENT:
-                        cntComment += 1
-                    elif object.type == PDF_ELEMENT_XREF:
-                        cntXref += 1
-                    elif object.type == PDF_ELEMENT_TRAILER:
-                        cntTrailer += 1
-                    elif object.type == PDF_ELEMENT_STARTXREF:
-                        cntStartXref += 1
-                    elif object.type == PDF_ELEMENT_INDIRECT_OBJECT:
-                        cntIndirectObject += 1
-                        type1 = object.GetType()
-                        if not type1 in dicObjectTypes:
-                            dicObjectTypes[type1] = [object.id]
-                        else:
-                            dicObjectTypes[type1].append(object.id)
-                        for keyword in dKeywords.keys():
-                            if object.ContainsName(keyword):
-                                dKeywords[keyword].append(object.id)
-                else:
-                    if object.type == PDF_ELEMENT_COMMENT and selectComment:
-                        if options.generate:
-                            comment = object.comment[1:].rstrip()
-                            if re.match("PDF-\d\.\d", comment):
-                                print("    oPDF.header('%s')" % comment[4:])
-                            elif comment != "%EOF":
-                                print("    oPDF.comment(%s)" % repr(comment))
-                        elif options.yara == None and options.generateembedded == 0:
-                            print("PDF Comment %s" % FormatOutput(object.comment, options.raw))
-                            print("")
-                    elif object.type == PDF_ELEMENT_XREF and selectXref:
-                        if not options.generate and options.yara == None and options.generateembedded == 0:
-                            if options.debug:
-                                print("xref %s" % FormatOutput(object.content, options.raw))
-                            else:
-                                print("xref")
-                            print("")
-                    elif object.type == PDF_ELEMENT_TRAILER and selectTrailer:
-                        oPDFParseDictionary = cPDFParseDictionary(object.content[1:], options.nocanonicalizedoutput)
-                        if options.generate:
-                            result = oPDFParseDictionary.Get("/Root")
-                            if result != None:
-                                savedRoot = result
-                        elif options.yara == None and options.generateembedded == 0:
-                            if (
-                                not options.search
-                                and not options.key
-                                and not options.reference
-                                or options.search
-                                and object.Contains(options.search)
-                            ):
-                                if oPDFParseDictionary == None:
-                                    print("trailer %s" % FormatOutput(object.content, options.raw))
-                                else:
-                                    print("trailer")
-                                    oPDFParseDictionary.PrettyPrint("  ")
-                                print("")
-                            elif options.key:
-                                if oPDFParseDictionary.parsed != None:
-                                    result = oPDFParseDictionary.GetNested(options.key)
-                                    if result != None:
-                                        print(result)
-                            elif options.reference:
-                                for key, value in oPDFParseDictionary.Retrieve():
-                                    if value == [str(options.reference), "0", "R"]:
-                                        print("trailer")
-                                        oPDFParseDictionary.PrettyPrint("  ")
-                    elif object.type == PDF_ELEMENT_STARTXREF and selectStartXref:
-                        if not options.generate and options.yara == None and options.generateembedded == 0:
-                            print("startxref %d" % object.index)
-                            print("")
-                    elif object.type == PDF_ELEMENT_INDIRECT_OBJECT and selectIndirectObject:
-                        if options.search:
-                            if object.Contains(options.search):
-                                PrintObject(object, options)
-                        elif options.key:
-                            contentDictionary = object.ContainsStream()
-                            if not contentDictionary:
-                                contentDictionary = object.content[1:]
-                            oPDFParseDictionary = cPDFParseDictionary(contentDictionary, options.nocanonicalizedoutput)
-                            if oPDFParseDictionary.parsed != None:
-                                result = oPDFParseDictionary.GetNested(options.key)
-                                if result != None:
-                                    print(result)
-                        elif options.object:
-                            if MatchObjectID(object.id, options.object):
-                                PrintObject(object, options)
-                        elif options.reference:
-                            if object.References(options.reference):
-                                PrintObject(object, options)
-                        elif options.type:
-                            if EqualCanonical(object.GetType(), optionsType):
-                                PrintObject(object, options)
-                        elif options.hash:
-                            print("obj %d %d" % (object.id, object.version))
-                            rawContent = FormatOutput(object.content, True)
-                            print(" len: %d md5: %s" % (len(rawContent), hashlib.md5(rawContent).hexdigest()))
-                            print("")
-                        elif options.searchstream:
-                            if object.StreamContains(
-                                options.searchstream, not options.unfiltered, options.casesensitive, options.regex, options.overridingfilters
-                            ):
-                                PrintObject(object, options)
-                        elif options.yara != None:
-                            results = object.StreamYARAMatch(
-                                rules, decoders, options.decoderoptions, not options.unfiltered, options.overridingfilters
-                            )
-                            if results != None and results != []:
-                                for result in results:
-                                    for yaraResult in result[1]:
-                                        print(
-                                            "YARA rule%s: %s (%s)"
-                                            % (
-                                                IFF(result[0] == "", "", " (stream decoder: %s)" % result[0]),
-                                                yaraResult.rule,
-                                                yaraResult.namespace,
-                                            )
-                                        )
-                                        if options.yarastrings:
-                                            for stringdata in yaraResult.strings:
-                                                print("%06x %s:" % (stringdata[0], stringdata[1]))
-                                                print(" %s" % binascii.hexlify(C2BIP3(stringdata[2])))
-                                                print(" %s" % repr(stringdata[2]))
-                                    PrintObject(object, options)
-                        elif options.generateembedded != 0:
-                            if object.id == options.generateembedded:
-                                PrintGenerateObject(object, options, 8)
-                        else:
-                            PrintObject(object, options)
-                    elif object.type == PDF_ELEMENT_MALFORMED:
-                        try:
-                            fExtract = open(options.extract, "wb")
-                            try:
-                                fExtract.write(C2BIP3(object.content))
-                            except:
-                                print("Error writing file %s" % options.extract)
-                            fExtract.close()
-                        except:
-                            print("Error writing file %s" % options.extract)
-            else:
-                break
-
-        if options.stats:
-            print("Comment: %s" % cntComment)
-            print("XREF: %s" % cntXref)
-            print("Trailer: %s" % cntTrailer)
-            print("StartXref: %s" % cntStartXref)
-            print("Indirect object: %s" % cntIndirectObject)
-            for key in sorted(dicObjectTypes.keys()):
-                print(" %s %d: %s" % (key, len(dicObjectTypes[key]), ", ".join(map(lambda x: "%d" % x, dicObjectTypes[key]))))
-            if sum(map(len, dKeywords.values())) > 0:
-                print("Search keywords:")
-                for keyword in keywords:
-                    if len(dKeywords[keyword]) > 0:
-                        print(" %s %d: %s" % (keyword, len(dKeywords[keyword]), ", ".join(map(lambda x: "%d" % x, dKeywords[keyword]))))
-
-        if options.generate or options.generateembedded != 0:
-            print("    oPDF.xrefAndTrailer('%s')" % " ".join(savedRoot))
-            print("")
-            print("if __name__ == '__main__':")
-            print("    Main()")
-
-
-def TestPythonVersion(enforceMaximumVersion=False, enforceMinimumVersion=False):
-    if sys.version_info[0:3] > __maximum_python_version__:
-        if enforceMaximumVersion:
-            print("This program does not work with this version of Python (%d.%d.%d)" % sys.version_info[0:3])
-            print("Please use Python version %d.%d.%d" % __maximum_python_version__)
-            sys.exit()
-        else:
-            print("This program has not been tested with this version of Python (%d.%d.%d)" % sys.version_info[0:3])
-            print("Should you encounter problems, please use Python version %d.%d.%d" % __maximum_python_version__)
-    if sys.version_info[0:3] < __minimum_python_version__:
-        if enforceMinimumVersion:
-            print("This program does not work with this version of Python (%d.%d.%d)" % sys.version_info[0:3])
-            print("Please use Python version %d.%d.%d" % __maximum_python_version__)
-            sys.exit()
-        else:
-            print("This program has not been tested with this version of Python (%d.%d.%d)" % sys.version_info[0:3])
-            print("Should you encounter problems, please use Python version %d.%d.%d" % __maximum_python_version__)
-
-
-if __name__ == "__main__":
-    TestPythonVersion()
-    Main()
diff --git a/lib/cuckoo/common/pdftools/pdfid.py b/lib/cuckoo/common/pdftools/pdfid.py
deleted file mode 100644
index 60176162436..00000000000
--- a/lib/cuckoo/common/pdftools/pdfid.py
+++ /dev/null
@@ -1,1537 +0,0 @@
-#!/usr/bin/env python
-from __future__ import absolute_import
-from __future__ import print_function
-
-__description__ = "Tool to test a PDF file"
-__author__ = "Didier Stevens"
-__version__ = "0.2.7"
-__date__ = "2019/11/05"
-
-"""
-
-Tool to test a PDF file
-
-Source code put in public domain by Didier Stevens, no Copyright
-https://DidierStevens.com
-Use at your own risk
-
-History:
-  2009/03/27: start
-  2009/03/28: scan option
-  2009/03/29: V0.0.2: xml output
-  2009/03/31: V0.0.3: /ObjStm suggested by Dion
-  2009/04/02: V0.0.4: added ErrorMessage
-  2009/04/20: V0.0.5: added Dates
-  2009/04/21: V0.0.6: added entropy
-  2009/04/22: added disarm
-  2009/04/29: finished disarm
-  2009/05/13: V0.0.7: added cPDFEOF
-  2009/07/24: V0.0.8: added /AcroForm and /RichMedia, simplified %PDF header regex, extra date format (without TZ)
-  2009/07/25: added input redirection, option --force
-  2009/10/13: V0.0.9: added detection for CVE-2009-3459; added /RichMedia to disarm
-  2010/01/11: V0.0.10: relaxed %PDF header checking
-  2010/04/28: V0.0.11: added /Launch
-  2010/09/21: V0.0.12: fixed cntCharsAfterLastEOF bug; fix by Russell Holloway
-  2011/12/29: updated for Python 3, added keyword /EmbeddedFile
-  2012/03/03: added PDFiD2JSON; coded by Brandon Dixon
-  2013/02/10: V0.1.0: added http/https support; added support for ZIP file with password 'infected'
-  2013/03/11: V0.1.1: fixes for Python 3
-  2013/03/13: V0.1.2: Added error handling for files; added /XFA
-  2013/11/01: V0.2.0: Added @file & plugins
-  2013/11/02: continue
-  2013/11/04: added options -c, -m, -v
-  2013/11/06: added option -S
-  2013/11/08: continue
-  2013/11/09: added option -o
-  2013/11/15: refactoring
-  2014/09/30: added CSV header
-  2014/10/16: V0.2.1: added output when plugin & file not pdf
-  2014/10/18: some fixes for Python 3
-  2015/08/12: V0.2.2: added option pluginoptions
-  2015/08/13: added plugin Instructions method
-  2016/04/12: added option literal
-  2017/10/29: added pdfid.ini support
-  2017/11/05: V0.2.3: added option -n
-  2018/01/03: V0.2.4: bugfix entropy calculation for PDFs without streams; sample 28cb208d976466b295ee879d2d233c8a https://twitter.com/DubinRan/status/947783629123416069
-  2018/01/15: bugfix ConfigParser privately reported
-  2018/01/29: bugfix oPDFEOF.cntCharsAfterLastEOF when no %%EOF
-  2018/07/05: V0.2.5 introduced cExpandFilenameArguments; renamed option literal to literalfilenames
-  2019/09/30: V0.2.6 color bugfix, thanks to Leo
-  2019/11/05: V0.2.7 fixed plugin path when compiled with pyinstaller
-
-Todo:
-  - update XML example (entropy, EOF)
-  - code review, cleanup
-"""
-
-import random
-import optparse
-import os
-import re
-import xml.dom.minidom
-import traceback
-import math
-import operator
-import os.path
-import sys
-import json
-import zipfile
-import collections
-import glob
-import fnmatch
-import binascii
-if sys.version_info[0] >= 3:
-    import urllib.request as urllib23
-else:
-    import urllib2 as urllib23
-if sys.version_info[0] >= 3:
-    import configparser as ConfigParser
-else:
-    import ConfigParser
-
-# Convert 2 Bytes If Python 3
-
-FCH_FILENAME = 0
-FCH_DATA = 1
-FCH_ERROR = 2
-
-
-def C2BIP3(string):
-    if sys.version_info[0] > 2:
-        return bytes([ord(x) for x in string])
-    else:
-        return string
-
-
-def Hex2Bytes(hexadecimal):
-    if len(hexadecimal) % 2 == 1:
-        hexadecimal = '0' + hexadecimal
-    try:
-        return binascii.a2b_hex(hexadecimal)
-    except:
-        return None
-
-
-def LoremIpsumSentence(minimum, maximum):
-    words = ['lorem', 'ipsum', 'dolor', 'sit', 'amet', 'consectetur', 'adipiscing', 'elit', 'etiam', 'tortor', 'metus', 'cursus', 'sed', 'sollicitudin', 'ac', 'sagittis', 'eget', 'massa', 'praesent', 'sem', 'fermentum', 'dignissim', 'in', 'vel', 'augue', 'scelerisque', 'auctor', 'libero', 'nam', 'a', 'gravida', 'odio', 'duis', 'vestibulum', 'vulputate', 'quam', 'nec', 'cras', 'nibh', 'feugiat', 'ut', 'vitae', 'ornare', 'justo', 'orci', 'varius', 'natoque', 'penatibus', 'et', 'magnis', 'dis', 'parturient', 'montes', 'nascetur', 'ridiculus', 'mus', 'curabitur', 'nisl', 'egestas', 'urna', 'iaculis', 'lectus', 'maecenas', 'ultrices', 'velit', 'eu', 'porta', 'hac', 'habitasse', 'platea', 'dictumst', 'integer', 'id', 'commodo', 'mauris', 'interdum', 'malesuada', 'fames', 'ante', 'primis', 'faucibus', 'accumsan', 'pharetra', 'aliquam', 'nunc', 'at', 'est', 'non', 'leo', 'nulla', 'sodales', 'porttitor', 'facilisis', 'aenean',
-             'condimentum', 'rutrum', 'facilisi', 'tincidunt', 'laoreet', 'ultricies', 'neque', 'diam', 'euismod', 'consequat', 'tempor', 'elementum', 'lobortis', 'erat', 'ligula', 'risus', 'donec', 'phasellus', 'quisque', 'vivamus', 'pellentesque', 'tristique', 'venenatis', 'purus', 'mi', 'dictum', 'posuere', 'fringilla', 'quis', 'magna', 'pretium', 'felis', 'pulvinar', 'lacinia', 'proin', 'viverra', 'lacus', 'suscipit', 'aliquet', 'dui', 'molestie', 'dapibus', 'mollis', 'suspendisse', 'sapien', 'blandit', 'morbi', 'tellus', 'enim', 'maximus', 'semper', 'arcu', 'bibendum', 'convallis', 'hendrerit', 'imperdiet', 'finibus', 'fusce', 'congue', 'ullamcorper', 'placerat', 'nullam', 'eros', 'habitant', 'senectus', 'netus', 'turpis', 'luctus', 'volutpat', 'rhoncus', 'mattis', 'nisi', 'ex', 'tempus', 'eleifend', 'vehicula', 'class', 'aptent', 'taciti', 'sociosqu', 'ad', 'litora', 'torquent', 'per', 'conubia', 'nostra', 'inceptos', 'himenaeos']
-    sample = random.sample(words, random.randint(minimum, maximum))
-    sample[0] = sample[0].capitalize()
-    return ' '.join(sample) + '.'
-
-
-def LoremIpsum(sentences):
-    return ' '.join([LoremIpsumSentence(15, 30) for i in range(sentences)])
-
-
-STATE_START = 0
-STATE_IDENTIFIER = 1
-STATE_STRING = 2
-STATE_SPECIAL_CHAR = 3
-STATE_ERROR = 4
-
-FUNCTIONNAME_REPEAT = 'repeat'
-FUNCTIONNAME_RANDOM = 'random'
-FUNCTIONNAME_CHR = 'chr'
-FUNCTIONNAME_LOREMIPSUM = 'loremipsum'
-
-
-def Tokenize(expression):
-    result = []
-    token = ''
-    state = STATE_START
-    while expression != '':
-        char = expression[0]
-        expression = expression[1:]
-        if char == "'":
-            if state == STATE_START:
-                state = STATE_STRING
-            elif state == STATE_IDENTIFIER:
-                result.append([STATE_IDENTIFIER, token])
-                state = STATE_STRING
-                token = ''
-            elif state == STATE_STRING:
-                result.append([STATE_STRING, token])
-                state = STATE_START
-                token = ''
-        elif char >= '0' and char <= '9' or char.lower() >= 'a' and char.lower() <= 'z':
-            if state == STATE_START:
-                token = char
-                state = STATE_IDENTIFIER
-            else:
-                token += char
-        elif char == ' ':
-            if state == STATE_IDENTIFIER:
-                result.append([STATE_IDENTIFIER, token])
-                token = ''
-                state = STATE_START
-            elif state == STATE_STRING:
-                token += char
-        else:
-            if state == STATE_IDENTIFIER:
-                result.append([STATE_IDENTIFIER, token])
-                token = ''
-                state = STATE_START
-                result.append([STATE_SPECIAL_CHAR, char])
-            elif state == STATE_STRING:
-                token += char
-            else:
-                result.append([STATE_SPECIAL_CHAR, char])
-                token = ''
-    if state == STATE_IDENTIFIER:
-        result.append([state, token])
-    elif state == STATE_STRING:
-        result = [[STATE_ERROR, 'Error: string not closed', token]]
-    return result
-
-
-def InterpretBytes(token):
-    if token[0] == STATE_STRING:
-        return token[1]
-    if token[0] != STATE_IDENTIFIER:
-        return None
-    if not token[1].startswith('0x'):
-        return None
-    return Hex2Bytes(token[1][2:])
-
-
-def CheckFunction(functionname, arguments, countarguments, maxcountarguments=None):
-    if maxcountarguments is None:
-        if countarguments == 0 and len(arguments) != 0:
-            print('Error: function %s takes no arguments, %d are given' % (functionname, len(arguments)))
-            return True
-        if countarguments == 1 and len(arguments) != 1:
-            print('Error: function %s takes 1 argument, %d are given' % (functionname, len(arguments)))
-            return True
-        if countarguments != len(arguments):
-            print('Error: function %s takes %d arguments, %d are given' % (functionname, countarguments, len(arguments)))
-            return True
-    else:
-        if len(arguments) < countarguments or len(arguments) > maxcountarguments:
-            print('Error: function %s takes between %d and %d arguments, %d are given' % (functionname, countarguments, maxcountarguments, len(arguments)))
-            return True
-    return False
-
-
-def InterpretInteger(token):
-    if token[0] != STATE_IDENTIFIER:
-        return None
-    try:
-        return int(token[1])
-    except:
-        return None
-
-def C2IIP2(data):
-    if sys.version_info[0] > 2:
-        return data
-    else:
-        return ord(data)
-
-
-def InterpretHexInteger(token):
-    if token[0] != STATE_IDENTIFIER:
-        return None
-    if not token[1].startswith('0x'):
-        return None
-    bytes = Hex2Bytes(token[1][2:])
-    if bytes is None:
-        return None
-    integer = 0
-    for byte in bytes:
-        integer = integer * 0x100 + C2IIP2(byte)
-    return integer
-
-
-def InterpretNumber(token):
-    number = InterpretInteger(token)
-    if number is None:
-        return InterpretHexInteger(token)
-    else:
-        return number
-
-
-def CheckNumber(argument, minimum=None, maximum=None):
-    number = InterpretNumber(argument)
-    if number is None:
-        print('Error: argument should be a number: %s' % argument[1])
-        return None
-    if minimum is not None and number < minimum:
-        print('Error: argument should be minimum %d: %d' % (minimum, number))
-        return None
-    if maximum is not None and number > maximum:
-        print('Error: argument should be maximum %d: %d' % (maximum, number))
-        return None
-    return number
-
-
-def ParseFunction(tokens):
-    if len(tokens) == 0:
-        print('Parsing error')
-        return None, tokens
-    if tokens[0][0] == STATE_STRING or tokens[0][0] == STATE_IDENTIFIER and tokens[0][1].startswith('0x'):
-        return [[FUNCTIONNAME_REPEAT, [[STATE_IDENTIFIER, '1'], tokens[0]]], tokens[1:]]
-    if tokens[0][0] != STATE_IDENTIFIER:
-        print('Parsing error')
-        return None, tokens
-    function = tokens[0][1]
-    tokens = tokens[1:]
-    if len(tokens) == 0:
-        print('Parsing error')
-        return None, tokens
-    if tokens[0][0] != STATE_SPECIAL_CHAR or tokens[0][1] != '(':
-        print('Parsing error')
-        return None, tokens
-    tokens = tokens[1:]
-    if len(tokens) == 0:
-        print('Parsing error')
-        return None, tokens
-    arguments = []
-    while True:
-        if tokens[0][0] != STATE_IDENTIFIER and tokens[0][0] != STATE_STRING:
-            print('Parsing error')
-            return None, tokens
-        arguments.append(tokens[0])
-        tokens = tokens[1:]
-        if len(tokens) == 0:
-            print('Parsing error')
-            return None, tokens
-        if tokens[0][0] != STATE_SPECIAL_CHAR or (tokens[0][1] != ',' and tokens[0][1] != ')'):
-            print('Parsing error')
-            return None, tokens
-        if tokens[0][0] == STATE_SPECIAL_CHAR and tokens[0][1] == ')':
-            tokens = tokens[1:]
-            break
-        tokens = tokens[1:]
-        if len(tokens) == 0:
-            print('Parsing error')
-            return None, tokens
-    return [[function, arguments], tokens]
-
-
-def Parse(expression):
-    tokens = Tokenize(expression)
-    if len(tokens) == 0:
-        print('Parsing error')
-        return None
-    if tokens[0][0] == STATE_ERROR:
-        print(tokens[0][1])
-        print(tokens[0][2])
-        print(expression)
-        return None
-    functioncalls = []
-    while True:
-        functioncall, tokens = ParseFunction(tokens)
-        if functioncall is None:
-            return None
-        functioncalls.append(functioncall)
-        if len(tokens) == 0:
-            return functioncalls
-        if tokens[0][0] != STATE_SPECIAL_CHAR or tokens[0][1] != '+':
-            print('Parsing error')
-            return None
-        tokens = tokens[1:]
-
-
-def Interpret(expression):
-    functioncalls = Parse(expression)
-    if functioncalls is None:
-        return None
-    decoded = ''
-    for functioncall in functioncalls:
-        functionname, arguments = functioncall
-        if functionname == FUNCTIONNAME_REPEAT:
-            if CheckFunction(functionname, arguments, 2):
-                return None
-            number = CheckNumber(arguments[0], minimum=1)
-            if number is None:
-                return None
-            bytes = InterpretBytes(arguments[1])
-            if bytes is None:
-                print('Error: argument should be a byte sequence: %s' %
-                      arguments[1][1])
-                return None
-            decoded += number * bytes
-        elif functionname == FUNCTIONNAME_RANDOM:
-            if CheckFunction(functionname, arguments, 1):
-                return None
-            number = CheckNumber(arguments[0], minimum=1)
-            if number is None:
-                return None
-            decoded += ''.join([chr(random.randint(0, 255))
-                                for x in range(number)])
-        elif functionname == FUNCTIONNAME_LOREMIPSUM:
-            if CheckFunction(functionname, arguments, 1):
-                return None
-            number = CheckNumber(arguments[0], minimum=1)
-            if number is None:
-                return None
-            decoded += LoremIpsum(number)
-        elif functionname == FUNCTIONNAME_CHR:
-            if CheckFunction(functionname, arguments, 1, 2):
-                return None
-            number = CheckNumber(arguments[0], minimum=0, maximum=255)
-            if number is None:
-                return None
-            if len(arguments) == 1:
-                decoded += chr(number)
-            else:
-                number2 = CheckNumber(arguments[1], minimum=0, maximum=255)
-                if number2 is None:
-                    return None
-                if number < number2:
-                    decoded += ''.join([chr(n)
-                                        for n in range(number, number2 + 1)])
-                else:
-                    decoded += ''.join([chr(n)
-                                        for n in range(number, number2 - 1, -1)])
-        else:
-            print('Error: unknown function: %s' % functionname)
-            return None
-    return decoded
-
-
-def FilenameCheckHash(filename, literalfilename):
-    if literalfilename:
-        return FCH_FILENAME, filename
-    elif filename.startswith('#h#'):
-        result = Hex2Bytes(filename[3:])
-        if result is None:
-            return FCH_ERROR, 'hexadecimal'
-        else:
-            return FCH_DATA, result
-    elif filename.startswith('#b#'):
-        try:
-            return FCH_DATA, binascii.a2b_base64(filename[3:])
-        except:
-            return FCH_ERROR, 'base64'
-    elif filename.startswith('#e#'):
-        result = Interpret(filename[3:])
-        if result is None:
-            return FCH_ERROR, 'expression'
-        else:
-            return FCH_DATA, result
-    elif filename.startswith('#'):
-        return FCH_DATA, C2BIP3(filename[1:])
-    else:
-        return FCH_FILENAME, filename
-
-
-class cBinaryFile:
-    def __init__(self, file):
-        self.file = file
-        if file == "":
-            self.infile = sys.stdin
-        elif file.lower().startswith("http://") or file.lower().startswith("https://"):
-            try:
-                if sys.hexversion >= 0x020601F0:
-                    self.infile = urllib23.urlopen(file, timeout=5)
-                else:
-                    self.infile = urllib23.urlopen(file)
-            except urllib23.HTTPError:
-                print("Error accessing URL %s" % file)
-                print(sys.exc_info()[1])
-                sys.exit()
-        elif file.lower().endswith(".zip"):
-            try:
-                self.zipfile = zipfile.ZipFile(file, "r")
-                self.infile = self.zipfile.open(
-                    self.zipfile.infolist()[0], "r", C2BIP3("infected"))
-            except:
-                print("Error opening file %s" % file)
-                print(sys.exc_info()[1])
-                sys.exit()
-        else:
-            try:
-                self.infile = open(file, "rb")
-            except:
-                print("Error opening file %s" % file)
-                print(sys.exc_info()[1])
-                sys.exit()
-        self.ungetted = []
-
-    def byte(self):
-        if len(self.ungetted) != 0:
-            return self.ungetted.pop()
-        inbyte = self.infile.read(1)
-        if not inbyte or inbyte == "":
-            self.infile.close()
-            return None
-        return ord(inbyte)
-
-    def bytes(self, size):
-        if size <= len(self.ungetted):
-            result = self.ungetted[0:size]
-            del self.ungetted[0:size]
-            return result
-        inbytes = self.infile.read(size - len(self.ungetted))
-        if inbytes == "":
-            self.infile.close()
-        if type(inbytes) == type(""):
-            result = self.ungetted + [ord(b) for b in inbytes]
-        else:
-            result = self.ungetted + [b for b in inbytes]
-        self.ungetted = []
-        return result
-
-    def unget(self, byte):
-        self.ungetted.append(byte)
-
-    def ungets(self, bytes):
-        bytes.reverse()
-        self.ungetted.extend(bytes)
-
-
-class cPDFDate:
-    def __init__(self):
-        self.state = 0
-
-    def parse(self, char):
-        if char == "D":
-            self.state = 1
-            return None
-        elif self.state == 1:
-            if char == ":":
-                self.state = 2
-                self.digits1 = ""
-            else:
-                self.state = 0
-            return None
-        elif self.state == 2:
-            if len(self.digits1) < 14:
-                if char >= "0" and char <= "9":
-                    self.digits1 += char
-                    return None
-                else:
-                    self.state = 0
-                    return None
-            elif char == "+" or char == "-" or char == "Z":
-                self.state = 3
-                self.digits2 = ""
-                self.TZ = char
-                return None
-            elif char == '"':
-                self.state = 0
-                self.date = "D:" + self.digits1
-                return self.date
-            elif char < "0" or char > "9":
-                self.state = 0
-                self.date = "D:" + self.digits1
-                return self.date
-            else:
-                self.state = 0
-                return None
-        elif self.state == 3:
-            if len(self.digits2) < 2:
-                if char >= "0" and char <= "9":
-                    self.digits2 += char
-                    return None
-                else:
-                    self.state = 0
-                    return None
-            elif len(self.digits2) == 2:
-                if char == "'":
-                    self.digits2 += char
-                    return None
-                else:
-                    self.state = 0
-                    return None
-            elif len(self.digits2) < 5:
-                if char >= "0" and char <= "9":
-                    self.digits2 += char
-                    if len(self.digits2) == 5:
-                        self.state = 0
-                        self.date = "D:" + self.digits1 + self.TZ + self.digits2
-                        return self.date
-                    else:
-                        return None
-                else:
-                    self.state = 0
-                    return None
-
-
-def fEntropy(countByte, countTotal):
-    x = float(countByte) / countTotal
-    if x > 0:
-        return -x * math.log(x, 2)
-    else:
-        return 0.0
-
-
-class cEntropy:
-    def __init__(self):
-        self.allBucket = [0 for i in range(0, 256)]
-        self.streamBucket = [0 for i in range(0, 256)]
-
-    def add(self, byte, insideStream):
-        self.allBucket[byte] += 1
-        if insideStream:
-            self.streamBucket[byte] += 1
-
-    def removeInsideStream(self, byte):
-        if self.streamBucket[byte] > 0:
-            self.streamBucket[byte] -= 1
-
-    def calc(self):
-        self.nonStreamBucket = map(
-            operator.sub, self.allBucket, self.streamBucket)
-        allCount = sum(self.allBucket)
-        streamCount = sum(self.streamBucket)
-        nonStreamCount = sum(self.nonStreamBucket)
-        if streamCount == 0:
-            return (
-                allCount,
-                sum(map(lambda x: fEntropy(x, allCount), self.allBucket)),
-                streamCount,
-                None,
-                nonStreamCount,
-                sum(map(lambda x: fEntropy(x, nonStreamCount), self.nonStreamBucket)),
-            )
-        else:
-            return (
-                allCount,
-                sum(map(lambda x: fEntropy(x, allCount), self.allBucket)),
-                streamCount,
-                sum(map(lambda x: fEntropy(x, streamCount), self.streamBucket)),
-                nonStreamCount,
-                sum(map(lambda x: fEntropy(x, nonStreamCount), self.nonStreamBucket)),
-            )
-
-
-class cPDFEOF:
-    def __init__(self):
-        self.token = ""
-        self.cntEOFs = 0
-
-    def parse(self, char):
-        if self.cntEOFs > 0:
-            self.cntCharsAfterLastEOF += 1
-        if self.token == "" and char == "%":
-            self.token += char
-            return
-        elif self.token == "%" and char == "%":
-            self.token += char
-            return
-        elif self.token == "%%" and char == "E":
-            self.token += char
-            return
-        elif self.token == "%%E" and char == "O":
-            self.token += char
-            return
-        elif self.token == "%%EO" and char == "F":
-            self.token += char
-            return
-        elif self.token == "%%EOF" and (char == "\n" or char == "\r" or char == " " or char == "\t"):
-            self.cntEOFs += 1
-            self.cntCharsAfterLastEOF = 0
-            if char == "\n":
-                self.token = ""
-            else:
-                self.token += char
-            return
-        elif self.token == "%%EOF\r":
-            if char == "\n":
-                self.cntCharsAfterLastEOF = 0
-            self.token = ""
-        else:
-            self.token = ""
-
-
-def FindPDFHeaderRelaxed(oBinaryFile):
-    bytes = oBinaryFile.bytes(1024)
-    index = "".join([chr(byte) for byte in bytes]).find("%PDF")
-    if index == -1:
-        oBinaryFile.ungets(bytes)
-        return ([], None)
-    for endHeader in range(index + 4, index + 4 + 10):
-        if bytes[endHeader] == 10 or bytes[endHeader] == 13:
-            break
-    oBinaryFile.ungets(bytes[endHeader:])
-    return (bytes[0:endHeader], "".join([chr(byte) for byte in bytes[index:endHeader]]))
-
-
-def Hexcode2String(char):
-    if type(char) == int:
-        return "#%02x" % char
-    else:
-        return char
-
-
-def SwapCase(char):
-    if type(char) == int:
-        return ord(chr(char).swapcase())
-    else:
-        return char.swapcase()
-
-
-def HexcodeName2String(hexcodeName):
-    return "".join(map(Hexcode2String, hexcodeName))
-
-
-def SwapName(wordExact):
-    return map(SwapCase, wordExact)
-
-
-def UpdateWords(word, wordExact, slash, words, hexcode, allNames, lastName, insideStream, oEntropy, fOut):
-    if word != "":
-        if slash + word in words:
-            words[slash + word][0] += 1
-            if hexcode:
-                words[slash + word][1] += 1
-        elif slash == "/" and allNames:
-            words[slash + word] = [1, 0]
-            if hexcode:
-                words[slash + word][1] += 1
-        if slash == "/":
-            lastName = slash + word
-        if slash == "":
-            if word == "stream":
-                insideStream = True
-            if word == "endstream":
-                if insideStream == True and oEntropy is not None:
-                    for char in "endstream":
-                        oEntropy.removeInsideStream(ord(char))
-                insideStream = False
-        if fOut is not None:
-            if slash == "/" and "/" + word in ("/JS", "/JavaScript", "/AA", "/OpenAction", "/JBIG2Decode", "/RichMedia", "/Launch"):
-                wordExactSwapped = HexcodeName2String(SwapName(wordExact))
-                fOut.write(C2BIP3(wordExactSwapped))
-                print("/%s -> /%s" %
-                      (HexcodeName2String(wordExact), wordExactSwapped))
-            else:
-                fOut.write(C2BIP3(HexcodeName2String(wordExact)))
-    return ("", [], False, lastName, insideStream)
-
-
-class cCVE_2009_3459:
-    def __init__(self):
-        self.count = 0
-
-    def Check(self, lastName, word):
-        # decided to alert when the number of colors is expressed with more than 3 bytes
-        if lastName == "/Colors" and word.isdigit() and int(word) > 2 ** 24:
-            self.count += 1
-
-
-def XMLAddAttribute(xmlDoc, name, value=None):
-    att = xmlDoc.createAttribute(name)
-    xmlDoc.documentElement.setAttributeNode(att)
-    if value is not None:
-        att.nodeValue = value
-    return att
-
-
-def GetScriptPath():
-    if getattr(sys, "frozen", False):
-        return os.path.dirname(sys.executable)
-    else:
-        return os.path.dirname(sys.argv[0])
-
-
-def ParseINIFile():
-    oConfigParser = ConfigParser.ConfigParser(allow_no_value=True)
-    oConfigParser.optionxform = str
-    oConfigParser.read(os.path.join(GetScriptPath(), "pdfid.ini"))
-    keywords = []
-    if oConfigParser.has_section("keywords"):
-        for key, value in oConfigParser.items("keywords"):
-            if not key in keywords:
-                keywords.append(key)
-    return keywords
-
-
-def PDFiD(file, allNames=False, extraData=False, disarm=False, force=False):
-    """Example of XML output:
-    <PDFiD ErrorOccured="False" ErrorMessage="" Filename="test.pdf" Header="%PDF-1.1" IsPDF="True" Version="0.0.4" Entropy="4.28">
-            <Keywords>
-                    <Keyword Count="7" HexcodeCount="0" Name="obj"/>
-                    <Keyword Count="7" HexcodeCount="0" Name="endobj"/>
-                    <Keyword Count="1" HexcodeCount="0" Name="stream"/>
-                    <Keyword Count="1" HexcodeCount="0" Name="endstream"/>
-                    <Keyword Count="1" HexcodeCount="0" Name="xref"/>
-                    <Keyword Count="1" HexcodeCount="0" Name="trailer"/>
-                    <Keyword Count="1" HexcodeCount="0" Name="startxref"/>
-                    <Keyword Count="1" HexcodeCount="0" Name="/Page"/>
-                    <Keyword Count="0" HexcodeCount="0" Name="/Encrypt"/>
-                    <Keyword Count="1" HexcodeCount="0" Name="/JS"/>
-                    <Keyword Count="1" HexcodeCount="0" Name="/JavaScript"/>
-                    <Keyword Count="0" HexcodeCount="0" Name="/AA"/>
-                    <Keyword Count="1" HexcodeCount="0" Name="/OpenAction"/>
-                    <Keyword Count="0" HexcodeCount="0" Name="/JBIG2Decode"/>
-            </Keywords>
-            <Dates>
-                    <Date Value="D:20090128132916+01'00" Name="/ModDate"/>
-            </Dates>
-    </PDFiD>
-    """
-
-    word = ""
-    wordExact = []
-    hexcode = False
-    lastName = ""
-    insideStream = False
-    keywords = [
-        "obj",
-        "endobj",
-        "stream",
-        "endstream",
-        "xref",
-        "trailer",
-        "startxref",
-        "/Page",
-        "/Encrypt",
-        "/ObjStm",
-        "/JS",
-        "/JavaScript",
-        "/AA",
-        "/OpenAction",
-        "/AcroForm",
-        "/JBIG2Decode",
-        "/RichMedia",
-        "/Launch",
-        "/EmbeddedFile",
-        "/XFA",
-    ]
-    words = {}
-    dates = []
-    for extrakeyword in ParseINIFile():
-        if not extrakeyword in keywords:
-            keywords.append(extrakeyword)
-    for keyword in keywords:
-        words[keyword] = [0, 0]
-    slash = ""
-    xmlDoc = xml.dom.minidom.getDOMImplementation().createDocument(None, "PDFiD", None)
-    XMLAddAttribute(xmlDoc, "Version", __version__)
-    XMLAddAttribute(xmlDoc, "Filename", file)
-    attErrorOccured = XMLAddAttribute(xmlDoc, "ErrorOccured", "False")
-    attErrorMessage = XMLAddAttribute(xmlDoc, "ErrorMessage", "")
-
-    oPDFDate = None
-    oEntropy = None
-    oPDFEOF = None
-    oCVE_2009_3459 = cCVE_2009_3459()
-    try:
-        attIsPDF = xmlDoc.createAttribute("IsPDF")
-        xmlDoc.documentElement.setAttributeNode(attIsPDF)
-        oBinaryFile = cBinaryFile(file)
-        if extraData:
-            oPDFDate = cPDFDate()
-            oEntropy = cEntropy()
-            oPDFEOF = cPDFEOF()
-        (bytesHeader, pdfHeader) = FindPDFHeaderRelaxed(oBinaryFile)
-        if disarm:
-            (pathfile, extension) = os.path.splitext(file)
-            fOut = open(pathfile + ".disarmed" + extension, "wb")
-            for byteHeader in bytesHeader:
-                fOut.write(C2BIP3(chr(byteHeader)))
-        else:
-            fOut = None
-        if oEntropy is not None:
-            for byteHeader in bytesHeader:
-                oEntropy.add(byteHeader, insideStream)
-        if pdfHeader is None and not force:
-            attIsPDF.nodeValue = "False"
-            return xmlDoc
-        else:
-            if pdfHeader is None:
-                attIsPDF.nodeValue = "False"
-                pdfHeader = ""
-            else:
-                attIsPDF.nodeValue = "True"
-            att = xmlDoc.createAttribute("Header")
-            att.nodeValue = repr(pdfHeader[0:10]).strip("'")
-            xmlDoc.documentElement.setAttributeNode(att)
-        byte = oBinaryFile.byte()
-        while byte is not None:
-            char = chr(byte)
-            charUpper = char.upper()
-            if charUpper >= "A" and charUpper <= "Z" or charUpper >= "0" and charUpper <= "9":
-                word += char
-                wordExact.append(char)
-            elif slash == "/" and char == "#":
-                d1 = oBinaryFile.byte()
-                if d1 is not None:
-                    d2 = oBinaryFile.byte()
-                    if (
-                        d2 is not None
-                        and (chr(d1) >= "0" and chr(d1) <= "9" or chr(d1).upper() >= "A" and chr(d1).upper() <= "F")
-                        and (chr(d2) >= "0" and chr(d2) <= "9" or chr(d2).upper() >= "A" and chr(d2).upper() <= "F")
-                    ):
-                        word += chr(int(chr(d1) + chr(d2), 16))
-                        wordExact.append(int(chr(d1) + chr(d2), 16))
-                        hexcode = True
-                        if oEntropy is not None:
-                            oEntropy.add(d1, insideStream)
-                            oEntropy.add(d2, insideStream)
-                        if oPDFEOF is not None:
-                            oPDFEOF.parse(d1)
-                            oPDFEOF.parse(d2)
-                    else:
-                        oBinaryFile.unget(d2)
-                        oBinaryFile.unget(d1)
-                        (word, wordExact, hexcode, lastName, insideStream) = UpdateWords(
-                            word, wordExact, slash, words, hexcode, allNames, lastName, insideStream, oEntropy, fOut
-                        )
-                        if disarm:
-                            fOut.write(C2BIP3(char))
-                else:
-                    oBinaryFile.unget(d1)
-                    (word, wordExact, hexcode, lastName, insideStream) = UpdateWords(
-                        word, wordExact, slash, words, hexcode, allNames, lastName, insideStream, oEntropy, fOut
-                    )
-                    if disarm:
-                        fOut.write(C2BIP3(char))
-            else:
-                oCVE_2009_3459.Check(lastName, word)
-
-                (word, wordExact, hexcode, lastName, insideStream) = UpdateWords(
-                    word, wordExact, slash, words, hexcode, allNames, lastName, insideStream, oEntropy, fOut
-                )
-                if char == "/":
-                    slash = "/"
-                else:
-                    slash = ""
-                if disarm:
-                    fOut.write(C2BIP3(char))
-
-            if oPDFDate is not None and oPDFDate.parse(char) is not None:
-                dates.append([oPDFDate.date, lastName])
-
-            if oEntropy is not None:
-                oEntropy.add(byte, insideStream)
-
-            if oPDFEOF is not None:
-                oPDFEOF.parse(char)
-
-            byte = oBinaryFile.byte()
-        (word, wordExact, hexcode, lastName, insideStream) = UpdateWords(
-            word, wordExact, slash, words, hexcode, allNames, lastName, insideStream, oEntropy, fOut
-        )
-
-        # check to see if file ended with %%EOF.  If so, we can reset charsAfterLastEOF and add one to EOF count.  This is never performed in
-        # the parse function because it never gets called due to hitting the end of file.
-        if byte is None and oPDFEOF is not None:
-            if oPDFEOF.token == "%%EOF":
-                oPDFEOF.cntEOFs += 1
-                oPDFEOF.cntCharsAfterLastEOF = 0
-                oPDFEOF.token = ""
-
-    except SystemExit:
-        sys.exit()
-    except:
-        attErrorOccured.nodeValue = "True"
-        attErrorMessage.nodeValue = traceback.format_exc()
-
-    if disarm:
-        fOut.close()
-
-    attEntropyAll = xmlDoc.createAttribute("TotalEntropy")
-    xmlDoc.documentElement.setAttributeNode(attEntropyAll)
-    attCountAll = xmlDoc.createAttribute("TotalCount")
-    xmlDoc.documentElement.setAttributeNode(attCountAll)
-    attEntropyStream = xmlDoc.createAttribute("StreamEntropy")
-    xmlDoc.documentElement.setAttributeNode(attEntropyStream)
-    attCountStream = xmlDoc.createAttribute("StreamCount")
-    xmlDoc.documentElement.setAttributeNode(attCountStream)
-    attEntropyNonStream = xmlDoc.createAttribute("NonStreamEntropy")
-    xmlDoc.documentElement.setAttributeNode(attEntropyNonStream)
-    attCountNonStream = xmlDoc.createAttribute("NonStreamCount")
-    xmlDoc.documentElement.setAttributeNode(attCountNonStream)
-    if oEntropy is not None:
-        (countAll, entropyAll, countStream, entropyStream,
-         countNonStream, entropyNonStream) = oEntropy.calc()
-        attEntropyAll.nodeValue = "%f" % entropyAll
-        attCountAll.nodeValue = "%d" % countAll
-        if entropyStream is None:
-            attEntropyStream.nodeValue = "N/A     "
-        else:
-            attEntropyStream.nodeValue = "%f" % entropyStream
-        attCountStream.nodeValue = "%d" % countStream
-        attEntropyNonStream.nodeValue = "%f" % entropyNonStream
-        attCountNonStream.nodeValue = "%d" % countNonStream
-    else:
-        attEntropyAll.nodeValue = ""
-        attCountAll.nodeValue = ""
-        attEntropyStream.nodeValue = ""
-        attCountStream.nodeValue = ""
-        attEntropyNonStream.nodeValue = ""
-        attCountNonStream.nodeValue = ""
-    attCountEOF = xmlDoc.createAttribute("CountEOF")
-    xmlDoc.documentElement.setAttributeNode(attCountEOF)
-    attCountCharsAfterLastEOF = xmlDoc.createAttribute(
-        "CountCharsAfterLastEOF")
-    xmlDoc.documentElement.setAttributeNode(attCountCharsAfterLastEOF)
-    if oPDFEOF is not None:
-        attCountEOF.nodeValue = "%d" % oPDFEOF.cntEOFs
-        if oPDFEOF.cntEOFs > 0:
-            attCountCharsAfterLastEOF.nodeValue = "%d" % oPDFEOF.cntCharsAfterLastEOF
-        else:
-            attCountCharsAfterLastEOF.nodeValue = ""
-    else:
-        attCountEOF.nodeValue = ""
-        attCountCharsAfterLastEOF.nodeValue = ""
-
-    eleKeywords = xmlDoc.createElement("Keywords")
-    xmlDoc.documentElement.appendChild(eleKeywords)
-    for keyword in keywords:
-        eleKeyword = xmlDoc.createElement("Keyword")
-        eleKeywords.appendChild(eleKeyword)
-        att = xmlDoc.createAttribute("Name")
-        att.nodeValue = keyword
-        eleKeyword.setAttributeNode(att)
-        att = xmlDoc.createAttribute("Count")
-        att.nodeValue = str(words[keyword][0])
-        eleKeyword.setAttributeNode(att)
-        att = xmlDoc.createAttribute("HexcodeCount")
-        att.nodeValue = str(words[keyword][1])
-        eleKeyword.setAttributeNode(att)
-    eleKeyword = xmlDoc.createElement("Keyword")
-    eleKeywords.appendChild(eleKeyword)
-    att = xmlDoc.createAttribute("Name")
-    att.nodeValue = "/Colors > 2^24"
-    eleKeyword.setAttributeNode(att)
-    att = xmlDoc.createAttribute("Count")
-    att.nodeValue = str(oCVE_2009_3459.count)
-    eleKeyword.setAttributeNode(att)
-    att = xmlDoc.createAttribute("HexcodeCount")
-    att.nodeValue = str(0)
-    eleKeyword.setAttributeNode(att)
-    if allNames:
-        keys = sorted(words.keys())
-        for word in keys:
-            if not word in keywords:
-                eleKeyword = xmlDoc.createElement("Keyword")
-                eleKeywords.appendChild(eleKeyword)
-                att = xmlDoc.createAttribute("Name")
-                att.nodeValue = word
-                eleKeyword.setAttributeNode(att)
-                att = xmlDoc.createAttribute("Count")
-                att.nodeValue = str(words[word][0])
-                eleKeyword.setAttributeNode(att)
-                att = xmlDoc.createAttribute("HexcodeCount")
-                att.nodeValue = str(words[word][1])
-                eleKeyword.setAttributeNode(att)
-    eleDates = xmlDoc.createElement("Dates")
-    xmlDoc.documentElement.appendChild(eleDates)
-    dates.sort(key=lambda x: x[0])
-    for date in dates:
-        eleDate = xmlDoc.createElement("Date")
-        eleDates.appendChild(eleDate)
-        att = xmlDoc.createAttribute("Value")
-        att.nodeValue = date[0]
-        eleDate.setAttributeNode(att)
-        att = xmlDoc.createAttribute("Name")
-        att.nodeValue = date[1]
-        eleDate.setAttributeNode(att)
-    return xmlDoc
-
-
-def PDFiD2String(xmlDoc, nozero, force):
-    result = "PDFiD %s %s\n" % (xmlDoc.documentElement.getAttribute(
-        "Version"), xmlDoc.documentElement.getAttribute("Filename"))
-    if xmlDoc.documentElement.getAttribute("ErrorOccured") == "True":
-        return result + "***Error occured***\n%s\n" % xmlDoc.documentElement.getAttribute("ErrorMessage")
-    if not force and xmlDoc.documentElement.getAttribute("IsPDF") == "False":
-        return result + " Not a PDF document\n"
-    result += " PDF Header: %s\n" % xmlDoc.documentElement.getAttribute(
-        "Header")
-    for node in xmlDoc.documentElement.getElementsByTagName("Keywords")[0].childNodes:
-        if not nozero or nozero and int(node.getAttribute("Count")) > 0:
-            result += " %-16s %7d" % (node.getAttribute("Name"),
-                                      int(node.getAttribute("Count")))
-            if int(node.getAttribute("HexcodeCount")) > 0:
-                result += "(%d)" % int(node.getAttribute("HexcodeCount"))
-            result += "\n"
-    if xmlDoc.documentElement.getAttribute("CountEOF") != "":
-        result += " %-16s %7d\n" % ("%%EOF",
-                                    int(xmlDoc.documentElement.getAttribute("CountEOF")))
-    if xmlDoc.documentElement.getAttribute("CountCharsAfterLastEOF") != "":
-        result += " %-16s %7d\n" % ("After last %%EOF", int(
-            xmlDoc.documentElement.getAttribute("CountCharsAfterLastEOF")))
-    for node in xmlDoc.documentElement.getElementsByTagName("Dates")[0].childNodes:
-        result += " %-23s %s\n" % (node.getAttribute("Value"),
-                                   node.getAttribute("Name"))
-    if xmlDoc.documentElement.getAttribute("TotalEntropy") != "":
-        result += " Total entropy:           %s (%10s bytes)\n" % (
-            xmlDoc.documentElement.getAttribute("TotalEntropy"),
-            xmlDoc.documentElement.getAttribute("TotalCount"),
-        )
-    if xmlDoc.documentElement.getAttribute("StreamEntropy") != "":
-        result += " Entropy inside streams:  %s (%10s bytes)\n" % (
-            xmlDoc.documentElement.getAttribute("StreamEntropy"),
-            xmlDoc.documentElement.getAttribute("StreamCount"),
-        )
-    if xmlDoc.documentElement.getAttribute("NonStreamEntropy") != "":
-        result += " Entropy outside streams: %s (%10s bytes)\n" % (
-            xmlDoc.documentElement.getAttribute("NonStreamEntropy"),
-            xmlDoc.documentElement.getAttribute("NonStreamCount"),
-        )
-    return result
-
-
-class cCount:
-    def __init__(self, count, hexcode):
-        self.count = count
-        self.hexcode = hexcode
-
-
-class cPDFiD:
-    def __init__(self, xmlDoc, force):
-        self.version = xmlDoc.documentElement.getAttribute("Version")
-        self.filename = xmlDoc.documentElement.getAttribute("Filename")
-        self.errorOccured = xmlDoc.documentElement.getAttribute(
-            "ErrorOccured") == "True"
-        self.errorMessage = xmlDoc.documentElement.getAttribute("ErrorMessage")
-        self.isPDF = None
-        if self.errorOccured:
-            return
-        self.isPDF = xmlDoc.documentElement.getAttribute("IsPDF") == "True"
-        if not force and not self.isPDF:
-            return
-        self.header = xmlDoc.documentElement.getAttribute("Header")
-        self.keywords = {}
-        for node in xmlDoc.documentElement.getElementsByTagName("Keywords")[0].childNodes:
-            self.keywords[node.getAttribute("Name")] = cCount(
-                int(node.getAttribute("Count")), int(node.getAttribute("HexcodeCount")))
-        self.obj = self.keywords["obj"]
-        self.endobj = self.keywords["endobj"]
-        self.stream = self.keywords["stream"]
-        self.endstream = self.keywords["endstream"]
-        self.xref = self.keywords["xref"]
-        self.trailer = self.keywords["trailer"]
-        self.startxref = self.keywords["startxref"]
-        self.page = self.keywords["/Page"]
-        self.encrypt = self.keywords["/Encrypt"]
-        self.objstm = self.keywords["/ObjStm"]
-        self.js = self.keywords["/JS"]
-        self.javascript = self.keywords["/JavaScript"]
-        self.aa = self.keywords["/AA"]
-        self.openaction = self.keywords["/OpenAction"]
-        self.acroform = self.keywords["/AcroForm"]
-        self.jbig2decode = self.keywords["/JBIG2Decode"]
-        self.richmedia = self.keywords["/RichMedia"]
-        self.launch = self.keywords["/Launch"]
-        self.embeddedfile = self.keywords["/EmbeddedFile"]
-        self.xfa = self.keywords["/XFA"]
-        self.colors_gt_2_24 = self.keywords["/Colors > 2^24"]
-
-
-def Print(lines, options):
-    print(lines)
-    filename = None
-    if options.scan:
-        filename = "PDFiD.log"
-    if options.output != "":
-        filename = options.output
-    if filename:
-        logfile = open(filename, "a")
-        logfile.write(lines + "\n")
-        logfile.close()
-
-
-def Quote(value, separator, quote):
-    if isinstance(value, str):
-        if separator in value:
-            return quote + value + quote
-    return value
-
-
-def MakeCSVLine(fields, separator=";", quote='"'):
-    formatstring = separator.join([field[0] for field in fields])
-    strings = [Quote(field[1], separator, quote) for field in fields]
-    return formatstring % tuple(strings)
-
-
-def ProcessFile(filename, options, plugins):
-    xmlDoc = PDFiD(filename, options.all, options.extra,
-                   options.disarm, options.force)
-    if plugins == [] and options.select == "":
-        Print(PDFiD2String(xmlDoc, options.nozero, options.force), options)
-        return
-
-    oPDFiD = cPDFiD(xmlDoc, options.force)
-    if options.select:
-        if options.force or not oPDFiD.errorOccured and oPDFiD.isPDF:
-            pdf = oPDFiD
-            try:
-                selected = eval(options.select)
-            except Exception as e:
-                Print("Error evaluating select expression: %s" %
-                      options.select, options)
-                if options.verbose:
-                    raise e
-                return
-            if selected:
-                if options.csv:
-                    Print(filename, options)
-                else:
-                    Print(PDFiD2String(xmlDoc, options.nozero,
-                                       options.force), options)
-    else:
-        for cPlugin in plugins:
-            if not cPlugin.onlyValidPDF or not oPDFiD.errorOccured and oPDFiD.isPDF:
-                try:
-                    oPlugin = cPlugin(oPDFiD, options.pluginoptions)
-                except Exception as e:
-                    Print("Error instantiating plugin: %s" %
-                          cPlugin.name, options)
-                    if options.verbose:
-                        raise e
-                    return
-
-                try:
-                    score = oPlugin.Score()
-                except Exception as e:
-                    Print("Error running plugin: %s" % cPlugin.name, options)
-                    if options.verbose:
-                        raise e
-                    return
-
-                if options.csv:
-                    if score >= options.minimumscore:
-                        Print(MakeCSVLine(
-                            (("%s", filename), ("%s", cPlugin.name), ("%.02f", score))), options)
-                else:
-                    if score >= options.minimumscore:
-                        Print(PDFiD2String(xmlDoc, options.nozero,
-                                           options.force), options)
-                        Print("%s score:        %.02f" %
-                              (cPlugin.name, score), options)
-                        try:
-                            Print("%s instructions: %s" % (cPlugin.name,
-                                                           oPlugin.Instructions(score)), options)
-                        except AttributeError:
-                            pass
-            else:
-                if options.csv:
-                    if oPDFiD.errorOccured:
-                        Print(MakeCSVLine(
-                            (("%s", filename), ("%s", cPlugin.name), ("%s", "Error occured"))), options)
-                    if not oPDFiD.isPDF:
-                        Print(MakeCSVLine(
-                            (("%s", filename), ("%s", cPlugin.name), ("%s", "Not a PDF document"))), options)
-                else:
-                    Print(PDFiD2String(xmlDoc, options.nozero,
-                                       options.force), options)
-
-
-def Scan(directory, options, plugins):
-    try:
-        if os.path.isdir(directory):
-            for entry in os.listdir(directory):
-                Scan(os.path.join(directory, entry), options, plugins)
-        else:
-            ProcessFile(directory, options, plugins)
-    except Exception as e:
-        #        print directory
-        print(e)
-
-
-#        print(sys.exc_info()[2])
-#        print traceback.format_exc()
-
-# function derived from: http://blog.9bplus.com/pdfidpy-output-to-json
-
-
-def PDFiD2JSON(xmlDoc, force):
-    # Get Top Layer Data
-    errorOccured = xmlDoc.documentElement.getAttribute("ErrorOccured")
-    errorMessage = xmlDoc.documentElement.getAttribute("ErrorMessage")
-    filename = xmlDoc.documentElement.getAttribute("Filename")
-    header = xmlDoc.documentElement.getAttribute("Header")
-    isPdf = xmlDoc.documentElement.getAttribute("IsPDF")
-    version = xmlDoc.documentElement.getAttribute("Version")
-    entropy = xmlDoc.documentElement.getAttribute("Entropy")
-
-    # extra data
-    countEof = xmlDoc.documentElement.getAttribute("CountEOF")
-    countChatAfterLastEof = xmlDoc.documentElement.getAttribute(
-        "CountCharsAfterLastEOF")
-    totalEntropy = xmlDoc.documentElement.getAttribute("TotalEntropy")
-    streamEntropy = xmlDoc.documentElement.getAttribute("StreamEntropy")
-    nonStreamEntropy = xmlDoc.documentElement.getAttribute("NonStreamEntropy")
-
-    keywords = []
-    dates = []
-
-    # grab all keywords
-    for node in xmlDoc.documentElement.getElementsByTagName("Keywords")[0].childNodes:
-        name = node.getAttribute("Name")
-        count = int(node.getAttribute("Count"))
-        if int(node.getAttribute("HexcodeCount")) > 0:
-            hexCount = int(node.getAttribute("HexcodeCount"))
-        else:
-            hexCount = 0
-        keyword = {"count": count, "hexcodecount": hexCount, "name": name}
-        keywords.append(keyword)
-
-    # grab all date information
-    for node in xmlDoc.documentElement.getElementsByTagName("Dates")[0].childNodes:
-        name = node.getAttribute("Name")
-        value = node.getAttribute("Value")
-        date = {"name": name, "value": value}
-        dates.append(date)
-
-    data = {
-        "countEof": countEof,
-        "countChatAfterLastEof": countChatAfterLastEof,
-        "totalEntropy": totalEntropy,
-        "streamEntropy": streamEntropy,
-        "nonStreamEntropy": nonStreamEntropy,
-        "errorOccured": errorOccured,
-        "errorMessage": errorMessage,
-        "filename": filename,
-        "header": header,
-        "isPdf": isPdf,
-        "version": version,
-        "entropy": entropy,
-        "keywords": {"keyword": keywords},
-        "dates": {"date": dates},
-    }
-    complete = [{"pdfid": data}]
-    result = json.dumps(complete)
-    return result
-
-
-def File2Strings(filename):
-    try:
-        f = open(filename, "r")
-    except:
-        return None
-    try:
-        return list(map(lambda line: line.rstrip("\n"), f.readlines()))
-    except:
-        return None
-    finally:
-        f.close()
-
-
-def ProcessAt(argument):
-    if argument.startswith("@"):
-        strings = File2Strings(argument[1:])
-        if strings is None:
-            raise Exception("Error reading %s" % argument)
-        else:
-            return strings
-    else:
-        return [argument]
-
-
-def AddPlugin(cClass):
-    global plugins
-
-    plugins.append(cClass)
-
-
-class cExpandFilenameArguments:
-    def __init__(self, filenames, literalfilenames=False, recursedir=False, checkfilenames=False, expressionprefix=None):
-        self.containsUnixShellStyleWildcards = False
-        self.warning = False
-        self.message = ""
-        self.filenameexpressions = []
-        self.expressionprefix = expressionprefix
-        self.literalfilenames = literalfilenames
-
-        expression = ""
-        if len(filenames) == 0:
-            self.filenameexpressions = [["", ""]]
-        elif literalfilenames:
-            self.filenameexpressions = [[filename, ""]
-                                        for filename in filenames]
-        elif recursedir:
-            for dirwildcard in filenames:
-                if expressionprefix is not None and dirwildcard.startswith(expressionprefix):
-                    expression = dirwildcard[len(expressionprefix):]
-                else:
-                    if dirwildcard.startswith("@"):
-                        for filename in ProcessAt(dirwildcard):
-                            self.filenameexpressions.append(
-                                [filename, expression])
-                    elif os.path.isfile(dirwildcard):
-                        self.filenameexpressions.append(
-                            [dirwildcard, expression])
-                    else:
-                        if os.path.isdir(dirwildcard):
-                            dirname = dirwildcard
-                            basename = "*"
-                        else:
-                            dirname, basename = os.path.split(dirwildcard)
-                            if dirname == "":
-                                dirname = "."
-                        for path, dirs, files in os.walk(dirname):
-                            for filename in fnmatch.filter(files, basename):
-                                self.filenameexpressions.append(
-                                    [os.path.join(path, filename), expression])
-        else:
-            for filename in list(collections.OrderedDict.fromkeys(sum(map(self.Glob, sum(map(ProcessAt, filenames), [])), []))):
-                if expressionprefix is not None and filename.startswith(expressionprefix):
-                    expression = filename[len(expressionprefix):]
-                else:
-                    self.filenameexpressions.append([filename, expression])
-            self.warning = self.containsUnixShellStyleWildcards and len(
-                self.filenameexpressions) == 0
-            if self.warning:
-                self.message = "Your filename argument(s) contain Unix shell-style wildcards, but no files were matched.\nCheck your wildcard patterns or use option literalfilenames if you don't want wildcard pattern matching."
-                return
-        if self.filenameexpressions == [] and expression != "":
-            self.filenameexpressions = [["", expression]]
-        if checkfilenames:
-            self.CheckIfFilesAreValid()
-
-    def Glob(self, filename):
-        if not ("?" in filename or "*" in filename or ("[" in filename and "]" in filename)):
-            return [filename]
-        self.containsUnixShellStyleWildcards = True
-        return glob.glob(filename)
-
-    def CheckIfFilesAreValid(self):
-        valid = []
-        doesnotexist = []
-        isnotafile = []
-        for filename, expression in self.filenameexpressions:
-            hashfile = False
-            # Not declared ROFL
-
-            try:
-                hashfile = FilenameCheckHash(filename, self.literalfilenames)[
-                    0] == FCH_DATA
-            except Exception as e:
-                print(e)
-
-            if filename == "" or hashfile:
-                valid.append([filename, expression])
-            elif not os.path.exists(filename):
-                doesnotexist.append(filename)
-            elif not os.path.isfile(filename):
-                isnotafile.append(filename)
-            else:
-                valid.append([filename, expression])
-        self.filenameexpressions = valid
-        if len(doesnotexist) > 0:
-            self.warning = True
-            self.message += "The following files do not exist and will be skipped: " + \
-                " ".join(doesnotexist) + "\n"
-        if len(isnotafile) > 0:
-            self.warning = True
-            self.message += "The following files are not regular files and will be skipped: " + \
-                " ".join(isnotafile) + "\n"
-
-    def Filenames(self):
-        if self.expressionprefix is None:
-            return [filename for filename, expression in self.filenameexpressions]
-        else:
-            return self.filenameexpressions
-
-
-class cPluginParent:
-    onlyValidPDF = True
-
-
-def LoadPlugins(plugins, verbose):
-    if plugins == "":
-        return
-    scriptPath = GetScriptPath()
-    for plugin in sum(map(ProcessAt, plugins.split(",")), []):
-        try:
-            if not plugin.lower().endswith(".py"):
-                plugin += ".py"
-            if os.path.dirname(plugin) == "":
-                if not os.path.exists(plugin):
-                    scriptPlugin = os.path.join(scriptPath, plugin)
-                    if os.path.exists(scriptPlugin):
-                        plugin = scriptPlugin
-            exec(open(plugin, "r").read())
-        except Exception as e:
-            print("Error loading plugin: %s" % plugin)
-            if verbose:
-                raise e
-
-
-def PDFiDMain(filenames, options):
-    global plugins
-    plugins = []
-    LoadPlugins(options.plugins, options.verbose)
-
-    if options.csv:
-        if plugins != []:
-            Print(MakeCSVLine(
-                (("%s", "Filename"), ("%s", "Plugin-name"), ("%s", "Score"))), options)
-        elif options.select != "":
-            Print("Filename", options)
-
-    for filename in filenames:
-        if options.scan:
-            Scan(filename, options, plugins)
-        else:
-            ProcessFile(filename, options, plugins)
-
-
-def Main():
-    moredesc = """
-
-Arguments:
-pdf-file and zip-file can be a single file, several files, and/or @file
-@file: run PDFiD on each file listed in the text file specified
-wildcards are supported
-
-Source code put in the public domain by Didier Stevens, no Copyright
-Use at your own risk
-https://DidierStevens.com"""
-
-    oParser = optparse.OptionParser(
-        usage="usage: %prog [options] [pdf-file|zip-file|url|@file] ...\n" + __description__ + moredesc, version="%prog " + __version__
-    )
-    oParser.add_option("-s", "--scan", action="store_true",
-                       default=False, help="scan the given directory")
-    oParser.add_option("-a", "--all", action="store_true",
-                       default=False, help="display all the names")
-    oParser.add_option("-e", "--extra", action="store_true",
-                       default=False, help="display extra data, like dates")
-    oParser.add_option("-f", "--force", action="store_true", default=False,
-                       help="force the scan of the file, even without proper %PDF header")
-    oParser.add_option("-d", "--disarm", action="store_true",
-                       default=False, help="disable JavaScript and auto launch")
-    oParser.add_option("-p", "--plugins", type=str, default="",
-                       help="plugins to load (separate plugins with a comma , ; @file supported)")
-    oParser.add_option("-c", "--csv", action="store_true",
-                       default=False, help="output csv data when using plugins")
-    oParser.add_option("-m", "--minimumscore", type=float,
-                       default=0.0, help="minimum score for plugin results output")
-    oParser.add_option("-v", "--verbose", action="store_true", default=False,
-                       help="verbose (will also raise catched exceptions)")
-    oParser.add_option("-S", "--select", type=str,
-                       default="", help="selection expression")
-    oParser.add_option("-n", "--nozero", action="store_true",
-                       default=False, help="supress output for counts equal to zero")
-    oParser.add_option("-o", "--output", type=str,
-                       default="", help="output to log file")
-    oParser.add_option("--pluginoptions", type=str,
-                       default="", help="options for the plugin")
-    oParser.add_option("-l", "--literalfilenames", action="store_true",
-                       default=False, help="take filenames literally, no wildcard matching")
-    oParser.add_option("--recursedir", action="store_true", default=False,
-                       help="Recurse directories (wildcards and here files (@...) allowed)")
-    (options, args) = oParser.parse_args()
-
-    if len(args) == 0:
-        if options.disarm:
-            print("Option disarm not supported with stdin")
-            options.disarm = False
-        if options.scan:
-            print("Option scan not supported with stdin")
-            options.scan = False
-        filenames = [""]
-    else:
-        try:
-            oExpandFilenameArguments = cExpandFilenameArguments(
-                args, options.literalfilenames, options.recursedir, False)
-            filenames = oExpandFilenameArguments.Filenames()
-            if oExpandFilenameArguments.warning:
-                print(oExpandFilenameArguments.message)
-        except Exception as e:
-            print(e)
-            return
-    PDFiDMain(filenames, options)
-
-
-if __name__ == "__main__":
-    Main()
diff --git a/lib/cuckoo/common/quarantine.py b/lib/cuckoo/common/quarantine.py
index 6ff30e3e92e..1d39dadcb06 100644
--- a/lib/cuckoo/common/quarantine.py
+++ b/lib/cuckoo/common/quarantine.py
@@ -2,14 +2,17 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-from __future__ import print_function
-import os
-import struct
+import contextlib
 import hashlib
 import logging
+import os
+import struct
 from binascii import crc32
-import six
+from pathlib import Path
+
+from Cryptodome.Cipher import ARC4
+
+from lib.cuckoo.common.utils import store_temp_file
 
 try:
     import olefile
@@ -17,9 +20,7 @@
     HAVE_OLEFILE = True
 except ImportError:
     HAVE_OLEFILE = False
-    print("Missed olefile dependency: pip3 install olefile")
-
-from lib.cuckoo.common.utils import store_temp_file
+    print("Missed olefile dependency: poetry run pip install olefile")
 
 
 def bytearray_xor(data, key):
@@ -29,8 +30,7 @@ def bytearray_xor(data, key):
 
 
 def read_trend_tag(data, offset):
-    """ @return a code byte and data tuple
-    """
+    """@return a code byte and data tuple"""
     code, length = struct.unpack("<BH", data[offset : offset + 3])
     return code, bytes(data[offset + 3 : offset + 3 + length])
 
@@ -99,17 +99,16 @@ def read_trend_tag(data, offset):
 
 
 def read_sep_tag(data, offset):
-    """ @return a code byte, metalength, metaval, and extra data tuple
-    """
+    """@return a code byte, metalength, metaval, and extra data tuple"""
     code = struct.unpack("B", data[offset : offset + 1])[0]
     codeval = 0
     retdata = ""
     length = 0
 
-    if code == 1 or code == 10:
+    if code in {1, 10}:
         length = 2
         codeval = struct.unpack("B", data[offset + 1 : offset + 2])[0]
-    elif code == 3 or code == 6:
+    elif code in {3, 6}:
         length = 5
         codeval = struct.unpack("<I", data[offset + 1 : offset + 5])[0]
     elif code == 4:
@@ -123,12 +122,8 @@ def read_sep_tag(data, offset):
 
 
 def sep_unquarantine(f):
-    filesize = os.path.getsize(f)
-    with open(f, "rb") as quarfile:
-        qdata = quarfile.read()
-
+    qdata = Path(f).read_bytes()
     data = bytearray(qdata)
-
     dataoffset = struct.unpack("<I", data[:4])[0]
 
     if dataoffset != 0x1290:
@@ -165,10 +160,7 @@ def sep_unquarantine(f):
                     headerlen = 12 + struct.unpack_from("<I", data[offset + 5 + 8 : offset + 5 + 12])[0] + 28
                     binsize = struct.unpack_from("<I", data[offset + 5 + headerlen - 12 : offset + 5 + headerlen - 8])[0]
                     collectedsize += len(tagdata) - headerlen
-                    if collectedsize > binsize:
-                        binlen = binsize
-                    else:
-                        binlen = collectedsize
+                    binlen = min(binsize, collectedsize)
                     bindata += data[offset + 5 + headerlen : offset + 5 + headerlen + binlen]
                     has_header = False
                 else:
@@ -177,319 +169,28 @@ def sep_unquarantine(f):
                     if collectedsize > binsize:
                         binlen -= collectedsize - binsize
                     bindata += data[offset + 5 : offset + 5 + binlen]
-            else:
-                if decode_next_container:
-                    extralen = 0
-                    decode_next_container = False
-                elif codeval == 0x10 or codeval == 0x8:
-                    if codeval == 0x8:
-                        xor_next_container = True
-                        lastlen = struct.unpack_from("<Q", data[offset + 5 : offset + 5 + 8])[0]
-                    else:
-                        xor_next_container = False
-                    decode_next_container = True
+            elif decode_next_container:
+                extralen = 0
+                decode_next_container = False
+            elif codeval in (0x10, 0x8):
+                if codeval == 0x8:
+                    xor_next_container = True
+                    lastlen = struct.unpack_from("<Q", data[offset + 5 : offset + 5 + 8])[0]
+                else:
+                    xor_next_container = False
+                decode_next_container = True
         elif code == 4:
             if xor_next_container and lastlen == codeval:
                 binsize = codeval
                 has_header = False
 
         offset += length + extralen
-        if offset == filesize:
+        if offset == os.path.getsize(f):
             break
 
     return store_temp_file(bindata, origname)
 
 
-# Never before published; reversed & developed by Optiv, Inc.
-
-
-def mse_ksa():
-    # hardcoded key obtained from mpengine.dll
-    key = [
-        0x1E,
-        0x87,
-        0x78,
-        0x1B,
-        0x8D,
-        0xBA,
-        0xA8,
-        0x44,
-        0xCE,
-        0x69,
-        0x70,
-        0x2C,
-        0x0C,
-        0x78,
-        0xB7,
-        0x86,
-        0xA3,
-        0xF6,
-        0x23,
-        0xB7,
-        0x38,
-        0xF5,
-        0xED,
-        0xF9,
-        0xAF,
-        0x83,
-        0x53,
-        0x0F,
-        0xB3,
-        0xFC,
-        0x54,
-        0xFA,
-        0xA2,
-        0x1E,
-        0xB9,
-        0xCF,
-        0x13,
-        0x31,
-        0xFD,
-        0x0F,
-        0x0D,
-        0xA9,
-        0x54,
-        0xF6,
-        0x87,
-        0xCB,
-        0x9E,
-        0x18,
-        0x27,
-        0x96,
-        0x97,
-        0x90,
-        0x0E,
-        0x53,
-        0xFB,
-        0x31,
-        0x7C,
-        0x9C,
-        0xBC,
-        0xE4,
-        0x8E,
-        0x23,
-        0xD0,
-        0x53,
-        0x71,
-        0xEC,
-        0xC1,
-        0x59,
-        0x51,
-        0xB8,
-        0xF3,
-        0x64,
-        0x9D,
-        0x7C,
-        0xA3,
-        0x3E,
-        0xD6,
-        0x8D,
-        0xC9,
-        0x04,
-        0x7E,
-        0x82,
-        0xC9,
-        0xBA,
-        0xAD,
-        0x97,
-        0x99,
-        0xD0,
-        0xD4,
-        0x58,
-        0xCB,
-        0x84,
-        0x7C,
-        0xA9,
-        0xFF,
-        0xBE,
-        0x3C,
-        0x8A,
-        0x77,
-        0x52,
-        0x33,
-        0x55,
-        0x7D,
-        0xDE,
-        0x13,
-        0xA8,
-        0xB1,
-        0x40,
-        0x87,
-        0xCC,
-        0x1B,
-        0xC8,
-        0xF1,
-        0x0F,
-        0x6E,
-        0xCD,
-        0xD0,
-        0x83,
-        0xA9,
-        0x59,
-        0xCF,
-        0xF8,
-        0x4A,
-        0x9D,
-        0x1D,
-        0x50,
-        0x75,
-        0x5E,
-        0x3E,
-        0x19,
-        0x18,
-        0x18,
-        0xAF,
-        0x23,
-        0xE2,
-        0x29,
-        0x35,
-        0x58,
-        0x76,
-        0x6D,
-        0x2C,
-        0x07,
-        0xE2,
-        0x57,
-        0x12,
-        0xB2,
-        0xCA,
-        0x0B,
-        0x53,
-        0x5E,
-        0xD8,
-        0xF6,
-        0xC5,
-        0x6C,
-        0xE7,
-        0x3D,
-        0x24,
-        0xBD,
-        0xD0,
-        0x29,
-        0x17,
-        0x71,
-        0x86,
-        0x1A,
-        0x54,
-        0xB4,
-        0xC2,
-        0x85,
-        0xA9,
-        0xA3,
-        0xDB,
-        0x7A,
-        0xCA,
-        0x6D,
-        0x22,
-        0x4A,
-        0xEA,
-        0xCD,
-        0x62,
-        0x1D,
-        0xB9,
-        0xF2,
-        0xA2,
-        0x2E,
-        0xD1,
-        0xE9,
-        0xE1,
-        0x1D,
-        0x75,
-        0xBE,
-        0xD7,
-        0xDC,
-        0x0E,
-        0xCB,
-        0x0A,
-        0x8E,
-        0x68,
-        0xA2,
-        0xFF,
-        0x12,
-        0x63,
-        0x40,
-        0x8D,
-        0xC8,
-        0x08,
-        0xDF,
-        0xFD,
-        0x16,
-        0x4B,
-        0x11,
-        0x67,
-        0x74,
-        0xCD,
-        0x0B,
-        0x9B,
-        0x8D,
-        0x05,
-        0x41,
-        0x1E,
-        0xD6,
-        0x26,
-        0x2E,
-        0x42,
-        0x9B,
-        0xA4,
-        0x95,
-        0x67,
-        0x6B,
-        0x83,
-        0x98,
-        0xDB,
-        0x2F,
-        0x35,
-        0xD3,
-        0xC1,
-        0xB9,
-        0xCE,
-        0xD5,
-        0x26,
-        0x36,
-        0xF2,
-        0x76,
-        0x5E,
-        0x1A,
-        0x95,
-        0xCB,
-        0x7C,
-        0xA4,
-        0xC3,
-        0xDD,
-        0xAB,
-        0xDD,
-        0xBF,
-        0xF3,
-        0x82,
-        0x53,
-    ]
-    sbox = range(256)
-    j = 0
-    for i in range(256):
-        j = (j + sbox[i] + key[i]) % 256
-        tmp = sbox[i]
-        sbox[i] = sbox[j]
-        sbox[j] = tmp
-
-    return sbox
-
-
-def rc4_decrypt(sbox, data):
-    out = bytearray(len(data))
-    i = 0
-    j = 0
-    for k in range(len(data)):
-        i = (i + 1) % 256
-        j = (j + sbox[i]) % 256
-        tmp = sbox[i]
-        sbox[i] = sbox[j]
-        sbox[j] = tmp
-        val = sbox[(sbox[i] + sbox[j]) % 256]
-        out[k] = val ^ data[k]
-
-    return out
-
-
 def mse_unquarantine(f):
     with open(f, "rb") as quarfile:
         data = bytearray(quarfile.read())
@@ -498,8 +199,269 @@ def mse_unquarantine(f):
     if fsize < 12 or data[0] != 0x0B or data[1] != 0xAD or data[2] != 0x00:
         return None
 
-    sbox = mse_ksa()
-    outdata = rc4_decrypt(sbox, data)
+    # hardcoded key obtained from mpengine.dll
+    key = bytearray(
+        [
+            0x1E,
+            0x87,
+            0x78,
+            0x1B,
+            0x8D,
+            0xBA,
+            0xA8,
+            0x44,
+            0xCE,
+            0x69,
+            0x70,
+            0x2C,
+            0x0C,
+            0x78,
+            0xB7,
+            0x86,
+            0xA3,
+            0xF6,
+            0x23,
+            0xB7,
+            0x38,
+            0xF5,
+            0xED,
+            0xF9,
+            0xAF,
+            0x83,
+            0x53,
+            0x0F,
+            0xB3,
+            0xFC,
+            0x54,
+            0xFA,
+            0xA2,
+            0x1E,
+            0xB9,
+            0xCF,
+            0x13,
+            0x31,
+            0xFD,
+            0x0F,
+            0x0D,
+            0xA9,
+            0x54,
+            0xF6,
+            0x87,
+            0xCB,
+            0x9E,
+            0x18,
+            0x27,
+            0x96,
+            0x97,
+            0x90,
+            0x0E,
+            0x53,
+            0xFB,
+            0x31,
+            0x7C,
+            0x9C,
+            0xBC,
+            0xE4,
+            0x8E,
+            0x23,
+            0xD0,
+            0x53,
+            0x71,
+            0xEC,
+            0xC1,
+            0x59,
+            0x51,
+            0xB8,
+            0xF3,
+            0x64,
+            0x9D,
+            0x7C,
+            0xA3,
+            0x3E,
+            0xD6,
+            0x8D,
+            0xC9,
+            0x04,
+            0x7E,
+            0x82,
+            0xC9,
+            0xBA,
+            0xAD,
+            0x97,
+            0x99,
+            0xD0,
+            0xD4,
+            0x58,
+            0xCB,
+            0x84,
+            0x7C,
+            0xA9,
+            0xFF,
+            0xBE,
+            0x3C,
+            0x8A,
+            0x77,
+            0x52,
+            0x33,
+            0x55,
+            0x7D,
+            0xDE,
+            0x13,
+            0xA8,
+            0xB1,
+            0x40,
+            0x87,
+            0xCC,
+            0x1B,
+            0xC8,
+            0xF1,
+            0x0F,
+            0x6E,
+            0xCD,
+            0xD0,
+            0x83,
+            0xA9,
+            0x59,
+            0xCF,
+            0xF8,
+            0x4A,
+            0x9D,
+            0x1D,
+            0x50,
+            0x75,
+            0x5E,
+            0x3E,
+            0x19,
+            0x18,
+            0x18,
+            0xAF,
+            0x23,
+            0xE2,
+            0x29,
+            0x35,
+            0x58,
+            0x76,
+            0x6D,
+            0x2C,
+            0x07,
+            0xE2,
+            0x57,
+            0x12,
+            0xB2,
+            0xCA,
+            0x0B,
+            0x53,
+            0x5E,
+            0xD8,
+            0xF6,
+            0xC5,
+            0x6C,
+            0xE7,
+            0x3D,
+            0x24,
+            0xBD,
+            0xD0,
+            0x29,
+            0x17,
+            0x71,
+            0x86,
+            0x1A,
+            0x54,
+            0xB4,
+            0xC2,
+            0x85,
+            0xA9,
+            0xA3,
+            0xDB,
+            0x7A,
+            0xCA,
+            0x6D,
+            0x22,
+            0x4A,
+            0xEA,
+            0xCD,
+            0x62,
+            0x1D,
+            0xB9,
+            0xF2,
+            0xA2,
+            0x2E,
+            0xD1,
+            0xE9,
+            0xE1,
+            0x1D,
+            0x75,
+            0xBE,
+            0xD7,
+            0xDC,
+            0x0E,
+            0xCB,
+            0x0A,
+            0x8E,
+            0x68,
+            0xA2,
+            0xFF,
+            0x12,
+            0x63,
+            0x40,
+            0x8D,
+            0xC8,
+            0x08,
+            0xDF,
+            0xFD,
+            0x16,
+            0x4B,
+            0x11,
+            0x67,
+            0x74,
+            0xCD,
+            0x0B,
+            0x9B,
+            0x8D,
+            0x05,
+            0x41,
+            0x1E,
+            0xD6,
+            0x26,
+            0x2E,
+            0x42,
+            0x9B,
+            0xA4,
+            0x95,
+            0x67,
+            0x6B,
+            0x83,
+            0x98,
+            0xDB,
+            0x2F,
+            0x35,
+            0xD3,
+            0xC1,
+            0xB9,
+            0xCE,
+            0xD5,
+            0x26,
+            0x36,
+            0xF2,
+            0x76,
+            0x5E,
+            0x1A,
+            0x95,
+            0xCB,
+            0x7C,
+            0xA4,
+            0xC3,
+            0xDD,
+            0xAB,
+            0xDD,
+            0xBF,
+            0xF3,
+            0x82,
+            0x53,
+        ]
+    )
+
+    outdata = ARC4.new(key).decrypt(data)
 
     headerlen = 0x28 + struct.unpack("<I", outdata[8:12])[0]
 
@@ -514,7 +476,9 @@ def mse_unquarantine(f):
     # of files, match them up by name, and then associate that data here
     # for the final submission
 
-    return store_temp_file(outdata[headerlen:], "MSEDequarantineFile")
+    sha256 = hashlib.sha256(outdata[headerlen:]).hexdigest()
+
+    return store_temp_file(outdata[headerlen:], sha256[:23])
 
 
 # Never before published; reversed & developed by Optiv, Inc.
@@ -526,28 +490,12 @@ def mse_unquarantine(f):
 # the decrypted metadata file from the line beginning with "ObjectName:"
 
 
-def mbam_ksa():
-    # hardcoded key obtained from mbamcore.dll
-    m = hashlib.md5()
-    m.update("XBXM8362QIXD9+637HCB02/VN0JF6Z3)cB9UFZMdF3I.*c.,c5SbO7)WNZ8CY1(XMUDb")
-    key = bytearray(m.digest())
-    sbox = range(256)
-    j = 0
-    for i in range(256):
-        j = (j + sbox[i] + key[i % len(key)]) % 256
-        tmp = sbox[i]
-        sbox[i] = sbox[j]
-        sbox[j] = tmp
-
-    return sbox
-
-
 def mbam_unquarantine(f):
     with open(f, "rb") as quarfile:
         data = bytearray(quarfile.read())
 
-    sbox = mbam_ksa()
-    outdata = rc4_decrypt(sbox, data)
+    key = b"XBXM8362QIXD9+637HCB02/VN0JF6Z3)cB9UFZMdF3I.*c.,c5SbO7)WNZ8CY1(XMUDb"
+    outdata = ARC4.new(key).decrypt(data)
 
     return store_temp_file(outdata, "MBAMDequarantineFile")
 
@@ -563,7 +511,7 @@ def kav_unquarantine(file):
         data = bytearray(quarfile.read())
 
     # check for KLQB header
-    magic = struct.unpack("<I", data[0:4])[0]
+    magic = struct.unpack("<I", data[:4])[0]
     if magic != 0x42514C4B:
         return None
 
@@ -590,9 +538,8 @@ def kav_unquarantine(file):
         idlen = struct.unpack("<I", data[curoffset + 4 : curoffset + 8])[0]
         idname = str(data[curoffset + 8 : curoffset + 8 + idlen]).rstrip("\0")
         if idname == "cNP_QB_FULLNAME":
-            vallen = length - idlen
             origname = (
-                six.text_type(data[curoffset + 8 + idlen : curoffset + 4 + length]).decode("utf-16").encode("utf8", "ignore").rstrip("\0")
+                str(data[curoffset + 8 + idlen : curoffset + 4 + length]).encode("utf-16").decode(errors="ignore").rstrip("\0")
             )
         curoffset += 4 + length
         if curoffset >= metaoffset + metalen:
@@ -611,43 +558,46 @@ def kav_unquarantine(file):
 
 
 def trend_unquarantine(f):
-    with open(f, "rb") as quarfile:
-        qdata = quarfile.read()
+    # Read first 10 bytes
+    with open(f, "rb") as fil:
+        qheader = fil.read(10)
+        header = bytearray_xor(bytearray(qheader), 0xFF)
 
-    data = bytearray_xor(bytearray(qdata), 0xFF)
-
-    magic, dataoffset, numtags = struct.unpack("<IIH", data[:10])
+    magic, dataoffset, numtags = struct.unpack("<IIH", header[:10])
     if magic != 0x58425356:  # VSBX
         return None
-    origpath = "C:\\"
+
     origname = "UnknownTrendFile.bin"
-    platform = "Unknown"
-    attributes = 0x00000000
-    unknownval = 0
     basekey = 0x00000000
     encmethod = 0
 
     if numtags > 15:
         return None
 
+    # If file looks like a quarantine file, then read it all
+    qdata = Path(f).read_bytes()
+    data = bytearray_xor(bytearray(qdata), 0xFF)
+
     dataoffset += 10
     offset = 10
-    for i in range(numtags):
+    for _ in range(numtags):
         code, tagdata = read_trend_tag(data, offset)
-        if code == 1:  # original pathname
-            origpath = six.text_type(tagdata, encoding="utf16").encode("utf8", "ignore").rstrip("\0")
-        elif code == 2:  # original filename
-            origname = six.text_type(tagdata, encoding="utf16").encode("utf8", "ignore").rstrip("\0")
+        if code == 2:  # original filename
+            origname = str(tagdata).encode("utf16").decode(errors="ignore").rstrip("\0")
+        elif code == 6:  # base key
+            basekey = struct.unpack("<I", tagdata)[0]
+        elif code == 7:  # encryption method: 1 == xor FF, 2 = CRC method
+            encmethod = struct.unpack("<I", tagdata)[0]
+        """
+        elif code == 1:  # original pathname
+            origpath = str(tagdata).encode("utf16").decode(errors="ignore").rstrip("\0")
         elif code == 3:  # platform
             platform = str(tagdata)
         elif code == 4:  # file attributes
             attributes = struct.unpack("<I", tagdata)[0]
         elif code == 5:  # unknown, generally 1
             unknownval = struct.unpack("<I", tagdata)[0]
-        elif code == 6:  # base key
-            basekey = struct.unpack("<I", tagdata)[0]
-        elif code == 7:  # encryption method: 1 == xor FF, 2 = CRC method
-            encmethod = struct.unpack("<I", tagdata)[0]
+        """
         offset += 3 + len(tagdata)
 
     if encmethod != 2:
@@ -687,51 +637,45 @@ def mcafee_unquarantine(f):
     if not olefile.isOleFile(f):
         return None
 
-    with open(f, "rb") as quarfile:
-        qdata = quarfile.read()
+    qdata = Path(f).read_bytes()
 
     oledata = olefile.OleFileIO(qdata)
     olefiles = oledata.listdir()
-    quarfiles = list()
+    quarfiles = []
     for item in olefiles:
         if "Details" in item:
             details = bytearray_xor(bytearray(oledata.openstream("Details").read()), 0x6A)
         else:
             # Parse for quarantine files
-            for fileobj in item:
-                if "File_" in fileobj:
-                    quarfiles.append(fileobj)
-            decoded = dict()
+            quarfiles.extend(fileobj for fileobj in item if "File_" in fileobj)
+            decoded = {}
             # Try and decode quarantine files (sometimes there are none)
             for item in quarfiles:
-                try:
+                with contextlib.suppress(Exception):
                     decoded[item] = bytearray_xor(bytearray(oledata.openstream(item).read()), 0x6A)
-                except:
-                    pass
             # Try and get original file name from details
             if list(decoded.keys()):
                 config = details.splitlines()
                 malname = ""
-                for item in decoded.keys():
+                for item, value in decoded.items():
                     parseit = False
                     for check in config:
-                        if check.startswith("["):
-                            if item in check:
-                                parseit = True
+                        if check.startswith("[") and item in check:
+                            parseit = True
                         if check == "":
                             parseit = False
                         if parseit and check.startswith("OriginalName="):
-                            malname = str(check.split("\\")[-1])
+                            malname = str(check.rsplit("\\", 1)[-1])
                     if not malname:
                         malname = "McAfeeDequarantineFile"
                     # currently we're only returning the first found file in the quarantine file
-                    return store_temp_file(decoded[item], malname)
+                    return store_temp_file(value, malname)
 
 
 def xorff_unquarantine(f):
     """
-       sentinelone
-       forefront
+    sentinelone
+    forefront
     """
     base = os.path.basename(f)
     realbase, ext = os.path.splitext(base)
@@ -750,28 +694,38 @@ def xorff_unquarantine(f):
 
 
 def unquarantine(f):
-    f = f.decode("utf8")
+    f = f.decode() if isinstance(f, bytes) else f
     base = os.path.basename(f)
     realbase, ext = os.path.splitext(base)
 
     if not HAVE_OLEFILE:
         log.info("Missed olefile dependency: pip3 install olefile")
     if ext.lower() == ".bup" or (HAVE_OLEFILE and olefile.isOleFile(f)):
-        try:
+        with contextlib.suppress(Exception):
             return mcafee_unquarantine(f)
-        except:
-            pass
-
     if ext.lower() in func_map:
         try:
             return func_map[ext.lower()](f)
         except Exception as e:
             print(e)
 
-    for func in (kav_unquarantine, trend_unquarantine, sep_unquarantine, mse_unquarantine, xorff_unquarantine):
-        try:
+    for func in (mse_unquarantine, kav_unquarantine, trend_unquarantine, sep_unquarantine):
+        with contextlib.suppress(Exception):
             quarfile = func(f)
             if quarfile:
                 return quarfile
-        except:
-            pass
+
+
+if __name__ == "__main__":
+    import sys
+
+    tmp_path = unquarantine(sys.argv[1])
+    if tmp_path:
+        original = hashlib.sha256(open(sys.argv[1], "rb").read()).hexdigest()
+        unq = hashlib.sha256(open(tmp_path, "rb").read()).hexdigest()
+        if original == unq:
+            print("Unsuported quarantine file format")
+        else:
+            print(f"Suported quarantine file format: \n Original: {original} - unqarantined: {unq}")
+    else:
+        print("Unsuported quarantine file format")
diff --git a/lib/cuckoo/common/replace_patterns_utils.py b/lib/cuckoo/common/replace_patterns_utils.py
new file mode 100644
index 00000000000..bc83ed1fbd5
--- /dev/null
+++ b/lib/cuckoo/common/replace_patterns_utils.py
@@ -0,0 +1,77 @@
+from data.safelist.domains import domain_passlist as DOMAINS_DENYLIST
+from data.safelist.replacepatterns import (
+    FILES_DENYLIST,
+    FILES_ENDING_DENYLIST,
+    MUTEX_DENYLIST,
+    NORMALIZED_PATHS,
+    REGISTRY_TRANSLATION,
+    SANDBOX_USERNAMES,
+    SERVICES_DENYLIST,
+)
+
+
+def is_uri_valid(url):
+    for domain in DOMAINS_DENYLIST:
+        if domain in url.lower():
+            return False
+        return True
+
+
+def _is_mutex_ok(mutex_name: str) -> bool:
+    if any(mutex_name.startswith(keyword) for keyword in MUTEX_DENYLIST):
+        return False
+    return True
+
+
+def _is_regkey_ok(regkey: str) -> bool:
+    """Check if regkey can be appended."""
+    filtered_regkeys = frozenset(
+        [
+            "DisableUserModeCallbackFilter",
+            "UserDataDir",
+            "CloudManagementEnrollmentMandatory",
+        ]
+    )
+    if regkey in filtered_regkeys:
+        return False
+    if "\\Control\\Nls\\" in regkey:
+        return False
+    return True
+
+
+def _clean_path(string: str, replace_patterns: bool = False):
+    if not replace_patterns:
+        return string
+
+    for username in SANDBOX_USERNAMES:
+        if username in string:
+            string = string.replace(username, "<USER>")
+
+    for key in NORMALIZED_PATHS.keys():
+        if key in string:
+            string = string.replace(key, NORMALIZED_PATHS[key])
+
+    return string
+
+
+def check_deny_pattern(container: list, pattern: str):
+    if not pattern:
+        return
+    if any(deny_file in pattern for deny_file in FILES_DENYLIST):
+        return
+    if pattern.endswith(FILES_ENDING_DENYLIST):
+        return
+    if not _is_regkey_ok(pattern):
+        return
+    if pattern in SERVICES_DENYLIST:
+        return
+    if not _is_mutex_ok(pattern):
+        return
+
+    pattern = _clean_path(pattern, True)
+
+    for key in REGISTRY_TRANSLATION.keys():
+        if pattern.startswith(key):
+            pattern = pattern.replace(key, REGISTRY_TRANSLATION[key])
+
+    container.append(pattern)
diff --git a/lib/cuckoo/common/safelist.py b/lib/cuckoo/common/safelist.py
index 524e0151187..72b5dcf692a 100644
--- a/lib/cuckoo/common/safelist.py
+++ b/lib/cuckoo/common/safelist.py
@@ -3,7 +3,9 @@
 # See the file 'docs/LICENSE' for copying permission.
 
 import os.path
+
 from lib.cuckoo.common.constants import CUCKOO_ROOT
+from lib.cuckoo.common.path_utils import path_exists, path_read_file
 
 domains = set()
 ips = set()
@@ -12,20 +14,20 @@
 mispurls = set()
 misphashes = set()
 
+
 def _load_safelist(wlset, wl_file):
     wl_path = os.path.join(CUCKOO_ROOT, "data", "safelist", wl_file)
 
-    if not os.path.exists(wl_path):
+    if not path_exists(wl_path):
         return
 
-    with open(wl_path, "rb") as fp:
-        safelist = fp.read()
-
+    safelist = path_read_file(wl_path)
     for entry in safelist.split("\n"):
         entry = entry.strip()
         if entry and not entry.startswith("#"):
             wlset.add(entry)
 
+
 def is_safelisted_domain(domain):
     if not domains:
         # Initialize the domain safelist.
@@ -33,6 +35,7 @@ def is_safelisted_domain(domain):
 
     return domain in domains
 
+
 def is_safelisted_ip(ip):
     if not ips:
         # Initialize the ip safelist.
@@ -40,6 +43,7 @@ def is_safelisted_ip(ip):
 
     return ip in ips
 
+
 def is_safelisted_mispdomain(domain):
     if not mispdomains:
         # Initialize the misp domain safelist.
@@ -47,6 +51,7 @@ def is_safelisted_mispdomain(domain):
 
     return domain in mispdomains
 
+
 def is_safelisted_mispip(ip):
     if not mispips:
         # Initialize the misp ip safelist.
@@ -54,6 +59,7 @@ def is_safelisted_mispip(ip):
 
     return ip in mispips
 
+
 def is_safelisted_mispurl(url):
     if not mispurls:
         # Initialize the misp url safelist.
@@ -61,6 +67,7 @@ def is_safelisted_mispurl(url):
 
     return url in mispurls
 
+
 def is_safelisted_misphash(hash):
     if not misphashes:
         # Initialize the misp hash safelist.
diff --git a/lib/cuckoo/common/saztopcap.py b/lib/cuckoo/common/saztopcap.py
index de515bc9e33..e64fa62217c 100644
--- a/lib/cuckoo/common/saztopcap.py
+++ b/lib/cuckoo/common/saztopcap.py
@@ -2,30 +2,28 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
+import glob
 import logging
-import zipfile
+import os
+import random
 import shutil
-from xml.dom.minidom import parse, parseString
+import tempfile
+import zipfile
+from contextlib import suppress
+from xml.dom.minidom import parse
 
 try:
+    import re2 as re
+except ImportError:
+    import re
+
+try:
+    from scapy.all import IP, TCP, Ether, Raw
     from scapy.utils import PcapWriter
-    from scapy.all import *
 
     HAVE_SCAPY = True
 except ImportError:
     HAVE_SCAPY = False
-import glob
-import os
-import tempfile
-import random
-from lib.cuckoo.common.utils import store_temp_file
-import random
-
-try:
-    import re2 as re
-except ImportError:
-    import re
 
 log = logging.getLogger(__name__)
 
@@ -39,10 +37,14 @@ def build_handshake(src, dst, sport, dport, pktdump, smac, dmac):
     server_isn = random.randint(1024, 10000)
     syn = Ether(src=smac, dst=dmac) / IP(src=ipsrc, dst=ipdst) / TCP(flags="S", sport=portsrc, dport=portdst, seq=client_isn)
     synack = (
-        Ether(src=dmac, dst=smac) / IP(src=ipdst, dst=ipsrc) / TCP(flags="SA", sport=portdst, dport=portsrc, seq=server_isn, ack=syn.seq + 1)
+        Ether(src=dmac, dst=smac)
+        / IP(src=ipdst, dst=ipsrc)
+        / TCP(flags="SA", sport=portdst, dport=portsrc, seq=server_isn, ack=syn.seq + 1)
     )
     ack = (
-        Ether(src=smac, dst=dmac) / IP(src=ipsrc, dst=ipdst) / TCP(flags="A", sport=portsrc, dport=portdst, seq=syn.seq + 1, ack=synack.seq + 1)
+        Ether(src=smac, dst=dmac)
+        / IP(src=ipsrc, dst=ipdst)
+        / TCP(flags="A", sport=portsrc, dport=portdst, seq=syn.seq + 1, ack=synack.seq + 1)
     )
     pktdump.write(syn)
     pktdump.write(synack)
@@ -53,11 +55,11 @@ def build_handshake(src, dst, sport, dport, pktdump, smac, dmac):
 def build_finshake(src, dst, sport, dport, seq, ack, pktdump, smac, dmac):
     ipsrc = src
     ipdst = dst
-    portsrc = sport
-    portdst = dport
     finAck = Ether(src=smac, dst=dmac) / IP(src=ipsrc, dst=ipdst) / TCP(flags="FA", sport=sport, dport=dport, seq=seq, ack=ack)
     finalAck = (
-        Ether(src=dmac, dst=smac) / IP(src=ipdst, dst=ipsrc) / TCP(flags="A", sport=dport, dport=sport, seq=finAck.ack, ack=finAck.seq + 1)
+        Ether(src=dmac, dst=smac)
+        / IP(src=ipdst, dst=ipsrc)
+        / TCP(flags="A", sport=dport, dport=sport, seq=finAck.ack, ack=finAck.seq + 1)
     )
     pktdump.write(finAck)
     pktdump.write(finalAck)
@@ -75,10 +77,13 @@ def make_pkts(src, dst, sport, dport, seq, ack, payload, pktdump, smac, dmac):
         segments.append(payload)
     ipsrc = src
     ipdst = dst
-    portsrc = sport
-    portdst = dport
     for segment in segments:
-        p = Ether(src=smac, dst=dmac) / IP(src=ipsrc, dst=ipdst) / TCP(flags="PA", sport=sport, dport=dport, seq=seq, ack=ack) / segment
+        p = (
+            Ether(src=smac, dst=dmac)
+            / IP(src=ipsrc, dst=ipdst)
+            / TCP(flags="PA", sport=sport, dport=dport, seq=seq, ack=ack)
+            / segment
+        )
         returnAck = (
             Ether(src=dmac, dst=smac)
             / IP(src=ipdst, dst=ipsrc)
@@ -96,37 +101,37 @@ def saz_to_pcap(sazpath):
         return None
 
     if not HAVE_SCAPY:
-        log.error("Scapy is required for SAZ to PCAP conversion.")
+        log.error("Scapy is required for SAZ to PCAP conversion")
         return None
 
     tmpdir = ""
-    pcappath = "%s/%s.pcap" % (tempfile.mkdtemp(), os.path.basename(sazpath))
+    pcappath = f"{tempfile.mkdtemp()}/{os.path.basename(sazpath)}.pcap"
     fiddler_raw_dir = ""
     pktdump = PcapWriter(pcappath, sync=True)
     try:
         tmpdir = tempfile.mkdtemp()
     except Exception as e:
-        log.error("Failed to Create temp dir for SAZ extraction %s" % (e))
+        log.error("Failed to Create temp dir for SAZ extraction %s", e)
         return None
 
     try:
         z = zipfile.ZipFile(sazpath, "r")
     except Exception as e:
-        log.error("Failed to open SAZ file as Zip extraction %s" % (e))
+        log.error("Failed to open SAZ file as Zip extraction %s", e)
         return None
 
     try:
         z.extractall(tmpdir)
         z.close()
     except Exception as e:
-        log.error("Failed to extract SAZ file to temp dir %s" % (e))
+        log.error("Failed to extract SAZ file to temp dir %s", e)
         return None
 
-    if not os.path.isdir("%s/raw/" % (tmpdir)):
+    if not os.path.isdir(f"{tmpdir}/raw/"):
         return None
 
-    fiddler_raw_dir = "%s/raw/" % (tmpdir)
-    m_file_list = glob.glob("%s/%s" % (fiddler_raw_dir, "*_m.xml"))
+    fiddler_raw_dir = f"{tmpdir}/raw/"
+    m_file_list = glob.glob(f"{fiddler_raw_dir}/*_m.xml")
     m_file_list.sort()
     if m_file_list:
         for xml_file in m_file_list:
@@ -154,23 +159,23 @@ def saz_to_pcap(sazpath):
                 # TODO:to enable this we need to track 5 tuples otherwise we have session reuse issues
                 # if m and m.group("sport"):
                 # sport = int(m.group("sport"))
-                if m and m.group("clientip") and src == None:
+                if m and m.group("clientip") and src is None:
                     src = m.group("clientip")
                 elif m and m.group("hostip"):
                     dst = m.group("hostip")
-            req = open(fiddler_raw_dir + fid + "_c.txt").read()
+            req = open(f"{fiddler_raw_dir}{fid}_c.txt").read()
             m = re.match(r"^(?P<verb>[^\r\n\s]+)\s+(?P<host_and_port>https?\:\/\/[^\/\r\n\:]+(\:(?P<dport>\d{1,5}))?)\/", req)
             if m and m.group("verb") != "CONNECT":
                 req = req.replace(m.group("host_and_port"), "", 1)
                 if m.group("dport") and int(m.group("dport")) <= 65535:
                     dport = int(m.group("dport"))
-            resp = open(fiddler_raw_dir + fid + "_s.txt").read()
+            resp = open(f"{fiddler_raw_dir}{fid}_s.txt").read()
             (seq, ack) = build_handshake(src, dst, sport, dport, pktdump, smac, dmac)
             (seq, ack) = make_pkts(src, dst, sport, dport, seq, ack, req, pktdump, smac, dmac)
             (seq, ack) = make_pkts(dst, src, dport, sport, seq, ack, resp, pktdump, dmac, smac)
             build_finshake(src, dst, sport, dport, seq, ack, pktdump, smac, dmac)
     else:
-        m_file_list = glob.glob("%s/%s" % (fiddler_raw_dir, "*_c.txt"))
+        m_file_list = glob.glob(f"{fiddler_raw_dir}/*_c.txt")
         m_file_list.sort()
         if m_file_list:
             for xml_file in m_file_list:
@@ -187,13 +192,13 @@ def saz_to_pcap(sazpath):
                     log.error("Failed to find fiddler ID tag")
                     return None
 
-                req = open(fiddler_raw_dir + fid + "_c.txt").read()
+                req = open(f"{fiddler_raw_dir}{fid}_c.txt").read()
                 m = re.match(r"^(?P<verb>[^\r\n\s]+)\s+(?P<host_and_port>https?\:\/\/[^\/\r\n\:]+(\:(?P<dport>\d{1,5}))?)\/", req)
                 if m and m.group("verb") != "CONNECT":
                     req = req.replace(m.group("host_and_port"), "", 1)
                     if m.group("dport") and int(m.group("dport")) <= 65535:
                         dport = int(m.group("dport"))
-                resp = open(fiddler_raw_dir + fid + "_s.txt").read()
+                resp = open(f"{fiddler_raw_dir}{fid}_s.txt").read()
                 (seq, ack) = build_handshake(src, dst, sport, dport, pktdump, smac, dmac)
                 (seq, ack) = make_pkts(src, dst, sport, dport, seq, ack, req, pktdump, smac, dmac)
                 (seq, ack) = make_pkts(dst, src, dport, sport, seq, ack, resp, pktdump, dmac, smac)
@@ -204,8 +209,6 @@ def saz_to_pcap(sazpath):
 
     pktdump.close()
     if tmpdir:
-        try:
+        with suppress(Exception):
             shutil.rmtree(tmpdir)
-        except:
-            pass
     return pcappath
diff --git a/lib/cuckoo/common/scoring.py b/lib/cuckoo/common/scoring.py
new file mode 100644
index 00000000000..dfa6ea02bf9
--- /dev/null
+++ b/lib/cuckoo/common/scoring.py
@@ -0,0 +1,168 @@
+# =============================================================================
+# Helper function to prevent code duplication for generic scoring.
+# =============================================================================
+def _calculate_generic_score(matched: list) -> float:
+    """Calculates a generic score based on a list of matched signatures."""
+    score = 0.0
+    for match in matched:
+        # We apply the 'maximum' attribute if present in the signature.
+        # Check for key existence and that the value is not None to handle the case where maximum could be 0.
+        if "maximum" in match and match["maximum"] is not None:
+            score = max(score, match["maximum"])
+            continue  # Skip to next signature
+
+        if match["severity"] == 1:
+            score += match["weight"] * 0.5 * (match["confidence"] / 100.0)
+        else:
+            score += match["weight"] * (match["severity"] - 1) * (match["confidence"] / 100.0)
+
+    # Clamp the score between 0.0 and 10.0 using a common Python idiom.
+    score = max(0.0, min(score, 10.0))
+
+    return score
+
+
+# =============================================================================
+# Main scoring function.
+# =============================================================================
+def calc_scoring(results: dict, matched: list):
+    """
+    Calculate the final malware score and status based on the analysis results and matched signatures.
+
+    The scoring is determined by the type of file and the categories of signatures it triggers. The methodology is as follows:
+    1. Malicious-Known: The file is detected by YARA.
+        - Score: 10/10 (Malicious)
+    2. Malicious-Unknown: The file triggers signatures with specific malicious categories.
+        - Categories: ["malware", "ransomware", "infostealer", "rat", "trojan", "rootkit", "bootkit", "wiper", "banker", "bypass", "anti-sandbox", "keylogger"]
+        - Score: 7-9/10 (Malicious)
+    3. Suspicious-Unknown: The file triggers signatures with specific suspicious categories.
+        - Categories: ["network", "encryption", "anti-vm", "anti-analysis", "anti-av", "anti-debug", "anti-emulation", "persistence", "stealth", "discovery", "injection", "generic", "account", "bot", "browser", "allocation", "command", "execution"]
+        - Score: 4-6/10 (Suspicious)
+    4. Benign: The file is likely trusted and digitally signed.
+        - Score: 0-3/10 (Benign)
+    5. Undetected/Failed: The file does not trigger any signatures.
+        - Score: 0/10 (Undetected/Failed)
+
+    Parameters:
+    results (dict): The analysis results containing details about the file and its behavior.
+    matched (list): A list of matched signatures with their categories, severity, confidence, and weight.
+
+    Returns:
+    tuple: A tuple containing the final malware score (float) and the status (str).
+    """
+    finalMalscore = 0.0
+    status = None
+    # Identify the analysis category (file or url).
+    category = results.get("target", {}).get("category")
+    fileType = results.get("target", {}).get("file", {}).get("type")
+
+    # IF THE ANALYSIS IS OF URL TYPE, we use the generic scoring logic
+    if category == "url":
+        # Calculate score using the helper function
+        finalMalscore = _calculate_generic_score(matched)
+
+        # We assign a status based on the score
+        if finalMalscore >= 7.0:
+            status = "Malicious"
+        elif finalMalscore >= 4.0:
+            status = "Suspicious"
+        elif finalMalscore > 0.0:
+            status = "Clean"
+        else:
+            status = "Undetected"
+
+        return finalMalscore, status
+
+    if not fileType:
+        return finalMalscore, status
+
+    if "executable" in fileType:
+        # We have 5 methodologies
+        # 1. The file is Malicious-Known (The sample is detected by YARA)
+        # ... (and so on, this logic is specific to executables)
+        tempScore1 = 0.0
+        tempScore2 = 0.0
+        is_maliciousCategoryHit = False
+        is_suspiciousCategoryHit = False
+        is_detected = False
+
+        # CAPE uses signtool.exe utility to verify the digital signature embedded in the PE file.
+        is_digital_signauture_verified = (
+            results.get("target", {}).get("file", {}).get("pe", {}).get("guest_signers", {}).get("aux_valid", False)
+        )
+
+        maliciousCategories = [
+            "malware", "ransomware", "infostealer", "rat", "trojan", "rootkit", "bootkit", "wiper", "banker",
+            "bypass", "anti-sandbox", "keylogger",
+        ]
+
+        suspiciousCategories = [
+            "network", "encryption", "anti-vm", "anti-analysis", "anti-av", "anti-debug", "anti-emulation",
+            "persistence", "stealth", "discovery", "injection", "generic", "account", "bot", "browser",
+            "allocation", "command", "execution",
+        ]
+
+        for detection in results.get("detections", []):
+            if any("Yara" in detail for detail in detection.get("details", [])):
+                is_detected = True
+
+        for matchedSig in matched:
+            if set(matchedSig.get("categories", [])) & set(maliciousCategories):
+                if matchedSig["confidence"] > 70:
+                    is_maliciousCategoryHit = True
+                    matchedSig["weight"] = 4
+                    if matchedSig["severity"] == 1:
+                        tempScore1 += matchedSig["weight"] * 0.5 * (matchedSig["confidence"] / 100.0)
+                    else:
+                        tempScore1 += matchedSig["weight"] * (matchedSig["severity"] - 1) * (matchedSig["confidence"] / 100.0)
+
+            if set(matchedSig.get("categories", [])) & set(suspiciousCategories):
+                is_suspiciousCategoryHit = True
+                if matchedSig["severity"] == 1:
+                    tempScore2 += matchedSig["weight"] * 0.5 * (matchedSig["confidence"] / 100.0)
+                else:
+                    tempScore2 += matchedSig["weight"] * (matchedSig["severity"] - 1) * (matchedSig["confidence"] / 100.0)
+
+        # 1. Malicious-Known
+        if is_detected:
+            status = "Malicious"
+            finalMalscore = 10.0
+
+        # 2. Malicious-Unknown
+        elif is_maliciousCategoryHit:
+            finalMalscore = tempScore1
+            status = "Malicious"
+            if 7.0 < finalMalscore < 9.0:
+                pass
+            elif finalMalscore >= 9.0:
+                finalMalscore = 9.0
+            elif finalMalscore < 7.0:
+                finalMalscore = 7.0
+
+        # 3. Suspicious-Unknown
+        elif is_suspiciousCategoryHit:
+            finalMalscore = tempScore2
+            if is_digital_signauture_verified:
+                finalMalscore = 0.0
+                status = "Clean"
+            elif finalMalscore < 4.0:
+                status = "Clean"
+            elif finalMalscore >= 6.0:
+                finalMalscore = 6.0
+                status = "Suspicious"
+            elif 4.0 <= finalMalscore < 6.0:
+                status = "Suspicious"
+
+        # 5. Undetected/Failed
+        else:
+            finalMalscore = 0
+            if results.get("behavior", {}).get("processtree", []):
+                status = "Undetected"
+            else:
+                status = "Failed"
+    else:
+        # For all other non-executable file types, use the generic scoring logic
+        finalMalscore = _calculate_generic_score(matched)
+        # Note: The original logic did not assign a status here, so we keep that behavior.
+
+    return finalMalscore, status
diff --git a/lib/cuckoo/common/socket_utils.py b/lib/cuckoo/common/socket_utils.py
new file mode 100644
index 00000000000..610a4e4c706
--- /dev/null
+++ b/lib/cuckoo/common/socket_utils.py
@@ -0,0 +1,76 @@
+import json
+import logging
+import socket
+import tempfile
+import threading
+from pathlib import Path
+
+from lib.cuckoo.common.path_utils import path_exists
+
+log = logging.getLogger("socket-aux")
+lock = threading.Lock()
+
+
+def send_socket_command(socket_path: str, command: str, *args, **kwargs):
+    """
+    Sends a command via a Unix domain socket to a root-executed component.
+
+    Args:
+        socket_path (str): The path to the Unix domain socket.
+        command (str): The command to send.
+        args: Additional positional arguments to include in the command.
+        kwargs: Additional keyword arguments to include in the command.
+
+    Returns:
+        dict: The response from the socket, parsed from JSON. If there is a timeout or connection error,
+            a dictionary with an "exception" key will be returned.
+
+    Logs:
+        Critical errors if the socket path does not exist or if unable to connect to the Unix socket.
+    """
+    """Aux function to send commands via socket to root executed components"""
+    if not path_exists(socket_path):
+        log.critical("Unable to passthrough root command (%s) as the rooter unix socket: %s doesn't exist", socket_path, command)
+        return
+
+    ret = None
+    with lock:
+        unixpath = tempfile.NamedTemporaryFile(mode="w+", delete=True)  # tempfile.mktemp()
+        s = socket.socket(socket.AF_UNIX, socket.SOCK_DGRAM)
+
+        unix_path = Path(unixpath.name)
+        if unix_path.exists():
+            unix_path.unlink()
+
+        s.bind(unixpath.name)
+
+        try:
+            s.connect(socket_path.encode())
+        except socket.error as e:
+            log.critical("Unable to passthrough root command as we're unable to connect to the unix socket: %s", e)
+            return
+
+        s.send(
+            json.dumps(
+                {
+                    "command": command,
+                    "args": args,
+                    "kwargs": kwargs,
+                }
+            ).encode()
+        )
+
+        try:
+            ret = json.loads(s.recv(0x10000))
+        except socket.timeout:
+            ret = {"exception": f"{socket_path} response timeout", "output": ""}
+
+        # Should we close the socket?
+        # if hasattr(s, "close"):
+        #    s.close()
+
+        return ret
+
+
+if "__main__" == __name__:
+    print(send_socket_command("/tmp/cape-fstab", "add_entry", ["192.168.1.1", "/opt/CAPEv2/workers/192.168.1.1"], {}))
diff --git a/lib/cuckoo/common/sshclient.py b/lib/cuckoo/common/sshclient.py
new file mode 100644
index 00000000000..56f997e6ace
--- /dev/null
+++ b/lib/cuckoo/common/sshclient.py
@@ -0,0 +1,280 @@
+# Original Copyright: 2020, Andrew Blair Schenck
+# https://github.com/andrewschenck/paramiko-jump
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# A copy of the License is available at:
+# http://www.apache.org/licenses/LICENSE-2.0
+
+"""
+
+Objects provided by this module:
+
+    :class:`SSHJumpClient`
+    :class:`DummyAuthHandler`
+    :func:`jump_host`
+    :func:`simple_auth_handler`
+
+"""
+
+from contextlib import contextmanager
+from getpass import getpass
+from typing import AnyStr, Callable, List, Optional, Sequence, Tuple, Union
+
+from paramiko import AutoAddPolicy
+from paramiko.client import SSH_PORT, SSHClient
+
+_Host = Union[AnyStr, Tuple[AnyStr, int]]
+_Prompt = Tuple[AnyStr, bool]
+
+
+class SSHJumpClient(SSHClient):
+    """
+    Manage an SSH session which is optionally being proxied
+    through a Jump Host.
+    """
+
+    def __init__(
+        self,
+        *,
+        jump_session: Optional[SSHClient] = None,
+        auth_handler: Optional[Callable] = None,
+    ):
+        """
+        :param jump_session:
+            If provided, proxy SSH connections through the another
+            instance of SSHClient.
+        :param auth_handler:
+            If provided, keyboard-interactive authentication will be
+            implemented, using this handler as the callback. If this
+            is set to None, use Paramiko's default authentication
+            algorithm instead of forcing keyboard-interactive
+            authentication.
+        """
+        super().__init__()
+
+        j = self._jump_session = jump_session
+        if j is not None and not hasattr(j, "_transport"):
+            raise TypeError(f"bad jump_session: {j}")
+        self._auth_handler = auth_handler
+
+    def __repr__(self):
+        return f"{self.__class__.__name__}(" f"jump_session={self._jump_session!r}, " f"auth_handler={self._auth_handler!r})"
+
+    def __str__(self):
+        return self.__class__.__name__
+
+    def _auth(
+        self,
+        username,
+        password,
+        pkey,
+        key_filenames,
+        allow_agent,
+        look_for_keys,
+        gss_auth,
+        gss_kex,
+        gss_deleg_creds,
+        gss_host,
+        passphrase,
+    ):  # pylint: disable=R0913
+        if callable(self._auth_handler):
+            return self._transport.auth_interactive(
+                username=username,
+                handler=self._auth_handler,
+            )
+
+        return super()._auth(
+            username=username,
+            password=password,
+            pkey=pkey,
+            key_filenames=key_filenames,
+            allow_agent=allow_agent,
+            look_for_keys=look_for_keys,
+            gss_auth=gss_auth,
+            gss_kex=gss_kex,
+            gss_deleg_creds=gss_deleg_creds,
+            gss_host=gss_host,
+            passphrase=passphrase,
+        )
+
+    def connect(
+        self,
+        hostname,
+        port=SSH_PORT,
+        username=None,
+        password=None,
+        pkey=None,
+        key_filename=None,
+        timeout=None,
+        allow_agent=True,
+        look_for_keys=True,
+        compress=False,
+        sock=None,
+        gss_auth=False,
+        gss_kex=False,
+        gss_deleg_creds=True,
+        gss_host=None,
+        banner_timeout=None,
+        auth_timeout=None,
+        gss_trust_dns=True,
+        passphrase=None,
+        disabled_algorithms=None,
+    ):  # pylint: disable=R0913,R0914
+        if self._jump_session is not None:
+            if sock is not None:
+                raise ValueError("jump_session= and sock= are mutually exclusive")
+            transport = self._jump_session._transport  # pylint: disable=W0212
+            sock = transport.open_channel(
+                kind="direct-tcpip",
+                dest_addr=(hostname, port),
+                src_addr=transport.getpeername(),
+            )
+
+        self.set_missing_host_key_policy(AutoAddPolicy())
+        return super().connect(
+            hostname=hostname,
+            port=port,
+            username=username,
+            password=password,
+            pkey=pkey,
+            key_filename=key_filename,
+            timeout=timeout,
+            allow_agent=allow_agent,
+            look_for_keys=look_for_keys,
+            compress=compress,
+            sock=sock,
+            gss_auth=gss_auth,
+            gss_kex=gss_kex,
+            gss_deleg_creds=gss_deleg_creds,
+            gss_host=gss_host,
+            banner_timeout=banner_timeout,
+            auth_timeout=auth_timeout,
+            gss_trust_dns=gss_trust_dns,
+            passphrase=passphrase,
+            disabled_algorithms=disabled_algorithms,
+        )
+
+
+class DummyAuthHandler:
+    """Stateful auth handler for paramiko that will return a list of
+     auth parameters for every CLI prompt
+
+    Example
+    -------
+        >>> from paramiko_jump import DummyAuthHandler
+        >>> handler = DummyAuthHandler(['password'], ['1'])
+        >>> handler()
+        ['password']
+        >>> handler()
+        ['1']
+
+    """
+
+    def __init__(self, *items):
+        self._iterator = iter(items)
+
+    def __call__(self, *args, **kwargs):
+        try:
+            return next(self)
+        except StopIteration:
+            return []
+
+    def __iter__(self):
+        return self
+
+    def __next__(self):
+        return next(self._iterator)
+
+
+@contextmanager
+def jump_host(
+    hostname: AnyStr,
+    username: AnyStr,
+    password: AnyStr,
+    auth_handler=None,
+    look_for_keys=True,
+    auto_add_missing_key_policy=True,
+):  # pylint: disable=R0913
+    """
+
+    Example
+    -------
+    >>> from paramiko_jump import SSHJumpClient, simple_auth_handler
+    >>> with jump_host(
+    >>>         hostname='jump-host',
+    >>>         username='username') as jump:
+    >>>     target = SSHJumpClient(jump_session=jumper)
+    >>>     target.connect(hostname='target-host', username='target-user')
+    >>>     _, stdout, _ = target.exec_command('sh ver')
+    >>>     print(stdout.read().decode())
+    >>>     target.close()
+
+
+    :param hostname:
+        The hostname of the jump host.
+    :param username:
+        The username used to authenticate with the jump host.
+    :param password:
+        Password used to authenticate with the jump host.
+    :param auth_handler:
+        If provided, keyboard-interactive authentication will be
+        implemented, using this handler as the callback. If this
+        is set to None, use Paramiko's default authentication
+        algorithm instead of forcing keyboard-interactive
+        authentication.
+    :param look_for_keys:
+        Gives Paramiko permission to look around in our ~/.ssh
+        folder to discover SSH keys on its own (Default False)
+    :param auto_add_missing_key_policy:
+        If set to True, setting the missing host key policy on the jump is set
+        to auto add policy. (Default False)
+    :return:
+        Connected SSHJumpClient
+    """
+    jumper = SSHJumpClient(auth_handler=auth_handler)
+    if auto_add_missing_key_policy:
+        jumper.set_missing_host_key_policy(AutoAddPolicy())
+    try:
+        jumper.connect(
+            hostname=hostname,
+            username=username,
+            password=password,
+            look_for_keys=look_for_keys,
+            allow_agent=False,
+        )
+        yield jumper
+    finally:
+        jumper.close()
+
+
+def simple_auth_handler(
+    title: AnyStr,
+    instructions: AnyStr,
+    prompt_list: Sequence[_Prompt],
+) -> List[AnyStr]:
+    """
+    Authentication callback, for keyboard-interactive
+    authentication.
+
+    :param title:
+        Displayed to the end user before anything else.
+    :param instructions:
+        Displayed to the end user. Typically contains text explaining
+        the authentication scheme and / or legal disclaimers.
+    :param prompt_list:
+        A Sequence of (AnyStr, bool). Each string element is
+        displayed as an end-user input prompt. The corresponding
+        boolean element indicates whether the user input should
+        be 'echoed' back to the terminal during the interaction.
+    """
+    answers = []
+    if title:
+        print(title)
+    if instructions:
+        print(instructions)
+
+    for prompt, show_input in prompt_list:
+        input_ = input if show_input else getpass
+        answers.append(input_(prompt))
+    return answers
diff --git a/lib/cuckoo/common/structures.py b/lib/cuckoo/common/structures.py
index 14edb8e1d91..998ce9599f2 100644
--- a/lib/cuckoo/common/structures.py
+++ b/lib/cuckoo/common/structures.py
@@ -15,7 +15,7 @@ def as_dict(self):
             elif hasattr(value, "value"):
                 ret[field] = value
             elif hasattr(value, "__getitem__"):
-                ret[field] = value[:]
+                ret[field] = value.copy()
             else:
                 ret[field] = value
         return ret
diff --git a/lib/cuckoo/common/suri_specs.py b/lib/cuckoo/common/suri_specs.py
index 70a0dbbdc74..5551842b3f8 100644
--- a/lib/cuckoo/common/suri_specs.py
+++ b/lib/cuckoo/common/suri_specs.py
@@ -1,41 +1,183 @@
 argsd = {
     "pcap-file": [
-        {"name": "filename", "required": 1,},
-        {"name": "output-dir", "required": 1,},
-        {"name": "tenant", "type": int, "required": 0,},
-        {"name": "continuous", "required": 0,},
-        {"name": "delete-when-done", "required": 0,},
+        {
+            "name": "filename",
+            "required": 1,
+        },
+        {
+            "name": "output-dir",
+            "required": 1,
+        },
+        {
+            "name": "tenant",
+            "type": int,
+            "required": 0,
+        },
+        {
+            "name": "continuous",
+            "required": 0,
+        },
+        {
+            "name": "delete-when-done",
+            "required": 0,
+        },
     ],
     "pcap-file-continuous": [
-        {"name": "filename", "required": 1,},
-        {"name": "output-dir", "required": 1,},
-        {"name": "continuous", "val": True, "required": 1,},
-        {"name": "tenant", "type": int, "required": 0,},
-        {"name": "delete-when-done", "required": 0,},
-    ],
-    "iface-stat": [{"name": "iface", "required": 1,},],
-    "conf-get": [{"name": "variable", "required": 1,}],
+        {
+            "name": "filename",
+            "required": 1,
+        },
+        {
+            "name": "output-dir",
+            "required": 1,
+        },
+        {
+            "name": "continuous",
+            "val": True,
+            "required": 1,
+        },
+        {
+            "name": "tenant",
+            "type": int,
+            "required": 0,
+        },
+        {
+            "name": "delete-when-done",
+            "required": 0,
+        },
+    ],
+    "iface-stat": [
+        {
+            "name": "iface",
+            "required": 1,
+        },
+    ],
+    "conf-get": [
+        {
+            "name": "variable",
+            "required": 1,
+        }
+    ],
     "unregister-tenant-handler": [
-        {"name": "id", "type": int, "required": 1,},
-        {"name": "htype", "required": 1,},
-        {"name": "hargs", "type": int, "required": 0,},
+        {
+            "name": "id",
+            "type": int,
+            "required": 1,
+        },
+        {
+            "name": "htype",
+            "required": 1,
+        },
+        {
+            "name": "hargs",
+            "type": int,
+            "required": 0,
+        },
     ],
     "register-tenant-handler": [
-        {"name": "id", "type": int, "required": 1,},
-        {"name": "htype", "required": 1,},
-        {"name": "hargs", "type": int, "required": 0,},
+        {
+            "name": "id",
+            "type": int,
+            "required": 1,
+        },
+        {
+            "name": "htype",
+            "required": 1,
+        },
+        {
+            "name": "hargs",
+            "type": int,
+            "required": 0,
+        },
+    ],
+    "unregister-tenant": [
+        {
+            "name": "id",
+            "type": int,
+            "required": 1,
+        },
+    ],
+    "register-tenant": [
+        {
+            "name": "id",
+            "type": int,
+            "required": 1,
+        },
+        {
+            "name": "filename",
+            "required": 1,
+        },
+    ],
+    "reload-tenant": [
+        {
+            "name": "id",
+            "type": int,
+            "required": 1,
+        },
+        {
+            "name": "filename",
+            "required": 1,
+        },
     ],
-    "unregister-tenant": [{"name": "id", "type": int, "required": 1,},],
-    "register-tenant": [{"name": "id", "type": int, "required": 1,}, {"name": "filename", "required": 1,},],
-    "reload-tenant": [{"name": "id", "type": int, "required": 1,}, {"name": "filename", "required": 1,},],
     "add-hostbit": [
-        {"name": "ipaddress", "required": 1,},
-        {"name": "hostbit", "required": 1,},
-        {"name": "expire", "type": int, "required": 1,},
-    ],
-    "remove-hostbit": [{"name": "ipaddress", "required": 1,}, {"name": "hostbit", "required": 1,},],
-    "list-hostbit": [{"name": "ipaddress", "required": 1,},],
-    "memcap-set": [{"name": "config", "required": 1,}, {"name": "memcap", "required": 1,},],
-    "memcap-show": [{"name": "config", "required": 1,},],
-    "dataset-add": [{"name": "setname", "required": 1,}, {"name": "settype", "required": 1,}, {"name": "datavalue", "required": 1,},],
+        {
+            "name": "ipaddress",
+            "required": 1,
+        },
+        {
+            "name": "hostbit",
+            "required": 1,
+        },
+        {
+            "name": "expire",
+            "type": int,
+            "required": 1,
+        },
+    ],
+    "remove-hostbit": [
+        {
+            "name": "ipaddress",
+            "required": 1,
+        },
+        {
+            "name": "hostbit",
+            "required": 1,
+        },
+    ],
+    "list-hostbit": [
+        {
+            "name": "ipaddress",
+            "required": 1,
+        },
+    ],
+    "memcap-set": [
+        {
+            "name": "config",
+            "required": 1,
+        },
+        {
+            "name": "memcap",
+            "required": 1,
+        },
+    ],
+    "memcap-show": [
+        {
+            "name": "config",
+            "required": 1,
+        },
+    ],
+    "dataset-add": [
+        {
+            "name": "setname",
+            "required": 1,
+        },
+        {
+            "name": "settype",
+            "required": 1,
+        },
+        {
+            "name": "datavalue",
+            "required": 1,
+        },
+    ],
 }
diff --git a/lib/cuckoo/common/suricata_detection.py b/lib/cuckoo/common/suricata_detection.py
new file mode 100644
index 00000000000..4d42c1aae54
--- /dev/null
+++ b/lib/cuckoo/common/suricata_detection.py
@@ -0,0 +1,125 @@
+import re
+
+suricata_passlist = (
+    "agenttesla",
+    "medusahttp",
+    "vjworm",
+)
+
+suricata_blocklist = (
+    "abuse",
+    "agent",
+    "base64",
+    "backdoor",
+    "common",
+    "confidence",
+    "custom",
+    "dropper",
+    "downloader",
+    "evil",
+    "executable",
+    "f-av",
+    "fake",
+    "family",
+    "fileless",
+    "filename",
+    "generic",
+    "fireeye",
+    "google",
+    "hacking",
+    "injector",
+    "known",
+    "likely",
+    "magic",
+    "malicious",
+    "media",
+    "msil",
+    "multi",
+    "observed",
+    "owned",
+    "perfect",
+    "possible",
+    "potential",
+    "powershell",
+    "probably",
+    "python",
+    "rogue",
+    "self-signed",
+    "shadowserver",
+    "single",
+    "suspect",
+    "suspected",
+    "supicious",
+    "targeted",
+    "team",
+    "terse",
+    "troj",
+    "trojan",
+    "unit42",
+    "unknown",
+    "user",
+    "vbinject",
+    "vbscript",
+    "virus",
+    "w2km",
+    "w97m",
+    "w32",
+    "win32",
+    "win64",
+    "windows",
+    "worm",
+    "wscript",
+    "http",
+    "ptsecurity",
+    "request",
+    "suspicious",
+)
+
+et_categories = ("ET TROJAN", "ETPRO TROJAN", "ET MALWARE", "ETPRO MALWARE", "ET CNC", "ETPRO CNC")
+
+
+def get_suricata_family(signature):
+    """
+    Extracts the family name from a Suricata alert string.
+    Args:
+        signature: suricata alert string
+    Return
+        family: family name or False
+    """
+    # ToDo Trojan-Proxy
+    family = False
+    signature = re.sub(r"\s+\[[^\]]+\]\s+", " ", signature)
+    words = re.findall(r"[A-Za-z0-9/\-]+", signature)
+    famcheck = words[2]
+    if "/" in famcheck:
+        famcheck_list = famcheck.split("/")  # [-1]
+        for fam_name in famcheck_list:
+            if all(block not in fam_name.lower() for block in suricata_blocklist):
+                famcheck = fam_name
+                break
+    famchecklower = famcheck.lower()
+    if famchecklower.startswith("win.") and famchecklower.count(".") == 1:
+        famchecklower = famchecklower.rsplit(".", 1)[-1]
+        famcheck = famcheck.rsplit(".", 1)[-1]
+    if famchecklower in ("win32", "w32", "ransomware"):
+        famcheck = words[3]
+        famchecklower = famcheck.lower()
+    if famchecklower == "ptsecurity":
+        famcheck = words[3]
+        famchecklower = famcheck.lower()
+    if famchecklower == "backdoor" and words[3].lower() == "family":
+        famcheck = words[4]
+        famchecklower = famcheck.lower()
+    if "/" in famchecklower:
+        famcheck_list = famchecklower.split("/")  # [-1]
+        for fam_name in famcheck_list:
+            if all(block not in fam_name.lower() for block in suricata_blocklist):
+                famcheck = fam_name
+                break
+    isbad = any(block in famchecklower for block in suricata_blocklist)
+    if not isbad and len(famcheck) >= 4:
+        family = famcheck
+    isgood = any(allow in famchecklower for allow in suricata_passlist)
+    if isgood and len(famcheck) >= 4:
+        family = famcheck
+    return family
diff --git a/lib/cuckoo/common/suricatasc.py b/lib/cuckoo/common/suricatasc.py
index 14c6efe5cd8..2064da0ea0d 100644
--- a/lib/cuckoo/common/suricatasc.py
+++ b/lib/cuckoo/common/suricatasc.py
@@ -14,13 +14,9 @@
 # along with this program; if not, write to the Free Software
 # Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA.
 
-try:
-    import simplejson as json
-except ImportError:
-    import json
+import json
 import readline
 import select
-import sys
 from socket import AF_UNIX, error, socket
 
 from .suri_specs import argsd
@@ -118,10 +114,7 @@ def json_recv(self):
         cmdret = None
         data = ""
         while True:
-            if sys.version < "3":
-                data += self.socket.recv(INC_SIZE)
-            else:
-                data += self.socket.recv(INC_SIZE).decode("iso-8859-1")
+            data += self.socket.recv(INC_SIZE).decode("iso-8859-1")
             if data.endswith("\n"):
                 cmdret = json.loads(data)
                 break
@@ -129,64 +122,49 @@ def json_recv(self):
 
     def send_command(self, command, arguments=None):
         if command not in self.cmd_list and command != "command-list":
-            raise SuricataCommandException("Command not found: {}".format(command))
+            raise SuricataCommandException(f"Command not found: {command}")
 
-        cmdmsg = {}
-        cmdmsg["command"] = command
+        cmdmsg = {"command": command}
         if arguments:
             cmdmsg["arguments"] = arguments
         if self.verbose:
-            print("SND: " + json.dumps(cmdmsg))
-        cmdmsg_str = json.dumps(cmdmsg) + "\n"
-        if sys.version < "3":
-            self.socket.send(cmdmsg_str)
-        else:
-            self.socket.send(bytes(cmdmsg_str, "iso-8859-1"))
+            print(f"SND: {json.dumps(cmdmsg)}")
+        cmdmsg_str = f"{json.dumps(cmdmsg)}\n"
+        self.socket.send(bytes(cmdmsg_str, "iso-8859-1"))
 
         ready = select.select([self.socket], [], [], 600)
-        if ready[0]:
-            cmdret = self.json_recv()
-        else:
-            cmdret = None
+        cmdret = self.json_recv() if ready[0] else None
         if not cmdret:
             raise SuricataReturnException("Unable to get message from server")
 
         if self.verbose:
-            print("RCV: " + json.dumps(cmdret))
+            print(f"RCV: {json.dumps(cmdret)}")
 
         return cmdret
 
     def connect(self):
         try:
-            if self.socket == None:
+            if self.socket is None:
                 self.socket = socket(AF_UNIX)
             self.socket.connect(self.sck_path)
         except error as err:
-            raise SuricataNetException(err)
-
+            raise SuricataNetException(err) from err
         self.socket.settimeout(10)
         # send version
         if self.verbose:
-            print("SND: " + json.dumps({"version": VERSION}))
-        if sys.version < "3":
-            self.socket.send(json.dumps({"version": VERSION}))
-        else:
-            self.socket.send(bytes(json.dumps({"version": VERSION}), "iso-8859-1"))
+            print(f"SND: {json.dumps({'version': VERSION})}")
+        self.socket.send(bytes(json.dumps({"version": VERSION}), "iso-8859-1"))
 
         ready = select.select([self.socket], [], [], 600)
-        if ready[0]:
-            cmdret = self.json_recv()
-        else:
-            cmdret = None
-
+        cmdret = self.json_recv() if ready[0] else None
         if not cmdret:
             raise SuricataReturnException("Unable to get message from server")
 
         if self.verbose:
-            print("RCV: " + json.dumps(cmdret))
+            print(f"RCV: {json.dumps(cmdret)}")
 
         if cmdret["return"] == "NOK":
-            raise SuricataReturnException("Error: %s" % (cmdret["message"]))
+            raise SuricataReturnException(f"Error: {cmdret['message']}")
 
         cmdret = self.send_command("command-list")
 
@@ -203,8 +181,8 @@ def execute(self, command):
         full_cmd = command.split()
         cmd = full_cmd[0]
         cmd_specs = argsd[cmd]
-        required_args_count = len([d["required"] for d in cmd_specs if d["required"] and not "val" in d])
-        arguments = dict()
+        required_args_count = len([d["required"] for d in cmd_specs if d["required"] and "val" not in d])
+        arguments = {}
         for c, spec in enumerate(cmd_specs, 1):
             spec_type = str if "type" not in spec else spec["type"]
             if spec["required"]:
@@ -213,28 +191,27 @@ def execute(self, command):
                     continue
                 try:
                     arguments[spec["name"]] = spec_type(full_cmd[c])
-                except IndexError:
+                except IndexError as e:
                     phrase = " at least" if required_args_count != len(cmd_specs) else ""
-                    msg = "Missing arguments: expected{} {}".format(phrase, required_args_count)
-                    raise SuricataCommandException(msg)
+                    msg = f"Missing arguments: expected {phrase} {required_args_count}"
+                    raise SuricataCommandException(msg) from e
                 except ValueError as ve:
-                    raise SuricataCommandException("Erroneous arguments: {}".format(ve))
+                    raise SuricataCommandException(f"Erroneous arguments: {ve}") from ve
             elif c < len(full_cmd):
                 arguments[spec["name"]] = spec_type(full_cmd[c])
         return cmd, arguments
 
     def parse_command(self, command):
         arguments = None
-        cmd = command.split()[0] if command else None
-        if cmd in self.cmd_list:
-            if cmd in self.fn_commands:
-                cmd, arguments = getattr(self, "execute")(command=command)
-        else:
-            raise SuricataCommandException("Unknown command {}".format(command))
+        cmd = command.split(maxsplit=1)[0] if command else None
+        if cmd not in self.cmd_list:
+            raise SuricataCommandException(f"Unknown command {command}")
+        if cmd in self.fn_commands:
+            cmd, arguments = getattr(self, "execute")(command=command)
         return cmd, arguments
 
     def interactive(self):
-        print("Command list: " + ", ".join(self.cmd_list))
+        print(f"Command list: {', '.join(self.cmd_list)}")
         try:
             readline.set_completer(SuricataCompleter(self.cmd_list))
             readline.set_completer_delims(";")
@@ -250,22 +227,21 @@ def interactive(self):
                     continue
                 try:
                     cmdret = self.send_command(cmd, arguments)
-                except IOError as err:
+                except IOError:
                     # try to reconnect and resend command
                     print("Connection lost, trying to reconnect")
                     try:
                         self.close()
                         self.connect()
-                    except SuricataNetException as err:
+                    except SuricataNetException:
                         print("Can't reconnect to suricata socket, discarding command")
                         continue
                     cmdret = self.send_command(cmd, arguments)
                 # decode json message
                 if cmdret["return"] == "NOK":
                     print("Error:")
-                    print(json.dumps(cmdret["message"], sort_keys=True, indent=4, separators=(",", ": ")))
                 else:
                     print("Success:")
-                    print(json.dumps(cmdret["message"], sort_keys=True, indent=4, separators=(",", ": ")))
+                print(json.dumps(cmdret["message"], sort_keys=True, indent=4, separators=(",", ": ")))
         except KeyboardInterrupt:
             print("[!] Interrupted")
diff --git a/lib/cuckoo/common/trim_utils.py b/lib/cuckoo/common/trim_utils.py
new file mode 100644
index 00000000000..64edf90a283
--- /dev/null
+++ b/lib/cuckoo/common/trim_utils.py
@@ -0,0 +1,53 @@
+from contextlib import suppress
+from pathlib import Path
+
+import olefile
+
+from lib.cuckoo.common.config import Config
+from lib.cuckoo.common.integrations.parse_pe import HAVE_PEFILE, IsPEImage, PortableExecutable
+from lib.cuckoo.common.objects import File
+from lib.cuckoo.common.path_utils import path_write_file
+
+web_cfg = Config("web")
+
+
+def trimmed_path(filename: bytes) -> bytes:
+    path = Path(filename.decode())
+    return f"{path.parent}/trimmed_{path.name}".encode()
+
+
+def trim_file(filename: bytes) -> bool:
+    """
+    Trim PE/OLE doc file
+    """
+    trimmed_size = None
+    file_head = File(filename).get_chunks(64).__next__()
+    with suppress(Exception):
+        if file_head[:8] == b"\xd0\xcf\x11\xe0\xa1\xb1\x1a\xe1":
+            trimmed_size = trim_doc(filename)
+        elif HAVE_PEFILE and IsPEImage(file_head):
+            trimmed_size = trim_pe(file_head)
+
+    if trimmed_size and trimmed_size < web_cfg.general.max_sample_size:
+        with open(filename, "rb") as hfile:
+            data = hfile.read(trimmed_size)
+        _ = path_write_file(trimmed_path(filename).decode(), data)
+        return True
+
+
+def trim_doc(filename: bytes) -> int:
+    ole = olefile.OleFileIO(filename)
+    num_sectors_per_fat_sector = ole.sector_size / 4
+    num_sectors_in_fat = num_sectors_per_fat_sector * ole.num_fat_sectors
+    max_filesize_fat = (num_sectors_in_fat + 1) * ole.sector_size
+    if ole._filesize > max_filesize_fat:
+        last_used_sector = len(ole.fat) - 1
+        for i in range(len(ole.fat) - 1, 0, -1):
+            last_used_sector = i
+            if ole.fat[i] != olefile.FREESECT:
+                break
+        return ole.sectorsize * (last_used_sector + 2)
+
+
+def trim_pe(first_chunk):
+    return PortableExecutable(data=first_chunk).get_overlay_raw()
diff --git a/lib/cuckoo/common/url_validate.py b/lib/cuckoo/common/url_validate.py
index 880b3eb36a3..8ce2b626509 100644
--- a/lib/cuckoo/common/url_validate.py
+++ b/lib/cuckoo/common/url_validate.py
@@ -3,11 +3,11 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
+import re
+
 # this is with some fixes https://github.com/kvesteri/validators/blob/master/validators/url.py
 # https://github.com/kvesteri/validators/pull/184/files
 
-import re
 
 ip_middle_octet = r"(?:\.(?:1?\d{1,2}|2[0-4]\d|25[0-5]))"
 ip_last_octet = r"(?:\.(?:0|[1-9]\d?|1\d\d|2[0-4]\d|25[0-5]))"
@@ -94,7 +94,7 @@
     # fragment
     r"(?:#\S*)?"
     r"$",
-    re.UNICODE | re.IGNORECASE
+    re.UNICODE | re.IGNORECASE,
 )
 
 pattern = re.compile(regex)
@@ -136,72 +136,71 @@ def url(value, public=True):
     if not public:
         return result
 
-    return result and not any(
-        (result.groupdict().get(key) for key in ('private_ip', 'private_host'))
-    )
+    return result and not any((result.groupdict().get(key) for key in ("private_ip", "private_host")))
+
 
-if __name__ == '__main__':
+if __name__ == "__main__":
     test_urls = (
-        u'http://foobar.dk',
-        u'http://foobar.museum/foobar',
-        u'http://fo.com',
-        u'http://FOO.com',
-        u'http://foo.com/blah_blah',
-        u'http://foo.com/blah_blah/',
-        u'http://foo.com/blah_blah_(wikipedia)',
-        u'http://foo.com/blah_blah_(wikipedia)_(again)',
-        u'http://www.example.com/wpstyle/?p=364',
-        u'https://www.example.com/foo/?bar=baz&inga=42&quux',
-        u'https://www.example.com?bar=baz',
-        u'http://✪df.ws/123',
-        u'http://userid:password@example.com:8080',
-        u'http://userid:password@example.com:8080/',
-        u'http://userid@example.com',
-        u'http://userid@example.com/',
-        u'http://userid@example.com:8080',
-        u'http://userid@example.com:8080/',
-        u'http://userid:password@example.com',
-        u'http://userid:password@example.com/',
-        u'http://142.42.1.1/',
-        u'http://142.42.1.1:8080/',
-        u'http://➡.ws/䨹',
-        u'http://⌘.ws',
-        u'http://⌘.ws/',
-        u'http://foo.com/blah_(wikipedia)#cite-1',
-        u'http://foo.com/blah_(wikipedia)_blah#cite-1',
-        u'http://foo.com/unicode_(✪)_in_parens',
-        u'http://foo.com/(something)?after=parens',
-        u'http://☺.damowmow.com/',
-        u'http://code.google.com/events/#&product=browser',
-        u'http://j.mp',
-        u'ftp://foo.bar/baz',
-        u'http://foo.bar/?q=Test%20URL-encoded%20stuff',
-        u'http://مثال.إختبار',
-        u'http://例子.测试',
-        u'http://उदाहरण.परीक्षा',
-        u'http://www.😉.com',
-        u'http://😉.com/😁',
-        u'http://উদাহরণ.বাংলা',
-        u'http://xn--d5b6ci4b4b3a.xn--54b7fta0cc',
-        u'http://дом-м.рф/1/asdf',
-        u'http://xn----gtbybh.xn--p1ai/1/asdf',
-        u'http://-.~_!$&\'()*+,;=:%40:80%2f::::::@example.com',
-        u'http://1337.net',
-        u'http://a.b-c.de',
-        u'http://223.255.255.254',
-        u'http://10.1.1.0',
-        u'http://10.1.1.1',
-        u'http://10.1.1.254',
-        u'http://10.1.1.255',
-        u'http://127.0.0.1:8080',
-        u'http://127.0.10.150',
-        u'http://localhost',
-        u'http://localhost:8000',
-        u'http://[FEDC:BA98:7654:3210:FEDC:BA98:7654:3210]:80/index.html',
-        u'http://[1080:0:0:0:8:800:200C:417A]/index.html',
-        u'http://[3ffe:2a00:100:7031::1]',
-        u'http://[1080::8:800:200C:417A]/foo',
-        u'http://[::192.9.5.5]/ipng',
-        u'http://[::FFFF:129.144.52.38]:80/index.html',
-        u'http://[2010:836B:4179::836B:4179]',
+        "http://foobar.dk",
+        "http://foobar.museum/foobar",
+        "http://fo.com",
+        "http://FOO.com",
+        "http://foo.com/blah_blah",
+        "http://foo.com/blah_blah/",
+        "http://foo.com/blah_blah_(wikipedia)",
+        "http://foo.com/blah_blah_(wikipedia)_(again)",
+        "http://www.example.com/wpstyle/?p=364",
+        "https://www.example.com/foo/?bar=baz&inga=42&quux",
+        "https://www.example.com?bar=baz",
+        "http://✪df.ws/123",
+        "http://userid:password@example.com:8080",
+        "http://userid:password@example.com:8080/",
+        "http://userid@example.com",
+        "http://userid@example.com/",
+        "http://userid@example.com:8080",
+        "http://userid@example.com:8080/",
+        "http://userid:password@example.com",
+        "http://userid:password@example.com/",
+        "http://142.42.1.1/",
+        "http://142.42.1.1:8080/",
+        "http://➡.ws/䨹",
+        "http://⌘.ws",
+        "http://⌘.ws/",
+        "http://foo.com/blah_(wikipedia)#cite-1",
+        "http://foo.com/blah_(wikipedia)_blah#cite-1",
+        "http://foo.com/unicode_(✪)_in_parens",
+        "http://foo.com/(something)?after=parens",
+        "http://☺.damowmow.com/",
+        "http://code.google.com/events/#&product=browser",
+        "http://j.mp",
+        "ftp://foo.bar/baz",
+        "http://foo.bar/?q=Test%20URL-encoded%20stuff",
+        "http://مثال.إختبار",
+        "http://例子.测试",
+        "http://उदाहरण.परीक्षा",
+        "http://www.😉.com",
+        "http://😉.com/😁",
+        "http://উদাহরণ.বাংলা",
+        "http://xn--d5b6ci4b4b3a.xn--54b7fta0cc",
+        "http://дом-м.рф/1/asdf",
+        "http://xn----gtbybh.xn--p1ai/1/asdf",
+        "http://-.~_!$&'()*+,;=:%40:80%2f::::::@example.com",
+        "http://1337.net",
+        "http://a.b-c.de",
+        "http://223.255.255.254",
+        "http://10.1.1.0",
+        "http://10.1.1.1",
+        "http://10.1.1.254",
+        "http://10.1.1.255",
+        "http://127.0.0.1:8080",
+        "http://127.0.10.150",
+        "http://localhost",
+        "http://localhost:8000",
+        "http://[FEDC:BA98:7654:3210:FEDC:BA98:7654:3210]:80/index.html",
+        "http://[1080:0:0:0:8:800:200C:417A]/index.html",
+        "http://[3ffe:2a00:100:7031::1]",
+        "http://[1080::8:800:200C:417A]/foo",
+        "http://[::192.9.5.5]/ipng",
+        "http://[::FFFF:129.144.52.38]:80/index.html",
+        "http://[2010:836B:4179::836B:4179]",
     )
diff --git a/lib/cuckoo/common/utils.py b/lib/cuckoo/common/utils.py
index ddf52f8464e..3f2e67dd1bb 100644
--- a/lib/cuckoo/common/utils.py
+++ b/lib/cuckoo/common/utils.py
@@ -2,33 +2,34 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
+import contextlib
+import errno
+import fcntl
+import logging
 import os
-import time
+import random
 import shutil
-import ntpath
+import socket
 import string
-import random
 import struct
-import fcntl
-import socket
 import tempfile
+import time
 import xmlrpc.client
-import errno
-import logging
-import inspect
-import threading
-import multiprocessing
-import operator
+import zipfile
 from datetime import datetime
-from collections import defaultdict
+from io import BytesIO
+from typing import Final, List, Tuple, Union
 
+from data.family_detection_names import family_detection_names
+from lib.cuckoo.common import utils_dicts
+from lib.cuckoo.common import utils_pretty_print_funcs as pp_funcs
 from lib.cuckoo.common.config import Config
 from lib.cuckoo.common.constants import CUCKOO_ROOT
 from lib.cuckoo.common.exceptions import CuckooOperationalError
-from lib.cuckoo.common import utils_dicts
-from lib.cuckoo.common import utils_pretty_print_funcs as pp_funcs
-import six
+from lib.cuckoo.common.path_utils import path_exists, path_get_filename, path_is_dir, path_mkdir, path_read_file
+
+# ToDo
+# from lib.cuckoo.common.cleaners_utils import execute_cleanup
 
 try:
     import re2 as re
@@ -37,93 +38,172 @@
 
 try:
     import chardet
+
     HAVE_CHARDET = True
 except ImportError:
     HAVE_CHARDET = False
 
+try:
+    import pyzipper
+
+    HAVE_PYZIPPER = True
+except ImportError:
+    HAVE_PYZIPPER = False
+    print("Missed pyzipper dependency: pip3 install pyzipper -U")
+
+
 def arg_name_clscontext(arg_val):
     val = int(arg_val, 16)
     enumdict = utils_dicts.ClsContextDict()
     return simple_pretty_print_convert(val, enumdict)
 
+
 config = Config()
+web_cfg = Config("web")
 
-# it called ramfs, but it is tmpfs
-if hasattr(config, "ramfs"):
-    ramfs = config.ramfs
-    HAVE_RAMFS = True
-else:
-    HAVE_RAMFS = False
+
+HAVE_TMPFS = False
+if hasattr(config, "tmpfs"):
+    tmpfs = config.tmpfs
+    HAVE_TMPFS = True
 
 log = logging.getLogger(__name__)
 
+# Django Validator BSD lic. https://github.com/django/django
+referrer_url_re = re.compile(
+    r"^(?:http|ftp)s?://"  # http:// or https://
+    r"(?:(?:[A-Z0-9](?:[A-Z0-9-]{0,61}[A-Z0-9])?\.)+(?:[A-Z]{2,6}\.?|[A-Z0-9-]{2,}\.?)|"  # domain...
+    r"localhost|"  # localhost...
+    r"\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3})"  # ...or ip
+    r"(?::\d+)?"  # optional port
+    r"(?:/?|[/?]\S+)$",
+    re.IGNORECASE,
+)
 
-def free_space_monitor(path=False, RAM=False, return_value=False):
-    need_space, space_available = False, 0
-    while True:
-        try:
-            # Calculate the free disk space in megabytes.
-            if RAM and HAVE_RAMFS and ramfs.enabled:
-                space_available = shutil.disk_usage(ramfs.path).free >> 20
-                need_space = space_available < ramfs.freespace
-            else:
-                space_available = shutil.disk_usage(path).free >> 20
-                need_space = space_available < config.cuckoo.freespace
-        except FileNotFoundError:
-            log.error("Folder doesn't exist, maybe due to clean")
-            os.makedirs(path)
-            continue
-
-        if return_value:
-            return need_space, space_available
-
-        if need_space:
-            log.error("Not enough free disk space! (Only %d MB!)", space_available)
-            time.sleep(5)
+# change to read from config
+zippwd = web_cfg.zipped_download.get("zip_pwd", b"infected")
+if not isinstance(zippwd, bytes):
+    zippwd = zippwd.encode()
+
+max_len = config.cuckoo.get("max_len", 100)
+sanitize_len = config.cuckoo.get("sanitize_len", 32)
+sanitize_to_len = config.cuckoo.get("sanitize_to_len", 24)
+
+CATEGORIES_NEEDING_VM: Final[Tuple[str]] = ("file", "url")
+
+
+def load_categories() -> Tuple[List[str], bool]:
+    analyzing_categories = [category.strip() for category in config.cuckoo.categories.split(",")]
+    needs_VM = any(category in analyzing_categories for category in CATEGORIES_NEEDING_VM)
+    return analyzing_categories, needs_VM
+
+
+texttypes = [
+    "ASCII",
+    "Windows Registry text",
+    "XML document text",
+    "Unicode text",
+]
+
+
+# this doesn't work for bytes
+# textchars = bytearray({7, 8, 9, 10, 12, 13, 27} | set(range(0x20, 0x100)) - {0x7F})
+# is_binary_file = lambda bytes: bool(bytes.translate(None, textchars))
+
+
+def make_bytes(value: Union[str, bytes], encoding: str = "latin-1") -> bytes:
+    return value.encode(encoding) if isinstance(value, str) else value
+
+
+def is_text_file(file_info, destination_folder, buf, file_data=False):
+    if any(file_type in file_info.get("type", "") for file_type in texttypes):
+        extracted_path = os.path.join(
+            destination_folder,
+            file_info.get(
+                "sha256",
+            ),
+        )
+        if not file_data and not path_exists(extracted_path):
+            return
+
+        if not file_data:
+            file_data = path_read_file(extracted_path)
+
+        if len(file_data) > buf:
+            return file_data[:buf].decode("latin-1") + " <truncated>"
         else:
-            break
+            return file_data.decode("latin-1")
 
 
-def get_memdump_path(id, analysis_folder=False):
+def create_zip(files=False, folder=False, encrypted=False):
+    """Utility function to create zip archive with file(s)
+    @param files: file or list of files
+    @param folder: path to folder to compress
+    @param encrypted: create password protected and AES encrypted file
+    """
+
+    if folder:
+        # To avoid when we have only folder argument
+        if not files:
+            files = []
+        files += [os.path.join(folder, file) for file in os.listdir(folder)]
+
+    if not isinstance(files, list):
+        files = [files]
+
+    mem_zip = BytesIO()
+    if encrypted and HAVE_PYZIPPER:
+        zipper = pyzipper.AESZipFile(mem_zip, "w", compression=pyzipper.ZIP_DEFLATED, encryption=pyzipper.WZ_AES)
+    else:
+        zipper = zipfile.ZipFile(mem_zip, "a", zipfile.ZIP_DEFLATED, False)
+    with zipper as zf:
+        if encrypted:
+            zf.setpassword(zippwd)
+        for file in files:
+            if not path_exists(file):
+                log.error("File does't exist: %s", file)
+                continue
+
+            parent_folder = os.path.dirname(file).rsplit(os.sep, 1)[-1]
+            path = os.path.join(parent_folder, os.path.basename(file))
+            zf.write(file, path)
+
+    mem_zip.seek(0)
+    return mem_zip
+
+
+def get_memdump_path(memdump_id, analysis_folder=False):
     """
     Get the path of memdump to store
     analysis_folder: force to return default analysis folder
     """
-    id = str(id)
-    if HAVE_RAMFS and ramfs.enabled and analysis_folder is False:
-        memdump_path = os.path.join(ramfs.path, id + ".dmp")
-    else:
-        memdump_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", id, "memory.dmp")
-    return memdump_path
+    memdump_id = str(memdump_id)
+    return (
+        os.path.join(tmpfs.path, f"{memdump_id}.dmp")
+        if HAVE_TMPFS and tmpfs.enabled and not analysis_folder
+        else os.path.join(CUCKOO_ROOT, "storage", "analyses", memdump_id, "memory.dmp")
+    )
 
 
 def validate_referrer(url):
     if not url:
         return None
 
-    # Django Validator BSD lic. https://github.com/django/django
-    url_re = re.compile(
-        r"^(?:http|ftp)s?://"  # http:// or https://
-        r"(?:(?:[A-Z0-9](?:[A-Z0-9-]{0,61}[A-Z0-9])?\.)+(?:[A-Z]{2,6}\.?|[A-Z0-9-]{2,}\.?)|"  # domain...
-        r"localhost|"  # localhost...
-        r"\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3})"  # ...or ip
-        r"(?::\d+)?"  # optional port
-        r"(?:/?|[/?]\S+)$",
-        re.IGNORECASE,
-    )
-
-    if not url_re.match(url):
+    if not referrer_url_re.match(url):
         return None
 
     return url
 
 
-def create_folders(root=".", folders=[]):
+def create_folders(root=".", folders=None):
     """Create directories.
     @param root: root path.
     @param folders: folders list to be created.
     @raise CuckooOperationalError: if fails to create folder.
     """
+    if not folders:
+        return
+
     for folder in folders:
         create_folder(root, folder)
 
@@ -137,13 +217,12 @@ def create_folder(root=".", folder=None):
     if folder is None:
         raise CuckooOperationalError("Can not create None type folder")
     folder_path = os.path.join(root, folder)
-    if folder and not os.path.isdir(folder_path):
+    if folder and not path_is_dir(folder_path):
         try:
-            os.makedirs(folder_path)
+            path_mkdir(folder_path, parent=True)
         except OSError as e:
-            print(e)
             if e.errno != errno.EEXIST:
-                raise CuckooOperationalError("Unable to create folder: %s" % folder_path)
+                raise CuckooOperationalError(f"Unable to create folder: {folder_path}") from e
         except Exception as e:
             print(e)
 
@@ -153,11 +232,11 @@ def delete_folder(folder):
     @param folder: path to delete.
     @raise CuckooOperationalError: if fails to delete folder.
     """
-    if os.path.exists(folder):
+    if path_exists(folder):
         try:
             shutil.rmtree(folder)
-        except OSError:
-            raise CuckooOperationalError("Unable to delete folder: " "{0}".format(folder))
+        except OSError as e:
+            raise CuckooOperationalError(f"Unable to delete folder: {folder}") from e
 
 
 # Don't allow all characters in "string.printable", as newlines, carriage
@@ -165,7 +244,6 @@ def delete_folder(folder):
 # The above is true, but apparently we only care about \x0b and \x0c given
 # the code below
 PRINTABLE_CHARACTERS = string.ascii_letters + string.digits + string.punctuation + " \t\r\n"
-
 FILENAME_CHARACTERS = string.ascii_letters + string.digits + string.punctuation.replace("/", "") + " "
 
 
@@ -176,14 +254,11 @@ def convert_char(c):
     """
     if isinstance(c, int):
         c = chr(c)
-    if c in PRINTABLE_CHARACTERS:
-        return c
-    else:
-        return "\\x%02x" % ord(c)
+    return c if c in PRINTABLE_CHARACTERS else f"\\x{ord(c):02x}"
 
 
 def is_printable(s):
-    """ Test if a string is printable."""
+    """Test if a string is printable."""
     for c in s:
         if isinstance(c, int):
             c = chr(c)
@@ -192,30 +267,6 @@ def is_printable(s):
     return True
 
 
-def convert_filename_char(c):
-    """Escapes filename characters.
-    @param c: dirty char.
-    @return: sanitized char.
-    """
-    if isinstance(c, int):
-        c = chr(c)
-    if c in FILENAME_CHARACTERS:
-        return c
-    else:
-        return "\\x%02x" % ord(c)
-
-
-def is_sane_filename(s):
-    """ Test if a filename is sane."""
-    for c in s:
-        if isinstance(c, int):
-            c = chr(c)
-        if c not in FILENAME_CHARACTERS:
-            return False
-    return True
-
-
-# ToDo improve
 def bytes2str(convert):
     """Converts bytes to string
     @param convert: string as bytes.
@@ -223,30 +274,40 @@ def bytes2str(convert):
     """
     if isinstance(convert, bytes):
         try:
-            convert = convert.decode("utf-8")
+            convert = convert.decode()
+        except UnicodeDecodeError:
+            convert = "".join(chr(_) for _ in convert)
+
+        return convert
+
+    if isinstance(convert, bytearray):
+        try:
+            convert = convert.decode()
         except UnicodeDecodeError:
             convert = "".join(chr(_) for _ in convert)
 
         return convert
 
-    items = list()
+    items = []
     if isinstance(convert, dict):
-        tmp_dict = dict()
+        tmp_dict = {}
         items = convert.items()
         for k, v in items:
-            if type(v) is bytes:
+            if isinstance(v, bytes):
                 try:
-                    tmp_dict[k] = v.decode("utf-8")
+                    tmp_dict[k] = v.decode()
                 except UnicodeDecodeError:
                     tmp_dict[k] = "".join(str(ord(_)) for _ in v)
+            elif isinstance(v, str):
+                tmp_dict[k] = v
         return tmp_dict
     elif isinstance(convert, list):
-        converted_list = list()
+        converted_list = []
         items = enumerate(convert)
         for k, v in items:
-            if type(v) is bytes:
+            if isinstance(v, bytes):
                 try:
-                    converted_list.append(v.decode("utf-8"))
+                    converted_list.append(v.decode())
                 except UnicodeDecodeError:
                     converted_list.append("".join(str(ord(_)) for _ in v))
 
@@ -255,7 +316,7 @@ def bytes2str(convert):
     return convert
 
 
-def convert_to_printable(s, cache=None):
+def convert_to_printable(s: str, cache=None):
     """Convert char to printable.
     @param s: string.
     @param cache: an optional cache
@@ -272,12 +333,68 @@ def convert_to_printable(s, cache=None):
 
     if cache is None:
         return "".join(convert_char(c) for c in s)
-    elif not s in cache:
+    elif s not in cache:
         cache[s] = "".join(convert_char(c) for c in s)
     return cache[s]
 
 
-def sanitize_pathname(s):
+def convert_to_printable_and_truncate(s: str, buf: int, cache=None):
+    return convert_to_printable(f"{s[:buf]} <truncated>" if len(s) > buf else s, cache=cache)
+
+
+def truncate_str(s: str, max_length: int, marker=" <truncated>"):
+    """Truncate a string if its length exceeds the configured `max_length`.
+
+    If `max_length` is less than or equal to 0, the string is not modified.
+    If the string is truncated, `marker` is added to the end."""
+    truncate_size = min(max_length, len(s))
+    if truncate_size > 0 and truncate_size < len(s):
+        return f"{s[:truncate_size]}{marker}"
+    else:
+        return s
+
+
+def convert_filename_char(c):
+    """Escapes filename characters.
+    @param c: dirty char.
+    @return: sanitized char.
+    """
+    if isinstance(c, int):
+        c = chr(c)
+    return c if c in FILENAME_CHARACTERS else f"\\x{ord(c):02x}"
+
+
+def is_sane_filename(s):
+    """Test if a filename is sane."""
+    for c in s:
+        if isinstance(c, int):
+            c = chr(c)
+        if c not in FILENAME_CHARACTERS:
+            return False
+    return True
+
+
+def wide2str(string: Tuple[str, bytes]):
+    """wide string detection, for strings longer than 11 chars
+
+    Doesn't work:
+        string.decode("utf-16").encode('ascii')
+        ccharted
+    Do you have better solution?
+    """
+    null_byte = 0 if isinstance(string, bytes) else "\x00"
+    if (
+        len(string) < 11
+        or any(string[char] != null_byte for char in (1, 3, 5, 7, 9, 11))
+        or any(string[char] == null_byte for char in (0, 2, 4, 6, 8, 10))
+    ):
+        return string
+    if isinstance(string, bytes):
+        return string.decode("utf-16")
+    return string.encode().decode("utf-16")
+
+
+def sanitize_pathname(s: str):
     """Sanitize filename.
     @param s: string.
     @return: sanitized filename.
@@ -297,7 +414,7 @@ def simple_pretty_print_convert(argval, enumdict):
             retnames.append(key)
 
     if leftover:
-        retnames.append("0x{0:08x}".format(leftover))
+        retnames.append(f"0x{leftover:08x}")
 
     return "|".join(retnames)
 
@@ -352,7 +469,7 @@ def pretty_print_retval(status, retval):
         0xC0000142: "DLL_INIT_FAILED",
         0xC000014B: "PIPE_BROKEN",
         0xC0000225: "NOT_FOUND",
-    }.get(val, None)
+    }.get(val)
 
 
 def pretty_print_arg(category, api_name, arg_name, arg_val):
@@ -386,7 +503,7 @@ def pretty_print_arg(category, api_name, arg_name, arg_val):
         return pp_funcs.systeminformationclass(arg_val)
     elif category == "registry" and arg_name == "Type":
         return pp_funcs.category_registry_arg_name_type(arg_val)
-    elif (api_name == "OpenSCManagerA" or api_name == "OpenSCManagerW") and arg_name == "DesiredAccess":
+    elif api_name in {"OpenSCManagerA", "OpenSCManagerW"} and arg_name == "DesiredAccess":
         return pp_funcs.api_name_opensc_arg_name_desiredaccess(arg_val)
     elif category == "services" and arg_name == "ControlCode":
         return pp_funcs.category_services_arg_name_controlcode(arg_val)
@@ -398,32 +515,24 @@ def pretty_print_arg(category, api_name, arg_name, arg_val):
         return pp_funcs.category_services_arg_name_servicetype(arg_val)
     elif category == "services" and arg_name == "DesiredAccess":
         return pp_funcs.category_services_arg_name_desiredaccess(arg_val)
-    elif category == "registry" and (arg_name == "Access" or arg_name == "DesiredAccess"):
+    elif category == "registry" and arg_name in {"Access", "DesiredAccess"}:
         return pp_funcs.category_registry_arg_name_access_desired_access(arg_val)
     elif arg_name == "IoControlCode":
         return pp_funcs.arg_name_iocontrolcode(arg_val)
-    elif (
-        arg_name == "Protection"
-        or arg_name == "Win32Protect"
-        or arg_name == "NewAccessProtection"
-        or arg_name == "OldAccessProtection"
-        or arg_name == "OldProtection"
-    ):
+    elif arg_name in {"Protection", "Win32Protect", "NewAccessProtection", "OldAccessProtection", "OldProtection"}:
         return pp_funcs.arg_name_protection_and_others(arg_val)
     elif (
-        api_name in ["CreateProcessInternalW", "CreateProcessWithTokenW", "CreateProcessWithLogonW"] and arg_name == "CreationFlags"
+        api_name in ("CreateProcessInternalW", "CreateProcessWithTokenW", "CreateProcessWithLogonW") and arg_name == "CreationFlags"
     ):
         return pp_funcs.api_name_in_creation(arg_val)
-    elif (api_name == "MoveFileWithProgressW" or api_name == "MoveFileWithProgressTransactedW") and arg_name == "Flags":
+    elif api_name in {"MoveFileWithProgressW", "MoveFileWithProgressTransactedW"} and arg_name == "Flags":
         return pp_funcs.api_name_move_arg_name_flags(arg_val)
     elif arg_name == "FileAttributes":
         return pp_funcs.arg_name_fileattributes(arg_val)
     elif (
-        api_name == "NtCreateFile"
-        or api_name == "NtOpenFile"
-        or api_name == "NtCreateDirectoryObject"
-        or api_name == "NtOpenDirectoryObject"
-    ) and arg_name == "DesiredAccess":
+        api_name in {"NtCreateFile", "NtOpenFile", "NtCreateDirectoryObject", "NtOpenDirectoryObject"}
+        and arg_name == "DesiredAccess"
+    ):
         return pp_funcs.api_name_nt_arg_name_desiredaccess(arg_val)
     elif api_name == "NtOpenProcess" and arg_name == "DesiredAccess":
         return pp_funcs.api_name_ntopenprocess_arg_name_desiredaccess(arg_val)
@@ -436,7 +545,7 @@ def pretty_print_arg(category, api_name, arg_name, arg_val):
 
     elif api_name == "InternetSetOptionA" and arg_name == "Option":
         return pp_funcs.api_name_internetsetoptiona_arg_name_option(arg_val)
-    elif api_name in ["socket", "WSASocketA", "WSASocketW"]:
+    elif api_name in ("socket", "WSASocketA", "WSASocketW"):
         return pp_funcs.api_name_socket(arg_val, arg_name)
     elif arg_name == "FileInformationClass":
         return pp_funcs.arg_name_fileinformationclass(arg_val)
@@ -462,26 +571,22 @@ def datetime_to_iso(timestamp):
     return datetime.strptime(timestamp, "%Y-%m-%d %H:%M:%S").isoformat()
 
 
-def get_filename_from_path(path):
-    """Cross-platform filename extraction from path.
-    @param path: file path.
-    @return: filename.
+def store_temp_file(filedata: bytes, filename: str, path=None) -> bytes:
     """
-    dirpath, filename = ntpath.split(path)
-    return filename if filename else ntpath.basename(dirpath)
+    Store a temporary file.
 
+    Args:
+        filedata (bytes or file-like object): Content of the original file.
+        filename (str): Name of the original file.
+        path (str, optional): Optional path for the temporary directory. Defaults to None.
 
-def store_temp_file(filedata, filename, path=None):
-    """Store a temporary file.
-    @param filedata: content of the original file.
-    @param filename: name of the original file.
-    @param path: optional path for temp directory.
-    @return: path to the temporary file.
+    Returns:
+        bytes: Path to the temporary file.
     """
-    filename = get_filename_from_path(filename).encode("utf-8", "replace")
+    filename = path_get_filename(filename).encode("utf-8", "replace")
 
     # Reduce length (100 is arbitrary).
-    filename = filename[:100]
+    filename = filename[:max_len]
 
     # Create temporary directory path.
     if path:
@@ -489,8 +594,8 @@ def store_temp_file(filedata, filename, path=None):
     else:
         tmp_path = config.cuckoo.get("tmppath", b"/tmp")
         target_path = os.path.join(tmp_path.encode(), b"cuckoo-tmp")
-    if not os.path.exists(target_path):
-        os.mkdir(target_path)
+    if not path_exists(target_path.decode()):
+        path_mkdir(target_path)
 
     tmp_dir = tempfile.mkdtemp(prefix=b"upload_", dir=target_path)
     tmp_file_path = os.path.join(tmp_dir, filename)
@@ -504,143 +609,31 @@ def store_temp_file(filedata, filename, path=None):
         else:
             tmp_file.write(filedata)
 
+    # ToDo consider change from bytes to str
     return tmp_file_path
 
 
-def get_vt_consensus(namelist):
-    banlist = [
-        "other",
-        "troj",
-        "trojan",
-        "win32",
-        "trojandownloader",
-        "trojandropper",
-        "dropper",
-        "generik",
-        "generic",
-        "tsgeneric",
-        "malware",
-        "dldr",
-        "downloader",
-        "injector",
-        "agent",
-        "nsis",
-        "generickd",
-        "genericgb",
-        "behaveslike",
-        "heur",
-        "inject2",
-        "trojanspy",
-        "trojanpws",
-        "reputation",
-        "script",
-        "w97m",
-        "pp97m",
-        "lookslike",
-        "macro",
-        "dloadr",
-        "kryptik",
-        "graftor",
-        "artemis",
-        "zbot",
-        "w2km",
-        "docdl",
-        "variant",
-        "packed",
-        "trojware",
-        "worm",
-        "genetic",
-        "backdoor",
-        "email",
-        "obfuscated",
-        "cryptor",
-        "obfus",
-        "virus",
-        "xpack",
-        "crypt",
-        "rootkit",
-        "malwares",
-        "malicious",
-        "suspicious",
-        "riskware",
-        "risk",
-        "win64",
-        "troj64",
-        "drop",
-        "hacktool",
-        "exploit",
-        "msil",
-        "inject",
-        "dropped",
-        "program",
-        "unwanted",
-        "heuristic",
-        "patcher",
-        "tool",
-        "potentially",
-        "rogue",
-        "keygen",
-        "unsafe",
-        "application",
-        "risktool",
-        "multi",
-        "ransom",
-        "autoit",
-        "yakes",
-        "java",
-        "ckrf",
-        "html",
-        "bngv",
-        "bnaq",
-        "o97m",
-        "blqi",
-        "bmbg",
-        "mikey",
-        "kazy",
-        "x97m",
-        "msword",
-        "cozm",
-        "eldorado",
-        "fakems",
-        "cloud",
-        "stealer",
-        "dangerousobject",
-        "symmi",
-        "zusy",
-        "dynamer",
-        "obfsstrm",
-        "krypt",
-        "linux",
-        "unix",
-    ]
-
-    finaltoks = defaultdict(int)
-    for name in namelist:
-        toks = re.findall(r"[A-Za-z0-9]+", name)
-        for tok in toks:
-            finaltoks[tok.title()] += 1
-    for tok in list(finaltoks):
-        lowertok = tok.lower()
-        accepted = True
-        numlist = [x for x in tok if x.isdigit()]
-        if len(numlist) > 2 or len(tok) < 4:
-            accepted = False
-        if accepted:
-            for black in banlist:
-                if black == lowertok:
-                    accepted = False
-                    break
-        if not accepted:
-            del finaltoks[tok]
-
-    sorted_finaltoks = sorted(list(finaltoks.items()), key=operator.itemgetter(1), reverse=True)
-    if len(sorted_finaltoks) == 1 and sorted_finaltoks[0][1] >= 2:
-        return sorted_finaltoks[0][0]
-    elif len(sorted_finaltoks) > 1 and (sorted_finaltoks[0][1] >= sorted_finaltoks[1][1] * 2 or sorted_finaltoks[0][1] > 8):
-        return sorted_finaltoks[0][0]
-    elif len(sorted_finaltoks) > 1 and sorted_finaltoks[0][1] == sorted_finaltoks[1][1] and sorted_finaltoks[0][1] > 2:
-        return sorted_finaltoks[0][0]
-    return ""
+def add_family_detection(results: dict, family: str, detected_by: str, detected_on: str):
+    results.setdefault("detections", [])
+    detection = {detected_by: detected_on}
+    # Normalize family names
+    family = family_detection_names.get(family, family)
+    for block in results["detections"]:
+        if family == block.get("family", ""):
+            if not any(map(lambda d: d == detection, block["details"])):
+                block["details"].append(detection)
+            break
+    else:
+        results["detections"].append({"family": family, "details": [detection]})
+
+
+def get_clamav_consensus(namelist: list):
+    for detection in namelist:
+        if detection.startswith("Win.Trojan."):
+            words = re.findall(r"[A-Za-z0-9]+", detection)
+            family = words[2]
+            if family:
+                return family
 
 
 class TimeoutServer(xmlrpc.client.ServerProxy):
@@ -683,10 +676,10 @@ class Singleton(type):
 
     _instances = {}
 
-    def __call__(cls, *args, **kwargs):
-        if cls not in cls._instances:
-            cls._instances[cls] = super(Singleton, cls).__call__(*args, **kwargs)
-        return cls._instances[cls]
+    def __call__(self, *args, **kwargs):
+        if self not in self._instances:
+            self._instances[self] = super(Singleton, self).__call__(*args, **kwargs)
+        return self._instances[self]
 
 
 def logtime(dt):
@@ -696,8 +689,7 @@ def logtime(dt):
     @return: time string
     """
     t = time.strftime("%Y-%m-%d %H:%M:%S", dt.timetuple())
-    s = "%s,%03d" % (t, dt.microsecond / 1000)
-    return s
+    return f"{t},{dt.microsecond // 1000:03d}"
 
 
 def time_from_cuckoomon(s):
@@ -718,25 +710,20 @@ def brute_enc(s2):
         """Trying to decode via simple brute forcing."""
         encodings = ("ascii", "utf8", "latin1")
         for enc in encodings:
-            try:
-                # ToDo text_type is unicode py2 str py3
-                return six.text_type(s2, enc)
-            except UnicodeDecodeError:
-                pass
+            with contextlib.suppress(UnicodeDecodeError):
+                return s2.decode(enc)
         return None
 
     def chardet_enc(s2):
         """Guess encoding via chardet."""
         enc = chardet.detect(s2)["encoding"]
 
-        try:
-            return six.text_type(s2, enc)
-        except UnicodeDecodeError:
-            pass
+        with contextlib.suppress(UnicodeDecodeError):
+            return s2.decode(enc)
         return None
 
     # If already in unicode, skip.
-    if isinstance(s, six.text_type):
+    if isinstance(s, str):
         return s
 
     # First try to decode against a little set of common encodings.
@@ -746,64 +733,70 @@ def chardet_enc(s2):
     if not result and HAVE_CHARDET:
         result = chardet_enc(s)
 
-    # If not possible to convert the input string, try again with
-    # a replace strategy.
+    # If not possible to convert the input string, try again with a replace strategy.
     if not result:
-        result = six.text_type(s, errors="replace")
+        result = s.decode(errors="replace")
 
     return result
 
+
 def get_user_filename(options, customs):
-    opt_filename = ""
+    # parse options, check pattern
     for block in (options, customs):
         for pattern in ("filename=", "file_name=", "name="):
-            if pattern in block:
-                for option in block.split(","):
-                    if option.startswith(pattern):
-                        opt_filename = option.split(pattern)[1]
-                        break
-                if opt_filename:
-                    break
-        if opt_filename:
-            break
-
-    return opt_filename
+            if pattern not in block:
+                continue
+            for option in block.split(","):
+                if not option.startswith(pattern):
+                    continue
+                return option.split(pattern, 2)[1]
+    return ""
 
 
 def generate_fake_name():
-    out = "".join(random.choice(string.ascii_uppercase + string.ascii_lowercase + string.digits) for i in range(random.randint(5, 15)))
-    return out
+    return "".join(
+        random.choice(string.ascii_uppercase + string.ascii_lowercase + string.digits) for _ in range(random.randint(5, 15))
+    )
 
-MAX_FILENAME_LEN = 24
 
 def truncate_filename(x):
     truncated = None
-    parts = x.rsplit('.',1)
+    parts = x.rsplit(".", 1)
     if len(parts) > 1:
         # filename has extension
-        extension  = parts[1]
-        name = parts[0][:(MAX_FILENAME_LEN-(len(extension)+1))]
+        extension = parts[1]
+        name = parts[0][: (sanitize_to_len - (len(extension) + 1))]
         truncated = f"{name}.{extension}"
     elif len(parts) == 1:
         # no extension
-        truncated = parts[0][:(MAX_FILENAME_LEN)]
+        truncated = parts[0][:(sanitize_to_len)]
     else:
         return None
     return truncated
 
-def sanitize_filename(x):
-    """Kind of awful but necessary sanitizing of filenames to
-    get rid of unicode problems."""
-    out = ""
-    for c in x:
-        if c in string.ascii_letters + string.digits + " _-.":
-            out += c
-        else:
-            out += "_"
+
+def sanitize_filename(x: str):
+    """
+    Sanitizes a given filename to remove problematic characters and ensure it is safe for use.
+
+    This function performs the following operations:
+    1. Strips leading spaces from the filename.
+    2. Replaces any character that is not an ASCII letter, digit, space, underscore, hyphen, or period with an underscore.
+    3. Truncates the filename if it exceeds a certain length to prevent issues with overly long filenames.
+
+    Args:
+        x (str): The filename to sanitize.
+
+    Returns:
+        str: The sanitized filename.
+    """
+    while x.startswith(" "):
+        x = x.lstrip()
+    out = "".join(c if c in string.ascii_letters + string.digits + " _-." else "_" for c in x)
 
     """Prevent long filenames such as files named by hash
     as some malware checks for this."""
-    if len(out) >= 32:
+    if len(out) >= sanitize_len:
         out = truncate_filename(out)
 
     return out
@@ -811,66 +804,99 @@ def sanitize_filename(x):
 
 def default_converter(v):
     # Fix signed ints (bson is kind of limited there).
-    if type(v) is int:
-        return v & 0xFFFFFFFF
     # Need to account for subclasses since pymongo's bson module
-    # uses 'bson.int64.Int64' class for 64-bit values.
-    elif issubclass(type(v), int):
-        if v & 0xFFFFFFFF00000000:
-            return v & 0xFFFFFFFFFFFFFFFF
-        else:
-            return v & 0xFFFFFFFF
+    # uses 'bson.int64.Int64' clwhat ass for 64-bit values.
+    if isinstance(v, int) or issubclass(type(v), int):
+        return v & 0xFFFFFFFFFFFFFFFF if v & 0xFFFFFFFF00000000 else v & 0xFFFFFFFF
     return v
 
 
-def classlock(f):
-    """Classlock decorator (created for database.Database).
-    Used to put a lock to avoid sqlite errors.
-    """
-
-    def inner(self, *args, **kwargs):
-        curframe = inspect.currentframe()
-        calframe = inspect.getouterframes(curframe, 2)
-
-        if calframe[1][1].endswith("database.py"):
-            return f(self, *args, **kwargs)
-
-        with self._lock:
-            return f(self, *args, **kwargs)
-
-    return inner
-
-
-class SuperLock(object):
-    def __init__(self):
-        self.tlock = threading.Lock()
-        self.mlock = multiprocessing.Lock()
-
-    def __enter__(self):
-        self.tlock.acquire()
-        self.mlock.acquire()
-
-    def __exit__(self, type, value, traceback):
-        self.mlock.release()
-        self.tlock.release()
-
-
-def get_options(optstring):
+def get_options(optstring: str):
     """Get analysis options.
     @return: options dict.
     """
-    # The analysis package can be provided with some options in the
-    # following format:
+    # The analysis package can be provided with some options in the following format:
     #   option1=value1,option2=value2,option3=value3
     #
-    # Here we parse such options and provide a dictionary that will be made
-    # accessible to the analysis package.
-    if not optstring:
-        return {}
+    # Here we parse such options and provide a dictionary that will be made accessible to the analysis package.
+    return (
+        dict((value.strip() for value in option.split("=", 1)) for option in optstring.split(",") if option and "=" in option)
+        if optstring
+        else {}
+    )
 
-    return dict((value.strip() for value in option.split("=", 1)) for option in optstring.split(",") if option and "=" in option)
 
 # get iface ip
 def get_ip_address(ifname):
     s = socket.socket(socket.AF_INET, socket.SOCK_DGRAM)
-    return socket.inet_ntoa(fcntl.ioctl(s.fileno(), 0x8915, struct.pack("256s", ifname[:15]))[20:24])  # SIOCGIFADDR
+    return socket.inet_ntoa(fcntl.ioctl(s.fileno(), 0x8915, struct.pack("256s", ifname[:15].encode()))[20:24])  # SIOCGIFADDR
+
+
+def validate_ttp(ttp: str) -> bool:
+    regex = r"^(O?[BCTFSU]\d{4}(\.\d{3})?)|(E\d{4}(\.m\d{2})?)$"
+    return bool(re.fullmatch(regex, ttp, flags=re.IGNORECASE))
+
+
+def yara_detected(name, results):
+    for result in results:
+        target = result.get("target", {})
+        if target.get("category") in ("file", "static") and target.get("file"):
+            for keyword in ("cape_yara", "yara"):
+                for yara_block in results["target"]["file"].get(keyword, []):
+                    if re.findall(name, yara_block["name"], re.I):
+                        yield "sample", results["target"]["file"]["path"], yara_block, results["target"]["file"]
+
+            for block in target["file"].get("extracted_files", []):
+                for keyword in ("cape_yara", "yara"):
+                    for yara_block in block[keyword]:
+                        if re.findall(name, yara_block["name"], re.I):
+                            # we can't use here values from set_path
+                            yield "sample", block["path"], yara_block, block
+
+        for block in result.get("CAPE", {}).get("payloads", []) or []:
+            for sub_keyword in ("cape_yara", "yara"):
+                for yara_block in block.get(sub_keyword, []):
+                    if re.findall(name, yara_block["name"], re.I):
+                        yield sub_keyword, block["path"], yara_block, block
+
+            for subblock in block.get("extracted_files", []):
+                for keyword in ("cape_yara", "yara"):
+                    for yara_block in subblock[keyword]:
+                        if re.findall(name, yara_block["name"], re.I):
+                            yield "sample", subblock["path"], yara_block, block
+
+        for keyword in ("procdump", "procmemory", "extracted", "dropped"):
+            for block in result.get(keyword, []):
+                if not isinstance(block, dict):
+                    continue
+                for sub_keyword in ("cape_yara", "yara"):
+                    for yara_block in block.get(sub_keyword, []):
+                        if re.findall(name, yara_block["name"], re.I):
+                            path = block["path"] if block.get("path", False) else ""
+                            yield keyword, path, yara_block, block
+                    if keyword == "procmemory":
+                        for pe in block.get("extracted_pe", []) or []:
+                            for yara_block in pe.get(sub_keyword, []) or []:
+                                if re.findall(name, yara_block["name"], re.I):
+                                    yield "extracted_pe", pe["path"], yara_block, block
+                for subblock in block.get("extracted_files", []):
+                    for keyword in ("cape_yara", "yara"):
+                        for yara_block in subblock[keyword]:
+                            if re.findall(name, yara_block["name"], re.I):
+                                yield "sample", subblock["path"], yara_block, block
+
+        """
+        macro_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(results["info"]["id"]), "macros")
+        for macroname in result.get("static", {}).get("office", {}).get("Macro", {}).get("info", []) or []:
+            for yara_block in results["static"]["office"]["Macro"]["info"].get("macroname", []) or []:
+                for sub_block in results["static"]["office"]["Macro"]["info"]["macroname"].get(yara_block, []) or []:
+                    if re.findall(name, sub_block["name"], re.I):
+                        yield "macro", os.path.join(macro_path, macroname), sub_block, results["static"]["office"]["Macro"]["info"]
+
+        if result.get("static", {}).get("office", {}).get("XLMMacroDeobfuscator", False):
+            for yara_block in results["static"]["office"]["XLMMacroDeobfuscator"].get("info", []).get("yara_macro", []) or []:
+                if re.findall(name, yara_block["name"], re.I):
+                    yield "macro", os.path.join(macro_path, "xlm_macro"), yara_block, results["static"]["office"][
+                        "XLMMacroDeobfuscator"
+                    ]["info"]
+        """
diff --git a/lib/cuckoo/common/utils_dicts.py b/lib/cuckoo/common/utils_dicts.py
index fa95260e396..9d1ddc9f209 100644
--- a/lib/cuckoo/common/utils_dicts.py
+++ b/lib/cuckoo/common/utils_dicts.py
@@ -3,8 +3,6 @@
 # See the file 'docs/LICENSE' for copying permission.
 
 
-from __future__ import absolute_import
-
 def DispositionDict():
     return {1: "REG_CREATED_NEW_KEY", 2: "REG_OPENED_EXISTING_KEY"}
 
diff --git a/lib/cuckoo/common/utils_pretty_print_funcs.py b/lib/cuckoo/common/utils_pretty_print_funcs.py
index e0ac56f37fa..7d2cb48ec0c 100644
--- a/lib/cuckoo/common/utils_pretty_print_funcs.py
+++ b/lib/cuckoo/common/utils_pretty_print_funcs.py
@@ -2,8 +2,6 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-
-from __future__ import absolute_import
 import lib.cuckoo.common.utils_dicts as utils_dicts
 
 
@@ -34,7 +32,7 @@ def api_name_ntcreatesection_arg_name_desiredaccess(arg_val):
         res.append("SECTION_MAP_EXECUTE_EXPLICIT")
         val &= ~0x20
     if val:
-        res.append("0x{0:08x}".format(val))
+        res.append(f"0x{val:08x}")
     return "|".join(res)
 
 
@@ -56,11 +54,11 @@ def api_name_shgetfolderpathw_arg_name_folder(arg_val):
     if val & 0x8000:
         res.append("CSIDL_FLAG_CREATE")
         val &= ~0x8000
-    folder = utils_dicts.FolderDict().get(val, None)
+    folder = utils_dicts.FolderDict().get(val)
     if folder:
         res.append(folder)
     else:
-        res.append("0x{0:08x}".format(val))
+        res.append(f"0x{val:08x}")
     return "|".join(res)
 
 
@@ -88,45 +86,45 @@ def api_name_createtoolhelp32snapshot_arg_name_flags(arg_val):
         res.append("TH32CS_INHERIT")
         val &= ~0x80000000
     if val:
-        res.append("0x{0:08x}".format(val))
+        res.append(f"0x{val:08x}")
     return "|".join(res)
 
 
 def blobtype(arg_val):
-    val = int(arg_val, 10)
-    return utils_dicts.BlobTypeDict().get(val, None)
+    val = int(arg_val)
+    return utils_dicts.BlobTypeDict().get(val)
 
 
 def algid(arg_val):
     val = int(arg_val, 16)
-    return utils_dicts.AlgidDict().get(val, None)
+    return utils_dicts.AlgidDict().get(val)
 
 
 def hookidentifer(arg_val):
-    val = int(arg_val, 10)
-    return utils_dicts.HookIdentifierDict().get(val, None)
+    val = int(arg_val)
+    return utils_dicts.HookIdentifierDict().get(val)
 
 
 def infolevel(arg_val):
     try:
         val = int(arg_val, 16)
-    except:
-        val = int(arg_val, 10)
-    return utils_dicts.InfoLevelDict().get(val, None)
+    except Exception:
+        val = int(arg_val)
+    return utils_dicts.InfoLevelDict().get(val)
 
 
 def disposition(arg_val):
-    val = int(arg_val, 10)
-    return utils_dicts.DispositionDict().get(val, None)
+    val = int(arg_val)
+    return utils_dicts.DispositionDict().get(val)
 
 
 def createdisposition(arg_val):
     val = int(arg_val, 16)
-    return utils_dicts.CreateDispositionDict().get(val, None)
+    return utils_dicts.CreateDispositionDict().get(val)
 
 
 def shareaccess(arg_val):
-    val = int(arg_val, 10)
+    val = int(arg_val)
     res = []
     if val & 1:
         res.append("FILE_SHARE_READ")
@@ -138,18 +136,18 @@ def shareaccess(arg_val):
         res.append("FILE_SHARE_DELETE")
         val &= ~4
     if val:
-        res.append("0x{0:08x}".format(val))
+        res.append(f"0x{val:08x}")
     return "|".join(res)
 
 
 def systeminformationclass(arg_val):
-    val = int(arg_val, 10)
-    return utils_dicts.SystemInformationClassDict().get(val, None)
+    val = int(arg_val)
+    return utils_dicts.SystemInformationClassDict().get(val)
 
 
 def category_registry_arg_name_type(arg_val):
     val = int(arg_val, 16)
-    return utils_dicts.RegistryTypeDict().get(val, None)
+    return utils_dicts.RegistryTypeDict().get(val)
 
 
 def api_name_opensc_arg_name_desiredaccess(arg_val):
@@ -178,28 +176,28 @@ def api_name_opensc_arg_name_desiredaccess(arg_val):
         res.append("SC_MANAGER_MODIFY_BOOT_CONFIG")
         val &= ~0x0020
     if val:
-        res.append("0x{0:08x}".format(val))
+        res.append(f"0x{val:08x}")
     return "|".join(res)
 
 
 def category_services_arg_name_controlcode(arg_val):
-    val = int(arg_val, 10)
-    return utils_dicts.ServicesControlCodeDict().get(val, None)
+    val = int(arg_val)
+    return utils_dicts.ServicesControlCodeDict().get(val)
 
 
 def category_services_arg_name_errorcontrol(arg_val):
-    val = int(arg_val, 10)
-    return utils_dicts.ServicesErrorControlDict().get(val, None)
+    val = int(arg_val)
+    return utils_dicts.ServicesErrorControlDict().get(val)
 
 
 def category_services_arg_name_starttype(arg_val):
-    val = int(arg_val, 10)
-    return utils_dicts.ServicesStartTypeDict().get(val, None)
+    val = int(arg_val)
+    return utils_dicts.ServicesStartTypeDict().get(val)
 
 
 def category_services_arg_name_servicetype(arg_val):
-    val = int(arg_val, 10)
-    retstr = utils_dicts.ServicesServiceTypeDict().get(val & 0x3F, None)
+    val = int(arg_val)
+    retstr = utils_dicts.ServicesServiceTypeDict().get(val & 0x3F)
     if val & 0x130:
         retstr += "|SERVICE_INTERACTIVE_PROCESS"
     return retstr
@@ -240,7 +238,7 @@ def category_services_arg_name_desiredaccess(arg_val):
         res.append("SERVICE_USER_DEFINED_CONTROL")
         val &= ~0x0100
     if val:
-        res.append("0x{0:08x}".format(val))
+        res.append(f"0x{val:08x}")
     return "|".join(res)
 
 
@@ -283,7 +281,7 @@ def category_registry_arg_name_access_desired_access(arg_val):
         res.append("STANDARD_RIGHTS_REQUIRED")
         val &= ~0x0F0000
     if val:
-        res.append("0x{0:08x}".format(val))
+        res.append(f"0x{val:08x}")
     return "|".join(res)
 
 
@@ -324,13 +322,13 @@ def arg_name_protection_and_others(arg_val):
         res.append("PAGE_WRITECOMBINE")
         val &= ~0x00000400
     if val:
-        res.append("0x{0:08x}".format(val))
+        res.append(f"0x{val:08x}")
     return "|".join(res)
 
 
 def arg_name_iocontrolcode(arg_val):
     val = int(arg_val, 16)
-    return utils_dicts.IoControlCodeDict().get(val, None)
+    return utils_dicts.IoControlCodeDict().get(val)
 
 
 def api_name_in_creation(arg_val):
@@ -382,7 +380,7 @@ def api_name_in_creation(arg_val):
         res.append("CREATE_NO_WINDOW")
         val &= ~0x08000000
     if val:
-        res.append("0x{0:08x}".format(val))
+        res.append(f"0x{val:08x}")
     return "|".join(res)
 
 
@@ -402,7 +400,7 @@ def api_name_move_arg_name_flags(arg_val):
         res.append("MOVEFILE_WRITE_THROUGH")
         val &= ~0x00000008
     if val:
-        res.append("0x{0:08x}".format(val))
+        res.append(f"0x{val:08x}")
     return "|".join(res)
 
 
@@ -454,7 +452,7 @@ def arg_name_fileattributes(arg_val):
         res.append("FILE_ATTRIBUTE_VIRTUAL")
         val &= ~0x00008000
     if val:
-        res.append("0x{0:08x}".format(val))
+        res.append(f"0x{val:08x}")
     return "|".join(res)
 
 
@@ -540,7 +538,7 @@ def api_name_nt_arg_name_desiredaccess(arg_val):
         remove |= 0x01000000
     val &= ~remove
     if val:
-        res.append("0x{0:08x}".format(val))
+        res.append(f"0x{val:08x}")
     return "|".join(res)
 
 
@@ -616,7 +614,7 @@ def api_name_ntopenprocess_arg_name_desiredaccess(arg_val):
         remove |= 0x100000
     val &= ~remove
     if val:
-        res.append("0x{0:08x}".format(val))
+        res.append(f"0x{val:08x}")
     return "|".join(res)
 
 
@@ -683,13 +681,13 @@ def api_name_ntopenthread_arg_name_desiredaccess(arg_val):
         remove |= 0x0800
     val &= ~remove
     if val:
-        res.append("0x{0:08x}".format(val))
+        res.append(f"0x{val:08x}")
     return "|".join(res)
 
 
 def api_name_cointernet_arg_name_featureentry(arg_val):
-    val = int(arg_val, 10)
-    return utils_dicts.CoInternetSetFeatureEnabledDict().get(val, None)
+    val = int(arg_val)
+    return utils_dicts.CoInternetSetFeatureEnabledDict().get(val)
 
 
 def api_name_cointernet_arg_name_flags(arg_val):
@@ -720,52 +718,52 @@ def api_name_cointernet_arg_name_flags(arg_val):
         res.append("SET_FEATURE_ON_THREAD_RESTRICTED")
         val &= ~0x00000080
     if val:
-        res.append("0x{0:08x}".format(val))
+        res.append(f"0x{val:08x}")
     return "|".join(res)
 
 
 def api_name_socket(arg_val, arg_name):
     if arg_name == "af":
-        val = int(arg_val, 10)
-        return utils_dicts.afWSASocketDict().get(val, None)
+        val = int(arg_val)
+        return utils_dicts.afWSASocketDict().get(val)
     elif arg_name == "type":
-        val = int(arg_val, 10)
-        return utils_dicts.afWSASocketTypeDict().get(val, None)
+        val = int(arg_val)
+        return utils_dicts.afWSASocketTypeDict().get(val)
     elif arg_name == "protocol":
-        val = int(arg_val, 10)
-        return utils_dicts.protocolWSASocketDict().get(val, None)
+        val = int(arg_val)
+        return utils_dicts.protocolWSASocketDict().get(val)
 
 
 def api_name_internetsetoptiona_arg_name_option(arg_val):
     val = int(arg_val, 16)
-    return utils_dicts.InternetSetOptionADict().get(val, None)
+    return utils_dicts.InternetSetOptionADict().get(val)
 
 
 def arg_name_fileinformationclass(arg_val):
-    val = int(arg_val, 10)
-    return utils_dicts.FileInformationClassDict().get(val, None)
+    val = int(arg_val)
+    return utils_dicts.FileInformationClassDict().get(val)
 
 
 def arg_name_processinformationclass(arg_val):
-    val = int(arg_val, 10)
-    return utils_dicts.ProcessInformationClassDict().get(val, None)
+    val = int(arg_val)
+    return utils_dicts.ProcessInformationClassDict().get(val)
 
 
 def arg_name_threadinformationclass(arg_val):
-    val = int(arg_val, 10)
-    return utils_dicts.ThreadInformationClassDict().get(val, None)
+    val = int(arg_val)
+    return utils_dicts.ThreadInformationClassDict().get(val)
 
 
 def arg_name_memtype(arg_val):
     val = int(arg_val, 16)
-    return utils_dicts.MemTypeDict().get(val, None)
+    return utils_dicts.MemTypeDict().get(val)
 
 
 def arg_name_show(arg_val):
-    val = int(arg_val, 10)
-    return utils_dicts.ShowDict().get(val, None)
+    val = int(arg_val)
+    return utils_dicts.ShowDict().get(val)
 
 
 def arg_name_registry(arg_val):
     val = int(arg_val, 16)
-    return utils_dicts.RegistryDict().get(val, None)
+    return utils_dicts.RegistryDict().get(val)
diff --git a/lib/cuckoo/common/web_utils.py b/lib/cuckoo/common/web_utils.py
index 308dacc4d1c..a8ab2cd0961 100644
--- a/lib/cuckoo/common/web_utils.py
+++ b/lib/cuckoo/common/web_utils.py
@@ -1,96 +1,103 @@
-from __future__ import absolute_import
-from __future__ import print_function
-import os
-import sys
+import hashlib
 import json
 import logging
-import hashlib
+import os
+import re
+import sys
 import tempfile
-from random import choice
-from datetime import datetime, timedelta
+import threading
+import time
 from collections import OrderedDict
-
-_current_dir = os.path.abspath(os.path.dirname(__file__))
-CUCKOO_ROOT = os.path.normpath(os.path.join(_current_dir, "..", "..", ".."))
-sys.path.append(CUCKOO_ROOT)
+from contextlib import suppress
+from datetime import datetime, timedelta
+from pathlib import Path
+from random import choice
+from typing import Dict, List, Optional
 
 import magic
 import requests
 from django.http import HttpResponse
+
+from dev_utils.mongo_hooks import FILE_REF_KEY, FILES_COLL, NORMALIZED_FILE_FIELDS
 from lib.cuckoo.common.config import Config
-from lib.cuckoo.common.objects import HAVE_PEFILE, pefile, IsPEImage
-from lib.cuckoo.core.rooter import vpns, _load_socks5_operational
-from lib.cuckoo.core.database import Database, Task, Sample, TASK_REPORTED
-from lib.cuckoo.common.utils import get_ip_address, bytes2str, validate_referrer, sanitize_filename
+from lib.cuckoo.common.integrations.parse_pe import HAVE_PEFILE, IsPEImage, pefile
+from lib.cuckoo.common.objects import File
+from lib.cuckoo.common.path_utils import path_exists, path_mkdir, path_write_file
+from lib.cuckoo.common.utils import (
+    generate_fake_name,
+    get_ip_address,
+    get_options,
+    get_user_filename,
+    sanitize_filename,
+    store_temp_file,
+    validate_referrer,
+    validate_ttp,
+)
+from lib.cuckoo.core.database import (
+    ALL_DB_STATUSES,
+    TASK_FAILED_ANALYSIS,
+    TASK_FAILED_PROCESSING,
+    TASK_FAILED_REPORTING,
+    TASK_RECOVERED,
+    TASK_REPORTED,
+    Database,
+    Sample,
+    Task,
+)
+from lib.cuckoo.core.rooter import _load_socks5_operational, vpns
+from lib.downloaders import Downloaders
+
+_current_dir = os.path.abspath(os.path.dirname(__file__))
+CUCKOO_ROOT = os.path.normpath(os.path.join(_current_dir, "..", "..", ".."))
+sys.path.append(CUCKOO_ROOT)
 
 cfg = Config("cuckoo")
 web_cfg = Config("web")
 repconf = Config("reporting")
+dist_conf = Config("distributed")
 routing_conf = Config("routing")
 machinery = Config(cfg.cuckoo.machinery)
 disable_x64 = cfg.cuckoo.get("disable_x64", False)
-
 apiconf = Config("api")
 
 db = Database()
+downloader_services = Downloaders()
+
+linux_enabled = web_cfg.linux.get("enabled", False)
+rateblock = web_cfg.ratelimit.get("enabled", False)
+rps = web_cfg.ratelimit.get("rps", "1/rps")
+rpm = web_cfg.ratelimit.get("rpm", "5/rpm")
+
+
+DYNAMIC_PLATFORM_DETERMINATION = web_cfg.general.dynamic_platform_determination
 
 HAVE_DIST = False
 # Distributed CAPE
-if repconf.distributed.enabled:
+if dist_conf.distributed.enabled:
     try:
         # Tags
-        from lib.cuckoo.common.dist_db import Machine, create_session, Task as DTask, Node
+        from lib.cuckoo.common.dist_db import Machine, Node, create_session
+        from lib.cuckoo.common.dist_db import Task as DTask
+
         HAVE_DIST = True
-        dist_session = create_session(repconf.distributed.db)
+        dist_session = create_session(dist_conf.distributed.db)
     except Exception as e:
         print(e)
 
 
-ht = False
-try:
-    """
-        To enable: sudo apt install apache2-utils
-
-    """
-    from passlib.apache import HtpasswdFile
-
-    HAVE_PASSLIB = True
-    if apiconf.api.get("users_db") and os.path.exists(apiconf.api.get("users_db")):
-        ht = HtpasswdFile(apiconf.api.get("users_db"))
-except ImportError:
-    HAVE_PASSLIB = False
-
 if repconf.mongodb.enabled:
-    import pymongo
-
-    results_db = pymongo.MongoClient(
-        repconf.mongodb.host,
-        port=repconf.mongodb.port,
-        username=repconf.mongodb.get("username", None),
-        password=repconf.mongodb.get("password", None),
-        authSource=repconf.mongodb.get("db", "cuckoo"),
-    )[repconf.mongodb.get("db", "cuckoo")]
+    from dev_utils.mongodb import mongo_aggregate, mongo_find, mongo_find_one
 
 es_as_db = False
 essearch = False
 if repconf.elasticsearchdb.enabled:
-    from elasticsearch import Elasticsearch
+    from dev_utils.elasticsearchdb import elastic_handler, get_analysis_index
 
     essearch = repconf.elasticsearchdb.searchonly
     if not essearch:
         es_as_db = True
-    baseidx = repconf.elasticsearchdb.index
-    fullidx = baseidx + "-*"
-    es = Elasticsearch(hosts=[{"host": repconf.elasticsearchdb.host, "port": repconf.elasticsearchdb.port,}], timeout=60)
 
-VALID_LINUX_TYPES = ["Bourne-Again", "POSIX shell script", "ELF", "Python"]
-
-hash_len = {
-    32: "md5",
-    40: "sha1",
-    64: "sha256",
-    128: "sha512",
-}
+    es = elastic_handler
 
 hashes = {
     32: hashlib.md5,
@@ -125,36 +132,214 @@
     print(e)
     iface_ip = "127.0.0.1"
 
-def load_vms_tags():
-    all_tags = list()
-    if HAVE_DIST and repconf.distributed.enabled:
-        try:
-            db = dist_session()
-            for vm in db.query(Machine).all():
-                all_tags += vm.tags
-            all_tags = sorted(filter(None, all_tags))
-            db.close()
-        except Exception as e:
-            print(e)
 
-    for machine in Database().list_machines():
-        for tag in machine.tags:
-            all_tags.append(tag.name)
+# https://django-ratelimit.readthedocs.io/en/stable/rates.html#callables
+def my_rate_seconds(group, request):
+    # RateLimits not enabled
+    """
+    x_forwarded_for = request.META.get('HTTP_X_FORWARDED_FOR')
+
+    if x_forwarded_for:
+        ip = x_forwarded_for.split(',', 1)[0]
+    else:
+        ip = request.META.get('REMOTE_ADDR')
+    print(request.user.username, ip)
+    """
+
+    if not rateblock or request.user.is_authenticated:
+        return "99999999999999/s"
+    return rps
+
+
+def my_rate_minutes(group, request):
+    # RateLimits not enabled
+    """
+    x_forwarded_for = request.META.get('HTTP_X_FORWARDED_FOR')
+
+    if x_forwarded_for:
+        ip = x_forwarded_for.split(',', 1)[0]
+    else:
+        ip = request.META.get('REMOTE_ADDR')
+    print(request.user.username, ip)
+    """
+    if not rateblock or request.user.is_authenticated:
+        return "99999999999999/m"
+    return rpm
+
+
+_all_nodes_exits: Optional[Dict[str, List[str]]] = None
+_load_vms_exits_lock = threading.Lock()
+
+
+def load_vms_exits(force: bool = False):
+    """
+    Load the VM exits information.
+
+    This function loads the VM exit nodes information and stores it in the global
+    variable `_all_nodes_exits`. If the information is already loaded and the
+    `force` parameter is not set to True, it returns the cached information.
+    Otherwise, it reloads the information.
+
+    Args:
+        force (bool): If set to True, forces the reloading of the VM exits
+                    information even if it is already loaded. Default is False.
+
+    Returns:
+        dict: A dictionary where the keys are exit node names and the values are
+            lists of node names associated with each exit node.
+    """
+    global _all_nodes_exits
+    with _load_vms_exits_lock:
+        if _all_nodes_exits is not None and not force:
+            return _all_nodes_exits
+        _all_nodes_exits = {}
+        if HAVE_DIST and dist_conf.distributed.enabled:
+            try:
+                db = dist_session()
+                for node in db.query(Node).all():
+                    if hasattr(node, "exitnodes"):
+                        for exit in node.exitnodes:
+                            _all_nodes_exits.setdefault(exit.name, []).append(node.name)
+                db.close()
+            except Exception as e:
+                print(e)
+
+        return _all_nodes_exits
+
+
+_all_vms_tags: Optional[List[str]] = None
+_load_vms_tags_lock = threading.Lock()
+
+
+def load_vms_tags(force: bool = False):
+    """
+    Load and return the tags associated with all virtual machines (VMs).
+
+    This function retrieves tags from both a distributed database (if enabled)
+    and a local database, combines them, and returns a sorted list of unique tags.
+    The result is cached globally and can be forced to refresh by setting the
+    `force` parameter to True.
+
+    Args:
+        force (bool): If True, forces the function to reload the tags from the
+                    databases even if they are already cached. Default is False.
+
+    Returns:
+        list: A sorted list of unique tags associated with all VMs.
+    """
+    global _all_vms_tags
+    with _load_vms_tags_lock:
+        if _all_vms_tags is not None and not force:
+            return _all_vms_tags
+        all_tags = []
+        if HAVE_DIST and dist_conf.distributed.enabled:
+            try:
+                db = dist_session()
+                for vm in db.query(Machine).all():
+                    all_tags += vm.tags
+                all_tags = sorted(filter(None, all_tags))
+                db.close()
+            except Exception as e:
+                print(e)
+
+        for machine in Database().list_machines(include_reserved=True):
+            all_tags += [tag.name for tag in machine.tags if tag not in all_tags]
+
+        _all_vms_tags = list(sorted(set(all_tags)))
+        return _all_vms_tags
+
+
+def top_asn(date_since: datetime = False, results_limit: int = 20) -> dict:
+    """
+    Retrieves the top Autonomous System Numbers (ASNs) based on the number of occurrences in the database.
+
+    This function queries a MongoDB collection to aggregate and count the occurrences of ASNs in the network hosts.
+    The results are cached for 10 minutes to improve performance.
+
+    Args:
+        date_since (datetime, optional): A datetime object to filter results starting from this date. Defaults to False.
+        results_limit (int, optional): The maximum number of ASNs to return. Defaults to 20.
+
+    Returns:
+        dict: A dictionary containing the top ASNs and their counts. Returns False if the MongoDB is not enabled or if the "top_asn" configuration is disabled.
+    """
+    if web_cfg.general.get("top_asn", False) is False:
+        return False
+
+    t = int(time.time())
+
+    # caches results for 10 minutes
+    if hasattr(top_asn, "cache"):
+        ct, data = top_asn.cache
+        if t - ct < 600:
+            return data
+
+    """function that gets detection: count
+    Original: https://gist.github.com/clarkenheim/fa0f9e5400412b6a0f9d
+    New: https://stackoverflow.com/a/21509359/1294762
+    """
+
+    aggregation_command = [
+        {"$match": {"network.hosts.asn": {"$exists": True}}},
+        {"$project": {"_id": 0, "network.hosts.asn": 1}},
+        {"$unwind": "$network.hosts"},
+        {"$group": {"_id": "$network.hosts.asn", "total": {"$sum": 1}}},
+        {"$sort": {"total": -1}},
+        {"$addFields": {"asn": "$_id"}},
+        {"$project": {"_id": 0}},
+        {"$limit": results_limit},
+    ]
+
+    if date_since:
+        aggregation_command[0]["$match"].setdefault("info.started", {"$gte": date_since.isoformat()})
+
+    if repconf.mongodb.enabled:
+        data = mongo_aggregate("analysis", aggregation_command)
+    else:
+        data = False
 
-    return all_tags
+    if data:
+        data = list(data)
+
+    # save to cache
+    top_asn.cache = (t, data)
+
+    return data
+
+
+def top_detections(date_since: datetime = False, results_limit: int = 20) -> dict:
+    """
+    Retrieves the top detections from the database, either from MongoDB or Elasticsearch,
+    and caches the results for 10 minutes.
+
+    Args:
+        date_since (datetime, optional): The starting date to filter detections. Defaults to False.
+        results_limit (int, optional): The maximum number of results to return. Defaults to 20.
+
+    Returns:
+        dict: A dictionary containing the top detections with their counts, or False if the feature is disabled.
+    """
+    if web_cfg.general.get("top_detections", False) is False:
+        return False
 
-all_vms_tags = load_vms_tags()
+    t = int(time.time())
+
+    # caches results for 10 minutes
+    if hasattr(top_detections, "cache"):
+        ct, data = top_detections.cache
+        if t - ct < 600:
+            return data
 
-def top_detections(date_since: datetime=False, results_limit: int=20) -> dict:
     """function that gets detection: count
-    based on: https://gist.github.com/clarkenheim/fa0f9e5400412b6a0f9d
+    Original: https://gist.github.com/clarkenheim/fa0f9e5400412b6a0f9d
+    New: https://stackoverflow.com/a/21509359/1294762
     """
-    data = False
-    results_db = pymongo.MongoClient(repconf.mongodb.host, repconf.mongodb.port)[repconf.mongodb.db]
 
     aggregation_command = [
-        {"$match": {"detections": {"$exists":True}}},
-        {"$group": {"_id": "$detections", "total":{"$sum":1}}},
+        {"$match": {"detections.family": {"$exists": True}}},
+        {"$project": {"_id": 0, "detections.family": 1}},
+        {"$unwind": "$detections"},
+        {"$group": {"_id": "$detections.family", "total": {"$sum": 1}}},
         {"$sort": {"total": -1}},
         {"$addFields": {"family": "$_id"}},
         {"$project": {"_id": 0}},
@@ -164,44 +349,111 @@ def top_detections(date_since: datetime=False, results_limit: int=20) -> dict:
     if date_since:
         aggregation_command[0]["$match"].setdefault("info.started", {"$gte": date_since.isoformat()})
 
-    data = results_db.analysis.aggregate(aggregation_command)
+    if repconf.mongodb.enabled:
+        data = mongo_aggregate("analysis", aggregation_command)
+    elif repconf.elasticsearchdb.enabled:
+        # ToDo update to new format
+        q = {
+            "query": {"bool": {"must": [{"exists": {"field": "detections.family"}}]}},
+            "size": 0,
+            "aggs": {"family": {"terms": {"field": "detections.family.keyword", "size": results_limit}}},
+        }
+
+        if date_since:
+            q["query"]["bool"]["must"].append({"range": {"info.started": {"gte": date_since.isoformat()}}})
+
+        res = es.search(index=get_analysis_index(), body=q)
+        data = [{"total": r["doc_count"], "family": r["key"]} for r in res["aggregations"]["family"]["buckets"]]
+    else:
+        data = False
+
     if data:
         data = list(data)
 
-    # ToDo verify
-    #results_db.close()
+    # save to cache
+    top_detections.cache = (t, data)
+
     return data
 
+
 # ToDo extend this to directly extract per day
-def get_stats_per_category(date_since, date_to, category):
+def get_stats_per_category(category: str, date_since: datetime) -> List[Dict[str, int]]:
+    """
+    Retrieves statistical data for a given category from the MongoDB collection "analysis"
+    starting from a specified date.
+
+    Args:
+        category (str): The category to retrieve statistics for.
+        date_since (datetime): The starting date to filter the data.
+
+    Returns:
+        list: A list of dictionaries containing the aggregated statistics per category.
+            Each dictionary contains the following keys:
+            - name (str): The name of the category.
+            - successful (int): The count of successful extractions.
+            - runs (int): The total number of runs.
+            - total (float): The total time in minutes, rounded to 2 decimal places.
+            - average (float): The average time per run in minutes, rounded to 2 decimal places.
+    """
     aggregation_command = [
-        {"$match": {
-            "info.started": {
-                "$gte": date_since.isoformat(),
-                "$lt": date_to.isoformat(),
-            },
-            "statistics.{}".format(category): {"$exists": True},
+        {
+            "$match": {
+                "info.started": {
+                    "$gte": date_since.isoformat(),
+                },
+                f"{category}": {"$exists": True},
             }
         },
-        {"$unwind":"$statistics.{}".format(category)},
-        {"$group": {
-            "_id": "$statistics.{}.name".format(category),
-            "total_time": {"$sum": "$statistics.{}.time".format(category)},
-            "total_run": {"$sum": 1}}
+        {"$unwind": f"${category}"},
+        {
+            "$group": {
+                "_id": f"${category}.name",
+                "total_time": {"$sum": {"$cond": [{"$eq": [f"${category}.time", 0]}, 0, {"$divide": [f"${category}.time", 60]}]}},
+                "successful": {"$sum": {"$cond": [{"$eq": [f"${category}.extracted", 0]}, 0, 1]}},
+                "runs": {"$sum": 1},
+            }
         },
         {"$addFields": {"name": "$_id"}},
         {"$project": {"_id": 0}},
-        {"day": { "$dayOfMonth": "$info.started" }},
         {"$sort": {"total_time": -1}},
+        {
+            "$project": {
+                "name": 1,
+                "successful": 1,
+                "runs": 1,
+                # "average": 1,
+                "total": {"$round": ["$total_time", 2]},
+                "average": {"$round": [{"$divide": ["$total_time", "$runs"]}, 2]},
+            }
+        },
+        {"$limit": 20},
     ]
-    data = results_db.analysis.aggregate(aggregation_command)
-    if data:
-        return data
+    return mongo_aggregate("analysis", aggregation_command)
 
 
 def statistics(s_days: int) -> dict:
-    date_since = datetime.now()-timedelta(days=s_days)
-    date_till = datetime.now()
+    """
+    Generate statistics for the given number of days.
+
+    Args:
+        s_days (int): The number of days to generate statistics for.
+
+    Returns:
+        dict: A dictionary containing various statistics including:
+            - signatures: Statistics related to signatures.
+            - processing: Statistics related to processing.
+            - reporting: Statistics related to reporting.
+            - top_samples: Top samples per day seen more than once.
+            - detections: Top detections.
+            - custom_statistics: Custom statistics.
+            - total: Total number of tasks completed.
+            - average: Average number of tasks completed per day.
+            - tasks: Detailed task statistics per day.
+            - distributed_tasks: Statistics related to distributed tasks (if applicable).
+            - asns: Top Autonomous System Numbers (ASNs).
+    """
+    date_since = datetime.now().replace(hour=0, minute=0, second=0, microsecond=0) - timedelta(days=s_days)
+    date_till = datetime.now().replace(hour=0, minute=0, second=0, microsecond=0)
 
     details = {
         "signatures": {},
@@ -209,73 +461,84 @@ def statistics(s_days: int) -> dict:
         "reporting": {},
         "top_samples": {},
         "detections": {},
+        "custom_statistics": {},
     }
 
-    tmp_data = dict()
-    results_db = pymongo.MongoClient(repconf.mongodb.host, repconf.mongodb.port)[repconf.mongodb.db]
-    data = results_db.analysis.find({"statistics":{"$exists":True}, "info.started": {"$gte": date_since.isoformat()}}, {"statistics": 1, "_id": 0})
-    for analysis in data or []:
-        for type_entry in analysis.get("statistics", []) or []:
-            if type_entry not in tmp_data:
-                tmp_data.setdefault(type_entry, dict())
-            for entry in analysis["statistics"][type_entry]:
-                if entry["name"] not in tmp_data[type_entry]:
-                    tmp_data[type_entry].setdefault(entry["name"], dict())
-                    tmp_data[type_entry][entry["name"]]["time"] = entry["time"]
-                    tmp_data[type_entry][entry["name"]]["runs"] = 1
-                else:
-                    tmp_data[type_entry][entry["name"]]["time"] += entry["time"]
-                    tmp_data[type_entry][entry["name"]]["runs"] += 1
+    if repconf.mongodb.enabled:
+        data = True
+
+    elif repconf.elasticsearchdb.enabled:
+        # ToDo need proper query upgrade as in mongo
+        data = False
+        """
+        q = {
+            "query": {
+                "bool": {
+                    "must": [{"exists": {"field": "statistics"}}, {"range": {"info.started": {"gte": date_since.isoformat()}}}]
+                }
+            }
+        }
+        data = [d["_source"] for d in es.search(index=get_analysis_index(), body=q, _source=["statistics"])["hits"]["hits"]]
+        """
+    else:
+        data = None
 
     if not data:
         return details
 
-    for module_name in [u'signatures', u'processing', u'reporting']:
-        # module_data = get_stats_per_category(module_name)
-        s = sorted(tmp_data[module_name], key=tmp_data[module_name].get("time"), reverse=True)[:20]
-
-        for entry in s:
-            times_in_mins = tmp_data[module_name][entry]["time"]/60
-            if not times_in_mins:
-                continue
-            details[module_name].setdefault(entry, dict())
-            details[module_name][entry]["total"] = float("{:.2f}".format(round(times_in_mins, 2)))
-            details[module_name][entry]["runs"] = tmp_data[module_name][entry]["runs"]
-            details[module_name][entry]["average"] = float("{:.2f}".format(round(times_in_mins/tmp_data[module_name][entry]["runs"], 2)))
-        details[module_name] = OrderedDict(sorted(details[module_name].items(), key=lambda x: x[1]["total"], reverse=True))
-
-    top_samples = dict()
-    session = db.Session()
-    tasks = session.query(Task).join(Sample, Task.sample_id==Sample.id).filter(Task.added_on.between(date_since, date_till)).all()
+    for module_name in ("statistics.signatures", "statistics.processing", "statistics.reporting", "custom_statistics"):
+        module_data = get_stats_per_category(module_name, date_since)
+        for entry in module_data or []:
+            name = entry["name"]
+            details[module_name.split(".")[-1]].setdefault(name, entry)
+
+    top_samples = {}
+    added_tasks = (
+        db.session.query(Task).join(Sample, Task.sample_id == Sample.id).filter(Task.added_on.between(date_since, date_till)).all()
+    )
+    tasks = (
+        db.session.query(Task)
+        .join(Sample, Task.sample_id == Sample.id)
+        .filter(Task.completed_on.between(date_since, date_till))
+        .all()
+    )
     details["total"] = len(tasks)
-    details["average"] = "{:.2f}".format(round(details["total"]/s_days, 2))
-    details["tasks"] = dict()
+    details["average"] = f"{round(details['total'] / s_days, 2):.2f}"
+    details["tasks"] = {}
     for task in tasks or []:
-        day = task.added_on.strftime("%Y-%m-%d")
+        day = task.completed_on.strftime("%Y-%m-%d")
         if day not in details["tasks"]:
             details["tasks"].setdefault(day, {})
             details["tasks"][day].setdefault("failed", 0)
             details["tasks"][day].setdefault("reported", 0)
             details["tasks"][day].setdefault("added", 0)
         if day not in top_samples:
-            top_samples.setdefault(day, dict())
+            top_samples.setdefault(day, {})
         if task.sample.sha256 not in top_samples[day]:
             top_samples[day].setdefault(task.sample.sha256, 0)
         top_samples[day][task.sample.sha256] += 1
-        details["tasks"][day]["added"] += 1
+        # details["tasks"][day]["added"] += 1
         if task.status in ("failed_analysis", "failed_reporting", "failed_processing"):
             details["tasks"][day]["failed"] += 1
         elif task.status == "reported":
             details["tasks"][day]["reported"] += 1
 
-    details["tasks"] = OrderedDict(sorted(details["tasks"].items(), key=lambda x: datetime.strptime(x[0], "%Y-%m-%d"), reverse=True))
+    for added_task in added_tasks or []:
+        day = added_task.added_on.strftime("%Y-%m-%d")
+        if day not in details["tasks"]:
+            continue
+        details["tasks"][day]["added"] += 1
+
+    details["tasks"] = OrderedDict(
+        sorted(details["tasks"].items(), key=lambda x: datetime.strptime(x[0], "%Y-%m-%d"), reverse=True)
+    )
 
-    if HAVE_DIST and repconf.distributed.enabled:
-        details["distributed_tasks"] = dict()
+    if HAVE_DIST and dist_conf.distributed.enabled:
+        details["distributed_tasks"] = {}
         dist_db = dist_session()
         dist_tasks = dist_db.query(DTask).filter(DTask.clock.between(date_since, date_till)).all()
-        id2name = dict()
-        #load node names
+        id2name = {}
+        # load node names
         for node in dist_db.query(Node).all() or []:
             id2name.setdefault(node.id, node.name)
 
@@ -283,12 +546,12 @@ def statistics(s_days: int) -> dict:
             day = task.clock.strftime("%Y-%m-%d")
             if day not in details["distributed_tasks"]:
                 details["distributed_tasks"].setdefault(day, {})
-            if id2name[task.node_id] not in details["distributed_tasks"][day]:
+            if id2name.get(task.node_id) not in details["distributed_tasks"][day]:
                 details["distributed_tasks"][day].setdefault(id2name[task.node_id], 0)
             details["distributed_tasks"][day][id2name[task.node_id]] += 1
         dist_db.close()
 
-        details["distributed_tasks"] = OrderedDict(sorted(details["distributed_tasks"].items(), key=lambda x: x[1], reverse=True))
+        details["distributed_tasks"] = OrderedDict(sorted(details["distributed_tasks"].items(), key=lambda x: x[0], reverse=True))
 
     # Get top15 of samples per day and seen more than once
     for day in top_samples:
@@ -299,17 +562,19 @@ def statistics(s_days: int) -> dict:
                 details["top_samples"][day][sha256] = top_samples[day][sha256]
 
         details["top_samples"][day] = OrderedDict(sorted(details["top_samples"][day].items(), key=lambda x: x[1], reverse=True))
-    details["top_samples"] = OrderedDict(sorted(details["top_samples"].items(), key=lambda x: datetime.strptime(x[0], "%Y-%m-%d"), reverse=True))
+    details["top_samples"] = OrderedDict(
+        sorted(details["top_samples"].items(), key=lambda x: datetime.strptime(x[0], "%Y-%m-%d"), reverse=True)
+    )
 
-    details["detections"] = top_detections(date_since=date_since, results_limit=20)
+    details["detections"] = top_detections(date_since=date_since)
+    details["asns"] = top_asn(date_since=date_since)
 
-    #ToDo missed results_db.close()
-    session.close()
     return details
 
+
 # Same jsonize function from api.py except we can now return Django
 # HttpResponse objects as well. (Shortcut to return errors)
-def jsonize(data, response=False):
+def jsonize(data: dict, response: bool = False):
     """Converts data dict to JSON.
     @param data: data dict
     @return: JSON formatted data or HttpResponse object with json data
@@ -317,74 +582,194 @@ def jsonize(data, response=False):
     if response:
         jdata = json.dumps(data, sort_keys=False, indent=4)
         return HttpResponse(jdata, content_type="application/json; charset=UTF-8")
+    return json.dumps(data, sort_keys=False, indent=4)
+
+
+def get_hash_list(hashes: str) -> list:
+    """
+    Parses a string of hashes separated by commas or spaces and returns a list of cleaned hash values.
+    Args:
+        hashes (str): A string containing hash values separated by commas or spaces.
+    Returns:
+        list: A list of cleaned hash values. If a hash value is a URL ending with a slash,  the hash is extracted from the URL.
+    """
+    hashlist = []
+    if "," in hashes:
+        hashlist = list(filter(None, hashes.replace(" ", "").strip().split(",")))
     else:
-        return json.dumps(data, sort_keys=False, indent=4)
+        hashlist = hashes.split()
+    for i in range(len(hashlist)):
+        if hashlist[i].startswith("http") and hashlist[i].endswith("/"):
+            hash = hashlist[i].split("/")[-2]
+            if len(hash) in (32, 40, 64):
+                hashlist[i] = hash
+    return hashlist
+
+
+def download_from_3rdparty(samples: str, opt_filename: str, details: dict) -> dict:
+    """
+    Processes a list of samples by downloading or retrieving their content from local storage,
+    and updates the details dictionary with the file path, hash, and other relevant information.
+
+    Args:
+        samples (list): A list of sample hashes to process.
+        prefix (str): A prefix indicating the source of the samples (e.g., "vt" for VirusTotal, "bazaar" for MalwareBazaar).
+        opt_filename (str): An optional filename to use for the downloaded files. If not provided, the hash will be used as the filename.
+        details (dict): A dictionary to store details about the processed samples, including path, hash, content, errors, etc.
+        settings (object): An object containing configuration settings, including the temporary path.
+
+    Returns:
+        dict: The updated details dictionary with information about the processed samples, including any errors encountered.
+    """
+    folder = os.path.join(cfg.cuckoo.tmppath, "cape-external")
+    if not path_exists(folder):
+        path_mkdir(folder, exist_ok=True)
+    for h in get_hash_list(samples):
+        base_dir = tempfile.mkdtemp(prefix="third_party", dir=folder)
+        if opt_filename:
+            filename = f"{base_dir}/{opt_filename}"
+        else:
+            filename = f"{base_dir}/{sanitize_filename(h)}"
+
+        content = False
+        details["path"] = filename
+        details["fhash"] = h
+        # clean old content
+        if "content" in details:
+            del details["content"]
+        paths = db.sample_path_by_hash(h)
+        if paths:
+            details["content"] = get_file_content(paths)
+            details["service"] = "Local"
+
+        if not details.get("content", False):
+            content, service = downloader_services.download(h, details.get("apikey"))
+            if not content:
+                details["errors"].append({h: "Can't download sample from external services"})
+                continue
+            details["service"] = service
+
+        if content:
+            details["content"] = content
+
+        errors = {}
+        if not details.get("content", False):
+            status, tasks_details = download_file(**details)
+        else:
+            status, tasks_details = download_file(**details)
+        if status == "error":
+            details["errors"].append({h: tasks_details})
+        else:
+            details["task_ids"] = tasks_details.get("task_ids", [])
+            errors = tasks_details.get("errors")
+            if errors:
+                details["errors"].extend(errors)
+
+    return details
 
 
-def get_file_content(paths):
+def get_file_content(paths: list) -> bytes:
+    """
+    Retrieves the content of the first existing file from a list of file paths.
+
+    Args:
+        paths (str or list of str): A single file path or a list of file paths to check.
+
+    Returns:
+        bytes or bool: The content of the first existing file as bytes, or False if no file exists.
+    """
     content = False
     if not isinstance(paths, list):
         paths = [paths]
     for path in paths:
-        if os.path.exists(path):
-            with open(path, "rb") as f:
-                content = f.read()
-            break
+        path = path.decode() if isinstance(path, bytes) else path
+        p = Path(path)
+        if p.exists():
+            return p.read_bytes()
     return content
 
 
-def fix_section_permission(path):
+def fix_section_permission(path: str):
+    """
+    Adjusts the permissions of the .rdata section in a PE file to include write permissions.
+
+    This function checks if the 'pefile' module is available and if the given file is a PE image.
+    If the .rdata section of the PE file has read-only permissions, it modifies the section
+    characteristics to include write permissions.
+
+    Args:
+        path (str): The file path to the PE file.
+    """
     if not HAVE_PEFILE:
         log.info("[-] Missed dependency pefile")
         return
     try:
         if not IsPEImage:
             return
-        pe = pefile.PE(path)
+        pe = pefile.PE(path, fast_load=True)
         if not pe:
             return
-        for id in range(len(pe.sections)):
-            if pe.sections[id].Name.rstrip("\0") == ".rdata" and hex(pe.sections[id].Characteristics)[:3] == "0x4":
-                pe.sections[id].Characteristics += pefile.SECTION_CHARACTERISTICS["IMAGE_SCN_MEM_WRITE"]
+        for pe_section in pe.sections:
+            if pe_section.Name.rstrip("\0") == ".rdata" and hex(pe_section.Characteristics)[:3] == "0x4":
+                pe_section.Characteristics += pefile.SECTION_CHARACTERISTICS["IMAGE_SCN_MEM_WRITE"]
                 pe.write(filename=path)
         pe.close()
     except Exception as e:
         log.info(e)
 
 
-# Submission hooks to set options based on some naming patterns
-def recon(filename, orig_options, timeout, enforce_timeout):
-    filename = filename.lower()
-    if not isinstance(filename, str):
-        filename = bytes2str(filename)
-    if "name" in filename:
-        orig_options += ",timeout=400,enforce_timeout=1,procmemdump=1,procdump=1"
-        timeout = 400
-        enforce_timeout = True
+def get_magic_type(data: bytes) -> str:
+    """
+    Determine the MIME type of the given data using the `magic` library.
 
-    return orig_options, timeout, enforce_timeout
+    This function attempts to identify the MIME type of the provided data. If the data
+    represents a file path and the file exists, it uses `magic.from_file` to determine
+    the MIME type. Otherwise, it uses `magic.from_buffer` to determine the MIME type
+    from the data buffer.
 
+    Args:
+        data (bytes): The data to analyze, which can be a file path or a data buffer.
 
-def get_magic_type(data):
+    Returns:
+        str: The MIME type of the data if successfully determined.
+        bool: False if an error occurs during MIME type determination.
+    """
     try:
-        if os.path.exists(data):
+        if path_exists(data):
             return magic.from_file(data)
         else:
             return magic.from_buffer(data)
     except Exception as e:
-        print(e)
+        print(e, "get_magic_type")
 
     return False
 
 
-def get_platform(magic):
-    if magic and any(x in magic for x in VALID_LINUX_TYPES):
-        return "linux"
-    else:
-        return "windows"
-
 def download_file(**kwargs):
-    """ Example of kwargs
+    """
+    Downloads a file based on the provided arguments and handles various conditions and errors.
+
+    Keyword Arguments:
+    errors (list): List to store error messages.
+    content (bytes): Content of the file to be downloaded.
+    request (object): Request object containing details of the request.
+    task_id (list): List to store task IDs.
+    url (str): URL to download the file from.
+    params (dict): Parameters to be sent in the request.
+    headers (dict): Headers to be sent in the request.
+    service (str): Name of the service to download the file from.
+    path (str): Path to save the downloaded file.
+    fhash (str): Expected hash of the file to verify integrity.
+    options (str): Additional options for the download.
+    only_extraction (bool): Flag to indicate if only extraction is needed.
+    user_id (int): ID of the user requesting the download.
+    source_url (str): Source URL of the file.
+
+    Returns:
+    tuple: A tuple containing the status ("ok" or "error") and a dictionary with task IDs and errors.
+    """
+    """
+    Example of kwargs
     {
         "errors": [],
         "content": content,
@@ -401,12 +786,28 @@ def download_file(**kwargs):
     }
     """
 
-    static, package, timeout, priority, _, machine, platform, tags, custom, memory, \
-            clock, enforce_timeout, shrike_url, shrike_msg, shrike_sid, shrike_refer, unique, referrer, \
-            tlp, tags_tasks, route, cape = parse_request_arguments(kwargs["request"])
+    (
+        static,
+        package,
+        timeout,
+        priority,
+        _,
+        machine,
+        platform,
+        tags,
+        custom,
+        memory,
+        clock,
+        enforce_timeout,
+        unique,
+        referrer,
+        tlp,
+        tags_tasks,
+        route,
+        cape,
+    ) = parse_request_arguments(kwargs["request"])
     onesuccess = False
 
-
     # in case if user didn't specify routing, and we have enabled random route
     if not route:
         socks5s = _load_socks5_operational()
@@ -415,10 +816,10 @@ def download_file(**kwargs):
         vpn_random = ""
 
         if routing_conf.socks5.random_socks5 and socks5s:
-            socks5s_random = choice(socks5s.values()).get("name", False)
+            socks5s_random = choice(list(socks5s.keys()))
 
-        if routing_conf.vpn.random_vpn:
-            vpn_random = choice(list(vpns.values())).get("name", False)
+        if routing_conf.vpn.random_vpn and vpns:
+            vpn_random = choice(list(vpns.keys()))
 
         if vpn_random and socks5s_random:
             route = choice((vpn_random, socks5s_random))
@@ -427,13 +828,12 @@ def download_file(**kwargs):
         elif socks5s_random:
             route = socks5s_random
 
-    if package:
-        if package == "Emotet":
-            return "error", {"error": "Hey guy update your script, this package doesn't exist anymore"}
-
     if tags:
+        all_vms_tags = load_vms_tags()
         if not all([tag.strip() in all_vms_tags for tag in tags.split(",")]):
-            return "error", {"error": "Check Tags help, you have introduced incorrect tag(s)"}
+            return "error", {
+                "error": f"Check Tags help, you have introduced incorrect tag(s). Your tags: {tags} - Supported tags: {','.join(all_vms_tags)}"
+            }
         elif all([tag in tags for tag in ("x64", "x86")]):
             return "error", {"error": "Check Tags help, you have introduced x86 and x64 tags for the same task, choose only 1"}
 
@@ -442,56 +842,92 @@ def download_file(**kwargs):
             r = requests.get(kwargs["url"], params=kwargs.get("params", {}), headers=kwargs.get("headers", {}), verify=False)
         except requests.exceptions.RequestException as e:
             logging.error(e)
-            return "error", {"error": "Provided hash not found on {}".format(kwargs["service"])}
+            return "error", {"error": f"Provided hash not found on {kwargs['service']}"}
 
-        if r.status_code == 200 and r.content != b"Hash Not Present" and b"The request requires higher privileges than provided by the access token" not in r.content:
+        if (
+            r.status_code == 200
+            and r.content != b"Hash Not Present"
+            and b"The request requires higher privileges than provided by the access token" not in r.content
+        ):
             kwargs["content"] = r.content
         elif r.status_code == 403:
-            return "error", {"error": "API key provided is not a valid {0} key or is not authorized for {0} downloads".format(kwargs["service"])}
+            return "error", {
+                "error": f"API key provided is not a valid {kwargs['service']} key or is not authorized for {kwargs['service']} downloads"
+            }
 
         elif r.status_code == 404:
-            return "error", {"error": "Server returns 404 from {}".format(kwargs["service"])}
+            return "error", {"error": f"Server returns 404 from {kwargs['service']}"}
         else:
-            return "error", {"error": "Was impossible to download from {0}".format(kwargs["service"])}
+            return "error", {"error": f"Was impossible to download from {kwargs['service']}"}
 
-
-    if not kwargs["content"]:
-        return "error", {"error": "Error downloading file from {}".format(kwargs["service"])}
+    if not kwargs.get("content"):
+        return "error", {"error": f"Error downloading file from {kwargs['service']}"}
     try:
         if kwargs.get("fhash", False):
             retrieved_hash = hashes[len(kwargs["fhash"])](kwargs["content"]).hexdigest()
             if retrieved_hash != kwargs["fhash"].lower():
-                return "error", {"error": "Hashes mismatch, original hash: {} - retrieved hash: {}".format(kwargs["fhash"], retrieved_hash)}
-        if not os.path.exists(kwargs.get("path")):
-            f = open(kwargs["path"], 'wb')
-            f.write(kwargs["content"])
-            f. close()
+                return "error", {"error": f"Hashes mismatch, original hash: {kwargs['fhash']} - retrieved hash: {retrieved_hash}"}
+
+        path = kwargs.get("path") if isinstance(kwargs.get("path", ""), str) else kwargs.get("path").decode()
+        if not path_exists(path):
+            _ = path_write_file(path, kwargs["content"])
     except Exception as e:
-        print(e)
-        return "error", {"error": "Error writing {} storing/download file to temporary path".format(kwargs["service"])}
+        print(e, sys.exc_info())
+        return "error", {"error": f"Error writing {kwargs['service']} storing/download file to temporary path"}
+
+    # Distribute task based on route support by worker
+    all_nodes_exits = load_vms_exits()
+    if route and route not in ("none", "None") and all_nodes_exits:
+        parsed_options = get_options(kwargs["options"])
+        node = parsed_options.get("node")
+
+        if node and node not in all_nodes_exits.get(route):
+            return "error", {"error": f"Specified worker {node} doesn't support this route: {route}"}
+        elif route not in all_nodes_exits:
+            return "error", {"error": "Specified route doesn't exist on any worker"}
+
+        if not node:
+            # get nodes that supports this exit
+            tmp_workers = [node for node, exitnodes in all_nodes_exits.items() if route in exitnodes]
+            if tmp_workers:
+                if kwargs["options"]:
+                    kwargs["options"] += f",node={choice(tmp_workers)}"
+                else:
+                    kwargs["options"] = f"node={choice(tmp_workers)}"
+
+        # Remove workers prefixes
+        if route.startswith(("socks5:", "vpn:", "socks:")):
+            route = route.replace("socks5:", "", 1).replace("vpn:", "", 1).replace("socks:", "", 1)
 
     onesuccess = True
     magic_type = get_magic_type(kwargs["path"])
-    if disable_x64 is True and kwargs["path"] and magic_type and ("x86-64" in magic_type or "PE32+" in magic_type):
+    if disable_x64 and kwargs["path"] and magic_type and ("x86-64" in magic_type or "PE32+" in magic_type):
         if len(kwargs["request"].FILES) == 1:
             return "error", {"error": "Sorry no x64 support yet"}
 
-    kwargs["options"], timeout, enforce_timeout = recon(kwargs["path"], kwargs["options"], timeout, enforce_timeout)
     if not kwargs.get("task_machines", []):
         kwargs["task_machines"] = [None]
 
-    platform = get_platform(magic_type)
+    if DYNAMIC_PLATFORM_DETERMINATION:
+        platform = File(kwargs["path"]).get_platform()
+    if platform == "linux" and not linux_enabled and "Python" not in magic_type:
+        return "error", {"error": "Linux binaries analysis isn't enabled"}
+
     if machine.lower() == "all":
-        kwargs["task_machines"] = [vm.name for vm in db.list_machines(platform=platform)]
+        kwargs["task_machines"] = [vm.label for vm in db.list_machines(platform=platform)]
     elif machine:
         machine_details = db.view_machine(machine)
-        if hasattr(machine_details, "platform") and not machine_details.platform == platform:
-            return "error", {"error": "Wrong platform, {} VM selected for {} sample".format(machine_details.platform, platform)}
+        if platform and hasattr(machine_details, "platform") and not machine_details.platform == platform:
+            return "error", {"error": f"Wrong platform, {machine_details.platform} VM selected for {platform} sample"}
         else:
             kwargs["task_machines"] = [machine]
     else:
         kwargs["task_machines"] = ["first"]
 
+    # Try to extract before submit to VM
+    if not static and "dist_extract" in kwargs["options"]:
+        static = True
+
     for machine in kwargs.get("task_machines", []):
         if machine == "first":
             machine = None
@@ -511,33 +947,113 @@ def download_file(**kwargs):
             enforce_timeout=enforce_timeout,
             clock=clock,
             static=static,
-            shrike_url=shrike_url,
-            shrike_msg=shrike_msg,
-            shrike_sid=shrike_sid,
-            shrike_refer=shrike_refer,
             tlp=tlp,
             tags_tasks=tags_tasks,
             route=route,
             cape=cape,
             user_id=kwargs.get("user_id"),
-            #parent_id=kwargs.get("parent_id", None),
-            #sample_parent_id=kwargs.get("sample_parent_id", None)
+            source_url=kwargs.get("source_url", False),
         )
+
+        try:
+            save_script_to_storage(task_ids_new, kwargs)
+        except Exception as e:
+            log.error("Error saving scripts to storage: %s", e)
+            return "error", {"error": "Error: Storing scripts to tempstorage"}
+
         if isinstance(kwargs.get("task_ids", False), list):
             kwargs["task_ids"].extend(task_ids_new)
         else:
-            kwargs["task_ids"] = list()
+            kwargs["task_ids"] = []
             kwargs["task_ids"].extend(task_ids_new)
 
     if not onesuccess:
-        return "error", {"error": "Provided hash not found on {}".format(kwargs["service"])}
+        return "error", {"error": f"Provided hash not found on {kwargs['service']}"}
 
-    return "ok", kwargs["task_ids"]
+    return "ok", {"task_ids": kwargs["task_ids"], "errors": extra_details.get("errors", [])}
 
 
-def _download_file(route, url, options):
+def save_script_to_storage(task_ids: list, kwargs):
+    """
+    Save pre_script and during_script contents to a temporary storage.
+
+    Parameters:
+    task_ids (list): List of task IDs for which the scripts need to be saved.
+    kwargs (dict): Dictionary containing script names and contents. Expected keys are:
+        - "pre_script_name" (str): Name of the pre-script file.
+        - "pre_script_content" (bytes): Content of the pre-script file.
+        - "during_script_name" (str): Name of the during-script file.
+        - "during_script_content" (bytes): Content of the during-script file.
+
+    Raises:
+    ValueError: If the file extension of the script is not one of ".py", ".ps1", or ".exe".
+
+    Parameters: task_ids, kwargs
+    Retrieve pre_script and during_script contents and save it to a temp storage
+    """
+    for task_id in task_ids:
+        # Temp Folder for storing scripts
+        script_temp_path = os.path.join("/tmp/cuckoo-tmp", str(task_id))
+        if "pre_script_name" in kwargs and "pre_script_content" in kwargs:
+            file_ext = os.path.splitext(kwargs["pre_script_name"])[-1]
+            if file_ext not in (".py", ".ps1", ".exe"):
+                raise ValueError(f"Unknown file_extention of {file_ext} to run for pre_script")
+
+            path_mkdir(script_temp_path, exist_ok=True)
+            log.info("Writing pre_script to temp folder %s", script_temp_path)
+            _ = Path(os.path.join(script_temp_path, f"pre_script{file_ext}")).write_bytes(kwargs["pre_script_content"])
+        if "during_script_name" in kwargs and "during_script_content" in kwargs:
+            file_ext = os.path.splitext(kwargs["during_script_name"])[-1]
+            if file_ext not in (".py", ".ps1", ".exe"):
+                raise ValueError(f"Unknown file_extention of {file_ext} to run for during_script")
+
+            path_mkdir(script_temp_path, exist_ok=True)
+            log.info("Writing during_script to temp folder %s", script_temp_path)
+            _ = Path(os.path.join(script_temp_path, f"during_script{file_ext}")).write_bytes(kwargs["during_script_content"])
+
+
+def url_defang(url: str):
+    """
+    Defangs a given URL by replacing common defanged components with their original counterparts.
+
+    This function performs the following replacements:
+    - "[.]" with "."
+    - "[." with "."
+    - ".]" with "."
+    - "hxxp" with "http"
+    - "hxtp" with "http"
+
+    Additionally, if the URL does not start with "http", it prepends "http://" to the URL.
+
+    Args:
+        url (str): The defanged URL to be processed.
+
+    Returns:
+        str: The refanged URL.
+    """
+    url = url.replace("[.]", ".").replace("[.", ".").replace(".]", ".").replace("hxxp", "http").replace("hxtp", "http")
+    if not url.startswith("http"):
+        url = f"http://{url}"
+    return url
+
+
+def _download_file(route: str, url: str, options: str):
+    """
+    Downloads a file from the specified URL using 3rd party proxy settings and custom headers.
+
+    Args:
+        route (str): The route to determine proxy settings. If "tor", uses Tor network.
+                    If in socks5s, uses the specified SOCKS5 proxy settings.
+        url (str): The URL of the file to download.
+        options (str): Comma-separated string of options to customize headers.
+                    Options starting with "dne_" will be added to headers.
+
+    Returns:
+        bytes: The content of the downloaded file if the request is successful.
+        bool: False if the request fails or an exception occurs.
+    """
     socks5s = _load_socks5_operational()
-    proxies = dict()
+    proxies = {}
     response = False
     headers = {"User-Agent": choice(user_agents)}
 
@@ -550,8 +1066,8 @@ def _download_file(route, url, options):
 
         elif route in socks5s:
             proxies = {
-                "http": "socks5://{}:{}".format(socks5s[route]["host"], socks5s[route]["port"]),
-                "https": "socks5://{}:{}".format(socks5s[route]["host"], socks5s[route]["port"]),
+                "http": f"socks5://{socks5s[route]['host']}:{socks5s[route]['port']}",
+                "https": f"socks5://{socks5s[route]['host']}:{socks5s[route]['port']}",
             }
 
     # load headers
@@ -561,6 +1077,7 @@ def _download_file(route, url, options):
             headers[key.replace("dne_", "")] = value
 
     try:
+        url = url_defang(url)
         response = requests.get(url, headers=headers, proxies=proxies)
         if response and response.status_code == 200:
             return response.content
@@ -571,30 +1088,86 @@ def _download_file(route, url, options):
     return response
 
 
-def validate_task(tid):
-    task = db.view_task(tid)
+def category_all_files(task_id: str, category: str, base_path: str):
+    """
+    Retrieve all file paths for a given task and category.
+
+    Args:
+        task_id (str): The ID of the task to retrieve files for.
+        category (str): The category of files to retrieve. Special handling for "CAPE" category.
+        base_path (str): The base path to prepend to the file paths.
+
+    Returns:
+        list: A list of file paths corresponding to the given task and category.
+
+    Notes:
+        - If the category is "CAPE", it will be internally mapped to "CAPE.payloads".
+        - The function currently supports MongoDB as the database backend.
+        - Elasticsearch support is mentioned but not implemented.
+    """
+    analysis = False
+    query_category = category
+    if category == "CAPE":
+        category = "CAPE.payloads"
+    if repconf.mongodb.enabled:
+        analysis = mongo_find_one(
+            "analysis", {"info.id": int(task_id)}, {f"{category}.{FILE_REF_KEY}": 1, "_id": 0}, sort=[("_id", -1)]
+        )
+    # if es_as_db:
+    #    # ToDo missed category
+    #    analysis = es.search(index=get_analysis_index(), query=get_query_by_info_id(task_id))["hits"]["hits"][0]["_source"]
+
+    if analysis:
+        if query_category == "CAPE":
+            return [os.path.join(base_path, block["sha256"]) for block in analysis.get(query_category, {}).get("payloads", [])]
+        else:
+            return [os.path.join(base_path, block["sha256"]) for block in analysis.get(category, [])]
+
+
+def validate_task(tid, status=TASK_REPORTED):
+    task = db.view_task(tid, details=True)
+    task_id = tid
     if not task:
         return {"error": True, "error_value": "Task does not exist"}
 
-    if task.status != TASK_REPORTED:
+    if task.status == TASK_RECOVERED and task.custom:
+        m = re.match(r"^Recovery_(?P<taskid>\d+)$", task.custom)
+        if m:
+            task_id = int(m.group("taskid"))
+            task = db.view_task(task_id, details=True)
+
+    if status and status not in ALL_DB_STATUSES:
+        return {"error": True, "error_value": "Specified wrong task status"}
+    elif status == task.status:
+        if tid != task_id:
+            return {"error": False, "rtid": task_id, "tlp": task.tlp}
+        return {"error": False, "tlp": task.tlp}
+    elif task.status in {TASK_FAILED_ANALYSIS, TASK_FAILED_PROCESSING, TASK_FAILED_REPORTING}:
+        return {"error": True, "error_value": "Task failed"}
+    elif task.status != TASK_REPORTED:
         return {"error": True, "error_value": "Task is still being analyzed"}
 
-    return {"error": False}
+    return {"error": False, "tlp": task.tlp}
+
+
+def validate_task_by_path(tid):
+    analysis_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(tid))
+    # verify path with
+    # if not os.path.normpath(srcdir).startswith(ANALYSIS_BASE_PATH):
+    #    return render(request, "error.html", {"error": f"File not found {os.path.basename(srcdir)}"})
+
+    return path_exists(analysis_path)
 
 
 perform_search_filters = {
     "info": 1,
-    "info.id": 1,
     "virustotal_summary": 1,
-    "detections": 1,
+    "detections.family": 1,
     "malfamily_tag": 1,
-    "info.custom": 1,
-    "info.shrike_msg": 1,
     "malscore": 1,
     "network.pcap_sha256": 1,
     "mlist_cnt": 1,
     "f_mlist_cnt": 1,
-    "info.package": 1,
     "target.file.clamav": 1,
     "target.file.sha256": 1,
     "suri_tls_cnt": 1,
@@ -602,34 +1175,44 @@ def validate_task(tid):
     "suri_http_cnt": 1,
     "suri_file_cnt": 1,
     "trid": 1,
-    "CAPE_childrens": 1,
     "_id": 0,
 }
 
+hash_searches = {
+    "ssdeep": "ssdeep",
+    "crc32": "crc32",
+    "md5": "md5",
+    "sha1": "sha1",
+    "sha3": "sha3_384",
+    "sha256": "_id",
+    "sha512": "sha512",
+}
+
 search_term_map = {
     "id": "info.id",
     "ids": "info.id",
     "tags_tasks": "info.id",
+    "package": "info.package",
+    "ttp": "ttps.ttp",
+    "malscore": "malscore",
     "name": "target.file.name",
     "type": "target.file.type",
-    "string": "strings",
-    "ssdeep": "target.file.ssdeep",
-    "trid": "trid",
-    "crc32": "target.file.crc32",
     "file": "behavior.summary.files",
     "command": "behavior.summary.executed_commands",
+    "configs": "CAPE.configs",
     "resolvedapi": "behavior.summary.resolved_apis",
     "key": "behavior.summary.keys",
     "mutex": "behavior.summary.mutexes",
     "domain": "network.domains.domain",
     "ip": "network.hosts.ip",
+    "asn": "network.hosts.asn",
+    "asn_name": "network.hosts.asn_name",
     "signature": "signatures.description",
     "signame": "signatures.name",
-    "detections": "detections",
+    "detections": "detections.family",
     "url": "target.url",
     "iconhash": "static.pe.icon_hash",
     "iconfuzzy": "static.pe.icon_fuzzy",
-    "imphash": "static.pe.imphash",
     "surihttp": "suricata.http",
     "suritls": "suricata.tls",
     "surisid": "suricata.alerts.sid",
@@ -638,65 +1221,148 @@ def validate_task(tid):
     "suriurl": "suricata.http.uri",
     "suriua": "suricata.http.ua",
     "surireferrer": "suricata.http.referrer",
+    "surihost": "suricata.http.hostname",
     "suritlssubject": "suricata.tls.subject",
     "suritlsissuerdn": "suricata.tls.issuer",
     "suritlsfingerprint": "suricata.tls.fingerprint",
-    "clamav": "target.file.clamav",
-    "yaraname": "target.file.yara.name",
-    "capeyara": "target.file.cape_yara.name",
-    "procmemyara": "procmemory.yara.name",
+    "procmemyara": ("procmemory.yara.name", "procmemory.cape_yara.name"),
+    "procdumpyara": ("procdump.yara.name", "procdump.cape_yara.name"),
     "virustotal": "virustotal.results.sig",
+    "machinename": "info.machine.name",
+    "machinelabel": "info.machine.label",
     "comment": "info.comments.Data",
-    "shrikemsg": "info.shrike_msg",
-    "shrikeurl": "info.shrike_url",
-    "shrikerefer": "info.shrike_refer",
-    "shrikesid": "info.shrike_sid",
     "custom": "info.custom",
-    "md5": "target.file.md5",
-    "sha1": "target.file.sha1",
-    "sha256": "target.file.sha256",
-    "sha512": "target.file.sha512",
+    # initial binary
+    "target_sha256": f"target.file.{FILE_REF_KEY}",
     "tlp": "info.tlp",
     "ja3_hash": "suricata.tls.ja3.hash",
     "ja3_string": "suricata.tls.ja3.string",
-    "payloads": "CAPE.payloads.",
+    "dhash": "static.pe.icon_dhash",
+    "dport": ("network.tcp.dport", "network.udp.dport", "network.smtp_ex.dport"),
+    "sport": ("network.tcp.dport", "network.udp.dport", "network.smtp_ex.dport"),
+    "port": (
+        "network.tcp.dport",
+        "network.udp.dport",
+        "network.smtp_ex.dport",
+        "network.tcp.dport",
+        "network.udp.dport",
+        "network.smtp_ex.dport",
+    ),
+    # ToDo update schema
+    # File_extra_info
+    "extracted_tool": (
+        "info.parent_sample.selfextract",
+        "target.file.selfextract",
+        "dropped.selfextract",
+        "procdump.selfextract",
+        "CAPE.payloads.selfextract",
+    ),
 }
 
+search_term_map_repetetive_blocks = {
+    "ssdeep": "ssdeep",
+    "clamav": "clamav",
+    "yaraname": "yara.name",
+    "capeyara": "cape_yara.name",
+    "capetype": "cape_type.name",
+    "md5": "md5",
+    "sha1": "sha1",
+    "sha256": "sha256",
+    "sha3": "sha3_384",
+    "sha512": "sha512",
+    "crc32": "crc32",
+    "die": "die",
+    "trid": "trid",
+    "imphash": "imphash",
+}
 
-def perform_ttps_search(value):
-    if repconf.mongodb.enabled and len(value) == 5 and value.upper().startswith("T") and value[1:].isdigit():
-        return results_db.analysis.find({"ttps." + value.uppwer(): {"$exist": 1}}, {"info.id": 1, "_id": 0}).sort([["_id", -1]])
-
-
-def perform_malscore_search(value):
-    if repconf.mongodb.enabled:
-        return results_db.analysis.find({"malscore": {"$gte": float(value)}}, perform_search_filters).sort([["_id", -1]])
-
-
-def perform_search(term, value):
+# ToDo review extracted_files key still the same
+search_term_map_base_naming = (
+    ("info.parent_sample",) + NORMALIZED_FILE_FIELDS + tuple(f"{category}.extracted_files" for category in NORMALIZED_FILE_FIELDS)
+)
+
+for key, value in search_term_map_repetetive_blocks.items():
+    search_term_map.update({key: [f"{path}.{value}" for path in search_term_map_base_naming]})
+
+# search terms that will be forwarded to mongodb in a lowered normalized form
+normalized_lower_terms = (
+    "target_sha256",
+    "md5",
+    "sha1",
+    "sha3",
+    "sha256",
+    "sha512",
+    "ip",
+    "domain",
+    "ja3_hash",
+    "dhash",
+    "iconhash",
+    "imphash",
+    "package",
+)
+
+normalized_int_terms = (
+    "sport",
+    "dport",
+    "port",
+)
+
+
+def perform_search(
+    term: str, value: str, search_limit: int = 0, user_id: int = 0, privs: bool = False, web: bool = True, projection: dict = None
+):
+    """
+    Perform a search based on the provided term and value.
+
+    Args:
+        term (str): The search term to use.
+        value (str): The value to search for.
+        search_limit (int, optional): The maximum number of search results to return. Defaults to 0.
+        user_id (int, optional): The user ID to filter tasks by. Defaults to 0.
+        privs (bool, optional): Indicates if the user has privileges. Defaults to False.
+        web (bool, optional): Indicates if the search is performed via the web interface. Defaults to True.
+        projection (dict, optional): Fields to include or exclude in the search results. Defaults to None.
+
+    Returns:
+        list: A list of search results matching the criteria.
+    """
     if repconf.mongodb.enabled and repconf.elasticsearchdb.enabled and essearch and not term:
-        numhits = es.search(index=fullidx, doc_type="analysis", q="%s" % value, size=0)["hits"]["total"]
-        return es.search(index=fullidx, doc_type="analysis", q="%s" % value, sort="task_id:desc", size=numhits)["hits"]["hits"]
+        multi_match_search = {"query": {"multi_match": {"query": value, "fields": ["*"]}}}
+        numhits = es.search(index=get_analysis_index(), body=multi_match_search, size=0)["hits"]["total"]
+        return [
+            d["_source"]
+            for d in es.search(index=get_analysis_index(), body=multi_match_search, sort="task_id:desc", size=numhits)["hits"][
+                "hits"
+            ]
+        ]
 
     query_val = False
-    if term in ("md5", "sha1", "sha256", "sha512"):
-        query_val = value
+    search_limit = web_cfg.general.get("search_limit", 50) if web else 0
+    if term in normalized_lower_terms:
+        query_val = value.lower()
+    elif term in normalized_int_terms:
+        query_val = int(value)
     elif term in ("surisid", "id"):
-        try:
+        with suppress(Exception):
             query_val = int(value)
-        except:
-            pass
-    elif term in ("ids", "options", "tags_tasks"):
+    elif term in ("ids", "options", "tags_tasks", "user_tasks"):
         try:
             ids = []
             if term == "ids":
                 ids = value
             elif term == "tags_tasks":
-                ids = [int(v.id) for v in db.list_tasks(tags_tasks_like=value)]
+                ids = [int(v.id) for v in db.list_tasks(tags_tasks_like=value, limit=search_limit)]
+            elif term == "user_tasks":
+                if not user_id:
+                    ids = 0
+                else:
+                    # ToDo allow to admin search by user tasks
+                    ids = [int(v.id) for v in db.list_tasks(user_id=user_id, limit=search_limit)]
             else:
-                ids = [int(v.id) for v in db.list_tasks(options_like=value)]
+                ids = [int(v.id) for v in db.list_tasks(options_like=value, limit=search_limit)]
             if ids:
                 if len(ids) > 1:
+                    term = "ids"
                     query_val = {"$in": ids}
                 else:
                     term = "id"
@@ -705,111 +1371,409 @@ def perform_search(term, value):
                     query_val = int(value)
         except Exception as e:
             print(term, value, e)
+    elif term == "configs":
+        # check if family name is string only maybe?
+        query_val = {f"{search_term_map[term]}.{value}": {"$exist": True}, "$options": "i"}
+    # ToDo proper implementation here
+    # elif term == "extracted_tool":
+    #    query_val = {"$exist": True}
+    elif term == "ttp":
+        if validate_ttp(value):
+            query_val = value.upper()
+        else:
+            raise ValueError("Invalid TTP enterred")
+    elif term == "malscore":
+        query_val = {"$gte": float(value)}
     else:
-        query_val = {"$regex": value, "$options": "-i"}
+        query_val = {"$regex": value, "$options": "i"}
 
     if term not in search_term_map:
         return None
 
-    if term == "payloads" and len(value) in (32, 40, 64, 128):
-        search_term_map[term] = search_term_map[term]+hash_len.get(len(value))
+    if not search_limit:
+        search_limit = web_cfg.general.get("search_limit", 50)
+
+    elif term == "configs":
+        # check if family name is string only maybe?
+        search_term_map[term] = f"CAPE.configs.{value}"
+        query_val = {"$exists": True}
 
+    retval = []
     if repconf.mongodb.enabled and query_val:
-        return results_db.analysis.find({search_term_map[term]: query_val}, perform_search_filters).sort([["_id", -1]]).limit(web_cfg.general.get("search_limit", 50))
+        if term in hash_searches:
+            # The file details are uniq, and we store 1 to many. So where hash type is uniq, IDs are list
+            split_by = "," if "," in query_val else " "
+            query_filter_list = {"$in": [val.strip() for val in query_val.split(split_by)]}
+            pipeline = [
+                # Stages 1-5: Find, unwind, group, sort, limit IDs
+                {"$match": {hash_searches[term]: query_filter_list}},
+                {"$unwind": "$_task_ids"},
+                {"$group": {"_id": "$_task_ids"}},
+                {"$sort": {"_id": -1}},
+                {"$limit": search_limit},
+                # Stage 6: Join with the tasks collection
+                {"$lookup": {"from": "analysis", "localField": "_id", "foreignField": "info.id", "as": "task_doc"}},
+                # Stage 7: Unpack the joined doc
+                {"$unwind": "$task_doc"},
+                # Stage 8: Make the task doc the new root
+                {"$replaceRoot": {"newRoot": "$task_doc"}},
+                # Stage 9: Add your custom projection
+                {"$project": perform_search_filters},
+            ]
+            retval = list(mongo_aggregate(FILES_COLL, pipeline))
+        elif isinstance(search_term_map[term], str):
+            mongo_search_query = {search_term_map[term]: query_val}
+        elif isinstance(search_term_map[term], list):
+            mongo_search_query = {search_term:query_val for search_term in search_term_map[term]}
+        else:
+            print(f"Unknown search {term}:{value}")
+            return []
+
+        # Allow to overwrite perform_search_filters for custom results
+        if not projection:
+            projection = perform_search_filters
+        if "target.file.sha256" in projection:
+            projection = dict(**projection)
+            projection[f"target.file.{FILE_REF_KEY}"] = 1
+        if not retval:
+            retval = list(mongo_find("analysis", mongo_search_query, projection, limit=search_limit))
+        for doc in retval:
+            target_file = doc.get("target", {}).get("file", {})
+            if FILE_REF_KEY in target_file and "sha256" not in target_file:
+                target_file["sha256"] = target_file.pop(FILE_REF_KEY)
+        return retval
+
     if es_as_db:
-        return es.search(index=fullidx, doc_type="analysis", q=search_term_map[term] + ": %s" % value)["hits"]["hits"]
+        _source_fields = list(perform_search_filters.keys())[:-1]
+        if isinstance(search_term_map[term], str):
+            q = {"query": {"match": {search_term_map[term]: value}}}
+            return [d["_source"] for d in es.search(index=get_analysis_index(), body=q, _source=_source_fields)["hits"]["hits"]]
+        else:
+            queries = [{"match": {search_term: value}} for search_term in search_term_map[term]]
+            q = {"query": {"bool": {"should": queries, "minimum_should_match": 1}}}
+            return [d["_source"] for d in es.search(index=get_analysis_index(), body=q, _source=_source_fields)["hits"]["hits"]]
 
 
 def force_int(value):
     try:
         value = int(value)
-    except:
+    except Exception:
         value = 0
     finally:
         return value
 
 
-def parse_request_arguments(request):
-    static = request.POST.get("static", "")
-    referrer = validate_referrer(request.POST.get("referrer", None))
-    package = request.POST.get("package", "")
-    timeout = force_int(request.POST.get("timeout"))
-    priority = force_int(request.POST.get("priority"))
-    options = request.POST.get("options", "")
-    machine = request.POST.get("machine", "")
-    platform = request.POST.get("platform", "")
-    tags_tasks = request.POST.get("tags_tasks", None)
-    tags = request.POST.get("tags", None)
-    custom = request.POST.get("custom", "")
-    memory = bool(request.POST.get("memory", False))
-    clock = request.POST.get("clock", datetime.now().strftime("%m-%d-%Y %H:%M:%S"))
+def force_bool(value):
+    """
+    Converts a given value to a boolean.
+
+    Args:
+        value: The value to be converted. It can be of any type.
+
+    Returns:
+        bool: The boolean representation of the input value. Returns True if the value is one of
+            ("true", "yes", "on", "1") (case insensitive). Returns False if the value is one of
+            ("false", "no", "off", "0") (case insensitive), or if the value is None or empty.
+
+    Logs:
+        A warning is logged if the value cannot be converted from string to bool.
+    """
+    if isinstance(value, bool):
+        return value
+
+    if not value:
+        return False
+
+    if value.lower() in ("false", "no", "off", "0"):
+        return False
+    elif value.lower() in ("true", "yes", "on", "1"):
+        return True
+    else:
+        log.warning("Value of %s cannot be converted from string to bool", value)
+        return False
+
+
+def parse_request_arguments(request, keyword="POST"):
+    """
+    Parses request arguments from a Django or API request object.
+
+    Args:
+        request (HttpRequest): The request object containing the arguments.
+        keyword (str, optional): The attribute of the request object to extract arguments from. Defaults to "POST".
+
+    Returns:
+        tuple: A tuple containing the following parsed arguments:
+            - static (str): Static argument.
+            - package (str): Package argument.
+            - timeout (int): Timeout argument.
+            - priority (int): Priority argument.
+            - options (str): Options argument.
+            - machine (str): Machine argument.
+            - platform (str): Platform argument.
+            - tags (str): Tags argument.
+            - custom (str): Custom argument.
+            - memory (bool): Memory argument.
+            - clock (str): Clock argument.
+            - enforce_timeout (bool): Enforce timeout argument.
+            - unique (bool): Unique argument.
+            - referrer (str): Referrer argument.
+            - tlp (str): TLP argument.
+            - tags_tasks (str): Tags tasks argument.
+            - route (str): Route argument.
+            - cape (str): CAPE argument.
+    """
+    # Django uses request.POST and API uses request.data
+    static = getattr(request, keyword).get("static", "")
+    referrer = validate_referrer(getattr(request, keyword).get("referrer"))
+    package = getattr(request, keyword).get("package", "")
+    timeout = force_int(getattr(request, keyword).get("timeout"))
+    priority = force_int(getattr(request, keyword).get("priority"))
+    options = getattr(request, keyword).get("options", "")
+    machine = getattr(request, keyword).get("machine", "")
+    platform = getattr(request, keyword).get("platform", "")
+    tags_tasks = getattr(request, keyword).get("tags_tasks")
+    tags = getattr(request, keyword).get("tags")
+    custom = getattr(request, keyword).get("custom", "")
+    memory = force_bool(getattr(request, keyword).get("memory", False))
+    clock = getattr(request, keyword).get("clock", datetime.now().strftime("%m-%d-%Y %H:%M:%S"))
     if not clock:
         clock = datetime.now().strftime("%m-%d-%Y %H:%M:%S")
     if "1970" in clock:
         clock = datetime.now().strftime("%m-%d-%Y %H:%M:%S")
-    enforce_timeout = bool(request.POST.get("enforce_timeout", False))
-    shrike_url = request.POST.get("shrike_url", None)
-    shrike_msg = request.POST.get("shrike_msg", None)
-    shrike_sid = request.POST.get("shrike_sid", None)
-    shrike_refer = request.POST.get("shrike_refer", None)
-    unique = bool(request.POST.get("unique", False))
-    tlp = request.POST.get("tlp", None)
-    lin_options = request.POST.get("lin_options", "")
-    route = request.POST.get("route")
-    cape = request.POST.get("cape", "")
+    enforce_timeout = force_bool(getattr(request, keyword).get("enforce_timeout", False))
+    unique = force_bool(getattr(request, keyword).get("unique", False))
+    tlp = getattr(request, keyword).get("tlp")
+    lin_options = getattr(request, keyword).get("lin_options", "")
+    route = getattr(request, keyword).get("route", "")
+    cape = getattr(request, keyword).get("cape", "")
+
+    if referrer:
+        if options:
+            options += ","
+        options += f"referrer={referrer}"
+
     # Linux options
     if lin_options:
         options = lin_options
 
-    return static, package, timeout, priority, options, machine, platform, tags, custom, memory, clock, enforce_timeout, \
-        shrike_url, shrike_msg, shrike_sid, shrike_refer, unique, referrer, tlp, tags_tasks, route, cape
-
-def get_hash_list(hashes):
-    hashlist = []
-    if "," in hashes:
-        hashlist = filter(None, hashes.replace(" ", "").strip().split(","))
-    else:
-        hashlist = hashes.split()
+    return (
+        static,
+        package,
+        timeout,
+        priority,
+        options,
+        machine,
+        platform,
+        tags,
+        custom,
+        memory,
+        clock,
+        enforce_timeout,
+        unique,
+        referrer,
+        tlp,
+        tags_tasks,
+        route,
+        cape,
+    )
+
+
+def process_new_task_files(request, samples: list, details: dict, opt_filename: str, unique: bool = False) -> tuple:
+    """
+    Processes new task files by validating and storing them.
+
+    Args:
+        request: The HTTP request object containing user information.
+        samples (list): A list of sample files to be processed.
+        details (dict): A dictionary to store error messages and other details.
+        opt_filename (str): An optional filename to use for the stored files.
+        unique (bool, optional): A flag to enforce unique file submission. Defaults to False.
+
+    Returns:
+        tuple: A tuple containing a list of processed files and the updated details dictionary.
+
+    The function performs the following steps:
+        1. Checks if each sample file is empty and logs an error if so.
+        2. Validates the size of each sample file against the configured maximum size.
+        3. Reads the data from each sample file.
+        4. Sanitizes the filename or uses the optional filename provided.
+        5. Stores the sample file in temporary storage and calculates its SHA-256 hash.
+        6. Checks for duplicate file submissions if the unique flag is set.
+        7. Appends the processed file data, path, and SHA-256 hash to the list of files.
+
+    Errors encountered during processing are appended to the details dictionary.
+    """
+    list_of_files = []
+    for sample in samples:
+        # Error if there was only one submitted sample, and it's empty.
+        # But if there are multiple and one was empty, just ignore it.
+        if not sample.size:
+            details["errors"].append({sample.name: "You uploaded an empty file."})
+            continue
+
+        size = sample.size
+        if size > web_cfg.general.max_sample_size and not (
+            web_cfg.general.allow_ignore_size and "ignore_size_check" in details["options"]
+        ):
+            if not web_cfg.general.enable_trim:
+                details["errors"].append(
+                    {
+                        sample.name: f"Uploaded file exceeds the maximum allowed size in conf/web.conf. Sample size is: {size / float(1 << 20):,.0f} Allowed size is: {web_cfg.general.max_sample_size / float(1 << 20):,.0f}"
+                    }
+                )
+                continue
 
-    return hashlist
+        data = sample.read()
 
-def download_from_vt(vtdl, details, opt_filename, settings):
-    for h in get_hash_list(vtdl):
-        folder = os.path.join(settings.VTDL_PATH, "cape-vt")
-        if not os.path.exists(folder):
-            os.makedirs(folder)
-        base_dir = tempfile.mkdtemp(prefix='vtdl', dir=folder)
         if opt_filename:
-            filename = base_dir + "/" + opt_filename
+            filename = opt_filename
         else:
-            filename = base_dir + "/" + sanitize_filename(h)
-        paths = db.sample_path_by_hash(h)
+            filename = sanitize_filename(sample.name)
 
-        # clean old content
-        if "content" in details:
-            del details["content"]
+        # Moving sample from django temporary file to CAPE temporary storage for persistence, if configured by user.
+        try:
+            path = store_temp_file(data, filename)
+            target_file = File(path)
+            sha256 = target_file.get_sha256()
+        except OSError:
+            details["errors"].append(
+                {filename: "Temp folder from cuckoo.conf, disk is out of space. Clean some space before continue."}
+            )
+            continue
+
+        if (
+            not request.user.is_staff
+            and (web_cfg.uniq_submission.enabled or unique)
+            and db.check_file_uniq(sha256, hours=web_cfg.uniq_submission.hours)
+        ):
+            details["errors"].append(
+                {filename: "Duplicated file, disable unique option on submit or in conf/web.conf to force submission"}
+            )
+            continue
+
+        list_of_files.append((data, path, sha256))
+
+    return list_of_files, details
+
+
+def process_new_dlnexec_task(url: str, route: str, options: str, custom: str):
+    """
+    Processes a new download and execute task by downloading a file from a given URL,
+    sanitizing the URL, and storing the file temporarily.
+
+    Args:
+        url (str): The URL of the file to download. The URL may use obfuscation techniques
+                such as "hxxp" instead of "http" and "[.]" instead of ".".
+        route (str): The route or path where the file should be downloaded.
+        options (dict): Additional options for downloading the file.
+        custom (str): Custom parameters or settings for the task.
+
+    Returns:
+        tuple: A tuple containing:
+            - path (str): The temporary file path where the downloaded file is stored.
+            - response (bytes): The content of the downloaded file.
+            - str: An empty string (reserved for future use or additional information).
+
+        If the download fails, returns (False, False, False).
+    """
+    url = url.replace("hxxps://", "https://").replace("hxxp://", "http://").replace("[.]", ".")
+    response = _download_file(route, url, options)
+    if not response:
+        return False, False, False
+
+    name = os.path.basename(url)
+    if "." not in name:
+        name = get_user_filename(options, custom) or generate_fake_name()
+
+    path = store_temp_file(response, name)
+
+    return path, response, ""
+
+
+def submit_task(
+    target: str,
+    package: str = "",
+    timeout: int = 0,
+    task_options: str = "",
+    priority: int = 1,
+    machine: str = "",
+    platform: str = "",
+    memory: bool = False,
+    enforce_timeout: bool = False,
+    clock: str = None,
+    tags: str = None,
+    parent_id: int = None,
+    tlp: bool = None,
+    distributed: bool = False,
+    filename: str = "",
+    server_url: str = "",
+):
+    """
+    ToDo add url support in future
+    """
+    if not path_exists(target):
+        log.info("File doesn't exist")
+        return
 
-        if paths:
-            details["content"] = get_file_content(paths)
-        if settings.VTDL_KEY:
-            details["headers"] = {'x-apikey': settings.VTDL_KEY}
-        elif details.get("apikey", False):
-            details["headers"] = {'x-apikey': details["apikey"]}
-        else:
-            details["errors"].append({"error": "Apikey not configured, neither passed as opt_apikey"})
-            return details
-        details["url"] = "https://www.virustotal.com/api/v3/files/{id}/download".format(id = h.lower())
-        details["fhash"] = h
-        details["path"] = filename
-        details["service"] = "VirusTotal"
-        if not details.get("content", False):
-            status, task_ids_tmp = download_file(**details)
-        else:
-            details["service"] = "Local"
-            status, task_ids_tmp = download_file(**details)
-        if status == "error":
-            details["errors"].append({h: task_ids_tmp})
-        else:
-            details["task_ids"] = task_ids_tmp
+    task_id = False
+    if distributed:
+        options = {
+            "package": package,
+            "timeout": timeout,
+            "options": task_options,
+            "priority": priority,
+            # "machine": machine,
+            "platform": platform,
+            "memory": memory,
+            "enforce_timeout": enforce_timeout,
+            "clock": clock,
+            "tags": tags,
+            "parent_id": parent_id,
+            "filename": filename,
+        }
+
+        multipart_file = [("file", (os.path.basename(target), open(target, "rb")))]
+        try:
+            res = requests.post(server_url, files=multipart_file, data=options)
+            if res and res.ok:
+                task_id = res.json()["data"]["task_ids"][0]
+        except Exception as e:
+            log.error(e)
+    else:
+        task_id = db.add_path(
+            file_path=target,
+            package=package,
+            timeout=timeout,
+            options=task_options,
+            priority=priority,
+            machine=machine,
+            platform=platform,
+            memory=memory,
+            enforce_timeout=enforce_timeout,
+            parent_id=parent_id,
+            tlp=tlp,
+            filename=filename,
+        )
+    if not task_id:
+        log.warning("Error adding CAPE task to database: %s", package)
+        return task_id
 
-    return details
+    log.info('CAPE detection on file "%s": %s - added as CAPE task with ID %s', target, package, task_id)
+    return task_id
+
+
+# https://stackoverflow.com/questions/14989858/get-the-current-git-hash-in-a-python-script/68215738#68215738
+def get_running_commit() -> str:
+    """
+    Retrieves the current Git commit hash of the repository.
+
+    This function reads the HEAD file in the .git directory to determine the
+    current branch or commit reference, then reads the corresponding file to
+    get the commit hash.
+
+    Returns:
+        str: The current Git commit hash as a string.
+    """
+    git_folder = Path(CUCKOO_ROOT, ".git")
+    head_name = Path(git_folder, "HEAD").read_text().split("\n")[0].split(" ")[-1]
+    return Path(git_folder, head_name).read_text().replace("\n", "")
diff --git a/lib/cuckoo/common/webadmin_utils.py b/lib/cuckoo/common/webadmin_utils.py
new file mode 100644
index 00000000000..9b27dfb1692
--- /dev/null
+++ b/lib/cuckoo/common/webadmin_utils.py
@@ -0,0 +1,24 @@
+# Copyright (C) 2015 KillerInstinct, Optiv, Inc. (brad.spengler@optiv.com)
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+from django.contrib.auth.models import User
+
+
+# admin utils
+def disable_user(user_id: int) -> bool:
+    """
+    Disables a user by setting their 'is_active' status to False.
+
+    Args:
+        user_id (int): The ID of the user to disable.
+
+    Returns:
+        bool: True if the user was successfully disabled, False otherwise.
+    """
+    user = User.objects.get(id=user_id)
+    if user:
+        user.is_active = False
+        user.save()
+        return True
+    return False
diff --git a/lib/cuckoo/core/analysis_manager.py b/lib/cuckoo/core/analysis_manager.py
new file mode 100644
index 00000000000..fcd0ea8f120
--- /dev/null
+++ b/lib/cuckoo/core/analysis_manager.py
@@ -0,0 +1,748 @@
+import contextlib
+import functools
+import logging
+import os
+import queue
+import shutil
+import threading
+from typing import Any, Callable, Generator, MutableMapping, Optional, Tuple
+
+from lib.cuckoo.common.cleaners_utils import free_space_monitor
+from lib.cuckoo.common.config import Config
+from lib.cuckoo.common.constants import CUCKOO_ROOT
+from lib.cuckoo.common.exceptions import (
+    CuckooCriticalError,
+    CuckooGuestCriticalTimeout,
+    CuckooGuestError,
+    CuckooMachineError,
+    CuckooOperationalError,
+)
+from lib.cuckoo.common.integrations.parse_pe import PortableExecutable
+from lib.cuckoo.common.objects import File
+from lib.cuckoo.common.path_utils import path_delete, path_exists, path_mkdir
+from lib.cuckoo.common.utils import convert_to_printable, create_folder, get_memdump_path
+from lib.cuckoo.core.database import TASK_COMPLETED, TASK_PENDING, TASK_RUNNING, Database, Guest, Machine, Task, _Database
+from lib.cuckoo.core.guest import GuestManager
+from lib.cuckoo.core.machinery_manager import MachineryManager
+from lib.cuckoo.core.plugins import RunAuxiliary
+from lib.cuckoo.core.resultserver import ResultServer
+from lib.cuckoo.core.rooter import _load_socks5_operational, rooter, vpns
+
+log = logging.getLogger(__name__)
+
+# os.listdir('/sys/class/net/')
+HAVE_NETWORKIFACES = False
+
+try:
+    import psutil
+
+    network_interfaces = list(psutil.net_if_addrs().keys())
+    HAVE_NETWORKIFACES = True
+except ImportError:
+    print("Missed dependency: poetry run pip install psutil")
+
+latest_symlink_lock = threading.Lock()
+
+
+def is_network_interface(intf: str):
+    global network_interfaces
+    network_interfaces = list(psutil.net_if_addrs().keys())
+    return intf in network_interfaces
+
+
+class CuckooDeadMachine(Exception):
+    """Exception thrown when a machine turns dead.
+
+    When this exception has been thrown, the analysis task will start again,
+    and will try to use another machine, when available.
+    """
+
+    def __init__(self, machine_name: str):
+        super().__init__()
+        self.machine_name = machine_name
+
+    def __str__(self) -> str:
+        return f"{self.machine_name} is dead!"
+
+
+def main_thread_only(func):
+    # Since most methods of the AnalysisManager class will be called within a child
+    # thread, let's decorate ones that must only be called from the main thread so
+    # that it's easy to differentiate between them.
+    @functools.wraps(func)
+    def inner(*args, **kwargs):
+        if threading.current_thread() is not threading.main_thread():
+            raise AssertionError(f"{func.__name__} must only be called from the main thread")
+        return func(*args, **kwargs)
+
+    return inner
+
+
+class AnalysisLogger(logging.LoggerAdapter):
+    """This class will be used by AnalysisManager so that all of its log entries
+    will include the task ID, without having to explicitly include it in the log message.
+    """
+
+    def process(self, msg: str, kwargs: MutableMapping[str, Any]) -> Tuple[str, MutableMapping[str, Any]]:
+        task_id: Optional[int] = self.extra.get("task_id") if self.extra is not None else None
+        if task_id is not None:
+            msg = f"Task #{task_id}: {msg}"
+        return msg, kwargs
+
+
+class AnalysisManager(threading.Thread):
+    """Analysis Manager.
+
+    This class handles the full analysis process for a given task. It takes
+    care of selecting the analysis machine, preparing the configuration and
+    interacting with the guest agent and analyzer components to launch and
+    complete the analysis and store, process and report its results.
+    """
+
+    def __init__(
+        self,
+        task: Task,
+        *,
+        machine: Optional[Machine] = None,
+        machinery_manager: Optional[MachineryManager] = None,
+        error_queue: Optional[queue.Queue] = None,
+        done_callback: Optional[Callable[["AnalysisManager"], None]] = None,
+    ):
+        """@param task: task object containing the details for the analysis."""
+        super().__init__(name=f"task-{task.id}", daemon=True)
+        self.db: _Database = Database()
+        self.task = task
+        self.log = AnalysisLogger(log, {"task_id": self.task.id})
+        self.machine = machine
+        self.machinery_manager = machinery_manager
+        self.error_queue = error_queue
+        self.done_callback = done_callback
+        self.guest: Optional[Guest] = None
+        self.cfg = Config()
+        self.aux_cfg = Config("auxiliary")
+        self.storage = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(self.task.id))
+        self.screenshot_path = os.path.join(self.storage, "shots")
+        self.num_screenshots = 0
+        self.binary = ""
+        self.interface = None
+        self.rt_table = None
+        self.route = None
+        self.rooter_response = ""
+        self.reject_segments = None
+        self.reject_hostports = None
+        self.no_local_routing = None
+
+    @main_thread_only
+    def prepare_task_and_machine_to_start(self) -> None:
+        """If the task doesn't use a machine, just set its state to running.
+        Otherwise, update the task and machine in the database so that the
+        task is running, the machine is locked and assigned to the task, and
+        create a Guest row for the analysis.
+        """
+        self.db.set_task_status(self.task, TASK_RUNNING)
+        if self.machine and self.machinery_manager:
+            self.db.assign_machine_to_task(self.task, self.machine)
+            self.db.lock_machine(self.machine)
+            self.guest = self.db.create_guest(
+                self.machine,
+                self.machinery_manager.machinery.__class__.__name__,
+                self.task,
+            )
+
+    def init_storage(self):
+        """Initialize analysis storage folder."""
+        # If the analysis storage folder already exists, we need to abort the
+        # analysis or previous results will be overwritten and lost.
+        if path_exists(self.storage):
+            self.log.error("Analysis results folder already exists at path '%s', analysis aborted", self.storage)
+            return False
+
+        # If we're not able to create the analysis storage folder, we have to
+        # abort the analysis.
+        try:
+            create_folder(folder=self.storage)
+        except CuckooOperationalError:
+            self.log.error("Unable to create analysis folder %s", self.storage)
+            return False
+
+        return True
+
+    def check_file(self, sha256):
+        """Checks the integrity of the file to be analyzed."""
+        sample = self.db.view_sample(self.task.sample_id)
+
+        if sample and sha256 != sample.sha256:
+            self.log.error("Target file has been modified after submission: '%s'", convert_to_printable(self.task.target))
+            return False
+
+        return True
+
+    def store_file(self, sha256):
+        """Store a copy of the file being analyzed."""
+        if not path_exists(self.task.target):
+            self.log.error(
+                "The file to analyze does not exist at path '%s', analysis aborted", convert_to_printable(self.task.target)
+            )
+            return False
+
+        binaries_dir = os.path.join(CUCKOO_ROOT, "storage", "binaries")
+        self.binary = os.path.join(binaries_dir, sha256)
+
+        if path_exists(self.binary):
+            self.log.info("File already exists at '%s'", self.binary)
+        else:
+            path_mkdir(binaries_dir, exist_ok=True)
+            # TODO: do we really need to abort the analysis in case we are not able to store a copy of the file?
+            try:
+                shutil.copy(self.task.target, self.binary)
+            except (IOError, shutil.Error):
+                self.log.error(
+                    "Unable to store file from '%s' to '%s', analysis aborted",
+                    self.task.target,
+                    self.binary,
+                )
+                return False
+
+        try:
+            new_binary_path = os.path.join(self.storage, "binary")
+            if hasattr(os, "symlink"):
+                os.symlink(self.binary, new_binary_path)
+            else:
+                shutil.copy(self.binary, new_binary_path)
+        except (AttributeError, OSError) as e:
+            self.log.error("Unable to create symlink/copy from '%s' to '%s': %s", self.binary, self.storage, e)
+
+        return True
+
+    def screenshot_machine(self):
+        if not self.cfg.cuckoo.machinery_screenshots:
+            return
+        if self.machinery_manager is None or self.machine is None:
+            self.log.error("screenshot not possible, no machine is used for this analysis")
+            return
+
+        # same format and filename approach here as VM-based screenshots
+        self.num_screenshots += 1
+        screenshot_filename = f"{str(self.num_screenshots).rjust(4, '0')}.jpg"
+        screenshot_path = os.path.join(self.screenshot_path, screenshot_filename)
+        try:
+            self.machinery_manager.machinery.screenshot(self.machine.label, screenshot_path)
+        except Exception as err:
+            self.log.warning("Failed to take screenshot of %s: %s", self.machine.label, err)
+            self.num_screenshots -= 1
+
+    def build_options(self):
+        """Generate analysis options.
+        @return: options dict.
+        """
+        options = {
+            "id": self.task.id,
+            "ip": self.machine.resultserver_ip,
+            "port": self.machine.resultserver_port,
+            "category": self.task.category,
+            "target": self.task.target,
+            "package": self.task.package,
+            "options": self.get_machine_specific_options(self.task.options),
+            "enforce_timeout": self.task.enforce_timeout,
+            "clock": self.task.clock,
+            "terminate_processes": self.cfg.cuckoo.terminate_processes,
+            "upload_max_size": self.cfg.resultserver.upload_max_size,
+            "do_upload_max_size": int(self.cfg.resultserver.do_upload_max_size),
+            "enable_trim": int(Config("web").general.enable_trim),
+            "timeout": self.task.timeout or self.cfg.timeouts.default,
+        }
+
+        if self.task.category == "file":
+            file_obj = File(self.task.target)
+            options["file_name"] = file_obj.get_name()
+            options["file_type"] = file_obj.get_type()
+            # if it's a PE file, collect export information to use in more smartly determining the right package to use
+            options["exports"] = PortableExecutable(self.task.target).get_dll_exports()
+            del file_obj
+
+        # options from auxiliary.conf
+        for plugin in self.aux_cfg.auxiliary_modules.keys():
+            options[plugin] = self.aux_cfg.auxiliary_modules[plugin]
+
+        return options
+
+    def category_checks(self) -> Optional[bool]:
+        if self.task.category in ("file", "pcap", "static"):
+            try:
+                sha256 = File(self.task.target).get_sha256()
+            except FileNotFoundError:
+                # Happens when cleaner deleted target file
+                self.log.error("File %s missed", self.task.target)
+                return False
+            # Check whether the file has been changed for some unknown reason.
+            # And fail this analysis if it has been modified.
+            if not self.check_file(sha256):
+                self.log.debug("check file")
+                return False
+
+            # Store a copy of the original file.
+            if not self.store_file(sha256):
+                self.log.debug("store file")
+                return False
+
+        if self.task.category in ("pcap", "static"):
+            if self.task.category == "pcap":
+                if hasattr(os, "symlink"):
+                    os.symlink(self.binary, os.path.join(self.storage, "dump.pcap"))
+                else:
+                    shutil.copy(self.binary, os.path.join(self.storage, "dump.pcap"))
+            # create the logs/files directories as normally the resultserver would do it
+            for dirname in ("logs", "files", "aux"):
+                try:
+                    path_mkdir(os.path.join(self.storage, dirname))
+                except Exception:
+                    self.log.debug("Failed to create folder %s", dirname)
+            return True
+
+        return None
+
+    @contextlib.contextmanager
+    def machine_running(self) -> Generator[None, None, None]:
+        assert self.machinery_manager and self.machine and self.guest
+
+        try:
+            with self.db.session.begin():
+                self.machinery_manager.start_machine(self.machine)
+
+            yield
+
+            # Take a memory dump of the machine before shutting it off.
+            self.dump_machine_memory()
+
+        except (CuckooMachineError, CuckooGuestCriticalTimeout) as e:
+            # This machine has turned dead, so we'll throw an exception
+            # which informs the AnalysisManager that it should analyze
+            # this task again with another available machine.
+            self.log.exception(str(e))
+
+            # Remove the guest from the database, so that we can assign a
+            # new guest when the task is being analyzed with another machine.
+            with self.db.session.begin():
+                self.db.guest_remove(self.guest.id)
+                self.db.assign_machine_to_task(self.task, None)
+                # ToDo do we really need to delete machine here?
+                self.machinery_manager.machinery.delete_machine(self.machine.name)
+
+            # Remove the analysis directory that has been created so
+            # far, as perform_analysis() is going to be doing that again.
+            shutil.rmtree(self.storage)
+
+            raise CuckooDeadMachine(self.machine.name) from e
+
+        with self.db.session.begin():
+            try:
+                self.machinery_manager.stop_machine(self.machine)
+            except CuckooMachineError as e:
+                self.log.warning("Unable to stop machine %s: %s", self.machine.label, e)
+                # Explicitly rollback since we don't re-raise the exception.
+                self.db.session.rollback()
+
+        try:
+            # Release the analysis machine, but only if the machine is not dead.
+            with self.db.session.begin():
+                self.machinery_manager.machinery.release(self.machine)
+        except CuckooMachineError as e:
+            self.log.error(
+                "Unable to release machine %s, reason %s. You might need to restore it manually",
+                self.machine.label,
+                e,
+            )
+
+    def dump_machine_memory(self) -> None:
+        if not self.cfg.cuckoo.memory_dump and not self.task.memory:
+            return
+
+        assert self.machinery_manager and self.machine
+
+        try:
+            dump_path = get_memdump_path(self.task.id)
+            need_space, space_available = free_space_monitor(os.path.dirname(dump_path), return_value=True)
+            if need_space:
+                self.log.error("Not enough free disk space! Could not dump ram (Only %d MB!)", space_available)
+            else:
+                self.machinery_manager.machinery.dump_memory(self.machine.label, dump_path)
+        except NotImplementedError:
+            self.log.error("The memory dump functionality is not available for the current machine manager")
+
+        except CuckooMachineError as e:
+            self.log.exception(str(e))
+
+    @contextlib.contextmanager
+    def result_server(self) -> Generator[None, None, None]:
+        try:
+            ResultServer().add_task(self.task, self.machine)
+        except Exception as e:
+            self.log.exception("Failed to add task to result-server")
+            if self.error_queue:
+                self.error_queue.put(e)
+            raise
+        try:
+            yield
+        finally:
+            # After all this, we can make the ResultServer forget about the
+            # internal state for this analysis task.
+            ResultServer().del_task(self.task, self.machine)
+
+    @contextlib.contextmanager
+    def network_routing(self) -> Generator[None, None, None]:
+        self.route_network()
+        try:
+            yield
+        finally:
+            # Drop the network routing rules if any.
+            self.unroute_network()
+
+    @contextlib.contextmanager
+    def run_auxiliary(self) -> Generator[None, None, None]:
+        aux = RunAuxiliary(task=self.task, machine=self.machine)
+
+        with self.db.session.begin():
+            aux.start()
+
+        try:
+            yield
+        finally:
+            with self.db.session.begin():
+                aux.stop()
+
+    def run_analysis_on_guest(self) -> None:
+        # Generate the analysis configuration file.
+        options = self.build_options()
+
+        guest_manager = GuestManager(self.machine.name, self.machine.ip, self.machine.platform, self.task.id, self)
+
+        with self.db.session.begin():
+            if Config("web").guacamole.enabled and hasattr(self.machinery_manager.machinery, "store_vnc_port"):
+                self.machinery_manager.machinery.store_vnc_port(self.machine.label, self.task.id)
+            options["clock"] = self.db.update_clock(self.task.id)
+            self.db.guest_set_status(self.task.id, "starting")
+        guest_manager.start_analysis(options)
+        if guest_manager.get_status_from_db() == "starting":
+            guest_manager.set_status_in_db("running")
+            guest_manager.wait_for_completion()
+
+        guest_manager.set_status_in_db("stopping")
+
+        return
+
+    def perform_analysis(self) -> bool:
+        """Start analysis."""
+        succeeded = False
+        self.socks5s = _load_socks5_operational()
+
+        # Initialize the analysis folders.
+        if not self.init_storage():
+            self.log.debug("Failed to initialize the analysis folder")
+            return False
+
+        with self.db.session.begin():
+            category_early_escape = self.category_checks()
+            if isinstance(category_early_escape, bool):
+                return category_early_escape
+
+        # At this point, we're sure that this analysis requires a machine.
+        assert self.machinery_manager and self.machine and self.guest
+
+        with self.db.session.begin():
+            self.machinery_manager.scale_pool(self.machine)
+
+        self.log.info("Starting analysis of %s '%s'", self.task.category.upper(), convert_to_printable(self.task.target))
+
+        with self.machine_running(), self.result_server(), self.network_routing(), self.run_auxiliary():
+            try:
+                self.run_analysis_on_guest()
+            except CuckooGuestError as e:
+                self.log.exception(str(e))
+            else:
+                succeeded = True
+            finally:
+                with self.db.session.begin():
+                    self.db.guest_stop(self.guest.id)
+
+        return succeeded
+
+    def launch_analysis(self) -> None:
+        success = False
+        try:
+            success = self.perform_analysis()
+        except CuckooDeadMachine:
+            with self.db.session.begin():
+                # Put the task back in pending so that the schedule can attempt to choose a new machine.
+                self.db.set_status(self.task.id, TASK_PENDING)
+            raise
+        else:
+            with self.db.session.begin():
+                self.db.set_status(self.task.id, TASK_COMPLETED)
+                self.log.info("Completed analysis %ssuccessfully.", "" if success else "un")
+                # Need to be release on unsucess
+                if not success and hasattr(self, "machine") and self.machine:
+                    self.db.unlock_machine(self.machine)
+
+            self.update_latest_symlink()
+
+    def update_latest_symlink(self):
+        # We make a symbolic link ("latest") which links to the latest analysis this is useful for debugging purposes.
+        # This is only supported under systems that support symbolic links.
+        if not hasattr(os, "symlink"):
+            return
+
+        latest = os.path.join(CUCKOO_ROOT, "storage", "analyses", "latest")
+
+        # First we have to remove the existing symbolic link, then we have to create the new one.
+        # Deal with race conditions using a lock.
+        with latest_symlink_lock:
+            try:
+                # As per documentation, lexists() returns True for dead symbolic links.
+                if os.path.lexists(latest):
+                    path_delete(latest)
+
+                os.symlink(self.storage, latest)
+            except OSError as e:
+                self.log.warning("Error pointing latest analysis symlink: %s", e)
+
+    def run(self):
+        """Run manager thread."""
+        try:
+            self.launch_analysis()
+        except Exception:
+            self.log.exception("failure in AnalysisManager.run")
+        else:
+            self.log.info("analysis procedure completed")
+        finally:
+            if self.done_callback:
+                self.done_callback(self)
+
+    def _rooter_response_check(self):
+        if self.rooter_response and self.rooter_response["exception"] is not None:
+            raise CuckooCriticalError(f"Error execution rooter command: {self.rooter_response['exception']}")
+
+    def route_network(self):
+        """Enable network routing if desired."""
+        # Determine the desired routing strategy (none, internet, VPN).
+        routing = Config("routing")
+        self.route = routing.routing.route
+
+        if self.task.route:
+            self.route = self.task.route
+
+        if self.route in ("none", "None", "drop", "false"):
+            self.interface = None
+            self.rt_table = None
+        elif self.route == "inetsim":
+            self.interface = routing.inetsim.interface
+        elif self.route == "tor":
+            self.interface = routing.tor.interface
+        elif self.route == "internet" and routing.routing.internet != "none":
+            self.interface = routing.routing.internet
+            self.rt_table = routing.routing.rt_table
+            self.no_local_routing = routing.routing.no_local_routing
+            if routing.routing.reject_segments != "none":
+                self.reject_segments = routing.routing.reject_segments
+            if routing.routing.reject_hostports != "none":
+                self.reject_hostports = str(routing.routing.reject_hostports)
+        elif self.route in vpns:
+            self.interface = vpns[self.route].interface
+            self.rt_table = vpns[self.route].rt_table
+        elif self.route in self.socks5s:
+            self.interface = ""
+        elif self.route[:3] == "tun" and is_network_interface(self.route):
+            # tunnel interface starts with "tun" and interface exists on machine
+            self.interface = self.route
+        else:
+            self.log.warning("Unknown network routing destination specified, ignoring routing for this analysis: %s", self.route)
+            self.interface = None
+            self.rt_table = None
+
+        # Check if the network interface is still available. If a VPN dies for
+        # some reason, its tunX interface will no longer be available.
+        if self.interface and not rooter("nic_available", self.interface):
+            self.log.error(
+                "The network interface '%s' configured for this analysis is "
+                "not available at the moment, switching to route=none mode",
+                self.interface,
+            )
+            self.route = "none"
+            self.interface = None
+            self.rt_table = None
+
+        if self.route == "inetsim":
+            self.rooter_response = rooter(
+                "inetsim_enable",
+                self.machine.ip,
+                str(routing.inetsim.server),
+                str(routing.inetsim.dnsport),
+                str(self.cfg.resultserver.port),
+                str(routing.inetsim.ports),
+            )
+
+        elif self.route == "tor":
+            self.rooter_response = rooter(
+                "socks5_enable",
+                self.machine.ip,
+                str(self.cfg.resultserver.port),
+                str(routing.tor.dnsport),
+                str(routing.tor.proxyport),
+            )
+
+        elif self.route in self.socks5s:
+            self.rooter_response = rooter(
+                "socks5_enable",
+                self.machine.ip,
+                str(self.cfg.resultserver.port),
+                str(self.socks5s[self.route]["dnsport"]),
+                str(self.socks5s[self.route]["port"]),
+            )
+
+        elif self.route in ("none", "None", "drop"):
+            self.rooter_response = rooter("drop_enable", self.machine.ip, str(self.cfg.resultserver.port))
+        elif self.route[:3] == "tun" and is_network_interface(self.route):
+            self.log.info("Network interface %s is tunnel", self.interface)
+            self.rooter_response = rooter("interface_route_tun_enable", self.machine.ip, self.route, str(self.task.id))
+
+        self._rooter_response_check()
+
+        # check if the interface is up
+        if HAVE_NETWORKIFACES and routing.routing.verify_interface and self.interface and self.interface not in network_interfaces:
+            self.log.info("Network interface %s not found, falling back to dropping network traffic", self.interface)
+            self.interface = None
+            self.rt_table = None
+            self.route = "drop"
+
+        if self.interface:
+            if self.no_local_routing:
+                input_interface = "dirty-line"
+                # Traffic from lan to machine
+                self.rooter_response = rooter(
+                    "forward_enable", input_interface, self.machine.interface, "0.0.0.0/0", self.machine.ip
+                )
+            else:
+                input_interface = self.machine.interface
+            # Traffic outbound from machine
+            self.rooter_response = rooter("forward_enable", input_interface, self.interface, self.machine.ip)
+            self._rooter_response_check()
+            if self.reject_segments:
+                self.rooter_response = rooter(
+                    "forward_reject_enable", self.machine.interface, self.interface, self.machine.ip, self.reject_segments
+                )
+                self._rooter_response_check()
+            if self.no_local_routing:
+                # Need for forward traffic between sandbox and CAPE
+                self.rooter_response = rooter(
+                    "forward_enable",
+                    input_interface,
+                    self.interface,
+                    self.machine.ip,
+                    self.cfg.resultserver.ip,
+                    "tcp",
+                    str(self.cfg.resultserver.port),
+                )
+                self.rooter_response = rooter(
+                    "forward_enable", input_interface, self.machine.interface, self.cfg.resultserver.ip, self.machine.ip
+                )
+                self._rooter_response_check()
+            if self.reject_hostports:
+                self.rooter_response = rooter(
+                    "hostports_reject_enable", self.machine.interface, self.machine.ip, self.reject_hostports
+                )
+                self._rooter_response_check()
+
+        self.log.info("Enabled route '%s'.", self.route)
+
+        if self.no_local_routing:
+            rooter("add_dev_to_vrf", self.machine.interface)
+        elif self.rt_table:
+            self.rooter_response = rooter("srcroute_enable", self.rt_table, self.machine.ip)
+            self._rooter_response_check()
+
+    def unroute_network(self):
+        routing = Config("routing")
+        if self.interface:
+            if self.no_local_routing:
+                input_interface = "dirty-line"
+                # Traffic from lan to machine
+                self.rooter_response = rooter(
+                    "forward_disable", input_interface, self.machine.interface, "0.0.0.0/0", self.machine.ip
+                )
+            else:
+                input_interface = self.machine.interface
+            # Traffic outbound from machine
+            self.rooter_response = rooter("forward_disable", input_interface, self.interface, self.machine.ip)
+            self._rooter_response_check()
+            if self.reject_segments:
+                self.rooter_response = rooter(
+                    "forward_reject_disable", self.machine.interface, self.interface, self.machine.ip, self.reject_segments
+                )
+                self._rooter_response_check()
+            if self.no_local_routing:
+                self.rooter_response = rooter(
+                    "forward_disable",
+                    input_interface,
+                    self.interface,
+                    self.machine.ip,
+                    self.cfg.resultserver.ip,
+                    "tcp",
+                    str(self.cfg.resultserver.port),
+                )
+                self.rooter_response = rooter(
+                    "forward_disable", input_interface, self.machine.interface, self.cfg.resultserver.ip, self.machine.ip
+                )
+            if self.reject_hostports:
+                self.rooter_response = rooter(
+                    "hostports_reject_disable", self.machine.interface, self.machine.ip, self.reject_hostports
+                )
+                self._rooter_response_check()
+            self.log.info("Disabled route '%s'", self.route)
+
+        if self.no_local_routing:
+            rooter("delete_dev_from_vrf", self.machine.interface)
+        elif self.rt_table:
+            self.rooter_response = rooter("srcroute_disable", self.rt_table, self.machine.ip)
+            self._rooter_response_check()
+
+        if self.route == "inetsim":
+            self.rooter_response = rooter(
+                "inetsim_disable",
+                self.machine.ip,
+                routing.inetsim.server,
+                str(routing.inetsim.dnsport),
+                str(self.cfg.resultserver.port),
+                str(routing.inetsim.ports),
+            )
+
+        elif self.route == "tor":
+            self.rooter_response = rooter(
+                "socks5_disable",
+                self.machine.ip,
+                str(self.cfg.resultserver.port),
+                str(routing.tor.dnsport),
+                str(routing.tor.proxyport),
+            )
+
+        elif self.route in self.socks5s:
+            self.rooter_response = rooter(
+                "socks5_disable",
+                self.machine.ip,
+                str(self.cfg.resultserver.port),
+                str(self.socks5s[self.route]["dnsport"]),
+                str(self.socks5s[self.route]["port"]),
+            )
+
+        elif self.route in ("none", "None", "drop"):
+            self.rooter_response = rooter("drop_disable", self.machine.ip, str(self.cfg.resultserver.port))
+        elif self.route[:3] == "tun":
+            self.log.info("Disable tunnel interface: %s", self.interface)
+            self.rooter_response = rooter("interface_route_tun_disable", self.machine.ip, self.route, str(self.task.id))
+
+        self._rooter_response_check()
+
+    def get_machine_specific_options(self, task_opts: str) -> str:
+        """This function may be used to return an updated version of the
+        provided options string based on the machine that has been selected
+        (self.machine).
+        """
+        return task_opts
diff --git a/lib/cuckoo/core/database.py b/lib/cuckoo/core/database.py
index b2ef05feff1..4037dc34dcf 100644
--- a/lib/cuckoo/core/database.py
+++ b/lib/cuckoo/core/database.py
@@ -2,59 +2,150 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-import os
-import sys
+# https://blog.miguelgrinberg.com/post/what-s-new-in-sqlalchemy-2-0
+# https://docs.sqlalchemy.org/en/20/changelog/migration_20.html#
+
+import hashlib
 import json
 import logging
-from datetime import datetime, timedelta
-
-import pymongo
-from lib.cuckoo.common.config import Config
-from lib.cuckoo.common.colors import red
-from lib.cuckoo.common.constants import CUCKOO_ROOT
-from lib.cuckoo.common.exceptions import CuckooDatabaseError
-from lib.cuckoo.common.exceptions import CuckooOperationalError
-from lib.cuckoo.common.exceptions import CuckooDependencyError
-from lib.cuckoo.common.objects import File, URL, PCAP, Static
-from lib.cuckoo.common.utils import create_folder, Singleton, classlock, SuperLock, get_options
-from lib.cuckoo.common.demux import demux_sample
-from lib.cuckoo.common.cape_utils import static_extraction, static_config_lookup
+import os
+import sys
+from contextlib import suppress
+from datetime import datetime, timedelta, timezone
+from typing import Any, List, Optional, Union, Tuple, Dict
 
 # Sflock does a good filetype recon
 from sflock.abstracts import File as SflockFile
 from sflock.ident import identify as sflock_identify
 
+from lib.cuckoo.common.cape_utils import static_config_lookup, static_extraction
+from lib.cuckoo.common.colors import red
+from lib.cuckoo.common.config import Config
+from lib.cuckoo.common.constants import CUCKOO_ROOT
+from lib.cuckoo.common.demux import demux_sample
+from lib.cuckoo.common.exceptions import (
+    CuckooDatabaseError,
+    CuckooDatabaseInitializationError,
+    CuckooDependencyError,
+    CuckooOperationalError,
+    CuckooUnserviceableTaskError,
+)
+from lib.cuckoo.common.integrations.parse_pe import PortableExecutable
+from lib.cuckoo.common.objects import PCAP, URL, File, Static
+from lib.cuckoo.common.path_utils import path_delete, path_exists
+from lib.cuckoo.common.utils import bytes2str, create_folder, get_options
+
+# ToDo postgresql+psycopg2 in connection
 try:
-    from sqlalchemy import create_engine, Column, event
-    from sqlalchemy import Integer, String, Boolean, DateTime, Enum, func, or_
-    from sqlalchemy import ForeignKey, Text, Index, Table, text
-    from sqlalchemy.ext.declarative import declarative_base
-    from sqlalchemy.exc import SQLAlchemyError, IntegrityError
-    from sqlalchemy.orm import sessionmaker, relationship, joinedload, backref
+    from sqlalchemy.engine import make_url
+    from sqlalchemy import (
+        Boolean,
+        BigInteger,
+        Column,
+        DateTime,
+        Enum,
+        ForeignKey,
+        Index,
+        Integer,
+        String,
+        Table,
+        Text,
+        create_engine,
+        # event,
+        func,
+        not_,
+        select,
+        Select,
+        delete,
+        update,
+    )
+    from sqlalchemy.exc import IntegrityError, SQLAlchemyError
+    from sqlalchemy.orm import (
+        aliased,
+        joinedload,
+        subqueryload,
+        relationship,
+        scoped_session,
+        sessionmaker,
+        DeclarativeBase,
+        Mapped,
+        mapped_column,
+    )
 
-    Base = declarative_base()
-except ImportError:
-    raise CuckooDependencyError("Unable to import sqlalchemy (install with `pip3 install sqlalchemy`)")
+except ImportError:  # pragma: no cover
+    raise CuckooDependencyError("Unable to import sqlalchemy (install with `poetry install`)")
 
 
 sandbox_packages = (
-    "nsis", "cpl", "regsvr", "dll", "exe", "pdf", "pub", "doc", "xls", "ppt", "jar", "zip", "rar", "swf", "python", "msi", "ps1", "msg", "eml", "js", "html", "hta", "xps", "wsf", "mht", "doc", "vbs", "lnk", "chm", "hwp", "inp", "vbs", "js", "vbejse",
+    "access",
+    "archive",
+    "nsis",
+    "cpl",
+    "reg",
+    "regsvr",
+    "dll",
+    "exe",
+    "pdf",
+    "pub",
+    "doc",
+    "xls",
+    "ppt",
+    "jar",
+    "zip",
+    "rar",
+    "swf",
+    "python",
+    "msi",
+    "msix",
+    "ps1",
+    "msg",
+    "eml",
+    "js",
+    "html",
+    "hta",
+    "xps",
+    "wsf",
+    "mht",
+    "doc",
+    "vbs",
+    "lnk",
+    "chm",
+    "hwp",
+    "inp",
+    "vbs",
+    "js",
+    "vbejse",
+    "msbuild",
+    "sct",
+    "xslt",
+    "shellcode",
+    "shellcode_x64",
+    "generic",
+    "iso",
+    "vhd",
+    "udf",
+    "one",
+    "inf",
 )
 
 log = logging.getLogger(__name__)
 conf = Config("cuckoo")
 repconf = Config("reporting")
+distconf = Config("distributed")
+web_conf = Config("web")
+LINUX_ENABLED = web_conf.linux.enabled
+LINUX_STATIC = web_conf.linux.static_only
+DYNAMIC_ARCH_DETERMINATION = web_conf.general.dynamic_arch_determination
 
-results_db = pymongo.MongoClient(
-    repconf.mongodb.host,
-    port=repconf.mongodb.port,
-    username=repconf.mongodb.get("username", None),
-    password=repconf.mongodb.get("password", None),
-    authSource=repconf.mongodb.db,
-)[repconf.mongodb.db]
+if repconf.mongodb.enabled:
+    from dev_utils.mongodb import mongo_find
+if repconf.elasticsearchdb.enabled:
+    from dev_utils.elasticsearchdb import elastic_handler  # , get_analysis_index
 
-SCHEMA_VERSION = "6ab863a3b510"
+    es = elastic_handler
+
+SCHEMA_VERSION = "2b3c4d5e6f7g"
+TASK_BANNED = "banned"
 TASK_PENDING = "pending"
 TASK_RUNNING = "running"
 TASK_DISTRIBUTED = "distributed"
@@ -66,39 +157,90 @@
 TASK_FAILED_REPORTING = "failed_reporting"
 TASK_DISTRIBUTED_COMPLETED = "distributed_completed"
 
+ALL_DB_STATUSES = (
+    TASK_BANNED,
+    TASK_PENDING,
+    TASK_RUNNING,
+    TASK_DISTRIBUTED,
+    TASK_COMPLETED,
+    TASK_RECOVERED,
+    TASK_REPORTED,
+    TASK_FAILED_ANALYSIS,
+    TASK_FAILED_PROCESSING,
+    TASK_FAILED_REPORTING,
+    TASK_DISTRIBUTED_COMPLETED,
+)
+
+MACHINE_RUNNING = "running"
+
+# ToDo verify variable declaration in Mapped
+
+
+class Base(DeclarativeBase):
+    pass
+
+
 # Secondary table used in association Machine - Tag.
 machines_tags = Table(
-    "machines_tags", Base.metadata, Column("machine_id", Integer, ForeignKey("machines.id")), Column("tag_id", Integer, ForeignKey("tags.id"))
+    "machines_tags",
+    Base.metadata,
+    Column("machine_id", Integer, ForeignKey("machines.id")),
+    Column("tag_id", Integer, ForeignKey("tags.id")),
 )
 
 # Secondary table used in association Task - Tag.
 tasks_tags = Table(
-    "tasks_tags", Base.metadata, Column("task_id", Integer, ForeignKey("tasks.id")), Column("tag_id", Integer, ForeignKey("tags.id"))
+    "tasks_tags",
+    Base.metadata,
+    Column("task_id", Integer, ForeignKey("tasks.id", ondelete="cascade")),
+    Column("tag_id", Integer, ForeignKey("tags.id", ondelete="cascade")),
 )
 
+def get_count(q, property):
+    count_q = q.statement.with_only_columns(func.count(property)).order_by(None)
+    count = q.session.execute(count_q).scalar()
+    return count
+
+
+class SampleAssociation(Base):
+    __tablename__ = "sample_associations"
+
+    # Each column is part of a composite primary key
+    parent_id: Mapped[int] = mapped_column(ForeignKey("samples.id"), primary_key=True)
+    child_id: Mapped[int] = mapped_column(ForeignKey("samples.id"), primary_key=True)
+
+    # This is the crucial column that links to the specific child's task
+    task_id: Mapped[int] = mapped_column(ForeignKey("tasks.id", ondelete="CASCADE"), primary_key=True)
+
+    # Relationships from the association object itself
+    parent: Mapped["Sample"] = relationship(foreign_keys=[parent_id], back_populates="child_links")
+    child: Mapped["Sample"] = relationship(foreign_keys=[child_id], back_populates="parent_links")
+    task: Mapped["Task"] = relationship(back_populates="association")
 
 class Machine(Base):
     """Configured virtual machines to be used as guests."""
 
     __tablename__ = "machines"
 
-    id = Column(Integer(), primary_key=True)
-    name = Column(String(255), nullable=False)
-    label = Column(String(255), nullable=False)
-    ip = Column(String(255), nullable=False)
-    platform = Column(String(255), nullable=False)
-    tags = relationship("Tag", secondary=machines_tags, backref="machines")
-    interface = Column(String(255), nullable=True)
-    snapshot = Column(String(255), nullable=True)
-    locked = Column(Boolean(), nullable=False, default=False)
-    locked_changed_on = Column(DateTime(timezone=False), nullable=True)
-    status = Column(String(255), nullable=True)
-    status_changed_on = Column(DateTime(timezone=False), nullable=True)
-    resultserver_ip = Column(String(255), nullable=False)
-    resultserver_port = Column(String(255), nullable=False)
+    id: Mapped[int] = mapped_column(Integer(), primary_key=True)
+    name: Mapped[str] = mapped_column(String(255), nullable=False, unique=True)
+    label: Mapped[str] = mapped_column(String(255), nullable=False, unique=True)
+    arch: Mapped[str] = mapped_column(String(255), nullable=False)
+    ip: Mapped[str] = mapped_column(String(255), nullable=False)
+    platform: Mapped[str] = mapped_column(String(255), nullable=False)
+    tags: Mapped[List["Tag"]] = relationship(secondary=machines_tags, back_populates="machines")
+    interface: Mapped[Optional[str]] = mapped_column(String(255), nullable=True)
+    snapshot: Mapped[Optional[str]] = mapped_column(String(255), nullable=True)
+    locked: Mapped[bool] = mapped_column(Boolean(), nullable=False, default=False)
+    locked_changed_on: Mapped[Optional[datetime]] = mapped_column(DateTime(timezone=False), nullable=True)
+    status: Mapped[Optional[str]] = mapped_column(String(255), nullable=True)
+    status_changed_on: Mapped[Optional[datetime]] = mapped_column(DateTime(timezone=False), nullable=True)
+    resultserver_ip: Mapped[str] = mapped_column(String(255), nullable=False)
+    resultserver_port: Mapped[str] = mapped_column(String(255), nullable=False)
+    reserved: Mapped[bool] = mapped_column(Boolean(), nullable=False, default=False)
 
     def __repr__(self):
-        return "<Machine('{0}','{1}')>".format(self.id, self.name)
+        return f"<Machine({self.id},'{self.name}')>"
 
     def to_dict(self):
         """Converts object to dict.
@@ -122,15 +264,17 @@ def to_json(self):
         """
         return json.dumps(self.to_dict())
 
-    def __init__(self, name, label, ip, platform, interface, snapshot, resultserver_ip, resultserver_port):
+    def __init__(self, name, label, arch, ip, platform, interface, snapshot, resultserver_ip, resultserver_port, reserved):
         self.name = name
         self.label = label
+        self.arch = arch
         self.ip = ip
         self.platform = platform
         self.interface = interface
         self.snapshot = snapshot
         self.resultserver_ip = resultserver_ip
         self.resultserver_port = resultserver_port
+        self.reserved = reserved
 
 
 class Tag(Base):
@@ -138,11 +282,13 @@ class Tag(Base):
 
     __tablename__ = "tags"
 
-    id = Column(Integer(), primary_key=True)
-    name = Column(String(255), nullable=False, unique=True)
+    id: Mapped[int] = mapped_column(primary_key=True)
+    name: Mapped[str] = mapped_column(nullable=False, unique=True)
+    machines: Mapped[List["Machine"]] = relationship(secondary=machines_tags, back_populates="tags")
+    tasks: Mapped[List["Task"]] = relationship(secondary=tasks_tags, back_populates="tags")
 
     def __repr__(self):
-        return "<Tag('{0}','{1}')>".format(self.id, self.name)
+        return f"<Tag({self.id},'{self.name}')>"
 
     def __init__(self, name):
         self.name = name
@@ -153,17 +299,20 @@ class Guest(Base):
 
     __tablename__ = "guests"
 
-    id = Column(Integer(), primary_key=True)
-    status = Column(String(16), nullable=False)
-    name = Column(String(255), nullable=False)
-    label = Column(String(255), nullable=False)
-    manager = Column(String(255), nullable=False)
-    started_on = Column(DateTime(timezone=False), default=datetime.now, nullable=False)
-    shutdown_on = Column(DateTime(timezone=False), nullable=True)
-    task_id = Column(Integer, ForeignKey("tasks.id"), nullable=False, unique=True)
+    id: Mapped[int] = mapped_column(primary_key=True)
+    status: Mapped[str] = mapped_column(nullable=False)
+    name: Mapped[str] = mapped_column(nullable=False)
+    label: Mapped[str] = mapped_column(nullable=False)
+    platform: Mapped[str] = mapped_column(nullable=False)
+    manager: Mapped[str] = mapped_column(nullable=False)
+
+    started_on: Mapped[datetime] = mapped_column(DateTime(timezone=False), default=datetime.now, nullable=False)
+    shutdown_on: Mapped[Optional[datetime]] = mapped_column(DateTime(timezone=False), nullable=True)
+    task_id: Mapped[int] = mapped_column(ForeignKey("tasks.id", ondelete="cascade"), nullable=False, unique=True)
+    task: Mapped["Task"] = relationship(back_populates="guest")
 
     def __repr__(self):
-        return "<Guest('{0}','{1}')>".format(self.id, self.name)
+        return f"<Guest({self.id}, '{self.name}')>"
 
     def to_dict(self):
         """Converts object to dict.
@@ -184,10 +333,12 @@ def to_json(self):
         """
         return json.dumps(self.to_dict())
 
-    def __init__(self, name, label, manager):
+    def __init__(self, name, label, platform, manager, task_id):
         self.name = name
         self.label = label
+        self.platform = platform
         self.manager = manager
+        self.task_id = task_id
 
 
 class Sample(Base):
@@ -195,17 +346,27 @@ class Sample(Base):
 
     __tablename__ = "samples"
 
-    id = Column(Integer(), primary_key=True)
-    file_size = Column(Integer(), nullable=False)
-    file_type = Column(Text(), nullable=False)
-    md5 = Column(String(32), nullable=False)
-    crc32 = Column(String(8), nullable=False)
-    sha1 = Column(String(40), nullable=False)
-    sha256 = Column(String(64), nullable=False)
-    sha512 = Column(String(128), nullable=False)
-    ssdeep = Column(String(255), nullable=True)
-    parent = Column(Integer(), nullable=True)
-    source_url = Column(String(2000), nullable=True)
+    id: Mapped[int] = mapped_column(primary_key=True)
+    file_size: Mapped[int] = mapped_column(BigInteger, nullable=False)
+    file_type: Mapped[str] = mapped_column(Text(), nullable=False)
+    md5: Mapped[str] = mapped_column(String(32), nullable=False)
+    crc32: Mapped[str] = mapped_column(String(8), nullable=False)
+    sha1: Mapped[str] = mapped_column(String(40), nullable=False)
+    sha256: Mapped[str] = mapped_column(String(64), nullable=False)
+    sha512: Mapped[str] = mapped_column(String(128), nullable=False)
+    ssdeep: Mapped[Optional[str]] = mapped_column(String(255), nullable=True)
+    source_url: Mapped[Optional[str]] = mapped_column(String(2000), nullable=True)
+    tasks: Mapped[List["Task"]] = relationship(back_populates="sample", cascade="all, delete-orphan")
+
+    child_links: Mapped[List["SampleAssociation"]] = relationship(
+        foreign_keys=[SampleAssociation.parent_id], back_populates="parent"
+    )
+    # When this Sample is a child, this gives you its association links
+    parent_links: Mapped[List["SampleAssociation"]] = relationship(
+        foreign_keys=[SampleAssociation.child_id], back_populates="child"
+    )
+
+    # ToDo replace with index=True
     __table_args__ = (
         Index("md5_index", "md5"),
         Index("sha1_index", "sha1"),
@@ -213,7 +374,7 @@ class Sample(Base):
     )
 
     def __repr__(self):
-        return "<Sample('{0}','{1}')>".format(self.id, self.sha256)
+        return f"<Sample({self.id},'{self.sha256}')>"
 
     def to_dict(self):
         """Converts object to dict.
@@ -230,7 +391,7 @@ def to_json(self):
         """
         return json.dumps(self.to_dict())
 
-    def __init__(self, md5, crc32, sha1, sha256, sha512, file_size, file_type=None, ssdeep=None, parent=None, source_url=None):
+    def __init__(self, md5, crc32, sha1, sha256, sha512, file_size, file_type=None, ssdeep=None, parent_sample=None, source_url=None):
         self.md5 = md5
         self.sha1 = sha1
         self.crc32 = crc32
@@ -241,8 +402,8 @@ def __init__(self, md5, crc32, sha1, sha256, sha512, file_size, file_type=None,
             self.file_type = file_type
         if ssdeep:
             self.ssdeep = ssdeep
-        if parent:
-            self.parent = parent
+        # if parent_sample:
+        #    self.parent_sample = parent_sample
         if source_url:
             self.source_url = source_url
 
@@ -251,10 +412,12 @@ class Error(Base):
     """Analysis errors."""
 
     __tablename__ = "errors"
+    MAX_LENGTH = 1024
 
-    id = Column(Integer(), primary_key=True)
-    message = Column(String(255), nullable=False)
-    task_id = Column(Integer, ForeignKey("tasks.id"), nullable=False)
+    id: Mapped[int] = mapped_column(primary_key=True)
+    message: Mapped[str] = mapped_column(String(MAX_LENGTH), nullable=False)
+    task_id: Mapped[int] = mapped_column(ForeignKey("tasks.id"), nullable=False)
+    task: Mapped["Task"] = relationship(back_populates="errors")
 
     def to_dict(self):
         """Converts object to dict.
@@ -272,11 +435,17 @@ def to_json(self):
         return json.dumps(self.to_dict())
 
     def __init__(self, message, task_id):
+        if len(message) > self.MAX_LENGTH:
+            # Make sure that we don't try to insert an error message longer than what's allowed
+            # in the database. Provide the beginning and the end of the error.
+            left_of_ellipses = self.MAX_LENGTH // 2 - 2
+            right_of_ellipses = self.MAX_LENGTH - left_of_ellipses - 3
+            message = "...".join((message[:left_of_ellipses], message[-right_of_ellipses:]))
         self.message = message
         self.task_id = task_id
 
     def __repr__(self):
-        return "<Error('{0}','{1}','{2}')>".format(self.id, self.message, self.task_id)
+        return f"<Error({self.id},'{self.message}','{self.task_id}')>"
 
 
 class Task(Base):
@@ -284,30 +453,39 @@ class Task(Base):
 
     __tablename__ = "tasks"
 
-    id = Column(Integer(), primary_key=True)
-    target = Column(Text(), nullable=False)
-    category = Column(String(255), nullable=False)
-    cape = Column(String(2048), nullable=True)
-    timeout = Column(Integer(), server_default="0", nullable=False)
-    priority = Column(Integer(), server_default="1", nullable=False)
-    custom = Column(String(255), nullable=True)
-    machine = Column(String(255), nullable=True)
-    package = Column(String(255), nullable=True)
-    route = Column(String(128), nullable=True, default=False)
+    id: Mapped[int] = mapped_column(Integer(), primary_key=True)
+    target: Mapped[str] = mapped_column(Text(), nullable=False)
+    category: Mapped[str] = mapped_column(String(255), nullable=False)
+    cape: Mapped[Optional[str]] = mapped_column(String(2048), nullable=True)
+    timeout: Mapped[int] = mapped_column(Integer(), server_default="0", nullable=False)
+    priority: Mapped[int] = mapped_column(Integer(), server_default="1", nullable=False)
+    custom: Mapped[Optional[str]] = mapped_column(String(255), nullable=True)
+    machine: Mapped[Optional[str]] = mapped_column(String(255), nullable=True)
+    package: Mapped[Optional[str]] = mapped_column(String(255), nullable=True)
+    route: Mapped[Optional[str]] = mapped_column(String(128), nullable=True, default=False)
     # Task tags
-    tags_tasks = Column(String(256), nullable=True)
+    tags_tasks: Mapped[Optional[str]] = mapped_column(String(256), nullable=True)
     # Virtual machine tags
-    tags = relationship("Tag", secondary=tasks_tags, backref="tasks", lazy="subquery")
-    options = Column(String(1024), nullable=True)
-    platform = Column(String(255), nullable=True)
-    memory = Column(Boolean, nullable=False, default=False)
-    enforce_timeout = Column(Boolean, nullable=False, default=False)
-    clock = Column(DateTime(timezone=False), default=datetime.now(), nullable=False)
-    added_on = Column(DateTime(timezone=False), default=datetime.now, nullable=False)
-    started_on = Column(DateTime(timezone=False), nullable=True)
-    completed_on = Column(DateTime(timezone=False), nullable=True)
-    status = Column(
+    tags: Mapped[List["Tag"]] = relationship(secondary=tasks_tags, back_populates="tasks", passive_deletes=True)
+    options: Mapped[Optional[str]] = mapped_column(Text(), nullable=True)
+    platform: Mapped[Optional[str]] = mapped_column(String(255), nullable=True)
+    memory: Mapped[bool] = mapped_column(Boolean, nullable=False, default=False)
+    enforce_timeout: Mapped[bool] = mapped_column(Boolean, nullable=False, default=False)
+    clock: Mapped[datetime] = mapped_column(
+        DateTime(timezone=False),
+        default=lambda: datetime.now(timezone.utc).replace(tzinfo=None),
+        nullable=False,
+    )
+    added_on: Mapped[datetime] = mapped_column(
+        DateTime(timezone=False),
+        default=lambda: datetime.now(timezone.utc).replace(tzinfo=None),
+        nullable=False,
+    )
+    started_on: Mapped[Optional[datetime]] = mapped_column(DateTime(timezone=False), nullable=True)
+    completed_on: Mapped[Optional[datetime]] = mapped_column(DateTime(timezone=False), nullable=True)
+    status: Mapped[str] = mapped_column(
         Enum(
+            TASK_BANNED,
             TASK_PENDING,
             TASK_RUNNING,
             TASK_COMPLETED,
@@ -325,41 +503,41 @@ class Task(Base):
 
     # Statistics data to identify broken Cuckoos servers or VMs
     # Also for doing profiling to improve speed
-    dropped_files = Column(Integer(), nullable=True)
-    running_processes = Column(Integer(), nullable=True)
-    api_calls = Column(Integer(), nullable=True)
-    domains = Column(Integer(), nullable=True)
-    signatures_total = Column(Integer(), nullable=True)
-    signatures_alert = Column(Integer(), nullable=True)
-    files_written = Column(Integer(), nullable=True)
-    registry_keys_modified = Column(Integer(), nullable=True)
-    crash_issues = Column(Integer(), nullable=True)
-    anti_issues = Column(Integer(), nullable=True)
-    analysis_started_on = Column(DateTime(timezone=False), nullable=True)
-    analysis_finished_on = Column(DateTime(timezone=False), nullable=True)
-    processing_started_on = Column(DateTime(timezone=False), nullable=True)
-    processing_finished_on = Column(DateTime(timezone=False), nullable=True)
-    signatures_started_on = Column(DateTime(timezone=False), nullable=True)
-    signatures_finished_on = Column(DateTime(timezone=False), nullable=True)
-    reporting_started_on = Column(DateTime(timezone=False), nullable=True)
-    reporting_finished_on = Column(DateTime(timezone=False), nullable=True)
-    timedout = Column(Boolean, nullable=False, default=False)
-
-    sample_id = Column(Integer, ForeignKey("samples.id"), nullable=True)
-    sample = relationship("Sample", backref="tasks", lazy="subquery")
-    machine_id = Column(Integer, nullable=True)
-    guest = relationship("Guest", uselist=False, backref="tasks", cascade="save-update, delete")
-    errors = relationship("Error", backref="tasks", cascade="save-update, delete")
-
-    shrike_url = Column(String(4096), nullable=True)
-    shrike_refer = Column(String(4096), nullable=True)
-    shrike_msg = Column(String(4096), nullable=True)
-    shrike_sid = Column(Integer(), nullable=True)
-
-    parent_id = Column(Integer(), nullable=True)
-    tlp = Column(String(255), nullable=True)
-
-    user_id = Column(Integer(), nullable=True)
+    dropped_files: Mapped[Optional[int]] = mapped_column(nullable=True)
+    running_processes: Mapped[Optional[int]] = mapped_column(nullable=True)
+    api_calls: Mapped[Optional[int]] = mapped_column(nullable=True)
+    domains: Mapped[Optional[int]] = mapped_column(nullable=True)
+    signatures_total: Mapped[Optional[int]] = mapped_column(nullable=True)
+    signatures_alert: Mapped[Optional[int]] = mapped_column(nullable=True)
+    files_written: Mapped[Optional[int]] = mapped_column(nullable=True)
+    registry_keys_modified: Mapped[Optional[int]] = mapped_column(nullable=True)
+    crash_issues: Mapped[Optional[int]] = mapped_column(nullable=True)
+    anti_issues: Mapped[Optional[int]] = mapped_column(nullable=True)
+    analysis_started_on: Mapped[Optional[datetime]] = mapped_column(DateTime(timezone=False), nullable=True)
+    analysis_finished_on: Mapped[Optional[datetime]] = mapped_column(DateTime(timezone=False), nullable=True)
+    processing_started_on: Mapped[Optional[datetime]] = mapped_column(DateTime(timezone=False), nullable=True)
+    processing_finished_on: Mapped[Optional[datetime]] = mapped_column(DateTime(timezone=False), nullable=True)
+    signatures_started_on: Mapped[Optional[datetime]] = mapped_column(DateTime(timezone=False), nullable=True)
+    signatures_finished_on: Mapped[Optional[datetime]] = mapped_column(DateTime(timezone=False), nullable=True)
+    reporting_started_on: Mapped[Optional[datetime]] = mapped_column(DateTime(timezone=False), nullable=True)
+    reporting_finished_on: Mapped[Optional[datetime]] = mapped_column(DateTime(timezone=False), nullable=True)
+    timedout: Mapped[bool] = mapped_column(nullable=False, default=False)
+
+    sample_id: Mapped[Optional[int]] = mapped_column(ForeignKey("samples.id"), nullable=True)
+    sample: Mapped["Sample"] = relationship(back_populates="tasks")  # , lazy="subquery"
+    machine_id: Mapped[Optional[int]] = mapped_column(nullable=True)
+    guest: Mapped["Guest"] = relationship(
+        back_populates="task", uselist=False, cascade="all, delete-orphan"  # This is crucial for a one-to-one relationship
+    )
+    errors: Mapped[List["Error"]] = relationship(
+        back_populates="task", cascade="all, delete-orphan"  # This MUST match the attribute name on the Error model
+    )
+
+    tlp: Mapped[Optional[str]] = mapped_column(String(255), nullable=True)
+    user_id: Mapped[Optional[int]] = mapped_column(nullable=True)
+
+    # The Task is linked to one specific parent/child association event
+    association: Mapped[Optional["SampleAssociation"]] = relationship(back_populates="task", cascade="all, delete-orphan")
 
     __table_args__ = (
         Index("category_index", "category"),
@@ -394,7 +572,7 @@ def __init__(self, target=None):
         self.target = target
 
     def __repr__(self):
-        return "<Task('{0}','{1}')>".format(self.id, self.target)
+        return f"<Task({self.id},'{self.target}')>"
 
 
 class AlembicVersion(Base):
@@ -402,10 +580,10 @@ class AlembicVersion(Base):
 
     __tablename__ = "alembic_version"
 
-    version_num = Column(String(32), nullable=False, primary_key=True)
+    version_num: Mapped[str] = mapped_column(String(32), nullable=False, primary_key=True)
 
 
-class Database(object, metaclass=Singleton):
+class _Database:
     """Analysis queue database.
 
     This class handles the creation of the database user for internal queue
@@ -416,27 +594,26 @@ def __init__(self, dsn=None, schema_check=True):
         """@param dsn: database connection string.
         @param schema_check: disable or enable the db schema version check
         """
-        self._lock = SuperLock()
-        self.cfg = Config()
+        self.cfg = conf
 
         if dsn:
             self._connect_database(dsn)
         elif self.cfg.database.connection:
             self._connect_database(self.cfg.database.connection)
         else:
-            db_file = os.path.join(CUCKOO_ROOT, "db", "cuckoo.db")
-            if not os.path.exists(db_file):
-                db_dir = os.path.dirname(db_file)
-                if not os.path.exists(db_dir):
+            file_path = os.path.join(CUCKOO_ROOT, "db", "cuckoo.db")
+            if not path_exists(file_path):  # pragma: no cover
+                db_dir = os.path.dirname(file_path)
+                if not path_exists(db_dir):
                     try:
                         create_folder(folder=db_dir)
                     except CuckooOperationalError as e:
-                        raise CuckooDatabaseError("Unable to create database directory: {0}".format(e))
+                        raise CuckooDatabaseError(f"Unable to create database directory: {e}")
 
-            self._connect_database("sqlite:///%s" % db_file)
+            self._connect_database(f"sqlite:///{file_path}")
 
         # Disable SQL logging. Turn it on for debugging.
-        self.engine.echo = False
+        self.engine.echo = self.cfg.database.log_statements
         # Connection timeout.
         if self.cfg.database.timeout:
             self.engine.pool_timeout = self.cfg.database.timeout
@@ -445,132 +622,136 @@ def __init__(self, dsn=None, schema_check=True):
         # Create schema.
         try:
             Base.metadata.create_all(self.engine)
-        except SQLAlchemyError as e:
-            raise CuckooDatabaseError("Unable to create or connect to database: {0}".format(e))
+        except SQLAlchemyError as e:  # pragma: no cover
+            raise CuckooDatabaseError(f"Unable to create or connect to database: {e}")
 
         # Get db session.
-        self.Session = sessionmaker(bind=self.engine)
-        # load vms tags
-        self.vms_tags = dict()
-        self.tasks_filters = dict()
-        session = self.Session()
-        machines = session.query(Machine).options(joinedload("tags")).all()
-        for machine in machines:
-            self.vms_tags[machine.name] = [tag.name for tag in machine.tags]
-            self.tasks_filters[machine.name] = or_(*[Task.tags.any(name=tag.name) for tag in machine.tags])
-        session.close()
-
-        @event.listens_for(self.Session, "after_flush")
+        self.session = scoped_session(sessionmaker(bind=self.engine, expire_on_commit=False, future=True))
+
+        # ToDo this breaks tests
+        """
+        # There should be a better way to clean up orphans. This runs after every flush, which is crazy.
+        @event.listens_for(self.session, "after_flush")
         def delete_tag_orphans(session, ctx):
-            session.query(Tag).filter(~Tag.tasks.any()).filter(~Tag.machines.any()).delete(synchronize_session=False)
+            delete_stmt = delete(Tag).where(~Tag.tasks.any()).where(~Tag.machines.any())
+            session.execute(delete_stmt)
+        """
 
         # Deal with schema versioning.
         # TODO: it's a little bit dirty, needs refactoring.
-        tmp_session = self.Session()
-        if not tmp_session.query(AlembicVersion).count():
-            # Set database schema version.
-            tmp_session.add(AlembicVersion(version_num=SCHEMA_VERSION))
-            try:
-                tmp_session.commit()
-            except SQLAlchemyError as e:
-                tmp_session.rollback()
-                raise CuckooDatabaseError("Unable to set schema version: {0}".format(e))
-            finally:
-                tmp_session.close()
-        else:
-            # Check if db version is the expected one.
-            last = tmp_session.query(AlembicVersion).first()
-            tmp_session.close()
-            if last.version_num != SCHEMA_VERSION and schema_check:
-                print("DB schema version mismatch: found {0}, expected {1}. Try to apply all migrations".format(last.version_num, SCHEMA_VERSION))
-                print(red("cd utils/db_migration/ && alembic upgrade head"))
-                sys.exit()
+        with self.session() as tmp_session:
+            # Use the modern select() and scalar() to fetch the first object
+            query = select(AlembicVersion)
+            last = tmp_session.scalar(query)
+
+            if last is None:
+                # Set database schema version (this part is unchanged)
+                tmp_session.add(AlembicVersion(version_num=SCHEMA_VERSION))
+                try:
+                    tmp_session.commit()
+                except SQLAlchemyError as e:  # pragma: no cover
+                    tmp_session.rollback()
+                    raise CuckooDatabaseError(f"Unable to set schema version: {e}")
+            else:
+                # Check if db version is the expected one (this part is unchanged)
+                if last.version_num != SCHEMA_VERSION and schema_check:  # pragma: no cover
+                    print(
+                        f"DB schema version mismatch: found {last.version_num}, expected {SCHEMA_VERSION}. Try to apply all migrations"
+                    )
+                    print(red("Please backup your data before migration!\ncd utils/db_migration/ && poetry run alembic upgrade head"))
+                    sys.exit()
 
     def __del__(self):
         """Disconnects pool."""
-        try:
+        with suppress(KeyError, AttributeError):
             self.engine.dispose()
-        except KeyError:
-            pass
 
     def _connect_database(self, connection_string):
         """Connect to a Database.
         @param connection_string: Connection string specifying the database
         """
+        url = make_url(connection_string)
+        engine_args = {}
+
         try:
-            # TODO: this is quite ugly, should improve.
-            if connection_string.startswith("sqlite"):
+            if url.drivername.startswith("sqlite"):
                 # Using "check_same_thread" to disable sqlite safety check on multiple threads.
-                self.engine = create_engine(connection_string, connect_args={"check_same_thread": False})
-            elif connection_string.startswith("postgres"):
-                # Disabling SSL mode to avoid some errors using sqlalchemy and multiprocesing.
+                engine_args["connect_args"] = {"check_same_thread": False}
+            elif url.drivername.startswith("postgresql"):
                 # See: http://www.postgresql.org/docs/9.0/static/libpq-ssl.html#LIBPQ-SSL-SSLMODE-STATEMENTS
-                self.engine = create_engine(connection_string, connect_args={"sslmode": "disable"})
-            else:
-                self.engine = create_engine(connection_string)
-        except ImportError as e:
-            lib = e.message.split()[-1]
-            raise CuckooDependencyError("Missing database driver, unable to " "import %s (install with `pip " "install %s`)" % (lib, lib))
+                # Disabling SSL mode to avoid some errors using sqlalchemy and multiprocessing.
+                engine_args["connect_args"] = {"sslmode": self.cfg.database.psql_ssl_mode}
+                engine_args["pool_pre_ping"] = True
+            # A single, clean call to create the engine
+            self.engine = create_engine(connection_string, **engine_args)
+
+        except ImportError as e:  # pragma: no cover
+            lib = e.message.rsplit(maxsplit=1)[-1]
+            raise CuckooDependencyError(f"Missing database driver, unable to import {lib} (install with `pip install {lib}`)")
 
-    def _get_or_create(self, session, model, **kwargs):
+    def _get_or_create(self, model, **kwargs):
         """Get an ORM instance or create it if not exist.
         @param session: SQLAlchemy session object
         @param model: model to query
         @return: row instance
         """
-        instance = session.query(model).filter_by(**kwargs).first()
+        cache = self.session.info.setdefault("_get_or_create_cache", {})
+        cache_key = (model, frozenset(kwargs.items()))
+        if cache_key in cache:
+            return cache[cache_key]
+
+        stmt = select(model).filter_by(**kwargs)
+        # Execute with session.scalar() to get a single object or None
+        instance = self.session.scalar(stmt)
         if instance:
+            cache[cache_key] = instance
             return instance
         else:
             instance = model(**kwargs)
-            return instance
+            self.session.add(instance)
+            cache[cache_key] = instance
+
+        return instance
 
-    @classlock
     def drop(self):
         """Drop all tables."""
         try:
-            Base.metadata.drop_all(self.engine)
+            Base.metadata.drop_all(self.engine, checkfirst=True)
         except SQLAlchemyError as e:
-            raise CuckooDatabaseError("Unable to create or connect to database: {0}".format(e))
+            raise CuckooDatabaseError(f"Unable to create or connect to database: {e}")
 
-    @classlock
     def clean_machines(self):
         """Clean old stored machines and related tables."""
         # Secondary table.
         # TODO: this is better done via cascade delete.
-        self.engine.execute(machines_tags.delete())
-
-        session = self.Session()
-        try:
-            session.query(Machine).delete()
-            session.commit()
-        except SQLAlchemyError as e:
-            log.debug("Database error cleaning machines: {0}".format(e))
-            session.rollback()
-        finally:
-            session.close()
-
-    @classlock
-    def delete_machine(self, name):
+        # self.engine.execute(machines_tags.delete())
+        # ToDo : If your ForeignKey has "ON DELETE CASCADE", deleting a Machine
+        # would automatically delete its entries in machines_tags.
+        # If not, deleting them manually first is correct.
+        self.session.execute(delete(machines_tags))
+        self.session.execute(delete(Machine))
+
+    def delete_machine(self, name) -> bool:
         """Delete a single machine entry from DB."""
 
-        session = self.Session()
-        try:
-            machine = session.query(Machine).filter_by(name=name).first()
-            session.delete(machine)
-            session.commit()
-            return "success"
-        except SQLAlchemyError as e:
-            log.info("Database error deleting machine: {0}".format(e))
-            session.rollback()
-        finally:
-            session.close()
+        stmt = select(Machine).where(Machine.name == name)
+        machine = self.session.scalar(stmt)
+
+        if machine:
+            # Deleting a specific ORM instance remains the same
+            self.session.delete(machine)
+            return True
+        else:
+            log.warning("%s does not exist in the database.", name)
+            return False
 
-    @classlock
-    def add_machine(self, name, label, ip, platform, tags, interface, snapshot, resultserver_ip, resultserver_port):
+    def add_machine(
+        self, name, label, arch, ip, platform, tags, interface, snapshot, resultserver_ip, resultserver_port, reserved, locked=False
+    ) -> Machine:
         """Add a guest machine.
         @param name: machine id
         @param label: machine label
+        @param arch: machine arch
         @param ip: machine IP address
         @param platform: machine supported platform
         @param tags: list of comma separated tags
@@ -578,505 +759,410 @@ def add_machine(self, name, label, ip, platform, tags, interface, snapshot, resu
         @param snapshot: snapshot name to use instead of the current one, if configured
         @param resultserver_ip: IP address of the Result Server
         @param resultserver_port: port of the Result Server
+        @param reserved: True if the machine can only be used when specifically requested
         """
-        session = self.Session()
+
         machine = Machine(
             name=name,
             label=label,
+            arch=arch,
             ip=ip,
             platform=platform,
             interface=interface,
             snapshot=snapshot,
             resultserver_ip=resultserver_ip,
             resultserver_port=resultserver_port,
+            reserved=reserved,
         )
-        # Deal with tags format (i.e., foo,bar,baz)
+
         if tags:
-            for tag in tags.replace(" ", "").split(","):
-                machine.tags.append(self._get_or_create(session, Tag, name=tag))
-        session.add(machine)
+            with self.session.no_autoflush:
+                for tag in tags.replace(" ", "").split(","):
+                    machine.tags.append(self._get_or_create(Tag, name=tag))
+        if locked:
+            machine.locked = True
 
-        try:
-            session.commit()
-        except SQLAlchemyError as e:
-            log.debug("Database error adding machine: {0}".format(e))
-            session.rollback()
-        finally:
-            session.close()
+        self.session.add(machine)
+        return machine
 
-    @classlock
     def set_machine_interface(self, label, interface):
-        session = self.Session()
-        try:
-            machine = session.query(Machine).filter_by(label=label).first()
-            if machine is None:
-                log.debug("Database error setting interface: {0} not found".format(label))
-                return None
-            machine.interface = interface
-            session.commit()
+        stmt = select(Machine).filter_by(label=label)
+        machine = self.session.scalar(stmt)
 
-        except SQLAlchemyError as e:
-            log.debug("Database error setting interface: {0}".format(e))
-            session.rollback()
-        finally:
-            session.close()
+        if machine is None:
+            log.debug("Database error setting interface: %s not found", label)
+            return
+
+        # This part remains the same
+        machine.interface = interface
+        return machine
+
+    def set_vnc_port(self, task_id: int, port: int):
+        stmt = select(Task).where(Task.id == task_id)
+        task = self.session.scalar(stmt)
+
+        if task is None:
+            log.debug("Database error setting VPN port: For task %s", task_id)
+            return
+
+        # This logic remains the same
+        if task.options:
+            task.options += f",vnc_port={port}"
+        else:
+            task.options = f"vnc_port={port}"
 
-    @classlock
     def update_clock(self, task_id):
-        session = self.Session()
-        try:
-            row = session.query(Task).get(task_id)
-
-            if not row:
-                return
-
-            if row.clock == datetime.utcfromtimestamp(0):
-                if row.category == "file":
-                    row.clock = datetime.utcnow() + timedelta(days=self.cfg.cuckoo.daydelta)
-                else:
-                    row.clock = datetime.utcnow()
-                session.commit()
-            return row.clock
-        except SQLAlchemyError as e:
-            log.debug("Database error setting clock: {0}".format(e))
-            session.rollback()
-        finally:
-            session.close()
+        row = self.session.get(Task, task_id)
+
+        if not row:
+            return
+        # datetime.fromtimestamp(0, tz=timezone.utc)
+        if row.clock == datetime.utcfromtimestamp(0):
+            if row.category == "file":
+                # datetime.now(timezone.utc)
+                row.clock = datetime.utcnow() + timedelta(days=self.cfg.cuckoo.daydelta)
+            else:
+                # datetime.now(timezone.utc)
+                row.clock = datetime.utcnow()
+        return row.clock
+
+    def set_task_status(self, task: Task, status) -> Task:
+        if status != TASK_DISTRIBUTED_COMPLETED:
+            task.status = status
+
+        if status in (TASK_RUNNING, TASK_DISTRIBUTED):
+            task.started_on = datetime.now()
+        elif status in (TASK_COMPLETED, TASK_DISTRIBUTED_COMPLETED):
+            task.completed_on = datetime.now()
+
+        self.session.add(task)
+        return task
 
-    @classlock
-    def set_status(self, task_id, status):
+    def set_status(self, task_id: int, status) -> Optional[Task]:
         """Set task status.
         @param task_id: task identifier
         @param status: status string
         @return: operation status
         """
-        session = self.Session()
-        try:
-            row = session.query(Task).get(task_id)
+        task = self.session.get(Task, task_id)
 
-            if not row:
-                return
+        if not task:
+            return None
 
-            if status != TASK_DISTRIBUTED_COMPLETED:
-                row.status = status
+        return self.set_task_status(task, status)
 
-            if status in (TASK_RUNNING, TASK_DISTRIBUTED):
-                row.started_on = datetime.now()
-            elif status in (TASK_COMPLETED, TASK_DISTRIBUTED_COMPLETED):
-                row.completed_on = datetime.now()
+    def create_guest(self, machine: Machine, manager: str, task: Task) -> Guest:
+        guest = Guest(machine.name, machine.label, machine.platform, manager, task.id)
+        guest.status = "init"
+        self.session.add(guest)
+        return guest
 
-            session.commit()
-        except SQLAlchemyError as e:
-            log.debug("Database error setting status: {0}".format(e))
-            session.rollback()
-        finally:
-            session.close()
+    def _package_vm_requires_check(self, package: str) -> list:
+        """
+        We allow to users use their custom tags to tag properly any VM that can run this package
+        """
+        return [vm_tag.strip() for vm_tag in web_conf.packages.get(package).split(",")] if web_conf.packages.get(package) else []
 
-    @classlock
-    def set_task_vm(self, task_id, vmname, vm_id):
-        """Set task status.
-        @param task_id: task identifier
-        @param vmname: virtual vm name
-        @return: operation status
+    def _task_arch_tags_helper(self, task: Task):
+        # Are there available machines that match up with a task?
+        task_archs = [tag.name for tag in task.tags if tag.name in ("x86", "x64")]
+        task_tags = [tag.name for tag in task.tags if tag.name not in task_archs]
+
+        return task_archs, task_tags
+
+    def find_machine_to_service_task(self, task: Task) -> Optional[Machine]:
+        """Find a machine that is able to service the given task.
+        Returns: The Machine if an available machine was found; None if there is at least 1 machine
+            that *could* service it, but they are all currently in use.
+        Raises: CuckooUnserviceableTaskError if there are no machines in the pool that would be able
+            to service it.
         """
-        session = self.Session()
-        try:
-            row = session.query(Task).get(task_id)
+        task_archs, task_tags = self._task_arch_tags_helper(task)
+        os_version = self._package_vm_requires_check(task.package)
+
+        base_stmt = select(Machine).options(subqueryload(Machine.tags))
+
+        # This helper now encapsulates the final ordering, locking, and execution.
+        # It takes a Select statement as input.
+        def get_locked_machine(stmt: Select) -> Optional[Machine]:
+            final_stmt = stmt.order_by(Machine.locked, Machine.locked_changed_on).with_for_update(of=Machine)
+            return self.session.scalars(final_stmt).first()
+
+        filter_kwargs = {
+            "statement": base_stmt,
+            "label": task.machine,
+            "platform": task.platform,
+            "tags": task_tags,
+            "archs": task_archs,
+            "os_version": os_version,
+        }
 
-            if not row:
-                return
+        filtered_stmt = self.filter_machines_to_task(include_reserved=False, **filter_kwargs)
+        machine = get_locked_machine(filtered_stmt)
 
-            row.machine = vmname
-            row.machine_id = vm_id
-            session.commit()
-        except SQLAlchemyError as e:
-            log.debug("Database error setting status: {0}".format(e))
-            session.rollback()
-        finally:
-            session.close()
+        if machine is None and not task.machine and task_tags:
+            # The task was given at least 1 tag, but there are no non-reserved machines
+            # that could satisfy the request. So let's check "reserved" machines.
+            filtered_stmt = self.filter_machines_to_task(include_reserved=True, **filter_kwargs)
+            machine = get_locked_machine(filtered_stmt)
+
+        if machine is None:
+            raise CuckooUnserviceableTaskError
+        if machine.locked:
+            # There aren't any machines that can service the task NOW, but there is at
+            # least one in the pool that could service it once it's available.
+            return None
+        return machine
 
-    @classlock
-    def fetch(self, lock=True, machine=""):
+    def fetch_task(self, categories: list = None):
         """Fetches a task waiting to be processed and locks it for running.
         @return: None or task
         """
-        session = self.Session()
-        row = None
-        try:
-            if machine != "":
-                row = (
-                    session.query(Task)
-                    .filter_by(status=TASK_PENDING)
-                    .filter_by(machine=machine)
-                    .order_by(Task.priority.desc(), Task.added_on)
-                    .first()
-                )
-                if not row and self.vms_tags.get(machine, False):
-                    cond = self.tasks_filters[machine]
-                    row = (
-                        session.query(Task)
-                        .options(joinedload("tags"))
-                        .filter_by(status=TASK_PENDING)
-                        .order_by(Task.priority.desc(), Task.added_on)
-                        .filter(cond)
-                        .first()
-                    )
-            else:
-                row = (
-                    session.query(Task)
-                    .filter_by(status=TASK_PENDING)
-                    .order_by(Task.priority.desc(), Task.added_on)
-                    .filter(Task.tags == None)
-                    .first()
-                )
-            if not row:
-                return None
+        stmt = (
+            select(Task)
+            .where(Task.status == TASK_PENDING)
+            .where(not_(Task.options.contains("node=")))
+            .order_by(Task.priority.desc(), Task.added_on)
+        )
 
-            if lock:
-                self.set_status(task_id=row.id, status=TASK_RUNNING)
-                session.refresh(row)
+        if categories:
+            stmt = stmt.where(Task.category.in_(categories))
 
-            return row
-        except SQLAlchemyError as e:
-            log.debug("Database error fetching task: {0}".format(e))
-            log.debug(red("Ensure that your database schema version is correct"))
-            session.rollback()
-        finally:
-            session.close()
-
-    @classlock
-    def guest_start(self, task_id, name, label, manager):
-        """Logs guest start.
-        @param task_id: task identifier
-        @param name: vm name
-        @param label: vm label
-        @param manager: vm manager
-        @return: guest row id
-        """
-        session = self.Session()
-        guest = Guest(name, label, manager)
-        try:
-            guest.status = "init"
-            session.query(Task).get(task_id).guest = guest
-            session.commit()
-            session.refresh(guest)
-            return guest.id
-        except SQLAlchemyError as e:
-            log.debug("Database error logging guest start: {0}".format(e))
-            session.rollback()
-            return None
-        finally:
-            session.close()
-
-    @classlock
-    def guest_get_status(self, task_id):
-        """Log guest start.
-        @param task_id: task id
-        @return: guest status
-        """
-        session = self.Session()
-        try:
-            guest = session.query(Guest).filter_by(task_id=task_id).first()
-            return guest.status if guest else None
-        except SQLAlchemyError as e:
-            log.exception("Database error logging guest start: {0}".format(e))
-            session.rollback()
-            return
-        finally:
-            session.close()
+        # 2. Execute the statement and get the first result object
+        row = self.session.scalars(stmt).first()
 
-    @classlock
-    def guest_set_status(self, task_id, status):
-        """Log guest start.
-        @param task_id: task identifier
-        @param status: status
-        """
-        session = self.Session()
-        try:
-            guest = session.query(Guest).filter_by(task_id=task_id).first()
-            if guest is not None:
-                guest.status = status
-                session.commit()
-                session.refresh(guest)
-        except SQLAlchemyError as e:
-            log.exception("Database error logging guest start: {0}".format(e))
-            session.rollback()
+        if not row:
             return None
-        finally:
-            session.close()
 
-    @classlock
+        # This business logic remains the same
+        self.set_status(task_id=row.id, status=TASK_RUNNING)
+
+        return row
+
+    def guest_get_status(self, task_id: int):
+        """Gets the status for a given guest."""
+        stmt = select(Guest).where(Guest.task_id == task_id)
+        guest = self.session.scalar(stmt)
+        return guest.status if guest else None
+
+    def guest_set_status(self, task_id: int, status: str):
+        """Sets the status for a given guest."""
+        stmt = select(Guest).where(Guest.task_id == task_id)
+        guest = self.session.scalar(stmt)
+        if guest is not None:
+            guest.status = status
+
     def guest_remove(self, guest_id):
         """Removes a guest start entry."""
-        session = self.Session()
-        try:
-            guest = session.query(Guest).get(guest_id)
-            session.delete(guest)
-            session.commit()
-        except SQLAlchemyError as e:
-            log.debug("Database error logging guest remove: {0}".format(e))
-            session.rollback()
-            return None
-        finally:
-            session.close()
+        guest = self.session.get(Guest, guest_id)
+        if guest:
+            self.session.delete(guest)
 
-    @classlock
     def guest_stop(self, guest_id):
         """Logs guest stop.
         @param guest_id: guest log entry id
         """
-        session = self.Session()
-        try:
-            session.query(Guest).get(guest_id).shutdown_on = datetime.now()
-            session.commit()
-        except SQLAlchemyError as e:
-            log.debug("Database error logging guest stop: {0}".format(e))
-            session.rollback()
-        except TypeError:
-            log.warning("Data inconsistency in guests table detected, it might be a crash leftover. Continue")
-            session.rollback()
-        finally:
-            session.close()
-
-    @classlock
-    def list_machines(self, locked=False, platform="", tags=[]):
-        """Lists virtual machines.
-        @return: list of virtual machines
+        guest = self.session.get(Guest, guest_id)
+        if guest:
+            guest.shutdown_on = datetime.now()
+
+    @staticmethod
+    def filter_machines_by_arch(statement: Select, arch: list) -> Select:
+        """Adds a filter to the given select statement for the machine architecture.
+        Allows x64 machines to be returned when requesting x86.
         """
-        session = self.Session()
-        try:
-            if locked:
-                machines = session.query(Machine).options(joinedload("tags")).filter_by(locked=True).all()
-            elif platform:
-                machines = session.query(Machine).options(joinedload("tags")).filter_by(platform=platform).all()
+        if arch:
+            if "x86" in arch:
+                # Prefer x86 machines over x64 if x86 is what was requested.
+                statement = statement.where(Machine.arch.in_(("x64", "x86"))).order_by(Machine.arch.desc())
             else:
-                machines = session.query(Machine).options(joinedload("tags")).all()
-            if tags:
-                machines = [machine for tag in tags for machine in machines if tag in machine.to_dict()["tags"]]
-            return machines
-        except SQLAlchemyError as e:
-            log.debug("Database error listing machines: {0}".format(e))
-            return []
-        finally:
-            session.close()
+                statement = statement.where(Machine.arch.in_(arch))
+        return statement
 
-    @classlock
-    def lock_machine(self, label=None, platform=None, tags=None):
-        """Places a lock on a free virtual machine.
-        @param label: optional virtual machine label
-        @param platform: optional virtual machine platform
-        @param tags: optional tags required (list)
-        @return: locked machine
+    def filter_machines_to_task(
+        self, statement: Select, label=None, platform=None, tags=None, archs=None, os_version=None, include_reserved=False
+    ) -> Select:
+        """Adds filters to the given select statement based on the task.
+
+        @param statement: A `select()` statement to add filters to.
         """
-        session = self.Session()
+        if label:
+            statement = statement.where(Machine.label == label)
+        elif not include_reserved:
+            # Use .is_(False) for boolean checks
+            statement = statement.where(Machine.reserved.is_(False))
 
-        # Preventive checks.
-        if label and platform:
-            # Wrong usage.
-            log.error("You can select machine only by label or by platform.")
-            session.close()
-            return None
-        elif label and tags:
-            # Also wrong usage.
-            log.error("You can select machine only by label or by tags.")
-            session.close()
-            return None
+        if platform:
+            statement = statement.where(Machine.platform == platform)
 
-        try:
-            machines = session.query(Machine)
-            if label:
-                machines = machines.filter_by(label=label)
-            if platform:
-                machines = machines.filter_by(platform=platform)
-            if tags:
-                for tag in tags:
-                    machines = machines.filter(Machine.tags.any(name=tag.name))
-
-            # Check if there are any machines that satisfy the
-            # selection requirements.
-            if not machines.count():
-                session.close()
-                raise CuckooOperationalError("No machines match selection criteria.")
-
-            # Get the first free machine.
-            machine = machines.filter_by(locked=False).first()
-        except SQLAlchemyError as e:
-            log.debug("Database error locking machine: {0}".format(e))
-            session.close()
-            return None
+        statement = self.filter_machines_by_arch(statement, archs)
 
-        if machine:
-            machine.locked = True
-            machine.locked_changed_on = datetime.now()
-            try:
-                session.commit()
-                session.refresh(machine)
-            except SQLAlchemyError as e:
-                log.debug("Database error locking machine: {0}".format(e))
-                session.rollback()
-                return None
-            finally:
-                session.close()
-        else:
-            session.close()
+        if tags:
+            for tag in tags:
+                statement = statement.where(Machine.tags.any(name=tag))
 
-        return machine
+        if os_version:
+            statement = statement.where(Machine.tags.any(Tag.name.in_(os_version)))
 
-    @classlock
-    def unlock_machine(self, label):
-        """Remove lock form a virtual machine.
-        @param label: virtual machine label
-        @return: unlocked machine
+        return statement
+
+    def list_machines(
+        self,
+        locked=None,
+        label=None,
+        platform=None,
+        tags=None,
+        arch=None,
+        include_reserved=False,
+        os_version=None,
+    ) -> List[Machine]:
+        """Lists virtual machines.
+        @return: list of virtual machines
         """
-        session = self.Session()
-        try:
-            machine = session.query(Machine).filter_by(label=label).first()
-        except SQLAlchemyError as e:
-            log.debug("Database error unlocking machine: {0}".format(e))
-            session.close()
-            return None
+        """
+        id |  name  | label | arch |
+        ----+-------+-------+------+
+        77 | cape1  | win7  | x86  |
+        78 | cape2  | win10 | x64  |
+        """
+        # ToDo do we really need it
+        with self.session.begin_nested():
+            # with self.session.no_autoflush:
+            stmt = select(Machine).options(subqueryload(Machine.tags))
+
+            if locked is not None:
+                stmt = stmt.where(Machine.locked.is_(locked))
+
+            stmt = self.filter_machines_to_task(
+                statement=stmt,
+                label=label,
+                platform=platform,
+                tags=tags,
+                archs=arch,
+                os_version=os_version,
+                include_reserved=include_reserved,
+            )
+            return self.session.execute(stmt).unique().scalars().all()
 
+    def assign_machine_to_task(self, task: Task, machine: Optional[Machine]) -> Task:
         if machine:
-            machine.locked = False
-            machine.locked_changed_on = datetime.now()
-            try:
-                session.commit()
-                session.refresh(machine)
-            except SQLAlchemyError as e:
-                log.debug("Database error locking machine: {0}".format(e))
-                session.rollback()
-                return None
-            finally:
-                session.close()
+            task.machine = machine.label
+            task.machine_id = machine.id
         else:
-            session.close()
+            task.machine = None
+            task.machine_id = None
+        self.session.add(task)
+        return task
+
+    def lock_machine(self, machine: Machine) -> Machine:
+        """Places a lock on a free virtual machine.
+        @param machine: the Machine to lock
+        @return: locked machine
+        """
+        machine.locked = True
+        machine.locked_changed_on = datetime.now()
+        self.set_machine_status(machine, MACHINE_RUNNING)
+        self.session.add(machine)
 
         return machine
 
-    @classlock
-    def count_machines_available(self):
-        """How many virtual machines are ready for analysis.
-        @return: free virtual machines count
-        """
-        session = self.Session()
-        try:
-            machines_count = session.query(Machine).filter_by(locked=False).count()
-            return machines_count
-        except SQLAlchemyError as e:
-            log.debug("Database error counting machines: {0}".format(e))
-            return 0
-        finally:
-            session.close()
-
-    @classlock
-    def get_available_machines(self):
-        """  Which machines are available
-        @return: free virtual machines
+    def unlock_machine(self, machine: Machine) -> Machine:
+        """Remove lock from a virtual machine.
+        @param machine: The Machine to unlock.
+        @return: unlocked machine
         """
-        session = self.Session()
-        try:
-            machines = session.query(Machine).filter_by(locked=False).all()
-            return machines
-        except SQLAlchemyError as e:
-            log.debug("Database error getting available machines: {0}".format(e))
-            return []
-        finally:
-            session.close()
-
-    @classlock
-    def set_machine_status(self, label, status):
-        """Set status for a virtual machine.
-        @param label: virtual machine label
-        @param status: new virtual machine status
+        machine.locked = False
+        machine.locked_changed_on = datetime.now()
+        self.session.merge(machine)
+        return machine
+
+    def count_machines_available(self, label=None, platform=None, tags=None, arch=None, include_reserved=False, os_version=None):
+        """How many (relevant) virtual machines are ready for analysis.
+        @param label: machine ID.
+        @param platform: machine platform.
+        @param tags: machine tags
+        @param arch: machine arch
+        @param include_reserved: include 'reserved' machines in the result, regardless of whether or not a 'label' was provided.
+        @return: free virtual machines count
         """
-        session = self.Session()
-        try:
-            machine = session.query(Machine).filter_by(label=label).first()
-        except SQLAlchemyError as e:
-            log.debug("Database error setting machine status: {0}".format(e))
-            session.close()
-            return
+        stmt = select(func.count(Machine.id)).where(Machine.locked.is_(False))
+        stmt = self.filter_machines_to_task(
+            statement=stmt,
+            label=label,
+            platform=platform,
+            tags=tags,
+            archs=arch,
+            os_version=os_version,
+            include_reserved=include_reserved,
+        )
+
+        return self.session.scalar(stmt)
+
+    def get_available_machines(self) -> List[Machine]:
+        """Which machines are available"""
+        stmt = select(Machine).options(subqueryload(Machine.tags)).where(Machine.locked.is_(False))
+        return self.session.scalars(stmt).all()
+
+    def count_machines_running(self) -> int:
+        """Counts how many machines are currently locked (running)."""
+        stmt = select(func.count(Machine.id)).where(Machine.locked.is_(True))
+        return self.session.scalar(stmt)
+
+    def set_machine_status(self, machine_or_label: Union[str, Machine], status):
+        """Set status for a virtual machine."""
+        if isinstance(machine_or_label, str):
+            stmt = select(Machine).where(Machine.label == machine_or_label)
+            machine = self.session.scalar(stmt)
+        else:
+            machine = machine_or_label
 
         if machine:
             machine.status = status
             machine.status_changed_on = datetime.now()
-            try:
-                session.commit()
-                session.refresh(machine)
-            except SQLAlchemyError as e:
-                log.debug("Database error setting machine status: {0}".format(e))
-                session.rollback()
-            finally:
-                session.close()
-        else:
-            session.close()
+            # No need for session.add() here; the ORM tracks changes to loaded objects.
 
-    @classlock
     def add_error(self, message, task_id):
-        """Add an error related to a task.
-        @param message: error message
-        @param task_id: ID of the related task
-        """
-        session = self.Session()
+        """Add an error related to a task."""
+        # This function already uses modern, correct SQLAlchemy 2.0 patterns.
+        # No changes are needed.
         error = Error(message=message, task_id=task_id)
-        session.add(error)
-        try:
-            session.commit()
-        except SQLAlchemyError as e:
-            log.debug("Database error adding error log: {0}".format(e))
-            session.rollback()
-        finally:
-            session.close()
+        # Use a separate session so that, regardless of the state of a transaction going on
+        # outside of this function, the error will always be committed to the database.
+        with self.session.session_factory() as sess, sess.begin():
+            sess.add(error)
 
-    # The following functions are mostly used by external utils.
-
-    @classlock
     def register_sample(self, obj, source_url=False):
-        sample_id = None
-        if isinstance(obj, File) or isinstance(obj, PCAP) or isinstance(obj, Static):
-            session = self.Session()
+        if isinstance(obj, (File, PCAP, Static)):
             fileobj = File(obj.file_path)
             file_type = fileobj.get_type()
             file_md5 = fileobj.get_md5()
-            sample = Sample(
-                md5=file_md5,
-                crc32=fileobj.get_crc32(),
-                sha1=fileobj.get_sha1(),
-                sha256=fileobj.get_sha256(),
-                sha512=fileobj.get_sha512(),
-                file_size=fileobj.get_size(),
-                file_type=file_type,
-                ssdeep=fileobj.get_ssdeep(),
-                source_url=source_url,
-            )
-            session.add(sample)
-
+            sample = None
+            # check if hash is known already
             try:
-                session.commit()
-            except IntegrityError:
-                session.rollback()
-                try:
-                    sample = session.query(Sample).filter_by(md5=file_md5).first()
-                except SQLAlchemyError as e:
-                    log.debug("Error querying sample for hash: {0}".format(e))
-                    session.close()
-                    return None
-            except SQLAlchemyError as e:
-                log.debug("Database error adding task: {0}".format(e))
-                session.close()
-                return None
-            finally:
-                sample_id = sample.id
-                session.close()
-
-            return sample_id
-        else:
-            return None
+                # get or create
+                sample = self.session.scalar(select(Sample).where(Sample.md5 == file_md5))
+                if sample is None:
+                    with self.session.begin_nested():
+                        sample = Sample(
+                            md5=file_md5,
+                            crc32=fileobj.get_crc32(),
+                            sha1=fileobj.get_sha1(),
+                            sha256=fileobj.get_sha256(),
+                            sha512=fileobj.get_sha512(),
+                            file_size=fileobj.get_size(),
+                            file_type=file_type,
+                            ssdeep=fileobj.get_ssdeep(),
+                            source_url=source_url,
+                        )
+                        self.session.add(sample)
+            except IntegrityError as e:
+                log.exception(e)
+        return sample
 
-    @classlock
     def add(
         self,
         obj,
+        *,
         timeout=0,
         package="",
         options="",
@@ -1088,20 +1174,14 @@ def add(
         memory=False,
         enforce_timeout=False,
         clock=None,
-        shrike_url=None,
-        shrike_msg=None,
-        shrike_sid=None,
-        shrike_refer=None,
-        parent_id=None,
-        sample_parent_id=None,
+        parent_sample=None,
         tlp=None,
         static=False,
         source_url=False,
-        route = None,
-        cape = False,
-        tags_tasks = False,
-        user_id = 0,
-
+        route=None,
+        cape=False,
+        tags_tasks=False,
+        user_id=0,
     ):
         """Add a task to database.
         @param obj: object to add (File or URL).
@@ -1116,7 +1196,7 @@ def add(
         @param enforce_timeout: toggle full timeout execution.
         @param clock: virtual machine clock time
         @param parent_id: parent task id
-        @param sample_parent_id: original sample in case of archive
+        @param parent_sample: original sample in case of archive
         @param static: try static extraction first
         @param tlp: TLP sharing designation
         @param source_url: url from where it was downloaded
@@ -1126,65 +1206,60 @@ def add(
         @param user_id: Link task to user if auth enabled
         @return: cursor or None.
         """
-        session = self.Session()
-
         # Convert empty strings and None values to a valid int
-        if not timeout:
-            timeout = 0
-        if not priority:
-            priority = 1
 
-        if isinstance(obj, File) or isinstance(obj, PCAP) or isinstance(obj, Static):
+        if isinstance(obj, (File, PCAP, Static)):
             fileobj = File(obj.file_path)
             file_type = fileobj.get_type()
             file_md5 = fileobj.get_md5()
-            sample = Sample(
-                md5=file_md5,
-                crc32=fileobj.get_crc32(),
-                sha1=fileobj.get_sha1(),
-                sha256=fileobj.get_sha256(),
-                sha512=fileobj.get_sha512(),
-                file_size=fileobj.get_size(),
-                file_type=file_type,
-                ssdeep=fileobj.get_ssdeep(),
-                parent=sample_parent_id,
-                source_url=source_url,
-            )
-            session.add(sample)
-
-            try:
-                session.commit()
-            except IntegrityError:
-                session.rollback()
+            # check if hash is known already
+            # ToDo consider migrate to _get_or_create?
+            sample = self.session.scalar(select(Sample).where(Sample.md5 == file_md5))
+            if not sample:
                 try:
-                    sample = session.query(Sample).filter_by(md5=file_md5).first()
-                except SQLAlchemyError as e:
-                    log.debug("Error querying sample for hash: {0}".format(e))
-                    session.close()
-                    return None
-            except SQLAlchemyError as e:
-                log.debug("Database error adding task: {0}".format(e))
-                session.close()
-                return None
-
-            # force a special tag for 64-bit binaries to prevent them from being
-            # analyzed by default on VM types that can't handle them
-            if not machine:
-                if "PE32+" in file_type or "64-bit" in file_type:
-                    if tags:
-                        tags += ",x64"
-                    else:
-                        tags = "x64"
-
+                    with self.session.begin_nested():
+                        sample = Sample(
+                            md5=file_md5,
+                            crc32=fileobj.get_crc32(),
+                            sha1=fileobj.get_sha1(),
+                            sha256=fileobj.get_sha256(),
+                            sha512=fileobj.get_sha512(),
+                            file_size=fileobj.get_size(),
+                            file_type=file_type,
+                            ssdeep=fileobj.get_ssdeep(),
+                            source_url=source_url,
+                        )
+                        self.session.add(sample)
+                except Exception as e:
+                    log.exception(e)
+
+            if DYNAMIC_ARCH_DETERMINATION:
+                # Assign architecture to task to fetch correct VM type
+
+                # This isn't 100% fool proof
+                _tags = tags.split(",") if isinstance(tags, str) else []
+                arch_tag = fileobj.predict_arch()
+                if package.endswith("_x64"):
+                    _tags.append("x64")
+                elif arch_tag:
+                    _tags.append(arch_tag)
+                tags = ",".join(set(_tags))
             task = Task(obj.file_path)
             task.sample_id = sample.id
 
-            if isinstance(obj, PCAP) or isinstance(obj, Static):
+            if isinstance(obj, (PCAP, Static)):
                 # since no VM will operate on this PCAP
                 task.started_on = datetime.now()
 
         elif isinstance(obj, URL):
             task = Task(obj.url)
+            _tags = tags.split(",") if isinstance(tags, str) else []
+            _tags.append("x64")
+            _tags.append("x86")
+            tags = ",".join(set(_tags))
+
+        else:
+            return None
 
         task.category = obj.__class__.__name__.lower()
         task.timeout = timeout
@@ -1196,11 +1271,6 @@ def add(
         task.platform = platform
         task.memory = bool(memory)
         task.enforce_timeout = enforce_timeout
-        task.shrike_url = shrike_url
-        task.shrike_msg = shrike_msg
-        task.shrike_sid = shrike_sid
-        task.shrike_refer = shrike_refer
-        task.parent_id = parent_id
         task.tlp = tlp
         task.route = route
         task.cape = cape
@@ -1208,15 +1278,19 @@ def add(
         # Deal with tags format (i.e., foo,bar,baz)
         if tags:
             for tag in tags.split(","):
-                if tag.strip():
-                    task.tags.append(self._get_or_create(session, Tag, name=tag))
+                tag_name = tag.strip()
+                if tag_name and tag_name not in [tag.name for tag in task.tags]:
+                    # "Task" object is being merged into a Session along the backref cascade path for relationship "Tag.tasks"; in SQLAlchemy 2.0, this reverse cascade will not take place.
+                    # Set cascade_backrefs to False in either the relationship() or backref() function for the 2.0 behavior; or to set globally for the whole Session, set the future=True flag
+                    # (Background on this error at: https://sqlalche.me/e/14/s9r1) (Background on SQLAlchemy 2.0 at: https://sqlalche.me/e/b8d9)
+                    task.tags.append(self._get_or_create(Tag, name=tag_name))
 
         if clock:
             if isinstance(clock, str):
                 try:
                     task.clock = datetime.strptime(clock, "%m-%d-%Y %H:%M:%S")
                 except ValueError:
-                    log.warning("The date you specified has an invalid format, using current timestamp.")
+                    log.warning("The date you specified has an invalid format, using current timestamp")
                     task.clock = datetime.utcfromtimestamp(0)
 
             else:
@@ -1226,19 +1300,19 @@ def add(
 
         task.user_id = user_id
 
-        session.add(task)
+        if parent_sample:
+            association = SampleAssociation(
+                parent=parent_sample,
+                child=sample,
+                task=task,
+            )
+            self.session.add(association)
 
-        try:
-            session.commit()
-            task_id = task.id
-        except SQLAlchemyError as e:
-            log.debug("Database error adding task: {0}".format(e))
-            session.rollback()
-            return None
-        finally:
-            session.close()
+        # Use a nested transaction so that we can return an ID.
+        with self.session.begin_nested():
+            self.session.add(task)
 
-        return task_id
+        return task.id
 
     def add_path(
         self,
@@ -1254,12 +1328,6 @@ def add_path(
         memory=False,
         enforce_timeout=False,
         clock=None,
-        shrike_url=None,
-        shrike_msg=None,
-        shrike_sid=None,
-        shrike_refer=None,
-        parent_id=None,
-        sample_parent_id=None,
         tlp=None,
         static=False,
         source_url=False,
@@ -1267,6 +1335,7 @@ def add_path(
         cape=False,
         tags_tasks=False,
         user_id=0,
+        parent_sample = None,
     ):
         """Add a task to database from file path.
         @param file_path: sample path.
@@ -1281,17 +1350,18 @@ def add_path(
         @param enforce_timeout: toggle full timeout execution.
         @param clock: virtual machine clock time
         @param parent_id: parent analysis id
-        @param sample_parent_id: sample parent id, if archive
+        @param parent_sample: sample object if archive
         @param static: try static extraction first
         @param tlp: TLP sharing designation
         @param route: Routing route
         @param cape: CAPE options
         @param tags_tasks: Task tags so users can tag their jobs
         @user_id: Allow link task to user if auth enabled
+        @parent_sample: Sample object, if archive
         @return: cursor or None.
         """
-        if not file_path or not os.path.exists(file_path):
-            log.warning("File does not exist: %s.", file_path)
+        if not file_path or not path_exists(file_path):
+            log.warning("File does not exist: %s", file_path)
             return None
 
         # Convert empty strings and None values to a valid int
@@ -1299,35 +1369,142 @@ def add_path(
             timeout = 0
         if not priority:
             priority = 1
+        if file_path.endswith((".htm", ".html")) and not package:
+            package = web_conf.url_analysis.package
 
         return self.add(
             File(file_path),
-            timeout,
-            package,
-            options,
-            priority,
-            custom,
-            machine,
-            platform,
-            tags,
-            memory,
-            enforce_timeout,
-            clock,
-            shrike_url,
-            shrike_msg,
-            shrike_sid,
-            shrike_refer,
-            parent_id,
-            sample_parent_id,
-            tlp,
+            timeout=timeout,
+            package=package,
+            options=options,
+            priority=priority,
+            custom=custom,
+            machine=machine,
+            platform=platform,
+            tags=tags,
+            memory=memory,
+            enforce_timeout=enforce_timeout,
+            clock=clock,
+            tlp=tlp,
             source_url=source_url,
             route=route,
             cape=cape,
             tags_tasks=tags_tasks,
             user_id=user_id,
+            parent_sample=parent_sample,
         )
 
-    def demux_sample_and_add_to_db(
+    def _identify_aux_func(self, file: bytes, package: str, check_shellcode: bool = True) -> tuple:
+        # before demux we need to check as msix has zip mime and we don't want it to be extracted:
+        tmp_package = False
+        if not package:
+            f = SflockFile.from_path(file)
+            try:
+                tmp_package = sflock_identify(f, check_shellcode=check_shellcode)
+            except Exception as e:
+                log.error("Failed to sflock_ident due to %s", str(e))
+                tmp_package = "generic"
+
+        if tmp_package and tmp_package in sandbox_packages:
+            # This probably should be way much bigger list of formats
+            if tmp_package in ("iso", "udf", "vhd"):
+                package = "archive"
+            elif tmp_package in ("zip", "rar"):
+                package = ""
+            elif tmp_package in ("html",):
+                package = web_conf.url_analysis.package
+            else:
+                package = tmp_package
+
+        return package, tmp_package
+
+    # Submission hooks to manipulate arguments of tasks execution
+    def recon(
+        self,
+        filename,
+        orig_options,
+        timeout=0,
+        enforce_timeout=False,
+        package="",
+        tags=None,
+        static=False,
+        priority=1,
+        machine="",
+        platform="",
+        custom="",
+        memory=False,
+        clock=None,
+        unique=False,
+        referrer=None,
+        tlp=None,
+        tags_tasks=False,
+        route=None,
+        cape=False,
+        category=None,
+    ):
+        # Get file filetype to ensure self extracting archives run longer
+        if not isinstance(filename, str):
+            filename = bytes2str(filename)
+
+        lowered_filename = filename.lower()
+
+        # sfx = File(filename).is_sfx()
+
+        if "malware_name" in lowered_filename:
+            orig_options += "<options_here>"
+        # if sfx:
+        #    orig_options += ",timeout=500,enforce_timeout=1,procmemdump=1,procdump=1"
+        #    timeout = 500
+        #    enforce_timeout = True
+
+        if web_conf.general.yara_recon:
+            hits = File(filename).get_yara("binaries")
+            for hit in hits:
+                cape_name = hit["meta"].get("cape_type", "")
+                if not cape_name.endswith(("Crypter", "Packer", "Obfuscator", "Loader", "Payload")):
+                    continue
+
+                orig_options_parsed = get_options(orig_options)
+                parsed_options = get_options(hit["meta"].get("cape_options", ""))
+                if "tags" in parsed_options:
+                    tags = "," + parsed_options["tags"] if tags else parsed_options["tags"]
+                    del parsed_options["tags"]
+                # custom packages should be added to lib/cuckoo/core/database.py -> sandbox_packages list
+                # Do not overwrite user provided package
+                if not package and "package" in parsed_options:
+                    package = parsed_options["package"]
+                    del parsed_options["package"]
+
+                if "category" in parsed_options:
+                    category = parsed_options["category"]
+                    del parsed_options["category"]
+
+                orig_options_parsed.update(parsed_options)
+                orig_options = ",".join([f"{k}={v}" for k, v in orig_options_parsed.items()])
+
+        return (
+            static,
+            priority,
+            machine,
+            platform,
+            custom,
+            memory,
+            clock,
+            unique,
+            referrer,
+            tlp,
+            tags_tasks,
+            route,
+            cape,
+            orig_options,
+            timeout,
+            enforce_timeout,
+            package,
+            tags,
+            category,
+        )
+
+    def demux_sample_and_add_to_db(
         self,
         file_path,
         timeout=0,
@@ -1341,12 +1518,6 @@ def demux_sample_and_add_to_db(
         memory=False,
         enforce_timeout=False,
         clock=None,
-        shrike_url=None,
-        shrike_msg=None,
-        shrike_sid=None,
-        shrike_refer=None,
-        parent_id=None,
-        sample_parent_id=None,
         tlp=None,
         static=False,
         source_url=False,
@@ -1355,6 +1526,7 @@ def demux_sample_and_add_to_db(
         route=None,
         cape=False,
         user_id=0,
+        category=None,
     ):
         """
         Handles ZIP file submissions, submitting each extracted file to the database
@@ -1363,52 +1535,142 @@ def demux_sample_and_add_to_db(
         task_id = False
         task_ids = []
         config = {}
-        sample_parent_id = None
-        # force auto package for linux files
-        if platform == "linux":
-            package = ""
+        details = {}
+
+        if not isinstance(file_path, bytes):
+            file_path = file_path.encode()
+
+        (
+            static,
+            priority,
+            machine,
+            platform,
+            custom,
+            memory,
+            clock,
+            unique,
+            referrer,
+            tlp,
+            tags_tasks,
+            route,
+            cape,
+            options,
+            timeout,
+            enforce_timeout,
+            package,
+            tags,
+            category,
+        ) = self.recon(
+            file_path,
+            options,
+            timeout=timeout,
+            enforce_timeout=enforce_timeout,
+            package=package,
+            tags=tags,
+            static=static,
+            priority=priority,
+            machine=machine,
+            platform=platform,
+            custom=custom,
+            memory=memory,
+            clock=clock,
+            tlp=tlp,
+            tags_tasks=tags_tasks,
+            route=route,
+            cape=cape,
+            category=category,
+        )
+
+        if category == "static":
+            # force change of category
+            task_ids += self.add_static(
+                file_path=file_path,
+                priority=priority,
+                tlp=tlp,
+                user_id=user_id,
+                options=options,
+                package=package,
+            )
+            return task_ids, details
+
+        check_shellcode = True
+        if options and "check_shellcode=0" in options:
+            check_shellcode = False
+
+        if not package:
+            if "file=" in options:
+                # set zip as package when specifying file= in options
+                package = "zip"
+            else:
+                # Checking original file as some filetypes doesn't require demux
+                package, _ = self._identify_aux_func(file_path, package, check_shellcode=check_shellcode)
+
+        parent_sample = None
         # extract files from the (potential) archive
-        extracted_files = demux_sample(file_path, package, options)
+        extracted_files, demux_error_msgs = demux_sample(file_path, package, options, platform=platform)
         # check if len is 1 and the same file, if diff register file, and set parent
-        if not isinstance(file_path, bytes):
-            file_path = file_path.encode("utf-8")
-        if extracted_files and file_path not in extracted_files:
-            sample_parent_id = self.register_sample(File(file_path), source_url=source_url)
+        if extracted_files and not any(file_path == path for path, _ in extracted_files):
+            parent_sample = self.register_sample(File(file_path), source_url=source_url)
             if conf.cuckoo.delete_archive:
-                os.remove(file_path)
-
-        # Check for 'file' option indicating supporting files needed for upload; otherwise create task for each file
-        opts = get_options(options)
-        if "file" in opts:
-            runfile = opts["file"].lower()
-            if isinstance(runfile, str):
-                runfile = runfile.encode("utf8")
-            for xfile in extracted_files:
-                if runfile in xfile.lower():
-                    extracted_files = [xfile]
-                    break
+                path_delete(file_path.decode())
 
         # create tasks for each file in the archive
-        for file in extracted_files:
+        for file, platform in extracted_files:
+            if not path_exists(file):
+                log.error("Extracted file doesn't exist: %s", file)
+                continue
+            # ToDo we lose package here and send APKs to windows
+            if platform in ("linux", "darwin") and LINUX_STATIC:
+                task_ids += self.add_static(
+                    file_path=file_path,
+                    priority=priority,
+                    tlp=tlp,
+                    user_id=user_id,
+                    options=options,
+                    package=package,
+                    parent_sample=parent_sample,
+                )
+                continue
             if static:
-                # we don't need to process extra file if we already have it and config
-                config = static_config_lookup(file)
-                if not config:
-                    config = static_extraction(file)
+                # On huge loads this just become a bottleneck
+                config = False
+                if web_conf.general.check_config_exists:
+                    config = static_config_lookup(file)
                     if config:
-                        task_id = self.add_static(file_path=file, priority=priority, tlp=tlp, user_id=user_id)
-                else:
-                    task_ids.append(config["id"])
-            if not config and only_extraction is False:
+                        task_ids.append(config["id"])
+                    else:
+                        config = static_extraction(file)
+                if config or only_extraction:
+                    task_ids += self.add_static(
+                        file_path=file, priority=priority, tlp=tlp, user_id=user_id, options=options, parent_sample=parent_sample,
+                    )
 
+            if not config and not only_extraction:
                 if not package:
-                    f = SflockFile.from_path(file)
-                    tmp_package = sflock_identify(f)
-                    if tmp_package and tmp_package in sandbox_packages:
-                        package = tmp_package
+                    package, tmp_package = self._identify_aux_func(file, "", check_shellcode=check_shellcode)
+
+                    if not tmp_package:
+                        log.info("Do sandbox packages need an update? Sflock identifies as: %s - %s", tmp_package, file)
+
+                if package == "dll" and "function" not in options:
+                    dll_export = PortableExecutable(file.decode()).choose_dll_export()
+                    if dll_export == "DllRegisterServer":
+                        package = "regsvr"
+                    elif dll_export == "xlAutoOpen":
+                        package = "xls"
+                    elif dll_export:
+                        if options:
+                            options += f",function={dll_export}"
+                        else:
+                            options = f"function={dll_export}"
+
+                # ToDo better solution? - Distributed mode here:
+                # Main node is storage so try to extract before submit to vm isn't propagated to workers
+                if static and not config and distconf.distributed.enabled:
+                    if options:
+                        options += ",dist_extract=1"
                     else:
-                        log.info("Does sandbox packages need an update? Sflock identifies as: {} - {}".format(tmp_package, file))
-                    del f
+                        options = "dist_extract=1"
 
                 task_id = self.add_path(
                     file_path=file.decode(),
@@ -1423,29 +1685,25 @@ def demux_sample_and_add_to_db(
                     enforce_timeout=enforce_timeout,
                     tags=tags,
                     clock=clock,
-                    shrike_url=shrike_url,
-                    shrike_msg=shrike_msg,
-                    shrike_sid=shrike_sid,
-                    shrike_refer=shrike_refer,
-                    parent_id=parent_id,
-                    sample_parent_id=sample_parent_id,
                     tlp=tlp,
                     source_url=source_url,
                     route=route,
                     tags_tasks=tags_tasks,
                     cape=cape,
                     user_id=user_id,
+                    parent_sample=parent_sample,
                 )
+                package = None
             if task_id:
                 task_ids.append(task_id)
 
-        details = {}
-        if config:
+        if config and isinstance(config, dict):
             details = {"config": config.get("cape_config", {})}
+        if demux_error_msgs:
+            details["errors"] = demux_error_msgs
         # this is aim to return custom data, think of this as kwargs
         return task_ids, details
 
-    @classlock
     def add_pcap(
         self,
         file_path,
@@ -1460,37 +1718,26 @@ def add_pcap(
         memory=False,
         enforce_timeout=False,
         clock=None,
-        shrike_url=None,
-        shrike_msg=None,
-        shrike_sid=None,
-        shrike_refer=None,
-        parent_id=None,
         tlp=None,
         user_id=0,
     ):
         return self.add(
             PCAP(file_path.decode()),
-            timeout,
-            package,
-            options,
-            priority,
-            custom,
-            machine,
-            platform,
-            tags,
-            memory,
-            enforce_timeout,
-            clock,
-            shrike_url,
-            shrike_msg,
-            shrike_sid,
-            shrike_refer,
-            parent_id,
-            tlp,
-            user_id,
+            timeout=timeout,
+            package=package,
+            options=options,
+            priority=priority,
+            custom=custom,
+            machine=machine,
+            platform=platform,
+            tags=tags,
+            memory=memory,
+            enforce_timeout=enforce_timeout,
+            clock=clock,
+            tlp=tlp,
+            user_id=user_id,
         )
 
-    @classlock
     def add_static(
         self,
         file_path,
@@ -1505,39 +1752,52 @@ def add_static(
         memory=False,
         enforce_timeout=False,
         clock=None,
-        shrike_url=None,
-        shrike_msg=None,
-        shrike_sid=None,
-        shrike_refer=None,
-        parent_id=None,
         tlp=None,
         static=True,
         user_id=0,
+        parent_sample=None,
     ):
-        return self.add(
-            Static(file_path.decode()),
-            timeout,
-            package,
-            options,
-            priority,
-            custom,
-            machine,
-            platform,
-            tags,
-            memory,
-            enforce_timeout,
-            clock,
-            shrike_url,
-            shrike_msg,
-            shrike_sid,
-            shrike_refer,
-            parent_id,
-            tlp,
-            static,
-            user_id = user_id,
-        )
+        extracted_files, demux_error_msgs = demux_sample(file_path, package, options)
+
+        # check if len is 1 and the same file, if diff register file, and set parent
+        if not isinstance(file_path, bytes):
+            file_path = file_path.encode()
+
+        # ToDo callback maybe or inside of the self.add
+        if extracted_files and ((file_path, platform) not in extracted_files and (file_path, "") not in extracted_files):
+            if not parent_sample:
+                parent_sample = self.register_sample(File(file_path))
+            if conf.cuckoo.delete_archive:
+                # ToDo keep as info for now
+                log.info("Deleting archive: %s. conf.cuckoo.delete_archive is enabled. %s", file_path, str(extracted_files))
+                path_delete(file_path)
+
+        task_ids = []
+        # create tasks for each file in the archive
+        for file, platform in extracted_files:
+            task_id = self.add(
+                Static(file.decode()),
+                timeout=timeout,
+                package=package,
+                options=options,
+                priority=priority,
+                custom=custom,
+                machine=machine,
+                platform=platform,
+                tags=tags,
+                memory=memory,
+                enforce_timeout=enforce_timeout,
+                clock=clock,
+                tlp=tlp,
+                static=static,
+                parent_sample=parent_sample,
+                user_id=user_id,
+            )
+            if task_id:
+                task_ids.append(task_id)
+
+        return task_ids
 
-    @classlock
     def add_url(
         self,
         url,
@@ -1552,11 +1812,6 @@ def add_url(
         memory=False,
         enforce_timeout=False,
         clock=None,
-        shrike_url=None,
-        shrike_msg=None,
-        shrike_sid=None,
-        shrike_refer=None,
-        parent_id=None,
         tlp=None,
         route=None,
         cape=False,
@@ -1588,33 +1843,29 @@ def add_url(
             timeout = 0
         if not priority:
             priority = 1
+        if not package:
+            package = web_conf.url_analysis.package
 
         return self.add(
             URL(url),
-            timeout,
-            package,
-            options,
-            priority,
-            custom,
-            machine,
-            platform,
-            tags,
-            memory,
-            enforce_timeout,
-            clock,
-            shrike_url,
-            shrike_msg,
-            shrike_sid,
-            shrike_refer,
-            parent_id,
-            tlp,
-            route = route,
-            cape = cape,
-            tags_tasks = tags_tasks,
-            user_id = user_id,
+            timeout=timeout,
+            package=package,
+            options=options,
+            priority=priority,
+            custom=custom,
+            machine=machine,
+            platform=platform,
+            tags=tags,
+            memory=memory,
+            enforce_timeout=enforce_timeout,
+            clock=clock,
+            tlp=tlp,
+            route=route,
+            cape=cape,
+            tags_tasks=tags_tasks,
+            user_id=user_id,
         )
 
-    @classlock
     def reschedule(self, task_id):
         """Reschedule a task.
         @param task_id: ID of the task to reschedule.
@@ -1635,16 +1886,7 @@ def reschedule(self, task_id):
             add = self.add_static
 
         # Change status to recovered.
-        session = self.Session()
-        session.query(Task).get(task_id).status = TASK_RECOVERED
-        try:
-            session.commit()
-        except SQLAlchemyError as e:
-            log.debug("Database error rescheduling task: {0}".format(e))
-            session.rollback()
-            return False
-        finally:
-            session.close()
+        self.session.get(Task, task_id).status = TASK_RECOVERED
 
         # Normalize tags.
         if task.tags:
@@ -1652,23 +1894,67 @@ def reschedule(self, task_id):
         else:
             tags = task.tags
 
-        return add(
-            task.target,
-            task.timeout,
-            task.package,
-            task.options,
-            task.priority,
-            task.custom,
-            task.machine,
-            task.platform,
-            tags,
-            task.memory,
-            task.enforce_timeout,
-            task.clock,
-            tlp=task.tlp,
-        )
+        def _ensure_valid_target(task):
+            if task.category == "url":
+                # URL tasks always have valid targets, return it as-is.
+                return task.target
+
+            # All other task types have a "target" pointing to a temp location,
+            # so get a stable path "target" based on the sample hash.
+            paths = self.sample_path_by_hash(task.sample.sha256, task_id)
+            paths = [file_path for file_path in paths if path_exists(file_path)]
+            if not paths:
+                return None
+
+            if task.category == "pcap":
+                # PCAP task paths are represented as bytes
+                return paths[0].encode()
+            return paths[0]
+
+        task_target = _ensure_valid_target(task)
+        if not task_target:
+            log.warning("Unable to find valid target for task: %s", task_id)
+            return
+
+        new_task_id = None
+        if task.category in ("file", "url"):
+            new_task_id = add(
+                task_target,
+                task.timeout,
+                task.package,
+                task.options,
+                task.priority,
+                task.custom,
+                task.machine,
+                task.platform,
+                tags,
+                task.memory,
+                task.enforce_timeout,
+                task.clock,
+                tlp=task.tlp,
+                route=task.route,
+            )
+        elif task.category in ("pcap", "static"):
+            new_task_id = add(
+                task_target,
+                task.timeout,
+                task.package,
+                task.options,
+                task.priority,
+                task.custom,
+                task.machine,
+                task.platform,
+                tags,
+                task.memory,
+                task.enforce_timeout,
+                task.clock,
+                tlp=task.tlp,
+            )
+
+        self.session.get(Task, task_id).custom = f"Recovery_{new_task_id}"
+
+        return new_task_id
 
-    @classlock
     def count_matching_tasks(self, category=None, status=None, not_status=None):
         """Retrieve list of task.
         @param category: filter by category
@@ -1676,98 +1962,54 @@ def count_matching_tasks(self, category=None, status=None, not_status=None):
         @param not_status: exclude this task status from filter
         @return: number of tasks.
         """
-        session = self.Session()
-        try:
-            search = session.query(Task)
-
-            if status:
-                search = search.filter_by(status=status)
-            if not_status:
-                search = search.filter(Task.status != not_status)
-            if category:
-                search = search.filter_by(category=category)
-
-            tasks = search.count()
-            return tasks
-        except SQLAlchemyError as e:
-            log.debug("Database error counting tasks: {0}".format(e))
-            return []
-        finally:
-            session.close()
-
-    @classlock
-    def check_file_uniq(self, sha256: str, hours: int=0):
+        stmt = select(func.count(Task.id))
+
+        if status:
+            stmt = stmt.where(Task.status == status)
+        if not_status:
+            stmt = stmt.where(Task.status != not_status)
+        if category:
+            stmt = stmt.where(Task.category == category)
+
+        # 2. Execute the statement and return the single integer result.
+        return self.session.scalar(stmt)
+
+    def check_file_uniq(self, sha256: str, hours: int = 0):
+        # TODO This function is poorly named. It returns True if a sample with the given
+        # sha256 already exists in the database, rather than returning True if the given
+        # sha256 is unique.
         uniq = False
-        session = self.Session()
-        try:
-            if hours and sha256:
-                date_since = datetime.now()-timedelta(hours=hours)
-                date_till = datetime.now()
-                uniq = session.query(Task).join(Sample, Task.sample_id==Sample.id).filter(Sample.sha256==sha256, Task.added_on.between(date_since, date_till)).first()
+        if hours and sha256:
+            date_since = datetime.now() - timedelta(hours=hours)
+
+            stmt = (
+                select(Task)
+                .join(Sample, Task.sample_id == Sample.id)
+                .where(Sample.sha256 == sha256)
+                .where(Task.added_on >= date_since)
+            )
+            return self.session.scalar(select(stmt.exists()))
+        else:
+            if not self.find_sample(sha256=sha256):
+                uniq = False
             else:
-                if not Database.find_sample(self, sha256=sha256):
-                    uniq = False
-                else:
-                    uniq = True
-        except SQLAlchemyError as e:
-            log.debug("Database error counting tasks: {0}".format(e))
-        finally:
-            session.close()
+                uniq = True
 
         return uniq
 
-    @classlock
-    def list_parents(self, parent_id):
-        """
-            Retrieve tasks created by ID
-            @param parent_id: filter tasks created by parent ID
-        """
-        session = self.Session()
-        try:
-            tasks = session.query(Task).filter(Task.parent_id == parent_id).all()
-            if tasks:
-                return [[task.id, task.package] for task in tasks]
-            else:
-                return []
-        except SQLAlchemyError as e:
-            log.debug("Database error listing tasks: {0}".format(e))
-            return []
-        finally:
-            session.close()
-
-    @classlock
-    def list_sample_parent(self, sample_id=False, task_id=False):
-        """
-            Retrieve parent sample details by sample_id or task_id
-            @param sample_id: Sample id
-            @param task_id: Task id
-        """
-        parent_sample = dict()
-        parent = False
-        session = self.Session()
-        try:
-            if sample_id:
-                parent = session.query(Sample.parent).filter(Sample.id == int(sample_id)).first()
-                if parent:
-                    parent = parent[0]
-            elif task_id:
-                _, parent = (
-                    session.query(Task.sample_id, Sample.parent).join(Sample, Sample.id == Task.sample_id).filter(Task.id == task_id).first()
-                )
-
-            if parent:
-                parent_sample = session.query(Sample).filter(Sample.id == parent).first().to_dict()
 
-        except SQLAlchemyError as e:
-            log.debug("Database error listing tasks: {0}".format(e))
-        except TypeError:
-            pass
-        finally:
-            session.close()
+    def get_parent_sample_from_task(self, task_id: int) -> Optional[Sample]:
+        """Finds the Parent Sample using the ID of the child's Task."""
 
-        return parent_sample
+        # This query joins the Sample table (as the parent) to the
+        # association object and filters by the task_id.
+        stmt = (
+            select(Sample)
+            .join(SampleAssociation, Sample.id == SampleAssociation.parent_id)
+            .where(SampleAssociation.task_id == task_id)
+        )
+        return self.session.scalar(stmt)
 
-    @classlock
     def list_tasks(
         self,
         limit=None,
@@ -1783,10 +2025,13 @@ def list_tasks(
         id_before=None,
         id_after=None,
         options_like=False,
+        options_not_like=False,
         tags_tasks_like=False,
         task_ids=False,
-        inclide_hashes=False,
-    ):
+        include_hashes=False,
+        user_id=None,
+        for_update=False,
+    ) -> List[Task]:
         """Retrieve list of task.
         @param limit: specify a limit of entries.
         @param details: if details about must be included
@@ -1800,238 +2045,360 @@ def list_tasks(
         @param added_before: tasks added before a specific timestamp
         @param id_before: filter by tasks which is less than this value
         @param id_after filter by tasks which is greater than this value
-        @param options_like: filter tasks by specific option insde of the options
+        @param options_like: filter tasks by specific option inside of the options
+        @param options_not_like: filter tasks by specific option not inside of the options
         @param tags_tasks_like: filter tasks by specific tag
         @param task_ids: list of task_id
-        @param inclide_hashes: return task+samples details
+        @param include_hashes: return task+samples details
+        @param user_id: list of tasks submitted by user X
+        @param for_update: If True, use "SELECT FOR UPDATE" in order to create a row-level lock on the selected tasks.
         @return: list of tasks.
         """
-        session = self.Session()
-        try:
-            search = session.query(Task)
-            if inclide_hashes:
-                search = search.join(Sample, Task.sample_id==Sample.id)
-            if status:
-                search = search.filter(Task.status==status)
-            if not_status:
-                search = search.filter(Task.status != not_status)
-            if category:
-                search = search.filter(Task.category==category)
-            if details:
-                search = search.options(joinedload("guest"), joinedload("errors"), joinedload("tags"))
-            if sample_id is not None:
-                search = search.filter(Task.sample_id==sample_id)
-            if id_before is not None:
-                search = search.filter(Task.id < id_before)
-            if id_after is not None:
-                search = search.filter(Task.id > id_after)
-            if completed_after:
-                search = search.filter(Task.completed_on > completed_after)
-            if added_before:
-                search = search.filter(Task.added_on < added_before)
-            if options_like:
-                search = search.filter(Task.options.like("%{}%".format(options_like)))
-            if tags_tasks_like:
-                search = search.filter(Task.tags_tasks.like("%{}%".format(tags_tasks_like)))
-            if task_ids:
-                search = search.filter(Task.id.in_(task_ids))
-            if order_by is not None:
-                search = search.order_by(order_by)
+        tasks: List[Task] = []
+        stmt = select(Task).options(joinedload(Task.guest), subqueryload(Task.errors), subqueryload(Task.tags))
+        if include_hashes:
+            stmt = stmt.options(joinedload(Task.sample))
+        if status:
+            if "|" in status:
+                stmt = stmt.where(Task.status.in_(status.split("|")))
             else:
-                search = search.order_by(Task.added_on.desc())
+                stmt = stmt.where(Task.status == status)
+        if not_status:
+            stmt = stmt.where(Task.status != not_status)
+        if category:
+            stmt = stmt.where(Task.category.in_([category] if isinstance(category, str) else category))
+        if sample_id is not None:
+            stmt = stmt.where(Task.sample_id == sample_id)
+        if id_before is not None:
+            stmt = stmt.where(Task.id < id_before)
+        if id_after is not None:
+            stmt = stmt.where(Task.id > id_after)
+        if completed_after:
+            stmt = stmt.where(Task.completed_on > completed_after)
+        if added_before:
+            stmt = stmt.where(Task.added_on < added_before)
+        if options_like:
+            stmt = stmt.where(Task.options.like(f"%{options_like.replace('*', '%')}%"))
+        if options_not_like:
+            stmt = stmt.where(Task.options.notlike(f"%{options_not_like.replace('*', '%')}%"))
+        if tags_tasks_like:
+            stmt = stmt.where(Task.tags_tasks.like(f"%{tags_tasks_like}%"))
+        if task_ids:
+            stmt = stmt.where(Task.id.in_(task_ids))
+        if user_id is not None:
+            stmt = stmt.where(Task.user_id == user_id)
+
+        # 3. Chaining for ordering, pagination, and locking remains the same
+        if order_by is not None and isinstance(order_by, tuple):
+            stmt = stmt.order_by(*order_by)
+        elif order_by is not None:
+            stmt = stmt.order_by(order_by)
+        else:
+            stmt = stmt.order_by(Task.added_on.desc())
 
-            return search.limit(limit).offset(offset).all()
-        except SQLAlchemyError as e:
-            log.debug("Database error listing tasks: {0}".format(e))
-            return []
-        finally:
-            session.close()
-
-    def minmax_tasks(self):
-        """Find tasks minimum and maximum
-         @return: unix timestamps of minimum and maximum
-         """
-        session = self.Session()
-        try:
-            _min = session.query(func.min(Task.started_on).label("min")).first()
-            _max = session.query(func.max(Task.completed_on).label("max")).first()
-            return int(_min[0].strftime("%s")), int(_max[0].strftime("%s"))
-        except SQLAlchemyError as e:
-            log.debug("Database error counting tasks: {0}".format(e))
-            return 0
-        finally:
-            session.close()
+        stmt = stmt.limit(limit).offset(offset)
+        if for_update:
+            stmt = stmt.with_for_update(of=Task)
 
-    @classlock
-    def get_tlp_tasks(self):
-        """
-            Retrieve tasks with TLP
-        """
-        session = self.Session()
-        try:
-            tasks = session.query(Task).filter(Task.tlp == "true").all()
-            if tasks:
-                return [task.id for task in tasks]
-            else:
-                return []
-        except SQLAlchemyError as e:
-            log.debug("Database error listing tasks: {0}".format(e))
-            return []
-        finally:
-            session.close()
-
-    @classlock
-    def get_file_types(self):
-        """Get sample filetypes
+        tasks = self.session.scalars(stmt).all()
+        return tasks
 
-        @return: A list of all available file types
+    def delete_task(self, task_id):
+        """Delete information on a task.
+        @param task_id: ID of the task to query.
+        @return: operation status.
         """
-        session = self.Session()
-        try:
-            unfiltered = session.query(Sample.file_type).group_by(Sample.file_type)
-            res = []
-            for asample in unfiltered.all():
-                res.append(asample[0])
-            res.sort()
-        except SQLAlchemyError as e:
-            log.debug("Database error getting file_types: {0}".format(e))
-            return 0
-        finally:
-            session.close()
-        return res
-
-    @classlock
-    def count_tasks(self, status=None, mid=None):
-        """Count tasks in the database
-        @param status: apply a filter according to the task status
-        @param mid: Machine id to filter for
-        @return: number of tasks found
+        task = self.session.get(Task, task_id)
+        if task is None:
+            return False
+        self.session.delete(task)
+        # ToDo missed commits everywhere, check if autocommit is possible
+        return True
+
+    def delete_tasks(
+        self,
+        category=None,
+        status=None,
+        sample_id=None,
+        not_status=None,
+        completed_after=None,
+        added_before=None,
+        id_before=None,
+        id_after=None,
+        options_like=False,
+        options_not_like=False,
+        tags_tasks_like=False,
+        task_ids=False,
+        user_id=None,
+    ):
+        """Delete tasks based on parameters. If no filters are provided, no tasks will be deleted.
+
+        Args:
+            category: filter by category
+            status: filter by task status
+            sample_id: filter tasks for a sample
+            not_status: exclude this task status from filter
+            completed_after: only list tasks completed after this timestamp
+            added_before: tasks added before a specific timestamp
+            id_before: filter by tasks which is less than this value
+            id_after: filter by tasks which is greater than this value
+            options_like: filter tasks by specific option inside of the options
+            options_not_like: filter tasks by specific option not inside of the options
+            tags_tasks_like: filter tasks by specific tag
+            task_ids: list of task_id
+            user_id: list of tasks submitted by user X
+
+        Returns:
+            bool: True if the operation was successful (including no tasks to delete), False otherwise.
         """
-        session = self.Session()
+        delete_stmt = delete(Task)
+        filters_applied = False
+
+        # 2. Chain .where() clauses for all filters
+        if status:
+            if "|" in status:
+                delete_stmt = delete_stmt.where(Task.status.in_(status.split("|")))
+            else:
+                delete_stmt = delete_stmt.where(Task.status == status)
+            filters_applied = True
+        if not_status:
+            delete_stmt = delete_stmt.where(Task.status != not_status)
+            filters_applied = True
+        if category:
+            delete_stmt = delete_stmt.where(Task.category.in_([category] if isinstance(category, str) else category))
+            filters_applied = True
+        if sample_id is not None:
+            delete_stmt = delete_stmt.where(Task.sample_id == sample_id)
+            filters_applied = True
+        if id_before is not None:
+            delete_stmt = delete_stmt.where(Task.id < id_before)
+            filters_applied = True
+        if id_after is not None:
+            delete_stmt = delete_stmt.where(Task.id > id_after)
+            filters_applied = True
+        if completed_after:
+            delete_stmt = delete_stmt.where(Task.completed_on > completed_after)
+            filters_applied = True
+        if added_before:
+            delete_stmt = delete_stmt.where(Task.added_on < added_before)
+            filters_applied = True
+        if options_like:
+            delete_stmt = delete_stmt.where(Task.options.like(f"%{options_like.replace('*', '%')}%"))
+            filters_applied = True
+        if options_not_like:
+            delete_stmt = delete_stmt.where(Task.options.notlike(f"%{options_not_like.replace('*', '%')}%"))
+            filters_applied = True
+        if tags_tasks_like:
+            delete_stmt = delete_stmt.where(Task.tags_tasks.like(f"%{tags_tasks_like}%"))
+            filters_applied = True
+        if task_ids:
+            delete_stmt = delete_stmt.where(Task.id.in_(task_ids))
+            filters_applied = True
+        if user_id is not None:
+            delete_stmt = delete_stmt.where(Task.user_id == user_id)
+            filters_applied = True
+
+        if not filters_applied:
+            log.warning("No filters provided for delete_tasks. No tasks will be deleted.")
+            return True
+
+        # ToDo Transaction Handling
+        # The transaction logic (commit/rollback) is kept the same for a direct port,
+        # but the more idiomatic SQLAlchemy 2.0 approach would be to wrap the execution
+        # in a with self.session.begin(): block, which handles transactions automatically.
         try:
-            unfiltered = session.query(Task)
-            if mid:
-                unfiltered = unfiltered.filter_by(machine_id=mid)
-            if status:
-                unfiltered = unfiltered.filter_by(status=status)
-            tasks_count = unfiltered.count()
-            return tasks_count
+            result = self.session.execute(delete_stmt)
+            log.info("Deleted %d tasks matching the criteria.", result.rowcount)
+            self.session.commit()
+            return True
         except SQLAlchemyError as e:
-            log.debug("Database error counting tasks: {0}".format(e))
-            return 0
-        finally:
-            session.close()
+            log.error("Error deleting tasks: %s", str(e))
+            self.session.rollback()
+            return False
+
+    # ToDo replace with delete_tasks
+    def clean_timed_out_tasks(self, timeout: int):
+        """Deletes PENDING tasks that were added more than `timeout` seconds ago."""
+        if timeout <= 0:
+            return
 
-    @classlock
-    def view_task(self, task_id, details=False):
+        # Calculate the cutoff time before which tasks are considered timed out.
+        timeout_threshold = datetime.utcnow() - timedelta(seconds=timeout)
+
+        # Build a single, efficient DELETE statement that filters in the database.
+        delete_stmt = delete(Task).where(Task.status == TASK_PENDING).where(Task.added_on < timeout_threshold)
+
+        # Execute the bulk delete statement.
+        # The transaction should be handled by the calling code,
+        # typically with a `with session.begin():` block.
+        result = self.session.execute(delete_stmt)
+
+        if result.rowcount > 0:
+            log.info("Deleted %d timed-out PENDING tasks.", result.rowcount)
+
+    def minmax_tasks(self) -> Tuple[int, int]:
+        """Finds the minimum start time and maximum completion time for all tasks."""
+        # A single query is more efficient than two separate ones.
+        stmt = select(func.min(Task.started_on), func.max(Task.completed_on))
+        min_val, max_val = self.session.execute(stmt).one()
+
+        if min_val and max_val:
+            # .timestamp() is the modern way to get a unix timestamp.
+            return int(min_val.timestamp()), int(max_val.timestamp())
+
+        return 0, 0
+
+    def get_tlp_tasks(self) -> List[int]:
+        """Retrieves a list of task IDs that have TLP enabled."""
+        # Selecting just the ID is more efficient than fetching full objects.
+        stmt = select(Task.id).where(Task.tlp == "true")
+        # .scalars() directly yields the values from the single selected column.
+        return self.session.scalars(stmt).all()
+
+    def get_file_types(self) -> List[str]:
+        """Gets a sorted list of unique sample file types."""
+        # .distinct() is cleaner than group_by() for a single column.
+        stmt = select(Sample.file_type).distinct().order_by(Sample.file_type)
+        return self.session.scalars(stmt).all()
+
+    def get_tasks_status_count(self) -> Dict[str, int]:
+        """Counts tasks, grouped by status."""
+        stmt = select(Task.status, func.count(Task.status)).group_by(Task.status)
+        # .execute() returns rows, which can be directly converted to a dict.
+        return dict(self.session.execute(stmt).all())
+
+    def count_tasks(self, status: str = None, mid: int = None) -> int:
+        """Counts tasks in the database, with optional filters."""
+        # Build a `SELECT COUNT(...)` query from the start for efficiency.
+        stmt = select(func.count(Task.id))
+        if mid:
+            stmt = stmt.where(Task.machine_id == mid)
+        if status:
+            stmt = stmt.where(Task.status == status)
+
+        # .scalar() executes the query and returns the single integer result.
+        return self.session.scalar(stmt)
+
+    def view_task(self, task_id, details=False) -> Optional[Task]:
         """Retrieve information on a task.
         @param task_id: ID of the task to query.
         @return: details on the task.
         """
-        session = self.Session()
-        try:
-            if details:
-                task = session.query(Task).options(joinedload("guest"), joinedload("errors"), joinedload("tags")).get(task_id)
-            else:
-                task = session.query(Task).get(task_id)
-        except SQLAlchemyError as e:
-            log.debug("Database error viewing task: {0}".format(e))
-            return None
+        query = select(Task).where(Task.id == task_id)
+        if details:
+            query = query.options(
+                joinedload(Task.guest), subqueryload(Task.errors), subqueryload(Task.tags), joinedload(Task.sample)
+            )
         else:
-            if task:
-                session.expunge(task)
-            return task
-        finally:
-            session.close()
+            query = query.options(subqueryload(Task.tags), joinedload(Task.sample))
+        return self.session.scalar(query)
 
-    @classlock
-    def delete_task(self, task_id):
-        """Delete information on a task.
+    # This function is used by the runstatistics community module.
+    def add_statistics_to_task(self, task_id, details):  # pragma: no cover
+        """add statistic to task
         @param task_id: ID of the task to query.
-        @return: operation status.
+        @param: details statistic.
+        @return true of false.
         """
-        session = self.Session()
-        try:
-            task = session.query(Task).get(task_id)
-            session.delete(task)
-            session.commit()
-        except SQLAlchemyError as e:
-            log.debug("Database error deleting task: {0}".format(e))
-            session.rollback()
-            return False
-        finally:
-            session.close()
+        # ToDo do we really need this? does it need commit?
+        task = self.session.get(Task, task_id)
+        if task:
+            task.dropped_files = details["dropped_files"]
+            task.running_processes = details["running_processes"]
+            task.api_calls = details["api_calls"]
+            task.domains = details["domains"]
+            task.signatures_total = details["signatures_total"]
+            task.signatures_alert = details["signatures_alert"]
+            task.files_written = details["files_written"]
+            task.registry_keys_modified = details["registry_keys_modified"]
+            task.crash_issues = details["crash_issues"]
+            task.anti_issues = details["anti_issues"]
         return True
 
-    #classlock
-    def delete_tasks(self, ids):
-        session = self.Session()
-        try:
-            search = session.query(Task).filter(Task.id.in_(ids)).delete(synchronize_session=False)
-        except SQLAlchemyError as e:
-            log.debug("Database error deleting task: {0}".format(e))
-            session.rollback()
-            return False
-        finally:
-            session.close()
-        return True
-
-    @classlock
     def view_sample(self, sample_id):
         """Retrieve information on a sample given a sample id.
         @param sample_id: ID of the sample to query.
         @return: details on the sample used in sample: sample_id.
         """
-        session = self.Session()
-        try:
-            sample = session.query(Sample).get(sample_id)
-        except AttributeError:
-            return None
-        except SQLAlchemyError as e:
-            log.debug("Database error viewing task: {0}".format(e))
-            return None
-        else:
-            if sample:
-                session.expunge(sample)
-        finally:
-            session.close()
+        return self.session.get(Sample, sample_id)
 
-        return sample
+    def get_children_by_parent_id(self, parent_id: int) -> List[Sample]:
+        """
+        Finds all child Samples using an explicit join.
+        """
+        # Create an alias to represent the Child Sample in the query
+        ChildSample = aliased(Sample, name="child")
+
+        # This query selects child samples by joining through the association table
+        stmt = (
+            select(ChildSample)
+            .join(SampleAssociation, ChildSample.id == SampleAssociation.child_id)
+            .where(SampleAssociation.parent_id == parent_id)
+        )
+
+        return self.session.scalars(stmt).all()
+
+    def find_sample(
+        self, md5: str = None, sha1: str = None, sha256: str = None, parent: int = None, task_id: int = None, sample_id: int = None
+    ) -> Union[Optional[Sample], List[Sample], List[Task]]:
+        """Searches for samples or tasks based on different criteria."""
+
+        if md5:
+            return self.session.scalar(select(Sample).where(Sample.md5 == md5))
+
+        if sha1:
+            return self.session.scalar(select(Sample).where(Sample.sha1 == sha1))
 
-    @classlock
-    def find_sample(self, md5=None, sha1=None, sha256=None, parent=None):
-        """Search samples by MD5, SHA1, or SHA256.
-        @param md5: md5 string
-        @param sha1: sha1 string
-        @param sha256: sha256 string
-        @param parent: sample_id int
-        @return: matches list
+        if sha256:
+            return self.session.scalar(select(Sample).where(Sample.sha256 == sha256))
+
+        if parent is not None:
+            return self.get_children_by_parent_id(parent)
+
+        if sample_id is not None:
+            # Using session.get() is much more efficient than a select query.
+            # We wrap the result in a list to match the original function's behavior.
+            sample = self.session.get(Sample, sample_id)
+            return [sample] if sample else []
+
+        if task_id is not None:
+            # Note: This branch returns a list of Task objects.
+            stmt = select(Task).join(Sample, Task.sample_id == Sample.id).options(joinedload(Task.sample)).where(Task.id == task_id)
+            return self.session.scalars(stmt).all()
+
+        return None
+
+    def sample_still_used(self, sample_hash: str, task_id: int):
+        """Retrieve information if sample is used by another task(s).
+        @param sample_hash: sha256.
+        @param task_id: task_id
+        @return: bool
         """
-        sample = False
-        session = self.Session()
-        try:
-            if md5:
-                sample = session.query(Sample).filter_by(md5=md5).first()
-            elif sha1:
-                sample = session.query(Sample).filter_by(sha1=sha1).first()
-            elif sha256:
-                sample = session.query(Sample).filter_by(sha256=sha256).first()
-            elif parent:
-                sample = session.query(Sample).filter_by(parent=parent).all()
-        except SQLAlchemyError as e:
-            log.debug("Database error searching sample: {0}".format(e))
-            return None
-        else:
-            if sample:
-                session.expunge_all()
-        finally:
-            session.close()
-        return sample
+        stmt = (
+            select(Task)
+            .join(Sample, Task.sample_id == Sample.id)
+            .where(Sample.sha256 == sample_hash)
+            .where(Task.id != task_id)
+            .where(Task.status.in_((TASK_PENDING, TASK_RUNNING, TASK_DISTRIBUTED)))
+        )
+
+        # select(stmt.exists()) creates a `SELECT EXISTS(...)` query.
+        # session.scalar() executes it and returns True or False directly.
+        return self.session.scalar(select(stmt.exists()))
+
+    def _hash_file_in_chunks(self, path: str, hash_algo) -> str:
+        """Helper function to hash a file efficiently in chunks."""
+        hasher = hash_algo()
+        buffer_size = 65536  # 64kb
+        with open(path, "rb") as f:
+            while chunk := f.read(buffer_size):
+                hasher.update(chunk)
+        return hasher.hexdigest()
 
-    @classlock
-    def sample_path_by_hash(self, sample_hash):
+    def sample_path_by_hash(self, sample_hash: str = False, task_id: int = False):
         """Retrieve information on a sample location by given hash.
         @param hash: md5/sha1/sha256/sha256.
+        @param task_id: task_id
         @return: samples path(s) as list.
         """
         sizes = {
@@ -2041,6 +2408,13 @@ def sample_path_by_hash(self, sample_hash):
             128: Sample.sha512,
         }
 
+        hashlib_sizes = {
+            32: hashlib.md5,
+            40: hashlib.sha1,
+            64: hashlib.sha256,
+            128: hashlib.sha512,
+        }
+
         sizes_mongo = {
             32: "md5",
             40: "sha1",
@@ -2048,163 +2422,189 @@ def sample_path_by_hash(self, sample_hash):
             128: "sha512",
         }
 
-        folders = {
-            "dropped": "files",
-            "CAPE": "CAPE",
-            "procdump": "procdump",
-        }
+        if task_id:
+            file_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(task_id), "binary")
+            if path_exists(file_path):
+                return [file_path]
 
-        query_filter = sizes.get(len(sample_hash), "")
-        sample = None
-        # check storage/binaries
-        if query_filter:
-            session = self.Session()
-            try:
+            # binary also not stored in binaries, perform hash lookup
+            stmt = select(Sample).join(Task, Sample.id == Task.sample_id).where(Task.id == task_id)
+            db_sample = self.session.scalar(stmt)
+            if db_sample:
+                path = os.path.join(CUCKOO_ROOT, "storage", "binaries", db_sample.sha256)
+                if path_exists(path):
+                    return [path]
 
-                db_sample = session.query(Sample).filter(query_filter == sample_hash).first()
-                if db_sample is not None:
-                    path = os.path.join(CUCKOO_ROOT, "storage", "binaries", db_sample.sha256)
-                    if os.path.exists(path):
-                        sample = [path]
+                sample_hash = db_sample.sha256
 
-                if sample is None:
-                    tasks = results_db.analysis.find({"CAPE.payloads." + sizes_mongo.get(len(sample_hash), ""): sample_hash},
-                                                     {"CAPE.payloads": 1, "_id": 0, "info.id":1 })
-                    if tasks:
-                        for task in tasks:
-                            for block in task.get("CAPE", {}).get("payloads", []) or []:
-                                if block[sizes_mongo.get(len(sample_hash), "")] == sample_hash:
-                                    path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(task["info"]["id"]), folders.get("CAPE"),
-                                                        block["sha256"])
-                                    if os.path.exists(path):
-                                        sample = [path]
-                                        break
-                            if sample:
-                                break
+        if not sample_hash:
+            return []
 
-                    for category in ("dropped", "procdump"):
-                        # we can't filter more if query isn't sha256
-                        tasks = results_db.analysis.find({category + "." + sizes_mongo.get(len(sample_hash), ""): sample_hash},
-                                                         {category: 1, "_id": 0, "info.id":1 })
-                        if tasks:
-                            for task in tasks:
-                                for block in task.get(category, []) or []:
-                                    if block[sizes_mongo.get(len(sample_hash), "")] == sample_hash:
-                                        path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(task["info"]["id"]), folders.get(category),
-                                                            block["sha256"])
-                                        if os.path.exists(path):
-                                            sample = [path]
-                                            break
-                                if sample:
+        query_filter = sizes.get(len(sample_hash), "")
+        sample = []
+        # check storage/binaries
+        if query_filter:
+            stmt = select(Sample).where(query_filter == sample_hash)
+            db_sample = self.session.scalar(stmt)
+            if db_sample is not None:
+                path = os.path.join(CUCKOO_ROOT, "storage", "binaries", db_sample.sha256)
+                if path_exists(path):
+                    sample = [path]
+
+            if not sample:
+                tasks = []
+                if repconf.mongodb.enabled and web_conf.general.check_sample_in_mongodb:
+                    tasks = mongo_find(
+                        "files",
+                        {sizes_mongo.get(len(sample_hash), ""): sample_hash},
+                        {"_info_ids": 1, "sha256": 1},
+                    )
+                """ deprecated code
+                elif repconf.elasticsearchdb.enabled:
+                    tasks = [
+                        d["_source"]
+                        for d in es.search(
+                            index=get_analysis_index(),
+                            body={"query": {"match": {f"CAPE.payloads.{sizes_mongo.get(len(sample_hash), '')}": sample_hash}}},
+                            _source=["CAPE.payloads", "info.id"],
+                        )["hits"]["hits"]
+                    ]
+                """
+                if tasks:
+                    for task in tasks:
+                        for id in task.get("_task_ids", []):
+                            # ToDo suricata path - "suricata.files.file_info.path
+                            for category in ("files", "procdump", "CAPE"):
+                                file_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(id), category, task["sha256"])
+                                if path_exists(file_path):
+                                    sample = [file_path]
                                     break
+                        if sample:
+                            break
 
-                if sample is None:
-                    # search in temp folder if not found in binaries
-                    db_sample = session.query(Task).filter(query_filter == sample_hash).filter(Sample.id == Task.sample_id).all()
-                    if db_sample is not None:
-                        samples = [_f for _f in [tmp_sample.to_dict().get("target", "") for tmp_sample in db_sample] if _f]
-                        # hash validation and if exist
-                        samples = [path for path in samples if os.path.exists(path)]
-                        for path in samples:
-                            with open(path, "rb").read() as f:
-                                if sample_hash == sizes[len(sample_hash)](f).hexdigest():
-                                    sample = [path]
-                                    break
-            except AttributeError:
-                pass
-            except SQLAlchemyError as e:
-                log.debug("Database error viewing task: {0}".format(e))
-            finally:
-                session.close()
+            if not sample:
+                # search in temp folder if not found in binaries
+                stmt = select(Task).join(Sample, Task.sample_id == Sample.id).where(query_filter == sample_hash)
+                db_sample = self.session.scalars(stmt).all()
 
+                if db_sample is not None:
+                    """
+                    samples = [_f for _f in [tmp_sample.to_dict().get("target", "") for tmp_sample in db_sample] if _f]
+                    # hash validation and if exist
+                    samples = [file_path for file_path in samples if path_exists(file_path)]
+                    for path in samples:
+                        with open(path, "rb") as f:
+                            if sample_hash == hashlib_sizes[len(sample_hash)](f.read()).hexdigest():
+                                sample = [path]
+                                break
+                    """
+                    # Use a generator expression for memory efficiency
+                    target_paths = (tmp_sample.to_dict().get("target", "") for tmp_sample in db_sample)
+
+                    # Filter for paths that exist
+                    existing_paths = (p for p in target_paths if p and path_exists(p))
+                    # ToDo review if we really want/need this
+                    for path in existing_paths:
+                        if sample_hash == self._hash_file_in_chunks(path, hashlib_sizes[len(sample_hash)]):
+                            sample = [path]
+                            break
         return sample
 
-    @classlock
-    def count_samples(self):
+    def count_samples(self) -> int:
         """Counts the amount of samples in the database."""
-        session = self.Session()
-        try:
-            sample_count = session.query(Sample).count()
-        except SQLAlchemyError as e:
-            log.debug("Database error counting samples: {0}".format(e))
-            return 0
-        finally:
-            session.close()
-        return sample_count
-
-    @classlock
-    def view_machine(self, name):
-        """Show virtual machine.
-        @params name: virtual machine name
-        @return: virtual machine's details
-        """
-        session = self.Session()
-        try:
-            machine = session.query(Machine).options(joinedload("tags")).filter(Machine.name == name).first()
-        except SQLAlchemyError as e:
-            log.debug("Database error viewing machine: {0}".format(e))
+        stmt = select(func.count(Sample.id))
+        return self.session.scalar(stmt)
+
+    def view_machine(self, name: str) -> Optional[Machine]:
+        """Shows virtual machine details by name."""
+        stmt = select(Machine).options(subqueryload(Machine.tags)).where(Machine.name == name)
+        return self.session.scalar(stmt)
+
+    def view_machine_by_label(self, label: str) -> Optional[Machine]:
+        """Shows virtual machine details by label."""
+        stmt = select(Machine).options(subqueryload(Machine.tags)).where(Machine.label == label)
+        return self.session.scalar(stmt)
+
+    def view_errors(self, task_id: int) -> List[Error]:
+        """Gets all errors related to a task."""
+        stmt = select(Error).where(Error.task_id == task_id)
+        return self.session.scalars(stmt).all()
+
+    def get_source_url(self, sample_id: int = None) -> Optional[str]:
+        """Retrieves the source URL for a given sample ID."""
+        if not sample_id:
             return None
-        else:
-            if machine:
-                session.expunge(machine)
-        finally:
-            session.close()
-        return machine
 
-    @classlock
-    def view_machine_by_label(self, label):
-        """Show virtual machine.
-        @params label: virtual machine label
-        @return: virtual machine's details
-        """
-        session = self.Session()
         try:
-            machine = session.query(Machine).options(joinedload("tags")).filter(Machine.label == label).first()
-        except SQLAlchemyError as e:
-            log.debug("Database error viewing machine by label: {0}".format(e))
+            stmt = select(Sample.source_url).where(Sample.id == int(sample_id))
+            return self.session.scalar(stmt)
+        except (TypeError, ValueError):
+            # Handle cases where sample_id is not a valid integer.
             return None
-        else:
-            if machine:
-                session.expunge(machine)
-        finally:
-            session.close()
-        return machine
-
-    @classlock
-    def view_errors(self, task_id):
-        """Get all errors related to a task.
-        @param task_id: ID of task associated to the errors
-        @return: list of errors.
-        """
-        session = self.Session()
-        try:
-            errors = session.query(Error).filter_by(task_id=task_id).all()
-        except SQLAlchemyError as e:
-            log.debug("Database error viewing errors: {0}".format(e))
-            return []
-        finally:
-            session.close()
-        return errors
 
-    @classlock
-    def get_source_url(self, sample_id=False):
+    def ban_user_tasks(self, user_id: int):
         """
-            Retrieve url from where sample was downloaded
-            @param sample_id: Sample id
-            @param task_id: Task id
+        Bans all PENDING tasks submitted by a given user.
+        @param user_id: user id
         """
-        source_url = False
-        session = self.Session()
-        try:
-            if sample_id:
-                source_url = session.query(Sample.source_url).filter(Sample.id == int(sample_id)).first()
-                if source_url:
-                    source_url = source_url[0]
-        except SQLAlchemyError as e:
-            log.debug("Database error listing tasks: {0}".format(e))
-        except TypeError:
-            pass
-        finally:
-            session.close()
 
-        return source_url
+        update_stmt = update(Task).where(Task.user_id == user_id, Task.status == TASK_PENDING).values(status=TASK_BANNED)
+
+        # 2. Execute the statement.
+        # The transaction should be handled by the calling code,
+        # ToDo e.g., with a `with session.begin():` block.
+        self.session.execute(update_stmt)
+
+    def tasks_reprocess(self, task_id: int):
+        """common func for api and views"""
+        task = self.view_task(task_id)
+        if not task:
+            return True, "Task ID does not exist in the database", ""
+
+        if task.status not in {
+            # task status suitable for reprocessing
+            # allow reprocessing of tasks already processed (maybe detections changed)
+            TASK_REPORTED,
+            # allow reprocessing of tasks that were rescheduled
+            TASK_RECOVERED,
+            # allow reprocessing of tasks that previously failed the processing stage
+            TASK_FAILED_PROCESSING,
+            # allow reprocessing of tasks that previously failed the reporting stage
+            TASK_FAILED_REPORTING,
+            # TASK_COMPLETED,
+        }:
+            return True, f"Task ID {task_id} cannot be reprocessed in status {task.status}", task.status
+
+        # Save the old_status, because otherwise, in the call to set_status(),
+        # sqlalchemy will use the cached Task object that `task` is already a reference
+        # to and update that in place. That would result in `task.status` in this
+        # function being set to TASK_COMPLETED and we don't want to return that.
+        old_status = task.status
+        self.set_status(task_id, TASK_COMPLETED)
+        return False, "", old_status
+
+
+_DATABASE: Optional[_Database] = None
+
+
+class Database:
+    def __getattr__(self, attr: str) -> Any:
+        if _DATABASE is None:
+            raise CuckooDatabaseInitializationError
+        return getattr(_DATABASE, attr)
+
+
+def init_database(*args, exists_ok=False, **kwargs) -> _Database:
+    global _DATABASE
+    if _DATABASE is not None:
+        if exists_ok:
+            return _DATABASE
+        raise RuntimeError("The database has already been initialized!")
+    _DATABASE = _Database(*args, **kwargs)
+    return _DATABASE
+
+
+def reset_database_FOR_TESTING_ONLY():
+    """Used for testing."""
+    global _DATABASE
+    _DATABASE = None
diff --git a/lib/cuckoo/core/guest.py b/lib/cuckoo/core/guest.py
index cdea1160364..4614d658681 100644
--- a/lib/cuckoo/core/guest.py
+++ b/lib/cuckoo/core/guest.py
@@ -2,34 +2,28 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 # https://github.com/cuckoosandbox/cuckoo/blob/master/cuckoo/core/guest.py
-from __future__ import absolute_import
+
+import datetime
+import glob
+import json
+import logging
+import ntpath
 import os
+import shutil
+import socket
 import sys
-import json
 import time
-import socket
-import logging
-import datetime
-import requests
-
+import timeit
 from io import BytesIO
-from zipfile import ZipFile, ZIP_STORED
+from zipfile import ZIP_STORED, ZipFile
+
+import requests
 
 from lib.cuckoo.common.config import Config, parse_options
-from lib.cuckoo.common.constants import CUCKOO_ROOT
-from lib.cuckoo.common.constants import CUCKOO_GUEST_PORT, CUCKOO_GUEST_INIT
-from lib.cuckoo.common.constants import CUCKOO_GUEST_COMPLETED
-from lib.cuckoo.common.constants import CUCKOO_GUEST_FAILED
-from lib.cuckoo.common.exceptions import (
-    CuckooMachineError,
-    CuckooGuestError,
-    CuckooOperationalError,
-    CuckooMachineSnapshotError,
-    CuckooCriticalError,
-    CuckooGuestCriticalTimeout,
-)
-from lib.cuckoo.common.utils import TimeoutServer, sanitize_filename
-from lib.cuckoo.core.resultserver import ResultServer
+from lib.cuckoo.common.constants import ANALYSIS_BASE_PATH, CUCKOO_GUEST_PORT, CUCKOO_ROOT
+from lib.cuckoo.common.exceptions import CuckooGuestCriticalTimeout, CuckooGuestError
+from lib.cuckoo.common.path_utils import path_exists, path_mkdir
+from lib.cuckoo.common.utils import sanitize_filename
 from lib.cuckoo.core.database import Database
 
 log = logging.getLogger(__name__)
@@ -39,7 +33,7 @@
 
 def analyzer_zipfile(platform):
     """Create the zip file that is sent to the Guest."""
-    t = time.time()
+    t = timeit.default_timer()
 
     zip_data = BytesIO()
     zip_file = ZipFile(zip_data, "w", ZIP_STORED)
@@ -49,9 +43,9 @@ def analyzer_zipfile(platform):
     root = os.path.join(CUCKOO_ROOT, "analyzer", platform)
     root_len = len(os.path.abspath(root))
 
-    if not os.path.exists(root):
+    if not path_exists(root):
         log.error("No valid analyzer found at path: %s", root)
-        raise CuckooGuestError("No valid analyzer found for %s platform!" % platform)
+        raise CuckooGuestError(f"No valid analyzer found for {platform} platform!")
 
     # Walk through everything inside the analyzer's folder and write
     # them to the zip archive.
@@ -61,19 +55,12 @@ def analyzer_zipfile(platform):
             path = os.path.join(root, name)
             archive_name = os.path.join(archive_root, name)
             zip_file.write(path, archive_name)
-        # ToDo remove
-        """
-        for name in os.listdir(dirpath):
-            zip_file.write(
-                os.path.join(dirpath, name), os.path.join("bin", name)
-            )
-        """
 
     zip_file.close()
     data = zip_data.getvalue()
     zip_data.close()
 
-    if time.time() - t > 10:
+    if timeit.default_timer() - t > 10:
         log.warning(
             "It took more than 10 seconds to build the Analyzer Zip for the "
             "Guest. This might be a serious performance penalty. Is your "
@@ -83,7 +70,7 @@ def analyzer_zipfile(platform):
     return data
 
 
-class GuestManager(object):
+class GuestManager:
     """This class represents the new Guest Manager. It operates on the new
     Cuckoo Agent which features a more abstract but more feature-rich API."""
 
@@ -113,26 +100,34 @@ def stop(self):
     def get(self, method, *args, **kwargs):
         """Simple wrapper around requests.get()."""
         do_raise = kwargs.pop("do_raise", True)
-        url = "http://%s:%s%s" % (self.ipaddr, self.port, method)
-        session = requests.Session()
-        session.trust_env = False
-        session.proxies = None
+        url = f"http://{self.ipaddr}:{self.port}{method}"
+        with requests.Session() as session:
+            session.trust_env = False
+            session.proxies = None
 
-        try:
-            r = session.get(url, *args, **kwargs)
-        except requests.ConnectionError:
-            raise CuckooGuestError(
-                "CAPE Agent failed without error status, please try "
-                "upgrading to the latest version of agent.py (>= 0.10) and "
-                "notify us if the issue persists."
-            )
+            try:
+                r = session.get(url, *args, **kwargs)
+            except requests.ConnectionError:
+                raise CuckooGuestError(
+                    "CAPE Agent failed without error status, please try "
+                    "upgrading to the latest version of agent.py (>= 0.10) and "
+                    "notify us if the issue persists"
+                )
 
         do_raise and r.raise_for_status()
         return r
 
+    def get_status_from_db(self) -> str:
+        with db.session.begin():
+            return db.guest_get_status(self.task_id)
+
+    def set_status_in_db(self, status: str):
+        with db.session.begin():
+            db.guest_set_status(self.task_id, status)
+
     def post(self, method, *args, **kwargs):
         """Simple wrapper around requests.post()."""
-        url = "http://%s:%s%s" % (self.ipaddr, self.port, method)
+        url = f"http://{self.ipaddr}:{self.port}{method}"
         session = requests.Session()
         session.trust_env = False
         session.proxies = None
@@ -143,7 +138,7 @@ def post(self, method, *args, **kwargs):
             raise CuckooGuestError(
                 "CAPE Agent failed without error status, please try "
                 "upgrading to the latest version of agent.py (>= 0.10) and "
-                "notify us if the issue persists."
+                "notify us if the issue persists"
             )
 
         r.raise_for_status()
@@ -151,21 +146,21 @@ def post(self, method, *args, **kwargs):
 
     def wait_available(self):
         """Wait until the Virtual Machine is available for usage."""
-        end = time.time() + self.timeout
+        start = timeit.default_timer()
 
-        while db.guest_get_status(self.task_id) == "starting" and self.do_run:
+        while self.do_run and self.get_status_from_db() == "starting":
             try:
                 socket.create_connection((self.ipaddr, self.port), 1).close()
                 break
             except socket.timeout:
-                log.debug("%s: not ready yet", self.vmid)
+                log.debug("Task #%s: %s is not ready yet", self.task_id, self.vmid)
             except socket.error:
-                log.debug("%s: not ready yet", self.vmid)
+                log.debug("Task #%s: %s is not ready yet", self.task_id, self.vmid)
                 time.sleep(1)
 
-            if time.time() > end:
+            if timeit.default_timer() - start > self.timeout:
                 raise CuckooGuestCriticalTimeout(
-                    "Machine %s: the guest initialization hit the critical " "timeout, analysis aborted." % self.vmid
+                    f"Machine {self.vmid}: the guest initialization hit the critical timeout, analysis aborted"
                 )
 
     def query_environ(self):
@@ -188,7 +183,7 @@ def determine_analyzer_path(self):
 
     def determine_system_drive(self):
         if self.platform == "windows":
-            return "%s/" % self.environ["SYSTEMDRIVE"]
+            return f"{self.environ['SYSTEMDRIVE']}/"
         return "/"
 
     def determine_temp_path(self):
@@ -200,7 +195,9 @@ def upload_analyzer(self):
         """Upload the analyzer to the Virtual Machine."""
         zip_data = analyzer_zipfile(self.platform)
 
-        log.debug("Uploading analyzer to guest (id=%s, ip=%s, size=%d)", self.vmid, self.ipaddr, len(zip_data))
+        log.debug(
+            "Task #%s: Uploading analyzer to guest (id=%s, ip=%s, size=%d)", self.task_id, self.vmid, self.ipaddr, len(zip_data)
+        )
 
         self.determine_analyzer_path()
         data = {
@@ -216,38 +213,38 @@ def add_config(self, options):
         for key, value in options.items():
             # Encode datetime objects the way xmlrpc encodes them.
             if isinstance(value, datetime.datetime):
-                config.append("%s = %s" % (key, value.strftime("%Y%m%dT%H:%M:%S")))
+                config.append(f"{key} = {value.strftime('%Y%m%dT%H:%M:%S')}")
             else:
-                config.append("%s = %s" % (key, value))
+                config.append(f"{key} = {value}")
 
         data = {
             "filepath": os.path.join(self.analyzer_path, "analysis.conf"),
         }
         self.post("/store", files={"file": "\n".join(config)}, data=data)
 
-    def upload_support_files(self, options):
-        """ Upload supporting files from zip temp directory if they exist
-        :param options: options
-        :return:
-        """
-        log.info("Uploading support files to guest (id={}, ip={})".format(self.vmid, self.ipaddr))
-        basedir = os.path.dirname(options["target"])
-
-        for dirpath, _, files in os.walk(basedir):
-            for xf in files:
-                target = os.path.join(dirpath, xf)
-                # Copy all files except for the original target
-                if not target == options["target"]:
-                    data = {"filepath": os.path.join(self.determine_temp_path(), xf)}
-                    files = {"file": (xf, open(target, "rb"))}
-                    self.post("/store", files=files, data=data)
-        return
+    def upload_scripts(self):
+        """Upload various scripts such as pre_script and during_scripts."""
+        log.info("Task #%s: Uploading script files to guest (id=%s, ip=%s)", self.task_id, self.vmid, self.ipaddr)
+        # Temp File location of pre_script and during_script
+        base_dir = os.path.join("/tmp/cuckoo-tmp", str(self.task_id))
+        # File path of Analyses path. Storage of script
+        analyses_path = os.path.join(ANALYSIS_BASE_PATH, "analyses", str(self.task_id), "scripts")
+        # Create folder in Analyses
+        path_mkdir(analyses_path, exist_ok=True)
+
+        for name in glob.glob(os.path.join(base_dir, "*_script.*")):
+            # Copy file to Analyses/{task_ID}/scripts
+            shutil.copy(name, analyses_path)
+            basename = os.path.basename(name)
+            data = {"filepath": os.path.join(self.determine_temp_path(), basename).replace("/", "\\")}
+            files = {"file": (basename, open(name, "rb"))}
+            self.post("/store", files=files, data=data)
 
     def start_analysis(self, options):
         """Start the analysis by uploading all required files.
         @param options: the task options
         """
-        log.info("Starting analysis #%s on guest (id=%s, ip=%s)", self.task_id, self.vmid, self.ipaddr)
+        log.info("Task #%s: Starting analysis on guest (id=%s, ip=%s)", self.task_id, self.vmid, self.ipaddr)
 
         self.options = options
         self.timeout = options["timeout"] + cfg.timeouts.critical
@@ -259,7 +256,7 @@ def start_analysis(self, options):
 
         # Could be beautified a bit, but basically we have to perform the
         # same check here as we did in wait_available().
-        if db.guest_get_status(self.task_id) != "starting":
+        if self.get_status_from_db() != "starting":
             return
 
         r = self.get("/", do_raise=False)
@@ -273,24 +270,24 @@ def start_analysis(self, options):
                 r.status_code,
                 json.dumps(dict(r.headers)),
             )
-            db.guest_set_status(self.task_id, "failed")
+            self.set_status_in_db("failed")
             return
 
         try:
             status = r.json()
             version = status.get("version")
             features = status.get("features", [])
-        except:
+        except Exception:
             log.critical(
                 "We were unable to detect Agent in the "
                 "Guest VM, are you sure you have set it up correctly? Please "
                 "go through the documentation once more and otherwise inform "
-                "the Cuckoo Developers of your issue."
+                "the Cuckoo Developers of your issue"
             )
-            db.guest_set_status(self.task_id, "failed")
+            self.set_status_in_db("failed")
             return
 
-        log.info("Guest is running CAPE Agent %s (id=%s, ip=%s)", version, self.vmid, self.ipaddr)
+        log.info("Task #%s: Guest is running CAPE Agent %s (id=%s, ip=%s)", self.task_id, version, self.vmid, self.ipaddr)
 
         # Pin the Agent to our IP address so that it is not accessible by
         # other Virtual Machines etc.
@@ -309,27 +306,40 @@ def start_analysis(self, options):
         # ToDo fix it
         # self.aux.callback("prepare_guest")
 
+        # ToDo https://github.com/kevoreilly/CAPEv2/issues/1468
+        # Lookup file if current doesn't exist in TMP anymore
+        alternative_path = False
+        if not path_exists(options["target"]):
+            with db.session.begin():
+                path_found = db.sample_path_by_hash(task_id=options["id"])
+            if path_found:
+                alternative_path = path_found[0]
+
+        sample_path = alternative_path or options["target"]
         # If the target is a file, upload it to the guest.
-        if options["category"] == "file" or options["category"] == "archive":
-            data = {
-                "filepath": os.path.join(self.determine_temp_path(), options["file_name"]),
-            }
+        if options["category"] in ("file", "archive"):
+            # Use the correct os.sep in the filepath based on what OS this file is destined for
+            if self.platform == "windows":
+                filepath = ntpath.join(self.determine_temp_path(), sanitize_filename(options["file_name"]))
+            else:
+                filepath = os.path.join(self.determine_temp_path(), sanitize_filename(options["file_name"]))
+            data = {"filepath": filepath}
             files = {
-                "file": ("sample.bin", open(options["target"], "rb")),
+                "file": ("sample.bin", open(sample_path, "rb")),
             }
             self.post("/store", files=files, data=data)
 
-        # check for support files and upload them to guest.
-        self.upload_support_files(options)
+        # upload additional scripts
+        self.upload_scripts()
 
         # Debug analyzer.py in vm
         if "CAPE_DBG" in os.environ:
-            while True:
-                pass
+            # change this to input so we can resume
+            input("CAPE DBG enabled. Introduce any text to resume")
 
         if "execpy" in features:
             data = {
-                "filepath": "%s/analyzer.py" % self.analyzer_path,
+                "filepath": os.path.join(self.analyzer_path, "analyzer.py"),
                 "async": "yes",
                 "cwd": self.analyzer_path,
             }
@@ -337,48 +347,62 @@ def start_analysis(self, options):
         else:
             # Execute the analyzer that we just uploaded.
             data = {
-                "command": "%s %s\\analyzer.py" % (sys.executable, self.analyzer_path),
+                "command": f"{sys.executable} {self.analyzer_path}\\analyzer.py",
                 "async": "yes",
                 "cwd": self.analyzer_path,
             }
             self.post("/execute", data=data)
 
     def wait_for_completion(self):
-
         count = 0
-        end = time.time() + self.timeout
+        start = timeit.default_timer()
 
-        while db.guest_get_status(self.task_id) == "running" and self.do_run:
-            if count >= 5:
-                log.debug("%s: analysis #%s is still running", self.vmid, self.task_id)
-                count = 0
+        while self.do_run and self.get_status_from_db() == "running":
+            time.sleep(1)
 
+            if cfg.cuckoo.machinery_screenshots:
+                if count == 0:
+                    # indicate screenshot captures have started
+                    log.info("Task #%s: Started capturing screenshots for %s", self.task_id, self.vmid)
+                self.analysis_manager.screenshot_machine()
             count += 1
-            time.sleep(1)
+            if count % 5 == 0:
+                log.debug("Task #%s: Analysis is still running (id=%s, ip=%s)", self.task_id, self.vmid, self.ipaddr)
 
             # If the analysis hits the critical timeout, just return straight
             # away and try to recover the analysis results from the guest.
-            if time.time() > end:
-                log.info("%s: end of analysis reached!", self.vmid)
+            if timeit.default_timer() - start > self.timeout:
+                log.info("Task #%s: End of analysis reached! (id=%s, ip=%s)", self.task_id, self.vmid, self.ipaddr)
                 return
 
             try:
                 status = self.get("/status", timeout=5).json()
-            except CuckooGuestError:
+            except (CuckooGuestError, requests.exceptions.ReadTimeout):
                 # this might fail due to timeouts or just temporary network
                 # issues thus we don't want to abort the analysis just yet and
                 # wait for things to recover
-                log.warning("Virtual Machine /status failed. This can indicate the " "guest losing network connectivity")
+                log.warning(
+                    "Task #%s: Virtual Machine %s /status failed. This can indicate the guest losing network connectivity",
+                    self.task_id,
+                    self.vmid,
+                )
                 continue
             except Exception as e:
-                log.error("Virtual machine /status failed. %s", e, exc_info=True)
+                log.exception("Task #%s: Virtual machine %s /status failed. %s", self.task_id, self.vmid, e)
                 continue
 
-            if status["status"] == "complete":
-                log.info("%s: analysis completed successfully", self.vmid)
-                db.guest_set_status(self.task_id, "complete")
+            if status["status"] in ("complete", "failed"):
+                completed_as = "completed successfully" if status["status"] == "complete" else "failed"
+                log.info("Task #%s: Analysis %s (id=%s, ip=%s)", self.task_id, completed_as, self.vmid, self.ipaddr)
+                self.set_status_in_db("complete")
                 return
             elif status["status"] == "exception":
-                log.warning("%s: analysis #%s caught an exception\n%s", self.vmid, self.task_id, status["description"])
-                db.guest_set_status(self.task_id, "failed")
+                log.warning(
+                    "Task #%s: Analysis caught an exception (id=%s, ip=%s)\n%s",
+                    self.task_id,
+                    self.vmid,
+                    self.ipaddr,
+                    status["description"],
+                )
+                self.set_status_in_db("failed")
                 return
diff --git a/lib/cuckoo/core/log.py b/lib/cuckoo/core/log.py
index e1f400a8a2c..8e983750109 100644
--- a/lib/cuckoo/core/log.py
+++ b/lib/cuckoo/core/log.py
@@ -12,9 +12,10 @@
 
 import gevent.thread
 
-from lib.cuckoo.common.colors import red, yellow, cyan
-from lib.cuckoo.core.database import Database
+from lib.cuckoo.common.colors import cyan, red, yellow
 from lib.cuckoo.common.misc import cwd
+from lib.cuckoo.common.path_utils import path_exists
+from lib.cuckoo.core.database import Database
 
 _task_threads = {}
 _tasks = {}
@@ -41,7 +42,7 @@ class DatabaseHandler(logging.Handler):
     def emit(self, record):
         # TODO Should this also attempt to guess the task ID from _tasks?
         if hasattr(record, "task_id"):
-            Database().add_error(self.format(record), int(record.task_id), getattr(record, "error_action", None))
+            Database().add_error(self.format(record), int(record.task_id))
 
 
 class TaskHandler(logging.Handler):
@@ -54,7 +55,7 @@ def emit(self, record):
         if not task:
             return
 
-        task[1].write("%s\n" % self.format(record))
+        task[1].write(f"{self.format(record)}\n".encode())
 
 
 class ConsoleHandler(logging.StreamHandler):
@@ -65,9 +66,13 @@ def emit(self, record):
 
         if record.levelname == "WARNING":
             colored.msg = yellow(record.msg)
-        elif record.levelname == "ERROR" or record.levelname == "CRITICAL":
+        elif record.levelname in ("ERROR", "CRITICAL"):
             colored.msg = red(record.msg)
         else:
+            # Hack for pymongo.logger.LogMessage
+            if not isinstance(record.msg, str):
+                record.msg = str(record.msg)
+
             if "analysis procedure completed" in record.msg:
                 colored.msg = cyan(record.msg)
             else:
@@ -110,7 +115,7 @@ def task_log_start(task_id):
     try:
         if task_id not in _task_threads:
             task_path = cwd(analysis=task_id)
-            if not os.path.exists(task_path):
+            if not path_exists(task_path):
                 return
 
             _task_threads[task_id] = []
@@ -145,45 +150,29 @@ def task_log_stop(task_id):
 def init_logger(name, level=None):
     formatter = logging.Formatter("%(asctime)s [%(name)s] %(levelname)s: %(message)s")
 
-    if name == "cuckoo.log":
-        l = logging.handlers.WatchedFileHandler(cwd("log", "cuckoo.log"))
-        l.setFormatter(formatter)
-        l.setLevel(level)
-
-    if name == "cuckoo.json":
-        j = JsonFormatter()
-        l = logging.handlers.WatchedFileHandler(cwd("log", "cuckoo.json"))
-        l.setFormatter(j)
-        l.addFilter(j)
-
     if name == "console":
-        l = ConsoleHandler()
-        l.setFormatter(formatter)
-        l.setLevel(level)
-
-    if name == "database":
-        l = DatabaseHandler()
-        l.setLevel(logging.ERROR)
+        logger = ConsoleHandler()
+        logger.setFormatter(formatter)
+        logger.setLevel(level)
 
-    if name == "task":
-        l = TaskHandler()
-        l.setFormatter(formatter)
+    elif name == "database":
+        logger = DatabaseHandler()
+        logger.setLevel(logging.ERROR)
 
-    if name.startswith("process-") and name.endswith(".json"):
-        j = JsonFormatter()
-        l = logging.handlers.WatchedFileHandler(cwd("log", name))
-        l.setFormatter(j)
-        l.addFilter(j)
+    elif name == "task":
+        logger = TaskHandler()
+        logger.setFormatter(formatter)
+        logger.setLevel(logging.DEBUG)
 
-    _loggers[name] = l
-    logging.getLogger().addHandler(l)
+    _loggers[name] = logger
+    logging.getLogger().addHandler(logger)
 
 
 def logger(message, *args, **kwargs):
     """Log a message to specific logger instance."""
     logfile = kwargs.pop("logfile", None)
     record = logging.LogRecord(None, logging.INFO, None, None, message, args, None, None)
-    record.asctime = "%s,%03d" % (time.strftime("%Y-%m-%d %H:%M:%S", time.localtime(record.created)), record.msecs)
+    record.asctime = f"{time.strftime('%Y-%m-%d %H:%M:%S', time.localtime(record.created))},{record.msecs:03d}"
     record.message = record.getMessage()
     record.__dict__.update(kwargs)
 
diff --git a/lib/cuckoo/core/machinery_manager.py b/lib/cuckoo/core/machinery_manager.py
new file mode 100644
index 00000000000..02d7efaedbc
--- /dev/null
+++ b/lib/cuckoo/core/machinery_manager.py
@@ -0,0 +1,321 @@
+import logging
+import threading
+import time
+from time import monotonic as _time
+from typing import Optional, Union
+
+from lib.cuckoo.common.abstracts import Machinery
+from lib.cuckoo.common.config import Config
+from lib.cuckoo.common.exceptions import CuckooCriticalError, CuckooMachineError
+from lib.cuckoo.core.database import Database, Machine, Task, _Database
+from lib.cuckoo.core.plugins import list_plugins
+from lib.cuckoo.core.rooter import rooter, vpns
+
+log = logging.getLogger(__name__)
+
+routing = Config("routing")
+
+
+class ScalingBoundedSemaphore(threading.Semaphore):
+    """Implements a dynamic bounded semaphore.
+
+    A bounded semaphore checks to make sure its current value doesn't exceed its
+    limit value. If it does, ValueError is raised. In most situations
+    semaphores are used to guard resources with limited capacity.
+
+    If the semaphore is released too many times it's a sign of a bug. If not
+    given, value defaults to 1.
+
+    Like regular semaphores, bounded semaphores manage a counter representing
+    the number of release() calls minus the number of acquire() calls, plus a
+    limit value. The acquire() method blocks if necessary until it can return
+    without making the counter negative. If not given, value defaults to 1.
+
+    In this version of semaphore there is an upper limit where its limit value
+    can never reach when it is changed. The idea behind it is that in machinery
+    documentation there is a limit of machines that can be available so there is
+    no point having it higher than that.
+    """
+
+    def __init__(self, value=1, upper_limit=1):
+        threading.Semaphore.__init__(self, value)
+        self._limit_value = value
+        self._upper_limit = upper_limit
+
+    def acquire(self, blocking=True, timeout=None):
+        """Acquire a semaphore, decrementing the internal counter by one.
+
+        When invoked without arguments: if the internal counter is larger than
+        zero on entry, decrement it by one and return immediately. If it is zero
+        on entry, block, waiting until some other thread has called release() to
+        make it larger than zero. This is done with proper interlocking so that
+        if multiple acquire() calls are blocked, release() will wake exactly one
+        of them up. The implementation may pick one at random, so the order in
+        which blocked threads are awakened should not be relied on. There is no
+        return value in this case.
+
+        When invoked with blocking set to true, do the same thing as when called
+        without arguments, and return true.
+
+        When invoked with blocking set to false, do not block. If a call without
+        an argument would block, return false immediately; otherwise, do the
+        same thing as when called without arguments, and return true.
+
+        When invoked with a timeout other than None, it will block for at
+        most timeout seconds.  If acquire does not complete successfully in
+        that interval, return false.  Return true otherwise.
+
+        """
+        if not blocking and timeout is not None:
+            raise ValueError("Cannot specify timeout for non-blocking acquire()")
+        rc = False
+        endtime = None
+        with self._cond:
+            while self._value == 0:
+                if not blocking:
+                    break
+                if timeout is not None:
+                    if endtime is None:
+                        endtime = _time() + timeout
+                    else:
+                        timeout = endtime - _time()
+                        if timeout <= 0:
+                            break
+                self._cond.wait(timeout)
+            else:
+                self._value -= 1
+                rc = True
+        return rc
+
+    __enter__ = acquire
+
+    def release(self):
+        """Release a semaphore, incrementing the internal counter by one.
+
+        When the counter is zero on entry and another thread is waiting for it
+        to become larger than zero again, wake up that thread.
+
+        If the number of releases exceeds the number of acquires,
+        raise a ValueError.
+
+        """
+        with self._cond:
+            if self._value > self._upper_limit:
+                raise ValueError("Semaphore released too many times")
+            if self._value >= self._limit_value:
+                self._value = self._limit_value
+                self._cond.notify()
+                return
+            self._value += 1
+            self._cond.notify()
+
+    def __exit__(self, t, v, tb):
+        self.release()
+
+    def update_limit(self, value):
+        """Update the limit value for the semaphore
+
+        This limit value is the bounded limit, and proposed limit values
+        are validated against the upper limit.
+
+        """
+        if 0 < value < self._upper_limit:
+            self._limit_value = value
+        if self._value > value:
+            self._value = value
+
+    def check_for_starvation(self, available_count: int):
+        """Check for preventing starvation from coming up after updating the limit.
+        Take no parameter.
+        Return true on starvation.
+        """
+        if self._value == 0 and available_count == self._limit_value:
+            self._value = self._limit_value
+            return True
+        # Resync of the lock value
+        if abs(self._value - available_count) > 0:
+            self._value = available_count
+            return True
+        return False
+
+
+MachineryLockType = Union[threading.Lock, threading.BoundedSemaphore, ScalingBoundedSemaphore]
+
+
+class MachineryManager:
+    def __init__(self):
+        self.cfg = Config()
+        self.db: _Database = Database()
+        self.machinery_name: str = self.cfg.cuckoo.machinery
+        self.machinery: Machinery = self.create_machinery()
+        self.pool_scaling_lock = threading.Lock()
+        self.machines_limit: Optional[int] = None
+        if self.machinery.module_name != self.machinery_name:
+            raise CuckooCriticalError(
+                f"Incorrect machinery module was imported. "
+                f"Should've been {self.machinery_name} but was {self.machinery.module_name}"
+            )
+        log.info(
+            "Using %s with max_machines_count=%d",
+            self,
+            self.cfg.cuckoo.max_machines_count,
+        )
+        self.machine_lock: Optional[MachineryLockType] = None
+
+    def __str__(self):
+        return f"{self.__class__.__name__}[{self.machinery_name}]"
+
+    def create_machine_lock(self) -> MachineryLockType:
+        retval: MachineryLockType = threading.Lock()
+
+        # You set this value if you are using a machinery that is NOT auto-scaling
+        max_vmstartup_count = self.cfg.cuckoo.max_vmstartup_count
+        if max_vmstartup_count:
+            # The BoundedSemaphore is used to prevent CPU starvation when starting up multiple VMs
+            log.info("max_vmstartup_count for BoundedSemaphore = %d", max_vmstartup_count)
+            retval = threading.BoundedSemaphore(max_vmstartup_count)
+
+        # You set this value if you are using a machinery that IS auto-scaling
+        elif self.cfg.cuckoo.scaling_semaphore:
+            # If the user wants to use the scaling bounded semaphore, check what machinery is specified, and then
+            # grab the required configuration key for setting the upper limit
+            machinery_opts = self.machinery.options.get(self.machinery_name)
+            if self.machinery_name == "az":
+                self.machines_limit = machinery_opts.get("total_machines_limit")
+            elif self.machinery_name == "aws":
+                self.machines_limit = machinery_opts.get("dynamic_machines_limit")
+            if self.machines_limit:
+                # The ScalingBoundedSemaphore is used to keep feeding available machines from the pending tasks queue
+                log.info("upper limit for ScalingBoundedSemaphore = %d", self.machines_limit)
+                retval = ScalingBoundedSemaphore(value=len(self.machinery.machines()), upper_limit=self.machines_limit)
+            else:
+                log.warning(
+                    "scaling_semaphore is set but the %s machinery does not set the machines limit. Ignoring scaling semaphore.",
+                    self.machinery_name,
+                )
+
+        return retval
+
+    @staticmethod
+    def create_machinery() -> Machinery:
+        # Get registered class name. Only one machine manager is imported,
+        # therefore there should be only one class in the list.
+        plugin = list_plugins("machinery")[0]
+        machinery: Machinery = plugin()
+
+        return machinery
+
+    def find_machine_to_service_task(self, task: Task) -> Optional[Machine]:
+        machine = self.machinery.find_machine_to_service_task(task)
+        if machine:
+            log.info(
+                "Task #%s: found useable machine %s (arch=%s, platform=%s)",
+                task.id,
+                machine.name,
+                machine.arch,
+                machine.platform,
+            )
+        else:
+            log.debug(
+                "Task #%s: no machine available yet for task requiring machine '%s', platform '%s' or tags '%s'.",
+                task.id,
+                task.machine,
+                task.platform,
+                task.tags,
+            )
+
+        return machine
+
+    def initialize_machinery(self) -> None:
+        """Initialize the machines in the database and initialize routing for them."""
+        try:
+            self.machinery.initialize()
+        except CuckooMachineError as e:
+            raise CuckooCriticalError("Error initializing machines") from e
+
+        # At this point all the available machines should have been identified
+        # and added to the list. If none were found, Cuckoo needs to abort the
+        # execution.
+        available_machines = list(self.machinery.machines())
+        if not len(available_machines):
+            raise CuckooCriticalError("No machines available")
+        else:
+            log.info("Loaded %d machine%s", len(available_machines), "s" if len(available_machines) != 1 else "")
+
+        if len(available_machines) > 1 and self.db.engine.name == "sqlite":
+            log.warning(
+                "As you've configured CAPE to execute parallel analyses, we recommend you to switch to a PostgreSQL database as SQLite might cause some issues"
+            )
+
+        # Drop all existing packet forwarding rules for each VM. Just in case
+        # Cuckoo was terminated for some reason and various forwarding rules
+        # have thus not been dropped yet.
+        for machine in available_machines:
+            rooter(
+                "inetsim_disable",
+                machine.ip,
+                routing.inetsim.server,
+                str(routing.inetsim.dnsport),
+                str(self.cfg.resultserver.port),
+                str(routing.inetsim.ports),
+            )
+            if not machine.interface:
+                log.info(
+                    "Unable to determine the network interface for VM with name %s, Cape will not be able to give it "
+                    "full internet access or route it through a VPN! Please define a default network interface for the "
+                    "machinery or define a network interface for each VM",
+                    machine.name,
+                )
+                continue
+
+            # Drop forwarding rule to each VPN.
+            for vpn in vpns.values():
+                rooter("forward_disable", machine.interface, vpn.interface, machine.ip)
+
+            # Drop forwarding rule to the internet / dirty line.
+            if routing.routing.internet != "none":
+                rooter("forward_disable", machine.interface, routing.routing.internet, machine.ip)
+
+        self.machine_lock = self.create_machine_lock()
+        threading.Thread(target=self.thr_maintain_scaling_bounded_semaphore, daemon=True).start()
+
+    def running_machines_max_reached(self) -> bool:
+        """Return true if we've reached the maximum number of running machines."""
+        return 0 < self.cfg.cuckoo.max_machines_count <= self.machinery.running_count()
+
+    def scale_pool(self, machine: Machine) -> None:
+        """For machinery backends that support auto-scaling, make sure that enough machines
+        are spun up. For other types of machinery, this is basically a noop. This is called
+        from the AnalysisManager (i.e. child) thread, so we use a lock to make sure that
+        it doesn't get called multiple times simultaneously. We don't want to call it from
+        the main thread as that would block the scheduler while machines are spun up.
+        Note that the az machinery maintains its own thread to monitor to size of the pool.
+        """
+        with self.pool_scaling_lock:
+            self.machinery.scale_pool(machine)
+
+    def start_machine(self, machine: Machine) -> None:
+        if (
+            isinstance(self.machine_lock, ScalingBoundedSemaphore)
+            and self.db.count_machines_running() <= self.machines_limit
+            and self.machine_lock._value == 0
+        ):
+            self.machine_lock.release()
+        with self.machine_lock:
+            self.machinery.start(machine.label)
+
+    def stop_machine(self, machine: Machine) -> None:
+        self.machinery.stop(machine.label)
+
+    def thr_maintain_scaling_bounded_semaphore(self) -> None:
+        """Maintain the limit of the ScalingBoundedSemaphore if one is being used."""
+        if not isinstance(self.machine_lock, ScalingBoundedSemaphore) or not self.cfg.cuckoo.scaling_semaphore_update_timer:
+            return
+
+        while True:
+            with self.db.session.begin():
+                # Here be dragons! Making these calls on the ScalingBoundedSemaphore is not
+                # thread safe.
+                self.machine_lock.update_limit(len(self.machinery.machines()))
+                self.machine_lock.check_for_starvation(self.machinery.availables(include_reserved=True))
+            time.sleep(self.cfg.cuckoo.scaling_semaphore_update_timer)
diff --git a/lib/cuckoo/core/plugins.py b/lib/cuckoo/core/plugins.py
index a97eda97516..330765b147a 100644
--- a/lib/cuckoo/core/plugins.py
+++ b/lib/cuckoo/core/plugins.py
@@ -2,33 +2,34 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-import os
-import sys
-import json
-import pkgutil
 import inspect
+import json
 import logging
-from datetime import datetime, timedelta
+import os
+import pkgutil
+import sys
+import timeit
 from collections import defaultdict
-from distutils.version import StrictVersion
+from contextlib import suppress
 
-from lib.cuckoo.common.utils import get_vt_consensus
-from lib.cuckoo.common.abstracts import Auxiliary, Machinery, LibVirtMachinery, Processing
-from lib.cuckoo.common.abstracts import Report, Signature, Feed
-from lib.cuckoo.common.config import Config
+from packaging.version import Version
+
+from lib.cuckoo.common.abstracts import Auxiliary, Feed, LibVirtMachinery, Machinery, Processing, Report, Signature
+from lib.cuckoo.common.config import AnalysisConfig, Config
 from lib.cuckoo.common.constants import CUCKOO_ROOT, CUCKOO_VERSION
-from lib.cuckoo.common.exceptions import CuckooDisableModule
-from lib.cuckoo.common.exceptions import CuckooOperationalError
-from lib.cuckoo.common.exceptions import CuckooProcessingError
-from lib.cuckoo.common.exceptions import CuckooReportError
-from lib.cuckoo.common.exceptions import CuckooDependencyError
+from lib.cuckoo.common.exceptions import (
+    CuckooDependencyError,
+    CuckooDisableModule,
+    CuckooOperationalError,
+    CuckooProcessingError,
+    CuckooReportError,
+)
+from lib.cuckoo.common.mapTTPs import mapTTP
+from lib.cuckoo.common.path_utils import path_exists
+from lib.cuckoo.common.scoring import calc_scoring
+from lib.cuckoo.common.utils import add_family_detection
 from lib.cuckoo.core.database import Database
-
-try:
-    import re2 as re
-except ImportError:
-    import re
+from utils.community_blocklist import blocklist
 
 log = logging.getLogger(__name__)
 db = Database()
@@ -42,11 +43,16 @@
     "reporting": reporting_cfg,
 }
 
+banned_signatures = []
+if blocklist.get("signatures"):
+    banned_signatures = [os.path.basename(sig).replace(".py", "") for sig in blocklist["signatures"]]
+
+
 def import_plugin(name):
     try:
         module = __import__(name, globals(), locals(), ["dummy"])
     except (ImportError, SyntaxError) as e:
-        print('Unable to import plugin "{0}": {1}'.format(name, e))
+        print(f'Unable to import plugin "{name}": {e}')
         return
     else:
         # ToDo remove for release
@@ -57,20 +63,43 @@ def import_plugin(name):
 
 
 def import_package(package):
-    prefix = package.__name__ + "."
+    """
+    Imports all modules from a given package, excluding disabled plugins and banned signatures.
+
+    Args:
+        package (module): The package from which to import modules.
+
+    The function iterates over all modules in the specified package and imports them unless:
+    - The module is a package itself.
+    - The module's name is in the list of banned signatures.
+    - The module is disabled according to the configuration.
+
+    If an error occurs during the import of a module, it catches the exception and prints the error message.
+
+    Raises:
+        Exception: If an error occurs during the import of a module.
+    """
+    prefix = f"{package.__name__}."
     for _, name, ispkg in pkgutil.iter_modules(package.__path__, prefix):
         if ispkg:
             continue
 
         # Disable initialization of disabled plugins, performance++
-        _, category, module_name = name.split(".")
-        if category in config_mapper and module_name in config_mapper[category].fullconfig and config_mapper[category].get(module_name).get("enabled", False) is False:
+        _, category, *_, module_name = name.split(".")
+        if module_name in banned_signatures:
+            log.debug("Ignoring signature: %s", module_name)
+            continue
+        if (
+            category in config_mapper
+            and module_name in config_mapper[category].fullconfig
+            and not config_mapper[category].get(module_name).get("enabled", False)
+        ):
             continue
 
         try:
             import_plugin(name)
         except Exception as e:
-            print(e)
+            log.exception("import_package: %s - error: %s", name, str(e))
 
 
 def load_plugins(module):
@@ -90,127 +119,39 @@ def load_plugins(module):
                 register_plugin("feeds", value)
 
 
-def register_plugin(group, name):
+def register_plugin(group, cls):
     global _modules
     group = _modules.setdefault(group, [])
-    group.append(name)
+    if cls not in group:
+        group.append(cls)
 
 
 def list_plugins(group=None):
     if group:
         return _modules[group]
-    else:
-        return _modules
+    return _modules
 
 
-suricata_passlist = (
-    "agenttesla",
-    "medusahttp",
-    "vjworm",
-)
+class RunAuxiliary:
+    """
+    Auxiliary modules manager.
 
-suricata_blocklist = (
-    "abuse",
-    "agent",
-    "base64",
-    "common",
-    "custom",
-    "dropper",
-    "executable",
-    "f-av",
-    "fake",
-    "fileless",
-    "filename",
-    "generic",
-    "google",
-    "hacking",
-    "injector",
-    "known",
-    "likely",
-    "magic",
-    "malicious",
-    "media",
-    "msil",
-    "multi",
-    "observed",
-    "owned",
-    "perfect",
-    "possible",
-    "potential",
-    "powershell",
-    "probably",
-    "python",
-    "rogue",
-    "self-signed",
-    "shadowserver",
-    "single",
-    "supicious",
-    "targeted",
-    "team",
-    "troj",
-    "trojan",
-    "unit42",
-    "unknown",
-    "user",
-    "vbinject",
-    "vbscript",
-    "virus",
-    "w2km",
-    "w97m",
-    "win32",
-    "windows",
-    "worm",
-    "wscript",
-    # "http",
-    "ptsecurity",
-    "request",
-    "suspicious",
-)
+    Attributes:
+        task (dict): The task information.
+        machine (dict): The machine information.
+        cfg (Config): Configuration for auxiliary modules.
+        enabled (list): List of enabled auxiliary modules.
 
-et_categories = ("ET TROJAN",
-                 "ETPRO TROJAN",
-                 "ET MALWARE",
-                 "ETPRO MALWARE",
-                 "ET CNC",
-                 "ETPRO CNC")
+    Methods:
+        start():
+            Starts all enabled auxiliary modules.
 
-def get_suricata_family(signature):
-    """
-    Args:
-        signature: suricata alert string
-    Return
-        family: family name or False
+        callback(name, *args, **kwargs):
+            Executes the callback function for each enabled auxiliary module.
+
+        stop():
+            Stops all enabled auxiliary modules.
     """
-    # ToDo Trojan-Proxy
-    family = False
-    words = re.findall(r"[A-Za-z0-9/\-]+", signature)
-    famcheck = words[2]
-    if "/" in famcheck:
-        famcheck_list = famcheck.split("/")  # [-1]
-        for fam_name in famcheck_list:
-            if not any([block in fam_name.lower() for block in suricata_blocklist]):
-                famcheck = fam_name
-                break
-    famchecklower = famcheck.lower()
-    if famchecklower.startswith("win.") and famchecklower.count(".") == 1:
-        famchecklower = famchecklower.split(".")[-1]
-        famcheck = famcheck.split(".")[-1]
-    if famchecklower in ("win32", "w32", "ransomware"):
-        famcheck = words[3]
-        famchecklower = famcheck.lower()
-    if famchecklower == "ptsecurity":
-        famcheck = words[3]
-        famchecklower = famcheck.lower()
-    isbad = any([block in famchecklower for block in suricata_blocklist])
-    if not isbad and len(famcheck) >= 4:
-        family = famcheck.title()
-    isgood = any([allow in famchecklower for allow in suricata_passlist])
-    if isgood and len(famcheck) >= 4:
-        family = famcheck.title()
-    return family
-
-
-class RunAuxiliary(object):
     """Auxiliary modules manager."""
 
     def __init__(self, task, machine):
@@ -225,8 +166,8 @@ def start(self):
             for module in auxiliary_list:
                 try:
                     current = module()
-                except:
-                    log.exception("Failed to load the auxiliary module " '"{0}":'.format(module))
+                except Exception as e:
+                    log.exception('Failed to load the auxiliary module "%s": %s', module, e)
                     return
 
                 module_name = inspect.getmodule(current).__name__
@@ -236,7 +177,7 @@ def start(self):
                 try:
                     options = self.cfg.get(module_name)
                 except CuckooOperationalError:
-                    log.debug("Auxiliary module %s not found in " "configuration file", module_name)
+                    log.debug("Auxiliary module %s not found in configuration file", module_name)
                     continue
 
                 if not options.enabled:
@@ -263,14 +204,17 @@ def default(*args, **kwargs):
         enabled = []
         for module in self.enabled:
             try:
-                getattr(module, "cb_%s" % name, default)(*args, **kwargs)
+                getattr(module, f"cb_{name}", default)(*args, **kwargs)
             except NotImplementedError:
                 pass
             except CuckooDisableModule:
                 continue
-            except:
+            except Exception:
                 log.exception(
-                    "Error performing callback %r on auxiliary module %r", name, module.__class__.__name__, extra={"task_id": self.task["id"]}
+                    "Error performing callback %s on auxiliary module %s",
+                    name,
+                    module.__class__.__name__,
+                    extra={"task_id": self.task["id"]},
                 )
 
             enabled.append(module)
@@ -283,14 +227,35 @@ def stop(self):
             except NotImplementedError:
                 pass
             except Exception as e:
-                log.warning("Unable to stop auxiliary module: %s", e)
+                log.warning("Unable to stop auxiliary module: %s", e, exc_info=True)
             else:
                 log.debug("Stopped auxiliary module: %s", module.__class__.__name__)
 
 
-class RunProcessing(object):
+class RunProcessing:
     """Analysis Results Processing Engine.
 
+
+    Attributes:
+        task (dict): Task dictionary of the analysis to process.
+        analysis_path (str): Path to the analysis results.
+        cfg (Config): Configuration for processing modules.
+        cuckoo_cfg (Config): General Cuckoo configuration.
+        results (dict): Dictionary to store the results of the processing.
+
+    Methods:
+        process(module):
+            Run a processing module.
+            Args:
+                module: Processing module to run.
+            Returns:
+                dict: Results generated by the module or None if an error occurred.
+
+        run():
+            Run all processing modules and all signatures.
+            Returns:
+                dict: Processing results.
+
     This class handles the loading and execution of the processing modules.
     It executes the enabled ones sequentially and generates a dictionary which
     is then passed over the reporting engine.
@@ -300,7 +265,7 @@ def __init__(self, task, results):
         """@param task: task dictionary of the analysis to process."""
         self.task = task
         self.analysis_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(task["id"]))
-        self.cfg = Config("processing")
+        self.cfg = processing_cfg
         self.cuckoo_cfg = Config()
         self.results = results
 
@@ -312,8 +277,8 @@ def process(self, module):
         # Initialize the specified processing module.
         try:
             current = module(self.results)
-        except:
-            log.exception("Failed to load the processing module " '"{0}":'.format(module))
+        except Exception as e:
+            log.exception('Failed to load the processing module "%s": %s', module, e)
             return
 
         # Extract the module name.
@@ -331,6 +296,13 @@ def process(self, module):
         if not options.enabled:
             return None
 
+        # Check if the module is platform specific (e.g. strace) to prevent
+        # processing errors.
+        platform = self.task.get("platform", "")
+        if getattr(options, "platform", None) and options.platform != platform:
+            log.debug("Plugin %s not compatible with platform: %s", module_name, platform)
+            return None
+
         # Give it path to the analysis results.
         current.set_path(self.analysis_path)
         # Give it the analysis task object.
@@ -341,12 +313,11 @@ def process(self, module):
         try:
             # Run the processing module and retrieve the generated data to be
             # appended to the general results container.
-            log.debug('Executing processing module "%s" on analysis at ' '"%s"', current.__class__.__name__, self.analysis_path)
-            pretime = datetime.now()
+            log.debug('Executing processing module "%s" on analysis at "%s"', current.__class__.__name__, self.analysis_path)
+            pretime = timeit.default_timer()
             data = current.run()
-            posttime = datetime.now()
-            timediff = posttime - pretime
-            self.results["statistics"]["processing"].append({"name": current.__class__.__name__, "time": float("%d.%03d" % (timediff.seconds, timediff.microseconds / 1000))})
+            timediff = timeit.default_timer() - pretime
+            self.results["statistics"]["processing"].append({"name": current.__class__.__name__, "time": round(timediff, 3)})
 
             # If succeeded, return they module's key name and the data to be
             # appended to it.
@@ -354,9 +325,9 @@ def process(self, module):
         except CuckooDependencyError as e:
             log.warning('The processing module "%s" has missing dependencies: %s', current.__class__.__name__, e)
         except CuckooProcessingError as e:
-            log.warning('The processing module "%s" returned the following ' "error: %s", current.__class__.__name__, e)
-        except:
-            log.exception('Failed to run the processing module "%s":', current.__class__.__name__)
+            log.warning('The processing module "%s" returned the following error: %s', current.__class__.__name__, e)
+        except Exception as e:
+            log.exception('Failed to run the processing module "%s": %s', current.__class__.__name__, e)
 
         return None
 
@@ -379,8 +350,7 @@ def run(self):
             # Run every loaded processing module.
             for module in processing_list:
                 result = self.process(module)
-                # If it provided some results, append it to the big results
-                # container.
+                # If it provided some results, append it to the big results container.
                 if result:
                     self.results.update(result)
         else:
@@ -389,13 +359,15 @@ def run(self):
         # Add temp_processing stats to global processing stats
         if self.results["temp_processing_stats"]:
             for plugin_name in self.results["temp_processing_stats"]:
-                self.results["statistics"]["processing"].append({"name": plugin_name, "time": self.results["temp_processing_stats"][plugin_name].get("time", 0)})
+                self.results["statistics"]["processing"].append(
+                    {"name": plugin_name, "time": self.results["temp_processing_stats"][plugin_name].get("time", 0)}
+                )
 
         del self.results["temp_processing_stats"]
 
         # For correct error log on webgui
         logs = os.path.join(self.analysis_path, "logs")
-        if os.path.exists(logs):
+        if path_exists(logs):
             for file_name in os.listdir(logs):
                 file_path = os.path.join(logs, file_name)
 
@@ -404,61 +376,127 @@ def run(self):
                 # Skipping the current log file if it's too big.
                 if os.stat(file_path).st_size > self.cuckoo_cfg.processing.analysis_size_limit:
                     if not hasattr(self.results, "debug"):
-                        self.results.setdefault("debug", dict()).setdefault("errors", list())
-                    self.results["debug"]["errors"].append(
-                        "Behavioral log {0} too big to be processed, skipped. Increase analysis_size_limit in cuckoo.conf".format(file_name)
-                    )
+                        self.results.setdefault("debug", {}).setdefault("errors", []).append(
+                            f"Behavioral log {file_name} too big to be processed, skipped. Increase analysis_size_limit in cuckoo.conf"
+                        )
                     continue
         else:
             log.info("Logs folder doesn't exist, maybe something with with analyzer folder, any change?")
 
-        family = ""
-        self.results["malfamily_tag"] = ""
-        if self.cfg.detections.enabled:
-            if self.results.get("detections", False) and self.cfg.detections.yara:
-                family = self.results["detections"]
-                self.results["malfamily_tag"] = "Yara"
-            elif self.cfg.detections.suricata and not family and self.results.get("suricata", {}).get("alerts", []):
-                for alert in self.results["suricata"]["alerts"]:
-                    if alert.get("signature", "") and alert["signature"].startswith((et_categories)):
-                        family = get_suricata_family(alert["signature"])
-                        if family:
-                            self.results["malfamily_tag"] = "Suricata"
-                            self.results["detections"] = family
-
-            elif self.cfg.detections.virustotal and not family and self.results["info"]["category"] == "file" and self.results.get("virustotal", {}).get("results"):
-                detectnames = []
-                for res in self.results["virustotal"]["results"]:
-                    if res["sig"] and "Trojan.Heur." not in res["sig"]:
-                        # weight Microsoft's detection, they seem to be more accurate than the rest
-                        if res["vendor"] == "Microsoft":
-                            detectnames.append(res["sig"])
-                        detectnames.append(res["sig"])
-                family = get_vt_consensus(detectnames)
-                self.results["malfamily_tag"] = "VirusTotal"
-
-            # fall back to ClamAV detection
-            elif self.cfg.detections.clamav and not family and self.results["info"]["category"] == "file" and self.results.get("target", {}).get("file", {}).get("clamav"):
-                for detection in self.results["target"]["file"]["clamav"]:
-                    if detection.startswith("Win.Trojan."):
-                        words = re.findall(r"[A-Za-z0-9]+", detection)
-                        family = words[2]
-                        self.results["malfamily_tag"] = "ClamAV"
-
-            if family:
-                self.results["detections"] = family
-
         return self.results
 
 
-class RunSignatures(object):
-    """Run Signatures."""
+class RunSignatures:
+    """
+    RunSignatures is responsible for executing and managing the lifecycle of signatures during an analysis task.
+    It initializes, filters, and runs both evented and non-evented signatures, applying overlays and handling
+    signature-specific logic.
+
+    Attributes:
+        task (dict): The analysis task information.
+        results (dict): The results of the analysis.
+        ttps (list): List of TTPs (Tactics, Techniques, and Procedures) identified.
+        mbcs (dict): Dictionary of MBCs (Malware Behavior Catalog) identified.
+        cfg_processing (Config): Configuration for processing.
+        analysis_path (str): Path to the analysis results.
+        signatures (list): List of initialized signature instances.
+        evented_list (list): List of evented signatures.
+        non_evented_list (list): List of non-evented signatures.
+        api_sigs (dict): Cache of signatures to call per API name.
+        call_always (set): Set of signatures that should always be called.
+        call_for_api (defaultdict): Signatures interested in specific API calls.
+        call_for_cat (defaultdict): Signatures interested in specific categories.
+        call_for_processname (defaultdict): Signatures interested in specific process names.
+
+    Methods:
+        _should_load_signature(signature): Determines if a signature should be loaded.
+        _load_overlay(): Loads overlay data from a JSON file.
+        _apply_overlay(signature, overlay): Applies overlay attributes to a signature.
+        _check_signature_version(current): Checks if the signature version is compatible.
+        _check_signature_platform(signature): Checks if the signature is compatible with the platform.
+        process(signature): Runs a single signature and returns the matched result.
+        run(test_signature=False): Runs all evented and non-evented signatures, optionally testing a specific signature.
+    """
 
     def __init__(self, task, results):
         self.task = task
         self.results = results
-        self.ttps = dict()
-        self.cfg_processing = Config("processing")
+        self.ttps = []
+        self.mbcs = {}
+        self.cfg_processing = processing_cfg
+        self.analysis_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(task["id"]))
+
+        # Gather all enabled & up-to-date Signatures.
+        self.signatures = []
+        for signature in list_plugins(group="signatures"):
+            if self._should_load_signature(signature):
+                # Initialize them all
+                try:
+                    self.signatures.append(signature(self.results))
+                except Exception as exc:
+                    log.error("failed to initialize signature %s: %s", signature.__name__, exc)
+
+        overlay = self._load_overlay()
+        log.debug("Applying signature overlays for signatures: %s", ", ".join(overlay))
+        for signature in self.signatures:
+            self._apply_overlay(signature, overlay)
+
+        self.evented_list = []
+        self.non_evented_list = []
+        try:
+            for sig in self.signatures:
+                if sig.evented:
+                    # This is to confirm that the evented signature has its own on_call function, which is required
+                    # https://capev2.readthedocs.io/en/latest/customization/signatures.html#evented-signatures
+                    if sig.on_call.__module__ != Signature.on_call.__module__:
+                        if (
+                            not sig.filter_analysistypes
+                            or self.results.get("target", {}).get("category") in sig.filter_analysistypes
+                        ):
+                            self.evented_list.append(sig)
+
+                if sig not in self.evented_list:
+                    self.non_evented_list.append(sig)
+        except Exception as e:
+            print("RunSignatures: ", e)
+
+        # Cache of signatures to call per API name.
+        self.api_sigs = {}
+
+        # Prebuild a list of signatures that *may* be interested
+        self.call_always = set()
+        self.call_for_api = defaultdict(set)
+        self.call_for_cat = defaultdict(set)
+        self.call_for_processname = defaultdict(set)
+        for sig in self.evented_list:
+            if not sig.filter_apinames and not sig.filter_categories and not sig.filter_processnames:
+                self.call_always.add(sig)
+                continue
+            for api in sig.filter_apinames:
+                self.call_for_api[api].add(sig)
+            for cat in sig.filter_categories:
+                self.call_for_cat[cat].add(sig)
+            for proc in sig.filter_processnames:
+                self.call_for_processname[proc].add(sig)
+            if not sig.filter_apinames:
+                self.call_for_api["any"].add(sig)
+            if not sig.filter_categories:
+                self.call_for_cat["any"].add(sig)
+            if not sig.filter_processnames:
+                self.call_for_processname["any"].add(sig)
+
+    def _should_load_signature(self, signature):
+        """Should the given signature be enabled for this analysis?"""
+        if not signature.enabled or signature.name is None:
+            return False
+
+        if not self._check_signature_version(signature):
+            return False
+
+        if not self._check_signature_platform(signature):
+            return False
+
+        return True
 
     def _load_overlay(self):
         """Loads overlay data from a json file.
@@ -466,13 +504,10 @@ def _load_overlay(self):
         """
         filename = os.path.join(CUCKOO_ROOT, "data", "signature_overlay.json")
 
-        try:
+        with suppress(IOError):
             with open(filename) as fh:
                 odata = json.load(fh)
                 return odata
-        except IOError:
-            pass
-
         return {}
 
     def _apply_overlay(self, signature, overlay):
@@ -490,17 +525,16 @@ def _check_signature_version(self, current):
         # Since signatures can hardcode some values or checks that might
         # become obsolete in future versions or that might already be obsolete,
         # I need to match its requirements with the running version of Cuckoo.
-        version = CUCKOO_VERSION.split("-")[0]
+        version = CUCKOO_VERSION.split("-", 1)[0]
+        sandbox_version = Version(version)
 
-        # If provided, check the minimum working Cuckoo version for this
-        # signature.
+        # If provided, check the minimum working Cuckoo version for this signature.
         if current.minimum:
             try:
-                # If the running Cuckoo is older than the required minimum
-                # version, skip this signature.
-                if StrictVersion(version) < StrictVersion(current.minimum.split("-")[0]):
+                # If the running Cuckoo is older than the required minimum version, skip this signature.
+                if sandbox_version < Version(current.minimum.split("-", 1)[0]):
                     log.debug(
-                        "You are running an older incompatible version " 'of Cuckoo, the signature "%s" requires ' "minimum version %s",
+                        'You are running an older incompatible version of Cuckoo, the signature "%s" requires minimum version %s',
                         current.name,
                         current.minimum,
                     )
@@ -509,15 +543,13 @@ def _check_signature_version(self, current):
                 log.debug("Wrong minor version number in signature %s", current.name)
                 return None
 
-        # If provided, check the maximum working Cuckoo version for this
-        # signature.
+        # If provided, check the maximum working Cuckoo version for this  signature.
         if current.maximum:
             try:
-                # If the running Cuckoo is newer than the required maximum
-                # version, skip this signature.
-                if StrictVersion(version) > StrictVersion(current.maximum.split("-")[0]):
+                # If the running Cuckoo is newer than the required maximum version, skip this signature.
+                if sandbox_version > Version(current.maximum.split("-", 1)[0]):
                     log.debug(
-                        "You are running a newer incompatible version " 'of Cuckoo, the signature "%s" requires ' "maximum version %s",
+                        'You are running a newer incompatible version of Cuckoo, the signature "%s" requires maximum version %s',
                         current.name,
                         current.maximum,
                     )
@@ -528,6 +560,21 @@ def _check_signature_version(self, current):
 
         return True
 
+    def _check_signature_platform(self, signature):
+        module = inspect.getmodule(signature).__name__
+        platform = self.task.get("platform") or ""
+
+        if platform in module:
+            return True
+
+        if ".all." in module:
+            return True
+
+        if "custom" in module:
+            return True
+
+        return False
+
     def process(self, signature):
         """Run a signature.
         @param signature: signature to run.
@@ -537,140 +584,139 @@ def process(self, signature):
         if not self.results:
             return
 
-        # Initialize the current signature.
-        try:
-            current = signature(self.results)
-        except:
-            log.exception("Failed to load signature " '"{0}":'.format(signature))
-            return
-
-        # If the signature is disabled, skip it.
-        if not current.enabled:
-            return None
-
-        if not self._check_signature_version(current):
-            return None
-
-        log.debug('Running signature "%s"', current.name)
+        # Give it path to the analysis results.
+        signature.set_path(self.analysis_path)
+        log.debug('Running signature "%s"', signature.name)
 
         try:
             # Run the signature and if it gets matched, extract key information
             # from it and append it to the results container.
-            pretime = datetime.now()
-            data = current.run()
-            posttime = datetime.now()
-            timediff = posttime - pretime
+            pretime = timeit.default_timer()
+            data = signature.run()
+            timediff = timeit.default_timer() - pretime
             self.results["statistics"]["signatures"].append(
-                {"name": current.name, "time": float("%d.%03d" % (timediff.seconds, timediff.microseconds / 1000)),}
+                {
+                    "name": signature.name,
+                    "time": round(timediff, 3),
+                }
             )
 
             if data:
-                log.debug('Analysis matched signature "%s"', current.name)
+                log.debug('Analysis matched signature "%s"', signature.name)
                 # Return information on the matched signature.
-                return current.as_result()
+                return signature.as_result()
+        except (KeyError, TypeError, AttributeError) as e:
+            log.debug('Failed to run signature "%s": %s', signature.name, e)
         except NotImplementedError:
             return None
-        except:
-            log.exception('Failed to run signature "%s":', current.name)
+        except Exception as e:
+            log.exception('Failed to run signature "%s": %s', signature.name, e)
 
         return None
 
-    def run(self):
-        """Run evented signatures."""
+    def run(self, test_signature: str = False):
+        """Run evented signatures.
+        test_signature: signature name, Ex: cape_detected_threat, to test unique signature
+        """
+
+        if not self.cfg_processing.detections.behavior:
+            return
+
         # This will contain all the matched signatures.
         matched = []
         stats = {}
 
-        complete_list = list_plugins(group="signatures") or []
-        evented_list = list()
-        try:
-            evented_list = [
-                sig(self.results)
-                for sig in complete_list
-                if sig.enabled
-                and sig.evented
-                and self._check_signature_version(sig)
-                and (not sig.filter_analysistypes or self.results["target"]["category"] in sig.filter_analysistypes)
-            ]
-        except Exception as e:
-            print(e)
-        overlay = self._load_overlay()
-        log.debug("Applying signature overlays for signatures: %s", ", ".join(list(overlay.keys())))
-        for signature in complete_list + evented_list:
-            self._apply_overlay(signature, overlay)
-
-        if evented_list and "behavior" in self.results:
-            log.debug("Running %u evented signatures", len(evented_list))
-            for sig in evented_list:
-                stats[sig.name] = timedelta()
-                if sig == evented_list[-1]:
+        if test_signature:
+            self.evented_list = next((sig for sig in self.evented_list if sig.name == test_signature), [])
+            self.non_evented_list = next((sig for sig in self.non_evented_list if sig.name == test_signature), [])
+            if not isinstance(self.evented_list, list):
+                self.evented_list = [self.evented_list]
+            if not isinstance(self.non_evented_list, list):
+                self.non_evented_list = [self.non_evented_list]
+
+        if self.evented_list and "behavior" in self.results:
+            log.debug("Running %d evented signatures", len(self.evented_list))
+            for sig in self.evented_list:
+                stats[sig.name] = 0
+                if sig == self.evented_list[-1]:
                     log.debug("\t `-- %s", sig.name)
                 else:
                     log.debug("\t |-- %s", sig.name)
 
             # Iterate calls and tell interested signatures about them.
+            evented_set = set(self.evented_list)
             for proc in self.results["behavior"]["processes"]:
-                for call in proc["calls"]:
-                    # Loop through active evented signatures.
-                    for sig in evented_list:
-                        # Skip current call if it doesn't match the filters (if any).
-                        if sig.filter_processnames and not proc["process_name"] in sig.filter_processnames:
-                            continue
-                        if sig.filter_apinames and not call["api"] in sig.filter_apinames:
-                            continue
-                        if sig.filter_categories and not call["category"] in sig.filter_categories:
-                            continue
+                process_name = proc["process_name"]
+                process_id = proc["process_id"]
+                calls = proc.get("calls", [])
+                sigs = evented_set.intersection(
+                    self.call_for_processname.get("any", set()).union(self.call_for_processname.get(process_name, set()))
+                )
 
-                        result = None
+                for idx, call in enumerate(calls):
+                    api = call.get("api")
+                    # Build interested signatures
+                    cat = call.get("category")
+                    call_sigs = sigs.intersection(self.call_for_api.get(api, set()).union(self.call_for_api.get("any", set())))
+                    call_sigs = call_sigs.intersection(self.call_for_cat.get(cat, set()).union(self.call_for_cat.get("any", set())))
+                    call_sigs.update(evented_set.intersection(self.call_always))
+
+                    for sig in call_sigs:
+                        # Setting signature attributes per call
+                        sig.cid = idx
+                        sig.call = call
+                        sig.pid = process_id
+
+                        if sig.matched:
+                            continue
                         try:
-                            pretime = datetime.now()
+                            pretime = timeit.default_timer()
                             result = sig.on_call(call, proc)
-                            posttime = datetime.now()
-                            timediff = posttime - pretime
+                            timediff = timeit.default_timer() - pretime
+                            if sig.name not in stats:
+                                stats[sig.name] = 0
                             stats[sig.name] += timediff
                         except NotImplementedError:
                             result = False
                         except Exception as e:
-                            log.exception("Failed to run signature {}: {}".format(sig.name, e))
+                            log.exception("Failed to run signature %s: %s", sig.name, e)
                             result = False
 
-                        # If the signature returns None we can carry on, the
-                        # condition was not matched.
-                        if result is None:
-                            continue
-
-                        # On True, the signature is matched.
-                        if result is True:
-                            log.debug('Analysis matched signature "%s"', sig.name)
-                            matched.append(sig.as_result())
-                            if sig in complete_list:
-                                complete_list.remove(sig)
-
-                        # Either True or False, we don't need to check this sig anymore.
-                        evented_list.remove(sig)
-                        del sig
+                        if result:
+                            if hasattr(sig, "on_complete"):
+                                log.debug("Signature: %s is matched! on_complete won't be executed!", sig.name)
+                            sig.matched = True
 
             # Call the stop method on all remaining instances.
-            for sig in evented_list:
+            for sig in self.evented_list:
+                if sig.matched:
+                    continue
+
+                # Give it the path to the analysis results folder.
+                sig.set_path(self.analysis_path)
                 try:
-                    pretime = datetime.now()
+                    pretime = timeit.default_timer()
                     result = sig.on_complete()
-                    posttime = datetime.now()
-                    timediff = posttime - pretime
+                    timediff = timeit.default_timer() - pretime
                     stats[sig.name] += timediff
                 except NotImplementedError:
                     continue
-                except:
-                    log.exception('Failed run on_complete() method for signature "%s":', sig.name)
+                except (KeyError, TypeError, AttributeError) as e:
+                    log.debug('Failed to run signature "%s": %s', sig.name, e)
+                except Exception as e:
+                    log.exception('Failed run on_complete() method for signature "%s": %s', sig.name, e)
                     continue
                 else:
-                    if result is True:
-                        if hasattr(sig, "ttp"):
-                            [self.ttps.setdefault(ttp, sig.name) for ttp in sig.ttp]
-                        log.debug('Analysis matched signature "%s"', sig.name)
+                    if result and not sig.matched:
                         matched.append(sig.as_result())
-                        if sig in complete_list:
-                            complete_list.remove(sig)
+                        if hasattr(sig, "ttps"):
+                            [
+                                self.ttps.append({"ttp": ttp, "signature": sig.name})
+                                for ttp in sig.ttps
+                                if {"ttp": ttp, "signature": sig.name} not in self.ttps
+                            ]
+                        if hasattr(sig, "mbcs"):
+                            self.mbcs[sig.name] = sig.mbcs
 
         # Link this into the results already at this point, so non-evented signatures can use it
         self.results["signatures"] = matched
@@ -678,51 +724,83 @@ def run(self):
         # Add in statistics for evented signatures that took at least some time
         for key, value in stats.items():
             if value:
-                self.results["statistics"]["signatures"].append(
-                    {"name": key, "time": float("%d.%03d" % (value.seconds, value.microseconds / 1000)),}
-                )
+                self.results["statistics"]["signatures"].append({"name": key, "time": round(timediff, 3)})
         # Compat loop for old-style (non evented) signatures.
-        if complete_list:
-            complete_list.sort(key=lambda sig: sig.order)
+        if self.non_evented_list:
+            if hasattr(self.non_evented_list, "sort"):
+                self.non_evented_list.sort(key=lambda sig: sig.order)
+            else:
+                # for testing single signature with process.py
+                self.non_evented_list = [self.non_evented_list]
             log.debug("Running non-evented signatures")
 
-            for signature in complete_list:
-                if not signature.filter_analysistypes or self.results["target"]["category"] in signature.filter_analysistypes:
+            for signature in self.non_evented_list:
+                if (
+                    not signature.filter_analysistypes
+                    or self.results.get("target", {}).get("category") in signature.filter_analysistypes
+                ):
                     match = self.process(signature)
                     # If the signature is matched, add it to the list.
-                    if match:
-                        if hasattr(signature, "ttp"):
-                            [self.ttps.setdefault(ttp, signature.name) for ttp in signature.ttp]
-                        matched.append(match)
+                    if match and not signature.matched:
+                        if hasattr(signature, "ttps"):
+                            [
+                                self.ttps.append({"ttp": ttp, "signature": signature.name})
+                                for ttp in signature.ttps
+                                if {"ttp": ttp, "signature": signature.name} not in self.ttps
+                            ]
+                        if hasattr(signature, "mbcs"):
+                            self.mbcs[signature.name] = signature.mbcs
+                        signature.matched = True
+
+        for signature in self.signatures:
+            if not signature.matched:
+                continue
+            log.debug('Analysis matched signature "%s"', signature.name)
+            signature.matched = True
+            matched.append(signature.as_result())
 
         # Sort the matched signatures by their severity level.
         matched.sort(key=lambda key: key["severity"])
 
-        # Tweak later as needed
-        malscore = 0.0
-        for match in matched:
-            if match["severity"] == 1:
-                malscore += match["weight"] * 0.5 * (match["confidence"] / 100.0)
-            else:
-                malscore += match["weight"] * (match["severity"] - 1) * (match["confidence"] / 100.0)
-        if malscore > 10.0:
-            malscore = 10.0
-        if malscore < 0.0:
-            malscore = 0.0
+        malscore, malstatus = calc_scoring(self.results, matched)
 
         self.results["malscore"] = malscore
-        self.results["ttps"] = self.ttps
+        self.results["ttps"] = mapTTP(self.ttps, self.mbcs)
+        self.results["malstatus"] = malstatus
 
         # Make a best effort detection of malware family name (can be updated later by re-processing the analysis)
-        if self.results.get("malfamily_tag", "") != "Yara" and self.cfg_processing.detections.enabled and self.cfg_processing.detections.behavior:
+        if (
+            self.results.get("malfamily_tag", "") != "Yara"
+            and self.cfg_processing.detections.enabled
+            and self.cfg_processing.detections.behavior
+        ):
             for match in matched:
-                if "families" in match and match["families"]:
-                    self.results["detections"] = match["families"][0].title()
-                    self.results["malfamily_tag"] = "Behavior"
+                if match.get("families"):
+                    add_family_detection(self.results, match["families"][0], "Behavior", "")
                     break
 
 
 class RunReporting:
+    """
+    Reporting Engine.
+    Engine and passes it over to the reporting modules before executing them.
+    Attributes:
+        task (dict): The analysis task object.
+        results (dict): The analysis results dictionary.
+        analysis_path (str): The path to the analysis results folder.
+        cfg (dict): The reporting configuration.
+        reprocess (bool): Flag indicating if reprocessing is required.
+        reporting_errors (int): Counter for reporting module errors.
+    Methods:
+        process(module):
+            Runs a single reporting module.
+            Args:
+                module (module): The reporting module to run.
+        run():
+            Generates all reports.
+            Returns:
+                int: A count of the reporting module errors.
+    """
     """Reporting Engine.
 
     This class handles the loading and execution of the enabled reporting
@@ -739,31 +817,34 @@ def __init__(self, task, results, reprocess=False):
 
         # remove unwanted/duplicate information from reporting
         for process in results["behavior"]["processes"]:
+            # Reprocessing and Behavior set from json file
+            if isinstance(process["calls"], list) and type(process["calls"]).__name__ != "ParseProcessLog":
+                break
             process["calls"].begin_reporting()
             # required to convert object to list
             process["calls"] = list(process["calls"])
 
         self.results = results
         self.analysis_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(task["id"]))
-        self.cfg = Config("reporting")
+        self.cfg = reporting_cfg
         self.reprocess = reprocess
+        self.reporting_errors = 0
 
     def process(self, module):
         """Run a single reporting module.
         @param module: reporting module.
-        @param results: results results from analysis.
         """
         # Initialize current reporting module.
         try:
             current = module()
-        except:
-            log.exception('Failed to load the reporting module "{0}":'.format(module))
+        except Exception as e:
+            log.exception('Failed to load the reporting module "%s": %s', module, e)
             return
 
         # Extract the module name.
         module_name = inspect.getmodule(current).__name__
         if "." in module_name:
-            module_name = module_name.rsplit(".", 1)[1]
+            module_name = module_name.rsplit(".", 1)[-1]
 
         try:
             options = self.cfg.get(module_name)
@@ -779,38 +860,37 @@ def process(self, module):
         current.set_path(self.analysis_path)
         # Give it the analysis task object.
         current.set_task(self.task)
-        # Give it the the relevant reporting.conf section.
+        # Give it the relevant reporting.conf section.
         current.set_options(options)
         # Load the content of the analysis.conf file.
-        current.cfg = Config(cfg=current.conf_path)
+        current.cfg = AnalysisConfig(current.conf_path)
 
         try:
             log.debug('Executing reporting module "%s"', current.__class__.__name__)
-            pretime = datetime.now()
-
-            if module_name == "submitCAPE" and self.reprocess:
-                tasks = db.list_parents(self.task["id"])
-                if tasks:
-                    self.results["CAPE_children"] = tasks
-                return
-            else:
-                current.run(self.results)
-            posttime = datetime.now()
-            timediff = posttime - pretime
+            pretime = timeit.default_timer()
+            current.run(self.results)
+            timediff = timeit.default_timer() - pretime
             self.results["statistics"]["reporting"].append(
-                {"name": current.__class__.__name__, "time": float("%d.%03d" % (timediff.seconds, timediff.microseconds / 1000)),}
+                {
+                    "name": current.__class__.__name__,
+                    "time": round(timediff, 3),
+                }
             )
 
         except CuckooDependencyError as e:
             log.warning('The reporting module "%s" has missing dependencies: %s', current.__class__.__name__, e)
+            self.reporting_errors += 1
         except CuckooReportError as e:
             log.warning('The reporting module "%s" returned the following error: %s', current.__class__.__name__, e)
-        except:
-            log.exception('Failed to run the reporting module "%s":', current.__class__.__name__)
+            self.reporting_errors += 1
+        except Exception as e:
+            log.exception('Failed to run the reporting module "%s": %s', current.__class__.__name__, e)
+            self.reporting_errors += 1
 
     def run(self):
         """Generates all reports.
-        @raise CuckooReportError: if a report module fails.
+
+        @return a count of the reporting module errors.
         """
         # In every reporting module you can specify a numeric value that
         # represents at which position that module should be executed among
@@ -828,9 +908,31 @@ def run(self):
                 self.process(module)
         else:
             log.info("No reporting modules loaded")
+        return self.reporting_errors
 
 
-class GetFeeds(object):
+class GetFeeds:
+    """
+    Feed Download and Parsing Engine
+
+    It then saves the parsed feed data to CUCKOO_ROOT/feeds/.
+
+    Attributes:
+        results (dict): A dictionary to store the results of the feed processing.
+
+    Methods:
+        process(feed):
+            Processes a feed module by downloading data, modifying, and parsing it.
+            Args:
+                feed: The feed module to update and process.
+            Returns:
+                None
+
+        run():
+            Runs all enabled feed modules.
+            Returns:
+                None
+    """
     """Feed Download and Parsing Engine
 
     This class handles the downloading and modification of feed modules.
@@ -839,7 +941,7 @@ class GetFeeds(object):
 
     def __init__(self, results):
         self.results = results
-        self.results["feeds"] = dict()
+        self.results["feeds"] = {}
 
     def process(self, feed):
         """Process modules with either downloaded data directly, or by
@@ -849,19 +951,19 @@ def process(self, feed):
 
         try:
             current = feed()
-            log.debug('Loading feed "{0}"'.format(current.name))
-        except:
-            log.exception('Failed to load feed "{0}":'.format(current.name))
+            log.debug('Loading feed "%s"', current.name)
+        except Exception as e:
+            log.exception('Failed to load feed "%s": %s', current.name, e)
             return
 
         if current.update():
             try:
                 current.modify()
                 current.run(modified=True)
-                log.debug('"{0}" has been updated'.format(current.name))
+                log.debug('"%s" has been updated', current.name)
             except NotImplementedError:
                 current.run(modified=False)
-            except:
+            except Exception:
                 log.exception('Failed to run feed "%s"', current.name)
                 return
 
@@ -878,4 +980,4 @@ def run(self):
                 # If the feed is disabled, skip it.
                 if feed.enabled:
                     log.debug('Running feed module "%s"', feed.name)
-                    runit = self.process(feed)
+                    self.process(feed)
diff --git a/lib/cuckoo/core/resultserver.py b/lib/cuckoo/core/resultserver.py
index 8493dc17a9a..ae560bc050b 100644
--- a/lib/cuckoo/core/resultserver.py
+++ b/lib/cuckoo/core/resultserver.py
@@ -2,39 +2,43 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-from __future__ import print_function
-import os
-import json
-import socket
-import select
 import errno
+import json
 import logging
-import datetime
-import socketserver
-from threading import Event, Thread, Lock
+import os
+import socket
+import struct
+from contextlib import suppress
+from threading import Lock, Thread
+
+HAVE_BSON = False
+with suppress(ImportError):
+    import bson
+
+    HAVE_BSON = True
 
 import gevent.pool
 import gevent.server
 import gevent.socket
 
+from lib.cuckoo.common.abstracts import ProtocolHandler
+
 # https://github.com/cuckoosandbox/cuckoo/blob/13cbe0d9e457be3673304533043e992ead1ea9b2/cuckoo/core/resultserver.py#L9
 from lib.cuckoo.common.config import Config
-from lib.cuckoo.common.files import open_exclusive
 from lib.cuckoo.common.constants import CUCKOO_ROOT
-from lib.cuckoo.common.exceptions import CuckooOperationalError
-from lib.cuckoo.common.exceptions import CuckooCriticalError
-from lib.cuckoo.common.exceptions import CuckooResultError
+from lib.cuckoo.common.exceptions import CuckooCriticalError, CuckooOperationalError
+from lib.cuckoo.common.files import open_exclusive, open_inclusive
+from lib.cuckoo.common.path_utils import path_exists, path_get_filename
 
 # from lib.cuckoo.common.netlog import BsonParser
-from lib.cuckoo.common.utils import create_folder, Singleton, logtime, sanitize_pathname
-from lib.cuckoo.common.abstracts import ProtocolHandler
+from lib.cuckoo.common.utils import Singleton, create_folder, default_converter, load_categories
 from lib.cuckoo.core.log import task_log_start, task_log_stop
-import six
 
-log = logging.getLogger()
+log = logging.getLogger(__name__)
 cfg = Config()
 
+_, categories_need_VM = load_categories()
+
 # Maximum line length to read for netlog messages, to avoid memory exhaustion
 MAX_NETLOG_LINE = 4 * 1024
 
@@ -51,18 +55,21 @@
 RESULT_UPLOADABLE = (
     b"CAPE",
     b"aux",
-    b"buffer",
+    b"aux/amsi",
+    b"browser",
     b"curtain",
     b"debugger",
-    b"tlsdump",
-    b"extracted",
+    b"evtx",
     b"files",
+    b"htmldump",
     b"memory",
     b"procdump",
     b"shots",
     b"sysmon",
-    b"stap",
+    b"tlsdump",
+    b"tracee",
 )
+
 RESULT_DIRECTORIES = RESULT_UPLOADABLE + (b"reports", b"logs")
 
 
@@ -71,7 +78,7 @@ def netlog_sanitize_fname(path):
     path = path.replace(b"\\", b"/")
     dir_part, name = os.path.split(path)
     if dir_part not in RESULT_DIRECTORIES:
-        raise CuckooOperationalError("Netlog client requested banned path: %r" % path)
+        raise CuckooOperationalError(f"Netlog client requested banned path: {path}")
     if any(c in BANNED_PATH_CHARS for c in name):
         for c in BANNED_PATH_CHARS:
             path.replace(bytes([c]), b"X")
@@ -83,7 +90,7 @@ class Disconnect(Exception):
     pass
 
 
-class HandlerContext(object):
+class HandlerContext:
     """Holds context for protocol handlers.
     Can safely be cancelled from another thread, though in practice this will
     not occur often -- usually the connection between VM and the ResultServer
@@ -99,7 +106,7 @@ def __init__(self, task_id, storagepath, sock):
         self.buf = b""
 
     def __repr__(self):
-        return "<Context for %s>" % self.command
+        return f"<Context for {self.command}>"
 
     def cancel(self):
         """Cancel this context; gevent might complain about this with an
@@ -111,9 +118,11 @@ def cancel(self):
 
     def read(self):
         try:
+            # Test
+            self.sock.settimeout(None)
             return self.sock.recv(16384)
         except socket.timeout as e:
-            print("Do we need to fix it?", e)
+            print(f"Do we need to fix it?. <Context for {self.command}>", e)
             return b""
         except socket.error as e:
             if e.errno == errno.EBADF:
@@ -121,7 +130,7 @@ def read(self):
 
             if e.errno != errno.ECONNRESET:
                 raise
-            log.debug("Task #%s had connection reset for %r, error: %s", self.task_id, self, str(e))
+            log.debug("Task #%s had %s for %s", self.task_id, e.strerror.lower(), self)
             return b""
         except Exception as e:
             print(e)
@@ -158,8 +167,17 @@ def copy_to_fd(self, fd, max_size=None):
             fd.write(buf)
         fd.flush()
 
+    def discard(self):
+        self.drain_buffer()
+        while _ := self.read():
+            pass
+
+    def __del__(self):
+        if self.sock:
+            self.sock.close()
+
 
-class WriteLimiter(object):
+class WriteLimiter:
     def __init__(self, fd, remain):
         self.fd = fd
         self.remain = remain
@@ -168,18 +186,25 @@ def __init__(self, fd, remain):
     def write(self, buf):
         size = len(buf)
         write = min(size, self.remain)
-        if write:
-            self.fd.write(buf[:write])
-            self.remain -= write
-        if size and size != write:
-            if not self.warned:
-                log.warning("Uploaded file length larger than upload_max_size, " "stopping upload.")
-                self.fd.write(b"... (truncated)")
-                self.warned = True
+        try:
+            if write:
+                self.fd.write(buf[:write])
+                self.remain -= write
+            if size and size != write:
+                if not self.warned:
+                    log.warning("Uploaded file length larger than upload_max_size, stopping upload")
+                    self.fd.write(b"... (truncated)")
+                    self.warned = True
+        except Exception as e:
+            log.debug("Failed to upload file due to '%s'", e)
 
     def flush(self):
         self.fd.flush()
 
+    def __del__(self):
+        if self.fd:
+            self.fd.close()
+
 
 class FileUpload(ProtocolHandler):
     def init(self):
@@ -188,36 +213,53 @@ def init(self):
         self.fd = None
         self.filelog = os.path.join(self.handler.storagepath, "files.json")
 
+    def __del__(self):
+        if self.fd:
+            self.fd.close()
+
     def handle(self):
         # Read until newline for file path, e.g.,
         # shots/0001.jpg or files/9498687557/libcurl-4.dll.bin
         self.handler.sock.settimeout(30)
         dump_path = netlog_sanitize_fname(self.handler.read_newline())
+        if cfg.cuckoo.machinery_screenshots and dump_path.startswith(b"shots/"):
+            log.debug("Task #%s: discarding screenshot; machinery screenshots enabled", self.task_id)
+            self.handler.discard()
+            return
 
         if self.version and self.version >= 2:
             # NB: filepath is only used as metadata
             filepath = self.handler.read_newline()
             pids = list(map(int, self.handler.read_newline().split()))
+            ppids = list(map(int, self.handler.read_newline().split()))
             metadata = self.handler.read_newline()
             category = self.handler.read_newline()
             duplicated = int(self.handler.read_newline()) or 0
         else:
-            filepath, pids, metadata, category, duplicated = None, [], b"", b"", False
+            filepath, pids, ppids, metadata, category, duplicated = None, [], [], b"", b"", False
 
-        log.debug("Task #%s: File upload for %r", self.task_id, dump_path)
+        log.debug("Task #%s: Uploading file %s", self.task_id, dump_path.decode())
         if not duplicated:
-            file_path = os.path.join(self.storagepath, dump_path.decode("utf-8"))
+            file_path = os.path.join(self.storagepath, dump_path.decode())
 
             try:
-                self.fd = open_exclusive(file_path)
+                if file_path.endswith("_script.log"):
+                    self.fd = open_inclusive(file_path)
+                elif not path_exists(file_path):
+                    # open_exclusive will fail if file_path already exists
+                    self.fd = open_exclusive(file_path)
             except OSError as e:
-                log.debug("File upload error for %r (task #%s)", dump_path, self.task_id)
+                log.debug("File upload error for %s (task #%s)", dump_path, self.task_id)
                 if e.errno == errno.EEXIST:
-                    raise CuckooOperationalError("Analyzer for task #%s tried to " "overwrite an existing file" % self.task_id)
+                    raise CuckooOperationalError(
+                        "Task #%s: Analyzer tried to overwrite an existing file: %s" % (self.task_id, file_path)
+                    )
                 raise
         # ToDo we need Windows path
         # filter screens/curtain/sysmon
-        if not dump_path.startswith((b"shots/", b"curtain/", b"aux/", b"sysmon/", b"debugger/", b"tlsdump/")):
+        if not dump_path.startswith(
+            (b"shots/", b"curtain/", b"aux/", b"sysmon/", b"debugger/", b"tlsdump/", b"evtx", b"htmldump/")
+        ):
             # Append-writes are atomic
             with open(self.filelog, "a") as f:
                 print(
@@ -226,8 +268,9 @@ def handle(self):
                             "path": dump_path.decode("utf-8", "replace"),
                             "filepath": filepath.decode("utf-8", "replace") if filepath else "",
                             "pids": pids,
+                            "ppids": ppids,
                             "metadata": metadata.decode("utf-8", "replace"),
-                            "category": category.decode("utf-8") if category in (b"CAPE", b"files", b"memory", b"procdump") else "",
+                            "category": category.decode() if category in (b"CAPE", b"files", b"memory", b"procdump") else "",
                         },
                         ensure_ascii=False,
                     ),
@@ -238,8 +281,17 @@ def handle(self):
             self.handler.sock.settimeout(None)
             try:
                 return self.handler.copy_to_fd(self.fd, self.upload_max_size)
-            finally:
-                log.debug("Task #%s uploaded file length: %s", self.task_id, self.fd.tell())
+            except Exception as e:
+                if self.fd:
+                    log.debug(
+                        "Task #%s: Failed to uploaded file %s of length %s due to '%s'",
+                        self.task_id,
+                        dump_path.decode(),
+                        self.fd.tell(),
+                        e,
+                    )
+                else:
+                    log.debug("Task #%s: Failed to uploaded file %s due to '%s'", self.task_id, dump_path.decode(), e)
 
 
 class LogHandler(ProtocolHandler):
@@ -248,35 +300,130 @@ class LogHandler(ProtocolHandler):
     def init(self):
         self.logpath = os.path.join(self.handler.storagepath, "analysis.log")
         try:
-            self.fd = open_exclusive(self.logpath, bufsize=1)
+            self.fd = open_exclusive(self.logpath)
         except OSError:
-            log.error("Task #%s: attempted to reopen live log analysis.log.", self.task_id)
+            log.error("Task #%s: attempted to reopen live log analysis.log", self.task_id)
             return
 
-        log.debug("Task #%s: live log analysis.log initialized.", self.task_id)
+        log.debug("Task #%s: live log analysis.log initialized", self.task_id)
 
     def handle(self):
         if self.fd:
             return self.handler.copy_to_fd(self.fd)
 
+    def __del__(self):
+        if self.fd:
+            self.fd.close()
+
+TYPECONVERTERS = {"h": lambda v: f"0x{default_converter(v):08x}", "p": lambda v: f"0x{default_converter(v):08x}"}
+
+
+def check_names_for_typeinfo(arginfo):
+    argnames = [i[0] if isinstance(i, (list, tuple)) else i for i in arginfo]
+
+    converters = []
+    for i in arginfo:
+        if isinstance(i, (list, tuple)):
+            r = TYPECONVERTERS.get(i[1])
+            if not r:
+                log.debug("Analyzer sent unknown format specifier '%s'", i[1])
+                r = default_converter
+            converters.append(r)
+        else:
+            converters.append(default_converter)
+
+    return argnames, converters
+
 
 class BsonStore(ProtocolHandler):
     def init(self):
         if self.version is None:
-            log.warning("Agent is sending BSON files without PID parameter, " "you should probably update it")
+            log.warning("Agent is sending BSON files without PID parameter, you should probably update it")
             self.fd = None
             return
 
-        self.fd = open(os.path.join(self.handler.storagepath, "logs", "%d.bson" % self.version), "wb")
+        self.infomap = {}
+        self.fd = open(os.path.join(self.handler.storagepath, "logs", f"{self.version}.bson"), "wb")
+
+    def parse_message(self, buffer):
+        if not HAVE_BSON:
+            log.debug("Task #%s is sending a BSON stream for pid %d", self.task_id, self.version)
+            return
+
+        while True:
+            data = buffer[:4]
+            if not data:
+                return
+
+            blen = struct.unpack("I", data)[0]
+            data = buffer[:blen]
+            buffer = buffer[blen:]
+
+            if len(data) < blen:
+                log.debug("BsonParser lacking data")
+                return
+
+            try:
+                dec = bson.decode(data)
+            except Exception as e:
+                log.warning("BsonParser decoding problem %s on data[:50] %s", e, data[:50])
+                return
+
+            mtype = dec.get("type", "none")
+            index = dec.get("I", -1)
+
+            if mtype == "info":
+                name = dec.get("name", "NONAME")
+                arginfo = dec.get("args", [])
+                category = dec.get("category")
+
+                if not category:
+                    category = "unknown"
+
+                argnames, converters = check_names_for_typeinfo(arginfo)
+                self.infomap[index] = name, arginfo, argnames, converters, category
+
+            else:
+                if index not in self.infomap:
+                    log.warning("Got API with unknown index - monitor needs to explain first: %s", dec)
+                    return
+
+                apiname, arginfo, argnames, converters, category = self.infomap[index]
+                args = dec.get("args", [])
+
+                if len(args) != len(argnames):
+                    log.warning("Inconsistent arg count (compared to arg names) on %s: %s names %s", dec, argnames, apiname)
+                    continue
+
+                argdict = {argnames[i]: converters[i](arg) for i, arg in enumerate(args)}
+
+                if apiname == "__process__":
+                    # pid = argdict["ProcessIdentifier"]
+                    ppid = argdict["ParentProcessIdentifier"]
+                    modulepath = argdict["ModulePath"]
+                    procname = path_get_filename(modulepath)
+
+                    log.info(
+                        "Task %d: Process %d (parent %d): %s, path %s",
+                        self.task_id,
+                        self.version,
+                        ppid,
+                        procname,
+                        modulepath.decode(),
+                    )
 
     def handle(self):
         """Read a BSON stream, attempting at least basic validation, and
         log failures."""
-        log.debug("Task #%s is sending a BSON stream. For pid %d" % (self.task_id, self.version))
+        self.parse_message(self.handler.buf)
         if self.fd:
             self.handler.sock.settimeout(None)
             return self.handler.copy_to_fd(self.fd)
 
+    def __del__(self):
+        if self.fd:
+            self.fd.close()
+
 
 class GeventResultServerWorker(gevent.server.StreamServer):
     """The new ResultServer, providing a huge performance boost as well as
@@ -306,6 +453,9 @@ def __init__(self, *args, **kwargs):
 
         # Store running handlers for task_id
         self.handlers = {}
+        self.log_start_count = 0
+        self.log_stop_count = 0
+        self.task_id = None
 
     def do_run(self):
         self.serve_forever()
@@ -313,7 +463,7 @@ def do_run(self):
     def add_task(self, task_id, ipaddr):
         with self.task_mgmt_lock:
             self.tasks[ipaddr] = task_id
-            log.debug("Now tracking machine %s for task #%s", ipaddr, task_id)
+            log.debug("Task #%s: The associated machine IP is %s", task_id, ipaddr)
 
     def del_task(self, task_id, ipaddr):
         """Delete ResultServer state and abort pending RequestHandlers. Since
@@ -324,24 +474,25 @@ def del_task(self, task_id, ipaddr):
             if self.tasks.pop(ipaddr, None) is None:
                 log.warning("ResultServer did not have a task with ID %s and IP %s", task_id, ipaddr)
             else:
-                log.debug("Stopped tracking machine %s for task #%s", ipaddr, task_id)
+                log.debug("Task #%s: Stopped tracking machine %s", task_id, ipaddr)
             ctxs = self.handlers.pop(task_id, set())
             for ctx in ctxs:
-                log.debug("Cancel %s for task %r", ctx, task_id)
+                log.debug("Task #%s: Cancel %s", task_id, ctx)
                 ctx.cancel()
+            # ToDo just reinforce cleanup
+            task_log_stop(task_id)
 
-    def create_folders(self):
-        folders = ("CAPE", "aux", "curtain", "files", "logs", "memory", "shots", "sysmon", "stap", "procdump", "debugger", "tlsdump")
+        task_log_stop(task_id)
 
-        for folder in folders:
+    def create_folders(self):
+        for folder in list(RESULT_UPLOADABLE) + [b"logs"]:
             try:
-                create_folder(self.storagepath, folder=folder)
+                create_folder(self.storagepath, folder=folder.decode())
             except Exception as e:
-                log.error(e, exc_info=True)
+                log.exception(e)
             # ToDo
             # except CuckooOperationalError as e:
-            #    print(e)
-            #    log.error("Unable to create folder %s" % folder)
+            #    log.error("Unable to create folder %s", folder)
             #    return False
 
     def handle(self, sock, addr):
@@ -355,6 +506,7 @@ def handle(self, sock, addr):
                 log.warning("ResultServer did not have a task for IP %s", ipaddr)
                 return
 
+        self.task_id = task_id
         self.storagepath = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(task_id))
 
         # Create all missing folders for this analysis.
@@ -362,10 +514,13 @@ def handle(self, sock, addr):
 
         ctx = HandlerContext(task_id, self.storagepath, sock)
         task_log_start(task_id)
+        self.log_start_count += 1
         try:
             try:
+                log.debug("Task #%s: Negotiation started", task_id)
                 protocol = self.negotiate_protocol(task_id, ctx)
             except EOFError:
+                log.debug("Task #%s: Negotiation failed on start", task_id)
                 return
 
             # Registering the context allows us to abort the handler by
@@ -376,25 +531,32 @@ def handle(self, sock, addr):
                 # protocol and a different task for that IP address may have
                 # been registered
                 if self.tasks.get(ipaddr) != task_id:
-                    log.warning("Task #%s for IP %s was cancelled during " "negotiation", task_id, ipaddr)
+                    log.warning("Task #%s for IP %s was cancelled during negotiation", task_id, ipaddr)
+                    log.debug("Task #%s: Negotiation failed inside task_mgmt_lock manager", task_id)
                     return
                 s = self.handlers.setdefault(task_id, set())
                 s.add(ctx)
 
             try:
                 with protocol:
+                    log.debug("Task #%s: Negotiation succeeded", task_id)
                     protocol.handle()
+                    log.debug("Task #%s: Negotiation succeeded handled", task_id)
             except CuckooOperationalError as e:
-                log.error(e, exc_info=True)
+                log.exception(e)
             finally:
                 with self.task_mgmt_lock:
                     s.discard(ctx)
                 ctx.cancel()
                 if ctx.buf:
                     # This is usually not a good sign
-                    log.warning("Task #%s with protocol %s has unprocessed " "data before getting disconnected", task_id, protocol)
+                    log.warning("Task #%s with protocol %s has unprocessed data before getting disconnected", task_id, protocol)
         finally:
+            log.debug("Task #%s: Negotiation finished", task_id)
             task_log_stop(task_id)
+            self.log_stop_count += 1
+
+        log.debug("Task #%s: Connection closed. Start count %d, stop count %d", task_id, self.log_start_count, self.log_stop_count)
 
     def negotiate_protocol(self, task_id, ctx):
         header = ctx.read_newline()
@@ -405,7 +567,7 @@ def negotiate_protocol(self, task_id, ctx):
             command, version = header, None
         klass = self.commands.get(command)
         if not klass:
-            log.warning("Task #%s: unknown netlog protocol requested (%r), " "terminating connection.", task_id, command)
+            log.warning("Task #%s: unknown netlog protocol requested (%s), terminating connection", task_id, command)
             return
         ctx.command = command
         return klass(task_id, ctx, version)
@@ -415,6 +577,9 @@ class ResultServer(metaclass=Singleton):
     """Manager for the ResultServer worker and task state."""
 
     def __init__(self):
+        if not categories_need_VM:
+            return
+
         ip = cfg.resultserver.ip
         port = cfg.resultserver.port
         pool_size = cfg.resultserver.pool_size
@@ -426,18 +591,25 @@ def __init__(self):
             sock.bind((ip, port))
         except (OSError, socket.error) as e:
             if e.errno == errno.EADDRINUSE:
-                raise CuckooCriticalError("Cannot bind ResultServer on port %d " "because it was in use, bailing." % port)
+                raise CuckooCriticalError(
+                    f"Cannot bind ResultServer on port {port} because it was in use, bailing"
+                    "This might happen because CAPE is already running in the background as cape.service"
+                    "sudo systemctl stop cape.service"
+                    "to stop the background service. You can also run the just use the background service without starting it again here in the terminal."
+                )
             elif e.errno == errno.EADDRNOTAVAIL:
                 raise CuckooCriticalError(
-                    "Unable to bind ResultServer on %s:%s %s. This "
+                    f"Unable to bind ResultServer on {ip}:{port} {e}. This "
                     "usually happens when you start Cuckoo without "
                     "bringing up the virtual interface associated with "
                     "the ResultServer IP address. Please refer to "
                     "https://cuckoo.sh/docs/faq/#troubles-problem "
-                    "for more information." % (ip, port, e)
+                    "for more information"
+                    "One more reason this might happen is if you don't correctly set the IP of the resultserver in cuckoo.conf."
+                    "Make sure the resultserver IP is set to the host IP"
                 )
             else:
-                raise CuckooCriticalError("Unable to bind ResultServer on %s:%s: %s" % (ip, port, e))
+                raise CuckooCriticalError(f"Unable to bind ResultServer on {ip}:{port} {e}")
 
         # We allow user to specify port 0 to get a random port, report it back
         # here
diff --git a/lib/cuckoo/core/rooter.py b/lib/cuckoo/core/rooter.py
index ecbefa99504..0afbf2d7ca7 100644
--- a/lib/cuckoo/core/rooter.py
+++ b/lib/cuckoo/core/rooter.py
@@ -3,37 +3,33 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-import json
 import logging
-import os.path
-import socket
-import tempfile
-import threading
+from contextlib import suppress
 
 from lib.cuckoo.common.config import Config
+from lib.cuckoo.common.socket_utils import send_socket_command
 
 cfg = Config()
 router_cfg = Config("routing")
 log = logging.getLogger(__name__)
-unixpath = tempfile.NamedTemporaryFile(mode="w+", delete=True)  # tempfile.mktemp()
-lock = threading.Lock()
 
-vpns = dict()
-socks5s = dict()
+vpns = {}
+socks5s = {}
 
 
 def _load_socks5_operational():
-
-    socks5s = dict()
+    socks5s = {}
 
     if not router_cfg.socks5.enabled:
         return socks5s
 
     try:
-        from socks5man.manager import Manager
         from socks5man.exceptions import Socks5manDatabaseError
-    except (ImportError, OSError) as e:
+        from socks5man.manager import Manager
+    except (ImportError, OSError):
+        return socks5s
+    except Exception as e:
+        log.error(e)
         return socks5s
 
     try:
@@ -46,6 +42,12 @@ def _load_socks5_operational():
                 continue
 
             socks5s[name] = socks5.to_dict()
+
+            # decode utf-8 socks5man database data
+            for k, v in socks5s[name].items():
+                if isinstance(v, (bytes, bytearray)):
+                    with suppress(UnicodeDecodeError, AttributeError):
+                        socks5s[name][k] = v.decode()
     except Socks5manDatabaseError as e:
         print(e, "you migth have an outdated database at $HOME/.socks5man")
 
@@ -53,36 +55,7 @@ def _load_socks5_operational():
 
 
 def rooter(command, *args, **kwargs):
-    if not os.path.exists(cfg.cuckoo.rooter):
-        log.critical("Unable to passthrough root command (%s) as the rooter " "unix socket doesn't exist.", command)
-        return
-
-    lock.acquire()
-
-    s = socket.socket(socket.AF_UNIX, socket.SOCK_DGRAM)
-
-    if os.path.exists(unixpath.name):
-        os.remove(unixpath.name)
-
-    s.bind(unixpath.name)
-
-    try:
-        s.connect(cfg.cuckoo.rooter)
-    except socket.error as e:
-        log.critical("Unable to passthrough root command as we're unable to connect to the rooter unix socket: %s.", e)
-        lock.release()
-        return
-
-    s.send(json.dumps({"command": command, "args": args, "kwargs": kwargs,}).encode("utf-8"))
-
-    try:
-        ret = json.loads(s.recv(0x10000))
-    except socket.timeout:
-        ret["exception"] = "rooter response timeout"
-
-    lock.release()
-
-    if ret["exception"]:
+    ret = send_socket_command(cfg.cuckoo.rooter, command, *args, **kwargs)
+    if ret and ret.get("exception"):
         log.warning("Rooter returned error: %s", ret["exception"])
-
     return ret
diff --git a/lib/cuckoo/core/scheduler.py b/lib/cuckoo/core/scheduler.py
index d846ce899bb..f7251bc8c55 100644
--- a/lib/cuckoo/core/scheduler.py
+++ b/lib/cuckoo/core/scheduler.py
@@ -2,762 +2,402 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
+import contextlib
+import enum
+import logging
 import os
-import gc
-import time
-import shutil
+import queue
 import signal
-import logging
+import sys
 import threading
-import queue
-
-try:
-    import re2 as re
-except ImportError:
-    import re
+import time
+from collections import defaultdict
+from typing import DefaultDict, List, Optional, Tuple
 
+from lib.cuckoo.common.cleaners_utils import free_space_monitor
 from lib.cuckoo.common.config import Config
 from lib.cuckoo.common.constants import CUCKOO_ROOT
-from lib.cuckoo.common.exceptions import CuckooMachineError, CuckooGuestError
-from lib.cuckoo.common.exceptions import CuckooOperationalError
-from lib.cuckoo.common.exceptions import CuckooCriticalError
-from lib.cuckoo.common.objects import File, HAVE_PEFILE, pefile
-from lib.cuckoo.common.utils import create_folder, get_memdump_path, free_space_monitor
-from lib.cuckoo.core.database import Database, TASK_COMPLETED
-from lib.cuckoo.core.guest import GuestManager
-from lib.cuckoo.core.plugins import list_plugins, RunAuxiliary
-from lib.cuckoo.core.resultserver import ResultServer
-from lib.cuckoo.core.rooter import rooter, vpns, _load_socks5_operational
-from lib.cuckoo.common.utils import convert_to_printable
+from lib.cuckoo.common.exceptions import CuckooUnserviceableTaskError
+from lib.cuckoo.common.utils import CATEGORIES_NEEDING_VM, load_categories
+from lib.cuckoo.core.analysis_manager import AnalysisManager
+from lib.cuckoo.core.database import TASK_FAILED_ANALYSIS, TASK_PENDING, Database, Machine, Task, _Database
+from lib.cuckoo.core.machinery_manager import MachineryManager
 
 log = logging.getLogger(__name__)
 
-machinery = None
-machine_lock = None
-latest_symlink_lock = threading.Lock()
-routing = Config("routing")
 
-active_analysis_count = 0
+class LoopState(enum.IntEnum):
+    """Enum that represents the state of the main scheduler loop."""
 
+    RUNNING = 1
+    PAUSED = 2
+    STOPPING = 3
+    INACTIVE = 4
 
-class CuckooDeadMachine(Exception):
-    """Exception thrown when a machine turns dead.
-
-    When this exception has been thrown, the analysis task will start again,
-    and will try to use another machine, when available.
-    """
 
-    pass
+class SchedulerCycleDelay(enum.IntEnum):
+    SUCCESS = 0
+    NO_PENDING_TASKS = 1
+    MAX_MACHINES_RUNNING = 1
+    SCHEDULER_PAUSED = 5
+    FAILURE = 5
+    LOW_DISK_SPACE = 30
 
 
-class AnalysisManager(threading.Thread):
-    """Analysis Manager.
+class Scheduler:
+    """Tasks Scheduler.
 
-    This class handles the full analysis process for a given task. It takes
-    care of selecting the analysis machine, preparing the configuration and
-    interacting with the guest agent and analyzer components to launch and
-    complete the analysis and store, process and report its results.
+    This class is responsible for the main execution loop of the tool. It
+    prepares the analysis machines and keep waiting and loading for new
+    analysis tasks.
+    Whenever a new task is available, it launches AnalysisManager which will
+    take care of running the full analysis process and operating with the
+    assigned analysis machine.
     """
 
-    def __init__(self, task, error_queue):
-        """@param task: task object containing the details for the analysis."""
-        threading.Thread.__init__(self)
-
-        self.task = task
-        self.errors = error_queue
+    def __init__(self, maxcount=0):
+        self.loop_state = LoopState.INACTIVE
         self.cfg = Config()
-        self.aux_cfg = Config("auxiliary")
-        self.storage = ""
-        self.binary = ""
-        self.machine = None
-        self.db = Database()
-        self.interface = None
-        self.rt_table = None
-        self.route = None
-        self.rooter_response = ""
-
-    def init_storage(self):
-        """Initialize analysis storage folder."""
-        self.storage = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(self.task.id))
-
-        # If the analysis storage folder already exists, we need to abort the
-        # analysis or previous results will be overwritten and lost.
-        if os.path.exists(self.storage):
-            log.error("Task #{0}: Analysis results folder already exists at path '{1}', " "analysis aborted".format(self.task.id, self.storage))
-            return False
-
-        # If we're not able to create the analysis storage folder, we have to
-        # abort the analysis.
-        try:
-            create_folder(folder=self.storage)
-        except CuckooOperationalError:
-            log.error("Task #{0}: Unable to create analysis folder {1}".format(self.task.id, self.storage))
-            return False
-
-        return True
+        self.db: _Database = Database()
+        self.max_analysis_count: int = maxcount or self.cfg.cuckoo.max_analysis_count
+        self.analysis_threads_lock = threading.Lock()
+        self.total_analysis_count: int = 0
+        self.analysis_threads: List[AnalysisManager] = []
+        self.analyzing_categories, categories_need_VM = load_categories()
+        self.machinery_manager = MachineryManager() if categories_need_VM else None
+        if self.cfg.cuckoo.get("task_timeout", False):
+            self.next_timeout_time = time.time() + self.cfg.cuckoo.get("task_timeout_scan_interval", 30)
+        log.info("Creating scheduler with max_analysis_count=%s", self.max_analysis_count or "unlimited")
+
+    @property
+    def active_analysis_count(self) -> int:
+        with self.analysis_threads_lock:
+            return len(self.analysis_threads)
+
+    def analysis_finished(self, analysis_manager: AnalysisManager):
+        with self.analysis_threads_lock:
+            try:
+                self.analysis_threads.remove(analysis_manager)
+            except ValueError:
+                pass
 
-    def check_file(self, sha256):
-        """Checks the integrity of the file to be analyzed."""
-        sample = self.db.view_sample(self.task.sample_id)
+    def do_main_loop_work(self, error_queue: queue.Queue) -> SchedulerCycleDelay:
+        """Return the number of seconds to sleep after returning."""
+        if self.loop_state == LoopState.STOPPING:
+            # This blocks the main loop until the analyses are finished.
+            self.wait_for_running_analyses_to_finish()
+            self.loop_state = LoopState.INACTIVE
+            return SchedulerCycleDelay.SUCCESS
+
+        if self.loop_state == LoopState.PAUSED:
+            log.debug("scheduler is paused, send '%s' to process %d to resume", signal.SIGUSR2, os.getpid())
+            return SchedulerCycleDelay.SCHEDULER_PAUSED
+
+        if 0 < self.max_analysis_count <= self.total_analysis_count:
+            log.info("Maximum analysis count has been reached, shutting down.")
+            self.stop()
+            return SchedulerCycleDelay.SUCCESS
+
+        if self.is_short_on_disk_space():
+            return SchedulerCycleDelay.LOW_DISK_SPACE
+
+        if self.cfg.cuckoo.get("task_timeout", False):
+            if self.next_timeout_time < time.time():
+                self.next_timeout_time = time.time() + self.cfg.cuckoo.get("task_timeout_scan_interval", 30)
+                with self.db.session.begin():
+                    self.db.clean_timed_out_tasks(self.cfg.cuckoo.get("task_pending_timeout", 0))
+
+        analysis_manager: Optional[AnalysisManager] = None
+        with self.db.session.begin():
+            max_machines_reached = False
+            if self.machinery_manager and self.machinery_manager.running_machines_max_reached():
+                if not self.cfg.cuckoo.allow_static:
+                    return SchedulerCycleDelay.MAX_MACHINES_RUNNING
+                max_machines_reached = True
 
-        if sha256 != sample.sha256:
-            log.error(
-                "Task #{0}: Target file has been modified after submission: "
-                "'{1}'".format(self.task.id, convert_to_printable(self.task.target))
+            try:
+                task, machine = self.find_next_serviceable_task(max_machines_reached)
+            except Exception:
+                log.exception("Failed to find next serviceable task")
+                # Explicitly call rollback since we're not re-raising the exception and letting the
+                # begin() context manager handle rolling back the transaction.
+                self.db.session.rollback()
+                return SchedulerCycleDelay.FAILURE
+
+            if task is None:
+                # There are no pending tasks so try again in 1 second.
+                return SchedulerCycleDelay.NO_PENDING_TASKS
+
+            log.info("Task #%s: Processing task", task.id)
+            self.total_analysis_count += 1
+            analysis_manager = AnalysisManager(
+                task,
+                machine=machine,
+                machinery_manager=self.machinery_manager,
+                error_queue=error_queue,
+                done_callback=self.analysis_finished,
             )
-            return False
+            analysis_manager.prepare_task_and_machine_to_start()
+        self.db.session.expunge_all()
 
-        return True
+        with self.analysis_threads_lock:
+            self.analysis_threads.append(analysis_manager)
+        analysis_manager.start()
 
-    def store_file(self, sha256):
-        """Store a copy of the file being analyzed."""
-        if not os.path.exists(self.task.target):
-            log.error(
-                "Task #{0}: The file to analyze does not exist at path '{1}', "
-                "analysis aborted".format(self.task.id, convert_to_printable(self.task.target))
-            )
-            return False
+        return SchedulerCycleDelay.SUCCESS
 
-        self.binary = os.path.join(CUCKOO_ROOT, "storage", "binaries", sha256)
+    def find_next_serviceable_task(self, max_machines_reached: bool) -> Tuple[Optional[Task], Optional[Machine]]:
+        task: Optional[Task] = None
+        machine: Optional[Machine] = None
 
-        if os.path.exists(self.binary):
-            log.info("Task #{0}: File already exists at '{1}'".format(self.task.id, self.binary))
+        if self.machinery_manager and not max_machines_reached:
+            task, machine = self.find_pending_task_to_service()
         else:
-            # TODO: do we really need to abort the analysis in case we are not able to store a copy of the file?
-            try:
-                shutil.copy(self.task.target, self.binary)
-            except (IOError, shutil.Error) as e:
-                log.error("Task #{0}: Unable to store file from '{1}' to '{2}', analysis aborted".format(self.task.id, self.task.target, self.binary))
-                return False
-
-        try:
-            new_binary_path = os.path.join(self.storage, "binary")
-
-            if hasattr(os, "symlink"):
-                os.symlink(self.binary, new_binary_path)
-            else:
-                shutil.copy(self.binary, new_binary_path)
-        except (AttributeError, OSError) as e:
-            log.error("Task #{0}: Unable to create symlink/copy from '{1}' to '{2}': {3}".format(self.task.id, self.binary, self.storage, e))
-
-        return True
+            task = self.find_pending_task_not_requiring_machinery()
+
+        return task, machine
+
+    def find_pending_task_not_requiring_machinery(self) -> Optional[Task]:
+        task: Optional[Task] = None
+        tasks = self.db.list_tasks(
+            category=[category for category in self.analyzing_categories if category not in CATEGORIES_NEEDING_VM],
+            status=TASK_PENDING,
+            order_by=(Task.priority.desc(), Task.added_on),
+            options_not_like="node=",
+            limit=1,
+            for_update=True,
+        )
+        if tasks:
+            task = tasks[0]
+        return task
+
+    def find_pending_task_to_service(self) -> Tuple[Optional[Task], Optional[Machine]]:
+        # This function must only be called when we have the ability to use machinery.
+        assert self.machinery_manager
+
+        task: Optional[Task] = None
+        machine: Optional[Machine] = None
+        # Cache available machine stats to avoid repeated DB queries within the loop.
+        available_tags_stats = self.get_available_machine_stats()
+
+        # Get the list of all pending tasks in the order that they should be processed.
+        for task_candidate in self.db.list_tasks(
+            status=TASK_PENDING,
+            order_by=(Task.priority.desc(), Task.added_on),
+            options_not_like="node=",
+            for_update=True,
+        ):
+            if task_candidate.category not in CATEGORIES_NEEDING_VM:
+                # This task can definitely be processed because it doesn't need a machine.
+                task = task_candidate
+                break
 
-    def acquire_machine(self):
-        """Acquire an analysis machine from the pool of available ones."""
-        machine = None
+            try:
+                machine = self.machinery_manager.find_machine_to_service_task(task_candidate)
+            except CuckooUnserviceableTaskError:
+                requested_tags = ", ".join(tag.name for tag in task_candidate.tags)
+                log_message = (
+                    "Task #{task_id}: {status} unserviceable task because no matching machine could be found. "
+                    "Requested tags: '{tags}'. Available machine tags: {available}. "
+                    "Please check your machinery configuration."
+                )
 
-        # Start a loop to acquire a machine to run the analysis on.
-        while True:
-            machine_lock.acquire()
-
-            # In some cases it's possible that we enter this loop without
-            # having any available machines. We should make sure this is not
-            # such case, or the analysis task will fail completely.
-            if not machinery.availables():
-                machine_lock.release()
-                time.sleep(1)
+                if self.cfg.cuckoo.fail_unserviceable:
+                    log.info(
+                        log_message.format(
+                            task_id=task_candidate.id,
+                            status="Failing",
+                            tags=requested_tags,
+                            available=available_tags_stats,
+                        )
+                    )
+                    self.db.set_status(task_candidate.id, TASK_FAILED_ANALYSIS)
+                else:
+                    log.info(
+                        log_message.format(
+                            task_id=task_candidate.id,
+                            status="Unserviceable",
+                            tags=requested_tags,
+                            available=available_tags_stats,
+                        )
+                    )
                 continue
 
-            # If the user specified a specific machine ID, a platform to be
-            # used or machine tags acquire the machine accordingly.
-            machine = machinery.acquire(machine_id=self.task.machine, platform=self.task.platform, tags=self.task.tags)
-
-            # If no machine is available at this moment, wait for one second and try again.
-            if not machine:
-                machine_lock.release()
-                log.debug("Task #{0}: no machine available yet. To analyze x64 samples ensure to have set tags=x64 in hypervisor config".format(self.task.id))
-                time.sleep(1)
-            else:
-                log.info("Task #{}: acquired machine {} (label={}, platform={})".format(self.task.id, machine.name, machine.label, machine.platform))
+            if machine:
+                task = task_candidate
                 break
 
-        self.machine = machine
-
-    def build_options(self):
-        """Generate analysis options.
-        @return: options dict.
+        return task, machine
+
+    def get_available_machine_stats(self) -> DefaultDict[str, int]:
+        available_machine_stats = defaultdict(int)
+        for machine in self.db.get_available_machines():
+            for tag in machine.tags:
+                if tag:
+                    available_machine_stats[tag.name] += 1
+            if machine.platform:
+                available_machine_stats[machine.platform] += 1
+
+        return available_machine_stats
+
+    def get_locked_machine_stats(self) -> DefaultDict[str, int]:
+        locked_machine_stats = defaultdict(int)
+        for machine in self.db.list_machines(locked=True):
+            for tag in machine.tags:
+                if tag:
+                    locked_machine_stats[tag.name] += 1
+            if machine.platform:
+                locked_machine_stats[machine.platform] += 1
+
+        return locked_machine_stats
+
+    def get_pending_task_stats(self) -> DefaultDict[str, int]:
+        pending_task_stats = defaultdict(int)
+        for task in self.db.list_tasks(status=TASK_PENDING):
+            for tag in task.tags:
+                if tag:
+                    pending_task_stats[tag.name] += 1
+            if task.platform:
+                pending_task_stats[task.platform] += 1
+            if task.machine:
+                pending_task_stats[task.machine] += 1
+
+        return pending_task_stats
+
+    def is_short_on_disk_space(self):
+        """If not enough free disk space is available, then we print an
+        error message and wait another round. This check is ignored
+        when the freespace configuration variable is set to zero.
         """
-        options = {}
-
-        options["id"] = self.task.id
-        options["ip"] = self.machine.resultserver_ip
-        options["port"] = self.machine.resultserver_port
-        options["category"] = self.task.category
-        options["target"] = self.task.target
-        options["package"] = self.task.package
-        options["options"] = self.task.options
-        options["enforce_timeout"] = self.task.enforce_timeout
-        options["clock"] = self.task.clock
-        options["terminate_processes"] = self.cfg.cuckoo.terminate_processes
-
-        if not self.task.timeout or self.task.timeout == 0:
-            options["timeout"] = self.cfg.timeouts.default
-        else:
-            options["timeout"] = self.task.timeout
-
-        if self.task.category == "file":
-            options["file_name"] = File(self.task.target).get_name()
-            options["file_type"] = File(self.task.target).get_type()
-            # if it's a PE file, collect export information to use in more smartly determining the right
-            # package to use
-            options["exports"] = ""
-            if HAVE_PEFILE and ("PE32" in options["file_type"] or "MS-DOS executable" in options["file_type"]):
-                try:
-                    pe = pefile.PE(self.task.target)
-                    if hasattr(pe, "DIRECTORY_ENTRY_EXPORT"):
-                        exports = []
-                        for exported_symbol in pe.DIRECTORY_ENTRY_EXPORT.symbols:
-                            try:
-                                if not exported_symbol.name:
-                                    continue
-                                if isinstance(exported_symbol.name, bytes):
-                                    exports.append(re.sub(b"[^A-Za-z0-9_?@-]", b"", exported_symbol.name).decode("utf-8"))
-                                else:
-                                    exports.append(re.sub("[^A-Za-z0-9_?@-]", "", exported_symbol.name))
-                            except Exception as e:
-                                log.error(e, exc_info=True)
-
-                        options["exports"] = ",".join(exports)
-                except Exception as e:
-                    log.error(e, exc_info=True)
-
-        # options from auxiliar.conf
-        for plugin in self.aux_cfg.auxiliar_modules.keys():
-            options[plugin] = self.aux_cfg.auxiliar_modules[plugin]
-
-        return options
-
-    def launch_analysis(self):
-        """Start analysis."""
-        succeeded = False
-        dead_machine = False
-        self.socks5s = _load_socks5_operational()
-
-        log.info("Task #{0}: Starting analysis of {1} '{2}'".format(self.task.id, self.task.category.upper(), convert_to_printable(self.task.target)))
-
-        # Initialize the analysis folders.
-        if not self.init_storage():
-            log.debug("Failed to initialize the analysis folder")
+        if not self.cfg.cuckoo.freespace:
             return False
 
-        if self.task.category in ["file", "pcap", "static"]:
-            sha256 = File(self.task.target).get_sha256()
-            # Check whether the file has been changed for some unknown reason.
-            # And fail this analysis if it has been modified.
-            if not self.check_file(sha256):
-                return False
-
-            # Store a copy of the original file.
-            if not self.store_file(sha256):
-                return False
-
-        if self.task.category in ("pcap", "static"):
-            if self.task.category == "pcap":
-                if hasattr(os, "symlink"):
-                    os.symlink(self.binary, os.path.join(self.storage, "dump.pcap"))
-                else:
-                    shutil.copy(self.binary, os.path.join(self.storage, "dump.pcap"))
-            # create the logs/files directories as
-            # normally the resultserver would do it
-            dirnames = ["logs", "files", "aux"]
-            for dirname in dirnames:
-                try:
-                    os.makedirs(os.path.join(self.storage, dirname))
-                except:
-                    pass
-            return True
-
-        # Acquire analysis machine.
-        try:
-            self.acquire_machine()
-            self.db.set_task_vm(self.task.id, self.machine.label, self.machine.id)
-        # At this point we can tell the ResultServer about it.
-        except CuckooOperationalError as e:
-            machine_lock.release()
-            log.error("Task #{0}: Cannot acquire machine: {1}".format(self.task.id, e), exc_info=True)
-            return False
-
-        # Generate the analysis configuration file.
-        options = self.build_options()
-
-        try:
-            ResultServer().add_task(self.task, self.machine)
-        except Exception as e:
-            machinery.release(self.machine.label)
-            log.exception(e, exc_info=True)
-            self.errors.put(e)
-
-        aux = RunAuxiliary(task=self.task, machine=self.machine)
+        # Resolve the full base path to the analysis folder, just in
+        # case somebody decides to make a symbolic link out of it.
+        dir_path = os.path.join(CUCKOO_ROOT, "storage", "analyses")
+        free_space_monitor(dir_path, analysis=True)
 
+    @contextlib.contextmanager
+    def loop_signals(self):
+        signals_to_handle = (signal.SIGHUP, signal.SIGTERM, signal.SIGUSR1, signal.SIGUSR2)
+        for sig in signals_to_handle:
+            signal.signal(sig, self.signal_handler)
         try:
-            unlocked = False
-
-            # Mark the selected analysis machine in the database as started.
-            guest_log = self.db.guest_start(self.task.id, self.machine.name, self.machine.label, machinery.__class__.__name__)
-            # Start the machine.
-            machinery.start(self.machine.label)
-
-            # Enable network routing.
-            self.route_network()
-
-            # By the time start returns it will have fully started the Virtual
-            # Machine. We can now safely release the machine lock.
-            machine_lock.release()
-            unlocked = True
-
-            aux.start()
-
-            # Initialize the guest manager.
-            guest = GuestManager(self.machine.name, self.machine.ip, self.machine.platform, self.task.id, self)
-
-            options["clock"] = self.db.update_clock(self.task.id)
-            self.db.guest_set_status(self.task.id, "starting")
-            # Start the analysis.
-            guest.start_analysis(options)
-            if self.db.guest_get_status(self.task.id) == "starting":
-                self.db.guest_set_status(self.task.id, "running")
-                guest.wait_for_completion()
-
-            self.db.guest_set_status(self.task.id, "stopping")
-            succeeded = True
-        except CuckooMachineError as e:
-            if not unlocked:
-                machine_lock.release()
-            log.error(str(e), extra={"task_id": self.task.id}, exc_info=True)
-            dead_machine = True
-        except CuckooGuestError as e:
-            if not unlocked:
-                machine_lock.release()
-            log.error(str(e), extra={"task_id": self.task.id}, exc_info=True)
+            yield
         finally:
-            # Stop Auxiliary modules.
-            aux.stop()
-
-            # Take a memory dump of the machine before shutting it off.
-            if self.cfg.cuckoo.memory_dump or self.task.memory:
-                try:
-                    dump_path = get_memdump_path(self.task.id)
-                    need_space, space_available = free_space_monitor(os.path.dirname(dump_path), return_value=True)
-                    if need_space:
-                        log.error("Not enough free disk space! Could not dump ram (Only %d MB!)", space_available)
-                    else:
-                        machinery.dump_memory(self.machine.label, dump_path)
-                except NotImplementedError:
-                    log.error("The memory dump functionality is not available " "for the current machine manager.")
-
-                except CuckooMachineError as e:
-                    log.error(e, exc_info=True)
-
-            try:
-                # Stop the analysis machine.
-                machinery.stop(self.machine.label)
-
-            except CuckooMachineError as e:
-                log.warning("Task #{0}: Unable to stop machine {1}: {2}".format(self.task.id, self.machine.label, e))
-
-            # Mark the machine in the database as stopped. Unless this machine
-            # has been marked as dead, we just keep it as "started" in the
-            # database so it'll not be used later on in this session.
-            self.db.guest_stop(guest_log)
-
-            # After all this, we can make the ResultServer forget about the
-            # internal state for this analysis task.
-            ResultServer().del_task(self.task, self.machine)
-
-            # Drop the network routing rules if any.
-            self.unroute_network()
-
-            if dead_machine:
-                # Remove the guest from the database, so that we can assign a
-                # new guest when the task is being analyzed with another
-                # machine.
-                self.db.guest_remove(guest_log)
-
-                # Remove the analysis directory that has been created so
-                # far, as launch_analysis() is going to be doing that again.
-                shutil.rmtree(self.storage)
-
-                # This machine has turned dead, so we throw an exception here
-                # which informs the AnalysisManager that it should analyze
-                # this task again with another available machine.
-                raise CuckooDeadMachine()
-
-            try:
-                # Release the analysis machine. But only if the machine has
-                # not turned dead yet.
-                machinery.release(self.machine.label)
-
-            except CuckooMachineError as e:
-                log.error(
-                    "Task #{0}: Unable to release machine {1}, reason "
-                    "{2}. You might need to restore it manually.".format(self.task.id, self.machine.label, e)
-                )
-
-        return succeeded
-
-    def run(self):
-        """Run manager thread."""
-        global active_analysis_count
-        active_analysis_count += 1
-        try:
-            while True:
-                try:
-                    success = self.launch_analysis()
-                except CuckooDeadMachine as e:
-                    log.exception(e)
-                    continue
-
-                break
-
-            self.db.set_status(self.task.id, TASK_COMPLETED)
-
-            # If the task is still available in the database, update our task
-            # variable with what's in the database, as otherwise we're missing
-            # out on the status and completed_on change. This would then in
-            # turn thrown an exception in the analysisinfo processing module.
-            self.task = self.db.view_task(self.task.id) or self.task
-
-            log.debug("Task #{0}: Released database task with status {1}".format(self.task.id, success))
-
-            # We make a symbolic link ("latest") which links to the latest
-            # analysis - this is useful for debugging purposes. This is only
-            # supported under systems that support symbolic links.
-            if hasattr(os, "symlink"):
-                latest = os.path.join(CUCKOO_ROOT, "storage", "analyses", "latest")
-
-                # First we have to remove the existing symbolic link, then we
-                # have to create the new one.
-                # Deal with race conditions using a lock.
-                latest_symlink_lock.acquire()
-                try:
-                    # As per documentation, lexists() returns True for dead
-                    # symbolic links.
-                    if os.path.lexists(latest):
-                        os.remove(latest)
-
-                    os.symlink(self.storage, latest)
-                except OSError as e:
-                    log.warning("Task #{0}: Error pointing latest analysis symlink: {1}".format(self.task.id, e))
-                finally:
-                    latest_symlink_lock.release()
-
-            log.info("Task #{0}: analysis procedure completed".format(self.task.id))
-        except Exception as e:
-            log.exception("Task #{0}: Failure in AnalysisManager.run: {1}".format(self.task.id, e))
-
-        active_analysis_count -= 1
-
-    def _rooter_response_check(self):
-        if self.rooter_response and self.rooter_response["exception"] is not None:
-            raise CuckooCriticalError("Error execution rooter command: %s" % self.rooter_response["exception"])
-
-    def route_network(self):
-        """Enable network routing if desired."""
-        # Determine the desired routing strategy (none, internet, VPN).
-        self.route = routing.routing.route
-
-        if self.task.route:
-            self.route = self.task.route
-
-        if self.route in ("none", "None", "drop"):
-            self.interface = None
-            self.rt_table = None
-        elif self.route == "inetsim":
-            self.interface = routing.inetsim.interface
-        elif self.route == "tor":
-            self.interface = routing.tor.interface
-        elif self.route == "internet" and routing.routing.internet != "none":
-            self.interface = routing.routing.internet
-            self.rt_table = routing.routing.rt_table
-        elif self.route in vpns:
-            self.interface = vpns[self.route].interface
-            self.rt_table = vpns[self.route].rt_table
-        elif self.route in self.socks5s:
-            self.interface = ""
+            for sig in signals_to_handle:
+                signal.signal(sig, signal.SIG_DFL)
+
+    def shutdown_machinery(self):
+        """Shutdown machine manager (used to kill machines that still alive)."""
+        if self.machinery_manager:
+            with self.db.session.begin():
+                self.machinery_manager.machinery.shutdown()
+
+    def signal_handler(self, signum, frame):
+        """Scheduler signal handler"""
+        sig = signal.Signals(signum)
+        if sig in (signal.SIGHUP, signal.SIGTERM):
+            log.info("received signal '%s', waiting for remaining analysis to finish before stopping", sig.name)
+            self.stop()
+        elif sig == signal.SIGUSR1:
+            log.info("received signal '%s', pausing new detonations, running detonations will continue until completion", sig.name)
+            self.loop_state = LoopState.PAUSED
+            if self.cfg.cuckoo.ignore_signals:
+                sys.exit()
+        elif sig == signal.SIGUSR2:
+            log.info("received signal '%s', resuming detonations", sig.name)
+            self.loop_state = LoopState.RUNNING
         else:
-            log.warning("Unknown network routing destination specified, ignoring routing for this analysis: %r", self.route)
-            self.interface = None
-            self.rt_table = None
-
-        # Check if the network interface is still available. If a VPN dies for
-        # some reason, its tunX interface will no longer be available.
-        if self.interface and not rooter("nic_available", self.interface):
-            log.error(
-                "The network interface '%s' configured for this analysis is " "not available at the moment, switching to route=none mode.",
-                self.interface,
-            )
-            self.route = "none"
-            self.interface = None
-            self.rt_table = None
-
-        if self.route == "inetsim":
-            self.rooter_response = rooter(
-                "inetsim_enable",
-                self.machine.ip,
-                str(routing.inetsim.server),
-                str(routing.inetsim.dnsport),
-                str(self.cfg.resultserver.port),
-                str(routing.inetsim.ports),
-            )
-
-        elif self.route == "tor":
-            self.rooter_response = rooter(
-                "socks5_enable", self.machine.ip, str(self.cfg.resultserver.port), str(routing.tor.dnsport), str(routing.tor.proxyport)
-            )
-
-        elif self.route in self.socks5s:
-            self.rooter_response = rooter(
-                "socks5_enable",
-                self.machine.ip,
-                str(self.cfg.resultserver.port),
-                str(self.socks5s[self.route]["dnsport"]),
-                str(self.socks5s[self.route]["port"]),
-            )
-
-        elif self.route in ("none", "None", "drop"):
-            self.rooter_response = rooter("drop_enable", self.machine.ip, str(self.cfg.resultserver.port))
-
-        self._rooter_response_check()
-
-        if self.interface:
-            self.rooter_response = rooter("forward_enable", self.machine.interface, self.interface, self.machine.ip)
-            self._rooter_response_check()
-
-        log.info("Enabled route '%s'", self.route)
-
-        if self.rt_table:
-            self.rooter_response = rooter("srcroute_enable", self.rt_table, self.machine.ip)
-            self._rooter_response_check()
-
-    def unroute_network(self):
-        if self.interface:
-            self.rooter_response = rooter("forward_disable", self.machine.interface, self.interface, self.machine.ip)
-            log.info("Disabled route '%s'", self.route)
-            self._rooter_response_check()
-
-        if self.rt_table:
-            self.rooter_response = rooter("srcroute_disable", self.rt_table, self.machine.ip)
-            self._rooter_response_check()
-
-        if self.route == "inetsim":
-            self.rooter_response = rooter(
-                "inetsim_disable",
-                self.machine.ip,
-                routing.inetsim.server,
-                str(routing.inetsim.dnsport),
-                str(self.cfg.resultserver.port),
-                str(routing.inetsim.ports),
-            )
-
-        elif self.route == "tor":
-            self.rooter_response = rooter(
-                "socks5_disable", self.machine.ip, str(self.cfg.resultserver.port), str(routing.tor.dnsport), str(routing.tor.proxyport),
-            )
-
-        elif self.route in self.socks5s:
-            self.rooter_response = rooter(
-                "socks5_disable",
-                self.machine.ip,
-                str(self.cfg.resultserver.port),
-                str(self.socks5s[self.route]["dnsport"]),
-                str(self.socks5s[self.route]["port"]),
-            )
-
-        elif self.route in ("none", "None", "drop"):
-            self.rooter_response = rooter("drop_disable", self.machine.ip, str(self.cfg.resultserver.port))
-
-        self._rooter_response_check()
-
-
-class Scheduler:
-    """Tasks Scheduler.
-
-    This class is responsible for the main execution loop of the tool. It
-    prepares the analysis machines and keep waiting and loading for new
-    analysis tasks.
-    Whenever a new task is available, it launches AnalysisManager which will
-    take care of running the full analysis process and operating with the
-    assigned analysis machine.
-    """
-
-    def __init__(self, maxcount=None):
-        self.running = True
-        self.cfg = Config()
-        self.db = Database()
-        self.maxcount = maxcount
-        self.total_analysis_count = 0
+            log.info("received signal '%s', nothing to do", sig.name)
 
-    def set_stop_analyzing(self, signum, stack):
-        self.running = False
-        log.info("Now wait till all running tasks are completed")
-
-    def initialize(self):
-        """Initialize the machine manager."""
-        global machinery, machine_lock
-
-        machinery_name = self.cfg.cuckoo.machinery
-
-        max_vmstartup_count = self.cfg.cuckoo.max_vmstartup_count
-        if max_vmstartup_count:
-            # machine_lock = threading.Semaphore(max_vmstartup_count)
-            machine_lock = threading.BoundedSemaphore(max_vmstartup_count)
-        else:
-            machine_lock = threading.Lock()
-
-        log.info(
-            'Using "%s" machine manager with max_analysis_count=%d, ' "max_machines_count=%d, and max_vmstartup_count=%d",
-            machinery_name,
-            self.cfg.cuckoo.max_analysis_count,
-            self.cfg.cuckoo.max_machines_count,
-            self.cfg.cuckoo.max_vmstartup_count,
-        )
-
-        # Get registered class name. Only one machine manager is imported,
-        # therefore there should be only one class in the list.
-        plugin = list_plugins("machinery")[0]
-        # Initialize the machine manager.
-        machinery = plugin()
-
-        # Find its configuration file.
-        conf = os.path.join(CUCKOO_ROOT, "conf", "%s.conf" % machinery_name)
-
-        if not os.path.exists(conf):
-            raise CuckooCriticalError("The configuration file for machine " 'manager "{0}" does not exist at path:' " {1}".format(machinery_name, conf))
-
-        # Provide a dictionary with the configuration options to the
-        # machine manager instance.
-        machinery.set_options(Config(machinery_name))
-
-        # Initialize the machine manager.
-        try:
-            machinery.initialize(machinery_name)
-        except CuckooMachineError as e:
-            raise CuckooCriticalError("Error initializing machines: %s" % e)
-
-        # At this point all the available machines should have been identified
-        # and added to the list. If none were found, Cuckoo needs to abort the
-        # execution.
-        if not len(machinery.machines()):
-            raise CuckooCriticalError("No machines available.")
-        else:
-            log.info("Loaded %s machine/s", len(machinery.machines()))
-
-        if len(machinery.machines()) > 1 and self.db.engine.name == "sqlite":
-            log.warning(
-                "As you've configured Cuckoo to execute parallel "
-                "analyses, we recommend you to switch to a MySQL "
-                "a PostgreSQL database as SQLite might cause some "
-                "issues."
-            )
+    def start(self):
+        """Start scheduler."""
+        if self.machinery_manager:
+            with self.db.session.begin():
+                self.machinery_manager.initialize_machinery()
 
-        # Drop all existing packet forwarding rules for each VM. Just in case
-        # Cuckoo was terminated for some reason and various forwarding rules
-        # have thus not been dropped yet.
-        for machine in machinery.machines():
-            if not machine.interface:
-                log.info(
-                    "Unable to determine the network interface for VM "
-                    "with name %s, Cuckoo will not be able to give it "
-                    "full internet access or route it through a VPN! "
-                    "Please define a default network interface for the "
-                    "machinery or define a network interface for each "
-                    "VM.",
-                    machine.name,
-                )
-                continue
+        # Message queue with threads to transmit exceptions (used as IPC).
+        error_queue = queue.Queue()
 
-            # Drop forwarding rule to each VPN.
-            for vpn in vpns.values():
-                rooter("forward_disable", machine.interface, vpn.interface, machine.ip)
+        # Start the logger which grabs database information
+        if self.cfg.cuckoo.periodic_log:
+            threading.Thread(target=self.thr_periodic_log, name="periodic_log", daemon=True).start()
 
-            # Drop forwarding rule to the internet / dirty line.
-            if routing.routing.internet != "none":
-                rooter("forward_disable", machine.interface, routing.routing.internet, machine.ip)
+        with self.loop_signals():
+            log.info("Waiting for analysis tasks")
+            self.loop_state = LoopState.RUNNING
+            try:
+                while self.loop_state in (LoopState.RUNNING, LoopState.PAUSED, LoopState.STOPPING):
+                    sleep_time = self.do_main_loop_work(error_queue)
+                    time.sleep(sleep_time)
+                    try:
+                        raise error_queue.get(block=False)
+                    except queue.Empty:
+                        pass
+            finally:
+                self.loop_state = LoopState.INACTIVE
 
     def stop(self):
-        """Stop scheduler."""
-        self.running = False
-        # Shutdown machine manager (used to kill machines that still alive).
-        machinery.shutdown()
-
-    def start(self):
-        """Start scheduler."""
-        self.initialize()
-
-        log.info("Waiting for analysis tasks.")
+        """Set loop state to stopping."""
+        self.loop_state = LoopState.STOPPING
+        if self.cfg.cuckoo.ignore_signals:
+            sys.exit()
+
+    def thr_periodic_log(self, oneshot=False):
+        # Ordinarily, this is the entry-point for a child thread. The oneshot parameter makes
+        # it easier for testing.
+        if not log.isEnabledFor(logging.DEBUG):
+            # The only purpose of this function is to log a debug message, so if debug
+            # logging is disabled, don't bother making all the database queries every 10
+            # seconds--just return.
+            return
 
-        # To handle stop analyzing when we need to restart process without break tasks
-        signal.signal(signal.SIGHUP, self.set_stop_analyzing)
-
-        # Message queue with threads to transmit exceptions (used as IPC).
-        errors = queue.Queue()
-
-        # Command-line overrides the configuration file.
-        if self.maxcount is None:
-            self.maxcount = self.cfg.cuckoo.max_analysis_count
-
-        # This loop runs forever.
-        while self.running:
-            time.sleep(1)
-
-            # Wait until the machine lock is not locked. This is only the case
-            # when all machines are fully running, rather that about to start
-            # or still busy starting. This way we won't have race conditions
-            # with finding out there are no available machines in the analysis
-            # manager or having two analyses pick the same machine.
-            if not machine_lock.acquire(False):
-                continue
+        while True:
+            # Since we know we'll be logging the resulting message, just use f-strings
+            # because they're faster and easier to read than using %s/%d and params to
+            # log.debug().
+            msgs = [f"# Active analysis: {self.active_analysis_count}"]
+
+            with self.db.session.begin():
+                pending_task_count = self.db.count_tasks(status=TASK_PENDING)
+                pending_task_stats = self.get_pending_task_stats()
+                msgs.extend(
+                    (
+                        f"# Pending Tasks: {pending_task_count}",
+                        f"# Specific Pending Tasks: {dict(pending_task_stats)}",
+                    )
+                )
+                if self.machinery_manager:
+                    available_machine_count = self.db.count_machines_available()
+                    available_machine_stats = self.get_available_machine_stats()
+                    locked_machine_count = len(self.db.list_machines(locked=True))
+                    locked_machine_stats = self.get_locked_machine_stats()
+                    total_machine_count = len(self.db.list_machines())
+                    msgs.extend(
+                        (
+                            f"# Available Machines: {available_machine_count}",
+                            f"# Available Specific Machines: {dict(available_machine_stats)}",
+                            f"# Locked Machines: {locked_machine_count}",
+                            f"# Specific Locked Machines: {dict(locked_machine_stats)}",
+                            f"# Total Machines: {total_machine_count}",
+                        )
+                    )
+                    if self.cfg.cuckoo.scaling_semaphore:
+                        lock_value = (
+                            f"{self.machinery_manager.machine_lock._value}/{self.machinery_manager.machine_lock._limit_value}"
+                        )
+                        msgs.append(f"# Lock value: {lock_value}")
+            log.debug("; ".join(msgs))
+
+            if oneshot:
+                break
 
-            machine_lock.release()
-
-            # If not enough free disk space is available, then we print an
-            # error message and wait another round (this check is ignored
-            # when the freespace configuration variable is set to zero).
-            if self.cfg.cuckoo.freespace:
-                # Resolve the full base path to the analysis folder, just in
-                # case somebody decides to make a symbolic link out of it.
-                dir_path = os.path.join(CUCKOO_ROOT, "storage", "analyses")
-                need_space, space_available = free_space_monitor(dir_path, return_value=True)
-                if need_space:
-                    log.error("Not enough free disk space! (Only %d MB!). You can change limits it in cuckoo.conf -> freespace", space_available)
-                    continue
-
-            # Have we limited the number of concurrently executing machines?
-            if self.cfg.cuckoo.max_machines_count > 0:
-                # Are too many running?
-                if len(machinery.running()) >= self.cfg.cuckoo.max_machines_count:
-                    continue
-
-            # If no machines are available, it's pointless to fetch for
-            # pending tasks. Loop over.
-            if not machinery.availables():
-                continue
+            time.sleep(10)
 
-            # Exits if max_analysis_count is defined in the configuration
-            # file and has been reached.
-            if self.maxcount and self.total_analysis_count >= self.maxcount:
-                if active_analysis_count <= 0:
-                    self.stop()
-            else:
-                # Fetch a pending analysis task.
-                # TODO: this fixes only submissions by --machine, need to add other attributes (tags etc.)
-                for machine in self.db.get_available_machines():
-                    task = self.db.fetch(machine=machine.name)
-                    if task:
-                        break
-                else:
-                    task = self.db.fetch()
-                if task:
-                    log.debug("Task #{0}: Processing task".format(task.id))
-                    self.total_analysis_count += 1
-                    # Initialize and start the analysis manager.
-                    analysis = AnalysisManager(task, errors)
-                    analysis.daemon = True
-                    analysis.start()
-
-            # Deal with errors.
-            try:
-                raise errors.get(block=False)
-            except queue.Empty:
-                pass
+    def wait_for_running_analyses_to_finish(self) -> None:
+        log.info("Waiting for running analyses to finish.")
+        while self.analysis_threads:
+            thread = self.analysis_threads.pop()
+            log.debug("Waiting for analysis thread (%r)", thread)
+            thread.join()
diff --git a/lib/cuckoo/core/startup.py b/lib/cuckoo/core/startup.py
index 8c65b79976f..be3d9304f30 100644
--- a/lib/cuckoo/core/startup.py
+++ b/lib/cuckoo/core/startup.py
@@ -2,86 +2,135 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-from __future__ import print_function
-import os
-import sys
 import copy
-import socket
+import getpass as gt
+import grp
 import logging
 import logging.handlers
+import os
+import platform
+import socket
+import subprocess
+import sys
+from contextlib import suppress
+from pathlib import Path
 
+# Private
+import custom.signatures
+
+try:
+    import custom.signatures.all
+except ImportError:
+    HAS_CUSTOM_SIGNATURES_ALL = False
+else:
+    HAS_CUSTOM_SIGNATURES_ALL = True
+try:
+    import custom.signatures.linux
+except ImportError:
+    HAS_CUSTOM_SIGNATURES_LINUX = False
+else:
+    HAS_CUSTOM_SIGNATURES_LINUX = True
 try:
-    import yara
-    if not int(yara.__version__[0]) >= 4:
-        raise ImportError("Missed library: pip3 install yara-python>=4.0.0 -U")
+    import custom.signatures.windows
 except ImportError:
-    print("Missed library: pip3 install yara-python>=4.0.0 -U")
+    HAS_CUSTOM_SIGNATURES_WINDOWS = False
+else:
+    HAS_CUSTOM_SIGNATURES_WINDOWS = True
 import modules.auxiliary
+import modules.feeds
 import modules.processing
-import modules.signatures
 import modules.reporting
-import modules.feeds
-
-from lib.cuckoo.common.objects import File
-from lib.cuckoo.common.colors import red, yellow, cyan
+import modules.signatures.all
+import modules.signatures.linux
+import modules.signatures.windows
+from lib.cuckoo.common.colors import cyan, red, yellow
 from lib.cuckoo.common.config import Config
 from lib.cuckoo.common.constants import CUCKOO_ROOT
-from lib.cuckoo.common.exceptions import CuckooStartupError
-from lib.cuckoo.common.exceptions import CuckooOperationalError
+from lib.cuckoo.common.exceptions import CuckooOperationalError, CuckooStartupError
+from lib.cuckoo.common.path_utils import path_exists
 from lib.cuckoo.common.utils import create_folders
-from lib.cuckoo.core.database import Database, TASK_RUNNING, TASK_FAILED_ANALYSIS
-from lib.cuckoo.core.plugins import import_plugin, import_package, list_plugins
-from lib.cuckoo.core.rooter import rooter, vpns, socks5s
+from lib.cuckoo.core.database import TASK_FAILED_ANALYSIS, TASK_RUNNING, Database
+from lib.cuckoo.core.log import init_logger
+from lib.cuckoo.core.plugins import import_package, import_plugin, list_plugins
+from lib.cuckoo.core.rooter import rooter, socks5s, vpns
 
 log = logging.getLogger()
 
 cuckoo = Config()
+logconf = Config("logging")
 routing = Config("routing")
 repconf = Config("reporting")
+auxconf = Config("auxiliary")
+dist_conf = Config("distributed")
 
 
 def check_python_version():
     """Checks if Python version is supported by Cuckoo.
     @raise CuckooStartupError: if version is not supported.
     """
-    if sys.version_info[:2] < (3, 5):
-        raise CuckooStartupError("You are running an incompatible version of Python, please use >= 3.5")
+    if sys.version_info[:2] < (3, 8):
+        raise CuckooStartupError("You are running an incompatible version of Python, please use >= 3.8")
+
+
+def check_user_permissions(as_root: bool = False):
+    if as_root:
+        log.warning("You running part of CAPE as non 'cape' user! That breaks permissions on temp folder and log folder.")
+        return
+    if gt.getuser() != cuckoo.cuckoo.get("username", "cape"):
+        raise CuckooStartupError(
+            f"Running as not 'cape' user breaks permissions! Run with cape user! Current user: {gt.getuser()} - Cape config user: {cuckoo.cuckoo.get('username', 'cape')}. Also fix permission on tmppath path: chown cape:cape {cuckoo.cuckoo.tmppath}\n log folder: chown cape:cape {os.path.join(CUCKOO_ROOT, 'logs')}"
+        )
+
+    # Check permission for tmp folder
+    if cuckoo.cuckoo.tmppath and not os.access(cuckoo.cuckoo.tmppath, os.W_OK):
+        raise CuckooStartupError(
+            f"Fix permission on\n tmppath path: chown cape:cape {cuckoo.cuckoo.tmppath}\n log folder: chown cape:cape {os.path.join(CUCKOO_ROOT, 'logs')}"
+        )
 
 
 def check_working_directory():
     """Checks if working directories are ready.
     @raise CuckooStartupError: if directories are not properly configured.
     """
-    if not os.path.exists(CUCKOO_ROOT):
-        raise CuckooStartupError("You specified a non-existing root directory: {0}".format(CUCKOO_ROOT))
+    if not path_exists(CUCKOO_ROOT):
+        raise CuckooStartupError(f"You specified a non-existing root directory: {CUCKOO_ROOT}")
 
-    cwd = os.path.join(os.getcwd(), "cuckoo.py")
-    if not os.path.exists(cwd):
+    cwd = Path.cwd() / "cuckoo.py"
+    if not path_exists(cwd):
         raise CuckooStartupError("You are not running Cuckoo from it's root directory")
 
+    # Check permission for tmpfs if enabled
+    if cuckoo.tmpfs.enabled and not os.access(cuckoo.tmpfs.path, os.W_OK):
+        raise CuckooStartupError(f"Fix permission on tmpfs path: chown cape:cape {cuckoo.tmpfs.path}")
+
 
 def check_webgui_mongo():
     if repconf.mongodb.enabled:
-        import pymongo
+        from dev_utils.mongodb import connect_to_mongo, mongo_create_index
 
-        bad = False
-        try:
-            conn = pymongo.MongoClient(
-                repconf.mongodb.host,
-                port=repconf.mongodb.port,
-                username=repconf.mongodb.get("username", None),
-                password=repconf.mongodb.get("password", None),
-                authSource=repconf.mongodb.db,
+        client = connect_to_mongo()
+        if not client:
+            sys.exit(
+                "You have enabled webgui but mongo isn't working, see mongodb manual for correct installation and configuration\nrun `systemctl status mongodb` for more info"
             )
-            conn.server_info()
-        except pymongo.errors.ServerSelectionTimeoutError:
-            log.warning("You have enabled webgui but mongo isn't working, see mongodb manual for correct installation and configuration")
-            bad = True
-        finally:
-            conn.close()
-            if bad:
-                sys.exit(1)
+
+        # Create an index based on the info.id dict key. Increases overall scalability
+        # with large amounts of data.
+        # Note: Silently ignores the creation if the index already exists.
+        mongo_create_index("analysis", "info.id", name="info.id_1")
+        # Some indexes that can be useful for some users
+        mongo_create_index("files", "md5", name="file_md5")
+        mongo_create_index("files", [("_task_ids", 1)])
+
+        # side indexes as ideas
+        """
+            mongo_create_index("analysis", "detections", name="detections_1")
+            mongo_create_index("analysis", "target.file.name", name="name_1")
+        """
+
+    elif repconf.elasticsearchdb.enabled:
+        # ToDo add check
+        pass
 
 
 def check_configs():
@@ -89,14 +138,17 @@ def check_configs():
     @raise CuckooStartupError: if config files do not exist.
     """
     configs = [
-        os.path.join(CUCKOO_ROOT, "conf", "cuckoo.conf"),
-        os.path.join(CUCKOO_ROOT, "conf", "reporting.conf"),
-        os.path.join(CUCKOO_ROOT, "conf", "auxiliary.conf"),
+        os.path.join(CUCKOO_ROOT, "conf", "default", "cuckoo.conf.default"),
+        os.path.join(CUCKOO_ROOT, "conf", "default", "reporting.conf.default"),
+        os.path.join(CUCKOO_ROOT, "conf", "default", "auxiliary.conf.default"),
     ]
 
     for config in configs:
-        if not os.path.exists(config):
-            raise CuckooStartupError("Config file does not exist at path: {0}".format(config))
+        if not path_exists(config):
+            raise CuckooStartupError(f"Config file does not exist at path: {config}")
+
+    if cuckoo.resultserver.ip in ("127.0.0.1", "localhost"):
+        log.error("Bad resultserver address. You need to listen on virtual machines range. Ex: 10.0.0.1 not 127.0.0.1")
 
     return True
 
@@ -109,23 +161,15 @@ def create_structure():
         os.path.join("storage", "analyses"),
         os.path.join("storage", "binaries"),
         os.path.join("data", "feeds"),
+        os.path.join("storage", "guacrecordings"),
     ]
 
     try:
         create_folders(root=CUCKOO_ROOT, folders=folders)
     except CuckooOperationalError as e:
-        raise CuckooStartupError(e)
-
-
-class DatabaseHandler(logging.Handler):
-    """Logging to database handler.
-    Used to log errors related to tasks in database.
-    """
-
-    def emit(self, record):
-        if hasattr(record, "task_id"):
-            db = Database()
-            db.add_error(record.msg, int(record.task_id))
+        raise CuckooStartupError(
+            "Can't create folders. Ensure that you executed CAPE with proper USER! Maybe should be cape user?. %s", str(e)
+        )
 
 
 class ConsoleHandler(logging.StreamHandler):
@@ -136,9 +180,13 @@ def emit(self, record):
 
         if record.levelname == "WARNING":
             colored.msg = yellow(record.msg)
-        elif record.levelname == "ERROR" or record.levelname == "CRITICAL":
+        elif record.levelname in ("ERROR", "CRITICAL"):
             colored.msg = red(record.msg)
         else:
+            # Hack for pymongo.logger.LogMessage
+            if not isinstance(record.msg, str):
+                record.msg = str(record.msg)
+
             if "analysis procedure completed" in record.msg:
                 colored.msg = cyan(record.msg)
             else:
@@ -147,27 +195,47 @@ def emit(self, record):
         logging.StreamHandler.emit(self, colored)
 
 
-def init_logging():
-    """Initializes logging."""
+def check_linux_dist():
+    ubuntu_versions = ("20.04", "22.04", "24.04")
+    with suppress(AttributeError):
+        platform_details = platform.dist()
+        if platform_details[0] != "Ubuntu" and platform_details[1] not in ubuntu_versions:
+            log.info("[!] You are using NOT supported Linux distribution by devs! Any issue report is invalid! We only support Ubuntu LTS %s", ubuntu_versions)
+
+
+def init_logging(level: int):
+    """Initializes logging.
+    @param level: The logging level for the console logs
+    """
+
+    # Pyattck creates root logger which we don't want. So we must use this dirty hack to remove it
+    # If basicConfig was already called by something and had a StreamHandler added,
+    # replace it with a ConsoleHandler.
+    for h in log.handlers[:]:
+        if isinstance(h, logging.StreamHandler) and h.stream == sys.stderr:
+            log.removeHandler(h)
+            h.close()
+
     formatter = logging.Formatter("%(asctime)s [%(name)s] %(levelname)s: %(message)s")
 
-    if cuckoo.logging.enabled:
-        days = cuckoo.logging.backup_count or 7
-        fh = logging.handlers.TimedRotatingFileHandler(os.path.join(CUCKOO_ROOT, "log", "cuckoo.log"), when="midnight", backupCount=int(days))
+    init_logger("console", level)
+    init_logger("database")
+
+    if logconf.logger.syslog_cape:
+        fh = logging.handlers.SysLogHandler(address=logconf.logger.syslog_dev)
+        fh.setFormatter(formatter)
+        log.addHandler(fh)
+
+    path = os.path.join(CUCKOO_ROOT, "log", "cuckoo.log")
+    if logconf.log_rotation.enabled:
+        days = logconf.log_rotation.backup_count or 7
+        fh = logging.handlers.TimedRotatingFileHandler(path, when="midnight", backupCount=int(days))
     else:
-        fh = logging.handlers.WatchedFileHandler(os.path.join(CUCKOO_ROOT, "log", "cuckoo.log"))
+        fh = logging.handlers.WatchedFileHandler(path)
     fh.setFormatter(formatter)
     log.addHandler(fh)
 
-    ch = ConsoleHandler()
-    ch.setFormatter(formatter)
-    log.addHandler(ch)
-
-    dh = DatabaseHandler()
-    dh.setLevel(logging.ERROR)
-    log.addHandler(dh)
-
-    log.setLevel(logging.INFO)
+    init_logger("task")
 
     logging.getLogger("urllib3").setLevel(logging.WARNING)
 
@@ -176,6 +244,14 @@ def init_console_logging():
     """Initializes logging only to console."""
     formatter = logging.Formatter("%(asctime)s [%(name)s] %(levelname)s: %(message)s")
 
+    # Pyattck creates root logger which we don't want. So we must use this dirty hack to remove it
+    # If basicConfig was already called by something and had a StreamHandler added,
+    # replace it with a ConsoleHandler.
+    for h in log.handlers[:]:
+        if isinstance(h, logging.StreamHandler) and h.stream == sys.stderr:
+            log.removeHandler(h)
+            h.close()
+
     ch = ConsoleHandler()
     ch.setFormatter(formatter)
     log.addHandler(ch)
@@ -193,10 +269,11 @@ def init_tasks():
     for task in tasks:
         if cuckoo.cuckoo.reschedule:
             db.reschedule(task.id)
-            log.info("Rescheduled task with ID {0} and target {1}".format(task.id, task.target))
+            log.info("Rescheduled task with ID %s and target %s", task.id, task.target)
         else:
+            # ToDo here?
             db.set_status(task.id, TASK_FAILED_ANALYSIS)
-            log.info("Updated running task ID {0} status to failed_analysis".format(task.id))
+            log.info("Updated running task ID %s status to failed_analysis", task.id)
 
 
 def init_modules():
@@ -208,16 +285,27 @@ def init_modules():
     # Import all processing modules.
     import_package(modules.processing)
     # Import all signatures.
-    import_package(modules.signatures)
+    import_package(modules.signatures.all)
+    import_package(modules.signatures.windows)
+    import_package(modules.signatures.linux)
+    # Import all private signatures
+    import_package(custom.signatures)
+    if HAS_CUSTOM_SIGNATURES_ALL:
+        import_package(custom.signatures.all)
+    if HAS_CUSTOM_SIGNATURES_LINUX:
+        import_package(custom.signatures.linux)
+    if HAS_CUSTOM_SIGNATURES_WINDOWS:
+        import_package(custom.signatures.windows)
     if len(os.listdir(os.path.join(CUCKOO_ROOT, "modules", "signatures"))) < 5:
-        log.warning("Suggestion: looks like you didn't install community, execute: python3 utils/community.py -h")
+        log.warning("Suggestion: looks like you didn't install community, execute: poetry run python utils/community.py -h")
     # Import all reporting modules.
     import_package(modules.reporting)
     # Import all feeds modules.
     import_package(modules.feeds)
 
     # Import machine manager.
-    import_plugin("modules.machinery." + cuckoo.cuckoo.machinery)
+    import_plugin(f"modules.machinery.{cuckoo.cuckoo.machinery}")
+    check_snapshot_state()
 
     for category, entries in list_plugins().items():
         log.debug('Imported "%s" modules:', category)
@@ -229,73 +317,94 @@ def init_modules():
                 log.debug("\t |-- %s", entry.__name__)
 
 
-def init_yara():
-    """Generates index for yara signatures."""
-
-    categories = ("binaries", "urls", "memory", "CAPE", "macro", "monitor")
-
-    log.debug("Initializing Yara...")
+def check_snapshot_state():
+    """Checks the state of snapshots and machine architecture for KVM/QEMU machinery."""
+    if cuckoo.cuckoo.machinery not in ("kvm", "qemu"):
+        return
 
-    # Generate root directory for yara rules.
-    yara_root = os.path.join(CUCKOO_ROOT, "data", "yara")
+    try:
+        import libvirt
+        from xml.etree import ElementTree
+    except ImportError:
+        raise CuckooStartupError(
+            "The 'libvirt-python' library is required for KVM/QEMU machinery but is not installed. "
+            "Please install it (e.g., 'cd /opt/CAPEv2/ ; sudo -u cape /etc/poetry/bin/poetry run extra/libvirt_installer.sh')."
+        )
+
+    machinery_config = Config(cuckoo.cuckoo.machinery)
+    dsn = machinery_config.get(cuckoo.cuckoo.machinery).get("dsn")
+    conn = None
 
-    # Loop through all categories.
-    for category in categories:
-        # Check if there is a directory for the given category.
-        category_root = os.path.join(yara_root, category)
-        if not os.path.exists(category_root):
-            log.warning("Missing Yara directory: %s?", category_root)
-            continue
+    try:
+        conn = libvirt.open(dsn)
+    except libvirt.libvirtError as e:
+        raise CuckooStartupError(f"Failed to connect to libvirt with DSN '{dsn}'. Error: {e}")
 
-        rules, indexed = {}, []
-        for category_root, _, filenames in os.walk(category_root, followlinks=True):
-            for filename in filenames:
-                if not filename.endswith((".yar", ".yara")):
-                    continue
-                filepath = os.path.join(category_root, filename)
-                rules["rule_%s_%d" % (category, len(rules))] = filepath
-                indexed.append(filename)
+    if conn is None:
+        raise CuckooStartupError(f"Failed to connect to libvirt with DSN '{dsn}'. Please check your configuration and libvirt service.")
 
-            # Need to define each external variable that will be used in the
-        # future. Otherwise Yara will complain.
-        externals = {"filename": ""}
+    try:
+        for machine_name in machinery_config.get(cuckoo.cuckoo.machinery).machines.split(","):
+            machine_name = machine_name.strip()
+            if not machine_name:
+                continue
 
-        while True:
+            snapshot_name = ""
             try:
-                File.yara_rules[category] = yara.compile(filepaths=rules, externals=externals)
-                break
-            except yara.SyntaxError as e:
-                bad_rule = str(e).split(".yar")[0]+".yar"
-                log.debug(f"Trying to delete bad rule: {bad_rule}")
-                if os.path.basename(bad_rule) in indexed:
-                    for k,v in rules.items():
-                        if v == bad_rule:
-                            del rules[k]
-                            indexed.remove(os.path.basename(bad_rule))
-                            print("Deleted broken yara rule: {}".format(bad_rule))
-                            break
+                machine_config = machinery_config.get(machine_name)
+                machine_name = machine_config.get("label")
+                domain = conn.lookupByName(machine_name)
+                # Check for valid architecture configuration.
+                arch = machine_config.get("arch")
+                if not arch:
+                    raise CuckooStartupError(f"Missing 'arch' configuration for VM '{machine_name}'. Please specify a valid architecture (e.g., x86, x64).")
+
+                if arch == "x86_64":
+                    raise CuckooStartupError(
+                        f"Invalid architecture '{arch}' for VM '{machine_name}'. Please use 'x64' instead of 'x86_64'."
+                    )
+
+                if arch != arch.lower():
+                    raise CuckooStartupError(
+                        f"Invalid architecture '{arch}' for VM '{machine_name}'. Architecture must be all lowercase."
+                    )
+
+                # Check snapshot state.
+                snapshot_name = machine_config.get("snapshot")
+                snapshot = None
+
+                if snapshot_name:
+                    snapshot = domain.snapshotLookupByName(snapshot_name)
                 else:
-                    break
-            except yara.Error as e:
-                print(e, sys.exc_info())
-                log.error("There was a syntax error in one or more Yara rules: %s" % e)
-                break
-
-        if category == "memory":
-            mem_rules = yara.compile(filepaths=rules, externals=externals)
-            mem_rules.save(os.path.join(yara_root, "index_memory.yarc"))
-            """
-            with open(os.path.join(yara_root, "index_memory.yarc"), "w") as f:
-                for filename in sorted(indexed):
-                    f.write('include "%s"\n' % os.path.join(category_root, filename))
-            """
+                    if domain.hasCurrentSnapshot(0):
+                        snapshot = domain.snapshotCurrent(0)
+                        snapshot_name = snapshot.getName()
+                        log.info("No snapshot name configured for VM '%s', checking latest: '%s'", machine_name, snapshot_name)
+                    else:
+                        log.warning("No snapshot configured or found for VM '%s'. Skipping check.", machine_name)
+                        continue
+
+                xml_desc = snapshot.getXMLDesc(0)
+                root = ElementTree.fromstring(xml_desc)
+                state_element = root.find("state")
+
+                if state_element is None or state_element.text != "running":
+                    state = state_element.text if state_element is not None else "unknown"
+                    raise CuckooStartupError(
+                        f"Snapshot '{snapshot_name}' for VM '{machine_name}' is not in a 'running' state (current state: '{state}'). "
+                        "Please ensure you take snapshots of running VMs."
+                    )
+
+            except libvirt.libvirtError as e:
+                # It's possible a snapshot name is provided but doesn't exist, which is a config error.
+                snapshot_identifier = f"with snapshot '{snapshot_name}'" if snapshot_name else ""
+                raise CuckooStartupError(
+                    f"Error checking snapshot state for VM '{machine_name}' {snapshot_identifier}. Libvirt error: {e}"
+                )
+    finally:
+        if conn:
+            conn.close()
 
-        indexed = sorted(indexed)
-        for entry in indexed:
-            if (category, entry) == indexed[-1]:
-                log.debug("\t `-- %s %s", category, entry)
-            else:
-                log.debug("\t |-- %s %s", category, entry)
 
 def init_rooter():
     """If required, check whether the rooter is running and whether we can
@@ -320,7 +429,7 @@ def init_rooter():
             raise CuckooStartupError(
                 "The rooter is required but it is either not running or it "
                 "has been configured to a different Unix socket path. "
-                "python3 utils/rooter.py -h or systemctl status cape-rooter"
+                "poetry run python utils/rooter.py -h or systemctl status cape-rooter"
             )
 
         if e.strerror == "Connection refused":
@@ -328,26 +437,34 @@ def init_rooter():
                 "The rooter is required but we can't connect to it as the "
                 "rooter is not actually running. "
                 "(In order to disable the use of rooter, please set route "
-                "and internet to none in routing.conf)."
+                "and internet to none in routing.conf)"
             )
 
         if e.strerror == "Permission denied":
+            extra_msg = ""
+            if gt.getuser() != cuckoo.cuckoo.get("username", "cape"):
+                extra_msg = 'You have executed this process with WRONG user! Run with "cape" user\n'
+
             raise CuckooStartupError(
+                f"{extra_msg} "
                 "The rooter is required but we can't connect to it due to "
                 "incorrect permissions. Did you assign it the correct group? "
                 "(In order to disable the use of rooter, please set route "
-                "and internet to none in routing.conf)."
+                "and internet to none in routing.conf)"
             )
 
-        raise CuckooStartupError("Unknown rooter error: %s" % e)
+        raise CuckooStartupError(f"Unknown rooter error: {e}")
 
     rooter("cleanup_rooter")
+    rooter("cleanup_vrf", routing.routing.internet)
 
     # Do not forward any packets unless we have explicitly stated so.
     rooter("forward_drop")
     rooter("state_disable")
     rooter("state_enable")
 
+    # ToDo check if ip_forward is on
+
 
 def init_routing():
     """Initialize and check whether the routing information is correct."""
@@ -362,7 +479,7 @@ def init_routing():
                 continue
 
             if not hasattr(routing, name):
-                raise CuckooStartupError("Could not find socks5 configuration for %s" % name)
+                raise CuckooStartupError(f"Could not find socks5 configuration for {name}")
 
             entry = routing.get(name)
             socks5s[entry.name] = entry
@@ -374,18 +491,13 @@ def init_routing():
                 continue
 
             if not hasattr(routing, name):
-                raise CuckooStartupError("Could not find VPN configuration for %s" % name)
+                raise CuckooStartupError(f"Could not find VPN configuration for {name}")
 
             entry = routing.get(name)
-            # add = 1
-            # if not rooter("nic_available", entry.interface):
-            # raise CuckooStartupError(
-            #   "The network interface that has been configured for "
-            #    "VPN %s is not available." % entry.name
-            # )
-            #    add = 0
-            if not rooter("rt_available", entry.rt_table):
-                raise CuckooStartupError("The routing table that has been configured for VPN %s is not available." % entry.name)
+            if routing.routing.verify_rt_table:
+                is_rt_available = rooter("rt_available", entry.rt_table)["output"]
+                if not is_rt_available:
+                    raise CuckooStartupError(f"The routing table that has been configured for VPN {entry.name} is not available")
             vpns[entry.name] = entry
 
             # Disable & enable NAT on this network interface. Disable it just
@@ -398,36 +510,54 @@ def init_routing():
                 rooter("flush_rttable", entry.rt_table)
                 rooter("init_rttable", entry.rt_table, entry.interface)
 
+    # If we are storage and webgui only but using as default route one of the workers exitnodes
+    if dist_conf.distributed.master_storage_only:
+        return
+
     # Check whether the default VPN exists if specified.
     if routing.routing.route not in ("none", "internet", "tor", "inetsim"):
         if not routing.vpn.enabled:
-            raise CuckooStartupError("A VPN has been configured as default routing interface for VMs, but VPNs have not been enabled in vpn.conf")
+            raise CuckooStartupError(
+                "A VPN has been configured as default routing interface for VMs, but VPNs have not been enabled in routing.conf"
+            )
 
         if routing.routing.route not in vpns and routing.routing.route not in socks5s:
-            raise CuckooStartupError("The VPN/Socks5 defined as default routing target has not been configured in routing.conf. You should use name field")
+            raise CuckooStartupError(
+                "The VPN/Socks5 defined as default routing target has not been configured in routing.conf. You should use name field"
+            )
 
     # Check whether the dirty line exists if it has been defined.
     if routing.routing.internet != "none":
-        if not rooter("nic_available", routing.routing.internet):
-            raise CuckooStartupError("The network interface that has been configured as dirty line is not available.")
-
-        if not rooter("rt_available", routing.routing.rt_table):
-            raise CuckooStartupError("The routing table that has been configured for dirty line interface is not available.")
-
-        # Disable & enable NAT on this network interface. Disable it just
-        # in case we still had the same rule from a previous run.
-        rooter("disable_nat", routing.routing.internet)
-        rooter("enable_nat", routing.routing.internet)
-
-        # Populate routing table with entries from main routing table.
+        is_nic_available = rooter("nic_available", routing.routing.internet)["output"]
+        if not is_nic_available:
+            raise CuckooStartupError("The network interface that has been configured as dirty line is not available")
+
+        if routing.routing.verify_rt_table:
+            is_rt_available = rooter("rt_available", routing.routing.rt_table)["output"]
+            if not is_rt_available:
+                raise CuckooStartupError(
+                    f"The routing table that has been configured ({routing.routing.rt_table}) for dirty line interface is not available"
+                )
+
+        if routing.routing.nat:
+            # Disable & enable NAT on this network interface. Disable it just
+            # in case we still had the same rule from a previous run.
+            rooter("disable_nat", routing.routing.internet)
+            rooter("enable_nat", routing.routing.internet)
+            # Populate routing table with entries from main routing table.
+        else:
+            rooter("disable_nat", routing.routing.internet)
+            if routing.routing.no_local_routing:
+                rooter("init_vrf", routing.routing.rt_table, routing.routing.internet)
         if routing.routing.auto_rt:
             rooter("flush_rttable", routing.routing.rt_table)
             rooter("init_rttable", routing.routing.rt_table, routing.routing.internet)
 
     # Check if tor interface exists, if yes then enable nat
     if routing.tor.enabled and routing.tor.interface:
-        if not rooter("nic_available", routing.tor.interface):
-            raise CuckooStartupError("The network interface that has been configured as tor line is not available.")
+        is_nic_available = rooter("nic_available", routing.tor.interface)["output"]
+        if not is_nic_available:
+            raise CuckooStartupError("The network interface that has been configured as tor line is not available")
 
         # Disable & enable NAT on this network interface. Disable it just
         # in case we still had the same rule from a previous run.
@@ -443,8 +573,9 @@ def init_routing():
     # if routing.inetsim.interface and cuckoo.routing.inetsim_interface !=  routing.tor.interface:
     # Check if inetsim interface exists, if yes then enable nat
     if routing.inetsim.enabled and routing.inetsim.interface:
-        if not rooter("nic_available", routing.inetsim.interface):
-            raise CuckooStartupError("The network interface that has been configured as inetsim line is not available.")
+        is_nic_available = rooter("nic_available", routing.inetsim.interface)["output"]
+        if not is_nic_available:
+            raise CuckooStartupError("The network interface that has been configured as inetsim line is not available")
 
         # Disable & enable NAT on this network interface. Disable it just
         # in case we still had the same rule from a previous run.
@@ -455,3 +586,69 @@ def init_routing():
         if routing.routing.auto_rt:
             rooter("flush_rttable", routing.routing.rt_table)
             rooter("init_rttable", routing.routing.rt_table, routing.routing.internet)
+
+
+def check_tcpdump_permissions():
+    tcpdump = auxconf.sniffer.get("tcpdump", "/usr/bin/tcpdump")
+
+    user = False
+    with suppress(Exception):
+        user = gt.getuser()
+
+    pcap_permissions_error = False
+    if user:
+        try:
+            subprocess.check_call(["/usr/bin/sudo", "--list", "--non-interactive", tcpdump], stderr=subprocess.DEVNULL)
+        except (FileNotFoundError, subprocess.CalledProcessError):
+            try:
+                if user not in grp.getgrnam("pcap").gr_mem:
+                    pcap_permissions_error = True
+            except KeyError:
+                log.error("Group pcap does not exist.")
+                pcap_permissions_error = True
+
+    if pcap_permissions_error:
+        print(
+            f"""\nPcap generation wan't work till you fix the permission problems. Please run following command to fix it!
+
+            groupadd pcap
+            usermod -a -G pcap {user}
+            chgrp pcap {tcpdump}
+            setcap cap_net_raw,cap_net_admin=eip {tcpdump}
+
+            OR add the following line to /etc/sudoers.d/tcpdump:
+
+            {user} ALL=NOPASSWD: {tcpdump}
+            """
+        )
+
+
+def check_vms_n_resultserver_networking():
+    vms = {}
+    resultserver_block = cuckoo.resultserver.ip.rsplit(".", 2)[0]
+    machinery = cuckoo.cuckoo.machinery
+    if machinery == "multi":
+        for mmachinery in Config(machinery).multi.get("machinery").split(","):
+            vms.update(
+                {
+                    x.strip(): [getattr(Config(mmachinery), x).ip, getattr(getattr(Config(mmachinery), x), "resultserver", "")]
+                    for x in getattr(Config(mmachinery), mmachinery).get("machines").split(",")
+                    if x.strip()
+                }
+            )
+    else:
+        vms.update(
+            {
+                x.strip(): [
+                    getattr(Config(machinery), x).ip.rsplit(".", 2)[0],
+                    getattr(getattr(Config(machinery), x), "resultserver", "".rsplit(".", 2)[0]),
+                ]
+                for x in getattr(Config(machinery), machinery).get("machines").split(",")
+                if x.strip()
+            }
+        )
+    for vm, network in vms.items():
+        vm_ip, vm_rs = network
+        # is there are better way to check networkrange without range CIDR?
+        if not resultserver_block.startswith(vm_ip) or (vm_rs and not vm_rs.startswith(vm_ip)):
+            log.error("Your resultserver and VM: %s are in different nework ranges. This might give you: CuckooDeadMachine", vm)
diff --git a/lib/downloaders/__init__.py b/lib/downloaders/__init__.py
new file mode 100644
index 00000000000..c81c3f7bde1
--- /dev/null
+++ b/lib/downloaders/__init__.py
@@ -0,0 +1,83 @@
+
+import logging
+import os
+
+from lib.cuckoo.common.config import Config
+from lib.cuckoo.common.constants import CUCKOO_ROOT
+from lib.cuckoo.common.load_extra_modules import load_downloaders
+from lib.cuckoo.common.path_utils import path_exists, path_mkdir
+
+cfg = Config()
+integrations_cfg = Config("integrations")
+log = logging.getLogger(__name__)
+
+
+class Downloaders(object):
+    """
+    A class to manage and utilize various downloaders for downloading samples.
+
+    Attributes:
+        downloaders (dict): A dictionary of available downloaders.
+        downloaders_order (list): A list of downloaders in the order specified by the configuration.
+        destination_folder (str): The folder where downloaded samples will be stored.
+
+    Methods:
+        __init__(destination_folder=None):
+            Initializes the Downloaders class with the specified destination folder.
+
+        download(hash, apikey=None):
+            Attempts to download a sample using the available downloaders in the specified order.
+            Returns the sample and the downloader's name if successful, otherwise returns False, False.
+    """
+    def __init__(self, destination_folder=None):
+        self.downloaders = load_downloaders(CUCKOO_ROOT)
+        if integrations_cfg.downloaders.order:
+            order_list = [item.strip() for item in integrations_cfg.downloaders.order.split(',')]
+            self.downloaders_order = [k for k in order_list if k in self.downloaders.keys()]
+        else:
+            self.downloaders_order = list(self.downloaders.keys())
+
+        if destination_folder:
+            self.destination_folder = destination_folder
+        else:
+            self.destination_folder = os.path.join(cfg.cuckoo.tmppath, "cape-external")
+        if not path_exists(self.destination_folder):
+            path_mkdir(self.destination_folder, exist_ok=True)
+
+    def download(self, hash, apikey: str = None):
+        """
+        Attempts to download a sample using the available downloaders in the specified order.
+
+        Args:
+            hash (str): The hash of the sample to be downloaded.
+            apikey (str, optional): The API key to be used for the downloaders that require authentication. Defaults to None.
+
+        Returns:
+            tuple: A tuple containing the downloaded sample and the name of the downloader service used.
+                If no sample is downloaded, returns (False, False).
+
+        Raises:
+            Exception: If an error occurs during the download process, it is logged and the next downloader is attempted.
+        """
+        sample = False
+        for service in self.downloaders_order:
+            try:
+                if self.downloaders[service].is_supported(hash, apikey):
+                    sample = self.downloaders[service].download(hash, apikey)
+                    if sample:
+                        return sample, self.downloaders[service].__name__
+                else:
+                    log.error("%s is not a valid hash for %s", hash, service)
+            except Exception as e:
+                log.error("Error downloading sample from %s: %s", service, e)
+        if not sample:
+            return False, False
+
+if __name__ == "__main__":
+    import sys
+    dl = Downloaders()
+    sample, service = dl.download(sys.argv[1])
+    if sample:
+        print("Downloaded sample from %s" % service)
+        with open(sys.argv[1], "wb") as f:
+            f.write(sample)
diff --git a/lib/downloaders/malwarebazaar.py b/lib/downloaders/malwarebazaar.py
new file mode 100644
index 00000000000..63915bef584
--- /dev/null
+++ b/lib/downloaders/malwarebazaar.py
@@ -0,0 +1,77 @@
+import io
+import logging
+
+import pyzipper
+import requests
+
+from lib.cuckoo.common.config import Config
+
+integrations_cfg = Config("integrations")
+
+log = logging.getLogger(__name__)
+
+_bazaar_map = {
+    32: "md5_hash",
+    40: "sha1_hash",
+    64: "sha256_hash",
+}
+
+def is_supported(hash: str, apikey: str = "") -> bool:
+    """
+    Checks if the hash is supported by the MalwareBazaar service.
+
+    Args:
+        hash (str): The hash to check.
+
+    Returns:
+        bool: True if the hash is supported by MalwareBazaar, False otherwise.
+    """
+
+    if len(hash) not in (32, 40, 64):
+        log.error("%s is not a valid hash for MalwareBazaar", hash)
+        return False
+    elif not integrations_cfg.abusech.apikey and not apikey:
+        log.error("MalwareBazaar API key not configured. Configure it in integrations.conf")
+        return False
+
+    return True
+
+
+def download(hash: str, apikey: str = "") -> bytes:
+    """
+    Downloads a malware sample from MalwareBazaar using the provided hash and API key.
+
+    Args:
+        hash (str): The hash of the malware sample to download. Can be MD5, SHA1, or SHA256.
+        apikey (str, optional): The API key for accessing MalwareBazaar. Defaults to an empty string.
+
+    Returns:
+        bytes: The downloaded malware sample as bytes. Returns an empty byte string if the download fails or the file is not found.
+    """
+
+    sample = b""
+    try:
+        data = requests.post(
+            "https://mb-api.abuse.ch/api/v1/",
+            data={"query": "get_file", _bazaar_map[len(hash)]: hash},
+            headers={"API-KEY": integrations_cfg.abusech.apikey or apikey, "User-Agent": "CAPE Sandbox"},
+        )
+        if data.ok:
+            try:
+                if isinstance(data.content, bytes):
+                    if b"file_not_found" in data.content[:50]:
+                        return sample
+                    tmp_sample = io.BytesIO(data.content)
+                elif isinstance(data.content, io.BytesIO):
+                    tmp_sample = data.content
+                else:
+                    return sample
+                with pyzipper.AESZipFile(tmp_sample) as zf:
+                    zf.setpassword(b"infected")
+                    sample = zf.read(zf.namelist()[0])
+            except pyzipper.zipfile.BadZipFile:
+                log.error("malwarebazaar_dl: %s", str(data.content[:100]))
+    except Exception as e:
+        log.exception(e)
+
+    return sample
diff --git a/lib/downloaders/virustotal.py b/lib/downloaders/virustotal.py
new file mode 100644
index 00000000000..5eae9995f72
--- /dev/null
+++ b/lib/downloaders/virustotal.py
@@ -0,0 +1,72 @@
+import logging
+
+import requests
+
+from lib.cuckoo.common.config import Config
+
+integrations_cfg = Config("integrations")
+log = logging.getLogger(__name__)
+
+
+def is_supported(hash: str, apikey: str) -> bool:
+    """
+    Checks if the hash is supported by the VirusTotal service.
+
+    Args:
+        hash (str): The hash to check.
+
+    Returns:
+        bool: True if the hash is supported by VirusTotal, False otherwise.
+    """
+    if len(hash) not in (32, 40, 64):
+        log.error("%s is not a valid hash for VirusTotal", hash)
+        return False
+    elif not integrations_cfg.virustotal.apikey and not apikey:
+        log.error("VirusTotal API key not configured. Configure it in integrations.conf")
+        return False
+
+    return True
+
+
+def download(hash: str, apikey: str=None) -> bytes:
+    """
+    Downloads a file from VirusTotal using the provided hash and API key.
+
+    Args:
+        hash (str): The hash of the file to download.
+        apikey (str, optional): The VirusTotal API key. If not provided, it will use the key from the integrations configuration.
+
+    Returns:
+        bytes: The content of the downloaded file as bytes. Returns an empty byte string if the download fails.
+
+    Raises:
+        requests.exceptions.RequestException: If there is an issue with the HTTP request.
+
+    Logs:
+        Various error messages depending on the HTTP response status code:
+        - 403: Invalid or unauthorized API key.
+        - 404: Hash not found on VirusTotal.
+        - Other: General download failure.
+    """
+
+    url = f"https://www.virustotal.com/api/v3/files/{hash.lower()}/download"
+    sample = b""
+    try:
+        r = requests.get(url, headers={"x-apikey": integrations_cfg.virustotal.apikey or apikey}, verify=False)
+    except requests.exceptions.RequestException as e:
+        logging.error(e)
+        return
+    if (
+        r.status_code == 200
+        and r.content != b"Hash Not Present"
+        and b"The request requires higher privileges than provided by the access token" not in r.content
+    ):
+        sample = r.content
+    elif r.status_code == 403:
+        log.error("API key provided is not a valid VirusTotal key or is not authorized for downloads")
+    elif r.status_code == 404:
+        log.error("Hash not found on VirusTotal")
+    else:
+        log.error("Was impossible to download from VirusTotal")
+
+    return sample
diff --git a/modules/auxiliary/AzSniffer.py b/modules/auxiliary/AzSniffer.py
new file mode 100644
index 00000000000..68538834813
--- /dev/null
+++ b/modules/auxiliary/AzSniffer.py
@@ -0,0 +1,209 @@
+import logging
+import os
+import subprocess
+from urllib.parse import urlparse
+
+from lib.cuckoo.common.config import Config
+
+HAVE_AZURE = False
+cfg = Config()
+if cfg.cuckoo.machinery == "az":
+    try:
+        from azure.core.exceptions import AzureError
+        from azure.identity import ClientSecretCredential
+        from azure.mgmt.network import NetworkManagementClient
+        from azure.mgmt.network.models import PacketCapture, PacketCaptureStorageLocation
+        from azure.mgmt.storage import StorageManagementClient
+        from azure.storage.blob import BlobServiceClient
+
+        HAVE_AZURE = True
+    except ImportError:
+        HAVE_AZURE = False
+        print("Missing machinery-required libraries.")
+        print(
+            "poetry run python -m pip install azure-identity msrest msrestazure azure-mgmt-compute azure-mgmt-network azure-mgmt-storage azure-storage-blob"
+        )
+
+from lib.cuckoo.common.abstracts import Auxiliary
+from lib.cuckoo.common.config import Config
+
+log = logging.getLogger(__name__)
+
+
+class AzSniffer(Auxiliary):
+    def __init__(self):
+        super().__init__()
+        self.azsniffer_cfg = Config("auxiliary").get("AzSniffer")
+        self.enabled = self.azsniffer_cfg.enabled
+
+        if not HAVE_AZURE or not self.enabled:
+            return
+
+        self.cfg = Config("az")
+        self.az_config = self.cfg.get("az")
+        self.capture_name = None
+        self.resource_group = self.az_config.resource_group
+        self.storage_account = self.az_config.storage_account
+        self.vmss_name = self.az_config.vmss_name
+        self.location = self.az_config.location
+        self.subscription_id = self.az_config.subscription_id
+        self.connection_string = self._clean_connection_string(self.az_config.connection_string)
+        self.tenant_id = self.az_config.tenant_id
+        self.client_id = self.az_config.client_id
+        self.client_secret = self.az_config.client_secret
+
+        self.credentials = self._get_credentials()
+        self.network_client = NetworkManagementClient(self.credentials, self.subscription_id)
+        self.storage_client = StorageManagementClient(self.credentials, self.subscription_id)
+        self.blob_service_client = BlobServiceClient.from_connection_string(self.connection_string)
+        self.blob_url = None
+
+    def _clean_connection_string(self, connection_string):
+        return connection_string.strip('"')
+
+    def _get_credentials(self):
+        return ClientSecretCredential(tenant_id=self.tenant_id, client_id=self.client_id, client_secret=self.client_secret)
+
+    def start(self):
+        if not self.enabled:
+            return
+        self.capture_name = f"PacketCapture_{self.task.id}"
+        custom_filters = []
+        self.create_packet_capture(custom_filters)
+
+    def create_packet_capture(self, custom_filters):
+        storage_location = PacketCaptureStorageLocation(
+            storage_id=f"/subscriptions/{self.subscription_id}/resourceGroups/{self.resource_group}/providers/Microsoft.Storage/storageAccounts/{self.storage_account}",
+            storage_path=f"https://{self.storage_account}.blob.core.windows.net/network-watcher-logs/{self.capture_name}.cap",
+        )
+
+        packet_capture = PacketCapture(
+            target=f"/subscriptions/{self.subscription_id}/resourceGroups/{self.resource_group}/providers/Microsoft.Compute/virtualMachineScaleSets/{self.vmss_name}",
+            storage_location=storage_location,
+            time_limit_in_seconds=18000,
+            total_bytes_per_session=1073741824,
+            filters=custom_filters,
+        )
+
+        try:
+            poller = self.network_client.packet_captures.begin_create(
+                resource_group_name=self.resource_group,
+                network_watcher_name=f"NetworkWatcher_{self.location}",
+                packet_capture_name=self.capture_name,
+                parameters=packet_capture,
+            )
+            result = poller.result()
+
+            self.blob_url = result.storage_location.storage_path
+            log.info("Started Azure Network Watcher packet capture: %s",self.capture_name)
+            log.debug("Blob URL for packet capture: %s", self.blob_url)
+        except AzureError as e:
+            log.error("Azure error occurred while creating packet capture: %s", str(e))
+            raise
+        except Exception as e:
+            log.error("Unexpected error occurred while creating packet capture: %s", str(e))
+            raise
+
+    def stop(self):
+        if not self.enabled:
+            return
+
+        if not self.capture_name:
+            log.error("No packet capture to stop")
+            return
+
+        self.stop_packet_capture()
+        self.download_packet_capture()
+        self.delete_packet_capture()
+
+    def stop_packet_capture(self):
+        try:
+            poller = self.network_client.packet_captures.begin_stop(
+                resource_group_name=self.resource_group,
+                network_watcher_name=f"NetworkWatcher_{self.location}",
+                packet_capture_name=self.capture_name,
+            )
+            poller.result()
+            log.info("Stopped Azure Network Watcher packet capture: %s", self.capture_name)
+        except AzureError as e:
+            log.error("Azure error occurred while stopping packet capture: %s", str(e))
+        except Exception as e:
+            log.error("Unexpected error occurred while stopping packet capture: %s", str(e))
+
+    def download_packet_capture(self):
+        if not self.blob_url:
+            log.error("No blob URL available for download")
+            return
+
+        primary_output_dir = f"/opt/CAPEv2/storage/analyses/{self.task.id}"
+        primary_output_file = os.path.join(primary_output_dir, "dump.cap")
+        fallback_output_file = f"/tmp/dump_task_{self.task.id}.cap"
+
+        try:
+            parsed_url = urlparse(self.blob_url)
+            container_name = parsed_url.path.split("/")[1]
+            blob_name = "/".join(parsed_url.path.split("/")[2:]).strip('"')
+
+            blob_client = self.blob_service_client.get_blob_client(container=container_name, blob=blob_name)
+
+            self._download_to_file(blob_client, primary_output_file)
+            log.info("Downloaded packet capture for task %s to %s", str(self.task.id), primary_output_file)
+            self.convert_cap_to_pcap(primary_output_file)
+        except AzureError as e:
+            log.error("Azure error occurred while downloading packet capture: %s", str(e))
+            self._try_fallback_download(blob_client, fallback_output_file)
+        except Exception as e:
+            log.error("Unexpected error occurred while downloading packet capture: %s", str(e))
+            self._try_fallback_download(blob_client, fallback_output_file)
+
+    def _try_fallback_download(self, blob_client, fallback_output_file):
+        try:
+            self._download_to_file(blob_client, fallback_output_file)
+            log.info("Downloaded packet capture for task %s to fallback location %s", self.task.id, fallback_output_file)
+            self.convert_cap_to_pcap(fallback_output_file)
+        except Exception as e:
+            log.error("Failed to download packet capture to fallback location: %s", str(e))
+
+    def _download_to_file(self, blob_client, output_file):
+        os.makedirs(os.path.dirname(output_file), exist_ok=True)
+        with open(output_file, "wb") as file:
+            download_stream = blob_client.download_blob()
+            file.write(download_stream.readall())
+
+    def convert_cap_to_pcap(self, cap_file_path):
+        output_dir = f"/opt/CAPEv2/storage/analyses/{self.task.id}"
+        pcap_file_path = os.path.join(output_dir, "dump.pcap")
+        convert_cmd = ["editcap", "-F", "pcap", cap_file_path, pcap_file_path]
+
+        try:
+            os.makedirs(output_dir, exist_ok=True)
+            subprocess.run(convert_cmd, check=True, capture_output=True, text=True)
+            log.info("Converted .cap file to .pcap: {pcap_file_path}")
+            os.remove(cap_file_path)  # Remove the original .cap file
+        except subprocess.CalledProcessError as e:
+            log.error("Failed to convert .cap file to .pcap: %s", str(e.stderr))
+        except OSError as e:
+            log.error("Failed to create directory or remove .cap file: %s", str(e))
+
+    def delete_packet_capture(self):
+        try:
+            poller = self.network_client.packet_captures.begin_delete(
+                resource_group_name=self.resource_group,
+                network_watcher_name=f"NetworkWatcher_{self.location}",
+                packet_capture_name=self.capture_name,
+            )
+            poller.result()
+            log.info("Deleted Azure Network Watcher packet capture: %s", self.capture_name)
+        except AzureError as e:
+            log.error("Azure error occurred while deleting packet capture: %s", str(e))
+        except Exception as e:
+            log.error("Unexpected error occurred while deleting packet capture: %s", str(e))
+
+    def set_task(self, task):
+        self.task = task
+
+    def set_machine(self, machine):
+        self.machine = machine
+
+    def set_options(self, options):
+        self.options = options
diff --git a/modules/auxiliary/Mitmdump.py b/modules/auxiliary/Mitmdump.py
new file mode 100644
index 00000000000..6c232392a7f
--- /dev/null
+++ b/modules/auxiliary/Mitmdump.py
@@ -0,0 +1,227 @@
+# Copyright (C) 2024 davidsb@virustotal.com
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+# This module runs mitmdump to get a HAR file
+# mitmdump is behind mitmproxy project https://mitmproxy.org/
+
+# NOTE  /opt/mitmproxy/mitmdump_wrapper.sh
+# is needed to write pidfile of mitmdump to exit.
+"""
+#!/bin/bash
+echo $$ > mitmdump.pid
+# exec full args
+exec $@
+"""
+
+# NOTE  mitmdump is launched in net namespace,
+# root access is needed to run in other namespace
+# workaround for now is to allow sudo, which is security issue
+# alternative could be to use rooter module
+# in /etc/sudoers.d/ip_netns, add a line like
+"""
+cape ALL=NOPASSWD: /usr/sbin/ip netns exec * /usr/bin/sudo -u cape *
+"""
+
+
+
+import logging
+import os
+import socket
+import time
+import signal
+import subprocess
+from threading import Thread
+
+from lib.cuckoo.common.abstracts import Auxiliary
+from lib.cuckoo.common.config import Config
+from lib.cuckoo.common.constants import CUCKOO_ROOT
+from lib.cuckoo.core.rooter import rooter
+
+mitmdump = Config("mitmdump")
+
+log = logging.getLogger(__name__)
+
+def read_pid_from_file(pid_file_path):
+    """
+    Reads a process ID (PID) from a given file.
+
+    Args:
+        pid_file_path (str): The path to the PID file.
+
+    Returns:
+        int or None: The PID if successfully read, or None if an error occurs.
+    """
+    try:
+        with open(pid_file_path, 'r') as f:
+            pid_str = f.read().strip()
+            pid = int(pid_str)
+            return pid
+    except FileNotFoundError:
+        log.error("Error: PID file not found at: %s", pid_file_path)
+        return None
+    except ValueError:
+        log.error("Error: Invalid PID format in: %s", pid_file_path)
+        return None
+    except Exception as e:
+        log.error("An unexpected error occurred: %s", e)
+        return None
+
+def wait_for_pid_exit(pid, timeout=None, poll_interval=1):
+    """
+    Waits for a process with the given PID to exit.
+
+    Args:
+        pid (int): The process ID to wait for.
+        timeout (int, optional): The maximum time to wait in seconds. Defaults to None (wait indefinitely).
+        poll_interval (int, optional): The interval in seconds to poll for the process status. Defaults to 1 second.
+
+    Returns:
+        bool: True if the process exited within the timeout, False otherwise.
+    """
+    start_time = time.time()
+    while True:
+        try:
+            os.kill(pid, 0)  # Send signal 0 to check if the process exists
+            if timeout is not None and time.time() - start_time > timeout:
+                return False  # Timeout reached
+            time.sleep(poll_interval)
+        except OSError:
+            return True  # Process does not exist (exited)
+
+class Mitmdump(Auxiliary):
+    """Module for generating HAR with Mitmdump."""
+
+    def __init__(self):
+        Auxiliary.__init__(self)
+        Thread.__init__(self)
+        log.info("Mitmdump module loaded")
+        self.mitmdump_thread = None
+
+    def start(self):
+        """Start mitmdump in a separate thread."""
+
+        self.mitmdump_thread = MitmdumpThread(self.task, self.machine)
+        self.mitmdump_thread.start()
+        return True
+
+    def stop(self):
+        """Stop mitmdump capture thread."""
+        if self.mitmdump_thread:
+            self.mitmdump_thread.stop()
+
+
+class MitmdumpThread(Thread):
+    """Thread responsible for control mitmdump service for each analysis."""
+
+    def __init__(self, task, machine):
+        Thread.__init__(self)
+        self.task = task
+        self.machine = machine
+        self.do_run = True
+        self.host_ip = mitmdump.cfg.get("host")
+        self.host_iface = mitmdump.cfg.get("interface")
+        self.mitmdump_bin = mitmdump.cfg.get("bin")
+        self.proc = None
+        self.host_port = self._get_unused_port()
+        self.mitmdump_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(self.task.id), "mitmdump")
+
+    def _get_netns(self):
+        for option in self.task.options.split(","):
+            if option.startswith("netns="):
+                _key, value = option.split("=")
+                return value
+        return ''
+
+    def stop(self):
+        """Set stop mitmdump capture."""
+        self.do_run = False
+
+        log.info("MitmdumpThread.stop task.options %s", self.task.options)
+
+        pidfile_path = os.path.join(self.mitmdump_path, "mitmdump.pid")
+        pid = read_pid_from_file(pidfile_path)
+        if pid:
+            log.info("MitmdumpThread.stop pid %s", pid)
+            # must directly kill subprocess since popen does sudo.
+            os.kill(pid, signal.SIGTERM)
+            wait_for_pid_exit(pid, 15, 1)
+
+        try:
+            netns = self._get_netns()
+            rooter("disable_mitmdump", self.host_iface, self.machine.ip, self.host_port, netns)
+        except subprocess.CalledProcessError as e:
+            log.error("Failed to execute firewall rules: %s", e)
+        log.info("MitmdumpThread.stop finished")
+
+    def run(self):
+        """Core function to the manage the module"""
+        if "mitmdump" not in self.task.options:
+            log.info("Exiting mitmdump. No parameter received.")
+            return
+
+        log.info("MitmdumpThread.run task.options %s", self.task.options)
+
+        if not self.do_run:
+            return
+
+        if not self.host_port:
+            log.exception("All ports in range are in use")
+            return
+
+        netns = self._get_netns()
+
+        try:
+            rooter("enable_mitmdump", self.host_iface, self.machine.ip, self.host_port, netns)
+        except subprocess.CalledProcessError as e:
+            log.error("Failed to execute firewall rules: %s", e)
+
+        try:
+            mitmdump_args = []
+            listen_host = self.host_ip
+            if netns:
+                log.info("has netns: %s", netns)
+                listen_host = "0.0.0.0"  # listen in net namespace
+                # sudo for ip netns exec, then sudo back to cape
+                mitmdump_args.extend([
+                    "/usr/bin/sudo", "ip", "netns", "exec", netns,
+                    "/usr/bin/sudo", "-u", "cape"])
+
+            os.makedirs(self.mitmdump_path, exist_ok=True)
+            file_path = os.path.join(self.mitmdump_path, "dump.har")
+            mitmdump_args.extend(
+                [   "/opt/mitmproxy/mitmdump_wrapper.sh",
+                    self.mitmdump_bin,
+                    "-q",
+                    "--listen-host",
+                    listen_host,
+                    "-p",
+                    str(self.host_port),
+                    "--set",
+                    "hardump=",
+                    file_path,
+                ]
+            )
+            mitmdump_args[-2:] = [
+                "".join(mitmdump_args[-2:])
+            ]  # concatenate the last two arguments, otherwise the HAR file will not be created.
+            self.proc = subprocess.Popen(mitmdump_args, stdout=None, stderr=None, shell=False, cwd=self.mitmdump_path)
+        except (OSError, ValueError):
+            log.exception("Failed to mitmdump (host=%s, port=%s, dump_path=%s)", self.host_ip, self.host_port, file_path)
+            return
+
+        log.info(
+            "Started mitmdump with PID %d (host=%s, port=%s, dump_path=%s)",
+            self.proc.pid,
+            self.host_ip,
+            self.host_port,
+            file_path,
+        )
+
+    def _get_unused_port(self) -> str | None:
+        """Return the first unused TCP port from the set."""
+        ports = set(range(8001, 8081))
+        for port in ports:
+            with socket.socket(socket.AF_INET, socket.SOCK_STREAM) as s:
+                if s.connect_ex((self.host_ip, port)) != 0:
+                    return str(port)
+        return None
diff --git a/modules/auxiliary/PolarProxy.py b/modules/auxiliary/PolarProxy.py
new file mode 100644
index 00000000000..cfbc3d93afa
--- /dev/null
+++ b/modules/auxiliary/PolarProxy.py
@@ -0,0 +1,242 @@
+import json
+import logging
+import os
+import socket
+import subprocess
+import re
+
+from contextlib import closing
+from threading import Thread
+
+from lib.cuckoo.common.abstracts import Auxiliary
+from lib.cuckoo.common.config import Config
+from lib.cuckoo.common.constants import CUCKOO_ROOT
+from lib.cuckoo.core.rooter import rooter
+
+log = logging.getLogger(__name__)
+
+polarproxy = Config("polarproxy")
+routing = Config("routing")
+
+class PolarProxy(Auxiliary):
+    """Module for generating PCAP with PolarProxy."""
+
+    def __init__(self):
+        Auxiliary.__init__(self)
+        Thread.__init__(self)
+        log.info("PolarProxy module loaded")
+        self.polarproxy_thread = None
+
+    def start(self):
+        """Start PolarProxy in a separate thread."""
+
+        self.polarproxy_thread = PolarProxyThread(self.task, self.machine)
+        self.polarproxy_thread.start()
+        return True
+
+    def stop(self):
+        """Stop PolarProxy capture thread."""
+        if self.polarproxy_thread:
+            self.polarproxy_thread.stop()
+
+
+class PolarProxyThread(Thread):
+    """Thread responsible for control PolarProxy service for each analysis."""
+
+    def __init__(self, task, machine):
+        Thread.__init__(self)
+        self.task = task
+        self.storage_dir = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(self.task.id), "polarproxy")
+        self.machine = machine
+        self.proc = None
+        self.log_file = None
+        self.pcap = None
+        self.do_run = True
+        self.host_ip = polarproxy.cfg.get("host")
+        self.host_iface = polarproxy.cfg.get("interface")
+        self.polar_path = polarproxy.cfg.get("bin")
+        self.cert = polarproxy.cfg.get("cert")
+        self.password = polarproxy.cfg.get("password")
+        self.bypass_domains = polarproxy.cfg.get("bypass_list")
+        self.block_domains = polarproxy.cfg.get("block_list")
+        self.ruleset = os.path.join(self.storage_dir, "ruleset.json")
+        self.tlsport = 443
+        self.listen_port = self._get_unused_port()
+
+    def _get_unused_port(self) -> int | None:
+        """Return the first unused TCP port from the set."""
+        with closing(socket.socket(socket.AF_INET, socket.SOCK_STREAM)) as s:
+            s.bind(("", 0))
+            s.setsockopt(socket.SOL_SOCKET, socket.SO_REUSEADDR, 1)
+            return s.getsockname()[1]
+        return None
+
+    def generate_ruleset(self):
+        """Generate PolarProxy TLS firewall ruleset JSON file."""
+        ruleset_json = {
+            "name": "PolarProxy ruleset for CAPEv2.",
+            "version": "1.0",
+            "description": "A curated ruleset generated on the fly to block/bypass specific domain patterns AND handle termination proxying to InetSim.",
+            "rules": [],
+        }
+        if self.task.route == "inetsim":
+            # It does not appear feasible to redirect packets from client destined for port 443 to
+            # a local service listening on port XYZ _AND_ have iptables DNAT that same packet to
+            # inetsim. After PREROUTING to localhost:XYZ, iptables briefly "loses track" of the
+            # packet, so when it comes back out of PolarProxy and hits the OUTPUT table, the
+            # source IP is localhost and iptables cannot distinguish if the packet came from the
+            # host or has been proxied. This means the packet also cannot be masqueraded because
+            # it has not been forwarded, it has been proxied. Redirecting all 443 from localhost
+            # to inetsim would be very unpleasant for the hosts HTTPS stack. So, PolarProxy is
+            # made a termination proxy and forwards the decrypted HTTP to inetsim.
+            #
+            # Using this ruleset approach instead of `--terminate --connect` is safer because the
+            # default action type "inspect" will clash with these flags and try to decrypt already
+            # decrypted traffic.
+            ruleset_json["default"] = {
+                "action": {"type": "terminate", "target": f"{routing.inetsim.server}:80"},
+                "description": "Terminate TLS and forward to InetSim server.",
+            }
+        else:
+            ruleset_json["default"] = {
+                "action": {"type": "inspect"},
+                "description": "Inspect any traffic that is not bypassed or blocked.",
+            }
+
+        # If bypass domains are specified in polarproxy.conf, add a block rule for each domain within.
+        if self.block_domains:
+            with open(self.block_domains, "r") as fh:
+                domain_regexes = [line.strip() for line in fh.readlines() if line.strip()]
+            for domain_regex in domain_regexes:
+                ruleset_json["rules"].append(
+                    {"active": True, "match": {"type": "domain_regex", "expression": domain_regex}, "action": {"type": "block"}}
+                )
+
+        # If bypass domains are specified in polarproxy.conf, add a bypass rule for each domain within.
+        if self.bypass_domains:
+            with open(self.bypass_domains, "r") as fh:
+                domain_regexes = [line.strip() for line in fh.readlines() if line.strip()]
+            for domain_regex in domain_regexes:
+                ruleset_json["rules"].append(
+                    {"active": True, "match": {"type": "domain_regex", "expression": domain_regex}, "action": {"type": "bypass"}}
+                )
+
+        with open(self.ruleset, "w") as fh:
+            json.dump(ruleset_json, fh, indent=2)
+
+    def run(self):
+        if "polarproxy=" not in self.task.options:
+            log.info("Exiting polarproxy. No parameter received.")
+            return
+
+        if self.do_run:
+            if not self.listen_port:
+                log.exception("PolarProxy failed to find an available bind port. Bailing...")
+                return
+
+            # See if user specified a different TLS port to intercept on.
+            if "tlsport" in self.task.options:
+                match = re.search(r"tlsport=(\d+)", self.task.options)
+                if not match:
+                    log.warning("Failed to parse 'tlsport' out of options (%s). Defaulting to %d.", self.task.options, self.tlsport)
+                else:
+                    self.tlsport = int(match.groups()[0])
+
+            try:
+                rooter("polarproxy_enable", self.host_iface, self.machine.ip, str(self.tlsport), str(self.listen_port))
+            except subprocess.CalledProcessError as e:
+                log.exception("Failed to execute firewall rules: %s. Bailing...", e)
+                return
+
+            log.info("Starting PolarProxy process")
+
+            # Create directory to store pcap and logs.
+            os.makedirs(self.storage_dir, exist_ok=True)
+
+            # Create ruleset file to bypass/block domains AND terminate proxy to InetSim if applicable
+            self.generate_ruleset()
+
+            # Specify where to dump decrypted traffic PCAP
+            self.pcap = os.path.join(self.storage_dir, "tls.pcap")
+
+            # Craft polarproxy command.
+            polarproxy_args = [
+                self.polar_path,
+                # Provide debugging output incase TLS MITMing fails for some reason.
+                "-d",
+                # PCAP to write to.
+                "-w",
+                self.pcap,
+                # Write data to PCAP once a second so it's always there when the proc gets killed.
+                "--autoflush",
+                "1",
+                # Specify CA cert that client VM will be expecting.
+                "--cacert",
+                f"load:{self.cert}:{self.password}",
+                # Always sign generated certs with PP's root CA, even when original server cert isn't trusted.
+                "--leafcert",
+                "sign",
+                "--ruleset",
+                self.ruleset,
+                # Allow clients to not provide an SNI
+                "--nosni",
+                "nosni.example.org",
+                # LISTEN-IP             IPv4 or IPv6 address to bind proxy to.
+                # LISTEN-PORT           TCP port to bind proxy to.
+                # DECRYPTED-PORT        TCP server port to use for decrypted traffic in PCAP.
+                # EXTERNAL-PORT         TCP port for proxy to connect to. Default value is same as LISTEN-PORT.
+                "-p",
+                f"{self.host_ip},{self.listen_port},80,{self.tlsport}",
+            ]
+
+            # Open up log file handle
+            self.log_file = open(os.path.join(self.storage_dir, "polarproxy.log"), "w")
+
+            # Log PolarProxy command for safe keeping
+            self.log_file.write(f"{' '.join(polarproxy_args)}\n")
+            self.log_file.flush()
+
+            try:
+                self.proc = subprocess.Popen(polarproxy_args, stdout=self.log_file, stderr=self.log_file, shell=False)
+            except (OSError, subprocess.SubprocessError) as e:
+                log.info(
+                    "Failed to start PolarProxy (host=%s, port=%s, dump_path=%s, log=%s). Error(%s)",
+                    self.host_ip,
+                    self.listen_port,
+                    self.pcap,
+                    self.log_file,
+                    str(e)
+                )
+                self.log_file.close()
+                self.log_file = None
+                return
+
+            log.info(
+                "Started PolarProxy with PID %d (host=%s, port=%s, dump_path=%s, log=%s)",
+                self.proc.pid,
+                self.host_ip,
+                self.listen_port,
+                self.pcap,
+                self.log_file,
+            )
+
+    def stop(self):
+        """Set stop PolarProxy capture."""
+        self.do_run = False
+
+        if self.log_file:
+            self.log_file.close()
+            self.log_file = None
+
+        try:
+            if self.proc and self.proc.poll() is None:
+                log.info("Stopping PolarProxy")
+                self.proc.terminate()
+                self.proc.wait()
+
+        except subprocess.SubprocessError as e:
+            log.error("Failed to shutdown PolarProxy module: %s", e)
+        finally:
+            self.proc = None
+            log.info("Cleaning up PolarProxy iptables rules")
+            rooter("polarproxy_disable", self.host_iface, self.machine.ip, str(self.tlsport), str(self.listen_port))
diff --git a/modules/auxiliary/QemuScreenshots.py b/modules/auxiliary/QemuScreenshots.py
new file mode 100644
index 00000000000..2874ae51e13
--- /dev/null
+++ b/modules/auxiliary/QemuScreenshots.py
@@ -0,0 +1,176 @@
+# Copyright (C) 2024 dsecuma
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+# This module uses some of the functions of the Windows auxiliary module
+# for comparing screenshots.
+
+import logging
+import math
+import os
+import time
+from io import BytesIO
+from threading import Thread
+
+from lib.cuckoo.common.abstracts import Auxiliary
+from lib.cuckoo.common.config import Config
+from lib.cuckoo.common.constants import CUCKOO_ROOT
+
+cfg = Config("auxiliary").get("QemuScreenshots")
+
+log = logging.getLogger(__name__)
+
+try:
+    log.debug("Importing 'PIL.ImageChops.difference'")
+    from PIL.ImageChops import difference
+
+    log.debug("Importing 'PIL.ImageDraw'")
+    from PIL import ImageDraw
+
+    log.debug("Importing 'PIL.Image'")
+    from PIL import Image
+
+    HAVE_PIL = True
+
+except Exception as e:
+    HAVE_PIL = False
+    log.error(e)
+
+try:
+    import libvirt
+
+    HAVE_LIBVIRT = True
+except ImportError:
+    HAVE_LIBVIRT = False
+    # log.error(e)
+
+
+SHOT_DELAY = 1
+# Skip the following area when comparing screen shots.
+# Example for 800x600 screen resolution.
+# SKIP_AREA = ((735, 575), (790, 595))
+SKIP_AREA = None
+
+
+class QEMUScreenshots(Auxiliary):
+    """QEMU screenshots module."""
+
+    def __init__(self):
+        Auxiliary.__init__(self)
+        Thread.__init__(self)
+        log.info("QEMU screenshots module loaded")
+        self.screenshot_thread = None
+        self.enabled = cfg.get("enabled")
+        self.do_run = self.enabled
+
+    def start(self):
+        """Start capture in a separate thread."""
+        self.screenshot_thread = ScreenshotThread(self.task, self.machine, self.do_run)
+        self.screenshot_thread.start()
+        return True
+
+    def stop(self):
+        """Stop screenshot capture."""
+        if self.screenshot_thread:
+            self.screenshot_thread.stop()
+
+
+class ScreenshotThread(Thread):
+    """Thread responsible for taking screenshots."""
+
+    def __init__(self, task, machine, do_run):
+        Thread.__init__(self)
+        self.task = task
+        self.machine = machine
+        self.do_run = do_run
+
+        self.screenshots_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(self.task.id), "shots")
+        os.makedirs(self.screenshots_path, exist_ok=True)
+
+    def stop(self):
+        self.do_run = False
+
+    def run(self):
+        """Core screenshotting loop with image comparison."""
+        img_counter = 0
+        img_last = None
+
+        while self.do_run:
+            time.sleep(SHOT_DELAY)
+            try:
+                img_current = self._take_screenshot()
+                if img_last and self._equal(img_last, img_current, SKIP_AREA):
+                    continue
+
+                img_last = img_current
+                file_path = os.path.join(self.screenshots_path, f"{img_counter}.png")
+                img_current.save(file_path, format="PNG")
+                # log.info(f'Screenshot saved to {file_path}')
+                img_counter += 1
+            except (IOError, libvirt.libvirtError) as e:
+                log.error("Cannot take screenshot: %s", str(e))
+                continue
+
+    def _take_screenshot(self):
+        """Take screenshot from QEMU and return the PIL Image object."""
+        conn = libvirt.open("qemu:///system")
+        try:
+            dom = conn.lookupByName(self.machine.label)
+            stream = conn.newStream()
+            dom.screenshot(stream, 0)  # 0 for primary display
+
+            image_data = b""
+            while True:
+                chunk = stream.recv(262120)
+                if not chunk:
+                    break
+                image_data += chunk
+
+            return Image.open(BytesIO(image_data))
+        finally:
+            if stream:
+                stream.finish()
+            if conn:
+                conn.close()
+
+    def _draw_rectangle(self, img, xy):
+        """Draw a black rectangle.
+        @param img: PIL Image object
+        @param xy: Coordinates as refined in PIL rectangle() doc
+        @return: Image with black rectangle
+        """
+        dr = ImageDraw.Draw(img)
+        dr.rectangle(xy, fill="black", outline="black")
+        return img
+
+    def _equal(self, img1, img2, skip_area=None):
+        """Compares two screenshots using Root-Mean-Square Difference (RMS).
+        @param img1: screenshot to compare.
+        @param img2: screenshot to compare.
+        @return: equal status.
+        """
+
+        # Trick to avoid getting a lot of screen shots only because the time in the windows
+        # clock is changed.
+        # We draw a black rectangle on the coordinates where the clock is locates, and then
+        # run the comparison.
+        # NOTE: the coordinates are changing with VM screen resolution.
+        if skip_area:
+            # Copying objects to draw in another object.
+            img1 = img1.copy()
+            img2 = img2.copy()
+            # Draw a rectangle to cover windows clock.
+            for img in (img1, img2):
+                self._draw_rectangle(img, skip_area)
+
+        # To get a measure of how similar two images are, we use
+        # root-mean-square (RMS). If the images are exactly identical,
+        # this value is zero.
+        # diff = ImageChops.difference(img1, img2)
+        diff = difference(img1, img2)
+        h = diff.histogram()
+        sq = (value * ((idx % 256) ** 2) for idx, value in enumerate(h))
+        sum_of_squares = sum(sq)
+        rms = math.sqrt(sum_of_squares / float(img1.size[0] * img1.size[1]))
+
+        # Might need to tweak the threshold.
+        return rms < 8
diff --git a/modules/auxiliary/sniffer.py b/modules/auxiliary/sniffer.py
index 989b963d723..c1ce22051bd 100644
--- a/modules/auxiliary/sniffer.py
+++ b/modules/auxiliary/sniffer.py
@@ -2,78 +2,107 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-import os
+import functools
 import getpass
 import logging
+import os
+import signal
 import subprocess
 from stat import S_ISUID
 
 from lib.cuckoo.common.abstracts import Auxiliary
 from lib.cuckoo.common.config import Config
-from lib.cuckoo.common.constants import CUCKOO_ROOT, CUCKOO_GUEST_PORT
+from lib.cuckoo.common.constants import CUCKOO_GUEST_PORT, CUCKOO_ROOT
+from lib.cuckoo.common.path_utils import path_exists
 from lib.cuckoo.core.resultserver import ResultServer
 
 log = logging.getLogger(__name__)
 
 cfg = Config()
+router_cfg = Config("routing")
+
+physical_machinery = False
+if cfg.cuckoo.machinery == "physical":
+    physical_cfg = Config("physical")
+    fog_Host = physical_cfg.fog.hostname
+    physical_machinery = True
 
 
 class Sniffer(Auxiliary):
+    sudo_path = "/usr/bin/sudo"
+
     def __init__(self):
         Auxiliary.__init__(self)
         self.proc = None
 
     def start(self):
+        if not router_cfg.routing.enable_pcap and self.task.route in ("none", "None", "drop", "false"):
+            return
+
         # Get updated machine info
         self.machine = self.db.view_machine_by_label(self.machine.label)
-        tcpdump = self.options.get("tcpdump", "/usr/sbin/tcpdump")
+
+        # I got tired of Ubuntu's renaming
+        tcpdump = self.options.get("tcpdump", "/usr/bin/tcpdump")
+        if not os.path.exists(tcpdump):
+            for path in ["/usr/bin/tcpdump", "/usr/sbin/tcpdump"]:
+                if os.path.exists(path):
+                    tcpdump = path
+                    break
+
         bpf = self.options.get("bpf", "")
         remote = self.options.get("remote", False)
+        custom = self.options.get("custom", "")
         remote_host = self.options.get("host", "")
-        if remote:
-            file_path = "/tmp/tcp.dump.%d" % self.task.id
-        else:
-            file_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(self.task.id), "dump.pcap")
+        file_path = (
+            f"/tmp/tcp.dump.{self.task.id}"
+            if remote
+            else os.path.join(CUCKOO_ROOT, "storage", "analyses", str(self.task.id), "dump.pcap")
+        )
         host = self.machine.ip
         # Selects per-machine interface if available.
-        if self.machine.interface:
-            interface = self.machine.interface
-        else:
-            interface = self.options.get("interface")
+        interface = self.machine.interface or self.options.get("interface")
         # Selects per-machine resultserver IP if available.
-        if self.machine.resultserver_ip:
-            resultserver_ip = str(self.machine.resultserver_ip)
-        else:
-            resultserver_ip = str(cfg.resultserver.ip)
+        resultserver_ip = str(self.machine.resultserver_ip or cfg.resultserver.ip)
         # Get resultserver port from its instance because it could change dynamically.
-        resultserver_port = str(ResultServer().port)
-
-        if self.machine.resultserver_port:
-            resultserver_port = str(self.machine.resultserver_port)
-        else:
-            resultserver_port = str(cfg.resultserver.port)
+        ResultServer()
+        resultserver_port = str(self.machine.resultserver_port or cfg.resultserver.port)
 
-        if not os.path.exists(tcpdump):
-            log.error('Tcpdump does not exist at path "%s", network ' "capture aborted", tcpdump)
-            return
+        sudo = False
+        if not remote:
+            if not path_exists(tcpdump):
+                log.error('Tcpdump does not exist at path "%s", network capture aborted', tcpdump)
+                return
 
-        # https://github.com/cuckoosandbox/cuckoo/pull/2842/files
-        mode = os.stat(tcpdump).st_mode
-        if bool(mode & S_ISUID) is True:
-            log.error("Tcpdump is not accessible from this user network capture aborted")
-            return
+            try:
+                subprocess.check_call([self.sudo_path, "--list", "--non-interactive", tcpdump])
+            except (FileNotFoundError, subprocess.CalledProcessError):
+                # https://github.com/cuckoosandbox/cuckoo/pull/2842/files
+                mode = os.stat(tcpdump).st_mode
+                if mode & S_ISUID:
+                    log.error(
+                        "Tcpdump is not accessible for this user. Network capture aborted. "
+                        "You probably need to grant sudo access to %s or add CAPE user to "
+                        "pcap group",
+                        tcpdump,
+                    )
+                    return
+            else:
+                sudo = True
 
         if not interface:
             log.error("Network interface not defined, network capture aborted")
             return
 
-        pargs = [tcpdump, "-U", "-q", "-s", "0", "-i", interface, "-n"]
+        pargs = []
+        if sudo:
+            pargs.extend([self.sudo_path, "--non-interactive", "--"])
+        pargs.extend([tcpdump, "-U", "-q", "-s", "0", "-i", interface, "-n"])
 
-        # Trying to save pcap with the same user which cuckoo is running.
+        # Trying to save pcap with the same user which cape is running.
         try:
             user = getpass.getuser()
-        except:
+        except Exception:
             pass
         else:
             if not remote:
@@ -139,13 +168,16 @@ def start(self):
                 ")",
             ]
         )
-
+        if physical_machinery:
+            # Do not capture FOG Server traffic.
+            pargs.extend(["and", "not", "(", "dst", "host", fog_Host, ")"])
         # TODO fix this, temp fix to not get all that noise
-        #pargs.extend(["and", "not", "(", "dst", "host", resultserver_ip, "and", "src", "host", host, ")"])
+        # pargs.extend(["and", "not", "(", "dst", "host", resultserver_ip, "and", "src", "host", host, ")"])
+        if custom:
+            pargs.extend(["and", "(", *custom.split(" "), ")", "'"])
 
         if remote and bpf:
-            pargs.extend(["and", "("] + bpf.split(" ") + [")"])
-            pargs.extend(["'"])
+            pargs.extend(["and", "(", *bpf.split(" "), ")", "'"])
         elif bpf:
             pargs.extend(["and", "(", bpf, ")"])
 
@@ -153,83 +185,91 @@ def start(self):
             log.exception("Failed to start sniffer, remote enabled but no ssh string has been specified")
             return
         elif remote:
-
-            try:
-                from subprocess import DEVNULL  # py3k
-            except ImportError:
-                DEVNULL = open(os.devnull, "wb")
-
-            f = open("/tmp/%d.sh" % self.task.id, "w")
-            if f:
-                f.write(" ".join(pargs) + " & PID=$!")
+            with open(f"/tmp/{self.task.id}.sh", "w") as f:
+                f.write(f"{' '.join(pargs)} & PID=$!")
                 f.write("\n")
-                f.write("echo $PID > /tmp/%d.pid" % self.task.id)
+                f.write(f"echo $PID > /tmp/{self.task.id}.pid")
                 f.write("\n")
-                f.close()
 
-            remote_output = subprocess.check_output(
-                ["scp", "-q", "/tmp/%d.sh" % self.task.id, remote_host + ":/tmp/%d.sh" % self.task.id], stderr=DEVNULL
+            subprocess.check_output(
+                ["scp", "-q", f"/tmp/{self.task.id}.sh", remote_host + f":/tmp/{self.task.id}.sh"],
             )
-            remote_output = subprocess.check_output(
-                ["ssh", remote_host, "nohup", "/bin/bash", "/tmp/%d.sh" % self.task.id, ">", "/tmp/log", "2>", "/tmp/err"],
-                stderr=subprocess.STDOUT,
+            subprocess.check_output(
+                ["ssh", remote_host, "nohup", "/bin/bash", f"/tmp/{self.task.id}.sh", ">", "/tmp/log", "2>", "/tmp/err"],
             )
 
-            self.pid = subprocess.check_output(["ssh", remote_host, "cat", "/tmp/%d.pid" % self.task.id], stderr=DEVNULL).strip()
+            self.pid = subprocess.check_output(
+                ["ssh", remote_host, "cat", f"/tmp/{self.task.id}.pid"], stderr=subprocess.DEVNULL
+            ).strip()
             log.info(
-                "Started remote sniffer @ %s with (interface=%s, host=%s, " "dump path=%s, pid=%s)",
+                "Started remote sniffer @ %s with (interface=%s, host=%s, dump path=%s, pid=%s)",
                 remote_host,
                 interface,
                 host,
                 file_path,
                 self.pid,
             )
-            remote_output = subprocess.check_output(
-                ["ssh", remote_host, "rm", "-f", "/tmp/%d.pid" % self.task.id, "/tmp/%d.sh" % self.task.id], stderr=DEVNULL
+            subprocess.check_output(
+                ["ssh", remote_host, "rm", "-f", f"/tmp/{self.task.id}.pid", f"/tmp/{self.task.id}.sh"],
             )
 
         else:
             try:
-                self.proc = subprocess.Popen(pargs, stdout=subprocess.PIPE, stderr=subprocess.PIPE)
+                self.proc = subprocess.Popen(pargs, stdout=subprocess.PIPE, stderr=subprocess.PIPE, shell=False)
             except (OSError, ValueError):
-                log.exception("Failed to start sniffer (interface=%s, host=%s, " "dump path=%s)", interface, host, file_path)
+                log.exception("Failed to start sniffer (interface=%s, host=%s, dump path=%s)", interface, host, file_path)
                 return
 
-            log.info("Started sniffer with PID %d (interface=%s, host=%s, " "dump path=%s)", self.proc.pid, interface, host, file_path)
+            log.info("Started sniffer with PID %d (interface=%s, host=%s, dump path=%s)", self.proc.pid, interface, host, file_path)
 
     def stop(self):
         """Stop sniffing.
         @return: operation status.
         """
+
+        if not router_cfg.routing.enable_pcap and self.task.route in ("none", "None", "drop", "false"):
+            return
+
         remote = self.options.get("remote", False)
         if remote:
             remote_host = self.options.get("host", "")
             remote_args = ["ssh", remote_host, "kill", "-2", self.pid]
 
-            try:
-                from subprocess import DEVNULL  # py3k
-            except ImportError:
-                DEVNULL = open(os.devnull, "wb")
-
-            remote_output = subprocess.check_output(remote_args, stderr=DEVNULL)
+            subprocess.check_output(remote_args)
 
-            file_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", "%s" % self.task.id, "dump.pcap")
-            file_path2 = "/tmp/tcp.dump.%d" % self.task.id
+            file_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(self.task.id), "dump.pcap")
+            file_path2 = f"/tmp/tcp.dump.{self.task.id}"
 
-            remote_output = subprocess.check_output(["scp", "-q", remote_host + ":" + file_path2, file_path], stderr=DEVNULL)
-            remote_output = subprocess.check_output(["ssh", remote_host, "rm", "-f", file_path2], stderr=DEVNULL)
+            subprocess.check_output(["scp", "-q", f"{remote_host}:{file_path2}", file_path])
+            subprocess.check_output(["ssh", remote_host, "rm", "-f", file_path2])
             return
 
         if self.proc and not self.proc.poll():
+            if self.proc.args[0] == self.sudo_path and "-Z" in self.proc.args:
+                # We must kill the child process that sudo spawned. We won't
+                # have permission to kill the parent process because it's owned by root.
+                try:
+                    pid = int(subprocess.check_output(["ps", "--ppid", str(self.proc.pid), "-o", "pid="]).decode())
+                except (subprocess.CalledProcessError, TypeError, ValueError):
+                    log.exception("Failed to get child pid of sudo process to stop the sniffer.")
+                    return
+                term_func = functools.partial(os.kill, pid, signal.SIGTERM)
+                kill_func = functools.partial(os.kill, pid, signal.SIGKILL)
+            else:
+                term_func = self.proc.terminate
+                kill_func = self.proc.kill
+                pid = self.proc.pid
             try:
-                self.proc.terminate()
-            except:
+                term_func()
+                _, _ = self.proc.communicate()
+            except Exception as e:
+                log.error("Unable to stop the sniffer (first try) with pid %d: %s", pid, e)
                 try:
                     if not self.proc.poll():
                         log.debug("Killing sniffer")
-                        self.proc.kill()
+                        kill_func()
+                        _, _ = self.proc.communicate()
                 except OSError as e:
-                    log.debug("Error killing sniffer: %s. Continue", e)
-                    pass
+                    log.debug("Error killing sniffer: %s, continuing", e)
                 except Exception as e:
-                    log.exception("Unable to stop the sniffer with pid %d: %s", self.proc.pid, e)
+                    log.exception("Unable to stop the sniffer with pid %d: %s", pid, e)
diff --git a/modules/machinery/aws.py b/modules/machinery/aws.py
new file mode 100644
index 00000000000..c247a473bfc
--- /dev/null
+++ b/modules/machinery/aws.py
@@ -0,0 +1,423 @@
+import logging
+import sys
+import time
+
+from lib.cuckoo.common.config import Config
+from lib.cuckoo.core.database import Machine
+
+cfg = Config()
+HAVE_BOTO3 = False
+if cfg.cuckoo.machinery == "aws":
+    try:
+        import boto3
+
+        HAVE_BOTO3 = True
+    except ImportError:
+        sys.exit("Missed boto3 dependency: poetry run pip install boto3")
+
+
+from lib.cuckoo.common.abstracts import Machinery
+from lib.cuckoo.common.config import Config
+from lib.cuckoo.common.exceptions import CuckooMachineError
+
+logging.getLogger("boto3").setLevel(logging.CRITICAL)
+logging.getLogger("botocore").setLevel(logging.CRITICAL)
+log = logging.getLogger(__name__)
+cfg_resultserver_ip = Config().get("resultserver").get("ip")
+
+
+class AWS(Machinery):
+    """Virtualization layer for AWS."""
+
+    # VM states.
+    PENDING = "pending"
+    STOPPING = "stopping"
+    RUNNING = "running"
+    POWEROFF = "poweroff"
+    ERROR = "machete"
+
+    AUTOSCALE_CUCKOO = "AUTOSCALE_CUCKOO"
+
+    module_name = "aws"
+
+    """override Machinery method"""
+
+    def _initialize_check(self):
+        """
+        Looking for all EC2 machines that match aws.conf and load them into EC2_MACHINES dictionary.
+        """
+        if not HAVE_BOTO3:
+            return
+
+        self.ec2_machines = {}
+        self.dynamic_machines_sequence = 0
+        self.dynamic_machines_count = 0
+        log.info("connecting to AWS: %s", self.options.aws.region_name)
+
+        # Performing a check to see if the access and secret keys were passed through the configuration file
+        access_key = getattr(self.options.aws, "aws_access_key_id", None)
+        secret_key = getattr(self.options.aws, "aws_secret_access_key", None)
+
+        # Use the provided credentials if available; otherwise, fall back to the IAM role attached to the EC2 instance
+        if access_key and secret_key:
+            log.info("Using provided AWS keys for authentication.")
+            self.ec2_resource = boto3.resource(
+                "ec2",
+                region_name=self.options.aws.region_name,
+                aws_access_key_id=self.options.aws.aws_access_key_id,
+                aws_secret_access_key=self.options.aws.aws_secret_access_key,
+            )
+        else:
+            log.info("No AWS keys provided; attempting to use IAM Role through IMDSv2")
+            self.ec2_resource = boto3.resource("ec2", region_name=self.options.aws.region_name)
+
+            # Iterate over all instances with tag that has a key of AUTOSCALE_CUCKOO
+        for instance in self.ec2_resource.instances.filter(
+            Filters=[
+                {
+                    "Name": "instance-state-name",
+                    "Values": ["running", "stopped", "stopping"],
+                }
+            ]
+        ):
+            if self._is_autoscaled(instance):
+                log.info("Terminating autoscaled instance %s", instance.id)
+                instance.terminate()
+
+        instance_ids = self._list()
+        machines = self.machines()
+        for machine in machines:
+            if machine.label not in instance_ids:
+                continue
+            self.ec2_machines[machine.label] = self.ec2_resource.Instance(machine.label)
+            if self._status(machine.label) != AWS.POWEROFF:
+                self.stop(label=machine.label)
+
+        self._start_or_create_machines()
+
+    def _start_next_machines(self, num_of_machines_to_start):
+        """
+        pull from DB the next machines in queue and starts them
+        the whole idea is to prepare x machines on, so once a task will arrive - the machine will be ready with windows
+        already launched.
+        :param num_of_machines_to_start: how many machines(first in queue) will be started
+        """
+        for machine in self.db.get_available_machines():
+            if num_of_machines_to_start <= 0:
+                break
+            if self._status(machine.label) in (AWS.POWEROFF, AWS.STOPPING):
+                self.ec2_machines[machine.label].start()  # not using self.start() to avoid _wait_ method
+                num_of_machines_to_start -= 1
+
+    def _allocate_new_machine(self):
+        """
+        allocating/creating new EC2 instance(autoscale option)
+        """
+        # read configuration file
+        machinery_options = self.options.get("aws")
+        autoscale_options = self.options.get("autoscale")
+        # If configured, use specific network interface for this
+        # machine, else use the default value.
+        interface = autoscale_options["interface"] if autoscale_options.get("interface") else machinery_options.get("interface")
+        resultserver_ip = autoscale_options["resultserver_ip"] if autoscale_options.get("resultserver_ip") else cfg_resultserver_ip
+        if autoscale_options.get("resultserver_port"):
+            resultserver_port = autoscale_options["resultserver_port"]
+        else:
+            # The ResultServer port might have been dynamically changed,
+            # get it from the ResultServer singleton. Also avoid import
+            # recursion issues by importing ResultServer here.
+            from lib.cuckoo.core.resultserver import ResultServer
+
+            resultserver_port = ResultServer().port
+
+        log.info("All machines are busy, allocating new machine")
+        self.dynamic_machines_sequence += 1
+        self.dynamic_machines_count += 1
+        new_machine_name = "cuckoo_autoscale_%03d" % self.dynamic_machines_sequence
+
+        instance = self._create_instance(
+            tags=[
+                {"Key": "Name", "Value": new_machine_name},
+                {"Key": self.AUTOSCALE_CUCKOO, "Value": "True"},
+            ]
+        )
+        attempts = 0
+        while attempts < 30:
+            try:
+                time.sleep(2)
+                self.ec2_machines[instance.id] = instance
+                #  sets "new_machine" object in configuration object to avoid raising an exception
+                setattr(self.options, new_machine_name, {})
+                # add machine to DB
+                self.db.add_machine(
+                    name=new_machine_name,
+                    label=instance.id,
+                    ip=instance.private_ip_address,
+                    arch=autoscale_options["arch"],
+                    platform=autoscale_options["platform"],
+                    tags=autoscale_options["tags"],
+                    interface=interface,
+                    snapshot=None,
+                    resultserver_ip=resultserver_ip,
+                    resultserver_port=resultserver_port,
+                    reserved=False,
+                )
+                break
+            except Exception as e:
+                attempts += 1
+                log.warning("Failed while creating new instance %s. Trying again.", str(e))
+                instance = None
+
+        if instance is None:
+            return False
+
+        return True
+
+    """override Machinery method"""
+
+    def scale_pool(self, machine: Machine) -> None:
+        """
+        override Machinery method to utilize the auto scale option
+        """
+        self._start_or_create_machines()  # prepare another machine
+
+    def _start_or_create_machines(self):
+        """
+        checks if x(according to "gap" in aws config) machines can be immediately started.
+        If autoscale is enabled and less then x can be started - > create new instances to complete the gap
+        :return:
+        """
+
+        # read configuration file
+        machinery_options = self.options.get("aws")
+        autoscale_options = self.options.get("autoscale")
+
+        current_available_machines = self.db.count_machines_available()
+        running_machines_gap = machinery_options.get("running_machines_gap", 0)
+        dynamic_machines_limit = autoscale_options["dynamic_machines_limit"]
+
+        self._start_next_machines(num_of_machines_to_start=min(current_available_machines, running_machines_gap))
+        #  if no sufficient machines left  -> launch a new machines
+        while autoscale_options["autoscale"] and current_available_machines < running_machines_gap:
+            if self.dynamic_machines_count >= dynamic_machines_limit:
+                log.debug("Reached dynamic machines limit - %d machines", dynamic_machines_limit)
+                break
+            if not self._allocate_new_machine():
+                break
+            current_available_machines += 1
+
+    """override Machinery method"""
+
+    def _list(self):
+        """
+        :return: A list of all instance ids under the AWS account
+        """
+        instances = self.ec2_resource.instances.filter(
+            Filters=[
+                {
+                    "Name": "instance-state-name",
+                    "Values": ["running", "stopped", "stopping"],
+                }
+            ]
+        )
+        return [instance.id for instance in instances]
+
+    """override Machinery method"""
+
+    def _status(self, label):
+        """
+        Gets current status of a vm.
+        @param label: virtual machine label.
+        @return: status string.
+        """
+        try:
+            self.ec2_machines[label].reload()
+            state = self.ec2_machines[label].state["Name"]
+            if state == "running":
+                status = AWS.RUNNING
+            elif state == "stopped":
+                status = AWS.POWEROFF
+            elif state == "pending":
+                status = AWS.PENDING
+            elif state == "stopping":
+                status = AWS.STOPPING
+            elif state in ("shutting-down", "terminated"):
+                status = AWS.ERROR
+            else:
+                status = AWS.ERROR
+            log.info("instance state: %s", status)
+            return status
+        except Exception as e:
+            log.exception("can't retrieve the status: %s", e)
+            return AWS.ERROR
+
+    """override Machinery method"""
+
+    def start(self, label):
+        """
+        Start a virtual machine.
+        @param label: virtual machine label.
+        @raise CuckooMachineError: if unable to start.
+        """
+        log.debug("Starting vm %s", label)
+        if not self._is_autoscaled(self.ec2_machines[label]):
+            self.ec2_machines[label].start()
+            self._wait_status(label, AWS.RUNNING)
+
+    """override Machinery method"""
+
+    def stop(self, label):
+        """
+        Stops a virtual machine.
+        If the machine has initialized from autoscaled component, then terminate it.
+        @param label: virtual machine label.
+        @raise CuckooMachineError: if unable to stop.
+        """
+        log.debug("Stopping vm %s", label)
+
+        status = self._status(label)
+
+        if status == AWS.POWEROFF:
+            raise CuckooMachineError("Trying to stop an already stopped VM: %s" % label)
+
+        if self._is_autoscaled(self.ec2_machines[label]):
+            self.ec2_machines[label].terminate()
+        else:
+            self.ec2_machines[label].stop(Force=True)
+            self._wait_status(label, AWS.POWEROFF)
+            self._restore(label)
+
+    """override Machinery method"""
+
+    def release(self, machine: Machine) -> Machine:
+        """
+        we override it to have the ability to run start_or_create_machines() after unlocking the last machine
+        Release a machine.
+        @param label: machine label.
+        """
+        retval = super(AWS, self).release(machine)
+
+        if self._is_autoscaled(self.ec2_machines[machine.label]):
+            super(AWS, self).delete_machine(machine.name)
+            self.dynamic_machines_count -= 1
+
+        self._start_or_create_machines()
+        return retval
+
+    def _create_instance(self, tags):
+        """
+        create a new instance
+        :param tags: tags to attach to instance
+        :return: the instance id
+        """
+
+        autoscale_options = self.options.get("autoscale")
+        response = self.ec2_resource.create_instances(
+            BlockDeviceMappings=[
+                {
+                    "DeviceName": "/dev/sda1",
+                    "Ebs": {"DeleteOnTermination": True, "VolumeType": "gp2"},
+                }
+            ],
+            ImageId=autoscale_options["image_id"],
+            InstanceType=autoscale_options["instance_type"],
+            MaxCount=1,
+            MinCount=1,
+            NetworkInterfaces=[
+                {
+                    "DeviceIndex": 0,
+                    "SubnetId": autoscale_options["subnet_id"],
+                    "Groups": autoscale_options["security_groups"].split(","),
+                }
+            ],
+            TagSpecifications=[{"ResourceType": "instance", "Tags": tags}],
+        )
+        new_instance = response[0]
+        attempts = 0
+        while attempts < 30:
+            time.sleep(2)
+            try:
+                new_instance.modify_attribute(SourceDestCheck={"Value": False})
+                break
+            except Exception:
+                attempts += 1
+                log.warning("Failed while modifying new instance attribute. Trying again.")
+        log.debug("Created %s\n%s", new_instance.id, repr(response))
+        return new_instance
+
+    def _is_autoscaled(self, instance):
+        """
+        checks if the instance has a tag that indicates that it was created as a result of autoscaling
+        :param instance: instance object
+        :return: true if the instance in "autoscaled"
+        """
+        if instance.tags:
+            for tag in instance.tags:
+                if tag.get("Key") == self.AUTOSCALE_CUCKOO:
+                    return True
+        return False
+
+    def _restore(self, label):
+        """
+        restore the instance according to the configured snapshot(aws.conf)
+        This method detaches and deletes the current volume, then creates a new one and attaches it.
+        :param label: machine label
+        """
+        log.info("restoring machine: %s", label)
+        vm_info = self.db.view_machine_by_label(label)
+        snap_id = vm_info.snapshot
+        instance = self.ec2_machines[label]
+        state = self._status(label)
+        if state != AWS.POWEROFF:
+            raise CuckooMachineError("Instance '%s' state '%s' is not poweroff" % (label, state))
+        volumes = list(instance.volumes.all())
+        if len(volumes) != 1:
+            raise CuckooMachineError("Instance '%s' has wrong number of volumes %d" % (label, len(volumes)))
+        old_volume = volumes[0]
+
+        log.debug("Detaching %s", old_volume.id)
+        resp = instance.detach_volume(VolumeId=old_volume.id, Force=True)
+        log.debug("response: %s", resp)
+        while True:
+            old_volume.reload()
+            if old_volume.state != "in-use":
+                break
+            time.sleep(1)
+
+        log.debug("Old volume %s in state %s", old_volume.id, old_volume.state)
+        if old_volume.state != "available":
+            raise CuckooMachineError("Old volume turned into state %s instead of 'available'" % old_volume.state)
+        log.debug("Deleting old volume")
+        volume_type = old_volume.volume_type
+        old_volume.delete()
+
+        log.debug("Creating new volume")
+        new_volume = self.ec2_resource.create_volume(
+            SnapshotId=snap_id,
+            AvailabilityZone=instance.placement["AvailabilityZone"],
+            VolumeType=volume_type,
+        )
+        log.debug("Created new volume %s", new_volume.id)
+        while True:
+            new_volume.reload()
+            if new_volume.state != "creating":
+                break
+            time.sleep(1)
+        log.debug("new volume %s in state %s", new_volume.id, new_volume.state)
+        if new_volume.state != "available":
+            state = new_volume.state
+            new_volume.delete()
+            raise CuckooMachineError("New volume turned into state %s instead of 'available'" % state)
+
+        log.debug("Attaching new volume")
+        resp = instance.attach_volume(VolumeId=new_volume.id, Device="/dev/sda1")
+        log.debug("response %s", resp)
+        while True:
+            new_volume.reload()
+            if new_volume.state != "available":
+                break
+            time.sleep(1)
+        log.debug("new volume %s in state %s", new_volume.id, new_volume.state)
+        if new_volume.state != "in-use":
+            new_volume.delete()
+            raise CuckooMachineError("New volume turned into state %s instead of 'in-use'", old_volume.state)
diff --git a/modules/machinery/az.py b/modules/machinery/az.py
new file mode 100644
index 00000000000..a8f5edeed16
--- /dev/null
+++ b/modules/machinery/az.py
@@ -0,0 +1,1578 @@
+# Originally contributed by Check Point Software Technologies, Ltd.
+# in https://github.com/CheckPointSW/Cuckoo-AWS.
+# Modified by the Canadian Centre for Cyber Security to support Azure.
+
+import logging
+import re
+import socket
+import threading
+import time
+import timeit
+from typing import Optional, cast
+
+import sqlalchemy
+
+# Cuckoo-specific imports
+from lib.cuckoo.common.config import Config
+from lib.cuckoo.common.abstracts import Machinery
+from lib.cuckoo.common.constants import CUCKOO_GUEST_PORT
+from lib.cuckoo.common.exceptions import (
+    CuckooCriticalError,
+    CuckooDependencyError,
+    CuckooGuestCriticalTimeout,
+    CuckooMachineError,
+    CuckooUnserviceableTaskError,
+)
+from lib.cuckoo.core.database import TASK_PENDING, Machine, Task
+
+HAVE_AZURE = False
+cfg = Config()
+if cfg.cuckoo.machinery == "az":
+    try:
+        # Azure-specific imports
+        # pip install azure-identity msrest msrestazure azure-mgmt-compute azure-mgmt-network
+        from azure.identity import CertificateCredential, ClientSecretCredential
+        from azure.mgmt.compute import ComputeManagementClient, models
+        from azure.mgmt.network import NetworkManagementClient
+        from msrest.polling import LROPoller
+
+        HAVE_AZURE = True
+    except ImportError:
+        print("Missing machinery-required libraries.")
+        print("poetry run pip install azure-identity msrest msrestazure azure-mgmt-compute azure-mgmt-network")
+
+
+# Only log INFO or higher from imported python packages
+logging.getLogger("adal-python").setLevel(logging.INFO)
+logging.getLogger("azure.core.pipeline.policies.http_logging_policy").setLevel(logging.WARNING)
+logging.getLogger("azure.identity._internal.get_token_mixin").setLevel(logging.WARNING)
+logging.getLogger("msal.authority").setLevel(logging.INFO)
+logging.getLogger("msal.application").setLevel(logging.INFO)
+logging.getLogger("msal.telemetry").setLevel(logging.INFO)
+logging.getLogger("msal.token_cache").setLevel(logging.INFO)
+logging.getLogger("msrest.universal_http").setLevel(logging.INFO)
+logging.getLogger("msrest.service_client").setLevel(logging.INFO)
+logging.getLogger("msrest.async_paging").setLevel(logging.INFO)
+log = logging.getLogger(__name__)
+
+# Timeout used for calls that shouldn't take longer than 5 minutes but somehow do
+AZURE_TIMEOUT = 300
+
+# Global variable which will maintain details about each machine pool
+machine_pools = {}
+
+# Global variable which will maintain state for platform scaling
+is_platform_scaling = {}
+
+# Explainer of how Azure VMSSs handle multiple requests such VM reimage, VM deletes or VMSS updates.
+# If multiple operations are triggered one after another in a short duration on VMSSs in a resource group, they end up
+# being overlapping operations. With overlapping operations, the latest operation comes in before the first one
+# completes. This results in the latest operation preempting the previous operation and taking over its job. The
+# preemption chain continues till 3 levels. After third preemption, VMSS stops further preemption, which means
+# any further overlapping operation now has to wait for the previous one to complete.
+# With this ^ in mind, we are only going to be running at most FOUR operations on any VMSS in a resource group at once,
+# and since this is a restriction that we must live with, we will be using batch reimaging/deleting as well as many
+# threadsafe operations.
+
+# This is hard cap of 4 given the maximum preemption chain length of 4
+MAX_CONCURRENT_VMSS_OPERATIONS = 4
+
+# These global lists will be used for maintaining lists of machines that failed during reimaging
+vms_absent_from_vmss = []
+vms_timed_out_being_reimaged = []
+
+# These global lists will be used for maintaining lists of ongoing operations on specific machines
+vms_currently_being_reimaged = []
+vms_currently_being_deleted = []
+
+# These global lists will be used as a FIFO queue of sorts, except when used as a list
+reimage_vm_list = []
+delete_vm_list = []
+
+# These are locks to provide for thread-safe operations
+reimage_lock = threading.Lock()
+delete_lock = threading.Lock()
+vms_currently_being_deleted_lock = threading.Lock()
+current_operations_lock = threading.Lock()
+
+# This is the number of operations that are taking place at the same time
+current_vmss_operations = 0
+
+IPV4_REGEX = r"^((25[0-5]|2[0-4][0-9]|1[0-9][0-9]|[1-9]?[0-9])\.){3}(25[0-5]|2[0-4][0-9]|1[0-9][0-9]|[1-9]?[0-9])\/([0-9]|1[0-9]|2[0-9]|3[0-2])$"
+
+
+class Azure(Machinery):
+    module_name = "az"
+
+    # Resource tag that indicates auto-scaling.
+    AUTO_SCALE_CAPE_KEY = "AUTO_SCALE_CAPE"
+    AUTO_SCALE_CAPE_VALUE = "True"
+    AUTO_SCALE_CAPE_TAG = {AUTO_SCALE_CAPE_KEY: AUTO_SCALE_CAPE_VALUE}
+
+    # Operating System Tag Prefixes
+    WINDOWS_TAG_PREFIX = "win"
+    LINUX_TAG_PREFIX = "ub"
+    VALID_TAG_PREFIXES = [WINDOWS_TAG_PREFIX, LINUX_TAG_PREFIX]
+
+    # Platform names
+    WINDOWS_PLATFORM = "windows"
+    LINUX_PLATFORM = "linux"
+
+    def set_options(self, options: dict) -> None:
+        """Set machine manager options.
+        @param options: machine manager options dict.
+        """
+        self.options = options
+        # Using "scale_sets" here instead of "machines" to avoid KeyError
+        mmanager_opts = self.options.get(self.module_name)
+        if not isinstance(mmanager_opts["scale_sets"], list):
+            mmanager_opts["scale_sets"] = str(mmanager_opts["scale_sets"]).strip().split(",")
+
+    def initialize(self):
+        """
+        Overloading abstracts.py:_initialize()
+        """
+        # Load.
+        self._initialize()
+
+        # Run initialization checks.
+        self._initialize_check()
+
+    def _initialize(self):
+        """
+        Overloading abstracts.py:_initialize()
+        Read configuration.
+        @raise CuckooDependencyError: if there is a problem with the dependencies call
+        """
+        mmanager_opts = self.options.get(self.module_name)
+        # Replace a list of IDs with dictionary representations
+        scale_sets = mmanager_opts.pop("scale_sets")
+        mmanager_opts["scale_sets"] = {}
+
+        for scale_set_id in scale_sets:
+            try:
+                scale_set_opts = self.options.get(scale_set_id.strip())
+                scale_set_opts["id"] = scale_set_id.strip()
+
+                # Strip parameters.
+                for key, value in scale_set_opts.items():
+                    if value and isinstance(value, str):
+                        scale_set_opts[key] = value.strip()
+
+                if "initial_pool_size" not in scale_set_opts:
+                    raise AttributeError("'initial_pool_size' not present in scale set configuration")
+
+                # Insert the scale_set_opts into the module.scale_sets attribute
+                mmanager_opts["scale_sets"][scale_set_id] = scale_set_opts
+
+            except (AttributeError, CuckooCriticalError) as e:
+                log.warning("Configuration details about scale set %s are missing: %s", str(scale_set_id.strip()), str(e))
+                continue
+
+    def _initialize_check(self):
+        """
+        Overloading abstracts.py:_initialize_check()
+        Running checks against Azure that the configuration is correct.
+        @raise CuckooDependencyError: if there is a problem with the dependencies call
+        """
+        if not HAVE_AZURE:
+            raise CuckooDependencyError("Unable to import Azure packages")
+
+        # Set the flag that indicates that the system is initializing
+        self.initializing = True
+
+        # We will be using this as a source of truth for the VMSS configs
+        self.required_vmsss = {
+            vmss_name: {
+                "exists": False,
+                "image": None,
+                "platform": None,
+                "tag": None,
+                "initial_pool_size": None,
+                "retries": self.options.az.init_retries,
+            }
+            for vmss_name in self.options.az.scale_sets
+        }
+
+        # Starting the thread that sets API clients periodically
+        self._thr_refresh_clients()
+        subnets = self.network_client.subnets.list(self.options.az.vnet_resource_group, self.options.az.vnet)
+        self.subnet_limit = 0
+        for subnet in subnets:
+            if subnet.name == self.options.az.subnet:
+                match = re.match(IPV4_REGEX, subnet.address_prefix or (subnet.address_prefixes[0] if subnet.address_prefixes else ''))
+                if match and len(match.regs) == 5:
+                    self.subnet_limit = 2 ** (32 - int(match.group(4))) - (2 + 1 + 10)
+
+        # Initialize the VMSSs that we will be using and not using
+        self._set_vmss_stage()
+
+        # Starting the thread that scales the machine pools periodically
+        self._thr_machine_pool_monitor()
+
+        # Set the flag that indicates that the system is not initializing
+        self.initializing = False
+
+    def _get_credentials(self):
+        """
+        Used to instantiate the Azure ClientSecretCredential object.
+        @return: an Azure ClientSecretCredential object
+        """
+        credentials = None
+        if self.options.az.secret and self.options.az.secret != "<secret>":
+            # Instantiates the ClientSecretCredential object using
+            # Azure client ID, secret and Azure tenant ID
+            credentials = ClientSecretCredential(
+                client_id=self.options.az.client_id,
+                client_secret=self.options.az.secret,
+                tenant_id=self.options.az.tenant,
+            )
+        else:
+            # Instantiates the CertificateCredential object using
+            # Azure client ID, secret and Azure tenant ID
+            credentials = CertificateCredential(
+                client_id=self.options.az.client_id,
+                tenant_id=self.options.az.tenant,
+                certificate_path=self.options.az.certificate_path,
+                password=self.options.az.certificate_password,
+            )
+        return credentials
+
+    def _thr_refresh_clients(self):
+        """
+        A thread on a 30 minute timer that refreshes the network
+        and compute clients using an updated ClientSecretCredential
+        object.
+        """
+        log.debug("Connecting to Azure for the region '%s'.", self.options.az.region_name)
+
+        # Getting an updated ClientSecretCredential
+        credentials = self._get_credentials()
+
+        # Instantiates an Azure NetworkManagementClient using
+        # ClientSecretCredential and subscription ID
+        self.network_client = NetworkManagementClient(credential=credentials, subscription_id=self.options.az.subscription_id)
+
+        # Instantiates an Azure ComputeManagementClient using
+        # ClientSecretCredential and subscription ID
+        self.compute_client = ComputeManagementClient(credential=credentials, subscription_id=self.options.az.subscription_id)
+
+        # Refresh clients every half hour
+        threading.Timer(1800, self._thr_refresh_clients).start()
+
+    def _thr_machine_pool_monitor(self):
+        """
+        A thread on a timer that scales the machine pools to appropriate levels.
+        """
+        # Only do it post-initialization
+        if not self.initializing:
+            log.debug("Monitoring the machine pools...")
+            for _, vals in self.required_vmsss.items():
+                threading.Thread(target=self._thr_scale_machine_pool, args=(vals["tag"],)).start()
+
+        # Check the machine pools. Default set in config is every 5 minutes.
+        threading.Timer(self.options.az.monitor_rate, self._thr_machine_pool_monitor).start()
+
+    def _set_vmss_stage(self):
+        """
+        Ready. Set. Action! Set the stage for the VMSSs
+        """
+
+        # Now assign the gallery image to the VMSS
+        for scale_set_id, scale_set_values in self.options.az.scale_sets.items():
+            try:
+                gallery_image = Azure._azure_api_call(
+                    self.options.az.sandbox_resource_group,
+                    self.options.az.gallery_name,
+                    scale_set_values.gallery_image_name,
+                    operation=self.compute_client.gallery_images.get,
+                )
+            except CuckooMachineError:
+                raise CuckooCriticalError("Gallery image '%s' does not exist", scale_set_values.gallery_image_name)
+
+            # Map the Image Reference to the VMSS
+            self.required_vmsss[scale_set_id]["platform"] = scale_set_values.platform.capitalize()
+            self.required_vmsss[scale_set_id]["tag"] = scale_set_values.pool_tag
+            self.required_vmsss[scale_set_id]["image"] = models.ImageReference(id=gallery_image.id)
+            self.required_vmsss[scale_set_id]["initial_pool_size"] = int(scale_set_values.initial_pool_size)
+
+        # All required VMSSs must have an image reference, tag and os
+        for required_vmss_name, required_vmss_values in self.required_vmsss.items():
+            if required_vmss_values["image"] is None:
+                raise CuckooCriticalError("The VMSS '5s' does not have an image reference.", required_vmss_name)
+            elif required_vmss_values["tag"] is None:
+                raise CuckooCriticalError("The VMSS '%s' does not have an tag.", required_vmss_name)
+            elif required_vmss_values["platform"] is None:
+                raise CuckooCriticalError("The VMSS '%s' does not have an OS value.", required_vmss_name)
+            elif required_vmss_values["initial_pool_size"] is None:
+                raise CuckooCriticalError("The VMSS '%s' does not have an initial pool size.", required_vmss_name)
+
+        self._process_pre_existing_vmsss()
+        self._check_cpu_cores()
+        self._update_or_create_vmsss(self.required_vmsss)
+        self._check_locked_machines()
+        self._create_batch_threads()
+
+    def _process_pre_existing_vmsss(self):
+        """
+        Delete a VMSS if it does NOT have:
+            - the expected tag AND has one of the required names for a VMSS we plan to create
+            - one of the required names AND has the expected tag AND az.config's multiple_capes_in_sandbox_rg is 'false'
+        Update a VMSS if it:
+            - does not have the required image reference
+            - has a capacity (current size) different from its required 'initial_pool_size'
+        """
+        # Get all VMSSs in Resource Group
+        existing_vmsss = Azure._azure_api_call(
+            self.options.az.sandbox_resource_group,
+            operation=self.compute_client.virtual_machine_scale_sets.list,
+        )
+
+        # Delete incorrectly named VMSSs or mark them as existing
+        for vmss in existing_vmsss:
+            # If a VMSS does not have any tags or does not have the tag that we use to indicate that it is used for
+            # Cuckoo (AUTO_SCALE_CAPE key-value pair), ignore
+            if not vmss.tags or not vmss.tags.get(Azure.AUTO_SCALE_CAPE_KEY) == Azure.AUTO_SCALE_CAPE_VALUE:
+                # Ignoring... unless! They have one of the required names of the VMSSs that we are going to create
+                if vmss.name in self.required_vmsss.keys():
+                    async_delete_vmss = Azure._azure_api_call(
+                        self.options.az.sandbox_resource_group,
+                        vmss.name,
+                        polling_interval=1,
+                        operation=self.compute_client.virtual_machine_scale_sets.begin_delete,
+                    )
+                    _ = self._handle_poller_result(async_delete_vmss)
+                # NEXT
+                continue
+
+            # The VMSS has tags and the tags include the AUTO_SCALE_CAPE key-value pair
+            if vmss.name in self.required_vmsss.keys():
+                required_vmss = self.required_vmsss[vmss.name]
+
+                # Note that the VMSS exists and that we do not need to create another one
+                required_vmss["exists"] = True
+
+                # This flag is used to determine if we have to update the VMSS
+                update_vmss = False
+
+                # Check if image reference is out-of-date with the one in the configuration
+                if required_vmss["image"].id != vmss.virtual_machine_profile.storage_profile.image_reference.id:
+                    # If so, update it
+                    update_vmss = True
+                    vmss.virtual_machine_profile.storage_profile.image_reference.id = required_vmss["image"].id
+
+                # Check if the capacity of VMSS matches the initial pool size from the configuration
+                if self.options.az.reset_pool_size and vmss.sku.capacity != required_vmss["initial_pool_size"]:
+                    # If no, update it
+                    update_vmss = True
+                    vmss.sku.capacity = required_vmss["initial_pool_size"]
+
+                # Initialize key-value pair for VMSS with specific details
+                machine_pools[vmss.name] = {
+                    "size": int(vmss.sku.capacity),
+                    "is_scaling": False,
+                    "is_scaling_down": False,
+                    "has_placeholder_machine": False,
+                    "wait": False,
+                }
+
+                if update_vmss:
+                    update_vmss_image = Azure._azure_api_call(
+                        self.options.az.sandbox_resource_group,
+                        vmss.name,
+                        vmss,
+                        polling_interval=1,
+                        operation=self.compute_client.virtual_machine_scale_sets.begin_update,
+                    )
+                    _ = self._handle_poller_result(update_vmss_image)
+            elif not self.options.az.multiple_capes_in_sandbox_rg:
+                # VMSS does not have the required name but has the tag that we associate with being a
+                # correct VMSS
+                Azure._azure_api_call(
+                    self.options.az.sandbox_resource_group,
+                    vmss.name,
+                    operation=self.compute_client.virtual_machine_scale_sets.begin_delete,
+                )
+
+    def _check_cpu_cores(self):
+        """
+        Process and store value for cpu cores.
+        """
+        # Initialize the platform scaling state monitor
+        is_platform_scaling.update({Azure.WINDOWS_PLATFORM: False, Azure.LINUX_PLATFORM: False})
+
+        # If we want to programmatically determine the number of cores for the sku
+        if self.options.az.find_number_of_cores_for_sku or self.options.az.instance_type_cores == 0:
+            resource_skus = Azure._azure_api_call(
+                filter=f"location={self.options.az.region_name}",
+                operation=self.compute_client.resource_skus.list,
+            )
+            resource_details = None
+            for item in resource_skus:
+                if self.options.az.region_name.lower() not in [location.lower() for location in item.locations]:
+                    continue
+                if item.name == self.options.az.instance_type:
+                    resource_details = item
+                    break
+
+            if resource_details:
+                for capability in resource_details.capabilities:
+                    if capability.name == "vCPUs":
+                        self.instance_type_cpus = int(capability.value)
+                        break
+            else:
+                # TODO: Justify why 4 is a good default value
+                self.instance_type_cpus = 4
+        # Do not programmatically determine the number of cores for the sku
+        else:
+            self.instance_type_cpus = self.options.az.instance_type_cores
+
+    def _insert_placeholder_machine(self, vmss_name, vmss_vals):
+        """
+        Insert a placeholder machine into the DB.
+
+        Only used when "initial_pool_size" is set to 0 in the configs.
+        The placeholder machine is used to have available the machine tag for a VMSS's "pool_tag".
+        Without the tag present at task submission, an "incorrect tag" error will result.
+        The placeholder machine is removed when a task is submitted with the matching tag.
+        """
+        try:
+            self._remove_placeholder_machine(vmss_name)
+            self.db.add_machine(
+                name=f"{vmss_name}_placeholder",
+                label=f"{vmss_name}_placeholder",
+                ip=f"{vmss_name}_placeholder_ip",
+                platform=vmss_vals["platform"].lower(),
+                tags=vmss_vals["tag"],
+                arch=self.options.az.scale_sets[vmss_name].arch,
+                interface=self.options.az.interface,
+                snapshot=f"{vmss_name}_placeholder_snapshot",
+                resultserver_ip=self.options.az.resultserver_ip,
+                resultserver_port=self.options.az.resultserver_port,
+                locked=True,
+                reserved=True,
+            )
+            machine_pools[vmss_name]["has_placeholder_machine"] = True
+        except Exception as e:
+            log.debug("Could not add placeholder machine for %s VMSS", vmss_name)
+            log.exception(repr(e))
+
+    def _remove_placeholder_machine(self, vmss_name):
+        """
+        Remove placeholder machine from DB.
+        """
+        try:
+            self.db.delete_machine(f"{vmss_name}_placeholder")
+            machine_pools[vmss_name]["has_placeholder_machine"] = False
+        except Exception as e:
+            log.debug("Could not remove placeholder machine for %s VMSS", vmss_name)
+            log.exception(repr(e))
+
+    def _update_or_create_vmsss(self, vmsss_dict):
+        """
+        Reimage or scale up existing VMSSs. Create non-existant required VMSSs.
+        """
+
+        vmss_creation_threads = []
+        vmss_reimage_threads = []
+        for vmss, vals in vmsss_dict.items():
+            if vals["exists"] and not self.options.az.just_start:
+                # If we want to start with 0 machines on this VMSS.
+                if vals["initial_pool_size"] == 0:
+                    self._insert_placeholder_machine(vmss, vals)
+                # If the VMSS shows no VMs instantiated on Azure's side but we want to start with 1+
+                elif machine_pools[vmss]["size"] == 0:
+                    self._thr_scale_machine_pool(vals["tag"], True)
+                else:
+                    # Reimage VMSS!
+                    thr = threading.Thread(
+                        target=self._thr_reimage_vmss,
+                        args=(vmss,),
+                    )
+                    vmss_reimage_threads.append(thr)
+                    thr.start()
+            else:
+                # Create VMSS!
+                thr = threading.Thread(target=self._thr_create_vmss, args=(vmss, vals["image"], vals["platform"]))
+                vmss_creation_threads.append(thr)
+                thr.start()
+
+        # Wait for everything to complete!
+        for thr in vmss_reimage_threads + vmss_creation_threads:
+            thr.join()
+
+    def _check_locked_machines(self):
+        """
+        In the case of CAPE unexpectedly restarting, release any locked machines.
+        They will have been reimaged and their tasks rescheduled before reaching this code.
+        """
+        running = self.running()
+        if len(running) > 0:
+            log.info("%d machines found locked on initialize, unlocking.", len(running))
+            for machine in running:
+                if "_placeholder" not in machine.name:
+                    self.db.unlock_machine(machine)
+
+    def _create_batch_threads(self):
+        """
+        Create batch reimage and delete threads.
+        """
+        # Initialize the batch reimage threads. We want at most 4 batch reimaging threads
+        # so that if no VMSS scaling or batch deleting is taking place (aka we are receiving constant throughput of
+        # tasks and have the appropriate number of VMs created) then we'll perform batch reimaging at an optimal rate.
+        workers = []
+        for _ in range(MAX_CONCURRENT_VMSS_OPERATIONS):
+            reimage_worker = threading.Thread(target=self._thr_reimage_list_reader)
+            reimage_worker.daemon = True
+            workers.append(reimage_worker)
+
+        # Initialize a single batch delete thread because we don't care when these operations finish
+        delete_worker = threading.Thread(target=self._thr_delete_list_reader)
+        delete_worker.daemon = True
+        workers.append(delete_worker)
+
+        # Start em up!
+        for worker in workers:
+            worker.start()
+
+    def start(self, label=None):
+        # Something bad happened, we are starting a task on a machine that needs to be deleted
+        with vms_currently_being_deleted_lock:
+            if label in vms_currently_being_deleted:
+                raise CuckooMachineError("Attempting to start a task with machine %s while it is scheduled for deletion.", label)
+
+    def stop(self, label=None):
+        """
+        If the VMSS is NOT in the "scaling-down" state, reimage it.
+        @param label: virtual machine label
+        @return: End method call
+        """
+        log.debug("Stopping machine '%s'", label)
+        # Parse the tag and instance id out to confirm which VMSS to modify
+        vmss_name, instance_id = label.split("_")
+        # If we aren't scaling down, then reimage
+        if not machine_pools[vmss_name]["is_scaling_down"]:
+            with reimage_lock:
+                reimage_vm_list.append({"vmss": vmss_name, "id": instance_id, "time_added": time.time()})
+            # Two stages until the VM can be consider reimaged
+            # Stage 1: Label is not in queue-list
+            # Stage 2: Label is not in vms_currently_being_reimaged
+            # It can be assumed that at this point in time that the label is in the reimage_vm_list
+            label_in_reimage_vm_list = True
+            while label_in_reimage_vm_list or label in vms_currently_being_reimaged:
+                time.sleep(5)
+                with reimage_lock:
+                    label_in_reimage_vm_list = label in [f"{vm['vmss']}_{vm['id']}" for vm in reimage_vm_list]
+
+    def release(self, machine: Machine):
+        """
+        Delete machine if its VMSS is in the "scaling-down" state, it was found to be absent from its VMSS during
+        reimaging, or reimaging timed out.
+        Otherwise, release the successfully reimaged machine.
+        @param label: machine label.
+        """
+        vmss_name = machine.label.split("_")[0]
+        if machine.label in vms_absent_from_vmss:
+            self.delete_machine(machine.label, delete_from_vmss=False)
+            vms_absent_from_vmss.remove(machine.label)
+        elif machine.label in vms_timed_out_being_reimaged:
+            self.delete_machine(machine.label)
+            vms_timed_out_being_reimaged.remove(machine.label)
+        elif machine_pools[vmss_name]["is_scaling_down"]:
+            self.delete_machine(machine.label)
+        else:
+            _ = super(Azure, self).release(machine)
+
+    def availables(self, label=None, platform=None, tags=None, arch=None, include_reserved=False, os_version=None):
+        """
+        Overloading abstracts.py:availables() to utilize the auto-scale option.
+        """
+        if tags:
+            for tag in tags:
+                # If VMSS is in the "wait" state, then WAIT
+                vmss_name = next((name for name, vals in self.required_vmsss.items() if vals["tag"] == tag), None)
+                if vmss_name is None:
+                    return 0
+                if machine_pools[vmss_name]["wait"]:
+                    log.debug("Machinery is not ready yet...")
+                    return 0
+
+        return super(Azure, self).availables(
+            label=label, platform=platform, tags=tags, arch=arch, include_reserved=include_reserved, os_version=os_version
+        )
+
+    def find_machine_to_service_task(self, task: Task) -> Optional[Machine]:
+        """
+        Overloading abstracts.py:find_machine_to_service_task to allow VMSS to scale down to 0 VMs
+        """
+        task_archs, task_tags = self.db._task_arch_tags_helper(task)
+        os_version = self.db._package_vm_requires_check(task.package)
+
+        def get_first_machine(query: sqlalchemy.orm.Query) -> Optional[Machine]:
+            # Select for update a machine, preferring one that is available and was the one that was used the
+            # longest time ago. This will give us a machine that can get locked or, if there are none that are
+            # currently available, we'll at least know that the task is serviceable.
+            return cast(
+                Optional[Machine], query.order_by(Machine.locked, Machine.locked_changed_on).with_for_update(of=Machine).first()
+            )
+
+        machines = self.db.session.query(Machine).options(sqlalchemy.orm.joinedload(Machine.tags))
+        filter_kwargs = {
+            "statement": machines,
+            "label": task.machine,
+            "tags": task_tags,
+            "archs": task_archs,
+            "os_version": os_version,
+        }
+        filtered_machines = self.db.filter_machines_to_task(include_reserved=False, **filter_kwargs)
+        machine = get_first_machine(filtered_machines)
+        if machine is None and not task.machine and task_tags:
+            # The task was given at least 1 tag, but there are no non-reserved machines
+            # that could satisfy the request. So let's see if there are any "reserved"
+            # machines that can satisfy it.
+            filtered_machines = self.db.filter_machines_to_task(include_reserved=True, **filter_kwargs)
+            machine = get_first_machine(filtered_machines)
+
+        if machine is None:
+            self._scale_from_zero(task, os_version, task_tags)
+        if machine and machine.locked:
+            # There aren't any machines that can service the task NOW, but there is at least one in the pool
+            # that could service it once it's available.
+            return None
+        return machine
+
+    def _scale_from_zero(self, task: Task, os_version: str, tags):
+        """
+        Scale up VMSS with current size of 0 and able to run the task.
+        """
+        assignable_vmss = None
+        # Get the first VMSS that can run this task on an instance
+        for _, vals in self.required_vmsss.items():
+            if os_version and os_version == vals["tag"]:
+                assignable_vmss = vals
+                break
+            if tags and len(tags) == 1 and vals["tag"] == tags[0]:
+                assignable_vmss = vals
+                break
+            if vals["platform"] == task.platform:
+                assignable_vmss = vals
+                break
+
+        if assignable_vmss is None:
+            raise CuckooUnserviceableTaskError
+
+        # VMSS able to run the task exists but has no relevant machines. Scale up from zero.
+        threading.Thread(
+            target=self._thr_scale_machine_pool,
+            args=(assignable_vmss["tag"], True)
+        ).start()
+
+    def _add_machines_to_db(self, vmss_name):
+        """
+        Adding machines to database that did not exist there before.
+        @param vmss_name: the name of the VMSS to be queried
+        """
+        try:
+            log.debug("Adding machines to database for %s.", vmss_name)
+            # We don't want to re-add machines! Therefore, let's see what we're working with
+            machines_in_db = self.db.list_machines()
+            db_machine_labels = [machine.label for machine in machines_in_db]
+            # We want to avoid collisions where the IP is already associated with a machine
+            db_machine_ips = [machine.ip for machine in machines_in_db]
+
+            # Get all VMs in the VMSS
+            paged_vmss_vms = Azure._azure_api_call(
+                self.options.az.sandbox_resource_group,
+                vmss_name,
+                operation=self.compute_client.virtual_machine_scale_set_vms.list,
+            )
+
+            # Get all network interface cards for the machines in the VMSS
+            paged_vmss_vm_nics = Azure._azure_api_call(
+                self.options.az.sandbox_resource_group,
+                vmss_name,
+                operation=self.network_client.network_interfaces.list_virtual_machine_scale_set_network_interfaces,
+            )
+
+            # Turn the Paged result into a list
+            vmss_vm_nics = [vmss_vm_nic for vmss_vm_nic in paged_vmss_vm_nics]
+
+            # This will be used if we are in the initializing phase of the system
+            ready_vmss_vm_threads = {}
+            with vms_currently_being_deleted_lock:
+                vms_to_avoid_adding = vms_currently_being_deleted
+            for vmss_vm in paged_vmss_vms:
+                if vmss_vm.name in db_machine_labels:
+                    # Don't add it if it already exists!
+                    continue
+                if vmss_vm.name in vms_to_avoid_adding:
+                    # Don't add it if it is currently being deleted!
+                    log.debug("%s is currently being deleted!", vmss_vm.name)
+                    continue
+                # According to Microsoft, the OS type is...
+                platform = vmss_vm.storage_profile.os_disk.os_type.lower()
+
+                if not vmss_vm.network_profile:
+                    log.error("%s does not have a network profile", vmss_vm.name)
+                    continue
+
+                vmss_vm_nic = next(
+                    (
+                        vmss_vm_nic
+                        for vmss_vm_nic in vmss_vm_nics
+                        if vmss_vm.network_profile.network_interfaces[0].id.lower() == vmss_vm_nic.id.lower()
+                    ),
+                    None,
+                )
+                if not vmss_vm_nic:
+                    log.error(
+                        "%s does not match any NICs in %s", vmss_vm.network_profile.network_interfaces[0].id.lower(), str([vmss_vm_nic.id.lower() for vmss_vm_nic in vmss_vm_nics])
+                    )
+                    continue
+                # Sets "new_machine" object in configuration object to
+                # avoid raising an exception.
+                setattr(self.options, vmss_vm.name, {})
+
+                private_ip = vmss_vm_nic.ip_configurations[0].private_ip_address
+                if private_ip in db_machine_ips:
+                    existing_machines = [machine for machine in machines_in_db if machine.ip == private_ip]
+                    vmss_name, _ = existing_machines[0].label.split("_")
+                    self._delete_machines_from_db_if_missing(vmss_name)
+
+                # Add machine to DB.
+                # TODO: What is the point of name vs label?
+                self.db.add_machine(
+                    name=vmss_vm.name,
+                    label=vmss_vm.name,
+                    ip=private_ip,
+                    platform=platform,
+                    tags=self.options.az.scale_sets[vmss_name].pool_tag,
+                    arch=self.options.az.scale_sets[vmss_name].arch,
+                    interface=self.options.az.interface,
+                    snapshot=vmss_vm.storage_profile.image_reference.id,
+                    resultserver_ip=self.options.az.resultserver_ip,
+                    resultserver_port=self.options.az.resultserver_port,
+                    reserved=False,
+                )
+                # We always wait for Cuckoo agent to finish setting up if 'wait_for_agent_before_starting' is true or if we are initializing.
+                # Else, the machine should become immediately available in DB.
+                if self.initializing or self.options.az.wait_for_agent_before_starting:
+                    thr = threading.Thread(
+                        target=Azure._thr_wait_for_ready_machine,
+                        args=(
+                            vmss_vm.name,
+                            private_ip,
+                        ),
+                    )
+                    ready_vmss_vm_threads[vmss_vm.name] = thr
+                    thr.start()
+
+            if ready_vmss_vm_threads:
+                for vm, thr in ready_vmss_vm_threads.items():
+                    try:
+                        thr.join()
+                    except CuckooGuestCriticalTimeout:
+                        log.debug("Rough start for %s, deleting.", vm)
+                        self.delete_machine(vm)
+                        raise
+        except Exception as e:
+            log.exception(repr(e))
+
+            # If no machines on any VMSSs are in the db when we leave this method, CAPE will crash.
+            if not self.machines() and self.required_vmsss[vmss_name]["retries"] > 0:
+                log.warning("No available VMs after initializing %s. Attempting to reinitialize VMSS.", vmss_name)
+                self.required_vmsss[vmss_name]["retries"] -= 1
+                start_time = timeit.default_timer()
+
+                while (timeit.default_timer() - start_time) < 120:
+                    with vms_currently_being_deleted_lock:
+                        if any(failed_vm in vms_currently_being_deleted for failed_vm in ready_vmss_vm_threads):
+                            # VMs not deleted from VMSS yet.
+                            continue
+                    self._update_or_create_vmsss(vmsss_dict={vmss_name: self.required_vmsss[vmss_name]})
+                    return
+                log.debug("%s initialize retry failed. Timed out waiting for VMs to be deleted.", vmss_name)
+
+    def _delete_machines_from_db_if_missing(self, vmss_name):
+        """
+        Delete machine from database if it does not exist in the VMSS.
+        @param vmss_name: the name of the VMSS to be queried
+        """
+        log.debug("Deleting machines from database if they do not exist in the VMSS %s.", vmss_name)
+        # Get all VMs in the VMSS
+        paged_vmss_vms = Azure._azure_api_call(
+            self.options.az.sandbox_resource_group,
+            vmss_name,
+            operation=self.compute_client.virtual_machine_scale_set_vms.list,
+        )
+
+        # Turn the Paged result into a list
+        vmss_vm_names = [vmss_vm.name for vmss_vm in paged_vmss_vms]
+
+        for machine in self.db.list_machines():
+            # If machine entry in database is part of VMSS but machine in VMSS does not exist, delete
+            if vmss_name in machine.label and machine.label not in vmss_vm_names:
+                self.delete_machine(machine.label, delete_from_vmss=False)
+
+    def delete_machine(self, label, delete_from_vmss=True):
+        """
+        Overloading abstracts.py:delete_machine()
+        """
+
+        super(Azure, self).delete_machine(label)
+
+        if delete_from_vmss:
+            # Only add vm to the lists if it isn't there already
+            vmss_name, instance_id = label.split("_")
+            with vms_currently_being_deleted_lock:
+                if label not in vms_currently_being_deleted:
+                    vms_currently_being_deleted.append(label)
+            with delete_lock:
+                if next((vm for vm in delete_vm_list if vm["id"] == instance_id), None) is None:
+                    delete_vm_list.append({"vmss": vmss_name, "id": instance_id, "time_added": time.time()})
+
+    @staticmethod
+    def _thr_wait_for_ready_machine(machine_name, machine_ip):
+        """
+        Static method that is used to determine if the agent is running on a machine yet.
+        @param machine_name: the name of the machine waited for. NOTE param is only used for logging.
+        @param machine_ip: the IP of the machine we are waiting for.
+        @return: End method call
+        """
+        # Majority of this code is copied from cuckoo/core/guest.py:GuestManager.wait_available()
+        timeout = Config("cuckoo").timeouts.vm_state
+        start = timeit.default_timer()
+        while True:
+            try:
+                socket.create_connection((machine_ip, CUCKOO_GUEST_PORT), 1).close()
+                # We did it!
+                break
+            except socket.timeout:
+                log.debug("%s: Initializing...", machine_name)
+            except socket.error:
+                log.debug("%s: Initializing...", machine_name)
+            if (timeit.default_timer() - start) >= timeout:
+                # We didn't do it :(
+                raise CuckooGuestCriticalTimeout(
+                    "Machine %s: the guest initialization hit the critical timeout, analysis aborted.", machine_name
+                )
+            time.sleep(10)
+        log.debug("Machine %s was created and available in %d s", machine_name, round(timeit.default_timer() - start))
+
+    @staticmethod
+    def _azure_api_call(*args, **kwargs):
+        """
+        This method is used as a common place for all Azure API calls
+        @param args: any argument that an Azure API call takes
+        @param kwargs: the API call operation, and sometimes tags
+        @raise CuckooMachineError: if there is a problem with the Azure call
+        @return: dict containing results of API call
+        """
+        # I figured this was the most concrete way to guarantee that an API method was being passed
+        if not kwargs["operation"]:
+            raise Exception("kwargs in _azure_api_call requires 'operation' parameter.")
+        operation = kwargs.pop("operation")
+
+        # This is used for logging
+        api_call = f"{operation}({args},{kwargs})"
+
+        try:
+            log.debug("Trying %s", api_call)
+            results = operation(*args, **kwargs)
+        except Exception as exc:
+            # For ClientRequestErrors, they do not have the attribute 'error'
+            error = exc.error.error if getattr(exc, "error", False) else exc
+            log.warning(
+                "Failed to '%s' due to the Azure error '%s': '%s'.", str(api_call), str(error), f"{exc.message if hasattr(exc, 'message') else repr(exc)}"
+            )
+            if "NotFound" in repr(exc) or (hasattr(exc, "status_code") and exc.status_code == 404):
+                # Note that this exception is used to represent if an Azure resource
+                # has not been found, not just machines
+                raise CuckooMachineError(f"{error}:{exc.message if hasattr(exc, 'message') else repr(exc)}")
+            else:
+                raise CuckooMachineError(f"{error}:{exc.message if hasattr(exc, 'message') else repr(exc)}")
+        if type(results) is LROPoller:
+            # Log the subscription limits
+            headers = results._response.headers
+            log.debug(
+                "API Charge: %s; Remaining Calls: %s", headers['x-ms-request-charge'], headers['x-ms-ratelimit-remaining-resource']
+            )
+        return results
+
+    def _thr_create_vmss(self, vmss_name, vmss_image_ref, vmss_image_os):
+        """
+        Creates a Virtual Machine Scale Set
+        @param vmss_name: The name of the VMSS to be created
+        @param vmss_image_ref: The image reference to be used for the VMSS
+        @param vmss_image_os: The platform of the image
+        @param vmss_tag: the tag used that represents the OS image
+        """
+
+        try:
+            self.subnet_id = Azure._azure_api_call(
+                self.options.az.vnet_resource_group,
+                self.options.az.vnet,
+                self.options.az.subnet,
+                operation=self.network_client.subnets.get,
+            ).id  # note the id attribute here
+        except CuckooMachineError:
+            raise CuckooCriticalError(
+                "Subnet '%s' does not exist in Virtual Network '%s'", self.options.az.subnet, self.options.az.vnet
+            )
+
+        vmss_managed_disk = models.VirtualMachineScaleSetManagedDiskParameters(
+            storage_account_type=self.options.az.storage_account_type
+        )
+        vmss_os_disk = models.VirtualMachineScaleSetOSDisk(
+            create_option="FromImage",
+            os_type=vmss_image_os,
+            managed_disk=vmss_managed_disk,
+            # Ephemeral disk time
+            caching="ReadOnly",
+            diff_disk_settings=models.DiffDiskSettings(option="Local", placement=self.options.az.ephemeral_os_disk_placement),
+        )
+        vmss_storage_profile = models.VirtualMachineScaleSetStorageProfile(
+            image_reference=vmss_image_ref,
+            os_disk=vmss_os_disk,
+        )
+        vmss_dns_settings = models.VirtualMachineScaleSetNetworkConfigurationDnsSettings(
+            dns_servers=self.options.az.dns_server_ips.strip().split(",")
+        )
+        vmss_ip_config = models.VirtualMachineScaleSetIPConfiguration(
+            name="vmss_ip_config",
+            subnet=models.ApiEntityReference(id=self.subnet_id),
+            private_ip_address_version="IPv4",
+        )
+        vmss_network_config = models.VirtualMachineScaleSetNetworkConfiguration(
+            name="vmss_network_config",
+            dns_settings=vmss_dns_settings,
+            ip_configurations=[vmss_ip_config],
+            primary=True,
+        )
+        vmss_network_profile = models.VirtualMachineScaleSetNetworkProfile(network_interface_configurations=[vmss_network_config])
+        # If the user wants spot instances, then give them spot instances!
+        if self.options.az.spot_instances:
+            vmss_vm_profile = models.VirtualMachineScaleSetVMProfile(
+                storage_profile=vmss_storage_profile,
+                network_profile=vmss_network_profile,
+                # Note: The following key value pairs are for Azure spot instances
+                priority=models.VirtualMachinePriorityTypes.spot,
+                eviction_policy=models.VirtualMachineEvictionPolicyTypes.delete,
+                # Note: This value may change depending on your needs.
+                billing_profile=models.BillingProfile(max_price=float(-1)),
+            )
+        else:
+            vmss_vm_profile = models.VirtualMachineScaleSetVMProfile(
+                storage_profile=vmss_storage_profile,
+                network_profile=vmss_network_profile,
+                priority=models.VirtualMachinePriorityTypes.REGULAR,
+            )
+        vmss = models.VirtualMachineScaleSet(
+            location=self.options.az.region_name,
+            tags=Azure.AUTO_SCALE_CAPE_TAG,
+            sku=models.Sku(name=self.options.az.instance_type, capacity=self.required_vmsss[vmss_name]["initial_pool_size"]),
+            upgrade_policy=models.UpgradePolicy(mode="Automatic"),
+            virtual_machine_profile=vmss_vm_profile,
+            overprovision=False,
+            # When true this limits the scale set to a single placement group, of max size 100 virtual machines.
+            single_placement_group=False,
+            scale_in_policy=models.ScaleInPolicy(rules=[models.VirtualMachineScaleSetScaleInRules.newest_vm]),
+            spot_restore_policy=(
+                models.SpotRestorePolicy(enabled=True, restore_timeout="PT30M") if self.options.az.spot_instances else None
+            ),
+        )
+        if not self.options.az.just_start:
+            async_vmss_creation = Azure._azure_api_call(
+                self.options.az.sandbox_resource_group,
+                vmss_name,
+                vmss,
+                polling_interval=1,
+                operation=self.compute_client.virtual_machine_scale_sets.begin_create_or_update,
+            )
+            _ = self._handle_poller_result(async_vmss_creation)
+
+        # Initialize key-value pair for VMSS with specific details
+        machine_pools[vmss_name] = {
+            "size": self.required_vmsss[vmss_name]["initial_pool_size"],
+            "is_scaling": False,
+            "is_scaling_down": False,
+            "wait": False,
+        }
+        self.required_vmsss[vmss_name]["exists"] = True
+        try:
+            with self.db.session.begin():
+                if machine_pools[vmss_name]["size"] == 0:
+                    self._insert_placeholder_machine(vmss_name, self.required_vmsss[vmss_name])
+                else:
+                    self._add_machines_to_db(vmss_name)
+        except sqlalchemy.exc.InvalidRequestError:
+            if machine_pools[vmss_name]["size"] == 0:
+                self._insert_placeholder_machine(vmss_name, self.required_vmsss[vmss_name])
+            else:
+                self._add_machines_to_db(vmss_name)
+
+    def _thr_reimage_vmss(self, vmss_name):
+        """
+        Reimage the VMSS
+        @param vmss_name: the name of the VMSS to be reimage
+        """
+        # Reset all machines via begin_reimage_all
+        try:
+            async_reimage_all = Azure._azure_api_call(
+                self.options.az.sandbox_resource_group,
+                vmss_name,
+                polling_interval=1,
+                operation=self.compute_client.virtual_machine_scale_sets.begin_reimage_all,
+            )
+            _ = self._handle_poller_result(async_reimage_all)
+        except CuckooMachineError as e:
+            # Possible error: 'BadRequest': 'The VM {id} creation in Virtual Machine Scale Set {vmss-name} with
+            # ephemeral disk is not complete. Please trigger a restart if required.'
+            if "BadRequest" in repr(e):
+                async_restart_vmss = Azure._azure_api_call(
+                    self.options.az.sandbox_resource_group,
+                    vmss_name,
+                    polling_interval=1,
+                    operation=self.compute_client.virtual_machine_scale_sets.restart,
+                )
+                _ = self._handle_poller_result(async_restart_vmss)
+            else:
+                log.exception(repr(e))
+                raise
+        try:
+            with self.db.session.begin():
+                self._add_machines_to_db(vmss_name)
+        except sqlalchemy.exc.InvalidRequestError:
+            self._add_machines_to_db(vmss_name)
+
+    def _thr_scale_machine_pool(self, tag, per_platform=False):
+        """
+        Expand/Reduce the machine pool based on the number of queued relevant tasks
+        @param tag: the OS tag of the machine pool to be scaled
+        @param per_platform: A boolean flag indicating that we should scale machine pools "per platform" vs. "per tag"
+        @return: Ends method call
+        """
+        with self.db.session.begin():
+            return self._scale_machine_pool(tag, per_platform=per_platform)
+
+    def _scale_machine_pool(self, tag, per_platform=False):
+        global current_vmss_operations
+
+        platform = None
+        if per_platform and Azure.WINDOWS_TAG_PREFIX in tag:
+            platform = Azure.WINDOWS_PLATFORM
+        elif per_platform and Azure.LINUX_TAG_PREFIX in tag:
+            platform = Azure.LINUX_PLATFORM
+
+        # If the designated VMSS is already being scaled for the given platform, don't mess with it
+        if platform and is_platform_scaling[platform]:
+            return
+
+        # Get the VMSS name by the tag
+        vmss_name = next(name for name, vals in self.required_vmsss.items() if vals["tag"] == tag)
+
+        # TODO: Remove large try-catch once all bugs have been caught
+        # It has been observed that there are times when the is_scaling flag is not returned to False even though
+        # scaling has completed. Therefore we need this try-catch to figure out why.
+        try:
+            # If this VMSS is already being scaled, don't mess with it
+            if machine_pools[vmss_name]["is_scaling"]:
+                return
+
+            # This is the flag that is used to indicate if the VMSS is being scaled by a thread
+            machine_pools[vmss_name]["is_scaling"] = True
+
+            # This is the flag that is used to indicate if a designated VMSS has been selected for a platform and if
+            # it is being scaled by a thread
+            if platform:
+                is_platform_scaling[platform] = True
+
+            relevant_machines = self._get_relevant_machines(tag)
+            number_of_relevant_machines = len(relevant_machines)
+            machine_pools[vmss_name]["size"] = number_of_relevant_machines
+            relevant_task_queue = self._get_number_of_relevant_tasks(tag, platform)
+
+            # The scaling technique we will use is a tweaked version of the Leaky Bucket, where we
+            # only scale down if the relevant task queue is empty.
+
+            # If there are no relevant tasks in the queue, scale to the bare minimum pool size
+            if relevant_task_queue == 0:
+                number_of_relevant_machines_required = self.required_vmsss[vmss_name]["initial_pool_size"]
+            else:
+                number_of_relevant_machines_required = int(
+                    round(relevant_task_queue * (1 + float(self.options.az.overprovision) / 100))
+                )
+
+            if number_of_relevant_machines_required < self.required_vmsss[vmss_name]["initial_pool_size"]:
+                number_of_relevant_machines_required = self.required_vmsss[vmss_name]["initial_pool_size"]
+            elif number_of_relevant_machines_required > self.options.az.scale_set_limit:
+                number_of_relevant_machines_required = self.options.az.scale_set_limit
+
+            if number_of_relevant_machines_required > self.subnet_limit:
+                number_of_relevant_machines_required = self.subnet_limit
+                log.debug("Scaling limited by the size of the subnet: %s", self.subnet_limit)
+
+            number_of_machines = len(self.db.list_machines())
+            projected_total_machines = number_of_machines - number_of_relevant_machines + number_of_relevant_machines_required
+
+            if projected_total_machines > self.options.az.total_machines_limit:
+                non_relevant_machines = number_of_machines - number_of_relevant_machines
+                number_of_relevant_machines_required = self.options.az.total_machines_limit - non_relevant_machines
+                if number_of_relevant_machines_required < 0:
+                    number_of_relevant_machines_required = self.required_vmsss[vmss_name]["initial_pool_size"]
+
+            # Let's confirm that this number is actually achievable
+            usages = Azure._azure_api_call(self.options.az.region_name, operation=self.compute_client.usage.list)
+            usage_to_look_for = None
+            if self.options.az.spot_instances:
+                usage_to_look_for = "lowPriorityCores"
+            else:
+                usage_to_look_for = self.options.az.quota_name if self.options.az.quota_name else None
+
+            if usage_to_look_for:
+                usage = next((item for item in usages if item.name.value == usage_to_look_for), None)
+
+                if usage:
+                    number_of_new_cpus_required = self.instance_type_cpus * (
+                        number_of_relevant_machines_required - number_of_machines
+                    )
+                    number_of_new_cpus_available = (
+                        int(usage.limit)
+                        - usage.current_value
+                        - int(self.instance_type_cpus * int(self.options.az.quota_machine_exclusion))
+                    )
+                    if number_of_new_cpus_available < 0:
+                        number_of_relevant_machines_required = machine_pools[vmss_name]["size"]
+                    elif number_of_new_cpus_required > number_of_new_cpus_available:
+                        old_number_of_relevant_machines_required = number_of_relevant_machines_required
+                        number_of_relevant_machines_required = (
+                            number_of_relevant_machines + number_of_new_cpus_available / self.instance_type_cpus
+                        )
+                        log.debug(
+                            "Quota could be exceeded with projected number of machines (%s). Setting new limit to %s", str(old_number_of_relevant_machines_required), str(number_of_relevant_machines_required)
+                        )
+
+            if machine_pools[vmss_name]["size"] == number_of_relevant_machines_required:
+                # Check that VMs in DB actually exist in the VMSS. There is a possibility that
+                # Azure will delete a machine in a VMSS that has not been used in a while. So the machine_pools value
+                # will not be up-to-date
+                self._delete_machines_from_db_if_missing(vmss_name)
+                if len(self.db.list_machines(tags=[tag], include_reserved=True)) == 0:
+                    self._insert_placeholder_machine(vmss_name, self.required_vmsss[vmss_name])
+                # Update the VMSS size accordingly
+                machine_pools[vmss_name]["size"] = len(self._get_relevant_machines(tag))
+                log.debug("The size of the machine pool %s is already the size that we want", vmss_name)
+                machine_pools[vmss_name]["is_scaling"] = False
+                if platform:
+                    is_platform_scaling[platform] = False
+                return
+
+            # This value will be used for adding or deleting machines from the database
+            # NOTE: If you set the VMSS capacity to 4, then delete a VM, the capacity is set to 3 for some reason.
+            # Therefore we want to grab the initial capacity from the global variable before machines are deleted,
+            # since the vmss.sku.capacity variable is unreliable.
+            initial_capacity = machine_pools[vmss_name]["size"]
+
+            # Time to scale down!
+            if number_of_relevant_machines_required < initial_capacity:
+                # Creating these variables to be used to assist with the scaling down process
+                initial_number_of_locked_relevant_machines = len([machine for machine in relevant_machines if machine.locked])
+                initial_number_of_unlocked_relevant_machines = (
+                    number_of_relevant_machines - initial_number_of_locked_relevant_machines
+                )
+
+                # The system is at rest when no relevant tasks are in the queue and no relevant machines are locked
+                if relevant_task_queue == initial_number_of_locked_relevant_machines == 0:
+                    # The VMSS will scale in via the ScaleInPolicy.
+                    machine_pools[vmss_name]["wait"] = True
+                    log.debug("System is at rest, scale down %s capacity and delete machines.", vmss_name)
+                # System is not at rest, but task queue is 0, therefore set machines in use to delete
+                elif relevant_task_queue == 0:
+                    machine_pools[vmss_name]["is_scaling_down"] = True
+                    start_time = timeit.default_timer()
+                    # Wait until currently locked machines are deleted to the number that we require
+                    while number_of_relevant_machines > number_of_relevant_machines_required:
+                        # Since we're sleeping 1 second between iterations of this while loop, if there are available
+                        # machines waiting to be assigned tasks and a new task comes down the pipe then there will be
+                        # no queue and instead the # of locked relevant machines will increase (or unlocked relevant
+                        # machines will decrease). Either one indicates that a new task has been submitted and therefore
+                        # the "scaling down" process should exit. This is to prevent scaling down and up so often.
+                        updated_number_of_locked_relevant_machines = len(
+                            [machine for machine in relevant_machines if machine.locked]
+                        )
+                        updated_number_of_unlocked_relevant_machines = (
+                            number_of_relevant_machines - updated_number_of_locked_relevant_machines
+                        )
+
+                        # We don't want to be stuck in this for longer than the timeout specified
+                        if (timeit.default_timer() - start_time) > AZURE_TIMEOUT:
+                            log.debug("Breaking out of the while loop within the scale down section for %s.", vmss_name)
+                            break
+                        # Get the updated number of relevant machines required
+                        relevant_task_queue = self._get_number_of_relevant_tasks(tag)
+                        # As soon as a task is in the queue or has been assigned to a machine, we do not want to scale down any more.
+                        # Deleting an instance affects the capacity of the VMSS, so we do not need to update it.
+                        if (
+                            relevant_task_queue
+                            or updated_number_of_locked_relevant_machines > initial_number_of_locked_relevant_machines
+                            or updated_number_of_unlocked_relevant_machines < initial_number_of_unlocked_relevant_machines
+                        ):
+                            break
+                        # Relaxxxx
+                        time.sleep(self.options.az.scale_down_polling_period)
+                        log.debug(
+                            "Scaling %s down until new task is received. %s -> %s", vmss_name, str(number_of_relevant_machines), str(number_of_relevant_machines_required)
+                        )
+
+                        # Get an updated count of relevant machines
+                        relevant_machines = self._get_relevant_machines(tag)
+                        number_of_relevant_machines = len(relevant_machines)
+                        machine_pools[vmss_name]["size"] = number_of_relevant_machines
+
+                    # No longer scaling down
+                    machine_pools[vmss_name]["is_scaling_down"] = False
+                    machine_pools[vmss_name]["is_scaling"] = False
+                    return
+                else:
+                    # We only scale down if the relevant task queue is 0
+                    machine_pools[vmss_name]["is_scaling"] = False
+                    return
+
+            # Update the capacity of the VMSS
+            log.debug("Scaling %s size from %s -> %s", vmss_name, initial_capacity, str(number_of_relevant_machines_required))
+            vmss = Azure._azure_api_call(
+                self.options.az.sandbox_resource_group,
+                vmss_name,
+                operation=self.compute_client.virtual_machine_scale_sets.get,
+            )
+            vmss.sku.capacity = number_of_relevant_machines_required
+            start_time = timeit.default_timer()
+
+            try:
+                if Azure._wait_for_concurrent_operations_to_complete():
+                    async_update_vmss = Azure._azure_api_call(
+                        self.options.az.sandbox_resource_group,
+                        vmss_name,
+                        vmss,
+                        polling_interval=1,
+                        operation=self.compute_client.virtual_machine_scale_sets.begin_update,
+                    )
+                    _ = self._handle_poller_result(async_update_vmss)
+                    with current_operations_lock:
+                        current_vmss_operations -= 1
+            except CuckooMachineError as e:
+                with current_operations_lock:
+                    current_vmss_operations -= 1
+                log.warning(repr(e))
+                machine_pools[vmss_name]["wait"] = False
+                machine_pools[vmss_name]["is_scaling"] = False
+                if platform:
+                    is_platform_scaling[platform] = False
+                return
+
+            timediff = timeit.default_timer() - start_time
+            log.debug("The scaling of %s took %d s", vmss_name, round(timediff))
+            machine_pools[vmss_name]["size"] = number_of_relevant_machines_required
+
+            # Alter the database based on if we scaled up or down
+            log.debug("Updated %s capacity: %s; Initial capacity: %s", vmss_name, str(number_of_relevant_machines_required), str(initial_capacity))
+            if number_of_relevant_machines_required > initial_capacity:
+                if machine_pools[vmss_name]["has_placeholder_machine"]:
+                    self._remove_placeholder_machine(vmss_name)
+                self._add_machines_to_db(vmss_name)
+            else:
+                self._delete_machines_from_db_if_missing(vmss_name)
+                if len(self.db.list_machines(tags=[tag], include_reserved=True)) == 0:
+                    self._insert_placeholder_machine(vmss_name, self.required_vmsss[vmss_name])
+
+            # I release you from your earthly bonds!
+            machine_pools[vmss_name]["wait"] = False
+            machine_pools[vmss_name]["is_scaling"] = False
+            if platform:
+                is_platform_scaling[platform] = False
+            log.debug("Scaling %s has completed.", vmss_name)
+        except Exception as exc:
+            machine_pools[vmss_name]["wait"] = False
+            machine_pools[vmss_name]["is_scaling"] = False
+            if platform:
+                is_platform_scaling[platform] = False
+            log.exception("Scaling %s has completed with errors %s.", vmss_name, str(exc))
+
+    @staticmethod
+    def _handle_poller_result(lro_poller_object):
+        """
+        Provides method of handling Azure tasks that take too long to complete
+        @param lro_poller_object: An LRO Poller Object for an Async Azure Task
+        """
+        start_time = timeit.default_timer()
+        # TODO: Azure disregards the timeout passed to it in most cases, unless it has a custom poller
+        try:
+            lro_poller_result = lro_poller_object.result(timeout=AZURE_TIMEOUT)
+        except Exception as e:
+            raise CuckooMachineError(repr(e))
+        time_taken = timeit.default_timer() - start_time
+        if time_taken >= AZURE_TIMEOUT:
+            raise CuckooMachineError("The task took %ds to complete! Bad Azure!", round(time_taken))
+        else:
+            return lro_poller_result
+
+    def _get_number_of_relevant_tasks(self, tag, platform=None):
+        """
+        Returns the number of relevant tasks for a tag or platform
+        @param tag: The OS tag used for finding relevant tasks
+        @param platform: The platform used for finding relevant tasks
+        @return int: The number of relevant tasks for the given tag
+        """
+        # Getting all tasks in the queue
+        tasks = self.db.list_tasks(status=TASK_PENDING)
+
+        # The task queue that will be used to prepare machines will be relative to the virtual
+        # machine tag that is targeted in the task (win7, win10, etc) or platform (windows, linux)
+        relevant_task_queue = 0
+
+        if not platform:
+            for task in tasks:
+                for t in task.tags:
+                    if t.name == tag:
+                        relevant_task_queue += 1
+        else:
+            for task in tasks:
+                if task.platform == platform:
+                    relevant_task_queue += 1
+        return relevant_task_queue
+
+    def _get_relevant_machines(self, tag):
+        """
+        Returns the relevant machines for a given tag
+        @param tag: The OS tag used for finding relevant machines
+        @return list of db.Machine: The machines that are relevant for the given tag
+        """
+        # The number of relevant machines are those from the list of locked and unlocked machines
+        # that have the correct tag in their name
+        return [machine for machine in self.db.list_machines(tags=[tag])]
+
+    @staticmethod
+    def _wait_for_concurrent_operations_to_complete(timeout=AZURE_TIMEOUT):
+        """
+        Waits until concurrent operations have reached an acceptable level to continue (less than 4)
+        """
+        global current_vmss_operations
+
+        start_time = timeit.default_timer()
+        while True:
+            with current_operations_lock:
+                if current_vmss_operations < MAX_CONCURRENT_VMSS_OPERATIONS:
+                    current_vmss_operations += 1
+                    return True
+            if timeit.default_timer() - start_time > timeout:
+                log.debug("The timeout has been exceeded for the current concurrent VMSS operations to complete. Unleashing!")
+                return False
+            else:
+                time.sleep(1)
+
+    def _thr_reimage_list_reader(self):
+        """
+        Provides the logic for a list reader thread which performs batch reimaging
+        """
+        global current_vmss_operations
+
+        while True:
+            try:
+                time.sleep(5)
+
+                # If no more current vmss operations can be added, then sleep on it!
+                with current_operations_lock:
+                    if current_vmss_operations >= MAX_CONCURRENT_VMSS_OPERATIONS:
+                        continue
+
+                with reimage_lock:
+                    # If there are no jobs in the reimage_vm_list, then sleep on it!
+                    if not reimage_vm_list:
+                        continue
+
+                    # Stage 1: Determine from the list of VMs to be reimaged which VMs should be reimaged
+
+                    # Check the time of the first item, which in theory will be the first added
+                    if time.time() - reimage_vm_list[0]["time_added"] >= self.options.az.wait_time_to_reimage:
+                        # We are processing a batch here not based on biggest size but based on having the oldest reimage job
+                        # Now check if there are any other VMs from the same VMSS to reimage
+                        vmss_to_reimage = reimage_vm_list[0]["vmss"]
+                        vms_to_reimage_from_same_vmss = [vm for vm in reimage_vm_list if vm["vmss"] == vmss_to_reimage]
+                    else:
+                        # In terms of overall task speed, processing the largest batch will have the greatest impact on processing.
+                        # Find the largest batch of VMs from the same VMSS
+                        vmss_vm_reimage_counts = {vmss_name: 0 for vmss_name in self.required_vmsss.keys()}
+                        for vm in reimage_vm_list:
+                            vmss_vm_reimage_counts[vm["vmss"]] += 1
+                        max = 0
+                        for vmss_name, count in vmss_vm_reimage_counts.items():
+                            # The idea here is that even if two VMSSs have the same amount of VMs in the list, then the VMSS
+                            # that contains the VM with the oldest reimage request will be selected due to how we are iterating
+                            # through the list
+                            if count > max:
+                                max = count
+                                vmss_to_reimage = vmss_name
+                        vms_to_reimage_from_same_vmss = [vm for vm in reimage_vm_list if vm["vmss"] == vmss_to_reimage]
+
+                    # Before we remove VMs from the reimage_vm_list, we add to this list
+                    for vm in vms_to_reimage_from_same_vmss:
+                        vms_currently_being_reimaged.append(f"{vm['vmss']}_{vm['id']}")
+
+                    # Remove VMs we are about to reimage from the global reimage_vm_list
+                    for vm in vms_to_reimage_from_same_vmss:
+                        reimage_vm_list.remove(vm)
+
+                # Stage 2: Actually performing the batch reimaging
+                # The use of sets here is more of a safety for the reimage_all
+                instance_ids = list(set([vm["id"] for vm in vms_to_reimage_from_same_vmss]))
+                try:
+                    if Azure._wait_for_concurrent_operations_to_complete():
+                        start_time = timeit.default_timer()
+                        async_reimage_some_machines = Azure._azure_api_call(
+                            self.options.az.sandbox_resource_group,
+                            vmss_to_reimage,
+                            models.VirtualMachineScaleSetVMInstanceIDs(instance_ids=instance_ids),
+                            polling_interval=1,
+                            operation=self.compute_client.virtual_machine_scale_sets.begin_reimage_all,
+                        )
+                except Exception as exc:
+                    log.exception(repr(exc))
+                    # If InvalidParameter: 'The provided instanceId x is not an active Virtual Machine Scale Set VM instanceId.
+                    # This means that the machine has been deleted
+                    # If BadRequest: The VM x creation in Virtual Machine Scale Set <vmss name>> with ephemeral disk is not complete. Please trigger a restart if required'
+                    # This means Azure has failed us
+                    instance_ids_that_should_not_be_reimaged_again = set()
+                    if "InvalidParameter" in repr(exc) or "BadRequest" in repr(exc):
+                        # Parse out the instance ID(s) in this error so we know which instances don't exist
+                        instance_ids_that_should_not_be_reimaged_again = {
+                            substring for substring in repr(exc).split() if substring.isdigit()
+                        }
+                    with current_operations_lock:
+                        current_vmss_operations -= 1
+
+                    for instance_id in instance_ids_that_should_not_be_reimaged_again:
+                        if "InvalidParameter" in repr(exc):
+                            log.warning("Machine %s does not exist anymore. Deleting from database.", f"{vmss_to_reimage}_{instance_id}")
+                        elif "BadRequest" in repr(exc):
+                            log.warning(
+                                "Machine %s cannot start due to ephemeral disk issues with Azure. Deleting from database and Azure.", f"{vmss_to_reimage}_{instance_id}"
+                            )
+                            with vms_currently_being_deleted_lock:
+                                vms_currently_being_deleted.append(f"{vmss_to_reimage}_{instance_id}")
+                            with delete_lock:
+                                delete_vm_list.append({"vmss": vmss_to_reimage, "id": instance_id, "time_added": time.time()})
+                        vms_absent_from_vmss.append(f"{vmss_to_reimage}_{instance_id}")
+                        vms_currently_being_reimaged.remove(f"{vmss_to_reimage}_{instance_id}")
+                        instance_ids.remove(instance_id)
+
+                    with reimage_lock:
+                        for instance_id in instance_ids:
+                            reimage_vm_list.append({"vmss": vmss_to_reimage, "id": instance_id, "time_added": time.time()})
+                            vms_currently_being_reimaged.remove(f"{vmss_to_reimage}_{instance_id}")
+                        continue
+
+                reimaged = True
+                # We wait because we want the machine to be fresh before another task is assigned to it
+                while not async_reimage_some_machines.done():
+                    if (timeit.default_timer() - start_time) > AZURE_TIMEOUT:
+                        reimaged = False
+
+                        log.warning(
+                            "Reimaging machines %s in %s took too long, deleting them from the DB and the VMSS.", str(instance_ids), str(vmss_to_reimage)
+                        )
+                        # That sucks, now we have mark each one for deletion
+                        for instance_id in instance_ids:
+                            vms_timed_out_being_reimaged.append(f"{vmss_to_reimage}_{instance_id}")
+                        break
+                    time.sleep(2)
+
+                # Clean up
+                for vm in vms_to_reimage_from_same_vmss:
+                    vm_id = f"{vm['vmss']}_{vm['id']}"
+                    if vm_id in vms_currently_being_reimaged:
+                        vms_currently_being_reimaged.remove(vm_id)
+                with current_operations_lock:
+                    current_vmss_operations -= 1
+                timediff = timeit.default_timer() - start_time
+                log.debug(
+                    "%successfully reimaging instances %s in %s took %ds", {'S' if reimaged else 'Uns'}, str(instance_ids), str(vmss_to_reimage), round(timediff)
+                )
+            except Exception as e:
+                log.error("Exception occurred in the reimage thread: %s. Trying again...", str(e))
+
+    def _thr_delete_list_reader(self):
+        global current_vmss_operations
+
+        while True:
+            try:
+                time.sleep(5)
+
+                with current_operations_lock:
+                    if current_vmss_operations >= MAX_CONCURRENT_VMSS_OPERATIONS:
+                        continue
+
+                with delete_lock:
+                    if not delete_vm_list:
+                        continue
+
+                    # Biggest batch only
+                    vmss_vm_delete_counts = {vmss_name: 0 for vmss_name in self.required_vmsss.keys()}
+                    for vm in delete_vm_list:
+                        vmss_vm_delete_counts[vm["vmss"]] += 1
+                    max = 0
+                    for vmss_name, count in vmss_vm_delete_counts.items():
+                        if count > max:
+                            max = count
+                            vmss_to_delete_from = vmss_name
+                    vms_to_delete_from_same_vmss = [vm for vm in delete_vm_list if vm["vmss"] == vmss_to_delete_from]
+
+                    for vm in vms_to_delete_from_same_vmss:
+                        delete_vm_list.remove(vm)
+
+                instance_ids = list(set([vm["id"] for vm in vms_to_delete_from_same_vmss]))
+                try:
+                    if Azure._wait_for_concurrent_operations_to_complete():
+                        start_time = timeit.default_timer()
+                        async_delete_some_machines = Azure._azure_api_call(
+                            self.options.az.sandbox_resource_group,
+                            vmss_to_delete_from,
+                            models.VirtualMachineScaleSetVMInstanceIDs(instance_ids=instance_ids),
+                            force_deletion=True,
+                            polling_interval=1,
+                            operation=self.compute_client.virtual_machine_scale_sets.begin_delete_instances,
+                        )
+                except Exception as exc:
+                    log.exception(repr(exc))
+                    with current_operations_lock:
+                        current_vmss_operations -= 1
+                    with vms_currently_being_deleted_lock:
+                        for instance_id in instance_ids:
+                            vms_currently_being_deleted.remove(f"{vmss_to_delete_from}_{instance_id}")
+                    continue
+
+                # We wait because we want the machine to be fresh before another task is assigned to it
+                while not async_delete_some_machines.done():
+                    deleted = True
+                    if (timeit.default_timer() - start_time) > AZURE_TIMEOUT:
+                        log.warning("Deleting machines %s in %s took too long.", str(instance_ids), str(vmss_to_delete_from))
+                        deleted = False
+                        break
+                    time.sleep(2)
+
+                if self.initializing and deleted:
+                    # All machines should have been removed from the db and the VMSS at this point.
+                    # To force the VMSS to scale to initial_pool_size, set the size to zero here.
+                    log.debug("Setting size to 0 for VMSS %s after successful deletion", vmss_to_delete_from)
+                    machine_pools[vmss_to_delete_from]["size"] = 0
+
+                with vms_currently_being_deleted_lock:
+                    for instance_id in instance_ids:
+                        vms_currently_being_deleted.remove(f"{vmss_to_delete_from}_{instance_id}")
+
+                with current_operations_lock:
+                    current_vmss_operations -= 1
+                log.debug(
+                    "%successfully deleting instances %s in {vmss_to_delete_from} took %ss", 'S' if deleted else 'Uns', str(instance_ids), str(round(timeit.default_timer() - start_time))
+                )
+            except Exception as e:
+                log.error("Exception occurred in the delete thread: %s. Trying again...", str(e))
diff --git a/modules/machinery/esx.py b/modules/machinery/esx.py
index 42e597d3cdb..4e348b5c5fb 100644
--- a/modules/machinery/esx.py
+++ b/modules/machinery/esx.py
@@ -3,17 +3,17 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 import libvirt
 
 from lib.cuckoo.common.abstracts import LibVirtMachinery
-from lib.cuckoo.common.exceptions import CuckooCriticalError
-from lib.cuckoo.common.exceptions import CuckooMachineError
+from lib.cuckoo.common.exceptions import CuckooCriticalError, CuckooMachineError
 
 
 class ESX(LibVirtMachinery):
     """Virtualization layer for ESXi/ESX based on python-libvirt."""
 
+    module_name = "esx"
+
     def _initialize_check(self):
         """Runs all checks when a machine manager is initialized.
         @raise CuckooMachineError: if configuration is invalid
@@ -44,7 +44,7 @@ def _connect(self, label=None):
         """
         return the already-connected single connection handle if set, otherwise set it.
         """
-        if self.global_conn == None:
+        if self.global_conn is None:
             self.global_conn = self._global_connect()
         return self.global_conn
 
@@ -56,7 +56,7 @@ def _global_connect(self):
             self.auth = [[libvirt.VIR_CRED_AUTHNAME, libvirt.VIR_CRED_NOECHOPROMPT], self._auth_callback, None]
             return libvirt.openAuth(self.dsn, self.auth, 0)
         except libvirt.libvirtError as libvex:
-            raise CuckooCriticalError("libvirt returned an exception on connection: %s" % libvex)
+            raise CuckooCriticalError(f"libvirt returned an exception on connection: {libvex}")
 
     def _disconnect(self, conn):
         """
diff --git a/modules/machinery/gcp.py b/modules/machinery/gcp.py
new file mode 100644
index 00000000000..05d8127dc33
--- /dev/null
+++ b/modules/machinery/gcp.py
@@ -0,0 +1,149 @@
+import logging
+
+from lib.cuckoo.common.config import Config
+from typing import List
+
+cfg = Config()
+HAVE_GCP = False
+if cfg.cuckoo.machinery == "gcp":
+    try:
+        from google.cloud import compute_v1
+        from google.oauth2 import service_account
+        from google.auth import compute_engine
+
+        HAVE_GCP = True
+    except ImportError:
+        pass
+
+from lib.cuckoo.common.abstracts import Machinery
+from lib.cuckoo.common.exceptions import CuckooMachineError, CuckooDependencyError
+
+log = logging.getLogger(__name__)
+
+
+class GCP(Machinery):
+
+    module_name = "gcp"
+
+    # VM states
+    RUNNING = "RUNNING"
+    PAUSED = "SUSPENDED"
+    POWEROFF = "TERMINATED"
+    PENDING = "PENDING"
+    ABORTED = "ABORTED"
+    ERROR = "ERROR"
+
+    def _initialize_check(self):
+        """Runs all checks when a machine manager is initialized.
+        @raise CuckooDependencyError: if google-cloud-compute is not installed
+        @raise CuckooMachineError: if configuration is invalid
+        """
+        if not HAVE_GCP:
+            raise CuckooDependencyError("Missed google-cloud-compute dependencies: poetry add google-cloud-compute")
+
+        # Read Configuration
+        self.project = self.options.gcp.project
+        self.zone = self.options.gcp.zone
+        self.json_key_path = getattr(self.options.gcp, "service_account_path", None)
+        self.running_in_gcp = getattr(self.options.gcp, "running_in_gcp", False)
+
+        log.info("Connecting to GCP Project: %s, Zone: %s", self.project, self.zone)
+
+        # Initialize Clients
+        if self.json_key_path:
+            creds = service_account.Credentials.from_service_account_file(self.json_key_path)
+            self.instances_client = compute_v1.InstancesClient(credentials=creds)
+        elif self.running_in_gcp:
+            log.info("Using Compute Engine credentials")
+            creds = compute_engine.Credentials()
+            self.instances_client = compute_v1.InstancesClient(credentials=creds)
+        else:
+            log.info("No Service Account JSON provided; using Application Default Credentials")
+            self.instances_client = compute_v1.InstancesClient()
+
+        super()._initialize_check()
+
+    def _list(self) -> List[str]:
+        """Lists virtual machines configured.
+        """
+        try:
+            request = compute_v1.ListInstancesRequest(
+                    project=self.project,
+                    zone=self.zone,
+                    )
+            instances = self.instances_client.list(request=request)
+            return [instance.name for instance in instances]
+        except Exception as e:
+            raise CuckooMachineError(f"Failed to list instances in project '{self.project}' and zone '{self.zone}': {e}") from e
+
+    def _status(self, label) -> str:
+        """
+        Get current status of a VM
+        @param label: virtual machine label
+        @return: status string
+        """
+        try:
+            request = compute_v1.GetInstanceRequest(
+                    project=self.project,
+                    zone=self.zone,
+                    instance=label
+            )
+            instance = self.instances_client.get(request=request)
+        except Exception as e:
+            raise CuckooMachineError(f"Error getting status for machine '{label}': {e}") from e
+
+        # Reference: https://docs.cloud.google.com/compute/docs/instances/instance-lifecycle
+        if instance.status in {"PENDING", "PROVISIONING", "STAGING", "REPAIRING"}:
+            return self.PENDING
+        elif instance.status == "RUNNING":
+            return self.RUNNING
+        elif instance.status in {"SUSPENDED", "SUSPENDING"}:
+            return self.PAUSED
+        elif instance.status == "TERMINATED":
+            return self.POWEROFF
+        elif instance.status in {"STOPPING", "PENDING_STOP"}:
+            return self.ABORTED
+        else:
+            return self.ERROR
+
+    def start(self, label):
+        """
+        Start a virtual machine.
+        @param label: virtual machine label.
+        @raise CuckooMachineError: if unable to start.
+        """
+        log.debug("Starting VM %s", label)
+        try:
+            if self._status(label) in (self.RUNNING, self.PENDING):
+                log.warning("Trying to start a machine that is already running or pending: %s", label)
+                return
+
+            request = compute_v1.StartInstanceRequest(
+                    project=self.project,
+                    zone=self.zone,
+                    instance=label
+            )
+            self.instances_client.start(request=request)
+        except Exception as e:
+            raise CuckooMachineError(f"Unable to start machine '{label}': {e}") from e
+
+    def stop(self, label):
+        """
+        Stop a virtual machine.
+        @param label: virtual machine label.
+        @raise CuckooMachineError: if unable to stop.
+        """
+        log.debug("Stopping VM %s", label)
+        try:
+            if self._status(label) == self.POWEROFF:
+                log.warning("Trying to stop a machine that is already stopped: %s", label)
+                return
+
+            request = compute_v1.StopInstanceRequest(
+                    project=self.project,
+                    zone=self.zone,
+                    instance=label
+            )
+            self.instances_client.stop(request=request)
+        except Exception as e:
+            raise CuckooMachineError(f"Unable to stop machine '{label}': {e}") from e
diff --git a/modules/machinery/kvm.py b/modules/machinery/kvm.py
index cc2b6a140d8..d3b3637c807 100644
--- a/modules/machinery/kvm.py
+++ b/modules/machinery/kvm.py
@@ -2,23 +2,31 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 import xml.etree.ElementTree as ET
 
 from lib.cuckoo.common.abstracts import LibVirtMachinery
+from lib.cuckoo.common.exceptions import CuckooMachineError
 
 
 class KVM(LibVirtMachinery):
     """Virtualization layer for KVM based on python-libvirt."""
 
-    # Set KVM connection string.
-    dsn = "qemu:///system"
+    module_name = "kvm"
+
+    def _initialize_check(self):
+        """Runs all checks when a machine manager is initialized.
+        @raise CuckooMachineError: if configuration is invalid
+        """
+        if not self.options.kvm.dsn:
+            raise CuckooMachineError("KVM DSN is missing, please add it to the config file")
+        self.dsn = self.options.kvm.dsn
+        super(KVM, self)._initialize_check()
 
     def _get_interface(self, label):
         xml = ET.fromstring(self._lookup(label).XMLDesc())
         elem = xml.find("./devices/interface[@type='network']")
         if elem is None:
-            return elem
+            return None
         elem = elem.find("target")
         if elem is None:
             return None
@@ -29,11 +37,16 @@ def start(self, label):
         super(KVM, self).start(label)
         machine = self.db.view_machine_by_label(label)
         if machine:
-            if hasattr(machine, "interface"):
-                iface = machine.interface
-            else:
-                iface = self._get_interface(label)
+            iface = getattr(machine, "interface", self._get_interface(label))
             if iface:
                 self.db.set_machine_interface(label, iface)
             else:
-                print("Can't get iface for {}".format(label))
+                print(f"Can't get iface for {label}")
+
+    def store_vnc_port(self, label: str, task_id: int):
+        xml = ET.fromstring(self._lookup(label).XMLDesc())
+        port = int(xml.find("./devices/graphics").get("port", -1))
+        if port and port != -1:
+            self.db.set_vnc_port(task_id, port)
+        else:
+            print(f"Can't get iface for {label}")
diff --git a/modules/machinery/multi.py b/modules/machinery/multi.py
index 14a25f9e446..7d243a8c474 100644
--- a/modules/machinery/multi.py
+++ b/modules/machinery/multi.py
@@ -8,7 +8,6 @@
 Pseudo-machinery for using multiple machinery.
 """
 
-from __future__ import absolute_import
 import inspect
 import types
 
@@ -21,26 +20,27 @@ def import_plugin(name):
     try:
         module = __import__(name, globals(), locals(), ["dummy"], 0)
     except ImportError as e:
-        raise CuckooCriticalError("Unable to import plugin " '"{0}": {1}'.format(name, e))
+        raise CuckooCriticalError(f'Unable to import plugin "{name}": {e}')
 
     for name, value in inspect.getmembers(module):
-        if inspect.isclass(value):
-            if issubclass(value, Machinery) and value is not Machinery and value is not LibVirtMachinery:
-                return value
+        if inspect.isclass(value) and issubclass(value, Machinery) and value is not Machinery and value is not LibVirtMachinery:
+            return value
 
 
 class MultiMachinery(Machinery):
+    module_name = "multi"
+
     LABEL = "mm_label"
 
-    _machineries = dict()
-    _machines = dict()
-    _machine_labels = dict()
+    _machineries = {}
+    _machines = {}
+    _machine_labels = {}
 
     def set_options(self, options):
         if getattr(self, "options", None) is None:
             # First time being called, gather the configs of our sub-machineries
             for machinery_name in options.get("multi").get("machinery").split(","):
-                machinery = {"config": Config(machinery_name), "module": import_plugin("modules.machinery." + machinery_name)()}
+                machinery = {"config": Config(machinery_name), "module": import_plugin(f"modules.machinery.{machinery_name}")()}
                 machinery_label = machinery["module"].LABEL
                 machinery["module"].set_options(machinery["config"])
                 machinery_machines = machinery["config"].get(machinery_name)["machines"]
@@ -48,7 +48,7 @@ def set_options(self, options):
                 orig_list_machines = machinery["module"].machines
 
                 def list_machines(s):
-                    machines = list()
+                    machines = []
                     for machine in orig_list_machines():
                         machine_name = self._machine_labels[machine.label]
                         machinery_name = self._machines[machine_name]["machinery"]
@@ -58,12 +58,11 @@ def list_machines(s):
 
                 machinery["module"].machines = types.MethodType(list_machines, machinery["module"])
 
-                for machine_name in [machine.strip() for machine in machinery_machines.split(",")]:
+                for machine_name in [machine.strip() for machine in machinery_machines]:
                     machine = machinery["config"].get(machine_name)
                     machine["machinery"] = machinery_name
 
-                    if "interface" not in machine:
-                        machine["interface"] = machinery["config"].get(machinery_name)["interface"]
+                    machine.setdefault("interface", machinery["config"].get(machinery_name)["interface"])
 
                     machine_label = machine[machinery_label]
                     machine["mm_label"] = machine_label
@@ -73,7 +72,7 @@ def list_machines(s):
                     setattr(options, machine_name, machine)
 
                 self._machineries[machinery_name] = machinery
-            setattr(options, "sections", dict())
+            setattr(options, "sections", {})
             for mk, mv in self._machines.items():
                 options.sections[mk] = mv
             options.multi["machines"] = list(self._machines.keys())
@@ -85,19 +84,19 @@ def _initialize_check(self):
 
     def start(self, label):
         machine_name = self._machine_labels.get(label)
-        machine = self._machines.get(machine_name, None)
+        machine = self._machines.get(machine_name)
         machinery = self._machineries.get(machine["machinery"])
         machinery["module"].start(label)
 
     def stop(self, label=None):
         if label:
             machine_name = self._machine_labels.get(label)
-            machine = self._machines.get(machine_name, None)
+            machine = self._machines.get(machine_name)
             machinery = self._machineries.get(machine["machinery"])
             machinery["module"].stop(label)
 
     def _status(self, label):
         machine_name = self._machine_labels.get(label)
-        machine = self._machines.get(machine_name, None)
+        machine = self._machines.get(machine_name)
         machinery = self._machineries.get(machine["machinery"])
         return machinery["module"]._status(label)
diff --git a/modules/machinery/physical.py b/modules/machinery/physical.py
index fdb3042cc10..495fe906b8e 100644
--- a/modules/machinery/physical.py
+++ b/modules/machinery/physical.py
@@ -3,24 +3,32 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-import sys
-import struct
+import json
 import logging
-import requests
 import socket
-import json
+import struct
+import sys
 from time import sleep
 
+import requests
+
 from lib.cuckoo.common.abstracts import Machinery
+from lib.cuckoo.common.config import Config
 from lib.cuckoo.common.constants import CUCKOO_GUEST_PORT
-from lib.cuckoo.common.exceptions import CuckooCriticalError
-from lib.cuckoo.common.exceptions import CuckooMachineError
+from lib.cuckoo.common.exceptions import CuckooCriticalError, CuckooMachineError
 
 log = logging.getLogger(__name__)
+managerType = Config("physical").physical.type
+
+if managerType == "proxmox":
+    from lib.cuckoo.common.hypervisor_config import proxmox_shutdown_vm
+
 
 class Physical(Machinery):
     """Manage physical sandboxes."""
 
+    module_name = "physical"
+
     # Physical machine states.
     RUNNING = "running"
     STOPPED = "stopped"
@@ -28,7 +36,6 @@ class Physical(Machinery):
 
     headers = {}
 
-
     def _initialize_check(self):
         """Ensure that credentials have been entered into the config file.
         @raise CuckooCriticalError: if no credentials were provided or if
@@ -37,9 +44,9 @@ def _initialize_check(self):
         # TODO This should be moved to a per-machine thing.
         global headers
         headers = {
-        "fog-api-token": self.options.fog.apikey,
-        "fog-user-token": self.options.fog.user_apikey,
-        "Content-Type": "application/json"
+            "fog-api-token": self.options.fog.apikey,
+            "fog-user-token": self.options.fog.user_apikey,
+            "Content-Type": "application/json",
         }
 
         self.fog_init()
@@ -52,8 +59,8 @@ def _initialize_check(self):
             elif status == self.ERROR:
                 raise CuckooMachineError(
                     "Unknown error occurred trying to obtain the status of "
-                    "physical machine %s. Please turn it on and check the "
-                    "Cuckoo Agent." % machine.label
+                    f"physical machine {machine.label}. Please turn it on "
+                    " and check the Cuckoo Agent"
                 )
 
     def _get_machine(self, label):
@@ -66,7 +73,7 @@ def _get_machine(self, label):
             if label == m.label:
                 return m
 
-        raise CuckooMachineError("No machine with label: %s." % label)
+        raise CuckooMachineError(f"No machine with label: {label}")
 
     def isTaskigDone(self, hostID):
         """This function checks if there are any running tasks for host ID in fog
@@ -74,18 +81,12 @@ def isTaskigDone(self, hostID):
         @return: Returns true if there is an active task and false if there are none
         """
         try:
-            searchURL = "http://" + self.options.fog.hostname + "/fog/task/active"
+            searchURL = f"http://{self.options.fog.hostname}/fog/task/active"
             r = requests.get(searchURL, headers=headers)
-            tasks = r.json()['tasks']
-            flag = True
-            for task in tasks:
-                if (task['host']['id']) == hostID:
-                    flag = False
-            return flag
-        except:
-            raise CuckooMachineError("Error while checking for fog task state for hostID " + str(hostID) + ": " + sys.exc_info()[0])
-
-
+            tasks = r.json()["tasks"]
+            return all(task["host"]["id"] != hostID for task in tasks)
+        except Exception:
+            raise CuckooMachineError(f"Error while checking for fog task state for hostID {hostID}: {sys.exc_info()[0]}")
 
     def start(self, label):
         """Start a physical machine.
@@ -94,18 +95,16 @@ def start(self, label):
         @raise CuckooMachineError: if unable to start.
         """
         # Check to ensure a given machine is running
-        log.debug("Checking if machine %r is running.", label)
+        log.debug("Checking if machine %s is running", label)
         status = self._status(label)
         if status == self.RUNNING:
-            log.debug("Machine already running: %s.", label)
+            log.debug("Machine already running: %s", label)
         elif status == self.STOPPED:
             self._wait_status(label, self.RUNNING)
         else:
-            raise CuckooMachineError("Error occurred while starting: "
-                                     "%s (STATUS=%s)" % (label, status))
+            raise CuckooMachineError(f"Error occurred while starting: {label} (STATUS={status})")
 
     def stop(self, label):
-
         """Stop a physical machine.
         @param label: physical machine name.
         @raise CuckooMachineError: if unable to stop.
@@ -114,61 +113,64 @@ def stop(self, label):
         hostID = 0
 
         if self._status(label) == self.RUNNING:
-            log.debug("Rebooting machine: %s.", label)
+            log.debug("Rebooting machine: %s", label)
             machine = self._get_machine(label)
 
-            r_hosts = requests.get("http://" + self.options.fog.hostname + "/fog/host", headers=headers)
-            hosts = r_hosts.json()['hosts']
+            r_hosts = requests.get(f"http://{self.options.fog.hostname}/fog/host", headers=headers)
+            hosts = r_hosts.json()["hosts"]
 
             for host in hosts:
-                if machine.name == host['name']:
-                    print(host['id'] + ": " + host['name'])
-                    hostID = host['id']
-                    r_types = requests.get("http://" + self.options.fog.hostname + "/fog/tasktype", headers=headers)
+                if machine.name == host["name"]:
+                    print(f"{host['id']}: {host['name']}")
+                    hostID = host["id"]
+                    r_types = requests.get(f"http://{self.options.fog.hostname}/fog/tasktype", headers=headers)
                     types = r_types.json()
 
-                    for t in types['tasktypes']:
-                        if t['name'] == "Deploy":
-                            taskID_Deploy = t['id']
+                    for t in types["tasktypes"]:
+                        if t["name"] == "Deploy":
+                            taskID_Deploy = t["id"]
 
                     # Deploy Task to reset physical machine to former state
-                    payload = json.dumps({
-                                 "taskTypeID": taskID_Deploy,
-                                 "shutdown": '',
-                                 "wol": 'true'}).encode('utf8')
-
-                    r_deploy = requests.post("http://" + self.options.fog.hostname + "/fog/host/" + hostID + "/task", headers=headers, data=payload)
+                    payload = json.dumps({"taskTypeID": taskID_Deploy, "shutdown": "", "wol": "true"}).encode()
+
+                    requests.post(f"http://{self.options.fog.hostname}/fog/host/{hostID}/task", headers=headers, data=payload)
+
+                    try:
+                        if managerType == "pure":
+                            requests.post(
+                                f"http://{machine.ip}:{CUCKOO_GUEST_PORT}/execute",
+                                data={"command": "shutdown -r -f -t 0"},
+                            )
+                        elif managerType == "proxmox":
+                            proxmox_shutdown_vm(machine.name)
+                    except Exception:
+                        # The reboot will start immediately which may kill our socket so we just ignore this exception
+                        log.debug("Socket killed from analysis machine due to reboot")
 
         # We are waiting until we are able to connect to the agent again since we dont know how long it will take to restore the machine
         while not self.isTaskigDone(hostID):
-            log.debug("Restore operation for " + machine.name + " still running.")
+            log.debug("Restore operation for %s still running", machine.name)
             sleep(10)
 
         # After the restore operation is done we are waiting until it is up again and we can connect to the agent
-        url = "http://{0}:{1}".format(machine.ip, CUCKOO_GUEST_PORT)
+        url = f"http://{machine.ip}:{CUCKOO_GUEST_PORT}"
 
         connection_succesful = False
 
         while not connection_succesful:
             try:
-                r = requests.get(url + "/status")
+                r = requests.get(f"{url}/status")
                 print(r.text)
                 connection_succesful = True
-            except:
+            except Exception:
                 log.debug("Machine not reachable yet after reset")
                 sleep(3)
 
-
     def _list(self):
         """List physical machines installed.
         @return: physical machine names list.
         """
-        active_machines = []
-        for machine in self.machines():
-            if self._status(machine.label) == self.RUNNING:
-                active_machines.append(machine.label)
-
-        return active_machines
+        return [machine.label for machine in self.machines() if self._status(machine.label) == self.RUNNING]
 
     def _status(self, label):
         """Get current status of a physical machine.
@@ -178,24 +180,22 @@ def _status(self, label):
         # For physical machines, the agent can either be contacted or not.
         # However, there is some information to be garnered from potential
         # exceptions.
-        log.debug("Getting status for machine: %s.", label)
+        log.debug("Getting status for machine: %s", label)
         machine = self._get_machine(label)
 
         # The status is only used to determine whether the Guest is running
         # or whether it is in a stopped status, therefore the timeout can most
         # likely be fairly arbitrary. TODO This is a temporary fix as it is
         # not compatible with the new Cuckoo Agent, but it will have to do.
-        url = "http://{0}:{1}".format(machine.ip, CUCKOO_GUEST_PORT)
+        url = f"http://{machine.ip}:{CUCKOO_GUEST_PORT}"
 
         try:
-            r = requests.get(url + "/status")
+            r = requests.get(f"{url}/status")
             print(r.text)
             return self.RUNNING
-        except:
+        except Exception:
             return self.STOPPED
 
-        return self.ERROR
-
     def fog_init(self):
         """Initiate by indexing FOG regarding all available machines."""
         self.fog_machines = {}
@@ -205,25 +205,24 @@ def fog_init(self):
         # TODO Handle exceptions such as not being able to connect.
 
         # Parse the HTML.
-        r = requests.get("http://" + self.options.fog.hostname + "/fog/status", headers=headers, verify=False)
+        r = requests.get(f"http://{self.options.fog.hostname}/fog/status", headers=headers, verify=False)
 
         if r.status_code != 200:
-            raise CuckooCriticalError("The FOG server answered with the status code " + str(r.status_code))
+            raise CuckooCriticalError(f"The FOG server answered with the status code {r.status_code}")
 
-        r_hosts = requests.get("http://" + self.options.fog.hostname + "/fog/host", headers=headers, verify=False)
-        hosts = r_hosts.json()['hosts']
+        r_hosts = requests.get(f"http://{self.options.fog.hostname}/fog/host", headers=headers, verify=False)
+        hosts = r_hosts.json()["hosts"]
         hostnames = []
         for host in hosts:
-            hostnames.append(host['name'])
-            print("Host " + host['name'] + " has MAC " + host['macs'][0])
+            hostnames.append(host["name"])
+            print(f"Host {host['name']} has MAC {host['macs'][0]}")
 
             # Check whether all our machines are available on FOG.
         for machine in self.machines():
             if machine.label not in hostnames:
                 raise CuckooMachineError(
-                    "The physical machine %s has not been defined in FOG, "
-                    "please investigate and configure the configuration "
-                    "correctly." % machine.label
+                    f"The physical machine {machine.label} has not been defined in FOG, "
+                    "please investigate and configure the configuration correctly"
                 )
 
     def fog_queue_task(self, hostname):
@@ -236,29 +235,28 @@ def wake_on_lan(self, label):
         """Start a machine that's currently shutdown."""
         machine = self._get_machine(label)
 
-        r_hosts = requests.get("http://" + self.options.fog.hostname + "/fog/host", headers=headers, verify=False)
-        hosts = r_hosts.json()['hosts']
+        r_hosts = requests.get(f"http://{self.options.fog.hostname}/fog/host", headers=headers, verify=False)
+        hosts = r_hosts.json()["hosts"]
         for host in hosts:
-            if label == host['name']:
-                macaddr = host['macs'][0]
+            if label == host["name"]:
+                macaddr = host["macs"][0]
 
         ip = machine.ip
-        parts = ip.split('.')
-        broadcastip = parts[0] + '.' + parts[1] + '.' + parts[2] + '.255'
+        parts = ip.split(".")
+        broadcastip = f"{'.'.join(parts[:3])}.255"
 
         if len(macaddr) == 0:
-            log.debug('No Machine with hostname %s found.' % label)
+            log.debug("No Machine with hostname %s found", label)
             return
 
         packet = self.create_magic_packet(macaddr)
-        if packet is False:
-            log.debug('Sending Wake on Lan message has failed.')
+        if not packet:
+            log.debug("Sending Wake on Lan message has failed")
 
         sock = socket.socket(socket.AF_INET, socket.SOCK_DGRAM)
         sock.setsockopt(socket.SOL_SOCKET, socket.SO_REUSEADDR, 1)
         sock.setsockopt(socket.SOL_SOCKET, socket.SO_BROADCAST, 1)
-        log.debug('Sending Wake on Lan message for %s (%s) to Broadcast IP %s.'
-                  % (label, macaddr, broadcastip))
+        log.debug("Sending Wake on Lan message for %s (%s) to Broadcast IP %s", label, macaddr, broadcastip)
         sock.sendto(packet, (broadcastip, 54545))
         sock.close()
 
@@ -267,16 +265,16 @@ def create_magic_packet(self, macaddress):
             pass
         elif len(macaddress) == 17:
             sep = macaddress[2]
-            macaddress = macaddress.replace(sep, '')
+            macaddress = macaddress.replace(sep, "")
         else:
-            log.debug('Incorrect MAC address format: %s' % macaddress)
+            log.debug("Incorrect MAC address format: %s", macaddress)
             return False
 
         # Pad the synchronization stream
-        data = b'FFFFFFFFFFFF' + (macaddress * 16).encode()
-        send_data = b''
+        data = b"FFFFFFFFFFFF" + (macaddress * 16).encode()
+        send_data = b""
 
         # Split up the hex values in pack
         for i in range(0, len(data), 2):
-            send_data += struct.pack(b'B', int(data[i: i + 2], 16))
+            send_data += struct.pack(b"B", int(data[i : i + 2], 16))
         return send_data
diff --git a/modules/machinery/proxmox.py b/modules/machinery/proxmox.py
index 51790a5a676..b4387d2a86a 100644
--- a/modules/machinery/proxmox.py
+++ b/modules/machinery/proxmox.py
@@ -2,21 +2,18 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-
 import logging
-import time
 import sys
+import time
+
+from lib.cuckoo.common.abstracts import Machinery
+from lib.cuckoo.common.config import Config
+from lib.cuckoo.common.exceptions import CuckooCriticalError, CuckooMachineError
 
 try:
     from proxmoxer import ProxmoxAPI, ResourceException
 except ImportError:
-    sys.exit("Missed dependency: pip3 install proxmoxer -U")
-
-from lib.cuckoo.common.abstracts import Machinery
-from lib.cuckoo.common.config import Config
-from lib.cuckoo.common.exceptions import CuckooCriticalError
-from lib.cuckoo.common.exceptions import CuckooMachineError
+    sys.exit("Install by yourself. Missed dependency: pip3 install proxmoxer -U")
 
 # silence overly verbose INFO level logging default of proxmoxer module
 logging.getLogger("proxmoxer").setLevel(logging.WARNING)
@@ -28,8 +25,10 @@
 class Proxmox(Machinery):
     """Manage Proxmox sandboxes."""
 
+    module_name = "proxmox"
+
     def __init__(self):
-        super(Proxmox, self).__init__()
+        super().__init__()
         self.timeout = int(cfg.timeouts.vm_state)
 
     def _initialize_check(self):
@@ -37,7 +36,9 @@ def _initialize_check(self):
         @raise CuckooCriticalError: if no credentials were provided
         """
         if not self.options.proxmox.username or not self.options.proxmox.password:
-            raise CuckooCriticalError("Proxmox credentials are missing, please add them to " "the Proxmox machinery configuration file.")
+            raise CuckooCriticalError(
+                "Proxmox credentials are missing, please add them to the Proxmox machinery configuration file"
+            )
         if not self.options.proxmox.hostname:
             raise CuckooCriticalError("Proxmox hostname not set")
 
@@ -51,21 +52,21 @@ def find_vm(self, label):
                       Proxmox.
         @raise CuckooMachineError: if the VM cannot be found."""
         proxmox = ProxmoxAPI(
-            self.options.proxmox.hostname, user=self.options.proxmox.username, password=self.options.proxmox.password, verify_ssl=False
+            self.options.proxmox.hostname,
+            user=self.options.proxmox.username,
+            password=self.options.proxmox.password,
+            verify_ssl=False,
         )
 
-        # /cluster/resources[type=vm] will give us all VMs no matter which node
-        # they reside on
+        # /cluster/resources[type=vm] will give us all VMs no matter which node they reside on
         try:
             vms = proxmox.cluster.resources.get(type="vm")
         except ResourceException as e:
-            raise CuckooMachineError("Error enumerating VMs: %s" % e)
+            raise CuckooMachineError(f"Error enumerating VMs: {e}")
 
         for vm in vms:
             if vm["name"] == label:
-                # dynamically address
-                # /nodes/<node>/{qemu,lxc,openvz,...}/<vmid> to get handle on
-                # VM
+                # dynamically address /nodes/<node>/{qemu,lxc,openvz,...}/<vmid> to get handle on VM
                 node = proxmox.nodes(vm["node"])
                 hv = node.__getattr__(vm["type"])
                 vm = hv.__getattr__(str(vm["vmid"]))
@@ -85,7 +86,7 @@ def wait_for_task(self, taskid, label, vm, node):
             try:
                 task = node.tasks(taskid).status.get()
             except ResourceException as e:
-                raise CuckooMachineError("Error getting status of task " "%s: %s" % (taskid, e))
+                raise CuckooMachineError(f"Error getting status of task {taskid}: {e}")
 
             # extract operation name from task status for display
             operation = task["type"]
@@ -105,12 +106,12 @@ def wait_for_task(self, taskid, label, vm, node):
             try:
                 status = vm.status.current.get()
             except ResourceException as e:
-                raise CuckooMachineError("Couldn't get status: %s" % e)
+                raise CuckooMachineError(f"Couldn't get status: {e}")
 
             if "lock" in status:
                 log.debug("%s: Task finished but VM still locked", label)
                 if status["lock"] != operation:
-                    log.warning("%s: Task finished but VM locked by different " "operation: %s", label, operation)
+                    log.warning("%s: Task finished but VM locked by different operation: %s", label, operation)
                 time.sleep(1)
                 elapsed += 1
                 continue
@@ -138,7 +139,7 @@ def find_snapshot(self, label, vm):
         try:
             snapshots = vm.snapshot.get()
         except ResourceException as e:
-            raise CuckooMachineError("Error enumerating snapshots: %s" % e)
+            raise CuckooMachineError(f"Error enumerating snapshots: {e}")
 
         snaptime = 0
         snapshot = None
@@ -153,7 +154,7 @@ def find_snapshot(self, label, vm):
 
         return snapshot
 
-    def rollback(self, label, vm, node):
+    def rollback(self, label, vm, node, retry=5, retry_index=0):
         """Roll back a VM's status to a statically configured or the most recent
         snapshot.
 
@@ -170,13 +171,22 @@ def rollback(self, label, vm, node):
             log.debug("%s: Reverting to snapshot %s", label, snapshot)
             taskid = vm.snapshot(snapshot).rollback.post()
         except ResourceException as e:
-            raise CuckooMachineError("Couldn't trigger rollback to " "snapshot %s: %s" % (snapshot, e))
+            raise CuckooMachineError(f"Couldn't trigger rollback to snapshot {snapshot}: {e}")
 
         task = self.wait_for_task(taskid, label, vm, node)
         if not task:
-            raise CuckooMachineError("Timeout expired while rolling back to " "snapshot %s" % snapshot)
+            raise CuckooMachineError(f"Timeout expired while rolling back to snapshot {snapshot}")
         if task["exitstatus"] != "OK":
-            raise CuckooMachineError("Rollback to snapshot %s failed: %s" % (snapshot, task["exitstatus"]))
+            if task["exitstatus"] == "timeout waiting on systemd":
+                if retry > retry_index:
+                    time.sleep(5)
+                    self.rollback(label, vm, node, retry, retry_index + 1)
+                else:
+                    raise CuckooMachineError(
+                        f"Rollback to snapshot {snapshot} failed: {task['exitstatus']} - Proxmox may be overwhelmed"
+                    )
+            else:
+                raise CuckooMachineError(f"Rollback to snapshot {snapshot} failed: {task['exitstatus']}")
 
     def start(self, label):
         """Roll back VM to known-pristine snapshot and optionally start it if
@@ -194,23 +204,23 @@ def start(self, label):
         try:
             status = vm.status.current.get()
         except ResourceException as e:
-            raise CuckooMachineError("Couldn't get status: %s" % e)
+            raise CuckooMachineError(f"Couldn't get status: {e}")
 
         if status["status"] == "running":
-            log.debug("%s: Already running after rollback, no need to start " "it", label)
+            log.debug("%s: Already running after rollback, no need to start it", label)
             return
 
         try:
             log.debug("%s: Starting VM", label)
             taskid = vm.status.start.post()
         except ResourceException as e:
-            raise CuckooMachineError("Couldn't trigger start: %s" % e)
+            raise CuckooMachineError(f"Couldn't trigger start: {e}")
 
         task = self.wait_for_task(taskid, label, vm, node)
         if not task:
             raise CuckooMachineError("Timeout expired while starting")
         if task["exitstatus"] != "OK":
-            raise CuckooMachineError("Start failed: %s" % task["exitstatus"])
+            raise CuckooMachineError(f"Start failed: {task['exitstatus']}")
 
     def stop(self, label):
         """Do a hard shutdown of the VM.
@@ -225,10 +235,10 @@ def stop(self, label):
             log.debug("%s: Stopping VM", label)
             taskid = vm.status.stop.post()
         except ResourceException as e:
-            raise CuckooMachineError("Couldn't trigger stop: %s" % e)
+            raise CuckooMachineError(f"Couldn't trigger stop: {e}")
 
         task = self.wait_for_task(taskid, label, vm, node)
         if not task:
             raise CuckooMachineError("Timeout expired while stopping")
         if task["exitstatus"] != "OK":
-            raise CuckooMachineError("Stop failed: %s" % task["exitstatus"])
+            raise CuckooMachineError(f"Stop failed: {task['exitstatus']}")
diff --git a/modules/machinery/qemu.py b/modules/machinery/qemu.py
index 4ec8d27bb69..f3250287b4f 100644
--- a/modules/machinery/qemu.py
+++ b/modules/machinery/qemu.py
@@ -1,20 +1,37 @@
 # Copyright (C) 2015-2017 Cuckoo Foundation.
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
-from __future__ import absolute_import
-import os
-import time
+
+# https://qemu.readthedocs.io/en/latest/
+
 import logging
-import subprocess
+import os
 import os.path
+import subprocess
+import time
+
+import magic
 
 from lib.cuckoo.common.abstracts import Machinery
 from lib.cuckoo.common.config import Config
-from lib.cuckoo.common.exceptions import CuckooCriticalError
-from lib.cuckoo.common.exceptions import CuckooMachineError
+from lib.cuckoo.common.exceptions import CuckooCriticalError, CuckooMachineError
+
+# from lib.cuckoo.core.rooter import rooter
+from lib.cuckoo.common.path_utils import path_delete, path_exists
 
 log = logging.getLogger(__name__)
 cfg = Config()
+qemu_cfg = Config("qemu")
+
+# os.listdir('/sys/class/net/')
+HAVE_NETWORKIFACES = False
+try:
+    import psutil
+
+    network_interfaces = list(psutil.net_if_addrs().keys())
+    HAVE_NETWORKIFACES = True
+except ImportError:
+    print("Missing dependency: pip3 install psutil")
 
 # this whole semi-hardcoded commandline thing is not the best
 #  but in the config files we can't do arrays etc so we'd have to parse the
@@ -33,176 +50,276 @@
     "mipsel": {
         "cmdline": [
             "qemu-system-mipsel",
-            "-display", "none",
-            "-M","malta",
-            "-m", "{memory}",
-            "-kernel", "{kernel}",
-            "-hda", "{snapshot_path}",
-            "-append", "root=/dev/sda1 console=tty0",
-            "-netdev", "tap,id=net_{vmname},ifname=tap_{vmname},script=no,downscript=no",
-            "-device", "e1000,netdev=net_{vmname},mac={mac}",  # virtio-net-pci doesn't work here
+            "-display",
+            "none",
+            "-M",
+            "malta",
+            "-m",
+            "{memory}",
+            "-kernel",
+            "{kernel}",
+            "-hda",
+            "{snapshot_path}",
+            "-append",
+            "root=/dev/sda1 console=tty0",
+            "-netdev",
+            "tap,id=net_{vmname},ifname=tap_{vmname},script=no,downscript=no",
+            "-device",
+            "e1000,netdev=net_{vmname},mac={mac}",  # virtio-net-pci doesn't work here
         ],
         "params": {
             "kernel": "{imagepath}/vmlinux-4.19.0-8-4kc-malta-mipsel",
-        }
+        },
     },
     "mips": {
         "cmdline": [
-            "qemu-system-mips", "-display", "none",
-            "-M", "malta", "-m", "{memory}",
-            "-kernel", "{kernel}",
-            "-hda", "{snapshot_path}",
-            "-append", "root=/dev/sda1 console=tty0",
-            "-netdev", "tap,id=net_{vmname},ifname=tap_{vmname},script=no,downscript=no",
-            "-device", "e1000,netdev=net_{vmname},mac={mac}",
+            "qemu-system-mips",
+            "-display",
+            "none",
+            "-M",
+            "malta",
+            "-m",
+            "{memory}",
+            "-kernel",
+            "{kernel}",
+            "-hda",
+            "{snapshot_path}",
+            "-append",
+            "root=/dev/sda1 console=ttyS0 nokaslr",
+            "-netdev",
+            "tap,id=net_{vmname},ifname=tap_{vmname},script=no,downscript=no",
+            "-device",
+            "e1000,netdev=net_{vmname},mac={mac}",
         ],
         "params": {
             "kernel": "{imagepath}/vmlinux-4.19.0-8-4kc-malta",
             "machine": "",
-        }
+        },
     },
     "armwrt": {
         "cmdline": [
-            "qemu-system-arm", "-display", "none",
-            "-M", "realview-eb-mpcore", "-m", "{memory}",
-            "-kernel", "{kernel}",
-            "-drive", "if=sd,cache=unsafe,file={snapshot_path}",
-            "-append", "console=ttyAMA0 root=/dev/mmcblk0 rootwait",
-            "-netdev", "tap,id=net_{vmname},ifname=tap_{vmname},script=no,downscript=no",
-            "-device", "e1000,netdev=net_{vmname},mac={mac}",
+            "qemu-system-arm",
+            "-display",
+            "none",
+            "-M",
+            "realview-eb-mpcore",
+            "-m",
+            "{memory}",
+            "-kernel",
+            "{kernel}",
+            "-drive",
+            "if=sd,cache=unsafe,file={snapshot_path}",
+            "-append",
+            "console=ttyAMA0 root=/dev/mmcblk0 rootwait",
+            "-netdev",
+            "tap,id=net_{vmname},ifname=tap_{vmname},script=no,downscript=no",
+            "-device",
+            "virtio-net-device,netdev=net_{vmname},mac={mac}",
         ],
         "params": {
             "kernel": "{imagepath}/openwrt-realview-vmlinux.elf",
-        }
+        },
     },
     "arm": {
         "cmdline": [
-            "qemu-system-arm", "-display", "none",
-            "-M", "virt", "-m", "{memory}",
-            "-kernel", "{kernel}", "-initrd", "{initrd}",
-            "-hda", "{snapshot_path}",
-            "-append", "root=/dev/vda2 rootfstype=ext4",
-            "-netdev", "tap,id=net_{vmname},ifname=tap_{vmname},script=no,downscript=no",
-            "-device", "e1000,netdev=net_{vmname},mac={mac}",
+            "qemu-system-arm",
+            "-display",
+            "none",
+            "-M",
+            "virt",
+            "-m",
+            "{memory}",
+            "-kernel",
+            "{kernel}",
+            "-initrd",
+            "{initrd}",
+            "-drive",
+            "if=none,file={snapshot_path},id=hd0",
+            "-device",
+            "virtio-blk-device,drive=hd0",
+            "-append",
+            "root=/dev/vda2",
+            "-netdev",
+            "tap,id=net_{vmname},ifname=tap_{vmname},script=no,downscript=no",
+            "-device",
+            "virtio-net-device,netdev=net_{vmname},mac={mac}",
         ],
         "params": {
             "memory": "{memory}",
             "kernel": "{imagepath}/vmlinuz-3.2.0-4-versatile-arm",
             "initrd": "{imagepath}/initrd-3.2.0-4-versatile-arm",
-        }
+        },
     },
     "arm64": {
         "cmdline": [
             "qemu-system-aarch64",
-            "-display", "none",
-            "-M", "virt", "-m", "{memory}",
-            "-kernel", "{kernel}", "-initrd", "{initrd}",
-            "-hda", "{snapshot_path}",
-            "-append", "root=/dev/sda1",
-            "-netdev", "tap,id=net_{vmname},ifname=tap_{vmname},script=no,downscript=no",
-            "-device", "e1000,netdev=net_{vmname},mac={mac}",
+            "-display",
+            "none",
+            "-M",
+            "virt",
+            "-m",
+            "{memory}",
+            "-kernel",
+            "{kernel}",
+            "-initrd",
+            "{initrd}",
+            "-drive",
+            "if=none,file={snapshot_path},id=hd0",
+            "-device",
+            "virtio-blk-device,drive=hd0",
+            "-append",
+            "root=/dev/sda1",
+            "-netdev",
+            "tap,id=net_{vmname},ifname=tap_{vmname},script=no,downscript=no",
+            "-device",
+            "virtio-net-device,netdev=net_{vmname},mac={mac}",
         ],
         "params": {
             "memory": "512M",  # 512 didn't work for some reason
             "kernel": "{imagepath}/vmlinuz-3.2.0-4-versatile-arm",
             "initrd": "{imagepath}/initrd-3.2.0-4-versatile-arm",
-        }
+        },
     },
     "x64": {
         "cmdline": [
             "qemu-system-x86_64",
-            "-display", "none",
-            "-m", "{memory}",
-            "-hda", "{snapshot_path}",
-            "-netdev", "tap,id=net_{vmname},ifname=tap_{vmname},script=no,downscript=no",
-            "-device", "e1000,netdev=net_{vmname},mac={mac}",
+            "-monitor",
+            "stdio",
+            "-display",
+            "none",
+            "-m",
+            "{memory}",
+            "-hda",
+            "{snapshot_path}",
+            "-netdev",
+            "tap,id=net_{vmname},ifname=tap_{vmname},script=no,downscript=no",
+            "-device",
+            "e1000,netdev=net_{vmname},mac={mac}",
         ],
         "params": {
             "memory": "1024M",
-        }
+        },
     },
     "x86": {
         "cmdline": [
             "qemu-system-i386",
-            "-display", "none",
-            "-m", "{memory}",
-            "-hda", "{snapshot_path}",
-            "-netdev", "tap,id=net_{vmname},ifname=tap_{vmname},script=no,downscript=no",
-            "-device", "e1000,netdev=net_{vmname},mac={mac}",
+            "-monitor",
+            "stdio",
+            "-display",
+            "none",
+            "-m",
+            "{memory}",
+            "-hda",
+            "{snapshot_path}",
+            "-netdev",
+            "tap,id=net_{vmname},ifname=tap_{vmname},script=no,downscript=no",
+            "-device",
+            "e1000,netdev=net_{vmname},mac={mac}",
         ],
         "params": {
             "memory": "1024M",
-        }
+        },
     },
     "powerpc": {
-         "cmdline": [
+        "cmdline": [
             "qemu-system-ppc",
-            "-display", "none",
-            "-m", "{memory}",
-            "-hda", "{snapshot_path}",
-            "-netdev", "tap,id=net_{vmname},ifname=tap_{vmname},script=no,downscript=no",
-            "-device", "e1000,netdev=net_{vmname},mac={mac}",
-         ],
-         "params": {
+            "-display",
+            "none",
+            "-m",
+            "{memory}",
+            "-hda",
+            "{snapshot_path}",
+            "-netdev",
+            "tap,id=net_{vmname},ifname=tap_{vmname},script=no,downscript=no",
+            "-device",
+            "e1000,netdev=net_{vmname},mac={mac}",
+        ],
+        "params": {
             "memory": "256M",
             "machine": "none",
-         }
+        },
     },
     "powerpc64": {
-         "cmdline": [
+        "cmdline": [
             "qemu-system-ppc64",
-            "-display", "none",
-            "-m", "{memory}",
-            "-hda", "{snapshot_path}",
-            "-netdev", "tap,id=net_{vmname},ifname=tap_{vmname},script=no,downscript=no",
-            "-device", "e1000,netdev=net_{vmname},mac={mac}",
-         ],
-         "params": {
-             "memory": "512M",
-         }
+            "-display",
+            "none",
+            "-m",
+            "{memory}",
+            "-hda",
+            "{snapshot_path}",
+            "-netdev",
+            "tap,id=net_{vmname},ifname=tap_{vmname},script=no,downscript=no",
+            "-device",
+            "e1000,netdev=net_{vmname},mac={mac}",
+        ],
+        "params": {
+            "memory": "512M",
+        },
     },
     "sh4": {
-         "cmdline": [
+        "cmdline": [
             "qemu-system-sh4",
-            "-display", "none",
-            "-M", "r2d", "-m", "{memory}",
-            "-kernel", "{kernel}", "-initrd", "{initrd}",
-            "-hda", "{snapshot_path}",
-            "-append", "root=/dev/sda1 noiotrap",
-            "-netdev", "tap,id=net_{vmname},ifname=tap_{vmname},script=no,downscript=no",
-            "-device", "e1000,netdev=net_{vmname},mac={mac}",  # virtio-net-pci doesn't work here
-         ],
+            "-display",
+            "none",
+            "-M",
+            "r2d",
+            "-m",
+            "{memory}",
+            "-kernel",
+            "{kernel}",
+            "-initrd",
+            "{initrd}",
+            "-hda",
+            "{snapshot_path}",
+            "-append",
+            "root=/dev/sda1 noiotrap",
+            "-netdev",
+            "tap,id=net_{vmname},ifname=tap_{vmname},script=no,downscript=no",
+            "-device",
+            "e1000,netdev=net_{vmname},mac={mac}",  # virtio-net-pci doesn't work here
+        ],
         "params": {
             "memory": "64M",
             "kernel": "{imagepath}/vmlinuz-2.6.32-5-sh7751r",
             "initrd": "{imagepath}/initrd.img-2.6.32-5-sh7751r",
-        }
+        },
     },
     "sparc": {
-         "cmdline": [
+        "cmdline": [
             "qemu-system-sparc",
-            "-display", "none",
-            "-m", "{memory}",
-            "-hda", "{snapshot_path}",
-            "-netdev", "tap,id=net_{vmname},ifname=tap_{vmname},script=no,downscript=no",
-            "-device", "e1000,netdev=net_{vmname},mac={mac}",  # virtio-net-pci doesn't work here
+            "-display",
+            "none",
+            "-m",
+            "{memory}",
+            "-hda",
+            "{snapshot_path}",
+            "-netdev",
+            "tap,id=net_{vmname},ifname=tap_{vmname},script=no,downscript=no",
+            "-device",
+            "e1000,netdev=net_{vmname},mac={mac}",  # virtio-net-pci doesn't work here
         ],
         "params": {
             "memory": "256M",
-        }
+        },
     },
     "sparc64": {
-         "cmdline": [
+        "cmdline": [
             "qemu-system-sparc64",
-            "-display", "none",
-            "-m", "{memory}",
-            "-hda", "{snapshot_path}",
-            "-netdev", "tap,id=net_{vmname},ifname=tap_{vmname},script=no,downscript=no",
-            "-device", "e1000,netdev=net_{vmname},mac={mac}",  # virtio-net-pci doesn't work here
+            "-display",
+            "none",
+            "-m",
+            "{memory}",
+            "-hda",
+            "{snapshot_path}",
+            "-netdev",
+            "tap,id=net_{vmname},ifname=tap_{vmname},script=no,downscript=no",
+            "-device",
+            "e1000,netdev=net_{vmname},mac={mac}",  # virtio-net-pci doesn't work here
         ],
         "params": {
             "memory": "256M",
-        }
+        },
     },
 }
 
@@ -210,13 +327,15 @@
 class QEMU(Machinery):
     """Virtualization layer for QEMU (non-KVM)."""
 
+    module_name = "qemu"
+
     # VM states.
     RUNNING = "running"
     STOPPED = "stopped"
     ERROR = "machete"
 
     def __init__(self):
-        super(QEMU, self).__init__()
+        super().__init__()
         self.state = {}
 
     def _initialize_check(self):
@@ -225,23 +344,49 @@ def _initialize_check(self):
         """
         # VirtualBox specific checks.
         if not self.options.qemu.path:
-            raise CuckooCriticalError("QEMU binary path missing, "
-                                      "please add it to the config file")
-        if not os.path.exists(self.options.qemu.path):
-            raise CuckooCriticalError("QEMU binary not found at "
-                                      "specified path \"%s\"" %
-                                      self.options.qemu.path)
+            raise CuckooCriticalError("QEMU binary path missing, please add it to the config file")
+        if not path_exists(self.options.qemu.path):
+            raise CuckooCriticalError(f'QEMU binary not found at specified path "{self.options.qemu.path}"')
 
         self.qemu_dir = os.path.dirname(self.options.qemu.path)
         self.qemu_img = os.path.join(self.qemu_dir, "qemu-img")
+        # 1 check if arch is not x32 or x64
+        # 2 check for kernel and initrd files
+        # 3 check for snapshot
+        # 3. check tap device
+
+        for vm_label in qemu_cfg.qemu.machines:
+            try:
+                vm_config = qemu_cfg.get(vm_label.strip())
+                if vm_config.get("platform", "").strip() != "linux":
+                    continue
+                if vm_config.get("image", False) and not path_exists(vm_config["image"]):
+                    log.error("Missed harddrive file for VM: %s", vm_label)
+                if vm_config.get("kernel", False) and not magic.from_file(vm_config["kernel"]).startswith(("Linux kernel", "ELF")):
+                    log.error("Bad Kernel file for VM: %s - %s", vm_label, vm_config["kernel"])
+                if vm_config.get("initrd", False) and not magic.from_file(vm_config["initrd"]).startswith("gzip"):
+                    log.error("Bad initrd file for VM: %s - %s", vm_label, vm_config["initrd"])
+                if vm_config.get("snapshot", False) and vm_config.get("image", False):
+                    try:
+                        snalshot_list = subprocess.check_output(
+                            [self.qemu_img, "snapshot", "-l", vm_config["image"]], universal_newlines=True
+                        )
+                        if vm_config["snapshot"] not in snalshot_list:
+                            log.error("Snapshot: %s doesn't exist for VM: %s", vm_config["snapshot"], vm_label)
+                    except Exception as e:
+                        log.debug("Can't check snapshot list for VM: %s - %s", vm_label, e)
 
-    def start(self, label, task):
+                if vm_config.get("interface", False) and HAVE_NETWORKIFACES and vm_config["interface"] not in network_interfaces:
+                    log.error("Missed TAP network interface %s", vm_config["interface"])
+            except Exception as e:
+                log.exception(e)
+
+    def start(self, label):
         """Start a virtual machine.
         @param label: virtual machine label.
-        @param task: task object.
         @raise CuckooMachineError: if unable to start.
         """
-        log.debug("Starting vm %s" % label)
+        log.debug("Starting vm %s", label)
 
         vm_info = self.db.view_machine_by_label(label)
         vm_options = getattr(self.options, vm_info.name)
@@ -249,27 +394,24 @@ def start(self, label, task):
         if vm_options.snapshot:
             snapshot_path = vm_options.image
         else:
-            snapshot_path = os.path.join(
-                os.path.dirname(vm_options.image),
-                "snapshot_%s.qcow2" % vm_info.name
-            )
-            if os.path.exists(snapshot_path):
-                os.remove(snapshot_path)
+            snapshot_path = os.path.join(os.path.dirname(vm_options.image), f"snapshot_{vm_info.name}.qcow2")
+            if path_exists(snapshot_path):
+                path_delete(snapshot_path)
 
-            # make sure we use a new harddisk layer by creating a new
-            # qcow2 with backing file
+            # make sure we use a new harddisk layer by creating a new qcow2 with backing file
+            # https://qemu.readthedocs.io/en/latest/about/removed-features.html?highlight=backing#qemu-img-backing-file-without-format-removed-in-6-1
             try:
-                proc = subprocess.Popen([
-                    self.qemu_img, "create", "-f", "qcow2",
-                    "-b", vm_options.image, snapshot_path
-                ], universal_newlines=True, stdout=subprocess.PIPE, stderr=subprocess.PIPE)
+                proc = subprocess.Popen(
+                    [self.qemu_img, "create", "-f", "qcow2", "-F", "qcow2", "-b", vm_options.image, snapshot_path],
+                    universal_newlines=True,
+                    stdout=subprocess.PIPE,
+                    stderr=subprocess.PIPE,
+                )
                 output, err = proc.communicate()
                 if err:
                     raise OSError(err)
             except OSError as e:
-                raise CuckooMachineError(
-                    "QEMU failed starting the machine: %s" % e
-                )
+                raise CuckooMachineError(f"QEMU failed starting the machine: {e}")
 
         vm_arch = getattr(vm_options, "arch", "default")
         arch_config = dict(QEMU_ARGS[vm_arch])
@@ -277,17 +419,19 @@ def start(self, label, task):
         params = dict(QEMU_ARGS["default"]["params"])
         params.update(QEMU_ARGS[vm_arch]["params"])
 
-        params.update({
-            "imagepath": os.path.dirname(vm_options.image),
-            "snapshot_path": snapshot_path,
-            "vmname": vm_info.name,
-            "memory": vm_options.memory,
-        })
+        params.update(
+            {
+                "imagepath": os.path.dirname(vm_options.image),
+                "snapshot_path": snapshot_path,
+                "vmname": vm_info.name,
+                "memory": vm_options.memory,
+            }
+        )
 
         # allow some overrides from the vm specific options
         # also do another round of parameter formatting
-        for var in ["mac", "kernel", "initrd"]:
-            val = getattr(vm_options, var, params.get(var, None))
+        for var in ("mac", "kernel", "initrd"):
+            val = getattr(vm_options, var, params.get(var))
             if not val:
                 continue
             params[var] = val.format(**params)
@@ -304,44 +448,69 @@ def start(self, label, task):
         if hasattr(vm_options, "cpu") and vm_options.cpu:
             final_cmdline += ["-cpu", vm_options.cpu]
 
-        log.debug("Executing QEMU %r", final_cmdline)
+        log.debug("Executing QEMU %s", final_cmdline)
 
         try:
             proc = subprocess.Popen(
-                final_cmdline,  universal_newlines=True, stdout=subprocess.PIPE, stderr=subprocess.PIPE)
+                final_cmdline, universal_newlines=True, stdin=subprocess.PIPE, stdout=subprocess.PIPE, stderr=subprocess.PIPE
+            )
             self.state[vm_info.name] = proc
         except OSError as e:
-            raise CuckooMachineError(
-                "QEMU failed starting the machine: %s" % e)
+            raise CuckooMachineError(f"QEMU failed starting the machine: {e}")
 
     def stop(self, label):
         """Stops a virtual machine.
         @param label: virtual machine label.
         @raise CuckooMachineError: if unable to stop.
         """
-        log.debug("Stopping vm %s" % label)
+        log.debug("Stopping vm %s", label)
 
         vm_info = self.db.view_machine_by_label(label)
 
         if self._status(vm_info.name) == self.STOPPED:
-            raise CuckooMachineError(
-                "Trying to stop an already stopped vm %s" % label)
+            raise CuckooMachineError(f"Trying to stop an already stopped vm {label}")
 
-        proc = self.state.get(vm_info.name, None)
-        proc.kill()
+        try:
+            log.debug("Trying to stop the vm %s", label)
 
-        stop_me = 0
-        while proc.poll() is None:
-            if stop_me < cfg.cuckoo.timeouts.vm_state:
-                time.sleep(1)
-                stop_me += 1
-            else:
-                log.debug("Stopping vm %s timeouted. Killing" % label)
-                proc.terminate()
-                time.sleep(1)
+            vm_info = self.db.view_machine_by_label(label)
+
+            if self._status(vm_info.name) == self.STOPPED:
+                raise CuckooMachineError(f"Trying to do a memory dump on an already stopped vm {label}")
+
+            proc = self.state.get(vm_info.name)
+
+            stop_me = 0
+            log.debug("Freezing vm %s before shutdown", label)
+            proc.stdin.write("stop\n")
+
+            log.debug("Doing the shutdown")
+            proc.stdin.write("quit\n")
 
-        # if proc.returncode != 0 and stop_me < cfg.cuckoo.timeouts.vm_state:
-        #     log.debug("QEMU exited with error powering off the machine")
+            log.debug("Flushing snapshot commands to qemu.")
+            proc.stdin.flush()
+
+            proc.wait()
+            log.debug("Shutdown done")
+
+            while proc.poll() is None:
+                if stop_me < cfg.timeouts.vm_state:
+                    stop_me += 1
+                else:
+                    log.debug("Stopping vm %s timed out, killing", label)
+                    proc.stdin.write("stop\n")
+
+                    log.debug("Force powerdown")
+                    proc.stdin.write("system_powerdown\n")
+
+                    log.debug("Flushing snapshot commands to qemu.")
+                    proc.stdin.flush()
+                    proc.wait(15)
+                    proc.terminate()
+
+                time.sleep(1)
+        except Exception as e:
+            raise CuckooMachineError(f"Shutdown failed : virtual machine {label}: {e}") from e
 
         self.state[vm_info.name] = None
 
@@ -350,7 +519,38 @@ def _status(self, name):
         @param name: virtual machine name.
         @return: status string.
         """
-        p = self.state.get(name, None)
-        if p is not None:
-            return self.RUNNING
-        return self.STOPPED
+        return self.RUNNING if self.state.get(name) is not None else self.STOPPED
+
+    def dump_memory(self, label, path):
+        """create a memory dump of the virtual machine.
+        @param label: virtual machine label.
+        @raise CuckooMachineError: if unable to dump.
+        """
+        try:
+            # Create the memory dump file ourselves first so it doesn't end up root/root 0600
+            with open(path, "w"):
+                pass
+            log.debug("Trying to do a memory dump of vm %s", label)
+
+            vm_info = self.db.view_machine_by_label(label)
+
+            if self._status(vm_info.name) == self.STOPPED:
+                raise CuckooMachineError(f"Trying to do a memory dump on an already stopped vm {label}")
+
+            proc = self.state.get(vm_info.name)
+
+            log.debug("Freezing vm %s before the memory dump", label)
+            proc.stdin.write("stop\n")
+            log.debug("Doing the memory dump")
+            proc.stdin.write(f'dump-guest-memory "{path}"\n')
+            proc.stdin.write("quit\n")
+            log.debug("Flushing snapshot commands to qemu.")
+            proc.stdin.flush()
+            proc.wait()
+            log.debug("dump done")
+
+            if not os.path.isfile(path):
+                raise CuckooMachineError(f"Error dumping memory virtual machine {label}: file not found")
+
+        except Exception as e:
+            raise CuckooMachineError(f"Error dumping memory virtual machine {label}: {e}") from e
diff --git a/modules/machinery/virtualbox.py b/modules/machinery/virtualbox.py
index 0a5aa40edad..71c343ef3e5 100644
--- a/modules/machinery/virtualbox.py
+++ b/modules/machinery/virtualbox.py
@@ -2,23 +2,20 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-import os
-import time
 import logging
 import subprocess
-import os.path
+import time
+
+from lib.cuckoo.common.abstracts import Machinery
+from lib.cuckoo.common.config import Config
+from lib.cuckoo.common.exceptions import CuckooCriticalError, CuckooMachineError
+from lib.cuckoo.common.path_utils import path_exists
 
 try:
     import re2 as re
 except ImportError:
     import re
 
-from lib.cuckoo.common.abstracts import Machinery
-from lib.cuckoo.common.exceptions import CuckooCriticalError
-from lib.cuckoo.common.exceptions import CuckooMachineError
-from lib.cuckoo.common.config import Config
-
 log = logging.getLogger(__name__)
 cfg = Config()
 
@@ -26,6 +23,8 @@
 class VirtualBox(Machinery):
     """Virtualization layer for VirtualBox."""
 
+    module_name = "virtualbox"
+
     # VM states.
     SAVED = "saved"
     RUNNING = "running"
@@ -39,9 +38,9 @@ def _initialize_check(self):
         """
         # VirtualBox specific checks.
         if not self.options.virtualbox.path:
-            raise CuckooCriticalError("VirtualBox VBoxManage path missing, " "please add it to the config file")
-        if not os.path.exists(self.options.virtualbox.path):
-            raise CuckooCriticalError("VirtualBox VBoxManage not found at " 'specified path "%s"' % self.options.virtualbox.path)
+            raise CuckooCriticalError("VirtualBox VBoxManage path missing, please add it to the config file")
+        if not path_exists(self.options.virtualbox.path):
+            raise CuckooCriticalError(f'VirtualBox VBoxManage not found at specified path "{self.options.virtualbox.path}"')
 
         # Base checks.
         super(VirtualBox, self)._initialize_check()
@@ -51,25 +50,27 @@ def start(self, label):
         @param label: virtual machine name.
         @raise CuckooMachineError: if unable to start.
         """
-        log.debug("Starting vm %s" % label)
+        log.debug("Starting vm %s", label)
 
         if self._status(label) == self.RUNNING:
-            raise CuckooMachineError("Trying to start an already " "started vm %s" % label)
+            raise CuckooMachineError(f"Trying to start an already started vm {label}")
 
         vm_info = self.db.view_machine_by_label(label)
         virtualbox_args = [self.options.virtualbox.path, "snapshot", label]
         if vm_info.snapshot:
-            log.debug("Using snapshot {0} for virtual machine " "{1}".format(vm_info.snapshot, label))
+            log.debug("Using snapshot %s for virtual machine %s", vm_info.snapshot, label)
             virtualbox_args.extend(["restore", vm_info.snapshot])
         else:
-            log.debug("Using current snapshot for virtual machine " "{0}".format(label))
+            log.debug("Using current snapshot for virtual machine %s", label)
             virtualbox_args.extend(["restorecurrent"])
 
         try:
-            if subprocess.call(virtualbox_args, universal_newlines=True, stdout=subprocess.PIPE, stderr=subprocess.PIPE, close_fds=True):
-                raise CuckooMachineError("VBoxManage exited with error " "restoring the machine's snapshot")
+            if subprocess.call(
+                virtualbox_args, universal_newlines=True, stdout=subprocess.PIPE, stderr=subprocess.PIPE, close_fds=True
+            ):
+                raise CuckooMachineError("VBoxManage exited with error restoring the machine's snapshot")
         except OSError as e:
-            raise CuckooMachineError("VBoxManage failed restoring the " "machine: %s" % e)
+            raise CuckooMachineError(f"VBoxManage failed restoring the machine: {e}")
 
         self._wait_status(label, self.SAVED)
 
@@ -85,7 +86,7 @@ def start(self, label):
             if err:
                 raise OSError(err)
         except OSError as e:
-            raise CuckooMachineError("VBoxManage failed starting the machine " "in %s mode: %s" % (self.options.virtualbox.mode.upper(), e))
+            raise CuckooMachineError(f"VBoxManage failed starting the machine in {self.options.virtualbox.mode.upper()} mode: {e}")
         self._wait_status(label, self.RUNNING)
 
     def stop(self, label):
@@ -93,10 +94,10 @@ def stop(self, label):
         @param label: virtual machine name.
         @raise CuckooMachineError: if unable to stop.
         """
-        log.debug("Stopping vm %s" % label)
+        log.debug("Stopping vm %s", label)
 
-        if self._status(label) in [self.POWEROFF, self.ABORTED]:
-            raise CuckooMachineError("Trying to stop an already stopped " "vm %s" % label)
+        if self._status(label) in (self.POWEROFF, self.ABORTED):
+            raise CuckooMachineError(f"Trying to stop an already stopped vm {label}")
 
         try:
             proc = subprocess.Popen(
@@ -114,13 +115,13 @@ def stop(self, label):
                     time.sleep(1)
                     stop_me += 1
                 else:
-                    log.debug("Stopping vm %s timeouted. Killing" % label)
+                    log.debug("Stopping vm %s timed out, killing", label)
                     proc.terminate()
 
             if proc.returncode != 0 and stop_me < int(cfg.timeouts.vm_state):
-                log.debug("VBoxManage exited with error " "powering off the machine")
+                log.debug("VBoxManage exited with error powering off the machine")
         except OSError as e:
-            raise CuckooMachineError("VBoxManage failed powering off the " "machine: %s" % e)
+            raise CuckooMachineError(f"VBoxManage failed powering off the machine: {e}")
         self._wait_status(label, [self.POWEROFF, self.ABORTED, self.SAVED])
 
     def _list(self):
@@ -137,14 +138,14 @@ def _list(self):
             )
             output, _ = proc.communicate()
         except OSError as e:
-            raise CuckooMachineError("VBoxManage error listing " "installed machines: %s" % e)
+            raise CuckooMachineError(f"VBoxManage error listing installed machines: {e}")
 
         machines = []
         for line in output.split("\n"):
             try:
-                label = line.split('"')[1]
+                label = line.split('"', 2)[1]
                 if label == "<inaccessible>":
-                    log.warning("Found an inaccessible virtual machine, " "please check its state.")
+                    log.warning("Found an inaccessible virtual machine, please check its state")
                 else:
                     machines.append(label)
             except IndexError:
@@ -157,7 +158,7 @@ def _status(self, label):
         @param label: virtual machine name.
         @return: status string.
         """
-        log.debug("Getting status for %s" % label)
+        log.debug("Getting status for %s", label)
         status = None
         try:
             proc = subprocess.Popen(
@@ -173,7 +174,7 @@ def _status(self, label):
                 # It's quite common for virtualbox crap utility to exit with:
                 # VBoxManage: error: Details: code E_ACCESSDENIED (0x80070005)
                 # So we just log to debug this.
-                log.debug("VBoxManage returns error checking status for " "machine %s: %s", label, err)
+                log.debug("VBoxManage returns error checking status for machine %s: %s", label, err)
                 status = self.ERROR
         except OSError as e:
             log.warning("VBoxManage failed to check status for machine %s: %s", label, e)
@@ -183,49 +184,28 @@ def _status(self, label):
                 state = re.match(r"VMState=\"(\w+)\"", line, re.M | re.I)
                 if state:
                     status = state.group(1)
-                    log.debug("Machine %s status %s" % (label, status))
+                    log.debug("Machine %s status %s", label, status)
                     status = status.lower()
         # Report back status.
         if status:
             self.set_status(label, status)
             return status
         else:
-            raise CuckooMachineError("Unable to get status for %s" % label)
+            raise CuckooMachineError(f"Unable to get status for {label}")
 
     def dump_memory(self, label, path):
         """Takes a memory dump.
         @param path: path to where to store the memory dump.
         """
 
-        try:
-            proc = subprocess.Popen(
-                [self.options.virtualbox.path, "-v"], universal_newlines=True, stdout=subprocess.PIPE, stderr=subprocess.PIPE, close_fds=True
-            )
-            output, err = proc.communicate()
-
-            if proc.returncode != 0:
-                # It's quite common for virtualbox crap utility to exit with:
-                # VBoxManage: error: Details: code E_ACCESSDENIED (0x80070005)
-                # So we just log to debug this.
-                log.debug("VBoxManage returns error checking status for " "machine %s: %s", label, err)
-        except OSError as e:
-            raise CuckooMachineError("VBoxManage failed return it's version: %s" % (e))
-
-        if output[:1] == str(5):
-            # VirtualBox version 5.x
-            dumpcmd = "dumpvmcore"
-        else:
-            # VirtualBox version 4.x
-            dumpcmd = "dumpguestcore"
-
         try:
             subprocess.call(
-                [self.options.virtualbox.path, "debugvm", label, dumpcmd, "--filename", path],
+                [self.options.virtualbox.path, "debugvm", label, "dumpvmcore", "--filename", path],
                 universal_newlines=True,
                 stdout=subprocess.PIPE,
                 stderr=subprocess.PIPE,
                 close_fds=True,
             )
-            log.info("Successfully generated memory dump for virtual machine " "with label %s to path %s", label, path)
+            log.info("Successfully generated memory dump for virtual machine with label %s to path %s", label, path)
         except OSError as e:
-            raise CuckooMachineError("VBoxManage failed to take a memory " "dump of the machine with label %s: %s" % (label, e))
+            raise CuckooMachineError(f"VBoxManage failed to take a memory dump of the machine with label {label}: {e}")
diff --git a/modules/machinery/vmware.py b/modules/machinery/vmware.py
index 6099d1c4a5b..222f1ed1a12 100644
--- a/modules/machinery/vmware.py
+++ b/modules/machinery/vmware.py
@@ -3,16 +3,16 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 import glob
 import logging
-import subprocess
 import os.path
 import shutil
+import subprocess
 import time
 
 from lib.cuckoo.common.abstracts import Machinery
 from lib.cuckoo.common.exceptions import CuckooMachineError
+from lib.cuckoo.common.path_utils import path_exists
 
 log = logging.getLogger(__name__)
 
@@ -20,6 +20,8 @@
 class VMware(Machinery):
     """Virtualization layer for VMware Workstation using vmrun utility."""
 
+    module_name = "vmware"
+
     LABEL = "vmx_path"
 
     def _initialize_check(self):
@@ -27,10 +29,10 @@ def _initialize_check(self):
         @raise CuckooMachineError: if configuration is missing or wrong.
         """
         if not self.options.vmware.path:
-            raise CuckooMachineError("VMware vmrun path missing, " "please add it to vmware.conf")
+            raise CuckooMachineError("VMware vmrun path missing, please add it to vmware.conf")
 
-        if not os.path.exists(self.options.vmware.path):
-            raise CuckooMachineError("VMware vmrun not found in " "specified path %s" % self.options.vmware.path)
+        if not path_exists(self.options.vmware.path):
+            raise CuckooMachineError(f"VMware vmrun not found in specified path {self.options.vmware.path}")
         # Consistency checks.
         for machine in self.machines():
             vmx_path = machine.label
@@ -49,10 +51,10 @@ def _check_vmx(self, vmx_path):
         """
         # b".vms"? someone can test?
         if not vmx_path.endswith(".vmx"):
-            raise CuckooMachineError("Wrong configuration: vm path not " "ending with .vmx: %s)" % vmx_path)
+            raise CuckooMachineError(f"Wrong configuration: vm path not ending with .vmx: {vmx_path}")
 
-        if not os.path.exists(vmx_path):
-            raise CuckooMachineError("Vm file %s not found" % vmx_path)
+        if not path_exists(vmx_path):
+            raise CuckooMachineError(f"Vm file {vmx_path} not found")
 
     def _check_snapshot(self, vmx_path, snapshot):
         """Checks snapshot existance.
@@ -62,16 +64,19 @@ def _check_snapshot(self, vmx_path, snapshot):
         """
         try:
             p = subprocess.Popen(
-                [self.options.vmware.path, "listSnapshots", vmx_path], universal_newlines=True, stdout=subprocess.PIPE, stderr=subprocess.PIPE
+                [self.options.vmware.path, "listSnapshots", vmx_path],
+                universal_newlines=True,
+                stdout=subprocess.PIPE,
+                stderr=subprocess.PIPE,
             )
             output, _ = p.communicate()
         except OSError as e:
-            raise CuckooMachineError("Unable to get snapshot list for %s. " "Reason: %s" % (vmx_path, e))
+            raise CuckooMachineError(f"Unable to get snapshot list for {vmx_path}: {e}")
         else:
             if output:
                 return snapshot in output
             else:
-                raise CuckooMachineError("Unable to get snapshot list for %s. " "No output from " "`vmrun listSnapshots`" % vmx_path)
+                raise CuckooMachineError(f"Unable to get snapshot list for {vmx_path}, no output from `vmrun listSnapshots`")
 
     def start(self, vmx_path):
         """Start a virtual machine.
@@ -82,13 +87,13 @@ def start(self, vmx_path):
 
         # Preventive check
         if self._is_running(vmx_path):
-            raise CuckooMachineError("Machine %s is already running" % vmx_path)
+            raise CuckooMachineError(f"Machine {vmx_path} is already running")
 
         self._revert(vmx_path, snapshot)
 
         time.sleep(3)
 
-        log.debug("Starting vm %s" % vmx_path)
+        log.debug("Starting vm %s", vmx_path)
         try:
             p = subprocess.Popen(
                 [self.options.vmware.path, "start", vmx_path, self.options.vmware.mode],
@@ -99,17 +104,17 @@ def start(self, vmx_path):
             if self.options.vmware.mode.lower() == "gui":
                 output, _ = p.communicate()
                 if output:
-                    raise CuckooMachineError("Unable to start machine " "%s: %s" % (vmx_path, output))
+                    raise CuckooMachineError(f"Unable to start machine {vmx_path}: {output}")
         except OSError as e:
             mode = self.options.vmware.mode.upper()
-            raise CuckooMachineError("Unable to start machine %s in %s " "mode: %s" % (vmx_path, mode, e))
+            raise CuckooMachineError(f"Unable to start machine {vmx_path} in {mode} mode: {e}")
 
     def stop(self, vmx_path):
         """Stops a virtual machine.
         @param vmx_path: path to vmx file
         @raise CuckooMachineError: if unable to stop.
         """
-        log.debug("Stopping vm %s" % vmx_path)
+        log.debug("Stopping vm %s", vmx_path)
         if self._is_running(vmx_path):
             try:
                 if subprocess.call(
@@ -118,9 +123,9 @@ def stop(self, vmx_path):
                     stdout=subprocess.PIPE,
                     stderr=subprocess.PIPE,
                 ):
-                    raise CuckooMachineError("Error shutting down " "machine %s" % vmx_path)
+                    raise CuckooMachineError(f"Error shutting down machine {vmx_path}")
             except OSError as e:
-                raise CuckooMachineError("Error shutting down machine " "%s: %s" % (vmx_path, e))
+                raise CuckooMachineError(f"Error shutting down machine {vmx_path}: {e}")
         else:
             log.warning("Trying to stop an already stopped machine: %s", vmx_path)
 
@@ -130,7 +135,7 @@ def _revert(self, vmx_path, snapshot):
         @param snapshot: snapshot name
         @raise CuckooMachineError: if unable to revert
         """
-        log.debug("Revert snapshot for vm %s" % vmx_path)
+        log.debug("Revert snapshot for vm %s", vmx_path)
         try:
             if subprocess.call(
                 [self.options.vmware.path, "revertToSnapshot", vmx_path, snapshot],
@@ -138,9 +143,9 @@ def _revert(self, vmx_path, snapshot):
                 stdout=subprocess.PIPE,
                 stderr=subprocess.PIPE,
             ):
-                raise CuckooMachineError("Unable to revert snapshot for " "machine %s: vmrun exited with " "error" % vmx_path)
+                raise CuckooMachineError(f"Unable to revert snapshot for machine {vmx_path}: vmrun exited with error")
         except OSError as e:
-            raise CuckooMachineError("Unable to revert snapshot for " "machine %s: %s" % (vmx_path, e))
+            raise CuckooMachineError(f"Unable to revert snapshot for machine {vmx_path}: {e}")
 
     def _is_running(self, vmx_path):
         """Checks if virtual machine is running.
@@ -148,15 +153,17 @@ def _is_running(self, vmx_path):
         @return: running status
         """
         try:
-            p = subprocess.Popen([self.options.vmware.path, "list"], universal_newlines=True, stdout=subprocess.PIPE, stderr=subprocess.PIPE)
+            p = subprocess.Popen(
+                [self.options.vmware.path, "list"], universal_newlines=True, stdout=subprocess.PIPE, stderr=subprocess.PIPE
+            )
             output, error = p.communicate()
         except OSError as e:
-            raise CuckooMachineError("Unable to check running status for %s. " "Reason: %s" % (vmx_path, e))
+            raise CuckooMachineError(f"Unable to check running status for {vmx_path}: {e}")
         else:
             if output:
                 return vmx_path in output
             else:
-                raise CuckooMachineError("Unable to check running status " "for %s. No output from " "`vmrun list`" % vmx_path)
+                raise CuckooMachineError(f"Unable to check running status for {vmx_path}, no output from `vmrun list`")
 
     def _snapshot_from_vmx(self, vmx_path):
         """Get snapshot for a given vmx file.
@@ -167,9 +174,9 @@ def _snapshot_from_vmx(self, vmx_path):
 
     def dump_memory(self, vmx_path, path):
         """Take a memory dump of the machine."""
-        if not os.path.exists(vmx_path):
+        if not path_exists(vmx_path):
             raise CuckooMachineError(
-                "Can't find .vmx file {0}. Ensure to configure a fully qualified path in vmware.conf (key = vmx_path)".format(vmx_path)
+                f"Can't find .vmx file {vmx_path}. Ensure to configure a fully qualified path in vmware.conf (key = vmx_path)"
             )
 
         try:
@@ -180,7 +187,7 @@ def dump_memory(self, vmx_path, path):
                 stderr=subprocess.PIPE,
             )
         except OSError as e:
-            raise CuckooMachineError("vmrun failed to take a memory dump of the machine with label %s: %s" % (vmx_path, e))
+            raise CuckooMachineError(f"vmrun failed to take a memory dump of the machine with label {vmx_path}: {e}")
 
         vmwarepath, _ = os.path.split(vmx_path)
         latestvmem = max(glob.iglob(os.path.join(vmwarepath, "*.vmem")), key=os.path.getctime)
@@ -198,6 +205,6 @@ def dump_memory(self, vmx_path, path):
                 stderr=subprocess.PIPE,
             )
         except OSError as e:
-            raise CuckooMachineError("vmrun failed to delete the temporary snapshot in %s: %s" % (vmx_path, e))
+            raise CuckooMachineError(f"vmrun failed to delete the temporary snapshot in {vmx_path}: {e}")
 
-        log.info("Successfully generated memory dump for virtual machine with label %s ", vmx_path)
+        log.info("Successfully generated memory dump for virtual machine with label %s", vmx_path)
diff --git a/modules/machinery/vmwarerest.py b/modules/machinery/vmwarerest.py
index c65e3db9443..61e2a30ddb3 100644
--- a/modules/machinery/vmwarerest.py
+++ b/modules/machinery/vmwarerest.py
@@ -1,12 +1,12 @@
 import logging
+import os
+
 import requests
-import json
+from requests.packages.urllib3.exceptions import InsecureRequestWarning
 
 from lib.cuckoo.common.abstracts import Machinery
 from lib.cuckoo.common.exceptions import CuckooMachineError
 
-from requests.packages.urllib3.exceptions import InsecureRequestWarning
-
 requests.packages.urllib3.disable_warnings(InsecureRequestWarning)
 
 log = logging.getLogger(__name__)
@@ -18,6 +18,8 @@
 class VMwareREST(Machinery):
     """Virtualization layer for remote VMware REST Server."""
 
+    module_name = "vmwarerest"
+
     LABEL = "id"
 
     def _initialize_check(self):
@@ -25,112 +27,137 @@ def _initialize_check(self):
         @raise CuckooMachineError: if configuration is missing or wrong.
         """
         if not self.options.vmwarerest.host:
-            raise CuckooMachineError("VMwareREST hostname/IP address missing, " "please add it to vmwarerest.conf")
+            raise CuckooMachineError("VMwareREST hostname/IP address missing, please add it to vmwarerest.conf")
         self.host = self.options.vmwarerest.host
         if not self.options.vmwarerest.port:
-            raise CuckooMachineError("VMwareREST server port address missing, " "please add it to vmwarerest.conf")
+            raise CuckooMachineError("VMwareREST server port address missing, please add it to vmwarerest.conf")
         self.port = str(self.options.vmwarerest.port)
+
+        if self.options.vmwarerest.enable_tls:
+            self.api_url = f"https://{self.host}:{self.port}/api"
+        else:
+            self.api_url = f"http://{self.host}:{self.port}/api"
+
         if not self.options.vmwarerest.username:
-            raise CuckooMachineError("VMwareREST username missing, " "please add it to vmwarerest.conf")
+            raise CuckooMachineError("VMwareREST username missing, please add it to vmwarerest.conf")
         self.username = self.options.vmwarerest.username
         if not self.options.vmwarerest.password:
-            raise CuckooMachineError("VMwareREST password missing, " "please add it to vmwarerest.conf")
+            raise CuckooMachineError("VMwareREST password missing, please add it to vmwarerest.conf")
         self.password = self.options.vmwarerest.password
 
         super(VMwareREST, self)._initialize_check()
 
-        log.info("VMwareREST machinery module initialised (%s:%s).", self.host, self.port)
+        log.info("VMwareREST machinery module initialised (%s:%s)", self.host, self.port)
+
+    def check_response(self, response):
+        if response.status_code == 200:
+            return response.json()
+        elif response.status_code == 400:
+            raise CuckooMachineError("VMwareREST: Invalid parameters")
+        elif response.status_code == 401:
+            raise CuckooMachineError("VMwareREST: Authentication failed, please check credentials in vmwarerest.conf")
+        elif response.status_code == 403:
+            raise CuckooMachineError("VMwareREST: Permission denied")
+        elif response.status_code == 404:
+            raise CuckooMachineError("VMwareREST: No such resource")
+        elif response.status_code == 406:
+            raise CuckooMachineError("VMwareREST: Content type was not supported")
+        elif response.status_code == 409:
+            raise CuckooMachineError("VMwareREST: Resource state conflicts")
+        elif response.status_code == 500:
+            raise CuckooMachineError("VMwareREST: Server error")
+        else:
+            raise CuckooMachineError("VMwareREST: Unexpected error")
 
     def get_vms(self):
-        vms = s.get("https://" + self.host + ":" + str(self.port) + "/api/vms", auth=(self.username, self.password))
-        if "Authentication failed" in vms.text:
-            log.info("Authentication failed, please check credentials in vmwarerest.conf")
-            return None
-        return vms.json()
+        """Returns a list of VM IDs and paths for all VMs."""
+        try:
+            response = s.get(
+                f"{self.api_url}/vms",
+                auth=(self.username, self.password),
+                headers={"Accept": "application/vnd.vmware.vmw.rest-v1+json"},
+            )
+        except Exception:
+            raise CuckooMachineError("VMwareREST: Couldn't connect to vmrest server.")
+
+        return self.check_response(response)
+
+    def get_power(self, vmmoid):
+        """Returns the power state of the VM."""
+        try:
+            response = s.get(
+                f"{self.api_url}/vms/{vmmoid}/power",
+                auth=(self.username, self.password),
+                headers={"Accept": "application/vnd.vmware.vmw.rest-v1+json"},
+            )
+        except Exception:
+            raise CuckooMachineError("VMwareREST: Couldn't connect to vmrest server.")
+
+        return self.check_response(response)
+
+    def change_power_state(self, vmmoid, operation):
+        """Changes the VM power state."""
+        try:
+            response = s.put(
+                f"{self.api_url}/vms/{vmmoid}/power",
+                auth=(self.username, self.password),
+                data=operation,
+                headers={
+                    "Content-Type": "application/vnd.vmware.vmw.rest-v1+json",
+                    "Accept": "application/vnd.vmware.vmw.rest-v1+json",
+                },
+            )
+        except Exception:
+            raise CuckooMachineError("VMwareREST: Couldn't connect to vmrest server.")
+
+        return self.check_response(response)
 
     def get_vmmoid(self, id):
         vms = self.get_vms()
         if vms:
             for vm in vms:
-                if vm["path"].endswith(id + ".vmx"):
+                vmx_filename = os.path.basename(vm["path"].replace("\\", os.sep))
+                if vmx_filename == f"{id}.vmx":
                     return vm["id"]
-        log.info("There was a problem getting vmmoid for vm %s", id)
-
-    def set_vm_settings(self, id):
-        vmmoid = self.get_vmmoid(id)
-        if vmmoid:
-            status = s.put(
-                "https://" + self.host + ":" + self.port + "/api/vms/" + vmmoid, data=json.dumps({}), auth=(self.username, self.password)
-            )
-            if "Authentication failed" in status.text:
-                log.info("Authentication failed, please check credentials in vmwarerest.conf")
-                return None
-        log.info("There was a problem setting settings for vm %s", id)
-
-    def get_vm_settings(self, id):
-        vmmoid = self.get_vmmoid(id)
-        if vmmoid:
-            status = s.get("https://" + self.host + ":" + self.port + "/api/vms/" + vmmoid, auth=(self.username, self.password))
-            return status
-        log.info("There was a problem getting settings for vm %s", id)
+        raise CuckooMachineError("There was a problem getting vmmoid for vm %s", id)
 
     def poweron_vm(self, id):
         vmmoid = self.get_vmmoid(id)
         if vmmoid:
             log.info("Powering on vm %s", id)
-            status = s.put(
-                "https://" + self.host + ":" + self.port + "/api/vms/" + vmmoid + "/power",
-                auth=(self.username, self.password),
-                data="on",
-                headers={"content-type": "application/vnd.vmware.vmw.rest-v1+json"},
-            )
-            if "Authentication failed" in status.text:
-                log.info("Authentication failed, please check credentials in vmwarerest.conf")
-                return None
-            return status
-        log.info("There was a problem powering on vm %s", id)
+            return self.change_power_state(vmmoid, "on")
+        raise CuckooMachineError("There was a problem powering on vm %s", id)
 
     def poweroff_vm(self, id):
         vmmoid = self.get_vmmoid(id)
         if vmmoid:
             log.info("Powering off vm %s", id)
-            status = s.put(
-                "https://" + self.host + ":" + self.port + "/api/vms/" + vmmoid + "/power",
-                auth=(self.username, self.password),
-                data="off",
-                headers={"content-type": "application/vnd.vmware.vmw.rest-v1+json"},
-            )
-            return status
-        log.info("There was a problem powering off vm %s", id)
+            return self.change_power_state(vmmoid, "off")
+        raise CuckooMachineError("There was a problem powering off vm %s", id)
 
     def get_power_for_vm(self, id):
         vmmoid = self.get_vmmoid(id)
         if vmmoid:
-            status = s.get("https://" + self.host + ":" + self.port + "/api/vms/" + vmmoid + "/power", auth=(self.username, self.password))
-            return status
-        log.info("There was a problem querying power status for vm %s", id)
+            return self.get_power(vmmoid)
+        raise CuckooMachineError("There was a problem querying power status for vm %s", id)
 
     def start(self, id):
-        log.info("Starting vm %s" % id)
+        log.info("Starting vm %s", id)
         self.stop(id)
         self.poweron_vm(id)
 
     def stop(self, id):
         if self._is_running(id):
-            log.info("Stopping vm %s" % id)
+            log.info("Stopping vm %s", id)
             self.poweroff_vm(id)
 
-    def _revert(self, id, snapshot):
-        log.info("Revert snapshot for vm %s: %s" % (id, snapshot))
-        self.poweroff_vm(id)
-
     def _is_running(self, id):
-        log.info("Checking vm %s" % id)
+        log.info("Checking vm %s", id)
         power_state = self.get_power_for_vm(id)
 
-        if power_state and "poweredOn" in power_state.text:
-            log.info("Vm %s is running" % id)
-            return id
+        if power_state["power_state"] == "poweredOn":
+            log.info("Vm %s is running", id)
+            return True
         else:
-            log.info("Vm %s is not running" % id)
-            return
+            log.info("Vm %s is not running", id)
+            return False
diff --git a/modules/machinery/vmwareserver.py b/modules/machinery/vmwareserver.py
index e528821807a..7473b2be241 100644
--- a/modules/machinery/vmwareserver.py
+++ b/modules/machinery/vmwareserver.py
@@ -2,14 +2,13 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 import logging
 import subprocess
-import os.path
 import time
 
 from lib.cuckoo.common.abstracts import Machinery
 from lib.cuckoo.common.exceptions import CuckooMachineError
+from lib.cuckoo.common.path_utils import path_exists
 
 log = logging.getLogger(__name__)
 
@@ -17,6 +16,8 @@
 class VMwareServer(Machinery):
     """Virtualization layer for remote VMware Workstation Server using vmrun utility."""
 
+    module_name = "vmwareserver"
+
     LABEL = "vmx_path"
 
     def _initialize_check(self):
@@ -24,7 +25,7 @@ def _initialize_check(self):
         @raise CuckooMachineError: if configuration is missing or wrong.
         """
         if not self.options.vmwareserver.path:
-            raise CuckooMachineError("VMware vmrun path missing, " "please add it to vmwareserver.conf")
+            raise CuckooMachineError("VMware vmrun path missing, please add it to vmwareserver.conf")
 
         # Base checks.
         super(VMwareServer, self)._initialize_check()
@@ -35,10 +36,10 @@ def _check_vmx(self, vmx_path):
         @raise CuckooMachineError: if file not found or not ending with .vmx
         """
         if not vmx_path.endswith(".vmx"):
-            raise CuckooMachineError("Wrong configuration: vm path not " "ending with .vmx: %s)" % vmx_path)
+            raise CuckooMachineError(f"Wrong configuration: vm path not ending with .vmx: {vmx_path}")
 
-        if not os.path.exists(vmx_path):
-            raise CuckooMachineError("Vm file %s not found" % vmx_path)
+        if not path_exists(vmx_path):
+            raise CuckooMachineError(f"Vm file {vmx_path} not found")
 
     def _check_snapshot(self, vmx_path, snapshot):
         """Checks snapshot existance.
@@ -48,29 +49,20 @@ def _check_snapshot(self, vmx_path, snapshot):
         """
 
         check_string = (
-            self.options.vmwareserver.path
-            + " -T ws-shared -h "
-            + self.options.vmwareserver.vmware_url
-            + " -u "
-            + self.options.vmwareserver.username
-            + " -p "
-            + self.options.vmwareserver.password
-            + " listSnapshots "
-            + '"'
-            + vmx_path
-            + '"'
+            f"{self.options.vmwareserver.path} -T ws-shared -h {self.options.vmwareserver.vmware_url} -u {self.options.vmwareserver.username} "
+            f'-p {self.options.vmwareserver.password} listSnapshots "{vmx_path}"'
         )
 
         try:
             p = subprocess.Popen(check_string, universal_newlines=True, shell=True)
             output, _ = p.communicate()
         except OSError as e:
-            raise CuckooMachineError("Unable to get snapshot list for %s. " "Reason: %s" % (vmx_path, e))
+            raise CuckooMachineError(f"Unable to get snapshot list for {vmx_path}: {e}")
         else:
             if output:
                 return snapshot in output
             else:
-                raise CuckooMachineError("Unable to get snapshot list for %s. " "No output from " "`vmrun listSnapshots`" % vmx_path)
+                raise CuckooMachineError(f"Unable to get snapshot list for {vmx_path}, no output from `vmrun listSnapshots`")
 
     def start(self, vmx_path):
         """Start a virtual machine.
@@ -82,7 +74,7 @@ def start(self, vmx_path):
 
         # Check if the machine is already running, stop if so.
         if self._is_running(vmx_path):
-            log.debug("Machine %s is already running, attempting to stop..." % vmx_path)
+            log.debug("Machine %s is already running, attempting to stop...", vmx_path)
             self.stop(vmx_path)
             time.sleep(3)
 
@@ -91,30 +83,21 @@ def start(self, vmx_path):
         time.sleep(3)
 
         start_string = (
-            self.options.vmwareserver.path
-            + " -T ws-shared -h "
-            + self.options.vmwareserver.vmware_url
-            + " -u "
-            + self.options.vmwareserver.username
-            + " -p "
-            + self.options.vmwareserver.password
-            + " start "
-            + '"'
-            + vmx_path
-            + '"'
+            f"{self.options.vmwareserver.path} -T ws-shared -h {self.options.vmwareserver.vmware_url} -u {self.options.vmwareserver.username} "
+            f'-p {self.options.vmwareserver.password} start "{vmx_path}"'
         )
 
-        log.debug("Starting vm %s" % vmx_path)
+        log.debug("Starting vm %s", vmx_path)
 
         try:
             p = subprocess.Popen(start_string, universal_newlines=True, shell=True)
             if self.options.vmwareserver.mode.lower() == "gui":
                 output, _ = p.communicate()
                 if output:
-                    raise CuckooMachineError("Unable to start machine " "%s: %s" % (vmx_path, output))
+                    raise CuckooMachineError(f"Unable to start machine {vmx_path}: {output}")
         except OSError as e:
             mode = self.options.vmwareserver.mode.upper()
-            raise CuckooMachineError("Unable to start machine %s in %s " "mode: %s" % (vmx_path, mode, e))
+            raise CuckooMachineError(f"Unable to start machine {vmx_path} in {mode} mode: {e}")
 
     def stop(self, vmx_path):
         """Stops a virtual machine.
@@ -123,30 +106,20 @@ def stop(self, vmx_path):
         """
 
         stop_string = (
-            self.options.vmwareserver.path
-            + " -T ws-shared -h "
-            + self.options.vmwareserver.vmware_url
-            + " -u "
-            + self.options.vmwareserver.username
-            + " -p "
-            + self.options.vmwareserver.password
-            + " stop "
-            + '"'
-            + vmx_path
-            + '" hard'
+            f"{self.options.vmwareserver.path} -T ws-shared -h {self.options.vmwareserver.vmware_url} -u {self.options.vmwareserver.username} "
+            f'-p {self.options.vmwareserver.password} stop "{vmx_path}" hard'
         )
 
-        log.debug("Stopping vm %s" % vmx_path)
-        # log.debug("Stop string: %s" % stop_string)
+        log.debug("Stopping vm %s", vmx_path)
+        # log.debug("Stop string: %s", stop_string)
 
         if self._is_running(vmx_path):
             try:
                 if subprocess.call(stop_string, universal_newlines=True, shell=True):
-                    raise CuckooMachineError("Error shutting down " "machine %s" % vmx_path)
+                    raise CuckooMachineError(f"Error shutting down machine {vmx_path}")
             except OSError as e:
-                raise CuckooMachineError("Error shutting down machine " "%s: %s" % (vmx_path, e))
+                raise CuckooMachineError(f"Error shutting down machine {vmx_path}: {e}")
         else:
-
             log.warning("Trying to stop an already stopped machine: %s", vmx_path)
 
     def _revert(self, vmx_path, snapshot):
@@ -155,31 +128,20 @@ def _revert(self, vmx_path, snapshot):
         @param snapshot: snapshot name
         @raise CuckooMachineError: if unable to revert
         """
-        log.debug("Revert snapshot for vm %s: %s" % (vmx_path, snapshot))
+        log.debug("Revert snapshot for vm %s: %s", vmx_path, snapshot)
 
         revert_string = (
-            self.options.vmwareserver.path
-            + " -T ws-shared -h "
-            + self.options.vmwareserver.vmware_url
-            + " -u "
-            + self.options.vmwareserver.username
-            + " -p "
-            + self.options.vmwareserver.password
-            + " revertToSnapshot "
-            + '"'
-            + vmx_path
-            + '" '
-            + snapshot
+            f"{self.options.vmwareserver.path} -T ws-shared -h {self.options.vmwareserver.vmware_url} -u {self.options.vmwareserver.username} "
+            f'-p {self.options.vmwareserver.password} revertToSnapshot "{vmx_path}" snapshot'
         )
-
-        # log.debug("Revert string: %s" % revert_string)
+        # log.debug("Revert string: %s", revert_string)
 
         try:
             if subprocess.call(revert_string, universal_newlines=True, shell=True):
-                raise CuckooMachineError("Unable to revert snapshot for " "machine %s: vmrun exited with " "error" % vmx_path)
+                raise CuckooMachineError(f"Unable to revert snapshot for machine {vmx_path}: vmrun exited with error")
 
         except OSError as e:
-            raise CuckooMachineError("Unable to revert snapshot for " "machine %s: %s" % (vmx_path, e))
+            raise CuckooMachineError(f"Unable to revert snapshot for machine {vmx_path}: {e}")
 
     def _is_running(self, vmx_path):
         """Checks if virtual machine is running.
@@ -187,31 +149,21 @@ def _is_running(self, vmx_path):
         @return: running status
         """
         list_string = (
-            self.options.vmwareserver.path
-            + " -T ws-shared -h "
-            + self.options.vmwareserver.vmware_url
-            + " -u "
-            + self.options.vmwareserver.username
-            + " -p "
-            + self.options.vmwareserver.password
-            + " list "
-            + '"'
-            + vmx_path
-            + '"'
+            f"{self.options.vmwareserver.path} -T ws-shared -h {self.options.vmwareserver.vmware_url} -u {self.options.vmwareserver.username} "
+            f'-p {self.options.vmwareserver.password} list "{vmx_path}"'
         )
-
-        # log.debug("List string: %s" % list_string)
+        # log.debug("List string: %s", list_string)
 
         try:
             p = subprocess.Popen(list_string, universal_newlines=True, stdout=subprocess.PIPE, shell=True)
             output, error = p.communicate()
         except OSError as e:
-            raise CuckooMachineError("Unable to check running status for %s. " "Reason: %s" % (vmx_path, e))
+            raise CuckooMachineError(f"Unable to check running status for {vmx_path}: {e}")
         else:
             if output:
                 return vmx_path in output
             else:
-                raise CuckooMachineError("Unable to check running status " "for %s. No output from " "`vmrun list`" % vmx_path)
+                raise CuckooMachineError(f"Unable to check running status for {vmx_path}. No output from `vmrun list`")
 
     def _snapshot_from_vmx(self, vmx_path):
         """Get snapshot for a given vmx file.
diff --git a/modules/machinery/vsphere.py b/modules/machinery/vsphere.py
index eebd21aaa71..f81c8850f10 100644
--- a/modules/machinery/vsphere.py
+++ b/modules/machinery/vsphere.py
@@ -2,20 +2,18 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-import requests
 import logging
-import time
 import random
 import re
-
+import sys
+import time
 from datetime import datetime, timedelta
 
+import requests
+
 from lib.cuckoo.common.abstracts import Machinery
-from lib.cuckoo.common.exceptions import CuckooMachineError
-from lib.cuckoo.common.exceptions import CuckooDependencyError
-from lib.cuckoo.common.exceptions import CuckooCriticalError
 from lib.cuckoo.common.config import Config
+from lib.cuckoo.common.exceptions import CuckooCriticalError, CuckooDependencyError, CuckooMachineError
 
 try:
     from pyVim.connect import SmartConnection
@@ -23,6 +21,7 @@
     HAVE_PYVMOMI = True
 except ImportError:
     HAVE_PYVMOMI = False
+    sys.exit("Missed library: poetry run pip install pyvmomi")
 
 log = logging.getLogger(__name__)
 logging.getLogger("requests").setLevel(logging.WARNING)
@@ -32,6 +31,8 @@
 class vSphere(Machinery):
     """vSphere/ESXi machinery class based on pyVmomi Python SDK."""
 
+    module_name = "vsphere"
+
     # VM states
     RUNNING = "poweredOn"
     POWEROFF = "poweredOff"
@@ -40,15 +41,15 @@ class vSphere(Machinery):
 
     def __init__(self):
         if not HAVE_PYVMOMI:
-            raise CuckooDependencyError("Couldn't import pyVmomi. Please install " "using 'pip3 install --upgrade pyvmomi'")
+            raise CuckooDependencyError("Couldn't import pyVmomi. Please install using 'pip3 install --upgrade pyvmomi'")
 
-        super(vSphere, self).__init__()
+        super().__init__()
 
-    def _initialize(self, module_name):
+    def _initialize(self):
         """Read configuration.
         @param module_name: module name.
         """
-        super(vSphere, self)._initialize(module_name)
+        super(vSphere, self)._initialize()
 
         # Initialize random number generator
         random.seed()
@@ -64,22 +65,22 @@ def _initialize_check(self):
         if self.options.vsphere.host:
             self.connect_opts["host"] = self.options.vsphere.host
         else:
-            raise CuckooCriticalError("vSphere host address setting not found, " "please add it to the config file.")
+            raise CuckooCriticalError("vSphere host address setting not found, please add it to the config file")
 
         if self.options.vsphere.port:
             self.connect_opts["port"] = self.options.vsphere.port
         else:
-            raise CuckooCriticalError("vSphere port setting not found, " "please add it to the config file.")
+            raise CuckooCriticalError("vSphere port setting not found, please add it to the config file")
 
         if self.options.vsphere.user:
             self.connect_opts["user"] = self.options.vsphere.user
         else:
-            raise CuckooCriticalError("vSphere username setting not found, " "please add it to the config file.")
+            raise CuckooCriticalError("vSphere username setting not found, please add it to the config file")
 
         if self.options.vsphere.pwd:
             self.connect_opts["pwd"] = self.options.vsphere.pwd
         else:
-            raise CuckooCriticalError("vSphere password setting not found, " "please add it to the config file.")
+            raise CuckooCriticalError("vSphere password setting not found, please add it to the config file")
 
         # Workaround for PEP-0476 issues in recent Python versions
         if self.options.vsphere.unverified_ssl:
@@ -87,7 +88,7 @@ def _initialize_check(self):
 
             sslContext = ssl._create_unverified_context()
             self.connect_opts["sslContext"] = sslContext
-            log.warn("Turning off SSL certificate verification!")
+            log.warning("Turning off SSL certificate verification!")
 
         # Check that a snapshot is configured for each machine
         # and that it was taken in a powered-on state
@@ -96,30 +97,25 @@ def _initialize_check(self):
                 for machine in self.machines():
                     if not machine.snapshot:
                         raise CuckooCriticalError(
-                            "Snapshot name not specified " "for machine {0}, please add " "it to the config file.".format(machine.label)
+                            f"Snapshot name not specified for machine {machine.label}, please add it to the config file"
                         )
                     vm = self._get_virtual_machine_by_label(conn, machine.label)
                     if not vm:
                         raise CuckooCriticalError(
-                            "Unable to find machine {0} " "on vSphere host, please " "update your configuration.".format(machine.label)
+                            f"Unable to find machine {machine.label} on vSphere host, please update your configuration"
                         )
                     state = self._get_snapshot_power_state(vm, machine.snapshot)
                     if not state:
                         raise CuckooCriticalError(
-                            "Unable to find snapshot {0} "
-                            "for machine {1}, please "
-                            "update your configuration.".format(machine.snapshot, machine.label)
+                            f"Unable to find snapshot {machine.snapshot} for machine {machine.label}, please update your configuration"
                         )
                     if state != self.RUNNING:
                         raise CuckooCriticalError(
-                            "Snapshot for machine {0} not " "in powered-on state, please " "create one.".format(machine.label)
+                            f"Snapshot for machine {machine.label} not in powered-on state, please create one"
                         )
-
-        except CuckooCriticalError:
-            raise
-
         except Exception as e:
-            raise CuckooCriticalError("Couldn't connect to vSphere host")
+            logging.exception("Couldn't connect to vSphere host")
+            raise CuckooCriticalError(f"Couldn't connect to vSphere host: {e}")
 
         super(vSphere, self)._initialize_check()
 
@@ -134,7 +130,7 @@ def start(self, label):
             if vm:
                 self._revert_snapshot(vm, name)
             else:
-                raise CuckooMachineError("Machine {0} not found on host".format(label))
+                raise CuckooMachineError(f"Machine {label} not found on host")
 
     def stop(self, label):
         """Stop a machine.
@@ -146,14 +142,14 @@ def stop(self, label):
             if vm:
                 self._stop_virtual_machine(vm)
             else:
-                raise CuckooMachineError("Machine {0} not found on host".format(label))
+                raise CuckooMachineError(f"Machine {label} not found on host")
 
     def dump_memory(self, label, path):
         """Take a memory dump of a machine.
         @param path: path to where to store the memory dump
         @raise CuckooMachineError: if error taking the memory dump
         """
-        name = "cuckoo_memdump_{0}".format(random.randint(100000, 999999))
+        name = f"cuckoo_memdump_{random.randint(100000, 999999)}"
         with SmartConnection(**self.connect_opts) as conn:
             vm = self._get_virtual_machine_by_label(conn, label)
             if vm:
@@ -161,7 +157,7 @@ def dump_memory(self, label, path):
                 self._download_snapshot(conn, vm, name, path)
                 self._delete_snapshot(vm, name)
             else:
-                raise CuckooMachineError("Machine {0} not found on host".format(label))
+                raise CuckooMachineError(f"Machine {label} not found on host")
 
     def _list(self):
         """List virtual machines on vSphere host"""
@@ -178,7 +174,7 @@ def _status(self, label):
         with SmartConnection(**self.connect_opts) as conn:
             vm = self._get_virtual_machine_by_label(conn, label)
             if not vm:
-                raise CuckooMachineError("Machine {0} not found on server".format(label))
+                raise CuckooMachineError(f"Machine {label} not found on server")
 
             status = vm.runtime.powerState
             self.set_status(label, status)
@@ -190,16 +186,14 @@ def _get_virtual_machines(self, conn):
         def traverseDCFolders(conn, nodes, path=""):
             for node in nodes:
                 if hasattr(node, "childEntity"):
-                    for child, childpath in traverseDCFolders(conn, node.childEntity, path + node.name + "/"):
-                        yield child, childpath
+                    yield from traverseDCFolders(conn, node.childEntity, f"{path}{node.name}/")
                 else:
                     yield node, path + node.name
 
         def traverseVMFolders(conn, nodes):
             for node in nodes:
                 if hasattr(node, "childEntity"):
-                    for child in traverseVMFolders(conn, node.childEntity):
-                        yield child
+                    yield from traverseVMFolders(conn, node.childEntity)
                 else:
                     yield node
 
@@ -207,8 +201,9 @@ def traverseVMFolders(conn, nodes):
 
         for dc, dcpath in traverseDCFolders(conn, conn.content.rootFolder.childEntity):
             for vm in traverseVMFolders(conn, dc.vmFolder.childEntity):
-                self.VMtoDC[vm.summary.config.name] = dcpath
-                yield vm
+                if hasattr(vm.summary.config, "name"):
+                    self.VMtoDC[vm.summary.config.name] = dcpath
+                    yield vm
 
     def _get_virtual_machine_by_label(self, conn, label):
         """Return the named VirtualMachine managed object"""
@@ -217,7 +212,7 @@ def _get_virtual_machine_by_label(self, conn, label):
 
     def _get_snapshot_by_name(self, vm, name):
         """Return the named VirtualMachineSnapshot managed object for
-           a virtual machine"""
+        a virtual machine"""
         root = vm.snapshot.rootSnapshotList
         sg = (ss.snapshot for ss in self._traverseSnapshots(root) if ss.name == name)
         return next(sg, None)
@@ -230,38 +225,36 @@ def _get_snapshot_power_state(self, vm, name):
 
     def _create_snapshot(self, vm, name):
         """Create named snapshot of virtual machine"""
-        log.info("Creating snapshot {0} for machine {1}".format(name, vm.summary.config.name))
+        log.info("Creating snapshot %s for machine %s", name, vm.summary.config.name)
         task = vm.CreateSnapshot_Task(name=name, description="Created by Cuckoo sandbox", memory=True, quiesce=False)
         try:
             self._wait_task(task)
         except CuckooMachineError as e:
-            raise CuckooMachineError("CreateSnapshot: {0}".format(e))
+            raise CuckooMachineError(f"CreateSnapshot: {e}")
 
     def _delete_snapshot(self, vm, name):
         """Remove named snapshot of virtual machine"""
         snapshot = self._get_snapshot_by_name(vm, name)
-        if snapshot:
-            log.info("Removing snapshot {0} for machine {1}".format(name, vm.summary.config.name))
-            task = snapshot.RemoveSnapshot_Task(removeChildren=True)
-            try:
-                self._wait_task(task)
-            except CuckooMachineError as e:
-                log.error("RemoveSnapshot: {0}".format(e))
-        else:
-            raise CuckooMachineError("Snapshot {0} for machine {1} not found".format(name, vm.summary.config.name))
+        if not snapshot:
+            raise CuckooMachineError(f"Snapshot {name} for machine {vm.summary.config.name} not found")
+        log.info("Removing snapshot %s for machine %s", name, vm.summary.config.name)
+        task = snapshot.RemoveSnapshot_Task(removeChildren=True)
+        try:
+            self._wait_task(task)
+        except CuckooMachineError as e:
+            log.error("RemoveSnapshot: %s", e)
 
     def _revert_snapshot(self, vm, name):
         """Revert virtual machine to named snapshot"""
         snapshot = self._get_snapshot_by_name(vm, name)
-        if snapshot:
-            log.info("Reverting machine {0} to snapshot {1}".format(vm.summary.config.name, name))
-            task = snapshot.RevertToSnapshot_Task()
-            try:
-                self._wait_task(task)
-            except CuckooMachineError as e:
-                raise CuckooMachineError("RevertToSnapshot: {0}".format(e))
-        else:
-            raise CuckooMachineError("Snapshot {0} for machine {1} not found".format(name, vm.summary.config.name))
+        if not snapshot:
+            raise CuckooMachineError(f"Snapshot {name} for machine {vm.summary.config.name} not found")
+        log.info("Reverting machine %s to snapshot %s", vm.summary.config.name, name)
+        task = snapshot.RevertToSnapshot_Task()
+        try:
+            self._wait_task(task)
+        except CuckooMachineError as e:
+            raise CuckooMachineError(f"RevertToSnapshot: {e}")
 
     def _download_snapshot(self, conn, vm, name, path):
         """Download snapshot file from host to local path"""
@@ -269,7 +262,7 @@ def _download_snapshot(self, conn, vm, name, path):
         # Get filespec to .vmsn file of named snapshot
         snapshot = self._get_snapshot_by_name(vm, name)
         if not snapshot:
-            raise CuckooMachineError("Snapshot {0} for machine {1} not found".format(name, vm.summary.config.name))
+            raise CuckooMachineError(f"Snapshot {name} for machine {vm.summary.config.name} not found")
 
         memorykey = datakey = filespec = None
         for s in vm.layoutEx.snapshot:
@@ -279,7 +272,7 @@ def _download_snapshot(self, conn, vm, name, path):
                 break
 
         for f in vm.layoutEx.file:
-            if f.key == memorykey and (f.type == "snapshotMemory" or f.type == "suspendMemory"):
+            if f.key == memorykey and f.type in ("snapshotMemory", "suspendMemory"):
                 filespec = f.name
                 break
 
@@ -292,7 +285,7 @@ def _download_snapshot(self, conn, vm, name, path):
         if not filespec:
             raise CuckooMachineError("Could not find memory snapshot file")
 
-        log.info("Downloading memory dump {0} to {1}".format(filespec, path))
+        log.info("Downloading memory dump %s to %s", filespec, path)
 
         # Parse filespec to get datastore and file path
         datastore, filepath = re.match(r"\[([^\]]*)\] (.*)", filespec).groups()
@@ -300,7 +293,7 @@ def _download_snapshot(self, conn, vm, name, path):
         # Construct URL request
         params = {"dsName": datastore, "dcPath": self.VMtoDC.get(vm.summary.config.name, "ha-datacenter")}
         headers = {"Cookie": conn._stub.cookie}
-        url = "https://{0}:{1}/folder/{2}".format(self.connect_opts["host"], self.connect_opts["port"], filepath)
+        url = f"https://{self.connect_opts['host']}:{self.connect_opts['port']}/folder/{filepath}"
 
         # Stream download to specified local path
         try:
@@ -313,16 +306,16 @@ def _download_snapshot(self, conn, vm, name, path):
                     localfile.write(chunk)
 
         except Exception as e:
-            raise CuckooMachineError("Error downloading memory dump {0}: {1}".format(filespec, e))
+            raise CuckooMachineError(f"Error downloading memory dump {filespec}: {e}")
 
     def _stop_virtual_machine(self, vm):
         """Power off a virtual machine"""
-        log.info("Powering off virtual machine {0}".format(vm.summary.config.name))
+        log.info("Powering off virtual machine %s", vm.summary.config.name)
         task = vm.PowerOffVM_Task()
         try:
             self._wait_task(task)
         except CuckooMachineError as e:
-            log.error("PowerOffVM: {0}".format(e))
+            log.error("PowerOffVM: %s", e)
 
     def _wait_task(self, task):
         """Wait for a task to complete with timeout"""
@@ -345,6 +338,5 @@ def _traverseSnapshots(self, root):
         """Recursive depth-first traversal of snapshot tree"""
         for node in root:
             if len(node.childSnapshotList) > 0:
-                for child in self._traverseSnapshots(node.childSnapshotList):
-                    yield child
+                yield from self._traverseSnapshots(node.childSnapshotList)
             yield node
diff --git a/modules/machinery/xenserver.py b/modules/machinery/xenserver.py
index 8ccb60dd913..d74c394609e 100644
--- a/modules/machinery/xenserver.py
+++ b/modules/machinery/xenserver.py
@@ -6,13 +6,11 @@
 XenServer machinery.
 """
 
-from __future__ import absolute_import
-import threading
 import logging
+import threading
 
 from lib.cuckoo.common.abstracts import Machinery
-from lib.cuckoo.common.exceptions import CuckooMachineError
-from lib.cuckoo.common.exceptions import CuckooDependencyError
+from lib.cuckoo.common.exceptions import CuckooDependencyError, CuckooMachineError
 
 try:
     import XenAPI
@@ -37,9 +35,7 @@ class XenServerMachinery(Machinery):
     ABORTED = "Suspended"
 
     def _initialize_check(self):
-        """Check XenServer configuration, initialize a Xen API connection, and
-        verify machine validity.
-        """
+        """Check XenServer configuration, initialize a Xen API connection, and verify machine validity."""
 
         self._sessions = {}
 
@@ -47,13 +43,13 @@ def _initialize_check(self):
             raise CuckooDependencyError("Unable to import XenAPI")
 
         if not self.options.xenserver.user:
-            raise CuckooMachineError("XenServer username missing, please add " "it to xenserver.conf.")
+            raise CuckooMachineError("XenServer username missing, please add it to xenserver.conf")
 
         if not self.options.xenserver.password:
-            raise CuckooMachineError("XenServer password missing, please add " "it to xenserver.conf")
+            raise CuckooMachineError("XenServer password missing, please add it to xenserver.conf")
 
         if not self.options.xenserver.url:
-            raise CuckooMachineError("XenServer url missing, please add it to " "xenserver.conf")
+            raise CuckooMachineError("XenServer url missing, please add it to xenserver.conf")
 
         self._make_xenapi_session()
 
@@ -71,7 +67,7 @@ def _initialize_check(self):
     @property
     def session(self):
         tid = threading.current_thread().ident
-        sess = self._sessions.get(tid, None)
+        sess = self._sessions.get(tid)
         if sess is None:
             sess = self._make_xenapi_session(tid)
         return sess
@@ -80,19 +76,16 @@ def _make_xenapi_session(self, tid=None):
         tid = tid or threading.current_thread().ident
         try:
             sess = XenAPI.Session(self.options.xenserver.url)
-        except:
+        except Exception:
             raise CuckooMachineError(
-                "Could not connect to XenServer: invalid " "or incorrect url, please ensure the url " "is correct in xenserver.conf"
+                "Could not connect to XenServer: invalid or incorrect url, please ensure the url is correct in xenserver.conf"
             )
 
         try:
             sess.xenapi.login_with_password(self.options.xenserver.user, self.options.xenserver.password)
-        except:
+        except Exception:
             raise CuckooMachineError(
-                "Could not connect to XenServer: "
-                "incorrect credentials, please ensure "
-                "the user and password are correct in "
-                "xenserver.conf"
+                "Could not connect to XenServer: incorrect credentials, please ensure the user and password are correct in xenserver.conf"
             )
         self._sessions[tid] = sess
         return sess
@@ -127,16 +120,16 @@ def _check_vm(self, uuid):
             ref = self._get_vm_ref(uuid)
             vm = self._get_vm_record(ref)
         except XenAPI.Failure as e:
-            raise CuckooMachineError("Vm not found: %s: %s" % (uuid, e.details[0]))
+            raise CuckooMachineError(f"Vm not found: {uuid}: {e.details[0]}")
 
         if vm["is_a_snapshot"]:
-            raise CuckooMachineError("Vm is a snapshot: %s" % uuid)
+            raise CuckooMachineError(f"Vm is a snapshot: {uuid}")
 
         if vm["is_a_template"]:
-            raise CuckooMachineError("Vm is a template: %s" % uuid)
+            raise CuckooMachineError(f"Vm is a template: {uuid}")
 
         if vm["is_control_domain"]:
-            raise CuckooMachineError("Vm is a control domain: %s" % uuid)
+            raise CuckooMachineError(f"Vm is a control domain: {uuid}")
 
         return (ref, vm)
 
@@ -150,20 +143,20 @@ def _check_snapshot(self, vm_uuid, snapshot_uuid):
         try:
             snapshot_ref = self._get_vm_ref(snapshot_uuid)
             snapshot = self._get_vm_record(snapshot_ref)
-        except:
-            raise CuckooMachineError("Snapshot not found: %s" % snapshot_uuid)
+        except Exception:
+            raise CuckooMachineError(f"Snapshot not found: {snapshot_uuid}")
 
         if not snapshot["is_a_snapshot"]:
-            raise CuckooMachineError("Invalid snapshot: %s" % snapshot_uuid)
+            raise CuckooMachineError(f"Invalid snapshot: {snapshot_uuid}")
 
         try:
             parent = self._get_vm_record(snapshot["snapshot_of"])
-        except:
-            raise CuckooMachineError("Invalid snapshot: %s" % snapshot_uuid)
+        except Exception:
+            raise CuckooMachineError(f"Invalid snapshot: {snapshot_uuid}")
 
         parent_uuid = parent["uuid"]
         if parent_uuid != vm_uuid:
-            raise CuckooMachineError("Snapshot does not belong to specified " "vm: %s" % snapshot_uuid)
+            raise CuckooMachineError(f"Snapshot does not belong to specified vm: {snapshot_uuid}")
 
     def _check_disks_reset(self, vm):
         """Check whether each attached disk is set to reset on boot.
@@ -173,7 +166,7 @@ def _check_disks_reset(self, vm):
         for ref in vm["VBDs"]:
             try:
                 vbd = self.session.xenapi.VBD.get_record(ref)
-            except:
+            except Exception:
                 log.warning("Invalid VBD for vm %s: %s", vm["uuid"], ref)
                 continue
 
@@ -181,14 +174,14 @@ def _check_disks_reset(self, vm):
                 vdi_ref = vbd["VDI"]
                 try:
                     vdi = self.session.xenapi.VDI.get_record(vdi_ref)
-                except:
+                except Exception:
                     log.warning("Invalid VDI for vm %s: %s", vm["uuid"], vdi_ref)
                     continue
 
-                if vdi["on_boot"] != "reset" and vdi["read_only"] is False:
+                if vdi["on_boot"] != "reset" and not vdi["read_only"]:
                     raise CuckooMachineError(
-                        "Vm %s contains invalid VDI %s: disk is not reset on "
-                        "boot. Please set the on-boot parameter to 'reset'." % (vm["uuid"], vdi["uuid"])
+                        f"Vm {vm['uuid']} contains invalid VDI {vdi['uuid']}: disk is not reset on "
+                        "boot. Please set the on-boot parameter to 'reset'"
                     )
 
     def _snapshot_from_vm_uuid(self, uuid):
@@ -215,7 +208,7 @@ def start(self, label):
         vm = self._get_vm_record(vm_ref)
 
         if not self._is_halted(vm):
-            raise CuckooMachineError("Vm is already running: %s", label)
+            raise CuckooMachineError(f"Vm is already running: {label}")
 
         snapshot = self._snapshot_from_vm_uuid(label)
         if snapshot:
@@ -225,19 +218,19 @@ def start(self, label):
                 self.session.xenapi.VM.revert(snapshot_ref)
                 log.debug("Revert completed for vm %s", label)
             except XenAPI.Failure as e:
-                raise CuckooMachineError("Unable to revert vm %s: %s" % (label, e.details[0]))
+                raise CuckooMachineError(f"Unable to revert vm {label}: {e.details[0]}")
 
             try:
                 log.debug("Resuming reverted vm %s", label)
                 self.session.xenapi.VM.resume(vm_ref, False, False)
             except XenAPI.Failure as e:
-                raise CuckooMachineError("Unable to resume vm %s: %s" % (label, e.details[0]))
+                raise CuckooMachineError(f"Unable to resume vm {label}: {e.details[0]}")
         else:
             log.debug("No snapshot found for vm, booting: %s", label)
             try:
                 self.session.xenapi.VM.start(vm_ref, False, False)
             except XenAPI.Failure as e:
-                raise CuckooMachineError("Unable to start vm %s: %s" % (label, e.details[0]))
+                raise CuckooMachineError(f"Unable to start vm {label}: {e.details[0]}")
 
         log.debug("Started vm: %s", label)
 
@@ -254,7 +247,7 @@ def stop(self, label=None):
             try:
                 self.session.xenapi.VM.hard_shutdown(ref)
             except XenAPI.Failure as e:
-                raise CuckooMachineError("Error shutting down virtual machine:" " %s: %s" % (label, e.details[0]))
+                raise CuckooMachineError(f"Error shutting down virtual machine: {label}: {e.details[0]}")
 
     def _list(self):
         """List available virtual machines.
@@ -266,7 +259,7 @@ def _list(self):
             for ref in self.session.xenapi.VM.get_all():
                 vm = self._get_vm_record(ref)
                 vm_list.append(vm["uuid"])
-        except:
+        except Exception:
             raise CuckooMachineError("Cannot list domains")
         else:
             return vm_list
@@ -278,6 +271,4 @@ def _status(self, label):
         """
 
         ref = self._get_vm_ref(label)
-        state = self._get_vm_power_state(ref)
-
-        return state
+        return self._get_vm_power_state(ref)
diff --git a/modules/processing/CAPE.py b/modules/processing/CAPE.py
index 824f17a41b9..cc4671eed89 100644
--- a/modules/processing/CAPE.py
+++ b/modules/processing/CAPE.py
@@ -12,532 +12,424 @@
 # You should have received a copy of the GNU General Public License
 # along with this program.  If not, see <http://www.gnu.org/licenses/>.
 
-from __future__ import absolute_import
-import os
-import shutil
+import collections
 import json
 import logging
-from datetime import datetime
-try:
-    import re2 as re
-except ImportError:
-    import re
-import hashlib
-import imp
+import os
+import timeit
+from contextlib import suppress
+from pathlib import Path
 
 from lib.cuckoo.common.abstracts import Processing
-from lib.cuckoo.common.constants import CUCKOO_ROOT
-from lib.cuckoo.common.objects import File
+from lib.cuckoo.common.cape_utils import cape_name_from_yara, is_duplicated_binary, pe_map, static_config_parsers
 from lib.cuckoo.common.config import Config
-from lib.cuckoo.common.cape_utils import pe_map, upx_harness, BUFSIZE, static_config_parsers, plugx_parser
-
-try:
-    import pydeep
-    HAVE_PYDEEP = True
-except ImportError:
-    HAVE_PYDEEP = False
-
+from lib.cuckoo.common.integrations.file_extra_info import DuplicatesType, static_file_info
+from lib.cuckoo.common.objects import File
+from lib.cuckoo.common.path_utils import path_exists
+from lib.cuckoo.common.replace_patterns_utils import _clean_path
+from lib.cuckoo.common.utils import (
+    add_family_detection,
+    convert_to_printable_and_truncate,
+    get_clamav_consensus,
+    make_bytes,
+    texttypes,
+    wide2str,
+)
 
 processing_conf = Config("processing")
+integrations_conf = Config("integrations")
+externalservices_conf = Config("externalservices")
 
 HAVE_FLARE_CAPA = False
 # required to not load not enabled dependencies
-if processing_conf.flare_capa.enabled and processing_conf.flare_capa.on_demand is False:
-    from lib.cuckoo.common.integrations.capa import flare_capa_details, HAVE_FLARE_CAPA
-
-
-ssdeep_threshold = 90
-
-# CAPE output types
-# To correlate with cape\cape.h in monitor
-
-PROCDUMP = 0
-COMPRESSION = 1
-INJECTION_PE = 3
-INJECTION_SHELLCODE = 4
-INJECTION_SECTION = 5
-UNPACKED_PE = 8
-UNPACKED_SHELLCODE = 9
-PLUGX_PAYLOAD = 0x10
-PLUGX_CONFIG = 0x11
-EVILGRAB_PAYLOAD = 0x14
-EVILGRAB_DATA = 0x15
-SEDRECO_DATA = 0x20
-URSNIF_CONFIG = 0x24
-URSNIF_PAYLOAD = 0x25
-CERBER_CONFIG = 0x30
-CERBER_PAYLOAD = 0x31
-HANCITOR_CONFIG = 0x34
-HANCITOR_PAYLOAD = 0x35
-QAKBOT_CONFIG = 0x38
-QAKBOT_PAYLOAD = 0x39
-ICEDID_LOADER = 0x40
-ICEDID_BOT = 0x41
-SCRIPT_DUMP = 0x65
-DATADUMP = 0x66
-REGDUMP = 0x67
-MOREEGGSJS_PAYLOAD = 0x68
-MOREEGGSBIN_PAYLOAD = 0x69
-UPX = 0x1000
+if integrations_conf.flare_capa.enabled and not integrations_conf.flare_capa.on_demand:
+    from lib.cuckoo.common.integrations.capa import HAVE_FLARE_CAPA, flare_capa_details
 
-log = logging.getLogger(__name__)
+MISP_HASH_LOOKUP = False
+if externalservices_conf.misp.enabled:
+    with suppress(Exception):
+        from lib.cuckoo.common.integrations.misp import MISP_HASH_LOOKUP, misp_hash_lookup
 
-code_mapping = {
-    PLUGX_PAYLOAD: "PlugX Payload",
-    EVILGRAB_PAYLOAD: "EvilGrab Payload",
-    CERBER_PAYLOAD: "Cerber Payload",
-    QAKBOT_PAYLOAD: "QakBot Payload",
-    UPX: "Unpacked PE Image",
-    MOREEGGSBIN_PAYLOAD: "More_Eggs Binary Payload",
-}
+# CAPE output types. To correlate with cape\cape.h in monitor
+COMPRESSION = 2
+TYPE_STRING = 0x100
 
-name_mapping = {
-    QAKBOT_PAYLOAD: "QakBot",
-    MOREEGGSBIN_PAYLOAD: "MoreEggs",
-}
+log = logging.getLogger(__name__)
 
-config_mapping = {
-    QAKBOT_PAYLOAD: "QakBot",
+code_mapping = {
+    # UPX
+    0x1000: "Unpacked PE Image",
+    0x6A: "AMSI Buffer",
+    0x6B: "AMSI Stream",
 }
 
 inject_map = {
-    INJECTION_PE: "Injected PE Image",
-    INJECTION_SHELLCODE: "Injected Shellcode/Data",
+    3: "Injected PE Image",
+    4: "Injected Shellcode/Data",
 }
 
-sedreco_map = {
-    "0x0": "Timer1",
-    "0x1": "Timer2",
-    "0x2": "Computer Name",
-    "0x3": "C&C1",
-    "0x4": "C&C2",
-    "0x5": "Operation Name",
-    "0x6": "Keylogger MaxBuffer",
-    "0x7": "Keylogger MaxTimeout",
-    "0x8": "Keylogger Flag",
-    "0x9": "C&C3",
+unpack_map = {
+    8: "Unpacked PE Image",
+    9: "Unpacked Shellcode",
 }
 
-qakbot_map = {"10": "Botnet name", "11": "Number of C2 servers", "47": "Bot ID"}
-
-qakbot_id_map = {
-    b"22": "#1",
-    b"23": "#2",
-    b"24": "#3",
-    b"25": "#4",
-    b"26": "#5",
-}
 
 class CAPE(Processing):
     """CAPE output file processing."""
 
-    def detect2pid(self, pid, cape_name):
-        self.results.setdefault("detections2pid", {})
-        self.results["detections2pid"].setdefault(str(pid), list())
-        self.results["detections2pid"][str(pid)].append(cape_name)
-
-    def upx_unpack(self, file_data):
-        unpacked_file = upx_harness(file_data)
-        if unpacked_file and os.path.exists(unpacked_file):
-            for unpacked_hit in File(unpacked_file).get_yara(category="CAPE"):
-                if unpacked_hit["name"] == "UPX":
-                    # Failed to unpack
-                    log.info("CAPE: Failed to unpack UPX")
-                    break
-            if not os.path.exists(self.CAPE_path):
-                os.makedirs(self.CAPE_path)
-            newname = os.path.join(self.CAPE_path, os.path.basename(unpacked_file))
-            if os.path.exists(unpacked_file):
-                shutil.move(unpacked_file, newname)
-                # Recursive process of unpacked file
-                upx_extract = self.process_file(newname, True, {})
-                if upx_extract and upx_extract["type"]:
-                    upx_extract["cape_type"] = "UPX-extracted "
-                    type_strings = upx_extract["type"].split()
-                    if type_strings[0] in ("PE32+", "PE32"):
-                        upx_extract["cape_type"] += pe_map[type_strings[0]]
-                        if type_strings[2][0] == "(DLL)":
-                            upx_extract["cape_type"] += "DLL"
-                        else:
-                            upx_extract["cape_type"] += "executable"
+    key = "CAPE"
 
-    def process_file(self, file_path, append_file, metadata={}):
-        """Process file.
-        @return: file_info
-        """
-
-        config = {}
-        cape_name = ""
+    def add_family_detections(self, file_info, cape_names):
+        for cape_name in cape_names:
+            if cape_name != "UPX" and cape_name:
+                if processing_conf.detections.yara:
+                    add_family_detection(self.results, cape_name, "Yara", file_info["sha256"])
+            if file_info.get("pid"):
+                self.detect2pid(str(file_info["pid"]), cape_name)
 
+    def detect2pid(self, pid: str, cape_name: str):
+        self.results.setdefault("detections2pid", {}).setdefault(pid, [])
+        if cape_name not in self.results["detections2pid"][pid]:
+            self.results["detections2pid"][pid].append(cape_name)
 
-        if not os.path.exists(file_path):
-            return
-
-        buf = self.options.get("buffer", BUFSIZE)
-        file_info, pefile_object = File(file_path, metadata.get("metadata", "")).get_all()
-        if pefile_object:
-                self.results.setdefault("pefiles", {})
-                self.results["pefiles"].setdefault(file_info["sha256"], pefile_object)
-
-        # Get the file data
-        try:
-            with open(file_info["path"], "rb") as file_open:
-                file_data = file_open.read()
-        except UnicodeDecodeError as e:
-            with open(file_info["path"], "rb") as file_open:
-                file_data = file_open.read()
-
-        if metadata.get("pids", False):
-            if len(metadata["pids"]) == 1:
-                file_info["pid"] = metadata["pids"][0]
-            else:
-                file_info["pid"] = ",".join(metadata["pids"])
+    @staticmethod
+    def ensure_config_key(cape_name, config):
+        """Make sure that the cape_name is the top-level key of the config.
+        Return the resulting config.
+        """
+        if cape_name not in config:
+            config = {cape_name: config}
+        return config
+
+    def _cape_type_string(self, type_strings, file_info, append_file):
+        if file_info["cape_type_code"] in code_mapping:
+            file_info["cape_type"] = code_mapping[file_info["cape_type_code"]]
+            append_file = True
+        if any(i in type_strings for i in ("PE32+", "PE32")):
+            if not file_info["cape_type"]:
+                return append_file
+            pe_type = "PE32+" if "PE32+" in type_strings else "PE32"
+            file_info["cape_type"] += pe_map[pe_type]
+            file_info["cape_type"] += "DLL" if type_strings[2] == ("(DLL)") else "executable"
+        elif type_strings[0] == "MS-DOS":
+            file_info["cape_type"] = "DOS MZ image: executable"
+        else:
+            file_info["cape_type"] = file_info["cape_type"] or "unknown"
+        return append_file
+
+    def _metadata_processing(self, metadata, file_info, append_file):
+        type_string = ""
+        file_info["cape_type_code"] = 0
+        file_info["cape_type"] = ""
 
         metastrings = metadata.get("metadata", "").split(";?")
         if len(metastrings) > 2:
-            file_info["process_path"] = metastrings[1]
-            file_info["process_name"] = metastrings[1].split("\\")[-1]
+            file_info["process_path"] = _clean_path(metastrings[1], self.options.replace_patterns)
+            file_info["process_name"] = metastrings[1].rsplit("\\", 1)[-1]
         if len(metastrings) > 3:
-            file_info["module_path"] = metastrings[2]
+            file_info["module_path"] = _clean_path(metastrings[2], self.options.replace_patterns)
 
-        file_info["cape_type_code"] = 0
-        file_info["cape_type"] = ""
-        if metastrings != "":
-            try:
-                file_info["cape_type_code"] = int(metastrings[0])
-            except Exception as e:
-                pass
-            if file_info["cape_type_code"] == COMPRESSION:
+        if "pids" in metadata:
+            file_info["pid"] = metadata["pids"][0] if len(metadata["pids"]) == 1 else ",".join(metadata["pids"])
+
+        if metastrings and metastrings[0] and metastrings[0].isdigit():
+            file_info["cape_type_code"] = int(metastrings[0])
+            if file_info["cape_type_code"] == TYPE_STRING:
+                if len(metastrings) > 4:
+                    type_string = metastrings[3]
+
+            elif file_info["cape_type_code"] == COMPRESSION:
                 file_info["cape_type"] = "Decompressed PE Image"
 
-            if file_info["cape_type_code"] in inject_map:
+            elif file_info["cape_type_code"] in inject_map:
                 file_info["cape_type"] = inject_map[file_info["cape_type_code"]]
                 if len(metastrings) > 4:
                     file_info["target_path"] = metastrings[3]
-                    file_info["target_process"] = metastrings[3].split("\\")[-1]
+                    file_info["target_process"] = metastrings[3].rsplit("\\", 1)[-1]
                     file_info["target_pid"] = metastrings[4]
 
-            if file_info["cape_type_code"] == INJECTION_SECTION:
-                file_info["cape_type"] = "Injected Section"
-                if len(metastrings) > 4:
-                    file_info["section_handle"] = metastrings[4]
-
-            simple_cape_type_map = {
-                UNPACKED_PE: "Unpacked PE Image",
-                UNPACKED_SHELLCODE: "Unpacked Shellcode",
-            }
-            if file_info["cape_type_code"] in simple_cape_type_map:
-                file_info["cape_type"] = simple_cape_type_map[file_info["cape_type_code"]]
+            elif file_info["cape_type_code"] in unpack_map:
+                file_info["cape_type"] = unpack_map[file_info["cape_type_code"]]
                 if len(metastrings) > 4:
                     file_info["virtual_address"] = metastrings[3]
 
             type_strings = file_info["type"].split()
-            if type_strings[0] in ("PE32+", "PE32"):
-                file_info["cape_type"] += pe_map[type_strings[0]]
-                if type_strings[2] == ("(DLL)"):
-                    file_info["cape_type"] += "DLL"
-                else:
-                    file_info["cape_type"] += "executable"
-            # PlugX
-            if file_info["cape_type_code"] == PLUGX_CONFIG:
-                file_info["cape_type"] = "PlugX Config"
-                if plugx_parser:
-                    plugx_config = plugx_parser.parse_config(file_data, len(file_data))
-                    if plugx_config:
-                        cape_name = "PlugX"
-                        config[cape_name] = dict()
-                        for key, value in plugx_config.items():
-                            config[cape_name].update({key: [value]})
-                    else:
-                        log.error("CAPE: PlugX config parsing failure - size many not be handled.")
-                    append_file = False
-            if file_info["cape_type_code"] in code_mapping:
-                file_info["cape_type"] = code_mapping[file_info["cape_type_code"]]
-                if file_info["cape_type_code"] in config_mapping:
-                    file_info["cape_type"] = code_mapping[file_info["cape_type_code"]]
-
-                type_strings = file_info["type"].split()
-                if type_strings[0] in ("PE32+", "PE32"):
-                    file_info["cape_type"] += pe_map[type_strings[0]]
-                    if type_strings[2] == ("(DLL)"):
-                        file_info["cape_type"] += "DLL"
-                    else:
-                        file_info["cape_type"] += "executable"
-
-                if file_info["cape_type_code"] in name_mapping:
-                    cape_name = name_mapping[file_info["cape_type_code"]]
-
-                append_file = True
-
-            if file_info["cape_type_code"] == EVILGRAB_DATA:
-                cape_name = "EvilGrab"
-                file_info["cape_type"] = "EvilGrab Data"
-                if file_info["size"] == 256 or file_info["size"] == 260:
-                    config[cape_name].update({"filepath": [format(file_data)]})
-                if file_info["size"] > 0x1000:
-                    append_file = True
-                else:
-                    append_file = False
-            if file_info["cape_type_code"] == SEDRECO_DATA:
-                cape_name = "Sedreco"
-                config[cape_name] = dict()
-                config[cape_name]["cape_type"] = "Sedreco Config"
-                if len(metastrings) > 4:
-                    SedrecoConfigIndex = metastrings[4]
-                    if SedrecoConfigIndex in sedreco_map:
-                        ConfigItem = sedreco_map[SedrecoConfigIndex]
-                    else:
-                        ConfigItem = "Unknown"
-
-                ConfigData = format(file_data)
-                if ConfigData:
-                    config[cape_name].update({ConfigItem: [ConfigData]})
-                append_file = False
+            append_file = self._cape_type_string(type_strings, file_info, append_file)
 
-            if file_info["cape_type_code"] == CERBER_CONFIG:
-                file_info["cape_type"] = "Cerber Config"
-                cape_name = "Cerber"
-                config[cape_name] = dict()
-                config["cape_type"] = "Cerber Config"
-
-                parsed = json.loads(file_data.rstrip(b"\0"))
-                config[cape_name].update({"JSON Data": [json.dumps(parsed, indent=4, sort_keys=True)]})
-                append_file = True
-
-            if file_info["cape_type_code"] == URSNIF_PAYLOAD:
-                cape_name = "Ursnif"
-                config[cape_name] = dict()
-                config[cape_name]["cape_type"] = "Ursnif Payload"
-
-                file_info["cape_type"] = "Ursnif Payload"
-            if file_info["cape_type_code"] == URSNIF_CONFIG:
-                file_info["cape_type"] = "Ursnif Config"
-                cape_name = "Ursnif"
-                malwareconfig_loaded = False
-                try:
-                    malwareconfig_parsers = os.path.join(CUCKOO_ROOT, "modules", "processing", "parsers", "CAPE")
-                    file, pathname, description = imp.find_module(cape_name, [malwareconfig_parsers])
-                    module = imp.load_module(cape_name, file, pathname, description)
-                    malwareconfig_loaded = True
-                    log.debug("CAPE: Imported malwareconfig.com parser %s", cape_name)
-                except ImportError:
-                    log.debug("CAPE: malwareconfig.com parser: No module named %s", cape_name)
-                if malwareconfig_loaded:
-                    try:
-                        malwareconfig_config = module.config(file_data)
-                        if malwareconfig_config:
-                            config[cape_name] = dict()
-                            config[cape_name]["cape_type"] = "Ursnif Config"
-                            if isinstance(malwareconfig_config, list):
-                                for (key, value) in malwareconfig_config[0].items():
-                                    config[cape_name].update({key: [value]})
-                            elif isinstance(malwareconfig_config, dict):
-                                for (key, value) in malwareconfig_config.items():
-                                    config[cape_name].update({key: [value]})
-                    except Exception as e:
-                        log.error("CAPE: malwareconfig parsing error with %s: %s", cape_name, e)
-                append_file = False
-            # Hancitor
-            if file_info["cape_type_code"] == HANCITOR_PAYLOAD:
-                cape_name = "Hancitor"
-                config[cape_name] = dict()
-                config[cape_name]["cape_type"] = "Hancitor Payload"
-                file_info["cape_type"] = "Hancitor Payload"
-            if file_info["cape_type_code"] == HANCITOR_CONFIG:
-                cape_name = "Hancitor"
-                file_info["cape_type"] = "Hancitor Config"
-                ConfigStrings = file_data.split(b"\0")
-                ConfigStrings = [_f for _f in ConfigStrings if _f]
-                ConfigItem = "Campaign Code"
-                config[cape_name] = dict()
-                config[cape_name]["cape_type"] = "Hancitor Config"
-                config[cape_name].update({ConfigItem: [ConfigStrings[0]]})
-                GateURLs = ConfigStrings[1].split(b"|")
-                for index, value in enumerate(GateURLs):
-                    ConfigItem = "Gate URL " + str(index + 1)
-                    config[cape_name].update({ConfigItem: [value]})
-                append_file = False
-            # QakBot
-            if file_info["cape_type_code"] == QAKBOT_CONFIG:
-                file_info["cape_type"] = "QakBot Config"
-                cape_name = "QakBot"
-                config[cape_name] = dict()
-                config[cape_name]["cape_type"] = "QakBot Config"
-                config_tmp = static_config_parsers(cape_name, file_data)
-                if config_tmp and config_tmp[cape_name]:
-                    config.update(config_tmp)
-                append_file = False
-            # Attempt to decrypt script dump
-            if file_info["cape_type_code"] == SCRIPT_DUMP:
-                data = file_data.decode("utf-16").replace("\x00", "")
-                cape_name = "ScriptDump"
-                malwareconfig_loaded = False
-                try:
-                    malwareconfig_parsers = os.path.join(CUCKOO_ROOT, "modules", "processing", "parsers", "CAPE")
-                    file, pathname, description = imp.find_module(cape_name, [malwareconfig_parsers])
-                    module = imp.load_module(cape_name, file, pathname, description)
-                    malwareconfig_loaded = True
-                    log.debug("CAPE: Imported malwareconfig.com parser %s", cape_name)
-                except ImportError:
-                    log.debug("CAPE: malwareconfig.com parser: No module named %s", cape_name)
-                if malwareconfig_loaded:
-                    try:
-                        script_data = module.config(self, data)
-                        if script_data and "more_eggs" in script_data["type"]:
-                            bindata = script_data["data"]
-                            sha256 = hashlib.sha256(bindata).hexdigest()
-                            filepath = os.path.join(self.CAPE_path, sha256)
-                            tmpstr = file_info["pid"]
-                            tmpstr += "," + file_info["process_path"]
-                            tmpstr += "," + file_info["module_path"]
-                            if "text" in script_data["datatype"]:
-                                file_info["cape_type"] = "MoreEggsJS"
-                                outstr = str(MOREEGGSJS_PAYLOAD) + "," + tmpstr + "\n"
-                                with open(filepath + "_info.txt", "w") as infofd:
-                                    infofd.write(outstr)
-                                with open(filepath, "w") as cfile:
-                                    cfile.write(bindata)
-                            elif "binary" in script_data["datatype"]:
-                                file_info["cape_type"] = "MoreEggsBin"
-                                outstr = str(MOREEGGSBIN_PAYLOAD) + "," + tmpstr + "\n"
-                                with open(filepath + "_info.txt", "w") as infofd:
-                                    infofd.write(outstr)
-                                with open(filepath, "wb") as cfile:
-                                    cfile.write(bindata)
-                            if os.path.exists(filepath):
-                                self.script_dump_files.append(filepath)
-                        else:
-                            file_info["cape_type"] = "Script Dump"
-                            log.info("CAPE: Script Dump does not contain known encrypted payload.")
-                    except Exception as e:
-                        log.error("CAPE: malwareconfig parsing error with %s: %s", cape_name, e)
-                append_file = True
-
-            # More_Eggs
-            if file_info["cape_type_code"] == MOREEGGSJS_PAYLOAD:
-                file_info["cape_type"] = "More Eggs JS Payload"
-                cape_name = "MoreEggs"
-                append_file = True
+        return type_string, append_file
+
+    def process_file(self, file_path, append_file, metadata: dict, *, category: str, duplicated: DuplicatesType) -> dict:
+        """Process file.
+        @return: file_info
+        """
+
+        if not path_exists(file_path):
+            log.debug("file doesn't exist: %s", file_path)
+            return
+
+        cape_names = set()
+        buf_size = self.options.get("buffer", 8192)
+        # ToDo filename argument for procdump
+
+        # Optimize to not load all if duplicated, it stores sha256 in file object
+        f = File(file_path, metadata.get("metadata", ""))
+        sha256 = f.get_sha256()
+
+        if sha256 in duplicated["sha256"]:
+            log.debug("Skipping file that has already been processed: %s", sha256)
+            return
+        else:
+            duplicated["sha256"].add(sha256)
+
+        file_info, pefile_object = f.get_all()
+
+        if category in ("static", "file"):
+            file_info["name"] = Path(self.task["target"]).name
+
+        if pefile_object:
+            self.results.setdefault("pefiles", {}).setdefault(file_info["sha256"], pefile_object)
+
+        if file_info.get("clamav") and processing_conf.detections.clamav:
+            clamav_detection = get_clamav_consensus(file_info["clamav"])
+            if clamav_detection:
+                add_family_detection(self.results, clamav_detection, "ClamAV", file_info["sha256"])
+
+        # should we use dropped path here?
+        static_file_info(
+            file_info,
+            file_path,
+            str(self.task["id"]),
+            self.task.get("package", ""),
+            self.task.get("options", ""),
+            self.self_extracted,
+            self.results,
+            duplicated,
+        )
+
+        type_string, append_file = self._metadata_processing(metadata, file_info, append_file)
+
+        if category in ("static", "file"):
+            if MISP_HASH_LOOKUP:
+                misp_hash_lookup(file_info["sha256"], str(self.task["id"]), file_info)
+
+            self.results["target"] = {
+                "category": category,
+                "file": file_info,
+            }
+        elif processing_conf.CAPE.dropped and category in ("dropped", "package"):
+            if category == "dropped":
+                file_info.update(metadata.get(file_info["path"][0], {}))
+                file_info["guest_paths"] = list(
+                    {_clean_path(path.get("filepath", ""), self.options.replace_patterns) for path in metadata.get(file_path, [])}
+                )
+                if not file_info["guest_paths"] and category == "dropped" and "CAPE" not in metadata.get("filepath", ""):
+                    file_info["guest_paths"] = [_clean_path(metadata.get("filepath", ""), self.options.replace_patterns)]
+                file_info["name"] = list(
+                    {path.get("filepath", "").rsplit("\\", 1)[-1] for path in metadata.get(file_path, [])}
+                ) or [metadata.get("filepath", "").rsplit("\\", 1)[-1]]
+                if category == "dropped":
+                    with suppress(UnicodeDecodeError):
+                        with open(file_info["path"], "r") as drop_open:
+                            filedata = drop_open.read(buf_size + 1)
+                            filedata = wide2str(filedata)
+                            # ToDo doesn't work. +12 is: " <truncated>"
+                            file_info["data"] = convert_to_printable_and_truncate(filedata, buf_size)[: buf_size + 12]
+
+            self.results.setdefault("dropped", []).append(file_info)
+        elif processing_conf.CAPE.procdump and category == "procdump":
+            if any(texttype in file_info["type"] for texttype in texttypes):
+                with suppress(UnicodeDecodeError):
+                    with open(file_info["path"], "r") as drop_open:
+                        filedata = drop_open.read(buf_size + 1)
+                        # ToDo doesn't work. +12 is: " <truncated>"
+                        file_info["data"] = convert_to_printable_and_truncate(filedata, buf_size)[: buf_size + 12]
+            if file_info.get("pid"):
+                _ = cape_name_from_yara(file_info, file_info["pid"], self.results)
+
+            # ToDo https://github.com/mandiant/capa/issues/2620
+            if HAVE_FLARE_CAPA and ("PE32" in file_info["type"] or "MS-DOS executable" in file_info["type"]):
+                pretime = timeit.default_timer()
+                capa_details = flare_capa_details(file_path, "procdump")
+                if capa_details:
+                    file_info["flare_capa"] = capa_details
+                self.add_statistic_tmp("flare_capa", "time", pretime)
+
+            self.results.setdefault(category, []).append(file_info)
 
         # Process CAPE Yara hits
-        for hit in file_info["cape_yara"]:
-            # Check to see if file is packed with UPX
-            if hit["name"] == "UPX":
-                log.info("CAPE: Found UPX Packed sample - attempting to unpack")
-                self.upx_unpack(file_data)
+        # Prefilter extracted data + beauty is better than oneliner:
+        all_files = []
+        for _, value in file_info.get("selfextract", {}).items():
+            for file in value.get("extracted_files", []):
+                if not file.get("cape_yara", []):
+                    continue
+                if file.get("data", b""):
+                    extracted_file_data = make_bytes(file["data"])
+                else:
+                    extracted_file_data = Path(file["path"]).read_bytes()
+                for yara in file["cape_yara"]:
+                    all_files.append(
+                        (
+                            f"[{file.get('sha256', '')}]{file_info['path']}",
+                            extracted_file_data,
+                            yara,
+                        )
+                    )
 
+        # Get the file data
+        file_data = None
+        if path_exists(file_info["path"]):
+            file_data = Path(file_info["path"]).read_bytes()
+            for yara in file_info["cape_yara"]:
+                all_files.append((file_info["path"], file_data, yara))
+
+        executed_config_parsers = collections.defaultdict(set)
+        for tmp_path, tmp_data, hit in all_files:
             # Check for a payload or config hit
-            extraction_types = ("payload", "config", "loader")
-
+            cape_name = None
             try:
-                if any([file_type in hit["meta"].get("cape_type", "").lower() for file_type in extraction_types]):
+                if File.yara_hit_provides_detection(hit):
                     file_info["cape_type"] = hit["meta"]["cape_type"]
-                    cape_name = hit["name"].replace("_", " ")
+                    cape_name = File.get_cape_name_from_yara_hit(hit)
+                    cape_names.add(cape_name)
             except Exception as e:
-                print("Cape type error: {}".format(e))
+                log.error("Cape type error: %s", str(e))
             type_strings = file_info["type"].split()
             if "-bit" not in file_info["cape_type"]:
-                if type_strings[0] in ("PE32+", "PE32"):
-                    file_info["cape_type"] += pe_map[type_strings[0]]
-                    if type_strings[2] == ("(DLL)"):
-                        file_info["cape_type"] += "DLL"
-                    else:
-                        file_info["cape_type"] += "executable"
-
-            suppress_parsing_list = ["Cerber", "Ursnif"]
-
-            if hit["name"] == "GuLoader":
-                self.detect2pid(file_info["pid"], "GuLoader")
-
-            if hit["name"] in suppress_parsing_list:
-                continue
-
-            tmp_config = static_config_parsers(hit["name"].replace("_", " "), file_data)
-            if tmp_config and tmp_config[hit["name"].replace("_", " ")]:
-                config.update(tmp_config)
-
-        if cape_name:
-            if not "detections" in self.results:
-                if cape_name != "UPX":
-                    #ToDo list of keys
-                    self.results["detections"] = cape_name
-            if file_info.get("pid"):
-                self.detect2pid(file_info["pid"], cape_name)
+                append_file = self._cape_type_string(type_strings, file_info, append_file)
+
+            if cape_name and cape_name not in executed_config_parsers[tmp_path]:
+                tmp_config = static_config_parsers(cape_name, tmp_path, tmp_data)
+                self.update_cape_configs(cape_name, tmp_config, file_info)
+                executed_config_parsers[tmp_path].add(cape_name)
+
+        if type_string:
+            file_info["cape_type"] = type_string
+            if "config" in type_string.lower():
+                append_file = False
+            cape_name = File.get_cape_name_from_cape_type(type_string)
+            if cape_name and cape_name not in executed_config_parsers and file_data:
+                tmp_config = static_config_parsers(cape_name, file_info["path"], file_data)
+                if tmp_config:
+                    cape_names.add(cape_name)
+                    log.debug("CAPE: config returned for: %s", cape_name)
+                    self.update_cape_configs(cape_name, tmp_config, file_info)
+
+        self.link_configs_to_analysis()
+        self.add_family_detections(file_info, cape_names)
 
         # Remove duplicate payloads from web ui
         for cape_file in self.cape["payloads"] or []:
             if file_info["size"] == cape_file["size"]:
-                if HAVE_PYDEEP:
-                    ssdeep_grade = pydeep.compare(file_info["ssdeep"].encode("utf-8"), cape_file["ssdeep"].encode("utf-8"))
-                    if ssdeep_grade >= ssdeep_threshold:
-                        append_file = False
-                if file_info.get("entrypoint") and file_info.get("ep_bytes") and cape_file.get("entrypoint"):
-                    if (file_info.get("entrypoint")
-                        and file_info["entrypoint"] == cape_file["entrypoint"]
-                        and file_info["cape_type_code"] == cape_file["cape_type_code"]
-                        and file_info["ep_bytes"] == cape_file["ep_bytes"]
-                    ):
-                        log.debug("CAPE duplicate output file skipped")
-                        append_file = False
-
-        if append_file is True:
-            if HAVE_FLARE_CAPA:
-                pretime = datetime.now()
+                append_file = is_duplicated_binary(file_info, cape_file, append_file)
+
+        if append_file:
+            # ToDo https://github.com/mandiant/capa/issues/2620
+            if HAVE_FLARE_CAPA and category == "CAPE" and ("PE32" in file_info["type"] or "MS-DOS executable" in file_info["type"]):
+                pretime = timeit.default_timer()
                 capa_details = flare_capa_details(file_path, "cape")
                 if capa_details:
                     file_info["flare_capa"] = capa_details
                 self.add_statistic_tmp("flare_capa", "time", pretime=pretime)
             self.cape["payloads"].append(file_info)
 
-        if config and config not in self.cape["configs"]:
-            self.cape["configs"].append(config)
+    def _set_dict_keys(self):
+        self.cape = {"payloads": [], "configs": []}
 
     def run(self):
         """Run analysis.
         @return: list of CAPE output files with related information.
         """
-        self.key = "CAPE"
-        self.script_dump_files = []
-
-        self.cape = dict()
-        self.cape["payloads"] = list()
-        self.cape["configs"] = list()
-
-        meta = dict()
-        if os.path.exists(self.files_metadata):
+        self._set_dict_keys()
+        meta = {}
+        # Required to control files extracted by integrations.conf as we store them in dropped
+        duplicated: DuplicatesType = collections.defaultdict(set)
+        if path_exists(self.files_metadata):
             for line in open(self.files_metadata, "rb"):
                 entry = json.loads(line)
+
+                # ignore ransom files
+                if entry["filepath"] in self.results.get("ransom_exclude_files", []):
+                    continue
+
                 filepath = os.path.join(self.analysis_path, entry["path"])
                 meta[filepath] = {
-                    "pids": entry["pids"],
-                    "filepath": entry["filepath"],
-                    "metadata": entry["metadata"],
+                    "pids": entry.get("pids"),
+                    "ppids": entry.get("ppids"),
+                    "filepath": entry.get("filepath", ""),
+                    "metadata": entry.get("metadata", {}),
                 }
 
-        for folder in ("CAPE_path", "procdump_path", "dropped_path"):
+        #  Static processing of submitted file
+        if self.task["category"] in ("file", "static"):
+            self.process_file(
+                self.file_path, False, meta.get(self.file_path, {}), category=self.task["category"], duplicated=duplicated
+            )
+
+        for folder in ("CAPE_path", "procdump_path", "dropped_path", "package_files"):
+            category = folder.replace("_path", "").replace("_files", "")
             if hasattr(self, folder):
                 # Process dynamically dumped CAPE/procdumps files/dropped might
                 # be detected as payloads and trigger config parsing
                 for dir_name, _, file_names in os.walk(getattr(self, folder)):
                     for file_name in file_names:
-                        file_path = os.path.join(dir_name, file_name)
+                        filepath = os.path.join(dir_name, file_name)
                         # We want to exclude duplicate files from display in ui
                         if folder not in ("procdump_path", "dropped_path") and len(file_name) <= 64:
-                            self.process_file(file_path, True, meta.get(file_path, {}))
+                            self.process_file(filepath, True, meta.get(filepath, {}), category=category, duplicated=duplicated)
                         else:
                             # We set append_file to False as we don't wan't to include
                             # the files by default in the CAPE tab
-                            self.process_file(file_path, False)
-
-                # Process files that may have been decrypted from ScriptDump
-                for file_path in self.script_dump_files:
-                    self.process_file(file_path, False, meta.get(file_path, {}))
+                            self.process_file(filepath, False, meta.get(filepath, {}), category=category, duplicated=duplicated)
+        return self.cape
 
-        # Finally static processing of submitted file
-        if self.task["category"] in ("file", "static"):
-            if not os.path.exists(self.file_path):
-                log.error('Sample file doesn\'t exist: "%s"' % self.file_path)
+    def update_cape_configs(self, cape_name, config, file_obj):
+        """Add the given config to self.cape["configs"]."""
+        if not config:
+            return
 
-        self.process_file(self.file_path, False, meta.get(self.file_path, {}))
+        # look for an existing config matching this cape_name; merge them if found
+        for existing_config in self.cape["configs"]:
+            if cape_name in existing_config:
+                log.debug("CAPE: existing config found for: %s, merging - data loss may occur", cape_name)
+                existing_config[cape_name].update(config[cape_name])
+                config = existing_config
+                self.link_configs_to_hashes(config, file_obj)
+                return
+
+        # first time a config for this cape_name was seen
+        log.debug("CAPE: new config found for: %s", cape_name)
+        self.cape["configs"].append(config)
+        self.link_configs_to_hashes(config, file_obj)
+
+
+    def link_configs_to_hashes(self, config, file_obj):
+        """Link the config to the hashes it was generated from.
+        Store it in a list so that the keys of the dict are fixed and not dynamic, which, if
+        storing the report in ElasticSearch, could otherwise create tons of keys in the index.
+        """
+        sha256 = file_obj.get("sha256", "")
+        current_hashes = config.setdefault("_associated_config_hashes", [])
+        for hashes in current_hashes:
+            if sha256 == hashes["sha256"]:
+                # We've already stored this set of hashes for the config.
+                break
+        else:
+            current_hashes.append(
+                {hashtype: file_obj.get(hashtype, "") for hashtype in ("md5", "sha1", "sha256", "sha512", "sha3_384")}
+            )
+
+    def link_configs_to_analysis(self):
+        """Embed associated_analysis_hashes in each config.
+
+        This links the configs to the analysis hashes that generated it.
+        """
+        if self.results.get("target", {}).get("category", "") not in ("static", "file"):
+            return
 
-        return self.cape
+        target_file = self.results["target"]["file"]
+        associated_analysis_hashes = {
+            hashtype: target_file.get(hashtype, "") for hashtype in ("md5", "sha1", "sha256", "sha512", "sha3_384")
+        }
+        for config in self.cape["configs"]:
+            config["_associated_analysis_hashes"] = associated_analysis_hashes
diff --git a/modules/processing/amsi.py b/modules/processing/amsi.py
new file mode 100644
index 00000000000..ee33c5eb30f
--- /dev/null
+++ b/modules/processing/amsi.py
@@ -0,0 +1,68 @@
+import datetime
+import json
+import logging
+import os
+
+from lib.cuckoo.common.abstracts import Processing
+
+log = logging.getLogger(__name__)
+
+
+class Amsi(Processing):
+    key = "amsi"
+
+    def run(self):
+        jsonl_file = os.path.join(self.aux_path, "amsi", "amsi.jsonl")
+        if not os.path.exists(jsonl_file) or os.stat(jsonl_file).st_size == 0:
+            return None
+
+        result = []
+        with open(jsonl_file, "r") as fil:
+            idx = 0
+            for idx, line in enumerate(fil, 1):
+                try:
+                    decoded = self.decode_event(json.loads(line))
+                except Exception:
+                    log.exception("Failed to process line %d of %s.", idx, jsonl_file)
+                    break
+                result.append(decoded)
+            log.info("Processed %d AMSI event{'s' if idx != 1 else ''}.", idx)
+
+        return result
+
+    @classmethod
+    def decode_event(cls, event):
+        header = event["EventHeader"]
+        return {
+            # From https://learn.microsoft.com/en-us/windows/win32/api/evntrace/ns-evntrace-event_trace_logfilea
+            # The timestamp is stored as "100-nanosecond intervals since midnight, January 1, 1601"
+            "timestamp": (
+                datetime.datetime(1601, 1, 1, tzinfo=datetime.timezone.utc)
+                + datetime.timedelta(seconds=header["TimeStamp"] / 10_000_000)
+            ).isoformat(),
+            "thread_id": header["ThreadId"],
+            "process_id": header["ProcessId"],
+            "provider_id": header["ProviderId"],
+            "kernel_time": header["KernelTime"],
+            "user_time": header["UserTime"],
+            "activity_id": header["ActivityId"],
+            "scan_result": cls.scan_result_to_str(event["scanResult"]),
+            "app_name": event["appname"],
+            "content_name": event["contentname"],
+            "content_filtered": event["contentFiltered"],
+            "hash": event["hash"][2:].lower(),
+        }
+
+    @staticmethod
+    def scan_result_to_str(val: int) -> str:
+        # Based off of https://redcanary.com/blog/amsi/
+        if val == 0:
+            return "clean"
+        elif val == 1:
+            return "not_detected"
+        elif val == 0x8000:
+            return "detected"
+        elif val & 0x4000:
+            return "blocked_by_admin"
+        else:
+            return "unknown"
diff --git a/modules/processing/analysisinfo.py b/modules/processing/analysisinfo.py
index 9c57f530233..b614cbe38f4 100644
--- a/modules/processing/analysisinfo.py
+++ b/modules/processing/analysisinfo.py
@@ -2,69 +2,73 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 import codecs
-import time
 import logging
-import os
+import time
+from contextlib import suppress
 from datetime import datetime
+from pathlib import Path
 
-from lib.cuckoo.common.config import Config
-from lib.cuckoo.core.database import Database
-from lib.cuckoo.common.utils import get_options
 from lib.cuckoo.common.abstracts import Processing
-from lib.cuckoo.common.constants import CUCKOO_VERSION
+from lib.cuckoo.common.constants import CUCKOO_ROOT, CUCKOO_VERSION
 from lib.cuckoo.common.exceptions import CuckooProcessingError
+from lib.cuckoo.common.path_utils import path_exists
+from lib.cuckoo.common.utils import get_options
+from lib.cuckoo.core.database import Database
 
-try:
-    import requests
-
-    HAVE_REQUEST = True
-except ImportError:
-    HAVE_REQUEST = False
-
+# https://stackoverflow.com/questions/14989858/get-the-current-git-hash-in-a-python-script/68215738#68215738
 
 log = logging.getLogger(__name__)
-report_cfg = Config("reporting")
 
 db = Database()
 
 
+def get_running_commit() -> str:
+    try:
+        git_folder = Path(CUCKOO_ROOT, ".git")
+        head_name = Path(git_folder, "HEAD").read_text().split("\n")[0].split(" ")[-1]
+        return Path(git_folder, head_name).read_text().replace("\n", "")
+    except Exception as e:
+        log.error("Error getting running commit hash: %s", str(e))
+        return "unknown"
+
+
+CAPE_CURRENT_COMMIT_HASH = get_running_commit()
+
+
 class AnalysisInfo(Processing):
     """General information about analysis session."""
 
     def had_timeout(self):
-        """ Test if the analysis had a timeout
-        """
-        if os.path.exists(self.log_path):
+        """Test if the analysis had a timeout"""
+        if path_exists(self.log_path):
             try:
-                analysis_log = codecs.open(self.log_path, "rb", "utf-8").read()
-            except ValueError as e:
-                raise CuckooProcessingError("Error decoding %s: %s" % (self.log_path, e))
-            except (IOError, OSError) as e:
-                raise CuckooProcessingError("Error opening %s: %s" % (self.log_path, e))
-            else:
+                with codecs.open(self.log_path, "rb", "utf-8") as f:
+                    analysis_log = f.read()
                 if "INFO: Analysis timeout hit, terminating analysis" in analysis_log:
                     return True
+            except ValueError as e:
+                raise CuckooProcessingError(f"Error decoding {self.log_path}: {e}") from e
+            except (IOError, OSError) as e:
+                raise CuckooProcessingError(f"Error opening {self.log_path}: {e}") from e
         return False
 
     def get_package(self):
-        """ Get the actually used package name
-        """
+        """Get the actually used package name"""
         package = self.task["package"]
-        if not package and os.path.exists(self.log_path):
+        if isinstance(package, dict) and package.get("name", ""):
+            package = package["name"]
+        if not package and path_exists(self.log_path):
             try:
                 analysis_log = codecs.open(self.log_path, "rb", "utf-8").read()
             except ValueError as e:
-                raise CuckooProcessingError("Error decoding %s: %s" % (self.log_path, e))
+                raise CuckooProcessingError(f"Error decoding {self.log_path}: {e}") from e
             except (IOError, OSError) as e:
-                raise CuckooProcessingError("Error opening %s: %s" % (self.log_path, e))
+                raise CuckooProcessingError(f"Error opening {self.log_path}: {e}") from e
             else:
-                try:
+                with suppress(Exception):
                     idx = analysis_log.index('INFO: Automatically selected analysis package "')
                     package = analysis_log[idx + 47 :].split('"', 1)[0]
-                except:
-                    pass
         return package
 
     def run(self):
@@ -72,14 +76,15 @@ def run(self):
         @return: information dict.
         """
         self.key = "info"
+        self.order = 1
 
         try:
             started = time.strptime(self.task["started_on"], "%Y-%m-%d %H:%M:%S")
             started = datetime.fromtimestamp(time.mktime(started))
             ended = time.strptime(self.task["completed_on"], "%Y-%m-%d %H:%M:%S")
             ended = datetime.fromtimestamp(time.mktime(ended))
-        except:
-            log.critical("Failed to get start/end time from Task.")
+        except Exception:
+            log.critical("Failed to get start/end time from Task")
             duration = -1
         else:
             duration = (ended - started).seconds
@@ -88,40 +93,36 @@ def run(self):
         task = db.view_task(self.task["id"], details=True)
 
         if task and task.guest:
-            # Get machine description ad json.
+            # Get machine description as json.
             machine = task.guest.to_dict()
             # Remove useless task_id.
             del machine["task_id"]
             # Save.
             self.task["machine"] = machine
-        distributed = dict()
         parsed_options = get_options(self.task["options"])
         parent_sample_details = False
         if "maint_task_id" not in parsed_options:
-            parent_sample_details = db.list_sample_parent(task_id=self.task["id"])
+            parent_sample_details = db.get_parent_sample_from_task(task_id=self.task["id"])
+            if parent_sample_details:
+                parent_sample_details = parent_sample_details.to_dict()
         source_url = db.get_source_url(sample_id=self.task["sample_id"])
 
-        return dict(
-            version=CUCKOO_VERSION,
-            started=self.task["started_on"],
-            ended=self.task.get("completed_on", "none"),
-            duration=duration,
-            id=int(self.task["id"]),
-            category=self.task["category"],
-            custom=self.task["custom"],
-            machine=self.task["machine"],
-            package=self.get_package(),
-            timeout=self.had_timeout(),
-            shrike_url=self.task["shrike_url"],
-            shrike_refer=self.task["shrike_refer"],
-            shrike_msg=self.task["shrike_msg"],
-            shrike_sid=self.task["shrike_sid"],
-            parent_id=self.task["parent_id"],
-            tlp=self.task["tlp"],
-            parent_sample=parent_sample_details,
-            distributed=distributed,
-            options=parsed_options,
-            source_url=source_url,
-            route=self.task.get("route"),
-            user_id=self.task.get("user_id"),
-        )
+        return {
+            "version": CUCKOO_VERSION,
+            "started": self.task["started_on"],
+            "ended": self.task.get("completed_on", "none"),
+            "duration": duration,
+            "id": int(self.task["id"]),
+            "category": self.task["category"],
+            "custom": self.task["custom"],
+            "machine": self.task["machine"],
+            "package": self.get_package(),
+            "timeout": self.had_timeout(),
+            "tlp": self.task["tlp"],
+            "parent_sample": parent_sample_details,
+            "options": parsed_options,
+            "source_url": source_url,
+            "route": self.task.get("route"),
+            "user_id": self.task.get("user_id"),
+            "CAPE_current_commit": CAPE_CURRENT_COMMIT_HASH,
+        }
diff --git a/modules/processing/antiransomware.py b/modules/processing/antiransomware.py
new file mode 100644
index 00000000000..b4eb4ab9f54
--- /dev/null
+++ b/modules/processing/antiransomware.py
@@ -0,0 +1,139 @@
+# Copyright (C) 2015 Kevin O'Reilly kevin.oreilly@contextis.co.uk
+# This program is free software: you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation, either version 3 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+import json
+import logging
+
+from lib.cuckoo.common.abstracts import Processing
+from lib.cuckoo.common.path_utils import path_exists
+
+log = logging.getLogger(__name__)
+# ToDo store list of exclude files if conf enable to store them
+do_not_skip = (
+    "txt",
+    "dll",
+    "msi",
+    "msp",
+    "appx",
+    "pub",
+    "doc",
+    "dot",
+    "docx",
+    "dotx",
+    "docm",
+    "dotm",
+    "docb",
+    "rtf",
+    "mht",
+    "mso",
+    "wbk",
+    "wiz",
+    "xls",
+    "xlt",
+    "xlm",
+    "xlsx",
+    "xltx",
+    "xlsm",
+    "xltm",
+    "xlsb",
+    "xla",
+    "xlam",
+    "xll",
+    "xlw",
+    "slk",
+    "xll",
+    "csv",
+    "ppt",
+    "ppa",
+    "pot",
+    "pps",
+    "pptx",
+    "pptm",
+    "potx",
+    "potm",
+    "ppam",
+    "ppsx",
+    "ppsm",
+    "sldx",
+    "sldm",
+    "jar",
+    "reg",
+    "swf",
+    "fws",
+    "py",
+    "pyc",
+    "pyw",
+    "ps1",
+    "js",
+    "jse",
+    "html",
+    "url",
+    "xps",
+    "hta",
+    "mht",
+    "lnk",
+    "chm",
+    "hwp",
+    "hwpx",
+    "hwt",
+    "hml",
+    "inp",
+    "int",
+    "xsl",
+    "xslt",
+    "wsf",
+    "pdf",
+    "vbs",
+    "vbe",
+    "csproj",
+    "vbproj",
+    "vcxproj",
+    "dbproj",
+    "fsproj",
+    "zip",
+    "cpl",
+    "jtd",
+    "jtdc",
+    "jttc",
+    "jtt",
+)
+
+
+class AntiRansomware(Processing):
+    """Disable processing encrypted files."""
+
+    def run(self):
+        """Run analysis."""
+        self.key = "antiransomware"
+        extensions = {}
+        tmp_ext_list = {}
+        self.results["ransom_exclude_files"] = []
+        if not path_exists(self.files_metadata):
+            return
+        with open(self.files_metadata, "rb") as f:
+            lines = f.readlines()
+        for line in lines:
+            filename = json.loads(line).get("filepath", "")
+            if filename and "." not in filename:
+                continue
+            ext = filename.rsplit(".")
+            # do not count interesting extensions
+            if ext and ext[-1] not in do_not_skip:
+                extensions[ext[-1]] = extensions.setdefault(ext[-1], 0) + 1
+                tmp_ext_list.setdefault(ext[-1], []).append(filename)
+
+        for ext, count in extensions.items():
+            if count > self.options.skip_number:
+                log.debug("Skipping all files with extension: %s", ext)
+                self.results["ransom_exclude_files"] += tmp_ext_list.get(ext, [])
diff --git a/modules/processing/behavior.py b/modules/processing/behavior.py
index 840bc2dce94..3594eeb3fcc 100644
--- a/modules/processing/behavior.py
+++ b/modules/processing/behavior.py
@@ -2,37 +2,42 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-import os
-import logging
 import datetime
+import json
+import logging
+import os
 import struct
+from contextlib import suppress
 
 from lib.cuckoo.common.abstracts import Processing
+from lib.cuckoo.common.compressor import CuckooBsonCompressor
 from lib.cuckoo.common.config import Config
 from lib.cuckoo.common.netlog import BsonParser
-from lib.cuckoo.common.compressor import CuckooBsonCompressor
-from lib.cuckoo.common.utils import convert_to_printable, pretty_print_arg, pretty_print_retval, logtime, default_converter, bytes2str, get_options
-
+from lib.cuckoo.common.path_utils import path_exists
+from lib.cuckoo.common.replace_patterns_utils import _clean_path, check_deny_pattern
+from lib.cuckoo.common.utils import (
+    bytes2str,
+    convert_to_printable,
+    default_converter,
+    logtime,
+    pretty_print_arg,
+    pretty_print_retval,
+)
 
 log = logging.getLogger(__name__)
 cfg = Config()
-cfg_process = Config("processing")
+integrations_conf = Config("integrations")
 
-
-def fix_key(key):
-    """Fix a registry key to have it normalized.
-    @param key: raw key
-    @returns: normalized key
-    """
-    # all normalization is done on the cuckoomon end, so this is now a no-op
-    return key
+HAVE_FLARE_CAPA = False
+# required to not load not enabled dependencies
+if integrations_conf.flare_capa.enabled and integrations_conf.flare_capa.behavior:
+    from lib.cuckoo.common.integrations.capa import HAVE_FLARE_CAPA, flare_capa_details
 
 
 class ParseProcessLog(list):
     """Parses process log file."""
 
-    def __init__(self, log_path):
+    def __init__(self, log_path, options):
         """@param log_path: log file path."""
         self._log_path = log_path
         self.fd = None
@@ -55,35 +60,31 @@ def __init__(self, log_path):
         self.api_count = 0
         self.call_id = 0
         self.conversion_cache = {}
-        self.api_limit = cfg.processing.analysis_call_limit  # Limit of API calls per process
+        self.options = options
+        # Limit of API calls per process
+        self.api_limit = self.options.analysis_call_limit
 
-        if os.path.exists(log_path) and os.stat(log_path).st_size > 0:
+        if path_exists(log_path) and os.stat(log_path).st_size > 0:
             self.parse_first_and_reset()
 
-        if cfg.processing.ram_boost:
+        if self.options.ram_boost:
             self.api_call_cache = []
             self.api_pointer = 0
 
-            try:
+            with suppress(StopIteration):
                 while True:
                     i = self.cacheless_next()
                     self.api_call_cache.append(i)
-            except StopIteration:
-                pass
             self.api_call_cache.append(None)
 
     def parse_first_and_reset(self):
-        """ Open file and init Bson Parser. Read till first process
-        """
-        self.fd = open(self._log_path, "rb")
-
-        if self._log_path.endswith(".bson"):
-            self.parser = BsonParser(self)
-        else:
-            self.fd.close()
-            self.fd = None
+        """Open file and init Bson Parser. Read till first process"""
+        if not self._log_path.endswith(".bson"):
             return
 
+        self.fd = open(self._log_path, "rb")
+        self.parser = BsonParser(self)
+
         # Get the process information from file
         # Note that we have to read in all messages until we
         # get all the information we need, so the invariant below
@@ -97,7 +98,7 @@ def parse_first_and_reset(self):
         self.fd.seek(0)
 
     def read(self, length):
-        """ Read data from log file
+        """Read data from log file
 
         @param length: Length in byte to read
         """
@@ -110,19 +111,18 @@ def read(self, length):
 
     def __iter__(self):
         # import inspect
-        # log.debug('iter called by this guy: {0}'.format(inspect.stack()[1]))
+        # log.debug("iter called by: %s", inspect.stack()[1])
         # import code; code.interact(local=dict(locals(), **globals()))
         return self
 
     def __repr__(self):
-        return "<ParseProcessLog log-path: %r>" % self._log_path
+        return f"<ParseProcessLog log-path: {self._log_path}>"
 
     def __nonzero__(self):
         return self.wait_for_lastcall()
 
     def reset(self):
-        """ Reset fd
-        """
+        """Reset fd"""
         self.fd.seek(0)
         self.api_count = 0
         self.lastcall = None
@@ -135,12 +135,12 @@ def compare_calls(self, a, b):
         @param b: call b
         @return: True if a == b else False
         """
-        if a["api"] == b["api"] and a["status"] == b["status"] and a["arguments"] == b["arguments"] and a["return"] == b["return"]:
-            return True
-        return False
+        return (
+            a["api"] == b["api"] and a["status"] == b["status"] and a["arguments"] == b["arguments"] and a["return"] == b["return"]
+        )
 
     def wait_for_lastcall(self):
-        """ If there is no lastcall, iterate through messages till a call is found or EOF.
+        """If there is no lastcall, iterate through messages till a call is found or EOF.
         To get the next call, set self.lastcall to None before calling this function
 
         @return: True if there is a call, False on EOF
@@ -181,21 +181,19 @@ def cacheless_next(self):
         return nextcall
 
     def __next__(self):
-        """ Just accessing the cache
-        """
+        """Just accessing the cache"""
 
-        if cfg.processing.ram_boost:
-            res = self.api_call_cache[self.api_pointer]
-            if res is None:
-                self.reset()
-                raise StopIteration()
-            self.api_pointer += 1
-            return res
-        else:
+        if not self.options.ram_boost:
             return self.cacheless_next()
+        res = self.api_call_cache[self.api_pointer]
+        if res is None:
+            self.reset()
+            raise StopIteration()
+        self.api_pointer += 1
+        return res
 
     def log_process(self, context, timestring, pid, ppid, modulepath, procname):
-        """ log process information parsed from data file
+        """log process information parsed from data file
 
         @param context: ignored
         @param timestring: Process first seen time
@@ -212,25 +210,36 @@ def log_thread(self, context, pid):
         pass
 
     def log_environ(self, context, environdict):
-        """ log user/process environment information for later use in behavioral signatures
+        """log user/process environment information for later use in behavioral signatures
 
         @param context: ignored
         @param environdict: dict of the various collected information, which will expand over time
         """
-        self.environdict.update(bytes2str(environdict))
+        environdict = bytes2str(environdict)
+        if self.options.replace_patterns:
+            for key in ("UserName", "ComputerName", "TempPath", "CommandLine"):
+                environdict[key] = _clean_path(environdict[key], self.options.replace_patterns)
+        self.environdict.update(environdict)
 
     def log_anomaly(self, subcategory, tid, funcname, msg):
-        """ log an anomaly parsed from data file
+        """log an anomaly parsed from data file
 
         @param subcategory:
         @param tid: Thread ID
         @param funcname:
         @param msg:
         """
-        self.lastcall = dict(thread_id=tid, category="anomaly", api="", subcategory=subcategory, funcname=funcname, msg=msg)
+        self.lastcall = {
+            "thread_id": tid,
+            "category": "anomaly",
+            "api": "",
+            "subcategory": subcategory,
+            "funcname": funcname,
+            "msg": msg,
+        }
 
     def log_call(self, context, apiname, category, arguments):
-        """ log an api call from data file
+        """log an api call from data file
         @param context: containing additional api info
         @param apiname: name of the api
         @param category: win32 function category
@@ -241,32 +250,35 @@ def log_call(self, context, apiname, category, arguments):
         current_time = self.first_seen + datetime.timedelta(0, 0, timediff * 1000)
         timestring = logtime(current_time)
 
-        self.lastcall = self._parse([timestring, tid, caller, parentcaller, category, apiname, repeated, status, returnval] + arguments)
+        self.lastcall = self._parse(
+            [timestring, tid, caller, parentcaller, category, apiname, repeated, status, returnval] + arguments
+        )
 
     def log_error(self, emsg):
-        """ Log an error
-        """
-        log.warning("ParseProcessLog error condition on log %s: %s", str(self._log_path), emsg)
+        """Log an error"""
+        log.warning("ParseProcessLog error condition on log %s: %s", self._log_path, emsg)
 
     def begin_reporting(self):
         self.reporting_mode = True
-        if cfg.processing.ram_boost:
+        if self.options.ram_boost:
             idx = 0
-            while True:
-                ent = self.api_call_cache[idx]
-                if not ent:
-                    break
+            ent = self.api_call_cache[idx]
+            while ent:
                 # remove the values we don't want to encode in reports
                 for arg in ent["arguments"]:
-                    del arg["raw_value"]
+                    with suppress(KeyError):
+                        if "raw_value" in arg:
+                            del arg["raw_value"]
+                        elif "raw_value_string" in arg:
+                            del arg["raw_value_string"]
                 idx += 1
+                ent = self.api_call_cache[idx]
 
     def _parse(self, row):
         """Parse log row.
         @param row: row data.
         @return: parsed information dict.
         """
-        call = {}
         arguments = []
 
         try:
@@ -283,39 +295,56 @@ def _parse(self, row):
             log.debug("Unable to parse process log row: %s", e)
             return None
 
-        # Now walk through the remaining columns, which will contain API
-        # arguments.
-        for index in range(9, len(row)):
-            argument = {}
+        # Now walk through the remaining columns, which will contain API arguments.
 
+        for api_arg in row[9:]:
             # Split the argument name with its value based on the separator.
             try:
-                arg_name, arg_value = row[index]
+                arg_name, arg_value = api_arg
             except ValueError as e:
-                log.debug("Unable to parse analysis row argument (row=%s): %s", row[index], e)
+                log.debug("Unable to parse analysis row argument (row=%s): %s", api_arg, e)
                 continue
 
-            argument["name"] = arg_name
+            argument = {"name": arg_name}
+            arg_value_raw = arg_value
             if isinstance(arg_value, bytes):
                 arg_value = bytes2str(arg_value)
-            argument["value"] = convert_to_printable(str(arg_value), self.conversion_cache)
+
+            if arg_value and isinstance(arg_value, list) and len(arg_value) >= 1 and isinstance(arg_value[0], bytes):
+                arg_value = " ".join(bytes2str(arg_value))
+
+            try:
+                argument["value"] = convert_to_printable(arg_value, self.conversion_cache)
+            except Exception:
+                log.exception(arg_value)
+                continue
             if not self.reporting_mode:
-                argument["raw_value"] = arg_value
+                if isinstance(arg_value_raw, bytes):
+                    argument["raw_value"] = bytes.hex(arg_value_raw)
+                elif isinstance(arg_value_raw, int) and arg_value_raw > 0x7FFFFFFFFFFFFFFF:
+                    # Mongo can't support ints larger than this.
+                    argument["raw_value_string"] = str(arg_value_raw)
+                else:
+                    argument["raw_value"] = arg_value
+
             pretty = pretty_print_arg(category, api_name, arg_name, argument["value"])
             if pretty:
                 argument["pretty_value"] = pretty
+
             arguments.append(argument)
 
-        call["timestamp"] = timestamp
-        call["thread_id"] = str(thread_id)
-        call["caller"] = "0x%.08x" % default_converter(caller)
-        call["parentcaller"] = "0x%.08x" % default_converter(parentcaller)
-        call["category"] = category
-        call["api"] = api_name
-        call["status"] = bool(int(status_value))
+        call = {
+            "timestamp": timestamp,
+            "thread_id": str(thread_id),
+            "caller": f"0x{default_converter(caller):08x}",
+            "parentcaller": f"0x{default_converter(parentcaller):08x}",
+            "category": category,
+            "api": api_name,
+            "status": bool(int(status_value)),
+        }
 
-        if isinstance(return_value, int) or isinstance(return_value, int):
-            call["return"] = "0x%.08x" % default_converter(return_value)
+        if isinstance(return_value, int):
+            call["return"] = f"0x{default_converter(return_value):08x}"
         else:
             call["return"] = convert_to_printable(str(return_value), self.conversion_cache)
 
@@ -330,17 +359,27 @@ def _parse(self, row):
         if call["thread_id"] not in self.threads:
             self.threads.append(call["thread_id"])
 
+        if (
+            api_name == "DllLoadNotification"
+            and len(arguments) == 3
+            and arguments[-1].get("name", "") == "DllBase"
+            and arguments[0].get("value", "") == "load"
+            and "DllBase" not in self.environdict
+            and _clean_path(arguments[1]["value"], self.options.replace_patterns) in self.environdict.get("CommandLine", "")
+        ):
+            self.environdict.setdefault("DllBase", arguments[-1]["value"])
+
         return call
 
 
 class Processes:
     """Processes analyzer."""
 
-    def __init__(self, logs_path, task):
+    def __init__(self, logs_path, task, options):
         """@param  logs_path: logs path."""
         self.task = task
         self._logs_path = logs_path
-        self.options = get_options(self.task["options"])
+        self.options = options
 
     def run(self):
         """Run analysis.
@@ -348,48 +387,47 @@ def run(self):
         """
         results = []
 
-        if not os.path.exists(self._logs_path):
-            log.warning('Analysis results folder does not exist at path "%s".', self._logs_path)
+        if not path_exists(self._logs_path):
+            log.warning('Analysis results folder does not exist at path "%s"', self._logs_path)
             return results
 
         # TODO: this should check the current analysis configuration and raise a warning
         # if injection is enabled and there is no logs folder.
         if len(os.listdir(self._logs_path)) == 0:
-            log.info("Analysis results folder does not contain any file or injection was disabled.")
+            log.debug("Analysis results folder does not contain any file or injection was disabled")
             return results
 
         for file_name in os.listdir(self._logs_path):
             file_path = os.path.join(self._logs_path, file_name)
 
-            # Check if Loop Detection is enabled globally or locally (as an option)
-            if cfg_process.loop_detection.enabled or self.options.get("loop_detection"):
+            if self.options.loop_detection:
                 self.compress_log_file(file_path)
 
             if os.path.isdir(file_path):
                 continue
 
-            # Skipping the current log file if it's too big.
+            # Skipping the current log file if it's too big
             if os.stat(file_path).st_size > cfg.processing.analysis_size_limit:
-                log.warning("Behavioral log {0} too big to be processed, skipped.".format(file_name))
+                log.warning("Behavioral log %s too big to be processed, skipped", file_name)
                 continue
 
             # Invoke parsing of current log file (if ram_boost is enabled, otherwise parsing is done on-demand)
-            current_log = ParseProcessLog(file_path)
+            current_log = ParseProcessLog(file_path, self.options)
             if current_log.process_id is None:
                 continue
 
-            # If the current log actually contains any data, add its data to
-            # the results list.
+            # If the current log actually contains any data, add its data to the results list.
             results.append(
                 {
                     "process_id": current_log.process_id,
                     "process_name": bytes2str(current_log.process_name),
                     "parent_id": current_log.parent_id,
-                    "module_path": bytes2str(current_log.module_path),
+                    "module_path": _clean_path(bytes2str(current_log.module_path), self.options.replace_patterns),
                     "first_seen": logtime(current_log.first_seen),
                     "calls": current_log.calls,
                     "threads": current_log.threads,
                     "environ": current_log.environdict,
+                    "file_activities": {"read_files": [], "write_files": [], "delete_files": []},
                 }
             )
 
@@ -403,14 +441,14 @@ def compress_log_file(self, file_path):
         if file_path.endswith(".bson") and os.stat(file_path).st_size:
             try:
                 if not CuckooBsonCompressor().run(file_path):
-                    log.debug("Could not execute loop detection analysis.")
+                    log.debug("Could not execute loop detection analysis")
                 else:
-                    log.debug("BSON was compressed successfully.")
+                    log.debug("BSON was compressed successfully")
                     return True
             except Exception as e:
-                log.error("BSON compression failed on file {}: {}".format(file_path, e))
+                log.error("BSON compression failed on file %s: %s", file_path, e)
         else:
-            log.debug("Nonexistent or empty BSON file {}".format(file_path))
+            log.debug("Nonexistent or empty BSON file %s", file_path)
 
         return False
 
@@ -420,7 +458,7 @@ class Summary:
 
     key = "summary"
 
-    def __init__(self):
+    def __init__(self, options):
         self.keys = []
         self.read_keys = []
         self.write_keys = []
@@ -434,160 +472,163 @@ def __init__(self):
         self.created_services = []
         self.executed_commands = []
         self.resolved_apis = []
+        self.options = options
 
     def get_argument(self, call, argname, strip=False):
-        for arg in call["arguments"]:
-            if arg["name"] == argname:
-                if strip:
-                    return arg["value"].strip()
-                else:
-                    return arg["value"]
-        return None
+        return next(
+            (arg["value"].strip() if strip else arg["value"] for arg in call["arguments"] if arg["name"] == argname),
+            None,
+        )
 
     def get_raw_argument(self, call, argname):
-        for arg in call["arguments"]:
-            if arg["name"] == argname:
-                return arg["raw_value"]
-        return None
+        return next(
+            (arg["raw_value"] for arg in call["arguments"] if arg["name"] == argname),
+            None,
+        )
+
+    def _filtering_helper(self, source_list, pattern):
+        if not pattern:
+            return
+        if self.options.replace_patterns:
+            check_deny_pattern(source_list, pattern)
+        else:
+            source_list.append(pattern)
+
+    def _add_file_activity(self, process, key, filename):
+        if not filename:
+            return
+        if self.options.file_activities:
+            process["file_activities"][key].append(filename)
 
     def event_apicall(self, call, process):
         """Generate processes list from streamed calls/processes.
         @return: None.
         """
-
         if call["api"].startswith("RegOpenKeyEx"):
             name = self.get_argument(call, "FullName")
             if name and name not in self.keys:
-                self.keys.append(name)
+                self._filtering_helper(self.keys, name)
         elif call["api"].startswith("RegSetValue") or call["api"] == "NtSetValueKey":
             name = self.get_argument(call, "FullName")
             if name and name not in self.keys:
-                self.keys.append(name)
+                self._filtering_helper(self.keys, name)
             if name and name not in self.write_keys:
+                self._filtering_helper(self.write_keys, name)
+        elif call["api"] == "NtCreateKey" or call["api"].startswith("RegCreateKeyEx"):
+            name = self.get_argument(call, "ObjectAttributes" if call["api"] == "NtCreateKey" else "FullName")
+            disposition = int(self.get_argument(call, "Disposition"))
+            if name and name not in self.keys:
+                self._filtering_helper(self.keys, name)
+            # if disposition == 1 then we created a new key
+            if name and disposition == 1 and name not in self.write_keys:
                 self.write_keys.append(name)
-        elif call["api"] == "NtDeleteValueKey" or call["api"] == "NtDeleteKey" or call["api"].startswith("RegDeleteValue"):
+
+        elif call["api"] in ("NtDeleteValueKey", "NtDeleteKey") or call["api"].startswith("RegDeleteValue"):
             name = self.get_argument(call, "FullName")
             if name and name not in self.keys:
-                self.keys.append(name)
+                self._filtering_helper(self.keys, name)
             if name and name not in self.delete_keys:
                 self.delete_keys.append(name)
-        elif call["api"].startswith("RegCreateKeyEx"):
-            name = self.get_argument(call, "FullName")
-            disposition = int(self.get_argument(call, "Disposition"), 10)
-            if name and name not in self.keys:
-                self.keys.append(name)
-            # if disposition == 1 then we created a new key
-            if name and disposition == 1 and name not in self.write_keys:
-                self.write_keys.append(name)
         elif call["api"].startswith("NtOpenKey"):
             name = self.get_argument(call, "ObjectAttributes")
             if name and name not in self.keys:
-                self.keys.append(name)
-        elif call["api"] == "NtCreateKey":
-            name = self.get_argument(call, "ObjectAttributes")
-            disposition = int(self.get_argument(call, "Disposition"), 10)
-            if name and name not in self.keys:
-                self.keys.append(name)
-            # if disposition == 1 then we created a new key
-            if name and disposition == 1 and name not in self.write_keys:
-                self.write_keys.append(name)
-        elif call["api"].startswith("RegQueryValue") or call["api"] == "NtQueryValueKey" or call["api"] == "NtQueryMultipleValueKey":
+                self._filtering_helper(self.keys, name)
+        elif call["api"] in ("NtQueryValueKey", "NtQueryMultipleValueKey") or call["api"].startswith("RegQueryValue"):
             name = self.get_argument(call, "FullName")
             if name and name not in self.keys:
-                self.keys.append(name)
+                self._filtering_helper(self.keys, name)
             if name and name not in self.read_keys:
-                self.read_keys.append(name)
+                self._filtering_helper(self.read_keys, name)
         elif call["api"] == "SHGetFileInfoW":
             filename = self.get_argument(call, "Path")
             if filename and (len(filename) < 2 or filename[1] != ":"):
                 filename = None
             if filename and filename not in self.files:
-                self.files.append(filename)
+                self._filtering_helper(self.files, filename)
         elif call["api"] == "ShellExecuteExW":
             filename = self.get_argument(call, "FilePath")
             if len(filename) < 2 or filename[1] != ":":
                 filename = None
             if filename and filename not in self.files:
-                self.files.append(filename)
+                self._filtering_helper(self.files, filename)
             path = self.get_argument(call, "FilePath", strip=True)
             params = self.get_argument(call, "Parameters", strip=True)
-            cmdline = None
-            if path:
-                cmdline = path + " " + params
+            cmdline = f"{path} {params}" if path else None
             if cmdline and cmdline not in self.executed_commands:
-                self.executed_commands.append(cmdline)
+                self._filtering_helper(self.executed_commands, cmdline)
         elif call["api"] == "NtSetInformationFile":
             filename = self.get_argument(call, "HandleName")
-            infoclass = int(self.get_argument(call, "FileInformationClass"), 10)
+            infoclass = int(self.get_argument(call, "FileInformationClass"))
             fileinfo = self.get_raw_argument(call, "FileInformation")
             if filename and infoclass and infoclass == 13 and fileinfo and len(fileinfo) > 0:
                 if not isinstance(fileinfo, bytes):
-                    fileinfo = fileinfo.encode("utf-8")
+                    fileinfo = fileinfo.encode()
                 disp = struct.unpack_from("B", fileinfo)[0]
                 if disp and filename not in self.delete_files:
-                    self.delete_files.append(filename)
-
+                    self._filtering_helper(self.delete_files, filename)
+                    self._add_file_activity(process, "delete_files", filename)
         elif call["api"].startswith("DeleteFile") or call["api"] == "NtDeleteFile" or call["api"].startswith("RemoveDirectory"):
             filename = self.get_argument(call, "FileName")
             if not filename:
                 filename = self.get_argument(call, "DirectoryName")
             if filename:
                 if filename not in self.files:
-                    self.files.append(filename)
+                    self._filtering_helper(self.files, filename)
                 if filename not in self.delete_files:
-                    self.delete_files.append(filename)
+                    self._filtering_helper(self.delete_files, filename)
+                    self._add_file_activity(process, "delete_files", filename)
         elif call["api"].startswith("StartService"):
             servicename = self.get_argument(call, "ServiceName", strip=True)
             if servicename and servicename not in self.started_services:
-                self.started_services.append(servicename)
-
+                self._filtering_helper(self.started_services, servicename)
         elif call["api"].startswith("CreateService"):
             servicename = self.get_argument(call, "ServiceName", strip=True)
             if servicename and servicename not in self.created_services:
-                self.created_services.append(servicename)
-
-        elif call["api"] in ["CreateProcessInternalW", "NtCreateUserProcess", "CreateProcessWithTokenW", "CreateProcessWithLogonW"]:
+                self._filtering_helper(self.created_services, servicename)
+        elif call["api"] in ("CreateProcessInternalW", "NtCreateUserProcess", "CreateProcessWithTokenW", "CreateProcessWithLogonW"):
             cmdline = self.get_argument(call, "CommandLine", strip=True)
             appname = self.get_argument(call, "ApplicationName", strip=True)
             if appname and cmdline:
-                base = ".".join(appname.split("\\")[-1].split(".")[:-1])
+                base = appname.rsplit("\\", 1)[-1].rsplit(".", 1)[0]
                 firstarg = ""
                 if cmdline[0] == '"':
-                    firstarg = cmdline[1:].split('"')[0]
+                    firstarg = cmdline[1:].split('"', 1)[0]
                 else:
-                    firstarg = cmdline.split(" ")[0]
+                    firstarg = cmdline.split(" ", 1)[0]
                 if base not in firstarg:
-                    cmdline = appname + " " + cmdline
+                    cmdline = f"{appname} {cmdline}"
             if cmdline and cmdline not in self.executed_commands:
-                self.executed_commands.append(cmdline)
+                self._filtering_helper(self.executed_commands, cmdline)
 
         elif call["api"] == "LdrGetProcedureAddress" and call["status"]:
             dllname = self.get_argument(call, "ModuleName").lower()
             funcname = self.get_argument(call, "FunctionName")
             if not funcname:
-                funcname = "#" + str(self.get_argument(call, "Ordinal"))
-            combined = dllname + "." + funcname
+                funcname = f"#{self.get_argument(call, 'Ordinal')}"
+            combined = f"{dllname}.{funcname}"
             if combined not in self.resolved_apis:
                 self.resolved_apis.append(combined)
 
         elif call["api"].startswith("NtCreateProcess"):
             cmdline = self.get_argument(call, "FileName")
             if cmdline and cmdline not in self.executed_commands:
-                self.executed_commands.append(cmdline)
+                self._filtering_helper(self.executed_commands, cmdline)
 
-        elif call["api"] == "MoveFileWithProgressW" or call["api"] == "MoveFileWithProgressTransactedW":
+        elif call["api"] in ("MoveFileWithProgressW", "MoveFileWithProgressTransactedW"):
             origname = self.get_argument(call, "ExistingFileName")
             newname = self.get_argument(call, "NewFileName")
             if origname:
                 if origname not in self.files:
-                    self.files.append(origname)
+                    self._filtering_helper(self.files, origname)
                 if origname not in self.delete_files:
-                    self.delete_files.append(origname)
+                    self._filtering_helper(self.delete_files, origname)
+                    self._add_file_activity(process, "delete_files", origname)
             if newname:
                 if newname not in self.files:
-                    self.files.append(newname)
+                    self._filtering_helper(self.files, newname)
                 if newname not in self.write_files:
-                    self.write_files.append(newname)
+                    self._filtering_helper(self.write_files, newname)
+                    self._add_file_activity(process, "write_files", newname)
 
         elif call["category"] == "filesystem":
             filename = self.get_argument(call, "FileName")
@@ -595,40 +636,43 @@ def event_apicall(self, call, process):
                 filename = self.get_argument(call, "DirectoryName")
             srcfilename = self.get_argument(call, "ExistingFileName")
             dstfilename = self.get_argument(call, "NewFileName")
-            access = None
             accessval = self.get_argument(call, "DesiredAccess")
-            if accessval:
-                access = int(accessval, 16)
+            access = int(accessval, 16) if accessval else None
             if filename:
                 if (
                     access
                     and (access & 0x80000000 or access & 0x10000000 or access & 0x02000000 or access & 0x1)
                     and filename not in self.read_files
                 ):
-                    self.read_files.append(filename)
+                    # self.read_files.append(filename)
+                    self._filtering_helper(self.read_files, srcfilename)
+                    self._add_file_activity(process, "read_files", srcfilename)
                 if (
                     access
                     and (access & 0x40000000 or access & 0x10000000 or access & 0x02000000 or access & 0x6)
                     and filename not in self.write_files
                 ):
-                    self.write_files.append(filename)
+                    self._filtering_helper(self.write_files, srcfilename or filename)
+                    self._add_file_activity(process, "write_files", srcfilename or filename)
                 if filename not in self.files:
-                    self.files.append(filename)
+                    self._filtering_helper(self.files, filename)
             if srcfilename:
                 if srcfilename not in self.read_files:
-                    self.read_files.append(srcfilename)
+                    self._filtering_helper(self.read_files, srcfilename)
+                    self._add_file_activity(process, "read_files", srcfilename)
                 if srcfilename not in self.files:
-                    self.files.append(srcfilename)
+                    self._filtering_helper(self.files, srcfilename)
             if dstfilename:
                 if dstfilename not in self.write_files:
-                    self.write_files.append(dstfilename)
+                    self._filtering_helper(self.write_files, dstfilename)
+                    self._add_file_activity(process, "write_files", dstfilename)
                 if dstfilename not in self.files:
-                    self.files.append(dstfilename)
+                    self._filtering_helper(self.files, dstfilename)
 
         elif call["category"] == "synchronization":
             value = self.get_argument(call, "MutexName")
             if value and value not in self.mutexes:
-                self.mutexes.append(value)
+                self._filtering_helper(self.mutexes, value)
 
     def run(self):
         """Get registry keys, mutexes and files.
@@ -651,7 +695,7 @@ def run(self):
         }
 
 
-class Enhanced(object):
+class Enhanced:
     """Generates a more extensive high-level representation than Summary."""
 
     key = "enhanced"
@@ -670,7 +714,7 @@ def _add_procedure(self, mbase, name, base):
         """
         Add a procedure address
         """
-        self.procedures[base] = "{0}:{1}".format(self._get_loaded_module(mbase), name)
+        self.procedures[base] = f"{self._get_loaded_module(mbase)}:{name}"
 
     def _add_loaded_module(self, name, base):
         """
@@ -685,7 +729,7 @@ def _get_loaded_module(self, base):
         return self.modules.get(base, "")
 
     def _process_call(self, call):
-        """ Gets files calls
+        """Gets files calls
         @return: information list
         """
 
@@ -693,11 +737,7 @@ def _load_args(call):
             """
             Load arguments from call
             """
-            res = {}
-            for argument in call["arguments"]:
-                res[argument["name"]] = argument["value"]
-
-            return res
+            return {argument["name"]: argument["value"] for argument in call["arguments"]}
 
         def _generic_handle_details(self, call, item):
             """
@@ -710,7 +750,13 @@ def _generic_handle_details(self, call, item):
                 args = _load_args(call)
                 self.eid += 1
 
-                event = {"event": item["event"], "object": item["object"], "timestamp": call["timestamp"], "eid": self.eid, "data": {}}
+                event = {
+                    "event": item["event"],
+                    "object": item["object"],
+                    "timestamp": call["timestamp"],
+                    "eid": self.eid,
+                    "data": {},
+                }
 
                 for logname, dataname in item["args"]:
                     event["data"][logname] = args.get(dataname)
@@ -738,7 +784,10 @@ def _get_service_action(control_code):
             {
                 "event": "move",
                 "object": "file",
-                "apis": ["MoveFileWithProgressW", "MoveFileWithProgressTransactedW",],
+                "apis": [
+                    "MoveFileWithProgressW",
+                    "MoveFileWithProgressTransactedW",
+                ],
                 "args": [("from", "ExistingFileName"), ("to", "NewFileName")],
             },
             {
@@ -747,12 +796,46 @@ def _get_service_action(control_code):
                 "apis": ["CopyFileA", "CopyFileW", "CopyFileExW", "CopyFileExA"],
                 "args": [("from", "ExistingFileName"), ("to", "NewFileName")],
             },
-            {"event": "delete", "object": "file", "apis": ["DeleteFileA", "DeleteFileW", "NtDeleteFile"], "args": [("file", "FileName")]},
-            {"event": "delete", "object": "dir", "apis": ["RemoveDirectoryA", "RemoveDirectoryW"], "args": [("file", "DirectoryName")]},
-            {"event": "create", "object": "dir", "apis": ["CreateDirectoryW", "CreateDirectoryExW"], "args": [("file", "DirectoryName")]},
-            {"event": "write", "object": "file", "apis": ["URLDownloadToFileW", "URLDownloadToFileA"], "args": [("file", "FileName")]},
-            {"event": "read", "object": "file", "apis": ["NtReadFile",], "args": [("file", "HandleName")]},
-            {"event": "write", "object": "file", "apis": ["NtWriteFile",], "args": [("file", "HandleName")]},
+            {
+                "event": "delete",
+                "object": "file",
+                "apis": ["DeleteFileA", "DeleteFileW", "NtDeleteFile"],
+                "args": [("file", "FileName")],
+            },
+            {
+                "event": "delete",
+                "object": "dir",
+                "apis": ["RemoveDirectoryA", "RemoveDirectoryW"],
+                "args": [("file", "DirectoryName")],
+            },
+            {
+                "event": "create",
+                "object": "dir",
+                "apis": ["CreateDirectoryW", "CreateDirectoryExW"],
+                "args": [("file", "DirectoryName")],
+            },
+            {
+                "event": "write",
+                "object": "file",
+                "apis": ["URLDownloadToFileW", "URLDownloadToFileA"],
+                "args": [("file", "FileName")],
+            },
+            {
+                "event": "read",
+                "object": "file",
+                "apis": [
+                    "NtReadFile",
+                ],
+                "args": [("file", "HandleName")],
+            },
+            {
+                "event": "write",
+                "object": "file",
+                "apis": [
+                    "NtWriteFile",
+                ],
+                "args": [("file", "HandleName")],
+            },
             {
                 "event": "execute",
                 "object": "file",
@@ -769,10 +852,22 @@ def _get_service_action(control_code):
             {
                 "event": "execute",
                 "object": "file",
-                "apis": ["CreateProcessInternalW", "CreateProcessWithLogonW", "CreateProcessWithTokenW",],
+                "apis": [
+                    "CreateProcessInternalW",
+                    "CreateProcessWithLogonW",
+                    "CreateProcessWithTokenW",
+                ],
                 "args": [("file", "CommandLine")],
             },
-            {"event": "execute", "object": "file", "apis": ["ShellExecuteExA", "ShellExecuteExW",], "args": [("file", "FilePath")]},
+            {
+                "event": "execute",
+                "object": "file",
+                "apis": [
+                    "ShellExecuteExA",
+                    "ShellExecuteExW",
+                ],
+                "args": [("file", "FilePath")],
+            },
             {
                 "event": "load",
                 "object": "library",
@@ -791,14 +886,27 @@ def _get_service_action(control_code):
                 "apis": ["RegSetValueExA", "RegSetValueExW"],
                 "args": [("regkey", "FullName"), ("content", "Buffer")],
             },
-            {"event": "write", "object": "registry", "apis": ["RegCreateKeyExA", "RegCreateKeyExW"], "args": [("regkey", "FullName")]},
+            {
+                "event": "write",
+                "object": "registry",
+                "apis": ["RegCreateKeyExA", "RegCreateKeyExW"],
+                "args": [("regkey", "FullName")],
+            },
             {
                 "event": "read",
                 "object": "registry",
-                "apis": ["RegQueryValueExA", "RegQueryValueExW",],
+                "apis": [
+                    "RegQueryValueExA",
+                    "RegQueryValueExW",
+                ],
                 "args": [("regkey", "FullName"), ("content", "Data")],
             },
-            {"event": "read", "object": "registry", "apis": ["NtQueryValueKey"], "args": [("regkey", "FullName"), ("content", "Information")]},
+            {
+                "event": "read",
+                "object": "registry",
+                "apis": ["NtQueryValueKey"],
+                "args": [("regkey", "FullName"), ("content", "Information")],
+            },
             {
                 "event": "delete",
                 "object": "registry",
@@ -811,7 +919,12 @@ def _get_service_action(control_code):
                 "apis": ["SetWindowsHookExA"],
                 "args": [("id", "HookIdentifier"), ("moduleaddress", "ModuleAddress"), ("procedureaddress", "ProcedureAddress")],
             },
-            {"event": "start", "object": "service", "apis": ["StartServiceA", "StartServiceW"], "args": [("service", "ServiceName")]},
+            {
+                "event": "start",
+                "object": "service",
+                "apis": ["StartServiceA", "StartServiceW"],
+                "args": [("service", "ServiceName")],
+            },
             {
                 "event": "modify",
                 "object": "service",
@@ -821,10 +934,9 @@ def _get_service_action(control_code):
             {"event": "delete", "object": "service", "apis": ["DeleteService"], "args": [("service", "ServiceName")]},
         ]
 
-        # Not sure I really want this, way too noisy anyway and doesn't bring
-        # much value.
+        # Not sure I really want this, way too noisy anyway and doesn't bring much value.
         # if self.details:
-        #    gendata = gendata + [{"event" : "get",
+        #    gendata += [{"event" : "get",
         #           "object" : "procedure",
         #           "apis" : ["LdrGetProcedureAddress"],
         #           "args": [("name", "FunctionName"), ("ordinal", "Ordinal")]
@@ -834,20 +946,23 @@ def _get_service_action(control_code):
         args = _load_args(call)
 
         if event:
-            if call["api"] in ["LoadLibraryA", "LoadLibraryW", "LoadLibraryExA", "LoadLibraryExW", "LdrGetDllHandle"] and call["status"]:
+            if (
+                call["api"] in ("LoadLibraryA", "LoadLibraryW", "LoadLibraryExA", "LoadLibraryExW", "LdrGetDllHandle")
+                and call["status"]
+            ):
                 self._add_loaded_module(args.get("FileName", ""), args.get("ModuleHandle", ""))
 
-            elif call["api"] in ["LdrLoadDll"] and call["status"]:
+            elif call["api"] == "LdrLoadDll" and call["status"]:
                 self._add_loaded_module(args.get("FileName", ""), args.get("BaseAddress", ""))
 
-            elif call["api"] in ["LdrGetProcedureAddress"] and call["status"]:
+            elif call["api"] == "LdrGetProcedureAddress" and call["status"]:
                 self._add_procedure(args.get("ModuleHandle", ""), args.get("FunctionName", ""), args.get("FunctionAddress", ""))
                 event["data"]["module"] = self._get_loaded_module(args.get("ModuleHandle", ""))
 
-            elif call["api"] in ["SetWindowsHookExA"]:
+            elif call["api"] == "SetWindowsHookExA":
                 event["data"]["module"] = self._get_loaded_module(args.get("ModuleAddress", ""))
 
-            if call["api"] in ["ControlService"]:
+            elif call["api"] == "ControlService":
                 event["data"]["action"] = _get_service_action(args["ControlCode"])
 
             return event
@@ -869,8 +984,7 @@ def run(self):
         return self.events
 
 
-class Anomaly(object):
-
+class Anomaly:
     """Anomaly detected during analysis.
     For example: a malware tried to remove Cuckoo's hooks.
     """
@@ -892,13 +1006,19 @@ def event_apicall(self, call, process):
         for row in call["arguments"]:
             if row["name"] == "Subcategory":
                 category = row["value"]
-            if row["name"] == "FunctionName":
+            elif row["name"] == "FunctionName":
                 funcname = row["value"]
-            if row["name"] == "Message":
+            elif row["name"] == "Message":
                 message = row["value"]
 
         self.anomalies.append(
-            dict(name=process["process_name"], pid=process["process_id"], category=category, funcname=funcname, message=message,)
+            {
+                "name": process["process_name"],
+                "pid": process["process_id"],
+                "category": category,
+                "funcname": funcname,
+                "message": message,
+            }
         )
 
     def run(self):
@@ -943,15 +1063,15 @@ def event_apicall(self, call, process):
                 return
 
         self.processes.append(
-            dict(
-                name=process["process_name"],
-                pid=process["process_id"],
-                parent_id=process["parent_id"],
-                module_path=process["module_path"],
-                children=[],
-                threads=process["threads"],
-                environ=process["environ"],
-            )
+            {
+                "name": process["process_name"],
+                "pid": process["process_id"],
+                "parent_id": process["parent_id"],
+                "module_path": process["module_path"],
+                "children": [],
+                "threads": process["threads"],
+                "environ": process["environ"],
+            }
         )
 
     def run(self):
@@ -994,19 +1114,16 @@ def __init__(self):
         self.bufs = []
 
     def get_argument(self, call, argname, strip=False):
-        for arg in call["arguments"]:
-            if arg["name"] == argname:
-                if strip:
-                    return arg["value"].strip()
-                else:
-                    return arg["value"]
-        return None
+        return next(
+            (arg["value"].strip() if strip else arg["value"] for arg in call["arguments"] if arg["name"] == argname),
+            None,
+        )
 
     def get_raw_argument(self, call, argname):
-        for arg in call["arguments"]:
-            if arg["name"] == argname:
-                return arg["raw_value"]
-        return None
+        return next(
+            (arg["raw_value"] for arg in call["arguments"] if arg["name"] == argname),
+            None,
+        )
 
     def event_apicall(self, call, process):
         """Generate processes list from streamed calls/processes.
@@ -1018,13 +1135,13 @@ def event_apicall(self, call, process):
             bufsize = self.get_argument(call, "BufferSize")
             if buf and buf not in self.bufs:
                 self.bufs.append(
-                    dict(
-                        process_name=process["process_name"],
-                        pid=process["process_id"],
-                        api_call="SslEncryptPacket",
-                        buffer=buf,
-                        buffer_size=bufsize,
-                    )
+                    {
+                        "process_name": process["process_name"],
+                        "pid": process["process_id"],
+                        "api_call": "SslEncryptPacket",
+                        "buffer": buf,
+                        "buffer_size": bufsize,
+                    }
                 )
 
         if call["api"].startswith("CryptEncrypt"):
@@ -1032,14 +1149,25 @@ def event_apicall(self, call, process):
             buf = self.get_argument(call, "Buffer", strip=True)
             if buf and buf not in self.bufs:
                 self.bufs.append(
-                    dict(process_name=process["process_name"], pid=process["process_id"], api_call="CryptEncrypt", buffer=buf, crypt_key=key,)
+                    {
+                        "process_name": process["process_name"],
+                        "pid": process["process_id"],
+                        "api_call": "CryptEncrypt",
+                        "buffer": buf,
+                        "crypt_key": key,
+                    }
                 )
 
         if call["api"].startswith("CryptEncryptMessage"):
             buf = self.get_argument(call, "Buffer", strip=True)
             if buf and buf not in self.bufs:
                 self.bufs.append(
-                    dict(process_name=process["process_name"], pid=process["process_id"], api_call="CryptEncryptMessage", buffer=buf,)
+                    {
+                        "process_name": process["process_name"],
+                        "pid": process["process_id"],
+                        "api_call": "CryptEncryptMessage",
+                        "buffer": buf,
+                    }
                 )
 
     def run(self):
@@ -1058,29 +1186,66 @@ def run(self):
         """Run analysis.
         @return: results dict.
         """
-        behavior = {}
-        behavior["processes"] = Processes(self.logs_path, self.task).run()
-
-        instances = [
-            Anomaly(),
-            ProcessTree(),
-            Summary(),
-            Enhanced(),
-            EncryptedBuffers(),
-        ]
-        # Iterate calls and tell interested signatures about them
-        for process in behavior["processes"]:
-            for call in process["calls"]:
-                for instance in instances:
-                    try:
-                        instance.event_apicall(call, process)
-                    except:
-                        log.exception('Failure in partial behavior "%s"', instance.key)
-
-        for instance in instances:
-            try:
-                behavior[instance.key] = instance.run()
-            except:
-                log.exception('Failed to run partial behavior class "%s"', instance.key)
 
+        behavior = {"processes": []}
+        if path_exists(self.logs_path) and len(os.listdir(self.logs_path)) != 0:
+            behavior = {"processes": Processes(self.logs_path, self.task, self.options).run()}
+
+            instances = [
+                Anomaly(),
+                ProcessTree(),
+                Summary(self.options),
+                Enhanced(),
+                EncryptedBuffers(),
+            ]
+            enabled_instances = [instance for instance in instances if getattr(self.options, instance.key, True)]
+
+            if enabled_instances:
+                # Iterate calls and tell interested signatures about them
+                for process in behavior["processes"]:
+                    for call in process["calls"]:
+                        for instance in enabled_instances:
+                            try:
+                                instance.event_apicall(call, process)
+                            except Exception:
+                                log.exception('Failure in partial behavior "%s"', instance.key)
+
+            for instance in instances:
+                try:
+                    behavior[instance.key] = instance.run()
+                except Exception as e:
+                    log.exception('Failed to run partial behavior class "%s" due to "%s"', instance.key, e)
+        else:
+            log.warning('Analysis results folder does not exist at path "%s"', self.logs_path)
+            # load behavior from json if exist or env CAPE_REPORT variable
+            json_path = False
+            if os.environ.get("CAPE_REPORT") and path_exists(os.environ["CAPE_REPORT"]):
+                json_path = os.environ["CAPE_REPORT"]
+            elif os.path.exists(os.path.join(self.reports_path, "report.json")):
+                json_path = os.path.join(self.reports_path, "report.json")
+
+            if not json_path:
+                return behavior
+
+            with open(json_path) as f:
+                try:
+                    behavior = json.load(f).get("behavior", [])
+                except Exception as e:
+                    log.error("Behavior. Can't load json: %s", str(e))
+
+        # https://github.com/mandiant/capa/issues/2620
+        if (
+            HAVE_FLARE_CAPA
+            and self.results.get("info", {}).get("category", "") == "file"
+            and "PE" in self.results.get("target", {}).get("file", "").get("type", "")
+        ):
+            try:
+                self.results["capa_summary"] = flare_capa_details(
+                    file_path=self.results["target"]["file"]["path"],
+                    category="behavior",
+                    backend="cape",
+                    results={"behavior": behavior, **self.results},
+                )
+            except Exception as e:
+                log.error("Can't generate CAPA summary: %s", str(e))
         return behavior
diff --git a/modules/processing/boxjs.py b/modules/processing/boxjs.py
index 617a42b9f78..9996822b106 100644
--- a/modules/processing/boxjs.py
+++ b/modules/processing/boxjs.py
@@ -1,25 +1,23 @@
-import time
 import logging
+import time
 from urllib.parse import urljoin
+
 import requests
+
 from lib.cuckoo.common.abstracts import Processing
 from lib.cuckoo.common.exceptions import CuckooOperationalError
 
-
 log = logging.getLogger(__name__)
 
 
 class BoxJS(Processing):
-
     def _request_text(self, url, **kwargs):
         """Wrapper around doing a request and parsing its text output."""
         try:
             r = requests.get(url, timeout=self.timeout, **kwargs)
-            return r.text if r.status_code == 200 else {}
+            return r.text if r.status_code == 200 else ""
         except (requests.ConnectionError, ValueError) as e:
-            raise CuckooOperationalError(
-                "Unable to GET results: %r" % e.message
-            )
+            raise CuckooOperationalError(f"Unable to GET results: {e.message}") from e
 
     def request_json(self, url, **kwargs):
         """Wrapper around doing a request and parsing its JSON output."""
@@ -28,19 +26,19 @@ def request_json(self, url, **kwargs):
             r = requests.get(url, timeout=self.timeout, **kwargs)
             return r.json() if r.status_code == 200 and r.text else {}
         except (requests.ConnectionError, ValueError) as e:
-            raise CuckooOperationalError("Unable to GET results: %r" % e.message)
+            raise CuckooOperationalError(f"Unable to GET results: {e.message}") from e
 
     def _post_text(self, url, **kwargs):
         """Wrapper around doing a post and parsing its text output."""
         try:
             flags = {"flags": kwargs.get("flags", "")}
             # log.debug(kwargs)
-            # log.debug("FLAGS %s" % flags)
+            # log.debug("FLAGS %s", flags)
             files = {"sample": kwargs.get("sample")}
             r = requests.post(url, timeout=self.timeout, data=flags, files=files)
             return r.json()["analysisID"] if r.status_code == 200 else None
         except (requests.ConnectionError, ValueError) as e:
-            raise CuckooOperationalError("Unable to POST to the API server: %r" % e.message)
+            raise CuckooOperationalError(f"Unable to POST to the API server: {e.message}") from e
 
     def _post_json(self, url, **kwargs):
         """Wrapper around doing a post and parsing its JSON output."""
@@ -48,16 +46,17 @@ def _post_json(self, url, **kwargs):
             r = requests.post(url, timeout=self.timeout, **kwargs)
             return r.json() if r.status_code == 200 else {}
         except (requests.ConnectionError, ValueError) as e:
-            raise CuckooOperationalError("Unable to POST to the API server: %r" % e.message)
+            raise CuckooOperationalError(f"Unable to POST to the API server: {e.message}") from e
 
     def run(self):
         self.key = "boxjs"
 
         """ Fall off if we don't deal with files """
-        if self.results.get("info", {}).get("category") not in ("file", "static") and \
-            (self.results.get("info", {}).get("package", "") in ("js", "jse", "jsevbe", "js_antivm") or \
-                self.results.get("target", {}).get("file", "").get("name", "").endswith(".js", ".jse")):
-            log.debug("Box-js supports only file scanning!")
+        if self.results.get("info", {}).get("category") not in ("file", "static") and (
+            self.results.get("info", {}).get("package", "") in ("js", "jse", "jsevbe", "js_antivm")
+            or self.results.get("target", {}).get("file", {}).get("name", "").endswith(".js", ".jse")
+        ):
+            log.debug("Box-js supports only file scanning")
             return {}
 
         self.url = self.options.get("url")
@@ -67,7 +66,7 @@ def run(self):
         # Post file for scanning.
         postUrl = urljoin(self.url, "/sample")
         analysis_id = self._post_text(postUrl, sample=open(self.file_path, "rb"))  # returns a UUID
-        base_url = "{}/sample/{}".format(self.url, str(analysis_id))
+        base_url = f"{self.url}/sample/{analysis_id}"
 
         flags = ""
 
@@ -76,7 +75,7 @@ def run(self):
         while not done:
             time.sleep(2)
             result = self.request_json(base_url)
-            code = result.get("code", None)
+            code = result.get("code")
             retry = False
 
             # Read the status code, and retry with different flags if necessary
@@ -102,27 +101,28 @@ def run(self):
                 retry = True
             else:
                 done = True
-                log.info("BOXJS: {}".format(str(result)))
+                log.info("BOXJS: %s", result)
                 return {}
 
             if retry:
                 postUrl = urljoin(self.url, "/sample")
                 analysis_id = self._post_text(postUrl, sample=open(self.file_path, "rb"), flags=flags)  # returns a UUID
-                base_url = "{}/sample/{}".format(self.url, str(analysis_id))
+                base_url = f"{self.url}/sample/{analysis_id}"
 
         # Fetch the results.
-        results = {}
-        urls_url = "{}/urls".format(base_url)
-        resources_url = "{}/resources".format(base_url)
-        iocs_ioc = "{}/IOC".format(base_url)
-        results["urls"] = self.request_json(urls_url)
-        results["resources"] = self.request_json(resources_url)
-        results["IOC"] = self.request_json(iocs_ioc)
+        urls_url = f"{base_url}/urls"
+        resources_url = f"{base_url}/resources"
+        iocs_ioc = f"{base_url}/IOC"
+        results = {
+            "urls": self.request_json(urls_url),
+            "resources": self.request_json(resources_url),
+            "IOC": self.request_json(iocs_ioc),
+        }
 
         # Delete the results.
         try:
             requests.delete(base_url, timeout=self.timeout)
         except (requests.ConnectionError, ValueError) as e:
-            raise CuckooOperationalError("Unable to send a DELETE request: %r" % e.message)
+            raise CuckooOperationalError(f"Unable to send a DELETE request: {e.message}") from e
 
         return results
diff --git a/modules/processing/curtain.py b/modules/processing/curtain.py
deleted file mode 100644
index 46dae28ca00..00000000000
--- a/modules/processing/curtain.py
+++ /dev/null
@@ -1,754 +0,0 @@
-from __future__ import absolute_import
-import os
-
-try:
-    import re2 as re
-except ImportError:
-    import re
-import ast
-import base64
-import logging
-import itertools
-import xml.etree.ElementTree as ET
-
-from lib.cuckoo.common.abstracts import Processing
-from lib.cuckoo.common.exceptions import CuckooProcessingError
-
-log = logging.getLogger(__name__)
-
-__author__ = "Jeff White [karttoon] @noottrak"
-__email__ = "karttoon@gmail.com"
-__version__ = "1.0.12"
-__date__ = "25SEP2020"
-__credits__ = ["@noottrak", "@doomedraven"]
-
-
-'''
-Standalone usage for dev or quick tests
-
-from modules.processing.curtain import deobfuscate
-message = """here_weg"""
-print(deobfuscate(message))
-'''
-
-
-def buildBehaviors(entry, behaviorTags):
-    # Generates possible code injection variations
-    # {Behavior:[["entry1","entry2"],["entry3","entry4"]]}
-    behaviorCol = {}
-
-    codeInject = [
-        ["VirtualAlloc", "NtAllocateVirtualMemory",
-            "ZwAllocateVirtualMemory", "HeapAlloc"],
-        [
-            "CallWindowProcA",
-            "CallWindowProcW",
-            "DialogBoxIndirectParamA",
-            "DialogBoxIndirectParamW",
-            "EnumCalendarInfoA",
-            "EnumCalendarInfoW",
-            "EnumDateFormatsA",
-            "EnumDateFormatsW",
-            "EnumDesktopWindows",
-            "EnumDesktopsA",
-            "EnumDesktopsW",
-            "EnumLanguageGroupLocalesA",
-            "EnumLanguageGroupLocalesW",
-            "EnumPropsExA",
-            "EnumPropsExW",
-            "EnumPwrSchemes",
-            "EnumResourceTypesA",
-            "EnumResourceTypesW",
-            "EnumResourceTypesExA",
-            "EnumResourceTypesExW",
-            "EnumSystemCodePagesA",
-            "EnumSystemCodePagesW",
-            "EnumSystemLanguageGroupsA",
-            "EnumSystemLanguageGroupsW",
-            "EnumSystemLocalesA",
-            "EnumSystemLocalesW",
-            "EnumThreadWindows",
-            "EnumTimeFormatsA",
-            "EnumTimeFormatsW",
-            "EnumUILanguagesA",
-            "EnumUILanguagesW",
-            "EnumWindowStationsA",
-            "EnumWindowStationsW",
-            "EnumWindows",
-            "EnumerateLoadedModules",
-            "EnumerateLoadedModulesEx",
-            "EnumerateLoadedModulesExW",
-            "GrayStringA",
-            "GrayStringW",
-            "NotifyIpInterfaceChange",
-            "NotifyTeredoPortChange",
-            "NotifyUnicastIpAddressChange",
-            "SHCreateThread",
-            "SHCreateThreadWithHandle",
-            "SendMessageCallbackA",
-            "SendMessageCallbackW",
-            "SetWinEventHook",
-            "SetWindowsHookExA",
-            "SetWindowsHookExW",
-            "CreateThread",
-        ],
-    ]
-
-    behaviorCol["Code Injection"] = list(itertools.product(*codeInject))
-
-    behaviorCol["Downloader"] = [
-        ["New-Object", "Net.WebClient", "DownloadFile"],
-        ["New-Object", "Net.WebClient", "DownloadString"],
-        ["New-Object", "Net.WebClient", "DownloadData"],
-        ["WebProxy", "Net.CredentialCache"],
-        ["Import-Module BitsTransfer", "Start-BitsTransfer", "Source", "Destination"],
-        ["New-Object", "Net.Sockets.TCPClient", "GetStream"],
-        ["$env:LocalAppData"],
-        ["Invoke-WebRequest"],
-        ["wget"],
-        ["Get-Content"],
-    ]
-
-    behaviorCol["Starts Process"] = [["Start-Process"], ["New-Object",
-                                                         "IO.MemoryStream", "IO.StreamReader"], ["Diagnostics.Process]::Start"]]
-
-    behaviorCol["Compression"] = [
-        ["Convert", "FromBase64String", "System.Text.Encoding"],
-        ["IO.Compression.GzipStream"],
-        ["[IO.Compression.CompressionMode]::Decompress"],
-        ["IO.Compression.DeflateStream"],
-    ]
-
-    behaviorCol["Uses Stealth"] = [["WindowStyle", "Hidden"], [
-        "CreateNoWindow=$true"], ["ErrorActionPreference", "SilentlyContinue"]]
-
-    behaviorCol["Key Logging"] = [["GetAsyncKeyState", "Windows.Forms.Keys"]]
-
-    behaviorCol["Screen Scraping"] = [
-        ["New-Object", "Drawing.Bitmap", "Width", "Height"],
-        ["[Drawing.Graphics]::FromImage"],
-        ["CopyFroMScreen", "Location", "[Drawing.Point]::Empty", "Size"],
-    ]
-
-    behaviorCol["Custom Web Fields"] = [
-        ["Headers.Add"], ["SessionKey", "SessiodID"]]
-
-    behaviorCol["Persistence"] = [
-        ["New-Object", "-COMObject", "Schedule.Service"], ["SCHTASKS"]]
-
-    behaviorCol["Sleeps"] = [["Start-Sleep"]]
-
-    behaviorCol["Uninstalls Apps"] = [["foreach", "UninstallString"]]
-
-    behaviorCol["Obfuscation"] = [["-Join", "[int]", "-as", "[char]"]]
-
-    behaviorCol["Crypto"] = [
-        ["New-Object", "Security.Cryptography.AESCryptoServiceProvider",
-            "Mode", "Key", "IV"],
-        ["CreateEncryptor().TransformFinalBlock"],
-        ["CreateDecryptor().TransformFinalBlock"],
-    ]
-
-    behaviorCol["Enumeration/Profiling"] = [
-        ["[Environment]::UserDomainName"],
-        ["[Environment]::UserName"],
-        ["$env:username"],
-        ["[Environment]::MachineName"],
-        ["[Environment]::GetFolderPath"],
-        ["[System.IO.Path]::GetTempPath"],
-        ["$env:windir"],
-        ["GWMI Win32_NetworkAdapterConfiguration"],
-        ["Get-WMIObject Win32_NetworkAdapterConfiguration"],
-        ["GWMI Win32_OperatingSystem"],
-        ["Get-WMIObject Win32_OperatingSystem"],
-        ["[Security.Principal.WindowsIdentity]::GetCurrent"],
-        ["[Security.Principal.WindowsBuiltInRole]", "Administrator"],
-        ["[System.Diagnostics.Process]::GetCurrentProcess"],
-        ["PSVersionTable.PSVersion"],
-        ["New-Object", "Diagnostics.ProcessStartInfo"],
-        ["GWMI Win32_ComputerSystemProduct"],
-        ["Get-WMIObject Win32_ComputerSystemProduct"],
-        ["Get-Process -id"],
-        ["$env:userprofile"],
-        ["[Windows.Forms.SystemInformation]::VirtualScreen"],
-    ]
-
-    behaviorCol["Registry"] = [["HKCU:\\"], ["HKLM:\\"], [
-        "New-ItemProperty", "-Path", "-Name", "-PropertyType", "-Value"]]
-
-    behaviorCol["Sends Data"] = [["UploadData", "POST"]]
-
-    behaviorCol["AppLocker Bypass"] = [["regsvr32", "/i:http", "scrobj.dll"]]
-
-    behaviorCol["AMSI Bypass"] = [
-        ["Management.Automation.AMSIUtils", "amsiInitFailed"], ["Expect100Continue"]]
-
-    behaviorCol["Disables Windows Defender"] = [
-        ["DisableBehaviorMonitoring"],
-        ["DisableBlockAtFirstSeen"],
-        ["DisableIntrusionPreventionSystem"],
-        ["DisableIOAVProtection"],
-        ["DisablePrivacyMode"],
-        ["DisableRealtimeMonitoring"],
-        ["DisableScriptScanning"],
-        ["LowThreatDefaultAction"],
-        ["ModerateThreatDefaultAction"],
-        ["SevereThreatDefaultAction]"],
-    ]
-
-    behaviorCol["Clear Logs"] = [["GlobalSession.ClearLog"]]
-    behaviorCol["Invokes C# .NET Assemblies"] = [["Add-Type"]]
-
-    behaviorCol["Modifies Shadowcopy"] = [["Win32_Shadowcopy"]]
-    for event in entry:
-        for message in entry[event]:
-            message = entry[event][message]
-            for behavior in behaviorCol:
-                # Check Behavior Keywords
-                for check in behaviorCol[behavior]:
-                    bhFlag = True
-                    for value in check:
-                        if value.lower() not in message.lower():
-                            bhFlag = False
-                    if bhFlag is True:
-                        if behavior not in behaviorTags:
-                            behaviorTags.append(behavior)
-                # Check Character Frequency Analysis
-                if behavior == "Obfuscation":
-
-                    if (
-                        message.count("w") >= 500
-                        or message.count("4") >= 250
-                        or message.count("_") >= 250
-                        or message.count("D") >= 250
-                        or message.count("C") >= 200
-                        or message.count("K") >= 200
-                        or message.count("O") >= 200
-                        or message.count(":") >= 100
-                        or message.count(";") >= 100
-                        or message.count(",") >= 100
-                        or (message.count("(") >= 50 and message.count(")") >= 50)
-                        or (message.count("[") >= 50 and message.count("]") >= 50)
-                        or (message.count("{") >= 50 and message.count("}") >= 50)
-                    ):
-
-                        if behavior not in behaviorTags:
-                            behaviorTags.append(behavior)
-
-    return behaviorTags
-
-
-def formatReplace(inputString, MODFLAG):
-    # OLD: ("{1}{0}{2}" -F"AMP","EX","LE")
-    # NEW: "EXAMPLE"
-    # Find group of obfuscated string
-    obfGroup = re.search(
-        "(\"|')(\{[0-9]{1,2}\})+(\"|')[ -fF].+?'.+?'\)(?!(\"|'|;))", inputString).group()
-    # There are issues with multiple nested groupings that I haven't been able to solve yet, but doesn't change the final output of the PS script
-    # obfGroup = re.search("(\"|\')(\{[0-9]{1,2}\})+(\"|\')[ -fF]+?(\"|\').+?(\"|\')(?=\)([!.\"\';)( ]))", inputString).group()
-
-    # Build index and string lists
-    indexList = [int(x) for x in re.findall("\d+", obfGroup.split("-")[0])]
-
-    # This is to address scenarios where the string built is more PS commands with quotes
-    stringList = re.search(
-        "(\"|').+", "-".join(obfGroup.split("-")[1:])[:-1]).group()
-    stringChr = stringList[0]
-    stringList = stringList.replace(stringChr + "," + stringChr, "\x00")
-    stringList = stringList[1:-1]
-    stringList = stringList.replace("'", "\x01").replace('"', "\x02")
-    stringList = stringList.replace("\x00", stringChr + "," + stringChr)
-    stringList = ast.literal_eval(
-        "[" + stringChr + stringList + stringChr + "]")
-
-    for index, entry in enumerate(stringList):
-        stringList[index] = entry.replace("\x01", "'").replace("\x02", '"')
-
-    # Build output string
-    stringOutput = ""
-    for value in indexList:
-        try:
-            stringOutput += stringList[value]
-        except:
-            pass
-    stringOutput = '"' + stringOutput + '")'
-    # Replace original input with obfuscated group replaced
-
-    if MODFLAG == 0:
-        MODFLAG = 1
-    return inputString.replace(obfGroup, stringOutput), MODFLAG
-
-
-def charReplace(inputString, MODFLAG):
-    # OLD: [char]101
-    # NEW: e
-    for value in re.findall("\[[Cc][Hh][Aa][Rr]\][0-9]{1,3}", inputString):
-        inputString = inputString.replace(
-            value, '"%s"' % chr(int(value.split("]")[1])))
-    if MODFLAG == 0:
-        MODFLAG = 1
-    return inputString, MODFLAG
-
-
-def spaceReplace(inputString, MODFLAG):
-    # OLD: $var=    "EXAMPLE"
-    # NEW: $var= "EXAMPLE"
-    if MODFLAG == 0:
-        MODFLAG = 0
-
-    return re.sub(" +", " ", inputString), MODFLAG
-
-
-def joinStrings(inputString, MODFLAG):
-    # OLD: $var=("EX"+"AMP"+"LE")
-    # NEW: $var=("EXAMPLE")
-    if MODFLAG == 0:
-        MODFLAG = 1
-    return inputString.replace("'+'", "").replace('"+"', ""), MODFLAG
-
-
-def removeNull(inputString, MODFLAG):
-    # Windows/Unicode null bytes will interfere with regex
-    if MODFLAG == 0:
-        MODFLAG = 0
-    return inputString.replace("\x00", ""), MODFLAG
-
-
-def removeEscape(inputString, MODFLAG):
-    # OLD: $var=\'EXAMPLE\'
-    # NEW: $var='EXAMPLE'
-    if MODFLAG == 0:
-        MODFLAG = 0
-    return inputString.replace("\\'", "'").replace('\\"', '"'), MODFLAG
-
-
-def removeTick(inputString, MODFLAG):
-    # OLD: $v`a`r=`"EXAMPLE"`
-    # NEW: $var="EXAMPLE"
-    if MODFLAG == 0:
-        MODFLAG = 1
-    return inputString.replace("`", ""), MODFLAG
-
-
-def removeCaret(inputString, MODFLAG):
-    # OLD: $v^a^r=^"EXAMPLE"^
-    # NEW: $var="EXAMPLE"
-    if MODFLAG == 0:
-        MODFLAG = 1
-    return inputString.replace("^", ""), MODFLAG
-
-
-def adjustCase(inputString, MODFLAG):
-    # OLD: $vAR="ExAmpLE"
-    # NEW: $var="example"
-    if MODFLAG == 0:
-        MODFLAG = 0
-    return inputString.lower(), MODFLAG
-
-
-def removeParenthesis(inputString, MODFLAG):
-    # OLD ('ls11, ')+('tls'))
-    # NEW: tls11,tls
-    matches = re.findall("\(('[\w\d\s,\/\-\/\*\.:'+]+\')\)", inputString)
-    if matches:
-        MODFLAG = 1
-    for pattern in matches or []:
-        inputString = inputString.replace(
-            "("+pattern+")", pattern)  # .replace("'", "")
-
-    matches = re.findall("\('[\w\d\s,\/\-\/\*\.:]+", inputString)
-    if matches:
-        MODFLAG = 1
-    for pattern in matches or []:
-        inputString = inputString.replace("("+pattern, pattern)
-
-    matches += re.findall("'[\w\d\s,\/\-\/\*\.:]+'\)", inputString)
-    if matches:
-        MODFLAG = 1
-    for pattern in matches or []:
-        inputString = inputString.replace(pattern+")", pattern)
-
-    return inputString, MODFLAG
-
-
-def base64FindAndDecode(inputString):
-    # OLD: TVo=
-    # NEW: set MZ
-    matched = re.findall("[-A-Za-z0-9+]+={1,2}", inputString)
-    for pattern in matched or []:
-        try:
-            decoded = base64.b64decode(pattern)
-            inputString = inputString.replace(pattern, decoded)
-        except Exception as e:
-            log.error(e)
-
-    return inputString
-
-
-def replaceDecoder(inputString, MODFLAG):
-    # OLD: (set GmBtestGmb).replace('GmB',[Char]39)
-    # NEW: set 'test'
-    inputString = inputString.replace("'+'", "")
-    inputString = inputString.replace("'|'", "char[124]")
-
-    if "|" in inputString:
-        if "replace" not in inputString.split("|")[-1]:
-            inputString = "|".join(inputString.split("|")[0:-1])
-        else:
-            pass
-
-    while "replace" in inputString.split(".")[-1].lower() or "replace" in inputString.split("-")[-1].lower():
-
-        inputString = inputString.replace("'+'", "")
-        inputString = inputString.replace("'|'", "char[124]")
-
-        if len(inputString.split(".")[-1]) > len(inputString.split("-")[-1]):
-
-            tempString = "-".join(inputString.split("-")[0:-1])
-            replaceString = inputString.split("-")[-1]
-
-            if "[" in replaceString.split(",")[0]:
-                firstPart = " ".join(replaceString.split(",")[0].split("[")[
-                                     1:]).replace("'", "").replace('"', "")
-
-            elif "'" in replaceString.split(",")[0].strip() or '"' in replaceString.split(",")[0].strip():
-                firstPart = re.search(
-                    "('.+?'|\".+?\")", replaceString.split(",")[0]).group().replace("'", "").replace('"', "")
-
-            else:
-                firstPart = replaceString.split(",")[0].split(
-                    "'")[1].replace("'", "").replace('"', "")
-
-            secondPart = replaceString.split(",")[1].split(
-                ")")[0].replace("'", "").replace('"', "")
-        else:
-            tempString = ".".join(inputString.split(".")[0:-1])
-            replaceString = inputString.split(".")[-1]
-            firstPart = replaceString.split(",")[0].split(
-                "(")[-1].replace("'", "").replace('"', "")
-            secondPart = replaceString.split(",")[1].split(
-                ")")[0].replace("'", "").replace('"', "")
-
-        if "+" in firstPart:
-
-            newFirst = ""
-
-            for entry in firstPart.split("+"):
-                newFirst += chr(int(re.search("[0-9]+", entry).group()))
-
-            firstPart = newFirst
-
-        if re.search("char", firstPart, re.IGNORECASE):
-            firstPart = chr(int(re.search("[0-9]+", firstPart).group()))
-
-        if "+" in secondPart:
-
-            newSecond = ""
-
-            for entry in secondPart.split("+"):
-                newSecond += chr(int(re.search("[0-9]+", entry).group()))
-
-            secondPart = newSecond
-
-        if re.search("char", secondPart, re.IGNORECASE):
-            secondPart = chr(int(re.search("[0-9]+", secondPart).group()))
-
-        tempString = tempString.replace(firstPart, secondPart)
-        inputString = tempString
-
-        if "replace" not in inputString.split("|")[-1].lower():
-            inputString = inputString.split("|")[0]
-
-    if MODFLAG == 0:
-        MODFLAG = 1
-
-    return inputString, MODFLAG
-
-
-def deobfuscate(MESSAGE):
-    """
-        This can be used as standalone, for testing and dev of new deobfuscation technics
-        Example:
-            from modules.processing.curtain import deobfuscate
-            message = '''powershell blob goes here'''
-            print(deobfuscate(message))
-
-        Parameters:
-            MESSAGE (str): powershell code to deobfuscate
-
-        Returns:
-            ALTMSG (str): deobfuscated powershell
-    """
-
-    MODFLAG = 0
-
-    # Attempt to further decode token replacement/other common obfuscation
-    # Original and altered will be saved
-    ALTMSG = MESSAGE.strip()
-
-    if re.search("\x00", ALTMSG):
-        ALTMSG, MODFLAG = removeNull(ALTMSG, MODFLAG)
-
-    if re.search("(\\\"|\\')", ALTMSG):
-        ALTMSG, MODFLAG = removeEscape(ALTMSG, MODFLAG)
-
-    if re.search("`", ALTMSG):
-        ALTMSG, MODFLAG = removeTick(ALTMSG, MODFLAG)
-
-    if re.search("\^", ALTMSG):
-        ALTMSG, MODFLAG = removeCaret(ALTMSG, MODFLAG)
-
-    # strip - ('ls11, ')+('tls'))
-    #import code;code.interact(local=dict(locals(), **globals()))
-    if re.findall("\(('[\w\d\s,\/\-\/\*\.:'+]+\')\)", ALTMSG) or re.findall("\('[\w\d\s,\/\-\/\*\.:]+", ALTMSG) or re.findall("'[\w\d\s,\/\-\/\*\.:]+'\)", ALTMSG):
-        ALTMSG, MODFLAG = removeParenthesis(ALTMSG, MODFLAG)
-
-    while re.search("[\x20]{2,}", ALTMSG):
-        ALTMSG, MODFLAG = spaceReplace(ALTMSG, MODFLAG)
-
-    # One run pre charPreplace
-    if re.search("\[[Cc][Hh][Aa][Rr]\][0-9]{1,3}", ALTMSG):
-        ALTMSG, MODFLAG = charReplace(ALTMSG, MODFLAG)
-
-    if re.search("(\"\+\"|'\+')", ALTMSG):
-        ALTMSG, MODFLAG = joinStrings(ALTMSG, MODFLAG)
-
-    while re.search("(\"|')(\{[0-9]{1,2}\})+(\"|')[ -fF].+?'.+?'\)(?!(\"|'|;))", ALTMSG):
-        ALTMSG, MODFLAG = formatReplace(ALTMSG, MODFLAG)
-
-    # One run post formatReplace for new strings
-    if re.search("(\"\+\"|'\+')", ALTMSG):
-        ALTMSG, MODFLAG = joinStrings(ALTMSG, MODFLAG)
-
-    if "replace" in ALTMSG.lower():
-        try:
-            ALTMSG, MODFLAG = replaceDecoder(ALTMSG, MODFLAG)
-        except Exception as e:
-            log.error("Curtain processing error for entry - %s" % e)
-
-    # https://malwaretips.com/threads/how-to-de-obfuscate-powershell-script-commands-examples.76369/
-    if re.findall("-join\s+?\(\s?'(.+)\.split\(.+\)\s+?\|\s+?foreach", MESSAGE, re.I):
-        chars = re.findall("\d{1,3}", MESSAGE)
-        ALTMSG = "".join([chr(int(i)) for i in chars])
-        MODFLAG = 1
-
-    if re.findall("join\(\s?['\"]+\s?,\(\s?['\"].+'\s?\)\s?\|\s?foreach-object\s?.+-bxor\s?(0x[\d\w]+)", MESSAGE, re.I):
-        xorkey = re.findall(
-            "join\(\s?['\"]+\s?,\(\s?['\"].+'\s?\)\s?\|\s?foreach-object\s?.+-bxor\s?(0x[\d\w]+)", MESSAGE, re.I)[0]
-        chars = re.findall("\d{1,3}", MESSAGE)
-        ALTMSG = "".join([chr(int(i) ^ int(xorkey, 16)) for i in chars])
-        MODFLAG = 1
-
-    if re.findall('"([{\d{1,3}\}]+)"\-f(.+)\)\)\s+(-replace.*)', MESSAGE, re.I):
-        res = re.findall(
-            '"([{\d{1,3}\}]+)"\-f(.+)\)\)\s+(-replace.*)', MESSAGE, re.I)
-        formated, data, replaces = res[0]
-        r = formated.format(*data.split("','")).replace("'", "")
-        # split by blocks
-        blocks = re.findall(
-            "([\[cHAR\]\d{1,3}\+']+\)),(\[char\]\d{1,3})", MESSAGE, re.I)
-        for i in blocks:
-            ALTMSG = r.replace(
-                "".join([chr(int(i)) for i in re.findall("\d{1,3}", i[0])]),
-                "".join([chr(int(i)) for i in re.findall("\d{1,3}", i[1])]),
-            )
-            MODFLAG = 1
-            # Remove camel case obfuscation as last step
-            ALTMSG, MODFLAG = adjustCase(ALTMSG, MODFLAG)
-
-    if MODFLAG == 0:
-        ALTMSG = "No alteration of event."
-
-    return ALTMSG
-
-
-class Curtain(Processing):
-    """Parse Curtain log for PowerShell 4104 Events."""
-
-    def run(self):
-
-        self.key = "curtain"
-        # Remove some event entries which are commonly found in all samples (noise reduction)
-        noise = [
-            "$global:?",
-            "# Compute file-hash using the crypto object",
-            "# Construct the strongly-typed crypto object",
-            "HelpInfoURI = 'http://go.microsoft.com/fwlink/?linkid=285758'",
-            "[System.Management.ManagementDateTimeConverter]::ToDmtfDateTime($args[0])",
-            "[System.Management.ManagementDateTimeConverter]::ToDateTime($args[0])",
-            "Set-Location Z:",
-            "Set-Location Y:",
-            "Set-Location X:",
-            "Set-Location W:",
-            "Set-Location V:",
-            "Set-Location U:",
-            "Set-Location T:",
-            "Set-Location S:",
-            "Set-Location R:",
-            "Set-Location Q:",
-            "Set-Location P:",
-            "Set-Location O:",
-            "Set-Location N:",
-            "Set-Location M:",
-            "Set-Location L:",
-            "Set-Location K:",
-            "Set-Location J:",
-            "Set-Location I:",
-            "Set-Location H:",
-            "Set-Location G:",
-            "Set-Location F:",
-            "Set-Location E:",
-            "Set-Location D:",
-            "Set-Location C:",
-            "Set-Location B:",
-            "Set-Location A:",
-            "Set-Location ..",
-            "Set-Location \\",
-            "$wrappedCmd = $ExecutionContext.InvokeCommand.GetCommand('Out-String',[System.Management.Automation.CommandTypes]::Cmdlet)",
-            "$str.Substring($str.LastIndexOf('Verbs') + 5)",
-            "[Parameter(ParameterSetName='nameSet', Position=0, ValueFromPipelineByPropertyName=$true)]",
-            "[ValidateSet('Alias','Cmdlet','Provider','General','FAQ','Glossary','HelpFile'",
-            "param([string[]]$paths)",
-            "$origin = New-Object System.Management.Automation.Host.Coordinates",
-            "Always resolve file paths using Resolve-Path -Relative.",
-            "PS $($executionContext.SessionState.Path.CurrentLocation)$('>' * ($nestedPromptLevel + 1))",
-            "$this.ServiceName",
-            "Read-Host 'Press Enter to continue...' | Out-Null",
-            "([System.Management.Automation.CommandTypes]::Script)",
-            "if ($myinv -and ($myinv.MyCommand -or ($_.CategoryInfo.Category -ne 'ParserError')))",
-            "CmdletsToExport=@(",
-            "CmdletsToExport",
-            "FormatsToProcess",
-            "AliasesToExport",
-            "FunctionsToExport",
-            "$_.PSParentPath.Replace",
-            "$ExecutionContext.SessionState.Path.Combine",
-            "get-help about_Command_Precedence",
-        ]
-
-        # Determine oldest Curtain log and remove the rest
-        curtLog = os.path.join(self.analysis_path, "curtain")
-        if not os.path.exists(curtLog):
-            return
-        curtLog = [f for f in os.listdir(curtLog)]
-        curtLog.sort()
-
-        root = False
-        for curtain_log in curtLog[::-1]:
-            try:
-                tree = ET.parse("%s/curtain/%s" %
-                                (self.analysis_path, curtain_log))
-                root = tree.getroot()
-                os.rename("%s/curtain/%s" % (self.analysis_path, curtain_log),
-                          "%s/curtain/curtain.log" % self.analysis_path)
-                break
-            except Exception as e:
-                # malformed file
-                pass
-
-        if root is False:
-            return
-
-        # Leave only the most recent file
-        for file in os.listdir("%s/curtain/" % self.analysis_path):
-            if file != "curtain.log":
-                try:
-                    os.remove("%s/curtain/%s" % (self.analysis_path, file))
-                except:
-                    pass
-
-        pids = {}
-        COUNTER = 0
-        FILTERED = 0
-        messages_by_task = dict()
-
-        for i in range(0, len(root)):
-
-            # Setup PID Dict
-            if root[i][0][1].text == "4104":
-
-                FILTERFLAG = 0
-
-                PID = root[i][0][10].attrib["ProcessID"]
-                # TID = root[i][0][10].attrib['ThreadID']
-                task = root[i][0][4].text
-
-                MESSAGE = root[i][1][2].text
-                if PID not in pids:
-                    pids[PID] = {"pid": PID, "events": [], "filter": []}
-
-                # Checks for unique strings in events to filter out
-                if MESSAGE != None:
-                    for entry in noise:
-                        if entry in MESSAGE:
-                            FILTERFLAG = 1
-                            FILTERED += 1
-                            pids[PID]["filter"].append(
-                                {str(FILTERED): MESSAGE.strip()})
-
-                if task in messages_by_task:
-                    messages_by_task[task]["message"] = MESSAGE + \
-                        messages_by_task[task]["message"]
-                else:
-                    messages_by_task.setdefault(task, dict()).update(
-                        {"message": MESSAGE, "pid": PID})
-
-        new_dict = [block_dict for block_dict in messages_by_task.values()]
-
-        for block in new_dict:
-            MESSAGE = block["message"]
-            pid = block["pid"]
-            # Save the record
-            if FILTERFLAG == 0 and MESSAGE != None:
-
-                COUNTER += 1
-                ALTMSG = deobfuscate(MESSAGE)
-
-                # Save the output
-                pids[pid]["events"].append(
-                    {str(COUNTER): {"original": MESSAGE.strip(), "altered": ALTMSG}})
-
-        remove = []
-
-        # Find Curtain PID if it was picked up in log
-        for pid in pids:
-            for event in pids[pid]["events"]:
-                for entry in event.values():
-                    if "Process { [System.Diagnostics.Eventing.Reader.EventLogSession]::GlobalSession.ClearLog" in entry["original"]:
-                        if pid not in remove:
-                            remove.append(pid)
-
-        # Find empty PID
-        for pid in pids:
-            if len(pids[pid]["events"]) == 0:
-                if pid not in remove:
-                    remove.append(pid)
-
-        # Remove PIDs
-        for pid in remove:
-            del pids[pid]
-
-        # Reorder event counts
-        for pid in pids:
-            tempEvents = []
-            eventCount = len(pids[pid]["events"])
-            for index, entry in enumerate(pids[pid]["events"]):
-                tempEvents.append(
-                    {"%02d" % (eventCount - index): list(entry.values())[0]})
-            pids[pid]["events"] = tempEvents
-
-            tempEvents = []
-            eventCount = len(pids[pid]["filter"])
-            for index, entry in enumerate(pids[pid]["filter"]):
-                tempEvents.append(
-                    {"%02d" % (eventCount - index): list(entry.values())[0]})
-            pids[pid]["filter"] = tempEvents
-
-        # Identify behaviors per PID
-        for pid in pids:
-            behaviorTags = []
-            for entry in pids[pid]["events"]:
-                behaviorTags = buildBehaviors(entry, behaviorTags)
-                pids[pid]["behaviors"] = behaviorTags
-
-        return pids
diff --git a/modules/processing/debug.py b/modules/processing/debug.py
index c4ceb8b96b4..6d861dbf6fa 100644
--- a/modules/processing/debug.py
+++ b/modules/processing/debug.py
@@ -2,12 +2,12 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-import os
 import codecs
 
 from lib.cuckoo.common.abstracts import Processing
 from lib.cuckoo.common.exceptions import CuckooProcessingError
+from lib.cuckoo.common.path_utils import path_exists
+from lib.cuckoo.common.utils import truncate_str
 from lib.cuckoo.core.database import Database
 
 
@@ -21,13 +21,15 @@ def run(self):
         self.key = "debug"
         debug = {"log": "", "errors": []}
 
-        if os.path.exists(self.log_path):
+        if path_exists(self.log_path):
             try:
-                debug["log"] = codecs.open(self.log_path, "rb", "utf-8").read()
+                buf_size = self.options.get("buffer", 8192)
+                content = codecs.open(self.log_path, "rb", "utf-8").read()
+                debug["log"] = truncate_str(content, buf_size)
             except ValueError as e:
-                raise CuckooProcessingError("Error decoding %s: %s" % (self.log_path, e))
+                raise CuckooProcessingError(f"Error decoding {self.log_path}: {e}") from e
             except (IOError, OSError) as e:
-                raise CuckooProcessingError("Error opening %s: %s" % (self.log_path, e))
+                raise CuckooProcessingError(f"Error opening {self.log_path}: {e}") from e
 
         for error in Database().view_errors(int(self.task["id"])):
             debug["errors"].append(error.message)
diff --git a/modules/processing/decompression.py b/modules/processing/decompression.py
index cb8b48886d6..384964484db 100644
--- a/modules/processing/decompression.py
+++ b/modules/processing/decompression.py
@@ -2,13 +2,13 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-import os
 import glob
+import os
 import zipfile
 
 from lib.cuckoo.common.abstracts import Processing
 from lib.cuckoo.common.exceptions import CuckooProcessingError
+from lib.cuckoo.common.path_utils import path_delete, path_exists
 
 
 class Decompression(Processing):
@@ -19,22 +19,20 @@ class Decompression(Processing):
     def run(self):
         self.key = "decompression"
 
-        if os.path.exists(self.memory_path + ".zip"):
+        if path_exists(f"{self.memory_path}.zip"):
             try:
-                thezip = zipfile.ZipFile(self.memory_path + ".zip", "r")
-                thezip.extractall(path=self.analysis_path)
-                thezip.close()
-                os.unlink(self.memory_path + ".zip")
+                with zipfile.ZipFile(f"{self.memory_path}.zip", "r") as thezip:
+                    thezip.extractall(path=self.analysis_path)
+                path_delete(f"{self.memory_path}.zip")
             except Exception as e:
-                raise CuckooProcessingError("Error extracting ZIP: %s" % e)
+                raise CuckooProcessingError(f"Error extracting ZIP: {e}") from e
 
         for fzip in glob.glob(os.path.join(self.pmemory_path, "*.zip")):
             try:
-                thezip = zipfile.ZipFile(fzip, "r")
-                thezip.extractall(path=self.pmemory_path)
-                thezip.close()
-                os.unlink(fzip)
+                with zipfile.ZipFile(fzip, "r") as thezip:
+                    thezip.extractall(path=self.pmemory_path)
+                path_delete(fzip)
             except Exception as e:
-                raise CuckooProcessingError("Error extracting ZIP: %s" % e)
+                raise CuckooProcessingError(f"Error extracting ZIP: {e}") from e
 
         return []
diff --git a/modules/processing/deduplication.py b/modules/processing/deduplication.py
index c9e47b12dd6..72298219ef4 100644
--- a/modules/processing/deduplication.py
+++ b/modules/processing/deduplication.py
@@ -2,22 +2,46 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-import os
+import collections
 import logging
-import imagehash
-from PIL import Image
-import six
+import os
+import re
+
+HAVE_IMAGEHASH = False
+try:
+    import imagehash
+
+    HAVE_IMAGEHASH = True
+except ImportError:
+    print("Missed dependency: poetry run pip install ImageHash")
+
+try:
+    from PIL import Image
+
+    Image.logger.setLevel(logging.WARNING)
+except ImportError:
+    print("Missed dependency: poetry install")
 
 from lib.cuckoo.common.abstracts import Processing
+from lib.cuckoo.common.path_utils import path_exists
 
 log = logging.getLogger()
 
 
+def reindex_screenshots(shots_path):
+    for i, cur_basename in enumerate(sorted(os.listdir(shots_path))):
+        extension = os.path.splitext(cur_basename)[-1]
+        new_basename = "%s%s" % (str(i).rjust(4, "0"), extension)
+        log.debug("renaming %s to %s", cur_basename, new_basename)
+        old_path = os.path.join(shots_path, cur_basename)
+        new_path = os.path.join(shots_path, new_basename)
+        os.rename(old_path, new_path)
+
+
 class Deduplicate(Processing):
     """Deduplicate screenshots."""
 
-    def deduplicate_images(self, userpath, hashfunc=imagehash.average_hash):
+    def deduplicate_images(self, userpath, hashfunc):
         """
         Remove duplicate images from a path
         :userpath: path of the image files
@@ -25,9 +49,8 @@ def deduplicate_images(self, userpath, hashfunc=imagehash.average_hash):
         """
 
         def is_image(filename):
-            img_ext = [".jpg", ".png", ".gif", ".bmp", ".gif"]
-            f = filename.lower()
-            return any(f.endswith(ext) for ext in img_ext)
+            img_ext = (".jpg", ".png", ".gif", ".bmp", ".gif")
+            return filename.lower().endswith(img_ext)
 
         """
         Available hashs functions:
@@ -39,24 +62,37 @@ def is_image(filename):
         """
         dd_img_set = []
 
-        image_filenames = [os.path.join(userpath, path) for path in os.listdir(userpath) if is_image(path)]
-        images = {}
-        for img in sorted(image_filenames):
+        image_paths = [os.path.join(userpath, path) for path in os.listdir(userpath) if is_image(path)]
+        images = collections.defaultdict(list)
+        for img in sorted(image_paths):
             hash = hashfunc(Image.open(img))
-            images[hash] = images.get(hash, []) + [img]
-        for k, img_list in six.iteritems(images):
+            images[hash].append(img)
+        for img_list in images.values():
             dd_img_set.append(os.path.basename(img_list[0]))
+
+        image_filenames = {os.path.basename(x) for x in image_paths}
+        duplicates = set(image_filenames) - set(dd_img_set)
+        for dupe in duplicates:
+            log.debug("removing duplicate screenshot: %s", dupe)
+            os.remove(os.path.join(userpath, dupe))
+        reindex_screenshots(userpath)
+
         # Found that we get slightly more complete images in most cases when getting rid of images with close bit distance.
         # We flip the list back around after prune.
         dd_img_set.sort(reverse=True)
         return dd_img_set
 
     def run(self):
-        """Creates a new key in the report dict for 
+        """Creates a new key in the report dict for
         the deuplicated screenshots.
         """
         self.key = "deduplicated_shots"
         shots = []
+
+        shots_path = os.path.join(self.analysis_path, "shots")
+        if not path_exists(shots_path) or not HAVE_IMAGEHASH:
+            return shots
+
         hashmethod = self.options.get("hashmethod", "ahash")
         try:
             if hashmethod == "ahash":
@@ -68,14 +104,18 @@ def run(self):
             elif hashmethod == "whash-haar":
                 hashfunc = imagehash.whash
             elif hashmethod == "whash-db4":
-                hashfunc = lambda img: imagehash.whash(img, mode="db4")
+
+                def hashfunc(img):
+                    return imagehash.whash(img, mode="db4")
+
+            else:
+                # Default
+                hashfunc = imagehash.average_hash
 
             shots_path = os.path.join(self.analysis_path, "shots")
-            if os.path.exists(shots_path):
-                screenshots = self.deduplicate_images(userpath=shots_path, hashfunc=hashfunc)
-                screenshots.sort()
-                for screenshot in screenshots:
-                    shots.append(screenshot.replace(".jpg", ""))
+            screenshots = sorted(self.deduplicate_images(userpath=shots_path, hashfunc=hashfunc))
+            shots = [re.sub(r"\.(png|jpg)$", "", screenshot) for screenshot in screenshots]
+
         except Exception as e:
             log.error(e)
 
diff --git a/modules/processing/dropped.py b/modules/processing/dropped.py
deleted file mode 100644
index 72a34684729..00000000000
--- a/modules/processing/dropped.py
+++ /dev/null
@@ -1,72 +0,0 @@
-# Copyright (C) 2010-2019 Cuckoo Foundation.
-# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
-# See the file 'docs/LICENSE' for copying permission.
-
-from __future__ import absolute_import
-import os
-import json
-from lib.cuckoo.common.abstracts import Processing
-from lib.cuckoo.common.objects import File
-from lib.cuckoo.common.utils import convert_to_printable
-
-
-class Dropped(Processing):
-    """Dropped files analysis."""
-
-    def run(self):
-        """Run analysis.
-        @return: list of dropped files with related information.
-        """
-        self.key = "dropped"
-        dropped_files, meta = [], {}
-        buf = self.options.get("buffer", 8192)
-
-        if self.task["category"] in ("pcap", "static"):
-            return dropped_files
-
-        if not os.path.exists(self.dropped_path):
-            return dropped_files
-
-        if os.path.exists(self.files_metadata):
-            for line in open(self.files_metadata, "rb"):
-                entry = json.loads(line)
-                filepath = os.path.join(self.analysis_path, entry["path"])
-                meta.setdefault(filepath, [])
-                meta[filepath].append({
-                    "pids": entry["pids"],
-                    "filepath": entry["filepath"],
-                })
-
-        for dir_name, _, file_names in os.walk(self.dropped_path):
-            for file_name in file_names:
-                file_path = os.path.join(dir_name, file_name)
-                file_info, pefile_object = File(file_path=file_path).get_all()
-                if pefile_object:
-                    self.results.setdefault("pefiles", {})
-                    self.results["pefiles"].setdefault(file_info["sha256"], pefile_object)
-                file_info.update(meta.get(file_info["path"][0], {}))
-                guest_paths = list(set([path["filepath"] for path in meta[file_path]]))
-                guest_names = list(set([path["filepath"].split("\\")[-1] for path in meta[file_path]]))
-                file_info["guest_paths"] = guest_paths if isinstance(guest_paths, list) else [guest_paths]
-                file_info["name"] = guest_names
-                try:
-                    with open(file_info["path"], "r") as drop_open:
-                        filedata = drop_open.read(buf + 1)
-                    if len(filedata) > buf:
-                        file_info["data"] = convert_to_printable(filedata[:buf] + " <truncated>")
-                    else:
-                        file_info["data"] = convert_to_printable(filedata)
-                except UnicodeDecodeError as e:
-                    pass
-                dropped_files.append(file_info)
-
-        for dir_name, dir_names, file_names in os.walk(self.package_files):
-            for file_name in file_names:
-                file_path = os.path.join(dir_name, file_name)
-                file_info, pefile_object = File(file_path=file_path).get_all()
-                if pefile_object:
-                    self.results.setdefault("pefiles", {})
-                    self.results["pefiles"].setdefault(file_info["sha256"], pefile_object)
-                dropped_files.append(file_info)
-
-        return dropped_files
diff --git a/modules/processing/dumptls.py b/modules/processing/dumptls.py
index 35226837352..8098e8768c6 100644
--- a/modules/processing/dumptls.py
+++ b/modules/processing/dumptls.py
@@ -1,13 +1,22 @@
 # Copyright (C) 2010-2014 Cuckoo Foundation.
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
-import os
-import logging
+
 import binascii
+import logging
+import os
+
 from lib.cuckoo.common.abstracts import Processing
+from lib.cuckoo.common.path_utils import path_exists
+
+try:
+    import re2 as re
+except Exception:
+    import re
 
 log = logging.getLogger(__name__)
 
+
 class TLSMasterSecrets(Processing):
     """Cross-references TLS master secrets extracted from the monitor and key
     information extracted from the PCAP to dump a master secrets file
@@ -17,31 +26,35 @@ class TLSMasterSecrets(Processing):
     key = "dumptls"
 
     def run(self):
-        metakeys = {}
-
         # Build server random <-> session id mapping from the PCAP.
-        for row in self.results.get("network", {}).get("tls", []) or []:
-            metakeys[row["server_random"]] = row["session_id"]
+        metakeys = {row["server_random"]: row["session_id"] for row in self.results.get("network", {}).get("tls", [])}
 
         results = {}
         dump_tls_log = os.path.join(self.analysis_path, "tlsdump", "tlsdump.log")
-        if not os.path.exists(dump_tls_log):
+        if not path_exists(dump_tls_log):
             return results
 
         for entry in open(dump_tls_log, "r").readlines() or []:
-            client_random, server_random, master_secret = entry.split(",")
-            client_random = binascii.a2b_hex(client_random.split(":")[-1].strip())
-            server_random = binascii.a2b_hex(server_random.split(":")[-1].strip())
-            master_secret = binascii.a2b_hex(master_secret.split(":")[-1].strip())
-
-            if server_random not in metakeys:
-                log.debug("Was unable to extract TLS master secret for server random %s, skipping it.", server_random)
-                continue
-
-            results[metakeys[server_random]] = master_secret
+            try:
+                for m in re.finditer(
+                    r"client_random:\s*(?P<client_random>[a-f0-9]+)\s*,\s*server_random:\s*(?P<server_random>[a-f0-9]+)\s*,\s*master_secret:\s*(?P<master_secret>[a-f0-9]+)\s*",
+                    entry,
+                    re.I,
+                ):
+                    try:
+                        server_random = binascii.a2b_hex(m.group("server_random").strip())
+                        master_secret = binascii.a2b_hex(m.group("master_secret").strip())
+                        if server_random not in metakeys:
+                            log.debug("Was unable to extract TLS master secret for server random %s, skipping it", server_random)
+                            continue
+                        results[metakeys[server_random]] = master_secret
+                    except Exception as e:
+                        log.warning("Problem dealing with tlsdump error: %s line: %s", e, m.group(0))
+            except Exception as e:
+                log.warning("Problem dealing with tlsdump error: %s line: %s", e, entry)
 
         if results:
             # Write the TLS master secrets file.
             with open(self.tlsmaster_path, "w") as f:
                 for session_id, master_secret in sorted(results.items()):
-                    f.write("RSA Session-ID:{session_id} Master-Key:{master_secret}")
+                    f.write(f"RSA Session-ID:{session_id} Master-Key:{master_secret}\n")
diff --git a/modules/processing/maliciousmacrobot.py b/modules/processing/maliciousmacrobot.py
index ef077e486de..964e58358a1 100644
--- a/modules/processing/maliciousmacrobot.py
+++ b/modules/processing/maliciousmacrobot.py
@@ -12,22 +12,22 @@
 # You should have received a copy of the GNU General Public License
 # along with this program.  If not, see <http://www.gnu.org/licenses/>.
 
-from __future__ import absolute_import
-import os
 import logging
+import os
+
 from lib.cuckoo.common.abstracts import Processing
 from lib.cuckoo.common.constants import CUCKOO_ROOT
 from lib.cuckoo.common.objects import File
 
-log = logging.getLogger(__name__)
-
 try:
     from mmbot import MaliciousMacroBot
 
     HAVE_MMBOT = True
-except:
+except Exception:
     HAVE_MMBOT = False
 
+log = logging.getLogger(__name__)
+
 
 class MMBot(Processing):
     """MaliciousMacroBot analysis.
@@ -36,12 +36,12 @@ class MMBot(Processing):
 
     def run(self):
         self.key = "mmbot"
-        results = dict()
+        results = {}
         ftype = File(self.file_path).get_type()
 
         if self.task["category"] == "file":
             if not HAVE_MMBOT:
-                log.error("MaliciousMacroBot not installed, 'pip3 install mmbot', aborting mmbot analysis.")
+                log.error("MaliciousMacroBot not installed, 'pip3 install mmbot', aborting mmbot analysis")
                 return results
 
             package = ""
@@ -55,13 +55,16 @@ def run(self):
             ):
                 return results
 
-            opts = dict()
-            opts["benign_path"] = self.options.get("benign_path", os.path.join(CUCKOO_ROOT, "data", "mmbot", "benign"))
-            opts["malicious_path"] = self.options.get("malicious_path", os.path.join(CUCKOO_ROOT, "data", "mmbot", "malicious"))
-            opts["model_path"] = self.options.get("model_path", os.path.join(CUCKOO_ROOT, "data", "mmbot", "model"))
+            opts = {
+                "benign_path": self.options.get("benign_path", os.path.join(CUCKOO_ROOT, "data", "mmbot", "benign")),
+                "malicious_path": self.options.get("malicious_path", os.path.join(CUCKOO_ROOT, "data", "mmbot", "malicious")),
+                "model_path": self.options.get("model_path", os.path.join(CUCKOO_ROOT, "data", "mmbot", "model")),
+            }
 
             try:
-                mmb = MaliciousMacroBot(opts["benign_path"], opts["malicious_path"], opts["model_path"], retain_sample_contents=False)
+                mmb = MaliciousMacroBot(
+                    opts["benign_path"], opts["malicious_path"], opts["model_path"], retain_sample_contents=False
+                )
 
                 mmb.mmb_init_model(modelRebuild=False)
                 predresult = mmb.mmb_predict(self.file_path)
diff --git a/modules/processing/memory.py b/modules/processing/memory.py
index 21125c3bbfe..d02d3dee515 100644
--- a/modules/processing/memory.py
+++ b/modules/processing/memory.py
@@ -6,135 +6,142 @@
 #  https://github.com/Cisco-Talos/pyrebox/blob/python3migration/pyrebox/volatility_glue.py
 
 # Vol3 docs - https://volatility3.readthedocs.io/en/latest/index.html
-from __future__ import absolute_import
-import os
+import json
 import logging
+import os
+from pathlib import Path
+from typing import Any, Dict, List, Optional, Tuple, Union
+
+from lib.cuckoo.common.abstracts import Processing
+from lib.cuckoo.common.config import Config
+from lib.cuckoo.common.constants import CUCKOO_ROOT
+from lib.cuckoo.common.exceptions import CuckooProcessingError
+from lib.cuckoo.common.path_utils import path_delete, path_exists
 
 try:
     import re2 as re
 except ImportError:
     import re
 
-from urllib.request import pathname2url
 
-from lib.cuckoo.common.abstracts import Processing
-from lib.cuckoo.common.config import Config
-from lib.cuckoo.common.constants import CUCKOO_ROOT
-from lib.cuckoo.common.exceptions import CuckooProcessingError
+JsonRenderer = ""
 
 try:
     import volatility3.plugins
     import volatility3.symbols
     from volatility3 import framework
     from volatility3.cli.text_renderer import JsonRenderer
-    from volatility3.framework import automagic, constants, contexts, exceptions, interfaces, plugins, configuration
-    from volatility3.framework.configuration import requirements
-    from typing import Any, Dict, List, Optional, Tuple, Union, Type
-    from volatility3.framework import interfaces, constants
+    from volatility3.framework import automagic, constants, contexts, interfaces, plugins
+    from volatility3.framework.exceptions import UnsatisfiedException
 
     # from volatility3.plugins.windows import pslist
     HAVE_VOLATILITY = True
-except Exception as e:
-    print("Missed dependency: pip3 install volatility3 -U")
+except ImportError:
+    print("Missed dependency: poetry run pip install volatility3 -U")
     HAVE_VOLATILITY = False
 
 log = logging.getLogger()
 yara_rules_path = os.path.join(CUCKOO_ROOT, "data", "yara", "index_memory.yarc")
+if not os.path.exists(yara_rules_path):
+    from lib.cuckoo.common.objects import File
+
+    File.init_yara()
 
 # set logger volatility3
 
-class MuteProgress(object):
+
+class MuteProgress:
     def __init__(self):
         self._max_message_len = 0
 
     def __call__(self, progress: Union[int, float], description: str = None):
         pass
 
-
-class ReturnJsonRenderer(JsonRenderer):
-    def render(self, grid: interfaces.renderers.TreeGrid):
-        final_output = ({}, [])
-
-        def visitor(
-            node: Optional[interfaces.renderers.TreeNode],
-            accumulator: Tuple[Dict[str, Dict[str, Any]], List[Dict[str, Any]]],
-        ) -> Tuple[Dict[str, Dict[str, Any]], List[Dict[str, Any]]]:
-            # Nodes always have a path value, giving them a path_depth of at least 1, we use max just in case
-            acc_map, final_tree = accumulator
-            node_dict = {}
-            for column_index in range(len(grid.columns)):
-                column = grid.columns[column_index]
-                renderer = self._type_renderers.get(
-                    column.type, self._type_renderers["default"]
-                )
-                data = renderer(list(node.values)[column_index])
-                if isinstance(data, interfaces.renderers.BaseAbsentValue):
-                    data = None
-                node_dict[column.name] = data
-            if node.parent:
-                acc_map[node.parent.path]["__children"].append(node_dict)
-            else:
-                final_tree.append(node_dict)
-            acc_map[node.path] = node_dict
-            return (acc_map, final_tree)
-
-        error = grid.populate(visitor, final_output, fail_on_errors=False)
-        return final_output[1], error
-
-"""
-from modules.processing.memory import VolatilityAPI
-vapi = VolatilityAPI()
-bridge = vapi.init("windows.pony.Pony", "pony.dmp")
-"""
-
-class VolatilityAPI(object):
+if HAVE_VOLATILITY:
+    class ReturnJsonRenderer(JsonRenderer):
+        def render(self, grid: interfaces.renderers.TreeGrid):
+            final_output = ({}, [])
+
+            def visitor(
+                node: Optional[interfaces.renderers.TreeNode],
+                accumulator: Tuple[Dict[str, Dict[str, Any]], List[Dict[str, Any]]],
+            ) -> Tuple[Dict[str, Dict[str, Any]], List[Dict[str, Any]]]:
+                # Nodes always have a path value, giving them a path_depth of at least 1, we use max just in case
+                acc_map, final_tree = accumulator
+                node_dict = {}
+                for column_index, column in enumerate(grid.columns):
+                    renderer = self._type_renderers.get(column.type, self._type_renderers["default"])
+                    data = renderer(list(node.values)[column_index])
+                    node_dict[column.name] = None if isinstance(data, interfaces.renderers.BaseAbsentValue) else data
+                if node.parent:
+                    acc_map[node.parent.path]["__children"].append(node_dict)
+                else:
+                    final_tree.append(node_dict)
+                acc_map[node.path] = node_dict
+                return (acc_map, final_tree)
+
+            error = grid.populate(visitor, final_output, fail_on_errors=True)
+            return json.loads(json.dumps(final_output[1])), error
+
+
+class VolatilityAPI:
     def __init__(self, memdump):
+        """
+        @param memdump: path to memdump. Ex. file:///home/vol3/memory.dmp
+        """
         self.context = None
         self.automagics = None
         self.base_config_path = "plugins"
         # Instance of the plugin
         self.volatility_interface = None
         self.loaded = False
-        self.plugin_list = list()
+        self.plugin_list = []
         self.ctx = False
-        if not memdump.startswith("file:///") and os.path.exists(memdump):
-            self.memdump = "file:///" + memdump
-        else:
-            self.memdump = memdump
+        self.memdump = f"file:///{memdump}" if not memdump.startswith("file:///") and path_exists(memdump) else memdump
 
-    def run(self, plugin_class):
-        """ Module which initialize all volatility 3 internals
+    def run(self, plugin_class, pids=None, round=1):
+        """Module which initialize all volatility 3 internals
         https://github.com/volatilityfoundation/volatility3/blob/stable/doc/source/using-as-a-library.rst
         @param plugin_class: plugin class. Ex. windows.pslist.PsList
-        @param memdump: path to memdump. Ex. file:///home/vol3/memory.dmp
+        @param plugin_class: plugin class. Ex. windows.pslist.PsList
+        @param pids: pid list -> abstrats.py -> get_pids(), for custom scripts
+        @param round: read -> https://github.com/volatilityfoundation/volatility3/pull/504
         @return: Volatility3 interface.
 
         """
         if not self.loaded:
             self.ctx = contexts.Context()
             constants.PARALLELISM = constants.Parallelism.Off
-            failures = framework.import_files(volatility3.plugins, True)
+            framework.import_files(volatility3.plugins, True)
             self.automagics = automagic.available(self.ctx)
             self.plugin_list = framework.list_plugins()
             seen_automagics = set()
-            #volatility3.symbols.__path__ = [symbols_path] + constants.SYMBOL_BASEPATHS
+            # volatility3.symbols.__path__ = [symbols_path] + constants.SYMBOL_BASEPATHS
             for amagic in self.automagics:
                 if amagic in seen_automagics:
                     continue
                 seen_automagics.add(amagic)
 
-            base_config_path = "plugins"
-            single_location = self.memdump #"file:" + pathname2url(path)
+            single_location = self.memdump
             self.ctx.config["automagic.LayerStacker.single_location"] = single_location
-            if os.path.exists(yara_rules_path):
-                self.ctx.config["plugins.YaraScan.yara_compiled_file"] = yara_rules_path
+            if path_exists(yara_rules_path):
+                self.ctx.config["plugins.YaraScan.yara_compiled_file"] = f"file:///{yara_rules_path}"
+
+        if pids is not None:
+            self.ctx.config["sandbox_pids"] = pids
+            self.ctx.config["sandbox_round"] = round
 
         plugin = self.plugin_list.get(plugin_class)
-        automagics = automagic.choose_automagic(self.automagics, plugin)
-        constructed = plugins.construct_plugin(self.ctx, automagics, plugin, "plugins", None, None)
-        runned_plugin = constructed.run()
-        json_data, error = ReturnJsonRenderer().render(runned_plugin)
-        return json_data#, error
+        try:
+            automagics = automagic.choose_automagic(self.automagics, plugin)
+            constructed = plugins.construct_plugin(self.ctx, automagics, plugin, "plugins", None, None)
+            runned_plugin = constructed.run()
+            json_data, error = ReturnJsonRenderer().render(runned_plugin)
+            return json_data  # , error
+        except AttributeError:
+            log.error("Failing %s on %s", plugin_class, self.memdump)
+            return {}
+
 
 """ keeping at the moment to see if we want to integrate more
     {'windows.statistics.Statistics': <class 'volatility3.plugins.windows.statistics.Statistics'>,
@@ -179,94 +186,92 @@ def run(self, plugin_class):
 """
 
 
-
-class VolatilityManager(object):
+class VolatilityManager:
     """Handle several volatility results."""
 
     def __init__(self, memfile):
         self.mask_pid = []
         self.taint_pid = set()
         self.memfile = memfile
+        self.options = Config("memory")
 
-        conf_path = os.path.join(CUCKOO_ROOT, "conf", "memory.conf")
-        if not os.path.exists(conf_path):
-            log.error("Configuration file memory.conf not found")
-            self.voptions = False
-            return
-
-        self.voptions = Config("memory")
-
-        if isinstance(self.voptions.mask.pid_generic, int):
-            self.mask_pid.append(self.voptions.mask.pid_generic)
+        if isinstance(self.options.mask.pid_generic, int):
+            self.mask_pid.append(self.options.mask.pid_generic)
         else:
-            for pid in self.voptions.mask.pid_generic.split(","):
+            for pid in self.options.mask.pid_generic.split(","):
                 pid = pid.strip()
                 if pid:
                     self.mask_pid.append(int(pid))
 
-        self.no_filter = not self.voptions.mask.enabled
+        self.no_filter = not self.options.mask.enabled
 
     def run(self, manager=None, vm=None):
-        results = dict()
+        results = {}
         self.key = "memory"
 
         # Exit if options were not loaded.
-        if not self.voptions:
+        if not self.options:
             return
 
         vol3 = VolatilityAPI(self.memfile)
         """
-        if self.voptions.idt.enabled:
+        if self.options.idt.enabled:
             try:
                 results["idt"] = vol.idt()
-            except:
+            except Exception:
                 pass
-        if self.voptions.gdt.enabled:
+        if self.options.gdt.enabled:
             try:
                 results["gdt"] = vol.gdt()
-            except:
+            except Exception:
                 pass
-        if self.voptions.timers.enabled:
+        if self.options.timers.enabled:
             results["timers"] = vol.timers()
-        if self.voptions.messagehooks.enabled:
+        if self.options.messagehooks.enabled:
             results["messagehooks"] = vol.messagehooks()
-        if self.voptions.apihooks.enabled:
+        if self.options.apihooks.enabled:
             results["apihooks"] = vol.apihooks()
-        if self.voptions.ldrmodules.enabled:
+        if self.options.ldrmodules.enabled:
             results["ldrmodules"] = vol.ldrmodules()
-        if self.voptions.devicetree.enabled:
+        if self.options.devicetree.enabled:
             results["devicetree"] = vol.devicetree()
         """
-        vol_logger = logging.getLogger('volatility3')
+        vol_logger = logging.getLogger("volatility3")
         vol_logger.setLevel(logging.WARNING)
 
-        #if self.voptions.psxview.enabled:
+        # ToDo rewrite this to for loop and key and names be in dict
+        # if self.options.psxview.enabled:
         #    results["pstree"] = vol3.run("windows.pstree.PsTree")
-        if self.voptions.pslist.enabled:
-            results["pslist"] = vol3.run("windows.pslist.PsList")
-        if self.voptions.callbacks.enabled:
+        if self.options.psscan.enabled:
+            results["psscan"] = vol3.run("windows.psscan.PsScan")
+        if self.options.pslist.enabled:
+            try:
+                results["pslist"] = vol3.run("windows.pslist.PsList")
+            except UnsatisfiedException:
+                vol_logger.error("Failing PsList")
+        if self.options.callbacks.enabled:
             results["callbacks"] = vol3.run("windows.callbacks.Callbacks")
-        if self.voptions.ssdt.enabled:
+        if self.options.ssdt.enabled:
             results["ssdt"] = vol3.run("windows.ssdt.SSDT")
-        if self.voptions.getsids.enabled:
+        if self.options.getsids.enabled:
             results["getsids"] = vol3.run("windows.getsids.GetSIDs")
-        if self.voptions.privs.enabled:
+        if self.options.privs.enabled:
             results["privs"] = vol3.run("windows.privileges.Privs")
-        if self.voptions.malfind.enabled:
+        if self.options.malfind.enabled:
             results["malfind"] = vol3.run("windows.malfind.Malfind")
-        if self.voptions.dlllist.enabled:
+        if self.options.dlllist.enabled:
             results["dlllist"] = vol3.run("windows.dlllist.DllList")
-        if self.voptions.handles.enabled:
+        if self.options.handles.enabled:
             results["handles"] = vol3.run("windows.handles.Handles")
-        if self.voptions.mutantscan.enabled:
+        if self.options.mutantscan.enabled:
             results["mutantscan"] = vol3.run("windows.mutantscan.MutantScan")
-        if self.voptions.svcscan.enabled:
+        if self.options.svcscan.enabled:
             results["svcscan"] = vol3.run("windows.svcscan.SvcScan")
-        if self.voptions.modscan.enabled:
+        if self.options.modscan.enabled:
             results["modscan"] = vol3.run("windows.modscan.ModScan")
-        if self.voptions.yarascan.enabled:
+        if self.options.yarascan.enabled:
             results["yarascan"] = vol3.run("yarascan.YaraScan")
-        if self.voptions.netscan.enabled:
+        if self.options.netscan.enabled:
             results["netscan"] = vol3.run("windows.netscan.NetScan")
 
         self.find_taint(results)
@@ -274,10 +279,10 @@ def run(self, manager=None, vm=None):
         self.do_strings()
         self.cleanup()
 
-        if not self.voptions.basic.delete_memdump:
-            results['memory_path'] = self.memfile
-        if self.voptions.basic.dostrings:
-            results['memory_strings_path'] = self.memfile + ".strings"
+        if not self.options.basic.delete_memdump:
+            results["memory_path"] = self.memfile
+        if self.options.basic.dostrings:
+            results["memory_strings_path"] = f"{self.memfile}.strings"
 
         return results
 
@@ -287,42 +292,39 @@ def find_taint(self, res):
             for item in res["malfind"]:
                 self.taint_pid.add(item["PID"])
 
-
     def do_strings(self):
-        if self.voptions.basic.dostrings:
-            try:
-                data = open(self.memfile, "rb").read()
-            except (IOError, OSError, MemoryError) as e:
-                raise CuckooProcessingError("Error opening file %s" % e)
-
-            nulltermonly = self.voptions.basic.get("strings_nullterminated_only", True)
-            minchars = str(self.voptions.basic.get("strings_minchars", 5)).encode("utf-8")
-
-            if nulltermonly:
-                apat = b"([\x20-\x7e]{" + minchars + b",})\x00"
-                upat = b"((?:[\x20-\x7e][\x00]){" + minchars + b",})\x00\x00"
-            else:
-                apat = b"[\x20-\x7e]{" + minchars + b",}"
-                upat = b"(?:[\x20-\x7e][\x00]){" + minchars + b",}"
-
-            strings = re.findall(apat, data)
-            for ws in re.findall(upat, data):
-                strings.append(ws.decode("utf-16le").encode("utf-8"))
-            f = open(self.memfile + ".strings", "wb")
-            f.write(b"\n".join(strings))
-            f.close()
-            return self.memfile + ".strings"
-        return None
+        if not self.options.basic.dostrings:
+            return None
+        try:
+            data = Path(self.memfile).read_bytes()
+        except (IOError, OSError, MemoryError) as e:
+            raise CuckooProcessingError(f"Error opening file {e}") from e
+
+        nulltermonly = self.options.basic.get("strings_nullterminated_only", True)
+        minchars = str(self.options.basic.get("strings_minchars", 5)).encode()
+
+        if nulltermonly:
+            apat = b"([\x20-\x7e]{" + minchars + b",})\x00"
+            upat = b"((?:[\x20-\x7e][\x00]){" + minchars + b",})\x00\x00"
+        else:
+            apat = b"[\x20-\x7e]{" + minchars + b",}"
+            upat = b"(?:[\x20-\x7e][\x00]){" + minchars + b",}"
+
+        strings = re.findall(apat, data) + [ws.decode("utf-16le").encode() for ws in re.findall(upat, data)]
+        _ = Path(f"{self.memfile}.strings").write_bytes(b"\n".join(strings))
+
+        return f"{self.memfile}.strings"
 
     def cleanup(self):
         """Delete the memory dump (if configured to do so)."""
 
-        if self.voptions.basic.delete_memdump:
-            for memfile in (self.memfile, self.memfile + ".zip"):
-                try:
-                    os.remove(memfile)
-                except OSError:
-                    log.error('Unable to delete memory dump file at path "%s" ', memfile)
+        if self.options.basic.delete_memdump:
+            for memfile in (self.memfile, f"{self.memfile}.zip"):
+                if path_exists(memfile):
+                    try:
+                        path_delete(memfile)
+                    except OSError:
+                        log.error('Unable to delete memory dump file at path "%s"', memfile)
 
 
 class Memory(Processing):
@@ -333,27 +335,25 @@ def run(self):
         @return: volatility results dict.
         """
         self.key = "memory"
-        self.voptions = Config("memory")
+        self.options = self.options
 
         results = {}
-        if HAVE_VOLATILITY:
-            if self.memory_path and os.path.exists(self.memory_path):
-                try:
-                    vol = VolatilityManager(self.memory_path)
-                    # only the memory dump and memory dump string paths are returned until vol3 is complete, strings output will be written if configured
-                    # memory dump file will be handled as configured
-                    results = vol.run()
-                except Exception:
-                    log.exception("Generic error executing volatility")
-                    if self.voptions.basic.delete_memdump_on_exception:
-                        try:
-                            os.remove(self.memory_path)
-                        except OSError:
-                            log.error('Unable to delete memory dump file at path "%s" ', self.memory_path)
-            else:
-                log.error("Memory dump not found: to run volatility you have to enable memory_dump")
-        else:
+        if not HAVE_VOLATILITY:
             log.error("Cannot run volatility module: volatility library not available")
+            return results
 
-        return results
+        if self.memory_path and path_exists(self.memory_path):
+            try:
+                vol = VolatilityManager(self.memory_path)
+                results = vol.run()
+            except Exception:
+                log.exception("Generic error executing volatility")
+                if self.options.basic.delete_memdump_on_exception:
+                    try:
+                        path_delete(self.memory_path)
+                    except OSError:
+                        log.error('Unable to delete memory dump file at path "%s"', self.memory_path)
+        else:
+            log.error("Memory dump not found: to run volatility you have to enable memory_dump")
 
+        return results
diff --git a/modules/processing/network.py b/modules/processing/network.py
index 20d5693f0b7..030f5c36c03 100644
--- a/modules/processing/network.py
+++ b/modules/processing/network.py
@@ -2,49 +2,57 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
+# Imports for the batch sort.
+# http://stackoverflow.com/questions/10665925/how-to-sort-huge-files-with-python
+# http://code.activestate.com/recipes/576755/
+
+import binascii
+import heapq
+import ipaddress
+import logging
 import os
-import sys
 import socket
 import struct
+import sys
 import tempfile
-import logging
-import binascii
-import dns.resolver
-from collections import OrderedDict
-from urllib.parse import urlunparse
+import traceback
+from base64 import b64encode
+from collections import OrderedDict, namedtuple
+from contextlib import suppress
 from hashlib import md5, sha1, sha256
+from itertools import islice
 from json import loads
-from base64 import b64encode
-
-try:
-    import re2 as re
-except ImportError:
-    import re
-
-# required to work webgui
-CUCKOO_ROOT = os.path.join(os.path.abspath(os.path.dirname(__file__)), "..", "..")
-sys.path.append(CUCKOO_ROOT)
+from urllib.parse import urlunparse
 
+import cachetools.func
+import dns.resolver
+from dns.reversename import from_address
 
+import utils.profiling as profiling
+from data.safelist.domains import domain_passlist_re
 from lib.cuckoo.common.abstracts import Processing
 from lib.cuckoo.common.config import Config
 from lib.cuckoo.common.dns import resolve
+from lib.cuckoo.common.exceptions import CuckooProcessingError
 from lib.cuckoo.common.irc import ircMessage
 from lib.cuckoo.common.objects import File
+from lib.cuckoo.common.path_utils import path_delete, path_exists, path_mkdir, path_read_file, path_write_file
+from lib.cuckoo.common.safelist import is_safelisted_domain
 from lib.cuckoo.common.utils import convert_to_printable
-from lib.cuckoo.common.exceptions import CuckooProcessingError
-from dns.reversename import from_address
-from lib.cuckoo.common.safelist import is_safelisted_domain, is_safelisted_ip
-from data.safelist.domains import domain_passlist
 
-try:
-    import GeoIP
+# from lib.cuckoo.common.safelist import is_safelisted_ip
 
-    IS_GEOIP = True
-    gi = GeoIP.new(GeoIP.GEOIP_MEMORY_CACHE)
+try:
+    import re2 as re
 except ImportError:
-    IS_GEOIP = False
+    import re
+
+
+HAVE_GEOIP = False
+with suppress(ImportError):
+    import maxminddb
+
+    HAVE_GEOIP = True
 
 try:
     import dpkt
@@ -52,26 +60,26 @@
     IS_DPKT = True
 except ImportError:
     IS_DPKT = False
-    print("Missed dependency: pip3 install -U dpkt")
+    print("Missed dependency: poetry run pip install")
 
 HAVE_HTTPREPLAY = False
 try:
     import httpreplay
     import httpreplay.cut
-    if httpreplay.__version__ == '0.3':
+
+    if httpreplay.__version__ == "0.3":
         HAVE_HTTPREPLAY = True
 except ImportError:
-    print("Missed dependency: pip3 install -U git+https://github.com/CAPESandbox/httpreplay")
-
+    print("OPTIONAL! Missed dependency: poetry run pip install -U git+https://github.com/CAPESandbox/httpreplay")
+except SystemError as e:
+    print("httpreplay: %s", str(e))
 
-# Imports for the batch sort.
-# http://stackoverflow.com/questions/10665925/how-to-sort-huge-files-with-python
-# http://code.activestate.com/recipes/576755/
-import heapq
-from itertools import islice
-from collections import namedtuple
+# required to work webgui
+CUCKOO_ROOT = os.path.join(os.path.abspath(os.path.dirname(__file__)), "..", "..")
+sys.path.append(CUCKOO_ROOT)
 
 TLS_HANDSHAKE = 22
+PCAP_BYTES_HTTPREPLAY_WARN_LIMIT = 30 * 1024 * 1024
 
 Keyed = namedtuple("Keyed", ["key", "obj"])
 Packet = namedtuple("Packet", ["raw", "ts"])
@@ -79,32 +87,78 @@
 log = logging.getLogger(__name__)
 cfg = Config()
 proc_cfg = Config("processing")
+routing_cfg = Config("routing")
 enabled_passlist = proc_cfg.network.dnswhitelist
 passlist_file = proc_cfg.network.dnswhitelist_file
 
 enabled_ip_passlist = proc_cfg.network.ipwhitelist
 ip_passlist_file = proc_cfg.network.ipwhitelist_file
 
+enabled_network_passlist = proc_cfg.network.network_passlist
+network_passlist_file = proc_cfg.network.network_passlist_file
+
 # Be less verbose about httpreplay logging messages.
 logging.getLogger("httpreplay").setLevel(logging.CRITICAL)
 
+comment_re = re.compile(r"\s*#.*")
 if enabled_passlist and passlist_file:
-    with open(os.path.join(CUCKOO_ROOT, passlist_file), "r") as f:
-        for domain in list(set(f.read().splitlines())):
-            if domain.startswith("#") or len(domain.strip()) == 0:
+    f = path_read_file(os.path.join(CUCKOO_ROOT, passlist_file), mode="text")
+    for domain in f.splitlines():
+        domain = comment_re.sub("", domain).strip()
+        if domain:
+            domain_passlist_re.append(domain)
+
+ip_passlist = set()
+network_passlist = []
+
+if enabled_ip_passlist and ip_passlist_file:
+    f = path_read_file(os.path.join(CUCKOO_ROOT, ip_passlist_file), mode="text")
+    for ip in f.splitlines():
+        ip = comment_re.sub("", ip).strip()
+        if ip:
+            ip_passlist.add(ip)
+
+if enabled_network_passlist and network_passlist_file and os.path.isfile(network_passlist_file):
+    with open(os.path.join(CUCKOO_ROOT, network_passlist_file), "r") as f:
+        for cidr in set(f.read().splitlines()):
+            if cidr.startswith("#") or len(cidr.strip()) == 0:
                 # comment or empty line
                 continue
-            domain_passlist.append(domain)
 
+            network_passlist.append(ipaddress.ip_network(cidr.strip()))
+
+if HAVE_GEOIP and proc_cfg.network.maxmind_database:
+    # Reload the maxmind database when it has changed, but only check the file system every 5 minutes.
+    _MAXMINDDB_PATH = os.path.join(CUCKOO_ROOT, proc_cfg.network.maxmind_database)
+    _MAXMINDDB_MTIME = None
+    _MAXMINDDB_CLIENT = None
+
+    @cachetools.func.ttl_cache(maxsize=None, ttl=5 * 60)
+    def get_maxminddb_client():
+        global _MAXMINDDB_CLIENT
+        global _MAXMINDDB_MTIME
+        if path_exists(_MAXMINDDB_PATH):
+            mtime = os.stat(_MAXMINDDB_PATH).st_mtime
+            if mtime != _MAXMINDDB_MTIME:
+                _MAXMINDDB_MTIME = mtime
+                log.info("Loading maxmind database from %s", _MAXMINDDB_PATH)
+                _MAXMINDDB_CLIENT = maxminddb.open_database(_MAXMINDDB_PATH)
+            return _MAXMINDDB_CLIENT
+        return None
+
+    # Do initial load
+    _MAXMINDDB_CLIENT = get_maxminddb_client()
+
+else:
+
+    def get_maxminddb_client():
+        return None
 
-ip_passlist = set()
-if enabled_ip_passlist and ip_passlist_file:
-    with open(os.path.join(CUCKOO_ROOT, ip_passlist_file), "r") as f:
-        ip_passlist = set(f.read().split("\n"))
 
 class Pcap:
     """Reads network data from PCAP file."""
-    ssl_ports = 443,
+
+    ssl_ports = (443,)
 
     def __init__(self, filepath, ja3_fprints, options):
         """Creates a new instance.
@@ -114,6 +168,8 @@ def __init__(self, filepath, ja3_fprints, options):
         self.ja3_fprints = ja3_fprints
         self.options = options
 
+        self.ip_n_ports = {}
+
         # List of all hosts.
         self.hosts = []
         # List containing all non-private IP addresses.
@@ -162,11 +218,7 @@ def _is_safelisted(self, conn, hostname):
             return False
 
         # Is DNS recording coming from allowed NS server.
-        if not self.known_dns:
-            pass
-        elif (conn.get("src") in self.known_dns or conn.get("dst") in self.known_dns):
-            pass
-        else:
+        if conn.get("src") not in self.known_dns and conn.get("dst") not in self.known_dns:
             return False
 
         # Is hostname safelisted.
@@ -177,14 +229,9 @@ def _is_safelisted(self, conn, hostname):
 
     def _build_known_dns(self):
         """Build known DNS list."""
-        result = []
         _known_dns = self.options.get("allowed_dns")
-        _known_dns = None
         if _known_dns is not None:
-            for r in _known_dns.split(","):
-                result.append(r.strip())
-            return result
-
+            return [r.strip() for r in _known_dns.split(",")]
         return []
 
     def _dns_gethostbyname(self, name):
@@ -192,11 +239,7 @@ def _dns_gethostbyname(self, name):
         @param name: hostname.
         @return: IP address or blank
         """
-        if cfg.processing.resolve_dns:
-            ip = resolve(name)
-        else:
-            ip = ""
-        return ip
+        return resolve(name) if cfg.processing.resolve_dns else ""
 
     def _is_private_ip(self, ip):
         """Check if the IP belongs to private network blocks.
@@ -204,7 +247,7 @@ def _is_private_ip(self, ip):
         @return: boolean representing whether the IP belongs or not to
                  a private network block.
         """
-        networks = [
+        networks = (
             ("0.0.0.0", 8),
             ("10.0.0.0", 8),
             ("100.64.0.0", 10),
@@ -221,42 +264,42 @@ def _is_private_ip(self, ip):
             ("240.0.0.0", 4),
             ("255.255.255.255", 32),
             ("224.0.0.0", 4),
-        ]
+        )
 
-        try:
+        with suppress(Exception):
             ipaddr = struct.unpack(">I", socket.inet_aton(ip))[0]
             for netaddr, bits in networks:
                 network_low = struct.unpack(">I", socket.inet_aton(netaddr))[0]
                 network_high = network_low | (1 << (32 - bits)) - 1
                 if ipaddr <= network_high and ipaddr >= network_low:
                     return True
-        except:
-            pass
-
-        return False
 
     def _get_cn(self, ip):
-        cn = "unknown"
-        log = logging.getLogger("Processing.Pcap")
-        if IS_GEOIP:
-            try:
-                temp_cn = gi.country_name_by_addr(ip)
-                if temp_cn:
-                    cn = temp_cn
-            except:
-                log.error("Unable to GEOIP resolve %s" % ip)
-        return cn
+        if proc_cfg.network.country_lookup:
+            maxminddb_client = get_maxminddb_client()
+            if maxminddb_client:
+                try:
+                    ip_info = maxminddb_client.get(ip)
+                    # ipinfo db
+                    if "continent_name" in ip_info:
+                        return ip_info.get("country", "unknown").lower(), ip_info.get("asn", ""), ip_info.get("as_name", "")
+                    else:
+                        return ip_info.get("country", {}).get("names", {}).get("en", "unknown"), "", ""
+                except Exception:
+                    log.debug("Unable to resolve GEOIP for %s", ip)
+        return "unknown", "", ""
 
     def _add_hosts(self, connection):
         """Add IPs to unique list.
         @param connection: connection data
         """
-        try:
+        with suppress(Exception):
             if connection["dst"] not in self.hosts:
                 ip = convert_to_printable(connection["dst"])
 
                 if ip not in self.hosts:
-                    if ip in ip_passlist:
+                    ip_address = ipaddress.ip_address(ip)
+                    if ip in ip_passlist or any(ip_address in network for network in network_passlist):
                         return False
                     self.hosts.append(ip)
 
@@ -265,8 +308,7 @@ def _add_hosts(self, connection):
                     # first packet they appear in.
                     if not self._is_private_ip(ip):
                         self.unique_hosts.append(ip)
-        except:
-            pass
+                        self.ip_n_ports.setdefault(ip, []).append(connection["dport"])
 
     def _enrich_hosts(self, unique_hosts):
         enriched_hosts = []
@@ -281,10 +323,8 @@ def _enrich_hosts(self, unique_hosts):
             inaddrarpa = ""
             hostname = ""
             if cfg.processing.reverse_dns:
-                try:
+                with suppress(Exception):
                     inaddrarpa = d.query(from_address(ip), "PTR").rrset[0].to_text()
-                except:
-                    pass
             for request in self.dns_requests.values():
                 for answer in request["answers"]:
                     if answer["data"] == ip:
@@ -292,36 +332,47 @@ def _enrich_hosts(self, unique_hosts):
                         break
                 if hostname:
                     break
-
-            enriched_hosts.append({"ip": ip, "country_name": self._get_cn(ip), "hostname": hostname, "inaddrarpa": inaddrarpa})
+            country_name, asn, asn_name = self._get_cn(ip)
+            enriched_hosts.append(
+                {
+                    "ip": ip,
+                    "country_name": country_name,
+                    "asn": asn,
+                    "asn_name": asn_name,
+                    "hostname": hostname,
+                    "inaddrarpa": inaddrarpa,
+                    "ports": self.ip_n_ports.get(ip, []),
+                }
+            )
         return enriched_hosts
 
-    def _tcp_dissect(self, conn, data):
+    def _tcp_dissect(self, conn, data, ts):
         """Runs all TCP dissectors.
         @param conn: connection.
         @param data: payload data.
+        @param ts: timestamp.
         """
         if self._check_http(data):
-            self._add_http(conn, data)
+            self._add_http(conn, data, ts)
+        # HTTPS.
+        elif conn["dport"] in self.ssl_ports or conn["sport"] in self.ssl_ports:
+            self._https_identify(conn, data)
         # SMTP.
-        if conn["dport"] == 25 or conn["dport"] == 587:
+        elif conn["dport"] in (25, 587):
             self._reassemble_smtp(conn, data)
         # IRC.
-        if conn["dport"] != 21 and self._check_irc(data):
+        elif conn["dport"] != 21 and self._check_irc(data):
             self._add_irc(conn, data)
-        # HTTPS.
-        if conn["dport"] in self.ssl_ports or conn["sport"] in self.ssl_ports:
-            self._https_identify(conn, data)
 
-    def _udp_dissect(self, conn, data):
+    def _udp_dissect(self, conn, data, ts):
         """Runs all UDP dissectors.
         @param conn: connection.
         @param data: payload data.
+        @param ts: timestamp.
         """
         # Select DNS and MDNS traffic.
-        if conn["dport"] == 53 or conn["sport"] == 53 or conn["dport"] == 5353 or conn["sport"] == 5353:
-            if self._check_dns(data):
-                self._add_dns(data)
+        if (conn["dport"] in (53, 5353) or conn["sport"] in (53, 5353)) and self._check_dns(data):
+            self._add_dns(data, ts)
 
     def _check_icmp(self, icmp_data):
         """Checks for ICMP traffic.
@@ -329,7 +380,7 @@ def _check_icmp(self, icmp_data):
         """
         try:
             return isinstance(icmp_data, dpkt.icmp.ICMP) and len(icmp_data.data) > 0
-        except:
+        except Exception:
             return False
 
     def _icmp_dissect(self, conn, data):
@@ -338,24 +389,22 @@ def _icmp_dissect(self, conn, data):
         @param data: payload data.
         """
 
-        if self._check_icmp(data):
-            # If ICMP packets are coming from the host, it probably isn't
-            # relevant traffic, hence we can skip from reporting it.
-            if conn["src"] == cfg.resultserver.ip:
-                return
+        if not self._check_icmp(data):
+            return
 
-            entry = {}
-            entry["src"] = conn["src"]
-            entry["dst"] = conn["dst"]
-            entry["type"] = data.type
+        # If ICMP packets are coming from the host, it probably isn't
+        # relevant traffic, hence we can skip from reporting it.
+        if conn["src"] == cfg.resultserver.ip:
+            return
 
-            # Extract data from dpkg.icmp.ICMP.
-            try:
-                entry["data"] = convert_to_printable(data.data.data)
-            except:
-                entry["data"] = ""
+        entry = {"src": conn["src"], "dst": conn["dst"], "type": data.type}
+        # Extract data from dpkg.icmp.ICMP.
+        try:
+            entry["data"] = convert_to_printable(data.data.data)
+        except Exception:
+            entry["data"] = ""
 
-            self.icmp_requests.append(entry)
+        self.icmp_requests.append(entry)
 
     def _check_dns(self, udpdata):
         """Checks for DNS traffic.
@@ -363,21 +412,22 @@ def _check_dns(self, udpdata):
         """
         try:
             dpkt.dns.DNS(udpdata)
-        except:
+        except Exception:
             return False
 
         return True
 
-    def _add_dns(self, udpdata):
+    def _add_dns(self, udpdata, ts):
         """Adds a DNS data flow.
         @param udpdata: UDP data flow.
+        @param ts: timestamp.
         """
         dns = dpkt.dns.DNS(udpdata)
 
         # DNS query parsing.
         query = {}
 
-        if dns.rcode == dpkt.dns.DNS_RCODE_NOERR or dns.qr == dpkt.dns.DNS_R or dns.opcode == dpkt.dns.DNS_QUERY or True:
+        if dns.rcode == dpkt.dns.DNS_RCODE_NOERR or dns.qr == dpkt.dns.DNS_R or dns.opcode == dpkt.dns.DNS_QUERY:
             # DNS question.
             try:
                 q_name = dns.qd[0].name
@@ -388,99 +438,83 @@ def _add_dns(self, udpdata):
             query["request"] = q_name
 
             # See https://dpkt.readthedocs.io/en/latest/_modules/dpkt/dns.html
-            if q_type == dpkt.dns.DNS_A:
-                query["type"] = "A"
-            elif q_type == dpkt.dns.DNS_NS:
-                query["type"] = "NS"
-            elif q_type == dpkt.dns.DNS_CNAME:
-                query["type"] = "CNAME"
-            elif q_type == dpkt.dns.DNS_SOA:
-                query["type"] = "SOA"
-            elif q_type == dpkt.dns.DNS_NULL:
-                query["type"] = "NULL"
-            elif q_type == dpkt.dns.DNS_PTR:
-                query["type"] = "PTR"
-            elif q_type == dpkt.dns.DNS_HINFO:
-                query["type"] = "HINFO"
-            elif q_type == dpkt.dns.DNS_MX:
-                query["type"] = "MX"
-            elif q_type == dpkt.dns.DNS_TXT:
-                query["type"] = "TXT"
-            elif q_type == dpkt.dns.DNS_AAAA:
-                query["type"] = "AAAA"
-            elif q_type == dpkt.dns.DNS_SRV:
-                query["type"] = "SRV"
-            elif q_type == dpkt.dns.DNS_OPT:
-                query["type"] = "OPT"
+            type_mapping = {
+                dpkt.dns.DNS_A: "A",
+                dpkt.dns.DNS_NS: "NS",
+                dpkt.dns.DNS_CNAME: "CNAME",
+                dpkt.dns.DNS_SOA: "SOA",
+                dpkt.dns.DNS_NULL: "NULL",
+                dpkt.dns.DNS_PTR: "PTR",
+                dpkt.dns.DNS_HINFO: "HINFO",
+                dpkt.dns.DNS_MX: "MX",
+                dpkt.dns.DNS_TXT: "TXT",
+                dpkt.dns.DNS_AAAA: "AAAA",
+                dpkt.dns.DNS_SRV: "SRV",
+                dpkt.dns.DNS_OPT: "OPT",
+            }
+            if q_type in type_mapping:
+                query["type"] = type_mapping[q_type]
 
             # DNS answer.
             query["answers"] = []
             for answer in dns.an:
                 ans = {}
                 if answer.type == dpkt.dns.DNS_A:
-                    ans["type"] = "A"
+                    ans = {"type": "A"}
                     try:
                         ans["data"] = socket.inet_ntoa(answer.rdata)
                     except socket.error:
                         continue
                 elif answer.type == dpkt.dns.DNS_AAAA:
-                    ans["type"] = "AAAA"
+                    ans = {"type": "AAAA"}
                     try:
                         ans["data"] = socket.inet_ntop(socket.AF_INET6, answer.rdata)
                     except (socket.error, ValueError):
                         continue
                 elif answer.type == dpkt.dns.DNS_CNAME:
-                    ans["type"] = "CNAME"
-                    ans["data"] = answer.cname
+                    ans = {"type": "CNAME", "data": answer.cname}
                 elif answer.type == dpkt.dns.DNS_MX:
-                    ans["type"] = "MX"
-                    ans["data"] = answer.mxname
+                    ans = {"type": "MX", "data": answer.mxname}
                 elif answer.type == dpkt.dns.DNS_PTR:
-                    ans["type"] = "PTR"
-                    ans["data"] = answer.ptrname
+                    ans = {"type": "PTR", "data": answer.ptrname}
                 elif answer.type == dpkt.dns.DNS_NS:
-                    ans["type"] = "NS"
-                    ans["data"] = answer.nsname
+                    ans = {"type": "NS", "data": answer.nsname}
                 elif answer.type == dpkt.dns.DNS_SOA:
-                    ans["type"] = "SOA"
-                    ans["data"] = ",".join(
-                        [
-                            answer.mname,
-                            answer.rname,
-                            str(answer.serial),
-                            str(answer.refresh),
-                            str(answer.retry),
-                            str(answer.expire),
-                            str(answer.minimum),
-                        ]
-                    )
+                    ans = {
+                        "type": "SOA",
+                        "data": ",".join(
+                            [
+                                answer.mname,
+                                answer.rname,
+                                str(answer.serial),
+                                str(answer.refresh),
+                                str(answer.retry),
+                                str(answer.expire),
+                                str(answer.minimum),
+                            ]
+                        ),
+                    }
                 elif answer.type == dpkt.dns.DNS_HINFO:
-                    ans["type"] = "HINFO"
-                    ans["data"] = " ".join(answer.text)
+                    ans = {"type": "HINFO", "data": " ".join(answer.text)}
                 elif answer.type == dpkt.dns.DNS_TXT:
-                    ans["type"] = "TXT"
-                    ans["data"] = " ".join(answer.text)
+                    ans = {"type": "TXT", "data": " ".join(answer.text)}
 
                 # TODO: add srv handling
                 query["answers"].append(ans)
 
             if dns.rcode == dpkt.dns.DNS_RCODE_NXDOMAIN:
-                ans = {}
-                ans["type"] = "NXDOMAIN"
-                ans["data"] = ""
+                ans = {"type": "NXDOMAIN", "data": ""}
                 query["answers"].append(ans)
 
             if enabled_passlist:
-                for reject in domain_passlist:
-                    try:
-                        if re.search(reject, query["request"]):
-                            if query["answers"]:
-                                for addip in query["answers"]:
-                                    if addip["type"] == "A" or addip["type"] == "AAAA":
-                                        ip_passlist.add(addip["data"])
-                            return True
-                    except re.RegexError as e:
-                        log.error(("bad regex", reject, e))
+                for reject in domain_passlist_re:
+                    if re.search(reject, query["request"]):
+                        for addip in query["answers"]:
+                            if routing_cfg.inetsim.enabled and addip["data"] == routing_cfg.inetsim.server:
+                                continue
+                            if addip["type"] in ("A", "AAAA"):
+                                ip_passlist.add(addip["data"])
+                        return True
 
             self._add_domain(query["request"])
 
@@ -488,18 +522,21 @@ def _add_dns(self, udpdata):
                 reqtuple = query["type"], query["request"]
                 if reqtuple not in self.dns_requests:
                     self.dns_requests[reqtuple] = query
-                new_answers = set((i["type"], i["data"]) for i in query["answers"]) - self.dns_answers
+                new_answers = {(i["type"], i["data"]) for i in query["answers"]} - self.dns_answers
+
                 self.dns_answers.update(new_answers)
-                self.dns_requests[reqtuple]["answers"] += [dict(type=i[0], data=i[1]) for i in new_answers]
-            #else:
-            #    print(query)
+                self.dns_requests[reqtuple]["answers"].extend({"type": i[0], "data": i[1]} for i in new_answers)
+
+                if "first_seen" not in self.dns_requests[reqtuple]:
+                    self.dns_requests[reqtuple]["first_seen"] = ts
         return True
 
     def _add_domain(self, domain):
         """Add a domain to unique list.
         @param domain: domain name.
         """
-        filters = [".*\\.windows\\.com$", ".*\\.in\\-addr\\.arpa$", ".*\\.ip6\\.arpa$"]
+        # ToDo global filter here right?
+        filters = (".*\\.windows\\.com$", ".*\\.in\\-addr\\.arpa$", ".*\\.ip6\\.arpa$")
 
         regexps = [re.compile(filter) for filter in filters]
         for regexp in regexps:
@@ -527,10 +564,11 @@ def _check_http(self, tcpdata):
 
         return True
 
-    def _add_http(self, conn, tcpdata):
+    def _add_http(self, conn, tcpdata, ts):
         """Adds an HTTP flow.
         @param conn: TCP connection info.
         @param tcpdata: TCP data flow.
+        @param ts: timestamp.
         """
         if tcpdata in self.http_requests:
             self.http_requests[tcpdata]["count"] += 1
@@ -546,7 +584,7 @@ def _add_http(self, conn, tcpdata):
             entry = {"count": 1}
 
             if "host" in http.headers and re.match(
-                "^([A-Z0-9]|[A-Z0-9][A-Z0-9\-]{0,61}[A-Z0-9])(\.([A-Z0-9]|[A-Z0-9][A-Z0-9\-]{0,61}[A-Z0-9]))+(:[0-9]{1,5})?$",
+                r"^([A-Z0-9]|[A-Z0-9][A-Z0-9\-]{0,61}[A-Z0-9])(\.([A-Z0-9]|[A-Z0-9][A-Z0-9\-]{0,61}[A-Z0-9]))+(:[0-9]{1,5})?$",
                 http.headers["host"],
                 re.IGNORECASE,
             ):
@@ -555,31 +593,33 @@ def _add_http(self, conn, tcpdata):
                 entry["host"] = conn["dst"]
 
             if enabled_passlist:
-                for reject in domain_passlist:
+                for reject in domain_passlist_re:
                     if re.search(reject, entry["host"]):
                         return False
 
             entry["port"] = conn["dport"]
 
             # Manually deal with cases when destination port is not the default one,
-            # and it is  not included in host header.
+            # and it is not included in host header.
             netloc = entry["host"]
             if entry["port"] != 80 and ":" not in netloc:
-                netloc += ":" + str(entry["port"])
+                netloc += f":{entry['port']}"
+
+            # Sometimes the host is found inside the path in the HTTP headers. When that happens, parse the host outside of the path.
+            path = http.uri
+            if netloc and netloc in http.uri:
+                path = http.uri.split(netloc)[1]
+            elif entry["host"] and entry["host"] in http.uri:
+                path = http.uri.split(entry["host"])[1]
 
             entry["data"] = convert_to_printable(tcpdata)
-            entry["uri"] = convert_to_printable(urlunparse(("http", netloc, http.uri, None, None, None)))
+            entry["uri"] = convert_to_printable(urlunparse(("http", netloc, path, None, None, None)))
             entry["body"] = convert_to_printable(http.body)
-            entry["path"] = convert_to_printable(http.uri)
-
-            if "user-agent" in http.headers:
-                entry["user-agent"] = convert_to_printable(http.headers["user-agent"])
-            else:
-                entry["user-agent"] = ""
-
+            entry["path"] = convert_to_printable(path)
+            entry["user-agent"] = convert_to_printable(http.headers["user-agent"]) if "user-agent" in http.headers else ""
             entry["version"] = convert_to_printable(http.version)
             entry["method"] = convert_to_printable(http.method)
-
+            entry["first_seen"] = ts
             self.http_requests[tcpdata] = entry
         except Exception:
             return False
@@ -591,9 +631,9 @@ def _https_identify(self, conn, data):
         Random in order to identify the accompanying master secret later."""
         try:
             record = dpkt.ssl.TLSRecord(data)
-        except dpkt.NeedData as e:
+        except dpkt.NeedData:
             return
-        except Exception as e:
+        except Exception:
             log.exception("Error reading possible TLS Record")
             return
 
@@ -615,27 +655,27 @@ def _https_identify(self, conn, data):
             return
 
         # Extract the server random and the session id.
-        self.tls_keys.append({
-            "server_random": binascii.b2a_hex(record.data.random),
-            "session_id": binascii.b2a_hex(record.data.session_id),
-        })
+        self.tls_keys.append(
+            {
+                "server_random": binascii.b2a_hex(record.data.random),
+                "session_id": binascii.b2a_hex(record.data.session_id),
+            }
+        )
 
     def _reassemble_smtp(self, conn, data):
         """Reassemble a SMTP flow.
         @param conn: connection dict.
         @param data: raw data.
         """
-        if conn["dst"] in self.smtp_flow:
-            self.smtp_flow[conn["dst"]] += data
-        else:
-            self.smtp_flow[conn["dst"]] = data
+        self.smtp_flow.setdefault(conn["dst"], []).append(data)
 
     def _process_smtp(self):
         """Process SMTP flow."""
+        # data is list
         for conn, data in self.smtp_flow.items():
             # Detect new SMTP flow.
-            if data.startswith((b"EHLO", b"HELO")):
-                self.smtp_requests.append({"dst": conn, "raw": convert_to_printable(data)})
+            if any(b"EHLO" in item or b"HELO" in item for item in data):
+                self.smtp_requests.append({"dst": conn, "raw": convert_to_printable(b"".join(data))})
 
     def _check_irc(self, tcpdata):
         """
@@ -652,15 +692,12 @@ def _check_irc(self, tcpdata):
     def _add_irc(self, conn, tcpdata):
         """
         Adds an IRC communication.
-	    @param conn: TCP connection info.
+            @param conn: TCP connection info.
         @param tcpdata: TCP data in flow
         """
 
-        if enabled_passlist:
-            if conn["src"] in ip_passlist:
-                return False
-            if conn["dst"] in ip_passlist:
-                return False
+        if enabled_passlist and conn["src"] in ip_passlist or conn["dst"] in ip_passlist:
+            return False
 
         try:
             reqc = ircMessage()
@@ -672,7 +709,7 @@ def _add_irc(self, conn, tcpdata):
             server = reqs.getServerMessagesFilter(tcpdata, filters_sc)
             for message in server:
                 message.update(conn)
-            self.irc_requests = self.irc_requests + client + server
+            self.irc_requests += client + server
         except Exception:
             return False
 
@@ -685,30 +722,38 @@ def run(self):
         log = logging.getLogger("Processing.Pcap")
 
         if not IS_DPKT:
-            log.error("Python DPKT is not installed, aborting PCAP analysis.")
+            log.error("Python DPKT is not installed, aborting PCAP analysis")
             return self.results
 
-        if not os.path.exists(self.filepath):
-            log.warning('The PCAP file does not exist at path "%s".', self.filepath)
+        if not path_exists(self.filepath):
+            log.debug(
+                'The PCAP file does not exist at path "%s". Did you run analysis with live connection? Did you enable pcap in cuscom/conf/routing.conf?',
+                self.filepath,
+            )
             return self.results
 
         if os.path.getsize(self.filepath) == 0:
-            log.error('The PCAP file at path "%s" is empty.' % self.filepath)
+            log.error('The PCAP file at path "%s" is empty', self.filepath)
             return self.results
 
         try:
             file = open(self.filepath, "rb")
         except (IOError, OSError):
-            log.error("Unable to open %s" % self.filepath)
+            log.error("Unable to open %s", self.filepath)
             return self.results
 
         try:
-            pcap = dpkt.pcap.Reader(file)
-        except dpkt.dpkt.NeedData as e:
-            log.error('Unable to read PCAP file at path "%s".', self.filepath)
+            if PCAP_TYPE == "pcap":
+                pcap = dpkt.pcap.Reader(file)
+            elif PCAP_TYPE == "pcapng":
+                pcap = dpkt.pcapng.Reader(file)
+            else:
+                return self.results
+        except dpkt.dpkt.NeedData:
+            log.error('Unable to read PCAP file at path "%s"', self.filepath)
             return self.results
         except ValueError:
-            log.error('Unable to read PCAP file at path "%s". File is ' "corrupted or wrong format." % self.filepath)
+            log.error('Unable to read PCAP file at path "%s". File is corrupted or wrong format', self.filepath)
             return self.results
 
         offset = file.tell()
@@ -745,16 +790,21 @@ def run(self):
                     connection["dport"] = tcp.dport
 
                     if tcp.data:
-                        self._tcp_dissect(connection, tcp.data)
-                        src, sport, dst, dport = (connection["src"], connection["sport"], connection["dst"], connection["dport"])
-                        if not ((dst, dport, src, sport) in self.tcp_connections_seen or (src, sport, dst, dport) in self.tcp_connections_seen):
+                        self._tcp_dissect(connection, tcp.data, ts)
+                        src, sport, dst, dport = connection["src"], connection["sport"], connection["dst"], connection["dport"]
+                        if not (
+                            (dst, dport, src, sport) in self.tcp_connections_seen
+                            or (src, sport, dst, dport) in self.tcp_connections_seen
+                        ):
                             self.tcp_connections.append((src, sport, dst, dport, offset, ts - first_ts))
                             self.tcp_connections_seen.add((src, sport, dst, dport))
                         self.alive_hosts[dst, dport] = True
                     else:
                         ipconn = (
-                            connection["src"], tcp.sport,
-                            connection["dst"], tcp.dport,
+                            connection["src"],
+                            tcp.sport,
+                            connection["dst"],
+                            tcp.dport,
                         )
                         seqack = self.tcp_connections_dead.get(ipconn)
                         if seqack == (tcp.seq, tcp.ack):
@@ -771,10 +821,13 @@ def run(self):
                     connection["sport"] = udp.sport
                     connection["dport"] = udp.dport
                     if len(udp.data) > 0:
-                        self._udp_dissect(connection, udp.data)
+                        self._udp_dissect(connection, udp.data, ts)
 
-                    src, sport, dst, dport = (connection["src"], connection["sport"], connection["dst"], connection["dport"])
-                    if not ((dst, dport, src, sport) in self.udp_connections_seen or (src, sport, dst, dport) in self.udp_connections_seen):
+                    src, sport, dst, dport = connection["src"], connection["sport"], connection["dst"], connection["dport"]
+                    if not (
+                        (dst, dport, src, sport) in self.udp_connections_seen
+                        or (src, sport, dst, dport) in self.udp_connections_seen
+                    ):
                         self.udp_connections.append((src, sport, dst, dport, offset, ts - first_ts))
                         self.udp_connections_seen.add((src, sport, dst, dport))
 
@@ -798,20 +851,30 @@ def run(self):
         # Post processors for reconstructed flows.
         self._process_smtp()
 
-        # Remove hosts that have an IP which correlate to a passlisted domain
-
         # Build results dict.
-        self.results["hosts"] = self._enrich_hosts(self.unique_hosts)
-        self.results["domains"] = self.unique_domains
-        self.results["tcp"] = [conn_from_flowtuple(i) for i in self.tcp_connections]
-        self.results["udp"] = [conn_from_flowtuple(i) for i in self.udp_connections]
-        self.results["icmp"] = self.icmp_requests
-        self.results["http"] = list(self.http_requests.values())
-        self.results["dns"] = list(self.dns_requests.values())
-        self.results["smtp"] = self.smtp_requests
-        self.results["irc"] = self.irc_requests
-
-        self.results["dead_hosts"] = []
+        if not self.options.get("sorted", False):
+            self.results["hosts"] = self._enrich_hosts(self.unique_hosts)
+            self.results["domains"] = self.unique_domains
+            self.results["tcp"] = [conn_from_flowtuple(i) for i in self.tcp_connections]
+            self.results["udp"] = [conn_from_flowtuple(i) for i in self.udp_connections]
+            self.results["icmp"] = self.icmp_requests
+            self.results["http"] = list(self.http_requests.values())
+            self.results["dns"] = list(self.dns_requests.values())
+            self.results["smtp"] = self.smtp_requests
+            self.results["irc"] = self.irc_requests
+            self.results["dead_hosts"] = []
+        else:
+            self.results["sorted"] = {}
+            self.results["sorted"]["tcp"] = [conn_from_flowtuple(i) for i in self.tcp_connections]
+            self.results["sorted"]["udp"] = [conn_from_flowtuple(i) for i in self.udp_connections]
+
+            if enabled_passlist:
+                for keyword in ("tcp", "udp"):
+                    for host in self.results["sorted"][keyword]:
+                        for delip in ip_passlist:
+                            if delip in (host["src"], host["dst"]):
+                                self.results["sorted"][keyword].remove(host)
+            return self.results
 
         # Report each IP/port combination as a dead host if we've had to retry
         # at least 3 times to connect to it and if no successful connections
@@ -824,8 +887,8 @@ def run(self):
             if (ip, port) not in self.results["dead_hosts"]:
                 self.results["dead_hosts"].append((ip, port))
 
+        # Remove hosts that have an IP which correlate to a passlisted domain
         if enabled_passlist:
-
             for host in self.results["hosts"]:
                 for delip in ip_passlist:
                     if delip == host["ip"]:
@@ -834,12 +897,13 @@ def run(self):
             for keyword in ("tcp", "udp", "icmp"):
                 for host in self.results[keyword]:
                     for delip in ip_passlist:
-                        if delip == host["src"] or delip == host["dst"]:
+                        if delip in (host["src"], host["dst"]):
                             self.results[keyword].remove(host)
 
         return self.results
 
-class Pcap2(object):
+
+class Pcap2:
     """Interpret the PCAP file through the httpreplay library which parses
     the various protocols, decrypts and decodes them, and then provides us
     with the high level representation of it."""
@@ -853,7 +917,7 @@ def __init__(self, pcap_path, tlsmaster, network_path):
             80: httpreplay.cut.http_handler,
             443: lambda: httpreplay.cut.https_handler(tlsmaster),
             465: httpreplay.cut.smtp_handler,
-            587: httpreplay.cut.smtp_handler,
+            587: lambda: httpreplay.cut.smtp_handler(tlsmaster),
             4443: lambda: httpreplay.cut.https_handler(tlsmaster),
             8000: httpreplay.cut.http_handler,
             8080: httpreplay.cut.http_handler,
@@ -861,29 +925,35 @@ def __init__(self, pcap_path, tlsmaster, network_path):
         }
 
     def run(self):
-        results = {
-            "http_ex": [],
-            "https_ex": [],
-            "smtp_ex": []
-        }
+        results = {"http_ex": [], "https_ex": [], "smtp_ex": []}
 
-        if not os.path.exists(self.network_path):
-            os.makedirs(self.network_path, exist_ok=True)
+        if not path_exists(self.network_path):
+            path_mkdir(self.network_path, exist_ok=True)
 
-        if not os.path.exists(self.pcap_path):
-            log.warning("The PCAP file does not exist at path \"%s\".", self.pcap_path)
+        if not path_exists(self.pcap_path):
+            log.debug('The PCAP file does not exist at path "%s"', self.pcap_path)
             return {}
 
+        httpreplay_start = profiling.Counter()
+        log.info("starting processing pcap with httpreplay")
+        if os.path.getsize(self.pcap_path) > PCAP_BYTES_HTTPREPLAY_WARN_LIMIT:
+            log.warning("httpreplay processing may timeout due to pcap size")
+
         r = httpreplay.reader.PcapReader(open(self.pcap_path, "rb"))
         r.tcp = httpreplay.smegma.TCPPacketStreamer(r, self.handlers)
 
         try:
-            l = sorted(r.process(), key=lambda x: x[1])
-        except TypeError:
-            log.warning("You running old httpreplay: pip3 install -U git+https://github.com/CAPESandbox/httpreplay")
+            sorted_r = sorted(r.process(), key=lambda x: x[1])
+        except TypeError as e:
+            log.warning("You running old httpreplay %s: poetry run pip install -U git+https://github.com/CAPESandbox/httpreplay", e)
+            traceback.print_exc()
+            return results
+        except Exception as e:
+            log.error("httpreplay error: %s", e)
+            traceback.print_exc()
             return results
 
-        for s, ts, protocol, sent, recv in l:
+        for s, ts, protocol, sent, recv in sorted_r:
             srcip, srcport, dstip, dstport = s
 
             if enabled_passlist:
@@ -891,8 +961,8 @@ def run(self):
                 if is_safelisted_ip(dstip):
                     continue
                 """
-                #ToDo rewrite the whole safelists
-                #ip or host
+                # ToDo rewrite the whole safelists
+                # ip or host
 
                 if dstip in ip_passlist:
                     continue
@@ -903,33 +973,38 @@ def run(self):
                 elif protocol in ("http", "https"):
                     hostname = sent.headers.get("host")
 
-                for reject in domain_passlist:
+                included_to_passlist = False
+                for reject in domain_passlist_re:
                     if hostname and re.search(reject, hostname):
-                        return False
+                        included_to_passlist = True
+
+                if included_to_passlist:
+                    continue
 
             if protocol == "smtp":
-                results["smtp_ex"].append({
-                    "src": srcip,
-                    "dst": dstip,
-                    "sport": srcport,
-                    "dport": dstport,
-                    "protocol": protocol,
-                    "req": {
-                        "hostname": sent.hostname,
-                        "mail_from": sent.mail_from,
-                        "mail_to": sent.mail_to,
-                        "auth_type": sent.auth_type,
-                        "username": sent.username,
-                        "password": sent.password,
-                        "headers": sent.headers,
-                        "mail_body": sent.message
-                    },
-                    "resp": {
-                        "banner": recv.ready_message
+                results["smtp_ex"].append(
+                    {
+                        "src": srcip,
+                        "dst": dstip,
+                        "sport": srcport,
+                        "dport": dstport,
+                        "protocol": protocol,
+                        "req": {
+                            "hostname": sent.hostname,
+                            "mail_from": sent.mail_from,
+                            "mail_to": sent.mail_to,
+                            "auth_type": sent.auth_type,
+                            "username": sent.username,
+                            "password": sent.password,
+                            "headers": sent.headers,
+                            "mail_body": sent.message,
+                        },
+                        "resp": {"banner": recv.ready_message},
+                        "first_seen": ts,
                     }
-                })
+                )
 
-            if protocol == "http" or protocol == "https":
+            elif protocol in ("http", "https"):
                 response = b""
                 request = b""
                 if isinstance(sent.raw, bytes):
@@ -939,17 +1014,19 @@ def run(self):
 
                 status = int(getattr(recv, "status", 0))
                 tmp_dict = {
-                    "src": srcip, "sport": srcport,
-                    "dst": dstip, "dport": dstport,
+                    "src": srcip,
+                    "sport": srcport,
+                    "dst": dstip,
+                    "dport": dstport,
                     "protocol": protocol,
                     "method": sent.method,
                     "host": sent.headers.get("host", dstip),
                     "uri": sent.uri,
                     "status": status,
-
                     # We'll keep these fields here for now.
-                    "request": request,#.decode("latin-1"),
-                    "response": response,#.decode("latin-1"),
+                    "request": request,  # .decode("latin-1"),
+                    "response": response,  # .decode("latin-1"),
+                    "first_seen": ts,
                 }
 
                 if status and status not in (301, 302):
@@ -958,9 +1035,8 @@ def run(self):
                         req_sha1 = sha1(sent.body).hexdigest()
                         req_sha256 = sha256(sent.body).hexdigest()
 
-                        req_path = os.path.join(self.network_path, req_sha1)
-                        with open(req_path, "wb") as f:
-                            f.write(sent.body)
+                        req_path = os.path.join(self.network_path, req_sha256)
+                        _ = path_write_file(req_path, sent.body)
 
                         # It's not perfect yet, but it'll have to do.
                         tmp_dict["req"] = {
@@ -975,18 +1051,17 @@ def run(self):
                         resp_sha1 = sha1(recv.body).hexdigest()
                         resp_sha256 = sha256(recv.body).hexdigest()
                         resp_path = os.path.join(self.network_path, resp_sha256)
-                        with open(resp_path, "wb") as f:
-                            f.write(recv.body)
-                        resp_preview = list()
+                        _ = path_write_file(resp_path, recv.body)
+                        resp_preview = []
                         try:
                             c = 0
                             for i in range(3):
-                                data = recv.body[c:c+16]
+                                data = recv.body[c : c + 16]
                                 if not data:
                                     continue
-                                s1 = " ".join([f"{i:02x}" for i in data]) # hex string
-                                s1 = s1[0:23] + " " + s1[23:]          # insert extra space between groups of 8 hex values
-                                s2 = "".join([chr(i) if 32 <= i <= 127 else "." for i in data]) # ascii string; chained comparison
+                                s1 = " ".join([f"{i:02x}" for i in data])  # hex string
+                                s1 = f"{s1[:23]} {s1[23:]}"  # insert extra space between groups of 8 hex values
+                                s2 = "".join([chr(i) if 32 <= i <= 127 else "." for i in data])  # ascii string; chained comparison
                                 resp_preview.append(f"{i*16:08x}  {s1:<48}  |{s2}|")
                                 c += 16
                         except Exception as e:
@@ -1000,13 +1075,18 @@ def run(self):
                             "path": resp_path,
                         }
 
-                results["%s_ex" % protocol].append(tmp_dict)
+                results[f"{protocol}_ex"].append(tmp_dict)
 
+        log.info("finished processing pcap with httpreplay")
+        log.debug("httpreplay processing time: %s", (profiling.Counter() - httpreplay_start))
         return results
 
+
 class NetworkAnalysis(Processing):
     """Network analysis."""
 
+    key = "network"
+
     # ToDo map this to suricata.tls.ja
     def _import_ja3_fprints(self):
         """
@@ -1015,7 +1095,7 @@ def _import_ja3_fprints(self):
         :return: dictionary of ja3 fingerprint descreptions
         """
         ja3_fprints = {}
-        if os.path.exists(self.ja3_file):
+        if path_exists(self.ja3_file):
             with open(self.ja3_file, "r") as fpfile:
                 for line in fpfile:
                     try:
@@ -1023,58 +1103,48 @@ def _import_ja3_fprints(self):
                         if "ja3_hash" in ja3 and "desc" in ja3:
                             ja3_fprints[ja3["ja3_hash"]] = ja3["desc"]
                     except Exception as e:
-                        pass
+                        print(e)
 
         return ja3_fprints
 
     def run(self):
+        if not path_exists(self.pcap_path):
+            log.debug('The PCAP file does not exist at path "%s"', self.pcap_path)
+            return {}
+
+        global PCAP_TYPE
+        PCAP_TYPE = check_pcap_file_type(self.pcap_path)
         self.key = "network"
         self.ja3_file = self.options.get("ja3_file", os.path.join(CUCKOO_ROOT, "data", "ja3", "ja3fingerprint.json"))
         if not IS_DPKT:
-            log.error("Python DPKT is not installed, aborting PCAP analysis.")
-            return {}
-
-        if not os.path.exists(self.pcap_path):
-            log.warning('The PCAP file does not exist at path "%s".', self.pcap_path)
+            log.error("Python DPKT is not installed, aborting PCAP analysis")
             return {}
 
         if os.path.getsize(self.pcap_path) == 0:
-            log.error('The PCAP file at path "%s" is empty.' % self.pcap_path)
+            log.error('The PCAP file at path "%s" is empty', self.pcap_path)
             return {}
 
         ja3_fprints = self._import_ja3_fprints()
 
-        results = {}
-        # Save PCAP file hash.
-        if os.path.exists(self.pcap_path):
-            results["pcap_sha256"] = File(self.pcap_path).get_sha256()
+        results = {"pcap_sha256": File(self.pcap_path).get_sha256()}
+        self.options["sorted"] = False
+        results.update(Pcap(self.pcap_path, ja3_fprints, self.options).run())
 
-        """
         if proc_cfg.network.sort_pcap:
             sorted_path = self.pcap_path.replace("dump.", "dump_sorted.")
             sort_pcap(self.pcap_path, sorted_path)
-            # Sorted PCAP file hash.
-            if os.path.exists(sorted_path):
+            if path_exists(sorted_path):
                 results["sorted_pcap_sha256"] = File(sorted_path).get_sha256()
-                pcap_path = sorted_path
-            else:
-                pcap_path = self.pcap_path
-        else:
-            pcap_path = self.pcap_path
-        """
-        pcap_path = self.pcap_path
-        results.update(Pcap(pcap_path, ja3_fprints, self.options).run())
-        # buf = Pcap(self.pcap_path, ja3_fprints).run()
-        # results = Pcap(sorted_path, ja3_fprints).run()
-        # results["http"] = buf["http"]
-        # results["dns"] = buf["dns"]
-
-        if os.path.exists(pcap_path) and HAVE_HTTPREPLAY:
+                self.options["sorted"] = True
+                results.update(Pcap(sorted_path, ja3_fprints, self.options).run())
+
+        if HAVE_HTTPREPLAY:
             try:
-                p2 = Pcap2(pcap_path, self.get_tlsmaster(), self.network_path).run()
-                if p2:
+                tls_master = self.get_tlsmaster()
+                p2 = Pcap2(self.pcap_path, tls_master, self.network_path).run()
+                if any(p2.values()):
                     results.update(p2)
-            except:
+            except Exception:
                 log.exception("Error running httpreplay-based PCAP analysis")
 
         return results
@@ -1083,15 +1153,26 @@ def get_tlsmaster(self):
         """Obtain the client/server random to TLS master secrets mapping that we have obtained through dynamic analysis."""
         tlsmaster = {}
         dump_tls_log = os.path.join(self.analysis_path, "tlsdump", "tlsdump.log")
-        if not os.path.exists(dump_tls_log):
+        if not path_exists(dump_tls_log):
             return tlsmaster
 
         for entry in open(dump_tls_log, "r").readlines() or []:
-            client_random, server_random, master_secret = entry.split(",")
-            client_random = binascii.a2b_hex(client_random.split(":")[-1].strip())
-            server_random = binascii.a2b_hex(server_random.split(":")[-1].strip())
-            master_secret = binascii.a2b_hex(master_secret.split(":")[-1].strip())
-            tlsmaster[client_random, server_random] = master_secret
+            try:
+                for m in re.finditer(
+                    r"client_random:\s*(?P<client_random>[a-f0-9]+)\s*,\s*server_random:\s*(?P<server_random>[a-f0-9]+)\s*,\s*master_secret:\s*(?P<master_secret>[a-f0-9]+)\s*",
+                    entry,
+                    re.I,
+                ):
+                    try:
+                        client_random = binascii.a2b_hex(m.group("client_random").strip())
+                        server_random = binascii.a2b_hex(m.group("server_random").strip())
+                        master_secret = binascii.a2b_hex(m.group("master_secret").strip())
+                        tlsmaster[client_random, server_random] = master_secret
+                    except Exception as e:
+                        log.warning("Problem dealing with tlsdump error: %s line: %s", e, m.group(0))
+            except Exception as e:
+                log.warning("Problem dealing with tlsdump error: %s line: %s", e, entry)
+
         return tlsmaster
 
 
@@ -1115,6 +1196,7 @@ def conn_from_flowtuple(ft):
     sip, sport, dip, dport, offset, relts = ft
     return {"src": sip, "sport": sport, "dst": dip, "dport": dport, "offset": offset, "time": relts}
 
+
 # input_iterator should be a class that also supports writing so we can use it for the temp files
 # this code is mostly taken from some SO post, can't remember the url though
 def batch_sort(input_iterator, output_path, buffer_size=32000, output_class=None):
@@ -1146,15 +1228,13 @@ def batch_sort(input_iterator, output_path, buffer_size=32000, output_class=None
         output_file.close()
     finally:
         for chunk in chunks:
-            try:
+            with suppress(Exception):
                 chunk.close()
-                os.remove(chunk.name)
-            except Exception:
-                pass
+                path_delete(chunk.name)
 
 
 # magic
-class SortCap(object):
+class SortCap:
     """SortCap is a wrapper around the packet lib (dpkt) that allows us to sort pcaps
     together with the batch_sort function above."""
 
@@ -1169,14 +1249,20 @@ def __init__(self, path, linktype=1):
     def write(self, p=None):
         if not self.fileobj:
             self.fileobj = open(self.name, "wb")
-            self.fd = dpkt.pcap.Writer(self.fileobj, linktype=self.linktype)
+            if PCAP_TYPE == "pcap":
+                self.fd = dpkt.pcap.Writer(self.fileobj, linktype=self.linktype)
+            elif PCAP_TYPE == "pcapng":
+                self.fd = dpkt.pcapng.Writer(self.fileobj, linktype=self.linktype)
         if p:
             self.fd.writepkt(p.raw, p.ts)
 
     def __iter__(self):
         if not self.fileobj:
             self.fileobj = open(self.name, "rb")
-            self.fd = dpkt.pcap.Reader(self.fileobj)
+            if PCAP_TYPE == "pcap":
+                self.fd = dpkt.pcap.Reader(self.fileobj)
+            elif PCAP_TYPE == "pcapng":
+                self.fd = dpkt.pcapng.Reader(self.fileobj)
             self.fditer = iter(self.fd)
             self.linktype = self.fd.datalink()
         return self
@@ -1234,7 +1320,7 @@ def flowtuple_from_raw(raw, linktype=1):
             sport, dport = 0, 0
 
     else:
-        sip, dip, proto = 0, 0, -1
+        sip, dip, proto = "0", "0", -1
         sport, dport = 0, 0
 
     flowtuple = (sip, dip, sport, dport, proto)
@@ -1246,7 +1332,7 @@ def payload_from_raw(raw, linktype=1):
     ip = iplayer_from_raw(raw, linktype)
     try:
         return ip.data.data
-    except:
+    except Exception:
         return b""
 
 
@@ -1254,13 +1340,13 @@ def next_connection_packets(piter, linktype=1):
     """Extract all packets belonging to the same flow from a pcap packet iterator"""
     first_ft = None
 
-    for ts, raw in piter:
+    for _, raw in piter:
         ft = flowtuple_from_raw(raw, linktype)
         if not first_ft:
             first_ft = ft
 
         sip, dip, sport, dport, proto = ft
-        if not (first_ft == ft or first_ft == (dip, sip, dport, sport, proto)):
+        if first_ft not in (ft, (dip, sip, dport, sport, proto)):
             break
 
         yield {
@@ -1268,7 +1354,7 @@ def next_connection_packets(piter, linktype=1):
             "dst": dip,
             "sport": sport,
             "dport": dport,
-            "raw": b64encode(payload_from_raw(raw, linktype)).decode("utf-8"),
+            "raw": b64encode(payload_from_raw(raw, linktype)).decode(),
             "direction": first_ft == ft,
         }
 
@@ -1282,3 +1368,17 @@ def packets_for_stream(fobj, offset):
     fobj.seek(offset)
     for p in next_connection_packets(pcapiter, linktype=pcap.datalink()):
         yield p
+
+
+def check_pcap_file_type(filepath):
+    with open(filepath, "rb") as fd:
+        magic_number = fd.read(4)
+        fd.seek(0)
+        magic_number = int.from_bytes(magic_number, byteorder="little")
+
+        if magic_number in (0xA1B2C3D4, 0xD4C3B2A1):
+            return "pcap"
+        elif magic_number == 0x0A0D0D0A:
+            return "pcapng"
+        else:
+            return
diff --git a/modules/processing/parsers/CAPE/BackOffLoader.py b/modules/processing/parsers/CAPE/BackOffLoader.py
deleted file mode 100644
index 93f2370890d..00000000000
--- a/modules/processing/parsers/CAPE/BackOffLoader.py
+++ /dev/null
@@ -1,56 +0,0 @@
-# coding=UTF-8
-
-from __future__ import absolute_import
-from __future__ import print_function
-import pefile
-from struct import unpack_from
-from sys import argv
-from binascii import hexlify
-from hashlib import md5
-from Crypto.Cipher import ARC4
-
-CFG_START = "1020304050607080"
-
-
-def RC4(key, data):
-    cipher = ARC4.new(key)
-    return cipher.decrypt(data)
-
-
-def extract_config(data):
-    config_data = dict()
-    urls = []
-    pe = pefile.PE(data=data)
-    type(pe)
-    for section in pe.sections:
-        if ".data" in section.Name:
-            data = section.get_data()
-            if CFG_START == hexlify(unpack_from(">8s", data, offset=8)[0]):
-                config_data["Version"] = unpack_from(">5s", data, offset=16)[0]
-                rc4_seed = bytes(bytearray(unpack_from(">8B", data, offset=24)))
-                config_data["RC4Seed"] = hexlify(rc4_seed)
-                key = md5(rc4_seed).digest()[:5]
-                config_data["EncryptionKey"] = hexlify(key)
-                enc_data = bytes(bytearray(unpack_from(">8192B", data, offset=32)))
-                dec_data = RC4(key, enc_data)
-                config_data["OnDiskConfigKey"] = unpack_from("20s", data, offset=8224)[0]
-                config_data["Build"] = dec_data[:16].strip("\x00")
-                for url in dec_data[16:].split("|"):
-                    urls.append(url.strip("\x00"))
-                config_data["URLs"] = urls
-                print("")
-            else:
-                return None
-
-    return config_data
-
-
-def config(task_info, data):
-    return extract_config(data)
-
-
-if __name__ == "__main__":
-    filename = argv[1]
-    with open(filename, "r") as infile:
-        t = config(0, infile.read())
-    print(t)
diff --git a/modules/processing/parsers/CAPE/BackOffPOS.py b/modules/processing/parsers/CAPE/BackOffPOS.py
deleted file mode 100644
index f5ea74e1df6..00000000000
--- a/modules/processing/parsers/CAPE/BackOffPOS.py
+++ /dev/null
@@ -1,58 +0,0 @@
-# coding=UTF-8
-
-from __future__ import absolute_import
-from __future__ import print_function
-import sys
-import pefile
-from struct import unpack_from
-from sys import argv
-from binascii import hexlify
-from hashlib import md5
-from Crypto.Cipher import ARC4
-
-
-header_ptrn = b"Content-Type: application/x-www-form-urlencoded"
-
-
-def RC4(key, data):
-    cipher = ARC4.new(key)
-    return cipher.decrypt(data)
-
-
-def extract_config(data):
-    config_data = dict()
-    urls = []
-    pe = pefile.PE(data=data)
-    for section in pe.sections:
-        if b".data" in section.Name:
-            data = section.get_data()
-            cfg_start = data.find(header_ptrn)
-            if cfg_start and cfg_start != -1:
-                start_offset = cfg_start + len(header_ptrn) + 1
-                rc4_seed = bytes(bytearray(unpack_from(">8B", data, offset=start_offset)))
-                config_data["RC4Seed"] = hexlify(rc4_seed)
-                key = md5(rc4_seed).digest()[:5]
-                config_data["EncryptionKey"] = hexlify(key)
-                enc_data = bytes(bytearray(unpack_from(">8192B", data, offset=start_offset + 8)))
-                dec_data = RC4(key, enc_data)
-                config_data["Build"] = dec_data[:16].strip("\x00")
-                for url in dec_data[16:].split("|"):
-                    urls.append(url.strip("\x00"))
-                config_data["URLs"] = urls
-                config_data["Version"] = unpack_from(">5s", data, offset=start_offset + 16 + 8192)[0]
-                print("")
-            else:
-                return None
-
-    return config_data
-
-
-def config(task_info, data):
-    return extract_config(data)
-
-
-if __name__ == "__main__":
-    filename = argv[1]
-    with open(filename, "rb") as infile:
-        t = config(0, infile.read())
-    print(t)
diff --git a/modules/processing/parsers/CAPE/BlackNix.py b/modules/processing/parsers/CAPE/BlackNix.py
deleted file mode 100644
index 067493608f1..00000000000
--- a/modules/processing/parsers/CAPE/BlackNix.py
+++ /dev/null
@@ -1,78 +0,0 @@
-from __future__ import absolute_import
-import os
-import sys
-import pefile
-
-
-def extract_config(raw_data):
-    try:
-        pe = pefile.PE(data=raw_data)
-
-        try:
-            rt_string_idx = [entry.id for entry in pe.DIRECTORY_ENTRY_RESOURCE.entries].index(pefile.RESOURCE_TYPE["RT_RCDATA"])
-        except:
-            return None
-
-        rt_string_directory = pe.DIRECTORY_ENTRY_RESOURCE.entries[rt_string_idx]
-
-        for entry in rt_string_directory.directory.entries:
-            if str(entry.name) == "SETTINGS":
-                data_rva = entry.directory.entries[0].data.struct.OffsetToData
-                size = entry.directory.entries[0].data.struct.Size
-                data = pe.get_memory_mapped_image()[data_rva : data_rva + size]
-                config = data.split("}")
-                return config
-    except:
-        return None
-
-
-def decode(line):
-    result = ""
-    for i in range(0, len(line)):
-        a = ord(line[i])
-        result += chr(a - 1)
-    return result
-
-
-def domain_parse(config):
-    domain_list = []
-    raw_domains = config["Domains"]
-
-    for domain in raw_domains.split(";"):
-        domain_list.append(domain.split(":")[0])
-    return domain_list
-
-
-def config(data):
-    try:
-        conf_dict = {}
-        config_raw = extract_config(data)
-        if config_raw:
-            conf_dict["Mutex"] = decode(config_raw[1])[::-1]
-            conf_dict["Anti Sandboxie"] = decode(config_raw[2])[::-1]
-            conf_dict["Max Folder Size"] = decode(config_raw[3])[::-1]
-            conf_dict["Delay Time"] = decode(config_raw[4])[::-1]
-            conf_dict["Password"] = decode(config_raw[5])[::-1]
-            conf_dict["Kernel Mode Unhooking"] = decode(config_raw[6])[::-1]
-            conf_dict["User More Unhooking"] = decode(config_raw[7])[::-1]
-            conf_dict["Melt Server"] = decode(config_raw[8])[::-1]
-            conf_dict["Offline Screen Capture"] = decode(config_raw[9])[::-1]
-            conf_dict["Offline Keylogger"] = decode(config_raw[10])[::-1]
-            conf_dict["Copy To ADS"] = decode(config_raw[11])[::-1]
-            conf_dict["Domain"] = decode(config_raw[12])[::-1]
-            conf_dict["Persistence Thread"] = decode(config_raw[13])[::-1]
-            conf_dict["Active X Key"] = decode(config_raw[14])[::-1]
-            conf_dict["Registry Key"] = decode(config_raw[15])[::-1]
-            conf_dict["Active X Run"] = decode(config_raw[16])[::-1]
-            conf_dict["Registry Run"] = decode(config_raw[17])[::-1]
-            conf_dict["Safe Mode Startup"] = decode(config_raw[18])[::-1]
-            conf_dict["Inject winlogon.exe"] = decode(config_raw[19])[::-1]
-            conf_dict["Install Name"] = decode(config_raw[20])[::-1]
-            conf_dict["Install Path"] = decode(config_raw[21])[::-1]
-            conf_dict["Campaign Name"] = decode(config_raw[22])[::-1]
-            conf_dict["Campaign Group"] = decode(config_raw[23])[::-1]
-            return conf_dict
-        else:
-            return None
-    except:
-        return None
diff --git a/modules/processing/parsers/CAPE/CobaltStrikeBeacon.py b/modules/processing/parsers/CAPE/CobaltStrikeBeacon.py
deleted file mode 100644
index 1e573a86554..00000000000
--- a/modules/processing/parsers/CAPE/CobaltStrikeBeacon.py
+++ /dev/null
@@ -1,445 +0,0 @@
-"""
-Parses CobaltStrike Beacon's configuration from PE file or memory dump.
-By Gal Kristal from SentinelOne (gkristal.w@gmail.com)
-
-Inspired by https://github.com/JPCERTCC/aa-tools/blob/master/cobaltstrikescan.py
-
-TODO:
- 1. Parse headers modifiers
- 2. Dynamic size parsing
-"""
-
-from __future__ import absolute_import
-from __future__ import print_function
-from struct import unpack
-from socket import inet_ntoa
-from collections import OrderedDict
-from netstruct import unpack as netunpack
-import json
-from base64 import b64encode
-import argparse
-import io
-import re
-import pefile
-import logging
-log = logging.getLogger(__name__)
-
-COLUMN_WIDTH = 35
-SUPPORTED_VERSIONS = (3, 4)
-
-
-class Base64Encoder(json.JSONEncoder):
-    def default(self, o):
-        if isinstance(o, bytes):
-            return b64encode(o).decode()
-        return json.JSONEncoder.default(self, o)
-
-
-class confConsts:
-    MAX_SETTINGS = 64
-    TYPE_NONE = 0
-    TYPE_SHORT = 1
-    TYPE_INT = 2
-    TYPE_STR = 3
-
-    START_PATTERNS = {
-        3: b"\x69\x68\x69\x68\x69\x6b..\x69\x6b\x69\x68\x69\x6b..\x69\x6a",
-        4: b"\x2e\x2f\x2e\x2f\x2e\x2c..\x2e\x2c\x2e\x2f\x2e\x2c..\x2e",
-    }
-    START_PATTERN_DECODED = b"\x00\x01\x00\x01\x00\x02..\x00\x02\x00\x01\x00\x02..\x00"
-    CONFIG_SIZE = 4096
-    XORBYTES = {3: 0x69, 4: 0x2E}
-
-
-def read_dword_be(fh):
-    data = fh.read(4)
-    if not data or len(data) != 4:
-        return None
-    return unpack(">I", data)[0]
-
-
-class packedSetting:
-    def __init__(
-        self,
-        pos,
-        datatype,
-        length=0,
-        isBlob=False,
-        isHeaders=False,
-        isIpAddress=False,
-        isBool=False,
-        isDate=False,
-        boolFalseValue=0,
-        isProcInjectTransform=False,
-        isMalleableStream=False,
-        enum=None,
-        mask=None,
-    ):
-        self.pos = pos
-        self.datatype = datatype
-        self.is_blob = isBlob
-        self.is_headers = isHeaders
-        self.is_ipaddress = isIpAddress
-        self.is_bool = isBool
-        self.is_date = isDate
-        self.is_malleable_stream = isMalleableStream
-        self.bool_false_value = boolFalseValue
-        self.is_transform = isProcInjectTransform
-        self.enum = enum
-        self.mask = mask
-        if datatype == confConsts.TYPE_STR and length == 0:
-            raise (Exception("if datatype is TYPE_STR then length must not be 0"))
-
-        self.length = length
-        if datatype == confConsts.TYPE_SHORT:
-            self.length = 2
-        elif datatype == confConsts.TYPE_INT:
-            self.length = 4
-
-    def binary_repr(self):
-        """
-        Param number - Type - Length - Value
-        """
-        self_repr = bytearray(6)
-        self_repr[1] = self.pos
-        self_repr[3] = self.datatype
-        self_repr[4:6] = self.length.to_bytes(2, "big")
-        return self_repr
-
-    def pretty_repr(self, full_config_data):
-        data_offset = full_config_data.find(self.binary_repr())
-        if data_offset < 0:
-            return "Not Found"
-
-        repr_len = len(self.binary_repr())
-        conf_data = full_config_data[data_offset + repr_len : data_offset + repr_len + self.length]
-        if self.datatype == confConsts.TYPE_SHORT:
-            conf_data = unpack(">H", conf_data)[0]
-            if self.is_bool:
-                ret = "False" if conf_data == self.bool_false_value else "True"
-                return ret
-            elif self.enum:
-                return self.enum[conf_data]
-            elif self.mask:
-                ret_arr = []
-                for k, v in self.mask.items():
-                    if k == 0 and k == conf_data:
-                        ret_arr.append(v)
-                    if k & conf_data:
-                        ret_arr.append(v)
-                return ret_arr
-            else:
-                return conf_data
-
-        elif self.datatype == confConsts.TYPE_INT:
-            if self.is_ipaddress:
-                return inet_ntoa(conf_data)
-
-            else:
-                conf_data = unpack(">I", conf_data)[0]
-                if self.is_date and conf_data != 0:
-                    fulldate = str(conf_data)
-                    return "%s-%s-%s" % (fulldate[0:4], fulldate[4:6], fulldate[6:])
-
-                return conf_data
-
-        if self.is_blob:
-            if self.enum != None:
-                ret_arr = []
-                i = 0
-                while i < len(conf_data):
-                    v = conf_data[i]
-                    if v == 0:
-                        return ret_arr
-                    v = self.enum[v]
-                    if v:
-                        ret_arr.append(v)
-                        i += 1
-
-                    # Only EXECUTE_TYPE for now
-                    else:
-                        # Skipping unknown short value in the start
-                        string1 = netunpack(b"I$", conf_data[i + 3 :])[0].decode()
-                        string2 = netunpack(b"I$", conf_data[i + 3 + 4 + len(string1) :])[0].decode()
-                        ret_arr.append("%s:%s" % (string1.strip("\x00"), string2.strip("\x00")))
-                        i += len(string1) + len(string2) + 11
-
-            elif self.is_transform:
-                if conf_data == bytes(len(conf_data)):
-                    return "Empty"
-
-                ret_arr = []
-                prepend_length = unpack(">I", conf_data[0:4])[0]
-                prepend = conf_data[4 : 4 + prepend_length].hex()
-                append_length_offset = prepend_length + 4
-                append_length = unpack(">I", conf_data[append_length_offset : append_length_offset + 4])[0]
-                append = conf_data[append_length_offset + 4 : append_length_offset + 4 + append_length].hex()
-                ret_arr.append(prepend)
-                ret_arr.append(append if append_length < 256 and append != bytes(append_length) else "Empty")
-                return ret_arr
-
-            elif self.is_malleable_stream:
-                prog = []
-                fh = io.BytesIO(conf_data)
-                while True:
-                    op = read_dword_be(fh)
-                    if not op:
-                        break
-                    if op == 1:
-                        l = read_dword_be(fh)
-                        prog.append("Remove %d bytes from the end" % l)
-                    elif op == 2:
-                        l = read_dword_be(fh)
-                        prog.append("Remove %d bytes from the beginning" % l)
-                    elif op == 3:
-                        prog.append("Base64 decode")
-                    elif op == 8:
-                        prog.append("NetBIOS decode 'a'")
-                    elif op == 11:
-                        prog.append("NetBIOS decode 'A'")
-                    elif op == 13:
-                        prog.append("Base64 URL-safe decode")
-                    elif op == 15:
-                        prog.append("XOR mask w/ random key")
-
-                conf_data = prog
-
-            else:
-                conf_data = conf_data.hex()
-
-            return conf_data
-
-        if self.is_headers:
-            conf_data = conf_data.strip(b"\x00")
-            conf_data = [chunk[1:].decode() for chunk in conf_data.split(b"\x00") if len(chunk) > 1]
-            return conf_data
-
-        conf_data = conf_data.strip(b"\x00").decode()
-        return conf_data
-
-
-class BeaconSettings:
-    BEACON_TYPE = {0x0: "HTTP", 0x1: "Hybrid HTTP DNS", 0x2: "SMB", 0x4: "TCP", 0x8: "HTTPS", 0x10: "Bind TCP"}
-    ACCESS_TYPE = {0x1: "Use direct connection", 0x2: "Use IE settings", 0x4: "Use proxy server"}
-    EXECUTE_TYPE = {
-        0x1: "CreateThread",
-        0x2: "SetThreadContext",
-        0x3: "CreateRemoteThread",
-        0x4: "RtlCreateUserThread",
-        0x5: "NtQueueApcThread",
-        0x6: None,
-        0x7: None,
-        0x8: "NtQueueApcThread-s",
-    }
-    # TRANSFORMSTEP = {1: "append", 2: "prepend", 3: "base64", 4: "print", 5: "parameter", 6: "header", 7: "build", 8: "netbios", 9: "_parameter", 10: "_header",
-    #                11: "netbiosu", 12: "uri_append",  13: "base64_url", 14: "strrep", 15: "mask"}
-    ALLOCATION_FUNCTIONS = {0: "VirtualAllocEx", 1: "NtMapViewOfSection"}
-
-    def __init__(self, version):
-        if version not in SUPPORTED_VERSIONS:
-            log.info("Error: Only supports version 3 and 4, not %d" % version)
-        self.version = version
-        self.settings = OrderedDict()
-        self.init()
-
-    def init(self):
-        self.settings["BeaconType"] = packedSetting(1, confConsts.TYPE_SHORT, mask=self.BEACON_TYPE)
-        self.settings["Port"] = packedSetting(2, confConsts.TYPE_SHORT)
-        self.settings["SleepTime"] = packedSetting(3, confConsts.TYPE_INT)
-        self.settings["MaxGetSize"] = packedSetting(4, confConsts.TYPE_INT)
-        self.settings["Jitter"] = packedSetting(5, confConsts.TYPE_SHORT)
-        self.settings["MaxDNS"] = packedSetting(6, confConsts.TYPE_SHORT)
-        # Silencing for now
-        self.settings['PublicKey'] = packedSetting(7, confConsts.TYPE_STR, 256, isBlob=True)
-        self.settings["C2Server"] = packedSetting(8, confConsts.TYPE_STR, 256)
-        self.settings["UserAgent"] = packedSetting(9, confConsts.TYPE_STR, 128)
-        self.settings["HttpPostUri"] = packedSetting(10, confConsts.TYPE_STR, 64)
-
-        # ref: https://www.cobaltstrike.com/help-malleable-c2 | https://usualsuspect.re/article/cobalt-strikes-malleable-c2-under-the-hood
-        self.settings["Malleable_C2_Instructions"] = packedSetting(11, confConsts.TYPE_STR, 256, isBlob=True, isMalleableStream=True)
-        self.settings["HttpGet_Metadata"] = packedSetting(12, confConsts.TYPE_STR, 256, isHeaders=True)
-        self.settings["HttpPost_Metadata"] = packedSetting(13, confConsts.TYPE_STR, 256, isHeaders=True)
-        self.settings["SpawnTo"] = packedSetting(14, confConsts.TYPE_STR, 16, isBlob=True)
-        self.settings["PipeName"] = packedSetting(15, confConsts.TYPE_STR, 128)
-        # Options 16-18 are deprecated in 3.4
-        self.settings["DNS_Idle"] = packedSetting(19, confConsts.TYPE_INT, isIpAddress=True)
-        self.settings["DNS_Sleep"] = packedSetting(20, confConsts.TYPE_INT)
-        # Options 21-25 are for SSHAgent
-        self.settings["SSH_Host"] = packedSetting(21, confConsts.TYPE_STR, 256)
-        self.settings["SSH_Port"] = packedSetting(22, confConsts.TYPE_SHORT)
-        self.settings["SSH_Username"] = packedSetting(23, confConsts.TYPE_STR, 128)
-        self.settings["SSH_Password_Plaintext"] = packedSetting(24, confConsts.TYPE_STR, 128)
-        self.settings["SSH_Password_Pubkey"] = packedSetting(25, confConsts.TYPE_STR, 6144)
-
-        self.settings["HttpGet_Verb"] = packedSetting(26, confConsts.TYPE_STR, 16)
-        self.settings["HttpPost_Verb"] = packedSetting(27, confConsts.TYPE_STR, 16)
-        self.settings["HttpPostChunk"] = packedSetting(28, confConsts.TYPE_INT)
-        self.settings["Spawnto_x86"] = packedSetting(29, confConsts.TYPE_STR, 64)
-        self.settings["Spawnto_x64"] = packedSetting(30, confConsts.TYPE_STR, 64)
-        self.settings["CryptoScheme"] = packedSetting(31, confConsts.TYPE_SHORT)
-        self.settings["Proxy_Config"] = packedSetting(32, confConsts.TYPE_STR, 128)
-        self.settings["Proxy_User"] = packedSetting(33, confConsts.TYPE_STR, 64)
-        self.settings["Proxy_Password"] = packedSetting(34, confConsts.TYPE_STR, 64)
-        self.settings["Proxy_Behavior"] = packedSetting(35, confConsts.TYPE_SHORT, enum=self.ACCESS_TYPE)
-        # Option 36 is deprecated
-        self.settings["Watermark"] = packedSetting(37, confConsts.TYPE_INT)
-        self.settings["bStageCleanup"] = packedSetting(38, confConsts.TYPE_SHORT, isBool=True)
-        self.settings["bCFGCaution"] = packedSetting(39, confConsts.TYPE_SHORT, isBool=True)
-        self.settings["KillDate"] = packedSetting(40, confConsts.TYPE_INT, isDate=True)
-        # Inner parameter, does not seem interesting so silencing
-        # self.settings['textSectionEnd (0 if !sleep_mask)'] = packedSetting(41, confConsts.TYPE_INT)
-
-        # TODO: dynamic size parsing
-        # self.settings['ObfuscateSectionsInfo'] = packedSetting(42, confConsts.TYPE_STR, %d, isBlob=True)
-        self.settings["bProcInject_StartRWX"] = packedSetting(43, confConsts.TYPE_SHORT, isBool=True, boolFalseValue=4)
-        self.settings["bProcInject_UseRWX"] = packedSetting(44, confConsts.TYPE_SHORT, isBool=True, boolFalseValue=32)
-        self.settings["bProcInject_MinAllocSize"] = packedSetting(45, confConsts.TYPE_INT)
-        self.settings["ProcInject_PrependAppend_x86"] = packedSetting(46, confConsts.TYPE_STR, 256, isBlob=True, isProcInjectTransform=True)
-        self.settings["ProcInject_PrependAppend_x64"] = packedSetting(47, confConsts.TYPE_STR, 256, isBlob=True, isProcInjectTransform=True)
-        self.settings["ProcInject_Execute"] = packedSetting(51, confConsts.TYPE_STR, 128, isBlob=True, enum=self.EXECUTE_TYPE)
-        # If True then allocation is using NtMapViewOfSection
-        self.settings["ProcInject_AllocationMethod"] = packedSetting(52, confConsts.TYPE_SHORT, enum=self.ALLOCATION_FUNCTIONS)
-
-        # Unknown data, silencing for now
-        # self.settings['ProcInject_Stub'] = packedSetting(53, confConsts.TYPE_STR, 16, isBlob=True)
-        self.settings["bUsesCookies"] = packedSetting(50, confConsts.TYPE_SHORT, isBool=True)
-        self.settings["HostHeader"] = packedSetting(54, confConsts.TYPE_STR, 128)
-
-
-class cobaltstrikeConfig:
-    def __init__(self, data):
-        self.data = data
-
-    """Parse the CobaltStrike configuration"""
-
-    @staticmethod
-    def decode_config(cfg_blob, version):
-        return bytes([cfg_offset ^ confConsts.XORBYTES[version] for cfg_offset in cfg_blob])
-
-    def _parse_config(self, version, quiet=False, as_json=False):
-        parsed_config = dict()
-        re_start_match = re.search(confConsts.START_PATTERNS[version], self.data)
-        re_start_decoded_match = re.search(confConsts.START_PATTERN_DECODED, self.data)
-
-        if not re_start_match and not re_start_decoded_match:
-            return False
-        encoded_config_offset = re_start_match.start() if re_start_match else -1
-        decoded_config_offset = re_start_decoded_match.start() if re_start_decoded_match else -1
-
-        if encoded_config_offset >= 0:
-            full_config_data = cobaltstrikeConfig.decode_config(
-                self.data[encoded_config_offset : encoded_config_offset + confConsts.CONFIG_SIZE], version=version
-            )
-        else:
-            full_config_data = self.data[decoded_config_offset : decoded_config_offset + confConsts.CONFIG_SIZE]
-
-        settings = BeaconSettings(version).settings.items()
-        for conf_name, packed_conf in settings:
-            parsed_setting = packed_conf.pretty_repr(full_config_data)
-
-            if as_json:
-                parsed_config[conf_name] = parsed_setting
-                continue
-
-            if parsed_setting == "Not Found" and quiet:
-                continue
-            if type(parsed_setting) != list:
-                log.info("{: <{width}} - {val}".format(conf_name, width=COLUMN_WIDTH - 3, val=parsed_setting))
-            elif parsed_setting == []:
-                log.info("{: <{width}} - {val}".format(conf_name, width=COLUMN_WIDTH - 3, val="Empty"))
-            else:
-                log.info("{: <{width}} - {val}".format(conf_name, width=COLUMN_WIDTH - 3, val=parsed_setting[0]))
-                for val in parsed_setting[1:]:
-                    log.info(" " * COLUMN_WIDTH, end="")
-                    print(val)
-
-        if as_json:
-            return parsed_config
-
-        return True
-
-    def parse_config(self, version=None, quiet=False, as_json=False):
-        """
-        Parses beacon's configuration from stager dll or memory dump
-        :bool quiet: Whether to print missing settings
-        :bool as_json: Whether to dump as json
-        """
-
-        if not version:
-            for ver in SUPPORTED_VERSIONS:
-                conf = self._parse_config(version=ver, quiet=quiet, as_json=as_json)
-                if conf:
-                    return conf
-        else:
-            conf = self._parse_config(version=version, quiet=quiet, as_json=as_json)
-            if conf:
-                return conf
-
-        if __name__ == "__main__":
-            log.info("Configuration not found. Are you sure this is a beacon?")
-        return None
-
-    def parse_encrypted_config(self, version=None, quiet=False, as_json=False):
-        '''
-        Parses beacon's configuration from stager dll or memory dump
-        :bool quiet: Whether to print missing settings
-        :bool as_json: Whether to dump as json
-        '''
-
-        THRESHOLD = 1100
-        pe = pefile.PE(data=self.data)
-        data_sections = [s for s in pe.sections if s.Name.find(b'.data') != -1]
-        if not data_sections:
-            return None
-        data = data_sections[0].get_data()
-
-        offset = 0
-        key_found = False
-        while offset < len(data):
-            key = data[offset:offset+4]
-            if key != bytes(4):
-                if data.count(key) >= THRESHOLD:
-                    key_found = True
-                    size = int.from_bytes(data[offset-4:offset], 'little')
-                    encrypted_data_offset = offset+16 - (offset % 16)
-                    break
-
-            offset += 4
-
-        if not key_found:
-            log.info("Failed to find encrypted data (try to lower the threshold constant)")
-            return None
-
-        ## decrypt and parse
-        enc_data = data[encrypted_data_offset:encrypted_data_offset+size]
-        dec_data = []
-        for i,c in enumerate(enc_data):
-            dec_data.append(c ^ key[i % 4])
-
-        dec_data = bytes(dec_data)
-        return cobaltstrikeConfig(dec_data).parse_config(version, quiet, as_json)
-
-
-if __name__ == "__main__":
-    parser = argparse.ArgumentParser(description="Parses CobaltStrike Beacon's configuration from PE or memory dump.")
-    parser.add_argument("path", help="Stager's file path")
-    parser.add_argument("--json", help="Print as json", action="store_true", default=False)
-    parser.add_argument("--quiet", help="Do not print missing settings", action="store_true", default=False)
-    parser.add_argument(
-        "--version",
-        help="Try as specific cobalt version (3 or 4). If not specified, tries both. \n" "For decoded configs, this must be set for accuracy.",
-        type=int,
-    )
-    args = parser.parse_args()
-    with open(args.path, "rb") as f:
-        data = f.read()
-    parsed_config = cobaltstrikeConfig(data).parse_config(version=args.version, quiet=args.quiet, as_json=args.json)
-    if args.json:
-        print(json.dumps(parsed_config, cls=Base64Encoder))
-
-# CAPE
-def config(data):
-    output = cobaltstrikeConfig(data).parse_config(quiet=False, as_json=True)
-    if output is None:
-        output = cobaltstrikeConfig(data).parse_encrypted_config(quiet=False, as_json=True)
-    return output
diff --git a/modules/processing/parsers/CAPE/Fareit.py b/modules/processing/parsers/CAPE/Fareit.py
deleted file mode 100644
index 694d80db21b..00000000000
--- a/modules/processing/parsers/CAPE/Fareit.py
+++ /dev/null
@@ -1,75 +0,0 @@
-from __future__ import absolute_import
-from __future__ import print_function
-import re
-import sys
-
-"""
-rule pony {
-    meta:
-        author = "adam"
-        description = "Detect pony"
-
-    strings:
-        $s1 = "{%08X-%04X-%04X-%02X%02X-%02X%02X%02X%02X%02X%02X}"
-        $s2 = "YUIPWDFILE0YUIPKDFILE0YUICRYPTED0YUI1.0"
-
-    condition:
-        $s1 and $s2
-}
-"""
-
-
-def config(memdump_path, read=False):
-    res = False
-    try:
-        if read:
-            F = open(memdump_path, "rb").read()
-        else:
-            F = memdump_path
-        """
-        # Get the   aPLib header + data
-        buf = re.findall(r"aPLib .*PWDFILE", cData, re.DOTALL|re.MULTILINE)
-        # Strip out the header
-        if buf and len(buf[0]) > 200:
-            cData = buf[0][200:]
-        """
-        artifacts_raw = {
-            "controllers": [],
-            "downloads": [],
-        }
-
-        start = F.find("YUIPWDFILE0YUIPKDFILE0YUICRYPTED0YUI1.0")
-        if start:
-            F = F[start - 600 : start + 500]
-
-        gate_url = re.compile(".*\.php$")
-        exe_url = re.compile(".*\.exe$")
-        dll_url = re.compile(".*\.dll$")
-        output = re.findall("(https?:\/\/.[A-Za-z0-9-\.\_\~\:\/\?\#\[\]\@\!\$\&'\(\)\*\+\,\;\\=]+(?:\.php|\.exe|\.dll))", F)
-        for url in output:
-            try:
-                if "\x00" not in url:
-                    # url = self._check_valid_url(url)
-                    if url is None:
-                        continue
-                    if gate_url.match(url):
-                        artifacts_raw["controllers"].append(url.lower())
-                    elif exe_url.match(url):
-                        artifacts_raw["downloads"].append(url.lower())
-                    elif dll_url.match(url):
-                        artifacts_raw["downloads"].append(url.lower())
-            except Exception as e:
-                print(e, sys.exc_info())
-        artifacts_raw["controllers"] = list(set(artifacts_raw["controllers"]))
-        artifacts_raw["downloads"] = list(set(artifacts_raw["downloads"]))
-        if len(artifacts_raw["controllers"]) != 0 or len(artifacts_raw["downloads"]) != 0:
-            res = artifacts_raw
-    except Exception as e:
-        print(e, sys.exc_info())
-
-    return res
-
-
-if __name__ == "__main__":
-    res = config(sys.argv[1])
-    print(res)
diff --git a/modules/processing/parsers/CAPE/Greame.py b/modules/processing/parsers/CAPE/Greame.py
deleted file mode 100644
index 1c3da04fe33..00000000000
--- a/modules/processing/parsers/CAPE/Greame.py
+++ /dev/null
@@ -1,97 +0,0 @@
-from __future__ import absolute_import
-import string
-import pefile
-
-
-def get_config(data):
-    try:
-        pe = pefile.PE(data=data)
-        try:
-            rt_string_idx = [entry.id for entry in pe.DIRECTORY_ENTRY_RESOURCE.entries].index(pefile.RESOURCE_TYPE["RT_RCDATA"])
-        except ValueError as e:
-            return
-        except AttributeError as e:
-            return
-        rt_string_directory = pe.DIRECTORY_ENTRY_RESOURCE.entries[rt_string_idx]
-        for entry in rt_string_directory.directory.entries:
-            if str(entry.name) == "GREAME":
-                data_rva = entry.directory.entries[0].data.struct.OffsetToData
-                size = entry.directory.entries[0].data.struct.Size
-                data = pe.get_memory_mapped_image()[data_rva : data_rva + size]
-                raw_config = data.split("####@####")
-                return raw_config
-    except:
-        return None
-
-
-def xor_decode(data):
-    key = 0xBC
-    encoded = bytearray(data)
-    for i in range(len(encoded)):
-        encoded[i] ^= key
-    return [x for x in str(encoded) if x in string.printable]
-
-
-def parse_config(raw_config):
-    if len(raw_config) > 20:
-        domains = ""
-        ports = ""
-        # Config sections 0 - 19 contain a list of Domains and Ports
-        for x in range(0, 19):
-            if len(raw_config[x]) > 1:
-                domains += xor_decode(raw_config[x]).split(":")[0]
-                domains += "|"
-                ports += xor_decode(raw_config[x]).split(":")[1]
-                ports += "|"
-        config_dict = {}
-        config_dict["Domain"] = domains[:-1]
-        config_dict["Port"] = ports[:-1]
-        config_dict["ServerID"] = xor_decode(raw_config[20])
-        config_dict["Password"] = xor_decode(raw_config[21])
-        config_dict["Install Flag"] = xor_decode(raw_config[22])
-        config_dict["Install Directory"] = xor_decode(raw_config[25])
-        config_dict["Install File Name"] = xor_decode(raw_config[26])
-        config_dict["Active X Startup"] = xor_decode(raw_config[27])
-        config_dict["REG Key HKLM"] = xor_decode(raw_config[28])
-        config_dict["REG Key HKCU"] = xor_decode(raw_config[29])
-        config_dict["Enable Message Box"] = xor_decode(raw_config[30])
-        config_dict["Message Box Icon"] = xor_decode(raw_config[31])
-        config_dict["Message Box Button"] = xor_decode(raw_config[32])
-        config_dict["Install Message Title"] = xor_decode(raw_config[33])
-        config_dict["Install Message Box"] = xor_decode(raw_config[34]).replace("\r\n", " ")
-        config_dict["Activate Keylogger"] = xor_decode(raw_config[35])
-        config_dict["Keylogger Backspace = Delete"] = xor_decode(raw_config[36])
-        config_dict["Keylogger Enable FTP"] = xor_decode(raw_config[37])
-        config_dict["FTP Address"] = xor_decode(raw_config[38])
-        config_dict["FTP Directory"] = xor_decode(raw_config[39])
-        config_dict["FTP UserName"] = xor_decode(raw_config[41])
-        config_dict["FTP Password"] = xor_decode(raw_config[42])
-        config_dict["FTP Port"] = xor_decode(raw_config[43])
-        config_dict["FTP Interval"] = xor_decode(raw_config[44])
-        config_dict["Persistance"] = xor_decode(raw_config[59])
-        config_dict["Hide File"] = xor_decode(raw_config[60])
-        config_dict["Change Creation Date"] = xor_decode(raw_config[61])
-        config_dict["Mutex"] = xor_decode(raw_config[62])
-        config_dict["Melt File"] = xor_decode(raw_config[63])
-        config_dict["Startup Policies"] = xor_decode(raw_config[69])
-        config_dict["USB Spread"] = xor_decode(raw_config[70])
-        config_dict["P2P Spread"] = xor_decode(raw_config[71])
-        config_dict["Google Chrome Passwords"] = xor_decode(raw_config[73])
-        if xor_decode(raw_config[57]) == 0:
-            config_dict["Process Injection"] = "Disabled"
-        elif xor_decode(raw_config[57]) == 1:
-            config_dict["Process Injection"] = "Default Browser"
-        elif xor_decode(raw_config[57]) == 2:
-            config_dict["Process Injection"] = xor_decode(raw_config[58])
-        else:
-            config_dict["Process Injection"] = "None"
-    else:
-        return None
-    return config_dict
-
-
-def config(data):
-    raw_config = get_config(data)
-    if raw_config:
-        config_dict = parse_config(raw_config)
-        return config_dict
diff --git a/modules/processing/parsers/CAPE/GuLoader.py b/modules/processing/parsers/CAPE/GuLoader.py
deleted file mode 100644
index f0d34900211..00000000000
--- a/modules/processing/parsers/CAPE/GuLoader.py
+++ /dev/null
@@ -1,20 +0,0 @@
-try:
-    import re2 as re
-except ImportError:
-    import re
-
-url_regex = re.compile(br"http[s]?://(?:[a-zA-Z]|[0-9]|[$-_@.&+]|[!*\(\),]|(?:%[0-9a-fA-F][0-9a-fA-F]))+")
-
-
-def config(data):
-    urls_dict = dict()
-
-    try:
-        urls_dict["URLs"] = [url.lower().decode("utf-8") for url in url_regex.findall(data)]
-    except Exception as e:
-        print(e)
-
-    if "URLs" in urls_dict and len(urls_dict["URLs"]) > 0:
-        return urls_dict
-
-    return None
diff --git a/modules/processing/parsers/CAPE/JavaDropper.py b/modules/processing/parsers/CAPE/JavaDropper.py
deleted file mode 100644
index 2baedef4060..00000000000
--- a/modules/processing/parsers/CAPE/JavaDropper.py
+++ /dev/null
@@ -1,109 +0,0 @@
-#!/usr/bin/env python
-from __future__ import absolute_import
-from __future__ import print_function
-import zlib
-import string
-import hashlib
-from zipfile import ZipFile
-from io import StringIO
-from base64 import b64decode
-
-# Non Standard Imports
-from Crypto.Cipher import ARC4, AES, XOR
-
-# Helper Functions Go Here
-
-
-def string_print(line):
-    return [x for x in line if x in string.printable]
-
-
-#### Ciphers ####
-def decrypt_RC4(enckey, data):
-    cipher = ARC4.new(enckey)
-    return cipher.decrypt(data)
-
-
-def decrypt_AES(enckey, data):
-    cipher = AES.new(enckey)
-    return cipher.decrypt(data)
-
-
-def decrypt_XOR(enckey, data):
-    cipher = XOR.new(enckey)
-    return cipher.decrypt(data)
-
-
-def parse_ek(key, drop):
-    enc_key = key[:16]
-    coded = drop
-    drop_details = key[16:]
-    decoded = decrypt_AES(enc_key, coded)
-    for section in drop_details.split(","):
-        print(b64decode(section).decode("hex"))
-    return decoded
-
-
-def parse_load(key, drop):
-    raw_key = "{0}ALSKEOPQLFKJDUSIKSJAUIE".format(key)
-    enc_key = hashlib.sha256(raw_key).hexdigest()
-    decoded = decrypt_RC4(enc_key, drop)
-    return decoded
-
-
-def parse_stub(drop):
-    keys = ["0kwi38djuie8oq89", "0B4wCrd5N2OxG93h"]
-
-    for key in keys:
-        decoded = decrypt_AES(key, drop)
-        if "META-INF" in decoded:
-            print("Found Embedded Jar")
-            return decoded
-        if "Program" in decoded:
-            print("Found Embedded EXE")
-            return decoded
-
-
-def parse_xor(key, drop):
-    key2 = 'FYj&w3bd"m/kSZjD'
-    decoded = decrypt_XOR(key2, drop)
-    decompressed = zlib.decompress(decoded, 16 + zlib.MAX_WBITS)
-    return decompressed
-
-
-# Jar Parser
-def config(raw_data):
-    decoded = False
-    jar_data = StringIO(raw_data)
-    jar = ZipFile(jar_data, "r")
-
-    if "e" and "k" in jar.namelist():
-        print("Found EK Dropper")
-        key = jar.read("k")
-        drop = jar.read("e")
-        decoded = parse_ek(key, drop)
-
-    if "config.ini" and "password.ini" in jar.namelist():
-        print("Found LoadStub Dropper")
-        key = jar.read("password.ini")
-        drop = jar.read("config.ini")
-        decoded = parse_load(key, drop)
-
-    if "stub/stub.dll" in jar.namelist():
-        print("Found Stub Dropper")
-        drop = jar.read("stub/stub.dll")
-        decoded = parse_stub(drop)
-
-    if "c.dat" in jar.namelist():
-        print("Found XOR Dropper")
-        key_file = b64decode(jar.read("c.dat"))
-        key_text = decrypt_XOR("\xdd", key_file)
-        drop_file = key_text.split("\n")[1]
-        key = key_text.split("\n")[5]
-        print(key)
-        decoded = parse_xor(key, jar.read(drop_file))
-
-    if decoded:
-        return decoded
-    else:
-        print("Unable to decode")
diff --git a/modules/processing/parsers/CAPE/Nymaim.py b/modules/processing/parsers/CAPE/Nymaim.py
deleted file mode 100644
index e5fbe882b78..00000000000
--- a/modules/processing/parsers/CAPE/Nymaim.py
+++ /dev/null
@@ -1,263 +0,0 @@
-from __future__ import absolute_import
-from __future__ import print_function
-import re
-import struct
-import string
-from io import StringIO
-
-
-class Stream(StringIO):
-    def string(self):
-        r = []
-        c = ""
-        while c != "\x00":
-            c = self.read(1)
-            r.append(c)
-        return "".join(r).strip("\x00")
-
-    def dword(self):
-        return struct.unpack("I", self.read(4))[0]
-
-    def word(self):
-        return struct.unpack("H", self.read(2))[0]
-
-    def byte(self):
-        return struct.unpack("=B", self.read(1))[0]
-
-
-get_strings = lambda d: re.findall("[ -~]{3,}", d)
-
-indent_level = 0
-indent_text = "    "
-silent = False
-
-
-def pprint(*text):
-    global indent_level, silent
-    if not silent:
-        text = " ".join(str(s) for s in text)
-        print(indent_level * indent_text + text)
-
-
-def rol(x, n, b=32):
-    n = (b - 1) & n
-    return x << n | 2 ** n - 1 & x >> b - n
-
-
-def chunks(data, n):
-    return [data[i * n : (i + 1) * n] for i in range(len(data) / n)]
-
-
-def ror(n, bits, b=32):
-    m = (2 << b - 1) - 1
-    return ((n & b) >> bits) | ((n << (b - bits)) & b)
-
-
-def uint32(i):
-    return struct.unpack("<I", i)[0]
-
-
-def append_http(x):
-    return ("" if x.startswith("http") else "http://") + x
-
-
-class NymCfgStream(Stream):
-    def __iter__(self):
-        return self
-
-    def next(self):
-        try:
-            h = self.dword()
-        except:
-            raise StopIteration
-
-        s = self.dword()
-        data = self.read(s)
-        return h, data
-
-
-class M(object):
-    def __init__(self, dbg=None, base=0, mem=""):
-        self.mem = mem
-        self.base = base
-        self.yhits = set()
-        self._workers = {}
-
-    def worker(self, name):
-        return self._workers[name]
-
-    def regex(self, patt, flags=0, a=0, n=None):
-        data = self.read(a, n)
-        for g in re.finditer(patt, data, flags=flags):
-            yield a + g.start()
-
-    def read(self, a, n):
-        if self.mem:
-            return self.mem[a : (a + n) if n else None]
-
-    def dword(self, a):
-        return struct.unpack("I", self.read(a, 4))[0]
-
-    def word(self, a):
-        return struct.unpack("H", self.read(a, 2))[0]
-
-    def byte(self, a):
-        return struct.unpack("=B", self.read(a, 1))[0]
-
-    def read_addr(self, a):
-        return self.dword(a)
-
-
-class Mem(M):
-    def __init__(self, _data, base=None, frommem=False):
-        super(Mem, self).__init__()
-        self.base = base
-        self._data = _data
-        self.dsize = len(_data)
-
-    def read(self, a=0, n=None):
-        a = (a - self.base) if a >= self.base else a
-        return self._data[a : (a + n) if n else None]
-
-
-class NymaimExtractor:
-
-    CFG_DNS = 0x1B69E661
-    CFG_TTL = 0xE6F7E88D
-    CFG_URL = 0x6B02C248
-    CFG_DGA_HASH = 0x2AA0AED9
-    CFG_ENC_KEY = 0x22E60B51
-    CFG_DOMAINS = 0x1D4B5D09
-    CFG_RSA_KEY = 0x2F127FFB
-    CTG_32BIT_TMPL_1 = 0x4C1AD0BB
-    CTG_32BIT_TMPL_2 = 0x1AE78782
-    CTG_64BIT_TMPL = 0xF34A67FF
-    CFT_NOTEPAD_TMPL = 0xB2EA894D
-    CFG_FAKE_ERROR_MSG = 0xFCCE74B6
-    CFG_PEER_DOMAINS = 0xF212B5AF
-
-    CFG_BINARY_TYPES = {
-        1: "botnet_peer",
-        20: "dropper",
-        30: "payload",
-    }
-
-    def __init__(self):
-        pass
-
-    def nymaim_decrypt_data_2(self, raw, key0, key1):
-        """
-        decrypt final config (only raw data, keys passed as parameters)
-        """
-        prev_chr = 0
-        result = ""
-        for i, c in enumerate(raw):
-            bl = ((key0 & 0x000000FF) + prev_chr) & 0xFF
-            key0 = (key0 & 0xFFFFFF00) + bl
-            prev_chr = ord(c) ^ bl
-            result += chr(prev_chr)
-            key0 = (key0 + key1) & 0xFFFFFFFF
-            key0 = ((key0 & 0x00FFFFFF) << 8) + ((key0 & 0xFF000000) >> 24)
-        return result
-
-    def nymaim_extract_blob(self, mem, ndx):
-        """
-        decrypt final config (read keys and length and decrypt raw data)
-        """
-        key0 = mem.dword(ndx)
-        key1 = mem.dword(ndx + 4)
-        len = mem.dword(ndx + 8)
-        return self.nymaim_decrypt_data_2(mem.read(ndx + 12, len), key0, key1)
-
-    def nymaim_parse_blob(self, blob):
-        """
-        decrypt and interpret config (uses hardcoded hashes)
-        """
-        parsed = {"domains": [], "urls": [], "dns": []}
-        for hash, raw in NymCfgStream(blob):
-            try:
-                pprint("<{:08x}>: {}".format(hash, raw.encode("hex") if len(raw) == 4 else raw))
-                if hash == self.CFG_URL:  # '48c2026b':
-                    parsed["urls"] += [{"url": append_http(raw[20:].rstrip(";"))}]
-                elif hash == self.CFG_DGA_HASH:  # 'd9aea02a':
-                    parsed["dga_hash"] = [uint32(h) for h in chunks(raw, 4)]
-                elif hash == self.CFG_DOMAINS:  # '095d4b1d':
-                    parsed["domains"] += [{"cnc": append_http(raw[4:].rstrip(";"))}]
-                elif hash == self.CFG_ENC_KEY:  # '510be622':
-                    parsed["encryption_key"] = raw
-                elif hash == self.CFG_RSA_KEY:  # 'fb7f122f':
-                    bits = uint32(raw[:4])
-                    bytes = bits / 8
-                    d = raw[4 : 4 + bytes].encode("hex")
-                    e = raw[4 + bytes : 4 + bytes + bytes].encode("hex")
-                    parsed["public_key"] = {
-                        "n": str(int(d, 16)),
-                        "e": int(e, 16),
-                    }
-                elif hash == self.CFG_TTL:  # '8de8f7e6':
-                    if len(raw) == 12:
-                        year, month, day = uint32(raw[-4:]), uint32(raw[4:-4]), uint32(raw[:4])
-                        parsed["time_restriction"] = "{}-{:02}-{:02}".format(year, month, day)
-                    else:
-                        parsed["time_restriction"] = [raw.encode("hex")]
-                elif hash == self.CFG_DNS:
-                    parsed["dns"] += raw.split(";")
-                elif hash == self.CTG_32BIT_TMPL_1:
-                    parsed["template_32bit_1"] = raw
-                elif hash == self.CTG_32BIT_TMPL_2:
-                    parsed["template_32bit_2"] = raw
-                elif hash == self.CTG_64BIT_TMPL:
-                    parsed["template_64bit_2"] = raw
-                elif hash == self.CFT_NOTEPAD_TMPL:  # notepad template
-                    parsed["notepad_template"] = raw
-                elif hash == self.CFG_FAKE_ERROR_MSG:  # fake error message, shown to user on startup
-                    parsed["fake_error_message"] = raw
-                elif hash == self.CFG_PEER_DOMAINS:
-                    parsed["domains"] += [{"cnc": x} for x in raw.split(";") if x]
-                elif (all(c in string.printable for c in raw) and len(raw) > 3) or len([c for c in raw if c in string.printable]) > 10:
-                    if "other_strings" not in parsed:
-                        parsed["other_strings"] = {}
-                    parsed["other_strings"][hex(hash)] = raw.encode("hex")
-            except RuntimeError:
-                # error during parsing...
-                if "errored_on" not in parsed:
-                    parsed["errored_on"] = []
-                parsed["errored_on"] += [{"hash": hash, "raw": raw.encode("hex")}]
-        return parsed
-
-    def nymaim_brute_blob(self, mem):
-        """
-        bruteforce start index of config in decrypted data (decrypted data contains more than config block).
-        Lame, but should be stable and fast enough.
-        """
-        for i in reversed(list(range(mem.base, mem.base + mem.dsize - 12))):
-            blob_len = mem.dword(i + 8)
-            if 100 < blob_len < 8000:
-                blob = self.nymaim_extract_blob(mem, i)
-                if "8.8.8.8" in blob or "rundll" in blob or ("~[" in blob and "]/" in blob and ":53" in blob):
-                    return self.nymaim_parse_blob(blob)
-
-
-def set_prog_version(m, hit, *args):
-    mem = m.read(hit, 100)
-    type_id_offset = mem.find("C745D0".decode("hex"))
-    binary_id_offset = mem.find("C745D4".decode("hex"))
-
-    type_id = uint32(mem[type_id_offset + 3 : type_id_offset + 7])
-    binary_id = uint32(mem[binary_id_offset + 3 : binary_id_offset + 7])
-
-    if type_id in NymaimExtractor.CFG_BINARY_TYPES:
-        type_name = NymaimExtractor.CFG_BINARY_TYPES[type_id]
-    else:
-        type_name = str(type_id)
-
-    return {
-        "exe_type": type_name,
-        "exe_version": binary_id,
-    }
-
-
-def config(raw):
-    m = Mem(raw, 0)
-    ext = NymaimExtractor()
-    return ext.nymaim_brute_blob(m)
diff --git a/modules/processing/parsers/CAPE/Pandora.py b/modules/processing/parsers/CAPE/Pandora.py
deleted file mode 100644
index 982de51f193..00000000000
--- a/modules/processing/parsers/CAPE/Pandora.py
+++ /dev/null
@@ -1,88 +0,0 @@
-from __future__ import absolute_import
-import pefile
-
-
-def version_21(raw_config):
-    if raw_config != None:
-        conf_dict = {}
-        conf_dict["Version"] = "2.1"
-        conf_dict["Domain"] = raw_config[0]
-        conf_dict["Port"] = raw_config[1]
-        conf_dict["Password"] = raw_config[2]
-        conf_dict["Install Path"] = raw_config[3]
-        conf_dict["Install Name"] = raw_config[4]
-        conf_dict["HKCU Key"] = raw_config[5]
-        conf_dict["ActiveX Key"] = raw_config[6]
-        conf_dict["Install Flag"] = raw_config[7]
-        conf_dict["StartupFlag"] = raw_config[8]
-        conf_dict["ActiveXFlag"] = raw_config[9]
-        conf_dict["HKCU Flag"] = raw_config[10]
-        conf_dict["Mutex"] = raw_config[11]
-        conf_dict["userMode Hooking"] = raw_config[12]
-        conf_dict["Melt"] = raw_config[13]
-        conf_dict["Melt"] = raw_config[13]
-        conf_dict["Keylogger"] = raw_config[14]
-        conf_dict["Campaign ID"] = raw_config[15]
-        conf_dict["UnknownFlag9"] = raw_config[16]
-        return conf_dict
-    else:
-        return None
-
-
-def version_22(raw_config):
-    if raw_config != None:
-        conf_dict = {}
-        conf_dict["Version"] = "2.2"
-        conf_dict["Domain"] = raw_config[0]
-        conf_dict["Port"] = raw_config[1]
-        conf_dict["Password"] = raw_config[2]
-        conf_dict["Install Path"] = raw_config[3]
-        conf_dict["Install Name"] = raw_config[4]
-        conf_dict["HKCU Key"] = raw_config[5]
-        conf_dict["ActiveX Key"] = raw_config[6]
-        conf_dict["Install Flag"] = raw_config[7]
-        conf_dict["StartupFlag"] = raw_config[8]
-        conf_dict["ActiveXFlag"] = raw_config[9]
-        conf_dict["HKCU Flag"] = raw_config[10]
-        conf_dict["Mutex"] = raw_config[11]
-        conf_dict["userMode Hooking"] = raw_config[12]
-        conf_dict["Melt"] = raw_config[13]
-        conf_dict["Melt"] = raw_config[13]
-        conf_dict["Keylogger"] = raw_config[14]
-        conf_dict["Campaign ID"] = raw_config[15]
-        conf_dict["UnknownFlag9"] = raw_config[16]
-        return conf_dict
-    else:
-        return None
-
-
-def get_config(data):
-    try:
-        pe = pefile.PE(data=data)
-        try:
-            rt_string_idx = [entry.id for entry in pe.DIRECTORY_ENTRY_RESOURCE.entries].index(pefile.RESOURCE_TYPE["RT_RCDATA"])
-        except ValueError as e:
-            return
-        except AttributeError as e:
-            return
-        rt_string_directory = pe.DIRECTORY_ENTRY_RESOURCE.entries[rt_string_idx]
-        for entry in rt_string_directory.directory.entries:
-            if str(entry.name) == "CFG":
-                data_rva = entry.directory.entries[0].data.struct.OffsetToData
-                size = entry.directory.entries[0].data.struct.Size
-                data = pe.get_memory_mapped_image()[data_rva : data_rva + size]
-                cleaned = data.replace("\x00", "")
-                raw_config = cleaned.split("##")
-                return raw_config
-    except:
-        return
-
-
-def config(data):
-    raw_config = get_config(data)
-    if raw_config:
-        if len(raw_config) == 19:
-            clean_config = version_21(raw_config)
-        if len(raw_config) == 20:
-            clean_config = version_22(raw_config)
-        return clean_config
diff --git a/modules/processing/parsers/CAPE/PoisonIvy.py b/modules/processing/parsers/CAPE/PoisonIvy.py
deleted file mode 100644
index 1325d34d573..00000000000
--- a/modules/processing/parsers/CAPE/PoisonIvy.py
+++ /dev/null
@@ -1,139 +0,0 @@
-from __future__ import absolute_import
-import string
-from struct import unpack
-
-
-def calc_length(byte_str):
-    try:
-        return unpack("<H", byte_str)[0]
-    except:
-        return None
-
-
-def clean_string(line):
-    return [x for x in line if x in string.printable]
-
-
-def first_split(data):
-    splits = data.split("Software\\Microsoft\\Active Setup\\Installed Components\\")
-    if len(splits) == 2:
-        return splits[1]
-    else:
-        return None
-
-
-def bytetohex(byte_str):
-    return "".join(["%02X" % ord(x) for x in byte_str]).strip()
-
-
-def walk_data(data):
-    # Byte array to make things easier.
-    stream = bytearray(data)
-    # End of file for our while loop.
-    EOF = len(stream)
-    # Offset to track position.
-    offset = 0
-    this = []
-    max_count = 0
-    while offset < EOF and max_count < 22:
-        try:
-            length = calc_length(stream[offset + 2 : offset + 4])
-            temp = []
-            for i in range(offset + 4, offset + 4 + length):
-                temp.append(chr(stream[i]))
-            date_type = bytetohex(data[offset] + data[offset + 1])
-            this.append((date_type, "".join(temp)))
-            offset += length + 4
-            max_count += 1
-        except:
-            return this
-    return this
-
-
-def walk_domain(raw_stream):
-    domains = ""
-    offset = 0
-    stream = bytearray(raw_stream)
-    while offset < len(stream):
-        length = stream[offset]
-        temp = []
-        for i in range(offset + 1, offset + 1 + length):
-            temp.append(chr(stream[i]))
-        domain = "".join(temp)
-
-        port = calc_length(raw_stream[offset + length + 2 : offset + length + 4])
-        offset += length + 4
-        domains += "{0}:{1}|".format(domain, port)
-    return domains
-
-
-def extract_config(config_raw):
-    config = {}
-
-    for field in config_raw:
-        if field[0] == "FA0A":
-            config["Campaign ID"] = clean_string(field[1])
-        if field[0] == "F90B":
-            config["Group ID"] = clean_string(field[1])
-        if field[0] == "9001":
-            config["Domains"] = walk_domain(field[1])
-        if field[0] == "4501":
-            config["Password"] = clean_string(field[1])
-        if field[0] == "090D":
-            config["Enable HKLM"] = bytetohex(field[1])
-        if field[0] == "120E":
-            config["HKLM Value"] = clean_string(field[1])
-        if field[0] == "F603":
-            config["Enable ActiveX"] = bytetohex(field[1])
-        if field[0] == "6501":
-            config["ActiveX Key"] = clean_string(field[1])
-        if field[0] == "4101":
-            config["Flag 3"] = bytetohex(field[1])
-        if field[0] == "4204":
-            config["Inject Exe"] = clean_string(field[1])
-        if field[0] == "Fb03":
-            config["Mutex"] = clean_string(field[1])
-        if field[0] == "F40A":
-            config["Hijack Proxy"] = bytetohex(field[1])
-        if field[0] == "F50A":
-            config["Persistent Proxy"] = bytetohex(field[1])
-        if field[0] == "2D01":
-            config["Install Name"] = clean_string(field[1])
-        if field[0] == "F703":
-            config["Install Path"] = clean_string(field[1])
-        if field[0] == "120D":
-            config["Copy to ADS"] = bytetohex(field[1])
-        if field[0] == "F803":
-            config["Melt"] = bytetohex(field[1])
-        if field[0] == "F903":
-            config["Enable Thread Persistence"] = bytetohex(field[1])
-        if field[0] == "080D":
-            config["Inject Default Browser"] = bytetohex(field[1])
-        if field[0] == "FA03":
-            config["Enable KeyLogger"] = bytetohex(field[1])
-
-    return config
-
-
-def domain_parse(config):
-    domain_list = []
-    raw_domains = config["Domains"]
-    for domain in raw_domains.split("|"):
-        domain_list.append(domain.split(":")[0])
-    return domain_list
-
-
-def config(data):
-    try:
-        # Split to get start of Config.
-        one = first_split(data)
-        if not one:
-            return None
-        # If the split works try to walk the strings.
-        two = walk_data(one)
-        # Let's Process this and format the config.
-        final_config = extract_config(two)
-        domain_data = domain_parse(final_config)
-        return [final_config, domain_data]
-    except:
-        return None
diff --git a/modules/processing/parsers/CAPE/PredatorPain.py b/modules/processing/parsers/CAPE/PredatorPain.py
deleted file mode 100644
index 3a4792037dd..00000000000
--- a/modules/processing/parsers/CAPE/PredatorPain.py
+++ /dev/null
@@ -1,198 +0,0 @@
-from __future__ import absolute_import
-from __future__ import print_function
-import pype32
-from base64 import b64decode
-from Crypto.Cipher import AES
-from pbkdf2 import PBKDF2
-
-
-def config(raw_data):
-    try:
-        pe = pype32.PE(data=raw_data)
-        string_list = get_strings(pe, 2)
-        vers = get_version(string_list)
-        if vers == "v12":
-            config_dict = config_12(string_list)
-        elif vers == "v13":
-            key, salt = "PredatorLogger", "3000390039007500370038003700390037003800370038003600".decode("hex")
-            config_dict = config_13(key, salt, string_list)
-        elif vers == "v14":
-            key, salt = "EncryptedCredentials", "3000390039007500370038003700390037003800370038003600".decode("hex")
-            config_dict = config_14(key, salt, string_list)
-        else:
-            return False
-        # C2 Line is not a straight domain on this one.
-
-        if config_dict:
-            return config_dict
-        else:
-            return False
-    except Exception as e:
-        return False
-
-
-# Helper Functions Go Here
-
-
-def string_clean(line):
-    return "".join((char for char in line if 32 < ord(char) < 127))
-
-
-# Crypto Stuffs
-def decrypt_string(key, salt, coded):
-    # try:
-    # Derive key
-    generator = PBKDF2(key, salt)
-    aes_iv = generator.read(16)
-    aes_key = generator.read(32)
-    # Crypto
-    mode = AES.MODE_CBC
-    cipher = AES.new(aes_key, mode, IV=aes_iv)
-    value = cipher.decrypt(b64decode(coded)).replace("\x00", "")
-    return value  # .encode('hex')
-
-
-# except:
-# return False
-
-# Get a list of strings from a section
-def get_strings(pe, dir_type):
-    counter = 0
-    string_list = []
-    m = pe.ntHeaders.optionalHeader.dataDirectory[14].info
-    for s in m.netMetaDataStreams[dir_type].info:
-        for offset, value in s.iteritems():
-            string_list.append(value)
-            # print counter, value
-        counter += 1
-    return string_list
-
-
-# Find Version
-def get_version(string_list):
-    # Pred v12
-    if "Predator Pain v12 - Server Ran - [" in string_list:
-        print("    [-] Found Predator Pain v12")
-        return "v12"
-    # Pred v13
-    elif "Predator Pain v13 - Server Ran - [" in string_list:
-        print("    [-] Found Predator Pain v13")
-        return "v13"
-    # Pred v14
-    elif "EncryptedCredentials" in string_list:
-        print("    [-] Found Predator Pain v14")
-        return "v14"
-    else:
-        return
-
-
-def config_12(string_list):
-    config_dict = {}
-    config_dict["Version"] = "Predator Pain v12"
-    config_dict["Email Address"] = string_list[4]
-    config_dict["Email Password"] = string_list[5]
-    config_dict["SMTP Server"] = string_list[6]
-    config_dict["SMTP Port"] = string_list[7]
-    config_dict["Interval Timer"] = string_list[8]
-    if string_list[9].startswith("ReplaceBind"):
-        config_dict["BindFile1"] = "False"
-    else:
-        config_dict["BindFile1"] = "True"
-
-    if string_list[10].startswith("ReplaceBind"):
-        config_dict["BindFile2"] = "False"
-    else:
-        config_dict["BindFile2"] = "True"
-    return config_dict
-
-
-# Turn the strings in to a python config_dict
-def config_13(key, salt, string_list):
-    """
-    Identical Strings are not stored multiple times.
-    We need to check for duplicate passwords which mess up the positionl arguemnts.
-    """
-
-    if "email" in string_list[13]:
-        dup = True
-    elif "email" in string_list[14]:
-        dup = False
-
-    config_dict = {}
-    config_dict["Version"] = "Predator Pain v13"
-    config_dict["Email Address"] = decrypt_string(key, salt, string_list[4])
-    config_dict["Email Password"] = decrypt_string(key, salt, string_list[5])
-    config_dict["SMTP Server"] = decrypt_string(key, salt, string_list[6])
-    config_dict["SMTP Port"] = string_list[7]
-    config_dict["Interval Timer"] = string_list[8]
-    config_dict["FTP Host"] = decrypt_string(key, salt, string_list[10])
-    config_dict["FTP User"] = decrypt_string(key, salt, string_list[11])
-    if dup:
-        config_dict["FTP Pass"] = decrypt_string(key, salt, string_list[5])
-        config_dict["PHP Link"] = decrypt_string(key, salt, string_list[12])
-        config_dict["Use Email"] = string_list[13]
-        config_dict["Use FTP"] = string_list[14]
-        config_dict["Use PHP"] = string_list[15]
-        config_dict["Download & Exec"] = string_list[20]
-        if string_list[19] == "bindfiles":
-            config_dict["Bound Files"] = "False"
-        else:
-            config_dict["Bound Files"] = "True"
-    else:
-        config_dict["FTP Pass"] = decrypt_string(key, salt, string_list[12])
-        config_dict["PHP Link"] = decrypt_string(key, salt, string_list[13])
-        config_dict["Use Email"] = string_list[14]
-        config_dict["Use FTP"] = string_list[15]
-        config_dict["Use PHP"] = string_list[16]
-        config_dict["Download & Exec"] = string_list[21]
-        if string_list[20] == "bindfiles":
-            config_dict["Bound Files"] = "False"
-        else:
-            config_dict["Bound Files"] = "True"
-    return config_dict
-
-
-# Turn the strings in to a python config_dict
-def config_14(key, salt, string_list):
-    """
-    Identical Strings are not stored multiple times.
-    possible pass and date dupes make it harder to test
-    """
-
-    # date Duplicate
-    if "email" in string_list[18]:
-        dup = True
-    elif "email" in string_list[19]:
-        dup = False
-
-    config_dict = {}
-    config_dict["Version"] = "Predator Pain v14"
-    config_dict["Email Address"] = decrypt_string(key, salt, string_list[4])
-    config_dict["Email Password"] = decrypt_string(key, salt, string_list[5])
-    config_dict["SMTP Server"] = decrypt_string(key, salt, string_list[6])
-    config_dict["SMTP Port"] = string_list[7]
-    config_dict["Interval Timer"] = string_list[8]
-    config_dict["FTP Host"] = decrypt_string(key, salt, string_list[12])
-    config_dict["FTP User"] = decrypt_string(key, salt, string_list[13])
-    config_dict["FTP Pass"] = decrypt_string(key, salt, string_list[14])
-    config_dict["PHP Link"] = decrypt_string(key, salt, string_list[15])
-    if dup:
-        config_dict["PHP Link"] = decrypt_string(key, salt, string_list[15])
-        config_dict["Use Email"] = string_list[18]
-        config_dict["Use FTP"] = string_list[19]
-        config_dict["Use PHP"] = string_list[20]
-        config_dict["Download & Exec"] = string_list[25]
-        if string_list[24] == "bindfiles":
-            config_dict["Bound Files"] = "False"
-        else:
-            config_dict["Bound Files"] = "True"
-    else:
-        config_dict["Use Email"] = string_list[19]
-        config_dict["Use FTP"] = string_list[20]
-        config_dict["Use PHP"] = string_list[21]
-        config_dict["Download & Exec"] = string_list[26]
-        if string_list[25] == "bindfiles":
-            config_dict["Bound Files"] = "False"
-        else:
-            config_dict["Bound Files"] = "True"
-    return config_dict
diff --git a/modules/processing/parsers/CAPE/Punisher.py b/modules/processing/parsers/CAPE/Punisher.py
deleted file mode 100644
index e8d580acbd5..00000000000
--- a/modules/processing/parsers/CAPE/Punisher.py
+++ /dev/null
@@ -1,34 +0,0 @@
-def config(data):
-    config_dict = {}
-    config_parts = data.split("abccba")
-    if len(config_parts) > 5:
-        config_dict["Domain"] = config_parts[1]
-        config_dict["Port"] = config_parts[2]
-        config_dict["Campaign Name"] = config_parts[3]
-        config_dict["Copy StartUp"] = config_parts[4]
-        config_dict["Unknown"] = config_parts[5]
-        config_dict["Add To Registry"] = config_parts[6]
-        config_dict["Registry Key"] = config_parts[7]
-        config_dict["Password"] = config_parts[8]
-        config_dict["Anti Kill Process"] = config_parts[9]
-        config_dict["USB Spread"] = config_parts[10]
-        config_dict["Anti VMWare VirtualBox"] = config_parts[11]
-        config_dict["Kill Sandboxie"] = config_parts[12]
-        config_dict["Kill WireShark / Apate DNS"] = config_parts[13]
-        config_dict["Kill NO-IP"] = config_parts[14]
-        config_dict["Block Virus Total"] = config_parts[15]
-        config_dict["Install Name"] = config_parts[16]
-        config_dict["ByPass Malware Bytes"] = config_parts[20]
-        config_dict["Kill SpyTheSPy"] = config_parts[21]
-        config_dict["Connection Delay"] = config_parts[22]
-        config_dict["Copy To All Drives"] = config_parts[23]
-        config_dict["HideProcess"] = config_parts[24]
-        if config_parts[17] == "True":
-            config_dict["Install Path"] = "App Data"
-        if config_parts[18] == "True":
-            config_dict["Install Path"] = "TEMP"
-        if config_parts[19] == "True":
-            config_dict["Install Path"] = "Documents"
-        return config_dict
-    else:
-        return None
diff --git a/modules/processing/parsers/CAPE/REvil.py b/modules/processing/parsers/CAPE/REvil.py
deleted file mode 100644
index 6f812ac18bd..00000000000
--- a/modules/processing/parsers/CAPE/REvil.py
+++ /dev/null
@@ -1,88 +0,0 @@
-# Copyright (C) 2019 R3MRUM (https://twitter.com/R3MRUM)
-# This program is free software: you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation, either version 3 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program.  If not, see <http://www.gnu.org/licenses/>.
-
-#!/usr/bin/python
-from __future__ import absolute_import
-import pefile
-import struct
-import json
-from six.moves import map
-
-
-def getSectionNames(sections):
-    section_list = []
-    for section in sections:
-        section_list.append(section.Name.partition(b"\0")[0])
-    return section_list
-
-
-def getREvilKeyAndConfig(pesections, section_name):
-    for section in pesections:
-        if section.Name.partition(b"\0")[0] == section_name:
-            data = section.get_data()
-            if len(data) > 32:
-                key = data[:32]
-                encoded_config = data[32:]
-                return key, encoded_config
-
-
-def decodeREvilConfig(config_key, config_data):
-    init255 = list(range(0, 256))
-
-    key = config_key
-    config_len = struct.unpack("<H", config_data[4:6])[0]
-    encoded_config = config_data[8 : config_len + 7]
-    decoded_config = []
-
-    # print "Key:\t%s" % key
-
-    ECX = EAX = ESI = EDI = EDX = 0
-
-    for char in init255:
-        ESI = ((char & 0xFF) + (ord(key[EAX % len(key)]) + ESI)) & 0xFF
-        init255[EAX] = init255[ESI] & 0xFF
-        EAX += 1
-        init255[ESI] = char & 0xFF
-
-    idx = EAX = ESI = 0
-
-    for char in encoded_config:
-        ECX = (EAX + 1) & 0xFF
-        LOCAL1 = ECX
-        DL = init255[ECX]
-        ESI = (ESI + DL) & 0xFF
-        init255[ECX] = init255[ESI]
-        init255[ESI] = DL
-        decoded_config.append((init255[((init255[ECX] + DL) & 0xFF)]) ^ ord(char))
-        EAX = LOCAL1
-
-    return json.loads("".join(map(chr, decoded_config)))
-
-
-def config(data):
-    config_data = ""
-    config_key = ""
-    required_sections = [".text", ".rdata", ".data", ".reloc"]
-
-    pe = pefile.PE(data=data)
-
-    if len(pe.sections) == 5:
-        section_names = getSectionNames(pe.sections)
-        # print section_names
-        if all(sections in section_names for sections in required_sections):
-            # print 'all required section names found'
-            config_section_name = [resource for resource in section_names if resource not in required_sections][0]
-            config_key, config_data = getREvilKeyAndConfig(pe.sections, config_section_name)
-            if config_key and config_data:
-                return decodeREvilConfig(config_key, config_data)
diff --git a/modules/processing/parsers/CAPE/SmallNet.py b/modules/processing/parsers/CAPE/SmallNet.py
deleted file mode 100644
index 83ccb55121d..00000000000
--- a/modules/processing/parsers/CAPE/SmallNet.py
+++ /dev/null
@@ -1,101 +0,0 @@
-def ver_52(data):
-    config_dict = {}
-    config_parts = data.split("!!<3SAFIA<3!!")
-    config_dict["Domain"] = config_parts[1]
-    config_dict["Port"] = config_parts[2]
-    config_dict["Disbale Registry"] = config_parts[3]
-    config_dict["Disbale TaskManager"] = config_parts[4]
-    config_dict["Install Server"] = config_parts[5]
-    config_dict["Registry Key"] = config_parts[8]
-    config_dict["Install Name"] = config_parts[9]
-    config_dict["Disbale UAC"] = config_parts[10]
-    config_dict["Anti-Sandboxie"] = config_parts[13]
-    config_dict["Anti-Anubis"] = config_parts[14]
-    config_dict["Anti-VirtualBox"] = config_parts[15]
-    config_dict["Anti-VmWare"] = config_parts[16]
-    config_dict["Anti-VirtualPC"] = config_parts[17]
-    config_dict["ServerID"] = config_parts[18]
-    config_dict["USB Spread"] = config_parts[19]
-    config_dict["P2P Spread"] = config_parts[20]
-    config_dict["RAR Spread"] = config_parts[21]
-    config_dict["MSN Spread"] = config_parts[22]
-    config_dict["Yahoo Spread"] = config_parts[23]
-    config_dict["LAN Spread"] = config_parts[24]
-    config_dict["Disbale Firewall"] = config_parts[25]
-    config_dict["Delay Execution MiliSeconds"] = config_parts[26]
-    config_dict["Attribute Read Only"] = config_parts[27]
-    config_dict["Attribute System File"] = config_parts[28]
-    config_dict["Attribute Hidden"] = config_parts[29]
-    config_dict["Attribute Compressed"] = config_parts[30]
-    config_dict["Attribute Temporary"] = config_parts[31]
-    config_dict["Attribute Archive"] = config_parts[32]
-    config_dict["Modify Creation Date"] = config_parts[33]
-    config_dict["Modified Creation Data"] = config_parts[34]
-    config_dict["Thread Persistance"] = config_parts[35]
-    config_dict["Anti-ZoneAlarm"] = config_parts[36]
-    config_dict["Anti-SpyTheSpy"] = config_parts[37]
-    config_dict["Anti-NetStat"] = config_parts[38]
-    config_dict["Anti-TiGeRFirewall"] = config_parts[39]
-    config_dict["Anti-TCPview"] = config_parts[40]
-    config_dict["Anti-CurrentPorts"] = config_parts[41]
-    config_dict["Anti-RogueKiller"] = config_parts[42]
-    config_dict["Enable MessageBox"] = config_parts[43]
-    config_dict["MessageBox Message"] = config_parts[44]
-    config_dict["MessageBox Icon"] = config_parts[45]
-    config_dict["MessageBox Buttons"] = config_parts[46]
-    config_dict["MessageBox Title"] = config_parts[47]
-    if config_parts[6] == 1:
-        config_dict["Install Path"] = "Temp"
-    if config_parts[7] == 1:
-        config_dict["Install Path"] = "Windows"
-    if config_parts[11] == 1:
-        config_dict["Install Path"] = "System32"
-    if config_parts[12] == 1:
-        config_dict["Install Path"] = "Program Files"
-    return config_dict
-
-
-def ver_5(data):
-    config_dict = {}
-    config_parts = data.split("!!ElMattadorDz!!")
-    config_dict["Domain"] = config_parts[1]
-    config_dict["Port"] = config_parts[2]
-    config_dict["Disable Registry"] = config_parts[3]
-    config_dict["Disbale TaskManager"] = config_parts[4]
-    config_dict["Install Server"] = config_parts[5]
-    config_dict["Registry Key"] = config_parts[8]
-    config_dict["Install Name"] = config_parts[9]
-    config_dict["Disbale UAC"] = config_parts[10]
-    config_dict["Anti-Sandboxie"] = config_parts[13]
-    config_dict["Anti-Anubis"] = config_parts[14]
-    config_dict["Anti-VirtualBox"] = config_parts[15]
-    config_dict["Anti-VmWare"] = config_parts[16]
-    config_dict["Anti-VirtualPC"] = config_parts[17]
-    config_dict["ServerID"] = config_parts[18]
-    config_dict["USB Spread"] = config_parts[19]
-    config_dict["P2P Spread"] = config_parts[20]
-    config_dict["RAR Spread"] = config_parts[21]
-    config_dict["MSN Spread"] = config_parts[22]
-    config_dict["Yahoo Spread"] = config_parts[23]
-    config_dict["LAN Spread"] = config_parts[24]
-    config_dict["Disbale Firewall"] = config_parts[25]
-    config_dict["Delay Execution MiliSeconds"] = config_parts[26]
-    if config_parts[6] == 1:
-        config_dict["Install Path"] = "Temp"
-    if config_parts[7] == 1:
-        config_dict["Install Path"] = "Windows"
-    if config_parts[11] == 1:
-        config_dict["Install Path"] = "System32"
-    if config_parts[12] == 1:
-        config_dict["Install Path"] = "Program Files"
-    return [config_dict, [config_dict["Domain"]]]
-
-
-def config(data):
-    if "!!<3SAFIA<3!!" in data:
-        config_dict = ver_52(data)
-        return config_dict
-
-    elif "!!ElMattadorDz!!" in data:
-        config_dict = ver_5(data)
-        return config_dict
diff --git a/modules/processing/parsers/CAPE/TSCookie.py b/modules/processing/parsers/CAPE/TSCookie.py
deleted file mode 100644
index 02a5f21b8f5..00000000000
--- a/modules/processing/parsers/CAPE/TSCookie.py
+++ /dev/null
@@ -1,167 +0,0 @@
-#!/usr/bin/env python
-#
-# LICENSE
-# the GNU General Public License version 2
-#
-# Credit to JPCERT - this is derived from https://github.com/JPCERTCC/aa-tools/blob/master/tscookie_decode.py
-#
-from __future__ import absolute_import
-import sys
-import pefile
-import re
-import collections
-from struct import unpack, unpack_from
-
-# Resource pattern
-RESOURCE_PATTERNS = [
-    re.compile("\x50\x68(....)\x68(.)\x00\x00\x00(.)\xE8", re.DOTALL),
-    re.compile("(.)\x68(...)\x00\x68(.)\x00\x00\x00\x6A\x00\xE8(....)\x83(..)\xC3", re.DOTALL),
-    re.compile("\x04(.....)\x68(.)\x00\x00\x00\x6A\x00\xE8", re.DOTALL),
-    re.compile("\x56\xBE(....)\x56\x68(.)\x00\x00\x00\x6A\x00\xE8", re.DOTALL),
-    re.compile("\x53\x68(....)\x6A(.)\x56\xFF", re.DOTALL),
-]
-
-# RC4 key pattern
-RC4_KEY_PATTERNS = [
-    re.compile("\x80\x68\x80\x00\x00\x00\x50\xC7\x40", re.DOTALL),
-    re.compile("\x80\x68\x80\x00\x00\x00(...)\x50\x52\x53\xC7\x40", re.DOTALL),
-]
-RC4_KEY_LENGTH = 0x80
-
-# Config pattern
-CONFIG_PATTERNS = [
-    re.compile("\xC3\x90\x68(....)\xE8(....)\x59\x6A\x01\x58\xC3", re.DOTALL),
-    re.compile("\x6A\x04\x68(....)\x8D(.....)\x56\x50\xE8", re.DOTALL),
-]
-CONFIG_SIZE = 0x8D4
-
-# RC4
-def rc4(data, key):
-    x = 0
-    box = list(range(256))
-    for i in range(256):
-        x = (x + box[i] + ord(key[i % len(key)])) % 256
-        box[i], box[x] = box[x], box[i]
-    x = 0
-    y = 0
-    out = []
-    for char in data:
-        x = (x + 1) % 256
-        y = (y + box[x]) % 256
-        box[x], box[y] = box[y], box[x]
-        out.append(chr(ord(char) ^ box[(box[x] + box[y]) % 256]))
-
-    return "".join(out)
-
-
-# helper function for formatting string
-def __format_string(data):
-    return data.split("\x00")[0]
-
-
-# Parse config
-def parse_config(config):
-    config_dict = collections.OrderedDict()
-    for i in range(4):
-        if config[0x10 + 0x100 * i] != "\x00":
-            config_dict["Server name #" + str(i + 1)] = __format_string(unpack_from("<240s", config, 0x10 + 0x100 * i)[0].decode("utf-16"))
-            config_dict["Main port #" + str(i + 1)] = unpack_from("<H", config, 0x4 + 0x100 * i)[0]
-            config_dict["Backup port #" + str(i + 1)] = unpack_from("<H", config, 0x8 + 0x100 * i)[0]
-    if config[0x400] != "\x00":
-        config_dict["Proxy server"] = __format_string(unpack_from("<128s", config, 0x400)[0].decode("utf-16"))
-        config_dict["Proxy port"] = unpack_from("<H", config, 0x480)[0]
-    config_dict["ID"] = __format_string(unpack_from("<256s", config, 0x500)[0].decode("utf-16"))
-    config_dict["Key"] = "0x{0:X}".format(unpack_from(">I", config, 0x604)[0])
-    config_dict["Sleep time"] = unpack_from("<H", config, 0x89C)[0]
-    return config_dict
-
-
-# Decode resource
-def decode_resource(rc_data, key_end, fname):
-    try:
-        enc_data = rc_data[:-RC4_KEY_LENGTH]
-        rc4key = rc_data[-RC4_KEY_LENGTH:-4] + key_end
-        dec_data = rc4(enc_data, rc4key)
-        open(fname, "wb").write(dec_data)
-    except:
-        return
-    return dec_data
-
-
-# Find RC4 key
-def load_rc4key(data):
-    for pattern in RC4_KEY_PATTERNS:
-        mk = re.search(pattern, data)
-        key_end = ""
-        if mk:
-            key_end = data[mk.end() + 1 : mk.end() + 5]
-            break
-    return key_end
-
-
-# Find and load resource
-def load_resource(pe, data):
-    for pattern in RESOURCE_PATTERNS:
-        mr = re.search(pattern, data)
-        if mr:
-            try:
-                (resource_name_rva,) = unpack("=I", data[mr.start() + 2 : mr.start() + 6])
-                rn_addr = pe.get_physical_by_rva(resource_name_rva - pe.NT_HEADERS.OPTIONAL_HEADER.ImageBase)
-                resource_name = data[rn_addr : rn_addr + 4]
-                resource_id = ord(unpack("c", data[mr.start() + 7])[0])
-                if resource_id > 200:
-                    resource_id = ord(unpack("c", data[mr.start() + 8])[0])
-                if resource_id == 104:
-                    resource_id = ord(unpack("c", data[mr.start() + 21])[0])
-                break
-            except:
-                return
-    if not mr:
-        sys.exit("[!] Resource id not found.")
-
-    for idx in pe.DIRECTORY_ENTRY_RESOURCE.entries:
-        if str(idx.name) in str(resource_name):
-            for entry in idx.directory.entries:
-                if entry.id == resource_id:
-                    try:
-                        data_rva = entry.directory.entries[0].data.struct.OffsetToData
-                        size = entry.directory.entries[0].data.struct.Size
-                        rc_data = pe.get_memory_mapped_image()[data_rva : data_rva + size]
-                    except:
-                        return
-
-    return rc_data
-
-
-def config(data):
-    try:
-        dll = pefile.PE(data=data)
-    except:
-        return None
-
-    for pattern in CONFIG_PATTERNS:
-        mc = re.search(pattern, data)
-        if mc:
-            try:
-                (config_rva,) = unpack("=I", data[mc.start() + 3 : mc.start() + 7])
-                config_addr = dll.get_physical_by_rva(config_rva - dll.NT_HEADERS.OPTIONAL_HEADER.ImageBase)
-                enc_config_data = data[config_addr : config_addr + CONFIG_SIZE]
-            except:
-                return
-
-    for pattern in RESOURCE_PATTERNS:
-        mr2 = re.search(pattern, data)
-
-    if mr2:
-        rc2_data = load_resource(dll, data)
-        key_end = load_rc4key(data)
-        decode_resource(rc2_data, key_end, "TSCookie" + ".2nd.decode")
-
-    try:
-        enc_config = enc_config_data[4:]
-        rc4key = enc_config_data[:4]
-        config = rc4(enc_config, rc4key)
-    except:
-        return
-
-    return parse_config(config)
diff --git a/modules/processing/parsers/CAPE/TrickBot.py b/modules/processing/parsers/CAPE/TrickBot.py
deleted file mode 100644
index e5135953b49..00000000000
--- a/modules/processing/parsers/CAPE/TrickBot.py
+++ /dev/null
@@ -1,193 +0,0 @@
-# MIT License
-#
-# Copyright (c) 2017 Jason Reaves
-# Copyright (c) 2019 Graham Austin
-#
-# Permission is hereby granted, free of charge, to any person obtaining a copy
-# of this software and associated documentation files (the "Software"), to deal
-# in the Software without restriction, including without limitation the rights
-# to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
-# copies of the Software, and to permit persons to whom the Software is
-# furnished to do so, subject to the following conditions:
-#
-# The above copyright notice and this permission notice shall be included in all
-# copies or substantial portions of the Software.
-#
-# THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
-# IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
-# FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
-# AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
-# LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
-# OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
-# SOFTWARE.
-
-from __future__ import absolute_import
-import pefile
-import struct
-import hashlib
-from Crypto.Cipher import AES
-import xml.etree.ElementTree as ET
-import yara
-
-rule_source = """
-rule TrickBot
-{
-    meta:
-        author = "grahamaustin"
-        description = "TrickBot Payload"
-        cape_type = "TrickBot Payload"
-    strings:
-        $snippet1 = {B8 ?? ?? 00 00 85 C9 74 32 BE ?? ?? ?? ?? BA ?? ?? ?? ?? BF ?? ?? ?? ?? BB ?? ?? ?? ?? 03 F2 8B 2B 83 C3 04 33 2F 83 C7 04 89 29 83 C1 04 3B DE 0F 43 DA}
-    condition:
-        uint16(0) == 0x5A4D and ($snippet1)
-}
-"""
-
-def yara_scan(raw_data, rule_name):
-    addresses = {}
-    yara_rules = yara.compile(source=rule_source)
-    matches = yara_rules.match(data=raw_data)
-    for match in matches:
-        if match.rule == "TrickBot":
-            for item in match.strings:
-                if item[1] == rule_name:
-                    addresses[item[1]] = item[0]
-                    return addresses
-
-def xor_data(data, key, key_len):
-    i = 0
-    decrypted_blob = b""
-    for x in range(0, len(data), 4):
-        xor = struct.unpack("<L", data[x : x + 4])[0] ^ struct.unpack("<L", key[i % key_len])[0]
-        decrypted_blob += struct.pack("<L", xor)
-        i += 1
-    return decrypted_blob
-
-def derive_key(n_rounds, input_bf):
-    intermediate = input_bf
-    for i in range(0, n_rounds):
-        sha = hashlib.sha256()
-        sha.update(intermediate)
-        current = sha.digest()
-        intermediate += current
-    return current
-
-# expects a str of binary data open().read()
-def trick_decrypt(data):
-    key = derive_key(128, data[:32])
-    iv = derive_key(128, data[16:48])[:16]
-    aes = AES.new(key, AES.MODE_CBC, iv)
-    mod = len(data[48:]) % 16
-    if mod != 0:
-        data += "0" * (16 - mod)
-    return aes.decrypt(data[48:])[: -(16 - mod)]
-
-def get_rsrc(pe):
-    ret = []
-    if hasattr(pe, "DIRECTORY_ENTRY_RESOURCE"):
-        for resource_type in pe.DIRECTORY_ENTRY_RESOURCE.entries:
-            if resource_type.name is not None:
-                name = str(resource_type.name)
-            else:
-                name = str(pefile.RESOURCE_TYPE.get(resource_type.struct.Id))
-            if name == None:
-                name = str(resource_type.struct.name)
-            if hasattr(resource_type, "directory"):
-                for resource_id in resource_type.directory.entries:
-                    if hasattr(resource_id, "directory"):
-                        for resource_lang in resource_id.directory.entries:
-                            data = pe.get_data(resource_lang.data.struct.OffsetToData, resource_lang.data.struct.Size)
-                            ret.append((name, data, resource_lang.data.struct.Size, resource_type))
-    return ret
-
-def va_to_fileoffset(pe, va):
-    rva = va - pe.OPTIONAL_HEADER.ImageBase
-    for section in pe.sections:
-        if rva >= section.VirtualAddress and rva < section.VirtualAddress + section.Misc_VirtualSize:
-            return rva - section.VirtualAddress + section.PointerToRawData
-
-# Thanks Robert Giczewski - https://malware.love/malware_analysis/reverse_engineering/2020/11/17/trickbots-latest-trick.html
-def convert_to_real_ip(ip_str):
-    result_octets = []
-    octets = ip_str.split(".")
-    o1 = int(octets[0])
-    o2 = int(octets[2])
-    o3 = int(octets[3])
-    o4 = int(octets[1])
-    x = ((~o1 & 0xFF) & 0xb8 | (o1 & 0x47)) ^ ((~o2 & 0xFF) & 0xb8 | (o2 & 0x47))
-    result_octets.append(str(x))
-    o = (o3 & (~o2 & 0xFF)) | ((~o3 & 0xff) & o2)
-    result_octets.append(str(((~o & 0xff) & o4) | (o & (~o4 & 0xff))))
-    result_octets.append(str(o))
-    result_octets.append(str(((~o2 & 0xFF) & o4) | ((~o4 & 0xff) & o2)))
-    return ".".join(result_octets) + ":443"
-
-def get_ip(ip_str, tag):
-    if tag == 'srva':
-        return convert_to_real_ip(ip_str.split(':')[0])
-    return ip_str
-
-def decode_onboard_config(data):
-    try:
-        pe = pefile.PE(data=data)
-        rsrcs = get_rsrc(pe)
-    except:
-        return
-    if rsrcs != []:
-        a = rsrcs[0][1]
-        data = trick_decrypt(a[4:])
-        length = struct.unpack_from("<I", data)[0]
-        if length < 4000:
-            return data[8 : length + 8]
-        a = rsrcs[1][1]
-        data = trick_decrypt(a[4:])
-        length = struct.unpack_from("<I", data)[0]
-        if length < 4000:
-            return data[8 : length + 8]
-
-    # Following code by grahamaustin
-    snippet = yara_scan(data, "$snippet1")
-    if not snippet:
-        return
-    offset = int(snippet["$snippet1"])
-    key_len = struct.unpack("<L", data[offset + 10 : offset + 14])[0]
-    key_offset = struct.unpack("<L", data[offset + 15 : offset + 19])[0]
-    key_offset = va_to_fileoffset(pe, int(struct.unpack("<L", data[offset + 15 : offset + 19])[0]))
-    data_offset = va_to_fileoffset(pe, int(struct.unpack("<L", data[offset + 20 : offset + 24])[0]))
-    size_offset = va_to_fileoffset(pe, int(struct.unpack("<L", data[offset + 53 : offset + 57])[0]))
-    size = size_offset - data_offset
-    key = data[key_offset : key_offset + key_len]
-    key = [key[i : i + 4] for i in range(0, len(key), 4)]
-    key_len2 = len(key)
-    a = data[data_offset : data_offset + size]
-    a = xor_data(a, key, key_len2)
-
-    data = trick_decrypt(a)
-    length = struct.unpack_from("<I", data)[0]
-    if length < 4000:
-        return data[8 : length + 8]
-
-def config(data):
-    xml = decode_onboard_config(data)
-    try:
-        root = ET.fromstring(xml)
-    except:
-        return
-    raw_config = {}
-    for child in root:
-
-        if hasattr(child, "key"):
-            tag = child.attrib["key"]
-        else:
-            tag = child.tag
-
-        if tag == "autorun":
-            val = list(map(lambda x: x.items(), child.getchildren()))
-        elif tag == "servs":
-            val = list(map(lambda x: get_ip(x.text, x.tag), child.getchildren()))
-        else:
-            val = child.text
-
-        raw_config[tag] = val
-
-    return raw_config
diff --git a/modules/processing/parsers/CAPE/Ursnif.py b/modules/processing/parsers/CAPE/Ursnif.py
deleted file mode 100644
index 78ac3af2136..00000000000
--- a/modules/processing/parsers/CAPE/Ursnif.py
+++ /dev/null
@@ -1,130 +0,0 @@
-# Copyright (C) 2017 Kevin O'Reilly (kevin.oreilly@contextis.co.uk)
-# This program is free software: you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation, either version 3 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program.  If not, see <http://www.gnu.org/licenses/>.
-
-from __future__ import absolute_import
-import struct
-import binascii
-from Crypto.PublicKey import RSA
-
-MAX_STRING_SIZE = 256
-
-SECTION_KEYS = {
-    0xD0665BF6: "Domains",
-    0x73177345: "DGA Base URL",
-    0xCD850E68: "DGA CRC",
-    0xC61EFA7A: "DGA TLDs",
-    0x510F22D2: "TOR Domains",
-    0xDF351E24: "32-bit DLL URLs",
-    0x4B214F54: "64-bit DLL URLs",
-    0xEC99DF2E: "IP Service",
-    0x11271C7F: "Timer",
-    0xDF2E7488: "DGA count",
-    0x556AED8F: "Server",
-    0x4FA8693E: "Encryption key",
-    0xD7A003C9: "Config Fail Timeout",
-    0x18A632BB: "Config Timeout",
-    0x31277BD5: "Task Timeout",
-    0x955879A6: "Send Timeout",
-    0xACC79A02: "Knocker Timeout",
-    0x6DE85128: "BC Timeout",
-    0x656B798A: "Botnet ID",
-    0xEFC574AE: "Value 11",
-    # 0x584E5925: 'EndPointer',
-    0xD3AA96D0: "New unknown",
-}
-
-
-def string_from_offset(buffer, offset):
-    string = buffer[offset : offset + MAX_STRING_SIZE].split(b"\0")[0].decode('utf-8')
-    return string
-
-
-def get_config_item(config, offset):
-    config_string = string_from_offset(config, offset)
-    if " " in config_string:
-        config_list = config_string.split(" ")
-        return config_list
-    else:
-        return config_string
-
-
-def convert_pubkey(pub):
-    # bit = struct.unpack_from('<I', pub)[0]
-    bit = 0x200
-    mod = pub[4 : (bit / 8) + 4]
-    exp = pub[(bit / 8) + 4 :]
-
-    mod = int(binascii.hexlify(mod), 16)
-    exp = int(binascii.hexlify(exp), 16)
-    keypub = RSA.construct((mod, int(exp)))
-    pempub = keypub.exportKey("PEM")
-    return keypub, pempub
-
-
-def config(raw_data):
-    config_dict = {}
-
-    if len(raw_data) == 132:
-        keypub, pempub = convert_pubkey(raw_data)
-        config_dict["RSA public key"] = pempub
-        return config_dict
-
-    dword1 = struct.unpack("I", raw_data[0:4])[0]
-    dword2 = struct.unpack("I", raw_data[4:8])[0]
-
-    if dword1 < 0x40:
-        number_of_sections = dword1
-        section_count = 0
-        section_offset = 8
-        while section_count < number_of_sections:
-            section_key = struct.unpack("I", raw_data[section_offset : section_offset + 4])[0]
-            section_type = struct.unpack("I", raw_data[section_offset + 4 : section_offset + 8])[0]
-            if section_type == 1:
-                data_offset = struct.unpack("I", raw_data[section_offset + 8 : section_offset + 12])[0]
-                config_item = get_config_item(raw_data, section_offset + data_offset)
-                if config_item == "":
-                    section_count += 1
-                    section_offset += 24
-                    continue
-                option = SECTION_KEYS.get(section_key)
-                if option:
-                    config_dict[option] = config_item
-
-            section_count += 1
-            section_offset += 24
-
-    elif dword2 == 0:
-        section_offset = 8
-        section_key = struct.unpack("I", raw_data[section_offset : section_offset + 4])[0]
-        section_type = struct.unpack("I", raw_data[section_offset + 4 : section_offset + 8])[0]
-        while section_type == 1:
-            section_key = struct.unpack("I", raw_data[section_offset : section_offset + 4])[0]
-            section_type = struct.unpack("I", raw_data[section_offset + 4 : section_offset + 8])[0]
-            data_offset = struct.unpack("I", raw_data[section_offset + 8 : section_offset + 12])[0]
-            config_item = get_config_item(raw_data, section_offset + data_offset)
-            if config_item == "":
-                section_offset += 24
-                continue
-            option = SECTION_KEYS.get(section_key)
-            if option:
-                config_dict[option] = config_item
-            section_offset += 24
-
-    return config_dict
-
-
-# JOINER_SECTIONS = {0xe1285e64: "CRC_PUBLIC_KEY", 0x8fb1dde1: "CRC_CLIENT_INI", 0xd722afcb: "CRC_CLIENT_INI", 0x4f75cea7: "CRC_LOADER_DLL", 0x90f8aab5: "CRC_LOADER_DLL", 0x7a042a8a: "CRC_INSTALL_INI", 0x90f8aab4: "CRC_CLIENT64", 0xda57d71a: "CRC_WORDLIST", 0xc535d8bf: "CRC_LOADER_DLL"}
-# JOINER_SECTIONS = {0xe1285e64: "CRC_PUBLIC_KEY", 0x8fb1dde1: "CRC_CLIENT_INI", 0xd722afcb: "CRC_CLIENT_INI", 0x7a042a8a: "CRC_INSTALL_INI", 0x90f8aab4: "CRC_CLIENT64", 0xda57d71a: "CRC_WORDLIST"}
-# INI_PARAMS = {0x4fa8693e: "CRC_SERVERKEY", 0xd0665bf6: "CRC_HOSTS", 0x656b798a: "CRC_GROUP", 0x556aed8f: "CRC_SERVER", 0x11271c7f: "CONF_TIMEOUT", 0x48295783: "CONFIG_FAIL_TIMEOUT", 0xea9ea760: "CRC_BOOTSTRAP", 0x31277bd5: "CRC_TASKTIMEOUT",0x955879a6: "CRC_SENDTIMEOUT", 0x9fd13931: "CRC_BCSERVER", 0x6de85128: "CRC_BCTIMEOUT", 0xacc79a02: "CRC_KNOCKERTIMEOUT", 0x602c2c26: "CRC_KEYLOGLIST", 0x556aed8f: "CRC_SERVER", 0xd7a003c9: "CRC_CONFIGTIMEOUT", 0x18a632bb: "CRC_CONFIGFAILTIMEOUT", 0x73177345: "CRC_DGA_SEED_URL", 0x510f22d2: "CRC_TORSERVER", 0xec99df2e: "CRC_EXTERNALIP", 0xc61efa7a: "CRC_DGATLDS", 0xdf351e24: "CRC_32BITDOWNLOAD", 0x4b214f54: "CRC_64BITDOWNLOAD", 0xcd850e68: "DGA_CRC", 0xdf2e7488: "DGA_COUNT", 0x584e5925: "TIMER"}
-#
diff --git a/modules/processing/parsers/CAPE/_ShadowTech.py b/modules/processing/parsers/CAPE/_ShadowTech.py
deleted file mode 100644
index 7321c5c45f8..00000000000
--- a/modules/processing/parsers/CAPE/_ShadowTech.py
+++ /dev/null
@@ -1,123 +0,0 @@
-#!/usr/bin/env python
-"""
-ShadowTech Config Extractor
-"""
-
-from __future__ import absolute_import
-from __future__ import print_function
-import database
-import createIOC
-import re
-import string
-from operator import xor
-
-new_line = "#-@NewLine@-#"
-split_string = "ESILlzCwXBSrQ1Vb72t6bIXtKRzHJkolNNL94gD8hIi9FwLiiVlrznTz68mkaaJQQSxJfdLyE4jCnl5QJJWuPD4NeO4WFYURvmkth8"  #
-enc_key = "pSILlzCwXBSrQ1Vb72t6bIXtKRzAHJklNNL94gD8hIi9FwLiiVlr"  # Actual key is 'KeY11PWD24'
-
-
-# Helper Functions Go Here
-
-
-def string_print(line):
-    return [x for x in line if x in string.printable]
-
-def get_config(data):
-    config_list = []
-    config_string = data.split(split_string)
-    for x in range(1, len(config_string)):
-        try:
-            output = ""
-            hex_pairs = [config_string[x][i : i + 2] for i in range(0, len(config_string[x]), 2)]
-            for i in range(0, len(config_string[x]) / 2):
-                data_slice = int(hex_pairs[i], 16)  # get next hex value
-
-                key_slice = ord(enc_key[i + 1])  # get next Char For Key
-                output += chr(xor(data_slice, key_slice))  # xor Hex and Key Char
-            print(output)
-        except:
-            output = "DecodeError"
-        config_list.append(output)
-    return config_list
-
-
-# returns pretty config
-def parse_config(config_list):
-    config_dict = {}
-    config_dict["Domain"] = config_list[0]
-    config_dict["Port"] = config_list[1]
-    config_dict["CampaignID"] = config_list[2]
-    config_dict["Password"] = config_list[3]
-    config_dict["InstallFlag"] = config_list[4]
-    config_dict["RegistryKey"] = config_list[5]
-    config_dict["Melt"] = config_list[6]
-    config_dict["Persistance"] = config_list[7]
-    config_dict["Mutex"] = config_list[8]
-    config_dict["ShowMsgBox"] = config_list[9]
-    # config_dict['Flag5'] = config_list[10] # MsgBox Icon
-    # config_dict['Flag6'] = config_list[11] # MsgBox Buttons
-    config_dict["MsgBoxTitle"] = config_list[12]
-    config_dict["MsgBoxText"] = config_list[13]
-    return config_dict
-
-"""
-def decrypt_XOR(enckey, data):
-    # ToDo fix it yourself, XOR not defined
-    cipher = XOR.new(enckey)  # set the cipher
-    return cipher.decrypt(data)  # decrpyt the data
-"""
-
-def snortRule(md5, config_dict):
-    rules = []
-    domain = config_dict["Domain"]
-    ipPattern = re.compile("\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3}")
-    ipTest = ipPattern.search(domain)
-    if len(domain) > 1:
-        if ipTest:
-            rules.append(
-                """alert tcp any any -> """
-                + domain
-                + """ any (msg: "ShadowTech Beacon Domain: """
-                + domain
-                + """"; classtype:trojan-activity; sid:5000000; rev:1; priority:1; reference:url,http://malwareconfig.com;)"""
-            )
-        else:
-            rules.append(
-                """alert udp any any -> any 53 (msg: "ShadowTech Beacon Domain: """
-                + domain
-                + """"; content:"|0e|"""
-                + domain
-                + """|00|"; nocase;  classtype:trojan-activity; sid:5000000; rev:1; priority:1; reference:url,http://malwareconfig.com;)"""
-            )
-            rules.append(
-                """alert tcp any any -> any 53 (msg: "ShadowTech Beacon Domain: """
-                + domain
-                + """"; content:"|0e|"""
-                + domain
-                + """|00|"; nocase;  classtype:trojan-activity; sid:5000000; rev:1; priority:1; reference:url,http://malwareconfig.com;)"""
-            )
-    database.insertSnort(md5, rules)
-
-
-# IOC Creator Two elements Domain or install
-def generateIOC(md5, config_dict):
-    netIOC = []
-    netIOC.append(("is", "PortItem", "PortItem/remotePort", "string", config_dict["Port"]))
-    netIOC.append(("contains", "Network", "Network/DNS", "string", config_dict["Domain"]))
-    # add each list to our master list
-    items = []
-    items.append(netIOC)
-    IOC = createIOC.main(items, "ShadowTech", md5)
-    database.insertIOC(md5, IOC)
-
-
-def run(md5, data):
-    raw_config = get_config(data)
-
-    # lets Process this and format the config
-    config_dict = parse_config(raw_config)
-    if len(config_dict["Domain"]) > 0:
-        snortRule(md5, config_dict)
-        generateIOC(md5, config_dict)
-        database.insertDomain(md5, [config_dict["Domain"]])
-    return config_dict
diff --git a/modules/processing/parsers/CAPE/_SpyGate.py b/modules/processing/parsers/CAPE/_SpyGate.py
deleted file mode 100644
index 90a9f64c42a..00000000000
--- a/modules/processing/parsers/CAPE/_SpyGate.py
+++ /dev/null
@@ -1,216 +0,0 @@
-# Standard Imports Go Here
-from __future__ import absolute_import
-from __future__ import print_function
-import os
-import sys
-import string
-import pype32
-
-import database
-import re
-import createIOC
-
-
-def run(md5, rawData):
-    rawconfig = rawData.split("abccba")
-    if len(rawconfig) > 1:
-        print("Running Abccba")
-        conf = oldversions(rawconfig)
-    else:
-        print("Running pype32")
-        pe = pype32.PE(data=rawData)
-        rawConfig = getStream(pe)
-        conf = parseConfig(rawConfig)
-    if not conf:
-        return None
-    database.insertDomain(md5, [conf["Domain"]])
-    return conf
-
-
-# Confirm if there is Net MetaData in the File
-def getStream(pe):
-    counter = 0
-    for dir in pe.ntHeaders.optionalHeader.dataDirectory:
-        if dir.name.value == "NET_METADATA_DIRECTORY":
-            rawConfig = findUSStream(pe, counter)
-        else:
-            counter += 1
-    return rawConfig
-
-
-# I only want to extract the User Strings Section
-def findUSStream(pe, dir):
-    for i in range(0, 4):
-        name = pe.ntHeaders.optionalHeader.dataDirectory[dir].info.netMetaDataStreams[i].name.value
-        if name.startswith("#US"):
-            return pe.ntHeaders.optionalHeader.dataDirectory[dir].info.netMetaDataStreams[i].info
-
-
-# Walk the User Strings and create a list of individual strings
-def parseConfig(rawConfig):
-    stringList = []
-    offset = 1
-    config = bytearray(rawConfig)
-    while offset < len(config):
-        length = int(config[offset])
-        that = config[offset + 1 : offset + int(length)]
-        stringList.append(str(that.replace("\x00", "")))
-        offset += int(length + 1)
-    print(stringList)
-    config = {}
-    for i in range(0, 60):
-        config["Domain"] = stringList[37]
-        config["Port"] = stringList[39]
-        config["CampaignID"] = stringList[38]
-        config["FolderName"] = stringList[41]
-        config["StartUpName"] = stringList[40]
-        config["InstallPath"] = stringList[44]
-    return config
-
-
-def oldversions(config):
-    config = {}
-    if len(config) == 48:
-        config["Version"] = "V0.2.6"
-        for i in range(1, len(config)):
-            config["Domain"] = config[1]  #
-            config["Port"] = config[2]  #
-            config["CampaignID"] = config[3]  #
-            config["DanOption"] = config[5]  #
-            config["StartupName"] = config[7]  #
-            config["Password"] = config[9]  #
-            config["AntiKillServer"] = config[10]  #
-            config["USBSpreadlnk"] = config[11]
-            config["AntiProcessExplorer"] = config[12]
-            config["AntiProcessHacker"] = config[13]
-            config["AntiApateDNS"] = config[14]
-            config["AntiMalwareBytes"] = config[15]
-            config["AntiAntiLogger"] = config[16]
-            config["BlockVirusTotal"] = config[17]  #
-            config["Mutex"] = config[18]  #
-            config["Persistance"] = config[19]  #
-            config["SpyGateKey"] = config[20]
-            config["StartupFolder"] = config[21]  #
-            config["AntiAvira"] = config[23]
-            config["USBSpread"] = config[24]
-            # 25 if statement below
-            config["InstallPath"] = config[26]  #
-            config["StartUpName"] = config[27]  #
-            config["MeltAfterRun"] = config[28]  #
-            config["HideAfterRun"] = config[29]  #
-            config["InstallPath2"] = config[33]  #
-            # 34 and 35 in if statement below
-            config["InstallPath3"] = config[36]
-            config["AntiSbieCtrl"] = config[38]
-            config["AntiSpyTheSpy"] = config[39]
-            config["AntiSpeedGear"] = config[40]
-            config["AntiWireshark"] = config[41]
-            config["AntiIPBlocker"] = config[42]
-            config["AntiCports"] = config[43]
-            config["AntiAVG"] = config[44]
-            config["AntiOllyDbg"] = config[45]
-            config["AntiXNetstat"] = config[46]
-        if config[25] == "True":
-            config["AppDataFolder"] = "True"
-        else:
-            config["ApplDataFolder"] = "False"
-        if config[34] == "True":
-            config["TemplatesFolder"] = "True"
-        else:
-            config["TemplatesFolder"] = "False"
-
-        if config[35] == "True":
-            config["ProgramsFolder"] = "True"
-        else:
-            config["ProgramsFolder"] = "False"
-        return config
-
-    elif len(config) == 18:
-        config["Version"] = "V2.0"
-        for i in range(1, len(config)):
-            print(i, config[i])
-            config["Domain"] = config[1]  #
-            config["Port"] = config[2]  #
-            config["CampaignID"] = config[3]  #
-            config["DanOption"] = config[5]  #
-            config["AddToStartup"] = config[5]  #
-            config["StartupKey"] = config[7]  #
-            config["Password"] = config[9]  #
-            config["AntiKillServer"] = config[10]  #
-            config["USBSpread"] = config[11]  #
-            config["KillProcessExplorer"] = config[12]  #
-            config["AntiProcessHacker"] = config[13]  #
-            config["AntiApateDNS"] = config[14]
-            config["AntiMalwareBytes"] = config[15]
-            config["AntiAntiLogger"] = config[16]
-            config["BlockVirusTotal"] = config[17]
-        return config
-    else:
-        return None
-
-
-def snortRule(md5, confDict):
-    rules = []
-    domain = confDict["Domain"]
-    ipPattern = re.compile("\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3}")
-    ipTest = ipPattern.search(domain)
-    if len(domain) > 1:
-        if ipTest:
-            rules.append(
-                """alert tcp any any -> """
-                + domain
-                + """ any (msg: "Pandora Beacon Domain: """
-                + domain
-                + """"; classtype:trojan-activity; sid:5000000; rev:1; priority:1; reference:url,http://malwareconfig.com;)"""
-            )
-        else:
-            rules.append(
-                """alert udp any any -> any 53 (msg: "Pandora Beacon Domain: """
-                + domain
-                + """"; content:"|0e|"""
-                + domain
-                + """|00|"; nocase;  classtype:trojan-activity; sid:5000000; rev:1; priority:1; reference:url,http://malwareconfig.com;)"""
-            )
-            rules.append(
-                """alert tcp any any -> any 53 (msg: "Pandora Beacon Domain: """
-                + domain
-                + """"; content:"|0e|"""
-                + domain
-                + """|00|"; nocase;  classtype:trojan-activity; sid:5000000; rev:1; priority:1; reference:url,http://malwareconfig.com;)"""
-            )
-    database.insertSnort(md5, rules)
-
-
-# IOC Creator Two elements Domain or install
-def generateIOC(md5, confDict):
-    # Create the list for File Artefacts
-    fileIOC = []
-    fileIOC.append(("is", "FileItem", "FileItem/FileName", "string", confDict["InstallName"]))
-    fileIOC.append(("contains", "FileItem", "FileItem/FilePath", "string", confDict["InstallPath"]))
-    fileIOC.append(("is", "FileItem", "FileItem/Md5sum", "md5", md5))
-    fileIOC.append(("is", "ProcessItem", "ProcessItem/HandleList/Handle/Name", "string", confDict["Mutex"]))
-    # Create the list for Registry Artefacts
-    regIOC = []
-    regIOC.append(
-        ("contains", "RegistryItem", "RegistryItem/Path", "string", "HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components")
-    )
-    regIOC.append(("is", "RegistryItem", "RegistryItem/Value", "string", confDict["ActiveXKey"]))
-    regIOC.append(
-        ("contains", "RegistryItem", "RegistryItem/Path", "string", "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run")
-    )
-    regIOC.append(("is", "RegistryItem", "RegistryItem/Value", "string", confDict["HKLMValue"]))
-    # add each list to our master list
-    items = []
-    items.append(fileIOC)
-    items.append(regIOC)
-    domList = []
-    domains = confDict["Domains"].split("|")
-    for x in domains:
-        domain = x.split(":")[0]
-        domList.append(domain)
-    database.insertDomain(md5, domList)
-    for domain in domList:
-        if domain != "":
-            items.append([("contains", "Network", "Network/DNS", "string", domain)])
-    IOC = createIOC.main(items, "PoisonIvy", md5)
-    database.insertIOC(md5, IOC)
diff --git a/modules/processing/parsers/CAPE/_VirusRat.py b/modules/processing/parsers/CAPE/_VirusRat.py
deleted file mode 100644
index 3a784b85230..00000000000
--- a/modules/processing/parsers/CAPE/_VirusRat.py
+++ /dev/null
@@ -1,81 +0,0 @@
-from __future__ import absolute_import
-import pefile
-import database
-import re
-import ioc
-
-
-def run(md5, data):
-    dict = {}
-    config = data.split("abccba")
-    if len(config) > 5:
-        dict["Domain"] = config[1]
-        dict["Port"] = config[2]
-        dict["Campaign Name"] = config[3]
-        dict["Copy StartUp"] = config[4]
-        dict["StartUp Name"] = config[5]
-        dict["Add To Registry"] = config[6]
-        dict["Registry Key"] = config[7]
-        dict["Melt + Inject SVCHost"] = config[8]
-        dict["Anti Kill Process"] = config[9]
-        dict["USB Spread"] = config[10]
-        dict["Kill AVG 2012-2013"] = config[11]
-        dict["Kill Process Hacker"] = config[12]
-        dict["Kill Process Explorer"] = config[13]
-        dict["Kill NO-IP"] = config[14]
-        dict["Block Virus Total"] = config[15]
-        dict["Block Virus Scan"] = config[16]
-        dict["HideProcess"] = config[17]
-        snortRule(md5, dict)
-        createIOC(md5, dict)
-        database.insertDomain(md5, [dict["Domain"]])
-    return dict
-
-
-def snortRule(md5, dict):
-    rules = []
-    domain = dict["Domain"]
-    ipPattern = re.compile("\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3}")
-    ipTest = ipPattern.search(domain)
-    if len(domain) > 1:
-        if ipTest:
-            rules.append(
-                """alert tcp any any -> """
-                + domain
-                + """ any (msg: "VirusRat Beacon Domain: """
-                + domain
-                + """"; classtype:trojan-activity; sid:5000000; rev:1; priority:1; reference:url,http://malwareconfig.com;)"""
-            )
-        else:
-            rules.append(
-                """alert udp any any -> any 53 (msg: "VirusRat Beacon Domain: """
-                + domain
-                + """"; content:"|0e|"""
-                + domain
-                + """|00|"; nocase;  classtype:trojan-activity; sid:5000000; rev:1; priority:1; reference:url,http://malwareconfig.com;)"""
-            )
-            rules.append(
-                """alert tcp any any -> any 53 (msg: "VirusRat Beacon Domain: """
-                + domain
-                + """"; content:"|0e|"""
-                + domain
-                + """|00|"; nocase;  classtype:trojan-activity; sid:5000000; rev:1; priority:1; reference:url,http://malwareconfig.com;)"""
-            )
-    database.insertSnort(md5, rules)
-
-
-# IOC Creator Two elements Domain or install
-def createIOC(md5, dict):
-    items = []
-    domain = dict["Domain"]
-    items.append(("contains", "Network", "Network/DNS", "string", domain))
-    items.append(("is", "PortItem", "PortItem/remotePort", "string", dict["Port"]))
-
-    install = [
-        ("is", "ProcessItem", "ProcessItem/name", "string", dict["StartUp Name"]),
-        ("is", "RegistryItem", "RegistryItem/Value", "string", dict["Registry Key"]),
-    ]
-    for x in install:
-        items.append(x)
-    IOC = ioc.main(items)
-    database.insertIOC(md5, IOC)
diff --git a/modules/processing/parsers/CAPE/__init__.py b/modules/processing/parsers/CAPE/__init__.py
deleted file mode 100644
index f39e5e8d683..00000000000
--- a/modules/processing/parsers/CAPE/__init__.py
+++ /dev/null
@@ -1 +0,0 @@
-# Init
diff --git a/modules/processing/parsers/CAPE/_jRat.py b/modules/processing/parsers/CAPE/_jRat.py
deleted file mode 100644
index d9749c9aa01..00000000000
--- a/modules/processing/parsers/CAPE/_jRat.py
+++ /dev/null
@@ -1,217 +0,0 @@
-from __future__ import absolute_import
-from __future__ import print_function
-import re
-import os
-import sys
-import commands
-from io import StringIO
-from base64 import b64decode
-import string
-from zipfile import ZipFile
-from Crypto.Cipher import AES, DES3
-import database
-
-
-def run(md5, data):
-    print("[+] Extracting Data from Jar")
-    enckey, conf = get_parts(data)
-    if enckey == None:
-        return
-    print("[+] Decoding Config with Key: {0}".format(enckey.encode("hex")))
-    if len(enckey) == 16:
-        # Newer versions use a base64 encoded config.dat
-        if "==" in conf:  # this is not a great test but should work 99% of the time
-            b64_check = True
-        else:
-            b64_check = False
-        if b64_check:
-            raw_config = new_aes(conf, enckey)
-        else:
-            raw_config = old_aes(conf, enckey)
-    if len(enckey) == 32:
-        raw_config = old_des(conf, enckey)
-    config_dict = parse_config(raw_config, enckey)
-    snortRule(md5, config_dict)
-    database.insertDomain(md5, [config_dict["Domain"]])
-    return config_dict
-
-
-# Helper Functions Go Here
-
-# This extracts the Encryption Key and Config File from the Jar and or Dropper
-def get_parts(data):
-    new_zip = StringIO(data)
-    enckey = None
-    dropper = None
-    conf = None
-    try:
-        with ZipFile(new_zip, "r") as zip:
-            for name in zip.namelist():  # get all the file names
-                if name == "key.dat":  # this file contains the encrytpion key
-                    enckey = zip.read(name)
-                if name == "enc.dat":  # if this file exists, jrat has an installer / dropper
-                    dropper = zip.read(name)
-                if name == "config.dat":  # this is the encrypted config file
-                    conf = zip.read(name)
-    except:
-        print("[+] Dropped File is not Jar File starts with Hex Chars: {0}".format(data[:5].encode("hex")))
-        return None, None
-    if enckey and conf:
-        return enckey, conf
-    elif enckey and dropper:
-        newkey, conf = get_dropper(enckey, dropper)
-        return newkey, conf
-    else:
-        return None, None
-
-
-# This extracts the Encryption Key and New conf from a 'Dropper' jar
-def get_dropper(enckey, dropper):
-    split = enckey.split("\x2c")
-    key = split[0][:16]
-    print("[+] Dropper Detected")
-    for x in split:  # grab each line of the config and decode it.
-        try:
-            drop = b64decode(x).decode("hex")
-            print("    [-] {0}".format(drop).replace("\x0d\x0a", ""))
-        except:
-            drop = b64decode(x[16:]).decode("hex")
-            print("    [-] {0}".format(drop))
-    new_zipdata = decrypt_aes(key, dropper)
-    new_key, conf = get_parts(new_zipdata)
-    return new_key, conf
-
-
-# Returns only printable chars
-def string_print(line):
-    return "".join((char for char in line if 32 < ord(char) < 127))
-
-
-# Messy Messy Messy
-def messy_split(long_line):
-    # this is a messy way to split the data but it works for now.
-    """
-    Split on = gives me the right sections but deletes the b64 padding
-    use modulo math to restore padding.
-    return new list.
-    """
-    new_list = []
-    old_list = long_line.split("=")
-    for line in old_list:
-        if len(line) != 0:
-            line += "=" * ((4 - len(line) % 4) % 4)
-            new_list.append(line)
-    return new_list
-
-
-# AES Decrypt
-def decrypt_aes(enckey, data):
-    cipher = AES.new(enckey)  # set the cipher
-    return cipher.decrypt(data)  # decrpyt the data
-
-
-# DES Decrypt
-def decrypt_des(enckey, data):
-    cipher = DES3.new(enckey)  # set the ciper
-    return cipher.decrypt(data)  # decrpyt the data
-
-
-# Process Versions 3.2.2 > 4.2.
-def old_aes(conf, enckey):
-    decoded_config = decrypt_aes(enckey, conf)
-    clean_config = string_print(decoded_config)
-    raw_config = clean_config.split("SPLIT")
-    return raw_config
-
-
-# Process versions 4.2. >
-def new_aes(conf, enckey):
-    sections = messy_split(conf)
-    decoded_config = ""
-    for x in sections:
-        decoded_config += decrypt_aes(enckey, b64decode(x))
-    raw_config = string_print(decoded_config).split("SPLIT")
-    return raw_config
-
-
-# process versions < 3.2.2
-def old_des(conf, enckey):
-    decoded_config = decrypt_des(conf, enckey)
-    clean_config = string_print(decoded_config)
-    raw_config = clean_config.split("SPLIT")
-    return raw_config
-
-
-def parse_config(raw_config, enckey):
-    config_dict = {}
-    for kv in raw_config:
-        if kv == "":
-            continue
-        kv = string_print(kv)
-        key, value = kv.split("=")
-        if key == "ip":
-            config_dict["Domain"] = value
-        if key == "port":
-            config_dict["Port"] = value
-        if key == "os":
-            config_dict["OS"] = value
-        if key == "mport":
-            config_dict["MPort"] = value
-        if key == "perms":
-            config_dict["Perms"] = value
-        if key == "error":
-            config_dict["Error"] = value
-        if key == "reconsec":
-            config_dict["RetryInterval"] = value
-        if key == "ti":
-            config_dict["TI"] = value
-        if key == "pass":
-            config_dict["Password"] = value
-        if key == "id":
-            config_dict["CampaignID"] = value
-        if key == "mutex":
-            config_dict["Mutex"] = value
-        if key == "toms":
-            config_dict["TimeOut"] = value
-        if key == "per":
-            config_dict["Persistance"] = value
-        if key == "name":
-            config_dict["Name"] = value
-        if key == "tiemout":
-            config_dict["TimeOutFlag"] = value
-        if key == "debugmsg":
-            config_dict["DebugMsg"] = value
-    config_dict["EncryptionKey"] = enckey
-    return config_dict
-
-
-def snortRule(md5, conf):
-    rules = []
-    domain = conf["Domain"]
-    ipPattern = re.compile("\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3}")
-    ipTest = ipPattern.search(domain)
-    if len(domain) > 1:
-        if ipTest:
-            rules.append(
-                """alert tcp any any -> """
-                + domain
-                + """ any (msg: "jRat Beacon Domain: """
-                + domain
-                + """"; classtype:trojan-activity; sid:5000000; rev:1; priority:1; reference:url,http://malwareconfig.com;)"""
-            )
-        else:
-            rules.append(
-                """alert udp any any -> any 53 (msg: "jRat Beacon Domain: """
-                + domain
-                + """"; content:"|0e|"""
-                + domain
-                + """|00|"; nocase;  classtype:trojan-activity; sid:5000000; rev:1; priority:1; reference:url,http://malwareconfig.com;)"""
-            )
-            rules.append(
-                """alert tcp any any -> any 53 (msg: "jRat Beacon Domain: """
-                + domain
-                + """"; content:"|0e|"""
-                + domain
-                + """|00|"; nocase;  classtype:trojan-activity; sid:5000000; rev:1; priority:1; reference:url,http://malwareconfig.com;)"""
-            )
-    database.insertSnort(md5, rules)
diff --git a/modules/processing/parsers/CAPE/pyRattyExtractor.py b/modules/processing/parsers/CAPE/pyRattyExtractor.py
deleted file mode 100644
index 8fdb8de7b6f..00000000000
--- a/modules/processing/parsers/CAPE/pyRattyExtractor.py
+++ /dev/null
@@ -1,106 +0,0 @@
-from __future__ import absolute_import
-from __future__ import print_function
-import zipfile, sys, os
-import base64
-import argparse
-
-
-# ----------------------------------------------------------------
-# extract_config : This extracts the C&C information from Ratty.
-# https://github.com/Sogomn/Ratty
-# ----------------------------------------------------------------
-def extract_config(zip):
-    c2 = []
-    bFile = False
-    fh = open(zip, "rb")
-    z = zipfile.ZipFile(fh)
-    for name in z.namelist():
-        if name == "data":
-            bFile = True
-            data = z.read(name)
-            try:
-                data = base64.b64decode(data)
-                for i in range(len(data)):
-                    c2.append(chr(ord(data[i]) ^ 0x38))
-
-                _log("[+] Found it : %s" % zip)
-                _log("[+] C2 : %s" % "".join(c2))
-            except:
-                _log("[*] Probably corrupted Base64 string.")
-    if bFile == False:
-        _log("[*] No such file")
-    _log("[+] Task Completed\n")
-    fh.close()
-
-
-# ---------------------------------------------------
-# _log : Prints out logs for debug purposes
-# ---------------------------------------------------
-def _log(s):
-    print(s)
-
-
-# -------------------------------------------------------------
-# check_jar_classes : Shitty Check whether file is a jar file.
-# -------------------------------------------------------------
-def check_jar_classes(jar_file):
-    bJar = False
-    try:
-        zf = zipfile.ZipFile(jar_file, "r")
-        lst = zf.infolist()
-        for zi in lst:
-            fn = zi.filename
-            if fn.endswith(".class"):
-                bJar = True
-                return bJar
-    except:
-        return False
-
-
-# -------------------------------------------------------------
-# logo : Ascii Logos like the 90s. :P
-# -------------------------------------------------------------
-def logo():
-    _log("\n")
-    _log(" ______     __  __     __     ______   ______        ______     ______     ______     __  __     ______     __   __   ")
-    _log('/\  ___\   /\ \_\ \   /\ \   /\__  _\ /\  ___\      /\  == \   /\  == \   /\  __ \   /\ \/ /    /\  ___\   /\ "-.\ \  ')
-    _log('\ \___  \  \ \  __ \  \ \ \  \/_/\ \/ \ \___  \     \ \  __<   \ \  __<   \ \ \/\ \  \ \  _"-.  \ \  __\   \ \ \-.  \ ')
-    _log(' \/\_____\  \ \_\ \_\  \ \_\    \ \_\  \/\_____\     \ \_____\  \ \_\ \_\  \ \_____\  \ \_\ \_\  \ \_____\  \ \_\\\\"\_\\')
-    _log("  \/_____/   \/_/\/_/   \/_/     \/_/   \/_____/      \/_____/   \/_/ /_/   \/_____/   \/_/\/_/   \/_____/   \/_/ \/_/")
-    _log("\n")
-    _log(" Find the C&C for this Ratty mallie!")
-    _log(" Jacob Soo")
-    _log(" Copyright (c) 2016\n")
-
-
-if __name__ == "__main__":
-    description = "C&C Extraction tool for Ratty (https://github.com/Sogomn/Ratty)."
-    parser = argparse.ArgumentParser(description=description, epilog="--file and --directory are mutually exclusive")
-    group = parser.add_mutually_exclusive_group(required=True)
-    group.add_argument("-f", "--file", action="store", nargs=1, dest="szFilename", help="filename", metavar="filename")
-    group.add_argument("-d", "--directory", action="store", nargs=1, dest="szDirectory", help="Location of directory.", metavar="directory")
-
-    args = parser.parse_args()
-    Filename = args.szFilename
-    Directory = args.szDirectory
-    try:
-        is_file = os.path.isfile(Filename[0])
-    except:
-        pass
-    try:
-        is_dir = os.path.isdir(Directory[0])
-    except:
-        pass
-    logo()
-    if Filename is not None and is_file:
-        extract_config(Filename[0])
-    else:
-        _log("You probably have supplied a invalid file.")
-    if Directory is not None and is_dir:
-        for root, directories, filenames in os.walk(Directory[0]):
-            for filename in filenames:
-                szFile = os.path.join(root, filename)
-                if check_jar_classes(szFile) == True:
-                    extract_config(szFile)
-                else:
-                    _log("This is not a valid Jar file : %s." % szFile)
diff --git a/modules/processing/parsers/CAPE/pySpyNote.py b/modules/processing/parsers/CAPE/pySpyNote.py
deleted file mode 100644
index d0cb711b115..00000000000
--- a/modules/processing/parsers/CAPE/pySpyNote.py
+++ /dev/null
@@ -1,116 +0,0 @@
-#!/usr/bin/python
-from __future__ import absolute_import
-from __future__ import print_function
-import zipfile, sys, os
-import base64, urllib.request, urllib.parse, urllib.error
-import argparse
-from sys import argv
-from androguard.core.bytecodes import apk
-from androguard.core.bytecodes import dvm
-
-# ---------------------------------------------------
-# _log : Prints out logs for debug purposes
-# ---------------------------------------------------
-def _log(s):
-    print(s)
-
-
-# ------------------------------------------------------------------
-# extract_config : This extracts the C&C information from SpyNote.
-# ------------------------------------------------------------------
-def extract_config(apkfile):
-    a = apk.APK(apkfile)
-    d = dvm.DalvikVMFormat(a.get_dex())
-    for cls in d.get_classes():
-        if "dell/scream/application/MainActivity;".lower() in cls.get_name().lower():
-            c2 = ""
-            port = ""
-            string = None
-            for method in cls.get_methods():
-                if method.name == "<init>":
-                    for inst in method.get_instructions():
-                        if inst.get_name() == "const-string":
-                            string = inst.get_output().split(",")[-1].strip(" '")
-                        if inst.get_name() == "iput-object":
-                            if "SERVER_IP" in inst.get_output():
-                                c2 = string
-                            if "PORT" in inst.get_output():
-                                port = string
-                        if c2 and port:
-                            break
-            server = ""
-            if port:
-                server = "{0}:{1}".format(c2, str(port))
-            else:
-                server = c2
-            _log("Extracting from %s" % apkfile)
-            _log("C&C: [ %s ]\n" % server)
-
-
-# -------------------------------------------------------------
-# check_apk_file : Shitty Check whether file is a apk file.
-# -------------------------------------------------------------
-def check_apk_file(apk_file):
-    bJar = False
-    try:
-        zf = zipfile.ZipFile(apk_file, "r")
-        lst = zf.infolist()
-        for zi in lst:
-            fn = zi.filename
-            if fn.lower() == "androidmanifest.xml":
-                bJar = True
-                return bJar
-    except:
-        return bJar
-
-
-# -------------------------------------------------------------
-# logo : Ascii Logos like the 90s. :P
-# -------------------------------------------------------------
-def logo():
-    print("\n")
-    print(" ______     __  __     __     ______   ______        ______     ______     ______     __  __     ______     __   __   ")
-    print('/\  ___\   /\ \_\ \   /\ \   /\__  _\ /\  ___\      /\  == \   /\  == \   /\  __ \   /\ \/ /    /\  ___\   /\ "-.\ \  ')
-    print('\ \___  \  \ \  __ \  \ \ \  \/_/\ \/ \ \___  \     \ \  __<   \ \  __<   \ \ \/\ \  \ \  _"-.  \ \  __\   \ \ \-.  \ ')
-    print(' \/\_____\  \ \_\ \_\  \ \_\    \ \_\  \/\_____\     \ \_____\  \ \_\ \_\  \ \_____\  \ \_\ \_\  \ \_____\  \ \_\\\\"\_\\')
-    print("  \/_____/   \/_/\/_/   \/_/     \/_/   \/_____/      \/_____/   \/_/ /_/   \/_____/   \/_/\/_/   \/_____/   \/_/ \/_/")
-    print("\n")
-    print(" Find the C&C for this Spynote mallie!")
-    print(" Jacob Soo")
-    print(" Copyright (c) 2016\n")
-
-
-if __name__ == "__main__":
-    description = "C&C Extraction tool for Spynote"
-    parser = argparse.ArgumentParser(description=description, epilog="--file and --directory are mutually exclusive")
-    group = parser.add_mutually_exclusive_group(required=True)
-    group.add_argument("-f", "--file", action="store", nargs=1, dest="szFilename", help="filename", metavar="filename")
-    group.add_argument("-d", "--directory", action="store", nargs=1, dest="szDirectory", help="Location of directory.", metavar="directory")
-
-    args = parser.parse_args()
-    Filename = args.szFilename
-    Directory = args.szDirectory
-    is_file = False
-    is_dir = False
-    try:
-        is_file = os.path.isfile(Filename[0])
-    except:
-        pass
-    try:
-        is_dir = os.path.isdir(Directory[0])
-    except:
-        pass
-    logo()
-    if Filename is not None and is_file:
-        if check_apk_file(Filename[0]) == True:
-            extract_config(Filename[0])
-        else:
-            print(("This is not a valid apk file : %s" % Filename[0]))
-    if Directory is not None and is_dir:
-        for root, directories, filenames in os.walk(Directory[0]):
-            for filename in filenames:
-                szFile = os.path.join(root, filename)
-                if check_apk_file(szFile) == True:
-                    extract_config(szFile)
-                else:
-                    print(("This is not a valid apk file : %s" % szFile))
diff --git a/modules/processing/parsers/CAPE/unrecom.py b/modules/processing/parsers/CAPE/unrecom.py
deleted file mode 100644
index 8e6e0b8bab5..00000000000
--- a/modules/processing/parsers/CAPE/unrecom.py
+++ /dev/null
@@ -1,80 +0,0 @@
-from __future__ import absolute_import
-import string
-from zipfile import ZipFile
-from io import StringIO
-from Crypto.Cipher import ARC4
-import xml.etree.ElementTree as ET
-
-
-def extract_embedded(zip_data):
-    raw_embedded = None
-    archive = StringIO(zip_data)
-    with ZipFile(archive) as zip:
-        for name in zip.namelist():  # get all the file names
-            if name == "load/ID":  # contains first part of key
-                partial_key = zip.read(name)
-                enckey = partial_key + "DESW7OWKEJRU4P2K"  # complete key
-            if name == "load/MANIFEST.MF":  # this is the embedded jar
-                raw_embedded = zip.read(name)
-    if raw_embedded != None:
-        # Decrypt The raw file
-        dec_embedded = decrypt_arc4(enckey, raw_embedded)
-        return dec_embedded
-    else:
-        return None
-
-
-def parse_embedded(data):
-    newzipdata = data
-    newZip = StringIO(newzipdata)  # Write new zip file to memory instead of to disk
-    with ZipFile(newZip) as zip:
-        for name in zip.namelist():
-            if name == "config.xml":  # this is the config in clear
-                config = zip.read(name)
-    return config
-
-
-def decrypt_arc4(enckey, data):
-    cipher = ARC4.new(enckey)  # set the ciper
-    return cipher.decrypt(data)  # decrpyt the data
-
-
-def parse_config(config):
-    # try:
-    xml = [x for x in config if x in string.printable]
-    root = ET.fromstring(xml)
-    raw_config = {}
-    for child in root:
-        if child.text.startswith("Unrecom"):
-            raw_config["Version"] = child.text
-        else:
-            raw_config[child.attrib["key"]] = child.text
-    new_config = {}
-    new_config["Version"] = raw_config["Version"]
-    new_config["Delay"] = raw_config["delay"]
-    new_config["Domain"] = raw_config["dns"]
-    new_config["Extension"] = raw_config["extensionname"]
-    new_config["Install"] = raw_config["install"]
-    new_config["Port1"] = raw_config["p1"]
-    new_config["Port2"] = raw_config["p2"]
-    new_config["Password"] = raw_config["password"]
-    new_config["PluginFolder"] = raw_config["pluginfoldername"]
-    new_config["Prefix"] = raw_config["prefix"]
-    return new_config
-
-
-# except:
-# return None
-
-
-def config(data):
-    embedded = extract_embedded(data)
-    if embedded is not None:
-        config = parse_embedded(embedded)
-    else:
-        return None
-    if config is not None:
-        config_dict = parse_config(config)
-        return config_dict
-    else:
-        return None
diff --git a/modules/processing/parsers/CAPE/xRAT.py b/modules/processing/parsers/CAPE/xRAT.py
deleted file mode 100644
index 9cb251fbb7c..00000000000
--- a/modules/processing/parsers/CAPE/xRAT.py
+++ /dev/null
@@ -1,121 +0,0 @@
-from __future__ import absolute_import
-from base64 import b64decode
-import hashlib
-import re
-import pefile
-from Crypto.Cipher import AES, XOR
-
-
-def string_print(line):
-    return "".join((char for char in line if 32 < ord(char) < 127))
-
-
-def parse_config(config_list, ver):
-    config_dict = {}
-    if ver == "V1":
-        config_dict["Version"] = "1.0.x"
-        config_dict["Domain"] = config_list[1]
-        config_dict["Port"] = config_list[2]
-        config_dict["Password"] = config_list[3]
-        config_dict["CampaignID"] = config_list[4]
-        config_dict["InstallName"] = config_list[5]
-        config_dict["HKCUKey"] = config_list[6]
-        config_dict["InstallDir"] = config_list[7]
-        config_dict["Flag1"] = config_list[8]
-        config_dict["Flag2"] = config_list[9]
-        config_dict["Mutex"] = config_list[10]
-    if ver == "V2":
-        config_dict["Version"] = config_list[0]
-        config_dict["Domain"] = config_list[1]
-        config_dict["Password"] = config_list[2]
-        config_dict["InstallSub"] = config_list[3]
-        config_dict["InstallName"] = config_list[4]
-        config_dict["Mutex"] = config_list[5]
-        config_dict["RegistryKey"] = config_list[6]
-    return config_dict
-
-
-def get_long_line(data):
-    try:
-        raw_config = None
-        pe = pefile.PE(data=data)
-        for entry in pe.DIRECTORY_ENTRY_RESOURCE.entries:
-            if str(entry.name) == "RT_RCDATA":
-                new_dirs = entry.directory
-                for entry in new_dirs.entries:
-                    if str(entry.name) == "0":
-                        data_rva = entry.directory.entries[0].data.struct.OffsetToData
-                        size = entry.directory.entries[0].data.struct.Size
-                        data = pe.get_memory_mapped_image()[data_rva : data_rva + size]
-                        raw_config = data
-    except:
-        raw_config = None
-    if raw_config != None:
-        return raw_config, "V1"
-    try:
-        m = re.search("\x69\x00\x6F\x00\x6E\x00\x00\x59(.*)\x6F\x43\x00\x61\x00\x6E", data)
-        raw_config = m.group(0)[4:-12]
-        return raw_config, "V2"
-    except:
-        return None, None
-
-
-def decrypt_XOR(enckey, data):
-    cipher = XOR.new(enckey)  # set the cipher
-    return cipher.decrypt(data)  # decrpyt the data
-
-
-# decrypt function
-def decrypt_aes(enckey, data):
-    iv = data[:16]
-    cipher = AES.new(enckey, AES.MODE_CBC, iv)  # set the cipher
-    return cipher.decrypt(data[16:])  # decrpyt the data
-
-
-# converts the enc key to an md5 key
-def aes_key(enc_key):
-    return hashlib.md5(enc_key).hexdigest().decode("hex")
-
-
-# This will split all the b64 encoded strings and the encryption key
-def get_parts(long_line):
-    coded_config = []
-    raw_line = long_line
-    small_lines = raw_line.split("\x00\x00")
-    for line in small_lines:
-        if len(line) % 2 == 0:
-            new_line = line[1:]
-        else:
-            new_line = line[2:]
-        coded_config.append(new_line.replace("\x00", ""))
-    return coded_config
-
-
-def config(data):
-    long_line, ver = get_long_line(data)
-    if ver == None:
-        return
-    config_list = []
-    if ver == "V1":
-        # The way the XOR Cypher was implemented the keys are off by 1.
-        key1 = "RAT11x"  # Used for First level of encryption actual key is 'xRAT11'
-        key2 = "eY11K"  # used for individual sections, actual key is 'KeY11'
-        key3 = "eY11PWD24K"  # used for password section only. Actual key is 'KeY11PWD24'
-        config = long_line.decode("hex")
-        first_decode = decrypt_XOR(key1, config)
-        sections = first_decode.split("|//\\\\|")  # Split is |//\\| the extra \\ are for escaping.
-        for i in range(len(sections)):
-            if i == 3:
-                enc_key = key3
-            else:
-                enc_key = key2
-            config_list.append(decrypt_XOR(enc_key, sections[i].decode("hex")))
-    if ver == "V2":
-        coded_lines = get_parts(long_line)
-        enc_key = aes_key(coded_lines[-1])
-        for i in range(1, (len(coded_lines) - 1)):
-            decoded_line = b64decode(coded_lines[i])
-            decrypt_line = decrypt_aes(enc_key, decoded_line)
-            config_list.append(string_print(decrypt_line))
-    config_dict = parse_config(config_list, ver)
-    return config_dict
diff --git a/modules/processing/parsers/__init__.py b/modules/processing/parsers/__init__.py
deleted file mode 100644
index f39e5e8d683..00000000000
--- a/modules/processing/parsers/__init__.py
+++ /dev/null
@@ -1 +0,0 @@
-# Init
diff --git a/modules/processing/parsers/mwcp/Azorult.py b/modules/processing/parsers/mwcp/Azorult.py
deleted file mode 100644
index 26cd3ee9a38..00000000000
--- a/modules/processing/parsers/mwcp/Azorult.py
+++ /dev/null
@@ -1,82 +0,0 @@
-# Copyright (C) 2019 Kevin O'Reilly (kevoreilly@gmail.com)
-# This program is free software: you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation, either version 3 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program.  If not, see <http://www.gnu.org/licenses/>.
-
-from mwcp.parser import Parser
-import struct
-import pefile
-import yara
-
-rule_source = """
-rule Azorult
-{
-    meta:
-        author = "kevoreilly"
-        description = "Azorult Payload"
-        cape_type = "Azorult Payload"
-    strings:
-        $ref_c2 = {6A 00 6A 00 6A 00 6A 00 68 ?? ?? ?? ?? FF 55 F0 8B D8 C7 47 10 ?? ?? ?? ?? 90 C7 45 B0 C0 C6 2D 00 6A 04 8D 45 B0 50 6A 06 53 FF 55 D4}
-   condition:
-        uint16(0) == 0x5A4D and all of them
-}
-
-"""
-
-MAX_STRING_SIZE = 32
-
-
-def yara_scan(raw_data, rule_name):
-    addresses = {}
-    yara_rules = yara.compile(source=rule_source)
-    matches = yara_rules.match(data=raw_data)
-    for match in matches:
-        if match.rule == "Azorult":
-            for item in match.strings:
-                if item[1] == rule_name:
-                    addresses[item[1]] = item[0]
-                    return addresses
-
-
-def string_from_offset(data, offset):
-    string = data[offset : offset + MAX_STRING_SIZE].split(b"\0")[0]
-    return string
-
-
-class Azorult(Parser):
-    DESCRIPTION = "Azorult configuration parser."
-    AUTHOR = "kevoreilly"
-
-    def run(self):
-        filebuf = self.file_object.file_data
-        pe = pefile.PE(data=filebuf, fast_load=False)
-        image_base = pe.OPTIONAL_HEADER.ImageBase
-
-        ref_c2 = yara_scan(filebuf, "$ref_c2")
-        if ref_c2 is None:
-            return
-
-        ref_c2_offset = int(ref_c2["$ref_c2"])
-        if ref_c2_offset is None:
-            return
-
-        c2_list_va = struct.unpack("i", filebuf[ref_c2_offset + 21 : ref_c2_offset + 25])[0]
-        c2_list_rva = c2_list_va - image_base
-
-        try:
-            c2_list_offset = pe.get_offset_from_rva(c2_list_rva)
-        except pefile.PEFormatError as err:
-            print(err)
-
-        c2_domain = string_from_offset(filebuf, c2_list_offset)
-        if c2_domain:
-            self.reporter.add_metadata("address", c2_domain)
diff --git a/modules/processing/parsers/mwcp/BitPaymer.py b/modules/processing/parsers/mwcp/BitPaymer.py
deleted file mode 100644
index 5cac9f59d63..00000000000
--- a/modules/processing/parsers/mwcp/BitPaymer.py
+++ /dev/null
@@ -1,94 +0,0 @@
-# Copyright (C) 2019 Kevin O'Reilly (kevoreilly@gmail.com)
-# This program is free software: you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation, either version 3 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program.  If not, see <http://www.gnu.org/licenses/>.
-
-from mwcp.parser import Parser
-import string
-import pefile
-import yara
-from Crypto.Cipher import ARC4
-
-rule_source = """
-rule BitPaymer
-{
-    meta:
-        author = "kevoreilly"
-        description = "BitPaymer Payload"
-        cape_type = "BitPaymer Payload"
-
-    strings:
-        $decrypt32 = {6A 40 58 3B C8 0F 4D C1 39 46 04 7D 50 53 57 8B F8 81 E7 3F 00 00 80 79 05 4F 83 CF C0 47 F7 DF 99 1B FF 83 E2 3F 03 C2 F7 DF C1 F8 06 03 F8 C1 E7 06 57}
-        $antidefender = "TouchMeNot" wide
-    condition:
-        uint16(0) == 0x5A4D and all of them
-}
-
-"""
-
-LEN_BLOB_KEY = 40
-
-
-def convert_char(c):
-    if c in (string.letters + string.digits + string.punctuation + " \t\r\n"):
-        # ToDo gonna break as its int
-        return c
-    else:
-        return "\\x%02x" % ord(c)
-
-
-def decrypt_rc4(key, data):
-    cipher = ARC4.new(key)
-    return cipher.decrypt(data)
-
-
-def yara_scan(raw_data, rule_name):
-    addresses = {}
-    yara_rules = yara.compile(source=rule_source)
-    matches = yara_rules.match(data=raw_data)
-    for match in matches:
-        if match.rule == "BitPaymer":
-            for item in match.strings:
-                if item[1] == rule_name:
-                    addresses[item[1]] = item[0]
-                    return addresses
-
-
-def extract_rdata(pe):
-    for section in pe.sections:
-        if ".rdata" in section.Name:
-            return section.get_data(section.VirtualAddress, section.SizeOfRawData)
-    return None
-
-
-class BitPaymer(Parser):
-
-    DESCRIPTION = "BitPaymer configuration parser."
-    AUTHOR = "kevoreilly"
-
-    def run(self):
-        pe = pefile.PE(data=self.file_object.file_data, fast_load=False)
-
-        blobs = filter(None, [x.strip(b"\x00\x00\x00\x00") for x in extract_rdata(pe).split(b"\x00\x00\x00\x00")])
-        for blob in blobs:
-            if len(blob) < LEN_BLOB_KEY:
-                continue
-            raw = decrypt_rc4(blob[:LEN_BLOB_KEY][::-1], blob[LEN_BLOB_KEY:])
-            if not raw:
-                continue
-            for item in raw.split(b"\x00"):
-                data = "".join(convert_char(c) for c in item)
-                if len(data) == 760:
-                    self.reporter.add_metadata("other", {"RSA public key": data})
-                elif len(data) > 1 and "\\x" not in data:
-                    self.reporter.add_metadata("other", {"strings": data})
-        return
diff --git a/modules/processing/parsers/mwcp/BuerLoader.py b/modules/processing/parsers/mwcp/BuerLoader.py
deleted file mode 100644
index 64796f2c30d..00000000000
--- a/modules/processing/parsers/mwcp/BuerLoader.py
+++ /dev/null
@@ -1,42 +0,0 @@
-# Copyright (C) 2021 Kevin O'Reilly kevoreilly@gmail.com
-# This program is free software: you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation, either version 3 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program.  If not, see <http://www.gnu.org/licenses/>.
-
-from mwcp.parser import Parser
-import pefile
-
-def decrypt_string(string):
-	enc=[]
-	for i in range(0, len(string)):
-		enc.append(chr(ord(string[i]) - 6))
-	return "".join(enc)
-
-class BuerLoader(Parser):
-    DESCRIPTION = "BuerLoader configuration parser."
-    AUTHOR = "kevoreilly"
-    def run(self):
-        filebuf = self.file_object.file_data
-        pe = pefile.PE(data=filebuf)
-        data_sections = [s for s in pe.sections if s.Name.find(b'.data') != -1]
-        if not data_sections:
-            return None
-        data = data_sections[0].get_data()
-        count = 0
-        for item in data.split(b'\x00\x00'):
-            try:
-                dec = decrypt_string(item.lstrip(b'\x00').rstrip(b'\x00').decode('utf8'))
-            except:
-                pass
-            if 'dll' not in dec and ' ' not in dec and ';' not in dec and '.' in dec:
-                self.reporter.add_metadata("address", dec)
-        return
diff --git a/modules/processing/parsers/mwcp/ChChes.py b/modules/processing/parsers/mwcp/ChChes.py
deleted file mode 100644
index b86ebc32270..00000000000
--- a/modules/processing/parsers/mwcp/ChChes.py
+++ /dev/null
@@ -1,90 +0,0 @@
-# Copyright (C) 2015 Kevin O'Reilly kevin.oreilly@contextis.co.uk
-# This program is free software: you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation, either version 3 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program.  If not, see <http://www.gnu.org/licenses/>.
-
-from mwcp.parser import Parser
-import yara
-
-rule_source = """
-rule ChChes
-{
-    meta:
-        author = "kev"
-        description = "ChChes Payload"
-        cape_type = "ChChes Payload"
-    strings:
-        $payload1 = {55 8B EC 53 E8 EB FC FF FF E8 DB FF FF FF 05 10 FE 2A 00 33 DB 39 58 44 75 58 56 57 50 E8 57 00 00 00 59 8B F0 E8 AB FF FF FF B9 01 1F 2A 00 BF D0 1C 2A 00 2B CF 03 C1 39 5E 30 76 0F}
-        $payload2 = {55 8B EC 53 E8 8F FB FF FF E8 DB FF FF FF 05 00 07 FF 00 33 DB 39 58 44 75 58 56 57 50 E8 57 00 00 00 59 8B F0 E8 AB FF FF FF B9 5D 20 FE 00 BF D0 1C FE 00 2B CF 03 C1 39 5E 30 76 0F }
-        $payload3 = {55 8B EC 53 E8 E6 FC FF FF E8 DA FF FF FF 05 80 FC FC 00 33 DB 39 58 44 75 58 56 57 50 E8 57 00 00 00 59 8B F0 E8 AA FF FF FF B9 05 1F FC 00 BF D0 1C FC 00 2B CF 03 C1 39 5E 30 76 0F}
-        $payload4 = {55 8B EC E8 ?? ?? FF FF E8 D? FF FF FF 05 ?? ?? ?? 00 83 78 44 00 75 40 56 57 50 E8 3E 00 00 00 59 8B F0 6A 00 FF 76 30 E8 A8 FF FF FF B9 ?? ?? ?? 00 BF 00 1A E1 00 2B CF 03 C1 50 FF 56 70}
-    condition:
-        $payload1 or $payload2 or $payload3 or $payload4
-}
-
-"""
-
-MAX_STRING_SIZE = 128
-
-
-def yara_scan(raw_data, rule_name):
-    addresses = {}
-    yara_rules = yara.compile(source=rule_source)
-    matches = yara_rules.match(data=raw_data)
-    for match in matches:
-        if match.rule == "ChChes":
-            for item in match.strings:
-                if item[1] == rule_name:
-                    addresses[item[1]] = item[0]
-    return addresses
-
-
-def string_from_offset(data, offset):
-    string = data[offset : offset + MAX_STRING_SIZE].split(b"\0")[0]
-    return string
-
-
-class ChChes(Parser):
-
-    DESCRIPTION = "ChChes configuration parser."
-    AUTHOR = "kevoreilly"
-
-    def run(self):
-        filebuf = self.file_object.file_data
-
-        type1 = yara_scan(filebuf, "$payload1")
-        type2 = yara_scan(filebuf, "$payload2")
-        type3 = yara_scan(filebuf, "$payload3")
-        type4 = yara_scan(filebuf, "$payload4")
-
-        if type1:
-            c2_offset = 0xE455
-
-            c2_url = string_from_offset(filebuf, c2_offset)
-            if c2_url:
-                self.reporter.add_metadata("c2_url", c2_url)
-
-        if type2:
-            c2_offset = 0xED55
-
-            c2_url = string_from_offset(filebuf, c2_offset)
-            if c2_url:
-                self.reporter.add_metadata("c2_url", c2_url)
-
-        if type3:
-            c2_offset = 0xE2B9
-
-            c2_url = string_from_offset(filebuf, c2_offset)
-            if c2_url:
-                self.reporter.add_metadata("c2_url", c2_url)
-
-        # no c2 for type4
diff --git a/modules/processing/parsers/mwcp/DoppelPaymer.py b/modules/processing/parsers/mwcp/DoppelPaymer.py
deleted file mode 100644
index 7669607b73c..00000000000
--- a/modules/processing/parsers/mwcp/DoppelPaymer.py
+++ /dev/null
@@ -1,94 +0,0 @@
-# Copyright (C) 2019 Kevin O'Reilly (kevoreilly@gmail.com)
-# This program is free software: you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation, either version 3 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program.  If not, see <http://www.gnu.org/licenses/>.
-
-from mwcp.parser import Parser
-import string
-import pefile
-import yara
-from Crypto.Cipher import ARC4
-
-rule_source = """
-rule DoppelPaymer
-{
-    meta:
-        author = "kevoreilly"
-        description = "DoppelPaymer Payload"
-        cape_type = "DoppelPaymer Payload"
-
-    strings:
-        $getproc32 = {81 FB ?? ?? ?? ?? 74 2D 8B CB E8 ?? ?? ?? ?? 85 C0 74 0C 8B C8 8B D7 E8 ?? ?? ?? ?? 5B 5F C3}
-        $cmd_string = "Setup run\n" wide
-    condition:
-        uint16(0) == 0x5A4D and all of them
-}
-
-"""
-
-LEN_BLOB_KEY = 40
-
-
-def convert_char(c):
-    if c in (string.letters + string.digits + string.punctuation + " \t\r\n"):
-        return c
-    else:
-        return "\\x%02x" % ord(c)
-
-
-def decrypt_rc4(key, data):
-    cipher = ARC4.new(key)
-    return cipher.decrypt(data)
-
-
-def yara_scan(raw_data, rule_name):
-    addresses = {}
-    yara_rules = yara.compile(source=rule_source)
-    matches = yara_rules.match(data=raw_data)
-    for match in matches:
-        if match.rule == "DoppelPaymer":
-            for item in match.strings:
-                if item[1] == rule_name:
-                    addresses[item[1]] = item[0]
-                    return addresses
-
-
-def extract_rdata(pe):
-    for section in pe.sections:
-        if ".rdata" in section.Name:
-            return section.get_data(section.VirtualAddress, section.SizeOfRawData)
-    return None
-
-
-class DoppelPaymer(Parser):
-
-    DESCRIPTION = "DoppelPaymer configuration parser."
-    AUTHOR = "kevoreilly"
-
-    def run(self):
-        filebuf = self.file_object.file_data
-        pe = pefile.PE(data=filebuf, fast_load=False)
-
-        blobs = filter(None, [x.strip(b"\x00\x00\x00\x00") for x in extract_rdata(pe).split(b"\x00\x00\x00\x00")])
-        for blob in blobs:
-            if len(blob) < LEN_BLOB_KEY:
-                continue
-            raw = decrypt_rc4(blob[:LEN_BLOB_KEY][::-1], blob[LEN_BLOB_KEY:])
-            if not raw:
-                continue
-            for item in raw.split(b"\x00"):
-                data = "".join(convert_char(c) for c in item)
-                if len(data) == 406:
-                    self.reporter.add_metadata("other", {"RSA public key": data})
-                elif len(data) > 1 and "\\x" not in data:
-                    self.reporter.add_metadata("other", {"strings": data})
-        return
diff --git a/modules/processing/parsers/mwcp/DridexLoader.py b/modules/processing/parsers/mwcp/DridexLoader.py
deleted file mode 100644
index 312acb9eca1..00000000000
--- a/modules/processing/parsers/mwcp/DridexLoader.py
+++ /dev/null
@@ -1,153 +0,0 @@
-# Copyright (C) 2018 Kevin O'Reilly (kevin.oreilly@contextis.co.uk)
-# This program is free software: you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation, either version 3 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program.  If not, see <http://www.gnu.org/licenses/>.
-
-import os
-import struct
-import string
-import socket
-import pefile
-import yara
-from Crypto.Cipher import ARC4
-from mwcp.parser import Parser
-
-rule_source = '''
-rule DridexLoader
-{
-    meta:
-        author = "kevoreilly"
-        description = "Dridex v4 dropper C2 parsing function"
-        cape_type = "DridexLoader Payload"
-
-    strings:
-        $c2parse_1 = {57 0F 95 C0 89 35 ?? ?? ?? ?? 88 46 04 33 FF 80 3D ?? ?? ?? ?? 00 76 54 8B 04 FD ?? ?? ?? ?? 8D 4D EC 83 65 F4 00 89 45 EC 66 8B 04 FD ?? ?? ?? ?? 66 89 45 F0 8D 45 F8 50}
-        $c2parse_2 = {89 45 00 0F B7 53 04 89 10 0F B6 4B 0C 83 F9 0A 7F 03 8A 53 0C 0F B6 53 0C 85 D2 7E B7 8D 74 24 0C C7 44 24 08 00 00 00 00 8D 04 7F 8D 8C 00}
-        $c2parse_3 = {89 08 66 39 1D ?? ?? ?? ?? A1 ?? ?? ?? ?? 0F 95 C1 88 48 04 80 3D ?? ?? ?? ?? 0A 77 05 A0 ?? ?? ?? ?? 80 3D ?? ?? ?? ?? 00 56 8B F3 76 4E 66 8B 04 F5}
-        $c2parse_4 = {0F B7 C0 89 01 A0 ?? ?? ?? ?? 3C 0A 77 ?? A0 ?? ?? ?? ?? A0 ?? ?? ?? ?? 57 33 FF 84 C0 74 ?? 56 BE}
-        $c2parse_5 = {0F B7 05 [4] 89 02 89 15 [4] 0F B6 15 [4] 83 FA 0A 7F 07 0F B6 05 [4] 0F B6 05 [4] 85 C0}
-        $c2parse_6 = {0F B7 53 ?? 89 10 0F B6 4B ?? 83 F9 0A 7F 03 8A 53 ?? 0F B6 53 ?? 85 D2 7E B9}
-        $botnet_id = {C7 00 00 00 00 00 8D 00 6A 04 50 8D 4C ?? ?? E8 ?? ?? ?? ?? 0F B7 05}
-        $rc4_key_1 = {56 52 BA [4] 8B F1 E8 [4] 8B C? 5? C3}
-        $rc4_key_2 = {5? 8B ?9 52 [5-6] E8 [4] 8B C? 5? C3}
-    condition:
-        uint16(0) == 0x5A4D and any of them
-}
-
-'''
-
-MAX_IP_STRING_SIZE = 16       # aaa.bbb.ccc.ddd\0
-LEN_BLOB_KEY = 40
-LEN_BOT_KEY = 107
-
-yara_rules = yara.compile(source=rule_source)
-
-def decrypt_rc4(key, data):
-    cipher = ARC4.new(key)
-    return cipher.decrypt(data)
-
-def extract_rdata(pe):
-    for section in pe.sections:
-        if b'.rdata' in section.Name:
-            return section.get_data(section.VirtualAddress, section.SizeOfRawData)
-    return None
-
-class DridexLoader(Parser):
-
-    DESCRIPTION = "DridexDropper configuration parser."
-    AUTHOR = "kevoreilly"
-
-    def run(self):
-        filebuf = self.file_object.file_data
-        pe = pefile.PE(data=filebuf, fast_load=False)
-        image_base = pe.OPTIONAL_HEADER.ImageBase
-        line, c2va_offset, delta = 0, 0, 0
-        botnet_code, botnet_rva, rc4_decode = 0, 0, 0
-        num_ips_rva = 0
-        num_ips = 4
-
-        matches = yara_rules.match(data=filebuf)
-        if not matches:
-            return
-
-        for match in matches:
-            if match.rule != "DridexLoader":
-                continue
-            for item in match.strings:
-                if '$c2parse' in item[1]:
-                    c2va_offset = int(item[0])
-                    line = item[1]
-                elif '$botnet_id' in item[1]:
-                    botnet_code = int(item[0])
-                elif '$rc4_key' in item[1] and not rc4_decode:
-                    rc4_decode = int(item[0])
-
-        if line == "$c2parse_6":
-            c2_rva = struct.unpack("i", filebuf[c2va_offset + 44 : c2va_offset + 48])[0] - image_base
-            botnet_rva = struct.unpack("i", filebuf[c2va_offset - 7 : c2va_offset - 3])[0] - image_base
-        elif line == "$c2parse_5":
-            c2_rva = struct.unpack("i", filebuf[c2va_offset + 75 : c2va_offset + 79])[0] - image_base
-            botnet_rva = struct.unpack("i", filebuf[c2va_offset + 3 : c2va_offset + 7])[0] - image_base
-            num_ips_rva = struct.unpack("i", filebuf[c2va_offset + 18 : c2va_offset + 22])[0] - image_base
-        elif line == "$c2parse_4":
-            c2_rva = struct.unpack("i", filebuf[c2va_offset + 6 : c2va_offset + 10])[0] - image_base + 1
-        elif line == "$c2parse_3":
-            c2_rva = struct.unpack("i", filebuf[c2va_offset + 60 : c2va_offset + 64])[0] - image_base
-            delta = 2
-        elif line == "$c2parse_2":
-            c2_rva = struct.unpack("i", filebuf[c2va_offset + 47 : c2va_offset + 51])[0] - image_base
-        elif line == "$c2parse_1":
-            c2_rva = struct.unpack("i", filebuf[c2va_offset + 27 : c2va_offset + 31])[0] - image_base
-            delta = 2
-        else:
-            return
-
-        c2_offset = pe.get_offset_from_rva(c2_rva)
-
-        if num_ips_rva:
-            num_ips_offset = pe.get_offset_from_rva(num_ips_rva)
-            num_ips = struct.unpack("B", filebuf[num_ips_offset : num_ips_offset + 1])[0]
-
-        for i in range(0, num_ips):
-            ip = struct.unpack(">I", filebuf[c2_offset : c2_offset + 4])[0]
-            c2_address = socket.inet_ntoa(struct.pack("!L", ip))
-            port = str(struct.unpack("H", filebuf[c2_offset + 4 : c2_offset + 6])[0])
-
-            if c2_address and port:
-                self.reporter.add_metadata("address", c2_address + ":" + port)
-
-            c2_offset += 6 + delta
-
-        if rc4_decode:
-            zb = struct.unpack("B", filebuf[rc4_decode+8:rc4_decode+9])[0]
-            if not zb:
-                rc4_rva = struct.unpack('i', filebuf[rc4_decode+5:rc4_decode+9])[0] - image_base
-            else:
-                rc4_rva = struct.unpack('i', filebuf[rc4_decode+3:rc4_decode+7])[0] - image_base
-            if rc4_rva:
-                rc4_offset = pe.get_offset_from_rva(rc4_rva)
-                if not zb:
-                    raw = decrypt_rc4(filebuf[rc4_offset:rc4_offset+LEN_BLOB_KEY][::-1], filebuf[rc4_offset+LEN_BLOB_KEY:rc4_offset+LEN_BOT_KEY])
-                else:
-                    raw = decrypt_rc4(filebuf[rc4_offset:rc4_offset+LEN_BLOB_KEY], filebuf[rc4_offset+LEN_BLOB_KEY:rc4_offset+LEN_BOT_KEY])
-                for item in raw.split(b"\x00"):
-                    if len(item) == LEN_BLOB_KEY-1:
-                        self.reporter.add_metadata('other', {'RC4 key': item.split(b';')[0]})
-
-        if botnet_code:
-            botnet_rva = struct.unpack('i', filebuf[botnet_code+23:botnet_code+27])[0] - image_base
-        if botnet_rva:
-            botnet_offset = pe.get_offset_from_rva(botnet_rva)
-            botnet_id = struct.unpack('H', filebuf[botnet_offset:botnet_offset+2])[0]
-            self.reporter.add_metadata('other', {'Botnet ID': str(botnet_id)})
-
-        return
diff --git a/modules/processing/parsers/mwcp/Emotet.py b/modules/processing/parsers/mwcp/Emotet.py
deleted file mode 100644
index f5467bc8112..00000000000
--- a/modules/processing/parsers/mwcp/Emotet.py
+++ /dev/null
@@ -1,401 +0,0 @@
-# Copyright (C) 2017-2019 Kevin O'Reilly (kevin.oreilly@contextis.co.uk)
-# This program is free software: you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation, either version 3 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program.  If not, see <http://www.gnu.org/licenses/>.
-
-from mwcp.parser import Parser
-import struct
-import socket
-import pefile
-import yara
-import re
-from Crypto.Util import asn1
-from Crypto.PublicKey import RSA
-from itertools import cycle
-
-rule_source = """
-rule Emotet
-{
-    meta:
-        author = "kevoreilly"
-        description = "Emotet Payload"
-        cape_type = "Emotet Payload"
-    strings:
-        $snippet5 = {8B E5 5D C3 B8 [4] A3 [4] A3 [4] 33 C0 21 05 [4] A3 [4] 39 05 [4] 74 18 40 A3 [4] 83 3C C5 [4] 00 75 F0 51 E8 [4] 59 C3}
-        $snippet6 = {33 C0 21 05 [4] A3 [4] 39 05 [4] 74 18 40 A3 [4] 83 3C C5 [4] 00 75 F0 51 E8 [4] 59 C3}
-        $snippet7 = {8B 48 ?? C7 [5-6] C7 40 [4] ?? C7 [2] 00 00 00 [0-1] 83 3C CD [4] 00 74 0E 41 89 48 ?? 83 3C CD [4] 00 75 F2}
-        $snippet8 = {85 C0 74 3? B9 [2] 40 00 33 D2 89 ?8 [0-1] 89 [1-2] 8B [1-2] 89 [1-2] EB 0? 41 89 [1-2] 39 14 CD [2] 40 00 75 F? 8B CE E8 [4] 85 C0 74 05 33 C0 40 5E C3}
-        $snippet9 = {85 C0 74 4? 8B ?8 [0-1] C7 40 [5] C7 [5-6] C7 40 ?? 00 00 00 00 83 3C CD [4] 00 74 0? 41 89 [2-3] 3C CD [4] 00 75 F? 8B CF E8 [4] 85 C0 74 07 B8 01 00 00 00 5F C3}
-        $snippetA = {85 C0 74 5? 8B ?8 04 89 78 28 89 38 89 70 2C EB 04 41 89 48 04 39 34 CD [4] 75 F3 FF 75 DC FF 75 F0 8B 55 F8 FF 75 10 8B 4D EC E8 [4] 83 C4 0C 85 C0 74 05}
-        $snippetB = {EB 04 4? 89 [2] 39 [6] 75 F3}
-        $snippetC = {EB 03 4? 89 1? 39 [6] 75 F4}
-        $comboA1 = {83 EC 28 56 FF 75 ?? BE}
-        $comboA2 = {83 EC 38 56 57 BE}
-        $comboA3 = {EB 04 40 89 4? ?? 83 3C C? 00 75 F6}
-        $ref_rsa = {6A 00 6A 01 FF [4-9] C0 [5-11] E8 ?? ?? FF FF 8D 4? [1-2] B9 ?? ?? ?? 00 8D 5? [4-6] E8}
-    condition:
-        uint16(0) == 0x5A4D and any of ($snippet*) or 2 of ($comboA*) or $ref_rsa
-}
-
-"""
-
-MAX_IP_STRING_SIZE = 16  # aaa.bbb.ccc.ddd\0
-
-def yara_scan(raw_data, rule_name):
-    addresses = {}
-    yara_rules = yara.compile(source=rule_source)
-    matches = yara_rules.match(data=raw_data)
-    for match in matches:
-        if match.rule == "Emotet":
-            for item in match.strings:
-                if item[1] == rule_name:
-                    addresses[item[1]] = item[0]
-                    return addresses
-
-def xor_data(data, key):
-    key = [q for q in key]
-    data = [q for q in data]
-    return bytes([c ^ k for c, k in zip(data, cycle(key))])
-
-def emotet_decode(data, size, xor_key):
-    offset = 8
-    res = b''
-    for count in range(int(size/4)):
-        off_from = offset+count*4
-        off_to = off_from+4
-        encoded_dw = int.from_bytes(data[off_from:off_to], byteorder='little')
-        decoded = xor_key ^ encoded_dw
-        res = res + decoded.to_bytes(4, byteorder='little')
-    return res
-
-# Thanks to Jason Reaves (@sysopfb), @pollo290987, phate1.
-def extract_emotet_rsakey(pe):
-    for section in pe.sections:
-        if section.Name.replace(b'\x00',b'') == b'.data':
-            data_section = section.get_data()
-            data_size = len(data_section)
-    res_list = []
-    if data_size:
-        delta = 0
-        while delta < data_size:
-            xor_key = int.from_bytes(data_section[delta:delta+4], byteorder='little')
-            encoded_size = int.from_bytes(data_section[delta+4:delta+8], byteorder='little')
-            decoded_size = ((xor_key ^ encoded_size)&0xfffffffc)+4
-            if decoded_size == 0x6c:
-                res_list.append(emotet_decode(data_section[delta:], decoded_size, xor_key))
-                break
-            delta += 4
-        if res_list:
-            res_list = list(set(res_list))
-            pub_key = res_list[0][0:106]
-            seq = asn1.DerSequence()
-            seq.decode(pub_key)
-            return RSA.construct((seq[0], seq[1]))
-    for section in pe.sections:
-        if section.Name.replace(b'\x00',b'') == b'.text':
-            code_section = section.get_data()
-            code_size = len(code_section)
-    if code_size:
-        delta = 0
-        while delta < code_size:
-            xor_key = int.from_bytes(code_section[delta:delta+4], byteorder='little')
-            encoded_size = int.from_bytes(code_section[delta+4:delta+8], byteorder='little')
-            decoded_size = ((xor_key ^ encoded_size)&0xfffffffc)+4
-            if decoded_size == 0x6c:
-                res_list.append(emotet_decode(code_section[delta:], decoded_size, xor_key))
-                break
-            delta += 4
-        if res_list:
-            res_list = list(set(res_list))
-            pub_key = res_list[0][0:106]
-            seq = asn1.DerSequence()
-            seq.decode(pub_key)
-            return RSA.construct((seq[0], seq[1]))
-
-class Emotet(Parser):
-    # def __init__(self, reporter=None):
-    #    Parser.__init__(self, description='Emotet configuration parser.', author='kevoreilly', reporter=reporter)
-
-    DESCRIPTION = "Emotet configuration parser."
-    AUTHOR = "kevoreilly"
-
-    def run(self):
-        filebuf = self.file_object.file_data
-        pe = pefile.PE(data=filebuf, fast_load=False)
-        image_base = pe.OPTIONAL_HEADER.ImageBase
-        c2found = False
-
-        c2list = yara_scan(filebuf, "$c2list")
-        if c2list:
-            ips_offset = int(c2list["$c2list"])
-
-            ip = struct.unpack("I", filebuf[ips_offset : ips_offset + 4])[0]
-
-            while ip:
-                c2_address = socket.inet_ntoa(struct.pack("!L", ip))
-                port = str(struct.unpack("h", filebuf[ips_offset + 4 : ips_offset + 6])[0])
-
-                if c2_address and port:
-                    self.reporter.add_metadata("address", c2_address + ":" + port)
-                    c2found = True
-
-                ips_offset += 8
-                ip = struct.unpack("I", filebuf[ips_offset : ips_offset + 4])[0]
-        else:
-            refc2list = yara_scan(filebuf, "$snippet3")
-        if refc2list:
-            c2list_va_offset = int(refc2list["$snippet3"])
-            c2_list_va = struct.unpack("I", filebuf[c2list_va_offset + 2 : c2list_va_offset + 6])[0]
-            if c2_list_va - image_base > 0x20000:
-                c2_list_va = c2_list_va & 0xFFFF
-            else:
-                c2_list_rva = c2_list_va - image_base
-            try:
-                c2_list_offset = pe.get_offset_from_rva(c2_list_rva)
-            except pefile.PEFormatError as err:
-                pass
-
-            while 1:
-                try:
-                    ip = struct.unpack("<I", filebuf[c2_list_offset : c2_list_offset + 4])[0]
-                except:
-                    return
-                if ip == 0:
-                    return
-                c2_address = socket.inet_ntoa(struct.pack("!L", ip))
-                port = str(struct.unpack("H", filebuf[c2_list_offset + 4 : c2_list_offset + 6])[0])
-
-                if c2_address and port:
-                    self.reporter.add_metadata("address", c2_address + ":" + port)
-                    c2found = True
-                else:
-                    return
-                c2_list_offset += 8
-        else:
-            refc2list = yara_scan(filebuf, "$snippet4")
-            if refc2list:
-                c2list_va_offset = int(refc2list["$snippet4"])
-                c2_list_va = struct.unpack("I", filebuf[c2list_va_offset + 8 : c2list_va_offset + 12])[0]
-                if c2_list_va - image_base > 0x20000:
-                    c2_list_rva = c2_list_va & 0xFFFF
-                else:
-                    c2_list_rva = c2_list_va - image_base
-                try:
-                    c2_list_offset = pe.get_offset_from_rva(c2_list_rva)
-                except pefile.PEFormatError as err:
-                    pass
-
-                while 1:
-                    try:
-                        ip = struct.unpack("<I", filebuf[c2_list_offset : c2_list_offset + 4])[0]
-                    except:
-                        return
-                    if ip == 0:
-                        return
-                    c2_address = socket.inet_ntoa(struct.pack("!L", ip))
-                    port = str(struct.unpack("H", filebuf[c2_list_offset + 4 : c2_list_offset + 6])[0])
-
-                    if c2_address and port:
-                        self.reporter.add_metadata("address", c2_address + ":" + port)
-                        c2found = True
-                    else:
-                        return
-                    c2_list_offset += 8
-            else:
-                snippet = "$snippet5"
-                delta = 5
-                refc2list = yara_scan(filebuf, snippet)
-                if not refc2list:
-                    snippet = "$snippet8"
-                    refc2list = yara_scan(filebuf, snippet)
-                if not refc2list:
-                    snippet = "$snippet9"
-                    delta = 9
-                    refc2list = yara_scan(filebuf, snippet)
-                    if refc2list:
-                        c2list_va_offset = int(refc2list[snippet])
-                        tb = struct.unpack("b", filebuf[c2list_va_offset+5:c2list_va_offset+6])[0]
-                        if tb == 0x48:
-                            delta += 1
-                if not refc2list:
-                    snippet = "$snippetB"
-                    delta = 9
-                    refc2list = yara_scan(filebuf, snippet)
-                if not refc2list:
-                    snippet = "$snippetC"
-                    delta = 8
-                    refc2list = yara_scan(filebuf, snippet)
-                if not refc2list:
-                    snippet = "$comboA1"
-                    refc2list = yara_scan(filebuf, snippet)
-                if not refc2list:
-                    snippet = "$comboA2"
-                    delta = 6
-                    refc2list = yara_scan(filebuf, snippet)
-                if refc2list:
-                    c2list_va_offset = int(refc2list[snippet])
-                    c2_list_va = struct.unpack("I", filebuf[c2list_va_offset + delta : c2list_va_offset + delta + 4])[0]
-                    if c2_list_va - image_base > 0x40000:
-                        c2_list_rva = c2_list_va & 0xFFFF
-                    else:
-                        c2_list_rva = c2_list_va - image_base
-                    try:
-                        c2_list_offset = pe.get_offset_from_rva(c2_list_rva)
-                    except pefile.PEFormatError as err:
-                        return
-                    while 1:
-                        try:
-                            ip = struct.unpack("<I", filebuf[c2_list_offset : c2_list_offset + 4])[0]
-                        except:
-                            break
-                        if ip == 0:
-                            break
-                        c2_address = socket.inet_ntoa(struct.pack("!L", ip))
-                        port = str(struct.unpack("H", filebuf[c2_list_offset + 4 : c2_list_offset + 6])[0])
-
-                        if c2_address and port:
-                            self.reporter.add_metadata("address", c2_address + ":" + port)
-                            c2found = True
-                        else:
-                            break
-                        c2_list_offset += 8
-                else:
-                    refc2list = yara_scan(filebuf, "$snippet6")
-                    if refc2list:
-                        c2list_va_offset = int(refc2list["$snippet6"])
-                        c2_list_va = struct.unpack("I", filebuf[c2list_va_offset + 15 : c2list_va_offset + 19])[0]
-                        if c2_list_va - image_base > 0x20000:
-                            c2_list_rva = c2_list_va & 0xFFFF
-                        else:
-                            c2_list_rva = c2_list_va - image_base
-                        try:
-                            c2_list_offset = pe.get_offset_from_rva(c2_list_rva)
-                        except pefile.PEFormatError as err:
-                            pass
-                        while 1:
-                            try:
-                                ip = struct.unpack("<I", filebuf[c2_list_offset : c2_list_offset + 4])[0]
-                            except:
-                                break
-                            if ip == 0:
-                                break
-                            c2_address = socket.inet_ntoa(struct.pack("!L", ip))
-                            port = str(struct.unpack("H", filebuf[c2_list_offset + 4 : c2_list_offset + 6])[0])
-
-                            if c2_address and port:
-                                self.reporter.add_metadata("address", c2_address + ":" + port)
-                                c2found = True
-                            else:
-                                break
-                            c2_list_offset += 8
-                    else:
-                        refc2list = yara_scan(filebuf, "$snippet7")
-                        if refc2list:
-                            c2list_va_offset = int(refc2list["$snippet7"])
-                            delta = 26
-                            hb = struct.unpack("b", filebuf[c2list_va_offset + 29 : c2list_va_offset + 30])[0]
-                            if hb:
-                                delta += 1
-                            c2_list_va = struct.unpack("I", filebuf[c2list_va_offset + delta : c2list_va_offset + delta + 4])[0]
-                            if c2_list_va - image_base > 0x20000:
-                                c2_list_rva = c2_list_va & 0xFFFF
-                            else:
-                                c2_list_rva = c2_list_va - image_base
-                            try:
-                                c2_list_offset = pe.get_offset_from_rva(c2_list_rva)
-                            except pefile.PEFormatError as err:
-                                pass
-                            while 1:
-                                try:
-                                    ip = struct.unpack("<I", filebuf[c2_list_offset : c2_list_offset + 4])[0]
-                                except:
-                                    break
-                                if ip == 0:
-                                    break
-                                c2_address = socket.inet_ntoa(struct.pack("!L", ip))
-                                port = str(struct.unpack("H", filebuf[c2_list_offset + 4 : c2_list_offset + 6])[0])
-
-                                if c2_address and port:
-                                    self.reporter.add_metadata("address", c2_address + ":" + port)
-                                    c2found = True
-                                else:
-                                    break
-                                c2_list_offset += 8
-                        else:
-                            refc2list = yara_scan(filebuf, "$snippetA")
-                            if refc2list:
-                                c2list_va_offset = int(refc2list["$snippetA"])
-                                c2_list_va = struct.unpack("I", filebuf[c2list_va_offset + 24 : c2list_va_offset + 28])[0]
-                                if c2_list_va - image_base > 0x20000:
-                                    c2_list_rva = c2_list_va & 0xFFFF
-                                else:
-                                    c2_list_rva = c2_list_va - image_base
-                                try:
-                                    c2_list_offset = pe.get_offset_from_rva(c2_list_rva)
-                                except pefile.PEFormatError as err:
-                                    pass
-
-                                while 1:
-                                    try:
-                                        ip = struct.unpack("<I", filebuf[c2_list_offset : c2_list_offset + 4])[0]
-                                    except:
-                                        break
-                                    if ip == 0:
-                                        break
-                                    c2_address = socket.inet_ntoa(struct.pack("!L", ip))
-                                    port = str(struct.unpack("H", filebuf[c2_list_offset + 4 : c2_list_offset + 6])[0])
-
-                                    if c2_address and port:
-                                        self.reporter.add_metadata("address", c2_address + ":" + port)
-                                        c2found = True
-                                    else:
-                                        break
-                                    c2_list_offset += 8
-
-        if not c2found:
-            return
-        pem_key = extract_emotet_rsakey(pe)
-        if pem_key:
-            self.reporter.add_metadata("other", {"RSA public key": pem_key.exportKey().decode('utf8')})
-        else:
-            ref_rsa = yara_scan(filebuf, "$ref_rsa")
-            if ref_rsa:
-                ref_rsa_offset = int(ref_rsa["$ref_rsa"])
-                ref_rsa_va = 0
-                zb = struct.unpack("b", filebuf[ref_rsa_offset + 31 : ref_rsa_offset + 32])[0]
-                if not zb:
-                    ref_rsa_va = struct.unpack("I", filebuf[ref_rsa_offset + 28 : ref_rsa_offset + 32])[0]
-                else:
-                    zb = struct.unpack("b", filebuf[ref_rsa_offset + 29 : ref_rsa_offset + 30])[0]
-                    if not zb:
-                        ref_rsa_va = struct.unpack("I", filebuf[ref_rsa_offset + 26 : ref_rsa_offset + 30])[0]
-                    else:
-                        zb = struct.unpack("b", filebuf[ref_rsa_offset + 28 : ref_rsa_offset + 29])[0]
-                        if not zb:
-                            ref_rsa_va = struct.unpack("I", filebuf[ref_rsa_offset + 25 : ref_rsa_offset + 29])[0]
-                        else:
-                            zb = struct.unpack("b", filebuf[ref_rsa_offset + 38 : ref_rsa_offset + 39])[0]
-                            if not zb:
-                                ref_rsa_va = struct.unpack("I", filebuf[ref_rsa_offset + 35 : ref_rsa_offset + 39])[0]
-                if not ref_rsa_va:
-                    return
-                ref_rsa_rva = ref_rsa_va - image_base
-                try:
-                    ref_rsa_offset = pe.get_offset_from_rva(ref_rsa_rva)
-                except:
-                    return
-                key = struct.unpack("<I", filebuf[ref_rsa_offset : ref_rsa_offset + 4])[0]
-                xorsize = key ^ struct.unpack("<I", filebuf[ref_rsa_offset + 4 : ref_rsa_offset + 8])[0]
-                rsa_key = xor_data(filebuf[ref_rsa_offset + 8 : ref_rsa_offset + 8 + xorsize], struct.pack("<I", key))
-                seq = asn1.DerSequence()
-                seq.decode(rsa_key)
-                self.reporter.add_metadata("other", {"RSA public key": RSA.construct((seq[0], seq[1])).exportKey()})
diff --git a/modules/processing/parsers/mwcp/Enfal.py b/modules/processing/parsers/mwcp/Enfal.py
deleted file mode 100644
index 9c51566a420..00000000000
--- a/modules/processing/parsers/mwcp/Enfal.py
+++ /dev/null
@@ -1,114 +0,0 @@
-# Copyright (C) 2015 Kevin O'Reilly kevin.oreilly@contextis.co.uk
-# This program is free software: you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation, either version 3 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program.  If not, see <http://www.gnu.org/licenses/>.
-
-from mwcp.parser import Parser
-import yara
-
-rule_source = """
-rule Enfal
-{
-    meta:
-        author = "kev"
-        description = "Enfal configuration blob"
-        cape_type = "Enfal Config"
-    strings:
-        $config = {BF 49 ?? 75 22 12 ?? 75 4B 65 72 6E 65 6C 33 32 2E 64 6C 6C}
-
-    condition:
-        $config
-}
-
-"""
-
-MAX_STRING_SIZE = 128
-
-
-def yara_scan(raw_data, rule_name):
-    addresses = {}
-    yara_rules = yara.compile(source=rule_source)
-    matches = yara_rules.match(data=raw_data)
-    for match in matches:
-        if match.rule == "Enfal":
-            for item in match.strings:
-                if item[1] == rule_name:
-                    addresses[item[1]] = item[0]
-    return addresses
-
-
-def string_from_offset(data, offset):
-    string = data[offset : offset + MAX_STRING_SIZE].split(b"\0")[0]
-    return string
-
-
-def list_from_offset(data, offset):
-    string = data[offset : offset + MAX_STRING_SIZE].split(b"\0")[0]
-    list = string.split(b",")
-    return list
-
-
-class enfal(Parser):
-
-    DESCRIPTION = "Enfal configuration parser."
-    AUTHOR = "kevoreilly"
-
-    def run(self):
-        filebuf = self.file_object.file_data
-
-        config = yara_scan(filebuf, "$config")
-
-        if config:
-            yara_offset = int(config["$config"])
-
-            c2_address = string_from_offset(filebuf, yara_offset + 0x2E8)
-            if c2_address:
-                self.reporter.add_metadata("c2_address", c2_address)
-
-            c2_url = string_from_offset(filebuf, yara_offset + 0xE8)
-            if c2_url:
-                self.reporter.add_metadata("c2_url", c2_url)
-
-            if filebuf[yara_offset + 0x13B0 : yara_offset + 0x13B1] == "S":
-                registrypath = string_from_offset(filebuf, yara_offset + 0x13B0)
-            elif filebuf[yara_offset + 0x13C0 : yara_offset + 0x13C1] == "S":
-                registrypath = string_from_offset(filebuf, yara_offset + 0x13C0)
-            elif filebuf[yara_offset + 0x13D0 : yara_offset + 0x13D1] == "S":
-                registrypath = string_from_offset(filebuf, yara_offset + 0x13D0)
-            else:
-                registrypath = ""
-
-            if registrypath:
-                self.reporter.add_metadata("registrypath", registrypath)
-
-            if filebuf[yara_offset + 0x14A2 : yara_offset + 0x14A3] == "C":
-                filepaths = list_from_offset(filebuf, yara_offset + 0x14A2)
-                filepaths[0] = filepaths[0].split(b" ")[0]
-                servicename = ""
-            elif filebuf[yara_offset + 0x14B0 : yara_offset + 0x14B1] != "\0":
-                servicename = string_from_offset(filebuf, yara_offset + 0x14B0)
-                filepaths = list_from_offset(filebuf, yara_offset + 0x14C0)
-            elif filebuf[yara_offset + 0x14C0 : yara_offset + 0x14C1] != "\0":
-                servicename = string_from_offset(filebuf, yara_offset + 0x14C0)
-                filepaths = list_from_offset(filebuf, yara_offset + 0x14D0)
-            elif filebuf[yara_offset + 0x14D0 : yara_offset + 0x14D1] != "\0":
-                servicename = string_from_offset(filebuf, yara_offset + 0x14D0)
-                filepaths = list_from_offset(filebuf, yara_offset + 0x14E0)
-            else:
-                servicename = ""
-                filepaths = []
-
-            if servicename:
-                self.reporter.add_metadata("servicename", servicename)
-            if filepaths:
-                for path in filepaths:
-                    self.reporter.add_metadata("filepath", path)
diff --git a/modules/processing/parsers/mwcp/EvilGrab.py b/modules/processing/parsers/mwcp/EvilGrab.py
deleted file mode 100644
index 48b29c6e2a5..00000000000
--- a/modules/processing/parsers/mwcp/EvilGrab.py
+++ /dev/null
@@ -1,162 +0,0 @@
-# Copyright (C) 2015 Kevin O'Reilly kevin.oreilly@contextis.co.uk
-# This program is free software: you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation, either version 3 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program.  If not, see <http://www.gnu.org/licenses/>.
-
-from mwcp.parser import Parser
-import struct
-import pefile
-import yara
-
-rule_source = """
-rule EvilGrab
-{
-    meta:
-        author = "kev"
-        description = "EvilGrab configuration function"
-        cape_type = "EvilGrab Payload"
-    strings:
-        $configure1 = {8D 44 24 ?? 50 6A 01 E8 ?? ?? ?? ?? 85 C0 74 07 33 C0 E9 9? 00 00 00 68 ?? ?? ?? ?? E8 ?? ?? ?? ?? 83 F8 07 59 73 ?? 68 ?? ?? ?? ?? 68 ?? ?? ?? ?? E8 ?? ?? ?? ?? 68}
-        $configure2 = {8D 44 24 ?? 50 6A 01 E8 ?? ?? ?? ?? 85 C0 74 07 33 C0 E9 9? 00 00 00 68 ?? ?? ?? ?? E8 ?? ?? ?? ?? 83 F8 07 59 73 ?? 68 ?? ?? ?? ?? 68 ?? ?? ?? ?? E8 ?? ?? ?? ?? 83}
-        $configure3 = {8D 95 60 ?? ?? ?? 52 6A 01 E8 ?? ?? ?? ?? 85 C0 74 13 33 C0 8B 4D F4 64 89 0D 00 00 00 00 5F 5E 5B 8B E5 5D C3 BF ?? ?? ?? ?? 83 C9 FF 33 C0 F2 AE}
-
-    condition:
-        //check for MZ Signature at offset 0
-        uint16(0) == 0x5A4D
-
-        and
-
-        $configure1 or $configure2 or $configure3
-}
-
-"""
-
-MAX_STRING_SIZE = 65
-
-
-def yara_scan(raw_data, rule_name):
-    addresses = {}
-    yara_rules = yara.compile(source=rule_source)
-    matches = yara_rules.match(data=raw_data)
-    for match in matches:
-        if match.rule == "EvilGrab":
-            for item in match.strings:
-                if item[1] == rule_name:
-                    addresses[item[1]] = item[0]
-    return addresses
-
-
-def pe_data(pe, va, size):
-    image_base = pe.OPTIONAL_HEADER.ImageBase
-    rva = va - image_base
-    data = pe.get_data(rva, size)
-    return data
-
-
-def string_from_va(pe, offset):
-    image_base = pe.OPTIONAL_HEADER.ImageBase
-    string_rva = struct.unpack("i", pe.__data__[offset : offset + 4])[0] - image_base
-    string_offset = pe.get_offset_from_rva(string_rva)
-    string = pe.__data__[string_offset : string_offset + MAX_STRING_SIZE].split(b"\0")[0]
-    return string
-
-
-class evilgrab(Parser):
-
-    DESCRIPTION = "EvilGrab configuration parser."
-    AUTHOR = "kevoreilly"
-
-    def run(self):
-        filebuf = self.file_object.file_data
-        pe = pefile.PE(data=filebuf, fast_load=False)
-        image_base = pe.OPTIONAL_HEADER.ImageBase
-
-        type1 = yara_scan(filebuf, "$configure1")
-        type2 = yara_scan(filebuf, "$configure2")
-        type3 = yara_scan(filebuf, "$configure3")
-
-        if type1:
-            yara_offset = int(type1["$configure1"])
-
-            c2_address = string_from_va(pe, yara_offset + 24)
-            if c2_address:
-                self.reporter.add_metadata("c2_address", c2_address)
-
-            port = str(struct.unpack("h", filebuf[yara_offset + 71 : yara_offset + 73])[0])
-            if port:
-                self.reporter.add_metadata("port", [port, "tcp"])
-
-            missionid = string_from_va(pe, yara_offset + 60)
-            if missionid:
-                self.reporter.add_metadata("missionid", missionid)
-
-            version = string_from_va(pe, yara_offset + 90)
-            if version:
-                self.reporter.add_metadata("version", version)
-
-            injectionprocess = string_from_va(pe, yara_offset + 132)
-            if injectionprocess:
-                self.reporter.add_metadata("injectionprocess", injectionprocess)
-
-            mutex = string_from_va(pe, yara_offset - 186)
-            if mutex:
-                self.reporter.add_metadata("mutex", mutex)
-
-        if type2:
-            yara_offset = int(type2["$configure2"])
-
-            c2_address = string_from_va(pe, yara_offset + 24)
-            if c2_address:
-                self.reporter.add_metadata("c2_address", c2_address)
-
-            port = str(struct.unpack("h", filebuf[yara_offset + 78 : yara_offset + 80])[0])
-            if port:
-                self.reporter.add_metadata("port", [port, "tcp"])
-
-            missionid = string_from_va(pe, yara_offset + 67)
-            if missionid:
-                self.reporter.add_metadata("missionid", missionid)
-
-            version = string_from_va(pe, yara_offset + 91)
-            if version:
-                self.reporter.add_metadata("version", version)
-
-            injectionprocess = string_from_va(pe, yara_offset + 133)
-            if injectionprocess:
-                self.reporter.add_metadata("injectionprocess", injectionprocess)
-
-            mutex = string_from_va(pe, yara_offset - 188)
-            if mutex:
-                self.reporter.add_metadata("mutex", mutex)
-
-        if type3:
-            yara_offset = int(type3["$configure3"])
-
-            c2_address = string_from_va(pe, yara_offset + 38)
-            if c2_address:
-                self.reporter.add_metadata("c2_address", c2_address)
-
-            port = str(struct.unpack("h", filebuf[yara_offset + 99 : yara_offset + 101])[0])
-            if port:
-                self.reporter.add_metadata("port", [port, "tcp"])
-
-            missionid = string_from_va(pe, yara_offset + 132)
-            if missionid:
-                self.reporter.add_metadata("missionid", missionid)
-
-            version = string_from_va(pe, yara_offset + 167)
-            if version:
-                self.reporter.add_metadata("version", version)
-
-            injectionprocess = string_from_va(pe, yara_offset + 195)
-            if injectionprocess:
-                self.reporter.add_metadata("injectionprocess", injectionprocess)
diff --git a/modules/processing/parsers/mwcp/Hancitor.py b/modules/processing/parsers/mwcp/Hancitor.py
deleted file mode 100644
index f7eb6190a46..00000000000
--- a/modules/processing/parsers/mwcp/Hancitor.py
+++ /dev/null
@@ -1,36 +0,0 @@
-"""
-    Hancitor config extractor
-"""
-import pefile
-import hashlib
-from mwcp.parser import Parser
-from Crypto.Cipher import ARC4
-import logging
-log = logging.getLogger(__name__)
-
-
-class Hancitor(Parser):
-    DESCRIPTION = "Hancitor config extractor."
-    AUTHOR = "threathive"
-
-    def run(self):
-        filebuf = self.file_object.file_data
-        try:
-
-            pe = pefile.PE(data=filebuf, fast_load=False)
-            for i in pe.sections:
-                if b".data" in i.Name:
-                    DATA_SECTION = i.get_data()
-                    RC4_KEY = hashlib.sha1(DATA_SECTION[16:24]).digest()[:5]
-                    ENCRYPT_DATA = DATA_SECTION[24:2000]
-
-                    DECRYPTED_DATA = ARC4.new(RC4_KEY).decrypt(ENCRYPT_DATA)
-                    build_id, controllers = list(filter(None,  DECRYPTED_DATA.split(b"\x00") ))
-
-                    self.reporter.add_metadata("other", { "Build ID": build_id })
-                    for controller in list(filter(None,  controllers.split(b"|") )):
-                        self.reporter.add_metadata("address", controller)
-
-
-        except Exception as e:
-            log.warning(e)
diff --git a/modules/processing/parsers/mwcp/HttpBrowser.py b/modules/processing/parsers/mwcp/HttpBrowser.py
deleted file mode 100644
index 53b58452c67..00000000000
--- a/modules/processing/parsers/mwcp/HttpBrowser.py
+++ /dev/null
@@ -1,146 +0,0 @@
-# Copyright (C) 2015 Kevin O'Reilly kevin.oreilly@contextis.co.uk
-# This program is free software: you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation, either version 3 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program.  If not, see <http://www.gnu.org/licenses/>.
-
-from mwcp.parser import Parser
-import struct
-import pefile
-import yara
-
-rule_source = """
-rule HttpBrowser
-{
-    meta:
-        author = "kev"
-        description = "HttpBrowser C2 connect function"
-        cape_type = "HttpBrowser Payload"
-    strings:
-        $connect_1 = {33 C0 68 06 02 00 00 66 89 ?? ?? ?? ?? ?? 8D ?? ?? ?? ?? ?? 5? 50 E8 ?? ?? 00 00 8B 35 ?? ?? ?? ?? 83 C4 0C 6A 01 BB ?? ?? ?? ?? 53 FF D6 59 50 BF}
-        $connect_2 = {33 C0 68 06 02 00 00 66 89 ?? ?? ?? 8D ?? ?? ?? 5? 50 E8 ?? ?? 00 00 8B 35 ?? ?? ?? ?? 83 C4 0C 6A 01 BB ?? ?? ?? ?? 53 FF D6 59 50 BF}
-        $connect_3 = {68 40 1F 00 00 FF 15 ?? ?? ?? ?? 8B 35 ?? ?? ?? ?? BB ?? ?? ?? ?? 53 FF D6 59 50 BF ?? ?? ?? ?? 57 E8 ?? ?? ?? ?? 59 59}
-        $connect_4 = {33 C0 57 66 89 85 ?? ?? ?? ?? 8D 85 ?? ?? ?? ?? 56 50 E8 ?? ?? ?? ?? 6A 01 FF 75 08 8D 85 ?? ?? ?? ?? 68 ?? ?? ?? ?? 68}
-    condition:
-        //check for MZ Signature at offset 0
-        uint16(0) == 0x5A4D
-
-        and
-
-        $connect_1 or $connect_2 or $connect_3 or $connect_4
-}
-
-"""
-
-MAX_STRING_SIZE = 67
-
-
-def yara_scan(raw_data, rule_name):
-    addresses = {}
-    yara_rules = yara.compile(source=rule_source)
-    matches = yara_rules.match(data=raw_data)
-    for match in matches:
-        if match.rule == "HttpBrowser":
-            for item in match.strings:
-                if item[1] == rule_name:
-                    addresses[item[1]] = item[0]
-    return addresses
-
-
-def pe_data(pe, va, size):
-    image_base = pe.OPTIONAL_HEADER.ImageBase
-    rva = va - image_base
-    data = pe.get_data(rva, size)
-    return data
-
-
-def ascii_from_va(pe, offset):
-    image_base = pe.OPTIONAL_HEADER.ImageBase
-    string_rva = struct.unpack("i", pe.__data__[offset : offset + 4])[0] - image_base
-    string_offset = pe.get_offset_from_rva(string_rva)
-    string = pe.__data__[string_offset : string_offset + MAX_STRING_SIZE].split(b"\0")[0]
-    return string
-
-
-def unicode_from_va(pe, offset):
-    image_base = pe.OPTIONAL_HEADER.ImageBase
-    string_rva = struct.unpack("i", pe.__data__[offset : offset + 4])[0] - image_base
-    string_offset = pe.get_offset_from_rva(string_rva)
-    string = pe.__data__[string_offset : string_offset + MAX_STRING_SIZE].split(b"\x00\x00")[0]
-    return string
-
-
-class evilgrab(Parser):
-
-    DESCRIPTION = "HttpBrowser configuration parser."
-    AUTHOR = "kevoreilly"
-
-    def run(self):
-        filebuf = self.file_object.file_data
-        pe = pefile.PE(data=self.file_object.file_data, fast_load=False)
-        image_base = pe.OPTIONAL_HEADER.ImageBase
-
-        type1 = yara_scan(filebuf, "$connect_1")
-        type2 = yara_scan(filebuf, "$connect_2")
-        type3 = yara_scan(filebuf, "$connect_3")
-        type4 = yara_scan(filebuf, "$connect_4")
-
-        if type1:
-            yara_offset = int(type1["$connect_1"])
-
-            port = ascii_from_va(pe, yara_offset + 39)
-            if port:
-                self.reporter.add_metadata("port", [port, "tcp"])
-
-            c2_address = unicode_from_va(pe, yara_offset + 49)
-            if c2_address:
-                self.reporter.add_metadata("c2_address", c2_address)
-
-        if type2:
-            yara_offset = int(type2["$connect_2"])
-
-            port = ascii_from_va(pe, yara_offset + 35)
-            if port:
-                self.reporter.add_metadata("port", [port, "tcp"])
-
-            c2_address = unicode_from_va(pe, yara_offset + 45)
-            if c2_address:
-                self.reporter.add_metadata("c2_address", c2_address)
-
-        if type3:
-            yara_offset = int(type3["$connect_3"])
-
-            port = ascii_from_va(pe, yara_offset + 18)
-            if port:
-                self.reporter.add_metadata("port", [port, "tcp"])
-
-            c2_address = unicode_from_va(pe, yara_offset + 28)
-            if c2_address:
-                self.reporter.add_metadata("c2_address", c2_address)
-
-            c2_address = unicode_from_va(pe, yara_offset + 66)
-            if c2_address:
-                self.reporter.add_metadata("c2_address", c2_address)
-
-        if type4:
-            yara_offset = int(type4["$connect_4"])
-
-            c2_address = unicode_from_va(pe, yara_offset + 35)
-            if c2_address:
-                self.reporter.add_metadata("c2_address", c2_address)
-
-            filepath = unicode_from_va(pe, yara_offset + 90)
-            if filepath:
-                self.reporter.add_metadata("filepath", filepath)
-
-            injectionprocess = unicode_from_va(pe, yara_offset - 13)
-            if injectionprocess:
-                self.reporter.add_metadata("injectionprocess", injectionprocess)
diff --git a/modules/processing/parsers/mwcp/IcedID.py b/modules/processing/parsers/mwcp/IcedID.py
deleted file mode 100644
index 9528da30002..00000000000
--- a/modules/processing/parsers/mwcp/IcedID.py
+++ /dev/null
@@ -1,114 +0,0 @@
-# Copyright (C) 2019 Kevin O'Reilly (kevoreilly@gmail.com)
-# This program is free software: you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation, either version 3 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program.  If not, see <http://www.gnu.org/licenses/>.
-
-from mwcp.parser import Parser
-import struct
-import pefile
-import yara
-
-rule_source = """
-rule IcedID
-{
-    meta:
-        author = "kevoreilly"
-        description = "IcedID Payload"
-        cape_type = "IcedID Payload"
-    strings:
-        $crypt1 = {8A 04 ?? D1 C? F7 D? D1 C? 81 E? 20 01 00 00 D1 C? F7 D? 81 E? 01 91 00 00 32 C? 88}
-        $crypt2 = {8B 44 24 04 D1 C8 F7 D0 D1 C8 2D 20 01 00 00 D1 C0 F7 D0 2D 01 91 00 00 C3}
-        $crypt3 = {41 00 8B C8 C1 E1 08 0F B6 C4 66 33 C8 66 89 4? 24 A1 ?? ?? 41 00 89 4? 20 A0 ?? ?? 41 00 D0 E8 32 4? 32}
-        $major_ver = {0F B6 05 ?? ?? ?? ?? 6A ?? 6A 72 FF 75 0C 6A 70 50 FF 35 ?? ?? ?? ?? 8D 45 80 FF 35 ?? ?? ?? ?? 6A 63 FF 75 08 6A 67 50 FF 75 10 FF 15 ?? ?? ?? ?? 83 C4 38 8B E5 5D C3}
-    condition:
-        any of them
-}
-"""
-
-
-def yara_scan(raw_data, rule_name):
-    addresses = {}
-    yara_rules = yara.compile(source=rule_source)
-    matches = yara_rules.match(data=raw_data)
-    for match in matches:
-        if match.rule == "IcedID":
-            for item in match.strings:
-                if item[1] == rule_name:
-                    addresses[item[1]] = item[0]
-                    return addresses
-
-
-def rol(a, i):
-    a &= 0xFFFFFFFF
-    i &= 0x1F
-    x = (((a << i) & 0xFFFFFFFF) | (a >> (32 - i))) & 0xFFFFFFFF
-    return x
-
-
-def ror(a, i):
-    i &= 0x1F
-    a &= 0xFFFFFFFF
-    return (((a >> i) & 0xFFFFFFFF) | (a << ((32 - i)))) & 0xFFFFFFFF
-
-
-def key_shift(key):
-    key = ror(key, 1)
-    key = ~key
-    key = ror(key, 1)
-    key -= 0x120
-    key = rol(key, 1)
-    key = ~key
-    key -= 0x9101
-    return key
-
-
-def iced_decode(data, key, l):
-    output = ""
-    for i in range(l):
-        key = key_shift(key)
-        output += chr(struct.unpack("B", data[i : i + 1])[0] ^ (key & 0xFF))
-    return output
-
-
-class IcedID(Parser):
-
-    DESCRIPTION = "IcedID configuration parser."
-    AUTHOR = "kevoreilly"
-
-    def run(self):
-        filebuf = self.file_object.file_data
-        enc_data = None
-        try:
-            pe = pefile.PE(data=filebuf, fast_load=False)
-            for section in pe.sections:
-                if section.Name.startswith("bss"):
-                    enc_data = section.get_data()
-        except:
-            pass
-
-        if enc_data:
-            key = struct.unpack("I", enc_data[848:852])[0]
-            config = iced_decode(enc_data[852:1108], key, 0x100)
-
-            self.reporter.add_metadata("other", {"Bot ID": hex(struct.unpack("I", config[:4])[0])})
-            self.reporter.add_metadata("other", {"Minor Version": str(struct.unpack("I", config[4:8])[0])})
-            c2_offset = 9
-            length = struct.unpack("B", config[c2_offset - 1])[0]
-            while length:
-                self.reporter.add_metadata("address", config[c2_offset : c2_offset + length])
-                c2_offset += length + 1
-                length = struct.unpack("B", config[c2_offset - 1])[0]
-
-        major_version = yara_scan(filebuf, "$major_ver")
-        if major_version:
-            version_offset = int(major_version["$major_ver"])
-            self.reporter.add_metadata("other", {"Major Version": str(struct.unpack("B", filebuf[version_offset + 8])[0])})
diff --git a/modules/processing/parsers/mwcp/IcedIDStage1.py b/modules/processing/parsers/mwcp/IcedIDStage1.py
deleted file mode 100644
index b886c30f509..00000000000
--- a/modules/processing/parsers/mwcp/IcedIDStage1.py
+++ /dev/null
@@ -1,141 +0,0 @@
-# Copyright (C) 2019 Kevin O'Reilly (kevoreilly@gmail.com)
-# This program is free software: you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation, either version 3 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program.  If not, see <http://www.gnu.org/licenses/>.
-#
-# Updates to handle stage 1 Based on initial work referenced here and modified to work with python3
-# https://sysopfb.github.io/malware,/icedid/2020/04/28/IcedIDs-updated-photoloader.html
-# https://gist.github.com/sysopfb/93eb0090ef47c08e4e516cb045b48b96
-# https://www.group-ib.com/blog/icedid
-
-import os
-import struct
-import pefile
-import yara
-from Crypto.Cipher import ARC4
-from mwcp.parser import Parser
-from lib.cuckoo.common.constants import CUCKOO_ROOT
-
-yara_path = os.path.join(CUCKOO_ROOT, "data", "yara", "CAPE", "IcedIDStage1.yar")
-yara_rule = open(yara_path, "r").read()
-
-def yara_scan(raw_data):
-    try:
-        addresses = {}
-        yara_rules = yara.compile(source=yara_rule)
-        matches = yara_rules.match(data=raw_data)
-        return matches
-    except Exception as e:
-        print(e)
-
-def decode_stage1_config(data):
-    out = ""
-    for i in range(len(data)//2):
-        t1 = data[i*2]
-        t2 = data[(i*2)+1]
-        t1 &= 0xf0
-        t2 = t2 >> 4
-        t1 |= t2
-        t1 ^= (i & 0xff)
-        out += chr(t1&0xff)
-
-    return out
-
-def parse_stage_1_domains(data):
-    fakes = []
-    real = []
-    t = data[4:]
-    print(type(t))
-
-    (next, f) = struct.unpack_from('<BB', bytearray(t.encode()))
-
-    while next != 0 and next < 100:
-        if f == 0:
-            real.append(t[2:].split('\x00')[0])
-        else:
-            fakes.append(t[2:].split('\00')[0])
-        t = t[next:]
-        (next, f) = struct.unpack_from(b'<BB', bytearray(t.encode()))
-
-    return(fakes,real)
-
-def rol(a, i):
-    a &= 0xFFFFFFFF
-    i &= 0x1F
-    x = (((a << i) & 0xFFFFFFFF) | (a >> (32 - i))) & 0xFFFFFFFF
-    return x
-
-
-def ror(a, i):
-    i &= 0x1F
-    a &= 0xFFFFFFFF
-    return (((a >> i) & 0xFFFFFFFF) | (a << ((32 - i)))) & 0xFFFFFFFF
-
-
-def key_shift(key):
-    key = ror(key, 1)
-    key = ~key
-    key = ror(key, 1)
-    key -= 0x120
-    key = rol(key, 1)
-    key = ~key
-    key -= 0x9101
-    return key
-
-
-def iced_decode(data, key, l):
-    output = ""
-    for i in range(l):
-        key = key_shift(key)
-        output += chr(struct.unpack("B", data[i : i + 1])[0] ^ (key & 0xFF))
-    return output
-
-def new_decode(data):
-    n = 0
-    new = []
-    for x in data:
-        k = data[n] ^ data[n+64]
-        new.append(k)
-        if n > 32:
-            break
-        n += 1
-    gads, d = struct.unpack("I30s", bytes(new))
-    hostname = d.split(b"\00")[0]
-    return hostname
-
-class IcedIDStage1(Parser):
-
-    DESCRIPTION = "IcedID configuration parser."
-    AUTHOR = "kevoreilly,threathive,sysopfb,enzo"
-
-    def run(self):
-        filebuf = self.file_object.file_data
-        yara_hit = yara_scan(filebuf)
-
-        for hit in yara_hit:
-            if hit.rule == "IcedIDStage1":
-                pe = pefile.PE(data=filebuf, fast_load=False)
-                for section in pe.sections:
-                    if section.Name == b'.rdata\x00\x00':
-                        config_section = bytearray(section.get_data())
-                        cfg = decode_stage1_config(config_section[256:])
-                        (f,r) = parse_stage_1_domains(cfg)
-                        if r:
-                            for cnc in r:
-                                self.reporter.add_metadata("other", {"CNC": cnc })
-                        if f:
-                            for decoy in f:
-                                self.reporter.add_metadata("other", {"Decoy": decoy })
-                    elif section.Name == b'.data\x00\x00\x00':
-                        config_section = bytearray(section.get_data())
-                        cfg = new_decode(config_section)
-                        self.reporter.add_metadata("address", cfg)
diff --git a/modules/processing/parsers/mwcp/IcedIDStage2.py b/modules/processing/parsers/mwcp/IcedIDStage2.py
deleted file mode 100644
index 319232c0e64..00000000000
--- a/modules/processing/parsers/mwcp/IcedIDStage2.py
+++ /dev/null
@@ -1,70 +0,0 @@
-# Copyright (C) 2019 Kevin O'Reilly (kevoreilly@gmail.com)
-# This program is free software: you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation, either version 3 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program.  If not, see <http://www.gnu.org/licenses/>.
-#
-# Updates to handle stage 1 Based on initial work referenced here and modified to work with python3
-# https://sysopfb.github.io/malware,/icedid/2020/04/28/IcedIDs-updated-photoloader.html
-# https://gist.github.com/sysopfb/93eb0090ef47c08e4e516cb045b48b96
-#https://www.group-ib.com/blog/icedid
-
-import os
-import struct
-import pefile
-import yara
-from Crypto.Cipher import ARC4
-from mwcp.parser import Parser
-from lib.cuckoo.common.constants import CUCKOO_ROOT
-
-yara_path = os.path.join(CUCKOO_ROOT, "data", "yara", "CAPE", "IcedIDStage2.yar")
-yara_rule = open(yara_path, "r").read()
-
-def yara_scan(raw_data):
-    try:
-        addresses = {}
-        yara_rules = yara.compile(source=yara_rule)
-        matches = yara_rules.match(data=raw_data)
-        return matches
-    except Exception as e:
-        print(e)
-
-class IcedIDStage2(Parser):
-
-    DESCRIPTION = "IcedID Stage 2 configuration parser."
-    AUTHOR = "kevoreilly,threathive,sysopfb"
-
-    def run(self):
-        filebuf = self.file_object.file_data
-        yara_hit = yara_scan(filebuf)
-
-        for hit in yara_hit:
-            if hit.rule == "IcedIDStage2": #can be either a dll or a exe
-                enc_data = None
-                try:
-                    pe = pefile.PE(data=filebuf, fast_load=False)
-                    for section in pe.sections:
-                        if section.Name == b'.data\x00\x00\x00':
-                            enc_data = section.get_data()
-                            key = enc_data[:8]
-                            enc_config = enc_data[8:592]
-                            decrypted_data = ARC4.new(key).decrypt(enc_config)
-                            config = list(filter(None, decrypted_data.split(b"\x00") ))
-
-                            self.reporter.add_metadata("other", {"Bot ID": str(struct.unpack("I", decrypted_data[:4])[0]) })
-                            self.reporter.add_metadata("other", {"Minor Version": str(struct.unpack("I", decrypted_data[4:8])[0])})
-                            self.reporter.add_metadata("other", {"Path": config[1] })
-                            for controller in config[2:]:
-                                self.reporter.add_metadata("address", controller[1:])
-
-                except Exception as e:
-                    self.logger.error("error:{}".format(e))
-                    pass
diff --git a/modules/processing/parsers/mwcp/Loki.py b/modules/processing/parsers/mwcp/Loki.py
deleted file mode 100644
index df684ebe88e..00000000000
--- a/modules/processing/parsers/mwcp/Loki.py
+++ /dev/null
@@ -1,175 +0,0 @@
-# MIT License
-#
-# Copyright (c) Jason Reaves - @sysopfb
-#
-# Permission is hereby granted, free of charge, to any person obtaining a copy
-# of this software and associated documentation files (the "Software"), to deal
-# in the Software without restriction, including without limitation the rights
-# to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
-# copies of the Software, and to permit persons to whom the Software is
-# furnished to do so, subject to the following conditions:
-#
-# The above copyright notice and this permission notice shall be included in all
-# copies or substantial portions of the Software.
-#
-# THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
-# IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
-# FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
-# AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
-# LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
-# OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
-# SOFTWARE.
-
-from mwcp.parser import Parser
-import pefile
-import sys
-import re
-import struct
-from Crypto.Cipher import DES3
-
-
-def find_iv(pe):
-    iv = -1
-    if type(pe) == pefile.PE:
-        t = pe.get_memory_mapped_image()
-    else:
-        t = pe
-    temp = re.findall(br"""\x68...\x00.{1,10}\x68...\x00\x68...\x00\x68...\x00\x03\xc1""", t)
-    if temp != []:
-        (addr,) = struct.unpack_from("<I", temp[0][1:])
-        addr -= 0x400000
-        iv = t[addr : addr + 8]
-    return iv
-
-
-def try_find_iv(pe):
-    ret = []
-
-    dlen = 8 * 4
-    if type(pe) == pefile.PE:
-        t = pe.get_memory_mapped_image()
-    else:
-        t = pe
-    off = t.find(b"\x6a\x08\x59\xbe")
-    if off == -1:
-        return -1
-    (addr,) = struct.unpack_from("<I", t[off + 4 :])
-    # print(hex(addr))
-    addr -= 0x400000
-    conf = t[addr : addr + dlen]
-
-    # Go until past next blob to \x00\x00\x00\x00
-    off = t[addr + dlen + 4 :].find(b"\x00\x00\x00\x00")
-    off += addr + dlen + 4 + 4
-    iv = t[off : off + 8]
-
-    # This doesn't work for all samples... still interesting that the data is in close proximity sometimes
-    (nul, key3, nul, key2, nul, key1) = struct.unpack_from("<I8sI8sI8s", t[off + 8 :])
-
-    key = "\x08\x02\x00\x00\x03\x66\x00\x00\x18\x00\x00\x00" + key1 + key2 + key3
-
-    return iv
-
-
-def find_conf(pe):
-    ret = []
-
-    dlen = 8 * 4
-    if type(pe) == pefile.PE:
-        t = pe.get_memory_mapped_image()
-    else:
-        t = pe
-    off = t.find(b"\x6a\x08\x59\xbe")
-    (addr,) = struct.unpack_from("<I", t[off + 4 :])
-    # print(hex(addr))
-    addr -= 0x400000
-    data = t[addr : addr + dlen]
-    ret.append(data)
-
-    dlen = 10 * 4
-    off = t.find(b"\x6a\x0a\x59\xbe")
-    (addr,) = struct.unpack_from("<I", t[off + 4 :])
-    # print(hex(addr))
-    addr -= 0x400000
-    data = t[addr : addr + dlen]
-    ret.append(data)
-
-    return ret
-
-
-def find_key(pe):
-    ret = None
-    if type(pe) == pefile.PE:
-        t = pe.get_memory_mapped_image()
-    else:
-        t = pe
-    temp = re.findall(br"""\x68...\x00\x68...\x00\x68...\x00\x03\xc1""", t)
-    if temp != []:
-        ret = "\x08\x02\x00\x00\x03\x66\x00\x00\x18\x00\x00\x00"
-        temp = temp[0][:-2].split("\x68")[::-1]
-        for a in temp:
-            if a != "":
-                (addr,) = struct.unpack_from("<I", a)
-                # print(hex(addr))
-                addr -= 0x400000
-                ret += t[addr : addr + 8]
-    return ret
-
-
-def decoder(data):
-    x_sect = None
-
-    urls = re.findall(br"""https?:\/\/[a-zA-Z0-9\/\.:\-_]+""", data)
-
-    pe = None
-    try:
-        pe = pefile.PE(sys.argv[1])
-
-        for sect in pe.sections:
-            if ".x" in sect.Name:
-                x_sect = sect
-        img = pe.get_memory_mapped_image()
-    except:
-        img = data
-    if x_sect != None:
-        x = img[x_sect.VirtualAddress : x_sect.VirtualAddress + x_sect.SizeOfRawData]
-        x = bytearray(x)
-    else:
-        x = bytearray(img)
-
-    for i in range(len(x)):
-        x[i] ^= 0xFF
-
-    temp = re.findall(br"""https?:\/\/[a-zA-Z0-9\/\.:\-_]+""", x)
-    urls += temp
-
-    urls = [x for x in urls if x != "http://www.ibsensoftware.com/" and x != ""]
-
-    # Try to decrypt onboard config then
-    if urls == []:
-        temp = ""
-        if pe == None:
-            pe = data
-        key = find_key(pe)
-        # iv = try_find_iv(pe)
-        iv = find_iv(pe)
-        confs = find_conf(pe)
-        if iv not in ["", -1] and confs != []:
-            for conf in confs:
-                dec = DES3.new(key[12:], DES3.MODE_CBC, iv)
-                temp += dec.decrypt(conf)
-            temp_urls = re.findall(br"""[a-zA-Z0-9\/\.:\-_]{6,}""", temp)
-            urls += temp_urls
-
-    return urls
-
-
-class Loki(Parser):
-
-    DESCRIPTION = "Loki configuration parser."
-    AUTHOR = "kevoreilly"
-
-    def run(self):
-        urls = decoder(self.file_object.file_data)
-        for url in urls:
-            self.reporter.add_metadata("address", url)
diff --git a/modules/processing/parsers/mwcp/QakBot.py b/modules/processing/parsers/mwcp/QakBot.py
deleted file mode 100644
index ff34a3b70e5..00000000000
--- a/modules/processing/parsers/mwcp/QakBot.py
+++ /dev/null
@@ -1,221 +0,0 @@
-"""
-    Qakbot decoder for Core/Main DLL
-"""
-import os
-import sys
-import struct
-import socket
-import pefile
-import hashlib
-import datetime
-from mwcp.parser import Parser
-from Crypto.Cipher import ARC4
-from lib.cuckoo.common import blzpack
-import logging
-log = logging.getLogger(__name__)
-
-"""
-    Config Map
-"""
-CONFIG = {
-    b'10': b'Campaign ID',
-    b'3': b'Config timestamp'
-}
-
-BRIEFLZ_HEADER = b'\x62\x6C\x7A\x1A\x00\x00\x00\x01'
-QAKBOT_HEADER = b'\x61\x6c\xd3\x1a\x00\x00\x00\x01'
-
-"""
-    Extract build version from parent of core dll.
-"""
-def parse_build(pe):
-    for sec in pe.sections:
-        if sec.Name == b'.data\x00\x00\x00':
-            major, minor = struct.unpack('<II', sec.get_data()[:8])
-            return b'%X.%d' % (major, minor)
-
-"""
-   Parses the config block into a more human readable format.
-   Data looks like this initially b'3=1592498872'
-"""
-def parse_config(data):
-    config = {}
-    config_entries = list(filter(None, data.split(b'\r\n') ))
-
-    for entry in config_entries:
-        try:
-            k,v = entry.split(b'=')
-            if k == b'3':
-                config[CONFIG.get(k, k)] = datetime.datetime.fromtimestamp(int(v)).strftime('%H:%M:%S %d-%m-%Y')
-            else:
-                config[CONFIG.get(k, k)] = v
-        except Exception as e:
-            log.info("Failed to parse config entry:{}".format(entry))
-
-    return config
-
-"""
-    Parses the CNC block into a more human readable format.
-    Data looks like this initially 72.29.181.77;0;2078\r\n'
-"""
-def parse_controllers(data):
-    controllers = []
-    for controller in list(filter(None, data.split(b'\r\n') )):
-        ip, _, port = controller.decode().split(';')
-        controllers.append('{}:{}'.format(ip,port))
-
-    return controllers
-
-"""
-    Parses the binary CNC block format introduced Nov'20
-"""
-def parse_binary_c2(data):
-    controllers = []
-    c2_offset = 0
-    length = len(data)
-    while c2_offset < length:
-        ip = socket.inet_ntoa(struct.pack("!L", struct.unpack(">I", data[c2_offset+1:c2_offset+5])[0]))
-        port = str(struct.unpack(">H", data[c2_offset+5:c2_offset+7])[0])
-        c2_offset += 7
-        controllers.append('{}:{}'.format(ip,port))
-    return controllers
-
-"""
-    Parses the binary CNC block format introduced April'21
-"""
-def parse_binary_c2_2(data):
-    controllers = []
-    c2_offset = 0
-    c2_data = data
-
-    expected_sha1 = c2_data[:0x14]
-    c2_data = c2_data[0x14:]
-    actual_sha1 = hashlib.sha1(c2_data).digest()
-
-    if actual_sha1 != expected_sha1:
-        log.error(f'Expected sha1: {expected_sha1} actual: {actual_sha1}')
-        return
-
-    length = len(c2_data)
-
-    while c2_offset < length:
-        ip = socket.inet_ntoa(struct.pack("!L", struct.unpack(">I", c2_data[c2_offset+1:c2_offset+5])[0]))
-        port = str(struct.unpack(">H", c2_data[c2_offset+5:c2_offset+7])[0])
-        c2_offset += 7
-        controllers.append('{}:{}'.format(ip, port))
-    return controllers
-
-"""
-    Decompress data with blzpack decompression
-"""
-def decompress(data):
-    return blzpack.decompress_data(BRIEFLZ_HEADER.join(data.split(QAKBOT_HEADER)))
-
-"""
-    Decrypts the data using the last 20 bytes as a rc4 key.
-    Validates the decryption with the sha1 sum contained within the first 20 bytes of the decrypted data.
-"""
-def decrypt_data(data):
-    if not data:
-        return
-
-    rc4_key = data[:0x14]
-    decrypted_data = ARC4.new(rc4_key).decrypt(data[0x14:])
-
-    if not decrypted_data:
-        return
-
-    if hashlib.sha1(decrypted_data[0x14:]).digest() != decrypted_data[:0x14]:
-        return
-
-    return decrypted_data[0x14:]
-
-def decrypt_data2(data):
-    if not data:
-        return
-
-    hash_obj = hashlib.sha1(b'\\System32\\WindowsPowerShell\\v1.0\\powershell.exe')
-    rc4_key = hash_obj.digest()
-    decrypted_data = ARC4.new(rc4_key).decrypt(data)
-
-    if not decrypted_data:
-        return
-
-    return decrypted_data
-
-class QakBot(Parser):
-    DESCRIPTION = "Qakbot configuration parser."
-    AUTHOR = "threathive, r1n9w0rm"
-
-    def run(self):
-        filebuf = self.file_object.file_data
-        try:
-            pe = pefile.PE(data=filebuf, fast_load=False)
-            image_base = pe.OPTIONAL_HEADER.ImageBase
-            for rsrc in pe.DIRECTORY_ENTRY_RESOURCE.entries:
-                for entry in rsrc.directory.entries:
-                    if entry.name is not None:
-                        #log.info("id:{}".format(entry.name.__str__()))
-                        offset = entry.directory.entries[0].data.struct.OffsetToData
-                        size = entry.directory.entries[0].data.struct.Size
-                        res_data = pe.get_memory_mapped_image()[offset:offset + size]
-                        if entry.name.__str__() == '307':
-                            # we found the parent process and still need to decrypt/(blzpack) decompress the main DLL
-                            dec_bytes = decrypt_data(res_data)
-                            decompressed = decompress(dec_bytes)
-                            self.reporter.add_metadata("other", {"Loader Build": parse_build(pe).decode("utf-8")})
-                            pe2 = pefile.PE(data = decompressed)
-                            for rsrc in pe2.DIRECTORY_ENTRY_RESOURCE.entries:
-                                for entry in rsrc.directory.entries:
-                                    if entry.name is not None:
-                                        offset = entry.directory.entries[0].data.struct.OffsetToData
-                                        size = entry.directory.entries[0].data.struct.Size
-                                        res_data = pe2.get_memory_mapped_image()[offset:offset + size]
-                                        if entry.name.__str__() == '308':
-                                            dec_bytes = decrypt_data(res_data)
-                                            config = parse_config(dec_bytes)
-                                            #log.info("qbot_config:{}".format(config))
-                                            self.reporter.add_metadata("other", { "Core DLL Build": parse_build(pe2).decode("utf-8") })
-
-                                            for k,v in config.items():
-                                                #log.info( { k.decode("utf-8"): v.decode("utf-8") })
-                                                self.reporter.add_metadata("other", {k:v})
-
-                                        elif entry.name.__str__() == '311':
-                                            dec_bytes = decrypt_data(res_data)
-                                            controllers = parse_controllers(dec_bytes)
-
-                                            #log.info("controllers:{}".format(controllers))
-                                            for controller in controllers:
-                                                self.reporter.add_metadata("address", controller)
-                            #log.info("meta data:{}".format(self.reporter.metadata))
-
-                        elif entry.name.__str__() == '308':
-                            dec_bytes = decrypt_data(res_data)
-                            config = parse_config(dec_bytes)
-                            #log.info("qbot_config:{}".format(config))
-                            self.reporter.add_metadata("other", { "Core DLL Build": parse_build(pe)})
-
-                            for k,v in config.items():
-                                #log.info({k:v})
-                                self.reporter.add_metadata("other", {k:v})
-
-                        elif entry.name.__str__() == '311':
-                            dec_bytes = decrypt_data(res_data)
-                            controllers = parse_binary_c2(dec_bytes)
-
-                        elif entry.name.__str__() == '118':
-                            dec_bytes = decrypt_data2(res_data)
-                            controllers = parse_binary_c2_2(dec_bytes)
-
-                        elif entry.name.__str__() == '524':
-                            dec_bytes = decrypt_data2(res_data)
-                            config = parse_config(dec_bytes)
-
-                            #log.info("controllers:{}".format(controllers))
-                            for controller in controllers:
-                                self.reporter.add_metadata("address", controller)
-                            #log.info("meta data:{}".format(self.reporter.metadata))
-
-        except Exception as e:
-            log.warning(e)
diff --git a/modules/processing/parsers/mwcp/RCSession.py b/modules/processing/parsers/mwcp/RCSession.py
deleted file mode 100644
index 6dcf616d956..00000000000
--- a/modules/processing/parsers/mwcp/RCSession.py
+++ /dev/null
@@ -1,132 +0,0 @@
-# Copyright (C) 2015 Kevin O'Reilly kevin.oreilly@contextis.co.uk
-# This program is free software: you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation, either version 3 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program.  If not, see <http://www.gnu.org/licenses/>.
-
-from mwcp.parser import Parser
-import struct
-import pefile
-import yara
-
-rule_source = """
-rule RCSession
-{
-    meta:
-        author = "kevoreilly"
-        description = "RCSession Payload"
-        cape_type = "RCSession Payload"
-    strings:
-        $a1 = {56 33 F6 39 74 24 08 7E 4C 53 57 8B F8 2B FA 8B C6 25 03 00 00 80 79 05 48 83 C8 FC 40 83 E8 00 74 19 48 74 0F 48 74 05 6B C9 09 EB 15 8B C1 C1 E8 02 EB 03 8D 04 09 2B C8}
-        $a2 = {83 C4 10 85 C0 74 ?? BE ?? ?? ?? ?? 89 74 24 10 E8 ?? ?? ?? ?? 6A 03 68 48 0B 00 00 56 53 57 68 02 00 00 80 E8 ?? ?? ?? ?? 83 C4 18 85 C0 74 18 E8 ?? ?? ?? ?? 6A 03 68 48}
-    condition:
-        (any of ($a*))
-}
-
-"""
-
-MAX_IP_STRING_SIZE = 16  # aaa.bbb.ccc.ddd\0
-UINT_MAX = 0xFFFFFFFF
-
-
-def yara_scan(raw_data, rule_name):
-    addresses = {}
-    yara_rules = yara.compile(source=rule_source)
-    matches = yara_rules.match(data=raw_data)
-    for match in matches:
-        if match.rule == "RCSession":
-            for item in match.strings:
-                if item[1] == rule_name:
-                    addresses[item[1]] = item[0]
-    return addresses
-
-
-def unicode_string_from_offset(buffer, offset, max):
-    string = buffer[offset : offset + max].decode("utf-16")
-    return string
-
-
-def decode(ciphertext, size, key):
-
-    if size == 0:
-        return
-
-    v4 = 0
-    decoded_chars = bytearray(size)
-
-    while v4 < size:
-        if v4 % 4 == 0:
-            key = (key + (key >> 4)) & UINT_MAX
-        elif v4 % 4 == 1:
-            v6 = (2 * key) & UINT_MAX
-            key = (key - v6) & UINT_MAX
-        elif v4 % 4 == 2:
-            v6 = (key >> 2) & UINT_MAX
-            key = (key - v6) & UINT_MAX
-        else:
-            key = (key * 9) & UINT_MAX
-        decoded_chars[v4] = struct.unpack("B", ciphertext[v4 : v4 + 1])[0] ^ (key & 0xFF)
-        v4 = v4 + 1
-
-    return decoded_chars
-
-
-class RCSession(Parser):
-
-    DESCRIPTION = "RCSession configuration parser."
-    AUTHOR = "kevoreilly"
-
-    def run(self):
-        filebuf = self.file_object.file_data
-        pe = pefile.PE(data=self.file_object.file_data, fast_load=False)
-        image_base = pe.OPTIONAL_HEADER.ImageBase
-
-        decrypt_config = yara_scan(filebuf, "$a2")
-
-        if decrypt_config:
-            yara_offset = int(decrypt_config["$a2"])
-        else:
-            return
-
-        config_rva = struct.unpack("i", filebuf[yara_offset + 8 : yara_offset + 12])[0] - image_base
-        config_offset = pe.get_offset_from_rva(config_rva)
-        size = struct.unpack("i", filebuf[yara_offset + 88 : yara_offset + 92])[0]
-        key = struct.unpack("i", filebuf[config_offset + 128 : config_offset + 132])[0]
-
-        config = decode(filebuf[config_offset : config_offset + size], size, key)
-
-        c2_address = str(config[156 : 156 + MAX_IP_STRING_SIZE])
-        if c2_address != "":
-            self.reporter.add_metadata("c2_address", c2_address)
-
-        c2_address = str(config[224 : 224 + MAX_IP_STRING_SIZE])
-        if c2_address != "":
-            self.reporter.add_metadata("c2_address", c2_address)
-
-        installdir = unicode_string_from_offset(bytes(config), 0x2A8, 128)
-        if installdir != "":
-            self.reporter.add_metadata("directory", installdir)
-
-        executable = unicode_string_from_offset(config, 0x4B0, 128)
-        if executable != "":
-            self.reporter.add_metadata("filename", executable)
-
-        servicename = unicode_string_from_offset(config, 0x530, 128)
-        if servicename != "":
-            self.reporter.add_metadata("servicename", servicename)
-
-        displayname = unicode_string_from_offset(config, 0x738, 128)
-        if displayname != "":
-            self.reporter.add_metadata("servicedisplayname", displayname)
-
-        description = unicode_string_from_offset(config, 0x940, 512)
-        if description != "":
-            self.reporter.add_metadata("servicedescription", description)
diff --git a/modules/processing/parsers/mwcp/RedLeaf.py b/modules/processing/parsers/mwcp/RedLeaf.py
deleted file mode 100644
index 1f0965c0127..00000000000
--- a/modules/processing/parsers/mwcp/RedLeaf.py
+++ /dev/null
@@ -1,123 +0,0 @@
-# Copyright (C) 2017 Kevin O'Reilly kevin.oreilly@contextis.co.uk
-# This program is free software: you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation, either version 3 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program.  If not, see <http://www.gnu.org/licenses/>.
-
-from mwcp.parser import Parser
-import struct
-import pefile
-import yara
-
-rule_source = """
-rule RedLeaf
-{
-    meta:
-        author = "kev"
-        description = "RedLeaf configuration parser."
-        cape_type = "RedLeaf Payload"
-    strings:
-        $crypto = {6A 10 B8 ?? ?? ?? 10 E8 ?? ?? 01 00 8B F1 89 75 E4 8B 7D 08 83 CF 07 81 FF FE FF FF 7F 76 05 8B 7D 08 EB 29 8B 4E 14 89 4D EC D1 6D EC 8B C7 33 D2 6A 03 5B F7 F3 8B 55 EC 3B D0 76 10 BF FE FF FF}
-        $decrypt_config = {55 8B EC 83 EC 20 A1 98 9F 03 10 33 C5 89 45 FC 56 33 F6 33 C0 80 B0 ?? ?? ?? ?? ?? 40 3D ?? ?? ?? ?? 72 F1 68 70 99 03 10 56 56 FF 15 2C 11 03 10 FF 15 B8 11 03 10 3D B7 00 00 00 75 06 56 E8 5F 9E}
-    condition:
-        //check for MZ Signature at offset 0
-        uint16(0) == 0x5A4D
-
-        and
-
-        $crypto and $decrypt_config
-}
-
-"""
-
-MAX_STRING_SIZE = 64
-MAX_IP_STRING_SIZE = 16  # aaa.bbb.ccc.ddd\0
-
-
-def yara_scan(raw_data, rule_name):
-    addresses = {}
-    yara_rules = yara.compile(source=rule_source)
-    matches = yara_rules.match(data=raw_data)
-    for match in matches:
-        if match.rule == "RedLeaf":
-            for item in match.strings:
-                if item[1] == rule_name:
-                    addresses[item[1]] = item[0]
-    return addresses
-
-
-def pe_data(pe, va, size):
-    image_base = pe.OPTIONAL_HEADER.ImageBase
-    rva = va - image_base
-    data = pe.get_data(rva, size)
-    return data
-
-
-def string_from_offset(buffer, offset):
-    string = buffer[offset : offset + MAX_STRING_SIZE].split(b"\0")[0]
-    return string
-
-
-def unicode_string_from_offset(buffer, offset):
-    string = buffer[offset : offset + MAX_STRING_SIZE].split(b"\x00\x00")[0]
-    return string
-
-
-class redleaf(Parser):
-
-    DESCRIPTION = "RedLeaf configuration parser."
-    AUTHOR = "kevoreilly"
-
-    def run(self):
-        filebuf = self.file_object.file_data
-        pe = pefile.PE(data=self.file_object.file_data, fast_load=False)
-        image_base = pe.OPTIONAL_HEADER.ImageBase
-
-        decrypt_config = yara_scan(filebuf, "$decrypt_config")
-
-        if decrypt_config:
-            yara_offset = int(decrypt_config["$decrypt_config"])
-        else:
-            return
-
-        config_rva = struct.unpack("i", filebuf[yara_offset + 23 : yara_offset + 27])[0] - image_base
-
-        config_offset = pe.get_offset_from_rva(config_rva)
-
-        xor_key = struct.unpack("b", filebuf[yara_offset + 27 : yara_offset + 28])[0]
-
-        config_size = struct.unpack("i", filebuf[yara_offset + 30 : yara_offset + 34])[0]
-
-        config = "".join([chr(xor_key ^ ord(x)) for x in filebuf[config_offset : config_offset + config_size]])
-
-        c2_address = config[8 : 8 + MAX_IP_STRING_SIZE]
-        if c2_address != "":
-            self.reporter.add_metadata("c2_address", c2_address)
-
-        c2_address = config[0x48 : 0x48 + MAX_IP_STRING_SIZE]
-        if c2_address != "":
-            self.reporter.add_metadata("c2_address", c2_address)
-
-        c2_address = config[0x88 : 0x88 + MAX_IP_STRING_SIZE]
-        if c2_address != "":
-            self.reporter.add_metadata("c2_address", c2_address)
-
-        missionid = string_from_offset(config, 0x1EC)
-        if missionid:
-            self.reporter.add_metadata("missionid", missionid)
-
-        mutex = unicode_string_from_offset(config, 0x508)
-        if mutex:
-            self.reporter.add_metadata("mutex", mutex)
-
-        key = string_from_offset(config, 0x832)
-        if key:
-            self.reporter.add_metadata("key", key)
diff --git a/modules/processing/parsers/mwcp/Redsip.py b/modules/processing/parsers/mwcp/Redsip.py
deleted file mode 100644
index 8374acc4295..00000000000
--- a/modules/processing/parsers/mwcp/Redsip.py
+++ /dev/null
@@ -1,141 +0,0 @@
-# Copyright (C) 2017 Kevin O'Reilly (kevin.oreilly@contextis.co.uk)
-# This program is free software: you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation, either version 3 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program.  If not, see <http://www.gnu.org/licenses/>.
-
-from mwcp.parser import Parser
-import struct
-import pefile
-import yara
-import os.path
-
-rule_source = """
-rule Redsip
-{
-    meta:
-        author = "kevoreilly"
-        description = "Redsip Payload"
-        cape_type = "Redsip Payload"
-    strings:
-        $decrypt = {8B 45 F8 99 B9 0A 00 00 00 F7 F9 85 D2 75 1F 8A 55 10 88 55 FF 8B 45 08 03 45 F8 0F BE 08 0F BE 55 FF 33 CA 8B 45 08 03 45 F8 88 08 EB C1}
-        $call_decrypt = {8B 85 E0 FD FF FF 50 FF 15 ?? ?? ?? ?? C7 85 E0 FD FF FF FF FF FF FF 6A ?? 68 ?? ?? ?? ?? 68 ?? ?? ?? ?? E8}
-    condition:
-        uint16(0) == 0x5A4D and $decrypt and $call_decrypt
-}
-
-"""
-
-MAX_IP_STRING_SIZE = 16  # aaa.bbb.ccc.ddd\0
-
-
-def yara_scan(raw_data, rule_name):
-    addresses = {}
-    yara_rules = yara.compile(source=rule_source)
-    matches = yara_rules.match(data=raw_data)
-    for match in matches:
-        if match.rule == "Redsip":
-            for item in match.strings:
-                if item[1] == rule_name:
-                    addresses[item[1]] = item[0]
-    return addresses
-
-
-def unicode_string_from_offset(buffer, offset, max):
-    try:
-        string = buffer[offset : offset + max].decode("utf-16")
-    except:
-        return
-    return string
-
-
-def decode(ciphertext, size, key):
-
-    if size == 0:
-        return
-
-    key = key & 0xFF
-    decoded_chars = bytearray(size)
-    count = 0
-
-    while count < size:
-        if count % 10:
-            decoded_chars[count] = struct.unpack("B", ciphertext[count : count + 1])[0] ^ ((key + count) & 0xFF)
-        else:
-            decoded_chars[count] = struct.unpack("B", ciphertext[count : count + 1])[0] ^ key
-        count = count + 1
-
-    return decoded_chars
-
-
-def process_file(filepath, filesize, key):
-
-    with open(filepath, "r") as file_open:
-        filedata = file_open.read()
-
-    if len(filedata) != filesize:
-        return
-
-    return decode(filedata, filesize, key)
-
-
-class Redsip(Parser):
-
-    DESCRIPTION = "Redsip configuration parser."
-    AUTHOR = "kevoreilly"
-
-    def run(self):
-        filebuf = self.file_object.file_data
-        pe = pefile.PE(data=self.file_object.file_data, fast_load=False)
-        image_base = pe.OPTIONAL_HEADER.ImageBase
-
-        call_decrypt = yara_scan(filebuf, "$call_decrypt")
-
-        if call_decrypt:
-            yara_offset = int(call_decrypt["$call_decrypt"])
-        else:
-            return
-
-        key = struct.unpack("B", filebuf[yara_offset + 24 : yara_offset + 25])[0]
-        size = struct.unpack("I", filebuf[yara_offset + 26 : yara_offset + 30])[0]
-        config_found = False
-
-        # The config is in a dropped file
-        if self.reporter.analysis_path:
-            dropped_path = os.path.join(self.reporter.analysis_path, "files")
-            for f in os.listdir(dropped_path):
-                path = os.path.join(dropped_path, f)
-                if os.path.isfile(path):
-                    filesize = os.path.getsize(path)
-                    # We select based on size match with the code
-                    if filesize == size:
-                        config = process_file(path, size, key)
-                        config_found = True
-
-        # The config file hasn't been found/decrypted so fall back to hardcoded config
-        if config_found == False:
-            config_rva = struct.unpack("I", filebuf[yara_offset + 31 : yara_offset + 35])[0] - image_base
-            config_offset = pe.get_offset_from_rva(config_rva)
-            config = filebuf[config_offset : config_offset + size]
-
-        c2_address = str(config[16 : 16 + MAX_IP_STRING_SIZE])
-        if c2_address == "":
-            return
-        self.reporter.add_metadata("c2_address", c2_address)
-
-        missionid = unicode_string_from_offset(config, 0x628, 128)
-        if missionid:
-            try:
-                missionid.decode("ascii")
-                self.reporter.add_metadata("missionid", missionid)
-            except:
-                pass
-        return
diff --git a/modules/processing/parsers/mwcp/Remcos.py b/modules/processing/parsers/mwcp/Remcos.py
deleted file mode 100644
index 4132c5fcf90..00000000000
--- a/modules/processing/parsers/mwcp/Remcos.py
+++ /dev/null
@@ -1,182 +0,0 @@
-# This file is part of CAPE Sandbox - https://github.com/ctxis/CAPE
-# See the file 'docs/LICENSE' for copying permission.
-#
-# This decoder is based on:
-# Decryptor POC for Remcos RAT version 2.7.1 and earlier
-# By Talos July 2018 - https://github.com/Cisco-Talos/remcos-decoder
-# Updates based on work presented here https://gist.github.com/sysopfb/11e6fb8c1377f13ebab09ab717026c87
-
-import string
-import re
-import pefile
-from mwcp.parser import Parser
-from Crypto.Cipher import ARC4
-from collections import OrderedDict
-
-#From JPCERT
-FLAG = {b"\x00": "Disable", b"\x01": "Enable"}
-
-#From JPCERT
-idx_list = {
-    0: "Host:Port:Password",
-    1: "Assigned name",
-    2: "Connect interval",
-    3: "Install flag",
-    4: "Setup HKCU\\Run",
-    5: "Setup HKLM\\Run",
-    6: "Setup HKLM\\Explorer\\Run",
-    7: "Setup HKLM\\Winlogon\\Shell",
-    8: "Setup HKLM\\Winlogon\\Userinit",
-    9: "Install path",
-    10: "Copy file",
-    11: "Startup value",
-    12: "Hide file",
-    13: "Unknown13",
-    14: "Mutex",
-    15: "Keylog flag",
-    16: "Keylog path",
-    17: "Keylog file",
-    18: "Keylog crypt",
-    19: "Hide keylog file",
-    20: "Screenshot flag",
-    21: "Screenshot time",
-    22: "Take Screenshot option",
-    23: "Take screenshot title",
-    24: "Take screenshot time",
-    25: "Screenshot path",
-    26: "Screenshot file",
-    27: "Screenshot crypt",
-    28: "Mouse option",
-    29: "Unknown29",
-    30: "Delete file",
-    31: "Unknown31",
-    32: "Unknown32",
-    33: "Unknown33",
-    34: "Unknown34",
-    35: "Unknown35",
-    36: "Audio record time",
-    37: "Audio path",
-    38: "Audio folder",
-    39: "Unknown39",
-    40: "Unknown40",
-    41: "Connect delay",
-    42: "Unknown42",
-    43: "Unknown43",
-    44: "Unknown44",
-    45: "Unknown45",
-    46: "Unknown46",
-    47: "Unknown47",
-    48: "Copy folder",
-    49: "Keylog folder",
-    50: "Unknown50",
-    51: "Unknown51",
-    52: "Unknown52",
-    53: "Unknown53",
-    54: "Keylog file max size",
-    55: "Unknown55"
-}
-
-#From JPCERT
-setup_list = {
-    0: "Temp",
-    2: "Root",
-    3: "Windows",
-    4: "System32",
-    5: "Program Files",
-    6: "AppData",
-    7: "User Profile",
-    8: "Application path",
-}
-
-class Remcos(Parser):
-    DESCRIPTION = "Remcos config extractor."
-    AUTHOR = "threathive,sysopfb,kevoreilly"
-
-    def get_rsrc(self,pe):
-        ret = []
-        for resource_type in pe.DIRECTORY_ENTRY_RESOURCE.entries:
-            if resource_type.name is not None:
-                name = str(resource_type.name)
-            else:
-                name = str(pefile.RESOURCE_TYPE.get(resource_type.struct.Id))
-            if name == None:
-                name = str(resource_type.struct.name)
-            if hasattr(resource_type, 'directory'):
-                for resource_id in resource_type.directory.entries:
-                    if hasattr(resource_id, 'directory'):
-                        for resource_lang in resource_id.directory.entries:
-                            data = pe.get_data(resource_lang.data.struct.OffsetToData,resource_lang.data.struct.Size)
-                            ret.append((name,data,resource_lang.data.struct.Size,resource_type))
-
-
-        return ret
-
-    def check_version(self,filedata):
-        printable = set(string.printable)
-
-        s = ""
-        slist = []
-        # find strings in binary file
-        for c in filedata:
-            if len(s) > 4 and c == 0:  # no strings <= 4
-                slist.append(s)
-                s = ""
-                continue
-
-            if chr(c) in printable:
-                s += chr(c)
-
-        # find and extract version string e.g. "2.0.5 Pro", "1.7 Free" or "1.7 Light"
-        for s in slist:
-            if bool(re.search("^[12]\.\d+\d{0,1}.*[FLP].*", s)):
-                return s
-        return
-
-    def run(self):
-        try:
-            filebuf = self.file_object.file_data
-            pe = pefile.PE(data=filebuf)
-
-            blob = False
-            ResourceData = self.get_rsrc(pe)
-            for rsrc in ResourceData:
-                if rsrc[0] in ['RT_RCDATA', 'SETTINGS']:
-                    blob = rsrc[1]
-                    break
-
-            if blob:
-                keylen = blob[0]
-                key = blob[1:keylen+1]
-
-                decrypted_data = ARC4.new(key).decrypt( blob[keylen + 1 :])
-                p_data = OrderedDict()
-                p_data["Version"] = self.check_version(filebuf)
-
-                configs = re.split(b"\|\x1e\x1e\x1f\|", decrypted_data)
-
-                for i, cont in enumerate(configs):
-                    if cont == b"\x00" or cont == b"\x01":
-                        p_data[ idx_list[i] ] = FLAG[cont]
-                    else:
-                        if i in [16, 25, 37]:
-                            p_data[idx_list[i]] = setup_list[int(cont)]
-                        elif i in [0]:
-                            host,port,password = cont.split(b':')
-                            p_data["Control"] = "tcp://{}:{}".format(host.decode('utf-8'),port.decode("utf-8"))
-
-                        else:
-                            p_data[idx_list[i]] = cont
-
-                out = {}
-                for id, param in p_data.items():
-                    try:
-                        out[id] = param.decode('utf-16').decode('ascii')
-                    except:
-                        out[id] = param
-
-                for k,v in out.items():
-                    self.reporter.add_metadata("other", { k:v })
-
-
-        except Exception as e:
-            self.logger.error("caught an exception:{}".format(e))
diff --git a/modules/processing/parsers/mwcp/Retefe.py b/modules/processing/parsers/mwcp/Retefe.py
deleted file mode 100644
index d037bf9e09e..00000000000
--- a/modules/processing/parsers/mwcp/Retefe.py
+++ /dev/null
@@ -1,174 +0,0 @@
-# This is adapted for CAPE from Tomasuh's retefe-unpacker script:
-# https://github.com/Tomasuh/retefe-unpacker
-# http://tomasuh.github.io/2018/12/28/retefe-unpack.html
-# Many thanks to Tomasuh
-
-from mwcp.parser import Parser
-import yara
-import struct
-import pefile
-
-rule_source = """
-rule Retefe
-{
-    meta:
-        author = "Tomasuh"
-        description = "Retefe Payload"
-        cape_type = "Retefe Payload"
-    strings:
-        $retefe_encoded_buffer = {48 8b 44 24 20 8b 40 08 48 8b 4c 24 20 48 8d 15}
-        $retefe_xor_seed = {24 20 48 8b 44 24 20 C7 40 08}
-        $retefe_xor_seed_2ndarg = {89 54 24 10 48 89 4c 24 08 48 83 ec 58 ba}
-        $retefe_shift_and_sub_match = {c1 e0 ?? b9}
-    condition:
-        uint16(0) == 0x5A4D and (all of them)
-}
-
-"""
-
-
-def yara_scan(raw_data, rule_name):
-    addresses = {}
-    yara_rules = yara.compile(source=rule_source)
-    matches = yara_rules.match(data=raw_data)
-    for match in matches:
-        if match.rule == "Retefe":
-            for item in match.strings:
-                if item[1] == rule_name:
-                    addresses[item[1]] = item[0]
-    return addresses
-
-
-def number_gen_rec(buffer_size, number):
-    if number == 1:
-        return buffer_size
-    return 0xFFFFFFFF & buffer_size * (0xFFFFFFFF & number_gen_rec(buffer_size, number - 1))
-
-
-def number_gen(buffer_size, number, shifts, subtract_val):
-    calculated_number = number_gen_rec(buffer_size, number)
-
-    number = calculated_number << shifts  # * 8
-    number = subtract_val - number
-
-    return number & 0xFFFFFFFF
-
-
-def pwd_calc(buffer_size, number, shifts, subtract_val):
-    xor_arr = []
-
-    seed = number_gen(buffer_size, number, shifts, subtract_val)
-
-    while seed:
-        xor_arr.append(seed & 0xFF)
-        seed = seed >> 8
-
-    return xor_arr
-
-
-class Retefe(Parser):
-
-    DESCRIPTION = "Retefe configuration parser."
-    AUTHOR = "kevoreilly"
-
-    def run(self):
-        filebuf = self.file_object.file_data
-        pe = pefile.PE(data=self.file_object.file_data, fast_load=False)
-
-        # Offset to seed for xor
-        retefe_xor_seed = yara_scan(filebuf, "$retefe_xor_seed")
-        if retefe_xor_seed:
-            offset = int(retefe_xor_seed["$retefe_xor_seed"])
-        else:
-            return
-
-        # Offset to value that will be used to take xor^value
-        xor_seed_2ndarg = yara_scan(filebuf, "$retefe_xor_seed_2ndarg")
-        if xor_seed_2ndarg:
-            offset2 = int(xor_seed_2ndarg["$retefe_xor_seed_2ndarg"])
-        else:
-            return
-
-        # Offset to values that will be used in part of subtraction and shifts of xor^value
-        shift_and_subtract = yara_scan(filebuf, "$retefe_shift_and_sub_match")
-        if shift_and_subtract:
-            offset3 = int(shift_and_subtract["$retefe_shift_and_sub_match"])
-        else:
-            return
-
-        retefe_encoded_buffer = yara_scan(filebuf, "$retefe_encoded_buffer")
-        if retefe_encoded_buffer:
-            offset4 = int(retefe_encoded_buffer["$retefe_encoded_buffer"])
-        else:
-            return
-
-        # Offset starts at match, we want end of match
-        seed_val = struct.unpack("<i", filebuf[offset + 10 : offset + 14])[0] - 1  # -1 because of indexing in code
-        # print("Found seed (and buffer size) value {}".format(hex(seed_val)))
-
-        # Offset starts at match, we want end of match
-        power_to_val = struct.unpack("<i", filebuf[offset2 + 14 : offset2 + 18])[0]
-        # print("Found power to value {}".format(hex(power_to_val)))
-
-        shift_val = struct.unpack("b", filebuf[offset3 + 2 : offset3 + 3])[0]
-        # print("Found shift left value {}".format(hex(shift_val)))
-
-        subtract_val = struct.unpack("<i", filebuf[offset3 + 4 : offset3 + 8])[0]
-        # print("Found subtract value {}".format(hex(subtract_val)))
-
-        # (match length before instruction) + 7 (instruction length)
-        buffer_place = struct.unpack("<i", filebuf[offset4 + 16 : offset4 + 20])[0] + 13 + 7
-
-        # print("Found buffer place arg {}".format(hex(buffer_place)))
-
-        xor_arr = pwd_calc(seed_val, power_to_val, shift_val, subtract_val)
-
-        # print("XOR array that will be used for decryption {}".format(xor_arr))
-
-        text_va_base = None
-        text_raw_base = None
-
-        for section in pe.sections:
-            if section.Name == ".text" or section.Name.startswith(b".text\x00"):
-                text_va_base = section.VirtualAddress
-                text_raw_base = section.PointerToRawData
-
-        rva_next_instr = offset4 - text_raw_base
-
-        # Encoded buffer rva address :
-        rva = rva_next_instr + text_va_base + buffer_place
-
-        # print("Calculated RVA for encoded buffer is {}".format(hex(rva)))
-
-        buffer = pe.get_memory_mapped_image()[rva : rva + seed_val]
-
-        n = 0
-        result = ""
-        for ch in buffer:
-            result += chr((ord(ch) ^ xor_arr[n % 4]))
-            n += 1
-
-        self.reporter.add_metadata("other", {"Script": result})
-
-
-# Some logical reasoning left behind....
-# Now also find buffer and calculate va to physical and dump it
-
-# Raw address is 4ef60
-# Data segment raw base is 4E600
-# 4ef60 - 4E600 = 0x960, 2400, offset
-# Data segment virtual is 50000
-# Image base is 140000000
-# So the encoded buffer should be in: 0x140000000 + 0x50000 + 0x960 = 0x140050960 = Correct!
-
-
-# 0x4ad7c is value from lea
-# Next instruction after lea is at 140005be4
-# 5be4 + 0x4ad7c = 0x50960 = VA for encoded buffer
-
-# So we need to know instruction address in order to calculate encoded buffer address
-# raw address of matched instruction is offset4, 0x4fd0
-# 0x4fd0 + 13(match length before instruction) + 7 (instruction length) = 0x4FE4 = Raw address Next instruction
-# Raw base of .text is 0x400, so RVA is 0x4FE4 - 0x400 = 0x4BE4
-# VA base of .text is 1000, and image base 140000000
-# So next instruction should be at 0x140000000 + 0x1000 + 0x4BE4 = 0x140005BE4 = Correct!
diff --git a/modules/processing/parsers/mwcp/SmokeLoader.py b/modules/processing/parsers/mwcp/SmokeLoader.py
deleted file mode 100644
index c86e68db00a..00000000000
--- a/modules/processing/parsers/mwcp/SmokeLoader.py
+++ /dev/null
@@ -1,164 +0,0 @@
-# Copyright (C) 2018 Kevin O'Reilly (kevin.oreilly@contextis.co.uk)
-# This program is free software: you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation, either version 3 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program.  If not, see <http://www.gnu.org/licenses/>.
-
-from mwcp.parser import Parser
-import struct
-import pefile
-import yara
-
-rule_source = """
-rule SmokeLoader
-{
-    meta:
-        author = "kev"
-        description = "SmokeLoader C2 decryption function"
-        cape_type = "SmokeLoader Payload"
-    strings:
-        $decrypt64_1 = {44 0F B6 CF 48 8B D0 49 03 D9 4C 2B D8 8B 4B 01 41 8A 04 13 41 BA 04 00 00 00 0F C9 32 C1 C1 F9 08 49 FF CA 75 F6 F6 D0 88 02 48 FF C2 49 FF C9 75 DB 49 8B C0 48 8B 5C 24 30 48 83 C4 20 5F C3}
-        $decrypt64_2 = {40 84 FF 90 90 E8 00 00 00 00 5E 48 83 C6 1C 49 8B F8 A4 80 3E 00 75 FA 80 07 00 48 8B 5C 24 30 48 83 C4 20 5F C3}
-        $decrypt32_1 = {03 EE 8B D7 2B C7 8B F8 8B 4D 01 8A 04 17 6A 04 0F C9 5B 32 C1 C1 F9 08 4B 75 F8 F6 D0 88 02 42 4E 75 E5 8B 7C 24 14 8B C7 5F 5E 5D 5B 59 59 C3}
-        $ref64_1 = {40 53 48 83 EC 20 8B 05 ?? ?? ?? ?? 83 F8 ?? 75 27 33 C0 89 05 ?? ?? ?? ?? 84 C9 74 1B BB E8 03 00 00 B9 58 02 00 00 FF 15 ?? ?? ?? ?? 48 FF CB 75 F0 8B 05 ?? ?? ?? ?? 48 63 C8 48 8D 05}
-        $ref64_2 = {8B 05 ?? ?? ?? ?? 33 C9 83 F8 04 0F 44 C1 48 63 C8 89 05 ?? ?? ?? ?? 48 8D 05 ?? ?? ?? ?? 48 8B 0C C8 E9}
-        $ref32_1 = {8A C1 8B 0D 70 6D 00 10 83 F9 02 75 27 33 C9 89 0D 70 6D 00 10 84 C0 74 1B 56 BE E8 03 00 00 68 58 02 00 00 FF 15 38 6E 00 10 4E 75 F2 8B 0D 70 6D 00 10 5E 8B 0C 8D}
-    condition:
-        (any of ($decrypt*)) and (any of ($ref*))
-}
-"""
-
-
-def yara_scan(raw_data, rule_name):
-    addresses = {}
-    yara_rules = yara.compile(source=rule_source)
-    matches = yara_rules.match(data=raw_data)
-    for match in matches:
-        if match.rule == "SmokeLoader":
-            for item in match.strings:
-                if item[1] == rule_name:
-                    addresses[item[1]] = item[0]
-                    return addresses
-
-
-def xor_decode(buffer, key):
-    byte_key = 0xFF
-    for i in range(0, 4):
-        byte_key = byte_key ^ (key >> (i * 8) & 0xFF)
-    return "".join(chr(ord(x) ^ byte_key) for x in buffer)
-
-
-class SmokeLoader(Parser):
-
-    DESCRIPTION = "SmokeLoader configuration parser."
-    AUTHOR = "kevoreilly"
-
-    def run(self):
-        filebuf = self.file_object.file_data
-
-        try:
-            pe = pefile.PE(data=filebuf, fast_load=False)
-            image_base = pe.OPTIONAL_HEADER.ImageBase
-        except:
-            image_base = 0
-
-        table_ref = yara_scan(filebuf, "$ref64_1")
-        if table_ref:
-            table_ref_offset = int(table_ref["$ref64_1"])
-            table_delta = struct.unpack("i", filebuf[table_ref_offset + 62 : table_ref_offset + 66])[0]
-            table_offset = table_ref_offset + table_delta + 66
-
-            table_loop = True
-            while table_loop:
-                c2_offset = 0
-                if image_base:
-                    c2_rva = struct.unpack("Q", filebuf[table_offset : table_offset + 8])[0]
-                    if not c2_rva:
-                        table_loop = False
-                    else:
-                        c2_rva -= image_base
-                    if c2_rva and c2_rva < 0x8000:
-                        c2_offset = pe.get_offset_from_rva(c2_rva)
-                    else:
-                        table_loop = False
-                else:
-                    c2_offset = struct.unpack("I", filebuf[table_offset : table_offset + 4])[0] & 0xFFFF
-                if c2_offset and c2_offset < 0x8000:
-                    try:
-                        c2_size = struct.unpack("B", filebuf[c2_offset : c2_offset + 1])[0]
-                        c2_key = struct.unpack("I", filebuf[c2_offset + c2_size + 1 : c2_offset + c2_size + 5])[0]
-                        c2_url = xor_decode(filebuf[c2_offset + 1 : c2_offset + c2_size + 1], c2_key).decode("ascii")
-                        if c2_url:
-                            self.reporter.add_metadata("address", c2_url)
-                    except:
-                        table_loop = False
-                else:
-                    table_loop = False
-                table_offset = table_offset + 8
-            return
-        else:
-            table_ref = yara_scan(filebuf, "$ref64_2")
-        if table_ref:
-            table_ref_offset = int(table_ref["$ref64_2"])
-            table_delta = struct.unpack("i", filebuf[table_ref_offset + 26 : table_ref_offset + 30])[0]
-            table_offset = table_ref_offset + table_delta + 30
-
-            for index in range(0, 2):
-                if image_base:
-                    c2_rva = struct.unpack("Q", filebuf[table_offset : table_offset + 8])[0] - image_base
-                    c2_offset = pe.get_offset_from_rva(c2_rva)
-                else:
-                    c2_offset = struct.unpack("I", filebuf[table_offset : table_offset + 4])[0] & 0xFFFF
-                c2_size = struct.unpack("B", filebuf[c2_offset : c2_offset + 1])[0]
-                c2_key = struct.unpack("I", filebuf[c2_offset + c2_size + 1 : c2_offset + c2_size + 5])[0]
-                try:
-                    c2_url = xor_decode(filebuf[c2_offset + 1 : c2_offset + c2_size + 1], c2_key).decode("ascii")
-                    if c2_url:
-                        self.reporter.add_metadata("address", c2_url)
-                except:
-                    pass
-                table_offset = table_offset + 8
-            return
-        else:
-            table_ref = yara_scan(filebuf, "$ref32_1")
-        if table_ref:
-            table_ref_offset = int(table_ref["$ref32_1"])
-            table_rva = struct.unpack("i", filebuf[table_ref_offset + 55 : table_ref_offset + 59])[0] - image_base
-            table_offset = pe.get_offset_from_rva(table_rva)
-
-            table_loop = True
-            while table_loop:
-                c2_offset = 0
-                if image_base:
-                    c2_rva = struct.unpack("I", filebuf[table_offset : table_offset + 4])[0]
-                    if not c2_rva:
-                        table_loop = False
-                    else:
-                        c2_rva -= image_base
-                    if c2_rva and c2_rva < 0x8000:
-                        c2_offset = pe.get_offset_from_rva(c2_rva)
-                    else:
-                        table_loop = False
-                else:
-                    c2_offset = struct.unpack("I", filebuf[table_offset : table_offset + 4])[0] & 0xFFFF
-                if c2_offset and c2_offset < 0x8000:
-                    try:
-                        c2_size = struct.unpack("B", filebuf[c2_offset : c2_offset + 1])[0]
-                        c2_key = struct.unpack("I", filebuf[c2_offset + c2_size + 1 : c2_offset + c2_size + 5])[0]
-                        c2_url = xor_decode(filebuf[c2_offset + 1 : c2_offset + c2_size + 1], c2_key).decode("ascii")
-                        if c2_url:
-                            self.reporter.add_metadata("address", c2_url)
-                    except:
-                        table_loop = False
-                else:
-                    table_loop = False
-                table_offset = table_offset + 4
-            return
diff --git a/modules/processing/parsers/mwcp/Zloader.py b/modules/processing/parsers/mwcp/Zloader.py
deleted file mode 100644
index ef87a95ab23..00000000000
--- a/modules/processing/parsers/mwcp/Zloader.py
+++ /dev/null
@@ -1,84 +0,0 @@
-# Copyright (C) 2020 Kevin O'Reilly (kevoreilly@gmail.com)
-# This program is free software: you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation, either version 3 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program.  If not, see <http://www.gnu.org/licenses/>.
-
-from mwcp.parser import Parser
-import struct
-import string
-import pefile
-import yara
-import re
-from Crypto.Cipher import ARC4
-import logging
-log = logging.getLogger(__name__)
-
-rule_source = '''
-rule Zloader
-{
-    meta:
-        author = "kevoreilly"
-        description = "Zloader Payload"
-        cape_type = "Zloader Payload"
-    strings:
-        $rc4_init = {31 [1-3] 66 C7 8? 00 01 00 00 00 00 90 90 [0-5] 8? [5-90] 00 01 00 00 [0-15] (74|75)}
-        $decrypt_conf = {e8 ?? ?? ?? ?? e8 ?? ?? ?? ?? e8 ?? ?? ?? ?? e8 ?? ?? ?? ?? 68 ?? ?? ?? ?? 68 ?? ?? ?? ?? e8 ?? ?? ?? ?? 83 c4 08 e8 ?? ?? ?? ??}
-    condition:
-        uint16(0) == 0x5A4D and any of them
-}
-
-'''
-MAX_STRING_SIZE = 32
-
-yara_rules = yara.compile(source=rule_source)
-
-def decrypt_rc4(key, data):
-    cipher = ARC4.new(key)
-    return cipher.decrypt(data)
-
-def string_from_offset(data, offset):
-    string = data[offset : offset + MAX_STRING_SIZE].split(b"\0")[0]
-    return string
-
-class Zloader(Parser):
-
-    DESCRIPTION = 'Zloader configuration parser'
-    AUTHOR = 'kevoreilly'
-
-    def run(self):
-        filebuf = self.file_object.file_data
-        pe = pefile.PE(data=filebuf, fast_load=False)
-        image_base = pe.OPTIONAL_HEADER.ImageBase
-        matches = yara_rules.match(data=filebuf)
-        if not matches:
-            return
-        for match in matches:
-            if match.rule != "Zloader":
-                continue
-            for item in match.strings:
-                if '$decrypt_conf' in item[1]:
-                    decrypt_conf = int(item[0])+21
-        va = struct.unpack("I",filebuf[decrypt_conf:decrypt_conf+4])[0]
-        key = string_from_offset(filebuf, pe.get_offset_from_rva(va-image_base))
-        data_offset = pe.get_offset_from_rva(struct.unpack("I",filebuf[decrypt_conf+5:decrypt_conf+9])[0]-image_base)
-        enc_data = filebuf[data_offset:].split(b"\0\0")[0]
-        raw = decrypt_rc4(key, enc_data)
-        items = list(filter(None, raw.split(b'\x00\x00')))
-        self.reporter.add_metadata("other", {"Botnet name": items[1].lstrip(b'\x00')})
-        self.reporter.add_metadata("other", {"Campaign ID": items[2]})
-        for item in items:
-            item = item.lstrip(b'\x00')
-            if item.startswith(b'http'):
-                self.reporter.add_metadata("address", item)
-            elif len(item) == 16:
-                self.reporter.add_metadata("other", {"RC4 key": item})
-        return
diff --git a/modules/processing/parsers/plugxconfig/__init__.py b/modules/processing/parsers/plugxconfig/__init__.py
deleted file mode 100644
index f39e5e8d683..00000000000
--- a/modules/processing/parsers/plugxconfig/__init__.py
+++ /dev/null
@@ -1 +0,0 @@
-# Init
diff --git a/modules/processing/parsers/plugxconfig/plugx.py b/modules/processing/parsers/plugxconfig/plugx.py
deleted file mode 100644
index 9efa5097132..00000000000
--- a/modules/processing/parsers/plugxconfig/plugx.py
+++ /dev/null
@@ -1,365 +0,0 @@
-# PlugX config parser for CAPE
-#
-# Based on PlugX RAT detection and analysis for Volatility 2.0, version 1.2
-#
-# Author: Fabien Perigaud <fabien.perigaud@cassidian.com>
-#
-# Modified for CAPE by Kevin O'Reilly <kevin.oreilly@contextis.co.uk>
-#
-# This plugin is based on poisonivy.py by Andreas Schuster.
-#
-# This program is free software; you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation; either version 2 of the License, or (at
-# your option) any later version.
-#
-# This program is distributed in the hope that it will be useful, but
-# WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
-# General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program; if not, write to the Free Software
-# Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
-
-from __future__ import absolute_import
-import socket
-from struct import unpack_from, calcsize
-from socket import inet_ntoa
-from collections import defaultdict, OrderedDict
-
-try:
-    import yara
-
-    has_yara = True
-except ImportError:
-    has_yara = False
-
-
-class PlugXConfig:
-    """Locate and parse the PlugX configuration"""
-
-    persistence = defaultdict(lambda: "Unknown", {0: "Service + Run Key", 1: "Service", 2: "Run key", 3: "None"})
-    regs = defaultdict(
-        lambda: "Unknown",
-        {
-            0x80000000: "HKEY_CLASSES_ROOT",
-            0x80000001: "HKEY_CURRENT_USER",
-            0x80000002: "HKEY_LOCAL_MACHINE",
-            0x80000003: "HKEY_USERS",
-            0x80000005: "HKEY_CURRENT_CONFIG",
-        },
-    )
-
-    @staticmethod
-    def get_str_utf16le(buff):
-        tstrend = buff.find("\x00\x00")
-        tstr = buff[: tstrend + (tstrend & 1)]
-        return tstr.decode("utf_16le")
-
-    @staticmethod
-    def get_proto(proto):
-        ret = []
-        if proto & 0x1:
-            ret.append("TCP")
-        if proto & 0x2:
-            ret.append("HTTP")
-        if proto & 0x4:
-            ret.append("UDP")
-        if proto & 0x8:
-            ret.append("ICMP")
-        if proto & 0x10:
-            ret.append("DNS")
-        if proto > 0x1F:
-            ret.append("OTHER_UNKNOWN")
-        return " / ".join(ret)
-
-    @staticmethod
-    def get_proto2(proto):
-        protos = ["???", "???", "????", "TCP", "HTTP", "DNS", "UDP", "ICMP", "RAW", "???", "???"]
-        try:
-            ret = protos[proto] + "(%d)" % proto
-        except:
-            ret = "UNKNOWN (%d)" % proto
-        return ret
-
-    def parse_config(self, cfg_blob, cfg_sz):
-
-        config_output = OrderedDict()
-
-        if cfg_sz in (0xBE4, 0x150C, 0x1510, 0x170C, 0x1B18, 0x1D18, 0x2540, 0x254C, 0x2D58, 0x36A4, 0x4EA4):
-            if cfg_sz == 0x1510:
-                cfg_blob = cfg_blob[12:]
-            elif cfg_sz in (0x36A4, 0x4EA4):
-                cfg_blob = cfg_blob
-            else:
-                cfg_blob = cfg_blob[8:]
-
-            # Flags
-            if cfg_sz == 0xBE4:
-                desc = "<L"
-            elif cfg_sz in (0x36A4, 0x4EA4):
-                desc = "<10L"
-            else:
-                desc = "<11L"
-            flags = unpack_from(desc, cfg_blob)
-            cfg_blob = cfg_blob[calcsize(desc) :]
-            config_output.update({"Flags": (["%r" % (k != 0) for k in flags])})
-
-            # 2 timers
-            timer = unpack_from("4B", cfg_blob)
-            cfg_blob = cfg_blob[4:]
-            timer_str = ""
-            if timer[0] != 0:
-                timer_str += "%d days, " % timer[0]
-            if timer[1] != 0:
-                timer_str += "%d hours, " % timer[1]
-            if timer[2] != 0:
-                timer_str += "%d mins, " % timer[2]
-            timer_str += "%d secs" % timer[3]
-            config_output.update({"Timer 1": timer_str})
-            timer = unpack_from("4B", cfg_blob)
-            cfg_blob = cfg_blob[4:]
-            timer_str = ""
-            if timer[0] != 0:
-                timer_str += "%d days, " % timer[0]
-            if timer[1] != 0:
-                timer_str += "%d hours, " % timer[1]
-            if timer[2] != 0:
-                timer_str += "%d mins, " % timer[2]
-            timer_str += "%d secs" % timer[3]
-            config_output.update({"Timer 2": timer_str})
-
-            # Timetable
-            timetable = cfg_blob[:0x2A0]
-            cfg_blob = cfg_blob[0x2A0:]
-            space = False
-            for k in range(len(timetable)):
-                if timetable[k] != "\x01":
-                    space = True
-            if space:
-                config_output.update({"TimeTable": "Custom"})
-
-            # Custom DNS
-            (dns1, dns2, dns3, dns4) = unpack_from("<4L", cfg_blob)
-            custom_dns = cfg_blob[:0x10]
-            cfg_blob = cfg_blob[0x10:]
-            if dns1 not in (0, 0xFFFFFFFF):
-                config_output.update({"Custom DNS 1": inet_ntoa(custom_dns[:4])})
-            if dns2 not in (0, 0xFFFFFFFF):
-                config_output.update({"Custom DNS 2": inet_ntoa(custom_dns[4:8])})
-            if dns3 not in (0, 0xFFFFFFFF):
-                config_output.update({"Custom DNS 3": inet_ntoa(custom_dns[8:12])})
-            if dns4 not in (0, 0xFFFFFFFF):
-                config_output.update({"Custom DNS 4": inet_ntoa(custom_dns[12:16])})
-
-            # CC
-            num_cc = 4 if cfg_sz not in (0x36A4, 0x4EA4) else 16
-            get_proto = self.get_proto if cfg_sz not in (0x36A4, 0x4EA4) else self.get_proto2
-            cc_list = []
-            for k in range(num_cc):
-                (proto, cc_port, cc_address) = unpack_from("<2H64s", cfg_blob)
-                cfg_blob = cfg_blob[0x44:]
-                proto = get_proto(proto)
-                cc_address = cc_address.split("\x00")[0]
-                if cc_address != "":
-                    cc_list.append("%s:%d (%s)" % (str(cc_address), cc_port, proto))
-            if cc_list:
-                config_output.update({"C&C Address": cc_list})
-
-            # Additional URLs
-            num_url = 4 if cfg_sz not in (0x36A4, 0x4EA4) else 16
-            url_list = []
-            for k in range(num_url):
-                url = cfg_blob[:0x80].split("\x00")[0]
-                cfg_blob = cfg_blob[0x80:]
-                if len(url) > 0 and str(url) != "HTTP://":
-                    url_list.append(str(url))
-            if url_list:
-                config_output.update({"URL": url_list})
-
-            # Proxies
-            proxy_list = []
-            proxy_creds = []
-            for k in range(4):
-                ptype, port, proxy, user, passwd = unpack_from("<2H64s64s64s", cfg_blob)
-                cfg_blob = cfg_blob[calcsize("<2H64s64s64s") :]
-                if proxy[0] != "\x00":
-                    proxy_list.append("%s:%d" % (proxy.split("\x00")[0], port))
-                    if user[0] != "\x00":
-                        proxy_creds.append("%s / %s\0" % (user, passwd))
-            if proxy_list:
-                config_output.update({"Proxy": proxy_list})
-            if proxy_creds:
-                config_output.update({"Proxy credentials": proxy_creds})
-
-            str_sz = 0x80 if cfg_sz == 0xBE4 else 0x200
-
-            # Persistence
-            if cfg_sz in (0x1B18, 0x1D18, 0x2540, 0x254C, 0x2D58, 0x36A4, 0x4EA4):
-                persistence_type = unpack_from("<L", cfg_blob)[0]
-                cfg_blob = cfg_blob[4:]
-                persistence = self.persistence[persistence_type]
-                config_output.update({"Persistence Type": persistence})
-            install_dir = self.get_str_utf16le(cfg_blob[:str_sz])
-            cfg_blob = cfg_blob[str_sz:]
-            config_output.update({"Install Dir": install_dir.encode("ascii", "ignore")})
-            # Service
-            service_name = self.get_str_utf16le(cfg_blob[:str_sz])
-            cfg_blob = cfg_blob[str_sz:]
-            config_output.update({"Service Name": service_name.encode("ascii", "ignore")})
-            service_disp = self.get_str_utf16le(cfg_blob[:str_sz])
-            cfg_blob = cfg_blob[str_sz:]
-            config_output.update({"Service Disp": service_disp.encode("ascii", "ignore")})
-            service_desc = self.get_str_utf16le(cfg_blob[:str_sz])
-            cfg_blob = cfg_blob[str_sz:]
-            config_output.update({"Service Desc": service_desc.encode("ascii", "ignore")})
-            # Run key
-            if cfg_sz in (0x1B18, 0x1D18, 0x2540, 0x254C, 0x2D58, 0x36A4, 0x4EA4):
-                reg_hive = unpack_from("<L", cfg_blob)[0]
-                cfg_blob = cfg_blob[4:]
-                reg_key = self.get_str_utf16le(cfg_blob[:str_sz])
-                cfg_blob = cfg_blob[str_sz:]
-                reg_value = self.get_str_utf16le(cfg_blob[:str_sz])
-                cfg_blob = cfg_blob[str_sz:]
-                config_output.update({"Registry hive": self.regs[reg_hive].encode("ascii", "ignore")})
-                config_output.update({"Registry key": reg_key.encode("ascii", "ignore")})
-                config_output.update({"Registry value": reg_value.encode("ascii", "ignore")})
-
-            # Net injection
-            if cfg_sz in (0x1B18, 0x1D18, 0x2540, 0x254C, 0x2D58, 0x36A4, 0x4EA4):
-                inject = unpack_from("<L", cfg_blob)[0]
-                cfg_blob = cfg_blob[4:]
-                config_output.update({"Net injection": ("%r\0" % (inject == 1))})
-                i = 4 if cfg_sz in (0x2540, 0x254C, 0x2D58, 0x36A4, 0x4EA4) else 1
-                for k in range(i):
-                    inject_in = self.get_str_utf16le(cfg_blob[:str_sz])
-                    cfg_blob = cfg_blob[str_sz:]
-                    if inject_in != "":
-                        config_output.update({"Net injection process": inject_in.encode("ascii", "ignore")})
-
-            # Elevation injection
-            if cfg_sz in (0x2D58, 0x36A4, 0x4EA4):
-                inject = unpack_from("<L", cfg_blob)[0]
-                cfg_blob = cfg_blob[4:]
-                config_output.update({"Elevation injection": ("%r\0" % (inject == 1))})
-                for k in range(4):
-                    inject_in = self.get_str_utf16le(cfg_blob[:str_sz])
-                    cfg_blob = cfg_blob[str_sz:]
-                    if inject_in != "":
-                        config_output.update({"Elevation injection process": inject_in.encode("ascii", "ignore")})
-
-            # Memo / Pass / Mutex
-            if cfg_sz in (0xBE4, 0x150C, 0x1510, 0x170C, 0x1B18, 0x1D18, 0x2540, 0x254C, 0x2D58, 0x36A4, 0x4EA4):
-                online_pass = self.get_str_utf16le(cfg_blob[:str_sz])
-                cfg_blob = cfg_blob[str_sz:]
-                config_output.update({"Online Pass": online_pass.encode("ascii", "ignore")})
-                memo = self.get_str_utf16le(cfg_blob[:str_sz])
-                cfg_blob = cfg_blob[str_sz:]
-                config_output.update({"Memo": memo.encode("ascii", "ignore")})
-            if cfg_sz in (0x1D18, 0x2540, 0x254C, 0x2D58, 0x36A4, 0x4EA4):
-                mutex = self.get_str_utf16le(cfg_blob[:str_sz])
-                cfg_blob = cfg_blob[str_sz:]
-                config_output.update({"Mutex": mutex.encode("ascii", "ignore")})
-
-            if cfg_sz in (0x170C,):
-                app = self.get_str_utf16le(cfg_blob[:str_sz])
-                cfg_blob = cfg_blob[str_sz:]
-                config_output.update({"Application Name": app.encode("ascii", "ignore")})
-
-            # Screenshots
-            if cfg_sz in (0x2540, 0x254C, 0x2D58, 0x36A4, 0x4EA4):
-                (screenshots, freq, zoom, color, qual, days) = unpack_from("<6L", cfg_blob)
-                cfg_blob = cfg_blob[calcsize("<6L") :]
-                config_output.update({"Screenshots": ("%r\0" % (screenshots != 0))})
-                config_output.update(
-                    {"Screenshots params": ("%d sec / Zoom %d / %d bits / Quality %d / Keep %d days\0" % (freq, zoom, color, qual, days))}
-                )
-                screen_path = self.get_str_utf16le(cfg_blob[:str_sz])
-                cfg_blob = cfg_blob[str_sz:]
-                config_output.update({"Screenshots path": screen_path.encode("ascii", "ignore")})
-
-            # Lateral
-            if cfg_sz in (0x2540, 0x254C, 0x2D58, 0x36A4, 0x4EA4):
-                udp_enabled, udp_port, tcp_enabled, tcp_port = unpack_from("<4L", cfg_blob)
-                if tcp_enabled == 1:
-                    config_output.update({"Lateral movement TCP port": ("%d\0" % tcp_port)})
-                if udp_enabled == 1:
-                    config_output.update({"Lateral movement UDP port": ("%d\0" % udp_port)})
-                cfg_blob = cfg_blob[calcsize("<4L") :]
-
-            if cfg_sz in (0x254C, 0x2D58, 0x36A4, 0x4EA4):
-                icmp_enabled, icmp_port = unpack_from("<2L", cfg_blob)
-                if icmp_enabled == 1:
-                    config_output.update({"Lateral movement ICMP port (?)": ("%d\0" % icmp_port)})
-                cfg_blob = cfg_blob[calcsize("<2L") :]
-
-            if cfg_sz in (0x36A4, 0x4EA4):
-                protoff_enabled, protoff_port = unpack_from("<2L", cfg_blob)
-                if protoff_enabled == 1:
-                    config_output.update({"Lateral movement Protocol 0xff port (?)": ("%d\0" % protoff_port)})
-                cfg_blob = cfg_blob[calcsize("<2L") :]
-
-            if cfg_sz in (0x36A4, 0x4EA4):
-                (p2p_scan,) = unpack_from("<L", cfg_blob)
-                if p2p_scan != 0:
-                    config_output.update({"P2P Scan LAN range": ("%r\0" % True)})
-                cfg_blob = cfg_blob[calcsize("<L") :]
-                p2p_start = cfg_blob[: 4 * calcsize("<L")]
-                cfg_blob = cfg_blob[4 * calcsize("<L") :]
-                p2p_stop = cfg_blob[: 4 * calcsize("<L")]
-                cfg_blob = cfg_blob[4 * calcsize("<L") :]
-                for i in range(4):
-                    if p2p_start[i * calcsize("<L") : i * calcsize("<L") + calcsize("<L")] != "\0\0\0\0":
-                        config_output.update(
-                            {
-                                "P2P Scan range %d start": (
-                                    i,
-                                    socket.inet_ntoa(p2p_start[i * calcsize("<L") : i * calcsize("<L") + calcsize("<L")]),
-                                )
-                            }
-                        )
-                        config_output.update(
-                            {
-                                "P2P Scan range %d stop": (
-                                    i,
-                                    socket.inet_ntoa(p2p_stop[i * calcsize("<L") : i * calcsize("<L") + calcsize("<L")]),
-                                )
-                            }
-                        )
-
-            if cfg_sz in (0x36A4, 0x4EA4):
-                mac_addr = cfg_blob[:6]
-                if mac_addr != "\0\0\0\0\0\0":
-                    config_output.update({"Mac Address black list": ("%02x" % k for k in mac_addr)})
-                cfg_blob = cfg_blob[6:]
-
-            if cfg_sz in (0x4EA4,):
-                process_list = []
-                for k in range(8):
-                    process_name = self.get_str_utf16le(cfg_blob[:0x100])
-                    cfg_blob = cfg_blob[0x100:]
-                    if process_name != "":
-                        process_list.append(process_name.encode("ascii", "ignore"))
-                if process_list:
-                    config_output.update({"Process black list": process_list})
-                file_list = []
-                for k in range(8):
-                    file_name = self.get_str_utf16le(cfg_blob[:0x100])
-                    cfg_blob = cfg_blob[0x100:]
-                    if process_name != "":
-                        file_list.append(file_name.encode("ascii", "ignore"))
-                if file_list:
-                    config_output.update({"File black list": file_list})
-                reg_list = []
-                for k in range(8):
-                    reg_name = self.get_str_utf16le(cfg_blob[:0x100])
-                    cfg_blob = cfg_blob[0x100:]
-                    if process_name != "":
-                        reg_list.append(reg_name.encode("ascii", "ignore"))
-                if reg_list:
-                    config_output.update({"Registry black list": reg_list})
-        else:
-            return None
-
-        return config_output
diff --git a/modules/processing/pcapng.py b/modules/processing/pcapng.py
new file mode 100644
index 00000000000..351cd76679d
--- /dev/null
+++ b/modules/processing/pcapng.py
@@ -0,0 +1,33 @@
+import logging
+
+from lib.cuckoo.common.abstracts import Processing
+from lib.cuckoo.common.objects import File
+from lib.cuckoo.common.pcap_utils import PcapToNg, file_exists_not_empty, is_pcapng
+from pathlib import Path
+
+log = logging.getLogger(__name__)
+
+
+class PcapNg(Processing):
+    """Generate a pcapng file during processing."""
+
+    key = "pcapng"
+
+    def set_path(self, analysis_path: str) -> None:
+        """Set paths.
+        @param analysis_path: analysis folder path.
+        """
+        super().set_path(analysis_path)
+        self.tlsdump_log = Path(analysis_path) / "tlsdump" / "tlsdump.log"
+        self.sslkeys_log = Path(analysis_path) / "aux" / "sslkeylogfile" / "sslkeys.log"
+        self.pcapng_path = Path(self.pcap_path + "ng")
+
+    def run(self) -> dict[str, str | None]:
+        PcapToNg(self.pcap_path, self.tlsdump_log, self.sslkeys_log).generate(self.pcapng_path)
+        if not file_exists_not_empty(self.pcapng_path):
+            log.warning("pcapng file was not created: %s", self.pcapng_path)
+            return {}
+        if not is_pcapng(self.pcapng_path):
+            log.warning("generated pcapng file is not valid: %s", self.pcapng_path)
+            return {}
+        return {"sha256": File(str(self.pcapng_path)).get_sha256()}
diff --git a/modules/processing/platform/linux.py b/modules/processing/platform/linux.py
index e216c7fc777..eabc83dfbe8 100644
--- a/modules/processing/platform/linux.py
+++ b/modules/processing/platform/linux.py
@@ -3,13 +3,15 @@
 # See the file 'docs/LICENSE' for copying permission.
 
 import datetime
-import dateutil.parser
-import os
 import logging
+import os
 import re
 from functools import reduce
 
+import dateutil.parser
+
 from lib.cuckoo.common.abstracts import BehaviorHandler
+from lib.cuckoo.common.path_utils import path_exists
 
 log = logging.getLogger(__name__)
 
@@ -50,11 +52,12 @@ def __init__(self, *args, **kwargs):
 
     def _check_for_probelkm(self):
         path_lkm = os.path.join(self.analysis.logs_path, "all.lkm")
-        if os.path.exists(path_lkm):
-            lines = open(path_lkm).readlines()
+        if path_exists(path_lkm):
+            with open(path_lkm) as f:
+                lines = f.readlines()
 
-            forks = [re.findall("task (\d+)@0x[0-9a-f]+ forked to (\d+)@0x[0-9a-f]+", line) for line in lines]
-            self.forkmap = dict((j, i) for i, j in reduce(lambda x, y: x + y, forks, []))
+            forks = [re.findall(r"task (\d+)@0x[0-9a-f]+ forked to (\d+)@0x[0-9a-f]+", line) for line in lines]
+            self.forkmap = {j: i for i, j in reduce(lambda x, y: x + y, forks, [])}
 
             # self.results["source"].append("probelkm")
 
@@ -112,18 +115,20 @@ def __init__(self, *args, **kwargs):
         self._check_for_straceds()
 
     def _check_for_straceds(self):
-        if os.path.exists(self.analysis.logs_path):
-            for path in os.listdir(self.analysis.logs_path):
-                if path.startswith("straced.") and path != "straced.error":
-                    current_pid = path.replace("straced.", "")
-                    path_straced = os.path.join(self.analysis.logs_path, path)
-                    if os.path.exists(path_straced):
-                        lines = open(path_straced).readlines()
-                        # get pid from filename and add fork one
-                        forks = [re.findall("fork\(\)\s+= (\d+)", line) for line in lines]
-                        if forks:
-                            # strace is multiple files not only one as systemtap
-                            self.forkmap.update(dict((i, current_pid) for i in reduce(lambda x, y: x + y, forks, [])))
+        if not path_exists(self.analysis.logs_path):
+            return
+        for path in os.listdir(self.analysis.logs_path):
+            if path.startswith("straced.") and path != "straced.error":
+                current_pid = path.replace("straced.", "")
+                path_straced = os.path.join(self.analysis.logs_path, path)
+                if path_exists(path_straced):
+                    with open(path_straced) as f:
+                        lines = f.readlines()
+                    # get pid from filename and add fork one
+                    forks = [re.findall(r"fork\(\)\s+= (\d+)", line) for line in lines]
+                    if forks:
+                        # strace is multiple files not only one as systemtap
+                        self.forkmap.update({i: current_pid for i in reduce(lambda x, y: x + y, forks, [])})
 
     def handles_path(self, path):
         path = os.path.basename(path)
@@ -164,7 +169,7 @@ def run(self):
         return self.processes
 
 
-class StraceParser(object):
+class StraceParser:
     """Handle strace logs from the Linux analyzer."""
 
     def __init__(self, path):
@@ -173,9 +178,9 @@ def __init__(self, path):
 
     def __iter__(self):
         self.fd.seek(0)
-        pid = os.path.basename(self.path).split(".")[1]
+        pid = os.path.basename(self.path).split(".", 2)[1]
         for line in self.fd:
-            parts = re.match("^(\w+)\((.*)\)[ ]{1,}=? ([-]?\d)", line)
+            parts = re.match(r"^(\w+)\((.*)\)[ ]{1,}=? ([-]?\d)", line)
             if not parts:
                 # log.warning("Could not parse syscall trace line: %s", line.strip())
                 continue
@@ -183,23 +188,22 @@ def __iter__(self):
             fn, arguments, retval = parts.groups()
             """
             if fn in SOCKET_SYSCALL_NAMES:
-                print "network", fn
+                print("network", fn)
             elif fn in SOCKET_SYSCALL_FILESYSTEM_NAMES:
-                print "filesystem", fn
+                print("filesystem", fn)
             elif fn in SOCKET_SYSCALL_PROCESS_NAMES:
-                print "process", fn
+                print("process", fn)
             """
 
             argsplit = arguments.split(", ")
-            tmp_argslist = list()
-            for pos in range(len(argsplit)):
-                if argsplit[pos].startswith("{"):
-                    argsplit[pos] = argsplit[pos][1:]
-                if argsplit[pos].endswith("}"):
-                    argsplit[pos] = argsplit[pos][:-1]
+            tmp_argslist = []
+            for pos, arg in enumerate(argsplit):
+                if arg.startswith("{"):
+                    argsplit[pos] = arg[1:]
+                if arg.endswith("}"):
+                    argsplit[pos] = arg[:-1]
                 tmp_argslist.append(argsplit[pos])
-            arguments = dict(("p%u" % pos, tmp_argslist[pos]) for pos in range(len(tmp_argslist)))
-            # print {"time": datetime.datetime.now(), "process_name": "", "pid": pid, "instruction_pointer": None, "api": fn, "arguments": arguments, "return_value": retval, "status": None, "type": "apicall", "raw": line}
+            arguments = {f"p{pos}": tmp_arg for pos, tmp_arg in enumerate(tmp_argslist)}
             yield {
                 "time": datetime.datetime.now(),
                 "process_name": "",
@@ -214,7 +218,7 @@ def __iter__(self):
             }
 
 
-class StapParser(object):
+class StapParser:
     """Handle .stap logs from the Linux analyzer."""
 
     def __init__(self, fd):
@@ -275,8 +279,7 @@ def parse_arg(self, argstr):
             return self.parse_array(argstr)
         elif self.is_string(argstr):
             return self.parse_string(argstr)
-        else:
-            return argstr
+        return argstr
 
     def parse_array(self, argstr):
         return [self.parse_arg(a) for a in argstr.lstrip("[").split(", ")]
diff --git a/modules/processing/polarproxy.py b/modules/processing/polarproxy.py
new file mode 100644
index 00000000000..26a03f4e4d0
--- /dev/null
+++ b/modules/processing/polarproxy.py
@@ -0,0 +1,90 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+# Imports for the batch sort.
+# http://stackoverflow.com/questions/10665925/how-to-sort-huge-files-with-python
+# http://code.activestate.com/recipes/576755/
+
+import logging
+import os
+import shutil
+import subprocess
+import sys
+import tempfile
+
+
+from lib.cuckoo.common.abstracts import Processing
+from lib.cuckoo.common.config import Config
+from lib.cuckoo.common.objects import File
+from lib.cuckoo.common.path_utils import path_exists
+
+# required to work webgui
+CUCKOO_ROOT = os.path.join(os.path.abspath(os.path.dirname(__file__)), "..", "..")
+sys.path.append(CUCKOO_ROOT)
+
+log = logging.getLogger(__name__)
+cfg = Config()
+polarproxy_cfg = Config("polarproxy")
+
+
+def run_subprocess(command_args, shell=False):
+    """Execute the subprocess, wait for completion.
+
+    Return the exitcode (returncode), the stdout, and the stderr.
+    """
+    p = subprocess.Popen(
+        args=command_args,
+        shell=shell,
+        stdout=subprocess.PIPE,
+        stderr=subprocess.PIPE,
+    )
+    stdout, stderr = p.communicate()
+    return p.returncode, stdout, stderr
+
+
+class PolarProxyProcessor(Processing):
+    """Network analysis."""
+
+    key = "polarproxy"
+    order = 1
+
+    def run(self):
+        if not path_exists(self.pcap_path):
+            log.debug('The PCAP file does not exist at path "%s"', self.pcap_path)
+            return {}
+
+        tls_pcap_path = os.path.join(self.analysis_path, "polarproxy", "tls.pcap")
+        if not path_exists(tls_pcap_path):
+            log.debug('The TLS PCAP file does not exist at path "%s"', tls_pcap_path)
+            return {}
+
+        if not path_exists(polarproxy_cfg.cfg.mergecap):
+            log.debug('The mergecap application does not exist at path "%s"', polarproxy_cfg.cfg.mergecap)
+            return {}
+
+        temp_dir = tempfile.TemporaryDirectory()
+
+        tmp_pcap = os.path.join(temp_dir.name, "tmp.pcap")
+
+        ret, stdout, stderr = run_subprocess([
+            polarproxy_cfg.cfg.mergecap,
+            # Make snaplen consistent across all packets so wireshark doesn't freak out
+            "-s", "262144",
+            # Use pcap format instead of pcapng for Snort
+            "-F", "pcap",
+            # Destination file
+            "-w", tmp_pcap,
+            # Input files
+            self.pcap_path,
+            tls_pcap_path
+        ])
+
+        if ret == 0:
+            log.info("Creating PCAP with decrypted TLS streams")
+            shutil.move(tmp_pcap, self.pcap_path)
+        else:
+            log.warning("Failed to merge pcaps: %s", stderr.decode())
+
+        results = {"pcap_sha256": File(self.pcap_path).get_sha256()}
+        return results
diff --git a/modules/processing/procdump.py b/modules/processing/procdump.py
deleted file mode 100644
index 6a4e72f25f8..00000000000
--- a/modules/processing/procdump.py
+++ /dev/null
@@ -1,110 +0,0 @@
-# Copyright (C) 2010-2015 Cuckoo Foundation.
-# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
-# See the file 'docs/LICENSE' for copying permission.
-
-from __future__ import absolute_import
-import os
-import json
-from datetime import datetime
-from lib.cuckoo.common.abstracts import Processing
-from lib.cuckoo.common.objects import File
-from lib.cuckoo.common.config import Config
-from lib.cuckoo.common.utils import convert_to_printable
-
-from lib.cuckoo.common.cape_utils import cape_name_from_yara
-processing_conf = Config("processing")
-
-HAVE_FLARE_CAPA = False
-# required to not load not enabled dependencies
-if processing_conf.flare_capa.enabled and processing_conf.flare_capa.on_demand is False:
-    from lib.cuckoo.common.integrations.capa import flare_capa_details, HAVE_FLARE_CAPA
-
-processing_conf = Config("processing")
-
-class ProcDump(Processing):
-    """ProcDump files analysis."""
-
-    def run(self):
-        """Run analysis.
-        @return: list of process dumps with related information.
-        """
-        self.key = "procdump"
-        procdump_files = []
-        buf = self.options.get("buffer", 8192)
-        if not os.path.exists(self.procdump_path):
-            return None
-
-        meta = dict()
-        if os.path.exists(self.files_metadata):
-            for line in open(self.files_metadata, "rb"):
-                entry = json.loads(line)
-                filepath = os.path.join(self.analysis_path, entry["path"])
-                meta[filepath] = {
-                    "pids": entry["pids"],
-                    "filepath": entry["filepath"],
-                    "metadata": entry["metadata"],
-                }
-
-        file_names = os.listdir(self.procdump_path)
-        for file_name in file_names:
-            file_path = os.path.join(self.procdump_path, file_name)
-            if not meta.get(file_path):
-                continue
-            file_info, pefile_object = File(file_path=file_path, guest_paths=meta[file_path]["metadata"], file_name=file_name).get_all()
-            if pefile_object:
-                self.results.setdefault("pefiles", {})
-                self.results["pefiles"].setdefault(file_info["sha256"], pefile_object)
-            metastrings = meta[file_path].get("metadata", "").split(";?")
-            if len(metastrings) < 3:
-                continue
-            file_info["process_path"] = metastrings[1]
-            file_info["module_path"] = metastrings[2]
-            file_info["process_name"] = file_info["process_path"].split("\\")[-1]
-            file_info["pid"] = meta[file_path]["pids"][0]
-            type_strings = file_info["type"].split()
-            if len(type_strings) < 3:
-                continue
-            if type_strings[0] == "MS-DOS":
-                file_info["cape_type"] = "DOS MZ image: executable"
-            else:
-                file_info["cape_type"] = "PE image"
-                if type_strings[0] == ("PE32+"):
-                    file_info["cape_type"] += ": 64-bit "
-                elif type_strings[0] == ("PE32"):
-                    file_info["cape_type"] += ": 32-bit "
-                if type_strings[2] == ("(DLL)"):
-                    file_info["cape_type"] += "DLL"
-                else:
-                    file_info["cape_type"] += "executable"
-            texttypes = [
-                "ASCII",
-                "Windows Registry text",
-                "XML document text",
-                "Unicode text",
-            ]
-            readit = False
-            for texttype in texttypes:
-                if texttype in file_info["type"]:
-                    readit = True
-                    break
-            if readit:
-                with open(file_info["path"], "r") as drop_open:
-                    filedata = drop_open.read(buf + 1)
-                if len(filedata) > buf:
-                    file_info["data"] = convert_to_printable(filedata[:buf] + " <truncated>")
-                else:
-                    file_info["data"] = convert_to_printable(filedata)
-
-            if file_info["pid"]:
-                _ = cape_name_from_yara(file_info, file_info["pid"], self.results)
-
-            if HAVE_FLARE_CAPA:
-                pretime = datetime.now()
-                capa_details = flare_capa_details(file_path, "procdump")
-                if capa_details:
-                    file_info["flare_capa"] = capa_details
-                self.add_statistic_tmp("flare_capa", "time", pretime)
-
-            procdump_files.append(file_info)
-
-        return procdump_files
diff --git a/modules/processing/procmemory.py b/modules/processing/procmemory.py
index 11f67fc43a9..2605e575fc1 100644
--- a/modules/processing/procmemory.py
+++ b/modules/processing/procmemory.py
@@ -1,26 +1,27 @@
-from __future__ import absolute_import
-
 # Copyright (C) 2010-2015 Cuckoo Foundation.
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-
+import logging
 import os
 
+from lib.cuckoo.common.abstracts import Processing
+from lib.cuckoo.common.cape_utils import cape_name_from_yara
+from lib.cuckoo.common.config import Config
+from lib.cuckoo.common.objects import File, ProcDump
+from lib.cuckoo.common.path_utils import path_exists, path_write_file
+from lib.cuckoo.common.utils import add_family_detection
+
+processing_conf = Config("processing")
+
+log = logging.getLogger(__name__)
+
 try:
-    import re2 as re
+    import re2  # noqa: F401
 
     HAVE_RE2 = True
 except ImportError:
     HAVE_RE2 = False
-    import re
-
-import logging
-from lib.cuckoo.common.abstracts import Processing
-from lib.cuckoo.common.objects import File, ProcDump
-from lib.cuckoo.common.cape_utils import cape_name_from_yara
-
-log = logging.getLogger(__name__)
 
 
 class ProcessMemory(Processing):
@@ -29,28 +30,26 @@ class ProcessMemory(Processing):
     order = 10
 
     def get_procmemory_pe(self, mem_pe):
-        res = list()
-        file_item = open(mem_pe.get("file"), "rb")
-
-        for memmap in mem_pe.get("address_space") or []:
-            if not memmap.get("PE"):
-                continue
-            data = b""
-            for chunk in memmap["chunks"]:
-                if int(chunk["start"], 16) >= int(memmap["start"], 16) and int(chunk["end"], 16) <= int(memmap["end"], 16):
-                    file_item.seek(chunk["offset"])
-                    data += file_item.read(int(chunk["size"], 16))
-
-            # save pe to disk
-            path = os.path.join(self.pmemory_path, "{}_{}".format(mem_pe["pid"], memmap["start"]))
-            with open(path, "wb") as f:
-                f.write(data)
-
-            data, pefile_object = File(path).get_all()
-            if pefile_object:
-                self.results.setdefault("pefiles", {})
-                self.results["pefiles"].setdefault(data["sha256"], pefile_object)
-            res.append(data)
+        res = []
+        with open(mem_pe.get("path"), "rb") as file_item:
+            for memmap in mem_pe.get("address_space") or []:
+                if not memmap.get("PE"):
+                    continue
+                data = b""
+                for chunk in memmap["chunks"]:
+                    if int(chunk["start"], 16) >= int(memmap["start"], 16) and int(chunk["end"], 16) <= int(memmap["end"], 16):
+                        file_item.seek(chunk["offset"])
+                        data += file_item.read(int(chunk["size"], 16))
+
+                # save pe to disk
+                path = os.path.join(self.pmemory_path, f"{mem_pe['pid']}_{memmap['start']}")
+                _ = path_write_file(path, data)
+
+                data, pefile_object = File(path).get_all()
+                if pefile_object:
+                    self.results.setdefault("pefiles", {})
+                    self.results["pefiles"].setdefault(data["sha256"], pefile_object)
+                res.append(data)
         return res
 
     def get_yara_memblock(self, addr_space, yaraoffset):
@@ -66,7 +65,6 @@ def get_yara_memblock(self, addr_space, yaraoffset):
                         return lastmemmap["start"]
                 lastoffset = offset
             lastmemmap = memmap
-        return
 
     def run(self):
         """Run analysis.
@@ -76,9 +74,9 @@ def run(self):
         results = []
         do_strings = self.options.get("strings", False)
         nulltermonly = self.options.get("nullterminated_only", True)
-        minchars = str(self.options.get("minchars", 5)).encode("utf-8")
+        minchars = str(self.options.get("minchars", 5)).encode()
 
-        if os.path.exists(self.pmemory_path):
+        if path_exists(self.pmemory_path):
             for dmp in os.listdir(self.pmemory_path):
                 # if we're re-processing this task, this means if zips are enabled, we won't do any reprocessing on the
                 # process dumps (only matters for now for Yara)
@@ -93,7 +91,7 @@ def run(self):
                 process_name = ""
                 process_path = ""
                 process_id = int(os.path.splitext(os.path.basename(dmp_path))[0])
-                for process in self.results.get("behavior", {}).get("processes", []) or []:
+                for process in self.results.get("behavior", {}).get("processes", []):
                     if process_id == process["process_id"]:
                         process_name = process["process_name"]
                         process_path = process["module_path"]
@@ -101,17 +99,18 @@ def run(self):
                 procdump = ProcDump(dmp_path, pretty=True)
 
                 proc = dict(
-                    file=dmp_path,
+                    path=dmp_path,
+                    sha256=dmp_file.get_sha256(),
                     pid=process_id,
                     name=process_name,
-                    path=process_path,
+                    proc_path=process_path,
                     yara=dmp_file.get_yara(category="memory"),
                     cape_yara=dmp_file.get_yara(category="CAPE"),
                     address_space=procdump.pretty_print(),
                 )
 
                 for hit in proc["cape_yara"]:
-                    hit["memblocks"] = dict()
+                    hit["memblocks"] = {}
                     for item in hit["addresses"]:
                         memblock = self.get_yara_memblock(proc["address_space"], hit["addresses"][item])
                         if memblock:
@@ -120,10 +119,7 @@ def run(self):
                 # if self.options.get("extract_pe", False)
                 extracted_pes = self.get_procmemory_pe(proc)
 
-                endlimit = b""
-                if not HAVE_RE2:
-                    endlimit = b"8192"
-
+                endlimit = b"" if HAVE_RE2 else b"8192"
                 if do_strings:
                     if nulltermonly:
                         apat = b"([\x20-\x7e]{" + minchars + b"," + endlimit + b"})\x00"
@@ -137,18 +133,16 @@ def run(self):
                     matchdict = procdump.search(upat, all=True)
                     ustrings = matchdict["matches"]
                     for ws in ustrings:
-                        strings.append(ws.decode("utf-16le").encode("utf-8"))
+                        strings.append(ws.decode("utf-16le").encode())
 
-                    proc["strings_path"] = dmp_path + ".strings"
+                    proc["strings_path"] = f"{dmp_path}.strings"
                     proc["extracted_pe"] = extracted_pes
-                    f = open(proc["strings_path"], "wb")
-                    f.write(b"\n".join(strings))
-                    f.close()
-
+                    _ = path_write_file(proc["strings_path"], b"\n".join(strings))
                 procdump.close()
                 results.append(proc)
 
-                cape_name = cape_name_from_yara(proc, process_id, self.results)
-                if  cape_name and "detections" not in self.results:
-                    self.results["detections"] = cape_name
+                if processing_conf.detections.yara:
+                    cape_name = cape_name_from_yara(proc, process_id, self.results)
+                    if cape_name:
+                        add_family_detection(self.results, cape_name, "Yara", proc["sha256"])
         return results
diff --git a/modules/processing/procmon.py b/modules/processing/procmon.py
index 293c5fc0f16..6383d9d5687 100644
--- a/modules/processing/procmon.py
+++ b/modules/processing/procmon.py
@@ -6,6 +6,7 @@
 import xml.etree.ElementTree
 
 from lib.cuckoo.common.abstracts import Processing
+from lib.cuckoo.common.path_utils import path_exists
 
 
 class ProcmonLog(list):
@@ -21,10 +22,7 @@ def __next__(self):
             if element.tag != "event":
                 continue
 
-            entry = {}
-            for child in element.getchildren():
-                entry[child.tag] = child.text
-            yield entry
+            yield {child.tag: child.text for child in element.getchildren()}
 
     def __nonzero__(self):
         # For documentation on this please refer to MonitorProcessLog.
@@ -36,8 +34,8 @@ class Procmon(Processing):
 
     def run(self):
         self.key = "procmon"
-        procmon_xml = os.path.join(self.analysis_path, "procmon.xml")
-        if not os.path.exists(procmon_xml):
+        procmon_xml = os.path.join(self.analysis_path, "aux/procmon.xml")
+        if not path_exists(procmon_xml):
             return
 
         return ProcmonLog(procmon_xml)
diff --git a/modules/processing/reversinglabs.py b/modules/processing/reversinglabs.py
new file mode 100644
index 00000000000..a55a838f523
--- /dev/null
+++ b/modules/processing/reversinglabs.py
@@ -0,0 +1,131 @@
+import json
+import logging
+import os
+
+import requests
+
+from lib.cuckoo.common.abstracts import Processing
+from lib.cuckoo.common.config import Config
+from lib.cuckoo.common.exceptions import CuckooProcessingError
+from lib.cuckoo.common.objects import File
+
+processing_conf = Config("processing")
+
+log = logging.getLogger(__name__)
+
+
+def reversing_labs_lookup(target: str, is_hash: bool = False):
+    _headers = {
+        "User-Agent": "CAPE Sandbox",
+        "Content-Type": "application/json",
+        "Authorization": f"Token {processing_conf.reversinglabs.key}",
+    }
+
+    report_fields = [
+        "id",
+        "sha1",
+        "sha256",
+        "sha512",
+        "md5",
+        "category",
+        "file_type",
+        "file_subtype",
+        "identification_name",
+        "identification_version",
+        "file_size",
+        "extracted_file_count",
+        "local_first_seen",
+        "local_last_seen",
+        "classification_origin",
+        "classification_reason",
+        "classification_source",
+        "classification",
+        "riskscore",
+        "classification_result",
+        "ticore",
+        "tags",
+        "summary",
+        "discussion",
+        "ticloud",
+        "aliases",
+    ]
+    if not is_hash:
+        sha256 = target if len(target) == 64 else File(target).get_sha256()
+    else:
+        sha256 = target
+    full_report_lookup = {"hash_values": [sha256], "report_fields": report_fields}
+    try:
+        r = requests.post(
+            url=processing_conf.reversinglabs.url + "/api/samples/v2/list/details/",
+            headers=_headers,
+            data=json.dumps(full_report_lookup),
+        )
+    except requests.exceptions.RequestException as e:
+        return {
+            "error": True,
+            "msg": f"Unable to complete connection to Reversing Labs: {e}",
+        }
+
+    reversing_labs_response = r.json()
+    if r.status_code != 200:
+        return {
+            "error": True,
+            "msg": f"Unable to complete lookup to Reversing Labs: {r.json().get('message')}",
+        }
+    if not reversing_labs_response.get("results"):
+        return {"error": True, "msg": "No results found."}
+    results = reversing_labs_response["results"][0]
+    # most_recent_scan_engines = results["av_scanners"][-1]
+
+    scanner_summary = results["av_scanners_summary"]
+    sample_summary = results["sample_summary"]
+    ticloud = results["ticloud"]
+    ticore = results["ticore"]
+
+    scanner_total = scanner_summary["scanner_count"]
+    scanner_evil = scanner_summary["scanner_match"]
+    classification = sample_summary["classification"]
+    classification_result = sample_summary["classification_result"]
+    file = ticore["info"]["file"]
+    malicious = classification in ("malicious", "suspicious") and sample_summary["goodware_override"] is False
+    md5 = sample_summary["md5"]
+    sha1 = sample_summary["sha1"]
+    sha256 = sample_summary["sha256"]
+    riskscore = ticloud["riskscore"]
+    name = file["proposed_filename"]
+    # entropy = file["entropy"]
+    story = ticore["story"]
+
+    reversing_labs = {
+        "name": name,
+        "md5": md5,
+        "sha1": sha1,
+        "sha256": sha256,
+        "malicious": malicious,
+        "classification": classification,
+        "classification_result": classification_result,
+        "riskscore": riskscore,
+        "detected": scanner_evil,
+        "total": scanner_total,
+        "story": story,
+        "permalink": os.path.join(processing_conf.reversinglabs.url, sha256),
+    }
+
+    return reversing_labs
+
+
+class ReversingLabs(Processing):
+    def run(self):
+        self.key = "reversinglabs"
+
+        if not processing_conf.reversinglabs.key:
+            raise CuckooProcessingError("ReversingLabs API key not configured, skipping")
+        if self.task["category"] not in ("file", "static"):
+            return {}
+
+        target = self.task["target"]
+        log.debug("Looking up: %s", target)
+        reversing_labs_response = reversing_labs_lookup(target)
+        if "error" in reversing_labs_response:
+            raise CuckooProcessingError(reversing_labs_response["msg"])
+        return reversing_labs_response
diff --git a/modules/processing/script_log_processing.py b/modules/processing/script_log_processing.py
new file mode 100644
index 00000000000..446a5da0f28
--- /dev/null
+++ b/modules/processing/script_log_processing.py
@@ -0,0 +1,39 @@
+import glob
+import logging
+import os
+
+from lib.cuckoo.common.abstracts import Processing
+from lib.cuckoo.common.path_utils import path_read_file
+
+log = logging.getLogger()
+
+
+class script_log_processing(Processing):
+    """
+    Output reads output of script from logs
+    Adds to report.json to be viewed on the web
+    """
+
+    # To tell CAPE to run this after first round of processing is done
+    order = 2
+
+    def run(self):
+        self.key = "debug"  # uses the existing "static" sub container to add in the overlay data
+        output = self.results["debug"]
+
+        # Extract out the overlay data
+
+        for file_path in glob.glob(os.path.join(self.logs_path, "*script.log")):
+            file_name = os.path.basename(file_path)
+            try:
+                log.info("Processing File: %s", file_path)
+                file_data = path_read_file(file_path, mode="text")
+                if file_name == "pre_script.log":
+                    output["pre_script_log"] = file_data
+                elif file_name == "during_script.log":
+                    output["during_script_log"] = file_data
+
+            except Exception as e:
+                log.error(e)
+
+        return output
diff --git a/modules/processing/static.py b/modules/processing/static.py
deleted file mode 100644
index f78e5607a03..00000000000
--- a/modules/processing/static.py
+++ /dev/null
@@ -1,2684 +0,0 @@
-# Copyright (C) 2010-2015 Cuckoo Foundation, Optiv, Inc. (brad.spengler@optiv.com)
-# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
-# See the file 'docs/LICENSE' for copying permission.
-
-from __future__ import absolute_import
-from __future__ import print_function
-import json
-import logging
-import os
-import re
-import math
-import array
-import ctypes
-import struct
-import base64
-import hashlib
-import requests
-import binascii
-import re2 as re
-from PIL import Image
-from io import BytesIO
-from subprocess import Popen, PIPE
-from datetime import datetime
-
-try:
-    import bs4
-
-    HAVE_BS4 = True
-except ImportError:
-    HAVE_BS4 = False
-
-try:
-    import magic
-
-    HAVE_MAGIC = True
-except ImportError:
-    HAVE_MAGIC = False
-
-try:
-    import pefile
-
-    HAVE_PEFILE = True
-except ImportError:
-    HAVE_PEFILE = False
-
-try:
-    import v8py
-
-    HAVE_V8PY = True
-except ImportError:
-    HAVE_V8PY = False
-
-try:
-    import cryptography
-    from cryptography.hazmat.backends.openssl.backend import backend
-    from cryptography.hazmat.backends.openssl import x509
-    from cryptography.hazmat.primitives import hashes
-
-    HAVE_CRYPTO = True
-except ImportError:
-    HAVE_CRYPTO = False
-    print("Missed cryptography library: pip3 install cryptography")
-
-try:
-    from whois import whois
-    HAVE_WHOIS = True
-except:
-    HAVE_WHOIS = False
-
-from lib.cuckoo.common.structures import LnkHeader, LnkEntry
-from lib.cuckoo.common.utils import store_temp_file, bytes2str, get_options
-from lib.cuckoo.common.icon import PEGroupIconDir
-from lib.cuckoo.common.abstracts import Processing
-from lib.cuckoo.common.constants import CUCKOO_ROOT
-from lib.cuckoo.common.objects import File, IsPEImage
-from lib.cuckoo.common.config import Config
-from lib.cuckoo.common.objects import File
-import lib.cuckoo.common.office.vbadeobf as vbadeobf
-
-try:
-    import olefile
-
-    HAVE_OLEFILE = True
-except ImportError:
-    HAVE_OLEFILE = False
-    print("Missed olefile dependency: pip3 install olefile")
-
-try:
-    from oletools import oleobj
-    from oletools.oleid import OleID
-    from oletools.olevba import detect_autoexec, detect_hex_strings, detect_patterns, detect_suspicious, filter_vba, VBA_Parser, UnexpectedDataError
-    from oletools.rtfobj import is_rtf, RtfObjParser
-    from oletools.msodde import process_file as extract_dde
-
-    HAVE_OLETOOLS = True
-except ImportError:
-    print("Missed oletools dependency: pip3 install oletools")
-    HAVE_OLETOOLS = False
-
-from lib.cuckoo.common.utils import convert_to_printable
-from lib.cuckoo.common.pdftools.pdfid import PDFiD, PDFiD2JSON
-
-try:
-    from peepdf.PDFCore import PDFParser
-    from peepdf.JSAnalysis import analyseJS
-
-    HAVE_PEEPDF = True
-except ImportError as e:
-    HAVE_PEEPDF = False
-
-try:
-    HAVE_XLM_DEOBF = True
-    from XLMMacroDeobfuscator.deobfuscator import process_file as XLMMacroDeobf
-except ImportError:
-    print("Missed dependey XLMMacroDeobfuscator: pip3 install git+https://github.com/DissectMalware/XLMMacroDeobfuscator.git")
-    HAVE_XLM_DEOBF = False
-
-try:
-    from elftools.common.exceptions import ELFError
-    from elftools.elf.constants import E_FLAGS
-    from elftools.elf.descriptions import (
-        describe_ei_class, describe_ei_data, describe_ei_version,
-        describe_ei_osabi, describe_e_type, describe_e_machine,
-        describe_e_version_numeric, describe_p_type, describe_p_flags,
-        describe_sh_type, describe_dyn_tag, describe_symbol_type,
-        describe_symbol_bind, describe_note, describe_reloc_type
-    )
-    from elftools.elf.dynamic import DynamicSection
-    from elftools.elf.elffile import ELFFile
-    from elftools.elf.enums import ENUM_D_TAG
-    from elftools.elf.relocation import RelocationSection
-    from elftools.elf.sections import SymbolTableSection
-    from elftools.elf.segments import NoteSegment
-except ImportError:
-    ELFFile = False
-
-processing_conf = Config("processing")
-
-HAVE_FLARE_CAPA = False
-# required to not load not enabled dependencies
-if processing_conf.flare_capa.enabled and processing_conf.flare_capa.on_demand is False:
-    from lib.cuckoo.common.integrations.capa import flare_capa_details, HAVE_FLARE_CAPA
-
-HAVE_VBA2GRAPH = False
-if processing_conf.vba2graph.on_demand is False:
-    from lib.cuckoo.common.integrations.vba2graph import vba2graph_func, HAVE_VBA2GRAPH
-
-log = logging.getLogger(__name__)
-
-HAVE_USERDB = False
-if processing_conf.static.get("userdb_signature", False):
-    import peutils
-    userdb_path = os.path.join(CUCKOO_ROOT, "data", "peutils", "UserDB.TXT")
-    userdb_signatures = peutils.SignatureDatabase()
-    if os.path.exists(userdb_path):
-        userdb_signatures.load(userdb_path)
-        HAVE_USERDB = True
-
-# Obtained from
-# https://github.com/erocarrera/pefile/blob/master/pefile.py
-# Copyright Ero Carrera and released under the MIT License:
-# https://github.com/erocarrera/pefile/blob/master/LICENSE
-
-
-def _get_entropy(data):
-    """ Computes the entropy value for the provided data
-    @param data: data to be analyzed.
-    @return: entropy value as float.
-    """
-    entropy = 0.0
-
-    if len(data) == 0:
-        return entropy
-
-    occurrences = array.array("L", [0] * 256)
-
-    for x in data:
-        occurrences[x] += 1
-
-    for x in occurrences:
-        if x:
-            p_x = float(x) / len(data)
-            entropy -= p_x * math.log(p_x, 2)
-
-    return entropy
-
-
-# Partially taken from
-# http://malwarecookbook.googlecode.com/svn/trunk/3/8/pescanner.py
-
-
-def _get_filetype(data):
-    """Gets filetype, uses libmagic if available.
-    @param data: data to be analyzed.
-    @return: file type or None.
-    """
-    if not HAVE_MAGIC:
-        return None
-
-    try:
-        ms = magic.open(magic.MAGIC_SYMLINK)
-        ms.load()
-        file_type = ms.buffer(data)
-    except:
-        try:
-            file_type = magic.from_buffer(data)
-        except Exception:
-            return None
-    finally:
-        try:
-            ms.close()
-        except:
-            pass
-
-    return file_type
-
-
-class DotNETExecutable(object):
-    """.NET analysis"""
-
-    def __init__(self, file_path, results):
-        self.file_path = file_path
-        self.results = results
-
-    def add_statistic(self, name, field, value):
-        self.results["statistics"]["processing"].append(
-            {"name": name, field: value,}
-        )
-
-    def _get_custom_attrs(self):
-        try:
-            ret = []
-            output = Popen(["/usr/bin/monodis", "--customattr", self.file_path], stdout=PIPE, universal_newlines=True).stdout.read().split("\n")
-            for line in output[1:]:
-                splitline = line.split()
-                if not splitline or len(splitline) < 6:
-                    continue
-                typeval = splitline[1].rstrip(":")
-                nameval = splitline[6].split("::")[0]
-                if "(string)" not in splitline[6]:
-                    continue
-                rem = " ".join(splitline[7:])
-                startidx = rem.find('["')
-                if startidx < 0:
-                    continue
-                endidx = rem.rfind('"]')
-                # also ignore empty strings
-                if endidx <= 2:
-                    continue
-                valueval = rem[startidx + 2 : endidx - 2]
-                item = dict()
-                item["type"] = convert_to_printable(typeval)
-                item["name"] = convert_to_printable(nameval)
-                item["value"] = convert_to_printable(valueval)
-                ret.append(item)
-            return ret
-        except Exception as e:
-            log.error(e, exc_info=True)
-            return None
-
-    def _get_assembly_refs(self):
-        try:
-            ret = []
-            output = (
-                Popen(["/usr/bin/monodis", "--assemblyref", self.file_path], stdout=PIPE, universal_newlines=True).stdout.read().split("\n")
-            )
-            for idx in range(len(output)):
-                splitline = output[idx].split("Version=")
-                if len(splitline) < 2:
-                    continue
-                verval = splitline[1]
-                splitline = output[idx + 1].split("Name=")
-                if len(splitline) < 2:
-                    continue
-                nameval = splitline[1]
-                item = dict()
-                item["name"] = convert_to_printable(nameval)
-                item["version"] = convert_to_printable(verval)
-                ret.append(item)
-            return ret
-
-        except Exception as e:
-            log.error(e, exc_info=True)
-            return None
-
-    def _get_assembly_info(self):
-        try:
-            ret = dict()
-            output = Popen(["/usr/bin/monodis", "--assembly", self.file_path], stdout=PIPE, universal_newlines=True).stdout.read().split("\n")
-            for line in output:
-                if line.startswith("Name:"):
-                    ret["name"] = convert_to_printable(line[5:].strip())
-                if line.startswith("Version:"):
-                    ret["version"] = convert_to_printable(line[8:].strip())
-            return ret
-        except Exception as e:
-            log.error(e, exc_info=True)
-            return None
-
-    def _get_type_refs(self):
-        try:
-            ret = []
-            output = Popen(["/usr/bin/monodis", "--typeref", self.file_path], stdout=PIPE, universal_newlines=True).stdout.read().split("\n")
-            for line in output[1:]:
-                restline = "".join(line.split(":")[1:])
-                restsplit = restline.split("]")
-                asmname = restsplit[0][2:]
-                typename = "".join(restsplit[1:])
-                if asmname and typename:
-                    item = dict()
-                    item["assembly"] = convert_to_printable(asmname)
-                    item["typename"] = convert_to_printable(typename)
-                    ret.append(item)
-            return ret
-
-        except Exception as e:
-            log.error(e, exc_info=True)
-            return None
-
-    def run(self):
-        """Run analysis.
-        @return: analysis results dict or None.
-        """
-        if not os.path.exists(self.file_path):
-            return None
-
-        results = {}
-
-        pretime = datetime.now()
-        results["dotnet"] = {}
-        results["dotnet"]["typerefs"] = self._get_type_refs()
-        results["dotnet"]["assemblyrefs"] = self._get_assembly_refs()
-        results["dotnet"]["assemblyinfo"] = self._get_assembly_info()
-        results["dotnet"]["customattrs"] = self._get_custom_attrs()
-        posttime = datetime.now()
-        timediff = posttime - pretime
-        self.add_statistic("static_dotnet", "time", float("%d.%03d" % (timediff.seconds, timediff.microseconds / 1000)))
-
-        return results
-
-
-class PortableExecutable(object):
-    """PE analysis."""
-
-    def __init__(self, file_path, results):
-        """@param file_path: file path."""
-        self.file_path = file_path
-        self.pe = None
-        self.results = results
-
-    def add_statistic(self, name, field, value):
-        self.results["statistics"]["processing"].append({"name": name, field: value})
-
-    def add_statistic_tmp(self, name, field, pretime):
-        posttime = datetime.now()
-        timediff = posttime - pretime
-        value = float("%d.%03d" % (timediff.seconds, timediff.microseconds / 1000))
-
-        if name not in self.results["temp_processing_stats"]:
-            self.results["temp_processing_stats"][name] = {}
-
-        # To be able to add yara/capa and others time summary over all processing modules
-        if field in self.results["temp_processing_stats"][name]:
-           self.results["temp_processing_stats"][name][field] += value
-        else:
-           self.results["temp_processing_stats"][name][field] = value
-
-    def _get_peid_signatures(self):
-        """Gets PEID signatures.
-        @return: matched signatures or None.
-        """
-        if not self.pe or not HAVE_USERDB:
-            return None
-
-        try:
-            result = userdb_signatures.match_all(self.pe, ep_only=True)
-            if result:
-                return list(result)
-        except Exception as e:
-            log.error(e, exc_info=True)
-
-        return None
-
-    def _get_pdb_path(self):
-        if not self.pe:
-            return None
-
-        if not hasattr(self.pe, "DIRECTORY_ENTRY_DEBUG"):
-            return None
-
-        try:
-            for dbg in self.pe.DIRECTORY_ENTRY_DEBUG:
-                dbgst = dbg.struct
-                dbgdata = self.pe.__data__[dbgst.PointerToRawData : dbgst.PointerToRawData + dbgst.SizeOfData]
-                if dbgst.Type == 4:  # MISC
-                    _, length, _ = struct.unpack_from("IIB", dbgdata)
-                    return convert_to_printable(str(dbgdata[12:length]).rstrip("\0"))
-                elif dbgst.Type == 2:  # CODEVIEW
-                    if dbgdata[:4] == "RSDS":
-                        return convert_to_printable(str(dbgdata[24:]).rstrip("\0"))
-                    elif dbgdata[:4] == "NB10":
-                        return convert_to_printable(str(dbgdata[16:]).rstrip("\0"))
-        except Exception as e:
-            log.error(e, exc_info=True)
-
-        return None
-
-    def _get_imported_symbols(self):
-        """Gets imported symbols.
-        @return: imported symbols dict or None.
-        """
-        if not self.pe:
-            return None
-
-        imports = []
-
-        if not hasattr(self.pe, "DIRECTORY_ENTRY_IMPORT"):
-            return imports
-
-        for entry in self.pe.DIRECTORY_ENTRY_IMPORT:
-            try:
-                symbols = []
-                for imported_symbol in entry.imports:
-                    symbol = {}
-                    symbol["address"] = hex(imported_symbol.address)
-                    symbol["name"] = bytes2str(imported_symbol.name)
-                    symbols.append(symbol)
-                imports_section = {}
-                imports_section["dll"] = bytes2str(entry.dll)
-                imports_section["imports"] = symbols
-                imports.append(imports_section)
-            except Exception as e:
-                log.error(e, exc_info=True)
-                continue
-
-        return imports
-
-    def _get_exported_dll_name(self):
-        """Gets exported DLL name, if any
-        @return: exported DLL name as string or None.
-        """
-        if not self.pe:
-            return None
-
-        if hasattr(self.pe, "DIRECTORY_ENTRY_EXPORT"):
-            dllname = self.pe.get_string_at_rva(self.pe.DIRECTORY_ENTRY_EXPORT.struct.Name)
-            # In recent versions of pefile, get_string_at_rva returns a Python3-style bytes object.
-            # Convert it to a Python2-style string to ensure expected behavior when iterating
-            # through it character by character.
-            if type(dllname) is not str:
-                dllname = "".join([chr(c) for c in dllname])
-
-            return convert_to_printable(dllname)
-        return None
-
-    def _get_exported_symbols(self):
-        """Gets exported symbols.
-        @return: list of dicts of exported symbols or None.
-        """
-        if not self.pe:
-            return None
-
-        exports = []
-
-        if hasattr(self.pe, "DIRECTORY_ENTRY_EXPORT"):
-            for exported_symbol in self.pe.DIRECTORY_ENTRY_EXPORT.symbols:
-                symbol = {}
-                symbol["address"] = hex(self.pe.OPTIONAL_HEADER.ImageBase + exported_symbol.address)
-                if exported_symbol.name:
-                    symbol["name"] = convert_to_printable(exported_symbol.name)
-                else:
-                    symbol["name"] = ""
-                symbol["ordinal"] = exported_symbol.ordinal
-                exports.append(symbol)
-
-        return exports
-
-    def _get_directory_entries(self):
-        """Gets image directory entries.
-        @return: directory entries dict or None.
-        """
-        if not self.pe:
-            return None
-
-        dirents = []
-
-        for entry in self.pe.OPTIONAL_HEADER.DATA_DIRECTORY:
-            dirent = {}
-            dirent["name"] = entry.name
-            dirent["virtual_address"] = "0x{0:08x}".format(entry.VirtualAddress)
-            dirent["size"] = "0x{0:08x}".format(entry.Size)
-            dirents.append(dirent)
-
-        return dirents
-
-    def _convert_section_characteristics(self, val):
-        flags = [
-            "",
-            "",
-            "",
-            "IMAGE_SCN_TYPE_NO_PAD",
-            "",
-            "IMAGE_SCN_CNT_CODE",
-            "IMAGE_SCN_CNT_INITIALIZED_DATA",
-            "IMAGE_SCN_CNT_UNINITIALIZED_DATA",
-            "IMAGE_SCN_LNK_OTHER",
-            "IMAGE_SCN_LNK_INFO",
-            "",
-            "IMAGE_SCN_LNK_REMOVE",
-            "IMAGE_SCN_LNK_COMDAT",
-            "",
-            "IMAGE_SCN_NO_DEFER_SPEC_EXC",
-            "IMAGE_SCN_GPREL",
-            "",
-            "IMAGE_SCN_MEM_PURGEABLE",
-            "IMAGE_SCN_MEM_LOCKED",
-            "IMAGE_SCN_MEM_PRELOAD",
-            # alignment bytes
-            "",
-            "",
-            "",
-            "",
-            "IMAGE_SCN_LNK_NRELOC_OVFL",
-            "IMAGE_SCN_MEM_DISCARDABLE",
-            "IMAGE_SCN_MEM_NOT_CACHED",
-            "IMAGE_SCN_MEM_NOT_PAGED",
-            "IMAGE_SCN_MEM_SHARED",
-            "IMAGE_SCN_MEM_EXECUTE",
-            "IMAGE_SCN_MEM_READ",
-            "IMAGE_SCN_MEM_WRITE",
-        ]
-        alignment = [
-            "",
-            "IMAGE_SCN_ALIGN_1BYTES",
-            "IMAGE_SCN_ALIGN_2BYTES",
-            "IMAGE_SCN_ALIGN_4BYTES",
-            "IMAGE_SCN_ALIGN_8BYTES",
-            "IMAGE_SCN_ALIGN_16BYTES",
-            "IMAGE_SCN_ALIGN_32BYTES",
-            "IMAGE_SCN_ALIGN_64BYTES",
-            "IMAGE_SCN_ALIGN_128BYTES",
-            "IMAGE_SCN_ALIGN_256BYTES",
-            "IMAGE_SCN_ALIGN_512BYTES",
-            "IMAGE_SCN_ALIGN_1024BYTES",
-            "IMAGE_SCN_ALIGN_2048BYTES",
-            "IMAGE_SCN_ALIGN_4096BYTES",
-            "IMAGE_SCN_ALIGN_8192BYTES",
-            "",
-        ]
-        tags = []
-        for idx, flagstr in enumerate(flags):
-            if flags[idx] and (val & (1 << idx)):
-                tags.append(flagstr)
-
-        if val & 0x00F00000:
-            alignval = (val >> 20) & 0xF
-            if alignment[alignval]:
-                tags.append(alignment[alignval])
-
-        return "|".join(tags)
-
-    def _get_sections(self):
-        """Gets sections.
-        @return: sections dict or None.
-        """
-        if not self.pe:
-            return None
-
-        sections = []
-
-        for entry in self.pe.sections:
-            try:
-                section = {}
-                section["name"] = convert_to_printable(entry.Name.strip(b"\x00"))
-                section["raw_address"] = "0x{0:08x}".format(entry.PointerToRawData)
-                section["virtual_address"] = "0x{0:08x}".format(entry.VirtualAddress)
-                section["virtual_size"] = "0x{0:08x}".format(entry.Misc_VirtualSize)
-                section["size_of_data"] = "0x{0:08x}".format(entry.SizeOfRawData)
-                section["characteristics"] = self._convert_section_characteristics(entry.Characteristics)
-                section["characteristics_raw"] = "0x{0:08x}".format(entry.Characteristics)
-                section["entropy"] = "{0:.02f}".format(float(entry.get_entropy()))
-                sections.append(section)
-            except Exception as e:
-                log.error(e, exc_info=True)
-                continue
-
-        return sections
-
-    def _get_overlay(self):
-        """Get information on the PE overlay
-        @return: overlay dict or None.
-        """
-        if not self.pe:
-            return None
-
-        try:
-            off = self.pe.get_overlay_data_start_offset()
-        except:
-            log.error("Your version of pefile is out of date.  " "Please update to the latest version on https://github.com/erocarrera/pefile")
-            return None
-
-        if off is None:
-            return None
-        overlay = {}
-        overlay["offset"] = "0x{0:08x}".format(off)
-        overlay["size"] = "0x{0:08x}".format(len(self.pe.__data__) - off)
-
-        return overlay
-
-    def _get_imagebase(self):
-        """Get information on the Image Base
-        @return: image base or None.
-        """
-        if not self.pe:
-            return None
-
-        return "0x{0:08x}".format(self.pe.OPTIONAL_HEADER.ImageBase)
-
-    def _get_entrypoint(self):
-        """Get full virtual address of entrypoint
-        @return: entrypoint or None.
-        """
-        if not self.pe:
-            return None
-
-        return "0x{0:08x}".format(self.pe.OPTIONAL_HEADER.ImageBase + self.pe.OPTIONAL_HEADER.AddressOfEntryPoint)
-
-    def _get_reported_checksum(self):
-        """Get checksum from optional header
-        @return: checksum or None.
-        """
-        if not self.pe:
-            return None
-
-        return "0x{0:08x}".format(self.pe.OPTIONAL_HEADER.CheckSum)
-
-    def _get_actual_checksum(self):
-        """Get calculated checksum of PE
-        @return: checksum or None.
-        """
-        if not self.pe:
-            return None
-
-        retstr = None
-        try:
-            retstr = "0x{0:08x}".format(self.pe.generate_checksum())
-        except:
-            log.warning("Detected outdated version of pefile.  " "Please update to the latest version at https://github.com/erocarrera/pefile")
-        return retstr
-
-    def _get_osversion(self):
-        """Get minimum required OS version for PE to execute
-        @return: minimum OS version or None.
-        """
-        if not self.pe:
-            return None
-
-        return "{0}.{1}".format(self.pe.OPTIONAL_HEADER.MajorOperatingSystemVersion, self.pe.OPTIONAL_HEADER.MinorOperatingSystemVersion)
-
-    def _get_resources(self):
-        """Get resources.
-        @return: resources dict or None.
-        """
-        if not self.pe:
-            return None
-
-        resources = []
-
-        if hasattr(self.pe, "DIRECTORY_ENTRY_RESOURCE"):
-            for resource_type in self.pe.DIRECTORY_ENTRY_RESOURCE.entries:
-                try:
-                    resource = {}
-
-                    if resource_type.name is not None:
-                        name = str(resource_type.name)
-                    else:
-                        name = str(pefile.RESOURCE_TYPE.get(resource_type.struct.Id))
-
-                    if hasattr(resource_type, "directory"):
-                        for resource_id in resource_type.directory.entries:
-                            if hasattr(resource_id, "directory"):
-                                for resource_lang in resource_id.directory.entries:
-                                    data = self.pe.get_data(resource_lang.data.struct.OffsetToData, resource_lang.data.struct.Size)
-                                    filetype = _get_filetype(data)
-                                    language = pefile.LANG.get(resource_lang.data.lang, None)
-                                    sublanguage = pefile.get_sublang_name_for_lang(resource_lang.data.lang, resource_lang.data.sublang)
-                                    resource["name"] = name
-                                    resource["offset"] = "0x{0:08x}".format(resource_lang.data.struct.OffsetToData)
-                                    resource["size"] = "0x{0:08x}".format(resource_lang.data.struct.Size)
-                                    resource["filetype"] = filetype
-                                    resource["language"] = language
-                                    resource["sublanguage"] = sublanguage
-                                    resource["entropy"] = "{0:.02f}".format(float(_get_entropy(data)))
-                                    resources.append(resource)
-                except Exception as e:
-                    log.error(e, exc_info=True)
-                    continue
-
-        return resources
-
-    def _get_icon_info(self):
-        """Get icon in PNG format and information for searching for similar icons
-        @return: tuple of (image data in PNG format encoded as base64, md5 hash of image data, md5 hash of "simplified"
-         image for fuzzy matching)
-        """
-        if not self.pe or not hasattr(self.pe, "DIRECTORY_ENTRY_RESOURCE"):
-            return None, None, None
-
-        try:
-            idx = [entry.id for entry in self.pe.DIRECTORY_ENTRY_RESOURCE.entries]
-            if pefile.RESOURCE_TYPE["RT_GROUP_ICON"] not in idx:
-                return None, None, None
-
-            rt_group_icon_idx = idx.index(pefile.RESOURCE_TYPE["RT_GROUP_ICON"])
-            rt_group_icon_dir = self.pe.DIRECTORY_ENTRY_RESOURCE.entries[rt_group_icon_idx]
-            entry = rt_group_icon_dir.directory.entries[0]
-            offset = entry.directory.entries[0].data.struct.OffsetToData
-            size = entry.directory.entries[0].data.struct.Size
-            peicon = PEGroupIconDir(self.pe.get_memory_mapped_image()[offset: offset + size])
-            bigwidth = 0
-            bigheight = 0
-            bigbpp = 0
-            bigidx = -1
-            iconidx = 0
-            if hasattr(peicon, "icons") and peicon.icons:
-                # TypeError: 'NoneType' object is not iterable
-                for idx, icon in enumerate(peicon.icons):
-                    if icon.bWidth >= bigwidth and icon.bHeight >= bigheight and icon.wBitCount >= bigbpp:
-                        bigwidth = icon.bWidth
-                        bigheight = icon.bHeight
-                        bigbpp = icon.wBitCount
-                        bigidx = icon.nID
-                        iconidx = idx
-
-            rt_icon_idx = False
-            rt_icon_idx_tmp = [entry.id for entry in self.pe.DIRECTORY_ENTRY_RESOURCE.entries]
-            if pefile.RESOURCE_TYPE["RT_ICON"] in rt_icon_idx_tmp:
-                rt_icon_idx = rt_icon_idx_tmp.index(pefile.RESOURCE_TYPE["RT_ICON"])
-            if not rt_icon_idx:
-                return None, None, None
-            rt_icon_dir = self.pe.DIRECTORY_ENTRY_RESOURCE.entries[rt_icon_idx]
-            for entry in rt_icon_dir.directory.entries:
-                if entry.id == bigidx:
-                    offset = entry.directory.entries[0].data.struct.OffsetToData
-                    size = entry.directory.entries[0].data.struct.Size
-                    icon = peicon.get_icon_file(iconidx, self.pe.get_memory_mapped_image()[offset : offset + size])
-
-                    byteio = BytesIO()
-                    byteio.write(icon)
-                    byteio.seek(0)
-                    try:
-                        img = Image.open(byteio)
-                    except OSError as e:
-                        byteio.close()
-                        log.error(e)
-                        return None, None, None
-
-                    output = BytesIO()
-                    img.save(output, format="PNG")
-
-                    img = img.resize((8, 8), Image.BILINEAR)
-                    img = img.convert("RGB").convert("P", palette=Image.ADAPTIVE, colors=2).convert("L")
-                    lowval = img.getextrema()[0]
-                    img = img.point(lambda i: 255 if i > lowval else 0)
-                    img = img.convert("1")
-                    simplified = bytearray(img.getdata())
-
-                    m = hashlib.md5()
-                    m.update(output.getvalue())
-                    fullhash = m.hexdigest()
-                    m = hashlib.md5()
-                    m.update(simplified)
-                    simphash = m.hexdigest()
-                    icon = base64.b64encode(output.getvalue()).decode("utf-8")
-                    output.close()
-                    img.close()
-                    return icon, fullhash, simphash
-        except Exception as e:
-            log.error(e, exc_info=True)
-
-        return None, None, None
-
-    def _get_versioninfo(self):
-        """Get version info.
-        @return: info dict or None.
-        """
-        if not self.pe:
-            return None
-
-        infos = []
-
-        if not hasattr(self.pe, "VS_VERSIONINFO") and not hasattr(self.pe, "FileInfo"):
-            return infos
-
-        for entry in self.pe.FileInfo:
-            try:
-                if hasattr(entry, "StringTable"):
-                    for st_entry in entry.StringTable:
-                        for str_entry in st_entry.entries.items():
-                            entry = {}
-                            entry["name"] = convert_to_printable(str_entry[0])
-                            entry["value"] = convert_to_printable(str_entry[1])
-                            if entry["name"] == "Translation" and len(entry["value"]) == 10:
-                                entry["value"] = "0x0" + entry["value"][2:5] + " 0x0" + entry["value"][7:10]
-                            infos.append(entry)
-                elif hasattr(entry, "Var"):
-                    for var_entry in entry.Var:
-                        if hasattr(var_entry, "entry"):
-                            entry = {}
-                            entry["name"] = convert_to_printable(list(var_entry.entry.keys())[0])
-                            entry["value"] = convert_to_printable(list(var_entry.entry.values())[0])
-                            if entry["name"] == "Translation" and len(entry["value"]) == 10:
-                                entry["value"] = "0x0" + entry["value"][2:5] + " 0x0" + entry["value"][7:10]
-                            infos.append(entry)
-            except Exception as e:
-                log.error(e, exc_info=True)
-                continue
-
-        return infos
-
-    def _get_imphash(self):
-        """Gets imphash.
-        @return: imphash string or None.
-        """
-        if not self.pe:
-            return None
-
-        try:
-            return self.pe.get_imphash()
-        except AttributeError:
-            return None
-
-    def _get_timestamp(self):
-        """Get compilation timestamp.
-        @return: timestamp or None.
-        """
-        if not self.pe:
-            return None
-
-        try:
-            pe_timestamp = self.pe.FILE_HEADER.TimeDateStamp
-        except AttributeError:
-            return None
-
-        return datetime.fromtimestamp(pe_timestamp).strftime("%Y-%m-%d %H:%M:%S")
-
-    def _get_guest_digital_signers(self):
-        retdata = dict()
-        cert_data = dict()
-        cert_info = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(self.results["info"]["id"]), "aux", "DigiSig.json")
-
-        if os.path.exists(cert_info):
-            with open(cert_info, "r") as cert_file:
-                buf = cert_file.read()
-            if buf:
-                cert_data = json.loads(buf)
-
-        if cert_data:
-            retdata = {
-                "aux_sha1": cert_data["sha1"],
-                "aux_timestamp": cert_data["timestamp"],
-                "aux_valid": cert_data["valid"],
-                "aux_error": cert_data["error"],
-                "aux_error_desc": cert_data["error_desc"],
-                "aux_signers": cert_data["signers"],
-            }
-
-        return retdata
-
-    def _get_digital_signers(self):
-        """If this executable is signed, get its signature(s)."""
-        dir_index = pefile.DIRECTORY_ENTRY["IMAGE_DIRECTORY_ENTRY_SECURITY"]
-        if not self.pe:
-            return []
-
-        if len(self.pe.OPTIONAL_HEADER.DATA_DIRECTORY) < dir_index:
-            return []
-
-        dir_entry = self.pe.OPTIONAL_HEADER.DATA_DIRECTORY[dir_index]
-        if not dir_entry or not dir_entry.VirtualAddress or not dir_entry.Size:
-            return []
-
-        if not HAVE_CRYPTO:
-            log.critical("You do not have the cryptography library installed preventing " "certificate extraction. pip3 install cryptography")
-            return []
-
-        if not self.pe:
-            return []
-
-        retlist = []
-
-        address = self.pe.OPTIONAL_HEADER.DATA_DIRECTORY[dir_index].VirtualAddress
-
-        # check if file is digitally signed
-        if address == 0:
-            return retlist
-
-        signatures = self.pe.write()[address + 8 :]
-
-        if type(signatures) is bytearray:
-            signatures = bytes(signatures)
-
-        certs = backend.load_der_pkcs7_certificates(signatures)
-
-        for cert in certs:
-            md5 = binascii.hexlify(cert.fingerprint(hashes.MD5())).decode()
-            sha1 = binascii.hexlify(cert.fingerprint(hashes.SHA1())).decode()
-            sha256 = binascii.hexlify(cert.fingerprint(hashes.SHA256())).decode()
-            cert_data = {
-                "md5_fingerprint": md5,
-                "sha1_fingerprint": sha1,
-                "sha256_fingerprint": sha256,
-                "serial_number": str(cert.serial_number),
-                "not_before": cert.not_valid_before.isoformat(),
-                "not_after": cert.not_valid_after.isoformat(),
-            }
-            try:
-                for attribute in cert.subject:
-                    cert_data["subject_{}".format(attribute.oid._name)] = attribute.value
-            except ValueError as e:
-                log.warning(e)
-            for attribute in cert.issuer:
-                cert_data["issuer_{}".format(attribute.oid._name)] = attribute.value
-            try:
-                for extension in cert.extensions:
-                    if extension.oid._name == "authorityKeyIdentifier" and extension.value.key_identifier:
-                        cert_data["extensions_{}".format(extension.oid._name)] = base64.b64encode(extension.value.key_identifier)
-                    elif extension.oid._name == "subjectKeyIdentifier" and extension.value.digest:
-                        cert_data["extensions_{}".format(extension.oid._name)] = base64.b64encode(extension.value.digest)
-                    elif extension.oid._name == "certificatePolicies":
-                        for index, policy in enumerate(extension.value):
-                            if policy.policy_qualifiers:
-                                for qualifier in policy.policy_qualifiers:
-                                    if qualifier.__class__ is not cryptography.x509.extensions.UserNotice:
-                                        cert_data["extensions_{}_{}".format(extension.oid._name, index)] = qualifier
-                    elif extension.oid._name == "cRLDistributionPoints":
-                        for index, point in enumerate(extension.value):
-                            for full_name in point.full_name:
-                                cert_data["extensions_{}_{}".format(extension.oid._name, index)] = full_name.value
-                    elif extension.oid._name == "authorityInfoAccess":
-                        for authority_info in extension.value:
-                            if authority_info.access_method._name == "caIssuers":
-                                cert_data["extensions_{}_caIssuers".format(extension.oid._name)] = authority_info.access_location.value
-                            elif authority_info.access_method._name == "OCSP":
-                                cert_data["extensions_{}_OCSP".format(extension.oid._name)] = authority_info.access_location.value
-                    elif extension.oid._name == "subjectAltName":
-                        for index, name in enumerate(extension.value._general_names):
-                            if isinstance(name.value, bytes):
-                                cert_data["extensions_{}_{}".format(extension.oid._name, index)] = base64.b64encode(name.value)
-                            else:
-                                if hasattr(name.value, "rfc4514_string"):
-                                    cert_data["extensions_{}_{}".format(extension.oid._name, index)] = name.value.rfc4514_string()
-                                else:
-                                    cert_data["extensions_{}_{}".format(extension.oid._name, index)] = name.value
-            except ValueError:
-                continue
-
-            retlist.append(cert_data)
-
-        return retlist
-
-    def run(self):
-        """Run analysis.
-        @return: analysis results dict or None.
-        """
-        if not os.path.exists(self.file_path):
-            log.debug("File doesn't exist anymore")
-            return {}
-
-        # Advanced check if is real PE
-        if not IsPEImage(open(self.file_path, "rb").read()):
-            return {}
-
-        self.pe = pefile.PE(self.file_path)
-        if not self.pe:
-            log.debug("Not a PE file, skiping ")
-            return {}
-
-        results = {}
-        peresults = results["pe"] = {}
-
-        pretime = datetime.now()
-        peresults["peid_signatures"] = self._get_peid_signatures()
-        timediff = datetime.now() - pretime
-        value = float("%d.%03d" % (timediff.seconds, timediff.microseconds / 1000))
-        self.add_statistic("peid", "time", value)
-
-        peresults["imagebase"] = self._get_imagebase()
-        peresults["entrypoint"] = self._get_entrypoint()
-        peresults["reported_checksum"] = self._get_reported_checksum()
-        peresults["actual_checksum"] = self._get_actual_checksum()
-        peresults["osversion"] = self._get_osversion()
-        peresults["pdbpath"] = self._get_pdb_path()
-        peresults["imports"] = self._get_imported_symbols()
-        peresults["exported_dll_name"] = self._get_exported_dll_name()
-        peresults["exports"] = self._get_exported_symbols()
-        peresults["dirents"] = self._get_directory_entries()
-        peresults["sections"] = self._get_sections()
-        peresults["overlay"] = self._get_overlay()
-        peresults["resources"] = self._get_resources()
-        peresults["icon"], peresults["icon_hash"], peresults["icon_fuzzy"] = self._get_icon_info()
-        peresults["versioninfo"] = self._get_versioninfo()
-        peresults["imphash"] = self._get_imphash()
-        peresults["timestamp"] = self._get_timestamp()
-        peresults["digital_signers"] = self._get_digital_signers()
-        peresults["guest_signers"] = self._get_guest_digital_signers()
-        if peresults.get("imports", False):
-            peresults["imported_dll_count"] = len([x for x in peresults["imports"] if x.get("dll")])
-
-        if HAVE_FLARE_CAPA:
-            pretime = datetime.now()
-            capa_details = flare_capa_details(self.file_path, "static")
-            if capa_details:
-                results["flare_capa"] = capa_details
-            self.add_statistic_tmp("flare_capa", "time", pretime)
-
-        return results
-
-
-class PDF(object):
-    """PDF Analysis."""
-
-    def __init__(self, file_path):
-        self.file_path = file_path
-        self.pdf = None
-        self.base_uri = ""
-
-    def _clean_string(self, value):
-        # handle BOM for typical english unicode while avoiding some
-        # invalid BOM seen in malicious PDFs (like using the utf16le BOM
-        # for an ascii string)
-        if value.startswith("\xfe\xff"):
-            clean = True
-            for x in value[2::2]:
-                if ord(x):
-                    clean = False
-                    break
-            if clean:
-                return value[3::2]
-        elif value.startswith("\xff\xfe"):
-            clean = True
-            for x in value[3::2]:
-                if ord(x):
-                    clean = False
-                    break
-            if clean:
-                return value[2::2]
-        return value
-
-    def _get_obj_val(self, version, obj):
-        try:
-            if obj.type == "reference":
-                return self.pdf.body[version].getObject(obj.id)
-        except:
-            pass
-        return obj
-
-    def _set_base_uri(self):
-        try:
-            for version in range(self.pdf.updates + 1):
-                trailer, _ = self.pdf.trailer[version]
-                if trailer != None:
-                    elem = trailer.dict.getElementByName("/Root")
-                    if elem:
-                        elem = self._get_obj_val(version, elem)
-                        if elem:
-                            elem = elem.getElementByName("/URI")
-                            if elem:
-                                elem = self._get_obj_val(version, elem)
-                                if elem:
-                                    elem = elem.getElementByName("/Base")
-                                    if elem:
-                                        elem = self._get_obj_val(version, elem)
-                                        if elem:
-                                            self.base_uri = elem.getValue()
-        except Exception as e:
-            log.error(e, exc_info=True)
-            pass
-
-    def _parse(self, filepath):
-        """Parses the PDF for static information. Uses V8Py from peepdf to
-        extract JavaScript from PDF objects.
-        @param filepath: Path to file to be analyzed.
-        @return: results dict or None.
-        """
-        # Load the PDF with PDFiD and convert it to JSON for processing
-        pdf_data = PDFiD(filepath, False, True)
-        pdf_json = PDFiD2JSON(pdf_data, True)
-        pdfid_data = json.loads(pdf_json)[0]
-
-        info = {}
-        info["PDF Header"] = pdfid_data["pdfid"]["header"]
-        info["Total Entropy"] = pdfid_data["pdfid"]["totalEntropy"]
-        info["Entropy In Streams"] = pdfid_data["pdfid"]["streamEntropy"]
-        info["Entropy Out Streams"] = pdfid_data["pdfid"]["nonStreamEntropy"]
-        info["Count %% EOF"] = pdfid_data["pdfid"]["countEof"]
-        info["Data After EOF"] = pdfid_data["pdfid"]["countChatAfterLastEof"]
-        # Note, PDFiD doesn't interpret some dates properly, specifically it doesn't
-        # seem to be able to properly represent time zones that involve fractions of
-        # an hour
-        dates = pdfid_data["pdfid"]["dates"]["date"]
-
-        # Get keywords, counts and format.
-        keywords = {}
-        for keyword in pdfid_data["pdfid"]["keywords"]["keyword"]:
-            keywords[str(keyword["name"])] = keyword["count"]
-
-        result = {}
-        pdfresult = result["pdf"] = {}
-        pdfresult["Info"] = info
-        pdfresult["Dates"] = dates
-        pdfresult["Keywords"] = keywords
-
-        if not HAVE_PEEPDF:
-            return result
-
-        log.debug("About to parse with PDFParser")
-        parser = PDFParser()
-        ret, self.pdf = parser.parse(filepath, forceMode=True, looseMode=True, manualAnalysis=False)
-        urlset = set()
-        annoturiset = set()
-        objects = []
-        retobjects = []
-        metadata = dict()
-
-        self._set_base_uri()
-
-        for i in range(len(self.pdf.body)):
-            body = self.pdf.body[i]
-            metatmp = self.pdf.getBasicMetadata(i)
-            if metatmp:
-                metadata = metatmp
-
-            objects = body.objects
-
-            for index in objects:
-                oid = objects[index].id
-                offset = objects[index].offset
-                size = objects[index].size
-                details = objects[index].object
-
-                obj_data = {}
-                obj_data["Object ID"] = oid
-                obj_data["Offset"] = offset
-                obj_data["Size"] = size
-                if details.type == "stream":
-                    encoded_stream = details.encodedStream
-                    decoded_stream = details.decodedStream
-                    if HAVE_V8PY:
-                        jsdata = None
-                        try:
-                            jslist, unescapedbytes, urlsfound, errors, ctxdummy = analyseJS(decoded_stream.strip())
-                            jsdata = jslist[0]
-                        except Exception as e:
-                            log.error(e, exc_info=True)
-                            continue
-                        if len(errors):
-                            continue
-                        if jsdata == None:
-                            continue
-
-                        for url in urlsfound:
-                            urlset.add(url)
-
-                        # The following loop is required to "JSONify" the strings returned from PyV8.
-                        # As PyV8 returns byte strings, we must parse out bytecode and
-                        # replace it with an escape '\'. We can't use encode("string_escape")
-                        # as this would mess up the new line representation which is used for
-                        # beautifying the javascript code for Django's web interface.
-                        ret_data = ""
-                        for x in range(len(jsdata)):
-                            if ord(jsdata[x]) > 127:
-                                tmp = "\\x" + str(jsdata[x].encode("hex"))
-                            else:
-                                tmp = jsdata[x]
-                            ret_data += tmp
-                    else:
-                        continue
-
-                    obj_data["Data"] = ret_data
-                    retobjects.append(obj_data)
-                elif details.type == "dictionary" and details.hasElement("/A"):
-                    # verify it to be a link type annotation
-                    subtype_elem = details.getElementByName("/Subtype")
-                    type_elem = details.getElementByName("/Type")
-                    if not subtype_elem or not type_elem:
-                        continue
-                    subtype_elem = self._get_obj_val(i, subtype_elem)
-                    type_elem = self._get_obj_val(i, type_elem)
-                    if subtype_elem.getValue() != "/Link" or type_elem.getValue() != "/Annot":
-                        continue
-                    a_elem = details.getElementByName("/A")
-                    a_elem = self._get_obj_val(i, a_elem)
-                    if a_elem.type == "dictionary" and a_elem.hasElement("/URI"):
-                        uri_elem = a_elem.getElementByName("/URI")
-                        uri_elem = self._get_obj_val(i, uri_elem)
-                        annoturiset.add(self.base_uri + uri_elem.getValue())
-                else:
-                    # can be dictionaries, arrays, etc, don't bother displaying them
-                    # all for now
-                    pass
-                    # obj_data["File Type"] = "Encoded"
-                    # obj_data["Data"] = "Encoded"
-                    # retobjects.append(obj_data)
-
-            pdfresult["JSStreams"] = retobjects
-
-        if "creator" in metadata:
-            pdfresult["Info"]["Creator"] = convert_to_printable(self._clean_string(metadata["creator"]))
-        if "producer" in metadata:
-            pdfresult["Info"]["Producer"] = convert_to_printable(self._clean_string(metadata["producer"]))
-        if "author" in metadata:
-            pdfresult["Info"]["Author"] = convert_to_printable(self._clean_string(metadata["author"]))
-
-        if len(urlset):
-            pdfresult["JS_URLs"] = list(urlset)
-        if len(annoturiset):
-            pdfresult["Annot_URLs"] = list(annoturiset)
-
-        return result
-
-    def run(self):
-        """Run analysis.
-        @return: analysis results dict or None.
-        """
-        if not os.path.exists(self.file_path):
-            return None
-        log.debug("Starting to load PDF")
-        results = self._parse(self.file_path)
-        return results
-
-
-class Office(object):
-    """Office Document Static Analysis
-        Supported formats:
-        - Word 97-2003 (.doc, .dot), Word 2007+ (.docm, .dotm)
-        - Excel 97-2003 (.xls), Excel 2007+ (.xlsm, .xlsb)
-        - PowerPoint 97-2003 (.ppt), PowerPoint 2007+ (.pptm, .ppsm)
-        - Word/PowerPoint 2007+ XML (aka Flat OPC)
-        - Word 2003 XML (.xml)
-        - Word/Excel Single File Web Page / MHTML (.mht)
-        - Publisher (.pub)
-        - Rich Text Format (.rtf)
-    """
-
-    def __init__(self, file_path, results, options):
-        self.file_path = file_path
-        self.results = results
-        self.options = get_options(options)
-
-    def _get_meta(self, meta):
-        ret = dict()
-        ret["SummaryInformation"] = dict()
-        for prop in meta.SUMMARY_ATTRIBS:
-            value = getattr(meta, prop)
-            if not value:
-                continue
-            ret["SummaryInformation"][prop] = convert_to_printable(str(value))
-        ret["DocumentSummaryInformation"] = dict()
-        for prop in meta.DOCSUM_ATTRIBS:
-            value = getattr(meta, prop)
-            if not value:
-                continue
-            ret["DocumentSummaryInformation"][prop] = convert_to_printable(str(value))
-        return ret
-
-    def _parse_rtf(self, data):
-        results = dict()
-        rtfp = RtfObjParser(data)
-        rtfp.parse()
-        save_dir = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(self.results["info"]["id"]), "rtf_objects")
-        if rtfp.objects and not os.path.exists(save_dir):
-            os.makedirs(save_dir)
-        for rtfobj in rtfp.objects:
-            results.setdefault(str(rtfobj.format_id), list())
-            temp_dict = dict()
-            temp_dict["class_name"] = ""
-            temp_dict["size"] = ""
-            temp_dict["filename"] = ""
-            temp_dict["type_embed"] = ""
-            temp_dict["CVE"] = ""
-            temp_dict["sha256"] = ""
-            temp_dict["index"] = ""
-
-            if rtfobj.is_package:
-                log.debug("Saving file from OLE Package in object #%d:" % rtfobj.format_id)
-                log.debug("  Filename = %r" % rtfobj.filename)
-                log.debug("  Source path = %r" % rtfobj.src_path)
-                log.debug("  Temp path = %r" % rtfobj.temp_path)
-                sha256 = hashlib.sha256(rtfobj.olepkgdata).hexdigest()
-                if rtfobj.filename:
-                    fname = convert_to_printable(rtfobj.filename)
-                else:
-                    fname = sha256
-                log.debug("  saving to file %s" % sha256)
-                temp_dict["filename"] = fname
-                open(os.path.join(save_dir, sha256), "wb").write(rtfobj.olepkgdata)
-                temp_dict["sha256"] = sha256
-                temp_dict["size"] = len(rtfobj.olepkgdata)
-                # temp_dict["source_path"] = convert_to_printable(rtfobj.src_path))
-            # When format_id=TYPE_LINKED, oledata_size=None
-            elif rtfobj.is_ole and rtfobj.oledata_size is not None:
-                # ole_column = 'format_id: %d ' % rtfobj.format_id
-                if rtfobj.format_id == oleobj.OleObject.TYPE_EMBEDDED:
-                    temp_dict["type_embed"] = "Embedded"
-                elif rtfobj.format_id == oleobj.OleObject.TYPE_LINKED:
-                    temp_dict["type_embed"] = "Linked"
-                else:
-                    temp_dict["type_embed"] = "Unknown"
-                if hasattr(rtfobj, "clsid") and rtfobj.clsid is not None:
-                    # ole_column += '\nCLSID: %s' % rtfobj.clsid
-                    # ole_column += '\n%s' % rtfobj.clsid_desc
-                    if "CVE" in rtfobj.clsid_desc:
-                        temp_dict["CVE"] = rtfobj.clsid_desc
-                # Detect OLE2Link exploit
-                # http://www.kb.cert.org/vuls/id/921560
-                if rtfobj.class_name == b"OLE2Link":
-                    # ole_column += '\nPossibly an exploit for the OLE2Link vulnerability (VU#921560, CVE-2017-0199)'
-                    temp_dict["CVE"] = "Possibly an exploit for the OLE2Link vulnerability (VU#921560, CVE-2017-0199)"
-                log.debug("Saving file embedded in OLE object #%d:" % rtfobj.format_id)
-                log.debug("  format_id  = %d" % rtfobj.format_id)
-                log.debug("  class name = %r" % rtfobj.class_name)
-                log.debug("  data size  = %d" % rtfobj.oledata_size)
-                class_name = rtfobj.class_name.decode("ascii", "ignore").encode("ascii")
-                temp_dict["class_name"] = convert_to_printable(class_name)
-                temp_dict["size"] = rtfobj.oledata_size
-                # set a file extension according to the class name:
-                class_name = rtfobj.class_name.lower()
-                if class_name.startswith(b"word"):
-                    ext = "doc"
-                elif class_name.startswith(b"package"):
-                    ext = "package"
-                else:
-                    ext = "bin"
-                sha256 = hashlib.sha256(rtfobj.oledata).hexdigest()
-                temp_dict["filename"] = "object_%08X.%s" % (rtfobj.start, ext)
-                save_path = os.path.join(save_dir, sha256)
-                log.debug("  saving to file %s" % sha256)
-                open(save_path, "wb").write(rtfobj.oledata)
-                temp_dict["sha256"] = sha256
-            else:
-                log.debug("Saving raw data in object #%d:" % rtfobj.format_id)
-                temp_dict["filename"] = "object_%08X.raw" % rtfobj.start
-                sha256 = hashlib.sha256(rtfobj.rawdata).hexdigest()
-                save_path = os.path.join(save_dir, sha256)
-                log.debug("  saving object to file %s" % sha256)
-                open(save_path, "wb").write(rtfobj.rawdata)
-                temp_dict["sha256"] = sha256
-                temp_dict["size"] = len(rtfobj.rawdata)
-            temp_dict["index"] = "%08Xh" % rtfobj.start
-            if temp_dict:
-                results[str(rtfobj.format_id)].append(temp_dict)
-
-        log.debug(results)
-        return results
-
-    def _parse(self, filepath):
-        """Parses an office document for static information.
-        @param filepath: Path to the file to be analyzed.
-        @return: results dict or None
-        """
-
-        results = dict()
-        vba = False
-        if HAVE_OLETOOLS:
-            if is_rtf(filepath):
-                try:
-                    temp_results = self._parse_rtf(open(filepath, "rb").read())
-                    if temp_results:
-                        results["office_rtf"] = temp_results
-                except Exception as e:
-                    log.error(e, exc_info=True)
-            else:
-                try:
-                    vba = VBA_Parser(filepath)
-                except:
-                    return results
-        else:
-            return results
-
-        officeresults = results["office"] = {}
-
-        try:
-            # extract DDE
-            dde = extract_dde(filepath)
-            if dde:
-                results["office_dde"] = convert_to_printable(dde)
-        except AttributeError:
-            log.warning("OleFile library bug: AttributeError! fix: pip3 install -U olefile")
-        except Exception as e:
-            log.error(e, exc_info=True)
-
-        metares = officeresults["Metadata"] = dict()
-        macro_folder = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(self.results["info"]["id"]), "macros")
-        # The bulk of the metadata checks are in the OLE Structures
-        # So don't check if we're dealing with XML.
-        if olefile.isOleFile(filepath):
-            ole = olefile.OleFileIO(filepath)
-            meta = ole.get_metadata()
-            # must be left this way or we won't see the results
-            officeresults["Metadata"] = self._get_meta(meta)
-            metares = officeresults["Metadata"]
-            if metares.get("SummaryInformation", {}).get("create_time", ""):
-                metares["SummaryInformation"]["create_time"] = metares["SummaryInformation"]["create_time"]
-            if metares.get("SummaryInformation", {}).get("last_saved_time", ""):
-                metares["SummaryInformation"]["last_saved_time"] = metares["SummaryInformation"]["last_saved_time"]
-            ole.close()
-        if vba and vba.detect_vba_macros():
-            metares["HasMacros"] = "Yes"
-            macrores = officeresults["Macro"] = dict()
-            macrores["Code"] = dict()
-            macrores["info"] = dict()
-            ctr = 0
-            # Create IOC and category vars. We do this before processing the
-            # macro(s) to avoid overwriting data when there are multiple
-            # macros in a single file.
-            macrores["Analysis"] = dict()
-            macrores["Analysis"]["AutoExec"] = list()
-            macrores["Analysis"]["Suspicious"] = list()
-            macrores["Analysis"]["IOCs"] = list()
-            macrores["Analysis"]["HexStrings"] = list()
-            try:
-                for (_, _, vba_filename, vba_code) in vba.extract_macros():
-                    vba_code = filter_vba(vba_code)
-                    if vba_code.strip() != "":
-                        # Handle all macros
-                        ctr += 1
-                        outputname = "Macro" + str(ctr)
-                        macrores["Code"][outputname] = list()
-                        macrores["Code"][outputname].append((convert_to_printable(vba_filename), convert_to_printable(vba_code)))
-                        autoexec = detect_autoexec(vba_code)
-                        if not os.path.exists(macro_folder):
-                            os.makedirs(macro_folder)
-                        macro_file = os.path.join(macro_folder, outputname)
-                        with open(macro_file, "w") as f:
-                            f.write(convert_to_printable(vba_code))
-                        macrores["info"][outputname] = dict()
-                        macrores["info"][outputname]["yara_macro"] = File(macro_file).get_yara(category="macro")
-                        macrores["info"][outputname]["yara_macro"].extend(File(macro_file).get_yara(category="CAPE"))
-
-                        suspicious = detect_suspicious(vba_code)
-                        iocs = False
-                        try:
-                            iocs = vbadeobf.parse_macro(vba_code)
-                        except Exception as e:
-                            log.error(e, exc_info=True)
-                        hex_strs = detect_hex_strings(vba_code)
-                        if autoexec:
-                            for keyword, description in autoexec:
-                                macrores["Analysis"]["AutoExec"].append((keyword.replace(".", "_"), description))
-                        if suspicious:
-                            for keyword, description in suspicious:
-                                macrores["Analysis"]["Suspicious"].append((keyword.replace(".", "_"), description))
-                        if iocs:
-                            for pattern, match in iocs:
-                                macrores["Analysis"]["IOCs"].append((pattern, match))
-                        if hex_strs:
-                            for encoded, decoded in hex_strs:
-                                macrores["Analysis"]["HexStrings"].append((encoded, convert_to_printable(decoded)))
-            except (AssertionError, UnexpectedDataError) as e:
-                log.warning(("Macros in static.py", e))
-            # Delete and keys which had no results. Otherwise we pollute the
-            # Django interface with null data.
-            if macrores["Analysis"]["AutoExec"] == []:
-                del macrores["Analysis"]["AutoExec"]
-            if macrores["Analysis"]["Suspicious"] == []:
-                del macrores["Analysis"]["Suspicious"]
-            if macrores["Analysis"]["IOCs"] == []:
-                del macrores["Analysis"]["IOCs"]
-            if macrores["Analysis"]["HexStrings"] == []:
-                del macrores["Analysis"]["HexStrings"]
-
-            if HAVE_VBA2GRAPH:
-                vba2graph_func(filepath, str(self.results["info"]["id"]))
-
-        else:
-            metares["HasMacros"] = "No"
-
-        oleid = OleID(filepath)
-        indicators = oleid.check()
-        for indicator in indicators:
-            if indicator.name == "Word Document" and indicator.value == True:
-                metares["DocumentType"] = indicator.name
-            if indicator.name == "Excel Workbook" and indicator.value == True:
-                metares["DocumentType"] = indicator.name
-            if indicator.name == "PowerPoint Presentation" and indicator.value == True:
-                metares["DocumentType"] = indicator.name
-
-        if HAVE_XLM_DEOBF and processing_conf.xlsdeobf.enabled:
-            password = self.options.get("password", "")
-            xlm_kwargs = {
-                "file": filepath,
-                "noninteractive": True,
-                "extract_only": False,
-                "start_with_shell": False,
-                "return_deobfuscated": True,
-                "no_indent": False,
-                "output_formula_format": "CELL:[[CELL-ADDR]], [[STATUS]], [[INT-FORMULA]]",
-                "day": -1,
-                "password": password,
-            }
-
-            try:
-                deofuscated_xlm = XLMMacroDeobf(**xlm_kwargs)
-                if deofuscated_xlm:
-                    xlmmacro = results["office"]["XLMMacroDeobfuscator"] = dict()
-                    xlmmacro["Code"]= deofuscated_xlm
-                    if not os.path.exists(macro_folder):
-                        os.makedirs(macro_folder)
-                    macro_file = os.path.join(macro_folder, "xlm_macro")
-                    with open(macro_file, "w") as f:
-                        f.write("\n".join(deofuscated_xlm))
-                    xlmmacro["info"] = dict()
-                    xlmmacro["info"]["yara_macro"] = File(macro_file).get_yara(category="macro")
-                    xlmmacro["info"]["yara_macro"].extend(File(macro_file).get_yara(category="CAPE"))
-            except Exception as e:
-                if "no attribute 'workbook'" in str(e) or "Can't find workbook" in str(e):
-                    log.info("Workbook not found. Probably not an Excel file.")
-                else:
-                    log.error(e, exc_info=True)
-
-        return results
-
-    def run(self):
-        """Run analysis.
-        @return: analysis results dict or None.
-        """
-        if not os.path.exists(self.file_path):
-            return None
-        results = self._parse(self.file_path)
-        return results
-
-
-class LnkShortcut(object):
-    signature = [0x4C, 0x00, 0x00, 0x00]
-    guid = [
-        0x01,
-        0x14,
-        0x02,
-        0x00,
-        0x00,
-        0x00,
-        0x00,
-        0x00,
-        0xC0,
-        0x00,
-        0x00,
-        0x00,
-        0x00,
-        0x00,
-        0x00,
-        0x46,
-    ]
-    flags = [
-        "shellidlist",
-        "references",
-        "description",
-        "relapath",
-        "workingdir",
-        "cmdline",
-        "icon",
-    ]
-    attrs = [
-        "readonly",
-        "hidden",
-        "system",
-        None,
-        "directory",
-        "archive",
-        "ntfs_efs",
-        "normal",
-        "temporary",
-        "sparse",
-        "reparse",
-        "compressed",
-        "offline",
-        "not_indexed",
-        "encrypted",
-    ]
-
-    def __init__(self, filepath=None):
-        self.filepath = filepath
-
-    def read_uint16(self, offset):
-        return struct.unpack("H", self.buf[offset : offset + 2])[0]
-
-    def read_uint32(self, offset):
-        return struct.unpack("I", self.buf[offset : offset + 4])[0]
-
-    def read_stringz(self, offset):
-        return self.buf[offset : self.buf.index(b"\x00", offset)]
-
-    def read_string16(self, offset):
-        length = self.read_uint16(offset) * 2
-        ret = self.buf[offset + 2 : offset + 2 + length].decode("utf16")
-        return offset + 2 + length, ret
-
-    def run(self):
-        buf = self.buf = open(self.filepath, "rb").read()
-        if len(buf) < ctypes.sizeof(LnkHeader):
-            log.warning("Provided .lnk file is corrupted or incomplete.")
-            return
-
-        header = LnkHeader.from_buffer_copy(buf[: ctypes.sizeof(LnkHeader)])
-        if header.signature[:] != self.signature:
-            return
-
-        if header.guid[:] != self.guid:
-            return
-
-        ret = {"flags": {}, "attrs": []}
-
-        for x in range(7):
-            ret["flags"][self.flags[x]] = bool(header.flags & (1 << x))
-
-        for x in range(14):
-            if header.attrs & (1 << x):
-                ret["attrs"].append(self.attrs[x])
-
-        offset = 78 + self.read_uint16(76)
-        if len(buf) < offset + 28:
-            log.warning("Provided .lnk file is corrupted or incomplete.")
-            return
-
-        off = LnkEntry.from_buffer_copy(buf[offset : offset + 28])
-
-        # Local volume.
-        if off.volume_flags & 1:
-            ret["basepath"] = self.read_stringz(offset + off.base_path)
-        # Network volume.
-        else:
-            ret["net_share"] = self.read_stringz(offset + off.net_volume + 20)
-            network_drive = self.read_uint32(offset + off.net_volume + 12)
-            if network_drive:
-                ret["network_drive"] = self.read_stringz(offset + network_drive)
-
-        ret["remaining_path"] = self.read_stringz(offset + off.path_remainder)
-
-        extra = offset + off.length
-        if ret["flags"]["description"]:
-            extra, ret["description"] = self.read_string16(extra)
-        if ret["flags"]["relapath"]:
-            extra, ret["relapath"] = self.read_string16(extra)
-        if ret["flags"]["workingdir"]:
-            extra, ret["workingdir"] = self.read_string16(extra)
-        if ret["flags"]["cmdline"]:
-            extra, ret["cmdline"] = self.read_string16(extra)
-        if ret["flags"]["icon"]:
-            extra, ret["icon"] = self.read_string16(extra)
-        return ret
-
-
-class ELF(object):
-    def __init__(self, file_path):
-        self.file_path = file_path
-        self.elf = None
-        self.result = {}
-
-    def run(self):
-        try:
-            self.elf = ELFFile(open(self.file_path, "rb"))
-            self.result["file_header"] = self._get_file_header()
-            self.result["section_headers"] = self._get_section_headers()
-            self.result["program_headers"] = self._get_program_headers()
-            self.result["dynamic_tags"] = self._get_dynamic_tags()
-            self.result["symbol_tables"] = self._get_symbol_tables()
-            self.result["relocations"] = self._get_relocations()
-            self.result["notes"] = self._get_notes()
-            # TODO: add library name per import (see #807)
-        except ELFError as e:
-            if e.message != "Magic number does not match":
-                raise
-
-        return self.result
-
-    def _get_file_header(self):
-        return {
-            "magic": convert_to_printable(self.elf.e_ident_raw[:4]),
-            "class": describe_ei_class(self.elf.header.e_ident["EI_CLASS"]),
-            "data": describe_ei_data(self.elf.header.e_ident["EI_DATA"]),
-            "ei_version": describe_ei_version(self.elf.header.e_ident["EI_VERSION"]),
-            "os_abi": describe_ei_osabi(self.elf.header.e_ident["EI_OSABI"]),
-            "abi_version": self.elf.header.e_ident["EI_ABIVERSION"],
-            "type": describe_e_type(self.elf.header["e_type"]),
-            "machine": describe_e_machine(self.elf.header["e_machine"]),
-            "version": describe_e_version_numeric(self.elf.header["e_version"]),
-            "entry_point_address": self._print_addr(self.elf.header["e_entry"]),
-            "start_of_program_headers": self.elf.header["e_phoff"],
-            "start_of_section_headers": self.elf.header["e_shoff"],
-            "flags": "{}{}".format(self._print_addr(self.elf.header["e_flags"]), self._decode_flags(self.elf.header["e_flags"])),
-            "size_of_this_header": self.elf.header["e_ehsize"],
-            "size_of_program_headers": self.elf.header["e_phentsize"],
-            "number_of_program_headers": self.elf.header["e_phnum"],
-            "size_of_section_headers": self.elf.header["e_shentsize"],
-            "number_of_section_headers": self.elf.header["e_shnum"],
-            "section_header_string_table_index": self.elf.header["e_shstrndx"],
-        }
-
-    def _get_section_headers(self):
-        section_headers = []
-        for section in self.elf.iter_sections():
-            section_headers.append(
-                {
-                    "name": section.name,
-                    "type": describe_sh_type(section["sh_type"]),
-                    "addr": self._print_addr(section["sh_addr"]),
-                    "size": section["sh_size"],
-                }
-            )
-        return section_headers
-
-    def _get_program_headers(self):
-        program_headers = []
-        for segment in self.elf.iter_segments():
-            program_headers.append(
-                {
-                    "type": describe_p_type(segment["p_type"]),
-                    "addr": self._print_addr(segment["p_vaddr"]),
-                    "flags": describe_p_flags(segment["p_flags"]).strip(),
-                    "size": segment["p_memsz"],
-                }
-            )
-        return program_headers
-
-    def _get_dynamic_tags(self):
-        dynamic_tags = []
-        for section in self.elf.iter_sections():
-            if not isinstance(section, DynamicSection):
-                continue
-            for tag in section.iter_tags():
-                dynamic_tags.append(
-                    {
-                        "tag": self._print_addr(ENUM_D_TAG.get(tag.entry.d_tag, tag.entry.d_tag)),
-                        "type": str(tag.entry.d_tag)[3:],
-                        "value": self._parse_tag(tag),
-                    }
-                )
-
-        return dynamic_tags
-
-    def _get_symbol_tables(self):
-        symbol_tables = []
-        for section in self.elf.iter_sections():
-            if not isinstance(section, SymbolTableSection):
-                continue
-            for nsym, symbol in enumerate(section.iter_symbols()):
-                symbol_tables.append(
-                    {
-                        "value": self._print_addr(symbol["st_value"]),
-                        "type": describe_symbol_type(symbol["st_info"]["type"]),
-                        "bind": describe_symbol_bind(symbol["st_info"]["bind"]),
-                        "ndx_name": symbol.name,
-                    }
-                )
-        return symbol_tables
-
-    def _get_relocations(self):
-        relocations = []
-        for section in self.elf.iter_sections():
-            if not isinstance(section, RelocationSection):
-                continue
-            section_relocations = []
-            for rel in section.iter_relocations():
-                relocation = {
-                    "offset": self._print_addr(rel["r_offset"]),
-                    "info": self._print_addr(rel["r_info"]),
-                    "type": describe_reloc_type(rel["r_info_type"], self.elf),
-                    "value": "",
-                    "name": "",
-                }
-
-                if rel["r_info_sym"] != 0:
-                    symtable = self.elf.get_section(section["sh_link"])
-                    symbol = symtable.get_symbol(rel["r_info_sym"])
-                    # Some symbols have zero "st_name", so instead use
-                    # the name of the section they point at
-                    if symbol["st_name"] == 0:
-                        symsec = self.elf.get_section(symbol["st_shndx"])
-                        symbol_name = symsec.name
-                    else:
-                        symbol_name = symbol.name
-
-                    relocation["value"] = self._print_addr(symbol["st_value"])
-                    relocation["name"] = symbol_name
-
-                if relocation not in section_relocations:
-                    section_relocations.append(relocation)
-
-            relocations.append(
-                {"name": section.name, "entries": section_relocations,}
-            )
-        return relocations
-
-    def _get_notes(self):
-        notes = []
-        for segment in self.elf.iter_segments():
-            if not isinstance(segment, NoteSegment):
-                continue
-            for note in segment.iter_notes():
-                notes.append(
-                    {"owner": note["n_name"], "size": self._print_addr(note["n_descsz"]), "note": describe_note(note), "name": note["n_name"],}
-                )
-        return notes
-
-    def _print_addr(self, addr):
-        fmt = "0x{0:08x}" if self.elf.elfclass == 32 else "0x{0:016x}"
-        return fmt.format(addr)
-
-    def _decode_flags(self, flags):
-        description = ""
-        if self.elf["e_machine"] == "EM_ARM":
-            if flags & E_FLAGS.EF_ARM_HASENTRY:
-                description = ", has entry point"
-
-            version = flags & E_FLAGS.EF_ARM_EABIMASK
-            if version == E_FLAGS.EF_ARM_EABI_VER5:
-                description = ", Version5 EABI"
-        elif self.elf["e_machine"] == "EM_MIPS":
-            if flags & E_FLAGS.EF_MIPS_NOREORDER:
-                description = ", noreorder"
-            if flags & E_FLAGS.EF_MIPS_CPIC:
-                description = ", cpic"
-            if not (flags & E_FLAGS.EF_MIPS_ABI2) and not (flags & E_FLAGS.EF_MIPS_ABI_ON32):
-                description = ", o32"
-            if (flags & E_FLAGS.EF_MIPS_ARCH) == E_FLAGS.EF_MIPS_ARCH_1:
-                description = ", mips1"
-
-        return description
-
-    def _parse_tag(self, tag):
-        if tag.entry.d_tag == "DT_NEEDED":
-            parsed = "Shared library: [%s]" % tag.needed
-        elif tag.entry.d_tag == "DT_RPATH":
-            parsed = "Library rpath: [%s]" % tag.rpath
-        elif tag.entry.d_tag == "DT_RUNPATH":
-            parsed = "Library runpath: [%s]" % tag.runpath
-        elif tag.entry.d_tag == "DT_SONAME":
-            parsed = "Library soname: [%s]" % tag.soname
-        elif isinstance(tag.entry.d_tag, str) and tag.entry.d_tag.endswith(("SZ", "ENT")):
-            parsed = "%i (bytes)" % tag["d_val"]
-        elif isinstance(tag.entry.d_tag, str) and tag.entry.d_tag.endswith(("NUM", "COUNT")):
-            parsed = "%i" % tag["d_val"]
-        elif tag.entry.d_tag == "DT_PLTREL":
-            s = describe_dyn_tag(tag.entry.d_val)
-            if s.startswith("DT_"):
-                s = s[3:]
-            parsed = "%s" % s
-        else:
-            parsed = self._print_addr(tag["d_val"])
-
-        return parsed
-
-
-'''
-class HwpDocument(object):
-    """Static analysis of HWP documents."""
-
-    def __init__(self, filepath, results):
-        self.filepath = filepath
-        self.files = {}
-        #self.ex = ExtractManager.for_task(task_id)
-
-    def unpack_hwp(self):
-        """Unpacks ole-based zip files."""
-        ole = olefile.OleFileIO(self.filepath)
-        streams = ole.listdir()
-        for stream in streams:
-            stream_name = '/'.join(stream)
-	    content = ole.openstream(stream).read()
-	    try:
-	        stream_content = zlib.decompress(ole.openstream(stream).read(), -15)
-                self.files[stream_name] = stream_content
-	    except Exception as e:
-            log.error(e, exc_info=True)
-        ole.close()
-
-    def extract_eps(self):
-        """Extract some information from Encapsulated Post Script files."""
-        ret = []
-        for filename, content in self.files.items():
-            if filename.lower().endswith(".eps") or filename.lower().endswith(".ps"):
-                ret.append(content)
-        return ret
-
-    def run(self):
-        self.unpack_hwp()
-
-        self.ex.peek_office(self.files)
-
-        return {
-            "eps": self.extract_eps()
-        }
-'''
-
-
-class Java(object):
-    """Java Static Analysis"""
-
-    def __init__(self, file_path, decomp_jar):
-        self.file_path = file_path
-        self.decomp_jar = decomp_jar
-
-    def run(self):
-        """Run analysis.
-        @return: analysis results dict or None.
-        """
-        if not os.path.exists(self.file_path):
-            return None
-
-        results = {}
-
-        results["java"] = {}
-
-        if self.decomp_jar:
-            f = open(self.file_path, "rb")
-            data = f.read()
-            f.close()
-            jar_file = store_temp_file(data, "decompile.jar")
-
-            try:
-                if self.decomp_jar.endswith(".jar"):
-                    p = Popen(["java", "-jar", self.decomp_jar, jar_file], stdout=PIPE)
-                else:
-                    p = Popen([self.decomp_jar, jar_file], stdout=PIPE)
-                results["java"]["decompiled"] = convert_to_printable(p.stdout.read())
-            except Exception as e:
-                log.error(e, exc_info=True)
-                pass
-
-            try:
-                os.unlink(jar_file)
-            except:
-                pass
-
-        return results
-
-
-class URL(object):
-    """URL 'Static' Analysis"""
-
-    def __init__(self, url):
-        self.url = url
-        p = r"^(?:https?:\/\/)?(?:www\.)?(?P<domain>[^:\/\n]+)"
-        dcheck = re.match(p, self.url)
-        if dcheck:
-            self.domain = dcheck.group("domain")
-            # Work around a bug where a "." can tail a url target if
-            # someone accidentally appends one during submission
-            while self.domain.endswith("."):
-                self.domain = self.domain[:-1]
-        else:
-            self.domain = ""
-
-    def parse_json_in_javascript(self, data=str(), ignore_nest_level=0):
-        nest_count = 0 - ignore_nest_level
-        string_buf = str()
-        json_buf = list()
-        json_data = list()
-        for character in data:
-            if character == "{":
-                nest_count += 1
-            if nest_count > 0:
-                string_buf += character
-            if character == "}":
-                nest_count -= 1
-            if nest_count == 0 and len(string_buf):
-                json_buf.append(string_buf)
-                string_buf = str()
-
-        if json_buf:
-            for data in json_buf:
-                if len(data) > 4:
-                    json_data.append(json.loads(data))
-            return json_data
-
-        return []
-
-    def run(self):
-        results = {}
-        if self.domain:
-            try:
-                w = whois(self.domain)
-                results["url"] = {}
-                # Create static fields if they don't exist, EG if the WHOIS
-                # data is stale.
-                fields = [
-                    "updated_date",
-                    "status",
-                    "name",
-                    "city",
-                    "expiration_date",
-                    "zipcode",
-                    "domain_name",
-                    "country",
-                    "whois_server",
-                    "state",
-                    "registrar",
-                    "referral_url",
-                    "address",
-                    "name_servers",
-                    "org",
-                    "creation_date",
-                    "emails",
-                ]
-                for field in fields:
-                    if field not in list(w.keys()) or not w[field]:
-                        w[field] = ["None"]
-            except:
-                # No WHOIS data returned
-                log.warning("No WHOIS data for domain: " + self.domain)
-                return results
-
-            # These can be a list or string, just make them all lists
-            for key in w.keys():
-                buf = list()
-                # Handle and format dates
-                if "_date" in key:
-                    if isinstance(w[key], list):
-                        buf = [str(dt).replace("T", " ").split(".")[0] for dt in w[key]]
-                    else:
-                        buf = [str(w[key]).replace("T", " ").split(".")[0]]
-                else:
-                    if isinstance(w[key], list):
-                        continue
-                    else:
-                        buf = [w[key]]
-                w[key] = buf
-
-            output = (
-                "Name: {0}\nCountry: {1}\nState: {2}\nCity: {3}\n"
-                "ZIP Code: {4}\nAddress: {5}\n\nOrginization: {6}\n"
-                "Domain Name(s):\n    {7}\nCreation Date:\n    {8}\n"
-                "Updated Date:\n    {9}\nExpiration Date:\n    {10}\n"
-                "Email(s):\n    {11}\n\nRegistrar(s):\n    {12}\nName "
-                "Server(s):\n    {13}\nReferral URL(s):\n    {14}"
-            )
-            output = output.format(
-                w["name"][0],
-                w["country"][0],
-                w["state"][0],
-                w["city"][0],
-                w["zipcode"][0],
-                w["address"][0],
-                w["org"][0],
-                "\n    ".join(w["domain_name"]),
-                "\n    ".join(w["creation_date"]),
-                "\n    ".join(w["updated_date"]),
-                "\n    ".join(w["expiration_date"]),
-                "\n    ".join(w["emails"]),
-                "\n    ".join(w["registrar"]),
-                "\n    ".join(w["name_servers"]),
-                "\n    ".join(w["referral_url"]),
-            )
-            results["url"]["whois"] = output
-
-        if self.domain == "bit.ly":
-            resp = requests.get(self.url + "+")
-            soup = bs4.BeautifulSoup(resp.text, "html.parser")
-            output = list()
-            for script in [x.extract() for x in soup.find_all("script")]:
-                if script.contents:
-                    content = script.contents[0]
-                    if "long_url_no_protocol" in content:
-                        output = self.parse_json_in_javascript(content, 1)
-
-            if output:
-                results["url"]["bitly"] = {k: v for d in output for k, v in d.iteritems()}
-                newtime = datetime.fromtimestamp(int(results["url"]["bitly"]["created_at"]))
-                results["url"]["bitly"]["created_at"] = newtime.strftime("%Y-%m-%d %H:%M:%S") + " GMT"
-
-        return results
-
-
-class EncodedScriptFile(object):
-    """Deobfuscates and interprets Windows Script Files."""
-
-    encoding = [
-        1,
-        2,
-        0,
-        1,
-        2,
-        0,
-        2,
-        0,
-        0,
-        2,
-        0,
-        2,
-        1,
-        0,
-        2,
-        0,
-        1,
-        0,
-        2,
-        0,
-        1,
-        1,
-        2,
-        0,
-        0,
-        2,
-        1,
-        0,
-        2,
-        0,
-        0,
-        2,
-        1,
-        1,
-        0,
-        2,
-        0,
-        2,
-        0,
-        1,
-        0,
-        1,
-        1,
-        2,
-        0,
-        1,
-        0,
-        2,
-        1,
-        0,
-        2,
-        0,
-        1,
-        1,
-        2,
-        0,
-        0,
-        1,
-        1,
-        2,
-        0,
-        1,
-        0,
-        2,
-    ]
-
-    lookup = [
-        [
-            0x00,
-            0x01,
-            0x02,
-            0x03,
-            0x04,
-            0x05,
-            0x06,
-            0x07,
-            0x08,
-            0x7B,
-            0x0A,
-            0x0B,
-            0x0C,
-            0x0D,
-            0x0E,
-            0x0F,
-            0x10,
-            0x11,
-            0x12,
-            0x13,
-            0x14,
-            0x15,
-            0x16,
-            0x17,
-            0x18,
-            0x19,
-            0x1A,
-            0x1B,
-            0x1C,
-            0x1D,
-            0x1E,
-            0x1F,
-            0x32,
-            0x30,
-            0x21,
-            0x29,
-            0x5B,
-            0x38,
-            0x33,
-            0x3D,
-            0x58,
-            0x3A,
-            0x35,
-            0x65,
-            0x39,
-            0x5C,
-            0x56,
-            0x73,
-            0x66,
-            0x4E,
-            0x45,
-            0x6B,
-            0x62,
-            0x59,
-            0x78,
-            0x5E,
-            0x7D,
-            0x4A,
-            0x6D,
-            0x71,
-            0x00,
-            0x60,
-            0x00,
-            0x53,
-            0x00,
-            0x42,
-            0x27,
-            0x48,
-            0x72,
-            0x75,
-            0x31,
-            0x37,
-            0x4D,
-            0x52,
-            0x22,
-            0x54,
-            0x6A,
-            0x47,
-            0x64,
-            0x2D,
-            0x20,
-            0x7F,
-            0x2E,
-            0x4C,
-            0x5D,
-            0x7E,
-            0x6C,
-            0x6F,
-            0x79,
-            0x74,
-            0x43,
-            0x26,
-            0x76,
-            0x25,
-            0x24,
-            0x2B,
-            0x28,
-            0x23,
-            0x41,
-            0x34,
-            0x09,
-            0x2A,
-            0x44,
-            0x3F,
-            0x77,
-            0x3B,
-            0x55,
-            0x69,
-            0x61,
-            0x63,
-            0x50,
-            0x67,
-            0x51,
-            0x49,
-            0x4F,
-            0x46,
-            0x68,
-            0x7C,
-            0x36,
-            0x70,
-            0x6E,
-            0x7A,
-            0x2F,
-            0x5F,
-            0x4B,
-            0x5A,
-            0x2C,
-            0x57,
-        ],
-        [
-            0x00,
-            0x01,
-            0x02,
-            0x03,
-            0x04,
-            0x05,
-            0x06,
-            0x07,
-            0x08,
-            0x57,
-            0x0A,
-            0x0B,
-            0x0C,
-            0x0D,
-            0x0E,
-            0x0F,
-            0x10,
-            0x11,
-            0x12,
-            0x13,
-            0x14,
-            0x15,
-            0x16,
-            0x17,
-            0x18,
-            0x19,
-            0x1A,
-            0x1B,
-            0x1C,
-            0x1D,
-            0x1E,
-            0x1F,
-            0x2E,
-            0x47,
-            0x7A,
-            0x56,
-            0x42,
-            0x6A,
-            0x2F,
-            0x26,
-            0x49,
-            0x41,
-            0x34,
-            0x32,
-            0x5B,
-            0x76,
-            0x72,
-            0x43,
-            0x38,
-            0x39,
-            0x70,
-            0x45,
-            0x68,
-            0x71,
-            0x4F,
-            0x09,
-            0x62,
-            0x44,
-            0x23,
-            0x75,
-            0x00,
-            0x7E,
-            0x00,
-            0x5E,
-            0x00,
-            0x77,
-            0x4A,
-            0x61,
-            0x5D,
-            0x22,
-            0x4B,
-            0x6F,
-            0x4E,
-            0x3B,
-            0x4C,
-            0x50,
-            0x67,
-            0x2A,
-            0x7D,
-            0x74,
-            0x54,
-            0x2B,
-            0x2D,
-            0x2C,
-            0x30,
-            0x6E,
-            0x6B,
-            0x66,
-            0x35,
-            0x25,
-            0x21,
-            0x64,
-            0x4D,
-            0x52,
-            0x63,
-            0x3F,
-            0x7B,
-            0x78,
-            0x29,
-            0x28,
-            0x73,
-            0x59,
-            0x33,
-            0x7F,
-            0x6D,
-            0x55,
-            0x53,
-            0x7C,
-            0x3A,
-            0x5F,
-            0x65,
-            0x46,
-            0x58,
-            0x31,
-            0x69,
-            0x6C,
-            0x5A,
-            0x48,
-            0x27,
-            0x5C,
-            0x3D,
-            0x24,
-            0x79,
-            0x37,
-            0x60,
-            0x51,
-            0x20,
-            0x36,
-        ],
-        [
-            0x00,
-            0x01,
-            0x02,
-            0x03,
-            0x04,
-            0x05,
-            0x06,
-            0x07,
-            0x08,
-            0x6E,
-            0x0A,
-            0x0B,
-            0x0C,
-            0x0D,
-            0x0E,
-            0x0F,
-            0x10,
-            0x11,
-            0x12,
-            0x13,
-            0x14,
-            0x15,
-            0x16,
-            0x17,
-            0x18,
-            0x19,
-            0x1A,
-            0x1B,
-            0x1C,
-            0x1D,
-            0x1E,
-            0x1F,
-            0x2D,
-            0x75,
-            0x52,
-            0x60,
-            0x71,
-            0x5E,
-            0x49,
-            0x5C,
-            0x62,
-            0x7D,
-            0x29,
-            0x36,
-            0x20,
-            0x7C,
-            0x7A,
-            0x7F,
-            0x6B,
-            0x63,
-            0x33,
-            0x2B,
-            0x68,
-            0x51,
-            0x66,
-            0x76,
-            0x31,
-            0x64,
-            0x54,
-            0x43,
-            0x00,
-            0x3A,
-            0x00,
-            0x7E,
-            0x00,
-            0x45,
-            0x2C,
-            0x2A,
-            0x74,
-            0x27,
-            0x37,
-            0x44,
-            0x79,
-            0x59,
-            0x2F,
-            0x6F,
-            0x26,
-            0x72,
-            0x6A,
-            0x39,
-            0x7B,
-            0x3F,
-            0x38,
-            0x77,
-            0x67,
-            0x53,
-            0x47,
-            0x34,
-            0x78,
-            0x5D,
-            0x30,
-            0x23,
-            0x5A,
-            0x5B,
-            0x6C,
-            0x48,
-            0x55,
-            0x70,
-            0x69,
-            0x2E,
-            0x4C,
-            0x21,
-            0x24,
-            0x4E,
-            0x50,
-            0x09,
-            0x56,
-            0x73,
-            0x35,
-            0x61,
-            0x4B,
-            0x58,
-            0x3B,
-            0x57,
-            0x22,
-            0x6D,
-            0x4D,
-            0x25,
-            0x28,
-            0x46,
-            0x4A,
-            0x32,
-            0x41,
-            0x3D,
-            0x5F,
-            0x4F,
-            0x42,
-            0x65,
-        ],
-    ]
-
-    unescape = {
-        "#": "\r",
-        "&": "\n",
-        "!": "<",
-        "*": ">",
-        "$": "@",
-    }
-
-    def __init__(self, filepath):
-        self.filepath = filepath
-
-    def run(self):
-        results = {}
-        try:
-            source = open(self.filepath, "r").read()
-        except UnicodeDecodeError as e:
-            return results
-        source = self.decode(source)
-        if not source:
-            return results
-        results["encscript"] = source[:65536]
-        if len(source) > 65536:
-            results["encscript"] += "\r\n<truncated>"
-        return results
-
-    def decode(self, source, start="#@~^", end="^#~@"):
-        if start not in source or end not in source:
-            return
-
-        o = source.index(start) + len(start) + 8
-        end = source.index(end) - 8
-
-        c, m, r = 0, 0, []
-
-        while o < end:
-            ch = ord(source[o])
-            if source[o] == "@":
-                r.append(ord(self.unescape.get(source[o + 1], "?")))
-                c += r[-1]
-                o, m = o + 1, m + 1
-            elif ch < 128:
-                r.append(self.lookup[self.encoding[m % 64]][ch])
-                c += r[-1]
-                m = m + 1
-            else:
-                r.append(ch)
-
-            o = o + 1
-
-        if (c % 2 ** 32) != base64.b64decode(struct.unpack("I", source[o : o + 8]))[0]:
-            log.info("Invalid checksum for Encoded WSF file!")
-
-        return "".join(chr(ch) for ch in r)
-
-
-class WindowsScriptFile(object):
-    script_re = "<\\s*script\\s*.*>.*?<\\s*/\\s*script\\s*>"
-
-    def __init__(self, filepath):
-        self.filepath = filepath
-
-    def run(self):
-        results = {}
-        ret = []
-        source = open(self.filepath, "r").read()
-
-        # Get rid of superfluous comments.
-        source = re.sub("/\\*.*?\\*/", "", source, flags=re.S)
-
-        for script in re.findall(self.script_re, source, re.I | re.S):
-            try:
-                x = bs4.BeautifulSoup(script, "html.parser")
-                language = x.script.attrs.get("language", "").lower()
-            except:
-                language = None
-
-            # We can't rely on bs4 or any other HTML/XML parser to provide us
-            # with the raw content of the xml tag as they decode html entities
-            # and all that, leaving us with a corrupted string.
-            source = re.match("<.*>(.*)</.*>$", script, re.S).group(0)
-
-            # Decode JScript.Encode encoding.
-            if language in ("jscript.encode", "vbscript.encode"):
-                source = EncodedScriptFile(self.filepath).decode(source)
-
-            if len(source) > 65536:
-                source = source[:65536] + "\r\n<truncated>"
-
-            ret.append(source)
-
-        results["wsf"] = ret
-        return results
-
-
-class Static(Processing):
-    """Static analysis."""
-
-    def run(self):
-        """Run analysis.
-        @return: results dict.
-        """
-        self.key = "static"
-        static = {}
-
-        if self.task["category"] == "file":
-            package = self.results.get("info", {}).get("package", "")
-
-            thetype = File(self.file_path).get_type()
-            if not HAVE_OLETOOLS and "Zip archive data, at least v2.0" in thetype and package in ("doc", "ppt", "xls", "pub"):
-                log.info("Missed dependencies: pip3 install oletools")
-
-            if HAVE_PEFILE and ("PE32" in thetype or "MS-DOS executable" in thetype):
-                static = PortableExecutable(self.file_path, self.results).run()
-                if static and "Mono" in thetype:
-                    static.update(DotNETExecutable(self.file_path, self.results).run())
-            elif "PDF" in thetype or self.task["target"].endswith(".pdf"):
-                static = PDF(self.file_path).run()
-            elif HAVE_OLETOOLS and package in ("doc", "ppt", "xls", "pub"):
-                static = Office(self.file_path, self.results, self.task["options"]).run()
-            # elif HAVE_OLETOOLS and package in ("hwp", "hwp"):
-            #    static = HwpDocument(self.file_path, self.results).run()
-            elif "Java Jar" in thetype or self.task["target"].endswith(".jar"):
-                decomp_jar = self.options.get("procyon_path", None)
-                if decomp_jar and not os.path.exists(decomp_jar):
-                    log.error("procyon_path specified in processing.conf but the file does not exist.")
-                static = Java(self.file_path, decomp_jar).run()
-            # It's possible to fool libmagic into thinking our 2007+ file is a
-            # zip. So until we have static analysis for zip files, we can use
-            # oleid to fail us out silently, yeilding no static analysis
-            # results for actual zip files.
-            elif HAVE_OLETOOLS and "Zip archive data, at least v2.0" in thetype:
-                static = Office(self.file_path, self.results, self.task["options"]).run()
-            elif package == "wsf" or thetype == "XML document text" or self.task["target"].endswith(".wsf") or package == "hta":
-                static = WindowsScriptFile(self.file_path).run()
-            elif package == "js" or package == "vbs":
-                static = EncodedScriptFile(self.file_path).run()
-            elif package == "lnk":
-                static["lnk"] = LnkShortcut(self.file_path).run()
-            # elif self.file_path.endswith(".elf") or "ELF" in thetype:
-            #    static["elf"] = ELF(self.file_path).run()
-            #    static["keys"] = f.get_keys()
-
-        elif self.task["category"] == "url":
-            enabled_whois = self.options.get("whois", True)
-            if HAVE_WHOIS and enabled_whois:
-                static = URL(self.task["target"]).run()
-
-        return static
diff --git a/modules/processing/strace.py b/modules/processing/strace.py
new file mode 100644
index 00000000000..20e26d8a38d
--- /dev/null
+++ b/modules/processing/strace.py
@@ -0,0 +1,521 @@
+import ast
+import json
+import logging
+import os
+import re
+
+from lib.cuckoo.common.abstracts import Processing
+from lib.cuckoo.common.path_utils import path_exists
+
+log = logging.getLogger(__name__)
+
+__author__ = "@winson0123"
+__version__ = "1.0.0"
+
+fd_syscalls = [
+    "read",
+    "write",
+    "close",
+    "newfstat",
+    "lseek",
+    "ioctl",
+    "pread64",
+    "pwrite64",
+    "readv",
+    "writev",
+    "fcntl",
+    "flock",
+    "fsync",
+    "fdatasync",
+    "ftruncate",
+    "getdents",
+    "fchdir",
+    "fchmod",
+    "fchown",
+    "fstatfs",
+    "readahead",
+    "fsetxattr",
+    "fgetxattr",
+    "flistxattr",
+    "fremovexattr",
+    "getdents64",
+    "newfstatat",
+    "sync_file_range",
+    "vmsplice",
+    "fallocate",
+    "preadv",
+    "pwritev",
+    "syncfs",
+    "preadv2",
+    "pwritev2",
+    "fsconfig",
+    "quotactl_fd",
+]
+
+
+class ParseProcessLog(list):
+    """Parses the process log file"""
+
+    def __init__(self, process_id, logs, syscalls_info, options):
+        """@param log_path: log file path."""
+        self.logs = logs
+        self.process_id = process_id
+        self.children_ids = []
+        self.first_seen = None
+        self.process_name = None
+        self.calls = self
+        self.file_descriptors = []
+        self.options = options
+        # Limit of API calls per process
+        # self.api_limit = self.options.analysis_call_limit
+
+        self.fetch_calls(syscalls_info)
+
+    def __iter__(self):
+        return iter(super().__iter__())
+
+    def __repr__(self):
+        return f"<ParseProcessLog for pid: {self.process_id}>"
+
+    def begin_reporting(self):
+        pass
+
+    def split_arguments(self, args_str):
+        args = []
+        current = ""
+        brace_level = 0
+        for char in args_str:
+            if char == "," and brace_level == 0:
+                args.append(current)
+                current = ""
+            else:
+                current += char
+                if char in ["{", "["]:
+                    brace_level += 1
+                elif char in ["}", "]"]:
+                    brace_level = max(brace_level - 1, 0)
+        args.append(current)
+
+        return [x.strip() for x in args if x.strip() != ""]
+
+    def fetch_calls(self, syscalls_info):
+        for event in self.logs:
+            time = event["time"]
+            category = "misc"
+            syscall = event["syscall"]
+            arguments = []
+            args = self.split_arguments(event["args"])
+            if syscall_info := syscalls_info.get(syscall, None):
+                category = syscall_info.get("category", "misc")
+                arg_names = syscall_info.get("signature", None)
+                for arg_name, arg in zip(arg_names, args):
+                    arguments.append(
+                        {
+                            "name": arg_name,
+                            "value": arg,
+                        }
+                    )
+            else:
+                arguments.append(event["args"])
+            retval = event["retval"]
+
+            if len(self.calls) == 0:
+                self.first_seen = time
+
+            if syscall == "execve":
+                try:
+                    self.process_name = " ".join(ast.literal_eval(args[1]))
+                except Exception:
+                    self.process_name = str(args[1])
+
+            if syscall in ["fork", "vfork", "clone", "clone3"]:
+                # Identify if thread or fork with reference to:
+                # https://github.com/mgedmin/strace-process-tree/blob/bb61f6273b91a7c98e73657a61c6bd69cfadb781/strace_process_tree.py#L328-#L332
+                if syscall.startswith("clone"):
+                    if "CLONE_THREAD" in event["args"]:
+                        self.children_ids.append((int(retval), "(thread)"))
+                    elif "flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD" in event["args"]:
+                        self.children_ids.append((int(retval), "(fork)"))
+                else:
+                    # append children and the corresponding API call that spawns it
+                    self.children_ids.append((int(retval), syscall + "(" + event["args"] + ")"))
+
+            self.calls.append(
+                {
+                    "timestamp": time,
+                    "category": category,
+                    "api": syscall,
+                    "return": retval,
+                    "arguments": arguments,
+                }
+            )
+
+            # Consider open/openat/dup syscalls for tracking opened file descriptors
+            if retval > "0":
+                match syscall:
+                    case call if call in ["open", "creat"]:
+                        self.file_descriptors.append(
+                            {
+                                "time": time,
+                                "syscall": syscall,
+                                "fd": retval,
+                                "filename": ast.literal_eval(args[0]),
+                            }
+                        )
+                    case call if call in ["openat", "openat2"]:
+                        self.file_descriptors.append(
+                            {
+                                "time": time,
+                                "syscall": syscall,
+                                "fd": retval,
+                                "filename": ast.literal_eval(args[1]),
+                            }
+                        )
+                    case call if call in ["dup", "dup2", "dup3"]:
+                        self.file_descriptors.append(
+                            {
+                                "time": time,
+                                "syscall": syscall,
+                                "oldfd": args[0],
+                                "fd": retval,
+                            }
+                        )
+                continue
+
+            # Consider close syscalls for tracking closed file descriptors
+            if retval == "0" and syscall == "close":
+                self.file_descriptors.append(
+                    {
+                        "time": time,
+                        "syscall": syscall,
+                        "fd": args[0],
+                    }
+                )
+
+
+class Processes:
+    """Processes analyzer."""
+
+    key = "processes"
+
+    def __init__(self, logs_path, options):
+        """
+        @param _logs_path: path of the strace logs
+        @param syscalls_info: information of indexed syscalls
+        """
+        self._logs_path = logs_path
+        self.syscalls_info = self.load_syscalls_args()
+        self.options = options
+        self.results = []
+
+    def load_syscalls_args(self):
+        """
+        Returns dictionary with syscall information indexed by syscall index.
+        The values include the signature of the syscall and the category
+        extracted from the definition location.
+        """
+        syscalls_json = open("/opt/CAPEv2/data/linux/linux-syscalls.json", "r")
+        syscalls_dict = json.load(syscalls_json)
+        return {
+            syscall["name"]: {
+                "signature": syscall["signature"],
+                "category": "kernel" if "kernel" in syscall["file"] else syscall["file"].split("/")[0],
+            }
+            for syscall in syscalls_dict["syscalls"]
+        }
+
+    def update_file_descriptors(self, fd_calls):
+        """
+        Returns an updated process list where file-access related calls have
+        the matching file descriptor at the time of it being opened.
+        """
+        if not self.options.get("update_file_descriptors"):
+            return
+        # Default file descriptors
+        fd_lookup = {
+            "0": [{
+                "filename": "STDIN",
+                "time_opened": "00:00:00.000000",
+                "time_closed": None,
+            }],
+            "1": [{
+                "filename": "STDOUT",
+                "time_opened": "00:00:00.000000",
+                "time_closed": None,
+            }],
+            "2": [{
+                "filename": "STDERR",
+                "time_opened": "00:00:00.000000",
+                "time_closed": None,
+            }]
+        }
+        for fd_call in fd_calls:
+            # Retrieve the relevant informaton from syscalls that open/duplicate/close file descriptors
+            match fd_call["syscall"]:
+                case syscall if syscall in ["open", "creat", "openat", "openat2"]:
+                    fd_lookup.setdefault(fd_call["fd"], []).append(
+                        {
+                            "filename": fd_call["filename"],
+                            "time_opened": fd_call["time"],
+                            "time_closed": None,
+                        }
+                    )
+                case syscall if syscall in ["dup", "dup2", "dup3"]:
+                    for fd in reversed(fd_lookup.get(fd_call["oldfd"], [])):
+                        if fd["time_closed"] is None:
+                            fd_lookup.setdefault(fd_call["fd"], []).append(
+                                {
+                                    "filename": fd["filename"],
+                                    "time_opened": fd_call["time"],
+                                    "time_closed": None,
+                                }
+                            )
+                case "close":
+                    for fd in reversed(fd_lookup.get(fd_call["fd"], [])):
+                        if fd["time_closed"] is None:
+                            fd["time_closed"] = fd_call["time"]
+
+        for process in self.results:
+            calls = [c for c in process["calls"] if c["api"] in fd_syscalls]
+            for call in calls:
+                # append filename to file descriptor according to relevant time that fd is opened
+                # if any unclosed file descriptor, assume that it is closed after process is finished
+                for fd in fd_lookup.get(call["arguments"][0]["value"], []):
+                    if (
+                        fd["time_opened"] < call["timestamp"]
+                        and (fd["time_closed"] is None or call["timestamp"] <= fd["time_closed"])
+                    ):
+                        call["arguments"][0]["value"] += f' ({fd["filename"]})'
+                        break
+
+    def update_parent_ids(self, relations):
+        """
+        Returns an updated process list with the matched parent IDs
+        """
+        # Create a dictionary to map process IDs to their respective entries
+        process_dict = {entry["process_id"]: entry for entry in self.results}
+
+        # Iterate through the parent_relations dictionary
+        for parent_id, children in relations.items():
+            # Check if the parent_id exists in the process_dict
+            if parent_id in process_dict:
+                # Update the parent_id for each child
+                for child_id, name in children:
+                    if child_id in process_dict:
+                        process_dict[child_id]["parent_id"] = parent_id
+                        if process_dict[child_id]["process_name"] is None:
+                            process_dict[child_id]["process_name"] = name
+
+        # Convert the dictionary back to a list of entries
+        self.results = list(process_dict.values())
+
+    def log_concat(self, unfinished, resumed):
+        """
+        Concatenates all the respective unfinished and resumed strace logs into a string,
+        matching '<unfinished ...>' and '<... {syscall} resumed>' strings accordingly,
+        returns the `resumed` time as that is the completed syscall time.
+        """
+        data = ""
+        for key in unfinished.keys():
+            for head in unfinished[key]:
+                for tail in resumed[key]:
+                    if head["syscall"] != tail["syscall"]:
+                        continue
+                    data += " ".join([str(key), tail["time"], head["unfinished"] + tail["resumed"] + "\n"])
+                    resumed[key].remove(tail)
+                    break
+        return data
+
+    def extract_logs(self, raw_logs, pattern):
+        extracted_logs = dict()
+        for match in pattern.finditer(raw_logs):
+            match = match.groupdict()
+            pid = int(match.pop("pid"))
+            if pid not in extracted_logs:
+                extracted_logs[pid] = []
+            extracted_logs[pid].append(match)
+        return extracted_logs
+
+    def normalize_logs(self):
+        """
+        Normalize the logs into a standard format to process the syscall information.
+        Returns a list of dictionaries containing syscall information.
+        """
+        log_pattern = re.compile(
+            r"(?P<pid>\d+)\s+(?P<time>\d+:\d+:\d+\.\d+)\s+(?P<syscall>\w+)\((?P<args>.*)\)\s+=\s(?P<retval>.+)\n"
+        )
+        unfinished_pattern = re.compile(
+            r"(?P<pid>\d+)\s+\d+:\d+:\d+\.\d+\s+(?P<unfinished>(?P<syscall>\w+)\(.*)\s+<unfinished\s...>\n"
+        )
+        resumed_pattern = re.compile(
+            r"(?P<pid>\d+)\s+(?P<time>\d+:\d+:\d+\.\d+)\s+<\.\.\.\s(?P<syscall>\w+)\sresumed>(?P<resumed>.*)\n"
+        )
+        with open(self._logs_path, "r") as log_file:
+            raw_logs = log_file.read()
+
+        normal_logs = self.extract_logs(raw_logs, log_pattern)
+        unfinished_logs = self.extract_logs(raw_logs, unfinished_pattern)
+        resumed_logs = self.extract_logs(raw_logs, resumed_pattern)
+
+        concat_raw_logs = self.log_concat(unfinished_logs, resumed_logs)
+        concat_logs = self.extract_logs(concat_raw_logs, log_pattern)
+        for pid in concat_logs.keys():
+            if pid not in normal_logs:
+                normal_logs[pid] = []
+            normal_logs[pid].extend(concat_logs[pid])
+            normal_logs[pid].sort(key=lambda d: d["time"])
+
+        return normal_logs
+
+    def run(self):
+        parent_child_relation = {}
+        fd = []
+
+        if not path_exists(self._logs_path):
+            log.warning('Strace logs does not exist at path "%s"', self._logs_path)
+            return self.results
+
+        if not os.stat(self._logs_path).st_size > 0:
+            log.warning('Strace logs does not contain data at path "%s"', self._logs_path)
+            return self.results
+
+        processes = self.normalize_logs()
+
+        for pid in processes.keys():
+            current_log = ParseProcessLog(pid, processes[pid], self.syscalls_info, self.options)
+
+            parent_child_relation[current_log.process_id] = current_log.children_ids
+
+            self.results.append(
+                {
+                    "process_id": current_log.process_id,
+                    "process_name": current_log.process_name,
+                    "parent_id": None,
+                    "first_seen": current_log.first_seen,
+                    "calls": current_log.calls,
+                }
+            )
+
+            fd += current_log.file_descriptors
+
+        self.update_parent_ids(parent_child_relation)
+        self.update_file_descriptors(fd)
+
+        # Sort the items in the results list chronologically. In this way we
+        # can have a sequential order of spawned processes.
+        self.results.sort(key=lambda process: process["first_seen"])
+
+        return self.results
+
+
+class ProcessTree:
+    """Generates process tree."""
+
+    key = "processtree"
+
+    def __init__(self):
+        self.processes = []
+        self.tree = []
+
+    def add_node(self, node, tree):
+        """Add a node to a process tree.
+        @param node: node to add.
+        @param tree: processes tree.
+        @return: boolean with operation success status.
+        """
+        # Walk through the existing tree.
+        ret = False
+        for process in tree:
+            # If the current process has the same ID of the parent process of
+            # the provided one, append it the children.
+            if process["pid"] == node["parent_id"]:
+                process["children"].append(node)
+                ret = True
+                break
+            # Otherwise try with the children of the current process.
+            else:
+                if self.add_node(node, process["children"]):
+                    ret = True
+                    break
+        return ret
+
+    def event_apicall(self, call, process):
+        for entry in self.processes:
+            if entry["pid"] == process["process_id"]:
+                return
+
+        self.processes.append(
+            {
+                "name": process["process_name"],
+                "pid": process["process_id"],
+                "parent_id": process["parent_id"],
+                "children": [],
+            }
+        )
+
+    def run(self):
+        children = []
+
+        # Walk through the generated list of processes.
+        for process in self.processes:
+            has_parent = False
+            # Walk through the list again.
+            for process_again in self.processes:
+                if process_again == process:
+                    continue
+                # If we find a parent for the first process, we mark it as
+                # as a child.
+                if process_again["pid"] == process["parent_id"]:
+                    has_parent = True
+                    break
+
+            # If the process has a parent, add it to the children list.
+            if has_parent:
+                children.append(process)
+            # Otherwise it's an orphan and we add it to the tree root.
+            else:
+                self.tree.append(process)
+
+        # Now we loop over the remaining child processes.
+        for process in children:
+            if not self.add_node(process, self.tree):
+                self.tree.append(process)
+
+        return self.tree
+
+
+class StraceAnalysis(Processing):
+    """Strace Analyzer."""
+
+    key = "behavior"
+    os = "linux"
+
+    def run(self):
+        """
+        Run analysis on strace logs
+        @return: results dict.
+        """
+        strace = {"processes": Processes(os.path.join(self.logs_path, "strace.log"), self.options).run()}
+
+        instances = [
+            ProcessTree(),
+        ]
+        enabled_instances = [instance for instance in instances if getattr(self.options, instance.key, True)]
+
+        if enabled_instances:
+            # Iterate calls and tell interested signatures about them
+            for process in strace["processes"]:
+                for call in process["calls"]:
+                    for instance in enabled_instances:
+                        try:
+                            instance.event_apicall(call, process)
+                        except Exception:
+                            log.exception('Failure in partial behavior "%s"', instance.key)
+
+        for instance in instances:
+            try:
+                strace[instance.key] = instance.run()
+            except Exception as e:
+                log.exception('Failed to run partial behavior class "%s" due to "%s"', instance.key, e)
+
+        return strace
diff --git a/modules/processing/strings.py b/modules/processing/strings.py
deleted file mode 100644
index dece600ed78..00000000000
--- a/modules/processing/strings.py
+++ /dev/null
@@ -1,58 +0,0 @@
-# Copyright (C) 2010-2015 Cuckoo Foundation, Optiv, Inc. (brad.spengler@optiv.com)
-# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
-# See the file 'docs/LICENSE' for copying permission.
-
-from __future__ import absolute_import
-import os.path
-
-HAVE_RE2 = False
-try:
-    import re2 as re
-
-    HAVE_RE2 = True
-except ImportError:
-    import re
-
-from lib.cuckoo.common.utils import bytes2str
-from lib.cuckoo.common.abstracts import Processing
-from lib.cuckoo.common.exceptions import CuckooProcessingError
-
-
-class Strings(Processing):
-    """Extract strings from analyzed file."""
-
-    def run(self):
-        """Run extract of printable strings.
-        @return: list of printable strings.
-        """
-        self.key = "strings"
-        strings = []
-
-        if self.task["category"] in ("file", "static"):
-            if not os.path.exists(self.file_path):
-                raise CuckooProcessingError('Sample file doesn\'t exist: "%s"' % self.file_path)
-
-            try:
-                data = open(self.file_path, "rb").read()
-            except (IOError, OSError) as e:
-                raise CuckooProcessingError("Error opening file %s" % e)
-
-            nulltermonly = self.options.get("nullterminated_only", True)
-            minchars = self.options.get("minchars", 5)
-
-            endlimit = b""
-            if not HAVE_RE2:
-                endlimit = b"8192"
-
-            if nulltermonly:
-                apat = b"([\x20-\x7e]{" + str(minchars).encode("utf-8") + b"," + endlimit + b"})\x00"
-                upat = b"((?:[\x20-\x7e][\x00]){" + str(minchars).encode("utf-8") + b"," + endlimit + b"})\x00\x00"
-            else:
-                apat = b"[\x20-\x7e]{" + str(minchars).encode("utf-8") + b"," + endlimit + b"}"
-                upat = b"(?:[\x20-\x7e][\x00]){" + str(minchars).encode("utf-8") + b"," + endlimit + b"}"
-
-            strings = [bytes2str(string) for string in re.findall(apat, data)]
-            for ws in re.findall(upat, data):
-                strings.append(str(ws.decode("utf-16le")))
-
-        return strings
diff --git a/modules/processing/suricata.py b/modules/processing/suricata.py
index 5a01178d63b..bb00e371152 100644
--- a/modules/processing/suricata.py
+++ b/modules/processing/suricata.py
@@ -2,25 +2,38 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 import datetime
-import simplejson as json
+import json
 import logging
 import os
 import shutil
 import subprocess
-import sys
 import time
+from contextlib import suppress
+
+from data.safelist.domains import domain_passlist_re
+from lib.cuckoo.common.abstracts import Processing
+from lib.cuckoo.common.config import Config
+from lib.cuckoo.common.constants import CUCKOO_ROOT
+from lib.cuckoo.common.objects import File
+from lib.cuckoo.common.path_utils import path_delete, path_exists, path_read_file, path_write_file
+from lib.cuckoo.common.suricata_detection import et_categories, get_suricata_family
+from lib.cuckoo.common.utils import add_family_detection, convert_to_printable_and_truncate
+
+processing_cfg = Config("processing")
+
+try:
+    import orjson
+
+    HAVE_ORJSON = True
+except ImportError:
+    HAVE_ORJSON = False
 
 try:
     import re2 as re
 except ImportError:
     import re
 
-from lib.cuckoo.common.abstracts import Processing
-from lib.cuckoo.common.objects import File
-from lib.cuckoo.common.utils import convert_to_printable
-
 log = logging.getLogger(__name__)
 
 
@@ -30,21 +43,16 @@ class Suricata(Processing):
     def cmd_wrapper(self, cmd):
         p = subprocess.Popen(cmd, stdout=subprocess.PIPE, stdin=subprocess.PIPE, stderr=subprocess.PIPE, shell=True)
         stdout, stderr = p.communicate()
-        return (p.returncode, stdout, stderr)
+        return p.returncode, stdout, stderr
 
     def sort_by_timestamp(self, unsorted):
         # Convert time string into a datetime object for sorting
-        for item in unsorted:
-            oldtime = item["timestamp"]
-            newtime = datetime.datetime.strptime(oldtime[:-5], "%Y-%m-%d %H:%M:%S.%f")
-            item["timestamp"] = newtime
-
-        tmp = sorted(unsorted, key=lambda k: k["timestamp"])
-        # Iterate sorted, converting datetime object back to string for display later
-        for item in tmp:
-            item["timestamp"] = datetime.datetime.strftime(item["timestamp"], "%Y-%m-%d %H:%M:%S.%f")[:-3]
+        return sorted(unsorted, key=lambda k: datetime.datetime.strptime(k["timestamp"][:-5], "%Y-%m-%d %H:%M:%S.%f"))
 
-        return tmp
+    def json_default(self, obj):
+        if isinstance(obj, bytes):
+            return obj.decode()
+        raise TypeError
 
     def run(self):
         """Run Suricata.
@@ -52,88 +60,86 @@ def run(self):
         """
         self.key = "suricata"
         # General
-        SURICATA_CONF = self.options.get("conf", None)
-        SURICATA_EVE_LOG = self.options.get("evelog", None)
-        SURICATA_ALERT_LOG = self.options.get("alertlog", None)
-        SURICATA_TLS_LOG = self.options.get("tlslog", None)
-        SURICATA_HTTP_LOG = self.options.get("httplog", None)
-        SURICATA_SSH_LOG = self.options.get("sshlog", None)
-        SURICATA_DNS_LOG = self.options.get("dnslog", None)
-        SURICATA_FILE_LOG = self.options.get("fileslog", None)
-        SURICATA_FILES_DIR = self.options.get("filesdir", None)
-        SURICATA_RUNMODE = self.options.get("runmode", None)
+        SURICATA_CONF = self.options.get("conf")
+        SURICATA_EVE_LOG = self.options.get("evelog")
+        SURICATA_ALERT_LOG = self.options.get("alertlog")
+        SURICATA_TLS_LOG = self.options.get("tlslog")
+        SURICATA_HTTP_LOG = self.options.get("httplog")
+        SURICATA_SSH_LOG = self.options.get("sshlog")
+        SURICATA_DNS_LOG = self.options.get("dnslog")
+        SURICATA_FILE_LOG = self.options.get("fileslog")
+        SURICATA_FILES_DIR = self.options.get("filesdir")
+        SURICATA_RUNMODE = self.options.get("runmode")
         SURICATA_FILE_BUFFER = self.options.get("buffer", 8192)
-        Z7_PATH = self.options.get("7zbin", None)
-        FILES_ZIP_PASS = self.options.get("zippass", None)
+        Z7_PATH = os.path.join(CUCKOO_ROOT, self.options.get("7zbin"))
+        FILES_ZIP_PASS = self.options.get("zippass")
 
         # Socket
-        SURICATA_SOCKET_PATH = self.options.get("socket_file", None)
+        SURICATA_SOCKET_PATH = self.options.get("socket_file")
 
         # Command Line
-        SURICATA_BIN = self.options.get("bin", None)
-
-        suricata = dict()
-        suricata["alerts"] = []
-        suricata["tls"] = []
-        suricata["perf"] = []
-        suricata["files"] = []
-        suricata["http"] = []
-        suricata["dns"] = []
-        suricata["ssh"] = []
-        suricata["fileinfo"] = []
-
-        suricata["eve_log_full_path"] = None
-        suricata["alert_log_full_path"] = None
-        suricata["tls_log_full_path"] = None
-        suricata["http_log_full_path"] = None
-        suricata["file_log_full_path"] = None
-        suricata["ssh_log_full_path"] = None
-        suricata["dns_log_full_path"] = None
-
-        tls_items = ["fingerprint", "issuer", "version", "subject", "sni", "ja3", "serial"]
-
-        SURICATA_ALERT_LOG_FULL_PATH = "%s/%s" % (self.logs_path, SURICATA_ALERT_LOG)
-        SURICATA_TLS_LOG_FULL_PATH = "%s/%s" % (self.logs_path, SURICATA_TLS_LOG)
-        SURICATA_HTTP_LOG_FULL_PATH = "%s/%s" % (self.logs_path, SURICATA_HTTP_LOG)
-        SURICATA_SSH_LOG_FULL_PATH = "%s/%s" % (self.logs_path, SURICATA_SSH_LOG)
-        SURICATA_DNS_LOG_FULL_PATH = "%s/%s" % (self.logs_path, SURICATA_DNS_LOG)
-        SURICATA_EVE_LOG_FULL_PATH = "%s/%s" % (self.logs_path, SURICATA_EVE_LOG)
-        SURICATA_FILE_LOG_FULL_PATH = "%s/%s" % (self.logs_path, SURICATA_FILE_LOG)
-        SURICATA_FILES_DIR_FULL_PATH = "%s/%s" % (self.logs_path, SURICATA_FILES_DIR)
-
-        separate_log_paths = [
+        SURICATA_BIN = self.options.get("bin")
+
+        suricata = {
+            "alerts": [],
+            "tls": [],
+            "perf": [],
+            "files": [],
+            "http": [],
+            "dns": [],
+            "ssh": [],
+            "fileinfo": [],
+            "eve_log_full_path": None,
+            "alert_log_full_path": None,
+            "tls_log_full_path": None,
+            "http_log_full_path": None,
+            "file_log_full_path": None,
+            "ssh_log_full_path": None,
+            "dns_log_full_path": None,
+        }
+
+        tls_items = ("fingerprint", "issuerdn", "version", "subject", "sni", "ja3", "ja3s", "serial", "notbefore", "notafter")
+
+        SURICATA_ALERT_LOG_FULL_PATH = f"{self.logs_path}/{SURICATA_ALERT_LOG}"
+        SURICATA_TLS_LOG_FULL_PATH = f"{self.logs_path}/{SURICATA_TLS_LOG}"
+        SURICATA_HTTP_LOG_FULL_PATH = f"{self.logs_path}/{SURICATA_HTTP_LOG}"
+        SURICATA_SSH_LOG_FULL_PATH = f"{self.logs_path}/{SURICATA_SSH_LOG}"
+        SURICATA_DNS_LOG_FULL_PATH = f"{self.logs_path}/{SURICATA_DNS_LOG}"
+        SURICATA_EVE_LOG_FULL_PATH = f"{self.logs_path}/{SURICATA_EVE_LOG}"
+        SURICATA_FILE_LOG_FULL_PATH = f"{self.logs_path}/{SURICATA_FILE_LOG}"
+        SURICATA_FILES_DIR_FULL_PATH = f"{self.logs_path}/{SURICATA_FILES_DIR}"
+
+        separate_log_paths = (
             ("alert_log_full_path", SURICATA_ALERT_LOG_FULL_PATH),
             ("tls_log_full_path", SURICATA_TLS_LOG_FULL_PATH),
             ("http_log_full_path", SURICATA_HTTP_LOG_FULL_PATH),
             ("ssh_log_full_path", SURICATA_SSH_LOG_FULL_PATH),
             ("dns_log_full_path", SURICATA_DNS_LOG_FULL_PATH),
-        ]
+        )
 
         # handle reprocessing
         all_log_paths = [x[1] for x in separate_log_paths] + [SURICATA_EVE_LOG_FULL_PATH, SURICATA_FILE_LOG_FULL_PATH]
         for log_path in all_log_paths:
-            if os.path.exists(log_path):
-                try:
-                    os.unlink(log_path)
-                except:
-                    pass
+            if path_exists(log_path):
+                with suppress(Exception):
+                    path_delete(log_path)
         if os.path.isdir(SURICATA_FILES_DIR_FULL_PATH):
-            try:
+            with suppress(Exception):
                 shutil.rmtree(SURICATA_FILES_DIR_FULL_PATH, ignore_errors=True)
-            except:
-                pass
 
-        if not os.path.exists(SURICATA_CONF):
-            log.warning("Unable to Run Suricata: Conf File {} Does Not Exist".format(SURICATA_CONF))
+        if not path_exists(SURICATA_CONF):
+            log.warning("Unable to Run Suricata: Conf File %s does not exist", SURICATA_CONF)
             return suricata
-        if not os.path.exists(self.pcap_path):
-            log.warning("Unable to Run Suricata: Pcap file {} Does Not Exist".format(self.pcap_path))
+        if not path_exists(self.pcap_path):
+            log.debug(
+                "Unable to Run Suricata: Pcap file %s does not exist. Did you run analysis with live connection?", self.pcap_path
+            )
             return suricata
 
         # Add to this if you wish to ignore any SIDs for the suricata alert logs
         # Useful for ignoring SIDs without disabling them. Ex: surpress an alert for
         # a SID which is a dependent of another. (Bad TCP data for HTTP(S) alert)
-        sid_blacklist = [
+        sid_blacklist = (
             # SURICATA FRAG IPv6 Fragmentation overlap
             2200074,
             # ET INFO InetSim Response from External Source Possible SinkHole
@@ -142,60 +148,61 @@ def run(self):
             2200075,
             # ET POLICY SSLv3 outbound connection from client vulnerable to POODLE attack
             2019416,
-        ]
+        )
 
         if SURICATA_RUNMODE == "socket":
             try:
                 # from suricatasc import SuricataSC
                 from lib.cuckoo.common.suricatasc import SuricataSC
             except Exception as e:
-                log.warning("Failed to import suricatasc lib {}".format(e))
+                log.warning("Failed to import suricatasc lib: %s", e)
                 return suricata
 
             loopcnt = 0
             maxloops = 24
             loopsleep = 5
 
-            args = dict()
-            args["filename"] = self.pcap_path
-            args["output-dir"] = self.logs_path
+            args = {
+                "filename": self.pcap_path,
+                "output-dir": self.logs_path,
+            }
 
             suris = SuricataSC(SURICATA_SOCKET_PATH)
             try:
                 suris.connect()
                 suris.send_command("pcap-file", args)
             except Exception as e:
-                log.warning("Failed to connect to socket and send command {}: {}".format(SURICATA_SOCKET_PATH, e))
+                log.warning("Failed to connect to socket and send command %s: %s", SURICATA_SOCKET_PATH, e)
                 return suricata
             while loopcnt < maxloops:
                 try:
                     pcap_flist = suris.send_command("pcap-file-list")
                     current_pcap = suris.send_command("pcap-current")
-                    log.debug("pcapfile list: {} current pcap: {}".format(pcap_flist, current_pcap))
+                    log.debug("pcapfile list: %s current pcap: %s", pcap_flist, current_pcap)
 
                     if self.pcap_path not in pcap_flist["message"]["files"] and current_pcap["message"] != self.pcap_path:
                         log.debug("Pcap not in list and not current pcap lets assume it's processed")
                         break
                     else:
-                        loopcnt = loopcnt + 1
+                        loopcnt += 1
                         time.sleep(loopsleep)
                 except Exception as e:
-                    log.warning("Failed to get pcap status breaking out of loop {}".format(e))
+                    log.warning("Failed to get pcap status breaking out of loop: %s", e)
                     break
 
             if loopcnt == maxloops:
-                logstr = "Loop timeout of {} sec occurred waiting for file {} to finish processing"
-                log.warning(logstr.format(maxloops * loopsleep, current_pcap))
+                log.warning(
+                    "Loop timeout of %d sec occurred waiting for file %s to finish processing", maxloops * loopsleep, current_pcap
+                )
                 return suricata
         elif SURICATA_RUNMODE == "cli":
-            if not os.path.exists(SURICATA_BIN):
-                log.warning("Unable to Run Suricata: Bin File {} Does Not Exist".format(SURICATA_CONF))
+            if not path_exists(SURICATA_BIN):
+                log.warning("Unable to Run Suricata: Bin File %s does not exist", SURICATA_CONF)
                 return suricata["alerts"]
-            cmdstr = "{} -c {} -k none -l {} -r {}"
-            cmd = cmdstr.format(SURICATA_BIN, SURICATA_CONF, self.logs_path, self.pcap_path)
+            cmd = f"{SURICATA_BIN} -c {SURICATA_CONF} -k none -l {self.logs_path} -r {self.pcap_path}"
             ret, _, stderr = self.cmd_wrapper(cmd)
             if ret != 0:
-                log.warning("Suricata returned a Exit Value Other than Zero {}".format(stderr))
+                log.warning("Suricata returned a Exit Value Other than Zero: %s", stderr)
                 return suricata
 
         else:
@@ -203,13 +210,13 @@ def run(self):
             return suricata
 
         datalist = []
-        if os.path.exists(SURICATA_EVE_LOG_FULL_PATH):
+        if path_exists(SURICATA_EVE_LOG_FULL_PATH):
             suricata["eve_log_full_path"] = SURICATA_EVE_LOG_FULL_PATH
             with open(SURICATA_EVE_LOG_FULL_PATH, "rb") as eve_log:
                 datalist.append(eve_log.read())
         else:
             for path in separate_log_paths:
-                if os.path.exists(path[1]):
+                if path_exists(path[1]):
                     suricata[path[0]] = path[1]
                     with open(path[1], "rb") as the_log:
                         datalist.append(the_log.read())
@@ -217,60 +224,79 @@ def run(self):
         if not datalist:
             log.warning("Suricata: Failed to find usable Suricata log file")
 
+        enabled_passlist = processing_cfg.network.dnswhitelist
+        passlist_file = processing_cfg.network.dnswhitelist_file
+        comment_re = re.compile(r"\s*#.*")
+
+        if enabled_passlist and passlist_file:
+            f = path_read_file(os.path.join(CUCKOO_ROOT, passlist_file), mode="text")
+            for domain in f.splitlines():
+                domain = comment_re.sub("", domain).strip()
+                if domain:
+                    domain_passlist_re.append(domain)
+
+        filter_event_types = {"alert": "", "http": "hostname", "tls": "sni", "dns": "rrname", "ssh": "hostname", "fileinfo": ""}
+
         parsed_files = []
         for data in datalist:
             for line in data.splitlines():
                 try:
                     parsed = json.loads(line)
-                except:
-                    log.warning("Suricata: Failed to parse line {} as json".format(line))
+                except Exception:
+                    log.warning("Suricata: Failed to parse line %s as json", line)
                     continue
 
+                skip_event = False
                 if "event_type" in parsed:
-                    if parsed["event_type"] == "alert":
-                        if parsed["alert"]["signature_id"] not in sid_blacklist and not parsed["alert"]["signature"].startswith(
-                            "SURICATA STREAM"
-                        ):
-                            alog = dict()
-                            if parsed["alert"]["gid"] == "":
-                                alog["gid"] = "None"
-                            else:
-                                alog["gid"] = parsed["alert"]["gid"]
-                            if parsed["alert"]["rev"] == "":
-                                alog["rev"] = "None"
-                            else:
-                                alog["rev"] = parsed["alert"]["rev"]
-                            if parsed["alert"]["severity"] == "":
-                                alog["severity"] = "None"
-                            else:
-                                alog["severity"] = parsed["alert"]["severity"]
-                            alog["sid"] = parsed["alert"]["signature_id"]
-                            try:
-                                alog["srcport"] = parsed["src_port"]
-                            except:
-                                alog["srcport"] = "None"
-                            alog["srcip"] = parsed["src_ip"]
-                            try:
-                                alog["dstport"] = parsed["dest_port"]
-                            except:
-                                alog["dstport"] = "None"
-                            alog["dstip"] = parsed["dest_ip"]
-                            alog["protocol"] = parsed["proto"]
-                            alog["timestamp"] = parsed["timestamp"].replace("T", " ")
-                            if parsed["alert"]["category"] == "":
-                                alog["category"] = "None"
-                            else:
-                                alog["category"] = parsed["alert"]["category"]
-                            alog["signature"] = parsed["alert"]["signature"]
-                            suricata["alerts"].append(alog)
+                    event_key = parsed["event_type"]
+                    filter_key = event_key
+                    if enabled_passlist and event_key in filter_event_types:
+                        if event_key in ("alert", "fileinfo"):
+                            filter_key = "http"
+                        search_value = parsed[event_key].get(filter_event_types[filter_key], "")
+
+                        for reject in domain_passlist_re:
+                            if re.search(reject, search_value):
+                                skip_event = True
+
+                    if skip_event:
+                        continue
+
+                    if (
+                        parsed["event_type"] == "alert"
+                        and parsed["alert"]["signature_id"] not in sid_blacklist
+                        and not parsed["alert"]["signature"].startswith("SURICATA STREAM")
+                    ):
+                        alog = {
+                            "gid": parsed["alert"]["gid"] or None,
+                            "rev": parsed["alert"]["rev"] or None,
+                            "severity": parsed["alert"]["severity"] or None,
+                            "sid": parsed["alert"]["signature_id"],
+                        }
+                        try:
+                            alog["srcport"] = parsed["src_port"]
+                        except Exception:
+                            alog["srcport"] = None
+                        alog["srcip"] = parsed["src_ip"]
+                        try:
+                            alog["dstport"] = parsed["dest_port"]
+                        except Exception:
+                            alog["dstport"] = None
+                        alog["dstip"] = parsed["dest_ip"]
+                        alog["protocol"] = parsed["proto"]
+                        alog["timestamp"] = parsed["timestamp"].replace("T", " ")
+                        alog["category"] = parsed["alert"]["category"] or None
+                        alog["signature"] = parsed["alert"]["signature"]
+                        suricata["alerts"].append(alog)
 
                     elif parsed["event_type"] == "http":
-                        hlog = dict()
-                        hlog["srcport"] = parsed["src_port"]
-                        hlog["srcip"] = parsed["src_ip"]
-                        hlog["dstport"] = parsed["dest_port"]
-                        hlog["dstip"] = parsed["dest_ip"]
-                        hlog["timestamp"] = parsed["timestamp"].replace("T", " ")
+                        hlog = {
+                            "srcport": parsed["src_port"],
+                            "srcip": parsed["src_ip"],
+                            "dstport": parsed["dest_port"],
+                            "dstip": parsed["dest_ip"],
+                            "timestamp": parsed["timestamp"].replace("T", " "),
+                        }
                         keyword = ("uri", "length", "hostname", "status", "http_method", "contenttype", "ua", "referrer")
                         keyword_suri = (
                             "url",
@@ -284,18 +310,19 @@ def run(self):
                         )
                         for key, key_s in zip(keyword, keyword_suri):
                             try:
-                                hlog[key] = parsed["http"].get(key_s, "None")
-                            except:
-                                hlog[key] = "None"
+                                hlog[key] = parsed["http"].get(key_s, None)
+                            except Exception:
+                                hlog[key] = None
                         suricata["http"].append(hlog)
 
                     elif parsed["event_type"] == "tls":
-                        tlog = dict()
-                        tlog["srcport"] = parsed["src_port"]
-                        tlog["srcip"] = parsed["src_ip"]
-                        tlog["dstport"] = parsed["dest_port"]
-                        tlog["dstip"] = parsed["dest_ip"]
-                        tlog["timestamp"] = parsed["timestamp"].replace("T", " ")
+                        tlog = {
+                            "srcport": parsed["src_port"],
+                            "srcip": parsed["src_ip"],
+                            "dstport": parsed["dest_port"],
+                            "dstip": parsed["dest_ip"],
+                            "timestamp": parsed["timestamp"].replace("T", " "),
+                        }
                         for key in tls_items:
                             if key in parsed["tls"]:
                                 tlog[key] = parsed["tls"][key]
@@ -306,75 +333,84 @@ def run(self):
                     elif parsed["event_type"] == "dns":
                         suricata["dns"].append(parsed)
                     elif parsed["event_type"] == "fileinfo":
-                        flog = dict()
-                        flog["http_host"] = parsed.get("http", {}).get("hostname", "")
-                        flog["http_uri"] = parsed.get("http", {}).get("url", "")
-                        flog["http_referer"] = parsed.get("http", {}).get("referer", "")
-                        flog["http_user_agent"] = parsed.get("http", {}).get("http_user_agent", "")
-                        flog["protocol"] = parsed.get("proto", "")
-                        flog["magic"] = parsed.get("fileinfo", {}).get("magic", "")
-                        flog["size"] = parsed.get("fileinfo", {}).get("size", "")
-                        flog["stored"] = parsed.get("fileinfo", {}).get("stored", "")
-                        flog["sha256"] = parsed.get("fileinfo", {}).get("sha256", "")
-                        flog["md5"] = parsed.get("fileinfo", {}).get("md5", "")
-                        flog["filename"] = parsed.get("fileinfo", {}).get("filename", "")
-                        flog["file_info"] = dict()
+                        flog = {
+                            "http_host": parsed.get("http", {}).get("hostname", ""),
+                            "http_uri": parsed.get("http", {}).get("url", ""),
+                            "http_referer": parsed.get("http", {}).get("referer", ""),
+                            "http_user_agent": parsed.get("http", {}).get("http_user_agent", ""),
+                            "protocol": parsed.get("proto", ""),
+                            "magic": parsed.get("fileinfo", {}).get("magic", ""),
+                            "size": parsed.get("fileinfo", {}).get("size", ""),
+                            "stored": parsed.get("fileinfo", {}).get("stored", ""),
+                            "sha256": parsed.get("fileinfo", {}).get("sha256", ""),
+                            "md5": parsed.get("fileinfo", {}).get("md5", ""),
+                            "filename": parsed.get("fileinfo", {}).get("filename", ""),
+                            "file_info": {},
+                        }
                         if "/" in flog["filename"]:
-                            flog["filename"] = flog["filename"].split("/")[-1]
+                            flog["filename"] = flog["filename"].rsplit("/", 1)[-1]
                         parsed_files.append(flog)
 
         if parsed_files:
             for sfile in parsed_files:
                 if sfile.get("stored", False):
                     filename = sfile["sha256"]
-                    src_file = "{}/{}/{}".format(SURICATA_FILES_DIR_FULL_PATH, filename[0:2], filename)
-                    dst_file = "{}/{}".format(SURICATA_FILES_DIR_FULL_PATH, filename)
-                    if os.path.exists(src_file):
+                    src_file = f"{SURICATA_FILES_DIR_FULL_PATH}/{filename[0:2]}/{filename}"
+                    dst_file = f"{SURICATA_FILES_DIR_FULL_PATH}/{filename}"
+                    if path_exists(src_file):
                         try:
                             shutil.move(src_file, dst_file)
                         except OSError as e:
-                            log.warning("Unable to move suricata file: {}".format(e))
+                            log.warning("Unable to move suricata file: %s", e)
                             break
                         file_info, pefile_object = File(file_path=dst_file).get_all()
                         if pefile_object:
                             self.results.setdefault("pefiles", {})
                             self.results["pefiles"].setdefault(file_info["sha256"], pefile_object)
-                        try:
+                        with suppress(UnicodeDecodeError):
                             with open(file_info["path"], "r") as drop_open:
                                 filedata = drop_open.read(SURICATA_FILE_BUFFER + 1)
-                            if len(filedata) > SURICATA_FILE_BUFFER:
-                                file_info["data"] = convert_to_printable(filedata[:SURICATA_FILE_BUFFER] + " <truncated>")
-                            else:
-                                file_info["data"] = convert_to_printable(filedata)
-                        except UnicodeDecodeError as e:
-                            pass
+                            file_info["data"] = convert_to_printable_and_truncate(filedata, SURICATA_FILE_BUFFER)
                         if file_info:
                             sfile["file_info"] = file_info
                     suricata["files"].append(sfile)
-            with open(SURICATA_FILE_LOG_FULL_PATH, "w") as drop_log:
-                drop_log.write(json.dumps(suricata["files"], indent=4))
+
+            if HAVE_ORJSON:
+                _ = path_write_file(
+                    SURICATA_FILE_LOG_FULL_PATH,
+                    orjson.dumps(suricata["files"], option=orjson.OPT_INDENT_2, default=self.json_default),
+                )  # orjson.OPT_SORT_KEYS |
+            else:
+                with open(SURICATA_FILE_LOG_FULL_PATH, "w") as drop_log:
+                    json.dump(suricata["files"], drop_log, indent=4)
 
             # Cleanup file subdirectories left behind by messy Suricata
-            for d in [
+            for d in (
                 dirpath
-                for (dirpath, dirnames, filenames) in os.walk(SURICATA_FILES_DIR_FULL_PATH)
-                if len(dirnames) == 0 and len(filenames) == 0
-            ]:
+                for dirpath, dirnames, filenames in os.walk(SURICATA_FILES_DIR_FULL_PATH)
+                if len(dirnames) == 0 == len(filenames)
+            ):
                 try:
                     shutil.rmtree(d)
                 except OSError as e:
-                    log.warning("Unable to delete suricata file subdirectories: {}".format(e))
+                    log.warning("Unable to delete suricata file subdirectories: %s", e)
 
-        if SURICATA_FILES_DIR_FULL_PATH and os.path.exists(SURICATA_FILES_DIR_FULL_PATH) and Z7_PATH and os.path.exists(Z7_PATH):
-            # /usr/bin/7z a -pinfected -y files.zip files-json.log files
-            cmdstr = "cd {} && {} a -p{} -y files.zip {} {}"
-            cmd = cmdstr.format(self.logs_path, Z7_PATH, FILES_ZIP_PASS, SURICATA_FILE_LOG, SURICATA_FILES_DIR)
-            ret, stdout, stderr = self.cmd_wrapper(cmd)
+        if SURICATA_FILES_DIR_FULL_PATH and path_exists(SURICATA_FILES_DIR_FULL_PATH) and Z7_PATH and path_exists(Z7_PATH):
+            # /opt/CAPEv2/data/7zz a -pinfected -y files.zip files-json.log files
+            cmdstr = f"cd {self.logs_path} && {Z7_PATH} a -p{FILES_ZIP_PASS} -y files.zip {SURICATA_FILE_LOG} {SURICATA_FILES_DIR}"
+            ret, _, stderr = self.cmd_wrapper(cmdstr)
             if ret > 1:
-                log.warning("Suricata: Failed to create {}/files.zip - Error {}".format(self.logs_path, ret))
+                log.warning("Suricata: Failed to create %s/files.zip - Error %d", self.logs_path, ret)
 
         suricata["alerts"] = self.sort_by_timestamp(suricata["alerts"])
         suricata["http"] = self.sort_by_timestamp(suricata["http"])
         suricata["tls"] = self.sort_by_timestamp(suricata["tls"])
 
+        if processing_cfg.detections.suricata:
+            for alert in suricata.get("alerts", []):
+                if alert.get("signature", "").startswith(et_categories):
+                    family = get_suricata_family(alert["signature"])
+                    if family:
+                        add_family_detection(self.results, family, "Suricata", alert["signature"])
+
         return suricata
diff --git a/modules/processing/sysmon.py b/modules/processing/sysmon.py
deleted file mode 100644
index 0d26546a7ea..00000000000
--- a/modules/processing/sysmon.py
+++ /dev/null
@@ -1,84 +0,0 @@
-from __future__ import absolute_import
-import logging, os, re
-import xml.etree.ElementTree as ET
-import xmltodict
-
-from lib.cuckoo.common.abstracts import Processing
-from lib.cuckoo.common.exceptions import CuckooProcessingError
-
-log = logging.getLogger(__name__)
-
-__author__ = "@FernandoDoming"
-__version__ = "1.0.0"
-
-
-def parseXmlToJson(xml):
-    response = {}
-    for child in list(xml):
-        if len(list(child)) > 0:
-            response[child.tag] = parseXmlToJson(child)
-        else:
-            response[child.tag] = child.text or ""
-    return response
-
-
-class Sysmon(Processing):
-    def remove_noise(self, data):
-        filtered_proc_creations_re = [
-            r"C:\\Windows\\System32\\wevtutil\.exe\s+clear-log\s+microsoft-windows-(sysmon|powershell)\/operational",
-            r"bin\\is32bit.exe",
-            r"bin\\inject-(?:x86|x64).exe",
-            r"C:\\Windows\\System32\\wevtutil.exe\s+query-events microsoft-windows-powershell\/operational\s+\/rd:true\s+\/e:root\s+\/format:xml\s+\/uni:true",
-            r"C:\\Windows\\System32\\wevtutil.exe\s+query-events\s+microsoft-windows-sysmon\/operational\s+\/format:xml",
-        ]
-
-        filtered = []
-        for event in data:
-            is_filtered = False
-            if event["System"]["EventID"] == "1":
-                for p in filtered_proc_creations_re:
-                    cmdline = event["EventData"]["Data"][9]["#text"]
-                    if re.search(p, cmdline):
-                        log.info("Supressed %s because it is noisy" % cmdline)
-                        is_filtered = True
-
-            if not is_filtered:
-                filtered.append(event)
-
-        return filtered
-
-    def run(self):
-        self.key = "sysmon"
-
-        # Determine oldest sysmon log and remove the rest
-        lastlog = os.listdir("%s/sysmon/" % self.analysis_path)
-        lastlog.sort()
-        lastlog = lastlog[-1]
-        # Leave only the most recent file
-        for f in os.listdir("%s/sysmon/" % self.analysis_path):
-            if f != lastlog:
-                try:
-                    os.remove("%s/sysmon/%s" % (self.analysis_path, f))
-                except:
-                    log.error("Failed to remove sysmon file log %s" % f)
-
-        os.rename("%s/sysmon/%s" % (self.analysis_path, lastlog), "%s/sysmon/sysmon.xml" % self.analysis_path)
-
-        sysmon_path = "%s/sysmon/sysmon.xml" % self.analysis_path
-
-        if not os.path.exists(sysmon_path) or os.path.getsize(sysmon_path) < 100:
-            return
-
-        data = None
-        try:
-            tree = ET.parse(sysmon_path)
-            root = tree.getroot()
-            data = parseXmlToJson(root.attrib)
-        except Exception as e:
-            raise CuckooProcessingError("Failed parsing sysmon.xml with ET: %s" % e)
-
-        if root is False:
-            return
-
-        data = self.remove_noise(data)
-        return data
diff --git a/modules/processing/targetinfo.py b/modules/processing/targetinfo.py
deleted file mode 100644
index 3a64651a68c..00000000000
--- a/modules/processing/targetinfo.py
+++ /dev/null
@@ -1,38 +0,0 @@
-# Copyright (C) 2010-2015 Cuckoo Foundation.
-# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
-# See the file 'docs/LICENSE' for copying permission.
-
-from __future__ import absolute_import
-import os.path
-
-from lib.cuckoo.common.abstracts import Processing
-from lib.cuckoo.common.objects import File
-
-
-class TargetInfo(Processing):
-    """General information about a file."""
-
-    def run(self):
-        """Run file information gathering.
-        @return: information dict.
-        """
-        self.key = "target"
-
-        target_info = {"category": self.task["category"]}
-        # We have to deal with file or URL targets.
-        if self.task["category"] in ("file", "static"):
-            target_info["file"] = {}
-
-            # Let's try to get as much information as possible, i.e., the
-            # filename if the file is not available anymore.
-            if os.path.exists(self.file_path):
-                target_info["file"], pefile_object = File(self.file_path).get_all()
-                if pefile_object:
-                    self.results.setdefault("pefiles", {})
-                    self.results["pefiles"].setdefault(target_info["file"]["sha256"], pefile_object)
-
-            target_info["file"]["name"] = File(self.task["target"]).get_name()
-        elif self.task["category"] == "url":
-            target_info["url"] = self.task["target"]
-
-        return target_info
diff --git a/modules/processing/trid.py b/modules/processing/trid.py
deleted file mode 100644
index 88d8498b17c..00000000000
--- a/modules/processing/trid.py
+++ /dev/null
@@ -1,44 +0,0 @@
-# This file is part of CAPE
-# Tim Shelton
-# tshelton@hawkdefense.com
-# See the file 'docs/LICENSE' for copying permission.
-
-from __future__ import absolute_import
-import os.path
-import subprocess
-import logging
-from lib.cuckoo.common.abstracts import Processing
-from lib.cuckoo.common.constants import CUCKOO_ROOT
-from lib.cuckoo.common.exceptions import CuckooProcessingError
-
-log = logging.getLogger()
-
-
-class TrID(Processing):
-    """Extract TrID output from file."""
-
-    def run(self):
-        """Run extract of trid output.
-        @return: list of trid output.
-        """
-        self.key = "trid"
-        strings = []
-
-        if self.task["category"] in ("file", "static"):
-            if not os.path.exists(self.file_path):
-                raise CuckooProcessingError("Sample file doesn't exist: {}".format(self.file_path))
-
-        trid_binary = os.path.join(CUCKOO_ROOT, self.options.get("identifier", "trid/trid"))
-        definitions = os.path.join(CUCKOO_ROOT, self.options.get("definitions", "trid/triddefs.trd"))
-
-        try:
-            output = subprocess.check_output(
-                [trid_binary, "-d:%s" % definitions, self.file_path], stderr=subprocess.STDOUT, universal_newlines=True
-            )
-            strings = output.split("\n")
-            # trim data
-            strings = strings[6:-1]
-        except subprocess.CalledProcessError:
-            log.warning("You need to configure your server to make TrID work properly")
-            log.warning("sudo rm -f /usr/lib/locale/locale-archive && sudo locale-gen --no-archive")
-        return strings
diff --git a/modules/processing/url_analysis.py b/modules/processing/url_analysis.py
new file mode 100644
index 00000000000..6db0158b54e
--- /dev/null
+++ b/modules/processing/url_analysis.py
@@ -0,0 +1,39 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+from lib.cuckoo.common.abstracts import Processing
+from lib.cuckoo.common.config import Config
+from lib.cuckoo.common.integrations.parse_url import HAVE_WHOIS, URL
+
+HAVE_VIRUSTOTAL = False
+processing_conf = Config("processing")
+
+if processing_conf.virustotal.enabled and not processing_conf.virustotal.on_demand:
+    from lib.cuckoo.common.integrations.virustotal import vt_lookup
+
+    HAVE_VIRUSTOTAL = True
+
+
+class UrlAnalysis(Processing):
+    """General information about a URL."""
+
+    def run(self):
+        """Run URL information gathering.
+        @return: information dict.
+        """
+        self.key = "url_analysis"
+        self.order = 1
+        target_info = {}
+        if self.task["category"] == "url":
+            target_info["url"] = self.task["target"]
+            if HAVE_WHOIS and self.options.whois:
+                self.results["url"] = URL(self.task["target"]).run()
+
+            if HAVE_VIRUSTOTAL and processing_conf.virustotal.enabled:
+                vt_details = vt_lookup("url", self.task["target"], self.results)
+                if vt_details:
+                    self.results["url"].setdefault("virustotal", vt_details)
+
+            self.results["target"] = {"category": "url"}
+        return target_info
diff --git a/modules/processing/usage.py b/modules/processing/usage.py
index a33c787362c..f2f769faea3 100644
--- a/modules/processing/usage.py
+++ b/modules/processing/usage.py
@@ -2,26 +2,23 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 import os
-from six.moves import zip
 
-HAVE_PYGAL = False
+from lib.cuckoo.common.abstracts import Processing
+from lib.cuckoo.common.constants import CUCKOO_ROOT
+from lib.cuckoo.common.path_utils import path_exists, path_write_file
+
 try:
     import pygal
 
     HAVE_PYGAL = True
 except ImportError:
-    pass
-
-from lib.cuckoo.common.constants import CUCKOO_ROOT
-from lib.cuckoo.common.abstracts import Processing
-from lib.cuckoo.common.exceptions import CuckooProcessingError
+    HAVE_PYGAL = False
 
 
 class Usage(Processing):
     """Converts collected usage data to image for web display
-       and performs other processing on usage data
+    and performs other processing on usage data
     """
 
     def run(self):
@@ -33,10 +30,9 @@ def run(self):
 
         aux_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(self.results["info"]["id"]), "aux")
         usage_log = os.path.join(aux_path, "usage.log")
-        if not os.path.exists(usage_log):
+        if not path_exists(usage_log):
             return usage
 
-        lines = []
         with open(usage_log, "r") as f:
             lines = [x.strip().split(" ") for x in f.readlines()]
         if not lines:
@@ -48,15 +44,16 @@ def run(self):
 
         usage["log"] = usage_log
 
-        line_chart = pygal.Line(fill=True, height=150, range=[0, 100], y_labels_major_every=1, show_dots=False, y_labels=[0, 25, 50, 75, 100])
+        line_chart = pygal.Line(
+            fill=True, height=150, range=[0, 100], y_labels_major_every=1, show_dots=False, y_labels=[0, 25, 50, 75, 100]
+        )
         line_chart.add("CPU", cpu_points)
         line_chart.add("MEM", mem_points)
 
         data = line_chart.render()
 
         usage_svg = os.path.join(aux_path, "usage.svg")
-        with open(usage_svg, "wb") as f:
-            f.write(data)
+        _ = path_write_file(usage_svg, data)
 
         usage["cpu_usage"] = cpu_points
         usage["mem_usage"] = mem_points
diff --git a/modules/processing/virustotal.py b/modules/processing/virustotal.py
deleted file mode 100644
index bc1b939ca1f..00000000000
--- a/modules/processing/virustotal.py
+++ /dev/null
@@ -1,118 +0,0 @@
-# Copyright (C) 2010-2015 Cuckoo Foundation, Optiv, Inc. (brad.spengler@optiv.com)
-# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
-# See the file 'docs/LICENSE' for copying permission.
-
-from __future__ import absolute_import
-import os
-import json
-import logging
-import requests
-import hashlib
-
-try:
-    import re2 as re
-except ImportError:
-    import re
-
-from lib.cuckoo.common.abstracts import Processing
-from lib.cuckoo.common.exceptions import CuckooProcessingError
-from lib.cuckoo.common.objects import File
-
-VIRUSTOTAL_FILE_URL = "https://www.virustotal.com/vtapi/v2/file/report"
-VIRUSTOTAL_URL_URL = "https://www.virustotal.com/vtapi/v2/url/report"
-
-
-class VirusTotal(Processing):
-    """Gets antivirus signatures from VirusTotal.com"""
-
-    def getbool(self, s):
-        if isinstance(s, bool):
-            rtn = s
-        else:
-            try:
-                rtn = s.lower() in ("yes", "true", "1")
-            except:
-                rtn = False
-        return rtn
-
-    def run(self):
-        """Runs VirusTotal processing
-        @return: full VirusTotal report.
-        """
-        self.key = "virustotal"
-        virustotal = []
-
-        key = self.options.get("key", None)
-        timeout = self.options.get("timeout", 60)
-        urlscrub = self.options.get("urlscrub", None)
-        do_file_lookup = self.getbool(self.options.get("do_file_lookup", False))
-        do_url_lookup = self.getbool(self.options.get("do_url_lookup", False))
-
-        if not key:
-            raise CuckooProcessingError("VirusTotal API key not configured, skip")
-
-        if self.task["category"] == "file" and do_file_lookup:
-            if not os.path.exists(self.file_path):
-                raise CuckooProcessingError("File {0} not found, skipping it".format(self.file_path))
-
-            resource = File(self.file_path).get_sha256()
-            url = VIRUSTOTAL_FILE_URL
-
-        elif self.task["category"] == "url" and do_url_lookup:
-            resource = self.task["target"]
-            if urlscrub:
-                urlscrub_compiled_re = None
-                try:
-                    urlscrub_compiled_re = re.compile(urlscrub)
-                except Exception as e:
-                    raise CuckooProcessingError("Failed to compile urlscrub regex" % (e))
-                try:
-                    resource = re.sub(urlscrub_compiled_re, "", resource)
-                except Exception as e:
-                    raise CuckooProcessingError("Failed to scrub url" % (e))
-
-            # normalize the URL the way VT appears to
-            if not resource.lower().startswith("http://") and not resource.lower().startswith("https://"):
-                resource = "http://" + resource
-            slashsplit = resource.split("/")
-            slashsplit[0] = slashsplit[0].lower()
-            slashsplit[2] = slashsplit[2].lower()
-            if len(slashsplit) == 3:
-                slashsplit.append("")
-            resource = "/".join(slashsplit)
-            try:
-                resource = hashlib.sha256(resource.encode("utf-8")).hexdigest()
-            except TypeError as e:
-                logging.error(e, exc_info=True)
-                return virustotal
-            url = VIRUSTOTAL_URL_URL
-        else:
-            # Not supported type, exit.
-            return virustotal
-
-        data = {"resource": resource, "apikey": key}
-
-        try:
-            r = requests.get(url, params=data, verify=True, timeout=int(timeout))
-            response_data = r.content
-        except requests.exceptions.RequestException as e:
-            raise CuckooProcessingError("Unable to complete connection to VirusTotal: {0}".format(e))
-
-        if not response_data:
-            return virustotal
-
-        try:
-            virustotal = json.loads(response_data)
-        except ValueError as e:
-            raise CuckooProcessingError("Unable to convert response to JSON: {0}".format(e))
-
-        # Work around VT brain-damage
-        if isinstance(virustotal, list) and len(virustotal):
-            virustotal = virustotal[0]
-
-        if "scans" in virustotal:
-            items = list(virustotal["scans"].items())
-            virustotal["scans"] = dict((engine.replace(".", "_"), signature) for engine, signature in items)
-            virustotal["resource"] = resource
-            virustotal["results"] = list(({"vendor": engine.replace(".", "_"), "sig": signature["result"]}) for engine, signature in items)
-        return virustotal
diff --git a/modules/reporting/bingraph.py b/modules/reporting/bingraph.py
index 5f7834f6508..635200c8afc 100644
--- a/modules/reporting/bingraph.py
+++ b/modules/reporting/bingraph.py
@@ -2,19 +2,19 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-import os
 import logging
-from lib.cuckoo.common.config import Config
-from lib.cuckoo.common.abstracts import Report
+import os
 
+from lib.cuckoo.common.abstracts import Report
+from lib.cuckoo.common.config import Config
+from lib.cuckoo.common.path_utils import path_exists, path_mkdir
 
 reporting_conf = Config("reporting")
 
 HAVE_BINGRAPH = False
-if reporting_conf.bingraph.on_demand is False:
+if not reporting_conf.bingraph.on_demand:
     try:
-        from lib.cuckoo.common.graphs.binGraph.binGraph import generate_graphs as bingraph_gen
+        from binGraph.binGraph import generate_graphs as bingraph_gen
 
         HAVE_BINGRAPH = True
     except ImportError:
@@ -41,6 +41,14 @@
     "entcolour": "#ff00ff",
 }
 
+"""
+path = ""
+from binGraph.binGraph import generate_graphs as bingraph_gen
+bingraph_args_dict.update({"files": [path], "save_dir": "/tmp"})
+bingraph_gen(bingraph_args_dict)
+
+"""
+
 
 excluded_filetypes = (
     "HTML document, ASCII text, with CRLF line terminators",
@@ -52,17 +60,19 @@ class BinGraph(Report):
     "Generate bingraphs"
 
     def run(self, results):
-        if HAVE_BINGRAPH and reporting_conf.bingraph.enabled and reporting_conf.bingraph.on_demand is False:
+        if HAVE_BINGRAPH and reporting_conf.bingraph.enabled and not reporting_conf.bingraph.on_demand:
             bingraph_path = os.path.join(self.analysis_path, "bingraph")
-            if not os.path.exists(bingraph_path):
-                os.makedirs(bingraph_path)
+            if not path_exists(bingraph_path):
+                path_mkdir(bingraph_path)
             try:
                 if not os.listdir(bingraph_path) and results.get("target", {}).get("file", {}).get("sha256", False):
-                    bingraph_args_dict.update({"prefix": results["target"]["file"]["sha256"], "files": [self.file_path], "save_dir": bingraph_path})
+                    bingraph_args_dict.update(
+                        {"prefix": results["target"]["file"]["sha256"], "files": [self.file_path], "save_dir": bingraph_path}
+                    )
                     try:
                         bingraph_gen(bingraph_args_dict)
                     except Exception as e:
-                        log.warning("Can't generate bingraph for {}: {}".format(self.file_path, e))
+                        log.warning("Can't generate bingraph for %s: %s", self.file_path, e)
             except Exception as e:
                 log.info(e)
 
@@ -71,7 +81,7 @@ def run(self, results):
                     if (
                         block.get("size", 0) != 0
                         and block.get("type", "") not in excluded_filetypes
-                        and not os.path.exists(os.path.join(bingraph_path, "{}-ent.svg".format(block["sha256"])))
+                        and not path_exists(os.path.join(bingraph_path, f"{block['sha256']}-ent.svg"))
                     ):
                         path = ""
                         if block.get("file", False):
@@ -84,13 +94,13 @@ def run(self, results):
                         try:
                             bingraph_gen(bingraph_args_dict)
                         except Exception as e:
-                            log.warning("Can't generate report for {}: {}".format(path, e))
+                            log.warning("Can't generate report for %s: %s", path, e)
 
                 for block in results.get("CAPE", {}).get("payloads") or []:
                     if (
                         block.get("size", 0) != 0
                         and block.get("type", "") not in excluded_filetypes
-                        and not os.path.exists(os.path.join(bingraph_path, "{}-ent.svg".format(block["sha256"])))
+                        and not path_exists(os.path.join(bingraph_path, f"{block['sha256']}-ent.svg"))
                     ):
                         path = ""
                         if block.get("file", False):
@@ -103,4 +113,4 @@ def run(self, results):
                         try:
                             bingraph_gen(bingraph_args_dict)
                         except Exception as e:
-                            log.warning("Can't generate report for {}: {}".format(path, e))
+                            log.warning("Can't generate report for %s: %s", path, e)
diff --git a/modules/reporting/browserext.py b/modules/reporting/browserext.py
new file mode 100644
index 00000000000..3486ac3205f
--- /dev/null
+++ b/modules/reporting/browserext.py
@@ -0,0 +1,27 @@
+# Copyright (C) 2024 fdiaz@virustotal.com
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+import json
+import logging
+import os
+
+from lib.cuckoo.common.abstracts import Report
+
+log = logging.getLogger(__name__)
+
+
+class BrowserExt(Report):
+    """Include browser extension logs in final report."""
+
+    def run(self, results):
+        browser_log_path = os.path.join(self.analysis_path, "browser", "requests.log")
+        if not os.path.isfile(browser_log_path):
+            return
+        if not results.get("browser"):
+            results["browser"] = {}
+        with open(browser_log_path, "r") as blp_fd:
+            try:
+                results["browser"]["requests"] = json.load(blp_fd)
+            except Exception as e:
+                log.debug("error parsing browser requests json: %s", str(e))
diff --git a/modules/reporting/callback.py b/modules/reporting/callback.py
index 3b7083554c8..448af1c95b5 100644
--- a/modules/reporting/callback.py
+++ b/modules/reporting/callback.py
@@ -1,27 +1,13 @@
-from __future__ import absolute_import
-from __future__ import print_function
 import json
-import requests
 import logging
-from lib.cuckoo.common.config import Config
-from lib.cuckoo.common.abstracts import Report
-from lib.cuckoo.common.constants import CUCKOO_ROOT
-from lib.cuckoo.core.database import Database, TASK_COMPLETED, TASK_REPORTED
 
-try:
-    from pymongo import MongoClient
-    from pymongo.errors import ConnectionFailure
+import requests
 
-    HAVE_MONGO = True
-except ImportError:
-    # flake8 test hack
-    pymongo = False
-    HAVE_MONGO = False
-    print("missed pymongo")
+from lib.cuckoo.common.abstracts import Report
+from lib.cuckoo.core.database import TASK_REPORTED, Database
 
 log = logging.getLogger(__name__)
 main_db = Database()
-reporting_conf = Config("reporting")
 
 
 class CALLBACKHOME(Report):
@@ -30,34 +16,20 @@ class CALLBACKHOME(Report):
     order = 10000  # used in the reporting module and required here.
 
     def run(self, results):
-        urls = reporting_conf.callback.url.split(",")
+        urls = self.options.url.split(",")
         task_id = int(results.get("info", {}).get("id"))
         """Handles a possible race condition where the status is not updated before the callback is consumed."""
-        if HAVE_MONGO:
+        # set completed_on time
+        with Database().session.begin():
+            Database().set_status(task_id, TASK_REPORTED)
+        for url in urls:
             try:
-                conn = pymongo.MongoClient(
-                    reporting_conf.mongodb.host,
-                    port=reporting_conf.mongodb.port,
-                    username=reporting_conf.mongodb.get("username", None),
-                    password=reporting_conf.mongodb.get("password", None),
-                    authSource=reporting_conf.mongodb.db,
-                )
-                mongo_db = conn[reporting_conf.mongodb.db]
-                # set completed_on time
-                main_db.set_status(task_id, TASK_COMPLETED)
-                # set reported time
-                main_db.set_status(task_id, TASK_REPORTED)
-                conn.close()
-            except ConnectionFailure:
-                log.error("Cannot connect to MongoDB")
-
-            for url in urls:
-                try:
-                    for value in (task_id, str(task_id)):
-                        res = requests.post(url, data=json.dumps({"task_id": value}), timeout=20)
-                        if res and res.ok:
-                            log.debug("reported id: {}".format(task_id))
-                        else:
-                            log.error("failed to report {}".format(task_id))
-                except Exception as e:
-                    log.exception(e)
+                res = requests.post(url, headers={"Content-Type": "application/json"}, data=json.dumps({"task_id": task_id}), timeout=20)
+                if res and res.ok:
+                    log.debug("reported id: %d", task_id)
+                else:
+                    log.error("failed to report %d", task_id)
+            except requests.exceptions.ConnectTimeout:
+                log.error("Timeout when calling to callback: %s", url)
+            except Exception as e:
+                log.exception(e)
diff --git a/modules/reporting/compression.py b/modules/reporting/compression.py
index 3783e261502..811cd94ead6 100644
--- a/modules/reporting/compression.py
+++ b/modules/reporting/compression.py
@@ -2,12 +2,12 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 import os
 import zipfile
 
 from lib.cuckoo.common.abstracts import Report
 from lib.cuckoo.common.exceptions import CuckooReportError
+from lib.cuckoo.common.path_utils import path_delete, path_exists
 
 
 class Compression(Report):
@@ -20,36 +20,36 @@ def run(self, results):
         zipprocstrings = self.options.get("zipprocstrings", False)
 
         for proc in results.get("procmemory", []) or []:
-            dmp_path = proc.get("file", None)
-            strings_path = proc.get("strings_path", None)
+            dmp_path = proc.get("file")
+            strings_path = proc.get("strings_path")
 
             for option in (zipprocdump, zipprocstrings):
-                if option and dmp_path and dmp_path.endswith((".dmp", ".strings")) and os.path.exists(dmp_path):
+                if option and dmp_path and dmp_path.endswith((".dmp", ".strings")) and path_exists(dmp_path):
                     try:
-                        f = zipfile.ZipFile("%s.zip" % (dmp_path), "w")
+                        f = zipfile.ZipFile(f"{dmp_path}.zip", "w")
                         f.write(dmp_path, os.path.basename(dmp_path), zipfile.ZIP_DEFLATED)
                         f.close()
-                        os.remove(dmp_path)
-                        proc["file"] = "%s.zip" % (dmp_path)
+                        path_delete(dmp_path)
+                        proc["file"] = f"{dmp_path}.zip"
                     except Exception as e:
-                        raise CuckooReportError("Error creating Process Memory Zip File %s" % e)
+                        raise CuckooReportError(f"Error creating Process Memory Zip File: {e}")
 
-        if zipmemdump and self.memory_path and os.path.exists(self.memory_path):
+        if zipmemdump and self.memory_path and path_exists(self.memory_path):
             try:
-                f = zipfile.ZipFile("%s.zip" % (self.memory_path), "w", allowZip64=True)
+                f = zipfile.ZipFile(f"{self.memory_path}.zip", "w", allowZip64=True)
                 f.write(self.memory_path, os.path.basename(self.memory_path), zipfile.ZIP_DEFLATED)
                 f.close()
-                os.remove(self.memory_path)
+                path_delete(self.memory_path)
             except Exception as e:
-                raise CuckooReportError("Error creating Full Memory Zip File %s" % e)
+                raise CuckooReportError(f"Error creating Full Memory Zip File: {e}")
 
-        if zipmemstrings and self.memory_path and os.path.exists(self.memory_path + ".strings"):
-            strings_path = self.memory_path + ".strings"
+        if zipmemstrings and self.memory_path and path_exists(f"{self.memory_path}.strings"):
+            strings_path = f"{self.memory_path}.strings"
             try:
-                f = zipfile.ZipFile("%s.zip" % (strings_path), "w", allowZip64=True)
+                f = zipfile.ZipFile(f"{strings_path}.zip", "w", allowZip64=True)
                 f.write(strings_path, os.path.basename(strings_path), zipfile.ZIP_DEFLATED)
                 f.close()
-                os.remove(strings_path)
-                strings_path = "%s.zip" % (strings_path)
+                path_delete(strings_path)
+                strings_path = f"{strings_path}.zip"
             except Exception as e:
-                raise CuckooReportError("Error creating Full Memory Strings Zip File %s" % e)
+                raise CuckooReportError(f"Error creating Full Memory Strings Zip File: {e}")
diff --git a/modules/reporting/compressresults.py b/modules/reporting/compressresults.py
deleted file mode 100644
index 0691262097c..00000000000
--- a/modules/reporting/compressresults.py
+++ /dev/null
@@ -1,49 +0,0 @@
-# Copyright (C) 2017 Marirs.
-# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
-# See the file 'docs/LICENSE' for copying permission.
-
-from __future__ import absolute_import
-import simplejson as json
-from bson import ObjectId
-from bson.binary import Binary
-import zlib
-from lib.cuckoo.common.abstracts import Report
-import logging
-
-log = logging.getLogger(__name__)
-
-
-class JSONEncoder(json.JSONEncoder):
-    def default(self, o):
-        if isinstance(o, ObjectId):
-            return str(o)
-        return json.JSONEncoder.default(self, o)
-
-
-class CompressResults(Report):
-    """Compresses certain results in the json dict before
-        saving into MongoDB. This helps with the restriction
-        of MongoDB document size of 16MB.
-    """
-
-    order = 9998
-    # the order will change here when the order of
-    # elastic & mongo python files order changes
-
-    def run(self, results):
-
-        for keyword in ("CAPE", "procdump"):
-            if keyword in results:
-                try:
-                    cape_json = json.dumps(results[keyword], encoding='latin-1', ensure_ascii=False).encode('utf8')
-                    compressed_data = zlib.compress(cape_json)
-                    results[keyword] = Binary(compressed_data)
-                except UnicodeDecodeError as e:
-                    log.warn("Failed to compress {} result: {}".format(keyword, e.reason))
-        # compress behaviour analysis (enhanced & summary)
-        if "enhanced" in results["behavior"]:
-            try:
-                compressed_behavior_enhanced = zlib.compress(JSONEncoder().encode(results["behavior"]["enhanced"]).encode("utf8"))
-                results["behavior"]["enhanced"] = Binary(compressed_behavior_enhanced)
-            except UnicodeDecodeError as e:
-                log.warn("Failed to compress Enhanced Behaviour: {}".format(e.reason))
diff --git a/modules/reporting/elasticsearchdb.py b/modules/reporting/elasticsearchdb.py
new file mode 100644
index 00000000000..a3da0873ba5
--- /dev/null
+++ b/modules/reporting/elasticsearchdb.py
@@ -0,0 +1,183 @@
+# Copyright (C) 2017 Marirs.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+import gc
+import json
+import logging
+from contextlib import suppress
+from datetime import datetime
+
+from lib.cuckoo.common.abstracts import Report
+from lib.cuckoo.common.config import Config
+from lib.cuckoo.common.exceptions import CuckooDependencyError, CuckooReportError
+from modules.reporting.report_doc import ensure_valid_utf8, get_json_document, insert_calls
+
+repconf = Config("reporting")
+if repconf.elasticsearchdb.enabled:
+    try:
+        from elasticsearch.exceptions import AuthorizationException, ConnectionError, RequestError
+
+        from dev_utils.elasticsearchdb import (
+            ANALYSIS_INDEX_MAPPING_SETTINGS,
+            daily_analysis_index_exists,
+            daily_calls_index_exists,
+            delete_analysis_and_related_calls,
+            elastic_handler,
+            get_daily_analysis_index,
+            get_daily_calls_index,
+        )
+
+        HAVE_ELASTICSEARCH = True
+    except ImportError:
+        HAVE_ELASTICSEARCH = False
+
+log = logging.getLogger(__name__)
+logging.getLogger("elasticsearch").setLevel("ERROR")
+
+
+class ElasticSearchDB(Report):
+    """Stores report in ElasticSearchDB."""
+
+    def __init__(self):
+        self.es = None
+
+    def connect(self):
+        """Connects to Elasticsearch database, loads options and set connectors.
+        @raise CuckooReportError: if unable to connect.
+        """
+        try:
+            self.es = elastic_handler
+        except TypeError:
+            raise CuckooReportError("Elasticsearch connection port must be integer")
+        except ConnectionError:
+            raise CuckooReportError("Cannot connect to ElasticsearchDB")
+
+    def index_report(self, report):
+        self.es.index(index=get_daily_analysis_index(), body=report)
+
+    def check_analysis_index(self):
+        try:
+            log.debug("Check if the index exists")
+            if not daily_analysis_index_exists():
+                self.es.indices.create(
+                    index=get_daily_analysis_index(),
+                    body=ANALYSIS_INDEX_MAPPING_SETTINGS,
+                )
+        except (RequestError, AuthorizationException) as e:
+            raise CuckooDependencyError(f"Unable to create Elasticsearch index {e}")
+
+    def check_calls_index(self):
+        try:
+            log.debug("Check if the index exists")
+            if not daily_calls_index_exists():
+                self.es.indices.create(index=get_daily_calls_index())
+        except (RequestError, AuthorizationException) as e:
+            raise CuckooDependencyError(f"Unable to create Elasticsearch index {e}")
+
+    def format_dates(self, report):
+        info = report["info"]
+
+        report["info"]["started"] = (
+            datetime.strptime(info["started"], "%Y-%m-%d %H:%M:%S") if isinstance(info["started"], str) else info["started"]
+        )
+        report["info"]["ended"] = (
+            datetime.strptime(info["ended"], "%Y-%m-%d %H:%M:%S") if isinstance(info["ended"], str) else info["ended"]
+        )
+        report["info"]["machine"]["started_on"] = (
+            datetime.strptime(info["machine"]["started_on"], "%Y-%m-%d %H:%M:%S")
+            if isinstance(info["machine"]["started_on"], str)
+            else info["machine"]["started_on"]
+        )
+        report["info"]["machine"]["shutdown_on"] = (
+            datetime.strptime(info["machine"]["shutdown_on"], "%Y-%m-%d %H:%M:%S")
+            if isinstance(info["machine"]["shutdown_on"], str)
+            else info["machine"]["shutdown_on"]
+        )
+
+        for dropped in report["dropped"]:
+            if "pe" in dropped:
+                dropped["pe"]["timestamp"] = datetime.strptime(dropped["pe"]["timestamp"], "%Y-%m-%d %H:%M:%S")
+
+    # Fix signatures from string to list in order to have a common mapping
+    def fix_signature_results(self, report):
+        for s in report["signatures"]:
+            for f in s["data"]:
+                for k, val in f.items():
+                    if isinstance(val, (str, bool)):
+                        f[k] = {"name": str(val)}
+                    if k == "file" and isinstance(val, list):
+                        for index, file in enumerate(val):
+                            val[index] = {"name": file}
+
+    def fix_suricata_http_status(self, report):
+        if "http" in report["suricata"]:
+            for http in report["suricata"]["http"]:
+                if http["status"] == "None":
+                    http["status"] = None
+
+    def fix_cape_payloads(self, report):
+        if "CAPE" in report:
+            for p in report["CAPE"]["payloads"]:
+                if p["tlsh"] is False:
+                    p["tlsh"] = None
+
+    def convert_procdump_strings_to_str(self, report):
+        if "procdump" in report and report["procdump"]:
+            for item in report["procdump"]:
+                for k, val in item.items():
+                    if k == "strings":
+                        for index, string in enumerate(val):
+                            val[index] = str(string)
+
+    def fix_fields(self, report):
+        self.fix_suricata_http_status(report)
+        self.fix_signature_results(report)
+        self.fix_cape_payloads(report)
+        self.convert_procdump_strings_to_str(report)
+
+    def date_hook(self, json_dict):
+        for key, value in json_dict.items():
+            with suppress(Exception):
+                json_dict[key] = datetime.strptime(value, "%Y-%m-%d %H:%M:%S")
+        return json_dict
+
+    def run(self, results):
+        """Writes report.
+        @param results: analysis results dictionary.
+        @raise CuckooReportError: if fails to connect or write to Elasticsearch DB.
+        """
+        # We put the raise here and not at the import because it would
+        # otherwise trigger even if the module is not enabled in the config.
+        if not HAVE_ELASTICSEARCH:
+            raise CuckooDependencyError("Unable to import elasticsearch (install with `pip3 install elasticsearch`)")
+
+        self.connect()
+
+        # Check if the daily index exists.
+        self.check_analysis_index()
+        self.check_calls_index()
+
+        # Create a copy of the dictionary. This is done in order to not modify
+        # the original dictionary and possibly compromise the following
+        # reporting modules.
+        report = get_json_document(results, self.analysis_path)
+        self.fix_fields(report)
+        report = json.loads(json.dumps(report, default=str), object_hook=self.date_hook)
+        new_processes = insert_calls(report, elastic_db=elastic_handler)
+
+        # Store the results in the report.
+        report["behavior"] = dict(report["behavior"])
+        report["behavior"]["processes"] = new_processes
+
+        delete_analysis_and_related_calls(report["info"]["id"])
+        self.format_dates(report)
+        ensure_valid_utf8(report)
+        gc.collect()
+
+        # Store the report and retrieve its object id.
+        try:
+            self.index_report(report)
+        except Exception as e:
+            log.error(e)
+            return
diff --git a/modules/reporting/gcs.py b/modules/reporting/gcs.py
new file mode 100644
index 00000000000..6ff3c5f6577
--- /dev/null
+++ b/modules/reporting/gcs.py
@@ -0,0 +1,163 @@
+import os
+import logging
+import tempfile
+import zipfile
+from lib.cuckoo.common.constants import CUCKOO_ROOT
+from lib.cuckoo.common.abstracts import Report
+from lib.cuckoo.common.exceptions import CuckooReportError
+
+# Set up a logger for this module
+log = logging.getLogger(__name__)
+
+try:
+    # Import the Google Cloud Storage client library
+    from google.cloud import storage
+    from google.oauth2 import service_account
+
+    HAVE_GCS = True
+except ImportError:
+    HAVE_GCS = False
+
+
+class GCS(Report):
+    """
+    Uploads all analysis files to a Google Cloud Storage (GCS) bucket.
+    """
+
+    # This Report module is not executed by default
+    order = 9999
+
+    def run(self, results):
+        """
+        Run the Report module.
+
+        Args:
+            results (dict): The analysis results dictionary.
+        """
+        # Ensure the required library is installed
+        if not HAVE_GCS:
+            log.error(
+                "Failed to run GCS reporting module: the 'google-cloud-storage' "
+                "library is not installed. Please run 'poetry run pip install google-cloud-storage'."
+            )
+            return
+
+        tlp = results.get("info", {}).get("tlp")
+
+        # Read configuration options from gcs.conf and validate them
+        bucket_name = self.options.get("bucket_name")
+        if not bucket_name:
+            raise CuckooReportError("GCS bucket_name is not configured in reporting.conf -> gcs")
+        auth_by = self.options.get("auth_by")
+        if auth_by == "vm":
+            storage_client = storage.Client()
+        else:
+            credentials_path_str = self.options.get("credentials_path")
+            if not credentials_path_str:
+                raise CuckooReportError("GCS credentials_path is not configured in reporting.conf -> gcs")
+
+            credentials_path = os.path.join(CUCKOO_ROOT, credentials_path_str)
+            if not os.path.isfile(credentials_path):
+                raise CuckooReportError(
+                    "GCS credentials_path '%s' is invalid or file does not exist in reporting.conf -> gcs", credentials_path
+                )
+
+            credentials = service_account.Credentials.from_service_account_file(credentials_path)
+            storage_client = storage.Client(credentials=credentials)
+
+        # Read the exclusion lists, defaulting to empty strings
+        exclude_dirs_str = self.options.get("exclude_dirs", "")
+        exclude_files_str = self.options.get("exclude_files", "")
+
+        # Parse the exclusion strings into sets for efficient lookups
+        exclude_dirs = {item.strip() for item in exclude_dirs_str.split(",") if item.strip()}
+        exclude_files = {item.strip() for item in exclude_files_str.split(",") if item.strip()}
+
+        if exclude_dirs:
+            log.debug("GCS reporting will exclude directories: %s", exclude_dirs)
+        if exclude_files:
+            log.debug("GCS reporting will exclude files: %s", exclude_files)
+
+        # Get the upload mode, defaulting to 'file' for backward compatibility
+        mode = self.options.get("mode", "file")
+
+        try:
+            # --- Authentication ---
+            log.debug("Authenticating with Google Cloud Storage...")
+            bucket = storage_client.bucket(bucket_name)
+
+            # Check if the bucket exists and is accessible
+            if not bucket.exists():
+                raise CuckooReportError(
+                    "The specified GCS bucket '%s' does not exist or you don't have permission to access it.", bucket_name
+                )
+
+            analysis_id = results.get("info", {}).get("id")
+            if not analysis_id:
+                raise CuckooReportError("Could not get analysis ID from results.")
+
+            source_directory = self.analysis_path
+
+            if mode == "zip":
+                self.upload_zip_archive(bucket, analysis_id, source_directory, exclude_dirs, exclude_files, tlp=tlp)
+            elif mode == "file":
+                self.upload_files_individually(bucket, analysis_id, source_directory, exclude_dirs, exclude_files, tlp=tlp)
+            else:
+                raise CuckooReportError("Invalid GCS upload mode specified: %s. Must be 'file' or 'zip'.", mode)
+
+        except Exception as e:
+            raise CuckooReportError(f"Failed to upload report to GCS: {e}") from e
+
+    def _iter_files_to_upload(self, source_directory, exclude_dirs, exclude_files):
+        """Generator that yields files to be uploaded, skipping excluded ones."""
+        for root, dirs, files in os.walk(source_directory):
+            # Exclude specified directories
+            dirs[:] = [d for d in dirs if d not in exclude_dirs]
+            for filename in files:
+                # Exclude specified files
+                if filename in exclude_files:
+                    log.debug("Skipping excluded file: %s", os.path.join(root, filename))
+                    continue
+
+                local_path = os.path.join(root, filename)
+                relative_path = os.path.relpath(local_path, source_directory)
+                yield local_path, relative_path
+
+    def upload_zip_archive(self, bucket, analysis_id, source_directory, exclude_dirs, exclude_files, tlp=None):
+        """Compresses and uploads the analysis directory as a single zip file."""
+        log.debug("Compressing and uploading files for analysis ID %d to GCS bucket '%s'", analysis_id, bucket.name)
+        if tlp:
+            zip_name = "%s_tlp_%s.zip" % analysis_id, tlp
+        else:
+            zip_name = "%s.zip" % analysis_id
+
+        blob_name = zip_name
+
+        with tempfile.NamedTemporaryFile(delete=False, suffix=".zip") as tmp_zip_file:
+            tmp_zip_file_name = tmp_zip_file.name
+            with zipfile.ZipFile(tmp_zip_file, "w", zipfile.ZIP_DEFLATED) as archive:
+                for local_path, relative_path in self._iter_files_to_upload(source_directory, exclude_dirs, exclude_files):
+                    archive.write(local_path, relative_path)
+
+        try:
+            log.debug("Uploading '%s' to '%s'", tmp_zip_file_name, blob_name)
+            blob = bucket.blob(blob_name)
+            blob.upload_from_filename(tmp_zip_file_name)
+        finally:
+            os.unlink(tmp_zip_file_name)
+        log.info("Successfully uploaded archive for analysis %d to GCS.", analysis_id)
+
+    def upload_files_individually(self, bucket, analysis_id, source_directory, exclude_dirs, exclude_files, tlp=None):
+        """Uploads analysis files individually to the GCS bucket."""
+        log.debug("Uploading files for analysis ID %d to GCS bucket '%s'", analysis_id, bucket.name)
+        folder_name = analysis_id
+        if tlp:
+            folder_name = "%s_tlp_%s" % analysis_id, tlp
+
+        for local_path, relative_path in self._iter_files_to_upload(source_directory, exclude_dirs, exclude_files):
+            blob_name = f"{folder_name}/{relative_path}"
+            log.debug("Uploading '%s' to '%s'", local_path, blob_name)
+            blob = bucket.blob(blob_name)
+            blob.upload_from_filename(local_path)
+
+        log.info("Successfully uploaded files for analysis %d to GCS.", analysis_id)
diff --git a/modules/reporting/jsondump.py b/modules/reporting/jsondump.py
index df698827c17..50b2c262e45 100644
--- a/modules/reporting/jsondump.py
+++ b/modules/reporting/jsondump.py
@@ -2,38 +2,59 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 import os
-try:
-    import simplejson as json
-except ImportError:
-    import json
-
-import codecs
 
+from lib.cuckoo.common.utils import create_zip
 from lib.cuckoo.common.abstracts import Report
 from lib.cuckoo.common.exceptions import CuckooReportError
+from lib.cuckoo.common.path_utils import path_write_file
+
+try:
+    import orjson
+
+    HAVE_ORJSON = True
+except ImportError:
+    import json
 
+    HAVE_ORJSON = False
 
 class JsonDump(Report):
     """Saves analysis results in JSON format."""
 
+    # ensure we run after the SubmitCAPE
+    order = 10
+
+    def default(self, obj):
+        if isinstance(obj, bytes):
+            try:
+                result = obj.decode()
+            except UnicodeDecodeError:
+                result = f"UnicodeDecodeError, bytes hex str: {obj.hex()}"
+            return result
+        raise TypeError
+
     def run(self, results):
         """Writes report.
         @param results: Cuckoo results dict.
         @raise CuckooReportError: if fails to write report.
         """
         indent = self.options.get("indent", 4)
-        encoding = self.options.get("encoding", "utf-8")
-        ram_boost = self.options.get("ram_boost", True)
-
         try:
             path = os.path.join(self.reports_path, "report.json")
-            with codecs.open(path, "w", "utf-8") as report:
-                if ram_boost:
-                    buf = json.dumps(results, sort_keys=False, indent=int(indent), ensure_ascii=False, encoding=encoding)
-                    report.write(buf)
-                else:
-                    json.dump(results, report, sort_keys=False, indent=int(indent), ensure_ascii=False, encoding=encoding)
+            if HAVE_ORJSON:
+                _ = path_write_file(
+                    path, orjson.dumps(results, option=orjson.OPT_INDENT_2, default=self.default)
+                )  # orjson.OPT_SORT_KEYS |
+            else:
+                with open(path, "w") as report:
+                    json.dump(results, report, sort_keys=False, indent=int(indent), ensure_ascii=False)
+
+            # useful if you frequently fetch zipped reports to not compress in memory all the time
+            if self.options.get("store_compressed") and os.path.exists(path):
+                zip_path = path + ".zip"
+                zipped_io = create_zip(path)
+                with open(zip_path, "wb") as f:
+                    f.write(zipped_io.getvalue())
+
         except (UnicodeError, TypeError, IOError) as e:
-            raise CuckooReportError("Failed to generate JSON report: %s" % e)
+            raise CuckooReportError(f"Failed to generate JSON report: {e}")
diff --git a/modules/reporting/litereport.py b/modules/reporting/litereport.py
new file mode 100644
index 00000000000..19f843c305e
--- /dev/null
+++ b/modules/reporting/litereport.py
@@ -0,0 +1,61 @@
+# Copyright (C) 2021 Intezer
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+import os
+
+import chardet
+
+from lib.cuckoo.common.abstracts import Report
+from lib.cuckoo.common.exceptions import CuckooReportError
+from lib.cuckoo.common.path_utils import path_write_file
+
+try:
+    import orjson
+
+    HAVE_ORJSON = True
+except ImportError:
+    import json
+
+    HAVE_ORJSON = False
+
+
+class LiteReport(Report):
+    """A lite report with only specific parts"""
+
+    def default(self, obj):
+        if isinstance(obj, bytes):
+            encoding = chardet.detect(obj)["encoding"]
+            if encoding:
+                return obj.decode(encoding, errors="replace")
+            else:
+                return obj.decode("utf-8", errors="replace")
+        raise TypeError
+
+    def run(self, results):
+        """Writes report.
+        @param results: Cuckoo results dict.
+        @raise CuckooReportError: if fails to write report.
+        """
+
+        keys_to_copy = self.options.keys_to_copy.split(" ")
+
+        # lite report report only has the specific keys
+        lite_report = {k: results[k] for k in results.keys() & keys_to_copy}
+
+        # add specific keys from behavior
+        behavior_keys_to_copy = self.options.behavior_keys_to_copy.split(" ")
+        behavior = {k: results["behavior"][k] for k in results["behavior"].keys() & behavior_keys_to_copy}
+        lite_report["behavior"] = behavior
+
+        path = os.path.join(self.reports_path, "lite.json")
+        try:
+            if HAVE_ORJSON:
+                _ = path_write_file(
+                    path, orjson.dumps(lite_report, option=orjson.OPT_INDENT_2, default=self.default)
+                )  # orjson.OPT_SORT_KEYS |
+            else:
+                with open(path, "w") as report:
+                    json.dump(lite_report, report, sort_keys=False, separators=(",", ":"), ensure_ascii=False)
+        except (UnicodeError, TypeError, IOError) as e:
+            raise CuckooReportError(f"Failed to generate JSON report: {e}")
diff --git a/modules/reporting/maec41.py b/modules/reporting/maec41.py
index 15e74f24971..29c932fcf1c 100644
--- a/modules/reporting/maec41.py
+++ b/modules/reporting/maec41.py
@@ -5,38 +5,35 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file "docs/LICENSE" for copying permission.
 
-from __future__ import absolute_import
-import os
 import hashlib
+import os
 import re
 from collections import defaultdict
 
 from lib.cuckoo.common.abstracts import Report
 from lib.cuckoo.common.exceptions import CuckooDependencyError, CuckooReportError
 from lib.cuckoo.common.utils import datetime_to_iso
-from modules.processing.behavior import fix_key
 
 try:
     import cybox
     import cybox.utils.nsparser
-    from cybox.utils import Namespace
+    from cybox.common import StructuredText, ToolInformation
     from cybox.core import Object
-    from cybox.common import ToolInformation
-    from cybox.common import StructuredText
+    from cybox.utils import Namespace
 
     HAVE_CYBOX = True
-except ImportError as e:
+except ImportError:
     HAVE_CYBOX = False
 
 try:
-    from maec.bundle import Bundle, MalwareAction, BundleReference, ProcessTree, AVClassification
-    from maec.package import MalwareSubject, Package, Analysis
-    import maec.utils
     import mixbox
+    from maec.bundle import AVClassification, Bundle, BundleReference, MalwareAction, ProcessTree
+    from maec.package import Analysis, MalwareSubject, Package
 
     HAVE_MAEC = True
-except ImportError as e:
+except ImportError:
     HAVE_MAEC = False
+    print("pip3 install maec=4.1.0.17\npip3 install mixbox=1.0.5")
 
 
 api_call_mappings = {
@@ -50,7 +47,11 @@
                 "association_type": "output",
                 "forced": {"associated_object_element": "Type", "value": "File"},
             },
-            "FileName": {"associated_object_type": "FileObjectType", "associated_object_element": "File_Path", "association_type": "output"},
+            "FileName": {
+                "associated_object_type": "FileObjectType",
+                "associated_object_element": "File_Path",
+                "association_type": "output",
+            },
         },
     },
     "NtOpenFile": {
@@ -63,7 +64,11 @@
                 "association_type": "output",
                 "forced": {"associated_object_element": "Type", "value": "File"},
             },
-            "FileName": {"associated_object_type": "FileObjectType", "associated_object_element": "File_Path", "association_type": "input"},
+            "FileName": {
+                "associated_object_type": "FileObjectType",
+                "associated_object_element": "File_Path",
+                "association_type": "input",
+            },
         },
     },
     "NtReadFile": {
@@ -94,7 +99,11 @@
         "action_name": "delete file",
         "action_vocab": "maecVocabs:FileActionNameVocab-1.0",
         "parameter_associated_objects": {
-            "FileName": {"associated_object_type": "FileObjectType", "associated_object_element": "File_Path", "association_type": "input"}
+            "FileName": {
+                "associated_object_type": "FileObjectType",
+                "associated_object_element": "File_Path",
+                "association_type": "input",
+            }
         },
     },
     "NtDeviceIoControlFile": {
@@ -119,7 +128,11 @@
                 "association_type": "input",
                 "forced": {"associated_object_element": "Type", "value": "File"},
             },
-            "FileName": {"associated_object_type": "FileObjectType", "associated_object_element": "File_Path", "association_type": "input"},
+            "FileName": {
+                "associated_object_type": "FileObjectType",
+                "associated_object_element": "File_Path",
+                "association_type": "input",
+            },
         },
     },
     "NtQueryInformationFile": {
@@ -184,14 +197,22 @@
         "action_name": "delete directory",
         "action_vocab": "maecVocabs:DirectoryActionNameVocab-1.0",
         "parameter_associated_objects": {
-            "DirectoryName": {"associated_object_type": "FileObjectType", "associated_object_element": "File_Path", "association_type": "input"}
+            "DirectoryName": {
+                "associated_object_type": "FileObjectType",
+                "associated_object_element": "File_Path",
+                "association_type": "input",
+            }
         },
     },
     "RemoveDirectoryW": {
         "action_name": "delete directory",
         "action_vocab": "maecVocabs:DirectoryActionNameVocab-1.0",
         "parameter_associated_objects": {
-            "DirectoryName": {"associated_object_type": "FileObjectType", "associated_object_element": "File_Path", "association_type": "input"}
+            "DirectoryName": {
+                "associated_object_type": "FileObjectType",
+                "associated_object_element": "File_Path",
+                "association_type": "input",
+            }
         },
     },
     "MoveFileWithProgressW": {
@@ -203,21 +224,33 @@
                 "associated_object_element": "File_Path",
                 "association_type": "input",
             },
-            "NewFileName": {"associated_object_type": "FileObjectType", "associated_object_element": "File_Path", "association_type": "output"},
+            "NewFileName": {
+                "associated_object_type": "FileObjectType",
+                "associated_object_element": "File_Path",
+                "association_type": "output",
+            },
         },
     },
     "FindFirstFileExA": {
         "action_name": "find file",
         "action_vocab": "maecVocabs:FileActionNameVocab-1.0",
         "parameter_associated_objects": {
-            "FileName": {"associated_object_type": "FileObjectType", "associated_object_element": "File_Path", "association_type": "input"}
+            "FileName": {
+                "associated_object_type": "FileObjectType",
+                "associated_object_element": "File_Path",
+                "association_type": "input",
+            }
         },
     },
     "FindFirstFileExW": {
         "action_name": "find file",
         "action_vocab": "maecVocabs:FileActionNameVocab-1.0",
         "parameter_associated_objects": {
-            "FileName": {"associated_object_type": "FileObjectType", "associated_object_element": "File_Path", "association_type": "input"}
+            "FileName": {
+                "associated_object_type": "FileObjectType",
+                "associated_object_element": "File_Path",
+                "association_type": "input",
+            }
         },
     },
     "CopyFileA": {
@@ -229,7 +262,11 @@
                 "associated_object_element": "File_Path",
                 "association_type": "input",
             },
-            "NewFileName": {"associated_object_type": "FileObjectType", "associated_object_element": "File_Path", "association_type": "output"},
+            "NewFileName": {
+                "associated_object_type": "FileObjectType",
+                "associated_object_element": "File_Path",
+                "association_type": "output",
+            },
         },
     },
     "CopyFileW": {
@@ -241,7 +278,11 @@
                 "associated_object_element": "File_Path",
                 "association_type": "input",
             },
-            "NewFileName": {"associated_object_type": "FileObjectType", "associated_object_element": "File_Path", "association_type": "output"},
+            "NewFileName": {
+                "associated_object_type": "FileObjectType",
+                "associated_object_element": "File_Path",
+                "association_type": "output",
+            },
         },
     },
     "CopyFileExW": {
@@ -253,21 +294,33 @@
                 "associated_object_element": "File_Path",
                 "association_type": "input",
             },
-            "NewFileName": {"associated_object_type": "FileObjectType", "associated_object_element": "File_Path", "association_type": "output"},
+            "NewFileName": {
+                "associated_object_type": "FileObjectType",
+                "associated_object_element": "File_Path",
+                "association_type": "output",
+            },
         },
     },
     "DeleteFileA": {
         "action_name": "delete file",
         "action_vocab": "maecVocabs:FileActionNameVocab-1.0",
         "parameter_associated_objects": {
-            "FileName": {"associated_object_type": "FileObjectType", "associated_object_element": "File_Path", "association_type": "input"}
+            "FileName": {
+                "associated_object_type": "FileObjectType",
+                "associated_object_element": "File_Path",
+                "association_type": "input",
+            }
         },
     },
     "DeleteFileW": {
         "action_name": "delete file",
         "action_vocab": "maecVocabs:FileActionNameVocab-1.0",
         "parameter_associated_objects": {
-            "FileName": {"associated_object_type": "FileObjectType", "associated_object_element": "File_Path", "association_type": "input"}
+            "FileName": {
+                "associated_object_type": "FileObjectType",
+                "associated_object_element": "File_Path",
+                "association_type": "input",
+            }
         },
     },
     "RegOpenKeyExA": {
@@ -956,7 +1009,11 @@
     "NtSaveKey": {
         "action_name": "save registry key subtree to file",
         "parameter_associated_objects": {
-            "KeyHandle": {"associated_object_type": "WindowsHandleObjectType", "associated_object_element": "ID", "association_type": "input"},
+            "KeyHandle": {
+                "associated_object_type": "WindowsHandleObjectType",
+                "associated_object_element": "ID",
+                "association_type": "input",
+            },
             "FileHandle": {
                 "associated_object_type": "WindowsHandleObjectType",
                 "associated_object_element": "ID",
@@ -968,7 +1025,11 @@
     "NtSaveKeyEx": {
         "action_name": "save registry key subtree to file",
         "parameter_associated_objects": {
-            "KeyHandle": {"associated_object_type": "WindowsHandleObjectType", "associated_object_element": "ID", "association_type": "input"},
+            "KeyHandle": {
+                "associated_object_type": "WindowsHandleObjectType",
+                "associated_object_element": "ID",
+                "association_type": "input",
+            },
             "FileHandle": {
                 "associated_object_type": "WindowsHandleObjectType",
                 "associated_object_element": "ID",
@@ -987,7 +1048,11 @@
                 "association_type": "output",
                 "forced": {"associated_object_element": "Type", "value": "Process"},
             },
-            "FileName": {"associated_object_type": "FileObjectType", "associated_object_element": "File_Path", "association_type": "input"},
+            "FileName": {
+                "associated_object_type": "FileObjectType",
+                "associated_object_element": "File_Path",
+                "association_type": "input",
+            },
         },
     },
     "NtCreateProcessEx": {
@@ -1000,7 +1065,11 @@
                 "association_type": "output",
                 "forced": {"associated_object_element": "Type", "value": "Process"},
             },
-            "FileName": {"associated_object_type": "FileObjectType", "associated_object_element": "File_Path", "association_type": "input"},
+            "FileName": {
+                "associated_object_type": "FileObjectType",
+                "associated_object_element": "File_Path",
+                "association_type": "input",
+            },
         },
     },
     "NtCreateUserProcess": {
@@ -1026,7 +1095,10 @@
             },
             "group_together_nested": {
                 "parameter_mappings": [
-                    {"parameter_name": "ProcessFileName", "element_name": "File_Name",},
+                    {
+                        "parameter_name": "ProcessFileName",
+                        "element_name": "File_Name",
+                    },
                     {"parameter_name": "ImagePathName", "element_name": "Path"},
                 ],
                 "associated_object_type": "ProcessObjectType",
@@ -1152,7 +1224,11 @@
         "action_name": "create process",
         "action_vocab": "maecVocabs:ProcessActionNameVocab-1.0",
         "parameter_associated_objects": {
-            "FilePath": {"associated_object_type": "FileObjectType", "associated_object_element": "File_Path", "association_type": "input"}
+            "FilePath": {
+                "associated_object_type": "FileObjectType",
+                "associated_object_element": "File_Path",
+                "association_type": "input",
+            }
         },
     },
     "NtUnmapViewOfSection": {
@@ -1377,7 +1453,11 @@
         "action_name": "load library",
         "action_vocab": "maecVocabs:LibraryActionNameVocab-1.0",
         "parameter_associated_objects": {
-            "FileName": {"associated_object_type": "LibraryObjectType", "associated_object_element": "Name", "association_type": "input"},
+            "FileName": {
+                "associated_object_type": "LibraryObjectType",
+                "associated_object_element": "Name",
+                "association_type": "input",
+            },
             "BaseAddress": {
                 "associated_object_type": "WindowsHandleObjectType",
                 "associated_object_element": "ID",
@@ -1389,7 +1469,11 @@
     "LdrGetDllHandle": {
         "action_name": "get dll handle",
         "parameter_associated_objects": {
-            "FileName": {"associated_object_type": "LibraryObjectType", "associated_object_element": "Name", "association_type": "input"},
+            "FileName": {
+                "associated_object_type": "LibraryObjectType",
+                "associated_object_element": "Name",
+                "association_type": "input",
+            },
             "ModuleHandle": {
                 "associated_object_type": "WindowsHandleObjectType",
                 "associated_object_element": "ID",
@@ -1445,20 +1529,31 @@
     "ExitWindowsEx": {
         "action_name": "shutdown system",
         "action_vocab": "maecVocabs:SystemActionNameVocab-1.0",
-        "parameter_associated_arguments": {"Flags": {"associated_argument_name": "Flags"}, "Reason": {"associated_argument_name": "Reason"}},
+        "parameter_associated_arguments": {
+            "Flags": {"associated_argument_name": "Flags"},
+            "Reason": {"associated_argument_name": "Reason"},
+        },
     },
     "IsDebuggerPresent": {"action_name": "check for remote debugger", "action_vocab": "maecVocabs:DebuggingActionNameVocab-1.0"},
     "LookupPrivilegeValueW": {
         "action_name": "find privilege value",
         "parameter_associated_objects": {
-            "SystemName": {"associated_object_type": "SystemObjectType", "associated_object_element": "Hostname", "association_type": "input"}
+            "SystemName": {
+                "associated_object_type": "SystemObjectType",
+                "associated_object_element": "Hostname",
+                "association_type": "input",
+            }
         },
         "parameter_associated_arguments": {"PrivilegeName": {"associated_argument_name": "Privilege Name"}},
     },
     "NtClose": {
         "action_name": "close handle",
         "parameter_associated_objects": {
-            "Handle": {"associated_object_type": "WindowsHandleObjectType", "associated_object_element": "ID", "association_type": "input"}
+            "Handle": {
+                "associated_object_type": "WindowsHandleObjectType",
+                "associated_object_element": "ID",
+                "association_type": "input",
+            }
         },
     },
     "WriteConsoleA": {
@@ -1500,7 +1595,10 @@
             },
         },
         "parameter_associated_arguments": {
-            "BaseAddress": {"associated_argument_name": "Base Address", "associated_argument_vocab": "cyboxVocabs:ActionArgumentNameVocab-1.0"},
+            "BaseAddress": {
+                "associated_argument_name": "Base Address",
+                "associated_argument_vocab": "cyboxVocabs:ActionArgumentNameVocab-1.0",
+            },
             "SectionOffset": {"associated_argument_name": "Section Offset"},
         },
     },
@@ -1720,7 +1818,11 @@
     "TransmitFile": {
         "action_name": "send file over socket",
         "parameter_associated_objects": {
-            "socket": {"associated_object_type": "WindowsHandleObjectType", "associated_object_element": "ID", "association_type": "input"},
+            "socket": {
+                "associated_object_type": "WindowsHandleObjectType",
+                "associated_object_element": "ID",
+                "association_type": "input",
+            },
             "FileHandle": {
                 "associated_object_type": "WindowsHandleObjectType",
                 "associated_object_element": "ID",
@@ -1763,7 +1865,11 @@
                 "association_type": "output",
                 "forced": {"associated_object_element": "Type", "value": "Mutex"},
             },
-            "MutexName": {"associated_object_type": "WindowsMutexObjectType", "associated_object_element": "Name", "association_type": "input"},
+            "MutexName": {
+                "associated_object_type": "WindowsMutexObjectType",
+                "associated_object_element": "Name",
+                "association_type": "input",
+            },
         },
     },
     "NtCreateNamedPipeFile": {
@@ -1776,7 +1882,11 @@
                 "association_type": "output",
                 "forced": {"associated_object_element": "Type", "value": "NamedPipe"},
             },
-            "PipeName": {"associated_object_type": "WindowsPipeObjectType", "associated_object_element": "Name", "association_type": "output"},
+            "PipeName": {
+                "associated_object_type": "WindowsPipeObjectType",
+                "associated_object_element": "Name",
+                "association_type": "output",
+            },
         },
         "parameter_associated_arguments": {
             "DesiredAccess": {
@@ -1789,7 +1899,11 @@
     "OpenSCManagerA": {
         "action_name": "open service control manager",
         "parameter_associated_objects": {
-            "MachineName": {"associated_object_type": "SystemObjectType", "associated_object_element": "Hostname", "association_type": "input"}
+            "MachineName": {
+                "associated_object_type": "SystemObjectType",
+                "associated_object_element": "Hostname",
+                "association_type": "input",
+            }
         },
         "parameter_associated_arguments": {
             "DesiredAccess": {
@@ -1802,7 +1916,11 @@
     "OpenSCManagerW": {
         "action_name": "open service control manager",
         "parameter_associated_objects": {
-            "MachineName": {"associated_object_type": "SystemObjectType", "associated_object_element": "Hostname", "association_type": "input"}
+            "MachineName": {
+                "associated_object_type": "SystemObjectType",
+                "associated_object_element": "Hostname",
+                "association_type": "input",
+            }
         },
         "parameter_associated_arguments": {
             "DesiredAccess": {
@@ -1929,7 +2047,10 @@
             },
         },
         "parameter_associated_arguments": {
-            "DesiredAccess": {"associated_argument_name": "Access Mode", "associated_argument_vocab": "cyboxVocabs:ActionArgumentNameVocab-1.0"}
+            "DesiredAccess": {
+                "associated_argument_name": "Access Mode",
+                "associated_argument_vocab": "cyboxVocabs:ActionArgumentNameVocab-1.0",
+            }
         },
     },
     "OpenServiceW": {
@@ -1949,7 +2070,10 @@
             },
         },
         "parameter_associated_arguments": {
-            "DesiredAccess": {"associated_argument_name": "Access Mode", "associated_argument_vocab": "cyboxVocabs:ActionArgumentNameVocab-1.0"}
+            "DesiredAccess": {
+                "associated_argument_name": "Access Mode",
+                "associated_argument_vocab": "cyboxVocabs:ActionArgumentNameVocab-1.0",
+            }
         },
     },
     "StartServiceA": {
@@ -1990,7 +2114,10 @@
             }
         },
         "parameter_associated_arguments": {
-            "ControlCode": {"associated_argument_name": "Control Code", "associated_argument_vocab": "cyboxVocabs:ActionArgumentNameVocab-1.0"}
+            "ControlCode": {
+                "associated_argument_name": "Control Code",
+                "associated_argument_vocab": "cyboxVocabs:ActionArgumentNameVocab-1.0",
+            }
         },
     },
     "DeleteService": {
@@ -2023,7 +2150,10 @@
             },
         },
         "parameter_associated_arguments": {
-            "ObjectAttributes": {"associated_argument_name": "Options", "associated_argument_vocab": "cyboxVocabs:ActionArgumentNameVocab-1.0"}
+            "ObjectAttributes": {
+                "associated_argument_name": "Options",
+                "associated_argument_vocab": "cyboxVocabs:ActionArgumentNameVocab-1.0",
+            }
         },
     },
     "NtOpenThread": {
@@ -2041,7 +2171,10 @@
                 "associated_argument_name": "Access Mode",
                 "associated_argument_vocab": "cyboxVocabs:ActionArgumentNameVocab-1.0",
             },
-            "ObjectAttributes": {"associated_argument_name": "Options", "associated_argument_vocab": "cyboxVocabs:ActionArgumentNameVocab-1.0"},
+            "ObjectAttributes": {
+                "associated_argument_name": "Options",
+                "associated_argument_vocab": "cyboxVocabs:ActionArgumentNameVocab-1.0",
+            },
         },
     },
     "NtGetContextThread": {
@@ -2117,7 +2250,10 @@
                 "associated_argument_name": "Code Address",
                 "associated_argument_vocab": "cyboxVocabs:ActionArgumentNameVocab-1.0",
             },
-            "Parameter": {"associated_argument_name": "Options", "associated_argument_vocab": "cyboxVocabs:ActionArgumentNameVocab-1.0"},
+            "Parameter": {
+                "associated_argument_name": "Options",
+                "associated_argument_vocab": "cyboxVocabs:ActionArgumentNameVocab-1.0",
+            },
             "CreationFlags": {
                 "associated_argument_name": "Creation Flags",
                 "associated_argument_vocab": "cyboxVocabs:ActionArgumentNameVocab-1.0",
@@ -2144,7 +2280,10 @@
                 "associated_argument_name": "Code Address",
                 "associated_argument_vocab": "cyboxVocabs:ActionArgumentNameVocab-1.0",
             },
-            "Parameter": {"associated_argument_name": "Options", "associated_argument_vocab": "cyboxVocabs:ActionArgumentNameVocab-1.0"},
+            "Parameter": {
+                "associated_argument_name": "Options",
+                "associated_argument_vocab": "cyboxVocabs:ActionArgumentNameVocab-1.0",
+            },
             "CreationFlags": {
                 "associated_argument_name": "Creation Flags",
                 "associated_argument_vocab": "cyboxVocabs:ActionArgumentNameVocab-1.0",
@@ -2182,7 +2321,10 @@
                 "associated_argument_name": "Code Address",
                 "associated_argument_vocab": "cyboxVocabs:ActionArgumentNameVocab-1.0",
             },
-            "StartParameter": {"associated_argument_name": "Options", "associated_argument_vocab": "cyboxVocabs:ActionArgumentNameVocab-1.0"},
+            "StartParameter": {
+                "associated_argument_name": "Options",
+                "associated_argument_vocab": "cyboxVocabs:ActionArgumentNameVocab-1.0",
+            },
         },
     },
     "URLDownloadToFileW": {
@@ -2190,7 +2332,11 @@
         "action_vocab": "maecVocabs:NetworkActionNameVocab-1.0",
         "parameter_associated_objects": {
             "URL": {"associated_object_type": "URIObjectType", "associated_object_element": "Value", "association_type": "input"},
-            "FileName": {"associated_object_type": "FileObjectType", "associated_object_element": "File_Path", "association_type": "output"},
+            "FileName": {
+                "associated_object_type": "FileObjectType",
+                "associated_object_element": "File_Path",
+                "association_type": "output",
+            },
         },
     },
     "InternetOpenA": {
@@ -2203,7 +2349,10 @@
             }
         },
         "parameter_associated_arguments": {
-            "AccessType": {"associated_argument_name": "Access Mode", "associated_argument_vocab": "cyboxVocabs:ActionArgumentNameVocab-1.0"},
+            "AccessType": {
+                "associated_argument_name": "Access Mode",
+                "associated_argument_vocab": "cyboxVocabs:ActionArgumentNameVocab-1.0",
+            },
             "ProxyName": {"associated_argument_name": "Proxy Name"},
             "ProxyBypass": {"associated_argument_name": "Proxy Bypass"},
             "Flags": {"associated_argument_name": "Flags"},
@@ -2219,7 +2368,10 @@
             }
         },
         "parameter_associated_arguments": {
-            "AccessType": {"associated_argument_name": "Access Mode", "associated_argument_vocab": "cyboxVocabs:ActionArgumentNameVocab-1.0"},
+            "AccessType": {
+                "associated_argument_name": "Access Mode",
+                "associated_argument_vocab": "cyboxVocabs:ActionArgumentNameVocab-1.0",
+            },
             "ProxyName": {"associated_argument_name": "Proxy Name"},
             "ProxyBypass": {"associated_argument_name": "Proxy Bypass"},
             "Flags": {"associated_argument_name": "Flags"},
@@ -2234,8 +2386,16 @@
                 "association_type": "input",
                 "forced": {"associated_object_element": "Type", "value": "Internet Resource"},
             },
-            "ServerName": {"associated_object_type": "URIObjectType", "associated_object_element": "Value", "association_type": "input"},
-            "ServerPort": {"associated_object_type": "PortObjectType", "associated_object_element": "Port_Value", "association_type": "input"},
+            "ServerName": {
+                "associated_object_type": "URIObjectType",
+                "associated_object_element": "Value",
+                "association_type": "input",
+            },
+            "ServerPort": {
+                "associated_object_type": "PortObjectType",
+                "associated_object_element": "Port_Value",
+                "association_type": "input",
+            },
         },
         "parameter_associated_arguments": {
             "Username": {"associated_argument_name": "Username"},
@@ -2253,8 +2413,16 @@
                 "association_type": "input",
                 "forced": {"associated_object_element": "Type", "value": "Internet Resource"},
             },
-            "ServerName": {"associated_object_type": "URIObjectType", "associated_object_element": "Value", "association_type": "input"},
-            "ServerPort": {"associated_object_type": "PortObjectType", "associated_object_element": "Port_Value", "association_type": "input"},
+            "ServerName": {
+                "associated_object_type": "URIObjectType",
+                "associated_object_element": "Value",
+                "association_type": "input",
+            },
+            "ServerPort": {
+                "associated_object_type": "PortObjectType",
+                "associated_object_element": "Port_Value",
+                "association_type": "input",
+            },
         },
         "parameter_associated_arguments": {
             "Username": {"associated_argument_name": "Username"},
@@ -2446,7 +2614,11 @@
         "action_name": "get host by name",
         "action_vocab": "maecVocabs:SocketActionNameVocab-1.0",
         "parameter_associated_objects": {
-            "NodeName": {"associated_object_type": "URIObjectType", "associated_object_element": "Value", "association_type": "input"}
+            "NodeName": {
+                "associated_object_type": "URIObjectType",
+                "associated_object_element": "Value",
+                "association_type": "input",
+            }
         },
         "parameter_associated_arguments": {"ServiceName": {"associated_argument_name": "Service Name"}},
     },
@@ -2454,7 +2626,11 @@
         "action_name": "get host by name",
         "action_vocab": "maecVocabs:SocketActionNameVocab-1.0",
         "parameter_associated_objects": {
-            "NodeName": {"associated_object_type": "URIObjectType", "associated_object_element": "Value", "association_type": "input"}
+            "NodeName": {
+                "associated_object_type": "URIObjectType",
+                "associated_object_element": "Value",
+                "association_type": "input",
+            }
         },
         "parameter_associated_arguments": {"ServiceName": {"associated_argument_name": "Service Name"}},
     },
@@ -2464,22 +2640,21 @@
 def hiveHexToString(hive_hex_value):
     """Maps a Registry Hive hex input to its String (name) equivalent"""
     str_val = str(hive_hex_value)
-    if str_val == "0x80000000" or str_val == "-2147483648" or str_val == "2147483648":
+    if str_val in ("0x80000000", "-2147483648", "2147483648"):
         return "HKEY_CLASSES_ROOT"
-    elif str_val == "0x80000001" or str_val == "-2147483647" or str_val == "2147483649":
+    elif str_val in ("0x80000001", "-2147483647", "2147483649"):
         return "HKEY_CURRENT_USER"
-    elif str_val == "0x80000002" or str_val == "-2147483646" or str_val == "2147483650":
+    elif str_val in ("0x80000002", "-2147483646", "2147483650"):
         return "HKEY_LOCAL_MACHINE"
-    elif str_val == "0x80000003" or str_val == "-2147483645" or str_val == "2147483651":
+    elif str_val in ("0x80000003", "-2147483645" "2147483651"):
         return "HKEY_USERS"
     elif str_val == "0x80000004":
         return "HKEY_PERFORMANCE_DATA"
-    elif str_val == "0x80000005" or str_val == "2147483653":
+    elif str_val in ("0x80000005", "2147483653"):
         return "HKEY_CURRENT_CONFIG"
     elif str_val == "0x80000006":
         return "HKEY_DYN_DATA"
-    else:
-        return hive_hex_value
+    return hive_hex_value
 
 
 def regDatatypeToString(datatype_int_value):
@@ -2506,8 +2681,7 @@ def regDatatypeToString(datatype_int_value):
         return "REG_RESOURCE_REQUIREMENTS_LIST"
     elif str(datatype_int_value) == "11":
         return "REG_QWORD"
-    else:
-        return datatype_int_value
+    return datatype_int_value
 
 
 def socketProtoToString(proto_int_value):
@@ -2526,8 +2700,7 @@ def socketProtoToString(proto_int_value):
         return "IPPROTO_ICMPV6"
     elif str(proto_int_value) == "113":
         return "IPPROTO_RM"
-    else:
-        return proto_int_value
+    return proto_int_value
 
 
 def socketAFToString(af_int_value):
@@ -2548,8 +2721,7 @@ def socketAFToString(af_int_value):
         return "AF_IRDA"
     elif str(af_int_value) == "32":
         return "AF_BTH"
-    else:
-        return af_int_value
+    return af_int_value
 
 
 def socketTypeToString(type_int_value):
@@ -2564,47 +2736,44 @@ def socketTypeToString(type_int_value):
         return "SOCK_RDM"
     elif str(type_int_value) == "5":
         return "SOCK_SEQPACKET"
-    else:
-        return type_int_value
+    return type_int_value
 
 
 def intToHex(value):
     """Convert an integer to a hex string"""
     if isinstance(value, int):
-        value = "0x{0:08x}".format(value)
+        value = f"0x{value:08x}"
 
     return value
 
 
 def regStringToHive(reg_string):
     """Maps a string representing a Registry Key from a NT* API call input to its normalized hive"""
-    normalized_key = fix_key(reg_string)
-    return normalized_key.split("\\")[0]
+    return reg_string.split("\\", 1)[0]
 
 
 def regStringToKey(reg_string):
     """Maps a string representing a Registry Key from a NT* API call input to its normalized key portion"""
-    normalized_key = fix_key(reg_string)
-    return "\\".join(normalized_key.split("\\")[1:])
+    return reg_string.split("\\", 1)[1]
 
 
 class MAEC41Report(Report):
     """Generates a MAEC 4.1 report.
-       --Output modes (set in reporting.conf):
-           mode = "full": Output fully mapped Actions (see maec41), including Windows Handle mapped/substituted objects,
-                          along with API call/parameter capture via Action Implementations.
-           mode = "overview": Output only fully mapped Actions, without any Action Implementations. Default mode.
-           mode = "api": Output only Actions with Action Implementations, but no mapped components.
-       --Other configuration parameters:
-           processtree = "true" | "false". Output captured ProcessTree as part of dynamic analysis MAEC Bundle. Default = "true".
-           output_handles = "true" | "false". Output the Windows Handles used to  construct the Object-Handle mappings as a
-                                              separate Object Collection in the dynamic analysis MAEC Bundle. Only applicable
-                                              for mode = "full" or mode = "overview". Default = "false".
-           static = "true" | "false". Output Cuckoo static analysis (PEfile) output as a separate MAEC Bundle in the document.
-                                      Default = "true".
-           strings = "true" | "false". Output Cuckoo strings output as a separate MAEC Bundle in the document. Default = "true".
-           virustotal = "true" | "false". Output VirusTotal output as a separate MAEC Bundle in the document. Default = "true".
-           deduplicate = "true" | "false". Deduplicate the CybOX Objects in the generated dynamic analysis MAEC Bundle. Default = "true".
+    --Output modes (set in reporting.conf):
+        mode = "full": Output fully mapped Actions (see maec41), including Windows Handle mapped/substituted objects,
+                       along with API call/parameter capture via Action Implementations.
+        mode = "overview": Output only fully mapped Actions, without any Action Implementations. Default mode.
+        mode = "api": Output only Actions with Action Implementations, but no mapped components.
+    --Other configuration parameters:
+        processtree = "true" | "false". Output captured ProcessTree as part of dynamic analysis MAEC Bundle. Default = "true".
+        output_handles = "true" | "false". Output the Windows Handles used to  construct the Object-Handle mappings as a
+                                           separate Object Collection in the dynamic analysis MAEC Bundle. Only applicable
+                                           for mode = "full" or mode = "overview". Default = "false".
+        static = "true" | "false". Output Cuckoo static analysis (PEfile) output as a separate MAEC Bundle in the document.
+                                   Default = "true".
+        strings = "true" | "false". Output Cuckoo strings output as a separate MAEC Bundle in the document. Default = "true".
+        virustotal = "true" | "false". Output VirusTotal output as a separate MAEC Bundle in the document. Default = "true".
+        deduplicate = "true" | "false". Deduplicate the CybOX Objects in the generated dynamic analysis MAEC Bundle. Default = "true".
     """
 
     def run(self, results):
@@ -2618,7 +2787,7 @@ def run(self, results):
             raise CuckooDependencyError("Unable to import cybox (install with `pip3 install cybox`)")
         if not HAVE_MAEC:
             raise CuckooDependencyError("Unable to import maec (install with `pip3 install maec`)")
-        self._illegal_xml_chars_RE = re.compile(u"[\x00-\x08\x0b\x0c\x0e-\x1F\uD800-\uDFFF\uFFFE\uFFFF]")
+        self._illegal_xml_chars_RE = re.compile("[\x00-\x08\x0b\x0c\x0e-\x1F\uD800-\uDFFF\uFFFE\uFFFF]")
         # Map of PIDs to the Actions that they spawned.
         self.pidActionMap = {}
         # Windows Handle map.
@@ -2642,9 +2811,9 @@ def setupMAEC(self):
         NS = Namespace("http://www.cuckoosandbox.org", "Cuckoosandbox")
         mixbox.idgen.set_id_namespace(NS)
         # Setup the MAEC components
-        if "target" in self.results and self.results["target"]["category"] == "file":
+        if self.results.get("target")["category"] == "file":
             self.tool_id = mixbox.idgen.create_id(prefix=self.results["target"]["file"]["md5"])
-        elif "target" in self.results and self.results["target"]["category"] == "url":
+        elif self.results.get("target")["category"] == "url":
             self.tool_id = mixbox.idgen.create_id(prefix=hashlib.md5(self.results["target"]["file"]).hexdigest())
         else:
             raise CuckooReportError("Unknown target type or targetinfo module disabled")
@@ -2660,13 +2829,13 @@ def setupMAEC(self):
         # Add the Bundle to the Subject.
         self.subject.add_findings_bundle(self.dynamic_bundle)
         # Generate Static Analysis Bundles, if static results exist.
-        if self.options["static"] and "static" in self.results and self.results["static"]:
+        if self.options["static"] and self.results.get("static"):
             self.static_bundle = Bundle(None, False, "4.1", "static analysis tool output")
             self.subject.add_findings_bundle(self.static_bundle)
-        if self.options["strings"] and "strings" in self.results and self.results["strings"]:
+        if self.options["strings"] and self.results.get("strings"):
             self.strings_bundle = Bundle(None, False, "4.1", "static analysis tool output")
             self.subject.add_findings_bundle(self.strings_bundle)
-        if self.options["virustotal"] and "virustotal" in self.results and self.results["virustotal"]:
+        if self.options["virustotal"] and self.results.get("virustotal"):
             self.virustotal_bundle = Bundle(None, False, "4.1", "static analysis tool output")
             self.subject.add_findings_bundle(self.virustotal_bundle)
 
@@ -2686,7 +2855,9 @@ def addActions(self):
                 self.dynamic_bundle.add_named_action_collection("Network Actions")
                 for network_data in self.results["network"]["udp"]:
                     self.createActionNet(
-                        network_data, {"value": "connect to socket address", "xsi:type": "maecVocabs:NetworkActionNameVocab-1.0"}, "UDP"
+                        network_data,
+                        {"value": "connect to socket address", "xsi:type": "maecVocabs:NetworkActionNameVocab-1.0"},
+                        "UDP",
                     )
             if (
                 "dns" in self.results["network"]
@@ -2706,7 +2877,9 @@ def addActions(self):
                 self.dynamic_bundle.add_named_action_collection("Network Actions")
                 for network_data in self.results["network"]["tcp"]:
                     self.createActionNet(
-                        network_data, {"value": "connect to socket address", "xsi:type": "maecVocabs:NetworkActionNameVocab-1.0"}, "TCP"
+                        network_data,
+                        {"value": "connect to socket address", "xsi:type": "maecVocabs:NetworkActionNameVocab-1.0"},
+                        "TCP",
                     )
             if (
                 "http" in self.results["network"]
@@ -2718,7 +2891,7 @@ def addActions(self):
                     self.createActionNet(
                         network_data,
                         {
-                            "value": "send http " + str(network_data["method"]).lower() + " request",
+                            "value": f"send http {str(network_data['method']).lower()} request",
                             "xsi:type": "maecVocabs:HTTPActionNameVocab-1.0",
                         },
                         "TCP",
@@ -2763,9 +2936,10 @@ def createActionNet(self, network_data, action_name, layer4_protocol=None, layer
             }
         # Layer 7-specific object properties.
         if layer7_protocol == "DNS":
-            answer_resource_records = []
-            for answer_record in network_data["answers"]:
-                answer_resource_records.append({"entity_type": answer_record["type"], "record_data": answer_record["data"]})
+            answer_resource_records = [
+                {"entity_type": answer_record["type"], "record_data": answer_record["data"]}
+                for answer_record in network_data["answers"]
+            ]
             object_properties["layer7_connections"] = {
                 "dns_queries": [
                     {
@@ -2788,7 +2962,10 @@ def createActionNet(self, network_data, action_name, layer4_protocol=None, layer
                                 "http_request_header": {
                                     "parsed_header": {
                                         "user_agent": network_data["user-agent"],
-                                        "host": {"domain_name": {"value": network_data["host"]}, "port": {"port_value": network_data["port"]}},
+                                        "host": {
+                                            "domain_name": {"value": network_data["host"]},
+                                            "port": {"port_value": network_data["port"]},
+                                        },
                                     }
                                 },
                                 "http_message_body": {"message_body": network_data["body"]},
@@ -2797,7 +2974,11 @@ def createActionNet(self, network_data, action_name, layer4_protocol=None, layer
                     ]
                 }
             }
-        action_dict = {"id": mixbox.idgen.create_id(prefix="action"), "name": action_name, "associated_objects": [associated_object]}
+        action_dict = {
+            "id": mixbox.idgen.create_id(prefix="action"),
+            "name": action_name,
+            "associated_objects": [associated_object],
+        }
         # Add the Action to the dynamic analysis bundle.
         self.dynamic_bundle.add_action(MalwareAction.from_dict(action_dict), "Network Actions")
 
@@ -2865,8 +3046,10 @@ def apiCallToAction(self, call, pos):
         # Add the action parameter arguments.
         apos = 1
         for arg in call["arguments"]:
-            parameter_list.append({"ordinal_position": apos, "name": arg["name"], "value": self._illegal_xml_chars_RE.sub("?", arg["value"])})
-            apos = apos + 1
+            parameter_list.append(
+                {"ordinal_position": apos, "name": arg["name"], "value": self._illegal_xml_chars_RE.sub("?", arg["value"])}
+            )
+            apos += 1
         # Try to add the mapped Action Name.
         if call["api"] in api_call_mappings:
             mapping_dict = api_call_mappings[call["api"]]
@@ -2877,7 +3060,7 @@ def apiCallToAction(self, call, pos):
                 action_dict["name"] = {"value": mapping_dict["action_name"], "xsi:type": None}
         # Try to add the mapped Action Arguments and Associated Objects.
         # Only output in "overview" or "full" modes.
-        if self.options["mode"].lower() == "overview" or self.options["mode"].lower() == "full":
+        if self.options["mode"].lower() in ("overview", "full"):
             # Check to make sure we have a mapping for this API call.
             if call["api"] in api_call_mappings:
                 mapping_dict = api_call_mappings[call["api"]]
@@ -2898,7 +3081,7 @@ def apiCallToAction(self, call, pos):
                     )
 
         # Only output Implementation in "api" or "full" modes.
-        if self.options["mode"].lower() == "api" or self.options["mode"].lower() == "full":
+        if self.options["mode"].lower() in ("api", "full"):
             action_dict["implementation"] = self.processActionImplementation(call, parameter_list)
 
         # Add the common Action properties.
@@ -2944,11 +3127,17 @@ def processActionArguments(self, parameter_mappings_dict, parameter_list):
                         },
                     }
                 )
-            elif parameter_name in parameter_mappings_dict and "associated_argument_vocab" not in parameter_mappings_dict[parameter_name]:
+            elif (
+                parameter_name in parameter_mappings_dict
+                and "associated_argument_vocab" not in parameter_mappings_dict[parameter_name]
+            ):
                 arguments_list.append(
                     {
                         "argument_value": argument_value,
-                        "argument_name": {"value": parameter_mappings_dict[parameter_name]["associated_argument_name"], "xsi:type": None},
+                        "argument_name": {
+                            "value": parameter_mappings_dict[parameter_name]["associated_argument_name"],
+                            "xsi:type": None,
+                        },
                     }
                 )
         if arguments_list:
@@ -3008,8 +3197,7 @@ def processActionAssociatedObjects(self, associated_objects_dict, parameter_list
             self.processRegKeys(associated_objects_list)
             # Perform Windows Handle Update/Replacement Processing.
             return self.processWinHandles(associated_objects_list)
-        else:
-            return None
+        return None
 
     def processWinHandles(self, associated_objects_list):
         """Process any Windows Handles that may be associated with an Action. Replace Handle references with
@@ -3024,7 +3212,9 @@ def processWinHandles(self, associated_objects_list):
         # Add the named object collections if they do not exist.
         if not self.dynamic_bundle.collections.object_collections.has_collection("Handle-mapped Objects"):
             self.dynamic_bundle.add_named_object_collection("Handle-mapped Objects", mixbox.idgen.create_id(prefix="object"))
-        if self.options["output_handles"] and not self.dynamic_bundle.collections.object_collections.has_collection("Windows Handles"):
+        if self.options["output_handles"] and not self.dynamic_bundle.collections.object_collections.has_collection(
+            "Windows Handles"
+        ):
             self.dynamic_bundle.add_named_object_collection("Windows Handles", mixbox.idgen.create_id(prefix="object"))
         # Determine the types of objects we're dealing with.
         for associated_object_dict in associated_objects_list:
@@ -3071,17 +3261,17 @@ def processWinHandles(self, associated_objects_list):
                 object_list = output_objects
 
             for object in object_list:
-                if "properties" in object and object["properties"]["xsi:type"] == "WindowsThreadObjectType":
+                if object.get("properties", {}).get("xsi:type") == "WindowsThreadObjectType":
                     for output_handle in output_handles:
-                        if "type" in output_handle["properties"] and output_handle["properties"]["type"] == "Thread":
+                        if output_handle["properties"].get("type") == "Thread":
                             substituted_object = self.addHandleToMap(output_handle, object)
                             if substituted_object:
                                 associated_objects_list.remove(object)
                                 associated_objects_list.remove(output_handle)
                                 associated_objects_list.append(substituted_object)
-                elif "properties" in object and object["properties"]["xsi:type"] == "ProcessObjectType":
+                elif object.get("properties", {}).get("xsi:type") == "ProcessObjectType":
                     for output_handle in output_handles:
-                        if "type" in output_handle["properties"] and output_handle["properties"]["type"] == "Process":
+                        if output_handle["properties"].get("type") == "Process":
                             substituted_object = self.addHandleToMap(output_handle, object)
                             if substituted_object:
                                 associated_objects_list.remove(object)
@@ -3147,7 +3337,10 @@ def addHandleToMap(self, handle_dict, object_dict):
             # This is optional, as the handles themselves may not be very useful.
             if self.options["output_handles"]:
                 handle_reference_dict = {}
-                handle_reference_dict["relationship"] = {"value": "Related_To", "xsi:type": "cyboxVocabs:ObjectRelationshipVocab-1.0"}
+                handle_reference_dict["relationship"] = {
+                    "value": "Related_To",
+                    "xsi:type": "cyboxVocabs:ObjectRelationshipVocab-1.0",
+                }
                 handle_reference_dict["idref"] = handle_dict["id"]
                 object_dict["related_objects"] = [handle_reference_dict]
                 # Add the Objects to their corresponding Collections.
@@ -3175,7 +3368,7 @@ def processRegKeyHandle(self, handle_id, current_dict):
             if "key" in handle_mapped_key["properties"]:
                 if "key" not in current_dict["properties"]:
                     current_dict["properties"]["key"] = ""
-                current_dict["properties"]["key"] = handle_mapped_key["properties"]["key"] + "\\" + current_dict["properties"]["key"]
+                current_dict["properties"]["key"] = f"{handle_mapped_key['properties']['key']}\\{current_dict['properties']['key']}"
             if "hive" in handle_mapped_key["properties"]:
                 # If we find the "HKEY_" then we assume we're done.
                 if "HKEY_" in handle_mapped_key["properties"]["hive"]:
@@ -3208,7 +3401,7 @@ def processAssociatedObject(self, parameter_mapping_dict, parameter_value, assoc
             parameter_value = globals()[parameter_mapping_dict["post_processing"]](parameter_value)
 
         # Handle the actual element value
-        if "associated_object_element" in parameter_mapping_dict and parameter_mapping_dict["associated_object_element"]:
+        if parameter_mapping_dict.get("associated_object_element"):
             # Handle simple (non-nested) elements
             if "/" not in parameter_mapping_dict["associated_object_element"]:
                 associated_object_dict["properties"][parameter_mapping_dict["associated_object_element"].lower()] = parameter_value
@@ -3220,13 +3413,17 @@ def processAssociatedObject(self, parameter_mapping_dict, parameter_value, assoc
                         self.createNestedDict(split_elements[1:], parameter_value)
                     ]
                 else:
-                    associated_object_dict["properties"][split_elements[0].lower()] = self.createNestedDict(split_elements[1:], parameter_value)
+                    associated_object_dict["properties"][split_elements[0].lower()] = self.createNestedDict(
+                        split_elements[1:], parameter_value
+                    )
         # Corner case for some Registry Keys
         else:
             associated_object_dict["properties"] = parameter_value
         # Set any "forced" properties that should be set alongside the current
         if "forced" in parameter_mapping_dict:
-            self.processAssociatedObject(parameter_mapping_dict["forced"], parameter_mapping_dict["forced"]["value"], associated_object_dict)
+            self.processAssociatedObject(
+                parameter_mapping_dict["forced"], parameter_mapping_dict["forced"]["value"], associated_object_dict
+            )
         # Finally, set the XSI type if it has not been set already.
         if "associated_object_type" in parameter_mapping_dict and "xsi:type" not in associated_object_dict["properties"]:
             associated_object_dict["properties"]["xsi:type"] = parameter_mapping_dict["associated_object_type"]
@@ -3279,7 +3476,7 @@ def createProcessActions(self, process):
 
         for call in process["calls"]:
             # Generate the action collection name and create a new named action collection if one does not exist.
-            action_collection_name = str(call["category"]).capitalize() + " Actions"
+            action_collection_name = f"{str(call['category']).capitalize()} Actions"
             self.dynamic_bundle.add_named_action_collection(action_collection_name, mixbox.idgen.create_id(prefix="action"))
 
             # Generate the Action dictionary.
@@ -3287,27 +3484,26 @@ def createProcessActions(self, process):
 
             # Add the action ID to the list of Actions spawned by the process.
             if pid in self.pidActionMap:
-                action_list = self.pidActionMap[pid].append({"action_id": action_dict["id"]})
+                # action_list = self.pidActionMap[pid].append({"action_id": action_dict["id"]})
+                pass
             else:
                 self.pidActionMap[pid] = [{"action_id": action_dict["id"]}]
 
             # Add the action to the dynamic analysis Bundle.
             self.dynamic_bundle.add_action(MalwareAction.from_dict(action_dict), action_collection_name)
             # Update the action position
-            pos = pos + 1
+            pos += 1
 
     # Map the Cuckoo status to that used in the MAEC/CybOX action_status field.
     def mapActionStatus(self, status):
-        if status is True or status == 1:
+        if status or status == 1:
             return "Success"
-        elif status is False or status == 0:
+        elif not status:
             return "Fail"
-        else:
-            return None
+        return None
 
     def createWinExecFileObj(self):
-        """Creates a Windows Executable File (PE) object for capturing static analysis output.
-        """
+        """Creates a Windows Executable File (PE) object for capturing static analysis output."""
 
         # A mapping of Cuckoo resource type names to their name in MAEC
         resource_type_mappings = {
@@ -3435,9 +3631,9 @@ def createWinExecFileObj(self):
 
     def createFileStringsObj(self):
         """Creates a File object for capturing strings output."""
-        extracted_string_list = []
-        for extracted_string in self.results["strings"]:
-            extracted_string_list.append({"string_value": self._illegal_xml_chars_RE.sub("?", extracted_string)})
+        extracted_string_list = [
+            {"string_value": self._illegal_xml_chars_RE.sub("?", extracted_string)} for extracted_string in self.results["strings"]
+        ]
         extracted_features = {"strings": extracted_string_list}
         object_dict = {
             "id": mixbox.idgen.create_id(prefix="object"),
@@ -3451,7 +3647,7 @@ def createFileObj(self, file):
         @param file: file dict from Cuckoo dict.
         @requires: file object.
         """
-        if "ssdeep" in file and file["ssdeep"] is not None:
+        if file.get("ssdeep") is not None:
             hashes_list = [
                 {"type": "MD5", "simple_hash_value": file["md5"]},
                 {"type": "SHA1", "simple_hash_value": file["sha1"]},
@@ -3518,7 +3714,7 @@ def addAnalyses(self):
         self.subject.add_analysis(dynamic_analysis)
 
         # Add the static analysis.
-        if "static" in self.options and self.options["static"] and "static" in self.results and self.results["static"]:
+        if self.options.get("static") and self.results.get("static"):
             static_analysis = Analysis(
                 mixbox.idgen.create_id(prefix="analysis"),
                 "static",
@@ -3542,7 +3738,7 @@ def addAnalyses(self):
             # Add the static file results.
             self.static_bundle.add_object(self.createWinExecFileObj())
         # Add the strings analysis.
-        if "strings" in self.options and self.options["strings"] and "strings" in self.results and self.results["strings"]:
+        if self.options.get("strings") and self.results.get("strings"):
             strings_analysis = Analysis(
                 mixbox.idgen.create_id(prefix="analysis"),
                 "static",
@@ -3566,7 +3762,7 @@ def addAnalyses(self):
             # Add the strings results.
             self.strings_bundle.add_object(self.createFileStringsObj())
         # Add the VirusTotal analysis.
-        if self.options["virustotal"] and "virustotal" in self.results and self.results["virustotal"]:
+        if self.options["virustotal"] and self.results.get("virustotal"):
             virustotal_analysis = Analysis(
                 mixbox.idgen.create_id(prefix="analysis"),
                 "static",
diff --git a/modules/reporting/maec5.py b/modules/reporting/maec5.py
index 00d99645101..59958b076aa 100644
--- a/modules/reporting/maec5.py
+++ b/modules/reporting/maec5.py
@@ -4,19 +4,21 @@
 # See the file 'docs/LICENSE' for copying permission.
 # MAEC 5.0 Cuckoo Report Module
 # https://maecproject.github.io/releases/5.0/MAEC_Vocabularies_Specification.pdf
-from __future__ import absolute_import
+
 import io
-import sys
 import json
+import logging
 import os
 import re
+import sys
 import uuid
-import logging
-import dateutil.parser
 from collections import OrderedDict
+from contextlib import suppress
+
+import dateutil.parser
+
 from lib.cuckoo.common.abstracts import Report
 from lib.cuckoo.common.constants import CUCKOO_ROOT
-import six
 
 log = logging.getLogger(__name__)
 
@@ -137,18 +139,17 @@ def convert_to_unicode(input):
             od[convert_to_unicode(key)] = convert_to_unicode(value)
         return od
     elif isinstance(input, dict):
-        return {convert_to_unicode(key): convert_to_unicode(value) for key, value in six.iteritems(input)}
+        return {convert_to_unicode(key): convert_to_unicode(value) for key, value in input.items()}
     elif isinstance(input, list):
         return [convert_to_unicode(element) for element in input]
-    elif isinstance(input, str) or isinstance(input, int) or isinstance(input, float):
-        return six.text_type(input).decode("utf-8")
-    else:
-        return input
+    elif isinstance(input, (str, int, float)):
+        return str(input)
+    return input
 
 
 def sort_dict(d):
     """Sort and return an observed dict for an input dictionary"""
-    od = OrderedDict(sorted(six.iteritems(d), key=lambda k_v: sort_order.index(k_v[0])))
+    od = OrderedDict(sorted(d.items(), key=lambda k_v: sort_order.index(k_v[0])))
     return od
 
 
@@ -161,7 +162,6 @@ def _get_mime_type(cuckoo_type_desc):
 
 
 class MaecReport(Report):
-
     """
     Generates MAEC 5.0 report.
     """
@@ -191,7 +191,7 @@ def run(self, results):
     def setup(self):
         """Setup core MAEC fields and types"""
         # Package ID
-        self.package["id"] = "package--" + str(uuid.uuid4())
+        self.package["id"] = f"package--{uuid.uuid4()}"
         # Load the JSON mappings
 
         with open(os.path.join(CUCKOO_ROOT, "data", "maec_api_call_mappings.json")) as f:
@@ -209,7 +209,7 @@ def create_malware_instance(self, file_data):
         """Create a base Malware Instance"""
         malwareInstance = {"type": "malware-instance"}
 
-        malwareInstance["id"] = "malware-instance--" + str(uuid.uuid4())
+        malwareInstance["id"] = f"malware-instance--{uuid.uuid4()}"
 
         # Create file object for the malware instance object
         file_obj_id, file_obj = self.create_file_obj(file_data)
@@ -226,28 +226,28 @@ def create_malware_instance(self, file_data):
     def setup_primary_malware_instance(self):
         """Instantiate the primary (target) Malware Instance"""
         malwareInstance = {}
-        if "target" in self.results and self.results["target"]["category"] == "file":
+        if self.results.get("target", {}).get("category") == "file":
             malwareInstance = self.create_malware_instance(self.results["target"]["file"])
 
             # Add dynamic features
             malwareInstance["dynamic_features"] = {}
 
             # Grab static strings
-            if "strings" in self.results and self.results["strings"]:
+            if self.results.get("strings"):
                 malwareInstance["static_features"] = {"strings": self.results["strings"]}
 
             # if target malware has virus total scans, add them to the Malware
             # Instance's corresponding STIX file object
-            if "virustotal" in self.results and self.results["virustotal"]:
+            if self.results.get("virustotal"):
                 file_obj_id = malwareInstance["instance_object_refs"][0]
                 self.package["observable_objects"][file_obj_id]["extensions"] = {}
                 self.package["observable_objects"][file_obj_id]["extensions"]["x-maec-avclass"] = self.create_avc_class_obj_list(
                     self.results["virustotal"]
                 )
 
-        elif "target" in self.results and self.results["target"]["category"] == "url":
+        elif self.results.get("target")["category"] == "url":
             malwareInstance = {"type": "malware-instance"}
-            malwareInstance["id"] = "malware-instance--" + str(uuid.uuid4())
+            malwareInstance["id"] = f"malware-instance--{uuid.uuid4()}"
             malwareInstance["instance_object_refs"] = [{"type": "url", "value": self.results["target"]["url"]}]
             # Add malwareInstance to package
             self.package["maec_objects"].append(sort_dict(malwareInstance))
@@ -268,7 +268,7 @@ def setup_primary_malware_instance(self):
                 vm_obj = {"type": "software", "name": (str(self.results["info"]["machine"]["manager"]))}
                 analysis_dict["vm_ref"] = self.deduplicate_obj(vm_obj)
             analysis_dict["tool_refs"] = [tool_id]
-            analysis_dict["description"] = str("Automated analysis conducted " "by Cuckoo Sandbox")
+            analysis_dict["description"] = "Automated analysis conducted by Cuckoo Sandbox"
             malwareInstance["analysis_metadata"] = [analysis_dict]
             self.primaryInstance = malwareInstance
 
@@ -284,14 +284,13 @@ def add_dropped_files(self):
         # Grab list of all dropped files- remember
         # package['observable_objects'] is a dict where the key is object-ID
         for f in self.results["dropped"]:
-
             # Create a new Malware Instance for each dropped file
             malwareInstance = self.create_malware_instance(f)
 
             # Add relationship object to connect original malware instance and
             # new malware instance (from dropped file)
             relationship_dict = OrderedDict()
-            relationship_dict["id"] = "relationship--" + str(uuid.uuid4())
+            relationship_dict["id"] = f"relationship--{uuid.uuid4()}"
             relationship_dict["type"] = "relationship"
             relationship_dict["source_ref"] = self.primaryInstance["id"]
             relationship_dict["target_ref"] = malwareInstance["id"]
@@ -314,9 +313,9 @@ def create_file_obj(self, cuckoo_file_dict):
             "name": cuckoo_file_dict["name"],
         }
 
-        if "ssdeep" in cuckoo_file_dict and cuckoo_file_dict["ssdeep"]:
+        if cuckoo_file_dict.get("ssdeep"):
             file_obj["hashes"]["ssdeep"] = cuckoo_file_dict["ssdeep"]
-        if "type" in cuckoo_file_dict and cuckoo_file_dict["type"]:
+        if cuckoo_file_dict.get("type"):
             file_obj["mime_type"] = _get_mime_type(cuckoo_file_dict["type"])
 
         # If file path given, have to create another STIX object
@@ -324,15 +323,15 @@ def create_file_obj(self, cuckoo_file_dict):
 
         # Dropped files use the "file_path" field for the actual directory of
         # dropped file
-        if "filepath" in cuckoo_file_dict and cuckoo_file_dict["filepath"]:
+        if cuckoo_file_dict.get("filepath"):
             self.create_directory_from_file_path(file_obj, cuckoo_file_dict["path"])
 
         # Target file uses the "path" field for recording directory
-        elif "path" in cuckoo_file_dict and cuckoo_file_dict["path"]:
+        elif cuckoo_file_dict.get("path"):
             self.create_directory_from_file_path(file_obj, cuckoo_file_dict["path"])
 
         # If file has virusTotal scans, insert them under extensions property
-        if "virustotal" in cuckoo_file_dict and cuckoo_file_dict["virustotal"]:
+        if cuckoo_file_dict.get("virustotal"):
             file_obj["extensions"] = {}
             file_obj["extensions"]["x-maec-avclass"] = self.create_avc_class_obj_list(cuckoo_file_dict["virustotal"])
 
@@ -343,7 +342,7 @@ def create_directory_from_file_path(self, file_obj, path):
 
         file_name = re.split(r"\\|/", path)[-1]
         # Make sure we have a file name and not just a directory
-        if file_name or ("name" in file_obj and file_obj["name"] != path):
+        if file_name or (file_obj.get("name") != path):
             dir_path = path.rstrip(file_name)
             dir_obj = self.create_directory_obj(dir_path)
             # Add the file name to the File Object if it does not already exist
@@ -432,7 +431,7 @@ def create_network_obj(self, value, obj):
         elif re.match("^([0-9a-fA-F][0-9a-fA-F]:){5}([0-9a-fA-F][0-9a-fA-F])$", value):
             network_obj["type"] = "mac-addr"
         # Test for an IPv4 address
-        elif re.match("^(25[0-5]|2[0-4][0-9]|1[0-9][0-9]|[0-9]{1,2})" "(\.(25[0-5]|2[0-4][0-9]|1[0-9][0-9]" "|[0-9]{1,2})){3}$", value):
+        elif re.match(r"^(25[0-5]|2[0-4][0-9]|1[0-9][0-9]|[0-9]{1,2})(\.(25[0-5]|2[0-4][0-9]|1[0-9][0-9]|[0-9]{1,2})){3}$", value):
             network_obj["type"] = "ipv4-addr"
             obj["protocols"] = ["ipv4", "tcp"]
         else:
@@ -457,7 +456,7 @@ def deduplicate_obj(self, obj):
 
     def map_object_properties(self, obj, mapping_entry, arguments):
         """Map the properties of a Cuckoo-reported Object to its STIX
-         Cyber Observable Representation"""
+        Cyber Observable Representation"""
         obj_dict = {}
         # Handle object extensions
         if "extension" in mapping_entry:
@@ -493,27 +492,25 @@ def map_objects(self, action, objects_class, mapping, arguments):
         # Populate the properties of the Object
         if not isinstance(arguments, list):
             arguments = [arguments]
-        found = False
-        v2_arguments = dict()
+        v2_arguments = {}
         for args in arguments:
             if "name" in args and "value" in args:
                 v2_arguments[args["name"]] = args["value"]
         arguments = v2_arguments
-        try:
+        with suppress(Exception):
             for entry in mapping[objects_class]:
-                if entry["cuckoo_arg"] in arguments and arguments[entry["cuckoo_arg"]]:
+                if arguments.get(entry["cuckoo_arg"]):
                     self.map_object_properties(obj, entry, arguments)
             # Make sure that some properties on the Object have actually been set
             if len(list(obj.keys())) > 1:
                 action[objects_class] = []
                 real_obj_id = self.post_process_object(obj, arguments)
                 action[objects_class].append(real_obj_id)
-        except Exception as e:
-            pass
 
     def post_process_object(self, obj, arguments):
         """Perform any necessary post-processing on Cyber Observable Objects"""
         protocol_mappings = {"1": "ftp", "3": "http"}
+        """
         reg_datatype_mappings = {
             "0": "REG_NONE",
             "1": "REG_SZ",
@@ -528,13 +525,14 @@ def post_process_object(self, obj, arguments):
             "10": "REG_RESOURCE_REQUIREMENTS_LIST",
             "11": "REG_QWORD",
         }
+        """
         if obj["type"] == "file":
             self.create_directory_from_file_path(obj, obj["name"])
         elif obj["type"] == "windows-registry-key":
             if "regkey" in arguments and "regkey_r" in arguments and "values" in obj:
-                obj["key"] = obj["key"].replace("\\" + (arguments["regkey_r"]), "").rstrip()
+                obj["key"] = obj["key"].replace(f"\\{arguments['regkey_r']}", "").rstrip()
             elif "regkey" in arguments and "key_name" in arguments and "values" in obj:
-                obj["key"] = obj["key"].replace("\\" + (arguments["key_name"]), "").rstrip()
+                obj["key"] = obj["key"].replace(f"\\{arguments['key_name']}", "").rstrip()
             # Do some post-processing on Registry Values
             # if 'values' in obj and 'data_type' in obj['values'][0]:
             #    obj['values'][0]['data_type'] = reg_datatype_mappings[
@@ -561,7 +559,7 @@ def map_api_to_action(self, mapping, call):
         """Create a MAEC Action from a Cuckoo API call"""
         action = {"type": "malware-action"}
         " todo change action to type"
-        action["id"] = mapping["action_name"] + "--" + str(uuid.uuid4())
+        action["id"] = f"{mapping['action_name']}--{uuid.uuid4()}"
         action["name"] = mapping["action_name"]
         action["timestamp"] = dateutil.parser.parse(call["timestamp"]).isoformat()
         # Map any input objects
@@ -708,7 +706,9 @@ def add_capabilities(self):
                         else:
                             names = [x["name"] for x in (capability["refined_capabilities"])]
                             if capability_mappings[name_chunk]["refined_capabilities"][0]["name"] not in names:
-                                (capability["refined_capabilities"]).append(capability_mappings[name_chunk]["refined_capabilities"][0])
+                                (capability["refined_capabilities"]).append(
+                                    capability_mappings[name_chunk]["refined_capabilities"][0]
+                                )
                         if capability not in capabilities:
                             capabilities.append(capability)
         if capabilities:
@@ -718,23 +718,22 @@ def add_mitre_attack(self, results):
         if not results.get("ttps") or not hasattr(self, "mitre"):
             return
 
-        maec_attcks = list()
-        for tactic in self.mitre.tactics:
+        maec_attcks = []
+        for tactic in self.mitre.enterprise.tactics:
             for technique in tactic.techniques:
-                if technique.id in list(results["ttps"].keys()):
-                    maec_attck = OrderedDict()
-
-                    maec_attck.setdefault(tactic.name, list())
-                    maec_attck[tactic.name].append(
-                        {
-                            "technique_id": technique.id,
-                            "ttp_name": technique.name,
-                            "description": technique.description,
-                            "signature": results["ttps"][technique.id],
+                if results["ttps"]:
+                    list_of_ttps = [dictionary["ttp"] for dictionary in results["ttps"]]
+                    if technique.id in list_of_ttps:
+                        maec_attck = {
+                            tactic.name: {
+                                "technique_id": technique.id,
+                                "ttp_name": technique.name,
+                                "description": technique.description,
+                                "signature": results["ttps"][list_of_ttps.index(technique.id)]["signature"],
+                            }
                         }
-                    )
 
-                    maec_attcks.append(maec_attck)
+                        maec_attcks.append(maec_attck)
 
         if maec_attcks:
             self.primaryInstance["mitre_attck"] = maec_attcks
diff --git a/modules/reporting/misp.py b/modules/reporting/misp.py
deleted file mode 100644
index b49d1fe2080..00000000000
--- a/modules/reporting/misp.py
+++ /dev/null
@@ -1,316 +0,0 @@
-# -*- coding: utf-8 -*-
-# Copyright (C) 2010-2015 Cuckoo Foundation.
-# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
-# See the file 'docs/LICENSE' for copying permission.
-
-# Updated by doomedraven 30.11.2019 for NaxoneZ
-# Updated by NaxoneZ 20.12.2019 for the rest of the world :)
-
-import os
-import json
-import logging
-from io import BytesIO
-from collections import deque
-from lib.cuckoo.common.config import Config
-from lib.cuckoo.common.abstracts import Report
-from lib.cuckoo.common.constants import CUCKOO_ROOT
-
-"""
-  (1,"High","*high* means sophisticated APT malware or 0-day attack","Sophisticated APT malware or 0-day attack"),
-  (2,"Medium","*medium* means APT malware","APT malware"),
-  (3,"Low","*low* means mass-malware","Mass-malware"),
-  (4,"Undefined","*undefined* no risk","No risk");
-"""
-
-
-try:
-    from pymisp import MISPEvent, PyMISP, MISPObject
-    from pymisp import logger as pymisp_logger
-    HAVE_PYMISP = True
-    pymisp_logger.setLevel(logging.ERROR)
-except ImportError:
-    HAVE_PYMISP = True
-    print("pip3 install pymisp")
-
-log = logging.getLogger(__name__)
-logging.getLogger("pymisp").setLevel(logging.WARNING)
-
-ttps_json = {}
-mitre_json_path = os.path.join(CUCKOO_ROOT, "data", "mitre_attack.json")
-if os.path.exists(mitre_json_path):
-    ttps_json = json.load(open(mitre_json_path))
-malpedia_json_path = os.path.join(CUCKOO_ROOT, "data", "malpedia.json")
-if os.path.exists(malpedia_json_path):
-    malpedia_json = json.load(open(os.path.join(CUCKOO_ROOT, "data", "malpedia.json")))
-else:
-    malpedia_json = False
-
-# load whitelist if exists
-whitelist = list()
-if os.path.exists(os.path.join(CUCKOO_ROOT, "conf", "misp.conf")):
-    whitelist = Config("misp").whitelist.whitelist
-    if whitelist:
-        whitelist = [ioc.strip() for ioc in whitelist.split(",")]
-
-name_update_shema = {
-    "Agenttesla": "Agent Tesla",
-    "AgentTeslaV2": "Agent Tesla",
-    "WarzoneRAT": "Ave Maria",
-    "Nanocore":"Nanocore RAT",
-    "Netwire":"Netwire RC",
-    "Redline":"RedLine Stealer",
-    "Predatorthethief":"Predator The Thief",
-    "Njrat":"NjRAT",
-    "Revil":"REvil",
-    "Asyncrat":"AsyncRAT",
-    "Poullight":"Poulight Stealer",
-    "Lokibot":"Loki Password Stealer (PWS)",
-    "Loki":"Loki Password Stealer (PWS)",  
-    "Hawkeye":"HawkEye Keylogger",
-    "HawkEyev9":"HawkEye Keylogger",
-    "Oski":"Oski Stealer",
-    "DridexV4":"Dridex",
-    "Phoenix":"Phoenix Keylogger",
-    "Ursnif":"Gozi",
-    "Ursnif3":"Gozi",
-    "Extreme":"Extreme RAT",
-    "DridexLoader":"Dridex",
-    "Fareit":"Pony",
-}
-
-
-class MISP(Report):
-    """MISP Analyzer."""
-
-    order = 1
-
-    def malpedia(self, results, event, malfamily):
-        if malfamily in name_update_shema:
-            malfamily = name_update_shema[malfamily]
-        if malfamily in malpedia_json:
-            self.misp.tag(event["uuid"], 'misp-galaxy:malpedia="{}"'.format(malfamily))
-
-    def signature(self, results, event):
-        for ttp in results.get("ttps", []) or []:
-            for i in ttps_json.get("objects", []) or []:
-                try:
-                    if i["external_references"][0]["external_id"] == ttp:
-                        self.misp.tag(event, f'misp-galaxy:mitre-attack-pattern="{i["name"]}-{ttp}"')
-                except Exception:
-                    pass
-
-    def sample_hashes(self, results, event):
-        if results.get("target", {}).get("file", {}):
-            f = results["target"]["file"]
-            misp_object = MISPObject("file")
-            misp_object.comment = "File submitted to CAPEv2"
-            misp_object.add_attribute("filename", value=f["name"], category="Payload delivery")
-            misp_object.add_attribute("md5", value=f["md5"], category="Payload delivery")
-            misp_object.add_attribute("sha1", value=f["sha1"], category="Payload delivery")
-            misp_object.add_attribute("sha256", value=f["sha256"], category="Payload delivery")
-            misp_object.add_attribute("ssdeep", value=f["ssdeep"], category="Payload delivery")
-            self.misp.add_object(event, misp_object)
-
-    def all_network(self, results, event):
-        """All of the accessed URLS as per the PCAP."""
-        urls = set()
-        if self.options.get("network", False) and "network" in results.keys():
-            urls = set()
-            for req in results["network"].get("http", []):
-                if "uri" in req and req["uri"] not in whitelist:
-                    urls.add(req["uri"])
-                if "user-agent" in req:
-                    event.add_attribute("user-agent", req["user-agent"])
-
-            domains, ips = {}, set()
-            for domain in results.get("network", {}).get("domains", []):
-                if domain["domain"] not in whitelist and domain["ip"] not in whitelist:
-                    domains[domain["domain"]] = domain["ip"]
-                    ips.add(domain["ip"])
-
-            for block in results.get("network", {}).get("hosts", []):
-                if block["ip"] not in whitelist:
-                    ips.add(block["ip"])
-
-            for block in results["network"].get("dns", []):  # Added DNS
-                if block.get("request", "") and (block["request"] not in whitelist):
-                    if block["request"] not in domains and block["request"] not in whitelist:
-                        if block["answers"]:
-                            domains[block["request"]] = block["answers"][0]["data"]
-                            ips.add(domain[block["answers"][0]["data"]])
-
-            # Added CAPE Addresses
-            for section in results.get("CAPE", []) or []:
-                try:
-                    if section.get("cape_config", {}).get("address", []) or []:
-                        for ip in section["cape_config"]["address"]:
-                            if ip not in ips:
-                                ips.add(ip.split(":")[0])
-                except Exception as e:
-                    print(e)
-
-            for url in sorted(list(urls)):
-                event.add_attribute("url", url)
-            for ip in sorted(list(ips)):
-                event.add_attribute("ip-dst", ip)
-            for domain, ips in domains.items():
-                obj = MISPObject("domain-ip")
-                obj.add_attribute("domain", domain)
-                for ip in ips:
-                    obj.add_attribute("ip", ip)
-                event.add_object(obj)
-            self.misp.update_event(event)
-
-    def dropped_files(self, results, event):
-        """
-        if self.options.get("dropped", False) and "dropped" in results:
-            for entry in results["dropped"]:
-                if entry["md5"] and  entry["md5"] not in whitelist:
-                    self.misper["iocs"].append({"md5": entry["md5"]})
-                    self.misper["iocs"].append({"sha1": entry["sha1"]})
-                    self.misper["iocs"].append({"sha256": entry["sha256"]})
-        """
-        """
-        Add all the dropped files as MISP attributes.
-        """
-        # Upload all the dropped files at once
-        # TODO: Use expanded
-        for r in results.get("dropped", []) or []:
-            with open(r.get("path"), "rb") as f:
-                event.add_attribute("malware-sample", value=os.path.basename(r.get("path")), data=BytesIO(f.read()), expand="binary")
-        event.run_expansions()
-        self.misp.update_event(event)
-        """
-        # Load the event from MISP (we cannot use event as it
-        # does not contain the sample uploaded above, nor it is
-        # a MISPEvent but a simple dict)
-        e = MISPEvent()
-        e.from_dict(Event=self.misp.get_event(event["Event"]["id"])["Event"])
-        dropped_files = {
-                f.get_attributes_by_relation("sha1")[0].value: f
-                for f in e.objects if f["name"] == "file"
-        }
-
-        # Add further details on the dropped files
-        for entry in results.get("dropped", []):
-            # Find the corresponding object
-            sha1 = entry.get("sha1")
-            obj = dropped_files[sha1]
-
-            # Add the real location of the dropped file (during the analysis)
-            real_filepath = entry.get("guest_paths")
-            obj.add_attribute("fullpath", real_filepath[0])
-
-            # Add Yara matches if any
-            for match in entry.get("yara", []):
-                desc = match["meta"]["description"]
-                obj.add_attribute("text", value=desc, comment="Yara match")
-
-        # Update the event
-        self.misp.update_event(event_id=event["Event"]["id"], event=e)
-        """
-
-    def run(self, results):
-        """Run analysis.
-        @return: MISP results dict.
-        """
-
-        url = self.options.get("url", "")
-        apikey = self.options.get("apikey", "")
-
-        if not url or not apikey:
-            log.error("MISP URL or API key not configured.")
-            return
-
-        self.misp = PyMISP(url, apikey, False, "json")
-
-        self.threads = self.options.get("threads", "")
-        if not self.threads:
-            self.threads = 5
-
-        self.iocs = deque()
-        self.misper = dict()
-
-        try:
-            if self.options.get("upload_iocs", False) and results.get("malscore", 0) >= self.options.get("min_malscore", 0):
-                distribution = int(self.options.get("distribution", 0))
-                threat_level_id = int(self.options.get("threat_level_id", 4))
-                analysis = int(self.options.get("analysis", 0))
-                tag = self.options.get("tag") or "CAPEv2"
-                info = self.options.get("title", "")
-                upload_sample = self.options.get("upload_sample")
-
-                malfamily = ""
-                if results.get("detections", ""):
-                    malfamily = results["detections"]
-
-                response = self.misp.search("attributes", value=results["target"]["file"]["sha256"], return_format="json", pythonify=True)
-                if response:
-                    event = self.misp.get_event(response[0].event_id, pythonify=True)
-                else:
-                    event = MISPEvent()
-                    event.distribution = distribution
-                    event.threat_level_id = threat_level_id
-                    event.analysis = analysis
-                    event.info = "{} {} - {}".format(info, malfamily, results.get("info", {}).get("id"))
-                    event = self.misp.add_event(event, pythonify=True)
-
-                # Add a specific tag to flag Cuckoo's event
-                if tag:
-                    self.misp.tag(event, tag)
-
-                # malpedia galaxy
-                if malpedia_json:
-                    self.malpedia(results, event, malfamily)
-
-                # ToDo?
-                self.signature(results, event)
-
-                self.sample_hashes(results, event)
-                self.all_network(results, event)
-                self.dropped_files(results, event)
-
-                if upload_sample:
-                    target = results.get("target", {})
-                    f = target.get("file", {})
-                    if target.get("category") == "file" and f:
-                        with open(f["path"], "rb") as f:
-                            event.add_attribute(
-                                "malware-sample",
-                                value=os.path.basename(f["path"]),
-                                data=BytesIO(f.read()),
-                                expand="binary",
-                                comment="Sample run",
-                            )
-
-                if results.get("target", {}).get("url", "") and results["target"]["url"] not in whitelist:
-                    event.add_attribute("url", results["target"]["url"])
-
-                # ToDo migth be outdated!
-                # if self.options.get("ids_files", False) and "suricata" in results.keys():
-                #    for surifile in results["suricata"]["files"]:
-                #        if "file_info" in surifile.keys():
-                #            self.misper["iocs"].append({"md5": surifile["file_info"]["md5"]})
-                #            self.misper["iocs"].append({"sha1": surifile["file_info"]["sha1"]})
-                #            self.misper["iocs"].append({"sha256": surifile["file_info"]["sha256"]})
-
-                if self.options.get("mutexes", False) and "behavior" in results and "summary" in results["behavior"]:
-                    if "mutexes" in results.get("behavior", {}).get("summary", {}):
-                        for mutex in results["behavior"]["summary"]["mutexes"]:
-                            if mutex not in whitelist:
-                                event.add_attribute("mutex", mutex)
-
-                if self.options.get("registry", False) and "behavior" in results and "summary" in results["behavior"]:
-                    if "read_keys" in results["behavior"].get("summary", {}):
-                        for regkey in results["behavior"]["summary"]["read_keys"]:
-                            event.add_attribute("regkey", regkey)
-
-                event.run_expansions()
-                self.misp.update_event(event)
-
-                # Make event public
-                if self.options.get("published", True):
-                    self.misp.publish(event)
-
-        except Exception as e:
-            log.error("Failed to generate JSON report: %s" % e, exc_info=True)
diff --git a/modules/reporting/mitre.py b/modules/reporting/mitre.py
index fb24cd1939a..466a610df7d 100644
--- a/modules/reporting/mitre.py
+++ b/modules/reporting/mitre.py
@@ -1,5 +1,13 @@
-from __future__ import absolute_import
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+import logging
+
 from lib.cuckoo.common.abstracts import Report
+from lib.cuckoo.common.integrations.mitre import mitre_generate_attck
+
+log = logging.getLogger(__name__)
 
 
 class MITRE_TTPS(Report):
@@ -7,19 +15,6 @@ def run(self, results):
         if not results.get("ttps") or not hasattr(self, "mitre"):
             return
 
-        attck = dict()
-        ttps = list(results["ttps"].keys())
-        for technique in self.mitre.enterprise.techniques:
-            if technique.id in ttps:
-                for tactic in technique.tactics:
-                    attck.setdefault(tactic.name, list())
-                    attck[tactic.name].append(
-                        {
-                            "t_id": technique.id,
-                            "ttp_name": technique.name,
-                            "description": technique.description,
-                            "signature": results["ttps"][technique.id],
-                        }
-                    )
+        attck = mitre_generate_attck(results, self.mitre)
         if attck:
             results["mitre_attck"] = attck
diff --git a/modules/reporting/mongodb.py b/modules/reporting/mongodb.py
index 612888d556d..dfe39c1a299 100644
--- a/modules/reporting/mongodb.py
+++ b/modules/reporting/mongodb.py
@@ -2,28 +2,25 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-import os
 import gc
 import logging
-from lib.cuckoo.common.abstracts import Report
-from lib.cuckoo.common.exceptions import CuckooDependencyError
-from lib.cuckoo.common.exceptions import CuckooReportError
-from lib.cuckoo.common.objects import File
-from six.moves import zip
 
-MONGOSIZELIMIT = 0x1000000
-MEGABYTE = 0x100000
+from lib.cuckoo.common.abstracts import Report
+from lib.cuckoo.common.exceptions import CuckooDependencyError, CuckooReportError
+from modules.reporting.report_doc import ensure_valid_utf8, get_json_document, insert_calls
 
 try:
-    from pymongo import MongoClient
-    from bson.objectid import ObjectId
-    from pymongo.errors import ConnectionFailure, InvalidDocument
+    from pymongo.errors import InvalidDocument, OperationFailure
+
+    from dev_utils.mongodb import mongo_collection_names, mongo_delete_data, mongo_find_one, mongo_insert_one, mongo_update_one
 
     HAVE_MONGO = True
 except ImportError:
     HAVE_MONGO = False
 
+MONGOSIZELIMIT = 0x1000000
+MEGABYTE = 0x100000
+
 log = logging.getLogger(__name__)
 
 
@@ -35,26 +32,8 @@ class MongoDB(Report):
     # Mongo schema version, used for data migration.
     SCHEMA_VERSION = "1"
 
-    def connect(self):
-        """Connects to Mongo database, loads options and set connectors.
-        @raise CuckooReportError: if unable to connect.
-        """
-        host = self.options.get("host", "127.0.0.1")
-        port = self.options.get("port", 27017)
-        db = self.options.get("db", "cuckoo")
-
-        try:
-            self.conn = MongoClient(
-                host, port=port, username=self.options.get("username", None), password=self.options.get("password", None), authSource=db
-            )
-            self.db = self.conn[db]
-        except TypeError:
-            raise CuckooReportError("Mongo connection port must be integer")
-        except ConnectionFailure:
-            raise CuckooReportError("Cannot connect to MongoDB")
-
     def debug_dict_size(self, dct):
-        if type(dct) == list:
+        if isinstance(dct, list):
             dct = dct[0]
 
         totals = dict((k, 0) for k in dct)
@@ -76,38 +55,11 @@ def walk(root, key, val):
 
         return sorted(list(totals.items()), key=lambda item: item[1], reverse=True)
 
-    @classmethod
-    def ensure_valid_utf8(cls, obj):
-        """Ensures that all strings are valid UTF-8 encoded, which is
-        required by MongoDB to be able to store the JSON documents.
-        @param obj: analysis results dictionary.
-        """
-        if not obj:
-            return
-
-        items = []
-        if isinstance(obj, dict):
-            items = obj.items()
-        elif isinstance(obj, list):
-            items = enumerate(obj)
-
-        for k, v in items:
-            # This type check is intentionally not done using isinstance(),
-            # because bson.binary.Binary *is* a subclass of bytes/str, and
-            # we do not want to convert that.
-            if type(v) is str:
-                try:
-                    v.encode("utf-8")
-                except UnicodeEncodeError:
-                    obj[k] = "".join(str(ord(_)) for _ in v).encode("utf-8")
-            else:
-                cls.ensure_valid_utf8(v)
-
     # use this function to hunt down non string key
     def fix_int2str(self, dictionary, current_key_tree=""):
         for k, v in dictionary.iteritems():
             if not isinstance(k, str):
-                log.error("BAD KEY: {}".format(".".join([current_key_tree, str(k)])))
+                log.error("BAD KEY: %s", ".".join([current_key_tree, str(k)]))
                 dictionary[str(k)] = dictionary.pop(k)
             elif isinstance(v, dict):
                 self.fix_int2str(v, ".".join([current_key_tree, k]))
@@ -119,18 +71,19 @@ def fix_int2str(self, dictionary, current_key_tree=""):
     def loop_saver(self, report):
         keys = list(report.keys())
         if "info" not in keys:
+            log.error("Missing 'info' key: %s", keys)
             return
         if "_id" in keys:
             keys.remove("_id")
 
-        obj_id = self.db.analysis.insert_one(report["info"])
+        obj_id = mongo_insert_one("analysis", {"info": report["info"]}).inserted_id
         keys.remove("info")
 
         for key in keys:
             try:
-                self.db.analysis.update_one({"_id": obj_id.inserted_id}, {"$set": {key: report[key]}}, bypass_document_validation=True)
-            except InvalidDocument as e:
-                log.info("Investigate your key: {} - {}".format(key, str(key)))
+                mongo_update_one("analysis", {"_id": obj_id}, {"$set": {key: report[key]}}, bypass_document_validation=True)
+            except InvalidDocument:
+                log.warning("Investigate your key: %s", key)
 
     def run(self, results):
         """Writes report.
@@ -140,146 +93,92 @@ def run(self, results):
         # We put the raise here and not at the import because it would
         # otherwise trigger even if the module is not enabled in the config.
         if not HAVE_MONGO:
-            raise CuckooDependencyError("Unable to import pymongo " "(install with `pip3 install pymongo`)")
-
-        self.connect()
+            raise CuckooDependencyError("Unable to import pymongo (install with `pip3 install pymongo`)")
 
+        # move to startup
         # Set mongo schema version.
         # TODO: This is not optimal because it run each analysis. Need to run only one time at startup.
-        if "cuckoo_schema" in self.db.collection_names():
-            if self.db.cuckoo_schema.find_one()["version"] != self.SCHEMA_VERSION:
+        if "cuckoo_schema" in mongo_collection_names():
+            if mongo_find_one("cuckoo_schema", {}, {"version": 1})["version"] != self.SCHEMA_VERSION:
                 CuckooReportError("Mongo schema version not expected, check data migration tool")
         else:
-            self.db.cuckoo_schema.insert_one({"version": self.SCHEMA_VERSION})
+            mongo_insert_one("cuckoo_schema", {"version": self.SCHEMA_VERSION})
 
         # Create a copy of the dictionary. This is done in order to not modify
         # the original dictionary and possibly compromise the following
         # reporting modules.
-        report = dict(results)
+        report = get_json_document(results, self.analysis_path)
 
-        if "network" not in report:
-            report["network"] = {}
+        mongo_delete_data(int(report["info"]["id"]))
+        log.debug("Deleted previous MongoDB data for Task %s", report["info"]["id"])
 
-        # Add screenshot paths
-        report["shots"] = []
-        shots_path = os.path.join(self.analysis_path, "shots")
-        if os.path.exists(shots_path):
-            shots = [shot for shot in os.listdir(shots_path) if shot.endswith(".jpg")]
-            for shot_file in sorted(shots):
-                shot_path = os.path.join(self.analysis_path, "shots", shot_file)
-                screenshot = File(shot_path)
-                if screenshot.valid():
-                    # Strip the extension as it's added later
-                    # in the Django view
-                    report["shots"].append(shot_file.replace(".jpg", ""))
+        # trick for distributed api
+        if results.get("info", {}).get("options", {}).get("main_task_id", ""):
+            report["info"]["id"] = int(results["info"]["options"]["main_task_id"])
 
-        # Store chunks of API calls in a different collection and reference
-        # those chunks back in the report. In this way we should defeat the
-        # issue with the oversized reports exceeding MongoDB's boundaries.
-        # Also allows paging of the reports.
-        new_processes = []
+        if "network" not in report:
+            report["network"] = {}
 
-        for process in report.get("behavior", {}).get("processes", []) or []:
-            new_process = dict(process)
-            chunk = []
-            chunks_ids = []
-            # Loop on each process call.
-            for _, call in enumerate(process["calls"]):
-                # If the chunk size is 100 or if the loop is completed then
-                # store the chunk in MongoDB.
-                if len(chunk) == 100:
-                    to_insert = {"pid": process["process_id"], "calls": chunk}
-                    chunk_id = self.db.calls.insert(to_insert)
-                    chunks_ids.append(chunk_id)
-                    # Reset the chunk.
-                    chunk = []
-                # Append call to the chunk.
-                chunk.append(call)
-            # Store leftovers.
-            if chunk:
-                to_insert = {"pid": process["process_id"], "calls": chunk}
-                chunk_id = self.db.calls.insert(to_insert)
-                chunks_ids.append(chunk_id)
-            # Add list of chunks.
-            new_process["calls"] = chunks_ids
-            new_processes.append(new_process)
+        new_processes = insert_calls(report, mongodb=True)
         # Store the results in the report.
         report["behavior"] = dict(report["behavior"])
         report["behavior"]["processes"] = new_processes
-        # Calculate the mlist_cnt for display if present to reduce db load
-        if "signatures" in results:
-            for entry in results["signatures"]:
-                if entry["name"] == "ie_martian_children":
-                    report["mlist_cnt"] = len(entry["data"])
-                if entry["name"] == "office_martian_children":
-                    report["f_mlist_cnt"] = len(entry["data"])
-
-        # Other info we want quick access to from the web UI
-        if results.get("virustotal", False) and "positives" in results["virustotal"] and "total" in results["virustotal"]:
-            report["virustotal_summary"] = "%s/%s" % (results["virustotal"]["positives"], results["virustotal"]["total"])
-        if results.get("suricata", False):
-
-            keywords = ("tls", "alerts", "files", "http", "ssh", "dns")
-            keywords_dict = ("suri_tls_cnt", "suri_alert_cnt", "suri_file_cnt", "suri_http_cnt", "suri_ssh_cnt", "suri_dns_cnt")
-            for keyword, keyword_value in zip(keywords, keywords_dict):
-                if results["suricata"].get(keyword, 0):
-                    report[keyword_value] = len(results["suricata"][keyword])
-
-        # Create an index based on the info.id dict key. Increases overall scalability
-        # with large amounts of data.
-        # Note: Silently ignores the creation if the index already exists.
-        self.db.analysis.create_index("info.id", background=True)
-
-        # trick for distributed api
-        if results.get("info", {}).get("options", {}).get("main_task_id", ""):
-            report["info"]["id"] = int(results["info"]["options"]["main_task_id"])
 
-        analyses = self.db.analysis.find({"info.id": int(report["info"]["id"])})
-        if analyses.count() > 0:
-            log.debug("Deleting analysis data for Task %s" % report["info"]["id"])
-            for analysis in analyses:
-                for process in analysis["behavior"].get("processes", []) or []:
-                    for call in process["calls"]:
-                        self.db.calls.remove({"_id": ObjectId(call)})
-                self.db.analysis.remove({"_id": ObjectId(analysis["_id"])})
-            log.debug("Deleted previous MongoDB data for Task %s" % report["info"]["id"])
-
-        self.ensure_valid_utf8(report)
+        ensure_valid_utf8(report)
         gc.collect()
 
         # Store the report and retrieve its object id.
         try:
-            self.db.analysis.insert_one(report)
+            mongo_insert_one("analysis", report)
+        except OperationFailure as e:
+            # Check for error codes indicating the BSON object was too large
+            # (10334 BSONObjectTooLarge) or the maximum nested object depth was
+            # exceeded (15 Overflow).
+            if e.code in (10334, 15):
+                log.error("Got MongoDB OperationFailure, code %d", e.code)
+                # ToDo rewrite how children are stored
+                log.warning("Deleting behavior process tree children from results.")
+                del report["behavior"]["processtree"][0]["children"]
+                try:
+                    mongo_insert_one("analysis", report)
+                except Exception as e:
+                    log.error("Deleting behavior process tree parent from results: %s", str(e))
+                    del report["behavior"]["processtree"][0]
+                    mongo_insert_one("analysis", report)
+            else:
+                raise CuckooReportError("Failed inserting report in Mongo") from e
         except InvalidDocument as e:
-            if str(e).startswith("cannot encode object") or str(e).endswith("must not contain '.'"):
+            if str(e).startswith("cannot encode object") or "must not contain" in str(e):
                 self.loop_saver(report)
                 return
             parent_key, psize = self.debug_dict_size(report)[0]
-            if not self.options.get("fix_large_docs", False):
-                # Just log the error and problem keys
-                #log.error(str(e))
-                log.warning("Largest parent key: %s (%d MB)" % (parent_key, int(psize) / MEGABYTE))
-            else:
+            log.warning("Largest parent key: %s (%d MB)", parent_key, int(psize) // MEGABYTE)
+            if self.options.get("fix_large_docs"):
                 # Delete the problem keys and check for more
                 error_saved = True
                 size_filter = MONGOSIZELIMIT
                 while error_saved:
-                    if type(report) == list:
+                    if isinstance(report, list):
                         report = report[0]
                     try:
-                        if type(report[parent_key]) == list:
-                            for j, parent_dict in enumerate(report[parent_key]):
-                                child_key, csize = self.debug_dict_size(parent_dict)[0]
-                                if csize > size_filter:
-                                    log.warn("results['%s']['%s'] deleted due to size: %s" % (parent_key, child_key, csize))
-                                    del report[parent_key][j][child_key]
+                        if isinstance(report[parent_key], list):
+                            if parent_key == "strings":
+                                del report["strings"]
+                                parent_key, psize = self.debug_dict_size(report)[0]
+                                continue
+                            else:
+                                for j, parent_dict in enumerate(report[parent_key]):
+                                    child_key, csize = self.debug_dict_size(parent_dict)[0]
+                                    if csize > size_filter:
+                                        log.warning("results['%s']['%s'] deleted due to size: %s", parent_key, child_key, csize)
+                                        del report[parent_key][j][child_key]
                         else:
                             child_key, csize = self.debug_dict_size(report[parent_key])[0]
                             if csize > size_filter:
-                                log.warn("results['%s']['%s'] deleted due to size: %s" % (parent_key, child_key, csize))
+                                log.warning("results['%s']['%s'] deleted due to size: %s", parent_key, child_key, csize)
                                 del report[parent_key][child_key]
                         try:
-                            self.db.analysis.insert_one(report)
+                            mongo_insert_one("analysis", report)
                             error_saved = False
                         except InvalidDocument as e:
                             if str(e).startswith("documents must have only string keys"):
@@ -289,10 +188,8 @@ def run(self, results):
                             else:
                                 parent_key, psize = self.debug_dict_size(report)[0]
                                 log.error(str(e))
-                                log.warning("Largest parent key: %s (%d MB)" % (parent_key, int(psize) / MEGABYTE))
-                                size_filter = size_filter - MEGABYTE
+                                log.warning("Largest parent key: %s (%d MB)", parent_key, int(psize) // MEGABYTE)
+                                size_filter -= MEGABYTE
                     except Exception as e:
-                        log.error("Failed to delete child key: %s" % str(e))
+                        log.error("Failed to delete child key: %s", e)
                         error_saved = False
-
-        self.conn.close()
diff --git a/modules/reporting/ramfsclean.py b/modules/reporting/ramfsclean.py
deleted file mode 100644
index 7fc83dbe65a..00000000000
--- a/modules/reporting/ramfsclean.py
+++ /dev/null
@@ -1,35 +0,0 @@
-from __future__ import absolute_import
-import os
-import shutil
-import logging
-from lib.cuckoo.common.config import Config
-from lib.cuckoo.common.abstracts import Report
-from lib.cuckoo.common.utils import get_memdump_path
-
-log = logging.getLogger(__name__)
-reporting_conf = Config("reporting")
-
-
-class RAMFSCLEAN(Report):
-    "Remove/save memdump"
-    order = 9998
-
-    def run(self, results):
-        action = "delete"
-        src = get_memdump_path(results["info"]["id"])
-        if "store_memdump" in results["info"]["options"]:
-            action  = "store"
-
-        if reporting_conf.ramfsclean.key in results:
-            if any(["checkme" in block for block in results[reporting_conf.ramfsclean.key]]):
-                action = "store"
-
-        if action == "delete":
-            log.debug("Deleting memdump: {}".format(src))
-            if os.path.exists(src):
-                os.remove(src)
-        else:
-            dest = get_memdump_path(results["info"]["id"], analysis_folder=True)
-            log.debug("Storing memdump: {}".format(dest))
-            if os.path.exists(src):
-                shutil.move(src, dest)
diff --git a/modules/reporting/report_doc.py b/modules/reporting/report_doc.py
new file mode 100644
index 00000000000..162b965a108
--- /dev/null
+++ b/modules/reporting/report_doc.py
@@ -0,0 +1,164 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+import copy
+import logging
+import os
+import re
+from contextlib import suppress
+
+from lib.cuckoo.common.config import Config
+from lib.cuckoo.common.objects import File
+from lib.cuckoo.common.path_utils import path_exists
+
+log = logging.getLogger(__name__)
+repconf = Config("reporting")
+
+CHUNK_CALL_SIZE = 100
+
+
+if repconf.mongodb.enabled:
+    from dev_utils.mongodb import mongo_insert_one
+elif repconf.elasticsearchdb.enabled:
+    from elasticsearch.helpers import parallel_bulk
+
+    from dev_utils.elasticsearchdb import get_daily_calls_index
+
+
+def ensure_valid_utf8(obj):
+    """Ensures that all strings are valid UTF-8 encoded, which is
+    required by MongoDB to be able to store the JSON documents.
+    @param obj: analysis results dictionary.
+    """
+    if not obj:
+        return
+
+    items = []
+    if isinstance(obj, dict):
+        items = obj.items()
+    elif isinstance(obj, list):
+        items = enumerate(obj)
+
+    for k, v in items:
+        # This type check is intentionally not done using isinstance(),
+        # because bson.binary.Binary *is* a subclass of bytes/str, and
+        # we do not want to convert that.
+        if isinstance(v, str):
+            try:
+                v.encode()
+            except UnicodeEncodeError:
+                obj[k] = "".join(str(ord(_)) for _ in v).encode()
+        else:
+            ensure_valid_utf8(v)
+
+
+def get_json_document(results, analysis_path):
+    # Create a copy of the dictionary. This is done in order to not modify
+    # the original dictionary and possibly
+    # compromise the following reporting modules.
+    try:
+        report = copy.deepcopy(results)
+    except AttributeError:
+        if "memory" in results:
+            del results["memory"]
+            log.error("Deleting Volatility results")
+            report = copy.deepcopy(results)
+
+    if "network" not in report:
+        report["network"] = {}
+
+    # Add screenshot paths
+    report["shots"] = []
+    shots_path = os.path.join(analysis_path, "shots")
+    if path_exists(shots_path):
+        shots = [shot for shot in os.listdir(shots_path) if shot.endswith((".jpg", ".png"))]
+        for shot_file in sorted(shots):
+            shot_path = os.path.join(analysis_path, "shots", shot_file)
+            screenshot = File(shot_path)
+            if screenshot.valid():
+                # Strip the extension as it's added later
+                # in the Django view
+                report["shots"].append(re.sub(r"\.(png|jpg)$", "", shot_file))
+
+    # Calculate the mlist_cnt for display if present to reduce db load
+    for entry in results.get("signatures", []) or []:
+        if entry["name"] == "ie_martian_children":
+            report["mlist_cnt"] = len(entry["data"])
+        if entry["name"] == "office_martian_children":
+            report["f_mlist_cnt"] = len(entry["data"])
+
+    # Other info we want quick access to from the web UI
+
+    if results.get("suricata", False):
+        keywords = ("tls", "alerts", "files", "http", "ssh", "dns")
+        keywords_dict = ("suri_tls_cnt", "suri_alert_cnt", "suri_file_cnt", "suri_http_cnt", "suri_ssh_cnt", "suri_dns_cnt")
+        for keyword, keyword_value in zip(keywords, keywords_dict):
+            if results["suricata"].get(keyword, 0):
+                report[keyword_value] = len(results["suricata"][keyword])
+
+    return report
+
+
+def chunks(lst, n):
+    """Yield successive n-sized chunks from lst."""
+    for i in range(0, len(lst), n):
+        yield lst[i : i + n]
+
+
+def insert_calls(report, elastic_db=None, mongodb=False):
+    ## Behaviour envolves storing stuffs in the DB
+    # Store chunks of API calls in a different collection and reference
+    # those chunks back in the report. In this way we should defeat the
+    # issue with the oversized reports exceeding MongoDB's boundaries.
+    # Also allows paging of the reports.
+    new_processes = []
+    for process in report.get("behavior", {}).get("processes", []) or []:
+        new_process = dict(process)
+        chunk = []
+        chunks_ids = []
+
+        # Upload for mongoDB
+        # Loop on each process call.
+        if mongodb:
+            for _, call in enumerate(process["calls"]):
+                chunk_id = None
+                # If the chunk size is CHUNK_CALL_SIZE or if the loop is completed then store the chunk in DB.
+                if len(chunk) == CHUNK_CALL_SIZE:
+                    to_insert = {"pid": process["process_id"], "calls": chunk , "task_id": report["info"]["id"]}
+                    with suppress(Exception):
+                        chunk_id = mongo_insert_one("calls", to_insert).inserted_id
+                    if chunk_id:
+                        chunks_ids.append(chunk_id)
+                    # Reset the chunk.
+                    chunk = []
+                # Append call to the chunk.
+                chunk.append(call)
+
+            # Store leftovers.
+            if chunk:
+                chunk_id = None
+                to_insert = {"pid": process["process_id"], "calls": chunk, "task_id": report["info"]["id"]}
+                with suppress(Exception):
+                    chunk_id = mongo_insert_one("calls", to_insert).inserted_id
+                if chunk_id:
+                    chunks_ids.append(chunk_id)
+
+        elif elastic_db is not None:
+            # Upload with parallel bulk for elastic
+            def gendata(p_call_chunks, process_id):
+                for call_chunk in p_call_chunks:
+                    yield {
+                        "_index": get_daily_calls_index(),
+                        "_op_type": "index",
+                        "_source": {"pid": process_id, "calls": call_chunk},
+                    }
+
+            for res in parallel_bulk(elastic_db, gendata(chunks(process["calls"], CHUNK_CALL_SIZE), process["process_id"])):
+                if res[0]:
+                    chunks_ids.append(res[1]["index"]["_id"])
+
+        # Add list of chunks.
+        new_process["calls"] = chunks_ids
+        new_processes.append(new_process)
+    return new_processes
diff --git a/modules/reporting/reporthtml.py b/modules/reporting/reporthtml.py
deleted file mode 100644
index bc39c962d44..00000000000
--- a/modules/reporting/reporthtml.py
+++ /dev/null
@@ -1,81 +0,0 @@
-# Copyright (C) 2010-2015 Cuckoo Foundation.
-# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
-# See the file 'docs/LICENSE' for copying permission.
-
-from __future__ import absolute_import
-import os
-import codecs
-import base64
-
-from lib.cuckoo.common.abstracts import Report
-from lib.cuckoo.common.constants import CUCKOO_ROOT
-from lib.cuckoo.common.exceptions import CuckooReportError
-from lib.cuckoo.common.objects import File
-
-try:
-    from jinja2.environment import Environment
-    from jinja2.loaders import FileSystemLoader
-    from jinja2 import UndefinedError, TemplateNotFound, TemplateSyntaxError, TemplateAssertionError
-
-    HAVE_JINJA2 = True
-except ImportError:
-    HAVE_JINJA2 = False
-
-from web.analysis.templatetags.analysis_tags import malware_config
-
-class ReportHTML(Report):
-    """Stores report in HTML format."""
-
-    def run(self, results):
-        """Writes report.
-        @param results: Cuckoo results dict.
-        @raise CuckooReportError: if fails to write report.
-        """
-        if not HAVE_JINJA2:
-            raise CuckooReportError("Failed to generate HTML report: " "Jinja2 Python library is not installed")
-
-        shots_path = os.path.join(self.analysis_path, "shots")
-        if os.path.exists(shots_path):
-            shots = []
-            counter = 1
-            for shot_name in os.listdir(shots_path):
-                if not shot_name.endswith(".jpg"):
-                    continue
-
-                shot_path = os.path.join(shots_path, shot_name)
-
-                if os.path.getsize(shot_path) == 0:
-                    continue
-
-                shot = {}
-                shot["id"] = os.path.splitext(File(shot_path).get_name())[0]
-                shot["data"] = base64.b64encode(open(shot_path, "rb").read()).decode("utf-8")
-                shots.append(shot)
-
-                counter += 1
-
-            shots.sort(key=lambda shot: shot["id"])
-            results["shots"] = shots
-        else:
-            results["shots"] = []
-
-        env = Environment(autoescape=True)
-        env.globals['malware_config'] = malware_config
-        env.loader = FileSystemLoader(os.path.join(CUCKOO_ROOT, "data", "html"))
-
-        try:
-            tpl = env.get_template("report.html")
-            html = tpl.render({"results": results, "summary_report": False})
-        except UndefinedError as e:
-            raise CuckooReportError("Failed to generate summary HTML report: {} ".format(e))
-        except TemplateNotFound as e:
-            raise CuckooReportError("Failed to generate summary HTML report: {} {} ".format(e, e.name))
-        except (TemplateSyntaxError, TemplateAssertionError) as e:
-            raise CuckooReportError("Failed to generate summary HTML report: {} on {}, line {} ".format(e, e.name, e.lineno))
-        try:
-            with codecs.open(os.path.join(self.reports_path, "report.html"), "w", encoding="utf-8") as report:
-                report.write(html)
-        except (TypeError, IOError) as e:
-            raise CuckooReportError("Failed to write HTML report: %s" % e)
-
-        return True
diff --git a/modules/reporting/reporthtmlsummary.py b/modules/reporting/reporthtmlsummary.py
deleted file mode 100644
index eaeba79a041..00000000000
--- a/modules/reporting/reporthtmlsummary.py
+++ /dev/null
@@ -1,95 +0,0 @@
-# Copyright (C) 2010-2015 Cuckoo Foundation.
-# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
-# See the file 'docs/LICENSE' for copying permission.
-
-from __future__ import absolute_import
-import os
-import codecs
-import base64
-import PIL
-from PIL import Image
-from io import BytesIO
-
-from lib.cuckoo.common.abstracts import Report
-from lib.cuckoo.common.constants import CUCKOO_ROOT
-from lib.cuckoo.common.exceptions import CuckooReportError
-from lib.cuckoo.common.objects import File
-
-try:
-    from jinja2.environment import Environment
-    from jinja2.loaders import FileSystemLoader
-    from jinja2 import UndefinedError, TemplateNotFound, TemplateSyntaxError, TemplateAssertionError
-
-    HAVE_JINJA2 = True
-except ImportError:
-    HAVE_JINJA2 = False
-
-from web.analysis.templatetags.analysis_tags import malware_config
-
-class ReportHTMLSummary(Report):
-    """Stores summary report in HTML format."""
-
-    def run(self, results):
-        """Writes report.
-        @param results: Cuckoo results dict.
-        @raise CuckooReportError: if fails to write report.
-        """
-        if not HAVE_JINJA2:
-            raise CuckooReportError("Failed to generate summary HTML report: " "Jinja2 Python library is not installed")
-
-        shots_path = os.path.join(self.analysis_path, "shots")
-        if os.path.exists(shots_path):
-            shots = []
-            counter = 1
-            for shot_name in os.listdir(shots_path):
-                if not shot_name.endswith(".jpg"):
-                    continue
-
-                shot_path = os.path.join(shots_path, shot_name)
-
-                if os.path.getsize(shot_path) == 0:
-                    continue
-
-                output = BytesIO()
-
-                # resize the image to thumbnail size, as weasyprint can't handle resizing
-                try:
-                    img = Image.open(shot_path)
-                    img = img.resize((150, 100), PIL.Image.ANTIALIAS)
-                    img.save(output, format="JPEG")
-                except Exception as e:
-                    # print(e)
-                    pass
-
-                shot = {}
-                shot["id"] = os.path.splitext(File(shot_path).get_name())[0]
-                shot["data"] = base64.b64encode(output.getvalue()).decode("utf-8")
-                shots.append(shot)
-                output.close()
-
-                counter += 1
-
-            shots.sort(key=lambda shot: shot["id"])
-            results["shots"] = shots
-        else:
-            results["shots"] = []
-
-        env = Environment(autoescape=True)
-        env.globals['malware_config'] = malware_config
-        env.loader = FileSystemLoader(os.path.join(CUCKOO_ROOT, "data", "html"))
-        try:
-            tpl = env.get_template("report.html")
-            html = tpl.render({"results": results, "summary_report": True})
-        except UndefinedError as e:
-            raise CuckooReportError("Failed to generate summary HTML report: {} ".format(e))
-        except TemplateNotFound as e:
-            raise CuckooReportError("Failed to generate summary HTML report: {} {} ".format(e, e.name))
-        except (TemplateSyntaxError, TemplateAssertionError) as e:
-            raise CuckooReportError("Failed to generate summary HTML report: {} on {}, line {} ".format(e, e.name, e.lineno))
-        try:
-            with codecs.open(os.path.join(self.reports_path, "summary-report.html"), "w", encoding="utf-8") as report:
-                report.write(html)
-        except (TypeError, IOError) as e:
-            raise CuckooReportError("Failed to write summary HTML report: %s" % e)
-
-        return True
diff --git a/modules/reporting/reportpdf.py b/modules/reporting/reportpdf.py
deleted file mode 100644
index 66cb05619b8..00000000000
--- a/modules/reporting/reportpdf.py
+++ /dev/null
@@ -1,57 +0,0 @@
-# Copyright (C) 2015 Optiv, Inc. (brad.spengler@optiv.com)
-# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
-# See the file 'docs/LICENSE' for copying permission.
-
-from __future__ import absolute_import
-import os
-import logging
-
-from subprocess import call
-from lib.cuckoo.common.abstracts import Report
-from lib.cuckoo.common.exceptions import CuckooReportError
-
-try:
-    from weasyprint import HTML
-
-    HAVE_WEASYPRINT = True
-except ImportError:
-    HAVE_WEASYPRINT = False
-
-
-class ReportPDF(Report):
-    """Stores report in PDF format."""
-
-    # ensure we run after the summary HTML report
-    order = 10
-
-    def run(self, results):
-        if not os.path.isfile(os.path.join(self.reports_path, "summary-report.html")):
-            raise CuckooReportError(
-                "Unable to open summary HTML report to convert to PDF: " "Ensure reporthtmlsummary is enabled in reporting.conf"
-            )
-
-        if os.path.exists("/usr/bin/xvfb-run") and os.path.exists("/usr/bin/wkhtmltopdf"):
-            call(
-                [
-                    "/usr/bin/xvfb-run",
-                    "--auto-servernum",
-                    "--server-num",
-                    "1",
-                    "/usr/bin/wkhtmltopdf",
-                    "-q",
-                    os.path.join(self.reports_path, "summary-report.html"),
-                    os.path.join(self.reports_path, "report.pdf"),
-                ]
-            )
-            return True
-
-        if not HAVE_WEASYPRINT:
-            raise CuckooReportError("Failed to generate PDF report: " "Neither wkhtmltopdf nor Weasyprint Python library are installed")
-
-        logger = logging.getLogger("weasyprint")
-        logger.handlers = []
-        logger.setLevel(logging.ERROR)
-
-        HTML(os.path.join(self.reports_path, "summary-report.html")).write_pdf(os.path.join(self.reports_path, "report.pdf"))
-
-        return True
diff --git a/modules/reporting/resubmitexe.py b/modules/reporting/resubmitexe.py
deleted file mode 100644
index 09e4f449b05..00000000000
--- a/modules/reporting/resubmitexe.py
+++ /dev/null
@@ -1,165 +0,0 @@
-# Copyright (C) 2014-2015 Will Metcalf william.metcalf@gmail.com
-# This program is free software: you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation, either version 3 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program.  If not, see <http://www.gnu.org/licenses/>.
-
-from __future__ import absolute_import
-import os
-import json
-import logging
-
-try:
-    import re2 as re
-except ImportError:
-    import re
-
-from lib.cuckoo.common.constants import CUCKOO_ROOT
-from lib.cuckoo.common.abstracts import Report
-from lib.cuckoo.common.exceptions import CuckooDependencyError
-from lib.cuckoo.common.exceptions import CuckooReportError
-from lib.cuckoo.common.objects import File
-from lib.cuckoo.common.utils import to_unicode
-from lib.cuckoo.core.database import Database
-
-log = logging.getLogger(__name__)
-
-db = Database()
-
-
-class ReSubmitExtractedEXE(Report):
-    def run(self, results):
-        self.noinject = self.options.get("noinject", False)
-        self.resublimit = int(self.options.get("resublimit", 5))
-        filesdict = {}
-        self.task_options_stack = []
-        self.task_options = None
-        self.task_custom = None
-        self.machine = None
-        self.resubcnt = 0
-        self.tlp = None
-        meta = dict()
-        report = dict(results)
-
-        if "options" in report["info"] and "resubmitjob" in report["info"]["options"] and report["info"]["options"]["resubmitjob"]:
-            return
-
-        # copy all the options from current
-        if report["info"].get("options", False):
-            for key, val in report["info"]["options"].items():
-                self.task_options_stack.append(key + "=" + str(val))
-
-        # copy machine label from current
-        if report["info"].get("machine", False):
-            self.machine = report["info"]["machine"]["label"]
-
-        # copy TLP from current
-        if report["info"].get("tlp", False):
-            self.tlp = report["info"]["tlp"]
-
-        self.task_options_stack.append("resubmitjob=true")
-        if self.noinject:
-            self.task_options_stack.append("free=true")
-
-        if self.task_options_stack:
-            self.task_options = ",".join(self.task_options_stack)
-
-        report = dict(results)
-        if report.get("dropped"):
-            if os.path.exists(self.files_metadata):
-                for line in open(self.files_metadata, "rb"):
-                    entry = json.loads(line)
-                    filepath = os.path.join(self.analysis_path, entry["path"])
-                    meta[filepath] = {
-                        "pids": entry["pids"],
-                        "filepath": entry["filepath"],
-                        "metadata": entry["metadata"],
-                    }
-        for dropped in report.get("dropped", []):
-            if self.resubcnt >= self.resublimit:
-                break
-            if os.path.isfile(dropped["path"]):
-                if (
-                    ("PE32" in dropped["type"] or "MS-DOS" in dropped["type"])
-                    and "DLL" not in dropped["type"]
-                    and "native" not in dropped["type"]
-                ):
-                    if dropped["sha256"] not in filesdict:
-                        srcpath = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(report["info"]["id"]), "files", dropped["sha256"])
-                        linkdir = os.path.join(
-                            CUCKOO_ROOT, "storage", "analyses", str(report["info"]["id"]), "files", dropped["sha256"] + "_link"
-                        )
-
-                        metastrings = meta[dropped["path"]].get("metadata", "").split(";?")
-                        if len(metastrings) < 2:
-                            continue
-
-                        guest_name = metastrings[1].split("\\")[-1]
-                        linkpath = os.path.join(linkdir, guest_name)
-                        if not os.path.exists(linkdir):
-                            os.makedirs(linkdir, mode=0o755)
-                        try:
-                            if not os.path.exists(linkpath):
-                                os.symlink(srcpath, linkpath)
-                            filesdict[dropped["sha256"]] = linkpath
-                            self.resubcnt += 1
-                        except:
-                            filesdict[dropped["sha256"]] = dropped["path"]
-                            self.resubcnt += 1
-
-        # ToDo i think this is outdated
-        if "suricata" in report and report["suricata"]:
-            if "files" in report["suricata"] and report["suricata"]["files"]:
-                for suricata_file_e in results["suricata"]["files"]:
-                    # don't resubmit truncated files or files with invalid fileinfo metadata
-                    if suricata_file_e.get("file_info", {}).get("size", 1) != suricata_file_e.get("size", 0):
-                        continue
-                    if self.resubcnt >= self.resublimit:
-                        break
-                    if "file_info" in suricata_file_e:
-                        tmp_suricata_file_d = dict(suricata_file_e)
-                        if os.path.isfile(suricata_file_e["file_info"]["path"]):
-                            ftype = suricata_file_e["file_info"]["type"]
-                            if ("PE32" in ftype or "MS-DOS" in ftype) and "DLL" not in ftype and "native" not in ftype:
-                                if suricata_file_e["file_info"]["sha256"] not in filesdict:
-                                    filesdict[suricata_file_e["file_info"]["sha256"]] = suricata_file_e["file_info"]["path"]
-                                    self.resubcnt = self.resubcnt + 1
-
-        for e in filesdict:
-            if not File(filesdict[e]).get_size():
-                continue
-            if not db.find_sample(sha256=e) is None:
-                continue
-
-            self.task_custom = "Parent_Task_ID:%s" % report["info"]["id"]
-            if "custom" in report["info"] and report["info"]["custom"]:
-                self.task_custom = "%s Parent_Custom:%s" % (self.task_custom, report["info"]["custom"])
-            task_id = db.add_path(
-                file_path=filesdict[e],
-                package="exe",
-                timeout=200,
-                options=self.task_options,
-                priority=1,
-                machine=self.machine or "",
-                platform=None,
-                custom=self.task_custom,
-                memory=False,
-                enforce_timeout=False,
-                clock=None,
-                tags=None,
-                parent_id=int(report["info"]["id"]),
-                tlp=self.tlp,
-            )
-
-            if task_id:
-                log.info(u'Resubmitexe file "{0}" added as task with ID {1}'.format(filesdict[e], task_id))
-            else:
-                log.warn("Error adding resubmitexe task to database")
diff --git a/modules/reporting/retention.py b/modules/reporting/retention.py
deleted file mode 100644
index 01b26d29d1c..00000000000
--- a/modules/reporting/retention.py
+++ /dev/null
@@ -1,207 +0,0 @@
-# Copyright (C) 2010-2015 KillerInstinct
-# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
-# See the file 'docs/LICENSE' for copying permission.
-
-from __future__ import absolute_import
-import json
-import logging
-import os
-import shutil
-
-from multiprocessing import Lock
-
-from collections import defaultdict
-from datetime import datetime, timedelta
-
-from lib.cuckoo.common.config import Config
-from lib.cuckoo.common.abstracts import Report
-from lib.cuckoo.common.constants import CUCKOO_ROOT
-from lib.cuckoo.common.exceptions import CuckooReportError
-from lib.cuckoo.core.database import Database, Task, TASK_REPORTED
-from bson.objectid import ObjectId
-
-log = logging.getLogger(__name__)
-cfg = Config("reporting")
-db = Database()
-lock = Lock()
-
-# Global connections
-if cfg.mongodb and cfg.mongodb.enabled:
-    from pymongo import MongoClient
-
-    host = cfg.mongodb.get("host", "127.0.0.1")
-    port = cfg.mongodb.get("port", 27017)
-    mdb = cfg.mongodb.get("db", "cuckoo")
-    try:
-        results_db = MongoClient(
-            host, port=port, username=cfg.mongodb.get("username", None), password=cfg.mongodb.get("password", None), authSource=mdb
-        )[mdb]
-    except Exception as e:
-        log.warning("Unable to connect to MongoDB: %s", str(e))
-
-if cfg.elasticsearchdb and cfg.elasticsearchdb.enabled and not cfg.elasticsearchdb.searchonly:
-    from elasticsearch import Elasticsearch
-
-    idx = cfg.elasticsearchdb.index + "-*"
-    try:
-        es = Elasticsearch(hosts=[{"host": cfg.elasticsearchdb.host, "port": cfg.elasticsearchdb.port,}], timeout=60,)
-    except Exception as e:
-        log.warning("Unable to connect to ElasticSearch: %s", str(e))
-
-
-def delete_mongo_data(curtask, tid):
-    # TODO: Class-ify this or make it a function in utils, some code reuse
-    # between this/process.py/django view
-    analyses = results_db.analysis.find({"info.id": int(tid)})
-    if analyses.count() > 0:
-        for analysis in analyses:
-            for process in analysis.get("behavior", {}).get("processes", []):
-                for call in process["calls"]:
-                    results_db.calls.remove({"_id": ObjectId(call)})
-            results_db.analysis.remove({"_id": ObjectId(analysis["_id"])})
-        log.debug("Task #{0} deleting MongoDB data for Task #{1}".format(curtask, tid))
-
-"""
-def delete_elastic_data(curtask, tid):
-    # TODO: Class-ify this or make it a function in utils, some code reuse
-    # between this/process.py/django view
-    analyses = es.search(index=fullidx, doc_type="analysis", q='info.id: "{0}"'.format(tid))["hits"]["hits"]
-    if len(analyses) > 0:
-        for analysis in analyses:
-            esidx = analysis["_index"]
-            esid = analysis["_id"]
-            if analysis["_source"]["behavior"]:
-                for process in analysis["_source"]["behavior"]["processes"]:
-                    for call in process["calls"]:
-                        es.delete(
-                            index=esidx, doc_type="calls", id=call,
-                        )
-            es.delete(
-                index=esidx, doc_type="analysis", id=esid,
-            )
-        log.debug("Task #{0} deleting ElasticSearch data for Task #{1}".format(curtask, tid))
-"""
-
-def delete_files(curtask, delfiles, target_id):
-    delfiles_list = delfiles
-    if not isinstance(delfiles, list):
-        delfiles_list = [delfiles]
-
-    for _delent in delfiles_list:
-        delent = _delent.format(target_id)
-        if os.path.isdir(delent):
-            try:
-                shutil.rmtree(delent)
-                log.debug("Task #{0} deleting {1} due to retention quota".format(curtask, delent))
-            except (IOError, OSError) as e:
-                log.warn("Error removing {0}: {1}".format(delent, e))
-        elif os.path.exists(delent):
-            try:
-                os.remove(delent)
-                log.debug("Task #{0} deleting {1} due to retention quota".format(curtask, delent))
-            except OSError as e:
-                log.warn("Error removing {0}: {1}".format(delent, e))
-
-
-class Retention(Report):
-    """Used to manage data retention and delete task data from
-    disk after they have become older than the configured values.
-    """
-
-    order = 10000
-
-    def run(self, results):
-        # Curtask used for logging when deleting files
-        curtask = results["info"]["id"]
-
-        # Since we should be the last run reporting module, make sure we don't delay
-        # an analyst from being able to see results for their analysis on account
-        # of this taking some time
-        db.set_status(curtask, TASK_REPORTED)
-
-        # Retains the last Task ID checked for retention settings per category
-        taskCheck = defaultdict(int)
-        # Handle the case where someone doesn't restart cuckoo and issues
-        # process.py manually, the directiry structure is created in the
-        # startup of cuckoo.py
-        retPath = os.path.join(CUCKOO_ROOT, "storage", "retention")
-
-        confPath = os.path.join(CUCKOO_ROOT, "conf", "reporting.conf")
-
-        if not os.path.isdir(retPath):
-            log.warn("Retention log directory doesn't exist. Creating it now.")
-            os.mkdir(retPath)
-        else:
-            try:
-                taskFile = os.path.join(retPath, "task_check.log")
-                with open(taskFile, "r") as taskLog:
-                    taskCheck = json.loads(taskLog.read())
-            except Exception as e:
-                log.warn("Failed to load retention log, if this is not the " "time running retention, review the error: {0}".format(e))
-            curtime = datetime.now()
-            since_retlog_modified = curtime - datetime.fromtimestamp(os.path.getmtime(taskFile))
-            since_conf_modified = curtime - datetime.fromtimestamp(os.path.getmtime(confPath))
-
-            # We'll only do anything in this module once every 'run_every' hours, or immediately
-            # after changes to reporting.conf
-            if since_retlog_modified < timedelta(hours=self.options["run_every"]) and since_conf_modified > since_retlog_modified:
-                return
-
-        # only allow one reporter to execute this code, otherwise rmtree will race, etc
-        if not lock.acquire(False):
-            return
-        try:
-            delLocations = {
-                "memory": [CUCKOO_ROOT + "/storage/analyses/{0}/memory.dmp", CUCKOO_ROOT + "/storage/analyses/{0}/memory.dmp.zip"],
-                "procmemory": CUCKOO_ROOT + "/storage/analyses/{0}/memory",
-                "pcap": CUCKOO_ROOT + "/storage/analyses/{0}/dump.pcap",
-                "sortedpcap": CUCKOO_ROOT + "/storage/analyses/{0}/dump_sorted.pcap",
-                "bsonlogs": CUCKOO_ROOT + "/storage/analyses/{0}/logs",
-                "dropped": CUCKOO_ROOT + "/storage/analyses/{0}/files",
-                "screencaps": CUCKOO_ROOT + "/storage/analyses/{0}/shots",
-                "reports": CUCKOO_ROOT + "/storage/analyses/{0}/reports",
-                # Handled seperately
-                "mongo": None,
-                "elastic": None,
-            }
-            retentions = self.options
-            del retentions["enabled"]
-            del retentions["run_every"]
-            saveTaskLogged = dict()
-            for item in retentions.keys():
-                # We only want to query the database for tasks that we have
-                # retentions set for.
-                if self.options[item] == False:
-                    continue
-                # Sanitation
-                if item not in taskCheck or taskCheck[item] == 0:
-                    lastTaskLogged = None
-                else:
-                    lastTaskLogged = taskCheck[item]
-                add_date = datetime.now() - timedelta(days=retentions[item])
-                buf = db.list_tasks(added_before=add_date, id_after=lastTaskLogged, order_by=Task.id.asc())
-                lastTask = 0
-                if buf:
-                    # We need to delete some data
-                    for tid in buf:
-                        lastTask = tid.to_dict()["id"]
-                        if item != "mongo" and item != "elastic":
-                            delete_files(curtask, delLocations[item], lastTask)
-                        elif item == "mongo":
-                            if cfg.mongodb and cfg.mongodb.enabled:
-                                delete_mongo_data(curtask, lastTask)
-                        """
-                        elif item == "elastic":
-                            if cfg.elasticsearchdb and cfg.elasticsearchdb.enabled and not cfg.elasticsearchdb.searchonly:
-                                delete_elastic_data(curtask, lastTask)
-                        """
-                    saveTaskLogged[item] = int(lastTask)
-                else:
-                    saveTaskLogged[item] = 0
-
-            # Write the task log for future reporting, to avoid returning tasks
-            # that we have already deleted data from.
-            with open(os.path.join(retPath, "task_check.log"), "w") as taskLog:
-                taskLog.write(json.dumps(saveTaskLogged))
-        finally:
-            lock.release()
diff --git a/modules/reporting/submitCAPE.py b/modules/reporting/submitCAPE.py
deleted file mode 100644
index e4b1ebab71a..00000000000
--- a/modules/reporting/submitCAPE.py
+++ /dev/null
@@ -1,401 +0,0 @@
-# encoding: utf-8
-# Copyright (C) 2015 Kevin O'Reilly kevin.oreilly@contextis.co.uk
-# This program is free software: you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation, either version 3 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program.  If not, see <http://www.gnu.org/licenses/>.
-
-from __future__ import absolute_import
-import os
-import logging
-import requests
-
-try:
-    import re2 as re
-except ImportError:
-    import re
-
-from lib.cuckoo.common.config import Config
-from lib.cuckoo.common.abstracts import Report
-from lib.cuckoo.common.exceptions import CuckooDependencyError
-from lib.cuckoo.common.exceptions import CuckooReportError
-from lib.cuckoo.common.objects import File
-from lib.cuckoo.common.utils import to_unicode
-from lib.cuckoo.core.database import Database
-
-log = logging.getLogger(__name__)
-
-reporting_conf = Config("reporting")
-distributed = reporting_conf.submitCAPE.distributed
-report_key = reporting_conf.submitCAPE.keyword
-
-NUMBER_OF_DEBUG_REGISTERS = 4
-bp = 0
-
-cape_package_list = [
-    "Emotet",
-    "Emotet_doc",
-    "Unpacker",
-    "Unpacker_dll",
-    "Unpacker_regsvr",
-    "Unpacker_zip",
-    "Unpacker_ps1",
-    "Unpacker_js",
-    "Hancitor",
-    "Hancitor_dll",
-    "Hancitor_doc",
-    "PlugX",
-    "PlugXPayload",
-    "PlugX_dll",
-    "PlugX_doc",
-    "PlugX_zip",
-    "RegBinary",
-    "Shellcode-Extraction",
-    "TrickBot",
-    "TrickBot_doc",
-    "UPX",
-    "UPX_dll",
-]
-
-unpackers = {
-    "ps1": "Unpacker_ps1",
-    "dll": "Unpacker_dll",
-    "regsvr": "Unpacker_regsvr",
-    "zip": "Unpacker_zip",
-    "js": "Unpacker_js",
-    "exe": "Unpacker",
-}
-
-plugx = {
-    "PlugXPayload": "PlugXPayload",
-    "zip": "PlugX_zip",
-    "doc": "PlugX_doc",
-    "dll": "PlugX_dll",
-    "exe": "PlugX",
-}
-
-
-class SubmitCAPE(Report):
-    def process_cape_yara(self, cape_yara, results, detections):
-        global bp
-
-        if "cape_options" in cape_yara["meta"]:
-            cape_options = cape_yara["meta"]["cape_options"].split(",")
-
-            address = 0
-            new_options = ""
-            suffix = ""
-            for option in cape_options:
-                name, value = option.split("=")
-                if name in ("bp0", "br0", 0):
-                    bp = 1
-                elif name in ("bp1", "br1", 1):
-                    bp = 2
-                elif name in ("bp2", "br2", 2):
-                    bp = 3
-                elif name in ("bp3", "br3", 3):
-                    bp = 4
-                elif bp == NUMBER_OF_DEBUG_REGISTERS:
-                    break
-                elif name in ("bp", "br") and value.startswith("$"):
-                    for hit in cape_yara["addresses"]:
-                        pattern = False
-                        if "-" in value:
-                            pattern = "-"
-                        elif "+" in value:
-                            pattern = "+"
-
-                        if pattern:
-                            suffix = pattern + value.split(pattern)[1]
-                            value = value.split(pattern)[0]
-
-                        if value.strip("$") in hit and str(cape_yara["addresses"][hit]) not in self.task_options:
-                            address = cape_yara["addresses"][hit]
-                            option = "{0}{1}={2}{3}".format(name, bp, address, suffix)
-                            bp = bp + 1
-                if option not in self.task_options:
-                    if new_options == "":
-                        new_options = option
-                    else:
-                        new_options = new_options + "," + option
-
-            if not address:
-                return
-
-            if "procdump=1" in self.task_options:
-                self.task_options = self.task_options.replace(u"procdump=1", u"procdump=0", 1)
-
-            if "extraction=1" in self.task_options:
-                self.task_options = self.task_options.replace(u"extraction=1", u"extraction=0", 1)
-
-            if "combo=1" in self.task_options:
-                self.task_options = self.task_options.replace(u"combo=1", u"combo=0", 1)
-
-            if "file-offsets" in self.task_options:
-                self.task_options = self.task_options.replace(u"file-offsets=0", u"file-offsets=0", 1)
-            else:
-                self.task_options = self.task_options + ",file-offsets=1"
-
-            log.info("options = %s", new_options)
-            self.task_options = self.task_options + "," + new_options
-            if "auto=" not in self.task_options:
-                self.task_options = self.task_options + ",auto=1"
-
-            return
-
-        if "disable_cape=1" in self.task_options:
-            return
-
-        if cape_yara["name"] == "TrickBot":
-            detections.add("TrickBot")
-
-        if cape_yara["name"] == "Hancitor":
-            detections.add("Hancitor")
-
-    def submit_task(
-        self, target, package, timeout, task_options, priority, machine, platform, memory, enforce_timeout, clock, tags, parent_id, tlp
-    ):
-
-        db = Database()
-
-        if os.path.exists(target):
-            task_id = False
-            if distributed:
-                options = {
-                    "package": package,
-                    "timeout": timeout,
-                    "options": task_options,
-                    "priority": priority,
-                    # "machine": machine,
-                    "platform": platform,
-                    "memory": memory,
-                    "enforce_timeout": enforce_timeout,
-                    "clock": clock,
-                    "tags": tags,
-                    "parent_id": parent_id,
-                }
-                multipart_file = [("file", (os.path.basename(target), open(target, "rb")))]
-                try:
-                    res = requests.post(reporting_conf.submitCAPE.url, files=multipart_file, data=options)
-                    if res and res.ok:
-                        task_id = res.json()["data"]["task_ids"][0]
-                except Exception as e:
-                    log.error(e)
-            else:
-                task_id = db.add_path(
-                    file_path=target,
-                    package=package,
-                    timeout=timeout,
-                    options=task_options,
-                    priority=priority,  # increase priority to expedite related submission
-                    machine=machine,
-                    platform=platform,
-                    memory=memory,
-                    enforce_timeout=enforce_timeout,
-                    clock=None,
-                    tags=None,
-                    parent_id=parent_id,
-                    tlp=tlp,
-                )
-            if task_id:
-                log.info(u'CAPE detection on file "{0}": {1} - added as CAPE task with ID {2}'.format(target, package, task_id))
-                return task_id
-            else:
-                log.warn("Error adding CAPE task to database: {0}".format(package))
-        else:
-            log.info("File doesn't exists")
-
-    def run(self, results):
-        self.task_options_stack = []
-        self.task_options = None
-        self.task_custom = None
-        detections = set()
-        children = []
-        bp = 0
-
-        # allow ban unittests
-        filename = results.get("target", {}).get("file", {}).get("name", "")
-        filenames = ("_test_00", "danabot")
-        if any(fn in filename for fn in filenames):
-            return
-        # We only want to submit a single job if we have a
-        # malware detection. A given package should do
-        # everything we need for its respective family.
-        package = None
-
-        # allow custom extractors
-        if report_key in results:
-            return
-
-        self.task_options = self.task["options"]
-        if not self.task_options:
-            return
-
-        if "auto" in self.task_options:
-            return
-
-        # We want to suppress spawned jobs if a config
-        # has already been extracted
-        for entry in results.get("CAPE", []):
-            if isinstance(entry, dict) and entry.get("cape_config"):
-                return
-
-        parent_package = results["info"].get("package")
-
-        # Initial static hits from CAPE's yara signatures
-        for entry in results.get("target", {}).get("file", {}).get("cape_yara", []):
-            self.process_cape_yara(entry, results, detections)
-
-        for pattern in ("procdump", "CAPE", "dropped"):
-            for file in results.get(pattern, []) or []:
-                if "cape_yara" in file:
-                    for entry in file["cape_yara"]:
-                        self.process_cape_yara(entry, results, detections)
-
-        if "auto=1" in self.task_options:
-            if parent_package and parent_package in unpackers.values():
-                return
-
-            parent_id = int(results["info"]["id"])
-            if results.get("info", {}).get("options", {}).get("main_task_id", ""):
-                parent_id = int(results.get("info", {}).get("options", {}).get("main_task_id", ""))
-
-            self.task_custom = "Parent_Task_ID:%s" % results["info"]["id"]
-            if results.get("info", {}).get("custom"):
-                self.task_custom = "%s Parent_Custom:%s" % (self.task_custom, results["info"]["custom"])
-
-            log.debug("submit_task options: %s", self.task_options)
-            task_id = self.submit_task(
-                self.task["target"],
-                self.task["package"],
-                self.task["timeout"],
-                self.task_options,
-                self.task["priority"] + 1,  # increase priority to expedite related submission
-                self.task["machine"],
-                self.task["platform"],
-                self.task["memory"],
-                self.task["enforce_timeout"],
-                None,
-                None,
-                parent_id,
-                self.task["tlp"],
-            )
-            if task_id:
-                children = []
-                children.append([task_id, self.task["package"]])
-                results["CAPE_children"] = children
-
-            return
-
-        if "disable_cape=1" in self.task_options:
-            return
-
-        # Dynamic CAPE hits from packers
-        if "signatures" in results:
-            for entry in results["signatures"]:
-                if parent_package:
-                    if entry["name"] == "Unpacker":
-                        if parent_package == "doc":
-                            continue
-
-                        if parent_package in unpackers:
-                            detections.add(unpackers[parent_package])
-                            continue
-
-                    # Specific malware family packages
-                    elif entry["name"] == "PlugX" and parent_package in plugx:
-                        detections.add(plugx[parent_package])
-                        package = plugx[parent_package]
-                        continue
-
-        elif "TrickBot" in detections:
-            if parent_package == "doc":
-                package = "TrickBot_doc"
-            elif parent_package == "exe":
-                package = "TrickBot"
-
-        elif "Hancitor" in detections:
-            if parent_package in ("doc"):
-                package = "Hancitor_doc"
-            elif parent_package in ("exe"):
-                package = "Hancitor"
-            elif parent_package in ("dll"):
-                package = "Hancitor_dll"
-
-        # if 'RegBinary' in detections or 'CreatesLargeKey' in detections:
-        elif "RegBinary" in detections:
-            package = "RegBinary"
-
-        # we want to switch off automatic process dumps in CAPE submissions
-        if self.task_options and "procdump=1" in self.task_options:
-            self.task_options = self.task_options.replace(u"procdump=1", u"procdump=0", 1)
-        if self.task_options_stack:
-            self.task_options = ",".join(self.task_options_stack)
-
-        parent_id = int(results["info"]["id"])
-        if results.get("info", {}).get("options", {}).get("main_task_id", ""):
-            parent_id = int(results.get("info", {}).get("options", {}).get("main_task_id", ""))
-
-        if package and package != parent_package:
-            self.task_custom = "Parent_Task_ID:%s" % results["info"]["id"]
-            if results.get("info", {}).get("custom"):
-                self.task_custom = "%s Parent_Custom:%s" % (self.task_custom, results["info"]["custom"])
-            task_id = self.submit_task(
-                self.task["target"],
-                package,
-                self.task["timeout"],
-                self.task_options,
-                # increase priority to expedite related submission
-                self.task["priority"] + 1,
-                self.task["machine"],
-                self.task["platform"],
-                self.task["memory"],
-                self.task["enforce_timeout"],
-                None,
-                None,
-                parent_id,
-                self.task["tlp"],
-            )
-            if task_id:
-                children.append([task_id, package])
-
-        else:  # nothing submitted, only 'dumpers' left
-            if parent_package in cape_package_list:
-                return
-
-            self.task_custom = "Parent_Task_ID:%s" % results["info"]["id"]
-            if results.get("info", {}).get("custom"):
-                self.task_custom = "%s Parent_Custom:%s" % (self.task_custom, results["info"]["custom"])
-
-            for dumper in detections:
-                task_id = self.submit_task(
-                    self.task["target"],
-                    dumper,
-                    self.task["timeout"],
-                    self.task_options,
-                    # increase priority to expedite related submission
-                    self.task["priority"] + 1,
-                    self.task["machine"],
-                    self.task["platform"],
-                    self.task["memory"],
-                    self.task["enforce_timeout"],
-                    None,
-                    None,
-                    parent_id,
-                    self.task["tlp"],
-                )
-                if task_id:
-                    children.append([task_id, dumper])
-
-        if children:
-            results["CAPE_children"] = children
-
-        return
diff --git a/modules/reporting/syslog.py b/modules/reporting/syslog.py
deleted file mode 100644
index 9883df2c726..00000000000
--- a/modules/reporting/syslog.py
+++ /dev/null
@@ -1,262 +0,0 @@
-# Copyright (C) 2010-2016 Cuckoo Foundation, KillerInstinct
-# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
-# See the file 'docs/LICENSE' for copying permission.
-
-"""Add the following to your $CUCKOO_PATH/conf/reporting.conf
-[syslog]
-enabled = yes         # yes/no
-host = x.x.x.x        # IP of your syslog server/listener
-port = 514            # Port of your syslog server/listener
-protocol = tcp        # Protocol to send data over
-logfile = yes         # Store logfile in reports directory?
-logname = syslog.log  # if yes, what logname? [Default: syslog.txt]
-
--KillerInstinct
-"""
-
-from __future__ import absolute_import
-import os
-import json
-import codecs
-import socket
-
-from lib.cuckoo.common.abstracts import Report
-from lib.cuckoo.common.exceptions import CuckooReportError
-
-ipwhitelist = [
-    "131.107.255.255",  # msftncsi
-    "134.170.51.254",  # M$
-    "157.56.106.189",  # teredo
-    "178.255.83.1",  # ocsp
-    "192.168.",  # internal IP's
-    "204.93.38.138",  # windows update
-    "239.255.255.250",  # Multicast IP in captures...
-    "4.2.2.2",  # DNS
-    "64.4.10.33",  # M$
-    "65.55.56.206",  # M$
-    "66.198.8.96",  # msftncsi
-    "74.125.228.",  # google
-    "8.8.4.4",  # DNS
-    "8.8.8.8",  # DNS
-]
-
-dnwhitelist = [
-    ".google.com",
-    ".gmail.com",
-    ".gstatic.com",
-    ".youtube.com",
-    ".googleusercontent.com",
-    ".microsoft.com",
-    ".msftncsi.com",
-    ".windowsupdate.com",
-    "ocsp.usertrust.com",
-    "ocsp.comodoca.com",
-]
-
-
-class Syslog(Report):
-    """Creates the syslog data to be sent.
-       @param results: Cuckoo results dict
-       @return: String containing syslog data built from the results dict.
-    """
-
-    def createLog(self, results):
-        syslog = ""
-        syslog += 'Timestamp="' + results["info"]["started"].replace("-", "/") + '" '
-        syslog += 'id="' + str(results["info"]["id"]) + '" '
-        submittype = results["target"]["category"]
-        syslog += 'Submission="' + submittype + '" '
-        if submittype == "file":
-            syslog += 'MD5="' + str(results["target"]["file"]["md5"]) + '" '
-            syslog += 'SHA1="' + str(results["target"]["file"]["sha1"]) + '" '
-            syslog += 'File_Name="' + str(results["target"]["file"]["name"]) + '" '
-            syslog += 'File_Size="' + str(results["target"]["file"]["size"]) + '" '
-            syslog += 'File_Type="' + str(results["target"]["file"]["type"]) + '" '
-            if "PDF" in str(results["target"]["file"]["type"]):
-                if results["static"]["pdf"].get("Keywords", {}).get("obj", 0):
-                    syslog += 'Object_Count="' + str(results["static"]["pdf"]["Keywords"]["obj"]) + '" '
-                else:
-                    syslog += 'Object_Count="0" '
-                if results["static"]["pdf"].get("JSStreams", []):
-                    syslog += 'Total_Streams="' + str(len(results["static"]["pdf"]["JSStreams"])) + '" '
-                else:
-                    syslog += 'Total_Streams="0" '
-        elif results["target"]["category"] == "url":
-            syslog += 'URL="' + results["target"]["url"] + '" '
-        # Here you can process the custom field if need be. My example stores
-        # usernames and ticket numbers in the Custom field. I parse and output
-        # it for syslog translation. Fields in custom are seperated by ";" and
-        # key/value pairs are seperated by ":".
-        # custom = results["info"]["custom"]
-        # Set default value of "-"
-        # ticket = 'ticket="-" '
-        # uname = 'User="-" '
-        # Parse custom, check for a new value.
-        # for option in custom.split(';'):
-        #    if "user:" in option:
-        #        uname = 'User="' + str(option.split(':')[-1]) + '" '
-        #    if "ticket:" in option:
-        #        ticket = 'ticket="' + str(option.split(':')[-1]) + '" '
-        # syslog += uname
-        # syslog += ticket
-
-        if "malscore" in results:
-            syslog += 'MalScore="' + str(results["malscore"]) + '" '
-        if "malfamily" in results and results["malfamily"]:
-            syslog += 'MalFamily="' + str(results["malfamily"]) + '" '
-
-        if "network" in results:
-            if "hosts" in results["network"]:
-                goodips = []
-                # Walks the IP exception list, appends to a multi-value ";" delimited field.
-                for ip in results["network"]["hosts"]:
-                    if ip["ip"] not in ipwhitelist:
-                        goodips.append(ip["ip"])
-                if goodips == []:
-                    syslog += 'Related_IPs="-" '
-                else:
-                    syslog += 'Related_IPs="' + ";".join(f for f in goodips) + '" '
-            else:
-                syslog += 'Related_IPs="-" '
-
-            if "domains" in results["network"]:
-                resultsdms = []
-                baddms = []
-                gooddms = []
-                # Walks the domain exception list, appends to a multi-value ";" delimited field.
-                for domain in results["network"]["domains"]:
-                    if domain["domain"] not in dnwhitelist:
-                        resultsdms.append(domain["domain"])
-                        for a in dnwhitelist:
-                            if domain["domain"].endswith(a):
-                                baddms.append(domain["domain"])
-                for domain in resultsdms:
-                    if domain not in baddms:
-                        gooddms.append(domain)
-                if gooddms == []:
-                    syslog += 'Related_Domains="-" '
-                else:
-                    syslog += 'Related_Domains="' + ";".join(f for f in gooddms) + '" '
-            else:
-                syslog += 'Related_Domains="-" '
-            # Some network stats...
-            if "tcp" in results["network"]:
-                syslog += 'Total_TCP="' + str(len(results["network"]["tcp"])) + '" '
-            else:
-                syslog += 'Total_TCP="0" '
-            if "udp" in results["network"]:
-                syslog += 'Total_UDP="' + str(len(results["network"]["udp"])) + '" '
-            else:
-                syslog += 'Total_UDP="0" '
-        # VT stats if available
-        if "virustotal" in results:
-            if all(val in list(results["virustotal"].keys()) for val in ["positives", "total"]):
-                VT_bad = str(results["virustotal"]["positives"])
-                VT_total = str(results["virustotal"]["total"])
-                syslog += 'Virustotal="' + VT_bad + "/" + VT_total + '" '
-            else:
-                syslog += 'Virustotal="Not Found" '
-            # Vendor specific detections here. Included two examples.
-            # if submittype == "file":
-            #    if results["virustotal"]["scans"]["Symantec"]["detected"] == True:
-            #        svirus = results["virustotal"]["scans"]["Symantec"]["result"]
-            #        syslog += 'Symantec="' + svirus + '" '
-            #    else:
-            #        syslog += 'Symantec="No Detection" '
-            #    if results["virustotal"]["scans"]["McAfee"]["detected"] == True:
-            #        mvirus = results["virustotal"]["scans"]["McAfee"]["result"]
-            #        syslog += 'McAfee="' + mvirus + '" '
-            #    else:
-            #        syslog += 'McAfee="No Detection" '
-        else:
-            syslog += 'Virustotal="Not Checked" '
-            # Vendor specific case when there is no detection
-            # if submittype == "file":
-            #    syslog += 'Symantec="N/A" '
-            #    syslog += 'McAfee="N/A" '
-        sigs = []
-        for sig in results["signatures"]:
-            sigs.append(sig["name"])
-        if sigs == []:
-            syslog += 'Cuckoo_Sigs="-" '
-        else:
-            # Ignore all sigs EXCEPT Virustotal for URL analysis
-            # (FP's is signatures for IE mechanics)
-            if submittype == "url" and "antivirus_virustotal" in sigs:
-                syslog += 'Cuckoo_Sigs="antivirus_virustotal" '
-            # Otherwise generate the multi-value field.
-            elif submittype == "file":
-                syslog += 'Cuckoo_Sigs="' + ";".join(s for s in sigs) + '" '
-            else:
-                syslog += 'Cuckoo_Sigs="-" '
-        # Creates a multi-value ";" delimited field for yara signatures
-        # (File analysis)
-        if submittype == "file":
-            yara = []
-            if results["target"]["file"].get("yara", []):
-                for rule in results["target"]["file"]["yara"]:
-                    yara.append(rule["name"])
-            if yara == []:
-                syslog += 'Yara="-" '
-            else:
-                syslog += 'Yara="' + ";".join(r for r in yara) + '" '
-
-        return syslog
-
-    def run(self, results):
-        """ Sends report.
-        @param results: Cuckoo results dict.
-        @raise CuckooReportError: if fails to write report.
-        """
-        # Get server options from reporting.conf
-        server = self.options.get("host", None)
-        port = self.options.get("port", None)
-        proto = self.options.get("protocol", None).lower()
-        # A few validations...
-        if not server:
-            raise CuckooReportError("Syslog Server IP not defined")
-        if not port:
-            raise CuckooReportError("Syslog Server port not defined")
-        if not proto:
-            raise CuckooReportError("Syslog Protocol not defined")
-        if proto != "tcp" and proto != "udp":
-            raise CuckooReportError("Syslog Protocol configuration error, " "protocol must be TCP or UDP.")
-        # Generate the syslog string
-        try:
-            result = self.createLog(results)
-        except:
-            raise CuckooReportError("Error creating syslog formatted log.")
-
-        # Check if the user wants it stored in the reports directory as well
-        do_log = self.options.get("logfile", None)
-        if do_log:
-            logfile = self.options.get("logname", "syslog.txt")
-            # Log syslog results to the reports directory
-            try:
-                syslogfile = open(str(os.path.join(self.reports_path, logfile)), "w")
-                syslogfile.write(result)
-            except:
-                raise CuckooReportError("Error writing the syslog output file.")
-            finally:
-                syslogfile.close()
-        # Attempt to connect to the syslog server
-        try:
-            server_address = (server, port)
-            if proto == "tcp":
-                sock = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
-                sock.connect(server_address)
-                # Attempt to send the syslog string to the syslog server
-                try:
-                    sock.sendall(bytes(result, encoding="UTF-8"))
-                except:
-                    raise CuckooReportError("Failed to send data to syslog server")
-                finally:
-                    sock.close()
-            elif proto == "udp":
-                sock = socket.socket(socket.AF_INET, socket.SOCK_DGRAM)
-                try:
-                    sock.sendto(bytes(result, encoding="UTF-8"), server_address)
-                except:
-                    raise CuckooReportError("Failed to send data to syslog server")
-        except (UnicodeError, TypeError, IOError) as e:
-            raise CuckooReportError("Failed to send syslog data: %s" % e)
diff --git a/modules/reporting/tmpfsclean.py b/modules/reporting/tmpfsclean.py
new file mode 100644
index 00000000000..c05b15b56ff
--- /dev/null
+++ b/modules/reporting/tmpfsclean.py
@@ -0,0 +1,38 @@
+import logging
+import shutil
+
+from lib.cuckoo.common.abstracts import Report
+from lib.cuckoo.common.path_utils import path_delete, path_exists
+from lib.cuckoo.common.utils import get_memdump_path
+
+log = logging.getLogger(__name__)
+
+
+class TMPFSCLEAN(Report):
+    "Remove/save memdump"
+
+    order = 9998
+
+    def run(self, results):
+        action = "delete"
+        src = get_memdump_path(results["info"]["id"])
+        if "store_memdump" in results["info"]["options"]:
+            action = "store"
+
+        if self.options.key in results and any(["checkme" in block for block in results[self.options.key]]):
+            action = "store"
+
+        if action == "delete":
+            log.debug("Deleting memdump: %s", src)
+            if path_exists(src):
+                path_delete(src)
+            if path_exists(f"{src}.strings"):
+                path_delete(f"{src}.strings")
+        else:
+            dest = get_memdump_path(results["info"]["id"], analysis_folder=True)
+            log.debug("Storing memdump: %s", dest)
+            if src != dest:
+                if path_exists(src):
+                    shutil.move(src, dest)
+                if path_exists(f"{src}.strings"):
+                    shutil.move(f"{src}.strings", f"{dest}.strings")
diff --git a/modules/signatures/CAPE.py b/modules/signatures/CAPE.py
index e45a54cabcc..45b644d2a9c 100644
--- a/modules/signatures/CAPE.py
+++ b/modules/signatures/CAPE.py
@@ -15,8 +15,9 @@
 # along with this program.If not, see <http://www.gnu.org/licenses/>.
 
 import logging
+
 from lib.cuckoo.common.abstracts import Signature
-from lib.cuckoo.common.objects import IsPEImage
+from lib.cuckoo.common.integrations.parse_pe import IsPEImage
 
 EXECUTABLE_FLAGS = 0x10 | 0x20 | 0x40 | 0x80
 EXTRACTION_MIN_SIZE = 0x1001
@@ -27,14 +28,16 @@
 
 
 class CAPE_Compression(Signature):
-    name = "Compression"
+    name = "compression"
     description = "Behavioural detection: Decompression of executable module(s)."
     severity = 1
     categories = ["malware"]
     authors = ["kevoreilly"]
     minimum = "1.3"
     evented = True
-    ttp = ["T1027"]
+    ttps = ["T1027", "T1140"]  # MITRE v6,7,8
+    mbcs = ["OB0002", "OB0006", "E1027"]
+    mbcs += ["OC0004", "C0025"]  # micro-behaviour
 
     filter_apinames = set(["RtlDecompressBuffer"])
 
@@ -44,24 +47,28 @@ def __init__(self, *args, **kwargs):
 
     def on_call(self, call, process):
         if call["api"] == "RtlDecompressBuffer":
-            buf = self.get_raw_argument(call, "UncompressedBuffer")
-            size = int(self.get_raw_argument(call, "UncompressedBufferLength"), 0)
-            self.compressed_binary = IsPEImage(buf, size)
+            buf = self.get_argument(call, "UncompressedBuffer")
+            size = self.get_argument(call, "UncompressedBufferLength")
+            if size:
+                size = int(size, 16)
+            self.compressed_binary = IsPEImage(buf.encode(), size)
 
     def on_complete(self):
-        if self.compressed_binary is True:
+        if self.compressed_binary:
             return True
 
 
 class CAPE_RegBinary(Signature):
-    name = "RegBinary"
+    name = "reg_binary"
     description = "Behavioural detection: PE binary written to registry."
     severity = 3
     categories = ["malware"]
     authors = ["kevoreilly"]
     minimum = "1.3"
     evented = True
-    ttp = ["T1112"]
+    ttps = ["T1112"]  # MITRE v6,7,8
+    mbcs = ["OB0006", "E1112"]
+    mbcs += ["OC0008", "C0036"]  # micro-behaviour
 
     filter_apinames = set(["RegSetValueExA", "RegSetValueExW", "RegCreateKeyExA", "RegCreateKeyExW"])
 
@@ -70,26 +77,30 @@ def __init__(self, *args, **kwargs):
         self.reg_binary = False
 
     def on_call(self, call, process):
-        if call["api"] == "RegSetValueExA" or call["api"] == "RegSetValueExW":
-            buf = self.get_raw_argument(call, "Buffer")
-            size = self.get_raw_argument(call, "BufferLength")
+        if call["api"] in ("RegSetValueExA", "RegSetValueExW"):
+            buf = self.get_argument(call, "Buffer")
+            size = self.get_argument(call, "BufferLength")
             if buf:
-                self.reg_binary = IsPEImage(buf, size)
+                if size:
+                    size = int(size)
+                self.reg_binary = IsPEImage(buf.encode(), size)
 
     def on_complete(self):
-        if self.reg_binary is True:
+        if self.reg_binary:
             return True
 
 
 class CAPE_Decryption(Signature):
-    name = "Decryption"
+    name = "decryption"
     description = "Behavioural detection: Decryption of executable module(s)."
     severity = 1
     categories = ["malware"]
     authors = ["kevoreilly"]
     minimum = "1.3"
     evented = True
-    ttp = ["T1027"]
+    ttps = ["T1027", "T1140"]  # MITRE v6,7,8
+    mbcs = ["OB0002", "OB0006", "E1027"]
+    mbcs += ["OC0005", "C0031"]  # micro-behaviour
 
     filter_apinames = set(["CryptDecrypt"])
 
@@ -99,12 +110,14 @@ def __init__(self, *args, **kwargs):
 
     def on_call(self, call, process):
         if call["api"] == "CryptDecrypt":
-            buf = self.get_raw_argument(call, "Buffer")
-            size = self.get_raw_argument(call, "Length")
-            self.encrypted_binary = IsPEImage(buf, size)
+            buf = self.get_argument(call, "Buffer")
+            size = self.get_argument(call, "Length")
+            if size:
+                size = int(size)
+            self.encrypted_binary = IsPEImage(buf.encode(), size)
 
     def on_complete(self):
-        if self.encrypted_binary is True:
+        if self.encrypted_binary:
             return True
 
 
@@ -116,7 +129,10 @@ class CAPE_Unpacker(Signature):
     authors = ["kevoreilly"]
     minimum = "1.3"
     evented = True
-    ttp = ["T1027"]
+    ttps = ["T1027", "T1140"]  # MITRE v6,7,8
+    ttps += ["T1027.002"]  # MITRE v7,8
+    mbcs = ["OB0002", "OB0006", "E1027", "F0001"]
+    mbcs += ["OC0002", "C0007"]  # micro-behaviour
 
     def __init__(self, *args, **kwargs):
         Signature.__init__(self, *args, **kwargs)
@@ -124,38 +140,41 @@ def __init__(self, *args, **kwargs):
     filter_apinames = set(["NtAllocateVirtualMemory", "NtProtectVirtualMemory", "VirtualProtectEx"])
 
     def on_call(self, call, process):
-
-        if process["process_name"] == "WINWORD.EXE" or process["process_name"] == "EXCEL.EXE" or process["process_name"] == "POWERPNT.EXE":
+        if process["process_name"] in ("WINWORD.EXE", "EXCEL.EXE", "POWERPNT.EXE"):
             return False
         if call["api"] == "NtAllocateVirtualMemory":
-            protection = int(self.get_raw_argument(call, "Protection"), 0)
-            regionsize = int(self.get_raw_argument(call, "RegionSize"), 0)
+            protection = int(self.get_argument(call, "Protection"), 0)
+            regionsize = int(self.get_argument(call, "RegionSize"), 0)
             handle = self.get_argument(call, "ProcessHandle")
             if handle == "0xffffffff" and protection & EXECUTABLE_FLAGS and regionsize >= EXTRACTION_MIN_SIZE:
                 return True
         if call["api"] == "VirtualProtectEx":
-            protection = int(self.get_raw_argument(call, "Protection"), 0)
-            size = int(self.get_raw_argument(call, "Size"), 0)
+            protection = int(self.get_argument(call, "Protection"), 0)
+            size = int(self.get_argument(call, "Size"), 0)
             handle = self.get_argument(call, "ProcessHandle")
             if handle == "0xffffffff" and protection & EXECUTABLE_FLAGS and size >= EXTRACTION_MIN_SIZE:
                 return True
         elif call["api"] == "NtProtectVirtualMemory":
-            protection = int(self.get_raw_argument(call, "NewAccessProtection"), 0)
-            size = int(self.get_raw_argument(call, "NumberOfBytesProtected"), 0)
+            protection = int(self.get_argument(call, "NewAccessProtection"), 0)
+            size = int(self.get_argument(call, "NumberOfBytesProtected"), 0)
             handle = self.get_argument(call, "ProcessHandle")
-            if handle == "0xffffffff" and protection & EXECUTABLE_FLAGS and size >= EXTRACTION_MIN_SIZE:
+            if handle == 0xFFFFFFFF and protection & EXECUTABLE_FLAGS and size >= EXTRACTION_MIN_SIZE:
                 return True
 
 
 class CAPE_InjectionCreateRemoteThread(Signature):
-    name = "InjectionCreateRemoteThread"
+    name = "injection_create_remote_thread"
     description = "Behavioural detection: Injection with CreateRemoteThread in a remote process"
     severity = 3
     categories = ["injection"]
     authors = ["JoseMi Holguin", "nex", "Optiv", "kevoreilly", "KillerInstinct"]
     minimum = "1.3"
     evented = True
-    ttp = ["T1055"]
+    ttps = ["T1055"]  # MITRE v6,7,8
+    ttps += ["T1055.002"]  # MITRE v7,8
+    ttps += ["U1216"]  # Unprotect
+    mbcs = ["OB0006", "E1055"]
+    mbcs += ["OC0003", "C0038"]  # micro-behaviours
 
     def __init__(self, *args, **kwargs):
         Signature.__init__(self, *args, **kwargs)
@@ -171,11 +190,11 @@ def on_call(self, call, process):
             self.process_pids = set()
             self.lastprocess = process
 
-        if call["api"] == "OpenProcess" and call["status"] is True:
+        if call["api"] == "OpenProcess" and call["status"]:
             if self.get_argument(call, "ProcessId") != process["process_id"]:
                 self.process_handles.add(call["return"])
                 self.process_pids.add(self.get_argument(call, "ProcessId"))
-        elif call["api"] == "NtOpenProcess" and call["status"] is True:
+        elif call["api"] == "NtOpenProcess" and call["status"]:
             if self.get_argument(call, "ProcessIdentifier") != process["process_id"]:
                 self.process_handles.add(self.get_argument(call, "ProcessHandle"))
                 self.process_pids.add(self.get_argument(call, "ProcessIdentifier"))
@@ -186,10 +205,10 @@ def on_call(self, call, process):
         elif call["api"] == "NtMapViewOfSection":
             if self.get_argument(call, "ProcessHandle") in self.process_handles:
                 self.write_detected = True
-        elif call["api"] == "VirtualAllocEx" or call["api"] == "NtAllocateVirtualMemory":
+        elif call["api"] in ("VirtualAllocEx", "NtAllocateVirtualMemory"):
             if self.get_argument(call, "ProcessHandle") in self.process_handles:
                 self.write_detected = True
-        elif call["api"] == "NtWriteVirtualMemory" or call["api"] == "NtWow64WriteVirtualMemory64" or call["api"] == "WriteProcessMemory":
+        elif call["api"] in ("NtWriteVirtualMemory", "NtWow64WriteVirtualMemory64", "WriteProcessMemory"):
             if self.get_argument(call, "ProcessHandle") in self.process_handles:
                 self.write_detected = True
                 addr = int(self.get_argument(call, "BaseAddress"), 16)
@@ -201,7 +220,7 @@ def on_call(self, call, process):
                     #                                     procname, self.handle_map[handle])
                     # self.data.append({"Injection": desc})
                     return True
-        elif call["api"] == "CreateRemoteThread" or call["api"].startswith("NtCreateThread") or call["api"].startswith("NtCreateThreadEx"):
+        elif call["api"].startswith(("CreateRemoteThread", "NtCreateThread", "NtCreateThreadEx")):
             handle = self.get_argument(call, "ProcessHandle")
             if handle in self.process_handles:
                 # procname = self.get_name_from_pid(self.handle_map[handle])
@@ -218,19 +237,22 @@ def on_call(self, call, process):
                 self.remote_thread = True
 
     def on_complete(self):
-        if self.write_detected is True and self.remote_thread is True:
+        if self.write_detected and self.remote_thread:
             return True
 
 
 class CAPE_InjectionProcessHollowing(Signature):
-    name = "InjectionProcessHollowing"
+    name = "injection_process_hollowing"
     description = "Behavioural detection: Injection (Process Hollowing)"
     severity = 3
     categories = ["injection"]
     authors = ["glysbaysb", "Optiv", "KillerInstinct"]
     minimum = "1.3"
     evented = True
-    ttp = ["T1055", "T1093"]
+    ttps = ["T1055", "T1093"]  # MITRE v6
+    ttps += ["T1055.012"]  # MITRE v7,8
+    ttps += ["U1225"]  # Unprotect
+    mbcs = ["OB0006", "E1055"]
 
     def __init__(self, *args, **kwargs):
         Signature.__init__(self, *args, **kwargs)
@@ -243,10 +265,13 @@ def on_call(self, call, process):
             self.sequence = 0
             self.process_handles = set()
             self.thread_handles = set()
-            self.process_map = dict()
-            self.thread_map = dict()
+            self.process_map = {}
+            self.thread_map = {}
             self.lastprocess = process
 
+        if process.get("process_name").lower() in ("acrord32.exe",):
+            return False
+
         if call["api"] == "CreateProcessInternalW":
             phandle = self.get_argument(call, "ProcessHandle")
             thandle = self.get_argument(call, "ThreadHandle")
@@ -255,24 +280,23 @@ def on_call(self, call, process):
             self.process_map[phandle] = pid
             self.thread_handles.add(thandle)
             self.thread_map[thandle] = pid
-        elif (call["api"] == "NtUnmapViewOfSection" or call["api"] == "NtAllocateVirtualMemory") and self.sequence == 0:
+        elif call["api"] in ("NtUnmapViewOfSection", "NtAllocateVirtualMemory") and self.sequence == 0:
             if self.get_argument(call, "ProcessHandle") in self.process_handles:
                 self.sequence = 1
         elif call["api"] == "NtGetContextThread" and self.sequence == 0:
             if self.get_argument(call, "ThreadHandle") in self.thread_handles:
                 self.sequence = 1
         elif (
-            call["api"] == "NtWriteVirtualMemory"
-            or call["api"] == "NtWow64WriteVirtualMemory64"
-            or call["api"] == "WriteProcessMemory"
-            or call["api"] == "NtMapViewOfSection"
-        ) and (self.sequence == 1 or self.sequence == 2):
+            (call["api"] in ("NtWriteVirtualMemory", "NtWow64WriteVirtualMemory64", "WriteProcessMemory", "NtMapViewOfSection"))
+            and self.sequence == 1
+            or self.sequence == 2
+        ):
             if self.get_argument(call, "ProcessHandle") in self.process_handles:
-                self.sequence = self.sequence + 1
-        elif (call["api"] == "NtSetContextThread") and (self.sequence == 1 or self.sequence == 2):
+                self.sequence += 1
+        elif call["api"] == "NtSetContextThread" and self.sequence in (1, 2):
             if self.get_argument(call, "ThreadHandle") in self.thread_handles:
-                self.sequence = self.sequence + 1
-        elif call["api"] == "NtResumeThread" and (self.sequence == 2 or self.sequence == 3):
+                self.sequence += 1
+        elif call["api"] == "NtResumeThread" and self.sequence in (2, 3):
             handle = self.get_argument(call, "ThreadHandle")
             if handle in self.thread_handles:
                 desc = "{0}({1}) -> {2}({3})".format(
@@ -281,9 +305,9 @@ def on_call(self, call, process):
                     self.get_name_from_pid(self.thread_map[handle]),
                     self.thread_map[handle],
                 )
-                self.data.append({"Injection": desc})
+                self.data.append({"injection": desc})
                 return True
-        elif call["api"] == "NtResumeProcess" and (self.sequence == 2 or self.sequence == 3):
+        elif call["api"] == "NtResumeProcess" and self.sequence in (2, 3):
             handle = self.get_argument(call, "ProcessHandle")
             if handle in self.process_handles:
                 desc = "{0}({1}) -> {2}({3})".format(
@@ -292,19 +316,22 @@ def on_call(self, call, process):
                     self.get_name_from_pid(self.process_map[handle]),
                     self.process_map[handle],
                 )
-                self.data.append({"Injection": desc})
+                self.data.append({"injection": desc})
                 return True
 
 
 class CAPE_InjectionSetWindowLong(Signature):
-    name = "InjectionSetWindowLong"
+    name = "injection_set_window_long"
     description = "Behavioural detection: Injection with SetWindowLong in a remote process"
     severity = 3
     categories = ["injection"]
     authors = ["kevoreilly"]
     minimum = "1.3"
     evented = True
-    ttp = ["T1055", "T1181"]
+    ttps = ["T1055", "T1181"]  # MITRE v6
+    ttps += ["T1055.011"]  # MITRE v7,8
+    ttps += ["U1319"]  # Unprotect
+    mbcs = ["OB0006", "E1055"]
 
     def __init__(self, *args, **kwargs):
         Signature.__init__(self, *args, **kwargs)
@@ -349,26 +376,27 @@ def on_call(self, call, process):
             handle = self.get_argument(call, "ProcessHandle")
             if handle != "0xffffffff":
                 self.sharedmap = True
-        elif call["api"] == "NtOpenSection" or call["api"] == "NtCreateSection":
+        elif call["api"] in ("NtOpenSection", "NtCreateSection"):
             name = self.get_argument(call, "ObjectAttributes")
             if name.lower() in self.sharedsections:
                 self.sharedmap = True
-        elif call["api"].startswith("FindWindow") and call["status"] is True:
+        elif call["api"].startswith("FindWindow") and call["status"]:
             self.windowfound = True
-        elif call["api"].startswith("SetWindowLong") and call["status"] is True:
-            if self.sharedmap is True and self.windowfound is True:
+        elif call["api"].startswith("SetWindowLong") and call["status"]:
+            if self.sharedmap and self.windowfound:
                 return True
 
 
 class CAPE_Injection(Signature):
-    name = "InjectionInterProcess"
+    name = "injection_inter_process"
     description = "Behavioural detection: Injection (inter-process)"
     severity = 3
     categories = ["injection"]
     authors = ["kevoreilly"]
     minimum = "1.3"
     evented = True
-    ttp = ["T1055"]
+    ttps = ["T1055"]  # MITRE v6,7,8
+    mbcs = ["OB0006", "E1055"]
 
     def __init__(self, *args, **kwargs):
         Signature.__init__(self, *args, **kwargs)
@@ -389,20 +417,15 @@ def on_call(self, call, process):
             self.write_handles = set()
             self.lastprocess = process
 
-        if call["api"] == "CreateProcessInternalW" or call["api"] == "OpenProcess" or call["api"] == "NtOpenProcess":
+        if call["api"] in ("CreateProcessInternalW", "OpenProcess", "NtOpenProcess"):
             phandle = self.get_argument(call, "ProcessHandle")
             self.process_handles.add(phandle)
-        elif (
-            call["api"] == "NtWriteVirtualMemory"
-            or call["api"] == "NtWow64WriteVirtualMemory64"
-            or call["api"] == "WriteProcessMemory"
-            or call["api"] == "NtMapViewOfSection"
-        ):
+        elif call["api"] in ("NtWriteVirtualMemory", "NtWow64WriteVirtualMemory64", "WriteProcessMemory", "NtMapViewOfSection"):
             whandle = self.get_argument(call, "ProcessHandle")
             self.write_handles.add(whandle)
 
     def on_complete(self):
-        if self.injection_detected is True:
+        if self.injection_detected:
             return True
         elif self.process_handles:
             for handle in self.process_handles:
@@ -411,14 +434,16 @@ def on_complete(self):
 
 
 class CAPE_EvilGrab(Signature):
-    name = "EvilGrab"
+    name = "evil_grab"
     description = "Behavioural detection: EvilGrab"
     severity = 3
     categories = ["malware"]
     authors = ["kevoreilly"]
     minimum = "1.3"
     evented = True
-    ttp = ["T1219"]
+    ttps = ["T1219"]  # MITRE v6,7,8
+    mbcs = ["OB0008", "OB0012", "B0022"]
+    mbcs += ["OC0008", "C0036"]  # micro-behaviour
 
     filter_apinames = set(["RegSetValueExA", "RegSetValueExW", "RegCreateKeyExA", "RegCreateKeyExW"])
 
@@ -428,21 +453,20 @@ def __init__(self, *args, **kwargs):
         self.reg_binary = False
 
     def on_call(self, call, process):
-        if call["api"] == "RegCreateKeyExA" or call["api"] == "RegCreateKeyExW":
+        if call["api"] in ("RegCreateKeyExA", "RegCreateKeyExW"):
             buf = self.get_argument(call, "SubKey")
             if buf == "Software\\rar":
                 self.reg_evilgrab_keyname = True
 
-        if call["api"] == "RegSetValueExA" or call["api"] == "RegSetValueExW":
-            length = self.get_raw_argument(call, "BufferLength")
-            if length and length > 0x10000 and self.reg_evilgrab_keyname is True:
+        if call["api"] in ("RegSetValueExA", "RegSetValueExW"):
+            length = self.get_argument(call, "BufferLength")
+            if length and int(length) > 0x10000 and self.reg_evilgrab_keyname:
                 self.reg_binary = True
 
     def on_complete(self):
-        if self.reg_binary is True:
+        if self.reg_binary:
             return True
-        else:
-            return False
+        return False
 
 
 class CAPE_PlugX(Signature):
@@ -450,11 +474,13 @@ class CAPE_PlugX(Signature):
     description = "Behavioural detection: PlugX"
     severity = 3
     categories = ["chinese", "malware"]
-    families = ["plugx"]
+    families = ["PlugX"]
     authors = ["kevoreilly"]
     minimum = "1.3"
     evented = True
-    ttp = ["T1219"]
+    ttps = ["T1219"]  # MITRE v6,7,8
+    mbcs = ["OB0008", "OB0012", "B0022"]
+    mbcs += ["OC0008", "C0036"]  # micro-behaviour
 
     filter_apinames = set(["RtlDecompressBuffer", "memcpy"])
 
@@ -465,36 +491,45 @@ def __init__(self, *args, **kwargs):
 
     def on_call(self, call, process):
         if call["api"] == "RtlDecompressBuffer":
-            dos_header = self.get_raw_argument(call, "UncompressedBuffer")[:2]
+            dos_header = self.get_argument(call, "UncompressedBuffer")[:2]
             # IMAGE_DOS_SIGNATURE or PLUGX_SIGNATURE
             if dos_header in ("MZ", "XV", "GULP"):
                 self.compressed_binary = True
 
         if call["api"] == "memcpy":
-            count = self.get_raw_argument(call, "count")
+            count = int(self.get_argument(call, "count"))
             if count in (0xAE4, 0xBE4, 0x150C, 0x1510, 0x1516, 0x170C, 0x1B18, 0x1D18, 0x2540, 0x254C, 0x2D58, 0x36A4, 0x4EA4):
                 self.config_copy = True
 
     def on_complete(self):
-        if self.config_copy is True and self.compressed_binary is True:
+        if self.config_copy and self.compressed_binary:
             return True
 
 
 class CAPE_Doppelganging(Signature):
-    name = "Doppelganging"
+    name = "doppelganging"
     description = "Behavioural detection: Process Doppelganging"
     severity = 3
     categories = ["injection"]
     authors = ["kevoreilly"]
     minimum = "1.3"
     evented = True
-    ttp = ["T1055", "T1186"]
+    ttps = ["T1055", "T1186"]  # MITRE v6
+    ttps += ["T1055.013"]  # MITRE v7,8
+    ttps += ["U1215"]  # Unprotect
+    mbcs = ["OB0006", "E1055"]
 
     def __init__(self, *args, **kwargs):
         Signature.__init__(self, *args, **kwargs)
         self.lastprocess = None
 
-    filter_categories = set(["process", "thread", "filesystem",])
+    filter_categories = set(
+        [
+            "process",
+            "thread",
+            "filesystem",
+        ]
+    )
 
     def on_call(self, call, process):
         if process is not self.lastprocess:
@@ -503,7 +538,7 @@ def on_call(self, call, process):
             self.filehandle = None
             self.sectionhandle = None
 
-        if call["api"] == "CreateFileTransactedA" or call["api"] == "CreateFileTransactedW":
+        if call["api"] in ("CreateFileTransactedA", "CreateFileTransactedW"):
             self.filehandle = self.get_argument(call, "FileHandle")
         elif call["api"] == "NtCreateSection":
             if self.filehandle and self.filehandle == self.get_argument(call, "FileHandle"):
@@ -514,14 +549,17 @@ def on_call(self, call, process):
 
 
 class CAPE_TransactedHollowing(Signature):
-    name = "TransactedHollowing"
+    name = "transacted_hollowing"
     description = "Behavioural detection: Transacted Hollowing"
     severity = 3
     categories = ["injection"]
     authors = ["kevoreilly"]
     minimum = "1.3"
     evented = True
-    ttp = ["T1055", "T1093"]
+    ttps = ["T1055", "T1093"]  # MITRE v6
+    ttps += ["T1055.012"]  # MITRE v7,8
+    ttps += ["U1225"]  # Unprotect
+    mbcs = ["OB0006", "E1055"]
 
     filter_apinames = set(["RtlSetCurrentTransaction", "NtRollbackTransaction", "NtMapViewOfSection"])
 
@@ -532,36 +570,38 @@ def __init__(self, *args, **kwargs):
         self.transacted_hollowing = False
 
     def on_call(self, call, process):
-
         if call["api"] == "RtlSetCurrentTransaction":
             self.transaction_set = True
 
         if call["api"] == "NtRollbackTransaction":
-            if self.transaction_set is True:
+            if self.transaction_set:
                 self.transaction_rollback = True
 
         if call["api"] == "NtMapViewOfSection":
             handle = self.get_argument(call, "ProcessHandle")
-            if handle != "0xffffffff" and self.transaction_rollback is True:
+            if handle != "0xffffffff" and self.transaction_rollback:
                 self.transacted_hollowing = True
 
     def on_complete(self):
-        if self.transacted_hollowing is True:
+        if self.transacted_hollowing:
             return True
 
 
 class CAPEDetectedThreat(Signature):
     name = "cape_detected_threat"
     description = "CAPE detected a specific malware threat"
-    severity = 3
+    severity = 6
     categories = ["malware"]
     authors = ["Kevin Ross"]
     minimum = "1.3"
     evented = True
 
     def run(self):
-        if self.results.get("detections", False):
-            self.description = "CAPE detected the %s malware family" % self.results["detections"]
+        if self.results.get("detections"):
+            self.description = "CAPE detected the %s malware" % ", ".join(block["family"] for block in self.results["detections"])
+            for block in self.results["detections"]:
+                # ToDo make data more beautiful
+                self.data.append({block["family"]: block["details"]})
             return True
 
         return False
diff --git a/modules/signatures/all/__init__.py b/modules/signatures/all/__init__.py
new file mode 100644
index 00000000000..13fb1d219c7
--- /dev/null
+++ b/modules/signatures/all/__init__.py
@@ -0,0 +1,3 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
diff --git a/modules/signatures/cape_extracted.py b/modules/signatures/cape_extracted.py
index bc2ce99e234..5a9d23a6df1 100644
--- a/modules/signatures/cape_extracted.py
+++ b/modules/signatures/cape_extracted.py
@@ -28,16 +28,15 @@ class CAPEExtractedContent(Signature):
     def run(self):
         ret = False
         for cape in self.results.get("CAPE", {}).get("payloads", []) or []:
-            yara = cape.get("cape_yara", "") or cape.get("cape_type", "")
             process = cape.get("process_name", "")
+            yara = ", ".join([block["name"] for block in cape.get("cape_yara", [])])
             if yara and process:
-                self.data.append({process: yara})
+                self.data.append({process.replace(".", "_"): yara})
                 ret = True
-                if yara:
-                    self.data.append({process: yara})
 
         return ret
 
+
 class CAPEExtractedConfig(Signature):
     name = "cape_extracted_config"
     description = "CAPE has extracted a malware configuration"
diff --git a/modules/signatures/https.py b/modules/signatures/https.py
index 2577b23e49c..3371a852d80 100644
--- a/modules/signatures/https.py
+++ b/modules/signatures/https.py
@@ -24,10 +24,12 @@ class NetworkHTTPS(Signature):
     authors = ["doomedraven"]
     minimum = "1.2"
     evented = True
+    ttps = ["T1071", "T1071.001"]  # MITRE v6,7,8
+    mbcs = ["OC0006", "C0002"]  # micro-behaviour
 
     def __init__(self, *args, **kwargs):
         Signature.__init__(self, *args, **kwargs)
-        self.urls = list()
+        self.urls = []
 
     filter_apinames = set(["InternetOpenUrlA", "InternetOpenUrlW"])
 
@@ -37,12 +39,11 @@ def on_call(self, call, process):
 
     def on_complete(self):
         ret = False
-        print(self.urls)
         urls = list(set(self.urls))
         if urls:
             ret = True
 
         for url in urls:
-            self.data.append({"URL": url})
+            self.data.append({"url": url})
 
         return ret
diff --git a/modules/signatures/linux/__init__.py b/modules/signatures/linux/__init__.py
new file mode 100644
index 00000000000..13fb1d219c7
--- /dev/null
+++ b/modules/signatures/linux/__init__.py
@@ -0,0 +1,3 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
diff --git a/modules/signatures/windows/__init__.py b/modules/signatures/windows/__init__.py
new file mode 100644
index 00000000000..13fb1d219c7
--- /dev/null
+++ b/modules/signatures/windows/__init__.py
@@ -0,0 +1,3 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
diff --git a/nginx.md b/nginx.md
deleted file mode 100644
index 9b9dc6b92c1..00000000000
--- a/nginx.md
+++ /dev/null
@@ -1,122 +0,0 @@
-# NGINX Guide
-
-In this guide we'll be using the NGINX web server as a secure reverse proxy for Cuckoo.
-
-    sudo apt-get install nginx apache2-utils
-
-Add yourself to the `cuckoo` group:
-
-    sudo usermod -a -G cuckoo $USER
-
-## Create a SSL certificate
-
- It is very important that communications between the sandbox and its users are secure for a couple of reasons:
-
-- Prevents credentials from being sniffed
-- Prevents triggering IDS alarms in your network while uploading malware
-
-You can use a self-signed certificate, or one that has been signed by an internal or external Certificate Authority (CA). Using a CA will allow browsers and other HTTPS clients that trust the CA to trust that the connection is secure. Self signed certificates will generate browser warnings.
-
-If you are accessing your sandbox directly via in internal/private IP address, you must use a self signed certificate.
-
-Create a directory to store the certificates and keys:
-
-    mkdir ~/ssl
-    cd ~/ssl
-
-To create a self-signed certificate, run:
-
-    openssl req -x509 -nodes -days 365 -newkey rsa:4096 -keyout cuckoo.key -out cuckoo.crt
-
-**Or**, to create a Certificate Signing Request (CSR) for a CA, run:
-
-    openssl req -newkey rsa:4096-nodes -keyout cuckoo.key -out cuckoo.csr
-
-Fill in the prompts. **Watch out** for `Common Name (e.g. server FQDN or YOUR domain name)`, which is the IP address or domain name that you will be hosting Cuckoo web services on. it is the most important field.
-
-Remove the CSR after you have your certs
-
-    rm cuckoo.csr
-
-Move the keys into place:
-
-    cd
-    sudo mv ssl /etc/nginx
-
-Secure the keys:
-
-    sudo chown -R root:www-data /etc/nginx/ssl
-    sudo chmod -R u=rX,g=rX,o= /etc/nginx/ssl
-
-## Configure NGINX
-
-Disable the default nginx configuration:
-
-    sudo rm /etc/nginx/sites-enabled/default
-
-Create the Cuckoo web server configuration
-
-    sudo nano /etc/nginx/sites-available/cuckoo
-
-**Note**: In both the SSL and non-SSL server blocks below, replace `IP_Address` with the IP address of the interface you will access web services through. This is done so that the webserver cannot be accessed by sandbox VMs.
-
-```nginx
-server {
-    # SSL best practices from https://mozilla.github.io/server-side-tls/ssl-config-generator/
-    listen IP_Address:443 ssl http2;
-    ssl_certificate /etc/nginx/ssl/cuckoo.crt;
-    ssl_certificate_key /etc/nginx/ssl/cuckoo.key;
-    ssl_protocols TLSv1.2;
-    ssl_ciphers 'ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256';
-    ssl_prefer_server_ciphers on;
-    # Uncomment this next line if you are using a signed, trusted cert
-    #add_header Strict-Transport-Security "max-age=63072000; includeSubdomains; preload";
-    add_header X-Frame-Options SAMEORIGIN;
-    add_header X-Content-Type-Options nosniff;
-    root /usr/share/nginx/html;
-    index index.html index.htm;
-    client_max_body_size 101M;
-    auth_basic "Login required";
-    auth_basic_user_file /etc/nginx/htpasswd;
-
-    location / {
-        proxy_pass http://127.0.0.1:8000;
-        proxy_set_header Host $host;
-        proxy_set_header X-Real-IP $remote_addr;
-        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
-    }
-
-    location /storage/analysis {
-       alias /opt/cuckoo/storage/analyses/;
-       autoindex on;
-       autoindex_exact_size off;
-       autoindex_localtime on;
-    }
-
-    location /static {
-      alias /opt/cuckoo/web/static/;
-    }
-}
-
-server {
-    listen IP_Address:80;
-    return 301 https://$server_name$request_uri;
-}
-```
-
-Enable the nginx Cuckoo configuration:
-
-    sudo ln -s /etc/nginx/sites-available/cuckoo /etc/nginx/sites-enabled/cuckoo
-
-Setup basic authentication:
-
-Cuckoo's web interface has no authentication mechanism of its own, so we'll use use `nginx`'s basic auth. To create a user, use
-
-    sudo htpasswd -c /etc/nginx/htpasswd exampleuser
-
-Where `exampleuser` is the name of the user you want to add.
-
-Secure the permissions of the `httpasswd` file:
-
-    sudo chown root:www-data /etc/nginx/htpasswd
-    sudo chmod u=rw,g=r,o= /etc/nginx/htpasswd
diff --git a/poetry.lock b/poetry.lock
new file mode 100644
index 00000000000..4710a7057ce
--- /dev/null
+++ b/poetry.lock
@@ -0,0 +1,5143 @@
+# This file is automatically @generated by Poetry 2.2.1 and should not be changed by hand.
+
+[[package]]
+name = "alembic"
+version = "1.9.4"
+description = "A database migration tool for SQLAlchemy."
+optional = false
+python-versions = ">=3.7"
+groups = ["main"]
+files = [
+    {file = "alembic-1.9.4-py3-none-any.whl", hash = "sha256:6f1c2207369bf4f49f952057a33bb017fbe5c148c2a773b46906b806ea6e825f"},
+    {file = "alembic-1.9.4.tar.gz", hash = "sha256:4d3bd32ecdbb7bbfb48a9fe9e6d6fd6a831a1b59d03e26e292210237373e7db5"},
+]
+
+[package.dependencies]
+Mako = "*"
+SQLAlchemy = ">=1.3.0"
+
+[package.extras]
+tz = ["python-dateutil"]
+
+[[package]]
+name = "annotated-types"
+version = "0.7.0"
+description = "Reusable constraint types to use with typing.Annotated"
+optional = false
+python-versions = ">=3.8"
+groups = ["main"]
+files = [
+    {file = "annotated_types-0.7.0-py3-none-any.whl", hash = "sha256:1f02e8b43a8fbbc3f3e0d4f0f4bfc8131bcb4eebe8849b8e5c773f3a1c582a53"},
+    {file = "annotated_types-0.7.0.tar.gz", hash = "sha256:aff07c09a53a08bc8cfccb9c85b05f1aa9a2a6f23728d790723543408344ce89"},
+]
+
+[[package]]
+name = "anyio"
+version = "4.8.0"
+description = "High level compatibility layer for multiple asynchronous event loop implementations"
+optional = false
+python-versions = ">=3.9"
+groups = ["main"]
+files = [
+    {file = "anyio-4.8.0-py3-none-any.whl", hash = "sha256:b5011f270ab5eb0abf13385f851315585cc37ef330dd88e27ec3d34d651fd47a"},
+    {file = "anyio-4.8.0.tar.gz", hash = "sha256:1d9fe889df5212298c0c0723fa20479d1b94883a2df44bd3897aa91083316f7a"},
+]
+
+[package.dependencies]
+exceptiongroup = {version = ">=1.0.2", markers = "python_version < \"3.11\""}
+idna = ">=2.8"
+sniffio = ">=1.1"
+typing_extensions = {version = ">=4.5", markers = "python_version < \"3.13\""}
+
+[package.extras]
+doc = ["Sphinx (>=7.4,<8.0)", "packaging", "sphinx-autodoc-typehints (>=1.2.0)", "sphinx_rtd_theme"]
+test = ["anyio[trio]", "coverage[toml] (>=7)", "exceptiongroup (>=1.2.0)", "hypothesis (>=4.0)", "psutil (>=5.9)", "pytest (>=7.0)", "trustme", "truststore (>=0.9.1) ; python_version >= \"3.10\"", "uvloop (>=0.21) ; platform_python_implementation == \"CPython\" and platform_system != \"Windows\" and python_version < \"3.14\""]
+trio = ["trio (>=0.26.1)"]
+
+[[package]]
+name = "asgiref"
+version = "3.8.1"
+description = "ASGI specs, helper code, and adapters"
+optional = false
+python-versions = ">=3.8"
+groups = ["main"]
+files = [
+    {file = "asgiref-3.8.1-py3-none-any.whl", hash = "sha256:3e1e3ecc849832fe52ccf2cb6686b7a55f82bb1d6aee72a58826471390335e47"},
+    {file = "asgiref-3.8.1.tar.gz", hash = "sha256:c343bd80a0bec947a9860adb4c432ffa7db769836c64238fc34bdc3fec84d590"},
+]
+
+[package.dependencies]
+typing-extensions = {version = ">=4", markers = "python_version < \"3.11\""}
+
+[package.extras]
+tests = ["mypy (>=0.800)", "pytest", "pytest-asyncio"]
+
+[[package]]
+name = "attrs"
+version = "25.1.0"
+description = "Classes Without Boilerplate"
+optional = false
+python-versions = ">=3.8"
+groups = ["main", "dev"]
+files = [
+    {file = "attrs-25.1.0-py3-none-any.whl", hash = "sha256:c75a69e28a550a7e93789579c22aa26b0f5b83b75dc4e08fe092980051e1090a"},
+    {file = "attrs-25.1.0.tar.gz", hash = "sha256:1c97078a80c814273a76b2a298a932eb681c87415c11dee0a6921de7f1b02c3e"},
+]
+
+[package.extras]
+benchmark = ["cloudpickle ; platform_python_implementation == \"CPython\"", "hypothesis", "mypy (>=1.11.1) ; platform_python_implementation == \"CPython\" and python_version >= \"3.10\"", "pympler", "pytest (>=4.3.0)", "pytest-codspeed", "pytest-mypy-plugins ; platform_python_implementation == \"CPython\" and python_version >= \"3.10\"", "pytest-xdist[psutil]"]
+cov = ["cloudpickle ; platform_python_implementation == \"CPython\"", "coverage[toml] (>=5.3)", "hypothesis", "mypy (>=1.11.1) ; platform_python_implementation == \"CPython\" and python_version >= \"3.10\"", "pympler", "pytest (>=4.3.0)", "pytest-mypy-plugins ; platform_python_implementation == \"CPython\" and python_version >= \"3.10\"", "pytest-xdist[psutil]"]
+dev = ["cloudpickle ; platform_python_implementation == \"CPython\"", "hypothesis", "mypy (>=1.11.1) ; platform_python_implementation == \"CPython\" and python_version >= \"3.10\"", "pre-commit-uv", "pympler", "pytest (>=4.3.0)", "pytest-mypy-plugins ; platform_python_implementation == \"CPython\" and python_version >= \"3.10\"", "pytest-xdist[psutil]"]
+docs = ["cogapp", "furo", "myst-parser", "sphinx", "sphinx-notfound-page", "sphinxcontrib-towncrier", "towncrier (<24.7)"]
+tests = ["cloudpickle ; platform_python_implementation == \"CPython\"", "hypothesis", "mypy (>=1.11.1) ; platform_python_implementation == \"CPython\" and python_version >= \"3.10\"", "pympler", "pytest (>=4.3.0)", "pytest-mypy-plugins ; platform_python_implementation == \"CPython\" and python_version >= \"3.10\"", "pytest-xdist[psutil]"]
+tests-mypy = ["mypy (>=1.11.1) ; platform_python_implementation == \"CPython\" and python_version >= \"3.10\"", "pytest-mypy-plugins ; platform_python_implementation == \"CPython\" and python_version >= \"3.10\""]
+
+[[package]]
+name = "autobahn"
+version = "24.4.2"
+description = "WebSocket client & server library, WAMP real-time framework"
+optional = false
+python-versions = ">=3.9"
+groups = ["main"]
+files = [
+    {file = "autobahn-24.4.2-py2.py3-none-any.whl", hash = "sha256:c56a2abe7ac78abbfb778c02892d673a4de58fd004d088cd7ab297db25918e81"},
+    {file = "autobahn-24.4.2.tar.gz", hash = "sha256:a2d71ef1b0cf780b6d11f8b205fd2c7749765e65795f2ea7d823796642ee92c9"},
+]
+
+[package.dependencies]
+cryptography = ">=3.4.6"
+hyperlink = ">=21.0.0"
+setuptools = "*"
+txaio = ">=21.2.1"
+
+[package.extras]
+all = ["PyGObject (>=3.40.0)", "argon2-cffi (>=20.1.0)", "attrs (>=20.3.0)", "base58 (>=2.1.0)", "bitarray (>=2.7.5)", "cbor2 (>=5.2.0)", "cffi (>=1.14.5)", "click (>=8.1.2)", "ecdsa (>=0.16.1)", "eth-abi (>=4.0.0)", "flatbuffers (>=22.12.6)", "hkdf (>=0.0.3)", "jinja2 (>=2.11.3)", "mnemonic (>=0.19)", "msgpack (>=1.0.2) ; platform_python_implementation == \"CPython\"", "passlib (>=1.7.4)", "py-ecc (>=5.1.0)", "py-eth-sig-utils (>=0.4.0)", "py-multihash (>=2.0.1)", "py-ubjson (>=0.16.1)", "pynacl (>=1.4.0)", "pyopenssl (>=20.0.1)", "python-snappy (>=0.6.0)", "pytrie (>=0.4.0)", "qrcode (>=7.3.1)", "rlp (>=2.0.1)", "service-identity (>=18.1.0)", "spake2 (>=0.8)", "twisted (>=20.3.0)", "twisted (>=24.3.0)", "u-msgpack-python (>=2.1) ; platform_python_implementation != \"CPython\"", "ujson (>=4.0.2) ; platform_python_implementation == \"CPython\"", "web3[ipfs] (>=6.0.0)", "xbr (>=21.2.1)", "yapf (==0.29.0)", "zlmdb (>=21.2.1)", "zope.interface (>=5.2.0)"]
+compress = ["python-snappy (>=0.6.0)"]
+dev = ["backports.tempfile (>=1.0)", "build (>=1.2.1)", "bumpversion (>=0.5.3)", "codecov (>=2.0.15)", "flake8 (<5)", "humanize (>=0.5.1)", "mypy (>=0.610) ; python_version >= \"3.4\" and platform_python_implementation != \"PyPy\"", "passlib", "pep8-naming (>=0.3.3)", "pip (>=9.0.1)", "pyenchant (>=1.6.6)", "pyflakes (>=1.0.0)", "pyinstaller (>=4.2)", "pylint (>=1.9.2)", "pytest (>=3.4.2)", "pytest-aiohttp", "pytest-asyncio (>=0.14.0)", "pytest-runner (>=2.11.1)", "pyyaml (>=4.2b4)", "qualname", "sphinx (>=1.7.1)", "sphinx-autoapi (>=1.7.0)", "sphinx-rtd-theme (>=0.1.9)", "sphinxcontrib-images (>=0.9.1)", "tox (>=4.2.8)", "tox-gh-actions (>=2.2.0)", "twine (>=3.3.0)", "twisted (>=22.10.0)", "txaio (>=20.4.1)", "watchdog (>=0.8.3)", "wheel (>=0.36.2)", "yapf (==0.29.0)"]
+encryption = ["pynacl (>=1.4.0)", "pyopenssl (>=20.0.1)", "pytrie (>=0.4.0)", "qrcode (>=7.3.1)", "service-identity (>=18.1.0)"]
+nvx = ["cffi (>=1.14.5)"]
+scram = ["argon2-cffi (>=20.1.0)", "cffi (>=1.14.5)", "passlib (>=1.7.4)"]
+serialization = ["cbor2 (>=5.2.0)", "flatbuffers (>=22.12.6)", "msgpack (>=1.0.2) ; platform_python_implementation == \"CPython\"", "py-ubjson (>=0.16.1)", "u-msgpack-python (>=2.1) ; platform_python_implementation != \"CPython\"", "ujson (>=4.0.2) ; platform_python_implementation == \"CPython\""]
+twisted = ["attrs (>=20.3.0)", "twisted (>=24.3.0)", "zope.interface (>=5.2.0)"]
+ui = ["PyGObject (>=3.40.0)"]
+xbr = ["base58 (>=2.1.0)", "bitarray (>=2.7.5)", "cbor2 (>=5.2.0)", "click (>=8.1.2)", "ecdsa (>=0.16.1)", "eth-abi (>=4.0.0)", "hkdf (>=0.0.3)", "jinja2 (>=2.11.3)", "mnemonic (>=0.19)", "py-ecc (>=5.1.0)", "py-eth-sig-utils (>=0.4.0)", "py-multihash (>=2.0.1)", "rlp (>=2.0.1)", "spake2 (>=0.8)", "twisted (>=20.3.0)", "web3[ipfs] (>=6.0.0)", "xbr (>=21.2.1)", "yapf (==0.29.0)", "zlmdb (>=21.2.1)"]
+
+[[package]]
+name = "automat"
+version = "24.8.1"
+description = "Self-service finite-state machines for the programmer on the go."
+optional = false
+python-versions = ">=3.8"
+groups = ["main"]
+files = [
+    {file = "Automat-24.8.1-py3-none-any.whl", hash = "sha256:bf029a7bc3da1e2c24da2343e7598affaa9f10bf0ab63ff808566ce90551e02a"},
+    {file = "automat-24.8.1.tar.gz", hash = "sha256:b34227cf63f6325b8ad2399ede780675083e439b20c323d376373d8ee6306d88"},
+]
+
+[package.extras]
+visualize = ["Twisted (>=16.1.1)", "graphviz (>0.5.1)"]
+
+[[package]]
+name = "bcrypt"
+version = "4.2.1"
+description = "Modern password hashing for your software and your servers"
+optional = false
+python-versions = ">=3.7"
+groups = ["main"]
+files = [
+    {file = "bcrypt-4.2.1-cp37-abi3-macosx_10_12_universal2.whl", hash = "sha256:1340411a0894b7d3ef562fb233e4b6ed58add185228650942bdc885362f32c17"},
+    {file = "bcrypt-4.2.1-cp37-abi3-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:b1ee315739bc8387aa36ff127afc99120ee452924e0df517a8f3e4c0187a0f5f"},
+    {file = "bcrypt-4.2.1-cp37-abi3-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:8dbd0747208912b1e4ce730c6725cb56c07ac734b3629b60d4398f082ea718ad"},
+    {file = "bcrypt-4.2.1-cp37-abi3-manylinux_2_28_aarch64.whl", hash = "sha256:aaa2e285be097050dba798d537b6efd9b698aa88eef52ec98d23dcd6d7cf6fea"},
+    {file = "bcrypt-4.2.1-cp37-abi3-manylinux_2_28_x86_64.whl", hash = "sha256:76d3e352b32f4eeb34703370e370997065d28a561e4a18afe4fef07249cb4396"},
+    {file = "bcrypt-4.2.1-cp37-abi3-musllinux_1_1_aarch64.whl", hash = "sha256:b7703ede632dc945ed1172d6f24e9f30f27b1b1a067f32f68bf169c5f08d0425"},
+    {file = "bcrypt-4.2.1-cp37-abi3-musllinux_1_1_x86_64.whl", hash = "sha256:89df2aea2c43be1e1fa066df5f86c8ce822ab70a30e4c210968669565c0f4685"},
+    {file = "bcrypt-4.2.1-cp37-abi3-musllinux_1_2_aarch64.whl", hash = "sha256:04e56e3fe8308a88b77e0afd20bec516f74aecf391cdd6e374f15cbed32783d6"},
+    {file = "bcrypt-4.2.1-cp37-abi3-musllinux_1_2_x86_64.whl", hash = "sha256:cfdf3d7530c790432046c40cda41dfee8c83e29482e6a604f8930b9930e94139"},
+    {file = "bcrypt-4.2.1-cp37-abi3-win32.whl", hash = "sha256:adadd36274510a01f33e6dc08f5824b97c9580583bd4487c564fc4617b328005"},
+    {file = "bcrypt-4.2.1-cp37-abi3-win_amd64.whl", hash = "sha256:8c458cd103e6c5d1d85cf600e546a639f234964d0228909d8f8dbeebff82d526"},
+    {file = "bcrypt-4.2.1-cp39-abi3-macosx_10_12_universal2.whl", hash = "sha256:8ad2f4528cbf0febe80e5a3a57d7a74e6635e41af1ea5675282a33d769fba413"},
+    {file = "bcrypt-4.2.1-cp39-abi3-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:909faa1027900f2252a9ca5dfebd25fc0ef1417943824783d1c8418dd7d6df4a"},
+    {file = "bcrypt-4.2.1-cp39-abi3-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:cde78d385d5e93ece5479a0a87f73cd6fa26b171c786a884f955e165032b262c"},
+    {file = "bcrypt-4.2.1-cp39-abi3-manylinux_2_28_aarch64.whl", hash = "sha256:533e7f3bcf2f07caee7ad98124fab7499cb3333ba2274f7a36cf1daee7409d99"},
+    {file = "bcrypt-4.2.1-cp39-abi3-manylinux_2_28_x86_64.whl", hash = "sha256:687cf30e6681eeda39548a93ce9bfbb300e48b4d445a43db4298d2474d2a1e54"},
+    {file = "bcrypt-4.2.1-cp39-abi3-musllinux_1_1_aarch64.whl", hash = "sha256:041fa0155c9004eb98a232d54da05c0b41d4b8e66b6fc3cb71b4b3f6144ba837"},
+    {file = "bcrypt-4.2.1-cp39-abi3-musllinux_1_1_x86_64.whl", hash = "sha256:f85b1ffa09240c89aa2e1ae9f3b1c687104f7b2b9d2098da4e923f1b7082d331"},
+    {file = "bcrypt-4.2.1-cp39-abi3-musllinux_1_2_aarch64.whl", hash = "sha256:c6f5fa3775966cca251848d4d5393ab016b3afed251163c1436fefdec3b02c84"},
+    {file = "bcrypt-4.2.1-cp39-abi3-musllinux_1_2_x86_64.whl", hash = "sha256:807261df60a8b1ccd13e6599c779014a362ae4e795f5c59747f60208daddd96d"},
+    {file = "bcrypt-4.2.1-cp39-abi3-win32.whl", hash = "sha256:b588af02b89d9fad33e5f98f7838bf590d6d692df7153647724a7f20c186f6bf"},
+    {file = "bcrypt-4.2.1-cp39-abi3-win_amd64.whl", hash = "sha256:e84e0e6f8e40a242b11bce56c313edc2be121cec3e0ec2d76fce01f6af33c07c"},
+    {file = "bcrypt-4.2.1-pp310-pypy310_pp73-manylinux_2_28_aarch64.whl", hash = "sha256:76132c176a6d9953cdc83c296aeaed65e1a708485fd55abf163e0d9f8f16ce0e"},
+    {file = "bcrypt-4.2.1-pp310-pypy310_pp73-manylinux_2_28_x86_64.whl", hash = "sha256:e158009a54c4c8bc91d5e0da80920d048f918c61a581f0a63e4e93bb556d362f"},
+    {file = "bcrypt-4.2.1.tar.gz", hash = "sha256:6765386e3ab87f569b276988742039baab087b2cdb01e809d74e74503c2faafe"},
+]
+
+[package.extras]
+tests = ["pytest (>=3.2.1,!=3.3.0)"]
+typecheck = ["mypy"]
+
+[[package]]
+name = "beautifulsoup4"
+version = "4.12.3"
+description = "Screen-scraping library"
+optional = false
+python-versions = ">=3.6.0"
+groups = ["main"]
+files = [
+    {file = "beautifulsoup4-4.12.3-py3-none-any.whl", hash = "sha256:b80878c9f40111313e55da8ba20bdba06d8fa3969fc68304167741bbf9e082ed"},
+    {file = "beautifulsoup4-4.12.3.tar.gz", hash = "sha256:74e3d1928edc070d21748185c46e3fb33490f22f52a3addee9aee0f4f7781051"},
+]
+
+[package.dependencies]
+soupsieve = ">1.2"
+
+[package.extras]
+cchardet = ["cchardet"]
+chardet = ["chardet"]
+charset-normalizer = ["charset-normalizer"]
+html5lib = ["html5lib"]
+lxml = ["lxml"]
+
+[[package]]
+name = "black"
+version = "24.10.0"
+description = "The uncompromising code formatter."
+optional = false
+python-versions = ">=3.9"
+groups = ["dev"]
+files = [
+    {file = "black-24.10.0-cp310-cp310-macosx_10_9_x86_64.whl", hash = "sha256:e6668650ea4b685440857138e5fe40cde4d652633b1bdffc62933d0db4ed9812"},
+    {file = "black-24.10.0-cp310-cp310-macosx_11_0_arm64.whl", hash = "sha256:1c536fcf674217e87b8cc3657b81809d3c085d7bf3ef262ead700da345bfa6ea"},
+    {file = "black-24.10.0-cp310-cp310-manylinux_2_17_x86_64.manylinux2014_x86_64.manylinux_2_28_x86_64.whl", hash = "sha256:649fff99a20bd06c6f727d2a27f401331dc0cc861fb69cde910fe95b01b5928f"},
+    {file = "black-24.10.0-cp310-cp310-win_amd64.whl", hash = "sha256:fe4d6476887de70546212c99ac9bd803d90b42fc4767f058a0baa895013fbb3e"},
+    {file = "black-24.10.0-cp311-cp311-macosx_10_9_x86_64.whl", hash = "sha256:5a2221696a8224e335c28816a9d331a6c2ae15a2ee34ec857dcf3e45dbfa99ad"},
+    {file = "black-24.10.0-cp311-cp311-macosx_11_0_arm64.whl", hash = "sha256:f9da3333530dbcecc1be13e69c250ed8dfa67f43c4005fb537bb426e19200d50"},
+    {file = "black-24.10.0-cp311-cp311-manylinux_2_17_x86_64.manylinux2014_x86_64.manylinux_2_28_x86_64.whl", hash = "sha256:4007b1393d902b48b36958a216c20c4482f601569d19ed1df294a496eb366392"},
+    {file = "black-24.10.0-cp311-cp311-win_amd64.whl", hash = "sha256:394d4ddc64782e51153eadcaaca95144ac4c35e27ef9b0a42e121ae7e57a9175"},
+    {file = "black-24.10.0-cp312-cp312-macosx_10_13_x86_64.whl", hash = "sha256:b5e39e0fae001df40f95bd8cc36b9165c5e2ea88900167bddf258bacef9bbdc3"},
+    {file = "black-24.10.0-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:d37d422772111794b26757c5b55a3eade028aa3fde43121ab7b673d050949d65"},
+    {file = "black-24.10.0-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.manylinux_2_28_x86_64.whl", hash = "sha256:14b3502784f09ce2443830e3133dacf2c0110d45191ed470ecb04d0f5f6fcb0f"},
+    {file = "black-24.10.0-cp312-cp312-win_amd64.whl", hash = "sha256:30d2c30dc5139211dda799758559d1b049f7f14c580c409d6ad925b74a4208a8"},
+    {file = "black-24.10.0-cp313-cp313-macosx_10_13_x86_64.whl", hash = "sha256:1cbacacb19e922a1d75ef2b6ccaefcd6e93a2c05ede32f06a21386a04cedb981"},
+    {file = "black-24.10.0-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:1f93102e0c5bb3907451063e08b9876dbeac810e7da5a8bfb7aeb5a9ef89066b"},
+    {file = "black-24.10.0-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.manylinux_2_28_x86_64.whl", hash = "sha256:ddacb691cdcdf77b96f549cf9591701d8db36b2f19519373d60d31746068dbf2"},
+    {file = "black-24.10.0-cp313-cp313-win_amd64.whl", hash = "sha256:680359d932801c76d2e9c9068d05c6b107f2584b2a5b88831c83962eb9984c1b"},
+    {file = "black-24.10.0-cp39-cp39-macosx_10_9_x86_64.whl", hash = "sha256:17374989640fbca88b6a448129cd1745c5eb8d9547b464f281b251dd00155ccd"},
+    {file = "black-24.10.0-cp39-cp39-macosx_11_0_arm64.whl", hash = "sha256:63f626344343083322233f175aaf372d326de8436f5928c042639a4afbbf1d3f"},
+    {file = "black-24.10.0-cp39-cp39-manylinux_2_17_x86_64.manylinux2014_x86_64.manylinux_2_28_x86_64.whl", hash = "sha256:ccfa1d0cb6200857f1923b602f978386a3a2758a65b52e0950299ea014be6800"},
+    {file = "black-24.10.0-cp39-cp39-win_amd64.whl", hash = "sha256:2cd9c95431d94adc56600710f8813ee27eea544dd118d45896bb734e9d7a0dc7"},
+    {file = "black-24.10.0-py3-none-any.whl", hash = "sha256:3bb2b7a1f7b685f85b11fed1ef10f8a9148bceb49853e47a294a3dd963c1dd7d"},
+    {file = "black-24.10.0.tar.gz", hash = "sha256:846ea64c97afe3bc677b761787993be4991810ecc7a4a937816dd6bddedc4875"},
+]
+
+[package.dependencies]
+click = ">=8.0.0"
+mypy-extensions = ">=0.4.3"
+packaging = ">=22.0"
+pathspec = ">=0.9.0"
+platformdirs = ">=2"
+tomli = {version = ">=1.1.0", markers = "python_version < \"3.11\""}
+typing-extensions = {version = ">=4.0.1", markers = "python_version < \"3.11\""}
+
+[package.extras]
+colorama = ["colorama (>=0.4.3)"]
+d = ["aiohttp (>=3.10)"]
+jupyter = ["ipython (>=7.8.0)", "tokenize-rt (>=3.2.0)"]
+uvloop = ["uvloop (>=0.15.2)"]
+
+[[package]]
+name = "bs4"
+version = "0.0.1"
+description = "Dummy package for Beautiful Soup"
+optional = false
+python-versions = "*"
+groups = ["main"]
+files = [
+    {file = "bs4-0.0.1.tar.gz", hash = "sha256:36ecea1fd7cc5c0c6e4a1ff075df26d50da647b75376626cc186e2212886dd3a"},
+]
+
+[package.dependencies]
+beautifulsoup4 = "*"
+
+[[package]]
+name = "cachetools"
+version = "5.5.1"
+description = "Extensible memoizing collections and decorators"
+optional = false
+python-versions = ">=3.7"
+groups = ["main"]
+files = [
+    {file = "cachetools-5.5.1-py3-none-any.whl", hash = "sha256:b76651fdc3b24ead3c648bbdeeb940c1b04d365b38b4af66788f9ec4a81d42bb"},
+    {file = "cachetools-5.5.1.tar.gz", hash = "sha256:70f238fbba50383ef62e55c6aff6d9673175fe59f7c6782c7a0b9e38f4a9df95"},
+]
+
+[[package]]
+name = "cape-parsers"
+version = "0.1.36"
+description = "CAPE: Malware Configuration Extraction"
+optional = false
+python-versions = "<4.0,>=3.10"
+groups = ["main"]
+files = [
+    {file = "cape_parsers-0.1.36-py3-none-any.whl", hash = "sha256:c0944f8183aaf53d4a6c8f370423ce1134bdc4a7f7b23e37f92f0e061423e229"},
+    {file = "cape_parsers-0.1.36.tar.gz", hash = "sha256:459db9a10a2c09a1dfb386dcec1b7968293d2c6eef417c4179022895e396ddc5"},
+]
+
+[package.dependencies]
+capstone = ">=4.0.2"
+dncil = ">=1.0.2"
+dnfile = ">=0.15.1"
+netstruct = "1.1.2"
+pefile = "*"
+pycryptodomex = ">=3.20.0"
+rat-king-parser = ">=4.1.0"
+ruff = ">=0.7.2"
+unicorn = "2.1.1"
+yara-python = ">=4.5.1"
+
+[package.extras]
+maco = ["maco (==1.1.8)"]
+
+[[package]]
+name = "capstone"
+version = "5.0.5"
+description = "Capstone disassembly engine"
+optional = false
+python-versions = ">=3.8"
+groups = ["main"]
+files = [
+    {file = "capstone-5.0.5-py3-none-macosx_10_9_universal2.whl", hash = "sha256:24db89d74b571659fe6212e756795cd5d394378c50e19e41dbcfb6c087c2f87d"},
+    {file = "capstone-5.0.5-py3-none-macosx_10_9_x86_64.whl", hash = "sha256:15f4b85df176999bbf7eb3f53f0cf2cee728254600c1be21442e2581189309e9"},
+    {file = "capstone-5.0.5-py3-none-macosx_11_0_arm64.whl", hash = "sha256:5416621ac2d243d89b788f1309b143ea1f400da3eb5c47c6a87f1add99732a83"},
+    {file = "capstone-5.0.5-py3-none-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:6ef47da78f44de1cdff1519b360186681fca0097e92046a7d7203d56364f99da"},
+    {file = "capstone-5.0.5-py3-none-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:754968f057d9e5d9c383f2918a1d56d455bfb274bbf307f219180b16e6d5aaeb"},
+    {file = "capstone-5.0.5-py3-none-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:933797f7e2a257a77c3a699316deea92efa120a10d41e22725a96fc82f0a769e"},
+    {file = "capstone-5.0.5-py3-none-musllinux_1_2_aarch64.whl", hash = "sha256:50b646f0c56b0cac5c993dde08b5e5eacf8b1f66031ec8d60154eae6e3c0645e"},
+    {file = "capstone-5.0.5-py3-none-musllinux_1_2_i686.whl", hash = "sha256:cd35b666739d7b79066fc69fd0c145d5ceb6a4131df3db1225ec6dcfa3fe322f"},
+    {file = "capstone-5.0.5-py3-none-musllinux_1_2_x86_64.whl", hash = "sha256:89dac65a1c84670ee30ccaf2ae688c4b27ad514d9dc8738a9826579051e29ecb"},
+    {file = "capstone-5.0.5-py3-none-win_amd64.whl", hash = "sha256:a03b6b42b33bb0739b2436a555e699ac91cd1d1891134269b04e359b607e50e8"},
+    {file = "capstone-5.0.5.tar.gz", hash = "sha256:32346f6019d5351adaaf584ffc60c1e40db6b47d1d049eb924f903eb2b073e87"},
+]
+
+[[package]]
+name = "cart"
+version = "1.2.2"
+description = "CaRT Neutering format"
+optional = false
+python-versions = ">=3.6"
+groups = ["main"]
+markers = "extra == \"maco\""
+files = [
+    {file = "cart-1.2.2-py2.py3-none-any.whl", hash = "sha256:c111398038683c85d3edcadaa3b16183461907bdb613e05cbb60d381f2886309"},
+]
+
+[package.dependencies]
+pycryptodome = "*"
+
+[[package]]
+name = "certifi"
+version = "2025.1.31"
+description = "Python package for providing Mozilla's CA Bundle."
+optional = false
+python-versions = ">=3.6"
+groups = ["main"]
+files = [
+    {file = "certifi-2025.1.31-py3-none-any.whl", hash = "sha256:ca78db4565a652026a4db2bcdf68f2fb589ea80d0be70e03929ed730746b84fe"},
+    {file = "certifi-2025.1.31.tar.gz", hash = "sha256:3d5da6925056f6f18f119200434a4780a94263f10d1c21d032a6f6b2baa20651"},
+]
+
+[[package]]
+name = "cffi"
+version = "1.17.1"
+description = "Foreign Function Interface for Python calling C code."
+optional = false
+python-versions = ">=3.8"
+groups = ["main"]
+files = [
+    {file = "cffi-1.17.1-cp310-cp310-macosx_10_9_x86_64.whl", hash = "sha256:df8b1c11f177bc2313ec4b2d46baec87a5f3e71fc8b45dab2ee7cae86d9aba14"},
+    {file = "cffi-1.17.1-cp310-cp310-macosx_11_0_arm64.whl", hash = "sha256:8f2cdc858323644ab277e9bb925ad72ae0e67f69e804f4898c070998d50b1a67"},
+    {file = "cffi-1.17.1-cp310-cp310-manylinux_2_12_i686.manylinux2010_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:edae79245293e15384b51f88b00613ba9f7198016a5948b5dddf4917d4d26382"},
+    {file = "cffi-1.17.1-cp310-cp310-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:45398b671ac6d70e67da8e4224a065cec6a93541bb7aebe1b198a61b58c7b702"},
+    {file = "cffi-1.17.1-cp310-cp310-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:ad9413ccdeda48c5afdae7e4fa2192157e991ff761e7ab8fdd8926f40b160cc3"},
+    {file = "cffi-1.17.1-cp310-cp310-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:5da5719280082ac6bd9aa7becb3938dc9f9cbd57fac7d2871717b1feb0902ab6"},
+    {file = "cffi-1.17.1-cp310-cp310-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:2bb1a08b8008b281856e5971307cc386a8e9c5b625ac297e853d36da6efe9c17"},
+    {file = "cffi-1.17.1-cp310-cp310-musllinux_1_1_aarch64.whl", hash = "sha256:045d61c734659cc045141be4bae381a41d89b741f795af1dd018bfb532fd0df8"},
+    {file = "cffi-1.17.1-cp310-cp310-musllinux_1_1_i686.whl", hash = "sha256:6883e737d7d9e4899a8a695e00ec36bd4e5e4f18fabe0aca0efe0a4b44cdb13e"},
+    {file = "cffi-1.17.1-cp310-cp310-musllinux_1_1_x86_64.whl", hash = "sha256:6b8b4a92e1c65048ff98cfe1f735ef8f1ceb72e3d5f0c25fdb12087a23da22be"},
+    {file = "cffi-1.17.1-cp310-cp310-win32.whl", hash = "sha256:c9c3d058ebabb74db66e431095118094d06abf53284d9c81f27300d0e0d8bc7c"},
+    {file = "cffi-1.17.1-cp310-cp310-win_amd64.whl", hash = "sha256:0f048dcf80db46f0098ccac01132761580d28e28bc0f78ae0d58048063317e15"},
+    {file = "cffi-1.17.1-cp311-cp311-macosx_10_9_x86_64.whl", hash = "sha256:a45e3c6913c5b87b3ff120dcdc03f6131fa0065027d0ed7ee6190736a74cd401"},
+    {file = "cffi-1.17.1-cp311-cp311-macosx_11_0_arm64.whl", hash = "sha256:30c5e0cb5ae493c04c8b42916e52ca38079f1b235c2f8ae5f4527b963c401caf"},
+    {file = "cffi-1.17.1-cp311-cp311-manylinux_2_12_i686.manylinux2010_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:f75c7ab1f9e4aca5414ed4d8e5c0e303a34f4421f8a0d47a4d019ceff0ab6af4"},
+    {file = "cffi-1.17.1-cp311-cp311-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:a1ed2dd2972641495a3ec98445e09766f077aee98a1c896dcb4ad0d303628e41"},
+    {file = "cffi-1.17.1-cp311-cp311-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:46bf43160c1a35f7ec506d254e5c890f3c03648a4dbac12d624e4490a7046cd1"},
+    {file = "cffi-1.17.1-cp311-cp311-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:a24ed04c8ffd54b0729c07cee15a81d964e6fee0e3d4d342a27b020d22959dc6"},
+    {file = "cffi-1.17.1-cp311-cp311-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:610faea79c43e44c71e1ec53a554553fa22321b65fae24889706c0a84d4ad86d"},
+    {file = "cffi-1.17.1-cp311-cp311-musllinux_1_1_aarch64.whl", hash = "sha256:a9b15d491f3ad5d692e11f6b71f7857e7835eb677955c00cc0aefcd0669adaf6"},
+    {file = "cffi-1.17.1-cp311-cp311-musllinux_1_1_i686.whl", hash = "sha256:de2ea4b5833625383e464549fec1bc395c1bdeeb5f25c4a3a82b5a8c756ec22f"},
+    {file = "cffi-1.17.1-cp311-cp311-musllinux_1_1_x86_64.whl", hash = "sha256:fc48c783f9c87e60831201f2cce7f3b2e4846bf4d8728eabe54d60700b318a0b"},
+    {file = "cffi-1.17.1-cp311-cp311-win32.whl", hash = "sha256:85a950a4ac9c359340d5963966e3e0a94a676bd6245a4b55bc43949eee26a655"},
+    {file = "cffi-1.17.1-cp311-cp311-win_amd64.whl", hash = "sha256:caaf0640ef5f5517f49bc275eca1406b0ffa6aa184892812030f04c2abf589a0"},
+    {file = "cffi-1.17.1-cp312-cp312-macosx_10_9_x86_64.whl", hash = "sha256:805b4371bf7197c329fcb3ead37e710d1bca9da5d583f5073b799d5c5bd1eee4"},
+    {file = "cffi-1.17.1-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:733e99bc2df47476e3848417c5a4540522f234dfd4ef3ab7fafdf555b082ec0c"},
+    {file = "cffi-1.17.1-cp312-cp312-manylinux_2_12_i686.manylinux2010_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:1257bdabf294dceb59f5e70c64a3e2f462c30c7ad68092d01bbbfb1c16b1ba36"},
+    {file = "cffi-1.17.1-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:da95af8214998d77a98cc14e3a3bd00aa191526343078b530ceb0bd710fb48a5"},
+    {file = "cffi-1.17.1-cp312-cp312-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:d63afe322132c194cf832bfec0dc69a99fb9bb6bbd550f161a49e9e855cc78ff"},
+    {file = "cffi-1.17.1-cp312-cp312-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:f79fc4fc25f1c8698ff97788206bb3c2598949bfe0fef03d299eb1b5356ada99"},
+    {file = "cffi-1.17.1-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:b62ce867176a75d03a665bad002af8e6d54644fad99a3c70905c543130e39d93"},
+    {file = "cffi-1.17.1-cp312-cp312-musllinux_1_1_aarch64.whl", hash = "sha256:386c8bf53c502fff58903061338ce4f4950cbdcb23e2902d86c0f722b786bbe3"},
+    {file = "cffi-1.17.1-cp312-cp312-musllinux_1_1_x86_64.whl", hash = "sha256:4ceb10419a9adf4460ea14cfd6bc43d08701f0835e979bf821052f1805850fe8"},
+    {file = "cffi-1.17.1-cp312-cp312-win32.whl", hash = "sha256:a08d7e755f8ed21095a310a693525137cfe756ce62d066e53f502a83dc550f65"},
+    {file = "cffi-1.17.1-cp312-cp312-win_amd64.whl", hash = "sha256:51392eae71afec0d0c8fb1a53b204dbb3bcabcb3c9b807eedf3e1e6ccf2de903"},
+    {file = "cffi-1.17.1-cp313-cp313-macosx_10_13_x86_64.whl", hash = "sha256:f3a2b4222ce6b60e2e8b337bb9596923045681d71e5a082783484d845390938e"},
+    {file = "cffi-1.17.1-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:0984a4925a435b1da406122d4d7968dd861c1385afe3b45ba82b750f229811e2"},
+    {file = "cffi-1.17.1-cp313-cp313-manylinux_2_12_i686.manylinux2010_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:d01b12eeeb4427d3110de311e1774046ad344f5b1a7403101878976ecd7a10f3"},
+    {file = "cffi-1.17.1-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:706510fe141c86a69c8ddc029c7910003a17353970cff3b904ff0686a5927683"},
+    {file = "cffi-1.17.1-cp313-cp313-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:de55b766c7aa2e2a3092c51e0483d700341182f08e67c63630d5b6f200bb28e5"},
+    {file = "cffi-1.17.1-cp313-cp313-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:c59d6e989d07460165cc5ad3c61f9fd8f1b4796eacbd81cee78957842b834af4"},
+    {file = "cffi-1.17.1-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:dd398dbc6773384a17fe0d3e7eeb8d1a21c2200473ee6806bb5e6a8e62bb73dd"},
+    {file = "cffi-1.17.1-cp313-cp313-musllinux_1_1_aarch64.whl", hash = "sha256:3edc8d958eb099c634dace3c7e16560ae474aa3803a5df240542b305d14e14ed"},
+    {file = "cffi-1.17.1-cp313-cp313-musllinux_1_1_x86_64.whl", hash = "sha256:72e72408cad3d5419375fc87d289076ee319835bdfa2caad331e377589aebba9"},
+    {file = "cffi-1.17.1-cp313-cp313-win32.whl", hash = "sha256:e03eab0a8677fa80d646b5ddece1cbeaf556c313dcfac435ba11f107ba117b5d"},
+    {file = "cffi-1.17.1-cp313-cp313-win_amd64.whl", hash = "sha256:f6a16c31041f09ead72d69f583767292f750d24913dadacf5756b966aacb3f1a"},
+    {file = "cffi-1.17.1-cp38-cp38-macosx_10_9_x86_64.whl", hash = "sha256:636062ea65bd0195bc012fea9321aca499c0504409f413dc88af450b57ffd03b"},
+    {file = "cffi-1.17.1-cp38-cp38-manylinux_2_12_i686.manylinux2010_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:c7eac2ef9b63c79431bc4b25f1cd649d7f061a28808cbc6c47b534bd789ef964"},
+    {file = "cffi-1.17.1-cp38-cp38-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:e221cf152cff04059d011ee126477f0d9588303eb57e88923578ace7baad17f9"},
+    {file = "cffi-1.17.1-cp38-cp38-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:31000ec67d4221a71bd3f67df918b1f88f676f1c3b535a7eb473255fdc0b83fc"},
+    {file = "cffi-1.17.1-cp38-cp38-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:6f17be4345073b0a7b8ea599688f692ac3ef23ce28e5df79c04de519dbc4912c"},
+    {file = "cffi-1.17.1-cp38-cp38-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:0e2b1fac190ae3ebfe37b979cc1ce69c81f4e4fe5746bb401dca63a9062cdaf1"},
+    {file = "cffi-1.17.1-cp38-cp38-win32.whl", hash = "sha256:7596d6620d3fa590f677e9ee430df2958d2d6d6de2feeae5b20e82c00b76fbf8"},
+    {file = "cffi-1.17.1-cp38-cp38-win_amd64.whl", hash = "sha256:78122be759c3f8a014ce010908ae03364d00a1f81ab5c7f4a7a5120607ea56e1"},
+    {file = "cffi-1.17.1-cp39-cp39-macosx_10_9_x86_64.whl", hash = "sha256:b2ab587605f4ba0bf81dc0cb08a41bd1c0a5906bd59243d56bad7668a6fc6c16"},
+    {file = "cffi-1.17.1-cp39-cp39-macosx_11_0_arm64.whl", hash = "sha256:28b16024becceed8c6dfbc75629e27788d8a3f9030691a1dbf9821a128b22c36"},
+    {file = "cffi-1.17.1-cp39-cp39-manylinux_2_12_i686.manylinux2010_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:1d599671f396c4723d016dbddb72fe8e0397082b0a77a4fab8028923bec050e8"},
+    {file = "cffi-1.17.1-cp39-cp39-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:ca74b8dbe6e8e8263c0ffd60277de77dcee6c837a3d0881d8c1ead7268c9e576"},
+    {file = "cffi-1.17.1-cp39-cp39-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:f7f5baafcc48261359e14bcd6d9bff6d4b28d9103847c9e136694cb0501aef87"},
+    {file = "cffi-1.17.1-cp39-cp39-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:98e3969bcff97cae1b2def8ba499ea3d6f31ddfdb7635374834cf89a1a08ecf0"},
+    {file = "cffi-1.17.1-cp39-cp39-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:cdf5ce3acdfd1661132f2a9c19cac174758dc2352bfe37d98aa7512c6b7178b3"},
+    {file = "cffi-1.17.1-cp39-cp39-musllinux_1_1_aarch64.whl", hash = "sha256:9755e4345d1ec879e3849e62222a18c7174d65a6a92d5b346b1863912168b595"},
+    {file = "cffi-1.17.1-cp39-cp39-musllinux_1_1_i686.whl", hash = "sha256:f1e22e8c4419538cb197e4dd60acc919d7696e5ef98ee4da4e01d3f8cfa4cc5a"},
+    {file = "cffi-1.17.1-cp39-cp39-musllinux_1_1_x86_64.whl", hash = "sha256:c03e868a0b3bc35839ba98e74211ed2b05d2119be4e8a0f224fba9384f1fe02e"},
+    {file = "cffi-1.17.1-cp39-cp39-win32.whl", hash = "sha256:e31ae45bc2e29f6b2abd0de1cc3b9d5205aa847cafaecb8af1476a609a2f6eb7"},
+    {file = "cffi-1.17.1-cp39-cp39-win_amd64.whl", hash = "sha256:d016c76bdd850f3c626af19b0542c9677ba156e4ee4fccfdd7848803533ef662"},
+    {file = "cffi-1.17.1.tar.gz", hash = "sha256:1c39c6016c32bc48dd54561950ebd6836e1670f2ae46128f67cf49e789c52824"},
+]
+
+[package.dependencies]
+pycparser = "*"
+
+[[package]]
+name = "cfgv"
+version = "3.4.0"
+description = "Validate configuration and produce human readable error messages."
+optional = false
+python-versions = ">=3.8"
+groups = ["dev"]
+files = [
+    {file = "cfgv-3.4.0-py2.py3-none-any.whl", hash = "sha256:b7265b1f29fd3316bfcd2b330d63d024f2bfd8bcb8b0272f8e19a504856c48f9"},
+    {file = "cfgv-3.4.0.tar.gz", hash = "sha256:e52591d4c5f5dead8e0f673fb16db7949d2cfb3f7da4582893288f0ded8fe560"},
+]
+
+[[package]]
+name = "channels"
+version = "3.0.5"
+description = "Brings async, event-driven capabilities to Django. Django 2.2 and up only."
+optional = false
+python-versions = ">=3.7"
+groups = ["main"]
+files = [
+    {file = "channels-3.0.5-py3-none-any.whl", hash = "sha256:3813b8025bf85509769793aca720e6c3b1c5bde1cb253a961252bf0242b60a26"},
+    {file = "channels-3.0.5.tar.gz", hash = "sha256:a3dc3339cc033e7c2afe083fb3dedf74fc5009815967e317e080e7bfdc92ea26"},
+]
+
+[package.dependencies]
+asgiref = ">=3.5.0,<4"
+daphne = ">=3.0,<4"
+Django = ">=2.2"
+
+[package.extras]
+tests = ["async-timeout", "coverage (>=4.5,<5.0)", "pytest", "pytest-asyncio", "pytest-django"]
+
+[[package]]
+name = "chardet"
+version = "4.0.0"
+description = "Universal encoding detector for Python 2 and 3"
+optional = false
+python-versions = ">=2.7, !=3.0.*, !=3.1.*, !=3.2.*, !=3.3.*, !=3.4.*"
+groups = ["main"]
+files = [
+    {file = "chardet-4.0.0-py2.py3-none-any.whl", hash = "sha256:f864054d66fd9118f2e67044ac8981a54775ec5b67aed0441892edb553d21da5"},
+    {file = "chardet-4.0.0.tar.gz", hash = "sha256:0d6f53a15db4120f2b08c94f11e7d93d2c911ee118b6b30a04ec3ee8310179fa"},
+]
+
+[[package]]
+name = "charset-normalizer"
+version = "3.4.1"
+description = "The Real First Universal Charset Detector. Open, modern and actively maintained alternative to Chardet."
+optional = false
+python-versions = ">=3.7"
+groups = ["main"]
+files = [
+    {file = "charset_normalizer-3.4.1-cp310-cp310-macosx_10_9_universal2.whl", hash = "sha256:91b36a978b5ae0ee86c394f5a54d6ef44db1de0815eb43de826d41d21e4af3de"},
+    {file = "charset_normalizer-3.4.1-cp310-cp310-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:7461baadb4dc00fd9e0acbe254e3d7d2112e7f92ced2adc96e54ef6501c5f176"},
+    {file = "charset_normalizer-3.4.1-cp310-cp310-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:e218488cd232553829be0664c2292d3af2eeeb94b32bea483cf79ac6a694e037"},
+    {file = "charset_normalizer-3.4.1-cp310-cp310-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:80ed5e856eb7f30115aaf94e4a08114ccc8813e6ed1b5efa74f9f82e8509858f"},
+    {file = "charset_normalizer-3.4.1-cp310-cp310-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:b010a7a4fd316c3c484d482922d13044979e78d1861f0e0650423144c616a46a"},
+    {file = "charset_normalizer-3.4.1-cp310-cp310-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:4532bff1b8421fd0a320463030c7520f56a79c9024a4e88f01c537316019005a"},
+    {file = "charset_normalizer-3.4.1-cp310-cp310-musllinux_1_2_aarch64.whl", hash = "sha256:d973f03c0cb71c5ed99037b870f2be986c3c05e63622c017ea9816881d2dd247"},
+    {file = "charset_normalizer-3.4.1-cp310-cp310-musllinux_1_2_i686.whl", hash = "sha256:3a3bd0dcd373514dcec91c411ddb9632c0d7d92aed7093b8c3bbb6d69ca74408"},
+    {file = "charset_normalizer-3.4.1-cp310-cp310-musllinux_1_2_ppc64le.whl", hash = "sha256:d9c3cdf5390dcd29aa8056d13e8e99526cda0305acc038b96b30352aff5ff2bb"},
+    {file = "charset_normalizer-3.4.1-cp310-cp310-musllinux_1_2_s390x.whl", hash = "sha256:2bdfe3ac2e1bbe5b59a1a63721eb3b95fc9b6817ae4a46debbb4e11f6232428d"},
+    {file = "charset_normalizer-3.4.1-cp310-cp310-musllinux_1_2_x86_64.whl", hash = "sha256:eab677309cdb30d047996b36d34caeda1dc91149e4fdca0b1a039b3f79d9a807"},
+    {file = "charset_normalizer-3.4.1-cp310-cp310-win32.whl", hash = "sha256:c0429126cf75e16c4f0ad00ee0eae4242dc652290f940152ca8c75c3a4b6ee8f"},
+    {file = "charset_normalizer-3.4.1-cp310-cp310-win_amd64.whl", hash = "sha256:9f0b8b1c6d84c8034a44893aba5e767bf9c7a211e313a9605d9c617d7083829f"},
+    {file = "charset_normalizer-3.4.1-cp311-cp311-macosx_10_9_universal2.whl", hash = "sha256:8bfa33f4f2672964266e940dd22a195989ba31669bd84629f05fab3ef4e2d125"},
+    {file = "charset_normalizer-3.4.1-cp311-cp311-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:28bf57629c75e810b6ae989f03c0828d64d6b26a5e205535585f96093e405ed1"},
+    {file = "charset_normalizer-3.4.1-cp311-cp311-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:f08ff5e948271dc7e18a35641d2f11a4cd8dfd5634f55228b691e62b37125eb3"},
+    {file = "charset_normalizer-3.4.1-cp311-cp311-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:234ac59ea147c59ee4da87a0c0f098e9c8d169f4dc2a159ef720f1a61bbe27cd"},
+    {file = "charset_normalizer-3.4.1-cp311-cp311-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:fd4ec41f914fa74ad1b8304bbc634b3de73d2a0889bd32076342a573e0779e00"},
+    {file = "charset_normalizer-3.4.1-cp311-cp311-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:eea6ee1db730b3483adf394ea72f808b6e18cf3cb6454b4d86e04fa8c4327a12"},
+    {file = "charset_normalizer-3.4.1-cp311-cp311-musllinux_1_2_aarch64.whl", hash = "sha256:c96836c97b1238e9c9e3fe90844c947d5afbf4f4c92762679acfe19927d81d77"},
+    {file = "charset_normalizer-3.4.1-cp311-cp311-musllinux_1_2_i686.whl", hash = "sha256:4d86f7aff21ee58f26dcf5ae81a9addbd914115cdebcbb2217e4f0ed8982e146"},
+    {file = "charset_normalizer-3.4.1-cp311-cp311-musllinux_1_2_ppc64le.whl", hash = "sha256:09b5e6733cbd160dcc09589227187e242a30a49ca5cefa5a7edd3f9d19ed53fd"},
+    {file = "charset_normalizer-3.4.1-cp311-cp311-musllinux_1_2_s390x.whl", hash = "sha256:5777ee0881f9499ed0f71cc82cf873d9a0ca8af166dfa0af8ec4e675b7df48e6"},
+    {file = "charset_normalizer-3.4.1-cp311-cp311-musllinux_1_2_x86_64.whl", hash = "sha256:237bdbe6159cff53b4f24f397d43c6336c6b0b42affbe857970cefbb620911c8"},
+    {file = "charset_normalizer-3.4.1-cp311-cp311-win32.whl", hash = "sha256:8417cb1f36cc0bc7eaba8ccb0e04d55f0ee52df06df3ad55259b9a323555fc8b"},
+    {file = "charset_normalizer-3.4.1-cp311-cp311-win_amd64.whl", hash = "sha256:d7f50a1f8c450f3925cb367d011448c39239bb3eb4117c36a6d354794de4ce76"},
+    {file = "charset_normalizer-3.4.1-cp312-cp312-macosx_10_13_universal2.whl", hash = "sha256:73d94b58ec7fecbc7366247d3b0b10a21681004153238750bb67bd9012414545"},
+    {file = "charset_normalizer-3.4.1-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:dad3e487649f498dd991eeb901125411559b22e8d7ab25d3aeb1af367df5efd7"},
+    {file = "charset_normalizer-3.4.1-cp312-cp312-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:c30197aa96e8eed02200a83fba2657b4c3acd0f0aa4bdc9f6c1af8e8962e0757"},
+    {file = "charset_normalizer-3.4.1-cp312-cp312-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:2369eea1ee4a7610a860d88f268eb39b95cb588acd7235e02fd5a5601773d4fa"},
+    {file = "charset_normalizer-3.4.1-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:bc2722592d8998c870fa4e290c2eec2c1569b87fe58618e67d38b4665dfa680d"},
+    {file = "charset_normalizer-3.4.1-cp312-cp312-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:ffc9202a29ab3920fa812879e95a9e78b2465fd10be7fcbd042899695d75e616"},
+    {file = "charset_normalizer-3.4.1-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:804a4d582ba6e5b747c625bf1255e6b1507465494a40a2130978bda7b932c90b"},
+    {file = "charset_normalizer-3.4.1-cp312-cp312-musllinux_1_2_i686.whl", hash = "sha256:0f55e69f030f7163dffe9fd0752b32f070566451afe180f99dbeeb81f511ad8d"},
+    {file = "charset_normalizer-3.4.1-cp312-cp312-musllinux_1_2_ppc64le.whl", hash = "sha256:c4c3e6da02df6fa1410a7680bd3f63d4f710232d3139089536310d027950696a"},
+    {file = "charset_normalizer-3.4.1-cp312-cp312-musllinux_1_2_s390x.whl", hash = "sha256:5df196eb874dae23dcfb968c83d4f8fdccb333330fe1fc278ac5ceeb101003a9"},
+    {file = "charset_normalizer-3.4.1-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:e358e64305fe12299a08e08978f51fc21fac060dcfcddd95453eabe5b93ed0e1"},
+    {file = "charset_normalizer-3.4.1-cp312-cp312-win32.whl", hash = "sha256:9b23ca7ef998bc739bf6ffc077c2116917eabcc901f88da1b9856b210ef63f35"},
+    {file = "charset_normalizer-3.4.1-cp312-cp312-win_amd64.whl", hash = "sha256:6ff8a4a60c227ad87030d76e99cd1698345d4491638dfa6673027c48b3cd395f"},
+    {file = "charset_normalizer-3.4.1-cp313-cp313-macosx_10_13_universal2.whl", hash = "sha256:aabfa34badd18f1da5ec1bc2715cadc8dca465868a4e73a0173466b688f29dda"},
+    {file = "charset_normalizer-3.4.1-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:22e14b5d70560b8dd51ec22863f370d1e595ac3d024cb8ad7d308b4cd95f8313"},
+    {file = "charset_normalizer-3.4.1-cp313-cp313-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:8436c508b408b82d87dc5f62496973a1805cd46727c34440b0d29d8a2f50a6c9"},
+    {file = "charset_normalizer-3.4.1-cp313-cp313-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:2d074908e1aecee37a7635990b2c6d504cd4766c7bc9fc86d63f9c09af3fa11b"},
+    {file = "charset_normalizer-3.4.1-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:955f8851919303c92343d2f66165294848d57e9bba6cf6e3625485a70a038d11"},
+    {file = "charset_normalizer-3.4.1-cp313-cp313-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:44ecbf16649486d4aebafeaa7ec4c9fed8b88101f4dd612dcaf65d5e815f837f"},
+    {file = "charset_normalizer-3.4.1-cp313-cp313-musllinux_1_2_aarch64.whl", hash = "sha256:0924e81d3d5e70f8126529951dac65c1010cdf117bb75eb02dd12339b57749dd"},
+    {file = "charset_normalizer-3.4.1-cp313-cp313-musllinux_1_2_i686.whl", hash = "sha256:2967f74ad52c3b98de4c3b32e1a44e32975e008a9cd2a8cc8966d6a5218c5cb2"},
+    {file = "charset_normalizer-3.4.1-cp313-cp313-musllinux_1_2_ppc64le.whl", hash = "sha256:c75cb2a3e389853835e84a2d8fb2b81a10645b503eca9bcb98df6b5a43eb8886"},
+    {file = "charset_normalizer-3.4.1-cp313-cp313-musllinux_1_2_s390x.whl", hash = "sha256:09b26ae6b1abf0d27570633b2b078a2a20419c99d66fb2823173d73f188ce601"},
+    {file = "charset_normalizer-3.4.1-cp313-cp313-musllinux_1_2_x86_64.whl", hash = "sha256:fa88b843d6e211393a37219e6a1c1df99d35e8fd90446f1118f4216e307e48cd"},
+    {file = "charset_normalizer-3.4.1-cp313-cp313-win32.whl", hash = "sha256:eb8178fe3dba6450a3e024e95ac49ed3400e506fd4e9e5c32d30adda88cbd407"},
+    {file = "charset_normalizer-3.4.1-cp313-cp313-win_amd64.whl", hash = "sha256:b1ac5992a838106edb89654e0aebfc24f5848ae2547d22c2c3f66454daa11971"},
+    {file = "charset_normalizer-3.4.1-cp37-cp37m-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:f30bf9fd9be89ecb2360c7d94a711f00c09b976258846efe40db3d05828e8089"},
+    {file = "charset_normalizer-3.4.1-cp37-cp37m-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:97f68b8d6831127e4787ad15e6757232e14e12060bec17091b85eb1486b91d8d"},
+    {file = "charset_normalizer-3.4.1-cp37-cp37m-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:7974a0b5ecd505609e3b19742b60cee7aa2aa2fb3151bc917e6e2646d7667dcf"},
+    {file = "charset_normalizer-3.4.1-cp37-cp37m-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:fc54db6c8593ef7d4b2a331b58653356cf04f67c960f584edb7c3d8c97e8f39e"},
+    {file = "charset_normalizer-3.4.1-cp37-cp37m-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:311f30128d7d333eebd7896965bfcfbd0065f1716ec92bd5638d7748eb6f936a"},
+    {file = "charset_normalizer-3.4.1-cp37-cp37m-musllinux_1_2_aarch64.whl", hash = "sha256:7d053096f67cd1241601111b698f5cad775f97ab25d81567d3f59219b5f1adbd"},
+    {file = "charset_normalizer-3.4.1-cp37-cp37m-musllinux_1_2_i686.whl", hash = "sha256:807f52c1f798eef6cf26beb819eeb8819b1622ddfeef9d0977a8502d4db6d534"},
+    {file = "charset_normalizer-3.4.1-cp37-cp37m-musllinux_1_2_ppc64le.whl", hash = "sha256:dccbe65bd2f7f7ec22c4ff99ed56faa1e9f785482b9bbd7c717e26fd723a1d1e"},
+    {file = "charset_normalizer-3.4.1-cp37-cp37m-musllinux_1_2_s390x.whl", hash = "sha256:2fb9bd477fdea8684f78791a6de97a953c51831ee2981f8e4f583ff3b9d9687e"},
+    {file = "charset_normalizer-3.4.1-cp37-cp37m-musllinux_1_2_x86_64.whl", hash = "sha256:01732659ba9b5b873fc117534143e4feefecf3b2078b0a6a2e925271bb6f4cfa"},
+    {file = "charset_normalizer-3.4.1-cp37-cp37m-win32.whl", hash = "sha256:7a4f97a081603d2050bfaffdefa5b02a9ec823f8348a572e39032caa8404a487"},
+    {file = "charset_normalizer-3.4.1-cp37-cp37m-win_amd64.whl", hash = "sha256:7b1bef6280950ee6c177b326508f86cad7ad4dff12454483b51d8b7d673a2c5d"},
+    {file = "charset_normalizer-3.4.1-cp38-cp38-macosx_10_9_universal2.whl", hash = "sha256:ecddf25bee22fe4fe3737a399d0d177d72bc22be6913acfab364b40bce1ba83c"},
+    {file = "charset_normalizer-3.4.1-cp38-cp38-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:8c60ca7339acd497a55b0ea5d506b2a2612afb2826560416f6894e8b5770d4a9"},
+    {file = "charset_normalizer-3.4.1-cp38-cp38-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:b7b2d86dd06bfc2ade3312a83a5c364c7ec2e3498f8734282c6c3d4b07b346b8"},
+    {file = "charset_normalizer-3.4.1-cp38-cp38-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:dd78cfcda14a1ef52584dbb008f7ac81c1328c0f58184bf9a84c49c605002da6"},
+    {file = "charset_normalizer-3.4.1-cp38-cp38-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:6e27f48bcd0957c6d4cb9d6fa6b61d192d0b13d5ef563e5f2ae35feafc0d179c"},
+    {file = "charset_normalizer-3.4.1-cp38-cp38-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:01ad647cdd609225c5350561d084b42ddf732f4eeefe6e678765636791e78b9a"},
+    {file = "charset_normalizer-3.4.1-cp38-cp38-musllinux_1_2_aarch64.whl", hash = "sha256:619a609aa74ae43d90ed2e89bdd784765de0a25ca761b93e196d938b8fd1dbbd"},
+    {file = "charset_normalizer-3.4.1-cp38-cp38-musllinux_1_2_i686.whl", hash = "sha256:89149166622f4db9b4b6a449256291dc87a99ee53151c74cbd82a53c8c2f6ccd"},
+    {file = "charset_normalizer-3.4.1-cp38-cp38-musllinux_1_2_ppc64le.whl", hash = "sha256:7709f51f5f7c853f0fb938bcd3bc59cdfdc5203635ffd18bf354f6967ea0f824"},
+    {file = "charset_normalizer-3.4.1-cp38-cp38-musllinux_1_2_s390x.whl", hash = "sha256:345b0426edd4e18138d6528aed636de7a9ed169b4aaf9d61a8c19e39d26838ca"},
+    {file = "charset_normalizer-3.4.1-cp38-cp38-musllinux_1_2_x86_64.whl", hash = "sha256:0907f11d019260cdc3f94fbdb23ff9125f6b5d1039b76003b5b0ac9d6a6c9d5b"},
+    {file = "charset_normalizer-3.4.1-cp38-cp38-win32.whl", hash = "sha256:ea0d8d539afa5eb2728aa1932a988a9a7af94f18582ffae4bc10b3fbdad0626e"},
+    {file = "charset_normalizer-3.4.1-cp38-cp38-win_amd64.whl", hash = "sha256:329ce159e82018d646c7ac45b01a430369d526569ec08516081727a20e9e4af4"},
+    {file = "charset_normalizer-3.4.1-cp39-cp39-macosx_10_9_universal2.whl", hash = "sha256:b97e690a2118911e39b4042088092771b4ae3fc3aa86518f84b8cf6888dbdb41"},
+    {file = "charset_normalizer-3.4.1-cp39-cp39-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:78baa6d91634dfb69ec52a463534bc0df05dbd546209b79a3880a34487f4b84f"},
+    {file = "charset_normalizer-3.4.1-cp39-cp39-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:1a2bc9f351a75ef49d664206d51f8e5ede9da246602dc2d2726837620ea034b2"},
+    {file = "charset_normalizer-3.4.1-cp39-cp39-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:75832c08354f595c760a804588b9357d34ec00ba1c940c15e31e96d902093770"},
+    {file = "charset_normalizer-3.4.1-cp39-cp39-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:0af291f4fe114be0280cdd29d533696a77b5b49cfde5467176ecab32353395c4"},
+    {file = "charset_normalizer-3.4.1-cp39-cp39-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:0167ddc8ab6508fe81860a57dd472b2ef4060e8d378f0cc555707126830f2537"},
+    {file = "charset_normalizer-3.4.1-cp39-cp39-musllinux_1_2_aarch64.whl", hash = "sha256:2a75d49014d118e4198bcee5ee0a6f25856b29b12dbf7cd012791f8a6cc5c496"},
+    {file = "charset_normalizer-3.4.1-cp39-cp39-musllinux_1_2_i686.whl", hash = "sha256:363e2f92b0f0174b2f8238240a1a30142e3db7b957a5dd5689b0e75fb717cc78"},
+    {file = "charset_normalizer-3.4.1-cp39-cp39-musllinux_1_2_ppc64le.whl", hash = "sha256:ab36c8eb7e454e34e60eb55ca5d241a5d18b2c6244f6827a30e451c42410b5f7"},
+    {file = "charset_normalizer-3.4.1-cp39-cp39-musllinux_1_2_s390x.whl", hash = "sha256:4c0907b1928a36d5a998d72d64d8eaa7244989f7aaaf947500d3a800c83a3fd6"},
+    {file = "charset_normalizer-3.4.1-cp39-cp39-musllinux_1_2_x86_64.whl", hash = "sha256:04432ad9479fa40ec0f387795ddad4437a2b50417c69fa275e212933519ff294"},
+    {file = "charset_normalizer-3.4.1-cp39-cp39-win32.whl", hash = "sha256:3bed14e9c89dcb10e8f3a29f9ccac4955aebe93c71ae803af79265c9ca5644c5"},
+    {file = "charset_normalizer-3.4.1-cp39-cp39-win_amd64.whl", hash = "sha256:49402233c892a461407c512a19435d1ce275543138294f7ef013f0b63d5d3765"},
+    {file = "charset_normalizer-3.4.1-py3-none-any.whl", hash = "sha256:d98b1668f06378c6dbefec3b92299716b931cd4e6061f3c875a71ced1780ab85"},
+    {file = "charset_normalizer-3.4.1.tar.gz", hash = "sha256:44251f18cd68a75b56585dd00dae26183e102cd5e0f9f1466e6df5da2ed64ea3"},
+]
+
+[[package]]
+name = "click"
+version = "8.1.8"
+description = "Composable command line interface toolkit"
+optional = false
+python-versions = ">=3.7"
+groups = ["main", "dev"]
+files = [
+    {file = "click-8.1.8-py3-none-any.whl", hash = "sha256:63c132bbbed01578a06712a2d1f497bb62d9c1c0d329b7903a866228027263b2"},
+    {file = "click-8.1.8.tar.gz", hash = "sha256:ed53c9d8990d83c2a27deae68e4ee337473f6330c040a31d4225c9574d16096a"},
+]
+
+[package.dependencies]
+colorama = {version = "*", markers = "platform_system == \"Windows\""}
+
+[[package]]
+name = "colorama"
+version = "0.4.6"
+description = "Cross-platform colored terminal text."
+optional = false
+python-versions = "!=3.0.*,!=3.1.*,!=3.2.*,!=3.3.*,!=3.4.*,!=3.5.*,!=3.6.*,>=2.7"
+groups = ["main", "dev"]
+files = [
+    {file = "colorama-0.4.6-py2.py3-none-any.whl", hash = "sha256:4f1d9991f5acc0ca119f9d443620b77f9d6b33703e51011c16baf57afb285fc6"},
+    {file = "colorama-0.4.6.tar.gz", hash = "sha256:08695f5cb7ed6e0531a20572697297273c47b8cae5a63ffc6d6ed5c201be6e44"},
+]
+markers = {dev = "platform_system == \"Windows\" or sys_platform == \"win32\""}
+
+[[package]]
+name = "colorclass"
+version = "2.2.2"
+description = "Colorful worry-free console applications for Linux, Mac OS X, and Windows."
+optional = false
+python-versions = ">=2.6"
+groups = ["main"]
+files = [
+    {file = "colorclass-2.2.2-py2.py3-none-any.whl", hash = "sha256:6f10c273a0ef7a1150b1120b6095cbdd68e5cf36dfd5d0fc957a2500bbf99a55"},
+    {file = "colorclass-2.2.2.tar.gz", hash = "sha256:6d4fe287766166a98ca7bc6f6312daf04a0481b1eda43e7173484051c0ab4366"},
+]
+
+[[package]]
+name = "constantly"
+version = "23.10.4"
+description = "Symbolic constants in Python"
+optional = false
+python-versions = ">=3.8"
+groups = ["main"]
+files = [
+    {file = "constantly-23.10.4-py3-none-any.whl", hash = "sha256:3fd9b4d1c3dc1ec9757f3c52aef7e53ad9323dbe39f51dfd4c43853b68dfa3f9"},
+    {file = "constantly-23.10.4.tar.gz", hash = "sha256:aa92b70a33e2ac0bb33cd745eb61776594dc48764b06c35e0efd050b7f1c7cbd"},
+]
+
+[[package]]
+name = "coverage"
+version = "7.6.10"
+description = "Code coverage measurement for Python"
+optional = false
+python-versions = ">=3.9"
+groups = ["dev"]
+files = [
+    {file = "coverage-7.6.10-cp310-cp310-macosx_10_9_x86_64.whl", hash = "sha256:5c912978f7fbf47ef99cec50c4401340436d200d41d714c7a4766f377c5b7b78"},
+    {file = "coverage-7.6.10-cp310-cp310-macosx_11_0_arm64.whl", hash = "sha256:a01ec4af7dfeb96ff0078ad9a48810bb0cc8abcb0115180c6013a6b26237626c"},
+    {file = "coverage-7.6.10-cp310-cp310-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:a3b204c11e2b2d883946fe1d97f89403aa1811df28ce0447439178cc7463448a"},
+    {file = "coverage-7.6.10-cp310-cp310-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:32ee6d8491fcfc82652a37109f69dee9a830e9379166cb73c16d8dc5c2915165"},
+    {file = "coverage-7.6.10-cp310-cp310-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:675cefc4c06e3b4c876b85bfb7c59c5e2218167bbd4da5075cbe3b5790a28988"},
+    {file = "coverage-7.6.10-cp310-cp310-musllinux_1_2_aarch64.whl", hash = "sha256:f4f620668dbc6f5e909a0946a877310fb3d57aea8198bde792aae369ee1c23b5"},
+    {file = "coverage-7.6.10-cp310-cp310-musllinux_1_2_i686.whl", hash = "sha256:4eea95ef275de7abaef630c9b2c002ffbc01918b726a39f5a4353916ec72d2f3"},
+    {file = "coverage-7.6.10-cp310-cp310-musllinux_1_2_x86_64.whl", hash = "sha256:e2f0280519e42b0a17550072861e0bc8a80a0870de260f9796157d3fca2733c5"},
+    {file = "coverage-7.6.10-cp310-cp310-win32.whl", hash = "sha256:bc67deb76bc3717f22e765ab3e07ee9c7a5e26b9019ca19a3b063d9f4b874244"},
+    {file = "coverage-7.6.10-cp310-cp310-win_amd64.whl", hash = "sha256:0f460286cb94036455e703c66988851d970fdfd8acc2a1122ab7f4f904e4029e"},
+    {file = "coverage-7.6.10-cp311-cp311-macosx_10_9_x86_64.whl", hash = "sha256:ea3c8f04b3e4af80e17bab607c386a830ffc2fb88a5484e1df756478cf70d1d3"},
+    {file = "coverage-7.6.10-cp311-cp311-macosx_11_0_arm64.whl", hash = "sha256:507a20fc863cae1d5720797761b42d2d87a04b3e5aeb682ef3b7332e90598f43"},
+    {file = "coverage-7.6.10-cp311-cp311-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:d37a84878285b903c0fe21ac8794c6dab58150e9359f1aaebbeddd6412d53132"},
+    {file = "coverage-7.6.10-cp311-cp311-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:a534738b47b0de1995f85f582d983d94031dffb48ab86c95bdf88dc62212142f"},
+    {file = "coverage-7.6.10-cp311-cp311-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:0d7a2bf79378d8fb8afaa994f91bfd8215134f8631d27eba3e0e2c13546ce994"},
+    {file = "coverage-7.6.10-cp311-cp311-musllinux_1_2_aarch64.whl", hash = "sha256:6713ba4b4ebc330f3def51df1d5d38fad60b66720948112f114968feb52d3f99"},
+    {file = "coverage-7.6.10-cp311-cp311-musllinux_1_2_i686.whl", hash = "sha256:ab32947f481f7e8c763fa2c92fd9f44eeb143e7610c4ca9ecd6a36adab4081bd"},
+    {file = "coverage-7.6.10-cp311-cp311-musllinux_1_2_x86_64.whl", hash = "sha256:7bbd8c8f1b115b892e34ba66a097b915d3871db7ce0e6b9901f462ff3a975377"},
+    {file = "coverage-7.6.10-cp311-cp311-win32.whl", hash = "sha256:299e91b274c5c9cdb64cbdf1b3e4a8fe538a7a86acdd08fae52301b28ba297f8"},
+    {file = "coverage-7.6.10-cp311-cp311-win_amd64.whl", hash = "sha256:489a01f94aa581dbd961f306e37d75d4ba16104bbfa2b0edb21d29b73be83609"},
+    {file = "coverage-7.6.10-cp312-cp312-macosx_10_13_x86_64.whl", hash = "sha256:27c6e64726b307782fa5cbe531e7647aee385a29b2107cd87ba7c0105a5d3853"},
+    {file = "coverage-7.6.10-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:c56e097019e72c373bae32d946ecf9858fda841e48d82df7e81c63ac25554078"},
+    {file = "coverage-7.6.10-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:c7827a5bc7bdb197b9e066cdf650b2887597ad124dd99777332776f7b7c7d0d0"},
+    {file = "coverage-7.6.10-cp312-cp312-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:204a8238afe787323a8b47d8be4df89772d5c1e4651b9ffa808552bdf20e1d50"},
+    {file = "coverage-7.6.10-cp312-cp312-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:e67926f51821b8e9deb6426ff3164870976fe414d033ad90ea75e7ed0c2e5022"},
+    {file = "coverage-7.6.10-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:e78b270eadb5702938c3dbe9367f878249b5ef9a2fcc5360ac7bff694310d17b"},
+    {file = "coverage-7.6.10-cp312-cp312-musllinux_1_2_i686.whl", hash = "sha256:714f942b9c15c3a7a5fe6876ce30af831c2ad4ce902410b7466b662358c852c0"},
+    {file = "coverage-7.6.10-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:abb02e2f5a3187b2ac4cd46b8ced85a0858230b577ccb2c62c81482ca7d18852"},
+    {file = "coverage-7.6.10-cp312-cp312-win32.whl", hash = "sha256:55b201b97286cf61f5e76063f9e2a1d8d2972fc2fcfd2c1272530172fd28c359"},
+    {file = "coverage-7.6.10-cp312-cp312-win_amd64.whl", hash = "sha256:e4ae5ac5e0d1e4edfc9b4b57b4cbecd5bc266a6915c500f358817a8496739247"},
+    {file = "coverage-7.6.10-cp313-cp313-macosx_10_13_x86_64.whl", hash = "sha256:05fca8ba6a87aabdd2d30d0b6c838b50510b56cdcfc604d40760dae7153b73d9"},
+    {file = "coverage-7.6.10-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:9e80eba8801c386f72e0712a0453431259c45c3249f0009aff537a517b52942b"},
+    {file = "coverage-7.6.10-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:a372c89c939d57abe09e08c0578c1d212e7a678135d53aa16eec4430adc5e690"},
+    {file = "coverage-7.6.10-cp313-cp313-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:ec22b5e7fe7a0fa8509181c4aac1db48f3dd4d3a566131b313d1efc102892c18"},
+    {file = "coverage-7.6.10-cp313-cp313-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:26bcf5c4df41cad1b19c84af71c22cbc9ea9a547fc973f1f2cc9a290002c8b3c"},
+    {file = "coverage-7.6.10-cp313-cp313-musllinux_1_2_aarch64.whl", hash = "sha256:4e4630c26b6084c9b3cb53b15bd488f30ceb50b73c35c5ad7871b869cb7365fd"},
+    {file = "coverage-7.6.10-cp313-cp313-musllinux_1_2_i686.whl", hash = "sha256:2396e8116db77789f819d2bc8a7e200232b7a282c66e0ae2d2cd84581a89757e"},
+    {file = "coverage-7.6.10-cp313-cp313-musllinux_1_2_x86_64.whl", hash = "sha256:79109c70cc0882e4d2d002fe69a24aa504dec0cc17169b3c7f41a1d341a73694"},
+    {file = "coverage-7.6.10-cp313-cp313-win32.whl", hash = "sha256:9e1747bab246d6ff2c4f28b4d186b205adced9f7bd9dc362051cc37c4a0c7bd6"},
+    {file = "coverage-7.6.10-cp313-cp313-win_amd64.whl", hash = "sha256:254f1a3b1eef5f7ed23ef265eaa89c65c8c5b6b257327c149db1ca9d4a35f25e"},
+    {file = "coverage-7.6.10-cp313-cp313t-macosx_10_13_x86_64.whl", hash = "sha256:2ccf240eb719789cedbb9fd1338055de2761088202a9a0b73032857e53f612fe"},
+    {file = "coverage-7.6.10-cp313-cp313t-macosx_11_0_arm64.whl", hash = "sha256:0c807ca74d5a5e64427c8805de15b9ca140bba13572d6d74e262f46f50b13273"},
+    {file = "coverage-7.6.10-cp313-cp313t-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:2bcfa46d7709b5a7ffe089075799b902020b62e7ee56ebaed2f4bdac04c508d8"},
+    {file = "coverage-7.6.10-cp313-cp313t-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:4e0de1e902669dccbf80b0415fb6b43d27edca2fbd48c74da378923b05316098"},
+    {file = "coverage-7.6.10-cp313-cp313t-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:3f7b444c42bbc533aaae6b5a2166fd1a797cdb5eb58ee51a92bee1eb94a1e1cb"},
+    {file = "coverage-7.6.10-cp313-cp313t-musllinux_1_2_aarch64.whl", hash = "sha256:b330368cb99ef72fcd2dc3ed260adf67b31499584dc8a20225e85bfe6f6cfed0"},
+    {file = "coverage-7.6.10-cp313-cp313t-musllinux_1_2_i686.whl", hash = "sha256:9a7cfb50515f87f7ed30bc882f68812fd98bc2852957df69f3003d22a2aa0abf"},
+    {file = "coverage-7.6.10-cp313-cp313t-musllinux_1_2_x86_64.whl", hash = "sha256:6f93531882a5f68c28090f901b1d135de61b56331bba82028489bc51bdd818d2"},
+    {file = "coverage-7.6.10-cp313-cp313t-win32.whl", hash = "sha256:89d76815a26197c858f53c7f6a656686ec392b25991f9e409bcef020cd532312"},
+    {file = "coverage-7.6.10-cp313-cp313t-win_amd64.whl", hash = "sha256:54a5f0f43950a36312155dae55c505a76cd7f2b12d26abeebbe7a0b36dbc868d"},
+    {file = "coverage-7.6.10-cp39-cp39-macosx_10_9_x86_64.whl", hash = "sha256:656c82b8a0ead8bba147de9a89bda95064874c91a3ed43a00e687f23cc19d53a"},
+    {file = "coverage-7.6.10-cp39-cp39-macosx_11_0_arm64.whl", hash = "sha256:ccc2b70a7ed475c68ceb548bf69cec1e27305c1c2606a5eb7c3afff56a1b3b27"},
+    {file = "coverage-7.6.10-cp39-cp39-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:a5e37dc41d57ceba70956fa2fc5b63c26dba863c946ace9705f8eca99daecdc4"},
+    {file = "coverage-7.6.10-cp39-cp39-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:0aa9692b4fdd83a4647eeb7db46410ea1322b5ed94cd1715ef09d1d5922ba87f"},
+    {file = "coverage-7.6.10-cp39-cp39-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:aa744da1820678b475e4ba3dfd994c321c5b13381d1041fe9c608620e6676e25"},
+    {file = "coverage-7.6.10-cp39-cp39-musllinux_1_2_aarch64.whl", hash = "sha256:c0b1818063dc9e9d838c09e3a473c1422f517889436dd980f5d721899e66f315"},
+    {file = "coverage-7.6.10-cp39-cp39-musllinux_1_2_i686.whl", hash = "sha256:59af35558ba08b758aec4d56182b222976330ef8d2feacbb93964f576a7e7a90"},
+    {file = "coverage-7.6.10-cp39-cp39-musllinux_1_2_x86_64.whl", hash = "sha256:7ed2f37cfce1ce101e6dffdfd1c99e729dd2ffc291d02d3e2d0af8b53d13840d"},
+    {file = "coverage-7.6.10-cp39-cp39-win32.whl", hash = "sha256:4bcc276261505d82f0ad426870c3b12cb177752834a633e737ec5ee79bbdff18"},
+    {file = "coverage-7.6.10-cp39-cp39-win_amd64.whl", hash = "sha256:457574f4599d2b00f7f637a0700a6422243b3565509457b2dbd3f50703e11f59"},
+    {file = "coverage-7.6.10-pp39.pp310-none-any.whl", hash = "sha256:fd34e7b3405f0cc7ab03d54a334c17a9e802897580d964bd8c2001f4b9fd488f"},
+    {file = "coverage-7.6.10.tar.gz", hash = "sha256:7fb105327c8f8f0682e29843e2ff96af9dcbe5bab8eeb4b398c6a33a16d80a23"},
+]
+
+[package.dependencies]
+tomli = {version = "*", optional = true, markers = "python_full_version <= \"3.11.0a6\" and extra == \"toml\""}
+
+[package.extras]
+toml = ["tomli ; python_full_version <= \"3.11.0a6\""]
+
+[[package]]
+name = "crispy-bootstrap4"
+version = "2024.10"
+description = "Bootstrap4 template pack for django-crispy-forms"
+optional = false
+python-versions = ">=3.8"
+groups = ["main"]
+files = [
+    {file = "crispy-bootstrap4-2024.10.tar.gz", hash = "sha256:503e8922b0f3b5262a6fdf303a3a94eb2a07514812f1ca130b88f7c02dd25e2b"},
+    {file = "crispy_bootstrap4-2024.10-py3-none-any.whl", hash = "sha256:138a97884044ae4c4799c80595b36c42066e4e933431e2e971611e251c84f96c"},
+]
+
+[package.dependencies]
+django = ">=4.2"
+django-crispy-forms = ">=2.3"
+
+[[package]]
+name = "crudini"
+version = "0.9.5"
+description = "A utility for manipulating ini files"
+optional = false
+python-versions = "*"
+groups = ["main"]
+files = [
+    {file = "crudini-0.9.5-py2.py3-none-any.whl", hash = "sha256:84bc208dc7d89571bdc3c99274259d0b32d6b3a692d4255524f2eb4b64e9195c"},
+    {file = "crudini-0.9.5.tar.gz", hash = "sha256:59ae650f45af82a64afc33eb876909ee0c4888dc4e8711ef59731c1edfda5e24"},
+]
+
+[package.dependencies]
+iniparse = ">=0.5"
+
+[[package]]
+name = "cryptography"
+version = "44.0.1"
+description = "cryptography is a package which provides cryptographic recipes and primitives to Python developers."
+optional = false
+python-versions = "!=3.9.0,!=3.9.1,>=3.7"
+groups = ["main"]
+files = [
+    {file = "cryptography-44.0.1-cp37-abi3-macosx_10_9_universal2.whl", hash = "sha256:bf688f615c29bfe9dfc44312ca470989279f0e94bb9f631f85e3459af8efc009"},
+    {file = "cryptography-44.0.1-cp37-abi3-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:dd7c7e2d71d908dc0f8d2027e1604102140d84b155e658c20e8ad1304317691f"},
+    {file = "cryptography-44.0.1-cp37-abi3-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:887143b9ff6bad2b7570da75a7fe8bbf5f65276365ac259a5d2d5147a73775f2"},
+    {file = "cryptography-44.0.1-cp37-abi3-manylinux_2_28_aarch64.whl", hash = "sha256:322eb03ecc62784536bc173f1483e76747aafeb69c8728df48537eb431cd1911"},
+    {file = "cryptography-44.0.1-cp37-abi3-manylinux_2_28_armv7l.manylinux_2_31_armv7l.whl", hash = "sha256:21377472ca4ada2906bc313168c9dc7b1d7ca417b63c1c3011d0c74b7de9ae69"},
+    {file = "cryptography-44.0.1-cp37-abi3-manylinux_2_28_x86_64.whl", hash = "sha256:df978682c1504fc93b3209de21aeabf2375cb1571d4e61907b3e7a2540e83026"},
+    {file = "cryptography-44.0.1-cp37-abi3-manylinux_2_34_aarch64.whl", hash = "sha256:eb3889330f2a4a148abead555399ec9a32b13b7c8ba969b72d8e500eb7ef84cd"},
+    {file = "cryptography-44.0.1-cp37-abi3-manylinux_2_34_x86_64.whl", hash = "sha256:8e6a85a93d0642bd774460a86513c5d9d80b5c002ca9693e63f6e540f1815ed0"},
+    {file = "cryptography-44.0.1-cp37-abi3-musllinux_1_2_aarch64.whl", hash = "sha256:6f76fdd6fd048576a04c5210d53aa04ca34d2ed63336d4abd306d0cbe298fddf"},
+    {file = "cryptography-44.0.1-cp37-abi3-musllinux_1_2_x86_64.whl", hash = "sha256:6c8acf6f3d1f47acb2248ec3ea261171a671f3d9428e34ad0357148d492c7864"},
+    {file = "cryptography-44.0.1-cp37-abi3-win32.whl", hash = "sha256:24979e9f2040c953a94bf3c6782e67795a4c260734e5264dceea65c8f4bae64a"},
+    {file = "cryptography-44.0.1-cp37-abi3-win_amd64.whl", hash = "sha256:fd0ee90072861e276b0ff08bd627abec29e32a53b2be44e41dbcdf87cbee2b00"},
+    {file = "cryptography-44.0.1-cp39-abi3-macosx_10_9_universal2.whl", hash = "sha256:a2d8a7045e1ab9b9f803f0d9531ead85f90c5f2859e653b61497228b18452008"},
+    {file = "cryptography-44.0.1-cp39-abi3-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:b8272f257cf1cbd3f2e120f14c68bff2b6bdfcc157fafdee84a1b795efd72862"},
+    {file = "cryptography-44.0.1-cp39-abi3-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:1e8d181e90a777b63f3f0caa836844a1182f1f265687fac2115fcf245f5fbec3"},
+    {file = "cryptography-44.0.1-cp39-abi3-manylinux_2_28_aarch64.whl", hash = "sha256:436df4f203482f41aad60ed1813811ac4ab102765ecae7a2bbb1dbb66dcff5a7"},
+    {file = "cryptography-44.0.1-cp39-abi3-manylinux_2_28_armv7l.manylinux_2_31_armv7l.whl", hash = "sha256:4f422e8c6a28cf8b7f883eb790695d6d45b0c385a2583073f3cec434cc705e1a"},
+    {file = "cryptography-44.0.1-cp39-abi3-manylinux_2_28_x86_64.whl", hash = "sha256:72198e2b5925155497a5a3e8c216c7fb3e64c16ccee11f0e7da272fa93b35c4c"},
+    {file = "cryptography-44.0.1-cp39-abi3-manylinux_2_34_aarch64.whl", hash = "sha256:2a46a89ad3e6176223b632056f321bc7de36b9f9b93b2cc1cccf935a3849dc62"},
+    {file = "cryptography-44.0.1-cp39-abi3-manylinux_2_34_x86_64.whl", hash = "sha256:53f23339864b617a3dfc2b0ac8d5c432625c80014c25caac9082314e9de56f41"},
+    {file = "cryptography-44.0.1-cp39-abi3-musllinux_1_2_aarch64.whl", hash = "sha256:888fcc3fce0c888785a4876ca55f9f43787f4c5c1cc1e2e0da71ad481ff82c5b"},
+    {file = "cryptography-44.0.1-cp39-abi3-musllinux_1_2_x86_64.whl", hash = "sha256:00918d859aa4e57db8299607086f793fa7813ae2ff5a4637e318a25ef82730f7"},
+    {file = "cryptography-44.0.1-cp39-abi3-win32.whl", hash = "sha256:9b336599e2cb77b1008cb2ac264b290803ec5e8e89d618a5e978ff5eb6f715d9"},
+    {file = "cryptography-44.0.1-cp39-abi3-win_amd64.whl", hash = "sha256:e403f7f766ded778ecdb790da786b418a9f2394f36e8cc8b796cc056ab05f44f"},
+    {file = "cryptography-44.0.1-pp310-pypy310_pp73-macosx_10_9_x86_64.whl", hash = "sha256:1f9a92144fa0c877117e9748c74501bea842f93d21ee00b0cf922846d9d0b183"},
+    {file = "cryptography-44.0.1-pp310-pypy310_pp73-manylinux_2_28_aarch64.whl", hash = "sha256:610a83540765a8d8ce0f351ce42e26e53e1f774a6efb71eb1b41eb01d01c3d12"},
+    {file = "cryptography-44.0.1-pp310-pypy310_pp73-manylinux_2_28_x86_64.whl", hash = "sha256:5fed5cd6102bb4eb843e3315d2bf25fede494509bddadb81e03a859c1bc17b83"},
+    {file = "cryptography-44.0.1-pp310-pypy310_pp73-manylinux_2_34_aarch64.whl", hash = "sha256:f4daefc971c2d1f82f03097dc6f216744a6cd2ac0f04c68fb935ea2ba2a0d420"},
+    {file = "cryptography-44.0.1-pp310-pypy310_pp73-manylinux_2_34_x86_64.whl", hash = "sha256:94f99f2b943b354a5b6307d7e8d19f5c423a794462bde2bf310c770ba052b1c4"},
+    {file = "cryptography-44.0.1-pp310-pypy310_pp73-win_amd64.whl", hash = "sha256:d9c5b9f698a83c8bd71e0f4d3f9f839ef244798e5ffe96febfa9714717db7af7"},
+    {file = "cryptography-44.0.1.tar.gz", hash = "sha256:f51f5705ab27898afda1aaa430f34ad90dc117421057782022edf0600bec5f14"},
+]
+
+[package.dependencies]
+cffi = {version = ">=1.12", markers = "platform_python_implementation != \"PyPy\""}
+
+[package.extras]
+docs = ["sphinx (>=5.3.0)", "sphinx-rtd-theme (>=3.0.0) ; python_version >= \"3.8\""]
+docstest = ["pyenchant (>=3)", "readme-renderer (>=30.0)", "sphinxcontrib-spelling (>=7.3.1)"]
+nox = ["nox (>=2024.4.15)", "nox[uv] (>=2024.3.2) ; python_version >= \"3.8\""]
+pep8test = ["check-sdist ; python_version >= \"3.8\"", "click (>=8.0.1)", "mypy (>=1.4)", "ruff (>=0.3.6)"]
+sdist = ["build (>=1.0.0)"]
+ssh = ["bcrypt (>=3.1.5)"]
+test = ["certifi (>=2024)", "cryptography-vectors (==44.0.1)", "pretend (>=0.7)", "pytest (>=7.4.0)", "pytest-benchmark (>=4.0)", "pytest-cov (>=2.10.1)", "pytest-xdist (>=3.5.0)"]
+test-randomorder = ["pytest-randomly"]
+
+[[package]]
+name = "cxxfilt"
+version = "0.3.0"
+description = "Python interface to c++filt / abi::__cxa_demangle"
+optional = false
+python-versions = "*"
+groups = ["main"]
+files = [
+    {file = "cxxfilt-0.3.0-py2.py3-none-any.whl", hash = "sha256:774e85a8d0157775ed43276d89397d924b104135762d86b3a95f81f203094e07"},
+    {file = "cxxfilt-0.3.0.tar.gz", hash = "sha256:7df6464ba5e8efbf0d8974c0b2c78b32546676f06059a83515dbdfa559b34214"},
+]
+
+[package.extras]
+test = ["pytest (>=3.0.0)"]
+
+[[package]]
+name = "cython"
+version = "3.0.11"
+description = "The Cython compiler for writing C extensions in the Python language."
+optional = false
+python-versions = "!=3.0.*,!=3.1.*,!=3.2.*,!=3.3.*,>=2.7"
+groups = ["main"]
+files = [
+    {file = "Cython-3.0.11-cp310-cp310-macosx_10_9_x86_64.whl", hash = "sha256:44292aae17524abb4b70a25111fe7dec1a0ad718711d47e3786a211d5408fdaa"},
+    {file = "Cython-3.0.11-cp310-cp310-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:a75d45fbc20651c1b72e4111149fed3b33d270b0a4fb78328c54d965f28d55e1"},
+    {file = "Cython-3.0.11-cp310-cp310-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:d89a82937ce4037f092e9848a7bbcc65bc8e9fc9aef2bb74f5c15e7d21a73080"},
+    {file = "Cython-3.0.11-cp310-cp310-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:2a8ea2e7e2d3bc0d8630dafe6c4a5a89485598ff8a61885b74f8ed882597efd5"},
+    {file = "Cython-3.0.11-cp310-cp310-musllinux_1_2_aarch64.whl", hash = "sha256:cee29846471ce60226b18e931d8c1c66a158db94853e3e79bc2da9bd22345008"},
+    {file = "Cython-3.0.11-cp310-cp310-musllinux_1_2_x86_64.whl", hash = "sha256:eeb6860b0f4bfa402de8929833fe5370fa34069c7ebacb2d543cb017f21fb891"},
+    {file = "Cython-3.0.11-cp310-cp310-win32.whl", hash = "sha256:3699391125ab344d8d25438074d1097d9ba0fb674d0320599316cfe7cf5f002a"},
+    {file = "Cython-3.0.11-cp310-cp310-win_amd64.whl", hash = "sha256:d02f4ebe15aac7cdacce1a628e556c1983f26d140fd2e0ac5e0a090e605a2d38"},
+    {file = "Cython-3.0.11-cp311-cp311-macosx_10_9_x86_64.whl", hash = "sha256:75ba1c70b6deeaffbac123856b8d35f253da13552207aa969078611c197377e4"},
+    {file = "Cython-3.0.11-cp311-cp311-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:af91497dc098718e634d6ec8f91b182aea6bb3690f333fc9a7777bc70abe8810"},
+    {file = "Cython-3.0.11-cp311-cp311-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:3999fb52d3328a6a5e8c63122b0a8bd110dfcdb98dda585a3def1426b991cba7"},
+    {file = "Cython-3.0.11-cp311-cp311-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:d566a4e09b8979be8ab9f843bac0dd216c81f5e5f45661a9b25cd162ed80508c"},
+    {file = "Cython-3.0.11-cp311-cp311-musllinux_1_2_aarch64.whl", hash = "sha256:46aec30f217bdf096175a1a639203d44ac73a36fe7fa3dd06bd012e8f39eca0f"},
+    {file = "Cython-3.0.11-cp311-cp311-musllinux_1_2_x86_64.whl", hash = "sha256:ddd1fe25af330f4e003421636746a546474e4ccd8f239f55d2898d80983d20ed"},
+    {file = "Cython-3.0.11-cp311-cp311-win32.whl", hash = "sha256:221de0b48bf387f209003508e602ce839a80463522fc6f583ad3c8d5c890d2c1"},
+    {file = "Cython-3.0.11-cp311-cp311-win_amd64.whl", hash = "sha256:3ff8ac1f0ecd4f505db4ab051e58e4531f5d098b6ac03b91c3b902e8d10c67b3"},
+    {file = "Cython-3.0.11-cp312-cp312-macosx_10_9_x86_64.whl", hash = "sha256:11996c40c32abf843ba652a6d53cb15944c88d91f91fc4e6f0028f5df8a8f8a1"},
+    {file = "Cython-3.0.11-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:63f2c892e9f9c1698ecfee78205541623eb31cd3a1b682668be7ac12de94aa8e"},
+    {file = "Cython-3.0.11-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:8b14c24f1dc4c4c9d997cca8d1b7fb01187a218aab932328247dcf5694a10102"},
+    {file = "Cython-3.0.11-cp312-cp312-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:c8eed5c015685106db15dd103fd040948ddca9197b1dd02222711815ea782a27"},
+    {file = "Cython-3.0.11-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:780f89c95b8aec1e403005b3bf2f0a2afa060b3eba168c86830f079339adad89"},
+    {file = "Cython-3.0.11-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:a690f2ff460682ea985e8d38ec541be97e0977fa0544aadc21efc116ff8d7579"},
+    {file = "Cython-3.0.11-cp312-cp312-win32.whl", hash = "sha256:2252b5aa57621848e310fe7fa6f7dce5f73aa452884a183d201a8bcebfa05a00"},
+    {file = "Cython-3.0.11-cp312-cp312-win_amd64.whl", hash = "sha256:da394654c6da15c1d37f0b7ec5afd325c69a15ceafee2afba14b67a5df8a82c8"},
+    {file = "Cython-3.0.11-cp313-cp313-macosx_10_13_x86_64.whl", hash = "sha256:4341d6a64d47112884e0bcf31e6c075268220ee4cd02223047182d4dda94d637"},
+    {file = "Cython-3.0.11-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:351955559b37e6c98b48aecb178894c311be9d731b297782f2b78d111f0c9015"},
+    {file = "Cython-3.0.11-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:9c02361af9bfa10ff1ccf967fc75159e56b1c8093caf565739ed77a559c1f29f"},
+    {file = "Cython-3.0.11-cp313-cp313-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:6823aef13669a32caf18bbb036de56065c485d9f558551a9b55061acf9c4c27f"},
+    {file = "Cython-3.0.11-cp313-cp313-musllinux_1_2_aarch64.whl", hash = "sha256:6fb68cef33684f8cc97987bee6ae919eee7e18ee6a3ad7ed9516b8386ef95ae6"},
+    {file = "Cython-3.0.11-cp313-cp313-musllinux_1_2_x86_64.whl", hash = "sha256:790263b74432cb997740d73665f4d8d00b9cd1cecbdd981d93591ddf993d4f12"},
+    {file = "Cython-3.0.11-cp313-cp313-win32.whl", hash = "sha256:e6dd395d1a704e34a9fac00b25f0036dce6654c6b898be6f872ac2bb4f2eda48"},
+    {file = "Cython-3.0.11-cp313-cp313-win_amd64.whl", hash = "sha256:52186101d51497519e99b60d955fd5cb3bf747c67f00d742e70ab913f1e42d31"},
+    {file = "Cython-3.0.11-cp36-cp36m-macosx_10_9_x86_64.whl", hash = "sha256:c69d5cad51388522b98a99b4be1b77316de85b0c0523fa865e0ea58bbb622e0a"},
+    {file = "Cython-3.0.11-cp36-cp36m-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:8acdc87e9009110adbceb7569765eb0980129055cc954c62f99fe9f094c9505e"},
+    {file = "Cython-3.0.11-cp36-cp36m-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:1dd47865f4c0a224da73acf83d113f93488d17624e2457dce1753acdfb1cc40c"},
+    {file = "Cython-3.0.11-cp36-cp36m-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:301bde949b4f312a1c70e214b0c3bc51a3f955d466010d2f68eb042df36447b0"},
+    {file = "Cython-3.0.11-cp36-cp36m-musllinux_1_2_aarch64.whl", hash = "sha256:f3953d2f504176f929862e5579cfc421860c33e9707f585d70d24e1096accdf7"},
+    {file = "Cython-3.0.11-cp36-cp36m-musllinux_1_2_x86_64.whl", hash = "sha256:3f2b062f6df67e8a56c75e500ca330cf62c85ac26dd7fd006f07ef0f83aebfa3"},
+    {file = "Cython-3.0.11-cp36-cp36m-win32.whl", hash = "sha256:c3d68751668c66c7a140b6023dba5d5d507f72063407bb609d3a5b0f3b8dfbe4"},
+    {file = "Cython-3.0.11-cp36-cp36m-win_amd64.whl", hash = "sha256:bcd29945fafd12484cf37b1d84f12f0e7a33ba3eac5836531c6bd5283a6b3a0c"},
+    {file = "Cython-3.0.11-cp37-cp37m-macosx_10_9_x86_64.whl", hash = "sha256:4e9a8d92978b15a0c7ca7f98447c6c578dc8923a0941d9d172d0b077cb69c576"},
+    {file = "Cython-3.0.11-cp37-cp37m-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:421017466e9260aca86823974e26e158e6358622f27c0f4da9c682f3b6d2e624"},
+    {file = "Cython-3.0.11-cp37-cp37m-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:d80a7232938d523c1a12f6b1794ab5efb1ae77ad3fde79de4bb558d8ab261619"},
+    {file = "Cython-3.0.11-cp37-cp37m-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:bfa550d9ae39e827a6e7198076df763571cb53397084974a6948af558355e028"},
+    {file = "Cython-3.0.11-cp37-cp37m-musllinux_1_2_aarch64.whl", hash = "sha256:aedceb6090a60854b31bf9571dc55f642a3fa5b91f11b62bcef167c52cac93d8"},
+    {file = "Cython-3.0.11-cp37-cp37m-musllinux_1_2_x86_64.whl", hash = "sha256:473d35681d9f93ce380e6a7c8feb2d65fc6333bd7117fbc62989e404e241dbb0"},
+    {file = "Cython-3.0.11-cp37-cp37m-win32.whl", hash = "sha256:3379c6521e25aa6cd7703bb7d635eaca75c0f9c7f1b0fdd6dd15a03bfac5f68d"},
+    {file = "Cython-3.0.11-cp37-cp37m-win_amd64.whl", hash = "sha256:14701edb3107a5d9305a82d9d646c4f28bfecbba74b26cc1ee2f4be08f602057"},
+    {file = "Cython-3.0.11-cp38-cp38-macosx_10_9_x86_64.whl", hash = "sha256:598699165cfa7c6d69513ee1bffc9e1fdd63b00b624409174c388538aa217975"},
+    {file = "Cython-3.0.11-cp38-cp38-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:a0583076c4152b417a3a8a5d81ec02f58c09b67d3f22d5857e64c8734ceada8c"},
+    {file = "Cython-3.0.11-cp38-cp38-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:52205347e916dd65d2400b977df4c697390c3aae0e96275a438cc4ae85dadc08"},
+    {file = "Cython-3.0.11-cp38-cp38-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:989899a85f0d9a57cebb508bd1f194cb52f0e3f7e22ac259f33d148d6422375c"},
+    {file = "Cython-3.0.11-cp38-cp38-musllinux_1_2_aarch64.whl", hash = "sha256:53b6072a89049a991d07f42060f65398448365c59c9cb515c5925b9bdc9d71f8"},
+    {file = "Cython-3.0.11-cp38-cp38-musllinux_1_2_x86_64.whl", hash = "sha256:f988f7f8164a6079c705c39e2d75dbe9967e3dacafe041420d9af7b9ee424162"},
+    {file = "Cython-3.0.11-cp38-cp38-win32.whl", hash = "sha256:a1f4cbc70f6b7f0c939522118820e708e0d490edca42d852fa8004ec16780be2"},
+    {file = "Cython-3.0.11-cp38-cp38-win_amd64.whl", hash = "sha256:187685e25e037320cae513b8cc4bf9dbc4465c037051aede509cbbf207524de2"},
+    {file = "Cython-3.0.11-cp39-cp39-macosx_10_9_x86_64.whl", hash = "sha256:0fc6fdd6fa493be7bdda22355689d5446ac944cd71286f6f44a14b0d67ee3ff5"},
+    {file = "Cython-3.0.11-cp39-cp39-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:0b1d1f6f94cc5d42a4591f6d60d616786b9cd15576b112bc92a23131fcf38020"},
+    {file = "Cython-3.0.11-cp39-cp39-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:b4ab2b92a3e6ed552adbe9350fd2ef3aa0cc7853cf91569f9dbed0c0699bbeab"},
+    {file = "Cython-3.0.11-cp39-cp39-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:104d6f2f2c827ccc5e9e42c80ef6773a6aa94752fe6bc5b24a4eab4306fb7f07"},
+    {file = "Cython-3.0.11-cp39-cp39-musllinux_1_2_aarch64.whl", hash = "sha256:13062ce556a1e98d2821f7a0253b50569fdc98c36efd6653a65b21e3f8bbbf5f"},
+    {file = "Cython-3.0.11-cp39-cp39-musllinux_1_2_x86_64.whl", hash = "sha256:525d09b3405534763fa73bd78c8e51ac8264036ce4c16d37dfd1555a7da6d3a7"},
+    {file = "Cython-3.0.11-cp39-cp39-win32.whl", hash = "sha256:b8c7e514075696ca0f60c337f9e416e61d7ccbc1aa879a56c39181ed90ec3059"},
+    {file = "Cython-3.0.11-cp39-cp39-win_amd64.whl", hash = "sha256:8948802e1f5677a673ea5d22a1e7e273ca5f83e7a452786ca286eebf97cee67c"},
+    {file = "Cython-3.0.11-py2.py3-none-any.whl", hash = "sha256:0e25f6425ad4a700d7f77cd468da9161e63658837d1bc34861a9861a4ef6346d"},
+    {file = "cython-3.0.11.tar.gz", hash = "sha256:7146dd2af8682b4ca61331851e6aebce9fe5158e75300343f80c07ca80b1faff"},
+]
+
+[[package]]
+name = "daphne"
+version = "3.0.2"
+description = "Django ASGI (HTTP/WebSocket) server"
+optional = false
+python-versions = ">=3.6"
+groups = ["main"]
+files = [
+    {file = "daphne-3.0.2-py3-none-any.whl", hash = "sha256:a9af943c79717bc52fe64a3c236ae5d3adccc8b5be19c881b442d2c3db233393"},
+    {file = "daphne-3.0.2.tar.gz", hash = "sha256:76ffae916ba3aa66b46996c14fa713e46004788167a4873d647544e750e0e99f"},
+]
+
+[package.dependencies]
+asgiref = ">=3.2.10,<4"
+autobahn = ">=0.18"
+twisted = {version = ">=18.7", extras = ["tls"]}
+
+[package.extras]
+tests = ["hypothesis (==4.23)", "pytest (>=3.10,<4.0)", "pytest-asyncio (>=0.8,<1.0)"]
+
+[[package]]
+name = "distlib"
+version = "0.3.9"
+description = "Distribution utilities"
+optional = false
+python-versions = "*"
+groups = ["dev"]
+files = [
+    {file = "distlib-0.3.9-py2.py3-none-any.whl", hash = "sha256:47f8c22fd27c27e25a65601af709b38e4f0a45ea4fc2e710f65755fa8caaaf87"},
+    {file = "distlib-0.3.9.tar.gz", hash = "sha256:a60f20dea646b8a33f3e7772f74dc0b2d0772d2837ee1342a00645c81edf9403"},
+]
+
+[[package]]
+name = "django"
+version = "5.1.14"
+description = "A high-level Python web framework that encourages rapid development and clean, pragmatic design."
+optional = false
+python-versions = ">=3.10"
+groups = ["main"]
+files = [
+    {file = "django-5.1.14-py3-none-any.whl", hash = "sha256:2a4b9c20404fd1bf50aaaa5542a19d860594cba1354f688f642feb271b91df27"},
+    {file = "django-5.1.14.tar.gz", hash = "sha256:b98409fb31fdd6e8c3a6ba2eef3415cc5c0020057b43b21ba7af6eff5f014831"},
+]
+
+[package.dependencies]
+asgiref = ">=3.8.1,<4"
+sqlparse = ">=0.3.1"
+tzdata = {version = "*", markers = "sys_platform == \"win32\""}
+
+[package.extras]
+argon2 = ["argon2-cffi (>=19.1.0)"]
+bcrypt = ["bcrypt"]
+
+[[package]]
+name = "django-allauth"
+version = "65.3.1"
+description = "Integrated set of Django applications addressing authentication, registration, account management as well as 3rd party (social) account authentication."
+optional = false
+python-versions = ">=3.8"
+groups = ["main"]
+files = [
+    {file = "django_allauth-65.3.1.tar.gz", hash = "sha256:e02e951b71a2753a746459f2efa114c7c72bf2cef6887dbe8607a577c0350587"},
+]
+
+[package.dependencies]
+asgiref = ">=3.8.1"
+Django = ">=4.2.16"
+
+[package.extras]
+mfa = ["fido2 (>=1.1.2)", "qrcode (>=7.0.0)"]
+openid = ["python3-openid (>=3.0.8)"]
+saml = ["python3-saml (>=1.15.0,<2.0.0)"]
+socialaccount = ["pyjwt[crypto] (>=1.7)", "requests (>=2.0.0)", "requests-oauthlib (>=0.3.0)"]
+steam = ["python3-openid (>=3.0.8)"]
+
+[[package]]
+name = "django-crispy-forms"
+version = "2.3"
+description = "Best way to have Django DRY forms"
+optional = false
+python-versions = ">=3.8"
+groups = ["main"]
+files = [
+    {file = "django_crispy_forms-2.3-py3-none-any.whl", hash = "sha256:efc4c31e5202bbec6af70d383a35e12fc80ea769d464fb0e7fe21768bb138a20"},
+    {file = "django_crispy_forms-2.3.tar.gz", hash = "sha256:2db17ae08527201be1273f0df789e5f92819e23dd28fec69cffba7f3762e1a38"},
+]
+
+[package.dependencies]
+django = ">=4.2"
+
+[[package]]
+name = "django-csp"
+version = "3.8"
+description = "Django Content Security Policy support."
+optional = false
+python-versions = "*"
+groups = ["main"]
+files = [
+    {file = "django_csp-3.8-py3-none-any.whl", hash = "sha256:19b2978b03fcd73517d7d67acbc04fbbcaec0facc3e83baa502965892d1e0719"},
+    {file = "django_csp-3.8.tar.gz", hash = "sha256:ef0f1a9f7d8da68ae6e169c02e9ac661c0ecf04db70e0d1d85640512a68471c0"},
+]
+
+[package.dependencies]
+Django = ">=3.2"
+
+[package.extras]
+jinja2 = ["jinja2 (>=2.9.6)"]
+tests = ["jinja2 (>=2.9.6)", "pytest", "pytest-cov", "pytest-django", "pytest-ruff"]
+
+[[package]]
+name = "django-extensions"
+version = "3.2.3"
+description = "Extensions for Django"
+optional = false
+python-versions = ">=3.6"
+groups = ["main"]
+files = [
+    {file = "django-extensions-3.2.3.tar.gz", hash = "sha256:44d27919d04e23b3f40231c4ab7af4e61ce832ef46d610cc650d53e68328410a"},
+    {file = "django_extensions-3.2.3-py3-none-any.whl", hash = "sha256:9600b7562f79a92cbf1fde6403c04fee314608fefbb595502e34383ae8203401"},
+]
+
+[package.dependencies]
+Django = ">=3.2"
+
+[[package]]
+name = "django-ratelimit"
+version = "4.1.0"
+description = "Cache-based rate-limiting for Django."
+optional = false
+python-versions = ">=3.7"
+groups = ["main"]
+files = [
+    {file = "django-ratelimit-4.1.0.tar.gz", hash = "sha256:555943b283045b917ad59f196829530d63be2a39adb72788d985b90c81ba808b"},
+    {file = "django_ratelimit-4.1.0-py2.py3-none-any.whl", hash = "sha256:d047a31cf94d83ef1465d7543ca66c6fc16695559b5f8d814d1b51df15110b92"},
+]
+
+[[package]]
+name = "django-recaptcha"
+version = "4.0.0"
+description = "Django recaptcha form field/widget app."
+optional = false
+python-versions = "*"
+groups = ["main"]
+files = [
+    {file = "django-recaptcha-4.0.0.tar.gz", hash = "sha256:5316438f97700c431d65351470d1255047e3f2cd9af0f2f13592b637dad9213e"},
+    {file = "django_recaptcha-4.0.0-py3-none-any.whl", hash = "sha256:0d912d5c7c009df4e47accd25029133d47a74342dbd2a8edc2877b6bffa971a3"},
+]
+
+[package.dependencies]
+django = "*"
+
+[[package]]
+name = "django-settings-export"
+version = "1.2.1"
+description = "This Django app allows you to export certain settings to your templates."
+optional = false
+python-versions = "*"
+groups = ["main"]
+files = [
+    {file = "django-settings-export-1.2.1.tar.gz", hash = "sha256:fceeae49fc597f654c1217415d8e049fc81c930b7154f5d8f28c432db738ff79"},
+]
+
+[package.dependencies]
+django = "*"
+
+[[package]]
+name = "djangorestframework"
+version = "3.15.2"
+description = "Web APIs for Django, made easy."
+optional = false
+python-versions = ">=3.8"
+groups = ["main"]
+files = [
+    {file = "djangorestframework-3.15.2-py3-none-any.whl", hash = "sha256:2b8871b062ba1aefc2de01f773875441a961fefbf79f5eed1e32b2f096944b20"},
+    {file = "djangorestframework-3.15.2.tar.gz", hash = "sha256:36fe88cd2d6c6bec23dca9804bab2ba5517a8bb9d8f47ebc68981b56840107ad"},
+]
+
+[package.dependencies]
+django = ">=4.2"
+
+[[package]]
+name = "dncil"
+version = "1.0.2"
+description = "The FLARE team's open-source library to disassemble Common Intermediate Language (CIL) instructions."
+optional = false
+python-versions = ">=3.7"
+groups = ["main"]
+files = [
+    {file = "dncil-1.0.2-py3-none-any.whl", hash = "sha256:69d389e9b850fa9afa2e37ca252b01476379991eee88fd33ab76f924d36dd68d"},
+    {file = "dncil-1.0.2.tar.gz", hash = "sha256:1557675c2d1351d3260509881cff0383309f81cda4944ed2c3f5cc352953aa15"},
+]
+
+[package.extras]
+dev = ["black (==22.12.0)", "dnfile (==0.12.0)", "hexdump (==3.3.0)", "isort (==5.10.1)", "mypy (==0.991)", "pycodestyle (==2.10.0)", "pytest (==7.2.0)", "pytest-cov (==4.0.0)", "pytest-instafail (==0.4.2)", "pytest-sugar (==0.9.6)"]
+
+[[package]]
+name = "dnfile"
+version = "0.15.1"
+description = "Parse .NET executable files."
+optional = false
+python-versions = ">=3.8"
+groups = ["main"]
+files = [
+    {file = "dnfile-0.15.1-py3-none-any.whl", hash = "sha256:585c8e3e4a29824402430a0a8b7e7ae82c040fc17eeb3a06758fdceebe2d923e"},
+    {file = "dnfile-0.15.1.tar.gz", hash = "sha256:1529cf0f976b1382f60a3c56b2e0def90f3486e41193ffd34677e74563c8426c"},
+]
+
+[package.dependencies]
+pefile = ">=2019.4.18"
+
+[[package]]
+name = "dnspython"
+version = "2.7.0"
+description = "DNS toolkit"
+optional = false
+python-versions = ">=3.9"
+groups = ["main"]
+files = [
+    {file = "dnspython-2.7.0-py3-none-any.whl", hash = "sha256:b4c34b7d10b51bcc3a5071e7b8dee77939f1e878477eeecc965e9835f63c6c86"},
+    {file = "dnspython-2.7.0.tar.gz", hash = "sha256:ce9c432eda0dc91cf618a5cedf1a4e142651196bbcd2c80e89ed5a907e5cfaf1"},
+]
+
+[package.extras]
+dev = ["black (>=23.1.0)", "coverage (>=7.0)", "flake8 (>=7)", "hypercorn (>=0.16.0)", "mypy (>=1.8)", "pylint (>=3)", "pytest (>=7.4)", "pytest-cov (>=4.1.0)", "quart-trio (>=0.11.0)", "sphinx (>=7.2.0)", "sphinx-rtd-theme (>=2.0.0)", "twine (>=4.0.0)", "wheel (>=0.42.0)"]
+dnssec = ["cryptography (>=43)"]
+doh = ["h2 (>=4.1.0)", "httpcore (>=1.0.0)", "httpx (>=0.26.0)"]
+doq = ["aioquic (>=1.0.0)"]
+idna = ["idna (>=3.7)"]
+trio = ["trio (>=0.23)"]
+wmi = ["wmi (>=1.5.1)"]
+
+[[package]]
+name = "dpkt"
+version = "1.9.6"
+description = "fast, simple packet creation / parsing, with definitions for the basic TCP/IP protocols"
+optional = false
+python-versions = "*"
+groups = ["main"]
+files = [
+    {file = "dpkt-1.9.6-py3-none-any.whl", hash = "sha256:b1739c594297b2b6321dfbf133e3f8dcf54c0ef54cb5739d204331d34a0d8fe4"},
+    {file = "dpkt-1.9.6.tar.gz", hash = "sha256:b5737010fd420d142e02ed04fa616edd1fc05e414980baef594f72287c875eef"},
+]
+
+[[package]]
+name = "easygui"
+version = "0.98.3"
+description = "EasyGUI is a module for very simple, very easy GUI programming in Python.  EasyGUI is different from other GUI generators in that EasyGUI is NOT event-driven.  Instead, all GUI interactions are invoked by simple function calls."
+optional = false
+python-versions = "*"
+groups = ["main"]
+files = [
+    {file = "easygui-0.98.3-py2.py3-none-any.whl", hash = "sha256:33498710c68b5376b459cd3fc48d1d1f33822139eb3ed01defbc0528326da3ba"},
+    {file = "easygui-0.98.3.tar.gz", hash = "sha256:d653ff79ee1f42f63b5a090f2f98ce02335d86ad8963b3ce2661805cafe99a04"},
+]
+
+[[package]]
+name = "editorconfig"
+version = "0.17.0"
+description = "EditorConfig File Locator and Interpreter for Python"
+optional = false
+python-versions = "*"
+groups = ["main"]
+files = [
+    {file = "EditorConfig-0.17.0-py3-none-any.whl", hash = "sha256:fe491719c5f65959ec00b167d07740e7ffec9a3f362038c72b289330b9991dfc"},
+    {file = "editorconfig-0.17.0.tar.gz", hash = "sha256:8739052279699840065d3a9f5c125d7d5a98daeefe53b0e5274261d77cb49aa2"},
+]
+
+[[package]]
+name = "exceptiongroup"
+version = "1.2.2"
+description = "Backport of PEP 654 (exception groups)"
+optional = false
+python-versions = ">=3.7"
+groups = ["main", "dev"]
+markers = "python_version == \"3.10\""
+files = [
+    {file = "exceptiongroup-1.2.2-py3-none-any.whl", hash = "sha256:3111b9d131c238bec2f8f516e123e14ba243563fb135d3fe885990585aa7795b"},
+    {file = "exceptiongroup-1.2.2.tar.gz", hash = "sha256:47c2edf7c6738fafb49fd34290706d1a1a2f4d1c6df275526b62cbb4aa5393cc"},
+]
+
+[package.extras]
+test = ["pytest (>=6)"]
+
+[[package]]
+name = "execnet"
+version = "2.1.1"
+description = "execnet: rapid multi-Python deployment"
+optional = false
+python-versions = ">=3.8"
+groups = ["dev"]
+files = [
+    {file = "execnet-2.1.1-py3-none-any.whl", hash = "sha256:26dee51f1b80cebd6d0ca8e74dd8745419761d3bef34163928cbebbdc4749fdc"},
+    {file = "execnet-2.1.1.tar.gz", hash = "sha256:5189b52c6121c24feae288166ab41b32549c7e2348652736540b9e6e7d4e72e3"},
+]
+
+[package.extras]
+testing = ["hatch", "pre-commit", "pytest", "tox"]
+
+[[package]]
+name = "filelock"
+version = "3.17.0"
+description = "A platform independent file lock."
+optional = false
+python-versions = ">=3.9"
+groups = ["main", "dev"]
+files = [
+    {file = "filelock-3.17.0-py3-none-any.whl", hash = "sha256:533dc2f7ba78dc2f0f531fc6c4940addf7b70a481e269a5a3b93be94ffbe8338"},
+    {file = "filelock-3.17.0.tar.gz", hash = "sha256:ee4e77401ef576ebb38cd7f13b9b28893194acc20a8e68e18730ba9c0e54660e"},
+]
+
+[package.extras]
+docs = ["furo (>=2024.8.6)", "sphinx (>=8.1.3)", "sphinx-autodoc-typehints (>=3)"]
+testing = ["covdefaults (>=2.3)", "coverage (>=7.6.10)", "diff-cover (>=9.2.1)", "pytest (>=8.3.4)", "pytest-asyncio (>=0.25.2)", "pytest-cov (>=6)", "pytest-mock (>=3.14)", "pytest-timeout (>=2.3.1)", "virtualenv (>=20.28.1)"]
+typing = ["typing-extensions (>=4.12.2) ; python_version < \"3.11\""]
+
+[[package]]
+name = "flare-capa"
+version = "9.1.0"
+description = "The FLARE team's open-source tool to identify capabilities in executable files."
+optional = false
+python-versions = ">=3.10"
+groups = ["main"]
+files = [
+    {file = "flare_capa-9.1.0-py3-none-any.whl", hash = "sha256:9e3214c66dd13c90e379c74d56a99fee2634c14980d55395535f3a39fe9159bc"},
+    {file = "flare_capa-9.1.0.tar.gz", hash = "sha256:7df5c8033b9ea568569611b5f1948b8257c055a191a01ab1e67ce3e407c86e21"},
+]
+
+[package.dependencies]
+colorama = ">=0.4"
+dncil = ">=1.0.2"
+dnfile = ">=0.15.0"
+humanize = ">=4"
+ida-settings = ">=2"
+msgspec = ">=0.18.6"
+networkx = ">=3"
+pefile = ">=2023.2.7"
+protobuf = ">=5"
+pydantic = ">=2"
+pyelftools = ">=0.31"
+pyyaml = ">=6"
+rich = ">=13"
+"ruamel.yaml" = ">=0.18"
+viv-utils = {version = ">=0.7.9", extras = ["flirt"]}
+vivisect = ">=1.1.1"
+xmltodict = ">=0.13.0"
+
+[package.extras]
+build = ["build (==1.2.2)", "pyinstaller (==6.12.0)", "setuptools (==75.8.0)"]
+dev = ["PyGithub (==2.6.0)", "black (==25.1.0)", "deptry (==0.23.0)", "flake8 (==7.1.1)", "flake8-bugbear (==24.12.12)", "flake8-comprehensions (==3.16.0)", "flake8-copyright (==0.2.4)", "flake8-encodings (==0.5.1)", "flake8-logging-format (==0.9.0)", "flake8-no-implicit-concat (==0.3.5)", "flake8-print (==5.0.0)", "flake8-simplify (==0.21.0)", "flake8-todos (==0.3.1)", "flake8-use-pathlib (==0.3.0)", "isort (==6.0.0)", "mypy (==1.15.0)", "mypy-protobuf (==3.6.0)", "pre-commit (==4.1.0)", "pytest (==8.0.0)", "pytest-instafail (==0.5.0)", "pytest-sugar (==1.0.0)", "ruff (==0.9.2)", "types-PyYAML (==6.0.8)", "types-backports (==0.1.3)", "types-colorama (==0.4.15.11)", "types-protobuf (==5.29.1.20241207)", "types-psutil (==6.1.0.20241102)", "types_requests (==2.32.0.20240712)"]
+scripts = ["jschema_to_python (==1.2.3)", "psutil (==7.0.0)", "requests (==2.32.3)", "sarif_om (==1.0.4)", "stix2 (==3.0.1)"]
+
+[[package]]
+name = "freezegun"
+version = "1.5.1"
+description = "Let your Python tests travel through time"
+optional = false
+python-versions = ">=3.7"
+groups = ["dev"]
+files = [
+    {file = "freezegun-1.5.1-py3-none-any.whl", hash = "sha256:bf111d7138a8abe55ab48a71755673dbaa4ab87f4cff5634a4442dfec34c15f1"},
+    {file = "freezegun-1.5.1.tar.gz", hash = "sha256:b29dedfcda6d5e8e083ce71b2b542753ad48cfec44037b3fc79702e2980a89e9"},
+]
+
+[package.dependencies]
+python-dateutil = ">=2.7"
+
+[[package]]
+name = "func-timeout"
+version = "4.3.5"
+description = "Python module which allows you to specify timeouts when calling any existing function. Also provides support for stoppable-threads"
+optional = false
+python-versions = "*"
+groups = ["dev"]
+files = [
+    {file = "func_timeout-4.3.5.tar.gz", hash = "sha256:74cd3c428ec94f4edfba81f9b2f14904846d5ffccc27c92433b8b5939b5575dd"},
+]
+
+[[package]]
+name = "funcy"
+version = "2.0"
+description = "A fancy and practical functional tools"
+optional = false
+python-versions = "*"
+groups = ["main"]
+files = [
+    {file = "funcy-2.0-py2.py3-none-any.whl", hash = "sha256:53df23c8bb1651b12f095df764bfb057935d49537a56de211b098f4c79614bb0"},
+    {file = "funcy-2.0.tar.gz", hash = "sha256:3963315d59d41c6f30c04bc910e10ab50a3ac4a225868bfa96feed133df075cb"},
+]
+
+[[package]]
+name = "future"
+version = "1.0.0"
+description = "Clean single-source support for Python 3 and 2"
+optional = false
+python-versions = ">=2.6, !=3.0.*, !=3.1.*, !=3.2.*"
+groups = ["main"]
+files = [
+    {file = "future-1.0.0-py3-none-any.whl", hash = "sha256:929292d34f5872e70396626ef385ec22355a1fae8ad29e1a734c3e43f9fbc216"},
+    {file = "future-1.0.0.tar.gz", hash = "sha256:bd2968309307861edae1458a4f8a4f3598c03be43b97521076aebf5d94c07b05"},
+]
+
+[[package]]
+name = "gevent"
+version = "24.2.1"
+description = "Coroutine-based network library"
+optional = false
+python-versions = ">=3.8"
+groups = ["main"]
+files = [
+    {file = "gevent-24.2.1-cp310-cp310-macosx_11_0_universal2.whl", hash = "sha256:6f947a9abc1a129858391b3d9334c45041c08a0f23d14333d5b844b6e5c17a07"},
+    {file = "gevent-24.2.1-cp310-cp310-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:bde283313daf0b34a8d1bab30325f5cb0f4e11b5869dbe5bc61f8fe09a8f66f3"},
+    {file = "gevent-24.2.1-cp310-cp310-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:5a1df555431f5cd5cc189a6ee3544d24f8c52f2529134685f1e878c4972ab026"},
+    {file = "gevent-24.2.1-cp310-cp310-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:14532a67f7cb29fb055a0e9b39f16b88ed22c66b96641df8c04bdc38c26b9ea5"},
+    {file = "gevent-24.2.1-cp310-cp310-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:dd23df885318391856415e20acfd51a985cba6919f0be78ed89f5db9ff3a31cb"},
+    {file = "gevent-24.2.1-cp310-cp310-manylinux_2_28_x86_64.whl", hash = "sha256:ca80b121bbec76d7794fcb45e65a7eca660a76cc1a104ed439cdbd7df5f0b060"},
+    {file = "gevent-24.2.1-cp310-cp310-musllinux_1_1_aarch64.whl", hash = "sha256:b9913c45d1be52d7a5db0c63977eebb51f68a2d5e6fd922d1d9b5e5fd758cc98"},
+    {file = "gevent-24.2.1-cp310-cp310-musllinux_1_1_x86_64.whl", hash = "sha256:918cdf8751b24986f915d743225ad6b702f83e1106e08a63b736e3a4c6ead789"},
+    {file = "gevent-24.2.1-cp310-cp310-win_amd64.whl", hash = "sha256:3d5325ccfadfd3dcf72ff88a92fb8fc0b56cacc7225f0f4b6dcf186c1a6eeabc"},
+    {file = "gevent-24.2.1-cp311-cp311-macosx_11_0_universal2.whl", hash = "sha256:03aa5879acd6b7076f6a2a307410fb1e0d288b84b03cdfd8c74db8b4bc882fc5"},
+    {file = "gevent-24.2.1-cp311-cp311-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:f8bb35ce57a63c9a6896c71a285818a3922d8ca05d150fd1fe49a7f57287b836"},
+    {file = "gevent-24.2.1-cp311-cp311-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:d7f87c2c02e03d99b95cfa6f7a776409083a9e4d468912e18c7680437b29222c"},
+    {file = "gevent-24.2.1-cp311-cp311-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:968581d1717bbcf170758580f5f97a2925854943c45a19be4d47299507db2eb7"},
+    {file = "gevent-24.2.1-cp311-cp311-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:7899a38d0ae7e817e99adb217f586d0a4620e315e4de577444ebeeed2c5729be"},
+    {file = "gevent-24.2.1-cp311-cp311-manylinux_2_28_x86_64.whl", hash = "sha256:f5e8e8d60e18d5f7fd49983f0c4696deeddaf6e608fbab33397671e2fcc6cc91"},
+    {file = "gevent-24.2.1-cp311-cp311-musllinux_1_1_aarch64.whl", hash = "sha256:fbfdce91239fe306772faab57597186710d5699213f4df099d1612da7320d682"},
+    {file = "gevent-24.2.1-cp311-cp311-musllinux_1_1_x86_64.whl", hash = "sha256:cdf66977a976d6a3cfb006afdf825d1482f84f7b81179db33941f2fc9673bb1d"},
+    {file = "gevent-24.2.1-cp311-cp311-win_amd64.whl", hash = "sha256:1dffb395e500613e0452b9503153f8f7ba587c67dd4a85fc7cd7aa7430cb02cc"},
+    {file = "gevent-24.2.1-cp312-cp312-macosx_11_0_universal2.whl", hash = "sha256:6c47ae7d1174617b3509f5d884935e788f325eb8f1a7efc95d295c68d83cce40"},
+    {file = "gevent-24.2.1-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:f7cac622e11b4253ac4536a654fe221249065d9a69feb6cdcd4d9af3503602e0"},
+    {file = "gevent-24.2.1-cp312-cp312-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:bf5b9c72b884c6f0c4ed26ef204ee1f768b9437330422492c319470954bc4cc7"},
+    {file = "gevent-24.2.1-cp312-cp312-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:f5de3c676e57177b38857f6e3cdfbe8f38d1cd754b63200c0615eaa31f514b4f"},
+    {file = "gevent-24.2.1-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:d4faf846ed132fd7ebfbbf4fde588a62d21faa0faa06e6f468b7faa6f436b661"},
+    {file = "gevent-24.2.1-cp312-cp312-manylinux_2_28_x86_64.whl", hash = "sha256:368a277bd9278ddb0fde308e6a43f544222d76ed0c4166e0d9f6b036586819d9"},
+    {file = "gevent-24.2.1-cp312-cp312-musllinux_1_1_aarch64.whl", hash = "sha256:f8a04cf0c5b7139bc6368b461257d4a757ea2fe89b3773e494d235b7dd51119f"},
+    {file = "gevent-24.2.1-cp312-cp312-musllinux_1_1_x86_64.whl", hash = "sha256:9d8d0642c63d453179058abc4143e30718b19a85cbf58c2744c9a63f06a1d388"},
+    {file = "gevent-24.2.1-cp312-cp312-win_amd64.whl", hash = "sha256:94138682e68ec197db42ad7442d3cf9b328069c3ad8e4e5022e6b5cd3e7ffae5"},
+    {file = "gevent-24.2.1-cp38-cp38-macosx_11_0_universal2.whl", hash = "sha256:8f4b8e777d39013595a7740b4463e61b1cfe5f462f1b609b28fbc1e4c4ff01e5"},
+    {file = "gevent-24.2.1-cp38-cp38-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:141a2b24ad14f7b9576965c0c84927fc85f824a9bb19f6ec1e61e845d87c9cd8"},
+    {file = "gevent-24.2.1-cp38-cp38-manylinux_2_28_x86_64.whl", hash = "sha256:9202f22ef811053077d01f43cc02b4aaf4472792f9fd0f5081b0b05c926cca19"},
+    {file = "gevent-24.2.1-cp38-cp38-musllinux_1_1_x86_64.whl", hash = "sha256:2955eea9c44c842c626feebf4459c42ce168685aa99594e049d03bedf53c2800"},
+    {file = "gevent-24.2.1-cp38-cp38-win32.whl", hash = "sha256:44098038d5e2749b0784aabb27f1fcbb3f43edebedf64d0af0d26955611be8d6"},
+    {file = "gevent-24.2.1-cp38-cp38-win_amd64.whl", hash = "sha256:117e5837bc74a1673605fb53f8bfe22feb6e5afa411f524c835b2ddf768db0de"},
+    {file = "gevent-24.2.1-cp39-cp39-macosx_11_0_universal2.whl", hash = "sha256:2ae3a25ecce0a5b0cd0808ab716bfca180230112bb4bc89b46ae0061d62d4afe"},
+    {file = "gevent-24.2.1-cp39-cp39-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:a7ceb59986456ce851160867ce4929edaffbd2f069ae25717150199f8e1548b8"},
+    {file = "gevent-24.2.1-cp39-cp39-manylinux_2_28_x86_64.whl", hash = "sha256:2e9ac06f225b696cdedbb22f9e805e2dd87bf82e8fa5e17756f94e88a9d37cf7"},
+    {file = "gevent-24.2.1-cp39-cp39-musllinux_1_1_x86_64.whl", hash = "sha256:90cbac1ec05b305a1b90ede61ef73126afdeb5a804ae04480d6da12c56378df1"},
+    {file = "gevent-24.2.1-cp39-cp39-win32.whl", hash = "sha256:782a771424fe74bc7e75c228a1da671578c2ba4ddb2ca09b8f959abdf787331e"},
+    {file = "gevent-24.2.1-cp39-cp39-win_amd64.whl", hash = "sha256:3adfb96637f44010be8abd1b5e73b5070f851b817a0b182e601202f20fa06533"},
+    {file = "gevent-24.2.1-pp310-pypy310_pp73-macosx_11_0_universal2.whl", hash = "sha256:7b00f8c9065de3ad226f7979154a7b27f3b9151c8055c162332369262fc025d8"},
+    {file = "gevent-24.2.1.tar.gz", hash = "sha256:432fc76f680acf7cf188c2ee0f5d3ab73b63c1f03114c7cd8a34cebbe5aa2056"},
+]
+
+[package.dependencies]
+cffi = {version = ">=1.12.2", markers = "platform_python_implementation == \"CPython\" and sys_platform == \"win32\""}
+greenlet = [
+    {version = ">=2.0.0", markers = "platform_python_implementation == \"CPython\" and python_version < \"3.11\""},
+    {version = ">=3.0rc3", markers = "platform_python_implementation == \"CPython\" and python_version >= \"3.11\""},
+]
+"zope.event" = "*"
+"zope.interface" = "*"
+
+[package.extras]
+dnspython = ["dnspython (>=1.16.0,<2.0) ; python_version < \"3.10\"", "idna ; python_version < \"3.10\""]
+docs = ["furo", "repoze.sphinx.autointerface", "sphinx", "sphinxcontrib-programoutput", "zope.schema"]
+monitor = ["psutil (>=5.7.0) ; sys_platform != \"win32\" or platform_python_implementation == \"CPython\""]
+recommended = ["cffi (>=1.12.2) ; platform_python_implementation == \"CPython\"", "dnspython (>=1.16.0,<2.0) ; python_version < \"3.10\"", "idna ; python_version < \"3.10\"", "psutil (>=5.7.0) ; sys_platform != \"win32\" or platform_python_implementation == \"CPython\""]
+test = ["cffi (>=1.12.2) ; platform_python_implementation == \"CPython\"", "coverage (>=5.0) ; sys_platform != \"win32\"", "dnspython (>=1.16.0,<2.0) ; python_version < \"3.10\"", "idna ; python_version < \"3.10\"", "objgraph", "psutil (>=5.7.0) ; sys_platform != \"win32\" or platform_python_implementation == \"CPython\"", "requests"]
+
+[[package]]
+name = "greenlet"
+version = "3.0.3"
+description = "Lightweight in-process concurrent programming"
+optional = false
+python-versions = ">=3.7"
+groups = ["main"]
+files = [
+    {file = "greenlet-3.0.3-cp310-cp310-macosx_11_0_universal2.whl", hash = "sha256:9da2bd29ed9e4f15955dd1595ad7bc9320308a3b766ef7f837e23ad4b4aac31a"},
+    {file = "greenlet-3.0.3-cp310-cp310-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:d353cadd6083fdb056bb46ed07e4340b0869c305c8ca54ef9da3421acbdf6881"},
+    {file = "greenlet-3.0.3-cp310-cp310-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:dca1e2f3ca00b84a396bc1bce13dd21f680f035314d2379c4160c98153b2059b"},
+    {file = "greenlet-3.0.3-cp310-cp310-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:3ed7fb269f15dc662787f4119ec300ad0702fa1b19d2135a37c2c4de6fadfd4a"},
+    {file = "greenlet-3.0.3-cp310-cp310-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:dd4f49ae60e10adbc94b45c0b5e6a179acc1736cf7a90160b404076ee283cf83"},
+    {file = "greenlet-3.0.3-cp310-cp310-manylinux_2_24_x86_64.manylinux_2_28_x86_64.whl", hash = "sha256:73a411ef564e0e097dbe7e866bb2dda0f027e072b04da387282b02c308807405"},
+    {file = "greenlet-3.0.3-cp310-cp310-musllinux_1_1_aarch64.whl", hash = "sha256:7f362975f2d179f9e26928c5b517524e89dd48530a0202570d55ad6ca5d8a56f"},
+    {file = "greenlet-3.0.3-cp310-cp310-musllinux_1_1_x86_64.whl", hash = "sha256:649dde7de1a5eceb258f9cb00bdf50e978c9db1b996964cd80703614c86495eb"},
+    {file = "greenlet-3.0.3-cp310-cp310-win_amd64.whl", hash = "sha256:68834da854554926fbedd38c76e60c4a2e3198c6fbed520b106a8986445caaf9"},
+    {file = "greenlet-3.0.3-cp311-cp311-macosx_11_0_universal2.whl", hash = "sha256:b1b5667cced97081bf57b8fa1d6bfca67814b0afd38208d52538316e9422fc61"},
+    {file = "greenlet-3.0.3-cp311-cp311-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:52f59dd9c96ad2fc0d5724107444f76eb20aaccb675bf825df6435acb7703559"},
+    {file = "greenlet-3.0.3-cp311-cp311-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:afaff6cf5200befd5cec055b07d1c0a5a06c040fe5ad148abcd11ba6ab9b114e"},
+    {file = "greenlet-3.0.3-cp311-cp311-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:fe754d231288e1e64323cfad462fcee8f0288654c10bdf4f603a39ed923bef33"},
+    {file = "greenlet-3.0.3-cp311-cp311-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:2797aa5aedac23af156bbb5a6aa2cd3427ada2972c828244eb7d1b9255846379"},
+    {file = "greenlet-3.0.3-cp311-cp311-manylinux_2_24_x86_64.manylinux_2_28_x86_64.whl", hash = "sha256:b7f009caad047246ed379e1c4dbcb8b020f0a390667ea74d2387be2998f58a22"},
+    {file = "greenlet-3.0.3-cp311-cp311-musllinux_1_1_aarch64.whl", hash = "sha256:c5e1536de2aad7bf62e27baf79225d0d64360d4168cf2e6becb91baf1ed074f3"},
+    {file = "greenlet-3.0.3-cp311-cp311-musllinux_1_1_x86_64.whl", hash = "sha256:894393ce10ceac937e56ec00bb71c4c2f8209ad516e96033e4b3b1de270e200d"},
+    {file = "greenlet-3.0.3-cp311-cp311-win_amd64.whl", hash = "sha256:1ea188d4f49089fc6fb283845ab18a2518d279c7cd9da1065d7a84e991748728"},
+    {file = "greenlet-3.0.3-cp312-cp312-macosx_11_0_universal2.whl", hash = "sha256:70fb482fdf2c707765ab5f0b6655e9cfcf3780d8d87355a063547b41177599be"},
+    {file = "greenlet-3.0.3-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:d4d1ac74f5c0c0524e4a24335350edad7e5f03b9532da7ea4d3c54d527784f2e"},
+    {file = "greenlet-3.0.3-cp312-cp312-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:149e94a2dd82d19838fe4b2259f1b6b9957d5ba1b25640d2380bea9c5df37676"},
+    {file = "greenlet-3.0.3-cp312-cp312-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:15d79dd26056573940fcb8c7413d84118086f2ec1a8acdfa854631084393efcc"},
+    {file = "greenlet-3.0.3-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:881b7db1ebff4ba09aaaeae6aa491daeb226c8150fc20e836ad00041bcb11230"},
+    {file = "greenlet-3.0.3-cp312-cp312-manylinux_2_24_x86_64.manylinux_2_28_x86_64.whl", hash = "sha256:fcd2469d6a2cf298f198f0487e0a5b1a47a42ca0fa4dfd1b6862c999f018ebbf"},
+    {file = "greenlet-3.0.3-cp312-cp312-musllinux_1_1_aarch64.whl", hash = "sha256:1f672519db1796ca0d8753f9e78ec02355e862d0998193038c7073045899f305"},
+    {file = "greenlet-3.0.3-cp312-cp312-musllinux_1_1_x86_64.whl", hash = "sha256:2516a9957eed41dd8f1ec0c604f1cdc86758b587d964668b5b196a9db5bfcde6"},
+    {file = "greenlet-3.0.3-cp312-cp312-win_amd64.whl", hash = "sha256:bba5387a6975598857d86de9eac14210a49d554a77eb8261cc68b7d082f78ce2"},
+    {file = "greenlet-3.0.3-cp37-cp37m-macosx_11_0_universal2.whl", hash = "sha256:5b51e85cb5ceda94e79d019ed36b35386e8c37d22f07d6a751cb659b180d5274"},
+    {file = "greenlet-3.0.3-cp37-cp37m-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:daf3cb43b7cf2ba96d614252ce1684c1bccee6b2183a01328c98d36fcd7d5cb0"},
+    {file = "greenlet-3.0.3-cp37-cp37m-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:99bf650dc5d69546e076f413a87481ee1d2d09aaaaaca058c9251b6d8c14783f"},
+    {file = "greenlet-3.0.3-cp37-cp37m-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:2dd6e660effd852586b6a8478a1d244b8dc90ab5b1321751d2ea15deb49ed414"},
+    {file = "greenlet-3.0.3-cp37-cp37m-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:e3391d1e16e2a5a1507d83e4a8b100f4ee626e8eca43cf2cadb543de69827c4c"},
+    {file = "greenlet-3.0.3-cp37-cp37m-manylinux_2_24_x86_64.manylinux_2_28_x86_64.whl", hash = "sha256:e1f145462f1fa6e4a4ae3c0f782e580ce44d57c8f2c7aae1b6fa88c0b2efdb41"},
+    {file = "greenlet-3.0.3-cp37-cp37m-musllinux_1_1_aarch64.whl", hash = "sha256:1a7191e42732df52cb5f39d3527217e7ab73cae2cb3694d241e18f53d84ea9a7"},
+    {file = "greenlet-3.0.3-cp37-cp37m-musllinux_1_1_x86_64.whl", hash = "sha256:0448abc479fab28b00cb472d278828b3ccca164531daab4e970a0458786055d6"},
+    {file = "greenlet-3.0.3-cp37-cp37m-win32.whl", hash = "sha256:b542be2440edc2d48547b5923c408cbe0fc94afb9f18741faa6ae970dbcb9b6d"},
+    {file = "greenlet-3.0.3-cp37-cp37m-win_amd64.whl", hash = "sha256:01bc7ea167cf943b4c802068e178bbf70ae2e8c080467070d01bfa02f337ee67"},
+    {file = "greenlet-3.0.3-cp38-cp38-macosx_11_0_universal2.whl", hash = "sha256:1996cb9306c8595335bb157d133daf5cf9f693ef413e7673cb07e3e5871379ca"},
+    {file = "greenlet-3.0.3-cp38-cp38-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:3ddc0f794e6ad661e321caa8d2f0a55ce01213c74722587256fb6566049a8b04"},
+    {file = "greenlet-3.0.3-cp38-cp38-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:c9db1c18f0eaad2f804728c67d6c610778456e3e1cc4ab4bbd5eeb8e6053c6fc"},
+    {file = "greenlet-3.0.3-cp38-cp38-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:7170375bcc99f1a2fbd9c306f5be8764eaf3ac6b5cb968862cad4c7057756506"},
+    {file = "greenlet-3.0.3-cp38-cp38-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:6b66c9c1e7ccabad3a7d037b2bcb740122a7b17a53734b7d72a344ce39882a1b"},
+    {file = "greenlet-3.0.3-cp38-cp38-manylinux_2_24_x86_64.manylinux_2_28_x86_64.whl", hash = "sha256:098d86f528c855ead3479afe84b49242e174ed262456c342d70fc7f972bc13c4"},
+    {file = "greenlet-3.0.3-cp38-cp38-musllinux_1_1_aarch64.whl", hash = "sha256:81bb9c6d52e8321f09c3d165b2a78c680506d9af285bfccbad9fb7ad5a5da3e5"},
+    {file = "greenlet-3.0.3-cp38-cp38-musllinux_1_1_x86_64.whl", hash = "sha256:fd096eb7ffef17c456cfa587523c5f92321ae02427ff955bebe9e3c63bc9f0da"},
+    {file = "greenlet-3.0.3-cp38-cp38-win32.whl", hash = "sha256:d46677c85c5ba00a9cb6f7a00b2bfa6f812192d2c9f7d9c4f6a55b60216712f3"},
+    {file = "greenlet-3.0.3-cp38-cp38-win_amd64.whl", hash = "sha256:419b386f84949bf0e7c73e6032e3457b82a787c1ab4a0e43732898a761cc9dbf"},
+    {file = "greenlet-3.0.3-cp39-cp39-macosx_11_0_universal2.whl", hash = "sha256:da70d4d51c8b306bb7a031d5cff6cc25ad253affe89b70352af5f1cb68e74b53"},
+    {file = "greenlet-3.0.3-cp39-cp39-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:086152f8fbc5955df88382e8a75984e2bb1c892ad2e3c80a2508954e52295257"},
+    {file = "greenlet-3.0.3-cp39-cp39-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:d73a9fe764d77f87f8ec26a0c85144d6a951a6c438dfe50487df5595c6373eac"},
+    {file = "greenlet-3.0.3-cp39-cp39-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:b7dcbe92cc99f08c8dd11f930de4d99ef756c3591a5377d1d9cd7dd5e896da71"},
+    {file = "greenlet-3.0.3-cp39-cp39-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:1551a8195c0d4a68fac7a4325efac0d541b48def35feb49d803674ac32582f61"},
+    {file = "greenlet-3.0.3-cp39-cp39-manylinux_2_24_x86_64.manylinux_2_28_x86_64.whl", hash = "sha256:64d7675ad83578e3fc149b617a444fab8efdafc9385471f868eb5ff83e446b8b"},
+    {file = "greenlet-3.0.3-cp39-cp39-musllinux_1_1_aarch64.whl", hash = "sha256:b37eef18ea55f2ffd8f00ff8fe7c8d3818abd3e25fb73fae2ca3b672e333a7a6"},
+    {file = "greenlet-3.0.3-cp39-cp39-musllinux_1_1_x86_64.whl", hash = "sha256:77457465d89b8263bca14759d7c1684df840b6811b2499838cc5b040a8b5b113"},
+    {file = "greenlet-3.0.3-cp39-cp39-win32.whl", hash = "sha256:57e8974f23e47dac22b83436bdcf23080ade568ce77df33159e019d161ce1d1e"},
+    {file = "greenlet-3.0.3-cp39-cp39-win_amd64.whl", hash = "sha256:c5ee858cfe08f34712f548c3c363e807e7186f03ad7a5039ebadb29e8c6be067"},
+    {file = "greenlet-3.0.3.tar.gz", hash = "sha256:43374442353259554ce33599da8b692d5aa96f8976d567d4badf263371fbe491"},
+]
+
+[package.extras]
+docs = ["Sphinx", "furo"]
+test = ["objgraph", "psutil"]
+
+[[package]]
+name = "gunicorn"
+version = "23.0.0"
+description = "WSGI HTTP Server for UNIX"
+optional = false
+python-versions = ">=3.7"
+groups = ["main"]
+files = [
+    {file = "gunicorn-23.0.0-py3-none-any.whl", hash = "sha256:ec400d38950de4dfd418cff8328b2c8faed0edb0d517d3394e457c317908ca4d"},
+    {file = "gunicorn-23.0.0.tar.gz", hash = "sha256:f014447a0101dc57e294f6c18ca6b40227a4c90e9bdb586042628030cba004ec"},
+]
+
+[package.dependencies]
+packaging = "*"
+
+[package.extras]
+eventlet = ["eventlet (>=0.24.1,!=0.36.0)"]
+gevent = ["gevent (>=1.4.0)"]
+setproctitle = ["setproctitle"]
+testing = ["coverage", "eventlet", "gevent", "pytest", "pytest-cov"]
+tornado = ["tornado (>=0.2)"]
+
+[[package]]
+name = "h11"
+version = "0.14.0"
+description = "A pure-Python, bring-your-own-I/O implementation of HTTP/1.1"
+optional = false
+python-versions = ">=3.7"
+groups = ["main"]
+files = [
+    {file = "h11-0.14.0-py3-none-any.whl", hash = "sha256:e3fe4ac4b851c468cc8363d500db52c2ead036020723024a109d37346efaa761"},
+    {file = "h11-0.14.0.tar.gz", hash = "sha256:8f19fbbe99e72420ff35c00b27a34cb9937e902a8b810e2c88300c6f0a3b699d"},
+]
+
+[[package]]
+name = "httpretty"
+version = "1.1.4"
+description = "HTTP client mock for Python"
+optional = false
+python-versions = ">=3"
+groups = ["dev"]
+files = [
+    {file = "httpretty-1.1.4.tar.gz", hash = "sha256:20de0e5dd5a18292d36d928cc3d6e52f8b2ac73daec40d41eb62dee154933b68"},
+]
+
+[[package]]
+name = "httptools"
+version = "0.6.4"
+description = "A collection of framework independent HTTP protocol utils."
+optional = false
+python-versions = ">=3.8.0"
+groups = ["main"]
+files = [
+    {file = "httptools-0.6.4-cp310-cp310-macosx_10_9_universal2.whl", hash = "sha256:3c73ce323711a6ffb0d247dcd5a550b8babf0f757e86a52558fe5b86d6fefcc0"},
+    {file = "httptools-0.6.4-cp310-cp310-macosx_11_0_arm64.whl", hash = "sha256:345c288418f0944a6fe67be8e6afa9262b18c7626c3ef3c28adc5eabc06a68da"},
+    {file = "httptools-0.6.4-cp310-cp310-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:deee0e3343f98ee8047e9f4c5bc7cedbf69f5734454a94c38ee829fb2d5fa3c1"},
+    {file = "httptools-0.6.4-cp310-cp310-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:ca80b7485c76f768a3bc83ea58373f8db7b015551117375e4918e2aa77ea9b50"},
+    {file = "httptools-0.6.4-cp310-cp310-musllinux_1_2_aarch64.whl", hash = "sha256:90d96a385fa941283ebd231464045187a31ad932ebfa541be8edf5b3c2328959"},
+    {file = "httptools-0.6.4-cp310-cp310-musllinux_1_2_x86_64.whl", hash = "sha256:59e724f8b332319e2875efd360e61ac07f33b492889284a3e05e6d13746876f4"},
+    {file = "httptools-0.6.4-cp310-cp310-win_amd64.whl", hash = "sha256:c26f313951f6e26147833fc923f78f95604bbec812a43e5ee37f26dc9e5a686c"},
+    {file = "httptools-0.6.4-cp311-cp311-macosx_10_9_universal2.whl", hash = "sha256:f47f8ed67cc0ff862b84a1189831d1d33c963fb3ce1ee0c65d3b0cbe7b711069"},
+    {file = "httptools-0.6.4-cp311-cp311-macosx_11_0_arm64.whl", hash = "sha256:0614154d5454c21b6410fdf5262b4a3ddb0f53f1e1721cfd59d55f32138c578a"},
+    {file = "httptools-0.6.4-cp311-cp311-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:f8787367fbdfccae38e35abf7641dafc5310310a5987b689f4c32cc8cc3ee975"},
+    {file = "httptools-0.6.4-cp311-cp311-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:40b0f7fe4fd38e6a507bdb751db0379df1e99120c65fbdc8ee6c1d044897a636"},
+    {file = "httptools-0.6.4-cp311-cp311-musllinux_1_2_aarch64.whl", hash = "sha256:40a5ec98d3f49904b9fe36827dcf1aadfef3b89e2bd05b0e35e94f97c2b14721"},
+    {file = "httptools-0.6.4-cp311-cp311-musllinux_1_2_x86_64.whl", hash = "sha256:dacdd3d10ea1b4ca9df97a0a303cbacafc04b5cd375fa98732678151643d4988"},
+    {file = "httptools-0.6.4-cp311-cp311-win_amd64.whl", hash = "sha256:288cd628406cc53f9a541cfaf06041b4c71d751856bab45e3702191f931ccd17"},
+    {file = "httptools-0.6.4-cp312-cp312-macosx_10_13_universal2.whl", hash = "sha256:df017d6c780287d5c80601dafa31f17bddb170232d85c066604d8558683711a2"},
+    {file = "httptools-0.6.4-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:85071a1e8c2d051b507161f6c3e26155b5c790e4e28d7f236422dbacc2a9cc44"},
+    {file = "httptools-0.6.4-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:69422b7f458c5af875922cdb5bd586cc1f1033295aa9ff63ee196a87519ac8e1"},
+    {file = "httptools-0.6.4-cp312-cp312-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:16e603a3bff50db08cd578d54f07032ca1631450ceb972c2f834c2b860c28ea2"},
+    {file = "httptools-0.6.4-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:ec4f178901fa1834d4a060320d2f3abc5c9e39766953d038f1458cb885f47e81"},
+    {file = "httptools-0.6.4-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:f9eb89ecf8b290f2e293325c646a211ff1c2493222798bb80a530c5e7502494f"},
+    {file = "httptools-0.6.4-cp312-cp312-win_amd64.whl", hash = "sha256:db78cb9ca56b59b016e64b6031eda5653be0589dba2b1b43453f6e8b405a0970"},
+    {file = "httptools-0.6.4-cp313-cp313-macosx_10_13_universal2.whl", hash = "sha256:ade273d7e767d5fae13fa637f4d53b6e961fb7fd93c7797562663f0171c26660"},
+    {file = "httptools-0.6.4-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:856f4bc0478ae143bad54a4242fccb1f3f86a6e1be5548fecfd4102061b3a083"},
+    {file = "httptools-0.6.4-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:322d20ea9cdd1fa98bd6a74b77e2ec5b818abdc3d36695ab402a0de8ef2865a3"},
+    {file = "httptools-0.6.4-cp313-cp313-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:4d87b29bd4486c0093fc64dea80231f7c7f7eb4dc70ae394d70a495ab8436071"},
+    {file = "httptools-0.6.4-cp313-cp313-musllinux_1_2_aarch64.whl", hash = "sha256:342dd6946aa6bda4b8f18c734576106b8a31f2fe31492881a9a160ec84ff4bd5"},
+    {file = "httptools-0.6.4-cp313-cp313-musllinux_1_2_x86_64.whl", hash = "sha256:4b36913ba52008249223042dca46e69967985fb4051951f94357ea681e1f5dc0"},
+    {file = "httptools-0.6.4-cp313-cp313-win_amd64.whl", hash = "sha256:28908df1b9bb8187393d5b5db91435ccc9c8e891657f9cbb42a2541b44c82fc8"},
+    {file = "httptools-0.6.4-cp38-cp38-macosx_10_9_universal2.whl", hash = "sha256:d3f0d369e7ffbe59c4b6116a44d6a8eb4783aae027f2c0b366cf0aa964185dba"},
+    {file = "httptools-0.6.4-cp38-cp38-macosx_11_0_arm64.whl", hash = "sha256:94978a49b8f4569ad607cd4946b759d90b285e39c0d4640c6b36ca7a3ddf2efc"},
+    {file = "httptools-0.6.4-cp38-cp38-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:40dc6a8e399e15ea525305a2ddba998b0af5caa2566bcd79dcbe8948181eeaff"},
+    {file = "httptools-0.6.4-cp38-cp38-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:ab9ba8dcf59de5181f6be44a77458e45a578fc99c31510b8c65b7d5acc3cf490"},
+    {file = "httptools-0.6.4-cp38-cp38-musllinux_1_2_aarch64.whl", hash = "sha256:fc411e1c0a7dcd2f902c7c48cf079947a7e65b5485dea9decb82b9105ca71a43"},
+    {file = "httptools-0.6.4-cp38-cp38-musllinux_1_2_x86_64.whl", hash = "sha256:d54efd20338ac52ba31e7da78e4a72570cf729fac82bc31ff9199bedf1dc7440"},
+    {file = "httptools-0.6.4-cp38-cp38-win_amd64.whl", hash = "sha256:df959752a0c2748a65ab5387d08287abf6779ae9165916fe053e68ae1fbdc47f"},
+    {file = "httptools-0.6.4-cp39-cp39-macosx_10_9_universal2.whl", hash = "sha256:85797e37e8eeaa5439d33e556662cc370e474445d5fab24dcadc65a8ffb04003"},
+    {file = "httptools-0.6.4-cp39-cp39-macosx_11_0_arm64.whl", hash = "sha256:db353d22843cf1028f43c3651581e4bb49374d85692a85f95f7b9a130e1b2cab"},
+    {file = "httptools-0.6.4-cp39-cp39-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:d1ffd262a73d7c28424252381a5b854c19d9de5f56f075445d33919a637e3547"},
+    {file = "httptools-0.6.4-cp39-cp39-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:703c346571fa50d2e9856a37d7cd9435a25e7fd15e236c397bf224afaa355fe9"},
+    {file = "httptools-0.6.4-cp39-cp39-musllinux_1_2_aarch64.whl", hash = "sha256:aafe0f1918ed07b67c1e838f950b1c1fabc683030477e60b335649b8020e1076"},
+    {file = "httptools-0.6.4-cp39-cp39-musllinux_1_2_x86_64.whl", hash = "sha256:0e563e54979e97b6d13f1bbc05a96109923e76b901f786a5eae36e99c01237bd"},
+    {file = "httptools-0.6.4-cp39-cp39-win_amd64.whl", hash = "sha256:b799de31416ecc589ad79dd85a0b2657a8fe39327944998dea368c1d4c9e55e6"},
+    {file = "httptools-0.6.4.tar.gz", hash = "sha256:4e93eee4add6493b59a5c514da98c939b244fce4a0d8879cd3f466562f4b7d5c"},
+]
+
+[package.extras]
+test = ["Cython (>=0.29.24)"]
+
+[[package]]
+name = "humanize"
+version = "4.11.0"
+description = "Python humanize utilities"
+optional = false
+python-versions = ">=3.9"
+groups = ["main"]
+files = [
+    {file = "humanize-4.11.0-py3-none-any.whl", hash = "sha256:b53caaec8532bcb2fff70c8826f904c35943f8cecaca29d272d9df38092736c0"},
+    {file = "humanize-4.11.0.tar.gz", hash = "sha256:e66f36020a2d5a974c504bd2555cf770621dbdbb6d82f94a6857c0b1ea2608be"},
+]
+
+[package.extras]
+tests = ["freezegun", "pytest", "pytest-cov"]
+
+[[package]]
+name = "hyperlink"
+version = "21.0.0"
+description = "A featureful, immutable, and correct URL for Python."
+optional = false
+python-versions = ">=2.6, !=3.0.*, !=3.1.*, !=3.2.*, !=3.3.*"
+groups = ["main"]
+files = [
+    {file = "hyperlink-21.0.0-py2.py3-none-any.whl", hash = "sha256:e6b14c37ecb73e89c77d78cdb4c2cc8f3fb59a885c5b3f819ff4ed80f25af1b4"},
+    {file = "hyperlink-21.0.0.tar.gz", hash = "sha256:427af957daa58bc909471c6c40f74c5450fa123dd093fc53efd2e91d2705a56b"},
+]
+
+[package.dependencies]
+idna = ">=2.5"
+
+[[package]]
+name = "ida-netnode"
+version = "3.0"
+description = "Humane API for storing and accessing persistent data in IDA Pro databases"
+optional = false
+python-versions = "*"
+groups = ["main"]
+files = [
+    {file = "ida-netnode-3.0.tar.gz", hash = "sha256:b7e1f2fbf57e3e104ed779d58e5f3f050aa48cce581bab8bf14ccee7a315e32e"},
+    {file = "ida_netnode-3.0-py3-none-any.whl", hash = "sha256:b9d117703e076c9d219c9337d0b43d935b5102b5cb677835f7c9776a9f0340a5"},
+]
+
+[package.dependencies]
+six = "*"
+
+[[package]]
+name = "ida-settings"
+version = "2.1.0"
+description = "Fetch and set configuration values in IDA Pro IDAPython scripts"
+optional = false
+python-versions = "*"
+groups = ["main"]
+files = [
+    {file = "ida-settings-2.1.0.tar.gz", hash = "sha256:1371730b4e64bf388845b65a41bea094ebde8a5d3a05bdf4edf2f42aaba83262"},
+    {file = "ida_settings-2.1.0-py2-none-any.whl", hash = "sha256:eab913b31ed0565aacea6d31976696c33b60c7e7bce3fccb75f32bef3878fc61"},
+]
+
+[package.dependencies]
+ida-netnode = "*"
+six = "*"
+
+[[package]]
+name = "identify"
+version = "2.6.6"
+description = "File identification library for Python"
+optional = false
+python-versions = ">=3.9"
+groups = ["dev"]
+files = [
+    {file = "identify-2.6.6-py2.py3-none-any.whl", hash = "sha256:cbd1810bce79f8b671ecb20f53ee0ae8e86ae84b557de31d89709dc2a48ba881"},
+    {file = "identify-2.6.6.tar.gz", hash = "sha256:7bec12768ed44ea4761efb47806f0a41f86e7c0a5fdf5950d4648c90eca7e251"},
+]
+
+[package.extras]
+license = ["ukkonen"]
+
+[[package]]
+name = "idna"
+version = "3.10"
+description = "Internationalized Domain Names in Applications (IDNA)"
+optional = false
+python-versions = ">=3.6"
+groups = ["main"]
+files = [
+    {file = "idna-3.10-py3-none-any.whl", hash = "sha256:946d195a0d259cbba61165e88e65941f16e9b36ea6ddb97f00452bae8b1287d3"},
+    {file = "idna-3.10.tar.gz", hash = "sha256:12f65c9b470abda6dc35cf8e63cc574b1c52b11df2c86030af0ac09b01b13ea9"},
+]
+
+[package.extras]
+all = ["flake8 (>=7.1.1)", "mypy (>=1.11.2)", "pytest (>=8.3.2)", "ruff (>=0.6.2)"]
+
+[[package]]
+name = "incremental"
+version = "24.7.2"
+description = "A small library that versions your Python projects."
+optional = false
+python-versions = ">=3.8"
+groups = ["main"]
+files = [
+    {file = "incremental-24.7.2-py3-none-any.whl", hash = "sha256:8cb2c3431530bec48ad70513931a760f446ad6c25e8333ca5d95e24b0ed7b8fe"},
+    {file = "incremental-24.7.2.tar.gz", hash = "sha256:fb4f1d47ee60efe87d4f6f0ebb5f70b9760db2b2574c59c8e8912be4ebd464c9"},
+]
+
+[package.dependencies]
+setuptools = ">=61.0"
+tomli = {version = "*", markers = "python_version < \"3.11\""}
+
+[package.extras]
+scripts = ["click (>=6.0)"]
+
+[[package]]
+name = "iniconfig"
+version = "2.0.0"
+description = "brain-dead simple config-ini parsing"
+optional = false
+python-versions = ">=3.7"
+groups = ["dev"]
+files = [
+    {file = "iniconfig-2.0.0-py3-none-any.whl", hash = "sha256:b6a85871a79d2e3b22d2d1b94ac2824226a63c6b741c88f7ae975f18b6778374"},
+    {file = "iniconfig-2.0.0.tar.gz", hash = "sha256:2d91e135bf72d31a410b17c16da610a82cb55f6b0477d1a902134b24a455b8b3"},
+]
+
+[[package]]
+name = "iniparse"
+version = "0.5"
+description = "Accessing and Modifying INI files"
+optional = false
+python-versions = "*"
+groups = ["main"]
+files = [
+    {file = "iniparse-0.5-py2-none-any.whl", hash = "sha256:88ca60473b1637055a937933d48840be1b1b6835f381a6158ef118a532583675"},
+    {file = "iniparse-0.5-py3-none-any.whl", hash = "sha256:db6ef1d8a02395448e0e7b17ac0aa28b8d338b632bbd1ffca08c02ddae32cf97"},
+    {file = "iniparse-0.5.tar.gz", hash = "sha256:932e5239d526e7acb504017bb707be67019ac428a6932368e6851691093aa842"},
+]
+
+[package.dependencies]
+six = "*"
+
+[[package]]
+name = "intervaltree"
+version = "3.1.0"
+description = "Editable interval tree data structure for Python 2 and 3"
+optional = false
+python-versions = "*"
+groups = ["main"]
+files = [
+    {file = "intervaltree-3.1.0.tar.gz", hash = "sha256:902b1b88936918f9b2a19e0e5eb7ccb430ae45cde4f39ea4b36932920d33952d"},
+]
+
+[package.dependencies]
+sortedcontainers = ">=2.0,<3.0"
+
+[[package]]
+name = "isort"
+version = "5.13.2"
+description = "A Python utility / library to sort Python imports."
+optional = false
+python-versions = ">=3.8.0"
+groups = ["dev"]
+files = [
+    {file = "isort-5.13.2-py3-none-any.whl", hash = "sha256:8ca5e72a8d85860d5a3fa69b8745237f2939afe12dbf656afbcb47fe72d947a6"},
+    {file = "isort-5.13.2.tar.gz", hash = "sha256:48fdfcb9face5d58a4f6dde2e72a1fb8dcaf8ab26f95ab49fab84c2ddefb0109"},
+]
+
+[package.extras]
+colors = ["colorama (>=0.4.6)"]
+
+[[package]]
+name = "jinja2"
+version = "3.1.6"
+description = "A very fast and expressive template engine."
+optional = false
+python-versions = ">=3.7"
+groups = ["main"]
+files = [
+    {file = "jinja2-3.1.6-py3-none-any.whl", hash = "sha256:85ece4451f492d0c13c5dd7c13a64681a86afae63a5f347908daf103ce6d2f67"},
+    {file = "jinja2-3.1.6.tar.gz", hash = "sha256:0137fb05990d35f1275a587e9aee6d56da821fc83491a0fb838183be43f66d6d"},
+]
+
+[package.dependencies]
+MarkupSafe = ">=2.0"
+
+[package.extras]
+i18n = ["Babel (>=2.7)"]
+
+[[package]]
+name = "jsbeautifier"
+version = "1.15.1"
+description = "JavaScript unobfuscator and beautifier."
+optional = false
+python-versions = "*"
+groups = ["main"]
+files = [
+    {file = "jsbeautifier-1.15.1.tar.gz", hash = "sha256:ebd733b560704c602d744eafc839db60a1ee9326e30a2a80c4adb8718adc1b24"},
+]
+
+[package.dependencies]
+editorconfig = ">=0.12.2"
+six = ">=1.13.0"
+
+[[package]]
+name = "lnkparse3"
+version = "1.5.0"
+description = "Windows Shortcut file (LNK) parser"
+optional = false
+python-versions = "*"
+groups = ["main"]
+files = [
+    {file = "LnkParse3-1.5.0-py3-none-any.whl", hash = "sha256:56b549389254f4d25375621249aa3a8c31f1dabf375e88bf7dc8c73a0f4f8f1e"},
+    {file = "lnkparse3-1.5.0.tar.gz", hash = "sha256:3ecbd8f4107be07b8e8d7b770daa53271abf66222ee892618d30f86952e1121a"},
+]
+
+[package.dependencies]
+pyyaml = "*"
+
+[[package]]
+name = "lxml"
+version = "5.3.0"
+description = "Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API."
+optional = false
+python-versions = ">=3.6"
+groups = ["main"]
+files = [
+    {file = "lxml-5.3.0-cp310-cp310-macosx_10_9_universal2.whl", hash = "sha256:dd36439be765e2dde7660212b5275641edbc813e7b24668831a5c8ac91180656"},
+    {file = "lxml-5.3.0-cp310-cp310-macosx_10_9_x86_64.whl", hash = "sha256:ae5fe5c4b525aa82b8076c1a59d642c17b6e8739ecf852522c6321852178119d"},
+    {file = "lxml-5.3.0-cp310-cp310-manylinux_2_12_i686.manylinux2010_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:501d0d7e26b4d261fca8132854d845e4988097611ba2531408ec91cf3fd9d20a"},
+    {file = "lxml-5.3.0-cp310-cp310-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:fb66442c2546446944437df74379e9cf9e9db353e61301d1a0e26482f43f0dd8"},
+    {file = "lxml-5.3.0-cp310-cp310-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:9e41506fec7a7f9405b14aa2d5c8abbb4dbbd09d88f9496958b6d00cb4d45330"},
+    {file = "lxml-5.3.0-cp310-cp310-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:f7d4a670107d75dfe5ad080bed6c341d18c4442f9378c9f58e5851e86eb79965"},
+    {file = "lxml-5.3.0-cp310-cp310-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:41ce1f1e2c7755abfc7e759dc34d7d05fd221723ff822947132dc934d122fe22"},
+    {file = "lxml-5.3.0-cp310-cp310-manylinux_2_28_aarch64.whl", hash = "sha256:44264ecae91b30e5633013fb66f6ddd05c006d3e0e884f75ce0b4755b3e3847b"},
+    {file = "lxml-5.3.0-cp310-cp310-manylinux_2_28_ppc64le.whl", hash = "sha256:3c174dc350d3ec52deb77f2faf05c439331d6ed5e702fc247ccb4e6b62d884b7"},
+    {file = "lxml-5.3.0-cp310-cp310-manylinux_2_28_s390x.whl", hash = "sha256:2dfab5fa6a28a0b60a20638dc48e6343c02ea9933e3279ccb132f555a62323d8"},
+    {file = "lxml-5.3.0-cp310-cp310-manylinux_2_28_x86_64.whl", hash = "sha256:b1c8c20847b9f34e98080da785bb2336ea982e7f913eed5809e5a3c872900f32"},
+    {file = "lxml-5.3.0-cp310-cp310-musllinux_1_2_aarch64.whl", hash = "sha256:2c86bf781b12ba417f64f3422cfc302523ac9cd1d8ae8c0f92a1c66e56ef2e86"},
+    {file = "lxml-5.3.0-cp310-cp310-musllinux_1_2_ppc64le.whl", hash = "sha256:c162b216070f280fa7da844531169be0baf9ccb17263cf5a8bf876fcd3117fa5"},
+    {file = "lxml-5.3.0-cp310-cp310-musllinux_1_2_s390x.whl", hash = "sha256:36aef61a1678cb778097b4a6eeae96a69875d51d1e8f4d4b491ab3cfb54b5a03"},
+    {file = "lxml-5.3.0-cp310-cp310-musllinux_1_2_x86_64.whl", hash = "sha256:f65e5120863c2b266dbcc927b306c5b78e502c71edf3295dfcb9501ec96e5fc7"},
+    {file = "lxml-5.3.0-cp310-cp310-win32.whl", hash = "sha256:ef0c1fe22171dd7c7c27147f2e9c3e86f8bdf473fed75f16b0c2e84a5030ce80"},
+    {file = "lxml-5.3.0-cp310-cp310-win_amd64.whl", hash = "sha256:052d99051e77a4f3e8482c65014cf6372e61b0a6f4fe9edb98503bb5364cfee3"},
+    {file = "lxml-5.3.0-cp311-cp311-macosx_10_9_universal2.whl", hash = "sha256:74bcb423462233bc5d6066e4e98b0264e7c1bed7541fff2f4e34fe6b21563c8b"},
+    {file = "lxml-5.3.0-cp311-cp311-macosx_10_9_x86_64.whl", hash = "sha256:a3d819eb6f9b8677f57f9664265d0a10dd6551d227afb4af2b9cd7bdc2ccbf18"},
+    {file = "lxml-5.3.0-cp311-cp311-manylinux_2_12_i686.manylinux2010_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:5b8f5db71b28b8c404956ddf79575ea77aa8b1538e8b2ef9ec877945b3f46442"},
+    {file = "lxml-5.3.0-cp311-cp311-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:2c3406b63232fc7e9b8783ab0b765d7c59e7c59ff96759d8ef9632fca27c7ee4"},
+    {file = "lxml-5.3.0-cp311-cp311-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:2ecdd78ab768f844c7a1d4a03595038c166b609f6395e25af9b0f3f26ae1230f"},
+    {file = "lxml-5.3.0-cp311-cp311-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:168f2dfcfdedf611eb285efac1516c8454c8c99caf271dccda8943576b67552e"},
+    {file = "lxml-5.3.0-cp311-cp311-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:aa617107a410245b8660028a7483b68e7914304a6d4882b5ff3d2d3eb5948d8c"},
+    {file = "lxml-5.3.0-cp311-cp311-manylinux_2_28_aarch64.whl", hash = "sha256:69959bd3167b993e6e710b99051265654133a98f20cec1d9b493b931942e9c16"},
+    {file = "lxml-5.3.0-cp311-cp311-manylinux_2_28_ppc64le.whl", hash = "sha256:bd96517ef76c8654446fc3db9242d019a1bb5fe8b751ba414765d59f99210b79"},
+    {file = "lxml-5.3.0-cp311-cp311-manylinux_2_28_s390x.whl", hash = "sha256:ab6dd83b970dc97c2d10bc71aa925b84788c7c05de30241b9e96f9b6d9ea3080"},
+    {file = "lxml-5.3.0-cp311-cp311-manylinux_2_28_x86_64.whl", hash = "sha256:eec1bb8cdbba2925bedc887bc0609a80e599c75b12d87ae42ac23fd199445654"},
+    {file = "lxml-5.3.0-cp311-cp311-musllinux_1_2_aarch64.whl", hash = "sha256:6a7095eeec6f89111d03dabfe5883a1fd54da319c94e0fb104ee8f23616b572d"},
+    {file = "lxml-5.3.0-cp311-cp311-musllinux_1_2_ppc64le.whl", hash = "sha256:6f651ebd0b21ec65dfca93aa629610a0dbc13dbc13554f19b0113da2e61a4763"},
+    {file = "lxml-5.3.0-cp311-cp311-musllinux_1_2_s390x.whl", hash = "sha256:f422a209d2455c56849442ae42f25dbaaba1c6c3f501d58761c619c7836642ec"},
+    {file = "lxml-5.3.0-cp311-cp311-musllinux_1_2_x86_64.whl", hash = "sha256:62f7fdb0d1ed2065451f086519865b4c90aa19aed51081979ecd05a21eb4d1be"},
+    {file = "lxml-5.3.0-cp311-cp311-win32.whl", hash = "sha256:c6379f35350b655fd817cd0d6cbeef7f265f3ae5fedb1caae2eb442bbeae9ab9"},
+    {file = "lxml-5.3.0-cp311-cp311-win_amd64.whl", hash = "sha256:9c52100e2c2dbb0649b90467935c4b0de5528833c76a35ea1a2691ec9f1ee7a1"},
+    {file = "lxml-5.3.0-cp312-cp312-macosx_10_9_universal2.whl", hash = "sha256:e99f5507401436fdcc85036a2e7dc2e28d962550afe1cbfc07c40e454256a859"},
+    {file = "lxml-5.3.0-cp312-cp312-macosx_10_9_x86_64.whl", hash = "sha256:384aacddf2e5813a36495233b64cb96b1949da72bef933918ba5c84e06af8f0e"},
+    {file = "lxml-5.3.0-cp312-cp312-manylinux_2_12_i686.manylinux2010_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:874a216bf6afaf97c263b56371434e47e2c652d215788396f60477540298218f"},
+    {file = "lxml-5.3.0-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:65ab5685d56914b9a2a34d67dd5488b83213d680b0c5d10b47f81da5a16b0b0e"},
+    {file = "lxml-5.3.0-cp312-cp312-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:aac0bbd3e8dd2d9c45ceb82249e8bdd3ac99131a32b4d35c8af3cc9db1657179"},
+    {file = "lxml-5.3.0-cp312-cp312-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:b369d3db3c22ed14c75ccd5af429086f166a19627e84a8fdade3f8f31426e52a"},
+    {file = "lxml-5.3.0-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:c24037349665434f375645fa9d1f5304800cec574d0310f618490c871fd902b3"},
+    {file = "lxml-5.3.0-cp312-cp312-manylinux_2_28_aarch64.whl", hash = "sha256:62d172f358f33a26d6b41b28c170c63886742f5b6772a42b59b4f0fa10526cb1"},
+    {file = "lxml-5.3.0-cp312-cp312-manylinux_2_28_ppc64le.whl", hash = "sha256:c1f794c02903c2824fccce5b20c339a1a14b114e83b306ff11b597c5f71a1c8d"},
+    {file = "lxml-5.3.0-cp312-cp312-manylinux_2_28_s390x.whl", hash = "sha256:5d6a6972b93c426ace71e0be9a6f4b2cfae9b1baed2eed2006076a746692288c"},
+    {file = "lxml-5.3.0-cp312-cp312-manylinux_2_28_x86_64.whl", hash = "sha256:3879cc6ce938ff4eb4900d901ed63555c778731a96365e53fadb36437a131a99"},
+    {file = "lxml-5.3.0-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:74068c601baff6ff021c70f0935b0c7bc528baa8ea210c202e03757c68c5a4ff"},
+    {file = "lxml-5.3.0-cp312-cp312-musllinux_1_2_ppc64le.whl", hash = "sha256:ecd4ad8453ac17bc7ba3868371bffb46f628161ad0eefbd0a855d2c8c32dd81a"},
+    {file = "lxml-5.3.0-cp312-cp312-musllinux_1_2_s390x.whl", hash = "sha256:7e2f58095acc211eb9d8b5771bf04df9ff37d6b87618d1cbf85f92399c98dae8"},
+    {file = "lxml-5.3.0-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:e63601ad5cd8f860aa99d109889b5ac34de571c7ee902d6812d5d9ddcc77fa7d"},
+    {file = "lxml-5.3.0-cp312-cp312-win32.whl", hash = "sha256:17e8d968d04a37c50ad9c456a286b525d78c4a1c15dd53aa46c1d8e06bf6fa30"},
+    {file = "lxml-5.3.0-cp312-cp312-win_amd64.whl", hash = "sha256:c1a69e58a6bb2de65902051d57fde951febad631a20a64572677a1052690482f"},
+    {file = "lxml-5.3.0-cp313-cp313-macosx_10_13_universal2.whl", hash = "sha256:8c72e9563347c7395910de6a3100a4840a75a6f60e05af5e58566868d5eb2d6a"},
+    {file = "lxml-5.3.0-cp313-cp313-macosx_10_13_x86_64.whl", hash = "sha256:e92ce66cd919d18d14b3856906a61d3f6b6a8500e0794142338da644260595cd"},
+    {file = "lxml-5.3.0-cp313-cp313-manylinux_2_12_i686.manylinux2010_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:1d04f064bebdfef9240478f7a779e8c5dc32b8b7b0b2fc6a62e39b928d428e51"},
+    {file = "lxml-5.3.0-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:5c2fb570d7823c2bbaf8b419ba6e5662137f8166e364a8b2b91051a1fb40ab8b"},
+    {file = "lxml-5.3.0-cp313-cp313-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:0c120f43553ec759f8de1fee2f4794452b0946773299d44c36bfe18e83caf002"},
+    {file = "lxml-5.3.0-cp313-cp313-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:562e7494778a69086f0312ec9689f6b6ac1c6b65670ed7d0267e49f57ffa08c4"},
+    {file = "lxml-5.3.0-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:423b121f7e6fa514ba0c7918e56955a1d4470ed35faa03e3d9f0e3baa4c7e492"},
+    {file = "lxml-5.3.0-cp313-cp313-manylinux_2_28_aarch64.whl", hash = "sha256:c00f323cc00576df6165cc9d21a4c21285fa6b9989c5c39830c3903dc4303ef3"},
+    {file = "lxml-5.3.0-cp313-cp313-manylinux_2_28_ppc64le.whl", hash = "sha256:1fdc9fae8dd4c763e8a31e7630afef517eab9f5d5d31a278df087f307bf601f4"},
+    {file = "lxml-5.3.0-cp313-cp313-manylinux_2_28_s390x.whl", hash = "sha256:658f2aa69d31e09699705949b5fc4719cbecbd4a97f9656a232e7d6c7be1a367"},
+    {file = "lxml-5.3.0-cp313-cp313-manylinux_2_28_x86_64.whl", hash = "sha256:1473427aff3d66a3fa2199004c3e601e6c4500ab86696edffdbc84954c72d832"},
+    {file = "lxml-5.3.0-cp313-cp313-musllinux_1_2_aarch64.whl", hash = "sha256:a87de7dd873bf9a792bf1e58b1c3887b9264036629a5bf2d2e6579fe8e73edff"},
+    {file = "lxml-5.3.0-cp313-cp313-musllinux_1_2_ppc64le.whl", hash = "sha256:0d7b36afa46c97875303a94e8f3ad932bf78bace9e18e603f2085b652422edcd"},
+    {file = "lxml-5.3.0-cp313-cp313-musllinux_1_2_s390x.whl", hash = "sha256:cf120cce539453ae086eacc0130a324e7026113510efa83ab42ef3fcfccac7fb"},
+    {file = "lxml-5.3.0-cp313-cp313-musllinux_1_2_x86_64.whl", hash = "sha256:df5c7333167b9674aa8ae1d4008fa4bc17a313cc490b2cca27838bbdcc6bb15b"},
+    {file = "lxml-5.3.0-cp313-cp313-win32.whl", hash = "sha256:c802e1c2ed9f0c06a65bc4ed0189d000ada8049312cfeab6ca635e39c9608957"},
+    {file = "lxml-5.3.0-cp313-cp313-win_amd64.whl", hash = "sha256:406246b96d552e0503e17a1006fd27edac678b3fcc9f1be71a2f94b4ff61528d"},
+    {file = "lxml-5.3.0-cp36-cp36m-macosx_10_9_x86_64.whl", hash = "sha256:8f0de2d390af441fe8b2c12626d103540b5d850d585b18fcada58d972b74a74e"},
+    {file = "lxml-5.3.0-cp36-cp36m-manylinux_2_12_i686.manylinux2010_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:1afe0a8c353746e610bd9031a630a95bcfb1a720684c3f2b36c4710a0a96528f"},
+    {file = "lxml-5.3.0-cp36-cp36m-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:56b9861a71575f5795bde89256e7467ece3d339c9b43141dbdd54544566b3b94"},
+    {file = "lxml-5.3.0-cp36-cp36m-manylinux_2_28_x86_64.whl", hash = "sha256:9fb81d2824dff4f2e297a276297e9031f46d2682cafc484f49de182aa5e5df99"},
+    {file = "lxml-5.3.0-cp36-cp36m-manylinux_2_5_x86_64.manylinux1_x86_64.whl", hash = "sha256:2c226a06ecb8cdef28845ae976da407917542c5e6e75dcac7cc33eb04aaeb237"},
+    {file = "lxml-5.3.0-cp36-cp36m-musllinux_1_2_x86_64.whl", hash = "sha256:7d3d1ca42870cdb6d0d29939630dbe48fa511c203724820fc0fd507b2fb46577"},
+    {file = "lxml-5.3.0-cp36-cp36m-win32.whl", hash = "sha256:094cb601ba9f55296774c2d57ad68730daa0b13dc260e1f941b4d13678239e70"},
+    {file = "lxml-5.3.0-cp36-cp36m-win_amd64.whl", hash = "sha256:eafa2c8658f4e560b098fe9fc54539f86528651f61849b22111a9b107d18910c"},
+    {file = "lxml-5.3.0-cp37-cp37m-macosx_10_9_x86_64.whl", hash = "sha256:cb83f8a875b3d9b458cada4f880fa498646874ba4011dc974e071a0a84a1b033"},
+    {file = "lxml-5.3.0-cp37-cp37m-manylinux_2_12_i686.manylinux2010_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:25f1b69d41656b05885aa185f5fdf822cb01a586d1b32739633679699f220391"},
+    {file = "lxml-5.3.0-cp37-cp37m-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:23e0553b8055600b3bf4a00b255ec5c92e1e4aebf8c2c09334f8368e8bd174d6"},
+    {file = "lxml-5.3.0-cp37-cp37m-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:9ada35dd21dc6c039259596b358caab6b13f4db4d4a7f8665764d616daf9cc1d"},
+    {file = "lxml-5.3.0-cp37-cp37m-manylinux_2_28_aarch64.whl", hash = "sha256:81b4e48da4c69313192d8c8d4311e5d818b8be1afe68ee20f6385d0e96fc9512"},
+    {file = "lxml-5.3.0-cp37-cp37m-manylinux_2_28_x86_64.whl", hash = "sha256:2bc9fd5ca4729af796f9f59cd8ff160fe06a474da40aca03fcc79655ddee1a8b"},
+    {file = "lxml-5.3.0-cp37-cp37m-musllinux_1_2_aarch64.whl", hash = "sha256:07da23d7ee08577760f0a71d67a861019103e4812c87e2fab26b039054594cc5"},
+    {file = "lxml-5.3.0-cp37-cp37m-musllinux_1_2_x86_64.whl", hash = "sha256:ea2e2f6f801696ad7de8aec061044d6c8c0dd4037608c7cab38a9a4d316bfb11"},
+    {file = "lxml-5.3.0-cp37-cp37m-win32.whl", hash = "sha256:5c54afdcbb0182d06836cc3d1be921e540be3ebdf8b8a51ee3ef987537455f84"},
+    {file = "lxml-5.3.0-cp37-cp37m-win_amd64.whl", hash = "sha256:f2901429da1e645ce548bf9171784c0f74f0718c3f6150ce166be39e4dd66c3e"},
+    {file = "lxml-5.3.0-cp38-cp38-macosx_10_9_x86_64.whl", hash = "sha256:c56a1d43b2f9ee4786e4658c7903f05da35b923fb53c11025712562d5cc02753"},
+    {file = "lxml-5.3.0-cp38-cp38-manylinux_2_12_i686.manylinux2010_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:6ee8c39582d2652dcd516d1b879451500f8db3fe3607ce45d7c5957ab2596040"},
+    {file = "lxml-5.3.0-cp38-cp38-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:0fdf3a3059611f7585a78ee10399a15566356116a4288380921a4b598d807a22"},
+    {file = "lxml-5.3.0-cp38-cp38-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:146173654d79eb1fc97498b4280c1d3e1e5d58c398fa530905c9ea50ea849b22"},
+    {file = "lxml-5.3.0-cp38-cp38-manylinux_2_28_aarch64.whl", hash = "sha256:0a7056921edbdd7560746f4221dca89bb7a3fe457d3d74267995253f46343f15"},
+    {file = "lxml-5.3.0-cp38-cp38-manylinux_2_28_x86_64.whl", hash = "sha256:9e4b47ac0f5e749cfc618efdf4726269441014ae1d5583e047b452a32e221920"},
+    {file = "lxml-5.3.0-cp38-cp38-musllinux_1_2_aarch64.whl", hash = "sha256:f914c03e6a31deb632e2daa881fe198461f4d06e57ac3d0e05bbcab8eae01945"},
+    {file = "lxml-5.3.0-cp38-cp38-musllinux_1_2_x86_64.whl", hash = "sha256:213261f168c5e1d9b7535a67e68b1f59f92398dd17a56d934550837143f79c42"},
+    {file = "lxml-5.3.0-cp38-cp38-win32.whl", hash = "sha256:218c1b2e17a710e363855594230f44060e2025b05c80d1f0661258142b2add2e"},
+    {file = "lxml-5.3.0-cp38-cp38-win_amd64.whl", hash = "sha256:315f9542011b2c4e1d280e4a20ddcca1761993dda3afc7a73b01235f8641e903"},
+    {file = "lxml-5.3.0-cp39-cp39-macosx_10_9_universal2.whl", hash = "sha256:1ffc23010330c2ab67fac02781df60998ca8fe759e8efde6f8b756a20599c5de"},
+    {file = "lxml-5.3.0-cp39-cp39-macosx_10_9_x86_64.whl", hash = "sha256:2b3778cb38212f52fac9fe913017deea2fdf4eb1a4f8e4cfc6b009a13a6d3fcc"},
+    {file = "lxml-5.3.0-cp39-cp39-manylinux_2_12_i686.manylinux2010_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:4b0c7a688944891086ba192e21c5229dea54382f4836a209ff8d0a660fac06be"},
+    {file = "lxml-5.3.0-cp39-cp39-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:747a3d3e98e24597981ca0be0fd922aebd471fa99d0043a3842d00cdcad7ad6a"},
+    {file = "lxml-5.3.0-cp39-cp39-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:86a6b24b19eaebc448dc56b87c4865527855145d851f9fc3891673ff97950540"},
+    {file = "lxml-5.3.0-cp39-cp39-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:b11a5d918a6216e521c715b02749240fb07ae5a1fefd4b7bf12f833bc8b4fe70"},
+    {file = "lxml-5.3.0-cp39-cp39-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:68b87753c784d6acb8a25b05cb526c3406913c9d988d51f80adecc2b0775d6aa"},
+    {file = "lxml-5.3.0-cp39-cp39-manylinux_2_28_aarch64.whl", hash = "sha256:109fa6fede314cc50eed29e6e56c540075e63d922455346f11e4d7a036d2b8cf"},
+    {file = "lxml-5.3.0-cp39-cp39-manylinux_2_28_ppc64le.whl", hash = "sha256:02ced472497b8362c8e902ade23e3300479f4f43e45f4105c85ef43b8db85229"},
+    {file = "lxml-5.3.0-cp39-cp39-manylinux_2_28_s390x.whl", hash = "sha256:6b038cc86b285e4f9fea2ba5ee76e89f21ed1ea898e287dc277a25884f3a7dfe"},
+    {file = "lxml-5.3.0-cp39-cp39-manylinux_2_28_x86_64.whl", hash = "sha256:7437237c6a66b7ca341e868cda48be24b8701862757426852c9b3186de1da8a2"},
+    {file = "lxml-5.3.0-cp39-cp39-musllinux_1_2_aarch64.whl", hash = "sha256:7f41026c1d64043a36fda21d64c5026762d53a77043e73e94b71f0521939cc71"},
+    {file = "lxml-5.3.0-cp39-cp39-musllinux_1_2_ppc64le.whl", hash = "sha256:482c2f67761868f0108b1743098640fbb2a28a8e15bf3f47ada9fa59d9fe08c3"},
+    {file = "lxml-5.3.0-cp39-cp39-musllinux_1_2_s390x.whl", hash = "sha256:1483fd3358963cc5c1c9b122c80606a3a79ee0875bcac0204149fa09d6ff2727"},
+    {file = "lxml-5.3.0-cp39-cp39-musllinux_1_2_x86_64.whl", hash = "sha256:2dec2d1130a9cda5b904696cec33b2cfb451304ba9081eeda7f90f724097300a"},
+    {file = "lxml-5.3.0-cp39-cp39-win32.whl", hash = "sha256:a0eabd0a81625049c5df745209dc7fcef6e2aea7793e5f003ba363610aa0a3ff"},
+    {file = "lxml-5.3.0-cp39-cp39-win_amd64.whl", hash = "sha256:89e043f1d9d341c52bf2af6d02e6adde62e0a46e6755d5eb60dc6e4f0b8aeca2"},
+    {file = "lxml-5.3.0-pp310-pypy310_pp73-macosx_10_15_x86_64.whl", hash = "sha256:7b1cd427cb0d5f7393c31b7496419da594fe600e6fdc4b105a54f82405e6626c"},
+    {file = "lxml-5.3.0-pp310-pypy310_pp73-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:51806cfe0279e06ed8500ce19479d757db42a30fd509940b1701be9c86a5ff9a"},
+    {file = "lxml-5.3.0-pp310-pypy310_pp73-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:ee70d08fd60c9565ba8190f41a46a54096afa0eeb8f76bd66f2c25d3b1b83005"},
+    {file = "lxml-5.3.0-pp310-pypy310_pp73-manylinux_2_28_aarch64.whl", hash = "sha256:8dc2c0395bea8254d8daebc76dcf8eb3a95ec2a46fa6fae5eaccee366bfe02ce"},
+    {file = "lxml-5.3.0-pp310-pypy310_pp73-manylinux_2_28_x86_64.whl", hash = "sha256:6ba0d3dcac281aad8a0e5b14c7ed6f9fa89c8612b47939fc94f80b16e2e9bc83"},
+    {file = "lxml-5.3.0-pp310-pypy310_pp73-win_amd64.whl", hash = "sha256:6e91cf736959057f7aac7adfc83481e03615a8e8dd5758aa1d95ea69e8931dba"},
+    {file = "lxml-5.3.0-pp37-pypy37_pp73-macosx_10_9_x86_64.whl", hash = "sha256:94d6c3782907b5e40e21cadf94b13b0842ac421192f26b84c45f13f3c9d5dc27"},
+    {file = "lxml-5.3.0-pp37-pypy37_pp73-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:c300306673aa0f3ed5ed9372b21867690a17dba38c68c44b287437c362ce486b"},
+    {file = "lxml-5.3.0-pp37-pypy37_pp73-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:78d9b952e07aed35fe2e1a7ad26e929595412db48535921c5013edc8aa4a35ce"},
+    {file = "lxml-5.3.0-pp37-pypy37_pp73-manylinux_2_28_aarch64.whl", hash = "sha256:01220dca0d066d1349bd6a1726856a78f7929f3878f7e2ee83c296c69495309e"},
+    {file = "lxml-5.3.0-pp37-pypy37_pp73-manylinux_2_28_x86_64.whl", hash = "sha256:2d9b8d9177afaef80c53c0a9e30fa252ff3036fb1c6494d427c066a4ce6a282f"},
+    {file = "lxml-5.3.0-pp37-pypy37_pp73-win_amd64.whl", hash = "sha256:20094fc3f21ea0a8669dc4c61ed7fa8263bd37d97d93b90f28fc613371e7a875"},
+    {file = "lxml-5.3.0-pp38-pypy38_pp73-macosx_10_9_x86_64.whl", hash = "sha256:ace2c2326a319a0bb8a8b0e5b570c764962e95818de9f259ce814ee666603f19"},
+    {file = "lxml-5.3.0-pp38-pypy38_pp73-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:92e67a0be1639c251d21e35fe74df6bcc40cba445c2cda7c4a967656733249e2"},
+    {file = "lxml-5.3.0-pp38-pypy38_pp73-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:dd5350b55f9fecddc51385463a4f67a5da829bc741e38cf689f38ec9023f54ab"},
+    {file = "lxml-5.3.0-pp38-pypy38_pp73-manylinux_2_28_aarch64.whl", hash = "sha256:4c1fefd7e3d00921c44dc9ca80a775af49698bbfd92ea84498e56acffd4c5469"},
+    {file = "lxml-5.3.0-pp38-pypy38_pp73-manylinux_2_28_x86_64.whl", hash = "sha256:71a8dd38fbd2f2319136d4ae855a7078c69c9a38ae06e0c17c73fd70fc6caad8"},
+    {file = "lxml-5.3.0-pp38-pypy38_pp73-win_amd64.whl", hash = "sha256:97acf1e1fd66ab53dacd2c35b319d7e548380c2e9e8c54525c6e76d21b1ae3b1"},
+    {file = "lxml-5.3.0-pp39-pypy39_pp73-macosx_10_15_x86_64.whl", hash = "sha256:68934b242c51eb02907c5b81d138cb977b2129a0a75a8f8b60b01cb8586c7b21"},
+    {file = "lxml-5.3.0-pp39-pypy39_pp73-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:b710bc2b8292966b23a6a0121f7a6c51d45d2347edcc75f016ac123b8054d3f2"},
+    {file = "lxml-5.3.0-pp39-pypy39_pp73-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:18feb4b93302091b1541221196a2155aa296c363fd233814fa11e181adebc52f"},
+    {file = "lxml-5.3.0-pp39-pypy39_pp73-manylinux_2_28_aarch64.whl", hash = "sha256:3eb44520c4724c2e1a57c0af33a379eee41792595023f367ba3952a2d96c2aab"},
+    {file = "lxml-5.3.0-pp39-pypy39_pp73-manylinux_2_28_x86_64.whl", hash = "sha256:609251a0ca4770e5a8768ff902aa02bf636339c5a93f9349b48eb1f606f7f3e9"},
+    {file = "lxml-5.3.0-pp39-pypy39_pp73-win_amd64.whl", hash = "sha256:516f491c834eb320d6c843156440fe7fc0d50b33e44387fcec5b02f0bc118a4c"},
+    {file = "lxml-5.3.0.tar.gz", hash = "sha256:4e109ca30d1edec1ac60cdbe341905dc3b8f55b16855e03a54aaf59e51ec8c6f"},
+]
+
+[package.extras]
+cssselect = ["cssselect (>=0.7)"]
+html-clean = ["lxml-html-clean"]
+html5 = ["html5lib"]
+htmlsoup = ["BeautifulSoup4"]
+source = ["Cython (>=3.0.11)"]
+
+[[package]]
+name = "maco"
+version = "1.1.8"
+description = ""
+optional = false
+python-versions = ">=3.8"
+groups = ["main"]
+markers = "extra == \"maco\""
+files = [
+    {file = "maco-1.1.8-py3-none-any.whl", hash = "sha256:ab2d1d8e846c0abc455d16f718ba71dda5492ddc22533484156090aa4439fb06"},
+    {file = "maco-1.1.8.tar.gz", hash = "sha256:e0985efdf645d3c55e3d4d4f2bf40b8d2260fa4add608bb8e8fdefba0500cb4a"},
+]
+
+[package.dependencies]
+cart = "*"
+pydantic = ">=2.0.0"
+tomli = {version = ">=1.1.0", markers = "python_version < \"3.11\""}
+yara-python = "*"
+
+[[package]]
+name = "mako"
+version = "1.3.8"
+description = "A super-fast templating language that borrows the best ideas from the existing templating languages."
+optional = false
+python-versions = ">=3.8"
+groups = ["main"]
+files = [
+    {file = "Mako-1.3.8-py3-none-any.whl", hash = "sha256:42f48953c7eb91332040ff567eb7eea69b22e7a4affbc5ba8e845e8f730f6627"},
+    {file = "mako-1.3.8.tar.gz", hash = "sha256:577b97e414580d3e088d47c2dbbe9594aa7a5146ed2875d4dfa9075af2dd3cc8"},
+]
+
+[package.dependencies]
+MarkupSafe = ">=0.9.2"
+
+[package.extras]
+babel = ["Babel"]
+lingua = ["lingua"]
+testing = ["pytest"]
+
+[[package]]
+name = "markdown-it-py"
+version = "3.0.0"
+description = "Python port of markdown-it. Markdown parsing, done right!"
+optional = false
+python-versions = ">=3.8"
+groups = ["main", "dev"]
+files = [
+    {file = "markdown-it-py-3.0.0.tar.gz", hash = "sha256:e3f60a94fa066dc52ec76661e37c851cb232d92f9886b15cb560aaada2df8feb"},
+    {file = "markdown_it_py-3.0.0-py3-none-any.whl", hash = "sha256:355216845c60bd96232cd8d8c40e8f9765cc86f46880e43a8fd22dc1a1a8cab1"},
+]
+
+[package.dependencies]
+mdurl = ">=0.1,<1.0"
+
+[package.extras]
+benchmarking = ["psutil", "pytest", "pytest-benchmark"]
+code-style = ["pre-commit (>=3.0,<4.0)"]
+compare = ["commonmark (>=0.9,<1.0)", "markdown (>=3.4,<4.0)", "mistletoe (>=1.0,<2.0)", "mistune (>=2.0,<3.0)", "panflute (>=2.3,<3.0)"]
+linkify = ["linkify-it-py (>=1,<3)"]
+plugins = ["mdit-py-plugins"]
+profiling = ["gprof2dot"]
+rtd = ["jupyter_sphinx", "mdit-py-plugins", "myst-parser", "pyyaml", "sphinx", "sphinx-copybutton", "sphinx-design", "sphinx_book_theme"]
+testing = ["coverage", "pytest", "pytest-cov", "pytest-regressions"]
+
+[[package]]
+name = "markupsafe"
+version = "3.0.2"
+description = "Safely add untrusted strings to HTML/XML markup."
+optional = false
+python-versions = ">=3.9"
+groups = ["main"]
+files = [
+    {file = "MarkupSafe-3.0.2-cp310-cp310-macosx_10_9_universal2.whl", hash = "sha256:7e94c425039cde14257288fd61dcfb01963e658efbc0ff54f5306b06054700f8"},
+    {file = "MarkupSafe-3.0.2-cp310-cp310-macosx_11_0_arm64.whl", hash = "sha256:9e2d922824181480953426608b81967de705c3cef4d1af983af849d7bd619158"},
+    {file = "MarkupSafe-3.0.2-cp310-cp310-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:38a9ef736c01fccdd6600705b09dc574584b89bea478200c5fbf112a6b0d5579"},
+    {file = "MarkupSafe-3.0.2-cp310-cp310-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:bbcb445fa71794da8f178f0f6d66789a28d7319071af7a496d4d507ed566270d"},
+    {file = "MarkupSafe-3.0.2-cp310-cp310-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:57cb5a3cf367aeb1d316576250f65edec5bb3be939e9247ae594b4bcbc317dfb"},
+    {file = "MarkupSafe-3.0.2-cp310-cp310-musllinux_1_2_aarch64.whl", hash = "sha256:3809ede931876f5b2ec92eef964286840ed3540dadf803dd570c3b7e13141a3b"},
+    {file = "MarkupSafe-3.0.2-cp310-cp310-musllinux_1_2_i686.whl", hash = "sha256:e07c3764494e3776c602c1e78e298937c3315ccc9043ead7e685b7f2b8d47b3c"},
+    {file = "MarkupSafe-3.0.2-cp310-cp310-musllinux_1_2_x86_64.whl", hash = "sha256:b424c77b206d63d500bcb69fa55ed8d0e6a3774056bdc4839fc9298a7edca171"},
+    {file = "MarkupSafe-3.0.2-cp310-cp310-win32.whl", hash = "sha256:fcabf5ff6eea076f859677f5f0b6b5c1a51e70a376b0579e0eadef8db48c6b50"},
+    {file = "MarkupSafe-3.0.2-cp310-cp310-win_amd64.whl", hash = "sha256:6af100e168aa82a50e186c82875a5893c5597a0c1ccdb0d8b40240b1f28b969a"},
+    {file = "MarkupSafe-3.0.2-cp311-cp311-macosx_10_9_universal2.whl", hash = "sha256:9025b4018f3a1314059769c7bf15441064b2207cb3f065e6ea1e7359cb46db9d"},
+    {file = "MarkupSafe-3.0.2-cp311-cp311-macosx_11_0_arm64.whl", hash = "sha256:93335ca3812df2f366e80509ae119189886b0f3c2b81325d39efdb84a1e2ae93"},
+    {file = "MarkupSafe-3.0.2-cp311-cp311-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:2cb8438c3cbb25e220c2ab33bb226559e7afb3baec11c4f218ffa7308603c832"},
+    {file = "MarkupSafe-3.0.2-cp311-cp311-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:a123e330ef0853c6e822384873bef7507557d8e4a082961e1defa947aa59ba84"},
+    {file = "MarkupSafe-3.0.2-cp311-cp311-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:1e084f686b92e5b83186b07e8a17fc09e38fff551f3602b249881fec658d3eca"},
+    {file = "MarkupSafe-3.0.2-cp311-cp311-musllinux_1_2_aarch64.whl", hash = "sha256:d8213e09c917a951de9d09ecee036d5c7d36cb6cb7dbaece4c71a60d79fb9798"},
+    {file = "MarkupSafe-3.0.2-cp311-cp311-musllinux_1_2_i686.whl", hash = "sha256:5b02fb34468b6aaa40dfc198d813a641e3a63b98c2b05a16b9f80b7ec314185e"},
+    {file = "MarkupSafe-3.0.2-cp311-cp311-musllinux_1_2_x86_64.whl", hash = "sha256:0bff5e0ae4ef2e1ae4fdf2dfd5b76c75e5c2fa4132d05fc1b0dabcd20c7e28c4"},
+    {file = "MarkupSafe-3.0.2-cp311-cp311-win32.whl", hash = "sha256:6c89876f41da747c8d3677a2b540fb32ef5715f97b66eeb0c6b66f5e3ef6f59d"},
+    {file = "MarkupSafe-3.0.2-cp311-cp311-win_amd64.whl", hash = "sha256:70a87b411535ccad5ef2f1df5136506a10775d267e197e4cf531ced10537bd6b"},
+    {file = "MarkupSafe-3.0.2-cp312-cp312-macosx_10_13_universal2.whl", hash = "sha256:9778bd8ab0a994ebf6f84c2b949e65736d5575320a17ae8984a77fab08db94cf"},
+    {file = "MarkupSafe-3.0.2-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:846ade7b71e3536c4e56b386c2a47adf5741d2d8b94ec9dc3e92e5e1ee1e2225"},
+    {file = "MarkupSafe-3.0.2-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:1c99d261bd2d5f6b59325c92c73df481e05e57f19837bdca8413b9eac4bd8028"},
+    {file = "MarkupSafe-3.0.2-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:e17c96c14e19278594aa4841ec148115f9c7615a47382ecb6b82bd8fea3ab0c8"},
+    {file = "MarkupSafe-3.0.2-cp312-cp312-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:88416bd1e65dcea10bc7569faacb2c20ce071dd1f87539ca2ab364bf6231393c"},
+    {file = "MarkupSafe-3.0.2-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:2181e67807fc2fa785d0592dc2d6206c019b9502410671cc905d132a92866557"},
+    {file = "MarkupSafe-3.0.2-cp312-cp312-musllinux_1_2_i686.whl", hash = "sha256:52305740fe773d09cffb16f8ed0427942901f00adedac82ec8b67752f58a1b22"},
+    {file = "MarkupSafe-3.0.2-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:ad10d3ded218f1039f11a75f8091880239651b52e9bb592ca27de44eed242a48"},
+    {file = "MarkupSafe-3.0.2-cp312-cp312-win32.whl", hash = "sha256:0f4ca02bea9a23221c0182836703cbf8930c5e9454bacce27e767509fa286a30"},
+    {file = "MarkupSafe-3.0.2-cp312-cp312-win_amd64.whl", hash = "sha256:8e06879fc22a25ca47312fbe7c8264eb0b662f6db27cb2d3bbbc74b1df4b9b87"},
+    {file = "MarkupSafe-3.0.2-cp313-cp313-macosx_10_13_universal2.whl", hash = "sha256:ba9527cdd4c926ed0760bc301f6728ef34d841f405abf9d4f959c478421e4efd"},
+    {file = "MarkupSafe-3.0.2-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:f8b3d067f2e40fe93e1ccdd6b2e1d16c43140e76f02fb1319a05cf2b79d99430"},
+    {file = "MarkupSafe-3.0.2-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:569511d3b58c8791ab4c2e1285575265991e6d8f8700c7be0e88f86cb0672094"},
+    {file = "MarkupSafe-3.0.2-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:15ab75ef81add55874e7ab7055e9c397312385bd9ced94920f2802310c930396"},
+    {file = "MarkupSafe-3.0.2-cp313-cp313-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:f3818cb119498c0678015754eba762e0d61e5b52d34c8b13d770f0719f7b1d79"},
+    {file = "MarkupSafe-3.0.2-cp313-cp313-musllinux_1_2_aarch64.whl", hash = "sha256:cdb82a876c47801bb54a690c5ae105a46b392ac6099881cdfb9f6e95e4014c6a"},
+    {file = "MarkupSafe-3.0.2-cp313-cp313-musllinux_1_2_i686.whl", hash = "sha256:cabc348d87e913db6ab4aa100f01b08f481097838bdddf7c7a84b7575b7309ca"},
+    {file = "MarkupSafe-3.0.2-cp313-cp313-musllinux_1_2_x86_64.whl", hash = "sha256:444dcda765c8a838eaae23112db52f1efaf750daddb2d9ca300bcae1039adc5c"},
+    {file = "MarkupSafe-3.0.2-cp313-cp313-win32.whl", hash = "sha256:bcf3e58998965654fdaff38e58584d8937aa3096ab5354d493c77d1fdd66d7a1"},
+    {file = "MarkupSafe-3.0.2-cp313-cp313-win_amd64.whl", hash = "sha256:e6a2a455bd412959b57a172ce6328d2dd1f01cb2135efda2e4576e8a23fa3b0f"},
+    {file = "MarkupSafe-3.0.2-cp313-cp313t-macosx_10_13_universal2.whl", hash = "sha256:b5a6b3ada725cea8a5e634536b1b01c30bcdcd7f9c6fff4151548d5bf6b3a36c"},
+    {file = "MarkupSafe-3.0.2-cp313-cp313t-macosx_11_0_arm64.whl", hash = "sha256:a904af0a6162c73e3edcb969eeeb53a63ceeb5d8cf642fade7d39e7963a22ddb"},
+    {file = "MarkupSafe-3.0.2-cp313-cp313t-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:4aa4e5faecf353ed117801a068ebab7b7e09ffb6e1d5e412dc852e0da018126c"},
+    {file = "MarkupSafe-3.0.2-cp313-cp313t-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:c0ef13eaeee5b615fb07c9a7dadb38eac06a0608b41570d8ade51c56539e509d"},
+    {file = "MarkupSafe-3.0.2-cp313-cp313t-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:d16a81a06776313e817c951135cf7340a3e91e8c1ff2fac444cfd75fffa04afe"},
+    {file = "MarkupSafe-3.0.2-cp313-cp313t-musllinux_1_2_aarch64.whl", hash = "sha256:6381026f158fdb7c72a168278597a5e3a5222e83ea18f543112b2662a9b699c5"},
+    {file = "MarkupSafe-3.0.2-cp313-cp313t-musllinux_1_2_i686.whl", hash = "sha256:3d79d162e7be8f996986c064d1c7c817f6df3a77fe3d6859f6f9e7be4b8c213a"},
+    {file = "MarkupSafe-3.0.2-cp313-cp313t-musllinux_1_2_x86_64.whl", hash = "sha256:131a3c7689c85f5ad20f9f6fb1b866f402c445b220c19fe4308c0b147ccd2ad9"},
+    {file = "MarkupSafe-3.0.2-cp313-cp313t-win32.whl", hash = "sha256:ba8062ed2cf21c07a9e295d5b8a2a5ce678b913b45fdf68c32d95d6c1291e0b6"},
+    {file = "MarkupSafe-3.0.2-cp313-cp313t-win_amd64.whl", hash = "sha256:e444a31f8db13eb18ada366ab3cf45fd4b31e4db1236a4448f68778c1d1a5a2f"},
+    {file = "MarkupSafe-3.0.2-cp39-cp39-macosx_10_9_universal2.whl", hash = "sha256:eaa0a10b7f72326f1372a713e73c3f739b524b3af41feb43e4921cb529f5929a"},
+    {file = "MarkupSafe-3.0.2-cp39-cp39-macosx_11_0_arm64.whl", hash = "sha256:48032821bbdf20f5799ff537c7ac3d1fba0ba032cfc06194faffa8cda8b560ff"},
+    {file = "MarkupSafe-3.0.2-cp39-cp39-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:1a9d3f5f0901fdec14d8d2f66ef7d035f2157240a433441719ac9a3fba440b13"},
+    {file = "MarkupSafe-3.0.2-cp39-cp39-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:88b49a3b9ff31e19998750c38e030fc7bb937398b1f78cfa599aaef92d693144"},
+    {file = "MarkupSafe-3.0.2-cp39-cp39-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:cfad01eed2c2e0c01fd0ecd2ef42c492f7f93902e39a42fc9ee1692961443a29"},
+    {file = "MarkupSafe-3.0.2-cp39-cp39-musllinux_1_2_aarch64.whl", hash = "sha256:1225beacc926f536dc82e45f8a4d68502949dc67eea90eab715dea3a21c1b5f0"},
+    {file = "MarkupSafe-3.0.2-cp39-cp39-musllinux_1_2_i686.whl", hash = "sha256:3169b1eefae027567d1ce6ee7cae382c57fe26e82775f460f0b2778beaad66c0"},
+    {file = "MarkupSafe-3.0.2-cp39-cp39-musllinux_1_2_x86_64.whl", hash = "sha256:eb7972a85c54febfb25b5c4b4f3af4dcc731994c7da0d8a0b4a6eb0640e1d178"},
+    {file = "MarkupSafe-3.0.2-cp39-cp39-win32.whl", hash = "sha256:8c4e8c3ce11e1f92f6536ff07154f9d49677ebaaafc32db9db4620bc11ed480f"},
+    {file = "MarkupSafe-3.0.2-cp39-cp39-win_amd64.whl", hash = "sha256:6e296a513ca3d94054c2c881cc913116e90fd030ad1c656b3869762b754f5f8a"},
+    {file = "markupsafe-3.0.2.tar.gz", hash = "sha256:ee55d3edf80167e48ea11a923c7386f4669df67d7994554387f84e7d8b0a2bf0"},
+]
+
+[[package]]
+name = "maxminddb"
+version = "2.6.3"
+description = "Reader for the MaxMind DB format"
+optional = false
+python-versions = ">=3.8"
+groups = ["main"]
+files = [
+    {file = "maxminddb-2.6.3-cp310-cp310-macosx_10_9_x86_64.whl", hash = "sha256:d69c5493c81f11bca90961b4dfa028c031aa8e7bb156653edf242a03dfc51561"},
+    {file = "maxminddb-2.6.3-cp310-cp310-macosx_11_0_arm64.whl", hash = "sha256:6cc002099c9e1637309df772789a36db9a4601c4623dd1ace8145d057358c20b"},
+    {file = "maxminddb-2.6.3-cp310-cp310-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:ef41bfe15692fe15e1799d600366a0faa3673a0d7d7dbe6a305ec3a5b6f07708"},
+    {file = "maxminddb-2.6.3-cp310-cp310-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:46bdc8dc528a2f64ef34182bf40084e05410344d40097c1e93554d732dfb0e15"},
+    {file = "maxminddb-2.6.3-cp310-cp310-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:98258a295149aadf96ed8d667468722b248fe47bb991891ad01cfa8cb9e9684a"},
+    {file = "maxminddb-2.6.3-cp310-cp310-musllinux_1_2_aarch64.whl", hash = "sha256:0dd55d2498d287b6cfd6b857deed9070e53c4b22a1acd69615e88dec92d95fb3"},
+    {file = "maxminddb-2.6.3-cp310-cp310-musllinux_1_2_i686.whl", hash = "sha256:e38a449890a976365da1f2c927ac076838aa2715b464593080075a18ae4e0dc8"},
+    {file = "maxminddb-2.6.3-cp310-cp310-musllinux_1_2_x86_64.whl", hash = "sha256:a70d46337c9497a5b3329d9c7fa7f45be33243ffad04924b8f06ffe41a136279"},
+    {file = "maxminddb-2.6.3-cp310-cp310-win32.whl", hash = "sha256:45da7549c952f88da39c9f440cb3fa2abbd7472571597699467641af88512730"},
+    {file = "maxminddb-2.6.3-cp310-cp310-win_amd64.whl", hash = "sha256:6c977da32cc72784980da1928a79d38b3e9fe83faa9a40ea9bae598a6bf2f7bb"},
+    {file = "maxminddb-2.6.3-cp311-cp311-macosx_10_9_x86_64.whl", hash = "sha256:27ba5e22bd09fe324f0a4c5ed97e73c1c7c3ab7e3bae4e1e6fcaa15f175b9f5a"},
+    {file = "maxminddb-2.6.3-cp311-cp311-macosx_11_0_arm64.whl", hash = "sha256:fa36f1ca12fd3a37ad758afd0666457a749b2c4b16db0eb3f8c953f55ae6325d"},
+    {file = "maxminddb-2.6.3-cp311-cp311-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:83d2324788a31a28bbb38b0dbdece5826f56db4df6e1538cf6f4b72f6a3da66c"},
+    {file = "maxminddb-2.6.3-cp311-cp311-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:d4bac2b7b7609bed8dcf6beef1ef4a1e411e9e39c311070ffc2ace80d6de6444"},
+    {file = "maxminddb-2.6.3-cp311-cp311-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:8868580f34b483d5b74edd4270db417e211906d57fb13bbeeb11ea8d5cd01829"},
+    {file = "maxminddb-2.6.3-cp311-cp311-musllinux_1_2_aarch64.whl", hash = "sha256:b29cea50b191784e2242227e0fac5bc985972b3849f97fe96c7f37fb7a7426d7"},
+    {file = "maxminddb-2.6.3-cp311-cp311-musllinux_1_2_i686.whl", hash = "sha256:4d470fc4f9c5ed8854a945dc5ea56b2f0644a5c3e5872d0e579d66a5a9238d7f"},
+    {file = "maxminddb-2.6.3-cp311-cp311-musllinux_1_2_x86_64.whl", hash = "sha256:2849357de35bfed0011ad1ff14a83c946273ae8c75a8867612d22f559df70e7d"},
+    {file = "maxminddb-2.6.3-cp311-cp311-win32.whl", hash = "sha256:39254e173af7b0018c1508c2dd68ecda0c043032176140cfe917587e2d082f42"},
+    {file = "maxminddb-2.6.3-cp311-cp311-win_amd64.whl", hash = "sha256:489c5ae835198a228380b83cc537a5ffb1911f1579d7545baf097e4a8eefcd9a"},
+    {file = "maxminddb-2.6.3-cp312-cp312-macosx_10_13_x86_64.whl", hash = "sha256:2b0fef825b23df047876d2056cbb69fb8d8e4b965f744f674be75e16fb86a52e"},
+    {file = "maxminddb-2.6.3-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:a38faf03db15cc285009c0ddaacd04071b84ebd8ff7d773f700c7def695a291c"},
+    {file = "maxminddb-2.6.3-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:edab18a50470031fc8447bcd9285c9f5f952abef2b6db5579fe50665bdcda941"},
+    {file = "maxminddb-2.6.3-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:415dd5de87adc7640d3da2a8e7cf19a313c1a715cb84a3433f0e3b2d27665319"},
+    {file = "maxminddb-2.6.3-cp312-cp312-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:d78a02b70ededb3ba7317c24266217d7b68283e3be04cad0c34ee446a0217ee0"},
+    {file = "maxminddb-2.6.3-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:4b80275603bba6a95ed69d859d184dfa60bfd8e83cd4c8b722d7f7eaa9d95f8f"},
+    {file = "maxminddb-2.6.3-cp312-cp312-musllinux_1_2_i686.whl", hash = "sha256:a6868438d1771c0bd0bbc95d84480c1ae04df72a85879e1ada42762250a00f59"},
+    {file = "maxminddb-2.6.3-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:efd875d43c4207fb90e10d582e4394d8a04f7b55c83c4d6bc0593a7be450e04f"},
+    {file = "maxminddb-2.6.3-cp312-cp312-win32.whl", hash = "sha256:aadb9d12e887a1f52e8214e539e5d78338356fad4ef2a51931f6f7dbe56c2228"},
+    {file = "maxminddb-2.6.3-cp312-cp312-win_amd64.whl", hash = "sha256:7d6024d1e40244b5549c5e6063af109399a2f89503a24916b5139c4d0657f1c8"},
+    {file = "maxminddb-2.6.3-cp313-cp313-macosx_10_13_x86_64.whl", hash = "sha256:9580b2cd017185db07baacd9d629ca01f3fe6f236528681c88a0209725376e9c"},
+    {file = "maxminddb-2.6.3-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:47828bed767b82c219ba7aa65f0cb03d7f7443d7270259ce931e133a40691d34"},
+    {file = "maxminddb-2.6.3-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:77112cb1a2e381de42c443d1bf222c58b9da203183bb2008dd370c3d2a587a4e"},
+    {file = "maxminddb-2.6.3-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:448d062e95242e3088df85fe7ed3f2890a9f4aea924bde336e9ff5d2337ca5fd"},
+    {file = "maxminddb-2.6.3-cp313-cp313-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:a59d72bf373c61da156fd43e2be6da802f68370a50a2205de84ee76916e05f9f"},
+    {file = "maxminddb-2.6.3-cp313-cp313-musllinux_1_2_aarch64.whl", hash = "sha256:e867852037a8a26a24cfcf31b697dce63d488e1617af244c2895568d8f6c7a31"},
+    {file = "maxminddb-2.6.3-cp313-cp313-musllinux_1_2_i686.whl", hash = "sha256:5a1586260eac831d61c2665b26ca1ae3ad00caca57c8031346767f4527025311"},
+    {file = "maxminddb-2.6.3-cp313-cp313-musllinux_1_2_x86_64.whl", hash = "sha256:6eb23f842a72ab3096f9f9b1c292f4feb55a8d758567cb6d77637c2257a3187c"},
+    {file = "maxminddb-2.6.3-cp313-cp313-win32.whl", hash = "sha256:acf46e20709a27d2b519669888e3f53a37bc4204b98a0c690664c48ff8cb1364"},
+    {file = "maxminddb-2.6.3-cp313-cp313-win_amd64.whl", hash = "sha256:3015afb00e6168837938dbe5fda40ace37442c22b292ccee27c1690fbf6078ed"},
+    {file = "maxminddb-2.6.3-cp38-cp38-macosx_10_9_x86_64.whl", hash = "sha256:9d913971187326e59be8a63068128b6439f6717b13c7c451e6d9e1723286d9ff"},
+    {file = "maxminddb-2.6.3-cp38-cp38-macosx_11_0_arm64.whl", hash = "sha256:89afed255ac3652db7f91d8f6b278a4c490c47283ddbff5589c22cfdef4b8453"},
+    {file = "maxminddb-2.6.3-cp38-cp38-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:01b143a38ae38c71ebc9028d67bbcb05c1b954e0f3a28c508eaee46833807903"},
+    {file = "maxminddb-2.6.3-cp38-cp38-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:deebf098c79ce031069fec1d7202cba0e766b3f12adbb631d16223174994724a"},
+    {file = "maxminddb-2.6.3-cp38-cp38-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:f49eefddad781e088969188c606b7988a7da27592590f6c4cc2b64fd2a85ff28"},
+    {file = "maxminddb-2.6.3-cp38-cp38-musllinux_1_2_aarch64.whl", hash = "sha256:da584edc3e4465f5417a48602ed7e2bee4f2a7a2b43fcf2c40728cfc9f9fd5aa"},
+    {file = "maxminddb-2.6.3-cp38-cp38-musllinux_1_2_i686.whl", hash = "sha256:e5a8cfe71db548aa9a520a3f7e92430b6b7900affadef3b0c83c530c759dd12f"},
+    {file = "maxminddb-2.6.3-cp38-cp38-musllinux_1_2_x86_64.whl", hash = "sha256:daa20961ad0fb550038c02dbf76a04e1c1958a3b899fa14a7c412aed67380812"},
+    {file = "maxminddb-2.6.3-cp38-cp38-win32.whl", hash = "sha256:6480ca47db4d8d09296c268e8ff4e6f4c1d455773a67233c9f899dfa6af3e6c6"},
+    {file = "maxminddb-2.6.3-cp38-cp38-win_amd64.whl", hash = "sha256:0348c8dadef9493dbcd45f032ae271c7fd2216ed4bb4bab0aff371ffc522f871"},
+    {file = "maxminddb-2.6.3-cp39-cp39-macosx_10_9_x86_64.whl", hash = "sha256:1bc2edcef76ce54d4df04f58aec98f4df0377f37aae2217587bfecd663ed5c66"},
+    {file = "maxminddb-2.6.3-cp39-cp39-macosx_11_0_arm64.whl", hash = "sha256:1f0b78c40a12588e9e0ca0ffe5306b6dea028dcd21f2c120d1ceb328a3307a98"},
+    {file = "maxminddb-2.6.3-cp39-cp39-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:f06e9c908a9270e882f0d23f041a9674680a7a110412b453f902d22323f86d38"},
+    {file = "maxminddb-2.6.3-cp39-cp39-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:46096646c284835c8a580ec2ccbf0d6d5398191531fa543bb0437983c75cb7ba"},
+    {file = "maxminddb-2.6.3-cp39-cp39-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:0d82fbddf3a88e6aa6181bd16bc08a6939d6353f97f143eeddec16bc5394e361"},
+    {file = "maxminddb-2.6.3-cp39-cp39-musllinux_1_2_aarch64.whl", hash = "sha256:6136dc8ad8c8f7e95a7d84174a990c1b47d5e641e3a3a8ae67d7bde625342dbb"},
+    {file = "maxminddb-2.6.3-cp39-cp39-musllinux_1_2_i686.whl", hash = "sha256:01773fee182cc36f6d38c277936accf7c85b8f4c20d13bb630666f6b3f087ad8"},
+    {file = "maxminddb-2.6.3-cp39-cp39-musllinux_1_2_x86_64.whl", hash = "sha256:890dd845e371f67edef7b19a2866191d9fff85faf88f4b4c416a0aaa37204416"},
+    {file = "maxminddb-2.6.3-cp39-cp39-win32.whl", hash = "sha256:4e0865069ef76b4f3eb862c042b107088171cbf43fea3dcaae0dd7253effe6e3"},
+    {file = "maxminddb-2.6.3-cp39-cp39-win_amd64.whl", hash = "sha256:7c3209d7a4b2f50d4b28a1d886d95b19094cdc840208e69dbbc40cae2c1cc65b"},
+    {file = "maxminddb-2.6.3-pp310-pypy310_pp73-macosx_10_15_x86_64.whl", hash = "sha256:b4729936fedb4793d9162b92d6de63e267e388c8938e19e700120b6df6a6ae6c"},
+    {file = "maxminddb-2.6.3-pp310-pypy310_pp73-macosx_11_0_arm64.whl", hash = "sha256:6887315de47f3a9840df19f498a4e68723c160c9448d276c3ef454531555778e"},
+    {file = "maxminddb-2.6.3-pp310-pypy310_pp73-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:34943b4b724a35ef63ec40dcf894a100575d233b23b6cd4f8224017ea1195265"},
+    {file = "maxminddb-2.6.3-pp310-pypy310_pp73-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:2d25acb42ef8829e8e3491b6b3b4ced9dbb4eea6c4ec24afdc4028051e7b8803"},
+    {file = "maxminddb-2.6.3-pp310-pypy310_pp73-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:a23c7c88f9df0727a3e56f2385ec19fb5f61bb46dcbebb6ddc5c948cf0b73b0a"},
+    {file = "maxminddb-2.6.3-pp310-pypy310_pp73-win_amd64.whl", hash = "sha256:85763c19246dce43044be58cb9119579c2efd0b85a7b79d865b741a698866488"},
+    {file = "maxminddb-2.6.3-pp38-pypy38_pp73-macosx_10_9_x86_64.whl", hash = "sha256:7c5d15a0546821a7e9104b71ca701c01462390d0a1bee5cad75f583cf26c400b"},
+    {file = "maxminddb-2.6.3-pp38-pypy38_pp73-macosx_11_0_arm64.whl", hash = "sha256:de8415538d778ae4f4bb40e2cee9581e2d5c860abdbdbba1458953f5b314a6b0"},
+    {file = "maxminddb-2.6.3-pp38-pypy38_pp73-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:81340e52c743cdc3c0f4a9f45f9cf4e3c2ae87bf4bbb34613c5059a5b829eb65"},
+    {file = "maxminddb-2.6.3-pp38-pypy38_pp73-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:0b140c1db0c218f485b033b51a086d98d57f55f4a4c2b1cb72fe6a5e1e57359a"},
+    {file = "maxminddb-2.6.3-pp38-pypy38_pp73-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:8ec674a2c2e4b47ab9f582460670a5c1d7725b1cbf16e6cbb94de1ae51ee9edf"},
+    {file = "maxminddb-2.6.3-pp38-pypy38_pp73-win_amd64.whl", hash = "sha256:e28622fd7c4ccd298c3f630161d0801182eb38038ca01319693a70264de40b89"},
+    {file = "maxminddb-2.6.3-pp39-pypy39_pp73-macosx_10_15_x86_64.whl", hash = "sha256:b09bb7bb98418a620b1ec1881d1594c02e715a68cdc925781de1e79b39cefe77"},
+    {file = "maxminddb-2.6.3-pp39-pypy39_pp73-macosx_11_0_arm64.whl", hash = "sha256:a6597599cde3916730d69b023045e6c22ff1c076d9cad7fb63641d36d01e3e93"},
+    {file = "maxminddb-2.6.3-pp39-pypy39_pp73-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:4e7e6d5f3c1aa6350303edab8f0dd471e616d69b5d47ff5ecbf2c7c82998b9c6"},
+    {file = "maxminddb-2.6.3-pp39-pypy39_pp73-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:536a39fb917a44b1cd037da624e3d11d49898b5579dfc00c4d7103a057dc51ab"},
+    {file = "maxminddb-2.6.3-pp39-pypy39_pp73-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:a9ebd373a4ef69218bfbce93e9b97f583cfe681b28d4e32e0d64f76ded148fba"},
+    {file = "maxminddb-2.6.3-pp39-pypy39_pp73-win_amd64.whl", hash = "sha256:e441478922c2d311b8bc96f35d6e78306802774149fc20d07d96cc5c3b57dd02"},
+    {file = "maxminddb-2.6.3.tar.gz", hash = "sha256:d2c3806baa7aa047aa1bac7419e7e353db435f88f09d51106a84dbacf645d254"},
+]
+
+[[package]]
+name = "mdurl"
+version = "0.1.2"
+description = "Markdown URL utilities"
+optional = false
+python-versions = ">=3.7"
+groups = ["main", "dev"]
+files = [
+    {file = "mdurl-0.1.2-py3-none-any.whl", hash = "sha256:84008a41e51615a49fc9966191ff91509e3c40b939176e643fd50a5c2196b8f8"},
+    {file = "mdurl-0.1.2.tar.gz", hash = "sha256:bb413d29f5eea38f31dd4754dd7377d4465116fb207585f97bf925588687c1ba"},
+]
+
+[[package]]
+name = "msgpack"
+version = "1.0.8"
+description = "MessagePack serializer"
+optional = false
+python-versions = ">=3.8"
+groups = ["main"]
+files = [
+    {file = "msgpack-1.0.8-cp310-cp310-macosx_10_9_universal2.whl", hash = "sha256:505fe3d03856ac7d215dbe005414bc28505d26f0c128906037e66d98c4e95868"},
+    {file = "msgpack-1.0.8-cp310-cp310-macosx_10_9_x86_64.whl", hash = "sha256:e6b7842518a63a9f17107eb176320960ec095a8ee3b4420b5f688e24bf50c53c"},
+    {file = "msgpack-1.0.8-cp310-cp310-macosx_11_0_arm64.whl", hash = "sha256:376081f471a2ef24828b83a641a02c575d6103a3ad7fd7dade5486cad10ea659"},
+    {file = "msgpack-1.0.8-cp310-cp310-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:5e390971d082dba073c05dbd56322427d3280b7cc8b53484c9377adfbae67dc2"},
+    {file = "msgpack-1.0.8-cp310-cp310-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:00e073efcba9ea99db5acef3959efa45b52bc67b61b00823d2a1a6944bf45982"},
+    {file = "msgpack-1.0.8-cp310-cp310-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:82d92c773fbc6942a7a8b520d22c11cfc8fd83bba86116bfcf962c2f5c2ecdaa"},
+    {file = "msgpack-1.0.8-cp310-cp310-musllinux_1_1_aarch64.whl", hash = "sha256:9ee32dcb8e531adae1f1ca568822e9b3a738369b3b686d1477cbc643c4a9c128"},
+    {file = "msgpack-1.0.8-cp310-cp310-musllinux_1_1_i686.whl", hash = "sha256:e3aa7e51d738e0ec0afbed661261513b38b3014754c9459508399baf14ae0c9d"},
+    {file = "msgpack-1.0.8-cp310-cp310-musllinux_1_1_x86_64.whl", hash = "sha256:69284049d07fce531c17404fcba2bb1df472bc2dcdac642ae71a2d079d950653"},
+    {file = "msgpack-1.0.8-cp310-cp310-win32.whl", hash = "sha256:13577ec9e247f8741c84d06b9ece5f654920d8365a4b636ce0e44f15e07ec693"},
+    {file = "msgpack-1.0.8-cp310-cp310-win_amd64.whl", hash = "sha256:e532dbd6ddfe13946de050d7474e3f5fb6ec774fbb1a188aaf469b08cf04189a"},
+    {file = "msgpack-1.0.8-cp311-cp311-macosx_10_9_universal2.whl", hash = "sha256:9517004e21664f2b5a5fd6333b0731b9cf0817403a941b393d89a2f1dc2bd836"},
+    {file = "msgpack-1.0.8-cp311-cp311-macosx_10_9_x86_64.whl", hash = "sha256:d16a786905034e7e34098634b184a7d81f91d4c3d246edc6bd7aefb2fd8ea6ad"},
+    {file = "msgpack-1.0.8-cp311-cp311-macosx_11_0_arm64.whl", hash = "sha256:e2872993e209f7ed04d963e4b4fbae72d034844ec66bc4ca403329db2074377b"},
+    {file = "msgpack-1.0.8-cp311-cp311-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:5c330eace3dd100bdb54b5653b966de7f51c26ec4a7d4e87132d9b4f738220ba"},
+    {file = "msgpack-1.0.8-cp311-cp311-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:83b5c044f3eff2a6534768ccfd50425939e7a8b5cf9a7261c385de1e20dcfc85"},
+    {file = "msgpack-1.0.8-cp311-cp311-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:1876b0b653a808fcd50123b953af170c535027bf1d053b59790eebb0aeb38950"},
+    {file = "msgpack-1.0.8-cp311-cp311-musllinux_1_1_aarch64.whl", hash = "sha256:dfe1f0f0ed5785c187144c46a292b8c34c1295c01da12e10ccddfc16def4448a"},
+    {file = "msgpack-1.0.8-cp311-cp311-musllinux_1_1_i686.whl", hash = "sha256:3528807cbbb7f315bb81959d5961855e7ba52aa60a3097151cb21956fbc7502b"},
+    {file = "msgpack-1.0.8-cp311-cp311-musllinux_1_1_x86_64.whl", hash = "sha256:e2f879ab92ce502a1e65fce390eab619774dda6a6ff719718069ac94084098ce"},
+    {file = "msgpack-1.0.8-cp311-cp311-win32.whl", hash = "sha256:26ee97a8261e6e35885c2ecd2fd4a6d38252246f94a2aec23665a4e66d066305"},
+    {file = "msgpack-1.0.8-cp311-cp311-win_amd64.whl", hash = "sha256:eadb9f826c138e6cf3c49d6f8de88225a3c0ab181a9b4ba792e006e5292d150e"},
+    {file = "msgpack-1.0.8-cp312-cp312-macosx_10_9_universal2.whl", hash = "sha256:114be227f5213ef8b215c22dde19532f5da9652e56e8ce969bf0a26d7c419fee"},
+    {file = "msgpack-1.0.8-cp312-cp312-macosx_10_9_x86_64.whl", hash = "sha256:d661dc4785affa9d0edfdd1e59ec056a58b3dbb9f196fa43587f3ddac654ac7b"},
+    {file = "msgpack-1.0.8-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:d56fd9f1f1cdc8227d7b7918f55091349741904d9520c65f0139a9755952c9e8"},
+    {file = "msgpack-1.0.8-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:0726c282d188e204281ebd8de31724b7d749adebc086873a59efb8cf7ae27df3"},
+    {file = "msgpack-1.0.8-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:8db8e423192303ed77cff4dce3a4b88dbfaf43979d280181558af5e2c3c71afc"},
+    {file = "msgpack-1.0.8-cp312-cp312-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:99881222f4a8c2f641f25703963a5cefb076adffd959e0558dc9f803a52d6a58"},
+    {file = "msgpack-1.0.8-cp312-cp312-musllinux_1_1_aarch64.whl", hash = "sha256:b5505774ea2a73a86ea176e8a9a4a7c8bf5d521050f0f6f8426afe798689243f"},
+    {file = "msgpack-1.0.8-cp312-cp312-musllinux_1_1_i686.whl", hash = "sha256:ef254a06bcea461e65ff0373d8a0dd1ed3aa004af48839f002a0c994a6f72d04"},
+    {file = "msgpack-1.0.8-cp312-cp312-musllinux_1_1_x86_64.whl", hash = "sha256:e1dd7839443592d00e96db831eddb4111a2a81a46b028f0facd60a09ebbdd543"},
+    {file = "msgpack-1.0.8-cp312-cp312-win32.whl", hash = "sha256:64d0fcd436c5683fdd7c907eeae5e2cbb5eb872fafbc03a43609d7941840995c"},
+    {file = "msgpack-1.0.8-cp312-cp312-win_amd64.whl", hash = "sha256:74398a4cf19de42e1498368c36eed45d9528f5fd0155241e82c4082b7e16cffd"},
+    {file = "msgpack-1.0.8-cp38-cp38-macosx_10_9_universal2.whl", hash = "sha256:0ceea77719d45c839fd73abcb190b8390412a890df2f83fb8cf49b2a4b5c2f40"},
+    {file = "msgpack-1.0.8-cp38-cp38-macosx_10_9_x86_64.whl", hash = "sha256:1ab0bbcd4d1f7b6991ee7c753655b481c50084294218de69365f8f1970d4c151"},
+    {file = "msgpack-1.0.8-cp38-cp38-macosx_11_0_arm64.whl", hash = "sha256:1cce488457370ffd1f953846f82323cb6b2ad2190987cd4d70b2713e17268d24"},
+    {file = "msgpack-1.0.8-cp38-cp38-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:3923a1778f7e5ef31865893fdca12a8d7dc03a44b33e2a5f3295416314c09f5d"},
+    {file = "msgpack-1.0.8-cp38-cp38-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:a22e47578b30a3e199ab067a4d43d790249b3c0587d9a771921f86250c8435db"},
+    {file = "msgpack-1.0.8-cp38-cp38-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:bd739c9251d01e0279ce729e37b39d49a08c0420d3fee7f2a4968c0576678f77"},
+    {file = "msgpack-1.0.8-cp38-cp38-musllinux_1_1_aarch64.whl", hash = "sha256:d3420522057ebab1728b21ad473aa950026d07cb09da41103f8e597dfbfaeb13"},
+    {file = "msgpack-1.0.8-cp38-cp38-musllinux_1_1_i686.whl", hash = "sha256:5845fdf5e5d5b78a49b826fcdc0eb2e2aa7191980e3d2cfd2a30303a74f212e2"},
+    {file = "msgpack-1.0.8-cp38-cp38-musllinux_1_1_x86_64.whl", hash = "sha256:6a0e76621f6e1f908ae52860bdcb58e1ca85231a9b0545e64509c931dd34275a"},
+    {file = "msgpack-1.0.8-cp38-cp38-win32.whl", hash = "sha256:374a8e88ddab84b9ada695d255679fb99c53513c0a51778796fcf0944d6c789c"},
+    {file = "msgpack-1.0.8-cp38-cp38-win_amd64.whl", hash = "sha256:f3709997b228685fe53e8c433e2df9f0cdb5f4542bd5114ed17ac3c0129b0480"},
+    {file = "msgpack-1.0.8-cp39-cp39-macosx_10_9_universal2.whl", hash = "sha256:f51bab98d52739c50c56658cc303f190785f9a2cd97b823357e7aeae54c8f68a"},
+    {file = "msgpack-1.0.8-cp39-cp39-macosx_10_9_x86_64.whl", hash = "sha256:73ee792784d48aa338bba28063e19a27e8d989344f34aad14ea6e1b9bd83f596"},
+    {file = "msgpack-1.0.8-cp39-cp39-macosx_11_0_arm64.whl", hash = "sha256:f9904e24646570539a8950400602d66d2b2c492b9010ea7e965025cb71d0c86d"},
+    {file = "msgpack-1.0.8-cp39-cp39-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:e75753aeda0ddc4c28dce4c32ba2f6ec30b1b02f6c0b14e547841ba5b24f753f"},
+    {file = "msgpack-1.0.8-cp39-cp39-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:5dbf059fb4b7c240c873c1245ee112505be27497e90f7c6591261c7d3c3a8228"},
+    {file = "msgpack-1.0.8-cp39-cp39-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:4916727e31c28be8beaf11cf117d6f6f188dcc36daae4e851fee88646f5b6b18"},
+    {file = "msgpack-1.0.8-cp39-cp39-musllinux_1_1_aarch64.whl", hash = "sha256:7938111ed1358f536daf311be244f34df7bf3cdedb3ed883787aca97778b28d8"},
+    {file = "msgpack-1.0.8-cp39-cp39-musllinux_1_1_i686.whl", hash = "sha256:493c5c5e44b06d6c9268ce21b302c9ca055c1fd3484c25ba41d34476c76ee746"},
+    {file = "msgpack-1.0.8-cp39-cp39-musllinux_1_1_x86_64.whl", hash = "sha256:5fbb160554e319f7b22ecf530a80a3ff496d38e8e07ae763b9e82fadfe96f273"},
+    {file = "msgpack-1.0.8-cp39-cp39-win32.whl", hash = "sha256:f9af38a89b6a5c04b7d18c492c8ccf2aee7048aff1ce8437c4683bb5a1df893d"},
+    {file = "msgpack-1.0.8-cp39-cp39-win_amd64.whl", hash = "sha256:ed59dd52075f8fc91da6053b12e8c89e37aa043f8986efd89e61fae69dc1b011"},
+    {file = "msgpack-1.0.8.tar.gz", hash = "sha256:95c02b0e27e706e48d0e5426d1710ca78e0f0628d6e89d5b5a5b91a5f12274f3"},
+]
+
+[[package]]
+name = "msgspec"
+version = "0.19.0"
+description = "A fast serialization and validation library, with builtin support for JSON, MessagePack, YAML, and TOML."
+optional = false
+python-versions = ">=3.9"
+groups = ["main"]
+files = [
+    {file = "msgspec-0.19.0-cp310-cp310-macosx_10_9_x86_64.whl", hash = "sha256:d8dd848ee7ca7c8153462557655570156c2be94e79acec3561cf379581343259"},
+    {file = "msgspec-0.19.0-cp310-cp310-macosx_11_0_arm64.whl", hash = "sha256:0553bbc77662e5708fe66aa75e7bd3e4b0f209709c48b299afd791d711a93c36"},
+    {file = "msgspec-0.19.0-cp310-cp310-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:fe2c4bf29bf4e89790b3117470dea2c20b59932772483082c468b990d45fb947"},
+    {file = "msgspec-0.19.0-cp310-cp310-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:00e87ecfa9795ee5214861eab8326b0e75475c2e68a384002aa135ea2a27d909"},
+    {file = "msgspec-0.19.0-cp310-cp310-musllinux_1_2_aarch64.whl", hash = "sha256:3c4ec642689da44618f68c90855a10edbc6ac3ff7c1d94395446c65a776e712a"},
+    {file = "msgspec-0.19.0-cp310-cp310-musllinux_1_2_x86_64.whl", hash = "sha256:2719647625320b60e2d8af06b35f5b12d4f4d281db30a15a1df22adb2295f633"},
+    {file = "msgspec-0.19.0-cp310-cp310-win_amd64.whl", hash = "sha256:695b832d0091edd86eeb535cd39e45f3919f48d997685f7ac31acb15e0a2ed90"},
+    {file = "msgspec-0.19.0-cp311-cp311-macosx_10_9_x86_64.whl", hash = "sha256:aa77046904db764b0462036bc63ef71f02b75b8f72e9c9dd4c447d6da1ed8f8e"},
+    {file = "msgspec-0.19.0-cp311-cp311-macosx_11_0_arm64.whl", hash = "sha256:047cfa8675eb3bad68722cfe95c60e7afabf84d1bd8938979dd2b92e9e4a9551"},
+    {file = "msgspec-0.19.0-cp311-cp311-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:e78f46ff39a427e10b4a61614a2777ad69559cc8d603a7c05681f5a595ea98f7"},
+    {file = "msgspec-0.19.0-cp311-cp311-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:6c7adf191e4bd3be0e9231c3b6dc20cf1199ada2af523885efc2ed218eafd011"},
+    {file = "msgspec-0.19.0-cp311-cp311-musllinux_1_2_aarch64.whl", hash = "sha256:f04cad4385e20be7c7176bb8ae3dca54a08e9756cfc97bcdb4f18560c3042063"},
+    {file = "msgspec-0.19.0-cp311-cp311-musllinux_1_2_x86_64.whl", hash = "sha256:45c8fb410670b3b7eb884d44a75589377c341ec1392b778311acdbfa55187716"},
+    {file = "msgspec-0.19.0-cp311-cp311-win_amd64.whl", hash = "sha256:70eaef4934b87193a27d802534dc466778ad8d536e296ae2f9334e182ac27b6c"},
+    {file = "msgspec-0.19.0-cp312-cp312-macosx_10_13_x86_64.whl", hash = "sha256:f98bd8962ad549c27d63845b50af3f53ec468b6318400c9f1adfe8b092d7b62f"},
+    {file = "msgspec-0.19.0-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:43bbb237feab761b815ed9df43b266114203f53596f9b6e6f00ebd79d178cdf2"},
+    {file = "msgspec-0.19.0-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:4cfc033c02c3e0aec52b71710d7f84cb3ca5eb407ab2ad23d75631153fdb1f12"},
+    {file = "msgspec-0.19.0-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:d911c442571605e17658ca2b416fd8579c5050ac9adc5e00c2cb3126c97f73bc"},
+    {file = "msgspec-0.19.0-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:757b501fa57e24896cf40a831442b19a864f56d253679f34f260dcb002524a6c"},
+    {file = "msgspec-0.19.0-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:5f0f65f29b45e2816d8bded36e6b837a4bf5fb60ec4bc3c625fa2c6da4124537"},
+    {file = "msgspec-0.19.0-cp312-cp312-win_amd64.whl", hash = "sha256:067f0de1c33cfa0b6a8206562efdf6be5985b988b53dd244a8e06f993f27c8c0"},
+    {file = "msgspec-0.19.0-cp313-cp313-macosx_10_13_x86_64.whl", hash = "sha256:f12d30dd6266557aaaf0aa0f9580a9a8fbeadfa83699c487713e355ec5f0bd86"},
+    {file = "msgspec-0.19.0-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:82b2c42c1b9ebc89e822e7e13bbe9d17ede0c23c187469fdd9505afd5a481314"},
+    {file = "msgspec-0.19.0-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:19746b50be214a54239aab822964f2ac81e38b0055cca94808359d779338c10e"},
+    {file = "msgspec-0.19.0-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:60ef4bdb0ec8e4ad62e5a1f95230c08efb1f64f32e6e8dd2ced685bcc73858b5"},
+    {file = "msgspec-0.19.0-cp313-cp313-musllinux_1_2_aarch64.whl", hash = "sha256:ac7f7c377c122b649f7545810c6cd1b47586e3aa3059126ce3516ac7ccc6a6a9"},
+    {file = "msgspec-0.19.0-cp313-cp313-musllinux_1_2_x86_64.whl", hash = "sha256:a5bc1472223a643f5ffb5bf46ccdede7f9795078194f14edd69e3aab7020d327"},
+    {file = "msgspec-0.19.0-cp313-cp313-win_amd64.whl", hash = "sha256:317050bc0f7739cb30d257ff09152ca309bf5a369854bbf1e57dffc310c1f20f"},
+    {file = "msgspec-0.19.0-cp39-cp39-macosx_10_9_x86_64.whl", hash = "sha256:15c1e86fff77184c20a2932cd9742bf33fe23125fa3fcf332df9ad2f7d483044"},
+    {file = "msgspec-0.19.0-cp39-cp39-macosx_11_0_arm64.whl", hash = "sha256:3b5541b2b3294e5ffabe31a09d604e23a88533ace36ac288fa32a420aa38d229"},
+    {file = "msgspec-0.19.0-cp39-cp39-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:0f5c043ace7962ef188746e83b99faaa9e3e699ab857ca3f367b309c8e2c6b12"},
+    {file = "msgspec-0.19.0-cp39-cp39-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:ca06aa08e39bf57e39a258e1996474f84d0dd8130d486c00bec26d797b8c5446"},
+    {file = "msgspec-0.19.0-cp39-cp39-musllinux_1_2_aarch64.whl", hash = "sha256:e695dad6897896e9384cf5e2687d9ae9feaef50e802f93602d35458e20d1fb19"},
+    {file = "msgspec-0.19.0-cp39-cp39-musllinux_1_2_x86_64.whl", hash = "sha256:3be5c02e1fee57b54130316a08fe40cca53af92999a302a6054cd451700ea7db"},
+    {file = "msgspec-0.19.0-cp39-cp39-win_amd64.whl", hash = "sha256:0684573a821be3c749912acf5848cce78af4298345cb2d7a8b8948a0a5a27cfe"},
+    {file = "msgspec-0.19.0.tar.gz", hash = "sha256:604037e7cd475345848116e89c553aa9a233259733ab51986ac924ab1b976f8e"},
+]
+
+[package.extras]
+dev = ["attrs", "coverage", "eval-type-backport ; python_version < \"3.10\"", "furo", "ipython", "msgpack", "mypy", "pre-commit", "pyright", "pytest", "pyyaml", "sphinx", "sphinx-copybutton", "sphinx-design", "tomli ; python_version < \"3.11\"", "tomli_w"]
+doc = ["furo", "ipython", "sphinx", "sphinx-copybutton", "sphinx-design"]
+test = ["attrs", "eval-type-backport ; python_version < \"3.10\"", "msgpack", "pytest", "pyyaml", "tomli ; python_version < \"3.11\"", "tomli_w"]
+toml = ["tomli ; python_version < \"3.11\"", "tomli_w"]
+yaml = ["pyyaml"]
+
+[[package]]
+name = "msoffcrypto-tool"
+version = "5.4.2"
+description = "Python tool and library for decrypting and encrypting MS Office files using a password or other keys"
+optional = false
+python-versions = "<4.0,>=3.8"
+groups = ["main"]
+markers = "platform_python_implementation != \"PyPy\" or platform_system != \"Windows\" and platform_system != \"Darwin\""
+files = [
+    {file = "msoffcrypto_tool-5.4.2-py3-none-any.whl", hash = "sha256:274fe2181702d1e5a107ec1b68a4c9fea997a44972ae1cc9ae0cb4f6a50fef0e"},
+    {file = "msoffcrypto_tool-5.4.2.tar.gz", hash = "sha256:44b545adba0407564a0cc3d6dde6ca36b7c0fdf352b85bca51618fa1d4817370"},
+]
+
+[package.dependencies]
+cryptography = ">=39.0"
+olefile = ">=0.46"
+
+[[package]]
+name = "mypy"
+version = "1.14.1"
+description = "Optional static typing for Python"
+optional = false
+python-versions = ">=3.8"
+groups = ["dev"]
+files = [
+    {file = "mypy-1.14.1-cp310-cp310-macosx_10_9_x86_64.whl", hash = "sha256:52686e37cf13d559f668aa398dd7ddf1f92c5d613e4f8cb262be2fb4fedb0fcb"},
+    {file = "mypy-1.14.1-cp310-cp310-macosx_11_0_arm64.whl", hash = "sha256:1fb545ca340537d4b45d3eecdb3def05e913299ca72c290326be19b3804b39c0"},
+    {file = "mypy-1.14.1-cp310-cp310-manylinux_2_17_aarch64.manylinux2014_aarch64.manylinux_2_28_aarch64.whl", hash = "sha256:90716d8b2d1f4cd503309788e51366f07c56635a3309b0f6a32547eaaa36a64d"},
+    {file = "mypy-1.14.1-cp310-cp310-manylinux_2_17_x86_64.manylinux2014_x86_64.manylinux_2_28_x86_64.whl", hash = "sha256:2ae753f5c9fef278bcf12e1a564351764f2a6da579d4a81347e1d5a15819997b"},
+    {file = "mypy-1.14.1-cp310-cp310-musllinux_1_2_x86_64.whl", hash = "sha256:e0fe0f5feaafcb04505bcf439e991c6d8f1bf8b15f12b05feeed96e9e7bf1427"},
+    {file = "mypy-1.14.1-cp310-cp310-win_amd64.whl", hash = "sha256:7d54bd85b925e501c555a3227f3ec0cfc54ee8b6930bd6141ec872d1c572f81f"},
+    {file = "mypy-1.14.1-cp311-cp311-macosx_10_9_x86_64.whl", hash = "sha256:f995e511de847791c3b11ed90084a7a0aafdc074ab88c5a9711622fe4751138c"},
+    {file = "mypy-1.14.1-cp311-cp311-macosx_11_0_arm64.whl", hash = "sha256:d64169ec3b8461311f8ce2fd2eb5d33e2d0f2c7b49116259c51d0d96edee48d1"},
+    {file = "mypy-1.14.1-cp311-cp311-manylinux_2_17_aarch64.manylinux2014_aarch64.manylinux_2_28_aarch64.whl", hash = "sha256:ba24549de7b89b6381b91fbc068d798192b1b5201987070319889e93038967a8"},
+    {file = "mypy-1.14.1-cp311-cp311-manylinux_2_17_x86_64.manylinux2014_x86_64.manylinux_2_28_x86_64.whl", hash = "sha256:183cf0a45457d28ff9d758730cd0210419ac27d4d3f285beda038c9083363b1f"},
+    {file = "mypy-1.14.1-cp311-cp311-musllinux_1_2_x86_64.whl", hash = "sha256:f2a0ecc86378f45347f586e4163d1769dd81c5a223d577fe351f26b179e148b1"},
+    {file = "mypy-1.14.1-cp311-cp311-win_amd64.whl", hash = "sha256:ad3301ebebec9e8ee7135d8e3109ca76c23752bac1e717bc84cd3836b4bf3eae"},
+    {file = "mypy-1.14.1-cp312-cp312-macosx_10_13_x86_64.whl", hash = "sha256:30ff5ef8519bbc2e18b3b54521ec319513a26f1bba19a7582e7b1f58a6e69f14"},
+    {file = "mypy-1.14.1-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:cb9f255c18052343c70234907e2e532bc7e55a62565d64536dbc7706a20b78b9"},
+    {file = "mypy-1.14.1-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.manylinux_2_28_aarch64.whl", hash = "sha256:8b4e3413e0bddea671012b063e27591b953d653209e7a4fa5e48759cda77ca11"},
+    {file = "mypy-1.14.1-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.manylinux_2_28_x86_64.whl", hash = "sha256:553c293b1fbdebb6c3c4030589dab9fafb6dfa768995a453d8a5d3b23784af2e"},
+    {file = "mypy-1.14.1-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:fad79bfe3b65fe6a1efaed97b445c3d37f7be9fdc348bdb2d7cac75579607c89"},
+    {file = "mypy-1.14.1-cp312-cp312-win_amd64.whl", hash = "sha256:8fa2220e54d2946e94ab6dbb3ba0a992795bd68b16dc852db33028df2b00191b"},
+    {file = "mypy-1.14.1-cp313-cp313-macosx_10_13_x86_64.whl", hash = "sha256:92c3ed5afb06c3a8e188cb5da4984cab9ec9a77ba956ee419c68a388b4595255"},
+    {file = "mypy-1.14.1-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:dbec574648b3e25f43d23577309b16534431db4ddc09fda50841f1e34e64ed34"},
+    {file = "mypy-1.14.1-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.manylinux_2_28_aarch64.whl", hash = "sha256:8c6d94b16d62eb3e947281aa7347d78236688e21081f11de976376cf010eb31a"},
+    {file = "mypy-1.14.1-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.manylinux_2_28_x86_64.whl", hash = "sha256:d4b19b03fdf54f3c5b2fa474c56b4c13c9dbfb9a2db4370ede7ec11a2c5927d9"},
+    {file = "mypy-1.14.1-cp313-cp313-musllinux_1_2_x86_64.whl", hash = "sha256:0c911fde686394753fff899c409fd4e16e9b294c24bfd5e1ea4675deae1ac6fd"},
+    {file = "mypy-1.14.1-cp313-cp313-win_amd64.whl", hash = "sha256:8b21525cb51671219f5307be85f7e646a153e5acc656e5cebf64bfa076c50107"},
+    {file = "mypy-1.14.1-cp38-cp38-macosx_10_9_x86_64.whl", hash = "sha256:7084fb8f1128c76cd9cf68fe5971b37072598e7c31b2f9f95586b65c741a9d31"},
+    {file = "mypy-1.14.1-cp38-cp38-macosx_11_0_arm64.whl", hash = "sha256:8f845a00b4f420f693f870eaee5f3e2692fa84cc8514496114649cfa8fd5e2c6"},
+    {file = "mypy-1.14.1-cp38-cp38-manylinux_2_17_aarch64.manylinux2014_aarch64.manylinux_2_28_aarch64.whl", hash = "sha256:44bf464499f0e3a2d14d58b54674dee25c031703b2ffc35064bd0df2e0fac319"},
+    {file = "mypy-1.14.1-cp38-cp38-manylinux_2_17_x86_64.manylinux2014_x86_64.manylinux_2_28_x86_64.whl", hash = "sha256:c99f27732c0b7dc847adb21c9d47ce57eb48fa33a17bc6d7d5c5e9f9e7ae5bac"},
+    {file = "mypy-1.14.1-cp38-cp38-musllinux_1_2_x86_64.whl", hash = "sha256:bce23c7377b43602baa0bd22ea3265c49b9ff0b76eb315d6c34721af4cdf1d9b"},
+    {file = "mypy-1.14.1-cp38-cp38-win_amd64.whl", hash = "sha256:8edc07eeade7ebc771ff9cf6b211b9a7d93687ff892150cb5692e4f4272b0837"},
+    {file = "mypy-1.14.1-cp39-cp39-macosx_10_9_x86_64.whl", hash = "sha256:3888a1816d69f7ab92092f785a462944b3ca16d7c470d564165fe703b0970c35"},
+    {file = "mypy-1.14.1-cp39-cp39-macosx_11_0_arm64.whl", hash = "sha256:46c756a444117c43ee984bd055db99e498bc613a70bbbc120272bd13ca579fbc"},
+    {file = "mypy-1.14.1-cp39-cp39-manylinux_2_17_aarch64.manylinux2014_aarch64.manylinux_2_28_aarch64.whl", hash = "sha256:27fc248022907e72abfd8e22ab1f10e903915ff69961174784a3900a8cba9ad9"},
+    {file = "mypy-1.14.1-cp39-cp39-manylinux_2_17_x86_64.manylinux2014_x86_64.manylinux_2_28_x86_64.whl", hash = "sha256:499d6a72fb7e5de92218db961f1a66d5f11783f9ae549d214617edab5d4dbdbb"},
+    {file = "mypy-1.14.1-cp39-cp39-musllinux_1_2_x86_64.whl", hash = "sha256:57961db9795eb566dc1d1b4e9139ebc4c6b0cb6e7254ecde69d1552bf7613f60"},
+    {file = "mypy-1.14.1-cp39-cp39-win_amd64.whl", hash = "sha256:07ba89fdcc9451f2ebb02853deb6aaaa3d2239a236669a63ab3801bbf923ef5c"},
+    {file = "mypy-1.14.1-py3-none-any.whl", hash = "sha256:b66a60cc4073aeb8ae00057f9c1f64d49e90f918fbcef9a977eb121da8b8f1d1"},
+    {file = "mypy-1.14.1.tar.gz", hash = "sha256:7ec88144fe9b510e8475ec2f5f251992690fcf89ccb4500b214b4226abcd32d6"},
+]
+
+[package.dependencies]
+mypy_extensions = ">=1.0.0"
+tomli = {version = ">=1.1.0", markers = "python_version < \"3.11\""}
+typing_extensions = ">=4.6.0"
+
+[package.extras]
+dmypy = ["psutil (>=4.0)"]
+faster-cache = ["orjson"]
+install-types = ["pip"]
+mypyc = ["setuptools (>=50)"]
+reports = ["lxml"]
+
+[[package]]
+name = "mypy-extensions"
+version = "1.0.0"
+description = "Type system extensions for programs checked with the mypy type checker."
+optional = false
+python-versions = ">=3.5"
+groups = ["dev"]
+files = [
+    {file = "mypy_extensions-1.0.0-py3-none-any.whl", hash = "sha256:4392f6c0eb8a5668a69e23d168ffa70f0be9ccfd32b5cc2d26a34ae5b844552d"},
+    {file = "mypy_extensions-1.0.0.tar.gz", hash = "sha256:75dbf8955dc00442a438fc4d0666508a9a97b6bd41aa2f0ffe9d2f2725af0782"},
+]
+
+[[package]]
+name = "netstruct"
+version = "1.1.2"
+description = "Packed binary data for networking."
+optional = false
+python-versions = "*"
+groups = ["main"]
+files = [
+    {file = "netstruct-1.1.2.zip", hash = "sha256:70b6a5c73f5bbc7ab57b019369642adfb34dd8af41b948c400ce95f952b7df9a"},
+]
+
+[[package]]
+name = "networkx"
+version = "3.4.2"
+description = "Python package for creating and manipulating graphs and networks"
+optional = false
+python-versions = ">=3.10"
+groups = ["main"]
+files = [
+    {file = "networkx-3.4.2-py3-none-any.whl", hash = "sha256:df5d4365b724cf81b8c6a7312509d0c22386097011ad1abe274afd5e9d3bbc5f"},
+    {file = "networkx-3.4.2.tar.gz", hash = "sha256:307c3669428c5362aab27c8a1260aa8f47c4e91d3891f48be0141738d8d053e1"},
+]
+
+[package.extras]
+default = ["matplotlib (>=3.7)", "numpy (>=1.24)", "pandas (>=2.0)", "scipy (>=1.10,!=1.11.0,!=1.11.1)"]
+developer = ["changelist (==0.5)", "mypy (>=1.1)", "pre-commit (>=3.2)", "rtoml"]
+doc = ["intersphinx-registry", "myst-nb (>=1.1)", "numpydoc (>=1.8.0)", "pillow (>=9.4)", "pydata-sphinx-theme (>=0.15)", "sphinx (>=7.3)", "sphinx-gallery (>=0.16)", "texext (>=0.6.7)"]
+example = ["cairocffi (>=1.7)", "contextily (>=1.6)", "igraph (>=0.11)", "momepy (>=0.7.2)", "osmnx (>=1.9)", "scikit-learn (>=1.5)", "seaborn (>=0.13)"]
+extra = ["lxml (>=4.6)", "pydot (>=3.0.1)", "pygraphviz (>=1.14)", "sympy (>=1.10)"]
+test = ["pytest (>=7.2)", "pytest-cov (>=4.0)"]
+
+[[package]]
+name = "nodeenv"
+version = "1.9.1"
+description = "Node.js virtual environment builder"
+optional = false
+python-versions = "!=3.0.*,!=3.1.*,!=3.2.*,!=3.3.*,!=3.4.*,!=3.5.*,!=3.6.*,>=2.7"
+groups = ["dev"]
+files = [
+    {file = "nodeenv-1.9.1-py2.py3-none-any.whl", hash = "sha256:ba11c9782d29c27c70ffbdda2d7415098754709be8a7056d79a737cd901155c9"},
+    {file = "nodeenv-1.9.1.tar.gz", hash = "sha256:6ec12890a2dab7946721edbfbcd91f3319c6ccc9aec47be7c7e6b7011ee6645f"},
+]
+
+[[package]]
+name = "olefile"
+version = "0.47"
+description = "Python package to parse, read and write Microsoft OLE2 files (Structured Storage or Compound Document, Microsoft Office)"
+optional = false
+python-versions = ">=2.7, !=3.0.*, !=3.1.*, !=3.2.*, !=3.3.*, !=3.4.*"
+groups = ["main"]
+files = [
+    {file = "olefile-0.47-py2.py3-none-any.whl", hash = "sha256:543c7da2a7adadf21214938bb79c83ea12b473a4b6ee4ad4bf854e7715e13d1f"},
+    {file = "olefile-0.47.zip", hash = "sha256:599383381a0bf3dfbd932ca0ca6515acd174ed48870cbf7fee123d698c192c1c"},
+]
+
+[package.extras]
+tests = ["pytest", "pytest-cov"]
+
+[[package]]
+name = "oletools"
+version = "0.60.2"
+description = "Python tools to analyze security characteristics of MS Office and OLE files (also called Structured Storage, Compound File Binary Format or Compound Document File Format), for Malware Analysis and Incident Response #DFIR"
+optional = false
+python-versions = "*"
+groups = ["main"]
+files = [
+    {file = "oletools-0.60.2-py2.py3-none-any.whl", hash = "sha256:72ad8bd748fd0c4e7b5b4733af770d11543ebb2bf2697455f99f975fcd50cc96"},
+    {file = "oletools-0.60.2.zip", hash = "sha256:ad452099f4695ffd8855113f453348200d195ee9fa341a09e197d66ee7e0b2c3"},
+]
+
+[package.dependencies]
+colorclass = "*"
+easygui = "*"
+msoffcrypto-tool = {version = "*", markers = "platform_python_implementation != \"PyPy\" or python_version >= \"3\" and platform_system != \"Windows\" and platform_system != \"Darwin\""}
+olefile = ">=0.46"
+pcodedmp = ">=1.2.5"
+pyparsing = ">=2.1.0,<4"
+
+[package.extras]
+full = ["XLMMacroDeobfuscator"]
+
+[[package]]
+name = "orjson"
+version = "3.10.15"
+description = "Fast, correct Python JSON library supporting dataclasses, datetimes, and numpy"
+optional = false
+python-versions = ">=3.8"
+groups = ["main"]
+files = [
+    {file = "orjson-3.10.15-cp310-cp310-macosx_10_15_x86_64.macosx_11_0_arm64.macosx_10_15_universal2.whl", hash = "sha256:552c883d03ad185f720d0c09583ebde257e41b9521b74ff40e08b7dec4559c04"},
+    {file = "orjson-3.10.15-cp310-cp310-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:616e3e8d438d02e4854f70bfdc03a6bcdb697358dbaa6bcd19cbe24d24ece1f8"},
+    {file = "orjson-3.10.15-cp310-cp310-manylinux_2_17_armv7l.manylinux2014_armv7l.whl", hash = "sha256:7c2c79fa308e6edb0ffab0a31fd75a7841bf2a79a20ef08a3c6e3b26814c8ca8"},
+    {file = "orjson-3.10.15-cp310-cp310-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:73cb85490aa6bf98abd20607ab5c8324c0acb48d6da7863a51be48505646c814"},
+    {file = "orjson-3.10.15-cp310-cp310-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:763dadac05e4e9d2bc14938a45a2d0560549561287d41c465d3c58aec818b164"},
+    {file = "orjson-3.10.15-cp310-cp310-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:a330b9b4734f09a623f74a7490db713695e13b67c959713b78369f26b3dee6bf"},
+    {file = "orjson-3.10.15-cp310-cp310-manylinux_2_5_i686.manylinux1_i686.whl", hash = "sha256:a61a4622b7ff861f019974f73d8165be1bd9a0855e1cad18ee167acacabeb061"},
+    {file = "orjson-3.10.15-cp310-cp310-musllinux_1_2_aarch64.whl", hash = "sha256:acd271247691574416b3228db667b84775c497b245fa275c6ab90dc1ffbbd2b3"},
+    {file = "orjson-3.10.15-cp310-cp310-musllinux_1_2_armv7l.whl", hash = "sha256:e4759b109c37f635aa5c5cc93a1b26927bfde24b254bcc0e1149a9fada253d2d"},
+    {file = "orjson-3.10.15-cp310-cp310-musllinux_1_2_i686.whl", hash = "sha256:9e992fd5cfb8b9f00bfad2fd7a05a4299db2bbe92e6440d9dd2fab27655b3182"},
+    {file = "orjson-3.10.15-cp310-cp310-musllinux_1_2_x86_64.whl", hash = "sha256:f95fb363d79366af56c3f26b71df40b9a583b07bbaaf5b317407c4d58497852e"},
+    {file = "orjson-3.10.15-cp310-cp310-win32.whl", hash = "sha256:f9875f5fea7492da8ec2444839dcc439b0ef298978f311103d0b7dfd775898ab"},
+    {file = "orjson-3.10.15-cp310-cp310-win_amd64.whl", hash = "sha256:17085a6aa91e1cd70ca8533989a18b5433e15d29c574582f76f821737c8d5806"},
+    {file = "orjson-3.10.15-cp311-cp311-macosx_10_15_x86_64.macosx_11_0_arm64.macosx_10_15_universal2.whl", hash = "sha256:c4cc83960ab79a4031f3119cc4b1a1c627a3dc09df125b27c4201dff2af7eaa6"},
+    {file = "orjson-3.10.15-cp311-cp311-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:ddbeef2481d895ab8be5185f2432c334d6dec1f5d1933a9c83014d188e102cef"},
+    {file = "orjson-3.10.15-cp311-cp311-manylinux_2_17_armv7l.manylinux2014_armv7l.whl", hash = "sha256:9e590a0477b23ecd5b0ac865b1b907b01b3c5535f5e8a8f6ab0e503efb896334"},
+    {file = "orjson-3.10.15-cp311-cp311-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:a6be38bd103d2fd9bdfa31c2720b23b5d47c6796bcb1d1b598e3924441b4298d"},
+    {file = "orjson-3.10.15-cp311-cp311-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:ff4f6edb1578960ed628a3b998fa54d78d9bb3e2eb2cfc5c2a09732431c678d0"},
+    {file = "orjson-3.10.15-cp311-cp311-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:b0482b21d0462eddd67e7fce10b89e0b6ac56570424662b685a0d6fccf581e13"},
+    {file = "orjson-3.10.15-cp311-cp311-manylinux_2_5_i686.manylinux1_i686.whl", hash = "sha256:bb5cc3527036ae3d98b65e37b7986a918955f85332c1ee07f9d3f82f3a6899b5"},
+    {file = "orjson-3.10.15-cp311-cp311-musllinux_1_2_aarch64.whl", hash = "sha256:d569c1c462912acdd119ccbf719cf7102ea2c67dd03b99edcb1a3048651ac96b"},
+    {file = "orjson-3.10.15-cp311-cp311-musllinux_1_2_armv7l.whl", hash = "sha256:1e6d33efab6b71d67f22bf2962895d3dc6f82a6273a965fab762e64fa90dc399"},
+    {file = "orjson-3.10.15-cp311-cp311-musllinux_1_2_i686.whl", hash = "sha256:c33be3795e299f565681d69852ac8c1bc5c84863c0b0030b2b3468843be90388"},
+    {file = "orjson-3.10.15-cp311-cp311-musllinux_1_2_x86_64.whl", hash = "sha256:eea80037b9fae5339b214f59308ef0589fc06dc870578b7cce6d71eb2096764c"},
+    {file = "orjson-3.10.15-cp311-cp311-win32.whl", hash = "sha256:d5ac11b659fd798228a7adba3e37c010e0152b78b1982897020a8e019a94882e"},
+    {file = "orjson-3.10.15-cp311-cp311-win_amd64.whl", hash = "sha256:cf45e0214c593660339ef63e875f32ddd5aa3b4adc15e662cdb80dc49e194f8e"},
+    {file = "orjson-3.10.15-cp312-cp312-macosx_10_15_x86_64.macosx_11_0_arm64.macosx_10_15_universal2.whl", hash = "sha256:9d11c0714fc85bfcf36ada1179400862da3288fc785c30e8297844c867d7505a"},
+    {file = "orjson-3.10.15-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:dba5a1e85d554e3897fa9fe6fbcff2ed32d55008973ec9a2b992bd9a65d2352d"},
+    {file = "orjson-3.10.15-cp312-cp312-manylinux_2_17_armv7l.manylinux2014_armv7l.whl", hash = "sha256:7723ad949a0ea502df656948ddd8b392780a5beaa4c3b5f97e525191b102fff0"},
+    {file = "orjson-3.10.15-cp312-cp312-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:6fd9bc64421e9fe9bd88039e7ce8e58d4fead67ca88e3a4014b143cec7684fd4"},
+    {file = "orjson-3.10.15-cp312-cp312-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:dadba0e7b6594216c214ef7894c4bd5f08d7c0135f4dd0145600be4fbcc16767"},
+    {file = "orjson-3.10.15-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:b48f59114fe318f33bbaee8ebeda696d8ccc94c9e90bc27dbe72153094e26f41"},
+    {file = "orjson-3.10.15-cp312-cp312-manylinux_2_5_i686.manylinux1_i686.whl", hash = "sha256:035fb83585e0f15e076759b6fedaf0abb460d1765b6a36f48018a52858443514"},
+    {file = "orjson-3.10.15-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:d13b7fe322d75bf84464b075eafd8e7dd9eae05649aa2a5354cfa32f43c59f17"},
+    {file = "orjson-3.10.15-cp312-cp312-musllinux_1_2_armv7l.whl", hash = "sha256:7066b74f9f259849629e0d04db6609db4cf5b973248f455ba5d3bd58a4daaa5b"},
+    {file = "orjson-3.10.15-cp312-cp312-musllinux_1_2_i686.whl", hash = "sha256:88dc3f65a026bd3175eb157fea994fca6ac7c4c8579fc5a86fc2114ad05705b7"},
+    {file = "orjson-3.10.15-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:b342567e5465bd99faa559507fe45e33fc76b9fb868a63f1642c6bc0735ad02a"},
+    {file = "orjson-3.10.15-cp312-cp312-win32.whl", hash = "sha256:0a4f27ea5617828e6b58922fdbec67b0aa4bb844e2d363b9244c47fa2180e665"},
+    {file = "orjson-3.10.15-cp312-cp312-win_amd64.whl", hash = "sha256:ef5b87e7aa9545ddadd2309efe6824bd3dd64ac101c15dae0f2f597911d46eaa"},
+    {file = "orjson-3.10.15-cp313-cp313-macosx_10_15_x86_64.macosx_11_0_arm64.macosx_10_15_universal2.whl", hash = "sha256:bae0e6ec2b7ba6895198cd981b7cca95d1487d0147c8ed751e5632ad16f031a6"},
+    {file = "orjson-3.10.15-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:f93ce145b2db1252dd86af37d4165b6faa83072b46e3995ecc95d4b2301b725a"},
+    {file = "orjson-3.10.15-cp313-cp313-manylinux_2_17_armv7l.manylinux2014_armv7l.whl", hash = "sha256:7c203f6f969210128af3acae0ef9ea6aab9782939f45f6fe02d05958fe761ef9"},
+    {file = "orjson-3.10.15-cp313-cp313-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:8918719572d662e18b8af66aef699d8c21072e54b6c82a3f8f6404c1f5ccd5e0"},
+    {file = "orjson-3.10.15-cp313-cp313-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:f71eae9651465dff70aa80db92586ad5b92df46a9373ee55252109bb6b703307"},
+    {file = "orjson-3.10.15-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:e117eb299a35f2634e25ed120c37c641398826c2f5a3d3cc39f5993b96171b9e"},
+    {file = "orjson-3.10.15-cp313-cp313-manylinux_2_5_i686.manylinux1_i686.whl", hash = "sha256:13242f12d295e83c2955756a574ddd6741c81e5b99f2bef8ed8d53e47a01e4b7"},
+    {file = "orjson-3.10.15-cp313-cp313-musllinux_1_2_aarch64.whl", hash = "sha256:7946922ada8f3e0b7b958cc3eb22cfcf6c0df83d1fe5521b4a100103e3fa84c8"},
+    {file = "orjson-3.10.15-cp313-cp313-musllinux_1_2_armv7l.whl", hash = "sha256:b7155eb1623347f0f22c38c9abdd738b287e39b9982e1da227503387b81b34ca"},
+    {file = "orjson-3.10.15-cp313-cp313-musllinux_1_2_i686.whl", hash = "sha256:208beedfa807c922da4e81061dafa9c8489c6328934ca2a562efa707e049e561"},
+    {file = "orjson-3.10.15-cp313-cp313-musllinux_1_2_x86_64.whl", hash = "sha256:eca81f83b1b8c07449e1d6ff7074e82e3fd6777e588f1a6632127f286a968825"},
+    {file = "orjson-3.10.15-cp313-cp313-win32.whl", hash = "sha256:c03cd6eea1bd3b949d0d007c8d57049aa2b39bd49f58b4b2af571a5d3833d890"},
+    {file = "orjson-3.10.15-cp313-cp313-win_amd64.whl", hash = "sha256:fd56a26a04f6ba5fb2045b0acc487a63162a958ed837648c5781e1fe3316cfbf"},
+    {file = "orjson-3.10.15-cp38-cp38-macosx_10_15_x86_64.macosx_11_0_arm64.macosx_10_15_universal2.whl", hash = "sha256:5e8afd6200e12771467a1a44e5ad780614b86abb4b11862ec54861a82d677746"},
+    {file = "orjson-3.10.15-cp38-cp38-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:da9a18c500f19273e9e104cca8c1f0b40a6470bcccfc33afcc088045d0bf5ea6"},
+    {file = "orjson-3.10.15-cp38-cp38-manylinux_2_17_armv7l.manylinux2014_armv7l.whl", hash = "sha256:bb00b7bfbdf5d34a13180e4805d76b4567025da19a197645ca746fc2fb536586"},
+    {file = "orjson-3.10.15-cp38-cp38-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:33aedc3d903378e257047fee506f11e0833146ca3e57a1a1fb0ddb789876c1e1"},
+    {file = "orjson-3.10.15-cp38-cp38-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:dd0099ae6aed5eb1fc84c9eb72b95505a3df4267e6962eb93cdd5af03be71c98"},
+    {file = "orjson-3.10.15-cp38-cp38-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:7c864a80a2d467d7786274fce0e4f93ef2a7ca4ff31f7fc5634225aaa4e9e98c"},
+    {file = "orjson-3.10.15-cp38-cp38-manylinux_2_5_i686.manylinux1_i686.whl", hash = "sha256:c25774c9e88a3e0013d7d1a6c8056926b607a61edd423b50eb5c88fd7f2823ae"},
+    {file = "orjson-3.10.15-cp38-cp38-musllinux_1_2_aarch64.whl", hash = "sha256:e78c211d0074e783d824ce7bb85bf459f93a233eb67a5b5003498232ddfb0e8a"},
+    {file = "orjson-3.10.15-cp38-cp38-musllinux_1_2_armv7l.whl", hash = "sha256:43e17289ffdbbac8f39243916c893d2ae41a2ea1a9cbb060a56a4d75286351ae"},
+    {file = "orjson-3.10.15-cp38-cp38-musllinux_1_2_i686.whl", hash = "sha256:781d54657063f361e89714293c095f506c533582ee40a426cb6489c48a637b81"},
+    {file = "orjson-3.10.15-cp38-cp38-musllinux_1_2_x86_64.whl", hash = "sha256:6875210307d36c94873f553786a808af2788e362bd0cf4c8e66d976791e7b528"},
+    {file = "orjson-3.10.15-cp38-cp38-win32.whl", hash = "sha256:305b38b2b8f8083cc3d618927d7f424349afce5975b316d33075ef0f73576b60"},
+    {file = "orjson-3.10.15-cp38-cp38-win_amd64.whl", hash = "sha256:5dd9ef1639878cc3efffed349543cbf9372bdbd79f478615a1c633fe4e4180d1"},
+    {file = "orjson-3.10.15-cp39-cp39-macosx_10_15_x86_64.macosx_11_0_arm64.macosx_10_15_universal2.whl", hash = "sha256:ffe19f3e8d68111e8644d4f4e267a069ca427926855582ff01fc012496d19969"},
+    {file = "orjson-3.10.15-cp39-cp39-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:d433bf32a363823863a96561a555227c18a522a8217a6f9400f00ddc70139ae2"},
+    {file = "orjson-3.10.15-cp39-cp39-manylinux_2_17_armv7l.manylinux2014_armv7l.whl", hash = "sha256:da03392674f59a95d03fa5fb9fe3a160b0511ad84b7a3914699ea5a1b3a38da2"},
+    {file = "orjson-3.10.15-cp39-cp39-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:3a63bb41559b05360ded9132032239e47983a39b151af1201f07ec9370715c82"},
+    {file = "orjson-3.10.15-cp39-cp39-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:3766ac4702f8f795ff3fa067968e806b4344af257011858cc3d6d8721588b53f"},
+    {file = "orjson-3.10.15-cp39-cp39-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:7a1c73dcc8fadbd7c55802d9aa093b36878d34a3b3222c41052ce6b0fc65f8e8"},
+    {file = "orjson-3.10.15-cp39-cp39-manylinux_2_5_i686.manylinux1_i686.whl", hash = "sha256:b299383825eafe642cbab34be762ccff9fd3408d72726a6b2a4506d410a71ab3"},
+    {file = "orjson-3.10.15-cp39-cp39-musllinux_1_2_aarch64.whl", hash = "sha256:abc7abecdbf67a173ef1316036ebbf54ce400ef2300b4e26a7b843bd446c2480"},
+    {file = "orjson-3.10.15-cp39-cp39-musllinux_1_2_armv7l.whl", hash = "sha256:3614ea508d522a621384c1d6639016a5a2e4f027f3e4a1c93a51867615d28829"},
+    {file = "orjson-3.10.15-cp39-cp39-musllinux_1_2_i686.whl", hash = "sha256:295c70f9dc154307777ba30fe29ff15c1bcc9dfc5c48632f37d20a607e9ba85a"},
+    {file = "orjson-3.10.15-cp39-cp39-musllinux_1_2_x86_64.whl", hash = "sha256:63309e3ff924c62404923c80b9e2048c1f74ba4b615e7584584389ada50ed428"},
+    {file = "orjson-3.10.15-cp39-cp39-win32.whl", hash = "sha256:a2f708c62d026fb5340788ba94a55c23df4e1869fec74be455e0b2f5363b8507"},
+    {file = "orjson-3.10.15-cp39-cp39-win_amd64.whl", hash = "sha256:efcf6c735c3d22ef60c4aa27a5238f1a477df85e9b15f2142f9d669beb2d13fd"},
+    {file = "orjson-3.10.15.tar.gz", hash = "sha256:05ca7fe452a2e9d8d9d706a2984c95b9c2ebc5db417ce0b7a49b91d50642a23e"},
+]
+
+[[package]]
+name = "packaging"
+version = "24.2"
+description = "Core utilities for Python packages"
+optional = false
+python-versions = ">=3.8"
+groups = ["main", "dev"]
+files = [
+    {file = "packaging-24.2-py3-none-any.whl", hash = "sha256:09abb1bccd265c01f4a3aa3f7a7db064b36514d2cba19a2f694fe6150451a759"},
+    {file = "packaging-24.2.tar.gz", hash = "sha256:c228a6dc5e932d346bc5739379109d49e8853dd8223571c7c5b55260edc0b97f"},
+]
+
+[[package]]
+name = "paramiko"
+version = "3.5.0"
+description = "SSH2 protocol library"
+optional = false
+python-versions = ">=3.6"
+groups = ["main"]
+files = [
+    {file = "paramiko-3.5.0-py3-none-any.whl", hash = "sha256:1fedf06b085359051cd7d0d270cebe19e755a8a921cc2ddbfa647fb0cd7d68f9"},
+    {file = "paramiko-3.5.0.tar.gz", hash = "sha256:ad11e540da4f55cedda52931f1a3f812a8238a7af7f62a60de538cd80bb28124"},
+]
+
+[package.dependencies]
+bcrypt = ">=3.2"
+cryptography = ">=3.3"
+pynacl = ">=1.5"
+
+[package.extras]
+all = ["gssapi (>=1.4.1) ; platform_system != \"Windows\"", "invoke (>=2.0)", "pyasn1 (>=0.1.7)", "pywin32 (>=2.1.8) ; platform_system == \"Windows\""]
+gssapi = ["gssapi (>=1.4.1) ; platform_system != \"Windows\"", "pyasn1 (>=0.1.7)", "pywin32 (>=2.1.8) ; platform_system == \"Windows\""]
+invoke = ["invoke (>=2.0)"]
+
+[[package]]
+name = "pathspec"
+version = "0.12.1"
+description = "Utility library for gitignore style pattern matching of file paths."
+optional = false
+python-versions = ">=3.8"
+groups = ["dev"]
+files = [
+    {file = "pathspec-0.12.1-py3-none-any.whl", hash = "sha256:a0d503e138a4c123b27490a4f7beda6a01c6f288df0e4a8b79c7eb0dc7b4cc08"},
+    {file = "pathspec-0.12.1.tar.gz", hash = "sha256:a482d51503a1ab33b1c67a6c3813a26953dbdc71c31dacaef9a838c4e29f5712"},
+]
+
+[[package]]
+name = "pcodedmp"
+version = "1.2.6"
+description = "A VBA p-code disassembler"
+optional = false
+python-versions = "*"
+groups = ["main"]
+files = [
+    {file = "pcodedmp-1.2.6-py2.py3-none-any.whl", hash = "sha256:4441f7c0ab4cbda27bd4668db3b14f36261d86e5059ce06c0828602cbe1c4278"},
+    {file = "pcodedmp-1.2.6.tar.gz", hash = "sha256:025f8c809a126f45a082ffa820893e6a8d990d9d7ddb68694b5a9f0a6dbcd955"},
+]
+
+[package.dependencies]
+oletools = ">=0.54"
+win-unicode-console = {version = "*", markers = "platform_system == \"Windows\" and platform_python_implementation != \"PyPy\""}
+
+[[package]]
+name = "pebble"
+version = "5.1.0"
+description = "Threading and multiprocessing eye-candy."
+optional = false
+python-versions = ">=3.8"
+groups = ["main"]
+files = [
+    {file = "Pebble-5.1.0-py3-none-any.whl", hash = "sha256:530a398299ecd3a4ed1baf2e4b8045d8280b1e665560b0b409f8d8e58db60111"},
+    {file = "Pebble-5.1.0.tar.gz", hash = "sha256:5c30376f1827b21ecec4126ff90e7f22ad5501cac1ff2b32c86ff2601681f932"},
+]
+
+[[package]]
+name = "peepdf-3"
+version = "5.0.0"
+description = "A Python 3 tool to explore, analyse, and disassemble PDF files"
+optional = false
+python-versions = ">=3.9"
+groups = ["main"]
+files = [
+    {file = "peepdf_3-5.0.0-py3-none-any.whl", hash = "sha256:2c9220c39c1ffc7d1db4268874d5c68329e9f9f331643b0bb1e6e84798439bd8"},
+    {file = "peepdf_3-5.0.0.tar.gz", hash = "sha256:1c6dbb873be22633535bb7a0edfcc005781837869bb5d5b99c9a36591d1e9e95"},
+]
+
+[package.dependencies]
+colorama = "*"
+jsbeautifier = "*"
+lxml = "*"
+Pillow = "*"
+prettytable = ">=3.12.0"
+pypdf = "*"
+pythonaes = "*"
+requests = "*"
+STPyV8 = "*"
+
+[[package]]
+name = "pefile"
+version = "2024.8.26"
+description = "Python PE parsing module"
+optional = false
+python-versions = ">=3.6.0"
+groups = ["main"]
+files = [
+    {file = "pefile-2024.8.26-py3-none-any.whl", hash = "sha256:76f8b485dcd3b1bb8166f1128d395fa3d87af26360c2358fb75b80019b957c6f"},
+    {file = "pefile-2024.8.26.tar.gz", hash = "sha256:3ff6c5d8b43e8c37bb6e6dd5085658d658a7a0bdcd20b6a07b1fcfc1c4e9d632"},
+]
+
+[[package]]
+name = "pillow"
+version = "11.1.0"
+description = "Python Imaging Library (Fork)"
+optional = false
+python-versions = ">=3.9"
+groups = ["main"]
+files = [
+    {file = "pillow-11.1.0-cp310-cp310-macosx_10_10_x86_64.whl", hash = "sha256:e1abe69aca89514737465752b4bcaf8016de61b3be1397a8fc260ba33321b3a8"},
+    {file = "pillow-11.1.0-cp310-cp310-macosx_11_0_arm64.whl", hash = "sha256:c640e5a06869c75994624551f45e5506e4256562ead981cce820d5ab39ae2192"},
+    {file = "pillow-11.1.0-cp310-cp310-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:a07dba04c5e22824816b2615ad7a7484432d7f540e6fa86af60d2de57b0fcee2"},
+    {file = "pillow-11.1.0-cp310-cp310-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:e267b0ed063341f3e60acd25c05200df4193e15a4a5807075cd71225a2386e26"},
+    {file = "pillow-11.1.0-cp310-cp310-manylinux_2_28_aarch64.whl", hash = "sha256:bd165131fd51697e22421d0e467997ad31621b74bfc0b75956608cb2906dda07"},
+    {file = "pillow-11.1.0-cp310-cp310-manylinux_2_28_x86_64.whl", hash = "sha256:abc56501c3fd148d60659aae0af6ddc149660469082859fa7b066a298bde9482"},
+    {file = "pillow-11.1.0-cp310-cp310-musllinux_1_2_aarch64.whl", hash = "sha256:54ce1c9a16a9561b6d6d8cb30089ab1e5eb66918cb47d457bd996ef34182922e"},
+    {file = "pillow-11.1.0-cp310-cp310-musllinux_1_2_x86_64.whl", hash = "sha256:73ddde795ee9b06257dac5ad42fcb07f3b9b813f8c1f7f870f402f4dc54b5269"},
+    {file = "pillow-11.1.0-cp310-cp310-win32.whl", hash = "sha256:3a5fe20a7b66e8135d7fd617b13272626a28278d0e578c98720d9ba4b2439d49"},
+    {file = "pillow-11.1.0-cp310-cp310-win_amd64.whl", hash = "sha256:b6123aa4a59d75f06e9dd3dac5bf8bc9aa383121bb3dd9a7a612e05eabc9961a"},
+    {file = "pillow-11.1.0-cp310-cp310-win_arm64.whl", hash = "sha256:a76da0a31da6fcae4210aa94fd779c65c75786bc9af06289cd1c184451ef7a65"},
+    {file = "pillow-11.1.0-cp311-cp311-macosx_10_10_x86_64.whl", hash = "sha256:e06695e0326d05b06833b40b7ef477e475d0b1ba3a6d27da1bb48c23209bf457"},
+    {file = "pillow-11.1.0-cp311-cp311-macosx_11_0_arm64.whl", hash = "sha256:96f82000e12f23e4f29346e42702b6ed9a2f2fea34a740dd5ffffcc8c539eb35"},
+    {file = "pillow-11.1.0-cp311-cp311-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:a3cd561ded2cf2bbae44d4605837221b987c216cff94f49dfeed63488bb228d2"},
+    {file = "pillow-11.1.0-cp311-cp311-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:f189805c8be5ca5add39e6f899e6ce2ed824e65fb45f3c28cb2841911da19070"},
+    {file = "pillow-11.1.0-cp311-cp311-manylinux_2_28_aarch64.whl", hash = "sha256:dd0052e9db3474df30433f83a71b9b23bd9e4ef1de13d92df21a52c0303b8ab6"},
+    {file = "pillow-11.1.0-cp311-cp311-manylinux_2_28_x86_64.whl", hash = "sha256:837060a8599b8f5d402e97197d4924f05a2e0d68756998345c829c33186217b1"},
+    {file = "pillow-11.1.0-cp311-cp311-musllinux_1_2_aarch64.whl", hash = "sha256:aa8dd43daa836b9a8128dbe7d923423e5ad86f50a7a14dc688194b7be5c0dea2"},
+    {file = "pillow-11.1.0-cp311-cp311-musllinux_1_2_x86_64.whl", hash = "sha256:0a2f91f8a8b367e7a57c6e91cd25af510168091fb89ec5146003e424e1558a96"},
+    {file = "pillow-11.1.0-cp311-cp311-win32.whl", hash = "sha256:c12fc111ef090845de2bb15009372175d76ac99969bdf31e2ce9b42e4b8cd88f"},
+    {file = "pillow-11.1.0-cp311-cp311-win_amd64.whl", hash = "sha256:fbd43429d0d7ed6533b25fc993861b8fd512c42d04514a0dd6337fb3ccf22761"},
+    {file = "pillow-11.1.0-cp311-cp311-win_arm64.whl", hash = "sha256:f7955ecf5609dee9442cbface754f2c6e541d9e6eda87fad7f7a989b0bdb9d71"},
+    {file = "pillow-11.1.0-cp312-cp312-macosx_10_13_x86_64.whl", hash = "sha256:2062ffb1d36544d42fcaa277b069c88b01bb7298f4efa06731a7fd6cc290b81a"},
+    {file = "pillow-11.1.0-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:a85b653980faad27e88b141348707ceeef8a1186f75ecc600c395dcac19f385b"},
+    {file = "pillow-11.1.0-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:9409c080586d1f683df3f184f20e36fb647f2e0bc3988094d4fd8c9f4eb1b3b3"},
+    {file = "pillow-11.1.0-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:7fdadc077553621911f27ce206ffcbec7d3f8d7b50e0da39f10997e8e2bb7f6a"},
+    {file = "pillow-11.1.0-cp312-cp312-manylinux_2_28_aarch64.whl", hash = "sha256:93a18841d09bcdd774dcdc308e4537e1f867b3dec059c131fde0327899734aa1"},
+    {file = "pillow-11.1.0-cp312-cp312-manylinux_2_28_x86_64.whl", hash = "sha256:9aa9aeddeed452b2f616ff5507459e7bab436916ccb10961c4a382cd3e03f47f"},
+    {file = "pillow-11.1.0-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:3cdcdb0b896e981678eee140d882b70092dac83ac1cdf6b3a60e2216a73f2b91"},
+    {file = "pillow-11.1.0-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:36ba10b9cb413e7c7dfa3e189aba252deee0602c86c309799da5a74009ac7a1c"},
+    {file = "pillow-11.1.0-cp312-cp312-win32.whl", hash = "sha256:cfd5cd998c2e36a862d0e27b2df63237e67273f2fc78f47445b14e73a810e7e6"},
+    {file = "pillow-11.1.0-cp312-cp312-win_amd64.whl", hash = "sha256:a697cd8ba0383bba3d2d3ada02b34ed268cb548b369943cd349007730c92bddf"},
+    {file = "pillow-11.1.0-cp312-cp312-win_arm64.whl", hash = "sha256:4dd43a78897793f60766563969442020e90eb7847463eca901e41ba186a7d4a5"},
+    {file = "pillow-11.1.0-cp313-cp313-macosx_10_13_x86_64.whl", hash = "sha256:ae98e14432d458fc3de11a77ccb3ae65ddce70f730e7c76140653048c71bfcbc"},
+    {file = "pillow-11.1.0-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:cc1331b6d5a6e144aeb5e626f4375f5b7ae9934ba620c0ac6b3e43d5e683a0f0"},
+    {file = "pillow-11.1.0-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:758e9d4ef15d3560214cddbc97b8ef3ef86ce04d62ddac17ad39ba87e89bd3b1"},
+    {file = "pillow-11.1.0-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:b523466b1a31d0dcef7c5be1f20b942919b62fd6e9a9be199d035509cbefc0ec"},
+    {file = "pillow-11.1.0-cp313-cp313-manylinux_2_28_aarch64.whl", hash = "sha256:9044b5e4f7083f209c4e35aa5dd54b1dd5b112b108648f5c902ad586d4f945c5"},
+    {file = "pillow-11.1.0-cp313-cp313-manylinux_2_28_x86_64.whl", hash = "sha256:3764d53e09cdedd91bee65c2527815d315c6b90d7b8b79759cc48d7bf5d4f114"},
+    {file = "pillow-11.1.0-cp313-cp313-musllinux_1_2_aarch64.whl", hash = "sha256:31eba6bbdd27dde97b0174ddf0297d7a9c3a507a8a1480e1e60ef914fe23d352"},
+    {file = "pillow-11.1.0-cp313-cp313-musllinux_1_2_x86_64.whl", hash = "sha256:b5d658fbd9f0d6eea113aea286b21d3cd4d3fd978157cbf2447a6035916506d3"},
+    {file = "pillow-11.1.0-cp313-cp313-win32.whl", hash = "sha256:f86d3a7a9af5d826744fabf4afd15b9dfef44fe69a98541f666f66fbb8d3fef9"},
+    {file = "pillow-11.1.0-cp313-cp313-win_amd64.whl", hash = "sha256:593c5fd6be85da83656b93ffcccc2312d2d149d251e98588b14fbc288fd8909c"},
+    {file = "pillow-11.1.0-cp313-cp313-win_arm64.whl", hash = "sha256:11633d58b6ee5733bde153a8dafd25e505ea3d32e261accd388827ee987baf65"},
+    {file = "pillow-11.1.0-cp313-cp313t-macosx_10_13_x86_64.whl", hash = "sha256:70ca5ef3b3b1c4a0812b5c63c57c23b63e53bc38e758b37a951e5bc466449861"},
+    {file = "pillow-11.1.0-cp313-cp313t-macosx_11_0_arm64.whl", hash = "sha256:8000376f139d4d38d6851eb149b321a52bb8893a88dae8ee7d95840431977081"},
+    {file = "pillow-11.1.0-cp313-cp313t-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:9ee85f0696a17dd28fbcfceb59f9510aa71934b483d1f5601d1030c3c8304f3c"},
+    {file = "pillow-11.1.0-cp313-cp313t-manylinux_2_28_x86_64.whl", hash = "sha256:dd0e081319328928531df7a0e63621caf67652c8464303fd102141b785ef9547"},
+    {file = "pillow-11.1.0-cp313-cp313t-musllinux_1_2_x86_64.whl", hash = "sha256:e63e4e5081de46517099dc30abe418122f54531a6ae2ebc8680bcd7096860eab"},
+    {file = "pillow-11.1.0-cp313-cp313t-win32.whl", hash = "sha256:dda60aa465b861324e65a78c9f5cf0f4bc713e4309f83bc387be158b077963d9"},
+    {file = "pillow-11.1.0-cp313-cp313t-win_amd64.whl", hash = "sha256:ad5db5781c774ab9a9b2c4302bbf0c1014960a0a7be63278d13ae6fdf88126fe"},
+    {file = "pillow-11.1.0-cp313-cp313t-win_arm64.whl", hash = "sha256:67cd427c68926108778a9005f2a04adbd5e67c442ed21d95389fe1d595458756"},
+    {file = "pillow-11.1.0-cp39-cp39-macosx_10_10_x86_64.whl", hash = "sha256:bf902d7413c82a1bfa08b06a070876132a5ae6b2388e2712aab3a7cbc02205c6"},
+    {file = "pillow-11.1.0-cp39-cp39-macosx_11_0_arm64.whl", hash = "sha256:c1eec9d950b6fe688edee07138993e54ee4ae634c51443cfb7c1e7613322718e"},
+    {file = "pillow-11.1.0-cp39-cp39-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:8e275ee4cb11c262bd108ab2081f750db2a1c0b8c12c1897f27b160c8bd57bbc"},
+    {file = "pillow-11.1.0-cp39-cp39-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:4db853948ce4e718f2fc775b75c37ba2efb6aaea41a1a5fc57f0af59eee774b2"},
+    {file = "pillow-11.1.0-cp39-cp39-manylinux_2_28_aarch64.whl", hash = "sha256:ab8a209b8485d3db694fa97a896d96dd6533d63c22829043fd9de627060beade"},
+    {file = "pillow-11.1.0-cp39-cp39-manylinux_2_28_x86_64.whl", hash = "sha256:54251ef02a2309b5eec99d151ebf5c9904b77976c8abdcbce7891ed22df53884"},
+    {file = "pillow-11.1.0-cp39-cp39-musllinux_1_2_aarch64.whl", hash = "sha256:5bb94705aea800051a743aa4874bb1397d4695fb0583ba5e425ee0328757f196"},
+    {file = "pillow-11.1.0-cp39-cp39-musllinux_1_2_x86_64.whl", hash = "sha256:89dbdb3e6e9594d512780a5a1c42801879628b38e3efc7038094430844e271d8"},
+    {file = "pillow-11.1.0-cp39-cp39-win32.whl", hash = "sha256:e5449ca63da169a2e6068dd0e2fcc8d91f9558aba89ff6d02121ca8ab11e79e5"},
+    {file = "pillow-11.1.0-cp39-cp39-win_amd64.whl", hash = "sha256:3362c6ca227e65c54bf71a5f88b3d4565ff1bcbc63ae72c34b07bbb1cc59a43f"},
+    {file = "pillow-11.1.0-cp39-cp39-win_arm64.whl", hash = "sha256:b20be51b37a75cc54c2c55def3fa2c65bb94ba859dde241cd0a4fd302de5ae0a"},
+    {file = "pillow-11.1.0-pp310-pypy310_pp73-macosx_10_15_x86_64.whl", hash = "sha256:8c730dc3a83e5ac137fbc92dfcfe1511ce3b2b5d7578315b63dbbb76f7f51d90"},
+    {file = "pillow-11.1.0-pp310-pypy310_pp73-macosx_11_0_arm64.whl", hash = "sha256:7d33d2fae0e8b170b6a6c57400e077412240f6f5bb2a342cf1ee512a787942bb"},
+    {file = "pillow-11.1.0-pp310-pypy310_pp73-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:a8d65b38173085f24bc07f8b6c505cbb7418009fa1a1fcb111b1f4961814a442"},
+    {file = "pillow-11.1.0-pp310-pypy310_pp73-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:015c6e863faa4779251436db398ae75051469f7c903b043a48f078e437656f83"},
+    {file = "pillow-11.1.0-pp310-pypy310_pp73-manylinux_2_28_aarch64.whl", hash = "sha256:d44ff19eea13ae4acdaaab0179fa68c0c6f2f45d66a4d8ec1eda7d6cecbcc15f"},
+    {file = "pillow-11.1.0-pp310-pypy310_pp73-manylinux_2_28_x86_64.whl", hash = "sha256:d3d8da4a631471dfaf94c10c85f5277b1f8e42ac42bade1ac67da4b4a7359b73"},
+    {file = "pillow-11.1.0-pp310-pypy310_pp73-win_amd64.whl", hash = "sha256:4637b88343166249fe8aa94e7c4a62a180c4b3898283bb5d3d2fd5fe10d8e4e0"},
+    {file = "pillow-11.1.0.tar.gz", hash = "sha256:368da70808b36d73b4b390a8ffac11069f8a5c85f29eff1f1b01bcf3ef5b2a20"},
+]
+
+[package.extras]
+docs = ["furo", "olefile", "sphinx (>=8.1)", "sphinx-copybutton", "sphinx-inline-tabs", "sphinxext-opengraph"]
+fpx = ["olefile"]
+mic = ["olefile"]
+tests = ["check-manifest", "coverage (>=7.4.2)", "defusedxml", "markdown2", "olefile", "packaging", "pyroma", "pytest", "pytest-cov", "pytest-timeout", "trove-classifiers (>=2024.10.12)"]
+typing = ["typing-extensions ; python_version < \"3.10\""]
+xmp = ["defusedxml"]
+
+[[package]]
+name = "platformdirs"
+version = "4.3.6"
+description = "A small Python package for determining appropriate platform-specific dirs, e.g. a `user data dir`."
+optional = false
+python-versions = ">=3.8"
+groups = ["dev"]
+files = [
+    {file = "platformdirs-4.3.6-py3-none-any.whl", hash = "sha256:73e575e1408ab8103900836b97580d5307456908a03e92031bab39e4554cc3fb"},
+    {file = "platformdirs-4.3.6.tar.gz", hash = "sha256:357fb2acbc885b0419afd3ce3ed34564c13c9b95c89360cd9563f73aa5e2b907"},
+]
+
+[package.extras]
+docs = ["furo (>=2024.8.6)", "proselint (>=0.14)", "sphinx (>=8.0.2)", "sphinx-autodoc-typehints (>=2.4)"]
+test = ["appdirs (==1.4.4)", "covdefaults (>=2.3)", "pytest (>=8.3.2)", "pytest-cov (>=5)", "pytest-mock (>=3.14)"]
+type = ["mypy (>=1.11.2)"]
+
+[[package]]
+name = "pluggy"
+version = "1.5.0"
+description = "plugin and hook calling mechanisms for python"
+optional = false
+python-versions = ">=3.8"
+groups = ["dev"]
+files = [
+    {file = "pluggy-1.5.0-py3-none-any.whl", hash = "sha256:44e1ad92c8ca002de6377e165f3e0f1be63266ab4d554740532335b9d75ea669"},
+    {file = "pluggy-1.5.0.tar.gz", hash = "sha256:2cffa88e94fdc978c4c574f15f9e59b7f4201d439195c3715ca9e2486f1d0cf1"},
+]
+
+[package.extras]
+dev = ["pre-commit", "tox"]
+testing = ["pytest", "pytest-benchmark"]
+
+[[package]]
+name = "pre-commit"
+version = "2.21.0"
+description = "A framework for managing and maintaining multi-language pre-commit hooks."
+optional = false
+python-versions = ">=3.7"
+groups = ["dev"]
+files = [
+    {file = "pre_commit-2.21.0-py2.py3-none-any.whl", hash = "sha256:e2f91727039fc39a92f58a588a25b87f936de6567eed4f0e673e0507edc75bad"},
+    {file = "pre_commit-2.21.0.tar.gz", hash = "sha256:31ef31af7e474a8d8995027fefdfcf509b5c913ff31f2015b4ec4beb26a6f658"},
+]
+
+[package.dependencies]
+cfgv = ">=2.0.0"
+identify = ">=1.0.0"
+nodeenv = ">=0.11.1"
+pyyaml = ">=5.1"
+virtualenv = ">=20.10.0"
+
+[[package]]
+name = "prettytable"
+version = "3.14.0"
+description = "A simple Python library for easily displaying tabular data in a visually appealing ASCII table format"
+optional = false
+python-versions = ">=3.9"
+groups = ["main"]
+files = [
+    {file = "prettytable-3.14.0-py3-none-any.whl", hash = "sha256:61d5c68f04a94acc73c7aac64f0f380f5bed4d2959d59edc6e4cbb7a0e7b55c4"},
+    {file = "prettytable-3.14.0.tar.gz", hash = "sha256:b804b8d51db23959b96b329094debdbbdf10c8c3aa75958c5988cfd7f78501dd"},
+]
+
+[package.dependencies]
+wcwidth = "*"
+
+[package.extras]
+tests = ["pytest", "pytest-cov", "pytest-lazy-fixtures"]
+
+[[package]]
+name = "protobuf"
+version = "5.29.3"
+description = ""
+optional = false
+python-versions = ">=3.8"
+groups = ["main"]
+files = [
+    {file = "protobuf-5.29.3-cp310-abi3-win32.whl", hash = "sha256:3ea51771449e1035f26069c4c7fd51fba990d07bc55ba80701c78f886bf9c888"},
+    {file = "protobuf-5.29.3-cp310-abi3-win_amd64.whl", hash = "sha256:a4fa6f80816a9a0678429e84973f2f98cbc218cca434abe8db2ad0bffc98503a"},
+    {file = "protobuf-5.29.3-cp38-abi3-macosx_10_9_universal2.whl", hash = "sha256:a8434404bbf139aa9e1300dbf989667a83d42ddda9153d8ab76e0d5dcaca484e"},
+    {file = "protobuf-5.29.3-cp38-abi3-manylinux2014_aarch64.whl", hash = "sha256:daaf63f70f25e8689c072cfad4334ca0ac1d1e05a92fc15c54eb9cf23c3efd84"},
+    {file = "protobuf-5.29.3-cp38-abi3-manylinux2014_x86_64.whl", hash = "sha256:c027e08a08be10b67c06bf2370b99c811c466398c357e615ca88c91c07f0910f"},
+    {file = "protobuf-5.29.3-cp38-cp38-win32.whl", hash = "sha256:84a57163a0ccef3f96e4b6a20516cedcf5bb3a95a657131c5c3ac62200d23252"},
+    {file = "protobuf-5.29.3-cp38-cp38-win_amd64.whl", hash = "sha256:b89c115d877892a512f79a8114564fb435943b59067615894c3b13cd3e1fa107"},
+    {file = "protobuf-5.29.3-cp39-cp39-win32.whl", hash = "sha256:0eb32bfa5219fc8d4111803e9a690658aa2e6366384fd0851064b963b6d1f2a7"},
+    {file = "protobuf-5.29.3-cp39-cp39-win_amd64.whl", hash = "sha256:6ce8cc3389a20693bfde6c6562e03474c40851b44975c9b2bf6df7d8c4f864da"},
+    {file = "protobuf-5.29.3-py3-none-any.whl", hash = "sha256:0a18ed4a24198528f2333802eb075e59dea9d679ab7a6c5efb017a59004d849f"},
+    {file = "protobuf-5.29.3.tar.gz", hash = "sha256:5da0f41edaf117bde316404bad1a486cb4ededf8e4a54891296f648e8e076620"},
+]
+
+[[package]]
+name = "psutil"
+version = "6.1.1"
+description = "Cross-platform lib for process and system monitoring in Python."
+optional = false
+python-versions = "!=3.0.*,!=3.1.*,!=3.2.*,!=3.3.*,!=3.4.*,!=3.5.*,>=2.7"
+groups = ["main"]
+files = [
+    {file = "psutil-6.1.1-cp27-cp27m-macosx_10_9_x86_64.whl", hash = "sha256:9ccc4316f24409159897799b83004cb1e24f9819b0dcf9c0b68bdcb6cefee6a8"},
+    {file = "psutil-6.1.1-cp27-cp27m-manylinux2010_i686.whl", hash = "sha256:ca9609c77ea3b8481ab005da74ed894035936223422dc591d6772b147421f777"},
+    {file = "psutil-6.1.1-cp27-cp27m-manylinux2010_x86_64.whl", hash = "sha256:8df0178ba8a9e5bc84fed9cfa61d54601b371fbec5c8eebad27575f1e105c0d4"},
+    {file = "psutil-6.1.1-cp27-cp27mu-manylinux2010_i686.whl", hash = "sha256:1924e659d6c19c647e763e78670a05dbb7feaf44a0e9c94bf9e14dfc6ba50468"},
+    {file = "psutil-6.1.1-cp27-cp27mu-manylinux2010_x86_64.whl", hash = "sha256:018aeae2af92d943fdf1da6b58665124897cfc94faa2ca92098838f83e1b1bca"},
+    {file = "psutil-6.1.1-cp27-none-win32.whl", hash = "sha256:6d4281f5bbca041e2292be3380ec56a9413b790579b8e593b1784499d0005dac"},
+    {file = "psutil-6.1.1-cp27-none-win_amd64.whl", hash = "sha256:c777eb75bb33c47377c9af68f30e9f11bc78e0f07fbf907be4a5d70b2fe5f030"},
+    {file = "psutil-6.1.1-cp36-abi3-macosx_10_9_x86_64.whl", hash = "sha256:fc0ed7fe2231a444fc219b9c42d0376e0a9a1a72f16c5cfa0f68d19f1a0663e8"},
+    {file = "psutil-6.1.1-cp36-abi3-macosx_11_0_arm64.whl", hash = "sha256:0bdd4eab935276290ad3cb718e9809412895ca6b5b334f5a9111ee6d9aff9377"},
+    {file = "psutil-6.1.1-cp36-abi3-manylinux_2_12_i686.manylinux2010_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:b6e06c20c05fe95a3d7302d74e7097756d4ba1247975ad6905441ae1b5b66003"},
+    {file = "psutil-6.1.1-cp36-abi3-manylinux_2_12_x86_64.manylinux2010_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:97f7cb9921fbec4904f522d972f0c0e1f4fabbdd4e0287813b21215074a0f160"},
+    {file = "psutil-6.1.1-cp36-abi3-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:33431e84fee02bc84ea36d9e2c4a6d395d479c9dd9bba2376c1f6ee8f3a4e0b3"},
+    {file = "psutil-6.1.1-cp36-cp36m-win32.whl", hash = "sha256:384636b1a64b47814437d1173be1427a7c83681b17a450bfc309a1953e329603"},
+    {file = "psutil-6.1.1-cp36-cp36m-win_amd64.whl", hash = "sha256:8be07491f6ebe1a693f17d4f11e69d0dc1811fa082736500f649f79df7735303"},
+    {file = "psutil-6.1.1-cp37-abi3-win32.whl", hash = "sha256:eaa912e0b11848c4d9279a93d7e2783df352b082f40111e078388701fd479e53"},
+    {file = "psutil-6.1.1-cp37-abi3-win_amd64.whl", hash = "sha256:f35cfccb065fff93529d2afb4a2e89e363fe63ca1e4a5da22b603a85833c2649"},
+    {file = "psutil-6.1.1.tar.gz", hash = "sha256:cf8496728c18f2d0b45198f06895be52f36611711746b7f30c464b422b50e2f5"},
+]
+
+[package.extras]
+dev = ["abi3audit", "black", "check-manifest", "coverage", "packaging", "pylint", "pyperf", "pypinfo", "pytest-cov", "requests", "rstcheck", "ruff", "sphinx", "sphinx_rtd_theme", "toml-sort", "twine", "virtualenv", "vulture", "wheel"]
+test = ["pytest", "pytest-xdist", "setuptools"]
+
+[[package]]
+name = "psycopg2-binary"
+version = "2.9.10"
+description = "psycopg2 - Python-PostgreSQL Database Adapter"
+optional = false
+python-versions = ">=3.8"
+groups = ["main"]
+files = [
+    {file = "psycopg2-binary-2.9.10.tar.gz", hash = "sha256:4b3df0e6990aa98acda57d983942eff13d824135fe2250e6522edaa782a06de2"},
+    {file = "psycopg2_binary-2.9.10-cp310-cp310-macosx_12_0_x86_64.whl", hash = "sha256:0ea8e3d0ae83564f2fc554955d327fa081d065c8ca5cc6d2abb643e2c9c1200f"},
+    {file = "psycopg2_binary-2.9.10-cp310-cp310-macosx_14_0_arm64.whl", hash = "sha256:3e9c76f0ac6f92ecfc79516a8034a544926430f7b080ec5a0537bca389ee0906"},
+    {file = "psycopg2_binary-2.9.10-cp310-cp310-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:2ad26b467a405c798aaa1458ba09d7e2b6e5f96b1ce0ac15d82fd9f95dc38a92"},
+    {file = "psycopg2_binary-2.9.10-cp310-cp310-manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:270934a475a0e4b6925b5f804e3809dd5f90f8613621d062848dd82f9cd62007"},
+    {file = "psycopg2_binary-2.9.10-cp310-cp310-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:48b338f08d93e7be4ab2b5f1dbe69dc5e9ef07170fe1f86514422076d9c010d0"},
+    {file = "psycopg2_binary-2.9.10-cp310-cp310-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:7f4152f8f76d2023aac16285576a9ecd2b11a9895373a1f10fd9db54b3ff06b4"},
+    {file = "psycopg2_binary-2.9.10-cp310-cp310-musllinux_1_2_aarch64.whl", hash = "sha256:32581b3020c72d7a421009ee1c6bf4a131ef5f0a968fab2e2de0c9d2bb4577f1"},
+    {file = "psycopg2_binary-2.9.10-cp310-cp310-musllinux_1_2_i686.whl", hash = "sha256:2ce3e21dc3437b1d960521eca599d57408a695a0d3c26797ea0f72e834c7ffe5"},
+    {file = "psycopg2_binary-2.9.10-cp310-cp310-musllinux_1_2_ppc64le.whl", hash = "sha256:e984839e75e0b60cfe75e351db53d6db750b00de45644c5d1f7ee5d1f34a1ce5"},
+    {file = "psycopg2_binary-2.9.10-cp310-cp310-musllinux_1_2_x86_64.whl", hash = "sha256:3c4745a90b78e51d9ba06e2088a2fe0c693ae19cc8cb051ccda44e8df8a6eb53"},
+    {file = "psycopg2_binary-2.9.10-cp310-cp310-win32.whl", hash = "sha256:e5720a5d25e3b99cd0dc5c8a440570469ff82659bb09431c1439b92caf184d3b"},
+    {file = "psycopg2_binary-2.9.10-cp310-cp310-win_amd64.whl", hash = "sha256:3c18f74eb4386bf35e92ab2354a12c17e5eb4d9798e4c0ad3a00783eae7cd9f1"},
+    {file = "psycopg2_binary-2.9.10-cp311-cp311-macosx_12_0_x86_64.whl", hash = "sha256:04392983d0bb89a8717772a193cfaac58871321e3ec69514e1c4e0d4957b5aff"},
+    {file = "psycopg2_binary-2.9.10-cp311-cp311-macosx_14_0_arm64.whl", hash = "sha256:1a6784f0ce3fec4edc64e985865c17778514325074adf5ad8f80636cd029ef7c"},
+    {file = "psycopg2_binary-2.9.10-cp311-cp311-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:b5f86c56eeb91dc3135b3fd8a95dc7ae14c538a2f3ad77a19645cf55bab1799c"},
+    {file = "psycopg2_binary-2.9.10-cp311-cp311-manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:2b3d2491d4d78b6b14f76881905c7a8a8abcf974aad4a8a0b065273a0ed7a2cb"},
+    {file = "psycopg2_binary-2.9.10-cp311-cp311-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:2286791ececda3a723d1910441c793be44625d86d1a4e79942751197f4d30341"},
+    {file = "psycopg2_binary-2.9.10-cp311-cp311-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:512d29bb12608891e349af6a0cccedce51677725a921c07dba6342beaf576f9a"},
+    {file = "psycopg2_binary-2.9.10-cp311-cp311-musllinux_1_2_aarch64.whl", hash = "sha256:5a507320c58903967ef7384355a4da7ff3f28132d679aeb23572753cbf2ec10b"},
+    {file = "psycopg2_binary-2.9.10-cp311-cp311-musllinux_1_2_i686.whl", hash = "sha256:6d4fa1079cab9018f4d0bd2db307beaa612b0d13ba73b5c6304b9fe2fb441ff7"},
+    {file = "psycopg2_binary-2.9.10-cp311-cp311-musllinux_1_2_ppc64le.whl", hash = "sha256:851485a42dbb0bdc1edcdabdb8557c09c9655dfa2ca0460ff210522e073e319e"},
+    {file = "psycopg2_binary-2.9.10-cp311-cp311-musllinux_1_2_x86_64.whl", hash = "sha256:35958ec9e46432d9076286dda67942ed6d968b9c3a6a2fd62b48939d1d78bf68"},
+    {file = "psycopg2_binary-2.9.10-cp311-cp311-win32.whl", hash = "sha256:ecced182e935529727401b24d76634a357c71c9275b356efafd8a2a91ec07392"},
+    {file = "psycopg2_binary-2.9.10-cp311-cp311-win_amd64.whl", hash = "sha256:ee0e8c683a7ff25d23b55b11161c2663d4b099770f6085ff0a20d4505778d6b4"},
+    {file = "psycopg2_binary-2.9.10-cp312-cp312-macosx_12_0_x86_64.whl", hash = "sha256:880845dfe1f85d9d5f7c412efea7a08946a46894537e4e5d091732eb1d34d9a0"},
+    {file = "psycopg2_binary-2.9.10-cp312-cp312-macosx_14_0_arm64.whl", hash = "sha256:9440fa522a79356aaa482aa4ba500b65f28e5d0e63b801abf6aa152a29bd842a"},
+    {file = "psycopg2_binary-2.9.10-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:e3923c1d9870c49a2d44f795df0c889a22380d36ef92440ff618ec315757e539"},
+    {file = "psycopg2_binary-2.9.10-cp312-cp312-manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:7b2c956c028ea5de47ff3a8d6b3cc3330ab45cf0b7c3da35a2d6ff8420896526"},
+    {file = "psycopg2_binary-2.9.10-cp312-cp312-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:f758ed67cab30b9a8d2833609513ce4d3bd027641673d4ebc9c067e4d208eec1"},
+    {file = "psycopg2_binary-2.9.10-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:8cd9b4f2cfab88ed4a9106192de509464b75a906462fb846b936eabe45c2063e"},
+    {file = "psycopg2_binary-2.9.10-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:6dc08420625b5a20b53551c50deae6e231e6371194fa0651dbe0fb206452ae1f"},
+    {file = "psycopg2_binary-2.9.10-cp312-cp312-musllinux_1_2_i686.whl", hash = "sha256:d7cd730dfa7c36dbe8724426bf5612798734bff2d3c3857f36f2733f5bfc7c00"},
+    {file = "psycopg2_binary-2.9.10-cp312-cp312-musllinux_1_2_ppc64le.whl", hash = "sha256:155e69561d54d02b3c3209545fb08938e27889ff5a10c19de8d23eb5a41be8a5"},
+    {file = "psycopg2_binary-2.9.10-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:c3cc28a6fd5a4a26224007712e79b81dbaee2ffb90ff406256158ec4d7b52b47"},
+    {file = "psycopg2_binary-2.9.10-cp312-cp312-win32.whl", hash = "sha256:ec8a77f521a17506a24a5f626cb2aee7850f9b69a0afe704586f63a464f3cd64"},
+    {file = "psycopg2_binary-2.9.10-cp312-cp312-win_amd64.whl", hash = "sha256:18c5ee682b9c6dd3696dad6e54cc7ff3a1a9020df6a5c0f861ef8bfd338c3ca0"},
+    {file = "psycopg2_binary-2.9.10-cp313-cp313-macosx_12_0_x86_64.whl", hash = "sha256:26540d4a9a4e2b096f1ff9cce51253d0504dca5a85872c7f7be23be5a53eb18d"},
+    {file = "psycopg2_binary-2.9.10-cp313-cp313-macosx_14_0_arm64.whl", hash = "sha256:e217ce4d37667df0bc1c397fdcd8de5e81018ef305aed9415c3b093faaeb10fb"},
+    {file = "psycopg2_binary-2.9.10-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:245159e7ab20a71d989da00f280ca57da7641fa2cdcf71749c193cea540a74f7"},
+    {file = "psycopg2_binary-2.9.10-cp313-cp313-manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:3c4ded1a24b20021ebe677b7b08ad10bf09aac197d6943bfe6fec70ac4e4690d"},
+    {file = "psycopg2_binary-2.9.10-cp313-cp313-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:3abb691ff9e57d4a93355f60d4f4c1dd2d68326c968e7db17ea96df3c023ef73"},
+    {file = "psycopg2_binary-2.9.10-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:8608c078134f0b3cbd9f89b34bd60a943b23fd33cc5f065e8d5f840061bd0673"},
+    {file = "psycopg2_binary-2.9.10-cp313-cp313-musllinux_1_2_aarch64.whl", hash = "sha256:230eeae2d71594103cd5b93fd29d1ace6420d0b86f4778739cb1a5a32f607d1f"},
+    {file = "psycopg2_binary-2.9.10-cp313-cp313-musllinux_1_2_i686.whl", hash = "sha256:bb89f0a835bcfc1d42ccd5f41f04870c1b936d8507c6df12b7737febc40f0909"},
+    {file = "psycopg2_binary-2.9.10-cp313-cp313-musllinux_1_2_ppc64le.whl", hash = "sha256:f0c2d907a1e102526dd2986df638343388b94c33860ff3bbe1384130828714b1"},
+    {file = "psycopg2_binary-2.9.10-cp313-cp313-musllinux_1_2_x86_64.whl", hash = "sha256:f8157bed2f51db683f31306aa497311b560f2265998122abe1dce6428bd86567"},
+    {file = "psycopg2_binary-2.9.10-cp313-cp313-win_amd64.whl", hash = "sha256:27422aa5f11fbcd9b18da48373eb67081243662f9b46e6fd07c3eb46e4535142"},
+    {file = "psycopg2_binary-2.9.10-cp38-cp38-macosx_12_0_x86_64.whl", hash = "sha256:eb09aa7f9cecb45027683bb55aebaaf45a0df8bf6de68801a6afdc7947bb09d4"},
+    {file = "psycopg2_binary-2.9.10-cp38-cp38-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:b73d6d7f0ccdad7bc43e6d34273f70d587ef62f824d7261c4ae9b8b1b6af90e8"},
+    {file = "psycopg2_binary-2.9.10-cp38-cp38-manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:ce5ab4bf46a211a8e924d307c1b1fcda82368586a19d0a24f8ae166f5c784864"},
+    {file = "psycopg2_binary-2.9.10-cp38-cp38-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:056470c3dc57904bbf63d6f534988bafc4e970ffd50f6271fc4ee7daad9498a5"},
+    {file = "psycopg2_binary-2.9.10-cp38-cp38-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:73aa0e31fa4bb82578f3a6c74a73c273367727de397a7a0f07bd83cbea696baa"},
+    {file = "psycopg2_binary-2.9.10-cp38-cp38-musllinux_1_2_aarch64.whl", hash = "sha256:8de718c0e1c4b982a54b41779667242bc630b2197948405b7bd8ce16bcecac92"},
+    {file = "psycopg2_binary-2.9.10-cp38-cp38-musllinux_1_2_i686.whl", hash = "sha256:5c370b1e4975df846b0277b4deba86419ca77dbc25047f535b0bb03d1a544d44"},
+    {file = "psycopg2_binary-2.9.10-cp38-cp38-musllinux_1_2_ppc64le.whl", hash = "sha256:ffe8ed017e4ed70f68b7b371d84b7d4a790368db9203dfc2d222febd3a9c8863"},
+    {file = "psycopg2_binary-2.9.10-cp38-cp38-musllinux_1_2_x86_64.whl", hash = "sha256:8aecc5e80c63f7459a1a2ab2c64df952051df196294d9f739933a9f6687e86b3"},
+    {file = "psycopg2_binary-2.9.10-cp39-cp39-macosx_12_0_x86_64.whl", hash = "sha256:7a813c8bdbaaaab1f078014b9b0b13f5de757e2b5d9be6403639b298a04d218b"},
+    {file = "psycopg2_binary-2.9.10-cp39-cp39-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:d00924255d7fc916ef66e4bf22f354a940c67179ad3fd7067d7a0a9c84d2fbfc"},
+    {file = "psycopg2_binary-2.9.10-cp39-cp39-manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:7559bce4b505762d737172556a4e6ea8a9998ecac1e39b5233465093e8cee697"},
+    {file = "psycopg2_binary-2.9.10-cp39-cp39-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:e8b58f0a96e7a1e341fc894f62c1177a7c83febebb5ff9123b579418fdc8a481"},
+    {file = "psycopg2_binary-2.9.10-cp39-cp39-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:6b269105e59ac96aba877c1707c600ae55711d9dcd3fc4b5012e4af68e30c648"},
+    {file = "psycopg2_binary-2.9.10-cp39-cp39-musllinux_1_2_aarch64.whl", hash = "sha256:79625966e176dc97ddabc142351e0409e28acf4660b88d1cf6adb876d20c490d"},
+    {file = "psycopg2_binary-2.9.10-cp39-cp39-musllinux_1_2_i686.whl", hash = "sha256:8aabf1c1a04584c168984ac678a668094d831f152859d06e055288fa515e4d30"},
+    {file = "psycopg2_binary-2.9.10-cp39-cp39-musllinux_1_2_ppc64le.whl", hash = "sha256:19721ac03892001ee8fdd11507e6a2e01f4e37014def96379411ca99d78aeb2c"},
+    {file = "psycopg2_binary-2.9.10-cp39-cp39-musllinux_1_2_x86_64.whl", hash = "sha256:7f5d859928e635fa3ce3477704acee0f667b3a3d3e4bb109f2b18d4005f38287"},
+    {file = "psycopg2_binary-2.9.10-cp39-cp39-win32.whl", hash = "sha256:3216ccf953b3f267691c90c6fe742e45d890d8272326b4a8b20850a03d05b7b8"},
+    {file = "psycopg2_binary-2.9.10-cp39-cp39-win_amd64.whl", hash = "sha256:30e34c4e97964805f715206c7b789d54a78b70f3ff19fbe590104b71c45600e5"},
+]
+
+[[package]]
+name = "pyasn1"
+version = "0.5.1"
+description = "Pure-Python implementation of ASN.1 types and DER/BER/CER codecs (X.208)"
+optional = false
+python-versions = "!=3.0.*,!=3.1.*,!=3.2.*,!=3.3.*,!=3.4.*,!=3.5.*,>=2.7"
+groups = ["main"]
+files = [
+    {file = "pyasn1-0.5.1-py2.py3-none-any.whl", hash = "sha256:4439847c58d40b1d0a573d07e3856e95333f1976294494c325775aeca506eb58"},
+    {file = "pyasn1-0.5.1.tar.gz", hash = "sha256:6d391a96e59b23130a5cfa74d6fd7f388dbbe26cc8f1edf39fdddf08d9d6676c"},
+]
+
+[[package]]
+name = "pyasn1-modules"
+version = "0.3.0"
+description = "A collection of ASN.1-based protocols modules"
+optional = false
+python-versions = "!=3.0.*,!=3.1.*,!=3.2.*,!=3.3.*,!=3.4.*,!=3.5.*,>=2.7"
+groups = ["main"]
+files = [
+    {file = "pyasn1_modules-0.3.0-py2.py3-none-any.whl", hash = "sha256:d3ccd6ed470d9ffbc716be08bd90efbd44d0734bc9303818f7336070984a162d"},
+    {file = "pyasn1_modules-0.3.0.tar.gz", hash = "sha256:5bd01446b736eb9d31512a30d46c1ac3395d676c6f3cafa4c03eb54b9925631c"},
+]
+
+[package.dependencies]
+pyasn1 = ">=0.4.6,<0.6.0"
+
+[[package]]
+name = "pycparser"
+version = "2.22"
+description = "C parser in Python"
+optional = false
+python-versions = ">=3.8"
+groups = ["main"]
+files = [
+    {file = "pycparser-2.22-py3-none-any.whl", hash = "sha256:c3702b6d3dd8c7abc1afa565d7e63d53a1d0bd86cdc24edd75470f4de499cfcc"},
+    {file = "pycparser-2.22.tar.gz", hash = "sha256:491c8be9c040f5390f5bf44a5b07752bd07f56edf992381b05c701439eec10f6"},
+]
+
+[[package]]
+name = "pycryptodome"
+version = "3.21.0"
+description = "Cryptographic library for Python"
+optional = false
+python-versions = "!=3.0.*,!=3.1.*,!=3.2.*,!=3.3.*,!=3.4.*,!=3.5.*,>=2.7"
+groups = ["main"]
+markers = "extra == \"maco\""
+files = [
+    {file = "pycryptodome-3.21.0-cp27-cp27m-macosx_10_9_x86_64.whl", hash = "sha256:dad9bf36eda068e89059d1f07408e397856be9511d7113ea4b586642a429a4fd"},
+    {file = "pycryptodome-3.21.0-cp27-cp27m-manylinux2010_i686.whl", hash = "sha256:a1752eca64c60852f38bb29e2c86fca30d7672c024128ef5d70cc15868fa10f4"},
+    {file = "pycryptodome-3.21.0-cp27-cp27m-manylinux2010_x86_64.whl", hash = "sha256:3ba4cc304eac4d4d458f508d4955a88ba25026890e8abff9b60404f76a62c55e"},
+    {file = "pycryptodome-3.21.0-cp27-cp27m-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:7cb087b8612c8a1a14cf37dd754685be9a8d9869bed2ffaaceb04850a8aeef7e"},
+    {file = "pycryptodome-3.21.0-cp27-cp27m-musllinux_1_1_aarch64.whl", hash = "sha256:26412b21df30b2861424a6c6d5b1d8ca8107612a4cfa4d0183e71c5d200fb34a"},
+    {file = "pycryptodome-3.21.0-cp27-cp27m-win32.whl", hash = "sha256:cc2269ab4bce40b027b49663d61d816903a4bd90ad88cb99ed561aadb3888dd3"},
+    {file = "pycryptodome-3.21.0-cp27-cp27m-win_amd64.whl", hash = "sha256:0fa0a05a6a697ccbf2a12cec3d6d2650b50881899b845fac6e87416f8cb7e87d"},
+    {file = "pycryptodome-3.21.0-cp27-cp27mu-manylinux2010_i686.whl", hash = "sha256:6cce52e196a5f1d6797ff7946cdff2038d3b5f0aba4a43cb6bf46b575fd1b5bb"},
+    {file = "pycryptodome-3.21.0-cp27-cp27mu-manylinux2010_x86_64.whl", hash = "sha256:a915597ffccabe902e7090e199a7bf7a381c5506a747d5e9d27ba55197a2c568"},
+    {file = "pycryptodome-3.21.0-cp27-cp27mu-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:a4e74c522d630766b03a836c15bff77cb657c5fdf098abf8b1ada2aebc7d0819"},
+    {file = "pycryptodome-3.21.0-cp27-cp27mu-musllinux_1_1_aarch64.whl", hash = "sha256:a3804675283f4764a02db05f5191eb8fec2bb6ca34d466167fc78a5f05bbe6b3"},
+    {file = "pycryptodome-3.21.0-cp36-abi3-macosx_10_9_universal2.whl", hash = "sha256:2480ec2c72438430da9f601ebc12c518c093c13111a5c1644c82cdfc2e50b1e4"},
+    {file = "pycryptodome-3.21.0-cp36-abi3-macosx_10_9_x86_64.whl", hash = "sha256:de18954104667f565e2fbb4783b56667f30fb49c4d79b346f52a29cb198d5b6b"},
+    {file = "pycryptodome-3.21.0-cp36-abi3-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:2de4b7263a33947ff440412339cb72b28a5a4c769b5c1ca19e33dd6cd1dcec6e"},
+    {file = "pycryptodome-3.21.0-cp36-abi3-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:0714206d467fc911042d01ea3a1847c847bc10884cf674c82e12915cfe1649f8"},
+    {file = "pycryptodome-3.21.0-cp36-abi3-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:7d85c1b613121ed3dbaa5a97369b3b757909531a959d229406a75b912dd51dd1"},
+    {file = "pycryptodome-3.21.0-cp36-abi3-musllinux_1_1_aarch64.whl", hash = "sha256:8898a66425a57bcf15e25fc19c12490b87bd939800f39a03ea2de2aea5e3611a"},
+    {file = "pycryptodome-3.21.0-cp36-abi3-musllinux_1_2_i686.whl", hash = "sha256:932c905b71a56474bff8a9c014030bc3c882cee696b448af920399f730a650c2"},
+    {file = "pycryptodome-3.21.0-cp36-abi3-musllinux_1_2_x86_64.whl", hash = "sha256:18caa8cfbc676eaaf28613637a89980ad2fd96e00c564135bf90bc3f0b34dd93"},
+    {file = "pycryptodome-3.21.0-cp36-abi3-win32.whl", hash = "sha256:280b67d20e33bb63171d55b1067f61fbd932e0b1ad976b3a184303a3dad22764"},
+    {file = "pycryptodome-3.21.0-cp36-abi3-win_amd64.whl", hash = "sha256:b7aa25fc0baa5b1d95b7633af4f5f1838467f1815442b22487426f94e0d66c53"},
+    {file = "pycryptodome-3.21.0-pp27-pypy_73-manylinux2010_x86_64.whl", hash = "sha256:2cb635b67011bc147c257e61ce864879ffe6d03342dc74b6045059dfbdedafca"},
+    {file = "pycryptodome-3.21.0-pp27-pypy_73-win32.whl", hash = "sha256:4c26a2f0dc15f81ea3afa3b0c87b87e501f235d332b7f27e2225ecb80c0b1cdd"},
+    {file = "pycryptodome-3.21.0-pp310-pypy310_pp73-macosx_10_15_x86_64.whl", hash = "sha256:d5ebe0763c982f069d3877832254f64974139f4f9655058452603ff559c482e8"},
+    {file = "pycryptodome-3.21.0-pp310-pypy310_pp73-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:7ee86cbde706be13f2dec5a42b52b1c1d1cbb90c8e405c68d0755134735c8dc6"},
+    {file = "pycryptodome-3.21.0-pp310-pypy310_pp73-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:0fd54003ec3ce4e0f16c484a10bc5d8b9bd77fa662a12b85779a2d2d85d67ee0"},
+    {file = "pycryptodome-3.21.0-pp310-pypy310_pp73-win_amd64.whl", hash = "sha256:5dfafca172933506773482b0e18f0cd766fd3920bd03ec85a283df90d8a17bc6"},
+    {file = "pycryptodome-3.21.0-pp39-pypy39_pp73-macosx_10_15_x86_64.whl", hash = "sha256:590ef0898a4b0a15485b05210b4a1c9de8806d3ad3d47f74ab1dc07c67a6827f"},
+    {file = "pycryptodome-3.21.0-pp39-pypy39_pp73-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:f35e442630bc4bc2e1878482d6f59ea22e280d7121d7adeaedba58c23ab6386b"},
+    {file = "pycryptodome-3.21.0-pp39-pypy39_pp73-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:ff99f952db3db2fbe98a0b355175f93ec334ba3d01bbde25ad3a5a33abc02b58"},
+    {file = "pycryptodome-3.21.0-pp39-pypy39_pp73-win_amd64.whl", hash = "sha256:8acd7d34af70ee63f9a849f957558e49a98f8f1634f86a59d2be62bb8e93f71c"},
+    {file = "pycryptodome-3.21.0.tar.gz", hash = "sha256:f7787e0d469bdae763b876174cf2e6c0f7be79808af26b1da96f1a64bcf47297"},
+]
+
+[[package]]
+name = "pycryptodomex"
+version = "3.21.0"
+description = "Cryptographic library for Python"
+optional = false
+python-versions = "!=3.0.*,!=3.1.*,!=3.2.*,!=3.3.*,!=3.4.*,!=3.5.*,>=2.7"
+groups = ["main"]
+files = [
+    {file = "pycryptodomex-3.21.0-cp27-cp27m-macosx_10_9_x86_64.whl", hash = "sha256:dbeb84a399373df84a69e0919c1d733b89e049752426041deeb30d68e9867822"},
+    {file = "pycryptodomex-3.21.0-cp27-cp27m-manylinux2010_i686.whl", hash = "sha256:a192fb46c95489beba9c3f002ed7d93979423d1b2a53eab8771dbb1339eb3ddd"},
+    {file = "pycryptodomex-3.21.0-cp27-cp27m-manylinux2010_x86_64.whl", hash = "sha256:1233443f19d278c72c4daae749872a4af3787a813e05c3561c73ab0c153c7b0f"},
+    {file = "pycryptodomex-3.21.0-cp27-cp27m-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:bbb07f88e277162b8bfca7134b34f18b400d84eac7375ce73117f865e3c80d4c"},
+    {file = "pycryptodomex-3.21.0-cp27-cp27m-musllinux_1_1_aarch64.whl", hash = "sha256:e859e53d983b7fe18cb8f1b0e29d991a5c93be2c8dd25db7db1fe3bd3617f6f9"},
+    {file = "pycryptodomex-3.21.0-cp27-cp27m-win32.whl", hash = "sha256:ef046b2e6c425647971b51424f0f88d8a2e0a2a63d3531817968c42078895c00"},
+    {file = "pycryptodomex-3.21.0-cp27-cp27m-win_amd64.whl", hash = "sha256:da76ebf6650323eae7236b54b1b1f0e57c16483be6e3c1ebf901d4ada47563b6"},
+    {file = "pycryptodomex-3.21.0-cp27-cp27mu-manylinux2010_i686.whl", hash = "sha256:c07e64867a54f7e93186a55bec08a18b7302e7bee1b02fd84c6089ec215e723a"},
+    {file = "pycryptodomex-3.21.0-cp27-cp27mu-manylinux2010_x86_64.whl", hash = "sha256:56435c7124dd0ce0c8bdd99c52e5d183a0ca7fdcd06c5d5509423843f487dd0b"},
+    {file = "pycryptodomex-3.21.0-cp27-cp27mu-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:65d275e3f866cf6fe891411be9c1454fb58809ccc5de6d3770654c47197acd65"},
+    {file = "pycryptodomex-3.21.0-cp27-cp27mu-musllinux_1_1_aarch64.whl", hash = "sha256:5241bdb53bcf32a9568770a6584774b1b8109342bd033398e4ff2da052123832"},
+    {file = "pycryptodomex-3.21.0-cp36-abi3-macosx_10_9_universal2.whl", hash = "sha256:34325b84c8b380675fd2320d0649cdcbc9cf1e0d1526edbe8fce43ed858cdc7e"},
+    {file = "pycryptodomex-3.21.0-cp36-abi3-macosx_10_9_x86_64.whl", hash = "sha256:103c133d6cd832ae7266feb0a65b69e3a5e4dbbd6f3a3ae3211a557fd653f516"},
+    {file = "pycryptodomex-3.21.0-cp36-abi3-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:77ac2ea80bcb4b4e1c6a596734c775a1615d23e31794967416afc14852a639d3"},
+    {file = "pycryptodomex-3.21.0-cp36-abi3-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:9aa0cf13a1a1128b3e964dc667e5fe5c6235f7d7cfb0277213f0e2a783837cc2"},
+    {file = "pycryptodomex-3.21.0-cp36-abi3-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:46eb1f0c8d309da63a2064c28de54e5e614ad17b7e2f88df0faef58ce192fc7b"},
+    {file = "pycryptodomex-3.21.0-cp36-abi3-musllinux_1_1_aarch64.whl", hash = "sha256:cc7e111e66c274b0df5f4efa679eb31e23c7545d702333dfd2df10ab02c2a2ce"},
+    {file = "pycryptodomex-3.21.0-cp36-abi3-musllinux_1_2_i686.whl", hash = "sha256:770d630a5c46605ec83393feaa73a9635a60e55b112e1fb0c3cea84c2897aa0a"},
+    {file = "pycryptodomex-3.21.0-cp36-abi3-musllinux_1_2_x86_64.whl", hash = "sha256:52e23a0a6e61691134aa8c8beba89de420602541afaae70f66e16060fdcd677e"},
+    {file = "pycryptodomex-3.21.0-cp36-abi3-win32.whl", hash = "sha256:a3d77919e6ff56d89aada1bd009b727b874d464cb0e2e3f00a49f7d2e709d76e"},
+    {file = "pycryptodomex-3.21.0-cp36-abi3-win_amd64.whl", hash = "sha256:b0e9765f93fe4890f39875e6c90c96cb341767833cfa767f41b490b506fa9ec0"},
+    {file = "pycryptodomex-3.21.0-pp27-pypy_73-manylinux2010_x86_64.whl", hash = "sha256:feaecdce4e5c0045e7a287de0c4351284391fe170729aa9182f6bd967631b3a8"},
+    {file = "pycryptodomex-3.21.0-pp27-pypy_73-win32.whl", hash = "sha256:365aa5a66d52fd1f9e0530ea97f392c48c409c2f01ff8b9a39c73ed6f527d36c"},
+    {file = "pycryptodomex-3.21.0-pp310-pypy310_pp73-macosx_10_15_x86_64.whl", hash = "sha256:3efddfc50ac0ca143364042324046800c126a1d63816d532f2e19e6f2d8c0c31"},
+    {file = "pycryptodomex-3.21.0-pp310-pypy310_pp73-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:0df2608682db8279a9ebbaf05a72f62a321433522ed0e499bc486a6889b96bf3"},
+    {file = "pycryptodomex-3.21.0-pp310-pypy310_pp73-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:5823d03e904ea3e53aebd6799d6b8ec63b7675b5d2f4a4bd5e3adcb512d03b37"},
+    {file = "pycryptodomex-3.21.0-pp310-pypy310_pp73-win_amd64.whl", hash = "sha256:27e84eeff24250ffec32722334749ac2a57a5fd60332cd6a0680090e7c42877e"},
+    {file = "pycryptodomex-3.21.0-pp39-pypy39_pp73-macosx_10_15_x86_64.whl", hash = "sha256:8ef436cdeea794015263853311f84c1ff0341b98fc7908e8a70595a68cefd971"},
+    {file = "pycryptodomex-3.21.0-pp39-pypy39_pp73-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:7a1058e6dfe827f4209c5cae466e67610bcd0d66f2f037465daa2a29d92d952b"},
+    {file = "pycryptodomex-3.21.0-pp39-pypy39_pp73-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:9ba09a5b407cbb3bcb325221e346a140605714b5e880741dc9a1e9ecf1688d42"},
+    {file = "pycryptodomex-3.21.0-pp39-pypy39_pp73-win_amd64.whl", hash = "sha256:8a9d8342cf22b74a746e3c6c9453cb0cfbb55943410e3a2619bd9164b48dc9d9"},
+    {file = "pycryptodomex-3.21.0.tar.gz", hash = "sha256:222d0bd05381dd25c32dd6065c071ebf084212ab79bab4599ba9e6a3e0009e6c"},
+]
+
+[[package]]
+name = "pydantic"
+version = "2.10.6"
+description = "Data validation using Python type hints"
+optional = false
+python-versions = ">=3.8"
+groups = ["main"]
+files = [
+    {file = "pydantic-2.10.6-py3-none-any.whl", hash = "sha256:427d664bf0b8a2b34ff5dd0f5a18df00591adcee7198fbd71981054cef37b584"},
+    {file = "pydantic-2.10.6.tar.gz", hash = "sha256:ca5daa827cce33de7a42be142548b0096bf05a7e7b365aebfa5f8eeec7128236"},
+]
+
+[package.dependencies]
+annotated-types = ">=0.6.0"
+pydantic-core = "2.27.2"
+typing-extensions = ">=4.12.2"
+
+[package.extras]
+email = ["email-validator (>=2.0.0)"]
+timezone = ["tzdata ; python_version >= \"3.9\" and platform_system == \"Windows\""]
+
+[[package]]
+name = "pydantic-core"
+version = "2.27.2"
+description = "Core functionality for Pydantic validation and serialization"
+optional = false
+python-versions = ">=3.8"
+groups = ["main"]
+files = [
+    {file = "pydantic_core-2.27.2-cp310-cp310-macosx_10_12_x86_64.whl", hash = "sha256:2d367ca20b2f14095a8f4fa1210f5a7b78b8a20009ecced6b12818f455b1e9fa"},
+    {file = "pydantic_core-2.27.2-cp310-cp310-macosx_11_0_arm64.whl", hash = "sha256:491a2b73db93fab69731eaee494f320faa4e093dbed776be1a829c2eb222c34c"},
+    {file = "pydantic_core-2.27.2-cp310-cp310-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:7969e133a6f183be60e9f6f56bfae753585680f3b7307a8e555a948d443cc05a"},
+    {file = "pydantic_core-2.27.2-cp310-cp310-manylinux_2_17_armv7l.manylinux2014_armv7l.whl", hash = "sha256:3de9961f2a346257caf0aa508a4da705467f53778e9ef6fe744c038119737ef5"},
+    {file = "pydantic_core-2.27.2-cp310-cp310-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:e2bb4d3e5873c37bb3dd58714d4cd0b0e6238cebc4177ac8fe878f8b3aa8e74c"},
+    {file = "pydantic_core-2.27.2-cp310-cp310-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:280d219beebb0752699480fe8f1dc61ab6615c2046d76b7ab7ee38858de0a4e7"},
+    {file = "pydantic_core-2.27.2-cp310-cp310-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:47956ae78b6422cbd46f772f1746799cbb862de838fd8d1fbd34a82e05b0983a"},
+    {file = "pydantic_core-2.27.2-cp310-cp310-manylinux_2_5_i686.manylinux1_i686.whl", hash = "sha256:14d4a5c49d2f009d62a2a7140d3064f686d17a5d1a268bc641954ba181880236"},
+    {file = "pydantic_core-2.27.2-cp310-cp310-musllinux_1_1_aarch64.whl", hash = "sha256:337b443af21d488716f8d0b6164de833e788aa6bd7e3a39c005febc1284f4962"},
+    {file = "pydantic_core-2.27.2-cp310-cp310-musllinux_1_1_armv7l.whl", hash = "sha256:03d0f86ea3184a12f41a2d23f7ccb79cdb5a18e06993f8a45baa8dfec746f0e9"},
+    {file = "pydantic_core-2.27.2-cp310-cp310-musllinux_1_1_x86_64.whl", hash = "sha256:7041c36f5680c6e0f08d922aed302e98b3745d97fe1589db0a3eebf6624523af"},
+    {file = "pydantic_core-2.27.2-cp310-cp310-win32.whl", hash = "sha256:50a68f3e3819077be2c98110c1f9dcb3817e93f267ba80a2c05bb4f8799e2ff4"},
+    {file = "pydantic_core-2.27.2-cp310-cp310-win_amd64.whl", hash = "sha256:e0fd26b16394ead34a424eecf8a31a1f5137094cabe84a1bcb10fa6ba39d3d31"},
+    {file = "pydantic_core-2.27.2-cp311-cp311-macosx_10_12_x86_64.whl", hash = "sha256:8e10c99ef58cfdf2a66fc15d66b16c4a04f62bca39db589ae8cba08bc55331bc"},
+    {file = "pydantic_core-2.27.2-cp311-cp311-macosx_11_0_arm64.whl", hash = "sha256:26f32e0adf166a84d0cb63be85c562ca8a6fa8de28e5f0d92250c6b7e9e2aff7"},
+    {file = "pydantic_core-2.27.2-cp311-cp311-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:8c19d1ea0673cd13cc2f872f6c9ab42acc4e4f492a7ca9d3795ce2b112dd7e15"},
+    {file = "pydantic_core-2.27.2-cp311-cp311-manylinux_2_17_armv7l.manylinux2014_armv7l.whl", hash = "sha256:5e68c4446fe0810e959cdff46ab0a41ce2f2c86d227d96dc3847af0ba7def306"},
+    {file = "pydantic_core-2.27.2-cp311-cp311-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:d9640b0059ff4f14d1f37321b94061c6db164fbe49b334b31643e0528d100d99"},
+    {file = "pydantic_core-2.27.2-cp311-cp311-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:40d02e7d45c9f8af700f3452f329ead92da4c5f4317ca9b896de7ce7199ea459"},
+    {file = "pydantic_core-2.27.2-cp311-cp311-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:1c1fd185014191700554795c99b347d64f2bb637966c4cfc16998a0ca700d048"},
+    {file = "pydantic_core-2.27.2-cp311-cp311-manylinux_2_5_i686.manylinux1_i686.whl", hash = "sha256:d81d2068e1c1228a565af076598f9e7451712700b673de8f502f0334f281387d"},
+    {file = "pydantic_core-2.27.2-cp311-cp311-musllinux_1_1_aarch64.whl", hash = "sha256:1a4207639fb02ec2dbb76227d7c751a20b1a6b4bc52850568e52260cae64ca3b"},
+    {file = "pydantic_core-2.27.2-cp311-cp311-musllinux_1_1_armv7l.whl", hash = "sha256:3de3ce3c9ddc8bbd88f6e0e304dea0e66d843ec9de1b0042b0911c1663ffd474"},
+    {file = "pydantic_core-2.27.2-cp311-cp311-musllinux_1_1_x86_64.whl", hash = "sha256:30c5f68ded0c36466acede341551106821043e9afaad516adfb6e8fa80a4e6a6"},
+    {file = "pydantic_core-2.27.2-cp311-cp311-win32.whl", hash = "sha256:c70c26d2c99f78b125a3459f8afe1aed4d9687c24fd677c6a4436bc042e50d6c"},
+    {file = "pydantic_core-2.27.2-cp311-cp311-win_amd64.whl", hash = "sha256:08e125dbdc505fa69ca7d9c499639ab6407cfa909214d500897d02afb816e7cc"},
+    {file = "pydantic_core-2.27.2-cp311-cp311-win_arm64.whl", hash = "sha256:26f0d68d4b235a2bae0c3fc585c585b4ecc51382db0e3ba402a22cbc440915e4"},
+    {file = "pydantic_core-2.27.2-cp312-cp312-macosx_10_12_x86_64.whl", hash = "sha256:9e0c8cfefa0ef83b4da9588448b6d8d2a2bf1a53c3f1ae5fca39eb3061e2f0b0"},
+    {file = "pydantic_core-2.27.2-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:83097677b8e3bd7eaa6775720ec8e0405f1575015a463285a92bfdfe254529ef"},
+    {file = "pydantic_core-2.27.2-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:172fce187655fece0c90d90a678424b013f8fbb0ca8b036ac266749c09438cb7"},
+    {file = "pydantic_core-2.27.2-cp312-cp312-manylinux_2_17_armv7l.manylinux2014_armv7l.whl", hash = "sha256:519f29f5213271eeeeb3093f662ba2fd512b91c5f188f3bb7b27bc5973816934"},
+    {file = "pydantic_core-2.27.2-cp312-cp312-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:05e3a55d124407fffba0dd6b0c0cd056d10e983ceb4e5dbd10dda135c31071d6"},
+    {file = "pydantic_core-2.27.2-cp312-cp312-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:9c3ed807c7b91de05e63930188f19e921d1fe90de6b4f5cd43ee7fcc3525cb8c"},
+    {file = "pydantic_core-2.27.2-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:6fb4aadc0b9a0c063206846d603b92030eb6f03069151a625667f982887153e2"},
+    {file = "pydantic_core-2.27.2-cp312-cp312-manylinux_2_5_i686.manylinux1_i686.whl", hash = "sha256:28ccb213807e037460326424ceb8b5245acb88f32f3d2777427476e1b32c48c4"},
+    {file = "pydantic_core-2.27.2-cp312-cp312-musllinux_1_1_aarch64.whl", hash = "sha256:de3cd1899e2c279b140adde9357c4495ed9d47131b4a4eaff9052f23398076b3"},
+    {file = "pydantic_core-2.27.2-cp312-cp312-musllinux_1_1_armv7l.whl", hash = "sha256:220f892729375e2d736b97d0e51466252ad84c51857d4d15f5e9692f9ef12be4"},
+    {file = "pydantic_core-2.27.2-cp312-cp312-musllinux_1_1_x86_64.whl", hash = "sha256:a0fcd29cd6b4e74fe8ddd2c90330fd8edf2e30cb52acda47f06dd615ae72da57"},
+    {file = "pydantic_core-2.27.2-cp312-cp312-win32.whl", hash = "sha256:1e2cb691ed9834cd6a8be61228471d0a503731abfb42f82458ff27be7b2186fc"},
+    {file = "pydantic_core-2.27.2-cp312-cp312-win_amd64.whl", hash = "sha256:cc3f1a99a4f4f9dd1de4fe0312c114e740b5ddead65bb4102884b384c15d8bc9"},
+    {file = "pydantic_core-2.27.2-cp312-cp312-win_arm64.whl", hash = "sha256:3911ac9284cd8a1792d3cb26a2da18f3ca26c6908cc434a18f730dc0db7bfa3b"},
+    {file = "pydantic_core-2.27.2-cp313-cp313-macosx_10_12_x86_64.whl", hash = "sha256:7d14bd329640e63852364c306f4d23eb744e0f8193148d4044dd3dacdaacbd8b"},
+    {file = "pydantic_core-2.27.2-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:82f91663004eb8ed30ff478d77c4d1179b3563df6cdb15c0817cd1cdaf34d154"},
+    {file = "pydantic_core-2.27.2-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:71b24c7d61131bb83df10cc7e687433609963a944ccf45190cfc21e0887b08c9"},
+    {file = "pydantic_core-2.27.2-cp313-cp313-manylinux_2_17_armv7l.manylinux2014_armv7l.whl", hash = "sha256:fa8e459d4954f608fa26116118bb67f56b93b209c39b008277ace29937453dc9"},
+    {file = "pydantic_core-2.27.2-cp313-cp313-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:ce8918cbebc8da707ba805b7fd0b382816858728ae7fe19a942080c24e5b7cd1"},
+    {file = "pydantic_core-2.27.2-cp313-cp313-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:eda3f5c2a021bbc5d976107bb302e0131351c2ba54343f8a496dc8783d3d3a6a"},
+    {file = "pydantic_core-2.27.2-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:bd8086fa684c4775c27f03f062cbb9eaa6e17f064307e86b21b9e0abc9c0f02e"},
+    {file = "pydantic_core-2.27.2-cp313-cp313-manylinux_2_5_i686.manylinux1_i686.whl", hash = "sha256:8d9b3388db186ba0c099a6d20f0604a44eabdeef1777ddd94786cdae158729e4"},
+    {file = "pydantic_core-2.27.2-cp313-cp313-musllinux_1_1_aarch64.whl", hash = "sha256:7a66efda2387de898c8f38c0cf7f14fca0b51a8ef0b24bfea5849f1b3c95af27"},
+    {file = "pydantic_core-2.27.2-cp313-cp313-musllinux_1_1_armv7l.whl", hash = "sha256:18a101c168e4e092ab40dbc2503bdc0f62010e95d292b27827871dc85450d7ee"},
+    {file = "pydantic_core-2.27.2-cp313-cp313-musllinux_1_1_x86_64.whl", hash = "sha256:ba5dd002f88b78a4215ed2f8ddbdf85e8513382820ba15ad5ad8955ce0ca19a1"},
+    {file = "pydantic_core-2.27.2-cp313-cp313-win32.whl", hash = "sha256:1ebaf1d0481914d004a573394f4be3a7616334be70261007e47c2a6fe7e50130"},
+    {file = "pydantic_core-2.27.2-cp313-cp313-win_amd64.whl", hash = "sha256:953101387ecf2f5652883208769a79e48db18c6df442568a0b5ccd8c2723abee"},
+    {file = "pydantic_core-2.27.2-cp313-cp313-win_arm64.whl", hash = "sha256:ac4dbfd1691affb8f48c2c13241a2e3b60ff23247cbcf981759c768b6633cf8b"},
+    {file = "pydantic_core-2.27.2-cp38-cp38-macosx_10_12_x86_64.whl", hash = "sha256:d3e8d504bdd3f10835468f29008d72fc8359d95c9c415ce6e767203db6127506"},
+    {file = "pydantic_core-2.27.2-cp38-cp38-macosx_11_0_arm64.whl", hash = "sha256:521eb9b7f036c9b6187f0b47318ab0d7ca14bd87f776240b90b21c1f4f149320"},
+    {file = "pydantic_core-2.27.2-cp38-cp38-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:85210c4d99a0114f5a9481b44560d7d1e35e32cc5634c656bc48e590b669b145"},
+    {file = "pydantic_core-2.27.2-cp38-cp38-manylinux_2_17_armv7l.manylinux2014_armv7l.whl", hash = "sha256:d716e2e30c6f140d7560ef1538953a5cd1a87264c737643d481f2779fc247fe1"},
+    {file = "pydantic_core-2.27.2-cp38-cp38-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:f66d89ba397d92f840f8654756196d93804278457b5fbede59598a1f9f90b228"},
+    {file = "pydantic_core-2.27.2-cp38-cp38-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:669e193c1c576a58f132e3158f9dfa9662969edb1a250c54d8fa52590045f046"},
+    {file = "pydantic_core-2.27.2-cp38-cp38-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:9fdbe7629b996647b99c01b37f11170a57ae675375b14b8c13b8518b8320ced5"},
+    {file = "pydantic_core-2.27.2-cp38-cp38-manylinux_2_5_i686.manylinux1_i686.whl", hash = "sha256:d262606bf386a5ba0b0af3b97f37c83d7011439e3dc1a9298f21efb292e42f1a"},
+    {file = "pydantic_core-2.27.2-cp38-cp38-musllinux_1_1_aarch64.whl", hash = "sha256:cabb9bcb7e0d97f74df8646f34fc76fbf793b7f6dc2438517d7a9e50eee4f14d"},
+    {file = "pydantic_core-2.27.2-cp38-cp38-musllinux_1_1_armv7l.whl", hash = "sha256:d2d63f1215638d28221f664596b1ccb3944f6e25dd18cd3b86b0a4c408d5ebb9"},
+    {file = "pydantic_core-2.27.2-cp38-cp38-musllinux_1_1_x86_64.whl", hash = "sha256:bca101c00bff0adb45a833f8451b9105d9df18accb8743b08107d7ada14bd7da"},
+    {file = "pydantic_core-2.27.2-cp38-cp38-win32.whl", hash = "sha256:f6f8e111843bbb0dee4cb6594cdc73e79b3329b526037ec242a3e49012495b3b"},
+    {file = "pydantic_core-2.27.2-cp38-cp38-win_amd64.whl", hash = "sha256:fd1aea04935a508f62e0d0ef1f5ae968774a32afc306fb8545e06f5ff5cdf3ad"},
+    {file = "pydantic_core-2.27.2-cp39-cp39-macosx_10_12_x86_64.whl", hash = "sha256:c10eb4f1659290b523af58fa7cffb452a61ad6ae5613404519aee4bfbf1df993"},
+    {file = "pydantic_core-2.27.2-cp39-cp39-macosx_11_0_arm64.whl", hash = "sha256:ef592d4bad47296fb11f96cd7dc898b92e795032b4894dfb4076cfccd43a9308"},
+    {file = "pydantic_core-2.27.2-cp39-cp39-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:c61709a844acc6bf0b7dce7daae75195a10aac96a596ea1b776996414791ede4"},
+    {file = "pydantic_core-2.27.2-cp39-cp39-manylinux_2_17_armv7l.manylinux2014_armv7l.whl", hash = "sha256:42c5f762659e47fdb7b16956c71598292f60a03aa92f8b6351504359dbdba6cf"},
+    {file = "pydantic_core-2.27.2-cp39-cp39-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:4c9775e339e42e79ec99c441d9730fccf07414af63eac2f0e48e08fd38a64d76"},
+    {file = "pydantic_core-2.27.2-cp39-cp39-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:57762139821c31847cfb2df63c12f725788bd9f04bc2fb392790959b8f70f118"},
+    {file = "pydantic_core-2.27.2-cp39-cp39-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:0d1e85068e818c73e048fe28cfc769040bb1f475524f4745a5dc621f75ac7630"},
+    {file = "pydantic_core-2.27.2-cp39-cp39-manylinux_2_5_i686.manylinux1_i686.whl", hash = "sha256:097830ed52fd9e427942ff3b9bc17fab52913b2f50f2880dc4a5611446606a54"},
+    {file = "pydantic_core-2.27.2-cp39-cp39-musllinux_1_1_aarch64.whl", hash = "sha256:044a50963a614ecfae59bb1eaf7ea7efc4bc62f49ed594e18fa1e5d953c40e9f"},
+    {file = "pydantic_core-2.27.2-cp39-cp39-musllinux_1_1_armv7l.whl", hash = "sha256:4e0b4220ba5b40d727c7f879eac379b822eee5d8fff418e9d3381ee45b3b0362"},
+    {file = "pydantic_core-2.27.2-cp39-cp39-musllinux_1_1_x86_64.whl", hash = "sha256:5e4f4bb20d75e9325cc9696c6802657b58bc1dbbe3022f32cc2b2b632c3fbb96"},
+    {file = "pydantic_core-2.27.2-cp39-cp39-win32.whl", hash = "sha256:cca63613e90d001b9f2f9a9ceb276c308bfa2a43fafb75c8031c4f66039e8c6e"},
+    {file = "pydantic_core-2.27.2-cp39-cp39-win_amd64.whl", hash = "sha256:77d1bca19b0f7021b3a982e6f903dcd5b2b06076def36a652e3907f596e29f67"},
+    {file = "pydantic_core-2.27.2-pp310-pypy310_pp73-macosx_10_12_x86_64.whl", hash = "sha256:2bf14caea37e91198329b828eae1618c068dfb8ef17bb33287a7ad4b61ac314e"},
+    {file = "pydantic_core-2.27.2-pp310-pypy310_pp73-macosx_11_0_arm64.whl", hash = "sha256:b0cb791f5b45307caae8810c2023a184c74605ec3bcbb67d13846c28ff731ff8"},
+    {file = "pydantic_core-2.27.2-pp310-pypy310_pp73-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:688d3fd9fcb71f41c4c015c023d12a79d1c4c0732ec9eb35d96e3388a120dcf3"},
+    {file = "pydantic_core-2.27.2-pp310-pypy310_pp73-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:3d591580c34f4d731592f0e9fe40f9cc1b430d297eecc70b962e93c5c668f15f"},
+    {file = "pydantic_core-2.27.2-pp310-pypy310_pp73-manylinux_2_5_i686.manylinux1_i686.whl", hash = "sha256:82f986faf4e644ffc189a7f1aafc86e46ef70372bb153e7001e8afccc6e54133"},
+    {file = "pydantic_core-2.27.2-pp310-pypy310_pp73-musllinux_1_1_aarch64.whl", hash = "sha256:bec317a27290e2537f922639cafd54990551725fc844249e64c523301d0822fc"},
+    {file = "pydantic_core-2.27.2-pp310-pypy310_pp73-musllinux_1_1_armv7l.whl", hash = "sha256:0296abcb83a797db256b773f45773da397da75a08f5fcaef41f2044adec05f50"},
+    {file = "pydantic_core-2.27.2-pp310-pypy310_pp73-musllinux_1_1_x86_64.whl", hash = "sha256:0d75070718e369e452075a6017fbf187f788e17ed67a3abd47fa934d001863d9"},
+    {file = "pydantic_core-2.27.2-pp310-pypy310_pp73-win_amd64.whl", hash = "sha256:7e17b560be3c98a8e3aa66ce828bdebb9e9ac6ad5466fba92eb74c4c95cb1151"},
+    {file = "pydantic_core-2.27.2-pp39-pypy39_pp73-macosx_10_12_x86_64.whl", hash = "sha256:c33939a82924da9ed65dab5a65d427205a73181d8098e79b6b426bdf8ad4e656"},
+    {file = "pydantic_core-2.27.2-pp39-pypy39_pp73-macosx_11_0_arm64.whl", hash = "sha256:00bad2484fa6bda1e216e7345a798bd37c68fb2d97558edd584942aa41b7d278"},
+    {file = "pydantic_core-2.27.2-pp39-pypy39_pp73-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:c817e2b40aba42bac6f457498dacabc568c3b7a986fc9ba7c8d9d260b71485fb"},
+    {file = "pydantic_core-2.27.2-pp39-pypy39_pp73-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:251136cdad0cb722e93732cb45ca5299fb56e1344a833640bf93b2803f8d1bfd"},
+    {file = "pydantic_core-2.27.2-pp39-pypy39_pp73-manylinux_2_5_i686.manylinux1_i686.whl", hash = "sha256:d2088237af596f0a524d3afc39ab3b036e8adb054ee57cbb1dcf8e09da5b29cc"},
+    {file = "pydantic_core-2.27.2-pp39-pypy39_pp73-musllinux_1_1_aarch64.whl", hash = "sha256:d4041c0b966a84b4ae7a09832eb691a35aec90910cd2dbe7a208de59be77965b"},
+    {file = "pydantic_core-2.27.2-pp39-pypy39_pp73-musllinux_1_1_armv7l.whl", hash = "sha256:8083d4e875ebe0b864ffef72a4304827015cff328a1be6e22cc850753bfb122b"},
+    {file = "pydantic_core-2.27.2-pp39-pypy39_pp73-musllinux_1_1_x86_64.whl", hash = "sha256:f141ee28a0ad2123b6611b6ceff018039df17f32ada8b534e6aa039545a3efb2"},
+    {file = "pydantic_core-2.27.2-pp39-pypy39_pp73-win_amd64.whl", hash = "sha256:7d0c8399fcc1848491f00e0314bd59fb34a9c008761bcb422a057670c3f65e35"},
+    {file = "pydantic_core-2.27.2.tar.gz", hash = "sha256:eb026e5a4c1fee05726072337ff51d1efb6f59090b7da90d30ea58625b1ffb39"},
+]
+
+[package.dependencies]
+typing-extensions = ">=4.6.0,<4.7.0 || >4.7.0"
+
+[[package]]
+name = "pydeep2"
+version = "0.5.1"
+description = "Python bindings for ssdeep"
+optional = false
+python-versions = "*"
+groups = ["main"]
+files = [
+    {file = "pydeep2-0.5.1-cp310-cp310-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:e14b310b820d895a7354be7fd025de874892df249cbfb3ad8a524459e1511fd8"},
+    {file = "pydeep2-0.5.1-cp310-cp310-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:2283893e25826b547dd1e5c71a010e86ddfd7270e2f2b8c90973c1d7984c7eb7"},
+    {file = "pydeep2-0.5.1-cp311-cp311-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:f248e3161deb53d46a9368a7c164e36d83004faf2f11625d47a5cf23a6bdd2cb"},
+    {file = "pydeep2-0.5.1-cp311-cp311-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:a13fca9be89a9fa8d92a4f49d7b9191eef94555f8ddf030fb2be4c8c15ad618c"},
+    {file = "pydeep2-0.5.1-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:d1cb4757db97ac15ddf034c21cd6bab984f841586b6d53984e63c9a7803b2cd4"},
+    {file = "pydeep2-0.5.1-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:7809a1d6640bdbee68f075d53229d05229e11b4711f232728dd540f68e6483a4"},
+    {file = "pydeep2-0.5.1-cp36-cp36m-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:0fedc1c9660cb5d0b73ad0b5f1dbffe16990e6721cbfc6454571a4b9882d0ea4"},
+    {file = "pydeep2-0.5.1-cp36-cp36m-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:7ca68f7d63e2ef510d410d20b223e8e97df41707fb50c4c526b6dd1d8698d9e6"},
+    {file = "pydeep2-0.5.1-cp37-cp37m-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:199d05d8b4b7544509a2ba4802ead4b41dfe7859e0ecea9d9be9e41939f11660"},
+    {file = "pydeep2-0.5.1-cp37-cp37m-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:4bf00de2fe1918e4d698fe8195a5c0a3a0c3050a2e3e15583748cfd20b427153"},
+    {file = "pydeep2-0.5.1-cp38-cp38-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:c65dc910d782fa2bc97e1b28a78d77c4bada037d14b63e3e75a1fa5918d642c5"},
+    {file = "pydeep2-0.5.1-cp38-cp38-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:ef00ca5681a2c4ad5dc744db5f8ae5406d3f13121b38d84cc58dfb8fce4c3dc2"},
+    {file = "pydeep2-0.5.1-cp39-cp39-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:add24d7aa0386b285fd3e99632719714efabeb13d7b03a015b7c64d1f588f815"},
+    {file = "pydeep2-0.5.1-cp39-cp39-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:c2063cbb053e5ce684cc45fff3e72c063b26aa85e41e6435cab0c658ad9e3e1e"},
+    {file = "pydeep2-0.5.1.tar.gz", hash = "sha256:44ce447e3253a69d3393f3cc53e3a87a48fe3ff9861793736a7bc218a1b95d77"},
+]
+
+[[package]]
+name = "pyelftools"
+version = "0.31"
+description = "Library for analyzing ELF files and DWARF debugging information"
+optional = false
+python-versions = "*"
+groups = ["main"]
+files = [
+    {file = "pyelftools-0.31-py3-none-any.whl", hash = "sha256:f52de7b3c7e8c64c8abc04a79a1cf37ac5fb0b8a49809827130b858944840607"},
+    {file = "pyelftools-0.31.tar.gz", hash = "sha256:c774416b10310156879443b81187d182d8d9ee499660380e645918b50bc88f99"},
+]
+
+[[package]]
+name = "pygal"
+version = "2.4.0"
+description = "A python svg graph plotting library"
+optional = false
+python-versions = "*"
+groups = ["main"]
+files = [
+    {file = "pygal-2.4.0-py2.py3-none-any.whl", hash = "sha256:27abab93cbc31e21f3c6bdecc05bda6cd3570cbdbd8297b7caa6904051b50d72"},
+    {file = "pygal-2.4.0.tar.gz", hash = "sha256:9204f05380b02a8a32f9bf99d310b51aa2a932cba5b369f7a4dc3705f0a4ce83"},
+]
+
+[package.extras]
+docs = ["pygal-sphinx-directives", "sphinx", "sphinx-rtd-theme"]
+lxml = ["lxml"]
+png = ["cairosvg"]
+test = ["cairosvg", "coveralls", "flask", "lxml", "pygal-maps-ch", "pygal-maps-fr", "pygal-maps-world", "pyquery", "pytest", "pytest-cov", "pytest-flake8", "pytest-isort", "pytest-runner"]
+
+[[package]]
+name = "pygments"
+version = "2.19.1"
+description = "Pygments is a syntax highlighting package written in Python."
+optional = false
+python-versions = ">=3.8"
+groups = ["main", "dev"]
+files = [
+    {file = "pygments-2.19.1-py3-none-any.whl", hash = "sha256:9ea1544ad55cecf4b8242fab6dd35a93bbce657034b0611ee383099054ab6d8c"},
+    {file = "pygments-2.19.1.tar.gz", hash = "sha256:61c16d2a8576dc0649d9f39e089b5f02bcd27fba10d8fb4dcc28173f7a45151f"},
+]
+
+[package.extras]
+windows-terminal = ["colorama (>=0.4.6)"]
+
+[[package]]
+name = "pyguacamole"
+version = "0.11"
+description = "A Guacamole python client library."
+optional = false
+python-versions = "*"
+groups = ["main"]
+files = [
+    {file = "pyguacamole-0.11-py3-none-any.whl", hash = "sha256:7f8d8652ce2e86473d72a50e0c9d8a8e0c3c74e373c6b926ca4c851774cae608"},
+    {file = "pyguacamole-0.11.tar.gz", hash = "sha256:d6facde097a1b1a3048b20fb2ff88b024744ceb2865fb912525da7ebb7779695"},
+]
+
+[package.dependencies]
+future = ">=0.15.2"
+six = ">=1.10.0"
+
+[[package]]
+name = "pymongo"
+version = "4.11"
+description = "Python driver for MongoDB <http://www.mongodb.org>"
+optional = false
+python-versions = ">=3.9"
+groups = ["main"]
+files = [
+    {file = "pymongo-4.11-cp310-cp310-macosx_10_9_x86_64.whl", hash = "sha256:1971039a8e3aab139e0382b26a9670cd34f43c5301da267360b9a640b637d09b"},
+    {file = "pymongo-4.11-cp310-cp310-macosx_11_0_arm64.whl", hash = "sha256:b4878e92ae255a05756399a4e2b428f0fd3529561eacd9f4781a70ad5311397e"},
+    {file = "pymongo-4.11-cp310-cp310-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:e43b0533f291a8883e52fd7a8919353ae7038d50ef17873983877c2f6b76330e"},
+    {file = "pymongo-4.11-cp310-cp310-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:cf0a36fae1187fc2bdf3c527dc68c6bfd7c89726fbbf3215460b82e28bd8b81e"},
+    {file = "pymongo-4.11-cp310-cp310-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:ff5176a083252a769e5bfb1a950d0e37da585c313e1a4af98903e22e7cf4c475"},
+    {file = "pymongo-4.11-cp310-cp310-win32.whl", hash = "sha256:ee3cc9bce848a1024d1c96717540f3f30cba885df9610be70c0653764e30ae6e"},
+    {file = "pymongo-4.11-cp310-cp310-win_amd64.whl", hash = "sha256:06e82968ea031aebc18820898b102efed1ea8dc21b51eff2a81dc9ba4191fa6b"},
+    {file = "pymongo-4.11-cp311-cp311-macosx_10_9_x86_64.whl", hash = "sha256:0197fe47e31bee488e82e7ab73e6a351a191bbd6e25cf4a380622e4b1ffcd143"},
+    {file = "pymongo-4.11-cp311-cp311-macosx_11_0_arm64.whl", hash = "sha256:f300d1811bd33940b2dd1907dbe2b4ae473003a384d6a764babb3ea5a4edede4"},
+    {file = "pymongo-4.11-cp311-cp311-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:212f14a882659a45db472f0bc0fdf83c16fad4e7e4d4257187797779c461320e"},
+    {file = "pymongo-4.11-cp311-cp311-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:c72165e4ee884c3c9ac85a443f20dd01849c9df26b38ff25b08260330ed78202"},
+    {file = "pymongo-4.11-cp311-cp311-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:bedcf4a602042cb2c19ae3ee450fbdd5832095ae5b563e004f7c0d307a22c9e1"},
+    {file = "pymongo-4.11-cp311-cp311-win32.whl", hash = "sha256:64ad12ae8d79f18ec30d807b9b9b9802c30427c39599d8b1833bc00e63f0e4bb"},
+    {file = "pymongo-4.11-cp311-cp311-win_amd64.whl", hash = "sha256:a308ad2eeaee370b3b4154a82840c8f8f9b18ccc76b71812323d243a7bda98a2"},
+    {file = "pymongo-4.11-cp312-cp312-macosx_10_13_x86_64.whl", hash = "sha256:254aa90fafead13aca8dbcfbc407e2f6f7c125fce726925bd96adc74b6226f9e"},
+    {file = "pymongo-4.11-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:e84e27d6fa4b3e532043daf89d52d2cfbd7b4697b44b86a7b3db8cacdcfcc58c"},
+    {file = "pymongo-4.11-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:7ac81987985275abeb53f5faa5c4a7f7890df9368c0f730fe37460a6301d94d7"},
+    {file = "pymongo-4.11-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:85cfc99af2ae0fb8699e15b1f3479018216eb75d80f0082973a876ecfdf1022e"},
+    {file = "pymongo-4.11-cp312-cp312-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:b885210269455e05f5704887a4c7b3b99d03c9ab37f320005acc21d1761f1656"},
+    {file = "pymongo-4.11-cp312-cp312-win32.whl", hash = "sha256:b7af60e034e04c3206dfbe2a7bbcc46057ca4f9ad8ed66869bf669c02a1e6e99"},
+    {file = "pymongo-4.11-cp312-cp312-win_amd64.whl", hash = "sha256:74f02b7dbb3b15c2e48c7bb28941f6198dc73ced09683738180a9fdbfc0983b2"},
+    {file = "pymongo-4.11-cp313-cp313-macosx_10_13_x86_64.whl", hash = "sha256:d33c80afcbfdd2934917fedfa005251484ca8d98767c74793c35d5f24b8e48f1"},
+    {file = "pymongo-4.11-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:d4db6f7515f5087ae9deecc3b60d3d8a512b1a0a9bff93113bc9edf20ed29ab9"},
+    {file = "pymongo-4.11-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:c3a7ead31317d3a3eabc17486c75ad109f3d514a702002e52da474b59dd8acce"},
+    {file = "pymongo-4.11-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:4c0ab91c06bf79dd3d3fd5f2a53fe22db8036084ddcfaacd80e83828b6eb4f25"},
+    {file = "pymongo-4.11-cp313-cp313-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:9a04f49d6f1fa4f4e6a98ef76b4881b4a9c7decd8a90ee5c9aeff087662e2d8a"},
+    {file = "pymongo-4.11-cp313-cp313-win32.whl", hash = "sha256:981ae0caa245bedf9af3af9159ae71b05444e35dd61a0250235b5c58dcd69178"},
+    {file = "pymongo-4.11-cp313-cp313-win_amd64.whl", hash = "sha256:8e5a56a508612c64906d5375ebee413cee2fc432c09abd9cb4d9e23ac8bcdd3a"},
+    {file = "pymongo-4.11-cp313-cp313t-macosx_10_13_x86_64.whl", hash = "sha256:c3b67a2949240d63a0b8b1094e1d2d4b94dedf0317ac6e14164adc9aaf260963"},
+    {file = "pymongo-4.11-cp313-cp313t-macosx_11_0_arm64.whl", hash = "sha256:17d4b787afed3163e5faa147b028d8ec7996a5388328499588c5c5858f26ab8a"},
+    {file = "pymongo-4.11-cp313-cp313t-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:ae7f636010ce54885f1ea19c37ea2cb744d976ce689361a776fd0e991d020b81"},
+    {file = "pymongo-4.11-cp313-cp313t-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:c7f2309384de675e7e25104fc5947acb65ad3ba69dc8246095d57ff1220dfcbb"},
+    {file = "pymongo-4.11-cp313-cp313t-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:17966e98d0350b578a337f053cc541458c296236d4b5b4b8adb76f5e82644fb8"},
+    {file = "pymongo-4.11-cp313-cp313t-win32.whl", hash = "sha256:b7246f2060ba03dcc25ade803bc6a3c39f1cc7db93297875edd251ca8cf5cac7"},
+    {file = "pymongo-4.11-cp313-cp313t-win_amd64.whl", hash = "sha256:488e3440f5bedcbf494fd02c0a433cb5be7e55ba44dc72202813e1007a865e6a"},
+    {file = "pymongo-4.11-cp39-cp39-macosx_10_9_x86_64.whl", hash = "sha256:8436f90f26379c167d47b61ac78c48224af98f3136ece380b74158cbef2ad6a7"},
+    {file = "pymongo-4.11-cp39-cp39-macosx_11_0_arm64.whl", hash = "sha256:5837ee73ffa4a943360320d7b9b917da2752a4cb536e23a6eaca418c1c64f60a"},
+    {file = "pymongo-4.11-cp39-cp39-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:5c7e5e500cc408f7f2aa38a4a6ed96d78a4c4cce3bcc6f1a55113f0b9d7823dd"},
+    {file = "pymongo-4.11-cp39-cp39-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:7cf9d18444259d86cd7028ac428f4fe7fbdefa3450575126ad2ee4447db0f52f"},
+    {file = "pymongo-4.11-cp39-cp39-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:ec86da9ce746de890b8d470a1f12f3d2634786fee002a4c56bdbbfd59e23f1f7"},
+    {file = "pymongo-4.11-cp39-cp39-manylinux_2_5_i686.manylinux1_i686.whl", hash = "sha256:38f777f5e43f3acd651a79aaf95abf29e8e7f85429a12ce32c4b7f2f877b2200"},
+    {file = "pymongo-4.11-cp39-cp39-manylinux_2_5_x86_64.manylinux1_x86_64.whl", hash = "sha256:314648ec4d5eaa755233343d6d110348371988257de35f5a84667b709262deab"},
+    {file = "pymongo-4.11-cp39-cp39-win32.whl", hash = "sha256:d4a275ea70f597d3fd77bdc83054307a65749b2c669bc5045cb4620930eed596"},
+    {file = "pymongo-4.11-cp39-cp39-win_amd64.whl", hash = "sha256:bb3ce0ce49cfe5c31db046d567403adb2d158459cf10d7c71f6d72f2324c900a"},
+    {file = "pymongo-4.11.tar.gz", hash = "sha256:21b9969e155c4b16a160fbe90c390a07ca7514479af6c3811b1d15ead26e10ba"},
+]
+
+[package.dependencies]
+dnspython = ">=1.16.0,<3.0.0"
+
+[package.extras]
+aws = ["pymongo-auth-aws (>=1.1.0,<2.0.0)"]
+docs = ["furo (==2024.8.6)", "readthedocs-sphinx-search (>=0.3,<1.0)", "sphinx (>=5.3,<9)", "sphinx-autobuild (>=2020.9.1)", "sphinx-rtd-theme (>=2,<4)", "sphinxcontrib-shellcheck (>=1,<2)"]
+encryption = ["certifi ; os_name == \"nt\" or sys_platform == \"darwin\"", "pymongo-auth-aws (>=1.1.0,<2.0.0)", "pymongocrypt (>=1.12.0,<2.0.0)"]
+gssapi = ["pykerberos ; os_name != \"nt\"", "winkerberos (>=0.5.0) ; os_name == \"nt\""]
+ocsp = ["certifi ; os_name == \"nt\" or sys_platform == \"darwin\"", "cryptography (>=2.5)", "pyopenssl (>=17.2.0)", "requests (<3.0.0)", "service-identity (>=18.1.0)"]
+snappy = ["python-snappy"]
+test = ["pytest (>=8.2)", "pytest-asyncio (>=0.24.0)"]
+zstd = ["zstandard"]
+
+[[package]]
+name = "pynacl"
+version = "1.5.0"
+description = "Python binding to the Networking and Cryptography (NaCl) library"
+optional = false
+python-versions = ">=3.6"
+groups = ["main"]
+files = [
+    {file = "PyNaCl-1.5.0-cp36-abi3-macosx_10_10_universal2.whl", hash = "sha256:401002a4aaa07c9414132aaed7f6836ff98f59277a234704ff66878c2ee4a0d1"},
+    {file = "PyNaCl-1.5.0-cp36-abi3-manylinux_2_17_aarch64.manylinux2014_aarch64.manylinux_2_24_aarch64.whl", hash = "sha256:52cb72a79269189d4e0dc537556f4740f7f0a9ec41c1322598799b0bdad4ef92"},
+    {file = "PyNaCl-1.5.0-cp36-abi3-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:a36d4a9dda1f19ce6e03c9a784a2921a4b726b02e1c736600ca9c22029474394"},
+    {file = "PyNaCl-1.5.0-cp36-abi3-manylinux_2_17_x86_64.manylinux2014_x86_64.manylinux_2_24_x86_64.whl", hash = "sha256:0c84947a22519e013607c9be43706dd42513f9e6ae5d39d3613ca1e142fba44d"},
+    {file = "PyNaCl-1.5.0-cp36-abi3-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:06b8f6fa7f5de8d5d2f7573fe8c863c051225a27b61e6860fd047b1775807858"},
+    {file = "PyNaCl-1.5.0-cp36-abi3-musllinux_1_1_aarch64.whl", hash = "sha256:a422368fc821589c228f4c49438a368831cb5bbc0eab5ebe1d7fac9dded6567b"},
+    {file = "PyNaCl-1.5.0-cp36-abi3-musllinux_1_1_x86_64.whl", hash = "sha256:61f642bf2378713e2c2e1de73444a3778e5f0a38be6fee0fe532fe30060282ff"},
+    {file = "PyNaCl-1.5.0-cp36-abi3-win32.whl", hash = "sha256:e46dae94e34b085175f8abb3b0aaa7da40767865ac82c928eeb9e57e1ea8a543"},
+    {file = "PyNaCl-1.5.0-cp36-abi3-win_amd64.whl", hash = "sha256:20f42270d27e1b6a29f54032090b972d97f0a1b0948cc52392041ef7831fee93"},
+    {file = "PyNaCl-1.5.0.tar.gz", hash = "sha256:8ac7448f09ab85811607bdd21ec2464495ac8b7c66d146bf545b0f08fb9220ba"},
+]
+
+[package.dependencies]
+cffi = ">=1.4.1"
+
+[package.extras]
+docs = ["sphinx (>=1.6.5)", "sphinx-rtd-theme"]
+tests = ["hypothesis (>=3.27.0)", "pytest (>=3.2.1,!=3.3.0)"]
+
+[[package]]
+name = "pyopenssl"
+version = "25.0.0"
+description = "Python wrapper module around the OpenSSL library"
+optional = false
+python-versions = ">=3.7"
+groups = ["main"]
+files = [
+    {file = "pyOpenSSL-25.0.0-py3-none-any.whl", hash = "sha256:424c247065e46e76a37411b9ab1782541c23bb658bf003772c3405fbaa128e90"},
+    {file = "pyopenssl-25.0.0.tar.gz", hash = "sha256:cd2cef799efa3936bb08e8ccb9433a575722b9dd986023f1cabc4ae64e9dac16"},
+]
+
+[package.dependencies]
+cryptography = ">=41.0.5,<45"
+typing-extensions = {version = ">=4.9", markers = "python_version < \"3.13\" and python_version >= \"3.8\""}
+
+[package.extras]
+docs = ["sphinx (!=5.2.0,!=5.2.0.post0,!=7.2.5)", "sphinx_rtd_theme"]
+test = ["pretend", "pytest (>=3.0.1)", "pytest-rerunfailures"]
+
+[[package]]
+name = "pyparsing"
+version = "3.2.1"
+description = "pyparsing module - Classes and methods to define and execute parsing grammars"
+optional = false
+python-versions = ">=3.9"
+groups = ["main"]
+files = [
+    {file = "pyparsing-3.2.1-py3-none-any.whl", hash = "sha256:506ff4f4386c4cec0590ec19e6302d3aedb992fdc02c761e90416f158dacf8e1"},
+    {file = "pyparsing-3.2.1.tar.gz", hash = "sha256:61980854fd66de3a90028d679a954d5f2623e83144b5afe5ee86f43d762e5f0a"},
+]
+
+[package.extras]
+diagrams = ["jinja2", "railroad-diagrams"]
+
+[[package]]
+name = "pypdf"
+version = "5.2.0"
+description = "A pure-python PDF library capable of splitting, merging, cropping, and transforming PDF files"
+optional = false
+python-versions = ">=3.8"
+groups = ["main"]
+files = [
+    {file = "pypdf-5.2.0-py3-none-any.whl", hash = "sha256:d107962ec45e65e3bd10c1d9242bdbbedaa38193c9e3a6617bd6d996e5747b19"},
+    {file = "pypdf-5.2.0.tar.gz", hash = "sha256:7c38e68420f038f2c4998fd9d6717b6db4f6cef1642e9cf384d519c9cf094663"},
+]
+
+[package.dependencies]
+typing_extensions = {version = ">=4.0", markers = "python_version < \"3.11\""}
+
+[package.extras]
+crypto = ["cryptography"]
+cryptodome = ["PyCryptodome"]
+dev = ["black", "flit", "pip-tools", "pre-commit (<2.18.0)", "pytest-cov", "pytest-socket", "pytest-timeout", "pytest-xdist", "wheel"]
+docs = ["myst_parser", "sphinx", "sphinx_rtd_theme"]
+full = ["Pillow (>=8.0.0)", "cryptography"]
+image = ["Pillow (>=8.0.0)"]
+
+[[package]]
+name = "pyre2-updated"
+version = "0.3.8"
+description = "Python wrapper for Google's RE2 using Cython"
+optional = false
+python-versions = ">=3.7"
+groups = ["main"]
+files = [
+    {file = "pyre2-updated-0.3.8.tar.gz", hash = "sha256:6d6aaa2f41a085095993b2d09562511cf40d4aedfc5bd00d78f53112be051e19"},
+    {file = "pyre2_updated-0.3.8-cp310-cp310-macosx_10_15_universal2.whl", hash = "sha256:65e67527eb472cd5045966df42414205cbfc187633a844ba7d9f59480f46e748"},
+    {file = "pyre2_updated-0.3.8-cp310-cp310-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:ab79cd5c663d20eca146361f2b2b7cf23c631109e43064d4bb35a43cb0607ffd"},
+    {file = "pyre2_updated-0.3.8-cp310-cp310-win_amd64.whl", hash = "sha256:b0820d8420caca762184f5eebe57631be5b985e405c53e807aac24897daa892a"},
+    {file = "pyre2_updated-0.3.8-cp311-cp311-macosx_10_15_universal2.whl", hash = "sha256:2bda9bf4d59568152e085450ffc1c08fcf659000d06766861f7ff340ba601c3e"},
+    {file = "pyre2_updated-0.3.8-cp311-cp311-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:54de291bb8b3aa2223f864293e0a9e62ea2877fea72a632fe5cd36a60012f7bc"},
+    {file = "pyre2_updated-0.3.8-cp311-cp311-win_amd64.whl", hash = "sha256:45c0940dbda4a2c45652e69ab52946c2395171f3e3a96bce456a8ddb45b337e1"},
+    {file = "pyre2_updated-0.3.8-cp312-cp312-macosx_10_15_universal2.whl", hash = "sha256:4db83d0f148d91f9b67b71eb3fd04a7e1d09397e7ecea75972632cd46c27ba6e"},
+    {file = "pyre2_updated-0.3.8-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:53d27f552fac2149c9dbe45faf1f6236c55fba42ea579799a07cdc853e3732d6"},
+    {file = "pyre2_updated-0.3.8-cp312-cp312-win_amd64.whl", hash = "sha256:648196c6fe7b115431f2bedc48660333a61f6628bde7efefc14098d67f86b7b4"},
+    {file = "pyre2_updated-0.3.8-cp37-cp37m-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:802dec5801912c76b21dcc3d91810ae9ff0cc308e78fb0aa32d93e921783f5d8"},
+    {file = "pyre2_updated-0.3.8-cp37-cp37m-win_amd64.whl", hash = "sha256:daf366a83b70b08cc4c59477455a28b2a108484d282824d350217a8a7378d229"},
+    {file = "pyre2_updated-0.3.8-cp38-cp38-macosx_10_15_universal2.whl", hash = "sha256:f1c406e30aed02699888ae6938b83058f0845650991cd97db09e1686ce8a181a"},
+    {file = "pyre2_updated-0.3.8-cp38-cp38-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:8331fc7bb1fa57d2654046ed189631d70db1170d935264ce82a7291413ce60e4"},
+    {file = "pyre2_updated-0.3.8-cp38-cp38-win_amd64.whl", hash = "sha256:407ca7082e2049aeae0b2c716cc53cd92217d17886694fe0047ce5d636161155"},
+    {file = "pyre2_updated-0.3.8-cp39-cp39-macosx_10_15_universal2.whl", hash = "sha256:99942f75a252691117880fc60941f20170d35bcb3ccb72aff9a1bbce951d4db0"},
+    {file = "pyre2_updated-0.3.8-cp39-cp39-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:ff764613bd436689cf5e4d3c14a25cf8465474e1db9f2a39738bbf481dd07300"},
+    {file = "pyre2_updated-0.3.8-cp39-cp39-win_amd64.whl", hash = "sha256:350be9580700b67af87f5227453d1123bc9f4513f0bcc60450574f1bc46cb24f"},
+]
+
+[package.extras]
+perf = ["regex"]
+test = ["pytest"]
+
+[[package]]
+name = "pysocks"
+version = "1.7.1"
+description = "A Python SOCKS client module. See https://github.com/Anorov/PySocks for more information."
+optional = false
+python-versions = ">=2.7, !=3.0.*, !=3.1.*, !=3.2.*, !=3.3.*"
+groups = ["main"]
+files = [
+    {file = "PySocks-1.7.1-py27-none-any.whl", hash = "sha256:08e69f092cc6dbe92a0fdd16eeb9b9ffbc13cadfe5ca4c7bd92ffb078b293299"},
+    {file = "PySocks-1.7.1-py3-none-any.whl", hash = "sha256:2725bd0a9925919b9b51739eea5f9e2bae91e83288108a9ad338b2e3a4435ee5"},
+    {file = "PySocks-1.7.1.tar.gz", hash = "sha256:3f8804571ebe159c380ac6de37643bb4685970655d3bba243530d6558b799aa0"},
+]
+
+[[package]]
+name = "pytest"
+version = "7.2.2"
+description = "pytest: simple powerful testing with Python"
+optional = false
+python-versions = ">=3.7"
+groups = ["dev"]
+files = [
+    {file = "pytest-7.2.2-py3-none-any.whl", hash = "sha256:130328f552dcfac0b1cec75c12e3f005619dc5f874f0a06e8ff7263f0ee6225e"},
+    {file = "pytest-7.2.2.tar.gz", hash = "sha256:c99ab0c73aceb050f68929bc93af19ab6db0558791c6a0715723abe9d0ade9d4"},
+]
+
+[package.dependencies]
+attrs = ">=19.2.0"
+colorama = {version = "*", markers = "sys_platform == \"win32\""}
+exceptiongroup = {version = ">=1.0.0rc8", markers = "python_version < \"3.11\""}
+iniconfig = "*"
+packaging = "*"
+pluggy = ">=0.12,<2.0"
+tomli = {version = ">=1.0.0", markers = "python_version < \"3.11\""}
+
+[package.extras]
+testing = ["argcomplete", "hypothesis (>=3.56)", "mock", "nose", "pygments (>=2.7.2)", "requests", "xmlschema"]
+
+[[package]]
+name = "pytest-asyncio"
+version = "0.18.3"
+description = "Pytest support for asyncio"
+optional = false
+python-versions = ">=3.7"
+groups = ["dev"]
+files = [
+    {file = "pytest-asyncio-0.18.3.tar.gz", hash = "sha256:7659bdb0a9eb9c6e3ef992eef11a2b3e69697800ad02fb06374a210d85b29f91"},
+    {file = "pytest_asyncio-0.18.3-1-py3-none-any.whl", hash = "sha256:16cf40bdf2b4fb7fc8e4b82bd05ce3fbcd454cbf7b92afc445fe299dabb88213"},
+    {file = "pytest_asyncio-0.18.3-py3-none-any.whl", hash = "sha256:8fafa6c52161addfd41ee7ab35f11836c5a16ec208f93ee388f752bea3493a84"},
+]
+
+[package.dependencies]
+pytest = ">=6.1.0"
+
+[package.extras]
+testing = ["coverage (==6.2)", "flaky (>=3.5.0)", "hypothesis (>=5.7.1)", "mypy (==0.931)", "pytest-trio (>=0.7.0)"]
+
+[[package]]
+name = "pytest-cov"
+version = "3.0.0"
+description = "Pytest plugin for measuring coverage."
+optional = false
+python-versions = ">=3.6"
+groups = ["dev"]
+files = [
+    {file = "pytest-cov-3.0.0.tar.gz", hash = "sha256:e7f0f5b1617d2210a2cabc266dfe2f4c75a8d32fb89eafb7ad9d06f6d076d470"},
+    {file = "pytest_cov-3.0.0-py3-none-any.whl", hash = "sha256:578d5d15ac4a25e5f961c938b85a05b09fdaae9deef3bb6de9a6e766622ca7a6"},
+]
+
+[package.dependencies]
+coverage = {version = ">=5.2.1", extras = ["toml"]}
+pytest = ">=4.6"
+
+[package.extras]
+testing = ["fields", "hunter", "process-tests", "pytest-xdist", "six", "virtualenv"]
+
+[[package]]
+name = "pytest-django"
+version = "4.5.2"
+description = "A Django plugin for pytest."
+optional = false
+python-versions = ">=3.5"
+groups = ["dev"]
+files = [
+    {file = "pytest-django-4.5.2.tar.gz", hash = "sha256:d9076f759bb7c36939dbdd5ae6633c18edfc2902d1a69fdbefd2426b970ce6c2"},
+    {file = "pytest_django-4.5.2-py3-none-any.whl", hash = "sha256:c60834861933773109334fe5a53e83d1ef4828f2203a1d6a0fa9972f4f75ab3e"},
+]
+
+[package.dependencies]
+pytest = ">=5.4.0"
+
+[package.extras]
+docs = ["sphinx", "sphinx-rtd-theme"]
+testing = ["Django", "django-configurations (>=2.0)"]
+
+[[package]]
+name = "pytest-freezer"
+version = "0.4.8"
+description = "Pytest plugin providing a fixture interface for spulec/freezegun"
+optional = false
+python-versions = ">= 3.6"
+groups = ["dev"]
+files = [
+    {file = "pytest_freezer-0.4.8-py3-none-any.whl", hash = "sha256:644ce7ddb8ba52b92a1df0a80a699bad2b93514c55cf92e9f2517b68ebe74814"},
+    {file = "pytest_freezer-0.4.8.tar.gz", hash = "sha256:8ee2f724b3ff3540523fa355958a22e6f4c1c819928b78a7a183ae4248ce6ee6"},
+]
+
+[package.dependencies]
+freezegun = ">=1.0"
+pytest = ">=3.6"
+
+[[package]]
+name = "pytest-mock"
+version = "3.7.0"
+description = "Thin-wrapper around the mock package for easier use with pytest"
+optional = false
+python-versions = ">=3.7"
+groups = ["dev"]
+files = [
+    {file = "pytest-mock-3.7.0.tar.gz", hash = "sha256:5112bd92cc9f186ee96e1a92efc84969ea494939c3aead39c50f421c4cc69534"},
+    {file = "pytest_mock-3.7.0-py3-none-any.whl", hash = "sha256:6cff27cec936bf81dc5ee87f07132b807bcda51106b5ec4b90a04331cba76231"},
+]
+
+[package.dependencies]
+pytest = ">=5.0"
+
+[package.extras]
+dev = ["pre-commit", "pytest-asyncio", "tox"]
+
+[[package]]
+name = "pytest-pretty"
+version = "1.1.0"
+description = "pytest plugin for printing summary data as I want it"
+optional = false
+python-versions = ">=3.7"
+groups = ["dev"]
+files = [
+    {file = "pytest_pretty-1.1.0-py3-none-any.whl", hash = "sha256:e7e63e0437694e5a7c557d99c81d6e29e0dcaab3b6b9dcb3ba23ddf3eebb5b42"},
+    {file = "pytest_pretty-1.1.0.tar.gz", hash = "sha256:425e116c1ed10ce67eeb688f22d1bcb91ca58a97986026bf42c0717da80740b3"},
+]
+
+[package.dependencies]
+pytest = ">=7"
+rich = ">=12"
+
+[[package]]
+name = "pytest-xdist"
+version = "3.6.1"
+description = "pytest xdist plugin for distributed testing, most importantly across multiple CPUs"
+optional = false
+python-versions = ">=3.8"
+groups = ["dev"]
+files = [
+    {file = "pytest_xdist-3.6.1-py3-none-any.whl", hash = "sha256:9ed4adfb68a016610848639bb7e02c9352d5d9f03d04809919e2dafc3be4cca7"},
+    {file = "pytest_xdist-3.6.1.tar.gz", hash = "sha256:ead156a4db231eec769737f57668ef58a2084a34b2e55c4a8fa20d861107300d"},
+]
+
+[package.dependencies]
+execnet = ">=2.1"
+pytest = ">=7.0.0"
+
+[package.extras]
+psutil = ["psutil (>=3.0)"]
+setproctitle = ["setproctitle"]
+testing = ["filelock"]
+
+[[package]]
+name = "python-dateutil"
+version = "2.9.0.post0"
+description = "Extensions to the standard Python datetime module"
+optional = false
+python-versions = "!=3.0.*,!=3.1.*,!=3.2.*,>=2.7"
+groups = ["main", "dev"]
+files = [
+    {file = "python-dateutil-2.9.0.post0.tar.gz", hash = "sha256:37dd54208da7e1cd875388217d5e00ebd4179249f90fb72437e91a35459a0ad3"},
+    {file = "python_dateutil-2.9.0.post0-py2.py3-none-any.whl", hash = "sha256:a8b2bc7bffae282281c8140a97d3aa9c14da0b136dfe83f850eea9a5f7470427"},
+]
+
+[package.dependencies]
+six = ">=1.5"
+
+[[package]]
+name = "python-dotenv"
+version = "1.0.1"
+description = "Read key-value pairs from a .env file and set them as environment variables"
+optional = false
+python-versions = ">=3.8"
+groups = ["main"]
+files = [
+    {file = "python-dotenv-1.0.1.tar.gz", hash = "sha256:e324ee90a023d808f1959c46bcbc04446a10ced277783dc6ee09987c37ec10ca"},
+    {file = "python_dotenv-1.0.1-py3-none-any.whl", hash = "sha256:f7b63ef50f1b690dddf550d03497b66d609393b40b564ed0d674909a68ebf16a"},
+]
+
+[package.extras]
+cli = ["click (>=5.0)"]
+
+[[package]]
+name = "python-flirt"
+version = "0.9.2"
+description = "A Python library for parsing, compiling, and matching Fast Library Identification and Recognition Technology (FLIRT) signatures."
+optional = false
+python-versions = ">=3.9"
+groups = ["main"]
+files = [
+    {file = "python_flirt-0.9.2-cp310-cp310-macosx_10_12_x86_64.whl", hash = "sha256:a853b217bc930738fafddd1b6c2d4e4387ffc33812f5695368b976f37f5a59ba"},
+    {file = "python_flirt-0.9.2-cp310-cp310-macosx_11_0_arm64.whl", hash = "sha256:113c0d865380117bbb5f52870b1459f9ee8fe8f6c5317d2206357c0834a2e9f3"},
+    {file = "python_flirt-0.9.2-cp310-cp310-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:87c17e413d675dcb34bb3af0e40296d20b971ff53f09f105b0135f30d96ae965"},
+    {file = "python_flirt-0.9.2-cp310-cp310-manylinux_2_17_armv7l.manylinux2014_armv7l.whl", hash = "sha256:b029cb6d1db4b422f3547aa6f153894f100e400182a05f2d87aa9270b643b2c4"},
+    {file = "python_flirt-0.9.2-cp310-cp310-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:5840aa59c218b91e70b463e0d5fe0178539bc714e001d3f3130379cc505e6344"},
+    {file = "python_flirt-0.9.2-cp310-cp310-manylinux_2_5_i686.manylinux1_i686.whl", hash = "sha256:b2a3ddc1fb778f99ee254ab534aaa94387536cd0a38f5daa93921b19232fae69"},
+    {file = "python_flirt-0.9.2-cp310-none-win32.whl", hash = "sha256:49993fed8fec8fc497f178ef75630870a910cd454d5169185282c1a92ccfe4cc"},
+    {file = "python_flirt-0.9.2-cp310-none-win_amd64.whl", hash = "sha256:e604dd2b47362cc8379afd6c160a04ee5911c21985da5781ff9df96357b8553d"},
+    {file = "python_flirt-0.9.2-cp311-cp311-macosx_10_12_x86_64.whl", hash = "sha256:3df5da165ab577fb056918342bbb45fd5952ae926609527a8fb172174d67cf8d"},
+    {file = "python_flirt-0.9.2-cp311-cp311-macosx_11_0_arm64.whl", hash = "sha256:8936b389261b7ddbf738900a114a37b1af23e428d31bbd39f1cea40c0bc82a6c"},
+    {file = "python_flirt-0.9.2-cp311-cp311-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:c369efcb1774a91f810484e4907f938ea69f18b811162c95f04907b6670937c0"},
+    {file = "python_flirt-0.9.2-cp311-cp311-manylinux_2_17_armv7l.manylinux2014_armv7l.whl", hash = "sha256:cd1e90da5de9ce4b77928f4ffaddac9b0d051e094cb82158d3ec2d4d0dd9b5b9"},
+    {file = "python_flirt-0.9.2-cp311-cp311-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:ac0662be73a482fdb09ff95cf9a408b2f8e3110f63d99f6fdff00c845e25543e"},
+    {file = "python_flirt-0.9.2-cp311-cp311-manylinux_2_5_i686.manylinux1_i686.whl", hash = "sha256:83e41452dedc730713058bb8dbbd01664c1f2cd89594cf7892f4243079cf72fa"},
+    {file = "python_flirt-0.9.2-cp311-none-win32.whl", hash = "sha256:a511b947ae64c840f136a00adca38850cadfde7dd969420f8693c2112260c7e5"},
+    {file = "python_flirt-0.9.2-cp311-none-win_amd64.whl", hash = "sha256:3e533bd2fbd5c6bab4ab1f46b4e7dd00f550f70ab6e811e5df96328aef124538"},
+    {file = "python_flirt-0.9.2-cp312-cp312-macosx_10_12_x86_64.whl", hash = "sha256:4107b1bc92a5b5fa772828d692e319e6d6bbf595feceb89436ed6f0e0ebcafec"},
+    {file = "python_flirt-0.9.2-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:2d9ae9332fa14c88a36b731bd178336989f27284bd2ec1e07215cd42389723bd"},
+    {file = "python_flirt-0.9.2-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:191f325a137339db07b83112a3a1117d4a8db2c1d17c37bbc7b9078c3fc032c7"},
+    {file = "python_flirt-0.9.2-cp312-cp312-manylinux_2_17_armv7l.manylinux2014_armv7l.whl", hash = "sha256:3ede761720ac608b2a46482cbc04b130f89ac2d3e53575b303373e1b281c5ff2"},
+    {file = "python_flirt-0.9.2-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:79b0598076926b6912596e4a79f9fa910aaf63d741ea091bb1a228df20b3895f"},
+    {file = "python_flirt-0.9.2-cp312-cp312-manylinux_2_5_i686.manylinux1_i686.whl", hash = "sha256:8f5461360d5723368733cb214c12f92a85340ea64c522ebe34d780422b26aaf8"},
+    {file = "python_flirt-0.9.2-cp312-none-win32.whl", hash = "sha256:626de70de4a49f5f252c07e6d5db1c7a3aa624922107564554da9e864e848253"},
+    {file = "python_flirt-0.9.2-cp312-none-win_amd64.whl", hash = "sha256:ecb08316ead1567c53873725106f9925c766e9dbf35af11aa650f78ba589165b"},
+    {file = "python_flirt-0.9.2-cp313-cp313-macosx_10_12_x86_64.whl", hash = "sha256:92fe65eab1587573b5b13ffb755dbb67d1fdec411425850c984566d44864c104"},
+    {file = "python_flirt-0.9.2-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:23c1a513ab31760ffcd21200c96f7027e97dd37bdfc35a09948e291c8ebe53af"},
+    {file = "python_flirt-0.9.2-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:98e9da4492303ef21d2224b7380fc22d510f7eccddc13f7a9476ce079cc30ce8"},
+    {file = "python_flirt-0.9.2-cp313-cp313-manylinux_2_17_armv7l.manylinux2014_armv7l.whl", hash = "sha256:dd3edb4cceb818558969481e60917ee607401bc86f2c079e053f6db758e2644e"},
+    {file = "python_flirt-0.9.2-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:b5fad3e4814c39799198d4f01fad89b28d45dc2ee162393936b29ba5ba65964b"},
+    {file = "python_flirt-0.9.2-cp313-cp313-manylinux_2_5_i686.manylinux1_i686.whl", hash = "sha256:2affcc3cf23f102ee6b2143801b956869307e52d6588896e2b6ee1a8dc8595f5"},
+    {file = "python_flirt-0.9.2-cp313-none-win32.whl", hash = "sha256:f75ade2755a4de967296e06105f8250c364ed0072e09107a6794cabc3b7de80d"},
+    {file = "python_flirt-0.9.2-cp313-none-win_amd64.whl", hash = "sha256:d48712f72e5769cb5ab096218924d68146b2341291373df70ec9b543124665ad"},
+    {file = "python_flirt-0.9.2-cp39-cp39-macosx_10_12_x86_64.whl", hash = "sha256:5c82c2b7a1f54c9dc020e222b4d60cb02876ed7b9ff08e2cf34c27a7d7bf86cc"},
+    {file = "python_flirt-0.9.2-cp39-cp39-macosx_11_0_arm64.whl", hash = "sha256:e46800fe6fcaaf0af1f59b7b64fe23f65cce7946c372687bc024d163390cb283"},
+    {file = "python_flirt-0.9.2-cp39-cp39-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:c3e16582059cab76c5f23c103028ea09429f2af7f365086ddcbad293e1c65317"},
+    {file = "python_flirt-0.9.2-cp39-cp39-manylinux_2_17_armv7l.manylinux2014_armv7l.whl", hash = "sha256:a98ecc2d1c0e4c77bd0878c515a295332d972034b44c5e829ef694baddd6fe16"},
+    {file = "python_flirt-0.9.2-cp39-cp39-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:2a90f41c172afe99b149d1468514ac233534078fcd78864a6964382d24fd2c5f"},
+    {file = "python_flirt-0.9.2-cp39-cp39-manylinux_2_5_i686.manylinux1_i686.whl", hash = "sha256:db7aac6bcce62d5e9aa6f3490a0df2689cda6674ad9a3f9ebe193bf6d09b4464"},
+    {file = "python_flirt-0.9.2-cp39-none-win32.whl", hash = "sha256:9fac75e70aebaf282c5af2d3f9457c12c843992027079a6ba923875d169c09ea"},
+    {file = "python_flirt-0.9.2-cp39-none-win_amd64.whl", hash = "sha256:b81b4661a907c3e9b9c60d943e404af9f198a8358c0194714da83ab6b4599d36"},
+    {file = "python_flirt-0.9.2-pp310-pypy310_pp73-macosx_10_12_x86_64.whl", hash = "sha256:aafb9802eb337b7bf63cd5bfadcc6d2686772a3a5213a43d82d8a256a9063b72"},
+    {file = "python_flirt-0.9.2-pp310-pypy310_pp73-macosx_11_0_arm64.whl", hash = "sha256:b411dbd17f8b411113f109203b3cff608d9e6cc13f516694e34436e35f6c0196"},
+    {file = "python_flirt-0.9.2-pp310-pypy310_pp73-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:8376882edb2fa931aebc89aedb9c27be0d1d5cf5ab85e266ba2f7c5dfe4cb637"},
+    {file = "python_flirt-0.9.2-pp310-pypy310_pp73-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:75d6586af3791705c1d8f20795ea8dee696c47b69632ce55d8680e063802b802"},
+    {file = "python_flirt-0.9.2-pp310-pypy310_pp73-manylinux_2_5_i686.manylinux1_i686.whl", hash = "sha256:d6c7c7f7ed7c0cdcec67cb06552d098f482a73683a23c319fa2f9fcbb787a1cc"},
+    {file = "python_flirt-0.9.2-pp39-pypy39_pp73-macosx_10_12_x86_64.whl", hash = "sha256:45f498b5021ed799f8188de04b77cf091d9386f6b26274e57b2bf661d4209a06"},
+    {file = "python_flirt-0.9.2-pp39-pypy39_pp73-macosx_11_0_arm64.whl", hash = "sha256:1c41c4990971e6d7ea343726762a59d5731b1e8df11e72612409ba34083d888c"},
+    {file = "python_flirt-0.9.2-pp39-pypy39_pp73-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:757224a7c3ab0483086b12101ab42bbe73038b1cab4612e9dc120ff8384d36e3"},
+    {file = "python_flirt-0.9.2-pp39-pypy39_pp73-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:66a6b73afec2d33923b652071d2c0c3006ad2186fff4a54c7733acb32a566473"},
+    {file = "python_flirt-0.9.2-pp39-pypy39_pp73-manylinux_2_5_i686.manylinux1_i686.whl", hash = "sha256:fe0a8dcc0bda98d235359cb75fc3960b04721ae50ec8b518e68dabdebadcd21a"},
+]
+
+[package.extras]
+dev = ["black (>=22.10.0)", "isort (>=5.10.1)", "maturin (>=1.7.4)", "mypy (>=0.982)", "pycodestyle (>=2.9.1)", "pytest (>=7.1.3)", "pytest-cov (>=4.0.0)", "pytest-instafail (>=0.4.2)", "pytest-sugar (>=0.9.4)"]
+
+[[package]]
+name = "python-magic"
+version = "0.4.27"
+description = "File type identification using libmagic"
+optional = false
+python-versions = ">=2.7, !=3.0.*, !=3.1.*, !=3.2.*, !=3.3.*, !=3.4.*"
+groups = ["main"]
+markers = "sys_platform == \"linux\""
+files = [
+    {file = "python-magic-0.4.27.tar.gz", hash = "sha256:c1ba14b08e4a5f5c31a302b7721239695b2f0f058d125bd5ce1ee36b9d9d3c3b"},
+    {file = "python_magic-0.4.27-py2.py3-none-any.whl", hash = "sha256:c212960ad306f700aa0d01e5d7a325d20548ff97eb9920dcd29513174f0294d3"},
+]
+
+[[package]]
+name = "python-tlsh"
+version = "4.5.0"
+description = "TLSH (C++ Python extension)"
+optional = false
+python-versions = ">=3.6"
+groups = ["main"]
+files = [
+    {file = "python-tlsh-4.5.0.tar.gz", hash = "sha256:55e3df72cabdf48bf576b4580d7fa2feba9c14aacde0a8bd7b1ef40b03cb7969"},
+]
+
+[[package]]
+name = "python-whois"
+version = "0.9.5"
+description = "Whois querying and parsing of domain registration information."
+optional = false
+python-versions = "*"
+groups = ["main"]
+files = [
+    {file = "python_whois-0.9.5-py3-none-any.whl", hash = "sha256:d435cf8012659745ce3b4e7c15428df9405648696727812d9eaacc36782d14e3"},
+    {file = "python_whois-0.9.5.tar.gz", hash = "sha256:18968c21484752fcc4b9a5f0af477ef6b8dc2e8bb7f1bd5c33831499c0dd41ca"},
+]
+
+[package.dependencies]
+python-dateutil = "*"
+
+[[package]]
+name = "pythonaes"
+version = "1.0"
+description = "UNKNOWN"
+optional = false
+python-versions = "*"
+groups = ["main"]
+files = [
+    {file = "pythonaes-1.0.tar.gz", hash = "sha256:71dd31c03500b8cba06f83f17603dcca1dd1c1308fbdaef752f353ed1aaf9f67"},
+]
+
+[[package]]
+name = "pytz"
+version = "2021.1"
+description = "World timezone definitions, modern and historical"
+optional = false
+python-versions = "*"
+groups = ["main"]
+files = [
+    {file = "pytz-2021.1-py2.py3-none-any.whl", hash = "sha256:eb10ce3e7736052ed3623d49975ce333bcd712c7bb19a58b9e2089d4057d0798"},
+    {file = "pytz-2021.1.tar.gz", hash = "sha256:83a4a90894bf38e243cf052c8b58f381bfe9a7a483f6a9cab140bc7f702ac4da"},
+]
+
+[[package]]
+name = "pyyaml"
+version = "6.0.2"
+description = "YAML parser and emitter for Python"
+optional = false
+python-versions = ">=3.8"
+groups = ["main", "dev"]
+files = [
+    {file = "PyYAML-6.0.2-cp310-cp310-macosx_10_9_x86_64.whl", hash = "sha256:0a9a2848a5b7feac301353437eb7d5957887edbf81d56e903999a75a3d743086"},
+    {file = "PyYAML-6.0.2-cp310-cp310-macosx_11_0_arm64.whl", hash = "sha256:29717114e51c84ddfba879543fb232a6ed60086602313ca38cce623c1d62cfbf"},
+    {file = "PyYAML-6.0.2-cp310-cp310-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:8824b5a04a04a047e72eea5cec3bc266db09e35de6bdfe34c9436ac5ee27d237"},
+    {file = "PyYAML-6.0.2-cp310-cp310-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:7c36280e6fb8385e520936c3cb3b8042851904eba0e58d277dca80a5cfed590b"},
+    {file = "PyYAML-6.0.2-cp310-cp310-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:ec031d5d2feb36d1d1a24380e4db6d43695f3748343d99434e6f5f9156aaa2ed"},
+    {file = "PyYAML-6.0.2-cp310-cp310-musllinux_1_1_aarch64.whl", hash = "sha256:936d68689298c36b53b29f23c6dbb74de12b4ac12ca6cfe0e047bedceea56180"},
+    {file = "PyYAML-6.0.2-cp310-cp310-musllinux_1_1_x86_64.whl", hash = "sha256:23502f431948090f597378482b4812b0caae32c22213aecf3b55325e049a6c68"},
+    {file = "PyYAML-6.0.2-cp310-cp310-win32.whl", hash = "sha256:2e99c6826ffa974fe6e27cdb5ed0021786b03fc98e5ee3c5bfe1fd5015f42b99"},
+    {file = "PyYAML-6.0.2-cp310-cp310-win_amd64.whl", hash = "sha256:a4d3091415f010369ae4ed1fc6b79def9416358877534caf6a0fdd2146c87a3e"},
+    {file = "PyYAML-6.0.2-cp311-cp311-macosx_10_9_x86_64.whl", hash = "sha256:cc1c1159b3d456576af7a3e4d1ba7e6924cb39de8f67111c735f6fc832082774"},
+    {file = "PyYAML-6.0.2-cp311-cp311-macosx_11_0_arm64.whl", hash = "sha256:1e2120ef853f59c7419231f3bf4e7021f1b936f6ebd222406c3b60212205d2ee"},
+    {file = "PyYAML-6.0.2-cp311-cp311-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:5d225db5a45f21e78dd9358e58a98702a0302f2659a3c6cd320564b75b86f47c"},
+    {file = "PyYAML-6.0.2-cp311-cp311-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:5ac9328ec4831237bec75defaf839f7d4564be1e6b25ac710bd1a96321cc8317"},
+    {file = "PyYAML-6.0.2-cp311-cp311-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:3ad2a3decf9aaba3d29c8f537ac4b243e36bef957511b4766cb0057d32b0be85"},
+    {file = "PyYAML-6.0.2-cp311-cp311-musllinux_1_1_aarch64.whl", hash = "sha256:ff3824dc5261f50c9b0dfb3be22b4567a6f938ccce4587b38952d85fd9e9afe4"},
+    {file = "PyYAML-6.0.2-cp311-cp311-musllinux_1_1_x86_64.whl", hash = "sha256:797b4f722ffa07cc8d62053e4cff1486fa6dc094105d13fea7b1de7d8bf71c9e"},
+    {file = "PyYAML-6.0.2-cp311-cp311-win32.whl", hash = "sha256:11d8f3dd2b9c1207dcaf2ee0bbbfd5991f571186ec9cc78427ba5bd32afae4b5"},
+    {file = "PyYAML-6.0.2-cp311-cp311-win_amd64.whl", hash = "sha256:e10ce637b18caea04431ce14fabcf5c64a1c61ec9c56b071a4b7ca131ca52d44"},
+    {file = "PyYAML-6.0.2-cp312-cp312-macosx_10_9_x86_64.whl", hash = "sha256:c70c95198c015b85feafc136515252a261a84561b7b1d51e3384e0655ddf25ab"},
+    {file = "PyYAML-6.0.2-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:ce826d6ef20b1bc864f0a68340c8b3287705cae2f8b4b1d932177dcc76721725"},
+    {file = "PyYAML-6.0.2-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:1f71ea527786de97d1a0cc0eacd1defc0985dcf6b3f17bb77dcfc8c34bec4dc5"},
+    {file = "PyYAML-6.0.2-cp312-cp312-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:9b22676e8097e9e22e36d6b7bda33190d0d400f345f23d4065d48f4ca7ae0425"},
+    {file = "PyYAML-6.0.2-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:80bab7bfc629882493af4aa31a4cfa43a4c57c83813253626916b8c7ada83476"},
+    {file = "PyYAML-6.0.2-cp312-cp312-musllinux_1_1_aarch64.whl", hash = "sha256:0833f8694549e586547b576dcfaba4a6b55b9e96098b36cdc7ebefe667dfed48"},
+    {file = "PyYAML-6.0.2-cp312-cp312-musllinux_1_1_x86_64.whl", hash = "sha256:8b9c7197f7cb2738065c481a0461e50ad02f18c78cd75775628afb4d7137fb3b"},
+    {file = "PyYAML-6.0.2-cp312-cp312-win32.whl", hash = "sha256:ef6107725bd54b262d6dedcc2af448a266975032bc85ef0172c5f059da6325b4"},
+    {file = "PyYAML-6.0.2-cp312-cp312-win_amd64.whl", hash = "sha256:7e7401d0de89a9a855c839bc697c079a4af81cf878373abd7dc625847d25cbd8"},
+    {file = "PyYAML-6.0.2-cp313-cp313-macosx_10_13_x86_64.whl", hash = "sha256:efdca5630322a10774e8e98e1af481aad470dd62c3170801852d752aa7a783ba"},
+    {file = "PyYAML-6.0.2-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:50187695423ffe49e2deacb8cd10510bc361faac997de9efef88badc3bb9e2d1"},
+    {file = "PyYAML-6.0.2-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:0ffe8360bab4910ef1b9e87fb812d8bc0a308b0d0eef8c8f44e0254ab3b07133"},
+    {file = "PyYAML-6.0.2-cp313-cp313-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:17e311b6c678207928d649faa7cb0d7b4c26a0ba73d41e99c4fff6b6c3276484"},
+    {file = "PyYAML-6.0.2-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:70b189594dbe54f75ab3a1acec5f1e3faa7e8cf2f1e08d9b561cb41b845f69d5"},
+    {file = "PyYAML-6.0.2-cp313-cp313-musllinux_1_1_aarch64.whl", hash = "sha256:41e4e3953a79407c794916fa277a82531dd93aad34e29c2a514c2c0c5fe971cc"},
+    {file = "PyYAML-6.0.2-cp313-cp313-musllinux_1_1_x86_64.whl", hash = "sha256:68ccc6023a3400877818152ad9a1033e3db8625d899c72eacb5a668902e4d652"},
+    {file = "PyYAML-6.0.2-cp313-cp313-win32.whl", hash = "sha256:bc2fa7c6b47d6bc618dd7fb02ef6fdedb1090ec036abab80d4681424b84c1183"},
+    {file = "PyYAML-6.0.2-cp313-cp313-win_amd64.whl", hash = "sha256:8388ee1976c416731879ac16da0aff3f63b286ffdd57cdeb95f3f2e085687563"},
+    {file = "PyYAML-6.0.2-cp38-cp38-macosx_10_9_x86_64.whl", hash = "sha256:24471b829b3bf607e04e88d79542a9d48bb037c2267d7927a874e6c205ca7e9a"},
+    {file = "PyYAML-6.0.2-cp38-cp38-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:d7fded462629cfa4b685c5416b949ebad6cec74af5e2d42905d41e257e0869f5"},
+    {file = "PyYAML-6.0.2-cp38-cp38-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:d84a1718ee396f54f3a086ea0a66d8e552b2ab2017ef8b420e92edbc841c352d"},
+    {file = "PyYAML-6.0.2-cp38-cp38-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:9056c1ecd25795207ad294bcf39f2db3d845767be0ea6e6a34d856f006006083"},
+    {file = "PyYAML-6.0.2-cp38-cp38-musllinux_1_1_x86_64.whl", hash = "sha256:82d09873e40955485746739bcb8b4586983670466c23382c19cffecbf1fd8706"},
+    {file = "PyYAML-6.0.2-cp38-cp38-win32.whl", hash = "sha256:43fa96a3ca0d6b1812e01ced1044a003533c47f6ee8aca31724f78e93ccc089a"},
+    {file = "PyYAML-6.0.2-cp38-cp38-win_amd64.whl", hash = "sha256:01179a4a8559ab5de078078f37e5c1a30d76bb88519906844fd7bdea1b7729ff"},
+    {file = "PyYAML-6.0.2-cp39-cp39-macosx_10_9_x86_64.whl", hash = "sha256:688ba32a1cffef67fd2e9398a2efebaea461578b0923624778664cc1c914db5d"},
+    {file = "PyYAML-6.0.2-cp39-cp39-macosx_11_0_arm64.whl", hash = "sha256:a8786accb172bd8afb8be14490a16625cbc387036876ab6ba70912730faf8e1f"},
+    {file = "PyYAML-6.0.2-cp39-cp39-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:d8e03406cac8513435335dbab54c0d385e4a49e4945d2909a581c83647ca0290"},
+    {file = "PyYAML-6.0.2-cp39-cp39-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:f753120cb8181e736c57ef7636e83f31b9c0d1722c516f7e86cf15b7aa57ff12"},
+    {file = "PyYAML-6.0.2-cp39-cp39-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:3b1fdb9dc17f5a7677423d508ab4f243a726dea51fa5e70992e59a7411c89d19"},
+    {file = "PyYAML-6.0.2-cp39-cp39-musllinux_1_1_aarch64.whl", hash = "sha256:0b69e4ce7a131fe56b7e4d770c67429700908fc0752af059838b1cfb41960e4e"},
+    {file = "PyYAML-6.0.2-cp39-cp39-musllinux_1_1_x86_64.whl", hash = "sha256:a9f8c2e67970f13b16084e04f134610fd1d374bf477b17ec1599185cf611d725"},
+    {file = "PyYAML-6.0.2-cp39-cp39-win32.whl", hash = "sha256:6395c297d42274772abc367baaa79683958044e5d3835486c16da75d2a694631"},
+    {file = "PyYAML-6.0.2-cp39-cp39-win_amd64.whl", hash = "sha256:39693e1f8320ae4f43943590b49779ffb98acb81f788220ea932a6b6c51004d8"},
+    {file = "pyyaml-6.0.2.tar.gz", hash = "sha256:d584d9ec91ad65861cc08d42e834324ef890a082e591037abe114850ff7bbc3e"},
+]
+
+[[package]]
+name = "pyzipper"
+version = "0.3.6"
+description = "AES encryption for zipfile."
+optional = false
+python-versions = ">=3.4"
+groups = ["main"]
+files = [
+    {file = "pyzipper-0.3.6-py2.py3-none-any.whl", hash = "sha256:6d097f465bfa47796b1494e12ea65d1478107d38e13bc56f6e58eedc4f6c1a87"},
+    {file = "pyzipper-0.3.6.tar.gz", hash = "sha256:0adca90a00c36a93fbe49bfa8c5add452bfe4ef85a1b8e3638739dd1c7b26bfc"},
+]
+
+[package.dependencies]
+pycryptodomex = "*"
+
+[[package]]
+name = "rat-king-parser"
+version = "4.1.6"
+description = "A robust, multiprocessing-capable, multi-family RAT config parser/config extractor for AsyncRAT, DcRAT, VenomRAT, QuasarRAT, XWorm, Xeno RAT, and cloned/derivative RAT families."
+optional = false
+python-versions = ">=3.10"
+groups = ["main"]
+files = [
+    {file = "rat_king_parser-4.1.6-py3-none-any.whl", hash = "sha256:b5249842b8ea77b3d647cd6a559f39b51c4a15719a2d9cb0285deeb709c5cca9"},
+    {file = "rat_king_parser-4.1.6.tar.gz", hash = "sha256:ea3db0274cb158e797953561624b9c9d513fcf34c5a6be53a41971b8008a079a"},
+]
+
+[package.dependencies]
+dnfile = "*"
+pycryptodomex = "*"
+yara-python = "*"
+
+[package.extras]
+dev = ["pre-commit"]
+maco = ["maco", "validators"]
+
+[[package]]
+name = "requests"
+version = "2.32.4"
+description = "Python HTTP for Humans."
+optional = false
+python-versions = ">=3.8"
+groups = ["main"]
+files = [
+    {file = "requests-2.32.4-py3-none-any.whl", hash = "sha256:27babd3cda2a6d50b30443204ee89830707d396671944c998b5975b031ac2b2c"},
+    {file = "requests-2.32.4.tar.gz", hash = "sha256:27d0316682c8a29834d3264820024b62a36942083d52caf2f14c0591336d3422"},
+]
+
+[package.dependencies]
+certifi = ">=2017.4.17"
+charset_normalizer = ">=2,<4"
+idna = ">=2.5,<4"
+PySocks = {version = ">=1.5.6,<1.5.7 || >1.5.7", optional = true, markers = "extra == \"socks\""}
+urllib3 = ">=1.21.1,<3"
+
+[package.extras]
+socks = ["PySocks (>=1.5.6,!=1.5.7)"]
+use-chardet-on-py3 = ["chardet (>=3.0.2,<6)"]
+
+[[package]]
+name = "requests-file"
+version = "2.1.0"
+description = "File transport adapter for Requests"
+optional = false
+python-versions = "*"
+groups = ["main"]
+files = [
+    {file = "requests_file-2.1.0-py2.py3-none-any.whl", hash = "sha256:cf270de5a4c5874e84599fc5778303d496c10ae5e870bfa378818f35d21bda5c"},
+    {file = "requests_file-2.1.0.tar.gz", hash = "sha256:0f549a3f3b0699415ac04d167e9cb39bccfb730cb832b4d20be3d9867356e658"},
+]
+
+[package.dependencies]
+requests = ">=1.0.0"
+
+[[package]]
+name = "rich"
+version = "13.9.4"
+description = "Render rich text, tables, progress bars, syntax highlighting, markdown and more to the terminal"
+optional = false
+python-versions = ">=3.8.0"
+groups = ["main", "dev"]
+files = [
+    {file = "rich-13.9.4-py3-none-any.whl", hash = "sha256:6049d5e6ec054bf2779ab3358186963bac2ea89175919d699e378b99738c2a90"},
+    {file = "rich-13.9.4.tar.gz", hash = "sha256:439594978a49a09530cff7ebc4b5c7103ef57baf48d5ea3184f21d9a2befa098"},
+]
+
+[package.dependencies]
+markdown-it-py = ">=2.2.0"
+pygments = ">=2.13.0,<3.0.0"
+typing-extensions = {version = ">=4.0.0,<5.0", markers = "python_version < \"3.11\""}
+
+[package.extras]
+jupyter = ["ipywidgets (>=7.5.1,<9)"]
+
+[[package]]
+name = "ruamel-yaml"
+version = "0.18.10"
+description = "ruamel.yaml is a YAML parser/emitter that supports roundtrip preservation of comments, seq/map flow style, and map key order"
+optional = false
+python-versions = ">=3.7"
+groups = ["main"]
+files = [
+    {file = "ruamel.yaml-0.18.10-py3-none-any.whl", hash = "sha256:30f22513ab2301b3d2b577adc121c6471f28734d3d9728581245f1e76468b4f1"},
+    {file = "ruamel.yaml-0.18.10.tar.gz", hash = "sha256:20c86ab29ac2153f80a428e1254a8adf686d3383df04490514ca3b79a362db58"},
+]
+
+[package.dependencies]
+"ruamel.yaml.clib" = {version = ">=0.2.7", markers = "platform_python_implementation == \"CPython\" and python_version < \"3.13\""}
+
+[package.extras]
+docs = ["mercurial (>5.7)", "ryd"]
+jinja2 = ["ruamel.yaml.jinja2 (>=0.2)"]
+
+[[package]]
+name = "ruamel-yaml-clib"
+version = "0.2.12"
+description = "C version of reader, parser and emitter for ruamel.yaml derived from libyaml"
+optional = false
+python-versions = ">=3.9"
+groups = ["main"]
+markers = "platform_python_implementation == \"CPython\" and python_version < \"3.13\""
+files = [
+    {file = "ruamel.yaml.clib-0.2.12-cp310-cp310-macosx_13_0_arm64.whl", hash = "sha256:11f891336688faf5156a36293a9c362bdc7c88f03a8a027c2c1d8e0bcde998e5"},
+    {file = "ruamel.yaml.clib-0.2.12-cp310-cp310-manylinux2014_aarch64.whl", hash = "sha256:a606ef75a60ecf3d924613892cc603b154178ee25abb3055db5062da811fd969"},
+    {file = "ruamel.yaml.clib-0.2.12-cp310-cp310-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:fd5415dded15c3822597455bc02bcd66e81ef8b7a48cb71a33628fc9fdde39df"},
+    {file = "ruamel.yaml.clib-0.2.12-cp310-cp310-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:f66efbc1caa63c088dead1c4170d148eabc9b80d95fb75b6c92ac0aad2437d76"},
+    {file = "ruamel.yaml.clib-0.2.12-cp310-cp310-musllinux_1_1_i686.whl", hash = "sha256:22353049ba4181685023b25b5b51a574bce33e7f51c759371a7422dcae5402a6"},
+    {file = "ruamel.yaml.clib-0.2.12-cp310-cp310-musllinux_1_1_x86_64.whl", hash = "sha256:932205970b9f9991b34f55136be327501903f7c66830e9760a8ffb15b07f05cd"},
+    {file = "ruamel.yaml.clib-0.2.12-cp310-cp310-musllinux_1_2_aarch64.whl", hash = "sha256:a52d48f4e7bf9005e8f0a89209bf9a73f7190ddf0489eee5eb51377385f59f2a"},
+    {file = "ruamel.yaml.clib-0.2.12-cp310-cp310-win32.whl", hash = "sha256:3eac5a91891ceb88138c113f9db04f3cebdae277f5d44eaa3651a4f573e6a5da"},
+    {file = "ruamel.yaml.clib-0.2.12-cp310-cp310-win_amd64.whl", hash = "sha256:ab007f2f5a87bd08ab1499bdf96f3d5c6ad4dcfa364884cb4549aa0154b13a28"},
+    {file = "ruamel.yaml.clib-0.2.12-cp311-cp311-macosx_13_0_arm64.whl", hash = "sha256:4a6679521a58256a90b0d89e03992c15144c5f3858f40d7c18886023d7943db6"},
+    {file = "ruamel.yaml.clib-0.2.12-cp311-cp311-manylinux2014_aarch64.whl", hash = "sha256:d84318609196d6bd6da0edfa25cedfbabd8dbde5140a0a23af29ad4b8f91fb1e"},
+    {file = "ruamel.yaml.clib-0.2.12-cp311-cp311-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:bb43a269eb827806502c7c8efb7ae7e9e9d0573257a46e8e952f4d4caba4f31e"},
+    {file = "ruamel.yaml.clib-0.2.12-cp311-cp311-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:811ea1594b8a0fb466172c384267a4e5e367298af6b228931f273b111f17ef52"},
+    {file = "ruamel.yaml.clib-0.2.12-cp311-cp311-musllinux_1_1_i686.whl", hash = "sha256:cf12567a7b565cbf65d438dec6cfbe2917d3c1bdddfce84a9930b7d35ea59642"},
+    {file = "ruamel.yaml.clib-0.2.12-cp311-cp311-musllinux_1_1_x86_64.whl", hash = "sha256:7dd5adc8b930b12c8fc5b99e2d535a09889941aa0d0bd06f4749e9a9397c71d2"},
+    {file = "ruamel.yaml.clib-0.2.12-cp311-cp311-musllinux_1_2_aarch64.whl", hash = "sha256:1492a6051dab8d912fc2adeef0e8c72216b24d57bd896ea607cb90bb0c4981d3"},
+    {file = "ruamel.yaml.clib-0.2.12-cp311-cp311-win32.whl", hash = "sha256:bd0a08f0bab19093c54e18a14a10b4322e1eacc5217056f3c063bd2f59853ce4"},
+    {file = "ruamel.yaml.clib-0.2.12-cp311-cp311-win_amd64.whl", hash = "sha256:a274fb2cb086c7a3dea4322ec27f4cb5cc4b6298adb583ab0e211a4682f241eb"},
+    {file = "ruamel.yaml.clib-0.2.12-cp312-cp312-macosx_14_0_arm64.whl", hash = "sha256:20b0f8dc160ba83b6dcc0e256846e1a02d044e13f7ea74a3d1d56ede4e48c632"},
+    {file = "ruamel.yaml.clib-0.2.12-cp312-cp312-manylinux2014_aarch64.whl", hash = "sha256:943f32bc9dedb3abff9879edc134901df92cfce2c3d5c9348f172f62eb2d771d"},
+    {file = "ruamel.yaml.clib-0.2.12-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:95c3829bb364fdb8e0332c9931ecf57d9be3519241323c5274bd82f709cebc0c"},
+    {file = "ruamel.yaml.clib-0.2.12-cp312-cp312-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:749c16fcc4a2b09f28843cda5a193e0283e47454b63ec4b81eaa2242f50e4ccd"},
+    {file = "ruamel.yaml.clib-0.2.12-cp312-cp312-musllinux_1_1_i686.whl", hash = "sha256:bf165fef1f223beae7333275156ab2022cffe255dcc51c27f066b4370da81e31"},
+    {file = "ruamel.yaml.clib-0.2.12-cp312-cp312-musllinux_1_1_x86_64.whl", hash = "sha256:32621c177bbf782ca5a18ba4d7af0f1082a3f6e517ac2a18b3974d4edf349680"},
+    {file = "ruamel.yaml.clib-0.2.12-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:b82a7c94a498853aa0b272fd5bc67f29008da798d4f93a2f9f289feb8426a58d"},
+    {file = "ruamel.yaml.clib-0.2.12-cp312-cp312-win32.whl", hash = "sha256:e8c4ebfcfd57177b572e2040777b8abc537cdef58a2120e830124946aa9b42c5"},
+    {file = "ruamel.yaml.clib-0.2.12-cp312-cp312-win_amd64.whl", hash = "sha256:0467c5965282c62203273b838ae77c0d29d7638c8a4e3a1c8bdd3602c10904e4"},
+    {file = "ruamel.yaml.clib-0.2.12-cp313-cp313-macosx_14_0_arm64.whl", hash = "sha256:4c8c5d82f50bb53986a5e02d1b3092b03622c02c2eb78e29bec33fd9593bae1a"},
+    {file = "ruamel.yaml.clib-0.2.12-cp313-cp313-manylinux2014_aarch64.whl", hash = "sha256:e7e3736715fbf53e9be2a79eb4db68e4ed857017344d697e8b9749444ae57475"},
+    {file = "ruamel.yaml.clib-0.2.12-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:0b7e75b4965e1d4690e93021adfcecccbca7d61c7bddd8e22406ef2ff20d74ef"},
+    {file = "ruamel.yaml.clib-0.2.12-cp313-cp313-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:96777d473c05ee3e5e3c3e999f5d23c6f4ec5b0c38c098b3a5229085f74236c6"},
+    {file = "ruamel.yaml.clib-0.2.12-cp313-cp313-musllinux_1_1_i686.whl", hash = "sha256:3bc2a80e6420ca8b7d3590791e2dfc709c88ab9152c00eeb511c9875ce5778bf"},
+    {file = "ruamel.yaml.clib-0.2.12-cp313-cp313-musllinux_1_1_x86_64.whl", hash = "sha256:e188d2699864c11c36cdfdada94d781fd5d6b0071cd9c427bceb08ad3d7c70e1"},
+    {file = "ruamel.yaml.clib-0.2.12-cp313-cp313-musllinux_1_2_aarch64.whl", hash = "sha256:4f6f3eac23941b32afccc23081e1f50612bdbe4e982012ef4f5797986828cd01"},
+    {file = "ruamel.yaml.clib-0.2.12-cp313-cp313-win32.whl", hash = "sha256:6442cb36270b3afb1b4951f060eccca1ce49f3d087ca1ca4563a6eb479cb3de6"},
+    {file = "ruamel.yaml.clib-0.2.12-cp313-cp313-win_amd64.whl", hash = "sha256:e5b8daf27af0b90da7bb903a876477a9e6d7270be6146906b276605997c7e9a3"},
+    {file = "ruamel.yaml.clib-0.2.12-cp39-cp39-macosx_12_0_arm64.whl", hash = "sha256:fc4b630cd3fa2cf7fce38afa91d7cfe844a9f75d7f0f36393fa98815e911d987"},
+    {file = "ruamel.yaml.clib-0.2.12-cp39-cp39-manylinux2014_aarch64.whl", hash = "sha256:bc5f1e1c28e966d61d2519f2a3d451ba989f9ea0f2307de7bc45baa526de9e45"},
+    {file = "ruamel.yaml.clib-0.2.12-cp39-cp39-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:5a0e060aace4c24dcaf71023bbd7d42674e3b230f7e7b97317baf1e953e5b519"},
+    {file = "ruamel.yaml.clib-0.2.12-cp39-cp39-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:e2f1c3765db32be59d18ab3953f43ab62a761327aafc1594a2a1fbe038b8b8a7"},
+    {file = "ruamel.yaml.clib-0.2.12-cp39-cp39-musllinux_1_1_i686.whl", hash = "sha256:d85252669dc32f98ebcd5d36768f5d4faeaeaa2d655ac0473be490ecdae3c285"},
+    {file = "ruamel.yaml.clib-0.2.12-cp39-cp39-musllinux_1_1_x86_64.whl", hash = "sha256:e143ada795c341b56de9418c58d028989093ee611aa27ffb9b7f609c00d813ed"},
+    {file = "ruamel.yaml.clib-0.2.12-cp39-cp39-musllinux_1_2_aarch64.whl", hash = "sha256:2c59aa6170b990d8d2719323e628aaf36f3bfbc1c26279c0eeeb24d05d2d11c7"},
+    {file = "ruamel.yaml.clib-0.2.12-cp39-cp39-win32.whl", hash = "sha256:beffaed67936fbbeffd10966a4eb53c402fafd3d6833770516bf7314bc6ffa12"},
+    {file = "ruamel.yaml.clib-0.2.12-cp39-cp39-win_amd64.whl", hash = "sha256:040ae85536960525ea62868b642bdb0c2cc6021c9f9d507810c0c604e66f5a7b"},
+    {file = "ruamel.yaml.clib-0.2.12.tar.gz", hash = "sha256:6c8fbb13ec503f99a91901ab46e0b07ae7941cd527393187039aec586fdfd36f"},
+]
+
+[[package]]
+name = "ruff"
+version = "0.9.4"
+description = "An extremely fast Python linter and code formatter, written in Rust."
+optional = false
+python-versions = ">=3.7"
+groups = ["main"]
+files = [
+    {file = "ruff-0.9.4-py3-none-linux_armv6l.whl", hash = "sha256:64e73d25b954f71ff100bb70f39f1ee09e880728efb4250c632ceed4e4cdf706"},
+    {file = "ruff-0.9.4-py3-none-macosx_10_12_x86_64.whl", hash = "sha256:6ce6743ed64d9afab4fafeaea70d3631b4d4b28b592db21a5c2d1f0ef52934bf"},
+    {file = "ruff-0.9.4-py3-none-macosx_11_0_arm64.whl", hash = "sha256:54499fb08408e32b57360f6f9de7157a5fec24ad79cb3f42ef2c3f3f728dfe2b"},
+    {file = "ruff-0.9.4-py3-none-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:37c892540108314a6f01f105040b5106aeb829fa5fb0561d2dcaf71485021137"},
+    {file = "ruff-0.9.4-py3-none-manylinux_2_17_armv7l.manylinux2014_armv7l.whl", hash = "sha256:de9edf2ce4b9ddf43fd93e20ef635a900e25f622f87ed6e3047a664d0e8f810e"},
+    {file = "ruff-0.9.4-py3-none-manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:87c90c32357c74f11deb7fbb065126d91771b207bf9bfaaee01277ca59b574ec"},
+    {file = "ruff-0.9.4-py3-none-manylinux_2_17_ppc64.manylinux2014_ppc64.whl", hash = "sha256:56acd6c694da3695a7461cc55775f3a409c3815ac467279dfa126061d84b314b"},
+    {file = "ruff-0.9.4-py3-none-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:e0c93e7d47ed951b9394cf352d6695b31498e68fd5782d6cbc282425655f687a"},
+    {file = "ruff-0.9.4-py3-none-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:1d4c8772670aecf037d1bf7a07c39106574d143b26cfe5ed1787d2f31e800214"},
+    {file = "ruff-0.9.4-py3-none-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:bfc5f1d7afeda8d5d37660eeca6d389b142d7f2b5a1ab659d9214ebd0e025231"},
+    {file = "ruff-0.9.4-py3-none-musllinux_1_2_aarch64.whl", hash = "sha256:faa935fc00ae854d8b638c16a5f1ce881bc3f67446957dd6f2af440a5fc8526b"},
+    {file = "ruff-0.9.4-py3-none-musllinux_1_2_armv7l.whl", hash = "sha256:a6c634fc6f5a0ceae1ab3e13c58183978185d131a29c425e4eaa9f40afe1e6d6"},
+    {file = "ruff-0.9.4-py3-none-musllinux_1_2_i686.whl", hash = "sha256:433dedf6ddfdec7f1ac7575ec1eb9844fa60c4c8c2f8887a070672b8d353d34c"},
+    {file = "ruff-0.9.4-py3-none-musllinux_1_2_x86_64.whl", hash = "sha256:d612dbd0f3a919a8cc1d12037168bfa536862066808960e0cc901404b77968f0"},
+    {file = "ruff-0.9.4-py3-none-win32.whl", hash = "sha256:db1192ddda2200671f9ef61d9597fcef89d934f5d1705e571a93a67fb13a4402"},
+    {file = "ruff-0.9.4-py3-none-win_amd64.whl", hash = "sha256:05bebf4cdbe3ef75430d26c375773978950bbf4ee3c95ccb5448940dc092408e"},
+    {file = "ruff-0.9.4-py3-none-win_arm64.whl", hash = "sha256:585792f1e81509e38ac5123492f8875fbc36f3ede8185af0a26df348e5154f41"},
+    {file = "ruff-0.9.4.tar.gz", hash = "sha256:6907ee3529244bb0ed066683e075f09285b38dd5b4039370df6ff06041ca19e7"},
+]
+
+[[package]]
+name = "service-identity"
+version = "24.2.0"
+description = "Service identity verification for pyOpenSSL & cryptography."
+optional = false
+python-versions = ">=3.8"
+groups = ["main"]
+files = [
+    {file = "service_identity-24.2.0-py3-none-any.whl", hash = "sha256:6b047fbd8a84fd0bb0d55ebce4031e400562b9196e1e0d3e0fe2b8a59f6d4a85"},
+    {file = "service_identity-24.2.0.tar.gz", hash = "sha256:b8683ba13f0d39c6cd5d625d2c5f65421d6d707b013b375c355751557cbe8e09"},
+]
+
+[package.dependencies]
+attrs = ">=19.1.0"
+cryptography = "*"
+pyasn1 = "*"
+pyasn1-modules = "*"
+
+[package.extras]
+dev = ["coverage[toml] (>=5.0.2)", "idna", "mypy", "pyopenssl", "pytest", "types-pyopenssl"]
+docs = ["furo", "myst-parser", "pyopenssl", "sphinx", "sphinx-notfound-page"]
+idna = ["idna"]
+mypy = ["idna", "mypy", "types-pyopenssl"]
+tests = ["coverage[toml] (>=5.0.2)", "pytest"]
+
+[[package]]
+name = "setproctitle"
+version = "1.3.2"
+description = "A Python module to customize the process title"
+optional = false
+python-versions = ">=3.7"
+groups = ["main"]
+files = [
+    {file = "setproctitle-1.3.2-cp310-cp310-macosx_10_9_universal2.whl", hash = "sha256:288943dec88e178bb2fd868adf491197cc0fc8b6810416b1c6775e686bab87fe"},
+    {file = "setproctitle-1.3.2-cp310-cp310-macosx_10_9_x86_64.whl", hash = "sha256:630f6fe5e24a619ccf970c78e084319ee8be5be253ecc9b5b216b0f474f5ef18"},
+    {file = "setproctitle-1.3.2-cp310-cp310-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:6c877691b90026670e5a70adfbcc735460a9f4c274d35ec5e8a43ce3f8443005"},
+    {file = "setproctitle-1.3.2-cp310-cp310-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:7a55fe05f15c10e8c705038777656fe45e3bd676d49ad9ac8370b75c66dd7cd7"},
+    {file = "setproctitle-1.3.2-cp310-cp310-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:ab45146c71ca6592c9cc8b354a2cc9cc4843c33efcbe1d245d7d37ce9696552d"},
+    {file = "setproctitle-1.3.2-cp310-cp310-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:e00c9d5c541a2713ba0e657e0303bf96ddddc412ef4761676adc35df35d7c246"},
+    {file = "setproctitle-1.3.2-cp310-cp310-musllinux_1_1_aarch64.whl", hash = "sha256:265ecbe2c6eafe82e104f994ddd7c811520acdd0647b73f65c24f51374cf9494"},
+    {file = "setproctitle-1.3.2-cp310-cp310-musllinux_1_1_i686.whl", hash = "sha256:c2c46200656280a064073447ebd363937562debef329482fd7e570c8d498f806"},
+    {file = "setproctitle-1.3.2-cp310-cp310-musllinux_1_1_ppc64le.whl", hash = "sha256:fa2f50678f04fda7a75d0fe5dd02bbdd3b13cbe6ed4cf626e4472a7ccf47ae94"},
+    {file = "setproctitle-1.3.2-cp310-cp310-musllinux_1_1_x86_64.whl", hash = "sha256:7f2719a398e1a2c01c2a63bf30377a34d0b6ef61946ab9cf4d550733af8f1ef1"},
+    {file = "setproctitle-1.3.2-cp310-cp310-win32.whl", hash = "sha256:e425be62524dc0c593985da794ee73eb8a17abb10fe692ee43bb39e201d7a099"},
+    {file = "setproctitle-1.3.2-cp310-cp310-win_amd64.whl", hash = "sha256:e85e50b9c67854f89635a86247412f3ad66b132a4d8534ac017547197c88f27d"},
+    {file = "setproctitle-1.3.2-cp311-cp311-macosx_10_9_universal2.whl", hash = "sha256:2a97d51c17d438cf5be284775a322d57b7ca9505bb7e118c28b1824ecaf8aeaa"},
+    {file = "setproctitle-1.3.2-cp311-cp311-macosx_10_9_x86_64.whl", hash = "sha256:587c7d6780109fbd8a627758063d08ab0421377c0853780e5c356873cdf0f077"},
+    {file = "setproctitle-1.3.2-cp311-cp311-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:d7d17c8bd073cbf8d141993db45145a70b307385b69171d6b54bcf23e5d644de"},
+    {file = "setproctitle-1.3.2-cp311-cp311-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:e932089c35a396dc31a5a1fc49889dd559548d14cb2237adae260382a090382e"},
+    {file = "setproctitle-1.3.2-cp311-cp311-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:8e4f8f12258a8739c565292a551c3db62cca4ed4f6b6126664e2381acb4931bf"},
+    {file = "setproctitle-1.3.2-cp311-cp311-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:570d255fd99c7f14d8f91363c3ea96bd54f8742275796bca67e1414aeca7d8c3"},
+    {file = "setproctitle-1.3.2-cp311-cp311-musllinux_1_1_aarch64.whl", hash = "sha256:a8e0881568c5e6beff91ef73c0ec8ac2a9d3ecc9edd6bd83c31ca34f770910c4"},
+    {file = "setproctitle-1.3.2-cp311-cp311-musllinux_1_1_i686.whl", hash = "sha256:4bba3be4c1fabf170595b71f3af46c6d482fbe7d9e0563999b49999a31876f77"},
+    {file = "setproctitle-1.3.2-cp311-cp311-musllinux_1_1_ppc64le.whl", hash = "sha256:37ece938110cab2bb3957e3910af8152ca15f2b6efdf4f2612e3f6b7e5459b80"},
+    {file = "setproctitle-1.3.2-cp311-cp311-musllinux_1_1_x86_64.whl", hash = "sha256:db684d6bbb735a80bcbc3737856385b55d53f8a44ce9b46e9a5682c5133a9bf7"},
+    {file = "setproctitle-1.3.2-cp311-cp311-win32.whl", hash = "sha256:ca58cd260ea02759238d994cfae844fc8b1e206c684beb8f38877dcab8451dfc"},
+    {file = "setproctitle-1.3.2-cp311-cp311-win_amd64.whl", hash = "sha256:88486e6cce2a18a033013d17b30a594f1c5cb42520c49c19e6ade40b864bb7ff"},
+    {file = "setproctitle-1.3.2-cp37-cp37m-macosx_10_9_x86_64.whl", hash = "sha256:92c626edc66169a1b09e9541b9c0c9f10488447d8a2b1d87c8f0672e771bc927"},
+    {file = "setproctitle-1.3.2-cp37-cp37m-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:710e16fa3bade3b026907e4a5e841124983620046166f355bbb84be364bf2a02"},
+    {file = "setproctitle-1.3.2-cp37-cp37m-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:1f29b75e86260b0ab59adb12661ef9f113d2f93a59951373eb6d68a852b13e83"},
+    {file = "setproctitle-1.3.2-cp37-cp37m-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:1c8d9650154afaa86a44ff195b7b10d683c73509d085339d174e394a22cccbb9"},
+    {file = "setproctitle-1.3.2-cp37-cp37m-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:f0452282258dfcc01697026a8841258dd2057c4438b43914b611bccbcd048f10"},
+    {file = "setproctitle-1.3.2-cp37-cp37m-musllinux_1_1_aarch64.whl", hash = "sha256:e49ae693306d7624015f31cb3e82708916759d592c2e5f72a35c8f4cc8aef258"},
+    {file = "setproctitle-1.3.2-cp37-cp37m-musllinux_1_1_i686.whl", hash = "sha256:1ff863a20d1ff6ba2c24e22436a3daa3cd80be1dfb26891aae73f61b54b04aca"},
+    {file = "setproctitle-1.3.2-cp37-cp37m-musllinux_1_1_ppc64le.whl", hash = "sha256:55ce1e9925ce1765865442ede9dca0ba9bde10593fcd570b1f0fa25d3ec6b31c"},
+    {file = "setproctitle-1.3.2-cp37-cp37m-musllinux_1_1_x86_64.whl", hash = "sha256:7fe9df7aeb8c64db6c34fc3b13271a363475d77bc157d3f00275a53910cb1989"},
+    {file = "setproctitle-1.3.2-cp37-cp37m-win32.whl", hash = "sha256:e5c50e164cd2459bc5137c15288a9ef57160fd5cbf293265ea3c45efe7870865"},
+    {file = "setproctitle-1.3.2-cp37-cp37m-win_amd64.whl", hash = "sha256:a499fff50387c1520c085a07578a000123f519e5f3eee61dd68e1d301659651f"},
+    {file = "setproctitle-1.3.2-cp38-cp38-macosx_10_9_universal2.whl", hash = "sha256:5b932c3041aa924163f4aab970c2f0e6b4d9d773f4d50326e0ea1cd69240e5c5"},
+    {file = "setproctitle-1.3.2-cp38-cp38-macosx_10_9_x86_64.whl", hash = "sha256:f4bfc89bd33ebb8e4c0e9846a09b1f5a4a86f5cb7a317e75cc42fee1131b4f4f"},
+    {file = "setproctitle-1.3.2-cp38-cp38-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:fcd3cf4286a60fdc95451d8d14e0389a6b4f5cebe02c7f2609325eb016535963"},
+    {file = "setproctitle-1.3.2-cp38-cp38-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:5fb4f769c02f63fac90989711a3fee83919f47ae9afd4758ced5d86596318c65"},
+    {file = "setproctitle-1.3.2-cp38-cp38-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:5194b4969f82ea842a4f6af2f82cd16ebdc3f1771fb2771796e6add9835c1973"},
+    {file = "setproctitle-1.3.2-cp38-cp38-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:1f0cde41857a644b7353a0060b5f94f7ba7cf593ebde5a1094da1be581ac9a31"},
+    {file = "setproctitle-1.3.2-cp38-cp38-musllinux_1_1_aarch64.whl", hash = "sha256:9124bedd8006b0e04d4e8a71a0945da9b67e7a4ab88fdad7b1440dc5b6122c42"},
+    {file = "setproctitle-1.3.2-cp38-cp38-musllinux_1_1_i686.whl", hash = "sha256:c8a09d570b39517de10ee5b718730e171251ce63bbb890c430c725c8c53d4484"},
+    {file = "setproctitle-1.3.2-cp38-cp38-musllinux_1_1_ppc64le.whl", hash = "sha256:8ff3c8cb26afaed25e8bca7b9dd0c1e36de71f35a3a0706b5c0d5172587a3827"},
+    {file = "setproctitle-1.3.2-cp38-cp38-musllinux_1_1_x86_64.whl", hash = "sha256:589be87172b238f839e19f146b9ea47c71e413e951ef0dc6db4218ddacf3c202"},
+    {file = "setproctitle-1.3.2-cp38-cp38-win32.whl", hash = "sha256:4749a2b0c9ac52f864d13cee94546606f92b981b50e46226f7f830a56a9dc8e1"},
+    {file = "setproctitle-1.3.2-cp38-cp38-win_amd64.whl", hash = "sha256:e43f315c68aa61cbdef522a2272c5a5b9b8fd03c301d3167b5e1343ef50c676c"},
+    {file = "setproctitle-1.3.2-cp39-cp39-macosx_10_9_universal2.whl", hash = "sha256:de3a540cd1817ede31f530d20e6a4935bbc1b145fd8f8cf393903b1e02f1ae76"},
+    {file = "setproctitle-1.3.2-cp39-cp39-macosx_10_9_x86_64.whl", hash = "sha256:4058564195b975ddc3f0462375c533cce310ccdd41b80ac9aed641c296c3eff4"},
+    {file = "setproctitle-1.3.2-cp39-cp39-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:1c5d5dad7c28bdd1ec4187d818e43796f58a845aa892bb4481587010dc4d362b"},
+    {file = "setproctitle-1.3.2-cp39-cp39-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:ffc61a388a5834a97953d6444a2888c24a05f2e333f9ed49f977a87bb1ad4761"},
+    {file = "setproctitle-1.3.2-cp39-cp39-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:1fa1a0fbee72b47dc339c87c890d3c03a72ea65c061ade3204f285582f2da30f"},
+    {file = "setproctitle-1.3.2-cp39-cp39-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:fe8a988c7220c002c45347430993830666e55bc350179d91fcee0feafe64e1d4"},
+    {file = "setproctitle-1.3.2-cp39-cp39-musllinux_1_1_aarch64.whl", hash = "sha256:bae283e85fc084b18ffeb92e061ff7ac5af9e183c9d1345c93e178c3e5069cbe"},
+    {file = "setproctitle-1.3.2-cp39-cp39-musllinux_1_1_i686.whl", hash = "sha256:fed18e44711c5af4b681c2b3b18f85e6f0f1b2370a28854c645d636d5305ccd8"},
+    {file = "setproctitle-1.3.2-cp39-cp39-musllinux_1_1_ppc64le.whl", hash = "sha256:b34baef93bfb20a8ecb930e395ccd2ae3268050d8cf4fe187de5e2bd806fd796"},
+    {file = "setproctitle-1.3.2-cp39-cp39-musllinux_1_1_x86_64.whl", hash = "sha256:7f0bed90a216ef28b9d227d8d73e28a8c9b88c0f48a082d13ab3fa83c581488f"},
+    {file = "setproctitle-1.3.2-cp39-cp39-win32.whl", hash = "sha256:4d8938249a7cea45ab7e1e48b77685d0f2bab1ebfa9dde23e94ab97968996a7c"},
+    {file = "setproctitle-1.3.2-cp39-cp39-win_amd64.whl", hash = "sha256:a47d97a75fd2d10c37410b180f67a5835cb1d8fdea2648fd7f359d4277f180b9"},
+    {file = "setproctitle-1.3.2-pp37-pypy37_pp73-macosx_10_9_x86_64.whl", hash = "sha256:dad42e676c5261eb50fdb16bdf3e2771cf8f99a79ef69ba88729aeb3472d8575"},
+    {file = "setproctitle-1.3.2-pp37-pypy37_pp73-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:c91b9bc8985d00239f7dc08a49927a7ca1ca8a6af2c3890feec3ed9665b6f91e"},
+    {file = "setproctitle-1.3.2-pp37-pypy37_pp73-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:e8579a43eafd246e285eb3a5b939e7158073d5087aacdd2308f23200eac2458b"},
+    {file = "setproctitle-1.3.2-pp37-pypy37_pp73-win_amd64.whl", hash = "sha256:2fbd8187948284293f43533c150cd69a0e4192c83c377da837dbcd29f6b83084"},
+    {file = "setproctitle-1.3.2-pp38-pypy38_pp73-macosx_10_9_x86_64.whl", hash = "sha256:faec934cfe5fd6ac1151c02e67156c3f526e82f96b24d550b5d51efa4a5527c6"},
+    {file = "setproctitle-1.3.2-pp38-pypy38_pp73-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:e1aafc91cbdacc9e5fe712c52077369168e6b6c346f3a9d51bf600b53eae56bb"},
+    {file = "setproctitle-1.3.2-pp38-pypy38_pp73-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:b617f12c9be61e8f4b2857be4a4319754756845dbbbd9c3718f468bbb1e17bcb"},
+    {file = "setproctitle-1.3.2-pp38-pypy38_pp73-win_amd64.whl", hash = "sha256:b2c9cb2705fc84cb8798f1ba74194f4c080aaef19d9dae843591c09b97678e98"},
+    {file = "setproctitle-1.3.2-pp39-pypy39_pp73-macosx_10_9_x86_64.whl", hash = "sha256:a149a5f7f2c5a065d4e63cb0d7a4b6d3b66e6e80f12e3f8827c4f63974cbf122"},
+    {file = "setproctitle-1.3.2-pp39-pypy39_pp73-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:2e3ac25bfc4a0f29d2409650c7532d5ddfdbf29f16f8a256fc31c47d0dc05172"},
+    {file = "setproctitle-1.3.2-pp39-pypy39_pp73-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:65d884e22037b23fa25b2baf1a3316602ed5c5971eb3e9d771a38c3a69ce6e13"},
+    {file = "setproctitle-1.3.2-pp39-pypy39_pp73-win_amd64.whl", hash = "sha256:7aa0aac1711fadffc1d51e9d00a3bea61f68443d6ac0241a224e4d622489d665"},
+    {file = "setproctitle-1.3.2.tar.gz", hash = "sha256:b9fb97907c830d260fa0658ed58afd48a86b2b88aac521135c352ff7fd3477fd"},
+]
+
+[package.extras]
+test = ["pytest"]
+
+[[package]]
+name = "setuptools"
+version = "78.1.1"
+description = "Easily download, build, install, upgrade, and uninstall Python packages"
+optional = false
+python-versions = ">=3.9"
+groups = ["main"]
+files = [
+    {file = "setuptools-78.1.1-py3-none-any.whl", hash = "sha256:c3a9c4211ff4c309edb8b8c4f1cbfa7ae324c4ba9f91ff254e3d305b9fd54561"},
+    {file = "setuptools-78.1.1.tar.gz", hash = "sha256:fcc17fd9cd898242f6b4adfaca46137a9edef687f43e6f78469692a5e70d851d"},
+]
+
+[package.extras]
+check = ["pytest-checkdocs (>=2.4)", "pytest-ruff (>=0.2.1) ; sys_platform != \"cygwin\"", "ruff (>=0.8.0) ; sys_platform != \"cygwin\""]
+core = ["importlib_metadata (>=6) ; python_version < \"3.10\"", "jaraco.functools (>=4)", "jaraco.text (>=3.7)", "more_itertools", "more_itertools (>=8.8)", "packaging (>=24.2)", "platformdirs (>=4.2.2)", "tomli (>=2.0.1) ; python_version < \"3.11\"", "wheel (>=0.43.0)"]
+cover = ["pytest-cov"]
+doc = ["furo", "jaraco.packaging (>=9.3)", "jaraco.tidelift (>=1.4)", "pygments-github-lexers (==0.0.5)", "pyproject-hooks (!=1.1)", "rst.linker (>=1.9)", "sphinx (>=3.5)", "sphinx-favicon", "sphinx-inline-tabs", "sphinx-lint", "sphinx-notfound-page (>=1,<2)", "sphinx-reredirects", "sphinxcontrib-towncrier", "towncrier (<24.7)"]
+enabler = ["pytest-enabler (>=2.2)"]
+test = ["build[virtualenv] (>=1.0.3)", "filelock (>=3.4.0)", "ini2toml[lite] (>=0.14)", "jaraco.develop (>=7.21) ; python_version >= \"3.9\" and sys_platform != \"cygwin\"", "jaraco.envs (>=2.2)", "jaraco.path (>=3.7.2)", "jaraco.test (>=5.5)", "packaging (>=24.2)", "pip (>=19.1)", "pyproject-hooks (!=1.1)", "pytest (>=6,!=8.1.*)", "pytest-home (>=0.5)", "pytest-perf ; sys_platform != \"cygwin\"", "pytest-subprocess", "pytest-timeout", "pytest-xdist (>=3)", "tomli-w (>=1.0.0)", "virtualenv (>=13.0.0)", "wheel (>=0.44.0)"]
+type = ["importlib_metadata (>=7.0.2) ; python_version < \"3.10\"", "jaraco.develop (>=7.21) ; sys_platform != \"cygwin\"", "mypy (==1.14.*)", "pytest-mypy"]
+
+[[package]]
+name = "sflock2"
+version = "0.3.76"
+description = "Sample staging and detonation utility"
+optional = false
+python-versions = "<4.0,>=3.10"
+groups = ["main"]
+files = [
+    {file = "sflock2-0.3.76-py3-none-any.whl", hash = "sha256:3d989d142fc49ebd049f75eb8d402451fcd20148cf27aaa20c540ac95a9c81ff"},
+    {file = "sflock2-0.3.76.tar.gz", hash = "sha256:eed75b32adf3c82a60d9339fda63a151355f9be7639d7d583de8f43ea6604e4c"},
+]
+
+[package.dependencies]
+click = "*"
+cryptography = ">=44.0.0"
+olefile = ">=0.43"
+pefile = "*"
+python-magic = {version = ">=0.4.13", optional = true, markers = "sys_platform == \"linux\" and extra == \"linux\""}
+unicorn = {version = ">=2.0.0", optional = true, markers = "extra == \"shellcode\""}
+yara-python = {version = ">=4.1.0", optional = true, markers = "extra == \"shellcode\""}
+
+[package.extras]
+linux = ["python-magic (>=0.4.13) ; sys_platform == \"linux\""]
+shellcode = ["unicorn (>=2.0.0)", "yara-python (>=4.1.0)"]
+windows = ["python-magic-bin (>=0.4.14) ; sys_platform == \"win32\""]
+
+[[package]]
+name = "six"
+version = "1.17.0"
+description = "Python 2 and 3 compatibility utilities"
+optional = false
+python-versions = "!=3.0.*,!=3.1.*,!=3.2.*,>=2.7"
+groups = ["main", "dev"]
+files = [
+    {file = "six-1.17.0-py2.py3-none-any.whl", hash = "sha256:4721f391ed90541fddacab5acf947aa0d3dc7d27b2e1e8eda2be8970586c3274"},
+    {file = "six-1.17.0.tar.gz", hash = "sha256:ff70335d468e7eb6ec65b95b99d3a2836546063f63acc5171de367e834932a81"},
+]
+
+[[package]]
+name = "sniffio"
+version = "1.3.1"
+description = "Sniff out which async library your code is running under"
+optional = false
+python-versions = ">=3.7"
+groups = ["main"]
+files = [
+    {file = "sniffio-1.3.1-py3-none-any.whl", hash = "sha256:2f6da418d1f1e0fddd844478f41680e794e6051915791a034ff65e5f100525a2"},
+    {file = "sniffio-1.3.1.tar.gz", hash = "sha256:f4324edc670a0f49750a81b895f35c3adb843cca46f0530f79fc1babb23789dc"},
+]
+
+[[package]]
+name = "sortedcontainers"
+version = "2.4.0"
+description = "Sorted Containers -- Sorted List, Sorted Dict, Sorted Set"
+optional = false
+python-versions = "*"
+groups = ["main"]
+files = [
+    {file = "sortedcontainers-2.4.0-py2.py3-none-any.whl", hash = "sha256:a163dcaede0f1c021485e957a39245190e74249897e2ae4b2aa38595db237ee0"},
+    {file = "sortedcontainers-2.4.0.tar.gz", hash = "sha256:25caa5a06cc30b6b83d11423433f65d1f9d76c4c6a0c90e3379eaa43b9bfdb88"},
+]
+
+[[package]]
+name = "soupsieve"
+version = "2.6"
+description = "A modern CSS selector implementation for Beautiful Soup."
+optional = false
+python-versions = ">=3.8"
+groups = ["main"]
+files = [
+    {file = "soupsieve-2.6-py3-none-any.whl", hash = "sha256:e72c4ff06e4fb6e4b5a9f0f55fe6e81514581fca1515028625d0f299c602ccc9"},
+    {file = "soupsieve-2.6.tar.gz", hash = "sha256:e2e68417777af359ec65daac1057404a3c8a5455bb8abc36f1a9866ab1a51abb"},
+]
+
+[[package]]
+name = "sqlalchemy"
+version = "2.0.41"
+description = "Database Abstraction Library"
+optional = false
+python-versions = ">=3.7"
+groups = ["main"]
+files = [
+    {file = "SQLAlchemy-2.0.41-cp37-cp37m-macosx_10_9_x86_64.whl", hash = "sha256:6854175807af57bdb6425e47adbce7d20a4d79bbfd6f6d6519cd10bb7109a7f8"},
+    {file = "SQLAlchemy-2.0.41-cp37-cp37m-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:05132c906066142103b83d9c250b60508af556982a385d96c4eaa9fb9720ac2b"},
+    {file = "SQLAlchemy-2.0.41-cp37-cp37m-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:8b4af17bda11e907c51d10686eda89049f9ce5669b08fbe71a29747f1e876036"},
+    {file = "SQLAlchemy-2.0.41-cp37-cp37m-musllinux_1_2_aarch64.whl", hash = "sha256:c0b0e5e1b5d9f3586601048dd68f392dc0cc99a59bb5faf18aab057ce00d00b2"},
+    {file = "SQLAlchemy-2.0.41-cp37-cp37m-musllinux_1_2_x86_64.whl", hash = "sha256:0b3dbf1e7e9bc95f4bac5e2fb6d3fb2f083254c3fdd20a1789af965caf2d2348"},
+    {file = "SQLAlchemy-2.0.41-cp37-cp37m-win32.whl", hash = "sha256:1e3f196a0c59b0cae9a0cd332eb1a4bda4696e863f4f1cf84ab0347992c548c2"},
+    {file = "SQLAlchemy-2.0.41-cp37-cp37m-win_amd64.whl", hash = "sha256:6ab60a5089a8f02009f127806f777fca82581c49e127f08413a66056bd9166dd"},
+    {file = "sqlalchemy-2.0.41-cp310-cp310-macosx_10_9_x86_64.whl", hash = "sha256:b1f09b6821406ea1f94053f346f28f8215e293344209129a9c0fcc3578598d7b"},
+    {file = "sqlalchemy-2.0.41-cp310-cp310-macosx_11_0_arm64.whl", hash = "sha256:1936af879e3db023601196a1684d28e12f19ccf93af01bf3280a3262c4b6b4e5"},
+    {file = "sqlalchemy-2.0.41-cp310-cp310-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:b2ac41acfc8d965fb0c464eb8f44995770239668956dc4cdf502d1b1ffe0d747"},
+    {file = "sqlalchemy-2.0.41-cp310-cp310-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:81c24e0c0fde47a9723c81d5806569cddef103aebbf79dbc9fcbb617153dea30"},
+    {file = "sqlalchemy-2.0.41-cp310-cp310-musllinux_1_2_aarch64.whl", hash = "sha256:23a8825495d8b195c4aa9ff1c430c28f2c821e8c5e2d98089228af887e5d7e29"},
+    {file = "sqlalchemy-2.0.41-cp310-cp310-musllinux_1_2_x86_64.whl", hash = "sha256:60c578c45c949f909a4026b7807044e7e564adf793537fc762b2489d522f3d11"},
+    {file = "sqlalchemy-2.0.41-cp310-cp310-win32.whl", hash = "sha256:118c16cd3f1b00c76d69343e38602006c9cfb9998fa4f798606d28d63f23beda"},
+    {file = "sqlalchemy-2.0.41-cp310-cp310-win_amd64.whl", hash = "sha256:7492967c3386df69f80cf67efd665c0f667cee67032090fe01d7d74b0e19bb08"},
+    {file = "sqlalchemy-2.0.41-cp311-cp311-macosx_10_9_x86_64.whl", hash = "sha256:6375cd674fe82d7aa9816d1cb96ec592bac1726c11e0cafbf40eeee9a4516b5f"},
+    {file = "sqlalchemy-2.0.41-cp311-cp311-macosx_11_0_arm64.whl", hash = "sha256:9f8c9fdd15a55d9465e590a402f42082705d66b05afc3ffd2d2eb3c6ba919560"},
+    {file = "sqlalchemy-2.0.41-cp311-cp311-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:32f9dc8c44acdee06c8fc6440db9eae8b4af8b01e4b1aee7bdd7241c22edff4f"},
+    {file = "sqlalchemy-2.0.41-cp311-cp311-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:90c11ceb9a1f482c752a71f203a81858625d8df5746d787a4786bca4ffdf71c6"},
+    {file = "sqlalchemy-2.0.41-cp311-cp311-musllinux_1_2_aarch64.whl", hash = "sha256:911cc493ebd60de5f285bcae0491a60b4f2a9f0f5c270edd1c4dbaef7a38fc04"},
+    {file = "sqlalchemy-2.0.41-cp311-cp311-musllinux_1_2_x86_64.whl", hash = "sha256:03968a349db483936c249f4d9cd14ff2c296adfa1290b660ba6516f973139582"},
+    {file = "sqlalchemy-2.0.41-cp311-cp311-win32.whl", hash = "sha256:293cd444d82b18da48c9f71cd7005844dbbd06ca19be1ccf6779154439eec0b8"},
+    {file = "sqlalchemy-2.0.41-cp311-cp311-win_amd64.whl", hash = "sha256:3d3549fc3e40667ec7199033a4e40a2f669898a00a7b18a931d3efb4c7900504"},
+    {file = "sqlalchemy-2.0.41-cp312-cp312-macosx_10_13_x86_64.whl", hash = "sha256:81f413674d85cfd0dfcd6512e10e0f33c19c21860342a4890c3a2b59479929f9"},
+    {file = "sqlalchemy-2.0.41-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:598d9ebc1e796431bbd068e41e4de4dc34312b7aa3292571bb3674a0cb415dd1"},
+    {file = "sqlalchemy-2.0.41-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:a104c5694dfd2d864a6f91b0956eb5d5883234119cb40010115fd45a16da5e70"},
+    {file = "sqlalchemy-2.0.41-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:6145afea51ff0af7f2564a05fa95eb46f542919e6523729663a5d285ecb3cf5e"},
+    {file = "sqlalchemy-2.0.41-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:b46fa6eae1cd1c20e6e6f44e19984d438b6b2d8616d21d783d150df714f44078"},
+    {file = "sqlalchemy-2.0.41-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:41836fe661cc98abfae476e14ba1906220f92c4e528771a8a3ae6a151242d2ae"},
+    {file = "sqlalchemy-2.0.41-cp312-cp312-win32.whl", hash = "sha256:a8808d5cf866c781150d36a3c8eb3adccfa41a8105d031bf27e92c251e3969d6"},
+    {file = "sqlalchemy-2.0.41-cp312-cp312-win_amd64.whl", hash = "sha256:5b14e97886199c1f52c14629c11d90c11fbb09e9334fa7bb5f6d068d9ced0ce0"},
+    {file = "sqlalchemy-2.0.41-cp313-cp313-macosx_10_13_x86_64.whl", hash = "sha256:4eeb195cdedaf17aab6b247894ff2734dcead6c08f748e617bfe05bd5a218443"},
+    {file = "sqlalchemy-2.0.41-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:d4ae769b9c1c7757e4ccce94b0641bc203bbdf43ba7a2413ab2523d8d047d8dc"},
+    {file = "sqlalchemy-2.0.41-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:a62448526dd9ed3e3beedc93df9bb6b55a436ed1474db31a2af13b313a70a7e1"},
+    {file = "sqlalchemy-2.0.41-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:dc56c9788617b8964ad02e8fcfeed4001c1f8ba91a9e1f31483c0dffb207002a"},
+    {file = "sqlalchemy-2.0.41-cp313-cp313-musllinux_1_2_aarch64.whl", hash = "sha256:c153265408d18de4cc5ded1941dcd8315894572cddd3c58df5d5b5705b3fa28d"},
+    {file = "sqlalchemy-2.0.41-cp313-cp313-musllinux_1_2_x86_64.whl", hash = "sha256:4f67766965996e63bb46cfbf2ce5355fc32d9dd3b8ad7e536a920ff9ee422e23"},
+    {file = "sqlalchemy-2.0.41-cp313-cp313-win32.whl", hash = "sha256:bfc9064f6658a3d1cadeaa0ba07570b83ce6801a1314985bf98ec9b95d74e15f"},
+    {file = "sqlalchemy-2.0.41-cp313-cp313-win_amd64.whl", hash = "sha256:82ca366a844eb551daff9d2e6e7a9e5e76d2612c8564f58db6c19a726869c1df"},
+    {file = "sqlalchemy-2.0.41-cp38-cp38-macosx_10_9_x86_64.whl", hash = "sha256:90144d3b0c8b139408da50196c5cad2a6909b51b23df1f0538411cd23ffa45d3"},
+    {file = "sqlalchemy-2.0.41-cp38-cp38-macosx_11_0_arm64.whl", hash = "sha256:023b3ee6169969beea3bb72312e44d8b7c27c75b347942d943cf49397b7edeb5"},
+    {file = "sqlalchemy-2.0.41-cp38-cp38-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:725875a63abf7c399d4548e686debb65cdc2549e1825437096a0af1f7e374814"},
+    {file = "sqlalchemy-2.0.41-cp38-cp38-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:81965cc20848ab06583506ef54e37cf15c83c7e619df2ad16807c03100745dea"},
+    {file = "sqlalchemy-2.0.41-cp38-cp38-musllinux_1_2_aarch64.whl", hash = "sha256:dd5ec3aa6ae6e4d5b5de9357d2133c07be1aff6405b136dad753a16afb6717dd"},
+    {file = "sqlalchemy-2.0.41-cp38-cp38-musllinux_1_2_x86_64.whl", hash = "sha256:ff8e80c4c4932c10493ff97028decfdb622de69cae87e0f127a7ebe32b4069c6"},
+    {file = "sqlalchemy-2.0.41-cp38-cp38-win32.whl", hash = "sha256:4d44522480e0bf34c3d63167b8cfa7289c1c54264c2950cc5fc26e7850967e45"},
+    {file = "sqlalchemy-2.0.41-cp38-cp38-win_amd64.whl", hash = "sha256:81eedafa609917040d39aa9332e25881a8e7a0862495fcdf2023a9667209deda"},
+    {file = "sqlalchemy-2.0.41-cp39-cp39-macosx_10_9_x86_64.whl", hash = "sha256:9a420a91913092d1e20c86a2f5f1fc85c1a8924dbcaf5e0586df8aceb09c9cc2"},
+    {file = "sqlalchemy-2.0.41-cp39-cp39-macosx_11_0_arm64.whl", hash = "sha256:906e6b0d7d452e9a98e5ab8507c0da791856b2380fdee61b765632bb8698026f"},
+    {file = "sqlalchemy-2.0.41-cp39-cp39-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:a373a400f3e9bac95ba2a06372c4fd1412a7cee53c37fc6c05f829bf672b8769"},
+    {file = "sqlalchemy-2.0.41-cp39-cp39-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:087b6b52de812741c27231b5a3586384d60c353fbd0e2f81405a814b5591dc8b"},
+    {file = "sqlalchemy-2.0.41-cp39-cp39-musllinux_1_2_aarch64.whl", hash = "sha256:34ea30ab3ec98355235972dadc497bb659cc75f8292b760394824fab9cf39826"},
+    {file = "sqlalchemy-2.0.41-cp39-cp39-musllinux_1_2_x86_64.whl", hash = "sha256:8280856dd7c6a68ab3a164b4a4b1c51f7691f6d04af4d4ca23d6ecf2261b7923"},
+    {file = "sqlalchemy-2.0.41-cp39-cp39-win32.whl", hash = "sha256:b50eab9994d64f4a823ff99a0ed28a6903224ddbe7fef56a6dd865eec9243440"},
+    {file = "sqlalchemy-2.0.41-cp39-cp39-win_amd64.whl", hash = "sha256:5e22575d169529ac3e0a120cf050ec9daa94b6a9597993d1702884f6954a7d71"},
+    {file = "sqlalchemy-2.0.41-py3-none-any.whl", hash = "sha256:57df5dc6fdb5ed1a88a1ed2195fd31927e705cad62dedd86b46972752a80f576"},
+    {file = "sqlalchemy-2.0.41.tar.gz", hash = "sha256:edba70118c4be3c2b1f90754d308d0b79c6fe2c0fdc52d8ddf603916f83f4db9"},
+]
+
+[package.dependencies]
+greenlet = {version = ">=1", markers = "python_version < \"3.14\" and (platform_machine == \"aarch64\" or platform_machine == \"ppc64le\" or platform_machine == \"x86_64\" or platform_machine == \"amd64\" or platform_machine == \"AMD64\" or platform_machine == \"win32\" or platform_machine == \"WIN32\")"}
+typing-extensions = ">=4.6.0"
+
+[package.extras]
+aiomysql = ["aiomysql (>=0.2.0)", "greenlet (>=1)"]
+aioodbc = ["aioodbc", "greenlet (>=1)"]
+aiosqlite = ["aiosqlite", "greenlet (>=1)", "typing_extensions (!=3.10.0.1)"]
+asyncio = ["greenlet (>=1)"]
+asyncmy = ["asyncmy (>=0.2.3,!=0.2.4,!=0.2.6)", "greenlet (>=1)"]
+mariadb-connector = ["mariadb (>=1.0.1,!=1.1.2,!=1.1.5,!=1.1.10)"]
+mssql = ["pyodbc"]
+mssql-pymssql = ["pymssql"]
+mssql-pyodbc = ["pyodbc"]
+mypy = ["mypy (>=0.910)"]
+mysql = ["mysqlclient (>=1.4.0)"]
+mysql-connector = ["mysql-connector-python"]
+oracle = ["cx_oracle (>=8)"]
+oracle-oracledb = ["oracledb (>=1.0.1)"]
+postgresql = ["psycopg2 (>=2.7)"]
+postgresql-asyncpg = ["asyncpg", "greenlet (>=1)"]
+postgresql-pg8000 = ["pg8000 (>=1.29.1)"]
+postgresql-psycopg = ["psycopg (>=3.0.7)"]
+postgresql-psycopg2binary = ["psycopg2-binary"]
+postgresql-psycopg2cffi = ["psycopg2cffi"]
+postgresql-psycopgbinary = ["psycopg[binary] (>=3.0.7)"]
+pymysql = ["pymysql"]
+sqlcipher = ["sqlcipher3_binary"]
+
+[[package]]
+name = "sqlalchemy-utils"
+version = "0.41.1"
+description = "Various utility functions for SQLAlchemy."
+optional = false
+python-versions = ">=3.6"
+groups = ["main"]
+files = [
+    {file = "SQLAlchemy-Utils-0.41.1.tar.gz", hash = "sha256:a2181bff01eeb84479e38571d2c0718eb52042f9afd8c194d0d02877e84b7d74"},
+    {file = "SQLAlchemy_Utils-0.41.1-py3-none-any.whl", hash = "sha256:6c96b0768ea3f15c0dc56b363d386138c562752b84f647fb8d31a2223aaab801"},
+]
+
+[package.dependencies]
+SQLAlchemy = ">=1.3"
+
+[package.extras]
+arrow = ["arrow (>=0.3.4)"]
+babel = ["Babel (>=1.3)"]
+color = ["colour (>=0.0.4)"]
+encrypted = ["cryptography (>=0.6)"]
+intervals = ["intervals (>=0.7.1)"]
+password = ["passlib (>=1.6,<2.0)"]
+pendulum = ["pendulum (>=2.0.5)"]
+phone = ["phonenumbers (>=5.9.2)"]
+test = ["Jinja2 (>=2.3)", "Pygments (>=1.2)", "backports.zoneinfo ; python_version < \"3.9\"", "docutils (>=0.10)", "flake8 (>=2.4.0)", "flexmock (>=0.9.7)", "isort (>=4.2.2)", "pg8000 (>=1.12.4)", "psycopg (>=3.1.8)", "psycopg2 (>=2.5.1)", "psycopg2cffi (>=2.8.1)", "pymysql", "pyodbc", "pytest (>=2.7.1)", "python-dateutil (>=2.6)", "pytz (>=2014.2)"]
+test-all = ["Babel (>=1.3)", "Jinja2 (>=2.3)", "Pygments (>=1.2)", "arrow (>=0.3.4)", "backports.zoneinfo ; python_version < \"3.9\"", "colour (>=0.0.4)", "cryptography (>=0.6)", "docutils (>=0.10)", "flake8 (>=2.4.0)", "flexmock (>=0.9.7)", "furl (>=0.4.1)", "intervals (>=0.7.1)", "isort (>=4.2.2)", "passlib (>=1.6,<2.0)", "pendulum (>=2.0.5)", "pg8000 (>=1.12.4)", "phonenumbers (>=5.9.2)", "psycopg (>=3.1.8)", "psycopg2 (>=2.5.1)", "psycopg2cffi (>=2.8.1)", "pymysql", "pyodbc", "pytest (>=2.7.1)", "python-dateutil", "python-dateutil (>=2.6)", "pytz (>=2014.2)"]
+timezone = ["python-dateutil"]
+url = ["furl (>=0.4.1)"]
+
+[[package]]
+name = "sqlparse"
+version = "0.5.3"
+description = "A non-validating SQL parser."
+optional = false
+python-versions = ">=3.8"
+groups = ["main"]
+files = [
+    {file = "sqlparse-0.5.3-py3-none-any.whl", hash = "sha256:cf2196ed3418f3ba5de6af7e82c694a9fbdbfecccdfc72e281548517081f16ca"},
+    {file = "sqlparse-0.5.3.tar.gz", hash = "sha256:09f67787f56a0b16ecdbde1bfc7f5d9c3371ca683cfeaa8e6ff60b4807ec9272"},
+]
+
+[package.extras]
+dev = ["build", "hatch"]
+doc = ["sphinx"]
+
+[[package]]
+name = "stpyv8"
+version = "13.1.201.22"
+description = "Python Wrapper for Google V8 Engine"
+optional = false
+python-versions = "*"
+groups = ["main"]
+files = [
+    {file = "stpyv8-13.1.201.22-cp310-cp310-macosx_13_0_x86_64.whl", hash = "sha256:2ce8e85a4a88e80ae561654be1b55ff578c4f1a27d518ac35e6d87b93d91b096"},
+    {file = "stpyv8-13.1.201.22-cp310-cp310-macosx_14_0_arm64.whl", hash = "sha256:fe25c004b12f2616ae877e0469f95aa2164e62e6584d253b07f3c9f9ba69a888"},
+    {file = "stpyv8-13.1.201.22-cp310-cp310-manylinux_2_31_x86_64.whl", hash = "sha256:90568ff08dfaf0ebd3bf1c79f7d21db06d82eada412a6e914b995bead7c78666"},
+    {file = "stpyv8-13.1.201.22-cp310-cp310-win_amd64.whl", hash = "sha256:8019f19b29621ccde85125d86f60f5814175b17670f5949d2671cf22cf453ea6"},
+    {file = "stpyv8-13.1.201.22-cp311-cp311-macosx_13_0_x86_64.whl", hash = "sha256:b2a660a331e82fa89d5938ec8418743ebfb544733269f24cd8461a18472701c2"},
+    {file = "stpyv8-13.1.201.22-cp311-cp311-macosx_14_0_arm64.whl", hash = "sha256:4d737935167c52ed72e5a78264d9adfeaf089bf54693b88f12cbdb439a36a102"},
+    {file = "stpyv8-13.1.201.22-cp311-cp311-manylinux_2_31_x86_64.whl", hash = "sha256:da6d8f2945bd057057c64bc93ea3c064cc848b75f55d6d651120ee5d115e0761"},
+    {file = "stpyv8-13.1.201.22-cp311-cp311-win_amd64.whl", hash = "sha256:b9d9499ed2007cc097a5d2ae0cb18226b2bf3ca429301811b2e12a787a8f137e"},
+    {file = "stpyv8-13.1.201.22-cp312-cp312-macosx_13_0_x86_64.whl", hash = "sha256:fc2b956bfaf23531c490845edb7d80fc998fe8aee1c7cf1337317dae01169307"},
+    {file = "stpyv8-13.1.201.22-cp312-cp312-macosx_14_0_arm64.whl", hash = "sha256:6dc40b656cea7fe541f6bdbad83b6b4ed51e5ead985b54c139319a731253a55e"},
+    {file = "stpyv8-13.1.201.22-cp312-cp312-manylinux_2_31_x86_64.whl", hash = "sha256:c24aa4215c64db7d67fc6c42c0d7731cabcf300596bf9c826ae74f426fe3b771"},
+    {file = "stpyv8-13.1.201.22-cp312-cp312-win_amd64.whl", hash = "sha256:c4292843c8133fc99833aceef25925a97edf01031e186335582deb077b99d2bf"},
+    {file = "stpyv8-13.1.201.22-cp313-cp313-macosx_13_0_x86_64.whl", hash = "sha256:b53df6114a88698ee6f3820cf46476e83ee09c9a67dd9f7cf58ca6a2928238b0"},
+    {file = "stpyv8-13.1.201.22-cp313-cp313-macosx_14_0_arm64.whl", hash = "sha256:6cb5e8751aee2487cc3b5f21eac6d459041a7180a779941b64db5736e27276ee"},
+    {file = "stpyv8-13.1.201.22-cp313-cp313-manylinux_2_31_x86_64.whl", hash = "sha256:834b9761bb7f49da8b887847c7647495a2cf6c45f69e2124ae0e3f024493bc15"},
+    {file = "stpyv8-13.1.201.22-cp313-cp313-win_amd64.whl", hash = "sha256:c8189b8c4d87579f353705441757f11e2f2260578b82000925dadf0ed59a47e3"},
+    {file = "stpyv8-13.1.201.22-cp314-cp314-macosx_13_0_x86_64.whl", hash = "sha256:c4bf3048c96a6a1561861da0c74be842c79a71373d3bec0d53c4e8f6eaa7b6e8"},
+    {file = "stpyv8-13.1.201.22-cp314-cp314-macosx_14_0_arm64.whl", hash = "sha256:6fdbc3a8b1aa941064ec0976a5a85761f50e9090468ce275c22d0774293d2668"},
+    {file = "stpyv8-13.1.201.22-cp314-cp314-manylinux_2_35_x86_64.whl", hash = "sha256:c0b258c7c5a79c5f19e636b93eece90d3cf9109af9a11c5394bdb807ed68e04a"},
+    {file = "stpyv8-13.1.201.22-cp39-cp39-macosx_13_0_x86_64.whl", hash = "sha256:05c3ecaaf2dd8dbe06bdb70f3192b7e6161337ee04e6830a57b58eb4be7c70bd"},
+    {file = "stpyv8-13.1.201.22-cp39-cp39-manylinux_2_31_x86_64.whl", hash = "sha256:bf51578ec84dba6519d75ca81a154a070910e638da0ec384f4bf6d535f9b5218"},
+    {file = "stpyv8-13.1.201.22-cp39-cp39-win_amd64.whl", hash = "sha256:d00a220268d63d68490682b571d082d5b197de1f19d6f478a88357c61da94f7a"},
+    {file = "stpyv8-13.1.201.22.tar.gz", hash = "sha256:2bdbc7307dbf86cfc4bd0a11f0ae1f1c6f91d1b3366a7b409f9fc5d01f69441d"},
+]
+
+[[package]]
+name = "tenacity"
+version = "8.1.0"
+description = "Retry code until it succeeds"
+optional = false
+python-versions = ">=3.6"
+groups = ["dev"]
+files = [
+    {file = "tenacity-8.1.0-py3-none-any.whl", hash = "sha256:35525cd47f82830069f0d6b73f7eb83bc5b73ee2fff0437952cedf98b27653ac"},
+    {file = "tenacity-8.1.0.tar.gz", hash = "sha256:e48c437fdf9340f5666b92cd7990e96bc5fc955e1298baf4a907e3972067a445"},
+]
+
+[package.extras]
+doc = ["reno", "sphinx", "tornado (>=4.5)"]
+
+[[package]]
+name = "tldextract"
+version = "5.1.3"
+description = "Accurately separates a URL's subdomain, domain, and public suffix, using the Public Suffix List (PSL). By default, this includes the public ICANN TLDs and their exceptions. You can optionally support the Public Suffix List's private domains as well."
+optional = false
+python-versions = ">=3.9"
+groups = ["main"]
+files = [
+    {file = "tldextract-5.1.3-py3-none-any.whl", hash = "sha256:78de310cc2ca018692de5ddf320f9d6bd7c5cf857d0fd4f2175f0cdf4440ea75"},
+    {file = "tldextract-5.1.3.tar.gz", hash = "sha256:d43c7284c23f5dc8a42fd0fee2abede2ff74cc622674e4cb07f514ab3330c338"},
+]
+
+[package.dependencies]
+filelock = ">=3.0.8"
+idna = "*"
+requests = ">=2.1.0"
+requests-file = ">=1.4"
+
+[package.extras]
+release = ["build", "twine"]
+testing = ["mypy", "pytest", "pytest-gitignore", "pytest-mock", "responses", "ruff", "syrupy", "tox", "tox-uv", "types-filelock", "types-requests"]
+
+[[package]]
+name = "tomli"
+version = "2.2.1"
+description = "A lil' TOML parser"
+optional = false
+python-versions = ">=3.8"
+groups = ["main", "dev"]
+files = [
+    {file = "tomli-2.2.1-cp311-cp311-macosx_10_9_x86_64.whl", hash = "sha256:678e4fa69e4575eb77d103de3df8a895e1591b48e740211bd1067378c69e8249"},
+    {file = "tomli-2.2.1-cp311-cp311-macosx_11_0_arm64.whl", hash = "sha256:023aa114dd824ade0100497eb2318602af309e5a55595f76b626d6d9f3b7b0a6"},
+    {file = "tomli-2.2.1-cp311-cp311-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:ece47d672db52ac607a3d9599a9d48dcb2f2f735c6c2d1f34130085bb12b112a"},
+    {file = "tomli-2.2.1-cp311-cp311-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:6972ca9c9cc9f0acaa56a8ca1ff51e7af152a9f87fb64623e31d5c83700080ee"},
+    {file = "tomli-2.2.1-cp311-cp311-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:c954d2250168d28797dd4e3ac5cf812a406cd5a92674ee4c8f123c889786aa8e"},
+    {file = "tomli-2.2.1-cp311-cp311-musllinux_1_2_aarch64.whl", hash = "sha256:8dd28b3e155b80f4d54beb40a441d366adcfe740969820caf156c019fb5c7ec4"},
+    {file = "tomli-2.2.1-cp311-cp311-musllinux_1_2_i686.whl", hash = "sha256:e59e304978767a54663af13c07b3d1af22ddee3bb2fb0618ca1593e4f593a106"},
+    {file = "tomli-2.2.1-cp311-cp311-musllinux_1_2_x86_64.whl", hash = "sha256:33580bccab0338d00994d7f16f4c4ec25b776af3ffaac1ed74e0b3fc95e885a8"},
+    {file = "tomli-2.2.1-cp311-cp311-win32.whl", hash = "sha256:465af0e0875402f1d226519c9904f37254b3045fc5084697cefb9bdde1ff99ff"},
+    {file = "tomli-2.2.1-cp311-cp311-win_amd64.whl", hash = "sha256:2d0f2fdd22b02c6d81637a3c95f8cd77f995846af7414c5c4b8d0545afa1bc4b"},
+    {file = "tomli-2.2.1-cp312-cp312-macosx_10_13_x86_64.whl", hash = "sha256:4a8f6e44de52d5e6c657c9fe83b562f5f4256d8ebbfe4ff922c495620a7f6cea"},
+    {file = "tomli-2.2.1-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:8d57ca8095a641b8237d5b079147646153d22552f1c637fd3ba7f4b0b29167a8"},
+    {file = "tomli-2.2.1-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:4e340144ad7ae1533cb897d406382b4b6fede8890a03738ff1683af800d54192"},
+    {file = "tomli-2.2.1-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:db2b95f9de79181805df90bedc5a5ab4c165e6ec3fe99f970d0e302f384ad222"},
+    {file = "tomli-2.2.1-cp312-cp312-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:40741994320b232529c802f8bc86da4e1aa9f413db394617b9a256ae0f9a7f77"},
+    {file = "tomli-2.2.1-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:400e720fe168c0f8521520190686ef8ef033fb19fc493da09779e592861b78c6"},
+    {file = "tomli-2.2.1-cp312-cp312-musllinux_1_2_i686.whl", hash = "sha256:02abe224de6ae62c19f090f68da4e27b10af2b93213d36cf44e6e1c5abd19fdd"},
+    {file = "tomli-2.2.1-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:b82ebccc8c8a36f2094e969560a1b836758481f3dc360ce9a3277c65f374285e"},
+    {file = "tomli-2.2.1-cp312-cp312-win32.whl", hash = "sha256:889f80ef92701b9dbb224e49ec87c645ce5df3fa2cc548664eb8a25e03127a98"},
+    {file = "tomli-2.2.1-cp312-cp312-win_amd64.whl", hash = "sha256:7fc04e92e1d624a4a63c76474610238576942d6b8950a2d7f908a340494e67e4"},
+    {file = "tomli-2.2.1-cp313-cp313-macosx_10_13_x86_64.whl", hash = "sha256:f4039b9cbc3048b2416cc57ab3bda989a6fcf9b36cf8937f01a6e731b64f80d7"},
+    {file = "tomli-2.2.1-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:286f0ca2ffeeb5b9bd4fcc8d6c330534323ec51b2f52da063b11c502da16f30c"},
+    {file = "tomli-2.2.1-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:a92ef1a44547e894e2a17d24e7557a5e85a9e1d0048b0b5e7541f76c5032cb13"},
+    {file = "tomli-2.2.1-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:9316dc65bed1684c9a98ee68759ceaed29d229e985297003e494aa825ebb0281"},
+    {file = "tomli-2.2.1-cp313-cp313-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:e85e99945e688e32d5a35c1ff38ed0b3f41f43fad8df0bdf79f72b2ba7bc5272"},
+    {file = "tomli-2.2.1-cp313-cp313-musllinux_1_2_aarch64.whl", hash = "sha256:ac065718db92ca818f8d6141b5f66369833d4a80a9d74435a268c52bdfa73140"},
+    {file = "tomli-2.2.1-cp313-cp313-musllinux_1_2_i686.whl", hash = "sha256:d920f33822747519673ee656a4b6ac33e382eca9d331c87770faa3eef562aeb2"},
+    {file = "tomli-2.2.1-cp313-cp313-musllinux_1_2_x86_64.whl", hash = "sha256:a198f10c4d1b1375d7687bc25294306e551bf1abfa4eace6650070a5c1ae2744"},
+    {file = "tomli-2.2.1-cp313-cp313-win32.whl", hash = "sha256:d3f5614314d758649ab2ab3a62d4f2004c825922f9e370b29416484086b264ec"},
+    {file = "tomli-2.2.1-cp313-cp313-win_amd64.whl", hash = "sha256:a38aa0308e754b0e3c67e344754dff64999ff9b513e691d0e786265c93583c69"},
+    {file = "tomli-2.2.1-py3-none-any.whl", hash = "sha256:cb55c73c5f4408779d0cf3eef9f762b9c9f147a77de7b258bef0a5628adc85cc"},
+    {file = "tomli-2.2.1.tar.gz", hash = "sha256:cd45e1dc79c835ce60f7404ec8119f2eb06d38b1deba146f07ced3bbc44505ff"},
+]
+markers = {main = "python_version == \"3.10\"", dev = "python_version == \"3.10\" or platform_python_implementation != \"CPython\" and python_full_version <= \"3.11.0a6\""}
+
+[[package]]
+name = "twisted"
+version = "24.11.0"
+description = "An asynchronous networking framework written in Python"
+optional = false
+python-versions = ">=3.8.0"
+groups = ["main"]
+files = [
+    {file = "twisted-24.11.0-py3-none-any.whl", hash = "sha256:fe403076c71f04d5d2d789a755b687c5637ec3bcd3b2b8252d76f2ba65f54261"},
+    {file = "twisted-24.11.0.tar.gz", hash = "sha256:695d0556d5ec579dcc464d2856b634880ed1319f45b10d19043f2b57eb0115b5"},
+]
+
+[package.dependencies]
+attrs = ">=22.2.0"
+automat = ">=24.8.0"
+constantly = ">=15.1"
+hyperlink = ">=17.1.1"
+idna = {version = ">=2.4", optional = true, markers = "extra == \"tls\""}
+incremental = ">=24.7.0"
+pyopenssl = {version = ">=21.0.0", optional = true, markers = "extra == \"tls\""}
+service-identity = {version = ">=18.1.0", optional = true, markers = "extra == \"tls\""}
+typing-extensions = ">=4.2.0"
+zope-interface = ">=5"
+
+[package.extras]
+all-non-platform = ["appdirs (>=1.4.0)", "appdirs (>=1.4.0)", "bcrypt (>=3.1.3)", "bcrypt (>=3.1.3)", "cryptography (>=3.3)", "cryptography (>=3.3)", "cython-test-exception-raiser (>=1.0.2,<2)", "cython-test-exception-raiser (>=1.0.2,<2)", "h2 (>=3.2,<5.0)", "h2 (>=3.2,<5.0)", "httpx[http2] (>=0.27)", "httpx[http2] (>=0.27)", "hypothesis (>=6.56)", "hypothesis (>=6.56)", "idna (>=2.4)", "idna (>=2.4)", "priority (>=1.1.0,<2.0)", "priority (>=1.1.0,<2.0)", "pyhamcrest (>=2)", "pyhamcrest (>=2)", "pyopenssl (>=21.0.0)", "pyopenssl (>=21.0.0)", "pyserial (>=3.0)", "pyserial (>=3.0)", "pywin32 (!=226) ; platform_system == \"Windows\"", "pywin32 (!=226) ; platform_system == \"Windows\"", "service-identity (>=18.1.0)", "service-identity (>=18.1.0)"]
+conch = ["appdirs (>=1.4.0)", "bcrypt (>=3.1.3)", "cryptography (>=3.3)"]
+dev = ["coverage (>=7.5,<8.0)", "cython-test-exception-raiser (>=1.0.2,<2)", "httpx[http2] (>=0.27)", "hypothesis (>=6.56)", "pydoctor (>=23.9.0,<23.10.0)", "pyflakes (>=2.2,<3.0)", "pyhamcrest (>=2)", "python-subunit (>=1.4,<2.0)", "sphinx (>=6,<7)", "sphinx-rtd-theme (>=1.3,<2.0)", "towncrier (>=23.6,<24.0)", "twistedchecker (>=0.7,<1.0)"]
+dev-release = ["pydoctor (>=23.9.0,<23.10.0)", "pydoctor (>=23.9.0,<23.10.0)", "sphinx (>=6,<7)", "sphinx (>=6,<7)", "sphinx-rtd-theme (>=1.3,<2.0)", "sphinx-rtd-theme (>=1.3,<2.0)", "towncrier (>=23.6,<24.0)", "towncrier (>=23.6,<24.0)"]
+gtk-platform = ["appdirs (>=1.4.0)", "appdirs (>=1.4.0)", "bcrypt (>=3.1.3)", "bcrypt (>=3.1.3)", "cryptography (>=3.3)", "cryptography (>=3.3)", "cython-test-exception-raiser (>=1.0.2,<2)", "cython-test-exception-raiser (>=1.0.2,<2)", "h2 (>=3.2,<5.0)", "h2 (>=3.2,<5.0)", "httpx[http2] (>=0.27)", "httpx[http2] (>=0.27)", "hypothesis (>=6.56)", "hypothesis (>=6.56)", "idna (>=2.4)", "idna (>=2.4)", "priority (>=1.1.0,<2.0)", "priority (>=1.1.0,<2.0)", "pygobject", "pygobject", "pyhamcrest (>=2)", "pyhamcrest (>=2)", "pyopenssl (>=21.0.0)", "pyopenssl (>=21.0.0)", "pyserial (>=3.0)", "pyserial (>=3.0)", "pywin32 (!=226) ; platform_system == \"Windows\"", "pywin32 (!=226) ; platform_system == \"Windows\"", "service-identity (>=18.1.0)", "service-identity (>=18.1.0)"]
+http2 = ["h2 (>=3.2,<5.0)", "priority (>=1.1.0,<2.0)"]
+macos-platform = ["appdirs (>=1.4.0)", "appdirs (>=1.4.0)", "bcrypt (>=3.1.3)", "bcrypt (>=3.1.3)", "cryptography (>=3.3)", "cryptography (>=3.3)", "cython-test-exception-raiser (>=1.0.2,<2)", "cython-test-exception-raiser (>=1.0.2,<2)", "h2 (>=3.2,<5.0)", "h2 (>=3.2,<5.0)", "httpx[http2] (>=0.27)", "httpx[http2] (>=0.27)", "hypothesis (>=6.56)", "hypothesis (>=6.56)", "idna (>=2.4)", "idna (>=2.4)", "priority (>=1.1.0,<2.0)", "priority (>=1.1.0,<2.0)", "pyhamcrest (>=2)", "pyhamcrest (>=2)", "pyobjc-core", "pyobjc-core", "pyobjc-framework-cfnetwork", "pyobjc-framework-cfnetwork", "pyobjc-framework-cocoa", "pyobjc-framework-cocoa", "pyopenssl (>=21.0.0)", "pyopenssl (>=21.0.0)", "pyserial (>=3.0)", "pyserial (>=3.0)", "pywin32 (!=226) ; platform_system == \"Windows\"", "pywin32 (!=226) ; platform_system == \"Windows\"", "service-identity (>=18.1.0)", "service-identity (>=18.1.0)"]
+mypy = ["appdirs (>=1.4.0)", "bcrypt (>=3.1.3)", "coverage (>=7.5,<8.0)", "cryptography (>=3.3)", "cython-test-exception-raiser (>=1.0.2,<2)", "h2 (>=3.2,<5.0)", "httpx[http2] (>=0.27)", "hypothesis (>=6.56)", "idna (>=2.4)", "mypy (==1.10.1)", "mypy-zope (==1.0.6)", "priority (>=1.1.0,<2.0)", "pydoctor (>=23.9.0,<23.10.0)", "pyflakes (>=2.2,<3.0)", "pyhamcrest (>=2)", "pyopenssl (>=21.0.0)", "pyserial (>=3.0)", "python-subunit (>=1.4,<2.0)", "pywin32 (!=226) ; platform_system == \"Windows\"", "service-identity (>=18.1.0)", "sphinx (>=6,<7)", "sphinx-rtd-theme (>=1.3,<2.0)", "towncrier (>=23.6,<24.0)", "twistedchecker (>=0.7,<1.0)", "types-pyopenssl", "types-setuptools"]
+osx-platform = ["appdirs (>=1.4.0)", "appdirs (>=1.4.0)", "bcrypt (>=3.1.3)", "bcrypt (>=3.1.3)", "cryptography (>=3.3)", "cryptography (>=3.3)", "cython-test-exception-raiser (>=1.0.2,<2)", "cython-test-exception-raiser (>=1.0.2,<2)", "h2 (>=3.2,<5.0)", "h2 (>=3.2,<5.0)", "httpx[http2] (>=0.27)", "httpx[http2] (>=0.27)", "hypothesis (>=6.56)", "hypothesis (>=6.56)", "idna (>=2.4)", "idna (>=2.4)", "priority (>=1.1.0,<2.0)", "priority (>=1.1.0,<2.0)", "pyhamcrest (>=2)", "pyhamcrest (>=2)", "pyobjc-core", "pyobjc-core", "pyobjc-framework-cfnetwork", "pyobjc-framework-cfnetwork", "pyobjc-framework-cocoa", "pyobjc-framework-cocoa", "pyopenssl (>=21.0.0)", "pyopenssl (>=21.0.0)", "pyserial (>=3.0)", "pyserial (>=3.0)", "pywin32 (!=226) ; platform_system == \"Windows\"", "pywin32 (!=226) ; platform_system == \"Windows\"", "service-identity (>=18.1.0)", "service-identity (>=18.1.0)"]
+serial = ["pyserial (>=3.0)", "pywin32 (!=226) ; platform_system == \"Windows\""]
+test = ["cython-test-exception-raiser (>=1.0.2,<2)", "httpx[http2] (>=0.27)", "hypothesis (>=6.56)", "pyhamcrest (>=2)"]
+tls = ["idna (>=2.4)", "pyopenssl (>=21.0.0)", "service-identity (>=18.1.0)"]
+windows-platform = ["appdirs (>=1.4.0)", "appdirs (>=1.4.0)", "bcrypt (>=3.1.3)", "bcrypt (>=3.1.3)", "cryptography (>=3.3)", "cryptography (>=3.3)", "cython-test-exception-raiser (>=1.0.2,<2)", "cython-test-exception-raiser (>=1.0.2,<2)", "h2 (>=3.2,<5.0)", "h2 (>=3.2,<5.0)", "httpx[http2] (>=0.27)", "httpx[http2] (>=0.27)", "hypothesis (>=6.56)", "hypothesis (>=6.56)", "idna (>=2.4)", "idna (>=2.4)", "priority (>=1.1.0,<2.0)", "priority (>=1.1.0,<2.0)", "pyhamcrest (>=2)", "pyhamcrest (>=2)", "pyopenssl (>=21.0.0)", "pyopenssl (>=21.0.0)", "pyserial (>=3.0)", "pyserial (>=3.0)", "pywin32 (!=226)", "pywin32 (!=226)", "pywin32 (!=226) ; platform_system == \"Windows\"", "pywin32 (!=226) ; platform_system == \"Windows\"", "service-identity (>=18.1.0)", "service-identity (>=18.1.0)", "twisted-iocpsupport (>=1.0.2)", "twisted-iocpsupport (>=1.0.2)"]
+
+[[package]]
+name = "txaio"
+version = "23.1.1"
+description = "Compatibility API between asyncio/Twisted/Trollius"
+optional = false
+python-versions = ">=3.7"
+groups = ["main"]
+files = [
+    {file = "txaio-23.1.1-py2.py3-none-any.whl", hash = "sha256:aaea42f8aad50e0ecfb976130ada140797e9dcb85fad2cf72b0f37f8cefcb490"},
+    {file = "txaio-23.1.1.tar.gz", hash = "sha256:f9a9216e976e5e3246dfd112ad7ad55ca915606b60b84a757ac769bd404ff704"},
+]
+
+[package.extras]
+all = ["twisted (>=20.3.0)", "zope.interface (>=5.2.0)"]
+dev = ["pep8 (>=1.6.2)", "pyenchant (>=1.6.6)", "pytest (>=2.6.4)", "pytest-cov (>=1.8.1)", "sphinx (>=1.2.3)", "sphinx-rtd-theme (>=0.1.9)", "sphinxcontrib-spelling (>=2.1.2)", "tox (>=2.1.1)", "tox-gh-actions (>=2.2.0)", "twine (>=1.6.5)", "wheel"]
+twisted = ["twisted (>=20.3.0)", "zope.interface (>=5.2.0)"]
+
+[[package]]
+name = "types-requests"
+version = "2.32.0.20241016"
+description = "Typing stubs for requests"
+optional = false
+python-versions = ">=3.8"
+groups = ["dev"]
+files = [
+    {file = "types-requests-2.32.0.20241016.tar.gz", hash = "sha256:0d9cad2f27515d0e3e3da7134a1b6f28fb97129d86b867f24d9c726452634d95"},
+    {file = "types_requests-2.32.0.20241016-py3-none-any.whl", hash = "sha256:4195d62d6d3e043a4eaaf08ff8a62184584d2e8684e9d2aa178c7915a7da3747"},
+]
+
+[package.dependencies]
+urllib3 = ">=2"
+
+[[package]]
+name = "typing-extensions"
+version = "4.12.2"
+description = "Backported and Experimental Type Hints for Python 3.8+"
+optional = false
+python-versions = ">=3.8"
+groups = ["main", "dev"]
+files = [
+    {file = "typing_extensions-4.12.2-py3-none-any.whl", hash = "sha256:04e5ca0351e0f3f85c6853954072df659d0d13fac324d0072316b67d7794700d"},
+    {file = "typing_extensions-4.12.2.tar.gz", hash = "sha256:1a7ead55c7e559dd4dee8856e3a88b41225abfe1ce8df57b7c13915fe121ffb8"},
+]
+
+[[package]]
+name = "tzdata"
+version = "2025.1"
+description = "Provider of IANA time zone data"
+optional = false
+python-versions = ">=2"
+groups = ["main"]
+markers = "sys_platform == \"win32\""
+files = [
+    {file = "tzdata-2025.1-py2.py3-none-any.whl", hash = "sha256:7e127113816800496f027041c570f50bcd464a020098a3b6b199517772303639"},
+    {file = "tzdata-2025.1.tar.gz", hash = "sha256:24894909e88cdb28bd1636c6887801df64cb485bd593f2fd83ef29075a81d694"},
+]
+
+[[package]]
+name = "unicorn"
+version = "2.1.1"
+description = "Unicorn CPU emulator engine"
+optional = false
+python-versions = "*"
+groups = ["main"]
+files = [
+    {file = "unicorn-2.1.1-py2.py3-none-macosx_11_0_arm64.whl", hash = "sha256:8839c02de1914acb9decb291f89eefb2944148460cf5f09a9a1cde920e32e509"},
+    {file = "unicorn-2.1.1-py2.py3-none-macosx_12_7_x86_64.whl", hash = "sha256:a52470664a6fe76f735943de5c90865ef049e23522dd1751306fefe2384e5dba"},
+    {file = "unicorn-2.1.1-py2.py3-none-manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:13e7fb410a4258522dbc5482d24949f1a89d4f113bc7fd30d523cdad1e543c3f"},
+    {file = "unicorn-2.1.1-py2.py3-none-manylinux1_i686.whl", hash = "sha256:8b890ad01ec49bae78b6419dbd11caae18c5398a26086c4b0800943efb15963c"},
+    {file = "unicorn-2.1.1-py2.py3-none-manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:b0f139adb1c9406f57d25cab96ad7a6d3cbb9119f5480ebecedd4f5d7cb024fb"},
+    {file = "unicorn-2.1.1-py2.py3-none-manylinux1_x86_64.musllinux_1_2_x86_64.whl", hash = "sha256:d4a08dbf222c5481bc909a9aa404b79874f6e67f5ba7c47036d03c68ab7371a7"},
+    {file = "unicorn-2.1.1-py2.py3-none-manylinux1_x86_64.whl", hash = "sha256:2163d6b2803fbb2f4df79e845ecccc2803c712c200cf8910548d60fd0cbbb18e"},
+    {file = "unicorn-2.1.1-py2.py3-none-manylinux2014_aarch64.whl", hash = "sha256:06df71752e147107680df7f841360a70cc1ae1f69438dbdc3a87e642fd21eb49"},
+    {file = "unicorn-2.1.1-py2.py3-none-win32.whl", hash = "sha256:8e995ed3abd508258e8864ec1b002c3e4992ae5dc98c6ac2420935b7c04a0c6b"},
+    {file = "unicorn-2.1.1-py2.py3-none-win_amd64.whl", hash = "sha256:f0ebcfaba67ef0ebcd05ee3560268f1c6f683bdd08ff496888741a163d29735d"},
+    {file = "unicorn-2.1.1.tar.gz", hash = "sha256:904f4146b09cd708fdf6b90ebb48d30eaa0ba339382964d4d08c0b9399cf4ba3"},
+]
+
+[[package]]
+name = "urllib3"
+version = "2.3.0"
+description = "HTTP library with thread-safe connection pooling, file post, and more."
+optional = false
+python-versions = ">=3.9"
+groups = ["main", "dev"]
+files = [
+    {file = "urllib3-2.3.0-py3-none-any.whl", hash = "sha256:1cee9ad369867bfdbbb48b7dd50374c0967a0bb7710050facf0dd6911440e3df"},
+    {file = "urllib3-2.3.0.tar.gz", hash = "sha256:f8c5449b3cf0861679ce7e0503c7b44b5ec981bec0d1d3795a07f1ba96f0204d"},
+]
+
+[package.extras]
+brotli = ["brotli (>=1.0.9) ; platform_python_implementation == \"CPython\"", "brotlicffi (>=0.8.0) ; platform_python_implementation != \"CPython\""]
+h2 = ["h2 (>=4,<5)"]
+socks = ["pysocks (>=1.5.6,!=1.5.7,<2.0)"]
+zstd = ["zstandard (>=0.18.0)"]
+
+[[package]]
+name = "uvicorn"
+version = "0.18.3"
+description = "The lightning-fast ASGI server."
+optional = false
+python-versions = ">=3.7"
+groups = ["main"]
+files = [
+    {file = "uvicorn-0.18.3-py3-none-any.whl", hash = "sha256:0abd429ebb41e604ed8d2be6c60530de3408f250e8d2d84967d85ba9e86fe3af"},
+    {file = "uvicorn-0.18.3.tar.gz", hash = "sha256:9a66e7c42a2a95222f76ec24a4b754c158261c4696e683b9dadc72b590e0311b"},
+]
+
+[package.dependencies]
+click = ">=7.0"
+colorama = {version = ">=0.4", optional = true, markers = "sys_platform == \"win32\" and extra == \"standard\""}
+h11 = ">=0.8"
+httptools = {version = ">=0.4.0", optional = true, markers = "extra == \"standard\""}
+python-dotenv = {version = ">=0.13", optional = true, markers = "extra == \"standard\""}
+pyyaml = {version = ">=5.1", optional = true, markers = "extra == \"standard\""}
+uvloop = {version = ">=0.14.0,<0.15.0 || >0.15.0,<0.15.1 || >0.15.1", optional = true, markers = "sys_platform != \"win32\" and sys_platform != \"cygwin\" and platform_python_implementation != \"PyPy\" and extra == \"standard\""}
+watchfiles = {version = ">=0.13", optional = true, markers = "extra == \"standard\""}
+websockets = {version = ">=10.0", optional = true, markers = "extra == \"standard\""}
+
+[package.extras]
+standard = ["colorama (>=0.4) ; sys_platform == \"win32\"", "httptools (>=0.4.0)", "python-dotenv (>=0.13)", "pyyaml (>=5.1)", "uvloop (>=0.14.0,!=0.15.0,!=0.15.1) ; sys_platform != \"win32\" and sys_platform != \"cygwin\" and platform_python_implementation != \"PyPy\"", "watchfiles (>=0.13)", "websockets (>=10.0)"]
+
+[[package]]
+name = "uvloop"
+version = "0.21.0"
+description = "Fast implementation of asyncio event loop on top of libuv"
+optional = false
+python-versions = ">=3.8.0"
+groups = ["main"]
+markers = "sys_platform != \"win32\" and sys_platform != \"cygwin\" and platform_python_implementation != \"PyPy\""
+files = [
+    {file = "uvloop-0.21.0-cp310-cp310-macosx_10_9_universal2.whl", hash = "sha256:ec7e6b09a6fdded42403182ab6b832b71f4edaf7f37a9a0e371a01db5f0cb45f"},
+    {file = "uvloop-0.21.0-cp310-cp310-macosx_10_9_x86_64.whl", hash = "sha256:196274f2adb9689a289ad7d65700d37df0c0930fd8e4e743fa4834e850d7719d"},
+    {file = "uvloop-0.21.0-cp310-cp310-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:f38b2e090258d051d68a5b14d1da7203a3c3677321cf32a95a6f4db4dd8b6f26"},
+    {file = "uvloop-0.21.0-cp310-cp310-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:87c43e0f13022b998eb9b973b5e97200c8b90823454d4bc06ab33829e09fb9bb"},
+    {file = "uvloop-0.21.0-cp310-cp310-musllinux_1_2_aarch64.whl", hash = "sha256:10d66943def5fcb6e7b37310eb6b5639fd2ccbc38df1177262b0640c3ca68c1f"},
+    {file = "uvloop-0.21.0-cp310-cp310-musllinux_1_2_x86_64.whl", hash = "sha256:67dd654b8ca23aed0a8e99010b4c34aca62f4b7fce88f39d452ed7622c94845c"},
+    {file = "uvloop-0.21.0-cp311-cp311-macosx_10_9_universal2.whl", hash = "sha256:c0f3fa6200b3108919f8bdabb9a7f87f20e7097ea3c543754cabc7d717d95cf8"},
+    {file = "uvloop-0.21.0-cp311-cp311-macosx_10_9_x86_64.whl", hash = "sha256:0878c2640cf341b269b7e128b1a5fed890adc4455513ca710d77d5e93aa6d6a0"},
+    {file = "uvloop-0.21.0-cp311-cp311-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:b9fb766bb57b7388745d8bcc53a359b116b8a04c83a2288069809d2b3466c37e"},
+    {file = "uvloop-0.21.0-cp311-cp311-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:8a375441696e2eda1c43c44ccb66e04d61ceeffcd76e4929e527b7fa401b90fb"},
+    {file = "uvloop-0.21.0-cp311-cp311-musllinux_1_2_aarch64.whl", hash = "sha256:baa0e6291d91649c6ba4ed4b2f982f9fa165b5bbd50a9e203c416a2797bab3c6"},
+    {file = "uvloop-0.21.0-cp311-cp311-musllinux_1_2_x86_64.whl", hash = "sha256:4509360fcc4c3bd2c70d87573ad472de40c13387f5fda8cb58350a1d7475e58d"},
+    {file = "uvloop-0.21.0-cp312-cp312-macosx_10_13_universal2.whl", hash = "sha256:359ec2c888397b9e592a889c4d72ba3d6befba8b2bb01743f72fffbde663b59c"},
+    {file = "uvloop-0.21.0-cp312-cp312-macosx_10_13_x86_64.whl", hash = "sha256:f7089d2dc73179ce5ac255bdf37c236a9f914b264825fdaacaded6990a7fb4c2"},
+    {file = "uvloop-0.21.0-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:baa4dcdbd9ae0a372f2167a207cd98c9f9a1ea1188a8a526431eef2f8116cc8d"},
+    {file = "uvloop-0.21.0-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:86975dca1c773a2c9864f4c52c5a55631038e387b47eaf56210f873887b6c8dc"},
+    {file = "uvloop-0.21.0-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:461d9ae6660fbbafedd07559c6a2e57cd553b34b0065b6550685f6653a98c1cb"},
+    {file = "uvloop-0.21.0-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:183aef7c8730e54c9a3ee3227464daed66e37ba13040bb3f350bc2ddc040f22f"},
+    {file = "uvloop-0.21.0-cp313-cp313-macosx_10_13_universal2.whl", hash = "sha256:bfd55dfcc2a512316e65f16e503e9e450cab148ef11df4e4e679b5e8253a5281"},
+    {file = "uvloop-0.21.0-cp313-cp313-macosx_10_13_x86_64.whl", hash = "sha256:787ae31ad8a2856fc4e7c095341cccc7209bd657d0e71ad0dc2ea83c4a6fa8af"},
+    {file = "uvloop-0.21.0-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:5ee4d4ef48036ff6e5cfffb09dd192c7a5027153948d85b8da7ff705065bacc6"},
+    {file = "uvloop-0.21.0-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:f3df876acd7ec037a3d005b3ab85a7e4110422e4d9c1571d4fc89b0fc41b6816"},
+    {file = "uvloop-0.21.0-cp313-cp313-musllinux_1_2_aarch64.whl", hash = "sha256:bd53ecc9a0f3d87ab847503c2e1552b690362e005ab54e8a48ba97da3924c0dc"},
+    {file = "uvloop-0.21.0-cp313-cp313-musllinux_1_2_x86_64.whl", hash = "sha256:a5c39f217ab3c663dc699c04cbd50c13813e31d917642d459fdcec07555cc553"},
+    {file = "uvloop-0.21.0-cp38-cp38-macosx_10_9_universal2.whl", hash = "sha256:17df489689befc72c39a08359efac29bbee8eee5209650d4b9f34df73d22e414"},
+    {file = "uvloop-0.21.0-cp38-cp38-macosx_10_9_x86_64.whl", hash = "sha256:bc09f0ff191e61c2d592a752423c767b4ebb2986daa9ed62908e2b1b9a9ae206"},
+    {file = "uvloop-0.21.0-cp38-cp38-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:f0ce1b49560b1d2d8a2977e3ba4afb2414fb46b86a1b64056bc4ab929efdafbe"},
+    {file = "uvloop-0.21.0-cp38-cp38-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:e678ad6fe52af2c58d2ae3c73dc85524ba8abe637f134bf3564ed07f555c5e79"},
+    {file = "uvloop-0.21.0-cp38-cp38-musllinux_1_2_aarch64.whl", hash = "sha256:460def4412e473896ef179a1671b40c039c7012184b627898eea5072ef6f017a"},
+    {file = "uvloop-0.21.0-cp38-cp38-musllinux_1_2_x86_64.whl", hash = "sha256:10da8046cc4a8f12c91a1c39d1dd1585c41162a15caaef165c2174db9ef18bdc"},
+    {file = "uvloop-0.21.0-cp39-cp39-macosx_10_9_universal2.whl", hash = "sha256:c097078b8031190c934ed0ebfee8cc5f9ba9642e6eb88322b9958b649750f72b"},
+    {file = "uvloop-0.21.0-cp39-cp39-macosx_10_9_x86_64.whl", hash = "sha256:46923b0b5ee7fc0020bef24afe7836cb068f5050ca04caf6b487c513dc1a20b2"},
+    {file = "uvloop-0.21.0-cp39-cp39-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:53e420a3afe22cdcf2a0f4846e377d16e718bc70103d7088a4f7623567ba5fb0"},
+    {file = "uvloop-0.21.0-cp39-cp39-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:88cb67cdbc0e483da00af0b2c3cdad4b7c61ceb1ee0f33fe00e09c81e3a6cb75"},
+    {file = "uvloop-0.21.0-cp39-cp39-musllinux_1_2_aarch64.whl", hash = "sha256:221f4f2a1f46032b403bf3be628011caf75428ee3cc204a22addf96f586b19fd"},
+    {file = "uvloop-0.21.0-cp39-cp39-musllinux_1_2_x86_64.whl", hash = "sha256:2d1f581393673ce119355d56da84fe1dd9d2bb8b3d13ce792524e1607139feff"},
+    {file = "uvloop-0.21.0.tar.gz", hash = "sha256:3bf12b0fda68447806a7ad847bfa591613177275d35b6724b1ee573faa3704e3"},
+]
+
+[package.extras]
+dev = ["Cython (>=3.0,<4.0)", "setuptools (>=60)"]
+docs = ["Sphinx (>=4.1.2,<4.2.0)", "sphinx-rtd-theme (>=0.5.2,<0.6.0)", "sphinxcontrib-asyncio (>=0.3.0,<0.4.0)"]
+test = ["aiohttp (>=3.10.5)", "flake8 (>=5.0,<6.0)", "mypy (>=0.800)", "psutil", "pyOpenSSL (>=23.0.0,<23.1.0)", "pycodestyle (>=2.9.0,<2.10.0)"]
+
+[[package]]
+name = "virtualenv"
+version = "20.29.1"
+description = "Virtual Python Environment builder"
+optional = false
+python-versions = ">=3.8"
+groups = ["dev"]
+files = [
+    {file = "virtualenv-20.29.1-py3-none-any.whl", hash = "sha256:4e4cb403c0b0da39e13b46b1b2476e505cb0046b25f242bee80f62bf990b2779"},
+    {file = "virtualenv-20.29.1.tar.gz", hash = "sha256:b8b8970138d32fb606192cb97f6cd4bb644fa486be9308fb9b63f81091b5dc35"},
+]
+
+[package.dependencies]
+distlib = ">=0.3.7,<1"
+filelock = ">=3.12.2,<4"
+platformdirs = ">=3.9.1,<5"
+
+[package.extras]
+docs = ["furo (>=2023.7.26)", "proselint (>=0.13)", "sphinx (>=7.1.2,!=7.3)", "sphinx-argparse (>=0.4)", "sphinxcontrib-towncrier (>=0.2.1a0)", "towncrier (>=23.6)"]
+test = ["covdefaults (>=2.3)", "coverage (>=7.2.7)", "coverage-enable-subprocess (>=1)", "flaky (>=3.7)", "packaging (>=23.1)", "pytest (>=7.4)", "pytest-env (>=0.8.2)", "pytest-freezer (>=0.4.8) ; platform_python_implementation == \"PyPy\" or platform_python_implementation == \"CPython\" and sys_platform == \"win32\" and python_version >= \"3.13\"", "pytest-mock (>=3.11.1)", "pytest-randomly (>=3.12)", "pytest-timeout (>=2.1)", "setuptools (>=68)", "time-machine (>=2.10) ; platform_python_implementation == \"CPython\""]
+
+[[package]]
+name = "viv-utils"
+version = "0.8.0"
+description = "Utilities for binary analysis using vivisect."
+optional = false
+python-versions = ">=3.9"
+groups = ["main"]
+files = [
+    {file = "viv_utils-0.8.0-py2.py3-none-any.whl", hash = "sha256:4fd2d8849529d00dc5b7f736f581beeb79064ee094eb2dfd9f84877bb5a95c12"},
+]
+
+[package.dependencies]
+funcy = ">=2.0"
+intervaltree = ">=3.1.0"
+pefile = ">=2023.2.7"
+python-flirt = {version = ">=0.9.0", optional = true, markers = "extra == \"flirt\""}
+typing_extensions = ">=4.5.0"
+vivisect = ">=1.1.0"
+
+[package.extras]
+build = ["build (==1.2.1)", "setuptools (==75.2.0)"]
+dev = ["black (==24.4.2)", "isort (==5.13.2)", "mypy (==1.11.2)", "pycodestyle (==2.12.0)", "pytest (==8.2.2)", "pytest-instafail (==0.5.0)", "pytest-sugar (==1.0.0)", "types-setuptools (==75.2.0.20241019)"]
+flirt = ["python-flirt (>=0.9.0)"]
+
+[[package]]
+name = "vivisect"
+version = "1.2.1"
+description = "Pure python disassembler, debugger, emulator, and static analysis framework"
+optional = false
+python-versions = ">=3.8"
+groups = ["main"]
+files = [
+    {file = "vivisect-1.2.1-py3-none-any.whl", hash = "sha256:62eb383013318efcd42f2565e4ab5323ebb1fb6b2e8e9e7e432bd126743eccda"},
+    {file = "vivisect-1.2.1.tar.gz", hash = "sha256:cc15ab541b9be3cad8060ee4f420e680258fa4fcf7477f3f9ad5023353f73299"},
+]
+
+[package.dependencies]
+cxxfilt = ">=0.3.0,<0.4.0"
+msgpack = ">=1.0.0,<1.1.0"
+pyasn1 = ">=0.5.0,<0.6.0"
+pyasn1-modules = ">=0.3.0,<0.4.0"
+pycparser = ">=2.20"
+
+[package.extras]
+dev = ["bump2version (>=1.0.0,<1.1.0)"]
+docs = ["sphinx (>=7.1.0,<7.2.0)", "sphinx-rtd-theme (>=1.2.0,<1.3.0)"]
+gui = ["pyqt5 (==5.15.7)", "pyqtwebengine (==5.15.6)"]
+
+[[package]]
+name = "watchfiles"
+version = "1.0.4"
+description = "Simple, modern and high performance file watching and code reload in python."
+optional = false
+python-versions = ">=3.9"
+groups = ["main"]
+files = [
+    {file = "watchfiles-1.0.4-cp310-cp310-macosx_10_12_x86_64.whl", hash = "sha256:ba5bb3073d9db37c64520681dd2650f8bd40902d991e7b4cfaeece3e32561d08"},
+    {file = "watchfiles-1.0.4-cp310-cp310-macosx_11_0_arm64.whl", hash = "sha256:9f25d0ba0fe2b6d2c921cf587b2bf4c451860086534f40c384329fb96e2044d1"},
+    {file = "watchfiles-1.0.4-cp310-cp310-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:47eb32ef8c729dbc4f4273baece89398a4d4b5d21a1493efea77a17059f4df8a"},
+    {file = "watchfiles-1.0.4-cp310-cp310-manylinux_2_17_armv7l.manylinux2014_armv7l.whl", hash = "sha256:076f293100db3b0b634514aa0d294b941daa85fc777f9c698adb1009e5aca0b1"},
+    {file = "watchfiles-1.0.4-cp310-cp310-manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:1eacd91daeb5158c598fe22d7ce66d60878b6294a86477a4715154990394c9b3"},
+    {file = "watchfiles-1.0.4-cp310-cp310-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:13c2ce7b72026cfbca120d652f02c7750f33b4c9395d79c9790b27f014c8a5a2"},
+    {file = "watchfiles-1.0.4-cp310-cp310-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:90192cdc15ab7254caa7765a98132a5a41471cf739513cc9bcf7d2ffcc0ec7b2"},
+    {file = "watchfiles-1.0.4-cp310-cp310-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:278aaa395f405972e9f523bd786ed59dfb61e4b827856be46a42130605fd0899"},
+    {file = "watchfiles-1.0.4-cp310-cp310-musllinux_1_1_aarch64.whl", hash = "sha256:a462490e75e466edbb9fc4cd679b62187153b3ba804868452ef0577ec958f5ff"},
+    {file = "watchfiles-1.0.4-cp310-cp310-musllinux_1_1_x86_64.whl", hash = "sha256:8d0d0630930f5cd5af929040e0778cf676a46775753e442a3f60511f2409f48f"},
+    {file = "watchfiles-1.0.4-cp310-cp310-win32.whl", hash = "sha256:cc27a65069bcabac4552f34fd2dce923ce3fcde0721a16e4fb1b466d63ec831f"},
+    {file = "watchfiles-1.0.4-cp310-cp310-win_amd64.whl", hash = "sha256:8b1f135238e75d075359cf506b27bf3f4ca12029c47d3e769d8593a2024ce161"},
+    {file = "watchfiles-1.0.4-cp311-cp311-macosx_10_12_x86_64.whl", hash = "sha256:2a9f93f8439639dc244c4d2902abe35b0279102bca7bbcf119af964f51d53c19"},
+    {file = "watchfiles-1.0.4-cp311-cp311-macosx_11_0_arm64.whl", hash = "sha256:9eea33ad8c418847dd296e61eb683cae1c63329b6d854aefcd412e12d94ee235"},
+    {file = "watchfiles-1.0.4-cp311-cp311-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:31f1a379c9dcbb3f09cf6be1b7e83b67c0e9faabed0471556d9438a4a4e14202"},
+    {file = "watchfiles-1.0.4-cp311-cp311-manylinux_2_17_armv7l.manylinux2014_armv7l.whl", hash = "sha256:ab594e75644421ae0a2484554832ca5895f8cab5ab62de30a1a57db460ce06c6"},
+    {file = "watchfiles-1.0.4-cp311-cp311-manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:fc2eb5d14a8e0d5df7b36288979176fbb39672d45184fc4b1c004d7c3ce29317"},
+    {file = "watchfiles-1.0.4-cp311-cp311-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:3f68d8e9d5a321163ddacebe97091000955a1b74cd43724e346056030b0bacee"},
+    {file = "watchfiles-1.0.4-cp311-cp311-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:f9ce064e81fe79faa925ff03b9f4c1a98b0bbb4a1b8c1b015afa93030cb21a49"},
+    {file = "watchfiles-1.0.4-cp311-cp311-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:b77d5622ac5cc91d21ae9c2b284b5d5c51085a0bdb7b518dba263d0af006132c"},
+    {file = "watchfiles-1.0.4-cp311-cp311-musllinux_1_1_aarch64.whl", hash = "sha256:1941b4e39de9b38b868a69b911df5e89dc43767feeda667b40ae032522b9b5f1"},
+    {file = "watchfiles-1.0.4-cp311-cp311-musllinux_1_1_x86_64.whl", hash = "sha256:4f8c4998506241dedf59613082d1c18b836e26ef2a4caecad0ec41e2a15e4226"},
+    {file = "watchfiles-1.0.4-cp311-cp311-win32.whl", hash = "sha256:4ebbeca9360c830766b9f0df3640b791be569d988f4be6c06d6fae41f187f105"},
+    {file = "watchfiles-1.0.4-cp311-cp311-win_amd64.whl", hash = "sha256:05d341c71f3d7098920f8551d4df47f7b57ac5b8dad56558064c3431bdfc0b74"},
+    {file = "watchfiles-1.0.4-cp311-cp311-win_arm64.whl", hash = "sha256:32b026a6ab64245b584acf4931fe21842374da82372d5c039cba6bf99ef722f3"},
+    {file = "watchfiles-1.0.4-cp312-cp312-macosx_10_12_x86_64.whl", hash = "sha256:229e6ec880eca20e0ba2f7e2249c85bae1999d330161f45c78d160832e026ee2"},
+    {file = "watchfiles-1.0.4-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:5717021b199e8353782dce03bd8a8f64438832b84e2885c4a645f9723bf656d9"},
+    {file = "watchfiles-1.0.4-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:0799ae68dfa95136dde7c472525700bd48777875a4abb2ee454e3ab18e9fc712"},
+    {file = "watchfiles-1.0.4-cp312-cp312-manylinux_2_17_armv7l.manylinux2014_armv7l.whl", hash = "sha256:43b168bba889886b62edb0397cab5b6490ffb656ee2fcb22dec8bfeb371a9e12"},
+    {file = "watchfiles-1.0.4-cp312-cp312-manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:fb2c46e275fbb9f0c92e7654b231543c7bbfa1df07cdc4b99fa73bedfde5c844"},
+    {file = "watchfiles-1.0.4-cp312-cp312-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:857f5fc3aa027ff5e57047da93f96e908a35fe602d24f5e5d8ce64bf1f2fc733"},
+    {file = "watchfiles-1.0.4-cp312-cp312-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:55ccfd27c497b228581e2838d4386301227fc0cb47f5a12923ec2fe4f97b95af"},
+    {file = "watchfiles-1.0.4-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:5c11ea22304d17d4385067588123658e9f23159225a27b983f343fcffc3e796a"},
+    {file = "watchfiles-1.0.4-cp312-cp312-musllinux_1_1_aarch64.whl", hash = "sha256:74cb3ca19a740be4caa18f238298b9d472c850f7b2ed89f396c00a4c97e2d9ff"},
+    {file = "watchfiles-1.0.4-cp312-cp312-musllinux_1_1_x86_64.whl", hash = "sha256:c7cce76c138a91e720d1df54014a047e680b652336e1b73b8e3ff3158e05061e"},
+    {file = "watchfiles-1.0.4-cp312-cp312-win32.whl", hash = "sha256:b045c800d55bc7e2cadd47f45a97c7b29f70f08a7c2fa13241905010a5493f94"},
+    {file = "watchfiles-1.0.4-cp312-cp312-win_amd64.whl", hash = "sha256:c2acfa49dd0ad0bf2a9c0bb9a985af02e89345a7189be1efc6baa085e0f72d7c"},
+    {file = "watchfiles-1.0.4-cp312-cp312-win_arm64.whl", hash = "sha256:22bb55a7c9e564e763ea06c7acea24fc5d2ee5dfc5dafc5cfbedfe58505e9f90"},
+    {file = "watchfiles-1.0.4-cp313-cp313-macosx_10_12_x86_64.whl", hash = "sha256:8012bd820c380c3d3db8435e8cf7592260257b378b649154a7948a663b5f84e9"},
+    {file = "watchfiles-1.0.4-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:aa216f87594f951c17511efe5912808dfcc4befa464ab17c98d387830ce07b60"},
+    {file = "watchfiles-1.0.4-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:62c9953cf85529c05b24705639ffa390f78c26449e15ec34d5339e8108c7c407"},
+    {file = "watchfiles-1.0.4-cp313-cp313-manylinux_2_17_armv7l.manylinux2014_armv7l.whl", hash = "sha256:7cf684aa9bba4cd95ecb62c822a56de54e3ae0598c1a7f2065d51e24637a3c5d"},
+    {file = "watchfiles-1.0.4-cp313-cp313-manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:f44a39aee3cbb9b825285ff979ab887a25c5d336e5ec3574f1506a4671556a8d"},
+    {file = "watchfiles-1.0.4-cp313-cp313-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:a38320582736922be8c865d46520c043bff350956dfc9fbaee3b2df4e1740a4b"},
+    {file = "watchfiles-1.0.4-cp313-cp313-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:39f4914548b818540ef21fd22447a63e7be6e24b43a70f7642d21f1e73371590"},
+    {file = "watchfiles-1.0.4-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:f12969a3765909cf5dc1e50b2436eb2c0e676a3c75773ab8cc3aa6175c16e902"},
+    {file = "watchfiles-1.0.4-cp313-cp313-musllinux_1_1_aarch64.whl", hash = "sha256:0986902677a1a5e6212d0c49b319aad9cc48da4bd967f86a11bde96ad9676ca1"},
+    {file = "watchfiles-1.0.4-cp313-cp313-musllinux_1_1_x86_64.whl", hash = "sha256:308ac265c56f936636e3b0e3f59e059a40003c655228c131e1ad439957592303"},
+    {file = "watchfiles-1.0.4-cp313-cp313-win32.whl", hash = "sha256:aee397456a29b492c20fda2d8961e1ffb266223625346ace14e4b6d861ba9c80"},
+    {file = "watchfiles-1.0.4-cp313-cp313-win_amd64.whl", hash = "sha256:d6097538b0ae5c1b88c3b55afa245a66793a8fec7ada6755322e465fb1a0e8cc"},
+    {file = "watchfiles-1.0.4-cp39-cp39-macosx_10_12_x86_64.whl", hash = "sha256:d3452c1ec703aa1c61e15dfe9d482543e4145e7c45a6b8566978fbb044265a21"},
+    {file = "watchfiles-1.0.4-cp39-cp39-macosx_11_0_arm64.whl", hash = "sha256:7b75fee5a16826cf5c46fe1c63116e4a156924d668c38b013e6276f2582230f0"},
+    {file = "watchfiles-1.0.4-cp39-cp39-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:4e997802d78cdb02623b5941830ab06f8860038faf344f0d288d325cc9c5d2ff"},
+    {file = "watchfiles-1.0.4-cp39-cp39-manylinux_2_17_armv7l.manylinux2014_armv7l.whl", hash = "sha256:e0611d244ce94d83f5b9aff441ad196c6e21b55f77f3c47608dcf651efe54c4a"},
+    {file = "watchfiles-1.0.4-cp39-cp39-manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:9745a4210b59e218ce64c91deb599ae8775c8a9da4e95fb2ee6fe745fc87d01a"},
+    {file = "watchfiles-1.0.4-cp39-cp39-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:4810ea2ae622add560f4aa50c92fef975e475f7ac4900ce5ff5547b2434642d8"},
+    {file = "watchfiles-1.0.4-cp39-cp39-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:740d103cd01458f22462dedeb5a3382b7f2c57d07ff033fbc9465919e5e1d0f3"},
+    {file = "watchfiles-1.0.4-cp39-cp39-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:cdbd912a61543a36aef85e34f212e5d2486e7c53ebfdb70d1e0b060cc50dd0bf"},
+    {file = "watchfiles-1.0.4-cp39-cp39-musllinux_1_1_aarch64.whl", hash = "sha256:0bc80d91ddaf95f70258cf78c471246846c1986bcc5fd33ccc4a1a67fcb40f9a"},
+    {file = "watchfiles-1.0.4-cp39-cp39-musllinux_1_1_x86_64.whl", hash = "sha256:ab0311bb2ffcd9f74b6c9de2dda1612c13c84b996d032cd74799adb656af4e8b"},
+    {file = "watchfiles-1.0.4-cp39-cp39-win32.whl", hash = "sha256:02a526ee5b5a09e8168314c905fc545c9bc46509896ed282aeb5a8ba9bd6ca27"},
+    {file = "watchfiles-1.0.4-cp39-cp39-win_amd64.whl", hash = "sha256:a5ae5706058b27c74bac987d615105da17724172d5aaacc6c362a40599b6de43"},
+    {file = "watchfiles-1.0.4-pp310-pypy310_pp73-macosx_10_12_x86_64.whl", hash = "sha256:cdcc92daeae268de1acf5b7befcd6cfffd9a047098199056c72e4623f531de18"},
+    {file = "watchfiles-1.0.4-pp310-pypy310_pp73-macosx_11_0_arm64.whl", hash = "sha256:d8d3d9203705b5797f0af7e7e5baa17c8588030aaadb7f6a86107b7247303817"},
+    {file = "watchfiles-1.0.4-pp310-pypy310_pp73-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:bdef5a1be32d0b07dcea3318a0be95d42c98ece24177820226b56276e06b63b0"},
+    {file = "watchfiles-1.0.4-pp310-pypy310_pp73-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:342622287b5604ddf0ed2d085f3a589099c9ae8b7331df3ae9845571586c4f3d"},
+    {file = "watchfiles-1.0.4-pp39-pypy39_pp73-macosx_10_12_x86_64.whl", hash = "sha256:9fe37a2de80aa785d340f2980276b17ef697ab8db6019b07ee4fd28a8359d2f3"},
+    {file = "watchfiles-1.0.4-pp39-pypy39_pp73-macosx_11_0_arm64.whl", hash = "sha256:9d1ef56b56ed7e8f312c934436dea93bfa3e7368adfcf3df4c0da6d4de959a1e"},
+    {file = "watchfiles-1.0.4-pp39-pypy39_pp73-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:95b42cac65beae3a362629950c444077d1b44f1790ea2772beaea95451c086bb"},
+    {file = "watchfiles-1.0.4-pp39-pypy39_pp73-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:5e0227b8ed9074c6172cf55d85b5670199c99ab11fd27d2c473aa30aec67ee42"},
+    {file = "watchfiles-1.0.4.tar.gz", hash = "sha256:6ba473efd11062d73e4f00c2b730255f9c1bdd73cd5f9fe5b5da8dbd4a717205"},
+]
+
+[package.dependencies]
+anyio = ">=3.0.0"
+
+[[package]]
+name = "wcwidth"
+version = "0.2.13"
+description = "Measures the displayed width of unicode strings in a terminal"
+optional = false
+python-versions = "*"
+groups = ["main"]
+files = [
+    {file = "wcwidth-0.2.13-py2.py3-none-any.whl", hash = "sha256:3da69048e4540d84af32131829ff948f1e022c1c6bdb8d6102117aac784f6859"},
+    {file = "wcwidth-0.2.13.tar.gz", hash = "sha256:72ea0c06399eb286d978fdedb6923a9eb47e1c486ce63e9b4e64fc18303972b5"},
+]
+
+[[package]]
+name = "websockets"
+version = "14.2"
+description = "An implementation of the WebSocket Protocol (RFC 6455 & 7692)"
+optional = false
+python-versions = ">=3.9"
+groups = ["main"]
+files = [
+    {file = "websockets-14.2-cp310-cp310-macosx_10_9_universal2.whl", hash = "sha256:e8179f95323b9ab1c11723e5d91a89403903f7b001828161b480a7810b334885"},
+    {file = "websockets-14.2-cp310-cp310-macosx_10_9_x86_64.whl", hash = "sha256:0d8c3e2cdb38f31d8bd7d9d28908005f6fa9def3324edb9bf336d7e4266fd397"},
+    {file = "websockets-14.2-cp310-cp310-macosx_11_0_arm64.whl", hash = "sha256:714a9b682deb4339d39ffa674f7b674230227d981a37d5d174a4a83e3978a610"},
+    {file = "websockets-14.2-cp310-cp310-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:f2e53c72052f2596fb792a7acd9704cbc549bf70fcde8a99e899311455974ca3"},
+    {file = "websockets-14.2-cp310-cp310-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:e3fbd68850c837e57373d95c8fe352203a512b6e49eaae4c2f4088ef8cf21980"},
+    {file = "websockets-14.2-cp310-cp310-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:4b27ece32f63150c268593d5fdb82819584831a83a3f5809b7521df0685cd5d8"},
+    {file = "websockets-14.2-cp310-cp310-musllinux_1_2_aarch64.whl", hash = "sha256:4daa0faea5424d8713142b33825fff03c736f781690d90652d2c8b053345b0e7"},
+    {file = "websockets-14.2-cp310-cp310-musllinux_1_2_i686.whl", hash = "sha256:bc63cee8596a6ec84d9753fd0fcfa0452ee12f317afe4beae6b157f0070c6c7f"},
+    {file = "websockets-14.2-cp310-cp310-musllinux_1_2_x86_64.whl", hash = "sha256:7a570862c325af2111343cc9b0257b7119b904823c675b22d4ac547163088d0d"},
+    {file = "websockets-14.2-cp310-cp310-win32.whl", hash = "sha256:75862126b3d2d505e895893e3deac0a9339ce750bd27b4ba515f008b5acf832d"},
+    {file = "websockets-14.2-cp310-cp310-win_amd64.whl", hash = "sha256:cc45afb9c9b2dc0852d5c8b5321759cf825f82a31bfaf506b65bf4668c96f8b2"},
+    {file = "websockets-14.2-cp311-cp311-macosx_10_9_universal2.whl", hash = "sha256:3bdc8c692c866ce5fefcaf07d2b55c91d6922ac397e031ef9b774e5b9ea42166"},
+    {file = "websockets-14.2-cp311-cp311-macosx_10_9_x86_64.whl", hash = "sha256:c93215fac5dadc63e51bcc6dceca72e72267c11def401d6668622b47675b097f"},
+    {file = "websockets-14.2-cp311-cp311-macosx_11_0_arm64.whl", hash = "sha256:1c9b6535c0e2cf8a6bf938064fb754aaceb1e6a4a51a80d884cd5db569886910"},
+    {file = "websockets-14.2-cp311-cp311-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:0a52a6d7cf6938e04e9dceb949d35fbdf58ac14deea26e685ab6368e73744e4c"},
+    {file = "websockets-14.2-cp311-cp311-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:9f05702e93203a6ff5226e21d9b40c037761b2cfb637187c9802c10f58e40473"},
+    {file = "websockets-14.2-cp311-cp311-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:22441c81a6748a53bfcb98951d58d1af0661ab47a536af08920d129b4d1c3473"},
+    {file = "websockets-14.2-cp311-cp311-musllinux_1_2_aarch64.whl", hash = "sha256:efd9b868d78b194790e6236d9cbc46d68aba4b75b22497eb4ab64fa640c3af56"},
+    {file = "websockets-14.2-cp311-cp311-musllinux_1_2_i686.whl", hash = "sha256:1a5a20d5843886d34ff8c57424cc65a1deda4375729cbca4cb6b3353f3ce4142"},
+    {file = "websockets-14.2-cp311-cp311-musllinux_1_2_x86_64.whl", hash = "sha256:34277a29f5303d54ec6468fb525d99c99938607bc96b8d72d675dee2b9f5bf1d"},
+    {file = "websockets-14.2-cp311-cp311-win32.whl", hash = "sha256:02687db35dbc7d25fd541a602b5f8e451a238ffa033030b172ff86a93cb5dc2a"},
+    {file = "websockets-14.2-cp311-cp311-win_amd64.whl", hash = "sha256:862e9967b46c07d4dcd2532e9e8e3c2825e004ffbf91a5ef9dde519ee2effb0b"},
+    {file = "websockets-14.2-cp312-cp312-macosx_10_13_universal2.whl", hash = "sha256:1f20522e624d7ffbdbe259c6b6a65d73c895045f76a93719aa10cd93b3de100c"},
+    {file = "websockets-14.2-cp312-cp312-macosx_10_13_x86_64.whl", hash = "sha256:647b573f7d3ada919fd60e64d533409a79dcf1ea21daeb4542d1d996519ca967"},
+    {file = "websockets-14.2-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:6af99a38e49f66be5a64b1e890208ad026cda49355661549c507152113049990"},
+    {file = "websockets-14.2-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:091ab63dfc8cea748cc22c1db2814eadb77ccbf82829bac6b2fbe3401d548eda"},
+    {file = "websockets-14.2-cp312-cp312-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:b374e8953ad477d17e4851cdc66d83fdc2db88d9e73abf755c94510ebddceb95"},
+    {file = "websockets-14.2-cp312-cp312-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:a39d7eceeea35db85b85e1169011bb4321c32e673920ae9c1b6e0978590012a3"},
+    {file = "websockets-14.2-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:0a6f3efd47ffd0d12080594f434faf1cd2549b31e54870b8470b28cc1d3817d9"},
+    {file = "websockets-14.2-cp312-cp312-musllinux_1_2_i686.whl", hash = "sha256:065ce275e7c4ffb42cb738dd6b20726ac26ac9ad0a2a48e33ca632351a737267"},
+    {file = "websockets-14.2-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:e9d0e53530ba7b8b5e389c02282f9d2aa47581514bd6049d3a7cffe1385cf5fe"},
+    {file = "websockets-14.2-cp312-cp312-win32.whl", hash = "sha256:20e6dd0984d7ca3037afcb4494e48c74ffb51e8013cac71cf607fffe11df7205"},
+    {file = "websockets-14.2-cp312-cp312-win_amd64.whl", hash = "sha256:44bba1a956c2c9d268bdcdf234d5e5ff4c9b6dc3e300545cbe99af59dda9dcce"},
+    {file = "websockets-14.2-cp313-cp313-macosx_10_13_universal2.whl", hash = "sha256:6f1372e511c7409a542291bce92d6c83320e02c9cf392223272287ce55bc224e"},
+    {file = "websockets-14.2-cp313-cp313-macosx_10_13_x86_64.whl", hash = "sha256:4da98b72009836179bb596a92297b1a61bb5a830c0e483a7d0766d45070a08ad"},
+    {file = "websockets-14.2-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:f8a86a269759026d2bde227652b87be79f8a734e582debf64c9d302faa1e9f03"},
+    {file = "websockets-14.2-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:86cf1aaeca909bf6815ea714d5c5736c8d6dd3a13770e885aafe062ecbd04f1f"},
+    {file = "websockets-14.2-cp313-cp313-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:a9b0f6c3ba3b1240f602ebb3971d45b02cc12bd1845466dd783496b3b05783a5"},
+    {file = "websockets-14.2-cp313-cp313-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:669c3e101c246aa85bc8534e495952e2ca208bd87994650b90a23d745902db9a"},
+    {file = "websockets-14.2-cp313-cp313-musllinux_1_2_aarch64.whl", hash = "sha256:eabdb28b972f3729348e632ab08f2a7b616c7e53d5414c12108c29972e655b20"},
+    {file = "websockets-14.2-cp313-cp313-musllinux_1_2_i686.whl", hash = "sha256:2066dc4cbcc19f32c12a5a0e8cc1b7ac734e5b64ac0a325ff8353451c4b15ef2"},
+    {file = "websockets-14.2-cp313-cp313-musllinux_1_2_x86_64.whl", hash = "sha256:ab95d357cd471df61873dadf66dd05dd4709cae001dd6342edafc8dc6382f307"},
+    {file = "websockets-14.2-cp313-cp313-win32.whl", hash = "sha256:a9e72fb63e5f3feacdcf5b4ff53199ec8c18d66e325c34ee4c551ca748623bbc"},
+    {file = "websockets-14.2-cp313-cp313-win_amd64.whl", hash = "sha256:b439ea828c4ba99bb3176dc8d9b933392a2413c0f6b149fdcba48393f573377f"},
+    {file = "websockets-14.2-cp39-cp39-macosx_10_9_universal2.whl", hash = "sha256:7cd5706caec1686c5d233bc76243ff64b1c0dc445339bd538f30547e787c11fe"},
+    {file = "websockets-14.2-cp39-cp39-macosx_10_9_x86_64.whl", hash = "sha256:ec607328ce95a2f12b595f7ae4c5d71bf502212bddcea528290b35c286932b12"},
+    {file = "websockets-14.2-cp39-cp39-macosx_11_0_arm64.whl", hash = "sha256:da85651270c6bfb630136423037dd4975199e5d4114cae6d3066641adcc9d1c7"},
+    {file = "websockets-14.2-cp39-cp39-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:c3ecadc7ce90accf39903815697917643f5b7cfb73c96702318a096c00aa71f5"},
+    {file = "websockets-14.2-cp39-cp39-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:1979bee04af6a78608024bad6dfcc0cc930ce819f9e10342a29a05b5320355d0"},
+    {file = "websockets-14.2-cp39-cp39-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:2dddacad58e2614a24938a50b85969d56f88e620e3f897b7d80ac0d8a5800258"},
+    {file = "websockets-14.2-cp39-cp39-musllinux_1_2_aarch64.whl", hash = "sha256:89a71173caaf75fa71a09a5f614f450ba3ec84ad9fca47cb2422a860676716f0"},
+    {file = "websockets-14.2-cp39-cp39-musllinux_1_2_i686.whl", hash = "sha256:6af6a4b26eea4fc06c6818a6b962a952441e0e39548b44773502761ded8cc1d4"},
+    {file = "websockets-14.2-cp39-cp39-musllinux_1_2_x86_64.whl", hash = "sha256:80c8efa38957f20bba0117b48737993643204645e9ec45512579132508477cfc"},
+    {file = "websockets-14.2-cp39-cp39-win32.whl", hash = "sha256:2e20c5f517e2163d76e2729104abc42639c41cf91f7b1839295be43302713661"},
+    {file = "websockets-14.2-cp39-cp39-win_amd64.whl", hash = "sha256:b4c8cef610e8d7c70dea92e62b6814a8cd24fbd01d7103cc89308d2bfe1659ef"},
+    {file = "websockets-14.2-pp310-pypy310_pp73-macosx_10_15_x86_64.whl", hash = "sha256:d7d9cafbccba46e768be8a8ad4635fa3eae1ffac4c6e7cb4eb276ba41297ed29"},
+    {file = "websockets-14.2-pp310-pypy310_pp73-macosx_11_0_arm64.whl", hash = "sha256:c76193c1c044bd1e9b3316dcc34b174bbf9664598791e6fb606d8d29000e070c"},
+    {file = "websockets-14.2-pp310-pypy310_pp73-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:fd475a974d5352390baf865309fe37dec6831aafc3014ffac1eea99e84e83fc2"},
+    {file = "websockets-14.2-pp310-pypy310_pp73-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:2c6c0097a41968b2e2b54ed3424739aab0b762ca92af2379f152c1aef0187e1c"},
+    {file = "websockets-14.2-pp310-pypy310_pp73-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:6d7ff794c8b36bc402f2e07c0b2ceb4a2424147ed4785ff03e2a7af03711d60a"},
+    {file = "websockets-14.2-pp310-pypy310_pp73-win_amd64.whl", hash = "sha256:dec254fcabc7bd488dab64846f588fc5b6fe0d78f641180030f8ea27b76d72c3"},
+    {file = "websockets-14.2-pp39-pypy39_pp73-macosx_10_15_x86_64.whl", hash = "sha256:bbe03eb853e17fd5b15448328b4ec7fb2407d45fb0245036d06a3af251f8e48f"},
+    {file = "websockets-14.2-pp39-pypy39_pp73-macosx_11_0_arm64.whl", hash = "sha256:a3c4aa3428b904d5404a0ed85f3644d37e2cb25996b7f096d77caeb0e96a3b42"},
+    {file = "websockets-14.2-pp39-pypy39_pp73-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:577a4cebf1ceaf0b65ffc42c54856214165fb8ceeba3935852fc33f6b0c55e7f"},
+    {file = "websockets-14.2-pp39-pypy39_pp73-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:ad1c1d02357b7665e700eca43a31d52814ad9ad9b89b58118bdabc365454b574"},
+    {file = "websockets-14.2-pp39-pypy39_pp73-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:f390024a47d904613577df83ba700bd189eedc09c57af0a904e5c39624621270"},
+    {file = "websockets-14.2-pp39-pypy39_pp73-win_amd64.whl", hash = "sha256:3c1426c021c38cf92b453cdf371228d3430acd775edee6bac5a4d577efc72365"},
+    {file = "websockets-14.2-py3-none-any.whl", hash = "sha256:7a6ceec4ea84469f15cf15807a747e9efe57e369c384fa86e022b3bea679b79b"},
+    {file = "websockets-14.2.tar.gz", hash = "sha256:5059ed9c54945efb321f097084b4c7e52c246f2c869815876a69d1efc4ad6eb5"},
+]
+
+[[package]]
+name = "werkzeug"
+version = "3.1.4"
+description = "The comprehensive WSGI web application library."
+optional = false
+python-versions = ">=3.9"
+groups = ["main"]
+files = [
+    {file = "werkzeug-3.1.4-py3-none-any.whl", hash = "sha256:2ad50fb9ed09cc3af22c54698351027ace879a0b60a3b5edf5730b2f7d876905"},
+    {file = "werkzeug-3.1.4.tar.gz", hash = "sha256:cd3cd98b1b92dc3b7b3995038826c68097dcb16f9baa63abe35f20eafeb9fe5e"},
+]
+
+[package.dependencies]
+markupsafe = ">=2.1.1"
+
+[package.extras]
+watchdog = ["watchdog (>=2.3)"]
+
+[[package]]
+name = "win-unicode-console"
+version = "0.5"
+description = "Enable Unicode input and display when running Python from Windows console."
+optional = false
+python-versions = "*"
+groups = ["main"]
+markers = "platform_system == \"Windows\" and platform_python_implementation != \"PyPy\""
+files = [
+    {file = "win_unicode_console-0.5.zip", hash = "sha256:d4142d4d56d46f449d6f00536a73625a871cba040f0bc1a2e305a04578f07d1e"},
+]
+
+[[package]]
+name = "xmltodict"
+version = "0.14.2"
+description = "Makes working with XML feel like you are working with JSON"
+optional = false
+python-versions = ">=3.6"
+groups = ["main"]
+files = [
+    {file = "xmltodict-0.14.2-py2.py3-none-any.whl", hash = "sha256:20cc7d723ed729276e808f26fb6b3599f786cbc37e06c65e192ba77c40f20aac"},
+    {file = "xmltodict-0.14.2.tar.gz", hash = "sha256:201e7c28bb210e374999d1dde6382923ab0ed1a8a5faeece48ab525b7810a553"},
+]
+
+[[package]]
+name = "yara-python"
+version = "4.5.1"
+description = "Python interface for YARA"
+optional = false
+python-versions = "*"
+groups = ["main"]
+files = [
+    {file = "yara_python-4.5.1-cp310-cp310-macosx_10_9_universal2.whl", hash = "sha256:7c92219bf91caea277bc2736df70dda3709834c297a4a5906f1d9a46cd03579a"},
+    {file = "yara_python-4.5.1-cp310-cp310-macosx_10_9_x86_64.whl", hash = "sha256:6e8e9eb5a49a70a013bf45e0ec97210b7cb124813271fddc666c3cfb1308a2d5"},
+    {file = "yara_python-4.5.1-cp310-cp310-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:ffb48e853f107f2e6e0e29a97ce1185e9cc7a15a6c860dc65eb8ec431d1b6d3e"},
+    {file = "yara_python-4.5.1-cp310-cp310-manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:2c6a4e181de457a5de74982b82ab01c89a06bcd66820ca1671f22e984be1be78"},
+    {file = "yara_python-4.5.1-cp310-cp310-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:155ef1a9ca2aeeb57441fa99b6d8bd2cb67787f0d62b3c1670512e36c97ec02f"},
+    {file = "yara_python-4.5.1-cp310-cp310-musllinux_1_1_aarch64.whl", hash = "sha256:264fdc2953c635131112a2cef6208b52d35731a6cc902cc62fe82508d9051afd"},
+    {file = "yara_python-4.5.1-cp310-cp310-musllinux_1_1_i686.whl", hash = "sha256:a1a3e6b610e7131353cfea80ba119db3e96f7ad7befcd9d5a51df8786c806403"},
+    {file = "yara_python-4.5.1-cp310-cp310-musllinux_1_1_x86_64.whl", hash = "sha256:aec3dda6b173c4be4d972058ee41fb019c866b82861f12a1ac2b01035cea34b9"},
+    {file = "yara_python-4.5.1-cp310-cp310-win32.whl", hash = "sha256:8c3935da45ce283e02a86c9120240524e352add64c5cbccd616885937801ac67"},
+    {file = "yara_python-4.5.1-cp310-cp310-win_amd64.whl", hash = "sha256:59fd46cc8c5a77e5e4942c7e403ac738f5c64154dcbc67bd8c9af453d7bb2539"},
+    {file = "yara_python-4.5.1-cp311-cp311-macosx_10_9_universal2.whl", hash = "sha256:3044359876921e26370f7b646d84a65681811df577be7d4d09c7de21b33d9130"},
+    {file = "yara_python-4.5.1-cp311-cp311-macosx_10_9_x86_64.whl", hash = "sha256:49ad70b6b65ed1c591c3bfb3d5d6da0fc6a73b1f979604feead450f348ad67c4"},
+    {file = "yara_python-4.5.1-cp311-cp311-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:5a6a185d2ec8fbbffa89d0f7949b84f76860d0e3a74192825dbf53d6a5069b83"},
+    {file = "yara_python-4.5.1-cp311-cp311-manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:2560dd27f63cdb395d9d77d6a74d1f0d6b7aa0ea18394f44d650e5abb6e377a3"},
+    {file = "yara_python-4.5.1-cp311-cp311-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:471e4070bf7e3b9b132f1c0134d1172d9dae353b04f2fce9bc31431ae785595e"},
+    {file = "yara_python-4.5.1-cp311-cp311-musllinux_1_1_aarch64.whl", hash = "sha256:f533848781f0e46e44eda77055eae4ec934cf56c1f473e787704f1a348e90094"},
+    {file = "yara_python-4.5.1-cp311-cp311-musllinux_1_1_i686.whl", hash = "sha256:3aaf259ed162d2de5db70ae1ba057307efdeb7f4697d74cc5b3313caa7647923"},
+    {file = "yara_python-4.5.1-cp311-cp311-musllinux_1_1_x86_64.whl", hash = "sha256:90374acc38086447a668580a9aecceb11964f08deb05bfaced6f43e9e67955a1"},
+    {file = "yara_python-4.5.1-cp311-cp311-win32.whl", hash = "sha256:721422a14d18a81d75397df51481f5b5f3ab8d0a5220087e5306570877cab4e4"},
+    {file = "yara_python-4.5.1-cp311-cp311-win_amd64.whl", hash = "sha256:dac13dc77a5f21c119104ae4e6ad837589eace0505e9daf38af0bd2d4ccd7cfa"},
+    {file = "yara_python-4.5.1-cp312-cp312-macosx_10_9_universal2.whl", hash = "sha256:7eb27c1cd2f6f93f68e23e676ede28357c1fc8b9ec7deefe86f2cfef4abd877c"},
+    {file = "yara_python-4.5.1-cp312-cp312-macosx_10_9_x86_64.whl", hash = "sha256:4c7ac7c1ae5e25bd5bf67ce752ac82568c2cdc157c9af50ba28d7cbab4421175"},
+    {file = "yara_python-4.5.1-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:77011bed905f3786755da7de7ba9082790db654a241e13746fa3fc325b9ad966"},
+    {file = "yara_python-4.5.1-cp312-cp312-manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:0ddedd9bfcfc37ffddceefd9dbf9bbba137c979b3effc9c1e9aeb08d77c6858c"},
+    {file = "yara_python-4.5.1-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:3431154fac7f41b4657edad91632717b5f1bab5be4ed6ce28d6e17e441d5c947"},
+    {file = "yara_python-4.5.1-cp312-cp312-musllinux_1_1_aarch64.whl", hash = "sha256:7d5dc091235ded00b30f04a51d70e08352e44976122f8d45e63d25e96eae27d9"},
+    {file = "yara_python-4.5.1-cp312-cp312-musllinux_1_1_i686.whl", hash = "sha256:97d30a483d195e6b695f072086cf1234317a650727844bac7bf85cf98dd960a3"},
+    {file = "yara_python-4.5.1-cp312-cp312-musllinux_1_1_x86_64.whl", hash = "sha256:bb65c17657b4cdbe5adee7a6e617ee05e214e8afdbc82b195885354a72a16476"},
+    {file = "yara_python-4.5.1-cp312-cp312-win32.whl", hash = "sha256:4f368d057e0865278444c948a65802f7c92008a1b59bf629bdc9efa1b0120a22"},
+    {file = "yara_python-4.5.1-cp312-cp312-win_amd64.whl", hash = "sha256:6ccd73466d7ad1a50cd06f38fdb7a023fee87dd185d3fcf67cc5c55d82cc34dd"},
+    {file = "yara_python-4.5.1-cp37-cp37m-macosx_10_9_x86_64.whl", hash = "sha256:37ff0e6256d75521e5ac52b45671647bd6f6a7aa49259b13c19db424d9fdb795"},
+    {file = "yara_python-4.5.1-cp37-cp37m-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:c17d1555dbd99f4872ca289ee92b9630331def0df864f88ced1665efa3cabdac"},
+    {file = "yara_python-4.5.1-cp37-cp37m-manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:cfae9eac6a65d25799aecd21cb43f3552a86552c57e90e85e03a1e95e100fb35"},
+    {file = "yara_python-4.5.1-cp37-cp37m-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:b8c8cfbdc33cbcf78afd6e11149e406dfe558bbd497ff0c9b001753545a326e7"},
+    {file = "yara_python-4.5.1-cp37-cp37m-musllinux_1_1_aarch64.whl", hash = "sha256:bb767f5c9c67d0b5de4d916c92130303d02d07d5a96a160aa5d7aa6c45883b1f"},
+    {file = "yara_python-4.5.1-cp37-cp37m-musllinux_1_1_i686.whl", hash = "sha256:e14d43aba8a8d66268cd45ce534bb7b608ca08d97d4ffb9f0205ef5554e317fb"},
+    {file = "yara_python-4.5.1-cp37-cp37m-musllinux_1_1_x86_64.whl", hash = "sha256:4c2d81727e24c224b0003770f2548f2eb75d9a95d5aa03b65d5ccf8ab3112d8d"},
+    {file = "yara_python-4.5.1-cp37-cp37m-win32.whl", hash = "sha256:da5848e64fdde37529e6ebd8e5778e4665a7dee8cdff2f347ec47a39b453f298"},
+    {file = "yara_python-4.5.1-cp37-cp37m-win_amd64.whl", hash = "sha256:0fc8a450b662a0235ab7cee59ad2e366207c97bb99a80db9ffb68f865abd4ac9"},
+    {file = "yara_python-4.5.1-cp38-cp38-macosx_10_9_universal2.whl", hash = "sha256:0324175b06c440eb754b7ff3845b6eb426b5870bbbebbeae32f2e5281fd35860"},
+    {file = "yara_python-4.5.1-cp38-cp38-macosx_10_9_x86_64.whl", hash = "sha256:f408668aab84a0f42b78784d948a69a99bf95300536edd4ab771bb4a06d92f50"},
+    {file = "yara_python-4.5.1-cp38-cp38-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:a885ec2800b3ee8c4ba9e6634005e041afad33998d59fa6c76bea60c1bd9c73b"},
+    {file = "yara_python-4.5.1-cp38-cp38-manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:153d459a2382a28d08edb84a74f27d8ef2cc8154f7822dadf744c5797e8e6f25"},
+    {file = "yara_python-4.5.1-cp38-cp38-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:509ca2000c9f76c3304f9fdbb886b1d403231a6a76ec9b4aeb18c67ee8279917"},
+    {file = "yara_python-4.5.1-cp38-cp38-musllinux_1_1_aarch64.whl", hash = "sha256:b03d2ffe24a13d69d14b12517aac7a4ea5f0df41ac725f282ebdc729f4365a3d"},
+    {file = "yara_python-4.5.1-cp38-cp38-musllinux_1_1_i686.whl", hash = "sha256:8e90cc9bee1340dec0e9dab95e056dec08e6ac67945ad20f537d65457845f2f1"},
+    {file = "yara_python-4.5.1-cp38-cp38-musllinux_1_1_x86_64.whl", hash = "sha256:37f6e85ee2fe458b52d4984bc2327cd33d69a10579dd708e29d6fbd371aceafe"},
+    {file = "yara_python-4.5.1-cp38-cp38-win32.whl", hash = "sha256:90aa56a3e27fdc5751550fe136a8d815c55a1a1db025b28d1f7d146493751310"},
+    {file = "yara_python-4.5.1-cp38-cp38-win_amd64.whl", hash = "sha256:4cc7d5220a488fa0470f7c7ea303d1174e3b7e88dc6eef539ab048c8590257a8"},
+    {file = "yara_python-4.5.1-cp39-cp39-macosx_10_9_universal2.whl", hash = "sha256:6e8566034b9c24a12a8fd8b0ff580b078add7f9e9719e633ad1adcbb33be534a"},
+    {file = "yara_python-4.5.1-cp39-cp39-macosx_10_9_x86_64.whl", hash = "sha256:934f08ca197a645977749ca1163262abcec9bdbcb54cd47ffb2452c3edc4c5e4"},
+    {file = "yara_python-4.5.1-cp39-cp39-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:a41992c45fcad39ad05016eafc3c3632b3a11ede2440ba9c1250c5e5d484687a"},
+    {file = "yara_python-4.5.1-cp39-cp39-manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:70eb3f84b6e57f7f52676ae9c11dccde2867f49bac6e9a042ef2d027a8afb9f1"},
+    {file = "yara_python-4.5.1-cp39-cp39-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:9d21efeb69d83c48419beccda4aeb415c4c993387e6dee64d8eac4b33af8ac58"},
+    {file = "yara_python-4.5.1-cp39-cp39-musllinux_1_1_aarch64.whl", hash = "sha256:98b780fe880cb219b9a92957a1f9863e53908a2dd75483976265d256b3b69b84"},
+    {file = "yara_python-4.5.1-cp39-cp39-musllinux_1_1_i686.whl", hash = "sha256:04c414472b0e3c4a2998ae247c0215bbb52c7808d09a7ca3899ef86ad1df7a7b"},
+    {file = "yara_python-4.5.1-cp39-cp39-musllinux_1_1_x86_64.whl", hash = "sha256:0502328eeb18aa6e50af7e31df91b1dd23db0d47a0744383d90ff5cb38ff8d30"},
+    {file = "yara_python-4.5.1-cp39-cp39-win32.whl", hash = "sha256:5c266ce1a9f6f783f565d0687a052e0a76c287495452a92d495809f8f6c32a44"},
+    {file = "yara_python-4.5.1-cp39-cp39-win_amd64.whl", hash = "sha256:cc08a46630373bf194dc560e422622d45a3cbefec334650a96777f4c5f31f637"},
+    {file = "yara_python-4.5.1-pp310-pypy310_pp73-macosx_10_9_x86_64.whl", hash = "sha256:f23ea9893efd676eb2727e869b486d71e7cb7839789a36c80b726258365b39b6"},
+    {file = "yara_python-4.5.1-pp310-pypy310_pp73-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:edf490994334b00933f7bc37fdd255451f12db741b15c2917fceb31e11bb698d"},
+    {file = "yara_python-4.5.1-pp310-pypy310_pp73-manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:038dcec1728233144ab0ab7ea4ed060f642c5f3152742c9ee71b493f571d6fd5"},
+    {file = "yara_python-4.5.1-pp310-pypy310_pp73-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:146f2fbdeb043c32a6a7d08a4e37a0bb1c3c0a16d2ad97d957627f6158360569"},
+    {file = "yara_python-4.5.1-pp310-pypy310_pp73-win_amd64.whl", hash = "sha256:389aa3a655c94885399e290bd74703273d7a1ecb33593b62801abee91efdfc86"},
+    {file = "yara_python-4.5.1-pp37-pypy37_pp73-macosx_10_9_x86_64.whl", hash = "sha256:df67822be9430066f76604421f79b8d1446d749d925376c82c3e7649064899e3"},
+    {file = "yara_python-4.5.1-pp37-pypy37_pp73-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:ecd0fa98a66e58be6a1d679e8679fc39029a4afa66d5310943d9180b90e57baf"},
+    {file = "yara_python-4.5.1-pp37-pypy37_pp73-manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:8a073a26d1b081942fc741da8eeefe59c6fec5bf7f2adb3e80df1d73f57a7ea3"},
+    {file = "yara_python-4.5.1-pp37-pypy37_pp73-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:92af5596aa4af20d7f81260dc72b989dfd4b7672c5492f13e9b71fe2b24c936f"},
+    {file = "yara_python-4.5.1-pp37-pypy37_pp73-win_amd64.whl", hash = "sha256:984f67c08f945acb78d2548aaf5ffa19d27288b48979eb0652dd3a89c7b7747b"},
+    {file = "yara_python-4.5.1-pp38-pypy38_pp73-macosx_10_9_x86_64.whl", hash = "sha256:2756fe1121fdd45b29d0d21fea66f762ef50d9e636bae8fd94217f0dc4c32a3a"},
+    {file = "yara_python-4.5.1-pp38-pypy38_pp73-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:c27dd8bdf1bbd946a82d1717c3dcc2efa449abb04018d186dca6b412ed93eba6"},
+    {file = "yara_python-4.5.1-pp38-pypy38_pp73-manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:382fd997999cfd83d7c2087f8b73c55dde8193473ff2a78643b5c69d3a39e084"},
+    {file = "yara_python-4.5.1-pp38-pypy38_pp73-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:024c477f182c26265fc447051e09099016e3562ac7f2255e05de2a506dd4d6dc"},
+    {file = "yara_python-4.5.1-pp38-pypy38_pp73-win_amd64.whl", hash = "sha256:2add91c1f2c7c6bd82affffd864f7e7a96285c80b97906f81584be3b3b448b74"},
+    {file = "yara_python-4.5.1-pp39-pypy39_pp73-macosx_10_9_x86_64.whl", hash = "sha256:7ae8411ae68a9f8911781bdc4393fc21ab48372ed3605c64265d08d57394ff5f"},
+    {file = "yara_python-4.5.1-pp39-pypy39_pp73-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:bc81d88d3fa54f2a019e716f715a18e0c2c7c03816fef926b07b4ab3ba698e69"},
+    {file = "yara_python-4.5.1-pp39-pypy39_pp73-manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:8765e387652f9354ca705ea8692e5e24424f7c20aaec857b40c13b18fe7862ad"},
+    {file = "yara_python-4.5.1-pp39-pypy39_pp73-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:4c1acc3fd1b4634a4b438b6129f3b52a306d40e44c7fd950e7154f147a12e4de"},
+    {file = "yara_python-4.5.1-pp39-pypy39_pp73-win_amd64.whl", hash = "sha256:d64e300925d56b3cf7f430b3bf86e133b14aaf578cfe827c08aec8869b8375e9"},
+    {file = "yara_python-4.5.1.tar.gz", hash = "sha256:52ab24422b021ae648be3de25090cbf9e6c6caa20488f498860d07f7be397930"},
+]
+
+[[package]]
+name = "zope-event"
+version = "5.0"
+description = "Very basic event publishing system"
+optional = false
+python-versions = ">=3.7"
+groups = ["main"]
+files = [
+    {file = "zope.event-5.0-py3-none-any.whl", hash = "sha256:2832e95014f4db26c47a13fdaef84cef2f4df37e66b59d8f1f4a8f319a632c26"},
+    {file = "zope.event-5.0.tar.gz", hash = "sha256:bac440d8d9891b4068e2b5a2c5e2c9765a9df762944bda6955f96bb9b91e67cd"},
+]
+
+[package.dependencies]
+setuptools = "*"
+
+[package.extras]
+docs = ["Sphinx"]
+test = ["zope.testrunner"]
+
+[[package]]
+name = "zope-interface"
+version = "7.2"
+description = "Interfaces for Python"
+optional = false
+python-versions = ">=3.8"
+groups = ["main"]
+files = [
+    {file = "zope.interface-7.2-cp310-cp310-macosx_10_9_x86_64.whl", hash = "sha256:ce290e62229964715f1011c3dbeab7a4a1e4971fd6f31324c4519464473ef9f2"},
+    {file = "zope.interface-7.2-cp310-cp310-macosx_11_0_arm64.whl", hash = "sha256:05b910a5afe03256b58ab2ba6288960a2892dfeef01336dc4be6f1b9ed02ab0a"},
+    {file = "zope.interface-7.2-cp310-cp310-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:550f1c6588ecc368c9ce13c44a49b8d6b6f3ca7588873c679bd8fd88a1b557b6"},
+    {file = "zope.interface-7.2-cp310-cp310-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:0ef9e2f865721553c6f22a9ff97da0f0216c074bd02b25cf0d3af60ea4d6931d"},
+    {file = "zope.interface-7.2-cp310-cp310-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:27f926f0dcb058211a3bb3e0e501c69759613b17a553788b2caeb991bed3b61d"},
+    {file = "zope.interface-7.2-cp310-cp310-win_amd64.whl", hash = "sha256:144964649eba4c5e4410bb0ee290d338e78f179cdbfd15813de1a664e7649b3b"},
+    {file = "zope.interface-7.2-cp311-cp311-macosx_10_9_x86_64.whl", hash = "sha256:1909f52a00c8c3dcab6c4fad5d13de2285a4b3c7be063b239b8dc15ddfb73bd2"},
+    {file = "zope.interface-7.2-cp311-cp311-macosx_11_0_arm64.whl", hash = "sha256:80ecf2451596f19fd607bb09953f426588fc1e79e93f5968ecf3367550396b22"},
+    {file = "zope.interface-7.2-cp311-cp311-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:033b3923b63474800b04cba480b70f6e6243a62208071fc148354f3f89cc01b7"},
+    {file = "zope.interface-7.2-cp311-cp311-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:a102424e28c6b47c67923a1f337ede4a4c2bba3965b01cf707978a801fc7442c"},
+    {file = "zope.interface-7.2-cp311-cp311-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:25e6a61dcb184453bb00eafa733169ab6d903e46f5c2ace4ad275386f9ab327a"},
+    {file = "zope.interface-7.2-cp311-cp311-win_amd64.whl", hash = "sha256:3f6771d1647b1fc543d37640b45c06b34832a943c80d1db214a37c31161a93f1"},
+    {file = "zope.interface-7.2-cp312-cp312-macosx_10_9_x86_64.whl", hash = "sha256:086ee2f51eaef1e4a52bd7d3111a0404081dadae87f84c0ad4ce2649d4f708b7"},
+    {file = "zope.interface-7.2-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:21328fcc9d5b80768bf051faa35ab98fb979080c18e6f84ab3f27ce703bce465"},
+    {file = "zope.interface-7.2-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:f6dd02ec01f4468da0f234da9d9c8545c5412fef80bc590cc51d8dd084138a89"},
+    {file = "zope.interface-7.2-cp312-cp312-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:8e7da17f53e25d1a3bde5da4601e026adc9e8071f9f6f936d0fe3fe84ace6d54"},
+    {file = "zope.interface-7.2-cp312-cp312-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:cab15ff4832580aa440dc9790b8a6128abd0b88b7ee4dd56abacbc52f212209d"},
+    {file = "zope.interface-7.2-cp312-cp312-win_amd64.whl", hash = "sha256:29caad142a2355ce7cfea48725aa8bcf0067e2b5cc63fcf5cd9f97ad12d6afb5"},
+    {file = "zope.interface-7.2-cp313-cp313-macosx_10_9_x86_64.whl", hash = "sha256:3e0350b51e88658d5ad126c6a57502b19d5f559f6cb0a628e3dc90442b53dd98"},
+    {file = "zope.interface-7.2-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:15398c000c094b8855d7d74f4fdc9e73aa02d4d0d5c775acdef98cdb1119768d"},
+    {file = "zope.interface-7.2-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:802176a9f99bd8cc276dcd3b8512808716492f6f557c11196d42e26c01a69a4c"},
+    {file = "zope.interface-7.2-cp313-cp313-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:eb23f58a446a7f09db85eda09521a498e109f137b85fb278edb2e34841055398"},
+    {file = "zope.interface-7.2-cp313-cp313-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:a71a5b541078d0ebe373a81a3b7e71432c61d12e660f1d67896ca62d9628045b"},
+    {file = "zope.interface-7.2-cp313-cp313-win_amd64.whl", hash = "sha256:4893395d5dd2ba655c38ceb13014fd65667740f09fa5bb01caa1e6284e48c0cd"},
+    {file = "zope.interface-7.2-cp38-cp38-macosx_10_9_x86_64.whl", hash = "sha256:d3a8ffec2a50d8ec470143ea3d15c0c52d73df882eef92de7537e8ce13475e8a"},
+    {file = "zope.interface-7.2-cp38-cp38-macosx_11_0_arm64.whl", hash = "sha256:31d06db13a30303c08d61d5fb32154be51dfcbdb8438d2374ae27b4e069aac40"},
+    {file = "zope.interface-7.2-cp38-cp38-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:e204937f67b28d2dca73ca936d3039a144a081fc47a07598d44854ea2a106239"},
+    {file = "zope.interface-7.2-cp38-cp38-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:224b7b0314f919e751f2bca17d15aad00ddbb1eadf1cb0190fa8175edb7ede62"},
+    {file = "zope.interface-7.2-cp38-cp38-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:baf95683cde5bc7d0e12d8e7588a3eb754d7c4fa714548adcd96bdf90169f021"},
+    {file = "zope.interface-7.2-cp38-cp38-win_amd64.whl", hash = "sha256:7dc5016e0133c1a1ec212fc87a4f7e7e562054549a99c73c8896fa3a9e80cbc7"},
+    {file = "zope.interface-7.2-cp39-cp39-macosx_10_9_x86_64.whl", hash = "sha256:7bd449c306ba006c65799ea7912adbbfed071089461a19091a228998b82b1fdb"},
+    {file = "zope.interface-7.2-cp39-cp39-macosx_11_0_arm64.whl", hash = "sha256:a19a6cc9c6ce4b1e7e3d319a473cf0ee989cbbe2b39201d7c19e214d2dfb80c7"},
+    {file = "zope.interface-7.2-cp39-cp39-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:72cd1790b48c16db85d51fbbd12d20949d7339ad84fd971427cf00d990c1f137"},
+    {file = "zope.interface-7.2-cp39-cp39-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:52e446f9955195440e787596dccd1411f543743c359eeb26e9b2c02b077b0519"},
+    {file = "zope.interface-7.2-cp39-cp39-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:2ad9913fd858274db8dd867012ebe544ef18d218f6f7d1e3c3e6d98000f14b75"},
+    {file = "zope.interface-7.2-cp39-cp39-win_amd64.whl", hash = "sha256:1090c60116b3da3bfdd0c03406e2f14a1ff53e5771aebe33fec1edc0a350175d"},
+    {file = "zope.interface-7.2.tar.gz", hash = "sha256:8b49f1a3d1ee4cdaf5b32d2e738362c7f5e40ac8b46dd7d1a65e82a4872728fe"},
+]
+
+[package.dependencies]
+setuptools = "*"
+
+[package.extras]
+docs = ["Sphinx", "furo", "repoze.sphinx.autointerface"]
+test = ["coverage[toml]", "zope.event", "zope.testing"]
+testing = ["coverage[toml]", "zope.event", "zope.testing"]
+
+[extras]
+maco = ["maco"]
+
+[metadata]
+lock-version = "2.1"
+python-versions = ">=3.10, <4.0"
+content-hash = "a7785ea80f31041e93e2e59e60002879fac9292780a92155f077271ca26097dd"
diff --git a/pyproject.toml b/pyproject.toml
new file mode 100644
index 00000000000..94caf77391a
--- /dev/null
+++ b/pyproject.toml
@@ -0,0 +1,190 @@
+[tool.poetry]
+name = "CAPEv2"
+version = "0.1.0"
+description = "CAPE: Malware Configuration And Payload Extraction"
+authors = ["Kevin O'Reilly <kev@capesandbox.com>", "doomedraven <doomedraven@capesandbox.com>"]
+license = "MIT"
+package-mode = false
+
+[tool.poetry.dependencies]
+python = ">=3.10, <4.0"
+alembic = "1.9.4"
+gevent = "24.2.1"
+greenlet = "3.0.3"
+Pebble = "5.1.0"
+# pymisp = "2.4.144"
+cryptography = ">=44.0.1"
+requests = {version = "2.32.4", extras = ["security", "socks"]}
+# pyOpenSSL = "24.0.0"
+pefile = "*"
+tldextract = ">=5.1.2"
+oletools = "0.60.2"
+olefile = "0.47"
+# mixbox = "1.0.5"
+capstone = "5.0.5"
+pycryptodomex = ">=3.20.0"
+# xmltodict = "0.12.0"
+requests-file = ">=1.5.1"
+orjson = ">=3.9.15"
+# maec = "4.1.0.17"
+# regex = "2021.7.6"
+SFlock2 = {version = ">=0.3.76", extras = ["shellcode","linux"]}
+# volatility3 = "2.11.0"
+# XLMMacroDeobfuscator = "0.2.7"
+pyzipper = "0.3.6"
+flare-capa = "9.1.0"
+
+Cython = "3.0.11"
+Django = ">=4.2.18"
+SQLAlchemy = "2.0.41"
+SQLAlchemy-Utils = "0.41.1"
+Jinja2 = "^3.1.6"
+chardet = "4.0.0"
+pygal = "2.4.0"
+dpkt = "1.9.6"
+dnspython = "2.7.0"
+pytz = "2021.1"
+maxminddb = "2.6.3"
+Pillow = ">=8.2.0"
+python-whois = "0.9.5"
+bs4 = "0.0.1"
+pydeep2 = "0.5.1"
+django-recaptcha = "4.0.0"  # https://pypi.org/project/django-recaptcha/
+django-crispy-forms = "2.3"
+crispy-bootstrap4 = "2024.10"
+django-settings-export = "1.2.1"
+django-csp = "3.8"
+django-extensions = "3.2.3"
+django-ratelimit = "4.1.0"
+# qrcode = "7.2"
+python-tlsh = "4.5.0"
+djangorestframework = "3.15.2"
+yara-python = "4.5.1"
+pymongo = ">=4.0.1"
+# ImageHash = "4.3.1"
+LnkParse3 = "1.5.0"
+cachetools = "^5.5.1"
+django-allauth = "65.3.1"  # https://django-allauth.readthedocs.io/en/latest/configuration.html
+# socks5man = {git = "https://github.com/CAPESandbox/socks5man.git", rev = "7b335d027297b67abdf28f38cc7d5d42c9d810b5"}
+# httpreplay = {git = "https://github.com/CAPESandbox/httpreplay.git", rev = "0d5a5b3144ab15f93189b83ca8188afde43db134"}
+# bingraph = {git = "https://github.com/CAPESandbox/binGraph.git", rev = "552d1210ac6770f8b202d0d1fc4610cc14d878ec"}
+psycopg2-binary = "^2.9.10"
+ruff = ">=0.7.2"
+paramiko = "3.5.0"
+psutil = "6.1.1"
+peepdf-3 = "5.0.0"
+pyre2-updated = ">=0.3.8"
+Werkzeug = "3.1.4"
+packaging = "24.2"
+setuptools = "78.1.1"
+# command line config manipulation
+crudini = "0.9.5"
+python-dateutil = "2.9.0.post0"
+
+# guac-session
+pyguacamole = "^0.11"
+uvicorn = {extras = ["standard"], version = "^0.18.2"}
+gunicorn = "^23.0.0"
+channels = "^3.0.5"
+setproctitle = "1.3.2"
+
+CAPE-parsers = ">=0.1.36"
+maco = "1.1.8"
+
+[tool.poetry.extras]
+maco = ["maco"]
+
+[tool.poetry.group.dev.dependencies]
+black = "^24.3.0"
+isort = "^5.10.1"
+mypy = "1.14.1"
+pytest = "7.2.2"
+pytest-pretty = "1.1.0"
+pytest-cov = "3.0.0"
+pytest-mock = "3.7.0"
+pytest-django = "4.5.2"
+pytest_asyncio = "0.18.3"
+pytest-xdist = "3.6.1"
+pytest-asyncio = "0.18.3"
+pytest-freezer = "0.4.8"
+tenacity = "8.1.0"
+types-requests = "^2.32"
+httpretty = "^1.1.4"
+func-timeout = "^4.3.5"
+pre-commit = "^2.19.0"
+
+[tool.black]
+line-length = 132
+include = "\\.py(_disabled)?$"
+
+[tool.isort]
+profile = "black"
+no_lines_before = ["FUTURE", "STDLIB"]
+line_length = 132
+supported_extensions = ["py", "py_disabled"]
+
+[tool.flake8]
+max-line-length = 132
+exclude = ".git,__pycache__,.cache,.venv"
+
+[tool.pytest.ini_options]
+django_find_project = false
+DJANGO_SETTINGS_MODULE = "web.settings"
+pythonpath = [".", "web"]
+testpaths = ["tests", "agent"]
+norecursedirs = "tests/zip_compound"
+asyncio_mode = "auto"
+
+[build-system]
+requires = ["poetry-core>=1.0.0"]
+build-backend = "poetry.core.masonry.api"
+requires-poetry = ">=2.0"
+
+[tool.ruff]
+line-length = 132
+exclude = [
+    "./analyzer/linux/dbus_next",
+]
+
+[tool.ruff.lint]
+select = [
+	"F",       # pyflakes
+	"E",       # pycodestyle errors
+	"W",       # pycodestyle warnings
+	# "I",       # isort
+	# "N",       # pep8-naming
+	"G",       # flake8-logging-format
+]
+
+ignore = [
+    "E501",    # ignore due to conflict with formatter
+    "N818",    # exceptions don't need the Error suffix
+    "E741",    # allow ambiguous variable names
+    "E402",
+    "W605",    # ToDo to fix - Invalid escape sequence
+]
+
+fixable = ["ALL"]
+
+[tool.ruff.lint.per-file-ignores]
+"stubs/*" = [
+    "N",       # naming conventions don't matter in stubs
+    "F403",    # star imports are okay in stubs
+    "F405",    # star imports are okay in stubs
+]
+
+[tool.ruff.format]
+quote-style = "double"
+indent-style = "space"
+skip-magic-trailing-comma = false
+line-ending = "auto"
+
+[tool.ruff.lint.isort]
+known-first-party = ["libqtile", "test"]
+default-section = "third-party"
+
+[tool.mypy]
+warn_unused_configs = true
+files = [
+    "agent/**/*.py",
+]
diff --git a/requirements.txt b/requirements.txt
index a9743a96a6b..c61c767214f 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -1,85 +1,2311 @@
-flor
-Pebble
-pymisp
-cryptography==3.3.2
-requests[security,socks]
-pyOpenSSL
-pefile
-tldextract
-imagehash
-oletools
-olefile
-networkx>=2.1
-mixbox
-capstone
-PyCrypto
-voluptuous
-xmltodict
-future
-python-dateutil
-requests_file
-gevent==20.4.0
-simplejson
-pyvmomi
-pyinstaller
-maec
-regex
-xmltodict
-git+https://github.com/doomedraven/sflock.git
-git+https://github.com/doomedraven/socks5man.git
-pyattck==3.0.1
-distorm3
-openpyxl
-git+https://github.com/volatilityfoundation/volatility3
-git+https://github.com/DissectMalware/XLMMacroDeobfuscator
-passlib
-pyzipper
-git+https://github.com/Defense-Cyber-Crime-Center/DC3-MWCP.git
-git+https://github.com/kevthehermit/RATDecoders.git
-halo==0.0.30 # till won't be pinned in capa
-git+https://github.com/fireeye/capa.git
-greenlet==0.4.16
-cython
-git+https://github.com/andreasvc/pyre2.git
-git+https://github.com/CAPESandbox/peepdf.git
-matplotlib>=2.2.2
-numpy>=1.15.0
-six>=1.12.0
-statistics>=1.0.3.5
-django>3
-sqlalchemy
-sqlalchemy-utils
-jinja2
-markupsafe
-chardet
-pygal
-rarfile
-jsbeautifier
-dpkt
-nose
-dnspython
-pytz
-python-magic
-geoip
-pillow>=7
-java-random
-python-whois
-bs4
-pype32-py3
-git+https://github.com/kbandla/pydeep.git
-pyvmomi
-django-recaptcha==2.0.6 # https://pypi.org/project/django-recaptcha/
-django-allauth # https://django-allauth.readthedocs.io/en/latest/configuration.html
-django-crispy-forms
-git+https://github.com/CAPESandbox/httpreplay
-django-settings-export
-django-csp
-django-otp
-django-extensions
-qrcode
-python-tlsh
-djangorestframework
-volatility3
-yara-python>=4.0.0
-netstruct
-pymongo>=3.11.3
+alembic==1.9.4 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:4d3bd32ecdbb7bbfb48a9fe9e6d6fd6a831a1b59d03e26e292210237373e7db5 \
+    --hash=sha256:6f1c2207369bf4f49f952057a33bb017fbe5c148c2a773b46906b806ea6e825f
+annotated-types==0.7.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:1f02e8b43a8fbbc3f3e0d4f0f4bfc8131bcb4eebe8849b8e5c773f3a1c582a53 \
+    --hash=sha256:aff07c09a53a08bc8cfccb9c85b05f1aa9a2a6f23728d790723543408344ce89
+anyio==4.8.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:1d9fe889df5212298c0c0723fa20479d1b94883a2df44bd3897aa91083316f7a \
+    --hash=sha256:b5011f270ab5eb0abf13385f851315585cc37ef330dd88e27ec3d34d651fd47a
+asgiref==3.8.1 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:3e1e3ecc849832fe52ccf2cb6686b7a55f82bb1d6aee72a58826471390335e47 \
+    --hash=sha256:c343bd80a0bec947a9860adb4c432ffa7db769836c64238fc34bdc3fec84d590
+attrs==25.1.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:1c97078a80c814273a76b2a298a932eb681c87415c11dee0a6921de7f1b02c3e \
+    --hash=sha256:c75a69e28a550a7e93789579c22aa26b0f5b83b75dc4e08fe092980051e1090a
+autobahn==24.4.2 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:a2d71ef1b0cf780b6d11f8b205fd2c7749765e65795f2ea7d823796642ee92c9 \
+    --hash=sha256:c56a2abe7ac78abbfb778c02892d673a4de58fd004d088cd7ab297db25918e81
+automat==24.8.1 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:b34227cf63f6325b8ad2399ede780675083e439b20c323d376373d8ee6306d88 \
+    --hash=sha256:bf029a7bc3da1e2c24da2343e7598affaa9f10bf0ab63ff808566ce90551e02a
+bcrypt==4.2.1 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:041fa0155c9004eb98a232d54da05c0b41d4b8e66b6fc3cb71b4b3f6144ba837 \
+    --hash=sha256:04e56e3fe8308a88b77e0afd20bec516f74aecf391cdd6e374f15cbed32783d6 \
+    --hash=sha256:1340411a0894b7d3ef562fb233e4b6ed58add185228650942bdc885362f32c17 \
+    --hash=sha256:533e7f3bcf2f07caee7ad98124fab7499cb3333ba2274f7a36cf1daee7409d99 \
+    --hash=sha256:6765386e3ab87f569b276988742039baab087b2cdb01e809d74e74503c2faafe \
+    --hash=sha256:687cf30e6681eeda39548a93ce9bfbb300e48b4d445a43db4298d2474d2a1e54 \
+    --hash=sha256:76132c176a6d9953cdc83c296aeaed65e1a708485fd55abf163e0d9f8f16ce0e \
+    --hash=sha256:76d3e352b32f4eeb34703370e370997065d28a561e4a18afe4fef07249cb4396 \
+    --hash=sha256:807261df60a8b1ccd13e6599c779014a362ae4e795f5c59747f60208daddd96d \
+    --hash=sha256:89df2aea2c43be1e1fa066df5f86c8ce822ab70a30e4c210968669565c0f4685 \
+    --hash=sha256:8ad2f4528cbf0febe80e5a3a57d7a74e6635e41af1ea5675282a33d769fba413 \
+    --hash=sha256:8c458cd103e6c5d1d85cf600e546a639f234964d0228909d8f8dbeebff82d526 \
+    --hash=sha256:8dbd0747208912b1e4ce730c6725cb56c07ac734b3629b60d4398f082ea718ad \
+    --hash=sha256:909faa1027900f2252a9ca5dfebd25fc0ef1417943824783d1c8418dd7d6df4a \
+    --hash=sha256:aaa2e285be097050dba798d537b6efd9b698aa88eef52ec98d23dcd6d7cf6fea \
+    --hash=sha256:adadd36274510a01f33e6dc08f5824b97c9580583bd4487c564fc4617b328005 \
+    --hash=sha256:b1ee315739bc8387aa36ff127afc99120ee452924e0df517a8f3e4c0187a0f5f \
+    --hash=sha256:b588af02b89d9fad33e5f98f7838bf590d6d692df7153647724a7f20c186f6bf \
+    --hash=sha256:b7703ede632dc945ed1172d6f24e9f30f27b1b1a067f32f68bf169c5f08d0425 \
+    --hash=sha256:c6f5fa3775966cca251848d4d5393ab016b3afed251163c1436fefdec3b02c84 \
+    --hash=sha256:cde78d385d5e93ece5479a0a87f73cd6fa26b171c786a884f955e165032b262c \
+    --hash=sha256:cfdf3d7530c790432046c40cda41dfee8c83e29482e6a604f8930b9930e94139 \
+    --hash=sha256:e158009a54c4c8bc91d5e0da80920d048f918c61a581f0a63e4e93bb556d362f \
+    --hash=sha256:e84e0e6f8e40a242b11bce56c313edc2be121cec3e0ec2d76fce01f6af33c07c \
+    --hash=sha256:f85b1ffa09240c89aa2e1ae9f3b1c687104f7b2b9d2098da4e923f1b7082d331
+beautifulsoup4==4.12.3 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:74e3d1928edc070d21748185c46e3fb33490f22f52a3addee9aee0f4f7781051 \
+    --hash=sha256:b80878c9f40111313e55da8ba20bdba06d8fa3969fc68304167741bbf9e082ed
+bs4==0.0.1 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:36ecea1fd7cc5c0c6e4a1ff075df26d50da647b75376626cc186e2212886dd3a
+cachetools==5.5.1 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:70f238fbba50383ef62e55c6aff6d9673175fe59f7c6782c7a0b9e38f4a9df95 \
+    --hash=sha256:b76651fdc3b24ead3c648bbdeeb940c1b04d365b38b4af66788f9ec4a81d42bb
+cape-parsers==0.1.36 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:459db9a10a2c09a1dfb386dcec1b7968293d2c6eef417c4179022895e396ddc5 \
+    --hash=sha256:c0944f8183aaf53d4a6c8f370423ce1134bdc4a7f7b23e37f92f0e061423e229
+capstone==5.0.5 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:15f4b85df176999bbf7eb3f53f0cf2cee728254600c1be21442e2581189309e9 \
+    --hash=sha256:24db89d74b571659fe6212e756795cd5d394378c50e19e41dbcfb6c087c2f87d \
+    --hash=sha256:32346f6019d5351adaaf584ffc60c1e40db6b47d1d049eb924f903eb2b073e87 \
+    --hash=sha256:50b646f0c56b0cac5c993dde08b5e5eacf8b1f66031ec8d60154eae6e3c0645e \
+    --hash=sha256:5416621ac2d243d89b788f1309b143ea1f400da3eb5c47c6a87f1add99732a83 \
+    --hash=sha256:6ef47da78f44de1cdff1519b360186681fca0097e92046a7d7203d56364f99da \
+    --hash=sha256:754968f057d9e5d9c383f2918a1d56d455bfb274bbf307f219180b16e6d5aaeb \
+    --hash=sha256:89dac65a1c84670ee30ccaf2ae688c4b27ad514d9dc8738a9826579051e29ecb \
+    --hash=sha256:933797f7e2a257a77c3a699316deea92efa120a10d41e22725a96fc82f0a769e \
+    --hash=sha256:a03b6b42b33bb0739b2436a555e699ac91cd1d1891134269b04e359b607e50e8 \
+    --hash=sha256:cd35b666739d7b79066fc69fd0c145d5ceb6a4131df3db1225ec6dcfa3fe322f
+certifi==2025.1.31 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:3d5da6925056f6f18f119200434a4780a94263f10d1c21d032a6f6b2baa20651 \
+    --hash=sha256:ca78db4565a652026a4db2bcdf68f2fb589ea80d0be70e03929ed730746b84fe
+cffi==1.17.1 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:045d61c734659cc045141be4bae381a41d89b741f795af1dd018bfb532fd0df8 \
+    --hash=sha256:0984a4925a435b1da406122d4d7968dd861c1385afe3b45ba82b750f229811e2 \
+    --hash=sha256:0e2b1fac190ae3ebfe37b979cc1ce69c81f4e4fe5746bb401dca63a9062cdaf1 \
+    --hash=sha256:0f048dcf80db46f0098ccac01132761580d28e28bc0f78ae0d58048063317e15 \
+    --hash=sha256:1257bdabf294dceb59f5e70c64a3e2f462c30c7ad68092d01bbbfb1c16b1ba36 \
+    --hash=sha256:1c39c6016c32bc48dd54561950ebd6836e1670f2ae46128f67cf49e789c52824 \
+    --hash=sha256:1d599671f396c4723d016dbddb72fe8e0397082b0a77a4fab8028923bec050e8 \
+    --hash=sha256:28b16024becceed8c6dfbc75629e27788d8a3f9030691a1dbf9821a128b22c36 \
+    --hash=sha256:2bb1a08b8008b281856e5971307cc386a8e9c5b625ac297e853d36da6efe9c17 \
+    --hash=sha256:30c5e0cb5ae493c04c8b42916e52ca38079f1b235c2f8ae5f4527b963c401caf \
+    --hash=sha256:31000ec67d4221a71bd3f67df918b1f88f676f1c3b535a7eb473255fdc0b83fc \
+    --hash=sha256:386c8bf53c502fff58903061338ce4f4950cbdcb23e2902d86c0f722b786bbe3 \
+    --hash=sha256:3edc8d958eb099c634dace3c7e16560ae474aa3803a5df240542b305d14e14ed \
+    --hash=sha256:45398b671ac6d70e67da8e4224a065cec6a93541bb7aebe1b198a61b58c7b702 \
+    --hash=sha256:46bf43160c1a35f7ec506d254e5c890f3c03648a4dbac12d624e4490a7046cd1 \
+    --hash=sha256:4ceb10419a9adf4460ea14cfd6bc43d08701f0835e979bf821052f1805850fe8 \
+    --hash=sha256:51392eae71afec0d0c8fb1a53b204dbb3bcabcb3c9b807eedf3e1e6ccf2de903 \
+    --hash=sha256:5da5719280082ac6bd9aa7becb3938dc9f9cbd57fac7d2871717b1feb0902ab6 \
+    --hash=sha256:610faea79c43e44c71e1ec53a554553fa22321b65fae24889706c0a84d4ad86d \
+    --hash=sha256:636062ea65bd0195bc012fea9321aca499c0504409f413dc88af450b57ffd03b \
+    --hash=sha256:6883e737d7d9e4899a8a695e00ec36bd4e5e4f18fabe0aca0efe0a4b44cdb13e \
+    --hash=sha256:6b8b4a92e1c65048ff98cfe1f735ef8f1ceb72e3d5f0c25fdb12087a23da22be \
+    --hash=sha256:6f17be4345073b0a7b8ea599688f692ac3ef23ce28e5df79c04de519dbc4912c \
+    --hash=sha256:706510fe141c86a69c8ddc029c7910003a17353970cff3b904ff0686a5927683 \
+    --hash=sha256:72e72408cad3d5419375fc87d289076ee319835bdfa2caad331e377589aebba9 \
+    --hash=sha256:733e99bc2df47476e3848417c5a4540522f234dfd4ef3ab7fafdf555b082ec0c \
+    --hash=sha256:7596d6620d3fa590f677e9ee430df2958d2d6d6de2feeae5b20e82c00b76fbf8 \
+    --hash=sha256:78122be759c3f8a014ce010908ae03364d00a1f81ab5c7f4a7a5120607ea56e1 \
+    --hash=sha256:805b4371bf7197c329fcb3ead37e710d1bca9da5d583f5073b799d5c5bd1eee4 \
+    --hash=sha256:85a950a4ac9c359340d5963966e3e0a94a676bd6245a4b55bc43949eee26a655 \
+    --hash=sha256:8f2cdc858323644ab277e9bb925ad72ae0e67f69e804f4898c070998d50b1a67 \
+    --hash=sha256:9755e4345d1ec879e3849e62222a18c7174d65a6a92d5b346b1863912168b595 \
+    --hash=sha256:98e3969bcff97cae1b2def8ba499ea3d6f31ddfdb7635374834cf89a1a08ecf0 \
+    --hash=sha256:a08d7e755f8ed21095a310a693525137cfe756ce62d066e53f502a83dc550f65 \
+    --hash=sha256:a1ed2dd2972641495a3ec98445e09766f077aee98a1c896dcb4ad0d303628e41 \
+    --hash=sha256:a24ed04c8ffd54b0729c07cee15a81d964e6fee0e3d4d342a27b020d22959dc6 \
+    --hash=sha256:a45e3c6913c5b87b3ff120dcdc03f6131fa0065027d0ed7ee6190736a74cd401 \
+    --hash=sha256:a9b15d491f3ad5d692e11f6b71f7857e7835eb677955c00cc0aefcd0669adaf6 \
+    --hash=sha256:ad9413ccdeda48c5afdae7e4fa2192157e991ff761e7ab8fdd8926f40b160cc3 \
+    --hash=sha256:b2ab587605f4ba0bf81dc0cb08a41bd1c0a5906bd59243d56bad7668a6fc6c16 \
+    --hash=sha256:b62ce867176a75d03a665bad002af8e6d54644fad99a3c70905c543130e39d93 \
+    --hash=sha256:c03e868a0b3bc35839ba98e74211ed2b05d2119be4e8a0f224fba9384f1fe02e \
+    --hash=sha256:c59d6e989d07460165cc5ad3c61f9fd8f1b4796eacbd81cee78957842b834af4 \
+    --hash=sha256:c7eac2ef9b63c79431bc4b25f1cd649d7f061a28808cbc6c47b534bd789ef964 \
+    --hash=sha256:c9c3d058ebabb74db66e431095118094d06abf53284d9c81f27300d0e0d8bc7c \
+    --hash=sha256:ca74b8dbe6e8e8263c0ffd60277de77dcee6c837a3d0881d8c1ead7268c9e576 \
+    --hash=sha256:caaf0640ef5f5517f49bc275eca1406b0ffa6aa184892812030f04c2abf589a0 \
+    --hash=sha256:cdf5ce3acdfd1661132f2a9c19cac174758dc2352bfe37d98aa7512c6b7178b3 \
+    --hash=sha256:d016c76bdd850f3c626af19b0542c9677ba156e4ee4fccfdd7848803533ef662 \
+    --hash=sha256:d01b12eeeb4427d3110de311e1774046ad344f5b1a7403101878976ecd7a10f3 \
+    --hash=sha256:d63afe322132c194cf832bfec0dc69a99fb9bb6bbd550f161a49e9e855cc78ff \
+    --hash=sha256:da95af8214998d77a98cc14e3a3bd00aa191526343078b530ceb0bd710fb48a5 \
+    --hash=sha256:dd398dbc6773384a17fe0d3e7eeb8d1a21c2200473ee6806bb5e6a8e62bb73dd \
+    --hash=sha256:de2ea4b5833625383e464549fec1bc395c1bdeeb5f25c4a3a82b5a8c756ec22f \
+    --hash=sha256:de55b766c7aa2e2a3092c51e0483d700341182f08e67c63630d5b6f200bb28e5 \
+    --hash=sha256:df8b1c11f177bc2313ec4b2d46baec87a5f3e71fc8b45dab2ee7cae86d9aba14 \
+    --hash=sha256:e03eab0a8677fa80d646b5ddece1cbeaf556c313dcfac435ba11f107ba117b5d \
+    --hash=sha256:e221cf152cff04059d011ee126477f0d9588303eb57e88923578ace7baad17f9 \
+    --hash=sha256:e31ae45bc2e29f6b2abd0de1cc3b9d5205aa847cafaecb8af1476a609a2f6eb7 \
+    --hash=sha256:edae79245293e15384b51f88b00613ba9f7198016a5948b5dddf4917d4d26382 \
+    --hash=sha256:f1e22e8c4419538cb197e4dd60acc919d7696e5ef98ee4da4e01d3f8cfa4cc5a \
+    --hash=sha256:f3a2b4222ce6b60e2e8b337bb9596923045681d71e5a082783484d845390938e \
+    --hash=sha256:f6a16c31041f09ead72d69f583767292f750d24913dadacf5756b966aacb3f1a \
+    --hash=sha256:f75c7ab1f9e4aca5414ed4d8e5c0e303a34f4421f8a0d47a4d019ceff0ab6af4 \
+    --hash=sha256:f79fc4fc25f1c8698ff97788206bb3c2598949bfe0fef03d299eb1b5356ada99 \
+    --hash=sha256:f7f5baafcc48261359e14bcd6d9bff6d4b28d9103847c9e136694cb0501aef87 \
+    --hash=sha256:fc48c783f9c87e60831201f2cce7f3b2e4846bf4d8728eabe54d60700b318a0b
+channels==3.0.5 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:3813b8025bf85509769793aca720e6c3b1c5bde1cb253a961252bf0242b60a26 \
+    --hash=sha256:a3dc3339cc033e7c2afe083fb3dedf74fc5009815967e317e080e7bfdc92ea26
+chardet==4.0.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:0d6f53a15db4120f2b08c94f11e7d93d2c911ee118b6b30a04ec3ee8310179fa \
+    --hash=sha256:f864054d66fd9118f2e67044ac8981a54775ec5b67aed0441892edb553d21da5
+charset-normalizer==3.4.1 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:0167ddc8ab6508fe81860a57dd472b2ef4060e8d378f0cc555707126830f2537 \
+    --hash=sha256:01732659ba9b5b873fc117534143e4feefecf3b2078b0a6a2e925271bb6f4cfa \
+    --hash=sha256:01ad647cdd609225c5350561d084b42ddf732f4eeefe6e678765636791e78b9a \
+    --hash=sha256:04432ad9479fa40ec0f387795ddad4437a2b50417c69fa275e212933519ff294 \
+    --hash=sha256:0907f11d019260cdc3f94fbdb23ff9125f6b5d1039b76003b5b0ac9d6a6c9d5b \
+    --hash=sha256:0924e81d3d5e70f8126529951dac65c1010cdf117bb75eb02dd12339b57749dd \
+    --hash=sha256:09b26ae6b1abf0d27570633b2b078a2a20419c99d66fb2823173d73f188ce601 \
+    --hash=sha256:09b5e6733cbd160dcc09589227187e242a30a49ca5cefa5a7edd3f9d19ed53fd \
+    --hash=sha256:0af291f4fe114be0280cdd29d533696a77b5b49cfde5467176ecab32353395c4 \
+    --hash=sha256:0f55e69f030f7163dffe9fd0752b32f070566451afe180f99dbeeb81f511ad8d \
+    --hash=sha256:1a2bc9f351a75ef49d664206d51f8e5ede9da246602dc2d2726837620ea034b2 \
+    --hash=sha256:22e14b5d70560b8dd51ec22863f370d1e595ac3d024cb8ad7d308b4cd95f8313 \
+    --hash=sha256:234ac59ea147c59ee4da87a0c0f098e9c8d169f4dc2a159ef720f1a61bbe27cd \
+    --hash=sha256:2369eea1ee4a7610a860d88f268eb39b95cb588acd7235e02fd5a5601773d4fa \
+    --hash=sha256:237bdbe6159cff53b4f24f397d43c6336c6b0b42affbe857970cefbb620911c8 \
+    --hash=sha256:28bf57629c75e810b6ae989f03c0828d64d6b26a5e205535585f96093e405ed1 \
+    --hash=sha256:2967f74ad52c3b98de4c3b32e1a44e32975e008a9cd2a8cc8966d6a5218c5cb2 \
+    --hash=sha256:2a75d49014d118e4198bcee5ee0a6f25856b29b12dbf7cd012791f8a6cc5c496 \
+    --hash=sha256:2bdfe3ac2e1bbe5b59a1a63721eb3b95fc9b6817ae4a46debbb4e11f6232428d \
+    --hash=sha256:2d074908e1aecee37a7635990b2c6d504cd4766c7bc9fc86d63f9c09af3fa11b \
+    --hash=sha256:2fb9bd477fdea8684f78791a6de97a953c51831ee2981f8e4f583ff3b9d9687e \
+    --hash=sha256:311f30128d7d333eebd7896965bfcfbd0065f1716ec92bd5638d7748eb6f936a \
+    --hash=sha256:329ce159e82018d646c7ac45b01a430369d526569ec08516081727a20e9e4af4 \
+    --hash=sha256:345b0426edd4e18138d6528aed636de7a9ed169b4aaf9d61a8c19e39d26838ca \
+    --hash=sha256:363e2f92b0f0174b2f8238240a1a30142e3db7b957a5dd5689b0e75fb717cc78 \
+    --hash=sha256:3a3bd0dcd373514dcec91c411ddb9632c0d7d92aed7093b8c3bbb6d69ca74408 \
+    --hash=sha256:3bed14e9c89dcb10e8f3a29f9ccac4955aebe93c71ae803af79265c9ca5644c5 \
+    --hash=sha256:44251f18cd68a75b56585dd00dae26183e102cd5e0f9f1466e6df5da2ed64ea3 \
+    --hash=sha256:44ecbf16649486d4aebafeaa7ec4c9fed8b88101f4dd612dcaf65d5e815f837f \
+    --hash=sha256:4532bff1b8421fd0a320463030c7520f56a79c9024a4e88f01c537316019005a \
+    --hash=sha256:49402233c892a461407c512a19435d1ce275543138294f7ef013f0b63d5d3765 \
+    --hash=sha256:4c0907b1928a36d5a998d72d64d8eaa7244989f7aaaf947500d3a800c83a3fd6 \
+    --hash=sha256:4d86f7aff21ee58f26dcf5ae81a9addbd914115cdebcbb2217e4f0ed8982e146 \
+    --hash=sha256:5777ee0881f9499ed0f71cc82cf873d9a0ca8af166dfa0af8ec4e675b7df48e6 \
+    --hash=sha256:5df196eb874dae23dcfb968c83d4f8fdccb333330fe1fc278ac5ceeb101003a9 \
+    --hash=sha256:619a609aa74ae43d90ed2e89bdd784765de0a25ca761b93e196d938b8fd1dbbd \
+    --hash=sha256:6e27f48bcd0957c6d4cb9d6fa6b61d192d0b13d5ef563e5f2ae35feafc0d179c \
+    --hash=sha256:6ff8a4a60c227ad87030d76e99cd1698345d4491638dfa6673027c48b3cd395f \
+    --hash=sha256:73d94b58ec7fecbc7366247d3b0b10a21681004153238750bb67bd9012414545 \
+    --hash=sha256:7461baadb4dc00fd9e0acbe254e3d7d2112e7f92ced2adc96e54ef6501c5f176 \
+    --hash=sha256:75832c08354f595c760a804588b9357d34ec00ba1c940c15e31e96d902093770 \
+    --hash=sha256:7709f51f5f7c853f0fb938bcd3bc59cdfdc5203635ffd18bf354f6967ea0f824 \
+    --hash=sha256:78baa6d91634dfb69ec52a463534bc0df05dbd546209b79a3880a34487f4b84f \
+    --hash=sha256:7974a0b5ecd505609e3b19742b60cee7aa2aa2fb3151bc917e6e2646d7667dcf \
+    --hash=sha256:7a4f97a081603d2050bfaffdefa5b02a9ec823f8348a572e39032caa8404a487 \
+    --hash=sha256:7b1bef6280950ee6c177b326508f86cad7ad4dff12454483b51d8b7d673a2c5d \
+    --hash=sha256:7d053096f67cd1241601111b698f5cad775f97ab25d81567d3f59219b5f1adbd \
+    --hash=sha256:804a4d582ba6e5b747c625bf1255e6b1507465494a40a2130978bda7b932c90b \
+    --hash=sha256:807f52c1f798eef6cf26beb819eeb8819b1622ddfeef9d0977a8502d4db6d534 \
+    --hash=sha256:80ed5e856eb7f30115aaf94e4a08114ccc8813e6ed1b5efa74f9f82e8509858f \
+    --hash=sha256:8417cb1f36cc0bc7eaba8ccb0e04d55f0ee52df06df3ad55259b9a323555fc8b \
+    --hash=sha256:8436c508b408b82d87dc5f62496973a1805cd46727c34440b0d29d8a2f50a6c9 \
+    --hash=sha256:89149166622f4db9b4b6a449256291dc87a99ee53151c74cbd82a53c8c2f6ccd \
+    --hash=sha256:8bfa33f4f2672964266e940dd22a195989ba31669bd84629f05fab3ef4e2d125 \
+    --hash=sha256:8c60ca7339acd497a55b0ea5d506b2a2612afb2826560416f6894e8b5770d4a9 \
+    --hash=sha256:91b36a978b5ae0ee86c394f5a54d6ef44db1de0815eb43de826d41d21e4af3de \
+    --hash=sha256:955f8851919303c92343d2f66165294848d57e9bba6cf6e3625485a70a038d11 \
+    --hash=sha256:97f68b8d6831127e4787ad15e6757232e14e12060bec17091b85eb1486b91d8d \
+    --hash=sha256:9b23ca7ef998bc739bf6ffc077c2116917eabcc901f88da1b9856b210ef63f35 \
+    --hash=sha256:9f0b8b1c6d84c8034a44893aba5e767bf9c7a211e313a9605d9c617d7083829f \
+    --hash=sha256:aabfa34badd18f1da5ec1bc2715cadc8dca465868a4e73a0173466b688f29dda \
+    --hash=sha256:ab36c8eb7e454e34e60eb55ca5d241a5d18b2c6244f6827a30e451c42410b5f7 \
+    --hash=sha256:b010a7a4fd316c3c484d482922d13044979e78d1861f0e0650423144c616a46a \
+    --hash=sha256:b1ac5992a838106edb89654e0aebfc24f5848ae2547d22c2c3f66454daa11971 \
+    --hash=sha256:b7b2d86dd06bfc2ade3312a83a5c364c7ec2e3498f8734282c6c3d4b07b346b8 \
+    --hash=sha256:b97e690a2118911e39b4042088092771b4ae3fc3aa86518f84b8cf6888dbdb41 \
+    --hash=sha256:bc2722592d8998c870fa4e290c2eec2c1569b87fe58618e67d38b4665dfa680d \
+    --hash=sha256:c0429126cf75e16c4f0ad00ee0eae4242dc652290f940152ca8c75c3a4b6ee8f \
+    --hash=sha256:c30197aa96e8eed02200a83fba2657b4c3acd0f0aa4bdc9f6c1af8e8962e0757 \
+    --hash=sha256:c4c3e6da02df6fa1410a7680bd3f63d4f710232d3139089536310d027950696a \
+    --hash=sha256:c75cb2a3e389853835e84a2d8fb2b81a10645b503eca9bcb98df6b5a43eb8886 \
+    --hash=sha256:c96836c97b1238e9c9e3fe90844c947d5afbf4f4c92762679acfe19927d81d77 \
+    --hash=sha256:d7f50a1f8c450f3925cb367d011448c39239bb3eb4117c36a6d354794de4ce76 \
+    --hash=sha256:d973f03c0cb71c5ed99037b870f2be986c3c05e63622c017ea9816881d2dd247 \
+    --hash=sha256:d98b1668f06378c6dbefec3b92299716b931cd4e6061f3c875a71ced1780ab85 \
+    --hash=sha256:d9c3cdf5390dcd29aa8056d13e8e99526cda0305acc038b96b30352aff5ff2bb \
+    --hash=sha256:dad3e487649f498dd991eeb901125411559b22e8d7ab25d3aeb1af367df5efd7 \
+    --hash=sha256:dccbe65bd2f7f7ec22c4ff99ed56faa1e9f785482b9bbd7c717e26fd723a1d1e \
+    --hash=sha256:dd78cfcda14a1ef52584dbb008f7ac81c1328c0f58184bf9a84c49c605002da6 \
+    --hash=sha256:e218488cd232553829be0664c2292d3af2eeeb94b32bea483cf79ac6a694e037 \
+    --hash=sha256:e358e64305fe12299a08e08978f51fc21fac060dcfcddd95453eabe5b93ed0e1 \
+    --hash=sha256:ea0d8d539afa5eb2728aa1932a988a9a7af94f18582ffae4bc10b3fbdad0626e \
+    --hash=sha256:eab677309cdb30d047996b36d34caeda1dc91149e4fdca0b1a039b3f79d9a807 \
+    --hash=sha256:eb8178fe3dba6450a3e024e95ac49ed3400e506fd4e9e5c32d30adda88cbd407 \
+    --hash=sha256:ecddf25bee22fe4fe3737a399d0d177d72bc22be6913acfab364b40bce1ba83c \
+    --hash=sha256:eea6ee1db730b3483adf394ea72f808b6e18cf3cb6454b4d86e04fa8c4327a12 \
+    --hash=sha256:f08ff5e948271dc7e18a35641d2f11a4cd8dfd5634f55228b691e62b37125eb3 \
+    --hash=sha256:f30bf9fd9be89ecb2360c7d94a711f00c09b976258846efe40db3d05828e8089 \
+    --hash=sha256:fa88b843d6e211393a37219e6a1c1df99d35e8fd90446f1118f4216e307e48cd \
+    --hash=sha256:fc54db6c8593ef7d4b2a331b58653356cf04f67c960f584edb7c3d8c97e8f39e \
+    --hash=sha256:fd4ec41f914fa74ad1b8304bbc634b3de73d2a0889bd32076342a573e0779e00 \
+    --hash=sha256:ffc9202a29ab3920fa812879e95a9e78b2465fd10be7fcbd042899695d75e616
+click==8.1.8 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:63c132bbbed01578a06712a2d1f497bb62d9c1c0d329b7903a866228027263b2 \
+    --hash=sha256:ed53c9d8990d83c2a27deae68e4ee337473f6330c040a31d4225c9574d16096a
+colorama==0.4.6 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:08695f5cb7ed6e0531a20572697297273c47b8cae5a63ffc6d6ed5c201be6e44 \
+    --hash=sha256:4f1d9991f5acc0ca119f9d443620b77f9d6b33703e51011c16baf57afb285fc6
+colorclass==2.2.2 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:6d4fe287766166a98ca7bc6f6312daf04a0481b1eda43e7173484051c0ab4366 \
+    --hash=sha256:6f10c273a0ef7a1150b1120b6095cbdd68e5cf36dfd5d0fc957a2500bbf99a55
+constantly==23.10.4 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:3fd9b4d1c3dc1ec9757f3c52aef7e53ad9323dbe39f51dfd4c43853b68dfa3f9 \
+    --hash=sha256:aa92b70a33e2ac0bb33cd745eb61776594dc48764b06c35e0efd050b7f1c7cbd
+crispy-bootstrap4==2024.10 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:138a97884044ae4c4799c80595b36c42066e4e933431e2e971611e251c84f96c \
+    --hash=sha256:503e8922b0f3b5262a6fdf303a3a94eb2a07514812f1ca130b88f7c02dd25e2b
+crudini==0.9.5 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:59ae650f45af82a64afc33eb876909ee0c4888dc4e8711ef59731c1edfda5e24 \
+    --hash=sha256:84bc208dc7d89571bdc3c99274259d0b32d6b3a692d4255524f2eb4b64e9195c
+cryptography==44.0.1 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:00918d859aa4e57db8299607086f793fa7813ae2ff5a4637e318a25ef82730f7 \
+    --hash=sha256:1e8d181e90a777b63f3f0caa836844a1182f1f265687fac2115fcf245f5fbec3 \
+    --hash=sha256:1f9a92144fa0c877117e9748c74501bea842f93d21ee00b0cf922846d9d0b183 \
+    --hash=sha256:21377472ca4ada2906bc313168c9dc7b1d7ca417b63c1c3011d0c74b7de9ae69 \
+    --hash=sha256:24979e9f2040c953a94bf3c6782e67795a4c260734e5264dceea65c8f4bae64a \
+    --hash=sha256:2a46a89ad3e6176223b632056f321bc7de36b9f9b93b2cc1cccf935a3849dc62 \
+    --hash=sha256:322eb03ecc62784536bc173f1483e76747aafeb69c8728df48537eb431cd1911 \
+    --hash=sha256:436df4f203482f41aad60ed1813811ac4ab102765ecae7a2bbb1dbb66dcff5a7 \
+    --hash=sha256:4f422e8c6a28cf8b7f883eb790695d6d45b0c385a2583073f3cec434cc705e1a \
+    --hash=sha256:53f23339864b617a3dfc2b0ac8d5c432625c80014c25caac9082314e9de56f41 \
+    --hash=sha256:5fed5cd6102bb4eb843e3315d2bf25fede494509bddadb81e03a859c1bc17b83 \
+    --hash=sha256:610a83540765a8d8ce0f351ce42e26e53e1f774a6efb71eb1b41eb01d01c3d12 \
+    --hash=sha256:6c8acf6f3d1f47acb2248ec3ea261171a671f3d9428e34ad0357148d492c7864 \
+    --hash=sha256:6f76fdd6fd048576a04c5210d53aa04ca34d2ed63336d4abd306d0cbe298fddf \
+    --hash=sha256:72198e2b5925155497a5a3e8c216c7fb3e64c16ccee11f0e7da272fa93b35c4c \
+    --hash=sha256:887143b9ff6bad2b7570da75a7fe8bbf5f65276365ac259a5d2d5147a73775f2 \
+    --hash=sha256:888fcc3fce0c888785a4876ca55f9f43787f4c5c1cc1e2e0da71ad481ff82c5b \
+    --hash=sha256:8e6a85a93d0642bd774460a86513c5d9d80b5c002ca9693e63f6e540f1815ed0 \
+    --hash=sha256:94f99f2b943b354a5b6307d7e8d19f5c423a794462bde2bf310c770ba052b1c4 \
+    --hash=sha256:9b336599e2cb77b1008cb2ac264b290803ec5e8e89d618a5e978ff5eb6f715d9 \
+    --hash=sha256:a2d8a7045e1ab9b9f803f0d9531ead85f90c5f2859e653b61497228b18452008 \
+    --hash=sha256:b8272f257cf1cbd3f2e120f14c68bff2b6bdfcc157fafdee84a1b795efd72862 \
+    --hash=sha256:bf688f615c29bfe9dfc44312ca470989279f0e94bb9f631f85e3459af8efc009 \
+    --hash=sha256:d9c5b9f698a83c8bd71e0f4d3f9f839ef244798e5ffe96febfa9714717db7af7 \
+    --hash=sha256:dd7c7e2d71d908dc0f8d2027e1604102140d84b155e658c20e8ad1304317691f \
+    --hash=sha256:df978682c1504fc93b3209de21aeabf2375cb1571d4e61907b3e7a2540e83026 \
+    --hash=sha256:e403f7f766ded778ecdb790da786b418a9f2394f36e8cc8b796cc056ab05f44f \
+    --hash=sha256:eb3889330f2a4a148abead555399ec9a32b13b7c8ba969b72d8e500eb7ef84cd \
+    --hash=sha256:f4daefc971c2d1f82f03097dc6f216744a6cd2ac0f04c68fb935ea2ba2a0d420 \
+    --hash=sha256:f51f5705ab27898afda1aaa430f34ad90dc117421057782022edf0600bec5f14 \
+    --hash=sha256:fd0ee90072861e276b0ff08bd627abec29e32a53b2be44e41dbcdf87cbee2b00
+cxxfilt==0.3.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:774e85a8d0157775ed43276d89397d924b104135762d86b3a95f81f203094e07 \
+    --hash=sha256:7df6464ba5e8efbf0d8974c0b2c78b32546676f06059a83515dbdfa559b34214
+cython==3.0.11 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:0b1d1f6f94cc5d42a4591f6d60d616786b9cd15576b112bc92a23131fcf38020 \
+    --hash=sha256:0e25f6425ad4a700d7f77cd468da9161e63658837d1bc34861a9861a4ef6346d \
+    --hash=sha256:0fc6fdd6fa493be7bdda22355689d5446ac944cd71286f6f44a14b0d67ee3ff5 \
+    --hash=sha256:104d6f2f2c827ccc5e9e42c80ef6773a6aa94752fe6bc5b24a4eab4306fb7f07 \
+    --hash=sha256:11996c40c32abf843ba652a6d53cb15944c88d91f91fc4e6f0028f5df8a8f8a1 \
+    --hash=sha256:13062ce556a1e98d2821f7a0253b50569fdc98c36efd6653a65b21e3f8bbbf5f \
+    --hash=sha256:14701edb3107a5d9305a82d9d646c4f28bfecbba74b26cc1ee2f4be08f602057 \
+    --hash=sha256:187685e25e037320cae513b8cc4bf9dbc4465c037051aede509cbbf207524de2 \
+    --hash=sha256:1dd47865f4c0a224da73acf83d113f93488d17624e2457dce1753acdfb1cc40c \
+    --hash=sha256:221de0b48bf387f209003508e602ce839a80463522fc6f583ad3c8d5c890d2c1 \
+    --hash=sha256:2252b5aa57621848e310fe7fa6f7dce5f73aa452884a183d201a8bcebfa05a00 \
+    --hash=sha256:2a8ea2e7e2d3bc0d8630dafe6c4a5a89485598ff8a61885b74f8ed882597efd5 \
+    --hash=sha256:301bde949b4f312a1c70e214b0c3bc51a3f955d466010d2f68eb042df36447b0 \
+    --hash=sha256:3379c6521e25aa6cd7703bb7d635eaca75c0f9c7f1b0fdd6dd15a03bfac5f68d \
+    --hash=sha256:351955559b37e6c98b48aecb178894c311be9d731b297782f2b78d111f0c9015 \
+    --hash=sha256:3699391125ab344d8d25438074d1097d9ba0fb674d0320599316cfe7cf5f002a \
+    --hash=sha256:3999fb52d3328a6a5e8c63122b0a8bd110dfcdb98dda585a3def1426b991cba7 \
+    --hash=sha256:3f2b062f6df67e8a56c75e500ca330cf62c85ac26dd7fd006f07ef0f83aebfa3 \
+    --hash=sha256:3ff8ac1f0ecd4f505db4ab051e58e4531f5d098b6ac03b91c3b902e8d10c67b3 \
+    --hash=sha256:421017466e9260aca86823974e26e158e6358622f27c0f4da9c682f3b6d2e624 \
+    --hash=sha256:4341d6a64d47112884e0bcf31e6c075268220ee4cd02223047182d4dda94d637 \
+    --hash=sha256:44292aae17524abb4b70a25111fe7dec1a0ad718711d47e3786a211d5408fdaa \
+    --hash=sha256:46aec30f217bdf096175a1a639203d44ac73a36fe7fa3dd06bd012e8f39eca0f \
+    --hash=sha256:473d35681d9f93ce380e6a7c8feb2d65fc6333bd7117fbc62989e404e241dbb0 \
+    --hash=sha256:4e9a8d92978b15a0c7ca7f98447c6c578dc8923a0941d9d172d0b077cb69c576 \
+    --hash=sha256:52186101d51497519e99b60d955fd5cb3bf747c67f00d742e70ab913f1e42d31 \
+    --hash=sha256:52205347e916dd65d2400b977df4c697390c3aae0e96275a438cc4ae85dadc08 \
+    --hash=sha256:525d09b3405534763fa73bd78c8e51ac8264036ce4c16d37dfd1555a7da6d3a7 \
+    --hash=sha256:53b6072a89049a991d07f42060f65398448365c59c9cb515c5925b9bdc9d71f8 \
+    --hash=sha256:598699165cfa7c6d69513ee1bffc9e1fdd63b00b624409174c388538aa217975 \
+    --hash=sha256:63f2c892e9f9c1698ecfee78205541623eb31cd3a1b682668be7ac12de94aa8e \
+    --hash=sha256:6823aef13669a32caf18bbb036de56065c485d9f558551a9b55061acf9c4c27f \
+    --hash=sha256:6fb68cef33684f8cc97987bee6ae919eee7e18ee6a3ad7ed9516b8386ef95ae6 \
+    --hash=sha256:7146dd2af8682b4ca61331851e6aebce9fe5158e75300343f80c07ca80b1faff \
+    --hash=sha256:75ba1c70b6deeaffbac123856b8d35f253da13552207aa969078611c197377e4 \
+    --hash=sha256:780f89c95b8aec1e403005b3bf2f0a2afa060b3eba168c86830f079339adad89 \
+    --hash=sha256:790263b74432cb997740d73665f4d8d00b9cd1cecbdd981d93591ddf993d4f12 \
+    --hash=sha256:8948802e1f5677a673ea5d22a1e7e273ca5f83e7a452786ca286eebf97cee67c \
+    --hash=sha256:8acdc87e9009110adbceb7569765eb0980129055cc954c62f99fe9f094c9505e \
+    --hash=sha256:8b14c24f1dc4c4c9d997cca8d1b7fb01187a218aab932328247dcf5694a10102 \
+    --hash=sha256:989899a85f0d9a57cebb508bd1f194cb52f0e3f7e22ac259f33d148d6422375c \
+    --hash=sha256:9c02361af9bfa10ff1ccf967fc75159e56b1c8093caf565739ed77a559c1f29f \
+    --hash=sha256:a0583076c4152b417a3a8a5d81ec02f58c09b67d3f22d5857e64c8734ceada8c \
+    --hash=sha256:a1f4cbc70f6b7f0c939522118820e708e0d490edca42d852fa8004ec16780be2 \
+    --hash=sha256:a690f2ff460682ea985e8d38ec541be97e0977fa0544aadc21efc116ff8d7579 \
+    --hash=sha256:a75d45fbc20651c1b72e4111149fed3b33d270b0a4fb78328c54d965f28d55e1 \
+    --hash=sha256:aedceb6090a60854b31bf9571dc55f642a3fa5b91f11b62bcef167c52cac93d8 \
+    --hash=sha256:af91497dc098718e634d6ec8f91b182aea6bb3690f333fc9a7777bc70abe8810 \
+    --hash=sha256:b4ab2b92a3e6ed552adbe9350fd2ef3aa0cc7853cf91569f9dbed0c0699bbeab \
+    --hash=sha256:b8c7e514075696ca0f60c337f9e416e61d7ccbc1aa879a56c39181ed90ec3059 \
+    --hash=sha256:bcd29945fafd12484cf37b1d84f12f0e7a33ba3eac5836531c6bd5283a6b3a0c \
+    --hash=sha256:bfa550d9ae39e827a6e7198076df763571cb53397084974a6948af558355e028 \
+    --hash=sha256:c3d68751668c66c7a140b6023dba5d5d507f72063407bb609d3a5b0f3b8dfbe4 \
+    --hash=sha256:c69d5cad51388522b98a99b4be1b77316de85b0c0523fa865e0ea58bbb622e0a \
+    --hash=sha256:c8eed5c015685106db15dd103fd040948ddca9197b1dd02222711815ea782a27 \
+    --hash=sha256:cee29846471ce60226b18e931d8c1c66a158db94853e3e79bc2da9bd22345008 \
+    --hash=sha256:d02f4ebe15aac7cdacce1a628e556c1983f26d140fd2e0ac5e0a090e605a2d38 \
+    --hash=sha256:d566a4e09b8979be8ab9f843bac0dd216c81f5e5f45661a9b25cd162ed80508c \
+    --hash=sha256:d80a7232938d523c1a12f6b1794ab5efb1ae77ad3fde79de4bb558d8ab261619 \
+    --hash=sha256:d89a82937ce4037f092e9848a7bbcc65bc8e9fc9aef2bb74f5c15e7d21a73080 \
+    --hash=sha256:da394654c6da15c1d37f0b7ec5afd325c69a15ceafee2afba14b67a5df8a82c8 \
+    --hash=sha256:ddd1fe25af330f4e003421636746a546474e4ccd8f239f55d2898d80983d20ed \
+    --hash=sha256:e6dd395d1a704e34a9fac00b25f0036dce6654c6b898be6f872ac2bb4f2eda48 \
+    --hash=sha256:eeb6860b0f4bfa402de8929833fe5370fa34069c7ebacb2d543cb017f21fb891 \
+    --hash=sha256:f3953d2f504176f929862e5579cfc421860c33e9707f585d70d24e1096accdf7 \
+    --hash=sha256:f988f7f8164a6079c705c39e2d75dbe9967e3dacafe041420d9af7b9ee424162
+daphne==3.0.2 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:76ffae916ba3aa66b46996c14fa713e46004788167a4873d647544e750e0e99f \
+    --hash=sha256:a9af943c79717bc52fe64a3c236ae5d3adccc8b5be19c881b442d2c3db233393
+django-allauth==65.3.1 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:e02e951b71a2753a746459f2efa114c7c72bf2cef6887dbe8607a577c0350587
+django-crispy-forms==2.3 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:2db17ae08527201be1273f0df789e5f92819e23dd28fec69cffba7f3762e1a38 \
+    --hash=sha256:efc4c31e5202bbec6af70d383a35e12fc80ea769d464fb0e7fe21768bb138a20
+django-csp==3.8 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:19b2978b03fcd73517d7d67acbc04fbbcaec0facc3e83baa502965892d1e0719 \
+    --hash=sha256:ef0f1a9f7d8da68ae6e169c02e9ac661c0ecf04db70e0d1d85640512a68471c0
+django-extensions==3.2.3 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:44d27919d04e23b3f40231c4ab7af4e61ce832ef46d610cc650d53e68328410a \
+    --hash=sha256:9600b7562f79a92cbf1fde6403c04fee314608fefbb595502e34383ae8203401
+django-ratelimit==4.1.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:555943b283045b917ad59f196829530d63be2a39adb72788d985b90c81ba808b \
+    --hash=sha256:d047a31cf94d83ef1465d7543ca66c6fc16695559b5f8d814d1b51df15110b92
+django-recaptcha==4.0.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:0d912d5c7c009df4e47accd25029133d47a74342dbd2a8edc2877b6bffa971a3 \
+    --hash=sha256:5316438f97700c431d65351470d1255047e3f2cd9af0f2f13592b637dad9213e
+django-settings-export==1.2.1 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:fceeae49fc597f654c1217415d8e049fc81c930b7154f5d8f28c432db738ff79
+django==5.1.15 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:117871e58d6eda37f09870b7d73a3d66567b03aecd515b386b1751177c413432 \
+    --hash=sha256:46a356b5ff867bece73fc6365e081f21c569973403ee7e9b9a0316f27d0eb947
+djangorestframework==3.15.2 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:2b8871b062ba1aefc2de01f773875441a961fefbf79f5eed1e32b2f096944b20 \
+    --hash=sha256:36fe88cd2d6c6bec23dca9804bab2ba5517a8bb9d8f47ebc68981b56840107ad
+dncil==1.0.2 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:1557675c2d1351d3260509881cff0383309f81cda4944ed2c3f5cc352953aa15 \
+    --hash=sha256:69d389e9b850fa9afa2e37ca252b01476379991eee88fd33ab76f924d36dd68d
+dnfile==0.15.1 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:1529cf0f976b1382f60a3c56b2e0def90f3486e41193ffd34677e74563c8426c \
+    --hash=sha256:585c8e3e4a29824402430a0a8b7e7ae82c040fc17eeb3a06758fdceebe2d923e
+dnspython==2.7.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:b4c34b7d10b51bcc3a5071e7b8dee77939f1e878477eeecc965e9835f63c6c86 \
+    --hash=sha256:ce9c432eda0dc91cf618a5cedf1a4e142651196bbcd2c80e89ed5a907e5cfaf1
+dpkt==1.9.6 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:b1739c594297b2b6321dfbf133e3f8dcf54c0ef54cb5739d204331d34a0d8fe4 \
+    --hash=sha256:b5737010fd420d142e02ed04fa616edd1fc05e414980baef594f72287c875eef
+easygui==0.98.3 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:33498710c68b5376b459cd3fc48d1d1f33822139eb3ed01defbc0528326da3ba \
+    --hash=sha256:d653ff79ee1f42f63b5a090f2f98ce02335d86ad8963b3ce2661805cafe99a04
+editorconfig==0.17.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:8739052279699840065d3a9f5c125d7d5a98daeefe53b0e5274261d77cb49aa2 \
+    --hash=sha256:fe491719c5f65959ec00b167d07740e7ffec9a3f362038c72b289330b9991dfc
+exceptiongroup==1.2.2 ; python_version == "3.10" \
+    --hash=sha256:3111b9d131c238bec2f8f516e123e14ba243563fb135d3fe885990585aa7795b \
+    --hash=sha256:47c2edf7c6738fafb49fd34290706d1a1a2f4d1c6df275526b62cbb4aa5393cc
+filelock==3.17.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:533dc2f7ba78dc2f0f531fc6c4940addf7b70a481e269a5a3b93be94ffbe8338 \
+    --hash=sha256:ee4e77401ef576ebb38cd7f13b9b28893194acc20a8e68e18730ba9c0e54660e
+flare-capa==9.1.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:7df5c8033b9ea568569611b5f1948b8257c055a191a01ab1e67ce3e407c86e21 \
+    --hash=sha256:9e3214c66dd13c90e379c74d56a99fee2634c14980d55395535f3a39fe9159bc
+funcy==2.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:3963315d59d41c6f30c04bc910e10ab50a3ac4a225868bfa96feed133df075cb \
+    --hash=sha256:53df23c8bb1651b12f095df764bfb057935d49537a56de211b098f4c79614bb0
+future==1.0.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:929292d34f5872e70396626ef385ec22355a1fae8ad29e1a734c3e43f9fbc216 \
+    --hash=sha256:bd2968309307861edae1458a4f8a4f3598c03be43b97521076aebf5d94c07b05
+gevent==24.2.1 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:03aa5879acd6b7076f6a2a307410fb1e0d288b84b03cdfd8c74db8b4bc882fc5 \
+    --hash=sha256:117e5837bc74a1673605fb53f8bfe22feb6e5afa411f524c835b2ddf768db0de \
+    --hash=sha256:141a2b24ad14f7b9576965c0c84927fc85f824a9bb19f6ec1e61e845d87c9cd8 \
+    --hash=sha256:14532a67f7cb29fb055a0e9b39f16b88ed22c66b96641df8c04bdc38c26b9ea5 \
+    --hash=sha256:1dffb395e500613e0452b9503153f8f7ba587c67dd4a85fc7cd7aa7430cb02cc \
+    --hash=sha256:2955eea9c44c842c626feebf4459c42ce168685aa99594e049d03bedf53c2800 \
+    --hash=sha256:2ae3a25ecce0a5b0cd0808ab716bfca180230112bb4bc89b46ae0061d62d4afe \
+    --hash=sha256:2e9ac06f225b696cdedbb22f9e805e2dd87bf82e8fa5e17756f94e88a9d37cf7 \
+    --hash=sha256:368a277bd9278ddb0fde308e6a43f544222d76ed0c4166e0d9f6b036586819d9 \
+    --hash=sha256:3adfb96637f44010be8abd1b5e73b5070f851b817a0b182e601202f20fa06533 \
+    --hash=sha256:3d5325ccfadfd3dcf72ff88a92fb8fc0b56cacc7225f0f4b6dcf186c1a6eeabc \
+    --hash=sha256:432fc76f680acf7cf188c2ee0f5d3ab73b63c1f03114c7cd8a34cebbe5aa2056 \
+    --hash=sha256:44098038d5e2749b0784aabb27f1fcbb3f43edebedf64d0af0d26955611be8d6 \
+    --hash=sha256:5a1df555431f5cd5cc189a6ee3544d24f8c52f2529134685f1e878c4972ab026 \
+    --hash=sha256:6c47ae7d1174617b3509f5d884935e788f325eb8f1a7efc95d295c68d83cce40 \
+    --hash=sha256:6f947a9abc1a129858391b3d9334c45041c08a0f23d14333d5b844b6e5c17a07 \
+    --hash=sha256:782a771424fe74bc7e75c228a1da671578c2ba4ddb2ca09b8f959abdf787331e \
+    --hash=sha256:7899a38d0ae7e817e99adb217f586d0a4620e315e4de577444ebeeed2c5729be \
+    --hash=sha256:7b00f8c9065de3ad226f7979154a7b27f3b9151c8055c162332369262fc025d8 \
+    --hash=sha256:8f4b8e777d39013595a7740b4463e61b1cfe5f462f1b609b28fbc1e4c4ff01e5 \
+    --hash=sha256:90cbac1ec05b305a1b90ede61ef73126afdeb5a804ae04480d6da12c56378df1 \
+    --hash=sha256:918cdf8751b24986f915d743225ad6b702f83e1106e08a63b736e3a4c6ead789 \
+    --hash=sha256:9202f22ef811053077d01f43cc02b4aaf4472792f9fd0f5081b0b05c926cca19 \
+    --hash=sha256:94138682e68ec197db42ad7442d3cf9b328069c3ad8e4e5022e6b5cd3e7ffae5 \
+    --hash=sha256:968581d1717bbcf170758580f5f97a2925854943c45a19be4d47299507db2eb7 \
+    --hash=sha256:9d8d0642c63d453179058abc4143e30718b19a85cbf58c2744c9a63f06a1d388 \
+    --hash=sha256:a7ceb59986456ce851160867ce4929edaffbd2f069ae25717150199f8e1548b8 \
+    --hash=sha256:b9913c45d1be52d7a5db0c63977eebb51f68a2d5e6fd922d1d9b5e5fd758cc98 \
+    --hash=sha256:bde283313daf0b34a8d1bab30325f5cb0f4e11b5869dbe5bc61f8fe09a8f66f3 \
+    --hash=sha256:bf5b9c72b884c6f0c4ed26ef204ee1f768b9437330422492c319470954bc4cc7 \
+    --hash=sha256:ca80b121bbec76d7794fcb45e65a7eca660a76cc1a104ed439cdbd7df5f0b060 \
+    --hash=sha256:cdf66977a976d6a3cfb006afdf825d1482f84f7b81179db33941f2fc9673bb1d \
+    --hash=sha256:d4faf846ed132fd7ebfbbf4fde588a62d21faa0faa06e6f468b7faa6f436b661 \
+    --hash=sha256:d7f87c2c02e03d99b95cfa6f7a776409083a9e4d468912e18c7680437b29222c \
+    --hash=sha256:dd23df885318391856415e20acfd51a985cba6919f0be78ed89f5db9ff3a31cb \
+    --hash=sha256:f5de3c676e57177b38857f6e3cdfbe8f38d1cd754b63200c0615eaa31f514b4f \
+    --hash=sha256:f5e8e8d60e18d5f7fd49983f0c4696deeddaf6e608fbab33397671e2fcc6cc91 \
+    --hash=sha256:f7cac622e11b4253ac4536a654fe221249065d9a69feb6cdcd4d9af3503602e0 \
+    --hash=sha256:f8a04cf0c5b7139bc6368b461257d4a757ea2fe89b3773e494d235b7dd51119f \
+    --hash=sha256:f8bb35ce57a63c9a6896c71a285818a3922d8ca05d150fd1fe49a7f57287b836 \
+    --hash=sha256:fbfdce91239fe306772faab57597186710d5699213f4df099d1612da7320d682
+greenlet==3.0.3 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:01bc7ea167cf943b4c802068e178bbf70ae2e8c080467070d01bfa02f337ee67 \
+    --hash=sha256:0448abc479fab28b00cb472d278828b3ccca164531daab4e970a0458786055d6 \
+    --hash=sha256:086152f8fbc5955df88382e8a75984e2bb1c892ad2e3c80a2508954e52295257 \
+    --hash=sha256:098d86f528c855ead3479afe84b49242e174ed262456c342d70fc7f972bc13c4 \
+    --hash=sha256:149e94a2dd82d19838fe4b2259f1b6b9957d5ba1b25640d2380bea9c5df37676 \
+    --hash=sha256:1551a8195c0d4a68fac7a4325efac0d541b48def35feb49d803674ac32582f61 \
+    --hash=sha256:15d79dd26056573940fcb8c7413d84118086f2ec1a8acdfa854631084393efcc \
+    --hash=sha256:1996cb9306c8595335bb157d133daf5cf9f693ef413e7673cb07e3e5871379ca \
+    --hash=sha256:1a7191e42732df52cb5f39d3527217e7ab73cae2cb3694d241e18f53d84ea9a7 \
+    --hash=sha256:1ea188d4f49089fc6fb283845ab18a2518d279c7cd9da1065d7a84e991748728 \
+    --hash=sha256:1f672519db1796ca0d8753f9e78ec02355e862d0998193038c7073045899f305 \
+    --hash=sha256:2516a9957eed41dd8f1ec0c604f1cdc86758b587d964668b5b196a9db5bfcde6 \
+    --hash=sha256:2797aa5aedac23af156bbb5a6aa2cd3427ada2972c828244eb7d1b9255846379 \
+    --hash=sha256:2dd6e660effd852586b6a8478a1d244b8dc90ab5b1321751d2ea15deb49ed414 \
+    --hash=sha256:3ddc0f794e6ad661e321caa8d2f0a55ce01213c74722587256fb6566049a8b04 \
+    --hash=sha256:3ed7fb269f15dc662787f4119ec300ad0702fa1b19d2135a37c2c4de6fadfd4a \
+    --hash=sha256:419b386f84949bf0e7c73e6032e3457b82a787c1ab4a0e43732898a761cc9dbf \
+    --hash=sha256:43374442353259554ce33599da8b692d5aa96f8976d567d4badf263371fbe491 \
+    --hash=sha256:52f59dd9c96ad2fc0d5724107444f76eb20aaccb675bf825df6435acb7703559 \
+    --hash=sha256:57e8974f23e47dac22b83436bdcf23080ade568ce77df33159e019d161ce1d1e \
+    --hash=sha256:5b51e85cb5ceda94e79d019ed36b35386e8c37d22f07d6a751cb659b180d5274 \
+    --hash=sha256:649dde7de1a5eceb258f9cb00bdf50e978c9db1b996964cd80703614c86495eb \
+    --hash=sha256:64d7675ad83578e3fc149b617a444fab8efdafc9385471f868eb5ff83e446b8b \
+    --hash=sha256:68834da854554926fbedd38c76e60c4a2e3198c6fbed520b106a8986445caaf9 \
+    --hash=sha256:6b66c9c1e7ccabad3a7d037b2bcb740122a7b17a53734b7d72a344ce39882a1b \
+    --hash=sha256:70fb482fdf2c707765ab5f0b6655e9cfcf3780d8d87355a063547b41177599be \
+    --hash=sha256:7170375bcc99f1a2fbd9c306f5be8764eaf3ac6b5cb968862cad4c7057756506 \
+    --hash=sha256:73a411ef564e0e097dbe7e866bb2dda0f027e072b04da387282b02c308807405 \
+    --hash=sha256:77457465d89b8263bca14759d7c1684df840b6811b2499838cc5b040a8b5b113 \
+    --hash=sha256:7f362975f2d179f9e26928c5b517524e89dd48530a0202570d55ad6ca5d8a56f \
+    --hash=sha256:81bb9c6d52e8321f09c3d165b2a78c680506d9af285bfccbad9fb7ad5a5da3e5 \
+    --hash=sha256:881b7db1ebff4ba09aaaeae6aa491daeb226c8150fc20e836ad00041bcb11230 \
+    --hash=sha256:894393ce10ceac937e56ec00bb71c4c2f8209ad516e96033e4b3b1de270e200d \
+    --hash=sha256:99bf650dc5d69546e076f413a87481ee1d2d09aaaaaca058c9251b6d8c14783f \
+    --hash=sha256:9da2bd29ed9e4f15955dd1595ad7bc9320308a3b766ef7f837e23ad4b4aac31a \
+    --hash=sha256:afaff6cf5200befd5cec055b07d1c0a5a06c040fe5ad148abcd11ba6ab9b114e \
+    --hash=sha256:b1b5667cced97081bf57b8fa1d6bfca67814b0afd38208d52538316e9422fc61 \
+    --hash=sha256:b37eef18ea55f2ffd8f00ff8fe7c8d3818abd3e25fb73fae2ca3b672e333a7a6 \
+    --hash=sha256:b542be2440edc2d48547b5923c408cbe0fc94afb9f18741faa6ae970dbcb9b6d \
+    --hash=sha256:b7dcbe92cc99f08c8dd11f930de4d99ef756c3591a5377d1d9cd7dd5e896da71 \
+    --hash=sha256:b7f009caad047246ed379e1c4dbcb8b020f0a390667ea74d2387be2998f58a22 \
+    --hash=sha256:bba5387a6975598857d86de9eac14210a49d554a77eb8261cc68b7d082f78ce2 \
+    --hash=sha256:c5e1536de2aad7bf62e27baf79225d0d64360d4168cf2e6becb91baf1ed074f3 \
+    --hash=sha256:c5ee858cfe08f34712f548c3c363e807e7186f03ad7a5039ebadb29e8c6be067 \
+    --hash=sha256:c9db1c18f0eaad2f804728c67d6c610778456e3e1cc4ab4bbd5eeb8e6053c6fc \
+    --hash=sha256:d353cadd6083fdb056bb46ed07e4340b0869c305c8ca54ef9da3421acbdf6881 \
+    --hash=sha256:d46677c85c5ba00a9cb6f7a00b2bfa6f812192d2c9f7d9c4f6a55b60216712f3 \
+    --hash=sha256:d4d1ac74f5c0c0524e4a24335350edad7e5f03b9532da7ea4d3c54d527784f2e \
+    --hash=sha256:d73a9fe764d77f87f8ec26a0c85144d6a951a6c438dfe50487df5595c6373eac \
+    --hash=sha256:da70d4d51c8b306bb7a031d5cff6cc25ad253affe89b70352af5f1cb68e74b53 \
+    --hash=sha256:daf3cb43b7cf2ba96d614252ce1684c1bccee6b2183a01328c98d36fcd7d5cb0 \
+    --hash=sha256:dca1e2f3ca00b84a396bc1bce13dd21f680f035314d2379c4160c98153b2059b \
+    --hash=sha256:dd4f49ae60e10adbc94b45c0b5e6a179acc1736cf7a90160b404076ee283cf83 \
+    --hash=sha256:e1f145462f1fa6e4a4ae3c0f782e580ce44d57c8f2c7aae1b6fa88c0b2efdb41 \
+    --hash=sha256:e3391d1e16e2a5a1507d83e4a8b100f4ee626e8eca43cf2cadb543de69827c4c \
+    --hash=sha256:fcd2469d6a2cf298f198f0487e0a5b1a47a42ca0fa4dfd1b6862c999f018ebbf \
+    --hash=sha256:fd096eb7ffef17c456cfa587523c5f92321ae02427ff955bebe9e3c63bc9f0da \
+    --hash=sha256:fe754d231288e1e64323cfad462fcee8f0288654c10bdf4f603a39ed923bef33
+gunicorn==23.0.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:ec400d38950de4dfd418cff8328b2c8faed0edb0d517d3394e457c317908ca4d \
+    --hash=sha256:f014447a0101dc57e294f6c18ca6b40227a4c90e9bdb586042628030cba004ec
+h11==0.14.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:8f19fbbe99e72420ff35c00b27a34cb9937e902a8b810e2c88300c6f0a3b699d \
+    --hash=sha256:e3fe4ac4b851c468cc8363d500db52c2ead036020723024a109d37346efaa761
+httptools==0.6.4 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:0614154d5454c21b6410fdf5262b4a3ddb0f53f1e1721cfd59d55f32138c578a \
+    --hash=sha256:0e563e54979e97b6d13f1bbc05a96109923e76b901f786a5eae36e99c01237bd \
+    --hash=sha256:16e603a3bff50db08cd578d54f07032ca1631450ceb972c2f834c2b860c28ea2 \
+    --hash=sha256:288cd628406cc53f9a541cfaf06041b4c71d751856bab45e3702191f931ccd17 \
+    --hash=sha256:28908df1b9bb8187393d5b5db91435ccc9c8e891657f9cbb42a2541b44c82fc8 \
+    --hash=sha256:322d20ea9cdd1fa98bd6a74b77e2ec5b818abdc3d36695ab402a0de8ef2865a3 \
+    --hash=sha256:342dd6946aa6bda4b8f18c734576106b8a31f2fe31492881a9a160ec84ff4bd5 \
+    --hash=sha256:345c288418f0944a6fe67be8e6afa9262b18c7626c3ef3c28adc5eabc06a68da \
+    --hash=sha256:3c73ce323711a6ffb0d247dcd5a550b8babf0f757e86a52558fe5b86d6fefcc0 \
+    --hash=sha256:40a5ec98d3f49904b9fe36827dcf1aadfef3b89e2bd05b0e35e94f97c2b14721 \
+    --hash=sha256:40b0f7fe4fd38e6a507bdb751db0379df1e99120c65fbdc8ee6c1d044897a636 \
+    --hash=sha256:40dc6a8e399e15ea525305a2ddba998b0af5caa2566bcd79dcbe8948181eeaff \
+    --hash=sha256:4b36913ba52008249223042dca46e69967985fb4051951f94357ea681e1f5dc0 \
+    --hash=sha256:4d87b29bd4486c0093fc64dea80231f7c7f7eb4dc70ae394d70a495ab8436071 \
+    --hash=sha256:4e93eee4add6493b59a5c514da98c939b244fce4a0d8879cd3f466562f4b7d5c \
+    --hash=sha256:59e724f8b332319e2875efd360e61ac07f33b492889284a3e05e6d13746876f4 \
+    --hash=sha256:69422b7f458c5af875922cdb5bd586cc1f1033295aa9ff63ee196a87519ac8e1 \
+    --hash=sha256:703c346571fa50d2e9856a37d7cd9435a25e7fd15e236c397bf224afaa355fe9 \
+    --hash=sha256:85071a1e8c2d051b507161f6c3e26155b5c790e4e28d7f236422dbacc2a9cc44 \
+    --hash=sha256:856f4bc0478ae143bad54a4242fccb1f3f86a6e1be5548fecfd4102061b3a083 \
+    --hash=sha256:85797e37e8eeaa5439d33e556662cc370e474445d5fab24dcadc65a8ffb04003 \
+    --hash=sha256:90d96a385fa941283ebd231464045187a31ad932ebfa541be8edf5b3c2328959 \
+    --hash=sha256:94978a49b8f4569ad607cd4946b759d90b285e39c0d4640c6b36ca7a3ddf2efc \
+    --hash=sha256:aafe0f1918ed07b67c1e838f950b1c1fabc683030477e60b335649b8020e1076 \
+    --hash=sha256:ab9ba8dcf59de5181f6be44a77458e45a578fc99c31510b8c65b7d5acc3cf490 \
+    --hash=sha256:ade273d7e767d5fae13fa637f4d53b6e961fb7fd93c7797562663f0171c26660 \
+    --hash=sha256:b799de31416ecc589ad79dd85a0b2657a8fe39327944998dea368c1d4c9e55e6 \
+    --hash=sha256:c26f313951f6e26147833fc923f78f95604bbec812a43e5ee37f26dc9e5a686c \
+    --hash=sha256:ca80b7485c76f768a3bc83ea58373f8db7b015551117375e4918e2aa77ea9b50 \
+    --hash=sha256:d1ffd262a73d7c28424252381a5b854c19d9de5f56f075445d33919a637e3547 \
+    --hash=sha256:d3f0d369e7ffbe59c4b6116a44d6a8eb4783aae027f2c0b366cf0aa964185dba \
+    --hash=sha256:d54efd20338ac52ba31e7da78e4a72570cf729fac82bc31ff9199bedf1dc7440 \
+    --hash=sha256:dacdd3d10ea1b4ca9df97a0a303cbacafc04b5cd375fa98732678151643d4988 \
+    --hash=sha256:db353d22843cf1028f43c3651581e4bb49374d85692a85f95f7b9a130e1b2cab \
+    --hash=sha256:db78cb9ca56b59b016e64b6031eda5653be0589dba2b1b43453f6e8b405a0970 \
+    --hash=sha256:deee0e3343f98ee8047e9f4c5bc7cedbf69f5734454a94c38ee829fb2d5fa3c1 \
+    --hash=sha256:df017d6c780287d5c80601dafa31f17bddb170232d85c066604d8558683711a2 \
+    --hash=sha256:df959752a0c2748a65ab5387d08287abf6779ae9165916fe053e68ae1fbdc47f \
+    --hash=sha256:ec4f178901fa1834d4a060320d2f3abc5c9e39766953d038f1458cb885f47e81 \
+    --hash=sha256:f47f8ed67cc0ff862b84a1189831d1d33c963fb3ce1ee0c65d3b0cbe7b711069 \
+    --hash=sha256:f8787367fbdfccae38e35abf7641dafc5310310a5987b689f4c32cc8cc3ee975 \
+    --hash=sha256:f9eb89ecf8b290f2e293325c646a211ff1c2493222798bb80a530c5e7502494f \
+    --hash=sha256:fc411e1c0a7dcd2f902c7c48cf079947a7e65b5485dea9decb82b9105ca71a43
+humanize==4.11.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:b53caaec8532bcb2fff70c8826f904c35943f8cecaca29d272d9df38092736c0 \
+    --hash=sha256:e66f36020a2d5a974c504bd2555cf770621dbdbb6d82f94a6857c0b1ea2608be
+hyperlink==21.0.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:427af957daa58bc909471c6c40f74c5450fa123dd093fc53efd2e91d2705a56b \
+    --hash=sha256:e6b14c37ecb73e89c77d78cdb4c2cc8f3fb59a885c5b3f819ff4ed80f25af1b4
+ida-netnode==3.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:b7e1f2fbf57e3e104ed779d58e5f3f050aa48cce581bab8bf14ccee7a315e32e \
+    --hash=sha256:b9d117703e076c9d219c9337d0b43d935b5102b5cb677835f7c9776a9f0340a5
+ida-settings==2.1.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:1371730b4e64bf388845b65a41bea094ebde8a5d3a05bdf4edf2f42aaba83262 \
+    --hash=sha256:eab913b31ed0565aacea6d31976696c33b60c7e7bce3fccb75f32bef3878fc61
+idna==3.10 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:12f65c9b470abda6dc35cf8e63cc574b1c52b11df2c86030af0ac09b01b13ea9 \
+    --hash=sha256:946d195a0d259cbba61165e88e65941f16e9b36ea6ddb97f00452bae8b1287d3
+incremental==24.7.2 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:8cb2c3431530bec48ad70513931a760f446ad6c25e8333ca5d95e24b0ed7b8fe \
+    --hash=sha256:fb4f1d47ee60efe87d4f6f0ebb5f70b9760db2b2574c59c8e8912be4ebd464c9
+iniparse==0.5 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:88ca60473b1637055a937933d48840be1b1b6835f381a6158ef118a532583675 \
+    --hash=sha256:932e5239d526e7acb504017bb707be67019ac428a6932368e6851691093aa842 \
+    --hash=sha256:db6ef1d8a02395448e0e7b17ac0aa28b8d338b632bbd1ffca08c02ddae32cf97
+intervaltree==3.1.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:902b1b88936918f9b2a19e0e5eb7ccb430ae45cde4f39ea4b36932920d33952d
+jinja2==3.1.6 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:0137fb05990d35f1275a587e9aee6d56da821fc83491a0fb838183be43f66d6d \
+    --hash=sha256:85ece4451f492d0c13c5dd7c13a64681a86afae63a5f347908daf103ce6d2f67
+jsbeautifier==1.15.1 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:ebd733b560704c602d744eafc839db60a1ee9326e30a2a80c4adb8718adc1b24
+lnkparse3==1.5.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:3ecbd8f4107be07b8e8d7b770daa53271abf66222ee892618d30f86952e1121a \
+    --hash=sha256:56b549389254f4d25375621249aa3a8c31f1dabf375e88bf7dc8c73a0f4f8f1e
+lxml==5.3.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:01220dca0d066d1349bd6a1726856a78f7929f3878f7e2ee83c296c69495309e \
+    --hash=sha256:02ced472497b8362c8e902ade23e3300479f4f43e45f4105c85ef43b8db85229 \
+    --hash=sha256:052d99051e77a4f3e8482c65014cf6372e61b0a6f4fe9edb98503bb5364cfee3 \
+    --hash=sha256:07da23d7ee08577760f0a71d67a861019103e4812c87e2fab26b039054594cc5 \
+    --hash=sha256:094cb601ba9f55296774c2d57ad68730daa0b13dc260e1f941b4d13678239e70 \
+    --hash=sha256:0a7056921edbdd7560746f4221dca89bb7a3fe457d3d74267995253f46343f15 \
+    --hash=sha256:0c120f43553ec759f8de1fee2f4794452b0946773299d44c36bfe18e83caf002 \
+    --hash=sha256:0d7b36afa46c97875303a94e8f3ad932bf78bace9e18e603f2085b652422edcd \
+    --hash=sha256:0fdf3a3059611f7585a78ee10399a15566356116a4288380921a4b598d807a22 \
+    --hash=sha256:109fa6fede314cc50eed29e6e56c540075e63d922455346f11e4d7a036d2b8cf \
+    --hash=sha256:146173654d79eb1fc97498b4280c1d3e1e5d58c398fa530905c9ea50ea849b22 \
+    --hash=sha256:1473427aff3d66a3fa2199004c3e601e6c4500ab86696edffdbc84954c72d832 \
+    --hash=sha256:1483fd3358963cc5c1c9b122c80606a3a79ee0875bcac0204149fa09d6ff2727 \
+    --hash=sha256:168f2dfcfdedf611eb285efac1516c8454c8c99caf271dccda8943576b67552e \
+    --hash=sha256:17e8d968d04a37c50ad9c456a286b525d78c4a1c15dd53aa46c1d8e06bf6fa30 \
+    --hash=sha256:18feb4b93302091b1541221196a2155aa296c363fd233814fa11e181adebc52f \
+    --hash=sha256:1afe0a8c353746e610bd9031a630a95bcfb1a720684c3f2b36c4710a0a96528f \
+    --hash=sha256:1d04f064bebdfef9240478f7a779e8c5dc32b8b7b0b2fc6a62e39b928d428e51 \
+    --hash=sha256:1fdc9fae8dd4c763e8a31e7630afef517eab9f5d5d31a278df087f307bf601f4 \
+    --hash=sha256:1ffc23010330c2ab67fac02781df60998ca8fe759e8efde6f8b756a20599c5de \
+    --hash=sha256:20094fc3f21ea0a8669dc4c61ed7fa8263bd37d97d93b90f28fc613371e7a875 \
+    --hash=sha256:213261f168c5e1d9b7535a67e68b1f59f92398dd17a56d934550837143f79c42 \
+    --hash=sha256:218c1b2e17a710e363855594230f44060e2025b05c80d1f0661258142b2add2e \
+    --hash=sha256:23e0553b8055600b3bf4a00b255ec5c92e1e4aebf8c2c09334f8368e8bd174d6 \
+    --hash=sha256:25f1b69d41656b05885aa185f5fdf822cb01a586d1b32739633679699f220391 \
+    --hash=sha256:2b3778cb38212f52fac9fe913017deea2fdf4eb1a4f8e4cfc6b009a13a6d3fcc \
+    --hash=sha256:2bc9fd5ca4729af796f9f59cd8ff160fe06a474da40aca03fcc79655ddee1a8b \
+    --hash=sha256:2c226a06ecb8cdef28845ae976da407917542c5e6e75dcac7cc33eb04aaeb237 \
+    --hash=sha256:2c3406b63232fc7e9b8783ab0b765d7c59e7c59ff96759d8ef9632fca27c7ee4 \
+    --hash=sha256:2c86bf781b12ba417f64f3422cfc302523ac9cd1d8ae8c0f92a1c66e56ef2e86 \
+    --hash=sha256:2d9b8d9177afaef80c53c0a9e30fa252ff3036fb1c6494d427c066a4ce6a282f \
+    --hash=sha256:2dec2d1130a9cda5b904696cec33b2cfb451304ba9081eeda7f90f724097300a \
+    --hash=sha256:2dfab5fa6a28a0b60a20638dc48e6343c02ea9933e3279ccb132f555a62323d8 \
+    --hash=sha256:2ecdd78ab768f844c7a1d4a03595038c166b609f6395e25af9b0f3f26ae1230f \
+    --hash=sha256:315f9542011b2c4e1d280e4a20ddcca1761993dda3afc7a73b01235f8641e903 \
+    --hash=sha256:36aef61a1678cb778097b4a6eeae96a69875d51d1e8f4d4b491ab3cfb54b5a03 \
+    --hash=sha256:384aacddf2e5813a36495233b64cb96b1949da72bef933918ba5c84e06af8f0e \
+    --hash=sha256:3879cc6ce938ff4eb4900d901ed63555c778731a96365e53fadb36437a131a99 \
+    --hash=sha256:3c174dc350d3ec52deb77f2faf05c439331d6ed5e702fc247ccb4e6b62d884b7 \
+    --hash=sha256:3eb44520c4724c2e1a57c0af33a379eee41792595023f367ba3952a2d96c2aab \
+    --hash=sha256:406246b96d552e0503e17a1006fd27edac678b3fcc9f1be71a2f94b4ff61528d \
+    --hash=sha256:41ce1f1e2c7755abfc7e759dc34d7d05fd221723ff822947132dc934d122fe22 \
+    --hash=sha256:423b121f7e6fa514ba0c7918e56955a1d4470ed35faa03e3d9f0e3baa4c7e492 \
+    --hash=sha256:44264ecae91b30e5633013fb66f6ddd05c006d3e0e884f75ce0b4755b3e3847b \
+    --hash=sha256:482c2f67761868f0108b1743098640fbb2a28a8e15bf3f47ada9fa59d9fe08c3 \
+    --hash=sha256:4b0c7a688944891086ba192e21c5229dea54382f4836a209ff8d0a660fac06be \
+    --hash=sha256:4c1fefd7e3d00921c44dc9ca80a775af49698bbfd92ea84498e56acffd4c5469 \
+    --hash=sha256:4e109ca30d1edec1ac60cdbe341905dc3b8f55b16855e03a54aaf59e51ec8c6f \
+    --hash=sha256:501d0d7e26b4d261fca8132854d845e4988097611ba2531408ec91cf3fd9d20a \
+    --hash=sha256:516f491c834eb320d6c843156440fe7fc0d50b33e44387fcec5b02f0bc118a4c \
+    --hash=sha256:51806cfe0279e06ed8500ce19479d757db42a30fd509940b1701be9c86a5ff9a \
+    --hash=sha256:562e7494778a69086f0312ec9689f6b6ac1c6b65670ed7d0267e49f57ffa08c4 \
+    --hash=sha256:56b9861a71575f5795bde89256e7467ece3d339c9b43141dbdd54544566b3b94 \
+    --hash=sha256:5b8f5db71b28b8c404956ddf79575ea77aa8b1538e8b2ef9ec877945b3f46442 \
+    --hash=sha256:5c2fb570d7823c2bbaf8b419ba6e5662137f8166e364a8b2b91051a1fb40ab8b \
+    --hash=sha256:5c54afdcbb0182d06836cc3d1be921e540be3ebdf8b8a51ee3ef987537455f84 \
+    --hash=sha256:5d6a6972b93c426ace71e0be9a6f4b2cfae9b1baed2eed2006076a746692288c \
+    --hash=sha256:609251a0ca4770e5a8768ff902aa02bf636339c5a93f9349b48eb1f606f7f3e9 \
+    --hash=sha256:62d172f358f33a26d6b41b28c170c63886742f5b6772a42b59b4f0fa10526cb1 \
+    --hash=sha256:62f7fdb0d1ed2065451f086519865b4c90aa19aed51081979ecd05a21eb4d1be \
+    --hash=sha256:658f2aa69d31e09699705949b5fc4719cbecbd4a97f9656a232e7d6c7be1a367 \
+    --hash=sha256:65ab5685d56914b9a2a34d67dd5488b83213d680b0c5d10b47f81da5a16b0b0e \
+    --hash=sha256:68934b242c51eb02907c5b81d138cb977b2129a0a75a8f8b60b01cb8586c7b21 \
+    --hash=sha256:68b87753c784d6acb8a25b05cb526c3406913c9d988d51f80adecc2b0775d6aa \
+    --hash=sha256:69959bd3167b993e6e710b99051265654133a98f20cec1d9b493b931942e9c16 \
+    --hash=sha256:6a7095eeec6f89111d03dabfe5883a1fd54da319c94e0fb104ee8f23616b572d \
+    --hash=sha256:6b038cc86b285e4f9fea2ba5ee76e89f21ed1ea898e287dc277a25884f3a7dfe \
+    --hash=sha256:6ba0d3dcac281aad8a0e5b14c7ed6f9fa89c8612b47939fc94f80b16e2e9bc83 \
+    --hash=sha256:6e91cf736959057f7aac7adfc83481e03615a8e8dd5758aa1d95ea69e8931dba \
+    --hash=sha256:6ee8c39582d2652dcd516d1b879451500f8db3fe3607ce45d7c5957ab2596040 \
+    --hash=sha256:6f651ebd0b21ec65dfca93aa629610a0dbc13dbc13554f19b0113da2e61a4763 \
+    --hash=sha256:71a8dd38fbd2f2319136d4ae855a7078c69c9a38ae06e0c17c73fd70fc6caad8 \
+    --hash=sha256:74068c601baff6ff021c70f0935b0c7bc528baa8ea210c202e03757c68c5a4ff \
+    --hash=sha256:7437237c6a66b7ca341e868cda48be24b8701862757426852c9b3186de1da8a2 \
+    --hash=sha256:747a3d3e98e24597981ca0be0fd922aebd471fa99d0043a3842d00cdcad7ad6a \
+    --hash=sha256:74bcb423462233bc5d6066e4e98b0264e7c1bed7541fff2f4e34fe6b21563c8b \
+    --hash=sha256:78d9b952e07aed35fe2e1a7ad26e929595412db48535921c5013edc8aa4a35ce \
+    --hash=sha256:7b1cd427cb0d5f7393c31b7496419da594fe600e6fdc4b105a54f82405e6626c \
+    --hash=sha256:7d3d1ca42870cdb6d0d29939630dbe48fa511c203724820fc0fd507b2fb46577 \
+    --hash=sha256:7e2f58095acc211eb9d8b5771bf04df9ff37d6b87618d1cbf85f92399c98dae8 \
+    --hash=sha256:7f41026c1d64043a36fda21d64c5026762d53a77043e73e94b71f0521939cc71 \
+    --hash=sha256:81b4e48da4c69313192d8c8d4311e5d818b8be1afe68ee20f6385d0e96fc9512 \
+    --hash=sha256:86a6b24b19eaebc448dc56b87c4865527855145d851f9fc3891673ff97950540 \
+    --hash=sha256:874a216bf6afaf97c263b56371434e47e2c652d215788396f60477540298218f \
+    --hash=sha256:89e043f1d9d341c52bf2af6d02e6adde62e0a46e6755d5eb60dc6e4f0b8aeca2 \
+    --hash=sha256:8c72e9563347c7395910de6a3100a4840a75a6f60e05af5e58566868d5eb2d6a \
+    --hash=sha256:8dc2c0395bea8254d8daebc76dcf8eb3a95ec2a46fa6fae5eaccee366bfe02ce \
+    --hash=sha256:8f0de2d390af441fe8b2c12626d103540b5d850d585b18fcada58d972b74a74e \
+    --hash=sha256:92e67a0be1639c251d21e35fe74df6bcc40cba445c2cda7c4a967656733249e2 \
+    --hash=sha256:94d6c3782907b5e40e21cadf94b13b0842ac421192f26b84c45f13f3c9d5dc27 \
+    --hash=sha256:97acf1e1fd66ab53dacd2c35b319d7e548380c2e9e8c54525c6e76d21b1ae3b1 \
+    --hash=sha256:9ada35dd21dc6c039259596b358caab6b13f4db4d4a7f8665764d616daf9cc1d \
+    --hash=sha256:9c52100e2c2dbb0649b90467935c4b0de5528833c76a35ea1a2691ec9f1ee7a1 \
+    --hash=sha256:9e41506fec7a7f9405b14aa2d5c8abbb4dbbd09d88f9496958b6d00cb4d45330 \
+    --hash=sha256:9e4b47ac0f5e749cfc618efdf4726269441014ae1d5583e047b452a32e221920 \
+    --hash=sha256:9fb81d2824dff4f2e297a276297e9031f46d2682cafc484f49de182aa5e5df99 \
+    --hash=sha256:a0eabd0a81625049c5df745209dc7fcef6e2aea7793e5f003ba363610aa0a3ff \
+    --hash=sha256:a3d819eb6f9b8677f57f9664265d0a10dd6551d227afb4af2b9cd7bdc2ccbf18 \
+    --hash=sha256:a87de7dd873bf9a792bf1e58b1c3887b9264036629a5bf2d2e6579fe8e73edff \
+    --hash=sha256:aa617107a410245b8660028a7483b68e7914304a6d4882b5ff3d2d3eb5948d8c \
+    --hash=sha256:aac0bbd3e8dd2d9c45ceb82249e8bdd3ac99131a32b4d35c8af3cc9db1657179 \
+    --hash=sha256:ab6dd83b970dc97c2d10bc71aa925b84788c7c05de30241b9e96f9b6d9ea3080 \
+    --hash=sha256:ace2c2326a319a0bb8a8b0e5b570c764962e95818de9f259ce814ee666603f19 \
+    --hash=sha256:ae5fe5c4b525aa82b8076c1a59d642c17b6e8739ecf852522c6321852178119d \
+    --hash=sha256:b11a5d918a6216e521c715b02749240fb07ae5a1fefd4b7bf12f833bc8b4fe70 \
+    --hash=sha256:b1c8c20847b9f34e98080da785bb2336ea982e7f913eed5809e5a3c872900f32 \
+    --hash=sha256:b369d3db3c22ed14c75ccd5af429086f166a19627e84a8fdade3f8f31426e52a \
+    --hash=sha256:b710bc2b8292966b23a6a0121f7a6c51d45d2347edcc75f016ac123b8054d3f2 \
+    --hash=sha256:bd96517ef76c8654446fc3db9242d019a1bb5fe8b751ba414765d59f99210b79 \
+    --hash=sha256:c00f323cc00576df6165cc9d21a4c21285fa6b9989c5c39830c3903dc4303ef3 \
+    --hash=sha256:c162b216070f280fa7da844531169be0baf9ccb17263cf5a8bf876fcd3117fa5 \
+    --hash=sha256:c1a69e58a6bb2de65902051d57fde951febad631a20a64572677a1052690482f \
+    --hash=sha256:c1f794c02903c2824fccce5b20c339a1a14b114e83b306ff11b597c5f71a1c8d \
+    --hash=sha256:c24037349665434f375645fa9d1f5304800cec574d0310f618490c871fd902b3 \
+    --hash=sha256:c300306673aa0f3ed5ed9372b21867690a17dba38c68c44b287437c362ce486b \
+    --hash=sha256:c56a1d43b2f9ee4786e4658c7903f05da35b923fb53c11025712562d5cc02753 \
+    --hash=sha256:c6379f35350b655fd817cd0d6cbeef7f265f3ae5fedb1caae2eb442bbeae9ab9 \
+    --hash=sha256:c802e1c2ed9f0c06a65bc4ed0189d000ada8049312cfeab6ca635e39c9608957 \
+    --hash=sha256:cb83f8a875b3d9b458cada4f880fa498646874ba4011dc974e071a0a84a1b033 \
+    --hash=sha256:cf120cce539453ae086eacc0130a324e7026113510efa83ab42ef3fcfccac7fb \
+    --hash=sha256:dd36439be765e2dde7660212b5275641edbc813e7b24668831a5c8ac91180656 \
+    --hash=sha256:dd5350b55f9fecddc51385463a4f67a5da829bc741e38cf689f38ec9023f54ab \
+    --hash=sha256:df5c7333167b9674aa8ae1d4008fa4bc17a313cc490b2cca27838bbdcc6bb15b \
+    --hash=sha256:e63601ad5cd8f860aa99d109889b5ac34de571c7ee902d6812d5d9ddcc77fa7d \
+    --hash=sha256:e92ce66cd919d18d14b3856906a61d3f6b6a8500e0794142338da644260595cd \
+    --hash=sha256:e99f5507401436fdcc85036a2e7dc2e28d962550afe1cbfc07c40e454256a859 \
+    --hash=sha256:ea2e2f6f801696ad7de8aec061044d6c8c0dd4037608c7cab38a9a4d316bfb11 \
+    --hash=sha256:eafa2c8658f4e560b098fe9fc54539f86528651f61849b22111a9b107d18910c \
+    --hash=sha256:ecd4ad8453ac17bc7ba3868371bffb46f628161ad0eefbd0a855d2c8c32dd81a \
+    --hash=sha256:ee70d08fd60c9565ba8190f41a46a54096afa0eeb8f76bd66f2c25d3b1b83005 \
+    --hash=sha256:eec1bb8cdbba2925bedc887bc0609a80e599c75b12d87ae42ac23fd199445654 \
+    --hash=sha256:ef0c1fe22171dd7c7c27147f2e9c3e86f8bdf473fed75f16b0c2e84a5030ce80 \
+    --hash=sha256:f2901429da1e645ce548bf9171784c0f74f0718c3f6150ce166be39e4dd66c3e \
+    --hash=sha256:f422a209d2455c56849442ae42f25dbaaba1c6c3f501d58761c619c7836642ec \
+    --hash=sha256:f65e5120863c2b266dbcc927b306c5b78e502c71edf3295dfcb9501ec96e5fc7 \
+    --hash=sha256:f7d4a670107d75dfe5ad080bed6c341d18c4442f9378c9f58e5851e86eb79965 \
+    --hash=sha256:f914c03e6a31deb632e2daa881fe198461f4d06e57ac3d0e05bbcab8eae01945 \
+    --hash=sha256:fb66442c2546446944437df74379e9cf9e9db353e61301d1a0e26482f43f0dd8
+mako==1.3.8 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:42f48953c7eb91332040ff567eb7eea69b22e7a4affbc5ba8e845e8f730f6627 \
+    --hash=sha256:577b97e414580d3e088d47c2dbbe9594aa7a5146ed2875d4dfa9075af2dd3cc8
+markdown-it-py==3.0.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:355216845c60bd96232cd8d8c40e8f9765cc86f46880e43a8fd22dc1a1a8cab1 \
+    --hash=sha256:e3f60a94fa066dc52ec76661e37c851cb232d92f9886b15cb560aaada2df8feb
+markupsafe==3.0.2 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:0bff5e0ae4ef2e1ae4fdf2dfd5b76c75e5c2fa4132d05fc1b0dabcd20c7e28c4 \
+    --hash=sha256:0f4ca02bea9a23221c0182836703cbf8930c5e9454bacce27e767509fa286a30 \
+    --hash=sha256:1225beacc926f536dc82e45f8a4d68502949dc67eea90eab715dea3a21c1b5f0 \
+    --hash=sha256:131a3c7689c85f5ad20f9f6fb1b866f402c445b220c19fe4308c0b147ccd2ad9 \
+    --hash=sha256:15ab75ef81add55874e7ab7055e9c397312385bd9ced94920f2802310c930396 \
+    --hash=sha256:1a9d3f5f0901fdec14d8d2f66ef7d035f2157240a433441719ac9a3fba440b13 \
+    --hash=sha256:1c99d261bd2d5f6b59325c92c73df481e05e57f19837bdca8413b9eac4bd8028 \
+    --hash=sha256:1e084f686b92e5b83186b07e8a17fc09e38fff551f3602b249881fec658d3eca \
+    --hash=sha256:2181e67807fc2fa785d0592dc2d6206c019b9502410671cc905d132a92866557 \
+    --hash=sha256:2cb8438c3cbb25e220c2ab33bb226559e7afb3baec11c4f218ffa7308603c832 \
+    --hash=sha256:3169b1eefae027567d1ce6ee7cae382c57fe26e82775f460f0b2778beaad66c0 \
+    --hash=sha256:3809ede931876f5b2ec92eef964286840ed3540dadf803dd570c3b7e13141a3b \
+    --hash=sha256:38a9ef736c01fccdd6600705b09dc574584b89bea478200c5fbf112a6b0d5579 \
+    --hash=sha256:3d79d162e7be8f996986c064d1c7c817f6df3a77fe3d6859f6f9e7be4b8c213a \
+    --hash=sha256:444dcda765c8a838eaae23112db52f1efaf750daddb2d9ca300bcae1039adc5c \
+    --hash=sha256:48032821bbdf20f5799ff537c7ac3d1fba0ba032cfc06194faffa8cda8b560ff \
+    --hash=sha256:4aa4e5faecf353ed117801a068ebab7b7e09ffb6e1d5e412dc852e0da018126c \
+    --hash=sha256:52305740fe773d09cffb16f8ed0427942901f00adedac82ec8b67752f58a1b22 \
+    --hash=sha256:569511d3b58c8791ab4c2e1285575265991e6d8f8700c7be0e88f86cb0672094 \
+    --hash=sha256:57cb5a3cf367aeb1d316576250f65edec5bb3be939e9247ae594b4bcbc317dfb \
+    --hash=sha256:5b02fb34468b6aaa40dfc198d813a641e3a63b98c2b05a16b9f80b7ec314185e \
+    --hash=sha256:6381026f158fdb7c72a168278597a5e3a5222e83ea18f543112b2662a9b699c5 \
+    --hash=sha256:6af100e168aa82a50e186c82875a5893c5597a0c1ccdb0d8b40240b1f28b969a \
+    --hash=sha256:6c89876f41da747c8d3677a2b540fb32ef5715f97b66eeb0c6b66f5e3ef6f59d \
+    --hash=sha256:6e296a513ca3d94054c2c881cc913116e90fd030ad1c656b3869762b754f5f8a \
+    --hash=sha256:70a87b411535ccad5ef2f1df5136506a10775d267e197e4cf531ced10537bd6b \
+    --hash=sha256:7e94c425039cde14257288fd61dcfb01963e658efbc0ff54f5306b06054700f8 \
+    --hash=sha256:846ade7b71e3536c4e56b386c2a47adf5741d2d8b94ec9dc3e92e5e1ee1e2225 \
+    --hash=sha256:88416bd1e65dcea10bc7569faacb2c20ce071dd1f87539ca2ab364bf6231393c \
+    --hash=sha256:88b49a3b9ff31e19998750c38e030fc7bb937398b1f78cfa599aaef92d693144 \
+    --hash=sha256:8c4e8c3ce11e1f92f6536ff07154f9d49677ebaaafc32db9db4620bc11ed480f \
+    --hash=sha256:8e06879fc22a25ca47312fbe7c8264eb0b662f6db27cb2d3bbbc74b1df4b9b87 \
+    --hash=sha256:9025b4018f3a1314059769c7bf15441064b2207cb3f065e6ea1e7359cb46db9d \
+    --hash=sha256:93335ca3812df2f366e80509ae119189886b0f3c2b81325d39efdb84a1e2ae93 \
+    --hash=sha256:9778bd8ab0a994ebf6f84c2b949e65736d5575320a17ae8984a77fab08db94cf \
+    --hash=sha256:9e2d922824181480953426608b81967de705c3cef4d1af983af849d7bd619158 \
+    --hash=sha256:a123e330ef0853c6e822384873bef7507557d8e4a082961e1defa947aa59ba84 \
+    --hash=sha256:a904af0a6162c73e3edcb969eeeb53a63ceeb5d8cf642fade7d39e7963a22ddb \
+    --hash=sha256:ad10d3ded218f1039f11a75f8091880239651b52e9bb592ca27de44eed242a48 \
+    --hash=sha256:b424c77b206d63d500bcb69fa55ed8d0e6a3774056bdc4839fc9298a7edca171 \
+    --hash=sha256:b5a6b3ada725cea8a5e634536b1b01c30bcdcd7f9c6fff4151548d5bf6b3a36c \
+    --hash=sha256:ba8062ed2cf21c07a9e295d5b8a2a5ce678b913b45fdf68c32d95d6c1291e0b6 \
+    --hash=sha256:ba9527cdd4c926ed0760bc301f6728ef34d841f405abf9d4f959c478421e4efd \
+    --hash=sha256:bbcb445fa71794da8f178f0f6d66789a28d7319071af7a496d4d507ed566270d \
+    --hash=sha256:bcf3e58998965654fdaff38e58584d8937aa3096ab5354d493c77d1fdd66d7a1 \
+    --hash=sha256:c0ef13eaeee5b615fb07c9a7dadb38eac06a0608b41570d8ade51c56539e509d \
+    --hash=sha256:cabc348d87e913db6ab4aa100f01b08f481097838bdddf7c7a84b7575b7309ca \
+    --hash=sha256:cdb82a876c47801bb54a690c5ae105a46b392ac6099881cdfb9f6e95e4014c6a \
+    --hash=sha256:cfad01eed2c2e0c01fd0ecd2ef42c492f7f93902e39a42fc9ee1692961443a29 \
+    --hash=sha256:d16a81a06776313e817c951135cf7340a3e91e8c1ff2fac444cfd75fffa04afe \
+    --hash=sha256:d8213e09c917a951de9d09ecee036d5c7d36cb6cb7dbaece4c71a60d79fb9798 \
+    --hash=sha256:e07c3764494e3776c602c1e78e298937c3315ccc9043ead7e685b7f2b8d47b3c \
+    --hash=sha256:e17c96c14e19278594aa4841ec148115f9c7615a47382ecb6b82bd8fea3ab0c8 \
+    --hash=sha256:e444a31f8db13eb18ada366ab3cf45fd4b31e4db1236a4448f68778c1d1a5a2f \
+    --hash=sha256:e6a2a455bd412959b57a172ce6328d2dd1f01cb2135efda2e4576e8a23fa3b0f \
+    --hash=sha256:eaa0a10b7f72326f1372a713e73c3f739b524b3af41feb43e4921cb529f5929a \
+    --hash=sha256:eb7972a85c54febfb25b5c4b4f3af4dcc731994c7da0d8a0b4a6eb0640e1d178 \
+    --hash=sha256:ee55d3edf80167e48ea11a923c7386f4669df67d7994554387f84e7d8b0a2bf0 \
+    --hash=sha256:f3818cb119498c0678015754eba762e0d61e5b52d34c8b13d770f0719f7b1d79 \
+    --hash=sha256:f8b3d067f2e40fe93e1ccdd6b2e1d16c43140e76f02fb1319a05cf2b79d99430 \
+    --hash=sha256:fcabf5ff6eea076f859677f5f0b6b5c1a51e70a376b0579e0eadef8db48c6b50
+maxminddb==2.6.3 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:01773fee182cc36f6d38c277936accf7c85b8f4c20d13bb630666f6b3f087ad8 \
+    --hash=sha256:01b143a38ae38c71ebc9028d67bbcb05c1b954e0f3a28c508eaee46833807903 \
+    --hash=sha256:0348c8dadef9493dbcd45f032ae271c7fd2216ed4bb4bab0aff371ffc522f871 \
+    --hash=sha256:0b140c1db0c218f485b033b51a086d98d57f55f4a4c2b1cb72fe6a5e1e57359a \
+    --hash=sha256:0d82fbddf3a88e6aa6181bd16bc08a6939d6353f97f143eeddec16bc5394e361 \
+    --hash=sha256:0dd55d2498d287b6cfd6b857deed9070e53c4b22a1acd69615e88dec92d95fb3 \
+    --hash=sha256:1bc2edcef76ce54d4df04f58aec98f4df0377f37aae2217587bfecd663ed5c66 \
+    --hash=sha256:1f0b78c40a12588e9e0ca0ffe5306b6dea028dcd21f2c120d1ceb328a3307a98 \
+    --hash=sha256:27ba5e22bd09fe324f0a4c5ed97e73c1c7c3ab7e3bae4e1e6fcaa15f175b9f5a \
+    --hash=sha256:2849357de35bfed0011ad1ff14a83c946273ae8c75a8867612d22f559df70e7d \
+    --hash=sha256:2b0fef825b23df047876d2056cbb69fb8d8e4b965f744f674be75e16fb86a52e \
+    --hash=sha256:2d25acb42ef8829e8e3491b6b3b4ced9dbb4eea6c4ec24afdc4028051e7b8803 \
+    --hash=sha256:3015afb00e6168837938dbe5fda40ace37442c22b292ccee27c1690fbf6078ed \
+    --hash=sha256:34943b4b724a35ef63ec40dcf894a100575d233b23b6cd4f8224017ea1195265 \
+    --hash=sha256:39254e173af7b0018c1508c2dd68ecda0c043032176140cfe917587e2d082f42 \
+    --hash=sha256:415dd5de87adc7640d3da2a8e7cf19a313c1a715cb84a3433f0e3b2d27665319 \
+    --hash=sha256:448d062e95242e3088df85fe7ed3f2890a9f4aea924bde336e9ff5d2337ca5fd \
+    --hash=sha256:45da7549c952f88da39c9f440cb3fa2abbd7472571597699467641af88512730 \
+    --hash=sha256:46096646c284835c8a580ec2ccbf0d6d5398191531fa543bb0437983c75cb7ba \
+    --hash=sha256:46bdc8dc528a2f64ef34182bf40084e05410344d40097c1e93554d732dfb0e15 \
+    --hash=sha256:47828bed767b82c219ba7aa65f0cb03d7f7443d7270259ce931e133a40691d34 \
+    --hash=sha256:489c5ae835198a228380b83cc537a5ffb1911f1579d7545baf097e4a8eefcd9a \
+    --hash=sha256:4b80275603bba6a95ed69d859d184dfa60bfd8e83cd4c8b722d7f7eaa9d95f8f \
+    --hash=sha256:4d470fc4f9c5ed8854a945dc5ea56b2f0644a5c3e5872d0e579d66a5a9238d7f \
+    --hash=sha256:4e0865069ef76b4f3eb862c042b107088171cbf43fea3dcaae0dd7253effe6e3 \
+    --hash=sha256:4e7e6d5f3c1aa6350303edab8f0dd471e616d69b5d47ff5ecbf2c7c82998b9c6 \
+    --hash=sha256:536a39fb917a44b1cd037da624e3d11d49898b5579dfc00c4d7103a057dc51ab \
+    --hash=sha256:5a1586260eac831d61c2665b26ca1ae3ad00caca57c8031346767f4527025311 \
+    --hash=sha256:6136dc8ad8c8f7e95a7d84174a990c1b47d5e641e3a3a8ae67d7bde625342dbb \
+    --hash=sha256:6480ca47db4d8d09296c268e8ff4e6f4c1d455773a67233c9f899dfa6af3e6c6 \
+    --hash=sha256:6887315de47f3a9840df19f498a4e68723c160c9448d276c3ef454531555778e \
+    --hash=sha256:6c977da32cc72784980da1928a79d38b3e9fe83faa9a40ea9bae598a6bf2f7bb \
+    --hash=sha256:6cc002099c9e1637309df772789a36db9a4601c4623dd1ace8145d057358c20b \
+    --hash=sha256:6eb23f842a72ab3096f9f9b1c292f4feb55a8d758567cb6d77637c2257a3187c \
+    --hash=sha256:77112cb1a2e381de42c443d1bf222c58b9da203183bb2008dd370c3d2a587a4e \
+    --hash=sha256:7c3209d7a4b2f50d4b28a1d886d95b19094cdc840208e69dbbc40cae2c1cc65b \
+    --hash=sha256:7c5d15a0546821a7e9104b71ca701c01462390d0a1bee5cad75f583cf26c400b \
+    --hash=sha256:7d6024d1e40244b5549c5e6063af109399a2f89503a24916b5139c4d0657f1c8 \
+    --hash=sha256:81340e52c743cdc3c0f4a9f45f9cf4e3c2ae87bf4bbb34613c5059a5b829eb65 \
+    --hash=sha256:83d2324788a31a28bbb38b0dbdece5826f56db4df6e1538cf6f4b72f6a3da66c \
+    --hash=sha256:85763c19246dce43044be58cb9119579c2efd0b85a7b79d865b741a698866488 \
+    --hash=sha256:8868580f34b483d5b74edd4270db417e211906d57fb13bbeeb11ea8d5cd01829 \
+    --hash=sha256:890dd845e371f67edef7b19a2866191d9fff85faf88f4b4c416a0aaa37204416 \
+    --hash=sha256:89afed255ac3652db7f91d8f6b278a4c490c47283ddbff5589c22cfdef4b8453 \
+    --hash=sha256:8ec674a2c2e4b47ab9f582460670a5c1d7725b1cbf16e6cbb94de1ae51ee9edf \
+    --hash=sha256:9580b2cd017185db07baacd9d629ca01f3fe6f236528681c88a0209725376e9c \
+    --hash=sha256:98258a295149aadf96ed8d667468722b248fe47bb991891ad01cfa8cb9e9684a \
+    --hash=sha256:9d913971187326e59be8a63068128b6439f6717b13c7c451e6d9e1723286d9ff \
+    --hash=sha256:a23c7c88f9df0727a3e56f2385ec19fb5f61bb46dcbebb6ddc5c948cf0b73b0a \
+    --hash=sha256:a38faf03db15cc285009c0ddaacd04071b84ebd8ff7d773f700c7def695a291c \
+    --hash=sha256:a59d72bf373c61da156fd43e2be6da802f68370a50a2205de84ee76916e05f9f \
+    --hash=sha256:a6597599cde3916730d69b023045e6c22ff1c076d9cad7fb63641d36d01e3e93 \
+    --hash=sha256:a6868438d1771c0bd0bbc95d84480c1ae04df72a85879e1ada42762250a00f59 \
+    --hash=sha256:a70d46337c9497a5b3329d9c7fa7f45be33243ffad04924b8f06ffe41a136279 \
+    --hash=sha256:a9ebd373a4ef69218bfbce93e9b97f583cfe681b28d4e32e0d64f76ded148fba \
+    --hash=sha256:aadb9d12e887a1f52e8214e539e5d78338356fad4ef2a51931f6f7dbe56c2228 \
+    --hash=sha256:acf46e20709a27d2b519669888e3f53a37bc4204b98a0c690664c48ff8cb1364 \
+    --hash=sha256:b09bb7bb98418a620b1ec1881d1594c02e715a68cdc925781de1e79b39cefe77 \
+    --hash=sha256:b29cea50b191784e2242227e0fac5bc985972b3849f97fe96c7f37fb7a7426d7 \
+    --hash=sha256:b4729936fedb4793d9162b92d6de63e267e388c8938e19e700120b6df6a6ae6c \
+    --hash=sha256:d2c3806baa7aa047aa1bac7419e7e353db435f88f09d51106a84dbacf645d254 \
+    --hash=sha256:d4bac2b7b7609bed8dcf6beef1ef4a1e411e9e39c311070ffc2ace80d6de6444 \
+    --hash=sha256:d69c5493c81f11bca90961b4dfa028c031aa8e7bb156653edf242a03dfc51561 \
+    --hash=sha256:d78a02b70ededb3ba7317c24266217d7b68283e3be04cad0c34ee446a0217ee0 \
+    --hash=sha256:da584edc3e4465f5417a48602ed7e2bee4f2a7a2b43fcf2c40728cfc9f9fd5aa \
+    --hash=sha256:daa20961ad0fb550038c02dbf76a04e1c1958a3b899fa14a7c412aed67380812 \
+    --hash=sha256:de8415538d778ae4f4bb40e2cee9581e2d5c860abdbdbba1458953f5b314a6b0 \
+    --hash=sha256:deebf098c79ce031069fec1d7202cba0e766b3f12adbb631d16223174994724a \
+    --hash=sha256:e28622fd7c4ccd298c3f630161d0801182eb38038ca01319693a70264de40b89 \
+    --hash=sha256:e38a449890a976365da1f2c927ac076838aa2715b464593080075a18ae4e0dc8 \
+    --hash=sha256:e441478922c2d311b8bc96f35d6e78306802774149fc20d07d96cc5c3b57dd02 \
+    --hash=sha256:e5a8cfe71db548aa9a520a3f7e92430b6b7900affadef3b0c83c530c759dd12f \
+    --hash=sha256:e867852037a8a26a24cfcf31b697dce63d488e1617af244c2895568d8f6c7a31 \
+    --hash=sha256:edab18a50470031fc8447bcd9285c9f5f952abef2b6db5579fe50665bdcda941 \
+    --hash=sha256:ef41bfe15692fe15e1799d600366a0faa3673a0d7d7dbe6a305ec3a5b6f07708 \
+    --hash=sha256:efd875d43c4207fb90e10d582e4394d8a04f7b55c83c4d6bc0593a7be450e04f \
+    --hash=sha256:f06e9c908a9270e882f0d23f041a9674680a7a110412b453f902d22323f86d38 \
+    --hash=sha256:f49eefddad781e088969188c606b7988a7da27592590f6c4cc2b64fd2a85ff28 \
+    --hash=sha256:fa36f1ca12fd3a37ad758afd0666457a749b2c4b16db0eb3f8c953f55ae6325d
+mdurl==0.1.2 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:84008a41e51615a49fc9966191ff91509e3c40b939176e643fd50a5c2196b8f8 \
+    --hash=sha256:bb413d29f5eea38f31dd4754dd7377d4465116fb207585f97bf925588687c1ba
+msgpack==1.0.8 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:00e073efcba9ea99db5acef3959efa45b52bc67b61b00823d2a1a6944bf45982 \
+    --hash=sha256:0726c282d188e204281ebd8de31724b7d749adebc086873a59efb8cf7ae27df3 \
+    --hash=sha256:0ceea77719d45c839fd73abcb190b8390412a890df2f83fb8cf49b2a4b5c2f40 \
+    --hash=sha256:114be227f5213ef8b215c22dde19532f5da9652e56e8ce969bf0a26d7c419fee \
+    --hash=sha256:13577ec9e247f8741c84d06b9ece5f654920d8365a4b636ce0e44f15e07ec693 \
+    --hash=sha256:1876b0b653a808fcd50123b953af170c535027bf1d053b59790eebb0aeb38950 \
+    --hash=sha256:1ab0bbcd4d1f7b6991ee7c753655b481c50084294218de69365f8f1970d4c151 \
+    --hash=sha256:1cce488457370ffd1f953846f82323cb6b2ad2190987cd4d70b2713e17268d24 \
+    --hash=sha256:26ee97a8261e6e35885c2ecd2fd4a6d38252246f94a2aec23665a4e66d066305 \
+    --hash=sha256:3528807cbbb7f315bb81959d5961855e7ba52aa60a3097151cb21956fbc7502b \
+    --hash=sha256:374a8e88ddab84b9ada695d255679fb99c53513c0a51778796fcf0944d6c789c \
+    --hash=sha256:376081f471a2ef24828b83a641a02c575d6103a3ad7fd7dade5486cad10ea659 \
+    --hash=sha256:3923a1778f7e5ef31865893fdca12a8d7dc03a44b33e2a5f3295416314c09f5d \
+    --hash=sha256:4916727e31c28be8beaf11cf117d6f6f188dcc36daae4e851fee88646f5b6b18 \
+    --hash=sha256:493c5c5e44b06d6c9268ce21b302c9ca055c1fd3484c25ba41d34476c76ee746 \
+    --hash=sha256:505fe3d03856ac7d215dbe005414bc28505d26f0c128906037e66d98c4e95868 \
+    --hash=sha256:5845fdf5e5d5b78a49b826fcdc0eb2e2aa7191980e3d2cfd2a30303a74f212e2 \
+    --hash=sha256:5c330eace3dd100bdb54b5653b966de7f51c26ec4a7d4e87132d9b4f738220ba \
+    --hash=sha256:5dbf059fb4b7c240c873c1245ee112505be27497e90f7c6591261c7d3c3a8228 \
+    --hash=sha256:5e390971d082dba073c05dbd56322427d3280b7cc8b53484c9377adfbae67dc2 \
+    --hash=sha256:5fbb160554e319f7b22ecf530a80a3ff496d38e8e07ae763b9e82fadfe96f273 \
+    --hash=sha256:64d0fcd436c5683fdd7c907eeae5e2cbb5eb872fafbc03a43609d7941840995c \
+    --hash=sha256:69284049d07fce531c17404fcba2bb1df472bc2dcdac642ae71a2d079d950653 \
+    --hash=sha256:6a0e76621f6e1f908ae52860bdcb58e1ca85231a9b0545e64509c931dd34275a \
+    --hash=sha256:73ee792784d48aa338bba28063e19a27e8d989344f34aad14ea6e1b9bd83f596 \
+    --hash=sha256:74398a4cf19de42e1498368c36eed45d9528f5fd0155241e82c4082b7e16cffd \
+    --hash=sha256:7938111ed1358f536daf311be244f34df7bf3cdedb3ed883787aca97778b28d8 \
+    --hash=sha256:82d92c773fbc6942a7a8b520d22c11cfc8fd83bba86116bfcf962c2f5c2ecdaa \
+    --hash=sha256:83b5c044f3eff2a6534768ccfd50425939e7a8b5cf9a7261c385de1e20dcfc85 \
+    --hash=sha256:8db8e423192303ed77cff4dce3a4b88dbfaf43979d280181558af5e2c3c71afc \
+    --hash=sha256:9517004e21664f2b5a5fd6333b0731b9cf0817403a941b393d89a2f1dc2bd836 \
+    --hash=sha256:95c02b0e27e706e48d0e5426d1710ca78e0f0628d6e89d5b5a5b91a5f12274f3 \
+    --hash=sha256:99881222f4a8c2f641f25703963a5cefb076adffd959e0558dc9f803a52d6a58 \
+    --hash=sha256:9ee32dcb8e531adae1f1ca568822e9b3a738369b3b686d1477cbc643c4a9c128 \
+    --hash=sha256:a22e47578b30a3e199ab067a4d43d790249b3c0587d9a771921f86250c8435db \
+    --hash=sha256:b5505774ea2a73a86ea176e8a9a4a7c8bf5d521050f0f6f8426afe798689243f \
+    --hash=sha256:bd739c9251d01e0279ce729e37b39d49a08c0420d3fee7f2a4968c0576678f77 \
+    --hash=sha256:d16a786905034e7e34098634b184a7d81f91d4c3d246edc6bd7aefb2fd8ea6ad \
+    --hash=sha256:d3420522057ebab1728b21ad473aa950026d07cb09da41103f8e597dfbfaeb13 \
+    --hash=sha256:d56fd9f1f1cdc8227d7b7918f55091349741904d9520c65f0139a9755952c9e8 \
+    --hash=sha256:d661dc4785affa9d0edfdd1e59ec056a58b3dbb9f196fa43587f3ddac654ac7b \
+    --hash=sha256:dfe1f0f0ed5785c187144c46a292b8c34c1295c01da12e10ccddfc16def4448a \
+    --hash=sha256:e1dd7839443592d00e96db831eddb4111a2a81a46b028f0facd60a09ebbdd543 \
+    --hash=sha256:e2872993e209f7ed04d963e4b4fbae72d034844ec66bc4ca403329db2074377b \
+    --hash=sha256:e2f879ab92ce502a1e65fce390eab619774dda6a6ff719718069ac94084098ce \
+    --hash=sha256:e3aa7e51d738e0ec0afbed661261513b38b3014754c9459508399baf14ae0c9d \
+    --hash=sha256:e532dbd6ddfe13946de050d7474e3f5fb6ec774fbb1a188aaf469b08cf04189a \
+    --hash=sha256:e6b7842518a63a9f17107eb176320960ec095a8ee3b4420b5f688e24bf50c53c \
+    --hash=sha256:e75753aeda0ddc4c28dce4c32ba2f6ec30b1b02f6c0b14e547841ba5b24f753f \
+    --hash=sha256:eadb9f826c138e6cf3c49d6f8de88225a3c0ab181a9b4ba792e006e5292d150e \
+    --hash=sha256:ed59dd52075f8fc91da6053b12e8c89e37aa043f8986efd89e61fae69dc1b011 \
+    --hash=sha256:ef254a06bcea461e65ff0373d8a0dd1ed3aa004af48839f002a0c994a6f72d04 \
+    --hash=sha256:f3709997b228685fe53e8c433e2df9f0cdb5f4542bd5114ed17ac3c0129b0480 \
+    --hash=sha256:f51bab98d52739c50c56658cc303f190785f9a2cd97b823357e7aeae54c8f68a \
+    --hash=sha256:f9904e24646570539a8950400602d66d2b2c492b9010ea7e965025cb71d0c86d \
+    --hash=sha256:f9af38a89b6a5c04b7d18c492c8ccf2aee7048aff1ce8437c4683bb5a1df893d
+msgspec==0.19.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:00e87ecfa9795ee5214861eab8326b0e75475c2e68a384002aa135ea2a27d909 \
+    --hash=sha256:047cfa8675eb3bad68722cfe95c60e7afabf84d1bd8938979dd2b92e9e4a9551 \
+    --hash=sha256:0553bbc77662e5708fe66aa75e7bd3e4b0f209709c48b299afd791d711a93c36 \
+    --hash=sha256:067f0de1c33cfa0b6a8206562efdf6be5985b988b53dd244a8e06f993f27c8c0 \
+    --hash=sha256:0684573a821be3c749912acf5848cce78af4298345cb2d7a8b8948a0a5a27cfe \
+    --hash=sha256:0f5c043ace7962ef188746e83b99faaa9e3e699ab857ca3f367b309c8e2c6b12 \
+    --hash=sha256:15c1e86fff77184c20a2932cd9742bf33fe23125fa3fcf332df9ad2f7d483044 \
+    --hash=sha256:19746b50be214a54239aab822964f2ac81e38b0055cca94808359d779338c10e \
+    --hash=sha256:2719647625320b60e2d8af06b35f5b12d4f4d281db30a15a1df22adb2295f633 \
+    --hash=sha256:317050bc0f7739cb30d257ff09152ca309bf5a369854bbf1e57dffc310c1f20f \
+    --hash=sha256:3b5541b2b3294e5ffabe31a09d604e23a88533ace36ac288fa32a420aa38d229 \
+    --hash=sha256:3be5c02e1fee57b54130316a08fe40cca53af92999a302a6054cd451700ea7db \
+    --hash=sha256:3c4ec642689da44618f68c90855a10edbc6ac3ff7c1d94395446c65a776e712a \
+    --hash=sha256:43bbb237feab761b815ed9df43b266114203f53596f9b6e6f00ebd79d178cdf2 \
+    --hash=sha256:45c8fb410670b3b7eb884d44a75589377c341ec1392b778311acdbfa55187716 \
+    --hash=sha256:4cfc033c02c3e0aec52b71710d7f84cb3ca5eb407ab2ad23d75631153fdb1f12 \
+    --hash=sha256:5f0f65f29b45e2816d8bded36e6b837a4bf5fb60ec4bc3c625fa2c6da4124537 \
+    --hash=sha256:604037e7cd475345848116e89c553aa9a233259733ab51986ac924ab1b976f8e \
+    --hash=sha256:60ef4bdb0ec8e4ad62e5a1f95230c08efb1f64f32e6e8dd2ced685bcc73858b5 \
+    --hash=sha256:695b832d0091edd86eeb535cd39e45f3919f48d997685f7ac31acb15e0a2ed90 \
+    --hash=sha256:6c7adf191e4bd3be0e9231c3b6dc20cf1199ada2af523885efc2ed218eafd011 \
+    --hash=sha256:70eaef4934b87193a27d802534dc466778ad8d536e296ae2f9334e182ac27b6c \
+    --hash=sha256:757b501fa57e24896cf40a831442b19a864f56d253679f34f260dcb002524a6c \
+    --hash=sha256:82b2c42c1b9ebc89e822e7e13bbe9d17ede0c23c187469fdd9505afd5a481314 \
+    --hash=sha256:a5bc1472223a643f5ffb5bf46ccdede7f9795078194f14edd69e3aab7020d327 \
+    --hash=sha256:aa77046904db764b0462036bc63ef71f02b75b8f72e9c9dd4c447d6da1ed8f8e \
+    --hash=sha256:ac7f7c377c122b649f7545810c6cd1b47586e3aa3059126ce3516ac7ccc6a6a9 \
+    --hash=sha256:ca06aa08e39bf57e39a258e1996474f84d0dd8130d486c00bec26d797b8c5446 \
+    --hash=sha256:d8dd848ee7ca7c8153462557655570156c2be94e79acec3561cf379581343259 \
+    --hash=sha256:d911c442571605e17658ca2b416fd8579c5050ac9adc5e00c2cb3126c97f73bc \
+    --hash=sha256:e695dad6897896e9384cf5e2687d9ae9feaef50e802f93602d35458e20d1fb19 \
+    --hash=sha256:e78f46ff39a427e10b4a61614a2777ad69559cc8d603a7c05681f5a595ea98f7 \
+    --hash=sha256:f04cad4385e20be7c7176bb8ae3dca54a08e9756cfc97bcdb4f18560c3042063 \
+    --hash=sha256:f12d30dd6266557aaaf0aa0f9580a9a8fbeadfa83699c487713e355ec5f0bd86 \
+    --hash=sha256:f98bd8962ad549c27d63845b50af3f53ec468b6318400c9f1adfe8b092d7b62f \
+    --hash=sha256:fe2c4bf29bf4e89790b3117470dea2c20b59932772483082c468b990d45fb947
+msoffcrypto-tool==5.4.2 ; python_version >= "3.10" and python_version < "4.0" and (platform_python_implementation != "PyPy" or platform_system != "Windows" and platform_system != "Darwin") \
+    --hash=sha256:274fe2181702d1e5a107ec1b68a4c9fea997a44972ae1cc9ae0cb4f6a50fef0e \
+    --hash=sha256:44b545adba0407564a0cc3d6dde6ca36b7c0fdf352b85bca51618fa1d4817370
+netstruct==1.1.2 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:70b6a5c73f5bbc7ab57b019369642adfb34dd8af41b948c400ce95f952b7df9a
+networkx==3.4.2 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:307c3669428c5362aab27c8a1260aa8f47c4e91d3891f48be0141738d8d053e1 \
+    --hash=sha256:df5d4365b724cf81b8c6a7312509d0c22386097011ad1abe274afd5e9d3bbc5f
+olefile==0.47 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:543c7da2a7adadf21214938bb79c83ea12b473a4b6ee4ad4bf854e7715e13d1f \
+    --hash=sha256:599383381a0bf3dfbd932ca0ca6515acd174ed48870cbf7fee123d698c192c1c
+oletools==0.60.2 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:72ad8bd748fd0c4e7b5b4733af770d11543ebb2bf2697455f99f975fcd50cc96 \
+    --hash=sha256:ad452099f4695ffd8855113f453348200d195ee9fa341a09e197d66ee7e0b2c3
+orjson==3.10.15 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:035fb83585e0f15e076759b6fedaf0abb460d1765b6a36f48018a52858443514 \
+    --hash=sha256:05ca7fe452a2e9d8d9d706a2984c95b9c2ebc5db417ce0b7a49b91d50642a23e \
+    --hash=sha256:0a4f27ea5617828e6b58922fdbec67b0aa4bb844e2d363b9244c47fa2180e665 \
+    --hash=sha256:13242f12d295e83c2955756a574ddd6741c81e5b99f2bef8ed8d53e47a01e4b7 \
+    --hash=sha256:17085a6aa91e1cd70ca8533989a18b5433e15d29c574582f76f821737c8d5806 \
+    --hash=sha256:1e6d33efab6b71d67f22bf2962895d3dc6f82a6273a965fab762e64fa90dc399 \
+    --hash=sha256:208beedfa807c922da4e81061dafa9c8489c6328934ca2a562efa707e049e561 \
+    --hash=sha256:295c70f9dc154307777ba30fe29ff15c1bcc9dfc5c48632f37d20a607e9ba85a \
+    --hash=sha256:305b38b2b8f8083cc3d618927d7f424349afce5975b316d33075ef0f73576b60 \
+    --hash=sha256:33aedc3d903378e257047fee506f11e0833146ca3e57a1a1fb0ddb789876c1e1 \
+    --hash=sha256:3614ea508d522a621384c1d6639016a5a2e4f027f3e4a1c93a51867615d28829 \
+    --hash=sha256:3766ac4702f8f795ff3fa067968e806b4344af257011858cc3d6d8721588b53f \
+    --hash=sha256:3a63bb41559b05360ded9132032239e47983a39b151af1201f07ec9370715c82 \
+    --hash=sha256:43e17289ffdbbac8f39243916c893d2ae41a2ea1a9cbb060a56a4d75286351ae \
+    --hash=sha256:552c883d03ad185f720d0c09583ebde257e41b9521b74ff40e08b7dec4559c04 \
+    --hash=sha256:5dd9ef1639878cc3efffed349543cbf9372bdbd79f478615a1c633fe4e4180d1 \
+    --hash=sha256:5e8afd6200e12771467a1a44e5ad780614b86abb4b11862ec54861a82d677746 \
+    --hash=sha256:616e3e8d438d02e4854f70bfdc03a6bcdb697358dbaa6bcd19cbe24d24ece1f8 \
+    --hash=sha256:63309e3ff924c62404923c80b9e2048c1f74ba4b615e7584584389ada50ed428 \
+    --hash=sha256:6875210307d36c94873f553786a808af2788e362bd0cf4c8e66d976791e7b528 \
+    --hash=sha256:6fd9bc64421e9fe9bd88039e7ce8e58d4fead67ca88e3a4014b143cec7684fd4 \
+    --hash=sha256:7066b74f9f259849629e0d04db6609db4cf5b973248f455ba5d3bd58a4daaa5b \
+    --hash=sha256:73cb85490aa6bf98abd20607ab5c8324c0acb48d6da7863a51be48505646c814 \
+    --hash=sha256:763dadac05e4e9d2bc14938a45a2d0560549561287d41c465d3c58aec818b164 \
+    --hash=sha256:7723ad949a0ea502df656948ddd8b392780a5beaa4c3b5f97e525191b102fff0 \
+    --hash=sha256:781d54657063f361e89714293c095f506c533582ee40a426cb6489c48a637b81 \
+    --hash=sha256:7946922ada8f3e0b7b958cc3eb22cfcf6c0df83d1fe5521b4a100103e3fa84c8 \
+    --hash=sha256:7a1c73dcc8fadbd7c55802d9aa093b36878d34a3b3222c41052ce6b0fc65f8e8 \
+    --hash=sha256:7c203f6f969210128af3acae0ef9ea6aab9782939f45f6fe02d05958fe761ef9 \
+    --hash=sha256:7c2c79fa308e6edb0ffab0a31fd75a7841bf2a79a20ef08a3c6e3b26814c8ca8 \
+    --hash=sha256:7c864a80a2d467d7786274fce0e4f93ef2a7ca4ff31f7fc5634225aaa4e9e98c \
+    --hash=sha256:88dc3f65a026bd3175eb157fea994fca6ac7c4c8579fc5a86fc2114ad05705b7 \
+    --hash=sha256:8918719572d662e18b8af66aef699d8c21072e54b6c82a3f8f6404c1f5ccd5e0 \
+    --hash=sha256:9d11c0714fc85bfcf36ada1179400862da3288fc785c30e8297844c867d7505a \
+    --hash=sha256:9e590a0477b23ecd5b0ac865b1b907b01b3c5535f5e8a8f6ab0e503efb896334 \
+    --hash=sha256:9e992fd5cfb8b9f00bfad2fd7a05a4299db2bbe92e6440d9dd2fab27655b3182 \
+    --hash=sha256:a2f708c62d026fb5340788ba94a55c23df4e1869fec74be455e0b2f5363b8507 \
+    --hash=sha256:a330b9b4734f09a623f74a7490db713695e13b67c959713b78369f26b3dee6bf \
+    --hash=sha256:a61a4622b7ff861f019974f73d8165be1bd9a0855e1cad18ee167acacabeb061 \
+    --hash=sha256:a6be38bd103d2fd9bdfa31c2720b23b5d47c6796bcb1d1b598e3924441b4298d \
+    --hash=sha256:abc7abecdbf67a173ef1316036ebbf54ce400ef2300b4e26a7b843bd446c2480 \
+    --hash=sha256:acd271247691574416b3228db667b84775c497b245fa275c6ab90dc1ffbbd2b3 \
+    --hash=sha256:b0482b21d0462eddd67e7fce10b89e0b6ac56570424662b685a0d6fccf581e13 \
+    --hash=sha256:b299383825eafe642cbab34be762ccff9fd3408d72726a6b2a4506d410a71ab3 \
+    --hash=sha256:b342567e5465bd99faa559507fe45e33fc76b9fb868a63f1642c6bc0735ad02a \
+    --hash=sha256:b48f59114fe318f33bbaee8ebeda696d8ccc94c9e90bc27dbe72153094e26f41 \
+    --hash=sha256:b7155eb1623347f0f22c38c9abdd738b287e39b9982e1da227503387b81b34ca \
+    --hash=sha256:bae0e6ec2b7ba6895198cd981b7cca95d1487d0147c8ed751e5632ad16f031a6 \
+    --hash=sha256:bb00b7bfbdf5d34a13180e4805d76b4567025da19a197645ca746fc2fb536586 \
+    --hash=sha256:bb5cc3527036ae3d98b65e37b7986a918955f85332c1ee07f9d3f82f3a6899b5 \
+    --hash=sha256:c03cd6eea1bd3b949d0d007c8d57049aa2b39bd49f58b4b2af571a5d3833d890 \
+    --hash=sha256:c25774c9e88a3e0013d7d1a6c8056926b607a61edd423b50eb5c88fd7f2823ae \
+    --hash=sha256:c33be3795e299f565681d69852ac8c1bc5c84863c0b0030b2b3468843be90388 \
+    --hash=sha256:c4cc83960ab79a4031f3119cc4b1a1c627a3dc09df125b27c4201dff2af7eaa6 \
+    --hash=sha256:cf45e0214c593660339ef63e875f32ddd5aa3b4adc15e662cdb80dc49e194f8e \
+    --hash=sha256:d13b7fe322d75bf84464b075eafd8e7dd9eae05649aa2a5354cfa32f43c59f17 \
+    --hash=sha256:d433bf32a363823863a96561a555227c18a522a8217a6f9400f00ddc70139ae2 \
+    --hash=sha256:d569c1c462912acdd119ccbf719cf7102ea2c67dd03b99edcb1a3048651ac96b \
+    --hash=sha256:d5ac11b659fd798228a7adba3e37c010e0152b78b1982897020a8e019a94882e \
+    --hash=sha256:da03392674f59a95d03fa5fb9fe3a160b0511ad84b7a3914699ea5a1b3a38da2 \
+    --hash=sha256:da9a18c500f19273e9e104cca8c1f0b40a6470bcccfc33afcc088045d0bf5ea6 \
+    --hash=sha256:dadba0e7b6594216c214ef7894c4bd5f08d7c0135f4dd0145600be4fbcc16767 \
+    --hash=sha256:dba5a1e85d554e3897fa9fe6fbcff2ed32d55008973ec9a2b992bd9a65d2352d \
+    --hash=sha256:dd0099ae6aed5eb1fc84c9eb72b95505a3df4267e6962eb93cdd5af03be71c98 \
+    --hash=sha256:ddbeef2481d895ab8be5185f2432c334d6dec1f5d1933a9c83014d188e102cef \
+    --hash=sha256:e117eb299a35f2634e25ed120c37c641398826c2f5a3d3cc39f5993b96171b9e \
+    --hash=sha256:e4759b109c37f635aa5c5cc93a1b26927bfde24b254bcc0e1149a9fada253d2d \
+    --hash=sha256:e78c211d0074e783d824ce7bb85bf459f93a233eb67a5b5003498232ddfb0e8a \
+    --hash=sha256:eca81f83b1b8c07449e1d6ff7074e82e3fd6777e588f1a6632127f286a968825 \
+    --hash=sha256:eea80037b9fae5339b214f59308ef0589fc06dc870578b7cce6d71eb2096764c \
+    --hash=sha256:ef5b87e7aa9545ddadd2309efe6824bd3dd64ac101c15dae0f2f597911d46eaa \
+    --hash=sha256:efcf6c735c3d22ef60c4aa27a5238f1a477df85e9b15f2142f9d669beb2d13fd \
+    --hash=sha256:f71eae9651465dff70aa80db92586ad5b92df46a9373ee55252109bb6b703307 \
+    --hash=sha256:f93ce145b2db1252dd86af37d4165b6faa83072b46e3995ecc95d4b2301b725a \
+    --hash=sha256:f95fb363d79366af56c3f26b71df40b9a583b07bbaaf5b317407c4d58497852e \
+    --hash=sha256:f9875f5fea7492da8ec2444839dcc439b0ef298978f311103d0b7dfd775898ab \
+    --hash=sha256:fd56a26a04f6ba5fb2045b0acc487a63162a958ed837648c5781e1fe3316cfbf \
+    --hash=sha256:ff4f6edb1578960ed628a3b998fa54d78d9bb3e2eb2cfc5c2a09732431c678d0 \
+    --hash=sha256:ffe19f3e8d68111e8644d4f4e267a069ca427926855582ff01fc012496d19969
+packaging==24.2 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:09abb1bccd265c01f4a3aa3f7a7db064b36514d2cba19a2f694fe6150451a759 \
+    --hash=sha256:c228a6dc5e932d346bc5739379109d49e8853dd8223571c7c5b55260edc0b97f
+paramiko==3.5.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:1fedf06b085359051cd7d0d270cebe19e755a8a921cc2ddbfa647fb0cd7d68f9 \
+    --hash=sha256:ad11e540da4f55cedda52931f1a3f812a8238a7af7f62a60de538cd80bb28124
+pcodedmp==1.2.6 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:025f8c809a126f45a082ffa820893e6a8d990d9d7ddb68694b5a9f0a6dbcd955 \
+    --hash=sha256:4441f7c0ab4cbda27bd4668db3b14f36261d86e5059ce06c0828602cbe1c4278
+pebble==5.1.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:530a398299ecd3a4ed1baf2e4b8045d8280b1e665560b0b409f8d8e58db60111 \
+    --hash=sha256:5c30376f1827b21ecec4126ff90e7f22ad5501cac1ff2b32c86ff2601681f932
+peepdf-3==5.0.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:1c6dbb873be22633535bb7a0edfcc005781837869bb5d5b99c9a36591d1e9e95 \
+    --hash=sha256:2c9220c39c1ffc7d1db4268874d5c68329e9f9f331643b0bb1e6e84798439bd8
+pefile==2024.8.26 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:3ff6c5d8b43e8c37bb6e6dd5085658d658a7a0bdcd20b6a07b1fcfc1c4e9d632 \
+    --hash=sha256:76f8b485dcd3b1bb8166f1128d395fa3d87af26360c2358fb75b80019b957c6f
+pillow==11.1.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:015c6e863faa4779251436db398ae75051469f7c903b043a48f078e437656f83 \
+    --hash=sha256:0a2f91f8a8b367e7a57c6e91cd25af510168091fb89ec5146003e424e1558a96 \
+    --hash=sha256:11633d58b6ee5733bde153a8dafd25e505ea3d32e261accd388827ee987baf65 \
+    --hash=sha256:2062ffb1d36544d42fcaa277b069c88b01bb7298f4efa06731a7fd6cc290b81a \
+    --hash=sha256:31eba6bbdd27dde97b0174ddf0297d7a9c3a507a8a1480e1e60ef914fe23d352 \
+    --hash=sha256:3362c6ca227e65c54bf71a5f88b3d4565ff1bcbc63ae72c34b07bbb1cc59a43f \
+    --hash=sha256:368da70808b36d73b4b390a8ffac11069f8a5c85f29eff1f1b01bcf3ef5b2a20 \
+    --hash=sha256:36ba10b9cb413e7c7dfa3e189aba252deee0602c86c309799da5a74009ac7a1c \
+    --hash=sha256:3764d53e09cdedd91bee65c2527815d315c6b90d7b8b79759cc48d7bf5d4f114 \
+    --hash=sha256:3a5fe20a7b66e8135d7fd617b13272626a28278d0e578c98720d9ba4b2439d49 \
+    --hash=sha256:3cdcdb0b896e981678eee140d882b70092dac83ac1cdf6b3a60e2216a73f2b91 \
+    --hash=sha256:4637b88343166249fe8aa94e7c4a62a180c4b3898283bb5d3d2fd5fe10d8e4e0 \
+    --hash=sha256:4db853948ce4e718f2fc775b75c37ba2efb6aaea41a1a5fc57f0af59eee774b2 \
+    --hash=sha256:4dd43a78897793f60766563969442020e90eb7847463eca901e41ba186a7d4a5 \
+    --hash=sha256:54251ef02a2309b5eec99d151ebf5c9904b77976c8abdcbce7891ed22df53884 \
+    --hash=sha256:54ce1c9a16a9561b6d6d8cb30089ab1e5eb66918cb47d457bd996ef34182922e \
+    --hash=sha256:593c5fd6be85da83656b93ffcccc2312d2d149d251e98588b14fbc288fd8909c \
+    --hash=sha256:5bb94705aea800051a743aa4874bb1397d4695fb0583ba5e425ee0328757f196 \
+    --hash=sha256:67cd427c68926108778a9005f2a04adbd5e67c442ed21d95389fe1d595458756 \
+    --hash=sha256:70ca5ef3b3b1c4a0812b5c63c57c23b63e53bc38e758b37a951e5bc466449861 \
+    --hash=sha256:73ddde795ee9b06257dac5ad42fcb07f3b9b813f8c1f7f870f402f4dc54b5269 \
+    --hash=sha256:758e9d4ef15d3560214cddbc97b8ef3ef86ce04d62ddac17ad39ba87e89bd3b1 \
+    --hash=sha256:7d33d2fae0e8b170b6a6c57400e077412240f6f5bb2a342cf1ee512a787942bb \
+    --hash=sha256:7fdadc077553621911f27ce206ffcbec7d3f8d7b50e0da39f10997e8e2bb7f6a \
+    --hash=sha256:8000376f139d4d38d6851eb149b321a52bb8893a88dae8ee7d95840431977081 \
+    --hash=sha256:837060a8599b8f5d402e97197d4924f05a2e0d68756998345c829c33186217b1 \
+    --hash=sha256:89dbdb3e6e9594d512780a5a1c42801879628b38e3efc7038094430844e271d8 \
+    --hash=sha256:8c730dc3a83e5ac137fbc92dfcfe1511ce3b2b5d7578315b63dbbb76f7f51d90 \
+    --hash=sha256:8e275ee4cb11c262bd108ab2081f750db2a1c0b8c12c1897f27b160c8bd57bbc \
+    --hash=sha256:9044b5e4f7083f209c4e35aa5dd54b1dd5b112b108648f5c902ad586d4f945c5 \
+    --hash=sha256:93a18841d09bcdd774dcdc308e4537e1f867b3dec059c131fde0327899734aa1 \
+    --hash=sha256:9409c080586d1f683df3f184f20e36fb647f2e0bc3988094d4fd8c9f4eb1b3b3 \
+    --hash=sha256:96f82000e12f23e4f29346e42702b6ed9a2f2fea34a740dd5ffffcc8c539eb35 \
+    --hash=sha256:9aa9aeddeed452b2f616ff5507459e7bab436916ccb10961c4a382cd3e03f47f \
+    --hash=sha256:9ee85f0696a17dd28fbcfceb59f9510aa71934b483d1f5601d1030c3c8304f3c \
+    --hash=sha256:a07dba04c5e22824816b2615ad7a7484432d7f540e6fa86af60d2de57b0fcee2 \
+    --hash=sha256:a3cd561ded2cf2bbae44d4605837221b987c216cff94f49dfeed63488bb228d2 \
+    --hash=sha256:a697cd8ba0383bba3d2d3ada02b34ed268cb548b369943cd349007730c92bddf \
+    --hash=sha256:a76da0a31da6fcae4210aa94fd779c65c75786bc9af06289cd1c184451ef7a65 \
+    --hash=sha256:a85b653980faad27e88b141348707ceeef8a1186f75ecc600c395dcac19f385b \
+    --hash=sha256:a8d65b38173085f24bc07f8b6c505cbb7418009fa1a1fcb111b1f4961814a442 \
+    --hash=sha256:aa8dd43daa836b9a8128dbe7d923423e5ad86f50a7a14dc688194b7be5c0dea2 \
+    --hash=sha256:ab8a209b8485d3db694fa97a896d96dd6533d63c22829043fd9de627060beade \
+    --hash=sha256:abc56501c3fd148d60659aae0af6ddc149660469082859fa7b066a298bde9482 \
+    --hash=sha256:ad5db5781c774ab9a9b2c4302bbf0c1014960a0a7be63278d13ae6fdf88126fe \
+    --hash=sha256:ae98e14432d458fc3de11a77ccb3ae65ddce70f730e7c76140653048c71bfcbc \
+    --hash=sha256:b20be51b37a75cc54c2c55def3fa2c65bb94ba859dde241cd0a4fd302de5ae0a \
+    --hash=sha256:b523466b1a31d0dcef7c5be1f20b942919b62fd6e9a9be199d035509cbefc0ec \
+    --hash=sha256:b5d658fbd9f0d6eea113aea286b21d3cd4d3fd978157cbf2447a6035916506d3 \
+    --hash=sha256:b6123aa4a59d75f06e9dd3dac5bf8bc9aa383121bb3dd9a7a612e05eabc9961a \
+    --hash=sha256:bd165131fd51697e22421d0e467997ad31621b74bfc0b75956608cb2906dda07 \
+    --hash=sha256:bf902d7413c82a1bfa08b06a070876132a5ae6b2388e2712aab3a7cbc02205c6 \
+    --hash=sha256:c12fc111ef090845de2bb15009372175d76ac99969bdf31e2ce9b42e4b8cd88f \
+    --hash=sha256:c1eec9d950b6fe688edee07138993e54ee4ae634c51443cfb7c1e7613322718e \
+    --hash=sha256:c640e5a06869c75994624551f45e5506e4256562ead981cce820d5ab39ae2192 \
+    --hash=sha256:cc1331b6d5a6e144aeb5e626f4375f5b7ae9934ba620c0ac6b3e43d5e683a0f0 \
+    --hash=sha256:cfd5cd998c2e36a862d0e27b2df63237e67273f2fc78f47445b14e73a810e7e6 \
+    --hash=sha256:d3d8da4a631471dfaf94c10c85f5277b1f8e42ac42bade1ac67da4b4a7359b73 \
+    --hash=sha256:d44ff19eea13ae4acdaaab0179fa68c0c6f2f45d66a4d8ec1eda7d6cecbcc15f \
+    --hash=sha256:dd0052e9db3474df30433f83a71b9b23bd9e4ef1de13d92df21a52c0303b8ab6 \
+    --hash=sha256:dd0e081319328928531df7a0e63621caf67652c8464303fd102141b785ef9547 \
+    --hash=sha256:dda60aa465b861324e65a78c9f5cf0f4bc713e4309f83bc387be158b077963d9 \
+    --hash=sha256:e06695e0326d05b06833b40b7ef477e475d0b1ba3a6d27da1bb48c23209bf457 \
+    --hash=sha256:e1abe69aca89514737465752b4bcaf8016de61b3be1397a8fc260ba33321b3a8 \
+    --hash=sha256:e267b0ed063341f3e60acd25c05200df4193e15a4a5807075cd71225a2386e26 \
+    --hash=sha256:e5449ca63da169a2e6068dd0e2fcc8d91f9558aba89ff6d02121ca8ab11e79e5 \
+    --hash=sha256:e63e4e5081de46517099dc30abe418122f54531a6ae2ebc8680bcd7096860eab \
+    --hash=sha256:f189805c8be5ca5add39e6f899e6ce2ed824e65fb45f3c28cb2841911da19070 \
+    --hash=sha256:f7955ecf5609dee9442cbface754f2c6e541d9e6eda87fad7f7a989b0bdb9d71 \
+    --hash=sha256:f86d3a7a9af5d826744fabf4afd15b9dfef44fe69a98541f666f66fbb8d3fef9 \
+    --hash=sha256:fbd43429d0d7ed6533b25fc993861b8fd512c42d04514a0dd6337fb3ccf22761
+prettytable==3.14.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:61d5c68f04a94acc73c7aac64f0f380f5bed4d2959d59edc6e4cbb7a0e7b55c4 \
+    --hash=sha256:b804b8d51db23959b96b329094debdbbdf10c8c3aa75958c5988cfd7f78501dd
+protobuf==5.29.3 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:0a18ed4a24198528f2333802eb075e59dea9d679ab7a6c5efb017a59004d849f \
+    --hash=sha256:0eb32bfa5219fc8d4111803e9a690658aa2e6366384fd0851064b963b6d1f2a7 \
+    --hash=sha256:3ea51771449e1035f26069c4c7fd51fba990d07bc55ba80701c78f886bf9c888 \
+    --hash=sha256:5da0f41edaf117bde316404bad1a486cb4ededf8e4a54891296f648e8e076620 \
+    --hash=sha256:6ce8cc3389a20693bfde6c6562e03474c40851b44975c9b2bf6df7d8c4f864da \
+    --hash=sha256:84a57163a0ccef3f96e4b6a20516cedcf5bb3a95a657131c5c3ac62200d23252 \
+    --hash=sha256:a4fa6f80816a9a0678429e84973f2f98cbc218cca434abe8db2ad0bffc98503a \
+    --hash=sha256:a8434404bbf139aa9e1300dbf989667a83d42ddda9153d8ab76e0d5dcaca484e \
+    --hash=sha256:b89c115d877892a512f79a8114564fb435943b59067615894c3b13cd3e1fa107 \
+    --hash=sha256:c027e08a08be10b67c06bf2370b99c811c466398c357e615ca88c91c07f0910f \
+    --hash=sha256:daaf63f70f25e8689c072cfad4334ca0ac1d1e05a92fc15c54eb9cf23c3efd84
+psutil==6.1.1 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:018aeae2af92d943fdf1da6b58665124897cfc94faa2ca92098838f83e1b1bca \
+    --hash=sha256:0bdd4eab935276290ad3cb718e9809412895ca6b5b334f5a9111ee6d9aff9377 \
+    --hash=sha256:1924e659d6c19c647e763e78670a05dbb7feaf44a0e9c94bf9e14dfc6ba50468 \
+    --hash=sha256:33431e84fee02bc84ea36d9e2c4a6d395d479c9dd9bba2376c1f6ee8f3a4e0b3 \
+    --hash=sha256:384636b1a64b47814437d1173be1427a7c83681b17a450bfc309a1953e329603 \
+    --hash=sha256:6d4281f5bbca041e2292be3380ec56a9413b790579b8e593b1784499d0005dac \
+    --hash=sha256:8be07491f6ebe1a693f17d4f11e69d0dc1811fa082736500f649f79df7735303 \
+    --hash=sha256:8df0178ba8a9e5bc84fed9cfa61d54601b371fbec5c8eebad27575f1e105c0d4 \
+    --hash=sha256:97f7cb9921fbec4904f522d972f0c0e1f4fabbdd4e0287813b21215074a0f160 \
+    --hash=sha256:9ccc4316f24409159897799b83004cb1e24f9819b0dcf9c0b68bdcb6cefee6a8 \
+    --hash=sha256:b6e06c20c05fe95a3d7302d74e7097756d4ba1247975ad6905441ae1b5b66003 \
+    --hash=sha256:c777eb75bb33c47377c9af68f30e9f11bc78e0f07fbf907be4a5d70b2fe5f030 \
+    --hash=sha256:ca9609c77ea3b8481ab005da74ed894035936223422dc591d6772b147421f777 \
+    --hash=sha256:cf8496728c18f2d0b45198f06895be52f36611711746b7f30c464b422b50e2f5 \
+    --hash=sha256:eaa912e0b11848c4d9279a93d7e2783df352b082f40111e078388701fd479e53 \
+    --hash=sha256:f35cfccb065fff93529d2afb4a2e89e363fe63ca1e4a5da22b603a85833c2649 \
+    --hash=sha256:fc0ed7fe2231a444fc219b9c42d0376e0a9a1a72f16c5cfa0f68d19f1a0663e8
+psycopg2-binary==2.9.10 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:04392983d0bb89a8717772a193cfaac58871321e3ec69514e1c4e0d4957b5aff \
+    --hash=sha256:056470c3dc57904bbf63d6f534988bafc4e970ffd50f6271fc4ee7daad9498a5 \
+    --hash=sha256:0ea8e3d0ae83564f2fc554955d327fa081d065c8ca5cc6d2abb643e2c9c1200f \
+    --hash=sha256:155e69561d54d02b3c3209545fb08938e27889ff5a10c19de8d23eb5a41be8a5 \
+    --hash=sha256:18c5ee682b9c6dd3696dad6e54cc7ff3a1a9020df6a5c0f861ef8bfd338c3ca0 \
+    --hash=sha256:19721ac03892001ee8fdd11507e6a2e01f4e37014def96379411ca99d78aeb2c \
+    --hash=sha256:1a6784f0ce3fec4edc64e985865c17778514325074adf5ad8f80636cd029ef7c \
+    --hash=sha256:2286791ececda3a723d1910441c793be44625d86d1a4e79942751197f4d30341 \
+    --hash=sha256:230eeae2d71594103cd5b93fd29d1ace6420d0b86f4778739cb1a5a32f607d1f \
+    --hash=sha256:245159e7ab20a71d989da00f280ca57da7641fa2cdcf71749c193cea540a74f7 \
+    --hash=sha256:26540d4a9a4e2b096f1ff9cce51253d0504dca5a85872c7f7be23be5a53eb18d \
+    --hash=sha256:270934a475a0e4b6925b5f804e3809dd5f90f8613621d062848dd82f9cd62007 \
+    --hash=sha256:27422aa5f11fbcd9b18da48373eb67081243662f9b46e6fd07c3eb46e4535142 \
+    --hash=sha256:2ad26b467a405c798aaa1458ba09d7e2b6e5f96b1ce0ac15d82fd9f95dc38a92 \
+    --hash=sha256:2b3d2491d4d78b6b14f76881905c7a8a8abcf974aad4a8a0b065273a0ed7a2cb \
+    --hash=sha256:2ce3e21dc3437b1d960521eca599d57408a695a0d3c26797ea0f72e834c7ffe5 \
+    --hash=sha256:30e34c4e97964805f715206c7b789d54a78b70f3ff19fbe590104b71c45600e5 \
+    --hash=sha256:3216ccf953b3f267691c90c6fe742e45d890d8272326b4a8b20850a03d05b7b8 \
+    --hash=sha256:32581b3020c72d7a421009ee1c6bf4a131ef5f0a968fab2e2de0c9d2bb4577f1 \
+    --hash=sha256:35958ec9e46432d9076286dda67942ed6d968b9c3a6a2fd62b48939d1d78bf68 \
+    --hash=sha256:3abb691ff9e57d4a93355f60d4f4c1dd2d68326c968e7db17ea96df3c023ef73 \
+    --hash=sha256:3c18f74eb4386bf35e92ab2354a12c17e5eb4d9798e4c0ad3a00783eae7cd9f1 \
+    --hash=sha256:3c4745a90b78e51d9ba06e2088a2fe0c693ae19cc8cb051ccda44e8df8a6eb53 \
+    --hash=sha256:3c4ded1a24b20021ebe677b7b08ad10bf09aac197d6943bfe6fec70ac4e4690d \
+    --hash=sha256:3e9c76f0ac6f92ecfc79516a8034a544926430f7b080ec5a0537bca389ee0906 \
+    --hash=sha256:48b338f08d93e7be4ab2b5f1dbe69dc5e9ef07170fe1f86514422076d9c010d0 \
+    --hash=sha256:4b3df0e6990aa98acda57d983942eff13d824135fe2250e6522edaa782a06de2 \
+    --hash=sha256:512d29bb12608891e349af6a0cccedce51677725a921c07dba6342beaf576f9a \
+    --hash=sha256:5a507320c58903967ef7384355a4da7ff3f28132d679aeb23572753cbf2ec10b \
+    --hash=sha256:5c370b1e4975df846b0277b4deba86419ca77dbc25047f535b0bb03d1a544d44 \
+    --hash=sha256:6b269105e59ac96aba877c1707c600ae55711d9dcd3fc4b5012e4af68e30c648 \
+    --hash=sha256:6d4fa1079cab9018f4d0bd2db307beaa612b0d13ba73b5c6304b9fe2fb441ff7 \
+    --hash=sha256:6dc08420625b5a20b53551c50deae6e231e6371194fa0651dbe0fb206452ae1f \
+    --hash=sha256:73aa0e31fa4bb82578f3a6c74a73c273367727de397a7a0f07bd83cbea696baa \
+    --hash=sha256:7559bce4b505762d737172556a4e6ea8a9998ecac1e39b5233465093e8cee697 \
+    --hash=sha256:79625966e176dc97ddabc142351e0409e28acf4660b88d1cf6adb876d20c490d \
+    --hash=sha256:7a813c8bdbaaaab1f078014b9b0b13f5de757e2b5d9be6403639b298a04d218b \
+    --hash=sha256:7b2c956c028ea5de47ff3a8d6b3cc3330ab45cf0b7c3da35a2d6ff8420896526 \
+    --hash=sha256:7f4152f8f76d2023aac16285576a9ecd2b11a9895373a1f10fd9db54b3ff06b4 \
+    --hash=sha256:7f5d859928e635fa3ce3477704acee0f667b3a3d3e4bb109f2b18d4005f38287 \
+    --hash=sha256:851485a42dbb0bdc1edcdabdb8557c09c9655dfa2ca0460ff210522e073e319e \
+    --hash=sha256:8608c078134f0b3cbd9f89b34bd60a943b23fd33cc5f065e8d5f840061bd0673 \
+    --hash=sha256:880845dfe1f85d9d5f7c412efea7a08946a46894537e4e5d091732eb1d34d9a0 \
+    --hash=sha256:8aabf1c1a04584c168984ac678a668094d831f152859d06e055288fa515e4d30 \
+    --hash=sha256:8aecc5e80c63f7459a1a2ab2c64df952051df196294d9f739933a9f6687e86b3 \
+    --hash=sha256:8cd9b4f2cfab88ed4a9106192de509464b75a906462fb846b936eabe45c2063e \
+    --hash=sha256:8de718c0e1c4b982a54b41779667242bc630b2197948405b7bd8ce16bcecac92 \
+    --hash=sha256:9440fa522a79356aaa482aa4ba500b65f28e5d0e63b801abf6aa152a29bd842a \
+    --hash=sha256:b5f86c56eeb91dc3135b3fd8a95dc7ae14c538a2f3ad77a19645cf55bab1799c \
+    --hash=sha256:b73d6d7f0ccdad7bc43e6d34273f70d587ef62f824d7261c4ae9b8b1b6af90e8 \
+    --hash=sha256:bb89f0a835bcfc1d42ccd5f41f04870c1b936d8507c6df12b7737febc40f0909 \
+    --hash=sha256:c3cc28a6fd5a4a26224007712e79b81dbaee2ffb90ff406256158ec4d7b52b47 \
+    --hash=sha256:ce5ab4bf46a211a8e924d307c1b1fcda82368586a19d0a24f8ae166f5c784864 \
+    --hash=sha256:d00924255d7fc916ef66e4bf22f354a940c67179ad3fd7067d7a0a9c84d2fbfc \
+    --hash=sha256:d7cd730dfa7c36dbe8724426bf5612798734bff2d3c3857f36f2733f5bfc7c00 \
+    --hash=sha256:e217ce4d37667df0bc1c397fdcd8de5e81018ef305aed9415c3b093faaeb10fb \
+    --hash=sha256:e3923c1d9870c49a2d44f795df0c889a22380d36ef92440ff618ec315757e539 \
+    --hash=sha256:e5720a5d25e3b99cd0dc5c8a440570469ff82659bb09431c1439b92caf184d3b \
+    --hash=sha256:e8b58f0a96e7a1e341fc894f62c1177a7c83febebb5ff9123b579418fdc8a481 \
+    --hash=sha256:e984839e75e0b60cfe75e351db53d6db750b00de45644c5d1f7ee5d1f34a1ce5 \
+    --hash=sha256:eb09aa7f9cecb45027683bb55aebaaf45a0df8bf6de68801a6afdc7947bb09d4 \
+    --hash=sha256:ec8a77f521a17506a24a5f626cb2aee7850f9b69a0afe704586f63a464f3cd64 \
+    --hash=sha256:ecced182e935529727401b24d76634a357c71c9275b356efafd8a2a91ec07392 \
+    --hash=sha256:ee0e8c683a7ff25d23b55b11161c2663d4b099770f6085ff0a20d4505778d6b4 \
+    --hash=sha256:f0c2d907a1e102526dd2986df638343388b94c33860ff3bbe1384130828714b1 \
+    --hash=sha256:f758ed67cab30b9a8d2833609513ce4d3bd027641673d4ebc9c067e4d208eec1 \
+    --hash=sha256:f8157bed2f51db683f31306aa497311b560f2265998122abe1dce6428bd86567 \
+    --hash=sha256:ffe8ed017e4ed70f68b7b371d84b7d4a790368db9203dfc2d222febd3a9c8863
+pyasn1-modules==0.3.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:5bd01446b736eb9d31512a30d46c1ac3395d676c6f3cafa4c03eb54b9925631c \
+    --hash=sha256:d3ccd6ed470d9ffbc716be08bd90efbd44d0734bc9303818f7336070984a162d
+pyasn1==0.5.1 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:4439847c58d40b1d0a573d07e3856e95333f1976294494c325775aeca506eb58 \
+    --hash=sha256:6d391a96e59b23130a5cfa74d6fd7f388dbbe26cc8f1edf39fdddf08d9d6676c
+pycparser==2.22 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:491c8be9c040f5390f5bf44a5b07752bd07f56edf992381b05c701439eec10f6 \
+    --hash=sha256:c3702b6d3dd8c7abc1afa565d7e63d53a1d0bd86cdc24edd75470f4de499cfcc
+pycryptodomex==3.21.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:0df2608682db8279a9ebbaf05a72f62a321433522ed0e499bc486a6889b96bf3 \
+    --hash=sha256:103c133d6cd832ae7266feb0a65b69e3a5e4dbbd6f3a3ae3211a557fd653f516 \
+    --hash=sha256:1233443f19d278c72c4daae749872a4af3787a813e05c3561c73ab0c153c7b0f \
+    --hash=sha256:222d0bd05381dd25c32dd6065c071ebf084212ab79bab4599ba9e6a3e0009e6c \
+    --hash=sha256:27e84eeff24250ffec32722334749ac2a57a5fd60332cd6a0680090e7c42877e \
+    --hash=sha256:34325b84c8b380675fd2320d0649cdcbc9cf1e0d1526edbe8fce43ed858cdc7e \
+    --hash=sha256:365aa5a66d52fd1f9e0530ea97f392c48c409c2f01ff8b9a39c73ed6f527d36c \
+    --hash=sha256:3efddfc50ac0ca143364042324046800c126a1d63816d532f2e19e6f2d8c0c31 \
+    --hash=sha256:46eb1f0c8d309da63a2064c28de54e5e614ad17b7e2f88df0faef58ce192fc7b \
+    --hash=sha256:5241bdb53bcf32a9568770a6584774b1b8109342bd033398e4ff2da052123832 \
+    --hash=sha256:52e23a0a6e61691134aa8c8beba89de420602541afaae70f66e16060fdcd677e \
+    --hash=sha256:56435c7124dd0ce0c8bdd99c52e5d183a0ca7fdcd06c5d5509423843f487dd0b \
+    --hash=sha256:5823d03e904ea3e53aebd6799d6b8ec63b7675b5d2f4a4bd5e3adcb512d03b37 \
+    --hash=sha256:65d275e3f866cf6fe891411be9c1454fb58809ccc5de6d3770654c47197acd65 \
+    --hash=sha256:770d630a5c46605ec83393feaa73a9635a60e55b112e1fb0c3cea84c2897aa0a \
+    --hash=sha256:77ac2ea80bcb4b4e1c6a596734c775a1615d23e31794967416afc14852a639d3 \
+    --hash=sha256:7a1058e6dfe827f4209c5cae466e67610bcd0d66f2f037465daa2a29d92d952b \
+    --hash=sha256:8a9d8342cf22b74a746e3c6c9453cb0cfbb55943410e3a2619bd9164b48dc9d9 \
+    --hash=sha256:8ef436cdeea794015263853311f84c1ff0341b98fc7908e8a70595a68cefd971 \
+    --hash=sha256:9aa0cf13a1a1128b3e964dc667e5fe5c6235f7d7cfb0277213f0e2a783837cc2 \
+    --hash=sha256:9ba09a5b407cbb3bcb325221e346a140605714b5e880741dc9a1e9ecf1688d42 \
+    --hash=sha256:a192fb46c95489beba9c3f002ed7d93979423d1b2a53eab8771dbb1339eb3ddd \
+    --hash=sha256:a3d77919e6ff56d89aada1bd009b727b874d464cb0e2e3f00a49f7d2e709d76e \
+    --hash=sha256:b0e9765f93fe4890f39875e6c90c96cb341767833cfa767f41b490b506fa9ec0 \
+    --hash=sha256:bbb07f88e277162b8bfca7134b34f18b400d84eac7375ce73117f865e3c80d4c \
+    --hash=sha256:c07e64867a54f7e93186a55bec08a18b7302e7bee1b02fd84c6089ec215e723a \
+    --hash=sha256:cc7e111e66c274b0df5f4efa679eb31e23c7545d702333dfd2df10ab02c2a2ce \
+    --hash=sha256:da76ebf6650323eae7236b54b1b1f0e57c16483be6e3c1ebf901d4ada47563b6 \
+    --hash=sha256:dbeb84a399373df84a69e0919c1d733b89e049752426041deeb30d68e9867822 \
+    --hash=sha256:e859e53d983b7fe18cb8f1b0e29d991a5c93be2c8dd25db7db1fe3bd3617f6f9 \
+    --hash=sha256:ef046b2e6c425647971b51424f0f88d8a2e0a2a63d3531817968c42078895c00 \
+    --hash=sha256:feaecdce4e5c0045e7a287de0c4351284391fe170729aa9182f6bd967631b3a8
+pydantic-core==2.27.2 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:00bad2484fa6bda1e216e7345a798bd37c68fb2d97558edd584942aa41b7d278 \
+    --hash=sha256:0296abcb83a797db256b773f45773da397da75a08f5fcaef41f2044adec05f50 \
+    --hash=sha256:03d0f86ea3184a12f41a2d23f7ccb79cdb5a18e06993f8a45baa8dfec746f0e9 \
+    --hash=sha256:044a50963a614ecfae59bb1eaf7ea7efc4bc62f49ed594e18fa1e5d953c40e9f \
+    --hash=sha256:05e3a55d124407fffba0dd6b0c0cd056d10e983ceb4e5dbd10dda135c31071d6 \
+    --hash=sha256:08e125dbdc505fa69ca7d9c499639ab6407cfa909214d500897d02afb816e7cc \
+    --hash=sha256:097830ed52fd9e427942ff3b9bc17fab52913b2f50f2880dc4a5611446606a54 \
+    --hash=sha256:0d1e85068e818c73e048fe28cfc769040bb1f475524f4745a5dc621f75ac7630 \
+    --hash=sha256:0d75070718e369e452075a6017fbf187f788e17ed67a3abd47fa934d001863d9 \
+    --hash=sha256:14d4a5c49d2f009d62a2a7140d3064f686d17a5d1a268bc641954ba181880236 \
+    --hash=sha256:172fce187655fece0c90d90a678424b013f8fbb0ca8b036ac266749c09438cb7 \
+    --hash=sha256:18a101c168e4e092ab40dbc2503bdc0f62010e95d292b27827871dc85450d7ee \
+    --hash=sha256:1a4207639fb02ec2dbb76227d7c751a20b1a6b4bc52850568e52260cae64ca3b \
+    --hash=sha256:1c1fd185014191700554795c99b347d64f2bb637966c4cfc16998a0ca700d048 \
+    --hash=sha256:1e2cb691ed9834cd6a8be61228471d0a503731abfb42f82458ff27be7b2186fc \
+    --hash=sha256:1ebaf1d0481914d004a573394f4be3a7616334be70261007e47c2a6fe7e50130 \
+    --hash=sha256:220f892729375e2d736b97d0e51466252ad84c51857d4d15f5e9692f9ef12be4 \
+    --hash=sha256:251136cdad0cb722e93732cb45ca5299fb56e1344a833640bf93b2803f8d1bfd \
+    --hash=sha256:26f0d68d4b235a2bae0c3fc585c585b4ecc51382db0e3ba402a22cbc440915e4 \
+    --hash=sha256:26f32e0adf166a84d0cb63be85c562ca8a6fa8de28e5f0d92250c6b7e9e2aff7 \
+    --hash=sha256:280d219beebb0752699480fe8f1dc61ab6615c2046d76b7ab7ee38858de0a4e7 \
+    --hash=sha256:28ccb213807e037460326424ceb8b5245acb88f32f3d2777427476e1b32c48c4 \
+    --hash=sha256:2bf14caea37e91198329b828eae1618c068dfb8ef17bb33287a7ad4b61ac314e \
+    --hash=sha256:2d367ca20b2f14095a8f4fa1210f5a7b78b8a20009ecced6b12818f455b1e9fa \
+    --hash=sha256:30c5f68ded0c36466acede341551106821043e9afaad516adfb6e8fa80a4e6a6 \
+    --hash=sha256:337b443af21d488716f8d0b6164de833e788aa6bd7e3a39c005febc1284f4962 \
+    --hash=sha256:3911ac9284cd8a1792d3cb26a2da18f3ca26c6908cc434a18f730dc0db7bfa3b \
+    --hash=sha256:3d591580c34f4d731592f0e9fe40f9cc1b430d297eecc70b962e93c5c668f15f \
+    --hash=sha256:3de3ce3c9ddc8bbd88f6e0e304dea0e66d843ec9de1b0042b0911c1663ffd474 \
+    --hash=sha256:3de9961f2a346257caf0aa508a4da705467f53778e9ef6fe744c038119737ef5 \
+    --hash=sha256:40d02e7d45c9f8af700f3452f329ead92da4c5f4317ca9b896de7ce7199ea459 \
+    --hash=sha256:42c5f762659e47fdb7b16956c71598292f60a03aa92f8b6351504359dbdba6cf \
+    --hash=sha256:47956ae78b6422cbd46f772f1746799cbb862de838fd8d1fbd34a82e05b0983a \
+    --hash=sha256:491a2b73db93fab69731eaee494f320faa4e093dbed776be1a829c2eb222c34c \
+    --hash=sha256:4c9775e339e42e79ec99c441d9730fccf07414af63eac2f0e48e08fd38a64d76 \
+    --hash=sha256:4e0b4220ba5b40d727c7f879eac379b822eee5d8fff418e9d3381ee45b3b0362 \
+    --hash=sha256:50a68f3e3819077be2c98110c1f9dcb3817e93f267ba80a2c05bb4f8799e2ff4 \
+    --hash=sha256:519f29f5213271eeeeb3093f662ba2fd512b91c5f188f3bb7b27bc5973816934 \
+    --hash=sha256:521eb9b7f036c9b6187f0b47318ab0d7ca14bd87f776240b90b21c1f4f149320 \
+    --hash=sha256:57762139821c31847cfb2df63c12f725788bd9f04bc2fb392790959b8f70f118 \
+    --hash=sha256:5e4f4bb20d75e9325cc9696c6802657b58bc1dbbe3022f32cc2b2b632c3fbb96 \
+    --hash=sha256:5e68c4446fe0810e959cdff46ab0a41ce2f2c86d227d96dc3847af0ba7def306 \
+    --hash=sha256:669e193c1c576a58f132e3158f9dfa9662969edb1a250c54d8fa52590045f046 \
+    --hash=sha256:688d3fd9fcb71f41c4c015c023d12a79d1c4c0732ec9eb35d96e3388a120dcf3 \
+    --hash=sha256:6fb4aadc0b9a0c063206846d603b92030eb6f03069151a625667f982887153e2 \
+    --hash=sha256:7041c36f5680c6e0f08d922aed302e98b3745d97fe1589db0a3eebf6624523af \
+    --hash=sha256:71b24c7d61131bb83df10cc7e687433609963a944ccf45190cfc21e0887b08c9 \
+    --hash=sha256:77d1bca19b0f7021b3a982e6f903dcd5b2b06076def36a652e3907f596e29f67 \
+    --hash=sha256:7969e133a6f183be60e9f6f56bfae753585680f3b7307a8e555a948d443cc05a \
+    --hash=sha256:7a66efda2387de898c8f38c0cf7f14fca0b51a8ef0b24bfea5849f1b3c95af27 \
+    --hash=sha256:7d0c8399fcc1848491f00e0314bd59fb34a9c008761bcb422a057670c3f65e35 \
+    --hash=sha256:7d14bd329640e63852364c306f4d23eb744e0f8193148d4044dd3dacdaacbd8b \
+    --hash=sha256:7e17b560be3c98a8e3aa66ce828bdebb9e9ac6ad5466fba92eb74c4c95cb1151 \
+    --hash=sha256:8083d4e875ebe0b864ffef72a4304827015cff328a1be6e22cc850753bfb122b \
+    --hash=sha256:82f91663004eb8ed30ff478d77c4d1179b3563df6cdb15c0817cd1cdaf34d154 \
+    --hash=sha256:82f986faf4e644ffc189a7f1aafc86e46ef70372bb153e7001e8afccc6e54133 \
+    --hash=sha256:83097677b8e3bd7eaa6775720ec8e0405f1575015a463285a92bfdfe254529ef \
+    --hash=sha256:85210c4d99a0114f5a9481b44560d7d1e35e32cc5634c656bc48e590b669b145 \
+    --hash=sha256:8c19d1ea0673cd13cc2f872f6c9ab42acc4e4f492a7ca9d3795ce2b112dd7e15 \
+    --hash=sha256:8d9b3388db186ba0c099a6d20f0604a44eabdeef1777ddd94786cdae158729e4 \
+    --hash=sha256:8e10c99ef58cfdf2a66fc15d66b16c4a04f62bca39db589ae8cba08bc55331bc \
+    --hash=sha256:953101387ecf2f5652883208769a79e48db18c6df442568a0b5ccd8c2723abee \
+    --hash=sha256:9c3ed807c7b91de05e63930188f19e921d1fe90de6b4f5cd43ee7fcc3525cb8c \
+    --hash=sha256:9e0c8cfefa0ef83b4da9588448b6d8d2a2bf1a53c3f1ae5fca39eb3061e2f0b0 \
+    --hash=sha256:9fdbe7629b996647b99c01b37f11170a57ae675375b14b8c13b8518b8320ced5 \
+    --hash=sha256:a0fcd29cd6b4e74fe8ddd2c90330fd8edf2e30cb52acda47f06dd615ae72da57 \
+    --hash=sha256:ac4dbfd1691affb8f48c2c13241a2e3b60ff23247cbcf981759c768b6633cf8b \
+    --hash=sha256:b0cb791f5b45307caae8810c2023a184c74605ec3bcbb67d13846c28ff731ff8 \
+    --hash=sha256:ba5dd002f88b78a4215ed2f8ddbdf85e8513382820ba15ad5ad8955ce0ca19a1 \
+    --hash=sha256:bca101c00bff0adb45a833f8451b9105d9df18accb8743b08107d7ada14bd7da \
+    --hash=sha256:bd8086fa684c4775c27f03f062cbb9eaa6e17f064307e86b21b9e0abc9c0f02e \
+    --hash=sha256:bec317a27290e2537f922639cafd54990551725fc844249e64c523301d0822fc \
+    --hash=sha256:c10eb4f1659290b523af58fa7cffb452a61ad6ae5613404519aee4bfbf1df993 \
+    --hash=sha256:c33939a82924da9ed65dab5a65d427205a73181d8098e79b6b426bdf8ad4e656 \
+    --hash=sha256:c61709a844acc6bf0b7dce7daae75195a10aac96a596ea1b776996414791ede4 \
+    --hash=sha256:c70c26d2c99f78b125a3459f8afe1aed4d9687c24fd677c6a4436bc042e50d6c \
+    --hash=sha256:c817e2b40aba42bac6f457498dacabc568c3b7a986fc9ba7c8d9d260b71485fb \
+    --hash=sha256:cabb9bcb7e0d97f74df8646f34fc76fbf793b7f6dc2438517d7a9e50eee4f14d \
+    --hash=sha256:cc3f1a99a4f4f9dd1de4fe0312c114e740b5ddead65bb4102884b384c15d8bc9 \
+    --hash=sha256:cca63613e90d001b9f2f9a9ceb276c308bfa2a43fafb75c8031c4f66039e8c6e \
+    --hash=sha256:ce8918cbebc8da707ba805b7fd0b382816858728ae7fe19a942080c24e5b7cd1 \
+    --hash=sha256:d2088237af596f0a524d3afc39ab3b036e8adb054ee57cbb1dcf8e09da5b29cc \
+    --hash=sha256:d262606bf386a5ba0b0af3b97f37c83d7011439e3dc1a9298f21efb292e42f1a \
+    --hash=sha256:d2d63f1215638d28221f664596b1ccb3944f6e25dd18cd3b86b0a4c408d5ebb9 \
+    --hash=sha256:d3e8d504bdd3f10835468f29008d72fc8359d95c9c415ce6e767203db6127506 \
+    --hash=sha256:d4041c0b966a84b4ae7a09832eb691a35aec90910cd2dbe7a208de59be77965b \
+    --hash=sha256:d716e2e30c6f140d7560ef1538953a5cd1a87264c737643d481f2779fc247fe1 \
+    --hash=sha256:d81d2068e1c1228a565af076598f9e7451712700b673de8f502f0334f281387d \
+    --hash=sha256:d9640b0059ff4f14d1f37321b94061c6db164fbe49b334b31643e0528d100d99 \
+    --hash=sha256:de3cd1899e2c279b140adde9357c4495ed9d47131b4a4eaff9052f23398076b3 \
+    --hash=sha256:e0fd26b16394ead34a424eecf8a31a1f5137094cabe84a1bcb10fa6ba39d3d31 \
+    --hash=sha256:e2bb4d3e5873c37bb3dd58714d4cd0b0e6238cebc4177ac8fe878f8b3aa8e74c \
+    --hash=sha256:eb026e5a4c1fee05726072337ff51d1efb6f59090b7da90d30ea58625b1ffb39 \
+    --hash=sha256:eda3f5c2a021bbc5d976107bb302e0131351c2ba54343f8a496dc8783d3d3a6a \
+    --hash=sha256:ef592d4bad47296fb11f96cd7dc898b92e795032b4894dfb4076cfccd43a9308 \
+    --hash=sha256:f141ee28a0ad2123b6611b6ceff018039df17f32ada8b534e6aa039545a3efb2 \
+    --hash=sha256:f66d89ba397d92f840f8654756196d93804278457b5fbede59598a1f9f90b228 \
+    --hash=sha256:f6f8e111843bbb0dee4cb6594cdc73e79b3329b526037ec242a3e49012495b3b \
+    --hash=sha256:fa8e459d4954f608fa26116118bb67f56b93b209c39b008277ace29937453dc9 \
+    --hash=sha256:fd1aea04935a508f62e0d0ef1f5ae968774a32afc306fb8545e06f5ff5cdf3ad
+pydantic==2.10.6 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:427d664bf0b8a2b34ff5dd0f5a18df00591adcee7198fbd71981054cef37b584 \
+    --hash=sha256:ca5daa827cce33de7a42be142548b0096bf05a7e7b365aebfa5f8eeec7128236
+pydeep2==0.5.1 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:0fedc1c9660cb5d0b73ad0b5f1dbffe16990e6721cbfc6454571a4b9882d0ea4 \
+    --hash=sha256:199d05d8b4b7544509a2ba4802ead4b41dfe7859e0ecea9d9be9e41939f11660 \
+    --hash=sha256:2283893e25826b547dd1e5c71a010e86ddfd7270e2f2b8c90973c1d7984c7eb7 \
+    --hash=sha256:44ce447e3253a69d3393f3cc53e3a87a48fe3ff9861793736a7bc218a1b95d77 \
+    --hash=sha256:4bf00de2fe1918e4d698fe8195a5c0a3a0c3050a2e3e15583748cfd20b427153 \
+    --hash=sha256:7809a1d6640bdbee68f075d53229d05229e11b4711f232728dd540f68e6483a4 \
+    --hash=sha256:7ca68f7d63e2ef510d410d20b223e8e97df41707fb50c4c526b6dd1d8698d9e6 \
+    --hash=sha256:a13fca9be89a9fa8d92a4f49d7b9191eef94555f8ddf030fb2be4c8c15ad618c \
+    --hash=sha256:add24d7aa0386b285fd3e99632719714efabeb13d7b03a015b7c64d1f588f815 \
+    --hash=sha256:c2063cbb053e5ce684cc45fff3e72c063b26aa85e41e6435cab0c658ad9e3e1e \
+    --hash=sha256:c65dc910d782fa2bc97e1b28a78d77c4bada037d14b63e3e75a1fa5918d642c5 \
+    --hash=sha256:d1cb4757db97ac15ddf034c21cd6bab984f841586b6d53984e63c9a7803b2cd4 \
+    --hash=sha256:e14b310b820d895a7354be7fd025de874892df249cbfb3ad8a524459e1511fd8 \
+    --hash=sha256:ef00ca5681a2c4ad5dc744db5f8ae5406d3f13121b38d84cc58dfb8fce4c3dc2 \
+    --hash=sha256:f248e3161deb53d46a9368a7c164e36d83004faf2f11625d47a5cf23a6bdd2cb
+pyelftools==0.31 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:c774416b10310156879443b81187d182d8d9ee499660380e645918b50bc88f99 \
+    --hash=sha256:f52de7b3c7e8c64c8abc04a79a1cf37ac5fb0b8a49809827130b858944840607
+pygal==2.4.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:27abab93cbc31e21f3c6bdecc05bda6cd3570cbdbd8297b7caa6904051b50d72 \
+    --hash=sha256:9204f05380b02a8a32f9bf99d310b51aa2a932cba5b369f7a4dc3705f0a4ce83
+pygments==2.19.1 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:61c16d2a8576dc0649d9f39e089b5f02bcd27fba10d8fb4dcc28173f7a45151f \
+    --hash=sha256:9ea1544ad55cecf4b8242fab6dd35a93bbce657034b0611ee383099054ab6d8c
+pyguacamole==0.11 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:7f8d8652ce2e86473d72a50e0c9d8a8e0c3c74e373c6b926ca4c851774cae608 \
+    --hash=sha256:d6facde097a1b1a3048b20fb2ff88b024744ceb2865fb912525da7ebb7779695
+pymongo==4.11 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:0197fe47e31bee488e82e7ab73e6a351a191bbd6e25cf4a380622e4b1ffcd143 \
+    --hash=sha256:06e82968ea031aebc18820898b102efed1ea8dc21b51eff2a81dc9ba4191fa6b \
+    --hash=sha256:17966e98d0350b578a337f053cc541458c296236d4b5b4b8adb76f5e82644fb8 \
+    --hash=sha256:17d4b787afed3163e5faa147b028d8ec7996a5388328499588c5c5858f26ab8a \
+    --hash=sha256:1971039a8e3aab139e0382b26a9670cd34f43c5301da267360b9a640b637d09b \
+    --hash=sha256:212f14a882659a45db472f0bc0fdf83c16fad4e7e4d4257187797779c461320e \
+    --hash=sha256:21b9969e155c4b16a160fbe90c390a07ca7514479af6c3811b1d15ead26e10ba \
+    --hash=sha256:254aa90fafead13aca8dbcfbc407e2f6f7c125fce726925bd96adc74b6226f9e \
+    --hash=sha256:314648ec4d5eaa755233343d6d110348371988257de35f5a84667b709262deab \
+    --hash=sha256:38f777f5e43f3acd651a79aaf95abf29e8e7f85429a12ce32c4b7f2f877b2200 \
+    --hash=sha256:488e3440f5bedcbf494fd02c0a433cb5be7e55ba44dc72202813e1007a865e6a \
+    --hash=sha256:4c0ab91c06bf79dd3d3fd5f2a53fe22db8036084ddcfaacd80e83828b6eb4f25 \
+    --hash=sha256:5837ee73ffa4a943360320d7b9b917da2752a4cb536e23a6eaca418c1c64f60a \
+    --hash=sha256:5c7e5e500cc408f7f2aa38a4a6ed96d78a4c4cce3bcc6f1a55113f0b9d7823dd \
+    --hash=sha256:64ad12ae8d79f18ec30d807b9b9b9802c30427c39599d8b1833bc00e63f0e4bb \
+    --hash=sha256:74f02b7dbb3b15c2e48c7bb28941f6198dc73ced09683738180a9fdbfc0983b2 \
+    --hash=sha256:7ac81987985275abeb53f5faa5c4a7f7890df9368c0f730fe37460a6301d94d7 \
+    --hash=sha256:7cf9d18444259d86cd7028ac428f4fe7fbdefa3450575126ad2ee4447db0f52f \
+    --hash=sha256:8436f90f26379c167d47b61ac78c48224af98f3136ece380b74158cbef2ad6a7 \
+    --hash=sha256:85cfc99af2ae0fb8699e15b1f3479018216eb75d80f0082973a876ecfdf1022e \
+    --hash=sha256:8e5a56a508612c64906d5375ebee413cee2fc432c09abd9cb4d9e23ac8bcdd3a \
+    --hash=sha256:981ae0caa245bedf9af3af9159ae71b05444e35dd61a0250235b5c58dcd69178 \
+    --hash=sha256:9a04f49d6f1fa4f4e6a98ef76b4881b4a9c7decd8a90ee5c9aeff087662e2d8a \
+    --hash=sha256:a308ad2eeaee370b3b4154a82840c8f8f9b18ccc76b71812323d243a7bda98a2 \
+    --hash=sha256:ae7f636010ce54885f1ea19c37ea2cb744d976ce689361a776fd0e991d020b81 \
+    --hash=sha256:b4878e92ae255a05756399a4e2b428f0fd3529561eacd9f4781a70ad5311397e \
+    --hash=sha256:b7246f2060ba03dcc25ade803bc6a3c39f1cc7db93297875edd251ca8cf5cac7 \
+    --hash=sha256:b7af60e034e04c3206dfbe2a7bbcc46057ca4f9ad8ed66869bf669c02a1e6e99 \
+    --hash=sha256:b885210269455e05f5704887a4c7b3b99d03c9ab37f320005acc21d1761f1656 \
+    --hash=sha256:bb3ce0ce49cfe5c31db046d567403adb2d158459cf10d7c71f6d72f2324c900a \
+    --hash=sha256:bedcf4a602042cb2c19ae3ee450fbdd5832095ae5b563e004f7c0d307a22c9e1 \
+    --hash=sha256:c3a7ead31317d3a3eabc17486c75ad109f3d514a702002e52da474b59dd8acce \
+    --hash=sha256:c3b67a2949240d63a0b8b1094e1d2d4b94dedf0317ac6e14164adc9aaf260963 \
+    --hash=sha256:c72165e4ee884c3c9ac85a443f20dd01849c9df26b38ff25b08260330ed78202 \
+    --hash=sha256:c7f2309384de675e7e25104fc5947acb65ad3ba69dc8246095d57ff1220dfcbb \
+    --hash=sha256:cf0a36fae1187fc2bdf3c527dc68c6bfd7c89726fbbf3215460b82e28bd8b81e \
+    --hash=sha256:d33c80afcbfdd2934917fedfa005251484ca8d98767c74793c35d5f24b8e48f1 \
+    --hash=sha256:d4a275ea70f597d3fd77bdc83054307a65749b2c669bc5045cb4620930eed596 \
+    --hash=sha256:d4db6f7515f5087ae9deecc3b60d3d8a512b1a0a9bff93113bc9edf20ed29ab9 \
+    --hash=sha256:e43b0533f291a8883e52fd7a8919353ae7038d50ef17873983877c2f6b76330e \
+    --hash=sha256:e84e27d6fa4b3e532043daf89d52d2cfbd7b4697b44b86a7b3db8cacdcfcc58c \
+    --hash=sha256:ec86da9ce746de890b8d470a1f12f3d2634786fee002a4c56bdbbfd59e23f1f7 \
+    --hash=sha256:ee3cc9bce848a1024d1c96717540f3f30cba885df9610be70c0653764e30ae6e \
+    --hash=sha256:f300d1811bd33940b2dd1907dbe2b4ae473003a384d6a764babb3ea5a4edede4 \
+    --hash=sha256:ff5176a083252a769e5bfb1a950d0e37da585c313e1a4af98903e22e7cf4c475
+pynacl==1.5.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:06b8f6fa7f5de8d5d2f7573fe8c863c051225a27b61e6860fd047b1775807858 \
+    --hash=sha256:0c84947a22519e013607c9be43706dd42513f9e6ae5d39d3613ca1e142fba44d \
+    --hash=sha256:20f42270d27e1b6a29f54032090b972d97f0a1b0948cc52392041ef7831fee93 \
+    --hash=sha256:401002a4aaa07c9414132aaed7f6836ff98f59277a234704ff66878c2ee4a0d1 \
+    --hash=sha256:52cb72a79269189d4e0dc537556f4740f7f0a9ec41c1322598799b0bdad4ef92 \
+    --hash=sha256:61f642bf2378713e2c2e1de73444a3778e5f0a38be6fee0fe532fe30060282ff \
+    --hash=sha256:8ac7448f09ab85811607bdd21ec2464495ac8b7c66d146bf545b0f08fb9220ba \
+    --hash=sha256:a36d4a9dda1f19ce6e03c9a784a2921a4b726b02e1c736600ca9c22029474394 \
+    --hash=sha256:a422368fc821589c228f4c49438a368831cb5bbc0eab5ebe1d7fac9dded6567b \
+    --hash=sha256:e46dae94e34b085175f8abb3b0aaa7da40767865ac82c928eeb9e57e1ea8a543
+pyopenssl==25.0.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:424c247065e46e76a37411b9ab1782541c23bb658bf003772c3405fbaa128e90 \
+    --hash=sha256:cd2cef799efa3936bb08e8ccb9433a575722b9dd986023f1cabc4ae64e9dac16
+pyparsing==3.2.1 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:506ff4f4386c4cec0590ec19e6302d3aedb992fdc02c761e90416f158dacf8e1 \
+    --hash=sha256:61980854fd66de3a90028d679a954d5f2623e83144b5afe5ee86f43d762e5f0a
+pypdf==6.4.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:4769d471f8ddc3341193ecc5d6560fa44cf8cd0abfabf21af4e195cc0c224072 \
+    --hash=sha256:55ab9837ed97fd7fcc5c131d52fcc2223bc5c6b8a1488bbf7c0e27f1f0023a79
+pyre2-updated==0.3.8 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:2bda9bf4d59568152e085450ffc1c08fcf659000d06766861f7ff340ba601c3e \
+    --hash=sha256:350be9580700b67af87f5227453d1123bc9f4513f0bcc60450574f1bc46cb24f \
+    --hash=sha256:407ca7082e2049aeae0b2c716cc53cd92217d17886694fe0047ce5d636161155 \
+    --hash=sha256:45c0940dbda4a2c45652e69ab52946c2395171f3e3a96bce456a8ddb45b337e1 \
+    --hash=sha256:4db83d0f148d91f9b67b71eb3fd04a7e1d09397e7ecea75972632cd46c27ba6e \
+    --hash=sha256:53d27f552fac2149c9dbe45faf1f6236c55fba42ea579799a07cdc853e3732d6 \
+    --hash=sha256:54de291bb8b3aa2223f864293e0a9e62ea2877fea72a632fe5cd36a60012f7bc \
+    --hash=sha256:648196c6fe7b115431f2bedc48660333a61f6628bde7efefc14098d67f86b7b4 \
+    --hash=sha256:65e67527eb472cd5045966df42414205cbfc187633a844ba7d9f59480f46e748 \
+    --hash=sha256:6d6aaa2f41a085095993b2d09562511cf40d4aedfc5bd00d78f53112be051e19 \
+    --hash=sha256:802dec5801912c76b21dcc3d91810ae9ff0cc308e78fb0aa32d93e921783f5d8 \
+    --hash=sha256:8331fc7bb1fa57d2654046ed189631d70db1170d935264ce82a7291413ce60e4 \
+    --hash=sha256:99942f75a252691117880fc60941f20170d35bcb3ccb72aff9a1bbce951d4db0 \
+    --hash=sha256:ab79cd5c663d20eca146361f2b2b7cf23c631109e43064d4bb35a43cb0607ffd \
+    --hash=sha256:b0820d8420caca762184f5eebe57631be5b985e405c53e807aac24897daa892a \
+    --hash=sha256:daf366a83b70b08cc4c59477455a28b2a108484d282824d350217a8a7378d229 \
+    --hash=sha256:f1c406e30aed02699888ae6938b83058f0845650991cd97db09e1686ce8a181a \
+    --hash=sha256:ff764613bd436689cf5e4d3c14a25cf8465474e1db9f2a39738bbf481dd07300
+pysocks==1.7.1 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:08e69f092cc6dbe92a0fdd16eeb9b9ffbc13cadfe5ca4c7bd92ffb078b293299 \
+    --hash=sha256:2725bd0a9925919b9b51739eea5f9e2bae91e83288108a9ad338b2e3a4435ee5 \
+    --hash=sha256:3f8804571ebe159c380ac6de37643bb4685970655d3bba243530d6558b799aa0
+python-dateutil==2.9.0.post0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:37dd54208da7e1cd875388217d5e00ebd4179249f90fb72437e91a35459a0ad3 \
+    --hash=sha256:a8b2bc7bffae282281c8140a97d3aa9c14da0b136dfe83f850eea9a5f7470427
+python-dotenv==1.0.1 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:e324ee90a023d808f1959c46bcbc04446a10ced277783dc6ee09987c37ec10ca \
+    --hash=sha256:f7b63ef50f1b690dddf550d03497b66d609393b40b564ed0d674909a68ebf16a
+python-flirt==0.9.2 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:113c0d865380117bbb5f52870b1459f9ee8fe8f6c5317d2206357c0834a2e9f3 \
+    --hash=sha256:191f325a137339db07b83112a3a1117d4a8db2c1d17c37bbc7b9078c3fc032c7 \
+    --hash=sha256:1c41c4990971e6d7ea343726762a59d5731b1e8df11e72612409ba34083d888c \
+    --hash=sha256:23c1a513ab31760ffcd21200c96f7027e97dd37bdfc35a09948e291c8ebe53af \
+    --hash=sha256:2a90f41c172afe99b149d1468514ac233534078fcd78864a6964382d24fd2c5f \
+    --hash=sha256:2affcc3cf23f102ee6b2143801b956869307e52d6588896e2b6ee1a8dc8595f5 \
+    --hash=sha256:2d9ae9332fa14c88a36b731bd178336989f27284bd2ec1e07215cd42389723bd \
+    --hash=sha256:3df5da165ab577fb056918342bbb45fd5952ae926609527a8fb172174d67cf8d \
+    --hash=sha256:3e533bd2fbd5c6bab4ab1f46b4e7dd00f550f70ab6e811e5df96328aef124538 \
+    --hash=sha256:3ede761720ac608b2a46482cbc04b130f89ac2d3e53575b303373e1b281c5ff2 \
+    --hash=sha256:4107b1bc92a5b5fa772828d692e319e6d6bbf595feceb89436ed6f0e0ebcafec \
+    --hash=sha256:45f498b5021ed799f8188de04b77cf091d9386f6b26274e57b2bf661d4209a06 \
+    --hash=sha256:49993fed8fec8fc497f178ef75630870a910cd454d5169185282c1a92ccfe4cc \
+    --hash=sha256:5840aa59c218b91e70b463e0d5fe0178539bc714e001d3f3130379cc505e6344 \
+    --hash=sha256:5c82c2b7a1f54c9dc020e222b4d60cb02876ed7b9ff08e2cf34c27a7d7bf86cc \
+    --hash=sha256:626de70de4a49f5f252c07e6d5db1c7a3aa624922107564554da9e864e848253 \
+    --hash=sha256:66a6b73afec2d33923b652071d2c0c3006ad2186fff4a54c7733acb32a566473 \
+    --hash=sha256:757224a7c3ab0483086b12101ab42bbe73038b1cab4612e9dc120ff8384d36e3 \
+    --hash=sha256:75d6586af3791705c1d8f20795ea8dee696c47b69632ce55d8680e063802b802 \
+    --hash=sha256:79b0598076926b6912596e4a79f9fa910aaf63d741ea091bb1a228df20b3895f \
+    --hash=sha256:8376882edb2fa931aebc89aedb9c27be0d1d5cf5ab85e266ba2f7c5dfe4cb637 \
+    --hash=sha256:83e41452dedc730713058bb8dbbd01664c1f2cd89594cf7892f4243079cf72fa \
+    --hash=sha256:87c17e413d675dcb34bb3af0e40296d20b971ff53f09f105b0135f30d96ae965 \
+    --hash=sha256:8936b389261b7ddbf738900a114a37b1af23e428d31bbd39f1cea40c0bc82a6c \
+    --hash=sha256:8f5461360d5723368733cb214c12f92a85340ea64c522ebe34d780422b26aaf8 \
+    --hash=sha256:92fe65eab1587573b5b13ffb755dbb67d1fdec411425850c984566d44864c104 \
+    --hash=sha256:98e9da4492303ef21d2224b7380fc22d510f7eccddc13f7a9476ce079cc30ce8 \
+    --hash=sha256:9fac75e70aebaf282c5af2d3f9457c12c843992027079a6ba923875d169c09ea \
+    --hash=sha256:a511b947ae64c840f136a00adca38850cadfde7dd969420f8693c2112260c7e5 \
+    --hash=sha256:a853b217bc930738fafddd1b6c2d4e4387ffc33812f5695368b976f37f5a59ba \
+    --hash=sha256:a98ecc2d1c0e4c77bd0878c515a295332d972034b44c5e829ef694baddd6fe16 \
+    --hash=sha256:aafb9802eb337b7bf63cd5bfadcc6d2686772a3a5213a43d82d8a256a9063b72 \
+    --hash=sha256:ac0662be73a482fdb09ff95cf9a408b2f8e3110f63d99f6fdff00c845e25543e \
+    --hash=sha256:b029cb6d1db4b422f3547aa6f153894f100e400182a05f2d87aa9270b643b2c4 \
+    --hash=sha256:b2a3ddc1fb778f99ee254ab534aaa94387536cd0a38f5daa93921b19232fae69 \
+    --hash=sha256:b411dbd17f8b411113f109203b3cff608d9e6cc13f516694e34436e35f6c0196 \
+    --hash=sha256:b5fad3e4814c39799198d4f01fad89b28d45dc2ee162393936b29ba5ba65964b \
+    --hash=sha256:b81b4661a907c3e9b9c60d943e404af9f198a8358c0194714da83ab6b4599d36 \
+    --hash=sha256:c369efcb1774a91f810484e4907f938ea69f18b811162c95f04907b6670937c0 \
+    --hash=sha256:c3e16582059cab76c5f23c103028ea09429f2af7f365086ddcbad293e1c65317 \
+    --hash=sha256:cd1e90da5de9ce4b77928f4ffaddac9b0d051e094cb82158d3ec2d4d0dd9b5b9 \
+    --hash=sha256:d48712f72e5769cb5ab096218924d68146b2341291373df70ec9b543124665ad \
+    --hash=sha256:d6c7c7f7ed7c0cdcec67cb06552d098f482a73683a23c319fa2f9fcbb787a1cc \
+    --hash=sha256:db7aac6bcce62d5e9aa6f3490a0df2689cda6674ad9a3f9ebe193bf6d09b4464 \
+    --hash=sha256:dd3edb4cceb818558969481e60917ee607401bc86f2c079e053f6db758e2644e \
+    --hash=sha256:e46800fe6fcaaf0af1f59b7b64fe23f65cce7946c372687bc024d163390cb283 \
+    --hash=sha256:e604dd2b47362cc8379afd6c160a04ee5911c21985da5781ff9df96357b8553d \
+    --hash=sha256:ecb08316ead1567c53873725106f9925c766e9dbf35af11aa650f78ba589165b \
+    --hash=sha256:f75ade2755a4de967296e06105f8250c364ed0072e09107a6794cabc3b7de80d \
+    --hash=sha256:fe0a8dcc0bda98d235359cb75fc3960b04721ae50ec8b518e68dabdebadcd21a
+python-magic==0.4.27 ; python_version >= "3.10" and python_version < "4.0" and sys_platform == "linux" \
+    --hash=sha256:c1ba14b08e4a5f5c31a302b7721239695b2f0f058d125bd5ce1ee36b9d9d3c3b \
+    --hash=sha256:c212960ad306f700aa0d01e5d7a325d20548ff97eb9920dcd29513174f0294d3
+python-tlsh==4.5.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:55e3df72cabdf48bf576b4580d7fa2feba9c14aacde0a8bd7b1ef40b03cb7969
+python-whois==0.9.5 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:18968c21484752fcc4b9a5f0af477ef6b8dc2e8bb7f1bd5c33831499c0dd41ca \
+    --hash=sha256:d435cf8012659745ce3b4e7c15428df9405648696727812d9eaacc36782d14e3
+pythonaes==1.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:71dd31c03500b8cba06f83f17603dcca1dd1c1308fbdaef752f353ed1aaf9f67
+pytz==2021.1 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:83a4a90894bf38e243cf052c8b58f381bfe9a7a483f6a9cab140bc7f702ac4da \
+    --hash=sha256:eb10ce3e7736052ed3623d49975ce333bcd712c7bb19a58b9e2089d4057d0798
+pyyaml==6.0.2 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:01179a4a8559ab5de078078f37e5c1a30d76bb88519906844fd7bdea1b7729ff \
+    --hash=sha256:0833f8694549e586547b576dcfaba4a6b55b9e96098b36cdc7ebefe667dfed48 \
+    --hash=sha256:0a9a2848a5b7feac301353437eb7d5957887edbf81d56e903999a75a3d743086 \
+    --hash=sha256:0b69e4ce7a131fe56b7e4d770c67429700908fc0752af059838b1cfb41960e4e \
+    --hash=sha256:0ffe8360bab4910ef1b9e87fb812d8bc0a308b0d0eef8c8f44e0254ab3b07133 \
+    --hash=sha256:11d8f3dd2b9c1207dcaf2ee0bbbfd5991f571186ec9cc78427ba5bd32afae4b5 \
+    --hash=sha256:17e311b6c678207928d649faa7cb0d7b4c26a0ba73d41e99c4fff6b6c3276484 \
+    --hash=sha256:1e2120ef853f59c7419231f3bf4e7021f1b936f6ebd222406c3b60212205d2ee \
+    --hash=sha256:1f71ea527786de97d1a0cc0eacd1defc0985dcf6b3f17bb77dcfc8c34bec4dc5 \
+    --hash=sha256:23502f431948090f597378482b4812b0caae32c22213aecf3b55325e049a6c68 \
+    --hash=sha256:24471b829b3bf607e04e88d79542a9d48bb037c2267d7927a874e6c205ca7e9a \
+    --hash=sha256:29717114e51c84ddfba879543fb232a6ed60086602313ca38cce623c1d62cfbf \
+    --hash=sha256:2e99c6826ffa974fe6e27cdb5ed0021786b03fc98e5ee3c5bfe1fd5015f42b99 \
+    --hash=sha256:39693e1f8320ae4f43943590b49779ffb98acb81f788220ea932a6b6c51004d8 \
+    --hash=sha256:3ad2a3decf9aaba3d29c8f537ac4b243e36bef957511b4766cb0057d32b0be85 \
+    --hash=sha256:3b1fdb9dc17f5a7677423d508ab4f243a726dea51fa5e70992e59a7411c89d19 \
+    --hash=sha256:41e4e3953a79407c794916fa277a82531dd93aad34e29c2a514c2c0c5fe971cc \
+    --hash=sha256:43fa96a3ca0d6b1812e01ced1044a003533c47f6ee8aca31724f78e93ccc089a \
+    --hash=sha256:50187695423ffe49e2deacb8cd10510bc361faac997de9efef88badc3bb9e2d1 \
+    --hash=sha256:5ac9328ec4831237bec75defaf839f7d4564be1e6b25ac710bd1a96321cc8317 \
+    --hash=sha256:5d225db5a45f21e78dd9358e58a98702a0302f2659a3c6cd320564b75b86f47c \
+    --hash=sha256:6395c297d42274772abc367baaa79683958044e5d3835486c16da75d2a694631 \
+    --hash=sha256:688ba32a1cffef67fd2e9398a2efebaea461578b0923624778664cc1c914db5d \
+    --hash=sha256:68ccc6023a3400877818152ad9a1033e3db8625d899c72eacb5a668902e4d652 \
+    --hash=sha256:70b189594dbe54f75ab3a1acec5f1e3faa7e8cf2f1e08d9b561cb41b845f69d5 \
+    --hash=sha256:797b4f722ffa07cc8d62053e4cff1486fa6dc094105d13fea7b1de7d8bf71c9e \
+    --hash=sha256:7c36280e6fb8385e520936c3cb3b8042851904eba0e58d277dca80a5cfed590b \
+    --hash=sha256:7e7401d0de89a9a855c839bc697c079a4af81cf878373abd7dc625847d25cbd8 \
+    --hash=sha256:80bab7bfc629882493af4aa31a4cfa43a4c57c83813253626916b8c7ada83476 \
+    --hash=sha256:82d09873e40955485746739bcb8b4586983670466c23382c19cffecbf1fd8706 \
+    --hash=sha256:8388ee1976c416731879ac16da0aff3f63b286ffdd57cdeb95f3f2e085687563 \
+    --hash=sha256:8824b5a04a04a047e72eea5cec3bc266db09e35de6bdfe34c9436ac5ee27d237 \
+    --hash=sha256:8b9c7197f7cb2738065c481a0461e50ad02f18c78cd75775628afb4d7137fb3b \
+    --hash=sha256:9056c1ecd25795207ad294bcf39f2db3d845767be0ea6e6a34d856f006006083 \
+    --hash=sha256:936d68689298c36b53b29f23c6dbb74de12b4ac12ca6cfe0e047bedceea56180 \
+    --hash=sha256:9b22676e8097e9e22e36d6b7bda33190d0d400f345f23d4065d48f4ca7ae0425 \
+    --hash=sha256:a4d3091415f010369ae4ed1fc6b79def9416358877534caf6a0fdd2146c87a3e \
+    --hash=sha256:a8786accb172bd8afb8be14490a16625cbc387036876ab6ba70912730faf8e1f \
+    --hash=sha256:a9f8c2e67970f13b16084e04f134610fd1d374bf477b17ec1599185cf611d725 \
+    --hash=sha256:bc2fa7c6b47d6bc618dd7fb02ef6fdedb1090ec036abab80d4681424b84c1183 \
+    --hash=sha256:c70c95198c015b85feafc136515252a261a84561b7b1d51e3384e0655ddf25ab \
+    --hash=sha256:cc1c1159b3d456576af7a3e4d1ba7e6924cb39de8f67111c735f6fc832082774 \
+    --hash=sha256:ce826d6ef20b1bc864f0a68340c8b3287705cae2f8b4b1d932177dcc76721725 \
+    --hash=sha256:d584d9ec91ad65861cc08d42e834324ef890a082e591037abe114850ff7bbc3e \
+    --hash=sha256:d7fded462629cfa4b685c5416b949ebad6cec74af5e2d42905d41e257e0869f5 \
+    --hash=sha256:d84a1718ee396f54f3a086ea0a66d8e552b2ab2017ef8b420e92edbc841c352d \
+    --hash=sha256:d8e03406cac8513435335dbab54c0d385e4a49e4945d2909a581c83647ca0290 \
+    --hash=sha256:e10ce637b18caea04431ce14fabcf5c64a1c61ec9c56b071a4b7ca131ca52d44 \
+    --hash=sha256:ec031d5d2feb36d1d1a24380e4db6d43695f3748343d99434e6f5f9156aaa2ed \
+    --hash=sha256:ef6107725bd54b262d6dedcc2af448a266975032bc85ef0172c5f059da6325b4 \
+    --hash=sha256:efdca5630322a10774e8e98e1af481aad470dd62c3170801852d752aa7a783ba \
+    --hash=sha256:f753120cb8181e736c57ef7636e83f31b9c0d1722c516f7e86cf15b7aa57ff12 \
+    --hash=sha256:ff3824dc5261f50c9b0dfb3be22b4567a6f938ccce4587b38952d85fd9e9afe4
+pyzipper==0.3.6 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:0adca90a00c36a93fbe49bfa8c5add452bfe4ef85a1b8e3638739dd1c7b26bfc \
+    --hash=sha256:6d097f465bfa47796b1494e12ea65d1478107d38e13bc56f6e58eedc4f6c1a87
+rat-king-parser==4.1.6 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:b5249842b8ea77b3d647cd6a559f39b51c4a15719a2d9cb0285deeb709c5cca9 \
+    --hash=sha256:ea3db0274cb158e797953561624b9c9d513fcf34c5a6be53a41971b8008a079a
+requests-file==2.1.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:0f549a3f3b0699415ac04d167e9cb39bccfb730cb832b4d20be3d9867356e658 \
+    --hash=sha256:cf270de5a4c5874e84599fc5778303d496c10ae5e870bfa378818f35d21bda5c
+requests==2.32.4 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:27babd3cda2a6d50b30443204ee89830707d396671944c998b5975b031ac2b2c \
+    --hash=sha256:27d0316682c8a29834d3264820024b62a36942083d52caf2f14c0591336d3422
+rich==13.9.4 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:439594978a49a09530cff7ebc4b5c7103ef57baf48d5ea3184f21d9a2befa098 \
+    --hash=sha256:6049d5e6ec054bf2779ab3358186963bac2ea89175919d699e378b99738c2a90
+ruamel-yaml-clib==0.2.12 ; python_version >= "3.10" and python_version < "3.13" and platform_python_implementation == "CPython" \
+    --hash=sha256:040ae85536960525ea62868b642bdb0c2cc6021c9f9d507810c0c604e66f5a7b \
+    --hash=sha256:0467c5965282c62203273b838ae77c0d29d7638c8a4e3a1c8bdd3602c10904e4 \
+    --hash=sha256:0b7e75b4965e1d4690e93021adfcecccbca7d61c7bddd8e22406ef2ff20d74ef \
+    --hash=sha256:11f891336688faf5156a36293a9c362bdc7c88f03a8a027c2c1d8e0bcde998e5 \
+    --hash=sha256:1492a6051dab8d912fc2adeef0e8c72216b24d57bd896ea607cb90bb0c4981d3 \
+    --hash=sha256:20b0f8dc160ba83b6dcc0e256846e1a02d044e13f7ea74a3d1d56ede4e48c632 \
+    --hash=sha256:22353049ba4181685023b25b5b51a574bce33e7f51c759371a7422dcae5402a6 \
+    --hash=sha256:2c59aa6170b990d8d2719323e628aaf36f3bfbc1c26279c0eeeb24d05d2d11c7 \
+    --hash=sha256:32621c177bbf782ca5a18ba4d7af0f1082a3f6e517ac2a18b3974d4edf349680 \
+    --hash=sha256:3bc2a80e6420ca8b7d3590791e2dfc709c88ab9152c00eeb511c9875ce5778bf \
+    --hash=sha256:3eac5a91891ceb88138c113f9db04f3cebdae277f5d44eaa3651a4f573e6a5da \
+    --hash=sha256:4a6679521a58256a90b0d89e03992c15144c5f3858f40d7c18886023d7943db6 \
+    --hash=sha256:4c8c5d82f50bb53986a5e02d1b3092b03622c02c2eb78e29bec33fd9593bae1a \
+    --hash=sha256:4f6f3eac23941b32afccc23081e1f50612bdbe4e982012ef4f5797986828cd01 \
+    --hash=sha256:5a0e060aace4c24dcaf71023bbd7d42674e3b230f7e7b97317baf1e953e5b519 \
+    --hash=sha256:6442cb36270b3afb1b4951f060eccca1ce49f3d087ca1ca4563a6eb479cb3de6 \
+    --hash=sha256:6c8fbb13ec503f99a91901ab46e0b07ae7941cd527393187039aec586fdfd36f \
+    --hash=sha256:749c16fcc4a2b09f28843cda5a193e0283e47454b63ec4b81eaa2242f50e4ccd \
+    --hash=sha256:7dd5adc8b930b12c8fc5b99e2d535a09889941aa0d0bd06f4749e9a9397c71d2 \
+    --hash=sha256:811ea1594b8a0fb466172c384267a4e5e367298af6b228931f273b111f17ef52 \
+    --hash=sha256:932205970b9f9991b34f55136be327501903f7c66830e9760a8ffb15b07f05cd \
+    --hash=sha256:943f32bc9dedb3abff9879edc134901df92cfce2c3d5c9348f172f62eb2d771d \
+    --hash=sha256:95c3829bb364fdb8e0332c9931ecf57d9be3519241323c5274bd82f709cebc0c \
+    --hash=sha256:96777d473c05ee3e5e3c3e999f5d23c6f4ec5b0c38c098b3a5229085f74236c6 \
+    --hash=sha256:a274fb2cb086c7a3dea4322ec27f4cb5cc4b6298adb583ab0e211a4682f241eb \
+    --hash=sha256:a52d48f4e7bf9005e8f0a89209bf9a73f7190ddf0489eee5eb51377385f59f2a \
+    --hash=sha256:a606ef75a60ecf3d924613892cc603b154178ee25abb3055db5062da811fd969 \
+    --hash=sha256:ab007f2f5a87bd08ab1499bdf96f3d5c6ad4dcfa364884cb4549aa0154b13a28 \
+    --hash=sha256:b82a7c94a498853aa0b272fd5bc67f29008da798d4f93a2f9f289feb8426a58d \
+    --hash=sha256:bb43a269eb827806502c7c8efb7ae7e9e9d0573257a46e8e952f4d4caba4f31e \
+    --hash=sha256:bc5f1e1c28e966d61d2519f2a3d451ba989f9ea0f2307de7bc45baa526de9e45 \
+    --hash=sha256:bd0a08f0bab19093c54e18a14a10b4322e1eacc5217056f3c063bd2f59853ce4 \
+    --hash=sha256:beffaed67936fbbeffd10966a4eb53c402fafd3d6833770516bf7314bc6ffa12 \
+    --hash=sha256:bf165fef1f223beae7333275156ab2022cffe255dcc51c27f066b4370da81e31 \
+    --hash=sha256:cf12567a7b565cbf65d438dec6cfbe2917d3c1bdddfce84a9930b7d35ea59642 \
+    --hash=sha256:d84318609196d6bd6da0edfa25cedfbabd8dbde5140a0a23af29ad4b8f91fb1e \
+    --hash=sha256:d85252669dc32f98ebcd5d36768f5d4faeaeaa2d655ac0473be490ecdae3c285 \
+    --hash=sha256:e143ada795c341b56de9418c58d028989093ee611aa27ffb9b7f609c00d813ed \
+    --hash=sha256:e188d2699864c11c36cdfdada94d781fd5d6b0071cd9c427bceb08ad3d7c70e1 \
+    --hash=sha256:e2f1c3765db32be59d18ab3953f43ab62a761327aafc1594a2a1fbe038b8b8a7 \
+    --hash=sha256:e5b8daf27af0b90da7bb903a876477a9e6d7270be6146906b276605997c7e9a3 \
+    --hash=sha256:e7e3736715fbf53e9be2a79eb4db68e4ed857017344d697e8b9749444ae57475 \
+    --hash=sha256:e8c4ebfcfd57177b572e2040777b8abc537cdef58a2120e830124946aa9b42c5 \
+    --hash=sha256:f66efbc1caa63c088dead1c4170d148eabc9b80d95fb75b6c92ac0aad2437d76 \
+    --hash=sha256:fc4b630cd3fa2cf7fce38afa91d7cfe844a9f75d7f0f36393fa98815e911d987 \
+    --hash=sha256:fd5415dded15c3822597455bc02bcd66e81ef8b7a48cb71a33628fc9fdde39df
+ruamel-yaml==0.18.10 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:20c86ab29ac2153f80a428e1254a8adf686d3383df04490514ca3b79a362db58 \
+    --hash=sha256:30f22513ab2301b3d2b577adc121c6471f28734d3d9728581245f1e76468b4f1
+ruff==0.9.4 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:05bebf4cdbe3ef75430d26c375773978950bbf4ee3c95ccb5448940dc092408e \
+    --hash=sha256:1d4c8772670aecf037d1bf7a07c39106574d143b26cfe5ed1787d2f31e800214 \
+    --hash=sha256:37c892540108314a6f01f105040b5106aeb829fa5fb0561d2dcaf71485021137 \
+    --hash=sha256:433dedf6ddfdec7f1ac7575ec1eb9844fa60c4c8c2f8887a070672b8d353d34c \
+    --hash=sha256:54499fb08408e32b57360f6f9de7157a5fec24ad79cb3f42ef2c3f3f728dfe2b \
+    --hash=sha256:56acd6c694da3695a7461cc55775f3a409c3815ac467279dfa126061d84b314b \
+    --hash=sha256:585792f1e81509e38ac5123492f8875fbc36f3ede8185af0a26df348e5154f41 \
+    --hash=sha256:64e73d25b954f71ff100bb70f39f1ee09e880728efb4250c632ceed4e4cdf706 \
+    --hash=sha256:6907ee3529244bb0ed066683e075f09285b38dd5b4039370df6ff06041ca19e7 \
+    --hash=sha256:6ce6743ed64d9afab4fafeaea70d3631b4d4b28b592db21a5c2d1f0ef52934bf \
+    --hash=sha256:87c90c32357c74f11deb7fbb065126d91771b207bf9bfaaee01277ca59b574ec \
+    --hash=sha256:a6c634fc6f5a0ceae1ab3e13c58183978185d131a29c425e4eaa9f40afe1e6d6 \
+    --hash=sha256:bfc5f1d7afeda8d5d37660eeca6d389b142d7f2b5a1ab659d9214ebd0e025231 \
+    --hash=sha256:d612dbd0f3a919a8cc1d12037168bfa536862066808960e0cc901404b77968f0 \
+    --hash=sha256:db1192ddda2200671f9ef61d9597fcef89d934f5d1705e571a93a67fb13a4402 \
+    --hash=sha256:de9edf2ce4b9ddf43fd93e20ef635a900e25f622f87ed6e3047a664d0e8f810e \
+    --hash=sha256:e0c93e7d47ed951b9394cf352d6695b31498e68fd5782d6cbc282425655f687a \
+    --hash=sha256:faa935fc00ae854d8b638c16a5f1ce881bc3f67446957dd6f2af440a5fc8526b
+service-identity==24.2.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:6b047fbd8a84fd0bb0d55ebce4031e400562b9196e1e0d3e0fe2b8a59f6d4a85 \
+    --hash=sha256:b8683ba13f0d39c6cd5d625d2c5f65421d6d707b013b375c355751557cbe8e09
+setproctitle==1.3.2 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:1c5d5dad7c28bdd1ec4187d818e43796f58a845aa892bb4481587010dc4d362b \
+    --hash=sha256:1c8d9650154afaa86a44ff195b7b10d683c73509d085339d174e394a22cccbb9 \
+    --hash=sha256:1f0cde41857a644b7353a0060b5f94f7ba7cf593ebde5a1094da1be581ac9a31 \
+    --hash=sha256:1f29b75e86260b0ab59adb12661ef9f113d2f93a59951373eb6d68a852b13e83 \
+    --hash=sha256:1fa1a0fbee72b47dc339c87c890d3c03a72ea65c061ade3204f285582f2da30f \
+    --hash=sha256:1ff863a20d1ff6ba2c24e22436a3daa3cd80be1dfb26891aae73f61b54b04aca \
+    --hash=sha256:265ecbe2c6eafe82e104f994ddd7c811520acdd0647b73f65c24f51374cf9494 \
+    --hash=sha256:288943dec88e178bb2fd868adf491197cc0fc8b6810416b1c6775e686bab87fe \
+    --hash=sha256:2a97d51c17d438cf5be284775a322d57b7ca9505bb7e118c28b1824ecaf8aeaa \
+    --hash=sha256:2e3ac25bfc4a0f29d2409650c7532d5ddfdbf29f16f8a256fc31c47d0dc05172 \
+    --hash=sha256:2fbd8187948284293f43533c150cd69a0e4192c83c377da837dbcd29f6b83084 \
+    --hash=sha256:37ece938110cab2bb3957e3910af8152ca15f2b6efdf4f2612e3f6b7e5459b80 \
+    --hash=sha256:4058564195b975ddc3f0462375c533cce310ccdd41b80ac9aed641c296c3eff4 \
+    --hash=sha256:4749a2b0c9ac52f864d13cee94546606f92b981b50e46226f7f830a56a9dc8e1 \
+    --hash=sha256:4bba3be4c1fabf170595b71f3af46c6d482fbe7d9e0563999b49999a31876f77 \
+    --hash=sha256:4d8938249a7cea45ab7e1e48b77685d0f2bab1ebfa9dde23e94ab97968996a7c \
+    --hash=sha256:5194b4969f82ea842a4f6af2f82cd16ebdc3f1771fb2771796e6add9835c1973 \
+    --hash=sha256:55ce1e9925ce1765865442ede9dca0ba9bde10593fcd570b1f0fa25d3ec6b31c \
+    --hash=sha256:570d255fd99c7f14d8f91363c3ea96bd54f8742275796bca67e1414aeca7d8c3 \
+    --hash=sha256:587c7d6780109fbd8a627758063d08ab0421377c0853780e5c356873cdf0f077 \
+    --hash=sha256:589be87172b238f839e19f146b9ea47c71e413e951ef0dc6db4218ddacf3c202 \
+    --hash=sha256:5b932c3041aa924163f4aab970c2f0e6b4d9d773f4d50326e0ea1cd69240e5c5 \
+    --hash=sha256:5fb4f769c02f63fac90989711a3fee83919f47ae9afd4758ced5d86596318c65 \
+    --hash=sha256:630f6fe5e24a619ccf970c78e084319ee8be5be253ecc9b5b216b0f474f5ef18 \
+    --hash=sha256:65d884e22037b23fa25b2baf1a3316602ed5c5971eb3e9d771a38c3a69ce6e13 \
+    --hash=sha256:6c877691b90026670e5a70adfbcc735460a9f4c274d35ec5e8a43ce3f8443005 \
+    --hash=sha256:710e16fa3bade3b026907e4a5e841124983620046166f355bbb84be364bf2a02 \
+    --hash=sha256:7a55fe05f15c10e8c705038777656fe45e3bd676d49ad9ac8370b75c66dd7cd7 \
+    --hash=sha256:7aa0aac1711fadffc1d51e9d00a3bea61f68443d6ac0241a224e4d622489d665 \
+    --hash=sha256:7f0bed90a216ef28b9d227d8d73e28a8c9b88c0f48a082d13ab3fa83c581488f \
+    --hash=sha256:7f2719a398e1a2c01c2a63bf30377a34d0b6ef61946ab9cf4d550733af8f1ef1 \
+    --hash=sha256:7fe9df7aeb8c64db6c34fc3b13271a363475d77bc157d3f00275a53910cb1989 \
+    --hash=sha256:88486e6cce2a18a033013d17b30a594f1c5cb42520c49c19e6ade40b864bb7ff \
+    --hash=sha256:8e4f8f12258a8739c565292a551c3db62cca4ed4f6b6126664e2381acb4931bf \
+    --hash=sha256:8ff3c8cb26afaed25e8bca7b9dd0c1e36de71f35a3a0706b5c0d5172587a3827 \
+    --hash=sha256:9124bedd8006b0e04d4e8a71a0945da9b67e7a4ab88fdad7b1440dc5b6122c42 \
+    --hash=sha256:92c626edc66169a1b09e9541b9c0c9f10488447d8a2b1d87c8f0672e771bc927 \
+    --hash=sha256:a149a5f7f2c5a065d4e63cb0d7a4b6d3b66e6e80f12e3f8827c4f63974cbf122 \
+    --hash=sha256:a47d97a75fd2d10c37410b180f67a5835cb1d8fdea2648fd7f359d4277f180b9 \
+    --hash=sha256:a499fff50387c1520c085a07578a000123f519e5f3eee61dd68e1d301659651f \
+    --hash=sha256:a8e0881568c5e6beff91ef73c0ec8ac2a9d3ecc9edd6bd83c31ca34f770910c4 \
+    --hash=sha256:ab45146c71ca6592c9cc8b354a2cc9cc4843c33efcbe1d245d7d37ce9696552d \
+    --hash=sha256:b2c9cb2705fc84cb8798f1ba74194f4c080aaef19d9dae843591c09b97678e98 \
+    --hash=sha256:b34baef93bfb20a8ecb930e395ccd2ae3268050d8cf4fe187de5e2bd806fd796 \
+    --hash=sha256:b617f12c9be61e8f4b2857be4a4319754756845dbbbd9c3718f468bbb1e17bcb \
+    --hash=sha256:b9fb97907c830d260fa0658ed58afd48a86b2b88aac521135c352ff7fd3477fd \
+    --hash=sha256:bae283e85fc084b18ffeb92e061ff7ac5af9e183c9d1345c93e178c3e5069cbe \
+    --hash=sha256:c2c46200656280a064073447ebd363937562debef329482fd7e570c8d498f806 \
+    --hash=sha256:c8a09d570b39517de10ee5b718730e171251ce63bbb890c430c725c8c53d4484 \
+    --hash=sha256:c91b9bc8985d00239f7dc08a49927a7ca1ca8a6af2c3890feec3ed9665b6f91e \
+    --hash=sha256:ca58cd260ea02759238d994cfae844fc8b1e206c684beb8f38877dcab8451dfc \
+    --hash=sha256:d7d17c8bd073cbf8d141993db45145a70b307385b69171d6b54bcf23e5d644de \
+    --hash=sha256:dad42e676c5261eb50fdb16bdf3e2771cf8f99a79ef69ba88729aeb3472d8575 \
+    --hash=sha256:db684d6bbb735a80bcbc3737856385b55d53f8a44ce9b46e9a5682c5133a9bf7 \
+    --hash=sha256:de3a540cd1817ede31f530d20e6a4935bbc1b145fd8f8cf393903b1e02f1ae76 \
+    --hash=sha256:e00c9d5c541a2713ba0e657e0303bf96ddddc412ef4761676adc35df35d7c246 \
+    --hash=sha256:e1aafc91cbdacc9e5fe712c52077369168e6b6c346f3a9d51bf600b53eae56bb \
+    --hash=sha256:e425be62524dc0c593985da794ee73eb8a17abb10fe692ee43bb39e201d7a099 \
+    --hash=sha256:e43f315c68aa61cbdef522a2272c5a5b9b8fd03c301d3167b5e1343ef50c676c \
+    --hash=sha256:e49ae693306d7624015f31cb3e82708916759d592c2e5f72a35c8f4cc8aef258 \
+    --hash=sha256:e5c50e164cd2459bc5137c15288a9ef57160fd5cbf293265ea3c45efe7870865 \
+    --hash=sha256:e8579a43eafd246e285eb3a5b939e7158073d5087aacdd2308f23200eac2458b \
+    --hash=sha256:e85e50b9c67854f89635a86247412f3ad66b132a4d8534ac017547197c88f27d \
+    --hash=sha256:e932089c35a396dc31a5a1fc49889dd559548d14cb2237adae260382a090382e \
+    --hash=sha256:f0452282258dfcc01697026a8841258dd2057c4438b43914b611bccbcd048f10 \
+    --hash=sha256:f4bfc89bd33ebb8e4c0e9846a09b1f5a4a86f5cb7a317e75cc42fee1131b4f4f \
+    --hash=sha256:fa2f50678f04fda7a75d0fe5dd02bbdd3b13cbe6ed4cf626e4472a7ccf47ae94 \
+    --hash=sha256:faec934cfe5fd6ac1151c02e67156c3f526e82f96b24d550b5d51efa4a5527c6 \
+    --hash=sha256:fcd3cf4286a60fdc95451d8d14e0389a6b4f5cebe02c7f2609325eb016535963 \
+    --hash=sha256:fe8a988c7220c002c45347430993830666e55bc350179d91fcee0feafe64e1d4 \
+    --hash=sha256:fed18e44711c5af4b681c2b3b18f85e6f0f1b2370a28854c645d636d5305ccd8 \
+    --hash=sha256:ffc61a388a5834a97953d6444a2888c24a05f2e333f9ed49f977a87bb1ad4761
+setuptools==78.1.1 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:c3a9c4211ff4c309edb8b8c4f1cbfa7ae324c4ba9f91ff254e3d305b9fd54561 \
+    --hash=sha256:fcc17fd9cd898242f6b4adfaca46137a9edef687f43e6f78469692a5e70d851d
+sflock2==0.3.76 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:3d989d142fc49ebd049f75eb8d402451fcd20148cf27aaa20c540ac95a9c81ff \
+    --hash=sha256:eed75b32adf3c82a60d9339fda63a151355f9be7639d7d583de8f43ea6604e4c
+six==1.17.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:4721f391ed90541fddacab5acf947aa0d3dc7d27b2e1e8eda2be8970586c3274 \
+    --hash=sha256:ff70335d468e7eb6ec65b95b99d3a2836546063f63acc5171de367e834932a81
+sniffio==1.3.1 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:2f6da418d1f1e0fddd844478f41680e794e6051915791a034ff65e5f100525a2 \
+    --hash=sha256:f4324edc670a0f49750a81b895f35c3adb843cca46f0530f79fc1babb23789dc
+sortedcontainers==2.4.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:25caa5a06cc30b6b83d11423433f65d1f9d76c4c6a0c90e3379eaa43b9bfdb88 \
+    --hash=sha256:a163dcaede0f1c021485e957a39245190e74249897e2ae4b2aa38595db237ee0
+soupsieve==2.6 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:e2e68417777af359ec65daac1057404a3c8a5455bb8abc36f1a9866ab1a51abb \
+    --hash=sha256:e72c4ff06e4fb6e4b5a9f0f55fe6e81514581fca1515028625d0f299c602ccc9
+sqlalchemy-utils==0.41.1 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:6c96b0768ea3f15c0dc56b363d386138c562752b84f647fb8d31a2223aaab801 \
+    --hash=sha256:a2181bff01eeb84479e38571d2c0718eb52042f9afd8c194d0d02877e84b7d74
+sqlalchemy==2.0.41 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:023b3ee6169969beea3bb72312e44d8b7c27c75b347942d943cf49397b7edeb5 \
+    --hash=sha256:03968a349db483936c249f4d9cd14ff2c296adfa1290b660ba6516f973139582 \
+    --hash=sha256:05132c906066142103b83d9c250b60508af556982a385d96c4eaa9fb9720ac2b \
+    --hash=sha256:087b6b52de812741c27231b5a3586384d60c353fbd0e2f81405a814b5591dc8b \
+    --hash=sha256:0b3dbf1e7e9bc95f4bac5e2fb6d3fb2f083254c3fdd20a1789af965caf2d2348 \
+    --hash=sha256:118c16cd3f1b00c76d69343e38602006c9cfb9998fa4f798606d28d63f23beda \
+    --hash=sha256:1936af879e3db023601196a1684d28e12f19ccf93af01bf3280a3262c4b6b4e5 \
+    --hash=sha256:1e3f196a0c59b0cae9a0cd332eb1a4bda4696e863f4f1cf84ab0347992c548c2 \
+    --hash=sha256:23a8825495d8b195c4aa9ff1c430c28f2c821e8c5e2d98089228af887e5d7e29 \
+    --hash=sha256:293cd444d82b18da48c9f71cd7005844dbbd06ca19be1ccf6779154439eec0b8 \
+    --hash=sha256:32f9dc8c44acdee06c8fc6440db9eae8b4af8b01e4b1aee7bdd7241c22edff4f \
+    --hash=sha256:34ea30ab3ec98355235972dadc497bb659cc75f8292b760394824fab9cf39826 \
+    --hash=sha256:3d3549fc3e40667ec7199033a4e40a2f669898a00a7b18a931d3efb4c7900504 \
+    --hash=sha256:41836fe661cc98abfae476e14ba1906220f92c4e528771a8a3ae6a151242d2ae \
+    --hash=sha256:4d44522480e0bf34c3d63167b8cfa7289c1c54264c2950cc5fc26e7850967e45 \
+    --hash=sha256:4eeb195cdedaf17aab6b247894ff2734dcead6c08f748e617bfe05bd5a218443 \
+    --hash=sha256:4f67766965996e63bb46cfbf2ce5355fc32d9dd3b8ad7e536a920ff9ee422e23 \
+    --hash=sha256:57df5dc6fdb5ed1a88a1ed2195fd31927e705cad62dedd86b46972752a80f576 \
+    --hash=sha256:598d9ebc1e796431bbd068e41e4de4dc34312b7aa3292571bb3674a0cb415dd1 \
+    --hash=sha256:5b14e97886199c1f52c14629c11d90c11fbb09e9334fa7bb5f6d068d9ced0ce0 \
+    --hash=sha256:5e22575d169529ac3e0a120cf050ec9daa94b6a9597993d1702884f6954a7d71 \
+    --hash=sha256:60c578c45c949f909a4026b7807044e7e564adf793537fc762b2489d522f3d11 \
+    --hash=sha256:6145afea51ff0af7f2564a05fa95eb46f542919e6523729663a5d285ecb3cf5e \
+    --hash=sha256:6375cd674fe82d7aa9816d1cb96ec592bac1726c11e0cafbf40eeee9a4516b5f \
+    --hash=sha256:6854175807af57bdb6425e47adbce7d20a4d79bbfd6f6d6519cd10bb7109a7f8 \
+    --hash=sha256:6ab60a5089a8f02009f127806f777fca82581c49e127f08413a66056bd9166dd \
+    --hash=sha256:725875a63abf7c399d4548e686debb65cdc2549e1825437096a0af1f7e374814 \
+    --hash=sha256:7492967c3386df69f80cf67efd665c0f667cee67032090fe01d7d74b0e19bb08 \
+    --hash=sha256:81965cc20848ab06583506ef54e37cf15c83c7e619df2ad16807c03100745dea \
+    --hash=sha256:81c24e0c0fde47a9723c81d5806569cddef103aebbf79dbc9fcbb617153dea30 \
+    --hash=sha256:81eedafa609917040d39aa9332e25881a8e7a0862495fcdf2023a9667209deda \
+    --hash=sha256:81f413674d85cfd0dfcd6512e10e0f33c19c21860342a4890c3a2b59479929f9 \
+    --hash=sha256:8280856dd7c6a68ab3a164b4a4b1c51f7691f6d04af4d4ca23d6ecf2261b7923 \
+    --hash=sha256:82ca366a844eb551daff9d2e6e7a9e5e76d2612c8564f58db6c19a726869c1df \
+    --hash=sha256:8b4af17bda11e907c51d10686eda89049f9ce5669b08fbe71a29747f1e876036 \
+    --hash=sha256:90144d3b0c8b139408da50196c5cad2a6909b51b23df1f0538411cd23ffa45d3 \
+    --hash=sha256:906e6b0d7d452e9a98e5ab8507c0da791856b2380fdee61b765632bb8698026f \
+    --hash=sha256:90c11ceb9a1f482c752a71f203a81858625d8df5746d787a4786bca4ffdf71c6 \
+    --hash=sha256:911cc493ebd60de5f285bcae0491a60b4f2a9f0f5c270edd1c4dbaef7a38fc04 \
+    --hash=sha256:9a420a91913092d1e20c86a2f5f1fc85c1a8924dbcaf5e0586df8aceb09c9cc2 \
+    --hash=sha256:9f8c9fdd15a55d9465e590a402f42082705d66b05afc3ffd2d2eb3c6ba919560 \
+    --hash=sha256:a104c5694dfd2d864a6f91b0956eb5d5883234119cb40010115fd45a16da5e70 \
+    --hash=sha256:a373a400f3e9bac95ba2a06372c4fd1412a7cee53c37fc6c05f829bf672b8769 \
+    --hash=sha256:a62448526dd9ed3e3beedc93df9bb6b55a436ed1474db31a2af13b313a70a7e1 \
+    --hash=sha256:a8808d5cf866c781150d36a3c8eb3adccfa41a8105d031bf27e92c251e3969d6 \
+    --hash=sha256:b1f09b6821406ea1f94053f346f28f8215e293344209129a9c0fcc3578598d7b \
+    --hash=sha256:b2ac41acfc8d965fb0c464eb8f44995770239668956dc4cdf502d1b1ffe0d747 \
+    --hash=sha256:b46fa6eae1cd1c20e6e6f44e19984d438b6b2d8616d21d783d150df714f44078 \
+    --hash=sha256:b50eab9994d64f4a823ff99a0ed28a6903224ddbe7fef56a6dd865eec9243440 \
+    --hash=sha256:bfc9064f6658a3d1cadeaa0ba07570b83ce6801a1314985bf98ec9b95d74e15f \
+    --hash=sha256:c0b0e5e1b5d9f3586601048dd68f392dc0cc99a59bb5faf18aab057ce00d00b2 \
+    --hash=sha256:c153265408d18de4cc5ded1941dcd8315894572cddd3c58df5d5b5705b3fa28d \
+    --hash=sha256:d4ae769b9c1c7757e4ccce94b0641bc203bbdf43ba7a2413ab2523d8d047d8dc \
+    --hash=sha256:dc56c9788617b8964ad02e8fcfeed4001c1f8ba91a9e1f31483c0dffb207002a \
+    --hash=sha256:dd5ec3aa6ae6e4d5b5de9357d2133c07be1aff6405b136dad753a16afb6717dd \
+    --hash=sha256:edba70118c4be3c2b1f90754d308d0b79c6fe2c0fdc52d8ddf603916f83f4db9 \
+    --hash=sha256:ff8e80c4c4932c10493ff97028decfdb622de69cae87e0f127a7ebe32b4069c6
+sqlparse==0.5.3 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:09f67787f56a0b16ecdbde1bfc7f5d9c3371ca683cfeaa8e6ff60b4807ec9272 \
+    --hash=sha256:cf2196ed3418f3ba5de6af7e82c694a9fbdbfecccdfc72e281548517081f16ca
+stpyv8==13.1.201.22 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:05c3ecaaf2dd8dbe06bdb70f3192b7e6161337ee04e6830a57b58eb4be7c70bd \
+    --hash=sha256:2bdbc7307dbf86cfc4bd0a11f0ae1f1c6f91d1b3366a7b409f9fc5d01f69441d \
+    --hash=sha256:2ce8e85a4a88e80ae561654be1b55ff578c4f1a27d518ac35e6d87b93d91b096 \
+    --hash=sha256:4d737935167c52ed72e5a78264d9adfeaf089bf54693b88f12cbdb439a36a102 \
+    --hash=sha256:6cb5e8751aee2487cc3b5f21eac6d459041a7180a779941b64db5736e27276ee \
+    --hash=sha256:6dc40b656cea7fe541f6bdbad83b6b4ed51e5ead985b54c139319a731253a55e \
+    --hash=sha256:6fdbc3a8b1aa941064ec0976a5a85761f50e9090468ce275c22d0774293d2668 \
+    --hash=sha256:8019f19b29621ccde85125d86f60f5814175b17670f5949d2671cf22cf453ea6 \
+    --hash=sha256:834b9761bb7f49da8b887847c7647495a2cf6c45f69e2124ae0e3f024493bc15 \
+    --hash=sha256:90568ff08dfaf0ebd3bf1c79f7d21db06d82eada412a6e914b995bead7c78666 \
+    --hash=sha256:b2a660a331e82fa89d5938ec8418743ebfb544733269f24cd8461a18472701c2 \
+    --hash=sha256:b53df6114a88698ee6f3820cf46476e83ee09c9a67dd9f7cf58ca6a2928238b0 \
+    --hash=sha256:b9d9499ed2007cc097a5d2ae0cb18226b2bf3ca429301811b2e12a787a8f137e \
+    --hash=sha256:bf51578ec84dba6519d75ca81a154a070910e638da0ec384f4bf6d535f9b5218 \
+    --hash=sha256:c0b258c7c5a79c5f19e636b93eece90d3cf9109af9a11c5394bdb807ed68e04a \
+    --hash=sha256:c24aa4215c64db7d67fc6c42c0d7731cabcf300596bf9c826ae74f426fe3b771 \
+    --hash=sha256:c4292843c8133fc99833aceef25925a97edf01031e186335582deb077b99d2bf \
+    --hash=sha256:c4bf3048c96a6a1561861da0c74be842c79a71373d3bec0d53c4e8f6eaa7b6e8 \
+    --hash=sha256:c8189b8c4d87579f353705441757f11e2f2260578b82000925dadf0ed59a47e3 \
+    --hash=sha256:d00a220268d63d68490682b571d082d5b197de1f19d6f478a88357c61da94f7a \
+    --hash=sha256:da6d8f2945bd057057c64bc93ea3c064cc848b75f55d6d651120ee5d115e0761 \
+    --hash=sha256:fc2b956bfaf23531c490845edb7d80fc998fe8aee1c7cf1337317dae01169307 \
+    --hash=sha256:fe25c004b12f2616ae877e0469f95aa2164e62e6584d253b07f3c9f9ba69a888
+tldextract==5.1.3 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:78de310cc2ca018692de5ddf320f9d6bd7c5cf857d0fd4f2175f0cdf4440ea75 \
+    --hash=sha256:d43c7284c23f5dc8a42fd0fee2abede2ff74cc622674e4cb07f514ab3330c338
+tomli==2.2.1 ; python_version == "3.10" \
+    --hash=sha256:023aa114dd824ade0100497eb2318602af309e5a55595f76b626d6d9f3b7b0a6 \
+    --hash=sha256:02abe224de6ae62c19f090f68da4e27b10af2b93213d36cf44e6e1c5abd19fdd \
+    --hash=sha256:286f0ca2ffeeb5b9bd4fcc8d6c330534323ec51b2f52da063b11c502da16f30c \
+    --hash=sha256:2d0f2fdd22b02c6d81637a3c95f8cd77f995846af7414c5c4b8d0545afa1bc4b \
+    --hash=sha256:33580bccab0338d00994d7f16f4c4ec25b776af3ffaac1ed74e0b3fc95e885a8 \
+    --hash=sha256:400e720fe168c0f8521520190686ef8ef033fb19fc493da09779e592861b78c6 \
+    --hash=sha256:40741994320b232529c802f8bc86da4e1aa9f413db394617b9a256ae0f9a7f77 \
+    --hash=sha256:465af0e0875402f1d226519c9904f37254b3045fc5084697cefb9bdde1ff99ff \
+    --hash=sha256:4a8f6e44de52d5e6c657c9fe83b562f5f4256d8ebbfe4ff922c495620a7f6cea \
+    --hash=sha256:4e340144ad7ae1533cb897d406382b4b6fede8890a03738ff1683af800d54192 \
+    --hash=sha256:678e4fa69e4575eb77d103de3df8a895e1591b48e740211bd1067378c69e8249 \
+    --hash=sha256:6972ca9c9cc9f0acaa56a8ca1ff51e7af152a9f87fb64623e31d5c83700080ee \
+    --hash=sha256:7fc04e92e1d624a4a63c76474610238576942d6b8950a2d7f908a340494e67e4 \
+    --hash=sha256:889f80ef92701b9dbb224e49ec87c645ce5df3fa2cc548664eb8a25e03127a98 \
+    --hash=sha256:8d57ca8095a641b8237d5b079147646153d22552f1c637fd3ba7f4b0b29167a8 \
+    --hash=sha256:8dd28b3e155b80f4d54beb40a441d366adcfe740969820caf156c019fb5c7ec4 \
+    --hash=sha256:9316dc65bed1684c9a98ee68759ceaed29d229e985297003e494aa825ebb0281 \
+    --hash=sha256:a198f10c4d1b1375d7687bc25294306e551bf1abfa4eace6650070a5c1ae2744 \
+    --hash=sha256:a38aa0308e754b0e3c67e344754dff64999ff9b513e691d0e786265c93583c69 \
+    --hash=sha256:a92ef1a44547e894e2a17d24e7557a5e85a9e1d0048b0b5e7541f76c5032cb13 \
+    --hash=sha256:ac065718db92ca818f8d6141b5f66369833d4a80a9d74435a268c52bdfa73140 \
+    --hash=sha256:b82ebccc8c8a36f2094e969560a1b836758481f3dc360ce9a3277c65f374285e \
+    --hash=sha256:c954d2250168d28797dd4e3ac5cf812a406cd5a92674ee4c8f123c889786aa8e \
+    --hash=sha256:cb55c73c5f4408779d0cf3eef9f762b9c9f147a77de7b258bef0a5628adc85cc \
+    --hash=sha256:cd45e1dc79c835ce60f7404ec8119f2eb06d38b1deba146f07ced3bbc44505ff \
+    --hash=sha256:d3f5614314d758649ab2ab3a62d4f2004c825922f9e370b29416484086b264ec \
+    --hash=sha256:d920f33822747519673ee656a4b6ac33e382eca9d331c87770faa3eef562aeb2 \
+    --hash=sha256:db2b95f9de79181805df90bedc5a5ab4c165e6ec3fe99f970d0e302f384ad222 \
+    --hash=sha256:e59e304978767a54663af13c07b3d1af22ddee3bb2fb0618ca1593e4f593a106 \
+    --hash=sha256:e85e99945e688e32d5a35c1ff38ed0b3f41f43fad8df0bdf79f72b2ba7bc5272 \
+    --hash=sha256:ece47d672db52ac607a3d9599a9d48dcb2f2f735c6c2d1f34130085bb12b112a \
+    --hash=sha256:f4039b9cbc3048b2416cc57ab3bda989a6fcf9b36cf8937f01a6e731b64f80d7
+twisted==24.11.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:695d0556d5ec579dcc464d2856b634880ed1319f45b10d19043f2b57eb0115b5 \
+    --hash=sha256:fe403076c71f04d5d2d789a755b687c5637ec3bcd3b2b8252d76f2ba65f54261
+txaio==23.1.1 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:aaea42f8aad50e0ecfb976130ada140797e9dcb85fad2cf72b0f37f8cefcb490 \
+    --hash=sha256:f9a9216e976e5e3246dfd112ad7ad55ca915606b60b84a757ac769bd404ff704
+typing-extensions==4.12.2 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:04e5ca0351e0f3f85c6853954072df659d0d13fac324d0072316b67d7794700d \
+    --hash=sha256:1a7ead55c7e559dd4dee8856e3a88b41225abfe1ce8df57b7c13915fe121ffb8
+tzdata==2025.1 ; python_version >= "3.10" and python_version < "4.0" and sys_platform == "win32" \
+    --hash=sha256:24894909e88cdb28bd1636c6887801df64cb485bd593f2fd83ef29075a81d694 \
+    --hash=sha256:7e127113816800496f027041c570f50bcd464a020098a3b6b199517772303639
+unicorn==2.1.1 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:06df71752e147107680df7f841360a70cc1ae1f69438dbdc3a87e642fd21eb49 \
+    --hash=sha256:13e7fb410a4258522dbc5482d24949f1a89d4f113bc7fd30d523cdad1e543c3f \
+    --hash=sha256:2163d6b2803fbb2f4df79e845ecccc2803c712c200cf8910548d60fd0cbbb18e \
+    --hash=sha256:8839c02de1914acb9decb291f89eefb2944148460cf5f09a9a1cde920e32e509 \
+    --hash=sha256:8b890ad01ec49bae78b6419dbd11caae18c5398a26086c4b0800943efb15963c \
+    --hash=sha256:8e995ed3abd508258e8864ec1b002c3e4992ae5dc98c6ac2420935b7c04a0c6b \
+    --hash=sha256:904f4146b09cd708fdf6b90ebb48d30eaa0ba339382964d4d08c0b9399cf4ba3 \
+    --hash=sha256:a52470664a6fe76f735943de5c90865ef049e23522dd1751306fefe2384e5dba \
+    --hash=sha256:b0f139adb1c9406f57d25cab96ad7a6d3cbb9119f5480ebecedd4f5d7cb024fb \
+    --hash=sha256:d4a08dbf222c5481bc909a9aa404b79874f6e67f5ba7c47036d03c68ab7371a7 \
+    --hash=sha256:f0ebcfaba67ef0ebcd05ee3560268f1c6f683bdd08ff496888741a163d29735d
+urllib3==2.6.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:c90f7a39f716c572c4e3e58509581ebd83f9b59cced005b7db7ad2d22b0db99f \
+    --hash=sha256:cb9bcef5a4b345d5da5d145dc3e30834f58e8018828cbc724d30b4cb7d4d49f1
+uvicorn==0.18.3 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:0abd429ebb41e604ed8d2be6c60530de3408f250e8d2d84967d85ba9e86fe3af \
+    --hash=sha256:9a66e7c42a2a95222f76ec24a4b754c158261c4696e683b9dadc72b590e0311b
+uvloop==0.21.0 ; python_version >= "3.10" and python_version < "4.0" and sys_platform != "win32" and sys_platform != "cygwin" and platform_python_implementation != "PyPy" \
+    --hash=sha256:0878c2640cf341b269b7e128b1a5fed890adc4455513ca710d77d5e93aa6d6a0 \
+    --hash=sha256:10d66943def5fcb6e7b37310eb6b5639fd2ccbc38df1177262b0640c3ca68c1f \
+    --hash=sha256:10da8046cc4a8f12c91a1c39d1dd1585c41162a15caaef165c2174db9ef18bdc \
+    --hash=sha256:17df489689befc72c39a08359efac29bbee8eee5209650d4b9f34df73d22e414 \
+    --hash=sha256:183aef7c8730e54c9a3ee3227464daed66e37ba13040bb3f350bc2ddc040f22f \
+    --hash=sha256:196274f2adb9689a289ad7d65700d37df0c0930fd8e4e743fa4834e850d7719d \
+    --hash=sha256:221f4f2a1f46032b403bf3be628011caf75428ee3cc204a22addf96f586b19fd \
+    --hash=sha256:2d1f581393673ce119355d56da84fe1dd9d2bb8b3d13ce792524e1607139feff \
+    --hash=sha256:359ec2c888397b9e592a889c4d72ba3d6befba8b2bb01743f72fffbde663b59c \
+    --hash=sha256:3bf12b0fda68447806a7ad847bfa591613177275d35b6724b1ee573faa3704e3 \
+    --hash=sha256:4509360fcc4c3bd2c70d87573ad472de40c13387f5fda8cb58350a1d7475e58d \
+    --hash=sha256:460def4412e473896ef179a1671b40c039c7012184b627898eea5072ef6f017a \
+    --hash=sha256:461d9ae6660fbbafedd07559c6a2e57cd553b34b0065b6550685f6653a98c1cb \
+    --hash=sha256:46923b0b5ee7fc0020bef24afe7836cb068f5050ca04caf6b487c513dc1a20b2 \
+    --hash=sha256:53e420a3afe22cdcf2a0f4846e377d16e718bc70103d7088a4f7623567ba5fb0 \
+    --hash=sha256:5ee4d4ef48036ff6e5cfffb09dd192c7a5027153948d85b8da7ff705065bacc6 \
+    --hash=sha256:67dd654b8ca23aed0a8e99010b4c34aca62f4b7fce88f39d452ed7622c94845c \
+    --hash=sha256:787ae31ad8a2856fc4e7c095341cccc7209bd657d0e71ad0dc2ea83c4a6fa8af \
+    --hash=sha256:86975dca1c773a2c9864f4c52c5a55631038e387b47eaf56210f873887b6c8dc \
+    --hash=sha256:87c43e0f13022b998eb9b973b5e97200c8b90823454d4bc06ab33829e09fb9bb \
+    --hash=sha256:88cb67cdbc0e483da00af0b2c3cdad4b7c61ceb1ee0f33fe00e09c81e3a6cb75 \
+    --hash=sha256:8a375441696e2eda1c43c44ccb66e04d61ceeffcd76e4929e527b7fa401b90fb \
+    --hash=sha256:a5c39f217ab3c663dc699c04cbd50c13813e31d917642d459fdcec07555cc553 \
+    --hash=sha256:b9fb766bb57b7388745d8bcc53a359b116b8a04c83a2288069809d2b3466c37e \
+    --hash=sha256:baa0e6291d91649c6ba4ed4b2f982f9fa165b5bbd50a9e203c416a2797bab3c6 \
+    --hash=sha256:baa4dcdbd9ae0a372f2167a207cd98c9f9a1ea1188a8a526431eef2f8116cc8d \
+    --hash=sha256:bc09f0ff191e61c2d592a752423c767b4ebb2986daa9ed62908e2b1b9a9ae206 \
+    --hash=sha256:bd53ecc9a0f3d87ab847503c2e1552b690362e005ab54e8a48ba97da3924c0dc \
+    --hash=sha256:bfd55dfcc2a512316e65f16e503e9e450cab148ef11df4e4e679b5e8253a5281 \
+    --hash=sha256:c097078b8031190c934ed0ebfee8cc5f9ba9642e6eb88322b9958b649750f72b \
+    --hash=sha256:c0f3fa6200b3108919f8bdabb9a7f87f20e7097ea3c543754cabc7d717d95cf8 \
+    --hash=sha256:e678ad6fe52af2c58d2ae3c73dc85524ba8abe637f134bf3564ed07f555c5e79 \
+    --hash=sha256:ec7e6b09a6fdded42403182ab6b832b71f4edaf7f37a9a0e371a01db5f0cb45f \
+    --hash=sha256:f0ce1b49560b1d2d8a2977e3ba4afb2414fb46b86a1b64056bc4ab929efdafbe \
+    --hash=sha256:f38b2e090258d051d68a5b14d1da7203a3c3677321cf32a95a6f4db4dd8b6f26 \
+    --hash=sha256:f3df876acd7ec037a3d005b3ab85a7e4110422e4d9c1571d4fc89b0fc41b6816 \
+    --hash=sha256:f7089d2dc73179ce5ac255bdf37c236a9f914b264825fdaacaded6990a7fb4c2
+viv-utils==0.8.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:4fd2d8849529d00dc5b7f736f581beeb79064ee094eb2dfd9f84877bb5a95c12
+vivisect==1.2.1 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:62eb383013318efcd42f2565e4ab5323ebb1fb6b2e8e9e7e432bd126743eccda \
+    --hash=sha256:cc15ab541b9be3cad8060ee4f420e680258fa4fcf7477f3f9ad5023353f73299
+watchfiles==1.0.4 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:02a526ee5b5a09e8168314c905fc545c9bc46509896ed282aeb5a8ba9bd6ca27 \
+    --hash=sha256:05d341c71f3d7098920f8551d4df47f7b57ac5b8dad56558064c3431bdfc0b74 \
+    --hash=sha256:076f293100db3b0b634514aa0d294b941daa85fc777f9c698adb1009e5aca0b1 \
+    --hash=sha256:0799ae68dfa95136dde7c472525700bd48777875a4abb2ee454e3ab18e9fc712 \
+    --hash=sha256:0986902677a1a5e6212d0c49b319aad9cc48da4bd967f86a11bde96ad9676ca1 \
+    --hash=sha256:0bc80d91ddaf95f70258cf78c471246846c1986bcc5fd33ccc4a1a67fcb40f9a \
+    --hash=sha256:13c2ce7b72026cfbca120d652f02c7750f33b4c9395d79c9790b27f014c8a5a2 \
+    --hash=sha256:1941b4e39de9b38b868a69b911df5e89dc43767feeda667b40ae032522b9b5f1 \
+    --hash=sha256:1eacd91daeb5158c598fe22d7ce66d60878b6294a86477a4715154990394c9b3 \
+    --hash=sha256:229e6ec880eca20e0ba2f7e2249c85bae1999d330161f45c78d160832e026ee2 \
+    --hash=sha256:22bb55a7c9e564e763ea06c7acea24fc5d2ee5dfc5dafc5cfbedfe58505e9f90 \
+    --hash=sha256:278aaa395f405972e9f523bd786ed59dfb61e4b827856be46a42130605fd0899 \
+    --hash=sha256:2a9f93f8439639dc244c4d2902abe35b0279102bca7bbcf119af964f51d53c19 \
+    --hash=sha256:308ac265c56f936636e3b0e3f59e059a40003c655228c131e1ad439957592303 \
+    --hash=sha256:31f1a379c9dcbb3f09cf6be1b7e83b67c0e9faabed0471556d9438a4a4e14202 \
+    --hash=sha256:32b026a6ab64245b584acf4931fe21842374da82372d5c039cba6bf99ef722f3 \
+    --hash=sha256:342622287b5604ddf0ed2d085f3a589099c9ae8b7331df3ae9845571586c4f3d \
+    --hash=sha256:39f4914548b818540ef21fd22447a63e7be6e24b43a70f7642d21f1e73371590 \
+    --hash=sha256:3f68d8e9d5a321163ddacebe97091000955a1b74cd43724e346056030b0bacee \
+    --hash=sha256:43b168bba889886b62edb0397cab5b6490ffb656ee2fcb22dec8bfeb371a9e12 \
+    --hash=sha256:47eb32ef8c729dbc4f4273baece89398a4d4b5d21a1493efea77a17059f4df8a \
+    --hash=sha256:4810ea2ae622add560f4aa50c92fef975e475f7ac4900ce5ff5547b2434642d8 \
+    --hash=sha256:4e997802d78cdb02623b5941830ab06f8860038faf344f0d288d325cc9c5d2ff \
+    --hash=sha256:4ebbeca9360c830766b9f0df3640b791be569d988f4be6c06d6fae41f187f105 \
+    --hash=sha256:4f8c4998506241dedf59613082d1c18b836e26ef2a4caecad0ec41e2a15e4226 \
+    --hash=sha256:55ccfd27c497b228581e2838d4386301227fc0cb47f5a12923ec2fe4f97b95af \
+    --hash=sha256:5717021b199e8353782dce03bd8a8f64438832b84e2885c4a645f9723bf656d9 \
+    --hash=sha256:5c11ea22304d17d4385067588123658e9f23159225a27b983f343fcffc3e796a \
+    --hash=sha256:5e0227b8ed9074c6172cf55d85b5670199c99ab11fd27d2c473aa30aec67ee42 \
+    --hash=sha256:62c9953cf85529c05b24705639ffa390f78c26449e15ec34d5339e8108c7c407 \
+    --hash=sha256:6ba473efd11062d73e4f00c2b730255f9c1bdd73cd5f9fe5b5da8dbd4a717205 \
+    --hash=sha256:740d103cd01458f22462dedeb5a3382b7f2c57d07ff033fbc9465919e5e1d0f3 \
+    --hash=sha256:74cb3ca19a740be4caa18f238298b9d472c850f7b2ed89f396c00a4c97e2d9ff \
+    --hash=sha256:7b75fee5a16826cf5c46fe1c63116e4a156924d668c38b013e6276f2582230f0 \
+    --hash=sha256:7cf684aa9bba4cd95ecb62c822a56de54e3ae0598c1a7f2065d51e24637a3c5d \
+    --hash=sha256:8012bd820c380c3d3db8435e8cf7592260257b378b649154a7948a663b5f84e9 \
+    --hash=sha256:857f5fc3aa027ff5e57047da93f96e908a35fe602d24f5e5d8ce64bf1f2fc733 \
+    --hash=sha256:8b1f135238e75d075359cf506b27bf3f4ca12029c47d3e769d8593a2024ce161 \
+    --hash=sha256:8d0d0630930f5cd5af929040e0778cf676a46775753e442a3f60511f2409f48f \
+    --hash=sha256:90192cdc15ab7254caa7765a98132a5a41471cf739513cc9bcf7d2ffcc0ec7b2 \
+    --hash=sha256:95b42cac65beae3a362629950c444077d1b44f1790ea2772beaea95451c086bb \
+    --hash=sha256:9745a4210b59e218ce64c91deb599ae8775c8a9da4e95fb2ee6fe745fc87d01a \
+    --hash=sha256:9d1ef56b56ed7e8f312c934436dea93bfa3e7368adfcf3df4c0da6d4de959a1e \
+    --hash=sha256:9eea33ad8c418847dd296e61eb683cae1c63329b6d854aefcd412e12d94ee235 \
+    --hash=sha256:9f25d0ba0fe2b6d2c921cf587b2bf4c451860086534f40c384329fb96e2044d1 \
+    --hash=sha256:9fe37a2de80aa785d340f2980276b17ef697ab8db6019b07ee4fd28a8359d2f3 \
+    --hash=sha256:a38320582736922be8c865d46520c043bff350956dfc9fbaee3b2df4e1740a4b \
+    --hash=sha256:a462490e75e466edbb9fc4cd679b62187153b3ba804868452ef0577ec958f5ff \
+    --hash=sha256:a5ae5706058b27c74bac987d615105da17724172d5aaacc6c362a40599b6de43 \
+    --hash=sha256:aa216f87594f951c17511efe5912808dfcc4befa464ab17c98d387830ce07b60 \
+    --hash=sha256:ab0311bb2ffcd9f74b6c9de2dda1612c13c84b996d032cd74799adb656af4e8b \
+    --hash=sha256:ab594e75644421ae0a2484554832ca5895f8cab5ab62de30a1a57db460ce06c6 \
+    --hash=sha256:aee397456a29b492c20fda2d8961e1ffb266223625346ace14e4b6d861ba9c80 \
+    --hash=sha256:b045c800d55bc7e2cadd47f45a97c7b29f70f08a7c2fa13241905010a5493f94 \
+    --hash=sha256:b77d5622ac5cc91d21ae9c2b284b5d5c51085a0bdb7b518dba263d0af006132c \
+    --hash=sha256:ba5bb3073d9db37c64520681dd2650f8bd40902d991e7b4cfaeece3e32561d08 \
+    --hash=sha256:bdef5a1be32d0b07dcea3318a0be95d42c98ece24177820226b56276e06b63b0 \
+    --hash=sha256:c2acfa49dd0ad0bf2a9c0bb9a985af02e89345a7189be1efc6baa085e0f72d7c \
+    --hash=sha256:c7cce76c138a91e720d1df54014a047e680b652336e1b73b8e3ff3158e05061e \
+    --hash=sha256:cc27a65069bcabac4552f34fd2dce923ce3fcde0721a16e4fb1b466d63ec831f \
+    --hash=sha256:cdbd912a61543a36aef85e34f212e5d2486e7c53ebfdb70d1e0b060cc50dd0bf \
+    --hash=sha256:cdcc92daeae268de1acf5b7befcd6cfffd9a047098199056c72e4623f531de18 \
+    --hash=sha256:d3452c1ec703aa1c61e15dfe9d482543e4145e7c45a6b8566978fbb044265a21 \
+    --hash=sha256:d6097538b0ae5c1b88c3b55afa245a66793a8fec7ada6755322e465fb1a0e8cc \
+    --hash=sha256:d8d3d9203705b5797f0af7e7e5baa17c8588030aaadb7f6a86107b7247303817 \
+    --hash=sha256:e0611d244ce94d83f5b9aff441ad196c6e21b55f77f3c47608dcf651efe54c4a \
+    --hash=sha256:f12969a3765909cf5dc1e50b2436eb2c0e676a3c75773ab8cc3aa6175c16e902 \
+    --hash=sha256:f44a39aee3cbb9b825285ff979ab887a25c5d336e5ec3574f1506a4671556a8d \
+    --hash=sha256:f9ce064e81fe79faa925ff03b9f4c1a98b0bbb4a1b8c1b015afa93030cb21a49 \
+    --hash=sha256:fb2c46e275fbb9f0c92e7654b231543c7bbfa1df07cdc4b99fa73bedfde5c844 \
+    --hash=sha256:fc2eb5d14a8e0d5df7b36288979176fbb39672d45184fc4b1c004d7c3ce29317
+wcwidth==0.2.13 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:3da69048e4540d84af32131829ff948f1e022c1c6bdb8d6102117aac784f6859 \
+    --hash=sha256:72ea0c06399eb286d978fdedb6923a9eb47e1c486ce63e9b4e64fc18303972b5
+websockets==14.2 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:02687db35dbc7d25fd541a602b5f8e451a238ffa033030b172ff86a93cb5dc2a \
+    --hash=sha256:065ce275e7c4ffb42cb738dd6b20726ac26ac9ad0a2a48e33ca632351a737267 \
+    --hash=sha256:091ab63dfc8cea748cc22c1db2814eadb77ccbf82829bac6b2fbe3401d548eda \
+    --hash=sha256:0a52a6d7cf6938e04e9dceb949d35fbdf58ac14deea26e685ab6368e73744e4c \
+    --hash=sha256:0a6f3efd47ffd0d12080594f434faf1cd2549b31e54870b8470b28cc1d3817d9 \
+    --hash=sha256:0d8c3e2cdb38f31d8bd7d9d28908005f6fa9def3324edb9bf336d7e4266fd397 \
+    --hash=sha256:1979bee04af6a78608024bad6dfcc0cc930ce819f9e10342a29a05b5320355d0 \
+    --hash=sha256:1a5a20d5843886d34ff8c57424cc65a1deda4375729cbca4cb6b3353f3ce4142 \
+    --hash=sha256:1c9b6535c0e2cf8a6bf938064fb754aaceb1e6a4a51a80d884cd5db569886910 \
+    --hash=sha256:1f20522e624d7ffbdbe259c6b6a65d73c895045f76a93719aa10cd93b3de100c \
+    --hash=sha256:2066dc4cbcc19f32c12a5a0e8cc1b7ac734e5b64ac0a325ff8353451c4b15ef2 \
+    --hash=sha256:20e6dd0984d7ca3037afcb4494e48c74ffb51e8013cac71cf607fffe11df7205 \
+    --hash=sha256:22441c81a6748a53bfcb98951d58d1af0661ab47a536af08920d129b4d1c3473 \
+    --hash=sha256:2c6c0097a41968b2e2b54ed3424739aab0b762ca92af2379f152c1aef0187e1c \
+    --hash=sha256:2dddacad58e2614a24938a50b85969d56f88e620e3f897b7d80ac0d8a5800258 \
+    --hash=sha256:2e20c5f517e2163d76e2729104abc42639c41cf91f7b1839295be43302713661 \
+    --hash=sha256:34277a29f5303d54ec6468fb525d99c99938607bc96b8d72d675dee2b9f5bf1d \
+    --hash=sha256:3bdc8c692c866ce5fefcaf07d2b55c91d6922ac397e031ef9b774e5b9ea42166 \
+    --hash=sha256:3c1426c021c38cf92b453cdf371228d3430acd775edee6bac5a4d577efc72365 \
+    --hash=sha256:44bba1a956c2c9d268bdcdf234d5e5ff4c9b6dc3e300545cbe99af59dda9dcce \
+    --hash=sha256:4b27ece32f63150c268593d5fdb82819584831a83a3f5809b7521df0685cd5d8 \
+    --hash=sha256:4da98b72009836179bb596a92297b1a61bb5a830c0e483a7d0766d45070a08ad \
+    --hash=sha256:4daa0faea5424d8713142b33825fff03c736f781690d90652d2c8b053345b0e7 \
+    --hash=sha256:5059ed9c54945efb321f097084b4c7e52c246f2c869815876a69d1efc4ad6eb5 \
+    --hash=sha256:577a4cebf1ceaf0b65ffc42c54856214165fb8ceeba3935852fc33f6b0c55e7f \
+    --hash=sha256:647b573f7d3ada919fd60e64d533409a79dcf1ea21daeb4542d1d996519ca967 \
+    --hash=sha256:669c3e101c246aa85bc8534e495952e2ca208bd87994650b90a23d745902db9a \
+    --hash=sha256:6af6a4b26eea4fc06c6818a6b962a952441e0e39548b44773502761ded8cc1d4 \
+    --hash=sha256:6af99a38e49f66be5a64b1e890208ad026cda49355661549c507152113049990 \
+    --hash=sha256:6d7ff794c8b36bc402f2e07c0b2ceb4a2424147ed4785ff03e2a7af03711d60a \
+    --hash=sha256:6f1372e511c7409a542291bce92d6c83320e02c9cf392223272287ce55bc224e \
+    --hash=sha256:714a9b682deb4339d39ffa674f7b674230227d981a37d5d174a4a83e3978a610 \
+    --hash=sha256:75862126b3d2d505e895893e3deac0a9339ce750bd27b4ba515f008b5acf832d \
+    --hash=sha256:7a570862c325af2111343cc9b0257b7119b904823c675b22d4ac547163088d0d \
+    --hash=sha256:7a6ceec4ea84469f15cf15807a747e9efe57e369c384fa86e022b3bea679b79b \
+    --hash=sha256:7cd5706caec1686c5d233bc76243ff64b1c0dc445339bd538f30547e787c11fe \
+    --hash=sha256:80c8efa38957f20bba0117b48737993643204645e9ec45512579132508477cfc \
+    --hash=sha256:862e9967b46c07d4dcd2532e9e8e3c2825e004ffbf91a5ef9dde519ee2effb0b \
+    --hash=sha256:86cf1aaeca909bf6815ea714d5c5736c8d6dd3a13770e885aafe062ecbd04f1f \
+    --hash=sha256:89a71173caaf75fa71a09a5f614f450ba3ec84ad9fca47cb2422a860676716f0 \
+    --hash=sha256:9f05702e93203a6ff5226e21d9b40c037761b2cfb637187c9802c10f58e40473 \
+    --hash=sha256:a39d7eceeea35db85b85e1169011bb4321c32e673920ae9c1b6e0978590012a3 \
+    --hash=sha256:a3c4aa3428b904d5404a0ed85f3644d37e2cb25996b7f096d77caeb0e96a3b42 \
+    --hash=sha256:a9b0f6c3ba3b1240f602ebb3971d45b02cc12bd1845466dd783496b3b05783a5 \
+    --hash=sha256:a9e72fb63e5f3feacdcf5b4ff53199ec8c18d66e325c34ee4c551ca748623bbc \
+    --hash=sha256:ab95d357cd471df61873dadf66dd05dd4709cae001dd6342edafc8dc6382f307 \
+    --hash=sha256:ad1c1d02357b7665e700eca43a31d52814ad9ad9b89b58118bdabc365454b574 \
+    --hash=sha256:b374e8953ad477d17e4851cdc66d83fdc2db88d9e73abf755c94510ebddceb95 \
+    --hash=sha256:b439ea828c4ba99bb3176dc8d9b933392a2413c0f6b149fdcba48393f573377f \
+    --hash=sha256:b4c8cef610e8d7c70dea92e62b6814a8cd24fbd01d7103cc89308d2bfe1659ef \
+    --hash=sha256:bbe03eb853e17fd5b15448328b4ec7fb2407d45fb0245036d06a3af251f8e48f \
+    --hash=sha256:bc63cee8596a6ec84d9753fd0fcfa0452ee12f317afe4beae6b157f0070c6c7f \
+    --hash=sha256:c3ecadc7ce90accf39903815697917643f5b7cfb73c96702318a096c00aa71f5 \
+    --hash=sha256:c76193c1c044bd1e9b3316dcc34b174bbf9664598791e6fb606d8d29000e070c \
+    --hash=sha256:c93215fac5dadc63e51bcc6dceca72e72267c11def401d6668622b47675b097f \
+    --hash=sha256:cc45afb9c9b2dc0852d5c8b5321759cf825f82a31bfaf506b65bf4668c96f8b2 \
+    --hash=sha256:d7d9cafbccba46e768be8a8ad4635fa3eae1ffac4c6e7cb4eb276ba41297ed29 \
+    --hash=sha256:da85651270c6bfb630136423037dd4975199e5d4114cae6d3066641adcc9d1c7 \
+    --hash=sha256:dec254fcabc7bd488dab64846f588fc5b6fe0d78f641180030f8ea27b76d72c3 \
+    --hash=sha256:e3fbd68850c837e57373d95c8fe352203a512b6e49eaae4c2f4088ef8cf21980 \
+    --hash=sha256:e8179f95323b9ab1c11723e5d91a89403903f7b001828161b480a7810b334885 \
+    --hash=sha256:e9d0e53530ba7b8b5e389c02282f9d2aa47581514bd6049d3a7cffe1385cf5fe \
+    --hash=sha256:eabdb28b972f3729348e632ab08f2a7b616c7e53d5414c12108c29972e655b20 \
+    --hash=sha256:ec607328ce95a2f12b595f7ae4c5d71bf502212bddcea528290b35c286932b12 \
+    --hash=sha256:efd9b868d78b194790e6236d9cbc46d68aba4b75b22497eb4ab64fa640c3af56 \
+    --hash=sha256:f2e53c72052f2596fb792a7acd9704cbc549bf70fcde8a99e899311455974ca3 \
+    --hash=sha256:f390024a47d904613577df83ba700bd189eedc09c57af0a904e5c39624621270 \
+    --hash=sha256:f8a86a269759026d2bde227652b87be79f8a734e582debf64c9d302faa1e9f03 \
+    --hash=sha256:fd475a974d5352390baf865309fe37dec6831aafc3014ffac1eea99e84e83fc2
+werkzeug==3.1.4 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:2ad50fb9ed09cc3af22c54698351027ace879a0b60a3b5edf5730b2f7d876905 \
+    --hash=sha256:cd3cd98b1b92dc3b7b3995038826c68097dcb16f9baa63abe35f20eafeb9fe5e
+win-unicode-console==0.5 ; python_version >= "3.10" and python_version < "4.0" and platform_system == "Windows" and platform_python_implementation != "PyPy" \
+    --hash=sha256:d4142d4d56d46f449d6f00536a73625a871cba040f0bc1a2e305a04578f07d1e
+xmltodict==0.14.2 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:201e7c28bb210e374999d1dde6382923ab0ed1a8a5faeece48ab525b7810a553 \
+    --hash=sha256:20cc7d723ed729276e808f26fb6b3599f786cbc37e06c65e192ba77c40f20aac
+yara-python==4.5.1 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:024c477f182c26265fc447051e09099016e3562ac7f2255e05de2a506dd4d6dc \
+    --hash=sha256:0324175b06c440eb754b7ff3845b6eb426b5870bbbebbeae32f2e5281fd35860 \
+    --hash=sha256:038dcec1728233144ab0ab7ea4ed060f642c5f3152742c9ee71b493f571d6fd5 \
+    --hash=sha256:04c414472b0e3c4a2998ae247c0215bbb52c7808d09a7ca3899ef86ad1df7a7b \
+    --hash=sha256:0502328eeb18aa6e50af7e31df91b1dd23db0d47a0744383d90ff5cb38ff8d30 \
+    --hash=sha256:0ddedd9bfcfc37ffddceefd9dbf9bbba137c979b3effc9c1e9aeb08d77c6858c \
+    --hash=sha256:0fc8a450b662a0235ab7cee59ad2e366207c97bb99a80db9ffb68f865abd4ac9 \
+    --hash=sha256:146f2fbdeb043c32a6a7d08a4e37a0bb1c3c0a16d2ad97d957627f6158360569 \
+    --hash=sha256:153d459a2382a28d08edb84a74f27d8ef2cc8154f7822dadf744c5797e8e6f25 \
+    --hash=sha256:155ef1a9ca2aeeb57441fa99b6d8bd2cb67787f0d62b3c1670512e36c97ec02f \
+    --hash=sha256:2560dd27f63cdb395d9d77d6a74d1f0d6b7aa0ea18394f44d650e5abb6e377a3 \
+    --hash=sha256:264fdc2953c635131112a2cef6208b52d35731a6cc902cc62fe82508d9051afd \
+    --hash=sha256:2756fe1121fdd45b29d0d21fea66f762ef50d9e636bae8fd94217f0dc4c32a3a \
+    --hash=sha256:2add91c1f2c7c6bd82affffd864f7e7a96285c80b97906f81584be3b3b448b74 \
+    --hash=sha256:2c6a4e181de457a5de74982b82ab01c89a06bcd66820ca1671f22e984be1be78 \
+    --hash=sha256:3044359876921e26370f7b646d84a65681811df577be7d4d09c7de21b33d9130 \
+    --hash=sha256:3431154fac7f41b4657edad91632717b5f1bab5be4ed6ce28d6e17e441d5c947 \
+    --hash=sha256:37f6e85ee2fe458b52d4984bc2327cd33d69a10579dd708e29d6fbd371aceafe \
+    --hash=sha256:37ff0e6256d75521e5ac52b45671647bd6f6a7aa49259b13c19db424d9fdb795 \
+    --hash=sha256:382fd997999cfd83d7c2087f8b73c55dde8193473ff2a78643b5c69d3a39e084 \
+    --hash=sha256:389aa3a655c94885399e290bd74703273d7a1ecb33593b62801abee91efdfc86 \
+    --hash=sha256:3aaf259ed162d2de5db70ae1ba057307efdeb7f4697d74cc5b3313caa7647923 \
+    --hash=sha256:471e4070bf7e3b9b132f1c0134d1172d9dae353b04f2fce9bc31431ae785595e \
+    --hash=sha256:49ad70b6b65ed1c591c3bfb3d5d6da0fc6a73b1f979604feead450f348ad67c4 \
+    --hash=sha256:4c1acc3fd1b4634a4b438b6129f3b52a306d40e44c7fd950e7154f147a12e4de \
+    --hash=sha256:4c2d81727e24c224b0003770f2548f2eb75d9a95d5aa03b65d5ccf8ab3112d8d \
+    --hash=sha256:4c7ac7c1ae5e25bd5bf67ce752ac82568c2cdc157c9af50ba28d7cbab4421175 \
+    --hash=sha256:4cc7d5220a488fa0470f7c7ea303d1174e3b7e88dc6eef539ab048c8590257a8 \
+    --hash=sha256:4f368d057e0865278444c948a65802f7c92008a1b59bf629bdc9efa1b0120a22 \
+    --hash=sha256:509ca2000c9f76c3304f9fdbb886b1d403231a6a76ec9b4aeb18c67ee8279917 \
+    --hash=sha256:52ab24422b021ae648be3de25090cbf9e6c6caa20488f498860d07f7be397930 \
+    --hash=sha256:59fd46cc8c5a77e5e4942c7e403ac738f5c64154dcbc67bd8c9af453d7bb2539 \
+    --hash=sha256:5a6a185d2ec8fbbffa89d0f7949b84f76860d0e3a74192825dbf53d6a5069b83 \
+    --hash=sha256:5c266ce1a9f6f783f565d0687a052e0a76c287495452a92d495809f8f6c32a44 \
+    --hash=sha256:6ccd73466d7ad1a50cd06f38fdb7a023fee87dd185d3fcf67cc5c55d82cc34dd \
+    --hash=sha256:6e8566034b9c24a12a8fd8b0ff580b078add7f9e9719e633ad1adcbb33be534a \
+    --hash=sha256:6e8e9eb5a49a70a013bf45e0ec97210b7cb124813271fddc666c3cfb1308a2d5 \
+    --hash=sha256:70eb3f84b6e57f7f52676ae9c11dccde2867f49bac6e9a042ef2d027a8afb9f1 \
+    --hash=sha256:721422a14d18a81d75397df51481f5b5f3ab8d0a5220087e5306570877cab4e4 \
+    --hash=sha256:77011bed905f3786755da7de7ba9082790db654a241e13746fa3fc325b9ad966 \
+    --hash=sha256:7ae8411ae68a9f8911781bdc4393fc21ab48372ed3605c64265d08d57394ff5f \
+    --hash=sha256:7c92219bf91caea277bc2736df70dda3709834c297a4a5906f1d9a46cd03579a \
+    --hash=sha256:7d5dc091235ded00b30f04a51d70e08352e44976122f8d45e63d25e96eae27d9 \
+    --hash=sha256:7eb27c1cd2f6f93f68e23e676ede28357c1fc8b9ec7deefe86f2cfef4abd877c \
+    --hash=sha256:8765e387652f9354ca705ea8692e5e24424f7c20aaec857b40c13b18fe7862ad \
+    --hash=sha256:8a073a26d1b081942fc741da8eeefe59c6fec5bf7f2adb3e80df1d73f57a7ea3 \
+    --hash=sha256:8c3935da45ce283e02a86c9120240524e352add64c5cbccd616885937801ac67 \
+    --hash=sha256:8e90cc9bee1340dec0e9dab95e056dec08e6ac67945ad20f537d65457845f2f1 \
+    --hash=sha256:90374acc38086447a668580a9aecceb11964f08deb05bfaced6f43e9e67955a1 \
+    --hash=sha256:90aa56a3e27fdc5751550fe136a8d815c55a1a1db025b28d1f7d146493751310 \
+    --hash=sha256:92af5596aa4af20d7f81260dc72b989dfd4b7672c5492f13e9b71fe2b24c936f \
+    --hash=sha256:934f08ca197a645977749ca1163262abcec9bdbcb54cd47ffb2452c3edc4c5e4 \
+    --hash=sha256:97d30a483d195e6b695f072086cf1234317a650727844bac7bf85cf98dd960a3 \
+    --hash=sha256:984f67c08f945acb78d2548aaf5ffa19d27288b48979eb0652dd3a89c7b7747b \
+    --hash=sha256:98b780fe880cb219b9a92957a1f9863e53908a2dd75483976265d256b3b69b84 \
+    --hash=sha256:9d21efeb69d83c48419beccda4aeb415c4c993387e6dee64d8eac4b33af8ac58 \
+    --hash=sha256:a1a3e6b610e7131353cfea80ba119db3e96f7ad7befcd9d5a51df8786c806403 \
+    --hash=sha256:a41992c45fcad39ad05016eafc3c3632b3a11ede2440ba9c1250c5e5d484687a \
+    --hash=sha256:a885ec2800b3ee8c4ba9e6634005e041afad33998d59fa6c76bea60c1bd9c73b \
+    --hash=sha256:aec3dda6b173c4be4d972058ee41fb019c866b82861f12a1ac2b01035cea34b9 \
+    --hash=sha256:b03d2ffe24a13d69d14b12517aac7a4ea5f0df41ac725f282ebdc729f4365a3d \
+    --hash=sha256:b8c8cfbdc33cbcf78afd6e11149e406dfe558bbd497ff0c9b001753545a326e7 \
+    --hash=sha256:bb65c17657b4cdbe5adee7a6e617ee05e214e8afdbc82b195885354a72a16476 \
+    --hash=sha256:bb767f5c9c67d0b5de4d916c92130303d02d07d5a96a160aa5d7aa6c45883b1f \
+    --hash=sha256:bc81d88d3fa54f2a019e716f715a18e0c2c7c03816fef926b07b4ab3ba698e69 \
+    --hash=sha256:c17d1555dbd99f4872ca289ee92b9630331def0df864f88ced1665efa3cabdac \
+    --hash=sha256:c27dd8bdf1bbd946a82d1717c3dcc2efa449abb04018d186dca6b412ed93eba6 \
+    --hash=sha256:cc08a46630373bf194dc560e422622d45a3cbefec334650a96777f4c5f31f637 \
+    --hash=sha256:cfae9eac6a65d25799aecd21cb43f3552a86552c57e90e85e03a1e95e100fb35 \
+    --hash=sha256:d64e300925d56b3cf7f430b3bf86e133b14aaf578cfe827c08aec8869b8375e9 \
+    --hash=sha256:da5848e64fdde37529e6ebd8e5778e4665a7dee8cdff2f347ec47a39b453f298 \
+    --hash=sha256:dac13dc77a5f21c119104ae4e6ad837589eace0505e9daf38af0bd2d4ccd7cfa \
+    --hash=sha256:df67822be9430066f76604421f79b8d1446d749d925376c82c3e7649064899e3 \
+    --hash=sha256:e14d43aba8a8d66268cd45ce534bb7b608ca08d97d4ffb9f0205ef5554e317fb \
+    --hash=sha256:ecd0fa98a66e58be6a1d679e8679fc39029a4afa66d5310943d9180b90e57baf \
+    --hash=sha256:edf490994334b00933f7bc37fdd255451f12db741b15c2917fceb31e11bb698d \
+    --hash=sha256:f23ea9893efd676eb2727e869b486d71e7cb7839789a36c80b726258365b39b6 \
+    --hash=sha256:f408668aab84a0f42b78784d948a69a99bf95300536edd4ab771bb4a06d92f50 \
+    --hash=sha256:f533848781f0e46e44eda77055eae4ec934cf56c1f473e787704f1a348e90094 \
+    --hash=sha256:ffb48e853f107f2e6e0e29a97ce1185e9cc7a15a6c860dc65eb8ec431d1b6d3e
+zope-event==5.0 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:2832e95014f4db26c47a13fdaef84cef2f4df37e66b59d8f1f4a8f319a632c26 \
+    --hash=sha256:bac440d8d9891b4068e2b5a2c5e2c9765a9df762944bda6955f96bb9b91e67cd
+zope-interface==7.2 ; python_version >= "3.10" and python_version < "4.0" \
+    --hash=sha256:033b3923b63474800b04cba480b70f6e6243a62208071fc148354f3f89cc01b7 \
+    --hash=sha256:05b910a5afe03256b58ab2ba6288960a2892dfeef01336dc4be6f1b9ed02ab0a \
+    --hash=sha256:086ee2f51eaef1e4a52bd7d3111a0404081dadae87f84c0ad4ce2649d4f708b7 \
+    --hash=sha256:0ef9e2f865721553c6f22a9ff97da0f0216c074bd02b25cf0d3af60ea4d6931d \
+    --hash=sha256:1090c60116b3da3bfdd0c03406e2f14a1ff53e5771aebe33fec1edc0a350175d \
+    --hash=sha256:144964649eba4c5e4410bb0ee290d338e78f179cdbfd15813de1a664e7649b3b \
+    --hash=sha256:15398c000c094b8855d7d74f4fdc9e73aa02d4d0d5c775acdef98cdb1119768d \
+    --hash=sha256:1909f52a00c8c3dcab6c4fad5d13de2285a4b3c7be063b239b8dc15ddfb73bd2 \
+    --hash=sha256:21328fcc9d5b80768bf051faa35ab98fb979080c18e6f84ab3f27ce703bce465 \
+    --hash=sha256:224b7b0314f919e751f2bca17d15aad00ddbb1eadf1cb0190fa8175edb7ede62 \
+    --hash=sha256:25e6a61dcb184453bb00eafa733169ab6d903e46f5c2ace4ad275386f9ab327a \
+    --hash=sha256:27f926f0dcb058211a3bb3e0e501c69759613b17a553788b2caeb991bed3b61d \
+    --hash=sha256:29caad142a2355ce7cfea48725aa8bcf0067e2b5cc63fcf5cd9f97ad12d6afb5 \
+    --hash=sha256:2ad9913fd858274db8dd867012ebe544ef18d218f6f7d1e3c3e6d98000f14b75 \
+    --hash=sha256:31d06db13a30303c08d61d5fb32154be51dfcbdb8438d2374ae27b4e069aac40 \
+    --hash=sha256:3e0350b51e88658d5ad126c6a57502b19d5f559f6cb0a628e3dc90442b53dd98 \
+    --hash=sha256:3f6771d1647b1fc543d37640b45c06b34832a943c80d1db214a37c31161a93f1 \
+    --hash=sha256:4893395d5dd2ba655c38ceb13014fd65667740f09fa5bb01caa1e6284e48c0cd \
+    --hash=sha256:52e446f9955195440e787596dccd1411f543743c359eeb26e9b2c02b077b0519 \
+    --hash=sha256:550f1c6588ecc368c9ce13c44a49b8d6b6f3ca7588873c679bd8fd88a1b557b6 \
+    --hash=sha256:72cd1790b48c16db85d51fbbd12d20949d7339ad84fd971427cf00d990c1f137 \
+    --hash=sha256:7bd449c306ba006c65799ea7912adbbfed071089461a19091a228998b82b1fdb \
+    --hash=sha256:7dc5016e0133c1a1ec212fc87a4f7e7e562054549a99c73c8896fa3a9e80cbc7 \
+    --hash=sha256:802176a9f99bd8cc276dcd3b8512808716492f6f557c11196d42e26c01a69a4c \
+    --hash=sha256:80ecf2451596f19fd607bb09953f426588fc1e79e93f5968ecf3367550396b22 \
+    --hash=sha256:8b49f1a3d1ee4cdaf5b32d2e738362c7f5e40ac8b46dd7d1a65e82a4872728fe \
+    --hash=sha256:8e7da17f53e25d1a3bde5da4601e026adc9e8071f9f6f936d0fe3fe84ace6d54 \
+    --hash=sha256:a102424e28c6b47c67923a1f337ede4a4c2bba3965b01cf707978a801fc7442c \
+    --hash=sha256:a19a6cc9c6ce4b1e7e3d319a473cf0ee989cbbe2b39201d7c19e214d2dfb80c7 \
+    --hash=sha256:a71a5b541078d0ebe373a81a3b7e71432c61d12e660f1d67896ca62d9628045b \
+    --hash=sha256:baf95683cde5bc7d0e12d8e7588a3eb754d7c4fa714548adcd96bdf90169f021 \
+    --hash=sha256:cab15ff4832580aa440dc9790b8a6128abd0b88b7ee4dd56abacbc52f212209d \
+    --hash=sha256:ce290e62229964715f1011c3dbeab7a4a1e4971fd6f31324c4519464473ef9f2 \
+    --hash=sha256:d3a8ffec2a50d8ec470143ea3d15c0c52d73df882eef92de7537e8ce13475e8a \
+    --hash=sha256:e204937f67b28d2dca73ca936d3039a144a081fc47a07598d44854ea2a106239 \
+    --hash=sha256:eb23f58a446a7f09db85eda09521a498e109f137b85fb278edb2e34841055398 \
+    --hash=sha256:f6dd02ec01f4468da0f234da9d9c8545c5412fef80bc590cc51d8dd084138a89
diff --git a/supervisor.conf b/supervisor.conf
deleted file mode 100644
index 28922f22c46..00000000000
--- a/supervisor.conf
+++ /dev/null
@@ -1,64 +0,0 @@
-[program:cuckoo]
-command=python3 cuckoo.py
-directory=/opt/CAPEv2/
-user=cape
-priority=200
-autostart=true
-autorestart=true
-stopasgroup=true
-stderr_logfile=/var/log/supervisor/cuckoo.err.log
-stdout_logfile=/var/log/supervisor/cuckoo.out.log
-
-[program:web]
-command=python3 manage.py runserver 0.0.0.0:8000 --insecure
-directory=/opt/CAPEv2/web
-user=cape
-priority=500
-autostart=true
-autorestart=true
-stopasgroup=true
-stderr_logfile=/var/log/supervisor/web.err.log
-stdout_logfile=/var/log/supervisor/web.out.log
-
-[program:process]
-command=python3 process.py -p7 auto
-user=cape
-priority=300
-directory=/opt/CAPEv2/utils
-autostart=true
-autorestart=true
-stopasgroup=true
-stderr_logfile=/var/log/supervisor/process.err.log
-stdout_logfile=/var/log/supervisor/process.out.log
-
-[program:rooter]
-command=python3 rooter.py -g cape
-directory=/opt/CAPEv2/utils
-user=root
-startsecs=10
-priority = 100
-autostart=true
-autorestart=true
-stopasgroup=true
-stderr_logfile=/var/log/supervisor/router.err.log
-stdout_logfile=/var/log/supervisor/router.out.log
-
-[group:CAPE]
-programs = rooter,web,cuckoo,process
-
-[program:suricata]
-command=bash -c "mkdir /var/run/suricata; chown cuckoo:cuckoo /var/run/suricata; LD_LIBRARY_PATH=/usr/local/lib /usr/bin/suricata -c /etc/suricata/suricata.yaml -s /etc/suricata/rules --unix-socket -k none --user cuckoo --group cuckoo"
-user=root
-autostart=true
-autorestart=true
-stopasgroup=true
-stderr_logfile=/var/log/supervisor/suricata.err.log
-stdout_logfile=/var/log/supervisor/suricata.out.log
-
-[program:socks5man]
-command=/usr/local/bin/socks5man verify --repeated
-autostart=false
-autorestart=true
-stopasgroup=true
-stderr_logfile=/var/log/supervisor/socks5man.err.log
-stdout_logfile=/var/log/supervisor/socks5man.out.log
diff --git a/systemd/README.md b/systemd/README.md
index 6c8f5569c6b..154cdd8576d 100644
--- a/systemd/README.md
+++ b/systemd/README.md
@@ -5,7 +5,7 @@ These files help run all the various parts of CAPE as systemd services, so that
 - `cape-rooter.service` - Runs `rooter.py`
 - `cape-processor.service` - Runs `process.py`
 - `cape.service` - Runs `cuckoo.py`
-- `cape-web.service` - Runs the Cuckoo web interface as a WSGI application using Gunicorn bound to `127.0.0.1:8000`
+- `cape-web.service` - Runs the Cuckoo web interface as a WSGI application using UWSGI/Gunicorn bound to `127.0.0.1:8000`
 
 ## Setup
 0. You need to edit the default values in systemd to not get `too many open files`
@@ -47,17 +47,14 @@ These files help run all the various parts of CAPE as systemd services, so that
     virtualenv /opt/CAPEv2/venv
     ```
 
-6. (optional) Install required Python packages inside the virtualenv
-    * dependencies now installed by https://github.com/doomedraven/Tools/blob/master/Sandbox/cape2.sh
-
-7. Edit configuration files in `/opt/CAPEv2/conf` as needed
-8. Return to your user
+6. Edit configuration files in `/opt/CAPEv2/conf` as needed
+7. Return to your user
 
     ```bash
     exit
     ```
 
-9. Install the `systemd` service unit configuration files(you need modify ExecStart= if you using virtualenv, just comment current one and uncomment another one)
+8. Install the `systemd` service unit configuration files(you need modify ExecStart= if you using virtualenv, just comment current one and uncomment another one)
 
     ```bash
     sudo cp /opt/CAPE/systemd/*.service /etc/systemd/system
diff --git a/systemd/cape-dist.service b/systemd/cape-dist.service
new file mode 100644
index 00000000000..0338e431104
--- /dev/null
+++ b/systemd/cape-dist.service
@@ -0,0 +1,15 @@
+[Unit]
+Description=CAPE distributed
+Documentation=https://github.com/kevoreilly/CAPEv2
+
+[Service]
+WorkingDirectory=/opt/CAPEv2/utils/
+ExecStart=/etc/poetry/bin/poetry run python dist.py -ef
+User=cape
+Group=cape
+Restart=always
+RestartSec=5m
+LimitNOFILE=100000
+
+[Install]
+WantedBy=multi-user.target
diff --git a/systemd/cape-fstab.service b/systemd/cape-fstab.service
new file mode 100644
index 00000000000..925a97f935c
--- /dev/null
+++ b/systemd/cape-fstab.service
@@ -0,0 +1,15 @@
+[Unit]
+Description=CAPE fstab utils
+Documentation=https://github.com/kevoreilly/CAPEv2
+
+[Service]
+WorkingDirectory=/opt/CAPEv2/utils/
+ExecStartPre=/etc/poetry/bin/poetry config cache-dir /opt/CAPEv2/.cache/pypoetry
+ExecStart=/etc/poetry/bin/poetry run python fstab.py -g cape
+User=root
+Group=root
+Restart=always
+RestartSec=5m
+
+[Install]
+WantedBy=multi-user.target
diff --git a/systemd/cape-processor.service b/systemd/cape-processor.service
index ded5288da50..efb27ece5c2 100644
--- a/systemd/cape-processor.service
+++ b/systemd/cape-processor.service
@@ -6,8 +6,7 @@ After=cape-rooter.service
 
 [Service]
 WorkingDirectory=/opt/CAPEv2/utils/
-ExecStart=/usr/bin/python3 process.py -p7 auto -pt 900
-#ExecStart=/opt/CAPE/venv/bin/python3 /opt/CAPE/utils/process.py -p7 auto
+ExecStart=/etc/poetry/bin/poetry run python process.py -p7 auto -pt 900
 User=cape
 Group=cape
 Restart=always
diff --git a/systemd/cape-rooter.service b/systemd/cape-rooter.service
index 47d2004b23a..ecf5e1253ec 100644
--- a/systemd/cape-rooter.service
+++ b/systemd/cape-rooter.service
@@ -6,7 +6,8 @@ After=syslog.target network.target
 
 [Service]
 WorkingDirectory=/opt/CAPEv2/utils/
-ExecStart=/usr/bin/python3 rooter.py -g cape
+ExecStartPre=/etc/poetry/bin/poetry config cache-dir /opt/CAPEv2/.cache/pypoetry
+ExecStart=/etc/poetry/bin/poetry run python rooter.py -g cape
 User=root
 Group=root
 Restart=always
diff --git a/systemd/cape-web.service b/systemd/cape-web.service
index cac34221158..71b817935d1 100644
--- a/systemd/cape-web.service
+++ b/systemd/cape-web.service
@@ -6,12 +6,13 @@ After=cape-rooter.service
 
 [Service]
 WorkingDirectory=/opt/CAPEv2/web
-ExecStart=/usr/bin/python3 manage.py runserver 0.0.0.0:8000
-#ExecStart=/opt/CAPEv2/venv/bin/gunicorn -b 127.0.0.1:8000 web.wsgi
+ExecStart=/etc/poetry/bin/poetry run python manage.py runserver_plus 0.0.0.0:8000 --traceback --keep-meta-shutdown
 User=cape
 Group=cape
 Restart=always
 RestartSec=5m
+# In case if you behind of proxy, set your proxy in /etc/environment and uncomment next line
+# EnvironmentFile=/etc/environment
 
 [Install]
 WantedBy=multi-user.target
diff --git a/systemd/cape.service b/systemd/cape.service
index 49097e801fb..2b1da435d16 100644
--- a/systemd/cape.service
+++ b/systemd/cape.service
@@ -6,12 +6,14 @@ After=cape-rooter.service
 
 [Service]
 WorkingDirectory=/opt/CAPEv2/
-ExecStart=/usr/bin/python3 cuckoo.py
-#ExecStart=/opt/CAPEv2/venv/bin/python3 /opt/CAPEv2/cuckoo.py
+ExecStart=/etc/poetry/bin/poetry run python cuckoo.py
 User=cape
 Group=cape
 Restart=always
 RestartSec=5m
+# send SIGKILL if analysis is still ongoing 4m after SIGTERM
+TimeoutStopSec=4m
 LimitNOFILE=100000
+
 [Install]
 WantedBy=multi-user.target
diff --git a/systemd/guac-web.service b/systemd/guac-web.service
new file mode 100644
index 00000000000..ea63e64fe07
--- /dev/null
+++ b/systemd/guac-web.service
@@ -0,0 +1,13 @@
+[Unit]
+Description=Guacamole ASGI app
+
+[Service]
+WorkingDirectory=/opt/CAPEv2/web
+ExecStart=/etc/poetry/bin/poetry run gunicorn --bind 127.0.0.1:8008 web.asgi -t 180 -w 4 -k uvicorn.workers.UvicornWorker --capture-output --enable-stdio-inheritance
+User=cape
+Group=cape
+Restart=always
+RestartSec=5m
+
+[Install]
+WantedBy=multi-user.target
diff --git a/systemd/guacd.service b/systemd/guacd.service
new file mode 100644
index 00000000000..07821d615df
--- /dev/null
+++ b/systemd/guacd.service
@@ -0,0 +1,30 @@
+# Licensed to the Apache Software Foundation (ASF) under one
+# or more contributor license agreements.  See the NOTICE file
+# distributed with this work for additional information
+# regarding copyright ownership.  The ASF licenses this file
+# to you under the Apache License, Version 2.0 (the
+# "License"); you may not use this file except in compliance
+# with the License.  You may obtain a copy of the License at
+#
+#   http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing,
+# software distributed under the License is distributed on an
+# "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+# KIND, either express or implied.  See the License for the
+# specific language governing permissions and limitations
+# under the License.
+
+[Unit]
+Description=Guacamole Server
+Documentation=man:guacd(8)
+After=network.target
+
+[Service]
+ExecStart=/usr/local/sbin/guacd -f
+Restart=on-abnormal
+User=cape
+Group=cape
+
+[Install]
+WantedBy=multi-user.target
diff --git a/systemd/suricata.service b/systemd/suricata.service
index 35e66e04668..7da05f9d6e2 100644
--- a/systemd/suricata.service
+++ b/systemd/suricata.service
@@ -18,6 +18,6 @@ PrivateTmp=no
 InaccessibleDirectories=/home /root
 ReadOnlyDirectories=/boot /usr /etc
 User=root
-
+Group=root
 [Install]
 WantedBy=multi-user.target
diff --git a/tests/abstracts_tests.py b/tests/abstracts_tests.py
deleted file mode 100644
index 9d2f923e59a..00000000000
--- a/tests/abstracts_tests.py
+++ /dev/null
@@ -1,58 +0,0 @@
-# Copyright (C) 2010-2015 Cuckoo Foundation.
-# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
-# See the file 'docs/LICENSE' for copying permission.
-
-from __future__ import absolute_import
-import os
-import tempfile
-from nose.tools import assert_equals, raises
-
-import lib.cuckoo.common.abstracts as abstracts
-from lib.cuckoo.common.config import Config
-
-
-class TestProcessing:
-    def setUp(self):
-        self.p = abstracts.Processing()
-
-    @raises(NotImplementedError)
-    def test_not_implemented_run(self):
-        self.p.run()
-
-
-class TestSignature(object):
-    def setUp(self):
-        self.s = abstracts.Signature()
-
-    @raises(NotImplementedError)
-    def test_not_implemented_run(self):
-        self.s.run()
-
-    def test_missing_key_domain(self):
-        """Test with domain key missing."""
-        self.s.results = {"network": {}}
-        assert_equals(None, self.s.check_domain("*"))
-
-
-class TestReport:
-    def setUp(self):
-        self.r = abstracts.Report()
-
-    def test_set_path(self):
-        dir = tempfile.mkdtemp()
-        rep_dir = os.path.join(dir, "reports")
-        self.r.set_path(dir)
-        assert os.path.exists(rep_dir)
-        os.rmdir(rep_dir)
-
-    def test_options_none(self):
-        assert_equals(None, self.r.options)
-
-    def test_set_options_assignment(self):
-        foo = {1: 2}
-        self.r.set_options(foo)
-        assert_equals(foo, self.r.options)
-
-    @raises(NotImplementedError)
-    def test_not_implemented_run(self):
-        self.r.run()
diff --git a/tests/colors_tests.py b/tests/colors_tests.py
deleted file mode 100644
index a7f157ecb28..00000000000
--- a/tests/colors_tests.py
+++ /dev/null
@@ -1,13 +0,0 @@
-# Copyright (C) 2010-2015 Cuckoo Foundation.
-# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
-# See the file 'docs/LICENSE' for copying permission.
-
-from __future__ import absolute_import
-from nose.tools import assert_equals
-
-from lib.cuckoo.common.colors import color
-
-
-def test_return_text():
-    """Test colorized text contains the input string."""
-    assert "foo" in color("foo", 11)
diff --git a/tests/config_tests.py b/tests/config_tests.py
deleted file mode 100644
index 7e99d3521f8..00000000000
--- a/tests/config_tests.py
+++ /dev/null
@@ -1,55 +0,0 @@
-# Copyright (C) 2010-2015 Cuckoo Foundation.
-# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
-# See the file 'docs/LICENSE' for copying permission.
-
-from __future__ import absolute_import
-import tempfile
-from nose.tools import assert_equals, raises
-
-from lib.cuckoo.common.config import Config
-from lib.cuckoo.common.exceptions import CuckooOperationalError
-
-
-class TestConfig:
-    CONF_EXAMPLE = """
-[cuckoo]
-debug = off
-analysis_timeout = 120
-critical_timeout = 600
-delete_original = off
-machine_manager = kvm
-use_sniffer = no
-tcpdump = /usr/sbin/tcpdump
-interface = vboxnet0
-"""
-
-    def setUp(self):
-        self.path = tempfile.mkstemp()[1]
-        self._load_conf(self.CONF_EXAMPLE)
-        self.c = Config(cfg=self.path)
-
-    def _load_conf(self, conf):
-        """Loads a configuration from a string.
-        @param conf: configuration string.
-        """
-        f = open(self.path, "w")
-        f.write(conf)
-        f.close()
-
-    def test_get_option_exist(self):
-        """Fetch an option of each type from default config file."""
-        assert_equals(self.c.get("cuckoo")["debug"], False)
-        assert_equals(self.c.get("cuckoo")["tcpdump"], "/usr/sbin/tcpdump")
-        assert_equals(self.c.get("cuckoo")["critical_timeout"], 600)
-
-    def test_config_file_not_found(self):
-        assert Config("foo")
-
-    @raises(CuckooOperationalError)
-    def test_get_option_not_found(self):
-        self.c.get("foo")
-
-    @raises(CuckooOperationalError)
-    def test_get_option_not_found_in_file_not_found(self):
-        self.c = Config("bar")
-        self.c.get("foo")
diff --git a/tests/conftest.py b/tests/conftest.py
new file mode 100644
index 00000000000..56f620c1d05
--- /dev/null
+++ b/tests/conftest.py
@@ -0,0 +1,109 @@
+import os
+import pathlib
+import tempfile
+
+import pytest
+
+import lib.cuckoo.common.config
+import lib.cuckoo.core.analysis_manager
+import lib.cuckoo.core.database
+from lib.cuckoo.common.config import ConfigMeta
+from lib.cuckoo.core.database import Database, init_database, reset_database_FOR_TESTING_ONLY
+
+
+@pytest.fixture
+def db():
+    reset_database_FOR_TESTING_ONLY()
+    try:
+        init_database(dsn="sqlite://")
+        retval = Database()
+        retval.engine.echo = True
+        yield retval
+    finally:
+        reset_database_FOR_TESTING_ONLY()
+
+
+@pytest.fixture
+def tmp_cuckoo_root(monkeypatch, tmp_path):
+    monkeypatch.setattr(lib.cuckoo.core.database, "CUCKOO_ROOT", str(tmp_path))
+    monkeypatch.setattr(lib.cuckoo.core.analysis_manager, "CUCKOO_ROOT", str(tmp_path))
+    yield tmp_path
+
+
+@pytest.fixture(autouse=True)
+def custom_conf_path(request, monkeypatch, tmp_cuckoo_root):
+    monkeypatch.setenv("CAPE_DISABLE_ROOT_CONFIGS", "1")
+    path: pathlib.Path = tmp_cuckoo_root / "custom" / "conf"
+    path.mkdir(mode=0o755, parents=True)
+    monkeypatch.setattr(lib.cuckoo.common.config, "CUSTOM_CONF_DIR", str(path))
+    ConfigMeta.refresh()
+    yield path
+
+
+@pytest.fixture
+def temp_pe32(tmp_path):
+    """Writes a temporary file that libmagic identifies as:
+    'MS-DOS executable PE32 executable Intel 80386, for MS Windows'
+    """
+    with tempfile.NamedTemporaryFile(mode="wb", delete=False, dir=tmp_path) as f:
+        pe_header = b"\x4d\x5a\x00\x00\x50\x45\x00\x00\x4c\x01\x01\x00\x6a\x2a\x58\xc3\x00\x00\x00\x00\x00\x00\x00\x00\x04\x00\x03\x01\x0b\x01\x08\x00\x04\x00\x00\x00\x00\x00\x00\x00\x04\x00\x00\x00\x0c\x00\x00\x00\x04\x00\x00\x00\x0c\x00\x00\x00\x00\x00\x40\x00\x04\x00\x00\x00\x04\x00\x00\x00\x04\x00\x00\x00\x00\x00\x00\x00\x04\x00\x00\x00\x00\x00\x00\x00\x68\x00\x00\x00\x64\x00\x00\x00\x00\x00\x00\x00\x02"
+        f.write(pe_header)
+    yield f.name
+    os.unlink(f.name)
+
+
+@pytest.fixture
+def temp_pe64(tmp_path):
+    """Writes a temporary file that libmagic identifies as:
+    'MS-DOS executable PE32+ executable x86-64, for MS Windows'
+    """
+    with tempfile.NamedTemporaryFile(mode="wb", delete=False, dir=tmp_path) as f:
+        pe_header = b"\x4d\x5a\x00\x00\x50\x45\x00\x00\x64\x86\x01\x00\x6a\x2a\x58\xc3\x00\x00\x00\x00\x00\x00\x00\x00\x04\x00\x03\x01\x0b\x01\x08\x00\x04\x00\x00\x00\x00\x00\x00\x00\x04\x00\x00\x00\x0c\x00\x00\x00\x04\x00\x00\x00\x0c\x00\x00\x00\x00\x00\x40\x00\x04\x00\x00\x00\x04\x00\x00\x00\x04\x00\x00\x00\x00\x00\x00\x00\x04\x00\x00\x00\x00\x00\x00\x00\x68\x00\x00\x00\x64\x00\x00\x00\x00\x00\x00\x00\x02"
+        f.write(pe_header)
+    yield f.name
+    os.unlink(f.name)
+
+
+@pytest.fixture
+def temp_pe_aarch64(tmp_path):
+    """Writes a temporary file that libmagic identifies as:
+    'MS-DOS executable PE32+ executable Aarch64, for MS Windows'
+    """
+    with tempfile.NamedTemporaryFile(mode="wb", delete=False, dir=tmp_path) as f:
+        pe_header = b"\x4d\x5a\x00\x00\x50\x45\x00\x00\x64\xaa\x01\x00\x6a\x2a\x58\xc3\x00\x00\x00\x00\x00\x00\x00\x00\x04\x00\x03\x01\x0b\x01\x08\x00\x04\x00\x00\x00\x00\x00\x00\x00\x04\x00\x00\x00\x0c\x00\x00\x00\x04\x00\x00\x00\x0c\x00\x00\x00\x00\x00\x40\x00\x04\x00\x00\x00\x04\x00\x00\x00\x04\x00\x00\x00\x00\x00\x00\x00\x04\x00\x00\x00\x00\x00\x00\x00\x68\x00\x00\x00\x64\x00\x00\x00\x00\x00\x00\x00\x02"
+        f.write(pe_header)
+    yield f.name
+    os.unlink(f.name)
+
+
+@pytest.fixture
+def temp_elf32(tmp_path):
+    """Writes a temporary file that libmagic identifies as:
+    'ELF 32-bit LSB'
+    """
+    with tempfile.NamedTemporaryFile(mode="wb", delete=False, dir=tmp_path) as f:
+        f.write(b"\x7f\x45\x4c\x46\x01\x01\x01")
+    yield f.name
+    os.unlink(f.name)
+
+
+@pytest.fixture
+def temp_elf64(tmp_path):
+    """Writes a temporary file that libmagic identifies as:
+    'ELF 64-bit LSB'
+    """
+    with tempfile.NamedTemporaryFile(mode="wb", delete=False, dir=tmp_path) as f:
+        f.write(b"\x7f\x45\x4c\x46\x02\x01\x01")
+    yield f.name
+    os.unlink(f.name)
+
+
+@pytest.fixture
+def temp_macho_arm64(tmp_path):
+    """Writes a temporary file that libmagic identifies as:
+    'Mach-O 64-bit arm64 executable'
+    """
+    with tempfile.NamedTemporaryFile(mode="wb", delete=False, dir=tmp_path) as f:
+        f.write(b"\xcf\xfa\xed\xfe\x0c\x00\x00\x01\x00\x00\x00\x00\x02\x00\x00\x00")
+    yield f.name
+    os.unlink(f.name)
diff --git a/tests/data b/tests/data
new file mode 160000
index 00000000000..7c38432d1cc
--- /dev/null
+++ b/tests/data
@@ -0,0 +1 @@
+Subproject commit 7c38432d1cceb6231766227ef45b1321315d3aaf
diff --git a/tests/database_tests.py b/tests/database_tests.py
deleted file mode 100644
index 32333ddf42f..00000000000
--- a/tests/database_tests.py
+++ /dev/null
@@ -1,35 +0,0 @@
-# Copyright (C) 2010-2015 Cuckoo Foundation.
-# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
-# See the file 'docs/LICENSE' for copying permission.
-
-from __future__ import absolute_import
-import tempfile
-
-from sqlalchemy.exc import OperationalError
-from nose.tools import assert_equal, raises
-
-from lib.cuckoo.core.database import Database, Sample, Task
-
-
-class TestDropDatabase:
-    """Tests database creation, adding a couple of tasks and dropping the db."""
-
-    def setUp(self):
-        self.d = Database(dsn="sqlite://")
-
-    # When dropping a db, any other query raises a (OperationalError) no such table.
-    @raises(OperationalError)
-    def test_drop(self):
-        # Add task.
-        sample_path = tempfile.mkstemp()[1]
-        self.d.add_path(sample_path)
-        session = self.d.Session()
-        assert_equal(session.query(Sample).count(), 1)
-        assert_equal(session.query(Task).count(), 1)
-        # Add url.
-        self.d.add_url("http://foo.bar")
-        assert_equal(session.query(Sample).count(), 1)
-        assert_equal(session.query(Task).count(), 2)
-        # Drop.
-        self.d.drop()
-        assert_equal(session.query(Task).count(), 0)
diff --git a/utils/email_test.py b/tests/email_test.py
similarity index 77%
rename from utils/email_test.py
rename to tests/email_test.py
index 05b64f9ea23..a28ee2f7713 100644
--- a/utils/email_test.py
+++ b/tests/email_test.py
@@ -1,14 +1,13 @@
-from __future__ import absolute_import
-from __future__ import print_function
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
 import os
 import sys
-import smtplib
-import logging
-from email.MIMEMultipart import MIMEMultipart
-from email.MIMEBase import MIMEBase
-from email import Encoders
-
 from datetime import datetime
+from email import encoders
+from email.mime.base import MIMEBase
+from email.mime.multipart import MIMEMultipart
 
 # Cuckoo root
 sys.path.append(os.path.join(os.path.abspath(os.path.dirname(__file__)), ".."))
@@ -25,9 +24,10 @@
     msg["To"] = email_config.email["to"]
     part = MIMEBase("application", "octet-stream")
     part.set_payload(data)
-    Encoders.encode_base64(part)
+    encoders.encode_base64(part)
     part.add_header("Content-Disposition", 'attachment; filename="cuckoo.eml"')
     msg.attach(part)
+    """
     print(email_config.email["server"], email_config.email["port"])
     print(email_config.email)
     server = smtplib.SMTP_SSL(email_config.email["server"], int(email_config.email["port"]))
@@ -35,6 +35,7 @@
     server.set_debuglevel(1)
     server.sendmail(email_config.email["to"], email_config.email["to"].split(" ,"), data)
     server.quit()
+    """
 
 # except Exception as e:
 #    logging.error(e)
diff --git a/tests/email_utils_tests.py b/tests/email_utils_tests.py
deleted file mode 100644
index bcab825314e..00000000000
--- a/tests/email_utils_tests.py
+++ /dev/null
@@ -1,374 +0,0 @@
-# Copyright (C) 2010-2015 Cuckoo Foundation.
-# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
-# See the file 'docs/LICENSE' for copying permission.
-
-from __future__ import absolute_import
-from nose.tools import assert_true, assert_false, assert_equal
-import email
-import tempfile
-
-from lib.cuckoo.common.email_utils import find_attachments_in_email
-
-
-class TestEmailUtils:
-    def test_find_attachments(self):
-        atts = find_attachments_in_email(SAMPLE_EMAIL, False)
-        assert_equal(len(atts), 1)
-        assert_false(any(t[1] == u"\u60e1\u610f\u8edf\u9ad4.doc" for t in atts))
-        assert_true(any(t[1] == u"<unknown>.doc" for t in atts))
-
-    def test_find_attachments_expand(self):
-        atts = find_attachments_in_email(SAMPLE_EMAIL, True)
-        assert_equal(len(atts), 3)
-        assert_true(any(t[1] == u"\u60e1\u610f\u8edf\u9ad4.doc" for t in atts))
-
-
-SAMPLE_EMAIL = """
-
-MIME-Version: 1.0
-Date: Sat, 6 Jun 2015 16:23:40 -0700
-Delivered-To: example@example.com
-Subject: test
-From: Example <example@example.com>
-To: Example <example@example.com>
-Content-Type: multipart/mixed; boundary=001a113df348f253900517e1b282
-
---001a113df348f253900517e1b282
-Content-Type: multipart/alternative; boundary=001a113df348f253550517e1b280
-
---001a113df348f253550517e1b280
-Content-Type: text/plain; charset=UTF-8
-
-test
-
---001a113df348f253550517e1b280
-Content-Type: text/html; charset=UTF-8
-
-<div dir="ltr">test
-</div>
-
---001a113df348f253550517e1b280--
---001a113df348f253900517e1b282
-Content-Type: text/plain; charset=US-ASCII; name="multipart.eml"
-Content-Disposition: attachment; filename="multipart.eml"
-Content-Transfer-Encoding: base64
-X-Attachment-Id: f_ialo2rvt0
-
-ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg
-ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg
-ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg
-ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg
-ICAgICAgICAgICAgICAgICAgICAgICAgICAgCk1JTUUtVmVyc2lvbjogMS4wCkRhdGU6IFNhdCwg
-NiBKdW4gMjAxNSAxNjoxOTowMCAtMDcwMApEZWxpdmVyZWQtVG86IGV4YW1wbGVAZXhhbXBsZS5j
-b20KU3ViamVjdDogdGVzdApGcm9tOiBFeGFtcGxlIDxleGFtcGxlQGV4YW1wbGUuY29tPgpUbzog
-RXhhbXBsZSA8ZXhhbXBsZUBleGFtcGxlLmNvbT4KQ29udGVudC1UeXBlOiBtdWx0aXBhcnQvbWl4
-ZWQ7IGJvdW5kYXJ5PTAwMWExMTM0YTQ0ZTM1ZmNmMTA1MTdlMWEyMTIKCi0tMDAxYTExMzRhNDRl
-MzVmY2YxMDUxN2UxYTIxMgpDb250ZW50LVR5cGU6IG11bHRpcGFydC9hbHRlcm5hdGl2ZTsgYm91
-bmRhcnk9MDAxYTExMzRhNDRlMzVmY2UwMDUxN2UxYTIxMAoKLS0wMDFhMTEzNGE0NGUzNWZjZTAw
-NTE3ZTFhMjEwCkNvbnRlbnQtVHlwZTogdGV4dC9wbGFpbjsgY2hhcnNldD1VVEYtOAoKdGVzdAoK
-LS0wMDFhMTEzNGE0NGUzNWZjZTAwNTE3ZTFhMjEwCkNvbnRlbnQtVHlwZTogdGV4dC9odG1sOyBj
-aGFyc2V0PVVURi04Cgo8ZGl2IGRpcj0ibHRyIj50ZXN0CjwvZGl2PgoKLS0wMDFhMTEzNGE0NGUz
-NWZjZTAwNTE3ZTFhMjEwLS0KLS0wMDFhMTEzNGE0NGUzNWZjZjEwNTE3ZTFhMjEyCkNvbnRlbnQt
-VHlwZTogYXBwbGljYXRpb24vbXN3b3JkOyBuYW1lPSI9P1VURi04P0I/NW9PaDVvU1A2THVmNmF1
-VUxtUnZZdz09Pz0iCkNvbnRlbnQtRGlzcG9zaXRpb246IGF0dGFjaG1lbnQ7IGZpbGVuYW1lPSI9
-P1VURi04P0I/NW9PaDVvU1A2THVmNmF1VUxtUnZZdz09Pz0iCkNvbnRlbnQtVHJhbnNmZXItRW5j
-b2Rpbmc6IGJhc2U2NApYLUF0dGFjaG1lbnQtSWQ6IGZfaWFsbnd0ZGMwCgo1b09oNW9TUDZMdWY2
-YXVVCi0tMDAxYTExMzRhNDRlMzVmY2YxMDUxN2UxYTIxMgpDb250ZW50LVR5cGU6IGltYWdlL3Bu
-ZzsgbmFtZT0iY3Vja29vLnBuZyIKQ29udGVudC1EaXNwb3NpdGlvbjogYXR0YWNobWVudDsgZmls
-ZW5hbWU9ImN1Y2tvby5wbmciCkNvbnRlbnQtVHJhbnNmZXItRW5jb2Rpbmc6IGJhc2U2NApYLUF0
-dGFjaG1lbnQtSWQ6IGZfaWFsbnd5cjIxCgppVkJPUncwS0dnb0FBQUFOU1VoRVVnQUFBUmNBQUFC
-YUNBWUFBQUNTWWhMU0FBQUFDWEJJV1hNQUFBc1RBQUFMRXdFQW1wd1lBQUFLClQybERRMUJRYUc5
-MGIzTm9iM0FnU1VORElIQnliMlpwYkdVQUFIamFuVk5uVkZQcEZqMzMzdlJDUzRpQWxFdHZVaFVJ
-SUZKQ2k0QVUKa1NZcUlRa1FTb2dob2RrVlVjRVJSVVVFRzhpZ2lBT09qb0NNRlZFc0RJb0syQWZr
-SWFLT2c2T0lpc3I3NFh1amE5YTg5K2JOL3JYWApQdWVzODUyenp3ZkFDQXlXU0ROUk5ZQU1xVUll
-RWVDRHg4VEc0ZVF1UUlFS0pIQUFFQWl6WkNGei9TTUJBUGgrUER3cklzQUh2Z0FCCmVOTUxDQURB
-VFp2QU1CeUgvdy9xUXBsY0FZQ0VBY0Iwa1RoTENJQVVBRUI2amtLbUFFQkdBWUNkbUNaVEFLQUVB
-R0RMWTJMakFGQXQKQUdBbmYrYlRBSUNkK0psN0FRQmJsQ0VWQWFDUkFDQVRaWWhFQUdnN0FLelBW
-b3BGQUZnd0FCUm1TOFE1QU5ndEFEQkpWMlpJQUxDMwpBTURPRUF1eUFBZ01BREJSaUlVcEFBUjdB
-R0RJSXlONEFJU1pBQlJHOGxjODhTdXVFT2NxQUFCNG1iSTh1U1E1UllGYkNDMXhCMWRYCkxoNG96
-a2tYS3hRMllRSmhta0F1d25tWkdUS0JOQS9nODh3QUFLQ1JGUkhnZy9QOWVNNE9yczdPTm82MkRs
-OHQ2cjhHL3lKaVl1UCsKNWMrcmNFQUFBT0YwZnRIK0xDK3pHb0E3Qm9CdC9xSWw3Z1JvWGd1Z2Rm
-ZUxacklQUUxVQW9PbmFWL053K0g0OFBFV2hrTG5aMmVYawo1TmhLeEVKYlljcFhmZjVud2wvQVYv
-MXMrWDQ4L1BmMTRMN2lKSUV5WFlGSEJQamd3c3owVEtVY3o1SUpoR0xjNW85SC9MY0wvL3dkCjB5
-TEVTV0s1V0NvVTQxRVNjWTVFbW96ek1xVWlpVUtTS2NVbDB2OWs0dDhzK3dNKzN6VUFzR28rQVh1
-UkxhaGRZd1AyU3ljUVdIVEEKNHZjQUFQSzdiOEhVS0FnRGdHaUQ0YzkzLys4Ly9VZWdKUUNBWmtt
-U2NRQUFYa1FrTGxUS3N6L0hDQUFBUktDQktyQkJHL1RCR0N6QQpCaHpCQmR6QkMveGdOb1JDSk1U
-Q1FoQkNDbVNBSEhKZ0theUNRaWlHemJBZEttQXYxRUFkTk1CUmFJYVRjQTR1d2xXNERqMXdEL3Bo
-CkNKN0JLTHlCQ1FSQnlBZ1RZU0hhaUFGaWlsZ2pqZ2dYbVlYNEljRklCQktMSkNESmlCUlJJa3VS
-TlVneFVvcFVJRlZJSGZJOWNnSTUKaDF4R3VwRTd5QUF5Z3Z5R3ZFY3hsSUd5VVQzVURMVkR1YWcz
-R29SR29ndlFaSFF4bW84V29KdlFjclFhUFl3Mm9lZlFxMmdQMm84KwpROGN3d09nWUJ6UEViREF1
-eHNOQ3NUZ3NDWk5qeTdFaXJBeXJ4aHF3VnF3RHU0bjFZOCt4ZHdRU2dVWEFDVFlFZDBJZ1lSNUJT
-RmhNCldFN1lTS2dnSENRMEVkb0pOd2tEaEZIQ0p5S1RxRXUwSnJvUitjUVlZakl4aDFoSUxDUFdF
-bzhUTHhCN2lFUEVOeVFTaVVNeUo3bVEKQWtteHBGVFNFdEpHMG01U0kra3NxWnMwU0Jvams4bmFa
-R3V5QnptVUxDQXJ5SVhrbmVURDVEUGtHK1FoOGxzS25XSkFjYVQ0VStJbwpVc3BxU2hubEVPVTA1
-UVpsbURKQlZhT2FVdDJvb1ZRUk5ZOWFRcTJodGxLdlVZZW9FelIxbWpuTmd4WkpTNld0b3BYVEdt
-Z1hhUGRwCnIraDB1aEhkbFI1T2w5Qlgwc3ZwUitpWDZBUDBkd3dOaGhXRHg0aG5LQm1iR0FjWVp4
-bDNHSytZVEtZWjA0c1p4MVF3TnpIcm1PZVoKRDVsdlZWZ3F0aXA4RlpIS0NwVktsU2FWR3lvdlZL
-bXFwcXJlcWd0VjgxWExWSStwWGxOOXJrWlZNMVBqcVFuVWxxdFZxcDFRNjFNYgpVMmVwTzZpSHFt
-ZW9iMVEvcEg1Wi9Za0dXY05NdzA5RHBGR2dzVi9qdk1ZZ0MyTVpzM2dzSVdzTnE0WjFnVFhFSnJI
-TjJYeDJLcnVZCi9SMjdpejJxcWFFNVF6TktNMWV6VXZPVVpqOEg0NWh4K0p4MFRnbm5LS2VYODM2
-SzNoVHZLZUlwRzZZMFRMa3haVnhycXBhWGxsaXIKU0t0UnEwZnJ2VGF1N2FlZHByMUZ1MW43Z1E1
-Qngwb25YQ2RIWjQvT0JaM25VOWxUM2FjS3B4Wk5QVHIxcmk2cWE2VWJvYnRFZDc5dQpwKzZZbnI1
-ZWdKNU1iNmZlZWIzbitoeDlMLzFVL1czNnAvVkhERmdHc3d3a0J0c016aGc4eFRWeGJ6d2RMOGZi
-OFZGRFhjTkFRNlZoCmxXR1g0WVNSdWRFOG85VkdqVVlQakduR1hPTWs0MjNHYmNhakpnWW1JU1pM
-VGVwTjdwcFNUYm1tS2FZN1REdE14ODNNemFMTjFwazEKbXoweDF6TG5tK2ViMTV2ZnQyQmFlRm9z
-dHFpMnVHVkpzdVJhcGxudXRyeHVoVm81V2FWWVZWcGRzMGF0bmEwbDFydXR1NmNScDdsTwprMDZy
-bnRabnc3RHh0c20ycWJjWnNPWFlCdHV1dG0yMmZXRm5ZaGRudDhXdXcrNlR2Wk45dW4yTi9UMEhE
-WWZaRHFzZFdoMStjN1J5CkZEcFdPdDZhenB6dVAzM0Y5SmJwTDJkWXp4RFAyRFBqdGhQTEtjUnBu
-Vk9iMDBkbkYyZTVjNFB6aUl1SlM0TExMcGMrTHBzYnh0M0kKdmVSS2RQVnhYZUY2MHZXZG03T2J3
-dTJvMjYvdU51NXA3b2Zjbjh3MG55bWVXVE56ME1QSVErQlI1ZEUvQzUrVk1HdmZySDVQUTArQgpa
-N1huSXk5akw1RlhyZGV3dDZWM3F2ZGg3eGMrOWo1eW4rTSs0enczM2pMZVdWL01OOEMzeUxmTFQ4
-TnZubCtGMzBOL0kvOWsvM3IvCjBRQ25nQ1VCWndPSmdVR0JXd0w3K0hwOEliK09QenJiWmZheTJl
-MUJqS0M1UVJWQmo0S3RndVhCclNGb3lPeVFyU0gzNTVqT2tjNXAKRG9WUWZ1alcwQWRoNW1HTHcz
-NE1KNFdIaFZlR1A0NXdpRmdhMFRHWE5YZlIzRU56MzBUNlJKWkUzcHRuTVU4NXJ5MUtOU28rcWk1
-cQpQTm8zdWpTNlA4WXVabG5NMVZpZFdFbHNTeHc1TGlxdU5tNXN2dC84N2ZPSDRwM2lDK043RjVn
-dnlGMXdlYUhPd3ZTRnB4YXBMaElzCk9wWkFUSWhPT0pUd1FSQXFxQmFNSmZJVGR5V09Dbm5DSGNK
-bklpL1JOdEdJMkVOY0toNU84a2dxVFhxUzdKRzhOWGtreFRPbExPVzUKaENlcGtMeE1EVXpkbXpx
-ZUZwcDJJRzB5UFRxOU1ZT1NrWkJ4UXFvaFRaTzJaK3BuNW1aMnk2eGxoYkwreFc2THR5OGVsUWZK
-YTdPUQpyQVZaTFFxMlFxYm9WRm9vMXlvSHNtZGxWMmEvelluS09aYXJuaXZON2N5enl0dVFONXp2
-bi8vdEVzSVM0WksycFlaTFZ5MGRXT2E5CnJHbzVzanh4ZWRzSzR4VUZLNFpXQnF3OHVJcTJLbTNW
-VDZ2dFY1ZXVmcjBtZWsxcmdWN0J5b0xCdFFGcjZ3dFZDdVdGZmV2YzErMWQKVDFndldkKzFZZnFH
-blJzK0ZZbUtyaFRiRjVjVmY5Z28zSGpsRzRkdnlyK1ozSlMwcWF2RXVXVFBadEptNmViZUxaNWJE
-cGFxbCthWApEbTROMmRxMERkOVd0TzMxOWtYYkw1Zk5LTnU3ZzdaRHVhTy9QTGk4WmFmSnpzMDdQ
-MVNrVlBSVStsUTI3dExkdFdIWCtHN1I3aHQ3CnZQWTA3TlhiVzd6My9UN0p2dHRWQVZWTjFXYlZa
-ZnRKKzdQM1A2NkpxdW40bHZ0dFhhMU9iWEh0eHdQU0EvMEhJdzYyMTduVTFSM1MKUFZSU2o5WXI2
-MGNPeHgrKy9wM3ZkeTBOTmcxVmpaekc0aU53UkhuazZmY0ozL2NlRFRyYWRveDdyT0VIMHg5MkhX
-Y2RMMnBDbXZLYQpScHRUbXZ0YllsdTZUOHcrMGRicTNucjhSOXNmRDV3MFBGbDVTdk5VeVduYTZZ
-TFRrMmZ5ejR5ZGxaMTlmaTc1M0dEYm9yWjc1MlBPCjMyb1BiKys2RUhUaDBrWC9pK2M3dkR2T1hQ
-SzRkUEt5MitVVFY3aFhtcTg2WDIzcWRPbzgvcFBUVDhlN25MdWFycmxjYTdudWVyMjEKZTJiMzZS
-dWVOODdkOUwxNThSYi8xdFdlT1QzZHZmTjZiL2ZGOS9YZkZ0MStjaWY5enN1NzJYY243cTI4VDd4
-ZjlFRHRRZGxEM1lmVgpQMXYrM05qdjNIOXF3SGVnODlIY1IvY0doWVBQL3BIMWp3OURCWStaajh1
-R0RZYnJuamcrT1RuaVAzTDk2ZnluUTg5a3p5YWVGLzZpCi9zdXVGeFl2ZnZqVjY5Zk8wWmpSb1pm
-eWw1Ty9iWHlsL2VyQTZ4bXYyOGJDeGg2K3lYZ3pNVjcwVnZ2dHdYZmNkeDN2bzk4UFQrUjgKSUg4
-by8yajVzZlZUMEtmN2t4bVRrLzhFQTVqei9HTXpMZHNBQUFBZ1kwaFNUUUFBZWlVQUFJQ0RBQUQ1
-L3dBQWdPa0FBSFV3QUFEcQpZQUFBT3BnQUFCZHZrbC9GUmdBQUkrMUpSRUZVZU5yc1hYbFlWZFg2
-ZnM5aG5nUkV4UUhJV1ZTVUlPczZab3FoZHRVeWg4eXJGVG1SClZwcVZ0OVRNOGVvMXIwMXFhZXBQ
-czJ1bHBtbVRVWFpOdzZ0NVRkVENIRUZKVUZSRUJtVTgzKytQOVczWUhNNDVleDg0eU5CNm4yYzkK
-S094cHJiMzN0Ny94L1FBSkNRa0oyekFBQ0Fid0xJQnZBZnpHUDd2THBaR1FrS2dvZkFGTWRIWjJU
-bXJldkRtNXVyb1NBR1Y4eU50NApBV2dNb0JXQVVBRE5BVGpMcFpPUWtMQ0d0Z0ErYmRLa0NTMWR1
-cFEyYnR4SURSczJWQVJMSVlDTkFQNEdZQzJBUXdEU0FHUUNTQUl3ClhTNmZoSVNFSmR3SDRPZUJB
-d2RTWEZ3YzdkMjdsN3AyN2FyV1dvb0FaS24rYno0dXlpV1VrTkR2ZC9pejRLOU5talJKWExwMEtl
-M2QKdTVkbXpacEZCb09CQUZEVHBrMHBQRHljQWdJQ3lJWmdJUUIvbDNhUmhJUnQzQTNBSGNBUk5n
-WHFNbndBVEJzeFlzU3p6enp6VEtOVApwMDVoL1BqeE9IdjJMQVlQSG96SXlFams1T1FnSVNFQktT
-a3AxbzZSRDJBUmdMZmtveU1oWVJsaEFOWUFlQWRBU3dER09qN2ZmbzBiCk4vN1B1blhyaWc4ZE9r
-U0RCdzhtZjM5L21qWnRHdTNhdFl0V3JGaEJEei84TUxWdDI1YmMzTnlzYVN0N0FmVC9FNnlWaEVT
-RnY5NXoKQVZ3Q3NCbEFzem8rM3lBQXEwYVBIbjMxM0xsenRHWExGb3FNaktUWTJGamF1M2N2clZt
-emh2cjA2VU9OR2pXeVpRTEZRemgyRzhuSApSMExDdWdtMGo4MmZqMWpRdElJSXM5WTErQUo0dVdY
-TGxrbmJ0bTB6WldabTBwdzVjMmpZc0dHMGE5Y3VXcmR1SFhYcjFvMjh2YjB0CkNSTVRnSnNBdGdC
-NENFQTkrZWhVTDR4c3U3dnhUM2NBTG5KWnFoWCtBTnJ6di9zRHVNQXZ6eGNBQWdITUJqQ3REZ3FW
-TVQ0K1BzY20KVDU1Y2ZQbnlaVXBPVHFaSmt5YlJ2SG56YVBQbXpSUVZGVVhPenM3bUFxVUlJc3o4
-RTRDL1ErU3pPTms2a1VFK1gzZjBxemlaYjVLQgp4MDBBQndEOEFDQmJMdEVkUlQwQXJ3UDRIY0F2
-QUhaQVpLR2VCVEFNd0F3QW5nQWU1WHZsQXFDZ0ZzKzNQb0RlenM3T3owWkVSUFJkCnVIQWhvcU9q
-c1cvZlBtemV2Qmt0V3JUQTZkT25zWDc5ZXZQOWJnQTREeUFPd09jQWZwYVBUczNEU0JzMjYvOEI4
-Sk5MZEVmeEJvQXoKQUtJQS9KZnZReTZBWndCc0FQQUhnQkFBUFFGTUJkQ3hGc3dwQWtDNDJlOENB
-RHdDWUZkd2NERE5uVHVYYnQyNlJVUkVPM2Jzb0hIagp4dEc0Y2VNb0pDVEUvSms4QzJBVGdJZWxo
-bDN6OFFoczV3WE1rWnJrSFVNLzlodDhEQkV5VlRzbVArUi8vd2ZBUXRaV1BxdmhmcGZXCkFCWkFa
-TWl1VUpsOEl3RHNNQnFOTkhUb1VOcS9mejhSRWQyNmRZdVdMVnRHUFhyMG9QYnQyNXMvaDBmNVdC
-SHlNYWs3d3VVTUFHKzUKVEZXT1FOWlVia01VMzZXaDFFbDVtb1VKc1grQkFIektKa1ZOUTBQV3Ft
-YXdxYUk4UjRzQURBV3dDMEJ4YUdnb3JWeTVrbTdmdmsxRQpSTW5KeVRScTFDank4dklxU1l6amNZ
-S1AxZFpSRnlpVDZHb092Tm5HejVGTFVXWG9BT0F4QUYwQkZQUEw2Y2wvTXdCb285cldsKy9GCkpn
-QVpWWFE5alFFMGhRamgrdk8xdUpsdFl3RGd5cWFKRjIvWG1JVmtjemJkRkJTeHR2SWNBSjhKRXla
-Z3lwUXBDQThYbHRMMzMzK1AKMmJObjQ5Q2hRK3JqWjdLMjh3bEV0Yk5FSGRSY1VpRHpCS29TYnV4
-bk9heHhIOHdqSkY5RE9Ib2RKZHhpQUN3SDhBMmJJT2NBWE9hWAovQlpFaHF0NkZMQWdMSE50OTk1
-N0w4MmZQNS9Dd3NMS1hYZFlXQmg5OHNrbkpiNlZLMWV1ME5TcFU2bEpreWJtMis0R2NMOThOUDRj
-CndxV2hYS1lxWGY5ZkFWeXpkZzk4Zkh5b1FZTUc1T2ZuWi82M0pQWkQySnZQWVFCd0w0QjVBSDdr
-ZTV4dGgzQXJNMEpDUW1qOCtQSDAKMVZkZlVWcGFHcVdtcGxLWExsMUsvdTdpNGtMVHBrMmpsSlFV
-VXJCejUwNEtEdzgzUDFZQmhJOHZvQ29YWEpwRkVuOFdESWJJYVRFQwpnTkZvUk11V0xSRVZGWVZ1
-M2JxaFRaczJhTlNvRVR3OFBHQXltZkRiYjc5aCt2VHBPSG55Sk5qOGVBVWlvVzRxZ0tzMnptTUUw
-SVQ5CkhpTWdvamRlNm5mTmFEVENhRFRDMDlNVHZyNis4UGIyaHRFb011Yno4dktRazVNRFYxZFgx
-SzlmSDhIQndRZ1BEMGYzN3QwUkVSRUIKZjM5L3VMdTdBd0RlZSs4OUhEOStIQURnNU9TRUZTdFc0
-S21ubm9LcnF5dXlzckt3Y09GQ3JGcTFDcm01dWVyclMrYzViR1BOck5waApZSHV3UHR0NFlRQWlX
-YzBMWVR2UUMvYlhGQ2o1SG5wL1g5RnJ0L2RZemhEWm1RMGg2a282UStTcHRHVjcxeGNpQ2E2Nk5C
-ZWp4bkNDCmR2alFpZjA4QVFCYThCd2orV2NMdnRlZXFKb0lsanV2WVJPSVpLd0lIcUhzUzZqSGZn
-WkhvUUZFTGdzWkRBYUtqSXlrVFpzMlVYWjIKTnBtanFLaW94UG01WWNNR0FrQzlldldpUng1NVJD
-Rksyc3pQdkp0cWJaVG5wUk9iWG1scVU4WmdNSkNQancrRmhZWFJ4SWtUYWUzYQp0YlIvLzM0NmYv
-NDhYYjkrblhKeWNpZzNONWR5YzNNcE16T1QwdFBUNmZyMTY1U1hsMGRGUlVWa01wbktYV2Q2ZWpy
-MTZOR2o1UGxwCjM3NTlpUmwwNXN3WkdqQmdnTG5EbGlEeVZlNllHYVNsdWJpeDFINEFRRytXd29F
-cVNWd0lrUnR3QlNJWktSNGlmZm8wdEpQQy9BQTgKeURlKzJJSkFNRUZrQTU2MFl6NHVMUGc2QWZE
-Z0JWV085UVBidDdiZ0Q1SFAwQmRBRDRnUVh3Qy9EQWFlNzAySUhJampyT3JHOC8vdgpWTVZzS0lB
-Qi9HK3lzbzBuUkFSaGo0Vy8xZU9QUWg4SW1zSjJMTlE4V09BVXMrMmZCaUNSNzZkeVQyOVg4dHFi
-QStqRzZ4c09VZGZpCnF4S0VCU2dsR3pyRTEzK1VmUktWUVdjV1pIajY2YWV4WXNVS21Fd201T1hs
-SVNVbEJkbloyY2pMeThQbHk1Y1JGeGVIOFBCd3hNVEUKSUNBZ0FCNGVIbmo5OWRjUkZSV0Y1Y3VY
-WS9YcTFZK2ZQMysrZTFGUjBVNStOb21kc3QwQTlGSi9kSXhHSTBKQ1FqQmd3QUNNSERrUwpQWHIw
-Z0t1clkyVG1wNTkraWdNSERwVDhmK3pZc2ZEdzhNQXZ2L3lDY2VQR0lTRWh3WHlYM3dHTUJmQy9t
-cUN0aEFKNGsxVkFlMnpECjJ4QjFHZjAwTkprd2lFUWRXOGQ2MXM2djRkOVJHa0kwSDJNMXZ1SVBB
-ZGhaQVZ2NElvQi9RRHVFNXdqTkpVVDVBbXVNc3hBUkVYUDAKaHNqdHlMZHpqamNCckdUTnBpSm9D
-dUJGRmxEMnJ1OGhBRSt5RUtvSWZDSHlWR2pFaUJGVVhGeE1IMy84TVkwZVBacWlvNk9wWDc5KwpG
-Qk1UUXgwN2RpUUExS0JCQXpwejVnd1ZGeGZUaGcwYmFPblNwV1UwaGt1WEx0R0NCUXZvdnZ2dVU3
-T3lsUnV0VzdlbVdiTm0wZm56CjU4blJ1SERoQWtWRVJKU2N5OC9QajlMVDArbmd3WVBVdW5WclM5
-ZHptais0TlFJakFaeXFxT09KeHkxMmd2bFpPVWQ3QUFrYSs0KzMKNDVxZlp1M0IwckZ5ZVU3V0hy
-NS9vRFMvb2FMalY3YXhxMHE0TklESXk5QzZqcE1zdU0wRjcwc1FxZHlWbVdNS3I3TTlwbElYMWtD
-bwprdU5qOW5uWWd4WUEzZ1pBN3U3dWxKcWFTa2VQSGkxejNFbVRKaEVSMFlJRkM4alB6NDkyNzk1
-TlJFU0ZoWVYwN3R3NXF5OTRabVltCjdkcTFpK2JNbVVQRGh3K25xS2dvNnRPbkR3MFpNb1Rtekps
-RENRa0pWRlZZdkhoeG1Ua3NXclNJamgwN1JtM2F0TEdXUDNWdlRSRXMKazJDYnZzN2VzUVdXazVC
-Q1dlVjFoSER4MEhqeHJBa1hIOWF5SERYWEhCdmFWbVdFaXpzRVg2blcrYzlZMEZnOEFTeDE0QndM
-SUpLdAo5T0QrQ21vcjFzWitOdU5zUVVsM2Z4T2licXNRQUhsNmV0S01HVE5vNE1DQk5IcjBhT3Jm
-dno5Tm5UcVYwdExTNk5TcFV6Ung0a1I2Ci8vMzNMZm8zOU9EbXpadVVrWkZCeGNYRlZKV0lqNCtu
-b0tDZ2tqVnAxYW9WN2R1M2ozcjI3R2xwdmM1QjVQTFVDRHpLS2pBNWVLeXgKWUNJNVVyZ0VzdS9E
-WHVHeXNncm1tZ3VScU9WSTRiSklwMWJSMTRKUGJSYjduQnc1eHp3Tk0xUHhjeVJXd2ZwK3oxcWNP
-UnF5ZG5hQQpyOC9pL2s4Ly9UVGw1K2RUV2xvYUhUOStuSGJ1M0VuejU4K243ZHUzVjFpdzNDa2NQ
-MzY4WEY3TGdnVUw2UEhISDdmMlBFVFZGTUhTCmxyM0pWQVdqR01EalZTeGM5dHNwWE1aeUtLNHE1
-bnNHcGFYOGxSVXVrMjI5TER5dUFoaGlZZDhCcUVSZWhjWkl0ekJIQlY0UXRBVlUKUldPWjJmbUdx
-WnlyMTlsRVBjaitxWU1RaVhEcGpSczNwbSsvL1pZV0xWcEVxMWV2cG9NSEQxSjhmRHlkUFh1V2Fq
-cmk0dUxLMVFIMQo2ZE9IWG56eFJYSjNkN2YwUEF5dUtZTEZBeUpyVUsvcXY1L05uYTlaOWRLejMx
-bXpsNmM2aFVzZ0N3QTkxNTBNa2NtNGxhTW1ldjBXCmI2SnNLbmRGaE1zSUhTWnFKb0RSVm53MFA5
-cGg2aHhpaC9aQmRzcnIyZTlESy82WFdGaklLclV5THJCSnU1dlhXczgrcWFxUTZuQ0kKSXNPWjdO
-KzVpeDNJalZVL0F3RDBkM1YxVFpzM2J4NnRXcldLUWtKQ0tERXhzY1lMbGZ6OGZGcXlaRWs1NTNI
-VHBrMXA1c3laMUtsVApKL08xeWJMeVBGUWJPdXQ0aUc4QitCZUhaK3V4TGUvTkw4UmpFSFVKV2cv
-Rnl6VkV1THlpUTJzNXorY1BSR25kVHoyTzJNelZJV1N1CjhjTmVVZUh5QUllNHRVeXdTVlplOEtF
-NnpLRXM5c2VFc1dQYmkzK0dROUJBRk90NEpycFk4SG44b0xHZmljM1lrVHhuSDE3akJnREcKNmRT
-Z1ArRHpqV2UvZ3NYSXBORm9oSXVMQ3d3R0F3RDg4T3l6ejlMdzRjT3BmZnYybEo2ZVRrVkZSVlJV
-VkZUamhFcHhjVEVkT0hDQQordmJ0YTk2SWpBRFFDeSs4UURFeE1XUTBHczBqdGMrakJsWFhPd0Y0
-VmNkRDlJeEdhTG0xUnZTSFdBQjVWck53Y2VGWXY1YVdkYmVOCjh4a2dPRU8xL0ZNTFVNcldaWTl3
-Q1FOd1RJZmY0MFVibXVqSEd2dmZZQUZrN1o0NkE1aXZROEM4WjhIOHk5UVFMSnM0cDhnYS9zSjUK
-R1ZxbVp3VGZUNnZKSTQ4OTloaVNrcExRclZ1M1lIZDM5OThqSXlOcHhJZ1J0R2ZQSGxxOWVqWDE3
-ZHVYK3ZmdlQxdTNiclVxWlBMego4eWt6TS9PT0NLSDgvSHhLVEV5azJOaFlheFNUTkhMa1NQcmtr
-MC9vcnJ2dU1xK0RtbzhhUnR0UlQ4TVpxcFNkNjBFZlZsbXZzazF1ClBwSlZUc2ZxRWk1OU5ISjND
-aXo0aDZ6aExZZ0VRa3R6dmNwZjhNWjJDQmRQQ0VKb3JkQnRJV3RQMWhBRWtYaG02eGl2NlppZkc1
-dUQKdG81elRwV0RZZ0N3UkdQN0k5Qlgxdit3RG0xNnF0WkJZbUppY1ByMDZlYTllL2Yrc21IRGho
-UVRFME92dlBLS3hiRHQyclZyTGI3dwpPVGs1ZE9MRUNjckl5S2d5b1pLVmxVVkhqeDZsYWRPbVVi
-MTY5YXpPdVV1WEx2VGJiNy9SYzg4OVowbVRxM0dzKyszWWoyTHJDOW5OCkRpMm9DMFFDWFIrejBa
-ZC9obFN6Y0ptcGtkUHlJeDlQcjJDK1h6VTM5WWlDU0ZyejBDbGN6ck1nMHRJNGlNMVRXeGlvdzQv
-a3IzT08KZDJzOEh6a1EvTFBnWTM3bG9EQTJkSVRmUDRKR21jT1FJVU02eE1iR0h2WHg4YUYyN2Rx
-cEdkZXlJREtCODlSK2pIMzc5cFY3OFcvYwp1RUhidG0yanBLU2trdC9sNXVZNlJLZ2tKeWZUamgw
-N2FNeVlNZVRoNFdIenZyZHUzWnArL3Zsbk9uYnNtRGtiLytkczB0WTRETkc0CmdjZmgyRHFQNnZh
-NWZLZ3gzOWVyYUoyMWhNdEZIVGszdHdDOEQ5dGxHd1lkWnU2N2RtcTJuMnRvVWEvcEREK2YxekEz
-emZHNGhtQTcKQkJ1SmRRYURvWlBxZW41bUxld0ROaC8rQnRHeWRMNzZITzNhdGFPdFc3ZFNWbFpX
-aVFCWXUzWXRqUnMzanRMUzBrcCtsNUNRVU1McwpaaTh1WHJ4SWNYRnhOSHYyYk9yV3JadXVDRmxv
-YUNqdDJiT0hpSWptelp0bnZnWk5hcUpnY1VaWmdoeExPSXk2MFdsT3FWKzZ5OFkyCkpuNFlxd05O
-K1lHM2hXUUFVMUMrRnF1TUR4T2lkc2dXOXR0eFhUa2NRWHBZeHpQVWtFMHlhMGlCZllSRXYvQStv
-VGJNdjBCWXJoa0wKSWFKdGJHckdja1FxMmNKMlJ6bWtQaHdBVHAwNmhiRmp4MkxRb0VHNDc3Nzdr
-Sm1aaWZYcjE2Tjc5KzVvMkxEVTM5NjRjV05zMmJJRgpHemR1eExCaHd4QVJFWUhBd1BJS2IwRkJB
-ZExUMDVHVWxJVFRwMC9qMkxGak9IYnNHSTRjT1dKZXJXd1ZQWHYyeFBMbHkzSHZ2ZmNpCk5UVVZY
-My85dGZLbjB3QW1RTlNCMVVqaDBsUmptN09vR3lobXM4M0h4alpaN0MrcExzZTZGaHBCRkJ0cUNR
-ZGJqYndVZmhLOU1GbDUKS2RWUS9FcEsxTWNhN0Mzd1RHV251VFVFd0hMTmtRc0xZVThBZzlnNWJn
-MkZFQ2tHdzVWZjVPWGxZZHUyYmRpMmJWdkpScEdSa1hCeQpLcjFGZ1lHQmlJMk54WFBQUFZjaWlK
-bzJiWXBHalJyQnpjME54Y1hGeU1yS3d0V3JWNUdSa1lGTGx5N2hqei8rQUJIcG5yekJZTUF6Cnp6
-eURHVE5tNEs2N3hEZng4T0hET0hMa0NGaWdQTStXQldxcWNORXFDRk9jbjdVZEp2Wi8yTExSYjdB
-SlZWTVJBQkU2ZmdDaStORGEKUGZXemNZeGJFTkVjZTNCZDQrK0t3UGFGN1dqRkRUdlBtOE1DMzVi
-RDJkTEh3cC92ODBRTndhSWdpWVdZeFhlaFNaTW11UC8rOGt3Rgp3Y0hCMkxCaEEvNzV6MzlpeVpJ
-bERyM1IzYnAxdzR3Wk16Qmd3SUFTL3BiczdHeXNXN2NPUlVWRldXejZmbHZUWDdwTkd2YmVxQ282
-Cjc1MzJ1UXlHeUtNNENkdWg4cXFxSHRYeXVkaER2VGpOeG5rOE5md2VOeUFLK3V4QlQ5aXVwRDdL
-MnoybGNlM3ZWR0RkdnRRNDV0K3MKQ0IxNzJyRFdnNDBJM2VUSms2bWdvTUNxRDZXb3FJaCsvUEZI
-aW82T3J2VDk3ZG16SjIzY3VKRXVYNzVjN2p5ZmZmWVpPVHM3NTBIawppem5WZE1HaWg0bXVMbWd0
-ZWtHMVlMNU9FTVdSbjlzd1YwdzI5bmVGL1gxb0ZCSXFUVTNlQWFhZnZjZTBoSHlJWHM5NmtRVlIv
-eFlCCnN5aGFkSFEwbGl4WkFoY1g2MHZtNU9TRSsrKy9IeEVSRVRodzRBQTJidHlJSDM3NEFkZXVY
-UU1Sd1dRcWZ6dU1SaU1NQmdNOFBUM1IKb1VNSDlPN2RHNE1HRFVKNGVEanExU3ZQcHBtYW1vclhY
-bnZOVkZSVXRCSWlCYUs0TmdpWFBJMXR2T3FJNERCQVpERGFzdms5VUo1OQp2VG9Fbk5ZTDFRcWlT
-Tzk1QzRLa0VMWkpuZHhoUHhlc2w4YUhxTkRzcHpYWTJ6ckZpTkpRdnRhNUs0c3RFTWw3TDZoL21a
-MmRqZFRVClZMUnIxMDd6QUQ0K1B1amZ2ei82OWV1SEsxZXU0TVNKRS9qMTExK1JuSnlNakl3TUZC
-Y1h3OFhGcFlTK3NtM2J0Z2dORFVXTEZpM2cKN095c1pCR1hRMTVlSGw1NTVSVWtKaWIrbTdVV1Uy
-MTU2WlpwcUdvelVEVlpmM2ZhTEZLeVVZL0Fkc3ArVmRFQTZqR0xUZ05ZQlJGZQoxRk5mMDhmS0Ir
-TjdqWDBIMkhudFk2QmRxUXlJaUpLdGtvT3Y3RHl2SDJ5ejllY0QrS3NENzVFSEJMZHNtZk4wNk5D
-Qjl1N2RXMjIxClJhKysraXF4ZVZpckdyNGJvUjNHYWxWRjV6YnBrTUI2VFJRdGMwYmgwVFhCTnYy
-bUh5eVg4OThKWkVQVWFFMkd5TWs1cUxGOUUvN0sKZWxsWWkxU05mZTFwbFdIUXNmMVZsUVBXMXZv
-MmduMk1jbzFoTzdwM0U3WWR2dmJpTmtSbzl6UDFMeE1URXpGOCtIQjg4TUVIeU02KwpjeTI5YzNO
-enNYRGhRaXhldlBnSENKS3VyTm9tWE01b2JOTUZWZE1sb0FEV0l4NzJDaGN0RXU0Q2xmcWNvdUVU
-Q0sybWU1RUp3ZjRICmlFcmh2ME03U3RNUDVibGpsTTZCdG1CUHEwNXYyRTU4SyticlZZU01MY0hX
-QVBaMTlPc0kyMjFVMDFqYmRDUnU4SXU4Q2lwMi9HdlgKcm1IaXhJbVlNbVVLRGg4KzdQQ2JmL1Bt
-VGR5NFVScE11M0RoQWw1NjZTVXNXTERnSndpYXozVFVRb1RDZG9uOWJkalBuZW9Fa1QvVApsTCt3
-eW1pbTBnd0NBY1RCZHVibkZKM25hNlZoN2x4Q2FVM1RMRmlud3lTSXFJRzk3VHZyV1pockU0Z2tM
-MCtkWnBGNVV6UW5sTzFqCmJLdFd4enhEY3pDMHFURGQ3VmpiZEEzemRhUktlTmhpQk15ejQ1NENn
-cmJDMWp3K1I5VzF3RFh3dFY0d1AyK0xGaTFvN3R5NURxTnMKU0V4TXBBOC8vSkJNSmhNVkZSWFIx
-cTFiRldiLy8wQ1FtdGRhMUVQWlhyUFdhamowNGlFSW9xQjRIaitaRGFYWXpBMmlJTklSYWVyOQpJ
-RnB1V2p0T0lrUnFPZ0JFczBaZzZ3VVlwdk84enV4Zys5N0NYT1BaZDlMQkR1Rml6dWNTQnBHRG9T
-VmdacUpzTktjbGJCZjlGYk1QClNnOWUwemozWlpRbVlocDBDTVJkMEJja2FBOXQ2b1hYNzhENzBR
-MmluVWk1ODNmdTNKbGVmUEhGU3ZsanRtelpRcU5IajZhUFB2cUkKVnF4WVFjT0dEU052Yis5Q2lM
-cXFacWpsY0lLb3NOVmk5QituNDFnUG83U3h0N1doVGlOZkRHM3FnNDQ2WHZBMUdzZjVVYVdOZUVL
-Ygp6dUEwdExsYUFVSCtiRXNMK2wzbHI2aUljQUdBaGREbVpVazNNMTI4TmJSQ2draXQxL0l2UmNN
-MmZRSUIyR0hCK1h0YlE5T1pwSEZlClgyaFhZMS9oajhxZGdDOUVCdTkzbHE0bEtDaUlvcUtpYVBi
-czJiUno1MDVLU2txeVNjK1FtcHBLbXpkdnBxRkRoOUk5OTl4RDY5ZXYKcHg0OWVwQ3pzN09hSzdq
-V0N4WUZrUkFSRlZzM013TWlLOURMaWlOMEtteTB5dVJ4ME14Lzh6Zy9iRnFDSWN5R2QvOE5hRE9u
-clRiegp5U3pRRUFwS3dlWmZiWmdLL3dkdHdxbnBLbzJpb3NLbEdRUnRvNWIyc2xaMWJ3d1EyYWw2
-K0dqRHJjeHhLTFRKcWt3b1Q2ZllRc05FClZkanpYb1RsZ3RpbXJDbG9yZTB1M1BtMGdRYXNtVyt5
-cFAwYWpVYnk5L2Vua0pBUXV1ZWVlMmp3NE1IMHhCTlAwS1JKazJqS2xDazAKZHV4WTZ0dTNMN1Zx
-MWFxRVZpRW9LSWkrL1BKTGNuSnlVaDhyRG5Xb2I3Z25STFdvSGpyRTB3QTJRRlNUem1mMTdTUzBl
-VjZMVUo1KwpyelgwOWVGSllmczdtci9RUFNIeVBBN3BFQkpaL0RWVkl3aWlDbG5ydk5rUWRTZnZz
-Z3IrVHdncXlFczY5ajJKc2h5ekZSVXU0TGxxCnJXOGhyNCtDNXREdUM2Vm9QWjlBaFAwSHMxYXhI
-ZnFJMnZkYjhOMFlvSTlRUEovdi9YeldDa2J5K3A2RVBnYTlNZFg0dm5qd3N4dkQKZ3VaMy9rZ1dz
-Y2xwVWcweUdvM2s0dUppeVRRbEp5Y25HalZxRk1YRXhKZy9PNTFSaHhESm5uNjlxY29tMk1jcXZ4
-T1dNME1YMjNHTQpRbjdKQ3FHZm8vVy9zRnhyODd3ZHg3QjN2a1VRekgxd2tIRHhnVFo3SGdIWWk3
-SVpwcy9aTWNkaTFjdWhsM2MzMnNyMU5vZnRIQ2J6CmRTM2lvWGQ5UDBQTllWeHpZbzJ4UFFTUHpn
-U085TTJDNkllVkZSSVNRbSs5OVpZNWMvOVdDTjVnOHZQem8yWExscW1ieWhmYjRmZXIKTlJnSC9l
-VE05ckxodDdIeElCNnNnbk1xUkViV3lJcGQrSXRkRmVkZGF5R0tVUm5oQW9odUJYbzZKYzVSN1ZN
-ZndMK3JZSDRtMWpocwpwU2dNMTNDY1YzUWtvZ1oxRDlTQjU5M2QzUXZuelp0SGE5YXNVZlBodmdN
-Ulp2OEtBRVZGUmRHdVhic29JQ0JBTFh4ODZwSndNWERrCndaRUM1aXhFV3JVdDlJSStnbTk3ZStz
-czFHRkRmK3ZnODM1c1JVaFVWcmdZZEY1ckFWVDBBV3dDN25Md0hOZEFPeTBmckwxZGQvQ3oKMUxj
-V3ZsZnZOR3ZXakxadjMwNFRKMDVVNW5JTW9zbzlBTUFlTHk4dldyTm1EZTNldlp1YU5tMnFiRE1G
-OXRlQjFYaThBRzBPVmowagpEdnFaeDdwdzVNRVJndTEzTmduMElOQkJYL2RNQ1BwSlB5dm4wUkl1
-RjZIZEt6b1MrcnBoWG9HZzJGVFFrSjNhdVpXY1l4YjdSVHp0CmVKWkdBRGpoZ1BVOXhCK2gyb2g2
-QUw0ZE1tUUlYYng0a1I1ODhFRmxUaytvdFBkajBkSFJSRVEwWnN3WTlRY25HSFVRRDdLZnBDSTkK
-bEJNNHN1UnY1ems5Mkl6WmlZcDFmanpKMGFNSU84L3J6dEd1STZnWUJjSTMwTTRiZVF6YTRYNDkz
-TDJ6ZFY1WGt0bkxhSUNnei9oYQpoM1BZMGh4M3czcS9iUzEwaE9pTGRhNEM2M3VlQlZyejJ2WUMx
-YTlmSHg0ZUpRcmU2SmRmZnBrS0N3dnB5U2VmVkR2VEd3T0FzN1B6CitOV3JWOVBodzRjcE9EaFkw
-YnpmaG0xdW5sb05mNGk4bEpVUUJXVFd2cHEzMkJiZURGRWIwNzZTNS9WalorRjh0a2t2V0lrS1pV
-T0UKakRleUk2MnlIdmEyZlAyZnNwL0ltbzhqZy8xRTc3SkdvaWRzMkFPaStHeVhsYkVaK3VwdXZP
-MHc1UzVhRUhvTklFTHN5OWdCYkMzNwo5aXBFR3NDYkVHMStIUkVhdllkVi9ZLzVRM0RiaXBBOXlk
-dE1RL20rU0RYbjVmRDNSMWhZR0RwMnRKeUtGUm9hQ205dmJ3RG92R2pSCm9rTm56cHloVWFOR0tY
-NlhaSWlFUTE4QWVPaWhoelpjdjM2ZHVuYnRxcXpEUEZRTmQvVWQ5YkhvZ1N0RXZrVWpIbjdzekN0
-R0tUWGsKZFRhbGJqcjRHcFZ6TnVBdnV6czdGRFA1dkJrUWlYczVEanluSDBTK1JRQ2YyNXZYcXBE
-UGR4VWlwK2NTOUpmOHU3RjZURmJ1UXpIUApTVTg1ZlJpYmtLMTFiSHVkemJXbEtNc0JZdUI3MnBC
-SEE3N1ArVHhIcFQxS0doelBIZUxMWDJ6bDNFcTFieGFmODJvVlBVc09SVWhJCkNNTER3MEZFK1BM
-TEw4djl2VVdMRnJoNjllcWdkOTU1NTErZE9uVnFPMzM2ZE96ZnZ4LzhNWHlMemNWaWYzLy9oL2Zz
-MmJOMTkrN2QKTGpObnpnUUVpWHdzYkZObjFIam9MVWdzWURVN3FScXVVZWtEZENlUkNmdXBJTFdR
-ajlMcTRjcmlWemJqTmtHN0Rpb0FJZ083SzBSNAo5RmYrUFVFa3lmMVJEZmYwSm85VER2cEErdkFI
-d1p2Lzdjdi9kbWYva0J0dnB4YnNKdlpCM1dJTitEcGYwMVc5OTk1a01xR3dzTkFhCkw2NlR3V0I0
-ZWV2V3JTL241K2ZYZi9UUlI1R1NrcElLUVdHeVUvVXhiUGJxcTYrK1VWQlE0TEp3NFVKQTVGVzlY
-TnNGaTBUdHg1T3cKM1hyREVnZk1xN0MvTUxNNk5Hb2pmL3c4SURvMi9JWE5zK2RaQzl2RWZxREQ3
-TXU1ekJwWEptdEFPU3c4YnJQL3duemNac0dpOFBSbQpzamFhQk9BQW04WUwyTS9VamdWVUdUYStv
-S0FnREJnd0FQMzc5emUvL2piZHUzZmZmdVRJa1lJMzNuaURmSHg4aUUxWjgweHp3d01QClBMRDVq
-ei8rb01qSVNNVy8xRlUrMWhJMUJSTmduL1BiQkJIMm44S21YM1dHT28wb0pka09oSWdzUGdKUkd2
-QSt2NUNKckZVVW9td0cKTE4yQm9TVDQ1VUlrTVM2RGFIYm5EOENnQ0pmbzZKSmNRbmMzTjdmaE1U
-RXhTU2RQbnFUWTJGZ3lHbzI1YkphV0M5MTdlWGxOVDBoSQp5Sjh4WTRaQ2FEWkJQczRTTlEyam9h
-K2N3VklrWmhGRTVXOWdGUXNheFh4cEFrSHpNWUMxa0ZVUTFBSVhVTEhJcEsyTTQzeVYyWlBKCm1z
-MTExYmpHUHpOWmc4bUR2Z3psUXdBbU4yalFJTGhYcjE3Tkhuend3WllCQVFIM3RXblQ1cjEzMzMy
-M01ERXhVU0hyem9EMUlzMEgKVnE1Y2VlMjc3NzVUU2dNK3FHc1BwVUcrbDNVR1BTSEM4QlZWcS84
-TEVUMzZtVTJENi94eTNLckFzZHhVZmhCZk5tdmFRVVFSTzBBNApvbjByTWRjQ2xkbHpTMlhlM0ZR
-Smkyd3o4MGd4aGRUT2FXTHR5Wk45Tkw0b1RXd0xZVUZZSDhMNVhLYUd5czNORFlNR0RUcHo5OTEz
-CkZ6UnIxcXhSdTNidEduYm8wQUVKQ1FtWU1HRUN6cDQ5ZTVXMXc2MEdnd0VHZzBGTjFOMXN5SkFo
-WDY5YXRhcnp3SUVEY2VMRWlWOVoKSTBxWHdrV2lwaUlJb3E1bGRDWDlLbWtRQmFybitOK3BMR2h5
-V0Jzb1VyMll6dnppZWZNNUcwRkVnSnJ4QzNvWEtwYXJZVkpwR3RjZwpHT0l1OC9WY2hrZ1VUT2Uv
-WFdQQlV1RGc5UXhnUVJnTzBmcTFLMFM2Z291bnB5ZG16cHlKa1NOSG9sR2pSa2hPVHNZWFgzeUJ4
-WXNYCjQ5YXRXNENvaUg4VEVFei9ycTZ1eU12TEF3Q2ZvS0NnOWZIeDhjT1hMMStPdDk5K3U0Qk53
-Vy9rNHl0Ukd6QUUydjErS2pJVWpTRUQKcGM3VFhHalRJMmlObSt3SDJnMWdQVVI5MUZNUWhZQVJy
-RUhVaERUNFRqRHJleFVjSEV5OWV2VlNwK3dydnBybUJvTUJibTV1TUJxTgpKYTFKbkp5Yy92SE5O
-OStZNHVMaXlOM2RuWGkrRWhLMUN2VWhJaDFiWUY5RXFhcEdJV3NkLzRPZ3Axd05FWTE1aWsyQ1Rx
-ejExSFJ0CmVqLzBPWUtuR3d3RytQcjZnclc2WVZGUlVSdDM3Tmh4S3lVbFJZa09wVU83Vjd1RVJJ
-MkZIL3RqWmtFNFRxdGEwR1JBNU5KOERlR3MKZlFXQ2UrVUJOaTlhUWlUc3VkZlM5WXlBeUVYUlU0
-ZTF6TlBUODRXaFE0Zit0SDM3OXV0cGFXbEVST3IwLzQ5UU5lVDNFaEozRkFiMgpoWFJpbjh3U2lM
-S0Q0K3hUMGFKektHYkJkQWtpUFB3alJDN0l2eUFLWFIrRHFHVnF5LzZXQUlqd2ExMzA2OFhvTVFX
-TlJtUHgzTGx6CjgzSnlja3A2RU1YR3hxcnBMTjlEOVRmaHE5SUhUdUxQQ1JlVXRuYjFSR2xreHh0
-bDI2NmFJS0l4dVN4YzFDSGJJcFFsZXZxendCV2kKNXM2Znpib3VFTkcybTJ6aXVZTVQ3bHExYW9Y
-ZXZYc2pNREFRUC8zMEUrTGo0OVZSbzNVUXJYbnpwSENSa0pBd2h3ZEVlUDBHUks1TwpLellEcDBQ
-Rk4yMHdHQ3lWQ1h3RFVRcndCMFJVTEpzMVNKUHEvWFJqNGErWWtVcHg1dzBXWnZrb2plQko0U0lo
-VWNmUms0V0d2ZWtBClNtbUNXZ3E1bzN6cGdWSXdmQVdpUHVzSVJINVNJa1J0Vko2OEJSSVNkUk4z
-UStRSW1XZjdGckdHb3RYeG9qSjBzdThBNkkvcWEwc3MKTlJjSmlTcUVDMHBycE5RVXI0VVF4RmZK
-QUxwRFpQNTZRUGh3bkZDV0tMMkEvNlltL0ZMNlRSMUhhUjl0SlhIUlhKanNoSEM0ZnduYgovYnNs
-SkNScUlaNndvRjI4WVNhRS9GaFFCRUZFMlFKWllIaXkwSmlCc3ZTazMvSSticnh0WjRoa3cyY2dj
-b2ZpVWJaR2F6dUVrMWxDClFxSU93UXVDMlhBMEJFZkxGZ2gyUFE4N2p6TWVwYUh2UXRodVk5c2Nv
-bkhidjFEYTUvb2FCRDJxbTd3bEVoSjFFMzRRRHRxS3VDT1cKcWJTUmM5QnVyMktFaUdMOUhhVWRH
-TGFqamhKK1MwaElWQnlOSVJ5MlNubkJRcDM3R1NBb0xqYnp2djlENVRtdUpTUWs2aEFNYkZvcAoy
-c3N2RU5uUWV1RUI0YjlSZWlhMWxFc3FJU0dob0RYSzlpbVByWUNBbWdpUmRQY0Q2bkRiRWdrSkNm
-dmdERkdBcWdpWGVBaXFVbnRnCkJQQVNoR1A0RTZpeWlDVWtKUDdjQ0lab09xZ0ltTWtWTkxGbVFv
-U3NQNFpqZWxKSlNFalVBWXhBS1hWR01zcDNGZENMTVJEbEE5c2gKU2hZY1NvUGhKTytUaEVTdHd6
-a0lTb3V1RUg2VDFoQ1p1UGJXRkIySDZHZ2FBQkdOT2crWnpTc2g4YWRIUXdCN1ZPYlJoa3BxSHZV
-Zwpzb0lsSkNRazBJcTFEMFhBL0p1MUVBa0pDWWxLSXh5QzNGd1JNRDlCZG0yVWtKQndFRHBDTU9F
-cEF1WUtCUGw1SUNUemdZU0VSQ1hSCkdJTHdPMDhsWkM0QWVBMmlJWjAzekhwZFZ6Vmt0RWhDb200
-Z0J5S2tuQUZSTytRUHdZbmNCNExuOXg3V1pEejR2WGRES1k4TVVMWVQKcFVNZ1ZTWUppYnFINWhC
-OXVQdEQ5RVV5YnloM0ZhSzMrR1VXUnBjaHlnck9BMGhoc3lwTkNoY0pDUWxyYUFuQjdmSUFSR1Nw
-R1FRUgpsUzJMSlF1aUtQSVFSSG5CTVJaRVVyaElTRWhZUkRzQUxTRHlZM3dnY21LVWxqTCtMSFFD
-SVhwN3ErdVZqZ0w0SGlMWjdrY3BYQ1FrCkpPeVZBejRzWkJwQzFCcTFoU0NrK2d0RU5Db2Z3SGNB
-MWdENFFnb1hDUW1KeXNBTklnb1ZET0JlQU5Hcy9TUUFlQnNpL0MyRmk0U0UKUktYaEMwRWszZ09D
-R0R3QmdoYzRTd29YQ1FrSlI1bFIvaEQrbVFLSURPRnkrUDhCQUpxTlhvQnFBelBRQUFBQUFFbEZU
-a1N1UW1DQwotLTAwMWExMTM0YTQ0ZTM1ZmNmMTA1MTdlMWEyMTItLQ==
---001a113df348f253900517e1b282
-Content-Type: application/msword
-Content-Disposition: attachment
-Content-Transfer-Encoding: base64
-X-Attachment-Id: f_ialo2ytw1
-
-5oOh5oSP6Luf6auU
---001a113df348f253900517e1b282--
-
-
-"""
diff --git a/tests/files/stap.log b/tests/files/stap.log
deleted file mode 100644
index aedfb1dc5b0..00000000000
--- a/tests/files/stap.log
+++ /dev/null
@@ -1,14 +0,0 @@
-Mon Jun 19 16:58:31 2017.445170 python@b774dcf9[680] execve("/usr/bin/sh", ["sh", "-c", "/tmp/helloworld.sh"], ["LANGUAGE=en_US:en", "HOME=/root", "LOGNAME=root", "PATH=/usr/bin:/bin", "LANG=en_US.UTF-8", "SHELL=/bin/sh", "PWD=/root"]) = -2 (ENOENT)
-Mon Jun 19 16:58:31 2017.517266 sh@b77825f7[680] brk(0x0) = -2118402048
-Mon Jun 19 16:58:31 2017.521264 sh@b77838c1[680] access("/etc/ld.so.nohwcap", F_OK) = -2 (ENOENT)
-Mon Jun 19 16:58:31 2017.550890 sh@b7783970[680] mmap2(0x0, 12288, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0xb7764000
-Mon Jun 19 16:58:32 2017.036988 helloworld.sh@b7768cf9[681] write(1, "h3ll0 w0rld!\n", 13) = 13
-Mon Jun 19 16:58:32 2017.037596 helloworld.sh@b7768cf9[681] read(10, 0x800665c0, 8192) = 0
-Mon Jun 19 16:58:32 2017.037898 helloworld.sh@b7768cf9[681] exit_group(0) =
-Mon Jun 19 16:58:31 2017.850098 sh@b7769cf9[680] wait4(-1, 0xbfd4a134, 0x0, 0x0) = 681
-Mon Jun 19 16:58:32 2017.051317 sh@b7769cf9[680] sigreturn() = 681
-Mon Jun 19 16:58:32 2017.051973 sh@b7769cf9[680] exit_group(0) =
-Tue Jun 20 15:39:30 2017.141870 busybox-i686@80dbdde[704] write(2, "BusyBox v1.16.0 \x282010-02-06 04:51:36 CST\x29", 41) = 41
-Thu Jun 22 10:22:06 2017.766807 busybox-i686@80dbdde[668] write(2, "Copyright \x28C\x29 1998-2009 Erik Andersen\x2c Rob La", 480) = 480
-Mon Jun 19 16:58:31 2017.445170 python@b774dcf9[680] execve("/usr/bin/sh", ["sh", "-c", "/tmp/comma\x2csh"], ["COMMA_IN_ARRAY=it\x2cworks", "HOME=/root"]) = -2 (ENOENT)
-Mon Jun 19 16:58:31 2017.445170 python@b774dcf9[680] execve("/usr/bin/sh", ["sh", "-c", "/tmp/bracket\x5dsh"], ["LANGUAGE=en_US:en", "HOME=/root"]) = -2 (ENOENT)
diff --git a/tests/grab_samples.py b/tests/grab_samples.py
new file mode 100644
index 00000000000..87187835f2b
--- /dev/null
+++ b/tests/grab_samples.py
@@ -0,0 +1,69 @@
+#!/usr/bin/env python
+
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+import argparse
+import json
+import logging
+import os
+
+import urllib3
+from tcr_misc import get_sample
+
+urllib3.disable_warnings()
+
+logging.basicConfig()
+
+
+def get_filepaths(directory, args):
+    """
+    DEDUPE from tcr_misc.py
+    This function will generate the file names in a directory
+    tree by walking the tree either top-down or bottom-up. For each
+    directory in the tree rooted at directory top (including top itself),
+    it yields a 3-tuple (dirpath, dirnames, filenames).
+    """
+    file_paths = []  # List which will store all of the full filepaths.
+
+    # Walk the tree.
+    for root, directories, files in os.walk(directory):
+        for filename in files:
+            if filename.endswith(".json"):
+                # Join the two strings in order to form the full filepath.
+                filepath = os.path.join(root, filename)
+                file_paths.append(filepath)  # Add it to the list.
+
+    if args.family:
+        return filter(lambda path: args.family == os.path.dirname(path).rsplit("/", 1)[-1], file_paths)
+    return file_paths  # Self-explanatory.
+
+
+def load_sample_lists(args):
+    sample_json_list = get_filepaths("tests/Extractors/StandAlone/unit_tests", args)
+    for sample_json_location in sample_json_list:
+        logging.warning("Found sample.json: %s", sample_json_location)
+        with open(sample_json_location, "r") as samples:
+            sample_dict = json.load(samples)
+            for hash_item in sample_dict["hashes"]:
+                sample_name = "malware." + hash_item["hash"] + "." + hash_item.get("name", "none") + ".exe"
+                try:
+                    get_sample(hash_item["hash"], os.path.dirname(sample_json_location) + "/" + sample_name)
+                except Exception as e:
+                    logging.exception(e)
+
+
+def run(args):
+    load_sample_lists(args)
+
+
+if __name__ == "__main__":
+    parser = argparse.ArgumentParser(
+        description="Grab malicious samples from sample.json"
+    )
+
+    parser.add_argument("--family", action="store", dest="family", type=str)
+    args = parser.parse_args()
+
+    run(args)
diff --git a/tests/integrity.py b/tests/integrity.py
index bcec44767a2..d725de75b71 100644
--- a/tests/integrity.py
+++ b/tests/integrity.py
@@ -1,11 +1,15 @@
 #!/usr/bin/env python
+
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
 """
 Checks the integrity of one or more virtual machine(s). In order to ensure
 that there are no remaining tasks in the queue this utility will clean the
 entire database before starting various analyses.
 """
-from __future__ import absolute_import
-from __future__ import print_function
+
 import argparse
 import json
 import logging
@@ -18,10 +22,10 @@
 CUCKOO_ROOT = os.path.join(os.path.abspath(os.path.dirname(__file__)), "..")
 sys.path.append(CUCKOO_ROOT)
 
-from lib.cuckoo.core.database import Database
 from cuckoo import cuckoo_init, cuckoo_main
+from lib.cuckoo.core.database import Database
 
-log = logging.getLogger()
+log = logging.getLogger(__name__)
 
 
 class TestIntegrity(unittest.TestCase):
diff --git a/tests/objects_tests.py b/tests/objects_tests.py
deleted file mode 100644
index 9e5c4f5c618..00000000000
--- a/tests/objects_tests.py
+++ /dev/null
@@ -1,83 +0,0 @@
-# Copyright (C) 2010-2015 Cuckoo Foundation.
-# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
-# See the file 'docs/LICENSE' for copying permission.
-
-from __future__ import absolute_import
-import os
-import tempfile
-import copy
-from nose.tools import assert_equal, raises, assert_not_equal
-
-from lib.cuckoo.common.objects import Dictionary, File
-
-
-class TestDictionary:
-    def setUp(self):
-        self.d = Dictionary()
-
-    def test_usage(self):
-        self.d.a = "foo"
-        assert_equal("foo", self.d.a)
-        self.d.a = "bar"
-        assert_equal("bar", self.d.a)
-
-    @raises(AttributeError)
-    def test_exception(self):
-        self.d.b.a
-
-
-class TestFile:
-    def setUp(self):
-        self.tmp = tempfile.mkstemp()
-        self.file = File(self.tmp[1])
-
-    def test_get_name(self):
-        assert_equal(self.tmp[1].split("/")[-1], self.file.get_name())
-
-    def test_get_data(self):
-        assert_equal("", self.file.get_data())
-
-    def test_get_size(self):
-        assert_equal(0, self.file.get_size())
-
-    def test_get_crc32(self):
-        assert_equal("00000000", self.file.get_crc32())
-
-    def test_get_md5(self):
-        assert_equal("d41d8cd98f00b204e9800998ecf8427e", self.file.get_md5())
-
-    def test_get_sha1(self):
-        assert_equal("da39a3ee5e6b4b0d3255bfef95601890afd80709", self.file.get_sha1())
-
-    def test_get_sha256(self):
-        assert_equal("e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855", self.file.get_sha256())
-
-    def test_get_sha512(self):
-        assert_equal(
-            "cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e",
-            self.file.get_sha512(),
-        )
-
-    def test_get_ssdeep(self):
-        try:
-            import pydeep
-
-            assert_not_equal(None, self.file.get_ssdeep())
-        except ImportError:
-            assert_equal(None, self.file.get_ssdeep())
-
-    def test_get_type(self):
-        assert_equal("empty", self.file.get_type())
-
-    def test_get_content_type(self):
-        assert_equal("inode/x-empty", self.file.get_content_type())
-
-    def test_get_all_type(self):
-        assert isinstance(self.file.get_all()[0], dict)
-
-    def test_get_all_keys(self):
-        for key in ["name", "size", "crc32", "md5", "sha1", "sha256", "sha512", "ssdeep", "type"]:
-            assert key in self.file.get_all()[0]
-
-    def tearDown(self):
-        os.remove(self.tmp[1])
diff --git a/tests/processor_tests.py b/tests/processor_tests.py
index 087157ee321..50fba1eebac 100644
--- a/tests/processor_tests.py
+++ b/tests/processor_tests.py
@@ -2,13 +2,9 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-import os
-import tempfile
-from nose.tools import assert_equals
 
-from lib.cuckoo.common.constants import CUCKOO_VERSION
 from lib.cuckoo.common.abstracts import Processing, Signature
+from lib.cuckoo.common.constants import CUCKOO_VERSION
 
 
 class ProcessingMock(Processing):
@@ -20,19 +16,18 @@ def run(self):
 
 class SignatureMock(Signature):
     name = "mock"
-    minimum = CUCKOO_VERSION.split("-")[0]
-    maximum = CUCKOO_VERSION.split("-")[0]
+    minimum = CUCKOO_VERSION.split("-", 1)[0]
+    maximum = CUCKOO_VERSION.split("-", 1)[0]
 
     def run(self, results):
         if "foo" in results:
             return True
-        else:
-            return False
+        return False
 
 
 class SignatureAlterMock(SignatureMock):
     def run(self, results):
-        results = None
+        results = None  # noqa: F841
 
 
 class SignatureDisabledMock(SignatureMock):
diff --git a/tests/readme.md b/tests/readme.md
new file mode 100644
index 00000000000..2018f9a6c7c
--- /dev/null
+++ b/tests/readme.md
@@ -0,0 +1,9 @@
+### To run tests you must:
+
+* Edit `tcr_misc.py` to change `SAMPLE_STORAGE` where samples are, we maybe will place them on github in different repo later
+
+* set `PYTHONPATH`
+```
+export PYTHONPATH=$PYTHONPATH:/opt/CAPEv2
+python3 -m pytest
+```
diff --git a/tests/reporter_tests.py b/tests/reporter_tests.py
index dc6f1ab9997..cb41f20eba7 100644
--- a/tests/reporter_tests.py
+++ b/tests/reporter_tests.py
@@ -2,13 +2,8 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-import os
-import tempfile
-from nose.tools import assert_equals
 
 from lib.cuckoo.common.abstracts import Report
-from lib.cuckoo.common.config import Config
 
 
 class ReportMock(Report):
@@ -21,4 +16,3 @@ class ReportAlterMock(Report):
 
     def run(self, data):
         data["foo"] = "notbar"
-        return
diff --git a/tests/sniffer_tests.py b/tests/sniffer_tests.py
index d372149b220..13fb1d219c7 100644
--- a/tests/sniffer_tests.py
+++ b/tests/sniffer_tests.py
@@ -1,6 +1,3 @@
 # Copyright (C) 2010-2015 Cuckoo Foundation.
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
-
-from __future__ import absolute_import
-from nose.tools import assert_equals
diff --git a/tests/tcr_misc.py b/tests/tcr_misc.py
new file mode 100644
index 00000000000..8c7771973eb
--- /dev/null
+++ b/tests/tcr_misc.py
@@ -0,0 +1,80 @@
+#!/usr/bin/env python
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+import hashlib
+import logging
+import os
+import uuid
+
+import requests
+import urllib3
+from requests.adapters import HTTPAdapter
+from urllib3.util.retry import Retry
+
+urllib3.disable_warnings()
+
+s = requests.Session()
+retries = Retry(total=5, backoff_factor=0.1, status_forcelist=[404, 500, 502, 503, 504])
+
+s.mount("http://", HTTPAdapter(max_retries=retries))
+s.mount("https://", HTTPAdapter(max_retries=retries))
+
+
+SAMPLE_STORAGE = "http://YOUR_MAGIC_REPO/"
+
+
+def random_string():
+    return str(uuid.uuid4()).split("-", 1)[0]
+
+
+def get_filepaths(directory, ends=None, starts=None):
+    """
+    This function will generate the file names in a directory
+    tree by walking the tree either top-down or bottom-up. For each
+    directory in the tree rooted at directory top (including top itself),
+    it yields a 3-tuple (dirpath, dirnames, filenames).
+    """
+    file_paths = []  # List which will store all of the full filepaths.
+
+    # Walk the tree.
+    for root, directories, files in os.walk(directory):
+        for filename in files:
+            basename = os.path.basename(filename)
+            if ends and starts:
+                if basename.startswith(starts) and basename.endswith(ends):
+                    # Join the two strings in order to form the full filepath.
+                    filepath = os.path.join(root, filename)
+                    file_paths.append(filepath)  # Add it to the list.
+            elif ends and not starts:
+                if basename.endswith(starts):
+                    filepath = os.path.join(root, filename)
+                    file_paths.append(filepath)  # Add it to the list.
+            elif not ends and starts:
+                if basename.startswith(starts):
+                    filepath = os.path.join(root, filename)
+                    file_paths.append(filepath)  # Add it to the list.
+
+    return file_paths  # Self-explanatory.
+
+
+def get_malware_paths(path):
+    return get_filepaths(path, starts="malware.", ends=".exe")
+
+
+def get_sample(hash, download_location):
+    if os.path.isfile(download_location) and hash == hashlib.sha256(open(download_location, "rb").read()).hexdigest():
+        logging.warning("%s already there, skipping!", download_location)
+    else:
+        r = s.get(SAMPLE_STORAGE + hash, verify=False, timeout=10)
+        if r and r.status_code == 200:
+            sha256 = hashlib.sha256(r.content).hexdigest()
+            if sha256 != hash:
+                raise Exception("Hashes doens't match")
+            with open(download_location, mode="wb+") as file:
+                file.write(r.content)
+                logging.warning("%s grabbed!", download_location)
+        else:
+            logging.warning("Status code: %d - content: %s", r.status_code, r.text)
+            raise Exception("Non 200 status code")
diff --git a/tests/test_abstracts.py b/tests/test_abstracts.py
new file mode 100644
index 00000000000..59649c07e31
--- /dev/null
+++ b/tests/test_abstracts.py
@@ -0,0 +1,128 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+import os
+import tempfile
+from unittest.mock import MagicMock, patch
+
+import pytest
+
+import lib.cuckoo.common.abstracts as abstracts
+from lib.cuckoo.common.exceptions import CuckooCriticalError
+from lib.cuckoo.common.path_utils import path_exists
+
+
+@pytest.fixture
+def proc():
+    return abstracts.Processing()
+
+
+class TestProcessing:
+    def test_not_implemented_run(self, proc):
+        with pytest.raises(NotImplementedError):
+            proc.run()
+
+
+@pytest.fixture
+def sig():
+    return abstracts.Signature()
+
+
+class TestSignature:
+    def test_not_implemented_run(self, sig):
+        with pytest.raises(NotImplementedError):
+            sig.run()
+
+    def test_missing_key_domain(self, sig):
+        """Test with domain key missing."""
+        sig.results = {"network": {}}
+        assert sig.check_domain("*") is None
+
+
+@pytest.fixture
+def rep():
+    return abstracts.Report()
+
+
+class TestReport:
+    def test_set_path(self, rep):
+        dir = tempfile.mkdtemp()
+        rep_dir = os.path.join(dir, "reports")
+        rep.set_path(dir)
+        assert path_exists(rep_dir)
+        os.rmdir(rep_dir)
+
+    def test_options_none(self, rep):
+        assert rep.options is None
+
+    def test_set_options_assignment(self, rep):
+        foo = {1: 2}
+        rep.set_options(foo)
+        assert rep.options == foo
+
+    def test_not_implemented_run(self, rep):
+        with pytest.raises(NotImplementedError):
+            rep.run()
+
+
+@pytest.mark.usefixtures("db")
+class TestScreenshotMachinery:
+    def test_missing_screenshot_method(self):
+        class MockMachinery(abstracts.Machinery):
+            module_name = "mock"
+
+            def read_config(self):
+                return {"mock": {"machines": []}}
+
+            def _list(self):
+                pass
+
+        tm = MockMachinery()
+        mock_cuckoo_cfg = MagicMock()
+        mock_cuckoo_cfg.machinery_screenshots = True
+
+        with patch.object(abstracts.cfg, "cuckoo", mock_cuckoo_cfg):
+            # calling _initialize_check() raises without any methods
+            with pytest.raises(CuckooCriticalError):
+                tm._initialize_check()
+
+    def test_machinery_missing_screenshot_support(self):
+        class MockMachinery(abstracts.Machinery):
+            module_name = "mock"
+
+            def read_config(self):
+                return {"mock": {"machines": []}}
+
+            def _list(self):
+                pass
+
+        tm = MockMachinery()
+        mock_cuckoo_cfg = MagicMock()
+        mock_cuckoo_cfg.machinery_screenshots = True
+
+        with patch.object(abstracts.cfg, "cuckoo", mock_cuckoo_cfg):
+            # calling _initialize_check() raises without providing a screenshot() impl
+            with pytest.raises(CuckooCriticalError):
+                tm._initialize_check()
+
+    def test_machinery_screenshot_support(self):
+        class MockMachinery(abstracts.Machinery):
+            module_name = "mock"
+
+            def read_config(self):
+                return {"mock": {"machines": []}}
+
+            def _list(self):
+                pass
+
+            def screenshot(self):
+                return True
+
+        tm = MockMachinery()
+        mock_cuckoo_cfg = MagicMock()
+        mock_cuckoo_cfg.machinery_screenshots = True
+        with patch.object(abstracts.cfg, "cuckoo", mock_cuckoo_cfg):
+            # calling _initialize_check() succeeds, a screenshot() impl is provided
+            tm._initialize_check()
+        assert tm.screenshot()
diff --git a/tests/test_analysis_manager.py b/tests/test_analysis_manager.py
new file mode 100644
index 00000000000..e0d94709294
--- /dev/null
+++ b/tests/test_analysis_manager.py
@@ -0,0 +1,506 @@
+import datetime
+import logging
+import os
+import pathlib
+from typing import Generator
+
+import pytest
+from pytest_mock import MockerFixture
+
+from sqlalchemy import select
+
+from lib.cuckoo.common.abstracts import Machinery
+from lib.cuckoo.common.config import ConfigMeta
+from lib.cuckoo.core.analysis_manager import AnalysisManager
+from lib.cuckoo.core.database import TASK_RUNNING, Guest, Machine, Task, _Database
+from lib.cuckoo.core.machinery_manager import MachineryManager
+from lib.cuckoo.core.scheduler import Scheduler
+
+
+class MockMachinery(Machinery):
+    module_name = "mock"
+
+    def read_config(self):
+        return {
+            "mock": {
+                "machines": "name0",
+            },
+            "name0": {
+                "label": "label0",
+                "platform": "windows",
+                "arch": "x64",
+                "ip": "1.2.3.4",
+            },
+        }
+
+    def _list(self):
+        return ["name0"]
+
+
+@pytest.fixture
+def machinery() -> Generator[MockMachinery, None, None]:
+    yield MockMachinery()
+
+
+# @pytest.mark.usefixtures("db")
+@pytest.fixture
+def machinery_manager(
+    custom_conf_path: pathlib.Path, monkeypatch, machinery: MockMachinery
+) -> Generator[MachineryManager, None, None]:
+    confd_path = custom_conf_path / "cuckoo.conf.d"
+    confd_path.mkdir(0o755, parents=True, exist_ok=True)
+    with open(confd_path / "machinery_manager.conf", "wt") as fil:
+        print("[cuckoo]", file=fil)
+        print(f"machinery = {MockMachinery.module_name}", file=fil)
+    ConfigMeta.refresh()
+    monkeypatch.setattr(MachineryManager, "create_machinery", lambda self: machinery)
+    yield MachineryManager()
+
+
+# @pytest.mark.usefixtures("db")
+@pytest.fixture
+def scheduler():
+    return Scheduler()
+
+
+@pytest.fixture
+def task(db: _Database, tmp_path) -> Generator[Task, None, None]:
+    sample_path = tmp_path / "sample.py"
+    with open(sample_path, "wt") as fil:
+        print("#!/usr/bin/env python\nprint('hello world')", file=fil)
+    with db.session.begin():
+        db.add_path(str(sample_path))
+        task = db.list_tasks()[0]
+        db.session.expunge_all()
+
+    yield task
+
+
+@pytest.fixture
+def machine(db: _Database) -> Generator[Machine, None, None]:
+    with db.session.begin():
+        machine = db.add_machine(
+            name="name0",
+            label="label0",
+            arch="x64",
+            ip="1.2.3.4",
+            platform="windows",
+            tags="tag1,x64",
+            interface="int0",
+            snapshot="snap0",
+            resultserver_ip="5.6.7.8",
+            resultserver_port="2043",
+            reserved=False,
+        )
+        db.session.expunge_all()
+    yield machine
+
+
+def get_test_object_path(relpath: str):
+    result = pathlib.Path(__file__).absolute().parent / relpath
+    if not result.exists():
+        pytest.skip("Required data file is not present")
+    return result
+
+
+@pytest.mark.usefixtures("db")
+class TestAnalysisManager:
+    def test_init(self, task: Task):
+        mgr = AnalysisManager(task=task)
+
+        assert mgr.cfg.cuckoo == {
+            "allow_static": False,
+            "categories": "static, pcap, url, file",
+            "freespace": 50000,
+            "delete_original": False,
+            "tmppath": "/tmp",
+            "terminate_processes": False,
+            "memory_dump": False,
+            "delete_bin_copy": False,
+            "max_machines_count": 10,
+            "reschedule": False,
+            "rooter": "/tmp/cuckoo-rooter",
+            "machinery": "kvm",
+            "machinery_screenshots": False,
+            "delete_archive": True,
+            "max_vmstartup_count": 5,
+            "daydelta": 0,
+            "max_analysis_count": 0,
+            "max_len": 196,
+            "sanitize_len": 32,
+            "sanitize_to_len": 24,
+            "scaling_semaphore": False,
+            "scaling_semaphore_update_timer": 10,
+            "task_pending_timeout": 0,
+            "task_timeout": False,
+            "task_timeout_scan_interval": 30,
+            "freespace_processing": 15000,
+            "ignore_signals": True,
+            "periodic_log": False,
+            "fail_unserviceable": True,
+        }
+
+        assert mgr.task.id == task.id
+
+    def test_logger(self, task: Task, caplog: pytest.LogCaptureFixture):
+        mgr = AnalysisManager(task=task)
+        with caplog.at_level(logging.INFO):
+            mgr.log.info("Test")
+        assert any((record.message == f"Task #{task.id}: Test") for record in caplog.records)
+
+    def test_prepare_task_and_machine_to_start_no_machinery(self, db: _Database, task: Task):
+        mgr = AnalysisManager(task=task)
+        assert task.status != TASK_RUNNING
+        with db.session.begin():
+            mgr.prepare_task_and_machine_to_start()
+        with db.session.begin():
+            db.session.refresh(task)
+            assert task.status == TASK_RUNNING
+
+    def test_prepare_task_and_machine_to_start_with_machinery(
+        self, db: _Database, task: Task, machine: Machine, machinery_manager: MachineryManager
+    ):
+        mgr = AnalysisManager(task=task, machine=machine, machinery_manager=machinery_manager)
+        with db.session.begin():
+            mgr.prepare_task_and_machine_to_start()
+        with db.session.begin():
+            db.session.refresh(task)
+            db.session.refresh(machine)
+            logging.info(machine)
+            guest: Guest = db.session.scalar(select(Guest))
+            assert task.status == TASK_RUNNING
+            assert task.machine == machine.label
+            # ToDo fix, idk why this one fails
+            # assert task.machine_id == machine.id
+            assert machine.locked
+            assert guest is not None
+            assert guest.name == machine.name
+            assert guest.label == machine.label
+            assert guest.manager == "MockMachinery"
+            assert guest.task_id == task.id
+
+    def test_init_storage(self, task: Task, tmp_cuckoo_root: pathlib.Path):
+        analysis_man = AnalysisManager(task=task)
+        assert analysis_man.init_storage() is True
+        assert (tmp_cuckoo_root / "storage" / "analyses" / str(task.id)).exists()
+
+    def test_init_storage_already_exists(self, task: Task, tmp_cuckoo_root: pathlib.Path, caplog: pytest.LogCaptureFixture):
+        analysis_man = AnalysisManager(task=task)
+        (tmp_cuckoo_root / "storage" / "analyses" / str(task.id)).mkdir(parents=True)
+        assert analysis_man.init_storage() is False
+        assert "already exists at path" in caplog.text
+
+    def test_init_storage_other_error(self, task: Task, mocker: MockerFixture, caplog: pytest.LogCaptureFixture):
+        mocker.patch("lib.cuckoo.common.path_utils.Path.mkdir", side_effect=OSError)
+        analysis_man = AnalysisManager(task=task)
+        assert analysis_man.init_storage() is False
+        assert "Unable to create analysis folder" in caplog.text
+
+    def test_check_file(self, task: Task, mocker: MockerFixture):
+        class mock_sample:
+            sha256 = "e3b"
+
+        analysis_man = AnalysisManager(task=task)
+        mocker.patch("lib.cuckoo.core.database._Database.view_sample", return_value=mock_sample())
+        assert analysis_man.check_file("e3b") is True
+
+    def test_check_file_err(self, task: Task, mocker: MockerFixture):
+        class mock_sample:
+            sha256 = "different_sha_256"
+
+        analysis_man = AnalysisManager(task=task)
+        mocker.patch("lib.cuckoo.core.database._Database.view_sample", return_value=mock_sample())
+        assert analysis_man.check_file("e3b") is False
+
+    def test_store_file(self, task: Task, tmp_cuckoo_root: pathlib.Path):
+        analysis_man = AnalysisManager(task=task)
+        analysis_man.init_storage()
+        assert analysis_man.store_file(sha256="e3") is True
+        assert (tmp_cuckoo_root / "storage" / "binaries" / "e3").exists()
+        binary_symlink = tmp_cuckoo_root / "storage" / "analyses" / str(task.id) / "binary"
+        assert binary_symlink.is_symlink()
+        assert os.readlink(binary_symlink) == str(tmp_cuckoo_root / "storage" / "binaries" / "e3")
+
+    def test_store_file_no_dir(self, task: Task, mocker: MockerFixture, caplog: pytest.LogCaptureFixture):
+        analysis_man = AnalysisManager(task=task)
+        analysis_man.init_storage()
+        mocker.patch("lib.cuckoo.core.analysis_manager.shutil.copy", side_effect=IOError)
+        assert analysis_man.store_file(sha256="e3be3b") is False
+        assert "Unable to store file" in caplog.text
+
+    def test_store_file_wrong_path(self, task: Task, caplog: pytest.LogCaptureFixture):
+        task.target = "idontexist"
+        analysis_man = AnalysisManager(task=task)
+        analysis_man.init_storage()
+        assert analysis_man.store_file(sha256="e3be3b") is False
+        assert "analysis aborted" in caplog.text
+
+    def test_store_file_binary_already_exists(self, task: Task, tmp_cuckoo_root: pathlib.Path, caplog: pytest.LogCaptureFixture):
+        analysis_man = AnalysisManager(task=task)
+        analysis_man.init_storage()
+        bin_path = tmp_cuckoo_root / "storage" / "binaries" / "sha256"
+        bin_path.parent.mkdir()
+        bin_path.touch()
+        with caplog.at_level(logging.INFO):
+            assert analysis_man.store_file(sha256="sha256") is True
+        assert "File already exists" in caplog.text
+        assert os.readlink(tmp_cuckoo_root / "storage" / "analyses" / str(task.id) / "binary") == str(bin_path)
+
+    def test_screenshot_machine(
+        self,
+        task: Task,
+        machine: Machine,
+        machinery_manager: MachineryManager,
+        tmp_cuckoo_root: pathlib.Path,
+        custom_conf_path: pathlib.Path,
+        monkeypatch,
+    ):
+        screenshot_called = False
+        with open(custom_conf_path / "cuckoo.conf", "wt") as fil:
+            print("[cuckoo]\nmachinery_screenshots = on", file=fil)
+        ConfigMeta.refresh()
+
+        def screenshot(self2, label, path):
+            nonlocal screenshot_called
+            screenshot_called = True
+            assert label == machine.label
+            assert path == str(tmp_cuckoo_root / "storage" / "analyses" / str(task.id) / "shots" / "0001.jpg")
+
+        monkeypatch.setattr(MockMachinery, "screenshot", screenshot)
+
+        analysis_man = AnalysisManager(task=task, machine=machine, machinery_manager=machinery_manager)
+        analysis_man.init_storage()
+        analysis_man.screenshot_machine()
+        assert screenshot_called
+
+    def test_screenshot_machine_disabled(
+        self, task: Task, machine: Machine, machinery_manager: MachineryManager, custom_conf_path: pathlib.Path, monkeypatch
+    ):
+        def screenshot(self2, label, path):
+            raise RuntimeError("This should not get called.")
+
+        monkeypatch.setattr(MockMachinery, "screenshot", screenshot)
+
+        analysis_man = AnalysisManager(task=task, machine=machine, machinery_manager=machinery_manager)
+        analysis_man.init_storage()
+        analysis_man.screenshot_machine()
+
+    def test_screenshot_machine_no_machine(
+        self, task: Task, custom_conf_path: pathlib.Path, monkeypatch, caplog: pytest.LogCaptureFixture
+    ):
+        with open(custom_conf_path / "cuckoo.conf", "wt") as fil:
+            print("[cuckoo]\nmachinery_screenshots = on", file=fil)
+        ConfigMeta.refresh()
+
+        def screenshot(self2, label, path):
+            raise RuntimeError("This should not get called.")
+
+        monkeypatch.setattr(MockMachinery, "screenshot", screenshot)
+
+        analysis_man = AnalysisManager(task=task)
+        analysis_man.init_storage()
+        analysis_man.screenshot_machine()
+        assert "no machine is used" in caplog.text
+
+    def test_build_options(
+        self, db: _Database, tmp_path: pathlib.Path, task: Task, machine: Machine, machinery_manager: MachineryManager
+    ):
+        with db.session.begin():
+            task = db.session.merge(task)
+            task.package = "foo"
+            task.options = "foo=bar"
+            task.enforce_timeout = 1
+            task.clock = datetime.datetime.strptime("01-01-2099 09:01:01", "%m-%d-%Y %H:%M:%S")
+            task.timeout = 10
+
+        analysis_man = AnalysisManager(task=task, machine=machine, machinery_manager=machinery_manager)
+        opts = analysis_man.build_options()
+        assert opts == {
+            "amsi": False,
+            "browser": True,
+            "browsermonitor": False,
+            "category": "file",
+            "clock": datetime.datetime(2099, 1, 1, 9, 1, 1),
+            "curtain": False,
+            "digisig": True,
+            "disguise": True,
+            "do_upload_max_size": 0,
+            "during_script": False,
+            "enable_trim": 0,
+            "enforce_timeout": 1,
+            "evtx": False,
+            "exports": "",
+            "filecollector": True,
+            "file_name": "sample.py",
+            "file_pickup": False,
+            "file_type": "Python script, ASCII text executable",
+            "human_linux": False,
+            "human_windows": True,
+            "id": task.id,
+            "ip": "5.6.7.8",
+            "options": "foo=bar",
+            "package": "foo",
+            "permissions": False,
+            "port": "2043",
+            "pre_script": False,
+            "procmon": False,
+            "recentfiles": False,
+            "screenshots_linux": True,
+            "screenshots_windows": True,
+            "sslkeylogfile": False,
+            "sysmon_linux": False,
+            "sysmon_windows": False,
+            "target": str(tmp_path / "sample.py"),
+            "terminate_processes": False,
+            "timeout": 10,
+            "tlsdump": True,
+            "tracee_linux": False,
+            "upload_max_size": 100000000,
+            "usage": False,
+            "windows_static_route": False,
+            "windows_static_route_gateway": "192.168.1.1",
+            "dns_etw": False,
+            "wmi_etw": False,
+            "watchdownloads": False,
+        }
+
+    def test_build_options_pe(
+        self, db: _Database, tmp_path: pathlib.Path, task: Task, machine: Machine, machinery_manager: MachineryManager
+    ):
+        sample_location = get_test_object_path(
+            pathlib.Path("data/core/5dd87d3d6b9d8b4016e3c36b189234772661e690c21371f1eb8e018f0f0dec2b")
+        )
+        with db.session.begin():
+            task = db.session.merge(task)
+            task.package = "file"
+            task.enforce_timeout = 1
+            task.clock = datetime.datetime.strptime("01-01-2099 09:01:01", "%m-%d-%Y %H:%M:%S")
+            task.timeout = 10
+            task.target = str(sample_location)
+
+        analysis_man = AnalysisManager(task=task, machine=machine, machinery_manager=machinery_manager)
+        opts = analysis_man.build_options()
+        assert opts == {
+            "amsi": False,
+            "browser": True,
+            "browsermonitor": False,
+            "category": "file",
+            "clock": datetime.datetime(2099, 1, 1, 9, 1, 1),
+            "curtain": False,
+            "digisig": True,
+            "disguise": True,
+            "do_upload_max_size": 0,
+            "during_script": False,
+            "enable_trim": 0,
+            "enforce_timeout": 1,
+            "evtx": False,
+            "exports": "",
+            "filecollector": True,
+            "file_name": sample_location.name,
+            "file_pickup": False,
+            "file_type": "PE32 executable (console) Intel 80386, for MS Windows",
+            "human_linux": False,
+            "human_windows": True,
+            "id": task.id,
+            "ip": "5.6.7.8",
+            "options": "",
+            "package": "file",
+            "permissions": False,
+            "port": "2043",
+            "pre_script": False,
+            "procmon": False,
+            "recentfiles": False,
+            "screenshots_linux": True,
+            "screenshots_windows": True,
+            "sslkeylogfile": False,
+            "sysmon_linux": False,
+            "sysmon_windows": False,
+            "target": str(sample_location),
+            "terminate_processes": False,
+            "timeout": 10,
+            "tlsdump": True,
+            "tracee_linux": False,
+            "upload_max_size": 100000000,
+            "usage": False,
+            "windows_static_route": False,
+            "windows_static_route_gateway": "192.168.1.1",
+            "dns_etw": False,
+            "wmi_etw": False,
+            "watchdownloads": False,
+        }
+
+    def test_category_checks(
+        self, db: _Database, task: Task, machine: Machine, machinery_manager: MachineryManager, mocker: MockerFixture
+    ):
+        sample_sha256 = "5dd87d3d6b9d8b4016e3c36b189234772661e690c21371f1eb8e018f0f0dec2b"
+
+        class mock_sample:
+            sha256 = sample_sha256
+
+        sample_location = get_test_object_path(pathlib.Path("data/core") / sample_sha256)
+        with db.session.begin():
+            task = db.session.merge(task)
+            task.target = str(sample_location)
+
+        analysis_man = AnalysisManager(task=task, machine=machine, machinery_manager=machinery_manager)
+        assert analysis_man.init_storage() is True
+        mocker.patch("lib.cuckoo.core.database._Database.view_sample", return_value=mock_sample())
+
+        assert analysis_man.category_checks() is None
+
+    def test_category_checks_modified_file(
+        self, db: _Database, task: Task, machine: Machine, machinery_manager: MachineryManager, mocker: MockerFixture
+    ):
+        sample_sha256 = "5dd87d3d6b9d8b4016e3c36b189234772661e690c21371f1eb8e018f0f0dec2b"
+
+        class mock_sample:
+            sha256 = "123"
+
+        sample_location = get_test_object_path(pathlib.Path("data/core") / sample_sha256)
+        with db.session.begin():
+            task = db.session.merge(task)
+            task.target = str(sample_location)
+
+        analysis_man = AnalysisManager(task=task, machine=machine, machinery_manager=machinery_manager)
+        assert analysis_man.init_storage() is True
+        mocker.patch("lib.cuckoo.core.database._Database.view_sample", return_value=mock_sample())
+
+        assert analysis_man.category_checks() is False
+
+    def test_category_checks_no_store_file(
+        self, db: _Database, task: Task, machine: Machine, machinery_manager: MachineryManager, mocker: MockerFixture
+    ):
+        sample_sha256 = "5dd87d3d6b9d8b4016e3c36b189234772661e690c21371f1eb8e018f0f0dec2b"
+
+        class mock_sample:
+            sha256 = sample_sha256
+
+        sample_location = get_test_object_path(pathlib.Path("data/core") / sample_sha256)
+        with db.session.begin():
+            task = db.session.merge(task)
+            task.target = str(sample_location)
+
+        analysis_man = AnalysisManager(task=task, machine=machine, machinery_manager=machinery_manager)
+        assert analysis_man.init_storage() is True
+        mocker.patch("lib.cuckoo.core.database._Database.view_sample", return_value=mock_sample())
+        mocker.patch("lib.cuckoo.core.scheduler.AnalysisManager.store_file", return_value=False)
+        assert analysis_man.category_checks() is False
+
+    def test_category_checks_pcap(
+        self, db: _Database, task: Task, machine: Machine, machinery_manager: MachineryManager, mocker: MockerFixture
+    ):
+        sample_sha256 = "5dd87d3d6b9d8b4016e3c36b189234772661e690c21371f1eb8e018f0f0dec2b"
+
+        class mock_sample:
+            sha256 = sample_sha256
+
+        sample_location = get_test_object_path(pathlib.Path("data/core") / sample_sha256)
+        with db.session.begin():
+            task = db.session.merge(task)
+            task.target = str(sample_location)
+            task.category = "pcap"
+
+        analysis_man = AnalysisManager(task=task, machine=machine, machinery_manager=machinery_manager)
+        assert analysis_man.init_storage() is True
+        mocker.patch("lib.cuckoo.core.database._Database.view_sample", return_value=mock_sample())
+        assert analysis_man.category_checks() is True
diff --git a/tests/test_behavior.py b/tests/test_behavior.py
new file mode 100644
index 00000000000..f5165075d63
--- /dev/null
+++ b/tests/test_behavior.py
@@ -0,0 +1,16 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+from lib.cuckoo.common.config import Config
+from modules.processing.behavior import ParseProcessLog
+
+cfg = Config("processing")
+
+
+class TestParseProcessLog:
+    def test_init(self):
+        assert (
+            str(ParseProcessLog("CAPEv2/tests/test_bson.bson", cfg.behavior))
+            == "<ParseProcessLog log-path: CAPEv2/tests/test_bson.bson>"
+        )
diff --git a/tests/test_bson.bson b/tests/test_bson.bson
new file mode 100644
index 00000000000..4d2a4c99d22
Binary files /dev/null and b/tests/test_bson.bson differ
diff --git a/tests/test_cape_utils.py b/tests/test_cape_utils.py
new file mode 100644
index 00000000000..5d290e8d081
--- /dev/null
+++ b/tests/test_cape_utils.py
@@ -0,0 +1,74 @@
+import unittest
+from unittest.mock import MagicMock, patch
+
+from lib.cuckoo.common.cape_utils import cape_name_from_yara, static_config_parsers
+
+
+class TestCapeUtils(unittest.TestCase):
+    @patch("lib.cuckoo.common.cape_utils.File.yara_hit_provides_detection")
+    @patch("lib.cuckoo.common.cape_utils.File.get_cape_name_from_yara_hit")
+    def test_cape_name_from_yara(self, mock_get_cape_name_from_yara_hit, mock_yara_hit_provides_detection):
+        details = {"cape_yara": [{"rule": "test_rule_1"}, {"rule": "test_rule_2"}]}
+        pid = 1234
+        results = {}
+
+        mock_yara_hit_provides_detection.side_effect = [False, True]
+        mock_get_cape_name_from_yara_hit.return_value = "test_name"
+
+        name = cape_name_from_yara(details, pid, results)
+
+        self.assertEqual(name, "test_name")
+        self.assertIn("detections2pid", results)
+        self.assertIn(str(pid), results["detections2pid"])
+        self.assertIn("test_name", results["detections2pid"][str(pid)])
+
+    @patch("lib.cuckoo.common.cape_utils.File.yara_hit_provides_detection")
+    def test_cape_name_from_yara_no_detection(self, mock_yara_hit_provides_detection):
+        details = {"cape_yara": [{"rule": "test_rule_1"}]}
+        pid = 1234
+        results = {}
+
+        mock_yara_hit_provides_detection.return_value = False
+
+        name = cape_name_from_yara(details, pid, results)
+
+        self.assertIsNone(name)
+        self.assertNotIn("detections2pid", results)
+
+    def test_cape_name_from_yara_no_cape_yara(self):
+        details = {}
+        pid = 1234
+        results = {}
+
+        name = cape_name_from_yara(details, pid, results)
+
+        self.assertIsNone(name)
+        self.assertNotIn("detections2pid", results)
+
+
+class TestStaticConfigParsers(unittest.TestCase):
+    @patch("lib.cuckoo.common.cape_utils.HAVE_CAPE_EXTRACTORS", True)
+    @patch("lib.cuckoo.common.cape_utils.cape_malware_parsers")
+    def test_static_config_parsers_cape_extractors(self, mock_cape_malware_parsers):
+        cape_name = "test_cape"
+        file_path = "/path/to/file"
+        file_data = b"test data"
+        mock_parser = MagicMock()
+        mock_parser.extract_config.return_value = {"key": "value"}
+        mock_cape_malware_parsers.__contains__.return_value = True
+        mock_cape_malware_parsers.__getitem__.return_value = mock_parser
+        result = static_config_parsers(cape_name, file_path, file_data)
+        self.assertIn(cape_name, result)
+        self.assertIn("key", result[cape_name])
+        self.assertEqual(result[cape_name]["key"], ["value"])
+
+    def test_static_config_parsers_no_extractors(self):
+        cape_name = "test_none"
+        file_path = "/path/to/file"
+        file_data = b"test data"
+        result = static_config_parsers(cape_name, file_path, file_data)
+        self.assertEqual(result, {})
+
+
+if __name__ == "__main__":
+    unittest.main()
diff --git a/tests/test_cleaners_utils.py b/tests/test_cleaners_utils.py
new file mode 100644
index 00000000000..37054d4e138
--- /dev/null
+++ b/tests/test_cleaners_utils.py
@@ -0,0 +1,10 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+from lib.cuckoo.common import cleaners_utils
+
+
+def test_free_space_monitor(mocker):
+    # Will not enter main loop
+    cleaners_utils.free_space_monitor(return_value=True)
diff --git a/tests/test_colors.py b/tests/test_colors.py
new file mode 100644
index 00000000000..d54cb2ebd33
--- /dev/null
+++ b/tests/test_colors.py
@@ -0,0 +1,18 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+from lib.cuckoo.common.colors import black, blue, bold, color, cyan, green, magenta, red, white, yellow  # noqa: F401
+
+
+def test_return_text():
+    """Test colorized text contains the input string."""
+    assert "foo" in color("foo", 11)
+
+
+def test_style():
+    style = {"black": 30, "red": 31, "green": 32, "yellow": 33, "blue": 34, "magenta": 35, "cyan": 36, "white": 37, "bold": 1}
+
+    for s in style:
+        fn = globals()[s]
+        assert fn("test") == "\x1b[%smtest\x1b[0m" % style[s]
diff --git a/tests/test_compressor.py b/tests/test_compressor.py
new file mode 100644
index 00000000000..0d59a4ef522
--- /dev/null
+++ b/tests/test_compressor.py
@@ -0,0 +1,24 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+import os
+import pathlib
+
+from lib.cuckoo.common.compressor import CuckooBsonCompressor
+from lib.cuckoo.common.path_utils import path_delete
+
+
+class TestCuckooBsonCompresson:
+    def test_init(self):
+        assert CuckooBsonCompressor()
+
+    def test_run(self):
+        file_path = os.path.join(pathlib.Path(__file__).absolute().parent.as_posix(), "test_bson.bson")
+        try:
+            CuckooBsonCompressor().run(file_path=file_path)
+        finally:
+            try:
+                path_delete(os.path.dirname(file_path) + "/test_bson.bson.compressed")
+            except Exception as e:
+                print(("Exception cleaning up, should be fine:" + str(e)))
diff --git a/tests/test_config.py b/tests/test_config.py
new file mode 100644
index 00000000000..807abed0091
--- /dev/null
+++ b/tests/test_config.py
@@ -0,0 +1,171 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+import configparser
+import textwrap
+
+import pytest
+
+from lib.cuckoo.common.config import AnalysisConfig, Config, ConfigMeta
+from lib.cuckoo.common.exceptions import CuckooOperationalError
+from lib.cuckoo.common.path_utils import path_write_file
+
+
+@pytest.fixture
+def analysis_config(tmp_path):
+    CONF_EXAMPLE = """
+[cuckoo]
+debug = off
+analysis_timeout = 120
+critical_timeout = 600
+delete_original = off
+machine_manager = kvm
+use_sniffer = no
+tcpdump = /usr/sbin/tcpdump
+interface = vboxnet0
+"""
+    path = tmp_path / "analysis.conf"
+    path_write_file(path, CONF_EXAMPLE, mode="text")
+    yield AnalysisConfig(path)
+
+
+class TestAnalysisConfig:
+    def test_get_option_exist(self, analysis_config):
+        """Fetch an option of each type from default config file."""
+        assert analysis_config.get("cuckoo")["debug"] is False
+        assert analysis_config.get("cuckoo")["tcpdump"] == "/usr/sbin/tcpdump"
+        assert analysis_config.get("cuckoo")["critical_timeout"] == 600
+
+    def test_dotted_syntax(self, analysis_config):
+        assert analysis_config.cuckoo.delete_original is False
+
+    def test_config_file_not_found(self):
+        assert AnalysisConfig("foo")
+
+    def test_get_option_not_found(self, analysis_config):
+        with pytest.raises(CuckooOperationalError):
+            analysis_config.get("foo")
+
+    def test_get_option_not_found_in_file_not_found(self):
+        analysis_config = AnalysisConfig("bar")
+        with pytest.raises(CuckooOperationalError):
+            analysis_config.get("foo")
+
+    def test_analysis_configs_are_not_reused(self, tmp_path, analysis_config):
+        analysis_config2 = AnalysisConfig(str(tmp_path / "analysis.conf"))
+        assert analysis_config is not analysis_config2
+
+
+def write_config(path, content):
+    path_write_file(path, textwrap.dedent(content), mode="text")
+
+
+class TestConfig:
+    def test_option_override(self, custom_conf_path):
+        """Fetch an option of each type from default config file."""
+        custom_conf = custom_conf_path / "cuckoo.conf"
+        write_config(
+            custom_conf,
+            """
+            [cuckoo]
+            machinery_screenshots = true
+            """,
+        )
+        config = Config("cuckoo")
+        ConfigMeta.refresh()
+
+        # This was overridden in the custom config.
+        assert config.get("cuckoo")["machinery_screenshots"] is True
+        # This was inherited from the default config.
+        assert config.get("cuckoo")["max_analysis_count"] == 0
+
+    def test_nonexistent_custom_file(self):
+        """Verify that there are no problems when the file to be processed does not
+        exist in the custom config dir.
+        """
+        config = Config("cuckoo")
+        assert config.get("cuckoo")["machinery_screenshots"] is False
+        assert config.get("cuckoo")["max_analysis_count"] == 0
+
+    def test_subdirs(self, custom_conf_path):
+        api_conf = custom_conf_path / "api.conf"
+        write_config(
+            api_conf,
+            """
+            [api]
+            ratelimit = no
+            """,
+        )
+        api_conf_d_dir = custom_conf_path / "api.conf.d"
+        api_conf_d_dir.mkdir()
+        host_specific_conf = api_conf_d_dir / "01_host_specific.conf"
+        url = "https://somehost.example.com"
+        write_config(
+            host_specific_conf,
+            f"""
+            [api]
+            url = {url}
+            """,
+        )
+        ConfigMeta.refresh()
+        config = Config("api")
+        # This is set to 'no' in the default api.conf and not overridden.
+        assert config.get("api")["token_auth_enabled"] is False
+        # This is set to 'yes' in the default api.conf but overridden in the custom
+        # api.conf.
+        assert config.get("api")["ratelimit"] is False
+        # This is set to http://example.tld in the default api.conf and overridden in
+        # api.conf.d/01_host_specific.conf.
+        assert config.get("api")["url"] == url
+
+    def test_singleton_configs(self):
+        """Verify that Config objects that were passed the same "file_name" argument
+        are reused.
+        """
+        config1 = Config("cuckoo")
+        config2 = Config("cuckoo")
+        assert config1 is config2
+
+    def test_environment_interpolation(self, custom_conf_path, monkeypatch):
+        """Verify that environment variables are able to be referenced in config
+        files.
+        """
+        custom_conf = custom_conf_path / "processing.conf"
+        write_config(
+            custom_conf,
+            """
+            [virustotal]
+            on_demand = yes
+            key = %(ENV:DLINTELKEY)s
+            """,
+        )
+
+        custom_secret = "MyReallySecretKeyWithAPercent(%)InIt"
+        monkeypatch.setenv("DLINTELKEY", custom_secret)
+        config = Config("processing")
+        ConfigMeta.refresh()
+        section = config.get("virustotal")
+        # Inherited from default config
+        assert section.enabled is True
+        # Overridden from custom config
+        assert section.on_demand is True
+        # Overridden from custom config and uses environment variable
+        assert section.key == custom_secret
+
+    def test_missing_environment_interpolation(self, custom_conf_path, monkeypatch):
+        """Verify that an exception is raised if an ENV variable is to be used in a
+        config file, but that variable is not present in the environment.
+        """
+        custom_conf = custom_conf_path / "processing.conf"
+        write_config(
+            custom_conf,
+            """
+            [virustotal]
+            key = %(ENV:IDONTEXIST)s
+            """,
+        )
+
+        with pytest.raises(configparser.InterpolationMissingOptionError):
+            ConfigMeta.refresh()
+            _ = Config("processing")
diff --git a/tests/test_data/1/reports/report.json b/tests/test_data/1/reports/report.json
new file mode 100644
index 00000000000..190ed12ed1f
--- /dev/null
+++ b/tests/test_data/1/reports/report.json
@@ -0,0 +1,36 @@
+{
+  "statistics": {
+    "signatures": []
+  },
+  "behavior": {
+    "processes": [
+      {
+      "process_id": 6444,
+      "process_name": "powershell.exe",
+      "parent_id": 7772,
+      "module_path": "C:\\Windows\\System32\\WindowsPowerShell\\v1.0\\powershell.exe",
+      "first_seen": "2024-01-17 20:30:16,072",
+      "calls": [
+        {
+          "timestamp": "2024-01-17 20:31:18,697",
+          "thread_id": "7948",
+          "caller": "0x7ff60f5411a1",
+          "parentcaller": "0x7ff60f5417b0",
+          "category": "network",
+          "api": "gethostbyname",
+          "status": true,
+          "return": "0x26d1cd72460",
+          "arguments": [
+            {
+              "name": "Name",
+              "value": ""
+            }
+          ],
+          "repeated": 0,
+          "id": 37
+        }
+      ]
+      }
+    ]  
+  }
+}
\ No newline at end of file
diff --git a/tests/test_data/2/reports/report.json b/tests/test_data/2/reports/report.json
new file mode 100644
index 00000000000..c5ad9ba936e
--- /dev/null
+++ b/tests/test_data/2/reports/report.json
@@ -0,0 +1,36 @@
+{
+  "statistics": {
+    "signatures": []
+  },
+  "behavior": {
+    "processes": [
+      {
+      "process_id": 6444,
+      "process_name": "powershell.exe",
+      "parent_id": 7772,
+      "module_path": "C:\\Windows\\System32\\WindowsPowerShell\\v1.0\\powershell.exe",
+      "first_seen": "2024-01-17 20:30:16,072",
+      "calls": [
+        {
+          "timestamp": "2024-01-17 20:31:18,697",
+          "thread_id": "7948",
+          "caller": "0x7ff60f5411a1",
+          "parentcaller": "0x7ff60f5417b0",
+          "category": "network",
+          "api": "send",
+          "status": true,
+          "return": "0x26d1cd72460",
+          "arguments": [
+            {
+              "name": "Name",
+              "value": ""
+            }
+          ],
+          "repeated": 0,
+          "id": 37
+        }
+      ]
+      }
+    ]  
+  }
+}
\ No newline at end of file
diff --git a/tests/test_data/3/reports/report.json b/tests/test_data/3/reports/report.json
new file mode 100644
index 00000000000..f11d320b831
--- /dev/null
+++ b/tests/test_data/3/reports/report.json
@@ -0,0 +1,36 @@
+{
+  "statistics": {
+    "signatures": []
+  },
+  "behavior": {
+      "processes": [
+        {
+        "process_id": 6444,
+        "process_name": "calc.exe",
+        "parent_id": 7772,
+        "module_path": "C:\\Windows\\System32\\WindowsPowerShell\\v1.0\\powershell.exe",
+        "first_seen": "2024-01-17 20:30:16,072",
+        "calls": [
+          {
+            "timestamp": "2024-01-17 20:31:18,697",
+            "thread_id": "7948",
+            "caller": "0x7ff60f5411a1",
+            "parentcaller": "0x7ff60f5417b0",
+            "category": "misc",
+            "api": "explode",
+            "status": true,
+            "return": "0x26d1cd72460",
+            "arguments": [
+              {
+                "name": "Name",
+                "value": ""
+              }
+            ],
+            "repeated": 0,
+            "id": 37
+          }
+        ]
+        }
+      ]  
+    }
+}
\ No newline at end of file
diff --git a/tests/test_database.py b/tests/test_database.py
new file mode 100644
index 00000000000..55c00dd7fdc
--- /dev/null
+++ b/tests/test_database.py
@@ -0,0 +1,1489 @@
+# Copyright (C) 2016-2018 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+import base64
+import dataclasses
+import datetime
+import hashlib
+import os
+import pathlib
+import shutil
+from tempfile import NamedTemporaryFile
+
+import pytest
+from sqlalchemy import select, func
+from sqlalchemy.exc import SQLAlchemyError
+
+from lib.cuckoo.common.exceptions import CuckooUnserviceableTaskError
+from lib.cuckoo.common.path_utils import path_mkdir
+from lib.cuckoo.common.utils import store_temp_file
+from lib.cuckoo.core import database
+from lib.cuckoo.core.database import (
+    TASK_BANNED,
+    TASK_COMPLETED,
+    TASK_PENDING,
+    TASK_REPORTED,
+    TASK_RUNNING,
+    Error,
+    Guest,
+    Machine,
+    Sample,
+    Tag,
+    Task,
+    _Database,
+    machines_tags,
+)
+
+
+@dataclasses.dataclass
+class StorageLayout:
+    tmp_path: pathlib.Path
+    storage: str
+    binary_storage: str
+    analyses_storage: str
+    tmpdir: str
+
+
+@pytest.fixture
+def storage(tmp_path, request):
+    storage = tmp_path / "storage"
+    binaries = storage / "binaries"
+    binaries.mkdir(mode=0o755, parents=True)
+    analyses = storage / "analyses"
+    analyses.mkdir(mode=0o755, parents=True)
+    tmpdir = tmp_path / "tmp"
+    tmpdir.mkdir(mode=0o755, parents=True)
+    yield StorageLayout(
+        tmp_path=tmp_path,
+        storage=str(storage),
+        binary_storage=str(binaries),
+        analyses_storage=str(analyses),
+        tmpdir=str(tmpdir),
+    )
+    shutil.rmtree(str(tmp_path))
+
+
+@pytest.fixture
+def temp_filename(storage: StorageLayout):
+    with NamedTemporaryFile(mode="w+", delete=False, dir=storage.storage) as f:
+        f.write("hehe")
+    yield f.name
+
+
+@pytest.fixture
+def temp_pcap(temp_filename: str, storage: StorageLayout):
+    pcap_header_base64 = b"1MOyoQIABAAAAAAAAAAAAAAABAABAAAA"
+    pcap_bytes = base64.b64decode(pcap_header_base64)
+    yield store_temp_file(pcap_bytes, "%s.pcap" % temp_filename, storage.tmpdir.encode())
+
+
+@pytest.mark.usefixtures("tmp_cuckoo_root", "storage")
+class TestDatabaseEngine:
+    """Test database stuff."""
+
+    URI = None
+
+    def add_machine(self, db: _Database, **kwargs) -> Machine:
+        dflt = dict(
+            name="name0",
+            label="label0",
+            ip="1.2.3.0",
+            platform="windows",
+            tags="tag1,x64",
+            interface="int0",
+            snapshot="snap0",
+            resultserver_ip="5.6.7.8",
+            resultserver_port="2043",
+            arch="x64",
+            reserved=False,
+        )
+        dflt.update(kwargs)
+        return db.add_machine(**dflt)
+
+    def test_add_tasks(self, db: _Database, temp_filename: str):
+        # A single transaction block makes the test flow clearer.
+        with db.session.no_autoflush:
+            # Define the modern count statement once.
+            count_stmt = select(func.count(Task.id))
+
+            # Initial state: assert count is 0.
+            assert db.session.scalar(count_stmt) == 0
+
+            # Add task path.
+            db.add_path(temp_filename)
+            assert db.session.scalar(count_stmt) == 1
+
+            # Add task URL.
+            db.add_url("http://foo.bar")
+            assert db.session.scalar(count_stmt) == 2
+
+    def test_error_exists(self, db: _Database):
+        err_msg = "A" * 1024
+        with db.session.no_autoflush:
+            task_id = db.add_url("http://google.com/")
+            db.add_error(err_msg, task_id)
+        with db.session.no_autoflush:
+            errs = db.view_errors(task_id)
+            assert len(errs) == 1
+            assert errs[0].message == err_msg
+        with db.session.no_autoflush:
+            db.add_error(err_msg, task_id)
+        with db.session.no_autoflush:
+            assert len(db.view_errors(task_id)) == 2
+
+    def test_task_set_options(self, db: _Database, temp_filename: str):
+        with pytest.raises(SQLAlchemyError):
+            with db.session.begin():
+                # Make sure options passed in as a dict are not allowed.
+                db.add_path(temp_filename, options={"foo": "bar"})
+
+        with db.session.begin():
+            t1 = db.add_path(temp_filename, options="foo=bar")
+
+        with db.session.begin():
+            assert db.view_task(t1).options == "foo=bar"
+
+    def test_task_tags_str(self, db: _Database, temp_filename: str):
+        with db.session.begin():
+            t1 = db.add_path(temp_filename, tags="foo,,bar")
+            t2 = db.add_path(temp_filename, tags="boo,,far")
+
+        with db.session.begin():
+            t1_tag_list = [str(x.name) for x in list(db.view_task(t1).tags)]
+            t2_tag_list = [str(x.name) for x in list(db.view_task(t2).tags)]
+
+        t1_tag_list.sort()
+        t2_tag_list.sort()
+
+        assert t1_tag_list == ["bar", "foo"]
+        assert t2_tag_list == ["boo", "far"]
+
+    def test_task_tags_pe32(self, db: _Database, temp_pe32: str):
+        with db.session.begin():
+            t1 = db.add_path(temp_pe32, tags="")
+
+        with db.session.begin():
+            task = db.view_task(t1)
+            assert ["x86"] == [str(x.name) for x in list(task.tags)]
+
+    def test_task_tags_pe64(self, db: _Database, temp_pe64: str):
+        with db.session.begin():
+            t1 = db.add_path(temp_pe64, tags="")
+
+        with db.session.begin():
+            task = db.view_task(t1)
+            assert ["x64"] == [str(x.name) for x in list(task.tags)]
+
+    def test_task_tags_elf(self, db: _Database, temp_elf64: str):
+        with db.session.begin():
+            t1 = db.add_path(temp_elf64, tags="")
+
+        with db.session.begin():
+            task = db.view_task(t1)
+            assert ["x64"] == [str(x.name) for x in list(task.tags)]
+
+    def test_truncate_error_msg(self, monkeypatch):
+        monkeypatch.setattr(Error, "MAX_LENGTH", 20)
+        err = Error("abcdefghijklmnopqrstuvwxyz", 1)
+        assert err.message == "abcdefgh...rstuvwxyz"
+
+    def test_reschedule_file(self, db: _Database, temp_filename: str, storage: StorageLayout):
+        with db.session.begin():
+            task_id = db.add_path(temp_filename)
+        with db.session.begin():
+            count_stmt = select(func.count(Task.id))
+            assert db.session.scalar(count_stmt) == 1
+
+            task = db.view_task(task_id)
+            assert task is not None
+
+        db.session.expunge(task)
+        assert task.category == "file"
+
+        # write a real sample to storage
+        task_path = os.path.join(storage.analyses_storage, str(task.id))
+        path_mkdir(task_path)
+        shutil.copy(temp_filename, os.path.join(task_path, "binary"))
+
+        with db.session.begin():
+            new_task_id = db.reschedule(task_id)
+        assert new_task_id is not None
+
+        with db.session.begin():
+            new_task = db.view_task(new_task_id)
+        assert new_task.category == "file"
+
+    def test_reschedule_static(self, db: _Database, temp_filename: str, storage: StorageLayout):
+        with db.session.begin():
+            task_ids = db.add_static(temp_filename)
+        assert len(task_ids) == 1
+        task_id = task_ids[0]
+        with db.session.begin():
+            count_stmt = select(func.count(Task.id))
+            assert db.session.scalar(count_stmt) == 1
+            task = db.view_task(task_id)
+            assert task is not None
+            db.session.expunge_all()
+        assert task.category == "static"
+
+        # write a real sample to storage
+        static_path = os.path.join(storage.binary_storage, task.sample.sha256)
+        shutil.copy(temp_filename, static_path)
+
+        with db.session.begin():
+            new_task_id = db.reschedule(task_id)
+            assert new_task_id is not None
+        with db.session.begin():
+            new_task = db.view_task(new_task_id[0])
+            assert new_task.category == "static"
+
+    def test_reschedule_pcap(self, db: _Database, temp_pcap: str, storage: StorageLayout):
+        with db.session.begin():
+            task_id = db.add_pcap(temp_pcap)
+        with db.session.begin():
+            count_stmt = select(func.count(Task.id))
+            assert db.session.scalar(count_stmt) == 1
+            task = db.view_task(task_id)
+            assert task is not None
+            db.session.expunge_all()
+        assert task.category == "pcap"
+
+        # write a real sample to storage
+        pcap_path = os.path.join(storage.binary_storage, task.sample.sha256)
+        shutil.copy(temp_pcap, pcap_path)
+
+        # reschedule the PCAP task
+        with db.session.begin():
+            new_task_id = db.reschedule(task_id)
+        assert new_task_id is not None
+        with db.session.begin():
+            new_task = db.view_task(new_task_id)
+            assert new_task.category == "pcap"
+
+    def test_reschedule_url(self, db: _Database):
+        # add a URL task
+        with db.session.begin():
+            task_id = db.add_url("test_reschedule_url")
+        with db.session.begin():
+            count_stmt = select(func.count(Task.id))
+            assert db.session.scalar(count_stmt) == 1
+            task = db.view_task(task_id)
+            assert task is not None
+            assert task.category == "url"
+
+        # reschedule the URL task
+        with db.session.begin():
+            new_task_id = db.reschedule(task_id)
+        assert new_task_id is not None
+        with db.session.begin():
+            new_task = db.view_task(new_task_id)
+            assert new_task.category == "url"
+
+    def test_add_machine(self, db: _Database):
+        with db.session.begin():
+            self.add_machine(db, name="name1", label="label1", tags="tag1 tag2,tag3")
+            self.add_machine(db, name="name2", label="label2", tags="tag1 tag2", reserved=True)
+        with db.session.begin():
+            m1 = db.view_machine("name1")
+            m2 = db.view_machine("name2")
+
+            assert m1.to_dict() == {
+                "status": None,
+                "locked": False,
+                "name": "name1",
+                "resultserver_ip": "5.6.7.8",
+                "ip": "1.2.3.0",
+                "tags": ["tag1tag2", "tag3"],
+                "label": "label1",
+                "locked_changed_on": None,
+                "platform": "windows",
+                "snapshot": "snap0",
+                "interface": "int0",
+                "status_changed_on": None,
+                "id": 1,
+                "resultserver_port": "2043",
+                "arch": "x64",
+                "reserved": False,
+            }
+
+            assert m2.to_dict() == {
+                "id": 2,
+                "interface": "int0",
+                "ip": "1.2.3.0",
+                "label": "label2",
+                "locked": False,
+                "locked_changed_on": None,
+                "name": "name2",
+                "platform": "windows",
+                "resultserver_ip": "5.6.7.8",
+                "resultserver_port": "2043",
+                "snapshot": "snap0",
+                "status": None,
+                "status_changed_on": None,
+                "tags": ["tag1tag2"],
+                "arch": "x64",
+                "reserved": True,
+            }
+
+    def test_find_machine_to_service_task_tags_reserved(self, db: _Database):
+        with db.session.begin():
+            self.add_machine(db, name="name0", label="label0", tags="tag1,x64", reserved=False)
+            self.add_machine(db, name="name1", label="label1", tags="tag1,x64", reserved=True)
+            self.add_machine(db, name="name2", label="label2", tags="tag1,tag2,x64", reserved=True)
+            self.add_machine(db, name="name3", label="label3", tags="tag3,x64", locked=True)
+            self.add_machine(db, name="name4", label="label4", tags="tag4,x64", locked=True, reserved=True)
+        task1 = Task()
+        task1.tags = [Tag("tag1")]
+        task2 = Task()
+        task2.tags = [Tag("tag2")]
+        task3 = Task()
+        task3.machine = "label0"
+        task4 = Task()
+        task4.machine = "label1"
+        task5 = Task()
+        task5.tags = [Tag("tag3")]
+        task6 = Task()
+        task6.tags = [Tag("tag4")]
+        task7 = Task()
+        task7.tags = [Tag("idontexist")]
+        with db.session.begin():
+            # A task with a tag. An unreserved, unlocked machine exists.
+            assert db.find_machine_to_service_task(task1).name == "name0"
+            # A task with a tag. A reserved, unlocked machine exists.
+            assert db.find_machine_to_service_task(task2).name == "name2"
+            # A task with a requested machine that is unreserved and unlocked.
+            assert db.find_machine_to_service_task(task3).name == "name0"
+            # A task with a requested machine that is reserved and unlocked.
+            assert db.find_machine_to_service_task(task4).name == "name1"
+            # A task with a tag. An unreserved, locked machine exists.
+            assert db.find_machine_to_service_task(task5) is None
+            # A task with a tag. A reserved, locked machine exists.
+            assert db.find_machine_to_service_task(task6) is None
+            # A task with a tag that doesn't match any machines.
+            with pytest.raises(CuckooUnserviceableTaskError):
+                db.find_machine_to_service_task(task7)
+
+    def test_clean_machines(self, db: _Database):
+        """Add a couple machines and make sure that clean_machines removes them and their tags."""
+        with db.session.begin():
+            for i, tags in ((1, "tag1"), (2, None)):
+                self.add_machine(
+                    db,
+                    name=f"name{i}",
+                    label=f"label{i}",
+                    ip=f"1.2.3.{i}",
+                    tags=tags,
+                )
+        with db.session.begin():
+            db.clean_machines()
+
+        with db.session.begin():
+            assert db.session.scalar(select(func.count(Machine.id))) == 0
+            assert db.session.scalar(select(func.count(Tag.id))) == 1
+            assert db.session.scalar(select(func.count()).select_from(machines_tags)) == 0
+
+    def test_delete_machine(self, db: _Database):
+        machines = []
+        with db.session.begin():
+            for i, tags in ((1, "tag1"), (2, None)):
+                machines.append(f"name{i}")
+                self.add_machine(
+                    db,
+                    name=machines[-1],
+                    label=f"label{i}",
+                    ip=f"1.2.3.{i}",
+                    tags=tags,
+                )
+        with db.session.begin():
+            assert db.delete_machine(machines[0])
+            assert db.session.scalar(select(func.count(Machine.id))) == 1
+            # Attempt to delete the same machine.
+            assert not db.delete_machine(machines[0])
+            assert db.session.scalar(select(func.count(Machine.id))) == 1
+            assert db.delete_machine(machines[1])
+            assert db.session.scalar(select(func.count(Machine.id))) == 0
+
+    def test_set_machine_interface(self, db: _Database):
+        intf = "newintf"
+        with db.session.begin():
+            self.add_machine(db)
+            assert db.set_machine_interface("label0", intf) is not None
+            assert db.set_machine_interface("idontexist", intf) is None
+
+        with db.session.begin():
+            assert db.session.scalar(select(Machine).where(Machine.label == "label0")).interface == intf
+
+    def test_set_vnc_port(self, db: _Database):
+        with db.session.begin():
+            id1 = db.add_url("http://foo.bar")
+            id2 = db.add_url("http://foo.bar", options="nomonitor=1")
+        with db.session.begin():
+            db.set_vnc_port(id1, 6001)
+            db.set_vnc_port(id2, 6002)
+            # Make sure that it doesn't fail if giving a task ID that doesn't exist.
+            db.set_vnc_port(id2 + 1, 6003)
+        with db.session.begin():
+            t1 = db.session.get(Task, id1)
+            assert t1.options == "vnc_port=6001"
+            t2 = db.session.get(Task, id2)
+            assert t2.options == "nomonitor=1,vnc_port=6002"
+
+    def test_update_clock_file(self, db: _Database, temp_filename: str, monkeypatch, freezer):
+        with db.session.begin():
+            # This task ID doesn't exist.
+            assert db.update_clock(1) is None
+
+            task_id = db.add_path(temp_filename)
+            now = datetime.datetime.utcnow()
+            monkeypatch.setattr(db.cfg.cuckoo, "daydelta", 1)
+            new_clock = now + datetime.timedelta(days=1)
+            assert db.update_clock(task_id) == new_clock
+        with db.session.begin():
+            assert db.session.scalar(select(Task)).clock == new_clock
+
+    def test_update_clock_url(self, db: _Database, monkeypatch, freezer):
+        with db.session.begin():
+            task_id = db.add_url("https://www.google.com")
+            now = datetime.datetime.utcnow()
+            monkeypatch.setattr(database.datetime, "utcnow", lambda: now)
+            # URL's are unaffected by the daydelta setting.
+            monkeypatch.setattr(db.cfg.cuckoo, "daydelta", 1)
+            assert db.update_clock(task_id) == now
+        with db.session.begin():
+            assert db.session.scalar(select(Task)).clock == now
+
+    def test_set_status(self, db: _Database, freezer):
+        with db.session.begin():
+            assert db.set_status(1, TASK_COMPLETED) is None
+            task_id = db.add_url("https://www.google.com")
+        with db.session.begin():
+            task = db.session.get(Task, task_id)
+            assert task.started_on is None
+            assert task.completed_on is None
+            now = datetime.datetime.utcnow()
+            freezer.move_to(now)
+            db.set_status(task_id, TASK_RUNNING)
+            task = db.session.get(Task, task_id)
+            assert task.status == TASK_RUNNING
+            assert task.started_on == now
+            assert task.completed_on is None
+
+            new_now = now + datetime.timedelta(seconds=1)
+            freezer.move_to(new_now)
+            db.set_status(task_id, TASK_COMPLETED)
+            task = db.session.get(Task, task_id)
+            assert task.status == TASK_COMPLETED
+            assert task.started_on == now
+            assert task.completed_on == new_now
+
+    def test_create_guest(self, db: _Database):
+        with db.session.begin():
+            machine = self.add_machine(db)
+            task_id = db.add_url("http://foo.bar")
+        with db.session.begin():
+            task = db.session.get(Task, task_id)
+            guest = db.create_guest(machine, "kvm", task)
+            assert guest.name == "name0"
+            assert guest.label == "label0"
+            assert guest.manager == "kvm"
+            assert guest.task_id == task_id
+            assert guest.status == "init"
+        with db.session.begin():
+            assert guest == db.session.scalar(select(Guest))
+
+    @pytest.mark.parametrize(
+        "kwargs,expected_machines",
+        (
+            ({"locked": True}, {"n2"}),
+            ({"locked": False}, {"n1", "n4", "n5", "n6"}),
+            # Make sure providing a label overrides "include_reserved"
+            ({"label": "l3"}, {"n3"}),
+            ({"label": "foo"}, set()),
+            ({"platform": "windows"}, {"n1", "n2", "n5", "n6"}),
+            ({"platform": "osx"}, set()),
+            ({"tags": ["tag1"]}, {"n1", "n2", "n4", "n6"}),
+            ({"tags": ["foo"]}, set()),
+            ({"arch": ["x86"]}, {"n1", "n2", "n4", "n5", "n6"}),
+            ({"arch": ["x64"]}, {"n1", "n2", "n4", "n5"}),
+            ({"arch": ["xy"]}, set()),
+            ({"os_version": ["win10"]}, {"n5"}),
+            ({"os_version": ["winxp"]}, set()),
+            ({"include_reserved": True}, {"n1", "n2", "n3", "n4", "n5", "n6"}),
+        ),
+    )
+    def test_list_machines(self, db: _Database, kwargs, expected_machines):
+        with db.session.begin():
+            self.add_machine(db, name="n1", label="l1")
+            m = self.add_machine(db, name="n2", label="l2")
+            m.locked = True
+            self.add_machine(db, name="n3", label="l3", reserved=True)
+            self.add_machine(db, name="n4", label="l4", platform="linux")
+            self.add_machine(db, name="n5", label="l5", tags="win10")
+            self.add_machine(db, name="n6", label="l6", arch="x86")
+        with db.session.begin():
+            actual_machines = [machine.name for machine in db.list_machines(**kwargs)]
+            if kwargs == {"arch": ["x86"]}:
+                # This is the only parameter that causes the returned value to be in any
+                # guaranteed order.
+                assert actual_machines[0] == "n6"
+            actual_machines_set = set(actual_machines)
+            assert actual_machines_set == expected_machines
+
+    def test_assign_machine_to_task(self, db: _Database):
+        with db.session.begin():
+            t1 = db.add_url("http://one.com")
+            t2 = db.add_url("http://two.com")
+            m1 = self.add_machine(db)
+        with db.session.begin():
+            task1 = db.session.get(Task, t1)
+            task2 = db.session.get(Task, t2)
+            db.assign_machine_to_task(task1, m1)
+            db.assign_machine_to_task(task2, None)
+        with db.session.begin():
+            task1 = db.session.get(Task, t1)
+            task2 = db.session.get(Task, t2)
+            assert task1.machine == "label0"
+            assert task1.machine_id == m1.id
+            assert task2.machine is None
+            assert task2.machine_id is None
+
+    def test_lock_machine(self, db: _Database, freezer):
+        with db.session.begin():
+            m1 = self.add_machine(db)
+        with db.session.begin():
+            db.lock_machine(m1)
+        with db.session.begin():
+            m1 = db.session.get(Machine, m1.id)
+            assert m1.locked
+            assert m1.locked_changed_on == datetime.datetime.now()
+            assert m1.status == "running"
+        freezer.move_to(datetime.datetime.now() + datetime.timedelta(minutes=5))
+        with db.session.begin():
+            assert db.count_machines_running() == 1
+            db.unlock_machine(m1)
+        with db.session.begin():
+            m1 = db.session.get(Machine, m1.id)
+            assert not m1.locked
+            assert m1.locked_changed_on == datetime.datetime.now()
+        with db.session.begin():
+            assert db.count_machines_running() == 0
+
+    @pytest.mark.parametrize(
+        "kwargs,expected_retval",
+        (
+            ({"machine": "l1"}, None),  # The specified machine is in use.
+            ({"machine": "l2"}, "n2"),  # The specified machine is not in use.
+            ({"machine": "l3"}, "n3"),  # The specific machine is reserved but not in use.
+            ({"machine": "foo"}, CuckooUnserviceableTaskError),  # No such machine exists.
+            ({"platform": "windows"}, "n2"),
+            ({"platform": "osx"}, CuckooUnserviceableTaskError),
+            ({"tags": "tag1"}, "n2"),
+            ({"tags": "foo"}, CuckooUnserviceableTaskError),
+            ({"tags": "x64"}, "n2"),
+            ({"tags": ""}, "n2"),
+            ({"tags": "arm"}, CuckooUnserviceableTaskError),
+            # msix requires a machine with the win10 or win11 tag.
+            ({"package": "msix"}, CuckooUnserviceableTaskError),
+            ({"package": "foo"}, "n2"),
+        ),
+    )
+    def test_find_machine_to_service_task(self, db: _Database, temp_filename: str, kwargs, expected_retval):
+        with db.session.begin():
+            self.add_machine(db, name="n1", label="l1", locked=True)
+            self.add_machine(db, name="n2", label="l2", tags="tag1,x64")
+            self.add_machine(db, name="n3", label="l3", reserved=True)
+
+            task_id = db.add_path(temp_filename, **kwargs)
+        with db.session.begin():
+            task = db.session.get(Task, task_id)
+            if isinstance(expected_retval, type) and issubclass(expected_retval, Exception):
+                with pytest.raises(expected_retval):
+                    db.find_machine_to_service_task(task)
+            else:
+                result = db.find_machine_to_service_task(task)
+                if expected_retval is None:
+                    assert result is None
+                else:
+                    assert result.name == expected_retval
+
+    @pytest.mark.parametrize(
+        "categories,expected_task",
+        (
+            (None, "t3"),
+            (["url"], "t3"),
+            (["file"], "t4"),
+            (["other"], None),
+        ),
+    )
+    def test_fetch_task(self, db: _Database, temp_filename, categories, expected_task):
+        with db.session.begin():
+            tasks = dict(
+                t1=db.add_url("https://www.google.com"),
+                t2=db.add_url("https://www.google.com"),
+                t3=db.add_url("https://www.google.com", priority=2),
+                t4=db.add_path(temp_filename),
+            )
+            db.set_status(tasks["t2"], TASK_RUNNING)
+        with db.session.begin():
+            task = db.fetch_task(categories)
+            if expected_task is None:
+                assert task is None
+            else:
+                assert task.id == tasks[expected_task]
+                assert task.status == TASK_RUNNING
+
+    def test_guest(self, db: _Database, freezer):
+        with db.session.begin():
+            machine = self.add_machine(db)
+            task_id = db.add_url("http://foo.bar")
+            task = db.session.get(Task, task_id)
+            guest = db.create_guest(machine, "kvm", task)
+        with db.session.begin():
+            db.guest_set_status(task_id, "completed")
+            # Make sure it doesn't fall over when given a task that doesn't exist.
+            db.guest_set_status(task_id + 1, "completed")
+        with db.session.begin():
+            guest_id = guest.id
+            guest = db.session.scalar(select(Guest))
+            assert guest is not None and guest.status == "completed"
+            assert db.guest_get_status(task_id) == "completed"
+            assert db.guest_get_status(task_id + 1) is None
+            db.guest_stop(guest_id)
+        with db.session.begin():
+            guest = db.session.scalar(select(Guest))
+            assert guest is not None and guest.shutdown_on == datetime.datetime.now()
+            db.guest_stop(guest_id + 1)
+            db.guest_remove(guest_id)
+        with db.session.begin():
+            assert db.session.scalar(select(Guest)) is None
+            db.guest_remove(guest_id + 1)
+
+    @pytest.mark.parametrize(
+        "kwargs,expected_retval",
+        (
+            ({"label": "l1"}, 0),
+            ({"label": "l2"}, 1),
+            ({"label": "l3"}, 1),
+            ({"label": "foo"}, 0),
+            ({"platform": "windows"}, 2),
+            ({"platform": "osx"}, 0),
+            ({"tags": ["tag1"]}, 2),
+            ({"tags": ["foo"]}, 0),
+            ({"arch": ["x64"]}, 1),
+            ({"arch": ["x86"]}, 2),
+            ({"arch": ["arm"]}, 0),
+            # msix requires a machine with the win10 or win11 tag.
+            ({"os_version": ["win10"]}, 1),
+            ({"os_version": ["foo"]}, 0),
+            ({"include_reserved": True}, 3),
+        ),
+    )
+    def test_count_machines_available(self, db: _Database, kwargs, expected_retval):
+        with db.session.begin():
+            m = self.add_machine(db, name="n1", label="l1")
+            m.locked = True
+            self.add_machine(db, name="n2", label="l2", tags="tag1,x64")
+            self.add_machine(db, name="n3", label="l3", reserved=True)
+            self.add_machine(db, name="n4", label="l4", tags="tag1,win10", arch="x86")
+        with db.session.begin():
+            assert db.count_machines_available(**kwargs) == expected_retval
+
+    def test_get_available_machines(self, db: _Database):
+        with db.session.begin():
+            m = self.add_machine(db, name="n1", label="l1")
+            m.locked = True
+            self.add_machine(db, name="n2", label="l2", tags="tag1,x64")
+            self.add_machine(db, name="n3", label="l3", reserved=True)
+        with db.session.begin():
+            assert set(m.label for m in db.get_available_machines()) == {"l2", "l3"}
+
+    def test_set_machine_status(self, db: _Database, freezer):
+        with db.session.begin():
+            self.add_machine(db, name="n1", label="l1")
+            self.add_machine(db, name="n2", label="l2")
+        with db.session.begin():
+            db.set_machine_status("l2", "running")
+        with db.session.begin():
+            machine = db.session.scalar(select(Machine).where(Machine.label == "l2"))
+            assert machine.status == "running"
+            assert machine.status_changed_on == datetime.datetime.now()
+
+            machine = db.session.scalar(select(Machine).where(Machine.label == "l1"))
+            assert machine.status != "running"
+
+    @pytest.mark.parametrize(
+        "kwargs,expected_count",
+        (
+            ({}, 3),
+            ({"category": "url"}, 2),
+            ({"category": "foo"}, 0),
+            ({"status": "running"}, 1),
+            ({"status": "foo"}, 0),
+            ({"not_status": "running"}, 2),
+            ({"not_status": "foo"}, 3),
+            ({"status": "running", "not_status": "running"}, 0),
+        ),
+    )
+    def test_count_matching_tasks(self, db: _Database, temp_filename, kwargs, expected_count):
+        with db.session.begin():
+            db.add_path(temp_filename)
+            db.add_url("https://www.google.com")
+            t3 = db.add_url("https://www.bing.com")
+            db.set_status(t3, "running")
+        with db.session.begin():
+            assert db.count_matching_tasks(**kwargs) == expected_count
+
+    def test_check_file_uniq(self, db: _Database, temp_filename, freezer):
+        with db.session.begin():
+            assert not db.check_file_uniq("a")
+            db.add_path(temp_filename)
+        with db.session.begin():
+            with open(temp_filename, "rb") as fil:
+                sha256 = hashlib.sha256(fil.read()).hexdigest()
+            assert db.check_file_uniq(sha256)
+            freezer.move_to(datetime.datetime.now() + datetime.timedelta(hours=2))
+            assert not db.check_file_uniq(sha256, hours=1)
+
+    # ToDo upgrade to add really parent check
+    def test_get_parent_sample_by_task(self, db: _Database, temp_filename):
+        dct = dict(
+            md5="md5",
+            crc32="crc32",
+            sha1="sha1",
+            sha256="sha256",
+            sha512="sha512",
+            file_size=100,
+            file_type="file_type",
+            ssdeep="ssdeep",
+            source_url="source_url",
+        )
+        with db.session.begin():
+            with db.session.begin_nested():
+                sample = Sample(**dct)
+                db.session.add(sample)
+            sample_id = sample.id
+            task_id = db.add_path(temp_filename)
+            sample2 = db.session.scalar(select(Sample).where(Sample.id != sample.id))
+            sample2.parent = sample_id
+
+        with db.session.begin():
+            # exp_val = dict(**dct, parent=None, id=sample_id)
+            assert db.get_parent_sample_from_task(task_id=task_id) is None
+            assert db.get_parent_sample_from_task(task_id=task_id + 1) is None
+
+    def test_create_parent_child_link(self, db: _Database, temp_filename):
+        """
+        Tests that creating a parent, child, task, and the association
+        link between them works correctly.
+        """
+        # 1. Create the objects in Python
+        parent_dct = dict(
+            md5="md5",
+            crc32="crc32",
+            sha1="sha1",
+            sha256="sha256",
+            sha512="sha512",
+            file_size=100,
+            file_type="file_type",
+            ssdeep="ssdeep",
+            source_url="source_url",
+        )
+
+        with db.session.begin():
+            parent_archive = Sample(**parent_dct)
+        task_id = db.add_path(temp_filename, parent_sample=parent_archive)
+
+        child = db.find_sample(task_id=task_id)
+        child_by_parent = db.find_sample(parent=parent_archive.id)
+        assert child[0].sample.id == child_by_parent[0].id
+        assert db.get_children_by_parent_id(parent_archive.id)[0].id == child[0].sample.id
+
+    def test_list_tasks(self, db: _Database, temp_filename, freezer):
+        with db.session.begin():
+            t1 = db.add_path(temp_filename, options="minhook=1")
+            t2 = db.add_url("https://2.com", tags_tasks="tag1")
+            t3 = db.add_url("https://3.com", user_id=5)
+        start = datetime.datetime.now()
+        with db.session.begin():
+
+            def get_ids(**kwargs):
+                return [t.id for t in db.list_tasks(**kwargs)]
+
+            assert get_ids(limit=1) == [t3]
+            assert get_ids(category="url") == [t2, t3]
+            assert get_ids(offset=1) == [t2, t1]
+            with db.session.begin_nested() as nested:
+                now = start + datetime.timedelta(minutes=1)
+                freezer.move_to(now)
+                db.set_status(t2, TASK_COMPLETED)
+                task = db.session.get(Task, t1)
+                task2 = db.session.get(Task, t2)
+                task3 = db.session.get(Task, t3)
+
+                task.added_on = start
+                task2.added_on = start + datetime.timedelta(seconds=1)
+                task3.added_on = now
+                assert get_ids(status=TASK_COMPLETED) == [t2]
+                assert get_ids(not_status=TASK_COMPLETED) == [t3, t1]
+                assert get_ids(completed_after=start) == [t2]
+                assert get_ids(order_by=(Task.completed_on, Task.id)) == [t1, t3, t2]
+                assert get_ids(order_by=(Task.id)) == [t1, t2, t3]
+                assert get_ids(added_before=now) == [t2, t1]
+                nested.rollback()
+            assert get_ids(sample_id=1) == [t1]
+            assert get_ids(id_before=t3) == [t2, t1]
+            assert get_ids(id_after=t2) == [t3]
+            assert get_ids(options_like="minhook") == [t1]
+            assert get_ids(options_not_like="minhook") == [t3, t2]
+            assert get_ids(tags_tasks_like="1") == [t2]
+            assert get_ids(task_ids=(t1, t2)) == [t1, t2]
+            assert get_ids(task_ids=(t3 + 1,)) == []
+            assert get_ids(user_id=5) == [t3]
+            assert get_ids(user_id=0) == [t2, t1]
+
+    def test_minmax_tasks(self, db: _Database, freezer):
+        with db.session.begin():
+            assert db.minmax_tasks() == (0, 0)
+
+        start_time = datetime.datetime.now()
+        with db.session.begin():
+            t1 = db.add_url("https://1.com")
+            t2 = db.add_url("https://2.com")
+            t3 = db.add_url("https://3.com")
+            t4 = db.add_url("https://4.com")
+            _t5 = db.add_url("https://5.com")
+            t2_started = start_time
+            freezer.move_to(t2_started)
+            db.set_status(t2, TASK_RUNNING)
+            freezer.move_to(start_time + datetime.timedelta(minutes=1))
+            db.set_status(t1, TASK_RUNNING)
+            freezer.move_to(start_time + datetime.timedelta(minutes=2))
+            db.set_status(t3, TASK_RUNNING)
+            freezer.move_to(start_time + datetime.timedelta(minutes=3))
+            db.set_status(t4, TASK_RUNNING)
+            # t5 has not started
+
+            freezer.move_to(start_time + datetime.timedelta(minutes=4))
+            db.set_status(t1, TASK_COMPLETED)
+            # t2 is still running
+            freezer.move_to(start_time + datetime.timedelta(minutes=5))
+            db.set_status(t4, TASK_COMPLETED)
+            t3_completed = start_time + datetime.timedelta(minutes=6)
+            freezer.move_to(t3_completed)
+            db.set_status(t3, TASK_COMPLETED)
+        with db.session.begin():
+            assert db.minmax_tasks() == (int(t2_started.timestamp()), int(t3_completed.timestamp()))
+
+    def test_get_tlp_tasks(self, db: _Database):
+        with db.session.begin():
+            db.add_url("https://1.com")
+        with db.session.begin():
+            assert db.get_tlp_tasks() == []
+        with db.session.begin():
+            t2 = db.add_url("https://2.com", tlp="true")
+        with db.session.begin():
+            assert db.get_tlp_tasks() == [t2]
+
+    def test_get_file_types(self, db: _Database, temp_filename):
+        with db.session.begin():
+            assert db.get_file_types() == []
+        with db.session.begin():
+            for i in range(2):
+                db.session.add(
+                    Sample(
+                        md5=f"md5_{i}",
+                        sha1=f"sha1_{i}",
+                        crc32=f"crc32_{i}",
+                        sha256=f"sha256_{i}",
+                        sha512=f"sha512_{i}",
+                        file_size=100 + i,
+                        file_type=f"file_type_{i}",
+                    )
+                )
+        with db.session.begin():
+            assert db.get_file_types() == ["file_type_0", "file_type_1"]
+
+    def test_get_tasks_status_count(self, db: _Database):
+        with db.session.begin():
+            assert db.get_tasks_status_count() == {}
+        with db.session.begin():
+            _t1 = db.add_url("https://1.com")
+            t2 = db.add_url("https://2.com")
+            t3 = db.add_url("https://3.com")
+            db.set_status(t2, TASK_RUNNING)
+            db.set_status(t3, TASK_RUNNING)
+        with db.session.begin():
+            assert db.get_tasks_status_count() == {
+                TASK_PENDING: 1,
+                TASK_RUNNING: 2,
+            }
+
+    def test_count_tasks(self, db: _Database):
+        with db.session.begin():
+            assert db.count_tasks() == 0
+        with db.session.begin():
+            _t1 = db.add_url("https://1.com")
+            t2 = db.add_url("https://2.com")
+            t3 = db.add_url("https://3.com")
+            db.set_status(t2, TASK_RUNNING)
+            db.set_status(t3, TASK_RUNNING)
+        with db.session.begin():
+            assert db.count_tasks() == 3
+            assert db.count_tasks(status=TASK_RUNNING) == 2
+            assert db.count_tasks(status=TASK_COMPLETED) == 0
+
+    def test_delete_task(self, db: _Database, temp_filename):
+        with db.session.begin():
+            t1 = db.add_url("https://1.com")
+            t2 = db.add_path(temp_filename, tags="x86")
+        with db.session.begin():
+            db.delete_task(t2)
+        with db.session.begin():
+            tasks = db.session.scalars(select(Task)).all()
+            assert len(tasks) == 1
+            assert tasks[0].id == t1
+            assert not db.delete_task(t2)
+
+    def test_delete_tasks(self, db: _Database, temp_filename):
+        """Test the delete_tasks method.
+
+        We need a new session after calling delete_tasks.
+        """
+        with db.session.begin():
+            t1 = db.add_url("https://1.com")
+            t2 = db.add_path(temp_filename, tags="x86")
+            t3 = db.add_url("https://3.com")
+        with db.session.begin():
+            assert db.delete_tasks(task_ids=[])
+            assert db.delete_tasks(task_ids=[t1, t2, t3 + 1])
+        with db.session.begin():
+            tasks = db.session.scalars(select(Task)).all()
+            assert len(tasks) == 1
+            assert tasks[0].id == t3
+            assert db.delete_tasks(task_ids=[t1, t2])
+        with db.session.begin():
+            tasks = db.session.scalars(select(Task)).all()
+            assert len(tasks) == 1
+            assert tasks[0].id == t3
+
+    def test_view_sample(self, db: _Database):
+        with db.session.begin():
+            samples = []
+            for i in range(2):
+                samples.append(
+                    Sample(
+                        md5=f"md5_{i}",
+                        sha1=f"sha1_{i}",
+                        crc32=f"crc32_{i}",
+                        sha256=f"sha256_{i}",
+                        sha512=f"sha512_{i}",
+                        file_size=100 + i,
+                        file_type=f"file_type_{i}",
+                    )
+                )
+                with db.session.begin_nested():
+                    db.session.add(samples[-1])
+                db.session.expunge(samples[-1])
+        with db.session.begin():
+            assert db.view_sample(samples[-1].id).to_dict() == samples[-1].to_dict()
+            assert db.view_sample(samples[-1].id + 1) is None
+
+    # ToDo update test to add parent/children checks
+    def test_find_sample(self, db: _Database, temp_filename):
+        with db.session.begin():
+            samples = []
+            for i in range(2):
+                sample = Sample(
+                    md5=f"md5_{i}",
+                    sha1=f"sha1_{i}",
+                    crc32=f"crc32_{i}",
+                    sha256=f"sha256_{i}",
+                    sha512=f"sha512_{i}",
+                    file_size=100 + i,
+                    file_type=f"file_type_{i}",
+                )
+                with db.session.begin_nested():
+                    db.session.add(sample)
+                samples.append(sample)
+            t1 = db.add_path(temp_filename)
+            with open(temp_filename, "rb") as fil:
+                sha256 = hashlib.sha256(fil.read()).hexdigest()
+            task_sample = db.session.scalar(select(Sample.id).where(Sample.sha256 == sha256))
+        with db.session.begin():
+            assert db.find_sample() is None
+            assert db.find_sample(md5="md5_1").id == samples[1].id
+            assert db.find_sample(sha1="sha1_1").id == samples[1].id
+            assert db.find_sample(sha256="sha256_0").id == samples[0].id
+            # ToDo fix here
+            # assert [s.id for s in db.find_sample(parent=samples[0].id)] == samples[1:]
+            # assert [s.id for s in db.find_sample(parent=samples[1].id)] == []
+            # When a task_id is passed, find_sample returns Task objects instead of Sample objects.
+            assert [t.sample.id for t in db.find_sample(task_id=t1)] == [task_sample]
+            assert [s.id for s in db.find_sample(sample_id=samples[1].id)] == [samples[1].id]
+
+    def test_sample_still_used(self, db: _Database, temp_filename):
+        with db.session.begin():
+            t1 = db.add_path(temp_filename)
+        with open(temp_filename, "rb") as fil:
+            sha256 = hashlib.sha256(fil.read()).hexdigest()
+        with db.session.begin():
+            # No other tasks are associated with this sample.
+            assert not db.sample_still_used(sha256, t1)
+        with db.session.begin():
+            # Add another task for the sample.
+            t2 = db.add_path(temp_filename)
+        with db.session.begin():
+            # So now it IS still being used.
+            assert db.sample_still_used(sha256, t1)
+        with db.session.begin():
+            # Mark the second task as completed...
+            db.set_status(t2, TASK_COMPLETED)
+        with db.session.begin():
+            # So it is no longer "used".
+            assert not db.sample_still_used(sha256, t1)
+
+    def test_count_samples(self, db: _Database, temp_filename):
+        with db.session.begin():
+            assert db.count_samples() == 0
+            db.add_path(temp_filename)
+        with db.session.begin():
+            assert db.count_samples() == 1
+
+    def test_view_machine_by_label(self, db: _Database):
+        with db.session.begin():
+            m0 = self.add_machine(db, name="name0", label="label0")
+            self.add_machine(db, name="name1", label="label1")
+            assert db.view_machine_by_label("foo") is None
+            m0_dict = db.session.get(Machine, m0.id)
+            assert db.view_machine_by_label("label0").id == m0_dict.id
+
+    def test_get_source_url(self, db: _Database, temp_filename):
+        with db.session.begin():
+            assert db.get_source_url() is None
+            assert db.get_source_url(1) is None
+            db.add_path(temp_filename)
+            with open(temp_filename, "a") as fil:
+                fil.write("a")
+            db.add_path(temp_filename)
+            url = "https://badguys.com"
+            sample = db.session.get(Sample, 1)
+            sample.source_url = url
+        with db.session.begin():
+            assert db.get_source_url(1) == url
+            assert db.get_source_url(2) is None
+
+    def test_ban_user_tasks(self, db: _Database):
+        with db.session.begin():
+            t1 = db.add_url("https://1.com", user_id=0)
+            t2 = db.add_url("https://2.com", user_id=1)
+            t3 = db.add_url("https://3.com", user_id=1)
+            t4 = db.add_url("https://3.com", user_id=1)
+            db.set_status(t4, TASK_COMPLETED)
+        with db.session.begin():
+            db.ban_user_tasks(1)
+            assert db.session.get(Task, t1).status == TASK_PENDING
+            assert db.session.get(Task, t2).status == TASK_BANNED
+            assert db.session.get(Task, t3).status == TASK_BANNED
+            assert db.session.get(Task, t4).status == TASK_COMPLETED
+
+    def test_tasks_reprocess(self, db: _Database):
+        with db.session.begin():
+            err, _msg, old_status = db.tasks_reprocess(1)
+            assert err is True
+            assert old_status == ""
+            t1 = db.add_url("https://1.com")
+        with db.session.begin():
+            err, _msg, old_status = db.tasks_reprocess(t1)
+            assert err is True
+            assert old_status == TASK_PENDING
+            db.set_status(t1, TASK_REPORTED)
+        with db.session.begin():
+            err, _msg, old_status = db.tasks_reprocess(t1)
+            assert err is False
+            assert old_status == TASK_REPORTED
+            assert db.session.get(Task, t1).status == TASK_COMPLETED
+
+    @pytest.mark.parametrize(
+        "task,machines,expected_result",
+        # @param task : dictionary describing the task to be created
+        # @param machines : list of machines to be created
+        # @param expected_result : expected_result of the function (number of machines after being filtered)
+        (
+            # No filter and all machines are returned
+            (
+                {
+                    "label": "task0",
+                    "machine": None,
+                    "platform": None,
+                    "tags": None,
+                    "os_version": None,
+                    "include_reserved": False,
+                },
+                [
+                    {"label": "machine1", "reserved": False, "platform": "windows", "arch": "x64", "tags": "tag1"},
+                    {"label": "machine2", "reserved": False, "platform": "windows", "arch": "x64", "tags": "tag1"},
+                ],
+                2,
+            ),
+            # Filtering by label only
+            (
+                {
+                    "label": "task1",
+                    "machine": "machine1",
+                    "platform": None,
+                    "tags": None,
+                    "os_version": None,
+                    "include_reserved": False,
+                },
+                [
+                    {"label": "machine1", "reserved": False, "platform": "windows", "arch": "x64", "tags": "tag1"},
+                    {"label": "machine2", "reserved": False, "platform": "windows", "arch": "x64", "tags": "tag1"},
+                ],
+                1,
+            ),
+            # Filtering by label only
+            (
+                {
+                    "label": "task2",
+                    "machine": "machine1",
+                    "platform": None,
+                    "tags": None,
+                    "os_version": None,
+                    "include_reserved": False,
+                },
+                [
+                    {"label": "machine2", "reserved": False, "platform": "windows", "arch": "x64", "tags": "tag1"},
+                    {"label": "machine3", "reserved": False, "platform": "linux", "arch": "x64", "tags": "tag2"},
+                ],
+                0,
+            ),
+            # Filtering by platform only
+            (
+                {
+                    "label": "task3",
+                    "machine": None,
+                    "platform": "windows",
+                    "tags": None,
+                    "os_version": None,
+                    "include_reserved": False,
+                },
+                [
+                    {"label": "machine1", "reserved": False, "platform": "windows", "arch": "x64", "tags": "tag1"},
+                    {"label": "machine2", "reserved": False, "platform": "windows", "arch": "x64", "tags": "tag2"},
+                ],
+                2,
+            ),
+            # Filtering by platform only
+            (
+                {
+                    "label": "task4",
+                    "machine": None,
+                    "platform": "windows",
+                    "tags": None,
+                    "os_version": None,
+                    "include_reserved": False,
+                },
+                [
+                    {"label": "machine1", "reserved": False, "platform": "linux", "arch": "x64", "tags": "tag1"},
+                    {"label": "machine2", "reserved": False, "platform": "linux", "arch": "x64", "tags": "tag2"},
+                ],
+                0,
+            ),
+            # Filtering by tags only
+            (
+                {
+                    "label": "task5",
+                    "machine": None,
+                    "platform": None,
+                    "tags": "tag1",
+                    "os_version": None,
+                    "include_reserved": False,
+                },
+                [
+                    {"label": "machine1", "reserved": False, "platform": "windows", "arch": "x64", "tags": "tag1"},
+                    {"label": "machine2", "reserved": False, "platform": "linux", "arch": "x64", "tags": "tag1"},
+                ],
+                2,
+            ),
+            # Filtering by tags only
+            (
+                {
+                    "label": "task6",
+                    "machine": None,
+                    "platform": None,
+                    "tags": "tag1",
+                    "os_version": None,
+                    "include_reserved": False,
+                },
+                [
+                    {"label": "machine1", "reserved": False, "platform": "windows", "arch": "x64", "tags": "tag2"},
+                    {"label": "machine2", "reserved": False, "platform": "linux", "arch": "x64", "tags": "tag2"},
+                ],
+                0,
+            ),
+            # Filtering by archs only
+            (
+                {
+                    "label": "task7",
+                    "machine": None,
+                    "platform": None,
+                    "tags": "tag1,x64",
+                    "os_version": None,
+                    "include_reserved": False,
+                },
+                [
+                    {"label": "machine1", "reserved": False, "platform": "windows", "arch": "x64", "tags": "tag1"},
+                    {"label": "machine2", "reserved": False, "platform": "linux", "arch": "x64", "tags": "tag1"},
+                ],
+                2,
+            ),
+            # Filtering by archs only
+            (
+                {
+                    "label": "task8",
+                    "machine": None,
+                    "platform": None,
+                    "tags": "tag1,x64",
+                    "os_version": None,
+                    "include_reserved": False,
+                },
+                [
+                    {"label": "machine1", "reserved": False, "platform": "windows", "arch": "x86", "tags": "tag2"},
+                    {"label": "machine2", "reserved": False, "platform": "linux", "arch": "x86", "tags": "tag2"},
+                ],
+                0,
+            ),
+            # Filtering by os_version only
+            (
+                {
+                    "label": "task9",
+                    "machine": None,
+                    "platform": None,
+                    "tags": None,
+                    "os_version": ["win10"],
+                    "include_reserved": False,
+                },
+                [
+                    {
+                        "label": "machine1",
+                        "reserved": False,
+                        "platform": "windows",
+                        "arch": "x64",
+                        "tags": "tag1,win10",
+                    },
+                    {"label": "machine2", "reserved": False, "platform": "linux", "arch": "x64", "tags": "tag1"},
+                ],
+                1,
+            ),
+            # Filtering by os_version only
+            (
+                {
+                    "label": "task10",
+                    "machine": None,
+                    "platform": None,
+                    "tags": None,
+                    "os_version": ["win10"],
+                    "include_reserved": False,
+                },
+                [
+                    {"label": "machine1", "reserved": False, "platform": "windows", "arch": "x64", "tags": "tag1"},
+                    {"label": "machine2", "reserved": False, "platform": "linux", "arch": "x64", "tags": "tag1"},
+                ],
+                0,
+            ),
+            # Filtering including the reserved machines
+            (
+                {
+                    "label": "task11",
+                    "machine": None,
+                    "platform": "windows",
+                    "tags": "tag1",
+                    "os_version": None,
+                    "include_reserved": True,
+                },
+                [
+                    {"label": "machine1", "reserved": True, "platform": "windows", "arch": "x64", "tags": "tag1"},
+                    {"label": "machine2", "reserved": False, "platform": "windows", "arch": "x64", "tags": "tag1"},
+                ],
+                2,
+            ),
+            # Filtering excluding the reserved machines
+            (
+                {
+                    "label": "task12",
+                    "machine": None,
+                    "platform": "windows",
+                    "tags": "tag1",
+                    "os_version": None,
+                    "include_reserved": False,
+                },
+                [
+                    {"label": "machine1", "reserved": True, "platform": "windows", "arch": "x64", "tags": "tag1"},
+                    {"label": "machine2", "reserved": False, "platform": "linux", "arch": "x64", "tags": "tag1"},
+                ],
+                0,
+            ),
+            # Filtering by tags and os_version
+            (
+                {
+                    "label": "task13",
+                    "machine": None,
+                    "platform": None,
+                    "tags": "tag1",
+                    "os_version": ["win10"],
+                    "include_reserved": False,
+                },
+                [
+                    {
+                        "label": "machine1",
+                        "reserved": False,
+                        "platform": "windows",
+                        "arch": "x64",
+                        "tags": "tag1,win10",
+                    },
+                    {"label": "machine2", "reserved": False, "platform": "linux", "arch": "x64", "tags": "tag1"},
+                ],
+                1,
+            ),
+            # Filtering by tags and os_version
+            (
+                {
+                    "label": "task14",
+                    "machine": None,
+                    "platform": None,
+                    "tags": "tag1",
+                    "os_version": ["win10"],
+                    "include_reserved": False,
+                },
+                [
+                    {"label": "machine1", "reserved": False, "platform": "windows", "arch": "x64", "tags": "tag1"},
+                    {"label": "machine2", "reserved": False, "platform": "linux", "arch": "x64", "tags": "tag1"},
+                ],
+                0,
+            ),
+            # Filtering by platform and tags
+            (
+                {
+                    "label": "task15",
+                    "machine": None,
+                    "platform": "windows",
+                    "tags": "tag1",
+                    "os_version": None,
+                    "include_reserved": False,
+                },
+                [
+                    {"label": "machine1", "reserved": False, "platform": "windows", "arch": "x64", "tags": "tag1"},
+                    {"label": "machine2", "reserved": False, "platform": "linux", "arch": "x64", "tags": "tag2"},
+                ],
+                1,
+            ),
+            # Filtering by platform and tags
+            (
+                {
+                    "label": "task16",
+                    "machine": None,
+                    "platform": "windows",
+                    "tags": "tag1",
+                    "os_version": None,
+                    "include_reserved": False,
+                },
+                [
+                    {"label": "machine1", "reserved": False, "platform": "linux", "arch": "x64", "tags": "tag1"},
+                    {"label": "machine2", "reserved": False, "platform": "windows", "arch": "x64", "tags": "tag2"},
+                ],
+                0,
+            ),
+            # Filtering by platform,tags and os_version
+            (
+                {
+                    "label": "task17",
+                    "machine": None,
+                    "platform": "windows",
+                    "tags": "tag1",
+                    "os_version": ["win10"],
+                    "include_reserved": False,
+                },
+                [
+                    {
+                        "label": "machine1",
+                        "reserved": False,
+                        "platform": "windows",
+                        "arch": "x64",
+                        "tags": "tag1,win10",
+                    },
+                    {"label": "machine2", "reserved": False, "platform": "linux", "arch": "x64", "tags": "tag1"},
+                ],
+                1,
+            ),
+            # Filtering by platform,tags and os_version
+            (
+                {
+                    "label": "task18",
+                    "machine": None,
+                    "platform": "windows",
+                    "tags": "tag1",
+                    "os_version": ["win10"],
+                    "include_reserved": False,
+                },
+                [
+                    {"label": "machine1", "reserved": False, "platform": "windows", "arch": "x64", "tags": "tag1"},
+                    {"label": "machine2", "reserved": False, "platform": "linux", "arch": "x64", "tags": "tag1"},
+                ],
+                0,
+            ),
+            # Filtering by platform,tags and os_version
+            (
+                {
+                    "label": "task19",
+                    "machine": None,
+                    "platform": "windows",
+                    "tags": "tag1",
+                    "os_version": ["win10"],
+                    "include_reserved": False,
+                },
+                [],
+                0,
+            ),
+        ),
+    )
+    def test_filter_machines_to_task(self, task, machines, expected_result, db: _Database):
+        with db.session.begin():
+            for machine in machines:
+                machine_name = (
+                    str(machine["label"]) + str(machine["platform"]) + str(machine["arch"]) + str(task["label"].replace("task", ""))
+                )
+                db.add_machine(
+                    name=machine_name,
+                    label=machine["label"],
+                    ip="1.2.3.4",
+                    platform=machine["platform"],
+                    tags=machine["tags"],
+                    interface="int0",
+                    snapshot="snap0",
+                    resultserver_ip="5.6.7.8",
+                    resultserver_port="2043",
+                    arch=machine["arch"],
+                    reserved=machine["reserved"],
+                )
+        if task["tags"] is not None:
+            task_archs = [tag for tag in task["tags"].split(",") if tag in ("x86", "x64")]
+            task_tags = [tag for tag in task["tags"].split(",") if tag not in task_archs]
+        else:
+            task_archs = None
+            task_tags = None
+        with db.session.begin():
+            created_machines = db.session.query(Machine)
+            output_machines = db.filter_machines_to_task(
+                statement=created_machines,
+                label=task["machine"],
+                platform=task["platform"],
+                tags=task_tags,
+                archs=task_archs,
+                os_version=task["os_version"],
+                include_reserved=task["include_reserved"],
+            )
+            if isinstance(output_machines, list):
+                assert len(output_machines) == expected_result
+            else:
+                assert output_machines.count() == expected_result
diff --git a/tests/test_demux.py b/tests/test_demux.py
new file mode 100644
index 00000000000..e24a9664c41
--- /dev/null
+++ b/tests/test_demux.py
@@ -0,0 +1,94 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+import pathlib
+import tempfile
+
+import pytest
+from tcr_misc import get_sample
+
+from lib.cuckoo.common import demux
+
+
+@pytest.fixture
+def grab_sample():
+    def _grab_sample(sample_hash):
+        sample_location = pathlib.Path(__file__).absolute().parent.as_posix() + "/test_objects/" + sample_hash
+        get_sample(hash=sample_hash, download_location=sample_location)
+        return sample_location
+
+    return _grab_sample
+
+
+class TestDemux:
+    """ToDo reenable
+    @pytest.mark.skip("Takes minutes to run, skipping!")
+    def test_demux_sample_microsoft_docx(self, grab_sample):
+        # .docx file
+        sample_hash = "c0c1c1c852a045eb3eb3b26dad2124aea866ea008449e0d7a84925c2ded7fddb"
+        sample_location = grab_sample(sample_hash)
+        assert demux.demux_sample(filename=sample_location, package=None, options="foobar") == [
+            pathlib.Path(__file__).absolute().parent.as_posix() + "/test_objects/" + sample_hash
+        ]
+
+    def test_demux_sample_microsoft_no_sflock_docx(self, grab_sample):
+        # .docx file
+        sample_hash = "c0c1c1c852a045eb3eb3b26dad2124aea866ea008449e0d7a84925c2ded7fddb"
+        sample_location = grab_sample(sample_hash)
+        assert demux.demux_sample(filename=sample_location, package=None, options="foobar", use_sflock=False) == [
+            pathlib.Path(__file__).absolute().parent.as_posix() + "/test_objects/" + sample_hash
+        ]
+
+    def test_demux_sample_microsoft_password_no_sflock_doc(self, grab_sample):
+        # password protected .doc file
+        sample_hash = "d211ce5c36f630aa1e85d4f36291fee2a600216d823d23805fe41bb68ea99dbb"
+        sample_location = grab_sample(sample_hash)
+        assert demux.demux_sample(filename=sample_location, package=None, options="password=infected", use_sflock=False) == [
+            pathlib.Path(__file__).absolute().parent.as_posix() + "/test_objects/" + sample_hash
+        ]
+
+    def test_demux_sample_microsoft_no_password_no_sflock_doc(self, grab_sample):
+        # no password .doc file
+        sample_hash = "d211ce5c36f630aa1e85d4f36291fee2a600216d823d23805fe41bb68ea99dbb"
+        sample_location = grab_sample(sample_hash)
+        assert demux.demux_sample(filename=sample_location, package=None, options="foo", use_sflock=False) == [
+            pathlib.Path(__file__).absolute().parent.as_posix() + "/test_objects/" + sample_hash
+        ]
+
+    def test_demux_sample_java(self, grab_sample):
+        # java class file for a simple hello world
+        sample_hash = "27c428570256f0e5f8229d053f352aea4276e5c9c5a601c20e04535a8ba1e41d"
+        sample_location = grab_sample(sample_hash)
+        assert demux.demux_sample(filename=sample_location, package=None, options="foo", use_sflock=False) == [
+            pathlib.Path(__file__).absolute().parent.as_posix() + "/test_objects/" + sample_hash
+        ]
+
+
+    def test_demux_sample_microsoft_outlook(self, grab_sample):
+        # outlook message from https://github.com/HamiltonInsurance/outlook_msg/blob/e6c0293f098e8aee9cd4124aa6a5d409c798bc49/test_data/No%20attachment.msg
+        sample_hash = "0e16568cc1e8ddda0f0856b27857d1d043d7b18909a566ae5fa2460fc8fd3614"
+        sample_location = grab_sample(sample_hash)
+        assert demux.demux_sample(filename=sample_location, package=None, options="foo", use_sflock=False) == [
+            pathlib.Path(__file__).absolute().parent.as_posix() + "/test_objects/" + sample_hash
+        ]
+
+    def test_demux_sample_pe32(self, grab_sample):
+        # pe32 from https://github.com/bootandy/dust/releases/download/v0.5.4/dust-v0.5.4-i686-pc-windows-msvc.zip
+        sample_hash = "5dd87d3d6b9d8b4016e3c36b189234772661e690c21371f1eb8e018f0f0dec2b"
+        sample_location = grab_sample(sample_hash)
+        assert demux.demux_sample(filename=sample_location, package=None, options="foo", use_sflock=False) == [
+            pathlib.Path(__file__).absolute().parent.as_posix() + "/test_objects/" + sample_hash
+        ]
+    """
+
+    def test_demux_package(self):
+        empty_file = tempfile.NamedTemporaryFile()
+
+        demuxed, _ = demux.demux_sample(filename=empty_file.name, package="Emotet", options="foo", use_sflock=False)
+        demuxed == [(empty_file.name, "", "")]
+        empty_file.close()
+
+    def test_options2passwd(self):
+        options = "password=foobar"
+        demux.options2passwd(options)
diff --git a/tests/test_dist_db.py b/tests/test_dist_db.py
new file mode 100644
index 00000000000..6788b255846
--- /dev/null
+++ b/tests/test_dist_db.py
@@ -0,0 +1,55 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+
+from lib.cuckoo.common.dist_db import Machine, Node, StringList, Task
+
+
+def test_node():
+    node = Node()
+    need_set = set(["id", "name", "url", "enabled", "apikey", "last_check", "machines"])
+    have_set = set(dir(node))
+    assert need_set & have_set == need_set
+
+
+def test_stringlist():
+    string_list = StringList()
+
+    assert string_list.process_bind_param(["foo", "bar"], "madeupdialect") == "foo, bar"
+
+    assert string_list.process_result_value("foo, bar", "madeupdialect") == ["foo", "bar"]
+
+
+def test_machine():
+    machine = Machine()
+    assert machine.__tablename__ == "machine"
+    need_set = set(["id", "name", "platform", "tags", "node_id"])
+    have_set = set(dir(machine))
+    assert need_set & have_set == need_set
+
+
+def test_task():
+    task = Task(1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
+    need_set = set(
+        [
+            "path",
+            "category",
+            "package",
+            "timeout",
+            "priority",
+            "options",
+            "machine",
+            "platform",
+            "tags",
+            "custom",
+            "memory",
+            "clock",
+            "enforce_timeout",
+            "main_task_id",
+            "retrieved",
+            "route",
+        ]
+    )
+    have_set = set(dir(task))
+    assert need_set & have_set == need_set
diff --git a/tests/test_downloaders.py b/tests/test_downloaders.py
new file mode 100644
index 00000000000..07f79bea8c8
--- /dev/null
+++ b/tests/test_downloaders.py
@@ -0,0 +1,175 @@
+import io
+import unittest
+from unittest.mock import MagicMock, patch
+
+import pytest
+import pyzipper
+import requests
+
+from lib.downloaders import Downloaders
+from lib.downloaders.malwarebazaar import download as mb_downloader
+from lib.downloaders.virustotal import download as vt_downloader
+
+
+class TestDownloaders(unittest.TestCase):
+    @patch('lib.downloaders.load_downloaders')
+    @patch('lib.downloaders.Config')
+    @patch('lib.downloaders.path_exists')
+    @patch('lib.downloaders.path_mkdir')
+    def setUp(self, mock_mkdir, mock_exists, mock_config, mock_load_downloaders):
+        mock_exists.return_value = False
+        self.mock_downloaders = {
+            'downloader1': MagicMock(),
+            'downloader2': MagicMock()
+        }
+        mock_load_downloaders.return_value = self.mock_downloaders
+        self.mock_config = MagicMock()
+        mock_config.return_value = self.mock_config
+        self.dl = Downloaders()
+
+    @pytest.mark.skip(reason="Need to figure out how to test this")
+    def test_download_success(self):
+        self.mock_downloaders['downloader1'].is_supported.return_value = True
+        self.mock_downloaders['downloader1'].download.return_value = b'sample_data'
+        sample, service = self.dl.download('validhash')
+        self.assertEqual(sample, b'sample_data')
+        self.assertEqual(service, 'downloader1')
+
+    def test_download_invalid_hash(self):
+        self.mock_downloaders['downloader1'].is_supported.return_value = False
+        self.mock_downloaders['downloader2'].is_supported.return_value = False
+        sample, service = self.dl.download('invalidhash')
+        self.assertFalse(sample)
+        self.assertFalse(service)
+
+    @pytest.mark.skip(reason="Need to figure out how to test this")
+    def test_download_exception(self):
+        self.mock_downloaders['downloader1'].is_supported.side_effect = Exception("Test exception")
+        self.mock_downloaders['downloader2'].is_supported.return_value = True
+        self.mock_downloaders['downloader2'].download.return_value = b'sample_data'
+        sample, service = self.dl.download('validhash')
+        self.assertEqual(sample, b'sample_data')
+        self.assertEqual(service, 'downloader2')
+
+    def test_download_no_sample(self):
+        self.mock_downloaders['downloader1'].is_supported.return_value = True
+        self.mock_downloaders['downloader1'].download.return_value = False
+        self.mock_downloaders['downloader2'].is_supported.return_value = True
+        self.mock_downloaders['downloader2'].download.return_value = False
+        sample, service = self.dl.download('validhash')
+        self.assertFalse(sample)
+        self.assertFalse(service)
+
+
+    @patch("requests.post")
+    def test_malwarebazaar_dl_success(self, mock_post):
+        # Mock the response from requests.post
+        mock_response = MagicMock()
+        mock_response.ok = True
+        mock_response.content = io.BytesIO()
+        with pyzipper.AESZipFile(mock_response.content, "w", encryption=pyzipper.WZ_AES) as zf:
+            zf.setpassword(b"infected")
+            zf.writestr("sample.txt", "sample content")
+        mock_post.return_value = mock_response
+
+        # Call the function
+        result = mb_downloader("aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa")
+
+        # Check the result
+        self.assertEqual(result, b"sample content")
+
+    @patch("requests.post")
+    def test_malwarebazaar_dl_file_not_found(self, mock_post):
+        # Mock the response from requests.post
+        mock_response = MagicMock()
+        mock_response.ok = True
+        mock_response.content = b"file_not_found"
+        mock_post.return_value = mock_response
+
+        # Call the function
+        result = mb_downloader("aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa")
+
+        # Check the result
+        assert not result
+
+    @patch("requests.post")
+    def test_malwarebazaar_dl_bad_zip_file(self, mock_post):
+        # Mock the response from requests.post
+        mock_response = MagicMock()
+        mock_response.ok = True
+        mock_response.content = b"not a zip file"
+        mock_post.return_value = mock_response
+
+        # Call the function
+        result = mb_downloader("aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa")
+
+        # Check the result
+        assert not result
+
+    @patch("requests.post")
+    def test_malwarebazaar_dl_exception(self, mock_post):
+        # Mock the response from requests.post to raise an exception
+        mock_post.side_effect = requests.exceptions.RequestException
+
+        # Call the function
+        result = mb_downloader("aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa")
+
+        # Check the result
+        assert not result
+
+    @patch("lib.downloaders.virustotal.requests.get")
+    def test_download_success_vt(self, mock_get):
+        mock_response = MagicMock()
+        mock_response.status_code = 200
+        mock_response.content = b"sample content"
+        mock_get.return_value = mock_response
+
+        result = vt_downloader("d41d8cd98f00b204e9800998ecf8427e", "test_api_key")
+        self.assertEqual(result, b"sample content")
+
+    @patch("lib.downloaders.virustotal.requests.get")
+    def test_download_hash_not_present(self, mock_get):
+        mock_response = MagicMock()
+        mock_response.status_code = 200
+        mock_response.content = b"Hash Not Present"
+        mock_get.return_value = mock_response
+
+        result = vt_downloader("d41d8cd98f00b204e9800998ecf8427e", "test_api_key")
+        self.assertEqual(result, b"")
+
+    @patch("lib.downloaders.virustotal.requests.get")
+    def test_download_forbidden(self, mock_get):
+        mock_response = MagicMock()
+        mock_response.status_code = 403
+        mock_get.return_value = mock_response
+
+        with self.assertLogs("lib.downloaders.virustotal", level="ERROR") as cm:
+            result = vt_downloader("d41d8cd98f00b204e9800998ecf8427e", "test_api_key")
+            self.assertIn("API key provided is not a valid VirusTotal key or is not authorized for downloads", cm.output[0])
+        self.assertEqual(result, b"")
+
+    @patch("lib.downloaders.virustotal.requests.get")
+    def test_download_not_found(self, mock_get):
+        mock_response = MagicMock()
+        mock_response.status_code = 404
+        mock_get.return_value = mock_response
+
+        with self.assertLogs("lib.downloaders.virustotal", level="ERROR") as cm:
+            result = vt_downloader("d41d8cd98f00b204e9800998ecf8427e", "test_api_key")
+            self.assertIn("Hash not found on VirusTotal", cm.output[0])
+        self.assertEqual(result, b"")
+
+    @pytest.mark.skip(reason="Need to figure out how to test this")
+    @patch("lib.downloaders.virustotal.requests.get")
+    def test_download_request_exception(self, mock_get):
+        mock_get.side_effect = requests.exceptions.RequestException("Request failed")
+
+        with self.assertLogs("lib.downloaders.virustotal", level="ERROR") as cm:
+            result = vt_downloader("d41d8cd98f00b204e9800998ecf8427e", "test_api_key")
+            self.assertIn("Request failed", cm.output[0])
+        self.assertIsNone(result)
+
+
+
+if __name__ == '__main__':
+    unittest.main()
diff --git a/tests/test_file_extra_info.py b/tests/test_file_extra_info.py
new file mode 100644
index 00000000000..c07f8b123ee
--- /dev/null
+++ b/tests/test_file_extra_info.py
@@ -0,0 +1,206 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+import pathlib
+import tempfile
+
+import pytest
+
+from lib.cuckoo.common.integrations import file_extra_info
+
+
+@pytest.fixture(autouse=True)
+def set_tools_folder():
+    file_extra_info.tools_folder = "/tmp"
+    yield
+
+
+self_extraction_dir = pathlib.Path(__file__).parent / "data" / "selfextraction"
+
+
+@pytest.mark.skipif(not (self_extraction_dir).exists(), reason="Required data file is not present")
+class TestFileExtraInfo:
+    @pytest.mark.skipif(
+        not (self_extraction_dir / "0ea5e25b12ab314bc9a0569c3ca756f205f40b792119f8e0fc62c874628dfea0.msi").exists(),
+        reason="Required data file is not present",
+    )
+    def test_generic_file_extractors(self):
+        results = {}
+        data_dictionary = {"type": "MSI Installer"}
+        options_dict = {}
+        tmpdir = tempfile.mkdtemp()
+        duplicated = {"sha256": set()}
+        file_extra_info.generic_file_extractors(
+            f"{self_extraction_dir}/0ea5e25b12ab314bc9a0569c3ca756f205f40b792119f8e0fc62c874628dfea0.msi",
+            tmpdir,
+            data_dictionary,
+            options_dict,
+            results,
+            duplicated,
+            tests=True,
+        )
+        assert "MsiExtract" in data_dictionary["selfextract"].keys()
+        assert len(data_dictionary["selfextract"]["MsiExtract"]["extracted_files"]) == 2
+
+    @pytest.mark.skipif(
+        not (self_extraction_dir / "5b354397f6393ed777639b7d40dec3f37215dcb5078c63993e8a9703e819e2bc.inno").exists(),
+        reason="Required data file is not present",
+    )
+    @pytest.mark.skip(reason="innoextractor in community repo now")
+    def test_generic_file_extractors_no_tests(self):
+        results = {}
+        data_dictionary = {"die": ["Inno Setup"], "type": ""}
+        options_dict = {}
+        tmpdir = tempfile.mkdtemp()
+        duplicated = {"sha256": set()}
+        file_extra_info.generic_file_extractors(
+            f"{self_extraction_dir}/5b354397f6393ed777639b7d40dec3f37215dcb5078c63993e8a9703e819e2bc.inno",
+            tmpdir,
+            data_dictionary,
+            options_dict,
+            results,
+            duplicated,
+        )
+        assert "InnoExtract" in data_dictionary["selfextract"].keys()
+        assert len(data_dictionary["selfextract"]["InnoExtract"]["extracted_files"]) == 1
+
+    @pytest.mark.skip(reason="Not implemented yet")
+    def test_batch_extract(self):
+        extracted_files = file_extra_info.batch_extract(
+            file=f"{self_extraction_dir}/",
+        )
+        assert len(extracted_files["result"]["extracted_files"]) == 4
+
+    @pytest.mark.skipif(
+        not (self_extraction_dir / "c738cdd8ec0d65769e17eed1d6fe371893a2972b7a432c6532446d225e166733.vbe").exists(),
+        reason="Required data file is not present",
+    )
+    def test_vbe_extract(self):
+        extracted_files = file_extra_info.vbe_extract(
+            file=f"{self_extraction_dir}/c738cdd8ec0d65769e17eed1d6fe371893a2972b7a432c6532446d225e166733.vbe",
+        )
+        assert len(extracted_files["result"]["extracted_files"]) == 1
+
+    @pytest.mark.skip(reason="Not implemented yet")
+    def test_eziriz_deobfuscate(self):
+        extracted_files = file_extra_info.eziriz_deobfuscate(
+            file=f"{self_extraction_dir}/",
+            data_dictionary={"die": ["Eziriz .NET Reactor"]} ** {"test": True, "options": {}},
+        )
+        self.assertEqual(len(extracted_files["result"]["extracted_files"]), 4, "Failed to extract.")
+
+    @pytest.mark.skip(reason="Not implemented yet")
+    def test_de4dot_deobfuscate(self):
+        extracted_files = file_extra_info.de4dot_deobfuscate(
+            file=f"{self_extraction_dir}/", filetype="Mono", **{"test": True, "options": {}}
+        )
+        self.assertEqual(len(extracted_files["result"]["extracted_files"]), 4, "Failed to extract.")
+
+    @pytest.mark.skipif(
+        not (self_extraction_dir / "0ea5e25b12ab314bc9a0569c3ca756f205f40b792119f8e0fc62c874628dfea0.msi").exists(),
+        reason="Required data file is not present",
+    )
+    def test_msi_extract(self):
+        extracted_files = file_extra_info.msi_extract(
+            file=f"{self_extraction_dir}/0ea5e25b12ab314bc9a0569c3ca756f205f40b792119f8e0fc62c874628dfea0.msi",
+            filetype="MSI Installer",
+            **{"tests": True, "options": {}},
+        )
+        assert len(extracted_files["result"]["extracted_files"]) == 2
+
+    @pytest.mark.skipif(
+        not (self_extraction_dir / "5b354397f6393ed777639b7d40dec3f37215dcb5078c63993e8a9703e819e2bc.inno").exists(),
+        reason="Required data file is not present",
+    )
+    @pytest.mark.skip(reason="innoextractor in community repo now")
+    def test_Inno_extract(self):
+        extracted_files = file_extra_info.Inno_extract(
+            file=f"{self_extraction_dir}/5b354397f6393ed777639b7d40dec3f37215dcb5078c63993e8a9703e819e2bc.inno",
+            data_dictionary={"die": ["Inno Setup"]},
+        )
+        assert len(extracted_files["result"]["extracted_files"]) == 1
+        assert extracted_files["result"]["extracted_files"] == ["app/vcfconv.exe"]
+
+    @pytest.mark.skip(reason="Not implemented yet - need to include community repo")
+    def test_kixtart_extract(self):
+        extracted_files = file_extra_info.kixtart_extract(
+            file=f"{self_extraction_dir}/d0d415dbe02e893fb1b2d6112c0f38d8ce65ab3268c896bfc64ba06096d4d09a.kix",
+        )
+        assert len(extracted_files["result"]["extracted_files"]) == 4
+
+    @pytest.mark.skip(reason="Not implemented yet")
+    def test_UnAutoIt_extract(self):
+        extracted_files = file_extra_info.kixtart_extract(
+            file=f"{self_extraction_dir}/5b354397f6393ed777639b7d40dec3f37215dcb5078c63993e8a9703e819e2bc.inno",
+            data_dictionary={"yara": [{"name": "AutoIT_Compiled"}]},
+            **{"test": True, "options": {}},
+        )
+        assert len(extracted_files["result"]["extracted_files"]) == 4
+
+    @pytest.mark.skipif(
+        not (self_extraction_dir / "1b0c4149df7892b2497c955dc393ed49e458062324a81288589b15492ce8b50b.upx").exists(),
+        reason="Required data file is not present",
+    )
+    def test_UPX_unpack(self):
+        extracted_files = file_extra_info.UPX_unpack(
+            file=f"{self_extraction_dir}/1b0c4149df7892b2497c955dc393ed49e458062324a81288589b15492ce8b50b.upx",
+            filetype="UPX compressed",
+            data_dictionary={},
+            **{"test": True, "options": {}},
+        )
+        assert len(extracted_files["result"]["extracted_files"]) == 1
+        assert extracted_files["result"]["extracted_files"] == [
+            "1b0c4149df7892b2497c955dc393ed49e458062324a81288589b15492ce8b50b.upx_unpacked"
+        ]
+
+    @pytest.mark.skipif(
+        not (self_extraction_dir / "ab77ea6ad4b6766e0db88d4f49c2c0075ba18b3573d7c6d07ee878bd6e71c388.7z").exists(),
+        reason="Required data file is not present",
+    )
+    def test_SevenZip_unpack(self):
+        extracted_files = file_extra_info.SevenZip_unpack(
+            file=f"{self_extraction_dir}/ab77ea6ad4b6766e0db88d4f49c2c0075ba18b3573d7c6d07ee878bd6e71c388.7z",
+            data_dictionary={"die": ["7-zip Installer data"]},
+            filetype="",
+            **{"test": True, "options": {}},
+        )
+        assert len(extracted_files["result"]["extracted_files"]) == 6
+        assert sorted(extracted_files["result"]["extracted_files"]) == [
+            "Leggimi.txt",
+            "Lisezmoi.txt",
+            "Re-LoaderByR@1n.exe",
+            "Readme.txt",
+            "SetupComplete.cmd",
+            "自述.txt",
+        ]
+
+    @pytest.mark.skipif(
+        not (self_extraction_dir / "9e69c36d967afbb1a948a022fcfb1a6384b35b233a47e7d859145db19018d21e.sfx").exists(),
+        reason="Required data file is not present",
+    )
+    def test_RarSFX_extract(self):
+        extracted_files = file_extra_info.RarSFX_extract(
+            file=f"{self_extraction_dir}/9e69c36d967afbb1a948a022fcfb1a6384b35b233a47e7d859145db19018d21e.sfx",
+            data_dictionary={"type": "RAR self-extracting archive"},
+            options={},
+        )
+        assert len(extracted_files["result"]["extracted_files"]) == 3
+        assert sorted(extracted_files["result"]["extracted_files"]) == ["Manag.exe", "mLib.cs", "x64.xr"]
+
+    @pytest.mark.skipif(
+        not (self_extraction_dir / "12c4d9eddce807d10e3578fcf2918366def586ec374a35957880a65dbd467efc.one").exists(),
+        reason="Required data file is not present",
+    )
+    def test_office_one_extract(self):
+        extracted_files = file_extra_info.office_one(
+            file=f"{self_extraction_dir}/12c4d9eddce807d10e3578fcf2918366def586ec374a35957880a65dbd467efc.one",
+        )
+        assert len(extracted_files["result"]["extracted_files"]) == 6
+        assert sorted(extracted_files["result"]["extracted_files"]) == [
+            "_0.extracted",
+            "_1.extracted",
+            "_2.extracted",
+            "_3.extracted",
+            "_4.extracted",
+            "_5.extracted",
+        ]
diff --git a/tests/test_files.py b/tests/test_files.py
new file mode 100644
index 00000000000..e1ad37c7072
--- /dev/null
+++ b/tests/test_files.py
@@ -0,0 +1,166 @@
+# Copyright (C) 2012-2013 Claudio Guarnieri.
+# Copyright (C) 2014-2018 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+import io
+import os
+import shutil
+import tempfile
+
+import pytest
+
+from lib.cuckoo.common.exceptions import CuckooOperationalError
+from lib.cuckoo.common.files import Files, Folders, Storage, open_exclusive
+from lib.cuckoo.common.path_utils import path_exists, path_write_file
+
+# from lib.cuckoo.common.safelist import is_safelisted_domain
+
+
+def getuser():
+    # if HAVE_PWD:
+    #     return pwd.getpwuid(os.getuid())[0]
+    return ""
+
+
+def set_cwd(dir):
+    return dir
+
+
+@pytest.fixture
+def dir_setup():
+    dirpath = tempfile.mkdtemp()
+    dir_to_copy = tempfile.mkdtemp()
+    file_to_copy = tempfile.NamedTemporaryFile(dir=dir_to_copy, delete=False).name.rsplit("/", 1)[-1]
+    yield dir_to_copy, dirpath, file_to_copy
+    try:
+        shutil.rmtree(dirpath)
+        shutil.rmtree(dir_to_copy)
+    except Exception as e:
+        print(("Tried to remove temp dirs, failed. Probably OK: " + str(e)))
+
+
+class TestCreateFolders:
+    def setup_method(self):
+        self.tmp_dir = tempfile.gettempdir()
+
+    def test_root_folder(self):
+        """Test single folder creation based on the root parameter."""
+        Folders.create(os.path.join(self.tmp_dir, "foo"))
+        assert path_exists(os.path.join(self.tmp_dir, "foo"))
+        os.rmdir(os.path.join(self.tmp_dir, "foo"))
+
+    def test_single_folder(self):
+        """Test single folder creation."""
+        Folders.create(self.tmp_dir, "foo")
+        assert path_exists(os.path.join(self.tmp_dir, "foo"))
+        os.rmdir(os.path.join(self.tmp_dir, "foo"))
+
+    def test_multiple_folders(self):
+        """Test multiple folder creation."""
+        Folders.create(self.tmp_dir, ["foo", "bar"])
+        assert path_exists(os.path.join(self.tmp_dir, "foo"))
+        assert path_exists(os.path.join(self.tmp_dir, "bar"))
+        os.rmdir(os.path.join(self.tmp_dir, "foo"))
+        os.rmdir(os.path.join(self.tmp_dir, "bar"))
+
+    def test_copy_folder(self, dir_setup):
+        """Test recursive folder copy."""
+
+        Folders.copy(dir_setup[0], dir_setup[1])
+
+        assert os.path.isfile("%s/%s" % (dir_setup[0], dir_setup[2]))
+
+    def test_duplicate_folder(self):
+        """Test a duplicate folder creation."""
+        Folders.create(self.tmp_dir, "foo")
+        assert path_exists(os.path.join(self.tmp_dir, "foo"))
+        Folders.create(self.tmp_dir, "foo")
+        os.rmdir(os.path.join(self.tmp_dir, "foo"))
+
+    def test_delete_folder(self):
+        """Test folder deletion #1."""
+        Folders.create(self.tmp_dir, "foo")
+        assert path_exists(os.path.join(self.tmp_dir, "foo"))
+        Folders.delete(os.path.join(self.tmp_dir, "foo"))
+        assert not path_exists(os.path.join(self.tmp_dir, "foo"))
+
+    def test_delete_folder2(self):
+        """Test folder deletion #2."""
+        Folders.create(self.tmp_dir, "foo")
+        assert path_exists(os.path.join(self.tmp_dir, "foo"))
+        Folders.delete(self.tmp_dir, "foo")
+        assert not path_exists(os.path.join(self.tmp_dir, "foo"))
+
+    @pytest.mark.skipif("sys.platform != 'linux2'")
+    def test_create_invld_linux(self):
+        """Test creation of a folder we can't access."""
+        with pytest.raises(CuckooOperationalError):
+            Folders.create("/invalid/directory")
+
+    @pytest.mark.skipif("sys.platform != 'win32'")
+    def test_create_invld_windows(self):
+        """Test creation of a folder we can't access."""
+        with pytest.raises(CuckooOperationalError):
+            Folders.create("Z:\\invalid\\directory")
+
+    @pytest.mark.xfail(os.geteuid() == 0, reason="nektos act runs tests as root")
+    def test_delete_invld(self):
+        """Test deletion of a folder we can't access."""
+        dirpath = tempfile.mkdtemp()
+
+        os.chmod(dirpath, 0)
+        # Deleting the directory will succeed if the tests are run as root.
+        with pytest.raises(CuckooOperationalError):
+            Folders.delete(dirpath)
+
+        os.chmod(dirpath, 0o775)
+        Folders.delete(dirpath)
+
+    def test_create_tuple(self):
+        dirpath = tempfile.mkdtemp()
+        Folders.create(dirpath, "a")
+        Folders.create((dirpath, "a"), "b")
+        Files.create((dirpath, "a", "b"), "c.txt", b"nested")
+
+        filepath = os.path.join(dirpath, "a", "b", "c.txt")
+        assert open(filepath, "rb").read() == b"nested"
+
+
+class TestCreateFile:
+    def test_create(self):
+        dirpath = tempfile.mkdtemp()
+        Files.create(dirpath, "a.txt", b"foo")
+        assert open(os.path.join(dirpath, "a.txt"), "rb").read() == b"foo"
+        shutil.rmtree(dirpath)
+
+    def test_create_bytesio(self):
+        dirpath = tempfile.mkdtemp()
+        filepath = Files.create(dirpath, "a.txt", io.BytesIO(b"A" * 1024 * 1024))
+        assert open(filepath, "rb").read() == b"A" * 1024 * 1024
+
+    def test_create_tuple(self):
+        dirpath = tempfile.mkdtemp()
+        Folders.create(dirpath, "foo")
+        Files.create((dirpath, "foo"), "a.txt", b"bar")
+
+        filepath = os.path.join(dirpath, "foo", "a.txt")
+        assert open(filepath, "rb").read() == b"bar"
+
+
+class TestStorage:
+    def test_basename(self):
+        assert Storage.get_filename_from_path("C:\\a.txt") == "a.txt"
+        assert Storage.get_filename_from_path("C:/a.txt") == "a.txt"
+        assert Storage.get_filename_from_path("C:\\\x00a.txt") == "\x00a.txt"
+        assert Storage.get_filename_from_path("/tmp/a.txt") == "a.txt"
+        assert Storage.get_filename_from_path("../../b.txt") == "b.txt"
+        assert Storage.get_filename_from_path("..\\..\\c.txt") == "c.txt"
+
+
+def test_open_exclusive():
+    fpath = os.path.join(tempfile.mkdtemp(), "yeet.exclusive")
+    _ = path_write_file(fpath, "42421337Test", mode="text")
+
+    with pytest.raises(OSError):
+        open_exclusive(fpath)
diff --git a/tests/test_icon.py b/tests/test_icon.py
new file mode 100644
index 00000000000..7d6433050de
--- /dev/null
+++ b/tests/test_icon.py
@@ -0,0 +1,40 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+import pathlib
+
+import pytest
+from tcr_misc import get_sample
+
+from lib.cuckoo.common.icon import PEGroupIconDir
+
+
+@pytest.fixture
+def sample():
+    def get_binary_data(sample_location):
+        with open(sample_location, mode="rb") as f:
+            return f.read()
+
+    def _grab_sample(sample_hash):
+        sample_location = pathlib.Path(__file__).absolute().parent.as_posix() + "/test_objects/" + sample_hash
+        get_sample(hash=sample_hash, download_location=sample_location)
+        return get_binary_data(sample_location)
+
+    return _grab_sample
+
+
+class TestPEGroupIconDir:
+    # Sample taken from https://www.scintilla.org/wscite32_446.zip
+    @pytest.mark.skip(reason="TODO")
+    def test_init(self, sample):
+        return_obj = PEGroupIconDir(data=sample("438117c7bd53653b3113903bcdb8bd369904a152b524b4676b18a626c2b60e82"))
+        assert len(return_obj.icons) == 3
+
+    @pytest.mark.skip(reason="TODO")
+    def test_get_icon_file(self, sample):
+        return_obj = PEGroupIconDir(data=sample("438117c7bd53653b3113903bcdb8bd369904a152b524b4676b18a626c2b60e82"))
+        assert (
+            return_obj.get_icon_file(idx=0, data=b"FOOBAR")
+            == b"\x00\x00\x01\x00\x01\x00\x00\x00\x04\x00\x00\x00\xff\xff\x00\x00\xb8\x00\x16\x00\x00\x00FOOBAR"
+        )
diff --git a/tests/test_logo.py b/tests/test_logo.py
new file mode 100644
index 00000000000..b414b1a3934
--- /dev/null
+++ b/tests/test_logo.py
@@ -0,0 +1,11 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+from lib.cuckoo.common import logo
+
+
+def test_logo(capsys):
+    logo.logo()
+    captured = capsys.readouterr()
+    assert "CAPE: Config and Payload Extraction" in captured.out
diff --git a/tests/test_mitre.py b/tests/test_mitre.py
new file mode 100644
index 00000000000..40db5d303c1
--- /dev/null
+++ b/tests/test_mitre.py
@@ -0,0 +1,32 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+from lib.cuckoo.common.integrations.mitre import mitre_generate_attck, mitre_load
+from utils.community import install
+
+
+def test_mitre_attck():
+    mitre, _, pyattck_version = mitre_load(True)
+    assert mitre
+
+    data = {
+        "ttps": [
+            {"signature": "http_request", "ttps": ["T1071"]},
+            {"signature": "modify_proxy", "ttps": ["T1112"]},
+            {"signature": "recon_fingerprint", "ttps": ["T1012", "T1082"]},
+        ]
+    }
+
+    # Download mitre jsons here
+    install(["mitre"], True, True, clean=False, url="https://github.com/kevoreilly/community/archive/master.tar.gz")
+    attck = mitre_generate_attck(data, mitre)
+    assert "Discovery" in attck
+    assert len(attck["Discovery"]) == 2
+    assert sorted(attck["Discovery"][0]["signature"]) == ["recon_fingerprint"]
+    assert not attck["Discovery"][0]["t_id"].startswith("attack-pattern")
+    assert attck["Discovery"][0]["t_id"] == "T1082"
+
+
+if __name__ == "__main__":
+    test_mitre_attck()
diff --git a/tests/test_netlog.py b/tests/test_netlog.py
new file mode 100644
index 00000000000..0af0706f6ae
--- /dev/null
+++ b/tests/test_netlog.py
@@ -0,0 +1,58 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+import datetime
+import pathlib
+
+import pytest
+
+from lib.cuckoo.common.netlog import BsonParser
+
+# Might require newer pymongo, works with 3.11.4
+
+
+@pytest.fixture
+def bson_file():
+    class mock_handle:
+        def __init__(self, filename):
+            print(filename)
+            self.file_handle = open(filename, "rb")
+            self.process_log = ()
+
+        def log_process(self, a, b, c, d, e, f):
+            self.process_log = (a, b, c, d, e, f)
+
+        def log_thread(self, a, b):
+            pass
+
+        def log_environ(self, a, b):
+            pass
+
+        def log_call(self, a, b, c, d):
+            pass
+
+        def read(self, num):
+            return self.file_handle.read(num)
+
+    yield mock_handle(pathlib.Path(__file__).absolute().parent.as_posix() + "/test_bson.bson")
+
+
+class TestBsonParser:
+    def test_init(self, bson_file):
+        assert BsonParser(bson_file)
+
+    def test_read_next_message(self, bson_file):
+        b = BsonParser(bson_file)
+        b.read_next_message()
+        assert len(bson_file.process_log) == 0
+
+        b.read_next_message()
+        assert bson_file.process_log == (
+            [0, 0, 1, 0, 2360, 0, 0, 0],
+            datetime.datetime(2020, 11, 6, 9, 34, 36, 359375),
+            1976,
+            476,
+            b"C:\\Windows\\sysnative\\lsass.exe",
+            "lsass.exe",
+        )
diff --git a/tests/test_objects.py b/tests/test_objects.py
new file mode 100644
index 00000000000..8752f4b02b6
--- /dev/null
+++ b/tests/test_objects.py
@@ -0,0 +1,392 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+import copy
+import logging
+import pathlib
+import tempfile
+
+import pytest
+import yara
+
+from lib.cuckoo.common.dictionary import Dictionary  # ,ProcDump
+from lib.cuckoo.common.objects import File  # ,ProcDump
+from lib.cuckoo.common.path_utils import path_delete, path_write_file
+
+# from tcr_misc import get_sample, random_string
+
+
+@pytest.fixture
+def dict_cfg():
+    yield Dictionary()
+
+
+class TestDictionary:
+    def test_usage(self, dict_cfg):
+        dict_cfg.a = "foo"
+        assert "foo" == dict_cfg.a
+        dict_cfg.a = "bar"
+        assert "bar" == dict_cfg.a
+
+    def test_deepcopy(self, dict_cfg):
+        dict_cfg.foo = "bar"
+        dict_cfg2 = copy.deepcopy(dict_cfg)
+        assert dict_cfg2 is not dict_cfg
+        assert dict_cfg2 == dict_cfg
+
+    def test_exception(self, dict_cfg):
+        with pytest.raises(AttributeError):
+            dict_cfg.b.a
+
+
+@pytest.fixture
+def empty_file():
+    tmp = tempfile.mkstemp()
+    file = File(tmp[1])
+    yield {"tmp": tmp, "file": file}
+    path_delete(tmp[1])
+
+
+class TestEmptyFile:
+    def test_get_name(self, empty_file):
+        assert empty_file["tmp"][1].rsplit("/", 1)[-1] == empty_file["file"].get_name()
+
+    def test_get_data(self, empty_file):
+        assert empty_file["file"].get_data() == b""
+
+    def test_get_size(self, empty_file):
+        assert empty_file["file"].get_size() == 0
+
+    def test_get_crc32(self, empty_file):
+        assert empty_file["file"].get_crc32() == "00000000"
+
+    def test_get_md5(self, empty_file):
+        assert empty_file["file"].get_md5() == "d41d8cd98f00b204e9800998ecf8427e"
+
+    def test_get_sha1(self, empty_file):
+        assert empty_file["file"].get_sha1() == "da39a3ee5e6b4b0d3255bfef95601890afd80709"
+
+    def test_get_sha256(self, empty_file):
+        assert empty_file["file"].get_sha256() == "e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855"
+
+    def test_get_sha512(self, empty_file):
+        empty_file[
+            "file"
+        ].get_sha512() == "cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e"
+
+    def test_get_ssdeep(self, empty_file):
+        try:
+            import pydeep  # noqa: F401
+
+            assert empty_file["file"].get_ssdeep() is not None
+        except ImportError:
+            assert empty_file["file"].get_ssdeep() is None
+            logging.warning("Need to install pydeep python module")
+
+    def test_get_type(self, empty_file):
+        assert empty_file["file"].get_type() == "empty"
+
+    def test_get_content_type(self, empty_file):
+        # Passing mime=True is not realistic, does not happen in prod code.
+        assert empty_file["file"].get_content_type() == "empty"
+
+    def test_get_all_type(self, empty_file):
+        assert isinstance(empty_file["file"].get_all()[0], dict)
+
+    def test_get_all_keys(self, empty_file):
+        for key in ("name", "size", "crc32", "md5", "sha1", "sha256", "sha512", "ssdeep", "type"):
+            assert key in empty_file["file"].get_all()[0]
+
+
+@pytest.mark.skipif(not (pathlib.Path(__file__).parent / "data" / "malware").exists(), reason="Required data file is not present")
+def test_filetype():
+    filetype = File("tests/data/malware/53622590bb3138dcbf12b0105af96dd72aedc40de8984f97c8e882343a769b45").get_type()
+    assert filetype == "PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows"
+
+    filetype = File("tests/data/malware/f8a6eddcec59934c42ea254cdd942fb62917b5898f71f0feeae6826ba4f3470d").get_type()
+    assert filetype == "PE32+ executable (DLL) (GUI) x86-64, for MS Windows"
+
+
+""" ToDo ReEnable
+@pytest.fixture(scope="class")
+def test_files():
+    test_files = [
+        {
+            "hash": "e3bb40e63e4b43a58037ce10b2f037486789b631c392cad01b42abd2bf6942d2",
+            "source": "https://github.com/bootandy/dust/releases/download/v0.5.4/dust-v0.5.4-x86_64-pc-windows-msvc.zip",
+            "get_type_str": "PE32+ executable (console) x86-64, for MS Windows",
+            "comment": "dust.exe",
+        },
+        {
+            "hash": "5dd87d3d6b9d8b4016e3c36b189234772661e690c21371f1eb8e018f0f0dec2b",
+            "source": "https://github.com/bootandy/dust/releases/download/v0.5.4/dust-v0.5.4-i686-pc-windows-msvc.zip",
+            "get_type_str": "PE32 executable (console) Intel 80386, for MS Windows",
+            "comment": "dust.exe",
+        },
+        {
+            "hash": "16ffc96e2de2ced2e8da611b8b3d4d02710df1714278203b67c2129987339bf2",
+            "source": "https://www.scintilla.org/wscite32_446.zip",
+            "get_type_str": "PE32 executable (GUI) Intel 80386, for MS Windows",
+            "comment": "SciTE32.exe",
+        },
+        {
+            "hash": "d0bfbe5a17a23e962814642508b397ff65a19a48156d516c723f5c233602c5e4",
+            "source": "https://www.scintilla.org/wscite32_446.zip",
+            "get_type_str": "PE32 executable (DLL) (GUI) Intel 80386, for MS Windows",
+            "comment": "Scintilla.dll",
+        },
+        {
+            "hash": "438117c7bd53653b3113903bcdb8bd369904a152b524b4676b18a626c2b60e82",
+            "source": "https://www.scintilla.org/wscite446.zip",
+            "get_type_str": "PE32+ executable (GUI) x86-64, for MS Windows",
+            "comment": "SciTE.exe",
+        },
+        {
+            "hash": "3782086dd779b883968053dd2cc65860b19678f3d323a39b7e6f47830ceb8632",
+            "source": "https://www.scintilla.org/wscite446.zip",
+            "get_type_str": "PE32+ executable (DLL) (GUI) x86-64, for MS Windows",
+            "comment": "Scintilla.dll",
+        },
+        {
+            "hash": "b70cb2dc500d4e507681d39e10bc554731fc177a5200b56f9844bd92a3168487",
+            "source": "https://www.scintilla.org/wscite446.zip",
+            "get_type_str": "PNG image data, 24 x 24, 8-bit grayscale, non-interlaced",
+            "comment": "png",
+        },
+    ]
+
+    random_suffix = random_string()
+
+    test_files_with_location = test_files
+    tmp_list = os.listdir(pathlib.Path(__file__).absolute().parent.as_posix() + "/test_objects/")
+
+    for index, _ in enumerate(test_files):
+        sample_hash = test_files[index]["hash"]
+        # do we already have a cached sample?
+        cache = [x for x in tmp_list if sample_hash in x]
+        if len(cache) > 0:
+            print(("Already have " + sample_hash))
+            test_files_with_location[index]["download_location"] = File(
+                pathlib.Path(__file__).absolute().parent.as_posix() + "/test_objects/" + cache[0]
+            )
+        else:
+            sample_location = (
+                pathlib.Path(__file__).absolute().parent.as_posix() + "/test_objects/" + sample_hash + "." + random_suffix
+            )
+            get_sample(hash=sample_hash, download_location=sample_location)
+            test_files_with_location[index]["download_location"] = File(sample_location)
+            print(("stored at " + sample_location))
+
+    yield test_files_with_location
+
+    if not os.environ.get("CACHE", True):
+        for index, _ in enumerate(test_files_with_location):
+            path_delete(test_files_with_location[index]["download_location"].file_path)
+
+"""
+
+
+@pytest.fixture
+def hello_file():
+    tmp = tempfile.mkstemp()
+    file = File(tmp[1])
+    _ = path_write_file(file.file_path, "hello", mode="text")
+    yield {"tmp": tmp, "file": file}
+    path_delete(tmp[1])
+
+
+@pytest.fixture
+def yara_compiled():
+    yara_hello_source = """
+        rule hello
+        {
+            strings:
+                $a = "hello"
+            condition:
+                $a
+        }
+        """
+    return yara.compile(source=yara_hello_source)
+
+
+class TestFiles:
+    @pytest.mark.skip(reason="TODO - init yara was removed from objects.py it was init in too many not related parts")
+    def test_get_type(self, test_files):
+        for sample in test_files:
+            print(sample["download_location"], sample["download_location"].get_type(), sample["get_type_str"])
+            assert sample["download_location"].get_type() == sample["get_type_str"]
+            print(("Verified that " + sample["download_location"].file_path + " == " + sample["get_type_str"]))
+
+    @pytest.mark.parametrize(
+        "file_fixture,expected,is_pe",
+        [
+            ("temp_pe32", "PE32 executable (GUI) Intel 80386, for MS Windows", True),  # emulated magic type
+            ("temp_pe64", "PE32+ executable (GUI) x86-64, for MS Windows", True),  # emulated magic type
+            (
+                "temp_pe_aarch64",
+                (
+                    "PE32 executable Aarch64, for MS Windows",
+                    "MS-DOS executable PE32 executable Aarch64, for MS Windows",
+                ),
+                True,
+            ),
+            ("temp_elf32", "ELF 32-bit LSB", False),
+            ("temp_elf64", "ELF 64-bit LSB", False),
+            ("temp_macho_arm64", "Mach-O 64-bit arm64 executable", False),
+        ],
+    )
+    def test_get_type_pe(self, file_fixture, expected, is_pe, request):
+        path = request.getfixturevalue(file_fixture)
+        file = File(path)
+        if isinstance(expected, str):
+            expected = (expected,)
+        assert file.get_type() in expected
+        assert bool(file.pe) == is_pe
+
+    def test_get_yara(self, hello_file, yara_compiled):
+        File.yara_rules = {"hello": yara_compiled}
+        assert hello_file["file"].get_yara(category="hello") == [
+            {"meta": {}, "addresses": {"a": 0}, "name": "hello", "strings": ["hello"]}
+        ]
+
+    @pytest.mark.skip(reason="TODO - init yara was removed from objects.py it was init in too many not related parts")
+    def test_get_yara_no_categories(self, test_files):
+        assert not test_files[0]["download_location"].get_yara()
+
+    def test_get_platform_windows(self, temp_pe32, temp_pe64):
+        assert "windows" == File(temp_pe32).get_platform()
+        assert "windows" == File(temp_pe64).get_platform()
+
+    def test_get_platform_linux(self, temp_elf32, temp_elf64):
+        assert "linux" == File(temp_elf32).get_platform()
+        assert "linux" == File(temp_elf64).get_platform()
+
+    def test_get_platform_darwin(self, temp_macho_arm64):
+        assert "darwin" == File(temp_macho_arm64).get_platform()
+
+    def test_predict_arch_x86(self, temp_pe32, temp_elf32):
+        assert "x86" == File(temp_pe32).predict_arch()
+        assert "x86" == File(temp_elf32).predict_arch()
+
+    def test_predict_arch_x64(self, temp_pe64, temp_elf64, temp_macho_arm64):
+        assert "x64" == File(temp_pe64).predict_arch()
+        assert "x64" == File(temp_elf64).predict_arch()
+        assert "x64" == File(temp_macho_arm64).predict_arch()
+
+    def test_predict_arch_none(self, empty_file):
+        assert None is empty_file["file"].predict_arch()
+
+
+class TestMisc:
+    def test_yara_encode_string_deal_with_error(self):
+        assert File("none_existent_file")._yara_encode_string("\xd0\x91") == "\xd0\x91"
+
+    def test_yara_encode_string(self):
+        assert File("none_existent_file")._yara_encode_string("velociraptor") == "velociraptor"
+
+
+""" ToDo reenable
+@pytest.fixture
+def proc_dump():
+    sha2 = "d62148b0329ac911ef707d6517e83b49416306198e343b28ab71343e30fa0075"
+    location = pathlib.Path(__file__).absolute().parent.as_posix() + "/test_objects/" + sha2 + "." + random_string()
+    tmp_list = os.listdir(pathlib.Path(__file__).absolute().parent.as_posix() + "/test_objects/")
+
+    cache_list = [x for x in tmp_list if sha2 in x]
+    if len(cache_list) > 0:
+        print(("Already have " + sha2))
+        location = pathlib.Path(__file__).absolute().parent.as_posix() + "/test_objects/" + cache_list[0]
+    else:
+        get_sample(hash=sha2, download_location=location)
+    yield sha2, location
+    if not os.environ.get("CACHE", True):
+        os.unlink(location)
+
+
+
+class TestProcDump:
+    def test_init(self, proc_dump):
+        assert ProcDump(dump_file=proc_dump[1])
+
+    def test_get_data(self, proc_dump):
+        data = ProcDump(dump_file=proc_dump[1]).get_data(addr=0, size=26)
+        assert data == b"\xcd!This program cannot be r"
+
+    def test_search_all(self, proc_dump):
+        data = ProcDump(dump_file=proc_dump[1]).search(regex=rb"program", all=True)
+
+        test_str = b"\xcd!This program cannot be run in DOS mode.\r\r\n$\x00\x00\x00\x00\x00\x00\x00d\x94$S \xf5J\x00 \xf5J\x00 \xf5J\x00)\x8d\xdf\x00!\xf5J\x00)\x8d\xd9\x00-\xf5J\x00 \xf5K\x00F\xf5J\x00)\x8d\xce\x00#\xf5J\x00)\x8d\xc9\x005\xf5J\x00)\x8d\xde\x00!\xf5J\x00)\x8d\xdb\x00!\xf5J\x00Rich \xf5J\x00\x00\x00\x00\x00\x00\x00\x00\x00PE\x00\x00L\x01\x04\x00\t\x1d\xddX\x00\x00\x00\x00\x00\x00\x00\x00\xe0\x00\x02\x01\x0b\x01\t\x00\x00<\x00\x00\x00p\x00\x00\x00\x00\x00\x00\x98\x17\x00\x00\x00\x10\x00\x00\x00P\x00\x00\x00\x00I\x00\x00\x10\x00\x00\x00\x02\x00\x00\x06\x00\x01\x00\x06\x00\x01\x00\x06\x00\x01\x00"
+
+        assert data["detail"][-1]["match"][0].string == test_str
+
+    def test_search(self, proc_dump):
+        data = ProcDump(dump_file=proc_dump[1]).search(regex=rb".*")
+
+        test_str = b"@\x00\x00\x00"
+
+        assert data["match"].string == test_str
+
+    def test_parse_dump(self, proc_dump):
+        test_dict = [
+            {
+                "end": 12894362193,
+                "prot": 0,
+                "start": 12894362189,
+                "PE": False,
+                "chunks": [
+                    {
+                        "end": 12894362193,
+                        "prot": 0,
+                        "start": 12894362189,
+                        "state": 65535,
+                        "offset": 24,
+                        "type": 184,
+                        "PE": False,
+                        "size": 4,
+                    }
+                ],
+                "size": 4,
+            },
+            {
+                "end": 216,
+                "prot": None,
+                "start": 0,
+                "PE": False,
+                "chunks": [
+                    {"end": 0, "prot": 0, "start": 0, "state": 0, "offset": 52, "type": 0, "PE": False, "size": 0},
+                    {
+                        "end": 216,
+                        "prot": 1275181089,
+                        "start": 0,
+                        "state": 247078670,
+                        "offset": 76,
+                        "type": 3439965184,
+                        "PE": False,
+                        "size": 216,
+                    },
+                ],
+                "size": 216,
+            },
+            {
+                "end": 231309758694400,
+                "prot": 262144,
+                "start": 231309758693376,
+                "PE": False,
+                "chunks": [
+                    {
+                        "end": 231309758694400,
+                        "prot": 262144,
+                        "start": 231309758693376,
+                        "state": 0,
+                        "offset": 316,
+                        "type": 2151677954,
+                        "PE": False,
+                        "size": 1024,
+                    }
+                ],
+                "size": 1024,
+            },
+        ]
+        assert ProcDump(dump_file=proc_dump[1]).parse_dump() == test_dict
+"""
diff --git a/tests/test_parse_office.py b/tests/test_parse_office.py
new file mode 100644
index 00000000000..9a909a99e4e
--- /dev/null
+++ b/tests/test_parse_office.py
@@ -0,0 +1,82 @@
+import unittest
+from pathlib import Path
+from unittest.mock import MagicMock, patch
+
+import pytest
+from lib.cuckoo.common.integrations.parse_office import Office
+
+data_dir = Path(__file__).parent / "data" / "office"
+rtf_path = data_dir / "rtf_exploit.doc"
+
+
+class TestParseOffice(unittest.TestCase):
+    @patch("lib.cuckoo.common.integrations.parse_office.RtfObjParser")
+    @patch("lib.cuckoo.common.integrations.parse_office.path_exists")
+    @patch("lib.cuckoo.common.integrations.parse_office.hashlib.sha256")
+    def test_parse_rtf(self, mock_sha256, mock_path_exists, MockRtfObjParser):
+        # Setup
+        mock_sha256.return_value.hexdigest.return_value = "dummy_sha256"
+        mock_path_exists.return_value = False
+        mock_rtfobj = MagicMock()
+        mock_rtfobj.format_id = 1
+        mock_rtfobj.is_package = False
+        mock_rtfobj.is_ole = False
+        mock_rtfobj.rawdata = b"rawdata"
+        mock_rtfobj.start = 0
+        MockRtfObjParser.return_value.objects = [mock_rtfobj]
+
+        office = Office(
+            file_path="dummy_path",
+            task_id="dummy_task_id",
+            sha256="dummy_sha256",
+            options={},
+        )
+
+        # Execute
+        result = office._parse_rtf(b"dummy_data")
+
+        # Verify
+        expected_result = {
+            "1": [
+                {
+                    "class_name": "",
+                    "size": len(mock_rtfobj.rawdata),
+                    "filename": "object_00000000.raw",
+                    "type_embed": "",
+                    "CVE": "",
+                    "sha256": "dummy_sha256",
+                    "index": "00000000h",
+                }
+            ]
+        }
+        self.assertEqual(result, expected_result)
+
+
+    @pytest.mark.skipif(not data_dir.exists(), reason="Required data file is not present")
+    @pytest.mark.skipif(not rtf_path.exists(), reason="Required data file is not present")
+    def test_parse_real_rtf(self):
+        office = Office(
+            file_path=rtf_path,
+            task_id="1",
+            sha256="5b307600b1ceb84f29315c95e5b21776eb6154b79214528629e4fc2310cd50e3",
+            options={},
+        )
+        result = office._parse_rtf(Path(rtf_path).read_bytes())
+
+        assert result == {
+            "2": [
+                {
+                    "class_name": "Equation.3",
+                    "size": 3584,
+                    "filename": "object_0000272F.bin",
+                    "type_embed": "Embedded",
+                    "CVE": "Microsoft Equation 3.0 (Known Related to CVE-2017-11882 or CVE-2018-0802)",
+                    "sha256": "c00b73082638eda4af3d5318aba64ae32d23f703a02c7338d5e34230a7855e70",
+                    "index": "0000272Fh",
+                }
+            ]
+        }
+
+
+if __name__ == "__main__":
+    unittest.main()
diff --git a/tests/test_peepdf.py b/tests/test_peepdf.py
new file mode 100644
index 00000000000..8fd807e9463
--- /dev/null
+++ b/tests/test_peepdf.py
@@ -0,0 +1,40 @@
+from pathlib import Path
+
+import pytest
+
+from lib.cuckoo.common.integrations.peepdf import peepdf_parse
+
+data_dir = Path(__file__).parent / "data" / "malware"
+pdf_path = data_dir / "ad6cedb0d1244c1d740bf5f681850a275c4592281cdebb491ce533edd9d6a77d"
+
+expected_result = {
+    "Info": {
+        "Creator": "Scribus 1.3.3.12",
+        "Producer": "Scribus PDF Library 1.3.3.12",
+        "Author": ""
+    },
+    "Dates": [],
+    "Keywords": {},
+    "JSStreams": [
+        {
+            "Object ID": 13,
+            "Offset": 872,
+            "Size": 1255,
+        }
+    ],
+    "All_URLs": [],
+    "JS_URLs": ["http://78.109.30.5/count/005AD56F/load.php?pdf=a684eceee76fc522773286a895bc8436\x00"],
+}
+
+pdfresult = {"Info": {}, "Dates": [], "Keywords": {}, "JSStreams": [], "All_URLs": [], "JS_URLs": []}
+
+
+@pytest.mark.skipif(not data_dir.exists(), reason="Required data file is not present")
+class TestPeepdf:
+    """Class to test peepdf_parse."""
+    @pytest.mark.skipif(not pdf_path.exists(), reason="Required data file is not present")
+    def test_peepdf_parse_valid_pdf(self):
+        """Test parsing a valid PDF sample."""
+        result = peepdf_parse(str(pdf_path), pdfresult)
+        del result["JSStreams"][0]["Data"]
+        assert result == expected_result
diff --git a/tests/test_processing.py b/tests/test_processing.py
new file mode 100644
index 00000000000..ebca2dd6f3f
--- /dev/null
+++ b/tests/test_processing.py
@@ -0,0 +1,118 @@
+from tempfile import NamedTemporaryFile
+from unittest.mock import ANY, MagicMock, patch
+
+import pytest
+
+from lib.cuckoo.common.objects import File
+from modules.processing.CAPE import CAPE
+from modules.processing.deduplication import reindex_screenshots
+
+
+@pytest.fixture
+def cape_processor():
+    retval = CAPE()
+    retval._set_dict_keys()
+    yield retval
+
+
+class TestConfigUpdates:
+    def test_update_no_config(self, cape_processor):
+        cape_processor.update_cape_configs("Family", None, MagicMock())
+        assert cape_processor.cape["configs"] == []
+
+    def test_update_empty_config(self, cape_processor):
+        cape_processor.update_cape_configs("Family", {}, MagicMock())
+        assert cape_processor.cape["configs"] == []
+
+    def test_update_single_config(self, cape_processor):
+        cfg = {"Family": {"SomeKey": "SomeValue"}}
+        cape_processor.update_cape_configs("Family", cfg, MagicMock())
+        expected_cfgs = [cfg]
+        assert cape_processor.cape["configs"] == expected_cfgs
+
+    def test_update_multiple_configs(self, cape_processor):
+        cfg1 = {"Family": {"SomeKey": "SomeValue"}}
+        cfg2 = {"Family": {"AnotherKey": "AnotherValue"}}
+        cape_processor.update_cape_configs("Family", cfg1, MagicMock())
+        cape_processor.update_cape_configs("Family", cfg2, MagicMock())
+        expected_cfgs = [{"Family": {"AnotherKey": "AnotherValue", "SomeKey": "SomeValue"}, "_associated_config_hashes": ANY}]
+        assert cape_processor.cape["configs"] == expected_cfgs
+
+    def test_update_different_families(self, cape_processor):
+        cfg1 = {"Family1": {"SomeKey": "SomeValue"}}
+        cfg2 = {"Family2": {"SomeKey": "SomeValue"}}
+        cape_processor.update_cape_configs("Family", cfg1, MagicMock())
+        cape_processor.update_cape_configs("Family", cfg2, MagicMock())
+        expected_cfgs = [
+            {"Family1": {"SomeKey": "SomeValue"}, "_associated_config_hashes": ANY},
+            {"Family2": {"SomeKey": "SomeValue"}, "_associated_config_hashes": ANY},
+        ]
+        assert cape_processor.cape["configs"] == expected_cfgs
+
+    def test_update_same_family_overwrites(self, cape_processor):
+        # see https://github.com/kevoreilly/CAPEv2/pull/1357
+        cfg1 = {"Family": {"SomeKey": "SomeValue"}}
+        cfg2 = {"Family": {"SomeKey": "DifferentValue"}}
+        cape_processor.update_cape_configs("Family", cfg1, MagicMock())
+        cape_processor.update_cape_configs("Family", cfg2, MagicMock())
+        expected_cfg = [
+            {"Family": {"SomeKey": "DifferentValue"}, "_associated_config_hashes": ANY},
+        ]
+        assert cape_processor.cape["configs"] == expected_cfg
+
+    def test_update_config_file_obj(self, cape_processor):
+        with NamedTemporaryFile(mode="wb") as f:
+            f.write(b"fake file for configs")
+            file_obj = File(f.name).get_all_hashes()
+            cfg = {"Family": {"SomeKey": "SomeValue"}}
+            cape_processor.update_cape_configs("Family", cfg, file_obj)
+        actual_cfg = cape_processor.cape["configs"]
+        assert "Family" in actual_cfg[0]
+        assert "_associated_config_hashes" in actual_cfg[0]
+        hashes = actual_cfg[0]["_associated_config_hashes"]
+        assert len(hashes) == 1
+        assert hashes[0]["md5"].startswith("d41")
+        assert hashes[0]["sha1"].startswith("da3")
+        assert hashes[0]["sha256"].startswith("e3b")
+        assert hashes[0]["sha512"].startswith("cf8")
+        assert hashes[0]["sha3_384"].startswith("0c6")
+
+
+class TestAnalysisConfigLinks:
+    @pytest.mark.parametrize("category", ["static", "file"])
+    def test_analysis_linkability(self, category, cape_processor):
+        cape_processor.results = {"target": {"category": category}}
+        hashes = {
+            "md5": "fake-md5",
+            "sha1": "fake-sha1",
+            "sha256": "fake-sha256",
+            "sha512": "fake-sha512",
+            "sha3_384": "fake-sha3_384",
+        }
+        cape_processor.results["target"]["file"] = hashes
+        cfg = {"Family": {"SomeKey": "DifferentValue"}}
+        cape_processor.cape["configs"] = [cfg]
+        cape_processor.link_configs_to_analysis()
+        assert "_associated_analysis_hashes" in cfg
+        assert cfg["_associated_analysis_hashes"] == hashes
+
+    @pytest.mark.parametrize("category", ["resubmit", "sample", "pcap", "url", "dlnexec", "vtdl"])
+    def test_static_links(self, category, cape_processor):
+        cape_processor.results = {"target": {"category": category}}
+        cfg = {"Family": {"SomeKey": "DifferentValue"}}
+        cape_processor.cape["configs"] = [cfg]
+        cape_processor.link_configs_to_analysis()
+        assert "_associated_analysis_hashes" not in cfg
+
+
+class TestDeduplication:
+    @patch("os.rename")
+    @patch("os.listdir")
+    def test_reindex(self, os_listdir, os_rename):
+        dirlist = ["foo.jpg", "bar.jpg", "baz.jpg"]
+        os_listdir.return_value = dirlist
+        reindex_screenshots("shots")
+        assert os_rename.call_count == 3
+        os_rename.assert_any_call("shots/bar.jpg", "shots/0000.jpg")
+        os_rename.assert_any_call("shots/baz.jpg", "shots/0001.jpg")
+        os_rename.assert_any_call("shots/foo.jpg", "shots/0002.jpg")
diff --git a/tests/test_quarantine.py b/tests/test_quarantine.py
new file mode 100644
index 00000000000..9e10d1d6b8c
--- /dev/null
+++ b/tests/test_quarantine.py
@@ -0,0 +1,197 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+import os
+import pathlib
+import struct
+import tempfile
+from unittest import mock
+
+import pytest
+
+from lib.cuckoo.common.quarantine import bytearray_xor, mbam_unquarantine, mse_unquarantine, trend_unquarantine, unquarantine
+
+# from tcr_misc import get_sample
+
+
+"""
+@pytest.fixture
+def grab_sample():
+    def _grab_sample(sample_hash):
+        sample_location = pathlib.Path(__file__).absolute().parent.as_posix() + "/test_objects/" + sample_hash
+        get_sample(hash=sample_hash, download_location=sample_location)
+        return sample_location
+
+    return _grab_sample
+"""
+
+QUARANTINED_DATA = b"\xff\xee\xdd\xcc\xbb\xaa"
+
+
+@pytest.fixture
+def empty_file():
+    empty_file = tempfile.NamedTemporaryFile(suffix=".but")
+    yield empty_file
+    empty_file.close()
+
+
+@pytest.fixture
+def temp_trend_qarantined_pe(tmp_path):
+    def trend_tag(code: int, tag_data: bytes) -> bytes:
+        return struct.pack("<BH", code, len(tag_data)) + tag_data
+
+    def write_quarantine_file(dir):
+        tags = b"".join(
+            [
+                trend_tag(1, ("C:\\" + "\0").encode("utf-16le")),
+                trend_tag(2, ("dangerous.exe" + "\0").encode("utf-16le")),
+                trend_tag(3, b"win32"),
+                trend_tag(4, b"\x00"),
+                trend_tag(5, b"\x01"),
+                trend_tag(6, b"\x00\x00\x00\x00"),
+                trend_tag(7, b"\x01\x00\x00\x00"),
+            ]
+        )
+        magic = 0x58425356
+        offset = len(tags) + 10
+        numtags = 7
+        header = struct.pack("<IIH", magic, offset, numtags)
+        file_data = bytearray(header)
+        file_data.extend(tags)
+        file_data.extend(b"\x00" * 10)
+        file_data.extend(QUARANTINED_DATA)
+        file_data = bytearray_xor(file_data, 0xFF)
+        qfilepath = os.path.join(dir, "quarantined_file")
+        with open(qfilepath, "wb") as qfil:
+            qfil.write(file_data)
+        return qfilepath
+
+    qpath = write_quarantine_file(tmp_path)
+    yield qpath
+    os.unlink(qpath)
+
+
+class TestUnquarantine:
+    # disabled for test
+    """
+    def test_mcafee(self, grab_sample):
+        sample_hash = "14f715be9d422d367d0a5233515fa1c770728e4a3ff396b1936d1fa30965cc5d"
+        sample_location = grab_sample(sample_hash)
+        assert (
+            unquarantine(sample_location).rsplit(b"/", 1)[-1] == b"14f715be9d422d367d0a5233515fa1c770728e4a3ff396b1936d1fa30965cc5d"
+        )
+
+    def test_kaspersky(self, grab_sample):
+        sample_hash = "b1c3bea84e2b5931b2ef8397e8ea3ee982cceacaa3987bf870cb712cd5015cc0"
+        sample_location = grab_sample(sample_hash)
+        assert unquarantine(sample_location).rsplit(b"/", 1)[-1] == b"KAVDequarantineFile"
+
+    def test_trend(self, grab_sample):
+        sample_hash = "0b2a20864392f2dd911aed79218e0ed44fd77b299d4b9bd9108c59fe4e551baf"
+        sample_location = grab_sample(sample_hash)
+        assert (
+            unquarantine(sample_location).rsplit(b"/", 1)[-1] == b"0b2a20864392f2dd911aed79218e0ed44fd77b299d4b9bd9108c59fe4e551baf"
+        )
+
+    def test_xorff(self, grab_sample):
+        sample_hash = "f78151a41250f2bb1b5ca6bd61a427ad1fcf353febb1461e68c52025490827e2"
+        sample_location = grab_sample(sample_hash)
+        assert (
+            xorff_unquarantine(sample_location).rsplit(b"/", 1)[-1]
+            == b"f78151a41250f2bb1b5ca6bd61a427ad1fcf353febb1461e68c52025490827e2"
+        )
+
+    """
+
+    """
+    tmp_path = unquarantine(filename)
+    if tmp_path:
+        filename = tmp_path
+    """
+
+    @pytest.mark.skipif(
+        not (pathlib.Path(__file__).parent / "data" / "quarantine").exists(), reason="Required data file is not present"
+    )
+    def test_mbam(self):
+        assert (
+            mbam_unquarantine("tests/data/quarantine/d0f51ff313ede61e1c4d7d57b644507a4bd46455e3e617e66c922c8c0c07024b.mbam").rsplit(
+                b"/", 1
+            )[-1]
+            == b"MBAMDequarantineFile"
+        )
+
+    @pytest.mark.skipif(
+        not (pathlib.Path(__file__).parent / "data" / "quarantine").exists(), reason="Required data file is not present"
+    )
+    def test_mse(self):
+        assert (
+            mse_unquarantine("tests/data/quarantine/70dbb01654db5a1518091377f27f9a382657c5e32ecdec5074680215dc3a7f65.mse").rsplit(
+                b"/", 1
+            )[-1]
+            == b"d8e43dfb7662e0eeb26821f"
+        )
+
+    """
+    def test_sep(self, grab_sample):
+        sample_hash = "24589c208c371766bfe9f12fbbc02805500cfee75b3fb051ca8d3ba51edf0cac"
+        sample_location = grab_sample(sample_hash)
+        assert unquarantine(sample_location).rsplit(b"/", 1)[-1] == b"recycler.lnk"
+    """
+
+    def test_ext_err(self, empty_file):
+        assert unquarantine(empty_file.name) is None
+
+    def test_trend_unquarantine_normal_file(self, temp_pe32):
+        """Test only the file header (first 10 bytes) is XOR'd for non-quarantined files."""
+        # The expected output is None
+        expected = None
+
+        def bytearray_xor_wrapper(data, key):
+            expected_header_length = 10
+            actual_header_length = len(data)
+            # We only want to see the 10 byte header here if the file is not
+            # quarantined.
+            assert expected_header_length == actual_header_length
+            return data
+
+        def store_temp_file_(filedata, filename, path=None):
+            return expected
+
+        # Mock `store_temp_file` to give us visibility into the call.
+        with mock.patch("lib.cuckoo.common.quarantine.store_temp_file") as mock_store_temp_file:
+            mock_store_temp_file.side_effect = store_temp_file_
+            # Mock `bytearray_xor` to give us visibility into any calls.
+            with mock.patch("lib.cuckoo.common.quarantine.bytearray_xor") as bytearray_xor_mock:
+                bytearray_xor_mock.side_effect = bytearray_xor_wrapper
+                actual = trend_unquarantine(temp_pe32)
+        # Check there is only a single call to `bytearray_xor`. Two calls means
+        # it XOR'd the whole file, which is not what we want.
+        bytearray_xor_mock.assert_called_once()
+        # Check that it didn't try to save any new files.
+        mock_store_temp_file.assert_not_called()
+        # Ensure `None` response when no action was performed.
+        assert actual == expected
+
+    def test_trend_unquarantine_quarantined_file(self, temp_trend_qarantined_pe, tmp_path):
+        """Test the whole file is XOR'd for quarantined files."""
+        # We expect the output to be None
+        expected = os.path.join(tmp_path, "unqarantined_file")
+
+        def store_temp_file_(filedata, filename, path=None):
+            return expected
+
+        # Mock `store_temp_file` to give us visibility into the call.
+        with mock.patch("lib.cuckoo.common.quarantine.store_temp_file") as mock_store_temp_file:
+            mock_store_temp_file.side_effect = store_temp_file_
+            # Mock `bytearray_xor` to give us visibility into the calls.
+            with mock.patch("lib.cuckoo.common.quarantine.bytearray_xor") as mock_bytearray_xor:
+                mock_bytearray_xor.side_effect = bytearray_xor
+                actual = trend_unquarantine(temp_trend_qarantined_pe)
+        # Check there are two calls to `bytearray_xor`. One for the header and
+        # one for the full file.
+        mock_bytearray_xor.assert_has_calls([mock.call(mock.ANY, mock.ANY), mock.call(mock.ANY, mock.ANY)])
+        # Assert that it attempts to create a new file with unquarantined data.
+        # mock_store_temp_file.assert_called_once_with(QUARANTINED_DATA, mock.ANY)
+        # Check that `trend_unquarantine` returns the filepath of the new file.
+        assert actual == expected
diff --git a/tests/test_signature.py b/tests/test_signature.py
new file mode 100644
index 00000000000..7741bf8dd80
--- /dev/null
+++ b/tests/test_signature.py
@@ -0,0 +1,411 @@
+import json
+import os
+
+import pytest
+
+from lib.cuckoo.common.abstracts import Signature
+from lib.cuckoo.common.constants import CUCKOO_ROOT
+from lib.cuckoo.common.path_utils import path_exists
+from lib.cuckoo.core.plugins import RunSignatures, register_plugin
+
+
+class FakeSignatureCallAlways(Signature):
+    name = "FakeSignatureCallAlways"
+    description = "Fake signature created for testing signatures triggering"
+    severity = 1
+    categories = ["malware"]
+    authors = ["@CybercentreCanada", "@cccs-mog"]
+    minimum = "1.3"
+    evented = True
+
+    def __init__(self, *args, **kwargs):
+        Signature.__init__(self, *args, **kwargs)
+        self.query = False
+
+    def on_call(self, call, process):
+        self.query = True
+
+    def on_complete(self):
+        if self.query:
+            return True
+
+
+class FakeSignatureAPI_Cat(Signature):
+    name = "FakeSignatureAPI_Cat"
+    description = "Fake signature created for testing signatures triggering"
+    severity = 1
+    categories = ["malware"]
+    authors = ["@CybercentreCanada", "@cccs-mog"]
+    minimum = "1.3"
+    evented = True
+
+    filter_apinames = set(["gethostbyname"])
+    filter_categories = set(["network"])
+
+    def __init__(self, *args, **kwargs):
+        Signature.__init__(self, *args, **kwargs)
+        self.query = False
+
+    def on_call(self, call, process):
+        self.query = True
+
+    def on_complete(self):
+        if self.query:
+            return True
+
+
+class FakeSignatureAPI_Process(Signature):
+    name = "FakeSignatureAPI_Process"
+    description = "Fake signature created for testing signatures triggering"
+    severity = 1
+    categories = ["malware"]
+    authors = ["@CybercentreCanada", "@cccs-mog"]
+    minimum = "1.3"
+    evented = True
+
+    filter_apinames = set(["gethostbyname"])
+    filter_processnames = set(["powershell.exe"])
+
+    def __init__(self, *args, **kwargs):
+        Signature.__init__(self, *args, **kwargs)
+        self.query = False
+
+    def on_call(self, call, process):
+        self.query = True
+
+    def on_complete(self):
+        if self.query:
+            return True
+
+
+class FakeSignatureCat_Process(Signature):
+    name = "FakeSignatureCat_Process"
+    description = "Fake signature created for testing signatures triggering"
+    severity = 1
+    categories = ["malware"]
+    authors = ["@CybercentreCanada", "@cccs-mog"]
+    minimum = "1.3"
+    evented = True
+
+    filter_processnames = set(["powershell.exe"])
+    filter_categories = set(["network"])
+
+    def __init__(self, *args, **kwargs):
+        Signature.__init__(self, *args, **kwargs)
+        self.query = False
+
+    def on_call(self, call, process):
+        self.query = True
+
+    def on_complete(self):
+        if self.query:
+            return True
+
+
+class FakeSignatureAPI_Cat_Process_With_No_OnCall_Check(Signature):
+    name = "FakeSignatureAPI_Cat_Process_With_No_OnCall_Check"
+    description = "Fake signature created for testing signatures triggering"
+    severity = 1
+    categories = ["malware"]
+    authors = ["@CybercentreCanada", "@cccs-mog"]
+    minimum = "1.3"
+    evented = True
+
+    filter_apinames = set(["gethostbyname"])
+    filter_processnames = set(["powershell.exe"])
+    filter_categories = set(["network"])
+
+    def __init__(self, *args, **kwargs):
+        Signature.__init__(self, *args, **kwargs)
+        self.query = False
+
+    def on_call(self, call, process):
+        self.query = True
+
+    def on_complete(self):
+        if self.query:
+            return True
+
+
+class FakeSignatureAPI_Cat_Process_With_OnCall_Check(Signature):
+    name = "FakeSignatureAPI_Cat_Process_With_OnCall_Check"
+    description = "Fake signature created for testing signatures triggering"
+    severity = 1
+    categories = ["malware"]
+    authors = ["@CybercentreCanada", "@cccs-mog"]
+    minimum = "1.3"
+    evented = True
+
+    filter_apinames = set(["gethostbyname"])
+    filter_processnames = set(["powershell.exe"])
+    filter_categories = set(["network"])
+
+    def __init__(self, *args, **kwargs):
+        Signature.__init__(self, *args, **kwargs)
+        self.query = False
+
+    def on_call(self, call, process):
+        if call["api"] == "gethostbyname" and call["category"] == "network" and process["process_name"] == "powershell.exe":
+            self.query = True
+
+    def on_complete(self):
+        if self.query:
+            return True
+
+
+class FakeSignatureAPI(Signature):
+    name = "FakeAPI"
+    description = "Fake signature created for testing signatures triggering"
+    severity = 1
+    categories = ["malware"]
+    authors = ["@CybercentreCanada", "@cccs-mog"]
+    minimum = "1.3"
+    evented = True
+
+    filter_apinames = set(["gethostbyname"])
+
+    def __init__(self, *args, **kwargs):
+        Signature.__init__(self, *args, **kwargs)
+        self.query_host = False
+
+    def on_call(self, call, process):
+        self.query_host = True
+
+    def on_complete(self):
+        if self.query_host:
+            return True
+
+
+class FakeSignatureProcess(Signature):
+    name = "FakeProcess"
+    description = "Fake signature created for testing signatures triggering"
+    severity = 1
+    categories = ["malware"]
+    authors = ["@CybercentreCanada", "@cccs-mog"]
+    minimum = "1.3"
+    evented = True
+
+    filter_processnames = set(["powershell.exe"])
+
+    def __init__(self, *args, **kwargs):
+        Signature.__init__(self, *args, **kwargs)
+        self.query_process = False
+
+    def on_call(self, call, process):
+        self.query_process = True
+
+    def on_complete(self):
+        if self.query_process:
+            return True
+
+
+class FakeSignatureCategory(Signature):
+    name = "FakeCategory"
+    description = "Fake signature created for testing signatures triggering"
+    severity = 1
+    categories = ["malware"]
+    authors = ["@CybercentreCanada", "@cccs-mog"]
+    minimum = "1.3"
+    evented = True
+
+    filter_categories = set(["network"])
+
+    def __init__(self, *args, **kwargs):
+        Signature.__init__(self, *args, **kwargs)
+        self.query_network = False
+
+    def on_call(self, call, process):
+        self.query_network = True
+
+    def on_complete(self):
+        if self.query_network:
+            return True
+
+
+class TestSignatureEngine:
+    def setup_class(cls):
+        sigs = [
+            FakeSignatureAPI,
+            FakeSignatureProcess,
+            FakeSignatureCategory,
+            FakeSignatureAPI_Cat_Process_With_OnCall_Check,
+            FakeSignatureAPI_Cat_Process_With_No_OnCall_Check,
+            FakeSignatureCallAlways,
+            FakeSignatureAPI_Cat,
+            FakeSignatureAPI_Process,
+            FakeSignatureCat_Process,
+        ]
+        for sig in sigs:
+            register_plugin("signatures", sig)
+
+    @pytest.mark.parametrize(
+        "task_id, signature_name, match_expected",
+        # @task_id: task to be created or task id to use
+        # @signature_name: Name of the signature to test
+        # @match_expected: tell if the signature should match or not in the report (if multiple specify which ones if wanted)
+        (
+            # No tasks and signature_name
+            (
+                None,
+                "",
+                False,
+            ),
+            # Single signature with API filtering which should match
+            (
+                1,
+                "FakeAPI",
+                True,
+            ),
+            # Single signature with API filtering which shouldn't match
+            (
+                2,
+                "FakeAPI",
+                False,
+            ),
+            # Single signature with category filtering  which should match
+            (
+                2,
+                "FakeCategory",
+                True,
+            ),
+            # Single signature with category filtering  which shouldn't match
+            (
+                3,
+                "FakeCategory",
+                False,
+            ),
+            # Single signature with process filtering  which should match
+            (
+                2,
+                "FakeProcess",
+                True,
+            ),
+            # Single signature with process filtering  which shouldn't match
+            (
+                3,
+                "FakeProcess",
+                False,
+            ),
+            # Single signature with all filtering  which should match
+            (
+                1,
+                "FakeSignatureAPI_Cat_Process_With_No_OnCall_Check",
+                True,
+            ),
+            # Single signature with all filtering  which should match
+            (
+                2,
+                "FakeSignatureAPI_Cat_Process_With_No_OnCall_Check",
+                False,
+            ),
+            # Single signature with all double filtering which should match
+            (
+                1,
+                "FakeSignatureAPI_Cat_Process_With_OnCall_Check",
+                True,
+            ),
+            # Single signature with all double filtering which shouldn't match
+            (
+                2,
+                "FakeSignatureAPI_Cat_Process_With_OnCall_Check",
+                False,
+            ),
+            # Single signature with no filtering which should match
+            (
+                1,
+                "FakeSignatureCallAlways",
+                True,
+            ),
+            # Single signature with two filter which should match
+            (
+                1,
+                "FakeSignatureCat_Process",
+                True,
+            ),
+            # Single signature with two filter which shouldn't match
+            (
+                3,
+                "FakeSignatureCat_Process",
+                False,
+            ),
+            # Single signature with two filter which should match
+            (
+                1,
+                "FakeSignatureAPI_Process",
+                True,
+            ),
+            # Single signature with two filter which shouldn't match
+            (
+                3,
+                "FakeSignatureAPI_Process",
+                False,
+            ),
+            # Single signature with two filter which should match
+            (
+                1,
+                "FakeSignatureAPI_Cat",
+                True,
+            ),
+            # Single signature with two filter which shouldn't match
+            (
+                3,
+                "FakeSignatureAPI_Cat",
+                False,
+            ),
+            # Test running all signatures
+            (
+                1,
+                False,
+                [
+                    "FakeProcess",
+                    "FakeSignatureCallAlways",
+                    "FakeSignatureCat_Process",
+                    "FakeCategory",
+                    "FakeAPI",
+                    "FakeSignatureAPI_Cat_Process_With_No_OnCall_Check",
+                    "FakeSignatureAPI_Cat_Process_With_OnCall_Check",
+                    "FakeSignatureAPI_Process",
+                    "FakeSignatureAPI_Cat",
+                ],
+            ),
+            # Test running all signatures
+            (
+                2,
+                False,
+                ["FakeProcess", "FakeSignatureCallAlways", "FakeSignatureCat_Process", "FakeCategory"],
+            ),
+            # Test running all signatures
+            (
+                3,
+                False,
+                ["FakeSignatureCallAlways"],
+            ),
+        ),
+    )
+    # This test can be used to validate if a specific report trigger your function the same way as process.py does.
+    # It could be used to test a suite of signature against known report.json files.
+    def test_RunSignatures_run(self, task_id, signature_name, match_expected):
+        task = {"id": task_id}
+        report = None
+        results = {}
+        if task_id is not None:
+            report = os.path.join(CUCKOO_ROOT, "tests", "test_data", str(task_id), "reports", "report.json")
+            assert path_exists(report), "Missing test data file, failing"
+        if report:
+            results = json.load(open(report))
+            assert results is not None, "Test data file is empty"
+        # If the "statistics" key-value pair has not been set by now, set it here
+        RunSignatures(task=task, results=results).run(signature_name)
+        if match_expected and isinstance(match_expected, bool):
+            assert signature_name in results["signatures"][0]["name"], f"Signature should be matching report for task {task_id}"
+            assert len(results["signatures"]) == 1, f"{signature_name} should be the only signature run"
+        elif not match_expected:
+            if "statistics" in results.keys():
+                assert signature_name not in results["signatures"], f"Signature should not be matching report for task {task_id}"
+        else:
+            triggered = []
+            for sig in results["signatures"]:
+                triggered.append(sig["name"])
+            for match in match_expected:
+                assert match in triggered, "Signature should be matching report"
+            assert len(match_expected) == len(results["signatures"]), f"Should have {len(match_expected)} signature matching"
diff --git a/tests/test_stap.py b/tests/test_stap.py
deleted file mode 100644
index 75cb05efc4b..00000000000
--- a/tests/test_stap.py
+++ /dev/null
@@ -1,200 +0,0 @@
-# Copyright (C) 2017 Cuckoo Foundation.
-# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
-# See the file "docs/LICENSE" for copying permission.
-
-import datetime
-
-from lib.cuckoo.processing.platform.linux import StapParser
-
-
-def test_staplog():
-    with open("tests/files/stap.log") as fd:
-        assert list(StapParser(fd)) == [
-            {
-                "api": "execve",
-                "arguments": {
-                    "p0": "/usr/bin/sh",
-                    "p1": ["sh", "-c", "/tmp/helloworld.sh"],
-                    "p2": [
-                        "LANGUAGE=en_US:en",
-                        "HOME=/root",
-                        "LOGNAME=root",
-                        "PATH=/usr/bin:/bin",
-                        "LANG=en_US.UTF-8",
-                        "SHELL=/bin/sh",
-                        "PWD=/root",
-                    ],
-                },
-                "instruction_pointer": "b774dcf9",
-                "pid": 680,
-                "process_name": "python",
-                "raw": 'Mon Jun 19 16:58:31 2017.445170 python@b774dcf9[680] execve("/usr/bin/sh", ["sh", "-c", "/tmp/helloworld.sh"], ["LANGUAGE=en_US:en", "HOME=/root", "LOGNAME=root", "PATH=/usr/bin:/bin", "LANG=en_US.UTF-8", "SHELL=/bin/sh", "PWD=/root"]) = -2 (ENOENT)\n',
-                "return_value": "-2",
-                "status": "ENOENT",
-                "time": datetime.datetime(2017, 6, 19, 16, 58, 31, 445170),
-                "type": "apicall",
-            },
-            {
-                "api": "brk",
-                "arguments": {"p0": "0x0"},
-                "instruction_pointer": "b77825f7",
-                "pid": 680,
-                "process_name": "sh",
-                "raw": "Mon Jun 19 16:58:31 2017.517266 sh@b77825f7[680] brk(0x0) = -2118402048\n",
-                "return_value": "-2118402048",
-                "status": "",
-                "time": datetime.datetime(2017, 6, 19, 16, 58, 31, 517266),
-                "type": "apicall",
-            },
-            {
-                "api": "access",
-                "arguments": {"p0": "/etc/ld.so.nohwcap", "p1": "F_OK"},
-                "instruction_pointer": "b77838c1",
-                "pid": 680,
-                "process_name": "sh",
-                "raw": 'Mon Jun 19 16:58:31 2017.521264 sh@b77838c1[680] access("/etc/ld.so.nohwcap", F_OK) = -2 (ENOENT)\n',
-                "return_value": "-2",
-                "status": "ENOENT",
-                "time": datetime.datetime(2017, 6, 19, 16, 58, 31, 521264),
-                "type": "apicall",
-            },
-            {
-                "api": "mmap2",
-                "arguments": {
-                    "p0": "0x0",
-                    "p1": "12288",
-                    "p2": "PROT_READ|PROT_WRITE",
-                    "p3": "MAP_PRIVATE|MAP_ANONYMOUS",
-                    "p4": "-1",
-                    "p5": "0",
-                },
-                "instruction_pointer": "b7783970",
-                "pid": 680,
-                "process_name": "sh",
-                "raw": "Mon Jun 19 16:58:31 2017.550890 sh@b7783970[680] mmap2(0x0, 12288, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0xb7764000\n",
-                "return_value": "0xb7764000",
-                "status": "",
-                "time": datetime.datetime(2017, 6, 19, 16, 58, 31, 550890),
-                "type": "apicall",
-            },
-            {
-                "api": "write",
-                "arguments": {"p0": "1", "p1": "h3ll0 w0rld!\n", "p2": "13",},
-                "instruction_pointer": "b7768cf9",
-                "pid": 681,
-                "process_name": "helloworld.sh",
-                "raw": 'Mon Jun 19 16:58:32 2017.036988 helloworld.sh@b7768cf9[681] write(1, "h3ll0 w0rld!\\n", 13) = 13\n',
-                "return_value": "13",
-                "status": "",
-                "time": datetime.datetime(2017, 6, 19, 16, 58, 32, 36988),
-                "type": "apicall",
-            },
-            {
-                "api": "read",
-                "arguments": {"p0": "10", "p1": "0x800665c0", "p2": "8192",},
-                "instruction_pointer": "b7768cf9",
-                "pid": 681,
-                "process_name": "helloworld.sh",
-                "raw": "Mon Jun 19 16:58:32 2017.037596 helloworld.sh@b7768cf9[681] read(10, 0x800665c0, 8192) = 0\n",
-                "return_value": "0",
-                "status": "",
-                "time": datetime.datetime(2017, 6, 19, 16, 58, 32, 37596),
-                "type": "apicall",
-            },
-            {
-                "api": "exit_group",
-                "arguments": {"p0": "0"},
-                "instruction_pointer": "b7768cf9",
-                "pid": 681,
-                "process_name": "helloworld.sh",
-                "raw": "Mon Jun 19 16:58:32 2017.037898 helloworld.sh@b7768cf9[681] exit_group(0) =\n",
-                "return_value": "",
-                "status": "",
-                "time": datetime.datetime(2017, 6, 19, 16, 58, 32, 37898),
-                "type": "apicall",
-            },
-            {
-                "api": "wait4",
-                "arguments": {"p0": "-1", "p1": "0xbfd4a134", "p2": "0x0", "p3": "0x0",},
-                "instruction_pointer": "b7769cf9",
-                "pid": 680,
-                "process_name": "sh",
-                "raw": "Mon Jun 19 16:58:31 2017.850098 sh@b7769cf9[680] wait4(-1, 0xbfd4a134, 0x0, 0x0) = 681\n",
-                "return_value": "681",
-                "status": "",
-                "time": datetime.datetime(2017, 6, 19, 16, 58, 31, 850098),
-                "type": "apicall",
-            },
-            {
-                "api": "sigreturn",
-                "arguments": {},
-                "instruction_pointer": "b7769cf9",
-                "pid": 680,
-                "process_name": "sh",
-                "raw": "Mon Jun 19 16:58:32 2017.051317 sh@b7769cf9[680] sigreturn() = 681\n",
-                "return_value": "681",
-                "status": "",
-                "time": datetime.datetime(2017, 6, 19, 16, 58, 32, 51317),
-                "type": "apicall",
-            },
-            {
-                "api": "exit_group",
-                "arguments": {"p0": "0"},
-                "instruction_pointer": "b7769cf9",
-                "pid": 680,
-                "process_name": "sh",
-                "raw": "Mon Jun 19 16:58:32 2017.051973 sh@b7769cf9[680] exit_group(0) =\n",
-                "return_value": "",
-                "status": "",
-                "time": datetime.datetime(2017, 6, 19, 16, 58, 32, 51973),
-                "type": "apicall",
-            },
-            {
-                "api": "write",
-                "arguments": {"p0": "2", "p1": "BusyBox v1.16.0 (2010-02-06 04:51:36 CST)", "p2": "41",},
-                "instruction_pointer": "80dbdde",
-                "pid": 704,
-                "process_name": "busybox-i686",
-                "raw": 'Tue Jun 20 15:39:30 2017.141870 busybox-i686@80dbdde[704] write(2, "BusyBox v1.16.0 \\x282010-02-06 04:51:36 CST\\x29", 41) = 41\n',
-                "return_value": "41",
-                "status": "",
-                "time": datetime.datetime(2017, 6, 20, 15, 39, 30, 141870),
-                "type": "apicall",
-            },
-            {
-                "api": "write",
-                "arguments": {"p0": "2", "p1": "Copyright (C) 1998-2009 Erik Andersen, Rob La", "p2": "480",},
-                "instruction_pointer": "80dbdde",
-                "pid": 668,
-                "process_name": "busybox-i686",
-                "raw": 'Thu Jun 22 10:22:06 2017.766807 busybox-i686@80dbdde[668] write(2, "Copyright \\x28C\\x29 1998-2009 Erik Andersen\\x2c Rob La", 480) = 480\n',
-                "return_value": "480",
-                "status": "",
-                "time": datetime.datetime(2017, 6, 22, 10, 22, 6, 766807),
-                "type": "apicall",
-            },
-            {
-                "api": "execve",
-                "arguments": {"p0": "/usr/bin/sh", "p1": ["sh", "-c", "/tmp/comma,sh"], "p2": ["COMMA_IN_ARRAY=it,works", "HOME=/root"],},
-                "instruction_pointer": "b774dcf9",
-                "pid": 680,
-                "process_name": "python",
-                "raw": 'Mon Jun 19 16:58:31 2017.445170 python@b774dcf9[680] execve("/usr/bin/sh", ["sh", "-c", "/tmp/comma\\x2csh"], ["COMMA_IN_ARRAY=it\\x2cworks", "HOME=/root"]) = -2 (ENOENT)\n',
-                "return_value": "-2",
-                "status": "ENOENT",
-                "time": datetime.datetime(2017, 6, 19, 16, 58, 31, 445170),
-                "type": "apicall",
-            },
-            {
-                "api": "execve",
-                "arguments": {"p0": "/usr/bin/sh", "p1": ["sh", "-c", "/tmp/bracket]sh"], "p2": ["LANGUAGE=en_US:en", "HOME=/root"],},
-                "instruction_pointer": "b774dcf9",
-                "pid": 680,
-                "process_name": "python",
-                "raw": 'Mon Jun 19 16:58:31 2017.445170 python@b774dcf9[680] execve("/usr/bin/sh", ["sh", "-c", "/tmp/bracket\\x5dsh"], ["LANGUAGE=en_US:en", "HOME=/root"]) = -2 (ENOENT)\n',
-                "return_value": "-2",
-                "status": "ENOENT",
-                "time": datetime.datetime(2017, 6, 19, 16, 58, 31, 445170),
-                "type": "apicall",
-            },
-        ]
diff --git a/tests/test_strings.py b/tests/test_strings.py
new file mode 100644
index 00000000000..3de0d3aa19f
--- /dev/null
+++ b/tests/test_strings.py
@@ -0,0 +1,77 @@
+import unittest
+from unittest.mock import patch
+
+from lib.cuckoo.common.integrations.strings import extract_strings
+
+
+class TestExtractStrings(unittest.TestCase):
+    @patch("lib.cuckoo.common.integrations.strings.processing_cfg")
+    @patch("lib.cuckoo.common.integrations.strings.Path")
+    def test_extract_strings_from_file(self, mock_path, mock_cfg):
+        mock_cfg.strings.enabled = True
+        mock_cfg.strings.on_demand = False
+        mock_cfg.strings.nullterminated_only = False
+        mock_cfg.strings.minchars = 4
+
+        mock_path.return_value.exists.return_value = True
+        mock_path.return_value.read_bytes.return_value = b"test\x00string\x00data"
+
+        result = extract_strings(filepath="dummy_path")
+        self.assertIn("test", result)
+        self.assertIn("string", result)
+        self.assertIn("data", result)
+
+    @patch("lib.cuckoo.common.integrations.strings.processing_cfg")
+    def test_extract_strings_from_data(self, mock_cfg):
+        mock_cfg.strings.enabled = True
+        mock_cfg.strings.on_demand = False
+        mock_cfg.strings.nullterminated_only = False
+        mock_cfg.strings.minchars = 4
+
+        data = b"test\x00string\x00data"
+        result = extract_strings(data=data)
+        self.assertIn("test", result)
+        self.assertIn("string", result)
+        self.assertIn("data", result)
+
+    @patch("lib.cuckoo.common.integrations.strings.processing_cfg")
+    def test_extract_strings_with_dedup(self, mock_cfg):
+        mock_cfg.strings.enabled = True
+        mock_cfg.strings.on_demand = False
+        mock_cfg.strings.nullterminated_only = False
+        mock_cfg.strings.minchars = 4
+
+        data = b"test\x00test\x00data"
+        result = extract_strings(data=data, dedup=True)
+        self.assertEqual(len(result), 2)
+        self.assertIn("test", result)
+        self.assertIn("data", result)
+
+    @patch("lib.cuckoo.common.integrations.strings.processing_cfg")
+    def test_extract_strings_with_minchars(self, mock_cfg):
+        mock_cfg.strings.enabled = True
+        mock_cfg.strings.on_demand = False
+        mock_cfg.strings.nullterminated_only = False
+        mock_cfg.strings.minchars = 6
+
+        data = b"test\x00string\x00data"
+        result = extract_strings(data=data)
+        self.assertNotIn("test", result)
+        self.assertIn("string", result)
+        self.assertNotIn("data", result)
+
+    @patch("lib.cuckoo.common.integrations.strings.processing_cfg")
+    def test_extract_strings_nullterminated_only(self, mock_cfg):
+        mock_cfg.strings.enabled = True
+        mock_cfg.strings.on_demand = False
+        mock_cfg.strings.nullterminated_only = True
+        mock_cfg.strings.minchars = 4
+
+        data = b"test\x00string\x00data\x00"
+        result = extract_strings(data=data)
+        self.assertIn("test", result)
+        self.assertIn("string", result)
+        self.assertIn("data", result)
+
+if __name__ == "__main__":
+    unittest.main()
diff --git a/tests/test_suricata_naming.py b/tests/test_suricata_naming.py
index 65350cd4b97..9bf1175b32b 100644
--- a/tests/test_suricata_naming.py
+++ b/tests/test_suricata_naming.py
@@ -1,59 +1,67 @@
-from __future__ import absolute_import
-from __future__ import print_function
-import os, sys
+import os
+import sys
 
-if sys.version_info[:2] < (3, 5):
-    sys.exit("You are running an incompatible version of Python, please use >= 3.5")
+if sys.version_info[:2] < (3, 8):
+    sys.exit("You are running an incompatible version of Python, please use >= 3.8")
 
 CUCKOO_ROOT = os.path.join(os.path.abspath(os.path.dirname(__file__)), "..")
 sys.path.append(CUCKOO_ROOT)
 
-from lib.cuckoo.core.plugins import get_suricata_family
+from lib.cuckoo.common.suricata_detection import get_suricata_family
 
-assert "Sharik" == get_suricata_family("ET MALWARE Sharik/Smoke CnC Beacon 11")
-assert "Revenge-Rat" == get_suricata_family("ETPRO TROJAN MSIL/Revenge-RAT CnC Checkin")
-assert "Predator" == get_suricata_family("ETPRO TROJAN Win32/Predator The Thief Initial CnC Checkin")
-assert "Medusahttp" == get_suricata_family("ET TROJAN MedusaHTTP Variant CnC Checkin M2")
-assert False is get_suricata_family("ETPRO TROJAN Virus.Win32.Lamer.bd checkin")
-assert False is get_suricata_family("ETPRO TROJAN Custom Cobalt Strike Beacon UA")
-assert False is get_suricata_family("ET TROJAN Unit42 PoisonIvy Keepalive to CnC")
-assert False is get_suricata_family("ET TROJAN Hacking Team Implant Exfiltration")
-assert False is get_suricata_family("ET MALWARE User Agent (TEST) - Likely Webhancer Related Spyware")
-assert False is get_suricata_family("ET MALWARE Media Pass ActiveX Install")
-assert False is get_suricata_family("ETPRO TROJAN Google Docs Phishing Landing Dec 18 2016")
-assert False is get_suricata_family("ETPRO TROJAN PowerShell Downloader CnC Checkin")
-assert False is get_suricata_family("ET TROJAN Self-Signed Cert Observed in Various Zbot Strains")
-assert False is get_suricata_family("ETPRO TROJAN Multi Locker CnC Beacon 1")
-assert False is get_suricata_family("ETPRO TROJAN MSIL/Agent.SNQ POST with System Info")
-assert False is get_suricata_family("ET TROJAN WScript/VBScript XMLHTTP downloader likely malicious get?src=")
-assert False is get_suricata_family("ET TROJAN Fileless infection dropped by EK CnC Beacon")
-assert "Raccoon" == get_suricata_family("ETPRO TROJAN Win32.Raccoon Stealer Checkin")
-assert "Vidar" == get_suricata_family("ETPRO TROJAN Vidar/Arkei/Megumin Stealer HTTP POST Pattern")
-assert False is get_suricata_family("ETPRO TROJAN Win32/VBInject.T User-Agent ([Mozilla Firefox Cool])")
-assert False is get_suricata_family("ETPRO TROJAN F-AV CnC Host Checkin")
-assert False is get_suricata_family("ETPRO TROJAN MSIL/Agent.SNQ POST with System Info")
-assert False is get_suricata_family("ET TROJAN WScript/VBScript XMLHTTP downloader likely malicious get?src=")
-assert False is get_suricata_family("ET TROJAN Fileless infection dropped by EK CnC Beacon")
-assert False is get_suricata_family("ETPRO TROJAN Win32/VBInject.T User-Agent ([Mozilla Firefox Cool])")
-assert False is get_suricata_family("ETPRO TROJAN F-AV CnC Host Checkin")
-assert "Malex" == get_suricata_family("ETPRO TROJAN Win32/Malex.gen!E Checkin")
-assert False is get_suricata_family("ET TROJAN Win32-Dynamer.dtc Reporting")
-assert False is get_suricata_family("ETPRO TROJAN Perfect Keyloger sending stolen data")
-assert False is get_suricata_family("ETPRO TROJAN Trojan.Win32.KillProc.dfwkin DNS TXT Checkin Response")
-assert False is get_suricata_family("ETPRO TROJAN Trojan-PSW.Win32.KeyLogger.j CnC Beacon")
-assert False is get_suricata_family("ETPRO TROJAN FakeAV-BT Checkin")
-assert False is get_suricata_family("ETPRO TROJAN W32.Fakeoff Checkin")
-assert False is get_suricata_family("ETPRO TROJAN MSIL/Owned Bot CnC Checkin")
-assert False is get_suricata_family("ETPRO TROJAN Win-Python-Backdoor Config Inbound")
-assert False is get_suricata_family("ETPRO TROJAN VBS/Susp.Enumerator Script Inbound")
-assert "Crazycrypt" == get_suricata_family("ETPRO TROJAN CrazyCrypt Ransomware CnC Activity")
-assert "Virut" == get_suricata_family("ET TROJAN Win32.Virut - GET")
-assert False is get_suricata_family("ET TROJAN Trojan.FakeMS Checkin")
-assert False is get_suricata_family("ET TROJAN iOS/WireLurker CnC Beacon")
-assert False is get_suricata_family("ETPRO TROJAN Mal/Banker-EV CnC Beacon")
-assert False is get_suricata_family("ETPRO TROJAN Win32.Agent-AOCW Downloading a3x file")
-assert "Carbanak" == get_suricata_family("ETPRO TROJAN Carbanak/FIN7 Bateleur SSL Certificate Detected")
-assert False is get_suricata_family("ETPRO TROJAN W97M.Dropper Downloading EXE")
-assert False is get_suricata_family("ET MALWARE ABX Toolbar ActiveX Install")
-assert "Tinba" == get_suricata_family("ET MALWARE [PTsecurity] Tinba Checkin 4")
-assert False is get_suricata_family("ET TROJAN Suspicious User-Agent (WindowsNT) With No Separating Space")
+
+def test_suricata_naming():
+    assert "Sharik" == get_suricata_family("ET MALWARE Sharik/Smoke CnC Beacon 11")
+    assert "Revenge-RAT" == get_suricata_family("ETPRO TROJAN MSIL/Revenge-RAT CnC Checkin")
+    assert "Predator" == get_suricata_family("ETPRO TROJAN Win32/Predator The Thief Initial CnC Checkin")
+    assert "MedusaHTTP" == get_suricata_family("ET TROJAN MedusaHTTP Variant CnC Checkin M2")
+    assert False is get_suricata_family("ETPRO TROJAN Virus.Win32.Lamer.bd checkin")
+    assert False is get_suricata_family("ETPRO TROJAN Custom Cobalt Strike Beacon UA")
+    assert False is get_suricata_family("ET TROJAN Unit42 PoisonIvy Keepalive to CnC")
+    assert False is get_suricata_family("ET TROJAN Hacking Team Implant Exfiltration")
+    assert False is get_suricata_family("ET MALWARE User Agent (TEST) - Likely Webhancer Related Spyware")
+    assert False is get_suricata_family("ET MALWARE Media Pass ActiveX Install")
+    assert False is get_suricata_family("ETPRO TROJAN Google Docs Phishing Landing Dec 18 2016")
+    assert False is get_suricata_family("ETPRO TROJAN PowerShell Downloader CnC Checkin")
+    assert False is get_suricata_family("ET TROJAN Self-Signed Cert Observed in Various Zbot Strains")
+    assert False is get_suricata_family("ETPRO TROJAN Multi Locker CnC Beacon 1")
+    assert False is get_suricata_family("ETPRO TROJAN MSIL/Agent.SNQ POST with System Info")
+    assert False is get_suricata_family("ET TROJAN WScript/VBScript XMLHTTP downloader likely malicious get?src=")
+    assert False is get_suricata_family("ET TROJAN Fileless infection dropped by EK CnC Beacon")
+    assert "Raccoon" == get_suricata_family("ETPRO TROJAN Win32.Raccoon Stealer Checkin")
+    assert "Vidar" == get_suricata_family("ETPRO TROJAN Vidar/Arkei/Megumin Stealer HTTP POST Pattern")
+    assert False is get_suricata_family("ETPRO TROJAN Win32/VBInject.T User-Agent ([Mozilla Firefox Cool])")
+    assert False is get_suricata_family("ETPRO TROJAN F-AV CnC Host Checkin")
+    assert False is get_suricata_family("ETPRO TROJAN MSIL/Agent.SNQ POST with System Info")
+    assert False is get_suricata_family("ET TROJAN WScript/VBScript XMLHTTP downloader likely malicious get?src=")
+    assert False is get_suricata_family("ET TROJAN Fileless infection dropped by EK CnC Beacon")
+    assert False is get_suricata_family("ETPRO TROJAN Win32/VBInject.T User-Agent ([Mozilla Firefox Cool])")
+    assert False is get_suricata_family("ETPRO TROJAN F-AV CnC Host Checkin")
+    assert "Malex" == get_suricata_family("ETPRO TROJAN Win32/Malex.gen!E Checkin")
+    assert False is get_suricata_family("ET TROJAN Win32-Dynamer.dtc Reporting")
+    assert False is get_suricata_family("ETPRO TROJAN Perfect Keyloger sending stolen data")
+    assert False is get_suricata_family("ETPRO TROJAN Trojan.Win32.KillProc.dfwkin DNS TXT Checkin Response")
+    assert False is get_suricata_family("ETPRO TROJAN Trojan-PSW.Win32.KeyLogger.j CnC Beacon")
+    assert False is get_suricata_family("ETPRO TROJAN FakeAV-BT Checkin")
+    assert False is get_suricata_family("ETPRO TROJAN W32.Fakeoff Checkin")
+    assert False is get_suricata_family("ETPRO TROJAN MSIL/Owned Bot CnC Checkin")
+    assert False is get_suricata_family("ETPRO TROJAN Win-Python-Backdoor Config Inbound")
+    assert False is get_suricata_family("ETPRO TROJAN VBS/Susp.Enumerator Script Inbound")
+    assert "CrazyCrypt" == get_suricata_family("ETPRO TROJAN CrazyCrypt Ransomware CnC Activity")
+    assert "Virut" == get_suricata_family("ET TROJAN Win32.Virut - GET")
+    assert False is get_suricata_family("ET TROJAN Trojan.FakeMS Checkin")
+    assert False is get_suricata_family("ET TROJAN iOS/WireLurker CnC Beacon")
+    assert False is get_suricata_family("ETPRO TROJAN Mal/Banker-EV CnC Beacon")
+    assert False is get_suricata_family("ETPRO TROJAN Win32.Agent-AOCW Downloading a3x file")
+    assert "Carbanak" == get_suricata_family("ETPRO TROJAN Carbanak/FIN7 Bateleur SSL Certificate Detected")
+    assert False is get_suricata_family("ETPRO TROJAN W97M.Dropper Downloading EXE")
+    assert False is get_suricata_family("ET MALWARE ABX Toolbar ActiveX Install")
+    assert "Tinba" == get_suricata_family("ET MALWARE [PTsecurity] Tinba Checkin 4")
+    assert False is get_suricata_family("ET TROJAN Suspicious User-Agent (WindowsNT) With No Separating Space")
+    assert "Photoloader" == get_suricata_family("ET MALWARE W32/Photoloader.Downloader Request Cookie")
+    assert "pcrat" == get_suricata_family("ET MALWARE Backdoor family PCRat/Gh0st CnC traffic")
+    assert "Stealc" == get_suricata_family("ET MALWARE [SEKOIA.IO] Win32/Stealc C2 Check-in")
+
+
+if __name__ == "__main__":
+    print("Suricata detects as:", get_suricata_family(sys.argv[1]))
diff --git a/tests/test_tls_utils.py b/tests/test_tls_utils.py
new file mode 100644
index 00000000000..c0e2d5f48c4
--- /dev/null
+++ b/tests/test_tls_utils.py
@@ -0,0 +1,44 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+import unittest.mock as mock
+
+from utils.tls import TLS12KeyLog, tlslog_to_sslkeylogfile
+
+TLSDUMP_LOGS = [
+    "client_random: 66d85f5e14959be90acdf46867ac60b1380a7c0fd4b0e8f18f66438d7840f0bb, server_random: 66d85f6626997dd836d354b522bab8426a6b9ee3daac68467d9d8f1fcdea07c0, master_secret: 70384eb96e90d023e3cc117d9f0f5b703b5cbb88897783e08286656aa40444ab1433c850bf556737d2c09b2d4c67094d"
+]
+SSLKEYLOGS = [
+    "CLIENT_RANDOM 66d85f5e14959be90acdf46867ac60b1380a7c0fd4b0e8f18f66438d7840f0bb 70384eb96e90d023e3cc117d9f0f5b703b5cbb88897783e08286656aa40444ab1433c850bf556737d2c09b2d4c67094d"
+]
+
+
+class TestTlsUtils:
+    def test_tlslog_to_sslkeylogfile(self, tmpdir):
+        input_log = f"{tmpdir}/tlsdump.log"
+        dest_log = f"{tmpdir}/sslkeys.log"
+        with open(input_log, "w+") as tlsdump_log:
+            tlsdump_log.writelines(TLSDUMP_LOGS)
+        tlslog_to_sslkeylogfile(input_log, dest_log)
+        with open(dest_log, "r") as sslkeylogfile:
+            actual = sslkeylogfile.read().strip()
+        assert actual == SSLKEYLOGS[0]
+
+    @mock.patch("builtins.open")
+    def test_tlslog_to_sslkeylogfile_path_not_exist(self, mock_open, tmpdir):
+        mock_open.side_effect = mock.mock_open
+        input_log = f"{tmpdir}/tlsdump.log"
+        dest_log = f"{tmpdir}/sslkeys.log"
+        tlslog_to_sslkeylogfile(input_log, dest_log)
+        mock_open.assert_not_called()
+
+    def test_tls12keylog_from_cape_log(self):
+        actual = TLS12KeyLog.from_cape_log(TLSDUMP_LOGS[0])
+        assert actual.client_random == "66d85f5e14959be90acdf46867ac60b1380a7c0fd4b0e8f18f66438d7840f0bb"
+        assert actual.server_random == "66d85f6626997dd836d354b522bab8426a6b9ee3daac68467d9d8f1fcdea07c0"
+        assert (
+            actual.master_secret
+            == "70384eb96e90d023e3cc117d9f0f5b703b5cbb88897783e08286656aa40444ab1433c850bf556737d2c09b2d4c67094d"
+        )
+        assert str(actual) == SSLKEYLOGS[0]
diff --git a/tests/test_utils.py b/tests/test_utils.py
new file mode 100644
index 00000000000..fd6b8aa387e
--- /dev/null
+++ b/tests/test_utils.py
@@ -0,0 +1,243 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+import os
+from tcr_misc import random_string
+
+from unittest import mock
+import pytest
+from lib.cuckoo.common.exceptions import CuckooOperationalError
+from lib.cuckoo.common.path_utils import path_mkdir
+from lib.cuckoo.common import utils
+
+
+
+def test_get_memdump_path(mocker):
+    ret_path = utils.get_memdump_path(memdump_id=123)
+    assert ret_path.rsplit("/", 4)[-4:] == "storage/analyses/123/memory.dmp".split("/")
+
+
+class TestValidateReferrer:
+    def test_validate_referrer(self):
+        assert utils.validate_referrer(url="http://foo.example.com:1337/bar") == "http://foo.example.com:1337/bar"
+
+    def test_validate_referrer_bad_url(self):
+        assert utils.validate_referrer(url="irc://foo.example.com:1337") is None
+
+    def test_validate_referrer_no_url(self):
+        assert utils.validate_referrer(url=None) is None
+
+
+@pytest.fixture
+def rnd_tmp_folder():
+    random_file_name = random_string()
+    yield random_file_name
+    try:
+        os.rmdir("/tmp/" + random_file_name)
+    except Exception as e:
+        print(("Error cleaning up, probably fine:" + str(e)))
+
+
+class TestFileOps:
+    def test_create_folders_no_folders(self):
+        utils.create_folders(root="foo")
+
+    def test_create_folder_default(self):
+        with pytest.raises(CuckooOperationalError):
+            utils.create_folder()
+
+    """
+    def test_create_folder(self, rnd_tmp_folder):
+        utils.create_folder(root="/tmp", folder=rnd_tmp_folder)
+        assert test_create_folder_err("/tmp/" + rnd_tmp_folder) is True
+    """
+
+    def test_create_folder_err(self, rnd_tmp_folder, mocker):
+        mocker.patch("pathlib.Path.mkdir", side_effect=OSError)
+        with pytest.raises(CuckooOperationalError):
+            utils.create_folder(root="/tmp", folder=rnd_tmp_folder)
+
+    def test_delete_folder(self, rnd_tmp_folder):
+        folder = "/tmp/" + rnd_tmp_folder
+        path_mkdir(folder)
+        utils.delete_folder(folder)
+
+    def test_delete_folder_err(self, rnd_tmp_folder, mocker):
+        folder = "/tmp/" + rnd_tmp_folder
+        path_mkdir(folder)
+        mocker.patch("shutil.rmtree", side_effect=OSError)
+        with pytest.raises(CuckooOperationalError):
+            utils.delete_folder(folder)
+
+
+class TestConvertChar:
+    def test_utf(self):
+        assert "\\xe9", utils.convert_char("\xe9")
+
+    def test_digit(self):
+        assert "9" == utils.convert_char("9")
+
+    def test_literal(self):
+        assert "e" == utils.convert_char("e")
+
+    def test_punctation(self):
+        assert "." == utils.convert_char(".")
+
+    def test_whitespace(self):
+        assert " " == utils.convert_char(" ")
+
+
+class TestConvertToPrintable:
+    def test_utf(self):
+        assert "\\xe9" == utils.convert_to_printable("\xe9")
+
+    def test_digit(self):
+        assert "9" == utils.convert_to_printable("9")
+
+    def test_literal(self):
+        assert "e" == utils.convert_to_printable("e")
+
+    def test_punctation(self):
+        assert "." == utils.convert_to_printable(".")
+
+    def test_whitespace(self):
+        assert " " == utils.convert_to_printable(" ")
+
+    def test_non_printable(self):
+        assert r"\x0b" == utils.convert_to_printable(chr(11))
+
+
+class TestIsPrintable:
+    def test_utf(self):
+        assert not utils.is_printable("\xe9")
+
+    def test_digit(self):
+        assert utils.is_printable("9")
+
+    def test_literal(self):
+        assert utils.is_printable("e")
+
+    def test_punctation(self):
+        assert utils.is_printable(".")
+
+    def test_whitespace(self):
+        assert utils.is_printable(" ")
+
+    def test_non_printable(self):
+        assert not utils.is_printable(chr(11))
+
+
+class TestConvertFilenameChar:
+    def test_convert_filename_char(self):
+        assert utils.convert_filename_char("\u00A3") == "\\xa3"
+
+    def test_convert_filename_char_allowed(self):
+        assert utils.convert_filename_char("!") == "!"
+
+
+class TestIsSaneFilename:
+    def test_is_sane_filename(self):
+        assert utils.is_sane_filename("abc") is True
+
+    def test_is_sane_filename_not(self):
+        assert utils.is_sane_filename("\n") is False
+
+
+class TestSanitizePathname:
+    def test_sanitize_pathname(self):
+        assert utils.sanitize_pathname("abc") == "abc"
+
+    def test_sanitize_pathname_not(self):
+        assert utils.sanitize_pathname("\nabc") == "\\x0aabc"
+
+
+class TestPrettyPrintRetval:
+    def test_pretty_print_retval_no_lookup(self):
+        assert utils.pretty_print_retval(status=False, retval="0") is None
+
+    def test_pretty_print_retval(self):
+        assert utils.pretty_print_retval(status=False, retval="0xc0000139") == "ENTRYPOINT_NOT_FOUND"
+
+    def test_pretty_print_retval_err(self):
+        assert utils.pretty_print_retval(status=False, retval="-") is None
+
+    def test_pretty_print_retval_true_status(self):
+        assert utils.pretty_print_retval(status=True, retval="0") is None
+
+
+@pytest.mark.skip
+def test_is_safelisted_domain():
+    from lib.cuckoo.common.safelist import is_safelisted_domain
+    assert is_safelisted_domain("java.com") is True
+    assert is_safelisted_domain("java2.com") is False
+    assert is_safelisted_domain("crl.microsoft.com") is True
+
+
+    @pytest.fixture
+    def mock_config(mocker):
+        mock_config = mocker.patch("lib.cuckoo.common.utils.config")
+        mock_config.cuckoo.get.return_value = b"/tmp"
+        return mock_config
+
+    @pytest.fixture
+    def mock_path_exists(mocker):
+        return mocker.patch("lib.cuckoo.common.utils.path_exists", return_value=False)
+
+    @pytest.fixture
+    def mock_path_mkdir(mocker):
+        return mocker.patch("lib.cuckoo.common.utils.path_mkdir")
+
+    @pytest.fixture
+    def mock_tempfile(mocker):
+        return mocker.patch("lib.cuckoo.common.utils.tempfile.mkdtemp", return_value="/tmp/cuckoo-tmp/upload_1234")
+
+    @pytest.fixture
+    def mock_open(mocker):
+        return mocker.patch("builtins.open", mock.mock_open())
+
+    def test_store_temp_file_bytes(mock_config, mock_path_exists, mock_path_mkdir, mock_tempfile, mock_open):
+        filedata = b"test data"
+        filename = "testfile.txt"
+        result = utils.store_temp_file(filedata, filename)
+        assert result == b"/tmp/cuckoo-tmp/upload_1234/testfile.txt"
+        mock_open.assert_called_once_with(b"/tmp/cuckoo-tmp/upload_1234/testfile.txt", "wb")
+        mock_open().write.assert_called_once_with(filedata)
+
+    def test_store_temp_file_filelike(mock_config, mock_path_exists, mock_path_mkdir, mock_tempfile, mock_open):
+        filedata = mock.Mock()
+        filedata.read.side_effect = [b"chunk1", b"chunk2", b""]
+        filename = "testfile.txt"
+        result = utils.store_temp_file(filedata, filename)
+        assert result == b"/tmp/cuckoo-tmp/upload_1234/testfile.txt"
+        mock_open.assert_called_once_with(b"/tmp/cuckoo-tmp/upload_1234/testfile.txt", "wb")
+        mock_open().write.assert_has_calls([mock.call(b"chunk1"), mock.call(b"chunk2")])
+
+    def test_store_temp_file_with_path(mock_config, mock_path_exists, mock_path_mkdir, mock_tempfile, mock_open):
+        filedata = b"test data"
+        filename = "testfile.txt"
+        path = b"/custom/path"
+        result = utils.store_temp_file(filedata, filename, path)
+        assert result == b"/custom/path/upload_1234/testfile.txt"
+        mock_open.assert_called_once_with(b"/custom/path/upload_1234/testfile.txt", "wb")
+        mock_open().write.assert_called_once_with(filedata)
+
+    def test_store_temp_file_path_exists(mock_config, mocker, mock_tempfile, mock_open):
+        mock_path_exists = mocker.patch("lib.cuckoo.common.utils.path_exists", return_value=True)
+        filedata = b"test data"
+        filename = "testfile.txt"
+        result = utils.store_temp_file(filedata, filename)
+        assert result == b"/tmp/cuckoo-tmp/upload_1234/testfile.txt"
+        mock_open.assert_called_once_with(b"/tmp/cuckoo-tmp/upload_1234/testfile.txt", "wb")
+        mock_open().write.assert_called_once_with(filedata)
+        mock_path_exists.assert_called_once_with("/tmp/cuckoo-tmp")
+
+    def test_store_temp_file_path_mkdir_error(mock_config, mocker, mock_tempfile):
+        # mock_path_exists = mocker.patch("lib.cuckoo.common.utils.path_exists", return_value=False)
+        mock_path_mkdir = mocker.patch("lib.cuckoo.common.utils.path_mkdir", side_effect=OSError)
+        filedata = b"test data"
+        filename = "testfile.txt"
+        with pytest.raises(CuckooOperationalError):
+            utils.store_temp_file(filedata, filename)
+        mock_path_mkdir.assert_called_once_with("/tmp/cuckoo-tmp")
+
diff --git a/tests/test_utils_pretty_print_funcs.py b/tests/test_utils_pretty_print_funcs.py
new file mode 100644
index 00000000000..b0af58a5326
--- /dev/null
+++ b/tests/test_utils_pretty_print_funcs.py
@@ -0,0 +1,177 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+import os
+import random
+
+from lib.cuckoo.common import utils_pretty_print_funcs as pp_fn
+from lib.cuckoo.common.path_utils import path_delete
+
+random.seed(1338)
+
+
+def gen_data_file():
+    with open("CAPEv2/tests/utils_pretty_print_funcs_data.py", "a") as f:
+        f.write("# fmt: off")
+
+    gen_rnd_data(pp_fn.api_name_ntcreatesection_arg_name_desiredaccess, 0x20, 0xF001F)
+    gen_rnd_data(pp_fn.api_name_shgetfolderpathw_arg_name_folder, 0x800, 0x8000)
+    gen_rnd_data(pp_fn.api_name_createtoolhelp32snapshot_arg_name_flags, 0, 0x10)
+    gen_rnd_data(pp_fn.blobtype, 0x0001, 0x000C)
+    gen_rnd_data(pp_fn.algid, 0x0001, 0x2000)
+    gen_rnd_data(pp_fn.hookidentifer, 0, 14)
+    gen_rnd_data(pp_fn.infolevel, 0, 21)
+    gen_rnd_data(pp_fn.disposition, 1, 2)
+    gen_rnd_data(pp_fn.createdisposition, 0, 5)
+    gen_rnd_data(pp_fn.shareaccess, 1, 5)
+    gen_rnd_data(pp_fn.systeminformationclass, 0, 5)
+    gen_rnd_data(pp_fn.category_registry_arg_name_type, 0, 11)
+    gen_rnd_data(pp_fn.api_name_opensc_arg_name_desiredaccess, 0x0001, 0x0020)
+    gen_rnd_data(pp_fn.category_services_arg_name_controlcode, 1, 10)
+    gen_rnd_data(pp_fn.category_services_arg_name_errorcontrol, 0, 3)
+    gen_rnd_data(pp_fn.category_services_arg_name_starttype, 0, 4)
+    gen_rnd_data(pp_fn.category_services_arg_name_servicetype, 130, 131)
+    gen_rnd_data(pp_fn.category_services_arg_name_desiredaccess, 0x0001, 0x0100)
+    gen_rnd_data(pp_fn.category_registry_arg_name_access_desired_access, 0x0001, 0x100)
+    gen_rnd_data(pp_fn.arg_name_protection_and_others, 0x00000001, 0x00000400)
+    gen_rnd_data(pp_fn.arg_name_iocontrolcode, 0x00000001, 0x00080000)
+    gen_rnd_data(pp_fn.api_name_in_creation, 0x00000001, 0x04000000)
+    gen_rnd_data(pp_fn.api_name_move_arg_name_flags, 0x00000001, 0x00000008)
+    gen_rnd_data(pp_fn.arg_name_fileattributes, 0x00000001, 0x00008000)
+    gen_rnd_data(pp_fn.api_name_nt_arg_name_desiredaccess, 2000000, 40000000)
+    gen_rnd_data(pp_fn.api_name_ntopenprocess_arg_name_desiredaccess, 0x0001, 0x80000000)
+    gen_rnd_data(pp_fn.api_name_ntopenthread_arg_name_desiredaccess, 0x0001, 0x1FFFFF)
+    gen_rnd_data(pp_fn.api_name_cointernet_arg_name_featureentry, 0, 6)
+    gen_rnd_data(pp_fn.api_name_cointernet_arg_name_flags, 0x00000001, 0x00000080)
+    gen_rnd_data(pp_fn.api_name_socket, 0, 113, arg_name="protocol")
+    gen_rnd_data(pp_fn.api_name_internetsetoptiona_arg_name_option, 1, 105)
+    gen_rnd_data(pp_fn.arg_name_fileinformationclass, 1, 56)
+    gen_rnd_data(pp_fn.arg_name_processinformationclass, 0, 34)
+    gen_rnd_data(pp_fn.arg_name_threadinformationclass, 0, 17)
+    gen_rnd_data(pp_fn.arg_name_memtype, 20000, 20001)
+    gen_rnd_data(pp_fn.arg_name_show, 0, 11)
+    gen_rnd_data(pp_fn.arg_name_registry, 80000000, 80000003)
+
+
+def gen_rnd_data(func, lower, upper, arg_name=None):
+    def print_def():
+        with open("CAPEv2/tests/utils_pretty_print_funcs_data.py", "a") as f:
+            f.write("\ndef " + func.__name__ + "_data():\n    return [\n")
+
+    def print_line():
+        with open("CAPEv2/tests/utils_pretty_print_funcs_data.py", "a") as f:
+            f.write('        ("' + str(i) + '", "' + val + '"),\n')
+
+    def print_end():
+        with open("CAPEv2/tests/utils_pretty_print_funcs_data.py", "a") as f:
+            f.write("    ]\n\n")
+
+    print_def()
+
+    sample_range = (upper - lower) / 100
+    if sample_range > 2000:
+        sample_range_list = range(lower, lower + 2000)
+    else:
+        sample_range_list = range(lower, upper)
+
+    for i in sample_range_list:
+        if sample_range > 2000:
+            # choose a number within the range if we're too big
+            i = random.randint(lower, upper)
+        if arg_name:
+            val = func(str(i), arg_name)
+        else:
+            val = func(str(i))
+        if val:
+            print_line()
+
+    print_end()
+
+
+if not os.environ.get("GEN_DATA"):
+    import utils_pretty_print_funcs_data as data
+else:
+    try:
+        path_delete("CAPEv2/tests/utils_pretty_print_funcs_data.py")
+    except Exception as e:
+        print(("Error in cleanup: " + str(e)))
+    gen_data_file()
+
+
+def test_calls():
+    if not os.environ.get("GEN_DATA"):
+        for val, ret in data.api_name_ntcreatesection_arg_name_desiredaccess_data():
+            assert pp_fn.api_name_ntcreatesection_arg_name_desiredaccess(val) == ret
+        for val, ret in data.api_name_shgetfolderpathw_arg_name_folder_data():
+            assert pp_fn.api_name_shgetfolderpathw_arg_name_folder(val) == ret
+        for val, ret in data.api_name_createtoolhelp32snapshot_arg_name_flags_data():
+            assert pp_fn.api_name_createtoolhelp32snapshot_arg_name_flags(val) == ret
+        for val, ret in data.blobtype_data():
+            assert pp_fn.blobtype(val) == ret
+        for val, ret in data.algid_data():
+            assert pp_fn.algid(val) == ret
+        for val, ret in data.hookidentifer_data():
+            assert pp_fn.hookidentifer(val) == ret
+        for val, ret in data.infolevel_data():
+            assert pp_fn.infolevel(val) == ret
+        for val, ret in data.disposition_data():
+            assert pp_fn.disposition(val) == ret
+        for val, ret in data.createdisposition_data():
+            assert pp_fn.createdisposition(val) == ret
+        for val, ret in data.shareaccess_data():
+            assert pp_fn.shareaccess(val) == ret
+        for val, ret in data.systeminformationclass_data():
+            assert pp_fn.systeminformationclass(val) == ret
+        for val, ret in data.category_registry_arg_name_type_data():
+            assert pp_fn.category_registry_arg_name_type(val) == ret
+        for val, ret in data.api_name_opensc_arg_name_desiredaccess_data():
+            assert pp_fn.api_name_opensc_arg_name_desiredaccess(val) == ret
+        for val, ret in data.category_services_arg_name_controlcode_data():
+            assert pp_fn.category_services_arg_name_controlcode(val) == ret
+        for val, ret in data.category_services_arg_name_errorcontrol_data():
+            assert pp_fn.category_services_arg_name_errorcontrol(val) == ret
+        for val, ret in data.category_services_arg_name_starttype_data():
+            assert pp_fn.category_services_arg_name_starttype(val) == ret
+        for val, ret in data.category_services_arg_name_servicetype_data():
+            assert pp_fn.category_services_arg_name_servicetype(val) == ret
+        for val, ret in data.category_services_arg_name_desiredaccess_data():
+            assert pp_fn.category_services_arg_name_desiredaccess(val) == ret
+        for val, ret in data.category_registry_arg_name_access_desired_access_data():
+            assert pp_fn.category_registry_arg_name_access_desired_access(val) == ret
+        for val, ret in data.arg_name_protection_and_others_data():
+            assert pp_fn.arg_name_protection_and_others(val) == ret
+        for val, ret in data.arg_name_iocontrolcode_data():
+            assert pp_fn.arg_name_iocontrolcode(val) == ret
+        for val, ret in data.api_name_in_creation_data():
+            assert pp_fn.api_name_in_creation(val) == ret
+        for val, ret in data.api_name_move_arg_name_flags_data():
+            assert pp_fn.api_name_move_arg_name_flags(val) == ret
+        for val, ret in data.arg_name_fileattributes_data():
+            assert pp_fn.arg_name_fileattributes(val) == ret
+        for val, ret in data.api_name_nt_arg_name_desiredaccess_data():
+            assert pp_fn.api_name_nt_arg_name_desiredaccess(val) == ret
+        for val, ret in data.api_name_ntopenprocess_arg_name_desiredaccess_data():
+            assert pp_fn.api_name_ntopenprocess_arg_name_desiredaccess(val) == ret
+        for val, ret in data.api_name_ntopenthread_arg_name_desiredaccess_data():
+            assert pp_fn.api_name_ntopenthread_arg_name_desiredaccess(val) == ret
+        for val, ret in data.api_name_cointernet_arg_name_featureentry_data():
+            assert pp_fn.api_name_cointernet_arg_name_featureentry(val) == ret
+        for val, ret in data.api_name_cointernet_arg_name_flags_data():
+            assert pp_fn.api_name_cointernet_arg_name_flags(val) == ret
+        # for val, ret in data.api_name_socket_data():
+        #     assert pp_fn.api_name_socket(arg_val=val, arg_name="process") == ret
+        for val, ret in data.api_name_internetsetoptiona_arg_name_option_data():
+            assert pp_fn.api_name_internetsetoptiona_arg_name_option(val) == ret
+        for val, ret in data.arg_name_fileinformationclass_data():
+            assert pp_fn.arg_name_fileinformationclass(val) == ret
+        for val, ret in data.arg_name_processinformationclass_data():
+            assert pp_fn.arg_name_processinformationclass(val) == ret
+        for val, ret in data.arg_name_threadinformationclass_data():
+            assert pp_fn.arg_name_threadinformationclass(val) == ret
+        for val, ret in data.arg_name_memtype_data():
+            assert pp_fn.arg_name_memtype(val) == ret
+        for val, ret in data.arg_name_show_data():
+            assert pp_fn.arg_name_show(val) == ret
+        for val, ret in data.arg_name_registry_data():
+            assert pp_fn.arg_name_registry(val) == ret
diff --git a/tests/test_web_utils.py b/tests/test_web_utils.py
new file mode 100644
index 00000000000..b0a093da6f3
--- /dev/null
+++ b/tests/test_web_utils.py
@@ -0,0 +1,97 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+import tempfile
+import unittest
+
+import httpretty
+import pytest
+
+from lib.cuckoo.common.path_utils import path_delete, path_write_file
+from lib.cuckoo.common.web_utils import (
+    _download_file,
+    force_int,
+    get_file_content,
+    parse_request_arguments,
+)
+
+
+@pytest.fixture
+def paths():
+    path_list = []
+    for i in range(3):
+        path_list += [tempfile.NamedTemporaryFile(delete=False).name]
+        _ = path_write_file(path_list[i], str(i + 10), mode="text")
+    yield path_list
+    try:
+        for i in path_list:
+            path_delete(i)
+    except Exception as e:
+        print(("Error cleaning up, probably fine:" + str(e)))
+
+
+@pytest.fixture
+def path():
+    onepath = tempfile.NamedTemporaryFile(delete=False)
+    _ = path_write_file(onepath.name, "1338", mode="text")
+    yield onepath.name
+    try:
+        path_delete(onepath.name)
+    except Exception as e:
+        print(("Error cleaning up, probably fine:" + str(e)))
+
+
+def test_get_file_content(paths):
+    assert get_file_content(paths) == b"10"
+
+
+def test_get_file_contents_path(path):
+    assert get_file_content(path) == b"1338"
+
+
+@httpretty.activate
+def test__download_file():
+    httpretty.register_uri(httpretty.GET, "http://mordor.eye/onering", body="frodo")
+    assert _download_file(route=None, url="http://mordor.eye/onering", options="dne_abc=123,dne_def=456") == b"frodo"
+
+
+@pytest.fixture
+def mock_request():
+    class MockReq:
+        POST = {"clock": "03-31-2021 14:24:36"}
+
+    yield MockReq()
+
+
+def test_parse_request_arguments(mock_request):
+    ret = parse_request_arguments(mock_request)
+
+    assert ret == (
+        "",
+        "",
+        0,
+        0,
+        "",
+        "",
+        "",
+        None,
+        "",
+        False,
+        "03-31-2021 14:24:36",
+        False,
+        False,
+        None,
+        None,
+        None,
+        "",
+        "",
+    )
+
+
+def test_force_int():
+    assert force_int(value="1") == 1
+    assert force_int(value="$") == 0
+
+
+if __name__ == "__main__":
+    unittest.main()
diff --git a/tests/test_yara.py b/tests/test_yara.py
new file mode 100644
index 00000000000..84818f92ad9
--- /dev/null
+++ b/tests/test_yara.py
@@ -0,0 +1,91 @@
+# import pytest
+
+import pathlib
+
+import pytest
+
+from lib.cuckoo.common.objects import File
+
+try:
+    import yara
+
+    HAVE_YARA = True
+except ImportError:
+    HAVE_YARA = False
+
+
+try:
+    import yara_x
+
+    HAVE_YARA_X = True
+except ImportError:
+    HAVE_YARA_X = False
+
+
+def test_yara_x():
+    if not HAVE_YARA_X:
+        return
+
+    rules = yara_x.compile(
+        """
+        rule test {
+            strings:
+            $a = "foobar"
+            condition:
+            $a
+        }"""
+    )
+
+    results = rules.scan(b"foobar")
+
+    assert results.matching_rules[0].identifier == "test"
+    assert results.matching_rules[0].patterns[0].identifier == "$a"
+    assert results.matching_rules[0].patterns[0].matches[0].offset == 0
+    assert results.matching_rules[0].patterns[0].matches[0].length == 6
+
+
+def test_yara():
+    if not HAVE_YARA:
+        return
+
+    rules = yara.compile(
+        source="""
+        rule Test {
+            strings:
+                $ = "aaaaa"
+                $ = "bbbbb"
+                $ = "ccccc"
+            condition:
+                any of them
+        }
+    """
+    )
+    # print("Yara version %s" % yara.__version__)
+    matches = rules.match(data="asdfklahjsdflkhjsd aaaaa dfgkhjadsfgjklsdfhgk")
+    assert isinstance(matches[0].strings[0], yara.StringMatch)
+
+    _ = yara.compile(source='import "dotnet" rule a { condition: false }')
+
+
+@pytest.mark.skipif(not (pathlib.Path(__file__).parent / "data" / "malware").exists(), reason="Required data file is not present")
+def test_get_yaras():
+    File.init_yara()
+    yara_matches = File("tests/data/malware/f8a6eddcec59934c42ea254cdd942fb62917b5898f71f0feeae6826ba4f3470d").get_yara(
+        category="CAPE"
+    )
+    assert yara_matches == [
+        {
+            "name": "BumbleBee",
+            "meta": {"author": "enzo & kevoreilly", "description": "BumbleBee Payload", "cape_type": "BumbleBee Payload"},
+            "strings": ["{ 84 C0 74 09 33 C9 FF 15 34 AF 15 00 CC 33 C9 E8 34 8E 12 00 48 8B C8 E8 }", "/gate"],
+            "addresses": {"antivm1": 34936, "str_gate": 1911968},
+        }
+    ]
+
+
+"""
+def test_yara_moduels():
+    if not HAVE_YARA:
+        return
+    assert sorted(yara.modules) == ["console", "cuckoo", "dotnet", "elf", "hash", "magic", "math", "pe", "string", "tests", "time"]
+"""
diff --git a/tests/utils_pretty_print_funcs_data.py b/tests/utils_pretty_print_funcs_data.py
new file mode 100644
index 00000000000..be15a4e3155
--- /dev/null
+++ b/tests/utils_pretty_print_funcs_data.py
@@ -0,0 +1,75623 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+# fmt: off
+def api_name_ntcreatesection_arg_name_desiredaccess_data():
+    return [
+        ("852374", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00802340"),
+        ("683046", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00603040"),
+        ("266423", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00206400"),
+        ("658851", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00608840"),
+        ("464602", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00404600"),
+        ("511952", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00501940"),
+        ("267242", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00207240"),
+        ("880075", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00800040"),
+        ("922998", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00902980"),
+        ("954499", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00904480"),
+        ("504172", "SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00504140"),
+        ("800131", "SECTION_QUERY|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00800100"),
+        ("12572", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00002540"),
+        ("685147", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00605140"),
+        ("121160", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00101140"),
+        ("935753", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00905740"),
+        ("231120", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00201100"),
+        ("117432", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00107400"),
+        ("899431", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00809400"),
+        ("930317", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00900300"),
+        ("756033", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00706000"),
+        ("431780", "STANDARD_RIGHTS_REQUIRED|0x00401780"),
+        ("518084", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00508080"),
+        ("416941", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00406940"),
+        ("360719", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00300700"),
+        ("440698", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00400680"),
+        ("245387", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00205380"),
+        ("336805", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00306800"),
+        ("31604", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00001600"),
+        ("322763", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00302740"),
+        ("295916", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00205900"),
+        ("633821", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE_EXPLICIT|0x00603800"),
+        ("300521", "SECTION_QUERY|SECTION_MAP_EXECUTE_EXPLICIT|0x00300500"),
+        ("895884", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00805880"),
+        ("283342", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00203340"),
+        ("819718", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00809700"),
+        ("75438", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00005400"),
+        ("936879", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00906840"),
+        ("453637", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00403600"),
+        ("823680", "STANDARD_RIGHTS_REQUIRED|0x00803680"),
+        ("751604", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00701600"),
+        ("579027", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00509000"),
+        ("22309", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00002300"),
+        ("49661", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE_EXPLICIT|0x00009640"),
+        ("493430", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00403400"),
+        ("962880", "STANDARD_RIGHTS_REQUIRED|0x00902880"),
+        ("549405", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00509400"),
+        ("754235", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00704200"),
+        ("492131", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00402100"),
+        ("162301", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00102300"),
+        ("584578", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00504540"),
+        ("868022", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00808000"),
+        ("494002", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00404000"),
+        ("788809", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00708800"),
+        ("292840", "STANDARD_RIGHTS_REQUIRED|0x00202840"),
+        ("457058", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00407040"),
+        ("682303", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00602300"),
+        ("319010", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00309000"),
+        ("652769", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00602740"),
+        ("574752", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00504740"),
+        ("147691", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00107680"),
+        ("113450", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00103440"),
+        ("27713", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00007700"),
+        ("904332", "SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00904300"),
+        ("806780", "0x00806780"),
+        ("366781", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00306780"),
+        ("812586", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00802580"),
+        ("575816", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00505800"),
+        ("919373", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00909340"),
+        ("410162", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00400140"),
+        ("375390", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00305380"),
+        ("641387", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00601380"),
+        ("563027", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00503000"),
+        ("254100", "STANDARD_RIGHTS_REQUIRED|0x00204100"),
+        ("59300", "STANDARD_RIGHTS_REQUIRED|0x00009300"),
+        ("404321", "SECTION_QUERY|SECTION_MAP_EXECUTE_EXPLICIT|0x00404300"),
+        ("340711", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00300700"),
+        ("523681", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00503680"),
+        ("873113", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00803100"),
+        ("953018", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00903000"),
+        ("431091", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00401080"),
+        ("381666", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00301640"),
+        ("382464", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00302440"),
+        ("771793", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00701780"),
+        ("311031", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00301000"),
+        ("81606", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00001600"),
+        ("687133", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00607100"),
+        ("791558", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00701540"),
+        ("916777", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00906740"),
+        ("578203", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00508200"),
+        ("272798", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00202780"),
+        ("896128", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00806100"),
+        ("159490", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00109480"),
+        ("907315", "SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00907300"),
+        ("506154", "SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00506140"),
+        ("484999", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00404980"),
+        ("551874", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00501840"),
+        ("962905", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00902900"),
+        ("913967", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00903940"),
+        ("726030", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00706000"),
+        ("104528", "SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00104500"),
+        ("747909", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00707900"),
+        ("706533", "SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00706500"),
+        ("812130", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00802100"),
+        ("456147", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00406140"),
+        ("485760", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00405740"),
+        ("979902", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00909900"),
+        ("888033", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00808000"),
+        ("588883", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00508880"),
+        ("135299", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00105280"),
+        ("219094", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00209080"),
+        ("893111", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00803100"),
+        ("620463", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00600440"),
+        ("89138", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00009100"),
+        ("861965", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00801940"),
+        ("315604", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00305600"),
+        ("238685", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00208680"),
+        ("907908", "SECTION_MAP_EXECUTE|0x00907900"),
+        ("183685", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00103680"),
+        ("355268", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00305240"),
+        ("758441", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00708440"),
+        ("548560", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00508540"),
+        ("159940", "STANDARD_RIGHTS_REQUIRED|0x00109940"),
+        ("355004", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00305000"),
+        ("230557", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00200540"),
+        ("924438", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00904400"),
+        ("372356", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00302340"),
+        ("178511", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00108500"),
+        ("427834", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00407800"),
+        ("861815", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00801800"),
+        ("629357", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00609340"),
+        ("52537", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00002500"),
+        ("475955", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00405940"),
+        ("758854", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00708840"),
+        ("512136", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00502100"),
+        ("274782", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00204780"),
+        ("727569", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00707540"),
+        ("57704", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00007700"),
+        ("355949", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00305940"),
+        ("694830", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00604800"),
+        ("105468", "SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00105440"),
+        ("660358", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00600340"),
+        ("947756", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00907740"),
+        ("209916", "SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00209900"),
+        ("149923", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00109900"),
+        ("730605", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00700600"),
+        ("506747", "SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00506740"),
+        ("17653", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00007640"),
+        ("347507", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00307500"),
+        ("74054", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00004040"),
+        ("786231", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00706200"),
+        ("913198", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00903180"),
+        ("195023", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00105000"),
+        ("882863", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00802840"),
+        ("212966", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00202940"),
+        ("631117", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00601100"),
+        ("550375", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00500340"),
+        ("146451", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00106440"),
+        ("538541", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00508540"),
+        ("614642", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00604640"),
+        ("656360", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00606340"),
+        ("414316", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00404300"),
+        ("331716", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00301700"),
+        ("479886", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00409880"),
+        ("923791", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00903780"),
+        ("621486", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00601480"),
+        ("690181", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00600180"),
+        ("341649", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00301640"),
+        ("87790", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00007780"),
+        ("828664", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00808640"),
+        ("601057", "SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00601040"),
+        ("970281", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00900280"),
+        ("723408", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00703400"),
+        ("490352", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00400340"),
+        ("176853", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00106840"),
+        ("11689", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00001680"),
+        ("918947", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00908940"),
+        ("628448", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00608440"),
+        ("398960", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00308940"),
+        ("297685", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00207680"),
+        ("787499", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00707480"),
+        ("549677", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00509640"),
+        ("869343", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00809340"),
+        ("353334", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00303300"),
+        ("798314", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00708300"),
+        ("629051", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00609040"),
+        ("638560", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00608540"),
+        ("666791", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00606780"),
+        ("57843", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00007840"),
+        ("585777", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00505740"),
+        ("653970", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00603940"),
+        ("268035", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00208000"),
+        ("885343", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00805340"),
+        ("771310", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00701300"),
+        ("16012", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00006000"),
+        ("530333", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00500300"),
+        ("47944", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00007940"),
+        ("68415", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00008400"),
+        ("693006", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00603000"),
+        ("673438", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00603400"),
+        ("223553", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00203540"),
+        ("488869", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00408840"),
+        ("664783", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00604780"),
+        ("206600", "0x00206600"),
+        ("62279", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00002240"),
+        ("330306", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00300300"),
+        ("295039", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00205000"),
+        ("595243", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00505240"),
+        ("664417", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00604400"),
+        ("872767", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00802740"),
+        ("488838", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00408800"),
+        ("334347", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00304340"),
+        ("238602", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00208600"),
+        ("971170", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00901140"),
+        ("896012", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00806000"),
+        ("522769", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00502740"),
+        ("395303", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00305300"),
+        ("544556", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00504540"),
+        ("345245", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00305240"),
+        ("710578", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00700540"),
+        ("981523", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00901500"),
+        ("540674", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00500640"),
+        ("822373", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00802340"),
+        ("579155", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00509140"),
+        ("905035", "SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00905000"),
+        ("581567", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00501540"),
+        ("975824", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00905800"),
+        ("149714", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00109700"),
+        ("599695", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00509680"),
+        ("909111", "SECTION_QUERY|SECTION_EXTEND_SIZE|0x00909100"),
+        ("99404", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00009400"),
+        ("668578", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00608540"),
+        ("213436", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00203400"),
+        ("467522", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00407500"),
+        ("535872", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00505840"),
+        ("709745", "SECTION_QUERY|SECTION_MAP_READ|0x00709740"),
+        ("777907", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00707900"),
+        ("532164", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00502140"),
+        ("527706", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00507700"),
+        ("383227", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00303200"),
+        ("365263", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00305240"),
+        ("684152", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00604140"),
+        ("243496", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00203480"),
+        ("70938", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00000900"),
+        ("133212", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00103200"),
+        ("87300", "STANDARD_RIGHTS_REQUIRED|0x00007300"),
+        ("341613", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00301600"),
+        ("556705", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00506700"),
+        ("421557", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00401540"),
+        ("241861", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE_EXPLICIT|0x00201840"),
+        ("904961", "SECTION_QUERY|SECTION_MAP_EXECUTE_EXPLICIT|0x00904940"),
+        ("157299", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00107280"),
+        ("866461", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE_EXPLICIT|0x00806440"),
+        ("923120", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00903100"),
+        ("452003", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00402000"),
+        ("605706", "SECTION_MAP_READ|SECTION_MAP_WRITE|0x00605700"),
+        ("281481", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00201480"),
+        ("430353", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00400340"),
+        ("61870", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00001840"),
+        ("419584", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00409580"),
+        ("520754", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00500740"),
+        ("280769", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00200740"),
+        ("52292", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00002280"),
+        ("383762", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00303740"),
+        ("103955", "SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00103940"),
+        ("504730", "SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00504700"),
+        ("99545", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00009540"),
+        ("84106", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00004100"),
+        ("909825", "SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00909800"),
+        ("633987", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00603980"),
+        ("766778", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00706740"),
+        ("696849", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00606840"),
+        ("283259", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00203240"),
+        ("409228", "SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00409200"),
+        ("402777", "SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00402740"),
+        ("967924", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00907900"),
+        ("407263", "SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00407240"),
+        ("320231", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00300200"),
+        ("823759", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00803740"),
+        ("826251", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00806240"),
+        ("827236", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00807200"),
+        ("163552", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00103540"),
+        ("146779", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00106740"),
+        ("350081", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00300080"),
+        ("9802", "SECTION_MAP_WRITE|0x00009800"),
+        ("169862", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00109840"),
+        ("659677", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00609640"),
+        ("666946", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00606940"),
+        ("173765", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00103740"),
+        ("306929", "SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00306900"),
+        ("286105", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00206100"),
+        ("884645", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00804640"),
+        ("740141", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00700140"),
+        ("900494", "SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00900480"),
+        ("68466", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00008440"),
+        ("441599", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00401580"),
+        ("183519", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00103500"),
+        ("639075", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00609040"),
+        ("710138", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00700100"),
+        ("689397", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00609380"),
+        ("236050", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00206040"),
+        ("498359", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00408340"),
+        ("375396", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00305380"),
+        ("629809", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00609800"),
+        ("360255", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00300240"),
+        ("187785", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00107780"),
+        ("463014", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00403000"),
+        ("496325", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00406300"),
+        ("752304", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00702300"),
+        ("890697", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00800680"),
+        ("879270", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00809240"),
+        ("285078", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00205040"),
+        ("253486", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00203480"),
+        ("341697", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00301680"),
+        ("661114", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00601100"),
+        ("761872", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00701840"),
+        ("421452", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00401440"),
+        ("804999", "SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00804980"),
+        ("449126", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00409100"),
+        ("322097", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00302080"),
+        ("356299", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00306280"),
+        ("638523", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00608500"),
+        ("178809", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00108800"),
+        ("317977", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00307940"),
+        ("168961", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE_EXPLICIT|0x00108940"),
+        ("532093", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00502080"),
+        ("550848", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00500840"),
+        ("940989", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00900980"),
+        ("868091", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00808080"),
+        ("819004", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00809000"),
+        ("144990", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00104980"),
+        ("335987", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00305980"),
+        ("374110", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00304100"),
+        ("74620", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00004600"),
+        ("862872", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00802840"),
+        ("814036", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00804000"),
+        ("967587", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00907580"),
+        ("632141", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00602140"),
+        ("579145", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00509140"),
+        ("665107", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00605100"),
+        ("614792", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00604780"),
+        ("145229", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00105200"),
+        ("909960", "SECTION_MAP_EXECUTE_EXPLICIT|0x00909940"),
+        ("346909", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00306900"),
+        ("355068", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00305040"),
+        ("772154", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00702140"),
+        ("518849", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00508840"),
+        ("252437", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00202400"),
+        ("727709", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00707700"),
+        ("19465", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00009440"),
+        ("487173", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00407140"),
+        ("686743", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00606740"),
+        ("113749", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00103740"),
+        ("16829", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00006800"),
+        ("894864", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00804840"),
+        ("92455", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00002440"),
+        ("862267", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00802240"),
+        ("880733", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00800700"),
+        ("845363", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00805340"),
+        ("605024", "SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00605000"),
+        ("808423", "SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00808400"),
+        ("939063", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00909040"),
+        ("901611", "SECTION_QUERY|SECTION_EXTEND_SIZE|0x00901600"),
+        ("860220", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00800200"),
+        ("47705", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00007700"),
+        ("196496", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00106480"),
+        ("590586", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00500580"),
+        ("305428", "SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00305400"),
+        ("725751", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00705740"),
+        ("142782", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00102780"),
+        ("414743", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00404740"),
+        ("213187", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00203180"),
+        ("891308", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00801300"),
+        ("208146", "SECTION_MAP_READ|SECTION_MAP_WRITE|0x00208140"),
+        ("56988", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00006980"),
+        ("391464", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00301440"),
+        ("522852", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00502840"),
+        ("653785", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00603780"),
+        ("49036", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00009000"),
+        ("237318", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00207300"),
+        ("168909", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00108900"),
+        ("738420", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00708400"),
+        ("205162", "SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00205140"),
+        ("401412", "SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00401400"),
+        ("420503", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00400500"),
+        ("389491", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00309480"),
+        ("35128", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00005100"),
+        ("454638", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00404600"),
+        ("257358", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00207340"),
+        ("196448", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00106440"),
+        ("909000", "0x00909000"),
+        ("355222", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00305200"),
+        ("315046", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00305040"),
+        ("17359", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00007340"),
+        ("194110", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00104100"),
+        ("699546", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00609540"),
+        ("587146", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00507140"),
+        ("964208", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00904200"),
+        ("879392", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00809380"),
+        ("319108", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00309100"),
+        ("399139", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00309100"),
+        ("1950", "SECTION_EXTEND_SIZE|0x00001940"),
+        ("780041", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00700040"),
+        ("215695", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00205680"),
+        ("848216", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00808200"),
+        ("717487", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00707480"),
+        ("867505", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00807500"),
+        ("659483", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00609480"),
+        ("138886", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00108880"),
+        ("418935", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00408900"),
+        ("292272", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00202240"),
+        ("88759", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00008740"),
+        ("440907", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00400900"),
+        ("431189", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00401180"),
+        ("440797", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00400780"),
+        ("84570", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00004540"),
+        ("600024", "SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00600000"),
+        ("471604", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00401600"),
+        ("144775", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00104740"),
+        ("360335", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00300300"),
+        ("111730", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00101700"),
+        ("299754", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00209740"),
+        ("281005", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00201000"),
+        ("221749", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00201740"),
+        ("647772", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00607740"),
+        ("418299", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00408280"),
+        ("892749", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00802740"),
+        ("867238", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00807200"),
+        ("19757", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00009740"),
+        ("889071", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00809040"),
+        ("679962", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00609940"),
+        ("58888", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00008880"),
+        ("118649", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00108640"),
+        ("498729", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00408700"),
+        ("609895", "SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00609880"),
+        ("765963", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00705940"),
+        ("844866", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00804840"),
+        ("450100", "STANDARD_RIGHTS_REQUIRED|0x00400100"),
+        ("908437", "SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00908400"),
+        ("143741", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00103740"),
+        ("281641", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00201640"),
+        ("187162", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00107140"),
+        ("279722", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00209700"),
+        ("825119", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00805100"),
+        ("397948", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00307940"),
+        ("888", "SECTION_MAP_EXECUTE|0x00000880"),
+        ("948612", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00908600"),
+        ("886148", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00806140"),
+        ("290983", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00200980"),
+        ("500538", "SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00500500"),
+        ("913052", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00903040"),
+        ("210684", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00200680"),
+        ("386132", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00306100"),
+        ("526002", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00506000"),
+        ("116973", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00106940"),
+        ("127165", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00107140"),
+        ("280035", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00200000"),
+        ("265106", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00205100"),
+        ("289455", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00209440"),
+        ("559745", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00509740"),
+        ("269437", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00209400"),
+        ("486654", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00406640"),
+        ("202603", "SECTION_QUERY|SECTION_MAP_WRITE|0x00202600"),
+        ("358739", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00308700"),
+        ("132706", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00102700"),
+        ("473010", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00403000"),
+        ("324870", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00304840"),
+        ("802922", "SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00802900"),
+        ("524775", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00504740"),
+        ("734263", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00704240"),
+        ("187992", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00107980"),
+        ("134938", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00104900"),
+        ("188352", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00108340"),
+        ("517950", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00507940"),
+        ("623213", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00603200"),
+        ("182353", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00102340"),
+        ("574082", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00504080"),
+        ("148369", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00108340"),
+        ("92961", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE_EXPLICIT|0x00002940"),
+        ("113376", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00103340"),
+        ("941074", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00901040"),
+        ("640203", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00600200"),
+        ("421645", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00401640"),
+        ("731833", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00701800"),
+        ("335241", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00305240"),
+        ("750111", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00700100"),
+        ("34201", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00004200"),
+        ("274178", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00204140"),
+        ("463192", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00403180"),
+        ("740997", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00700980"),
+        ("501859", "SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00501840"),
+        ("181022", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00101000"),
+        ("492725", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00402700"),
+        ("150514", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00100500"),
+        ("354344", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00304340"),
+        ("255525", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00205500"),
+        ("8357", "SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00008340"),
+        ("173116", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00103100"),
+        ("624387", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00604380"),
+        ("772889", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00702880"),
+        ("727327", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00707300"),
+        ("524523", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00504500"),
+        ("697437", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00607400"),
+        ("44261", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE_EXPLICIT|0x00004240"),
+        ("468279", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00408240"),
+        ("235650", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00205640"),
+        ("473407", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00403400"),
+        ("76072", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00006040"),
+        ("679108", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00609100"),
+        ("206097", "SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00206080"),
+        ("975420", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00905400"),
+        ("452355", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00402340"),
+        ("654104", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00604100"),
+        ("556727", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00506700"),
+        ("954096", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00904080"),
+        ("802404", "SECTION_MAP_READ|0x00802400"),
+        ("178876", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00108840"),
+        ("728651", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00708640"),
+        ("438503", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00408500"),
+        ("869862", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00809840"),
+        ("250460", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00200440"),
+        ("673935", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00603900"),
+        ("316462", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00306440"),
+        ("549113", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00509100"),
+        ("566686", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00506680"),
+        ("598605", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00508600"),
+        ("312795", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00302780"),
+        ("899043", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00809040"),
+        ("730036", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00700000"),
+        ("860927", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00800900"),
+        ("120686", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00100680"),
+        ("32070", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00002040"),
+        ("505050", "SECTION_EXTEND_SIZE|0x00505040"),
+        ("799580", "STANDARD_RIGHTS_REQUIRED|0x00709580"),
+        ("711698", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00701680"),
+        ("463433", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00403400"),
+        ("432439", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00402400"),
+        ("251798", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00201780"),
+        ("861514", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00801500"),
+        ("822969", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00802940"),
+        ("4306", "SECTION_MAP_READ|SECTION_MAP_WRITE|0x00004300"),
+        ("415850", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00405840"),
+        ("458978", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00408940"),
+        ("605880", "0x00605880"),
+        ("417039", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00407000"),
+        ("249975", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00209940"),
+        ("290116", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00200100"),
+        ("593577", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00503540"),
+        ("923803", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00903800"),
+        ("579251", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00509240"),
+        ("886832", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00806800"),
+        ("837850", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00807840"),
+        ("112952", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00102940"),
+        ("237258", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00207240"),
+        ("470372", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00400340"),
+        ("339426", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00309400"),
+        ("404234", "SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00404200"),
+        ("724503", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00704500"),
+        ("400896", "SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00400880"),
+        ("460098", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00400080"),
+        ("511729", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00501700"),
+        ("93404", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00003400"),
+        ("359963", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00309940"),
+        ("658951", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00608940"),
+        ("399957", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00309940"),
+        ("376393", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00306380"),
+        ("716649", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00706640"),
+        ("240416", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00200400"),
+        ("273382", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00203380"),
+        ("531073", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00501040"),
+        ("559937", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00509900"),
+        ("303514", "SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00303500"),
+        ("950659", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00900640"),
+        ("897217", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00807200"),
+        ("611143", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00601140"),
+        ("563374", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00503340"),
+        ("163461", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE_EXPLICIT|0x00103440"),
+        ("885902", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00805900"),
+        ("186095", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00106080"),
+        ("630934", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00600900"),
+        ("243909", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00203900"),
+        ("955397", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00905380"),
+        ("500058", "SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00500040"),
+        ("178033", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00108000"),
+        ("90029", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT"),
+        ("733944", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00703940"),
+        ("385187", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00305180"),
+        ("439700", "STANDARD_RIGHTS_REQUIRED|0x00409700"),
+        ("333656", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00303640"),
+        ("606227", "SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00606200"),
+        ("951617", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00901600"),
+        ("391168", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00301140"),
+        ("735874", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00705840"),
+        ("730184", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00700180"),
+        ("280217", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00200200"),
+        ("428656", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00408640"),
+        ("453290", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00403280"),
+        ("648603", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00608600"),
+        ("953192", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00903180"),
+        ("471500", "STANDARD_RIGHTS_REQUIRED|0x00401500"),
+        ("132848", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00102840"),
+        ("250936", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00200900"),
+        ("750006", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00700000"),
+        ("592788", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00502780"),
+        ("261785", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00201780"),
+        ("122144", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00102140"),
+        ("614734", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00604700"),
+        ("62777", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00002740"),
+        ("744274", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00704240"),
+        ("628662", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00608640"),
+        ("68641", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00008640"),
+        ("734002", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00704000"),
+        ("276622", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00206600"),
+        ("825058", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00805040"),
+        ("119524", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00109500"),
+        ("893933", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00803900"),
+        ("351876", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00301840"),
+        ("479230", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00409200"),
+        ("76267", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00006240"),
+        ("794967", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00704940"),
+        ("188710", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00108700"),
+        ("899687", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00809680"),
+        ("945584", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00905580"),
+        ("214980", "STANDARD_RIGHTS_REQUIRED|0x00204980"),
+        ("957154", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00907140"),
+        ("507929", "SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00507900"),
+        ("127809", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00107800"),
+        ("579317", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00509300"),
+        ("893508", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00803500"),
+        ("455410", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00405400"),
+        ("761005", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00701000"),
+        ("8267", "SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00008240"),
+        ("636782", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00606780"),
+        ("245216", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00205200"),
+        ("425558", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00405540"),
+        ("55028", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00005000"),
+        ("753115", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00703100"),
+        ("16583", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00006580"),
+        ("646499", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00606480"),
+        ("802468", "SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00802440"),
+        ("365561", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE_EXPLICIT|0x00305540"),
+        ("414768", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00404740"),
+        ("216087", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00206080"),
+        ("223151", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00203140"),
+        ("373635", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00303600"),
+        ("834906", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00804900"),
+        ("351102", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00301100"),
+        ("895063", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00805040"),
+        ("487055", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00407040"),
+        ("135610", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00105600"),
+        ("151236", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00101200"),
+        ("416881", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00406880"),
+        ("193378", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00103340"),
+        ("911922", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00901900"),
+        ("905208", "SECTION_MAP_EXECUTE|0x00905200"),
+        ("841941", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00801940"),
+        ("527287", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00507280"),
+        ("739680", "STANDARD_RIGHTS_REQUIRED|0x00709680"),
+        ("254133", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00204100"),
+        ("212447", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00202440"),
+        ("452328", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00402300"),
+        ("890259", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00800240"),
+        ("473354", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00403340"),
+        ("912188", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00902180"),
+        ("309466", "SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00309440"),
+        ("425106", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00405100"),
+        ("716010", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00706000"),
+        ("332783", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00302780"),
+        ("213326", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00203300"),
+        ("44922", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00004900"),
+        ("275032", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00205000"),
+        ("379625", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00309600"),
+        ("280826", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00200800"),
+        ("841885", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00801880"),
+        ("929217", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00909200"),
+        ("699786", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00609780"),
+        ("411877", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00401840"),
+        ("282828", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00202800"),
+        ("350233", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00300200"),
+        ("262373", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00202340"),
+        ("310708", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00300700"),
+        ("417297", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00407280"),
+        ("154298", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00104280"),
+        ("944363", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00904340"),
+        ("971060", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00901040"),
+        ("520090", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00500080"),
+        ("61160", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00001140"),
+        ("473099", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00403080"),
+        ("962363", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00902340"),
+        ("554021", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE_EXPLICIT|0x00504000"),
+        ("63296", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00003280"),
+        ("164859", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00104840"),
+        ("300931", "SECTION_QUERY|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00300900"),
+        ("216887", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00206880"),
+        ("578553", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00508540"),
+        ("151131", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00101100"),
+        ("862250", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00802240"),
+        ("177710", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00107700"),
+        ("419699", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00409680"),
+        ("3955", "SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00003940"),
+        ("959253", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00909240"),
+        ("378093", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00308080"),
+        ("741909", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00701900"),
+        ("38362", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00008340"),
+        ("789227", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00709200"),
+        ("759308", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00709300"),
+        ("372450", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00302440"),
+        ("216107", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00206100"),
+        ("656304", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00606300"),
+        ("866999", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00806980"),
+        ("708307", "SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00708300"),
+        ("545356", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00505340"),
+        ("969807", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00909800"),
+        ("845882", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00805880"),
+        ("140949", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00100940"),
+        ("486313", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00406300"),
+        ("732317", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00702300"),
+        ("584970", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00504940"),
+        ("17392", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00007380"),
+        ("890087", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00800080"),
+        ("429625", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00409600"),
+        ("302373", "SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00302340"),
+        ("569228", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00509200"),
+        ("587456", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00507440"),
+        ("573379", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00503340"),
+        ("926183", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00906180"),
+        ("221001", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00201000"),
+        ("245205", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00205200"),
+        ("606298", "SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00606280"),
+        ("380270", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00300240"),
+        ("325988", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00305980"),
+        ("857602", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00807600"),
+        ("329739", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00309700"),
+        ("425585", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00405580"),
+        ("670186", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00600180"),
+        ("785294", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00705280"),
+        ("914242", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00904240"),
+        ("448048", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00408040"),
+        ("529855", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00509840"),
+        ("276729", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00206700"),
+        ("820581", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00800580"),
+        ("274372", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00204340"),
+        ("17092", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00007080"),
+        ("810814", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00800800"),
+        ("930854", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00900840"),
+        ("219450", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00209440"),
+        ("634631", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00604600"),
+        ("548088", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00508080"),
+        ("224724", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00204700"),
+        ("95585", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00005580"),
+        ("103252", "SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00103240"),
+        ("553564", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00503540"),
+        ("51231", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00001200"),
+        ("433539", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00403500"),
+        ("23688", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00003680"),
+        ("552061", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE_EXPLICIT|0x00502040"),
+        ("443362", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00403340"),
+        ("804425", "SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00804400"),
+        ("940388", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00900380"),
+        ("901510", "SECTION_EXTEND_SIZE|0x00901500"),
+        ("802105", "SECTION_QUERY|SECTION_MAP_READ|0x00802100"),
+        ("777453", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00707440"),
+        ("789429", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00709400"),
+        ("134262", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00104240"),
+        ("899877", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00809840"),
+        ("792385", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00702380"),
+        ("425030", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00405000"),
+        ("356489", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00306480"),
+        ("624255", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00604240"),
+        ("26081", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00006080"),
+        ("822082", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00802080"),
+        ("897417", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00807400"),
+        ("653807", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00603800"),
+        ("94174", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00004140"),
+        ("981313", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00901300"),
+        ("105526", "SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00105500"),
+        ("819436", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00809400"),
+        ("475076", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00405040"),
+        ("268869", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00208840"),
+        ("840081", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00800080"),
+        ("157810", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00107800"),
+        ("781265", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00701240"),
+        ("733925", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00703900"),
+        ("813765", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00803740"),
+        ("886718", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00806700"),
+        ("717780", "STANDARD_RIGHTS_REQUIRED|0x00707780"),
+        ("851088", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00801080"),
+        ("516830", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00506800"),
+        ("580227", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00500200"),
+        ("454015", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00404000"),
+        ("654052", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00604040"),
+        ("707104", "SECTION_MAP_READ|0x00707100"),
+        ("218193", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00208180"),
+        ("409435", "SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00409400"),
+        ("715827", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00705800"),
+        ("759263", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00709240"),
+        ("152235", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00102200"),
+        ("490599", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00400580"),
+        ("424886", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00404880"),
+        ("824598", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00804580"),
+        ("752699", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00702680"),
+        ("101292", "SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00101280"),
+        ("876902", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00806900"),
+        ("11850", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00001840"),
+        ("622413", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00602400"),
+        ("157796", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00107780"),
+        ("850928", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00800900"),
+        ("965803", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00905800"),
+        ("363209", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00303200"),
+        ("711652", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00701640"),
+        ("300715", "SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00300700"),
+        ("641828", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00601800"),
+        ("842673", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00802640"),
+        ("602976", "SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00602940"),
+        ("750146", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00700140"),
+        ("865370", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00805340"),
+        ("770415", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00700400"),
+        ("894685", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00804680"),
+        ("888782", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00808780"),
+        ("353920", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00303900"),
+        ("223428", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00203400"),
+        ("680454", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00600440"),
+        ("953408", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00903400"),
+        ("933042", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00903040"),
+        ("330984", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00300980"),
+        ("619535", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00609500"),
+        ("979139", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00909100"),
+        ("902565", "SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00902540"),
+        ("401499", "SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00401480"),
+        ("523644", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00503640"),
+        ("210872", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00200840"),
+        ("553794", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00503780"),
+        ("389947", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00309940"),
+        ("219228", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00209200"),
+        ("939320", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00909300"),
+        ("610367", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00600340"),
+        ("872785", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00802780"),
+        ("745206", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00705200"),
+        ("747835", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00707800"),
+        ("611869", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00601840"),
+        ("882180", "STANDARD_RIGHTS_REQUIRED|0x00802180"),
+        ("73563", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00003540"),
+        ("189653", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00109640"),
+        ("36893", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00006880"),
+        ("228635", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00208600"),
+        ("27298", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00007280"),
+        ("563364", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00503340"),
+        ("9920", "SECTION_MAP_EXECUTE_EXPLICIT|0x00009900"),
+        ("775919", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00705900"),
+        ("586473", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00506440"),
+        ("633267", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00603240"),
+        ("205365", "SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00205340"),
+        ("117375", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00107340"),
+        ("33993", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00003980"),
+        ("237062", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00207040"),
+        ("477111", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00407100"),
+        ("233781", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00203780"),
+        ("527355", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00507340"),
+        ("982152", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00902140"),
+        ("263397", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00203380"),
+        ("396539", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00306500"),
+        ("804710", "SECTION_EXTEND_SIZE|0x00804700"),
+        ("84773", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00004740"),
+        ("22038", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00002000"),
+        ("118242", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00108240"),
+        ("129107", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00109100"),
+        ("193348", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00103340"),
+        ("19682", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00009680"),
+        ("583600", "STANDARD_RIGHTS_REQUIRED|0x00503600"),
+        ("186623", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00106600"),
+        ("200799", "SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00200780"),
+        ("8064", "SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00008040"),
+        ("486591", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00406580"),
+        ("115982", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00105980"),
+        ("128553", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00108540"),
+        ("813462", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00803440"),
+        ("854453", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00804440"),
+        ("542109", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00502100"),
+        ("144305", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00104300"),
+        ("235748", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00205740"),
+        ("893825", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00803800"),
+        ("727695", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00707680"),
+        ("474408", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00404400"),
+        ("829470", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00809440"),
+        ("586297", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00506280"),
+        ("974404", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00904400"),
+        ("678878", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00608840"),
+        ("949065", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00909040"),
+        ("256254", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00206240"),
+        ("592054", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00502040"),
+        ("622068", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00602040"),
+        ("262346", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00202340"),
+        ("227611", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00207600"),
+        ("174659", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00104640"),
+        ("206425", "SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00206400"),
+        ("578989", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00508980"),
+        ("889790", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00809780"),
+        ("121828", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00101800"),
+        ("597115", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00507100"),
+        ("564469", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00504440"),
+        ("330872", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00300840"),
+        ("216099", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00206080"),
+        ("494267", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00404240"),
+        ("98589", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00008580"),
+        ("942848", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00902840"),
+        ("375693", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00305680"),
+        ("959240", "STANDARD_RIGHTS_REQUIRED|0x00909240"),
+        ("462131", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00402100"),
+        ("804258", "SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00804240"),
+        ("683185", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00603180"),
+        ("445470", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00405440"),
+        ("476255", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00406240"),
+        ("477412", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00407400"),
+        ("539292", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00509280"),
+        ("362455", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00302440"),
+        ("157", "SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00000140"),
+        ("65634", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00005600"),
+        ("74239", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00004200"),
+        ("71601", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00001600"),
+        ("93278", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00003240"),
+        ("623954", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00603940"),
+        ("858388", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00808380"),
+        ("22298", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00002280"),
+        ("916978", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00906940"),
+        ("663413", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00603400"),
+        ("51832", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00001800"),
+        ("836738", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00806700"),
+        ("549635", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00509600"),
+        ("339163", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00309140"),
+        ("819936", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00809900"),
+        ("429050", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00409040"),
+        ("358730", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00308700"),
+        ("554489", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00504480"),
+        ("273287", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00203280"),
+        ("827037", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00807000"),
+        ("973680", "STANDARD_RIGHTS_REQUIRED|0x00903680"),
+        ("679924", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00609900"),
+        ("154651", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00104640"),
+        ("226829", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00206800"),
+        ("658960", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00608940"),
+        ("109565", "SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00109540"),
+        ("554560", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00504540"),
+        ("94157", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00004140"),
+        ("895592", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00805580"),
+        ("56856", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00006840"),
+        ("461916", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00401900"),
+        ("930397", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00900380"),
+        ("280985", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00200980"),
+        ("594997", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00504980"),
+        ("859291", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00809280"),
+        ("396760", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00306740"),
+        ("378548", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00308540"),
+        ("938183", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00908180"),
+        ("562779", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00502740"),
+        ("905698", "SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00905680"),
+        ("169396", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00109380"),
+        ("491001", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00401000"),
+        ("691477", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00601440"),
+        ("124006", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00104000"),
+        ("36323", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00006300"),
+        ("10517", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00000500"),
+        ("902623", "SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00902600"),
+        ("915460", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00905440"),
+        ("138200", "STANDARD_RIGHTS_REQUIRED|0x00108200"),
+        ("371374", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00301340"),
+        ("9606", "SECTION_MAP_READ|SECTION_MAP_WRITE|0x00009600"),
+        ("930134", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00900100"),
+        ("555929", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00505900"),
+        ("52366", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00002340"),
+        ("478225", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00408200"),
+        ("530199", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00500180"),
+        ("236376", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00206340"),
+        ("443922", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00403900"),
+        ("91598", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00001580"),
+        ("448809", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00408800"),
+        ("538167", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00508140"),
+        ("481511", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00401500"),
+        ("659794", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00609780"),
+        ("776459", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00706440"),
+        ("886366", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00806340"),
+        ("57818", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00007800"),
+        ("844732", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00804700"),
+        ("900557", "SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00900540"),
+        ("669308", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00609300"),
+        ("534099", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00504080"),
+        ("489775", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00409740"),
+        ("292659", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00202640"),
+        ("308554", "SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00308540"),
+        ("517248", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00507240"),
+        ("549885", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00509880"),
+        ("776847", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00706840"),
+        ("353530", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00303500"),
+        ("857420", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00807400"),
+        ("573175", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00503140"),
+        ("548336", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00508300"),
+        ("273475", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00203440"),
+        ("761630", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00701600"),
+        ("334403", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00304400"),
+        ("884143", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00804140"),
+        ("599175", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00509140"),
+        ("454173", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00404140"),
+        ("320946", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00300940"),
+        ("126589", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00106580"),
+        ("87720", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00007700"),
+        ("672880", "STANDARD_RIGHTS_REQUIRED|0x00602880"),
+        ("330046", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00300040"),
+        ("477952", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00407940"),
+        ("4607", "SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00004600"),
+        ("57359", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00007340"),
+        ("211763", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00201740"),
+        ("646658", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00606640"),
+        ("587986", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00507980"),
+        ("241923", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00201900"),
+        ("332202", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00302200"),
+        ("694536", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00604500"),
+        ("284386", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00204380"),
+        ("619516", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00609500"),
+        ("951207", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00901200"),
+        ("536547", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00506540"),
+        ("125499", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00105480"),
+        ("909154", "SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00909140"),
+        ("956467", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00906440"),
+        ("907919", "SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00907900"),
+        ("909350", "SECTION_EXTEND_SIZE|0x00909340"),
+        ("143796", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00103780"),
+        ("236358", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00206340"),
+        ("458464", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00408440"),
+        ("199383", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00109380"),
+        ("596890", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00506880"),
+        ("248207", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00208200"),
+        ("253644", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00203640"),
+        ("735832", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00705800"),
+        ("191016", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00101000"),
+        ("12635", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00002600"),
+        ("100032", "SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00100000"),
+        ("174000", "STANDARD_RIGHTS_REQUIRED|0x00104000"),
+        ("331173", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00301140"),
+        ("99752", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00009740"),
+        ("672768", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00602740"),
+        ("665091", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00605080"),
+        ("227970", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00207940"),
+        ("548135", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00508100"),
+        ("924810", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00904800"),
+        ("382276", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00302240"),
+        ("186328", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00106300"),
+        ("548674", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00508640"),
+        ("240493", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00200480"),
+        ("830698", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00800680"),
+        ("938467", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00908440"),
+        ("370695", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00300680"),
+        ("306660", "SECTION_MAP_EXECUTE_EXPLICIT|0x00306640"),
+        ("726647", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00706640"),
+        ("234558", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00204540"),
+        ("604950", "SECTION_EXTEND_SIZE|0x00604940"),
+        ("732198", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00702180"),
+        ("227302", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00207300"),
+        ("968118", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00908100"),
+        ("296033", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00206000"),
+        ("628181", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00608180"),
+        ("270933", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00200900"),
+        ("636774", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00606740"),
+        ("719035", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00709000"),
+        ("159464", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00109440"),
+        ("905709", "SECTION_QUERY|SECTION_MAP_EXECUTE|0x00905700"),
+        ("34748", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00004740"),
+        ("268741", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00208740"),
+        ("946758", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00906740"),
+        ("423808", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00403800"),
+        ("433631", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00403600"),
+        ("382900", "STANDARD_RIGHTS_REQUIRED|0x00302900"),
+        ("312946", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00302940"),
+        ("532520", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00502500"),
+        ("151644", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00101640"),
+        ("981593", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00901580"),
+        ("27549", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00007540"),
+        ("554519", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00504500"),
+        ("221633", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00201600"),
+        ("686917", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00606900"),
+        ("878502", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00808500"),
+        ("519732", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00509700"),
+        ("328835", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00308800"),
+        ("37940", "STANDARD_RIGHTS_REQUIRED|0x00007940"),
+        ("844126", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00804100"),
+        ("738948", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00708940"),
+        ("554430", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00504400"),
+        ("247389", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00207380"),
+        ("826400", "STANDARD_RIGHTS_REQUIRED|0x00806400"),
+        ("698282", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00608280"),
+        ("814354", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00804340"),
+        ("126640", "STANDARD_RIGHTS_REQUIRED|0x00106640"),
+        ("243618", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00203600"),
+        ("647734", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00607700"),
+        ("832124", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00802100"),
+        ("827257", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00807240"),
+        ("135570", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00105540"),
+        ("366652", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00306640"),
+        ("384866", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00304840"),
+        ("928656", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00908640"),
+        ("828613", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00808600"),
+        ("286967", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00206940"),
+        ("977813", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00907800"),
+        ("856538", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00806500"),
+        ("683810", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00603800"),
+        ("89399", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00009380"),
+        ("786121", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE_EXPLICIT|0x00706100"),
+        ("92512", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00002500"),
+        ("676557", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00606540"),
+        ("497723", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00407700"),
+        ("560877", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00500840"),
+        ("818704", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00808700"),
+        ("221968", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00201940"),
+        ("428562", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00408540"),
+        ("947122", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00907100"),
+        ("115502", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00105500"),
+        ("403717", "SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00403700"),
+        ("204467", "SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00204440"),
+        ("920557", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00900540"),
+        ("316611", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00306600"),
+        ("263107", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00203100"),
+        ("333477", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00303440"),
+        ("157601", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00107600"),
+        ("713711", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00703700"),
+        ("190674", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00100640"),
+        ("525938", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00505900"),
+        ("406525", "SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00406500"),
+        ("693566", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00603540"),
+        ("231050", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00201040"),
+        ("97545", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00007540"),
+        ("491665", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00401640"),
+        ("225964", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00205940"),
+        ("932026", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00902000"),
+        ("361087", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00301080"),
+        ("699535", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00609500"),
+        ("662677", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00602640"),
+        ("43410", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00003400"),
+        ("60033", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT"),
+        ("605758", "SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00605740"),
+        ("16864", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00006840"),
+        ("160107", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00100100"),
+        ("565371", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00505340"),
+        ("729531", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00709500"),
+        ("551544", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00501540"),
+        ("63783", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00003780"),
+        ("470018", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00400000"),
+        ("749981", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00709980"),
+        ("257837", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00207800"),
+        ("547266", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00507240"),
+        ("759830", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00709800"),
+        ("751989", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00701980"),
+        ("152255", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00102240"),
+        ("121415", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00101400"),
+        ("101700", "0x00101700"),
+        ("164267", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00104240"),
+        ("343430", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00303400"),
+        ("818215", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00808200"),
+        ("284177", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00204140"),
+        ("623774", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00603740"),
+        ("201117", "SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00201100"),
+        ("411371", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00401340"),
+        ("254258", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00204240"),
+        ("96883", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00006880"),
+        ("86979", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00006940"),
+        ("875066", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00805040"),
+        ("367605", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00307600"),
+        ("606182", "SECTION_MAP_WRITE|0x00606180"),
+        ("187311", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00107300"),
+        ("874715", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00804700"),
+        ("701067", "SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00701040"),
+        ("124908", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00104900"),
+        ("651483", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00601480"),
+        ("508546", "SECTION_MAP_READ|SECTION_MAP_WRITE|0x00508540"),
+        ("771202", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00701200"),
+        ("420042", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00400040"),
+        ("343901", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00303900"),
+        ("574902", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00504900"),
+        ("736136", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00706100"),
+        ("502301", "SECTION_QUERY|0x00502300"),
+        ("748531", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00708500"),
+        ("34704", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00004700"),
+        ("685727", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00605700"),
+        ("887887", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00807880"),
+        ("332924", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00302900"),
+        ("317113", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00307100"),
+        ("704415", "SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00704400"),
+        ("650988", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00600980"),
+        ("393635", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00303600"),
+        ("352987", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00302980"),
+        ("587545", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00507540"),
+        ("409375", "SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00409340"),
+        ("172642", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00102640"),
+        ("323182", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00303180"),
+        ("459833", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00409800"),
+        ("412080", "STANDARD_RIGHTS_REQUIRED|0x00402080"),
+        ("377606", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00307600"),
+        ("741737", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00701700"),
+        ("333710", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00303700"),
+        ("71193", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00001180"),
+        ("117559", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00107540"),
+        ("656753", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00606740"),
+        ("472670", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00402640"),
+        ("605696", "SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00605680"),
+        ("145982", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00105980"),
+        ("726630", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00706600"),
+        ("535520", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00505500"),
+        ("131980", "STANDARD_RIGHTS_REQUIRED|0x00101980"),
+        ("84649", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00004640"),
+        ("793878", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00703840"),
+        ("691983", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00601980"),
+        ("673695", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00603680"),
+        ("46946", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00006940"),
+        ("84092", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00004080"),
+        ("208456", "SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00208440"),
+        ("395024", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00305000"),
+        ("839593", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00809580"),
+        ("282156", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00202140"),
+        ("728506", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00708500"),
+        ("405721", "SECTION_QUERY|SECTION_MAP_EXECUTE_EXPLICIT|0x00405700"),
+        ("412378", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00402340"),
+        ("190340", "STANDARD_RIGHTS_REQUIRED|0x00100340"),
+        ("647527", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00607500"),
+        ("556592", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00506580"),
+        ("17046", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00007040"),
+        ("706275", "SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00706240"),
+        ("353775", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00303740"),
+        ("850782", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00800780"),
+        ("606437", "SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00606400"),
+        ("511486", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00501480"),
+        ("59996", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00009980"),
+        ("712097", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00702080"),
+        ("319290", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00309280"),
+        ("728357", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00708340"),
+        ("274710", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00204700"),
+        ("536550", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00506540"),
+        ("732854", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00702840"),
+        ("400146", "SECTION_MAP_READ|SECTION_MAP_WRITE|0x00400140"),
+        ("559024", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00509000"),
+        ("956584", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00906580"),
+        ("28682", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00008680"),
+        ("552065", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00502040"),
+        ("573871", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00503840"),
+        ("762091", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00702080"),
+        ("731781", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00701780"),
+        ("357172", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00307140"),
+        ("607562", "SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00607540"),
+        ("137454", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00107440"),
+        ("210717", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00200700"),
+        ("623420", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00603400"),
+        ("509356", "SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00509340"),
+        ("84132", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00004100"),
+        ("180948", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00100940"),
+        ("763698", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00703680"),
+        ("78877", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00008840"),
+        ("593763", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00503740"),
+        ("596127", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00506100"),
+        ("722228", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00702200"),
+        ("164593", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00104580"),
+        ("706709", "SECTION_QUERY|SECTION_MAP_EXECUTE|0x00706700"),
+        ("550244", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00500240"),
+        ("753360", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00703340"),
+        ("99529", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00009500"),
+        ("305700", "0x00305700"),
+        ("350201", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00300200"),
+        ("481068", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00401040"),
+        ("341899", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00301880"),
+        ("46281", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00006280"),
+        ("599180", "STANDARD_RIGHTS_REQUIRED|0x00509180"),
+        ("647603", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00607600"),
+        ("330130", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00300100"),
+        ("391864", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00301840"),
+        ("189492", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00109480"),
+        ("547374", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00507340"),
+        ("633052", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00603040"),
+        ("661360", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00601340"),
+        ("75381", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00005380"),
+        ("233023", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00203000"),
+        ("179145", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00109140"),
+        ("361155", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00301140"),
+        ("498749", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00408740"),
+        ("615134", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00605100"),
+        ("50717", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00000700"),
+        ("304373", "SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00304340"),
+        ("952181", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00902180"),
+        ("353260", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00303240"),
+        ("804407", "SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00804400"),
+        ("888012", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00808000"),
+        ("239945", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00209940"),
+        ("629246", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00609240"),
+        ("213010", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00203000"),
+        ("822719", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00802700"),
+        ("421925", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00401900"),
+        ("102069", "SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00102040"),
+        ("234583", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00204580"),
+        ("442026", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00402000"),
+        ("534032", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00504000"),
+        ("676262", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00606240"),
+        ("80331", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00000300"),
+        ("975467", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00905440"),
+        ("403049", "SECTION_QUERY|SECTION_MAP_EXECUTE|0x00403040"),
+        ("22255", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00002240"),
+        ("553136", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00503100"),
+        ("380257", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00300240"),
+        ("438319", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00408300"),
+        ("779484", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00709480"),
+        ("868046", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00808040"),
+        ("265466", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00205440"),
+        ("647625", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00607600"),
+        ("727121", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE_EXPLICIT|0x00707100"),
+        ("15275", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00005240"),
+        ("830390", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00800380"),
+        ("499854", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00409840"),
+        ("560980", "STANDARD_RIGHTS_REQUIRED|0x00500980"),
+        ("116437", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00106400"),
+        ("629502", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00609500"),
+        ("253332", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00203300"),
+        ("601443", "SECTION_QUERY|SECTION_MAP_WRITE|0x00601440"),
+        ("306324", "SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00306300"),
+        ("427225", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00407200"),
+        ("658801", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00608800"),
+        ("854199", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00804180"),
+        ("280871", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00200840"),
+        ("188596", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00108580"),
+        ("159539", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00109500"),
+        ("266952", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00206940"),
+        ("450888", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00400880"),
+        ("871386", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00801380"),
+        ("462053", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00402040"),
+        ("173763", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00103740"),
+        ("397772", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00307740"),
+        ("767985", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00707980"),
+        ("281152", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00201140"),
+        ("866303", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00806300"),
+        ("841198", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00801180"),
+        ("96720", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00006700"),
+        ("750716", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00700700"),
+        ("376178", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00306140"),
+        ("543523", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00503500"),
+        ("490188", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00400180"),
+        ("609127", "SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00609100"),
+        ("266812", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00206800"),
+        ("414361", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE_EXPLICIT|0x00404340"),
+        ("2592", "SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00002580"),
+        ("1244", "SECTION_MAP_READ|0x00001240"),
+        ("342731", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00302700"),
+        ("256197", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00206180"),
+        ("846982", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00806980"),
+        ("474649", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00404640"),
+        ("269177", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00209140"),
+        ("388264", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00308240"),
+        ("823633", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00803600"),
+        ("696990", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00606980"),
+        ("599555", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00509540"),
+        ("436845", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00406840"),
+        ("284996", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00204980"),
+        ("292905", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00202900"),
+        ("238821", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE_EXPLICIT|0x00208800"),
+        ("906676", "SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00906640"),
+        ("105867", "SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00105840"),
+        ("531760", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00501740"),
+        ("420232", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00400200"),
+        ("248985", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00208980"),
+        ("336430", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00306400"),
+        ("22038", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00002000"),
+        ("279883", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00209880"),
+        ("369776", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00309740"),
+        ("135976", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00105940"),
+        ("144888", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00104880"),
+        ("734931", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00704900"),
+        ("339123", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00309100"),
+        ("3263", "SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00003240"),
+        ("255151", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00205140"),
+        ("525359", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00505340"),
+        ("492824", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00402800"),
+        ("794419", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00704400"),
+        ("584773", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00504740"),
+        ("552582", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00502580"),
+        ("980366", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00900340"),
+        ("747744", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00707740"),
+        ("808518", "SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00808500"),
+        ("306157", "SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00306140"),
+        ("343211", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00303200"),
+        ("514023", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00504000"),
+        ("470694", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00400680"),
+        ("901078", "SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00901040"),
+        ("244739", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00204700"),
+        ("329698", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00309680"),
+        ("393743", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00303740"),
+        ("160117", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00100100"),
+        ("321897", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00301880"),
+        ("35060", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00005040"),
+        ("567951", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00507940"),
+        ("982924", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00902900"),
+        ("318179", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00308140"),
+        ("711341", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00701340"),
+        ("606624", "SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00606600"),
+        ("575537", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00505500"),
+        ("599262", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00509240"),
+        ("508221", "SECTION_QUERY|SECTION_MAP_EXECUTE_EXPLICIT|0x00508200"),
+        ("529600", "STANDARD_RIGHTS_REQUIRED|0x00509600"),
+        ("315013", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00305000"),
+        ("462955", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00402940"),
+        ("668581", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00608580"),
+        ("803813", "SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00803800"),
+        ("115644", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00105640"),
+        ("390713", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00300700"),
+        ("137023", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00107000"),
+        ("965114", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00905100"),
+        ("569668", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00509640"),
+        ("455719", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00405700"),
+        ("605594", "SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00605580"),
+        ("154621", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE_EXPLICIT|0x00104600"),
+        ("872261", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE_EXPLICIT|0x00802240"),
+        ("616599", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00606580"),
+        ("874426", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00804400"),
+        ("128384", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00108380"),
+        ("13883", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00003880"),
+        ("676265", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00606240"),
+        ("756763", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00706740"),
+        ("642063", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00602040"),
+        ("560567", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00500540"),
+        ("613819", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00603800"),
+        ("860034", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00800000"),
+        ("828484", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00808480"),
+        ("250820", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00200800"),
+        ("114116", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00104100"),
+        ("955227", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00905200"),
+        ("255959", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00205940"),
+        ("598920", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00508900"),
+        ("539289", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00509280"),
+        ("654381", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00604380"),
+        ("175191", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00105180"),
+        ("28112", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00008100"),
+        ("6223", "SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00006200"),
+        ("182109", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00102100"),
+        ("777604", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00707600"),
+        ("877631", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00807600"),
+        ("391151", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00301140"),
+        ("610434", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00600400"),
+        ("297590", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00207580"),
+        ("399627", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00309600"),
+        ("668882", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00608880"),
+        ("149438", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00109400"),
+        ("816927", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00806900"),
+        ("422790", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00402780"),
+        ("566545", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00506540"),
+        ("711266", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00701240"),
+        ("541569", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00501540"),
+        ("72987", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00002980"),
+        ("605365", "SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00605340"),
+        ("925891", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00905880"),
+        ("470131", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00400100"),
+        ("331619", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00301600"),
+        ("134121", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE_EXPLICIT|0x00104100"),
+        ("443901", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00403900"),
+        ("673376", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00603340"),
+        ("41297", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00001280"),
+        ("546677", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00506640"),
+        ("337350", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00307340"),
+        ("570313", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00500300"),
+        ("453297", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00403280"),
+        ("936929", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00906900"),
+        ("17367", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00007340"),
+        ("139794", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00109780"),
+        ("540532", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00500500"),
+        ("612242", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00602240"),
+        ("733598", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00703580"),
+        ("605161", "SECTION_QUERY|SECTION_MAP_EXECUTE_EXPLICIT|0x00605140"),
+        ("466057", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00406040"),
+        ("981620", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00901600"),
+        ("834290", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00804280"),
+        ("387827", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00307800"),
+        ("472324", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00402300"),
+        ("925015", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00905000"),
+        ("306507", "SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00306500"),
+        ("479476", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00409440"),
+        ("310519", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00300500"),
+        ("553587", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00503580"),
+        ("822883", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00802880"),
+        ("823421", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE_EXPLICIT|0x00803400"),
+        ("357782", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00307780"),
+        ("472884", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00402880"),
+        ("452374", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00402340"),
+        ("43775", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00003740"),
+        ("289387", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00209380"),
+        ("271761", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE_EXPLICIT|0x00201740"),
+        ("204319", "SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00204300"),
+        ("951151", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00901140"),
+        ("702659", "SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00702640"),
+        ("497321", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE_EXPLICIT|0x00407300"),
+        ("10076", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00000040"),
+        ("322223", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00302200"),
+        ("188600", "STANDARD_RIGHTS_REQUIRED|0x00108600"),
+        ("661615", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00601600"),
+        ("728116", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00708100"),
+        ("734754", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00704740"),
+        ("113503", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00103500"),
+        ("754400", "STANDARD_RIGHTS_REQUIRED|0x00704400"),
+        ("258665", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00208640"),
+        ("420774", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00400740"),
+        ("139699", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00109680"),
+        ("834569", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00804540"),
+        ("354921", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE_EXPLICIT|0x00304900"),
+        ("938664", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00908640"),
+        ("484181", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00404180"),
+        ("82236", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00002200"),
+        ("204104", "SECTION_MAP_READ|0x00204100"),
+        ("257679", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00207640"),
+        ("514634", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00504600"),
+        ("130418", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00100400"),
+        ("48938", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00008900"),
+        ("826966", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00806940"),
+        ("285966", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00205940"),
+        ("941159", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00901140"),
+        ("264654", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00204640"),
+        ("911359", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00901340"),
+        ("871704", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00801700"),
+        ("562239", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00502200"),
+        ("765118", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00705100"),
+        ("787382", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00707380"),
+        ("445120", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00405100"),
+        ("912432", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00902400"),
+        ("145569", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00105540"),
+        ("534976", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00504940"),
+        ("625582", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00605580"),
+        ("772391", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00702380"),
+        ("655884", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00605880"),
+        ("846564", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00806540"),
+        ("59338", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00009300"),
+        ("570744", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00500740"),
+        ("920268", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00900240"),
+        ("597318", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00507300"),
+        ("217223", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00207200"),
+        ("200480", "0x00200480"),
+        ("779874", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00709840"),
+        ("440592", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00400580"),
+        ("620263", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00600240"),
+        ("692580", "STANDARD_RIGHTS_REQUIRED|0x00602580"),
+        ("885250", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00805240"),
+        ("50129", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00000100"),
+        ("828680", "STANDARD_RIGHTS_REQUIRED|0x00808680"),
+        ("787977", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00707940"),
+        ("9469", "SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00009440"),
+        ("490452", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00400440"),
+        ("362161", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE_EXPLICIT|0x00302140"),
+        ("923830", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00903800"),
+        ("650114", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00600100"),
+        ("227893", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00207880"),
+        ("248789", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00208780"),
+        ("71250", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00001240"),
+        ("3238", "SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00003200"),
+        ("321840", "STANDARD_RIGHTS_REQUIRED|0x00301840"),
+        ("871440", "STANDARD_RIGHTS_REQUIRED|0x00801440"),
+        ("31057", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00001040"),
+        ("35876", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00005840"),
+        ("266807", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00206800"),
+        ("665040", "STANDARD_RIGHTS_REQUIRED|0x00605040"),
+        ("367752", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00307740"),
+        ("905625", "SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00905600"),
+        ("27266", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00007240"),
+        ("807151", "SECTION_QUERY|SECTION_EXTEND_SIZE|0x00807140"),
+        ("809481", "SECTION_QUERY|0x00809480"),
+        ("228394", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00208380"),
+        ("18877", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00008840"),
+        ("852375", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00802340"),
+        ("544365", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00504340"),
+        ("240768", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00200740"),
+        ("586178", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00506140"),
+        ("69720", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00009700"),
+        ("151339", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00101300"),
+        ("379885", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00309880"),
+        ("156695", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00106680"),
+        ("397327", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00307300"),
+        ("365443", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00305440"),
+        ("320807", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00300800"),
+        ("632203", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00602200"),
+        ("268054", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00208040"),
+        ("638995", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00608980"),
+        ("369989", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00309980"),
+        ("627935", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00607900"),
+        ("902955", "SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00902940"),
+        ("980787", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00900780"),
+        ("330893", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00300880"),
+        ("655161", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE_EXPLICIT|0x00605140"),
+        ("701889", "SECTION_QUERY|SECTION_MAP_EXECUTE|0x00701880"),
+        ("274924", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00204900"),
+        ("648144", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00608140"),
+        ("496070", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00406040"),
+        ("734853", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00704840"),
+        ("238877", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00208840"),
+        ("227755", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00207740"),
+        ("708778", "SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00708740"),
+        ("346866", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00306840"),
+        ("529267", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00509240"),
+        ("94451", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00004440"),
+        ("127100", "STANDARD_RIGHTS_REQUIRED|0x00107100"),
+        ("981622", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00901600"),
+        ("689798", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00609780"),
+        ("252237", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00202200"),
+        ("184484", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00104480"),
+        ("442532", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00402500"),
+        ("25347", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00005340"),
+        ("321781", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00301780"),
+        ("85298", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00005280"),
+        ("601847", "SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00601840"),
+        ("456448", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00406440"),
+        ("56536", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00006500"),
+        ("407621", "SECTION_QUERY|SECTION_MAP_EXECUTE_EXPLICIT|0x00407600"),
+        ("714410", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00704400"),
+        ("460898", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00400880"),
+        ("563851", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00503840"),
+        ("84809", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00004800"),
+        ("629457", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00609440"),
+        ("641657", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00601640"),
+        ("313652", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00303640"),
+        ("612490", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00602480"),
+        ("646800", "STANDARD_RIGHTS_REQUIRED|0x00606800"),
+        ("31208", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00001200"),
+        ("762440", "STANDARD_RIGHTS_REQUIRED|0x00702440"),
+        ("578557", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00508540"),
+        ("98945", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00008940"),
+        ("6986", "SECTION_MAP_READ|SECTION_MAP_WRITE|0x00006980"),
+        ("189726", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00109700"),
+        ("911413", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00901400"),
+        ("936497", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00906480"),
+        ("490951", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00400940"),
+        ("8990", "SECTION_EXTEND_SIZE|0x00008980"),
+        ("589530", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00509500"),
+        ("319138", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00309100"),
+        ("660146", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00600140"),
+        ("456856", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00406840"),
+        ("589674", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00509640"),
+        ("362014", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00302000"),
+        ("316050", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00306040"),
+        ("917313", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00907300"),
+        ("714517", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00704500"),
+        ("616415", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00606400"),
+        ("237699", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00207680"),
+        ("864323", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00804300"),
+        ("701074", "SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00701040"),
+        ("717296", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00707280"),
+        ("415643", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00405640"),
+        ("952836", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00902800"),
+        ("708270", "SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00708240"),
+        ("611521", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE_EXPLICIT|0x00601500"),
+        ("357512", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00307500"),
+        ("568398", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00508380"),
+        ("759098", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00709080"),
+        ("666420", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00606400"),
+        ("746844", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00706840"),
+        ("268983", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00208980"),
+        ("909794", "SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00909780"),
+        ("537247", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00507240"),
+        ("963269", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00903240"),
+        ("152305", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00102300"),
+        ("347021", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE_EXPLICIT|0x00307000"),
+        ("114995", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00104980"),
+        ("272288", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00202280"),
+        ("715516", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00705500"),
+        ("618640", "STANDARD_RIGHTS_REQUIRED|0x00608640"),
+        ("777402", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00707400"),
+        ("477818", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00407800"),
+        ("56953", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00006940"),
+        ("893866", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00803840"),
+        ("477606", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00407600"),
+        ("164852", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00104840"),
+        ("96298", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00006280"),
+        ("645544", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00605540"),
+        ("699416", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00609400"),
+        ("399890", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00309880"),
+        ("285336", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00205300"),
+        ("643666", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00603640"),
+        ("94971", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00004940"),
+        ("594960", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00504940"),
+        ("65349", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00005340"),
+        ("806696", "SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00806680"),
+        ("141852", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00101840"),
+        ("25514", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00005500"),
+        ("927173", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00907140"),
+        ("884420", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00804400"),
+        ("502883", "SECTION_QUERY|SECTION_MAP_WRITE|0x00502880"),
+        ("213857", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00203840"),
+        ("470342", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00400340"),
+        ("756332", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00706300"),
+        ("630835", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00600800"),
+        ("21328", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00001300"),
+        ("927267", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00907240"),
+        ("200178", "SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00200140"),
+        ("529810", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00509800"),
+        ("400335", "SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00400300"),
+        ("42726", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00002700"),
+        ("282170", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00202140"),
+        ("385705", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00305700"),
+        ("765719", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00705700"),
+        ("294316", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00204300"),
+        ("224460", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00204440"),
+        ("507896", "SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00507880"),
+        ("72180", "STANDARD_RIGHTS_REQUIRED|0x00002180"),
+        ("846526", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00806500"),
+        ("311229", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00301200"),
+        ("440763", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00400740"),
+        ("396071", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00306040"),
+        ("194352", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00104340"),
+        ("857270", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00807240"),
+        ("253535", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00203500"),
+        ("775044", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00705040"),
+        ("46009", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00006000"),
+        ("607949", "SECTION_QUERY|SECTION_MAP_EXECUTE|0x00607940"),
+        ("619536", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00609500"),
+        ("83758", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00003740"),
+        ("974046", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00904040"),
+        ("301949", "SECTION_QUERY|SECTION_MAP_EXECUTE|0x00301940"),
+        ("58757", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00008740"),
+        ("228590", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00208580"),
+        ("550330", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00500300"),
+        ("781468", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00701440"),
+        ("508801", "SECTION_QUERY|0x00508800"),
+        ("56797", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00006780"),
+        ("525456", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00505440"),
+        ("560902", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00500900"),
+        ("194375", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00104340"),
+        ("14840", "STANDARD_RIGHTS_REQUIRED|0x00004840"),
+        ("136146", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00106140"),
+        ("853076", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00803040"),
+        ("499068", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00409040"),
+        ("250246", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00200240"),
+        ("934665", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00904640"),
+        ("398930", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00308900"),
+        ("939012", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00909000"),
+        ("497207", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00407200"),
+        ("361367", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00301340"),
+        ("651986", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00601980"),
+        ("518644", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00508640"),
+        ("165620", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00105600"),
+        ("755825", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00705800"),
+        ("205832", "SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00205800"),
+        ("576690", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00506680"),
+        ("399382", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00309380"),
+        ("932611", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00902600"),
+        ("896869", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00806840"),
+        ("616439", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00606400"),
+        ("13831", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00003800"),
+        ("235619", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00205600"),
+        ("735588", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00705580"),
+        ("890653", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00800640"),
+        ("89974", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00009940"),
+        ("117502", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00107500"),
+        ("203886", "SECTION_MAP_READ|SECTION_MAP_WRITE|0x00203880"),
+        ("559437", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00509400"),
+        ("66694", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00006680"),
+        ("263197", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00203180"),
+        ("656281", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00606280"),
+        ("301124", "SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00301100"),
+        ("752922", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00702900"),
+        ("54438", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00004400"),
+        ("641686", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00601680"),
+        ("443897", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00403880"),
+        ("476968", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00406940"),
+        ("864269", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00804240"),
+        ("893998", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00803980"),
+        ("928721", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE_EXPLICIT|0x00908700"),
+        ("339216", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00309200"),
+        ("465646", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00405640"),
+        ("953975", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00903940"),
+        ("713817", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00703800"),
+        ("915520", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00905500"),
+        ("344699", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00304680"),
+        ("78288", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00008280"),
+        ("789649", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00709640"),
+        ("258609", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00208600"),
+        ("311686", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00301680"),
+        ("803954", "SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00803940"),
+        ("198095", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00108080"),
+        ("806278", "SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00806240"),
+        ("602112", "SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00602100"),
+        ("50849", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00000840"),
+        ("437019", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00407000"),
+        ("828643", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00808640"),
+        ("886199", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00806180"),
+        ("946299", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00906280"),
+        ("242361", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE_EXPLICIT|0x00202340"),
+        ("791173", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00701140"),
+        ("536942", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00506940"),
+        ("118017", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00108000"),
+        ("637243", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00607240"),
+        ("501732", "SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00501700"),
+        ("373798", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00303780"),
+        ("765500", "STANDARD_RIGHTS_REQUIRED|0x00705500"),
+        ("598466", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00508440"),
+        ("864995", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00804980"),
+        ("829422", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00809400"),
+        ("573904", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00503900"),
+        ("335168", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00305140"),
+        ("39538", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00009500"),
+        ("100693", "SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00100680"),
+        ("708818", "SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00708800"),
+        ("895626", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00805600"),
+        ("667282", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00607280"),
+        ("127546", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00107540"),
+        ("873990", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|0x00803980"),
+        ("785211", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00705200"),
+        ("435991", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00405980"),
+        ("899539", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00809500"),
+        ("409895", "SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00409880"),
+        ("766558", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00706540"),
+        ("579544", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00509540"),
+        ("605781", "SECTION_QUERY|0x00605780"),
+        ("745413", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00705400"),
+        ("346035", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00306000"),
+        ("493930", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00403900"),
+        ("504340", "0x00504340"),
+        ("800431", "SECTION_QUERY|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00800400"),
+        ("864009", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00804000"),
+        ("211733", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00201700"),
+        ("911083", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00901080"),
+        ("767195", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00707180"),
+        ("410185", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00400180"),
+        ("868022", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00808000"),
+        ("358751", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00308740"),
+        ("725165", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00705140"),
+        ("454811", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00404800"),
+        ("175105", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00105100"),
+        ("28640", "STANDARD_RIGHTS_REQUIRED|0x00008640"),
+        ("590963", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00500940"),
+        ("572992", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00502980"),
+        ("352746", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00302740"),
+        ("508654", "SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00508640"),
+        ("95880", "STANDARD_RIGHTS_REQUIRED|0x00005880"),
+        ("415912", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00405900"),
+        ("211112", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00201100"),
+        ("102941", "SECTION_QUERY|0x00102940"),
+        ("975730", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00905700"),
+        ("197954", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00107940"),
+        ("122462", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00102440"),
+        ("716229", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00706200"),
+        ("287226", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00207200"),
+        ("803139", "SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00803100"),
+        ("627093", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00607080"),
+        ("885546", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00805540"),
+        ("715076", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00705040"),
+        ("124405", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00104400"),
+        ("442485", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00402480"),
+        ("275968", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00205940"),
+        ("114517", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00104500"),
+        ("493851", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00403840"),
+        ("532181", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00502180"),
+        ("832124", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00802100"),
+        ("952684", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00902680"),
+        ("193518", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00103500"),
+        ("631844", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00601840"),
+        ("747979", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00707940"),
+        ("327864", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00307840"),
+        ("611902", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00601900"),
+        ("980156", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00900140"),
+        ("530958", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00500940"),
+        ("334632", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00304600"),
+        ("19671", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00009640"),
+        ("79959", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00009940"),
+        ("83657", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00003640"),
+        ("626987", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00606980"),
+        ("322770", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00302740"),
+        ("1689", "SECTION_QUERY|SECTION_MAP_EXECUTE|0x00001680"),
+        ("888165", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00808140"),
+        ("313656", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00303640"),
+        ("805845", "SECTION_QUERY|SECTION_MAP_READ|0x00805840"),
+        ("888820", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00808800"),
+        ("216399", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00206380"),
+        ("835330", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00805300"),
+        ("69177", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00009140"),
+        ("208390", "SECTION_EXTEND_SIZE|0x00208380"),
+        ("142305", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00102300"),
+        ("22064", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00002040"),
+        ("89960", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00009940"),
+        ("153224", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00103200"),
+        ("968202", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00908200"),
+        ("678034", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00608000"),
+        ("244493", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00204480"),
+        ("963736", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00903700"),
+        ("504926", "SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00504900"),
+        ("353269", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00303240"),
+        ("432761", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE_EXPLICIT|0x00402740"),
+        ("126203", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00106200"),
+        ("668087", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00608080"),
+        ("116458", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00106440"),
+        ("263707", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00203700"),
+        ("879058", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00809040"),
+        ("712489", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00702480"),
+        ("161883", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00101880"),
+        ("493919", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00403900"),
+        ("651", "SECTION_QUERY|SECTION_EXTEND_SIZE|0x00000640"),
+        ("329692", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00309680"),
+        ("507849", "SECTION_QUERY|SECTION_MAP_EXECUTE|0x00507840"),
+        ("486874", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00406840"),
+        ("801538", "SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00801500"),
+        ("782095", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00702080"),
+        ("542221", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE_EXPLICIT|0x00502200"),
+        ("817583", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00807580"),
+        ("195607", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00105600"),
+        ("784377", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00704340"),
+        ("541704", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00501700"),
+        ("197892", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00107880"),
+        ("477581", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00407580"),
+        ("661085", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00601080"),
+        ("895339", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00805300"),
+        ("120509", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00100500"),
+        ("561533", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00501500"),
+        ("147863", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00107840"),
+        ("701718", "SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00701700"),
+        ("908955", "SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00908940"),
+        ("385452", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00305440"),
+        ("670431", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00600400"),
+        ("958609", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00908600"),
+        ("483394", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00403380"),
+        ("261525", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00201500"),
+        ("537931", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00507900"),
+        ("561256", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00501240"),
+        ("724534", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00704500"),
+        ("766445", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00706440"),
+        ("277795", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00207780"),
+        ("185676", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00105640"),
+        ("417060", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00407040"),
+        ("490437", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00400400"),
+        ("302964", "SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00302940"),
+        ("240485", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00200480"),
+        ("852879", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00802840"),
+        ("971592", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00901580"),
+        ("850265", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00800240"),
+        ("117597", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00107580"),
+        ("367345", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00307340"),
+        ("170668", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_MAP_EXECUTE_EXPLICIT|0x00100640"),
+        ("948898", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00908880"),
+        ("7094", "SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00007080"),
+        ("626489", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00606480"),
+        ("775104", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|0x00705100"),
+        ("392543", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00302540"),
+        ("962460", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00902440"),
+        ("820856", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00800840"),
+        ("590723", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00500700"),
+        ("787687", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00707680"),
+        ("78523", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00008500"),
+        ("878306", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00808300"),
+        ("387085", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00307080"),
+        ("436271", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00406240"),
+        ("403821", "SECTION_QUERY|SECTION_MAP_EXECUTE_EXPLICIT|0x00403800"),
+        ("738541", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00708540"),
+        ("424503", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00404500"),
+        ("806751", "SECTION_QUERY|SECTION_EXTEND_SIZE|0x00806740"),
+        ("51506", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00001500"),
+        ("760042", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_WRITE|0x00700040"),
+        ("973823", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00903800"),
+        ("247303", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00207300"),
+        ("9720", "SECTION_MAP_EXECUTE_EXPLICIT|0x00009700"),
+        ("812189", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00802180"),
+        ("115685", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|0x00105680"),
+        ("542339", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00502300"),
+        ("238176", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00208140"),
+        ("314286", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00304280"),
+        ("846576", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00806540"),
+        ("300106", "SECTION_MAP_READ|SECTION_MAP_WRITE|0x00300100"),
+        ("91101", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00001100"),
+        ("547001", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|0x00507000"),
+        ("785283", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00705280"),
+        ("962591", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_EXTEND_SIZE|0x00902580"),
+        ("64023", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_MAP_EXECUTE_EXPLICIT|0x00004000"),
+        ("921424", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00901400"),
+        ("202590", "SECTION_EXTEND_SIZE|0x00202580"),
+        ("142575", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00102540"),
+        ("328521", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE_EXPLICIT|0x00308500"),
+        ("545888", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00505880"),
+        ("407432", "SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00407400"),
+        ("981625", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00901600"),
+        ("697686", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00607680"),
+        ("838686", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00808680"),
+        ("206108", "SECTION_MAP_EXECUTE|0x00206100"),
+        ("859180", "STANDARD_RIGHTS_REQUIRED|0x00809180"),
+        ("566457", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00506440"),
+        ("61416", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00001400"),
+        ("158373", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00108340"),
+        ("863530", "STANDARD_RIGHTS_REQUIRED|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00803500"),
+        ("878093", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00808080"),
+        ("435574", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00405540"),
+        ("617114", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00607100"),
+        ("854589", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|0x00804580"),
+        ("827739", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00807700"),
+        ("228308", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|0x00208300"),
+        ("902738", "SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00902700"),
+        ("84883", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00004880"),
+        ("512499", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00502480"),
+        ("197157", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00107140"),
+        ("642840", "STANDARD_RIGHTS_REQUIRED|0x00602840"),
+        ("451364", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00401340"),
+        ("61987", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_WRITE|0x00001980"),
+        ("954014", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_EXTEND_SIZE|0x00904000"),
+        ("230559", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00200540"),
+        ("756096", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|0x00706080"),
+        ("486976", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_READ|SECTION_MAP_WRITE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00406940"),
+        ("72379", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00002340"),
+        ("634165", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_READ|SECTION_MAP_EXECUTE_EXPLICIT|0x00604140"),
+        ("825878", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|SECTION_MAP_EXECUTE_EXPLICIT|0x00805840"),
+        ("610743", "STANDARD_RIGHTS_REQUIRED|SECTION_QUERY|SECTION_MAP_WRITE|0x00600740"),
+        ("453220", "STANDARD_RIGHTS_REQUIRED|SECTION_MAP_EXECUTE_EXPLICIT|0x00403200"),
+        ("806299", "SECTION_QUERY|SECTION_MAP_EXECUTE|SECTION_EXTEND_SIZE|0x00806280"),
+    ]
+
+
+def api_name_shgetfolderpathw_arg_name_folder_data():
+    return [
+        ("2048", "CSIDL_FLAG_DONT_UNEXPAND|0x00000048"),
+        ("2049", "CSIDL_FLAG_DONT_UNEXPAND|0x00000049"),
+        ("2050", "CSIDL_FLAG_DONT_UNEXPAND|0x00000050"),
+        ("2051", "CSIDL_FLAG_DONT_UNEXPAND|0x00000051"),
+        ("2052", "CSIDL_FLAG_DONT_UNEXPAND|0x00000052"),
+        ("2053", "CSIDL_FLAG_DONT_UNEXPAND|0x00000053"),
+        ("2054", "CSIDL_FLAG_DONT_UNEXPAND|0x00000054"),
+        ("2055", "CSIDL_FLAG_DONT_UNEXPAND|0x00000055"),
+        ("2056", "CSIDL_FLAG_DONT_UNEXPAND|0x00000056"),
+        ("2057", "CSIDL_FLAG_DONT_UNEXPAND|0x00000057"),
+        ("2058", "CSIDL_FLAG_DONT_UNEXPAND|0x00000058"),
+        ("2059", "CSIDL_FLAG_DONT_UNEXPAND|0x00000059"),
+        ("2060", "CSIDL_FLAG_DONT_UNEXPAND|0x00000060"),
+        ("2061", "CSIDL_FLAG_DONT_UNEXPAND|0x00000061"),
+        ("2062", "CSIDL_FLAG_DONT_UNEXPAND|0x00000062"),
+        ("2063", "CSIDL_FLAG_DONT_UNEXPAND|0x00000063"),
+        ("2064", "CSIDL_FLAG_DONT_UNEXPAND|0x00000064"),
+        ("2065", "CSIDL_FLAG_DONT_UNEXPAND|0x00000065"),
+        ("2066", "CSIDL_FLAG_DONT_UNEXPAND|0x00000066"),
+        ("2067", "CSIDL_FLAG_DONT_UNEXPAND|0x00000067"),
+        ("2068", "CSIDL_FLAG_DONT_UNEXPAND|0x00000068"),
+        ("2069", "CSIDL_FLAG_DONT_UNEXPAND|0x00000069"),
+        ("2070", "CSIDL_FLAG_DONT_UNEXPAND|0x00000070"),
+        ("2071", "CSIDL_FLAG_DONT_UNEXPAND|0x00000071"),
+        ("2072", "CSIDL_FLAG_DONT_UNEXPAND|0x00000072"),
+        ("2073", "CSIDL_FLAG_DONT_UNEXPAND|0x00000073"),
+        ("2074", "CSIDL_FLAG_DONT_UNEXPAND|0x00000074"),
+        ("2075", "CSIDL_FLAG_DONT_UNEXPAND|0x00000075"),
+        ("2076", "CSIDL_FLAG_DONT_UNEXPAND|0x00000076"),
+        ("2077", "CSIDL_FLAG_DONT_UNEXPAND|0x00000077"),
+        ("2078", "CSIDL_FLAG_DONT_UNEXPAND|0x00000078"),
+        ("2079", "CSIDL_FLAG_DONT_UNEXPAND|0x00000079"),
+        ("2080", "CSIDL_FLAG_DONT_UNEXPAND|0x00000080"),
+        ("2081", "CSIDL_FLAG_DONT_UNEXPAND|0x00000081"),
+        ("2082", "CSIDL_FLAG_DONT_UNEXPAND|0x00000082"),
+        ("2083", "CSIDL_FLAG_DONT_UNEXPAND|0x00000083"),
+        ("2084", "CSIDL_FLAG_DONT_UNEXPAND|0x00000084"),
+        ("2085", "CSIDL_FLAG_DONT_UNEXPAND|0x00000085"),
+        ("2086", "CSIDL_FLAG_DONT_UNEXPAND|0x00000086"),
+        ("2087", "CSIDL_FLAG_DONT_UNEXPAND|0x00000087"),
+        ("2088", "CSIDL_FLAG_DONT_UNEXPAND|0x00000088"),
+        ("2089", "CSIDL_FLAG_DONT_UNEXPAND|0x00000089"),
+        ("2090", "CSIDL_FLAG_DONT_UNEXPAND|0x00000090"),
+        ("2091", "CSIDL_FLAG_DONT_UNEXPAND|0x00000091"),
+        ("2092", "CSIDL_FLAG_DONT_UNEXPAND|0x00000092"),
+        ("2093", "CSIDL_FLAG_DONT_UNEXPAND|0x00000093"),
+        ("2094", "CSIDL_FLAG_DONT_UNEXPAND|0x00000094"),
+        ("2095", "CSIDL_FLAG_DONT_UNEXPAND|0x00000095"),
+        ("2096", "CSIDL_FLAG_DONT_UNEXPAND|0x00000096"),
+        ("2097", "CSIDL_FLAG_DONT_UNEXPAND|0x00000097"),
+        ("2098", "CSIDL_FLAG_DONT_UNEXPAND|0x00000098"),
+        ("2099", "CSIDL_FLAG_DONT_UNEXPAND|0x00000099"),
+        ("2100", "CSIDL_FLAG_DONT_UNEXPAND|0x00000100"),
+        ("2101", "CSIDL_FLAG_DONT_UNEXPAND|0x00000101"),
+        ("2102", "CSIDL_FLAG_DONT_UNEXPAND|0x00000102"),
+        ("2103", "CSIDL_FLAG_DONT_UNEXPAND|0x00000103"),
+        ("2104", "CSIDL_FLAG_DONT_UNEXPAND|0x00000104"),
+        ("2105", "CSIDL_FLAG_DONT_UNEXPAND|0x00000105"),
+        ("2106", "CSIDL_FLAG_DONT_UNEXPAND|0x00000106"),
+        ("2107", "CSIDL_FLAG_DONT_UNEXPAND|0x00000107"),
+        ("2108", "CSIDL_FLAG_DONT_UNEXPAND|0x00000108"),
+        ("2109", "CSIDL_FLAG_DONT_UNEXPAND|0x00000109"),
+        ("2110", "CSIDL_FLAG_DONT_UNEXPAND|0x00000110"),
+        ("2111", "CSIDL_FLAG_DONT_UNEXPAND|0x00000111"),
+        ("2112", "CSIDL_FLAG_DONT_UNEXPAND|0x00000112"),
+        ("2113", "CSIDL_FLAG_DONT_UNEXPAND|0x00000113"),
+        ("2114", "CSIDL_FLAG_DONT_UNEXPAND|0x00000114"),
+        ("2115", "CSIDL_FLAG_DONT_UNEXPAND|0x00000115"),
+        ("2116", "CSIDL_FLAG_DONT_UNEXPAND|0x00000116"),
+        ("2117", "CSIDL_FLAG_DONT_UNEXPAND|0x00000117"),
+        ("2118", "CSIDL_FLAG_DONT_UNEXPAND|0x00000118"),
+        ("2119", "CSIDL_FLAG_DONT_UNEXPAND|0x00000119"),
+        ("2120", "CSIDL_FLAG_DONT_UNEXPAND|0x00000120"),
+        ("2121", "CSIDL_FLAG_DONT_UNEXPAND|0x00000121"),
+        ("2122", "CSIDL_FLAG_DONT_UNEXPAND|0x00000122"),
+        ("2123", "CSIDL_FLAG_DONT_UNEXPAND|0x00000123"),
+        ("2124", "CSIDL_FLAG_DONT_UNEXPAND|0x00000124"),
+        ("2125", "CSIDL_FLAG_DONT_UNEXPAND|0x00000125"),
+        ("2126", "CSIDL_FLAG_DONT_UNEXPAND|0x00000126"),
+        ("2127", "CSIDL_FLAG_DONT_UNEXPAND|0x00000127"),
+        ("2128", "CSIDL_FLAG_DONT_UNEXPAND|0x00000128"),
+        ("2129", "CSIDL_FLAG_DONT_UNEXPAND|0x00000129"),
+        ("2130", "CSIDL_FLAG_DONT_UNEXPAND|0x00000130"),
+        ("2131", "CSIDL_FLAG_DONT_UNEXPAND|0x00000131"),
+        ("2132", "CSIDL_FLAG_DONT_UNEXPAND|0x00000132"),
+        ("2133", "CSIDL_FLAG_DONT_UNEXPAND|0x00000133"),
+        ("2134", "CSIDL_FLAG_DONT_UNEXPAND|0x00000134"),
+        ("2135", "CSIDL_FLAG_DONT_UNEXPAND|0x00000135"),
+        ("2136", "CSIDL_FLAG_DONT_UNEXPAND|0x00000136"),
+        ("2137", "CSIDL_FLAG_DONT_UNEXPAND|0x00000137"),
+        ("2138", "CSIDL_FLAG_DONT_UNEXPAND|0x00000138"),
+        ("2139", "CSIDL_FLAG_DONT_UNEXPAND|0x00000139"),
+        ("2140", "CSIDL_FLAG_DONT_UNEXPAND|0x00000140"),
+        ("2141", "CSIDL_FLAG_DONT_UNEXPAND|0x00000141"),
+        ("2142", "CSIDL_FLAG_DONT_UNEXPAND|0x00000142"),
+        ("2143", "CSIDL_FLAG_DONT_UNEXPAND|0x00000143"),
+        ("2144", "CSIDL_FLAG_DONT_UNEXPAND|0x00000144"),
+        ("2145", "CSIDL_FLAG_DONT_UNEXPAND|0x00000145"),
+        ("2146", "CSIDL_FLAG_DONT_UNEXPAND|0x00000146"),
+        ("2147", "CSIDL_FLAG_DONT_UNEXPAND|0x00000147"),
+        ("2148", "CSIDL_FLAG_DONT_UNEXPAND|0x00000148"),
+        ("2149", "CSIDL_FLAG_DONT_UNEXPAND|0x00000149"),
+        ("2150", "CSIDL_FLAG_DONT_UNEXPAND|0x00000150"),
+        ("2151", "CSIDL_FLAG_DONT_UNEXPAND|0x00000151"),
+        ("2152", "CSIDL_FLAG_DONT_UNEXPAND|0x00000152"),
+        ("2153", "CSIDL_FLAG_DONT_UNEXPAND|0x00000153"),
+        ("2154", "CSIDL_FLAG_DONT_UNEXPAND|0x00000154"),
+        ("2155", "CSIDL_FLAG_DONT_UNEXPAND|0x00000155"),
+        ("2156", "CSIDL_FLAG_DONT_UNEXPAND|0x00000156"),
+        ("2157", "CSIDL_FLAG_DONT_UNEXPAND|0x00000157"),
+        ("2158", "CSIDL_FLAG_DONT_UNEXPAND|0x00000158"),
+        ("2159", "CSIDL_FLAG_DONT_UNEXPAND|0x00000159"),
+        ("2160", "CSIDL_FLAG_DONT_UNEXPAND|0x00000160"),
+        ("2161", "CSIDL_FLAG_DONT_UNEXPAND|0x00000161"),
+        ("2162", "CSIDL_FLAG_DONT_UNEXPAND|0x00000162"),
+        ("2163", "CSIDL_FLAG_DONT_UNEXPAND|0x00000163"),
+        ("2164", "CSIDL_FLAG_DONT_UNEXPAND|0x00000164"),
+        ("2165", "CSIDL_FLAG_DONT_UNEXPAND|0x00000165"),
+        ("2166", "CSIDL_FLAG_DONT_UNEXPAND|0x00000166"),
+        ("2167", "CSIDL_FLAG_DONT_UNEXPAND|0x00000167"),
+        ("2168", "CSIDL_FLAG_DONT_UNEXPAND|0x00000168"),
+        ("2169", "CSIDL_FLAG_DONT_UNEXPAND|0x00000169"),
+        ("2170", "CSIDL_FLAG_DONT_UNEXPAND|0x00000170"),
+        ("2171", "CSIDL_FLAG_DONT_UNEXPAND|0x00000171"),
+        ("2172", "CSIDL_FLAG_DONT_UNEXPAND|0x00000172"),
+        ("2173", "CSIDL_FLAG_DONT_UNEXPAND|0x00000173"),
+        ("2174", "CSIDL_FLAG_DONT_UNEXPAND|0x00000174"),
+        ("2175", "CSIDL_FLAG_DONT_UNEXPAND|0x00000175"),
+        ("2176", "CSIDL_FLAG_DONT_UNEXPAND|0x00000176"),
+        ("2177", "CSIDL_FLAG_DONT_UNEXPAND|0x00000177"),
+        ("2178", "CSIDL_FLAG_DONT_UNEXPAND|0x00000178"),
+        ("2179", "CSIDL_FLAG_DONT_UNEXPAND|0x00000179"),
+        ("2180", "CSIDL_FLAG_DONT_UNEXPAND|0x00000180"),
+        ("2181", "CSIDL_FLAG_DONT_UNEXPAND|0x00000181"),
+        ("2182", "CSIDL_FLAG_DONT_UNEXPAND|0x00000182"),
+        ("2183", "CSIDL_FLAG_DONT_UNEXPAND|0x00000183"),
+        ("2184", "CSIDL_FLAG_DONT_UNEXPAND|0x00000184"),
+        ("2185", "CSIDL_FLAG_DONT_UNEXPAND|0x00000185"),
+        ("2186", "CSIDL_FLAG_DONT_UNEXPAND|0x00000186"),
+        ("2187", "CSIDL_FLAG_DONT_UNEXPAND|0x00000187"),
+        ("2188", "CSIDL_FLAG_DONT_UNEXPAND|0x00000188"),
+        ("2189", "CSIDL_FLAG_DONT_UNEXPAND|0x00000189"),
+        ("2190", "CSIDL_FLAG_DONT_UNEXPAND|0x00000190"),
+        ("2191", "CSIDL_FLAG_DONT_UNEXPAND|0x00000191"),
+        ("2192", "CSIDL_FLAG_DONT_UNEXPAND|0x00000192"),
+        ("2193", "CSIDL_FLAG_DONT_UNEXPAND|0x00000193"),
+        ("2194", "CSIDL_FLAG_DONT_UNEXPAND|0x00000194"),
+        ("2195", "CSIDL_FLAG_DONT_UNEXPAND|0x00000195"),
+        ("2196", "CSIDL_FLAG_DONT_UNEXPAND|0x00000196"),
+        ("2197", "CSIDL_FLAG_DONT_UNEXPAND|0x00000197"),
+        ("2198", "CSIDL_FLAG_DONT_UNEXPAND|0x00000198"),
+        ("2199", "CSIDL_FLAG_DONT_UNEXPAND|0x00000199"),
+        ("2200", "CSIDL_FLAG_DONT_UNEXPAND|0x00000200"),
+        ("2201", "CSIDL_FLAG_DONT_UNEXPAND|0x00000201"),
+        ("2202", "CSIDL_FLAG_DONT_UNEXPAND|0x00000202"),
+        ("2203", "CSIDL_FLAG_DONT_UNEXPAND|0x00000203"),
+        ("2204", "CSIDL_FLAG_DONT_UNEXPAND|0x00000204"),
+        ("2205", "CSIDL_FLAG_DONT_UNEXPAND|0x00000205"),
+        ("2206", "CSIDL_FLAG_DONT_UNEXPAND|0x00000206"),
+        ("2207", "CSIDL_FLAG_DONT_UNEXPAND|0x00000207"),
+        ("2208", "CSIDL_FLAG_DONT_UNEXPAND|0x00000208"),
+        ("2209", "CSIDL_FLAG_DONT_UNEXPAND|0x00000209"),
+        ("2210", "CSIDL_FLAG_DONT_UNEXPAND|0x00000210"),
+        ("2211", "CSIDL_FLAG_DONT_UNEXPAND|0x00000211"),
+        ("2212", "CSIDL_FLAG_DONT_UNEXPAND|0x00000212"),
+        ("2213", "CSIDL_FLAG_DONT_UNEXPAND|0x00000213"),
+        ("2214", "CSIDL_FLAG_DONT_UNEXPAND|0x00000214"),
+        ("2215", "CSIDL_FLAG_DONT_UNEXPAND|0x00000215"),
+        ("2216", "CSIDL_FLAG_DONT_UNEXPAND|0x00000216"),
+        ("2217", "CSIDL_FLAG_DONT_UNEXPAND|0x00000217"),
+        ("2218", "CSIDL_FLAG_DONT_UNEXPAND|0x00000218"),
+        ("2219", "CSIDL_FLAG_DONT_UNEXPAND|0x00000219"),
+        ("2220", "CSIDL_FLAG_DONT_UNEXPAND|0x00000220"),
+        ("2221", "CSIDL_FLAG_DONT_UNEXPAND|0x00000221"),
+        ("2222", "CSIDL_FLAG_DONT_UNEXPAND|0x00000222"),
+        ("2223", "CSIDL_FLAG_DONT_UNEXPAND|0x00000223"),
+        ("2224", "CSIDL_FLAG_DONT_UNEXPAND|0x00000224"),
+        ("2225", "CSIDL_FLAG_DONT_UNEXPAND|0x00000225"),
+        ("2226", "CSIDL_FLAG_DONT_UNEXPAND|0x00000226"),
+        ("2227", "CSIDL_FLAG_DONT_UNEXPAND|0x00000227"),
+        ("2228", "CSIDL_FLAG_DONT_UNEXPAND|0x00000228"),
+        ("2229", "CSIDL_FLAG_DONT_UNEXPAND|0x00000229"),
+        ("2230", "CSIDL_FLAG_DONT_UNEXPAND|0x00000230"),
+        ("2231", "CSIDL_FLAG_DONT_UNEXPAND|0x00000231"),
+        ("2232", "CSIDL_FLAG_DONT_UNEXPAND|0x00000232"),
+        ("2233", "CSIDL_FLAG_DONT_UNEXPAND|0x00000233"),
+        ("2234", "CSIDL_FLAG_DONT_UNEXPAND|0x00000234"),
+        ("2235", "CSIDL_FLAG_DONT_UNEXPAND|0x00000235"),
+        ("2236", "CSIDL_FLAG_DONT_UNEXPAND|0x00000236"),
+        ("2237", "CSIDL_FLAG_DONT_UNEXPAND|0x00000237"),
+        ("2238", "CSIDL_FLAG_DONT_UNEXPAND|0x00000238"),
+        ("2239", "CSIDL_FLAG_DONT_UNEXPAND|0x00000239"),
+        ("2240", "CSIDL_FLAG_DONT_UNEXPAND|0x00000240"),
+        ("2241", "CSIDL_FLAG_DONT_UNEXPAND|0x00000241"),
+        ("2242", "CSIDL_FLAG_DONT_UNEXPAND|0x00000242"),
+        ("2243", "CSIDL_FLAG_DONT_UNEXPAND|0x00000243"),
+        ("2244", "CSIDL_FLAG_DONT_UNEXPAND|0x00000244"),
+        ("2245", "CSIDL_FLAG_DONT_UNEXPAND|0x00000245"),
+        ("2246", "CSIDL_FLAG_DONT_UNEXPAND|0x00000246"),
+        ("2247", "CSIDL_FLAG_DONT_UNEXPAND|0x00000247"),
+        ("2248", "CSIDL_FLAG_DONT_UNEXPAND|0x00000248"),
+        ("2249", "CSIDL_FLAG_DONT_UNEXPAND|0x00000249"),
+        ("2250", "CSIDL_FLAG_DONT_UNEXPAND|0x00000250"),
+        ("2251", "CSIDL_FLAG_DONT_UNEXPAND|0x00000251"),
+        ("2252", "CSIDL_FLAG_DONT_UNEXPAND|0x00000252"),
+        ("2253", "CSIDL_FLAG_DONT_UNEXPAND|0x00000253"),
+        ("2254", "CSIDL_FLAG_DONT_UNEXPAND|0x00000254"),
+        ("2255", "CSIDL_FLAG_DONT_UNEXPAND|0x00000255"),
+        ("2256", "CSIDL_FLAG_DONT_UNEXPAND|0x00000256"),
+        ("2257", "CSIDL_FLAG_DONT_UNEXPAND|0x00000257"),
+        ("2258", "CSIDL_FLAG_DONT_UNEXPAND|0x00000258"),
+        ("2259", "CSIDL_FLAG_DONT_UNEXPAND|0x00000259"),
+        ("2260", "CSIDL_FLAG_DONT_UNEXPAND|0x00000260"),
+        ("2261", "CSIDL_FLAG_DONT_UNEXPAND|0x00000261"),
+        ("2262", "CSIDL_FLAG_DONT_UNEXPAND|0x00000262"),
+        ("2263", "CSIDL_FLAG_DONT_UNEXPAND|0x00000263"),
+        ("2264", "CSIDL_FLAG_DONT_UNEXPAND|0x00000264"),
+        ("2265", "CSIDL_FLAG_DONT_UNEXPAND|0x00000265"),
+        ("2266", "CSIDL_FLAG_DONT_UNEXPAND|0x00000266"),
+        ("2267", "CSIDL_FLAG_DONT_UNEXPAND|0x00000267"),
+        ("2268", "CSIDL_FLAG_DONT_UNEXPAND|0x00000268"),
+        ("2269", "CSIDL_FLAG_DONT_UNEXPAND|0x00000269"),
+        ("2270", "CSIDL_FLAG_DONT_UNEXPAND|0x00000270"),
+        ("2271", "CSIDL_FLAG_DONT_UNEXPAND|0x00000271"),
+        ("2272", "CSIDL_FLAG_DONT_UNEXPAND|0x00000272"),
+        ("2273", "CSIDL_FLAG_DONT_UNEXPAND|0x00000273"),
+        ("2274", "CSIDL_FLAG_DONT_UNEXPAND|0x00000274"),
+        ("2275", "CSIDL_FLAG_DONT_UNEXPAND|0x00000275"),
+        ("2276", "CSIDL_FLAG_DONT_UNEXPAND|0x00000276"),
+        ("2277", "CSIDL_FLAG_DONT_UNEXPAND|0x00000277"),
+        ("2278", "CSIDL_FLAG_DONT_UNEXPAND|0x00000278"),
+        ("2279", "CSIDL_FLAG_DONT_UNEXPAND|0x00000279"),
+        ("2280", "CSIDL_FLAG_DONT_UNEXPAND|0x00000280"),
+        ("2281", "CSIDL_FLAG_DONT_UNEXPAND|0x00000281"),
+        ("2282", "CSIDL_FLAG_DONT_UNEXPAND|0x00000282"),
+        ("2283", "CSIDL_FLAG_DONT_UNEXPAND|0x00000283"),
+        ("2284", "CSIDL_FLAG_DONT_UNEXPAND|0x00000284"),
+        ("2285", "CSIDL_FLAG_DONT_UNEXPAND|0x00000285"),
+        ("2286", "CSIDL_FLAG_DONT_UNEXPAND|0x00000286"),
+        ("2287", "CSIDL_FLAG_DONT_UNEXPAND|0x00000287"),
+        ("2288", "CSIDL_FLAG_DONT_UNEXPAND|0x00000288"),
+        ("2289", "CSIDL_FLAG_DONT_UNEXPAND|0x00000289"),
+        ("2290", "CSIDL_FLAG_DONT_UNEXPAND|0x00000290"),
+        ("2291", "CSIDL_FLAG_DONT_UNEXPAND|0x00000291"),
+        ("2292", "CSIDL_FLAG_DONT_UNEXPAND|0x00000292"),
+        ("2293", "CSIDL_FLAG_DONT_UNEXPAND|0x00000293"),
+        ("2294", "CSIDL_FLAG_DONT_UNEXPAND|0x00000294"),
+        ("2295", "CSIDL_FLAG_DONT_UNEXPAND|0x00000295"),
+        ("2296", "CSIDL_FLAG_DONT_UNEXPAND|0x00000296"),
+        ("2297", "CSIDL_FLAG_DONT_UNEXPAND|0x00000297"),
+        ("2298", "CSIDL_FLAG_DONT_UNEXPAND|0x00000298"),
+        ("2299", "CSIDL_FLAG_DONT_UNEXPAND|0x00000299"),
+        ("2300", "CSIDL_FLAG_DONT_UNEXPAND|0x00000300"),
+        ("2301", "CSIDL_FLAG_DONT_UNEXPAND|0x00000301"),
+        ("2302", "CSIDL_FLAG_DONT_UNEXPAND|0x00000302"),
+        ("2303", "CSIDL_FLAG_DONT_UNEXPAND|0x00000303"),
+        ("2304", "CSIDL_FLAG_DONT_UNEXPAND|0x00000304"),
+        ("2305", "CSIDL_FLAG_DONT_UNEXPAND|0x00000305"),
+        ("2306", "CSIDL_FLAG_DONT_UNEXPAND|0x00000306"),
+        ("2307", "CSIDL_FLAG_DONT_UNEXPAND|0x00000307"),
+        ("2308", "CSIDL_FLAG_DONT_UNEXPAND|0x00000308"),
+        ("2309", "CSIDL_FLAG_DONT_UNEXPAND|0x00000309"),
+        ("2310", "CSIDL_FLAG_DONT_UNEXPAND|0x00000310"),
+        ("2311", "CSIDL_FLAG_DONT_UNEXPAND|0x00000311"),
+        ("2312", "CSIDL_FLAG_DONT_UNEXPAND|0x00000312"),
+        ("2313", "CSIDL_FLAG_DONT_UNEXPAND|0x00000313"),
+        ("2314", "CSIDL_FLAG_DONT_UNEXPAND|0x00000314"),
+        ("2315", "CSIDL_FLAG_DONT_UNEXPAND|0x00000315"),
+        ("2316", "CSIDL_FLAG_DONT_UNEXPAND|0x00000316"),
+        ("2317", "CSIDL_FLAG_DONT_UNEXPAND|0x00000317"),
+        ("2318", "CSIDL_FLAG_DONT_UNEXPAND|0x00000318"),
+        ("2319", "CSIDL_FLAG_DONT_UNEXPAND|0x00000319"),
+        ("2320", "CSIDL_FLAG_DONT_UNEXPAND|0x00000320"),
+        ("2321", "CSIDL_FLAG_DONT_UNEXPAND|0x00000321"),
+        ("2322", "CSIDL_FLAG_DONT_UNEXPAND|0x00000322"),
+        ("2323", "CSIDL_FLAG_DONT_UNEXPAND|0x00000323"),
+        ("2324", "CSIDL_FLAG_DONT_UNEXPAND|0x00000324"),
+        ("2325", "CSIDL_FLAG_DONT_UNEXPAND|0x00000325"),
+        ("2326", "CSIDL_FLAG_DONT_UNEXPAND|0x00000326"),
+        ("2327", "CSIDL_FLAG_DONT_UNEXPAND|0x00000327"),
+        ("2328", "CSIDL_FLAG_DONT_UNEXPAND|0x00000328"),
+        ("2329", "CSIDL_FLAG_DONT_UNEXPAND|0x00000329"),
+        ("2330", "CSIDL_FLAG_DONT_UNEXPAND|0x00000330"),
+        ("2331", "CSIDL_FLAG_DONT_UNEXPAND|0x00000331"),
+        ("2332", "CSIDL_FLAG_DONT_UNEXPAND|0x00000332"),
+        ("2333", "CSIDL_FLAG_DONT_UNEXPAND|0x00000333"),
+        ("2334", "CSIDL_FLAG_DONT_UNEXPAND|0x00000334"),
+        ("2335", "CSIDL_FLAG_DONT_UNEXPAND|0x00000335"),
+        ("2336", "CSIDL_FLAG_DONT_UNEXPAND|0x00000336"),
+        ("2337", "CSIDL_FLAG_DONT_UNEXPAND|0x00000337"),
+        ("2338", "CSIDL_FLAG_DONT_UNEXPAND|0x00000338"),
+        ("2339", "CSIDL_FLAG_DONT_UNEXPAND|0x00000339"),
+        ("2340", "CSIDL_FLAG_DONT_UNEXPAND|0x00000340"),
+        ("2341", "CSIDL_FLAG_DONT_UNEXPAND|0x00000341"),
+        ("2342", "CSIDL_FLAG_DONT_UNEXPAND|0x00000342"),
+        ("2343", "CSIDL_FLAG_DONT_UNEXPAND|0x00000343"),
+        ("2344", "CSIDL_FLAG_DONT_UNEXPAND|0x00000344"),
+        ("2345", "CSIDL_FLAG_DONT_UNEXPAND|0x00000345"),
+        ("2346", "CSIDL_FLAG_DONT_UNEXPAND|0x00000346"),
+        ("2347", "CSIDL_FLAG_DONT_UNEXPAND|0x00000347"),
+        ("2348", "CSIDL_FLAG_DONT_UNEXPAND|0x00000348"),
+        ("2349", "CSIDL_FLAG_DONT_UNEXPAND|0x00000349"),
+        ("2350", "CSIDL_FLAG_DONT_UNEXPAND|0x00000350"),
+        ("2351", "CSIDL_FLAG_DONT_UNEXPAND|0x00000351"),
+        ("2352", "CSIDL_FLAG_DONT_UNEXPAND|0x00000352"),
+        ("2353", "CSIDL_FLAG_DONT_UNEXPAND|0x00000353"),
+        ("2354", "CSIDL_FLAG_DONT_UNEXPAND|0x00000354"),
+        ("2355", "CSIDL_FLAG_DONT_UNEXPAND|0x00000355"),
+        ("2356", "CSIDL_FLAG_DONT_UNEXPAND|0x00000356"),
+        ("2357", "CSIDL_FLAG_DONT_UNEXPAND|0x00000357"),
+        ("2358", "CSIDL_FLAG_DONT_UNEXPAND|0x00000358"),
+        ("2359", "CSIDL_FLAG_DONT_UNEXPAND|0x00000359"),
+        ("2360", "CSIDL_FLAG_DONT_UNEXPAND|0x00000360"),
+        ("2361", "CSIDL_FLAG_DONT_UNEXPAND|0x00000361"),
+        ("2362", "CSIDL_FLAG_DONT_UNEXPAND|0x00000362"),
+        ("2363", "CSIDL_FLAG_DONT_UNEXPAND|0x00000363"),
+        ("2364", "CSIDL_FLAG_DONT_UNEXPAND|0x00000364"),
+        ("2365", "CSIDL_FLAG_DONT_UNEXPAND|0x00000365"),
+        ("2366", "CSIDL_FLAG_DONT_UNEXPAND|0x00000366"),
+        ("2367", "CSIDL_FLAG_DONT_UNEXPAND|0x00000367"),
+        ("2368", "CSIDL_FLAG_DONT_UNEXPAND|0x00000368"),
+        ("2369", "CSIDL_FLAG_DONT_UNEXPAND|0x00000369"),
+        ("2370", "CSIDL_FLAG_DONT_UNEXPAND|0x00000370"),
+        ("2371", "CSIDL_FLAG_DONT_UNEXPAND|0x00000371"),
+        ("2372", "CSIDL_FLAG_DONT_UNEXPAND|0x00000372"),
+        ("2373", "CSIDL_FLAG_DONT_UNEXPAND|0x00000373"),
+        ("2374", "CSIDL_FLAG_DONT_UNEXPAND|0x00000374"),
+        ("2375", "CSIDL_FLAG_DONT_UNEXPAND|0x00000375"),
+        ("2376", "CSIDL_FLAG_DONT_UNEXPAND|0x00000376"),
+        ("2377", "CSIDL_FLAG_DONT_UNEXPAND|0x00000377"),
+        ("2378", "CSIDL_FLAG_DONT_UNEXPAND|0x00000378"),
+        ("2379", "CSIDL_FLAG_DONT_UNEXPAND|0x00000379"),
+        ("2380", "CSIDL_FLAG_DONT_UNEXPAND|0x00000380"),
+        ("2381", "CSIDL_FLAG_DONT_UNEXPAND|0x00000381"),
+        ("2382", "CSIDL_FLAG_DONT_UNEXPAND|0x00000382"),
+        ("2383", "CSIDL_FLAG_DONT_UNEXPAND|0x00000383"),
+        ("2384", "CSIDL_FLAG_DONT_UNEXPAND|0x00000384"),
+        ("2385", "CSIDL_FLAG_DONT_UNEXPAND|0x00000385"),
+        ("2386", "CSIDL_FLAG_DONT_UNEXPAND|0x00000386"),
+        ("2387", "CSIDL_FLAG_DONT_UNEXPAND|0x00000387"),
+        ("2388", "CSIDL_FLAG_DONT_UNEXPAND|0x00000388"),
+        ("2389", "CSIDL_FLAG_DONT_UNEXPAND|0x00000389"),
+        ("2390", "CSIDL_FLAG_DONT_UNEXPAND|0x00000390"),
+        ("2391", "CSIDL_FLAG_DONT_UNEXPAND|0x00000391"),
+        ("2392", "CSIDL_FLAG_DONT_UNEXPAND|0x00000392"),
+        ("2393", "CSIDL_FLAG_DONT_UNEXPAND|0x00000393"),
+        ("2394", "CSIDL_FLAG_DONT_UNEXPAND|0x00000394"),
+        ("2395", "CSIDL_FLAG_DONT_UNEXPAND|0x00000395"),
+        ("2396", "CSIDL_FLAG_DONT_UNEXPAND|0x00000396"),
+        ("2397", "CSIDL_FLAG_DONT_UNEXPAND|0x00000397"),
+        ("2398", "CSIDL_FLAG_DONT_UNEXPAND|0x00000398"),
+        ("2399", "CSIDL_FLAG_DONT_UNEXPAND|0x00000399"),
+        ("2400", "CSIDL_FLAG_DONT_UNEXPAND|0x00000400"),
+        ("2401", "CSIDL_FLAG_DONT_UNEXPAND|0x00000401"),
+        ("2402", "CSIDL_FLAG_DONT_UNEXPAND|0x00000402"),
+        ("2403", "CSIDL_FLAG_DONT_UNEXPAND|0x00000403"),
+        ("2404", "CSIDL_FLAG_DONT_UNEXPAND|0x00000404"),
+        ("2405", "CSIDL_FLAG_DONT_UNEXPAND|0x00000405"),
+        ("2406", "CSIDL_FLAG_DONT_UNEXPAND|0x00000406"),
+        ("2407", "CSIDL_FLAG_DONT_UNEXPAND|0x00000407"),
+        ("2408", "CSIDL_FLAG_DONT_UNEXPAND|0x00000408"),
+        ("2409", "CSIDL_FLAG_DONT_UNEXPAND|0x00000409"),
+        ("2410", "CSIDL_FLAG_DONT_UNEXPAND|0x00000410"),
+        ("2411", "CSIDL_FLAG_DONT_UNEXPAND|0x00000411"),
+        ("2412", "CSIDL_FLAG_DONT_UNEXPAND|0x00000412"),
+        ("2413", "CSIDL_FLAG_DONT_UNEXPAND|0x00000413"),
+        ("2414", "CSIDL_FLAG_DONT_UNEXPAND|0x00000414"),
+        ("2415", "CSIDL_FLAG_DONT_UNEXPAND|0x00000415"),
+        ("2416", "CSIDL_FLAG_DONT_UNEXPAND|0x00000416"),
+        ("2417", "CSIDL_FLAG_DONT_UNEXPAND|0x00000417"),
+        ("2418", "CSIDL_FLAG_DONT_UNEXPAND|0x00000418"),
+        ("2419", "CSIDL_FLAG_DONT_UNEXPAND|0x00000419"),
+        ("2420", "CSIDL_FLAG_DONT_UNEXPAND|0x00000420"),
+        ("2421", "CSIDL_FLAG_DONT_UNEXPAND|0x00000421"),
+        ("2422", "CSIDL_FLAG_DONT_UNEXPAND|0x00000422"),
+        ("2423", "CSIDL_FLAG_DONT_UNEXPAND|0x00000423"),
+        ("2424", "CSIDL_FLAG_DONT_UNEXPAND|0x00000424"),
+        ("2425", "CSIDL_FLAG_DONT_UNEXPAND|0x00000425"),
+        ("2426", "CSIDL_FLAG_DONT_UNEXPAND|0x00000426"),
+        ("2427", "CSIDL_FLAG_DONT_UNEXPAND|0x00000427"),
+        ("2428", "CSIDL_FLAG_DONT_UNEXPAND|0x00000428"),
+        ("2429", "CSIDL_FLAG_DONT_UNEXPAND|0x00000429"),
+        ("2430", "CSIDL_FLAG_DONT_UNEXPAND|0x00000430"),
+        ("2431", "CSIDL_FLAG_DONT_UNEXPAND|0x00000431"),
+        ("2432", "CSIDL_FLAG_DONT_UNEXPAND|0x00000432"),
+        ("2433", "CSIDL_FLAG_DONT_UNEXPAND|0x00000433"),
+        ("2434", "CSIDL_FLAG_DONT_UNEXPAND|0x00000434"),
+        ("2435", "CSIDL_FLAG_DONT_UNEXPAND|0x00000435"),
+        ("2436", "CSIDL_FLAG_DONT_UNEXPAND|0x00000436"),
+        ("2437", "CSIDL_FLAG_DONT_UNEXPAND|0x00000437"),
+        ("2438", "CSIDL_FLAG_DONT_UNEXPAND|0x00000438"),
+        ("2439", "CSIDL_FLAG_DONT_UNEXPAND|0x00000439"),
+        ("2440", "CSIDL_FLAG_DONT_UNEXPAND|0x00000440"),
+        ("2441", "CSIDL_FLAG_DONT_UNEXPAND|0x00000441"),
+        ("2442", "CSIDL_FLAG_DONT_UNEXPAND|0x00000442"),
+        ("2443", "CSIDL_FLAG_DONT_UNEXPAND|0x00000443"),
+        ("2444", "CSIDL_FLAG_DONT_UNEXPAND|0x00000444"),
+        ("2445", "CSIDL_FLAG_DONT_UNEXPAND|0x00000445"),
+        ("2446", "CSIDL_FLAG_DONT_UNEXPAND|0x00000446"),
+        ("2447", "CSIDL_FLAG_DONT_UNEXPAND|0x00000447"),
+        ("2448", "CSIDL_FLAG_DONT_UNEXPAND|0x00000448"),
+        ("2449", "CSIDL_FLAG_DONT_UNEXPAND|0x00000449"),
+        ("2450", "CSIDL_FLAG_DONT_UNEXPAND|0x00000450"),
+        ("2451", "CSIDL_FLAG_DONT_UNEXPAND|0x00000451"),
+        ("2452", "CSIDL_FLAG_DONT_UNEXPAND|0x00000452"),
+        ("2453", "CSIDL_FLAG_DONT_UNEXPAND|0x00000453"),
+        ("2454", "CSIDL_FLAG_DONT_UNEXPAND|0x00000454"),
+        ("2455", "CSIDL_FLAG_DONT_UNEXPAND|0x00000455"),
+        ("2456", "CSIDL_FLAG_DONT_UNEXPAND|0x00000456"),
+        ("2457", "CSIDL_FLAG_DONT_UNEXPAND|0x00000457"),
+        ("2458", "CSIDL_FLAG_DONT_UNEXPAND|0x00000458"),
+        ("2459", "CSIDL_FLAG_DONT_UNEXPAND|0x00000459"),
+        ("2460", "CSIDL_FLAG_DONT_UNEXPAND|0x00000460"),
+        ("2461", "CSIDL_FLAG_DONT_UNEXPAND|0x00000461"),
+        ("2462", "CSIDL_FLAG_DONT_UNEXPAND|0x00000462"),
+        ("2463", "CSIDL_FLAG_DONT_UNEXPAND|0x00000463"),
+        ("2464", "CSIDL_FLAG_DONT_UNEXPAND|0x00000464"),
+        ("2465", "CSIDL_FLAG_DONT_UNEXPAND|0x00000465"),
+        ("2466", "CSIDL_FLAG_DONT_UNEXPAND|0x00000466"),
+        ("2467", "CSIDL_FLAG_DONT_UNEXPAND|0x00000467"),
+        ("2468", "CSIDL_FLAG_DONT_UNEXPAND|0x00000468"),
+        ("2469", "CSIDL_FLAG_DONT_UNEXPAND|0x00000469"),
+        ("2470", "CSIDL_FLAG_DONT_UNEXPAND|0x00000470"),
+        ("2471", "CSIDL_FLAG_DONT_UNEXPAND|0x00000471"),
+        ("2472", "CSIDL_FLAG_DONT_UNEXPAND|0x00000472"),
+        ("2473", "CSIDL_FLAG_DONT_UNEXPAND|0x00000473"),
+        ("2474", "CSIDL_FLAG_DONT_UNEXPAND|0x00000474"),
+        ("2475", "CSIDL_FLAG_DONT_UNEXPAND|0x00000475"),
+        ("2476", "CSIDL_FLAG_DONT_UNEXPAND|0x00000476"),
+        ("2477", "CSIDL_FLAG_DONT_UNEXPAND|0x00000477"),
+        ("2478", "CSIDL_FLAG_DONT_UNEXPAND|0x00000478"),
+        ("2479", "CSIDL_FLAG_DONT_UNEXPAND|0x00000479"),
+        ("2480", "CSIDL_FLAG_DONT_UNEXPAND|0x00000480"),
+        ("2481", "CSIDL_FLAG_DONT_UNEXPAND|0x00000481"),
+        ("2482", "CSIDL_FLAG_DONT_UNEXPAND|0x00000482"),
+        ("2483", "CSIDL_FLAG_DONT_UNEXPAND|0x00000483"),
+        ("2484", "CSIDL_FLAG_DONT_UNEXPAND|0x00000484"),
+        ("2485", "CSIDL_FLAG_DONT_UNEXPAND|0x00000485"),
+        ("2486", "CSIDL_FLAG_DONT_UNEXPAND|0x00000486"),
+        ("2487", "CSIDL_FLAG_DONT_UNEXPAND|0x00000487"),
+        ("2488", "CSIDL_FLAG_DONT_UNEXPAND|0x00000488"),
+        ("2489", "CSIDL_FLAG_DONT_UNEXPAND|0x00000489"),
+        ("2490", "CSIDL_FLAG_DONT_UNEXPAND|0x00000490"),
+        ("2491", "CSIDL_FLAG_DONT_UNEXPAND|0x00000491"),
+        ("2492", "CSIDL_FLAG_DONT_UNEXPAND|0x00000492"),
+        ("2493", "CSIDL_FLAG_DONT_UNEXPAND|0x00000493"),
+        ("2494", "CSIDL_FLAG_DONT_UNEXPAND|0x00000494"),
+        ("2495", "CSIDL_FLAG_DONT_UNEXPAND|0x00000495"),
+        ("2496", "CSIDL_FLAG_DONT_UNEXPAND|0x00000496"),
+        ("2497", "CSIDL_FLAG_DONT_UNEXPAND|0x00000497"),
+        ("2498", "CSIDL_FLAG_DONT_UNEXPAND|0x00000498"),
+        ("2499", "CSIDL_FLAG_DONT_UNEXPAND|0x00000499"),
+        ("2500", "CSIDL_FLAG_DONT_UNEXPAND|0x00000500"),
+        ("2501", "CSIDL_FLAG_DONT_UNEXPAND|0x00000501"),
+        ("2502", "CSIDL_FLAG_DONT_UNEXPAND|0x00000502"),
+        ("2503", "CSIDL_FLAG_DONT_UNEXPAND|0x00000503"),
+        ("2504", "CSIDL_FLAG_DONT_UNEXPAND|0x00000504"),
+        ("2505", "CSIDL_FLAG_DONT_UNEXPAND|0x00000505"),
+        ("2506", "CSIDL_FLAG_DONT_UNEXPAND|0x00000506"),
+        ("2507", "CSIDL_FLAG_DONT_UNEXPAND|0x00000507"),
+        ("2508", "CSIDL_FLAG_DONT_UNEXPAND|0x00000508"),
+        ("2509", "CSIDL_FLAG_DONT_UNEXPAND|0x00000509"),
+        ("2510", "CSIDL_FLAG_DONT_UNEXPAND|0x00000510"),
+        ("2511", "CSIDL_FLAG_DONT_UNEXPAND|0x00000511"),
+        ("2512", "CSIDL_FLAG_DONT_UNEXPAND|0x00000512"),
+        ("2513", "CSIDL_FLAG_DONT_UNEXPAND|0x00000513"),
+        ("2514", "CSIDL_FLAG_DONT_UNEXPAND|0x00000514"),
+        ("2515", "CSIDL_FLAG_DONT_UNEXPAND|0x00000515"),
+        ("2516", "CSIDL_FLAG_DONT_UNEXPAND|0x00000516"),
+        ("2517", "CSIDL_FLAG_DONT_UNEXPAND|0x00000517"),
+        ("2518", "CSIDL_FLAG_DONT_UNEXPAND|0x00000518"),
+        ("2519", "CSIDL_FLAG_DONT_UNEXPAND|0x00000519"),
+        ("2520", "CSIDL_FLAG_DONT_UNEXPAND|0x00000520"),
+        ("2521", "CSIDL_FLAG_DONT_UNEXPAND|0x00000521"),
+        ("2522", "CSIDL_FLAG_DONT_UNEXPAND|0x00000522"),
+        ("2523", "CSIDL_FLAG_DONT_UNEXPAND|0x00000523"),
+        ("2524", "CSIDL_FLAG_DONT_UNEXPAND|0x00000524"),
+        ("2525", "CSIDL_FLAG_DONT_UNEXPAND|0x00000525"),
+        ("2526", "CSIDL_FLAG_DONT_UNEXPAND|0x00000526"),
+        ("2527", "CSIDL_FLAG_DONT_UNEXPAND|0x00000527"),
+        ("2528", "CSIDL_FLAG_DONT_UNEXPAND|0x00000528"),
+        ("2529", "CSIDL_FLAG_DONT_UNEXPAND|0x00000529"),
+        ("2530", "CSIDL_FLAG_DONT_UNEXPAND|0x00000530"),
+        ("2531", "CSIDL_FLAG_DONT_UNEXPAND|0x00000531"),
+        ("2532", "CSIDL_FLAG_DONT_UNEXPAND|0x00000532"),
+        ("2533", "CSIDL_FLAG_DONT_UNEXPAND|0x00000533"),
+        ("2534", "CSIDL_FLAG_DONT_UNEXPAND|0x00000534"),
+        ("2535", "CSIDL_FLAG_DONT_UNEXPAND|0x00000535"),
+        ("2536", "CSIDL_FLAG_DONT_UNEXPAND|0x00000536"),
+        ("2537", "CSIDL_FLAG_DONT_UNEXPAND|0x00000537"),
+        ("2538", "CSIDL_FLAG_DONT_UNEXPAND|0x00000538"),
+        ("2539", "CSIDL_FLAG_DONT_UNEXPAND|0x00000539"),
+        ("2540", "CSIDL_FLAG_DONT_UNEXPAND|0x00000540"),
+        ("2541", "CSIDL_FLAG_DONT_UNEXPAND|0x00000541"),
+        ("2542", "CSIDL_FLAG_DONT_UNEXPAND|0x00000542"),
+        ("2543", "CSIDL_FLAG_DONT_UNEXPAND|0x00000543"),
+        ("2544", "CSIDL_FLAG_DONT_UNEXPAND|0x00000544"),
+        ("2545", "CSIDL_FLAG_DONT_UNEXPAND|0x00000545"),
+        ("2546", "CSIDL_FLAG_DONT_UNEXPAND|0x00000546"),
+        ("2547", "CSIDL_FLAG_DONT_UNEXPAND|0x00000547"),
+        ("2548", "CSIDL_FLAG_DONT_UNEXPAND|0x00000548"),
+        ("2549", "CSIDL_FLAG_DONT_UNEXPAND|0x00000549"),
+        ("2550", "CSIDL_FLAG_DONT_UNEXPAND|0x00000550"),
+        ("2551", "CSIDL_FLAG_DONT_UNEXPAND|0x00000551"),
+        ("2552", "CSIDL_FLAG_DONT_UNEXPAND|0x00000552"),
+        ("2553", "CSIDL_FLAG_DONT_UNEXPAND|0x00000553"),
+        ("2554", "CSIDL_FLAG_DONT_UNEXPAND|0x00000554"),
+        ("2555", "CSIDL_FLAG_DONT_UNEXPAND|0x00000555"),
+        ("2556", "CSIDL_FLAG_DONT_UNEXPAND|0x00000556"),
+        ("2557", "CSIDL_FLAG_DONT_UNEXPAND|0x00000557"),
+        ("2558", "CSIDL_FLAG_DONT_UNEXPAND|0x00000558"),
+        ("2559", "CSIDL_FLAG_DONT_UNEXPAND|0x00000559"),
+        ("2560", "CSIDL_FLAG_DONT_UNEXPAND|0x00000560"),
+        ("2561", "CSIDL_FLAG_DONT_UNEXPAND|0x00000561"),
+        ("2562", "CSIDL_FLAG_DONT_UNEXPAND|0x00000562"),
+        ("2563", "CSIDL_FLAG_DONT_UNEXPAND|0x00000563"),
+        ("2564", "CSIDL_FLAG_DONT_UNEXPAND|0x00000564"),
+        ("2565", "CSIDL_FLAG_DONT_UNEXPAND|0x00000565"),
+        ("2566", "CSIDL_FLAG_DONT_UNEXPAND|0x00000566"),
+        ("2567", "CSIDL_FLAG_DONT_UNEXPAND|0x00000567"),
+        ("2568", "CSIDL_FLAG_DONT_UNEXPAND|0x00000568"),
+        ("2569", "CSIDL_FLAG_DONT_UNEXPAND|0x00000569"),
+        ("2570", "CSIDL_FLAG_DONT_UNEXPAND|0x00000570"),
+        ("2571", "CSIDL_FLAG_DONT_UNEXPAND|0x00000571"),
+        ("2572", "CSIDL_FLAG_DONT_UNEXPAND|0x00000572"),
+        ("2573", "CSIDL_FLAG_DONT_UNEXPAND|0x00000573"),
+        ("2574", "CSIDL_FLAG_DONT_UNEXPAND|0x00000574"),
+        ("2575", "CSIDL_FLAG_DONT_UNEXPAND|0x00000575"),
+        ("2576", "CSIDL_FLAG_DONT_UNEXPAND|0x00000576"),
+        ("2577", "CSIDL_FLAG_DONT_UNEXPAND|0x00000577"),
+        ("2578", "CSIDL_FLAG_DONT_UNEXPAND|0x00000578"),
+        ("2579", "CSIDL_FLAG_DONT_UNEXPAND|0x00000579"),
+        ("2580", "CSIDL_FLAG_DONT_UNEXPAND|0x00000580"),
+        ("2581", "CSIDL_FLAG_DONT_UNEXPAND|0x00000581"),
+        ("2582", "CSIDL_FLAG_DONT_UNEXPAND|0x00000582"),
+        ("2583", "CSIDL_FLAG_DONT_UNEXPAND|0x00000583"),
+        ("2584", "CSIDL_FLAG_DONT_UNEXPAND|0x00000584"),
+        ("2585", "CSIDL_FLAG_DONT_UNEXPAND|0x00000585"),
+        ("2586", "CSIDL_FLAG_DONT_UNEXPAND|0x00000586"),
+        ("2587", "CSIDL_FLAG_DONT_UNEXPAND|0x00000587"),
+        ("2588", "CSIDL_FLAG_DONT_UNEXPAND|0x00000588"),
+        ("2589", "CSIDL_FLAG_DONT_UNEXPAND|0x00000589"),
+        ("2590", "CSIDL_FLAG_DONT_UNEXPAND|0x00000590"),
+        ("2591", "CSIDL_FLAG_DONT_UNEXPAND|0x00000591"),
+        ("2592", "CSIDL_FLAG_DONT_UNEXPAND|0x00000592"),
+        ("2593", "CSIDL_FLAG_DONT_UNEXPAND|0x00000593"),
+        ("2594", "CSIDL_FLAG_DONT_UNEXPAND|0x00000594"),
+        ("2595", "CSIDL_FLAG_DONT_UNEXPAND|0x00000595"),
+        ("2596", "CSIDL_FLAG_DONT_UNEXPAND|0x00000596"),
+        ("2597", "CSIDL_FLAG_DONT_UNEXPAND|0x00000597"),
+        ("2598", "CSIDL_FLAG_DONT_UNEXPAND|0x00000598"),
+        ("2599", "CSIDL_FLAG_DONT_UNEXPAND|0x00000599"),
+        ("2600", "CSIDL_FLAG_DONT_UNEXPAND|0x00000600"),
+        ("2601", "CSIDL_FLAG_DONT_UNEXPAND|0x00000601"),
+        ("2602", "CSIDL_FLAG_DONT_UNEXPAND|0x00000602"),
+        ("2603", "CSIDL_FLAG_DONT_UNEXPAND|0x00000603"),
+        ("2604", "CSIDL_FLAG_DONT_UNEXPAND|0x00000604"),
+        ("2605", "CSIDL_FLAG_DONT_UNEXPAND|0x00000605"),
+        ("2606", "CSIDL_FLAG_DONT_UNEXPAND|0x00000606"),
+        ("2607", "CSIDL_FLAG_DONT_UNEXPAND|0x00000607"),
+        ("2608", "CSIDL_FLAG_DONT_UNEXPAND|0x00000608"),
+        ("2609", "CSIDL_FLAG_DONT_UNEXPAND|0x00000609"),
+        ("2610", "CSIDL_FLAG_DONT_UNEXPAND|0x00000610"),
+        ("2611", "CSIDL_FLAG_DONT_UNEXPAND|0x00000611"),
+        ("2612", "CSIDL_FLAG_DONT_UNEXPAND|0x00000612"),
+        ("2613", "CSIDL_FLAG_DONT_UNEXPAND|0x00000613"),
+        ("2614", "CSIDL_FLAG_DONT_UNEXPAND|0x00000614"),
+        ("2615", "CSIDL_FLAG_DONT_UNEXPAND|0x00000615"),
+        ("2616", "CSIDL_FLAG_DONT_UNEXPAND|0x00000616"),
+        ("2617", "CSIDL_FLAG_DONT_UNEXPAND|0x00000617"),
+        ("2618", "CSIDL_FLAG_DONT_UNEXPAND|0x00000618"),
+        ("2619", "CSIDL_FLAG_DONT_UNEXPAND|0x00000619"),
+        ("2620", "CSIDL_FLAG_DONT_UNEXPAND|0x00000620"),
+        ("2621", "CSIDL_FLAG_DONT_UNEXPAND|0x00000621"),
+        ("2622", "CSIDL_FLAG_DONT_UNEXPAND|0x00000622"),
+        ("2623", "CSIDL_FLAG_DONT_UNEXPAND|0x00000623"),
+        ("2624", "CSIDL_FLAG_DONT_UNEXPAND|0x00000624"),
+        ("2625", "CSIDL_FLAG_DONT_UNEXPAND|0x00000625"),
+        ("2626", "CSIDL_FLAG_DONT_UNEXPAND|0x00000626"),
+        ("2627", "CSIDL_FLAG_DONT_UNEXPAND|0x00000627"),
+        ("2628", "CSIDL_FLAG_DONT_UNEXPAND|0x00000628"),
+        ("2629", "CSIDL_FLAG_DONT_UNEXPAND|0x00000629"),
+        ("2630", "CSIDL_FLAG_DONT_UNEXPAND|0x00000630"),
+        ("2631", "CSIDL_FLAG_DONT_UNEXPAND|0x00000631"),
+        ("2632", "CSIDL_FLAG_DONT_UNEXPAND|0x00000632"),
+        ("2633", "CSIDL_FLAG_DONT_UNEXPAND|0x00000633"),
+        ("2634", "CSIDL_FLAG_DONT_UNEXPAND|0x00000634"),
+        ("2635", "CSIDL_FLAG_DONT_UNEXPAND|0x00000635"),
+        ("2636", "CSIDL_FLAG_DONT_UNEXPAND|0x00000636"),
+        ("2637", "CSIDL_FLAG_DONT_UNEXPAND|0x00000637"),
+        ("2638", "CSIDL_FLAG_DONT_UNEXPAND|0x00000638"),
+        ("2639", "CSIDL_FLAG_DONT_UNEXPAND|0x00000639"),
+        ("2640", "CSIDL_FLAG_DONT_UNEXPAND|0x00000640"),
+        ("2641", "CSIDL_FLAG_DONT_UNEXPAND|0x00000641"),
+        ("2642", "CSIDL_FLAG_DONT_UNEXPAND|0x00000642"),
+        ("2643", "CSIDL_FLAG_DONT_UNEXPAND|0x00000643"),
+        ("2644", "CSIDL_FLAG_DONT_UNEXPAND|0x00000644"),
+        ("2645", "CSIDL_FLAG_DONT_UNEXPAND|0x00000645"),
+        ("2646", "CSIDL_FLAG_DONT_UNEXPAND|0x00000646"),
+        ("2647", "CSIDL_FLAG_DONT_UNEXPAND|0x00000647"),
+        ("2648", "CSIDL_FLAG_DONT_UNEXPAND|0x00000648"),
+        ("2649", "CSIDL_FLAG_DONT_UNEXPAND|0x00000649"),
+        ("2650", "CSIDL_FLAG_DONT_UNEXPAND|0x00000650"),
+        ("2651", "CSIDL_FLAG_DONT_UNEXPAND|0x00000651"),
+        ("2652", "CSIDL_FLAG_DONT_UNEXPAND|0x00000652"),
+        ("2653", "CSIDL_FLAG_DONT_UNEXPAND|0x00000653"),
+        ("2654", "CSIDL_FLAG_DONT_UNEXPAND|0x00000654"),
+        ("2655", "CSIDL_FLAG_DONT_UNEXPAND|0x00000655"),
+        ("2656", "CSIDL_FLAG_DONT_UNEXPAND|0x00000656"),
+        ("2657", "CSIDL_FLAG_DONT_UNEXPAND|0x00000657"),
+        ("2658", "CSIDL_FLAG_DONT_UNEXPAND|0x00000658"),
+        ("2659", "CSIDL_FLAG_DONT_UNEXPAND|0x00000659"),
+        ("2660", "CSIDL_FLAG_DONT_UNEXPAND|0x00000660"),
+        ("2661", "CSIDL_FLAG_DONT_UNEXPAND|0x00000661"),
+        ("2662", "CSIDL_FLAG_DONT_UNEXPAND|0x00000662"),
+        ("2663", "CSIDL_FLAG_DONT_UNEXPAND|0x00000663"),
+        ("2664", "CSIDL_FLAG_DONT_UNEXPAND|0x00000664"),
+        ("2665", "CSIDL_FLAG_DONT_UNEXPAND|0x00000665"),
+        ("2666", "CSIDL_FLAG_DONT_UNEXPAND|0x00000666"),
+        ("2667", "CSIDL_FLAG_DONT_UNEXPAND|0x00000667"),
+        ("2668", "CSIDL_FLAG_DONT_UNEXPAND|0x00000668"),
+        ("2669", "CSIDL_FLAG_DONT_UNEXPAND|0x00000669"),
+        ("2670", "CSIDL_FLAG_DONT_UNEXPAND|0x00000670"),
+        ("2671", "CSIDL_FLAG_DONT_UNEXPAND|0x00000671"),
+        ("2672", "CSIDL_FLAG_DONT_UNEXPAND|0x00000672"),
+        ("2673", "CSIDL_FLAG_DONT_UNEXPAND|0x00000673"),
+        ("2674", "CSIDL_FLAG_DONT_UNEXPAND|0x00000674"),
+        ("2675", "CSIDL_FLAG_DONT_UNEXPAND|0x00000675"),
+        ("2676", "CSIDL_FLAG_DONT_UNEXPAND|0x00000676"),
+        ("2677", "CSIDL_FLAG_DONT_UNEXPAND|0x00000677"),
+        ("2678", "CSIDL_FLAG_DONT_UNEXPAND|0x00000678"),
+        ("2679", "CSIDL_FLAG_DONT_UNEXPAND|0x00000679"),
+        ("2680", "CSIDL_FLAG_DONT_UNEXPAND|0x00000680"),
+        ("2681", "CSIDL_FLAG_DONT_UNEXPAND|0x00000681"),
+        ("2682", "CSIDL_FLAG_DONT_UNEXPAND|0x00000682"),
+        ("2683", "CSIDL_FLAG_DONT_UNEXPAND|0x00000683"),
+        ("2684", "CSIDL_FLAG_DONT_UNEXPAND|0x00000684"),
+        ("2685", "CSIDL_FLAG_DONT_UNEXPAND|0x00000685"),
+        ("2686", "CSIDL_FLAG_DONT_UNEXPAND|0x00000686"),
+        ("2687", "CSIDL_FLAG_DONT_UNEXPAND|0x00000687"),
+        ("2688", "CSIDL_FLAG_DONT_UNEXPAND|0x00000688"),
+        ("2689", "CSIDL_FLAG_DONT_UNEXPAND|0x00000689"),
+        ("2690", "CSIDL_FLAG_DONT_UNEXPAND|0x00000690"),
+        ("2691", "CSIDL_FLAG_DONT_UNEXPAND|0x00000691"),
+        ("2692", "CSIDL_FLAG_DONT_UNEXPAND|0x00000692"),
+        ("2693", "CSIDL_FLAG_DONT_UNEXPAND|0x00000693"),
+        ("2694", "CSIDL_FLAG_DONT_UNEXPAND|0x00000694"),
+        ("2695", "CSIDL_FLAG_DONT_UNEXPAND|0x00000695"),
+        ("2696", "CSIDL_FLAG_DONT_UNEXPAND|0x00000696"),
+        ("2697", "CSIDL_FLAG_DONT_UNEXPAND|0x00000697"),
+        ("2698", "CSIDL_FLAG_DONT_UNEXPAND|0x00000698"),
+        ("2699", "CSIDL_FLAG_DONT_UNEXPAND|0x00000699"),
+        ("2700", "CSIDL_FLAG_DONT_UNEXPAND|0x00000700"),
+        ("2701", "CSIDL_FLAG_DONT_UNEXPAND|0x00000701"),
+        ("2702", "CSIDL_FLAG_DONT_UNEXPAND|0x00000702"),
+        ("2703", "CSIDL_FLAG_DONT_UNEXPAND|0x00000703"),
+        ("2704", "CSIDL_FLAG_DONT_UNEXPAND|0x00000704"),
+        ("2705", "CSIDL_FLAG_DONT_UNEXPAND|0x00000705"),
+        ("2706", "CSIDL_FLAG_DONT_UNEXPAND|0x00000706"),
+        ("2707", "CSIDL_FLAG_DONT_UNEXPAND|0x00000707"),
+        ("2708", "CSIDL_FLAG_DONT_UNEXPAND|0x00000708"),
+        ("2709", "CSIDL_FLAG_DONT_UNEXPAND|0x00000709"),
+        ("2710", "CSIDL_FLAG_DONT_UNEXPAND|0x00000710"),
+        ("2711", "CSIDL_FLAG_DONT_UNEXPAND|0x00000711"),
+        ("2712", "CSIDL_FLAG_DONT_UNEXPAND|0x00000712"),
+        ("2713", "CSIDL_FLAG_DONT_UNEXPAND|0x00000713"),
+        ("2714", "CSIDL_FLAG_DONT_UNEXPAND|0x00000714"),
+        ("2715", "CSIDL_FLAG_DONT_UNEXPAND|0x00000715"),
+        ("2716", "CSIDL_FLAG_DONT_UNEXPAND|0x00000716"),
+        ("2717", "CSIDL_FLAG_DONT_UNEXPAND|0x00000717"),
+        ("2718", "CSIDL_FLAG_DONT_UNEXPAND|0x00000718"),
+        ("2719", "CSIDL_FLAG_DONT_UNEXPAND|0x00000719"),
+        ("2720", "CSIDL_FLAG_DONT_UNEXPAND|0x00000720"),
+        ("2721", "CSIDL_FLAG_DONT_UNEXPAND|0x00000721"),
+        ("2722", "CSIDL_FLAG_DONT_UNEXPAND|0x00000722"),
+        ("2723", "CSIDL_FLAG_DONT_UNEXPAND|0x00000723"),
+        ("2724", "CSIDL_FLAG_DONT_UNEXPAND|0x00000724"),
+        ("2725", "CSIDL_FLAG_DONT_UNEXPAND|0x00000725"),
+        ("2726", "CSIDL_FLAG_DONT_UNEXPAND|0x00000726"),
+        ("2727", "CSIDL_FLAG_DONT_UNEXPAND|0x00000727"),
+        ("2728", "CSIDL_FLAG_DONT_UNEXPAND|0x00000728"),
+        ("2729", "CSIDL_FLAG_DONT_UNEXPAND|0x00000729"),
+        ("2730", "CSIDL_FLAG_DONT_UNEXPAND|0x00000730"),
+        ("2731", "CSIDL_FLAG_DONT_UNEXPAND|0x00000731"),
+        ("2732", "CSIDL_FLAG_DONT_UNEXPAND|0x00000732"),
+        ("2733", "CSIDL_FLAG_DONT_UNEXPAND|0x00000733"),
+        ("2734", "CSIDL_FLAG_DONT_UNEXPAND|0x00000734"),
+        ("2735", "CSIDL_FLAG_DONT_UNEXPAND|0x00000735"),
+        ("2736", "CSIDL_FLAG_DONT_UNEXPAND|0x00000736"),
+        ("2737", "CSIDL_FLAG_DONT_UNEXPAND|0x00000737"),
+        ("2738", "CSIDL_FLAG_DONT_UNEXPAND|0x00000738"),
+        ("2739", "CSIDL_FLAG_DONT_UNEXPAND|0x00000739"),
+        ("2740", "CSIDL_FLAG_DONT_UNEXPAND|0x00000740"),
+        ("2741", "CSIDL_FLAG_DONT_UNEXPAND|0x00000741"),
+        ("2742", "CSIDL_FLAG_DONT_UNEXPAND|0x00000742"),
+        ("2743", "CSIDL_FLAG_DONT_UNEXPAND|0x00000743"),
+        ("2744", "CSIDL_FLAG_DONT_UNEXPAND|0x00000744"),
+        ("2745", "CSIDL_FLAG_DONT_UNEXPAND|0x00000745"),
+        ("2746", "CSIDL_FLAG_DONT_UNEXPAND|0x00000746"),
+        ("2747", "CSIDL_FLAG_DONT_UNEXPAND|0x00000747"),
+        ("2748", "CSIDL_FLAG_DONT_UNEXPAND|0x00000748"),
+        ("2749", "CSIDL_FLAG_DONT_UNEXPAND|0x00000749"),
+        ("2750", "CSIDL_FLAG_DONT_UNEXPAND|0x00000750"),
+        ("2751", "CSIDL_FLAG_DONT_UNEXPAND|0x00000751"),
+        ("2752", "CSIDL_FLAG_DONT_UNEXPAND|0x00000752"),
+        ("2753", "CSIDL_FLAG_DONT_UNEXPAND|0x00000753"),
+        ("2754", "CSIDL_FLAG_DONT_UNEXPAND|0x00000754"),
+        ("2755", "CSIDL_FLAG_DONT_UNEXPAND|0x00000755"),
+        ("2756", "CSIDL_FLAG_DONT_UNEXPAND|0x00000756"),
+        ("2757", "CSIDL_FLAG_DONT_UNEXPAND|0x00000757"),
+        ("2758", "CSIDL_FLAG_DONT_UNEXPAND|0x00000758"),
+        ("2759", "CSIDL_FLAG_DONT_UNEXPAND|0x00000759"),
+        ("2760", "CSIDL_FLAG_DONT_UNEXPAND|0x00000760"),
+        ("2761", "CSIDL_FLAG_DONT_UNEXPAND|0x00000761"),
+        ("2762", "CSIDL_FLAG_DONT_UNEXPAND|0x00000762"),
+        ("2763", "CSIDL_FLAG_DONT_UNEXPAND|0x00000763"),
+        ("2764", "CSIDL_FLAG_DONT_UNEXPAND|0x00000764"),
+        ("2765", "CSIDL_FLAG_DONT_UNEXPAND|0x00000765"),
+        ("2766", "CSIDL_FLAG_DONT_UNEXPAND|0x00000766"),
+        ("2767", "CSIDL_FLAG_DONT_UNEXPAND|0x00000767"),
+        ("2768", "CSIDL_FLAG_DONT_UNEXPAND|0x00000768"),
+        ("2769", "CSIDL_FLAG_DONT_UNEXPAND|0x00000769"),
+        ("2770", "CSIDL_FLAG_DONT_UNEXPAND|0x00000770"),
+        ("2771", "CSIDL_FLAG_DONT_UNEXPAND|0x00000771"),
+        ("2772", "CSIDL_FLAG_DONT_UNEXPAND|0x00000772"),
+        ("2773", "CSIDL_FLAG_DONT_UNEXPAND|0x00000773"),
+        ("2774", "CSIDL_FLAG_DONT_UNEXPAND|0x00000774"),
+        ("2775", "CSIDL_FLAG_DONT_UNEXPAND|0x00000775"),
+        ("2776", "CSIDL_FLAG_DONT_UNEXPAND|0x00000776"),
+        ("2777", "CSIDL_FLAG_DONT_UNEXPAND|0x00000777"),
+        ("2778", "CSIDL_FLAG_DONT_UNEXPAND|0x00000778"),
+        ("2779", "CSIDL_FLAG_DONT_UNEXPAND|0x00000779"),
+        ("2780", "CSIDL_FLAG_DONT_UNEXPAND|0x00000780"),
+        ("2781", "CSIDL_FLAG_DONT_UNEXPAND|0x00000781"),
+        ("2782", "CSIDL_FLAG_DONT_UNEXPAND|0x00000782"),
+        ("2783", "CSIDL_FLAG_DONT_UNEXPAND|0x00000783"),
+        ("2784", "CSIDL_FLAG_DONT_UNEXPAND|0x00000784"),
+        ("2785", "CSIDL_FLAG_DONT_UNEXPAND|0x00000785"),
+        ("2786", "CSIDL_FLAG_DONT_UNEXPAND|0x00000786"),
+        ("2787", "CSIDL_FLAG_DONT_UNEXPAND|0x00000787"),
+        ("2788", "CSIDL_FLAG_DONT_UNEXPAND|0x00000788"),
+        ("2789", "CSIDL_FLAG_DONT_UNEXPAND|0x00000789"),
+        ("2790", "CSIDL_FLAG_DONT_UNEXPAND|0x00000790"),
+        ("2791", "CSIDL_FLAG_DONT_UNEXPAND|0x00000791"),
+        ("2792", "CSIDL_FLAG_DONT_UNEXPAND|0x00000792"),
+        ("2793", "CSIDL_FLAG_DONT_UNEXPAND|0x00000793"),
+        ("2794", "CSIDL_FLAG_DONT_UNEXPAND|0x00000794"),
+        ("2795", "CSIDL_FLAG_DONT_UNEXPAND|0x00000795"),
+        ("2796", "CSIDL_FLAG_DONT_UNEXPAND|0x00000796"),
+        ("2797", "CSIDL_FLAG_DONT_UNEXPAND|0x00000797"),
+        ("2798", "CSIDL_FLAG_DONT_UNEXPAND|0x00000798"),
+        ("2799", "CSIDL_FLAG_DONT_UNEXPAND|0x00000799"),
+        ("2800", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_DESKTOP"),
+        ("2801", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_INTERNET"),
+        ("2802", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_PROGRAMS"),
+        ("2803", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_CONTROLS"),
+        ("2804", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_PRINTERS"),
+        ("2805", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_MYDOCUMENTS"),
+        ("2806", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FAVORITES"),
+        ("2807", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_STARTUP"),
+        ("2808", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_RECENT"),
+        ("2809", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_SENDTO"),
+        ("2810", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_DESKTOPDIRECTORY"),
+        ("2811", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_DRIVES"),
+        ("2812", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_NETWORK"),
+        ("2813", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_NETHOOD"),
+        ("2814", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FONTS"),
+        ("2815", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_TEMPLATES"),
+        ("2816", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_COMMON_STARTMENU"),
+        ("2817", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_COMMON_PROGRAMS"),
+        ("2818", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_COMMON_STARTUP"),
+        ("2819", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_COMMON_DESKTOPDIRECTORY"),
+        ("2820", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_INTERNET_CACHE"),
+        ("2821", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_COOKIES"),
+        ("2822", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_HISTORY"),
+        ("2823", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_COMMON_APPDATA"),
+        ("2824", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_WINDOWS"),
+        ("2825", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_SYSTEM"),
+        ("2826", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_PROGRAM_FILES"),
+        ("2827", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_MYPICTURES"),
+        ("2828", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_PROFILE"),
+        ("2829", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_SYSTEMX86"),
+        ("2830", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_ADMINTOOLS"),
+        ("2831", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_CONNECTIONS"),
+        ("2832", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000032"),
+        ("2833", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000033"),
+        ("2834", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000034"),
+        ("2835", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_COMMON_MUSIC"),
+        ("2836", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_COMMON_PICTURES"),
+        ("2837", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_COMMON_VIDEO"),
+        ("2838", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_RESOURCES"),
+        ("2839", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_RESOURCES_LOCALIZED"),
+        ("2840", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000040"),
+        ("2841", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000041"),
+        ("2842", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000042"),
+        ("2843", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000043"),
+        ("2844", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000044"),
+        ("2845", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000045"),
+        ("2846", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000046"),
+        ("2847", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000047"),
+        ("2848", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000048"),
+        ("2849", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000049"),
+        ("2850", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000050"),
+        ("2851", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000051"),
+        ("2852", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000052"),
+        ("2853", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000053"),
+        ("2854", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000054"),
+        ("2855", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000055"),
+        ("2856", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000056"),
+        ("2857", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000057"),
+        ("2858", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000058"),
+        ("2859", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000059"),
+        ("2860", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000060"),
+        ("2861", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000061"),
+        ("2862", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000062"),
+        ("2863", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000063"),
+        ("2864", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000064"),
+        ("2865", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000065"),
+        ("2866", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000066"),
+        ("2867", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000067"),
+        ("2868", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000068"),
+        ("2869", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000069"),
+        ("2870", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000070"),
+        ("2871", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000071"),
+        ("2872", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000072"),
+        ("2873", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000073"),
+        ("2874", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000074"),
+        ("2875", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000075"),
+        ("2876", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000076"),
+        ("2877", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000077"),
+        ("2878", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000078"),
+        ("2879", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000079"),
+        ("2880", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000080"),
+        ("2881", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000081"),
+        ("2882", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000082"),
+        ("2883", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000083"),
+        ("2884", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000084"),
+        ("2885", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000085"),
+        ("2886", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000086"),
+        ("2887", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000087"),
+        ("2888", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000088"),
+        ("2889", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000089"),
+        ("2890", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000090"),
+        ("2891", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000091"),
+        ("2892", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000092"),
+        ("2893", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000093"),
+        ("2894", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000094"),
+        ("2895", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000095"),
+        ("2896", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000096"),
+        ("2897", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000097"),
+        ("2898", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000098"),
+        ("2899", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000099"),
+        ("2900", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000100"),
+        ("2901", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000101"),
+        ("2902", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000102"),
+        ("2903", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000103"),
+        ("2904", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000104"),
+        ("2905", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000105"),
+        ("2906", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000106"),
+        ("2907", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000107"),
+        ("2908", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000108"),
+        ("2909", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000109"),
+        ("2910", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000110"),
+        ("2911", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000111"),
+        ("2912", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000112"),
+        ("2913", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000113"),
+        ("2914", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000114"),
+        ("2915", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000115"),
+        ("2916", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000116"),
+        ("2917", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000117"),
+        ("2918", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000118"),
+        ("2919", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000119"),
+        ("2920", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000120"),
+        ("2921", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000121"),
+        ("2922", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000122"),
+        ("2923", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000123"),
+        ("2924", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000124"),
+        ("2925", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000125"),
+        ("2926", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000126"),
+        ("2927", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000127"),
+        ("2928", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000128"),
+        ("2929", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000129"),
+        ("2930", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000130"),
+        ("2931", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000131"),
+        ("2932", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000132"),
+        ("2933", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000133"),
+        ("2934", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000134"),
+        ("2935", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000135"),
+        ("2936", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000136"),
+        ("2937", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000137"),
+        ("2938", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000138"),
+        ("2939", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000139"),
+        ("2940", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000140"),
+        ("2941", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000141"),
+        ("2942", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000142"),
+        ("2943", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000143"),
+        ("2944", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000144"),
+        ("2945", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000145"),
+        ("2946", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000146"),
+        ("2947", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000147"),
+        ("2948", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000148"),
+        ("2949", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000149"),
+        ("2950", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000150"),
+        ("2951", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000151"),
+        ("2952", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000152"),
+        ("2953", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000153"),
+        ("2954", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000154"),
+        ("2955", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000155"),
+        ("2956", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000156"),
+        ("2957", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000157"),
+        ("2958", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000158"),
+        ("2959", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000159"),
+        ("2960", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000160"),
+        ("2961", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000161"),
+        ("2962", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000162"),
+        ("2963", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000163"),
+        ("2964", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000164"),
+        ("2965", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000165"),
+        ("2966", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000166"),
+        ("2967", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000167"),
+        ("2968", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000168"),
+        ("2969", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000169"),
+        ("2970", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000170"),
+        ("2971", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000171"),
+        ("2972", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000172"),
+        ("2973", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000173"),
+        ("2974", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000174"),
+        ("2975", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000175"),
+        ("2976", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000176"),
+        ("2977", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000177"),
+        ("2978", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000178"),
+        ("2979", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000179"),
+        ("2980", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000180"),
+        ("2981", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000181"),
+        ("2982", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000182"),
+        ("2983", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000183"),
+        ("2984", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000184"),
+        ("2985", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000185"),
+        ("2986", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000186"),
+        ("2987", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000187"),
+        ("2988", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000188"),
+        ("2989", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000189"),
+        ("2990", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000190"),
+        ("2991", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000191"),
+        ("2992", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000192"),
+        ("2993", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000193"),
+        ("2994", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000194"),
+        ("2995", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000195"),
+        ("2996", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000196"),
+        ("2997", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000197"),
+        ("2998", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000198"),
+        ("2999", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00000199"),
+        ("3000", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_DESKTOP"),
+        ("3001", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_INTERNET"),
+        ("3002", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_PROGRAMS"),
+        ("3003", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_CONTROLS"),
+        ("3004", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_PRINTERS"),
+        ("3005", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_MYDOCUMENTS"),
+        ("3006", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FAVORITES"),
+        ("3007", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_STARTUP"),
+        ("3008", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_RECENT"),
+        ("3009", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_SENDTO"),
+        ("3010", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_DESKTOPDIRECTORY"),
+        ("3011", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_DRIVES"),
+        ("3012", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_NETWORK"),
+        ("3013", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_NETHOOD"),
+        ("3014", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FONTS"),
+        ("3015", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_TEMPLATES"),
+        ("3016", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_COMMON_STARTMENU"),
+        ("3017", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_COMMON_PROGRAMS"),
+        ("3018", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_COMMON_STARTUP"),
+        ("3019", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_COMMON_DESKTOPDIRECTORY"),
+        ("3020", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_INTERNET_CACHE"),
+        ("3021", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_COOKIES"),
+        ("3022", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_HISTORY"),
+        ("3023", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_COMMON_APPDATA"),
+        ("3024", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_WINDOWS"),
+        ("3025", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_SYSTEM"),
+        ("3026", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_PROGRAM_FILES"),
+        ("3027", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_MYPICTURES"),
+        ("3028", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_PROFILE"),
+        ("3029", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_SYSTEMX86"),
+        ("3030", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_ADMINTOOLS"),
+        ("3031", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_CONNECTIONS"),
+        ("3032", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000032"),
+        ("3033", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000033"),
+        ("3034", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000034"),
+        ("3035", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_COMMON_MUSIC"),
+        ("3036", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_COMMON_PICTURES"),
+        ("3037", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_COMMON_VIDEO"),
+        ("3038", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_RESOURCES"),
+        ("3039", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_RESOURCES_LOCALIZED"),
+        ("3040", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000040"),
+        ("3041", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000041"),
+        ("3042", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000042"),
+        ("3043", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000043"),
+        ("3044", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000044"),
+        ("3045", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000045"),
+        ("3046", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000046"),
+        ("3047", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000047"),
+        ("3048", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000048"),
+        ("3049", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000049"),
+        ("3050", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000050"),
+        ("3051", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000051"),
+        ("3052", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000052"),
+        ("3053", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000053"),
+        ("3054", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000054"),
+        ("3055", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000055"),
+        ("3056", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000056"),
+        ("3057", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000057"),
+        ("3058", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000058"),
+        ("3059", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000059"),
+        ("3060", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000060"),
+        ("3061", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000061"),
+        ("3062", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000062"),
+        ("3063", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000063"),
+        ("3064", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000064"),
+        ("3065", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000065"),
+        ("3066", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000066"),
+        ("3067", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000067"),
+        ("3068", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000068"),
+        ("3069", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000069"),
+        ("3070", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000070"),
+        ("3071", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000071"),
+        ("3072", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000072"),
+        ("3073", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000073"),
+        ("3074", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000074"),
+        ("3075", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000075"),
+        ("3076", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000076"),
+        ("3077", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000077"),
+        ("3078", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000078"),
+        ("3079", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000079"),
+        ("3080", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000080"),
+        ("3081", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000081"),
+        ("3082", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000082"),
+        ("3083", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000083"),
+        ("3084", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000084"),
+        ("3085", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000085"),
+        ("3086", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000086"),
+        ("3087", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000087"),
+        ("3088", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000088"),
+        ("3089", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000089"),
+        ("3090", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000090"),
+        ("3091", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000091"),
+        ("3092", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000092"),
+        ("3093", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000093"),
+        ("3094", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000094"),
+        ("3095", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000095"),
+        ("3096", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000096"),
+        ("3097", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000097"),
+        ("3098", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000098"),
+        ("3099", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000099"),
+        ("3100", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000100"),
+        ("3101", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000101"),
+        ("3102", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000102"),
+        ("3103", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000103"),
+        ("3104", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000104"),
+        ("3105", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000105"),
+        ("3106", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000106"),
+        ("3107", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000107"),
+        ("3108", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000108"),
+        ("3109", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000109"),
+        ("3110", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000110"),
+        ("3111", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000111"),
+        ("3112", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000112"),
+        ("3113", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000113"),
+        ("3114", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000114"),
+        ("3115", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000115"),
+        ("3116", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000116"),
+        ("3117", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000117"),
+        ("3118", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000118"),
+        ("3119", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000119"),
+        ("3120", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000120"),
+        ("3121", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000121"),
+        ("3122", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000122"),
+        ("3123", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000123"),
+        ("3124", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000124"),
+        ("3125", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000125"),
+        ("3126", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000126"),
+        ("3127", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000127"),
+        ("3128", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000128"),
+        ("3129", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000129"),
+        ("3130", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000130"),
+        ("3131", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000131"),
+        ("3132", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000132"),
+        ("3133", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000133"),
+        ("3134", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000134"),
+        ("3135", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000135"),
+        ("3136", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000136"),
+        ("3137", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000137"),
+        ("3138", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000138"),
+        ("3139", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000139"),
+        ("3140", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000140"),
+        ("3141", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000141"),
+        ("3142", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000142"),
+        ("3143", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000143"),
+        ("3144", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000144"),
+        ("3145", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000145"),
+        ("3146", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000146"),
+        ("3147", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000147"),
+        ("3148", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000148"),
+        ("3149", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000149"),
+        ("3150", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000150"),
+        ("3151", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000151"),
+        ("3152", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000152"),
+        ("3153", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000153"),
+        ("3154", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000154"),
+        ("3155", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000155"),
+        ("3156", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000156"),
+        ("3157", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000157"),
+        ("3158", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000158"),
+        ("3159", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000159"),
+        ("3160", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000160"),
+        ("3161", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000161"),
+        ("3162", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000162"),
+        ("3163", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000163"),
+        ("3164", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000164"),
+        ("3165", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000165"),
+        ("3166", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000166"),
+        ("3167", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000167"),
+        ("3168", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000168"),
+        ("3169", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000169"),
+        ("3170", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000170"),
+        ("3171", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000171"),
+        ("3172", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000172"),
+        ("3173", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000173"),
+        ("3174", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000174"),
+        ("3175", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000175"),
+        ("3176", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000176"),
+        ("3177", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000177"),
+        ("3178", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000178"),
+        ("3179", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000179"),
+        ("3180", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000180"),
+        ("3181", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000181"),
+        ("3182", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000182"),
+        ("3183", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000183"),
+        ("3184", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000184"),
+        ("3185", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000185"),
+        ("3186", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000186"),
+        ("3187", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000187"),
+        ("3188", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000188"),
+        ("3189", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000189"),
+        ("3190", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000190"),
+        ("3191", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000191"),
+        ("3192", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000192"),
+        ("3193", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000193"),
+        ("3194", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000194"),
+        ("3195", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000195"),
+        ("3196", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000196"),
+        ("3197", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000197"),
+        ("3198", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000198"),
+        ("3199", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000199"),
+        ("3200", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000200"),
+        ("3201", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000201"),
+        ("3202", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000202"),
+        ("3203", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000203"),
+        ("3204", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000204"),
+        ("3205", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000205"),
+        ("3206", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000206"),
+        ("3207", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000207"),
+        ("3208", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000208"),
+        ("3209", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000209"),
+        ("3210", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000210"),
+        ("3211", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000211"),
+        ("3212", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000212"),
+        ("3213", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000213"),
+        ("3214", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000214"),
+        ("3215", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000215"),
+        ("3216", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000216"),
+        ("3217", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000217"),
+        ("3218", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000218"),
+        ("3219", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000219"),
+        ("3220", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000220"),
+        ("3221", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000221"),
+        ("3222", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000222"),
+        ("3223", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000223"),
+        ("3224", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000224"),
+        ("3225", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000225"),
+        ("3226", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000226"),
+        ("3227", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000227"),
+        ("3228", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000228"),
+        ("3229", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000229"),
+        ("3230", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000230"),
+        ("3231", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000231"),
+        ("3232", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000232"),
+        ("3233", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000233"),
+        ("3234", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000234"),
+        ("3235", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000235"),
+        ("3236", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000236"),
+        ("3237", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000237"),
+        ("3238", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000238"),
+        ("3239", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000239"),
+        ("3240", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000240"),
+        ("3241", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000241"),
+        ("3242", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000242"),
+        ("3243", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000243"),
+        ("3244", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000244"),
+        ("3245", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000245"),
+        ("3246", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000246"),
+        ("3247", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000247"),
+        ("3248", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000248"),
+        ("3249", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000249"),
+        ("3250", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000250"),
+        ("3251", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000251"),
+        ("3252", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000252"),
+        ("3253", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000253"),
+        ("3254", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000254"),
+        ("3255", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000255"),
+        ("3256", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000256"),
+        ("3257", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000257"),
+        ("3258", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000258"),
+        ("3259", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000259"),
+        ("3260", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000260"),
+        ("3261", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000261"),
+        ("3262", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000262"),
+        ("3263", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000263"),
+        ("3264", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000264"),
+        ("3265", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000265"),
+        ("3266", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000266"),
+        ("3267", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000267"),
+        ("3268", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000268"),
+        ("3269", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000269"),
+        ("3270", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000270"),
+        ("3271", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000271"),
+        ("3272", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000272"),
+        ("3273", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000273"),
+        ("3274", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000274"),
+        ("3275", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000275"),
+        ("3276", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000276"),
+        ("3277", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000277"),
+        ("3278", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000278"),
+        ("3279", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000279"),
+        ("3280", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000280"),
+        ("3281", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000281"),
+        ("3282", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000282"),
+        ("3283", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000283"),
+        ("3284", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000284"),
+        ("3285", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000285"),
+        ("3286", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000286"),
+        ("3287", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000287"),
+        ("3288", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000288"),
+        ("3289", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000289"),
+        ("3290", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000290"),
+        ("3291", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000291"),
+        ("3292", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000292"),
+        ("3293", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000293"),
+        ("3294", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000294"),
+        ("3295", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000295"),
+        ("3296", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000296"),
+        ("3297", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000297"),
+        ("3298", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000298"),
+        ("3299", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000299"),
+        ("3300", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000300"),
+        ("3301", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000301"),
+        ("3302", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000302"),
+        ("3303", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000303"),
+        ("3304", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000304"),
+        ("3305", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000305"),
+        ("3306", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000306"),
+        ("3307", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000307"),
+        ("3308", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000308"),
+        ("3309", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000309"),
+        ("3310", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000310"),
+        ("3311", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000311"),
+        ("3312", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000312"),
+        ("3313", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000313"),
+        ("3314", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000314"),
+        ("3315", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000315"),
+        ("3316", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000316"),
+        ("3317", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000317"),
+        ("3318", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000318"),
+        ("3319", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000319"),
+        ("3320", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000320"),
+        ("3321", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000321"),
+        ("3322", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000322"),
+        ("3323", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000323"),
+        ("3324", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000324"),
+        ("3325", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000325"),
+        ("3326", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000326"),
+        ("3327", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000327"),
+        ("3328", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000328"),
+        ("3329", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000329"),
+        ("3330", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000330"),
+        ("3331", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000331"),
+        ("3332", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000332"),
+        ("3333", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000333"),
+        ("3334", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000334"),
+        ("3335", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000335"),
+        ("3336", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000336"),
+        ("3337", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000337"),
+        ("3338", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000338"),
+        ("3339", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000339"),
+        ("3340", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000340"),
+        ("3341", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000341"),
+        ("3342", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000342"),
+        ("3343", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000343"),
+        ("3344", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000344"),
+        ("3345", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000345"),
+        ("3346", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000346"),
+        ("3347", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000347"),
+        ("3348", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000348"),
+        ("3349", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000349"),
+        ("3350", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000350"),
+        ("3351", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000351"),
+        ("3352", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000352"),
+        ("3353", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000353"),
+        ("3354", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000354"),
+        ("3355", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000355"),
+        ("3356", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000356"),
+        ("3357", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000357"),
+        ("3358", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000358"),
+        ("3359", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000359"),
+        ("3360", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000360"),
+        ("3361", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000361"),
+        ("3362", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000362"),
+        ("3363", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000363"),
+        ("3364", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000364"),
+        ("3365", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000365"),
+        ("3366", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000366"),
+        ("3367", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000367"),
+        ("3368", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000368"),
+        ("3369", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000369"),
+        ("3370", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000370"),
+        ("3371", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000371"),
+        ("3372", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000372"),
+        ("3373", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000373"),
+        ("3374", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000374"),
+        ("3375", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000375"),
+        ("3376", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000376"),
+        ("3377", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000377"),
+        ("3378", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000378"),
+        ("3379", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000379"),
+        ("3380", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000380"),
+        ("3381", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000381"),
+        ("3382", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000382"),
+        ("3383", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000383"),
+        ("3384", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000384"),
+        ("3385", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000385"),
+        ("3386", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000386"),
+        ("3387", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000387"),
+        ("3388", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000388"),
+        ("3389", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000389"),
+        ("3390", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000390"),
+        ("3391", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000391"),
+        ("3392", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000392"),
+        ("3393", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000393"),
+        ("3394", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000394"),
+        ("3395", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000395"),
+        ("3396", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000396"),
+        ("3397", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000397"),
+        ("3398", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000398"),
+        ("3399", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000399"),
+        ("3400", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000400"),
+        ("3401", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000401"),
+        ("3402", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000402"),
+        ("3403", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000403"),
+        ("3404", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000404"),
+        ("3405", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000405"),
+        ("3406", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000406"),
+        ("3407", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000407"),
+        ("3408", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000408"),
+        ("3409", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000409"),
+        ("3410", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000410"),
+        ("3411", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000411"),
+        ("3412", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000412"),
+        ("3413", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000413"),
+        ("3414", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000414"),
+        ("3415", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000415"),
+        ("3416", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000416"),
+        ("3417", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000417"),
+        ("3418", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000418"),
+        ("3419", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000419"),
+        ("3420", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000420"),
+        ("3421", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000421"),
+        ("3422", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000422"),
+        ("3423", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000423"),
+        ("3424", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000424"),
+        ("3425", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000425"),
+        ("3426", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000426"),
+        ("3427", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000427"),
+        ("3428", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000428"),
+        ("3429", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000429"),
+        ("3430", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000430"),
+        ("3431", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000431"),
+        ("3432", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000432"),
+        ("3433", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000433"),
+        ("3434", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000434"),
+        ("3435", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000435"),
+        ("3436", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000436"),
+        ("3437", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000437"),
+        ("3438", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000438"),
+        ("3439", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000439"),
+        ("3440", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000440"),
+        ("3441", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000441"),
+        ("3442", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000442"),
+        ("3443", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000443"),
+        ("3444", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000444"),
+        ("3445", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000445"),
+        ("3446", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000446"),
+        ("3447", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000447"),
+        ("3448", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000448"),
+        ("3449", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000449"),
+        ("3450", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000450"),
+        ("3451", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000451"),
+        ("3452", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000452"),
+        ("3453", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000453"),
+        ("3454", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000454"),
+        ("3455", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000455"),
+        ("3456", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000456"),
+        ("3457", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000457"),
+        ("3458", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000458"),
+        ("3459", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000459"),
+        ("3460", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000460"),
+        ("3461", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000461"),
+        ("3462", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000462"),
+        ("3463", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000463"),
+        ("3464", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000464"),
+        ("3465", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000465"),
+        ("3466", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000466"),
+        ("3467", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000467"),
+        ("3468", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000468"),
+        ("3469", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000469"),
+        ("3470", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000470"),
+        ("3471", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000471"),
+        ("3472", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000472"),
+        ("3473", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000473"),
+        ("3474", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000474"),
+        ("3475", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000475"),
+        ("3476", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000476"),
+        ("3477", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000477"),
+        ("3478", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000478"),
+        ("3479", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000479"),
+        ("3480", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000480"),
+        ("3481", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000481"),
+        ("3482", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000482"),
+        ("3483", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000483"),
+        ("3484", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000484"),
+        ("3485", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000485"),
+        ("3486", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000486"),
+        ("3487", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000487"),
+        ("3488", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000488"),
+        ("3489", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000489"),
+        ("3490", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000490"),
+        ("3491", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000491"),
+        ("3492", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000492"),
+        ("3493", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000493"),
+        ("3494", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000494"),
+        ("3495", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000495"),
+        ("3496", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000496"),
+        ("3497", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000497"),
+        ("3498", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000498"),
+        ("3499", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000499"),
+        ("3500", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000500"),
+        ("3501", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000501"),
+        ("3502", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000502"),
+        ("3503", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000503"),
+        ("3504", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000504"),
+        ("3505", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000505"),
+        ("3506", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000506"),
+        ("3507", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000507"),
+        ("3508", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000508"),
+        ("3509", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000509"),
+        ("3510", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000510"),
+        ("3511", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000511"),
+        ("3512", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000512"),
+        ("3513", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000513"),
+        ("3514", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000514"),
+        ("3515", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000515"),
+        ("3516", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000516"),
+        ("3517", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000517"),
+        ("3518", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000518"),
+        ("3519", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000519"),
+        ("3520", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000520"),
+        ("3521", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000521"),
+        ("3522", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000522"),
+        ("3523", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000523"),
+        ("3524", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000524"),
+        ("3525", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000525"),
+        ("3526", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000526"),
+        ("3527", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000527"),
+        ("3528", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000528"),
+        ("3529", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000529"),
+        ("3530", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000530"),
+        ("3531", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000531"),
+        ("3532", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000532"),
+        ("3533", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000533"),
+        ("3534", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000534"),
+        ("3535", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000535"),
+        ("3536", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000536"),
+        ("3537", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000537"),
+        ("3538", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000538"),
+        ("3539", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000539"),
+        ("3540", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000540"),
+        ("3541", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000541"),
+        ("3542", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000542"),
+        ("3543", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000543"),
+        ("3544", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000544"),
+        ("3545", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000545"),
+        ("3546", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000546"),
+        ("3547", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000547"),
+        ("3548", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000548"),
+        ("3549", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000549"),
+        ("3550", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000550"),
+        ("3551", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000551"),
+        ("3552", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000552"),
+        ("3553", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000553"),
+        ("3554", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000554"),
+        ("3555", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000555"),
+        ("3556", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000556"),
+        ("3557", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000557"),
+        ("3558", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000558"),
+        ("3559", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000559"),
+        ("3560", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000560"),
+        ("3561", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000561"),
+        ("3562", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000562"),
+        ("3563", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000563"),
+        ("3564", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000564"),
+        ("3565", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000565"),
+        ("3566", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000566"),
+        ("3567", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000567"),
+        ("3568", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000568"),
+        ("3569", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000569"),
+        ("3570", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000570"),
+        ("3571", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000571"),
+        ("3572", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000572"),
+        ("3573", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000573"),
+        ("3574", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000574"),
+        ("3575", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000575"),
+        ("3576", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000576"),
+        ("3577", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000577"),
+        ("3578", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000578"),
+        ("3579", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000579"),
+        ("3580", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000580"),
+        ("3581", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000581"),
+        ("3582", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000582"),
+        ("3583", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000583"),
+        ("3584", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000584"),
+        ("3585", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000585"),
+        ("3586", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000586"),
+        ("3587", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000587"),
+        ("3588", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000588"),
+        ("3589", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000589"),
+        ("3590", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000590"),
+        ("3591", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000591"),
+        ("3592", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000592"),
+        ("3593", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000593"),
+        ("3594", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000594"),
+        ("3595", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000595"),
+        ("3596", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000596"),
+        ("3597", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000597"),
+        ("3598", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000598"),
+        ("3599", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000599"),
+        ("3600", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000600"),
+        ("3601", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000601"),
+        ("3602", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000602"),
+        ("3603", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000603"),
+        ("3604", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000604"),
+        ("3605", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000605"),
+        ("3606", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000606"),
+        ("3607", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000607"),
+        ("3608", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000608"),
+        ("3609", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000609"),
+        ("3610", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000610"),
+        ("3611", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000611"),
+        ("3612", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000612"),
+        ("3613", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000613"),
+        ("3614", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000614"),
+        ("3615", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000615"),
+        ("3616", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000616"),
+        ("3617", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000617"),
+        ("3618", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000618"),
+        ("3619", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000619"),
+        ("3620", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000620"),
+        ("3621", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000621"),
+        ("3622", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000622"),
+        ("3623", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000623"),
+        ("3624", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000624"),
+        ("3625", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000625"),
+        ("3626", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000626"),
+        ("3627", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000627"),
+        ("3628", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000628"),
+        ("3629", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000629"),
+        ("3630", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000630"),
+        ("3631", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000631"),
+        ("3632", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000632"),
+        ("3633", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000633"),
+        ("3634", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000634"),
+        ("3635", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000635"),
+        ("3636", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000636"),
+        ("3637", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000637"),
+        ("3638", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000638"),
+        ("3639", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000639"),
+        ("3640", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000640"),
+        ("3641", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000641"),
+        ("3642", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000642"),
+        ("3643", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000643"),
+        ("3644", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000644"),
+        ("3645", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000645"),
+        ("3646", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000646"),
+        ("3647", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000647"),
+        ("3648", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000648"),
+        ("3649", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000649"),
+        ("3650", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000650"),
+        ("3651", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000651"),
+        ("3652", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000652"),
+        ("3653", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000653"),
+        ("3654", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000654"),
+        ("3655", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000655"),
+        ("3656", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000656"),
+        ("3657", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000657"),
+        ("3658", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000658"),
+        ("3659", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000659"),
+        ("3660", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000660"),
+        ("3661", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000661"),
+        ("3662", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000662"),
+        ("3663", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000663"),
+        ("3664", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000664"),
+        ("3665", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000665"),
+        ("3666", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000666"),
+        ("3667", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000667"),
+        ("3668", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000668"),
+        ("3669", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000669"),
+        ("3670", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000670"),
+        ("3671", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000671"),
+        ("3672", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000672"),
+        ("3673", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000673"),
+        ("3674", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000674"),
+        ("3675", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000675"),
+        ("3676", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000676"),
+        ("3677", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000677"),
+        ("3678", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000678"),
+        ("3679", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000679"),
+        ("3680", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000680"),
+        ("3681", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000681"),
+        ("3682", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000682"),
+        ("3683", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000683"),
+        ("3684", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000684"),
+        ("3685", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000685"),
+        ("3686", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000686"),
+        ("3687", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000687"),
+        ("3688", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000688"),
+        ("3689", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000689"),
+        ("3690", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000690"),
+        ("3691", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000691"),
+        ("3692", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000692"),
+        ("3693", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000693"),
+        ("3694", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000694"),
+        ("3695", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000695"),
+        ("3696", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000696"),
+        ("3697", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000697"),
+        ("3698", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000698"),
+        ("3699", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000699"),
+        ("3700", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000700"),
+        ("3701", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000701"),
+        ("3702", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000702"),
+        ("3703", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000703"),
+        ("3704", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000704"),
+        ("3705", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000705"),
+        ("3706", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000706"),
+        ("3707", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000707"),
+        ("3708", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000708"),
+        ("3709", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000709"),
+        ("3710", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000710"),
+        ("3711", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000711"),
+        ("3712", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000712"),
+        ("3713", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000713"),
+        ("3714", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000714"),
+        ("3715", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000715"),
+        ("3716", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000716"),
+        ("3717", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000717"),
+        ("3718", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000718"),
+        ("3719", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000719"),
+        ("3720", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000720"),
+        ("3721", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000721"),
+        ("3722", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000722"),
+        ("3723", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000723"),
+        ("3724", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000724"),
+        ("3725", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000725"),
+        ("3726", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000726"),
+        ("3727", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000727"),
+        ("3728", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000728"),
+        ("3729", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000729"),
+        ("3730", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000730"),
+        ("3731", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000731"),
+        ("3732", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000732"),
+        ("3733", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000733"),
+        ("3734", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000734"),
+        ("3735", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000735"),
+        ("3736", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000736"),
+        ("3737", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000737"),
+        ("3738", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000738"),
+        ("3739", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000739"),
+        ("3740", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000740"),
+        ("3741", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000741"),
+        ("3742", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000742"),
+        ("3743", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000743"),
+        ("3744", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000744"),
+        ("3745", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000745"),
+        ("3746", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000746"),
+        ("3747", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000747"),
+        ("3748", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000748"),
+        ("3749", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000749"),
+        ("3750", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000750"),
+        ("3751", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000751"),
+        ("3752", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000752"),
+        ("3753", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000753"),
+        ("3754", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000754"),
+        ("3755", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000755"),
+        ("3756", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000756"),
+        ("3757", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000757"),
+        ("3758", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000758"),
+        ("3759", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000759"),
+        ("3760", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000760"),
+        ("3761", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000761"),
+        ("3762", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000762"),
+        ("3763", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000763"),
+        ("3764", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000764"),
+        ("3765", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000765"),
+        ("3766", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000766"),
+        ("3767", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000767"),
+        ("3768", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000768"),
+        ("3769", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000769"),
+        ("3770", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000770"),
+        ("3771", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000771"),
+        ("3772", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000772"),
+        ("3773", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000773"),
+        ("3774", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000774"),
+        ("3775", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000775"),
+        ("3776", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000776"),
+        ("3777", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000777"),
+        ("3778", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000778"),
+        ("3779", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000779"),
+        ("3780", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000780"),
+        ("3781", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000781"),
+        ("3782", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000782"),
+        ("3783", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000783"),
+        ("3784", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000784"),
+        ("3785", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000785"),
+        ("3786", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000786"),
+        ("3787", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000787"),
+        ("3788", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000788"),
+        ("3789", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000789"),
+        ("3790", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000790"),
+        ("3791", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000791"),
+        ("3792", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000792"),
+        ("3793", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000793"),
+        ("3794", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000794"),
+        ("3795", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000795"),
+        ("3796", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000796"),
+        ("3797", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000797"),
+        ("3798", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000798"),
+        ("3799", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000799"),
+        ("3800", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_DESKTOP"),
+        ("3801", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_INTERNET"),
+        ("3802", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_PROGRAMS"),
+        ("3803", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_CONTROLS"),
+        ("3804", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_PRINTERS"),
+        ("3805", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_MYDOCUMENTS"),
+        ("3806", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FAVORITES"),
+        ("3807", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_STARTUP"),
+        ("3808", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_RECENT"),
+        ("3809", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_SENDTO"),
+        ("3810", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_DESKTOPDIRECTORY"),
+        ("3811", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_DRIVES"),
+        ("3812", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_NETWORK"),
+        ("3813", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_NETHOOD"),
+        ("3814", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FONTS"),
+        ("3815", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_TEMPLATES"),
+        ("3816", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_COMMON_STARTMENU"),
+        ("3817", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_COMMON_PROGRAMS"),
+        ("3818", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_COMMON_STARTUP"),
+        ("3819", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_COMMON_DESKTOPDIRECTORY"),
+        ("3820", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_INTERNET_CACHE"),
+        ("3821", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_COOKIES"),
+        ("3822", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_HISTORY"),
+        ("3823", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_COMMON_APPDATA"),
+        ("3824", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_WINDOWS"),
+        ("3825", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_SYSTEM"),
+        ("3826", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_PROGRAM_FILES"),
+        ("3827", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_MYPICTURES"),
+        ("3828", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_PROFILE"),
+        ("3829", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_SYSTEMX86"),
+        ("3830", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_ADMINTOOLS"),
+        ("3831", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_CONNECTIONS"),
+        ("3832", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000032"),
+        ("3833", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000033"),
+        ("3834", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000034"),
+        ("3835", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_COMMON_MUSIC"),
+        ("3836", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_COMMON_PICTURES"),
+        ("3837", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_COMMON_VIDEO"),
+        ("3838", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_RESOURCES"),
+        ("3839", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_RESOURCES_LOCALIZED"),
+        ("3840", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000040"),
+        ("3841", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000041"),
+        ("3842", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000042"),
+        ("3843", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000043"),
+        ("3844", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000044"),
+        ("3845", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000045"),
+        ("3846", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000046"),
+        ("3847", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000047"),
+        ("3848", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000048"),
+        ("3849", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000049"),
+        ("3850", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000050"),
+        ("3851", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000051"),
+        ("3852", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000052"),
+        ("3853", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000053"),
+        ("3854", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000054"),
+        ("3855", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000055"),
+        ("3856", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000056"),
+        ("3857", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000057"),
+        ("3858", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000058"),
+        ("3859", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000059"),
+        ("3860", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000060"),
+        ("3861", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000061"),
+        ("3862", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000062"),
+        ("3863", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000063"),
+        ("3864", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000064"),
+        ("3865", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000065"),
+        ("3866", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000066"),
+        ("3867", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000067"),
+        ("3868", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000068"),
+        ("3869", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000069"),
+        ("3870", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000070"),
+        ("3871", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000071"),
+        ("3872", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000072"),
+        ("3873", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000073"),
+        ("3874", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000074"),
+        ("3875", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000075"),
+        ("3876", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000076"),
+        ("3877", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000077"),
+        ("3878", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000078"),
+        ("3879", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000079"),
+        ("3880", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000080"),
+        ("3881", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000081"),
+        ("3882", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000082"),
+        ("3883", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000083"),
+        ("3884", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000084"),
+        ("3885", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000085"),
+        ("3886", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000086"),
+        ("3887", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000087"),
+        ("3888", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000088"),
+        ("3889", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000089"),
+        ("3890", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000090"),
+        ("3891", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000091"),
+        ("3892", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000092"),
+        ("3893", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000093"),
+        ("3894", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000094"),
+        ("3895", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000095"),
+        ("3896", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000096"),
+        ("3897", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000097"),
+        ("3898", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000098"),
+        ("3899", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000099"),
+        ("3900", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000100"),
+        ("3901", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000101"),
+        ("3902", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000102"),
+        ("3903", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000103"),
+        ("3904", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000104"),
+        ("3905", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000105"),
+        ("3906", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000106"),
+        ("3907", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000107"),
+        ("3908", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000108"),
+        ("3909", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000109"),
+        ("3910", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000110"),
+        ("3911", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000111"),
+        ("3912", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000112"),
+        ("3913", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000113"),
+        ("3914", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000114"),
+        ("3915", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000115"),
+        ("3916", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000116"),
+        ("3917", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000117"),
+        ("3918", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000118"),
+        ("3919", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000119"),
+        ("3920", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000120"),
+        ("3921", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000121"),
+        ("3922", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000122"),
+        ("3923", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000123"),
+        ("3924", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000124"),
+        ("3925", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000125"),
+        ("3926", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000126"),
+        ("3927", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000127"),
+        ("3928", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000128"),
+        ("3929", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000129"),
+        ("3930", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000130"),
+        ("3931", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000131"),
+        ("3932", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000132"),
+        ("3933", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000133"),
+        ("3934", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000134"),
+        ("3935", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000135"),
+        ("3936", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000136"),
+        ("3937", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000137"),
+        ("3938", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000138"),
+        ("3939", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000139"),
+        ("3940", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000140"),
+        ("3941", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000141"),
+        ("3942", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000142"),
+        ("3943", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000143"),
+        ("3944", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000144"),
+        ("3945", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000145"),
+        ("3946", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000146"),
+        ("3947", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000147"),
+        ("3948", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000148"),
+        ("3949", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000149"),
+        ("3950", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000150"),
+        ("3951", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000151"),
+        ("3952", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000152"),
+        ("3953", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000153"),
+        ("3954", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000154"),
+        ("3955", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000155"),
+        ("3956", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000156"),
+        ("3957", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000157"),
+        ("3958", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000158"),
+        ("3959", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000159"),
+        ("3960", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000160"),
+        ("3961", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000161"),
+        ("3962", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000162"),
+        ("3963", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000163"),
+        ("3964", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000164"),
+        ("3965", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000165"),
+        ("3966", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000166"),
+        ("3967", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000167"),
+        ("3968", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000168"),
+        ("3969", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000169"),
+        ("3970", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000170"),
+        ("3971", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000171"),
+        ("3972", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000172"),
+        ("3973", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000173"),
+        ("3974", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000174"),
+        ("3975", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000175"),
+        ("3976", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000176"),
+        ("3977", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000177"),
+        ("3978", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000178"),
+        ("3979", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000179"),
+        ("3980", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000180"),
+        ("3981", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000181"),
+        ("3982", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000182"),
+        ("3983", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000183"),
+        ("3984", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000184"),
+        ("3985", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000185"),
+        ("3986", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000186"),
+        ("3987", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000187"),
+        ("3988", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000188"),
+        ("3989", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000189"),
+        ("3990", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000190"),
+        ("3991", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000191"),
+        ("3992", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000192"),
+        ("3993", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000193"),
+        ("3994", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000194"),
+        ("3995", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000195"),
+        ("3996", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000196"),
+        ("3997", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000197"),
+        ("3998", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000198"),
+        ("3999", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00000199"),
+        ("4000", "CSIDL_FLAG_DONT_VERIFY|CSIDL_DESKTOP"),
+        ("4001", "CSIDL_FLAG_DONT_VERIFY|CSIDL_INTERNET"),
+        ("4002", "CSIDL_FLAG_DONT_VERIFY|CSIDL_PROGRAMS"),
+        ("4003", "CSIDL_FLAG_DONT_VERIFY|CSIDL_CONTROLS"),
+        ("4004", "CSIDL_FLAG_DONT_VERIFY|CSIDL_PRINTERS"),
+        ("4005", "CSIDL_FLAG_DONT_VERIFY|CSIDL_MYDOCUMENTS"),
+        ("4006", "CSIDL_FLAG_DONT_VERIFY|CSIDL_FAVORITES"),
+        ("4007", "CSIDL_FLAG_DONT_VERIFY|CSIDL_STARTUP"),
+        ("4008", "CSIDL_FLAG_DONT_VERIFY|CSIDL_RECENT"),
+        ("4009", "CSIDL_FLAG_DONT_VERIFY|CSIDL_SENDTO"),
+        ("4010", "CSIDL_FLAG_DONT_VERIFY|CSIDL_DESKTOPDIRECTORY"),
+        ("4011", "CSIDL_FLAG_DONT_VERIFY|CSIDL_DRIVES"),
+        ("4012", "CSIDL_FLAG_DONT_VERIFY|CSIDL_NETWORK"),
+        ("4013", "CSIDL_FLAG_DONT_VERIFY|CSIDL_NETHOOD"),
+        ("4014", "CSIDL_FLAG_DONT_VERIFY|CSIDL_FONTS"),
+        ("4015", "CSIDL_FLAG_DONT_VERIFY|CSIDL_TEMPLATES"),
+        ("4016", "CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_STARTMENU"),
+        ("4017", "CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_PROGRAMS"),
+        ("4018", "CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_STARTUP"),
+        ("4019", "CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_DESKTOPDIRECTORY"),
+        ("4020", "CSIDL_FLAG_DONT_VERIFY|CSIDL_INTERNET_CACHE"),
+        ("4021", "CSIDL_FLAG_DONT_VERIFY|CSIDL_COOKIES"),
+        ("4022", "CSIDL_FLAG_DONT_VERIFY|CSIDL_HISTORY"),
+        ("4023", "CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_APPDATA"),
+        ("4024", "CSIDL_FLAG_DONT_VERIFY|CSIDL_WINDOWS"),
+        ("4025", "CSIDL_FLAG_DONT_VERIFY|CSIDL_SYSTEM"),
+        ("4026", "CSIDL_FLAG_DONT_VERIFY|CSIDL_PROGRAM_FILES"),
+        ("4027", "CSIDL_FLAG_DONT_VERIFY|CSIDL_MYPICTURES"),
+        ("4028", "CSIDL_FLAG_DONT_VERIFY|CSIDL_PROFILE"),
+        ("4029", "CSIDL_FLAG_DONT_VERIFY|CSIDL_SYSTEMX86"),
+        ("4030", "CSIDL_FLAG_DONT_VERIFY|CSIDL_ADMINTOOLS"),
+        ("4031", "CSIDL_FLAG_DONT_VERIFY|CSIDL_CONNECTIONS"),
+        ("4032", "CSIDL_FLAG_DONT_VERIFY|0x00000032"),
+        ("4033", "CSIDL_FLAG_DONT_VERIFY|0x00000033"),
+        ("4034", "CSIDL_FLAG_DONT_VERIFY|0x00000034"),
+        ("4035", "CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_MUSIC"),
+        ("4036", "CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_PICTURES"),
+        ("4037", "CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_VIDEO"),
+        ("4038", "CSIDL_FLAG_DONT_VERIFY|CSIDL_RESOURCES"),
+        ("4039", "CSIDL_FLAG_DONT_VERIFY|CSIDL_RESOURCES_LOCALIZED"),
+        ("4040", "CSIDL_FLAG_DONT_VERIFY|0x00000040"),
+        ("4041", "CSIDL_FLAG_DONT_VERIFY|0x00000041"),
+        ("4042", "CSIDL_FLAG_DONT_VERIFY|0x00000042"),
+        ("4043", "CSIDL_FLAG_DONT_VERIFY|0x00000043"),
+        ("4044", "CSIDL_FLAG_DONT_VERIFY|0x00000044"),
+        ("4045", "CSIDL_FLAG_DONT_VERIFY|0x00000045"),
+        ("4046", "CSIDL_FLAG_DONT_VERIFY|0x00000046"),
+        ("4047", "CSIDL_FLAG_DONT_VERIFY|0x00000047"),
+        ("4048", "CSIDL_FLAG_DONT_VERIFY|0x00000048"),
+        ("4049", "CSIDL_FLAG_DONT_VERIFY|0x00000049"),
+        ("4050", "CSIDL_FLAG_DONT_VERIFY|0x00000050"),
+        ("4051", "CSIDL_FLAG_DONT_VERIFY|0x00000051"),
+        ("4052", "CSIDL_FLAG_DONT_VERIFY|0x00000052"),
+        ("4053", "CSIDL_FLAG_DONT_VERIFY|0x00000053"),
+        ("4054", "CSIDL_FLAG_DONT_VERIFY|0x00000054"),
+        ("4055", "CSIDL_FLAG_DONT_VERIFY|0x00000055"),
+        ("4056", "CSIDL_FLAG_DONT_VERIFY|0x00000056"),
+        ("4057", "CSIDL_FLAG_DONT_VERIFY|0x00000057"),
+        ("4058", "CSIDL_FLAG_DONT_VERIFY|0x00000058"),
+        ("4059", "CSIDL_FLAG_DONT_VERIFY|0x00000059"),
+        ("4060", "CSIDL_FLAG_DONT_VERIFY|0x00000060"),
+        ("4061", "CSIDL_FLAG_DONT_VERIFY|0x00000061"),
+        ("4062", "CSIDL_FLAG_DONT_VERIFY|0x00000062"),
+        ("4063", "CSIDL_FLAG_DONT_VERIFY|0x00000063"),
+        ("4064", "CSIDL_FLAG_DONT_VERIFY|0x00000064"),
+        ("4065", "CSIDL_FLAG_DONT_VERIFY|0x00000065"),
+        ("4066", "CSIDL_FLAG_DONT_VERIFY|0x00000066"),
+        ("4067", "CSIDL_FLAG_DONT_VERIFY|0x00000067"),
+        ("4068", "CSIDL_FLAG_DONT_VERIFY|0x00000068"),
+        ("4069", "CSIDL_FLAG_DONT_VERIFY|0x00000069"),
+        ("4070", "CSIDL_FLAG_DONT_VERIFY|0x00000070"),
+        ("4071", "CSIDL_FLAG_DONT_VERIFY|0x00000071"),
+        ("4072", "CSIDL_FLAG_DONT_VERIFY|0x00000072"),
+        ("4073", "CSIDL_FLAG_DONT_VERIFY|0x00000073"),
+        ("4074", "CSIDL_FLAG_DONT_VERIFY|0x00000074"),
+        ("4075", "CSIDL_FLAG_DONT_VERIFY|0x00000075"),
+        ("4076", "CSIDL_FLAG_DONT_VERIFY|0x00000076"),
+        ("4077", "CSIDL_FLAG_DONT_VERIFY|0x00000077"),
+        ("4078", "CSIDL_FLAG_DONT_VERIFY|0x00000078"),
+        ("4079", "CSIDL_FLAG_DONT_VERIFY|0x00000079"),
+        ("4080", "CSIDL_FLAG_DONT_VERIFY|0x00000080"),
+        ("4081", "CSIDL_FLAG_DONT_VERIFY|0x00000081"),
+        ("4082", "CSIDL_FLAG_DONT_VERIFY|0x00000082"),
+        ("4083", "CSIDL_FLAG_DONT_VERIFY|0x00000083"),
+        ("4084", "CSIDL_FLAG_DONT_VERIFY|0x00000084"),
+        ("4085", "CSIDL_FLAG_DONT_VERIFY|0x00000085"),
+        ("4086", "CSIDL_FLAG_DONT_VERIFY|0x00000086"),
+        ("4087", "CSIDL_FLAG_DONT_VERIFY|0x00000087"),
+        ("4088", "CSIDL_FLAG_DONT_VERIFY|0x00000088"),
+        ("4089", "CSIDL_FLAG_DONT_VERIFY|0x00000089"),
+        ("4090", "CSIDL_FLAG_DONT_VERIFY|0x00000090"),
+        ("4091", "CSIDL_FLAG_DONT_VERIFY|0x00000091"),
+        ("4092", "CSIDL_FLAG_DONT_VERIFY|0x00000092"),
+        ("4093", "CSIDL_FLAG_DONT_VERIFY|0x00000093"),
+        ("4094", "CSIDL_FLAG_DONT_VERIFY|0x00000094"),
+        ("4095", "CSIDL_FLAG_DONT_VERIFY|0x00000095"),
+        ("4096", "CSIDL_FLAG_DONT_VERIFY|0x00000096"),
+        ("4097", "CSIDL_FLAG_DONT_VERIFY|0x00000097"),
+        ("4098", "CSIDL_FLAG_DONT_VERIFY|0x00000098"),
+        ("4099", "CSIDL_FLAG_DONT_VERIFY|0x00000099"),
+        ("4100", "CSIDL_FLAG_DONT_VERIFY|0x00000100"),
+        ("4101", "CSIDL_FLAG_DONT_VERIFY|0x00000101"),
+        ("4102", "CSIDL_FLAG_DONT_VERIFY|0x00000102"),
+        ("4103", "CSIDL_FLAG_DONT_VERIFY|0x00000103"),
+        ("4104", "CSIDL_FLAG_DONT_VERIFY|0x00000104"),
+        ("4105", "CSIDL_FLAG_DONT_VERIFY|0x00000105"),
+        ("4106", "CSIDL_FLAG_DONT_VERIFY|0x00000106"),
+        ("4107", "CSIDL_FLAG_DONT_VERIFY|0x00000107"),
+        ("4108", "CSIDL_FLAG_DONT_VERIFY|0x00000108"),
+        ("4109", "CSIDL_FLAG_DONT_VERIFY|0x00000109"),
+        ("4110", "CSIDL_FLAG_DONT_VERIFY|0x00000110"),
+        ("4111", "CSIDL_FLAG_DONT_VERIFY|0x00000111"),
+        ("4112", "CSIDL_FLAG_DONT_VERIFY|0x00000112"),
+        ("4113", "CSIDL_FLAG_DONT_VERIFY|0x00000113"),
+        ("4114", "CSIDL_FLAG_DONT_VERIFY|0x00000114"),
+        ("4115", "CSIDL_FLAG_DONT_VERIFY|0x00000115"),
+        ("4116", "CSIDL_FLAG_DONT_VERIFY|0x00000116"),
+        ("4117", "CSIDL_FLAG_DONT_VERIFY|0x00000117"),
+        ("4118", "CSIDL_FLAG_DONT_VERIFY|0x00000118"),
+        ("4119", "CSIDL_FLAG_DONT_VERIFY|0x00000119"),
+        ("4120", "CSIDL_FLAG_DONT_VERIFY|0x00000120"),
+        ("4121", "CSIDL_FLAG_DONT_VERIFY|0x00000121"),
+        ("4122", "CSIDL_FLAG_DONT_VERIFY|0x00000122"),
+        ("4123", "CSIDL_FLAG_DONT_VERIFY|0x00000123"),
+        ("4124", "CSIDL_FLAG_DONT_VERIFY|0x00000124"),
+        ("4125", "CSIDL_FLAG_DONT_VERIFY|0x00000125"),
+        ("4126", "CSIDL_FLAG_DONT_VERIFY|0x00000126"),
+        ("4127", "CSIDL_FLAG_DONT_VERIFY|0x00000127"),
+        ("4128", "CSIDL_FLAG_DONT_VERIFY|0x00000128"),
+        ("4129", "CSIDL_FLAG_DONT_VERIFY|0x00000129"),
+        ("4130", "CSIDL_FLAG_DONT_VERIFY|0x00000130"),
+        ("4131", "CSIDL_FLAG_DONT_VERIFY|0x00000131"),
+        ("4132", "CSIDL_FLAG_DONT_VERIFY|0x00000132"),
+        ("4133", "CSIDL_FLAG_DONT_VERIFY|0x00000133"),
+        ("4134", "CSIDL_FLAG_DONT_VERIFY|0x00000134"),
+        ("4135", "CSIDL_FLAG_DONT_VERIFY|0x00000135"),
+        ("4136", "CSIDL_FLAG_DONT_VERIFY|0x00000136"),
+        ("4137", "CSIDL_FLAG_DONT_VERIFY|0x00000137"),
+        ("4138", "CSIDL_FLAG_DONT_VERIFY|0x00000138"),
+        ("4139", "CSIDL_FLAG_DONT_VERIFY|0x00000139"),
+        ("4140", "CSIDL_FLAG_DONT_VERIFY|0x00000140"),
+        ("4141", "CSIDL_FLAG_DONT_VERIFY|0x00000141"),
+        ("4142", "CSIDL_FLAG_DONT_VERIFY|0x00000142"),
+        ("4143", "CSIDL_FLAG_DONT_VERIFY|0x00000143"),
+        ("4144", "CSIDL_FLAG_DONT_VERIFY|0x00000144"),
+        ("4145", "CSIDL_FLAG_DONT_VERIFY|0x00000145"),
+        ("4146", "CSIDL_FLAG_DONT_VERIFY|0x00000146"),
+        ("4147", "CSIDL_FLAG_DONT_VERIFY|0x00000147"),
+        ("4148", "CSIDL_FLAG_DONT_VERIFY|0x00000148"),
+        ("4149", "CSIDL_FLAG_DONT_VERIFY|0x00000149"),
+        ("4150", "CSIDL_FLAG_DONT_VERIFY|0x00000150"),
+        ("4151", "CSIDL_FLAG_DONT_VERIFY|0x00000151"),
+        ("4152", "CSIDL_FLAG_DONT_VERIFY|0x00000152"),
+        ("4153", "CSIDL_FLAG_DONT_VERIFY|0x00000153"),
+        ("4154", "CSIDL_FLAG_DONT_VERIFY|0x00000154"),
+        ("4155", "CSIDL_FLAG_DONT_VERIFY|0x00000155"),
+        ("4156", "CSIDL_FLAG_DONT_VERIFY|0x00000156"),
+        ("4157", "CSIDL_FLAG_DONT_VERIFY|0x00000157"),
+        ("4158", "CSIDL_FLAG_DONT_VERIFY|0x00000158"),
+        ("4159", "CSIDL_FLAG_DONT_VERIFY|0x00000159"),
+        ("4160", "CSIDL_FLAG_DONT_VERIFY|0x00000160"),
+        ("4161", "CSIDL_FLAG_DONT_VERIFY|0x00000161"),
+        ("4162", "CSIDL_FLAG_DONT_VERIFY|0x00000162"),
+        ("4163", "CSIDL_FLAG_DONT_VERIFY|0x00000163"),
+        ("4164", "CSIDL_FLAG_DONT_VERIFY|0x00000164"),
+        ("4165", "CSIDL_FLAG_DONT_VERIFY|0x00000165"),
+        ("4166", "CSIDL_FLAG_DONT_VERIFY|0x00000166"),
+        ("4167", "CSIDL_FLAG_DONT_VERIFY|0x00000167"),
+        ("4168", "CSIDL_FLAG_DONT_VERIFY|0x00000168"),
+        ("4169", "CSIDL_FLAG_DONT_VERIFY|0x00000169"),
+        ("4170", "CSIDL_FLAG_DONT_VERIFY|0x00000170"),
+        ("4171", "CSIDL_FLAG_DONT_VERIFY|0x00000171"),
+        ("4172", "CSIDL_FLAG_DONT_VERIFY|0x00000172"),
+        ("4173", "CSIDL_FLAG_DONT_VERIFY|0x00000173"),
+        ("4174", "CSIDL_FLAG_DONT_VERIFY|0x00000174"),
+        ("4175", "CSIDL_FLAG_DONT_VERIFY|0x00000175"),
+        ("4176", "CSIDL_FLAG_DONT_VERIFY|0x00000176"),
+        ("4177", "CSIDL_FLAG_DONT_VERIFY|0x00000177"),
+        ("4178", "CSIDL_FLAG_DONT_VERIFY|0x00000178"),
+        ("4179", "CSIDL_FLAG_DONT_VERIFY|0x00000179"),
+        ("4180", "CSIDL_FLAG_DONT_VERIFY|0x00000180"),
+        ("4181", "CSIDL_FLAG_DONT_VERIFY|0x00000181"),
+        ("4182", "CSIDL_FLAG_DONT_VERIFY|0x00000182"),
+        ("4183", "CSIDL_FLAG_DONT_VERIFY|0x00000183"),
+        ("4184", "CSIDL_FLAG_DONT_VERIFY|0x00000184"),
+        ("4185", "CSIDL_FLAG_DONT_VERIFY|0x00000185"),
+        ("4186", "CSIDL_FLAG_DONT_VERIFY|0x00000186"),
+        ("4187", "CSIDL_FLAG_DONT_VERIFY|0x00000187"),
+        ("4188", "CSIDL_FLAG_DONT_VERIFY|0x00000188"),
+        ("4189", "CSIDL_FLAG_DONT_VERIFY|0x00000189"),
+        ("4190", "CSIDL_FLAG_DONT_VERIFY|0x00000190"),
+        ("4191", "CSIDL_FLAG_DONT_VERIFY|0x00000191"),
+        ("4192", "CSIDL_FLAG_DONT_VERIFY|0x00000192"),
+        ("4193", "CSIDL_FLAG_DONT_VERIFY|0x00000193"),
+        ("4194", "CSIDL_FLAG_DONT_VERIFY|0x00000194"),
+        ("4195", "CSIDL_FLAG_DONT_VERIFY|0x00000195"),
+        ("4196", "CSIDL_FLAG_DONT_VERIFY|0x00000196"),
+        ("4197", "CSIDL_FLAG_DONT_VERIFY|0x00000197"),
+        ("4198", "CSIDL_FLAG_DONT_VERIFY|0x00000198"),
+        ("4199", "CSIDL_FLAG_DONT_VERIFY|0x00000199"),
+        ("4200", "CSIDL_FLAG_DONT_VERIFY|0x00000200"),
+        ("4201", "CSIDL_FLAG_DONT_VERIFY|0x00000201"),
+        ("4202", "CSIDL_FLAG_DONT_VERIFY|0x00000202"),
+        ("4203", "CSIDL_FLAG_DONT_VERIFY|0x00000203"),
+        ("4204", "CSIDL_FLAG_DONT_VERIFY|0x00000204"),
+        ("4205", "CSIDL_FLAG_DONT_VERIFY|0x00000205"),
+        ("4206", "CSIDL_FLAG_DONT_VERIFY|0x00000206"),
+        ("4207", "CSIDL_FLAG_DONT_VERIFY|0x00000207"),
+        ("4208", "CSIDL_FLAG_DONT_VERIFY|0x00000208"),
+        ("4209", "CSIDL_FLAG_DONT_VERIFY|0x00000209"),
+        ("4210", "CSIDL_FLAG_DONT_VERIFY|0x00000210"),
+        ("4211", "CSIDL_FLAG_DONT_VERIFY|0x00000211"),
+        ("4212", "CSIDL_FLAG_DONT_VERIFY|0x00000212"),
+        ("4213", "CSIDL_FLAG_DONT_VERIFY|0x00000213"),
+        ("4214", "CSIDL_FLAG_DONT_VERIFY|0x00000214"),
+        ("4215", "CSIDL_FLAG_DONT_VERIFY|0x00000215"),
+        ("4216", "CSIDL_FLAG_DONT_VERIFY|0x00000216"),
+        ("4217", "CSIDL_FLAG_DONT_VERIFY|0x00000217"),
+        ("4218", "CSIDL_FLAG_DONT_VERIFY|0x00000218"),
+        ("4219", "CSIDL_FLAG_DONT_VERIFY|0x00000219"),
+        ("4220", "CSIDL_FLAG_DONT_VERIFY|0x00000220"),
+        ("4221", "CSIDL_FLAG_DONT_VERIFY|0x00000221"),
+        ("4222", "CSIDL_FLAG_DONT_VERIFY|0x00000222"),
+        ("4223", "CSIDL_FLAG_DONT_VERIFY|0x00000223"),
+        ("4224", "CSIDL_FLAG_DONT_VERIFY|0x00000224"),
+        ("4225", "CSIDL_FLAG_DONT_VERIFY|0x00000225"),
+        ("4226", "CSIDL_FLAG_DONT_VERIFY|0x00000226"),
+        ("4227", "CSIDL_FLAG_DONT_VERIFY|0x00000227"),
+        ("4228", "CSIDL_FLAG_DONT_VERIFY|0x00000228"),
+        ("4229", "CSIDL_FLAG_DONT_VERIFY|0x00000229"),
+        ("4230", "CSIDL_FLAG_DONT_VERIFY|0x00000230"),
+        ("4231", "CSIDL_FLAG_DONT_VERIFY|0x00000231"),
+        ("4232", "CSIDL_FLAG_DONT_VERIFY|0x00000232"),
+        ("4233", "CSIDL_FLAG_DONT_VERIFY|0x00000233"),
+        ("4234", "CSIDL_FLAG_DONT_VERIFY|0x00000234"),
+        ("4235", "CSIDL_FLAG_DONT_VERIFY|0x00000235"),
+        ("4236", "CSIDL_FLAG_DONT_VERIFY|0x00000236"),
+        ("4237", "CSIDL_FLAG_DONT_VERIFY|0x00000237"),
+        ("4238", "CSIDL_FLAG_DONT_VERIFY|0x00000238"),
+        ("4239", "CSIDL_FLAG_DONT_VERIFY|0x00000239"),
+        ("4240", "CSIDL_FLAG_DONT_VERIFY|0x00000240"),
+        ("4241", "CSIDL_FLAG_DONT_VERIFY|0x00000241"),
+        ("4242", "CSIDL_FLAG_DONT_VERIFY|0x00000242"),
+        ("4243", "CSIDL_FLAG_DONT_VERIFY|0x00000243"),
+        ("4244", "CSIDL_FLAG_DONT_VERIFY|0x00000244"),
+        ("4245", "CSIDL_FLAG_DONT_VERIFY|0x00000245"),
+        ("4246", "CSIDL_FLAG_DONT_VERIFY|0x00000246"),
+        ("4247", "CSIDL_FLAG_DONT_VERIFY|0x00000247"),
+        ("4248", "CSIDL_FLAG_DONT_VERIFY|0x00000248"),
+        ("4249", "CSIDL_FLAG_DONT_VERIFY|0x00000249"),
+        ("4250", "CSIDL_FLAG_DONT_VERIFY|0x00000250"),
+        ("4251", "CSIDL_FLAG_DONT_VERIFY|0x00000251"),
+        ("4252", "CSIDL_FLAG_DONT_VERIFY|0x00000252"),
+        ("4253", "CSIDL_FLAG_DONT_VERIFY|0x00000253"),
+        ("4254", "CSIDL_FLAG_DONT_VERIFY|0x00000254"),
+        ("4255", "CSIDL_FLAG_DONT_VERIFY|0x00000255"),
+        ("4256", "CSIDL_FLAG_DONT_VERIFY|0x00000256"),
+        ("4257", "CSIDL_FLAG_DONT_VERIFY|0x00000257"),
+        ("4258", "CSIDL_FLAG_DONT_VERIFY|0x00000258"),
+        ("4259", "CSIDL_FLAG_DONT_VERIFY|0x00000259"),
+        ("4260", "CSIDL_FLAG_DONT_VERIFY|0x00000260"),
+        ("4261", "CSIDL_FLAG_DONT_VERIFY|0x00000261"),
+        ("4262", "CSIDL_FLAG_DONT_VERIFY|0x00000262"),
+        ("4263", "CSIDL_FLAG_DONT_VERIFY|0x00000263"),
+        ("4264", "CSIDL_FLAG_DONT_VERIFY|0x00000264"),
+        ("4265", "CSIDL_FLAG_DONT_VERIFY|0x00000265"),
+        ("4266", "CSIDL_FLAG_DONT_VERIFY|0x00000266"),
+        ("4267", "CSIDL_FLAG_DONT_VERIFY|0x00000267"),
+        ("4268", "CSIDL_FLAG_DONT_VERIFY|0x00000268"),
+        ("4269", "CSIDL_FLAG_DONT_VERIFY|0x00000269"),
+        ("4270", "CSIDL_FLAG_DONT_VERIFY|0x00000270"),
+        ("4271", "CSIDL_FLAG_DONT_VERIFY|0x00000271"),
+        ("4272", "CSIDL_FLAG_DONT_VERIFY|0x00000272"),
+        ("4273", "CSIDL_FLAG_DONT_VERIFY|0x00000273"),
+        ("4274", "CSIDL_FLAG_DONT_VERIFY|0x00000274"),
+        ("4275", "CSIDL_FLAG_DONT_VERIFY|0x00000275"),
+        ("4276", "CSIDL_FLAG_DONT_VERIFY|0x00000276"),
+        ("4277", "CSIDL_FLAG_DONT_VERIFY|0x00000277"),
+        ("4278", "CSIDL_FLAG_DONT_VERIFY|0x00000278"),
+        ("4279", "CSIDL_FLAG_DONT_VERIFY|0x00000279"),
+        ("4280", "CSIDL_FLAG_DONT_VERIFY|0x00000280"),
+        ("4281", "CSIDL_FLAG_DONT_VERIFY|0x00000281"),
+        ("4282", "CSIDL_FLAG_DONT_VERIFY|0x00000282"),
+        ("4283", "CSIDL_FLAG_DONT_VERIFY|0x00000283"),
+        ("4284", "CSIDL_FLAG_DONT_VERIFY|0x00000284"),
+        ("4285", "CSIDL_FLAG_DONT_VERIFY|0x00000285"),
+        ("4286", "CSIDL_FLAG_DONT_VERIFY|0x00000286"),
+        ("4287", "CSIDL_FLAG_DONT_VERIFY|0x00000287"),
+        ("4288", "CSIDL_FLAG_DONT_VERIFY|0x00000288"),
+        ("4289", "CSIDL_FLAG_DONT_VERIFY|0x00000289"),
+        ("4290", "CSIDL_FLAG_DONT_VERIFY|0x00000290"),
+        ("4291", "CSIDL_FLAG_DONT_VERIFY|0x00000291"),
+        ("4292", "CSIDL_FLAG_DONT_VERIFY|0x00000292"),
+        ("4293", "CSIDL_FLAG_DONT_VERIFY|0x00000293"),
+        ("4294", "CSIDL_FLAG_DONT_VERIFY|0x00000294"),
+        ("4295", "CSIDL_FLAG_DONT_VERIFY|0x00000295"),
+        ("4296", "CSIDL_FLAG_DONT_VERIFY|0x00000296"),
+        ("4297", "CSIDL_FLAG_DONT_VERIFY|0x00000297"),
+        ("4298", "CSIDL_FLAG_DONT_VERIFY|0x00000298"),
+        ("4299", "CSIDL_FLAG_DONT_VERIFY|0x00000299"),
+        ("4300", "CSIDL_FLAG_DONT_VERIFY|0x00000300"),
+        ("4301", "CSIDL_FLAG_DONT_VERIFY|0x00000301"),
+        ("4302", "CSIDL_FLAG_DONT_VERIFY|0x00000302"),
+        ("4303", "CSIDL_FLAG_DONT_VERIFY|0x00000303"),
+        ("4304", "CSIDL_FLAG_DONT_VERIFY|0x00000304"),
+        ("4305", "CSIDL_FLAG_DONT_VERIFY|0x00000305"),
+        ("4306", "CSIDL_FLAG_DONT_VERIFY|0x00000306"),
+        ("4307", "CSIDL_FLAG_DONT_VERIFY|0x00000307"),
+        ("4308", "CSIDL_FLAG_DONT_VERIFY|0x00000308"),
+        ("4309", "CSIDL_FLAG_DONT_VERIFY|0x00000309"),
+        ("4310", "CSIDL_FLAG_DONT_VERIFY|0x00000310"),
+        ("4311", "CSIDL_FLAG_DONT_VERIFY|0x00000311"),
+        ("4312", "CSIDL_FLAG_DONT_VERIFY|0x00000312"),
+        ("4313", "CSIDL_FLAG_DONT_VERIFY|0x00000313"),
+        ("4314", "CSIDL_FLAG_DONT_VERIFY|0x00000314"),
+        ("4315", "CSIDL_FLAG_DONT_VERIFY|0x00000315"),
+        ("4316", "CSIDL_FLAG_DONT_VERIFY|0x00000316"),
+        ("4317", "CSIDL_FLAG_DONT_VERIFY|0x00000317"),
+        ("4318", "CSIDL_FLAG_DONT_VERIFY|0x00000318"),
+        ("4319", "CSIDL_FLAG_DONT_VERIFY|0x00000319"),
+        ("4320", "CSIDL_FLAG_DONT_VERIFY|0x00000320"),
+        ("4321", "CSIDL_FLAG_DONT_VERIFY|0x00000321"),
+        ("4322", "CSIDL_FLAG_DONT_VERIFY|0x00000322"),
+        ("4323", "CSIDL_FLAG_DONT_VERIFY|0x00000323"),
+        ("4324", "CSIDL_FLAG_DONT_VERIFY|0x00000324"),
+        ("4325", "CSIDL_FLAG_DONT_VERIFY|0x00000325"),
+        ("4326", "CSIDL_FLAG_DONT_VERIFY|0x00000326"),
+        ("4327", "CSIDL_FLAG_DONT_VERIFY|0x00000327"),
+        ("4328", "CSIDL_FLAG_DONT_VERIFY|0x00000328"),
+        ("4329", "CSIDL_FLAG_DONT_VERIFY|0x00000329"),
+        ("4330", "CSIDL_FLAG_DONT_VERIFY|0x00000330"),
+        ("4331", "CSIDL_FLAG_DONT_VERIFY|0x00000331"),
+        ("4332", "CSIDL_FLAG_DONT_VERIFY|0x00000332"),
+        ("4333", "CSIDL_FLAG_DONT_VERIFY|0x00000333"),
+        ("4334", "CSIDL_FLAG_DONT_VERIFY|0x00000334"),
+        ("4335", "CSIDL_FLAG_DONT_VERIFY|0x00000335"),
+        ("4336", "CSIDL_FLAG_DONT_VERIFY|0x00000336"),
+        ("4337", "CSIDL_FLAG_DONT_VERIFY|0x00000337"),
+        ("4338", "CSIDL_FLAG_DONT_VERIFY|0x00000338"),
+        ("4339", "CSIDL_FLAG_DONT_VERIFY|0x00000339"),
+        ("4340", "CSIDL_FLAG_DONT_VERIFY|0x00000340"),
+        ("4341", "CSIDL_FLAG_DONT_VERIFY|0x00000341"),
+        ("4342", "CSIDL_FLAG_DONT_VERIFY|0x00000342"),
+        ("4343", "CSIDL_FLAG_DONT_VERIFY|0x00000343"),
+        ("4344", "CSIDL_FLAG_DONT_VERIFY|0x00000344"),
+        ("4345", "CSIDL_FLAG_DONT_VERIFY|0x00000345"),
+        ("4346", "CSIDL_FLAG_DONT_VERIFY|0x00000346"),
+        ("4347", "CSIDL_FLAG_DONT_VERIFY|0x00000347"),
+        ("4348", "CSIDL_FLAG_DONT_VERIFY|0x00000348"),
+        ("4349", "CSIDL_FLAG_DONT_VERIFY|0x00000349"),
+        ("4350", "CSIDL_FLAG_DONT_VERIFY|0x00000350"),
+        ("4351", "CSIDL_FLAG_DONT_VERIFY|0x00000351"),
+        ("4352", "CSIDL_FLAG_DONT_VERIFY|0x00000352"),
+        ("4353", "CSIDL_FLAG_DONT_VERIFY|0x00000353"),
+        ("4354", "CSIDL_FLAG_DONT_VERIFY|0x00000354"),
+        ("4355", "CSIDL_FLAG_DONT_VERIFY|0x00000355"),
+        ("4356", "CSIDL_FLAG_DONT_VERIFY|0x00000356"),
+        ("4357", "CSIDL_FLAG_DONT_VERIFY|0x00000357"),
+        ("4358", "CSIDL_FLAG_DONT_VERIFY|0x00000358"),
+        ("4359", "CSIDL_FLAG_DONT_VERIFY|0x00000359"),
+        ("4360", "CSIDL_FLAG_DONT_VERIFY|0x00000360"),
+        ("4361", "CSIDL_FLAG_DONT_VERIFY|0x00000361"),
+        ("4362", "CSIDL_FLAG_DONT_VERIFY|0x00000362"),
+        ("4363", "CSIDL_FLAG_DONT_VERIFY|0x00000363"),
+        ("4364", "CSIDL_FLAG_DONT_VERIFY|0x00000364"),
+        ("4365", "CSIDL_FLAG_DONT_VERIFY|0x00000365"),
+        ("4366", "CSIDL_FLAG_DONT_VERIFY|0x00000366"),
+        ("4367", "CSIDL_FLAG_DONT_VERIFY|0x00000367"),
+        ("4368", "CSIDL_FLAG_DONT_VERIFY|0x00000368"),
+        ("4369", "CSIDL_FLAG_DONT_VERIFY|0x00000369"),
+        ("4370", "CSIDL_FLAG_DONT_VERIFY|0x00000370"),
+        ("4371", "CSIDL_FLAG_DONT_VERIFY|0x00000371"),
+        ("4372", "CSIDL_FLAG_DONT_VERIFY|0x00000372"),
+        ("4373", "CSIDL_FLAG_DONT_VERIFY|0x00000373"),
+        ("4374", "CSIDL_FLAG_DONT_VERIFY|0x00000374"),
+        ("4375", "CSIDL_FLAG_DONT_VERIFY|0x00000375"),
+        ("4376", "CSIDL_FLAG_DONT_VERIFY|0x00000376"),
+        ("4377", "CSIDL_FLAG_DONT_VERIFY|0x00000377"),
+        ("4378", "CSIDL_FLAG_DONT_VERIFY|0x00000378"),
+        ("4379", "CSIDL_FLAG_DONT_VERIFY|0x00000379"),
+        ("4380", "CSIDL_FLAG_DONT_VERIFY|0x00000380"),
+        ("4381", "CSIDL_FLAG_DONT_VERIFY|0x00000381"),
+        ("4382", "CSIDL_FLAG_DONT_VERIFY|0x00000382"),
+        ("4383", "CSIDL_FLAG_DONT_VERIFY|0x00000383"),
+        ("4384", "CSIDL_FLAG_DONT_VERIFY|0x00000384"),
+        ("4385", "CSIDL_FLAG_DONT_VERIFY|0x00000385"),
+        ("4386", "CSIDL_FLAG_DONT_VERIFY|0x00000386"),
+        ("4387", "CSIDL_FLAG_DONT_VERIFY|0x00000387"),
+        ("4388", "CSIDL_FLAG_DONT_VERIFY|0x00000388"),
+        ("4389", "CSIDL_FLAG_DONT_VERIFY|0x00000389"),
+        ("4390", "CSIDL_FLAG_DONT_VERIFY|0x00000390"),
+        ("4391", "CSIDL_FLAG_DONT_VERIFY|0x00000391"),
+        ("4392", "CSIDL_FLAG_DONT_VERIFY|0x00000392"),
+        ("4393", "CSIDL_FLAG_DONT_VERIFY|0x00000393"),
+        ("4394", "CSIDL_FLAG_DONT_VERIFY|0x00000394"),
+        ("4395", "CSIDL_FLAG_DONT_VERIFY|0x00000395"),
+        ("4396", "CSIDL_FLAG_DONT_VERIFY|0x00000396"),
+        ("4397", "CSIDL_FLAG_DONT_VERIFY|0x00000397"),
+        ("4398", "CSIDL_FLAG_DONT_VERIFY|0x00000398"),
+        ("4399", "CSIDL_FLAG_DONT_VERIFY|0x00000399"),
+        ("4400", "CSIDL_FLAG_DONT_VERIFY|0x00000400"),
+        ("4401", "CSIDL_FLAG_DONT_VERIFY|0x00000401"),
+        ("4402", "CSIDL_FLAG_DONT_VERIFY|0x00000402"),
+        ("4403", "CSIDL_FLAG_DONT_VERIFY|0x00000403"),
+        ("4404", "CSIDL_FLAG_DONT_VERIFY|0x00000404"),
+        ("4405", "CSIDL_FLAG_DONT_VERIFY|0x00000405"),
+        ("4406", "CSIDL_FLAG_DONT_VERIFY|0x00000406"),
+        ("4407", "CSIDL_FLAG_DONT_VERIFY|0x00000407"),
+        ("4408", "CSIDL_FLAG_DONT_VERIFY|0x00000408"),
+        ("4409", "CSIDL_FLAG_DONT_VERIFY|0x00000409"),
+        ("4410", "CSIDL_FLAG_DONT_VERIFY|0x00000410"),
+        ("4411", "CSIDL_FLAG_DONT_VERIFY|0x00000411"),
+        ("4412", "CSIDL_FLAG_DONT_VERIFY|0x00000412"),
+        ("4413", "CSIDL_FLAG_DONT_VERIFY|0x00000413"),
+        ("4414", "CSIDL_FLAG_DONT_VERIFY|0x00000414"),
+        ("4415", "CSIDL_FLAG_DONT_VERIFY|0x00000415"),
+        ("4416", "CSIDL_FLAG_DONT_VERIFY|0x00000416"),
+        ("4417", "CSIDL_FLAG_DONT_VERIFY|0x00000417"),
+        ("4418", "CSIDL_FLAG_DONT_VERIFY|0x00000418"),
+        ("4419", "CSIDL_FLAG_DONT_VERIFY|0x00000419"),
+        ("4420", "CSIDL_FLAG_DONT_VERIFY|0x00000420"),
+        ("4421", "CSIDL_FLAG_DONT_VERIFY|0x00000421"),
+        ("4422", "CSIDL_FLAG_DONT_VERIFY|0x00000422"),
+        ("4423", "CSIDL_FLAG_DONT_VERIFY|0x00000423"),
+        ("4424", "CSIDL_FLAG_DONT_VERIFY|0x00000424"),
+        ("4425", "CSIDL_FLAG_DONT_VERIFY|0x00000425"),
+        ("4426", "CSIDL_FLAG_DONT_VERIFY|0x00000426"),
+        ("4427", "CSIDL_FLAG_DONT_VERIFY|0x00000427"),
+        ("4428", "CSIDL_FLAG_DONT_VERIFY|0x00000428"),
+        ("4429", "CSIDL_FLAG_DONT_VERIFY|0x00000429"),
+        ("4430", "CSIDL_FLAG_DONT_VERIFY|0x00000430"),
+        ("4431", "CSIDL_FLAG_DONT_VERIFY|0x00000431"),
+        ("4432", "CSIDL_FLAG_DONT_VERIFY|0x00000432"),
+        ("4433", "CSIDL_FLAG_DONT_VERIFY|0x00000433"),
+        ("4434", "CSIDL_FLAG_DONT_VERIFY|0x00000434"),
+        ("4435", "CSIDL_FLAG_DONT_VERIFY|0x00000435"),
+        ("4436", "CSIDL_FLAG_DONT_VERIFY|0x00000436"),
+        ("4437", "CSIDL_FLAG_DONT_VERIFY|0x00000437"),
+        ("4438", "CSIDL_FLAG_DONT_VERIFY|0x00000438"),
+        ("4439", "CSIDL_FLAG_DONT_VERIFY|0x00000439"),
+        ("4440", "CSIDL_FLAG_DONT_VERIFY|0x00000440"),
+        ("4441", "CSIDL_FLAG_DONT_VERIFY|0x00000441"),
+        ("4442", "CSIDL_FLAG_DONT_VERIFY|0x00000442"),
+        ("4443", "CSIDL_FLAG_DONT_VERIFY|0x00000443"),
+        ("4444", "CSIDL_FLAG_DONT_VERIFY|0x00000444"),
+        ("4445", "CSIDL_FLAG_DONT_VERIFY|0x00000445"),
+        ("4446", "CSIDL_FLAG_DONT_VERIFY|0x00000446"),
+        ("4447", "CSIDL_FLAG_DONT_VERIFY|0x00000447"),
+        ("4448", "CSIDL_FLAG_DONT_VERIFY|0x00000448"),
+        ("4449", "CSIDL_FLAG_DONT_VERIFY|0x00000449"),
+        ("4450", "CSIDL_FLAG_DONT_VERIFY|0x00000450"),
+        ("4451", "CSIDL_FLAG_DONT_VERIFY|0x00000451"),
+        ("4452", "CSIDL_FLAG_DONT_VERIFY|0x00000452"),
+        ("4453", "CSIDL_FLAG_DONT_VERIFY|0x00000453"),
+        ("4454", "CSIDL_FLAG_DONT_VERIFY|0x00000454"),
+        ("4455", "CSIDL_FLAG_DONT_VERIFY|0x00000455"),
+        ("4456", "CSIDL_FLAG_DONT_VERIFY|0x00000456"),
+        ("4457", "CSIDL_FLAG_DONT_VERIFY|0x00000457"),
+        ("4458", "CSIDL_FLAG_DONT_VERIFY|0x00000458"),
+        ("4459", "CSIDL_FLAG_DONT_VERIFY|0x00000459"),
+        ("4460", "CSIDL_FLAG_DONT_VERIFY|0x00000460"),
+        ("4461", "CSIDL_FLAG_DONT_VERIFY|0x00000461"),
+        ("4462", "CSIDL_FLAG_DONT_VERIFY|0x00000462"),
+        ("4463", "CSIDL_FLAG_DONT_VERIFY|0x00000463"),
+        ("4464", "CSIDL_FLAG_DONT_VERIFY|0x00000464"),
+        ("4465", "CSIDL_FLAG_DONT_VERIFY|0x00000465"),
+        ("4466", "CSIDL_FLAG_DONT_VERIFY|0x00000466"),
+        ("4467", "CSIDL_FLAG_DONT_VERIFY|0x00000467"),
+        ("4468", "CSIDL_FLAG_DONT_VERIFY|0x00000468"),
+        ("4469", "CSIDL_FLAG_DONT_VERIFY|0x00000469"),
+        ("4470", "CSIDL_FLAG_DONT_VERIFY|0x00000470"),
+        ("4471", "CSIDL_FLAG_DONT_VERIFY|0x00000471"),
+        ("4472", "CSIDL_FLAG_DONT_VERIFY|0x00000472"),
+        ("4473", "CSIDL_FLAG_DONT_VERIFY|0x00000473"),
+        ("4474", "CSIDL_FLAG_DONT_VERIFY|0x00000474"),
+        ("4475", "CSIDL_FLAG_DONT_VERIFY|0x00000475"),
+        ("4476", "CSIDL_FLAG_DONT_VERIFY|0x00000476"),
+        ("4477", "CSIDL_FLAG_DONT_VERIFY|0x00000477"),
+        ("4478", "CSIDL_FLAG_DONT_VERIFY|0x00000478"),
+        ("4479", "CSIDL_FLAG_DONT_VERIFY|0x00000479"),
+        ("4480", "CSIDL_FLAG_DONT_VERIFY|0x00000480"),
+        ("4481", "CSIDL_FLAG_DONT_VERIFY|0x00000481"),
+        ("4482", "CSIDL_FLAG_DONT_VERIFY|0x00000482"),
+        ("4483", "CSIDL_FLAG_DONT_VERIFY|0x00000483"),
+        ("4484", "CSIDL_FLAG_DONT_VERIFY|0x00000484"),
+        ("4485", "CSIDL_FLAG_DONT_VERIFY|0x00000485"),
+        ("4486", "CSIDL_FLAG_DONT_VERIFY|0x00000486"),
+        ("4487", "CSIDL_FLAG_DONT_VERIFY|0x00000487"),
+        ("4488", "CSIDL_FLAG_DONT_VERIFY|0x00000488"),
+        ("4489", "CSIDL_FLAG_DONT_VERIFY|0x00000489"),
+        ("4490", "CSIDL_FLAG_DONT_VERIFY|0x00000490"),
+        ("4491", "CSIDL_FLAG_DONT_VERIFY|0x00000491"),
+        ("4492", "CSIDL_FLAG_DONT_VERIFY|0x00000492"),
+        ("4493", "CSIDL_FLAG_DONT_VERIFY|0x00000493"),
+        ("4494", "CSIDL_FLAG_DONT_VERIFY|0x00000494"),
+        ("4495", "CSIDL_FLAG_DONT_VERIFY|0x00000495"),
+        ("4496", "CSIDL_FLAG_DONT_VERIFY|0x00000496"),
+        ("4497", "CSIDL_FLAG_DONT_VERIFY|0x00000497"),
+        ("4498", "CSIDL_FLAG_DONT_VERIFY|0x00000498"),
+        ("4499", "CSIDL_FLAG_DONT_VERIFY|0x00000499"),
+        ("4500", "CSIDL_FLAG_DONT_VERIFY|0x00000500"),
+        ("4501", "CSIDL_FLAG_DONT_VERIFY|0x00000501"),
+        ("4502", "CSIDL_FLAG_DONT_VERIFY|0x00000502"),
+        ("4503", "CSIDL_FLAG_DONT_VERIFY|0x00000503"),
+        ("4504", "CSIDL_FLAG_DONT_VERIFY|0x00000504"),
+        ("4505", "CSIDL_FLAG_DONT_VERIFY|0x00000505"),
+        ("4506", "CSIDL_FLAG_DONT_VERIFY|0x00000506"),
+        ("4507", "CSIDL_FLAG_DONT_VERIFY|0x00000507"),
+        ("4508", "CSIDL_FLAG_DONT_VERIFY|0x00000508"),
+        ("4509", "CSIDL_FLAG_DONT_VERIFY|0x00000509"),
+        ("4510", "CSIDL_FLAG_DONT_VERIFY|0x00000510"),
+        ("4511", "CSIDL_FLAG_DONT_VERIFY|0x00000511"),
+        ("4512", "CSIDL_FLAG_DONT_VERIFY|0x00000512"),
+        ("4513", "CSIDL_FLAG_DONT_VERIFY|0x00000513"),
+        ("4514", "CSIDL_FLAG_DONT_VERIFY|0x00000514"),
+        ("4515", "CSIDL_FLAG_DONT_VERIFY|0x00000515"),
+        ("4516", "CSIDL_FLAG_DONT_VERIFY|0x00000516"),
+        ("4517", "CSIDL_FLAG_DONT_VERIFY|0x00000517"),
+        ("4518", "CSIDL_FLAG_DONT_VERIFY|0x00000518"),
+        ("4519", "CSIDL_FLAG_DONT_VERIFY|0x00000519"),
+        ("4520", "CSIDL_FLAG_DONT_VERIFY|0x00000520"),
+        ("4521", "CSIDL_FLAG_DONT_VERIFY|0x00000521"),
+        ("4522", "CSIDL_FLAG_DONT_VERIFY|0x00000522"),
+        ("4523", "CSIDL_FLAG_DONT_VERIFY|0x00000523"),
+        ("4524", "CSIDL_FLAG_DONT_VERIFY|0x00000524"),
+        ("4525", "CSIDL_FLAG_DONT_VERIFY|0x00000525"),
+        ("4526", "CSIDL_FLAG_DONT_VERIFY|0x00000526"),
+        ("4527", "CSIDL_FLAG_DONT_VERIFY|0x00000527"),
+        ("4528", "CSIDL_FLAG_DONT_VERIFY|0x00000528"),
+        ("4529", "CSIDL_FLAG_DONT_VERIFY|0x00000529"),
+        ("4530", "CSIDL_FLAG_DONT_VERIFY|0x00000530"),
+        ("4531", "CSIDL_FLAG_DONT_VERIFY|0x00000531"),
+        ("4532", "CSIDL_FLAG_DONT_VERIFY|0x00000532"),
+        ("4533", "CSIDL_FLAG_DONT_VERIFY|0x00000533"),
+        ("4534", "CSIDL_FLAG_DONT_VERIFY|0x00000534"),
+        ("4535", "CSIDL_FLAG_DONT_VERIFY|0x00000535"),
+        ("4536", "CSIDL_FLAG_DONT_VERIFY|0x00000536"),
+        ("4537", "CSIDL_FLAG_DONT_VERIFY|0x00000537"),
+        ("4538", "CSIDL_FLAG_DONT_VERIFY|0x00000538"),
+        ("4539", "CSIDL_FLAG_DONT_VERIFY|0x00000539"),
+        ("4540", "CSIDL_FLAG_DONT_VERIFY|0x00000540"),
+        ("4541", "CSIDL_FLAG_DONT_VERIFY|0x00000541"),
+        ("4542", "CSIDL_FLAG_DONT_VERIFY|0x00000542"),
+        ("4543", "CSIDL_FLAG_DONT_VERIFY|0x00000543"),
+        ("4544", "CSIDL_FLAG_DONT_VERIFY|0x00000544"),
+        ("4545", "CSIDL_FLAG_DONT_VERIFY|0x00000545"),
+        ("4546", "CSIDL_FLAG_DONT_VERIFY|0x00000546"),
+        ("4547", "CSIDL_FLAG_DONT_VERIFY|0x00000547"),
+        ("4548", "CSIDL_FLAG_DONT_VERIFY|0x00000548"),
+        ("4549", "CSIDL_FLAG_DONT_VERIFY|0x00000549"),
+        ("4550", "CSIDL_FLAG_DONT_VERIFY|0x00000550"),
+        ("4551", "CSIDL_FLAG_DONT_VERIFY|0x00000551"),
+        ("4552", "CSIDL_FLAG_DONT_VERIFY|0x00000552"),
+        ("4553", "CSIDL_FLAG_DONT_VERIFY|0x00000553"),
+        ("4554", "CSIDL_FLAG_DONT_VERIFY|0x00000554"),
+        ("4555", "CSIDL_FLAG_DONT_VERIFY|0x00000555"),
+        ("4556", "CSIDL_FLAG_DONT_VERIFY|0x00000556"),
+        ("4557", "CSIDL_FLAG_DONT_VERIFY|0x00000557"),
+        ("4558", "CSIDL_FLAG_DONT_VERIFY|0x00000558"),
+        ("4559", "CSIDL_FLAG_DONT_VERIFY|0x00000559"),
+        ("4560", "CSIDL_FLAG_DONT_VERIFY|0x00000560"),
+        ("4561", "CSIDL_FLAG_DONT_VERIFY|0x00000561"),
+        ("4562", "CSIDL_FLAG_DONT_VERIFY|0x00000562"),
+        ("4563", "CSIDL_FLAG_DONT_VERIFY|0x00000563"),
+        ("4564", "CSIDL_FLAG_DONT_VERIFY|0x00000564"),
+        ("4565", "CSIDL_FLAG_DONT_VERIFY|0x00000565"),
+        ("4566", "CSIDL_FLAG_DONT_VERIFY|0x00000566"),
+        ("4567", "CSIDL_FLAG_DONT_VERIFY|0x00000567"),
+        ("4568", "CSIDL_FLAG_DONT_VERIFY|0x00000568"),
+        ("4569", "CSIDL_FLAG_DONT_VERIFY|0x00000569"),
+        ("4570", "CSIDL_FLAG_DONT_VERIFY|0x00000570"),
+        ("4571", "CSIDL_FLAG_DONT_VERIFY|0x00000571"),
+        ("4572", "CSIDL_FLAG_DONT_VERIFY|0x00000572"),
+        ("4573", "CSIDL_FLAG_DONT_VERIFY|0x00000573"),
+        ("4574", "CSIDL_FLAG_DONT_VERIFY|0x00000574"),
+        ("4575", "CSIDL_FLAG_DONT_VERIFY|0x00000575"),
+        ("4576", "CSIDL_FLAG_DONT_VERIFY|0x00000576"),
+        ("4577", "CSIDL_FLAG_DONT_VERIFY|0x00000577"),
+        ("4578", "CSIDL_FLAG_DONT_VERIFY|0x00000578"),
+        ("4579", "CSIDL_FLAG_DONT_VERIFY|0x00000579"),
+        ("4580", "CSIDL_FLAG_DONT_VERIFY|0x00000580"),
+        ("4581", "CSIDL_FLAG_DONT_VERIFY|0x00000581"),
+        ("4582", "CSIDL_FLAG_DONT_VERIFY|0x00000582"),
+        ("4583", "CSIDL_FLAG_DONT_VERIFY|0x00000583"),
+        ("4584", "CSIDL_FLAG_DONT_VERIFY|0x00000584"),
+        ("4585", "CSIDL_FLAG_DONT_VERIFY|0x00000585"),
+        ("4586", "CSIDL_FLAG_DONT_VERIFY|0x00000586"),
+        ("4587", "CSIDL_FLAG_DONT_VERIFY|0x00000587"),
+        ("4588", "CSIDL_FLAG_DONT_VERIFY|0x00000588"),
+        ("4589", "CSIDL_FLAG_DONT_VERIFY|0x00000589"),
+        ("4590", "CSIDL_FLAG_DONT_VERIFY|0x00000590"),
+        ("4591", "CSIDL_FLAG_DONT_VERIFY|0x00000591"),
+        ("4592", "CSIDL_FLAG_DONT_VERIFY|0x00000592"),
+        ("4593", "CSIDL_FLAG_DONT_VERIFY|0x00000593"),
+        ("4594", "CSIDL_FLAG_DONT_VERIFY|0x00000594"),
+        ("4595", "CSIDL_FLAG_DONT_VERIFY|0x00000595"),
+        ("4596", "CSIDL_FLAG_DONT_VERIFY|0x00000596"),
+        ("4597", "CSIDL_FLAG_DONT_VERIFY|0x00000597"),
+        ("4598", "CSIDL_FLAG_DONT_VERIFY|0x00000598"),
+        ("4599", "CSIDL_FLAG_DONT_VERIFY|0x00000599"),
+        ("4600", "CSIDL_FLAG_DONT_VERIFY|0x00000600"),
+        ("4601", "CSIDL_FLAG_DONT_VERIFY|0x00000601"),
+        ("4602", "CSIDL_FLAG_DONT_VERIFY|0x00000602"),
+        ("4603", "CSIDL_FLAG_DONT_VERIFY|0x00000603"),
+        ("4604", "CSIDL_FLAG_DONT_VERIFY|0x00000604"),
+        ("4605", "CSIDL_FLAG_DONT_VERIFY|0x00000605"),
+        ("4606", "CSIDL_FLAG_DONT_VERIFY|0x00000606"),
+        ("4607", "CSIDL_FLAG_DONT_VERIFY|0x00000607"),
+        ("4608", "CSIDL_FLAG_DONT_VERIFY|0x00000608"),
+        ("4609", "CSIDL_FLAG_DONT_VERIFY|0x00000609"),
+        ("4610", "CSIDL_FLAG_DONT_VERIFY|0x00000610"),
+        ("4611", "CSIDL_FLAG_DONT_VERIFY|0x00000611"),
+        ("4612", "CSIDL_FLAG_DONT_VERIFY|0x00000612"),
+        ("4613", "CSIDL_FLAG_DONT_VERIFY|0x00000613"),
+        ("4614", "CSIDL_FLAG_DONT_VERIFY|0x00000614"),
+        ("4615", "CSIDL_FLAG_DONT_VERIFY|0x00000615"),
+        ("4616", "CSIDL_FLAG_DONT_VERIFY|0x00000616"),
+        ("4617", "CSIDL_FLAG_DONT_VERIFY|0x00000617"),
+        ("4618", "CSIDL_FLAG_DONT_VERIFY|0x00000618"),
+        ("4619", "CSIDL_FLAG_DONT_VERIFY|0x00000619"),
+        ("4620", "CSIDL_FLAG_DONT_VERIFY|0x00000620"),
+        ("4621", "CSIDL_FLAG_DONT_VERIFY|0x00000621"),
+        ("4622", "CSIDL_FLAG_DONT_VERIFY|0x00000622"),
+        ("4623", "CSIDL_FLAG_DONT_VERIFY|0x00000623"),
+        ("4624", "CSIDL_FLAG_DONT_VERIFY|0x00000624"),
+        ("4625", "CSIDL_FLAG_DONT_VERIFY|0x00000625"),
+        ("4626", "CSIDL_FLAG_DONT_VERIFY|0x00000626"),
+        ("4627", "CSIDL_FLAG_DONT_VERIFY|0x00000627"),
+        ("4628", "CSIDL_FLAG_DONT_VERIFY|0x00000628"),
+        ("4629", "CSIDL_FLAG_DONT_VERIFY|0x00000629"),
+        ("4630", "CSIDL_FLAG_DONT_VERIFY|0x00000630"),
+        ("4631", "CSIDL_FLAG_DONT_VERIFY|0x00000631"),
+        ("4632", "CSIDL_FLAG_DONT_VERIFY|0x00000632"),
+        ("4633", "CSIDL_FLAG_DONT_VERIFY|0x00000633"),
+        ("4634", "CSIDL_FLAG_DONT_VERIFY|0x00000634"),
+        ("4635", "CSIDL_FLAG_DONT_VERIFY|0x00000635"),
+        ("4636", "CSIDL_FLAG_DONT_VERIFY|0x00000636"),
+        ("4637", "CSIDL_FLAG_DONT_VERIFY|0x00000637"),
+        ("4638", "CSIDL_FLAG_DONT_VERIFY|0x00000638"),
+        ("4639", "CSIDL_FLAG_DONT_VERIFY|0x00000639"),
+        ("4640", "CSIDL_FLAG_DONT_VERIFY|0x00000640"),
+        ("4641", "CSIDL_FLAG_DONT_VERIFY|0x00000641"),
+        ("4642", "CSIDL_FLAG_DONT_VERIFY|0x00000642"),
+        ("4643", "CSIDL_FLAG_DONT_VERIFY|0x00000643"),
+        ("4644", "CSIDL_FLAG_DONT_VERIFY|0x00000644"),
+        ("4645", "CSIDL_FLAG_DONT_VERIFY|0x00000645"),
+        ("4646", "CSIDL_FLAG_DONT_VERIFY|0x00000646"),
+        ("4647", "CSIDL_FLAG_DONT_VERIFY|0x00000647"),
+        ("4648", "CSIDL_FLAG_DONT_VERIFY|0x00000648"),
+        ("4649", "CSIDL_FLAG_DONT_VERIFY|0x00000649"),
+        ("4650", "CSIDL_FLAG_DONT_VERIFY|0x00000650"),
+        ("4651", "CSIDL_FLAG_DONT_VERIFY|0x00000651"),
+        ("4652", "CSIDL_FLAG_DONT_VERIFY|0x00000652"),
+        ("4653", "CSIDL_FLAG_DONT_VERIFY|0x00000653"),
+        ("4654", "CSIDL_FLAG_DONT_VERIFY|0x00000654"),
+        ("4655", "CSIDL_FLAG_DONT_VERIFY|0x00000655"),
+        ("4656", "CSIDL_FLAG_DONT_VERIFY|0x00000656"),
+        ("4657", "CSIDL_FLAG_DONT_VERIFY|0x00000657"),
+        ("4658", "CSIDL_FLAG_DONT_VERIFY|0x00000658"),
+        ("4659", "CSIDL_FLAG_DONT_VERIFY|0x00000659"),
+        ("4660", "CSIDL_FLAG_DONT_VERIFY|0x00000660"),
+        ("4661", "CSIDL_FLAG_DONT_VERIFY|0x00000661"),
+        ("4662", "CSIDL_FLAG_DONT_VERIFY|0x00000662"),
+        ("4663", "CSIDL_FLAG_DONT_VERIFY|0x00000663"),
+        ("4664", "CSIDL_FLAG_DONT_VERIFY|0x00000664"),
+        ("4665", "CSIDL_FLAG_DONT_VERIFY|0x00000665"),
+        ("4666", "CSIDL_FLAG_DONT_VERIFY|0x00000666"),
+        ("4667", "CSIDL_FLAG_DONT_VERIFY|0x00000667"),
+        ("4668", "CSIDL_FLAG_DONT_VERIFY|0x00000668"),
+        ("4669", "CSIDL_FLAG_DONT_VERIFY|0x00000669"),
+        ("4670", "CSIDL_FLAG_DONT_VERIFY|0x00000670"),
+        ("4671", "CSIDL_FLAG_DONT_VERIFY|0x00000671"),
+        ("4672", "CSIDL_FLAG_DONT_VERIFY|0x00000672"),
+        ("4673", "CSIDL_FLAG_DONT_VERIFY|0x00000673"),
+        ("4674", "CSIDL_FLAG_DONT_VERIFY|0x00000674"),
+        ("4675", "CSIDL_FLAG_DONT_VERIFY|0x00000675"),
+        ("4676", "CSIDL_FLAG_DONT_VERIFY|0x00000676"),
+        ("4677", "CSIDL_FLAG_DONT_VERIFY|0x00000677"),
+        ("4678", "CSIDL_FLAG_DONT_VERIFY|0x00000678"),
+        ("4679", "CSIDL_FLAG_DONT_VERIFY|0x00000679"),
+        ("4680", "CSIDL_FLAG_DONT_VERIFY|0x00000680"),
+        ("4681", "CSIDL_FLAG_DONT_VERIFY|0x00000681"),
+        ("4682", "CSIDL_FLAG_DONT_VERIFY|0x00000682"),
+        ("4683", "CSIDL_FLAG_DONT_VERIFY|0x00000683"),
+        ("4684", "CSIDL_FLAG_DONT_VERIFY|0x00000684"),
+        ("4685", "CSIDL_FLAG_DONT_VERIFY|0x00000685"),
+        ("4686", "CSIDL_FLAG_DONT_VERIFY|0x00000686"),
+        ("4687", "CSIDL_FLAG_DONT_VERIFY|0x00000687"),
+        ("4688", "CSIDL_FLAG_DONT_VERIFY|0x00000688"),
+        ("4689", "CSIDL_FLAG_DONT_VERIFY|0x00000689"),
+        ("4690", "CSIDL_FLAG_DONT_VERIFY|0x00000690"),
+        ("4691", "CSIDL_FLAG_DONT_VERIFY|0x00000691"),
+        ("4692", "CSIDL_FLAG_DONT_VERIFY|0x00000692"),
+        ("4693", "CSIDL_FLAG_DONT_VERIFY|0x00000693"),
+        ("4694", "CSIDL_FLAG_DONT_VERIFY|0x00000694"),
+        ("4695", "CSIDL_FLAG_DONT_VERIFY|0x00000695"),
+        ("4696", "CSIDL_FLAG_DONT_VERIFY|0x00000696"),
+        ("4697", "CSIDL_FLAG_DONT_VERIFY|0x00000697"),
+        ("4698", "CSIDL_FLAG_DONT_VERIFY|0x00000698"),
+        ("4699", "CSIDL_FLAG_DONT_VERIFY|0x00000699"),
+        ("4700", "CSIDL_FLAG_DONT_VERIFY|0x00000700"),
+        ("4701", "CSIDL_FLAG_DONT_VERIFY|0x00000701"),
+        ("4702", "CSIDL_FLAG_DONT_VERIFY|0x00000702"),
+        ("4703", "CSIDL_FLAG_DONT_VERIFY|0x00000703"),
+        ("4704", "CSIDL_FLAG_DONT_VERIFY|0x00000704"),
+        ("4705", "CSIDL_FLAG_DONT_VERIFY|0x00000705"),
+        ("4706", "CSIDL_FLAG_DONT_VERIFY|0x00000706"),
+        ("4707", "CSIDL_FLAG_DONT_VERIFY|0x00000707"),
+        ("4708", "CSIDL_FLAG_DONT_VERIFY|0x00000708"),
+        ("4709", "CSIDL_FLAG_DONT_VERIFY|0x00000709"),
+        ("4710", "CSIDL_FLAG_DONT_VERIFY|0x00000710"),
+        ("4711", "CSIDL_FLAG_DONT_VERIFY|0x00000711"),
+        ("4712", "CSIDL_FLAG_DONT_VERIFY|0x00000712"),
+        ("4713", "CSIDL_FLAG_DONT_VERIFY|0x00000713"),
+        ("4714", "CSIDL_FLAG_DONT_VERIFY|0x00000714"),
+        ("4715", "CSIDL_FLAG_DONT_VERIFY|0x00000715"),
+        ("4716", "CSIDL_FLAG_DONT_VERIFY|0x00000716"),
+        ("4717", "CSIDL_FLAG_DONT_VERIFY|0x00000717"),
+        ("4718", "CSIDL_FLAG_DONT_VERIFY|0x00000718"),
+        ("4719", "CSIDL_FLAG_DONT_VERIFY|0x00000719"),
+        ("4720", "CSIDL_FLAG_DONT_VERIFY|0x00000720"),
+        ("4721", "CSIDL_FLAG_DONT_VERIFY|0x00000721"),
+        ("4722", "CSIDL_FLAG_DONT_VERIFY|0x00000722"),
+        ("4723", "CSIDL_FLAG_DONT_VERIFY|0x00000723"),
+        ("4724", "CSIDL_FLAG_DONT_VERIFY|0x00000724"),
+        ("4725", "CSIDL_FLAG_DONT_VERIFY|0x00000725"),
+        ("4726", "CSIDL_FLAG_DONT_VERIFY|0x00000726"),
+        ("4727", "CSIDL_FLAG_DONT_VERIFY|0x00000727"),
+        ("4728", "CSIDL_FLAG_DONT_VERIFY|0x00000728"),
+        ("4729", "CSIDL_FLAG_DONT_VERIFY|0x00000729"),
+        ("4730", "CSIDL_FLAG_DONT_VERIFY|0x00000730"),
+        ("4731", "CSIDL_FLAG_DONT_VERIFY|0x00000731"),
+        ("4732", "CSIDL_FLAG_DONT_VERIFY|0x00000732"),
+        ("4733", "CSIDL_FLAG_DONT_VERIFY|0x00000733"),
+        ("4734", "CSIDL_FLAG_DONT_VERIFY|0x00000734"),
+        ("4735", "CSIDL_FLAG_DONT_VERIFY|0x00000735"),
+        ("4736", "CSIDL_FLAG_DONT_VERIFY|0x00000736"),
+        ("4737", "CSIDL_FLAG_DONT_VERIFY|0x00000737"),
+        ("4738", "CSIDL_FLAG_DONT_VERIFY|0x00000738"),
+        ("4739", "CSIDL_FLAG_DONT_VERIFY|0x00000739"),
+        ("4740", "CSIDL_FLAG_DONT_VERIFY|0x00000740"),
+        ("4741", "CSIDL_FLAG_DONT_VERIFY|0x00000741"),
+        ("4742", "CSIDL_FLAG_DONT_VERIFY|0x00000742"),
+        ("4743", "CSIDL_FLAG_DONT_VERIFY|0x00000743"),
+        ("4744", "CSIDL_FLAG_DONT_VERIFY|0x00000744"),
+        ("4745", "CSIDL_FLAG_DONT_VERIFY|0x00000745"),
+        ("4746", "CSIDL_FLAG_DONT_VERIFY|0x00000746"),
+        ("4747", "CSIDL_FLAG_DONT_VERIFY|0x00000747"),
+        ("4748", "CSIDL_FLAG_DONT_VERIFY|0x00000748"),
+        ("4749", "CSIDL_FLAG_DONT_VERIFY|0x00000749"),
+        ("4750", "CSIDL_FLAG_DONT_VERIFY|0x00000750"),
+        ("4751", "CSIDL_FLAG_DONT_VERIFY|0x00000751"),
+        ("4752", "CSIDL_FLAG_DONT_VERIFY|0x00000752"),
+        ("4753", "CSIDL_FLAG_DONT_VERIFY|0x00000753"),
+        ("4754", "CSIDL_FLAG_DONT_VERIFY|0x00000754"),
+        ("4755", "CSIDL_FLAG_DONT_VERIFY|0x00000755"),
+        ("4756", "CSIDL_FLAG_DONT_VERIFY|0x00000756"),
+        ("4757", "CSIDL_FLAG_DONT_VERIFY|0x00000757"),
+        ("4758", "CSIDL_FLAG_DONT_VERIFY|0x00000758"),
+        ("4759", "CSIDL_FLAG_DONT_VERIFY|0x00000759"),
+        ("4760", "CSIDL_FLAG_DONT_VERIFY|0x00000760"),
+        ("4761", "CSIDL_FLAG_DONT_VERIFY|0x00000761"),
+        ("4762", "CSIDL_FLAG_DONT_VERIFY|0x00000762"),
+        ("4763", "CSIDL_FLAG_DONT_VERIFY|0x00000763"),
+        ("4764", "CSIDL_FLAG_DONT_VERIFY|0x00000764"),
+        ("4765", "CSIDL_FLAG_DONT_VERIFY|0x00000765"),
+        ("4766", "CSIDL_FLAG_DONT_VERIFY|0x00000766"),
+        ("4767", "CSIDL_FLAG_DONT_VERIFY|0x00000767"),
+        ("4768", "CSIDL_FLAG_DONT_VERIFY|0x00000768"),
+        ("4769", "CSIDL_FLAG_DONT_VERIFY|0x00000769"),
+        ("4770", "CSIDL_FLAG_DONT_VERIFY|0x00000770"),
+        ("4771", "CSIDL_FLAG_DONT_VERIFY|0x00000771"),
+        ("4772", "CSIDL_FLAG_DONT_VERIFY|0x00000772"),
+        ("4773", "CSIDL_FLAG_DONT_VERIFY|0x00000773"),
+        ("4774", "CSIDL_FLAG_DONT_VERIFY|0x00000774"),
+        ("4775", "CSIDL_FLAG_DONT_VERIFY|0x00000775"),
+        ("4776", "CSIDL_FLAG_DONT_VERIFY|0x00000776"),
+        ("4777", "CSIDL_FLAG_DONT_VERIFY|0x00000777"),
+        ("4778", "CSIDL_FLAG_DONT_VERIFY|0x00000778"),
+        ("4779", "CSIDL_FLAG_DONT_VERIFY|0x00000779"),
+        ("4780", "CSIDL_FLAG_DONT_VERIFY|0x00000780"),
+        ("4781", "CSIDL_FLAG_DONT_VERIFY|0x00000781"),
+        ("4782", "CSIDL_FLAG_DONT_VERIFY|0x00000782"),
+        ("4783", "CSIDL_FLAG_DONT_VERIFY|0x00000783"),
+        ("4784", "CSIDL_FLAG_DONT_VERIFY|0x00000784"),
+        ("4785", "CSIDL_FLAG_DONT_VERIFY|0x00000785"),
+        ("4786", "CSIDL_FLAG_DONT_VERIFY|0x00000786"),
+        ("4787", "CSIDL_FLAG_DONT_VERIFY|0x00000787"),
+        ("4788", "CSIDL_FLAG_DONT_VERIFY|0x00000788"),
+        ("4789", "CSIDL_FLAG_DONT_VERIFY|0x00000789"),
+        ("4790", "CSIDL_FLAG_DONT_VERIFY|0x00000790"),
+        ("4791", "CSIDL_FLAG_DONT_VERIFY|0x00000791"),
+        ("4792", "CSIDL_FLAG_DONT_VERIFY|0x00000792"),
+        ("4793", "CSIDL_FLAG_DONT_VERIFY|0x00000793"),
+        ("4794", "CSIDL_FLAG_DONT_VERIFY|0x00000794"),
+        ("4795", "CSIDL_FLAG_DONT_VERIFY|0x00000795"),
+        ("4796", "CSIDL_FLAG_DONT_VERIFY|0x00000796"),
+        ("4797", "CSIDL_FLAG_DONT_VERIFY|0x00000797"),
+        ("4798", "CSIDL_FLAG_DONT_VERIFY|0x00000798"),
+        ("4799", "CSIDL_FLAG_DONT_VERIFY|0x00000799"),
+        ("4800", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|CSIDL_DESKTOP"),
+        ("4801", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|CSIDL_INTERNET"),
+        ("4802", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|CSIDL_PROGRAMS"),
+        ("4803", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|CSIDL_CONTROLS"),
+        ("4804", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|CSIDL_PRINTERS"),
+        ("4805", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|CSIDL_MYDOCUMENTS"),
+        ("4806", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|CSIDL_FAVORITES"),
+        ("4807", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|CSIDL_STARTUP"),
+        ("4808", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|CSIDL_RECENT"),
+        ("4809", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|CSIDL_SENDTO"),
+        ("4810", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|CSIDL_DESKTOPDIRECTORY"),
+        ("4811", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|CSIDL_DRIVES"),
+        ("4812", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|CSIDL_NETWORK"),
+        ("4813", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|CSIDL_NETHOOD"),
+        ("4814", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|CSIDL_FONTS"),
+        ("4815", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|CSIDL_TEMPLATES"),
+        ("4816", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_STARTMENU"),
+        ("4817", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_PROGRAMS"),
+        ("4818", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_STARTUP"),
+        ("4819", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_DESKTOPDIRECTORY"),
+        ("4820", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|CSIDL_INTERNET_CACHE"),
+        ("4821", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|CSIDL_COOKIES"),
+        ("4822", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|CSIDL_HISTORY"),
+        ("4823", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_APPDATA"),
+        ("4824", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|CSIDL_WINDOWS"),
+        ("4825", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|CSIDL_SYSTEM"),
+        ("4826", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|CSIDL_PROGRAM_FILES"),
+        ("4827", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|CSIDL_MYPICTURES"),
+        ("4828", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|CSIDL_PROFILE"),
+        ("4829", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|CSIDL_SYSTEMX86"),
+        ("4830", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|CSIDL_ADMINTOOLS"),
+        ("4831", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|CSIDL_CONNECTIONS"),
+        ("4832", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000032"),
+        ("4833", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000033"),
+        ("4834", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000034"),
+        ("4835", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_MUSIC"),
+        ("4836", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_PICTURES"),
+        ("4837", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_VIDEO"),
+        ("4838", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|CSIDL_RESOURCES"),
+        ("4839", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|CSIDL_RESOURCES_LOCALIZED"),
+        ("4840", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000040"),
+        ("4841", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000041"),
+        ("4842", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000042"),
+        ("4843", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000043"),
+        ("4844", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000044"),
+        ("4845", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000045"),
+        ("4846", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000046"),
+        ("4847", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000047"),
+        ("4848", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000048"),
+        ("4849", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000049"),
+        ("4850", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000050"),
+        ("4851", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000051"),
+        ("4852", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000052"),
+        ("4853", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000053"),
+        ("4854", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000054"),
+        ("4855", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000055"),
+        ("4856", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000056"),
+        ("4857", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000057"),
+        ("4858", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000058"),
+        ("4859", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000059"),
+        ("4860", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000060"),
+        ("4861", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000061"),
+        ("4862", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000062"),
+        ("4863", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000063"),
+        ("4864", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000064"),
+        ("4865", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000065"),
+        ("4866", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000066"),
+        ("4867", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000067"),
+        ("4868", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000068"),
+        ("4869", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000069"),
+        ("4870", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000070"),
+        ("4871", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000071"),
+        ("4872", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000072"),
+        ("4873", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000073"),
+        ("4874", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000074"),
+        ("4875", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000075"),
+        ("4876", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000076"),
+        ("4877", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000077"),
+        ("4878", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000078"),
+        ("4879", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000079"),
+        ("4880", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000080"),
+        ("4881", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000081"),
+        ("4882", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000082"),
+        ("4883", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000083"),
+        ("4884", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000084"),
+        ("4885", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000085"),
+        ("4886", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000086"),
+        ("4887", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000087"),
+        ("4888", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000088"),
+        ("4889", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000089"),
+        ("4890", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000090"),
+        ("4891", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000091"),
+        ("4892", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000092"),
+        ("4893", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000093"),
+        ("4894", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000094"),
+        ("4895", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000095"),
+        ("4896", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000096"),
+        ("4897", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000097"),
+        ("4898", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000098"),
+        ("4899", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000099"),
+        ("4900", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000100"),
+        ("4901", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000101"),
+        ("4902", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000102"),
+        ("4903", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000103"),
+        ("4904", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000104"),
+        ("4905", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000105"),
+        ("4906", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000106"),
+        ("4907", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000107"),
+        ("4908", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000108"),
+        ("4909", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000109"),
+        ("4910", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000110"),
+        ("4911", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000111"),
+        ("4912", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000112"),
+        ("4913", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000113"),
+        ("4914", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000114"),
+        ("4915", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000115"),
+        ("4916", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000116"),
+        ("4917", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000117"),
+        ("4918", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000118"),
+        ("4919", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000119"),
+        ("4920", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000120"),
+        ("4921", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000121"),
+        ("4922", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000122"),
+        ("4923", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000123"),
+        ("4924", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000124"),
+        ("4925", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000125"),
+        ("4926", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000126"),
+        ("4927", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000127"),
+        ("4928", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000128"),
+        ("4929", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000129"),
+        ("4930", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000130"),
+        ("4931", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000131"),
+        ("4932", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000132"),
+        ("4933", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000133"),
+        ("4934", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000134"),
+        ("4935", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000135"),
+        ("4936", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000136"),
+        ("4937", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000137"),
+        ("4938", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000138"),
+        ("4939", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000139"),
+        ("4940", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000140"),
+        ("4941", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000141"),
+        ("4942", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000142"),
+        ("4943", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000143"),
+        ("4944", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000144"),
+        ("4945", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000145"),
+        ("4946", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000146"),
+        ("4947", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000147"),
+        ("4948", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000148"),
+        ("4949", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000149"),
+        ("4950", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000150"),
+        ("4951", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000151"),
+        ("4952", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000152"),
+        ("4953", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000153"),
+        ("4954", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000154"),
+        ("4955", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000155"),
+        ("4956", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000156"),
+        ("4957", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000157"),
+        ("4958", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000158"),
+        ("4959", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000159"),
+        ("4960", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000160"),
+        ("4961", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000161"),
+        ("4962", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000162"),
+        ("4963", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000163"),
+        ("4964", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000164"),
+        ("4965", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000165"),
+        ("4966", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000166"),
+        ("4967", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000167"),
+        ("4968", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000168"),
+        ("4969", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000169"),
+        ("4970", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000170"),
+        ("4971", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000171"),
+        ("4972", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000172"),
+        ("4973", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000173"),
+        ("4974", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000174"),
+        ("4975", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000175"),
+        ("4976", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000176"),
+        ("4977", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000177"),
+        ("4978", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000178"),
+        ("4979", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000179"),
+        ("4980", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000180"),
+        ("4981", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000181"),
+        ("4982", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000182"),
+        ("4983", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000183"),
+        ("4984", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000184"),
+        ("4985", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000185"),
+        ("4986", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000186"),
+        ("4987", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000187"),
+        ("4988", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000188"),
+        ("4989", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000189"),
+        ("4990", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000190"),
+        ("4991", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000191"),
+        ("4992", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000192"),
+        ("4993", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000193"),
+        ("4994", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000194"),
+        ("4995", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000195"),
+        ("4996", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000196"),
+        ("4997", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000197"),
+        ("4998", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000198"),
+        ("4999", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00000199"),
+        ("5000", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_DESKTOP"),
+        ("5001", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_INTERNET"),
+        ("5002", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_PROGRAMS"),
+        ("5003", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_CONTROLS"),
+        ("5004", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_PRINTERS"),
+        ("5005", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_MYDOCUMENTS"),
+        ("5006", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_FAVORITES"),
+        ("5007", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_STARTUP"),
+        ("5008", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_RECENT"),
+        ("5009", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_SENDTO"),
+        ("5010", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_DESKTOPDIRECTORY"),
+        ("5011", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_DRIVES"),
+        ("5012", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_NETWORK"),
+        ("5013", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_NETHOOD"),
+        ("5014", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_FONTS"),
+        ("5015", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_TEMPLATES"),
+        ("5016", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_STARTMENU"),
+        ("5017", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_PROGRAMS"),
+        ("5018", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_STARTUP"),
+        ("5019", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_DESKTOPDIRECTORY"),
+        ("5020", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_INTERNET_CACHE"),
+        ("5021", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_COOKIES"),
+        ("5022", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_HISTORY"),
+        ("5023", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_APPDATA"),
+        ("5024", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_WINDOWS"),
+        ("5025", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_SYSTEM"),
+        ("5026", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_PROGRAM_FILES"),
+        ("5027", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_MYPICTURES"),
+        ("5028", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_PROFILE"),
+        ("5029", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_SYSTEMX86"),
+        ("5030", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_ADMINTOOLS"),
+        ("5031", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_CONNECTIONS"),
+        ("5032", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000032"),
+        ("5033", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000033"),
+        ("5034", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000034"),
+        ("5035", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_MUSIC"),
+        ("5036", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_PICTURES"),
+        ("5037", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_VIDEO"),
+        ("5038", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_RESOURCES"),
+        ("5039", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_RESOURCES_LOCALIZED"),
+        ("5040", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000040"),
+        ("5041", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000041"),
+        ("5042", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000042"),
+        ("5043", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000043"),
+        ("5044", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000044"),
+        ("5045", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000045"),
+        ("5046", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000046"),
+        ("5047", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000047"),
+        ("5048", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000048"),
+        ("5049", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000049"),
+        ("5050", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000050"),
+        ("5051", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000051"),
+        ("5052", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000052"),
+        ("5053", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000053"),
+        ("5054", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000054"),
+        ("5055", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000055"),
+        ("5056", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000056"),
+        ("5057", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000057"),
+        ("5058", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000058"),
+        ("5059", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000059"),
+        ("5060", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000060"),
+        ("5061", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000061"),
+        ("5062", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000062"),
+        ("5063", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000063"),
+        ("5064", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000064"),
+        ("5065", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000065"),
+        ("5066", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000066"),
+        ("5067", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000067"),
+        ("5068", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000068"),
+        ("5069", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000069"),
+        ("5070", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000070"),
+        ("5071", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000071"),
+        ("5072", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000072"),
+        ("5073", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000073"),
+        ("5074", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000074"),
+        ("5075", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000075"),
+        ("5076", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000076"),
+        ("5077", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000077"),
+        ("5078", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000078"),
+        ("5079", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000079"),
+        ("5080", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000080"),
+        ("5081", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000081"),
+        ("5082", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000082"),
+        ("5083", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000083"),
+        ("5084", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000084"),
+        ("5085", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000085"),
+        ("5086", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000086"),
+        ("5087", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000087"),
+        ("5088", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000088"),
+        ("5089", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000089"),
+        ("5090", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000090"),
+        ("5091", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000091"),
+        ("5092", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000092"),
+        ("5093", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000093"),
+        ("5094", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000094"),
+        ("5095", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000095"),
+        ("5096", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000096"),
+        ("5097", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000097"),
+        ("5098", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000098"),
+        ("5099", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000099"),
+        ("5100", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000100"),
+        ("5101", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000101"),
+        ("5102", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000102"),
+        ("5103", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000103"),
+        ("5104", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000104"),
+        ("5105", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000105"),
+        ("5106", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000106"),
+        ("5107", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000107"),
+        ("5108", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000108"),
+        ("5109", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000109"),
+        ("5110", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000110"),
+        ("5111", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000111"),
+        ("5112", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000112"),
+        ("5113", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000113"),
+        ("5114", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000114"),
+        ("5115", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000115"),
+        ("5116", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000116"),
+        ("5117", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000117"),
+        ("5118", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000118"),
+        ("5119", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000119"),
+        ("5120", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000120"),
+        ("5121", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000121"),
+        ("5122", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000122"),
+        ("5123", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000123"),
+        ("5124", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000124"),
+        ("5125", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000125"),
+        ("5126", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000126"),
+        ("5127", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000127"),
+        ("5128", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000128"),
+        ("5129", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000129"),
+        ("5130", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000130"),
+        ("5131", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000131"),
+        ("5132", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000132"),
+        ("5133", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000133"),
+        ("5134", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000134"),
+        ("5135", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000135"),
+        ("5136", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000136"),
+        ("5137", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000137"),
+        ("5138", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000138"),
+        ("5139", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000139"),
+        ("5140", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000140"),
+        ("5141", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000141"),
+        ("5142", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000142"),
+        ("5143", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000143"),
+        ("5144", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000144"),
+        ("5145", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000145"),
+        ("5146", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000146"),
+        ("5147", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000147"),
+        ("5148", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000148"),
+        ("5149", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000149"),
+        ("5150", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000150"),
+        ("5151", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000151"),
+        ("5152", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000152"),
+        ("5153", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000153"),
+        ("5154", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000154"),
+        ("5155", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000155"),
+        ("5156", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000156"),
+        ("5157", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000157"),
+        ("5158", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000158"),
+        ("5159", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000159"),
+        ("5160", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000160"),
+        ("5161", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000161"),
+        ("5162", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000162"),
+        ("5163", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000163"),
+        ("5164", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000164"),
+        ("5165", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000165"),
+        ("5166", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000166"),
+        ("5167", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000167"),
+        ("5168", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000168"),
+        ("5169", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000169"),
+        ("5170", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000170"),
+        ("5171", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000171"),
+        ("5172", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000172"),
+        ("5173", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000173"),
+        ("5174", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000174"),
+        ("5175", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000175"),
+        ("5176", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000176"),
+        ("5177", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000177"),
+        ("5178", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000178"),
+        ("5179", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000179"),
+        ("5180", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000180"),
+        ("5181", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000181"),
+        ("5182", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000182"),
+        ("5183", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000183"),
+        ("5184", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000184"),
+        ("5185", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000185"),
+        ("5186", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000186"),
+        ("5187", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000187"),
+        ("5188", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000188"),
+        ("5189", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000189"),
+        ("5190", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000190"),
+        ("5191", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000191"),
+        ("5192", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000192"),
+        ("5193", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000193"),
+        ("5194", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000194"),
+        ("5195", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000195"),
+        ("5196", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000196"),
+        ("5197", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000197"),
+        ("5198", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000198"),
+        ("5199", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000199"),
+        ("5200", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000200"),
+        ("5201", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000201"),
+        ("5202", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000202"),
+        ("5203", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000203"),
+        ("5204", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000204"),
+        ("5205", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000205"),
+        ("5206", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000206"),
+        ("5207", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000207"),
+        ("5208", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000208"),
+        ("5209", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000209"),
+        ("5210", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000210"),
+        ("5211", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000211"),
+        ("5212", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000212"),
+        ("5213", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000213"),
+        ("5214", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000214"),
+        ("5215", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000215"),
+        ("5216", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000216"),
+        ("5217", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000217"),
+        ("5218", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000218"),
+        ("5219", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000219"),
+        ("5220", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000220"),
+        ("5221", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000221"),
+        ("5222", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000222"),
+        ("5223", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000223"),
+        ("5224", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000224"),
+        ("5225", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000225"),
+        ("5226", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000226"),
+        ("5227", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000227"),
+        ("5228", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000228"),
+        ("5229", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000229"),
+        ("5230", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000230"),
+        ("5231", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000231"),
+        ("5232", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000232"),
+        ("5233", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000233"),
+        ("5234", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000234"),
+        ("5235", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000235"),
+        ("5236", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000236"),
+        ("5237", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000237"),
+        ("5238", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000238"),
+        ("5239", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000239"),
+        ("5240", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000240"),
+        ("5241", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000241"),
+        ("5242", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000242"),
+        ("5243", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000243"),
+        ("5244", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000244"),
+        ("5245", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000245"),
+        ("5246", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000246"),
+        ("5247", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000247"),
+        ("5248", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000248"),
+        ("5249", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000249"),
+        ("5250", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000250"),
+        ("5251", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000251"),
+        ("5252", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000252"),
+        ("5253", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000253"),
+        ("5254", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000254"),
+        ("5255", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000255"),
+        ("5256", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000256"),
+        ("5257", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000257"),
+        ("5258", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000258"),
+        ("5259", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000259"),
+        ("5260", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000260"),
+        ("5261", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000261"),
+        ("5262", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000262"),
+        ("5263", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000263"),
+        ("5264", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000264"),
+        ("5265", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000265"),
+        ("5266", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000266"),
+        ("5267", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000267"),
+        ("5268", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000268"),
+        ("5269", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000269"),
+        ("5270", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000270"),
+        ("5271", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000271"),
+        ("5272", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000272"),
+        ("5273", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000273"),
+        ("5274", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000274"),
+        ("5275", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000275"),
+        ("5276", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000276"),
+        ("5277", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000277"),
+        ("5278", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000278"),
+        ("5279", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000279"),
+        ("5280", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000280"),
+        ("5281", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000281"),
+        ("5282", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000282"),
+        ("5283", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000283"),
+        ("5284", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000284"),
+        ("5285", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000285"),
+        ("5286", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000286"),
+        ("5287", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000287"),
+        ("5288", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000288"),
+        ("5289", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000289"),
+        ("5290", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000290"),
+        ("5291", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000291"),
+        ("5292", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000292"),
+        ("5293", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000293"),
+        ("5294", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000294"),
+        ("5295", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000295"),
+        ("5296", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000296"),
+        ("5297", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000297"),
+        ("5298", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000298"),
+        ("5299", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000299"),
+        ("5300", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000300"),
+        ("5301", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000301"),
+        ("5302", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000302"),
+        ("5303", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000303"),
+        ("5304", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000304"),
+        ("5305", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000305"),
+        ("5306", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000306"),
+        ("5307", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000307"),
+        ("5308", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000308"),
+        ("5309", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000309"),
+        ("5310", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000310"),
+        ("5311", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000311"),
+        ("5312", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000312"),
+        ("5313", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000313"),
+        ("5314", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000314"),
+        ("5315", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000315"),
+        ("5316", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000316"),
+        ("5317", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000317"),
+        ("5318", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000318"),
+        ("5319", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000319"),
+        ("5320", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000320"),
+        ("5321", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000321"),
+        ("5322", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000322"),
+        ("5323", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000323"),
+        ("5324", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000324"),
+        ("5325", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000325"),
+        ("5326", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000326"),
+        ("5327", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000327"),
+        ("5328", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000328"),
+        ("5329", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000329"),
+        ("5330", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000330"),
+        ("5331", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000331"),
+        ("5332", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000332"),
+        ("5333", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000333"),
+        ("5334", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000334"),
+        ("5335", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000335"),
+        ("5336", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000336"),
+        ("5337", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000337"),
+        ("5338", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000338"),
+        ("5339", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000339"),
+        ("5340", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000340"),
+        ("5341", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000341"),
+        ("5342", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000342"),
+        ("5343", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000343"),
+        ("5344", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000344"),
+        ("5345", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000345"),
+        ("5346", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000346"),
+        ("5347", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000347"),
+        ("5348", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000348"),
+        ("5349", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000349"),
+        ("5350", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000350"),
+        ("5351", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000351"),
+        ("5352", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000352"),
+        ("5353", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000353"),
+        ("5354", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000354"),
+        ("5355", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000355"),
+        ("5356", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000356"),
+        ("5357", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000357"),
+        ("5358", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000358"),
+        ("5359", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000359"),
+        ("5360", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000360"),
+        ("5361", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000361"),
+        ("5362", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000362"),
+        ("5363", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000363"),
+        ("5364", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000364"),
+        ("5365", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000365"),
+        ("5366", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000366"),
+        ("5367", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000367"),
+        ("5368", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000368"),
+        ("5369", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000369"),
+        ("5370", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000370"),
+        ("5371", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000371"),
+        ("5372", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000372"),
+        ("5373", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000373"),
+        ("5374", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000374"),
+        ("5375", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000375"),
+        ("5376", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000376"),
+        ("5377", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000377"),
+        ("5378", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000378"),
+        ("5379", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000379"),
+        ("5380", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000380"),
+        ("5381", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000381"),
+        ("5382", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000382"),
+        ("5383", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000383"),
+        ("5384", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000384"),
+        ("5385", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000385"),
+        ("5386", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000386"),
+        ("5387", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000387"),
+        ("5388", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000388"),
+        ("5389", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000389"),
+        ("5390", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000390"),
+        ("5391", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000391"),
+        ("5392", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000392"),
+        ("5393", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000393"),
+        ("5394", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000394"),
+        ("5395", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000395"),
+        ("5396", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000396"),
+        ("5397", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000397"),
+        ("5398", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000398"),
+        ("5399", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000399"),
+        ("5400", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000400"),
+        ("5401", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000401"),
+        ("5402", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000402"),
+        ("5403", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000403"),
+        ("5404", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000404"),
+        ("5405", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000405"),
+        ("5406", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000406"),
+        ("5407", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000407"),
+        ("5408", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000408"),
+        ("5409", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000409"),
+        ("5410", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000410"),
+        ("5411", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000411"),
+        ("5412", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000412"),
+        ("5413", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000413"),
+        ("5414", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000414"),
+        ("5415", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000415"),
+        ("5416", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000416"),
+        ("5417", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000417"),
+        ("5418", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000418"),
+        ("5419", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000419"),
+        ("5420", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000420"),
+        ("5421", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000421"),
+        ("5422", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000422"),
+        ("5423", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000423"),
+        ("5424", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000424"),
+        ("5425", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000425"),
+        ("5426", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000426"),
+        ("5427", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000427"),
+        ("5428", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000428"),
+        ("5429", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000429"),
+        ("5430", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000430"),
+        ("5431", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000431"),
+        ("5432", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000432"),
+        ("5433", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000433"),
+        ("5434", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000434"),
+        ("5435", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000435"),
+        ("5436", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000436"),
+        ("5437", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000437"),
+        ("5438", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000438"),
+        ("5439", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000439"),
+        ("5440", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000440"),
+        ("5441", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000441"),
+        ("5442", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000442"),
+        ("5443", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000443"),
+        ("5444", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000444"),
+        ("5445", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000445"),
+        ("5446", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000446"),
+        ("5447", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000447"),
+        ("5448", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000448"),
+        ("5449", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000449"),
+        ("5450", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000450"),
+        ("5451", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000451"),
+        ("5452", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000452"),
+        ("5453", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000453"),
+        ("5454", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000454"),
+        ("5455", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000455"),
+        ("5456", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000456"),
+        ("5457", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000457"),
+        ("5458", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000458"),
+        ("5459", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000459"),
+        ("5460", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000460"),
+        ("5461", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000461"),
+        ("5462", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000462"),
+        ("5463", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000463"),
+        ("5464", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000464"),
+        ("5465", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000465"),
+        ("5466", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000466"),
+        ("5467", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000467"),
+        ("5468", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000468"),
+        ("5469", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000469"),
+        ("5470", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000470"),
+        ("5471", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000471"),
+        ("5472", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000472"),
+        ("5473", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000473"),
+        ("5474", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000474"),
+        ("5475", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000475"),
+        ("5476", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000476"),
+        ("5477", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000477"),
+        ("5478", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000478"),
+        ("5479", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000479"),
+        ("5480", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000480"),
+        ("5481", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000481"),
+        ("5482", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000482"),
+        ("5483", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000483"),
+        ("5484", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000484"),
+        ("5485", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000485"),
+        ("5486", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000486"),
+        ("5487", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000487"),
+        ("5488", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000488"),
+        ("5489", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000489"),
+        ("5490", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000490"),
+        ("5491", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000491"),
+        ("5492", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000492"),
+        ("5493", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000493"),
+        ("5494", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000494"),
+        ("5495", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000495"),
+        ("5496", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000496"),
+        ("5497", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000497"),
+        ("5498", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000498"),
+        ("5499", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000499"),
+        ("5500", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000500"),
+        ("5501", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000501"),
+        ("5502", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000502"),
+        ("5503", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000503"),
+        ("5504", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000504"),
+        ("5505", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000505"),
+        ("5506", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000506"),
+        ("5507", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000507"),
+        ("5508", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000508"),
+        ("5509", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000509"),
+        ("5510", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000510"),
+        ("5511", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000511"),
+        ("5512", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000512"),
+        ("5513", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000513"),
+        ("5514", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000514"),
+        ("5515", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000515"),
+        ("5516", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000516"),
+        ("5517", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000517"),
+        ("5518", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000518"),
+        ("5519", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000519"),
+        ("5520", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000520"),
+        ("5521", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000521"),
+        ("5522", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000522"),
+        ("5523", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000523"),
+        ("5524", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000524"),
+        ("5525", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000525"),
+        ("5526", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000526"),
+        ("5527", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000527"),
+        ("5528", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000528"),
+        ("5529", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000529"),
+        ("5530", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000530"),
+        ("5531", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000531"),
+        ("5532", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000532"),
+        ("5533", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000533"),
+        ("5534", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000534"),
+        ("5535", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000535"),
+        ("5536", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000536"),
+        ("5537", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000537"),
+        ("5538", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000538"),
+        ("5539", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000539"),
+        ("5540", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000540"),
+        ("5541", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000541"),
+        ("5542", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000542"),
+        ("5543", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000543"),
+        ("5544", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000544"),
+        ("5545", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000545"),
+        ("5546", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000546"),
+        ("5547", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000547"),
+        ("5548", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000548"),
+        ("5549", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000549"),
+        ("5550", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000550"),
+        ("5551", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000551"),
+        ("5552", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000552"),
+        ("5553", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000553"),
+        ("5554", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000554"),
+        ("5555", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000555"),
+        ("5556", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000556"),
+        ("5557", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000557"),
+        ("5558", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000558"),
+        ("5559", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000559"),
+        ("5560", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000560"),
+        ("5561", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000561"),
+        ("5562", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000562"),
+        ("5563", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000563"),
+        ("5564", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000564"),
+        ("5565", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000565"),
+        ("5566", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000566"),
+        ("5567", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000567"),
+        ("5568", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000568"),
+        ("5569", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000569"),
+        ("5570", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000570"),
+        ("5571", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000571"),
+        ("5572", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000572"),
+        ("5573", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000573"),
+        ("5574", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000574"),
+        ("5575", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000575"),
+        ("5576", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000576"),
+        ("5577", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000577"),
+        ("5578", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000578"),
+        ("5579", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000579"),
+        ("5580", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000580"),
+        ("5581", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000581"),
+        ("5582", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000582"),
+        ("5583", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000583"),
+        ("5584", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000584"),
+        ("5585", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000585"),
+        ("5586", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000586"),
+        ("5587", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000587"),
+        ("5588", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000588"),
+        ("5589", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000589"),
+        ("5590", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000590"),
+        ("5591", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000591"),
+        ("5592", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000592"),
+        ("5593", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000593"),
+        ("5594", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000594"),
+        ("5595", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000595"),
+        ("5596", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000596"),
+        ("5597", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000597"),
+        ("5598", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000598"),
+        ("5599", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000599"),
+        ("5600", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000600"),
+        ("5601", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000601"),
+        ("5602", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000602"),
+        ("5603", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000603"),
+        ("5604", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000604"),
+        ("5605", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000605"),
+        ("5606", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000606"),
+        ("5607", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000607"),
+        ("5608", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000608"),
+        ("5609", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000609"),
+        ("5610", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000610"),
+        ("5611", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000611"),
+        ("5612", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000612"),
+        ("5613", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000613"),
+        ("5614", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000614"),
+        ("5615", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000615"),
+        ("5616", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000616"),
+        ("5617", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000617"),
+        ("5618", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000618"),
+        ("5619", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000619"),
+        ("5620", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000620"),
+        ("5621", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000621"),
+        ("5622", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000622"),
+        ("5623", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000623"),
+        ("5624", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000624"),
+        ("5625", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000625"),
+        ("5626", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000626"),
+        ("5627", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000627"),
+        ("5628", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000628"),
+        ("5629", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000629"),
+        ("5630", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000630"),
+        ("5631", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000631"),
+        ("5632", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000632"),
+        ("5633", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000633"),
+        ("5634", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000634"),
+        ("5635", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000635"),
+        ("5636", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000636"),
+        ("5637", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000637"),
+        ("5638", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000638"),
+        ("5639", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000639"),
+        ("5640", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000640"),
+        ("5641", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000641"),
+        ("5642", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000642"),
+        ("5643", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000643"),
+        ("5644", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000644"),
+        ("5645", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000645"),
+        ("5646", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000646"),
+        ("5647", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000647"),
+        ("5648", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000648"),
+        ("5649", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000649"),
+        ("5650", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000650"),
+        ("5651", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000651"),
+        ("5652", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000652"),
+        ("5653", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000653"),
+        ("5654", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000654"),
+        ("5655", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000655"),
+        ("5656", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000656"),
+        ("5657", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000657"),
+        ("5658", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000658"),
+        ("5659", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000659"),
+        ("5660", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000660"),
+        ("5661", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000661"),
+        ("5662", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000662"),
+        ("5663", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000663"),
+        ("5664", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000664"),
+        ("5665", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000665"),
+        ("5666", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000666"),
+        ("5667", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000667"),
+        ("5668", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000668"),
+        ("5669", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000669"),
+        ("5670", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000670"),
+        ("5671", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000671"),
+        ("5672", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000672"),
+        ("5673", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000673"),
+        ("5674", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000674"),
+        ("5675", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000675"),
+        ("5676", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000676"),
+        ("5677", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000677"),
+        ("5678", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000678"),
+        ("5679", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000679"),
+        ("5680", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000680"),
+        ("5681", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000681"),
+        ("5682", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000682"),
+        ("5683", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000683"),
+        ("5684", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000684"),
+        ("5685", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000685"),
+        ("5686", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000686"),
+        ("5687", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000687"),
+        ("5688", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000688"),
+        ("5689", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000689"),
+        ("5690", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000690"),
+        ("5691", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000691"),
+        ("5692", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000692"),
+        ("5693", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000693"),
+        ("5694", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000694"),
+        ("5695", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000695"),
+        ("5696", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000696"),
+        ("5697", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000697"),
+        ("5698", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000698"),
+        ("5699", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000699"),
+        ("5700", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000700"),
+        ("5701", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000701"),
+        ("5702", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000702"),
+        ("5703", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000703"),
+        ("5704", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000704"),
+        ("5705", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000705"),
+        ("5706", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000706"),
+        ("5707", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000707"),
+        ("5708", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000708"),
+        ("5709", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000709"),
+        ("5710", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000710"),
+        ("5711", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000711"),
+        ("5712", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000712"),
+        ("5713", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000713"),
+        ("5714", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000714"),
+        ("5715", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000715"),
+        ("5716", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000716"),
+        ("5717", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000717"),
+        ("5718", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000718"),
+        ("5719", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000719"),
+        ("5720", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000720"),
+        ("5721", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000721"),
+        ("5722", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000722"),
+        ("5723", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000723"),
+        ("5724", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000724"),
+        ("5725", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000725"),
+        ("5726", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000726"),
+        ("5727", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000727"),
+        ("5728", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000728"),
+        ("5729", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000729"),
+        ("5730", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000730"),
+        ("5731", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000731"),
+        ("5732", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000732"),
+        ("5733", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000733"),
+        ("5734", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000734"),
+        ("5735", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000735"),
+        ("5736", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000736"),
+        ("5737", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000737"),
+        ("5738", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000738"),
+        ("5739", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000739"),
+        ("5740", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000740"),
+        ("5741", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000741"),
+        ("5742", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000742"),
+        ("5743", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000743"),
+        ("5744", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000744"),
+        ("5745", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000745"),
+        ("5746", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000746"),
+        ("5747", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000747"),
+        ("5748", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000748"),
+        ("5749", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000749"),
+        ("5750", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000750"),
+        ("5751", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000751"),
+        ("5752", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000752"),
+        ("5753", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000753"),
+        ("5754", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000754"),
+        ("5755", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000755"),
+        ("5756", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000756"),
+        ("5757", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000757"),
+        ("5758", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000758"),
+        ("5759", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000759"),
+        ("5760", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000760"),
+        ("5761", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000761"),
+        ("5762", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000762"),
+        ("5763", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000763"),
+        ("5764", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000764"),
+        ("5765", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000765"),
+        ("5766", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000766"),
+        ("5767", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000767"),
+        ("5768", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000768"),
+        ("5769", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000769"),
+        ("5770", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000770"),
+        ("5771", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000771"),
+        ("5772", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000772"),
+        ("5773", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000773"),
+        ("5774", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000774"),
+        ("5775", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000775"),
+        ("5776", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000776"),
+        ("5777", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000777"),
+        ("5778", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000778"),
+        ("5779", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000779"),
+        ("5780", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000780"),
+        ("5781", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000781"),
+        ("5782", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000782"),
+        ("5783", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000783"),
+        ("5784", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000784"),
+        ("5785", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000785"),
+        ("5786", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000786"),
+        ("5787", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000787"),
+        ("5788", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000788"),
+        ("5789", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000789"),
+        ("5790", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000790"),
+        ("5791", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000791"),
+        ("5792", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000792"),
+        ("5793", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000793"),
+        ("5794", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000794"),
+        ("5795", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000795"),
+        ("5796", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000796"),
+        ("5797", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000797"),
+        ("5798", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000798"),
+        ("5799", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000799"),
+        ("5800", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_DESKTOP"),
+        ("5801", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_INTERNET"),
+        ("5802", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_PROGRAMS"),
+        ("5803", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_CONTROLS"),
+        ("5804", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_PRINTERS"),
+        ("5805", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_MYDOCUMENTS"),
+        ("5806", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_FAVORITES"),
+        ("5807", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_STARTUP"),
+        ("5808", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_RECENT"),
+        ("5809", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_SENDTO"),
+        ("5810", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_DESKTOPDIRECTORY"),
+        ("5811", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_DRIVES"),
+        ("5812", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_NETWORK"),
+        ("5813", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_NETHOOD"),
+        ("5814", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_FONTS"),
+        ("5815", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_TEMPLATES"),
+        ("5816", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_STARTMENU"),
+        ("5817", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_PROGRAMS"),
+        ("5818", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_STARTUP"),
+        ("5819", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_DESKTOPDIRECTORY"),
+        ("5820", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_INTERNET_CACHE"),
+        ("5821", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_COOKIES"),
+        ("5822", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_HISTORY"),
+        ("5823", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_APPDATA"),
+        ("5824", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_WINDOWS"),
+        ("5825", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_SYSTEM"),
+        ("5826", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_PROGRAM_FILES"),
+        ("5827", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_MYPICTURES"),
+        ("5828", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_PROFILE"),
+        ("5829", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_SYSTEMX86"),
+        ("5830", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_ADMINTOOLS"),
+        ("5831", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_CONNECTIONS"),
+        ("5832", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000032"),
+        ("5833", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000033"),
+        ("5834", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000034"),
+        ("5835", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_MUSIC"),
+        ("5836", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_PICTURES"),
+        ("5837", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_VIDEO"),
+        ("5838", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_RESOURCES"),
+        ("5839", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|CSIDL_RESOURCES_LOCALIZED"),
+        ("5840", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000040"),
+        ("5841", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000041"),
+        ("5842", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000042"),
+        ("5843", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000043"),
+        ("5844", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000044"),
+        ("5845", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000045"),
+        ("5846", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000046"),
+        ("5847", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000047"),
+        ("5848", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000048"),
+        ("5849", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000049"),
+        ("5850", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000050"),
+        ("5851", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000051"),
+        ("5852", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000052"),
+        ("5853", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000053"),
+        ("5854", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000054"),
+        ("5855", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000055"),
+        ("5856", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000056"),
+        ("5857", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000057"),
+        ("5858", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000058"),
+        ("5859", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000059"),
+        ("5860", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000060"),
+        ("5861", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000061"),
+        ("5862", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000062"),
+        ("5863", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000063"),
+        ("5864", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000064"),
+        ("5865", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000065"),
+        ("5866", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000066"),
+        ("5867", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000067"),
+        ("5868", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000068"),
+        ("5869", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000069"),
+        ("5870", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000070"),
+        ("5871", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000071"),
+        ("5872", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000072"),
+        ("5873", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000073"),
+        ("5874", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000074"),
+        ("5875", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000075"),
+        ("5876", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000076"),
+        ("5877", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000077"),
+        ("5878", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000078"),
+        ("5879", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000079"),
+        ("5880", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000080"),
+        ("5881", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000081"),
+        ("5882", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000082"),
+        ("5883", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000083"),
+        ("5884", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000084"),
+        ("5885", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000085"),
+        ("5886", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000086"),
+        ("5887", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000087"),
+        ("5888", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000088"),
+        ("5889", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000089"),
+        ("5890", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000090"),
+        ("5891", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000091"),
+        ("5892", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000092"),
+        ("5893", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000093"),
+        ("5894", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000094"),
+        ("5895", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000095"),
+        ("5896", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000096"),
+        ("5897", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000097"),
+        ("5898", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000098"),
+        ("5899", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000099"),
+        ("5900", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000100"),
+        ("5901", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000101"),
+        ("5902", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000102"),
+        ("5903", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000103"),
+        ("5904", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000104"),
+        ("5905", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000105"),
+        ("5906", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000106"),
+        ("5907", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000107"),
+        ("5908", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000108"),
+        ("5909", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000109"),
+        ("5910", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000110"),
+        ("5911", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000111"),
+        ("5912", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000112"),
+        ("5913", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000113"),
+        ("5914", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000114"),
+        ("5915", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000115"),
+        ("5916", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000116"),
+        ("5917", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000117"),
+        ("5918", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000118"),
+        ("5919", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000119"),
+        ("5920", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000120"),
+        ("5921", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000121"),
+        ("5922", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000122"),
+        ("5923", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000123"),
+        ("5924", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000124"),
+        ("5925", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000125"),
+        ("5926", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000126"),
+        ("5927", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000127"),
+        ("5928", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000128"),
+        ("5929", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000129"),
+        ("5930", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000130"),
+        ("5931", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000131"),
+        ("5932", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000132"),
+        ("5933", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000133"),
+        ("5934", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000134"),
+        ("5935", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000135"),
+        ("5936", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000136"),
+        ("5937", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000137"),
+        ("5938", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000138"),
+        ("5939", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000139"),
+        ("5940", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000140"),
+        ("5941", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000141"),
+        ("5942", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000142"),
+        ("5943", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000143"),
+        ("5944", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000144"),
+        ("5945", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000145"),
+        ("5946", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000146"),
+        ("5947", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000147"),
+        ("5948", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000148"),
+        ("5949", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000149"),
+        ("5950", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000150"),
+        ("5951", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000151"),
+        ("5952", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000152"),
+        ("5953", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000153"),
+        ("5954", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000154"),
+        ("5955", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000155"),
+        ("5956", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000156"),
+        ("5957", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000157"),
+        ("5958", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000158"),
+        ("5959", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000159"),
+        ("5960", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000160"),
+        ("5961", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000161"),
+        ("5962", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000162"),
+        ("5963", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000163"),
+        ("5964", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000164"),
+        ("5965", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000165"),
+        ("5966", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000166"),
+        ("5967", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000167"),
+        ("5968", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000168"),
+        ("5969", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000169"),
+        ("5970", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000170"),
+        ("5971", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000171"),
+        ("5972", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000172"),
+        ("5973", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000173"),
+        ("5974", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000174"),
+        ("5975", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000175"),
+        ("5976", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000176"),
+        ("5977", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000177"),
+        ("5978", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000178"),
+        ("5979", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000179"),
+        ("5980", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000180"),
+        ("5981", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000181"),
+        ("5982", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000182"),
+        ("5983", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000183"),
+        ("5984", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000184"),
+        ("5985", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000185"),
+        ("5986", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000186"),
+        ("5987", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000187"),
+        ("5988", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000188"),
+        ("5989", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000189"),
+        ("5990", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000190"),
+        ("5991", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000191"),
+        ("5992", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000192"),
+        ("5993", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000193"),
+        ("5994", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000194"),
+        ("5995", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000195"),
+        ("5996", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000196"),
+        ("5997", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000197"),
+        ("5998", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000198"),
+        ("5999", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00000199"),
+        ("6000", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_DESKTOP"),
+        ("6001", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_INTERNET"),
+        ("6002", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_PROGRAMS"),
+        ("6003", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_CONTROLS"),
+        ("6004", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_PRINTERS"),
+        ("6005", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_MYDOCUMENTS"),
+        ("6006", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_FAVORITES"),
+        ("6007", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_STARTUP"),
+        ("6008", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_RECENT"),
+        ("6009", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_SENDTO"),
+        ("6010", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_DESKTOPDIRECTORY"),
+        ("6011", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_DRIVES"),
+        ("6012", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_NETWORK"),
+        ("6013", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_NETHOOD"),
+        ("6014", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_FONTS"),
+        ("6015", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_TEMPLATES"),
+        ("6016", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_STARTMENU"),
+        ("6017", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_PROGRAMS"),
+        ("6018", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_STARTUP"),
+        ("6019", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_DESKTOPDIRECTORY"),
+        ("6020", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_INTERNET_CACHE"),
+        ("6021", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_COOKIES"),
+        ("6022", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_HISTORY"),
+        ("6023", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_APPDATA"),
+        ("6024", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_WINDOWS"),
+        ("6025", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_SYSTEM"),
+        ("6026", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_PROGRAM_FILES"),
+        ("6027", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_MYPICTURES"),
+        ("6028", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_PROFILE"),
+        ("6029", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_SYSTEMX86"),
+        ("6030", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_ADMINTOOLS"),
+        ("6031", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_CONNECTIONS"),
+        ("6032", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000032"),
+        ("6033", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000033"),
+        ("6034", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000034"),
+        ("6035", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_MUSIC"),
+        ("6036", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_PICTURES"),
+        ("6037", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_VIDEO"),
+        ("6038", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_RESOURCES"),
+        ("6039", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_RESOURCES_LOCALIZED"),
+        ("6040", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000040"),
+        ("6041", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000041"),
+        ("6042", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000042"),
+        ("6043", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000043"),
+        ("6044", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000044"),
+        ("6045", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000045"),
+        ("6046", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000046"),
+        ("6047", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000047"),
+        ("6048", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000048"),
+        ("6049", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000049"),
+        ("6050", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000050"),
+        ("6051", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000051"),
+        ("6052", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000052"),
+        ("6053", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000053"),
+        ("6054", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000054"),
+        ("6055", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000055"),
+        ("6056", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000056"),
+        ("6057", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000057"),
+        ("6058", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000058"),
+        ("6059", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000059"),
+        ("6060", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000060"),
+        ("6061", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000061"),
+        ("6062", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000062"),
+        ("6063", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000063"),
+        ("6064", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000064"),
+        ("6065", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000065"),
+        ("6066", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000066"),
+        ("6067", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000067"),
+        ("6068", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000068"),
+        ("6069", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000069"),
+        ("6070", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000070"),
+        ("6071", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000071"),
+        ("6072", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000072"),
+        ("6073", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000073"),
+        ("6074", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000074"),
+        ("6075", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000075"),
+        ("6076", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000076"),
+        ("6077", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000077"),
+        ("6078", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000078"),
+        ("6079", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000079"),
+        ("6080", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000080"),
+        ("6081", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000081"),
+        ("6082", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000082"),
+        ("6083", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000083"),
+        ("6084", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000084"),
+        ("6085", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000085"),
+        ("6086", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000086"),
+        ("6087", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000087"),
+        ("6088", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000088"),
+        ("6089", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000089"),
+        ("6090", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000090"),
+        ("6091", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000091"),
+        ("6092", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000092"),
+        ("6093", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000093"),
+        ("6094", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000094"),
+        ("6095", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000095"),
+        ("6096", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000096"),
+        ("6097", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000097"),
+        ("6098", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000098"),
+        ("6099", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000099"),
+        ("6100", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000100"),
+        ("6101", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000101"),
+        ("6102", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000102"),
+        ("6103", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000103"),
+        ("6104", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000104"),
+        ("6105", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000105"),
+        ("6106", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000106"),
+        ("6107", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000107"),
+        ("6108", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000108"),
+        ("6109", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000109"),
+        ("6110", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000110"),
+        ("6111", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000111"),
+        ("6112", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000112"),
+        ("6113", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000113"),
+        ("6114", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000114"),
+        ("6115", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000115"),
+        ("6116", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000116"),
+        ("6117", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000117"),
+        ("6118", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000118"),
+        ("6119", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000119"),
+        ("6120", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000120"),
+        ("6121", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000121"),
+        ("6122", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000122"),
+        ("6123", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000123"),
+        ("6124", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000124"),
+        ("6125", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000125"),
+        ("6126", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000126"),
+        ("6127", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000127"),
+        ("6128", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000128"),
+        ("6129", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000129"),
+        ("6130", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000130"),
+        ("6131", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000131"),
+        ("6132", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000132"),
+        ("6133", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000133"),
+        ("6134", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000134"),
+        ("6135", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000135"),
+        ("6136", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000136"),
+        ("6137", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000137"),
+        ("6138", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000138"),
+        ("6139", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000139"),
+        ("6140", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000140"),
+        ("6141", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000141"),
+        ("6142", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000142"),
+        ("6143", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000143"),
+        ("6144", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000144"),
+        ("6145", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000145"),
+        ("6146", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000146"),
+        ("6147", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000147"),
+        ("6148", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000148"),
+        ("6149", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000149"),
+        ("6150", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000150"),
+        ("6151", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000151"),
+        ("6152", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000152"),
+        ("6153", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000153"),
+        ("6154", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000154"),
+        ("6155", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000155"),
+        ("6156", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000156"),
+        ("6157", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000157"),
+        ("6158", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000158"),
+        ("6159", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000159"),
+        ("6160", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000160"),
+        ("6161", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000161"),
+        ("6162", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000162"),
+        ("6163", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000163"),
+        ("6164", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000164"),
+        ("6165", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000165"),
+        ("6166", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000166"),
+        ("6167", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000167"),
+        ("6168", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000168"),
+        ("6169", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000169"),
+        ("6170", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000170"),
+        ("6171", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000171"),
+        ("6172", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000172"),
+        ("6173", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000173"),
+        ("6174", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000174"),
+        ("6175", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000175"),
+        ("6176", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000176"),
+        ("6177", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000177"),
+        ("6178", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000178"),
+        ("6179", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000179"),
+        ("6180", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000180"),
+        ("6181", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000181"),
+        ("6182", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000182"),
+        ("6183", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000183"),
+        ("6184", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000184"),
+        ("6185", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000185"),
+        ("6186", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000186"),
+        ("6187", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000187"),
+        ("6188", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000188"),
+        ("6189", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000189"),
+        ("6190", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000190"),
+        ("6191", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000191"),
+        ("6192", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000192"),
+        ("6193", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000193"),
+        ("6194", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000194"),
+        ("6195", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000195"),
+        ("6196", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000196"),
+        ("6197", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000197"),
+        ("6198", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000198"),
+        ("6199", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000199"),
+        ("6200", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000200"),
+        ("6201", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000201"),
+        ("6202", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000202"),
+        ("6203", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000203"),
+        ("6204", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000204"),
+        ("6205", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000205"),
+        ("6206", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000206"),
+        ("6207", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000207"),
+        ("6208", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000208"),
+        ("6209", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000209"),
+        ("6210", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000210"),
+        ("6211", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000211"),
+        ("6212", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000212"),
+        ("6213", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000213"),
+        ("6214", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000214"),
+        ("6215", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000215"),
+        ("6216", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000216"),
+        ("6217", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000217"),
+        ("6218", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000218"),
+        ("6219", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000219"),
+        ("6220", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000220"),
+        ("6221", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000221"),
+        ("6222", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000222"),
+        ("6223", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000223"),
+        ("6224", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000224"),
+        ("6225", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000225"),
+        ("6226", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000226"),
+        ("6227", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000227"),
+        ("6228", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000228"),
+        ("6229", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000229"),
+        ("6230", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000230"),
+        ("6231", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000231"),
+        ("6232", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000232"),
+        ("6233", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000233"),
+        ("6234", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000234"),
+        ("6235", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000235"),
+        ("6236", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000236"),
+        ("6237", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000237"),
+        ("6238", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000238"),
+        ("6239", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000239"),
+        ("6240", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000240"),
+        ("6241", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000241"),
+        ("6242", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000242"),
+        ("6243", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000243"),
+        ("6244", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000244"),
+        ("6245", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000245"),
+        ("6246", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000246"),
+        ("6247", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000247"),
+        ("6248", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000248"),
+        ("6249", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000249"),
+        ("6250", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000250"),
+        ("6251", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000251"),
+        ("6252", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000252"),
+        ("6253", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000253"),
+        ("6254", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000254"),
+        ("6255", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000255"),
+        ("6256", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000256"),
+        ("6257", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000257"),
+        ("6258", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000258"),
+        ("6259", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000259"),
+        ("6260", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000260"),
+        ("6261", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000261"),
+        ("6262", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000262"),
+        ("6263", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000263"),
+        ("6264", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000264"),
+        ("6265", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000265"),
+        ("6266", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000266"),
+        ("6267", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000267"),
+        ("6268", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000268"),
+        ("6269", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000269"),
+        ("6270", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000270"),
+        ("6271", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000271"),
+        ("6272", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000272"),
+        ("6273", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000273"),
+        ("6274", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000274"),
+        ("6275", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000275"),
+        ("6276", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000276"),
+        ("6277", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000277"),
+        ("6278", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000278"),
+        ("6279", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000279"),
+        ("6280", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000280"),
+        ("6281", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000281"),
+        ("6282", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000282"),
+        ("6283", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000283"),
+        ("6284", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000284"),
+        ("6285", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000285"),
+        ("6286", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000286"),
+        ("6287", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000287"),
+        ("6288", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000288"),
+        ("6289", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000289"),
+        ("6290", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000290"),
+        ("6291", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000291"),
+        ("6292", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000292"),
+        ("6293", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000293"),
+        ("6294", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000294"),
+        ("6295", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000295"),
+        ("6296", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000296"),
+        ("6297", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000297"),
+        ("6298", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000298"),
+        ("6299", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000299"),
+        ("6300", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000300"),
+        ("6301", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000301"),
+        ("6302", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000302"),
+        ("6303", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000303"),
+        ("6304", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000304"),
+        ("6305", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000305"),
+        ("6306", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000306"),
+        ("6307", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000307"),
+        ("6308", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000308"),
+        ("6309", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000309"),
+        ("6310", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000310"),
+        ("6311", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000311"),
+        ("6312", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000312"),
+        ("6313", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000313"),
+        ("6314", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000314"),
+        ("6315", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000315"),
+        ("6316", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000316"),
+        ("6317", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000317"),
+        ("6318", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000318"),
+        ("6319", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000319"),
+        ("6320", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000320"),
+        ("6321", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000321"),
+        ("6322", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000322"),
+        ("6323", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000323"),
+        ("6324", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000324"),
+        ("6325", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000325"),
+        ("6326", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000326"),
+        ("6327", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000327"),
+        ("6328", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000328"),
+        ("6329", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000329"),
+        ("6330", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000330"),
+        ("6331", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000331"),
+        ("6332", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000332"),
+        ("6333", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000333"),
+        ("6334", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000334"),
+        ("6335", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000335"),
+        ("6336", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000336"),
+        ("6337", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000337"),
+        ("6338", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000338"),
+        ("6339", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000339"),
+        ("6340", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000340"),
+        ("6341", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000341"),
+        ("6342", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000342"),
+        ("6343", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000343"),
+        ("6344", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000344"),
+        ("6345", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000345"),
+        ("6346", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000346"),
+        ("6347", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000347"),
+        ("6348", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000348"),
+        ("6349", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000349"),
+        ("6350", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000350"),
+        ("6351", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000351"),
+        ("6352", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000352"),
+        ("6353", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000353"),
+        ("6354", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000354"),
+        ("6355", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000355"),
+        ("6356", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000356"),
+        ("6357", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000357"),
+        ("6358", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000358"),
+        ("6359", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000359"),
+        ("6360", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000360"),
+        ("6361", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000361"),
+        ("6362", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000362"),
+        ("6363", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000363"),
+        ("6364", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000364"),
+        ("6365", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000365"),
+        ("6366", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000366"),
+        ("6367", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000367"),
+        ("6368", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000368"),
+        ("6369", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000369"),
+        ("6370", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000370"),
+        ("6371", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000371"),
+        ("6372", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000372"),
+        ("6373", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000373"),
+        ("6374", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000374"),
+        ("6375", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000375"),
+        ("6376", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000376"),
+        ("6377", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000377"),
+        ("6378", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000378"),
+        ("6379", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000379"),
+        ("6380", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000380"),
+        ("6381", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000381"),
+        ("6382", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000382"),
+        ("6383", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000383"),
+        ("6384", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000384"),
+        ("6385", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000385"),
+        ("6386", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000386"),
+        ("6387", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000387"),
+        ("6388", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000388"),
+        ("6389", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000389"),
+        ("6390", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000390"),
+        ("6391", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000391"),
+        ("6392", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000392"),
+        ("6393", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000393"),
+        ("6394", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000394"),
+        ("6395", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000395"),
+        ("6396", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000396"),
+        ("6397", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000397"),
+        ("6398", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000398"),
+        ("6399", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000399"),
+        ("6400", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000400"),
+        ("6401", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000401"),
+        ("6402", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000402"),
+        ("6403", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000403"),
+        ("6404", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000404"),
+        ("6405", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000405"),
+        ("6406", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000406"),
+        ("6407", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000407"),
+        ("6408", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000408"),
+        ("6409", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000409"),
+        ("6410", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000410"),
+        ("6411", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000411"),
+        ("6412", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000412"),
+        ("6413", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000413"),
+        ("6414", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000414"),
+        ("6415", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000415"),
+        ("6416", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000416"),
+        ("6417", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000417"),
+        ("6418", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000418"),
+        ("6419", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000419"),
+        ("6420", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000420"),
+        ("6421", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000421"),
+        ("6422", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000422"),
+        ("6423", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000423"),
+        ("6424", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000424"),
+        ("6425", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000425"),
+        ("6426", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000426"),
+        ("6427", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000427"),
+        ("6428", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000428"),
+        ("6429", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000429"),
+        ("6430", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000430"),
+        ("6431", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000431"),
+        ("6432", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000432"),
+        ("6433", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000433"),
+        ("6434", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000434"),
+        ("6435", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000435"),
+        ("6436", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000436"),
+        ("6437", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000437"),
+        ("6438", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000438"),
+        ("6439", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000439"),
+        ("6440", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000440"),
+        ("6441", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000441"),
+        ("6442", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000442"),
+        ("6443", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000443"),
+        ("6444", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000444"),
+        ("6445", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000445"),
+        ("6446", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000446"),
+        ("6447", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000447"),
+        ("6448", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000448"),
+        ("6449", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000449"),
+        ("6450", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000450"),
+        ("6451", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000451"),
+        ("6452", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000452"),
+        ("6453", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000453"),
+        ("6454", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000454"),
+        ("6455", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000455"),
+        ("6456", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000456"),
+        ("6457", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000457"),
+        ("6458", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000458"),
+        ("6459", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000459"),
+        ("6460", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000460"),
+        ("6461", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000461"),
+        ("6462", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000462"),
+        ("6463", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000463"),
+        ("6464", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000464"),
+        ("6465", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000465"),
+        ("6466", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000466"),
+        ("6467", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000467"),
+        ("6468", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000468"),
+        ("6469", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000469"),
+        ("6470", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000470"),
+        ("6471", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000471"),
+        ("6472", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000472"),
+        ("6473", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000473"),
+        ("6474", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000474"),
+        ("6475", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000475"),
+        ("6476", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000476"),
+        ("6477", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000477"),
+        ("6478", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000478"),
+        ("6479", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000479"),
+        ("6480", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000480"),
+        ("6481", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000481"),
+        ("6482", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000482"),
+        ("6483", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000483"),
+        ("6484", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000484"),
+        ("6485", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000485"),
+        ("6486", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000486"),
+        ("6487", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000487"),
+        ("6488", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000488"),
+        ("6489", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000489"),
+        ("6490", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000490"),
+        ("6491", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000491"),
+        ("6492", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000492"),
+        ("6493", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000493"),
+        ("6494", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000494"),
+        ("6495", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000495"),
+        ("6496", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000496"),
+        ("6497", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000497"),
+        ("6498", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000498"),
+        ("6499", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000499"),
+        ("6500", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000500"),
+        ("6501", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000501"),
+        ("6502", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000502"),
+        ("6503", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000503"),
+        ("6504", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000504"),
+        ("6505", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000505"),
+        ("6506", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000506"),
+        ("6507", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000507"),
+        ("6508", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000508"),
+        ("6509", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000509"),
+        ("6510", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000510"),
+        ("6511", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000511"),
+        ("6512", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000512"),
+        ("6513", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000513"),
+        ("6514", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000514"),
+        ("6515", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000515"),
+        ("6516", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000516"),
+        ("6517", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000517"),
+        ("6518", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000518"),
+        ("6519", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000519"),
+        ("6520", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000520"),
+        ("6521", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000521"),
+        ("6522", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000522"),
+        ("6523", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000523"),
+        ("6524", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000524"),
+        ("6525", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000525"),
+        ("6526", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000526"),
+        ("6527", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000527"),
+        ("6528", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000528"),
+        ("6529", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000529"),
+        ("6530", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000530"),
+        ("6531", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000531"),
+        ("6532", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000532"),
+        ("6533", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000533"),
+        ("6534", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000534"),
+        ("6535", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000535"),
+        ("6536", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000536"),
+        ("6537", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000537"),
+        ("6538", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000538"),
+        ("6539", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000539"),
+        ("6540", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000540"),
+        ("6541", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000541"),
+        ("6542", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000542"),
+        ("6543", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000543"),
+        ("6544", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000544"),
+        ("6545", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000545"),
+        ("6546", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000546"),
+        ("6547", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000547"),
+        ("6548", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000548"),
+        ("6549", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000549"),
+        ("6550", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000550"),
+        ("6551", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000551"),
+        ("6552", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000552"),
+        ("6553", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000553"),
+        ("6554", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000554"),
+        ("6555", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000555"),
+        ("6556", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000556"),
+        ("6557", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000557"),
+        ("6558", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000558"),
+        ("6559", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000559"),
+        ("6560", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000560"),
+        ("6561", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000561"),
+        ("6562", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000562"),
+        ("6563", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000563"),
+        ("6564", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000564"),
+        ("6565", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000565"),
+        ("6566", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000566"),
+        ("6567", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000567"),
+        ("6568", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000568"),
+        ("6569", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000569"),
+        ("6570", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000570"),
+        ("6571", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000571"),
+        ("6572", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000572"),
+        ("6573", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000573"),
+        ("6574", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000574"),
+        ("6575", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000575"),
+        ("6576", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000576"),
+        ("6577", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000577"),
+        ("6578", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000578"),
+        ("6579", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000579"),
+        ("6580", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000580"),
+        ("6581", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000581"),
+        ("6582", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000582"),
+        ("6583", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000583"),
+        ("6584", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000584"),
+        ("6585", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000585"),
+        ("6586", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000586"),
+        ("6587", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000587"),
+        ("6588", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000588"),
+        ("6589", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000589"),
+        ("6590", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000590"),
+        ("6591", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000591"),
+        ("6592", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000592"),
+        ("6593", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000593"),
+        ("6594", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000594"),
+        ("6595", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000595"),
+        ("6596", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000596"),
+        ("6597", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000597"),
+        ("6598", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000598"),
+        ("6599", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000599"),
+        ("6600", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000600"),
+        ("6601", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000601"),
+        ("6602", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000602"),
+        ("6603", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000603"),
+        ("6604", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000604"),
+        ("6605", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000605"),
+        ("6606", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000606"),
+        ("6607", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000607"),
+        ("6608", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000608"),
+        ("6609", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000609"),
+        ("6610", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000610"),
+        ("6611", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000611"),
+        ("6612", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000612"),
+        ("6613", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000613"),
+        ("6614", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000614"),
+        ("6615", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000615"),
+        ("6616", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000616"),
+        ("6617", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000617"),
+        ("6618", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000618"),
+        ("6619", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000619"),
+        ("6620", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000620"),
+        ("6621", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000621"),
+        ("6622", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000622"),
+        ("6623", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000623"),
+        ("6624", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000624"),
+        ("6625", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000625"),
+        ("6626", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000626"),
+        ("6627", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000627"),
+        ("6628", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000628"),
+        ("6629", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000629"),
+        ("6630", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000630"),
+        ("6631", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000631"),
+        ("6632", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000632"),
+        ("6633", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000633"),
+        ("6634", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000634"),
+        ("6635", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000635"),
+        ("6636", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000636"),
+        ("6637", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000637"),
+        ("6638", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000638"),
+        ("6639", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000639"),
+        ("6640", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000640"),
+        ("6641", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000641"),
+        ("6642", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000642"),
+        ("6643", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000643"),
+        ("6644", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000644"),
+        ("6645", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000645"),
+        ("6646", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000646"),
+        ("6647", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000647"),
+        ("6648", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000648"),
+        ("6649", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000649"),
+        ("6650", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000650"),
+        ("6651", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000651"),
+        ("6652", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000652"),
+        ("6653", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000653"),
+        ("6654", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000654"),
+        ("6655", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000655"),
+        ("6656", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000656"),
+        ("6657", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000657"),
+        ("6658", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000658"),
+        ("6659", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000659"),
+        ("6660", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000660"),
+        ("6661", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000661"),
+        ("6662", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000662"),
+        ("6663", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000663"),
+        ("6664", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000664"),
+        ("6665", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000665"),
+        ("6666", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000666"),
+        ("6667", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000667"),
+        ("6668", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000668"),
+        ("6669", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000669"),
+        ("6670", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000670"),
+        ("6671", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000671"),
+        ("6672", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000672"),
+        ("6673", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000673"),
+        ("6674", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000674"),
+        ("6675", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000675"),
+        ("6676", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000676"),
+        ("6677", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000677"),
+        ("6678", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000678"),
+        ("6679", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000679"),
+        ("6680", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000680"),
+        ("6681", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000681"),
+        ("6682", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000682"),
+        ("6683", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000683"),
+        ("6684", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000684"),
+        ("6685", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000685"),
+        ("6686", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000686"),
+        ("6687", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000687"),
+        ("6688", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000688"),
+        ("6689", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000689"),
+        ("6690", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000690"),
+        ("6691", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000691"),
+        ("6692", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000692"),
+        ("6693", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000693"),
+        ("6694", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000694"),
+        ("6695", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000695"),
+        ("6696", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000696"),
+        ("6697", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000697"),
+        ("6698", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000698"),
+        ("6699", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000699"),
+        ("6700", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000700"),
+        ("6701", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000701"),
+        ("6702", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000702"),
+        ("6703", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000703"),
+        ("6704", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000704"),
+        ("6705", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000705"),
+        ("6706", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000706"),
+        ("6707", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000707"),
+        ("6708", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000708"),
+        ("6709", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000709"),
+        ("6710", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000710"),
+        ("6711", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000711"),
+        ("6712", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000712"),
+        ("6713", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000713"),
+        ("6714", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000714"),
+        ("6715", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000715"),
+        ("6716", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000716"),
+        ("6717", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000717"),
+        ("6718", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000718"),
+        ("6719", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000719"),
+        ("6720", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000720"),
+        ("6721", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000721"),
+        ("6722", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000722"),
+        ("6723", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000723"),
+        ("6724", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000724"),
+        ("6725", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000725"),
+        ("6726", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000726"),
+        ("6727", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000727"),
+        ("6728", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000728"),
+        ("6729", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000729"),
+        ("6730", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000730"),
+        ("6731", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000731"),
+        ("6732", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000732"),
+        ("6733", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000733"),
+        ("6734", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000734"),
+        ("6735", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000735"),
+        ("6736", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000736"),
+        ("6737", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000737"),
+        ("6738", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000738"),
+        ("6739", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000739"),
+        ("6740", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000740"),
+        ("6741", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000741"),
+        ("6742", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000742"),
+        ("6743", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000743"),
+        ("6744", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000744"),
+        ("6745", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000745"),
+        ("6746", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000746"),
+        ("6747", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000747"),
+        ("6748", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000748"),
+        ("6749", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000749"),
+        ("6750", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000750"),
+        ("6751", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000751"),
+        ("6752", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000752"),
+        ("6753", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000753"),
+        ("6754", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000754"),
+        ("6755", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000755"),
+        ("6756", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000756"),
+        ("6757", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000757"),
+        ("6758", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000758"),
+        ("6759", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000759"),
+        ("6760", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000760"),
+        ("6761", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000761"),
+        ("6762", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000762"),
+        ("6763", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000763"),
+        ("6764", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000764"),
+        ("6765", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000765"),
+        ("6766", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000766"),
+        ("6767", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000767"),
+        ("6768", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000768"),
+        ("6769", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000769"),
+        ("6770", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000770"),
+        ("6771", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000771"),
+        ("6772", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000772"),
+        ("6773", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000773"),
+        ("6774", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000774"),
+        ("6775", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000775"),
+        ("6776", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000776"),
+        ("6777", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000777"),
+        ("6778", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000778"),
+        ("6779", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000779"),
+        ("6780", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000780"),
+        ("6781", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000781"),
+        ("6782", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000782"),
+        ("6783", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000783"),
+        ("6784", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000784"),
+        ("6785", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000785"),
+        ("6786", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000786"),
+        ("6787", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000787"),
+        ("6788", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000788"),
+        ("6789", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000789"),
+        ("6790", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000790"),
+        ("6791", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000791"),
+        ("6792", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000792"),
+        ("6793", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000793"),
+        ("6794", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000794"),
+        ("6795", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000795"),
+        ("6796", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000796"),
+        ("6797", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000797"),
+        ("6798", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000798"),
+        ("6799", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000799"),
+        ("6800", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_DESKTOP"),
+        ("6801", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_INTERNET"),
+        ("6802", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_PROGRAMS"),
+        ("6803", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_CONTROLS"),
+        ("6804", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_PRINTERS"),
+        ("6805", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_MYDOCUMENTS"),
+        ("6806", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_FAVORITES"),
+        ("6807", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_STARTUP"),
+        ("6808", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_RECENT"),
+        ("6809", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_SENDTO"),
+        ("6810", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_DESKTOPDIRECTORY"),
+        ("6811", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_DRIVES"),
+        ("6812", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_NETWORK"),
+        ("6813", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_NETHOOD"),
+        ("6814", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_FONTS"),
+        ("6815", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_TEMPLATES"),
+        ("6816", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_STARTMENU"),
+        ("6817", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_PROGRAMS"),
+        ("6818", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_STARTUP"),
+        ("6819", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_DESKTOPDIRECTORY"),
+        ("6820", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_INTERNET_CACHE"),
+        ("6821", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_COOKIES"),
+        ("6822", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_HISTORY"),
+        ("6823", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_APPDATA"),
+        ("6824", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_WINDOWS"),
+        ("6825", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_SYSTEM"),
+        ("6826", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_PROGRAM_FILES"),
+        ("6827", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_MYPICTURES"),
+        ("6828", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_PROFILE"),
+        ("6829", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_SYSTEMX86"),
+        ("6830", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_ADMINTOOLS"),
+        ("6831", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_CONNECTIONS"),
+        ("6832", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000032"),
+        ("6833", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000033"),
+        ("6834", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000034"),
+        ("6835", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_MUSIC"),
+        ("6836", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_PICTURES"),
+        ("6837", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_VIDEO"),
+        ("6838", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_RESOURCES"),
+        ("6839", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_RESOURCES_LOCALIZED"),
+        ("6840", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000040"),
+        ("6841", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000041"),
+        ("6842", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000042"),
+        ("6843", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000043"),
+        ("6844", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000044"),
+        ("6845", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000045"),
+        ("6846", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000046"),
+        ("6847", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000047"),
+        ("6848", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000048"),
+        ("6849", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000049"),
+        ("6850", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000050"),
+        ("6851", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000051"),
+        ("6852", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000052"),
+        ("6853", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000053"),
+        ("6854", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000054"),
+        ("6855", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000055"),
+        ("6856", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000056"),
+        ("6857", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000057"),
+        ("6858", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000058"),
+        ("6859", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000059"),
+        ("6860", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000060"),
+        ("6861", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000061"),
+        ("6862", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000062"),
+        ("6863", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000063"),
+        ("6864", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000064"),
+        ("6865", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000065"),
+        ("6866", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000066"),
+        ("6867", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000067"),
+        ("6868", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000068"),
+        ("6869", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000069"),
+        ("6870", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000070"),
+        ("6871", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000071"),
+        ("6872", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000072"),
+        ("6873", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000073"),
+        ("6874", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000074"),
+        ("6875", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000075"),
+        ("6876", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000076"),
+        ("6877", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000077"),
+        ("6878", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000078"),
+        ("6879", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000079"),
+        ("6880", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000080"),
+        ("6881", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000081"),
+        ("6882", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000082"),
+        ("6883", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000083"),
+        ("6884", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000084"),
+        ("6885", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000085"),
+        ("6886", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000086"),
+        ("6887", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000087"),
+        ("6888", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000088"),
+        ("6889", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000089"),
+        ("6890", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000090"),
+        ("6891", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000091"),
+        ("6892", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000092"),
+        ("6893", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000093"),
+        ("6894", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000094"),
+        ("6895", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000095"),
+        ("6896", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000096"),
+        ("6897", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000097"),
+        ("6898", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000098"),
+        ("6899", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000099"),
+        ("6900", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000100"),
+        ("6901", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000101"),
+        ("6902", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000102"),
+        ("6903", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000103"),
+        ("6904", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000104"),
+        ("6905", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000105"),
+        ("6906", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000106"),
+        ("6907", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000107"),
+        ("6908", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000108"),
+        ("6909", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000109"),
+        ("6910", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000110"),
+        ("6911", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000111"),
+        ("6912", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000112"),
+        ("6913", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000113"),
+        ("6914", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000114"),
+        ("6915", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000115"),
+        ("6916", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000116"),
+        ("6917", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000117"),
+        ("6918", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000118"),
+        ("6919", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000119"),
+        ("6920", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000120"),
+        ("6921", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000121"),
+        ("6922", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000122"),
+        ("6923", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000123"),
+        ("6924", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000124"),
+        ("6925", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000125"),
+        ("6926", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000126"),
+        ("6927", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000127"),
+        ("6928", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000128"),
+        ("6929", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000129"),
+        ("6930", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000130"),
+        ("6931", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000131"),
+        ("6932", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000132"),
+        ("6933", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000133"),
+        ("6934", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000134"),
+        ("6935", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000135"),
+        ("6936", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000136"),
+        ("6937", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000137"),
+        ("6938", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000138"),
+        ("6939", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000139"),
+        ("6940", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000140"),
+        ("6941", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000141"),
+        ("6942", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000142"),
+        ("6943", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000143"),
+        ("6944", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000144"),
+        ("6945", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000145"),
+        ("6946", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000146"),
+        ("6947", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000147"),
+        ("6948", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000148"),
+        ("6949", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000149"),
+        ("6950", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000150"),
+        ("6951", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000151"),
+        ("6952", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000152"),
+        ("6953", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000153"),
+        ("6954", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000154"),
+        ("6955", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000155"),
+        ("6956", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000156"),
+        ("6957", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000157"),
+        ("6958", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000158"),
+        ("6959", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000159"),
+        ("6960", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000160"),
+        ("6961", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000161"),
+        ("6962", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000162"),
+        ("6963", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000163"),
+        ("6964", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000164"),
+        ("6965", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000165"),
+        ("6966", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000166"),
+        ("6967", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000167"),
+        ("6968", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000168"),
+        ("6969", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000169"),
+        ("6970", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000170"),
+        ("6971", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000171"),
+        ("6972", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000172"),
+        ("6973", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000173"),
+        ("6974", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000174"),
+        ("6975", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000175"),
+        ("6976", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000176"),
+        ("6977", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000177"),
+        ("6978", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000178"),
+        ("6979", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000179"),
+        ("6980", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000180"),
+        ("6981", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000181"),
+        ("6982", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000182"),
+        ("6983", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000183"),
+        ("6984", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000184"),
+        ("6985", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000185"),
+        ("6986", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000186"),
+        ("6987", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000187"),
+        ("6988", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000188"),
+        ("6989", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000189"),
+        ("6990", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000190"),
+        ("6991", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000191"),
+        ("6992", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000192"),
+        ("6993", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000193"),
+        ("6994", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000194"),
+        ("6995", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000195"),
+        ("6996", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000196"),
+        ("6997", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000197"),
+        ("6998", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000198"),
+        ("6999", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000199"),
+        ("7000", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_DESKTOP"),
+        ("7001", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_INTERNET"),
+        ("7002", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_PROGRAMS"),
+        ("7003", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_CONTROLS"),
+        ("7004", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_PRINTERS"),
+        ("7005", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_MYDOCUMENTS"),
+        ("7006", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_FAVORITES"),
+        ("7007", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_STARTUP"),
+        ("7008", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_RECENT"),
+        ("7009", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_SENDTO"),
+        ("7010", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_DESKTOPDIRECTORY"),
+        ("7011", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_DRIVES"),
+        ("7012", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_NETWORK"),
+        ("7013", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_NETHOOD"),
+        ("7014", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_FONTS"),
+        ("7015", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_TEMPLATES"),
+        ("7016", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_STARTMENU"),
+        ("7017", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_PROGRAMS"),
+        ("7018", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_STARTUP"),
+        ("7019", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_DESKTOPDIRECTORY"),
+        ("7020", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_INTERNET_CACHE"),
+        ("7021", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_COOKIES"),
+        ("7022", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_HISTORY"),
+        ("7023", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_APPDATA"),
+        ("7024", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_WINDOWS"),
+        ("7025", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_SYSTEM"),
+        ("7026", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_PROGRAM_FILES"),
+        ("7027", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_MYPICTURES"),
+        ("7028", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_PROFILE"),
+        ("7029", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_SYSTEMX86"),
+        ("7030", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_ADMINTOOLS"),
+        ("7031", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_CONNECTIONS"),
+        ("7032", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000032"),
+        ("7033", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000033"),
+        ("7034", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000034"),
+        ("7035", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_MUSIC"),
+        ("7036", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_PICTURES"),
+        ("7037", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_VIDEO"),
+        ("7038", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_RESOURCES"),
+        ("7039", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_RESOURCES_LOCALIZED"),
+        ("7040", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000040"),
+        ("7041", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000041"),
+        ("7042", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000042"),
+        ("7043", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000043"),
+        ("7044", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000044"),
+        ("7045", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000045"),
+        ("7046", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000046"),
+        ("7047", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000047"),
+        ("7048", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000048"),
+        ("7049", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000049"),
+        ("7050", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000050"),
+        ("7051", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000051"),
+        ("7052", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000052"),
+        ("7053", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000053"),
+        ("7054", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000054"),
+        ("7055", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000055"),
+        ("7056", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000056"),
+        ("7057", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000057"),
+        ("7058", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000058"),
+        ("7059", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000059"),
+        ("7060", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000060"),
+        ("7061", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000061"),
+        ("7062", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000062"),
+        ("7063", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000063"),
+        ("7064", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000064"),
+        ("7065", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000065"),
+        ("7066", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000066"),
+        ("7067", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000067"),
+        ("7068", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000068"),
+        ("7069", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000069"),
+        ("7070", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000070"),
+        ("7071", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000071"),
+        ("7072", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000072"),
+        ("7073", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000073"),
+        ("7074", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000074"),
+        ("7075", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000075"),
+        ("7076", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000076"),
+        ("7077", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000077"),
+        ("7078", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000078"),
+        ("7079", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000079"),
+        ("7080", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000080"),
+        ("7081", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000081"),
+        ("7082", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000082"),
+        ("7083", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000083"),
+        ("7084", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000084"),
+        ("7085", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000085"),
+        ("7086", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000086"),
+        ("7087", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000087"),
+        ("7088", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000088"),
+        ("7089", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000089"),
+        ("7090", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000090"),
+        ("7091", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000091"),
+        ("7092", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000092"),
+        ("7093", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000093"),
+        ("7094", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000094"),
+        ("7095", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000095"),
+        ("7096", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000096"),
+        ("7097", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000097"),
+        ("7098", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000098"),
+        ("7099", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000099"),
+        ("7100", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000100"),
+        ("7101", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000101"),
+        ("7102", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000102"),
+        ("7103", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000103"),
+        ("7104", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000104"),
+        ("7105", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000105"),
+        ("7106", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000106"),
+        ("7107", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000107"),
+        ("7108", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000108"),
+        ("7109", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000109"),
+        ("7110", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000110"),
+        ("7111", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000111"),
+        ("7112", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000112"),
+        ("7113", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000113"),
+        ("7114", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000114"),
+        ("7115", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000115"),
+        ("7116", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000116"),
+        ("7117", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000117"),
+        ("7118", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000118"),
+        ("7119", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000119"),
+        ("7120", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000120"),
+        ("7121", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000121"),
+        ("7122", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000122"),
+        ("7123", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000123"),
+        ("7124", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000124"),
+        ("7125", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000125"),
+        ("7126", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000126"),
+        ("7127", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000127"),
+        ("7128", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000128"),
+        ("7129", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000129"),
+        ("7130", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000130"),
+        ("7131", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000131"),
+        ("7132", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000132"),
+        ("7133", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000133"),
+        ("7134", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000134"),
+        ("7135", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000135"),
+        ("7136", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000136"),
+        ("7137", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000137"),
+        ("7138", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000138"),
+        ("7139", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000139"),
+        ("7140", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000140"),
+        ("7141", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000141"),
+        ("7142", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000142"),
+        ("7143", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000143"),
+        ("7144", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000144"),
+        ("7145", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000145"),
+        ("7146", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000146"),
+        ("7147", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000147"),
+        ("7148", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000148"),
+        ("7149", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000149"),
+        ("7150", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000150"),
+        ("7151", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000151"),
+        ("7152", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000152"),
+        ("7153", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000153"),
+        ("7154", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000154"),
+        ("7155", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000155"),
+        ("7156", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000156"),
+        ("7157", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000157"),
+        ("7158", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000158"),
+        ("7159", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000159"),
+        ("7160", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000160"),
+        ("7161", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000161"),
+        ("7162", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000162"),
+        ("7163", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000163"),
+        ("7164", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000164"),
+        ("7165", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000165"),
+        ("7166", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000166"),
+        ("7167", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000167"),
+        ("7168", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000168"),
+        ("7169", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000169"),
+        ("7170", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000170"),
+        ("7171", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000171"),
+        ("7172", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000172"),
+        ("7173", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000173"),
+        ("7174", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000174"),
+        ("7175", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000175"),
+        ("7176", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000176"),
+        ("7177", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000177"),
+        ("7178", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000178"),
+        ("7179", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000179"),
+        ("7180", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000180"),
+        ("7181", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000181"),
+        ("7182", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000182"),
+        ("7183", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000183"),
+        ("7184", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000184"),
+        ("7185", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000185"),
+        ("7186", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000186"),
+        ("7187", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000187"),
+        ("7188", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000188"),
+        ("7189", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000189"),
+        ("7190", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000190"),
+        ("7191", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000191"),
+        ("7192", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000192"),
+        ("7193", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000193"),
+        ("7194", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000194"),
+        ("7195", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000195"),
+        ("7196", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000196"),
+        ("7197", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000197"),
+        ("7198", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000198"),
+        ("7199", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000199"),
+        ("7200", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000200"),
+        ("7201", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000201"),
+        ("7202", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000202"),
+        ("7203", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000203"),
+        ("7204", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000204"),
+        ("7205", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000205"),
+        ("7206", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000206"),
+        ("7207", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000207"),
+        ("7208", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000208"),
+        ("7209", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000209"),
+        ("7210", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000210"),
+        ("7211", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000211"),
+        ("7212", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000212"),
+        ("7213", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000213"),
+        ("7214", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000214"),
+        ("7215", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000215"),
+        ("7216", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000216"),
+        ("7217", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000217"),
+        ("7218", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000218"),
+        ("7219", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000219"),
+        ("7220", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000220"),
+        ("7221", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000221"),
+        ("7222", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000222"),
+        ("7223", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000223"),
+        ("7224", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000224"),
+        ("7225", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000225"),
+        ("7226", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000226"),
+        ("7227", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000227"),
+        ("7228", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000228"),
+        ("7229", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000229"),
+        ("7230", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000230"),
+        ("7231", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000231"),
+        ("7232", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000232"),
+        ("7233", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000233"),
+        ("7234", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000234"),
+        ("7235", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000235"),
+        ("7236", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000236"),
+        ("7237", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000237"),
+        ("7238", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000238"),
+        ("7239", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000239"),
+        ("7240", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000240"),
+        ("7241", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000241"),
+        ("7242", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000242"),
+        ("7243", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000243"),
+        ("7244", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000244"),
+        ("7245", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000245"),
+        ("7246", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000246"),
+        ("7247", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000247"),
+        ("7248", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000248"),
+        ("7249", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000249"),
+        ("7250", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000250"),
+        ("7251", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000251"),
+        ("7252", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000252"),
+        ("7253", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000253"),
+        ("7254", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000254"),
+        ("7255", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000255"),
+        ("7256", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000256"),
+        ("7257", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000257"),
+        ("7258", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000258"),
+        ("7259", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000259"),
+        ("7260", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000260"),
+        ("7261", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000261"),
+        ("7262", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000262"),
+        ("7263", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000263"),
+        ("7264", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000264"),
+        ("7265", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000265"),
+        ("7266", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000266"),
+        ("7267", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000267"),
+        ("7268", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000268"),
+        ("7269", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000269"),
+        ("7270", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000270"),
+        ("7271", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000271"),
+        ("7272", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000272"),
+        ("7273", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000273"),
+        ("7274", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000274"),
+        ("7275", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000275"),
+        ("7276", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000276"),
+        ("7277", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000277"),
+        ("7278", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000278"),
+        ("7279", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000279"),
+        ("7280", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000280"),
+        ("7281", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000281"),
+        ("7282", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000282"),
+        ("7283", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000283"),
+        ("7284", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000284"),
+        ("7285", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000285"),
+        ("7286", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000286"),
+        ("7287", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000287"),
+        ("7288", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000288"),
+        ("7289", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000289"),
+        ("7290", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000290"),
+        ("7291", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000291"),
+        ("7292", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000292"),
+        ("7293", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000293"),
+        ("7294", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000294"),
+        ("7295", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000295"),
+        ("7296", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000296"),
+        ("7297", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000297"),
+        ("7298", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000298"),
+        ("7299", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000299"),
+        ("7300", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000300"),
+        ("7301", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000301"),
+        ("7302", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000302"),
+        ("7303", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000303"),
+        ("7304", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000304"),
+        ("7305", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000305"),
+        ("7306", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000306"),
+        ("7307", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000307"),
+        ("7308", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000308"),
+        ("7309", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000309"),
+        ("7310", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000310"),
+        ("7311", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000311"),
+        ("7312", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000312"),
+        ("7313", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000313"),
+        ("7314", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000314"),
+        ("7315", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000315"),
+        ("7316", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000316"),
+        ("7317", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000317"),
+        ("7318", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000318"),
+        ("7319", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000319"),
+        ("7320", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000320"),
+        ("7321", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000321"),
+        ("7322", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000322"),
+        ("7323", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000323"),
+        ("7324", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000324"),
+        ("7325", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000325"),
+        ("7326", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000326"),
+        ("7327", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000327"),
+        ("7328", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000328"),
+        ("7329", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000329"),
+        ("7330", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000330"),
+        ("7331", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000331"),
+        ("7332", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000332"),
+        ("7333", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000333"),
+        ("7334", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000334"),
+        ("7335", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000335"),
+        ("7336", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000336"),
+        ("7337", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000337"),
+        ("7338", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000338"),
+        ("7339", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000339"),
+        ("7340", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000340"),
+        ("7341", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000341"),
+        ("7342", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000342"),
+        ("7343", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000343"),
+        ("7344", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000344"),
+        ("7345", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000345"),
+        ("7346", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000346"),
+        ("7347", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000347"),
+        ("7348", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000348"),
+        ("7349", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000349"),
+        ("7350", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000350"),
+        ("7351", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000351"),
+        ("7352", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000352"),
+        ("7353", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000353"),
+        ("7354", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000354"),
+        ("7355", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000355"),
+        ("7356", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000356"),
+        ("7357", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000357"),
+        ("7358", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000358"),
+        ("7359", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000359"),
+        ("7360", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000360"),
+        ("7361", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000361"),
+        ("7362", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000362"),
+        ("7363", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000363"),
+        ("7364", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000364"),
+        ("7365", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000365"),
+        ("7366", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000366"),
+        ("7367", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000367"),
+        ("7368", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000368"),
+        ("7369", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000369"),
+        ("7370", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000370"),
+        ("7371", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000371"),
+        ("7372", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000372"),
+        ("7373", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000373"),
+        ("7374", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000374"),
+        ("7375", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000375"),
+        ("7376", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000376"),
+        ("7377", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000377"),
+        ("7378", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000378"),
+        ("7379", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000379"),
+        ("7380", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000380"),
+        ("7381", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000381"),
+        ("7382", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000382"),
+        ("7383", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000383"),
+        ("7384", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000384"),
+        ("7385", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000385"),
+        ("7386", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000386"),
+        ("7387", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000387"),
+        ("7388", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000388"),
+        ("7389", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000389"),
+        ("7390", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000390"),
+        ("7391", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000391"),
+        ("7392", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000392"),
+        ("7393", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000393"),
+        ("7394", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000394"),
+        ("7395", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000395"),
+        ("7396", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000396"),
+        ("7397", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000397"),
+        ("7398", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000398"),
+        ("7399", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000399"),
+        ("7400", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000400"),
+        ("7401", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000401"),
+        ("7402", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000402"),
+        ("7403", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000403"),
+        ("7404", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000404"),
+        ("7405", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000405"),
+        ("7406", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000406"),
+        ("7407", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000407"),
+        ("7408", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000408"),
+        ("7409", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000409"),
+        ("7410", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000410"),
+        ("7411", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000411"),
+        ("7412", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000412"),
+        ("7413", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000413"),
+        ("7414", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000414"),
+        ("7415", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000415"),
+        ("7416", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000416"),
+        ("7417", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000417"),
+        ("7418", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000418"),
+        ("7419", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000419"),
+        ("7420", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000420"),
+        ("7421", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000421"),
+        ("7422", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000422"),
+        ("7423", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000423"),
+        ("7424", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000424"),
+        ("7425", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000425"),
+        ("7426", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000426"),
+        ("7427", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000427"),
+        ("7428", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000428"),
+        ("7429", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000429"),
+        ("7430", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000430"),
+        ("7431", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000431"),
+        ("7432", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000432"),
+        ("7433", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000433"),
+        ("7434", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000434"),
+        ("7435", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000435"),
+        ("7436", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000436"),
+        ("7437", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000437"),
+        ("7438", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000438"),
+        ("7439", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000439"),
+        ("7440", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000440"),
+        ("7441", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000441"),
+        ("7442", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000442"),
+        ("7443", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000443"),
+        ("7444", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000444"),
+        ("7445", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000445"),
+        ("7446", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000446"),
+        ("7447", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000447"),
+        ("7448", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000448"),
+        ("7449", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000449"),
+        ("7450", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000450"),
+        ("7451", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000451"),
+        ("7452", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000452"),
+        ("7453", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000453"),
+        ("7454", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000454"),
+        ("7455", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000455"),
+        ("7456", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000456"),
+        ("7457", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000457"),
+        ("7458", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000458"),
+        ("7459", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000459"),
+        ("7460", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000460"),
+        ("7461", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000461"),
+        ("7462", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000462"),
+        ("7463", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000463"),
+        ("7464", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000464"),
+        ("7465", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000465"),
+        ("7466", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000466"),
+        ("7467", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000467"),
+        ("7468", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000468"),
+        ("7469", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000469"),
+        ("7470", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000470"),
+        ("7471", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000471"),
+        ("7472", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000472"),
+        ("7473", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000473"),
+        ("7474", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000474"),
+        ("7475", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000475"),
+        ("7476", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000476"),
+        ("7477", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000477"),
+        ("7478", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000478"),
+        ("7479", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000479"),
+        ("7480", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000480"),
+        ("7481", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000481"),
+        ("7482", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000482"),
+        ("7483", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000483"),
+        ("7484", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000484"),
+        ("7485", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000485"),
+        ("7486", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000486"),
+        ("7487", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000487"),
+        ("7488", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000488"),
+        ("7489", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000489"),
+        ("7490", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000490"),
+        ("7491", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000491"),
+        ("7492", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000492"),
+        ("7493", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000493"),
+        ("7494", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000494"),
+        ("7495", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000495"),
+        ("7496", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000496"),
+        ("7497", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000497"),
+        ("7498", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000498"),
+        ("7499", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000499"),
+        ("7500", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000500"),
+        ("7501", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000501"),
+        ("7502", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000502"),
+        ("7503", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000503"),
+        ("7504", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000504"),
+        ("7505", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000505"),
+        ("7506", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000506"),
+        ("7507", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000507"),
+        ("7508", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000508"),
+        ("7509", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000509"),
+        ("7510", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000510"),
+        ("7511", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000511"),
+        ("7512", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000512"),
+        ("7513", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000513"),
+        ("7514", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000514"),
+        ("7515", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000515"),
+        ("7516", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000516"),
+        ("7517", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000517"),
+        ("7518", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000518"),
+        ("7519", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000519"),
+        ("7520", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000520"),
+        ("7521", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000521"),
+        ("7522", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000522"),
+        ("7523", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000523"),
+        ("7524", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000524"),
+        ("7525", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000525"),
+        ("7526", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000526"),
+        ("7527", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000527"),
+        ("7528", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000528"),
+        ("7529", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000529"),
+        ("7530", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000530"),
+        ("7531", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000531"),
+        ("7532", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000532"),
+        ("7533", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000533"),
+        ("7534", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000534"),
+        ("7535", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000535"),
+        ("7536", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000536"),
+        ("7537", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000537"),
+        ("7538", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000538"),
+        ("7539", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000539"),
+        ("7540", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000540"),
+        ("7541", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000541"),
+        ("7542", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000542"),
+        ("7543", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000543"),
+        ("7544", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000544"),
+        ("7545", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000545"),
+        ("7546", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000546"),
+        ("7547", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000547"),
+        ("7548", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000548"),
+        ("7549", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000549"),
+        ("7550", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000550"),
+        ("7551", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000551"),
+        ("7552", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000552"),
+        ("7553", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000553"),
+        ("7554", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000554"),
+        ("7555", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000555"),
+        ("7556", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000556"),
+        ("7557", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000557"),
+        ("7558", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000558"),
+        ("7559", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000559"),
+        ("7560", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000560"),
+        ("7561", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000561"),
+        ("7562", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000562"),
+        ("7563", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000563"),
+        ("7564", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000564"),
+        ("7565", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000565"),
+        ("7566", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000566"),
+        ("7567", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000567"),
+        ("7568", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000568"),
+        ("7569", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000569"),
+        ("7570", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000570"),
+        ("7571", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000571"),
+        ("7572", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000572"),
+        ("7573", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000573"),
+        ("7574", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000574"),
+        ("7575", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000575"),
+        ("7576", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000576"),
+        ("7577", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000577"),
+        ("7578", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000578"),
+        ("7579", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000579"),
+        ("7580", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000580"),
+        ("7581", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000581"),
+        ("7582", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000582"),
+        ("7583", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000583"),
+        ("7584", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000584"),
+        ("7585", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000585"),
+        ("7586", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000586"),
+        ("7587", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000587"),
+        ("7588", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000588"),
+        ("7589", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000589"),
+        ("7590", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000590"),
+        ("7591", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000591"),
+        ("7592", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000592"),
+        ("7593", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000593"),
+        ("7594", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000594"),
+        ("7595", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000595"),
+        ("7596", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000596"),
+        ("7597", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000597"),
+        ("7598", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000598"),
+        ("7599", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000599"),
+        ("7600", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000600"),
+        ("7601", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000601"),
+        ("7602", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000602"),
+        ("7603", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000603"),
+        ("7604", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000604"),
+        ("7605", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000605"),
+        ("7606", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000606"),
+        ("7607", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000607"),
+        ("7608", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000608"),
+        ("7609", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000609"),
+        ("7610", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000610"),
+        ("7611", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000611"),
+        ("7612", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000612"),
+        ("7613", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000613"),
+        ("7614", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000614"),
+        ("7615", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000615"),
+        ("7616", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000616"),
+        ("7617", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000617"),
+        ("7618", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000618"),
+        ("7619", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000619"),
+        ("7620", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000620"),
+        ("7621", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000621"),
+        ("7622", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000622"),
+        ("7623", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000623"),
+        ("7624", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000624"),
+        ("7625", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000625"),
+        ("7626", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000626"),
+        ("7627", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000627"),
+        ("7628", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000628"),
+        ("7629", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000629"),
+        ("7630", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000630"),
+        ("7631", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000631"),
+        ("7632", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000632"),
+        ("7633", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000633"),
+        ("7634", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000634"),
+        ("7635", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000635"),
+        ("7636", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000636"),
+        ("7637", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000637"),
+        ("7638", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000638"),
+        ("7639", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000639"),
+        ("7640", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000640"),
+        ("7641", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000641"),
+        ("7642", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000642"),
+        ("7643", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000643"),
+        ("7644", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000644"),
+        ("7645", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000645"),
+        ("7646", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000646"),
+        ("7647", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000647"),
+        ("7648", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000648"),
+        ("7649", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000649"),
+        ("7650", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000650"),
+        ("7651", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000651"),
+        ("7652", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000652"),
+        ("7653", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000653"),
+        ("7654", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000654"),
+        ("7655", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000655"),
+        ("7656", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000656"),
+        ("7657", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000657"),
+        ("7658", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000658"),
+        ("7659", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000659"),
+        ("7660", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000660"),
+        ("7661", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000661"),
+        ("7662", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000662"),
+        ("7663", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000663"),
+        ("7664", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000664"),
+        ("7665", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000665"),
+        ("7666", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000666"),
+        ("7667", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000667"),
+        ("7668", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000668"),
+        ("7669", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000669"),
+        ("7670", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000670"),
+        ("7671", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000671"),
+        ("7672", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000672"),
+        ("7673", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000673"),
+        ("7674", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000674"),
+        ("7675", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000675"),
+        ("7676", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000676"),
+        ("7677", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000677"),
+        ("7678", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000678"),
+        ("7679", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000679"),
+        ("7680", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000680"),
+        ("7681", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000681"),
+        ("7682", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000682"),
+        ("7683", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000683"),
+        ("7684", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000684"),
+        ("7685", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000685"),
+        ("7686", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000686"),
+        ("7687", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000687"),
+        ("7688", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000688"),
+        ("7689", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000689"),
+        ("7690", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000690"),
+        ("7691", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000691"),
+        ("7692", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000692"),
+        ("7693", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000693"),
+        ("7694", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000694"),
+        ("7695", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000695"),
+        ("7696", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000696"),
+        ("7697", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000697"),
+        ("7698", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000698"),
+        ("7699", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000699"),
+        ("7700", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000700"),
+        ("7701", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000701"),
+        ("7702", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000702"),
+        ("7703", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000703"),
+        ("7704", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000704"),
+        ("7705", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000705"),
+        ("7706", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000706"),
+        ("7707", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000707"),
+        ("7708", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000708"),
+        ("7709", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000709"),
+        ("7710", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000710"),
+        ("7711", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000711"),
+        ("7712", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000712"),
+        ("7713", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000713"),
+        ("7714", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000714"),
+        ("7715", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000715"),
+        ("7716", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000716"),
+        ("7717", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000717"),
+        ("7718", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000718"),
+        ("7719", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000719"),
+        ("7720", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000720"),
+        ("7721", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000721"),
+        ("7722", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000722"),
+        ("7723", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000723"),
+        ("7724", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000724"),
+        ("7725", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000725"),
+        ("7726", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000726"),
+        ("7727", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000727"),
+        ("7728", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000728"),
+        ("7729", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000729"),
+        ("7730", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000730"),
+        ("7731", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000731"),
+        ("7732", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000732"),
+        ("7733", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000733"),
+        ("7734", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000734"),
+        ("7735", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000735"),
+        ("7736", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000736"),
+        ("7737", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000737"),
+        ("7738", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000738"),
+        ("7739", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000739"),
+        ("7740", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000740"),
+        ("7741", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000741"),
+        ("7742", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000742"),
+        ("7743", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000743"),
+        ("7744", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000744"),
+        ("7745", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000745"),
+        ("7746", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000746"),
+        ("7747", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000747"),
+        ("7748", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000748"),
+        ("7749", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000749"),
+        ("7750", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000750"),
+        ("7751", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000751"),
+        ("7752", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000752"),
+        ("7753", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000753"),
+        ("7754", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000754"),
+        ("7755", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000755"),
+        ("7756", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000756"),
+        ("7757", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000757"),
+        ("7758", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000758"),
+        ("7759", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000759"),
+        ("7760", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000760"),
+        ("7761", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000761"),
+        ("7762", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000762"),
+        ("7763", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000763"),
+        ("7764", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000764"),
+        ("7765", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000765"),
+        ("7766", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000766"),
+        ("7767", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000767"),
+        ("7768", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000768"),
+        ("7769", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000769"),
+        ("7770", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000770"),
+        ("7771", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000771"),
+        ("7772", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000772"),
+        ("7773", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000773"),
+        ("7774", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000774"),
+        ("7775", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000775"),
+        ("7776", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000776"),
+        ("7777", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000777"),
+        ("7778", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000778"),
+        ("7779", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000779"),
+        ("7780", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000780"),
+        ("7781", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000781"),
+        ("7782", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000782"),
+        ("7783", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000783"),
+        ("7784", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000784"),
+        ("7785", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000785"),
+        ("7786", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000786"),
+        ("7787", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000787"),
+        ("7788", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000788"),
+        ("7789", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000789"),
+        ("7790", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000790"),
+        ("7791", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000791"),
+        ("7792", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000792"),
+        ("7793", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000793"),
+        ("7794", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000794"),
+        ("7795", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000795"),
+        ("7796", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000796"),
+        ("7797", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000797"),
+        ("7798", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000798"),
+        ("7799", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000799"),
+        ("7800", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_DESKTOP"),
+        ("7801", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_INTERNET"),
+        ("7802", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_PROGRAMS"),
+        ("7803", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_CONTROLS"),
+        ("7804", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_PRINTERS"),
+        ("7805", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_MYDOCUMENTS"),
+        ("7806", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_FAVORITES"),
+        ("7807", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_STARTUP"),
+        ("7808", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_RECENT"),
+        ("7809", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_SENDTO"),
+        ("7810", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_DESKTOPDIRECTORY"),
+        ("7811", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_DRIVES"),
+        ("7812", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_NETWORK"),
+        ("7813", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_NETHOOD"),
+        ("7814", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_FONTS"),
+        ("7815", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_TEMPLATES"),
+        ("7816", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_STARTMENU"),
+        ("7817", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_PROGRAMS"),
+        ("7818", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_STARTUP"),
+        ("7819", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_DESKTOPDIRECTORY"),
+        ("7820", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_INTERNET_CACHE"),
+        ("7821", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_COOKIES"),
+        ("7822", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_HISTORY"),
+        ("7823", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_APPDATA"),
+        ("7824", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_WINDOWS"),
+        ("7825", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_SYSTEM"),
+        ("7826", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_PROGRAM_FILES"),
+        ("7827", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_MYPICTURES"),
+        ("7828", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_PROFILE"),
+        ("7829", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_SYSTEMX86"),
+        ("7830", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_ADMINTOOLS"),
+        ("7831", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_CONNECTIONS"),
+        ("7832", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000032"),
+        ("7833", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000033"),
+        ("7834", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000034"),
+        ("7835", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_MUSIC"),
+        ("7836", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_PICTURES"),
+        ("7837", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_COMMON_VIDEO"),
+        ("7838", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_RESOURCES"),
+        ("7839", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|CSIDL_RESOURCES_LOCALIZED"),
+        ("7840", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000040"),
+        ("7841", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000041"),
+        ("7842", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000042"),
+        ("7843", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000043"),
+        ("7844", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000044"),
+        ("7845", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000045"),
+        ("7846", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000046"),
+        ("7847", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000047"),
+        ("7848", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000048"),
+        ("7849", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000049"),
+        ("7850", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000050"),
+        ("7851", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000051"),
+        ("7852", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000052"),
+        ("7853", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000053"),
+        ("7854", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000054"),
+        ("7855", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000055"),
+        ("7856", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000056"),
+        ("7857", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000057"),
+        ("7858", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000058"),
+        ("7859", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000059"),
+        ("7860", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000060"),
+        ("7861", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000061"),
+        ("7862", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000062"),
+        ("7863", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000063"),
+        ("7864", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000064"),
+        ("7865", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000065"),
+        ("7866", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000066"),
+        ("7867", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000067"),
+        ("7868", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000068"),
+        ("7869", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000069"),
+        ("7870", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000070"),
+        ("7871", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000071"),
+        ("7872", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000072"),
+        ("7873", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000073"),
+        ("7874", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000074"),
+        ("7875", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000075"),
+        ("7876", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000076"),
+        ("7877", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000077"),
+        ("7878", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000078"),
+        ("7879", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000079"),
+        ("7880", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000080"),
+        ("7881", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000081"),
+        ("7882", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000082"),
+        ("7883", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000083"),
+        ("7884", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000084"),
+        ("7885", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000085"),
+        ("7886", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000086"),
+        ("7887", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000087"),
+        ("7888", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000088"),
+        ("7889", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000089"),
+        ("7890", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000090"),
+        ("7891", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000091"),
+        ("7892", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000092"),
+        ("7893", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000093"),
+        ("7894", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000094"),
+        ("7895", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000095"),
+        ("7896", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000096"),
+        ("7897", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000097"),
+        ("7898", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000098"),
+        ("7899", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000099"),
+        ("7900", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000100"),
+        ("7901", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000101"),
+        ("7902", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000102"),
+        ("7903", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000103"),
+        ("7904", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000104"),
+        ("7905", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000105"),
+        ("7906", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000106"),
+        ("7907", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000107"),
+        ("7908", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000108"),
+        ("7909", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000109"),
+        ("7910", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000110"),
+        ("7911", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000111"),
+        ("7912", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000112"),
+        ("7913", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000113"),
+        ("7914", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000114"),
+        ("7915", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000115"),
+        ("7916", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000116"),
+        ("7917", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000117"),
+        ("7918", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000118"),
+        ("7919", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000119"),
+        ("7920", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000120"),
+        ("7921", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000121"),
+        ("7922", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000122"),
+        ("7923", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000123"),
+        ("7924", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000124"),
+        ("7925", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000125"),
+        ("7926", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000126"),
+        ("7927", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000127"),
+        ("7928", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000128"),
+        ("7929", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000129"),
+        ("7930", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000130"),
+        ("7931", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000131"),
+        ("7932", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000132"),
+        ("7933", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000133"),
+        ("7934", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000134"),
+        ("7935", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000135"),
+        ("7936", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000136"),
+        ("7937", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000137"),
+        ("7938", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000138"),
+        ("7939", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000139"),
+        ("7940", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000140"),
+        ("7941", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000141"),
+        ("7942", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000142"),
+        ("7943", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000143"),
+        ("7944", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000144"),
+        ("7945", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000145"),
+        ("7946", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000146"),
+        ("7947", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000147"),
+        ("7948", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000148"),
+        ("7949", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000149"),
+        ("7950", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000150"),
+        ("7951", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000151"),
+        ("7952", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000152"),
+        ("7953", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000153"),
+        ("7954", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000154"),
+        ("7955", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000155"),
+        ("7956", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000156"),
+        ("7957", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000157"),
+        ("7958", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000158"),
+        ("7959", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000159"),
+        ("7960", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000160"),
+        ("7961", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000161"),
+        ("7962", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000162"),
+        ("7963", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000163"),
+        ("7964", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000164"),
+        ("7965", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000165"),
+        ("7966", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000166"),
+        ("7967", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000167"),
+        ("7968", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000168"),
+        ("7969", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000169"),
+        ("7970", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000170"),
+        ("7971", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000171"),
+        ("7972", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000172"),
+        ("7973", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000173"),
+        ("7974", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000174"),
+        ("7975", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000175"),
+        ("7976", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000176"),
+        ("7977", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000177"),
+        ("7978", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000178"),
+        ("7979", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000179"),
+        ("7980", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000180"),
+        ("7981", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000181"),
+        ("7982", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000182"),
+        ("7983", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000183"),
+        ("7984", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000184"),
+        ("7985", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000185"),
+        ("7986", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000186"),
+        ("7987", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000187"),
+        ("7988", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000188"),
+        ("7989", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000189"),
+        ("7990", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000190"),
+        ("7991", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000191"),
+        ("7992", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000192"),
+        ("7993", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000193"),
+        ("7994", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000194"),
+        ("7995", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000195"),
+        ("7996", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000196"),
+        ("7997", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000197"),
+        ("7998", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000198"),
+        ("7999", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00000199"),
+        ("8000", "CSIDL_FLAG_CREATE|CSIDL_DESKTOP"),
+        ("8001", "CSIDL_FLAG_CREATE|CSIDL_INTERNET"),
+        ("8002", "CSIDL_FLAG_CREATE|CSIDL_PROGRAMS"),
+        ("8003", "CSIDL_FLAG_CREATE|CSIDL_CONTROLS"),
+        ("8004", "CSIDL_FLAG_CREATE|CSIDL_PRINTERS"),
+        ("8005", "CSIDL_FLAG_CREATE|CSIDL_MYDOCUMENTS"),
+        ("8006", "CSIDL_FLAG_CREATE|CSIDL_FAVORITES"),
+        ("8007", "CSIDL_FLAG_CREATE|CSIDL_STARTUP"),
+        ("8008", "CSIDL_FLAG_CREATE|CSIDL_RECENT"),
+        ("8009", "CSIDL_FLAG_CREATE|CSIDL_SENDTO"),
+        ("8010", "CSIDL_FLAG_CREATE|CSIDL_DESKTOPDIRECTORY"),
+        ("8011", "CSIDL_FLAG_CREATE|CSIDL_DRIVES"),
+        ("8012", "CSIDL_FLAG_CREATE|CSIDL_NETWORK"),
+        ("8013", "CSIDL_FLAG_CREATE|CSIDL_NETHOOD"),
+        ("8014", "CSIDL_FLAG_CREATE|CSIDL_FONTS"),
+        ("8015", "CSIDL_FLAG_CREATE|CSIDL_TEMPLATES"),
+        ("8016", "CSIDL_FLAG_CREATE|CSIDL_COMMON_STARTMENU"),
+        ("8017", "CSIDL_FLAG_CREATE|CSIDL_COMMON_PROGRAMS"),
+        ("8018", "CSIDL_FLAG_CREATE|CSIDL_COMMON_STARTUP"),
+        ("8019", "CSIDL_FLAG_CREATE|CSIDL_COMMON_DESKTOPDIRECTORY"),
+        ("8020", "CSIDL_FLAG_CREATE|CSIDL_INTERNET_CACHE"),
+        ("8021", "CSIDL_FLAG_CREATE|CSIDL_COOKIES"),
+        ("8022", "CSIDL_FLAG_CREATE|CSIDL_HISTORY"),
+        ("8023", "CSIDL_FLAG_CREATE|CSIDL_COMMON_APPDATA"),
+        ("8024", "CSIDL_FLAG_CREATE|CSIDL_WINDOWS"),
+        ("8025", "CSIDL_FLAG_CREATE|CSIDL_SYSTEM"),
+        ("8026", "CSIDL_FLAG_CREATE|CSIDL_PROGRAM_FILES"),
+        ("8027", "CSIDL_FLAG_CREATE|CSIDL_MYPICTURES"),
+        ("8028", "CSIDL_FLAG_CREATE|CSIDL_PROFILE"),
+        ("8029", "CSIDL_FLAG_CREATE|CSIDL_SYSTEMX86"),
+        ("8030", "CSIDL_FLAG_CREATE|CSIDL_ADMINTOOLS"),
+        ("8031", "CSIDL_FLAG_CREATE|CSIDL_CONNECTIONS"),
+        ("8032", "CSIDL_FLAG_CREATE|0x00000032"),
+        ("8033", "CSIDL_FLAG_CREATE|0x00000033"),
+        ("8034", "CSIDL_FLAG_CREATE|0x00000034"),
+        ("8035", "CSIDL_FLAG_CREATE|CSIDL_COMMON_MUSIC"),
+        ("8036", "CSIDL_FLAG_CREATE|CSIDL_COMMON_PICTURES"),
+        ("8037", "CSIDL_FLAG_CREATE|CSIDL_COMMON_VIDEO"),
+        ("8038", "CSIDL_FLAG_CREATE|CSIDL_RESOURCES"),
+        ("8039", "CSIDL_FLAG_CREATE|CSIDL_RESOURCES_LOCALIZED"),
+        ("8040", "CSIDL_FLAG_CREATE|0x00000040"),
+        ("8041", "CSIDL_FLAG_CREATE|0x00000041"),
+        ("8042", "CSIDL_FLAG_CREATE|0x00000042"),
+        ("8043", "CSIDL_FLAG_CREATE|0x00000043"),
+        ("8044", "CSIDL_FLAG_CREATE|0x00000044"),
+        ("8045", "CSIDL_FLAG_CREATE|0x00000045"),
+        ("8046", "CSIDL_FLAG_CREATE|0x00000046"),
+        ("8047", "CSIDL_FLAG_CREATE|0x00000047"),
+        ("8048", "CSIDL_FLAG_CREATE|0x00000048"),
+        ("8049", "CSIDL_FLAG_CREATE|0x00000049"),
+        ("8050", "CSIDL_FLAG_CREATE|0x00000050"),
+        ("8051", "CSIDL_FLAG_CREATE|0x00000051"),
+        ("8052", "CSIDL_FLAG_CREATE|0x00000052"),
+        ("8053", "CSIDL_FLAG_CREATE|0x00000053"),
+        ("8054", "CSIDL_FLAG_CREATE|0x00000054"),
+        ("8055", "CSIDL_FLAG_CREATE|0x00000055"),
+        ("8056", "CSIDL_FLAG_CREATE|0x00000056"),
+        ("8057", "CSIDL_FLAG_CREATE|0x00000057"),
+        ("8058", "CSIDL_FLAG_CREATE|0x00000058"),
+        ("8059", "CSIDL_FLAG_CREATE|0x00000059"),
+        ("8060", "CSIDL_FLAG_CREATE|0x00000060"),
+        ("8061", "CSIDL_FLAG_CREATE|0x00000061"),
+        ("8062", "CSIDL_FLAG_CREATE|0x00000062"),
+        ("8063", "CSIDL_FLAG_CREATE|0x00000063"),
+        ("8064", "CSIDL_FLAG_CREATE|0x00000064"),
+        ("8065", "CSIDL_FLAG_CREATE|0x00000065"),
+        ("8066", "CSIDL_FLAG_CREATE|0x00000066"),
+        ("8067", "CSIDL_FLAG_CREATE|0x00000067"),
+        ("8068", "CSIDL_FLAG_CREATE|0x00000068"),
+        ("8069", "CSIDL_FLAG_CREATE|0x00000069"),
+        ("8070", "CSIDL_FLAG_CREATE|0x00000070"),
+        ("8071", "CSIDL_FLAG_CREATE|0x00000071"),
+        ("8072", "CSIDL_FLAG_CREATE|0x00000072"),
+        ("8073", "CSIDL_FLAG_CREATE|0x00000073"),
+        ("8074", "CSIDL_FLAG_CREATE|0x00000074"),
+        ("8075", "CSIDL_FLAG_CREATE|0x00000075"),
+        ("8076", "CSIDL_FLAG_CREATE|0x00000076"),
+        ("8077", "CSIDL_FLAG_CREATE|0x00000077"),
+        ("8078", "CSIDL_FLAG_CREATE|0x00000078"),
+        ("8079", "CSIDL_FLAG_CREATE|0x00000079"),
+        ("8080", "CSIDL_FLAG_CREATE|0x00000080"),
+        ("8081", "CSIDL_FLAG_CREATE|0x00000081"),
+        ("8082", "CSIDL_FLAG_CREATE|0x00000082"),
+        ("8083", "CSIDL_FLAG_CREATE|0x00000083"),
+        ("8084", "CSIDL_FLAG_CREATE|0x00000084"),
+        ("8085", "CSIDL_FLAG_CREATE|0x00000085"),
+        ("8086", "CSIDL_FLAG_CREATE|0x00000086"),
+        ("8087", "CSIDL_FLAG_CREATE|0x00000087"),
+        ("8088", "CSIDL_FLAG_CREATE|0x00000088"),
+        ("8089", "CSIDL_FLAG_CREATE|0x00000089"),
+        ("8090", "CSIDL_FLAG_CREATE|0x00000090"),
+        ("8091", "CSIDL_FLAG_CREATE|0x00000091"),
+        ("8092", "CSIDL_FLAG_CREATE|0x00000092"),
+        ("8093", "CSIDL_FLAG_CREATE|0x00000093"),
+        ("8094", "CSIDL_FLAG_CREATE|0x00000094"),
+        ("8095", "CSIDL_FLAG_CREATE|0x00000095"),
+        ("8096", "CSIDL_FLAG_CREATE|0x00000096"),
+        ("8097", "CSIDL_FLAG_CREATE|0x00000097"),
+        ("8098", "CSIDL_FLAG_CREATE|0x00000098"),
+        ("8099", "CSIDL_FLAG_CREATE|0x00000099"),
+        ("8100", "CSIDL_FLAG_CREATE|0x00000100"),
+        ("8101", "CSIDL_FLAG_CREATE|0x00000101"),
+        ("8102", "CSIDL_FLAG_CREATE|0x00000102"),
+        ("8103", "CSIDL_FLAG_CREATE|0x00000103"),
+        ("8104", "CSIDL_FLAG_CREATE|0x00000104"),
+        ("8105", "CSIDL_FLAG_CREATE|0x00000105"),
+        ("8106", "CSIDL_FLAG_CREATE|0x00000106"),
+        ("8107", "CSIDL_FLAG_CREATE|0x00000107"),
+        ("8108", "CSIDL_FLAG_CREATE|0x00000108"),
+        ("8109", "CSIDL_FLAG_CREATE|0x00000109"),
+        ("8110", "CSIDL_FLAG_CREATE|0x00000110"),
+        ("8111", "CSIDL_FLAG_CREATE|0x00000111"),
+        ("8112", "CSIDL_FLAG_CREATE|0x00000112"),
+        ("8113", "CSIDL_FLAG_CREATE|0x00000113"),
+        ("8114", "CSIDL_FLAG_CREATE|0x00000114"),
+        ("8115", "CSIDL_FLAG_CREATE|0x00000115"),
+        ("8116", "CSIDL_FLAG_CREATE|0x00000116"),
+        ("8117", "CSIDL_FLAG_CREATE|0x00000117"),
+        ("8118", "CSIDL_FLAG_CREATE|0x00000118"),
+        ("8119", "CSIDL_FLAG_CREATE|0x00000119"),
+        ("8120", "CSIDL_FLAG_CREATE|0x00000120"),
+        ("8121", "CSIDL_FLAG_CREATE|0x00000121"),
+        ("8122", "CSIDL_FLAG_CREATE|0x00000122"),
+        ("8123", "CSIDL_FLAG_CREATE|0x00000123"),
+        ("8124", "CSIDL_FLAG_CREATE|0x00000124"),
+        ("8125", "CSIDL_FLAG_CREATE|0x00000125"),
+        ("8126", "CSIDL_FLAG_CREATE|0x00000126"),
+        ("8127", "CSIDL_FLAG_CREATE|0x00000127"),
+        ("8128", "CSIDL_FLAG_CREATE|0x00000128"),
+        ("8129", "CSIDL_FLAG_CREATE|0x00000129"),
+        ("8130", "CSIDL_FLAG_CREATE|0x00000130"),
+        ("8131", "CSIDL_FLAG_CREATE|0x00000131"),
+        ("8132", "CSIDL_FLAG_CREATE|0x00000132"),
+        ("8133", "CSIDL_FLAG_CREATE|0x00000133"),
+        ("8134", "CSIDL_FLAG_CREATE|0x00000134"),
+        ("8135", "CSIDL_FLAG_CREATE|0x00000135"),
+        ("8136", "CSIDL_FLAG_CREATE|0x00000136"),
+        ("8137", "CSIDL_FLAG_CREATE|0x00000137"),
+        ("8138", "CSIDL_FLAG_CREATE|0x00000138"),
+        ("8139", "CSIDL_FLAG_CREATE|0x00000139"),
+        ("8140", "CSIDL_FLAG_CREATE|0x00000140"),
+        ("8141", "CSIDL_FLAG_CREATE|0x00000141"),
+        ("8142", "CSIDL_FLAG_CREATE|0x00000142"),
+        ("8143", "CSIDL_FLAG_CREATE|0x00000143"),
+        ("8144", "CSIDL_FLAG_CREATE|0x00000144"),
+        ("8145", "CSIDL_FLAG_CREATE|0x00000145"),
+        ("8146", "CSIDL_FLAG_CREATE|0x00000146"),
+        ("8147", "CSIDL_FLAG_CREATE|0x00000147"),
+        ("8148", "CSIDL_FLAG_CREATE|0x00000148"),
+        ("8149", "CSIDL_FLAG_CREATE|0x00000149"),
+        ("8150", "CSIDL_FLAG_CREATE|0x00000150"),
+        ("8151", "CSIDL_FLAG_CREATE|0x00000151"),
+        ("8152", "CSIDL_FLAG_CREATE|0x00000152"),
+        ("8153", "CSIDL_FLAG_CREATE|0x00000153"),
+        ("8154", "CSIDL_FLAG_CREATE|0x00000154"),
+        ("8155", "CSIDL_FLAG_CREATE|0x00000155"),
+        ("8156", "CSIDL_FLAG_CREATE|0x00000156"),
+        ("8157", "CSIDL_FLAG_CREATE|0x00000157"),
+        ("8158", "CSIDL_FLAG_CREATE|0x00000158"),
+        ("8159", "CSIDL_FLAG_CREATE|0x00000159"),
+        ("8160", "CSIDL_FLAG_CREATE|0x00000160"),
+        ("8161", "CSIDL_FLAG_CREATE|0x00000161"),
+        ("8162", "CSIDL_FLAG_CREATE|0x00000162"),
+        ("8163", "CSIDL_FLAG_CREATE|0x00000163"),
+        ("8164", "CSIDL_FLAG_CREATE|0x00000164"),
+        ("8165", "CSIDL_FLAG_CREATE|0x00000165"),
+        ("8166", "CSIDL_FLAG_CREATE|0x00000166"),
+        ("8167", "CSIDL_FLAG_CREATE|0x00000167"),
+        ("8168", "CSIDL_FLAG_CREATE|0x00000168"),
+        ("8169", "CSIDL_FLAG_CREATE|0x00000169"),
+        ("8170", "CSIDL_FLAG_CREATE|0x00000170"),
+        ("8171", "CSIDL_FLAG_CREATE|0x00000171"),
+        ("8172", "CSIDL_FLAG_CREATE|0x00000172"),
+        ("8173", "CSIDL_FLAG_CREATE|0x00000173"),
+        ("8174", "CSIDL_FLAG_CREATE|0x00000174"),
+        ("8175", "CSIDL_FLAG_CREATE|0x00000175"),
+        ("8176", "CSIDL_FLAG_CREATE|0x00000176"),
+        ("8177", "CSIDL_FLAG_CREATE|0x00000177"),
+        ("8178", "CSIDL_FLAG_CREATE|0x00000178"),
+        ("8179", "CSIDL_FLAG_CREATE|0x00000179"),
+        ("8180", "CSIDL_FLAG_CREATE|0x00000180"),
+        ("8181", "CSIDL_FLAG_CREATE|0x00000181"),
+        ("8182", "CSIDL_FLAG_CREATE|0x00000182"),
+        ("8183", "CSIDL_FLAG_CREATE|0x00000183"),
+        ("8184", "CSIDL_FLAG_CREATE|0x00000184"),
+        ("8185", "CSIDL_FLAG_CREATE|0x00000185"),
+        ("8186", "CSIDL_FLAG_CREATE|0x00000186"),
+        ("8187", "CSIDL_FLAG_CREATE|0x00000187"),
+        ("8188", "CSIDL_FLAG_CREATE|0x00000188"),
+        ("8189", "CSIDL_FLAG_CREATE|0x00000189"),
+        ("8190", "CSIDL_FLAG_CREATE|0x00000190"),
+        ("8191", "CSIDL_FLAG_CREATE|0x00000191"),
+        ("8192", "CSIDL_FLAG_CREATE|0x00000192"),
+        ("8193", "CSIDL_FLAG_CREATE|0x00000193"),
+        ("8194", "CSIDL_FLAG_CREATE|0x00000194"),
+        ("8195", "CSIDL_FLAG_CREATE|0x00000195"),
+        ("8196", "CSIDL_FLAG_CREATE|0x00000196"),
+        ("8197", "CSIDL_FLAG_CREATE|0x00000197"),
+        ("8198", "CSIDL_FLAG_CREATE|0x00000198"),
+        ("8199", "CSIDL_FLAG_CREATE|0x00000199"),
+        ("8200", "CSIDL_FLAG_CREATE|0x00000200"),
+        ("8201", "CSIDL_FLAG_CREATE|0x00000201"),
+        ("8202", "CSIDL_FLAG_CREATE|0x00000202"),
+        ("8203", "CSIDL_FLAG_CREATE|0x00000203"),
+        ("8204", "CSIDL_FLAG_CREATE|0x00000204"),
+        ("8205", "CSIDL_FLAG_CREATE|0x00000205"),
+        ("8206", "CSIDL_FLAG_CREATE|0x00000206"),
+        ("8207", "CSIDL_FLAG_CREATE|0x00000207"),
+        ("8208", "CSIDL_FLAG_CREATE|0x00000208"),
+        ("8209", "CSIDL_FLAG_CREATE|0x00000209"),
+        ("8210", "CSIDL_FLAG_CREATE|0x00000210"),
+        ("8211", "CSIDL_FLAG_CREATE|0x00000211"),
+        ("8212", "CSIDL_FLAG_CREATE|0x00000212"),
+        ("8213", "CSIDL_FLAG_CREATE|0x00000213"),
+        ("8214", "CSIDL_FLAG_CREATE|0x00000214"),
+        ("8215", "CSIDL_FLAG_CREATE|0x00000215"),
+        ("8216", "CSIDL_FLAG_CREATE|0x00000216"),
+        ("8217", "CSIDL_FLAG_CREATE|0x00000217"),
+        ("8218", "CSIDL_FLAG_CREATE|0x00000218"),
+        ("8219", "CSIDL_FLAG_CREATE|0x00000219"),
+        ("8220", "CSIDL_FLAG_CREATE|0x00000220"),
+        ("8221", "CSIDL_FLAG_CREATE|0x00000221"),
+        ("8222", "CSIDL_FLAG_CREATE|0x00000222"),
+        ("8223", "CSIDL_FLAG_CREATE|0x00000223"),
+        ("8224", "CSIDL_FLAG_CREATE|0x00000224"),
+        ("8225", "CSIDL_FLAG_CREATE|0x00000225"),
+        ("8226", "CSIDL_FLAG_CREATE|0x00000226"),
+        ("8227", "CSIDL_FLAG_CREATE|0x00000227"),
+        ("8228", "CSIDL_FLAG_CREATE|0x00000228"),
+        ("8229", "CSIDL_FLAG_CREATE|0x00000229"),
+        ("8230", "CSIDL_FLAG_CREATE|0x00000230"),
+        ("8231", "CSIDL_FLAG_CREATE|0x00000231"),
+        ("8232", "CSIDL_FLAG_CREATE|0x00000232"),
+        ("8233", "CSIDL_FLAG_CREATE|0x00000233"),
+        ("8234", "CSIDL_FLAG_CREATE|0x00000234"),
+        ("8235", "CSIDL_FLAG_CREATE|0x00000235"),
+        ("8236", "CSIDL_FLAG_CREATE|0x00000236"),
+        ("8237", "CSIDL_FLAG_CREATE|0x00000237"),
+        ("8238", "CSIDL_FLAG_CREATE|0x00000238"),
+        ("8239", "CSIDL_FLAG_CREATE|0x00000239"),
+        ("8240", "CSIDL_FLAG_CREATE|0x00000240"),
+        ("8241", "CSIDL_FLAG_CREATE|0x00000241"),
+        ("8242", "CSIDL_FLAG_CREATE|0x00000242"),
+        ("8243", "CSIDL_FLAG_CREATE|0x00000243"),
+        ("8244", "CSIDL_FLAG_CREATE|0x00000244"),
+        ("8245", "CSIDL_FLAG_CREATE|0x00000245"),
+        ("8246", "CSIDL_FLAG_CREATE|0x00000246"),
+        ("8247", "CSIDL_FLAG_CREATE|0x00000247"),
+        ("8248", "CSIDL_FLAG_CREATE|0x00000248"),
+        ("8249", "CSIDL_FLAG_CREATE|0x00000249"),
+        ("8250", "CSIDL_FLAG_CREATE|0x00000250"),
+        ("8251", "CSIDL_FLAG_CREATE|0x00000251"),
+        ("8252", "CSIDL_FLAG_CREATE|0x00000252"),
+        ("8253", "CSIDL_FLAG_CREATE|0x00000253"),
+        ("8254", "CSIDL_FLAG_CREATE|0x00000254"),
+        ("8255", "CSIDL_FLAG_CREATE|0x00000255"),
+        ("8256", "CSIDL_FLAG_CREATE|0x00000256"),
+        ("8257", "CSIDL_FLAG_CREATE|0x00000257"),
+        ("8258", "CSIDL_FLAG_CREATE|0x00000258"),
+        ("8259", "CSIDL_FLAG_CREATE|0x00000259"),
+        ("8260", "CSIDL_FLAG_CREATE|0x00000260"),
+        ("8261", "CSIDL_FLAG_CREATE|0x00000261"),
+        ("8262", "CSIDL_FLAG_CREATE|0x00000262"),
+        ("8263", "CSIDL_FLAG_CREATE|0x00000263"),
+        ("8264", "CSIDL_FLAG_CREATE|0x00000264"),
+        ("8265", "CSIDL_FLAG_CREATE|0x00000265"),
+        ("8266", "CSIDL_FLAG_CREATE|0x00000266"),
+        ("8267", "CSIDL_FLAG_CREATE|0x00000267"),
+        ("8268", "CSIDL_FLAG_CREATE|0x00000268"),
+        ("8269", "CSIDL_FLAG_CREATE|0x00000269"),
+        ("8270", "CSIDL_FLAG_CREATE|0x00000270"),
+        ("8271", "CSIDL_FLAG_CREATE|0x00000271"),
+        ("8272", "CSIDL_FLAG_CREATE|0x00000272"),
+        ("8273", "CSIDL_FLAG_CREATE|0x00000273"),
+        ("8274", "CSIDL_FLAG_CREATE|0x00000274"),
+        ("8275", "CSIDL_FLAG_CREATE|0x00000275"),
+        ("8276", "CSIDL_FLAG_CREATE|0x00000276"),
+        ("8277", "CSIDL_FLAG_CREATE|0x00000277"),
+        ("8278", "CSIDL_FLAG_CREATE|0x00000278"),
+        ("8279", "CSIDL_FLAG_CREATE|0x00000279"),
+        ("8280", "CSIDL_FLAG_CREATE|0x00000280"),
+        ("8281", "CSIDL_FLAG_CREATE|0x00000281"),
+        ("8282", "CSIDL_FLAG_CREATE|0x00000282"),
+        ("8283", "CSIDL_FLAG_CREATE|0x00000283"),
+        ("8284", "CSIDL_FLAG_CREATE|0x00000284"),
+        ("8285", "CSIDL_FLAG_CREATE|0x00000285"),
+        ("8286", "CSIDL_FLAG_CREATE|0x00000286"),
+        ("8287", "CSIDL_FLAG_CREATE|0x00000287"),
+        ("8288", "CSIDL_FLAG_CREATE|0x00000288"),
+        ("8289", "CSIDL_FLAG_CREATE|0x00000289"),
+        ("8290", "CSIDL_FLAG_CREATE|0x00000290"),
+        ("8291", "CSIDL_FLAG_CREATE|0x00000291"),
+        ("8292", "CSIDL_FLAG_CREATE|0x00000292"),
+        ("8293", "CSIDL_FLAG_CREATE|0x00000293"),
+        ("8294", "CSIDL_FLAG_CREATE|0x00000294"),
+        ("8295", "CSIDL_FLAG_CREATE|0x00000295"),
+        ("8296", "CSIDL_FLAG_CREATE|0x00000296"),
+        ("8297", "CSIDL_FLAG_CREATE|0x00000297"),
+        ("8298", "CSIDL_FLAG_CREATE|0x00000298"),
+        ("8299", "CSIDL_FLAG_CREATE|0x00000299"),
+        ("8300", "CSIDL_FLAG_CREATE|0x00000300"),
+        ("8301", "CSIDL_FLAG_CREATE|0x00000301"),
+        ("8302", "CSIDL_FLAG_CREATE|0x00000302"),
+        ("8303", "CSIDL_FLAG_CREATE|0x00000303"),
+        ("8304", "CSIDL_FLAG_CREATE|0x00000304"),
+        ("8305", "CSIDL_FLAG_CREATE|0x00000305"),
+        ("8306", "CSIDL_FLAG_CREATE|0x00000306"),
+        ("8307", "CSIDL_FLAG_CREATE|0x00000307"),
+        ("8308", "CSIDL_FLAG_CREATE|0x00000308"),
+        ("8309", "CSIDL_FLAG_CREATE|0x00000309"),
+        ("8310", "CSIDL_FLAG_CREATE|0x00000310"),
+        ("8311", "CSIDL_FLAG_CREATE|0x00000311"),
+        ("8312", "CSIDL_FLAG_CREATE|0x00000312"),
+        ("8313", "CSIDL_FLAG_CREATE|0x00000313"),
+        ("8314", "CSIDL_FLAG_CREATE|0x00000314"),
+        ("8315", "CSIDL_FLAG_CREATE|0x00000315"),
+        ("8316", "CSIDL_FLAG_CREATE|0x00000316"),
+        ("8317", "CSIDL_FLAG_CREATE|0x00000317"),
+        ("8318", "CSIDL_FLAG_CREATE|0x00000318"),
+        ("8319", "CSIDL_FLAG_CREATE|0x00000319"),
+        ("8320", "CSIDL_FLAG_CREATE|0x00000320"),
+        ("8321", "CSIDL_FLAG_CREATE|0x00000321"),
+        ("8322", "CSIDL_FLAG_CREATE|0x00000322"),
+        ("8323", "CSIDL_FLAG_CREATE|0x00000323"),
+        ("8324", "CSIDL_FLAG_CREATE|0x00000324"),
+        ("8325", "CSIDL_FLAG_CREATE|0x00000325"),
+        ("8326", "CSIDL_FLAG_CREATE|0x00000326"),
+        ("8327", "CSIDL_FLAG_CREATE|0x00000327"),
+        ("8328", "CSIDL_FLAG_CREATE|0x00000328"),
+        ("8329", "CSIDL_FLAG_CREATE|0x00000329"),
+        ("8330", "CSIDL_FLAG_CREATE|0x00000330"),
+        ("8331", "CSIDL_FLAG_CREATE|0x00000331"),
+        ("8332", "CSIDL_FLAG_CREATE|0x00000332"),
+        ("8333", "CSIDL_FLAG_CREATE|0x00000333"),
+        ("8334", "CSIDL_FLAG_CREATE|0x00000334"),
+        ("8335", "CSIDL_FLAG_CREATE|0x00000335"),
+        ("8336", "CSIDL_FLAG_CREATE|0x00000336"),
+        ("8337", "CSIDL_FLAG_CREATE|0x00000337"),
+        ("8338", "CSIDL_FLAG_CREATE|0x00000338"),
+        ("8339", "CSIDL_FLAG_CREATE|0x00000339"),
+        ("8340", "CSIDL_FLAG_CREATE|0x00000340"),
+        ("8341", "CSIDL_FLAG_CREATE|0x00000341"),
+        ("8342", "CSIDL_FLAG_CREATE|0x00000342"),
+        ("8343", "CSIDL_FLAG_CREATE|0x00000343"),
+        ("8344", "CSIDL_FLAG_CREATE|0x00000344"),
+        ("8345", "CSIDL_FLAG_CREATE|0x00000345"),
+        ("8346", "CSIDL_FLAG_CREATE|0x00000346"),
+        ("8347", "CSIDL_FLAG_CREATE|0x00000347"),
+        ("8348", "CSIDL_FLAG_CREATE|0x00000348"),
+        ("8349", "CSIDL_FLAG_CREATE|0x00000349"),
+        ("8350", "CSIDL_FLAG_CREATE|0x00000350"),
+        ("8351", "CSIDL_FLAG_CREATE|0x00000351"),
+        ("8352", "CSIDL_FLAG_CREATE|0x00000352"),
+        ("8353", "CSIDL_FLAG_CREATE|0x00000353"),
+        ("8354", "CSIDL_FLAG_CREATE|0x00000354"),
+        ("8355", "CSIDL_FLAG_CREATE|0x00000355"),
+        ("8356", "CSIDL_FLAG_CREATE|0x00000356"),
+        ("8357", "CSIDL_FLAG_CREATE|0x00000357"),
+        ("8358", "CSIDL_FLAG_CREATE|0x00000358"),
+        ("8359", "CSIDL_FLAG_CREATE|0x00000359"),
+        ("8360", "CSIDL_FLAG_CREATE|0x00000360"),
+        ("8361", "CSIDL_FLAG_CREATE|0x00000361"),
+        ("8362", "CSIDL_FLAG_CREATE|0x00000362"),
+        ("8363", "CSIDL_FLAG_CREATE|0x00000363"),
+        ("8364", "CSIDL_FLAG_CREATE|0x00000364"),
+        ("8365", "CSIDL_FLAG_CREATE|0x00000365"),
+        ("8366", "CSIDL_FLAG_CREATE|0x00000366"),
+        ("8367", "CSIDL_FLAG_CREATE|0x00000367"),
+        ("8368", "CSIDL_FLAG_CREATE|0x00000368"),
+        ("8369", "CSIDL_FLAG_CREATE|0x00000369"),
+        ("8370", "CSIDL_FLAG_CREATE|0x00000370"),
+        ("8371", "CSIDL_FLAG_CREATE|0x00000371"),
+        ("8372", "CSIDL_FLAG_CREATE|0x00000372"),
+        ("8373", "CSIDL_FLAG_CREATE|0x00000373"),
+        ("8374", "CSIDL_FLAG_CREATE|0x00000374"),
+        ("8375", "CSIDL_FLAG_CREATE|0x00000375"),
+        ("8376", "CSIDL_FLAG_CREATE|0x00000376"),
+        ("8377", "CSIDL_FLAG_CREATE|0x00000377"),
+        ("8378", "CSIDL_FLAG_CREATE|0x00000378"),
+        ("8379", "CSIDL_FLAG_CREATE|0x00000379"),
+        ("8380", "CSIDL_FLAG_CREATE|0x00000380"),
+        ("8381", "CSIDL_FLAG_CREATE|0x00000381"),
+        ("8382", "CSIDL_FLAG_CREATE|0x00000382"),
+        ("8383", "CSIDL_FLAG_CREATE|0x00000383"),
+        ("8384", "CSIDL_FLAG_CREATE|0x00000384"),
+        ("8385", "CSIDL_FLAG_CREATE|0x00000385"),
+        ("8386", "CSIDL_FLAG_CREATE|0x00000386"),
+        ("8387", "CSIDL_FLAG_CREATE|0x00000387"),
+        ("8388", "CSIDL_FLAG_CREATE|0x00000388"),
+        ("8389", "CSIDL_FLAG_CREATE|0x00000389"),
+        ("8390", "CSIDL_FLAG_CREATE|0x00000390"),
+        ("8391", "CSIDL_FLAG_CREATE|0x00000391"),
+        ("8392", "CSIDL_FLAG_CREATE|0x00000392"),
+        ("8393", "CSIDL_FLAG_CREATE|0x00000393"),
+        ("8394", "CSIDL_FLAG_CREATE|0x00000394"),
+        ("8395", "CSIDL_FLAG_CREATE|0x00000395"),
+        ("8396", "CSIDL_FLAG_CREATE|0x00000396"),
+        ("8397", "CSIDL_FLAG_CREATE|0x00000397"),
+        ("8398", "CSIDL_FLAG_CREATE|0x00000398"),
+        ("8399", "CSIDL_FLAG_CREATE|0x00000399"),
+        ("8400", "CSIDL_FLAG_CREATE|0x00000400"),
+        ("8401", "CSIDL_FLAG_CREATE|0x00000401"),
+        ("8402", "CSIDL_FLAG_CREATE|0x00000402"),
+        ("8403", "CSIDL_FLAG_CREATE|0x00000403"),
+        ("8404", "CSIDL_FLAG_CREATE|0x00000404"),
+        ("8405", "CSIDL_FLAG_CREATE|0x00000405"),
+        ("8406", "CSIDL_FLAG_CREATE|0x00000406"),
+        ("8407", "CSIDL_FLAG_CREATE|0x00000407"),
+        ("8408", "CSIDL_FLAG_CREATE|0x00000408"),
+        ("8409", "CSIDL_FLAG_CREATE|0x00000409"),
+        ("8410", "CSIDL_FLAG_CREATE|0x00000410"),
+        ("8411", "CSIDL_FLAG_CREATE|0x00000411"),
+        ("8412", "CSIDL_FLAG_CREATE|0x00000412"),
+        ("8413", "CSIDL_FLAG_CREATE|0x00000413"),
+        ("8414", "CSIDL_FLAG_CREATE|0x00000414"),
+        ("8415", "CSIDL_FLAG_CREATE|0x00000415"),
+        ("8416", "CSIDL_FLAG_CREATE|0x00000416"),
+        ("8417", "CSIDL_FLAG_CREATE|0x00000417"),
+        ("8418", "CSIDL_FLAG_CREATE|0x00000418"),
+        ("8419", "CSIDL_FLAG_CREATE|0x00000419"),
+        ("8420", "CSIDL_FLAG_CREATE|0x00000420"),
+        ("8421", "CSIDL_FLAG_CREATE|0x00000421"),
+        ("8422", "CSIDL_FLAG_CREATE|0x00000422"),
+        ("8423", "CSIDL_FLAG_CREATE|0x00000423"),
+        ("8424", "CSIDL_FLAG_CREATE|0x00000424"),
+        ("8425", "CSIDL_FLAG_CREATE|0x00000425"),
+        ("8426", "CSIDL_FLAG_CREATE|0x00000426"),
+        ("8427", "CSIDL_FLAG_CREATE|0x00000427"),
+        ("8428", "CSIDL_FLAG_CREATE|0x00000428"),
+        ("8429", "CSIDL_FLAG_CREATE|0x00000429"),
+        ("8430", "CSIDL_FLAG_CREATE|0x00000430"),
+        ("8431", "CSIDL_FLAG_CREATE|0x00000431"),
+        ("8432", "CSIDL_FLAG_CREATE|0x00000432"),
+        ("8433", "CSIDL_FLAG_CREATE|0x00000433"),
+        ("8434", "CSIDL_FLAG_CREATE|0x00000434"),
+        ("8435", "CSIDL_FLAG_CREATE|0x00000435"),
+        ("8436", "CSIDL_FLAG_CREATE|0x00000436"),
+        ("8437", "CSIDL_FLAG_CREATE|0x00000437"),
+        ("8438", "CSIDL_FLAG_CREATE|0x00000438"),
+        ("8439", "CSIDL_FLAG_CREATE|0x00000439"),
+        ("8440", "CSIDL_FLAG_CREATE|0x00000440"),
+        ("8441", "CSIDL_FLAG_CREATE|0x00000441"),
+        ("8442", "CSIDL_FLAG_CREATE|0x00000442"),
+        ("8443", "CSIDL_FLAG_CREATE|0x00000443"),
+        ("8444", "CSIDL_FLAG_CREATE|0x00000444"),
+        ("8445", "CSIDL_FLAG_CREATE|0x00000445"),
+        ("8446", "CSIDL_FLAG_CREATE|0x00000446"),
+        ("8447", "CSIDL_FLAG_CREATE|0x00000447"),
+        ("8448", "CSIDL_FLAG_CREATE|0x00000448"),
+        ("8449", "CSIDL_FLAG_CREATE|0x00000449"),
+        ("8450", "CSIDL_FLAG_CREATE|0x00000450"),
+        ("8451", "CSIDL_FLAG_CREATE|0x00000451"),
+        ("8452", "CSIDL_FLAG_CREATE|0x00000452"),
+        ("8453", "CSIDL_FLAG_CREATE|0x00000453"),
+        ("8454", "CSIDL_FLAG_CREATE|0x00000454"),
+        ("8455", "CSIDL_FLAG_CREATE|0x00000455"),
+        ("8456", "CSIDL_FLAG_CREATE|0x00000456"),
+        ("8457", "CSIDL_FLAG_CREATE|0x00000457"),
+        ("8458", "CSIDL_FLAG_CREATE|0x00000458"),
+        ("8459", "CSIDL_FLAG_CREATE|0x00000459"),
+        ("8460", "CSIDL_FLAG_CREATE|0x00000460"),
+        ("8461", "CSIDL_FLAG_CREATE|0x00000461"),
+        ("8462", "CSIDL_FLAG_CREATE|0x00000462"),
+        ("8463", "CSIDL_FLAG_CREATE|0x00000463"),
+        ("8464", "CSIDL_FLAG_CREATE|0x00000464"),
+        ("8465", "CSIDL_FLAG_CREATE|0x00000465"),
+        ("8466", "CSIDL_FLAG_CREATE|0x00000466"),
+        ("8467", "CSIDL_FLAG_CREATE|0x00000467"),
+        ("8468", "CSIDL_FLAG_CREATE|0x00000468"),
+        ("8469", "CSIDL_FLAG_CREATE|0x00000469"),
+        ("8470", "CSIDL_FLAG_CREATE|0x00000470"),
+        ("8471", "CSIDL_FLAG_CREATE|0x00000471"),
+        ("8472", "CSIDL_FLAG_CREATE|0x00000472"),
+        ("8473", "CSIDL_FLAG_CREATE|0x00000473"),
+        ("8474", "CSIDL_FLAG_CREATE|0x00000474"),
+        ("8475", "CSIDL_FLAG_CREATE|0x00000475"),
+        ("8476", "CSIDL_FLAG_CREATE|0x00000476"),
+        ("8477", "CSIDL_FLAG_CREATE|0x00000477"),
+        ("8478", "CSIDL_FLAG_CREATE|0x00000478"),
+        ("8479", "CSIDL_FLAG_CREATE|0x00000479"),
+        ("8480", "CSIDL_FLAG_CREATE|0x00000480"),
+        ("8481", "CSIDL_FLAG_CREATE|0x00000481"),
+        ("8482", "CSIDL_FLAG_CREATE|0x00000482"),
+        ("8483", "CSIDL_FLAG_CREATE|0x00000483"),
+        ("8484", "CSIDL_FLAG_CREATE|0x00000484"),
+        ("8485", "CSIDL_FLAG_CREATE|0x00000485"),
+        ("8486", "CSIDL_FLAG_CREATE|0x00000486"),
+        ("8487", "CSIDL_FLAG_CREATE|0x00000487"),
+        ("8488", "CSIDL_FLAG_CREATE|0x00000488"),
+        ("8489", "CSIDL_FLAG_CREATE|0x00000489"),
+        ("8490", "CSIDL_FLAG_CREATE|0x00000490"),
+        ("8491", "CSIDL_FLAG_CREATE|0x00000491"),
+        ("8492", "CSIDL_FLAG_CREATE|0x00000492"),
+        ("8493", "CSIDL_FLAG_CREATE|0x00000493"),
+        ("8494", "CSIDL_FLAG_CREATE|0x00000494"),
+        ("8495", "CSIDL_FLAG_CREATE|0x00000495"),
+        ("8496", "CSIDL_FLAG_CREATE|0x00000496"),
+        ("8497", "CSIDL_FLAG_CREATE|0x00000497"),
+        ("8498", "CSIDL_FLAG_CREATE|0x00000498"),
+        ("8499", "CSIDL_FLAG_CREATE|0x00000499"),
+        ("8500", "CSIDL_FLAG_CREATE|0x00000500"),
+        ("8501", "CSIDL_FLAG_CREATE|0x00000501"),
+        ("8502", "CSIDL_FLAG_CREATE|0x00000502"),
+        ("8503", "CSIDL_FLAG_CREATE|0x00000503"),
+        ("8504", "CSIDL_FLAG_CREATE|0x00000504"),
+        ("8505", "CSIDL_FLAG_CREATE|0x00000505"),
+        ("8506", "CSIDL_FLAG_CREATE|0x00000506"),
+        ("8507", "CSIDL_FLAG_CREATE|0x00000507"),
+        ("8508", "CSIDL_FLAG_CREATE|0x00000508"),
+        ("8509", "CSIDL_FLAG_CREATE|0x00000509"),
+        ("8510", "CSIDL_FLAG_CREATE|0x00000510"),
+        ("8511", "CSIDL_FLAG_CREATE|0x00000511"),
+        ("8512", "CSIDL_FLAG_CREATE|0x00000512"),
+        ("8513", "CSIDL_FLAG_CREATE|0x00000513"),
+        ("8514", "CSIDL_FLAG_CREATE|0x00000514"),
+        ("8515", "CSIDL_FLAG_CREATE|0x00000515"),
+        ("8516", "CSIDL_FLAG_CREATE|0x00000516"),
+        ("8517", "CSIDL_FLAG_CREATE|0x00000517"),
+        ("8518", "CSIDL_FLAG_CREATE|0x00000518"),
+        ("8519", "CSIDL_FLAG_CREATE|0x00000519"),
+        ("8520", "CSIDL_FLAG_CREATE|0x00000520"),
+        ("8521", "CSIDL_FLAG_CREATE|0x00000521"),
+        ("8522", "CSIDL_FLAG_CREATE|0x00000522"),
+        ("8523", "CSIDL_FLAG_CREATE|0x00000523"),
+        ("8524", "CSIDL_FLAG_CREATE|0x00000524"),
+        ("8525", "CSIDL_FLAG_CREATE|0x00000525"),
+        ("8526", "CSIDL_FLAG_CREATE|0x00000526"),
+        ("8527", "CSIDL_FLAG_CREATE|0x00000527"),
+        ("8528", "CSIDL_FLAG_CREATE|0x00000528"),
+        ("8529", "CSIDL_FLAG_CREATE|0x00000529"),
+        ("8530", "CSIDL_FLAG_CREATE|0x00000530"),
+        ("8531", "CSIDL_FLAG_CREATE|0x00000531"),
+        ("8532", "CSIDL_FLAG_CREATE|0x00000532"),
+        ("8533", "CSIDL_FLAG_CREATE|0x00000533"),
+        ("8534", "CSIDL_FLAG_CREATE|0x00000534"),
+        ("8535", "CSIDL_FLAG_CREATE|0x00000535"),
+        ("8536", "CSIDL_FLAG_CREATE|0x00000536"),
+        ("8537", "CSIDL_FLAG_CREATE|0x00000537"),
+        ("8538", "CSIDL_FLAG_CREATE|0x00000538"),
+        ("8539", "CSIDL_FLAG_CREATE|0x00000539"),
+        ("8540", "CSIDL_FLAG_CREATE|0x00000540"),
+        ("8541", "CSIDL_FLAG_CREATE|0x00000541"),
+        ("8542", "CSIDL_FLAG_CREATE|0x00000542"),
+        ("8543", "CSIDL_FLAG_CREATE|0x00000543"),
+        ("8544", "CSIDL_FLAG_CREATE|0x00000544"),
+        ("8545", "CSIDL_FLAG_CREATE|0x00000545"),
+        ("8546", "CSIDL_FLAG_CREATE|0x00000546"),
+        ("8547", "CSIDL_FLAG_CREATE|0x00000547"),
+        ("8548", "CSIDL_FLAG_CREATE|0x00000548"),
+        ("8549", "CSIDL_FLAG_CREATE|0x00000549"),
+        ("8550", "CSIDL_FLAG_CREATE|0x00000550"),
+        ("8551", "CSIDL_FLAG_CREATE|0x00000551"),
+        ("8552", "CSIDL_FLAG_CREATE|0x00000552"),
+        ("8553", "CSIDL_FLAG_CREATE|0x00000553"),
+        ("8554", "CSIDL_FLAG_CREATE|0x00000554"),
+        ("8555", "CSIDL_FLAG_CREATE|0x00000555"),
+        ("8556", "CSIDL_FLAG_CREATE|0x00000556"),
+        ("8557", "CSIDL_FLAG_CREATE|0x00000557"),
+        ("8558", "CSIDL_FLAG_CREATE|0x00000558"),
+        ("8559", "CSIDL_FLAG_CREATE|0x00000559"),
+        ("8560", "CSIDL_FLAG_CREATE|0x00000560"),
+        ("8561", "CSIDL_FLAG_CREATE|0x00000561"),
+        ("8562", "CSIDL_FLAG_CREATE|0x00000562"),
+        ("8563", "CSIDL_FLAG_CREATE|0x00000563"),
+        ("8564", "CSIDL_FLAG_CREATE|0x00000564"),
+        ("8565", "CSIDL_FLAG_CREATE|0x00000565"),
+        ("8566", "CSIDL_FLAG_CREATE|0x00000566"),
+        ("8567", "CSIDL_FLAG_CREATE|0x00000567"),
+        ("8568", "CSIDL_FLAG_CREATE|0x00000568"),
+        ("8569", "CSIDL_FLAG_CREATE|0x00000569"),
+        ("8570", "CSIDL_FLAG_CREATE|0x00000570"),
+        ("8571", "CSIDL_FLAG_CREATE|0x00000571"),
+        ("8572", "CSIDL_FLAG_CREATE|0x00000572"),
+        ("8573", "CSIDL_FLAG_CREATE|0x00000573"),
+        ("8574", "CSIDL_FLAG_CREATE|0x00000574"),
+        ("8575", "CSIDL_FLAG_CREATE|0x00000575"),
+        ("8576", "CSIDL_FLAG_CREATE|0x00000576"),
+        ("8577", "CSIDL_FLAG_CREATE|0x00000577"),
+        ("8578", "CSIDL_FLAG_CREATE|0x00000578"),
+        ("8579", "CSIDL_FLAG_CREATE|0x00000579"),
+        ("8580", "CSIDL_FLAG_CREATE|0x00000580"),
+        ("8581", "CSIDL_FLAG_CREATE|0x00000581"),
+        ("8582", "CSIDL_FLAG_CREATE|0x00000582"),
+        ("8583", "CSIDL_FLAG_CREATE|0x00000583"),
+        ("8584", "CSIDL_FLAG_CREATE|0x00000584"),
+        ("8585", "CSIDL_FLAG_CREATE|0x00000585"),
+        ("8586", "CSIDL_FLAG_CREATE|0x00000586"),
+        ("8587", "CSIDL_FLAG_CREATE|0x00000587"),
+        ("8588", "CSIDL_FLAG_CREATE|0x00000588"),
+        ("8589", "CSIDL_FLAG_CREATE|0x00000589"),
+        ("8590", "CSIDL_FLAG_CREATE|0x00000590"),
+        ("8591", "CSIDL_FLAG_CREATE|0x00000591"),
+        ("8592", "CSIDL_FLAG_CREATE|0x00000592"),
+        ("8593", "CSIDL_FLAG_CREATE|0x00000593"),
+        ("8594", "CSIDL_FLAG_CREATE|0x00000594"),
+        ("8595", "CSIDL_FLAG_CREATE|0x00000595"),
+        ("8596", "CSIDL_FLAG_CREATE|0x00000596"),
+        ("8597", "CSIDL_FLAG_CREATE|0x00000597"),
+        ("8598", "CSIDL_FLAG_CREATE|0x00000598"),
+        ("8599", "CSIDL_FLAG_CREATE|0x00000599"),
+        ("8600", "CSIDL_FLAG_CREATE|0x00000600"),
+        ("8601", "CSIDL_FLAG_CREATE|0x00000601"),
+        ("8602", "CSIDL_FLAG_CREATE|0x00000602"),
+        ("8603", "CSIDL_FLAG_CREATE|0x00000603"),
+        ("8604", "CSIDL_FLAG_CREATE|0x00000604"),
+        ("8605", "CSIDL_FLAG_CREATE|0x00000605"),
+        ("8606", "CSIDL_FLAG_CREATE|0x00000606"),
+        ("8607", "CSIDL_FLAG_CREATE|0x00000607"),
+        ("8608", "CSIDL_FLAG_CREATE|0x00000608"),
+        ("8609", "CSIDL_FLAG_CREATE|0x00000609"),
+        ("8610", "CSIDL_FLAG_CREATE|0x00000610"),
+        ("8611", "CSIDL_FLAG_CREATE|0x00000611"),
+        ("8612", "CSIDL_FLAG_CREATE|0x00000612"),
+        ("8613", "CSIDL_FLAG_CREATE|0x00000613"),
+        ("8614", "CSIDL_FLAG_CREATE|0x00000614"),
+        ("8615", "CSIDL_FLAG_CREATE|0x00000615"),
+        ("8616", "CSIDL_FLAG_CREATE|0x00000616"),
+        ("8617", "CSIDL_FLAG_CREATE|0x00000617"),
+        ("8618", "CSIDL_FLAG_CREATE|0x00000618"),
+        ("8619", "CSIDL_FLAG_CREATE|0x00000619"),
+        ("8620", "CSIDL_FLAG_CREATE|0x00000620"),
+        ("8621", "CSIDL_FLAG_CREATE|0x00000621"),
+        ("8622", "CSIDL_FLAG_CREATE|0x00000622"),
+        ("8623", "CSIDL_FLAG_CREATE|0x00000623"),
+        ("8624", "CSIDL_FLAG_CREATE|0x00000624"),
+        ("8625", "CSIDL_FLAG_CREATE|0x00000625"),
+        ("8626", "CSIDL_FLAG_CREATE|0x00000626"),
+        ("8627", "CSIDL_FLAG_CREATE|0x00000627"),
+        ("8628", "CSIDL_FLAG_CREATE|0x00000628"),
+        ("8629", "CSIDL_FLAG_CREATE|0x00000629"),
+        ("8630", "CSIDL_FLAG_CREATE|0x00000630"),
+        ("8631", "CSIDL_FLAG_CREATE|0x00000631"),
+        ("8632", "CSIDL_FLAG_CREATE|0x00000632"),
+        ("8633", "CSIDL_FLAG_CREATE|0x00000633"),
+        ("8634", "CSIDL_FLAG_CREATE|0x00000634"),
+        ("8635", "CSIDL_FLAG_CREATE|0x00000635"),
+        ("8636", "CSIDL_FLAG_CREATE|0x00000636"),
+        ("8637", "CSIDL_FLAG_CREATE|0x00000637"),
+        ("8638", "CSIDL_FLAG_CREATE|0x00000638"),
+        ("8639", "CSIDL_FLAG_CREATE|0x00000639"),
+        ("8640", "CSIDL_FLAG_CREATE|0x00000640"),
+        ("8641", "CSIDL_FLAG_CREATE|0x00000641"),
+        ("8642", "CSIDL_FLAG_CREATE|0x00000642"),
+        ("8643", "CSIDL_FLAG_CREATE|0x00000643"),
+        ("8644", "CSIDL_FLAG_CREATE|0x00000644"),
+        ("8645", "CSIDL_FLAG_CREATE|0x00000645"),
+        ("8646", "CSIDL_FLAG_CREATE|0x00000646"),
+        ("8647", "CSIDL_FLAG_CREATE|0x00000647"),
+        ("8648", "CSIDL_FLAG_CREATE|0x00000648"),
+        ("8649", "CSIDL_FLAG_CREATE|0x00000649"),
+        ("8650", "CSIDL_FLAG_CREATE|0x00000650"),
+        ("8651", "CSIDL_FLAG_CREATE|0x00000651"),
+        ("8652", "CSIDL_FLAG_CREATE|0x00000652"),
+        ("8653", "CSIDL_FLAG_CREATE|0x00000653"),
+        ("8654", "CSIDL_FLAG_CREATE|0x00000654"),
+        ("8655", "CSIDL_FLAG_CREATE|0x00000655"),
+        ("8656", "CSIDL_FLAG_CREATE|0x00000656"),
+        ("8657", "CSIDL_FLAG_CREATE|0x00000657"),
+        ("8658", "CSIDL_FLAG_CREATE|0x00000658"),
+        ("8659", "CSIDL_FLAG_CREATE|0x00000659"),
+        ("8660", "CSIDL_FLAG_CREATE|0x00000660"),
+        ("8661", "CSIDL_FLAG_CREATE|0x00000661"),
+        ("8662", "CSIDL_FLAG_CREATE|0x00000662"),
+        ("8663", "CSIDL_FLAG_CREATE|0x00000663"),
+        ("8664", "CSIDL_FLAG_CREATE|0x00000664"),
+        ("8665", "CSIDL_FLAG_CREATE|0x00000665"),
+        ("8666", "CSIDL_FLAG_CREATE|0x00000666"),
+        ("8667", "CSIDL_FLAG_CREATE|0x00000667"),
+        ("8668", "CSIDL_FLAG_CREATE|0x00000668"),
+        ("8669", "CSIDL_FLAG_CREATE|0x00000669"),
+        ("8670", "CSIDL_FLAG_CREATE|0x00000670"),
+        ("8671", "CSIDL_FLAG_CREATE|0x00000671"),
+        ("8672", "CSIDL_FLAG_CREATE|0x00000672"),
+        ("8673", "CSIDL_FLAG_CREATE|0x00000673"),
+        ("8674", "CSIDL_FLAG_CREATE|0x00000674"),
+        ("8675", "CSIDL_FLAG_CREATE|0x00000675"),
+        ("8676", "CSIDL_FLAG_CREATE|0x00000676"),
+        ("8677", "CSIDL_FLAG_CREATE|0x00000677"),
+        ("8678", "CSIDL_FLAG_CREATE|0x00000678"),
+        ("8679", "CSIDL_FLAG_CREATE|0x00000679"),
+        ("8680", "CSIDL_FLAG_CREATE|0x00000680"),
+        ("8681", "CSIDL_FLAG_CREATE|0x00000681"),
+        ("8682", "CSIDL_FLAG_CREATE|0x00000682"),
+        ("8683", "CSIDL_FLAG_CREATE|0x00000683"),
+        ("8684", "CSIDL_FLAG_CREATE|0x00000684"),
+        ("8685", "CSIDL_FLAG_CREATE|0x00000685"),
+        ("8686", "CSIDL_FLAG_CREATE|0x00000686"),
+        ("8687", "CSIDL_FLAG_CREATE|0x00000687"),
+        ("8688", "CSIDL_FLAG_CREATE|0x00000688"),
+        ("8689", "CSIDL_FLAG_CREATE|0x00000689"),
+        ("8690", "CSIDL_FLAG_CREATE|0x00000690"),
+        ("8691", "CSIDL_FLAG_CREATE|0x00000691"),
+        ("8692", "CSIDL_FLAG_CREATE|0x00000692"),
+        ("8693", "CSIDL_FLAG_CREATE|0x00000693"),
+        ("8694", "CSIDL_FLAG_CREATE|0x00000694"),
+        ("8695", "CSIDL_FLAG_CREATE|0x00000695"),
+        ("8696", "CSIDL_FLAG_CREATE|0x00000696"),
+        ("8697", "CSIDL_FLAG_CREATE|0x00000697"),
+        ("8698", "CSIDL_FLAG_CREATE|0x00000698"),
+        ("8699", "CSIDL_FLAG_CREATE|0x00000699"),
+        ("8700", "CSIDL_FLAG_CREATE|0x00000700"),
+        ("8701", "CSIDL_FLAG_CREATE|0x00000701"),
+        ("8702", "CSIDL_FLAG_CREATE|0x00000702"),
+        ("8703", "CSIDL_FLAG_CREATE|0x00000703"),
+        ("8704", "CSIDL_FLAG_CREATE|0x00000704"),
+        ("8705", "CSIDL_FLAG_CREATE|0x00000705"),
+        ("8706", "CSIDL_FLAG_CREATE|0x00000706"),
+        ("8707", "CSIDL_FLAG_CREATE|0x00000707"),
+        ("8708", "CSIDL_FLAG_CREATE|0x00000708"),
+        ("8709", "CSIDL_FLAG_CREATE|0x00000709"),
+        ("8710", "CSIDL_FLAG_CREATE|0x00000710"),
+        ("8711", "CSIDL_FLAG_CREATE|0x00000711"),
+        ("8712", "CSIDL_FLAG_CREATE|0x00000712"),
+        ("8713", "CSIDL_FLAG_CREATE|0x00000713"),
+        ("8714", "CSIDL_FLAG_CREATE|0x00000714"),
+        ("8715", "CSIDL_FLAG_CREATE|0x00000715"),
+        ("8716", "CSIDL_FLAG_CREATE|0x00000716"),
+        ("8717", "CSIDL_FLAG_CREATE|0x00000717"),
+        ("8718", "CSIDL_FLAG_CREATE|0x00000718"),
+        ("8719", "CSIDL_FLAG_CREATE|0x00000719"),
+        ("8720", "CSIDL_FLAG_CREATE|0x00000720"),
+        ("8721", "CSIDL_FLAG_CREATE|0x00000721"),
+        ("8722", "CSIDL_FLAG_CREATE|0x00000722"),
+        ("8723", "CSIDL_FLAG_CREATE|0x00000723"),
+        ("8724", "CSIDL_FLAG_CREATE|0x00000724"),
+        ("8725", "CSIDL_FLAG_CREATE|0x00000725"),
+        ("8726", "CSIDL_FLAG_CREATE|0x00000726"),
+        ("8727", "CSIDL_FLAG_CREATE|0x00000727"),
+        ("8728", "CSIDL_FLAG_CREATE|0x00000728"),
+        ("8729", "CSIDL_FLAG_CREATE|0x00000729"),
+        ("8730", "CSIDL_FLAG_CREATE|0x00000730"),
+        ("8731", "CSIDL_FLAG_CREATE|0x00000731"),
+        ("8732", "CSIDL_FLAG_CREATE|0x00000732"),
+        ("8733", "CSIDL_FLAG_CREATE|0x00000733"),
+        ("8734", "CSIDL_FLAG_CREATE|0x00000734"),
+        ("8735", "CSIDL_FLAG_CREATE|0x00000735"),
+        ("8736", "CSIDL_FLAG_CREATE|0x00000736"),
+        ("8737", "CSIDL_FLAG_CREATE|0x00000737"),
+        ("8738", "CSIDL_FLAG_CREATE|0x00000738"),
+        ("8739", "CSIDL_FLAG_CREATE|0x00000739"),
+        ("8740", "CSIDL_FLAG_CREATE|0x00000740"),
+        ("8741", "CSIDL_FLAG_CREATE|0x00000741"),
+        ("8742", "CSIDL_FLAG_CREATE|0x00000742"),
+        ("8743", "CSIDL_FLAG_CREATE|0x00000743"),
+        ("8744", "CSIDL_FLAG_CREATE|0x00000744"),
+        ("8745", "CSIDL_FLAG_CREATE|0x00000745"),
+        ("8746", "CSIDL_FLAG_CREATE|0x00000746"),
+        ("8747", "CSIDL_FLAG_CREATE|0x00000747"),
+        ("8748", "CSIDL_FLAG_CREATE|0x00000748"),
+        ("8749", "CSIDL_FLAG_CREATE|0x00000749"),
+        ("8750", "CSIDL_FLAG_CREATE|0x00000750"),
+        ("8751", "CSIDL_FLAG_CREATE|0x00000751"),
+        ("8752", "CSIDL_FLAG_CREATE|0x00000752"),
+        ("8753", "CSIDL_FLAG_CREATE|0x00000753"),
+        ("8754", "CSIDL_FLAG_CREATE|0x00000754"),
+        ("8755", "CSIDL_FLAG_CREATE|0x00000755"),
+        ("8756", "CSIDL_FLAG_CREATE|0x00000756"),
+        ("8757", "CSIDL_FLAG_CREATE|0x00000757"),
+        ("8758", "CSIDL_FLAG_CREATE|0x00000758"),
+        ("8759", "CSIDL_FLAG_CREATE|0x00000759"),
+        ("8760", "CSIDL_FLAG_CREATE|0x00000760"),
+        ("8761", "CSIDL_FLAG_CREATE|0x00000761"),
+        ("8762", "CSIDL_FLAG_CREATE|0x00000762"),
+        ("8763", "CSIDL_FLAG_CREATE|0x00000763"),
+        ("8764", "CSIDL_FLAG_CREATE|0x00000764"),
+        ("8765", "CSIDL_FLAG_CREATE|0x00000765"),
+        ("8766", "CSIDL_FLAG_CREATE|0x00000766"),
+        ("8767", "CSIDL_FLAG_CREATE|0x00000767"),
+        ("8768", "CSIDL_FLAG_CREATE|0x00000768"),
+        ("8769", "CSIDL_FLAG_CREATE|0x00000769"),
+        ("8770", "CSIDL_FLAG_CREATE|0x00000770"),
+        ("8771", "CSIDL_FLAG_CREATE|0x00000771"),
+        ("8772", "CSIDL_FLAG_CREATE|0x00000772"),
+        ("8773", "CSIDL_FLAG_CREATE|0x00000773"),
+        ("8774", "CSIDL_FLAG_CREATE|0x00000774"),
+        ("8775", "CSIDL_FLAG_CREATE|0x00000775"),
+        ("8776", "CSIDL_FLAG_CREATE|0x00000776"),
+        ("8777", "CSIDL_FLAG_CREATE|0x00000777"),
+        ("8778", "CSIDL_FLAG_CREATE|0x00000778"),
+        ("8779", "CSIDL_FLAG_CREATE|0x00000779"),
+        ("8780", "CSIDL_FLAG_CREATE|0x00000780"),
+        ("8781", "CSIDL_FLAG_CREATE|0x00000781"),
+        ("8782", "CSIDL_FLAG_CREATE|0x00000782"),
+        ("8783", "CSIDL_FLAG_CREATE|0x00000783"),
+        ("8784", "CSIDL_FLAG_CREATE|0x00000784"),
+        ("8785", "CSIDL_FLAG_CREATE|0x00000785"),
+        ("8786", "CSIDL_FLAG_CREATE|0x00000786"),
+        ("8787", "CSIDL_FLAG_CREATE|0x00000787"),
+        ("8788", "CSIDL_FLAG_CREATE|0x00000788"),
+        ("8789", "CSIDL_FLAG_CREATE|0x00000789"),
+        ("8790", "CSIDL_FLAG_CREATE|0x00000790"),
+        ("8791", "CSIDL_FLAG_CREATE|0x00000791"),
+        ("8792", "CSIDL_FLAG_CREATE|0x00000792"),
+        ("8793", "CSIDL_FLAG_CREATE|0x00000793"),
+        ("8794", "CSIDL_FLAG_CREATE|0x00000794"),
+        ("8795", "CSIDL_FLAG_CREATE|0x00000795"),
+        ("8796", "CSIDL_FLAG_CREATE|0x00000796"),
+        ("8797", "CSIDL_FLAG_CREATE|0x00000797"),
+        ("8798", "CSIDL_FLAG_CREATE|0x00000798"),
+        ("8799", "CSIDL_FLAG_CREATE|0x00000799"),
+        ("8800", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|CSIDL_DESKTOP"),
+        ("8801", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|CSIDL_INTERNET"),
+        ("8802", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|CSIDL_PROGRAMS"),
+        ("8803", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|CSIDL_CONTROLS"),
+        ("8804", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|CSIDL_PRINTERS"),
+        ("8805", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|CSIDL_MYDOCUMENTS"),
+        ("8806", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|CSIDL_FAVORITES"),
+        ("8807", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|CSIDL_STARTUP"),
+        ("8808", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|CSIDL_RECENT"),
+        ("8809", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|CSIDL_SENDTO"),
+        ("8810", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|CSIDL_DESKTOPDIRECTORY"),
+        ("8811", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|CSIDL_DRIVES"),
+        ("8812", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|CSIDL_NETWORK"),
+        ("8813", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|CSIDL_NETHOOD"),
+        ("8814", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|CSIDL_FONTS"),
+        ("8815", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|CSIDL_TEMPLATES"),
+        ("8816", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|CSIDL_COMMON_STARTMENU"),
+        ("8817", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|CSIDL_COMMON_PROGRAMS"),
+        ("8818", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|CSIDL_COMMON_STARTUP"),
+        ("8819", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|CSIDL_COMMON_DESKTOPDIRECTORY"),
+        ("8820", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|CSIDL_INTERNET_CACHE"),
+        ("8821", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|CSIDL_COOKIES"),
+        ("8822", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|CSIDL_HISTORY"),
+        ("8823", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|CSIDL_COMMON_APPDATA"),
+        ("8824", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|CSIDL_WINDOWS"),
+        ("8825", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|CSIDL_SYSTEM"),
+        ("8826", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|CSIDL_PROGRAM_FILES"),
+        ("8827", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|CSIDL_MYPICTURES"),
+        ("8828", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|CSIDL_PROFILE"),
+        ("8829", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|CSIDL_SYSTEMX86"),
+        ("8830", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|CSIDL_ADMINTOOLS"),
+        ("8831", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|CSIDL_CONNECTIONS"),
+        ("8832", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000032"),
+        ("8833", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000033"),
+        ("8834", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000034"),
+        ("8835", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|CSIDL_COMMON_MUSIC"),
+        ("8836", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|CSIDL_COMMON_PICTURES"),
+        ("8837", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|CSIDL_COMMON_VIDEO"),
+        ("8838", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|CSIDL_RESOURCES"),
+        ("8839", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|CSIDL_RESOURCES_LOCALIZED"),
+        ("8840", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000040"),
+        ("8841", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000041"),
+        ("8842", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000042"),
+        ("8843", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000043"),
+        ("8844", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000044"),
+        ("8845", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000045"),
+        ("8846", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000046"),
+        ("8847", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000047"),
+        ("8848", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000048"),
+        ("8849", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000049"),
+        ("8850", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000050"),
+        ("8851", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000051"),
+        ("8852", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000052"),
+        ("8853", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000053"),
+        ("8854", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000054"),
+        ("8855", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000055"),
+        ("8856", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000056"),
+        ("8857", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000057"),
+        ("8858", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000058"),
+        ("8859", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000059"),
+        ("8860", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000060"),
+        ("8861", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000061"),
+        ("8862", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000062"),
+        ("8863", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000063"),
+        ("8864", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000064"),
+        ("8865", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000065"),
+        ("8866", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000066"),
+        ("8867", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000067"),
+        ("8868", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000068"),
+        ("8869", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000069"),
+        ("8870", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000070"),
+        ("8871", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000071"),
+        ("8872", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000072"),
+        ("8873", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000073"),
+        ("8874", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000074"),
+        ("8875", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000075"),
+        ("8876", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000076"),
+        ("8877", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000077"),
+        ("8878", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000078"),
+        ("8879", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000079"),
+        ("8880", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000080"),
+        ("8881", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000081"),
+        ("8882", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000082"),
+        ("8883", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000083"),
+        ("8884", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000084"),
+        ("8885", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000085"),
+        ("8886", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000086"),
+        ("8887", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000087"),
+        ("8888", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000088"),
+        ("8889", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000089"),
+        ("8890", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000090"),
+        ("8891", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000091"),
+        ("8892", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000092"),
+        ("8893", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000093"),
+        ("8894", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000094"),
+        ("8895", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000095"),
+        ("8896", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000096"),
+        ("8897", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000097"),
+        ("8898", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000098"),
+        ("8899", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000099"),
+        ("8900", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000100"),
+        ("8901", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000101"),
+        ("8902", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000102"),
+        ("8903", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000103"),
+        ("8904", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000104"),
+        ("8905", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000105"),
+        ("8906", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000106"),
+        ("8907", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000107"),
+        ("8908", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000108"),
+        ("8909", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000109"),
+        ("8910", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000110"),
+        ("8911", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000111"),
+        ("8912", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000112"),
+        ("8913", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000113"),
+        ("8914", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000114"),
+        ("8915", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000115"),
+        ("8916", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000116"),
+        ("8917", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000117"),
+        ("8918", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000118"),
+        ("8919", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000119"),
+        ("8920", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000120"),
+        ("8921", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000121"),
+        ("8922", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000122"),
+        ("8923", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000123"),
+        ("8924", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000124"),
+        ("8925", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000125"),
+        ("8926", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000126"),
+        ("8927", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000127"),
+        ("8928", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000128"),
+        ("8929", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000129"),
+        ("8930", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000130"),
+        ("8931", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000131"),
+        ("8932", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000132"),
+        ("8933", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000133"),
+        ("8934", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000134"),
+        ("8935", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000135"),
+        ("8936", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000136"),
+        ("8937", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000137"),
+        ("8938", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000138"),
+        ("8939", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000139"),
+        ("8940", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000140"),
+        ("8941", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000141"),
+        ("8942", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000142"),
+        ("8943", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000143"),
+        ("8944", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000144"),
+        ("8945", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000145"),
+        ("8946", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000146"),
+        ("8947", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000147"),
+        ("8948", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000148"),
+        ("8949", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000149"),
+        ("8950", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000150"),
+        ("8951", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000151"),
+        ("8952", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000152"),
+        ("8953", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000153"),
+        ("8954", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000154"),
+        ("8955", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000155"),
+        ("8956", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000156"),
+        ("8957", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000157"),
+        ("8958", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000158"),
+        ("8959", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000159"),
+        ("8960", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000160"),
+        ("8961", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000161"),
+        ("8962", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000162"),
+        ("8963", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000163"),
+        ("8964", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000164"),
+        ("8965", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000165"),
+        ("8966", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000166"),
+        ("8967", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000167"),
+        ("8968", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000168"),
+        ("8969", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000169"),
+        ("8970", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000170"),
+        ("8971", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000171"),
+        ("8972", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000172"),
+        ("8973", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000173"),
+        ("8974", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000174"),
+        ("8975", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000175"),
+        ("8976", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000176"),
+        ("8977", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000177"),
+        ("8978", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000178"),
+        ("8979", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000179"),
+        ("8980", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000180"),
+        ("8981", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000181"),
+        ("8982", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000182"),
+        ("8983", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000183"),
+        ("8984", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000184"),
+        ("8985", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000185"),
+        ("8986", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000186"),
+        ("8987", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000187"),
+        ("8988", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000188"),
+        ("8989", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000189"),
+        ("8990", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000190"),
+        ("8991", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000191"),
+        ("8992", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000192"),
+        ("8993", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000193"),
+        ("8994", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000194"),
+        ("8995", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000195"),
+        ("8996", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000196"),
+        ("8997", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000197"),
+        ("8998", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000198"),
+        ("8999", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00000199"),
+        ("9000", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_DESKTOP"),
+        ("9001", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_INTERNET"),
+        ("9002", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_PROGRAMS"),
+        ("9003", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_CONTROLS"),
+        ("9004", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_PRINTERS"),
+        ("9005", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_MYDOCUMENTS"),
+        ("9006", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_FAVORITES"),
+        ("9007", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_STARTUP"),
+        ("9008", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_RECENT"),
+        ("9009", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_SENDTO"),
+        ("9010", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_DESKTOPDIRECTORY"),
+        ("9011", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_DRIVES"),
+        ("9012", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_NETWORK"),
+        ("9013", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_NETHOOD"),
+        ("9014", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_FONTS"),
+        ("9015", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_TEMPLATES"),
+        ("9016", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_COMMON_STARTMENU"),
+        ("9017", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_COMMON_PROGRAMS"),
+        ("9018", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_COMMON_STARTUP"),
+        ("9019", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_COMMON_DESKTOPDIRECTORY"),
+        ("9020", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_INTERNET_CACHE"),
+        ("9021", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_COOKIES"),
+        ("9022", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_HISTORY"),
+        ("9023", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_COMMON_APPDATA"),
+        ("9024", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_WINDOWS"),
+        ("9025", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_SYSTEM"),
+        ("9026", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_PROGRAM_FILES"),
+        ("9027", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_MYPICTURES"),
+        ("9028", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_PROFILE"),
+        ("9029", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_SYSTEMX86"),
+        ("9030", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_ADMINTOOLS"),
+        ("9031", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_CONNECTIONS"),
+        ("9032", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000032"),
+        ("9033", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000033"),
+        ("9034", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000034"),
+        ("9035", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_COMMON_MUSIC"),
+        ("9036", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_COMMON_PICTURES"),
+        ("9037", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_COMMON_VIDEO"),
+        ("9038", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_RESOURCES"),
+        ("9039", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_RESOURCES_LOCALIZED"),
+        ("9040", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000040"),
+        ("9041", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000041"),
+        ("9042", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000042"),
+        ("9043", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000043"),
+        ("9044", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000044"),
+        ("9045", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000045"),
+        ("9046", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000046"),
+        ("9047", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000047"),
+        ("9048", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000048"),
+        ("9049", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000049"),
+        ("9050", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000050"),
+        ("9051", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000051"),
+        ("9052", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000052"),
+        ("9053", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000053"),
+        ("9054", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000054"),
+        ("9055", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000055"),
+        ("9056", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000056"),
+        ("9057", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000057"),
+        ("9058", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000058"),
+        ("9059", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000059"),
+        ("9060", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000060"),
+        ("9061", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000061"),
+        ("9062", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000062"),
+        ("9063", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000063"),
+        ("9064", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000064"),
+        ("9065", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000065"),
+        ("9066", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000066"),
+        ("9067", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000067"),
+        ("9068", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000068"),
+        ("9069", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000069"),
+        ("9070", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000070"),
+        ("9071", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000071"),
+        ("9072", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000072"),
+        ("9073", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000073"),
+        ("9074", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000074"),
+        ("9075", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000075"),
+        ("9076", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000076"),
+        ("9077", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000077"),
+        ("9078", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000078"),
+        ("9079", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000079"),
+        ("9080", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000080"),
+        ("9081", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000081"),
+        ("9082", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000082"),
+        ("9083", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000083"),
+        ("9084", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000084"),
+        ("9085", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000085"),
+        ("9086", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000086"),
+        ("9087", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000087"),
+        ("9088", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000088"),
+        ("9089", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000089"),
+        ("9090", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000090"),
+        ("9091", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000091"),
+        ("9092", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000092"),
+        ("9093", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000093"),
+        ("9094", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000094"),
+        ("9095", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000095"),
+        ("9096", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000096"),
+        ("9097", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000097"),
+        ("9098", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000098"),
+        ("9099", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000099"),
+        ("9100", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000100"),
+        ("9101", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000101"),
+        ("9102", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000102"),
+        ("9103", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000103"),
+        ("9104", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000104"),
+        ("9105", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000105"),
+        ("9106", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000106"),
+        ("9107", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000107"),
+        ("9108", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000108"),
+        ("9109", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000109"),
+        ("9110", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000110"),
+        ("9111", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000111"),
+        ("9112", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000112"),
+        ("9113", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000113"),
+        ("9114", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000114"),
+        ("9115", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000115"),
+        ("9116", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000116"),
+        ("9117", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000117"),
+        ("9118", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000118"),
+        ("9119", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000119"),
+        ("9120", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000120"),
+        ("9121", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000121"),
+        ("9122", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000122"),
+        ("9123", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000123"),
+        ("9124", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000124"),
+        ("9125", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000125"),
+        ("9126", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000126"),
+        ("9127", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000127"),
+        ("9128", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000128"),
+        ("9129", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000129"),
+        ("9130", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000130"),
+        ("9131", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000131"),
+        ("9132", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000132"),
+        ("9133", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000133"),
+        ("9134", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000134"),
+        ("9135", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000135"),
+        ("9136", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000136"),
+        ("9137", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000137"),
+        ("9138", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000138"),
+        ("9139", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000139"),
+        ("9140", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000140"),
+        ("9141", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000141"),
+        ("9142", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000142"),
+        ("9143", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000143"),
+        ("9144", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000144"),
+        ("9145", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000145"),
+        ("9146", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000146"),
+        ("9147", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000147"),
+        ("9148", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000148"),
+        ("9149", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000149"),
+        ("9150", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000150"),
+        ("9151", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000151"),
+        ("9152", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000152"),
+        ("9153", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000153"),
+        ("9154", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000154"),
+        ("9155", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000155"),
+        ("9156", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000156"),
+        ("9157", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000157"),
+        ("9158", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000158"),
+        ("9159", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000159"),
+        ("9160", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000160"),
+        ("9161", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000161"),
+        ("9162", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000162"),
+        ("9163", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000163"),
+        ("9164", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000164"),
+        ("9165", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000165"),
+        ("9166", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000166"),
+        ("9167", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000167"),
+        ("9168", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000168"),
+        ("9169", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000169"),
+        ("9170", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000170"),
+        ("9171", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000171"),
+        ("9172", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000172"),
+        ("9173", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000173"),
+        ("9174", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000174"),
+        ("9175", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000175"),
+        ("9176", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000176"),
+        ("9177", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000177"),
+        ("9178", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000178"),
+        ("9179", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000179"),
+        ("9180", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000180"),
+        ("9181", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000181"),
+        ("9182", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000182"),
+        ("9183", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000183"),
+        ("9184", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000184"),
+        ("9185", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000185"),
+        ("9186", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000186"),
+        ("9187", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000187"),
+        ("9188", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000188"),
+        ("9189", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000189"),
+        ("9190", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000190"),
+        ("9191", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000191"),
+        ("9192", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000192"),
+        ("9193", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000193"),
+        ("9194", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000194"),
+        ("9195", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000195"),
+        ("9196", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000196"),
+        ("9197", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000197"),
+        ("9198", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000198"),
+        ("9199", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000199"),
+        ("9200", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000200"),
+        ("9201", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000201"),
+        ("9202", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000202"),
+        ("9203", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000203"),
+        ("9204", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000204"),
+        ("9205", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000205"),
+        ("9206", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000206"),
+        ("9207", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000207"),
+        ("9208", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000208"),
+        ("9209", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000209"),
+        ("9210", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000210"),
+        ("9211", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000211"),
+        ("9212", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000212"),
+        ("9213", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000213"),
+        ("9214", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000214"),
+        ("9215", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000215"),
+        ("9216", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000216"),
+        ("9217", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000217"),
+        ("9218", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000218"),
+        ("9219", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000219"),
+        ("9220", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000220"),
+        ("9221", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000221"),
+        ("9222", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000222"),
+        ("9223", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000223"),
+        ("9224", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000224"),
+        ("9225", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000225"),
+        ("9226", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000226"),
+        ("9227", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000227"),
+        ("9228", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000228"),
+        ("9229", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000229"),
+        ("9230", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000230"),
+        ("9231", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000231"),
+        ("9232", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000232"),
+        ("9233", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000233"),
+        ("9234", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000234"),
+        ("9235", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000235"),
+        ("9236", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000236"),
+        ("9237", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000237"),
+        ("9238", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000238"),
+        ("9239", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000239"),
+        ("9240", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000240"),
+        ("9241", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000241"),
+        ("9242", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000242"),
+        ("9243", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000243"),
+        ("9244", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000244"),
+        ("9245", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000245"),
+        ("9246", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000246"),
+        ("9247", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000247"),
+        ("9248", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000248"),
+        ("9249", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000249"),
+        ("9250", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000250"),
+        ("9251", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000251"),
+        ("9252", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000252"),
+        ("9253", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000253"),
+        ("9254", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000254"),
+        ("9255", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000255"),
+        ("9256", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000256"),
+        ("9257", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000257"),
+        ("9258", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000258"),
+        ("9259", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000259"),
+        ("9260", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000260"),
+        ("9261", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000261"),
+        ("9262", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000262"),
+        ("9263", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000263"),
+        ("9264", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000264"),
+        ("9265", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000265"),
+        ("9266", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000266"),
+        ("9267", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000267"),
+        ("9268", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000268"),
+        ("9269", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000269"),
+        ("9270", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000270"),
+        ("9271", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000271"),
+        ("9272", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000272"),
+        ("9273", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000273"),
+        ("9274", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000274"),
+        ("9275", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000275"),
+        ("9276", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000276"),
+        ("9277", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000277"),
+        ("9278", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000278"),
+        ("9279", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000279"),
+        ("9280", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000280"),
+        ("9281", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000281"),
+        ("9282", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000282"),
+        ("9283", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000283"),
+        ("9284", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000284"),
+        ("9285", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000285"),
+        ("9286", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000286"),
+        ("9287", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000287"),
+        ("9288", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000288"),
+        ("9289", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000289"),
+        ("9290", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000290"),
+        ("9291", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000291"),
+        ("9292", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000292"),
+        ("9293", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000293"),
+        ("9294", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000294"),
+        ("9295", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000295"),
+        ("9296", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000296"),
+        ("9297", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000297"),
+        ("9298", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000298"),
+        ("9299", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000299"),
+        ("9300", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000300"),
+        ("9301", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000301"),
+        ("9302", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000302"),
+        ("9303", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000303"),
+        ("9304", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000304"),
+        ("9305", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000305"),
+        ("9306", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000306"),
+        ("9307", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000307"),
+        ("9308", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000308"),
+        ("9309", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000309"),
+        ("9310", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000310"),
+        ("9311", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000311"),
+        ("9312", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000312"),
+        ("9313", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000313"),
+        ("9314", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000314"),
+        ("9315", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000315"),
+        ("9316", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000316"),
+        ("9317", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000317"),
+        ("9318", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000318"),
+        ("9319", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000319"),
+        ("9320", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000320"),
+        ("9321", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000321"),
+        ("9322", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000322"),
+        ("9323", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000323"),
+        ("9324", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000324"),
+        ("9325", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000325"),
+        ("9326", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000326"),
+        ("9327", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000327"),
+        ("9328", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000328"),
+        ("9329", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000329"),
+        ("9330", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000330"),
+        ("9331", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000331"),
+        ("9332", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000332"),
+        ("9333", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000333"),
+        ("9334", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000334"),
+        ("9335", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000335"),
+        ("9336", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000336"),
+        ("9337", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000337"),
+        ("9338", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000338"),
+        ("9339", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000339"),
+        ("9340", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000340"),
+        ("9341", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000341"),
+        ("9342", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000342"),
+        ("9343", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000343"),
+        ("9344", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000344"),
+        ("9345", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000345"),
+        ("9346", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000346"),
+        ("9347", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000347"),
+        ("9348", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000348"),
+        ("9349", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000349"),
+        ("9350", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000350"),
+        ("9351", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000351"),
+        ("9352", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000352"),
+        ("9353", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000353"),
+        ("9354", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000354"),
+        ("9355", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000355"),
+        ("9356", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000356"),
+        ("9357", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000357"),
+        ("9358", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000358"),
+        ("9359", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000359"),
+        ("9360", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000360"),
+        ("9361", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000361"),
+        ("9362", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000362"),
+        ("9363", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000363"),
+        ("9364", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000364"),
+        ("9365", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000365"),
+        ("9366", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000366"),
+        ("9367", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000367"),
+        ("9368", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000368"),
+        ("9369", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000369"),
+        ("9370", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000370"),
+        ("9371", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000371"),
+        ("9372", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000372"),
+        ("9373", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000373"),
+        ("9374", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000374"),
+        ("9375", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000375"),
+        ("9376", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000376"),
+        ("9377", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000377"),
+        ("9378", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000378"),
+        ("9379", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000379"),
+        ("9380", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000380"),
+        ("9381", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000381"),
+        ("9382", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000382"),
+        ("9383", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000383"),
+        ("9384", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000384"),
+        ("9385", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000385"),
+        ("9386", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000386"),
+        ("9387", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000387"),
+        ("9388", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000388"),
+        ("9389", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000389"),
+        ("9390", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000390"),
+        ("9391", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000391"),
+        ("9392", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000392"),
+        ("9393", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000393"),
+        ("9394", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000394"),
+        ("9395", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000395"),
+        ("9396", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000396"),
+        ("9397", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000397"),
+        ("9398", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000398"),
+        ("9399", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000399"),
+        ("9400", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000400"),
+        ("9401", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000401"),
+        ("9402", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000402"),
+        ("9403", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000403"),
+        ("9404", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000404"),
+        ("9405", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000405"),
+        ("9406", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000406"),
+        ("9407", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000407"),
+        ("9408", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000408"),
+        ("9409", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000409"),
+        ("9410", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000410"),
+        ("9411", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000411"),
+        ("9412", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000412"),
+        ("9413", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000413"),
+        ("9414", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000414"),
+        ("9415", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000415"),
+        ("9416", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000416"),
+        ("9417", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000417"),
+        ("9418", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000418"),
+        ("9419", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000419"),
+        ("9420", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000420"),
+        ("9421", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000421"),
+        ("9422", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000422"),
+        ("9423", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000423"),
+        ("9424", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000424"),
+        ("9425", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000425"),
+        ("9426", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000426"),
+        ("9427", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000427"),
+        ("9428", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000428"),
+        ("9429", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000429"),
+        ("9430", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000430"),
+        ("9431", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000431"),
+        ("9432", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000432"),
+        ("9433", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000433"),
+        ("9434", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000434"),
+        ("9435", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000435"),
+        ("9436", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000436"),
+        ("9437", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000437"),
+        ("9438", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000438"),
+        ("9439", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000439"),
+        ("9440", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000440"),
+        ("9441", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000441"),
+        ("9442", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000442"),
+        ("9443", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000443"),
+        ("9444", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000444"),
+        ("9445", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000445"),
+        ("9446", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000446"),
+        ("9447", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000447"),
+        ("9448", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000448"),
+        ("9449", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000449"),
+        ("9450", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000450"),
+        ("9451", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000451"),
+        ("9452", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000452"),
+        ("9453", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000453"),
+        ("9454", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000454"),
+        ("9455", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000455"),
+        ("9456", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000456"),
+        ("9457", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000457"),
+        ("9458", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000458"),
+        ("9459", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000459"),
+        ("9460", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000460"),
+        ("9461", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000461"),
+        ("9462", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000462"),
+        ("9463", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000463"),
+        ("9464", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000464"),
+        ("9465", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000465"),
+        ("9466", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000466"),
+        ("9467", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000467"),
+        ("9468", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000468"),
+        ("9469", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000469"),
+        ("9470", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000470"),
+        ("9471", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000471"),
+        ("9472", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000472"),
+        ("9473", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000473"),
+        ("9474", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000474"),
+        ("9475", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000475"),
+        ("9476", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000476"),
+        ("9477", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000477"),
+        ("9478", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000478"),
+        ("9479", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000479"),
+        ("9480", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000480"),
+        ("9481", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000481"),
+        ("9482", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000482"),
+        ("9483", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000483"),
+        ("9484", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000484"),
+        ("9485", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000485"),
+        ("9486", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000486"),
+        ("9487", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000487"),
+        ("9488", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000488"),
+        ("9489", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000489"),
+        ("9490", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000490"),
+        ("9491", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000491"),
+        ("9492", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000492"),
+        ("9493", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000493"),
+        ("9494", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000494"),
+        ("9495", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000495"),
+        ("9496", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000496"),
+        ("9497", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000497"),
+        ("9498", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000498"),
+        ("9499", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000499"),
+        ("9500", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000500"),
+        ("9501", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000501"),
+        ("9502", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000502"),
+        ("9503", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000503"),
+        ("9504", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000504"),
+        ("9505", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000505"),
+        ("9506", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000506"),
+        ("9507", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000507"),
+        ("9508", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000508"),
+        ("9509", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000509"),
+        ("9510", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000510"),
+        ("9511", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000511"),
+        ("9512", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000512"),
+        ("9513", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000513"),
+        ("9514", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000514"),
+        ("9515", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000515"),
+        ("9516", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000516"),
+        ("9517", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000517"),
+        ("9518", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000518"),
+        ("9519", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000519"),
+        ("9520", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000520"),
+        ("9521", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000521"),
+        ("9522", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000522"),
+        ("9523", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000523"),
+        ("9524", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000524"),
+        ("9525", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000525"),
+        ("9526", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000526"),
+        ("9527", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000527"),
+        ("9528", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000528"),
+        ("9529", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000529"),
+        ("9530", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000530"),
+        ("9531", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000531"),
+        ("9532", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000532"),
+        ("9533", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000533"),
+        ("9534", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000534"),
+        ("9535", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000535"),
+        ("9536", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000536"),
+        ("9537", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000537"),
+        ("9538", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000538"),
+        ("9539", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000539"),
+        ("9540", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000540"),
+        ("9541", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000541"),
+        ("9542", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000542"),
+        ("9543", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000543"),
+        ("9544", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000544"),
+        ("9545", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000545"),
+        ("9546", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000546"),
+        ("9547", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000547"),
+        ("9548", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000548"),
+        ("9549", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000549"),
+        ("9550", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000550"),
+        ("9551", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000551"),
+        ("9552", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000552"),
+        ("9553", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000553"),
+        ("9554", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000554"),
+        ("9555", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000555"),
+        ("9556", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000556"),
+        ("9557", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000557"),
+        ("9558", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000558"),
+        ("9559", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000559"),
+        ("9560", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000560"),
+        ("9561", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000561"),
+        ("9562", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000562"),
+        ("9563", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000563"),
+        ("9564", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000564"),
+        ("9565", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000565"),
+        ("9566", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000566"),
+        ("9567", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000567"),
+        ("9568", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000568"),
+        ("9569", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000569"),
+        ("9570", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000570"),
+        ("9571", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000571"),
+        ("9572", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000572"),
+        ("9573", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000573"),
+        ("9574", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000574"),
+        ("9575", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000575"),
+        ("9576", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000576"),
+        ("9577", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000577"),
+        ("9578", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000578"),
+        ("9579", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000579"),
+        ("9580", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000580"),
+        ("9581", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000581"),
+        ("9582", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000582"),
+        ("9583", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000583"),
+        ("9584", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000584"),
+        ("9585", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000585"),
+        ("9586", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000586"),
+        ("9587", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000587"),
+        ("9588", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000588"),
+        ("9589", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000589"),
+        ("9590", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000590"),
+        ("9591", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000591"),
+        ("9592", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000592"),
+        ("9593", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000593"),
+        ("9594", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000594"),
+        ("9595", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000595"),
+        ("9596", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000596"),
+        ("9597", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000597"),
+        ("9598", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000598"),
+        ("9599", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000599"),
+        ("9600", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000600"),
+        ("9601", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000601"),
+        ("9602", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000602"),
+        ("9603", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000603"),
+        ("9604", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000604"),
+        ("9605", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000605"),
+        ("9606", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000606"),
+        ("9607", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000607"),
+        ("9608", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000608"),
+        ("9609", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000609"),
+        ("9610", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000610"),
+        ("9611", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000611"),
+        ("9612", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000612"),
+        ("9613", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000613"),
+        ("9614", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000614"),
+        ("9615", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000615"),
+        ("9616", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000616"),
+        ("9617", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000617"),
+        ("9618", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000618"),
+        ("9619", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000619"),
+        ("9620", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000620"),
+        ("9621", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000621"),
+        ("9622", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000622"),
+        ("9623", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000623"),
+        ("9624", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000624"),
+        ("9625", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000625"),
+        ("9626", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000626"),
+        ("9627", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000627"),
+        ("9628", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000628"),
+        ("9629", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000629"),
+        ("9630", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000630"),
+        ("9631", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000631"),
+        ("9632", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000632"),
+        ("9633", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000633"),
+        ("9634", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000634"),
+        ("9635", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000635"),
+        ("9636", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000636"),
+        ("9637", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000637"),
+        ("9638", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000638"),
+        ("9639", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000639"),
+        ("9640", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000640"),
+        ("9641", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000641"),
+        ("9642", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000642"),
+        ("9643", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000643"),
+        ("9644", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000644"),
+        ("9645", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000645"),
+        ("9646", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000646"),
+        ("9647", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000647"),
+        ("9648", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000648"),
+        ("9649", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000649"),
+        ("9650", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000650"),
+        ("9651", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000651"),
+        ("9652", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000652"),
+        ("9653", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000653"),
+        ("9654", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000654"),
+        ("9655", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000655"),
+        ("9656", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000656"),
+        ("9657", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000657"),
+        ("9658", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000658"),
+        ("9659", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000659"),
+        ("9660", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000660"),
+        ("9661", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000661"),
+        ("9662", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000662"),
+        ("9663", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000663"),
+        ("9664", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000664"),
+        ("9665", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000665"),
+        ("9666", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000666"),
+        ("9667", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000667"),
+        ("9668", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000668"),
+        ("9669", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000669"),
+        ("9670", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000670"),
+        ("9671", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000671"),
+        ("9672", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000672"),
+        ("9673", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000673"),
+        ("9674", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000674"),
+        ("9675", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000675"),
+        ("9676", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000676"),
+        ("9677", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000677"),
+        ("9678", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000678"),
+        ("9679", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000679"),
+        ("9680", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000680"),
+        ("9681", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000681"),
+        ("9682", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000682"),
+        ("9683", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000683"),
+        ("9684", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000684"),
+        ("9685", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000685"),
+        ("9686", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000686"),
+        ("9687", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000687"),
+        ("9688", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000688"),
+        ("9689", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000689"),
+        ("9690", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000690"),
+        ("9691", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000691"),
+        ("9692", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000692"),
+        ("9693", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000693"),
+        ("9694", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000694"),
+        ("9695", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000695"),
+        ("9696", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000696"),
+        ("9697", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000697"),
+        ("9698", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000698"),
+        ("9699", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000699"),
+        ("9700", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000700"),
+        ("9701", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000701"),
+        ("9702", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000702"),
+        ("9703", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000703"),
+        ("9704", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000704"),
+        ("9705", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000705"),
+        ("9706", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000706"),
+        ("9707", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000707"),
+        ("9708", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000708"),
+        ("9709", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000709"),
+        ("9710", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000710"),
+        ("9711", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000711"),
+        ("9712", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000712"),
+        ("9713", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000713"),
+        ("9714", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000714"),
+        ("9715", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000715"),
+        ("9716", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000716"),
+        ("9717", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000717"),
+        ("9718", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000718"),
+        ("9719", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000719"),
+        ("9720", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000720"),
+        ("9721", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000721"),
+        ("9722", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000722"),
+        ("9723", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000723"),
+        ("9724", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000724"),
+        ("9725", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000725"),
+        ("9726", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000726"),
+        ("9727", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000727"),
+        ("9728", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000728"),
+        ("9729", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000729"),
+        ("9730", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000730"),
+        ("9731", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000731"),
+        ("9732", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000732"),
+        ("9733", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000733"),
+        ("9734", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000734"),
+        ("9735", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000735"),
+        ("9736", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000736"),
+        ("9737", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000737"),
+        ("9738", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000738"),
+        ("9739", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000739"),
+        ("9740", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000740"),
+        ("9741", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000741"),
+        ("9742", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000742"),
+        ("9743", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000743"),
+        ("9744", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000744"),
+        ("9745", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000745"),
+        ("9746", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000746"),
+        ("9747", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000747"),
+        ("9748", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000748"),
+        ("9749", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000749"),
+        ("9750", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000750"),
+        ("9751", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000751"),
+        ("9752", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000752"),
+        ("9753", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000753"),
+        ("9754", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000754"),
+        ("9755", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000755"),
+        ("9756", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000756"),
+        ("9757", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000757"),
+        ("9758", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000758"),
+        ("9759", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000759"),
+        ("9760", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000760"),
+        ("9761", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000761"),
+        ("9762", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000762"),
+        ("9763", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000763"),
+        ("9764", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000764"),
+        ("9765", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000765"),
+        ("9766", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000766"),
+        ("9767", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000767"),
+        ("9768", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000768"),
+        ("9769", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000769"),
+        ("9770", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000770"),
+        ("9771", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000771"),
+        ("9772", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000772"),
+        ("9773", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000773"),
+        ("9774", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000774"),
+        ("9775", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000775"),
+        ("9776", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000776"),
+        ("9777", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000777"),
+        ("9778", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000778"),
+        ("9779", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000779"),
+        ("9780", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000780"),
+        ("9781", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000781"),
+        ("9782", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000782"),
+        ("9783", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000783"),
+        ("9784", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000784"),
+        ("9785", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000785"),
+        ("9786", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000786"),
+        ("9787", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000787"),
+        ("9788", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000788"),
+        ("9789", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000789"),
+        ("9790", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000790"),
+        ("9791", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000791"),
+        ("9792", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000792"),
+        ("9793", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000793"),
+        ("9794", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000794"),
+        ("9795", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000795"),
+        ("9796", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000796"),
+        ("9797", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000797"),
+        ("9798", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000798"),
+        ("9799", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000799"),
+        ("9800", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_DESKTOP"),
+        ("9801", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_INTERNET"),
+        ("9802", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_PROGRAMS"),
+        ("9803", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_CONTROLS"),
+        ("9804", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_PRINTERS"),
+        ("9805", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_MYDOCUMENTS"),
+        ("9806", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_FAVORITES"),
+        ("9807", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_STARTUP"),
+        ("9808", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_RECENT"),
+        ("9809", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_SENDTO"),
+        ("9810", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_DESKTOPDIRECTORY"),
+        ("9811", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_DRIVES"),
+        ("9812", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_NETWORK"),
+        ("9813", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_NETHOOD"),
+        ("9814", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_FONTS"),
+        ("9815", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_TEMPLATES"),
+        ("9816", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_COMMON_STARTMENU"),
+        ("9817", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_COMMON_PROGRAMS"),
+        ("9818", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_COMMON_STARTUP"),
+        ("9819", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_COMMON_DESKTOPDIRECTORY"),
+        ("9820", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_INTERNET_CACHE"),
+        ("9821", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_COOKIES"),
+        ("9822", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_HISTORY"),
+        ("9823", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_COMMON_APPDATA"),
+        ("9824", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_WINDOWS"),
+        ("9825", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_SYSTEM"),
+        ("9826", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_PROGRAM_FILES"),
+        ("9827", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_MYPICTURES"),
+        ("9828", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_PROFILE"),
+        ("9829", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_SYSTEMX86"),
+        ("9830", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_ADMINTOOLS"),
+        ("9831", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_CONNECTIONS"),
+        ("9832", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000032"),
+        ("9833", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000033"),
+        ("9834", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000034"),
+        ("9835", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_COMMON_MUSIC"),
+        ("9836", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_COMMON_PICTURES"),
+        ("9837", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_COMMON_VIDEO"),
+        ("9838", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_RESOURCES"),
+        ("9839", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|CSIDL_RESOURCES_LOCALIZED"),
+        ("9840", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000040"),
+        ("9841", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000041"),
+        ("9842", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000042"),
+        ("9843", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000043"),
+        ("9844", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000044"),
+        ("9845", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000045"),
+        ("9846", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000046"),
+        ("9847", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000047"),
+        ("9848", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000048"),
+        ("9849", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000049"),
+        ("9850", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000050"),
+        ("9851", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000051"),
+        ("9852", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000052"),
+        ("9853", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000053"),
+        ("9854", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000054"),
+        ("9855", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000055"),
+        ("9856", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000056"),
+        ("9857", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000057"),
+        ("9858", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000058"),
+        ("9859", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000059"),
+        ("9860", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000060"),
+        ("9861", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000061"),
+        ("9862", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000062"),
+        ("9863", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000063"),
+        ("9864", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000064"),
+        ("9865", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000065"),
+        ("9866", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000066"),
+        ("9867", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000067"),
+        ("9868", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000068"),
+        ("9869", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000069"),
+        ("9870", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000070"),
+        ("9871", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000071"),
+        ("9872", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000072"),
+        ("9873", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000073"),
+        ("9874", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000074"),
+        ("9875", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000075"),
+        ("9876", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000076"),
+        ("9877", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000077"),
+        ("9878", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000078"),
+        ("9879", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000079"),
+        ("9880", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000080"),
+        ("9881", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000081"),
+        ("9882", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000082"),
+        ("9883", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000083"),
+        ("9884", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000084"),
+        ("9885", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000085"),
+        ("9886", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000086"),
+        ("9887", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000087"),
+        ("9888", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000088"),
+        ("9889", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000089"),
+        ("9890", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000090"),
+        ("9891", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000091"),
+        ("9892", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000092"),
+        ("9893", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000093"),
+        ("9894", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000094"),
+        ("9895", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000095"),
+        ("9896", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000096"),
+        ("9897", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000097"),
+        ("9898", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000098"),
+        ("9899", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000099"),
+        ("9900", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000100"),
+        ("9901", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000101"),
+        ("9902", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000102"),
+        ("9903", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000103"),
+        ("9904", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000104"),
+        ("9905", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000105"),
+        ("9906", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000106"),
+        ("9907", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000107"),
+        ("9908", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000108"),
+        ("9909", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000109"),
+        ("9910", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000110"),
+        ("9911", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000111"),
+        ("9912", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000112"),
+        ("9913", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000113"),
+        ("9914", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000114"),
+        ("9915", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000115"),
+        ("9916", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000116"),
+        ("9917", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000117"),
+        ("9918", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000118"),
+        ("9919", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000119"),
+        ("9920", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000120"),
+        ("9921", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000121"),
+        ("9922", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000122"),
+        ("9923", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000123"),
+        ("9924", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000124"),
+        ("9925", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000125"),
+        ("9926", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000126"),
+        ("9927", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000127"),
+        ("9928", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000128"),
+        ("9929", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000129"),
+        ("9930", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000130"),
+        ("9931", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000131"),
+        ("9932", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000132"),
+        ("9933", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000133"),
+        ("9934", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000134"),
+        ("9935", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000135"),
+        ("9936", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000136"),
+        ("9937", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000137"),
+        ("9938", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000138"),
+        ("9939", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000139"),
+        ("9940", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000140"),
+        ("9941", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000141"),
+        ("9942", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000142"),
+        ("9943", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000143"),
+        ("9944", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000144"),
+        ("9945", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000145"),
+        ("9946", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000146"),
+        ("9947", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000147"),
+        ("9948", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000148"),
+        ("9949", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000149"),
+        ("9950", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000150"),
+        ("9951", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000151"),
+        ("9952", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000152"),
+        ("9953", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000153"),
+        ("9954", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000154"),
+        ("9955", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000155"),
+        ("9956", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000156"),
+        ("9957", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000157"),
+        ("9958", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000158"),
+        ("9959", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000159"),
+        ("9960", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000160"),
+        ("9961", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000161"),
+        ("9962", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000162"),
+        ("9963", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000163"),
+        ("9964", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000164"),
+        ("9965", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000165"),
+        ("9966", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000166"),
+        ("9967", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000167"),
+        ("9968", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000168"),
+        ("9969", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000169"),
+        ("9970", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000170"),
+        ("9971", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000171"),
+        ("9972", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000172"),
+        ("9973", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000173"),
+        ("9974", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000174"),
+        ("9975", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000175"),
+        ("9976", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000176"),
+        ("9977", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000177"),
+        ("9978", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000178"),
+        ("9979", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000179"),
+        ("9980", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000180"),
+        ("9981", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000181"),
+        ("9982", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000182"),
+        ("9983", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000183"),
+        ("9984", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000184"),
+        ("9985", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000185"),
+        ("9986", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000186"),
+        ("9987", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000187"),
+        ("9988", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000188"),
+        ("9989", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000189"),
+        ("9990", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000190"),
+        ("9991", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000191"),
+        ("9992", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000192"),
+        ("9993", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000193"),
+        ("9994", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000194"),
+        ("9995", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000195"),
+        ("9996", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000196"),
+        ("9997", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000197"),
+        ("9998", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000198"),
+        ("9999", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00000199"),
+        ("10000", "0x00010000"),
+        ("10001", "0x00010001"),
+        ("10002", "0x00010002"),
+        ("10003", "0x00010003"),
+        ("10004", "0x00010004"),
+        ("10005", "0x00010005"),
+        ("10006", "0x00010006"),
+        ("10007", "0x00010007"),
+        ("10008", "0x00010008"),
+        ("10009", "0x00010009"),
+        ("10010", "0x00010010"),
+        ("10011", "0x00010011"),
+        ("10012", "0x00010012"),
+        ("10013", "0x00010013"),
+        ("10014", "0x00010014"),
+        ("10015", "0x00010015"),
+        ("10016", "0x00010016"),
+        ("10017", "0x00010017"),
+        ("10018", "0x00010018"),
+        ("10019", "0x00010019"),
+        ("10020", "0x00010020"),
+        ("10021", "0x00010021"),
+        ("10022", "0x00010022"),
+        ("10023", "0x00010023"),
+        ("10024", "0x00010024"),
+        ("10025", "0x00010025"),
+        ("10026", "0x00010026"),
+        ("10027", "0x00010027"),
+        ("10028", "0x00010028"),
+        ("10029", "0x00010029"),
+        ("10030", "0x00010030"),
+        ("10031", "0x00010031"),
+        ("10032", "0x00010032"),
+        ("10033", "0x00010033"),
+        ("10034", "0x00010034"),
+        ("10035", "0x00010035"),
+        ("10036", "0x00010036"),
+        ("10037", "0x00010037"),
+        ("10038", "0x00010038"),
+        ("10039", "0x00010039"),
+        ("10040", "0x00010040"),
+        ("10041", "0x00010041"),
+        ("10042", "0x00010042"),
+        ("10043", "0x00010043"),
+        ("10044", "0x00010044"),
+        ("10045", "0x00010045"),
+        ("10046", "0x00010046"),
+        ("10047", "0x00010047"),
+        ("10048", "0x00010048"),
+        ("10049", "0x00010049"),
+        ("10050", "0x00010050"),
+        ("10051", "0x00010051"),
+        ("10052", "0x00010052"),
+        ("10053", "0x00010053"),
+        ("10054", "0x00010054"),
+        ("10055", "0x00010055"),
+        ("10056", "0x00010056"),
+        ("10057", "0x00010057"),
+        ("10058", "0x00010058"),
+        ("10059", "0x00010059"),
+        ("10060", "0x00010060"),
+        ("10061", "0x00010061"),
+        ("10062", "0x00010062"),
+        ("10063", "0x00010063"),
+        ("10064", "0x00010064"),
+        ("10065", "0x00010065"),
+        ("10066", "0x00010066"),
+        ("10067", "0x00010067"),
+        ("10068", "0x00010068"),
+        ("10069", "0x00010069"),
+        ("10070", "0x00010070"),
+        ("10071", "0x00010071"),
+        ("10072", "0x00010072"),
+        ("10073", "0x00010073"),
+        ("10074", "0x00010074"),
+        ("10075", "0x00010075"),
+        ("10076", "0x00010076"),
+        ("10077", "0x00010077"),
+        ("10078", "0x00010078"),
+        ("10079", "0x00010079"),
+        ("10080", "0x00010080"),
+        ("10081", "0x00010081"),
+        ("10082", "0x00010082"),
+        ("10083", "0x00010083"),
+        ("10084", "0x00010084"),
+        ("10085", "0x00010085"),
+        ("10086", "0x00010086"),
+        ("10087", "0x00010087"),
+        ("10088", "0x00010088"),
+        ("10089", "0x00010089"),
+        ("10090", "0x00010090"),
+        ("10091", "0x00010091"),
+        ("10092", "0x00010092"),
+        ("10093", "0x00010093"),
+        ("10094", "0x00010094"),
+        ("10095", "0x00010095"),
+        ("10096", "0x00010096"),
+        ("10097", "0x00010097"),
+        ("10098", "0x00010098"),
+        ("10099", "0x00010099"),
+        ("10100", "0x00010100"),
+        ("10101", "0x00010101"),
+        ("10102", "0x00010102"),
+        ("10103", "0x00010103"),
+        ("10104", "0x00010104"),
+        ("10105", "0x00010105"),
+        ("10106", "0x00010106"),
+        ("10107", "0x00010107"),
+        ("10108", "0x00010108"),
+        ("10109", "0x00010109"),
+        ("10110", "0x00010110"),
+        ("10111", "0x00010111"),
+        ("10112", "0x00010112"),
+        ("10113", "0x00010113"),
+        ("10114", "0x00010114"),
+        ("10115", "0x00010115"),
+        ("10116", "0x00010116"),
+        ("10117", "0x00010117"),
+        ("10118", "0x00010118"),
+        ("10119", "0x00010119"),
+        ("10120", "0x00010120"),
+        ("10121", "0x00010121"),
+        ("10122", "0x00010122"),
+        ("10123", "0x00010123"),
+        ("10124", "0x00010124"),
+        ("10125", "0x00010125"),
+        ("10126", "0x00010126"),
+        ("10127", "0x00010127"),
+        ("10128", "0x00010128"),
+        ("10129", "0x00010129"),
+        ("10130", "0x00010130"),
+        ("10131", "0x00010131"),
+        ("10132", "0x00010132"),
+        ("10133", "0x00010133"),
+        ("10134", "0x00010134"),
+        ("10135", "0x00010135"),
+        ("10136", "0x00010136"),
+        ("10137", "0x00010137"),
+        ("10138", "0x00010138"),
+        ("10139", "0x00010139"),
+        ("10140", "0x00010140"),
+        ("10141", "0x00010141"),
+        ("10142", "0x00010142"),
+        ("10143", "0x00010143"),
+        ("10144", "0x00010144"),
+        ("10145", "0x00010145"),
+        ("10146", "0x00010146"),
+        ("10147", "0x00010147"),
+        ("10148", "0x00010148"),
+        ("10149", "0x00010149"),
+        ("10150", "0x00010150"),
+        ("10151", "0x00010151"),
+        ("10152", "0x00010152"),
+        ("10153", "0x00010153"),
+        ("10154", "0x00010154"),
+        ("10155", "0x00010155"),
+        ("10156", "0x00010156"),
+        ("10157", "0x00010157"),
+        ("10158", "0x00010158"),
+        ("10159", "0x00010159"),
+        ("10160", "0x00010160"),
+        ("10161", "0x00010161"),
+        ("10162", "0x00010162"),
+        ("10163", "0x00010163"),
+        ("10164", "0x00010164"),
+        ("10165", "0x00010165"),
+        ("10166", "0x00010166"),
+        ("10167", "0x00010167"),
+        ("10168", "0x00010168"),
+        ("10169", "0x00010169"),
+        ("10170", "0x00010170"),
+        ("10171", "0x00010171"),
+        ("10172", "0x00010172"),
+        ("10173", "0x00010173"),
+        ("10174", "0x00010174"),
+        ("10175", "0x00010175"),
+        ("10176", "0x00010176"),
+        ("10177", "0x00010177"),
+        ("10178", "0x00010178"),
+        ("10179", "0x00010179"),
+        ("10180", "0x00010180"),
+        ("10181", "0x00010181"),
+        ("10182", "0x00010182"),
+        ("10183", "0x00010183"),
+        ("10184", "0x00010184"),
+        ("10185", "0x00010185"),
+        ("10186", "0x00010186"),
+        ("10187", "0x00010187"),
+        ("10188", "0x00010188"),
+        ("10189", "0x00010189"),
+        ("10190", "0x00010190"),
+        ("10191", "0x00010191"),
+        ("10192", "0x00010192"),
+        ("10193", "0x00010193"),
+        ("10194", "0x00010194"),
+        ("10195", "0x00010195"),
+        ("10196", "0x00010196"),
+        ("10197", "0x00010197"),
+        ("10198", "0x00010198"),
+        ("10199", "0x00010199"),
+        ("10200", "0x00010200"),
+        ("10201", "0x00010201"),
+        ("10202", "0x00010202"),
+        ("10203", "0x00010203"),
+        ("10204", "0x00010204"),
+        ("10205", "0x00010205"),
+        ("10206", "0x00010206"),
+        ("10207", "0x00010207"),
+        ("10208", "0x00010208"),
+        ("10209", "0x00010209"),
+        ("10210", "0x00010210"),
+        ("10211", "0x00010211"),
+        ("10212", "0x00010212"),
+        ("10213", "0x00010213"),
+        ("10214", "0x00010214"),
+        ("10215", "0x00010215"),
+        ("10216", "0x00010216"),
+        ("10217", "0x00010217"),
+        ("10218", "0x00010218"),
+        ("10219", "0x00010219"),
+        ("10220", "0x00010220"),
+        ("10221", "0x00010221"),
+        ("10222", "0x00010222"),
+        ("10223", "0x00010223"),
+        ("10224", "0x00010224"),
+        ("10225", "0x00010225"),
+        ("10226", "0x00010226"),
+        ("10227", "0x00010227"),
+        ("10228", "0x00010228"),
+        ("10229", "0x00010229"),
+        ("10230", "0x00010230"),
+        ("10231", "0x00010231"),
+        ("10232", "0x00010232"),
+        ("10233", "0x00010233"),
+        ("10234", "0x00010234"),
+        ("10235", "0x00010235"),
+        ("10236", "0x00010236"),
+        ("10237", "0x00010237"),
+        ("10238", "0x00010238"),
+        ("10239", "0x00010239"),
+        ("10240", "0x00010240"),
+        ("10241", "0x00010241"),
+        ("10242", "0x00010242"),
+        ("10243", "0x00010243"),
+        ("10244", "0x00010244"),
+        ("10245", "0x00010245"),
+        ("10246", "0x00010246"),
+        ("10247", "0x00010247"),
+        ("10248", "0x00010248"),
+        ("10249", "0x00010249"),
+        ("10250", "0x00010250"),
+        ("10251", "0x00010251"),
+        ("10252", "0x00010252"),
+        ("10253", "0x00010253"),
+        ("10254", "0x00010254"),
+        ("10255", "0x00010255"),
+        ("10256", "0x00010256"),
+        ("10257", "0x00010257"),
+        ("10258", "0x00010258"),
+        ("10259", "0x00010259"),
+        ("10260", "0x00010260"),
+        ("10261", "0x00010261"),
+        ("10262", "0x00010262"),
+        ("10263", "0x00010263"),
+        ("10264", "0x00010264"),
+        ("10265", "0x00010265"),
+        ("10266", "0x00010266"),
+        ("10267", "0x00010267"),
+        ("10268", "0x00010268"),
+        ("10269", "0x00010269"),
+        ("10270", "0x00010270"),
+        ("10271", "0x00010271"),
+        ("10272", "0x00010272"),
+        ("10273", "0x00010273"),
+        ("10274", "0x00010274"),
+        ("10275", "0x00010275"),
+        ("10276", "0x00010276"),
+        ("10277", "0x00010277"),
+        ("10278", "0x00010278"),
+        ("10279", "0x00010279"),
+        ("10280", "0x00010280"),
+        ("10281", "0x00010281"),
+        ("10282", "0x00010282"),
+        ("10283", "0x00010283"),
+        ("10284", "0x00010284"),
+        ("10285", "0x00010285"),
+        ("10286", "0x00010286"),
+        ("10287", "0x00010287"),
+        ("10288", "0x00010288"),
+        ("10289", "0x00010289"),
+        ("10290", "0x00010290"),
+        ("10291", "0x00010291"),
+        ("10292", "0x00010292"),
+        ("10293", "0x00010293"),
+        ("10294", "0x00010294"),
+        ("10295", "0x00010295"),
+        ("10296", "0x00010296"),
+        ("10297", "0x00010297"),
+        ("10298", "0x00010298"),
+        ("10299", "0x00010299"),
+        ("10300", "0x00010300"),
+        ("10301", "0x00010301"),
+        ("10302", "0x00010302"),
+        ("10303", "0x00010303"),
+        ("10304", "0x00010304"),
+        ("10305", "0x00010305"),
+        ("10306", "0x00010306"),
+        ("10307", "0x00010307"),
+        ("10308", "0x00010308"),
+        ("10309", "0x00010309"),
+        ("10310", "0x00010310"),
+        ("10311", "0x00010311"),
+        ("10312", "0x00010312"),
+        ("10313", "0x00010313"),
+        ("10314", "0x00010314"),
+        ("10315", "0x00010315"),
+        ("10316", "0x00010316"),
+        ("10317", "0x00010317"),
+        ("10318", "0x00010318"),
+        ("10319", "0x00010319"),
+        ("10320", "0x00010320"),
+        ("10321", "0x00010321"),
+        ("10322", "0x00010322"),
+        ("10323", "0x00010323"),
+        ("10324", "0x00010324"),
+        ("10325", "0x00010325"),
+        ("10326", "0x00010326"),
+        ("10327", "0x00010327"),
+        ("10328", "0x00010328"),
+        ("10329", "0x00010329"),
+        ("10330", "0x00010330"),
+        ("10331", "0x00010331"),
+        ("10332", "0x00010332"),
+        ("10333", "0x00010333"),
+        ("10334", "0x00010334"),
+        ("10335", "0x00010335"),
+        ("10336", "0x00010336"),
+        ("10337", "0x00010337"),
+        ("10338", "0x00010338"),
+        ("10339", "0x00010339"),
+        ("10340", "0x00010340"),
+        ("10341", "0x00010341"),
+        ("10342", "0x00010342"),
+        ("10343", "0x00010343"),
+        ("10344", "0x00010344"),
+        ("10345", "0x00010345"),
+        ("10346", "0x00010346"),
+        ("10347", "0x00010347"),
+        ("10348", "0x00010348"),
+        ("10349", "0x00010349"),
+        ("10350", "0x00010350"),
+        ("10351", "0x00010351"),
+        ("10352", "0x00010352"),
+        ("10353", "0x00010353"),
+        ("10354", "0x00010354"),
+        ("10355", "0x00010355"),
+        ("10356", "0x00010356"),
+        ("10357", "0x00010357"),
+        ("10358", "0x00010358"),
+        ("10359", "0x00010359"),
+        ("10360", "0x00010360"),
+        ("10361", "0x00010361"),
+        ("10362", "0x00010362"),
+        ("10363", "0x00010363"),
+        ("10364", "0x00010364"),
+        ("10365", "0x00010365"),
+        ("10366", "0x00010366"),
+        ("10367", "0x00010367"),
+        ("10368", "0x00010368"),
+        ("10369", "0x00010369"),
+        ("10370", "0x00010370"),
+        ("10371", "0x00010371"),
+        ("10372", "0x00010372"),
+        ("10373", "0x00010373"),
+        ("10374", "0x00010374"),
+        ("10375", "0x00010375"),
+        ("10376", "0x00010376"),
+        ("10377", "0x00010377"),
+        ("10378", "0x00010378"),
+        ("10379", "0x00010379"),
+        ("10380", "0x00010380"),
+        ("10381", "0x00010381"),
+        ("10382", "0x00010382"),
+        ("10383", "0x00010383"),
+        ("10384", "0x00010384"),
+        ("10385", "0x00010385"),
+        ("10386", "0x00010386"),
+        ("10387", "0x00010387"),
+        ("10388", "0x00010388"),
+        ("10389", "0x00010389"),
+        ("10390", "0x00010390"),
+        ("10391", "0x00010391"),
+        ("10392", "0x00010392"),
+        ("10393", "0x00010393"),
+        ("10394", "0x00010394"),
+        ("10395", "0x00010395"),
+        ("10396", "0x00010396"),
+        ("10397", "0x00010397"),
+        ("10398", "0x00010398"),
+        ("10399", "0x00010399"),
+        ("10400", "0x00010400"),
+        ("10401", "0x00010401"),
+        ("10402", "0x00010402"),
+        ("10403", "0x00010403"),
+        ("10404", "0x00010404"),
+        ("10405", "0x00010405"),
+        ("10406", "0x00010406"),
+        ("10407", "0x00010407"),
+        ("10408", "0x00010408"),
+        ("10409", "0x00010409"),
+        ("10410", "0x00010410"),
+        ("10411", "0x00010411"),
+        ("10412", "0x00010412"),
+        ("10413", "0x00010413"),
+        ("10414", "0x00010414"),
+        ("10415", "0x00010415"),
+        ("10416", "0x00010416"),
+        ("10417", "0x00010417"),
+        ("10418", "0x00010418"),
+        ("10419", "0x00010419"),
+        ("10420", "0x00010420"),
+        ("10421", "0x00010421"),
+        ("10422", "0x00010422"),
+        ("10423", "0x00010423"),
+        ("10424", "0x00010424"),
+        ("10425", "0x00010425"),
+        ("10426", "0x00010426"),
+        ("10427", "0x00010427"),
+        ("10428", "0x00010428"),
+        ("10429", "0x00010429"),
+        ("10430", "0x00010430"),
+        ("10431", "0x00010431"),
+        ("10432", "0x00010432"),
+        ("10433", "0x00010433"),
+        ("10434", "0x00010434"),
+        ("10435", "0x00010435"),
+        ("10436", "0x00010436"),
+        ("10437", "0x00010437"),
+        ("10438", "0x00010438"),
+        ("10439", "0x00010439"),
+        ("10440", "0x00010440"),
+        ("10441", "0x00010441"),
+        ("10442", "0x00010442"),
+        ("10443", "0x00010443"),
+        ("10444", "0x00010444"),
+        ("10445", "0x00010445"),
+        ("10446", "0x00010446"),
+        ("10447", "0x00010447"),
+        ("10448", "0x00010448"),
+        ("10449", "0x00010449"),
+        ("10450", "0x00010450"),
+        ("10451", "0x00010451"),
+        ("10452", "0x00010452"),
+        ("10453", "0x00010453"),
+        ("10454", "0x00010454"),
+        ("10455", "0x00010455"),
+        ("10456", "0x00010456"),
+        ("10457", "0x00010457"),
+        ("10458", "0x00010458"),
+        ("10459", "0x00010459"),
+        ("10460", "0x00010460"),
+        ("10461", "0x00010461"),
+        ("10462", "0x00010462"),
+        ("10463", "0x00010463"),
+        ("10464", "0x00010464"),
+        ("10465", "0x00010465"),
+        ("10466", "0x00010466"),
+        ("10467", "0x00010467"),
+        ("10468", "0x00010468"),
+        ("10469", "0x00010469"),
+        ("10470", "0x00010470"),
+        ("10471", "0x00010471"),
+        ("10472", "0x00010472"),
+        ("10473", "0x00010473"),
+        ("10474", "0x00010474"),
+        ("10475", "0x00010475"),
+        ("10476", "0x00010476"),
+        ("10477", "0x00010477"),
+        ("10478", "0x00010478"),
+        ("10479", "0x00010479"),
+        ("10480", "0x00010480"),
+        ("10481", "0x00010481"),
+        ("10482", "0x00010482"),
+        ("10483", "0x00010483"),
+        ("10484", "0x00010484"),
+        ("10485", "0x00010485"),
+        ("10486", "0x00010486"),
+        ("10487", "0x00010487"),
+        ("10488", "0x00010488"),
+        ("10489", "0x00010489"),
+        ("10490", "0x00010490"),
+        ("10491", "0x00010491"),
+        ("10492", "0x00010492"),
+        ("10493", "0x00010493"),
+        ("10494", "0x00010494"),
+        ("10495", "0x00010495"),
+        ("10496", "0x00010496"),
+        ("10497", "0x00010497"),
+        ("10498", "0x00010498"),
+        ("10499", "0x00010499"),
+        ("10500", "0x00010500"),
+        ("10501", "0x00010501"),
+        ("10502", "0x00010502"),
+        ("10503", "0x00010503"),
+        ("10504", "0x00010504"),
+        ("10505", "0x00010505"),
+        ("10506", "0x00010506"),
+        ("10507", "0x00010507"),
+        ("10508", "0x00010508"),
+        ("10509", "0x00010509"),
+        ("10510", "0x00010510"),
+        ("10511", "0x00010511"),
+        ("10512", "0x00010512"),
+        ("10513", "0x00010513"),
+        ("10514", "0x00010514"),
+        ("10515", "0x00010515"),
+        ("10516", "0x00010516"),
+        ("10517", "0x00010517"),
+        ("10518", "0x00010518"),
+        ("10519", "0x00010519"),
+        ("10520", "0x00010520"),
+        ("10521", "0x00010521"),
+        ("10522", "0x00010522"),
+        ("10523", "0x00010523"),
+        ("10524", "0x00010524"),
+        ("10525", "0x00010525"),
+        ("10526", "0x00010526"),
+        ("10527", "0x00010527"),
+        ("10528", "0x00010528"),
+        ("10529", "0x00010529"),
+        ("10530", "0x00010530"),
+        ("10531", "0x00010531"),
+        ("10532", "0x00010532"),
+        ("10533", "0x00010533"),
+        ("10534", "0x00010534"),
+        ("10535", "0x00010535"),
+        ("10536", "0x00010536"),
+        ("10537", "0x00010537"),
+        ("10538", "0x00010538"),
+        ("10539", "0x00010539"),
+        ("10540", "0x00010540"),
+        ("10541", "0x00010541"),
+        ("10542", "0x00010542"),
+        ("10543", "0x00010543"),
+        ("10544", "0x00010544"),
+        ("10545", "0x00010545"),
+        ("10546", "0x00010546"),
+        ("10547", "0x00010547"),
+        ("10548", "0x00010548"),
+        ("10549", "0x00010549"),
+        ("10550", "0x00010550"),
+        ("10551", "0x00010551"),
+        ("10552", "0x00010552"),
+        ("10553", "0x00010553"),
+        ("10554", "0x00010554"),
+        ("10555", "0x00010555"),
+        ("10556", "0x00010556"),
+        ("10557", "0x00010557"),
+        ("10558", "0x00010558"),
+        ("10559", "0x00010559"),
+        ("10560", "0x00010560"),
+        ("10561", "0x00010561"),
+        ("10562", "0x00010562"),
+        ("10563", "0x00010563"),
+        ("10564", "0x00010564"),
+        ("10565", "0x00010565"),
+        ("10566", "0x00010566"),
+        ("10567", "0x00010567"),
+        ("10568", "0x00010568"),
+        ("10569", "0x00010569"),
+        ("10570", "0x00010570"),
+        ("10571", "0x00010571"),
+        ("10572", "0x00010572"),
+        ("10573", "0x00010573"),
+        ("10574", "0x00010574"),
+        ("10575", "0x00010575"),
+        ("10576", "0x00010576"),
+        ("10577", "0x00010577"),
+        ("10578", "0x00010578"),
+        ("10579", "0x00010579"),
+        ("10580", "0x00010580"),
+        ("10581", "0x00010581"),
+        ("10582", "0x00010582"),
+        ("10583", "0x00010583"),
+        ("10584", "0x00010584"),
+        ("10585", "0x00010585"),
+        ("10586", "0x00010586"),
+        ("10587", "0x00010587"),
+        ("10588", "0x00010588"),
+        ("10589", "0x00010589"),
+        ("10590", "0x00010590"),
+        ("10591", "0x00010591"),
+        ("10592", "0x00010592"),
+        ("10593", "0x00010593"),
+        ("10594", "0x00010594"),
+        ("10595", "0x00010595"),
+        ("10596", "0x00010596"),
+        ("10597", "0x00010597"),
+        ("10598", "0x00010598"),
+        ("10599", "0x00010599"),
+        ("10600", "0x00010600"),
+        ("10601", "0x00010601"),
+        ("10602", "0x00010602"),
+        ("10603", "0x00010603"),
+        ("10604", "0x00010604"),
+        ("10605", "0x00010605"),
+        ("10606", "0x00010606"),
+        ("10607", "0x00010607"),
+        ("10608", "0x00010608"),
+        ("10609", "0x00010609"),
+        ("10610", "0x00010610"),
+        ("10611", "0x00010611"),
+        ("10612", "0x00010612"),
+        ("10613", "0x00010613"),
+        ("10614", "0x00010614"),
+        ("10615", "0x00010615"),
+        ("10616", "0x00010616"),
+        ("10617", "0x00010617"),
+        ("10618", "0x00010618"),
+        ("10619", "0x00010619"),
+        ("10620", "0x00010620"),
+        ("10621", "0x00010621"),
+        ("10622", "0x00010622"),
+        ("10623", "0x00010623"),
+        ("10624", "0x00010624"),
+        ("10625", "0x00010625"),
+        ("10626", "0x00010626"),
+        ("10627", "0x00010627"),
+        ("10628", "0x00010628"),
+        ("10629", "0x00010629"),
+        ("10630", "0x00010630"),
+        ("10631", "0x00010631"),
+        ("10632", "0x00010632"),
+        ("10633", "0x00010633"),
+        ("10634", "0x00010634"),
+        ("10635", "0x00010635"),
+        ("10636", "0x00010636"),
+        ("10637", "0x00010637"),
+        ("10638", "0x00010638"),
+        ("10639", "0x00010639"),
+        ("10640", "0x00010640"),
+        ("10641", "0x00010641"),
+        ("10642", "0x00010642"),
+        ("10643", "0x00010643"),
+        ("10644", "0x00010644"),
+        ("10645", "0x00010645"),
+        ("10646", "0x00010646"),
+        ("10647", "0x00010647"),
+        ("10648", "0x00010648"),
+        ("10649", "0x00010649"),
+        ("10650", "0x00010650"),
+        ("10651", "0x00010651"),
+        ("10652", "0x00010652"),
+        ("10653", "0x00010653"),
+        ("10654", "0x00010654"),
+        ("10655", "0x00010655"),
+        ("10656", "0x00010656"),
+        ("10657", "0x00010657"),
+        ("10658", "0x00010658"),
+        ("10659", "0x00010659"),
+        ("10660", "0x00010660"),
+        ("10661", "0x00010661"),
+        ("10662", "0x00010662"),
+        ("10663", "0x00010663"),
+        ("10664", "0x00010664"),
+        ("10665", "0x00010665"),
+        ("10666", "0x00010666"),
+        ("10667", "0x00010667"),
+        ("10668", "0x00010668"),
+        ("10669", "0x00010669"),
+        ("10670", "0x00010670"),
+        ("10671", "0x00010671"),
+        ("10672", "0x00010672"),
+        ("10673", "0x00010673"),
+        ("10674", "0x00010674"),
+        ("10675", "0x00010675"),
+        ("10676", "0x00010676"),
+        ("10677", "0x00010677"),
+        ("10678", "0x00010678"),
+        ("10679", "0x00010679"),
+        ("10680", "0x00010680"),
+        ("10681", "0x00010681"),
+        ("10682", "0x00010682"),
+        ("10683", "0x00010683"),
+        ("10684", "0x00010684"),
+        ("10685", "0x00010685"),
+        ("10686", "0x00010686"),
+        ("10687", "0x00010687"),
+        ("10688", "0x00010688"),
+        ("10689", "0x00010689"),
+        ("10690", "0x00010690"),
+        ("10691", "0x00010691"),
+        ("10692", "0x00010692"),
+        ("10693", "0x00010693"),
+        ("10694", "0x00010694"),
+        ("10695", "0x00010695"),
+        ("10696", "0x00010696"),
+        ("10697", "0x00010697"),
+        ("10698", "0x00010698"),
+        ("10699", "0x00010699"),
+        ("10700", "0x00010700"),
+        ("10701", "0x00010701"),
+        ("10702", "0x00010702"),
+        ("10703", "0x00010703"),
+        ("10704", "0x00010704"),
+        ("10705", "0x00010705"),
+        ("10706", "0x00010706"),
+        ("10707", "0x00010707"),
+        ("10708", "0x00010708"),
+        ("10709", "0x00010709"),
+        ("10710", "0x00010710"),
+        ("10711", "0x00010711"),
+        ("10712", "0x00010712"),
+        ("10713", "0x00010713"),
+        ("10714", "0x00010714"),
+        ("10715", "0x00010715"),
+        ("10716", "0x00010716"),
+        ("10717", "0x00010717"),
+        ("10718", "0x00010718"),
+        ("10719", "0x00010719"),
+        ("10720", "0x00010720"),
+        ("10721", "0x00010721"),
+        ("10722", "0x00010722"),
+        ("10723", "0x00010723"),
+        ("10724", "0x00010724"),
+        ("10725", "0x00010725"),
+        ("10726", "0x00010726"),
+        ("10727", "0x00010727"),
+        ("10728", "0x00010728"),
+        ("10729", "0x00010729"),
+        ("10730", "0x00010730"),
+        ("10731", "0x00010731"),
+        ("10732", "0x00010732"),
+        ("10733", "0x00010733"),
+        ("10734", "0x00010734"),
+        ("10735", "0x00010735"),
+        ("10736", "0x00010736"),
+        ("10737", "0x00010737"),
+        ("10738", "0x00010738"),
+        ("10739", "0x00010739"),
+        ("10740", "0x00010740"),
+        ("10741", "0x00010741"),
+        ("10742", "0x00010742"),
+        ("10743", "0x00010743"),
+        ("10744", "0x00010744"),
+        ("10745", "0x00010745"),
+        ("10746", "0x00010746"),
+        ("10747", "0x00010747"),
+        ("10748", "0x00010748"),
+        ("10749", "0x00010749"),
+        ("10750", "0x00010750"),
+        ("10751", "0x00010751"),
+        ("10752", "0x00010752"),
+        ("10753", "0x00010753"),
+        ("10754", "0x00010754"),
+        ("10755", "0x00010755"),
+        ("10756", "0x00010756"),
+        ("10757", "0x00010757"),
+        ("10758", "0x00010758"),
+        ("10759", "0x00010759"),
+        ("10760", "0x00010760"),
+        ("10761", "0x00010761"),
+        ("10762", "0x00010762"),
+        ("10763", "0x00010763"),
+        ("10764", "0x00010764"),
+        ("10765", "0x00010765"),
+        ("10766", "0x00010766"),
+        ("10767", "0x00010767"),
+        ("10768", "0x00010768"),
+        ("10769", "0x00010769"),
+        ("10770", "0x00010770"),
+        ("10771", "0x00010771"),
+        ("10772", "0x00010772"),
+        ("10773", "0x00010773"),
+        ("10774", "0x00010774"),
+        ("10775", "0x00010775"),
+        ("10776", "0x00010776"),
+        ("10777", "0x00010777"),
+        ("10778", "0x00010778"),
+        ("10779", "0x00010779"),
+        ("10780", "0x00010780"),
+        ("10781", "0x00010781"),
+        ("10782", "0x00010782"),
+        ("10783", "0x00010783"),
+        ("10784", "0x00010784"),
+        ("10785", "0x00010785"),
+        ("10786", "0x00010786"),
+        ("10787", "0x00010787"),
+        ("10788", "0x00010788"),
+        ("10789", "0x00010789"),
+        ("10790", "0x00010790"),
+        ("10791", "0x00010791"),
+        ("10792", "0x00010792"),
+        ("10793", "0x00010793"),
+        ("10794", "0x00010794"),
+        ("10795", "0x00010795"),
+        ("10796", "0x00010796"),
+        ("10797", "0x00010797"),
+        ("10798", "0x00010798"),
+        ("10799", "0x00010799"),
+        ("10800", "CSIDL_FLAG_PER_USER_INIT|0x00010000"),
+        ("10801", "CSIDL_FLAG_PER_USER_INIT|0x00010001"),
+        ("10802", "CSIDL_FLAG_PER_USER_INIT|0x00010002"),
+        ("10803", "CSIDL_FLAG_PER_USER_INIT|0x00010003"),
+        ("10804", "CSIDL_FLAG_PER_USER_INIT|0x00010004"),
+        ("10805", "CSIDL_FLAG_PER_USER_INIT|0x00010005"),
+        ("10806", "CSIDL_FLAG_PER_USER_INIT|0x00010006"),
+        ("10807", "CSIDL_FLAG_PER_USER_INIT|0x00010007"),
+        ("10808", "CSIDL_FLAG_PER_USER_INIT|0x00010008"),
+        ("10809", "CSIDL_FLAG_PER_USER_INIT|0x00010009"),
+        ("10810", "CSIDL_FLAG_PER_USER_INIT|0x00010010"),
+        ("10811", "CSIDL_FLAG_PER_USER_INIT|0x00010011"),
+        ("10812", "CSIDL_FLAG_PER_USER_INIT|0x00010012"),
+        ("10813", "CSIDL_FLAG_PER_USER_INIT|0x00010013"),
+        ("10814", "CSIDL_FLAG_PER_USER_INIT|0x00010014"),
+        ("10815", "CSIDL_FLAG_PER_USER_INIT|0x00010015"),
+        ("10816", "CSIDL_FLAG_PER_USER_INIT|0x00010016"),
+        ("10817", "CSIDL_FLAG_PER_USER_INIT|0x00010017"),
+        ("10818", "CSIDL_FLAG_PER_USER_INIT|0x00010018"),
+        ("10819", "CSIDL_FLAG_PER_USER_INIT|0x00010019"),
+        ("10820", "CSIDL_FLAG_PER_USER_INIT|0x00010020"),
+        ("10821", "CSIDL_FLAG_PER_USER_INIT|0x00010021"),
+        ("10822", "CSIDL_FLAG_PER_USER_INIT|0x00010022"),
+        ("10823", "CSIDL_FLAG_PER_USER_INIT|0x00010023"),
+        ("10824", "CSIDL_FLAG_PER_USER_INIT|0x00010024"),
+        ("10825", "CSIDL_FLAG_PER_USER_INIT|0x00010025"),
+        ("10826", "CSIDL_FLAG_PER_USER_INIT|0x00010026"),
+        ("10827", "CSIDL_FLAG_PER_USER_INIT|0x00010027"),
+        ("10828", "CSIDL_FLAG_PER_USER_INIT|0x00010028"),
+        ("10829", "CSIDL_FLAG_PER_USER_INIT|0x00010029"),
+        ("10830", "CSIDL_FLAG_PER_USER_INIT|0x00010030"),
+        ("10831", "CSIDL_FLAG_PER_USER_INIT|0x00010031"),
+        ("10832", "CSIDL_FLAG_PER_USER_INIT|0x00010032"),
+        ("10833", "CSIDL_FLAG_PER_USER_INIT|0x00010033"),
+        ("10834", "CSIDL_FLAG_PER_USER_INIT|0x00010034"),
+        ("10835", "CSIDL_FLAG_PER_USER_INIT|0x00010035"),
+        ("10836", "CSIDL_FLAG_PER_USER_INIT|0x00010036"),
+        ("10837", "CSIDL_FLAG_PER_USER_INIT|0x00010037"),
+        ("10838", "CSIDL_FLAG_PER_USER_INIT|0x00010038"),
+        ("10839", "CSIDL_FLAG_PER_USER_INIT|0x00010039"),
+        ("10840", "CSIDL_FLAG_PER_USER_INIT|0x00010040"),
+        ("10841", "CSIDL_FLAG_PER_USER_INIT|0x00010041"),
+        ("10842", "CSIDL_FLAG_PER_USER_INIT|0x00010042"),
+        ("10843", "CSIDL_FLAG_PER_USER_INIT|0x00010043"),
+        ("10844", "CSIDL_FLAG_PER_USER_INIT|0x00010044"),
+        ("10845", "CSIDL_FLAG_PER_USER_INIT|0x00010045"),
+        ("10846", "CSIDL_FLAG_PER_USER_INIT|0x00010046"),
+        ("10847", "CSIDL_FLAG_PER_USER_INIT|0x00010047"),
+        ("10848", "CSIDL_FLAG_PER_USER_INIT|0x00010048"),
+        ("10849", "CSIDL_FLAG_PER_USER_INIT|0x00010049"),
+        ("10850", "CSIDL_FLAG_PER_USER_INIT|0x00010050"),
+        ("10851", "CSIDL_FLAG_PER_USER_INIT|0x00010051"),
+        ("10852", "CSIDL_FLAG_PER_USER_INIT|0x00010052"),
+        ("10853", "CSIDL_FLAG_PER_USER_INIT|0x00010053"),
+        ("10854", "CSIDL_FLAG_PER_USER_INIT|0x00010054"),
+        ("10855", "CSIDL_FLAG_PER_USER_INIT|0x00010055"),
+        ("10856", "CSIDL_FLAG_PER_USER_INIT|0x00010056"),
+        ("10857", "CSIDL_FLAG_PER_USER_INIT|0x00010057"),
+        ("10858", "CSIDL_FLAG_PER_USER_INIT|0x00010058"),
+        ("10859", "CSIDL_FLAG_PER_USER_INIT|0x00010059"),
+        ("10860", "CSIDL_FLAG_PER_USER_INIT|0x00010060"),
+        ("10861", "CSIDL_FLAG_PER_USER_INIT|0x00010061"),
+        ("10862", "CSIDL_FLAG_PER_USER_INIT|0x00010062"),
+        ("10863", "CSIDL_FLAG_PER_USER_INIT|0x00010063"),
+        ("10864", "CSIDL_FLAG_PER_USER_INIT|0x00010064"),
+        ("10865", "CSIDL_FLAG_PER_USER_INIT|0x00010065"),
+        ("10866", "CSIDL_FLAG_PER_USER_INIT|0x00010066"),
+        ("10867", "CSIDL_FLAG_PER_USER_INIT|0x00010067"),
+        ("10868", "CSIDL_FLAG_PER_USER_INIT|0x00010068"),
+        ("10869", "CSIDL_FLAG_PER_USER_INIT|0x00010069"),
+        ("10870", "CSIDL_FLAG_PER_USER_INIT|0x00010070"),
+        ("10871", "CSIDL_FLAG_PER_USER_INIT|0x00010071"),
+        ("10872", "CSIDL_FLAG_PER_USER_INIT|0x00010072"),
+        ("10873", "CSIDL_FLAG_PER_USER_INIT|0x00010073"),
+        ("10874", "CSIDL_FLAG_PER_USER_INIT|0x00010074"),
+        ("10875", "CSIDL_FLAG_PER_USER_INIT|0x00010075"),
+        ("10876", "CSIDL_FLAG_PER_USER_INIT|0x00010076"),
+        ("10877", "CSIDL_FLAG_PER_USER_INIT|0x00010077"),
+        ("10878", "CSIDL_FLAG_PER_USER_INIT|0x00010078"),
+        ("10879", "CSIDL_FLAG_PER_USER_INIT|0x00010079"),
+        ("10880", "CSIDL_FLAG_PER_USER_INIT|0x00010080"),
+        ("10881", "CSIDL_FLAG_PER_USER_INIT|0x00010081"),
+        ("10882", "CSIDL_FLAG_PER_USER_INIT|0x00010082"),
+        ("10883", "CSIDL_FLAG_PER_USER_INIT|0x00010083"),
+        ("10884", "CSIDL_FLAG_PER_USER_INIT|0x00010084"),
+        ("10885", "CSIDL_FLAG_PER_USER_INIT|0x00010085"),
+        ("10886", "CSIDL_FLAG_PER_USER_INIT|0x00010086"),
+        ("10887", "CSIDL_FLAG_PER_USER_INIT|0x00010087"),
+        ("10888", "CSIDL_FLAG_PER_USER_INIT|0x00010088"),
+        ("10889", "CSIDL_FLAG_PER_USER_INIT|0x00010089"),
+        ("10890", "CSIDL_FLAG_PER_USER_INIT|0x00010090"),
+        ("10891", "CSIDL_FLAG_PER_USER_INIT|0x00010091"),
+        ("10892", "CSIDL_FLAG_PER_USER_INIT|0x00010092"),
+        ("10893", "CSIDL_FLAG_PER_USER_INIT|0x00010093"),
+        ("10894", "CSIDL_FLAG_PER_USER_INIT|0x00010094"),
+        ("10895", "CSIDL_FLAG_PER_USER_INIT|0x00010095"),
+        ("10896", "CSIDL_FLAG_PER_USER_INIT|0x00010096"),
+        ("10897", "CSIDL_FLAG_PER_USER_INIT|0x00010097"),
+        ("10898", "CSIDL_FLAG_PER_USER_INIT|0x00010098"),
+        ("10899", "CSIDL_FLAG_PER_USER_INIT|0x00010099"),
+        ("10900", "CSIDL_FLAG_PER_USER_INIT|0x00010100"),
+        ("10901", "CSIDL_FLAG_PER_USER_INIT|0x00010101"),
+        ("10902", "CSIDL_FLAG_PER_USER_INIT|0x00010102"),
+        ("10903", "CSIDL_FLAG_PER_USER_INIT|0x00010103"),
+        ("10904", "CSIDL_FLAG_PER_USER_INIT|0x00010104"),
+        ("10905", "CSIDL_FLAG_PER_USER_INIT|0x00010105"),
+        ("10906", "CSIDL_FLAG_PER_USER_INIT|0x00010106"),
+        ("10907", "CSIDL_FLAG_PER_USER_INIT|0x00010107"),
+        ("10908", "CSIDL_FLAG_PER_USER_INIT|0x00010108"),
+        ("10909", "CSIDL_FLAG_PER_USER_INIT|0x00010109"),
+        ("10910", "CSIDL_FLAG_PER_USER_INIT|0x00010110"),
+        ("10911", "CSIDL_FLAG_PER_USER_INIT|0x00010111"),
+        ("10912", "CSIDL_FLAG_PER_USER_INIT|0x00010112"),
+        ("10913", "CSIDL_FLAG_PER_USER_INIT|0x00010113"),
+        ("10914", "CSIDL_FLAG_PER_USER_INIT|0x00010114"),
+        ("10915", "CSIDL_FLAG_PER_USER_INIT|0x00010115"),
+        ("10916", "CSIDL_FLAG_PER_USER_INIT|0x00010116"),
+        ("10917", "CSIDL_FLAG_PER_USER_INIT|0x00010117"),
+        ("10918", "CSIDL_FLAG_PER_USER_INIT|0x00010118"),
+        ("10919", "CSIDL_FLAG_PER_USER_INIT|0x00010119"),
+        ("10920", "CSIDL_FLAG_PER_USER_INIT|0x00010120"),
+        ("10921", "CSIDL_FLAG_PER_USER_INIT|0x00010121"),
+        ("10922", "CSIDL_FLAG_PER_USER_INIT|0x00010122"),
+        ("10923", "CSIDL_FLAG_PER_USER_INIT|0x00010123"),
+        ("10924", "CSIDL_FLAG_PER_USER_INIT|0x00010124"),
+        ("10925", "CSIDL_FLAG_PER_USER_INIT|0x00010125"),
+        ("10926", "CSIDL_FLAG_PER_USER_INIT|0x00010126"),
+        ("10927", "CSIDL_FLAG_PER_USER_INIT|0x00010127"),
+        ("10928", "CSIDL_FLAG_PER_USER_INIT|0x00010128"),
+        ("10929", "CSIDL_FLAG_PER_USER_INIT|0x00010129"),
+        ("10930", "CSIDL_FLAG_PER_USER_INIT|0x00010130"),
+        ("10931", "CSIDL_FLAG_PER_USER_INIT|0x00010131"),
+        ("10932", "CSIDL_FLAG_PER_USER_INIT|0x00010132"),
+        ("10933", "CSIDL_FLAG_PER_USER_INIT|0x00010133"),
+        ("10934", "CSIDL_FLAG_PER_USER_INIT|0x00010134"),
+        ("10935", "CSIDL_FLAG_PER_USER_INIT|0x00010135"),
+        ("10936", "CSIDL_FLAG_PER_USER_INIT|0x00010136"),
+        ("10937", "CSIDL_FLAG_PER_USER_INIT|0x00010137"),
+        ("10938", "CSIDL_FLAG_PER_USER_INIT|0x00010138"),
+        ("10939", "CSIDL_FLAG_PER_USER_INIT|0x00010139"),
+        ("10940", "CSIDL_FLAG_PER_USER_INIT|0x00010140"),
+        ("10941", "CSIDL_FLAG_PER_USER_INIT|0x00010141"),
+        ("10942", "CSIDL_FLAG_PER_USER_INIT|0x00010142"),
+        ("10943", "CSIDL_FLAG_PER_USER_INIT|0x00010143"),
+        ("10944", "CSIDL_FLAG_PER_USER_INIT|0x00010144"),
+        ("10945", "CSIDL_FLAG_PER_USER_INIT|0x00010145"),
+        ("10946", "CSIDL_FLAG_PER_USER_INIT|0x00010146"),
+        ("10947", "CSIDL_FLAG_PER_USER_INIT|0x00010147"),
+        ("10948", "CSIDL_FLAG_PER_USER_INIT|0x00010148"),
+        ("10949", "CSIDL_FLAG_PER_USER_INIT|0x00010149"),
+        ("10950", "CSIDL_FLAG_PER_USER_INIT|0x00010150"),
+        ("10951", "CSIDL_FLAG_PER_USER_INIT|0x00010151"),
+        ("10952", "CSIDL_FLAG_PER_USER_INIT|0x00010152"),
+        ("10953", "CSIDL_FLAG_PER_USER_INIT|0x00010153"),
+        ("10954", "CSIDL_FLAG_PER_USER_INIT|0x00010154"),
+        ("10955", "CSIDL_FLAG_PER_USER_INIT|0x00010155"),
+        ("10956", "CSIDL_FLAG_PER_USER_INIT|0x00010156"),
+        ("10957", "CSIDL_FLAG_PER_USER_INIT|0x00010157"),
+        ("10958", "CSIDL_FLAG_PER_USER_INIT|0x00010158"),
+        ("10959", "CSIDL_FLAG_PER_USER_INIT|0x00010159"),
+        ("10960", "CSIDL_FLAG_PER_USER_INIT|0x00010160"),
+        ("10961", "CSIDL_FLAG_PER_USER_INIT|0x00010161"),
+        ("10962", "CSIDL_FLAG_PER_USER_INIT|0x00010162"),
+        ("10963", "CSIDL_FLAG_PER_USER_INIT|0x00010163"),
+        ("10964", "CSIDL_FLAG_PER_USER_INIT|0x00010164"),
+        ("10965", "CSIDL_FLAG_PER_USER_INIT|0x00010165"),
+        ("10966", "CSIDL_FLAG_PER_USER_INIT|0x00010166"),
+        ("10967", "CSIDL_FLAG_PER_USER_INIT|0x00010167"),
+        ("10968", "CSIDL_FLAG_PER_USER_INIT|0x00010168"),
+        ("10969", "CSIDL_FLAG_PER_USER_INIT|0x00010169"),
+        ("10970", "CSIDL_FLAG_PER_USER_INIT|0x00010170"),
+        ("10971", "CSIDL_FLAG_PER_USER_INIT|0x00010171"),
+        ("10972", "CSIDL_FLAG_PER_USER_INIT|0x00010172"),
+        ("10973", "CSIDL_FLAG_PER_USER_INIT|0x00010173"),
+        ("10974", "CSIDL_FLAG_PER_USER_INIT|0x00010174"),
+        ("10975", "CSIDL_FLAG_PER_USER_INIT|0x00010175"),
+        ("10976", "CSIDL_FLAG_PER_USER_INIT|0x00010176"),
+        ("10977", "CSIDL_FLAG_PER_USER_INIT|0x00010177"),
+        ("10978", "CSIDL_FLAG_PER_USER_INIT|0x00010178"),
+        ("10979", "CSIDL_FLAG_PER_USER_INIT|0x00010179"),
+        ("10980", "CSIDL_FLAG_PER_USER_INIT|0x00010180"),
+        ("10981", "CSIDL_FLAG_PER_USER_INIT|0x00010181"),
+        ("10982", "CSIDL_FLAG_PER_USER_INIT|0x00010182"),
+        ("10983", "CSIDL_FLAG_PER_USER_INIT|0x00010183"),
+        ("10984", "CSIDL_FLAG_PER_USER_INIT|0x00010184"),
+        ("10985", "CSIDL_FLAG_PER_USER_INIT|0x00010185"),
+        ("10986", "CSIDL_FLAG_PER_USER_INIT|0x00010186"),
+        ("10987", "CSIDL_FLAG_PER_USER_INIT|0x00010187"),
+        ("10988", "CSIDL_FLAG_PER_USER_INIT|0x00010188"),
+        ("10989", "CSIDL_FLAG_PER_USER_INIT|0x00010189"),
+        ("10990", "CSIDL_FLAG_PER_USER_INIT|0x00010190"),
+        ("10991", "CSIDL_FLAG_PER_USER_INIT|0x00010191"),
+        ("10992", "CSIDL_FLAG_PER_USER_INIT|0x00010192"),
+        ("10993", "CSIDL_FLAG_PER_USER_INIT|0x00010193"),
+        ("10994", "CSIDL_FLAG_PER_USER_INIT|0x00010194"),
+        ("10995", "CSIDL_FLAG_PER_USER_INIT|0x00010195"),
+        ("10996", "CSIDL_FLAG_PER_USER_INIT|0x00010196"),
+        ("10997", "CSIDL_FLAG_PER_USER_INIT|0x00010197"),
+        ("10998", "CSIDL_FLAG_PER_USER_INIT|0x00010198"),
+        ("10999", "CSIDL_FLAG_PER_USER_INIT|0x00010199"),
+        ("11000", "CSIDL_FLAG_NO_ALIAS|0x00010000"),
+        ("11001", "CSIDL_FLAG_NO_ALIAS|0x00010001"),
+        ("11002", "CSIDL_FLAG_NO_ALIAS|0x00010002"),
+        ("11003", "CSIDL_FLAG_NO_ALIAS|0x00010003"),
+        ("11004", "CSIDL_FLAG_NO_ALIAS|0x00010004"),
+        ("11005", "CSIDL_FLAG_NO_ALIAS|0x00010005"),
+        ("11006", "CSIDL_FLAG_NO_ALIAS|0x00010006"),
+        ("11007", "CSIDL_FLAG_NO_ALIAS|0x00010007"),
+        ("11008", "CSIDL_FLAG_NO_ALIAS|0x00010008"),
+        ("11009", "CSIDL_FLAG_NO_ALIAS|0x00010009"),
+        ("11010", "CSIDL_FLAG_NO_ALIAS|0x00010010"),
+        ("11011", "CSIDL_FLAG_NO_ALIAS|0x00010011"),
+        ("11012", "CSIDL_FLAG_NO_ALIAS|0x00010012"),
+        ("11013", "CSIDL_FLAG_NO_ALIAS|0x00010013"),
+        ("11014", "CSIDL_FLAG_NO_ALIAS|0x00010014"),
+        ("11015", "CSIDL_FLAG_NO_ALIAS|0x00010015"),
+        ("11016", "CSIDL_FLAG_NO_ALIAS|0x00010016"),
+        ("11017", "CSIDL_FLAG_NO_ALIAS|0x00010017"),
+        ("11018", "CSIDL_FLAG_NO_ALIAS|0x00010018"),
+        ("11019", "CSIDL_FLAG_NO_ALIAS|0x00010019"),
+        ("11020", "CSIDL_FLAG_NO_ALIAS|0x00010020"),
+        ("11021", "CSIDL_FLAG_NO_ALIAS|0x00010021"),
+        ("11022", "CSIDL_FLAG_NO_ALIAS|0x00010022"),
+        ("11023", "CSIDL_FLAG_NO_ALIAS|0x00010023"),
+        ("11024", "CSIDL_FLAG_NO_ALIAS|0x00010024"),
+        ("11025", "CSIDL_FLAG_NO_ALIAS|0x00010025"),
+        ("11026", "CSIDL_FLAG_NO_ALIAS|0x00010026"),
+        ("11027", "CSIDL_FLAG_NO_ALIAS|0x00010027"),
+        ("11028", "CSIDL_FLAG_NO_ALIAS|0x00010028"),
+        ("11029", "CSIDL_FLAG_NO_ALIAS|0x00010029"),
+        ("11030", "CSIDL_FLAG_NO_ALIAS|0x00010030"),
+        ("11031", "CSIDL_FLAG_NO_ALIAS|0x00010031"),
+        ("11032", "CSIDL_FLAG_NO_ALIAS|0x00010032"),
+        ("11033", "CSIDL_FLAG_NO_ALIAS|0x00010033"),
+        ("11034", "CSIDL_FLAG_NO_ALIAS|0x00010034"),
+        ("11035", "CSIDL_FLAG_NO_ALIAS|0x00010035"),
+        ("11036", "CSIDL_FLAG_NO_ALIAS|0x00010036"),
+        ("11037", "CSIDL_FLAG_NO_ALIAS|0x00010037"),
+        ("11038", "CSIDL_FLAG_NO_ALIAS|0x00010038"),
+        ("11039", "CSIDL_FLAG_NO_ALIAS|0x00010039"),
+        ("11040", "CSIDL_FLAG_NO_ALIAS|0x00010040"),
+        ("11041", "CSIDL_FLAG_NO_ALIAS|0x00010041"),
+        ("11042", "CSIDL_FLAG_NO_ALIAS|0x00010042"),
+        ("11043", "CSIDL_FLAG_NO_ALIAS|0x00010043"),
+        ("11044", "CSIDL_FLAG_NO_ALIAS|0x00010044"),
+        ("11045", "CSIDL_FLAG_NO_ALIAS|0x00010045"),
+        ("11046", "CSIDL_FLAG_NO_ALIAS|0x00010046"),
+        ("11047", "CSIDL_FLAG_NO_ALIAS|0x00010047"),
+        ("11048", "CSIDL_FLAG_NO_ALIAS|0x00010048"),
+        ("11049", "CSIDL_FLAG_NO_ALIAS|0x00010049"),
+        ("11050", "CSIDL_FLAG_NO_ALIAS|0x00010050"),
+        ("11051", "CSIDL_FLAG_NO_ALIAS|0x00010051"),
+        ("11052", "CSIDL_FLAG_NO_ALIAS|0x00010052"),
+        ("11053", "CSIDL_FLAG_NO_ALIAS|0x00010053"),
+        ("11054", "CSIDL_FLAG_NO_ALIAS|0x00010054"),
+        ("11055", "CSIDL_FLAG_NO_ALIAS|0x00010055"),
+        ("11056", "CSIDL_FLAG_NO_ALIAS|0x00010056"),
+        ("11057", "CSIDL_FLAG_NO_ALIAS|0x00010057"),
+        ("11058", "CSIDL_FLAG_NO_ALIAS|0x00010058"),
+        ("11059", "CSIDL_FLAG_NO_ALIAS|0x00010059"),
+        ("11060", "CSIDL_FLAG_NO_ALIAS|0x00010060"),
+        ("11061", "CSIDL_FLAG_NO_ALIAS|0x00010061"),
+        ("11062", "CSIDL_FLAG_NO_ALIAS|0x00010062"),
+        ("11063", "CSIDL_FLAG_NO_ALIAS|0x00010063"),
+        ("11064", "CSIDL_FLAG_NO_ALIAS|0x00010064"),
+        ("11065", "CSIDL_FLAG_NO_ALIAS|0x00010065"),
+        ("11066", "CSIDL_FLAG_NO_ALIAS|0x00010066"),
+        ("11067", "CSIDL_FLAG_NO_ALIAS|0x00010067"),
+        ("11068", "CSIDL_FLAG_NO_ALIAS|0x00010068"),
+        ("11069", "CSIDL_FLAG_NO_ALIAS|0x00010069"),
+        ("11070", "CSIDL_FLAG_NO_ALIAS|0x00010070"),
+        ("11071", "CSIDL_FLAG_NO_ALIAS|0x00010071"),
+        ("11072", "CSIDL_FLAG_NO_ALIAS|0x00010072"),
+        ("11073", "CSIDL_FLAG_NO_ALIAS|0x00010073"),
+        ("11074", "CSIDL_FLAG_NO_ALIAS|0x00010074"),
+        ("11075", "CSIDL_FLAG_NO_ALIAS|0x00010075"),
+        ("11076", "CSIDL_FLAG_NO_ALIAS|0x00010076"),
+        ("11077", "CSIDL_FLAG_NO_ALIAS|0x00010077"),
+        ("11078", "CSIDL_FLAG_NO_ALIAS|0x00010078"),
+        ("11079", "CSIDL_FLAG_NO_ALIAS|0x00010079"),
+        ("11080", "CSIDL_FLAG_NO_ALIAS|0x00010080"),
+        ("11081", "CSIDL_FLAG_NO_ALIAS|0x00010081"),
+        ("11082", "CSIDL_FLAG_NO_ALIAS|0x00010082"),
+        ("11083", "CSIDL_FLAG_NO_ALIAS|0x00010083"),
+        ("11084", "CSIDL_FLAG_NO_ALIAS|0x00010084"),
+        ("11085", "CSIDL_FLAG_NO_ALIAS|0x00010085"),
+        ("11086", "CSIDL_FLAG_NO_ALIAS|0x00010086"),
+        ("11087", "CSIDL_FLAG_NO_ALIAS|0x00010087"),
+        ("11088", "CSIDL_FLAG_NO_ALIAS|0x00010088"),
+        ("11089", "CSIDL_FLAG_NO_ALIAS|0x00010089"),
+        ("11090", "CSIDL_FLAG_NO_ALIAS|0x00010090"),
+        ("11091", "CSIDL_FLAG_NO_ALIAS|0x00010091"),
+        ("11092", "CSIDL_FLAG_NO_ALIAS|0x00010092"),
+        ("11093", "CSIDL_FLAG_NO_ALIAS|0x00010093"),
+        ("11094", "CSIDL_FLAG_NO_ALIAS|0x00010094"),
+        ("11095", "CSIDL_FLAG_NO_ALIAS|0x00010095"),
+        ("11096", "CSIDL_FLAG_NO_ALIAS|0x00010096"),
+        ("11097", "CSIDL_FLAG_NO_ALIAS|0x00010097"),
+        ("11098", "CSIDL_FLAG_NO_ALIAS|0x00010098"),
+        ("11099", "CSIDL_FLAG_NO_ALIAS|0x00010099"),
+        ("11100", "CSIDL_FLAG_NO_ALIAS|0x00010100"),
+        ("11101", "CSIDL_FLAG_NO_ALIAS|0x00010101"),
+        ("11102", "CSIDL_FLAG_NO_ALIAS|0x00010102"),
+        ("11103", "CSIDL_FLAG_NO_ALIAS|0x00010103"),
+        ("11104", "CSIDL_FLAG_NO_ALIAS|0x00010104"),
+        ("11105", "CSIDL_FLAG_NO_ALIAS|0x00010105"),
+        ("11106", "CSIDL_FLAG_NO_ALIAS|0x00010106"),
+        ("11107", "CSIDL_FLAG_NO_ALIAS|0x00010107"),
+        ("11108", "CSIDL_FLAG_NO_ALIAS|0x00010108"),
+        ("11109", "CSIDL_FLAG_NO_ALIAS|0x00010109"),
+        ("11110", "CSIDL_FLAG_NO_ALIAS|0x00010110"),
+        ("11111", "CSIDL_FLAG_NO_ALIAS|0x00010111"),
+        ("11112", "CSIDL_FLAG_NO_ALIAS|0x00010112"),
+        ("11113", "CSIDL_FLAG_NO_ALIAS|0x00010113"),
+        ("11114", "CSIDL_FLAG_NO_ALIAS|0x00010114"),
+        ("11115", "CSIDL_FLAG_NO_ALIAS|0x00010115"),
+        ("11116", "CSIDL_FLAG_NO_ALIAS|0x00010116"),
+        ("11117", "CSIDL_FLAG_NO_ALIAS|0x00010117"),
+        ("11118", "CSIDL_FLAG_NO_ALIAS|0x00010118"),
+        ("11119", "CSIDL_FLAG_NO_ALIAS|0x00010119"),
+        ("11120", "CSIDL_FLAG_NO_ALIAS|0x00010120"),
+        ("11121", "CSIDL_FLAG_NO_ALIAS|0x00010121"),
+        ("11122", "CSIDL_FLAG_NO_ALIAS|0x00010122"),
+        ("11123", "CSIDL_FLAG_NO_ALIAS|0x00010123"),
+        ("11124", "CSIDL_FLAG_NO_ALIAS|0x00010124"),
+        ("11125", "CSIDL_FLAG_NO_ALIAS|0x00010125"),
+        ("11126", "CSIDL_FLAG_NO_ALIAS|0x00010126"),
+        ("11127", "CSIDL_FLAG_NO_ALIAS|0x00010127"),
+        ("11128", "CSIDL_FLAG_NO_ALIAS|0x00010128"),
+        ("11129", "CSIDL_FLAG_NO_ALIAS|0x00010129"),
+        ("11130", "CSIDL_FLAG_NO_ALIAS|0x00010130"),
+        ("11131", "CSIDL_FLAG_NO_ALIAS|0x00010131"),
+        ("11132", "CSIDL_FLAG_NO_ALIAS|0x00010132"),
+        ("11133", "CSIDL_FLAG_NO_ALIAS|0x00010133"),
+        ("11134", "CSIDL_FLAG_NO_ALIAS|0x00010134"),
+        ("11135", "CSIDL_FLAG_NO_ALIAS|0x00010135"),
+        ("11136", "CSIDL_FLAG_NO_ALIAS|0x00010136"),
+        ("11137", "CSIDL_FLAG_NO_ALIAS|0x00010137"),
+        ("11138", "CSIDL_FLAG_NO_ALIAS|0x00010138"),
+        ("11139", "CSIDL_FLAG_NO_ALIAS|0x00010139"),
+        ("11140", "CSIDL_FLAG_NO_ALIAS|0x00010140"),
+        ("11141", "CSIDL_FLAG_NO_ALIAS|0x00010141"),
+        ("11142", "CSIDL_FLAG_NO_ALIAS|0x00010142"),
+        ("11143", "CSIDL_FLAG_NO_ALIAS|0x00010143"),
+        ("11144", "CSIDL_FLAG_NO_ALIAS|0x00010144"),
+        ("11145", "CSIDL_FLAG_NO_ALIAS|0x00010145"),
+        ("11146", "CSIDL_FLAG_NO_ALIAS|0x00010146"),
+        ("11147", "CSIDL_FLAG_NO_ALIAS|0x00010147"),
+        ("11148", "CSIDL_FLAG_NO_ALIAS|0x00010148"),
+        ("11149", "CSIDL_FLAG_NO_ALIAS|0x00010149"),
+        ("11150", "CSIDL_FLAG_NO_ALIAS|0x00010150"),
+        ("11151", "CSIDL_FLAG_NO_ALIAS|0x00010151"),
+        ("11152", "CSIDL_FLAG_NO_ALIAS|0x00010152"),
+        ("11153", "CSIDL_FLAG_NO_ALIAS|0x00010153"),
+        ("11154", "CSIDL_FLAG_NO_ALIAS|0x00010154"),
+        ("11155", "CSIDL_FLAG_NO_ALIAS|0x00010155"),
+        ("11156", "CSIDL_FLAG_NO_ALIAS|0x00010156"),
+        ("11157", "CSIDL_FLAG_NO_ALIAS|0x00010157"),
+        ("11158", "CSIDL_FLAG_NO_ALIAS|0x00010158"),
+        ("11159", "CSIDL_FLAG_NO_ALIAS|0x00010159"),
+        ("11160", "CSIDL_FLAG_NO_ALIAS|0x00010160"),
+        ("11161", "CSIDL_FLAG_NO_ALIAS|0x00010161"),
+        ("11162", "CSIDL_FLAG_NO_ALIAS|0x00010162"),
+        ("11163", "CSIDL_FLAG_NO_ALIAS|0x00010163"),
+        ("11164", "CSIDL_FLAG_NO_ALIAS|0x00010164"),
+        ("11165", "CSIDL_FLAG_NO_ALIAS|0x00010165"),
+        ("11166", "CSIDL_FLAG_NO_ALIAS|0x00010166"),
+        ("11167", "CSIDL_FLAG_NO_ALIAS|0x00010167"),
+        ("11168", "CSIDL_FLAG_NO_ALIAS|0x00010168"),
+        ("11169", "CSIDL_FLAG_NO_ALIAS|0x00010169"),
+        ("11170", "CSIDL_FLAG_NO_ALIAS|0x00010170"),
+        ("11171", "CSIDL_FLAG_NO_ALIAS|0x00010171"),
+        ("11172", "CSIDL_FLAG_NO_ALIAS|0x00010172"),
+        ("11173", "CSIDL_FLAG_NO_ALIAS|0x00010173"),
+        ("11174", "CSIDL_FLAG_NO_ALIAS|0x00010174"),
+        ("11175", "CSIDL_FLAG_NO_ALIAS|0x00010175"),
+        ("11176", "CSIDL_FLAG_NO_ALIAS|0x00010176"),
+        ("11177", "CSIDL_FLAG_NO_ALIAS|0x00010177"),
+        ("11178", "CSIDL_FLAG_NO_ALIAS|0x00010178"),
+        ("11179", "CSIDL_FLAG_NO_ALIAS|0x00010179"),
+        ("11180", "CSIDL_FLAG_NO_ALIAS|0x00010180"),
+        ("11181", "CSIDL_FLAG_NO_ALIAS|0x00010181"),
+        ("11182", "CSIDL_FLAG_NO_ALIAS|0x00010182"),
+        ("11183", "CSIDL_FLAG_NO_ALIAS|0x00010183"),
+        ("11184", "CSIDL_FLAG_NO_ALIAS|0x00010184"),
+        ("11185", "CSIDL_FLAG_NO_ALIAS|0x00010185"),
+        ("11186", "CSIDL_FLAG_NO_ALIAS|0x00010186"),
+        ("11187", "CSIDL_FLAG_NO_ALIAS|0x00010187"),
+        ("11188", "CSIDL_FLAG_NO_ALIAS|0x00010188"),
+        ("11189", "CSIDL_FLAG_NO_ALIAS|0x00010189"),
+        ("11190", "CSIDL_FLAG_NO_ALIAS|0x00010190"),
+        ("11191", "CSIDL_FLAG_NO_ALIAS|0x00010191"),
+        ("11192", "CSIDL_FLAG_NO_ALIAS|0x00010192"),
+        ("11193", "CSIDL_FLAG_NO_ALIAS|0x00010193"),
+        ("11194", "CSIDL_FLAG_NO_ALIAS|0x00010194"),
+        ("11195", "CSIDL_FLAG_NO_ALIAS|0x00010195"),
+        ("11196", "CSIDL_FLAG_NO_ALIAS|0x00010196"),
+        ("11197", "CSIDL_FLAG_NO_ALIAS|0x00010197"),
+        ("11198", "CSIDL_FLAG_NO_ALIAS|0x00010198"),
+        ("11199", "CSIDL_FLAG_NO_ALIAS|0x00010199"),
+        ("11200", "CSIDL_FLAG_NO_ALIAS|0x00010200"),
+        ("11201", "CSIDL_FLAG_NO_ALIAS|0x00010201"),
+        ("11202", "CSIDL_FLAG_NO_ALIAS|0x00010202"),
+        ("11203", "CSIDL_FLAG_NO_ALIAS|0x00010203"),
+        ("11204", "CSIDL_FLAG_NO_ALIAS|0x00010204"),
+        ("11205", "CSIDL_FLAG_NO_ALIAS|0x00010205"),
+        ("11206", "CSIDL_FLAG_NO_ALIAS|0x00010206"),
+        ("11207", "CSIDL_FLAG_NO_ALIAS|0x00010207"),
+        ("11208", "CSIDL_FLAG_NO_ALIAS|0x00010208"),
+        ("11209", "CSIDL_FLAG_NO_ALIAS|0x00010209"),
+        ("11210", "CSIDL_FLAG_NO_ALIAS|0x00010210"),
+        ("11211", "CSIDL_FLAG_NO_ALIAS|0x00010211"),
+        ("11212", "CSIDL_FLAG_NO_ALIAS|0x00010212"),
+        ("11213", "CSIDL_FLAG_NO_ALIAS|0x00010213"),
+        ("11214", "CSIDL_FLAG_NO_ALIAS|0x00010214"),
+        ("11215", "CSIDL_FLAG_NO_ALIAS|0x00010215"),
+        ("11216", "CSIDL_FLAG_NO_ALIAS|0x00010216"),
+        ("11217", "CSIDL_FLAG_NO_ALIAS|0x00010217"),
+        ("11218", "CSIDL_FLAG_NO_ALIAS|0x00010218"),
+        ("11219", "CSIDL_FLAG_NO_ALIAS|0x00010219"),
+        ("11220", "CSIDL_FLAG_NO_ALIAS|0x00010220"),
+        ("11221", "CSIDL_FLAG_NO_ALIAS|0x00010221"),
+        ("11222", "CSIDL_FLAG_NO_ALIAS|0x00010222"),
+        ("11223", "CSIDL_FLAG_NO_ALIAS|0x00010223"),
+        ("11224", "CSIDL_FLAG_NO_ALIAS|0x00010224"),
+        ("11225", "CSIDL_FLAG_NO_ALIAS|0x00010225"),
+        ("11226", "CSIDL_FLAG_NO_ALIAS|0x00010226"),
+        ("11227", "CSIDL_FLAG_NO_ALIAS|0x00010227"),
+        ("11228", "CSIDL_FLAG_NO_ALIAS|0x00010228"),
+        ("11229", "CSIDL_FLAG_NO_ALIAS|0x00010229"),
+        ("11230", "CSIDL_FLAG_NO_ALIAS|0x00010230"),
+        ("11231", "CSIDL_FLAG_NO_ALIAS|0x00010231"),
+        ("11232", "CSIDL_FLAG_NO_ALIAS|0x00010232"),
+        ("11233", "CSIDL_FLAG_NO_ALIAS|0x00010233"),
+        ("11234", "CSIDL_FLAG_NO_ALIAS|0x00010234"),
+        ("11235", "CSIDL_FLAG_NO_ALIAS|0x00010235"),
+        ("11236", "CSIDL_FLAG_NO_ALIAS|0x00010236"),
+        ("11237", "CSIDL_FLAG_NO_ALIAS|0x00010237"),
+        ("11238", "CSIDL_FLAG_NO_ALIAS|0x00010238"),
+        ("11239", "CSIDL_FLAG_NO_ALIAS|0x00010239"),
+        ("11240", "CSIDL_FLAG_NO_ALIAS|0x00010240"),
+        ("11241", "CSIDL_FLAG_NO_ALIAS|0x00010241"),
+        ("11242", "CSIDL_FLAG_NO_ALIAS|0x00010242"),
+        ("11243", "CSIDL_FLAG_NO_ALIAS|0x00010243"),
+        ("11244", "CSIDL_FLAG_NO_ALIAS|0x00010244"),
+        ("11245", "CSIDL_FLAG_NO_ALIAS|0x00010245"),
+        ("11246", "CSIDL_FLAG_NO_ALIAS|0x00010246"),
+        ("11247", "CSIDL_FLAG_NO_ALIAS|0x00010247"),
+        ("11248", "CSIDL_FLAG_NO_ALIAS|0x00010248"),
+        ("11249", "CSIDL_FLAG_NO_ALIAS|0x00010249"),
+        ("11250", "CSIDL_FLAG_NO_ALIAS|0x00010250"),
+        ("11251", "CSIDL_FLAG_NO_ALIAS|0x00010251"),
+        ("11252", "CSIDL_FLAG_NO_ALIAS|0x00010252"),
+        ("11253", "CSIDL_FLAG_NO_ALIAS|0x00010253"),
+        ("11254", "CSIDL_FLAG_NO_ALIAS|0x00010254"),
+        ("11255", "CSIDL_FLAG_NO_ALIAS|0x00010255"),
+        ("11256", "CSIDL_FLAG_NO_ALIAS|0x00010256"),
+        ("11257", "CSIDL_FLAG_NO_ALIAS|0x00010257"),
+        ("11258", "CSIDL_FLAG_NO_ALIAS|0x00010258"),
+        ("11259", "CSIDL_FLAG_NO_ALIAS|0x00010259"),
+        ("11260", "CSIDL_FLAG_NO_ALIAS|0x00010260"),
+        ("11261", "CSIDL_FLAG_NO_ALIAS|0x00010261"),
+        ("11262", "CSIDL_FLAG_NO_ALIAS|0x00010262"),
+        ("11263", "CSIDL_FLAG_NO_ALIAS|0x00010263"),
+        ("11264", "CSIDL_FLAG_NO_ALIAS|0x00010264"),
+        ("11265", "CSIDL_FLAG_NO_ALIAS|0x00010265"),
+        ("11266", "CSIDL_FLAG_NO_ALIAS|0x00010266"),
+        ("11267", "CSIDL_FLAG_NO_ALIAS|0x00010267"),
+        ("11268", "CSIDL_FLAG_NO_ALIAS|0x00010268"),
+        ("11269", "CSIDL_FLAG_NO_ALIAS|0x00010269"),
+        ("11270", "CSIDL_FLAG_NO_ALIAS|0x00010270"),
+        ("11271", "CSIDL_FLAG_NO_ALIAS|0x00010271"),
+        ("11272", "CSIDL_FLAG_NO_ALIAS|0x00010272"),
+        ("11273", "CSIDL_FLAG_NO_ALIAS|0x00010273"),
+        ("11274", "CSIDL_FLAG_NO_ALIAS|0x00010274"),
+        ("11275", "CSIDL_FLAG_NO_ALIAS|0x00010275"),
+        ("11276", "CSIDL_FLAG_NO_ALIAS|0x00010276"),
+        ("11277", "CSIDL_FLAG_NO_ALIAS|0x00010277"),
+        ("11278", "CSIDL_FLAG_NO_ALIAS|0x00010278"),
+        ("11279", "CSIDL_FLAG_NO_ALIAS|0x00010279"),
+        ("11280", "CSIDL_FLAG_NO_ALIAS|0x00010280"),
+        ("11281", "CSIDL_FLAG_NO_ALIAS|0x00010281"),
+        ("11282", "CSIDL_FLAG_NO_ALIAS|0x00010282"),
+        ("11283", "CSIDL_FLAG_NO_ALIAS|0x00010283"),
+        ("11284", "CSIDL_FLAG_NO_ALIAS|0x00010284"),
+        ("11285", "CSIDL_FLAG_NO_ALIAS|0x00010285"),
+        ("11286", "CSIDL_FLAG_NO_ALIAS|0x00010286"),
+        ("11287", "CSIDL_FLAG_NO_ALIAS|0x00010287"),
+        ("11288", "CSIDL_FLAG_NO_ALIAS|0x00010288"),
+        ("11289", "CSIDL_FLAG_NO_ALIAS|0x00010289"),
+        ("11290", "CSIDL_FLAG_NO_ALIAS|0x00010290"),
+        ("11291", "CSIDL_FLAG_NO_ALIAS|0x00010291"),
+        ("11292", "CSIDL_FLAG_NO_ALIAS|0x00010292"),
+        ("11293", "CSIDL_FLAG_NO_ALIAS|0x00010293"),
+        ("11294", "CSIDL_FLAG_NO_ALIAS|0x00010294"),
+        ("11295", "CSIDL_FLAG_NO_ALIAS|0x00010295"),
+        ("11296", "CSIDL_FLAG_NO_ALIAS|0x00010296"),
+        ("11297", "CSIDL_FLAG_NO_ALIAS|0x00010297"),
+        ("11298", "CSIDL_FLAG_NO_ALIAS|0x00010298"),
+        ("11299", "CSIDL_FLAG_NO_ALIAS|0x00010299"),
+        ("11300", "CSIDL_FLAG_NO_ALIAS|0x00010300"),
+        ("11301", "CSIDL_FLAG_NO_ALIAS|0x00010301"),
+        ("11302", "CSIDL_FLAG_NO_ALIAS|0x00010302"),
+        ("11303", "CSIDL_FLAG_NO_ALIAS|0x00010303"),
+        ("11304", "CSIDL_FLAG_NO_ALIAS|0x00010304"),
+        ("11305", "CSIDL_FLAG_NO_ALIAS|0x00010305"),
+        ("11306", "CSIDL_FLAG_NO_ALIAS|0x00010306"),
+        ("11307", "CSIDL_FLAG_NO_ALIAS|0x00010307"),
+        ("11308", "CSIDL_FLAG_NO_ALIAS|0x00010308"),
+        ("11309", "CSIDL_FLAG_NO_ALIAS|0x00010309"),
+        ("11310", "CSIDL_FLAG_NO_ALIAS|0x00010310"),
+        ("11311", "CSIDL_FLAG_NO_ALIAS|0x00010311"),
+        ("11312", "CSIDL_FLAG_NO_ALIAS|0x00010312"),
+        ("11313", "CSIDL_FLAG_NO_ALIAS|0x00010313"),
+        ("11314", "CSIDL_FLAG_NO_ALIAS|0x00010314"),
+        ("11315", "CSIDL_FLAG_NO_ALIAS|0x00010315"),
+        ("11316", "CSIDL_FLAG_NO_ALIAS|0x00010316"),
+        ("11317", "CSIDL_FLAG_NO_ALIAS|0x00010317"),
+        ("11318", "CSIDL_FLAG_NO_ALIAS|0x00010318"),
+        ("11319", "CSIDL_FLAG_NO_ALIAS|0x00010319"),
+        ("11320", "CSIDL_FLAG_NO_ALIAS|0x00010320"),
+        ("11321", "CSIDL_FLAG_NO_ALIAS|0x00010321"),
+        ("11322", "CSIDL_FLAG_NO_ALIAS|0x00010322"),
+        ("11323", "CSIDL_FLAG_NO_ALIAS|0x00010323"),
+        ("11324", "CSIDL_FLAG_NO_ALIAS|0x00010324"),
+        ("11325", "CSIDL_FLAG_NO_ALIAS|0x00010325"),
+        ("11326", "CSIDL_FLAG_NO_ALIAS|0x00010326"),
+        ("11327", "CSIDL_FLAG_NO_ALIAS|0x00010327"),
+        ("11328", "CSIDL_FLAG_NO_ALIAS|0x00010328"),
+        ("11329", "CSIDL_FLAG_NO_ALIAS|0x00010329"),
+        ("11330", "CSIDL_FLAG_NO_ALIAS|0x00010330"),
+        ("11331", "CSIDL_FLAG_NO_ALIAS|0x00010331"),
+        ("11332", "CSIDL_FLAG_NO_ALIAS|0x00010332"),
+        ("11333", "CSIDL_FLAG_NO_ALIAS|0x00010333"),
+        ("11334", "CSIDL_FLAG_NO_ALIAS|0x00010334"),
+        ("11335", "CSIDL_FLAG_NO_ALIAS|0x00010335"),
+        ("11336", "CSIDL_FLAG_NO_ALIAS|0x00010336"),
+        ("11337", "CSIDL_FLAG_NO_ALIAS|0x00010337"),
+        ("11338", "CSIDL_FLAG_NO_ALIAS|0x00010338"),
+        ("11339", "CSIDL_FLAG_NO_ALIAS|0x00010339"),
+        ("11340", "CSIDL_FLAG_NO_ALIAS|0x00010340"),
+        ("11341", "CSIDL_FLAG_NO_ALIAS|0x00010341"),
+        ("11342", "CSIDL_FLAG_NO_ALIAS|0x00010342"),
+        ("11343", "CSIDL_FLAG_NO_ALIAS|0x00010343"),
+        ("11344", "CSIDL_FLAG_NO_ALIAS|0x00010344"),
+        ("11345", "CSIDL_FLAG_NO_ALIAS|0x00010345"),
+        ("11346", "CSIDL_FLAG_NO_ALIAS|0x00010346"),
+        ("11347", "CSIDL_FLAG_NO_ALIAS|0x00010347"),
+        ("11348", "CSIDL_FLAG_NO_ALIAS|0x00010348"),
+        ("11349", "CSIDL_FLAG_NO_ALIAS|0x00010349"),
+        ("11350", "CSIDL_FLAG_NO_ALIAS|0x00010350"),
+        ("11351", "CSIDL_FLAG_NO_ALIAS|0x00010351"),
+        ("11352", "CSIDL_FLAG_NO_ALIAS|0x00010352"),
+        ("11353", "CSIDL_FLAG_NO_ALIAS|0x00010353"),
+        ("11354", "CSIDL_FLAG_NO_ALIAS|0x00010354"),
+        ("11355", "CSIDL_FLAG_NO_ALIAS|0x00010355"),
+        ("11356", "CSIDL_FLAG_NO_ALIAS|0x00010356"),
+        ("11357", "CSIDL_FLAG_NO_ALIAS|0x00010357"),
+        ("11358", "CSIDL_FLAG_NO_ALIAS|0x00010358"),
+        ("11359", "CSIDL_FLAG_NO_ALIAS|0x00010359"),
+        ("11360", "CSIDL_FLAG_NO_ALIAS|0x00010360"),
+        ("11361", "CSIDL_FLAG_NO_ALIAS|0x00010361"),
+        ("11362", "CSIDL_FLAG_NO_ALIAS|0x00010362"),
+        ("11363", "CSIDL_FLAG_NO_ALIAS|0x00010363"),
+        ("11364", "CSIDL_FLAG_NO_ALIAS|0x00010364"),
+        ("11365", "CSIDL_FLAG_NO_ALIAS|0x00010365"),
+        ("11366", "CSIDL_FLAG_NO_ALIAS|0x00010366"),
+        ("11367", "CSIDL_FLAG_NO_ALIAS|0x00010367"),
+        ("11368", "CSIDL_FLAG_NO_ALIAS|0x00010368"),
+        ("11369", "CSIDL_FLAG_NO_ALIAS|0x00010369"),
+        ("11370", "CSIDL_FLAG_NO_ALIAS|0x00010370"),
+        ("11371", "CSIDL_FLAG_NO_ALIAS|0x00010371"),
+        ("11372", "CSIDL_FLAG_NO_ALIAS|0x00010372"),
+        ("11373", "CSIDL_FLAG_NO_ALIAS|0x00010373"),
+        ("11374", "CSIDL_FLAG_NO_ALIAS|0x00010374"),
+        ("11375", "CSIDL_FLAG_NO_ALIAS|0x00010375"),
+        ("11376", "CSIDL_FLAG_NO_ALIAS|0x00010376"),
+        ("11377", "CSIDL_FLAG_NO_ALIAS|0x00010377"),
+        ("11378", "CSIDL_FLAG_NO_ALIAS|0x00010378"),
+        ("11379", "CSIDL_FLAG_NO_ALIAS|0x00010379"),
+        ("11380", "CSIDL_FLAG_NO_ALIAS|0x00010380"),
+        ("11381", "CSIDL_FLAG_NO_ALIAS|0x00010381"),
+        ("11382", "CSIDL_FLAG_NO_ALIAS|0x00010382"),
+        ("11383", "CSIDL_FLAG_NO_ALIAS|0x00010383"),
+        ("11384", "CSIDL_FLAG_NO_ALIAS|0x00010384"),
+        ("11385", "CSIDL_FLAG_NO_ALIAS|0x00010385"),
+        ("11386", "CSIDL_FLAG_NO_ALIAS|0x00010386"),
+        ("11387", "CSIDL_FLAG_NO_ALIAS|0x00010387"),
+        ("11388", "CSIDL_FLAG_NO_ALIAS|0x00010388"),
+        ("11389", "CSIDL_FLAG_NO_ALIAS|0x00010389"),
+        ("11390", "CSIDL_FLAG_NO_ALIAS|0x00010390"),
+        ("11391", "CSIDL_FLAG_NO_ALIAS|0x00010391"),
+        ("11392", "CSIDL_FLAG_NO_ALIAS|0x00010392"),
+        ("11393", "CSIDL_FLAG_NO_ALIAS|0x00010393"),
+        ("11394", "CSIDL_FLAG_NO_ALIAS|0x00010394"),
+        ("11395", "CSIDL_FLAG_NO_ALIAS|0x00010395"),
+        ("11396", "CSIDL_FLAG_NO_ALIAS|0x00010396"),
+        ("11397", "CSIDL_FLAG_NO_ALIAS|0x00010397"),
+        ("11398", "CSIDL_FLAG_NO_ALIAS|0x00010398"),
+        ("11399", "CSIDL_FLAG_NO_ALIAS|0x00010399"),
+        ("11400", "CSIDL_FLAG_NO_ALIAS|0x00010400"),
+        ("11401", "CSIDL_FLAG_NO_ALIAS|0x00010401"),
+        ("11402", "CSIDL_FLAG_NO_ALIAS|0x00010402"),
+        ("11403", "CSIDL_FLAG_NO_ALIAS|0x00010403"),
+        ("11404", "CSIDL_FLAG_NO_ALIAS|0x00010404"),
+        ("11405", "CSIDL_FLAG_NO_ALIAS|0x00010405"),
+        ("11406", "CSIDL_FLAG_NO_ALIAS|0x00010406"),
+        ("11407", "CSIDL_FLAG_NO_ALIAS|0x00010407"),
+        ("11408", "CSIDL_FLAG_NO_ALIAS|0x00010408"),
+        ("11409", "CSIDL_FLAG_NO_ALIAS|0x00010409"),
+        ("11410", "CSIDL_FLAG_NO_ALIAS|0x00010410"),
+        ("11411", "CSIDL_FLAG_NO_ALIAS|0x00010411"),
+        ("11412", "CSIDL_FLAG_NO_ALIAS|0x00010412"),
+        ("11413", "CSIDL_FLAG_NO_ALIAS|0x00010413"),
+        ("11414", "CSIDL_FLAG_NO_ALIAS|0x00010414"),
+        ("11415", "CSIDL_FLAG_NO_ALIAS|0x00010415"),
+        ("11416", "CSIDL_FLAG_NO_ALIAS|0x00010416"),
+        ("11417", "CSIDL_FLAG_NO_ALIAS|0x00010417"),
+        ("11418", "CSIDL_FLAG_NO_ALIAS|0x00010418"),
+        ("11419", "CSIDL_FLAG_NO_ALIAS|0x00010419"),
+        ("11420", "CSIDL_FLAG_NO_ALIAS|0x00010420"),
+        ("11421", "CSIDL_FLAG_NO_ALIAS|0x00010421"),
+        ("11422", "CSIDL_FLAG_NO_ALIAS|0x00010422"),
+        ("11423", "CSIDL_FLAG_NO_ALIAS|0x00010423"),
+        ("11424", "CSIDL_FLAG_NO_ALIAS|0x00010424"),
+        ("11425", "CSIDL_FLAG_NO_ALIAS|0x00010425"),
+        ("11426", "CSIDL_FLAG_NO_ALIAS|0x00010426"),
+        ("11427", "CSIDL_FLAG_NO_ALIAS|0x00010427"),
+        ("11428", "CSIDL_FLAG_NO_ALIAS|0x00010428"),
+        ("11429", "CSIDL_FLAG_NO_ALIAS|0x00010429"),
+        ("11430", "CSIDL_FLAG_NO_ALIAS|0x00010430"),
+        ("11431", "CSIDL_FLAG_NO_ALIAS|0x00010431"),
+        ("11432", "CSIDL_FLAG_NO_ALIAS|0x00010432"),
+        ("11433", "CSIDL_FLAG_NO_ALIAS|0x00010433"),
+        ("11434", "CSIDL_FLAG_NO_ALIAS|0x00010434"),
+        ("11435", "CSIDL_FLAG_NO_ALIAS|0x00010435"),
+        ("11436", "CSIDL_FLAG_NO_ALIAS|0x00010436"),
+        ("11437", "CSIDL_FLAG_NO_ALIAS|0x00010437"),
+        ("11438", "CSIDL_FLAG_NO_ALIAS|0x00010438"),
+        ("11439", "CSIDL_FLAG_NO_ALIAS|0x00010439"),
+        ("11440", "CSIDL_FLAG_NO_ALIAS|0x00010440"),
+        ("11441", "CSIDL_FLAG_NO_ALIAS|0x00010441"),
+        ("11442", "CSIDL_FLAG_NO_ALIAS|0x00010442"),
+        ("11443", "CSIDL_FLAG_NO_ALIAS|0x00010443"),
+        ("11444", "CSIDL_FLAG_NO_ALIAS|0x00010444"),
+        ("11445", "CSIDL_FLAG_NO_ALIAS|0x00010445"),
+        ("11446", "CSIDL_FLAG_NO_ALIAS|0x00010446"),
+        ("11447", "CSIDL_FLAG_NO_ALIAS|0x00010447"),
+        ("11448", "CSIDL_FLAG_NO_ALIAS|0x00010448"),
+        ("11449", "CSIDL_FLAG_NO_ALIAS|0x00010449"),
+        ("11450", "CSIDL_FLAG_NO_ALIAS|0x00010450"),
+        ("11451", "CSIDL_FLAG_NO_ALIAS|0x00010451"),
+        ("11452", "CSIDL_FLAG_NO_ALIAS|0x00010452"),
+        ("11453", "CSIDL_FLAG_NO_ALIAS|0x00010453"),
+        ("11454", "CSIDL_FLAG_NO_ALIAS|0x00010454"),
+        ("11455", "CSIDL_FLAG_NO_ALIAS|0x00010455"),
+        ("11456", "CSIDL_FLAG_NO_ALIAS|0x00010456"),
+        ("11457", "CSIDL_FLAG_NO_ALIAS|0x00010457"),
+        ("11458", "CSIDL_FLAG_NO_ALIAS|0x00010458"),
+        ("11459", "CSIDL_FLAG_NO_ALIAS|0x00010459"),
+        ("11460", "CSIDL_FLAG_NO_ALIAS|0x00010460"),
+        ("11461", "CSIDL_FLAG_NO_ALIAS|0x00010461"),
+        ("11462", "CSIDL_FLAG_NO_ALIAS|0x00010462"),
+        ("11463", "CSIDL_FLAG_NO_ALIAS|0x00010463"),
+        ("11464", "CSIDL_FLAG_NO_ALIAS|0x00010464"),
+        ("11465", "CSIDL_FLAG_NO_ALIAS|0x00010465"),
+        ("11466", "CSIDL_FLAG_NO_ALIAS|0x00010466"),
+        ("11467", "CSIDL_FLAG_NO_ALIAS|0x00010467"),
+        ("11468", "CSIDL_FLAG_NO_ALIAS|0x00010468"),
+        ("11469", "CSIDL_FLAG_NO_ALIAS|0x00010469"),
+        ("11470", "CSIDL_FLAG_NO_ALIAS|0x00010470"),
+        ("11471", "CSIDL_FLAG_NO_ALIAS|0x00010471"),
+        ("11472", "CSIDL_FLAG_NO_ALIAS|0x00010472"),
+        ("11473", "CSIDL_FLAG_NO_ALIAS|0x00010473"),
+        ("11474", "CSIDL_FLAG_NO_ALIAS|0x00010474"),
+        ("11475", "CSIDL_FLAG_NO_ALIAS|0x00010475"),
+        ("11476", "CSIDL_FLAG_NO_ALIAS|0x00010476"),
+        ("11477", "CSIDL_FLAG_NO_ALIAS|0x00010477"),
+        ("11478", "CSIDL_FLAG_NO_ALIAS|0x00010478"),
+        ("11479", "CSIDL_FLAG_NO_ALIAS|0x00010479"),
+        ("11480", "CSIDL_FLAG_NO_ALIAS|0x00010480"),
+        ("11481", "CSIDL_FLAG_NO_ALIAS|0x00010481"),
+        ("11482", "CSIDL_FLAG_NO_ALIAS|0x00010482"),
+        ("11483", "CSIDL_FLAG_NO_ALIAS|0x00010483"),
+        ("11484", "CSIDL_FLAG_NO_ALIAS|0x00010484"),
+        ("11485", "CSIDL_FLAG_NO_ALIAS|0x00010485"),
+        ("11486", "CSIDL_FLAG_NO_ALIAS|0x00010486"),
+        ("11487", "CSIDL_FLAG_NO_ALIAS|0x00010487"),
+        ("11488", "CSIDL_FLAG_NO_ALIAS|0x00010488"),
+        ("11489", "CSIDL_FLAG_NO_ALIAS|0x00010489"),
+        ("11490", "CSIDL_FLAG_NO_ALIAS|0x00010490"),
+        ("11491", "CSIDL_FLAG_NO_ALIAS|0x00010491"),
+        ("11492", "CSIDL_FLAG_NO_ALIAS|0x00010492"),
+        ("11493", "CSIDL_FLAG_NO_ALIAS|0x00010493"),
+        ("11494", "CSIDL_FLAG_NO_ALIAS|0x00010494"),
+        ("11495", "CSIDL_FLAG_NO_ALIAS|0x00010495"),
+        ("11496", "CSIDL_FLAG_NO_ALIAS|0x00010496"),
+        ("11497", "CSIDL_FLAG_NO_ALIAS|0x00010497"),
+        ("11498", "CSIDL_FLAG_NO_ALIAS|0x00010498"),
+        ("11499", "CSIDL_FLAG_NO_ALIAS|0x00010499"),
+        ("11500", "CSIDL_FLAG_NO_ALIAS|0x00010500"),
+        ("11501", "CSIDL_FLAG_NO_ALIAS|0x00010501"),
+        ("11502", "CSIDL_FLAG_NO_ALIAS|0x00010502"),
+        ("11503", "CSIDL_FLAG_NO_ALIAS|0x00010503"),
+        ("11504", "CSIDL_FLAG_NO_ALIAS|0x00010504"),
+        ("11505", "CSIDL_FLAG_NO_ALIAS|0x00010505"),
+        ("11506", "CSIDL_FLAG_NO_ALIAS|0x00010506"),
+        ("11507", "CSIDL_FLAG_NO_ALIAS|0x00010507"),
+        ("11508", "CSIDL_FLAG_NO_ALIAS|0x00010508"),
+        ("11509", "CSIDL_FLAG_NO_ALIAS|0x00010509"),
+        ("11510", "CSIDL_FLAG_NO_ALIAS|0x00010510"),
+        ("11511", "CSIDL_FLAG_NO_ALIAS|0x00010511"),
+        ("11512", "CSIDL_FLAG_NO_ALIAS|0x00010512"),
+        ("11513", "CSIDL_FLAG_NO_ALIAS|0x00010513"),
+        ("11514", "CSIDL_FLAG_NO_ALIAS|0x00010514"),
+        ("11515", "CSIDL_FLAG_NO_ALIAS|0x00010515"),
+        ("11516", "CSIDL_FLAG_NO_ALIAS|0x00010516"),
+        ("11517", "CSIDL_FLAG_NO_ALIAS|0x00010517"),
+        ("11518", "CSIDL_FLAG_NO_ALIAS|0x00010518"),
+        ("11519", "CSIDL_FLAG_NO_ALIAS|0x00010519"),
+        ("11520", "CSIDL_FLAG_NO_ALIAS|0x00010520"),
+        ("11521", "CSIDL_FLAG_NO_ALIAS|0x00010521"),
+        ("11522", "CSIDL_FLAG_NO_ALIAS|0x00010522"),
+        ("11523", "CSIDL_FLAG_NO_ALIAS|0x00010523"),
+        ("11524", "CSIDL_FLAG_NO_ALIAS|0x00010524"),
+        ("11525", "CSIDL_FLAG_NO_ALIAS|0x00010525"),
+        ("11526", "CSIDL_FLAG_NO_ALIAS|0x00010526"),
+        ("11527", "CSIDL_FLAG_NO_ALIAS|0x00010527"),
+        ("11528", "CSIDL_FLAG_NO_ALIAS|0x00010528"),
+        ("11529", "CSIDL_FLAG_NO_ALIAS|0x00010529"),
+        ("11530", "CSIDL_FLAG_NO_ALIAS|0x00010530"),
+        ("11531", "CSIDL_FLAG_NO_ALIAS|0x00010531"),
+        ("11532", "CSIDL_FLAG_NO_ALIAS|0x00010532"),
+        ("11533", "CSIDL_FLAG_NO_ALIAS|0x00010533"),
+        ("11534", "CSIDL_FLAG_NO_ALIAS|0x00010534"),
+        ("11535", "CSIDL_FLAG_NO_ALIAS|0x00010535"),
+        ("11536", "CSIDL_FLAG_NO_ALIAS|0x00010536"),
+        ("11537", "CSIDL_FLAG_NO_ALIAS|0x00010537"),
+        ("11538", "CSIDL_FLAG_NO_ALIAS|0x00010538"),
+        ("11539", "CSIDL_FLAG_NO_ALIAS|0x00010539"),
+        ("11540", "CSIDL_FLAG_NO_ALIAS|0x00010540"),
+        ("11541", "CSIDL_FLAG_NO_ALIAS|0x00010541"),
+        ("11542", "CSIDL_FLAG_NO_ALIAS|0x00010542"),
+        ("11543", "CSIDL_FLAG_NO_ALIAS|0x00010543"),
+        ("11544", "CSIDL_FLAG_NO_ALIAS|0x00010544"),
+        ("11545", "CSIDL_FLAG_NO_ALIAS|0x00010545"),
+        ("11546", "CSIDL_FLAG_NO_ALIAS|0x00010546"),
+        ("11547", "CSIDL_FLAG_NO_ALIAS|0x00010547"),
+        ("11548", "CSIDL_FLAG_NO_ALIAS|0x00010548"),
+        ("11549", "CSIDL_FLAG_NO_ALIAS|0x00010549"),
+        ("11550", "CSIDL_FLAG_NO_ALIAS|0x00010550"),
+        ("11551", "CSIDL_FLAG_NO_ALIAS|0x00010551"),
+        ("11552", "CSIDL_FLAG_NO_ALIAS|0x00010552"),
+        ("11553", "CSIDL_FLAG_NO_ALIAS|0x00010553"),
+        ("11554", "CSIDL_FLAG_NO_ALIAS|0x00010554"),
+        ("11555", "CSIDL_FLAG_NO_ALIAS|0x00010555"),
+        ("11556", "CSIDL_FLAG_NO_ALIAS|0x00010556"),
+        ("11557", "CSIDL_FLAG_NO_ALIAS|0x00010557"),
+        ("11558", "CSIDL_FLAG_NO_ALIAS|0x00010558"),
+        ("11559", "CSIDL_FLAG_NO_ALIAS|0x00010559"),
+        ("11560", "CSIDL_FLAG_NO_ALIAS|0x00010560"),
+        ("11561", "CSIDL_FLAG_NO_ALIAS|0x00010561"),
+        ("11562", "CSIDL_FLAG_NO_ALIAS|0x00010562"),
+        ("11563", "CSIDL_FLAG_NO_ALIAS|0x00010563"),
+        ("11564", "CSIDL_FLAG_NO_ALIAS|0x00010564"),
+        ("11565", "CSIDL_FLAG_NO_ALIAS|0x00010565"),
+        ("11566", "CSIDL_FLAG_NO_ALIAS|0x00010566"),
+        ("11567", "CSIDL_FLAG_NO_ALIAS|0x00010567"),
+        ("11568", "CSIDL_FLAG_NO_ALIAS|0x00010568"),
+        ("11569", "CSIDL_FLAG_NO_ALIAS|0x00010569"),
+        ("11570", "CSIDL_FLAG_NO_ALIAS|0x00010570"),
+        ("11571", "CSIDL_FLAG_NO_ALIAS|0x00010571"),
+        ("11572", "CSIDL_FLAG_NO_ALIAS|0x00010572"),
+        ("11573", "CSIDL_FLAG_NO_ALIAS|0x00010573"),
+        ("11574", "CSIDL_FLAG_NO_ALIAS|0x00010574"),
+        ("11575", "CSIDL_FLAG_NO_ALIAS|0x00010575"),
+        ("11576", "CSIDL_FLAG_NO_ALIAS|0x00010576"),
+        ("11577", "CSIDL_FLAG_NO_ALIAS|0x00010577"),
+        ("11578", "CSIDL_FLAG_NO_ALIAS|0x00010578"),
+        ("11579", "CSIDL_FLAG_NO_ALIAS|0x00010579"),
+        ("11580", "CSIDL_FLAG_NO_ALIAS|0x00010580"),
+        ("11581", "CSIDL_FLAG_NO_ALIAS|0x00010581"),
+        ("11582", "CSIDL_FLAG_NO_ALIAS|0x00010582"),
+        ("11583", "CSIDL_FLAG_NO_ALIAS|0x00010583"),
+        ("11584", "CSIDL_FLAG_NO_ALIAS|0x00010584"),
+        ("11585", "CSIDL_FLAG_NO_ALIAS|0x00010585"),
+        ("11586", "CSIDL_FLAG_NO_ALIAS|0x00010586"),
+        ("11587", "CSIDL_FLAG_NO_ALIAS|0x00010587"),
+        ("11588", "CSIDL_FLAG_NO_ALIAS|0x00010588"),
+        ("11589", "CSIDL_FLAG_NO_ALIAS|0x00010589"),
+        ("11590", "CSIDL_FLAG_NO_ALIAS|0x00010590"),
+        ("11591", "CSIDL_FLAG_NO_ALIAS|0x00010591"),
+        ("11592", "CSIDL_FLAG_NO_ALIAS|0x00010592"),
+        ("11593", "CSIDL_FLAG_NO_ALIAS|0x00010593"),
+        ("11594", "CSIDL_FLAG_NO_ALIAS|0x00010594"),
+        ("11595", "CSIDL_FLAG_NO_ALIAS|0x00010595"),
+        ("11596", "CSIDL_FLAG_NO_ALIAS|0x00010596"),
+        ("11597", "CSIDL_FLAG_NO_ALIAS|0x00010597"),
+        ("11598", "CSIDL_FLAG_NO_ALIAS|0x00010598"),
+        ("11599", "CSIDL_FLAG_NO_ALIAS|0x00010599"),
+        ("11600", "CSIDL_FLAG_NO_ALIAS|0x00010600"),
+        ("11601", "CSIDL_FLAG_NO_ALIAS|0x00010601"),
+        ("11602", "CSIDL_FLAG_NO_ALIAS|0x00010602"),
+        ("11603", "CSIDL_FLAG_NO_ALIAS|0x00010603"),
+        ("11604", "CSIDL_FLAG_NO_ALIAS|0x00010604"),
+        ("11605", "CSIDL_FLAG_NO_ALIAS|0x00010605"),
+        ("11606", "CSIDL_FLAG_NO_ALIAS|0x00010606"),
+        ("11607", "CSIDL_FLAG_NO_ALIAS|0x00010607"),
+        ("11608", "CSIDL_FLAG_NO_ALIAS|0x00010608"),
+        ("11609", "CSIDL_FLAG_NO_ALIAS|0x00010609"),
+        ("11610", "CSIDL_FLAG_NO_ALIAS|0x00010610"),
+        ("11611", "CSIDL_FLAG_NO_ALIAS|0x00010611"),
+        ("11612", "CSIDL_FLAG_NO_ALIAS|0x00010612"),
+        ("11613", "CSIDL_FLAG_NO_ALIAS|0x00010613"),
+        ("11614", "CSIDL_FLAG_NO_ALIAS|0x00010614"),
+        ("11615", "CSIDL_FLAG_NO_ALIAS|0x00010615"),
+        ("11616", "CSIDL_FLAG_NO_ALIAS|0x00010616"),
+        ("11617", "CSIDL_FLAG_NO_ALIAS|0x00010617"),
+        ("11618", "CSIDL_FLAG_NO_ALIAS|0x00010618"),
+        ("11619", "CSIDL_FLAG_NO_ALIAS|0x00010619"),
+        ("11620", "CSIDL_FLAG_NO_ALIAS|0x00010620"),
+        ("11621", "CSIDL_FLAG_NO_ALIAS|0x00010621"),
+        ("11622", "CSIDL_FLAG_NO_ALIAS|0x00010622"),
+        ("11623", "CSIDL_FLAG_NO_ALIAS|0x00010623"),
+        ("11624", "CSIDL_FLAG_NO_ALIAS|0x00010624"),
+        ("11625", "CSIDL_FLAG_NO_ALIAS|0x00010625"),
+        ("11626", "CSIDL_FLAG_NO_ALIAS|0x00010626"),
+        ("11627", "CSIDL_FLAG_NO_ALIAS|0x00010627"),
+        ("11628", "CSIDL_FLAG_NO_ALIAS|0x00010628"),
+        ("11629", "CSIDL_FLAG_NO_ALIAS|0x00010629"),
+        ("11630", "CSIDL_FLAG_NO_ALIAS|0x00010630"),
+        ("11631", "CSIDL_FLAG_NO_ALIAS|0x00010631"),
+        ("11632", "CSIDL_FLAG_NO_ALIAS|0x00010632"),
+        ("11633", "CSIDL_FLAG_NO_ALIAS|0x00010633"),
+        ("11634", "CSIDL_FLAG_NO_ALIAS|0x00010634"),
+        ("11635", "CSIDL_FLAG_NO_ALIAS|0x00010635"),
+        ("11636", "CSIDL_FLAG_NO_ALIAS|0x00010636"),
+        ("11637", "CSIDL_FLAG_NO_ALIAS|0x00010637"),
+        ("11638", "CSIDL_FLAG_NO_ALIAS|0x00010638"),
+        ("11639", "CSIDL_FLAG_NO_ALIAS|0x00010639"),
+        ("11640", "CSIDL_FLAG_NO_ALIAS|0x00010640"),
+        ("11641", "CSIDL_FLAG_NO_ALIAS|0x00010641"),
+        ("11642", "CSIDL_FLAG_NO_ALIAS|0x00010642"),
+        ("11643", "CSIDL_FLAG_NO_ALIAS|0x00010643"),
+        ("11644", "CSIDL_FLAG_NO_ALIAS|0x00010644"),
+        ("11645", "CSIDL_FLAG_NO_ALIAS|0x00010645"),
+        ("11646", "CSIDL_FLAG_NO_ALIAS|0x00010646"),
+        ("11647", "CSIDL_FLAG_NO_ALIAS|0x00010647"),
+        ("11648", "CSIDL_FLAG_NO_ALIAS|0x00010648"),
+        ("11649", "CSIDL_FLAG_NO_ALIAS|0x00010649"),
+        ("11650", "CSIDL_FLAG_NO_ALIAS|0x00010650"),
+        ("11651", "CSIDL_FLAG_NO_ALIAS|0x00010651"),
+        ("11652", "CSIDL_FLAG_NO_ALIAS|0x00010652"),
+        ("11653", "CSIDL_FLAG_NO_ALIAS|0x00010653"),
+        ("11654", "CSIDL_FLAG_NO_ALIAS|0x00010654"),
+        ("11655", "CSIDL_FLAG_NO_ALIAS|0x00010655"),
+        ("11656", "CSIDL_FLAG_NO_ALIAS|0x00010656"),
+        ("11657", "CSIDL_FLAG_NO_ALIAS|0x00010657"),
+        ("11658", "CSIDL_FLAG_NO_ALIAS|0x00010658"),
+        ("11659", "CSIDL_FLAG_NO_ALIAS|0x00010659"),
+        ("11660", "CSIDL_FLAG_NO_ALIAS|0x00010660"),
+        ("11661", "CSIDL_FLAG_NO_ALIAS|0x00010661"),
+        ("11662", "CSIDL_FLAG_NO_ALIAS|0x00010662"),
+        ("11663", "CSIDL_FLAG_NO_ALIAS|0x00010663"),
+        ("11664", "CSIDL_FLAG_NO_ALIAS|0x00010664"),
+        ("11665", "CSIDL_FLAG_NO_ALIAS|0x00010665"),
+        ("11666", "CSIDL_FLAG_NO_ALIAS|0x00010666"),
+        ("11667", "CSIDL_FLAG_NO_ALIAS|0x00010667"),
+        ("11668", "CSIDL_FLAG_NO_ALIAS|0x00010668"),
+        ("11669", "CSIDL_FLAG_NO_ALIAS|0x00010669"),
+        ("11670", "CSIDL_FLAG_NO_ALIAS|0x00010670"),
+        ("11671", "CSIDL_FLAG_NO_ALIAS|0x00010671"),
+        ("11672", "CSIDL_FLAG_NO_ALIAS|0x00010672"),
+        ("11673", "CSIDL_FLAG_NO_ALIAS|0x00010673"),
+        ("11674", "CSIDL_FLAG_NO_ALIAS|0x00010674"),
+        ("11675", "CSIDL_FLAG_NO_ALIAS|0x00010675"),
+        ("11676", "CSIDL_FLAG_NO_ALIAS|0x00010676"),
+        ("11677", "CSIDL_FLAG_NO_ALIAS|0x00010677"),
+        ("11678", "CSIDL_FLAG_NO_ALIAS|0x00010678"),
+        ("11679", "CSIDL_FLAG_NO_ALIAS|0x00010679"),
+        ("11680", "CSIDL_FLAG_NO_ALIAS|0x00010680"),
+        ("11681", "CSIDL_FLAG_NO_ALIAS|0x00010681"),
+        ("11682", "CSIDL_FLAG_NO_ALIAS|0x00010682"),
+        ("11683", "CSIDL_FLAG_NO_ALIAS|0x00010683"),
+        ("11684", "CSIDL_FLAG_NO_ALIAS|0x00010684"),
+        ("11685", "CSIDL_FLAG_NO_ALIAS|0x00010685"),
+        ("11686", "CSIDL_FLAG_NO_ALIAS|0x00010686"),
+        ("11687", "CSIDL_FLAG_NO_ALIAS|0x00010687"),
+        ("11688", "CSIDL_FLAG_NO_ALIAS|0x00010688"),
+        ("11689", "CSIDL_FLAG_NO_ALIAS|0x00010689"),
+        ("11690", "CSIDL_FLAG_NO_ALIAS|0x00010690"),
+        ("11691", "CSIDL_FLAG_NO_ALIAS|0x00010691"),
+        ("11692", "CSIDL_FLAG_NO_ALIAS|0x00010692"),
+        ("11693", "CSIDL_FLAG_NO_ALIAS|0x00010693"),
+        ("11694", "CSIDL_FLAG_NO_ALIAS|0x00010694"),
+        ("11695", "CSIDL_FLAG_NO_ALIAS|0x00010695"),
+        ("11696", "CSIDL_FLAG_NO_ALIAS|0x00010696"),
+        ("11697", "CSIDL_FLAG_NO_ALIAS|0x00010697"),
+        ("11698", "CSIDL_FLAG_NO_ALIAS|0x00010698"),
+        ("11699", "CSIDL_FLAG_NO_ALIAS|0x00010699"),
+        ("11700", "CSIDL_FLAG_NO_ALIAS|0x00010700"),
+        ("11701", "CSIDL_FLAG_NO_ALIAS|0x00010701"),
+        ("11702", "CSIDL_FLAG_NO_ALIAS|0x00010702"),
+        ("11703", "CSIDL_FLAG_NO_ALIAS|0x00010703"),
+        ("11704", "CSIDL_FLAG_NO_ALIAS|0x00010704"),
+        ("11705", "CSIDL_FLAG_NO_ALIAS|0x00010705"),
+        ("11706", "CSIDL_FLAG_NO_ALIAS|0x00010706"),
+        ("11707", "CSIDL_FLAG_NO_ALIAS|0x00010707"),
+        ("11708", "CSIDL_FLAG_NO_ALIAS|0x00010708"),
+        ("11709", "CSIDL_FLAG_NO_ALIAS|0x00010709"),
+        ("11710", "CSIDL_FLAG_NO_ALIAS|0x00010710"),
+        ("11711", "CSIDL_FLAG_NO_ALIAS|0x00010711"),
+        ("11712", "CSIDL_FLAG_NO_ALIAS|0x00010712"),
+        ("11713", "CSIDL_FLAG_NO_ALIAS|0x00010713"),
+        ("11714", "CSIDL_FLAG_NO_ALIAS|0x00010714"),
+        ("11715", "CSIDL_FLAG_NO_ALIAS|0x00010715"),
+        ("11716", "CSIDL_FLAG_NO_ALIAS|0x00010716"),
+        ("11717", "CSIDL_FLAG_NO_ALIAS|0x00010717"),
+        ("11718", "CSIDL_FLAG_NO_ALIAS|0x00010718"),
+        ("11719", "CSIDL_FLAG_NO_ALIAS|0x00010719"),
+        ("11720", "CSIDL_FLAG_NO_ALIAS|0x00010720"),
+        ("11721", "CSIDL_FLAG_NO_ALIAS|0x00010721"),
+        ("11722", "CSIDL_FLAG_NO_ALIAS|0x00010722"),
+        ("11723", "CSIDL_FLAG_NO_ALIAS|0x00010723"),
+        ("11724", "CSIDL_FLAG_NO_ALIAS|0x00010724"),
+        ("11725", "CSIDL_FLAG_NO_ALIAS|0x00010725"),
+        ("11726", "CSIDL_FLAG_NO_ALIAS|0x00010726"),
+        ("11727", "CSIDL_FLAG_NO_ALIAS|0x00010727"),
+        ("11728", "CSIDL_FLAG_NO_ALIAS|0x00010728"),
+        ("11729", "CSIDL_FLAG_NO_ALIAS|0x00010729"),
+        ("11730", "CSIDL_FLAG_NO_ALIAS|0x00010730"),
+        ("11731", "CSIDL_FLAG_NO_ALIAS|0x00010731"),
+        ("11732", "CSIDL_FLAG_NO_ALIAS|0x00010732"),
+        ("11733", "CSIDL_FLAG_NO_ALIAS|0x00010733"),
+        ("11734", "CSIDL_FLAG_NO_ALIAS|0x00010734"),
+        ("11735", "CSIDL_FLAG_NO_ALIAS|0x00010735"),
+        ("11736", "CSIDL_FLAG_NO_ALIAS|0x00010736"),
+        ("11737", "CSIDL_FLAG_NO_ALIAS|0x00010737"),
+        ("11738", "CSIDL_FLAG_NO_ALIAS|0x00010738"),
+        ("11739", "CSIDL_FLAG_NO_ALIAS|0x00010739"),
+        ("11740", "CSIDL_FLAG_NO_ALIAS|0x00010740"),
+        ("11741", "CSIDL_FLAG_NO_ALIAS|0x00010741"),
+        ("11742", "CSIDL_FLAG_NO_ALIAS|0x00010742"),
+        ("11743", "CSIDL_FLAG_NO_ALIAS|0x00010743"),
+        ("11744", "CSIDL_FLAG_NO_ALIAS|0x00010744"),
+        ("11745", "CSIDL_FLAG_NO_ALIAS|0x00010745"),
+        ("11746", "CSIDL_FLAG_NO_ALIAS|0x00010746"),
+        ("11747", "CSIDL_FLAG_NO_ALIAS|0x00010747"),
+        ("11748", "CSIDL_FLAG_NO_ALIAS|0x00010748"),
+        ("11749", "CSIDL_FLAG_NO_ALIAS|0x00010749"),
+        ("11750", "CSIDL_FLAG_NO_ALIAS|0x00010750"),
+        ("11751", "CSIDL_FLAG_NO_ALIAS|0x00010751"),
+        ("11752", "CSIDL_FLAG_NO_ALIAS|0x00010752"),
+        ("11753", "CSIDL_FLAG_NO_ALIAS|0x00010753"),
+        ("11754", "CSIDL_FLAG_NO_ALIAS|0x00010754"),
+        ("11755", "CSIDL_FLAG_NO_ALIAS|0x00010755"),
+        ("11756", "CSIDL_FLAG_NO_ALIAS|0x00010756"),
+        ("11757", "CSIDL_FLAG_NO_ALIAS|0x00010757"),
+        ("11758", "CSIDL_FLAG_NO_ALIAS|0x00010758"),
+        ("11759", "CSIDL_FLAG_NO_ALIAS|0x00010759"),
+        ("11760", "CSIDL_FLAG_NO_ALIAS|0x00010760"),
+        ("11761", "CSIDL_FLAG_NO_ALIAS|0x00010761"),
+        ("11762", "CSIDL_FLAG_NO_ALIAS|0x00010762"),
+        ("11763", "CSIDL_FLAG_NO_ALIAS|0x00010763"),
+        ("11764", "CSIDL_FLAG_NO_ALIAS|0x00010764"),
+        ("11765", "CSIDL_FLAG_NO_ALIAS|0x00010765"),
+        ("11766", "CSIDL_FLAG_NO_ALIAS|0x00010766"),
+        ("11767", "CSIDL_FLAG_NO_ALIAS|0x00010767"),
+        ("11768", "CSIDL_FLAG_NO_ALIAS|0x00010768"),
+        ("11769", "CSIDL_FLAG_NO_ALIAS|0x00010769"),
+        ("11770", "CSIDL_FLAG_NO_ALIAS|0x00010770"),
+        ("11771", "CSIDL_FLAG_NO_ALIAS|0x00010771"),
+        ("11772", "CSIDL_FLAG_NO_ALIAS|0x00010772"),
+        ("11773", "CSIDL_FLAG_NO_ALIAS|0x00010773"),
+        ("11774", "CSIDL_FLAG_NO_ALIAS|0x00010774"),
+        ("11775", "CSIDL_FLAG_NO_ALIAS|0x00010775"),
+        ("11776", "CSIDL_FLAG_NO_ALIAS|0x00010776"),
+        ("11777", "CSIDL_FLAG_NO_ALIAS|0x00010777"),
+        ("11778", "CSIDL_FLAG_NO_ALIAS|0x00010778"),
+        ("11779", "CSIDL_FLAG_NO_ALIAS|0x00010779"),
+        ("11780", "CSIDL_FLAG_NO_ALIAS|0x00010780"),
+        ("11781", "CSIDL_FLAG_NO_ALIAS|0x00010781"),
+        ("11782", "CSIDL_FLAG_NO_ALIAS|0x00010782"),
+        ("11783", "CSIDL_FLAG_NO_ALIAS|0x00010783"),
+        ("11784", "CSIDL_FLAG_NO_ALIAS|0x00010784"),
+        ("11785", "CSIDL_FLAG_NO_ALIAS|0x00010785"),
+        ("11786", "CSIDL_FLAG_NO_ALIAS|0x00010786"),
+        ("11787", "CSIDL_FLAG_NO_ALIAS|0x00010787"),
+        ("11788", "CSIDL_FLAG_NO_ALIAS|0x00010788"),
+        ("11789", "CSIDL_FLAG_NO_ALIAS|0x00010789"),
+        ("11790", "CSIDL_FLAG_NO_ALIAS|0x00010790"),
+        ("11791", "CSIDL_FLAG_NO_ALIAS|0x00010791"),
+        ("11792", "CSIDL_FLAG_NO_ALIAS|0x00010792"),
+        ("11793", "CSIDL_FLAG_NO_ALIAS|0x00010793"),
+        ("11794", "CSIDL_FLAG_NO_ALIAS|0x00010794"),
+        ("11795", "CSIDL_FLAG_NO_ALIAS|0x00010795"),
+        ("11796", "CSIDL_FLAG_NO_ALIAS|0x00010796"),
+        ("11797", "CSIDL_FLAG_NO_ALIAS|0x00010797"),
+        ("11798", "CSIDL_FLAG_NO_ALIAS|0x00010798"),
+        ("11799", "CSIDL_FLAG_NO_ALIAS|0x00010799"),
+        ("11800", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010000"),
+        ("11801", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010001"),
+        ("11802", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010002"),
+        ("11803", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010003"),
+        ("11804", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010004"),
+        ("11805", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010005"),
+        ("11806", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010006"),
+        ("11807", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010007"),
+        ("11808", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010008"),
+        ("11809", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010009"),
+        ("11810", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010010"),
+        ("11811", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010011"),
+        ("11812", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010012"),
+        ("11813", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010013"),
+        ("11814", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010014"),
+        ("11815", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010015"),
+        ("11816", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010016"),
+        ("11817", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010017"),
+        ("11818", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010018"),
+        ("11819", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010019"),
+        ("11820", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010020"),
+        ("11821", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010021"),
+        ("11822", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010022"),
+        ("11823", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010023"),
+        ("11824", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010024"),
+        ("11825", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010025"),
+        ("11826", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010026"),
+        ("11827", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010027"),
+        ("11828", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010028"),
+        ("11829", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010029"),
+        ("11830", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010030"),
+        ("11831", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010031"),
+        ("11832", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010032"),
+        ("11833", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010033"),
+        ("11834", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010034"),
+        ("11835", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010035"),
+        ("11836", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010036"),
+        ("11837", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010037"),
+        ("11838", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010038"),
+        ("11839", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010039"),
+        ("11840", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010040"),
+        ("11841", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010041"),
+        ("11842", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010042"),
+        ("11843", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010043"),
+        ("11844", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010044"),
+        ("11845", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010045"),
+        ("11846", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010046"),
+        ("11847", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010047"),
+        ("11848", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010048"),
+        ("11849", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010049"),
+        ("11850", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010050"),
+        ("11851", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010051"),
+        ("11852", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010052"),
+        ("11853", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010053"),
+        ("11854", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010054"),
+        ("11855", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010055"),
+        ("11856", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010056"),
+        ("11857", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010057"),
+        ("11858", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010058"),
+        ("11859", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010059"),
+        ("11860", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010060"),
+        ("11861", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010061"),
+        ("11862", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010062"),
+        ("11863", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010063"),
+        ("11864", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010064"),
+        ("11865", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010065"),
+        ("11866", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010066"),
+        ("11867", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010067"),
+        ("11868", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010068"),
+        ("11869", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010069"),
+        ("11870", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010070"),
+        ("11871", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010071"),
+        ("11872", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010072"),
+        ("11873", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010073"),
+        ("11874", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010074"),
+        ("11875", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010075"),
+        ("11876", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010076"),
+        ("11877", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010077"),
+        ("11878", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010078"),
+        ("11879", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010079"),
+        ("11880", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010080"),
+        ("11881", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010081"),
+        ("11882", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010082"),
+        ("11883", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010083"),
+        ("11884", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010084"),
+        ("11885", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010085"),
+        ("11886", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010086"),
+        ("11887", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010087"),
+        ("11888", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010088"),
+        ("11889", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010089"),
+        ("11890", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010090"),
+        ("11891", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010091"),
+        ("11892", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010092"),
+        ("11893", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010093"),
+        ("11894", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010094"),
+        ("11895", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010095"),
+        ("11896", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010096"),
+        ("11897", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010097"),
+        ("11898", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010098"),
+        ("11899", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010099"),
+        ("11900", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010100"),
+        ("11901", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010101"),
+        ("11902", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010102"),
+        ("11903", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010103"),
+        ("11904", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010104"),
+        ("11905", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010105"),
+        ("11906", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010106"),
+        ("11907", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010107"),
+        ("11908", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010108"),
+        ("11909", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010109"),
+        ("11910", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010110"),
+        ("11911", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010111"),
+        ("11912", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010112"),
+        ("11913", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010113"),
+        ("11914", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010114"),
+        ("11915", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010115"),
+        ("11916", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010116"),
+        ("11917", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010117"),
+        ("11918", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010118"),
+        ("11919", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010119"),
+        ("11920", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010120"),
+        ("11921", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010121"),
+        ("11922", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010122"),
+        ("11923", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010123"),
+        ("11924", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010124"),
+        ("11925", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010125"),
+        ("11926", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010126"),
+        ("11927", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010127"),
+        ("11928", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010128"),
+        ("11929", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010129"),
+        ("11930", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010130"),
+        ("11931", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010131"),
+        ("11932", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010132"),
+        ("11933", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010133"),
+        ("11934", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010134"),
+        ("11935", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010135"),
+        ("11936", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010136"),
+        ("11937", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010137"),
+        ("11938", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010138"),
+        ("11939", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010139"),
+        ("11940", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010140"),
+        ("11941", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010141"),
+        ("11942", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010142"),
+        ("11943", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010143"),
+        ("11944", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010144"),
+        ("11945", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010145"),
+        ("11946", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010146"),
+        ("11947", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010147"),
+        ("11948", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010148"),
+        ("11949", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010149"),
+        ("11950", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010150"),
+        ("11951", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010151"),
+        ("11952", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010152"),
+        ("11953", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010153"),
+        ("11954", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010154"),
+        ("11955", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010155"),
+        ("11956", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010156"),
+        ("11957", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010157"),
+        ("11958", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010158"),
+        ("11959", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010159"),
+        ("11960", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010160"),
+        ("11961", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010161"),
+        ("11962", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010162"),
+        ("11963", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010163"),
+        ("11964", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010164"),
+        ("11965", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010165"),
+        ("11966", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010166"),
+        ("11967", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010167"),
+        ("11968", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010168"),
+        ("11969", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010169"),
+        ("11970", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010170"),
+        ("11971", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010171"),
+        ("11972", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010172"),
+        ("11973", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010173"),
+        ("11974", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010174"),
+        ("11975", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010175"),
+        ("11976", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010176"),
+        ("11977", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010177"),
+        ("11978", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010178"),
+        ("11979", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010179"),
+        ("11980", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010180"),
+        ("11981", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010181"),
+        ("11982", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010182"),
+        ("11983", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010183"),
+        ("11984", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010184"),
+        ("11985", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010185"),
+        ("11986", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010186"),
+        ("11987", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010187"),
+        ("11988", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010188"),
+        ("11989", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010189"),
+        ("11990", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010190"),
+        ("11991", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010191"),
+        ("11992", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010192"),
+        ("11993", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010193"),
+        ("11994", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010194"),
+        ("11995", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010195"),
+        ("11996", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010196"),
+        ("11997", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010197"),
+        ("11998", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010198"),
+        ("11999", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00010199"),
+        ("12000", "CSIDL_FLAG_DONT_UNEXPAND|0x00010000"),
+        ("12001", "CSIDL_FLAG_DONT_UNEXPAND|0x00010001"),
+        ("12002", "CSIDL_FLAG_DONT_UNEXPAND|0x00010002"),
+        ("12003", "CSIDL_FLAG_DONT_UNEXPAND|0x00010003"),
+        ("12004", "CSIDL_FLAG_DONT_UNEXPAND|0x00010004"),
+        ("12005", "CSIDL_FLAG_DONT_UNEXPAND|0x00010005"),
+        ("12006", "CSIDL_FLAG_DONT_UNEXPAND|0x00010006"),
+        ("12007", "CSIDL_FLAG_DONT_UNEXPAND|0x00010007"),
+        ("12008", "CSIDL_FLAG_DONT_UNEXPAND|0x00010008"),
+        ("12009", "CSIDL_FLAG_DONT_UNEXPAND|0x00010009"),
+        ("12010", "CSIDL_FLAG_DONT_UNEXPAND|0x00010010"),
+        ("12011", "CSIDL_FLAG_DONT_UNEXPAND|0x00010011"),
+        ("12012", "CSIDL_FLAG_DONT_UNEXPAND|0x00010012"),
+        ("12013", "CSIDL_FLAG_DONT_UNEXPAND|0x00010013"),
+        ("12014", "CSIDL_FLAG_DONT_UNEXPAND|0x00010014"),
+        ("12015", "CSIDL_FLAG_DONT_UNEXPAND|0x00010015"),
+        ("12016", "CSIDL_FLAG_DONT_UNEXPAND|0x00010016"),
+        ("12017", "CSIDL_FLAG_DONT_UNEXPAND|0x00010017"),
+        ("12018", "CSIDL_FLAG_DONT_UNEXPAND|0x00010018"),
+        ("12019", "CSIDL_FLAG_DONT_UNEXPAND|0x00010019"),
+        ("12020", "CSIDL_FLAG_DONT_UNEXPAND|0x00010020"),
+        ("12021", "CSIDL_FLAG_DONT_UNEXPAND|0x00010021"),
+        ("12022", "CSIDL_FLAG_DONT_UNEXPAND|0x00010022"),
+        ("12023", "CSIDL_FLAG_DONT_UNEXPAND|0x00010023"),
+        ("12024", "CSIDL_FLAG_DONT_UNEXPAND|0x00010024"),
+        ("12025", "CSIDL_FLAG_DONT_UNEXPAND|0x00010025"),
+        ("12026", "CSIDL_FLAG_DONT_UNEXPAND|0x00010026"),
+        ("12027", "CSIDL_FLAG_DONT_UNEXPAND|0x00010027"),
+        ("12028", "CSIDL_FLAG_DONT_UNEXPAND|0x00010028"),
+        ("12029", "CSIDL_FLAG_DONT_UNEXPAND|0x00010029"),
+        ("12030", "CSIDL_FLAG_DONT_UNEXPAND|0x00010030"),
+        ("12031", "CSIDL_FLAG_DONT_UNEXPAND|0x00010031"),
+        ("12032", "CSIDL_FLAG_DONT_UNEXPAND|0x00010032"),
+        ("12033", "CSIDL_FLAG_DONT_UNEXPAND|0x00010033"),
+        ("12034", "CSIDL_FLAG_DONT_UNEXPAND|0x00010034"),
+        ("12035", "CSIDL_FLAG_DONT_UNEXPAND|0x00010035"),
+        ("12036", "CSIDL_FLAG_DONT_UNEXPAND|0x00010036"),
+        ("12037", "CSIDL_FLAG_DONT_UNEXPAND|0x00010037"),
+        ("12038", "CSIDL_FLAG_DONT_UNEXPAND|0x00010038"),
+        ("12039", "CSIDL_FLAG_DONT_UNEXPAND|0x00010039"),
+        ("12040", "CSIDL_FLAG_DONT_UNEXPAND|0x00010040"),
+        ("12041", "CSIDL_FLAG_DONT_UNEXPAND|0x00010041"),
+        ("12042", "CSIDL_FLAG_DONT_UNEXPAND|0x00010042"),
+        ("12043", "CSIDL_FLAG_DONT_UNEXPAND|0x00010043"),
+        ("12044", "CSIDL_FLAG_DONT_UNEXPAND|0x00010044"),
+        ("12045", "CSIDL_FLAG_DONT_UNEXPAND|0x00010045"),
+        ("12046", "CSIDL_FLAG_DONT_UNEXPAND|0x00010046"),
+        ("12047", "CSIDL_FLAG_DONT_UNEXPAND|0x00010047"),
+        ("12048", "CSIDL_FLAG_DONT_UNEXPAND|0x00010048"),
+        ("12049", "CSIDL_FLAG_DONT_UNEXPAND|0x00010049"),
+        ("12050", "CSIDL_FLAG_DONT_UNEXPAND|0x00010050"),
+        ("12051", "CSIDL_FLAG_DONT_UNEXPAND|0x00010051"),
+        ("12052", "CSIDL_FLAG_DONT_UNEXPAND|0x00010052"),
+        ("12053", "CSIDL_FLAG_DONT_UNEXPAND|0x00010053"),
+        ("12054", "CSIDL_FLAG_DONT_UNEXPAND|0x00010054"),
+        ("12055", "CSIDL_FLAG_DONT_UNEXPAND|0x00010055"),
+        ("12056", "CSIDL_FLAG_DONT_UNEXPAND|0x00010056"),
+        ("12057", "CSIDL_FLAG_DONT_UNEXPAND|0x00010057"),
+        ("12058", "CSIDL_FLAG_DONT_UNEXPAND|0x00010058"),
+        ("12059", "CSIDL_FLAG_DONT_UNEXPAND|0x00010059"),
+        ("12060", "CSIDL_FLAG_DONT_UNEXPAND|0x00010060"),
+        ("12061", "CSIDL_FLAG_DONT_UNEXPAND|0x00010061"),
+        ("12062", "CSIDL_FLAG_DONT_UNEXPAND|0x00010062"),
+        ("12063", "CSIDL_FLAG_DONT_UNEXPAND|0x00010063"),
+        ("12064", "CSIDL_FLAG_DONT_UNEXPAND|0x00010064"),
+        ("12065", "CSIDL_FLAG_DONT_UNEXPAND|0x00010065"),
+        ("12066", "CSIDL_FLAG_DONT_UNEXPAND|0x00010066"),
+        ("12067", "CSIDL_FLAG_DONT_UNEXPAND|0x00010067"),
+        ("12068", "CSIDL_FLAG_DONT_UNEXPAND|0x00010068"),
+        ("12069", "CSIDL_FLAG_DONT_UNEXPAND|0x00010069"),
+        ("12070", "CSIDL_FLAG_DONT_UNEXPAND|0x00010070"),
+        ("12071", "CSIDL_FLAG_DONT_UNEXPAND|0x00010071"),
+        ("12072", "CSIDL_FLAG_DONT_UNEXPAND|0x00010072"),
+        ("12073", "CSIDL_FLAG_DONT_UNEXPAND|0x00010073"),
+        ("12074", "CSIDL_FLAG_DONT_UNEXPAND|0x00010074"),
+        ("12075", "CSIDL_FLAG_DONT_UNEXPAND|0x00010075"),
+        ("12076", "CSIDL_FLAG_DONT_UNEXPAND|0x00010076"),
+        ("12077", "CSIDL_FLAG_DONT_UNEXPAND|0x00010077"),
+        ("12078", "CSIDL_FLAG_DONT_UNEXPAND|0x00010078"),
+        ("12079", "CSIDL_FLAG_DONT_UNEXPAND|0x00010079"),
+        ("12080", "CSIDL_FLAG_DONT_UNEXPAND|0x00010080"),
+        ("12081", "CSIDL_FLAG_DONT_UNEXPAND|0x00010081"),
+        ("12082", "CSIDL_FLAG_DONT_UNEXPAND|0x00010082"),
+        ("12083", "CSIDL_FLAG_DONT_UNEXPAND|0x00010083"),
+        ("12084", "CSIDL_FLAG_DONT_UNEXPAND|0x00010084"),
+        ("12085", "CSIDL_FLAG_DONT_UNEXPAND|0x00010085"),
+        ("12086", "CSIDL_FLAG_DONT_UNEXPAND|0x00010086"),
+        ("12087", "CSIDL_FLAG_DONT_UNEXPAND|0x00010087"),
+        ("12088", "CSIDL_FLAG_DONT_UNEXPAND|0x00010088"),
+        ("12089", "CSIDL_FLAG_DONT_UNEXPAND|0x00010089"),
+        ("12090", "CSIDL_FLAG_DONT_UNEXPAND|0x00010090"),
+        ("12091", "CSIDL_FLAG_DONT_UNEXPAND|0x00010091"),
+        ("12092", "CSIDL_FLAG_DONT_UNEXPAND|0x00010092"),
+        ("12093", "CSIDL_FLAG_DONT_UNEXPAND|0x00010093"),
+        ("12094", "CSIDL_FLAG_DONT_UNEXPAND|0x00010094"),
+        ("12095", "CSIDL_FLAG_DONT_UNEXPAND|0x00010095"),
+        ("12096", "CSIDL_FLAG_DONT_UNEXPAND|0x00010096"),
+        ("12097", "CSIDL_FLAG_DONT_UNEXPAND|0x00010097"),
+        ("12098", "CSIDL_FLAG_DONT_UNEXPAND|0x00010098"),
+        ("12099", "CSIDL_FLAG_DONT_UNEXPAND|0x00010099"),
+        ("12100", "CSIDL_FLAG_DONT_UNEXPAND|0x00010100"),
+        ("12101", "CSIDL_FLAG_DONT_UNEXPAND|0x00010101"),
+        ("12102", "CSIDL_FLAG_DONT_UNEXPAND|0x00010102"),
+        ("12103", "CSIDL_FLAG_DONT_UNEXPAND|0x00010103"),
+        ("12104", "CSIDL_FLAG_DONT_UNEXPAND|0x00010104"),
+        ("12105", "CSIDL_FLAG_DONT_UNEXPAND|0x00010105"),
+        ("12106", "CSIDL_FLAG_DONT_UNEXPAND|0x00010106"),
+        ("12107", "CSIDL_FLAG_DONT_UNEXPAND|0x00010107"),
+        ("12108", "CSIDL_FLAG_DONT_UNEXPAND|0x00010108"),
+        ("12109", "CSIDL_FLAG_DONT_UNEXPAND|0x00010109"),
+        ("12110", "CSIDL_FLAG_DONT_UNEXPAND|0x00010110"),
+        ("12111", "CSIDL_FLAG_DONT_UNEXPAND|0x00010111"),
+        ("12112", "CSIDL_FLAG_DONT_UNEXPAND|0x00010112"),
+        ("12113", "CSIDL_FLAG_DONT_UNEXPAND|0x00010113"),
+        ("12114", "CSIDL_FLAG_DONT_UNEXPAND|0x00010114"),
+        ("12115", "CSIDL_FLAG_DONT_UNEXPAND|0x00010115"),
+        ("12116", "CSIDL_FLAG_DONT_UNEXPAND|0x00010116"),
+        ("12117", "CSIDL_FLAG_DONT_UNEXPAND|0x00010117"),
+        ("12118", "CSIDL_FLAG_DONT_UNEXPAND|0x00010118"),
+        ("12119", "CSIDL_FLAG_DONT_UNEXPAND|0x00010119"),
+        ("12120", "CSIDL_FLAG_DONT_UNEXPAND|0x00010120"),
+        ("12121", "CSIDL_FLAG_DONT_UNEXPAND|0x00010121"),
+        ("12122", "CSIDL_FLAG_DONT_UNEXPAND|0x00010122"),
+        ("12123", "CSIDL_FLAG_DONT_UNEXPAND|0x00010123"),
+        ("12124", "CSIDL_FLAG_DONT_UNEXPAND|0x00010124"),
+        ("12125", "CSIDL_FLAG_DONT_UNEXPAND|0x00010125"),
+        ("12126", "CSIDL_FLAG_DONT_UNEXPAND|0x00010126"),
+        ("12127", "CSIDL_FLAG_DONT_UNEXPAND|0x00010127"),
+        ("12128", "CSIDL_FLAG_DONT_UNEXPAND|0x00010128"),
+        ("12129", "CSIDL_FLAG_DONT_UNEXPAND|0x00010129"),
+        ("12130", "CSIDL_FLAG_DONT_UNEXPAND|0x00010130"),
+        ("12131", "CSIDL_FLAG_DONT_UNEXPAND|0x00010131"),
+        ("12132", "CSIDL_FLAG_DONT_UNEXPAND|0x00010132"),
+        ("12133", "CSIDL_FLAG_DONT_UNEXPAND|0x00010133"),
+        ("12134", "CSIDL_FLAG_DONT_UNEXPAND|0x00010134"),
+        ("12135", "CSIDL_FLAG_DONT_UNEXPAND|0x00010135"),
+        ("12136", "CSIDL_FLAG_DONT_UNEXPAND|0x00010136"),
+        ("12137", "CSIDL_FLAG_DONT_UNEXPAND|0x00010137"),
+        ("12138", "CSIDL_FLAG_DONT_UNEXPAND|0x00010138"),
+        ("12139", "CSIDL_FLAG_DONT_UNEXPAND|0x00010139"),
+        ("12140", "CSIDL_FLAG_DONT_UNEXPAND|0x00010140"),
+        ("12141", "CSIDL_FLAG_DONT_UNEXPAND|0x00010141"),
+        ("12142", "CSIDL_FLAG_DONT_UNEXPAND|0x00010142"),
+        ("12143", "CSIDL_FLAG_DONT_UNEXPAND|0x00010143"),
+        ("12144", "CSIDL_FLAG_DONT_UNEXPAND|0x00010144"),
+        ("12145", "CSIDL_FLAG_DONT_UNEXPAND|0x00010145"),
+        ("12146", "CSIDL_FLAG_DONT_UNEXPAND|0x00010146"),
+        ("12147", "CSIDL_FLAG_DONT_UNEXPAND|0x00010147"),
+        ("12148", "CSIDL_FLAG_DONT_UNEXPAND|0x00010148"),
+        ("12149", "CSIDL_FLAG_DONT_UNEXPAND|0x00010149"),
+        ("12150", "CSIDL_FLAG_DONT_UNEXPAND|0x00010150"),
+        ("12151", "CSIDL_FLAG_DONT_UNEXPAND|0x00010151"),
+        ("12152", "CSIDL_FLAG_DONT_UNEXPAND|0x00010152"),
+        ("12153", "CSIDL_FLAG_DONT_UNEXPAND|0x00010153"),
+        ("12154", "CSIDL_FLAG_DONT_UNEXPAND|0x00010154"),
+        ("12155", "CSIDL_FLAG_DONT_UNEXPAND|0x00010155"),
+        ("12156", "CSIDL_FLAG_DONT_UNEXPAND|0x00010156"),
+        ("12157", "CSIDL_FLAG_DONT_UNEXPAND|0x00010157"),
+        ("12158", "CSIDL_FLAG_DONT_UNEXPAND|0x00010158"),
+        ("12159", "CSIDL_FLAG_DONT_UNEXPAND|0x00010159"),
+        ("12160", "CSIDL_FLAG_DONT_UNEXPAND|0x00010160"),
+        ("12161", "CSIDL_FLAG_DONT_UNEXPAND|0x00010161"),
+        ("12162", "CSIDL_FLAG_DONT_UNEXPAND|0x00010162"),
+        ("12163", "CSIDL_FLAG_DONT_UNEXPAND|0x00010163"),
+        ("12164", "CSIDL_FLAG_DONT_UNEXPAND|0x00010164"),
+        ("12165", "CSIDL_FLAG_DONT_UNEXPAND|0x00010165"),
+        ("12166", "CSIDL_FLAG_DONT_UNEXPAND|0x00010166"),
+        ("12167", "CSIDL_FLAG_DONT_UNEXPAND|0x00010167"),
+        ("12168", "CSIDL_FLAG_DONT_UNEXPAND|0x00010168"),
+        ("12169", "CSIDL_FLAG_DONT_UNEXPAND|0x00010169"),
+        ("12170", "CSIDL_FLAG_DONT_UNEXPAND|0x00010170"),
+        ("12171", "CSIDL_FLAG_DONT_UNEXPAND|0x00010171"),
+        ("12172", "CSIDL_FLAG_DONT_UNEXPAND|0x00010172"),
+        ("12173", "CSIDL_FLAG_DONT_UNEXPAND|0x00010173"),
+        ("12174", "CSIDL_FLAG_DONT_UNEXPAND|0x00010174"),
+        ("12175", "CSIDL_FLAG_DONT_UNEXPAND|0x00010175"),
+        ("12176", "CSIDL_FLAG_DONT_UNEXPAND|0x00010176"),
+        ("12177", "CSIDL_FLAG_DONT_UNEXPAND|0x00010177"),
+        ("12178", "CSIDL_FLAG_DONT_UNEXPAND|0x00010178"),
+        ("12179", "CSIDL_FLAG_DONT_UNEXPAND|0x00010179"),
+        ("12180", "CSIDL_FLAG_DONT_UNEXPAND|0x00010180"),
+        ("12181", "CSIDL_FLAG_DONT_UNEXPAND|0x00010181"),
+        ("12182", "CSIDL_FLAG_DONT_UNEXPAND|0x00010182"),
+        ("12183", "CSIDL_FLAG_DONT_UNEXPAND|0x00010183"),
+        ("12184", "CSIDL_FLAG_DONT_UNEXPAND|0x00010184"),
+        ("12185", "CSIDL_FLAG_DONT_UNEXPAND|0x00010185"),
+        ("12186", "CSIDL_FLAG_DONT_UNEXPAND|0x00010186"),
+        ("12187", "CSIDL_FLAG_DONT_UNEXPAND|0x00010187"),
+        ("12188", "CSIDL_FLAG_DONT_UNEXPAND|0x00010188"),
+        ("12189", "CSIDL_FLAG_DONT_UNEXPAND|0x00010189"),
+        ("12190", "CSIDL_FLAG_DONT_UNEXPAND|0x00010190"),
+        ("12191", "CSIDL_FLAG_DONT_UNEXPAND|0x00010191"),
+        ("12192", "CSIDL_FLAG_DONT_UNEXPAND|0x00010192"),
+        ("12193", "CSIDL_FLAG_DONT_UNEXPAND|0x00010193"),
+        ("12194", "CSIDL_FLAG_DONT_UNEXPAND|0x00010194"),
+        ("12195", "CSIDL_FLAG_DONT_UNEXPAND|0x00010195"),
+        ("12196", "CSIDL_FLAG_DONT_UNEXPAND|0x00010196"),
+        ("12197", "CSIDL_FLAG_DONT_UNEXPAND|0x00010197"),
+        ("12198", "CSIDL_FLAG_DONT_UNEXPAND|0x00010198"),
+        ("12199", "CSIDL_FLAG_DONT_UNEXPAND|0x00010199"),
+        ("12200", "CSIDL_FLAG_DONT_UNEXPAND|0x00010200"),
+        ("12201", "CSIDL_FLAG_DONT_UNEXPAND|0x00010201"),
+        ("12202", "CSIDL_FLAG_DONT_UNEXPAND|0x00010202"),
+        ("12203", "CSIDL_FLAG_DONT_UNEXPAND|0x00010203"),
+        ("12204", "CSIDL_FLAG_DONT_UNEXPAND|0x00010204"),
+        ("12205", "CSIDL_FLAG_DONT_UNEXPAND|0x00010205"),
+        ("12206", "CSIDL_FLAG_DONT_UNEXPAND|0x00010206"),
+        ("12207", "CSIDL_FLAG_DONT_UNEXPAND|0x00010207"),
+        ("12208", "CSIDL_FLAG_DONT_UNEXPAND|0x00010208"),
+        ("12209", "CSIDL_FLAG_DONT_UNEXPAND|0x00010209"),
+        ("12210", "CSIDL_FLAG_DONT_UNEXPAND|0x00010210"),
+        ("12211", "CSIDL_FLAG_DONT_UNEXPAND|0x00010211"),
+        ("12212", "CSIDL_FLAG_DONT_UNEXPAND|0x00010212"),
+        ("12213", "CSIDL_FLAG_DONT_UNEXPAND|0x00010213"),
+        ("12214", "CSIDL_FLAG_DONT_UNEXPAND|0x00010214"),
+        ("12215", "CSIDL_FLAG_DONT_UNEXPAND|0x00010215"),
+        ("12216", "CSIDL_FLAG_DONT_UNEXPAND|0x00010216"),
+        ("12217", "CSIDL_FLAG_DONT_UNEXPAND|0x00010217"),
+        ("12218", "CSIDL_FLAG_DONT_UNEXPAND|0x00010218"),
+        ("12219", "CSIDL_FLAG_DONT_UNEXPAND|0x00010219"),
+        ("12220", "CSIDL_FLAG_DONT_UNEXPAND|0x00010220"),
+        ("12221", "CSIDL_FLAG_DONT_UNEXPAND|0x00010221"),
+        ("12222", "CSIDL_FLAG_DONT_UNEXPAND|0x00010222"),
+        ("12223", "CSIDL_FLAG_DONT_UNEXPAND|0x00010223"),
+        ("12224", "CSIDL_FLAG_DONT_UNEXPAND|0x00010224"),
+        ("12225", "CSIDL_FLAG_DONT_UNEXPAND|0x00010225"),
+        ("12226", "CSIDL_FLAG_DONT_UNEXPAND|0x00010226"),
+        ("12227", "CSIDL_FLAG_DONT_UNEXPAND|0x00010227"),
+        ("12228", "CSIDL_FLAG_DONT_UNEXPAND|0x00010228"),
+        ("12229", "CSIDL_FLAG_DONT_UNEXPAND|0x00010229"),
+        ("12230", "CSIDL_FLAG_DONT_UNEXPAND|0x00010230"),
+        ("12231", "CSIDL_FLAG_DONT_UNEXPAND|0x00010231"),
+        ("12232", "CSIDL_FLAG_DONT_UNEXPAND|0x00010232"),
+        ("12233", "CSIDL_FLAG_DONT_UNEXPAND|0x00010233"),
+        ("12234", "CSIDL_FLAG_DONT_UNEXPAND|0x00010234"),
+        ("12235", "CSIDL_FLAG_DONT_UNEXPAND|0x00010235"),
+        ("12236", "CSIDL_FLAG_DONT_UNEXPAND|0x00010236"),
+        ("12237", "CSIDL_FLAG_DONT_UNEXPAND|0x00010237"),
+        ("12238", "CSIDL_FLAG_DONT_UNEXPAND|0x00010238"),
+        ("12239", "CSIDL_FLAG_DONT_UNEXPAND|0x00010239"),
+        ("12240", "CSIDL_FLAG_DONT_UNEXPAND|0x00010240"),
+        ("12241", "CSIDL_FLAG_DONT_UNEXPAND|0x00010241"),
+        ("12242", "CSIDL_FLAG_DONT_UNEXPAND|0x00010242"),
+        ("12243", "CSIDL_FLAG_DONT_UNEXPAND|0x00010243"),
+        ("12244", "CSIDL_FLAG_DONT_UNEXPAND|0x00010244"),
+        ("12245", "CSIDL_FLAG_DONT_UNEXPAND|0x00010245"),
+        ("12246", "CSIDL_FLAG_DONT_UNEXPAND|0x00010246"),
+        ("12247", "CSIDL_FLAG_DONT_UNEXPAND|0x00010247"),
+        ("12248", "CSIDL_FLAG_DONT_UNEXPAND|0x00010248"),
+        ("12249", "CSIDL_FLAG_DONT_UNEXPAND|0x00010249"),
+        ("12250", "CSIDL_FLAG_DONT_UNEXPAND|0x00010250"),
+        ("12251", "CSIDL_FLAG_DONT_UNEXPAND|0x00010251"),
+        ("12252", "CSIDL_FLAG_DONT_UNEXPAND|0x00010252"),
+        ("12253", "CSIDL_FLAG_DONT_UNEXPAND|0x00010253"),
+        ("12254", "CSIDL_FLAG_DONT_UNEXPAND|0x00010254"),
+        ("12255", "CSIDL_FLAG_DONT_UNEXPAND|0x00010255"),
+        ("12256", "CSIDL_FLAG_DONT_UNEXPAND|0x00010256"),
+        ("12257", "CSIDL_FLAG_DONT_UNEXPAND|0x00010257"),
+        ("12258", "CSIDL_FLAG_DONT_UNEXPAND|0x00010258"),
+        ("12259", "CSIDL_FLAG_DONT_UNEXPAND|0x00010259"),
+        ("12260", "CSIDL_FLAG_DONT_UNEXPAND|0x00010260"),
+        ("12261", "CSIDL_FLAG_DONT_UNEXPAND|0x00010261"),
+        ("12262", "CSIDL_FLAG_DONT_UNEXPAND|0x00010262"),
+        ("12263", "CSIDL_FLAG_DONT_UNEXPAND|0x00010263"),
+        ("12264", "CSIDL_FLAG_DONT_UNEXPAND|0x00010264"),
+        ("12265", "CSIDL_FLAG_DONT_UNEXPAND|0x00010265"),
+        ("12266", "CSIDL_FLAG_DONT_UNEXPAND|0x00010266"),
+        ("12267", "CSIDL_FLAG_DONT_UNEXPAND|0x00010267"),
+        ("12268", "CSIDL_FLAG_DONT_UNEXPAND|0x00010268"),
+        ("12269", "CSIDL_FLAG_DONT_UNEXPAND|0x00010269"),
+        ("12270", "CSIDL_FLAG_DONT_UNEXPAND|0x00010270"),
+        ("12271", "CSIDL_FLAG_DONT_UNEXPAND|0x00010271"),
+        ("12272", "CSIDL_FLAG_DONT_UNEXPAND|0x00010272"),
+        ("12273", "CSIDL_FLAG_DONT_UNEXPAND|0x00010273"),
+        ("12274", "CSIDL_FLAG_DONT_UNEXPAND|0x00010274"),
+        ("12275", "CSIDL_FLAG_DONT_UNEXPAND|0x00010275"),
+        ("12276", "CSIDL_FLAG_DONT_UNEXPAND|0x00010276"),
+        ("12277", "CSIDL_FLAG_DONT_UNEXPAND|0x00010277"),
+        ("12278", "CSIDL_FLAG_DONT_UNEXPAND|0x00010278"),
+        ("12279", "CSIDL_FLAG_DONT_UNEXPAND|0x00010279"),
+        ("12280", "CSIDL_FLAG_DONT_UNEXPAND|0x00010280"),
+        ("12281", "CSIDL_FLAG_DONT_UNEXPAND|0x00010281"),
+        ("12282", "CSIDL_FLAG_DONT_UNEXPAND|0x00010282"),
+        ("12283", "CSIDL_FLAG_DONT_UNEXPAND|0x00010283"),
+        ("12284", "CSIDL_FLAG_DONT_UNEXPAND|0x00010284"),
+        ("12285", "CSIDL_FLAG_DONT_UNEXPAND|0x00010285"),
+        ("12286", "CSIDL_FLAG_DONT_UNEXPAND|0x00010286"),
+        ("12287", "CSIDL_FLAG_DONT_UNEXPAND|0x00010287"),
+        ("12288", "CSIDL_FLAG_DONT_UNEXPAND|0x00010288"),
+        ("12289", "CSIDL_FLAG_DONT_UNEXPAND|0x00010289"),
+        ("12290", "CSIDL_FLAG_DONT_UNEXPAND|0x00010290"),
+        ("12291", "CSIDL_FLAG_DONT_UNEXPAND|0x00010291"),
+        ("12292", "CSIDL_FLAG_DONT_UNEXPAND|0x00010292"),
+        ("12293", "CSIDL_FLAG_DONT_UNEXPAND|0x00010293"),
+        ("12294", "CSIDL_FLAG_DONT_UNEXPAND|0x00010294"),
+        ("12295", "CSIDL_FLAG_DONT_UNEXPAND|0x00010295"),
+        ("12296", "CSIDL_FLAG_DONT_UNEXPAND|0x00010296"),
+        ("12297", "CSIDL_FLAG_DONT_UNEXPAND|0x00010297"),
+        ("12298", "CSIDL_FLAG_DONT_UNEXPAND|0x00010298"),
+        ("12299", "CSIDL_FLAG_DONT_UNEXPAND|0x00010299"),
+        ("12300", "CSIDL_FLAG_DONT_UNEXPAND|0x00010300"),
+        ("12301", "CSIDL_FLAG_DONT_UNEXPAND|0x00010301"),
+        ("12302", "CSIDL_FLAG_DONT_UNEXPAND|0x00010302"),
+        ("12303", "CSIDL_FLAG_DONT_UNEXPAND|0x00010303"),
+        ("12304", "CSIDL_FLAG_DONT_UNEXPAND|0x00010304"),
+        ("12305", "CSIDL_FLAG_DONT_UNEXPAND|0x00010305"),
+        ("12306", "CSIDL_FLAG_DONT_UNEXPAND|0x00010306"),
+        ("12307", "CSIDL_FLAG_DONT_UNEXPAND|0x00010307"),
+        ("12308", "CSIDL_FLAG_DONT_UNEXPAND|0x00010308"),
+        ("12309", "CSIDL_FLAG_DONT_UNEXPAND|0x00010309"),
+        ("12310", "CSIDL_FLAG_DONT_UNEXPAND|0x00010310"),
+        ("12311", "CSIDL_FLAG_DONT_UNEXPAND|0x00010311"),
+        ("12312", "CSIDL_FLAG_DONT_UNEXPAND|0x00010312"),
+        ("12313", "CSIDL_FLAG_DONT_UNEXPAND|0x00010313"),
+        ("12314", "CSIDL_FLAG_DONT_UNEXPAND|0x00010314"),
+        ("12315", "CSIDL_FLAG_DONT_UNEXPAND|0x00010315"),
+        ("12316", "CSIDL_FLAG_DONT_UNEXPAND|0x00010316"),
+        ("12317", "CSIDL_FLAG_DONT_UNEXPAND|0x00010317"),
+        ("12318", "CSIDL_FLAG_DONT_UNEXPAND|0x00010318"),
+        ("12319", "CSIDL_FLAG_DONT_UNEXPAND|0x00010319"),
+        ("12320", "CSIDL_FLAG_DONT_UNEXPAND|0x00010320"),
+        ("12321", "CSIDL_FLAG_DONT_UNEXPAND|0x00010321"),
+        ("12322", "CSIDL_FLAG_DONT_UNEXPAND|0x00010322"),
+        ("12323", "CSIDL_FLAG_DONT_UNEXPAND|0x00010323"),
+        ("12324", "CSIDL_FLAG_DONT_UNEXPAND|0x00010324"),
+        ("12325", "CSIDL_FLAG_DONT_UNEXPAND|0x00010325"),
+        ("12326", "CSIDL_FLAG_DONT_UNEXPAND|0x00010326"),
+        ("12327", "CSIDL_FLAG_DONT_UNEXPAND|0x00010327"),
+        ("12328", "CSIDL_FLAG_DONT_UNEXPAND|0x00010328"),
+        ("12329", "CSIDL_FLAG_DONT_UNEXPAND|0x00010329"),
+        ("12330", "CSIDL_FLAG_DONT_UNEXPAND|0x00010330"),
+        ("12331", "CSIDL_FLAG_DONT_UNEXPAND|0x00010331"),
+        ("12332", "CSIDL_FLAG_DONT_UNEXPAND|0x00010332"),
+        ("12333", "CSIDL_FLAG_DONT_UNEXPAND|0x00010333"),
+        ("12334", "CSIDL_FLAG_DONT_UNEXPAND|0x00010334"),
+        ("12335", "CSIDL_FLAG_DONT_UNEXPAND|0x00010335"),
+        ("12336", "CSIDL_FLAG_DONT_UNEXPAND|0x00010336"),
+        ("12337", "CSIDL_FLAG_DONT_UNEXPAND|0x00010337"),
+        ("12338", "CSIDL_FLAG_DONT_UNEXPAND|0x00010338"),
+        ("12339", "CSIDL_FLAG_DONT_UNEXPAND|0x00010339"),
+        ("12340", "CSIDL_FLAG_DONT_UNEXPAND|0x00010340"),
+        ("12341", "CSIDL_FLAG_DONT_UNEXPAND|0x00010341"),
+        ("12342", "CSIDL_FLAG_DONT_UNEXPAND|0x00010342"),
+        ("12343", "CSIDL_FLAG_DONT_UNEXPAND|0x00010343"),
+        ("12344", "CSIDL_FLAG_DONT_UNEXPAND|0x00010344"),
+        ("12345", "CSIDL_FLAG_DONT_UNEXPAND|0x00010345"),
+        ("12346", "CSIDL_FLAG_DONT_UNEXPAND|0x00010346"),
+        ("12347", "CSIDL_FLAG_DONT_UNEXPAND|0x00010347"),
+        ("12348", "CSIDL_FLAG_DONT_UNEXPAND|0x00010348"),
+        ("12349", "CSIDL_FLAG_DONT_UNEXPAND|0x00010349"),
+        ("12350", "CSIDL_FLAG_DONT_UNEXPAND|0x00010350"),
+        ("12351", "CSIDL_FLAG_DONT_UNEXPAND|0x00010351"),
+        ("12352", "CSIDL_FLAG_DONT_UNEXPAND|0x00010352"),
+        ("12353", "CSIDL_FLAG_DONT_UNEXPAND|0x00010353"),
+        ("12354", "CSIDL_FLAG_DONT_UNEXPAND|0x00010354"),
+        ("12355", "CSIDL_FLAG_DONT_UNEXPAND|0x00010355"),
+        ("12356", "CSIDL_FLAG_DONT_UNEXPAND|0x00010356"),
+        ("12357", "CSIDL_FLAG_DONT_UNEXPAND|0x00010357"),
+        ("12358", "CSIDL_FLAG_DONT_UNEXPAND|0x00010358"),
+        ("12359", "CSIDL_FLAG_DONT_UNEXPAND|0x00010359"),
+        ("12360", "CSIDL_FLAG_DONT_UNEXPAND|0x00010360"),
+        ("12361", "CSIDL_FLAG_DONT_UNEXPAND|0x00010361"),
+        ("12362", "CSIDL_FLAG_DONT_UNEXPAND|0x00010362"),
+        ("12363", "CSIDL_FLAG_DONT_UNEXPAND|0x00010363"),
+        ("12364", "CSIDL_FLAG_DONT_UNEXPAND|0x00010364"),
+        ("12365", "CSIDL_FLAG_DONT_UNEXPAND|0x00010365"),
+        ("12366", "CSIDL_FLAG_DONT_UNEXPAND|0x00010366"),
+        ("12367", "CSIDL_FLAG_DONT_UNEXPAND|0x00010367"),
+        ("12368", "CSIDL_FLAG_DONT_UNEXPAND|0x00010368"),
+        ("12369", "CSIDL_FLAG_DONT_UNEXPAND|0x00010369"),
+        ("12370", "CSIDL_FLAG_DONT_UNEXPAND|0x00010370"),
+        ("12371", "CSIDL_FLAG_DONT_UNEXPAND|0x00010371"),
+        ("12372", "CSIDL_FLAG_DONT_UNEXPAND|0x00010372"),
+        ("12373", "CSIDL_FLAG_DONT_UNEXPAND|0x00010373"),
+        ("12374", "CSIDL_FLAG_DONT_UNEXPAND|0x00010374"),
+        ("12375", "CSIDL_FLAG_DONT_UNEXPAND|0x00010375"),
+        ("12376", "CSIDL_FLAG_DONT_UNEXPAND|0x00010376"),
+        ("12377", "CSIDL_FLAG_DONT_UNEXPAND|0x00010377"),
+        ("12378", "CSIDL_FLAG_DONT_UNEXPAND|0x00010378"),
+        ("12379", "CSIDL_FLAG_DONT_UNEXPAND|0x00010379"),
+        ("12380", "CSIDL_FLAG_DONT_UNEXPAND|0x00010380"),
+        ("12381", "CSIDL_FLAG_DONT_UNEXPAND|0x00010381"),
+        ("12382", "CSIDL_FLAG_DONT_UNEXPAND|0x00010382"),
+        ("12383", "CSIDL_FLAG_DONT_UNEXPAND|0x00010383"),
+        ("12384", "CSIDL_FLAG_DONT_UNEXPAND|0x00010384"),
+        ("12385", "CSIDL_FLAG_DONT_UNEXPAND|0x00010385"),
+        ("12386", "CSIDL_FLAG_DONT_UNEXPAND|0x00010386"),
+        ("12387", "CSIDL_FLAG_DONT_UNEXPAND|0x00010387"),
+        ("12388", "CSIDL_FLAG_DONT_UNEXPAND|0x00010388"),
+        ("12389", "CSIDL_FLAG_DONT_UNEXPAND|0x00010389"),
+        ("12390", "CSIDL_FLAG_DONT_UNEXPAND|0x00010390"),
+        ("12391", "CSIDL_FLAG_DONT_UNEXPAND|0x00010391"),
+        ("12392", "CSIDL_FLAG_DONT_UNEXPAND|0x00010392"),
+        ("12393", "CSIDL_FLAG_DONT_UNEXPAND|0x00010393"),
+        ("12394", "CSIDL_FLAG_DONT_UNEXPAND|0x00010394"),
+        ("12395", "CSIDL_FLAG_DONT_UNEXPAND|0x00010395"),
+        ("12396", "CSIDL_FLAG_DONT_UNEXPAND|0x00010396"),
+        ("12397", "CSIDL_FLAG_DONT_UNEXPAND|0x00010397"),
+        ("12398", "CSIDL_FLAG_DONT_UNEXPAND|0x00010398"),
+        ("12399", "CSIDL_FLAG_DONT_UNEXPAND|0x00010399"),
+        ("12400", "CSIDL_FLAG_DONT_UNEXPAND|0x00010400"),
+        ("12401", "CSIDL_FLAG_DONT_UNEXPAND|0x00010401"),
+        ("12402", "CSIDL_FLAG_DONT_UNEXPAND|0x00010402"),
+        ("12403", "CSIDL_FLAG_DONT_UNEXPAND|0x00010403"),
+        ("12404", "CSIDL_FLAG_DONT_UNEXPAND|0x00010404"),
+        ("12405", "CSIDL_FLAG_DONT_UNEXPAND|0x00010405"),
+        ("12406", "CSIDL_FLAG_DONT_UNEXPAND|0x00010406"),
+        ("12407", "CSIDL_FLAG_DONT_UNEXPAND|0x00010407"),
+        ("12408", "CSIDL_FLAG_DONT_UNEXPAND|0x00010408"),
+        ("12409", "CSIDL_FLAG_DONT_UNEXPAND|0x00010409"),
+        ("12410", "CSIDL_FLAG_DONT_UNEXPAND|0x00010410"),
+        ("12411", "CSIDL_FLAG_DONT_UNEXPAND|0x00010411"),
+        ("12412", "CSIDL_FLAG_DONT_UNEXPAND|0x00010412"),
+        ("12413", "CSIDL_FLAG_DONT_UNEXPAND|0x00010413"),
+        ("12414", "CSIDL_FLAG_DONT_UNEXPAND|0x00010414"),
+        ("12415", "CSIDL_FLAG_DONT_UNEXPAND|0x00010415"),
+        ("12416", "CSIDL_FLAG_DONT_UNEXPAND|0x00010416"),
+        ("12417", "CSIDL_FLAG_DONT_UNEXPAND|0x00010417"),
+        ("12418", "CSIDL_FLAG_DONT_UNEXPAND|0x00010418"),
+        ("12419", "CSIDL_FLAG_DONT_UNEXPAND|0x00010419"),
+        ("12420", "CSIDL_FLAG_DONT_UNEXPAND|0x00010420"),
+        ("12421", "CSIDL_FLAG_DONT_UNEXPAND|0x00010421"),
+        ("12422", "CSIDL_FLAG_DONT_UNEXPAND|0x00010422"),
+        ("12423", "CSIDL_FLAG_DONT_UNEXPAND|0x00010423"),
+        ("12424", "CSIDL_FLAG_DONT_UNEXPAND|0x00010424"),
+        ("12425", "CSIDL_FLAG_DONT_UNEXPAND|0x00010425"),
+        ("12426", "CSIDL_FLAG_DONT_UNEXPAND|0x00010426"),
+        ("12427", "CSIDL_FLAG_DONT_UNEXPAND|0x00010427"),
+        ("12428", "CSIDL_FLAG_DONT_UNEXPAND|0x00010428"),
+        ("12429", "CSIDL_FLAG_DONT_UNEXPAND|0x00010429"),
+        ("12430", "CSIDL_FLAG_DONT_UNEXPAND|0x00010430"),
+        ("12431", "CSIDL_FLAG_DONT_UNEXPAND|0x00010431"),
+        ("12432", "CSIDL_FLAG_DONT_UNEXPAND|0x00010432"),
+        ("12433", "CSIDL_FLAG_DONT_UNEXPAND|0x00010433"),
+        ("12434", "CSIDL_FLAG_DONT_UNEXPAND|0x00010434"),
+        ("12435", "CSIDL_FLAG_DONT_UNEXPAND|0x00010435"),
+        ("12436", "CSIDL_FLAG_DONT_UNEXPAND|0x00010436"),
+        ("12437", "CSIDL_FLAG_DONT_UNEXPAND|0x00010437"),
+        ("12438", "CSIDL_FLAG_DONT_UNEXPAND|0x00010438"),
+        ("12439", "CSIDL_FLAG_DONT_UNEXPAND|0x00010439"),
+        ("12440", "CSIDL_FLAG_DONT_UNEXPAND|0x00010440"),
+        ("12441", "CSIDL_FLAG_DONT_UNEXPAND|0x00010441"),
+        ("12442", "CSIDL_FLAG_DONT_UNEXPAND|0x00010442"),
+        ("12443", "CSIDL_FLAG_DONT_UNEXPAND|0x00010443"),
+        ("12444", "CSIDL_FLAG_DONT_UNEXPAND|0x00010444"),
+        ("12445", "CSIDL_FLAG_DONT_UNEXPAND|0x00010445"),
+        ("12446", "CSIDL_FLAG_DONT_UNEXPAND|0x00010446"),
+        ("12447", "CSIDL_FLAG_DONT_UNEXPAND|0x00010447"),
+        ("12448", "CSIDL_FLAG_DONT_UNEXPAND|0x00010448"),
+        ("12449", "CSIDL_FLAG_DONT_UNEXPAND|0x00010449"),
+        ("12450", "CSIDL_FLAG_DONT_UNEXPAND|0x00010450"),
+        ("12451", "CSIDL_FLAG_DONT_UNEXPAND|0x00010451"),
+        ("12452", "CSIDL_FLAG_DONT_UNEXPAND|0x00010452"),
+        ("12453", "CSIDL_FLAG_DONT_UNEXPAND|0x00010453"),
+        ("12454", "CSIDL_FLAG_DONT_UNEXPAND|0x00010454"),
+        ("12455", "CSIDL_FLAG_DONT_UNEXPAND|0x00010455"),
+        ("12456", "CSIDL_FLAG_DONT_UNEXPAND|0x00010456"),
+        ("12457", "CSIDL_FLAG_DONT_UNEXPAND|0x00010457"),
+        ("12458", "CSIDL_FLAG_DONT_UNEXPAND|0x00010458"),
+        ("12459", "CSIDL_FLAG_DONT_UNEXPAND|0x00010459"),
+        ("12460", "CSIDL_FLAG_DONT_UNEXPAND|0x00010460"),
+        ("12461", "CSIDL_FLAG_DONT_UNEXPAND|0x00010461"),
+        ("12462", "CSIDL_FLAG_DONT_UNEXPAND|0x00010462"),
+        ("12463", "CSIDL_FLAG_DONT_UNEXPAND|0x00010463"),
+        ("12464", "CSIDL_FLAG_DONT_UNEXPAND|0x00010464"),
+        ("12465", "CSIDL_FLAG_DONT_UNEXPAND|0x00010465"),
+        ("12466", "CSIDL_FLAG_DONT_UNEXPAND|0x00010466"),
+        ("12467", "CSIDL_FLAG_DONT_UNEXPAND|0x00010467"),
+        ("12468", "CSIDL_FLAG_DONT_UNEXPAND|0x00010468"),
+        ("12469", "CSIDL_FLAG_DONT_UNEXPAND|0x00010469"),
+        ("12470", "CSIDL_FLAG_DONT_UNEXPAND|0x00010470"),
+        ("12471", "CSIDL_FLAG_DONT_UNEXPAND|0x00010471"),
+        ("12472", "CSIDL_FLAG_DONT_UNEXPAND|0x00010472"),
+        ("12473", "CSIDL_FLAG_DONT_UNEXPAND|0x00010473"),
+        ("12474", "CSIDL_FLAG_DONT_UNEXPAND|0x00010474"),
+        ("12475", "CSIDL_FLAG_DONT_UNEXPAND|0x00010475"),
+        ("12476", "CSIDL_FLAG_DONT_UNEXPAND|0x00010476"),
+        ("12477", "CSIDL_FLAG_DONT_UNEXPAND|0x00010477"),
+        ("12478", "CSIDL_FLAG_DONT_UNEXPAND|0x00010478"),
+        ("12479", "CSIDL_FLAG_DONT_UNEXPAND|0x00010479"),
+        ("12480", "CSIDL_FLAG_DONT_UNEXPAND|0x00010480"),
+        ("12481", "CSIDL_FLAG_DONT_UNEXPAND|0x00010481"),
+        ("12482", "CSIDL_FLAG_DONT_UNEXPAND|0x00010482"),
+        ("12483", "CSIDL_FLAG_DONT_UNEXPAND|0x00010483"),
+        ("12484", "CSIDL_FLAG_DONT_UNEXPAND|0x00010484"),
+        ("12485", "CSIDL_FLAG_DONT_UNEXPAND|0x00010485"),
+        ("12486", "CSIDL_FLAG_DONT_UNEXPAND|0x00010486"),
+        ("12487", "CSIDL_FLAG_DONT_UNEXPAND|0x00010487"),
+        ("12488", "CSIDL_FLAG_DONT_UNEXPAND|0x00010488"),
+        ("12489", "CSIDL_FLAG_DONT_UNEXPAND|0x00010489"),
+        ("12490", "CSIDL_FLAG_DONT_UNEXPAND|0x00010490"),
+        ("12491", "CSIDL_FLAG_DONT_UNEXPAND|0x00010491"),
+        ("12492", "CSIDL_FLAG_DONT_UNEXPAND|0x00010492"),
+        ("12493", "CSIDL_FLAG_DONT_UNEXPAND|0x00010493"),
+        ("12494", "CSIDL_FLAG_DONT_UNEXPAND|0x00010494"),
+        ("12495", "CSIDL_FLAG_DONT_UNEXPAND|0x00010495"),
+        ("12496", "CSIDL_FLAG_DONT_UNEXPAND|0x00010496"),
+        ("12497", "CSIDL_FLAG_DONT_UNEXPAND|0x00010497"),
+        ("12498", "CSIDL_FLAG_DONT_UNEXPAND|0x00010498"),
+        ("12499", "CSIDL_FLAG_DONT_UNEXPAND|0x00010499"),
+        ("12500", "CSIDL_FLAG_DONT_UNEXPAND|0x00010500"),
+        ("12501", "CSIDL_FLAG_DONT_UNEXPAND|0x00010501"),
+        ("12502", "CSIDL_FLAG_DONT_UNEXPAND|0x00010502"),
+        ("12503", "CSIDL_FLAG_DONT_UNEXPAND|0x00010503"),
+        ("12504", "CSIDL_FLAG_DONT_UNEXPAND|0x00010504"),
+        ("12505", "CSIDL_FLAG_DONT_UNEXPAND|0x00010505"),
+        ("12506", "CSIDL_FLAG_DONT_UNEXPAND|0x00010506"),
+        ("12507", "CSIDL_FLAG_DONT_UNEXPAND|0x00010507"),
+        ("12508", "CSIDL_FLAG_DONT_UNEXPAND|0x00010508"),
+        ("12509", "CSIDL_FLAG_DONT_UNEXPAND|0x00010509"),
+        ("12510", "CSIDL_FLAG_DONT_UNEXPAND|0x00010510"),
+        ("12511", "CSIDL_FLAG_DONT_UNEXPAND|0x00010511"),
+        ("12512", "CSIDL_FLAG_DONT_UNEXPAND|0x00010512"),
+        ("12513", "CSIDL_FLAG_DONT_UNEXPAND|0x00010513"),
+        ("12514", "CSIDL_FLAG_DONT_UNEXPAND|0x00010514"),
+        ("12515", "CSIDL_FLAG_DONT_UNEXPAND|0x00010515"),
+        ("12516", "CSIDL_FLAG_DONT_UNEXPAND|0x00010516"),
+        ("12517", "CSIDL_FLAG_DONT_UNEXPAND|0x00010517"),
+        ("12518", "CSIDL_FLAG_DONT_UNEXPAND|0x00010518"),
+        ("12519", "CSIDL_FLAG_DONT_UNEXPAND|0x00010519"),
+        ("12520", "CSIDL_FLAG_DONT_UNEXPAND|0x00010520"),
+        ("12521", "CSIDL_FLAG_DONT_UNEXPAND|0x00010521"),
+        ("12522", "CSIDL_FLAG_DONT_UNEXPAND|0x00010522"),
+        ("12523", "CSIDL_FLAG_DONT_UNEXPAND|0x00010523"),
+        ("12524", "CSIDL_FLAG_DONT_UNEXPAND|0x00010524"),
+        ("12525", "CSIDL_FLAG_DONT_UNEXPAND|0x00010525"),
+        ("12526", "CSIDL_FLAG_DONT_UNEXPAND|0x00010526"),
+        ("12527", "CSIDL_FLAG_DONT_UNEXPAND|0x00010527"),
+        ("12528", "CSIDL_FLAG_DONT_UNEXPAND|0x00010528"),
+        ("12529", "CSIDL_FLAG_DONT_UNEXPAND|0x00010529"),
+        ("12530", "CSIDL_FLAG_DONT_UNEXPAND|0x00010530"),
+        ("12531", "CSIDL_FLAG_DONT_UNEXPAND|0x00010531"),
+        ("12532", "CSIDL_FLAG_DONT_UNEXPAND|0x00010532"),
+        ("12533", "CSIDL_FLAG_DONT_UNEXPAND|0x00010533"),
+        ("12534", "CSIDL_FLAG_DONT_UNEXPAND|0x00010534"),
+        ("12535", "CSIDL_FLAG_DONT_UNEXPAND|0x00010535"),
+        ("12536", "CSIDL_FLAG_DONT_UNEXPAND|0x00010536"),
+        ("12537", "CSIDL_FLAG_DONT_UNEXPAND|0x00010537"),
+        ("12538", "CSIDL_FLAG_DONT_UNEXPAND|0x00010538"),
+        ("12539", "CSIDL_FLAG_DONT_UNEXPAND|0x00010539"),
+        ("12540", "CSIDL_FLAG_DONT_UNEXPAND|0x00010540"),
+        ("12541", "CSIDL_FLAG_DONT_UNEXPAND|0x00010541"),
+        ("12542", "CSIDL_FLAG_DONT_UNEXPAND|0x00010542"),
+        ("12543", "CSIDL_FLAG_DONT_UNEXPAND|0x00010543"),
+        ("12544", "CSIDL_FLAG_DONT_UNEXPAND|0x00010544"),
+        ("12545", "CSIDL_FLAG_DONT_UNEXPAND|0x00010545"),
+        ("12546", "CSIDL_FLAG_DONT_UNEXPAND|0x00010546"),
+        ("12547", "CSIDL_FLAG_DONT_UNEXPAND|0x00010547"),
+        ("12548", "CSIDL_FLAG_DONT_UNEXPAND|0x00010548"),
+        ("12549", "CSIDL_FLAG_DONT_UNEXPAND|0x00010549"),
+        ("12550", "CSIDL_FLAG_DONT_UNEXPAND|0x00010550"),
+        ("12551", "CSIDL_FLAG_DONT_UNEXPAND|0x00010551"),
+        ("12552", "CSIDL_FLAG_DONT_UNEXPAND|0x00010552"),
+        ("12553", "CSIDL_FLAG_DONT_UNEXPAND|0x00010553"),
+        ("12554", "CSIDL_FLAG_DONT_UNEXPAND|0x00010554"),
+        ("12555", "CSIDL_FLAG_DONT_UNEXPAND|0x00010555"),
+        ("12556", "CSIDL_FLAG_DONT_UNEXPAND|0x00010556"),
+        ("12557", "CSIDL_FLAG_DONT_UNEXPAND|0x00010557"),
+        ("12558", "CSIDL_FLAG_DONT_UNEXPAND|0x00010558"),
+        ("12559", "CSIDL_FLAG_DONT_UNEXPAND|0x00010559"),
+        ("12560", "CSIDL_FLAG_DONT_UNEXPAND|0x00010560"),
+        ("12561", "CSIDL_FLAG_DONT_UNEXPAND|0x00010561"),
+        ("12562", "CSIDL_FLAG_DONT_UNEXPAND|0x00010562"),
+        ("12563", "CSIDL_FLAG_DONT_UNEXPAND|0x00010563"),
+        ("12564", "CSIDL_FLAG_DONT_UNEXPAND|0x00010564"),
+        ("12565", "CSIDL_FLAG_DONT_UNEXPAND|0x00010565"),
+        ("12566", "CSIDL_FLAG_DONT_UNEXPAND|0x00010566"),
+        ("12567", "CSIDL_FLAG_DONT_UNEXPAND|0x00010567"),
+        ("12568", "CSIDL_FLAG_DONT_UNEXPAND|0x00010568"),
+        ("12569", "CSIDL_FLAG_DONT_UNEXPAND|0x00010569"),
+        ("12570", "CSIDL_FLAG_DONT_UNEXPAND|0x00010570"),
+        ("12571", "CSIDL_FLAG_DONT_UNEXPAND|0x00010571"),
+        ("12572", "CSIDL_FLAG_DONT_UNEXPAND|0x00010572"),
+        ("12573", "CSIDL_FLAG_DONT_UNEXPAND|0x00010573"),
+        ("12574", "CSIDL_FLAG_DONT_UNEXPAND|0x00010574"),
+        ("12575", "CSIDL_FLAG_DONT_UNEXPAND|0x00010575"),
+        ("12576", "CSIDL_FLAG_DONT_UNEXPAND|0x00010576"),
+        ("12577", "CSIDL_FLAG_DONT_UNEXPAND|0x00010577"),
+        ("12578", "CSIDL_FLAG_DONT_UNEXPAND|0x00010578"),
+        ("12579", "CSIDL_FLAG_DONT_UNEXPAND|0x00010579"),
+        ("12580", "CSIDL_FLAG_DONT_UNEXPAND|0x00010580"),
+        ("12581", "CSIDL_FLAG_DONT_UNEXPAND|0x00010581"),
+        ("12582", "CSIDL_FLAG_DONT_UNEXPAND|0x00010582"),
+        ("12583", "CSIDL_FLAG_DONT_UNEXPAND|0x00010583"),
+        ("12584", "CSIDL_FLAG_DONT_UNEXPAND|0x00010584"),
+        ("12585", "CSIDL_FLAG_DONT_UNEXPAND|0x00010585"),
+        ("12586", "CSIDL_FLAG_DONT_UNEXPAND|0x00010586"),
+        ("12587", "CSIDL_FLAG_DONT_UNEXPAND|0x00010587"),
+        ("12588", "CSIDL_FLAG_DONT_UNEXPAND|0x00010588"),
+        ("12589", "CSIDL_FLAG_DONT_UNEXPAND|0x00010589"),
+        ("12590", "CSIDL_FLAG_DONT_UNEXPAND|0x00010590"),
+        ("12591", "CSIDL_FLAG_DONT_UNEXPAND|0x00010591"),
+        ("12592", "CSIDL_FLAG_DONT_UNEXPAND|0x00010592"),
+        ("12593", "CSIDL_FLAG_DONT_UNEXPAND|0x00010593"),
+        ("12594", "CSIDL_FLAG_DONT_UNEXPAND|0x00010594"),
+        ("12595", "CSIDL_FLAG_DONT_UNEXPAND|0x00010595"),
+        ("12596", "CSIDL_FLAG_DONT_UNEXPAND|0x00010596"),
+        ("12597", "CSIDL_FLAG_DONT_UNEXPAND|0x00010597"),
+        ("12598", "CSIDL_FLAG_DONT_UNEXPAND|0x00010598"),
+        ("12599", "CSIDL_FLAG_DONT_UNEXPAND|0x00010599"),
+        ("12600", "CSIDL_FLAG_DONT_UNEXPAND|0x00010600"),
+        ("12601", "CSIDL_FLAG_DONT_UNEXPAND|0x00010601"),
+        ("12602", "CSIDL_FLAG_DONT_UNEXPAND|0x00010602"),
+        ("12603", "CSIDL_FLAG_DONT_UNEXPAND|0x00010603"),
+        ("12604", "CSIDL_FLAG_DONT_UNEXPAND|0x00010604"),
+        ("12605", "CSIDL_FLAG_DONT_UNEXPAND|0x00010605"),
+        ("12606", "CSIDL_FLAG_DONT_UNEXPAND|0x00010606"),
+        ("12607", "CSIDL_FLAG_DONT_UNEXPAND|0x00010607"),
+        ("12608", "CSIDL_FLAG_DONT_UNEXPAND|0x00010608"),
+        ("12609", "CSIDL_FLAG_DONT_UNEXPAND|0x00010609"),
+        ("12610", "CSIDL_FLAG_DONT_UNEXPAND|0x00010610"),
+        ("12611", "CSIDL_FLAG_DONT_UNEXPAND|0x00010611"),
+        ("12612", "CSIDL_FLAG_DONT_UNEXPAND|0x00010612"),
+        ("12613", "CSIDL_FLAG_DONT_UNEXPAND|0x00010613"),
+        ("12614", "CSIDL_FLAG_DONT_UNEXPAND|0x00010614"),
+        ("12615", "CSIDL_FLAG_DONT_UNEXPAND|0x00010615"),
+        ("12616", "CSIDL_FLAG_DONT_UNEXPAND|0x00010616"),
+        ("12617", "CSIDL_FLAG_DONT_UNEXPAND|0x00010617"),
+        ("12618", "CSIDL_FLAG_DONT_UNEXPAND|0x00010618"),
+        ("12619", "CSIDL_FLAG_DONT_UNEXPAND|0x00010619"),
+        ("12620", "CSIDL_FLAG_DONT_UNEXPAND|0x00010620"),
+        ("12621", "CSIDL_FLAG_DONT_UNEXPAND|0x00010621"),
+        ("12622", "CSIDL_FLAG_DONT_UNEXPAND|0x00010622"),
+        ("12623", "CSIDL_FLAG_DONT_UNEXPAND|0x00010623"),
+        ("12624", "CSIDL_FLAG_DONT_UNEXPAND|0x00010624"),
+        ("12625", "CSIDL_FLAG_DONT_UNEXPAND|0x00010625"),
+        ("12626", "CSIDL_FLAG_DONT_UNEXPAND|0x00010626"),
+        ("12627", "CSIDL_FLAG_DONT_UNEXPAND|0x00010627"),
+        ("12628", "CSIDL_FLAG_DONT_UNEXPAND|0x00010628"),
+        ("12629", "CSIDL_FLAG_DONT_UNEXPAND|0x00010629"),
+        ("12630", "CSIDL_FLAG_DONT_UNEXPAND|0x00010630"),
+        ("12631", "CSIDL_FLAG_DONT_UNEXPAND|0x00010631"),
+        ("12632", "CSIDL_FLAG_DONT_UNEXPAND|0x00010632"),
+        ("12633", "CSIDL_FLAG_DONT_UNEXPAND|0x00010633"),
+        ("12634", "CSIDL_FLAG_DONT_UNEXPAND|0x00010634"),
+        ("12635", "CSIDL_FLAG_DONT_UNEXPAND|0x00010635"),
+        ("12636", "CSIDL_FLAG_DONT_UNEXPAND|0x00010636"),
+        ("12637", "CSIDL_FLAG_DONT_UNEXPAND|0x00010637"),
+        ("12638", "CSIDL_FLAG_DONT_UNEXPAND|0x00010638"),
+        ("12639", "CSIDL_FLAG_DONT_UNEXPAND|0x00010639"),
+        ("12640", "CSIDL_FLAG_DONT_UNEXPAND|0x00010640"),
+        ("12641", "CSIDL_FLAG_DONT_UNEXPAND|0x00010641"),
+        ("12642", "CSIDL_FLAG_DONT_UNEXPAND|0x00010642"),
+        ("12643", "CSIDL_FLAG_DONT_UNEXPAND|0x00010643"),
+        ("12644", "CSIDL_FLAG_DONT_UNEXPAND|0x00010644"),
+        ("12645", "CSIDL_FLAG_DONT_UNEXPAND|0x00010645"),
+        ("12646", "CSIDL_FLAG_DONT_UNEXPAND|0x00010646"),
+        ("12647", "CSIDL_FLAG_DONT_UNEXPAND|0x00010647"),
+        ("12648", "CSIDL_FLAG_DONT_UNEXPAND|0x00010648"),
+        ("12649", "CSIDL_FLAG_DONT_UNEXPAND|0x00010649"),
+        ("12650", "CSIDL_FLAG_DONT_UNEXPAND|0x00010650"),
+        ("12651", "CSIDL_FLAG_DONT_UNEXPAND|0x00010651"),
+        ("12652", "CSIDL_FLAG_DONT_UNEXPAND|0x00010652"),
+        ("12653", "CSIDL_FLAG_DONT_UNEXPAND|0x00010653"),
+        ("12654", "CSIDL_FLAG_DONT_UNEXPAND|0x00010654"),
+        ("12655", "CSIDL_FLAG_DONT_UNEXPAND|0x00010655"),
+        ("12656", "CSIDL_FLAG_DONT_UNEXPAND|0x00010656"),
+        ("12657", "CSIDL_FLAG_DONT_UNEXPAND|0x00010657"),
+        ("12658", "CSIDL_FLAG_DONT_UNEXPAND|0x00010658"),
+        ("12659", "CSIDL_FLAG_DONT_UNEXPAND|0x00010659"),
+        ("12660", "CSIDL_FLAG_DONT_UNEXPAND|0x00010660"),
+        ("12661", "CSIDL_FLAG_DONT_UNEXPAND|0x00010661"),
+        ("12662", "CSIDL_FLAG_DONT_UNEXPAND|0x00010662"),
+        ("12663", "CSIDL_FLAG_DONT_UNEXPAND|0x00010663"),
+        ("12664", "CSIDL_FLAG_DONT_UNEXPAND|0x00010664"),
+        ("12665", "CSIDL_FLAG_DONT_UNEXPAND|0x00010665"),
+        ("12666", "CSIDL_FLAG_DONT_UNEXPAND|0x00010666"),
+        ("12667", "CSIDL_FLAG_DONT_UNEXPAND|0x00010667"),
+        ("12668", "CSIDL_FLAG_DONT_UNEXPAND|0x00010668"),
+        ("12669", "CSIDL_FLAG_DONT_UNEXPAND|0x00010669"),
+        ("12670", "CSIDL_FLAG_DONT_UNEXPAND|0x00010670"),
+        ("12671", "CSIDL_FLAG_DONT_UNEXPAND|0x00010671"),
+        ("12672", "CSIDL_FLAG_DONT_UNEXPAND|0x00010672"),
+        ("12673", "CSIDL_FLAG_DONT_UNEXPAND|0x00010673"),
+        ("12674", "CSIDL_FLAG_DONT_UNEXPAND|0x00010674"),
+        ("12675", "CSIDL_FLAG_DONT_UNEXPAND|0x00010675"),
+        ("12676", "CSIDL_FLAG_DONT_UNEXPAND|0x00010676"),
+        ("12677", "CSIDL_FLAG_DONT_UNEXPAND|0x00010677"),
+        ("12678", "CSIDL_FLAG_DONT_UNEXPAND|0x00010678"),
+        ("12679", "CSIDL_FLAG_DONT_UNEXPAND|0x00010679"),
+        ("12680", "CSIDL_FLAG_DONT_UNEXPAND|0x00010680"),
+        ("12681", "CSIDL_FLAG_DONT_UNEXPAND|0x00010681"),
+        ("12682", "CSIDL_FLAG_DONT_UNEXPAND|0x00010682"),
+        ("12683", "CSIDL_FLAG_DONT_UNEXPAND|0x00010683"),
+        ("12684", "CSIDL_FLAG_DONT_UNEXPAND|0x00010684"),
+        ("12685", "CSIDL_FLAG_DONT_UNEXPAND|0x00010685"),
+        ("12686", "CSIDL_FLAG_DONT_UNEXPAND|0x00010686"),
+        ("12687", "CSIDL_FLAG_DONT_UNEXPAND|0x00010687"),
+        ("12688", "CSIDL_FLAG_DONT_UNEXPAND|0x00010688"),
+        ("12689", "CSIDL_FLAG_DONT_UNEXPAND|0x00010689"),
+        ("12690", "CSIDL_FLAG_DONT_UNEXPAND|0x00010690"),
+        ("12691", "CSIDL_FLAG_DONT_UNEXPAND|0x00010691"),
+        ("12692", "CSIDL_FLAG_DONT_UNEXPAND|0x00010692"),
+        ("12693", "CSIDL_FLAG_DONT_UNEXPAND|0x00010693"),
+        ("12694", "CSIDL_FLAG_DONT_UNEXPAND|0x00010694"),
+        ("12695", "CSIDL_FLAG_DONT_UNEXPAND|0x00010695"),
+        ("12696", "CSIDL_FLAG_DONT_UNEXPAND|0x00010696"),
+        ("12697", "CSIDL_FLAG_DONT_UNEXPAND|0x00010697"),
+        ("12698", "CSIDL_FLAG_DONT_UNEXPAND|0x00010698"),
+        ("12699", "CSIDL_FLAG_DONT_UNEXPAND|0x00010699"),
+        ("12700", "CSIDL_FLAG_DONT_UNEXPAND|0x00010700"),
+        ("12701", "CSIDL_FLAG_DONT_UNEXPAND|0x00010701"),
+        ("12702", "CSIDL_FLAG_DONT_UNEXPAND|0x00010702"),
+        ("12703", "CSIDL_FLAG_DONT_UNEXPAND|0x00010703"),
+        ("12704", "CSIDL_FLAG_DONT_UNEXPAND|0x00010704"),
+        ("12705", "CSIDL_FLAG_DONT_UNEXPAND|0x00010705"),
+        ("12706", "CSIDL_FLAG_DONT_UNEXPAND|0x00010706"),
+        ("12707", "CSIDL_FLAG_DONT_UNEXPAND|0x00010707"),
+        ("12708", "CSIDL_FLAG_DONT_UNEXPAND|0x00010708"),
+        ("12709", "CSIDL_FLAG_DONT_UNEXPAND|0x00010709"),
+        ("12710", "CSIDL_FLAG_DONT_UNEXPAND|0x00010710"),
+        ("12711", "CSIDL_FLAG_DONT_UNEXPAND|0x00010711"),
+        ("12712", "CSIDL_FLAG_DONT_UNEXPAND|0x00010712"),
+        ("12713", "CSIDL_FLAG_DONT_UNEXPAND|0x00010713"),
+        ("12714", "CSIDL_FLAG_DONT_UNEXPAND|0x00010714"),
+        ("12715", "CSIDL_FLAG_DONT_UNEXPAND|0x00010715"),
+        ("12716", "CSIDL_FLAG_DONT_UNEXPAND|0x00010716"),
+        ("12717", "CSIDL_FLAG_DONT_UNEXPAND|0x00010717"),
+        ("12718", "CSIDL_FLAG_DONT_UNEXPAND|0x00010718"),
+        ("12719", "CSIDL_FLAG_DONT_UNEXPAND|0x00010719"),
+        ("12720", "CSIDL_FLAG_DONT_UNEXPAND|0x00010720"),
+        ("12721", "CSIDL_FLAG_DONT_UNEXPAND|0x00010721"),
+        ("12722", "CSIDL_FLAG_DONT_UNEXPAND|0x00010722"),
+        ("12723", "CSIDL_FLAG_DONT_UNEXPAND|0x00010723"),
+        ("12724", "CSIDL_FLAG_DONT_UNEXPAND|0x00010724"),
+        ("12725", "CSIDL_FLAG_DONT_UNEXPAND|0x00010725"),
+        ("12726", "CSIDL_FLAG_DONT_UNEXPAND|0x00010726"),
+        ("12727", "CSIDL_FLAG_DONT_UNEXPAND|0x00010727"),
+        ("12728", "CSIDL_FLAG_DONT_UNEXPAND|0x00010728"),
+        ("12729", "CSIDL_FLAG_DONT_UNEXPAND|0x00010729"),
+        ("12730", "CSIDL_FLAG_DONT_UNEXPAND|0x00010730"),
+        ("12731", "CSIDL_FLAG_DONT_UNEXPAND|0x00010731"),
+        ("12732", "CSIDL_FLAG_DONT_UNEXPAND|0x00010732"),
+        ("12733", "CSIDL_FLAG_DONT_UNEXPAND|0x00010733"),
+        ("12734", "CSIDL_FLAG_DONT_UNEXPAND|0x00010734"),
+        ("12735", "CSIDL_FLAG_DONT_UNEXPAND|0x00010735"),
+        ("12736", "CSIDL_FLAG_DONT_UNEXPAND|0x00010736"),
+        ("12737", "CSIDL_FLAG_DONT_UNEXPAND|0x00010737"),
+        ("12738", "CSIDL_FLAG_DONT_UNEXPAND|0x00010738"),
+        ("12739", "CSIDL_FLAG_DONT_UNEXPAND|0x00010739"),
+        ("12740", "CSIDL_FLAG_DONT_UNEXPAND|0x00010740"),
+        ("12741", "CSIDL_FLAG_DONT_UNEXPAND|0x00010741"),
+        ("12742", "CSIDL_FLAG_DONT_UNEXPAND|0x00010742"),
+        ("12743", "CSIDL_FLAG_DONT_UNEXPAND|0x00010743"),
+        ("12744", "CSIDL_FLAG_DONT_UNEXPAND|0x00010744"),
+        ("12745", "CSIDL_FLAG_DONT_UNEXPAND|0x00010745"),
+        ("12746", "CSIDL_FLAG_DONT_UNEXPAND|0x00010746"),
+        ("12747", "CSIDL_FLAG_DONT_UNEXPAND|0x00010747"),
+        ("12748", "CSIDL_FLAG_DONT_UNEXPAND|0x00010748"),
+        ("12749", "CSIDL_FLAG_DONT_UNEXPAND|0x00010749"),
+        ("12750", "CSIDL_FLAG_DONT_UNEXPAND|0x00010750"),
+        ("12751", "CSIDL_FLAG_DONT_UNEXPAND|0x00010751"),
+        ("12752", "CSIDL_FLAG_DONT_UNEXPAND|0x00010752"),
+        ("12753", "CSIDL_FLAG_DONT_UNEXPAND|0x00010753"),
+        ("12754", "CSIDL_FLAG_DONT_UNEXPAND|0x00010754"),
+        ("12755", "CSIDL_FLAG_DONT_UNEXPAND|0x00010755"),
+        ("12756", "CSIDL_FLAG_DONT_UNEXPAND|0x00010756"),
+        ("12757", "CSIDL_FLAG_DONT_UNEXPAND|0x00010757"),
+        ("12758", "CSIDL_FLAG_DONT_UNEXPAND|0x00010758"),
+        ("12759", "CSIDL_FLAG_DONT_UNEXPAND|0x00010759"),
+        ("12760", "CSIDL_FLAG_DONT_UNEXPAND|0x00010760"),
+        ("12761", "CSIDL_FLAG_DONT_UNEXPAND|0x00010761"),
+        ("12762", "CSIDL_FLAG_DONT_UNEXPAND|0x00010762"),
+        ("12763", "CSIDL_FLAG_DONT_UNEXPAND|0x00010763"),
+        ("12764", "CSIDL_FLAG_DONT_UNEXPAND|0x00010764"),
+        ("12765", "CSIDL_FLAG_DONT_UNEXPAND|0x00010765"),
+        ("12766", "CSIDL_FLAG_DONT_UNEXPAND|0x00010766"),
+        ("12767", "CSIDL_FLAG_DONT_UNEXPAND|0x00010767"),
+        ("12768", "CSIDL_FLAG_DONT_UNEXPAND|0x00010768"),
+        ("12769", "CSIDL_FLAG_DONT_UNEXPAND|0x00010769"),
+        ("12770", "CSIDL_FLAG_DONT_UNEXPAND|0x00010770"),
+        ("12771", "CSIDL_FLAG_DONT_UNEXPAND|0x00010771"),
+        ("12772", "CSIDL_FLAG_DONT_UNEXPAND|0x00010772"),
+        ("12773", "CSIDL_FLAG_DONT_UNEXPAND|0x00010773"),
+        ("12774", "CSIDL_FLAG_DONT_UNEXPAND|0x00010774"),
+        ("12775", "CSIDL_FLAG_DONT_UNEXPAND|0x00010775"),
+        ("12776", "CSIDL_FLAG_DONT_UNEXPAND|0x00010776"),
+        ("12777", "CSIDL_FLAG_DONT_UNEXPAND|0x00010777"),
+        ("12778", "CSIDL_FLAG_DONT_UNEXPAND|0x00010778"),
+        ("12779", "CSIDL_FLAG_DONT_UNEXPAND|0x00010779"),
+        ("12780", "CSIDL_FLAG_DONT_UNEXPAND|0x00010780"),
+        ("12781", "CSIDL_FLAG_DONT_UNEXPAND|0x00010781"),
+        ("12782", "CSIDL_FLAG_DONT_UNEXPAND|0x00010782"),
+        ("12783", "CSIDL_FLAG_DONT_UNEXPAND|0x00010783"),
+        ("12784", "CSIDL_FLAG_DONT_UNEXPAND|0x00010784"),
+        ("12785", "CSIDL_FLAG_DONT_UNEXPAND|0x00010785"),
+        ("12786", "CSIDL_FLAG_DONT_UNEXPAND|0x00010786"),
+        ("12787", "CSIDL_FLAG_DONT_UNEXPAND|0x00010787"),
+        ("12788", "CSIDL_FLAG_DONT_UNEXPAND|0x00010788"),
+        ("12789", "CSIDL_FLAG_DONT_UNEXPAND|0x00010789"),
+        ("12790", "CSIDL_FLAG_DONT_UNEXPAND|0x00010790"),
+        ("12791", "CSIDL_FLAG_DONT_UNEXPAND|0x00010791"),
+        ("12792", "CSIDL_FLAG_DONT_UNEXPAND|0x00010792"),
+        ("12793", "CSIDL_FLAG_DONT_UNEXPAND|0x00010793"),
+        ("12794", "CSIDL_FLAG_DONT_UNEXPAND|0x00010794"),
+        ("12795", "CSIDL_FLAG_DONT_UNEXPAND|0x00010795"),
+        ("12796", "CSIDL_FLAG_DONT_UNEXPAND|0x00010796"),
+        ("12797", "CSIDL_FLAG_DONT_UNEXPAND|0x00010797"),
+        ("12798", "CSIDL_FLAG_DONT_UNEXPAND|0x00010798"),
+        ("12799", "CSIDL_FLAG_DONT_UNEXPAND|0x00010799"),
+        ("12800", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010000"),
+        ("12801", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010001"),
+        ("12802", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010002"),
+        ("12803", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010003"),
+        ("12804", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010004"),
+        ("12805", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010005"),
+        ("12806", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010006"),
+        ("12807", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010007"),
+        ("12808", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010008"),
+        ("12809", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010009"),
+        ("12810", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010010"),
+        ("12811", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010011"),
+        ("12812", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010012"),
+        ("12813", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010013"),
+        ("12814", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010014"),
+        ("12815", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010015"),
+        ("12816", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010016"),
+        ("12817", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010017"),
+        ("12818", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010018"),
+        ("12819", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010019"),
+        ("12820", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010020"),
+        ("12821", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010021"),
+        ("12822", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010022"),
+        ("12823", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010023"),
+        ("12824", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010024"),
+        ("12825", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010025"),
+        ("12826", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010026"),
+        ("12827", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010027"),
+        ("12828", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010028"),
+        ("12829", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010029"),
+        ("12830", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010030"),
+        ("12831", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010031"),
+        ("12832", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010032"),
+        ("12833", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010033"),
+        ("12834", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010034"),
+        ("12835", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010035"),
+        ("12836", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010036"),
+        ("12837", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010037"),
+        ("12838", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010038"),
+        ("12839", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010039"),
+        ("12840", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010040"),
+        ("12841", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010041"),
+        ("12842", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010042"),
+        ("12843", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010043"),
+        ("12844", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010044"),
+        ("12845", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010045"),
+        ("12846", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010046"),
+        ("12847", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010047"),
+        ("12848", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010048"),
+        ("12849", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010049"),
+        ("12850", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010050"),
+        ("12851", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010051"),
+        ("12852", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010052"),
+        ("12853", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010053"),
+        ("12854", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010054"),
+        ("12855", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010055"),
+        ("12856", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010056"),
+        ("12857", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010057"),
+        ("12858", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010058"),
+        ("12859", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010059"),
+        ("12860", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010060"),
+        ("12861", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010061"),
+        ("12862", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010062"),
+        ("12863", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010063"),
+        ("12864", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010064"),
+        ("12865", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010065"),
+        ("12866", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010066"),
+        ("12867", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010067"),
+        ("12868", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010068"),
+        ("12869", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010069"),
+        ("12870", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010070"),
+        ("12871", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010071"),
+        ("12872", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010072"),
+        ("12873", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010073"),
+        ("12874", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010074"),
+        ("12875", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010075"),
+        ("12876", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010076"),
+        ("12877", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010077"),
+        ("12878", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010078"),
+        ("12879", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010079"),
+        ("12880", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010080"),
+        ("12881", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010081"),
+        ("12882", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010082"),
+        ("12883", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010083"),
+        ("12884", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010084"),
+        ("12885", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010085"),
+        ("12886", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010086"),
+        ("12887", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010087"),
+        ("12888", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010088"),
+        ("12889", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010089"),
+        ("12890", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010090"),
+        ("12891", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010091"),
+        ("12892", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010092"),
+        ("12893", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010093"),
+        ("12894", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010094"),
+        ("12895", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010095"),
+        ("12896", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010096"),
+        ("12897", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010097"),
+        ("12898", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010098"),
+        ("12899", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010099"),
+        ("12900", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010100"),
+        ("12901", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010101"),
+        ("12902", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010102"),
+        ("12903", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010103"),
+        ("12904", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010104"),
+        ("12905", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010105"),
+        ("12906", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010106"),
+        ("12907", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010107"),
+        ("12908", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010108"),
+        ("12909", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010109"),
+        ("12910", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010110"),
+        ("12911", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010111"),
+        ("12912", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010112"),
+        ("12913", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010113"),
+        ("12914", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010114"),
+        ("12915", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010115"),
+        ("12916", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010116"),
+        ("12917", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010117"),
+        ("12918", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010118"),
+        ("12919", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010119"),
+        ("12920", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010120"),
+        ("12921", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010121"),
+        ("12922", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010122"),
+        ("12923", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010123"),
+        ("12924", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010124"),
+        ("12925", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010125"),
+        ("12926", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010126"),
+        ("12927", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010127"),
+        ("12928", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010128"),
+        ("12929", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010129"),
+        ("12930", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010130"),
+        ("12931", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010131"),
+        ("12932", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010132"),
+        ("12933", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010133"),
+        ("12934", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010134"),
+        ("12935", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010135"),
+        ("12936", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010136"),
+        ("12937", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010137"),
+        ("12938", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010138"),
+        ("12939", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010139"),
+        ("12940", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010140"),
+        ("12941", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010141"),
+        ("12942", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010142"),
+        ("12943", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010143"),
+        ("12944", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010144"),
+        ("12945", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010145"),
+        ("12946", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010146"),
+        ("12947", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010147"),
+        ("12948", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010148"),
+        ("12949", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010149"),
+        ("12950", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010150"),
+        ("12951", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010151"),
+        ("12952", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010152"),
+        ("12953", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010153"),
+        ("12954", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010154"),
+        ("12955", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010155"),
+        ("12956", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010156"),
+        ("12957", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010157"),
+        ("12958", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010158"),
+        ("12959", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010159"),
+        ("12960", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010160"),
+        ("12961", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010161"),
+        ("12962", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010162"),
+        ("12963", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010163"),
+        ("12964", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010164"),
+        ("12965", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010165"),
+        ("12966", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010166"),
+        ("12967", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010167"),
+        ("12968", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010168"),
+        ("12969", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010169"),
+        ("12970", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010170"),
+        ("12971", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010171"),
+        ("12972", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010172"),
+        ("12973", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010173"),
+        ("12974", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010174"),
+        ("12975", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010175"),
+        ("12976", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010176"),
+        ("12977", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010177"),
+        ("12978", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010178"),
+        ("12979", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010179"),
+        ("12980", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010180"),
+        ("12981", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010181"),
+        ("12982", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010182"),
+        ("12983", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010183"),
+        ("12984", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010184"),
+        ("12985", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010185"),
+        ("12986", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010186"),
+        ("12987", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010187"),
+        ("12988", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010188"),
+        ("12989", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010189"),
+        ("12990", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010190"),
+        ("12991", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010191"),
+        ("12992", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010192"),
+        ("12993", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010193"),
+        ("12994", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010194"),
+        ("12995", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010195"),
+        ("12996", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010196"),
+        ("12997", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010197"),
+        ("12998", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010198"),
+        ("12999", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00010199"),
+        ("13000", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010000"),
+        ("13001", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010001"),
+        ("13002", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010002"),
+        ("13003", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010003"),
+        ("13004", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010004"),
+        ("13005", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010005"),
+        ("13006", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010006"),
+        ("13007", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010007"),
+        ("13008", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010008"),
+        ("13009", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010009"),
+        ("13010", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010010"),
+        ("13011", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010011"),
+        ("13012", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010012"),
+        ("13013", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010013"),
+        ("13014", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010014"),
+        ("13015", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010015"),
+        ("13016", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010016"),
+        ("13017", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010017"),
+        ("13018", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010018"),
+        ("13019", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010019"),
+        ("13020", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010020"),
+        ("13021", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010021"),
+        ("13022", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010022"),
+        ("13023", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010023"),
+        ("13024", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010024"),
+        ("13025", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010025"),
+        ("13026", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010026"),
+        ("13027", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010027"),
+        ("13028", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010028"),
+        ("13029", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010029"),
+        ("13030", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010030"),
+        ("13031", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010031"),
+        ("13032", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010032"),
+        ("13033", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010033"),
+        ("13034", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010034"),
+        ("13035", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010035"),
+        ("13036", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010036"),
+        ("13037", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010037"),
+        ("13038", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010038"),
+        ("13039", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010039"),
+        ("13040", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010040"),
+        ("13041", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010041"),
+        ("13042", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010042"),
+        ("13043", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010043"),
+        ("13044", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010044"),
+        ("13045", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010045"),
+        ("13046", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010046"),
+        ("13047", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010047"),
+        ("13048", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010048"),
+        ("13049", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010049"),
+        ("13050", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010050"),
+        ("13051", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010051"),
+        ("13052", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010052"),
+        ("13053", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010053"),
+        ("13054", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010054"),
+        ("13055", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010055"),
+        ("13056", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010056"),
+        ("13057", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010057"),
+        ("13058", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010058"),
+        ("13059", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010059"),
+        ("13060", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010060"),
+        ("13061", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010061"),
+        ("13062", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010062"),
+        ("13063", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010063"),
+        ("13064", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010064"),
+        ("13065", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010065"),
+        ("13066", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010066"),
+        ("13067", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010067"),
+        ("13068", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010068"),
+        ("13069", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010069"),
+        ("13070", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010070"),
+        ("13071", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010071"),
+        ("13072", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010072"),
+        ("13073", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010073"),
+        ("13074", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010074"),
+        ("13075", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010075"),
+        ("13076", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010076"),
+        ("13077", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010077"),
+        ("13078", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010078"),
+        ("13079", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010079"),
+        ("13080", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010080"),
+        ("13081", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010081"),
+        ("13082", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010082"),
+        ("13083", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010083"),
+        ("13084", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010084"),
+        ("13085", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010085"),
+        ("13086", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010086"),
+        ("13087", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010087"),
+        ("13088", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010088"),
+        ("13089", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010089"),
+        ("13090", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010090"),
+        ("13091", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010091"),
+        ("13092", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010092"),
+        ("13093", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010093"),
+        ("13094", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010094"),
+        ("13095", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010095"),
+        ("13096", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010096"),
+        ("13097", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010097"),
+        ("13098", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010098"),
+        ("13099", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010099"),
+        ("13100", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010100"),
+        ("13101", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010101"),
+        ("13102", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010102"),
+        ("13103", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010103"),
+        ("13104", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010104"),
+        ("13105", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010105"),
+        ("13106", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010106"),
+        ("13107", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010107"),
+        ("13108", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010108"),
+        ("13109", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010109"),
+        ("13110", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010110"),
+        ("13111", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010111"),
+        ("13112", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010112"),
+        ("13113", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010113"),
+        ("13114", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010114"),
+        ("13115", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010115"),
+        ("13116", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010116"),
+        ("13117", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010117"),
+        ("13118", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010118"),
+        ("13119", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010119"),
+        ("13120", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010120"),
+        ("13121", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010121"),
+        ("13122", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010122"),
+        ("13123", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010123"),
+        ("13124", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010124"),
+        ("13125", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010125"),
+        ("13126", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010126"),
+        ("13127", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010127"),
+        ("13128", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010128"),
+        ("13129", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010129"),
+        ("13130", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010130"),
+        ("13131", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010131"),
+        ("13132", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010132"),
+        ("13133", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010133"),
+        ("13134", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010134"),
+        ("13135", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010135"),
+        ("13136", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010136"),
+        ("13137", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010137"),
+        ("13138", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010138"),
+        ("13139", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010139"),
+        ("13140", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010140"),
+        ("13141", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010141"),
+        ("13142", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010142"),
+        ("13143", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010143"),
+        ("13144", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010144"),
+        ("13145", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010145"),
+        ("13146", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010146"),
+        ("13147", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010147"),
+        ("13148", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010148"),
+        ("13149", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010149"),
+        ("13150", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010150"),
+        ("13151", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010151"),
+        ("13152", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010152"),
+        ("13153", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010153"),
+        ("13154", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010154"),
+        ("13155", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010155"),
+        ("13156", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010156"),
+        ("13157", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010157"),
+        ("13158", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010158"),
+        ("13159", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010159"),
+        ("13160", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010160"),
+        ("13161", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010161"),
+        ("13162", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010162"),
+        ("13163", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010163"),
+        ("13164", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010164"),
+        ("13165", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010165"),
+        ("13166", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010166"),
+        ("13167", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010167"),
+        ("13168", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010168"),
+        ("13169", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010169"),
+        ("13170", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010170"),
+        ("13171", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010171"),
+        ("13172", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010172"),
+        ("13173", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010173"),
+        ("13174", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010174"),
+        ("13175", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010175"),
+        ("13176", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010176"),
+        ("13177", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010177"),
+        ("13178", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010178"),
+        ("13179", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010179"),
+        ("13180", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010180"),
+        ("13181", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010181"),
+        ("13182", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010182"),
+        ("13183", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010183"),
+        ("13184", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010184"),
+        ("13185", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010185"),
+        ("13186", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010186"),
+        ("13187", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010187"),
+        ("13188", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010188"),
+        ("13189", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010189"),
+        ("13190", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010190"),
+        ("13191", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010191"),
+        ("13192", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010192"),
+        ("13193", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010193"),
+        ("13194", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010194"),
+        ("13195", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010195"),
+        ("13196", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010196"),
+        ("13197", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010197"),
+        ("13198", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010198"),
+        ("13199", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010199"),
+        ("13200", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010200"),
+        ("13201", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010201"),
+        ("13202", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010202"),
+        ("13203", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010203"),
+        ("13204", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010204"),
+        ("13205", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010205"),
+        ("13206", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010206"),
+        ("13207", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010207"),
+        ("13208", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010208"),
+        ("13209", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010209"),
+        ("13210", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010210"),
+        ("13211", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010211"),
+        ("13212", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010212"),
+        ("13213", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010213"),
+        ("13214", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010214"),
+        ("13215", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010215"),
+        ("13216", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010216"),
+        ("13217", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010217"),
+        ("13218", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010218"),
+        ("13219", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010219"),
+        ("13220", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010220"),
+        ("13221", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010221"),
+        ("13222", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010222"),
+        ("13223", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010223"),
+        ("13224", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010224"),
+        ("13225", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010225"),
+        ("13226", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010226"),
+        ("13227", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010227"),
+        ("13228", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010228"),
+        ("13229", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010229"),
+        ("13230", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010230"),
+        ("13231", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010231"),
+        ("13232", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010232"),
+        ("13233", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010233"),
+        ("13234", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010234"),
+        ("13235", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010235"),
+        ("13236", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010236"),
+        ("13237", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010237"),
+        ("13238", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010238"),
+        ("13239", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010239"),
+        ("13240", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010240"),
+        ("13241", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010241"),
+        ("13242", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010242"),
+        ("13243", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010243"),
+        ("13244", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010244"),
+        ("13245", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010245"),
+        ("13246", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010246"),
+        ("13247", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010247"),
+        ("13248", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010248"),
+        ("13249", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010249"),
+        ("13250", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010250"),
+        ("13251", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010251"),
+        ("13252", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010252"),
+        ("13253", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010253"),
+        ("13254", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010254"),
+        ("13255", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010255"),
+        ("13256", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010256"),
+        ("13257", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010257"),
+        ("13258", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010258"),
+        ("13259", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010259"),
+        ("13260", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010260"),
+        ("13261", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010261"),
+        ("13262", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010262"),
+        ("13263", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010263"),
+        ("13264", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010264"),
+        ("13265", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010265"),
+        ("13266", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010266"),
+        ("13267", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010267"),
+        ("13268", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010268"),
+        ("13269", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010269"),
+        ("13270", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010270"),
+        ("13271", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010271"),
+        ("13272", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010272"),
+        ("13273", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010273"),
+        ("13274", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010274"),
+        ("13275", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010275"),
+        ("13276", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010276"),
+        ("13277", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010277"),
+        ("13278", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010278"),
+        ("13279", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010279"),
+        ("13280", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010280"),
+        ("13281", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010281"),
+        ("13282", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010282"),
+        ("13283", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010283"),
+        ("13284", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010284"),
+        ("13285", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010285"),
+        ("13286", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010286"),
+        ("13287", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010287"),
+        ("13288", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010288"),
+        ("13289", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010289"),
+        ("13290", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010290"),
+        ("13291", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010291"),
+        ("13292", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010292"),
+        ("13293", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010293"),
+        ("13294", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010294"),
+        ("13295", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010295"),
+        ("13296", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010296"),
+        ("13297", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010297"),
+        ("13298", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010298"),
+        ("13299", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010299"),
+        ("13300", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010300"),
+        ("13301", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010301"),
+        ("13302", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010302"),
+        ("13303", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010303"),
+        ("13304", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010304"),
+        ("13305", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010305"),
+        ("13306", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010306"),
+        ("13307", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010307"),
+        ("13308", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010308"),
+        ("13309", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010309"),
+        ("13310", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010310"),
+        ("13311", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010311"),
+        ("13312", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010312"),
+        ("13313", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010313"),
+        ("13314", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010314"),
+        ("13315", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010315"),
+        ("13316", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010316"),
+        ("13317", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010317"),
+        ("13318", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010318"),
+        ("13319", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010319"),
+        ("13320", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010320"),
+        ("13321", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010321"),
+        ("13322", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010322"),
+        ("13323", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010323"),
+        ("13324", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010324"),
+        ("13325", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010325"),
+        ("13326", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010326"),
+        ("13327", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010327"),
+        ("13328", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010328"),
+        ("13329", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010329"),
+        ("13330", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010330"),
+        ("13331", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010331"),
+        ("13332", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010332"),
+        ("13333", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010333"),
+        ("13334", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010334"),
+        ("13335", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010335"),
+        ("13336", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010336"),
+        ("13337", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010337"),
+        ("13338", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010338"),
+        ("13339", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010339"),
+        ("13340", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010340"),
+        ("13341", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010341"),
+        ("13342", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010342"),
+        ("13343", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010343"),
+        ("13344", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010344"),
+        ("13345", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010345"),
+        ("13346", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010346"),
+        ("13347", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010347"),
+        ("13348", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010348"),
+        ("13349", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010349"),
+        ("13350", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010350"),
+        ("13351", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010351"),
+        ("13352", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010352"),
+        ("13353", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010353"),
+        ("13354", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010354"),
+        ("13355", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010355"),
+        ("13356", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010356"),
+        ("13357", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010357"),
+        ("13358", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010358"),
+        ("13359", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010359"),
+        ("13360", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010360"),
+        ("13361", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010361"),
+        ("13362", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010362"),
+        ("13363", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010363"),
+        ("13364", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010364"),
+        ("13365", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010365"),
+        ("13366", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010366"),
+        ("13367", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010367"),
+        ("13368", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010368"),
+        ("13369", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010369"),
+        ("13370", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010370"),
+        ("13371", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010371"),
+        ("13372", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010372"),
+        ("13373", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010373"),
+        ("13374", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010374"),
+        ("13375", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010375"),
+        ("13376", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010376"),
+        ("13377", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010377"),
+        ("13378", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010378"),
+        ("13379", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010379"),
+        ("13380", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010380"),
+        ("13381", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010381"),
+        ("13382", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010382"),
+        ("13383", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010383"),
+        ("13384", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010384"),
+        ("13385", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010385"),
+        ("13386", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010386"),
+        ("13387", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010387"),
+        ("13388", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010388"),
+        ("13389", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010389"),
+        ("13390", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010390"),
+        ("13391", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010391"),
+        ("13392", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010392"),
+        ("13393", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010393"),
+        ("13394", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010394"),
+        ("13395", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010395"),
+        ("13396", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010396"),
+        ("13397", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010397"),
+        ("13398", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010398"),
+        ("13399", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010399"),
+        ("13400", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010400"),
+        ("13401", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010401"),
+        ("13402", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010402"),
+        ("13403", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010403"),
+        ("13404", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010404"),
+        ("13405", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010405"),
+        ("13406", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010406"),
+        ("13407", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010407"),
+        ("13408", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010408"),
+        ("13409", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010409"),
+        ("13410", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010410"),
+        ("13411", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010411"),
+        ("13412", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010412"),
+        ("13413", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010413"),
+        ("13414", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010414"),
+        ("13415", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010415"),
+        ("13416", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010416"),
+        ("13417", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010417"),
+        ("13418", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010418"),
+        ("13419", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010419"),
+        ("13420", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010420"),
+        ("13421", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010421"),
+        ("13422", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010422"),
+        ("13423", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010423"),
+        ("13424", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010424"),
+        ("13425", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010425"),
+        ("13426", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010426"),
+        ("13427", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010427"),
+        ("13428", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010428"),
+        ("13429", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010429"),
+        ("13430", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010430"),
+        ("13431", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010431"),
+        ("13432", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010432"),
+        ("13433", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010433"),
+        ("13434", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010434"),
+        ("13435", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010435"),
+        ("13436", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010436"),
+        ("13437", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010437"),
+        ("13438", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010438"),
+        ("13439", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010439"),
+        ("13440", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010440"),
+        ("13441", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010441"),
+        ("13442", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010442"),
+        ("13443", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010443"),
+        ("13444", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010444"),
+        ("13445", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010445"),
+        ("13446", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010446"),
+        ("13447", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010447"),
+        ("13448", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010448"),
+        ("13449", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010449"),
+        ("13450", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010450"),
+        ("13451", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010451"),
+        ("13452", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010452"),
+        ("13453", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010453"),
+        ("13454", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010454"),
+        ("13455", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010455"),
+        ("13456", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010456"),
+        ("13457", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010457"),
+        ("13458", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010458"),
+        ("13459", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010459"),
+        ("13460", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010460"),
+        ("13461", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010461"),
+        ("13462", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010462"),
+        ("13463", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010463"),
+        ("13464", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010464"),
+        ("13465", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010465"),
+        ("13466", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010466"),
+        ("13467", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010467"),
+        ("13468", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010468"),
+        ("13469", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010469"),
+        ("13470", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010470"),
+        ("13471", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010471"),
+        ("13472", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010472"),
+        ("13473", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010473"),
+        ("13474", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010474"),
+        ("13475", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010475"),
+        ("13476", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010476"),
+        ("13477", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010477"),
+        ("13478", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010478"),
+        ("13479", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010479"),
+        ("13480", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010480"),
+        ("13481", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010481"),
+        ("13482", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010482"),
+        ("13483", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010483"),
+        ("13484", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010484"),
+        ("13485", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010485"),
+        ("13486", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010486"),
+        ("13487", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010487"),
+        ("13488", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010488"),
+        ("13489", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010489"),
+        ("13490", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010490"),
+        ("13491", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010491"),
+        ("13492", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010492"),
+        ("13493", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010493"),
+        ("13494", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010494"),
+        ("13495", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010495"),
+        ("13496", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010496"),
+        ("13497", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010497"),
+        ("13498", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010498"),
+        ("13499", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010499"),
+        ("13500", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010500"),
+        ("13501", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010501"),
+        ("13502", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010502"),
+        ("13503", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010503"),
+        ("13504", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010504"),
+        ("13505", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010505"),
+        ("13506", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010506"),
+        ("13507", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010507"),
+        ("13508", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010508"),
+        ("13509", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010509"),
+        ("13510", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010510"),
+        ("13511", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010511"),
+        ("13512", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010512"),
+        ("13513", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010513"),
+        ("13514", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010514"),
+        ("13515", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010515"),
+        ("13516", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010516"),
+        ("13517", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010517"),
+        ("13518", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010518"),
+        ("13519", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010519"),
+        ("13520", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010520"),
+        ("13521", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010521"),
+        ("13522", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010522"),
+        ("13523", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010523"),
+        ("13524", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010524"),
+        ("13525", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010525"),
+        ("13526", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010526"),
+        ("13527", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010527"),
+        ("13528", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010528"),
+        ("13529", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010529"),
+        ("13530", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010530"),
+        ("13531", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010531"),
+        ("13532", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010532"),
+        ("13533", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010533"),
+        ("13534", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010534"),
+        ("13535", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010535"),
+        ("13536", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010536"),
+        ("13537", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010537"),
+        ("13538", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010538"),
+        ("13539", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010539"),
+        ("13540", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010540"),
+        ("13541", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010541"),
+        ("13542", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010542"),
+        ("13543", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010543"),
+        ("13544", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010544"),
+        ("13545", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010545"),
+        ("13546", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010546"),
+        ("13547", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010547"),
+        ("13548", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010548"),
+        ("13549", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010549"),
+        ("13550", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010550"),
+        ("13551", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010551"),
+        ("13552", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010552"),
+        ("13553", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010553"),
+        ("13554", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010554"),
+        ("13555", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010555"),
+        ("13556", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010556"),
+        ("13557", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010557"),
+        ("13558", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010558"),
+        ("13559", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010559"),
+        ("13560", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010560"),
+        ("13561", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010561"),
+        ("13562", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010562"),
+        ("13563", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010563"),
+        ("13564", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010564"),
+        ("13565", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010565"),
+        ("13566", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010566"),
+        ("13567", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010567"),
+        ("13568", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010568"),
+        ("13569", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010569"),
+        ("13570", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010570"),
+        ("13571", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010571"),
+        ("13572", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010572"),
+        ("13573", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010573"),
+        ("13574", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010574"),
+        ("13575", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010575"),
+        ("13576", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010576"),
+        ("13577", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010577"),
+        ("13578", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010578"),
+        ("13579", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010579"),
+        ("13580", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010580"),
+        ("13581", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010581"),
+        ("13582", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010582"),
+        ("13583", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010583"),
+        ("13584", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010584"),
+        ("13585", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010585"),
+        ("13586", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010586"),
+        ("13587", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010587"),
+        ("13588", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010588"),
+        ("13589", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010589"),
+        ("13590", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010590"),
+        ("13591", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010591"),
+        ("13592", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010592"),
+        ("13593", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010593"),
+        ("13594", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010594"),
+        ("13595", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010595"),
+        ("13596", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010596"),
+        ("13597", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010597"),
+        ("13598", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010598"),
+        ("13599", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010599"),
+        ("13600", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010600"),
+        ("13601", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010601"),
+        ("13602", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010602"),
+        ("13603", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010603"),
+        ("13604", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010604"),
+        ("13605", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010605"),
+        ("13606", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010606"),
+        ("13607", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010607"),
+        ("13608", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010608"),
+        ("13609", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010609"),
+        ("13610", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010610"),
+        ("13611", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010611"),
+        ("13612", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010612"),
+        ("13613", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010613"),
+        ("13614", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010614"),
+        ("13615", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010615"),
+        ("13616", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010616"),
+        ("13617", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010617"),
+        ("13618", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010618"),
+        ("13619", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010619"),
+        ("13620", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010620"),
+        ("13621", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010621"),
+        ("13622", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010622"),
+        ("13623", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010623"),
+        ("13624", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010624"),
+        ("13625", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010625"),
+        ("13626", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010626"),
+        ("13627", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010627"),
+        ("13628", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010628"),
+        ("13629", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010629"),
+        ("13630", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010630"),
+        ("13631", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010631"),
+        ("13632", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010632"),
+        ("13633", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010633"),
+        ("13634", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010634"),
+        ("13635", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010635"),
+        ("13636", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010636"),
+        ("13637", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010637"),
+        ("13638", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010638"),
+        ("13639", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010639"),
+        ("13640", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010640"),
+        ("13641", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010641"),
+        ("13642", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010642"),
+        ("13643", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010643"),
+        ("13644", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010644"),
+        ("13645", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010645"),
+        ("13646", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010646"),
+        ("13647", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010647"),
+        ("13648", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010648"),
+        ("13649", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010649"),
+        ("13650", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010650"),
+        ("13651", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010651"),
+        ("13652", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010652"),
+        ("13653", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010653"),
+        ("13654", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010654"),
+        ("13655", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010655"),
+        ("13656", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010656"),
+        ("13657", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010657"),
+        ("13658", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010658"),
+        ("13659", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010659"),
+        ("13660", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010660"),
+        ("13661", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010661"),
+        ("13662", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010662"),
+        ("13663", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010663"),
+        ("13664", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010664"),
+        ("13665", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010665"),
+        ("13666", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010666"),
+        ("13667", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010667"),
+        ("13668", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010668"),
+        ("13669", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010669"),
+        ("13670", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010670"),
+        ("13671", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010671"),
+        ("13672", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010672"),
+        ("13673", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010673"),
+        ("13674", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010674"),
+        ("13675", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010675"),
+        ("13676", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010676"),
+        ("13677", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010677"),
+        ("13678", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010678"),
+        ("13679", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010679"),
+        ("13680", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010680"),
+        ("13681", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010681"),
+        ("13682", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010682"),
+        ("13683", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010683"),
+        ("13684", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010684"),
+        ("13685", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010685"),
+        ("13686", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010686"),
+        ("13687", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010687"),
+        ("13688", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010688"),
+        ("13689", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010689"),
+        ("13690", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010690"),
+        ("13691", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010691"),
+        ("13692", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010692"),
+        ("13693", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010693"),
+        ("13694", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010694"),
+        ("13695", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010695"),
+        ("13696", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010696"),
+        ("13697", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010697"),
+        ("13698", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010698"),
+        ("13699", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010699"),
+        ("13700", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010700"),
+        ("13701", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010701"),
+        ("13702", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010702"),
+        ("13703", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010703"),
+        ("13704", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010704"),
+        ("13705", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010705"),
+        ("13706", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010706"),
+        ("13707", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010707"),
+        ("13708", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010708"),
+        ("13709", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010709"),
+        ("13710", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010710"),
+        ("13711", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010711"),
+        ("13712", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010712"),
+        ("13713", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010713"),
+        ("13714", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010714"),
+        ("13715", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010715"),
+        ("13716", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010716"),
+        ("13717", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010717"),
+        ("13718", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010718"),
+        ("13719", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010719"),
+        ("13720", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010720"),
+        ("13721", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010721"),
+        ("13722", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010722"),
+        ("13723", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010723"),
+        ("13724", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010724"),
+        ("13725", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010725"),
+        ("13726", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010726"),
+        ("13727", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010727"),
+        ("13728", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010728"),
+        ("13729", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010729"),
+        ("13730", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010730"),
+        ("13731", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010731"),
+        ("13732", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010732"),
+        ("13733", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010733"),
+        ("13734", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010734"),
+        ("13735", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010735"),
+        ("13736", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010736"),
+        ("13737", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010737"),
+        ("13738", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010738"),
+        ("13739", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010739"),
+        ("13740", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010740"),
+        ("13741", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010741"),
+        ("13742", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010742"),
+        ("13743", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010743"),
+        ("13744", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010744"),
+        ("13745", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010745"),
+        ("13746", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010746"),
+        ("13747", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010747"),
+        ("13748", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010748"),
+        ("13749", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010749"),
+        ("13750", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010750"),
+        ("13751", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010751"),
+        ("13752", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010752"),
+        ("13753", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010753"),
+        ("13754", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010754"),
+        ("13755", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010755"),
+        ("13756", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010756"),
+        ("13757", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010757"),
+        ("13758", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010758"),
+        ("13759", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010759"),
+        ("13760", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010760"),
+        ("13761", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010761"),
+        ("13762", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010762"),
+        ("13763", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010763"),
+        ("13764", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010764"),
+        ("13765", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010765"),
+        ("13766", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010766"),
+        ("13767", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010767"),
+        ("13768", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010768"),
+        ("13769", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010769"),
+        ("13770", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010770"),
+        ("13771", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010771"),
+        ("13772", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010772"),
+        ("13773", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010773"),
+        ("13774", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010774"),
+        ("13775", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010775"),
+        ("13776", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010776"),
+        ("13777", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010777"),
+        ("13778", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010778"),
+        ("13779", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010779"),
+        ("13780", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010780"),
+        ("13781", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010781"),
+        ("13782", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010782"),
+        ("13783", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010783"),
+        ("13784", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010784"),
+        ("13785", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010785"),
+        ("13786", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010786"),
+        ("13787", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010787"),
+        ("13788", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010788"),
+        ("13789", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010789"),
+        ("13790", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010790"),
+        ("13791", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010791"),
+        ("13792", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010792"),
+        ("13793", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010793"),
+        ("13794", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010794"),
+        ("13795", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010795"),
+        ("13796", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010796"),
+        ("13797", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010797"),
+        ("13798", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010798"),
+        ("13799", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010799"),
+        ("13800", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010000"),
+        ("13801", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010001"),
+        ("13802", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010002"),
+        ("13803", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010003"),
+        ("13804", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010004"),
+        ("13805", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010005"),
+        ("13806", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010006"),
+        ("13807", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010007"),
+        ("13808", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010008"),
+        ("13809", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010009"),
+        ("13810", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010010"),
+        ("13811", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010011"),
+        ("13812", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010012"),
+        ("13813", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010013"),
+        ("13814", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010014"),
+        ("13815", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010015"),
+        ("13816", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010016"),
+        ("13817", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010017"),
+        ("13818", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010018"),
+        ("13819", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010019"),
+        ("13820", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010020"),
+        ("13821", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010021"),
+        ("13822", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010022"),
+        ("13823", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010023"),
+        ("13824", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010024"),
+        ("13825", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010025"),
+        ("13826", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010026"),
+        ("13827", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010027"),
+        ("13828", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010028"),
+        ("13829", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010029"),
+        ("13830", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010030"),
+        ("13831", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010031"),
+        ("13832", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010032"),
+        ("13833", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010033"),
+        ("13834", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010034"),
+        ("13835", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010035"),
+        ("13836", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010036"),
+        ("13837", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010037"),
+        ("13838", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010038"),
+        ("13839", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010039"),
+        ("13840", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010040"),
+        ("13841", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010041"),
+        ("13842", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010042"),
+        ("13843", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010043"),
+        ("13844", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010044"),
+        ("13845", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010045"),
+        ("13846", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010046"),
+        ("13847", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010047"),
+        ("13848", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010048"),
+        ("13849", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010049"),
+        ("13850", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010050"),
+        ("13851", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010051"),
+        ("13852", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010052"),
+        ("13853", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010053"),
+        ("13854", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010054"),
+        ("13855", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010055"),
+        ("13856", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010056"),
+        ("13857", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010057"),
+        ("13858", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010058"),
+        ("13859", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010059"),
+        ("13860", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010060"),
+        ("13861", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010061"),
+        ("13862", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010062"),
+        ("13863", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010063"),
+        ("13864", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010064"),
+        ("13865", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010065"),
+        ("13866", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010066"),
+        ("13867", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010067"),
+        ("13868", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010068"),
+        ("13869", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010069"),
+        ("13870", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010070"),
+        ("13871", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010071"),
+        ("13872", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010072"),
+        ("13873", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010073"),
+        ("13874", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010074"),
+        ("13875", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010075"),
+        ("13876", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010076"),
+        ("13877", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010077"),
+        ("13878", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010078"),
+        ("13879", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010079"),
+        ("13880", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010080"),
+        ("13881", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010081"),
+        ("13882", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010082"),
+        ("13883", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010083"),
+        ("13884", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010084"),
+        ("13885", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010085"),
+        ("13886", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010086"),
+        ("13887", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010087"),
+        ("13888", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010088"),
+        ("13889", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010089"),
+        ("13890", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010090"),
+        ("13891", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010091"),
+        ("13892", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010092"),
+        ("13893", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010093"),
+        ("13894", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010094"),
+        ("13895", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010095"),
+        ("13896", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010096"),
+        ("13897", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010097"),
+        ("13898", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010098"),
+        ("13899", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010099"),
+        ("13900", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010100"),
+        ("13901", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010101"),
+        ("13902", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010102"),
+        ("13903", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010103"),
+        ("13904", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010104"),
+        ("13905", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010105"),
+        ("13906", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010106"),
+        ("13907", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010107"),
+        ("13908", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010108"),
+        ("13909", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010109"),
+        ("13910", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010110"),
+        ("13911", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010111"),
+        ("13912", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010112"),
+        ("13913", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010113"),
+        ("13914", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010114"),
+        ("13915", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010115"),
+        ("13916", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010116"),
+        ("13917", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010117"),
+        ("13918", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010118"),
+        ("13919", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010119"),
+        ("13920", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010120"),
+        ("13921", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010121"),
+        ("13922", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010122"),
+        ("13923", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010123"),
+        ("13924", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010124"),
+        ("13925", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010125"),
+        ("13926", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010126"),
+        ("13927", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010127"),
+        ("13928", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010128"),
+        ("13929", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010129"),
+        ("13930", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010130"),
+        ("13931", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010131"),
+        ("13932", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010132"),
+        ("13933", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010133"),
+        ("13934", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010134"),
+        ("13935", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010135"),
+        ("13936", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010136"),
+        ("13937", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010137"),
+        ("13938", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010138"),
+        ("13939", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010139"),
+        ("13940", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010140"),
+        ("13941", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010141"),
+        ("13942", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010142"),
+        ("13943", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010143"),
+        ("13944", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010144"),
+        ("13945", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010145"),
+        ("13946", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010146"),
+        ("13947", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010147"),
+        ("13948", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010148"),
+        ("13949", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010149"),
+        ("13950", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010150"),
+        ("13951", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010151"),
+        ("13952", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010152"),
+        ("13953", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010153"),
+        ("13954", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010154"),
+        ("13955", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010155"),
+        ("13956", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010156"),
+        ("13957", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010157"),
+        ("13958", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010158"),
+        ("13959", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010159"),
+        ("13960", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010160"),
+        ("13961", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010161"),
+        ("13962", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010162"),
+        ("13963", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010163"),
+        ("13964", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010164"),
+        ("13965", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010165"),
+        ("13966", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010166"),
+        ("13967", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010167"),
+        ("13968", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010168"),
+        ("13969", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010169"),
+        ("13970", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010170"),
+        ("13971", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010171"),
+        ("13972", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010172"),
+        ("13973", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010173"),
+        ("13974", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010174"),
+        ("13975", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010175"),
+        ("13976", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010176"),
+        ("13977", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010177"),
+        ("13978", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010178"),
+        ("13979", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010179"),
+        ("13980", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010180"),
+        ("13981", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010181"),
+        ("13982", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010182"),
+        ("13983", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010183"),
+        ("13984", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010184"),
+        ("13985", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010185"),
+        ("13986", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010186"),
+        ("13987", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010187"),
+        ("13988", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010188"),
+        ("13989", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010189"),
+        ("13990", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010190"),
+        ("13991", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010191"),
+        ("13992", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010192"),
+        ("13993", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010193"),
+        ("13994", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010194"),
+        ("13995", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010195"),
+        ("13996", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010196"),
+        ("13997", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010197"),
+        ("13998", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010198"),
+        ("13999", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00010199"),
+        ("14000", "CSIDL_FLAG_DONT_VERIFY|0x00010000"),
+        ("14001", "CSIDL_FLAG_DONT_VERIFY|0x00010001"),
+        ("14002", "CSIDL_FLAG_DONT_VERIFY|0x00010002"),
+        ("14003", "CSIDL_FLAG_DONT_VERIFY|0x00010003"),
+        ("14004", "CSIDL_FLAG_DONT_VERIFY|0x00010004"),
+        ("14005", "CSIDL_FLAG_DONT_VERIFY|0x00010005"),
+        ("14006", "CSIDL_FLAG_DONT_VERIFY|0x00010006"),
+        ("14007", "CSIDL_FLAG_DONT_VERIFY|0x00010007"),
+        ("14008", "CSIDL_FLAG_DONT_VERIFY|0x00010008"),
+        ("14009", "CSIDL_FLAG_DONT_VERIFY|0x00010009"),
+        ("14010", "CSIDL_FLAG_DONT_VERIFY|0x00010010"),
+        ("14011", "CSIDL_FLAG_DONT_VERIFY|0x00010011"),
+        ("14012", "CSIDL_FLAG_DONT_VERIFY|0x00010012"),
+        ("14013", "CSIDL_FLAG_DONT_VERIFY|0x00010013"),
+        ("14014", "CSIDL_FLAG_DONT_VERIFY|0x00010014"),
+        ("14015", "CSIDL_FLAG_DONT_VERIFY|0x00010015"),
+        ("14016", "CSIDL_FLAG_DONT_VERIFY|0x00010016"),
+        ("14017", "CSIDL_FLAG_DONT_VERIFY|0x00010017"),
+        ("14018", "CSIDL_FLAG_DONT_VERIFY|0x00010018"),
+        ("14019", "CSIDL_FLAG_DONT_VERIFY|0x00010019"),
+        ("14020", "CSIDL_FLAG_DONT_VERIFY|0x00010020"),
+        ("14021", "CSIDL_FLAG_DONT_VERIFY|0x00010021"),
+        ("14022", "CSIDL_FLAG_DONT_VERIFY|0x00010022"),
+        ("14023", "CSIDL_FLAG_DONT_VERIFY|0x00010023"),
+        ("14024", "CSIDL_FLAG_DONT_VERIFY|0x00010024"),
+        ("14025", "CSIDL_FLAG_DONT_VERIFY|0x00010025"),
+        ("14026", "CSIDL_FLAG_DONT_VERIFY|0x00010026"),
+        ("14027", "CSIDL_FLAG_DONT_VERIFY|0x00010027"),
+        ("14028", "CSIDL_FLAG_DONT_VERIFY|0x00010028"),
+        ("14029", "CSIDL_FLAG_DONT_VERIFY|0x00010029"),
+        ("14030", "CSIDL_FLAG_DONT_VERIFY|0x00010030"),
+        ("14031", "CSIDL_FLAG_DONT_VERIFY|0x00010031"),
+        ("14032", "CSIDL_FLAG_DONT_VERIFY|0x00010032"),
+        ("14033", "CSIDL_FLAG_DONT_VERIFY|0x00010033"),
+        ("14034", "CSIDL_FLAG_DONT_VERIFY|0x00010034"),
+        ("14035", "CSIDL_FLAG_DONT_VERIFY|0x00010035"),
+        ("14036", "CSIDL_FLAG_DONT_VERIFY|0x00010036"),
+        ("14037", "CSIDL_FLAG_DONT_VERIFY|0x00010037"),
+        ("14038", "CSIDL_FLAG_DONT_VERIFY|0x00010038"),
+        ("14039", "CSIDL_FLAG_DONT_VERIFY|0x00010039"),
+        ("14040", "CSIDL_FLAG_DONT_VERIFY|0x00010040"),
+        ("14041", "CSIDL_FLAG_DONT_VERIFY|0x00010041"),
+        ("14042", "CSIDL_FLAG_DONT_VERIFY|0x00010042"),
+        ("14043", "CSIDL_FLAG_DONT_VERIFY|0x00010043"),
+        ("14044", "CSIDL_FLAG_DONT_VERIFY|0x00010044"),
+        ("14045", "CSIDL_FLAG_DONT_VERIFY|0x00010045"),
+        ("14046", "CSIDL_FLAG_DONT_VERIFY|0x00010046"),
+        ("14047", "CSIDL_FLAG_DONT_VERIFY|0x00010047"),
+        ("14048", "CSIDL_FLAG_DONT_VERIFY|0x00010048"),
+        ("14049", "CSIDL_FLAG_DONT_VERIFY|0x00010049"),
+        ("14050", "CSIDL_FLAG_DONT_VERIFY|0x00010050"),
+        ("14051", "CSIDL_FLAG_DONT_VERIFY|0x00010051"),
+        ("14052", "CSIDL_FLAG_DONT_VERIFY|0x00010052"),
+        ("14053", "CSIDL_FLAG_DONT_VERIFY|0x00010053"),
+        ("14054", "CSIDL_FLAG_DONT_VERIFY|0x00010054"),
+        ("14055", "CSIDL_FLAG_DONT_VERIFY|0x00010055"),
+        ("14056", "CSIDL_FLAG_DONT_VERIFY|0x00010056"),
+        ("14057", "CSIDL_FLAG_DONT_VERIFY|0x00010057"),
+        ("14058", "CSIDL_FLAG_DONT_VERIFY|0x00010058"),
+        ("14059", "CSIDL_FLAG_DONT_VERIFY|0x00010059"),
+        ("14060", "CSIDL_FLAG_DONT_VERIFY|0x00010060"),
+        ("14061", "CSIDL_FLAG_DONT_VERIFY|0x00010061"),
+        ("14062", "CSIDL_FLAG_DONT_VERIFY|0x00010062"),
+        ("14063", "CSIDL_FLAG_DONT_VERIFY|0x00010063"),
+        ("14064", "CSIDL_FLAG_DONT_VERIFY|0x00010064"),
+        ("14065", "CSIDL_FLAG_DONT_VERIFY|0x00010065"),
+        ("14066", "CSIDL_FLAG_DONT_VERIFY|0x00010066"),
+        ("14067", "CSIDL_FLAG_DONT_VERIFY|0x00010067"),
+        ("14068", "CSIDL_FLAG_DONT_VERIFY|0x00010068"),
+        ("14069", "CSIDL_FLAG_DONT_VERIFY|0x00010069"),
+        ("14070", "CSIDL_FLAG_DONT_VERIFY|0x00010070"),
+        ("14071", "CSIDL_FLAG_DONT_VERIFY|0x00010071"),
+        ("14072", "CSIDL_FLAG_DONT_VERIFY|0x00010072"),
+        ("14073", "CSIDL_FLAG_DONT_VERIFY|0x00010073"),
+        ("14074", "CSIDL_FLAG_DONT_VERIFY|0x00010074"),
+        ("14075", "CSIDL_FLAG_DONT_VERIFY|0x00010075"),
+        ("14076", "CSIDL_FLAG_DONT_VERIFY|0x00010076"),
+        ("14077", "CSIDL_FLAG_DONT_VERIFY|0x00010077"),
+        ("14078", "CSIDL_FLAG_DONT_VERIFY|0x00010078"),
+        ("14079", "CSIDL_FLAG_DONT_VERIFY|0x00010079"),
+        ("14080", "CSIDL_FLAG_DONT_VERIFY|0x00010080"),
+        ("14081", "CSIDL_FLAG_DONT_VERIFY|0x00010081"),
+        ("14082", "CSIDL_FLAG_DONT_VERIFY|0x00010082"),
+        ("14083", "CSIDL_FLAG_DONT_VERIFY|0x00010083"),
+        ("14084", "CSIDL_FLAG_DONT_VERIFY|0x00010084"),
+        ("14085", "CSIDL_FLAG_DONT_VERIFY|0x00010085"),
+        ("14086", "CSIDL_FLAG_DONT_VERIFY|0x00010086"),
+        ("14087", "CSIDL_FLAG_DONT_VERIFY|0x00010087"),
+        ("14088", "CSIDL_FLAG_DONT_VERIFY|0x00010088"),
+        ("14089", "CSIDL_FLAG_DONT_VERIFY|0x00010089"),
+        ("14090", "CSIDL_FLAG_DONT_VERIFY|0x00010090"),
+        ("14091", "CSIDL_FLAG_DONT_VERIFY|0x00010091"),
+        ("14092", "CSIDL_FLAG_DONT_VERIFY|0x00010092"),
+        ("14093", "CSIDL_FLAG_DONT_VERIFY|0x00010093"),
+        ("14094", "CSIDL_FLAG_DONT_VERIFY|0x00010094"),
+        ("14095", "CSIDL_FLAG_DONT_VERIFY|0x00010095"),
+        ("14096", "CSIDL_FLAG_DONT_VERIFY|0x00010096"),
+        ("14097", "CSIDL_FLAG_DONT_VERIFY|0x00010097"),
+        ("14098", "CSIDL_FLAG_DONT_VERIFY|0x00010098"),
+        ("14099", "CSIDL_FLAG_DONT_VERIFY|0x00010099"),
+        ("14100", "CSIDL_FLAG_DONT_VERIFY|0x00010100"),
+        ("14101", "CSIDL_FLAG_DONT_VERIFY|0x00010101"),
+        ("14102", "CSIDL_FLAG_DONT_VERIFY|0x00010102"),
+        ("14103", "CSIDL_FLAG_DONT_VERIFY|0x00010103"),
+        ("14104", "CSIDL_FLAG_DONT_VERIFY|0x00010104"),
+        ("14105", "CSIDL_FLAG_DONT_VERIFY|0x00010105"),
+        ("14106", "CSIDL_FLAG_DONT_VERIFY|0x00010106"),
+        ("14107", "CSIDL_FLAG_DONT_VERIFY|0x00010107"),
+        ("14108", "CSIDL_FLAG_DONT_VERIFY|0x00010108"),
+        ("14109", "CSIDL_FLAG_DONT_VERIFY|0x00010109"),
+        ("14110", "CSIDL_FLAG_DONT_VERIFY|0x00010110"),
+        ("14111", "CSIDL_FLAG_DONT_VERIFY|0x00010111"),
+        ("14112", "CSIDL_FLAG_DONT_VERIFY|0x00010112"),
+        ("14113", "CSIDL_FLAG_DONT_VERIFY|0x00010113"),
+        ("14114", "CSIDL_FLAG_DONT_VERIFY|0x00010114"),
+        ("14115", "CSIDL_FLAG_DONT_VERIFY|0x00010115"),
+        ("14116", "CSIDL_FLAG_DONT_VERIFY|0x00010116"),
+        ("14117", "CSIDL_FLAG_DONT_VERIFY|0x00010117"),
+        ("14118", "CSIDL_FLAG_DONT_VERIFY|0x00010118"),
+        ("14119", "CSIDL_FLAG_DONT_VERIFY|0x00010119"),
+        ("14120", "CSIDL_FLAG_DONT_VERIFY|0x00010120"),
+        ("14121", "CSIDL_FLAG_DONT_VERIFY|0x00010121"),
+        ("14122", "CSIDL_FLAG_DONT_VERIFY|0x00010122"),
+        ("14123", "CSIDL_FLAG_DONT_VERIFY|0x00010123"),
+        ("14124", "CSIDL_FLAG_DONT_VERIFY|0x00010124"),
+        ("14125", "CSIDL_FLAG_DONT_VERIFY|0x00010125"),
+        ("14126", "CSIDL_FLAG_DONT_VERIFY|0x00010126"),
+        ("14127", "CSIDL_FLAG_DONT_VERIFY|0x00010127"),
+        ("14128", "CSIDL_FLAG_DONT_VERIFY|0x00010128"),
+        ("14129", "CSIDL_FLAG_DONT_VERIFY|0x00010129"),
+        ("14130", "CSIDL_FLAG_DONT_VERIFY|0x00010130"),
+        ("14131", "CSIDL_FLAG_DONT_VERIFY|0x00010131"),
+        ("14132", "CSIDL_FLAG_DONT_VERIFY|0x00010132"),
+        ("14133", "CSIDL_FLAG_DONT_VERIFY|0x00010133"),
+        ("14134", "CSIDL_FLAG_DONT_VERIFY|0x00010134"),
+        ("14135", "CSIDL_FLAG_DONT_VERIFY|0x00010135"),
+        ("14136", "CSIDL_FLAG_DONT_VERIFY|0x00010136"),
+        ("14137", "CSIDL_FLAG_DONT_VERIFY|0x00010137"),
+        ("14138", "CSIDL_FLAG_DONT_VERIFY|0x00010138"),
+        ("14139", "CSIDL_FLAG_DONT_VERIFY|0x00010139"),
+        ("14140", "CSIDL_FLAG_DONT_VERIFY|0x00010140"),
+        ("14141", "CSIDL_FLAG_DONT_VERIFY|0x00010141"),
+        ("14142", "CSIDL_FLAG_DONT_VERIFY|0x00010142"),
+        ("14143", "CSIDL_FLAG_DONT_VERIFY|0x00010143"),
+        ("14144", "CSIDL_FLAG_DONT_VERIFY|0x00010144"),
+        ("14145", "CSIDL_FLAG_DONT_VERIFY|0x00010145"),
+        ("14146", "CSIDL_FLAG_DONT_VERIFY|0x00010146"),
+        ("14147", "CSIDL_FLAG_DONT_VERIFY|0x00010147"),
+        ("14148", "CSIDL_FLAG_DONT_VERIFY|0x00010148"),
+        ("14149", "CSIDL_FLAG_DONT_VERIFY|0x00010149"),
+        ("14150", "CSIDL_FLAG_DONT_VERIFY|0x00010150"),
+        ("14151", "CSIDL_FLAG_DONT_VERIFY|0x00010151"),
+        ("14152", "CSIDL_FLAG_DONT_VERIFY|0x00010152"),
+        ("14153", "CSIDL_FLAG_DONT_VERIFY|0x00010153"),
+        ("14154", "CSIDL_FLAG_DONT_VERIFY|0x00010154"),
+        ("14155", "CSIDL_FLAG_DONT_VERIFY|0x00010155"),
+        ("14156", "CSIDL_FLAG_DONT_VERIFY|0x00010156"),
+        ("14157", "CSIDL_FLAG_DONT_VERIFY|0x00010157"),
+        ("14158", "CSIDL_FLAG_DONT_VERIFY|0x00010158"),
+        ("14159", "CSIDL_FLAG_DONT_VERIFY|0x00010159"),
+        ("14160", "CSIDL_FLAG_DONT_VERIFY|0x00010160"),
+        ("14161", "CSIDL_FLAG_DONT_VERIFY|0x00010161"),
+        ("14162", "CSIDL_FLAG_DONT_VERIFY|0x00010162"),
+        ("14163", "CSIDL_FLAG_DONT_VERIFY|0x00010163"),
+        ("14164", "CSIDL_FLAG_DONT_VERIFY|0x00010164"),
+        ("14165", "CSIDL_FLAG_DONT_VERIFY|0x00010165"),
+        ("14166", "CSIDL_FLAG_DONT_VERIFY|0x00010166"),
+        ("14167", "CSIDL_FLAG_DONT_VERIFY|0x00010167"),
+        ("14168", "CSIDL_FLAG_DONT_VERIFY|0x00010168"),
+        ("14169", "CSIDL_FLAG_DONT_VERIFY|0x00010169"),
+        ("14170", "CSIDL_FLAG_DONT_VERIFY|0x00010170"),
+        ("14171", "CSIDL_FLAG_DONT_VERIFY|0x00010171"),
+        ("14172", "CSIDL_FLAG_DONT_VERIFY|0x00010172"),
+        ("14173", "CSIDL_FLAG_DONT_VERIFY|0x00010173"),
+        ("14174", "CSIDL_FLAG_DONT_VERIFY|0x00010174"),
+        ("14175", "CSIDL_FLAG_DONT_VERIFY|0x00010175"),
+        ("14176", "CSIDL_FLAG_DONT_VERIFY|0x00010176"),
+        ("14177", "CSIDL_FLAG_DONT_VERIFY|0x00010177"),
+        ("14178", "CSIDL_FLAG_DONT_VERIFY|0x00010178"),
+        ("14179", "CSIDL_FLAG_DONT_VERIFY|0x00010179"),
+        ("14180", "CSIDL_FLAG_DONT_VERIFY|0x00010180"),
+        ("14181", "CSIDL_FLAG_DONT_VERIFY|0x00010181"),
+        ("14182", "CSIDL_FLAG_DONT_VERIFY|0x00010182"),
+        ("14183", "CSIDL_FLAG_DONT_VERIFY|0x00010183"),
+        ("14184", "CSIDL_FLAG_DONT_VERIFY|0x00010184"),
+        ("14185", "CSIDL_FLAG_DONT_VERIFY|0x00010185"),
+        ("14186", "CSIDL_FLAG_DONT_VERIFY|0x00010186"),
+        ("14187", "CSIDL_FLAG_DONT_VERIFY|0x00010187"),
+        ("14188", "CSIDL_FLAG_DONT_VERIFY|0x00010188"),
+        ("14189", "CSIDL_FLAG_DONT_VERIFY|0x00010189"),
+        ("14190", "CSIDL_FLAG_DONT_VERIFY|0x00010190"),
+        ("14191", "CSIDL_FLAG_DONT_VERIFY|0x00010191"),
+        ("14192", "CSIDL_FLAG_DONT_VERIFY|0x00010192"),
+        ("14193", "CSIDL_FLAG_DONT_VERIFY|0x00010193"),
+        ("14194", "CSIDL_FLAG_DONT_VERIFY|0x00010194"),
+        ("14195", "CSIDL_FLAG_DONT_VERIFY|0x00010195"),
+        ("14196", "CSIDL_FLAG_DONT_VERIFY|0x00010196"),
+        ("14197", "CSIDL_FLAG_DONT_VERIFY|0x00010197"),
+        ("14198", "CSIDL_FLAG_DONT_VERIFY|0x00010198"),
+        ("14199", "CSIDL_FLAG_DONT_VERIFY|0x00010199"),
+        ("14200", "CSIDL_FLAG_DONT_VERIFY|0x00010200"),
+        ("14201", "CSIDL_FLAG_DONT_VERIFY|0x00010201"),
+        ("14202", "CSIDL_FLAG_DONT_VERIFY|0x00010202"),
+        ("14203", "CSIDL_FLAG_DONT_VERIFY|0x00010203"),
+        ("14204", "CSIDL_FLAG_DONT_VERIFY|0x00010204"),
+        ("14205", "CSIDL_FLAG_DONT_VERIFY|0x00010205"),
+        ("14206", "CSIDL_FLAG_DONT_VERIFY|0x00010206"),
+        ("14207", "CSIDL_FLAG_DONT_VERIFY|0x00010207"),
+        ("14208", "CSIDL_FLAG_DONT_VERIFY|0x00010208"),
+        ("14209", "CSIDL_FLAG_DONT_VERIFY|0x00010209"),
+        ("14210", "CSIDL_FLAG_DONT_VERIFY|0x00010210"),
+        ("14211", "CSIDL_FLAG_DONT_VERIFY|0x00010211"),
+        ("14212", "CSIDL_FLAG_DONT_VERIFY|0x00010212"),
+        ("14213", "CSIDL_FLAG_DONT_VERIFY|0x00010213"),
+        ("14214", "CSIDL_FLAG_DONT_VERIFY|0x00010214"),
+        ("14215", "CSIDL_FLAG_DONT_VERIFY|0x00010215"),
+        ("14216", "CSIDL_FLAG_DONT_VERIFY|0x00010216"),
+        ("14217", "CSIDL_FLAG_DONT_VERIFY|0x00010217"),
+        ("14218", "CSIDL_FLAG_DONT_VERIFY|0x00010218"),
+        ("14219", "CSIDL_FLAG_DONT_VERIFY|0x00010219"),
+        ("14220", "CSIDL_FLAG_DONT_VERIFY|0x00010220"),
+        ("14221", "CSIDL_FLAG_DONT_VERIFY|0x00010221"),
+        ("14222", "CSIDL_FLAG_DONT_VERIFY|0x00010222"),
+        ("14223", "CSIDL_FLAG_DONT_VERIFY|0x00010223"),
+        ("14224", "CSIDL_FLAG_DONT_VERIFY|0x00010224"),
+        ("14225", "CSIDL_FLAG_DONT_VERIFY|0x00010225"),
+        ("14226", "CSIDL_FLAG_DONT_VERIFY|0x00010226"),
+        ("14227", "CSIDL_FLAG_DONT_VERIFY|0x00010227"),
+        ("14228", "CSIDL_FLAG_DONT_VERIFY|0x00010228"),
+        ("14229", "CSIDL_FLAG_DONT_VERIFY|0x00010229"),
+        ("14230", "CSIDL_FLAG_DONT_VERIFY|0x00010230"),
+        ("14231", "CSIDL_FLAG_DONT_VERIFY|0x00010231"),
+        ("14232", "CSIDL_FLAG_DONT_VERIFY|0x00010232"),
+        ("14233", "CSIDL_FLAG_DONT_VERIFY|0x00010233"),
+        ("14234", "CSIDL_FLAG_DONT_VERIFY|0x00010234"),
+        ("14235", "CSIDL_FLAG_DONT_VERIFY|0x00010235"),
+        ("14236", "CSIDL_FLAG_DONT_VERIFY|0x00010236"),
+        ("14237", "CSIDL_FLAG_DONT_VERIFY|0x00010237"),
+        ("14238", "CSIDL_FLAG_DONT_VERIFY|0x00010238"),
+        ("14239", "CSIDL_FLAG_DONT_VERIFY|0x00010239"),
+        ("14240", "CSIDL_FLAG_DONT_VERIFY|0x00010240"),
+        ("14241", "CSIDL_FLAG_DONT_VERIFY|0x00010241"),
+        ("14242", "CSIDL_FLAG_DONT_VERIFY|0x00010242"),
+        ("14243", "CSIDL_FLAG_DONT_VERIFY|0x00010243"),
+        ("14244", "CSIDL_FLAG_DONT_VERIFY|0x00010244"),
+        ("14245", "CSIDL_FLAG_DONT_VERIFY|0x00010245"),
+        ("14246", "CSIDL_FLAG_DONT_VERIFY|0x00010246"),
+        ("14247", "CSIDL_FLAG_DONT_VERIFY|0x00010247"),
+        ("14248", "CSIDL_FLAG_DONT_VERIFY|0x00010248"),
+        ("14249", "CSIDL_FLAG_DONT_VERIFY|0x00010249"),
+        ("14250", "CSIDL_FLAG_DONT_VERIFY|0x00010250"),
+        ("14251", "CSIDL_FLAG_DONT_VERIFY|0x00010251"),
+        ("14252", "CSIDL_FLAG_DONT_VERIFY|0x00010252"),
+        ("14253", "CSIDL_FLAG_DONT_VERIFY|0x00010253"),
+        ("14254", "CSIDL_FLAG_DONT_VERIFY|0x00010254"),
+        ("14255", "CSIDL_FLAG_DONT_VERIFY|0x00010255"),
+        ("14256", "CSIDL_FLAG_DONT_VERIFY|0x00010256"),
+        ("14257", "CSIDL_FLAG_DONT_VERIFY|0x00010257"),
+        ("14258", "CSIDL_FLAG_DONT_VERIFY|0x00010258"),
+        ("14259", "CSIDL_FLAG_DONT_VERIFY|0x00010259"),
+        ("14260", "CSIDL_FLAG_DONT_VERIFY|0x00010260"),
+        ("14261", "CSIDL_FLAG_DONT_VERIFY|0x00010261"),
+        ("14262", "CSIDL_FLAG_DONT_VERIFY|0x00010262"),
+        ("14263", "CSIDL_FLAG_DONT_VERIFY|0x00010263"),
+        ("14264", "CSIDL_FLAG_DONT_VERIFY|0x00010264"),
+        ("14265", "CSIDL_FLAG_DONT_VERIFY|0x00010265"),
+        ("14266", "CSIDL_FLAG_DONT_VERIFY|0x00010266"),
+        ("14267", "CSIDL_FLAG_DONT_VERIFY|0x00010267"),
+        ("14268", "CSIDL_FLAG_DONT_VERIFY|0x00010268"),
+        ("14269", "CSIDL_FLAG_DONT_VERIFY|0x00010269"),
+        ("14270", "CSIDL_FLAG_DONT_VERIFY|0x00010270"),
+        ("14271", "CSIDL_FLAG_DONT_VERIFY|0x00010271"),
+        ("14272", "CSIDL_FLAG_DONT_VERIFY|0x00010272"),
+        ("14273", "CSIDL_FLAG_DONT_VERIFY|0x00010273"),
+        ("14274", "CSIDL_FLAG_DONT_VERIFY|0x00010274"),
+        ("14275", "CSIDL_FLAG_DONT_VERIFY|0x00010275"),
+        ("14276", "CSIDL_FLAG_DONT_VERIFY|0x00010276"),
+        ("14277", "CSIDL_FLAG_DONT_VERIFY|0x00010277"),
+        ("14278", "CSIDL_FLAG_DONT_VERIFY|0x00010278"),
+        ("14279", "CSIDL_FLAG_DONT_VERIFY|0x00010279"),
+        ("14280", "CSIDL_FLAG_DONT_VERIFY|0x00010280"),
+        ("14281", "CSIDL_FLAG_DONT_VERIFY|0x00010281"),
+        ("14282", "CSIDL_FLAG_DONT_VERIFY|0x00010282"),
+        ("14283", "CSIDL_FLAG_DONT_VERIFY|0x00010283"),
+        ("14284", "CSIDL_FLAG_DONT_VERIFY|0x00010284"),
+        ("14285", "CSIDL_FLAG_DONT_VERIFY|0x00010285"),
+        ("14286", "CSIDL_FLAG_DONT_VERIFY|0x00010286"),
+        ("14287", "CSIDL_FLAG_DONT_VERIFY|0x00010287"),
+        ("14288", "CSIDL_FLAG_DONT_VERIFY|0x00010288"),
+        ("14289", "CSIDL_FLAG_DONT_VERIFY|0x00010289"),
+        ("14290", "CSIDL_FLAG_DONT_VERIFY|0x00010290"),
+        ("14291", "CSIDL_FLAG_DONT_VERIFY|0x00010291"),
+        ("14292", "CSIDL_FLAG_DONT_VERIFY|0x00010292"),
+        ("14293", "CSIDL_FLAG_DONT_VERIFY|0x00010293"),
+        ("14294", "CSIDL_FLAG_DONT_VERIFY|0x00010294"),
+        ("14295", "CSIDL_FLAG_DONT_VERIFY|0x00010295"),
+        ("14296", "CSIDL_FLAG_DONT_VERIFY|0x00010296"),
+        ("14297", "CSIDL_FLAG_DONT_VERIFY|0x00010297"),
+        ("14298", "CSIDL_FLAG_DONT_VERIFY|0x00010298"),
+        ("14299", "CSIDL_FLAG_DONT_VERIFY|0x00010299"),
+        ("14300", "CSIDL_FLAG_DONT_VERIFY|0x00010300"),
+        ("14301", "CSIDL_FLAG_DONT_VERIFY|0x00010301"),
+        ("14302", "CSIDL_FLAG_DONT_VERIFY|0x00010302"),
+        ("14303", "CSIDL_FLAG_DONT_VERIFY|0x00010303"),
+        ("14304", "CSIDL_FLAG_DONT_VERIFY|0x00010304"),
+        ("14305", "CSIDL_FLAG_DONT_VERIFY|0x00010305"),
+        ("14306", "CSIDL_FLAG_DONT_VERIFY|0x00010306"),
+        ("14307", "CSIDL_FLAG_DONT_VERIFY|0x00010307"),
+        ("14308", "CSIDL_FLAG_DONT_VERIFY|0x00010308"),
+        ("14309", "CSIDL_FLAG_DONT_VERIFY|0x00010309"),
+        ("14310", "CSIDL_FLAG_DONT_VERIFY|0x00010310"),
+        ("14311", "CSIDL_FLAG_DONT_VERIFY|0x00010311"),
+        ("14312", "CSIDL_FLAG_DONT_VERIFY|0x00010312"),
+        ("14313", "CSIDL_FLAG_DONT_VERIFY|0x00010313"),
+        ("14314", "CSIDL_FLAG_DONT_VERIFY|0x00010314"),
+        ("14315", "CSIDL_FLAG_DONT_VERIFY|0x00010315"),
+        ("14316", "CSIDL_FLAG_DONT_VERIFY|0x00010316"),
+        ("14317", "CSIDL_FLAG_DONT_VERIFY|0x00010317"),
+        ("14318", "CSIDL_FLAG_DONT_VERIFY|0x00010318"),
+        ("14319", "CSIDL_FLAG_DONT_VERIFY|0x00010319"),
+        ("14320", "CSIDL_FLAG_DONT_VERIFY|0x00010320"),
+        ("14321", "CSIDL_FLAG_DONT_VERIFY|0x00010321"),
+        ("14322", "CSIDL_FLAG_DONT_VERIFY|0x00010322"),
+        ("14323", "CSIDL_FLAG_DONT_VERIFY|0x00010323"),
+        ("14324", "CSIDL_FLAG_DONT_VERIFY|0x00010324"),
+        ("14325", "CSIDL_FLAG_DONT_VERIFY|0x00010325"),
+        ("14326", "CSIDL_FLAG_DONT_VERIFY|0x00010326"),
+        ("14327", "CSIDL_FLAG_DONT_VERIFY|0x00010327"),
+        ("14328", "CSIDL_FLAG_DONT_VERIFY|0x00010328"),
+        ("14329", "CSIDL_FLAG_DONT_VERIFY|0x00010329"),
+        ("14330", "CSIDL_FLAG_DONT_VERIFY|0x00010330"),
+        ("14331", "CSIDL_FLAG_DONT_VERIFY|0x00010331"),
+        ("14332", "CSIDL_FLAG_DONT_VERIFY|0x00010332"),
+        ("14333", "CSIDL_FLAG_DONT_VERIFY|0x00010333"),
+        ("14334", "CSIDL_FLAG_DONT_VERIFY|0x00010334"),
+        ("14335", "CSIDL_FLAG_DONT_VERIFY|0x00010335"),
+        ("14336", "CSIDL_FLAG_DONT_VERIFY|0x00010336"),
+        ("14337", "CSIDL_FLAG_DONT_VERIFY|0x00010337"),
+        ("14338", "CSIDL_FLAG_DONT_VERIFY|0x00010338"),
+        ("14339", "CSIDL_FLAG_DONT_VERIFY|0x00010339"),
+        ("14340", "CSIDL_FLAG_DONT_VERIFY|0x00010340"),
+        ("14341", "CSIDL_FLAG_DONT_VERIFY|0x00010341"),
+        ("14342", "CSIDL_FLAG_DONT_VERIFY|0x00010342"),
+        ("14343", "CSIDL_FLAG_DONT_VERIFY|0x00010343"),
+        ("14344", "CSIDL_FLAG_DONT_VERIFY|0x00010344"),
+        ("14345", "CSIDL_FLAG_DONT_VERIFY|0x00010345"),
+        ("14346", "CSIDL_FLAG_DONT_VERIFY|0x00010346"),
+        ("14347", "CSIDL_FLAG_DONT_VERIFY|0x00010347"),
+        ("14348", "CSIDL_FLAG_DONT_VERIFY|0x00010348"),
+        ("14349", "CSIDL_FLAG_DONT_VERIFY|0x00010349"),
+        ("14350", "CSIDL_FLAG_DONT_VERIFY|0x00010350"),
+        ("14351", "CSIDL_FLAG_DONT_VERIFY|0x00010351"),
+        ("14352", "CSIDL_FLAG_DONT_VERIFY|0x00010352"),
+        ("14353", "CSIDL_FLAG_DONT_VERIFY|0x00010353"),
+        ("14354", "CSIDL_FLAG_DONT_VERIFY|0x00010354"),
+        ("14355", "CSIDL_FLAG_DONT_VERIFY|0x00010355"),
+        ("14356", "CSIDL_FLAG_DONT_VERIFY|0x00010356"),
+        ("14357", "CSIDL_FLAG_DONT_VERIFY|0x00010357"),
+        ("14358", "CSIDL_FLAG_DONT_VERIFY|0x00010358"),
+        ("14359", "CSIDL_FLAG_DONT_VERIFY|0x00010359"),
+        ("14360", "CSIDL_FLAG_DONT_VERIFY|0x00010360"),
+        ("14361", "CSIDL_FLAG_DONT_VERIFY|0x00010361"),
+        ("14362", "CSIDL_FLAG_DONT_VERIFY|0x00010362"),
+        ("14363", "CSIDL_FLAG_DONT_VERIFY|0x00010363"),
+        ("14364", "CSIDL_FLAG_DONT_VERIFY|0x00010364"),
+        ("14365", "CSIDL_FLAG_DONT_VERIFY|0x00010365"),
+        ("14366", "CSIDL_FLAG_DONT_VERIFY|0x00010366"),
+        ("14367", "CSIDL_FLAG_DONT_VERIFY|0x00010367"),
+        ("14368", "CSIDL_FLAG_DONT_VERIFY|0x00010368"),
+        ("14369", "CSIDL_FLAG_DONT_VERIFY|0x00010369"),
+        ("14370", "CSIDL_FLAG_DONT_VERIFY|0x00010370"),
+        ("14371", "CSIDL_FLAG_DONT_VERIFY|0x00010371"),
+        ("14372", "CSIDL_FLAG_DONT_VERIFY|0x00010372"),
+        ("14373", "CSIDL_FLAG_DONT_VERIFY|0x00010373"),
+        ("14374", "CSIDL_FLAG_DONT_VERIFY|0x00010374"),
+        ("14375", "CSIDL_FLAG_DONT_VERIFY|0x00010375"),
+        ("14376", "CSIDL_FLAG_DONT_VERIFY|0x00010376"),
+        ("14377", "CSIDL_FLAG_DONT_VERIFY|0x00010377"),
+        ("14378", "CSIDL_FLAG_DONT_VERIFY|0x00010378"),
+        ("14379", "CSIDL_FLAG_DONT_VERIFY|0x00010379"),
+        ("14380", "CSIDL_FLAG_DONT_VERIFY|0x00010380"),
+        ("14381", "CSIDL_FLAG_DONT_VERIFY|0x00010381"),
+        ("14382", "CSIDL_FLAG_DONT_VERIFY|0x00010382"),
+        ("14383", "CSIDL_FLAG_DONT_VERIFY|0x00010383"),
+        ("14384", "CSIDL_FLAG_DONT_VERIFY|0x00010384"),
+        ("14385", "CSIDL_FLAG_DONT_VERIFY|0x00010385"),
+        ("14386", "CSIDL_FLAG_DONT_VERIFY|0x00010386"),
+        ("14387", "CSIDL_FLAG_DONT_VERIFY|0x00010387"),
+        ("14388", "CSIDL_FLAG_DONT_VERIFY|0x00010388"),
+        ("14389", "CSIDL_FLAG_DONT_VERIFY|0x00010389"),
+        ("14390", "CSIDL_FLAG_DONT_VERIFY|0x00010390"),
+        ("14391", "CSIDL_FLAG_DONT_VERIFY|0x00010391"),
+        ("14392", "CSIDL_FLAG_DONT_VERIFY|0x00010392"),
+        ("14393", "CSIDL_FLAG_DONT_VERIFY|0x00010393"),
+        ("14394", "CSIDL_FLAG_DONT_VERIFY|0x00010394"),
+        ("14395", "CSIDL_FLAG_DONT_VERIFY|0x00010395"),
+        ("14396", "CSIDL_FLAG_DONT_VERIFY|0x00010396"),
+        ("14397", "CSIDL_FLAG_DONT_VERIFY|0x00010397"),
+        ("14398", "CSIDL_FLAG_DONT_VERIFY|0x00010398"),
+        ("14399", "CSIDL_FLAG_DONT_VERIFY|0x00010399"),
+        ("14400", "CSIDL_FLAG_DONT_VERIFY|0x00010400"),
+        ("14401", "CSIDL_FLAG_DONT_VERIFY|0x00010401"),
+        ("14402", "CSIDL_FLAG_DONT_VERIFY|0x00010402"),
+        ("14403", "CSIDL_FLAG_DONT_VERIFY|0x00010403"),
+        ("14404", "CSIDL_FLAG_DONT_VERIFY|0x00010404"),
+        ("14405", "CSIDL_FLAG_DONT_VERIFY|0x00010405"),
+        ("14406", "CSIDL_FLAG_DONT_VERIFY|0x00010406"),
+        ("14407", "CSIDL_FLAG_DONT_VERIFY|0x00010407"),
+        ("14408", "CSIDL_FLAG_DONT_VERIFY|0x00010408"),
+        ("14409", "CSIDL_FLAG_DONT_VERIFY|0x00010409"),
+        ("14410", "CSIDL_FLAG_DONT_VERIFY|0x00010410"),
+        ("14411", "CSIDL_FLAG_DONT_VERIFY|0x00010411"),
+        ("14412", "CSIDL_FLAG_DONT_VERIFY|0x00010412"),
+        ("14413", "CSIDL_FLAG_DONT_VERIFY|0x00010413"),
+        ("14414", "CSIDL_FLAG_DONT_VERIFY|0x00010414"),
+        ("14415", "CSIDL_FLAG_DONT_VERIFY|0x00010415"),
+        ("14416", "CSIDL_FLAG_DONT_VERIFY|0x00010416"),
+        ("14417", "CSIDL_FLAG_DONT_VERIFY|0x00010417"),
+        ("14418", "CSIDL_FLAG_DONT_VERIFY|0x00010418"),
+        ("14419", "CSIDL_FLAG_DONT_VERIFY|0x00010419"),
+        ("14420", "CSIDL_FLAG_DONT_VERIFY|0x00010420"),
+        ("14421", "CSIDL_FLAG_DONT_VERIFY|0x00010421"),
+        ("14422", "CSIDL_FLAG_DONT_VERIFY|0x00010422"),
+        ("14423", "CSIDL_FLAG_DONT_VERIFY|0x00010423"),
+        ("14424", "CSIDL_FLAG_DONT_VERIFY|0x00010424"),
+        ("14425", "CSIDL_FLAG_DONT_VERIFY|0x00010425"),
+        ("14426", "CSIDL_FLAG_DONT_VERIFY|0x00010426"),
+        ("14427", "CSIDL_FLAG_DONT_VERIFY|0x00010427"),
+        ("14428", "CSIDL_FLAG_DONT_VERIFY|0x00010428"),
+        ("14429", "CSIDL_FLAG_DONT_VERIFY|0x00010429"),
+        ("14430", "CSIDL_FLAG_DONT_VERIFY|0x00010430"),
+        ("14431", "CSIDL_FLAG_DONT_VERIFY|0x00010431"),
+        ("14432", "CSIDL_FLAG_DONT_VERIFY|0x00010432"),
+        ("14433", "CSIDL_FLAG_DONT_VERIFY|0x00010433"),
+        ("14434", "CSIDL_FLAG_DONT_VERIFY|0x00010434"),
+        ("14435", "CSIDL_FLAG_DONT_VERIFY|0x00010435"),
+        ("14436", "CSIDL_FLAG_DONT_VERIFY|0x00010436"),
+        ("14437", "CSIDL_FLAG_DONT_VERIFY|0x00010437"),
+        ("14438", "CSIDL_FLAG_DONT_VERIFY|0x00010438"),
+        ("14439", "CSIDL_FLAG_DONT_VERIFY|0x00010439"),
+        ("14440", "CSIDL_FLAG_DONT_VERIFY|0x00010440"),
+        ("14441", "CSIDL_FLAG_DONT_VERIFY|0x00010441"),
+        ("14442", "CSIDL_FLAG_DONT_VERIFY|0x00010442"),
+        ("14443", "CSIDL_FLAG_DONT_VERIFY|0x00010443"),
+        ("14444", "CSIDL_FLAG_DONT_VERIFY|0x00010444"),
+        ("14445", "CSIDL_FLAG_DONT_VERIFY|0x00010445"),
+        ("14446", "CSIDL_FLAG_DONT_VERIFY|0x00010446"),
+        ("14447", "CSIDL_FLAG_DONT_VERIFY|0x00010447"),
+        ("14448", "CSIDL_FLAG_DONT_VERIFY|0x00010448"),
+        ("14449", "CSIDL_FLAG_DONT_VERIFY|0x00010449"),
+        ("14450", "CSIDL_FLAG_DONT_VERIFY|0x00010450"),
+        ("14451", "CSIDL_FLAG_DONT_VERIFY|0x00010451"),
+        ("14452", "CSIDL_FLAG_DONT_VERIFY|0x00010452"),
+        ("14453", "CSIDL_FLAG_DONT_VERIFY|0x00010453"),
+        ("14454", "CSIDL_FLAG_DONT_VERIFY|0x00010454"),
+        ("14455", "CSIDL_FLAG_DONT_VERIFY|0x00010455"),
+        ("14456", "CSIDL_FLAG_DONT_VERIFY|0x00010456"),
+        ("14457", "CSIDL_FLAG_DONT_VERIFY|0x00010457"),
+        ("14458", "CSIDL_FLAG_DONT_VERIFY|0x00010458"),
+        ("14459", "CSIDL_FLAG_DONT_VERIFY|0x00010459"),
+        ("14460", "CSIDL_FLAG_DONT_VERIFY|0x00010460"),
+        ("14461", "CSIDL_FLAG_DONT_VERIFY|0x00010461"),
+        ("14462", "CSIDL_FLAG_DONT_VERIFY|0x00010462"),
+        ("14463", "CSIDL_FLAG_DONT_VERIFY|0x00010463"),
+        ("14464", "CSIDL_FLAG_DONT_VERIFY|0x00010464"),
+        ("14465", "CSIDL_FLAG_DONT_VERIFY|0x00010465"),
+        ("14466", "CSIDL_FLAG_DONT_VERIFY|0x00010466"),
+        ("14467", "CSIDL_FLAG_DONT_VERIFY|0x00010467"),
+        ("14468", "CSIDL_FLAG_DONT_VERIFY|0x00010468"),
+        ("14469", "CSIDL_FLAG_DONT_VERIFY|0x00010469"),
+        ("14470", "CSIDL_FLAG_DONT_VERIFY|0x00010470"),
+        ("14471", "CSIDL_FLAG_DONT_VERIFY|0x00010471"),
+        ("14472", "CSIDL_FLAG_DONT_VERIFY|0x00010472"),
+        ("14473", "CSIDL_FLAG_DONT_VERIFY|0x00010473"),
+        ("14474", "CSIDL_FLAG_DONT_VERIFY|0x00010474"),
+        ("14475", "CSIDL_FLAG_DONT_VERIFY|0x00010475"),
+        ("14476", "CSIDL_FLAG_DONT_VERIFY|0x00010476"),
+        ("14477", "CSIDL_FLAG_DONT_VERIFY|0x00010477"),
+        ("14478", "CSIDL_FLAG_DONT_VERIFY|0x00010478"),
+        ("14479", "CSIDL_FLAG_DONT_VERIFY|0x00010479"),
+        ("14480", "CSIDL_FLAG_DONT_VERIFY|0x00010480"),
+        ("14481", "CSIDL_FLAG_DONT_VERIFY|0x00010481"),
+        ("14482", "CSIDL_FLAG_DONT_VERIFY|0x00010482"),
+        ("14483", "CSIDL_FLAG_DONT_VERIFY|0x00010483"),
+        ("14484", "CSIDL_FLAG_DONT_VERIFY|0x00010484"),
+        ("14485", "CSIDL_FLAG_DONT_VERIFY|0x00010485"),
+        ("14486", "CSIDL_FLAG_DONT_VERIFY|0x00010486"),
+        ("14487", "CSIDL_FLAG_DONT_VERIFY|0x00010487"),
+        ("14488", "CSIDL_FLAG_DONT_VERIFY|0x00010488"),
+        ("14489", "CSIDL_FLAG_DONT_VERIFY|0x00010489"),
+        ("14490", "CSIDL_FLAG_DONT_VERIFY|0x00010490"),
+        ("14491", "CSIDL_FLAG_DONT_VERIFY|0x00010491"),
+        ("14492", "CSIDL_FLAG_DONT_VERIFY|0x00010492"),
+        ("14493", "CSIDL_FLAG_DONT_VERIFY|0x00010493"),
+        ("14494", "CSIDL_FLAG_DONT_VERIFY|0x00010494"),
+        ("14495", "CSIDL_FLAG_DONT_VERIFY|0x00010495"),
+        ("14496", "CSIDL_FLAG_DONT_VERIFY|0x00010496"),
+        ("14497", "CSIDL_FLAG_DONT_VERIFY|0x00010497"),
+        ("14498", "CSIDL_FLAG_DONT_VERIFY|0x00010498"),
+        ("14499", "CSIDL_FLAG_DONT_VERIFY|0x00010499"),
+        ("14500", "CSIDL_FLAG_DONT_VERIFY|0x00010500"),
+        ("14501", "CSIDL_FLAG_DONT_VERIFY|0x00010501"),
+        ("14502", "CSIDL_FLAG_DONT_VERIFY|0x00010502"),
+        ("14503", "CSIDL_FLAG_DONT_VERIFY|0x00010503"),
+        ("14504", "CSIDL_FLAG_DONT_VERIFY|0x00010504"),
+        ("14505", "CSIDL_FLAG_DONT_VERIFY|0x00010505"),
+        ("14506", "CSIDL_FLAG_DONT_VERIFY|0x00010506"),
+        ("14507", "CSIDL_FLAG_DONT_VERIFY|0x00010507"),
+        ("14508", "CSIDL_FLAG_DONT_VERIFY|0x00010508"),
+        ("14509", "CSIDL_FLAG_DONT_VERIFY|0x00010509"),
+        ("14510", "CSIDL_FLAG_DONT_VERIFY|0x00010510"),
+        ("14511", "CSIDL_FLAG_DONT_VERIFY|0x00010511"),
+        ("14512", "CSIDL_FLAG_DONT_VERIFY|0x00010512"),
+        ("14513", "CSIDL_FLAG_DONT_VERIFY|0x00010513"),
+        ("14514", "CSIDL_FLAG_DONT_VERIFY|0x00010514"),
+        ("14515", "CSIDL_FLAG_DONT_VERIFY|0x00010515"),
+        ("14516", "CSIDL_FLAG_DONT_VERIFY|0x00010516"),
+        ("14517", "CSIDL_FLAG_DONT_VERIFY|0x00010517"),
+        ("14518", "CSIDL_FLAG_DONT_VERIFY|0x00010518"),
+        ("14519", "CSIDL_FLAG_DONT_VERIFY|0x00010519"),
+        ("14520", "CSIDL_FLAG_DONT_VERIFY|0x00010520"),
+        ("14521", "CSIDL_FLAG_DONT_VERIFY|0x00010521"),
+        ("14522", "CSIDL_FLAG_DONT_VERIFY|0x00010522"),
+        ("14523", "CSIDL_FLAG_DONT_VERIFY|0x00010523"),
+        ("14524", "CSIDL_FLAG_DONT_VERIFY|0x00010524"),
+        ("14525", "CSIDL_FLAG_DONT_VERIFY|0x00010525"),
+        ("14526", "CSIDL_FLAG_DONT_VERIFY|0x00010526"),
+        ("14527", "CSIDL_FLAG_DONT_VERIFY|0x00010527"),
+        ("14528", "CSIDL_FLAG_DONT_VERIFY|0x00010528"),
+        ("14529", "CSIDL_FLAG_DONT_VERIFY|0x00010529"),
+        ("14530", "CSIDL_FLAG_DONT_VERIFY|0x00010530"),
+        ("14531", "CSIDL_FLAG_DONT_VERIFY|0x00010531"),
+        ("14532", "CSIDL_FLAG_DONT_VERIFY|0x00010532"),
+        ("14533", "CSIDL_FLAG_DONT_VERIFY|0x00010533"),
+        ("14534", "CSIDL_FLAG_DONT_VERIFY|0x00010534"),
+        ("14535", "CSIDL_FLAG_DONT_VERIFY|0x00010535"),
+        ("14536", "CSIDL_FLAG_DONT_VERIFY|0x00010536"),
+        ("14537", "CSIDL_FLAG_DONT_VERIFY|0x00010537"),
+        ("14538", "CSIDL_FLAG_DONT_VERIFY|0x00010538"),
+        ("14539", "CSIDL_FLAG_DONT_VERIFY|0x00010539"),
+        ("14540", "CSIDL_FLAG_DONT_VERIFY|0x00010540"),
+        ("14541", "CSIDL_FLAG_DONT_VERIFY|0x00010541"),
+        ("14542", "CSIDL_FLAG_DONT_VERIFY|0x00010542"),
+        ("14543", "CSIDL_FLAG_DONT_VERIFY|0x00010543"),
+        ("14544", "CSIDL_FLAG_DONT_VERIFY|0x00010544"),
+        ("14545", "CSIDL_FLAG_DONT_VERIFY|0x00010545"),
+        ("14546", "CSIDL_FLAG_DONT_VERIFY|0x00010546"),
+        ("14547", "CSIDL_FLAG_DONT_VERIFY|0x00010547"),
+        ("14548", "CSIDL_FLAG_DONT_VERIFY|0x00010548"),
+        ("14549", "CSIDL_FLAG_DONT_VERIFY|0x00010549"),
+        ("14550", "CSIDL_FLAG_DONT_VERIFY|0x00010550"),
+        ("14551", "CSIDL_FLAG_DONT_VERIFY|0x00010551"),
+        ("14552", "CSIDL_FLAG_DONT_VERIFY|0x00010552"),
+        ("14553", "CSIDL_FLAG_DONT_VERIFY|0x00010553"),
+        ("14554", "CSIDL_FLAG_DONT_VERIFY|0x00010554"),
+        ("14555", "CSIDL_FLAG_DONT_VERIFY|0x00010555"),
+        ("14556", "CSIDL_FLAG_DONT_VERIFY|0x00010556"),
+        ("14557", "CSIDL_FLAG_DONT_VERIFY|0x00010557"),
+        ("14558", "CSIDL_FLAG_DONT_VERIFY|0x00010558"),
+        ("14559", "CSIDL_FLAG_DONT_VERIFY|0x00010559"),
+        ("14560", "CSIDL_FLAG_DONT_VERIFY|0x00010560"),
+        ("14561", "CSIDL_FLAG_DONT_VERIFY|0x00010561"),
+        ("14562", "CSIDL_FLAG_DONT_VERIFY|0x00010562"),
+        ("14563", "CSIDL_FLAG_DONT_VERIFY|0x00010563"),
+        ("14564", "CSIDL_FLAG_DONT_VERIFY|0x00010564"),
+        ("14565", "CSIDL_FLAG_DONT_VERIFY|0x00010565"),
+        ("14566", "CSIDL_FLAG_DONT_VERIFY|0x00010566"),
+        ("14567", "CSIDL_FLAG_DONT_VERIFY|0x00010567"),
+        ("14568", "CSIDL_FLAG_DONT_VERIFY|0x00010568"),
+        ("14569", "CSIDL_FLAG_DONT_VERIFY|0x00010569"),
+        ("14570", "CSIDL_FLAG_DONT_VERIFY|0x00010570"),
+        ("14571", "CSIDL_FLAG_DONT_VERIFY|0x00010571"),
+        ("14572", "CSIDL_FLAG_DONT_VERIFY|0x00010572"),
+        ("14573", "CSIDL_FLAG_DONT_VERIFY|0x00010573"),
+        ("14574", "CSIDL_FLAG_DONT_VERIFY|0x00010574"),
+        ("14575", "CSIDL_FLAG_DONT_VERIFY|0x00010575"),
+        ("14576", "CSIDL_FLAG_DONT_VERIFY|0x00010576"),
+        ("14577", "CSIDL_FLAG_DONT_VERIFY|0x00010577"),
+        ("14578", "CSIDL_FLAG_DONT_VERIFY|0x00010578"),
+        ("14579", "CSIDL_FLAG_DONT_VERIFY|0x00010579"),
+        ("14580", "CSIDL_FLAG_DONT_VERIFY|0x00010580"),
+        ("14581", "CSIDL_FLAG_DONT_VERIFY|0x00010581"),
+        ("14582", "CSIDL_FLAG_DONT_VERIFY|0x00010582"),
+        ("14583", "CSIDL_FLAG_DONT_VERIFY|0x00010583"),
+        ("14584", "CSIDL_FLAG_DONT_VERIFY|0x00010584"),
+        ("14585", "CSIDL_FLAG_DONT_VERIFY|0x00010585"),
+        ("14586", "CSIDL_FLAG_DONT_VERIFY|0x00010586"),
+        ("14587", "CSIDL_FLAG_DONT_VERIFY|0x00010587"),
+        ("14588", "CSIDL_FLAG_DONT_VERIFY|0x00010588"),
+        ("14589", "CSIDL_FLAG_DONT_VERIFY|0x00010589"),
+        ("14590", "CSIDL_FLAG_DONT_VERIFY|0x00010590"),
+        ("14591", "CSIDL_FLAG_DONT_VERIFY|0x00010591"),
+        ("14592", "CSIDL_FLAG_DONT_VERIFY|0x00010592"),
+        ("14593", "CSIDL_FLAG_DONT_VERIFY|0x00010593"),
+        ("14594", "CSIDL_FLAG_DONT_VERIFY|0x00010594"),
+        ("14595", "CSIDL_FLAG_DONT_VERIFY|0x00010595"),
+        ("14596", "CSIDL_FLAG_DONT_VERIFY|0x00010596"),
+        ("14597", "CSIDL_FLAG_DONT_VERIFY|0x00010597"),
+        ("14598", "CSIDL_FLAG_DONT_VERIFY|0x00010598"),
+        ("14599", "CSIDL_FLAG_DONT_VERIFY|0x00010599"),
+        ("14600", "CSIDL_FLAG_DONT_VERIFY|0x00010600"),
+        ("14601", "CSIDL_FLAG_DONT_VERIFY|0x00010601"),
+        ("14602", "CSIDL_FLAG_DONT_VERIFY|0x00010602"),
+        ("14603", "CSIDL_FLAG_DONT_VERIFY|0x00010603"),
+        ("14604", "CSIDL_FLAG_DONT_VERIFY|0x00010604"),
+        ("14605", "CSIDL_FLAG_DONT_VERIFY|0x00010605"),
+        ("14606", "CSIDL_FLAG_DONT_VERIFY|0x00010606"),
+        ("14607", "CSIDL_FLAG_DONT_VERIFY|0x00010607"),
+        ("14608", "CSIDL_FLAG_DONT_VERIFY|0x00010608"),
+        ("14609", "CSIDL_FLAG_DONT_VERIFY|0x00010609"),
+        ("14610", "CSIDL_FLAG_DONT_VERIFY|0x00010610"),
+        ("14611", "CSIDL_FLAG_DONT_VERIFY|0x00010611"),
+        ("14612", "CSIDL_FLAG_DONT_VERIFY|0x00010612"),
+        ("14613", "CSIDL_FLAG_DONT_VERIFY|0x00010613"),
+        ("14614", "CSIDL_FLAG_DONT_VERIFY|0x00010614"),
+        ("14615", "CSIDL_FLAG_DONT_VERIFY|0x00010615"),
+        ("14616", "CSIDL_FLAG_DONT_VERIFY|0x00010616"),
+        ("14617", "CSIDL_FLAG_DONT_VERIFY|0x00010617"),
+        ("14618", "CSIDL_FLAG_DONT_VERIFY|0x00010618"),
+        ("14619", "CSIDL_FLAG_DONT_VERIFY|0x00010619"),
+        ("14620", "CSIDL_FLAG_DONT_VERIFY|0x00010620"),
+        ("14621", "CSIDL_FLAG_DONT_VERIFY|0x00010621"),
+        ("14622", "CSIDL_FLAG_DONT_VERIFY|0x00010622"),
+        ("14623", "CSIDL_FLAG_DONT_VERIFY|0x00010623"),
+        ("14624", "CSIDL_FLAG_DONT_VERIFY|0x00010624"),
+        ("14625", "CSIDL_FLAG_DONT_VERIFY|0x00010625"),
+        ("14626", "CSIDL_FLAG_DONT_VERIFY|0x00010626"),
+        ("14627", "CSIDL_FLAG_DONT_VERIFY|0x00010627"),
+        ("14628", "CSIDL_FLAG_DONT_VERIFY|0x00010628"),
+        ("14629", "CSIDL_FLAG_DONT_VERIFY|0x00010629"),
+        ("14630", "CSIDL_FLAG_DONT_VERIFY|0x00010630"),
+        ("14631", "CSIDL_FLAG_DONT_VERIFY|0x00010631"),
+        ("14632", "CSIDL_FLAG_DONT_VERIFY|0x00010632"),
+        ("14633", "CSIDL_FLAG_DONT_VERIFY|0x00010633"),
+        ("14634", "CSIDL_FLAG_DONT_VERIFY|0x00010634"),
+        ("14635", "CSIDL_FLAG_DONT_VERIFY|0x00010635"),
+        ("14636", "CSIDL_FLAG_DONT_VERIFY|0x00010636"),
+        ("14637", "CSIDL_FLAG_DONT_VERIFY|0x00010637"),
+        ("14638", "CSIDL_FLAG_DONT_VERIFY|0x00010638"),
+        ("14639", "CSIDL_FLAG_DONT_VERIFY|0x00010639"),
+        ("14640", "CSIDL_FLAG_DONT_VERIFY|0x00010640"),
+        ("14641", "CSIDL_FLAG_DONT_VERIFY|0x00010641"),
+        ("14642", "CSIDL_FLAG_DONT_VERIFY|0x00010642"),
+        ("14643", "CSIDL_FLAG_DONT_VERIFY|0x00010643"),
+        ("14644", "CSIDL_FLAG_DONT_VERIFY|0x00010644"),
+        ("14645", "CSIDL_FLAG_DONT_VERIFY|0x00010645"),
+        ("14646", "CSIDL_FLAG_DONT_VERIFY|0x00010646"),
+        ("14647", "CSIDL_FLAG_DONT_VERIFY|0x00010647"),
+        ("14648", "CSIDL_FLAG_DONT_VERIFY|0x00010648"),
+        ("14649", "CSIDL_FLAG_DONT_VERIFY|0x00010649"),
+        ("14650", "CSIDL_FLAG_DONT_VERIFY|0x00010650"),
+        ("14651", "CSIDL_FLAG_DONT_VERIFY|0x00010651"),
+        ("14652", "CSIDL_FLAG_DONT_VERIFY|0x00010652"),
+        ("14653", "CSIDL_FLAG_DONT_VERIFY|0x00010653"),
+        ("14654", "CSIDL_FLAG_DONT_VERIFY|0x00010654"),
+        ("14655", "CSIDL_FLAG_DONT_VERIFY|0x00010655"),
+        ("14656", "CSIDL_FLAG_DONT_VERIFY|0x00010656"),
+        ("14657", "CSIDL_FLAG_DONT_VERIFY|0x00010657"),
+        ("14658", "CSIDL_FLAG_DONT_VERIFY|0x00010658"),
+        ("14659", "CSIDL_FLAG_DONT_VERIFY|0x00010659"),
+        ("14660", "CSIDL_FLAG_DONT_VERIFY|0x00010660"),
+        ("14661", "CSIDL_FLAG_DONT_VERIFY|0x00010661"),
+        ("14662", "CSIDL_FLAG_DONT_VERIFY|0x00010662"),
+        ("14663", "CSIDL_FLAG_DONT_VERIFY|0x00010663"),
+        ("14664", "CSIDL_FLAG_DONT_VERIFY|0x00010664"),
+        ("14665", "CSIDL_FLAG_DONT_VERIFY|0x00010665"),
+        ("14666", "CSIDL_FLAG_DONT_VERIFY|0x00010666"),
+        ("14667", "CSIDL_FLAG_DONT_VERIFY|0x00010667"),
+        ("14668", "CSIDL_FLAG_DONT_VERIFY|0x00010668"),
+        ("14669", "CSIDL_FLAG_DONT_VERIFY|0x00010669"),
+        ("14670", "CSIDL_FLAG_DONT_VERIFY|0x00010670"),
+        ("14671", "CSIDL_FLAG_DONT_VERIFY|0x00010671"),
+        ("14672", "CSIDL_FLAG_DONT_VERIFY|0x00010672"),
+        ("14673", "CSIDL_FLAG_DONT_VERIFY|0x00010673"),
+        ("14674", "CSIDL_FLAG_DONT_VERIFY|0x00010674"),
+        ("14675", "CSIDL_FLAG_DONT_VERIFY|0x00010675"),
+        ("14676", "CSIDL_FLAG_DONT_VERIFY|0x00010676"),
+        ("14677", "CSIDL_FLAG_DONT_VERIFY|0x00010677"),
+        ("14678", "CSIDL_FLAG_DONT_VERIFY|0x00010678"),
+        ("14679", "CSIDL_FLAG_DONT_VERIFY|0x00010679"),
+        ("14680", "CSIDL_FLAG_DONT_VERIFY|0x00010680"),
+        ("14681", "CSIDL_FLAG_DONT_VERIFY|0x00010681"),
+        ("14682", "CSIDL_FLAG_DONT_VERIFY|0x00010682"),
+        ("14683", "CSIDL_FLAG_DONT_VERIFY|0x00010683"),
+        ("14684", "CSIDL_FLAG_DONT_VERIFY|0x00010684"),
+        ("14685", "CSIDL_FLAG_DONT_VERIFY|0x00010685"),
+        ("14686", "CSIDL_FLAG_DONT_VERIFY|0x00010686"),
+        ("14687", "CSIDL_FLAG_DONT_VERIFY|0x00010687"),
+        ("14688", "CSIDL_FLAG_DONT_VERIFY|0x00010688"),
+        ("14689", "CSIDL_FLAG_DONT_VERIFY|0x00010689"),
+        ("14690", "CSIDL_FLAG_DONT_VERIFY|0x00010690"),
+        ("14691", "CSIDL_FLAG_DONT_VERIFY|0x00010691"),
+        ("14692", "CSIDL_FLAG_DONT_VERIFY|0x00010692"),
+        ("14693", "CSIDL_FLAG_DONT_VERIFY|0x00010693"),
+        ("14694", "CSIDL_FLAG_DONT_VERIFY|0x00010694"),
+        ("14695", "CSIDL_FLAG_DONT_VERIFY|0x00010695"),
+        ("14696", "CSIDL_FLAG_DONT_VERIFY|0x00010696"),
+        ("14697", "CSIDL_FLAG_DONT_VERIFY|0x00010697"),
+        ("14698", "CSIDL_FLAG_DONT_VERIFY|0x00010698"),
+        ("14699", "CSIDL_FLAG_DONT_VERIFY|0x00010699"),
+        ("14700", "CSIDL_FLAG_DONT_VERIFY|0x00010700"),
+        ("14701", "CSIDL_FLAG_DONT_VERIFY|0x00010701"),
+        ("14702", "CSIDL_FLAG_DONT_VERIFY|0x00010702"),
+        ("14703", "CSIDL_FLAG_DONT_VERIFY|0x00010703"),
+        ("14704", "CSIDL_FLAG_DONT_VERIFY|0x00010704"),
+        ("14705", "CSIDL_FLAG_DONT_VERIFY|0x00010705"),
+        ("14706", "CSIDL_FLAG_DONT_VERIFY|0x00010706"),
+        ("14707", "CSIDL_FLAG_DONT_VERIFY|0x00010707"),
+        ("14708", "CSIDL_FLAG_DONT_VERIFY|0x00010708"),
+        ("14709", "CSIDL_FLAG_DONT_VERIFY|0x00010709"),
+        ("14710", "CSIDL_FLAG_DONT_VERIFY|0x00010710"),
+        ("14711", "CSIDL_FLAG_DONT_VERIFY|0x00010711"),
+        ("14712", "CSIDL_FLAG_DONT_VERIFY|0x00010712"),
+        ("14713", "CSIDL_FLAG_DONT_VERIFY|0x00010713"),
+        ("14714", "CSIDL_FLAG_DONT_VERIFY|0x00010714"),
+        ("14715", "CSIDL_FLAG_DONT_VERIFY|0x00010715"),
+        ("14716", "CSIDL_FLAG_DONT_VERIFY|0x00010716"),
+        ("14717", "CSIDL_FLAG_DONT_VERIFY|0x00010717"),
+        ("14718", "CSIDL_FLAG_DONT_VERIFY|0x00010718"),
+        ("14719", "CSIDL_FLAG_DONT_VERIFY|0x00010719"),
+        ("14720", "CSIDL_FLAG_DONT_VERIFY|0x00010720"),
+        ("14721", "CSIDL_FLAG_DONT_VERIFY|0x00010721"),
+        ("14722", "CSIDL_FLAG_DONT_VERIFY|0x00010722"),
+        ("14723", "CSIDL_FLAG_DONT_VERIFY|0x00010723"),
+        ("14724", "CSIDL_FLAG_DONT_VERIFY|0x00010724"),
+        ("14725", "CSIDL_FLAG_DONT_VERIFY|0x00010725"),
+        ("14726", "CSIDL_FLAG_DONT_VERIFY|0x00010726"),
+        ("14727", "CSIDL_FLAG_DONT_VERIFY|0x00010727"),
+        ("14728", "CSIDL_FLAG_DONT_VERIFY|0x00010728"),
+        ("14729", "CSIDL_FLAG_DONT_VERIFY|0x00010729"),
+        ("14730", "CSIDL_FLAG_DONT_VERIFY|0x00010730"),
+        ("14731", "CSIDL_FLAG_DONT_VERIFY|0x00010731"),
+        ("14732", "CSIDL_FLAG_DONT_VERIFY|0x00010732"),
+        ("14733", "CSIDL_FLAG_DONT_VERIFY|0x00010733"),
+        ("14734", "CSIDL_FLAG_DONT_VERIFY|0x00010734"),
+        ("14735", "CSIDL_FLAG_DONT_VERIFY|0x00010735"),
+        ("14736", "CSIDL_FLAG_DONT_VERIFY|0x00010736"),
+        ("14737", "CSIDL_FLAG_DONT_VERIFY|0x00010737"),
+        ("14738", "CSIDL_FLAG_DONT_VERIFY|0x00010738"),
+        ("14739", "CSIDL_FLAG_DONT_VERIFY|0x00010739"),
+        ("14740", "CSIDL_FLAG_DONT_VERIFY|0x00010740"),
+        ("14741", "CSIDL_FLAG_DONT_VERIFY|0x00010741"),
+        ("14742", "CSIDL_FLAG_DONT_VERIFY|0x00010742"),
+        ("14743", "CSIDL_FLAG_DONT_VERIFY|0x00010743"),
+        ("14744", "CSIDL_FLAG_DONT_VERIFY|0x00010744"),
+        ("14745", "CSIDL_FLAG_DONT_VERIFY|0x00010745"),
+        ("14746", "CSIDL_FLAG_DONT_VERIFY|0x00010746"),
+        ("14747", "CSIDL_FLAG_DONT_VERIFY|0x00010747"),
+        ("14748", "CSIDL_FLAG_DONT_VERIFY|0x00010748"),
+        ("14749", "CSIDL_FLAG_DONT_VERIFY|0x00010749"),
+        ("14750", "CSIDL_FLAG_DONT_VERIFY|0x00010750"),
+        ("14751", "CSIDL_FLAG_DONT_VERIFY|0x00010751"),
+        ("14752", "CSIDL_FLAG_DONT_VERIFY|0x00010752"),
+        ("14753", "CSIDL_FLAG_DONT_VERIFY|0x00010753"),
+        ("14754", "CSIDL_FLAG_DONT_VERIFY|0x00010754"),
+        ("14755", "CSIDL_FLAG_DONT_VERIFY|0x00010755"),
+        ("14756", "CSIDL_FLAG_DONT_VERIFY|0x00010756"),
+        ("14757", "CSIDL_FLAG_DONT_VERIFY|0x00010757"),
+        ("14758", "CSIDL_FLAG_DONT_VERIFY|0x00010758"),
+        ("14759", "CSIDL_FLAG_DONT_VERIFY|0x00010759"),
+        ("14760", "CSIDL_FLAG_DONT_VERIFY|0x00010760"),
+        ("14761", "CSIDL_FLAG_DONT_VERIFY|0x00010761"),
+        ("14762", "CSIDL_FLAG_DONT_VERIFY|0x00010762"),
+        ("14763", "CSIDL_FLAG_DONT_VERIFY|0x00010763"),
+        ("14764", "CSIDL_FLAG_DONT_VERIFY|0x00010764"),
+        ("14765", "CSIDL_FLAG_DONT_VERIFY|0x00010765"),
+        ("14766", "CSIDL_FLAG_DONT_VERIFY|0x00010766"),
+        ("14767", "CSIDL_FLAG_DONT_VERIFY|0x00010767"),
+        ("14768", "CSIDL_FLAG_DONT_VERIFY|0x00010768"),
+        ("14769", "CSIDL_FLAG_DONT_VERIFY|0x00010769"),
+        ("14770", "CSIDL_FLAG_DONT_VERIFY|0x00010770"),
+        ("14771", "CSIDL_FLAG_DONT_VERIFY|0x00010771"),
+        ("14772", "CSIDL_FLAG_DONT_VERIFY|0x00010772"),
+        ("14773", "CSIDL_FLAG_DONT_VERIFY|0x00010773"),
+        ("14774", "CSIDL_FLAG_DONT_VERIFY|0x00010774"),
+        ("14775", "CSIDL_FLAG_DONT_VERIFY|0x00010775"),
+        ("14776", "CSIDL_FLAG_DONT_VERIFY|0x00010776"),
+        ("14777", "CSIDL_FLAG_DONT_VERIFY|0x00010777"),
+        ("14778", "CSIDL_FLAG_DONT_VERIFY|0x00010778"),
+        ("14779", "CSIDL_FLAG_DONT_VERIFY|0x00010779"),
+        ("14780", "CSIDL_FLAG_DONT_VERIFY|0x00010780"),
+        ("14781", "CSIDL_FLAG_DONT_VERIFY|0x00010781"),
+        ("14782", "CSIDL_FLAG_DONT_VERIFY|0x00010782"),
+        ("14783", "CSIDL_FLAG_DONT_VERIFY|0x00010783"),
+        ("14784", "CSIDL_FLAG_DONT_VERIFY|0x00010784"),
+        ("14785", "CSIDL_FLAG_DONT_VERIFY|0x00010785"),
+        ("14786", "CSIDL_FLAG_DONT_VERIFY|0x00010786"),
+        ("14787", "CSIDL_FLAG_DONT_VERIFY|0x00010787"),
+        ("14788", "CSIDL_FLAG_DONT_VERIFY|0x00010788"),
+        ("14789", "CSIDL_FLAG_DONT_VERIFY|0x00010789"),
+        ("14790", "CSIDL_FLAG_DONT_VERIFY|0x00010790"),
+        ("14791", "CSIDL_FLAG_DONT_VERIFY|0x00010791"),
+        ("14792", "CSIDL_FLAG_DONT_VERIFY|0x00010792"),
+        ("14793", "CSIDL_FLAG_DONT_VERIFY|0x00010793"),
+        ("14794", "CSIDL_FLAG_DONT_VERIFY|0x00010794"),
+        ("14795", "CSIDL_FLAG_DONT_VERIFY|0x00010795"),
+        ("14796", "CSIDL_FLAG_DONT_VERIFY|0x00010796"),
+        ("14797", "CSIDL_FLAG_DONT_VERIFY|0x00010797"),
+        ("14798", "CSIDL_FLAG_DONT_VERIFY|0x00010798"),
+        ("14799", "CSIDL_FLAG_DONT_VERIFY|0x00010799"),
+        ("14800", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010000"),
+        ("14801", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010001"),
+        ("14802", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010002"),
+        ("14803", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010003"),
+        ("14804", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010004"),
+        ("14805", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010005"),
+        ("14806", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010006"),
+        ("14807", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010007"),
+        ("14808", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010008"),
+        ("14809", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010009"),
+        ("14810", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010010"),
+        ("14811", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010011"),
+        ("14812", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010012"),
+        ("14813", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010013"),
+        ("14814", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010014"),
+        ("14815", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010015"),
+        ("14816", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010016"),
+        ("14817", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010017"),
+        ("14818", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010018"),
+        ("14819", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010019"),
+        ("14820", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010020"),
+        ("14821", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010021"),
+        ("14822", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010022"),
+        ("14823", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010023"),
+        ("14824", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010024"),
+        ("14825", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010025"),
+        ("14826", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010026"),
+        ("14827", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010027"),
+        ("14828", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010028"),
+        ("14829", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010029"),
+        ("14830", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010030"),
+        ("14831", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010031"),
+        ("14832", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010032"),
+        ("14833", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010033"),
+        ("14834", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010034"),
+        ("14835", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010035"),
+        ("14836", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010036"),
+        ("14837", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010037"),
+        ("14838", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010038"),
+        ("14839", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010039"),
+        ("14840", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010040"),
+        ("14841", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010041"),
+        ("14842", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010042"),
+        ("14843", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010043"),
+        ("14844", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010044"),
+        ("14845", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010045"),
+        ("14846", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010046"),
+        ("14847", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010047"),
+        ("14848", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010048"),
+        ("14849", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010049"),
+        ("14850", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010050"),
+        ("14851", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010051"),
+        ("14852", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010052"),
+        ("14853", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010053"),
+        ("14854", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010054"),
+        ("14855", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010055"),
+        ("14856", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010056"),
+        ("14857", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010057"),
+        ("14858", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010058"),
+        ("14859", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010059"),
+        ("14860", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010060"),
+        ("14861", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010061"),
+        ("14862", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010062"),
+        ("14863", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010063"),
+        ("14864", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010064"),
+        ("14865", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010065"),
+        ("14866", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010066"),
+        ("14867", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010067"),
+        ("14868", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010068"),
+        ("14869", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010069"),
+        ("14870", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010070"),
+        ("14871", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010071"),
+        ("14872", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010072"),
+        ("14873", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010073"),
+        ("14874", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010074"),
+        ("14875", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010075"),
+        ("14876", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010076"),
+        ("14877", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010077"),
+        ("14878", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010078"),
+        ("14879", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010079"),
+        ("14880", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010080"),
+        ("14881", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010081"),
+        ("14882", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010082"),
+        ("14883", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010083"),
+        ("14884", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010084"),
+        ("14885", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010085"),
+        ("14886", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010086"),
+        ("14887", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010087"),
+        ("14888", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010088"),
+        ("14889", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010089"),
+        ("14890", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010090"),
+        ("14891", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010091"),
+        ("14892", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010092"),
+        ("14893", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010093"),
+        ("14894", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010094"),
+        ("14895", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010095"),
+        ("14896", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010096"),
+        ("14897", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010097"),
+        ("14898", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010098"),
+        ("14899", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010099"),
+        ("14900", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010100"),
+        ("14901", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010101"),
+        ("14902", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010102"),
+        ("14903", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010103"),
+        ("14904", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010104"),
+        ("14905", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010105"),
+        ("14906", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010106"),
+        ("14907", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010107"),
+        ("14908", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010108"),
+        ("14909", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010109"),
+        ("14910", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010110"),
+        ("14911", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010111"),
+        ("14912", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010112"),
+        ("14913", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010113"),
+        ("14914", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010114"),
+        ("14915", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010115"),
+        ("14916", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010116"),
+        ("14917", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010117"),
+        ("14918", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010118"),
+        ("14919", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010119"),
+        ("14920", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010120"),
+        ("14921", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010121"),
+        ("14922", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010122"),
+        ("14923", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010123"),
+        ("14924", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010124"),
+        ("14925", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010125"),
+        ("14926", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010126"),
+        ("14927", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010127"),
+        ("14928", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010128"),
+        ("14929", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010129"),
+        ("14930", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010130"),
+        ("14931", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010131"),
+        ("14932", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010132"),
+        ("14933", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010133"),
+        ("14934", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010134"),
+        ("14935", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010135"),
+        ("14936", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010136"),
+        ("14937", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010137"),
+        ("14938", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010138"),
+        ("14939", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010139"),
+        ("14940", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010140"),
+        ("14941", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010141"),
+        ("14942", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010142"),
+        ("14943", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010143"),
+        ("14944", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010144"),
+        ("14945", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010145"),
+        ("14946", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010146"),
+        ("14947", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010147"),
+        ("14948", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010148"),
+        ("14949", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010149"),
+        ("14950", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010150"),
+        ("14951", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010151"),
+        ("14952", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010152"),
+        ("14953", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010153"),
+        ("14954", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010154"),
+        ("14955", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010155"),
+        ("14956", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010156"),
+        ("14957", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010157"),
+        ("14958", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010158"),
+        ("14959", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010159"),
+        ("14960", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010160"),
+        ("14961", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010161"),
+        ("14962", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010162"),
+        ("14963", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010163"),
+        ("14964", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010164"),
+        ("14965", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010165"),
+        ("14966", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010166"),
+        ("14967", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010167"),
+        ("14968", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010168"),
+        ("14969", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010169"),
+        ("14970", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010170"),
+        ("14971", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010171"),
+        ("14972", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010172"),
+        ("14973", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010173"),
+        ("14974", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010174"),
+        ("14975", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010175"),
+        ("14976", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010176"),
+        ("14977", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010177"),
+        ("14978", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010178"),
+        ("14979", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010179"),
+        ("14980", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010180"),
+        ("14981", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010181"),
+        ("14982", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010182"),
+        ("14983", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010183"),
+        ("14984", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010184"),
+        ("14985", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010185"),
+        ("14986", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010186"),
+        ("14987", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010187"),
+        ("14988", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010188"),
+        ("14989", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010189"),
+        ("14990", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010190"),
+        ("14991", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010191"),
+        ("14992", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010192"),
+        ("14993", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010193"),
+        ("14994", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010194"),
+        ("14995", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010195"),
+        ("14996", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010196"),
+        ("14997", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010197"),
+        ("14998", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010198"),
+        ("14999", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00010199"),
+        ("15000", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010000"),
+        ("15001", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010001"),
+        ("15002", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010002"),
+        ("15003", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010003"),
+        ("15004", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010004"),
+        ("15005", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010005"),
+        ("15006", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010006"),
+        ("15007", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010007"),
+        ("15008", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010008"),
+        ("15009", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010009"),
+        ("15010", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010010"),
+        ("15011", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010011"),
+        ("15012", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010012"),
+        ("15013", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010013"),
+        ("15014", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010014"),
+        ("15015", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010015"),
+        ("15016", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010016"),
+        ("15017", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010017"),
+        ("15018", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010018"),
+        ("15019", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010019"),
+        ("15020", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010020"),
+        ("15021", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010021"),
+        ("15022", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010022"),
+        ("15023", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010023"),
+        ("15024", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010024"),
+        ("15025", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010025"),
+        ("15026", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010026"),
+        ("15027", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010027"),
+        ("15028", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010028"),
+        ("15029", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010029"),
+        ("15030", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010030"),
+        ("15031", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010031"),
+        ("15032", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010032"),
+        ("15033", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010033"),
+        ("15034", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010034"),
+        ("15035", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010035"),
+        ("15036", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010036"),
+        ("15037", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010037"),
+        ("15038", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010038"),
+        ("15039", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010039"),
+        ("15040", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010040"),
+        ("15041", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010041"),
+        ("15042", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010042"),
+        ("15043", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010043"),
+        ("15044", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010044"),
+        ("15045", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010045"),
+        ("15046", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010046"),
+        ("15047", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010047"),
+        ("15048", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010048"),
+        ("15049", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010049"),
+        ("15050", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010050"),
+        ("15051", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010051"),
+        ("15052", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010052"),
+        ("15053", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010053"),
+        ("15054", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010054"),
+        ("15055", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010055"),
+        ("15056", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010056"),
+        ("15057", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010057"),
+        ("15058", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010058"),
+        ("15059", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010059"),
+        ("15060", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010060"),
+        ("15061", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010061"),
+        ("15062", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010062"),
+        ("15063", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010063"),
+        ("15064", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010064"),
+        ("15065", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010065"),
+        ("15066", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010066"),
+        ("15067", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010067"),
+        ("15068", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010068"),
+        ("15069", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010069"),
+        ("15070", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010070"),
+        ("15071", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010071"),
+        ("15072", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010072"),
+        ("15073", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010073"),
+        ("15074", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010074"),
+        ("15075", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010075"),
+        ("15076", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010076"),
+        ("15077", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010077"),
+        ("15078", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010078"),
+        ("15079", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010079"),
+        ("15080", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010080"),
+        ("15081", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010081"),
+        ("15082", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010082"),
+        ("15083", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010083"),
+        ("15084", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010084"),
+        ("15085", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010085"),
+        ("15086", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010086"),
+        ("15087", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010087"),
+        ("15088", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010088"),
+        ("15089", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010089"),
+        ("15090", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010090"),
+        ("15091", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010091"),
+        ("15092", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010092"),
+        ("15093", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010093"),
+        ("15094", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010094"),
+        ("15095", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010095"),
+        ("15096", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010096"),
+        ("15097", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010097"),
+        ("15098", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010098"),
+        ("15099", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010099"),
+        ("15100", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010100"),
+        ("15101", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010101"),
+        ("15102", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010102"),
+        ("15103", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010103"),
+        ("15104", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010104"),
+        ("15105", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010105"),
+        ("15106", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010106"),
+        ("15107", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010107"),
+        ("15108", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010108"),
+        ("15109", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010109"),
+        ("15110", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010110"),
+        ("15111", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010111"),
+        ("15112", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010112"),
+        ("15113", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010113"),
+        ("15114", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010114"),
+        ("15115", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010115"),
+        ("15116", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010116"),
+        ("15117", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010117"),
+        ("15118", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010118"),
+        ("15119", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010119"),
+        ("15120", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010120"),
+        ("15121", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010121"),
+        ("15122", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010122"),
+        ("15123", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010123"),
+        ("15124", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010124"),
+        ("15125", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010125"),
+        ("15126", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010126"),
+        ("15127", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010127"),
+        ("15128", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010128"),
+        ("15129", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010129"),
+        ("15130", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010130"),
+        ("15131", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010131"),
+        ("15132", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010132"),
+        ("15133", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010133"),
+        ("15134", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010134"),
+        ("15135", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010135"),
+        ("15136", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010136"),
+        ("15137", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010137"),
+        ("15138", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010138"),
+        ("15139", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010139"),
+        ("15140", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010140"),
+        ("15141", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010141"),
+        ("15142", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010142"),
+        ("15143", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010143"),
+        ("15144", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010144"),
+        ("15145", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010145"),
+        ("15146", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010146"),
+        ("15147", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010147"),
+        ("15148", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010148"),
+        ("15149", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010149"),
+        ("15150", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010150"),
+        ("15151", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010151"),
+        ("15152", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010152"),
+        ("15153", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010153"),
+        ("15154", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010154"),
+        ("15155", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010155"),
+        ("15156", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010156"),
+        ("15157", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010157"),
+        ("15158", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010158"),
+        ("15159", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010159"),
+        ("15160", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010160"),
+        ("15161", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010161"),
+        ("15162", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010162"),
+        ("15163", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010163"),
+        ("15164", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010164"),
+        ("15165", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010165"),
+        ("15166", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010166"),
+        ("15167", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010167"),
+        ("15168", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010168"),
+        ("15169", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010169"),
+        ("15170", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010170"),
+        ("15171", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010171"),
+        ("15172", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010172"),
+        ("15173", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010173"),
+        ("15174", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010174"),
+        ("15175", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010175"),
+        ("15176", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010176"),
+        ("15177", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010177"),
+        ("15178", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010178"),
+        ("15179", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010179"),
+        ("15180", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010180"),
+        ("15181", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010181"),
+        ("15182", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010182"),
+        ("15183", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010183"),
+        ("15184", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010184"),
+        ("15185", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010185"),
+        ("15186", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010186"),
+        ("15187", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010187"),
+        ("15188", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010188"),
+        ("15189", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010189"),
+        ("15190", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010190"),
+        ("15191", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010191"),
+        ("15192", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010192"),
+        ("15193", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010193"),
+        ("15194", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010194"),
+        ("15195", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010195"),
+        ("15196", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010196"),
+        ("15197", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010197"),
+        ("15198", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010198"),
+        ("15199", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010199"),
+        ("15200", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010200"),
+        ("15201", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010201"),
+        ("15202", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010202"),
+        ("15203", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010203"),
+        ("15204", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010204"),
+        ("15205", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010205"),
+        ("15206", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010206"),
+        ("15207", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010207"),
+        ("15208", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010208"),
+        ("15209", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010209"),
+        ("15210", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010210"),
+        ("15211", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010211"),
+        ("15212", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010212"),
+        ("15213", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010213"),
+        ("15214", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010214"),
+        ("15215", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010215"),
+        ("15216", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010216"),
+        ("15217", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010217"),
+        ("15218", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010218"),
+        ("15219", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010219"),
+        ("15220", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010220"),
+        ("15221", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010221"),
+        ("15222", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010222"),
+        ("15223", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010223"),
+        ("15224", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010224"),
+        ("15225", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010225"),
+        ("15226", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010226"),
+        ("15227", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010227"),
+        ("15228", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010228"),
+        ("15229", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010229"),
+        ("15230", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010230"),
+        ("15231", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010231"),
+        ("15232", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010232"),
+        ("15233", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010233"),
+        ("15234", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010234"),
+        ("15235", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010235"),
+        ("15236", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010236"),
+        ("15237", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010237"),
+        ("15238", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010238"),
+        ("15239", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010239"),
+        ("15240", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010240"),
+        ("15241", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010241"),
+        ("15242", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010242"),
+        ("15243", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010243"),
+        ("15244", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010244"),
+        ("15245", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010245"),
+        ("15246", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010246"),
+        ("15247", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010247"),
+        ("15248", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010248"),
+        ("15249", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010249"),
+        ("15250", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010250"),
+        ("15251", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010251"),
+        ("15252", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010252"),
+        ("15253", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010253"),
+        ("15254", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010254"),
+        ("15255", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010255"),
+        ("15256", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010256"),
+        ("15257", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010257"),
+        ("15258", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010258"),
+        ("15259", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010259"),
+        ("15260", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010260"),
+        ("15261", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010261"),
+        ("15262", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010262"),
+        ("15263", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010263"),
+        ("15264", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010264"),
+        ("15265", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010265"),
+        ("15266", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010266"),
+        ("15267", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010267"),
+        ("15268", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010268"),
+        ("15269", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010269"),
+        ("15270", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010270"),
+        ("15271", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010271"),
+        ("15272", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010272"),
+        ("15273", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010273"),
+        ("15274", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010274"),
+        ("15275", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010275"),
+        ("15276", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010276"),
+        ("15277", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010277"),
+        ("15278", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010278"),
+        ("15279", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010279"),
+        ("15280", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010280"),
+        ("15281", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010281"),
+        ("15282", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010282"),
+        ("15283", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010283"),
+        ("15284", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010284"),
+        ("15285", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010285"),
+        ("15286", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010286"),
+        ("15287", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010287"),
+        ("15288", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010288"),
+        ("15289", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010289"),
+        ("15290", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010290"),
+        ("15291", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010291"),
+        ("15292", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010292"),
+        ("15293", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010293"),
+        ("15294", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010294"),
+        ("15295", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010295"),
+        ("15296", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010296"),
+        ("15297", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010297"),
+        ("15298", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010298"),
+        ("15299", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010299"),
+        ("15300", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010300"),
+        ("15301", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010301"),
+        ("15302", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010302"),
+        ("15303", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010303"),
+        ("15304", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010304"),
+        ("15305", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010305"),
+        ("15306", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010306"),
+        ("15307", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010307"),
+        ("15308", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010308"),
+        ("15309", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010309"),
+        ("15310", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010310"),
+        ("15311", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010311"),
+        ("15312", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010312"),
+        ("15313", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010313"),
+        ("15314", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010314"),
+        ("15315", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010315"),
+        ("15316", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010316"),
+        ("15317", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010317"),
+        ("15318", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010318"),
+        ("15319", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010319"),
+        ("15320", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010320"),
+        ("15321", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010321"),
+        ("15322", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010322"),
+        ("15323", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010323"),
+        ("15324", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010324"),
+        ("15325", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010325"),
+        ("15326", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010326"),
+        ("15327", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010327"),
+        ("15328", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010328"),
+        ("15329", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010329"),
+        ("15330", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010330"),
+        ("15331", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010331"),
+        ("15332", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010332"),
+        ("15333", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010333"),
+        ("15334", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010334"),
+        ("15335", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010335"),
+        ("15336", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010336"),
+        ("15337", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010337"),
+        ("15338", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010338"),
+        ("15339", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010339"),
+        ("15340", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010340"),
+        ("15341", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010341"),
+        ("15342", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010342"),
+        ("15343", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010343"),
+        ("15344", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010344"),
+        ("15345", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010345"),
+        ("15346", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010346"),
+        ("15347", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010347"),
+        ("15348", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010348"),
+        ("15349", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010349"),
+        ("15350", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010350"),
+        ("15351", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010351"),
+        ("15352", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010352"),
+        ("15353", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010353"),
+        ("15354", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010354"),
+        ("15355", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010355"),
+        ("15356", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010356"),
+        ("15357", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010357"),
+        ("15358", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010358"),
+        ("15359", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010359"),
+        ("15360", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010360"),
+        ("15361", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010361"),
+        ("15362", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010362"),
+        ("15363", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010363"),
+        ("15364", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010364"),
+        ("15365", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010365"),
+        ("15366", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010366"),
+        ("15367", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010367"),
+        ("15368", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010368"),
+        ("15369", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010369"),
+        ("15370", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010370"),
+        ("15371", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010371"),
+        ("15372", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010372"),
+        ("15373", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010373"),
+        ("15374", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010374"),
+        ("15375", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010375"),
+        ("15376", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010376"),
+        ("15377", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010377"),
+        ("15378", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010378"),
+        ("15379", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010379"),
+        ("15380", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010380"),
+        ("15381", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010381"),
+        ("15382", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010382"),
+        ("15383", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010383"),
+        ("15384", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010384"),
+        ("15385", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010385"),
+        ("15386", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010386"),
+        ("15387", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010387"),
+        ("15388", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010388"),
+        ("15389", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010389"),
+        ("15390", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010390"),
+        ("15391", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010391"),
+        ("15392", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010392"),
+        ("15393", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010393"),
+        ("15394", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010394"),
+        ("15395", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010395"),
+        ("15396", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010396"),
+        ("15397", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010397"),
+        ("15398", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010398"),
+        ("15399", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010399"),
+        ("15400", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010400"),
+        ("15401", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010401"),
+        ("15402", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010402"),
+        ("15403", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010403"),
+        ("15404", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010404"),
+        ("15405", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010405"),
+        ("15406", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010406"),
+        ("15407", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010407"),
+        ("15408", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010408"),
+        ("15409", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010409"),
+        ("15410", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010410"),
+        ("15411", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010411"),
+        ("15412", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010412"),
+        ("15413", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010413"),
+        ("15414", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010414"),
+        ("15415", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010415"),
+        ("15416", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010416"),
+        ("15417", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010417"),
+        ("15418", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010418"),
+        ("15419", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010419"),
+        ("15420", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010420"),
+        ("15421", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010421"),
+        ("15422", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010422"),
+        ("15423", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010423"),
+        ("15424", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010424"),
+        ("15425", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010425"),
+        ("15426", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010426"),
+        ("15427", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010427"),
+        ("15428", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010428"),
+        ("15429", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010429"),
+        ("15430", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010430"),
+        ("15431", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010431"),
+        ("15432", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010432"),
+        ("15433", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010433"),
+        ("15434", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010434"),
+        ("15435", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010435"),
+        ("15436", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010436"),
+        ("15437", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010437"),
+        ("15438", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010438"),
+        ("15439", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010439"),
+        ("15440", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010440"),
+        ("15441", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010441"),
+        ("15442", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010442"),
+        ("15443", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010443"),
+        ("15444", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010444"),
+        ("15445", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010445"),
+        ("15446", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010446"),
+        ("15447", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010447"),
+        ("15448", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010448"),
+        ("15449", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010449"),
+        ("15450", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010450"),
+        ("15451", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010451"),
+        ("15452", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010452"),
+        ("15453", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010453"),
+        ("15454", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010454"),
+        ("15455", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010455"),
+        ("15456", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010456"),
+        ("15457", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010457"),
+        ("15458", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010458"),
+        ("15459", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010459"),
+        ("15460", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010460"),
+        ("15461", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010461"),
+        ("15462", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010462"),
+        ("15463", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010463"),
+        ("15464", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010464"),
+        ("15465", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010465"),
+        ("15466", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010466"),
+        ("15467", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010467"),
+        ("15468", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010468"),
+        ("15469", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010469"),
+        ("15470", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010470"),
+        ("15471", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010471"),
+        ("15472", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010472"),
+        ("15473", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010473"),
+        ("15474", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010474"),
+        ("15475", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010475"),
+        ("15476", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010476"),
+        ("15477", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010477"),
+        ("15478", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010478"),
+        ("15479", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010479"),
+        ("15480", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010480"),
+        ("15481", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010481"),
+        ("15482", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010482"),
+        ("15483", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010483"),
+        ("15484", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010484"),
+        ("15485", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010485"),
+        ("15486", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010486"),
+        ("15487", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010487"),
+        ("15488", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010488"),
+        ("15489", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010489"),
+        ("15490", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010490"),
+        ("15491", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010491"),
+        ("15492", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010492"),
+        ("15493", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010493"),
+        ("15494", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010494"),
+        ("15495", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010495"),
+        ("15496", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010496"),
+        ("15497", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010497"),
+        ("15498", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010498"),
+        ("15499", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010499"),
+        ("15500", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010500"),
+        ("15501", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010501"),
+        ("15502", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010502"),
+        ("15503", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010503"),
+        ("15504", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010504"),
+        ("15505", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010505"),
+        ("15506", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010506"),
+        ("15507", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010507"),
+        ("15508", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010508"),
+        ("15509", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010509"),
+        ("15510", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010510"),
+        ("15511", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010511"),
+        ("15512", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010512"),
+        ("15513", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010513"),
+        ("15514", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010514"),
+        ("15515", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010515"),
+        ("15516", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010516"),
+        ("15517", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010517"),
+        ("15518", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010518"),
+        ("15519", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010519"),
+        ("15520", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010520"),
+        ("15521", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010521"),
+        ("15522", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010522"),
+        ("15523", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010523"),
+        ("15524", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010524"),
+        ("15525", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010525"),
+        ("15526", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010526"),
+        ("15527", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010527"),
+        ("15528", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010528"),
+        ("15529", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010529"),
+        ("15530", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010530"),
+        ("15531", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010531"),
+        ("15532", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010532"),
+        ("15533", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010533"),
+        ("15534", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010534"),
+        ("15535", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010535"),
+        ("15536", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010536"),
+        ("15537", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010537"),
+        ("15538", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010538"),
+        ("15539", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010539"),
+        ("15540", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010540"),
+        ("15541", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010541"),
+        ("15542", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010542"),
+        ("15543", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010543"),
+        ("15544", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010544"),
+        ("15545", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010545"),
+        ("15546", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010546"),
+        ("15547", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010547"),
+        ("15548", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010548"),
+        ("15549", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010549"),
+        ("15550", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010550"),
+        ("15551", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010551"),
+        ("15552", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010552"),
+        ("15553", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010553"),
+        ("15554", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010554"),
+        ("15555", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010555"),
+        ("15556", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010556"),
+        ("15557", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010557"),
+        ("15558", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010558"),
+        ("15559", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010559"),
+        ("15560", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010560"),
+        ("15561", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010561"),
+        ("15562", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010562"),
+        ("15563", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010563"),
+        ("15564", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010564"),
+        ("15565", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010565"),
+        ("15566", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010566"),
+        ("15567", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010567"),
+        ("15568", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010568"),
+        ("15569", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010569"),
+        ("15570", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010570"),
+        ("15571", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010571"),
+        ("15572", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010572"),
+        ("15573", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010573"),
+        ("15574", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010574"),
+        ("15575", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010575"),
+        ("15576", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010576"),
+        ("15577", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010577"),
+        ("15578", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010578"),
+        ("15579", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010579"),
+        ("15580", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010580"),
+        ("15581", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010581"),
+        ("15582", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010582"),
+        ("15583", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010583"),
+        ("15584", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010584"),
+        ("15585", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010585"),
+        ("15586", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010586"),
+        ("15587", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010587"),
+        ("15588", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010588"),
+        ("15589", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010589"),
+        ("15590", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010590"),
+        ("15591", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010591"),
+        ("15592", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010592"),
+        ("15593", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010593"),
+        ("15594", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010594"),
+        ("15595", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010595"),
+        ("15596", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010596"),
+        ("15597", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010597"),
+        ("15598", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010598"),
+        ("15599", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010599"),
+        ("15600", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010600"),
+        ("15601", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010601"),
+        ("15602", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010602"),
+        ("15603", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010603"),
+        ("15604", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010604"),
+        ("15605", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010605"),
+        ("15606", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010606"),
+        ("15607", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010607"),
+        ("15608", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010608"),
+        ("15609", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010609"),
+        ("15610", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010610"),
+        ("15611", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010611"),
+        ("15612", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010612"),
+        ("15613", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010613"),
+        ("15614", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010614"),
+        ("15615", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010615"),
+        ("15616", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010616"),
+        ("15617", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010617"),
+        ("15618", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010618"),
+        ("15619", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010619"),
+        ("15620", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010620"),
+        ("15621", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010621"),
+        ("15622", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010622"),
+        ("15623", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010623"),
+        ("15624", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010624"),
+        ("15625", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010625"),
+        ("15626", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010626"),
+        ("15627", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010627"),
+        ("15628", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010628"),
+        ("15629", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010629"),
+        ("15630", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010630"),
+        ("15631", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010631"),
+        ("15632", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010632"),
+        ("15633", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010633"),
+        ("15634", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010634"),
+        ("15635", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010635"),
+        ("15636", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010636"),
+        ("15637", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010637"),
+        ("15638", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010638"),
+        ("15639", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010639"),
+        ("15640", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010640"),
+        ("15641", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010641"),
+        ("15642", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010642"),
+        ("15643", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010643"),
+        ("15644", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010644"),
+        ("15645", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010645"),
+        ("15646", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010646"),
+        ("15647", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010647"),
+        ("15648", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010648"),
+        ("15649", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010649"),
+        ("15650", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010650"),
+        ("15651", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010651"),
+        ("15652", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010652"),
+        ("15653", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010653"),
+        ("15654", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010654"),
+        ("15655", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010655"),
+        ("15656", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010656"),
+        ("15657", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010657"),
+        ("15658", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010658"),
+        ("15659", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010659"),
+        ("15660", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010660"),
+        ("15661", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010661"),
+        ("15662", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010662"),
+        ("15663", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010663"),
+        ("15664", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010664"),
+        ("15665", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010665"),
+        ("15666", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010666"),
+        ("15667", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010667"),
+        ("15668", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010668"),
+        ("15669", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010669"),
+        ("15670", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010670"),
+        ("15671", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010671"),
+        ("15672", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010672"),
+        ("15673", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010673"),
+        ("15674", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010674"),
+        ("15675", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010675"),
+        ("15676", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010676"),
+        ("15677", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010677"),
+        ("15678", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010678"),
+        ("15679", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010679"),
+        ("15680", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010680"),
+        ("15681", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010681"),
+        ("15682", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010682"),
+        ("15683", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010683"),
+        ("15684", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010684"),
+        ("15685", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010685"),
+        ("15686", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010686"),
+        ("15687", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010687"),
+        ("15688", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010688"),
+        ("15689", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010689"),
+        ("15690", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010690"),
+        ("15691", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010691"),
+        ("15692", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010692"),
+        ("15693", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010693"),
+        ("15694", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010694"),
+        ("15695", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010695"),
+        ("15696", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010696"),
+        ("15697", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010697"),
+        ("15698", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010698"),
+        ("15699", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010699"),
+        ("15700", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010700"),
+        ("15701", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010701"),
+        ("15702", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010702"),
+        ("15703", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010703"),
+        ("15704", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010704"),
+        ("15705", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010705"),
+        ("15706", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010706"),
+        ("15707", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010707"),
+        ("15708", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010708"),
+        ("15709", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010709"),
+        ("15710", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010710"),
+        ("15711", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010711"),
+        ("15712", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010712"),
+        ("15713", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010713"),
+        ("15714", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010714"),
+        ("15715", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010715"),
+        ("15716", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010716"),
+        ("15717", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010717"),
+        ("15718", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010718"),
+        ("15719", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010719"),
+        ("15720", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010720"),
+        ("15721", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010721"),
+        ("15722", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010722"),
+        ("15723", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010723"),
+        ("15724", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010724"),
+        ("15725", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010725"),
+        ("15726", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010726"),
+        ("15727", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010727"),
+        ("15728", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010728"),
+        ("15729", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010729"),
+        ("15730", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010730"),
+        ("15731", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010731"),
+        ("15732", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010732"),
+        ("15733", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010733"),
+        ("15734", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010734"),
+        ("15735", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010735"),
+        ("15736", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010736"),
+        ("15737", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010737"),
+        ("15738", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010738"),
+        ("15739", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010739"),
+        ("15740", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010740"),
+        ("15741", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010741"),
+        ("15742", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010742"),
+        ("15743", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010743"),
+        ("15744", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010744"),
+        ("15745", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010745"),
+        ("15746", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010746"),
+        ("15747", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010747"),
+        ("15748", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010748"),
+        ("15749", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010749"),
+        ("15750", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010750"),
+        ("15751", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010751"),
+        ("15752", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010752"),
+        ("15753", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010753"),
+        ("15754", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010754"),
+        ("15755", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010755"),
+        ("15756", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010756"),
+        ("15757", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010757"),
+        ("15758", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010758"),
+        ("15759", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010759"),
+        ("15760", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010760"),
+        ("15761", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010761"),
+        ("15762", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010762"),
+        ("15763", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010763"),
+        ("15764", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010764"),
+        ("15765", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010765"),
+        ("15766", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010766"),
+        ("15767", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010767"),
+        ("15768", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010768"),
+        ("15769", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010769"),
+        ("15770", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010770"),
+        ("15771", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010771"),
+        ("15772", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010772"),
+        ("15773", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010773"),
+        ("15774", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010774"),
+        ("15775", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010775"),
+        ("15776", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010776"),
+        ("15777", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010777"),
+        ("15778", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010778"),
+        ("15779", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010779"),
+        ("15780", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010780"),
+        ("15781", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010781"),
+        ("15782", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010782"),
+        ("15783", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010783"),
+        ("15784", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010784"),
+        ("15785", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010785"),
+        ("15786", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010786"),
+        ("15787", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010787"),
+        ("15788", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010788"),
+        ("15789", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010789"),
+        ("15790", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010790"),
+        ("15791", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010791"),
+        ("15792", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010792"),
+        ("15793", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010793"),
+        ("15794", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010794"),
+        ("15795", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010795"),
+        ("15796", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010796"),
+        ("15797", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010797"),
+        ("15798", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010798"),
+        ("15799", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010799"),
+        ("15800", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010000"),
+        ("15801", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010001"),
+        ("15802", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010002"),
+        ("15803", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010003"),
+        ("15804", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010004"),
+        ("15805", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010005"),
+        ("15806", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010006"),
+        ("15807", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010007"),
+        ("15808", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010008"),
+        ("15809", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010009"),
+        ("15810", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010010"),
+        ("15811", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010011"),
+        ("15812", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010012"),
+        ("15813", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010013"),
+        ("15814", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010014"),
+        ("15815", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010015"),
+        ("15816", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010016"),
+        ("15817", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010017"),
+        ("15818", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010018"),
+        ("15819", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010019"),
+        ("15820", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010020"),
+        ("15821", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010021"),
+        ("15822", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010022"),
+        ("15823", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010023"),
+        ("15824", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010024"),
+        ("15825", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010025"),
+        ("15826", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010026"),
+        ("15827", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010027"),
+        ("15828", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010028"),
+        ("15829", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010029"),
+        ("15830", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010030"),
+        ("15831", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010031"),
+        ("15832", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010032"),
+        ("15833", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010033"),
+        ("15834", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010034"),
+        ("15835", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010035"),
+        ("15836", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010036"),
+        ("15837", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010037"),
+        ("15838", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010038"),
+        ("15839", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010039"),
+        ("15840", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010040"),
+        ("15841", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010041"),
+        ("15842", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010042"),
+        ("15843", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010043"),
+        ("15844", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010044"),
+        ("15845", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010045"),
+        ("15846", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010046"),
+        ("15847", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010047"),
+        ("15848", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010048"),
+        ("15849", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010049"),
+        ("15850", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010050"),
+        ("15851", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010051"),
+        ("15852", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010052"),
+        ("15853", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010053"),
+        ("15854", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010054"),
+        ("15855", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010055"),
+        ("15856", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010056"),
+        ("15857", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010057"),
+        ("15858", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010058"),
+        ("15859", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010059"),
+        ("15860", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010060"),
+        ("15861", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010061"),
+        ("15862", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010062"),
+        ("15863", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010063"),
+        ("15864", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010064"),
+        ("15865", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010065"),
+        ("15866", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010066"),
+        ("15867", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010067"),
+        ("15868", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010068"),
+        ("15869", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010069"),
+        ("15870", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010070"),
+        ("15871", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010071"),
+        ("15872", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010072"),
+        ("15873", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010073"),
+        ("15874", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010074"),
+        ("15875", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010075"),
+        ("15876", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010076"),
+        ("15877", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010077"),
+        ("15878", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010078"),
+        ("15879", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010079"),
+        ("15880", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010080"),
+        ("15881", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010081"),
+        ("15882", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010082"),
+        ("15883", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010083"),
+        ("15884", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010084"),
+        ("15885", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010085"),
+        ("15886", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010086"),
+        ("15887", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010087"),
+        ("15888", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010088"),
+        ("15889", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010089"),
+        ("15890", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010090"),
+        ("15891", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010091"),
+        ("15892", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010092"),
+        ("15893", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010093"),
+        ("15894", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010094"),
+        ("15895", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010095"),
+        ("15896", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010096"),
+        ("15897", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010097"),
+        ("15898", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010098"),
+        ("15899", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010099"),
+        ("15900", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010100"),
+        ("15901", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010101"),
+        ("15902", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010102"),
+        ("15903", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010103"),
+        ("15904", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010104"),
+        ("15905", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010105"),
+        ("15906", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010106"),
+        ("15907", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010107"),
+        ("15908", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010108"),
+        ("15909", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010109"),
+        ("15910", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010110"),
+        ("15911", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010111"),
+        ("15912", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010112"),
+        ("15913", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010113"),
+        ("15914", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010114"),
+        ("15915", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010115"),
+        ("15916", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010116"),
+        ("15917", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010117"),
+        ("15918", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010118"),
+        ("15919", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010119"),
+        ("15920", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010120"),
+        ("15921", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010121"),
+        ("15922", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010122"),
+        ("15923", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010123"),
+        ("15924", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010124"),
+        ("15925", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010125"),
+        ("15926", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010126"),
+        ("15927", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010127"),
+        ("15928", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010128"),
+        ("15929", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010129"),
+        ("15930", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010130"),
+        ("15931", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010131"),
+        ("15932", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010132"),
+        ("15933", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010133"),
+        ("15934", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010134"),
+        ("15935", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010135"),
+        ("15936", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010136"),
+        ("15937", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010137"),
+        ("15938", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010138"),
+        ("15939", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010139"),
+        ("15940", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010140"),
+        ("15941", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010141"),
+        ("15942", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010142"),
+        ("15943", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010143"),
+        ("15944", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010144"),
+        ("15945", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010145"),
+        ("15946", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010146"),
+        ("15947", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010147"),
+        ("15948", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010148"),
+        ("15949", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010149"),
+        ("15950", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010150"),
+        ("15951", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010151"),
+        ("15952", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010152"),
+        ("15953", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010153"),
+        ("15954", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010154"),
+        ("15955", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010155"),
+        ("15956", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010156"),
+        ("15957", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010157"),
+        ("15958", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010158"),
+        ("15959", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010159"),
+        ("15960", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010160"),
+        ("15961", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010161"),
+        ("15962", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010162"),
+        ("15963", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010163"),
+        ("15964", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010164"),
+        ("15965", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010165"),
+        ("15966", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010166"),
+        ("15967", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010167"),
+        ("15968", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010168"),
+        ("15969", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010169"),
+        ("15970", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010170"),
+        ("15971", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010171"),
+        ("15972", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010172"),
+        ("15973", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010173"),
+        ("15974", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010174"),
+        ("15975", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010175"),
+        ("15976", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010176"),
+        ("15977", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010177"),
+        ("15978", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010178"),
+        ("15979", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010179"),
+        ("15980", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010180"),
+        ("15981", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010181"),
+        ("15982", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010182"),
+        ("15983", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010183"),
+        ("15984", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010184"),
+        ("15985", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010185"),
+        ("15986", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010186"),
+        ("15987", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010187"),
+        ("15988", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010188"),
+        ("15989", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010189"),
+        ("15990", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010190"),
+        ("15991", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010191"),
+        ("15992", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010192"),
+        ("15993", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010193"),
+        ("15994", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010194"),
+        ("15995", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010195"),
+        ("15996", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010196"),
+        ("15997", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010197"),
+        ("15998", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010198"),
+        ("15999", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00010199"),
+        ("16000", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010000"),
+        ("16001", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010001"),
+        ("16002", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010002"),
+        ("16003", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010003"),
+        ("16004", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010004"),
+        ("16005", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010005"),
+        ("16006", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010006"),
+        ("16007", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010007"),
+        ("16008", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010008"),
+        ("16009", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010009"),
+        ("16010", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010010"),
+        ("16011", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010011"),
+        ("16012", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010012"),
+        ("16013", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010013"),
+        ("16014", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010014"),
+        ("16015", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010015"),
+        ("16016", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010016"),
+        ("16017", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010017"),
+        ("16018", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010018"),
+        ("16019", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010019"),
+        ("16020", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010020"),
+        ("16021", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010021"),
+        ("16022", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010022"),
+        ("16023", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010023"),
+        ("16024", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010024"),
+        ("16025", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010025"),
+        ("16026", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010026"),
+        ("16027", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010027"),
+        ("16028", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010028"),
+        ("16029", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010029"),
+        ("16030", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010030"),
+        ("16031", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010031"),
+        ("16032", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010032"),
+        ("16033", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010033"),
+        ("16034", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010034"),
+        ("16035", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010035"),
+        ("16036", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010036"),
+        ("16037", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010037"),
+        ("16038", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010038"),
+        ("16039", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010039"),
+        ("16040", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010040"),
+        ("16041", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010041"),
+        ("16042", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010042"),
+        ("16043", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010043"),
+        ("16044", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010044"),
+        ("16045", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010045"),
+        ("16046", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010046"),
+        ("16047", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010047"),
+        ("16048", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010048"),
+        ("16049", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010049"),
+        ("16050", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010050"),
+        ("16051", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010051"),
+        ("16052", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010052"),
+        ("16053", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010053"),
+        ("16054", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010054"),
+        ("16055", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010055"),
+        ("16056", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010056"),
+        ("16057", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010057"),
+        ("16058", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010058"),
+        ("16059", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010059"),
+        ("16060", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010060"),
+        ("16061", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010061"),
+        ("16062", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010062"),
+        ("16063", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010063"),
+        ("16064", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010064"),
+        ("16065", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010065"),
+        ("16066", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010066"),
+        ("16067", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010067"),
+        ("16068", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010068"),
+        ("16069", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010069"),
+        ("16070", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010070"),
+        ("16071", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010071"),
+        ("16072", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010072"),
+        ("16073", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010073"),
+        ("16074", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010074"),
+        ("16075", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010075"),
+        ("16076", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010076"),
+        ("16077", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010077"),
+        ("16078", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010078"),
+        ("16079", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010079"),
+        ("16080", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010080"),
+        ("16081", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010081"),
+        ("16082", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010082"),
+        ("16083", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010083"),
+        ("16084", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010084"),
+        ("16085", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010085"),
+        ("16086", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010086"),
+        ("16087", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010087"),
+        ("16088", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010088"),
+        ("16089", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010089"),
+        ("16090", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010090"),
+        ("16091", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010091"),
+        ("16092", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010092"),
+        ("16093", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010093"),
+        ("16094", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010094"),
+        ("16095", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010095"),
+        ("16096", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010096"),
+        ("16097", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010097"),
+        ("16098", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010098"),
+        ("16099", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010099"),
+        ("16100", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010100"),
+        ("16101", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010101"),
+        ("16102", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010102"),
+        ("16103", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010103"),
+        ("16104", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010104"),
+        ("16105", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010105"),
+        ("16106", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010106"),
+        ("16107", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010107"),
+        ("16108", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010108"),
+        ("16109", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010109"),
+        ("16110", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010110"),
+        ("16111", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010111"),
+        ("16112", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010112"),
+        ("16113", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010113"),
+        ("16114", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010114"),
+        ("16115", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010115"),
+        ("16116", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010116"),
+        ("16117", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010117"),
+        ("16118", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010118"),
+        ("16119", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010119"),
+        ("16120", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010120"),
+        ("16121", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010121"),
+        ("16122", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010122"),
+        ("16123", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010123"),
+        ("16124", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010124"),
+        ("16125", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010125"),
+        ("16126", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010126"),
+        ("16127", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010127"),
+        ("16128", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010128"),
+        ("16129", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010129"),
+        ("16130", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010130"),
+        ("16131", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010131"),
+        ("16132", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010132"),
+        ("16133", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010133"),
+        ("16134", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010134"),
+        ("16135", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010135"),
+        ("16136", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010136"),
+        ("16137", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010137"),
+        ("16138", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010138"),
+        ("16139", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010139"),
+        ("16140", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010140"),
+        ("16141", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010141"),
+        ("16142", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010142"),
+        ("16143", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010143"),
+        ("16144", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010144"),
+        ("16145", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010145"),
+        ("16146", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010146"),
+        ("16147", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010147"),
+        ("16148", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010148"),
+        ("16149", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010149"),
+        ("16150", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010150"),
+        ("16151", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010151"),
+        ("16152", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010152"),
+        ("16153", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010153"),
+        ("16154", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010154"),
+        ("16155", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010155"),
+        ("16156", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010156"),
+        ("16157", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010157"),
+        ("16158", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010158"),
+        ("16159", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010159"),
+        ("16160", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010160"),
+        ("16161", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010161"),
+        ("16162", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010162"),
+        ("16163", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010163"),
+        ("16164", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010164"),
+        ("16165", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010165"),
+        ("16166", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010166"),
+        ("16167", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010167"),
+        ("16168", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010168"),
+        ("16169", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010169"),
+        ("16170", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010170"),
+        ("16171", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010171"),
+        ("16172", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010172"),
+        ("16173", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010173"),
+        ("16174", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010174"),
+        ("16175", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010175"),
+        ("16176", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010176"),
+        ("16177", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010177"),
+        ("16178", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010178"),
+        ("16179", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010179"),
+        ("16180", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010180"),
+        ("16181", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010181"),
+        ("16182", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010182"),
+        ("16183", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010183"),
+        ("16184", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010184"),
+        ("16185", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010185"),
+        ("16186", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010186"),
+        ("16187", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010187"),
+        ("16188", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010188"),
+        ("16189", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010189"),
+        ("16190", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010190"),
+        ("16191", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010191"),
+        ("16192", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010192"),
+        ("16193", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010193"),
+        ("16194", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010194"),
+        ("16195", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010195"),
+        ("16196", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010196"),
+        ("16197", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010197"),
+        ("16198", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010198"),
+        ("16199", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010199"),
+        ("16200", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010200"),
+        ("16201", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010201"),
+        ("16202", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010202"),
+        ("16203", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010203"),
+        ("16204", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010204"),
+        ("16205", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010205"),
+        ("16206", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010206"),
+        ("16207", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010207"),
+        ("16208", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010208"),
+        ("16209", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010209"),
+        ("16210", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010210"),
+        ("16211", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010211"),
+        ("16212", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010212"),
+        ("16213", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010213"),
+        ("16214", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010214"),
+        ("16215", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010215"),
+        ("16216", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010216"),
+        ("16217", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010217"),
+        ("16218", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010218"),
+        ("16219", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010219"),
+        ("16220", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010220"),
+        ("16221", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010221"),
+        ("16222", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010222"),
+        ("16223", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010223"),
+        ("16224", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010224"),
+        ("16225", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010225"),
+        ("16226", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010226"),
+        ("16227", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010227"),
+        ("16228", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010228"),
+        ("16229", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010229"),
+        ("16230", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010230"),
+        ("16231", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010231"),
+        ("16232", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010232"),
+        ("16233", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010233"),
+        ("16234", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010234"),
+        ("16235", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010235"),
+        ("16236", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010236"),
+        ("16237", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010237"),
+        ("16238", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010238"),
+        ("16239", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010239"),
+        ("16240", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010240"),
+        ("16241", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010241"),
+        ("16242", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010242"),
+        ("16243", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010243"),
+        ("16244", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010244"),
+        ("16245", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010245"),
+        ("16246", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010246"),
+        ("16247", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010247"),
+        ("16248", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010248"),
+        ("16249", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010249"),
+        ("16250", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010250"),
+        ("16251", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010251"),
+        ("16252", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010252"),
+        ("16253", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010253"),
+        ("16254", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010254"),
+        ("16255", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010255"),
+        ("16256", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010256"),
+        ("16257", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010257"),
+        ("16258", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010258"),
+        ("16259", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010259"),
+        ("16260", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010260"),
+        ("16261", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010261"),
+        ("16262", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010262"),
+        ("16263", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010263"),
+        ("16264", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010264"),
+        ("16265", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010265"),
+        ("16266", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010266"),
+        ("16267", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010267"),
+        ("16268", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010268"),
+        ("16269", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010269"),
+        ("16270", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010270"),
+        ("16271", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010271"),
+        ("16272", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010272"),
+        ("16273", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010273"),
+        ("16274", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010274"),
+        ("16275", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010275"),
+        ("16276", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010276"),
+        ("16277", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010277"),
+        ("16278", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010278"),
+        ("16279", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010279"),
+        ("16280", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010280"),
+        ("16281", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010281"),
+        ("16282", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010282"),
+        ("16283", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010283"),
+        ("16284", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010284"),
+        ("16285", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010285"),
+        ("16286", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010286"),
+        ("16287", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010287"),
+        ("16288", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010288"),
+        ("16289", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010289"),
+        ("16290", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010290"),
+        ("16291", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010291"),
+        ("16292", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010292"),
+        ("16293", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010293"),
+        ("16294", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010294"),
+        ("16295", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010295"),
+        ("16296", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010296"),
+        ("16297", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010297"),
+        ("16298", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010298"),
+        ("16299", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010299"),
+        ("16300", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010300"),
+        ("16301", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010301"),
+        ("16302", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010302"),
+        ("16303", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010303"),
+        ("16304", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010304"),
+        ("16305", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010305"),
+        ("16306", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010306"),
+        ("16307", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010307"),
+        ("16308", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010308"),
+        ("16309", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010309"),
+        ("16310", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010310"),
+        ("16311", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010311"),
+        ("16312", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010312"),
+        ("16313", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010313"),
+        ("16314", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010314"),
+        ("16315", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010315"),
+        ("16316", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010316"),
+        ("16317", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010317"),
+        ("16318", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010318"),
+        ("16319", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010319"),
+        ("16320", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010320"),
+        ("16321", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010321"),
+        ("16322", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010322"),
+        ("16323", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010323"),
+        ("16324", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010324"),
+        ("16325", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010325"),
+        ("16326", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010326"),
+        ("16327", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010327"),
+        ("16328", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010328"),
+        ("16329", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010329"),
+        ("16330", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010330"),
+        ("16331", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010331"),
+        ("16332", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010332"),
+        ("16333", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010333"),
+        ("16334", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010334"),
+        ("16335", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010335"),
+        ("16336", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010336"),
+        ("16337", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010337"),
+        ("16338", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010338"),
+        ("16339", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010339"),
+        ("16340", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010340"),
+        ("16341", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010341"),
+        ("16342", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010342"),
+        ("16343", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010343"),
+        ("16344", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010344"),
+        ("16345", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010345"),
+        ("16346", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010346"),
+        ("16347", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010347"),
+        ("16348", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010348"),
+        ("16349", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010349"),
+        ("16350", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010350"),
+        ("16351", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010351"),
+        ("16352", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010352"),
+        ("16353", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010353"),
+        ("16354", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010354"),
+        ("16355", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010355"),
+        ("16356", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010356"),
+        ("16357", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010357"),
+        ("16358", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010358"),
+        ("16359", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010359"),
+        ("16360", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010360"),
+        ("16361", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010361"),
+        ("16362", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010362"),
+        ("16363", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010363"),
+        ("16364", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010364"),
+        ("16365", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010365"),
+        ("16366", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010366"),
+        ("16367", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010367"),
+        ("16368", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010368"),
+        ("16369", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010369"),
+        ("16370", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010370"),
+        ("16371", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010371"),
+        ("16372", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010372"),
+        ("16373", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010373"),
+        ("16374", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010374"),
+        ("16375", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010375"),
+        ("16376", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010376"),
+        ("16377", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010377"),
+        ("16378", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010378"),
+        ("16379", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010379"),
+        ("16380", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010380"),
+        ("16381", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010381"),
+        ("16382", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010382"),
+        ("16383", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010383"),
+        ("16384", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010384"),
+        ("16385", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010385"),
+        ("16386", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010386"),
+        ("16387", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010387"),
+        ("16388", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010388"),
+        ("16389", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010389"),
+        ("16390", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010390"),
+        ("16391", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010391"),
+        ("16392", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010392"),
+        ("16393", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010393"),
+        ("16394", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010394"),
+        ("16395", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010395"),
+        ("16396", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010396"),
+        ("16397", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010397"),
+        ("16398", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010398"),
+        ("16399", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010399"),
+        ("16400", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010400"),
+        ("16401", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010401"),
+        ("16402", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010402"),
+        ("16403", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010403"),
+        ("16404", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010404"),
+        ("16405", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010405"),
+        ("16406", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010406"),
+        ("16407", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010407"),
+        ("16408", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010408"),
+        ("16409", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010409"),
+        ("16410", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010410"),
+        ("16411", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010411"),
+        ("16412", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010412"),
+        ("16413", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010413"),
+        ("16414", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010414"),
+        ("16415", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010415"),
+        ("16416", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010416"),
+        ("16417", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010417"),
+        ("16418", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010418"),
+        ("16419", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010419"),
+        ("16420", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010420"),
+        ("16421", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010421"),
+        ("16422", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010422"),
+        ("16423", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010423"),
+        ("16424", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010424"),
+        ("16425", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010425"),
+        ("16426", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010426"),
+        ("16427", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010427"),
+        ("16428", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010428"),
+        ("16429", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010429"),
+        ("16430", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010430"),
+        ("16431", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010431"),
+        ("16432", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010432"),
+        ("16433", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010433"),
+        ("16434", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010434"),
+        ("16435", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010435"),
+        ("16436", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010436"),
+        ("16437", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010437"),
+        ("16438", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010438"),
+        ("16439", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010439"),
+        ("16440", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010440"),
+        ("16441", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010441"),
+        ("16442", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010442"),
+        ("16443", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010443"),
+        ("16444", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010444"),
+        ("16445", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010445"),
+        ("16446", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010446"),
+        ("16447", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010447"),
+        ("16448", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010448"),
+        ("16449", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010449"),
+        ("16450", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010450"),
+        ("16451", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010451"),
+        ("16452", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010452"),
+        ("16453", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010453"),
+        ("16454", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010454"),
+        ("16455", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010455"),
+        ("16456", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010456"),
+        ("16457", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010457"),
+        ("16458", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010458"),
+        ("16459", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010459"),
+        ("16460", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010460"),
+        ("16461", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010461"),
+        ("16462", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010462"),
+        ("16463", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010463"),
+        ("16464", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010464"),
+        ("16465", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010465"),
+        ("16466", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010466"),
+        ("16467", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010467"),
+        ("16468", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010468"),
+        ("16469", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010469"),
+        ("16470", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010470"),
+        ("16471", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010471"),
+        ("16472", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010472"),
+        ("16473", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010473"),
+        ("16474", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010474"),
+        ("16475", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010475"),
+        ("16476", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010476"),
+        ("16477", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010477"),
+        ("16478", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010478"),
+        ("16479", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010479"),
+        ("16480", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010480"),
+        ("16481", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010481"),
+        ("16482", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010482"),
+        ("16483", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010483"),
+        ("16484", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010484"),
+        ("16485", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010485"),
+        ("16486", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010486"),
+        ("16487", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010487"),
+        ("16488", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010488"),
+        ("16489", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010489"),
+        ("16490", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010490"),
+        ("16491", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010491"),
+        ("16492", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010492"),
+        ("16493", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010493"),
+        ("16494", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010494"),
+        ("16495", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010495"),
+        ("16496", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010496"),
+        ("16497", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010497"),
+        ("16498", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010498"),
+        ("16499", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010499"),
+        ("16500", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010500"),
+        ("16501", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010501"),
+        ("16502", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010502"),
+        ("16503", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010503"),
+        ("16504", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010504"),
+        ("16505", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010505"),
+        ("16506", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010506"),
+        ("16507", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010507"),
+        ("16508", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010508"),
+        ("16509", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010509"),
+        ("16510", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010510"),
+        ("16511", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010511"),
+        ("16512", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010512"),
+        ("16513", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010513"),
+        ("16514", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010514"),
+        ("16515", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010515"),
+        ("16516", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010516"),
+        ("16517", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010517"),
+        ("16518", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010518"),
+        ("16519", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010519"),
+        ("16520", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010520"),
+        ("16521", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010521"),
+        ("16522", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010522"),
+        ("16523", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010523"),
+        ("16524", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010524"),
+        ("16525", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010525"),
+        ("16526", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010526"),
+        ("16527", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010527"),
+        ("16528", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010528"),
+        ("16529", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010529"),
+        ("16530", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010530"),
+        ("16531", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010531"),
+        ("16532", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010532"),
+        ("16533", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010533"),
+        ("16534", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010534"),
+        ("16535", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010535"),
+        ("16536", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010536"),
+        ("16537", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010537"),
+        ("16538", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010538"),
+        ("16539", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010539"),
+        ("16540", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010540"),
+        ("16541", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010541"),
+        ("16542", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010542"),
+        ("16543", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010543"),
+        ("16544", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010544"),
+        ("16545", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010545"),
+        ("16546", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010546"),
+        ("16547", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010547"),
+        ("16548", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010548"),
+        ("16549", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010549"),
+        ("16550", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010550"),
+        ("16551", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010551"),
+        ("16552", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010552"),
+        ("16553", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010553"),
+        ("16554", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010554"),
+        ("16555", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010555"),
+        ("16556", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010556"),
+        ("16557", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010557"),
+        ("16558", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010558"),
+        ("16559", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010559"),
+        ("16560", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010560"),
+        ("16561", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010561"),
+        ("16562", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010562"),
+        ("16563", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010563"),
+        ("16564", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010564"),
+        ("16565", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010565"),
+        ("16566", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010566"),
+        ("16567", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010567"),
+        ("16568", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010568"),
+        ("16569", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010569"),
+        ("16570", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010570"),
+        ("16571", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010571"),
+        ("16572", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010572"),
+        ("16573", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010573"),
+        ("16574", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010574"),
+        ("16575", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010575"),
+        ("16576", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010576"),
+        ("16577", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010577"),
+        ("16578", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010578"),
+        ("16579", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010579"),
+        ("16580", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010580"),
+        ("16581", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010581"),
+        ("16582", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010582"),
+        ("16583", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010583"),
+        ("16584", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010584"),
+        ("16585", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010585"),
+        ("16586", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010586"),
+        ("16587", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010587"),
+        ("16588", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010588"),
+        ("16589", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010589"),
+        ("16590", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010590"),
+        ("16591", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010591"),
+        ("16592", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010592"),
+        ("16593", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010593"),
+        ("16594", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010594"),
+        ("16595", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010595"),
+        ("16596", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010596"),
+        ("16597", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010597"),
+        ("16598", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010598"),
+        ("16599", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010599"),
+        ("16600", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010600"),
+        ("16601", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010601"),
+        ("16602", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010602"),
+        ("16603", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010603"),
+        ("16604", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010604"),
+        ("16605", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010605"),
+        ("16606", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010606"),
+        ("16607", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010607"),
+        ("16608", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010608"),
+        ("16609", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010609"),
+        ("16610", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010610"),
+        ("16611", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010611"),
+        ("16612", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010612"),
+        ("16613", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010613"),
+        ("16614", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010614"),
+        ("16615", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010615"),
+        ("16616", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010616"),
+        ("16617", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010617"),
+        ("16618", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010618"),
+        ("16619", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010619"),
+        ("16620", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010620"),
+        ("16621", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010621"),
+        ("16622", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010622"),
+        ("16623", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010623"),
+        ("16624", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010624"),
+        ("16625", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010625"),
+        ("16626", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010626"),
+        ("16627", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010627"),
+        ("16628", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010628"),
+        ("16629", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010629"),
+        ("16630", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010630"),
+        ("16631", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010631"),
+        ("16632", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010632"),
+        ("16633", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010633"),
+        ("16634", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010634"),
+        ("16635", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010635"),
+        ("16636", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010636"),
+        ("16637", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010637"),
+        ("16638", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010638"),
+        ("16639", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010639"),
+        ("16640", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010640"),
+        ("16641", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010641"),
+        ("16642", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010642"),
+        ("16643", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010643"),
+        ("16644", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010644"),
+        ("16645", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010645"),
+        ("16646", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010646"),
+        ("16647", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010647"),
+        ("16648", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010648"),
+        ("16649", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010649"),
+        ("16650", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010650"),
+        ("16651", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010651"),
+        ("16652", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010652"),
+        ("16653", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010653"),
+        ("16654", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010654"),
+        ("16655", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010655"),
+        ("16656", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010656"),
+        ("16657", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010657"),
+        ("16658", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010658"),
+        ("16659", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010659"),
+        ("16660", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010660"),
+        ("16661", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010661"),
+        ("16662", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010662"),
+        ("16663", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010663"),
+        ("16664", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010664"),
+        ("16665", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010665"),
+        ("16666", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010666"),
+        ("16667", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010667"),
+        ("16668", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010668"),
+        ("16669", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010669"),
+        ("16670", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010670"),
+        ("16671", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010671"),
+        ("16672", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010672"),
+        ("16673", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010673"),
+        ("16674", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010674"),
+        ("16675", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010675"),
+        ("16676", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010676"),
+        ("16677", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010677"),
+        ("16678", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010678"),
+        ("16679", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010679"),
+        ("16680", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010680"),
+        ("16681", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010681"),
+        ("16682", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010682"),
+        ("16683", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010683"),
+        ("16684", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010684"),
+        ("16685", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010685"),
+        ("16686", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010686"),
+        ("16687", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010687"),
+        ("16688", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010688"),
+        ("16689", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010689"),
+        ("16690", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010690"),
+        ("16691", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010691"),
+        ("16692", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010692"),
+        ("16693", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010693"),
+        ("16694", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010694"),
+        ("16695", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010695"),
+        ("16696", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010696"),
+        ("16697", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010697"),
+        ("16698", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010698"),
+        ("16699", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010699"),
+        ("16700", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010700"),
+        ("16701", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010701"),
+        ("16702", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010702"),
+        ("16703", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010703"),
+        ("16704", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010704"),
+        ("16705", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010705"),
+        ("16706", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010706"),
+        ("16707", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010707"),
+        ("16708", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010708"),
+        ("16709", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010709"),
+        ("16710", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010710"),
+        ("16711", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010711"),
+        ("16712", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010712"),
+        ("16713", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010713"),
+        ("16714", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010714"),
+        ("16715", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010715"),
+        ("16716", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010716"),
+        ("16717", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010717"),
+        ("16718", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010718"),
+        ("16719", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010719"),
+        ("16720", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010720"),
+        ("16721", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010721"),
+        ("16722", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010722"),
+        ("16723", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010723"),
+        ("16724", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010724"),
+        ("16725", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010725"),
+        ("16726", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010726"),
+        ("16727", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010727"),
+        ("16728", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010728"),
+        ("16729", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010729"),
+        ("16730", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010730"),
+        ("16731", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010731"),
+        ("16732", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010732"),
+        ("16733", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010733"),
+        ("16734", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010734"),
+        ("16735", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010735"),
+        ("16736", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010736"),
+        ("16737", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010737"),
+        ("16738", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010738"),
+        ("16739", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010739"),
+        ("16740", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010740"),
+        ("16741", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010741"),
+        ("16742", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010742"),
+        ("16743", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010743"),
+        ("16744", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010744"),
+        ("16745", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010745"),
+        ("16746", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010746"),
+        ("16747", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010747"),
+        ("16748", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010748"),
+        ("16749", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010749"),
+        ("16750", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010750"),
+        ("16751", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010751"),
+        ("16752", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010752"),
+        ("16753", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010753"),
+        ("16754", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010754"),
+        ("16755", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010755"),
+        ("16756", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010756"),
+        ("16757", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010757"),
+        ("16758", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010758"),
+        ("16759", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010759"),
+        ("16760", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010760"),
+        ("16761", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010761"),
+        ("16762", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010762"),
+        ("16763", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010763"),
+        ("16764", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010764"),
+        ("16765", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010765"),
+        ("16766", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010766"),
+        ("16767", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010767"),
+        ("16768", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010768"),
+        ("16769", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010769"),
+        ("16770", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010770"),
+        ("16771", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010771"),
+        ("16772", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010772"),
+        ("16773", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010773"),
+        ("16774", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010774"),
+        ("16775", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010775"),
+        ("16776", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010776"),
+        ("16777", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010777"),
+        ("16778", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010778"),
+        ("16779", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010779"),
+        ("16780", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010780"),
+        ("16781", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010781"),
+        ("16782", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010782"),
+        ("16783", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010783"),
+        ("16784", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010784"),
+        ("16785", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010785"),
+        ("16786", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010786"),
+        ("16787", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010787"),
+        ("16788", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010788"),
+        ("16789", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010789"),
+        ("16790", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010790"),
+        ("16791", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010791"),
+        ("16792", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010792"),
+        ("16793", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010793"),
+        ("16794", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010794"),
+        ("16795", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010795"),
+        ("16796", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010796"),
+        ("16797", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010797"),
+        ("16798", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010798"),
+        ("16799", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010799"),
+        ("16800", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010000"),
+        ("16801", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010001"),
+        ("16802", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010002"),
+        ("16803", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010003"),
+        ("16804", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010004"),
+        ("16805", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010005"),
+        ("16806", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010006"),
+        ("16807", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010007"),
+        ("16808", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010008"),
+        ("16809", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010009"),
+        ("16810", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010010"),
+        ("16811", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010011"),
+        ("16812", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010012"),
+        ("16813", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010013"),
+        ("16814", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010014"),
+        ("16815", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010015"),
+        ("16816", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010016"),
+        ("16817", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010017"),
+        ("16818", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010018"),
+        ("16819", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010019"),
+        ("16820", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010020"),
+        ("16821", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010021"),
+        ("16822", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010022"),
+        ("16823", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010023"),
+        ("16824", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010024"),
+        ("16825", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010025"),
+        ("16826", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010026"),
+        ("16827", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010027"),
+        ("16828", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010028"),
+        ("16829", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010029"),
+        ("16830", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010030"),
+        ("16831", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010031"),
+        ("16832", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010032"),
+        ("16833", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010033"),
+        ("16834", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010034"),
+        ("16835", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010035"),
+        ("16836", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010036"),
+        ("16837", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010037"),
+        ("16838", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010038"),
+        ("16839", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010039"),
+        ("16840", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010040"),
+        ("16841", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010041"),
+        ("16842", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010042"),
+        ("16843", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010043"),
+        ("16844", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010044"),
+        ("16845", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010045"),
+        ("16846", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010046"),
+        ("16847", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010047"),
+        ("16848", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010048"),
+        ("16849", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010049"),
+        ("16850", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010050"),
+        ("16851", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010051"),
+        ("16852", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010052"),
+        ("16853", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010053"),
+        ("16854", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010054"),
+        ("16855", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010055"),
+        ("16856", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010056"),
+        ("16857", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010057"),
+        ("16858", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010058"),
+        ("16859", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010059"),
+        ("16860", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010060"),
+        ("16861", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010061"),
+        ("16862", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010062"),
+        ("16863", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010063"),
+        ("16864", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010064"),
+        ("16865", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010065"),
+        ("16866", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010066"),
+        ("16867", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010067"),
+        ("16868", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010068"),
+        ("16869", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010069"),
+        ("16870", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010070"),
+        ("16871", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010071"),
+        ("16872", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010072"),
+        ("16873", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010073"),
+        ("16874", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010074"),
+        ("16875", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010075"),
+        ("16876", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010076"),
+        ("16877", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010077"),
+        ("16878", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010078"),
+        ("16879", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010079"),
+        ("16880", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010080"),
+        ("16881", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010081"),
+        ("16882", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010082"),
+        ("16883", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010083"),
+        ("16884", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010084"),
+        ("16885", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010085"),
+        ("16886", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010086"),
+        ("16887", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010087"),
+        ("16888", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010088"),
+        ("16889", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010089"),
+        ("16890", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010090"),
+        ("16891", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010091"),
+        ("16892", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010092"),
+        ("16893", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010093"),
+        ("16894", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010094"),
+        ("16895", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010095"),
+        ("16896", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010096"),
+        ("16897", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010097"),
+        ("16898", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010098"),
+        ("16899", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010099"),
+        ("16900", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010100"),
+        ("16901", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010101"),
+        ("16902", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010102"),
+        ("16903", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010103"),
+        ("16904", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010104"),
+        ("16905", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010105"),
+        ("16906", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010106"),
+        ("16907", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010107"),
+        ("16908", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010108"),
+        ("16909", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010109"),
+        ("16910", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010110"),
+        ("16911", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010111"),
+        ("16912", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010112"),
+        ("16913", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010113"),
+        ("16914", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010114"),
+        ("16915", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010115"),
+        ("16916", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010116"),
+        ("16917", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010117"),
+        ("16918", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010118"),
+        ("16919", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010119"),
+        ("16920", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010120"),
+        ("16921", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010121"),
+        ("16922", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010122"),
+        ("16923", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010123"),
+        ("16924", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010124"),
+        ("16925", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010125"),
+        ("16926", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010126"),
+        ("16927", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010127"),
+        ("16928", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010128"),
+        ("16929", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010129"),
+        ("16930", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010130"),
+        ("16931", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010131"),
+        ("16932", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010132"),
+        ("16933", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010133"),
+        ("16934", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010134"),
+        ("16935", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010135"),
+        ("16936", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010136"),
+        ("16937", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010137"),
+        ("16938", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010138"),
+        ("16939", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010139"),
+        ("16940", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010140"),
+        ("16941", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010141"),
+        ("16942", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010142"),
+        ("16943", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010143"),
+        ("16944", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010144"),
+        ("16945", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010145"),
+        ("16946", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010146"),
+        ("16947", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010147"),
+        ("16948", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010148"),
+        ("16949", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010149"),
+        ("16950", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010150"),
+        ("16951", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010151"),
+        ("16952", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010152"),
+        ("16953", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010153"),
+        ("16954", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010154"),
+        ("16955", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010155"),
+        ("16956", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010156"),
+        ("16957", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010157"),
+        ("16958", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010158"),
+        ("16959", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010159"),
+        ("16960", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010160"),
+        ("16961", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010161"),
+        ("16962", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010162"),
+        ("16963", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010163"),
+        ("16964", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010164"),
+        ("16965", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010165"),
+        ("16966", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010166"),
+        ("16967", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010167"),
+        ("16968", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010168"),
+        ("16969", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010169"),
+        ("16970", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010170"),
+        ("16971", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010171"),
+        ("16972", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010172"),
+        ("16973", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010173"),
+        ("16974", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010174"),
+        ("16975", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010175"),
+        ("16976", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010176"),
+        ("16977", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010177"),
+        ("16978", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010178"),
+        ("16979", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010179"),
+        ("16980", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010180"),
+        ("16981", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010181"),
+        ("16982", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010182"),
+        ("16983", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010183"),
+        ("16984", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010184"),
+        ("16985", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010185"),
+        ("16986", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010186"),
+        ("16987", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010187"),
+        ("16988", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010188"),
+        ("16989", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010189"),
+        ("16990", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010190"),
+        ("16991", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010191"),
+        ("16992", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010192"),
+        ("16993", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010193"),
+        ("16994", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010194"),
+        ("16995", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010195"),
+        ("16996", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010196"),
+        ("16997", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010197"),
+        ("16998", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010198"),
+        ("16999", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010199"),
+        ("17000", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010000"),
+        ("17001", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010001"),
+        ("17002", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010002"),
+        ("17003", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010003"),
+        ("17004", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010004"),
+        ("17005", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010005"),
+        ("17006", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010006"),
+        ("17007", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010007"),
+        ("17008", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010008"),
+        ("17009", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010009"),
+        ("17010", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010010"),
+        ("17011", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010011"),
+        ("17012", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010012"),
+        ("17013", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010013"),
+        ("17014", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010014"),
+        ("17015", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010015"),
+        ("17016", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010016"),
+        ("17017", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010017"),
+        ("17018", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010018"),
+        ("17019", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010019"),
+        ("17020", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010020"),
+        ("17021", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010021"),
+        ("17022", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010022"),
+        ("17023", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010023"),
+        ("17024", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010024"),
+        ("17025", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010025"),
+        ("17026", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010026"),
+        ("17027", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010027"),
+        ("17028", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010028"),
+        ("17029", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010029"),
+        ("17030", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010030"),
+        ("17031", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010031"),
+        ("17032", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010032"),
+        ("17033", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010033"),
+        ("17034", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010034"),
+        ("17035", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010035"),
+        ("17036", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010036"),
+        ("17037", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010037"),
+        ("17038", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010038"),
+        ("17039", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010039"),
+        ("17040", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010040"),
+        ("17041", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010041"),
+        ("17042", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010042"),
+        ("17043", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010043"),
+        ("17044", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010044"),
+        ("17045", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010045"),
+        ("17046", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010046"),
+        ("17047", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010047"),
+        ("17048", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010048"),
+        ("17049", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010049"),
+        ("17050", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010050"),
+        ("17051", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010051"),
+        ("17052", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010052"),
+        ("17053", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010053"),
+        ("17054", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010054"),
+        ("17055", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010055"),
+        ("17056", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010056"),
+        ("17057", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010057"),
+        ("17058", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010058"),
+        ("17059", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010059"),
+        ("17060", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010060"),
+        ("17061", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010061"),
+        ("17062", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010062"),
+        ("17063", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010063"),
+        ("17064", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010064"),
+        ("17065", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010065"),
+        ("17066", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010066"),
+        ("17067", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010067"),
+        ("17068", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010068"),
+        ("17069", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010069"),
+        ("17070", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010070"),
+        ("17071", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010071"),
+        ("17072", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010072"),
+        ("17073", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010073"),
+        ("17074", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010074"),
+        ("17075", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010075"),
+        ("17076", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010076"),
+        ("17077", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010077"),
+        ("17078", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010078"),
+        ("17079", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010079"),
+        ("17080", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010080"),
+        ("17081", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010081"),
+        ("17082", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010082"),
+        ("17083", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010083"),
+        ("17084", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010084"),
+        ("17085", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010085"),
+        ("17086", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010086"),
+        ("17087", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010087"),
+        ("17088", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010088"),
+        ("17089", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010089"),
+        ("17090", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010090"),
+        ("17091", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010091"),
+        ("17092", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010092"),
+        ("17093", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010093"),
+        ("17094", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010094"),
+        ("17095", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010095"),
+        ("17096", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010096"),
+        ("17097", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010097"),
+        ("17098", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010098"),
+        ("17099", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010099"),
+        ("17100", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010100"),
+        ("17101", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010101"),
+        ("17102", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010102"),
+        ("17103", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010103"),
+        ("17104", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010104"),
+        ("17105", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010105"),
+        ("17106", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010106"),
+        ("17107", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010107"),
+        ("17108", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010108"),
+        ("17109", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010109"),
+        ("17110", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010110"),
+        ("17111", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010111"),
+        ("17112", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010112"),
+        ("17113", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010113"),
+        ("17114", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010114"),
+        ("17115", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010115"),
+        ("17116", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010116"),
+        ("17117", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010117"),
+        ("17118", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010118"),
+        ("17119", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010119"),
+        ("17120", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010120"),
+        ("17121", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010121"),
+        ("17122", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010122"),
+        ("17123", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010123"),
+        ("17124", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010124"),
+        ("17125", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010125"),
+        ("17126", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010126"),
+        ("17127", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010127"),
+        ("17128", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010128"),
+        ("17129", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010129"),
+        ("17130", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010130"),
+        ("17131", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010131"),
+        ("17132", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010132"),
+        ("17133", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010133"),
+        ("17134", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010134"),
+        ("17135", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010135"),
+        ("17136", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010136"),
+        ("17137", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010137"),
+        ("17138", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010138"),
+        ("17139", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010139"),
+        ("17140", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010140"),
+        ("17141", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010141"),
+        ("17142", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010142"),
+        ("17143", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010143"),
+        ("17144", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010144"),
+        ("17145", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010145"),
+        ("17146", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010146"),
+        ("17147", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010147"),
+        ("17148", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010148"),
+        ("17149", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010149"),
+        ("17150", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010150"),
+        ("17151", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010151"),
+        ("17152", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010152"),
+        ("17153", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010153"),
+        ("17154", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010154"),
+        ("17155", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010155"),
+        ("17156", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010156"),
+        ("17157", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010157"),
+        ("17158", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010158"),
+        ("17159", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010159"),
+        ("17160", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010160"),
+        ("17161", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010161"),
+        ("17162", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010162"),
+        ("17163", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010163"),
+        ("17164", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010164"),
+        ("17165", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010165"),
+        ("17166", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010166"),
+        ("17167", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010167"),
+        ("17168", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010168"),
+        ("17169", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010169"),
+        ("17170", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010170"),
+        ("17171", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010171"),
+        ("17172", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010172"),
+        ("17173", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010173"),
+        ("17174", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010174"),
+        ("17175", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010175"),
+        ("17176", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010176"),
+        ("17177", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010177"),
+        ("17178", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010178"),
+        ("17179", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010179"),
+        ("17180", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010180"),
+        ("17181", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010181"),
+        ("17182", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010182"),
+        ("17183", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010183"),
+        ("17184", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010184"),
+        ("17185", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010185"),
+        ("17186", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010186"),
+        ("17187", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010187"),
+        ("17188", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010188"),
+        ("17189", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010189"),
+        ("17190", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010190"),
+        ("17191", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010191"),
+        ("17192", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010192"),
+        ("17193", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010193"),
+        ("17194", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010194"),
+        ("17195", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010195"),
+        ("17196", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010196"),
+        ("17197", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010197"),
+        ("17198", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010198"),
+        ("17199", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010199"),
+        ("17200", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010200"),
+        ("17201", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010201"),
+        ("17202", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010202"),
+        ("17203", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010203"),
+        ("17204", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010204"),
+        ("17205", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010205"),
+        ("17206", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010206"),
+        ("17207", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010207"),
+        ("17208", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010208"),
+        ("17209", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010209"),
+        ("17210", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010210"),
+        ("17211", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010211"),
+        ("17212", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010212"),
+        ("17213", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010213"),
+        ("17214", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010214"),
+        ("17215", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010215"),
+        ("17216", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010216"),
+        ("17217", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010217"),
+        ("17218", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010218"),
+        ("17219", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010219"),
+        ("17220", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010220"),
+        ("17221", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010221"),
+        ("17222", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010222"),
+        ("17223", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010223"),
+        ("17224", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010224"),
+        ("17225", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010225"),
+        ("17226", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010226"),
+        ("17227", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010227"),
+        ("17228", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010228"),
+        ("17229", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010229"),
+        ("17230", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010230"),
+        ("17231", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010231"),
+        ("17232", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010232"),
+        ("17233", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010233"),
+        ("17234", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010234"),
+        ("17235", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010235"),
+        ("17236", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010236"),
+        ("17237", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010237"),
+        ("17238", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010238"),
+        ("17239", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010239"),
+        ("17240", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010240"),
+        ("17241", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010241"),
+        ("17242", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010242"),
+        ("17243", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010243"),
+        ("17244", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010244"),
+        ("17245", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010245"),
+        ("17246", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010246"),
+        ("17247", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010247"),
+        ("17248", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010248"),
+        ("17249", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010249"),
+        ("17250", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010250"),
+        ("17251", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010251"),
+        ("17252", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010252"),
+        ("17253", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010253"),
+        ("17254", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010254"),
+        ("17255", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010255"),
+        ("17256", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010256"),
+        ("17257", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010257"),
+        ("17258", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010258"),
+        ("17259", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010259"),
+        ("17260", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010260"),
+        ("17261", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010261"),
+        ("17262", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010262"),
+        ("17263", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010263"),
+        ("17264", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010264"),
+        ("17265", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010265"),
+        ("17266", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010266"),
+        ("17267", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010267"),
+        ("17268", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010268"),
+        ("17269", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010269"),
+        ("17270", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010270"),
+        ("17271", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010271"),
+        ("17272", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010272"),
+        ("17273", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010273"),
+        ("17274", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010274"),
+        ("17275", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010275"),
+        ("17276", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010276"),
+        ("17277", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010277"),
+        ("17278", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010278"),
+        ("17279", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010279"),
+        ("17280", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010280"),
+        ("17281", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010281"),
+        ("17282", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010282"),
+        ("17283", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010283"),
+        ("17284", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010284"),
+        ("17285", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010285"),
+        ("17286", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010286"),
+        ("17287", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010287"),
+        ("17288", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010288"),
+        ("17289", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010289"),
+        ("17290", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010290"),
+        ("17291", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010291"),
+        ("17292", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010292"),
+        ("17293", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010293"),
+        ("17294", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010294"),
+        ("17295", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010295"),
+        ("17296", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010296"),
+        ("17297", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010297"),
+        ("17298", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010298"),
+        ("17299", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010299"),
+        ("17300", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010300"),
+        ("17301", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010301"),
+        ("17302", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010302"),
+        ("17303", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010303"),
+        ("17304", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010304"),
+        ("17305", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010305"),
+        ("17306", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010306"),
+        ("17307", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010307"),
+        ("17308", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010308"),
+        ("17309", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010309"),
+        ("17310", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010310"),
+        ("17311", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010311"),
+        ("17312", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010312"),
+        ("17313", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010313"),
+        ("17314", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010314"),
+        ("17315", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010315"),
+        ("17316", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010316"),
+        ("17317", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010317"),
+        ("17318", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010318"),
+        ("17319", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010319"),
+        ("17320", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010320"),
+        ("17321", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010321"),
+        ("17322", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010322"),
+        ("17323", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010323"),
+        ("17324", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010324"),
+        ("17325", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010325"),
+        ("17326", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010326"),
+        ("17327", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010327"),
+        ("17328", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010328"),
+        ("17329", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010329"),
+        ("17330", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010330"),
+        ("17331", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010331"),
+        ("17332", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010332"),
+        ("17333", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010333"),
+        ("17334", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010334"),
+        ("17335", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010335"),
+        ("17336", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010336"),
+        ("17337", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010337"),
+        ("17338", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010338"),
+        ("17339", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010339"),
+        ("17340", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010340"),
+        ("17341", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010341"),
+        ("17342", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010342"),
+        ("17343", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010343"),
+        ("17344", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010344"),
+        ("17345", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010345"),
+        ("17346", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010346"),
+        ("17347", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010347"),
+        ("17348", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010348"),
+        ("17349", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010349"),
+        ("17350", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010350"),
+        ("17351", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010351"),
+        ("17352", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010352"),
+        ("17353", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010353"),
+        ("17354", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010354"),
+        ("17355", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010355"),
+        ("17356", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010356"),
+        ("17357", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010357"),
+        ("17358", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010358"),
+        ("17359", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010359"),
+        ("17360", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010360"),
+        ("17361", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010361"),
+        ("17362", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010362"),
+        ("17363", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010363"),
+        ("17364", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010364"),
+        ("17365", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010365"),
+        ("17366", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010366"),
+        ("17367", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010367"),
+        ("17368", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010368"),
+        ("17369", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010369"),
+        ("17370", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010370"),
+        ("17371", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010371"),
+        ("17372", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010372"),
+        ("17373", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010373"),
+        ("17374", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010374"),
+        ("17375", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010375"),
+        ("17376", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010376"),
+        ("17377", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010377"),
+        ("17378", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010378"),
+        ("17379", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010379"),
+        ("17380", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010380"),
+        ("17381", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010381"),
+        ("17382", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010382"),
+        ("17383", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010383"),
+        ("17384", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010384"),
+        ("17385", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010385"),
+        ("17386", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010386"),
+        ("17387", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010387"),
+        ("17388", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010388"),
+        ("17389", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010389"),
+        ("17390", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010390"),
+        ("17391", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010391"),
+        ("17392", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010392"),
+        ("17393", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010393"),
+        ("17394", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010394"),
+        ("17395", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010395"),
+        ("17396", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010396"),
+        ("17397", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010397"),
+        ("17398", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010398"),
+        ("17399", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010399"),
+        ("17400", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010400"),
+        ("17401", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010401"),
+        ("17402", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010402"),
+        ("17403", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010403"),
+        ("17404", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010404"),
+        ("17405", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010405"),
+        ("17406", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010406"),
+        ("17407", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010407"),
+        ("17408", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010408"),
+        ("17409", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010409"),
+        ("17410", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010410"),
+        ("17411", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010411"),
+        ("17412", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010412"),
+        ("17413", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010413"),
+        ("17414", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010414"),
+        ("17415", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010415"),
+        ("17416", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010416"),
+        ("17417", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010417"),
+        ("17418", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010418"),
+        ("17419", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010419"),
+        ("17420", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010420"),
+        ("17421", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010421"),
+        ("17422", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010422"),
+        ("17423", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010423"),
+        ("17424", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010424"),
+        ("17425", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010425"),
+        ("17426", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010426"),
+        ("17427", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010427"),
+        ("17428", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010428"),
+        ("17429", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010429"),
+        ("17430", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010430"),
+        ("17431", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010431"),
+        ("17432", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010432"),
+        ("17433", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010433"),
+        ("17434", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010434"),
+        ("17435", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010435"),
+        ("17436", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010436"),
+        ("17437", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010437"),
+        ("17438", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010438"),
+        ("17439", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010439"),
+        ("17440", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010440"),
+        ("17441", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010441"),
+        ("17442", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010442"),
+        ("17443", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010443"),
+        ("17444", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010444"),
+        ("17445", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010445"),
+        ("17446", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010446"),
+        ("17447", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010447"),
+        ("17448", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010448"),
+        ("17449", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010449"),
+        ("17450", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010450"),
+        ("17451", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010451"),
+        ("17452", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010452"),
+        ("17453", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010453"),
+        ("17454", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010454"),
+        ("17455", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010455"),
+        ("17456", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010456"),
+        ("17457", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010457"),
+        ("17458", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010458"),
+        ("17459", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010459"),
+        ("17460", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010460"),
+        ("17461", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010461"),
+        ("17462", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010462"),
+        ("17463", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010463"),
+        ("17464", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010464"),
+        ("17465", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010465"),
+        ("17466", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010466"),
+        ("17467", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010467"),
+        ("17468", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010468"),
+        ("17469", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010469"),
+        ("17470", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010470"),
+        ("17471", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010471"),
+        ("17472", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010472"),
+        ("17473", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010473"),
+        ("17474", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010474"),
+        ("17475", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010475"),
+        ("17476", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010476"),
+        ("17477", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010477"),
+        ("17478", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010478"),
+        ("17479", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010479"),
+        ("17480", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010480"),
+        ("17481", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010481"),
+        ("17482", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010482"),
+        ("17483", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010483"),
+        ("17484", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010484"),
+        ("17485", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010485"),
+        ("17486", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010486"),
+        ("17487", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010487"),
+        ("17488", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010488"),
+        ("17489", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010489"),
+        ("17490", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010490"),
+        ("17491", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010491"),
+        ("17492", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010492"),
+        ("17493", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010493"),
+        ("17494", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010494"),
+        ("17495", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010495"),
+        ("17496", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010496"),
+        ("17497", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010497"),
+        ("17498", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010498"),
+        ("17499", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010499"),
+        ("17500", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010500"),
+        ("17501", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010501"),
+        ("17502", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010502"),
+        ("17503", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010503"),
+        ("17504", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010504"),
+        ("17505", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010505"),
+        ("17506", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010506"),
+        ("17507", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010507"),
+        ("17508", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010508"),
+        ("17509", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010509"),
+        ("17510", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010510"),
+        ("17511", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010511"),
+        ("17512", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010512"),
+        ("17513", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010513"),
+        ("17514", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010514"),
+        ("17515", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010515"),
+        ("17516", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010516"),
+        ("17517", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010517"),
+        ("17518", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010518"),
+        ("17519", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010519"),
+        ("17520", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010520"),
+        ("17521", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010521"),
+        ("17522", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010522"),
+        ("17523", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010523"),
+        ("17524", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010524"),
+        ("17525", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010525"),
+        ("17526", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010526"),
+        ("17527", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010527"),
+        ("17528", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010528"),
+        ("17529", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010529"),
+        ("17530", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010530"),
+        ("17531", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010531"),
+        ("17532", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010532"),
+        ("17533", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010533"),
+        ("17534", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010534"),
+        ("17535", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010535"),
+        ("17536", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010536"),
+        ("17537", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010537"),
+        ("17538", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010538"),
+        ("17539", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010539"),
+        ("17540", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010540"),
+        ("17541", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010541"),
+        ("17542", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010542"),
+        ("17543", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010543"),
+        ("17544", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010544"),
+        ("17545", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010545"),
+        ("17546", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010546"),
+        ("17547", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010547"),
+        ("17548", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010548"),
+        ("17549", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010549"),
+        ("17550", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010550"),
+        ("17551", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010551"),
+        ("17552", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010552"),
+        ("17553", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010553"),
+        ("17554", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010554"),
+        ("17555", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010555"),
+        ("17556", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010556"),
+        ("17557", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010557"),
+        ("17558", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010558"),
+        ("17559", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010559"),
+        ("17560", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010560"),
+        ("17561", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010561"),
+        ("17562", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010562"),
+        ("17563", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010563"),
+        ("17564", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010564"),
+        ("17565", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010565"),
+        ("17566", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010566"),
+        ("17567", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010567"),
+        ("17568", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010568"),
+        ("17569", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010569"),
+        ("17570", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010570"),
+        ("17571", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010571"),
+        ("17572", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010572"),
+        ("17573", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010573"),
+        ("17574", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010574"),
+        ("17575", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010575"),
+        ("17576", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010576"),
+        ("17577", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010577"),
+        ("17578", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010578"),
+        ("17579", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010579"),
+        ("17580", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010580"),
+        ("17581", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010581"),
+        ("17582", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010582"),
+        ("17583", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010583"),
+        ("17584", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010584"),
+        ("17585", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010585"),
+        ("17586", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010586"),
+        ("17587", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010587"),
+        ("17588", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010588"),
+        ("17589", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010589"),
+        ("17590", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010590"),
+        ("17591", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010591"),
+        ("17592", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010592"),
+        ("17593", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010593"),
+        ("17594", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010594"),
+        ("17595", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010595"),
+        ("17596", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010596"),
+        ("17597", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010597"),
+        ("17598", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010598"),
+        ("17599", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010599"),
+        ("17600", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010600"),
+        ("17601", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010601"),
+        ("17602", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010602"),
+        ("17603", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010603"),
+        ("17604", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010604"),
+        ("17605", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010605"),
+        ("17606", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010606"),
+        ("17607", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010607"),
+        ("17608", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010608"),
+        ("17609", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010609"),
+        ("17610", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010610"),
+        ("17611", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010611"),
+        ("17612", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010612"),
+        ("17613", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010613"),
+        ("17614", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010614"),
+        ("17615", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010615"),
+        ("17616", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010616"),
+        ("17617", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010617"),
+        ("17618", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010618"),
+        ("17619", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010619"),
+        ("17620", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010620"),
+        ("17621", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010621"),
+        ("17622", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010622"),
+        ("17623", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010623"),
+        ("17624", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010624"),
+        ("17625", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010625"),
+        ("17626", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010626"),
+        ("17627", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010627"),
+        ("17628", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010628"),
+        ("17629", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010629"),
+        ("17630", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010630"),
+        ("17631", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010631"),
+        ("17632", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010632"),
+        ("17633", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010633"),
+        ("17634", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010634"),
+        ("17635", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010635"),
+        ("17636", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010636"),
+        ("17637", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010637"),
+        ("17638", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010638"),
+        ("17639", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010639"),
+        ("17640", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010640"),
+        ("17641", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010641"),
+        ("17642", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010642"),
+        ("17643", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010643"),
+        ("17644", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010644"),
+        ("17645", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010645"),
+        ("17646", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010646"),
+        ("17647", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010647"),
+        ("17648", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010648"),
+        ("17649", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010649"),
+        ("17650", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010650"),
+        ("17651", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010651"),
+        ("17652", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010652"),
+        ("17653", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010653"),
+        ("17654", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010654"),
+        ("17655", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010655"),
+        ("17656", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010656"),
+        ("17657", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010657"),
+        ("17658", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010658"),
+        ("17659", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010659"),
+        ("17660", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010660"),
+        ("17661", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010661"),
+        ("17662", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010662"),
+        ("17663", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010663"),
+        ("17664", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010664"),
+        ("17665", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010665"),
+        ("17666", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010666"),
+        ("17667", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010667"),
+        ("17668", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010668"),
+        ("17669", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010669"),
+        ("17670", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010670"),
+        ("17671", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010671"),
+        ("17672", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010672"),
+        ("17673", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010673"),
+        ("17674", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010674"),
+        ("17675", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010675"),
+        ("17676", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010676"),
+        ("17677", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010677"),
+        ("17678", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010678"),
+        ("17679", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010679"),
+        ("17680", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010680"),
+        ("17681", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010681"),
+        ("17682", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010682"),
+        ("17683", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010683"),
+        ("17684", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010684"),
+        ("17685", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010685"),
+        ("17686", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010686"),
+        ("17687", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010687"),
+        ("17688", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010688"),
+        ("17689", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010689"),
+        ("17690", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010690"),
+        ("17691", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010691"),
+        ("17692", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010692"),
+        ("17693", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010693"),
+        ("17694", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010694"),
+        ("17695", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010695"),
+        ("17696", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010696"),
+        ("17697", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010697"),
+        ("17698", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010698"),
+        ("17699", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010699"),
+        ("17700", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010700"),
+        ("17701", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010701"),
+        ("17702", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010702"),
+        ("17703", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010703"),
+        ("17704", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010704"),
+        ("17705", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010705"),
+        ("17706", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010706"),
+        ("17707", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010707"),
+        ("17708", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010708"),
+        ("17709", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010709"),
+        ("17710", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010710"),
+        ("17711", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010711"),
+        ("17712", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010712"),
+        ("17713", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010713"),
+        ("17714", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010714"),
+        ("17715", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010715"),
+        ("17716", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010716"),
+        ("17717", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010717"),
+        ("17718", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010718"),
+        ("17719", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010719"),
+        ("17720", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010720"),
+        ("17721", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010721"),
+        ("17722", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010722"),
+        ("17723", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010723"),
+        ("17724", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010724"),
+        ("17725", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010725"),
+        ("17726", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010726"),
+        ("17727", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010727"),
+        ("17728", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010728"),
+        ("17729", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010729"),
+        ("17730", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010730"),
+        ("17731", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010731"),
+        ("17732", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010732"),
+        ("17733", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010733"),
+        ("17734", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010734"),
+        ("17735", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010735"),
+        ("17736", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010736"),
+        ("17737", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010737"),
+        ("17738", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010738"),
+        ("17739", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010739"),
+        ("17740", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010740"),
+        ("17741", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010741"),
+        ("17742", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010742"),
+        ("17743", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010743"),
+        ("17744", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010744"),
+        ("17745", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010745"),
+        ("17746", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010746"),
+        ("17747", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010747"),
+        ("17748", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010748"),
+        ("17749", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010749"),
+        ("17750", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010750"),
+        ("17751", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010751"),
+        ("17752", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010752"),
+        ("17753", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010753"),
+        ("17754", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010754"),
+        ("17755", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010755"),
+        ("17756", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010756"),
+        ("17757", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010757"),
+        ("17758", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010758"),
+        ("17759", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010759"),
+        ("17760", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010760"),
+        ("17761", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010761"),
+        ("17762", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010762"),
+        ("17763", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010763"),
+        ("17764", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010764"),
+        ("17765", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010765"),
+        ("17766", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010766"),
+        ("17767", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010767"),
+        ("17768", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010768"),
+        ("17769", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010769"),
+        ("17770", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010770"),
+        ("17771", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010771"),
+        ("17772", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010772"),
+        ("17773", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010773"),
+        ("17774", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010774"),
+        ("17775", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010775"),
+        ("17776", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010776"),
+        ("17777", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010777"),
+        ("17778", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010778"),
+        ("17779", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010779"),
+        ("17780", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010780"),
+        ("17781", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010781"),
+        ("17782", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010782"),
+        ("17783", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010783"),
+        ("17784", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010784"),
+        ("17785", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010785"),
+        ("17786", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010786"),
+        ("17787", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010787"),
+        ("17788", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010788"),
+        ("17789", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010789"),
+        ("17790", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010790"),
+        ("17791", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010791"),
+        ("17792", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010792"),
+        ("17793", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010793"),
+        ("17794", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010794"),
+        ("17795", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010795"),
+        ("17796", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010796"),
+        ("17797", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010797"),
+        ("17798", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010798"),
+        ("17799", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010799"),
+        ("17800", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010000"),
+        ("17801", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010001"),
+        ("17802", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010002"),
+        ("17803", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010003"),
+        ("17804", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010004"),
+        ("17805", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010005"),
+        ("17806", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010006"),
+        ("17807", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010007"),
+        ("17808", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010008"),
+        ("17809", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010009"),
+        ("17810", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010010"),
+        ("17811", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010011"),
+        ("17812", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010012"),
+        ("17813", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010013"),
+        ("17814", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010014"),
+        ("17815", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010015"),
+        ("17816", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010016"),
+        ("17817", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010017"),
+        ("17818", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010018"),
+        ("17819", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010019"),
+        ("17820", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010020"),
+        ("17821", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010021"),
+        ("17822", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010022"),
+        ("17823", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010023"),
+        ("17824", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010024"),
+        ("17825", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010025"),
+        ("17826", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010026"),
+        ("17827", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010027"),
+        ("17828", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010028"),
+        ("17829", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010029"),
+        ("17830", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010030"),
+        ("17831", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010031"),
+        ("17832", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010032"),
+        ("17833", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010033"),
+        ("17834", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010034"),
+        ("17835", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010035"),
+        ("17836", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010036"),
+        ("17837", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010037"),
+        ("17838", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010038"),
+        ("17839", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010039"),
+        ("17840", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010040"),
+        ("17841", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010041"),
+        ("17842", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010042"),
+        ("17843", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010043"),
+        ("17844", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010044"),
+        ("17845", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010045"),
+        ("17846", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010046"),
+        ("17847", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010047"),
+        ("17848", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010048"),
+        ("17849", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010049"),
+        ("17850", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010050"),
+        ("17851", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010051"),
+        ("17852", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010052"),
+        ("17853", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010053"),
+        ("17854", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010054"),
+        ("17855", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010055"),
+        ("17856", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010056"),
+        ("17857", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010057"),
+        ("17858", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010058"),
+        ("17859", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010059"),
+        ("17860", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010060"),
+        ("17861", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010061"),
+        ("17862", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010062"),
+        ("17863", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010063"),
+        ("17864", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010064"),
+        ("17865", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010065"),
+        ("17866", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010066"),
+        ("17867", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010067"),
+        ("17868", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010068"),
+        ("17869", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010069"),
+        ("17870", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010070"),
+        ("17871", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010071"),
+        ("17872", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010072"),
+        ("17873", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010073"),
+        ("17874", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010074"),
+        ("17875", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010075"),
+        ("17876", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010076"),
+        ("17877", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010077"),
+        ("17878", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010078"),
+        ("17879", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010079"),
+        ("17880", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010080"),
+        ("17881", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010081"),
+        ("17882", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010082"),
+        ("17883", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010083"),
+        ("17884", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010084"),
+        ("17885", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010085"),
+        ("17886", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010086"),
+        ("17887", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010087"),
+        ("17888", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010088"),
+        ("17889", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010089"),
+        ("17890", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010090"),
+        ("17891", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010091"),
+        ("17892", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010092"),
+        ("17893", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010093"),
+        ("17894", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010094"),
+        ("17895", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010095"),
+        ("17896", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010096"),
+        ("17897", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010097"),
+        ("17898", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010098"),
+        ("17899", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010099"),
+        ("17900", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010100"),
+        ("17901", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010101"),
+        ("17902", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010102"),
+        ("17903", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010103"),
+        ("17904", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010104"),
+        ("17905", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010105"),
+        ("17906", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010106"),
+        ("17907", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010107"),
+        ("17908", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010108"),
+        ("17909", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010109"),
+        ("17910", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010110"),
+        ("17911", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010111"),
+        ("17912", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010112"),
+        ("17913", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010113"),
+        ("17914", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010114"),
+        ("17915", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010115"),
+        ("17916", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010116"),
+        ("17917", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010117"),
+        ("17918", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010118"),
+        ("17919", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010119"),
+        ("17920", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010120"),
+        ("17921", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010121"),
+        ("17922", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010122"),
+        ("17923", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010123"),
+        ("17924", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010124"),
+        ("17925", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010125"),
+        ("17926", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010126"),
+        ("17927", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010127"),
+        ("17928", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010128"),
+        ("17929", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010129"),
+        ("17930", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010130"),
+        ("17931", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010131"),
+        ("17932", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010132"),
+        ("17933", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010133"),
+        ("17934", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010134"),
+        ("17935", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010135"),
+        ("17936", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010136"),
+        ("17937", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010137"),
+        ("17938", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010138"),
+        ("17939", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010139"),
+        ("17940", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010140"),
+        ("17941", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010141"),
+        ("17942", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010142"),
+        ("17943", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010143"),
+        ("17944", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010144"),
+        ("17945", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010145"),
+        ("17946", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010146"),
+        ("17947", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010147"),
+        ("17948", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010148"),
+        ("17949", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010149"),
+        ("17950", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010150"),
+        ("17951", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010151"),
+        ("17952", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010152"),
+        ("17953", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010153"),
+        ("17954", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010154"),
+        ("17955", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010155"),
+        ("17956", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010156"),
+        ("17957", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010157"),
+        ("17958", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010158"),
+        ("17959", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010159"),
+        ("17960", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010160"),
+        ("17961", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010161"),
+        ("17962", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010162"),
+        ("17963", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010163"),
+        ("17964", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010164"),
+        ("17965", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010165"),
+        ("17966", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010166"),
+        ("17967", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010167"),
+        ("17968", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010168"),
+        ("17969", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010169"),
+        ("17970", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010170"),
+        ("17971", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010171"),
+        ("17972", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010172"),
+        ("17973", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010173"),
+        ("17974", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010174"),
+        ("17975", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010175"),
+        ("17976", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010176"),
+        ("17977", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010177"),
+        ("17978", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010178"),
+        ("17979", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010179"),
+        ("17980", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010180"),
+        ("17981", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010181"),
+        ("17982", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010182"),
+        ("17983", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010183"),
+        ("17984", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010184"),
+        ("17985", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010185"),
+        ("17986", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010186"),
+        ("17987", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010187"),
+        ("17988", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010188"),
+        ("17989", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010189"),
+        ("17990", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010190"),
+        ("17991", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010191"),
+        ("17992", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010192"),
+        ("17993", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010193"),
+        ("17994", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010194"),
+        ("17995", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010195"),
+        ("17996", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010196"),
+        ("17997", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010197"),
+        ("17998", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010198"),
+        ("17999", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00010199"),
+        ("18000", "CSIDL_FLAG_CREATE|0x00010000"),
+        ("18001", "CSIDL_FLAG_CREATE|0x00010001"),
+        ("18002", "CSIDL_FLAG_CREATE|0x00010002"),
+        ("18003", "CSIDL_FLAG_CREATE|0x00010003"),
+        ("18004", "CSIDL_FLAG_CREATE|0x00010004"),
+        ("18005", "CSIDL_FLAG_CREATE|0x00010005"),
+        ("18006", "CSIDL_FLAG_CREATE|0x00010006"),
+        ("18007", "CSIDL_FLAG_CREATE|0x00010007"),
+        ("18008", "CSIDL_FLAG_CREATE|0x00010008"),
+        ("18009", "CSIDL_FLAG_CREATE|0x00010009"),
+        ("18010", "CSIDL_FLAG_CREATE|0x00010010"),
+        ("18011", "CSIDL_FLAG_CREATE|0x00010011"),
+        ("18012", "CSIDL_FLAG_CREATE|0x00010012"),
+        ("18013", "CSIDL_FLAG_CREATE|0x00010013"),
+        ("18014", "CSIDL_FLAG_CREATE|0x00010014"),
+        ("18015", "CSIDL_FLAG_CREATE|0x00010015"),
+        ("18016", "CSIDL_FLAG_CREATE|0x00010016"),
+        ("18017", "CSIDL_FLAG_CREATE|0x00010017"),
+        ("18018", "CSIDL_FLAG_CREATE|0x00010018"),
+        ("18019", "CSIDL_FLAG_CREATE|0x00010019"),
+        ("18020", "CSIDL_FLAG_CREATE|0x00010020"),
+        ("18021", "CSIDL_FLAG_CREATE|0x00010021"),
+        ("18022", "CSIDL_FLAG_CREATE|0x00010022"),
+        ("18023", "CSIDL_FLAG_CREATE|0x00010023"),
+        ("18024", "CSIDL_FLAG_CREATE|0x00010024"),
+        ("18025", "CSIDL_FLAG_CREATE|0x00010025"),
+        ("18026", "CSIDL_FLAG_CREATE|0x00010026"),
+        ("18027", "CSIDL_FLAG_CREATE|0x00010027"),
+        ("18028", "CSIDL_FLAG_CREATE|0x00010028"),
+        ("18029", "CSIDL_FLAG_CREATE|0x00010029"),
+        ("18030", "CSIDL_FLAG_CREATE|0x00010030"),
+        ("18031", "CSIDL_FLAG_CREATE|0x00010031"),
+        ("18032", "CSIDL_FLAG_CREATE|0x00010032"),
+        ("18033", "CSIDL_FLAG_CREATE|0x00010033"),
+        ("18034", "CSIDL_FLAG_CREATE|0x00010034"),
+        ("18035", "CSIDL_FLAG_CREATE|0x00010035"),
+        ("18036", "CSIDL_FLAG_CREATE|0x00010036"),
+        ("18037", "CSIDL_FLAG_CREATE|0x00010037"),
+        ("18038", "CSIDL_FLAG_CREATE|0x00010038"),
+        ("18039", "CSIDL_FLAG_CREATE|0x00010039"),
+        ("18040", "CSIDL_FLAG_CREATE|0x00010040"),
+        ("18041", "CSIDL_FLAG_CREATE|0x00010041"),
+        ("18042", "CSIDL_FLAG_CREATE|0x00010042"),
+        ("18043", "CSIDL_FLAG_CREATE|0x00010043"),
+        ("18044", "CSIDL_FLAG_CREATE|0x00010044"),
+        ("18045", "CSIDL_FLAG_CREATE|0x00010045"),
+        ("18046", "CSIDL_FLAG_CREATE|0x00010046"),
+        ("18047", "CSIDL_FLAG_CREATE|0x00010047"),
+        ("18048", "CSIDL_FLAG_CREATE|0x00010048"),
+        ("18049", "CSIDL_FLAG_CREATE|0x00010049"),
+        ("18050", "CSIDL_FLAG_CREATE|0x00010050"),
+        ("18051", "CSIDL_FLAG_CREATE|0x00010051"),
+        ("18052", "CSIDL_FLAG_CREATE|0x00010052"),
+        ("18053", "CSIDL_FLAG_CREATE|0x00010053"),
+        ("18054", "CSIDL_FLAG_CREATE|0x00010054"),
+        ("18055", "CSIDL_FLAG_CREATE|0x00010055"),
+        ("18056", "CSIDL_FLAG_CREATE|0x00010056"),
+        ("18057", "CSIDL_FLAG_CREATE|0x00010057"),
+        ("18058", "CSIDL_FLAG_CREATE|0x00010058"),
+        ("18059", "CSIDL_FLAG_CREATE|0x00010059"),
+        ("18060", "CSIDL_FLAG_CREATE|0x00010060"),
+        ("18061", "CSIDL_FLAG_CREATE|0x00010061"),
+        ("18062", "CSIDL_FLAG_CREATE|0x00010062"),
+        ("18063", "CSIDL_FLAG_CREATE|0x00010063"),
+        ("18064", "CSIDL_FLAG_CREATE|0x00010064"),
+        ("18065", "CSIDL_FLAG_CREATE|0x00010065"),
+        ("18066", "CSIDL_FLAG_CREATE|0x00010066"),
+        ("18067", "CSIDL_FLAG_CREATE|0x00010067"),
+        ("18068", "CSIDL_FLAG_CREATE|0x00010068"),
+        ("18069", "CSIDL_FLAG_CREATE|0x00010069"),
+        ("18070", "CSIDL_FLAG_CREATE|0x00010070"),
+        ("18071", "CSIDL_FLAG_CREATE|0x00010071"),
+        ("18072", "CSIDL_FLAG_CREATE|0x00010072"),
+        ("18073", "CSIDL_FLAG_CREATE|0x00010073"),
+        ("18074", "CSIDL_FLAG_CREATE|0x00010074"),
+        ("18075", "CSIDL_FLAG_CREATE|0x00010075"),
+        ("18076", "CSIDL_FLAG_CREATE|0x00010076"),
+        ("18077", "CSIDL_FLAG_CREATE|0x00010077"),
+        ("18078", "CSIDL_FLAG_CREATE|0x00010078"),
+        ("18079", "CSIDL_FLAG_CREATE|0x00010079"),
+        ("18080", "CSIDL_FLAG_CREATE|0x00010080"),
+        ("18081", "CSIDL_FLAG_CREATE|0x00010081"),
+        ("18082", "CSIDL_FLAG_CREATE|0x00010082"),
+        ("18083", "CSIDL_FLAG_CREATE|0x00010083"),
+        ("18084", "CSIDL_FLAG_CREATE|0x00010084"),
+        ("18085", "CSIDL_FLAG_CREATE|0x00010085"),
+        ("18086", "CSIDL_FLAG_CREATE|0x00010086"),
+        ("18087", "CSIDL_FLAG_CREATE|0x00010087"),
+        ("18088", "CSIDL_FLAG_CREATE|0x00010088"),
+        ("18089", "CSIDL_FLAG_CREATE|0x00010089"),
+        ("18090", "CSIDL_FLAG_CREATE|0x00010090"),
+        ("18091", "CSIDL_FLAG_CREATE|0x00010091"),
+        ("18092", "CSIDL_FLAG_CREATE|0x00010092"),
+        ("18093", "CSIDL_FLAG_CREATE|0x00010093"),
+        ("18094", "CSIDL_FLAG_CREATE|0x00010094"),
+        ("18095", "CSIDL_FLAG_CREATE|0x00010095"),
+        ("18096", "CSIDL_FLAG_CREATE|0x00010096"),
+        ("18097", "CSIDL_FLAG_CREATE|0x00010097"),
+        ("18098", "CSIDL_FLAG_CREATE|0x00010098"),
+        ("18099", "CSIDL_FLAG_CREATE|0x00010099"),
+        ("18100", "CSIDL_FLAG_CREATE|0x00010100"),
+        ("18101", "CSIDL_FLAG_CREATE|0x00010101"),
+        ("18102", "CSIDL_FLAG_CREATE|0x00010102"),
+        ("18103", "CSIDL_FLAG_CREATE|0x00010103"),
+        ("18104", "CSIDL_FLAG_CREATE|0x00010104"),
+        ("18105", "CSIDL_FLAG_CREATE|0x00010105"),
+        ("18106", "CSIDL_FLAG_CREATE|0x00010106"),
+        ("18107", "CSIDL_FLAG_CREATE|0x00010107"),
+        ("18108", "CSIDL_FLAG_CREATE|0x00010108"),
+        ("18109", "CSIDL_FLAG_CREATE|0x00010109"),
+        ("18110", "CSIDL_FLAG_CREATE|0x00010110"),
+        ("18111", "CSIDL_FLAG_CREATE|0x00010111"),
+        ("18112", "CSIDL_FLAG_CREATE|0x00010112"),
+        ("18113", "CSIDL_FLAG_CREATE|0x00010113"),
+        ("18114", "CSIDL_FLAG_CREATE|0x00010114"),
+        ("18115", "CSIDL_FLAG_CREATE|0x00010115"),
+        ("18116", "CSIDL_FLAG_CREATE|0x00010116"),
+        ("18117", "CSIDL_FLAG_CREATE|0x00010117"),
+        ("18118", "CSIDL_FLAG_CREATE|0x00010118"),
+        ("18119", "CSIDL_FLAG_CREATE|0x00010119"),
+        ("18120", "CSIDL_FLAG_CREATE|0x00010120"),
+        ("18121", "CSIDL_FLAG_CREATE|0x00010121"),
+        ("18122", "CSIDL_FLAG_CREATE|0x00010122"),
+        ("18123", "CSIDL_FLAG_CREATE|0x00010123"),
+        ("18124", "CSIDL_FLAG_CREATE|0x00010124"),
+        ("18125", "CSIDL_FLAG_CREATE|0x00010125"),
+        ("18126", "CSIDL_FLAG_CREATE|0x00010126"),
+        ("18127", "CSIDL_FLAG_CREATE|0x00010127"),
+        ("18128", "CSIDL_FLAG_CREATE|0x00010128"),
+        ("18129", "CSIDL_FLAG_CREATE|0x00010129"),
+        ("18130", "CSIDL_FLAG_CREATE|0x00010130"),
+        ("18131", "CSIDL_FLAG_CREATE|0x00010131"),
+        ("18132", "CSIDL_FLAG_CREATE|0x00010132"),
+        ("18133", "CSIDL_FLAG_CREATE|0x00010133"),
+        ("18134", "CSIDL_FLAG_CREATE|0x00010134"),
+        ("18135", "CSIDL_FLAG_CREATE|0x00010135"),
+        ("18136", "CSIDL_FLAG_CREATE|0x00010136"),
+        ("18137", "CSIDL_FLAG_CREATE|0x00010137"),
+        ("18138", "CSIDL_FLAG_CREATE|0x00010138"),
+        ("18139", "CSIDL_FLAG_CREATE|0x00010139"),
+        ("18140", "CSIDL_FLAG_CREATE|0x00010140"),
+        ("18141", "CSIDL_FLAG_CREATE|0x00010141"),
+        ("18142", "CSIDL_FLAG_CREATE|0x00010142"),
+        ("18143", "CSIDL_FLAG_CREATE|0x00010143"),
+        ("18144", "CSIDL_FLAG_CREATE|0x00010144"),
+        ("18145", "CSIDL_FLAG_CREATE|0x00010145"),
+        ("18146", "CSIDL_FLAG_CREATE|0x00010146"),
+        ("18147", "CSIDL_FLAG_CREATE|0x00010147"),
+        ("18148", "CSIDL_FLAG_CREATE|0x00010148"),
+        ("18149", "CSIDL_FLAG_CREATE|0x00010149"),
+        ("18150", "CSIDL_FLAG_CREATE|0x00010150"),
+        ("18151", "CSIDL_FLAG_CREATE|0x00010151"),
+        ("18152", "CSIDL_FLAG_CREATE|0x00010152"),
+        ("18153", "CSIDL_FLAG_CREATE|0x00010153"),
+        ("18154", "CSIDL_FLAG_CREATE|0x00010154"),
+        ("18155", "CSIDL_FLAG_CREATE|0x00010155"),
+        ("18156", "CSIDL_FLAG_CREATE|0x00010156"),
+        ("18157", "CSIDL_FLAG_CREATE|0x00010157"),
+        ("18158", "CSIDL_FLAG_CREATE|0x00010158"),
+        ("18159", "CSIDL_FLAG_CREATE|0x00010159"),
+        ("18160", "CSIDL_FLAG_CREATE|0x00010160"),
+        ("18161", "CSIDL_FLAG_CREATE|0x00010161"),
+        ("18162", "CSIDL_FLAG_CREATE|0x00010162"),
+        ("18163", "CSIDL_FLAG_CREATE|0x00010163"),
+        ("18164", "CSIDL_FLAG_CREATE|0x00010164"),
+        ("18165", "CSIDL_FLAG_CREATE|0x00010165"),
+        ("18166", "CSIDL_FLAG_CREATE|0x00010166"),
+        ("18167", "CSIDL_FLAG_CREATE|0x00010167"),
+        ("18168", "CSIDL_FLAG_CREATE|0x00010168"),
+        ("18169", "CSIDL_FLAG_CREATE|0x00010169"),
+        ("18170", "CSIDL_FLAG_CREATE|0x00010170"),
+        ("18171", "CSIDL_FLAG_CREATE|0x00010171"),
+        ("18172", "CSIDL_FLAG_CREATE|0x00010172"),
+        ("18173", "CSIDL_FLAG_CREATE|0x00010173"),
+        ("18174", "CSIDL_FLAG_CREATE|0x00010174"),
+        ("18175", "CSIDL_FLAG_CREATE|0x00010175"),
+        ("18176", "CSIDL_FLAG_CREATE|0x00010176"),
+        ("18177", "CSIDL_FLAG_CREATE|0x00010177"),
+        ("18178", "CSIDL_FLAG_CREATE|0x00010178"),
+        ("18179", "CSIDL_FLAG_CREATE|0x00010179"),
+        ("18180", "CSIDL_FLAG_CREATE|0x00010180"),
+        ("18181", "CSIDL_FLAG_CREATE|0x00010181"),
+        ("18182", "CSIDL_FLAG_CREATE|0x00010182"),
+        ("18183", "CSIDL_FLAG_CREATE|0x00010183"),
+        ("18184", "CSIDL_FLAG_CREATE|0x00010184"),
+        ("18185", "CSIDL_FLAG_CREATE|0x00010185"),
+        ("18186", "CSIDL_FLAG_CREATE|0x00010186"),
+        ("18187", "CSIDL_FLAG_CREATE|0x00010187"),
+        ("18188", "CSIDL_FLAG_CREATE|0x00010188"),
+        ("18189", "CSIDL_FLAG_CREATE|0x00010189"),
+        ("18190", "CSIDL_FLAG_CREATE|0x00010190"),
+        ("18191", "CSIDL_FLAG_CREATE|0x00010191"),
+        ("18192", "CSIDL_FLAG_CREATE|0x00010192"),
+        ("18193", "CSIDL_FLAG_CREATE|0x00010193"),
+        ("18194", "CSIDL_FLAG_CREATE|0x00010194"),
+        ("18195", "CSIDL_FLAG_CREATE|0x00010195"),
+        ("18196", "CSIDL_FLAG_CREATE|0x00010196"),
+        ("18197", "CSIDL_FLAG_CREATE|0x00010197"),
+        ("18198", "CSIDL_FLAG_CREATE|0x00010198"),
+        ("18199", "CSIDL_FLAG_CREATE|0x00010199"),
+        ("18200", "CSIDL_FLAG_CREATE|0x00010200"),
+        ("18201", "CSIDL_FLAG_CREATE|0x00010201"),
+        ("18202", "CSIDL_FLAG_CREATE|0x00010202"),
+        ("18203", "CSIDL_FLAG_CREATE|0x00010203"),
+        ("18204", "CSIDL_FLAG_CREATE|0x00010204"),
+        ("18205", "CSIDL_FLAG_CREATE|0x00010205"),
+        ("18206", "CSIDL_FLAG_CREATE|0x00010206"),
+        ("18207", "CSIDL_FLAG_CREATE|0x00010207"),
+        ("18208", "CSIDL_FLAG_CREATE|0x00010208"),
+        ("18209", "CSIDL_FLAG_CREATE|0x00010209"),
+        ("18210", "CSIDL_FLAG_CREATE|0x00010210"),
+        ("18211", "CSIDL_FLAG_CREATE|0x00010211"),
+        ("18212", "CSIDL_FLAG_CREATE|0x00010212"),
+        ("18213", "CSIDL_FLAG_CREATE|0x00010213"),
+        ("18214", "CSIDL_FLAG_CREATE|0x00010214"),
+        ("18215", "CSIDL_FLAG_CREATE|0x00010215"),
+        ("18216", "CSIDL_FLAG_CREATE|0x00010216"),
+        ("18217", "CSIDL_FLAG_CREATE|0x00010217"),
+        ("18218", "CSIDL_FLAG_CREATE|0x00010218"),
+        ("18219", "CSIDL_FLAG_CREATE|0x00010219"),
+        ("18220", "CSIDL_FLAG_CREATE|0x00010220"),
+        ("18221", "CSIDL_FLAG_CREATE|0x00010221"),
+        ("18222", "CSIDL_FLAG_CREATE|0x00010222"),
+        ("18223", "CSIDL_FLAG_CREATE|0x00010223"),
+        ("18224", "CSIDL_FLAG_CREATE|0x00010224"),
+        ("18225", "CSIDL_FLAG_CREATE|0x00010225"),
+        ("18226", "CSIDL_FLAG_CREATE|0x00010226"),
+        ("18227", "CSIDL_FLAG_CREATE|0x00010227"),
+        ("18228", "CSIDL_FLAG_CREATE|0x00010228"),
+        ("18229", "CSIDL_FLAG_CREATE|0x00010229"),
+        ("18230", "CSIDL_FLAG_CREATE|0x00010230"),
+        ("18231", "CSIDL_FLAG_CREATE|0x00010231"),
+        ("18232", "CSIDL_FLAG_CREATE|0x00010232"),
+        ("18233", "CSIDL_FLAG_CREATE|0x00010233"),
+        ("18234", "CSIDL_FLAG_CREATE|0x00010234"),
+        ("18235", "CSIDL_FLAG_CREATE|0x00010235"),
+        ("18236", "CSIDL_FLAG_CREATE|0x00010236"),
+        ("18237", "CSIDL_FLAG_CREATE|0x00010237"),
+        ("18238", "CSIDL_FLAG_CREATE|0x00010238"),
+        ("18239", "CSIDL_FLAG_CREATE|0x00010239"),
+        ("18240", "CSIDL_FLAG_CREATE|0x00010240"),
+        ("18241", "CSIDL_FLAG_CREATE|0x00010241"),
+        ("18242", "CSIDL_FLAG_CREATE|0x00010242"),
+        ("18243", "CSIDL_FLAG_CREATE|0x00010243"),
+        ("18244", "CSIDL_FLAG_CREATE|0x00010244"),
+        ("18245", "CSIDL_FLAG_CREATE|0x00010245"),
+        ("18246", "CSIDL_FLAG_CREATE|0x00010246"),
+        ("18247", "CSIDL_FLAG_CREATE|0x00010247"),
+        ("18248", "CSIDL_FLAG_CREATE|0x00010248"),
+        ("18249", "CSIDL_FLAG_CREATE|0x00010249"),
+        ("18250", "CSIDL_FLAG_CREATE|0x00010250"),
+        ("18251", "CSIDL_FLAG_CREATE|0x00010251"),
+        ("18252", "CSIDL_FLAG_CREATE|0x00010252"),
+        ("18253", "CSIDL_FLAG_CREATE|0x00010253"),
+        ("18254", "CSIDL_FLAG_CREATE|0x00010254"),
+        ("18255", "CSIDL_FLAG_CREATE|0x00010255"),
+        ("18256", "CSIDL_FLAG_CREATE|0x00010256"),
+        ("18257", "CSIDL_FLAG_CREATE|0x00010257"),
+        ("18258", "CSIDL_FLAG_CREATE|0x00010258"),
+        ("18259", "CSIDL_FLAG_CREATE|0x00010259"),
+        ("18260", "CSIDL_FLAG_CREATE|0x00010260"),
+        ("18261", "CSIDL_FLAG_CREATE|0x00010261"),
+        ("18262", "CSIDL_FLAG_CREATE|0x00010262"),
+        ("18263", "CSIDL_FLAG_CREATE|0x00010263"),
+        ("18264", "CSIDL_FLAG_CREATE|0x00010264"),
+        ("18265", "CSIDL_FLAG_CREATE|0x00010265"),
+        ("18266", "CSIDL_FLAG_CREATE|0x00010266"),
+        ("18267", "CSIDL_FLAG_CREATE|0x00010267"),
+        ("18268", "CSIDL_FLAG_CREATE|0x00010268"),
+        ("18269", "CSIDL_FLAG_CREATE|0x00010269"),
+        ("18270", "CSIDL_FLAG_CREATE|0x00010270"),
+        ("18271", "CSIDL_FLAG_CREATE|0x00010271"),
+        ("18272", "CSIDL_FLAG_CREATE|0x00010272"),
+        ("18273", "CSIDL_FLAG_CREATE|0x00010273"),
+        ("18274", "CSIDL_FLAG_CREATE|0x00010274"),
+        ("18275", "CSIDL_FLAG_CREATE|0x00010275"),
+        ("18276", "CSIDL_FLAG_CREATE|0x00010276"),
+        ("18277", "CSIDL_FLAG_CREATE|0x00010277"),
+        ("18278", "CSIDL_FLAG_CREATE|0x00010278"),
+        ("18279", "CSIDL_FLAG_CREATE|0x00010279"),
+        ("18280", "CSIDL_FLAG_CREATE|0x00010280"),
+        ("18281", "CSIDL_FLAG_CREATE|0x00010281"),
+        ("18282", "CSIDL_FLAG_CREATE|0x00010282"),
+        ("18283", "CSIDL_FLAG_CREATE|0x00010283"),
+        ("18284", "CSIDL_FLAG_CREATE|0x00010284"),
+        ("18285", "CSIDL_FLAG_CREATE|0x00010285"),
+        ("18286", "CSIDL_FLAG_CREATE|0x00010286"),
+        ("18287", "CSIDL_FLAG_CREATE|0x00010287"),
+        ("18288", "CSIDL_FLAG_CREATE|0x00010288"),
+        ("18289", "CSIDL_FLAG_CREATE|0x00010289"),
+        ("18290", "CSIDL_FLAG_CREATE|0x00010290"),
+        ("18291", "CSIDL_FLAG_CREATE|0x00010291"),
+        ("18292", "CSIDL_FLAG_CREATE|0x00010292"),
+        ("18293", "CSIDL_FLAG_CREATE|0x00010293"),
+        ("18294", "CSIDL_FLAG_CREATE|0x00010294"),
+        ("18295", "CSIDL_FLAG_CREATE|0x00010295"),
+        ("18296", "CSIDL_FLAG_CREATE|0x00010296"),
+        ("18297", "CSIDL_FLAG_CREATE|0x00010297"),
+        ("18298", "CSIDL_FLAG_CREATE|0x00010298"),
+        ("18299", "CSIDL_FLAG_CREATE|0x00010299"),
+        ("18300", "CSIDL_FLAG_CREATE|0x00010300"),
+        ("18301", "CSIDL_FLAG_CREATE|0x00010301"),
+        ("18302", "CSIDL_FLAG_CREATE|0x00010302"),
+        ("18303", "CSIDL_FLAG_CREATE|0x00010303"),
+        ("18304", "CSIDL_FLAG_CREATE|0x00010304"),
+        ("18305", "CSIDL_FLAG_CREATE|0x00010305"),
+        ("18306", "CSIDL_FLAG_CREATE|0x00010306"),
+        ("18307", "CSIDL_FLAG_CREATE|0x00010307"),
+        ("18308", "CSIDL_FLAG_CREATE|0x00010308"),
+        ("18309", "CSIDL_FLAG_CREATE|0x00010309"),
+        ("18310", "CSIDL_FLAG_CREATE|0x00010310"),
+        ("18311", "CSIDL_FLAG_CREATE|0x00010311"),
+        ("18312", "CSIDL_FLAG_CREATE|0x00010312"),
+        ("18313", "CSIDL_FLAG_CREATE|0x00010313"),
+        ("18314", "CSIDL_FLAG_CREATE|0x00010314"),
+        ("18315", "CSIDL_FLAG_CREATE|0x00010315"),
+        ("18316", "CSIDL_FLAG_CREATE|0x00010316"),
+        ("18317", "CSIDL_FLAG_CREATE|0x00010317"),
+        ("18318", "CSIDL_FLAG_CREATE|0x00010318"),
+        ("18319", "CSIDL_FLAG_CREATE|0x00010319"),
+        ("18320", "CSIDL_FLAG_CREATE|0x00010320"),
+        ("18321", "CSIDL_FLAG_CREATE|0x00010321"),
+        ("18322", "CSIDL_FLAG_CREATE|0x00010322"),
+        ("18323", "CSIDL_FLAG_CREATE|0x00010323"),
+        ("18324", "CSIDL_FLAG_CREATE|0x00010324"),
+        ("18325", "CSIDL_FLAG_CREATE|0x00010325"),
+        ("18326", "CSIDL_FLAG_CREATE|0x00010326"),
+        ("18327", "CSIDL_FLAG_CREATE|0x00010327"),
+        ("18328", "CSIDL_FLAG_CREATE|0x00010328"),
+        ("18329", "CSIDL_FLAG_CREATE|0x00010329"),
+        ("18330", "CSIDL_FLAG_CREATE|0x00010330"),
+        ("18331", "CSIDL_FLAG_CREATE|0x00010331"),
+        ("18332", "CSIDL_FLAG_CREATE|0x00010332"),
+        ("18333", "CSIDL_FLAG_CREATE|0x00010333"),
+        ("18334", "CSIDL_FLAG_CREATE|0x00010334"),
+        ("18335", "CSIDL_FLAG_CREATE|0x00010335"),
+        ("18336", "CSIDL_FLAG_CREATE|0x00010336"),
+        ("18337", "CSIDL_FLAG_CREATE|0x00010337"),
+        ("18338", "CSIDL_FLAG_CREATE|0x00010338"),
+        ("18339", "CSIDL_FLAG_CREATE|0x00010339"),
+        ("18340", "CSIDL_FLAG_CREATE|0x00010340"),
+        ("18341", "CSIDL_FLAG_CREATE|0x00010341"),
+        ("18342", "CSIDL_FLAG_CREATE|0x00010342"),
+        ("18343", "CSIDL_FLAG_CREATE|0x00010343"),
+        ("18344", "CSIDL_FLAG_CREATE|0x00010344"),
+        ("18345", "CSIDL_FLAG_CREATE|0x00010345"),
+        ("18346", "CSIDL_FLAG_CREATE|0x00010346"),
+        ("18347", "CSIDL_FLAG_CREATE|0x00010347"),
+        ("18348", "CSIDL_FLAG_CREATE|0x00010348"),
+        ("18349", "CSIDL_FLAG_CREATE|0x00010349"),
+        ("18350", "CSIDL_FLAG_CREATE|0x00010350"),
+        ("18351", "CSIDL_FLAG_CREATE|0x00010351"),
+        ("18352", "CSIDL_FLAG_CREATE|0x00010352"),
+        ("18353", "CSIDL_FLAG_CREATE|0x00010353"),
+        ("18354", "CSIDL_FLAG_CREATE|0x00010354"),
+        ("18355", "CSIDL_FLAG_CREATE|0x00010355"),
+        ("18356", "CSIDL_FLAG_CREATE|0x00010356"),
+        ("18357", "CSIDL_FLAG_CREATE|0x00010357"),
+        ("18358", "CSIDL_FLAG_CREATE|0x00010358"),
+        ("18359", "CSIDL_FLAG_CREATE|0x00010359"),
+        ("18360", "CSIDL_FLAG_CREATE|0x00010360"),
+        ("18361", "CSIDL_FLAG_CREATE|0x00010361"),
+        ("18362", "CSIDL_FLAG_CREATE|0x00010362"),
+        ("18363", "CSIDL_FLAG_CREATE|0x00010363"),
+        ("18364", "CSIDL_FLAG_CREATE|0x00010364"),
+        ("18365", "CSIDL_FLAG_CREATE|0x00010365"),
+        ("18366", "CSIDL_FLAG_CREATE|0x00010366"),
+        ("18367", "CSIDL_FLAG_CREATE|0x00010367"),
+        ("18368", "CSIDL_FLAG_CREATE|0x00010368"),
+        ("18369", "CSIDL_FLAG_CREATE|0x00010369"),
+        ("18370", "CSIDL_FLAG_CREATE|0x00010370"),
+        ("18371", "CSIDL_FLAG_CREATE|0x00010371"),
+        ("18372", "CSIDL_FLAG_CREATE|0x00010372"),
+        ("18373", "CSIDL_FLAG_CREATE|0x00010373"),
+        ("18374", "CSIDL_FLAG_CREATE|0x00010374"),
+        ("18375", "CSIDL_FLAG_CREATE|0x00010375"),
+        ("18376", "CSIDL_FLAG_CREATE|0x00010376"),
+        ("18377", "CSIDL_FLAG_CREATE|0x00010377"),
+        ("18378", "CSIDL_FLAG_CREATE|0x00010378"),
+        ("18379", "CSIDL_FLAG_CREATE|0x00010379"),
+        ("18380", "CSIDL_FLAG_CREATE|0x00010380"),
+        ("18381", "CSIDL_FLAG_CREATE|0x00010381"),
+        ("18382", "CSIDL_FLAG_CREATE|0x00010382"),
+        ("18383", "CSIDL_FLAG_CREATE|0x00010383"),
+        ("18384", "CSIDL_FLAG_CREATE|0x00010384"),
+        ("18385", "CSIDL_FLAG_CREATE|0x00010385"),
+        ("18386", "CSIDL_FLAG_CREATE|0x00010386"),
+        ("18387", "CSIDL_FLAG_CREATE|0x00010387"),
+        ("18388", "CSIDL_FLAG_CREATE|0x00010388"),
+        ("18389", "CSIDL_FLAG_CREATE|0x00010389"),
+        ("18390", "CSIDL_FLAG_CREATE|0x00010390"),
+        ("18391", "CSIDL_FLAG_CREATE|0x00010391"),
+        ("18392", "CSIDL_FLAG_CREATE|0x00010392"),
+        ("18393", "CSIDL_FLAG_CREATE|0x00010393"),
+        ("18394", "CSIDL_FLAG_CREATE|0x00010394"),
+        ("18395", "CSIDL_FLAG_CREATE|0x00010395"),
+        ("18396", "CSIDL_FLAG_CREATE|0x00010396"),
+        ("18397", "CSIDL_FLAG_CREATE|0x00010397"),
+        ("18398", "CSIDL_FLAG_CREATE|0x00010398"),
+        ("18399", "CSIDL_FLAG_CREATE|0x00010399"),
+        ("18400", "CSIDL_FLAG_CREATE|0x00010400"),
+        ("18401", "CSIDL_FLAG_CREATE|0x00010401"),
+        ("18402", "CSIDL_FLAG_CREATE|0x00010402"),
+        ("18403", "CSIDL_FLAG_CREATE|0x00010403"),
+        ("18404", "CSIDL_FLAG_CREATE|0x00010404"),
+        ("18405", "CSIDL_FLAG_CREATE|0x00010405"),
+        ("18406", "CSIDL_FLAG_CREATE|0x00010406"),
+        ("18407", "CSIDL_FLAG_CREATE|0x00010407"),
+        ("18408", "CSIDL_FLAG_CREATE|0x00010408"),
+        ("18409", "CSIDL_FLAG_CREATE|0x00010409"),
+        ("18410", "CSIDL_FLAG_CREATE|0x00010410"),
+        ("18411", "CSIDL_FLAG_CREATE|0x00010411"),
+        ("18412", "CSIDL_FLAG_CREATE|0x00010412"),
+        ("18413", "CSIDL_FLAG_CREATE|0x00010413"),
+        ("18414", "CSIDL_FLAG_CREATE|0x00010414"),
+        ("18415", "CSIDL_FLAG_CREATE|0x00010415"),
+        ("18416", "CSIDL_FLAG_CREATE|0x00010416"),
+        ("18417", "CSIDL_FLAG_CREATE|0x00010417"),
+        ("18418", "CSIDL_FLAG_CREATE|0x00010418"),
+        ("18419", "CSIDL_FLAG_CREATE|0x00010419"),
+        ("18420", "CSIDL_FLAG_CREATE|0x00010420"),
+        ("18421", "CSIDL_FLAG_CREATE|0x00010421"),
+        ("18422", "CSIDL_FLAG_CREATE|0x00010422"),
+        ("18423", "CSIDL_FLAG_CREATE|0x00010423"),
+        ("18424", "CSIDL_FLAG_CREATE|0x00010424"),
+        ("18425", "CSIDL_FLAG_CREATE|0x00010425"),
+        ("18426", "CSIDL_FLAG_CREATE|0x00010426"),
+        ("18427", "CSIDL_FLAG_CREATE|0x00010427"),
+        ("18428", "CSIDL_FLAG_CREATE|0x00010428"),
+        ("18429", "CSIDL_FLAG_CREATE|0x00010429"),
+        ("18430", "CSIDL_FLAG_CREATE|0x00010430"),
+        ("18431", "CSIDL_FLAG_CREATE|0x00010431"),
+        ("18432", "CSIDL_FLAG_CREATE|0x00010432"),
+        ("18433", "CSIDL_FLAG_CREATE|0x00010433"),
+        ("18434", "CSIDL_FLAG_CREATE|0x00010434"),
+        ("18435", "CSIDL_FLAG_CREATE|0x00010435"),
+        ("18436", "CSIDL_FLAG_CREATE|0x00010436"),
+        ("18437", "CSIDL_FLAG_CREATE|0x00010437"),
+        ("18438", "CSIDL_FLAG_CREATE|0x00010438"),
+        ("18439", "CSIDL_FLAG_CREATE|0x00010439"),
+        ("18440", "CSIDL_FLAG_CREATE|0x00010440"),
+        ("18441", "CSIDL_FLAG_CREATE|0x00010441"),
+        ("18442", "CSIDL_FLAG_CREATE|0x00010442"),
+        ("18443", "CSIDL_FLAG_CREATE|0x00010443"),
+        ("18444", "CSIDL_FLAG_CREATE|0x00010444"),
+        ("18445", "CSIDL_FLAG_CREATE|0x00010445"),
+        ("18446", "CSIDL_FLAG_CREATE|0x00010446"),
+        ("18447", "CSIDL_FLAG_CREATE|0x00010447"),
+        ("18448", "CSIDL_FLAG_CREATE|0x00010448"),
+        ("18449", "CSIDL_FLAG_CREATE|0x00010449"),
+        ("18450", "CSIDL_FLAG_CREATE|0x00010450"),
+        ("18451", "CSIDL_FLAG_CREATE|0x00010451"),
+        ("18452", "CSIDL_FLAG_CREATE|0x00010452"),
+        ("18453", "CSIDL_FLAG_CREATE|0x00010453"),
+        ("18454", "CSIDL_FLAG_CREATE|0x00010454"),
+        ("18455", "CSIDL_FLAG_CREATE|0x00010455"),
+        ("18456", "CSIDL_FLAG_CREATE|0x00010456"),
+        ("18457", "CSIDL_FLAG_CREATE|0x00010457"),
+        ("18458", "CSIDL_FLAG_CREATE|0x00010458"),
+        ("18459", "CSIDL_FLAG_CREATE|0x00010459"),
+        ("18460", "CSIDL_FLAG_CREATE|0x00010460"),
+        ("18461", "CSIDL_FLAG_CREATE|0x00010461"),
+        ("18462", "CSIDL_FLAG_CREATE|0x00010462"),
+        ("18463", "CSIDL_FLAG_CREATE|0x00010463"),
+        ("18464", "CSIDL_FLAG_CREATE|0x00010464"),
+        ("18465", "CSIDL_FLAG_CREATE|0x00010465"),
+        ("18466", "CSIDL_FLAG_CREATE|0x00010466"),
+        ("18467", "CSIDL_FLAG_CREATE|0x00010467"),
+        ("18468", "CSIDL_FLAG_CREATE|0x00010468"),
+        ("18469", "CSIDL_FLAG_CREATE|0x00010469"),
+        ("18470", "CSIDL_FLAG_CREATE|0x00010470"),
+        ("18471", "CSIDL_FLAG_CREATE|0x00010471"),
+        ("18472", "CSIDL_FLAG_CREATE|0x00010472"),
+        ("18473", "CSIDL_FLAG_CREATE|0x00010473"),
+        ("18474", "CSIDL_FLAG_CREATE|0x00010474"),
+        ("18475", "CSIDL_FLAG_CREATE|0x00010475"),
+        ("18476", "CSIDL_FLAG_CREATE|0x00010476"),
+        ("18477", "CSIDL_FLAG_CREATE|0x00010477"),
+        ("18478", "CSIDL_FLAG_CREATE|0x00010478"),
+        ("18479", "CSIDL_FLAG_CREATE|0x00010479"),
+        ("18480", "CSIDL_FLAG_CREATE|0x00010480"),
+        ("18481", "CSIDL_FLAG_CREATE|0x00010481"),
+        ("18482", "CSIDL_FLAG_CREATE|0x00010482"),
+        ("18483", "CSIDL_FLAG_CREATE|0x00010483"),
+        ("18484", "CSIDL_FLAG_CREATE|0x00010484"),
+        ("18485", "CSIDL_FLAG_CREATE|0x00010485"),
+        ("18486", "CSIDL_FLAG_CREATE|0x00010486"),
+        ("18487", "CSIDL_FLAG_CREATE|0x00010487"),
+        ("18488", "CSIDL_FLAG_CREATE|0x00010488"),
+        ("18489", "CSIDL_FLAG_CREATE|0x00010489"),
+        ("18490", "CSIDL_FLAG_CREATE|0x00010490"),
+        ("18491", "CSIDL_FLAG_CREATE|0x00010491"),
+        ("18492", "CSIDL_FLAG_CREATE|0x00010492"),
+        ("18493", "CSIDL_FLAG_CREATE|0x00010493"),
+        ("18494", "CSIDL_FLAG_CREATE|0x00010494"),
+        ("18495", "CSIDL_FLAG_CREATE|0x00010495"),
+        ("18496", "CSIDL_FLAG_CREATE|0x00010496"),
+        ("18497", "CSIDL_FLAG_CREATE|0x00010497"),
+        ("18498", "CSIDL_FLAG_CREATE|0x00010498"),
+        ("18499", "CSIDL_FLAG_CREATE|0x00010499"),
+        ("18500", "CSIDL_FLAG_CREATE|0x00010500"),
+        ("18501", "CSIDL_FLAG_CREATE|0x00010501"),
+        ("18502", "CSIDL_FLAG_CREATE|0x00010502"),
+        ("18503", "CSIDL_FLAG_CREATE|0x00010503"),
+        ("18504", "CSIDL_FLAG_CREATE|0x00010504"),
+        ("18505", "CSIDL_FLAG_CREATE|0x00010505"),
+        ("18506", "CSIDL_FLAG_CREATE|0x00010506"),
+        ("18507", "CSIDL_FLAG_CREATE|0x00010507"),
+        ("18508", "CSIDL_FLAG_CREATE|0x00010508"),
+        ("18509", "CSIDL_FLAG_CREATE|0x00010509"),
+        ("18510", "CSIDL_FLAG_CREATE|0x00010510"),
+        ("18511", "CSIDL_FLAG_CREATE|0x00010511"),
+        ("18512", "CSIDL_FLAG_CREATE|0x00010512"),
+        ("18513", "CSIDL_FLAG_CREATE|0x00010513"),
+        ("18514", "CSIDL_FLAG_CREATE|0x00010514"),
+        ("18515", "CSIDL_FLAG_CREATE|0x00010515"),
+        ("18516", "CSIDL_FLAG_CREATE|0x00010516"),
+        ("18517", "CSIDL_FLAG_CREATE|0x00010517"),
+        ("18518", "CSIDL_FLAG_CREATE|0x00010518"),
+        ("18519", "CSIDL_FLAG_CREATE|0x00010519"),
+        ("18520", "CSIDL_FLAG_CREATE|0x00010520"),
+        ("18521", "CSIDL_FLAG_CREATE|0x00010521"),
+        ("18522", "CSIDL_FLAG_CREATE|0x00010522"),
+        ("18523", "CSIDL_FLAG_CREATE|0x00010523"),
+        ("18524", "CSIDL_FLAG_CREATE|0x00010524"),
+        ("18525", "CSIDL_FLAG_CREATE|0x00010525"),
+        ("18526", "CSIDL_FLAG_CREATE|0x00010526"),
+        ("18527", "CSIDL_FLAG_CREATE|0x00010527"),
+        ("18528", "CSIDL_FLAG_CREATE|0x00010528"),
+        ("18529", "CSIDL_FLAG_CREATE|0x00010529"),
+        ("18530", "CSIDL_FLAG_CREATE|0x00010530"),
+        ("18531", "CSIDL_FLAG_CREATE|0x00010531"),
+        ("18532", "CSIDL_FLAG_CREATE|0x00010532"),
+        ("18533", "CSIDL_FLAG_CREATE|0x00010533"),
+        ("18534", "CSIDL_FLAG_CREATE|0x00010534"),
+        ("18535", "CSIDL_FLAG_CREATE|0x00010535"),
+        ("18536", "CSIDL_FLAG_CREATE|0x00010536"),
+        ("18537", "CSIDL_FLAG_CREATE|0x00010537"),
+        ("18538", "CSIDL_FLAG_CREATE|0x00010538"),
+        ("18539", "CSIDL_FLAG_CREATE|0x00010539"),
+        ("18540", "CSIDL_FLAG_CREATE|0x00010540"),
+        ("18541", "CSIDL_FLAG_CREATE|0x00010541"),
+        ("18542", "CSIDL_FLAG_CREATE|0x00010542"),
+        ("18543", "CSIDL_FLAG_CREATE|0x00010543"),
+        ("18544", "CSIDL_FLAG_CREATE|0x00010544"),
+        ("18545", "CSIDL_FLAG_CREATE|0x00010545"),
+        ("18546", "CSIDL_FLAG_CREATE|0x00010546"),
+        ("18547", "CSIDL_FLAG_CREATE|0x00010547"),
+        ("18548", "CSIDL_FLAG_CREATE|0x00010548"),
+        ("18549", "CSIDL_FLAG_CREATE|0x00010549"),
+        ("18550", "CSIDL_FLAG_CREATE|0x00010550"),
+        ("18551", "CSIDL_FLAG_CREATE|0x00010551"),
+        ("18552", "CSIDL_FLAG_CREATE|0x00010552"),
+        ("18553", "CSIDL_FLAG_CREATE|0x00010553"),
+        ("18554", "CSIDL_FLAG_CREATE|0x00010554"),
+        ("18555", "CSIDL_FLAG_CREATE|0x00010555"),
+        ("18556", "CSIDL_FLAG_CREATE|0x00010556"),
+        ("18557", "CSIDL_FLAG_CREATE|0x00010557"),
+        ("18558", "CSIDL_FLAG_CREATE|0x00010558"),
+        ("18559", "CSIDL_FLAG_CREATE|0x00010559"),
+        ("18560", "CSIDL_FLAG_CREATE|0x00010560"),
+        ("18561", "CSIDL_FLAG_CREATE|0x00010561"),
+        ("18562", "CSIDL_FLAG_CREATE|0x00010562"),
+        ("18563", "CSIDL_FLAG_CREATE|0x00010563"),
+        ("18564", "CSIDL_FLAG_CREATE|0x00010564"),
+        ("18565", "CSIDL_FLAG_CREATE|0x00010565"),
+        ("18566", "CSIDL_FLAG_CREATE|0x00010566"),
+        ("18567", "CSIDL_FLAG_CREATE|0x00010567"),
+        ("18568", "CSIDL_FLAG_CREATE|0x00010568"),
+        ("18569", "CSIDL_FLAG_CREATE|0x00010569"),
+        ("18570", "CSIDL_FLAG_CREATE|0x00010570"),
+        ("18571", "CSIDL_FLAG_CREATE|0x00010571"),
+        ("18572", "CSIDL_FLAG_CREATE|0x00010572"),
+        ("18573", "CSIDL_FLAG_CREATE|0x00010573"),
+        ("18574", "CSIDL_FLAG_CREATE|0x00010574"),
+        ("18575", "CSIDL_FLAG_CREATE|0x00010575"),
+        ("18576", "CSIDL_FLAG_CREATE|0x00010576"),
+        ("18577", "CSIDL_FLAG_CREATE|0x00010577"),
+        ("18578", "CSIDL_FLAG_CREATE|0x00010578"),
+        ("18579", "CSIDL_FLAG_CREATE|0x00010579"),
+        ("18580", "CSIDL_FLAG_CREATE|0x00010580"),
+        ("18581", "CSIDL_FLAG_CREATE|0x00010581"),
+        ("18582", "CSIDL_FLAG_CREATE|0x00010582"),
+        ("18583", "CSIDL_FLAG_CREATE|0x00010583"),
+        ("18584", "CSIDL_FLAG_CREATE|0x00010584"),
+        ("18585", "CSIDL_FLAG_CREATE|0x00010585"),
+        ("18586", "CSIDL_FLAG_CREATE|0x00010586"),
+        ("18587", "CSIDL_FLAG_CREATE|0x00010587"),
+        ("18588", "CSIDL_FLAG_CREATE|0x00010588"),
+        ("18589", "CSIDL_FLAG_CREATE|0x00010589"),
+        ("18590", "CSIDL_FLAG_CREATE|0x00010590"),
+        ("18591", "CSIDL_FLAG_CREATE|0x00010591"),
+        ("18592", "CSIDL_FLAG_CREATE|0x00010592"),
+        ("18593", "CSIDL_FLAG_CREATE|0x00010593"),
+        ("18594", "CSIDL_FLAG_CREATE|0x00010594"),
+        ("18595", "CSIDL_FLAG_CREATE|0x00010595"),
+        ("18596", "CSIDL_FLAG_CREATE|0x00010596"),
+        ("18597", "CSIDL_FLAG_CREATE|0x00010597"),
+        ("18598", "CSIDL_FLAG_CREATE|0x00010598"),
+        ("18599", "CSIDL_FLAG_CREATE|0x00010599"),
+        ("18600", "CSIDL_FLAG_CREATE|0x00010600"),
+        ("18601", "CSIDL_FLAG_CREATE|0x00010601"),
+        ("18602", "CSIDL_FLAG_CREATE|0x00010602"),
+        ("18603", "CSIDL_FLAG_CREATE|0x00010603"),
+        ("18604", "CSIDL_FLAG_CREATE|0x00010604"),
+        ("18605", "CSIDL_FLAG_CREATE|0x00010605"),
+        ("18606", "CSIDL_FLAG_CREATE|0x00010606"),
+        ("18607", "CSIDL_FLAG_CREATE|0x00010607"),
+        ("18608", "CSIDL_FLAG_CREATE|0x00010608"),
+        ("18609", "CSIDL_FLAG_CREATE|0x00010609"),
+        ("18610", "CSIDL_FLAG_CREATE|0x00010610"),
+        ("18611", "CSIDL_FLAG_CREATE|0x00010611"),
+        ("18612", "CSIDL_FLAG_CREATE|0x00010612"),
+        ("18613", "CSIDL_FLAG_CREATE|0x00010613"),
+        ("18614", "CSIDL_FLAG_CREATE|0x00010614"),
+        ("18615", "CSIDL_FLAG_CREATE|0x00010615"),
+        ("18616", "CSIDL_FLAG_CREATE|0x00010616"),
+        ("18617", "CSIDL_FLAG_CREATE|0x00010617"),
+        ("18618", "CSIDL_FLAG_CREATE|0x00010618"),
+        ("18619", "CSIDL_FLAG_CREATE|0x00010619"),
+        ("18620", "CSIDL_FLAG_CREATE|0x00010620"),
+        ("18621", "CSIDL_FLAG_CREATE|0x00010621"),
+        ("18622", "CSIDL_FLAG_CREATE|0x00010622"),
+        ("18623", "CSIDL_FLAG_CREATE|0x00010623"),
+        ("18624", "CSIDL_FLAG_CREATE|0x00010624"),
+        ("18625", "CSIDL_FLAG_CREATE|0x00010625"),
+        ("18626", "CSIDL_FLAG_CREATE|0x00010626"),
+        ("18627", "CSIDL_FLAG_CREATE|0x00010627"),
+        ("18628", "CSIDL_FLAG_CREATE|0x00010628"),
+        ("18629", "CSIDL_FLAG_CREATE|0x00010629"),
+        ("18630", "CSIDL_FLAG_CREATE|0x00010630"),
+        ("18631", "CSIDL_FLAG_CREATE|0x00010631"),
+        ("18632", "CSIDL_FLAG_CREATE|0x00010632"),
+        ("18633", "CSIDL_FLAG_CREATE|0x00010633"),
+        ("18634", "CSIDL_FLAG_CREATE|0x00010634"),
+        ("18635", "CSIDL_FLAG_CREATE|0x00010635"),
+        ("18636", "CSIDL_FLAG_CREATE|0x00010636"),
+        ("18637", "CSIDL_FLAG_CREATE|0x00010637"),
+        ("18638", "CSIDL_FLAG_CREATE|0x00010638"),
+        ("18639", "CSIDL_FLAG_CREATE|0x00010639"),
+        ("18640", "CSIDL_FLAG_CREATE|0x00010640"),
+        ("18641", "CSIDL_FLAG_CREATE|0x00010641"),
+        ("18642", "CSIDL_FLAG_CREATE|0x00010642"),
+        ("18643", "CSIDL_FLAG_CREATE|0x00010643"),
+        ("18644", "CSIDL_FLAG_CREATE|0x00010644"),
+        ("18645", "CSIDL_FLAG_CREATE|0x00010645"),
+        ("18646", "CSIDL_FLAG_CREATE|0x00010646"),
+        ("18647", "CSIDL_FLAG_CREATE|0x00010647"),
+        ("18648", "CSIDL_FLAG_CREATE|0x00010648"),
+        ("18649", "CSIDL_FLAG_CREATE|0x00010649"),
+        ("18650", "CSIDL_FLAG_CREATE|0x00010650"),
+        ("18651", "CSIDL_FLAG_CREATE|0x00010651"),
+        ("18652", "CSIDL_FLAG_CREATE|0x00010652"),
+        ("18653", "CSIDL_FLAG_CREATE|0x00010653"),
+        ("18654", "CSIDL_FLAG_CREATE|0x00010654"),
+        ("18655", "CSIDL_FLAG_CREATE|0x00010655"),
+        ("18656", "CSIDL_FLAG_CREATE|0x00010656"),
+        ("18657", "CSIDL_FLAG_CREATE|0x00010657"),
+        ("18658", "CSIDL_FLAG_CREATE|0x00010658"),
+        ("18659", "CSIDL_FLAG_CREATE|0x00010659"),
+        ("18660", "CSIDL_FLAG_CREATE|0x00010660"),
+        ("18661", "CSIDL_FLAG_CREATE|0x00010661"),
+        ("18662", "CSIDL_FLAG_CREATE|0x00010662"),
+        ("18663", "CSIDL_FLAG_CREATE|0x00010663"),
+        ("18664", "CSIDL_FLAG_CREATE|0x00010664"),
+        ("18665", "CSIDL_FLAG_CREATE|0x00010665"),
+        ("18666", "CSIDL_FLAG_CREATE|0x00010666"),
+        ("18667", "CSIDL_FLAG_CREATE|0x00010667"),
+        ("18668", "CSIDL_FLAG_CREATE|0x00010668"),
+        ("18669", "CSIDL_FLAG_CREATE|0x00010669"),
+        ("18670", "CSIDL_FLAG_CREATE|0x00010670"),
+        ("18671", "CSIDL_FLAG_CREATE|0x00010671"),
+        ("18672", "CSIDL_FLAG_CREATE|0x00010672"),
+        ("18673", "CSIDL_FLAG_CREATE|0x00010673"),
+        ("18674", "CSIDL_FLAG_CREATE|0x00010674"),
+        ("18675", "CSIDL_FLAG_CREATE|0x00010675"),
+        ("18676", "CSIDL_FLAG_CREATE|0x00010676"),
+        ("18677", "CSIDL_FLAG_CREATE|0x00010677"),
+        ("18678", "CSIDL_FLAG_CREATE|0x00010678"),
+        ("18679", "CSIDL_FLAG_CREATE|0x00010679"),
+        ("18680", "CSIDL_FLAG_CREATE|0x00010680"),
+        ("18681", "CSIDL_FLAG_CREATE|0x00010681"),
+        ("18682", "CSIDL_FLAG_CREATE|0x00010682"),
+        ("18683", "CSIDL_FLAG_CREATE|0x00010683"),
+        ("18684", "CSIDL_FLAG_CREATE|0x00010684"),
+        ("18685", "CSIDL_FLAG_CREATE|0x00010685"),
+        ("18686", "CSIDL_FLAG_CREATE|0x00010686"),
+        ("18687", "CSIDL_FLAG_CREATE|0x00010687"),
+        ("18688", "CSIDL_FLAG_CREATE|0x00010688"),
+        ("18689", "CSIDL_FLAG_CREATE|0x00010689"),
+        ("18690", "CSIDL_FLAG_CREATE|0x00010690"),
+        ("18691", "CSIDL_FLAG_CREATE|0x00010691"),
+        ("18692", "CSIDL_FLAG_CREATE|0x00010692"),
+        ("18693", "CSIDL_FLAG_CREATE|0x00010693"),
+        ("18694", "CSIDL_FLAG_CREATE|0x00010694"),
+        ("18695", "CSIDL_FLAG_CREATE|0x00010695"),
+        ("18696", "CSIDL_FLAG_CREATE|0x00010696"),
+        ("18697", "CSIDL_FLAG_CREATE|0x00010697"),
+        ("18698", "CSIDL_FLAG_CREATE|0x00010698"),
+        ("18699", "CSIDL_FLAG_CREATE|0x00010699"),
+        ("18700", "CSIDL_FLAG_CREATE|0x00010700"),
+        ("18701", "CSIDL_FLAG_CREATE|0x00010701"),
+        ("18702", "CSIDL_FLAG_CREATE|0x00010702"),
+        ("18703", "CSIDL_FLAG_CREATE|0x00010703"),
+        ("18704", "CSIDL_FLAG_CREATE|0x00010704"),
+        ("18705", "CSIDL_FLAG_CREATE|0x00010705"),
+        ("18706", "CSIDL_FLAG_CREATE|0x00010706"),
+        ("18707", "CSIDL_FLAG_CREATE|0x00010707"),
+        ("18708", "CSIDL_FLAG_CREATE|0x00010708"),
+        ("18709", "CSIDL_FLAG_CREATE|0x00010709"),
+        ("18710", "CSIDL_FLAG_CREATE|0x00010710"),
+        ("18711", "CSIDL_FLAG_CREATE|0x00010711"),
+        ("18712", "CSIDL_FLAG_CREATE|0x00010712"),
+        ("18713", "CSIDL_FLAG_CREATE|0x00010713"),
+        ("18714", "CSIDL_FLAG_CREATE|0x00010714"),
+        ("18715", "CSIDL_FLAG_CREATE|0x00010715"),
+        ("18716", "CSIDL_FLAG_CREATE|0x00010716"),
+        ("18717", "CSIDL_FLAG_CREATE|0x00010717"),
+        ("18718", "CSIDL_FLAG_CREATE|0x00010718"),
+        ("18719", "CSIDL_FLAG_CREATE|0x00010719"),
+        ("18720", "CSIDL_FLAG_CREATE|0x00010720"),
+        ("18721", "CSIDL_FLAG_CREATE|0x00010721"),
+        ("18722", "CSIDL_FLAG_CREATE|0x00010722"),
+        ("18723", "CSIDL_FLAG_CREATE|0x00010723"),
+        ("18724", "CSIDL_FLAG_CREATE|0x00010724"),
+        ("18725", "CSIDL_FLAG_CREATE|0x00010725"),
+        ("18726", "CSIDL_FLAG_CREATE|0x00010726"),
+        ("18727", "CSIDL_FLAG_CREATE|0x00010727"),
+        ("18728", "CSIDL_FLAG_CREATE|0x00010728"),
+        ("18729", "CSIDL_FLAG_CREATE|0x00010729"),
+        ("18730", "CSIDL_FLAG_CREATE|0x00010730"),
+        ("18731", "CSIDL_FLAG_CREATE|0x00010731"),
+        ("18732", "CSIDL_FLAG_CREATE|0x00010732"),
+        ("18733", "CSIDL_FLAG_CREATE|0x00010733"),
+        ("18734", "CSIDL_FLAG_CREATE|0x00010734"),
+        ("18735", "CSIDL_FLAG_CREATE|0x00010735"),
+        ("18736", "CSIDL_FLAG_CREATE|0x00010736"),
+        ("18737", "CSIDL_FLAG_CREATE|0x00010737"),
+        ("18738", "CSIDL_FLAG_CREATE|0x00010738"),
+        ("18739", "CSIDL_FLAG_CREATE|0x00010739"),
+        ("18740", "CSIDL_FLAG_CREATE|0x00010740"),
+        ("18741", "CSIDL_FLAG_CREATE|0x00010741"),
+        ("18742", "CSIDL_FLAG_CREATE|0x00010742"),
+        ("18743", "CSIDL_FLAG_CREATE|0x00010743"),
+        ("18744", "CSIDL_FLAG_CREATE|0x00010744"),
+        ("18745", "CSIDL_FLAG_CREATE|0x00010745"),
+        ("18746", "CSIDL_FLAG_CREATE|0x00010746"),
+        ("18747", "CSIDL_FLAG_CREATE|0x00010747"),
+        ("18748", "CSIDL_FLAG_CREATE|0x00010748"),
+        ("18749", "CSIDL_FLAG_CREATE|0x00010749"),
+        ("18750", "CSIDL_FLAG_CREATE|0x00010750"),
+        ("18751", "CSIDL_FLAG_CREATE|0x00010751"),
+        ("18752", "CSIDL_FLAG_CREATE|0x00010752"),
+        ("18753", "CSIDL_FLAG_CREATE|0x00010753"),
+        ("18754", "CSIDL_FLAG_CREATE|0x00010754"),
+        ("18755", "CSIDL_FLAG_CREATE|0x00010755"),
+        ("18756", "CSIDL_FLAG_CREATE|0x00010756"),
+        ("18757", "CSIDL_FLAG_CREATE|0x00010757"),
+        ("18758", "CSIDL_FLAG_CREATE|0x00010758"),
+        ("18759", "CSIDL_FLAG_CREATE|0x00010759"),
+        ("18760", "CSIDL_FLAG_CREATE|0x00010760"),
+        ("18761", "CSIDL_FLAG_CREATE|0x00010761"),
+        ("18762", "CSIDL_FLAG_CREATE|0x00010762"),
+        ("18763", "CSIDL_FLAG_CREATE|0x00010763"),
+        ("18764", "CSIDL_FLAG_CREATE|0x00010764"),
+        ("18765", "CSIDL_FLAG_CREATE|0x00010765"),
+        ("18766", "CSIDL_FLAG_CREATE|0x00010766"),
+        ("18767", "CSIDL_FLAG_CREATE|0x00010767"),
+        ("18768", "CSIDL_FLAG_CREATE|0x00010768"),
+        ("18769", "CSIDL_FLAG_CREATE|0x00010769"),
+        ("18770", "CSIDL_FLAG_CREATE|0x00010770"),
+        ("18771", "CSIDL_FLAG_CREATE|0x00010771"),
+        ("18772", "CSIDL_FLAG_CREATE|0x00010772"),
+        ("18773", "CSIDL_FLAG_CREATE|0x00010773"),
+        ("18774", "CSIDL_FLAG_CREATE|0x00010774"),
+        ("18775", "CSIDL_FLAG_CREATE|0x00010775"),
+        ("18776", "CSIDL_FLAG_CREATE|0x00010776"),
+        ("18777", "CSIDL_FLAG_CREATE|0x00010777"),
+        ("18778", "CSIDL_FLAG_CREATE|0x00010778"),
+        ("18779", "CSIDL_FLAG_CREATE|0x00010779"),
+        ("18780", "CSIDL_FLAG_CREATE|0x00010780"),
+        ("18781", "CSIDL_FLAG_CREATE|0x00010781"),
+        ("18782", "CSIDL_FLAG_CREATE|0x00010782"),
+        ("18783", "CSIDL_FLAG_CREATE|0x00010783"),
+        ("18784", "CSIDL_FLAG_CREATE|0x00010784"),
+        ("18785", "CSIDL_FLAG_CREATE|0x00010785"),
+        ("18786", "CSIDL_FLAG_CREATE|0x00010786"),
+        ("18787", "CSIDL_FLAG_CREATE|0x00010787"),
+        ("18788", "CSIDL_FLAG_CREATE|0x00010788"),
+        ("18789", "CSIDL_FLAG_CREATE|0x00010789"),
+        ("18790", "CSIDL_FLAG_CREATE|0x00010790"),
+        ("18791", "CSIDL_FLAG_CREATE|0x00010791"),
+        ("18792", "CSIDL_FLAG_CREATE|0x00010792"),
+        ("18793", "CSIDL_FLAG_CREATE|0x00010793"),
+        ("18794", "CSIDL_FLAG_CREATE|0x00010794"),
+        ("18795", "CSIDL_FLAG_CREATE|0x00010795"),
+        ("18796", "CSIDL_FLAG_CREATE|0x00010796"),
+        ("18797", "CSIDL_FLAG_CREATE|0x00010797"),
+        ("18798", "CSIDL_FLAG_CREATE|0x00010798"),
+        ("18799", "CSIDL_FLAG_CREATE|0x00010799"),
+        ("18800", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010000"),
+        ("18801", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010001"),
+        ("18802", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010002"),
+        ("18803", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010003"),
+        ("18804", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010004"),
+        ("18805", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010005"),
+        ("18806", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010006"),
+        ("18807", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010007"),
+        ("18808", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010008"),
+        ("18809", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010009"),
+        ("18810", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010010"),
+        ("18811", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010011"),
+        ("18812", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010012"),
+        ("18813", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010013"),
+        ("18814", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010014"),
+        ("18815", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010015"),
+        ("18816", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010016"),
+        ("18817", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010017"),
+        ("18818", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010018"),
+        ("18819", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010019"),
+        ("18820", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010020"),
+        ("18821", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010021"),
+        ("18822", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010022"),
+        ("18823", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010023"),
+        ("18824", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010024"),
+        ("18825", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010025"),
+        ("18826", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010026"),
+        ("18827", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010027"),
+        ("18828", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010028"),
+        ("18829", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010029"),
+        ("18830", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010030"),
+        ("18831", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010031"),
+        ("18832", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010032"),
+        ("18833", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010033"),
+        ("18834", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010034"),
+        ("18835", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010035"),
+        ("18836", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010036"),
+        ("18837", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010037"),
+        ("18838", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010038"),
+        ("18839", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010039"),
+        ("18840", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010040"),
+        ("18841", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010041"),
+        ("18842", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010042"),
+        ("18843", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010043"),
+        ("18844", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010044"),
+        ("18845", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010045"),
+        ("18846", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010046"),
+        ("18847", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010047"),
+        ("18848", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010048"),
+        ("18849", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010049"),
+        ("18850", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010050"),
+        ("18851", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010051"),
+        ("18852", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010052"),
+        ("18853", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010053"),
+        ("18854", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010054"),
+        ("18855", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010055"),
+        ("18856", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010056"),
+        ("18857", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010057"),
+        ("18858", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010058"),
+        ("18859", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010059"),
+        ("18860", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010060"),
+        ("18861", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010061"),
+        ("18862", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010062"),
+        ("18863", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010063"),
+        ("18864", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010064"),
+        ("18865", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010065"),
+        ("18866", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010066"),
+        ("18867", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010067"),
+        ("18868", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010068"),
+        ("18869", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010069"),
+        ("18870", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010070"),
+        ("18871", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010071"),
+        ("18872", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010072"),
+        ("18873", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010073"),
+        ("18874", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010074"),
+        ("18875", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010075"),
+        ("18876", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010076"),
+        ("18877", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010077"),
+        ("18878", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010078"),
+        ("18879", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010079"),
+        ("18880", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010080"),
+        ("18881", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010081"),
+        ("18882", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010082"),
+        ("18883", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010083"),
+        ("18884", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010084"),
+        ("18885", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010085"),
+        ("18886", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010086"),
+        ("18887", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010087"),
+        ("18888", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010088"),
+        ("18889", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010089"),
+        ("18890", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010090"),
+        ("18891", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010091"),
+        ("18892", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010092"),
+        ("18893", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010093"),
+        ("18894", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010094"),
+        ("18895", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010095"),
+        ("18896", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010096"),
+        ("18897", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010097"),
+        ("18898", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010098"),
+        ("18899", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010099"),
+        ("18900", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010100"),
+        ("18901", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010101"),
+        ("18902", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010102"),
+        ("18903", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010103"),
+        ("18904", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010104"),
+        ("18905", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010105"),
+        ("18906", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010106"),
+        ("18907", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010107"),
+        ("18908", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010108"),
+        ("18909", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010109"),
+        ("18910", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010110"),
+        ("18911", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010111"),
+        ("18912", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010112"),
+        ("18913", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010113"),
+        ("18914", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010114"),
+        ("18915", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010115"),
+        ("18916", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010116"),
+        ("18917", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010117"),
+        ("18918", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010118"),
+        ("18919", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010119"),
+        ("18920", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010120"),
+        ("18921", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010121"),
+        ("18922", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010122"),
+        ("18923", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010123"),
+        ("18924", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010124"),
+        ("18925", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010125"),
+        ("18926", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010126"),
+        ("18927", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010127"),
+        ("18928", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010128"),
+        ("18929", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010129"),
+        ("18930", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010130"),
+        ("18931", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010131"),
+        ("18932", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010132"),
+        ("18933", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010133"),
+        ("18934", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010134"),
+        ("18935", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010135"),
+        ("18936", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010136"),
+        ("18937", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010137"),
+        ("18938", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010138"),
+        ("18939", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010139"),
+        ("18940", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010140"),
+        ("18941", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010141"),
+        ("18942", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010142"),
+        ("18943", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010143"),
+        ("18944", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010144"),
+        ("18945", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010145"),
+        ("18946", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010146"),
+        ("18947", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010147"),
+        ("18948", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010148"),
+        ("18949", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010149"),
+        ("18950", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010150"),
+        ("18951", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010151"),
+        ("18952", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010152"),
+        ("18953", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010153"),
+        ("18954", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010154"),
+        ("18955", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010155"),
+        ("18956", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010156"),
+        ("18957", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010157"),
+        ("18958", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010158"),
+        ("18959", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010159"),
+        ("18960", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010160"),
+        ("18961", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010161"),
+        ("18962", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010162"),
+        ("18963", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010163"),
+        ("18964", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010164"),
+        ("18965", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010165"),
+        ("18966", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010166"),
+        ("18967", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010167"),
+        ("18968", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010168"),
+        ("18969", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010169"),
+        ("18970", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010170"),
+        ("18971", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010171"),
+        ("18972", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010172"),
+        ("18973", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010173"),
+        ("18974", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010174"),
+        ("18975", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010175"),
+        ("18976", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010176"),
+        ("18977", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010177"),
+        ("18978", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010178"),
+        ("18979", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010179"),
+        ("18980", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010180"),
+        ("18981", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010181"),
+        ("18982", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010182"),
+        ("18983", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010183"),
+        ("18984", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010184"),
+        ("18985", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010185"),
+        ("18986", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010186"),
+        ("18987", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010187"),
+        ("18988", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010188"),
+        ("18989", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010189"),
+        ("18990", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010190"),
+        ("18991", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010191"),
+        ("18992", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010192"),
+        ("18993", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010193"),
+        ("18994", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010194"),
+        ("18995", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010195"),
+        ("18996", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010196"),
+        ("18997", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010197"),
+        ("18998", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010198"),
+        ("18999", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00010199"),
+        ("19000", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010000"),
+        ("19001", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010001"),
+        ("19002", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010002"),
+        ("19003", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010003"),
+        ("19004", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010004"),
+        ("19005", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010005"),
+        ("19006", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010006"),
+        ("19007", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010007"),
+        ("19008", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010008"),
+        ("19009", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010009"),
+        ("19010", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010010"),
+        ("19011", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010011"),
+        ("19012", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010012"),
+        ("19013", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010013"),
+        ("19014", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010014"),
+        ("19015", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010015"),
+        ("19016", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010016"),
+        ("19017", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010017"),
+        ("19018", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010018"),
+        ("19019", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010019"),
+        ("19020", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010020"),
+        ("19021", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010021"),
+        ("19022", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010022"),
+        ("19023", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010023"),
+        ("19024", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010024"),
+        ("19025", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010025"),
+        ("19026", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010026"),
+        ("19027", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010027"),
+        ("19028", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010028"),
+        ("19029", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010029"),
+        ("19030", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010030"),
+        ("19031", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010031"),
+        ("19032", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010032"),
+        ("19033", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010033"),
+        ("19034", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010034"),
+        ("19035", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010035"),
+        ("19036", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010036"),
+        ("19037", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010037"),
+        ("19038", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010038"),
+        ("19039", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010039"),
+        ("19040", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010040"),
+        ("19041", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010041"),
+        ("19042", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010042"),
+        ("19043", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010043"),
+        ("19044", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010044"),
+        ("19045", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010045"),
+        ("19046", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010046"),
+        ("19047", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010047"),
+        ("19048", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010048"),
+        ("19049", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010049"),
+        ("19050", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010050"),
+        ("19051", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010051"),
+        ("19052", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010052"),
+        ("19053", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010053"),
+        ("19054", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010054"),
+        ("19055", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010055"),
+        ("19056", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010056"),
+        ("19057", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010057"),
+        ("19058", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010058"),
+        ("19059", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010059"),
+        ("19060", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010060"),
+        ("19061", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010061"),
+        ("19062", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010062"),
+        ("19063", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010063"),
+        ("19064", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010064"),
+        ("19065", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010065"),
+        ("19066", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010066"),
+        ("19067", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010067"),
+        ("19068", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010068"),
+        ("19069", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010069"),
+        ("19070", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010070"),
+        ("19071", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010071"),
+        ("19072", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010072"),
+        ("19073", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010073"),
+        ("19074", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010074"),
+        ("19075", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010075"),
+        ("19076", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010076"),
+        ("19077", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010077"),
+        ("19078", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010078"),
+        ("19079", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010079"),
+        ("19080", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010080"),
+        ("19081", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010081"),
+        ("19082", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010082"),
+        ("19083", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010083"),
+        ("19084", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010084"),
+        ("19085", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010085"),
+        ("19086", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010086"),
+        ("19087", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010087"),
+        ("19088", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010088"),
+        ("19089", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010089"),
+        ("19090", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010090"),
+        ("19091", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010091"),
+        ("19092", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010092"),
+        ("19093", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010093"),
+        ("19094", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010094"),
+        ("19095", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010095"),
+        ("19096", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010096"),
+        ("19097", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010097"),
+        ("19098", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010098"),
+        ("19099", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010099"),
+        ("19100", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010100"),
+        ("19101", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010101"),
+        ("19102", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010102"),
+        ("19103", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010103"),
+        ("19104", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010104"),
+        ("19105", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010105"),
+        ("19106", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010106"),
+        ("19107", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010107"),
+        ("19108", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010108"),
+        ("19109", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010109"),
+        ("19110", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010110"),
+        ("19111", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010111"),
+        ("19112", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010112"),
+        ("19113", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010113"),
+        ("19114", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010114"),
+        ("19115", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010115"),
+        ("19116", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010116"),
+        ("19117", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010117"),
+        ("19118", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010118"),
+        ("19119", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010119"),
+        ("19120", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010120"),
+        ("19121", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010121"),
+        ("19122", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010122"),
+        ("19123", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010123"),
+        ("19124", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010124"),
+        ("19125", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010125"),
+        ("19126", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010126"),
+        ("19127", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010127"),
+        ("19128", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010128"),
+        ("19129", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010129"),
+        ("19130", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010130"),
+        ("19131", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010131"),
+        ("19132", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010132"),
+        ("19133", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010133"),
+        ("19134", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010134"),
+        ("19135", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010135"),
+        ("19136", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010136"),
+        ("19137", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010137"),
+        ("19138", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010138"),
+        ("19139", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010139"),
+        ("19140", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010140"),
+        ("19141", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010141"),
+        ("19142", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010142"),
+        ("19143", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010143"),
+        ("19144", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010144"),
+        ("19145", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010145"),
+        ("19146", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010146"),
+        ("19147", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010147"),
+        ("19148", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010148"),
+        ("19149", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010149"),
+        ("19150", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010150"),
+        ("19151", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010151"),
+        ("19152", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010152"),
+        ("19153", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010153"),
+        ("19154", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010154"),
+        ("19155", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010155"),
+        ("19156", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010156"),
+        ("19157", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010157"),
+        ("19158", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010158"),
+        ("19159", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010159"),
+        ("19160", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010160"),
+        ("19161", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010161"),
+        ("19162", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010162"),
+        ("19163", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010163"),
+        ("19164", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010164"),
+        ("19165", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010165"),
+        ("19166", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010166"),
+        ("19167", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010167"),
+        ("19168", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010168"),
+        ("19169", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010169"),
+        ("19170", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010170"),
+        ("19171", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010171"),
+        ("19172", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010172"),
+        ("19173", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010173"),
+        ("19174", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010174"),
+        ("19175", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010175"),
+        ("19176", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010176"),
+        ("19177", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010177"),
+        ("19178", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010178"),
+        ("19179", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010179"),
+        ("19180", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010180"),
+        ("19181", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010181"),
+        ("19182", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010182"),
+        ("19183", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010183"),
+        ("19184", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010184"),
+        ("19185", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010185"),
+        ("19186", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010186"),
+        ("19187", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010187"),
+        ("19188", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010188"),
+        ("19189", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010189"),
+        ("19190", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010190"),
+        ("19191", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010191"),
+        ("19192", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010192"),
+        ("19193", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010193"),
+        ("19194", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010194"),
+        ("19195", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010195"),
+        ("19196", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010196"),
+        ("19197", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010197"),
+        ("19198", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010198"),
+        ("19199", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010199"),
+        ("19200", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010200"),
+        ("19201", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010201"),
+        ("19202", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010202"),
+        ("19203", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010203"),
+        ("19204", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010204"),
+        ("19205", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010205"),
+        ("19206", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010206"),
+        ("19207", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010207"),
+        ("19208", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010208"),
+        ("19209", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010209"),
+        ("19210", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010210"),
+        ("19211", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010211"),
+        ("19212", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010212"),
+        ("19213", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010213"),
+        ("19214", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010214"),
+        ("19215", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010215"),
+        ("19216", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010216"),
+        ("19217", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010217"),
+        ("19218", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010218"),
+        ("19219", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010219"),
+        ("19220", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010220"),
+        ("19221", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010221"),
+        ("19222", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010222"),
+        ("19223", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010223"),
+        ("19224", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010224"),
+        ("19225", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010225"),
+        ("19226", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010226"),
+        ("19227", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010227"),
+        ("19228", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010228"),
+        ("19229", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010229"),
+        ("19230", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010230"),
+        ("19231", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010231"),
+        ("19232", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010232"),
+        ("19233", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010233"),
+        ("19234", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010234"),
+        ("19235", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010235"),
+        ("19236", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010236"),
+        ("19237", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010237"),
+        ("19238", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010238"),
+        ("19239", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010239"),
+        ("19240", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010240"),
+        ("19241", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010241"),
+        ("19242", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010242"),
+        ("19243", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010243"),
+        ("19244", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010244"),
+        ("19245", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010245"),
+        ("19246", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010246"),
+        ("19247", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010247"),
+        ("19248", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010248"),
+        ("19249", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010249"),
+        ("19250", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010250"),
+        ("19251", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010251"),
+        ("19252", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010252"),
+        ("19253", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010253"),
+        ("19254", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010254"),
+        ("19255", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010255"),
+        ("19256", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010256"),
+        ("19257", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010257"),
+        ("19258", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010258"),
+        ("19259", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010259"),
+        ("19260", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010260"),
+        ("19261", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010261"),
+        ("19262", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010262"),
+        ("19263", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010263"),
+        ("19264", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010264"),
+        ("19265", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010265"),
+        ("19266", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010266"),
+        ("19267", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010267"),
+        ("19268", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010268"),
+        ("19269", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010269"),
+        ("19270", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010270"),
+        ("19271", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010271"),
+        ("19272", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010272"),
+        ("19273", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010273"),
+        ("19274", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010274"),
+        ("19275", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010275"),
+        ("19276", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010276"),
+        ("19277", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010277"),
+        ("19278", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010278"),
+        ("19279", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010279"),
+        ("19280", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010280"),
+        ("19281", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010281"),
+        ("19282", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010282"),
+        ("19283", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010283"),
+        ("19284", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010284"),
+        ("19285", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010285"),
+        ("19286", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010286"),
+        ("19287", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010287"),
+        ("19288", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010288"),
+        ("19289", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010289"),
+        ("19290", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010290"),
+        ("19291", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010291"),
+        ("19292", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010292"),
+        ("19293", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010293"),
+        ("19294", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010294"),
+        ("19295", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010295"),
+        ("19296", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010296"),
+        ("19297", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010297"),
+        ("19298", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010298"),
+        ("19299", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010299"),
+        ("19300", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010300"),
+        ("19301", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010301"),
+        ("19302", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010302"),
+        ("19303", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010303"),
+        ("19304", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010304"),
+        ("19305", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010305"),
+        ("19306", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010306"),
+        ("19307", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010307"),
+        ("19308", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010308"),
+        ("19309", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010309"),
+        ("19310", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010310"),
+        ("19311", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010311"),
+        ("19312", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010312"),
+        ("19313", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010313"),
+        ("19314", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010314"),
+        ("19315", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010315"),
+        ("19316", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010316"),
+        ("19317", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010317"),
+        ("19318", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010318"),
+        ("19319", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010319"),
+        ("19320", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010320"),
+        ("19321", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010321"),
+        ("19322", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010322"),
+        ("19323", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010323"),
+        ("19324", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010324"),
+        ("19325", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010325"),
+        ("19326", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010326"),
+        ("19327", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010327"),
+        ("19328", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010328"),
+        ("19329", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010329"),
+        ("19330", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010330"),
+        ("19331", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010331"),
+        ("19332", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010332"),
+        ("19333", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010333"),
+        ("19334", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010334"),
+        ("19335", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010335"),
+        ("19336", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010336"),
+        ("19337", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010337"),
+        ("19338", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010338"),
+        ("19339", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010339"),
+        ("19340", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010340"),
+        ("19341", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010341"),
+        ("19342", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010342"),
+        ("19343", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010343"),
+        ("19344", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010344"),
+        ("19345", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010345"),
+        ("19346", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010346"),
+        ("19347", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010347"),
+        ("19348", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010348"),
+        ("19349", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010349"),
+        ("19350", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010350"),
+        ("19351", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010351"),
+        ("19352", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010352"),
+        ("19353", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010353"),
+        ("19354", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010354"),
+        ("19355", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010355"),
+        ("19356", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010356"),
+        ("19357", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010357"),
+        ("19358", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010358"),
+        ("19359", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010359"),
+        ("19360", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010360"),
+        ("19361", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010361"),
+        ("19362", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010362"),
+        ("19363", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010363"),
+        ("19364", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010364"),
+        ("19365", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010365"),
+        ("19366", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010366"),
+        ("19367", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010367"),
+        ("19368", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010368"),
+        ("19369", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010369"),
+        ("19370", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010370"),
+        ("19371", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010371"),
+        ("19372", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010372"),
+        ("19373", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010373"),
+        ("19374", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010374"),
+        ("19375", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010375"),
+        ("19376", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010376"),
+        ("19377", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010377"),
+        ("19378", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010378"),
+        ("19379", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010379"),
+        ("19380", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010380"),
+        ("19381", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010381"),
+        ("19382", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010382"),
+        ("19383", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010383"),
+        ("19384", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010384"),
+        ("19385", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010385"),
+        ("19386", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010386"),
+        ("19387", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010387"),
+        ("19388", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010388"),
+        ("19389", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010389"),
+        ("19390", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010390"),
+        ("19391", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010391"),
+        ("19392", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010392"),
+        ("19393", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010393"),
+        ("19394", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010394"),
+        ("19395", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010395"),
+        ("19396", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010396"),
+        ("19397", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010397"),
+        ("19398", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010398"),
+        ("19399", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010399"),
+        ("19400", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010400"),
+        ("19401", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010401"),
+        ("19402", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010402"),
+        ("19403", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010403"),
+        ("19404", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010404"),
+        ("19405", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010405"),
+        ("19406", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010406"),
+        ("19407", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010407"),
+        ("19408", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010408"),
+        ("19409", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010409"),
+        ("19410", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010410"),
+        ("19411", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010411"),
+        ("19412", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010412"),
+        ("19413", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010413"),
+        ("19414", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010414"),
+        ("19415", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010415"),
+        ("19416", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010416"),
+        ("19417", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010417"),
+        ("19418", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010418"),
+        ("19419", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010419"),
+        ("19420", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010420"),
+        ("19421", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010421"),
+        ("19422", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010422"),
+        ("19423", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010423"),
+        ("19424", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010424"),
+        ("19425", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010425"),
+        ("19426", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010426"),
+        ("19427", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010427"),
+        ("19428", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010428"),
+        ("19429", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010429"),
+        ("19430", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010430"),
+        ("19431", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010431"),
+        ("19432", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010432"),
+        ("19433", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010433"),
+        ("19434", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010434"),
+        ("19435", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010435"),
+        ("19436", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010436"),
+        ("19437", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010437"),
+        ("19438", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010438"),
+        ("19439", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010439"),
+        ("19440", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010440"),
+        ("19441", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010441"),
+        ("19442", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010442"),
+        ("19443", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010443"),
+        ("19444", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010444"),
+        ("19445", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010445"),
+        ("19446", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010446"),
+        ("19447", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010447"),
+        ("19448", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010448"),
+        ("19449", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010449"),
+        ("19450", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010450"),
+        ("19451", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010451"),
+        ("19452", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010452"),
+        ("19453", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010453"),
+        ("19454", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010454"),
+        ("19455", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010455"),
+        ("19456", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010456"),
+        ("19457", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010457"),
+        ("19458", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010458"),
+        ("19459", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010459"),
+        ("19460", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010460"),
+        ("19461", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010461"),
+        ("19462", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010462"),
+        ("19463", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010463"),
+        ("19464", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010464"),
+        ("19465", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010465"),
+        ("19466", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010466"),
+        ("19467", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010467"),
+        ("19468", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010468"),
+        ("19469", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010469"),
+        ("19470", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010470"),
+        ("19471", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010471"),
+        ("19472", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010472"),
+        ("19473", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010473"),
+        ("19474", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010474"),
+        ("19475", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010475"),
+        ("19476", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010476"),
+        ("19477", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010477"),
+        ("19478", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010478"),
+        ("19479", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010479"),
+        ("19480", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010480"),
+        ("19481", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010481"),
+        ("19482", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010482"),
+        ("19483", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010483"),
+        ("19484", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010484"),
+        ("19485", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010485"),
+        ("19486", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010486"),
+        ("19487", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010487"),
+        ("19488", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010488"),
+        ("19489", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010489"),
+        ("19490", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010490"),
+        ("19491", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010491"),
+        ("19492", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010492"),
+        ("19493", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010493"),
+        ("19494", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010494"),
+        ("19495", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010495"),
+        ("19496", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010496"),
+        ("19497", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010497"),
+        ("19498", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010498"),
+        ("19499", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010499"),
+        ("19500", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010500"),
+        ("19501", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010501"),
+        ("19502", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010502"),
+        ("19503", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010503"),
+        ("19504", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010504"),
+        ("19505", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010505"),
+        ("19506", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010506"),
+        ("19507", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010507"),
+        ("19508", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010508"),
+        ("19509", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010509"),
+        ("19510", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010510"),
+        ("19511", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010511"),
+        ("19512", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010512"),
+        ("19513", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010513"),
+        ("19514", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010514"),
+        ("19515", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010515"),
+        ("19516", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010516"),
+        ("19517", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010517"),
+        ("19518", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010518"),
+        ("19519", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010519"),
+        ("19520", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010520"),
+        ("19521", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010521"),
+        ("19522", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010522"),
+        ("19523", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010523"),
+        ("19524", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010524"),
+        ("19525", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010525"),
+        ("19526", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010526"),
+        ("19527", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010527"),
+        ("19528", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010528"),
+        ("19529", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010529"),
+        ("19530", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010530"),
+        ("19531", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010531"),
+        ("19532", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010532"),
+        ("19533", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010533"),
+        ("19534", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010534"),
+        ("19535", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010535"),
+        ("19536", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010536"),
+        ("19537", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010537"),
+        ("19538", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010538"),
+        ("19539", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010539"),
+        ("19540", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010540"),
+        ("19541", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010541"),
+        ("19542", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010542"),
+        ("19543", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010543"),
+        ("19544", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010544"),
+        ("19545", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010545"),
+        ("19546", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010546"),
+        ("19547", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010547"),
+        ("19548", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010548"),
+        ("19549", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010549"),
+        ("19550", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010550"),
+        ("19551", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010551"),
+        ("19552", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010552"),
+        ("19553", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010553"),
+        ("19554", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010554"),
+        ("19555", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010555"),
+        ("19556", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010556"),
+        ("19557", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010557"),
+        ("19558", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010558"),
+        ("19559", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010559"),
+        ("19560", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010560"),
+        ("19561", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010561"),
+        ("19562", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010562"),
+        ("19563", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010563"),
+        ("19564", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010564"),
+        ("19565", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010565"),
+        ("19566", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010566"),
+        ("19567", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010567"),
+        ("19568", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010568"),
+        ("19569", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010569"),
+        ("19570", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010570"),
+        ("19571", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010571"),
+        ("19572", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010572"),
+        ("19573", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010573"),
+        ("19574", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010574"),
+        ("19575", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010575"),
+        ("19576", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010576"),
+        ("19577", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010577"),
+        ("19578", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010578"),
+        ("19579", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010579"),
+        ("19580", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010580"),
+        ("19581", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010581"),
+        ("19582", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010582"),
+        ("19583", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010583"),
+        ("19584", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010584"),
+        ("19585", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010585"),
+        ("19586", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010586"),
+        ("19587", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010587"),
+        ("19588", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010588"),
+        ("19589", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010589"),
+        ("19590", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010590"),
+        ("19591", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010591"),
+        ("19592", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010592"),
+        ("19593", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010593"),
+        ("19594", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010594"),
+        ("19595", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010595"),
+        ("19596", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010596"),
+        ("19597", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010597"),
+        ("19598", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010598"),
+        ("19599", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010599"),
+        ("19600", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010600"),
+        ("19601", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010601"),
+        ("19602", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010602"),
+        ("19603", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010603"),
+        ("19604", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010604"),
+        ("19605", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010605"),
+        ("19606", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010606"),
+        ("19607", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010607"),
+        ("19608", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010608"),
+        ("19609", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010609"),
+        ("19610", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010610"),
+        ("19611", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010611"),
+        ("19612", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010612"),
+        ("19613", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010613"),
+        ("19614", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010614"),
+        ("19615", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010615"),
+        ("19616", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010616"),
+        ("19617", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010617"),
+        ("19618", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010618"),
+        ("19619", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010619"),
+        ("19620", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010620"),
+        ("19621", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010621"),
+        ("19622", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010622"),
+        ("19623", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010623"),
+        ("19624", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010624"),
+        ("19625", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010625"),
+        ("19626", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010626"),
+        ("19627", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010627"),
+        ("19628", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010628"),
+        ("19629", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010629"),
+        ("19630", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010630"),
+        ("19631", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010631"),
+        ("19632", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010632"),
+        ("19633", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010633"),
+        ("19634", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010634"),
+        ("19635", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010635"),
+        ("19636", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010636"),
+        ("19637", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010637"),
+        ("19638", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010638"),
+        ("19639", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010639"),
+        ("19640", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010640"),
+        ("19641", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010641"),
+        ("19642", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010642"),
+        ("19643", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010643"),
+        ("19644", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010644"),
+        ("19645", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010645"),
+        ("19646", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010646"),
+        ("19647", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010647"),
+        ("19648", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010648"),
+        ("19649", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010649"),
+        ("19650", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010650"),
+        ("19651", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010651"),
+        ("19652", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010652"),
+        ("19653", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010653"),
+        ("19654", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010654"),
+        ("19655", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010655"),
+        ("19656", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010656"),
+        ("19657", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010657"),
+        ("19658", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010658"),
+        ("19659", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010659"),
+        ("19660", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010660"),
+        ("19661", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010661"),
+        ("19662", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010662"),
+        ("19663", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010663"),
+        ("19664", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010664"),
+        ("19665", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010665"),
+        ("19666", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010666"),
+        ("19667", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010667"),
+        ("19668", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010668"),
+        ("19669", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010669"),
+        ("19670", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010670"),
+        ("19671", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010671"),
+        ("19672", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010672"),
+        ("19673", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010673"),
+        ("19674", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010674"),
+        ("19675", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010675"),
+        ("19676", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010676"),
+        ("19677", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010677"),
+        ("19678", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010678"),
+        ("19679", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010679"),
+        ("19680", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010680"),
+        ("19681", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010681"),
+        ("19682", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010682"),
+        ("19683", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010683"),
+        ("19684", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010684"),
+        ("19685", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010685"),
+        ("19686", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010686"),
+        ("19687", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010687"),
+        ("19688", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010688"),
+        ("19689", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010689"),
+        ("19690", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010690"),
+        ("19691", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010691"),
+        ("19692", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010692"),
+        ("19693", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010693"),
+        ("19694", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010694"),
+        ("19695", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010695"),
+        ("19696", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010696"),
+        ("19697", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010697"),
+        ("19698", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010698"),
+        ("19699", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010699"),
+        ("19700", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010700"),
+        ("19701", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010701"),
+        ("19702", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010702"),
+        ("19703", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010703"),
+        ("19704", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010704"),
+        ("19705", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010705"),
+        ("19706", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010706"),
+        ("19707", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010707"),
+        ("19708", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010708"),
+        ("19709", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010709"),
+        ("19710", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010710"),
+        ("19711", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010711"),
+        ("19712", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010712"),
+        ("19713", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010713"),
+        ("19714", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010714"),
+        ("19715", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010715"),
+        ("19716", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010716"),
+        ("19717", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010717"),
+        ("19718", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010718"),
+        ("19719", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010719"),
+        ("19720", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010720"),
+        ("19721", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010721"),
+        ("19722", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010722"),
+        ("19723", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010723"),
+        ("19724", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010724"),
+        ("19725", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010725"),
+        ("19726", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010726"),
+        ("19727", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010727"),
+        ("19728", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010728"),
+        ("19729", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010729"),
+        ("19730", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010730"),
+        ("19731", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010731"),
+        ("19732", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010732"),
+        ("19733", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010733"),
+        ("19734", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010734"),
+        ("19735", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010735"),
+        ("19736", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010736"),
+        ("19737", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010737"),
+        ("19738", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010738"),
+        ("19739", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010739"),
+        ("19740", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010740"),
+        ("19741", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010741"),
+        ("19742", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010742"),
+        ("19743", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010743"),
+        ("19744", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010744"),
+        ("19745", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010745"),
+        ("19746", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010746"),
+        ("19747", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010747"),
+        ("19748", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010748"),
+        ("19749", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010749"),
+        ("19750", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010750"),
+        ("19751", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010751"),
+        ("19752", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010752"),
+        ("19753", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010753"),
+        ("19754", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010754"),
+        ("19755", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010755"),
+        ("19756", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010756"),
+        ("19757", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010757"),
+        ("19758", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010758"),
+        ("19759", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010759"),
+        ("19760", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010760"),
+        ("19761", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010761"),
+        ("19762", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010762"),
+        ("19763", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010763"),
+        ("19764", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010764"),
+        ("19765", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010765"),
+        ("19766", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010766"),
+        ("19767", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010767"),
+        ("19768", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010768"),
+        ("19769", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010769"),
+        ("19770", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010770"),
+        ("19771", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010771"),
+        ("19772", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010772"),
+        ("19773", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010773"),
+        ("19774", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010774"),
+        ("19775", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010775"),
+        ("19776", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010776"),
+        ("19777", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010777"),
+        ("19778", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010778"),
+        ("19779", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010779"),
+        ("19780", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010780"),
+        ("19781", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010781"),
+        ("19782", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010782"),
+        ("19783", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010783"),
+        ("19784", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010784"),
+        ("19785", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010785"),
+        ("19786", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010786"),
+        ("19787", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010787"),
+        ("19788", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010788"),
+        ("19789", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010789"),
+        ("19790", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010790"),
+        ("19791", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010791"),
+        ("19792", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010792"),
+        ("19793", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010793"),
+        ("19794", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010794"),
+        ("19795", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010795"),
+        ("19796", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010796"),
+        ("19797", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010797"),
+        ("19798", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010798"),
+        ("19799", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010799"),
+        ("19800", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010000"),
+        ("19801", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010001"),
+        ("19802", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010002"),
+        ("19803", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010003"),
+        ("19804", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010004"),
+        ("19805", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010005"),
+        ("19806", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010006"),
+        ("19807", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010007"),
+        ("19808", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010008"),
+        ("19809", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010009"),
+        ("19810", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010010"),
+        ("19811", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010011"),
+        ("19812", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010012"),
+        ("19813", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010013"),
+        ("19814", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010014"),
+        ("19815", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010015"),
+        ("19816", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010016"),
+        ("19817", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010017"),
+        ("19818", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010018"),
+        ("19819", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010019"),
+        ("19820", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010020"),
+        ("19821", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010021"),
+        ("19822", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010022"),
+        ("19823", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010023"),
+        ("19824", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010024"),
+        ("19825", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010025"),
+        ("19826", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010026"),
+        ("19827", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010027"),
+        ("19828", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010028"),
+        ("19829", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010029"),
+        ("19830", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010030"),
+        ("19831", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010031"),
+        ("19832", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010032"),
+        ("19833", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010033"),
+        ("19834", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010034"),
+        ("19835", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010035"),
+        ("19836", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010036"),
+        ("19837", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010037"),
+        ("19838", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010038"),
+        ("19839", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010039"),
+        ("19840", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010040"),
+        ("19841", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010041"),
+        ("19842", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010042"),
+        ("19843", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010043"),
+        ("19844", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010044"),
+        ("19845", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010045"),
+        ("19846", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010046"),
+        ("19847", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010047"),
+        ("19848", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010048"),
+        ("19849", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010049"),
+        ("19850", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010050"),
+        ("19851", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010051"),
+        ("19852", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010052"),
+        ("19853", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010053"),
+        ("19854", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010054"),
+        ("19855", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010055"),
+        ("19856", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010056"),
+        ("19857", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010057"),
+        ("19858", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010058"),
+        ("19859", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010059"),
+        ("19860", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010060"),
+        ("19861", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010061"),
+        ("19862", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010062"),
+        ("19863", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010063"),
+        ("19864", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010064"),
+        ("19865", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010065"),
+        ("19866", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010066"),
+        ("19867", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010067"),
+        ("19868", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010068"),
+        ("19869", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010069"),
+        ("19870", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010070"),
+        ("19871", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010071"),
+        ("19872", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010072"),
+        ("19873", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010073"),
+        ("19874", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010074"),
+        ("19875", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010075"),
+        ("19876", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010076"),
+        ("19877", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010077"),
+        ("19878", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010078"),
+        ("19879", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010079"),
+        ("19880", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010080"),
+        ("19881", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010081"),
+        ("19882", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010082"),
+        ("19883", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010083"),
+        ("19884", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010084"),
+        ("19885", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010085"),
+        ("19886", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010086"),
+        ("19887", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010087"),
+        ("19888", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010088"),
+        ("19889", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010089"),
+        ("19890", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010090"),
+        ("19891", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010091"),
+        ("19892", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010092"),
+        ("19893", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010093"),
+        ("19894", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010094"),
+        ("19895", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010095"),
+        ("19896", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010096"),
+        ("19897", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010097"),
+        ("19898", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010098"),
+        ("19899", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010099"),
+        ("19900", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010100"),
+        ("19901", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010101"),
+        ("19902", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010102"),
+        ("19903", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010103"),
+        ("19904", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010104"),
+        ("19905", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010105"),
+        ("19906", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010106"),
+        ("19907", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010107"),
+        ("19908", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010108"),
+        ("19909", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010109"),
+        ("19910", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010110"),
+        ("19911", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010111"),
+        ("19912", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010112"),
+        ("19913", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010113"),
+        ("19914", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010114"),
+        ("19915", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010115"),
+        ("19916", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010116"),
+        ("19917", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010117"),
+        ("19918", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010118"),
+        ("19919", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010119"),
+        ("19920", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010120"),
+        ("19921", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010121"),
+        ("19922", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010122"),
+        ("19923", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010123"),
+        ("19924", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010124"),
+        ("19925", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010125"),
+        ("19926", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010126"),
+        ("19927", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010127"),
+        ("19928", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010128"),
+        ("19929", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010129"),
+        ("19930", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010130"),
+        ("19931", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010131"),
+        ("19932", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010132"),
+        ("19933", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010133"),
+        ("19934", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010134"),
+        ("19935", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010135"),
+        ("19936", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010136"),
+        ("19937", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010137"),
+        ("19938", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010138"),
+        ("19939", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010139"),
+        ("19940", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010140"),
+        ("19941", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010141"),
+        ("19942", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010142"),
+        ("19943", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010143"),
+        ("19944", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010144"),
+        ("19945", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010145"),
+        ("19946", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010146"),
+        ("19947", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010147"),
+        ("19948", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010148"),
+        ("19949", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010149"),
+        ("19950", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010150"),
+        ("19951", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010151"),
+        ("19952", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010152"),
+        ("19953", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010153"),
+        ("19954", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010154"),
+        ("19955", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010155"),
+        ("19956", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010156"),
+        ("19957", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010157"),
+        ("19958", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010158"),
+        ("19959", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010159"),
+        ("19960", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010160"),
+        ("19961", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010161"),
+        ("19962", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010162"),
+        ("19963", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010163"),
+        ("19964", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010164"),
+        ("19965", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010165"),
+        ("19966", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010166"),
+        ("19967", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010167"),
+        ("19968", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010168"),
+        ("19969", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010169"),
+        ("19970", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010170"),
+        ("19971", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010171"),
+        ("19972", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010172"),
+        ("19973", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010173"),
+        ("19974", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010174"),
+        ("19975", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010175"),
+        ("19976", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010176"),
+        ("19977", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010177"),
+        ("19978", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010178"),
+        ("19979", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010179"),
+        ("19980", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010180"),
+        ("19981", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010181"),
+        ("19982", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010182"),
+        ("19983", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010183"),
+        ("19984", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010184"),
+        ("19985", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010185"),
+        ("19986", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010186"),
+        ("19987", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010187"),
+        ("19988", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010188"),
+        ("19989", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010189"),
+        ("19990", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010190"),
+        ("19991", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010191"),
+        ("19992", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010192"),
+        ("19993", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010193"),
+        ("19994", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010194"),
+        ("19995", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010195"),
+        ("19996", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010196"),
+        ("19997", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010197"),
+        ("19998", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010198"),
+        ("19999", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00010199"),
+        ("20000", "0x00020000"),
+        ("20001", "0x00020001"),
+        ("20002", "0x00020002"),
+        ("20003", "0x00020003"),
+        ("20004", "0x00020004"),
+        ("20005", "0x00020005"),
+        ("20006", "0x00020006"),
+        ("20007", "0x00020007"),
+        ("20008", "0x00020008"),
+        ("20009", "0x00020009"),
+        ("20010", "0x00020010"),
+        ("20011", "0x00020011"),
+        ("20012", "0x00020012"),
+        ("20013", "0x00020013"),
+        ("20014", "0x00020014"),
+        ("20015", "0x00020015"),
+        ("20016", "0x00020016"),
+        ("20017", "0x00020017"),
+        ("20018", "0x00020018"),
+        ("20019", "0x00020019"),
+        ("20020", "0x00020020"),
+        ("20021", "0x00020021"),
+        ("20022", "0x00020022"),
+        ("20023", "0x00020023"),
+        ("20024", "0x00020024"),
+        ("20025", "0x00020025"),
+        ("20026", "0x00020026"),
+        ("20027", "0x00020027"),
+        ("20028", "0x00020028"),
+        ("20029", "0x00020029"),
+        ("20030", "0x00020030"),
+        ("20031", "0x00020031"),
+        ("20032", "0x00020032"),
+        ("20033", "0x00020033"),
+        ("20034", "0x00020034"),
+        ("20035", "0x00020035"),
+        ("20036", "0x00020036"),
+        ("20037", "0x00020037"),
+        ("20038", "0x00020038"),
+        ("20039", "0x00020039"),
+        ("20040", "0x00020040"),
+        ("20041", "0x00020041"),
+        ("20042", "0x00020042"),
+        ("20043", "0x00020043"),
+        ("20044", "0x00020044"),
+        ("20045", "0x00020045"),
+        ("20046", "0x00020046"),
+        ("20047", "0x00020047"),
+        ("20048", "0x00020048"),
+        ("20049", "0x00020049"),
+        ("20050", "0x00020050"),
+        ("20051", "0x00020051"),
+        ("20052", "0x00020052"),
+        ("20053", "0x00020053"),
+        ("20054", "0x00020054"),
+        ("20055", "0x00020055"),
+        ("20056", "0x00020056"),
+        ("20057", "0x00020057"),
+        ("20058", "0x00020058"),
+        ("20059", "0x00020059"),
+        ("20060", "0x00020060"),
+        ("20061", "0x00020061"),
+        ("20062", "0x00020062"),
+        ("20063", "0x00020063"),
+        ("20064", "0x00020064"),
+        ("20065", "0x00020065"),
+        ("20066", "0x00020066"),
+        ("20067", "0x00020067"),
+        ("20068", "0x00020068"),
+        ("20069", "0x00020069"),
+        ("20070", "0x00020070"),
+        ("20071", "0x00020071"),
+        ("20072", "0x00020072"),
+        ("20073", "0x00020073"),
+        ("20074", "0x00020074"),
+        ("20075", "0x00020075"),
+        ("20076", "0x00020076"),
+        ("20077", "0x00020077"),
+        ("20078", "0x00020078"),
+        ("20079", "0x00020079"),
+        ("20080", "0x00020080"),
+        ("20081", "0x00020081"),
+        ("20082", "0x00020082"),
+        ("20083", "0x00020083"),
+        ("20084", "0x00020084"),
+        ("20085", "0x00020085"),
+        ("20086", "0x00020086"),
+        ("20087", "0x00020087"),
+        ("20088", "0x00020088"),
+        ("20089", "0x00020089"),
+        ("20090", "0x00020090"),
+        ("20091", "0x00020091"),
+        ("20092", "0x00020092"),
+        ("20093", "0x00020093"),
+        ("20094", "0x00020094"),
+        ("20095", "0x00020095"),
+        ("20096", "0x00020096"),
+        ("20097", "0x00020097"),
+        ("20098", "0x00020098"),
+        ("20099", "0x00020099"),
+        ("20100", "0x00020100"),
+        ("20101", "0x00020101"),
+        ("20102", "0x00020102"),
+        ("20103", "0x00020103"),
+        ("20104", "0x00020104"),
+        ("20105", "0x00020105"),
+        ("20106", "0x00020106"),
+        ("20107", "0x00020107"),
+        ("20108", "0x00020108"),
+        ("20109", "0x00020109"),
+        ("20110", "0x00020110"),
+        ("20111", "0x00020111"),
+        ("20112", "0x00020112"),
+        ("20113", "0x00020113"),
+        ("20114", "0x00020114"),
+        ("20115", "0x00020115"),
+        ("20116", "0x00020116"),
+        ("20117", "0x00020117"),
+        ("20118", "0x00020118"),
+        ("20119", "0x00020119"),
+        ("20120", "0x00020120"),
+        ("20121", "0x00020121"),
+        ("20122", "0x00020122"),
+        ("20123", "0x00020123"),
+        ("20124", "0x00020124"),
+        ("20125", "0x00020125"),
+        ("20126", "0x00020126"),
+        ("20127", "0x00020127"),
+        ("20128", "0x00020128"),
+        ("20129", "0x00020129"),
+        ("20130", "0x00020130"),
+        ("20131", "0x00020131"),
+        ("20132", "0x00020132"),
+        ("20133", "0x00020133"),
+        ("20134", "0x00020134"),
+        ("20135", "0x00020135"),
+        ("20136", "0x00020136"),
+        ("20137", "0x00020137"),
+        ("20138", "0x00020138"),
+        ("20139", "0x00020139"),
+        ("20140", "0x00020140"),
+        ("20141", "0x00020141"),
+        ("20142", "0x00020142"),
+        ("20143", "0x00020143"),
+        ("20144", "0x00020144"),
+        ("20145", "0x00020145"),
+        ("20146", "0x00020146"),
+        ("20147", "0x00020147"),
+        ("20148", "0x00020148"),
+        ("20149", "0x00020149"),
+        ("20150", "0x00020150"),
+        ("20151", "0x00020151"),
+        ("20152", "0x00020152"),
+        ("20153", "0x00020153"),
+        ("20154", "0x00020154"),
+        ("20155", "0x00020155"),
+        ("20156", "0x00020156"),
+        ("20157", "0x00020157"),
+        ("20158", "0x00020158"),
+        ("20159", "0x00020159"),
+        ("20160", "0x00020160"),
+        ("20161", "0x00020161"),
+        ("20162", "0x00020162"),
+        ("20163", "0x00020163"),
+        ("20164", "0x00020164"),
+        ("20165", "0x00020165"),
+        ("20166", "0x00020166"),
+        ("20167", "0x00020167"),
+        ("20168", "0x00020168"),
+        ("20169", "0x00020169"),
+        ("20170", "0x00020170"),
+        ("20171", "0x00020171"),
+        ("20172", "0x00020172"),
+        ("20173", "0x00020173"),
+        ("20174", "0x00020174"),
+        ("20175", "0x00020175"),
+        ("20176", "0x00020176"),
+        ("20177", "0x00020177"),
+        ("20178", "0x00020178"),
+        ("20179", "0x00020179"),
+        ("20180", "0x00020180"),
+        ("20181", "0x00020181"),
+        ("20182", "0x00020182"),
+        ("20183", "0x00020183"),
+        ("20184", "0x00020184"),
+        ("20185", "0x00020185"),
+        ("20186", "0x00020186"),
+        ("20187", "0x00020187"),
+        ("20188", "0x00020188"),
+        ("20189", "0x00020189"),
+        ("20190", "0x00020190"),
+        ("20191", "0x00020191"),
+        ("20192", "0x00020192"),
+        ("20193", "0x00020193"),
+        ("20194", "0x00020194"),
+        ("20195", "0x00020195"),
+        ("20196", "0x00020196"),
+        ("20197", "0x00020197"),
+        ("20198", "0x00020198"),
+        ("20199", "0x00020199"),
+        ("20200", "0x00020200"),
+        ("20201", "0x00020201"),
+        ("20202", "0x00020202"),
+        ("20203", "0x00020203"),
+        ("20204", "0x00020204"),
+        ("20205", "0x00020205"),
+        ("20206", "0x00020206"),
+        ("20207", "0x00020207"),
+        ("20208", "0x00020208"),
+        ("20209", "0x00020209"),
+        ("20210", "0x00020210"),
+        ("20211", "0x00020211"),
+        ("20212", "0x00020212"),
+        ("20213", "0x00020213"),
+        ("20214", "0x00020214"),
+        ("20215", "0x00020215"),
+        ("20216", "0x00020216"),
+        ("20217", "0x00020217"),
+        ("20218", "0x00020218"),
+        ("20219", "0x00020219"),
+        ("20220", "0x00020220"),
+        ("20221", "0x00020221"),
+        ("20222", "0x00020222"),
+        ("20223", "0x00020223"),
+        ("20224", "0x00020224"),
+        ("20225", "0x00020225"),
+        ("20226", "0x00020226"),
+        ("20227", "0x00020227"),
+        ("20228", "0x00020228"),
+        ("20229", "0x00020229"),
+        ("20230", "0x00020230"),
+        ("20231", "0x00020231"),
+        ("20232", "0x00020232"),
+        ("20233", "0x00020233"),
+        ("20234", "0x00020234"),
+        ("20235", "0x00020235"),
+        ("20236", "0x00020236"),
+        ("20237", "0x00020237"),
+        ("20238", "0x00020238"),
+        ("20239", "0x00020239"),
+        ("20240", "0x00020240"),
+        ("20241", "0x00020241"),
+        ("20242", "0x00020242"),
+        ("20243", "0x00020243"),
+        ("20244", "0x00020244"),
+        ("20245", "0x00020245"),
+        ("20246", "0x00020246"),
+        ("20247", "0x00020247"),
+        ("20248", "0x00020248"),
+        ("20249", "0x00020249"),
+        ("20250", "0x00020250"),
+        ("20251", "0x00020251"),
+        ("20252", "0x00020252"),
+        ("20253", "0x00020253"),
+        ("20254", "0x00020254"),
+        ("20255", "0x00020255"),
+        ("20256", "0x00020256"),
+        ("20257", "0x00020257"),
+        ("20258", "0x00020258"),
+        ("20259", "0x00020259"),
+        ("20260", "0x00020260"),
+        ("20261", "0x00020261"),
+        ("20262", "0x00020262"),
+        ("20263", "0x00020263"),
+        ("20264", "0x00020264"),
+        ("20265", "0x00020265"),
+        ("20266", "0x00020266"),
+        ("20267", "0x00020267"),
+        ("20268", "0x00020268"),
+        ("20269", "0x00020269"),
+        ("20270", "0x00020270"),
+        ("20271", "0x00020271"),
+        ("20272", "0x00020272"),
+        ("20273", "0x00020273"),
+        ("20274", "0x00020274"),
+        ("20275", "0x00020275"),
+        ("20276", "0x00020276"),
+        ("20277", "0x00020277"),
+        ("20278", "0x00020278"),
+        ("20279", "0x00020279"),
+        ("20280", "0x00020280"),
+        ("20281", "0x00020281"),
+        ("20282", "0x00020282"),
+        ("20283", "0x00020283"),
+        ("20284", "0x00020284"),
+        ("20285", "0x00020285"),
+        ("20286", "0x00020286"),
+        ("20287", "0x00020287"),
+        ("20288", "0x00020288"),
+        ("20289", "0x00020289"),
+        ("20290", "0x00020290"),
+        ("20291", "0x00020291"),
+        ("20292", "0x00020292"),
+        ("20293", "0x00020293"),
+        ("20294", "0x00020294"),
+        ("20295", "0x00020295"),
+        ("20296", "0x00020296"),
+        ("20297", "0x00020297"),
+        ("20298", "0x00020298"),
+        ("20299", "0x00020299"),
+        ("20300", "0x00020300"),
+        ("20301", "0x00020301"),
+        ("20302", "0x00020302"),
+        ("20303", "0x00020303"),
+        ("20304", "0x00020304"),
+        ("20305", "0x00020305"),
+        ("20306", "0x00020306"),
+        ("20307", "0x00020307"),
+        ("20308", "0x00020308"),
+        ("20309", "0x00020309"),
+        ("20310", "0x00020310"),
+        ("20311", "0x00020311"),
+        ("20312", "0x00020312"),
+        ("20313", "0x00020313"),
+        ("20314", "0x00020314"),
+        ("20315", "0x00020315"),
+        ("20316", "0x00020316"),
+        ("20317", "0x00020317"),
+        ("20318", "0x00020318"),
+        ("20319", "0x00020319"),
+        ("20320", "0x00020320"),
+        ("20321", "0x00020321"),
+        ("20322", "0x00020322"),
+        ("20323", "0x00020323"),
+        ("20324", "0x00020324"),
+        ("20325", "0x00020325"),
+        ("20326", "0x00020326"),
+        ("20327", "0x00020327"),
+        ("20328", "0x00020328"),
+        ("20329", "0x00020329"),
+        ("20330", "0x00020330"),
+        ("20331", "0x00020331"),
+        ("20332", "0x00020332"),
+        ("20333", "0x00020333"),
+        ("20334", "0x00020334"),
+        ("20335", "0x00020335"),
+        ("20336", "0x00020336"),
+        ("20337", "0x00020337"),
+        ("20338", "0x00020338"),
+        ("20339", "0x00020339"),
+        ("20340", "0x00020340"),
+        ("20341", "0x00020341"),
+        ("20342", "0x00020342"),
+        ("20343", "0x00020343"),
+        ("20344", "0x00020344"),
+        ("20345", "0x00020345"),
+        ("20346", "0x00020346"),
+        ("20347", "0x00020347"),
+        ("20348", "0x00020348"),
+        ("20349", "0x00020349"),
+        ("20350", "0x00020350"),
+        ("20351", "0x00020351"),
+        ("20352", "0x00020352"),
+        ("20353", "0x00020353"),
+        ("20354", "0x00020354"),
+        ("20355", "0x00020355"),
+        ("20356", "0x00020356"),
+        ("20357", "0x00020357"),
+        ("20358", "0x00020358"),
+        ("20359", "0x00020359"),
+        ("20360", "0x00020360"),
+        ("20361", "0x00020361"),
+        ("20362", "0x00020362"),
+        ("20363", "0x00020363"),
+        ("20364", "0x00020364"),
+        ("20365", "0x00020365"),
+        ("20366", "0x00020366"),
+        ("20367", "0x00020367"),
+        ("20368", "0x00020368"),
+        ("20369", "0x00020369"),
+        ("20370", "0x00020370"),
+        ("20371", "0x00020371"),
+        ("20372", "0x00020372"),
+        ("20373", "0x00020373"),
+        ("20374", "0x00020374"),
+        ("20375", "0x00020375"),
+        ("20376", "0x00020376"),
+        ("20377", "0x00020377"),
+        ("20378", "0x00020378"),
+        ("20379", "0x00020379"),
+        ("20380", "0x00020380"),
+        ("20381", "0x00020381"),
+        ("20382", "0x00020382"),
+        ("20383", "0x00020383"),
+        ("20384", "0x00020384"),
+        ("20385", "0x00020385"),
+        ("20386", "0x00020386"),
+        ("20387", "0x00020387"),
+        ("20388", "0x00020388"),
+        ("20389", "0x00020389"),
+        ("20390", "0x00020390"),
+        ("20391", "0x00020391"),
+        ("20392", "0x00020392"),
+        ("20393", "0x00020393"),
+        ("20394", "0x00020394"),
+        ("20395", "0x00020395"),
+        ("20396", "0x00020396"),
+        ("20397", "0x00020397"),
+        ("20398", "0x00020398"),
+        ("20399", "0x00020399"),
+        ("20400", "0x00020400"),
+        ("20401", "0x00020401"),
+        ("20402", "0x00020402"),
+        ("20403", "0x00020403"),
+        ("20404", "0x00020404"),
+        ("20405", "0x00020405"),
+        ("20406", "0x00020406"),
+        ("20407", "0x00020407"),
+        ("20408", "0x00020408"),
+        ("20409", "0x00020409"),
+        ("20410", "0x00020410"),
+        ("20411", "0x00020411"),
+        ("20412", "0x00020412"),
+        ("20413", "0x00020413"),
+        ("20414", "0x00020414"),
+        ("20415", "0x00020415"),
+        ("20416", "0x00020416"),
+        ("20417", "0x00020417"),
+        ("20418", "0x00020418"),
+        ("20419", "0x00020419"),
+        ("20420", "0x00020420"),
+        ("20421", "0x00020421"),
+        ("20422", "0x00020422"),
+        ("20423", "0x00020423"),
+        ("20424", "0x00020424"),
+        ("20425", "0x00020425"),
+        ("20426", "0x00020426"),
+        ("20427", "0x00020427"),
+        ("20428", "0x00020428"),
+        ("20429", "0x00020429"),
+        ("20430", "0x00020430"),
+        ("20431", "0x00020431"),
+        ("20432", "0x00020432"),
+        ("20433", "0x00020433"),
+        ("20434", "0x00020434"),
+        ("20435", "0x00020435"),
+        ("20436", "0x00020436"),
+        ("20437", "0x00020437"),
+        ("20438", "0x00020438"),
+        ("20439", "0x00020439"),
+        ("20440", "0x00020440"),
+        ("20441", "0x00020441"),
+        ("20442", "0x00020442"),
+        ("20443", "0x00020443"),
+        ("20444", "0x00020444"),
+        ("20445", "0x00020445"),
+        ("20446", "0x00020446"),
+        ("20447", "0x00020447"),
+        ("20448", "0x00020448"),
+        ("20449", "0x00020449"),
+        ("20450", "0x00020450"),
+        ("20451", "0x00020451"),
+        ("20452", "0x00020452"),
+        ("20453", "0x00020453"),
+        ("20454", "0x00020454"),
+        ("20455", "0x00020455"),
+        ("20456", "0x00020456"),
+        ("20457", "0x00020457"),
+        ("20458", "0x00020458"),
+        ("20459", "0x00020459"),
+        ("20460", "0x00020460"),
+        ("20461", "0x00020461"),
+        ("20462", "0x00020462"),
+        ("20463", "0x00020463"),
+        ("20464", "0x00020464"),
+        ("20465", "0x00020465"),
+        ("20466", "0x00020466"),
+        ("20467", "0x00020467"),
+        ("20468", "0x00020468"),
+        ("20469", "0x00020469"),
+        ("20470", "0x00020470"),
+        ("20471", "0x00020471"),
+        ("20472", "0x00020472"),
+        ("20473", "0x00020473"),
+        ("20474", "0x00020474"),
+        ("20475", "0x00020475"),
+        ("20476", "0x00020476"),
+        ("20477", "0x00020477"),
+        ("20478", "0x00020478"),
+        ("20479", "0x00020479"),
+        ("20480", "0x00020480"),
+        ("20481", "0x00020481"),
+        ("20482", "0x00020482"),
+        ("20483", "0x00020483"),
+        ("20484", "0x00020484"),
+        ("20485", "0x00020485"),
+        ("20486", "0x00020486"),
+        ("20487", "0x00020487"),
+        ("20488", "0x00020488"),
+        ("20489", "0x00020489"),
+        ("20490", "0x00020490"),
+        ("20491", "0x00020491"),
+        ("20492", "0x00020492"),
+        ("20493", "0x00020493"),
+        ("20494", "0x00020494"),
+        ("20495", "0x00020495"),
+        ("20496", "0x00020496"),
+        ("20497", "0x00020497"),
+        ("20498", "0x00020498"),
+        ("20499", "0x00020499"),
+        ("20500", "0x00020500"),
+        ("20501", "0x00020501"),
+        ("20502", "0x00020502"),
+        ("20503", "0x00020503"),
+        ("20504", "0x00020504"),
+        ("20505", "0x00020505"),
+        ("20506", "0x00020506"),
+        ("20507", "0x00020507"),
+        ("20508", "0x00020508"),
+        ("20509", "0x00020509"),
+        ("20510", "0x00020510"),
+        ("20511", "0x00020511"),
+        ("20512", "0x00020512"),
+        ("20513", "0x00020513"),
+        ("20514", "0x00020514"),
+        ("20515", "0x00020515"),
+        ("20516", "0x00020516"),
+        ("20517", "0x00020517"),
+        ("20518", "0x00020518"),
+        ("20519", "0x00020519"),
+        ("20520", "0x00020520"),
+        ("20521", "0x00020521"),
+        ("20522", "0x00020522"),
+        ("20523", "0x00020523"),
+        ("20524", "0x00020524"),
+        ("20525", "0x00020525"),
+        ("20526", "0x00020526"),
+        ("20527", "0x00020527"),
+        ("20528", "0x00020528"),
+        ("20529", "0x00020529"),
+        ("20530", "0x00020530"),
+        ("20531", "0x00020531"),
+        ("20532", "0x00020532"),
+        ("20533", "0x00020533"),
+        ("20534", "0x00020534"),
+        ("20535", "0x00020535"),
+        ("20536", "0x00020536"),
+        ("20537", "0x00020537"),
+        ("20538", "0x00020538"),
+        ("20539", "0x00020539"),
+        ("20540", "0x00020540"),
+        ("20541", "0x00020541"),
+        ("20542", "0x00020542"),
+        ("20543", "0x00020543"),
+        ("20544", "0x00020544"),
+        ("20545", "0x00020545"),
+        ("20546", "0x00020546"),
+        ("20547", "0x00020547"),
+        ("20548", "0x00020548"),
+        ("20549", "0x00020549"),
+        ("20550", "0x00020550"),
+        ("20551", "0x00020551"),
+        ("20552", "0x00020552"),
+        ("20553", "0x00020553"),
+        ("20554", "0x00020554"),
+        ("20555", "0x00020555"),
+        ("20556", "0x00020556"),
+        ("20557", "0x00020557"),
+        ("20558", "0x00020558"),
+        ("20559", "0x00020559"),
+        ("20560", "0x00020560"),
+        ("20561", "0x00020561"),
+        ("20562", "0x00020562"),
+        ("20563", "0x00020563"),
+        ("20564", "0x00020564"),
+        ("20565", "0x00020565"),
+        ("20566", "0x00020566"),
+        ("20567", "0x00020567"),
+        ("20568", "0x00020568"),
+        ("20569", "0x00020569"),
+        ("20570", "0x00020570"),
+        ("20571", "0x00020571"),
+        ("20572", "0x00020572"),
+        ("20573", "0x00020573"),
+        ("20574", "0x00020574"),
+        ("20575", "0x00020575"),
+        ("20576", "0x00020576"),
+        ("20577", "0x00020577"),
+        ("20578", "0x00020578"),
+        ("20579", "0x00020579"),
+        ("20580", "0x00020580"),
+        ("20581", "0x00020581"),
+        ("20582", "0x00020582"),
+        ("20583", "0x00020583"),
+        ("20584", "0x00020584"),
+        ("20585", "0x00020585"),
+        ("20586", "0x00020586"),
+        ("20587", "0x00020587"),
+        ("20588", "0x00020588"),
+        ("20589", "0x00020589"),
+        ("20590", "0x00020590"),
+        ("20591", "0x00020591"),
+        ("20592", "0x00020592"),
+        ("20593", "0x00020593"),
+        ("20594", "0x00020594"),
+        ("20595", "0x00020595"),
+        ("20596", "0x00020596"),
+        ("20597", "0x00020597"),
+        ("20598", "0x00020598"),
+        ("20599", "0x00020599"),
+        ("20600", "0x00020600"),
+        ("20601", "0x00020601"),
+        ("20602", "0x00020602"),
+        ("20603", "0x00020603"),
+        ("20604", "0x00020604"),
+        ("20605", "0x00020605"),
+        ("20606", "0x00020606"),
+        ("20607", "0x00020607"),
+        ("20608", "0x00020608"),
+        ("20609", "0x00020609"),
+        ("20610", "0x00020610"),
+        ("20611", "0x00020611"),
+        ("20612", "0x00020612"),
+        ("20613", "0x00020613"),
+        ("20614", "0x00020614"),
+        ("20615", "0x00020615"),
+        ("20616", "0x00020616"),
+        ("20617", "0x00020617"),
+        ("20618", "0x00020618"),
+        ("20619", "0x00020619"),
+        ("20620", "0x00020620"),
+        ("20621", "0x00020621"),
+        ("20622", "0x00020622"),
+        ("20623", "0x00020623"),
+        ("20624", "0x00020624"),
+        ("20625", "0x00020625"),
+        ("20626", "0x00020626"),
+        ("20627", "0x00020627"),
+        ("20628", "0x00020628"),
+        ("20629", "0x00020629"),
+        ("20630", "0x00020630"),
+        ("20631", "0x00020631"),
+        ("20632", "0x00020632"),
+        ("20633", "0x00020633"),
+        ("20634", "0x00020634"),
+        ("20635", "0x00020635"),
+        ("20636", "0x00020636"),
+        ("20637", "0x00020637"),
+        ("20638", "0x00020638"),
+        ("20639", "0x00020639"),
+        ("20640", "0x00020640"),
+        ("20641", "0x00020641"),
+        ("20642", "0x00020642"),
+        ("20643", "0x00020643"),
+        ("20644", "0x00020644"),
+        ("20645", "0x00020645"),
+        ("20646", "0x00020646"),
+        ("20647", "0x00020647"),
+        ("20648", "0x00020648"),
+        ("20649", "0x00020649"),
+        ("20650", "0x00020650"),
+        ("20651", "0x00020651"),
+        ("20652", "0x00020652"),
+        ("20653", "0x00020653"),
+        ("20654", "0x00020654"),
+        ("20655", "0x00020655"),
+        ("20656", "0x00020656"),
+        ("20657", "0x00020657"),
+        ("20658", "0x00020658"),
+        ("20659", "0x00020659"),
+        ("20660", "0x00020660"),
+        ("20661", "0x00020661"),
+        ("20662", "0x00020662"),
+        ("20663", "0x00020663"),
+        ("20664", "0x00020664"),
+        ("20665", "0x00020665"),
+        ("20666", "0x00020666"),
+        ("20667", "0x00020667"),
+        ("20668", "0x00020668"),
+        ("20669", "0x00020669"),
+        ("20670", "0x00020670"),
+        ("20671", "0x00020671"),
+        ("20672", "0x00020672"),
+        ("20673", "0x00020673"),
+        ("20674", "0x00020674"),
+        ("20675", "0x00020675"),
+        ("20676", "0x00020676"),
+        ("20677", "0x00020677"),
+        ("20678", "0x00020678"),
+        ("20679", "0x00020679"),
+        ("20680", "0x00020680"),
+        ("20681", "0x00020681"),
+        ("20682", "0x00020682"),
+        ("20683", "0x00020683"),
+        ("20684", "0x00020684"),
+        ("20685", "0x00020685"),
+        ("20686", "0x00020686"),
+        ("20687", "0x00020687"),
+        ("20688", "0x00020688"),
+        ("20689", "0x00020689"),
+        ("20690", "0x00020690"),
+        ("20691", "0x00020691"),
+        ("20692", "0x00020692"),
+        ("20693", "0x00020693"),
+        ("20694", "0x00020694"),
+        ("20695", "0x00020695"),
+        ("20696", "0x00020696"),
+        ("20697", "0x00020697"),
+        ("20698", "0x00020698"),
+        ("20699", "0x00020699"),
+        ("20700", "0x00020700"),
+        ("20701", "0x00020701"),
+        ("20702", "0x00020702"),
+        ("20703", "0x00020703"),
+        ("20704", "0x00020704"),
+        ("20705", "0x00020705"),
+        ("20706", "0x00020706"),
+        ("20707", "0x00020707"),
+        ("20708", "0x00020708"),
+        ("20709", "0x00020709"),
+        ("20710", "0x00020710"),
+        ("20711", "0x00020711"),
+        ("20712", "0x00020712"),
+        ("20713", "0x00020713"),
+        ("20714", "0x00020714"),
+        ("20715", "0x00020715"),
+        ("20716", "0x00020716"),
+        ("20717", "0x00020717"),
+        ("20718", "0x00020718"),
+        ("20719", "0x00020719"),
+        ("20720", "0x00020720"),
+        ("20721", "0x00020721"),
+        ("20722", "0x00020722"),
+        ("20723", "0x00020723"),
+        ("20724", "0x00020724"),
+        ("20725", "0x00020725"),
+        ("20726", "0x00020726"),
+        ("20727", "0x00020727"),
+        ("20728", "0x00020728"),
+        ("20729", "0x00020729"),
+        ("20730", "0x00020730"),
+        ("20731", "0x00020731"),
+        ("20732", "0x00020732"),
+        ("20733", "0x00020733"),
+        ("20734", "0x00020734"),
+        ("20735", "0x00020735"),
+        ("20736", "0x00020736"),
+        ("20737", "0x00020737"),
+        ("20738", "0x00020738"),
+        ("20739", "0x00020739"),
+        ("20740", "0x00020740"),
+        ("20741", "0x00020741"),
+        ("20742", "0x00020742"),
+        ("20743", "0x00020743"),
+        ("20744", "0x00020744"),
+        ("20745", "0x00020745"),
+        ("20746", "0x00020746"),
+        ("20747", "0x00020747"),
+        ("20748", "0x00020748"),
+        ("20749", "0x00020749"),
+        ("20750", "0x00020750"),
+        ("20751", "0x00020751"),
+        ("20752", "0x00020752"),
+        ("20753", "0x00020753"),
+        ("20754", "0x00020754"),
+        ("20755", "0x00020755"),
+        ("20756", "0x00020756"),
+        ("20757", "0x00020757"),
+        ("20758", "0x00020758"),
+        ("20759", "0x00020759"),
+        ("20760", "0x00020760"),
+        ("20761", "0x00020761"),
+        ("20762", "0x00020762"),
+        ("20763", "0x00020763"),
+        ("20764", "0x00020764"),
+        ("20765", "0x00020765"),
+        ("20766", "0x00020766"),
+        ("20767", "0x00020767"),
+        ("20768", "0x00020768"),
+        ("20769", "0x00020769"),
+        ("20770", "0x00020770"),
+        ("20771", "0x00020771"),
+        ("20772", "0x00020772"),
+        ("20773", "0x00020773"),
+        ("20774", "0x00020774"),
+        ("20775", "0x00020775"),
+        ("20776", "0x00020776"),
+        ("20777", "0x00020777"),
+        ("20778", "0x00020778"),
+        ("20779", "0x00020779"),
+        ("20780", "0x00020780"),
+        ("20781", "0x00020781"),
+        ("20782", "0x00020782"),
+        ("20783", "0x00020783"),
+        ("20784", "0x00020784"),
+        ("20785", "0x00020785"),
+        ("20786", "0x00020786"),
+        ("20787", "0x00020787"),
+        ("20788", "0x00020788"),
+        ("20789", "0x00020789"),
+        ("20790", "0x00020790"),
+        ("20791", "0x00020791"),
+        ("20792", "0x00020792"),
+        ("20793", "0x00020793"),
+        ("20794", "0x00020794"),
+        ("20795", "0x00020795"),
+        ("20796", "0x00020796"),
+        ("20797", "0x00020797"),
+        ("20798", "0x00020798"),
+        ("20799", "0x00020799"),
+        ("20800", "CSIDL_FLAG_PER_USER_INIT|0x00020000"),
+        ("20801", "CSIDL_FLAG_PER_USER_INIT|0x00020001"),
+        ("20802", "CSIDL_FLAG_PER_USER_INIT|0x00020002"),
+        ("20803", "CSIDL_FLAG_PER_USER_INIT|0x00020003"),
+        ("20804", "CSIDL_FLAG_PER_USER_INIT|0x00020004"),
+        ("20805", "CSIDL_FLAG_PER_USER_INIT|0x00020005"),
+        ("20806", "CSIDL_FLAG_PER_USER_INIT|0x00020006"),
+        ("20807", "CSIDL_FLAG_PER_USER_INIT|0x00020007"),
+        ("20808", "CSIDL_FLAG_PER_USER_INIT|0x00020008"),
+        ("20809", "CSIDL_FLAG_PER_USER_INIT|0x00020009"),
+        ("20810", "CSIDL_FLAG_PER_USER_INIT|0x00020010"),
+        ("20811", "CSIDL_FLAG_PER_USER_INIT|0x00020011"),
+        ("20812", "CSIDL_FLAG_PER_USER_INIT|0x00020012"),
+        ("20813", "CSIDL_FLAG_PER_USER_INIT|0x00020013"),
+        ("20814", "CSIDL_FLAG_PER_USER_INIT|0x00020014"),
+        ("20815", "CSIDL_FLAG_PER_USER_INIT|0x00020015"),
+        ("20816", "CSIDL_FLAG_PER_USER_INIT|0x00020016"),
+        ("20817", "CSIDL_FLAG_PER_USER_INIT|0x00020017"),
+        ("20818", "CSIDL_FLAG_PER_USER_INIT|0x00020018"),
+        ("20819", "CSIDL_FLAG_PER_USER_INIT|0x00020019"),
+        ("20820", "CSIDL_FLAG_PER_USER_INIT|0x00020020"),
+        ("20821", "CSIDL_FLAG_PER_USER_INIT|0x00020021"),
+        ("20822", "CSIDL_FLAG_PER_USER_INIT|0x00020022"),
+        ("20823", "CSIDL_FLAG_PER_USER_INIT|0x00020023"),
+        ("20824", "CSIDL_FLAG_PER_USER_INIT|0x00020024"),
+        ("20825", "CSIDL_FLAG_PER_USER_INIT|0x00020025"),
+        ("20826", "CSIDL_FLAG_PER_USER_INIT|0x00020026"),
+        ("20827", "CSIDL_FLAG_PER_USER_INIT|0x00020027"),
+        ("20828", "CSIDL_FLAG_PER_USER_INIT|0x00020028"),
+        ("20829", "CSIDL_FLAG_PER_USER_INIT|0x00020029"),
+        ("20830", "CSIDL_FLAG_PER_USER_INIT|0x00020030"),
+        ("20831", "CSIDL_FLAG_PER_USER_INIT|0x00020031"),
+        ("20832", "CSIDL_FLAG_PER_USER_INIT|0x00020032"),
+        ("20833", "CSIDL_FLAG_PER_USER_INIT|0x00020033"),
+        ("20834", "CSIDL_FLAG_PER_USER_INIT|0x00020034"),
+        ("20835", "CSIDL_FLAG_PER_USER_INIT|0x00020035"),
+        ("20836", "CSIDL_FLAG_PER_USER_INIT|0x00020036"),
+        ("20837", "CSIDL_FLAG_PER_USER_INIT|0x00020037"),
+        ("20838", "CSIDL_FLAG_PER_USER_INIT|0x00020038"),
+        ("20839", "CSIDL_FLAG_PER_USER_INIT|0x00020039"),
+        ("20840", "CSIDL_FLAG_PER_USER_INIT|0x00020040"),
+        ("20841", "CSIDL_FLAG_PER_USER_INIT|0x00020041"),
+        ("20842", "CSIDL_FLAG_PER_USER_INIT|0x00020042"),
+        ("20843", "CSIDL_FLAG_PER_USER_INIT|0x00020043"),
+        ("20844", "CSIDL_FLAG_PER_USER_INIT|0x00020044"),
+        ("20845", "CSIDL_FLAG_PER_USER_INIT|0x00020045"),
+        ("20846", "CSIDL_FLAG_PER_USER_INIT|0x00020046"),
+        ("20847", "CSIDL_FLAG_PER_USER_INIT|0x00020047"),
+        ("20848", "CSIDL_FLAG_PER_USER_INIT|0x00020048"),
+        ("20849", "CSIDL_FLAG_PER_USER_INIT|0x00020049"),
+        ("20850", "CSIDL_FLAG_PER_USER_INIT|0x00020050"),
+        ("20851", "CSIDL_FLAG_PER_USER_INIT|0x00020051"),
+        ("20852", "CSIDL_FLAG_PER_USER_INIT|0x00020052"),
+        ("20853", "CSIDL_FLAG_PER_USER_INIT|0x00020053"),
+        ("20854", "CSIDL_FLAG_PER_USER_INIT|0x00020054"),
+        ("20855", "CSIDL_FLAG_PER_USER_INIT|0x00020055"),
+        ("20856", "CSIDL_FLAG_PER_USER_INIT|0x00020056"),
+        ("20857", "CSIDL_FLAG_PER_USER_INIT|0x00020057"),
+        ("20858", "CSIDL_FLAG_PER_USER_INIT|0x00020058"),
+        ("20859", "CSIDL_FLAG_PER_USER_INIT|0x00020059"),
+        ("20860", "CSIDL_FLAG_PER_USER_INIT|0x00020060"),
+        ("20861", "CSIDL_FLAG_PER_USER_INIT|0x00020061"),
+        ("20862", "CSIDL_FLAG_PER_USER_INIT|0x00020062"),
+        ("20863", "CSIDL_FLAG_PER_USER_INIT|0x00020063"),
+        ("20864", "CSIDL_FLAG_PER_USER_INIT|0x00020064"),
+        ("20865", "CSIDL_FLAG_PER_USER_INIT|0x00020065"),
+        ("20866", "CSIDL_FLAG_PER_USER_INIT|0x00020066"),
+        ("20867", "CSIDL_FLAG_PER_USER_INIT|0x00020067"),
+        ("20868", "CSIDL_FLAG_PER_USER_INIT|0x00020068"),
+        ("20869", "CSIDL_FLAG_PER_USER_INIT|0x00020069"),
+        ("20870", "CSIDL_FLAG_PER_USER_INIT|0x00020070"),
+        ("20871", "CSIDL_FLAG_PER_USER_INIT|0x00020071"),
+        ("20872", "CSIDL_FLAG_PER_USER_INIT|0x00020072"),
+        ("20873", "CSIDL_FLAG_PER_USER_INIT|0x00020073"),
+        ("20874", "CSIDL_FLAG_PER_USER_INIT|0x00020074"),
+        ("20875", "CSIDL_FLAG_PER_USER_INIT|0x00020075"),
+        ("20876", "CSIDL_FLAG_PER_USER_INIT|0x00020076"),
+        ("20877", "CSIDL_FLAG_PER_USER_INIT|0x00020077"),
+        ("20878", "CSIDL_FLAG_PER_USER_INIT|0x00020078"),
+        ("20879", "CSIDL_FLAG_PER_USER_INIT|0x00020079"),
+        ("20880", "CSIDL_FLAG_PER_USER_INIT|0x00020080"),
+        ("20881", "CSIDL_FLAG_PER_USER_INIT|0x00020081"),
+        ("20882", "CSIDL_FLAG_PER_USER_INIT|0x00020082"),
+        ("20883", "CSIDL_FLAG_PER_USER_INIT|0x00020083"),
+        ("20884", "CSIDL_FLAG_PER_USER_INIT|0x00020084"),
+        ("20885", "CSIDL_FLAG_PER_USER_INIT|0x00020085"),
+        ("20886", "CSIDL_FLAG_PER_USER_INIT|0x00020086"),
+        ("20887", "CSIDL_FLAG_PER_USER_INIT|0x00020087"),
+        ("20888", "CSIDL_FLAG_PER_USER_INIT|0x00020088"),
+        ("20889", "CSIDL_FLAG_PER_USER_INIT|0x00020089"),
+        ("20890", "CSIDL_FLAG_PER_USER_INIT|0x00020090"),
+        ("20891", "CSIDL_FLAG_PER_USER_INIT|0x00020091"),
+        ("20892", "CSIDL_FLAG_PER_USER_INIT|0x00020092"),
+        ("20893", "CSIDL_FLAG_PER_USER_INIT|0x00020093"),
+        ("20894", "CSIDL_FLAG_PER_USER_INIT|0x00020094"),
+        ("20895", "CSIDL_FLAG_PER_USER_INIT|0x00020095"),
+        ("20896", "CSIDL_FLAG_PER_USER_INIT|0x00020096"),
+        ("20897", "CSIDL_FLAG_PER_USER_INIT|0x00020097"),
+        ("20898", "CSIDL_FLAG_PER_USER_INIT|0x00020098"),
+        ("20899", "CSIDL_FLAG_PER_USER_INIT|0x00020099"),
+        ("20900", "CSIDL_FLAG_PER_USER_INIT|0x00020100"),
+        ("20901", "CSIDL_FLAG_PER_USER_INIT|0x00020101"),
+        ("20902", "CSIDL_FLAG_PER_USER_INIT|0x00020102"),
+        ("20903", "CSIDL_FLAG_PER_USER_INIT|0x00020103"),
+        ("20904", "CSIDL_FLAG_PER_USER_INIT|0x00020104"),
+        ("20905", "CSIDL_FLAG_PER_USER_INIT|0x00020105"),
+        ("20906", "CSIDL_FLAG_PER_USER_INIT|0x00020106"),
+        ("20907", "CSIDL_FLAG_PER_USER_INIT|0x00020107"),
+        ("20908", "CSIDL_FLAG_PER_USER_INIT|0x00020108"),
+        ("20909", "CSIDL_FLAG_PER_USER_INIT|0x00020109"),
+        ("20910", "CSIDL_FLAG_PER_USER_INIT|0x00020110"),
+        ("20911", "CSIDL_FLAG_PER_USER_INIT|0x00020111"),
+        ("20912", "CSIDL_FLAG_PER_USER_INIT|0x00020112"),
+        ("20913", "CSIDL_FLAG_PER_USER_INIT|0x00020113"),
+        ("20914", "CSIDL_FLAG_PER_USER_INIT|0x00020114"),
+        ("20915", "CSIDL_FLAG_PER_USER_INIT|0x00020115"),
+        ("20916", "CSIDL_FLAG_PER_USER_INIT|0x00020116"),
+        ("20917", "CSIDL_FLAG_PER_USER_INIT|0x00020117"),
+        ("20918", "CSIDL_FLAG_PER_USER_INIT|0x00020118"),
+        ("20919", "CSIDL_FLAG_PER_USER_INIT|0x00020119"),
+        ("20920", "CSIDL_FLAG_PER_USER_INIT|0x00020120"),
+        ("20921", "CSIDL_FLAG_PER_USER_INIT|0x00020121"),
+        ("20922", "CSIDL_FLAG_PER_USER_INIT|0x00020122"),
+        ("20923", "CSIDL_FLAG_PER_USER_INIT|0x00020123"),
+        ("20924", "CSIDL_FLAG_PER_USER_INIT|0x00020124"),
+        ("20925", "CSIDL_FLAG_PER_USER_INIT|0x00020125"),
+        ("20926", "CSIDL_FLAG_PER_USER_INIT|0x00020126"),
+        ("20927", "CSIDL_FLAG_PER_USER_INIT|0x00020127"),
+        ("20928", "CSIDL_FLAG_PER_USER_INIT|0x00020128"),
+        ("20929", "CSIDL_FLAG_PER_USER_INIT|0x00020129"),
+        ("20930", "CSIDL_FLAG_PER_USER_INIT|0x00020130"),
+        ("20931", "CSIDL_FLAG_PER_USER_INIT|0x00020131"),
+        ("20932", "CSIDL_FLAG_PER_USER_INIT|0x00020132"),
+        ("20933", "CSIDL_FLAG_PER_USER_INIT|0x00020133"),
+        ("20934", "CSIDL_FLAG_PER_USER_INIT|0x00020134"),
+        ("20935", "CSIDL_FLAG_PER_USER_INIT|0x00020135"),
+        ("20936", "CSIDL_FLAG_PER_USER_INIT|0x00020136"),
+        ("20937", "CSIDL_FLAG_PER_USER_INIT|0x00020137"),
+        ("20938", "CSIDL_FLAG_PER_USER_INIT|0x00020138"),
+        ("20939", "CSIDL_FLAG_PER_USER_INIT|0x00020139"),
+        ("20940", "CSIDL_FLAG_PER_USER_INIT|0x00020140"),
+        ("20941", "CSIDL_FLAG_PER_USER_INIT|0x00020141"),
+        ("20942", "CSIDL_FLAG_PER_USER_INIT|0x00020142"),
+        ("20943", "CSIDL_FLAG_PER_USER_INIT|0x00020143"),
+        ("20944", "CSIDL_FLAG_PER_USER_INIT|0x00020144"),
+        ("20945", "CSIDL_FLAG_PER_USER_INIT|0x00020145"),
+        ("20946", "CSIDL_FLAG_PER_USER_INIT|0x00020146"),
+        ("20947", "CSIDL_FLAG_PER_USER_INIT|0x00020147"),
+        ("20948", "CSIDL_FLAG_PER_USER_INIT|0x00020148"),
+        ("20949", "CSIDL_FLAG_PER_USER_INIT|0x00020149"),
+        ("20950", "CSIDL_FLAG_PER_USER_INIT|0x00020150"),
+        ("20951", "CSIDL_FLAG_PER_USER_INIT|0x00020151"),
+        ("20952", "CSIDL_FLAG_PER_USER_INIT|0x00020152"),
+        ("20953", "CSIDL_FLAG_PER_USER_INIT|0x00020153"),
+        ("20954", "CSIDL_FLAG_PER_USER_INIT|0x00020154"),
+        ("20955", "CSIDL_FLAG_PER_USER_INIT|0x00020155"),
+        ("20956", "CSIDL_FLAG_PER_USER_INIT|0x00020156"),
+        ("20957", "CSIDL_FLAG_PER_USER_INIT|0x00020157"),
+        ("20958", "CSIDL_FLAG_PER_USER_INIT|0x00020158"),
+        ("20959", "CSIDL_FLAG_PER_USER_INIT|0x00020159"),
+        ("20960", "CSIDL_FLAG_PER_USER_INIT|0x00020160"),
+        ("20961", "CSIDL_FLAG_PER_USER_INIT|0x00020161"),
+        ("20962", "CSIDL_FLAG_PER_USER_INIT|0x00020162"),
+        ("20963", "CSIDL_FLAG_PER_USER_INIT|0x00020163"),
+        ("20964", "CSIDL_FLAG_PER_USER_INIT|0x00020164"),
+        ("20965", "CSIDL_FLAG_PER_USER_INIT|0x00020165"),
+        ("20966", "CSIDL_FLAG_PER_USER_INIT|0x00020166"),
+        ("20967", "CSIDL_FLAG_PER_USER_INIT|0x00020167"),
+        ("20968", "CSIDL_FLAG_PER_USER_INIT|0x00020168"),
+        ("20969", "CSIDL_FLAG_PER_USER_INIT|0x00020169"),
+        ("20970", "CSIDL_FLAG_PER_USER_INIT|0x00020170"),
+        ("20971", "CSIDL_FLAG_PER_USER_INIT|0x00020171"),
+        ("20972", "CSIDL_FLAG_PER_USER_INIT|0x00020172"),
+        ("20973", "CSIDL_FLAG_PER_USER_INIT|0x00020173"),
+        ("20974", "CSIDL_FLAG_PER_USER_INIT|0x00020174"),
+        ("20975", "CSIDL_FLAG_PER_USER_INIT|0x00020175"),
+        ("20976", "CSIDL_FLAG_PER_USER_INIT|0x00020176"),
+        ("20977", "CSIDL_FLAG_PER_USER_INIT|0x00020177"),
+        ("20978", "CSIDL_FLAG_PER_USER_INIT|0x00020178"),
+        ("20979", "CSIDL_FLAG_PER_USER_INIT|0x00020179"),
+        ("20980", "CSIDL_FLAG_PER_USER_INIT|0x00020180"),
+        ("20981", "CSIDL_FLAG_PER_USER_INIT|0x00020181"),
+        ("20982", "CSIDL_FLAG_PER_USER_INIT|0x00020182"),
+        ("20983", "CSIDL_FLAG_PER_USER_INIT|0x00020183"),
+        ("20984", "CSIDL_FLAG_PER_USER_INIT|0x00020184"),
+        ("20985", "CSIDL_FLAG_PER_USER_INIT|0x00020185"),
+        ("20986", "CSIDL_FLAG_PER_USER_INIT|0x00020186"),
+        ("20987", "CSIDL_FLAG_PER_USER_INIT|0x00020187"),
+        ("20988", "CSIDL_FLAG_PER_USER_INIT|0x00020188"),
+        ("20989", "CSIDL_FLAG_PER_USER_INIT|0x00020189"),
+        ("20990", "CSIDL_FLAG_PER_USER_INIT|0x00020190"),
+        ("20991", "CSIDL_FLAG_PER_USER_INIT|0x00020191"),
+        ("20992", "CSIDL_FLAG_PER_USER_INIT|0x00020192"),
+        ("20993", "CSIDL_FLAG_PER_USER_INIT|0x00020193"),
+        ("20994", "CSIDL_FLAG_PER_USER_INIT|0x00020194"),
+        ("20995", "CSIDL_FLAG_PER_USER_INIT|0x00020195"),
+        ("20996", "CSIDL_FLAG_PER_USER_INIT|0x00020196"),
+        ("20997", "CSIDL_FLAG_PER_USER_INIT|0x00020197"),
+        ("20998", "CSIDL_FLAG_PER_USER_INIT|0x00020198"),
+        ("20999", "CSIDL_FLAG_PER_USER_INIT|0x00020199"),
+        ("21000", "CSIDL_FLAG_NO_ALIAS|0x00020000"),
+        ("21001", "CSIDL_FLAG_NO_ALIAS|0x00020001"),
+        ("21002", "CSIDL_FLAG_NO_ALIAS|0x00020002"),
+        ("21003", "CSIDL_FLAG_NO_ALIAS|0x00020003"),
+        ("21004", "CSIDL_FLAG_NO_ALIAS|0x00020004"),
+        ("21005", "CSIDL_FLAG_NO_ALIAS|0x00020005"),
+        ("21006", "CSIDL_FLAG_NO_ALIAS|0x00020006"),
+        ("21007", "CSIDL_FLAG_NO_ALIAS|0x00020007"),
+        ("21008", "CSIDL_FLAG_NO_ALIAS|0x00020008"),
+        ("21009", "CSIDL_FLAG_NO_ALIAS|0x00020009"),
+        ("21010", "CSIDL_FLAG_NO_ALIAS|0x00020010"),
+        ("21011", "CSIDL_FLAG_NO_ALIAS|0x00020011"),
+        ("21012", "CSIDL_FLAG_NO_ALIAS|0x00020012"),
+        ("21013", "CSIDL_FLAG_NO_ALIAS|0x00020013"),
+        ("21014", "CSIDL_FLAG_NO_ALIAS|0x00020014"),
+        ("21015", "CSIDL_FLAG_NO_ALIAS|0x00020015"),
+        ("21016", "CSIDL_FLAG_NO_ALIAS|0x00020016"),
+        ("21017", "CSIDL_FLAG_NO_ALIAS|0x00020017"),
+        ("21018", "CSIDL_FLAG_NO_ALIAS|0x00020018"),
+        ("21019", "CSIDL_FLAG_NO_ALIAS|0x00020019"),
+        ("21020", "CSIDL_FLAG_NO_ALIAS|0x00020020"),
+        ("21021", "CSIDL_FLAG_NO_ALIAS|0x00020021"),
+        ("21022", "CSIDL_FLAG_NO_ALIAS|0x00020022"),
+        ("21023", "CSIDL_FLAG_NO_ALIAS|0x00020023"),
+        ("21024", "CSIDL_FLAG_NO_ALIAS|0x00020024"),
+        ("21025", "CSIDL_FLAG_NO_ALIAS|0x00020025"),
+        ("21026", "CSIDL_FLAG_NO_ALIAS|0x00020026"),
+        ("21027", "CSIDL_FLAG_NO_ALIAS|0x00020027"),
+        ("21028", "CSIDL_FLAG_NO_ALIAS|0x00020028"),
+        ("21029", "CSIDL_FLAG_NO_ALIAS|0x00020029"),
+        ("21030", "CSIDL_FLAG_NO_ALIAS|0x00020030"),
+        ("21031", "CSIDL_FLAG_NO_ALIAS|0x00020031"),
+        ("21032", "CSIDL_FLAG_NO_ALIAS|0x00020032"),
+        ("21033", "CSIDL_FLAG_NO_ALIAS|0x00020033"),
+        ("21034", "CSIDL_FLAG_NO_ALIAS|0x00020034"),
+        ("21035", "CSIDL_FLAG_NO_ALIAS|0x00020035"),
+        ("21036", "CSIDL_FLAG_NO_ALIAS|0x00020036"),
+        ("21037", "CSIDL_FLAG_NO_ALIAS|0x00020037"),
+        ("21038", "CSIDL_FLAG_NO_ALIAS|0x00020038"),
+        ("21039", "CSIDL_FLAG_NO_ALIAS|0x00020039"),
+        ("21040", "CSIDL_FLAG_NO_ALIAS|0x00020040"),
+        ("21041", "CSIDL_FLAG_NO_ALIAS|0x00020041"),
+        ("21042", "CSIDL_FLAG_NO_ALIAS|0x00020042"),
+        ("21043", "CSIDL_FLAG_NO_ALIAS|0x00020043"),
+        ("21044", "CSIDL_FLAG_NO_ALIAS|0x00020044"),
+        ("21045", "CSIDL_FLAG_NO_ALIAS|0x00020045"),
+        ("21046", "CSIDL_FLAG_NO_ALIAS|0x00020046"),
+        ("21047", "CSIDL_FLAG_NO_ALIAS|0x00020047"),
+        ("21048", "CSIDL_FLAG_NO_ALIAS|0x00020048"),
+        ("21049", "CSIDL_FLAG_NO_ALIAS|0x00020049"),
+        ("21050", "CSIDL_FLAG_NO_ALIAS|0x00020050"),
+        ("21051", "CSIDL_FLAG_NO_ALIAS|0x00020051"),
+        ("21052", "CSIDL_FLAG_NO_ALIAS|0x00020052"),
+        ("21053", "CSIDL_FLAG_NO_ALIAS|0x00020053"),
+        ("21054", "CSIDL_FLAG_NO_ALIAS|0x00020054"),
+        ("21055", "CSIDL_FLAG_NO_ALIAS|0x00020055"),
+        ("21056", "CSIDL_FLAG_NO_ALIAS|0x00020056"),
+        ("21057", "CSIDL_FLAG_NO_ALIAS|0x00020057"),
+        ("21058", "CSIDL_FLAG_NO_ALIAS|0x00020058"),
+        ("21059", "CSIDL_FLAG_NO_ALIAS|0x00020059"),
+        ("21060", "CSIDL_FLAG_NO_ALIAS|0x00020060"),
+        ("21061", "CSIDL_FLAG_NO_ALIAS|0x00020061"),
+        ("21062", "CSIDL_FLAG_NO_ALIAS|0x00020062"),
+        ("21063", "CSIDL_FLAG_NO_ALIAS|0x00020063"),
+        ("21064", "CSIDL_FLAG_NO_ALIAS|0x00020064"),
+        ("21065", "CSIDL_FLAG_NO_ALIAS|0x00020065"),
+        ("21066", "CSIDL_FLAG_NO_ALIAS|0x00020066"),
+        ("21067", "CSIDL_FLAG_NO_ALIAS|0x00020067"),
+        ("21068", "CSIDL_FLAG_NO_ALIAS|0x00020068"),
+        ("21069", "CSIDL_FLAG_NO_ALIAS|0x00020069"),
+        ("21070", "CSIDL_FLAG_NO_ALIAS|0x00020070"),
+        ("21071", "CSIDL_FLAG_NO_ALIAS|0x00020071"),
+        ("21072", "CSIDL_FLAG_NO_ALIAS|0x00020072"),
+        ("21073", "CSIDL_FLAG_NO_ALIAS|0x00020073"),
+        ("21074", "CSIDL_FLAG_NO_ALIAS|0x00020074"),
+        ("21075", "CSIDL_FLAG_NO_ALIAS|0x00020075"),
+        ("21076", "CSIDL_FLAG_NO_ALIAS|0x00020076"),
+        ("21077", "CSIDL_FLAG_NO_ALIAS|0x00020077"),
+        ("21078", "CSIDL_FLAG_NO_ALIAS|0x00020078"),
+        ("21079", "CSIDL_FLAG_NO_ALIAS|0x00020079"),
+        ("21080", "CSIDL_FLAG_NO_ALIAS|0x00020080"),
+        ("21081", "CSIDL_FLAG_NO_ALIAS|0x00020081"),
+        ("21082", "CSIDL_FLAG_NO_ALIAS|0x00020082"),
+        ("21083", "CSIDL_FLAG_NO_ALIAS|0x00020083"),
+        ("21084", "CSIDL_FLAG_NO_ALIAS|0x00020084"),
+        ("21085", "CSIDL_FLAG_NO_ALIAS|0x00020085"),
+        ("21086", "CSIDL_FLAG_NO_ALIAS|0x00020086"),
+        ("21087", "CSIDL_FLAG_NO_ALIAS|0x00020087"),
+        ("21088", "CSIDL_FLAG_NO_ALIAS|0x00020088"),
+        ("21089", "CSIDL_FLAG_NO_ALIAS|0x00020089"),
+        ("21090", "CSIDL_FLAG_NO_ALIAS|0x00020090"),
+        ("21091", "CSIDL_FLAG_NO_ALIAS|0x00020091"),
+        ("21092", "CSIDL_FLAG_NO_ALIAS|0x00020092"),
+        ("21093", "CSIDL_FLAG_NO_ALIAS|0x00020093"),
+        ("21094", "CSIDL_FLAG_NO_ALIAS|0x00020094"),
+        ("21095", "CSIDL_FLAG_NO_ALIAS|0x00020095"),
+        ("21096", "CSIDL_FLAG_NO_ALIAS|0x00020096"),
+        ("21097", "CSIDL_FLAG_NO_ALIAS|0x00020097"),
+        ("21098", "CSIDL_FLAG_NO_ALIAS|0x00020098"),
+        ("21099", "CSIDL_FLAG_NO_ALIAS|0x00020099"),
+        ("21100", "CSIDL_FLAG_NO_ALIAS|0x00020100"),
+        ("21101", "CSIDL_FLAG_NO_ALIAS|0x00020101"),
+        ("21102", "CSIDL_FLAG_NO_ALIAS|0x00020102"),
+        ("21103", "CSIDL_FLAG_NO_ALIAS|0x00020103"),
+        ("21104", "CSIDL_FLAG_NO_ALIAS|0x00020104"),
+        ("21105", "CSIDL_FLAG_NO_ALIAS|0x00020105"),
+        ("21106", "CSIDL_FLAG_NO_ALIAS|0x00020106"),
+        ("21107", "CSIDL_FLAG_NO_ALIAS|0x00020107"),
+        ("21108", "CSIDL_FLAG_NO_ALIAS|0x00020108"),
+        ("21109", "CSIDL_FLAG_NO_ALIAS|0x00020109"),
+        ("21110", "CSIDL_FLAG_NO_ALIAS|0x00020110"),
+        ("21111", "CSIDL_FLAG_NO_ALIAS|0x00020111"),
+        ("21112", "CSIDL_FLAG_NO_ALIAS|0x00020112"),
+        ("21113", "CSIDL_FLAG_NO_ALIAS|0x00020113"),
+        ("21114", "CSIDL_FLAG_NO_ALIAS|0x00020114"),
+        ("21115", "CSIDL_FLAG_NO_ALIAS|0x00020115"),
+        ("21116", "CSIDL_FLAG_NO_ALIAS|0x00020116"),
+        ("21117", "CSIDL_FLAG_NO_ALIAS|0x00020117"),
+        ("21118", "CSIDL_FLAG_NO_ALIAS|0x00020118"),
+        ("21119", "CSIDL_FLAG_NO_ALIAS|0x00020119"),
+        ("21120", "CSIDL_FLAG_NO_ALIAS|0x00020120"),
+        ("21121", "CSIDL_FLAG_NO_ALIAS|0x00020121"),
+        ("21122", "CSIDL_FLAG_NO_ALIAS|0x00020122"),
+        ("21123", "CSIDL_FLAG_NO_ALIAS|0x00020123"),
+        ("21124", "CSIDL_FLAG_NO_ALIAS|0x00020124"),
+        ("21125", "CSIDL_FLAG_NO_ALIAS|0x00020125"),
+        ("21126", "CSIDL_FLAG_NO_ALIAS|0x00020126"),
+        ("21127", "CSIDL_FLAG_NO_ALIAS|0x00020127"),
+        ("21128", "CSIDL_FLAG_NO_ALIAS|0x00020128"),
+        ("21129", "CSIDL_FLAG_NO_ALIAS|0x00020129"),
+        ("21130", "CSIDL_FLAG_NO_ALIAS|0x00020130"),
+        ("21131", "CSIDL_FLAG_NO_ALIAS|0x00020131"),
+        ("21132", "CSIDL_FLAG_NO_ALIAS|0x00020132"),
+        ("21133", "CSIDL_FLAG_NO_ALIAS|0x00020133"),
+        ("21134", "CSIDL_FLAG_NO_ALIAS|0x00020134"),
+        ("21135", "CSIDL_FLAG_NO_ALIAS|0x00020135"),
+        ("21136", "CSIDL_FLAG_NO_ALIAS|0x00020136"),
+        ("21137", "CSIDL_FLAG_NO_ALIAS|0x00020137"),
+        ("21138", "CSIDL_FLAG_NO_ALIAS|0x00020138"),
+        ("21139", "CSIDL_FLAG_NO_ALIAS|0x00020139"),
+        ("21140", "CSIDL_FLAG_NO_ALIAS|0x00020140"),
+        ("21141", "CSIDL_FLAG_NO_ALIAS|0x00020141"),
+        ("21142", "CSIDL_FLAG_NO_ALIAS|0x00020142"),
+        ("21143", "CSIDL_FLAG_NO_ALIAS|0x00020143"),
+        ("21144", "CSIDL_FLAG_NO_ALIAS|0x00020144"),
+        ("21145", "CSIDL_FLAG_NO_ALIAS|0x00020145"),
+        ("21146", "CSIDL_FLAG_NO_ALIAS|0x00020146"),
+        ("21147", "CSIDL_FLAG_NO_ALIAS|0x00020147"),
+        ("21148", "CSIDL_FLAG_NO_ALIAS|0x00020148"),
+        ("21149", "CSIDL_FLAG_NO_ALIAS|0x00020149"),
+        ("21150", "CSIDL_FLAG_NO_ALIAS|0x00020150"),
+        ("21151", "CSIDL_FLAG_NO_ALIAS|0x00020151"),
+        ("21152", "CSIDL_FLAG_NO_ALIAS|0x00020152"),
+        ("21153", "CSIDL_FLAG_NO_ALIAS|0x00020153"),
+        ("21154", "CSIDL_FLAG_NO_ALIAS|0x00020154"),
+        ("21155", "CSIDL_FLAG_NO_ALIAS|0x00020155"),
+        ("21156", "CSIDL_FLAG_NO_ALIAS|0x00020156"),
+        ("21157", "CSIDL_FLAG_NO_ALIAS|0x00020157"),
+        ("21158", "CSIDL_FLAG_NO_ALIAS|0x00020158"),
+        ("21159", "CSIDL_FLAG_NO_ALIAS|0x00020159"),
+        ("21160", "CSIDL_FLAG_NO_ALIAS|0x00020160"),
+        ("21161", "CSIDL_FLAG_NO_ALIAS|0x00020161"),
+        ("21162", "CSIDL_FLAG_NO_ALIAS|0x00020162"),
+        ("21163", "CSIDL_FLAG_NO_ALIAS|0x00020163"),
+        ("21164", "CSIDL_FLAG_NO_ALIAS|0x00020164"),
+        ("21165", "CSIDL_FLAG_NO_ALIAS|0x00020165"),
+        ("21166", "CSIDL_FLAG_NO_ALIAS|0x00020166"),
+        ("21167", "CSIDL_FLAG_NO_ALIAS|0x00020167"),
+        ("21168", "CSIDL_FLAG_NO_ALIAS|0x00020168"),
+        ("21169", "CSIDL_FLAG_NO_ALIAS|0x00020169"),
+        ("21170", "CSIDL_FLAG_NO_ALIAS|0x00020170"),
+        ("21171", "CSIDL_FLAG_NO_ALIAS|0x00020171"),
+        ("21172", "CSIDL_FLAG_NO_ALIAS|0x00020172"),
+        ("21173", "CSIDL_FLAG_NO_ALIAS|0x00020173"),
+        ("21174", "CSIDL_FLAG_NO_ALIAS|0x00020174"),
+        ("21175", "CSIDL_FLAG_NO_ALIAS|0x00020175"),
+        ("21176", "CSIDL_FLAG_NO_ALIAS|0x00020176"),
+        ("21177", "CSIDL_FLAG_NO_ALIAS|0x00020177"),
+        ("21178", "CSIDL_FLAG_NO_ALIAS|0x00020178"),
+        ("21179", "CSIDL_FLAG_NO_ALIAS|0x00020179"),
+        ("21180", "CSIDL_FLAG_NO_ALIAS|0x00020180"),
+        ("21181", "CSIDL_FLAG_NO_ALIAS|0x00020181"),
+        ("21182", "CSIDL_FLAG_NO_ALIAS|0x00020182"),
+        ("21183", "CSIDL_FLAG_NO_ALIAS|0x00020183"),
+        ("21184", "CSIDL_FLAG_NO_ALIAS|0x00020184"),
+        ("21185", "CSIDL_FLAG_NO_ALIAS|0x00020185"),
+        ("21186", "CSIDL_FLAG_NO_ALIAS|0x00020186"),
+        ("21187", "CSIDL_FLAG_NO_ALIAS|0x00020187"),
+        ("21188", "CSIDL_FLAG_NO_ALIAS|0x00020188"),
+        ("21189", "CSIDL_FLAG_NO_ALIAS|0x00020189"),
+        ("21190", "CSIDL_FLAG_NO_ALIAS|0x00020190"),
+        ("21191", "CSIDL_FLAG_NO_ALIAS|0x00020191"),
+        ("21192", "CSIDL_FLAG_NO_ALIAS|0x00020192"),
+        ("21193", "CSIDL_FLAG_NO_ALIAS|0x00020193"),
+        ("21194", "CSIDL_FLAG_NO_ALIAS|0x00020194"),
+        ("21195", "CSIDL_FLAG_NO_ALIAS|0x00020195"),
+        ("21196", "CSIDL_FLAG_NO_ALIAS|0x00020196"),
+        ("21197", "CSIDL_FLAG_NO_ALIAS|0x00020197"),
+        ("21198", "CSIDL_FLAG_NO_ALIAS|0x00020198"),
+        ("21199", "CSIDL_FLAG_NO_ALIAS|0x00020199"),
+        ("21200", "CSIDL_FLAG_NO_ALIAS|0x00020200"),
+        ("21201", "CSIDL_FLAG_NO_ALIAS|0x00020201"),
+        ("21202", "CSIDL_FLAG_NO_ALIAS|0x00020202"),
+        ("21203", "CSIDL_FLAG_NO_ALIAS|0x00020203"),
+        ("21204", "CSIDL_FLAG_NO_ALIAS|0x00020204"),
+        ("21205", "CSIDL_FLAG_NO_ALIAS|0x00020205"),
+        ("21206", "CSIDL_FLAG_NO_ALIAS|0x00020206"),
+        ("21207", "CSIDL_FLAG_NO_ALIAS|0x00020207"),
+        ("21208", "CSIDL_FLAG_NO_ALIAS|0x00020208"),
+        ("21209", "CSIDL_FLAG_NO_ALIAS|0x00020209"),
+        ("21210", "CSIDL_FLAG_NO_ALIAS|0x00020210"),
+        ("21211", "CSIDL_FLAG_NO_ALIAS|0x00020211"),
+        ("21212", "CSIDL_FLAG_NO_ALIAS|0x00020212"),
+        ("21213", "CSIDL_FLAG_NO_ALIAS|0x00020213"),
+        ("21214", "CSIDL_FLAG_NO_ALIAS|0x00020214"),
+        ("21215", "CSIDL_FLAG_NO_ALIAS|0x00020215"),
+        ("21216", "CSIDL_FLAG_NO_ALIAS|0x00020216"),
+        ("21217", "CSIDL_FLAG_NO_ALIAS|0x00020217"),
+        ("21218", "CSIDL_FLAG_NO_ALIAS|0x00020218"),
+        ("21219", "CSIDL_FLAG_NO_ALIAS|0x00020219"),
+        ("21220", "CSIDL_FLAG_NO_ALIAS|0x00020220"),
+        ("21221", "CSIDL_FLAG_NO_ALIAS|0x00020221"),
+        ("21222", "CSIDL_FLAG_NO_ALIAS|0x00020222"),
+        ("21223", "CSIDL_FLAG_NO_ALIAS|0x00020223"),
+        ("21224", "CSIDL_FLAG_NO_ALIAS|0x00020224"),
+        ("21225", "CSIDL_FLAG_NO_ALIAS|0x00020225"),
+        ("21226", "CSIDL_FLAG_NO_ALIAS|0x00020226"),
+        ("21227", "CSIDL_FLAG_NO_ALIAS|0x00020227"),
+        ("21228", "CSIDL_FLAG_NO_ALIAS|0x00020228"),
+        ("21229", "CSIDL_FLAG_NO_ALIAS|0x00020229"),
+        ("21230", "CSIDL_FLAG_NO_ALIAS|0x00020230"),
+        ("21231", "CSIDL_FLAG_NO_ALIAS|0x00020231"),
+        ("21232", "CSIDL_FLAG_NO_ALIAS|0x00020232"),
+        ("21233", "CSIDL_FLAG_NO_ALIAS|0x00020233"),
+        ("21234", "CSIDL_FLAG_NO_ALIAS|0x00020234"),
+        ("21235", "CSIDL_FLAG_NO_ALIAS|0x00020235"),
+        ("21236", "CSIDL_FLAG_NO_ALIAS|0x00020236"),
+        ("21237", "CSIDL_FLAG_NO_ALIAS|0x00020237"),
+        ("21238", "CSIDL_FLAG_NO_ALIAS|0x00020238"),
+        ("21239", "CSIDL_FLAG_NO_ALIAS|0x00020239"),
+        ("21240", "CSIDL_FLAG_NO_ALIAS|0x00020240"),
+        ("21241", "CSIDL_FLAG_NO_ALIAS|0x00020241"),
+        ("21242", "CSIDL_FLAG_NO_ALIAS|0x00020242"),
+        ("21243", "CSIDL_FLAG_NO_ALIAS|0x00020243"),
+        ("21244", "CSIDL_FLAG_NO_ALIAS|0x00020244"),
+        ("21245", "CSIDL_FLAG_NO_ALIAS|0x00020245"),
+        ("21246", "CSIDL_FLAG_NO_ALIAS|0x00020246"),
+        ("21247", "CSIDL_FLAG_NO_ALIAS|0x00020247"),
+        ("21248", "CSIDL_FLAG_NO_ALIAS|0x00020248"),
+        ("21249", "CSIDL_FLAG_NO_ALIAS|0x00020249"),
+        ("21250", "CSIDL_FLAG_NO_ALIAS|0x00020250"),
+        ("21251", "CSIDL_FLAG_NO_ALIAS|0x00020251"),
+        ("21252", "CSIDL_FLAG_NO_ALIAS|0x00020252"),
+        ("21253", "CSIDL_FLAG_NO_ALIAS|0x00020253"),
+        ("21254", "CSIDL_FLAG_NO_ALIAS|0x00020254"),
+        ("21255", "CSIDL_FLAG_NO_ALIAS|0x00020255"),
+        ("21256", "CSIDL_FLAG_NO_ALIAS|0x00020256"),
+        ("21257", "CSIDL_FLAG_NO_ALIAS|0x00020257"),
+        ("21258", "CSIDL_FLAG_NO_ALIAS|0x00020258"),
+        ("21259", "CSIDL_FLAG_NO_ALIAS|0x00020259"),
+        ("21260", "CSIDL_FLAG_NO_ALIAS|0x00020260"),
+        ("21261", "CSIDL_FLAG_NO_ALIAS|0x00020261"),
+        ("21262", "CSIDL_FLAG_NO_ALIAS|0x00020262"),
+        ("21263", "CSIDL_FLAG_NO_ALIAS|0x00020263"),
+        ("21264", "CSIDL_FLAG_NO_ALIAS|0x00020264"),
+        ("21265", "CSIDL_FLAG_NO_ALIAS|0x00020265"),
+        ("21266", "CSIDL_FLAG_NO_ALIAS|0x00020266"),
+        ("21267", "CSIDL_FLAG_NO_ALIAS|0x00020267"),
+        ("21268", "CSIDL_FLAG_NO_ALIAS|0x00020268"),
+        ("21269", "CSIDL_FLAG_NO_ALIAS|0x00020269"),
+        ("21270", "CSIDL_FLAG_NO_ALIAS|0x00020270"),
+        ("21271", "CSIDL_FLAG_NO_ALIAS|0x00020271"),
+        ("21272", "CSIDL_FLAG_NO_ALIAS|0x00020272"),
+        ("21273", "CSIDL_FLAG_NO_ALIAS|0x00020273"),
+        ("21274", "CSIDL_FLAG_NO_ALIAS|0x00020274"),
+        ("21275", "CSIDL_FLAG_NO_ALIAS|0x00020275"),
+        ("21276", "CSIDL_FLAG_NO_ALIAS|0x00020276"),
+        ("21277", "CSIDL_FLAG_NO_ALIAS|0x00020277"),
+        ("21278", "CSIDL_FLAG_NO_ALIAS|0x00020278"),
+        ("21279", "CSIDL_FLAG_NO_ALIAS|0x00020279"),
+        ("21280", "CSIDL_FLAG_NO_ALIAS|0x00020280"),
+        ("21281", "CSIDL_FLAG_NO_ALIAS|0x00020281"),
+        ("21282", "CSIDL_FLAG_NO_ALIAS|0x00020282"),
+        ("21283", "CSIDL_FLAG_NO_ALIAS|0x00020283"),
+        ("21284", "CSIDL_FLAG_NO_ALIAS|0x00020284"),
+        ("21285", "CSIDL_FLAG_NO_ALIAS|0x00020285"),
+        ("21286", "CSIDL_FLAG_NO_ALIAS|0x00020286"),
+        ("21287", "CSIDL_FLAG_NO_ALIAS|0x00020287"),
+        ("21288", "CSIDL_FLAG_NO_ALIAS|0x00020288"),
+        ("21289", "CSIDL_FLAG_NO_ALIAS|0x00020289"),
+        ("21290", "CSIDL_FLAG_NO_ALIAS|0x00020290"),
+        ("21291", "CSIDL_FLAG_NO_ALIAS|0x00020291"),
+        ("21292", "CSIDL_FLAG_NO_ALIAS|0x00020292"),
+        ("21293", "CSIDL_FLAG_NO_ALIAS|0x00020293"),
+        ("21294", "CSIDL_FLAG_NO_ALIAS|0x00020294"),
+        ("21295", "CSIDL_FLAG_NO_ALIAS|0x00020295"),
+        ("21296", "CSIDL_FLAG_NO_ALIAS|0x00020296"),
+        ("21297", "CSIDL_FLAG_NO_ALIAS|0x00020297"),
+        ("21298", "CSIDL_FLAG_NO_ALIAS|0x00020298"),
+        ("21299", "CSIDL_FLAG_NO_ALIAS|0x00020299"),
+        ("21300", "CSIDL_FLAG_NO_ALIAS|0x00020300"),
+        ("21301", "CSIDL_FLAG_NO_ALIAS|0x00020301"),
+        ("21302", "CSIDL_FLAG_NO_ALIAS|0x00020302"),
+        ("21303", "CSIDL_FLAG_NO_ALIAS|0x00020303"),
+        ("21304", "CSIDL_FLAG_NO_ALIAS|0x00020304"),
+        ("21305", "CSIDL_FLAG_NO_ALIAS|0x00020305"),
+        ("21306", "CSIDL_FLAG_NO_ALIAS|0x00020306"),
+        ("21307", "CSIDL_FLAG_NO_ALIAS|0x00020307"),
+        ("21308", "CSIDL_FLAG_NO_ALIAS|0x00020308"),
+        ("21309", "CSIDL_FLAG_NO_ALIAS|0x00020309"),
+        ("21310", "CSIDL_FLAG_NO_ALIAS|0x00020310"),
+        ("21311", "CSIDL_FLAG_NO_ALIAS|0x00020311"),
+        ("21312", "CSIDL_FLAG_NO_ALIAS|0x00020312"),
+        ("21313", "CSIDL_FLAG_NO_ALIAS|0x00020313"),
+        ("21314", "CSIDL_FLAG_NO_ALIAS|0x00020314"),
+        ("21315", "CSIDL_FLAG_NO_ALIAS|0x00020315"),
+        ("21316", "CSIDL_FLAG_NO_ALIAS|0x00020316"),
+        ("21317", "CSIDL_FLAG_NO_ALIAS|0x00020317"),
+        ("21318", "CSIDL_FLAG_NO_ALIAS|0x00020318"),
+        ("21319", "CSIDL_FLAG_NO_ALIAS|0x00020319"),
+        ("21320", "CSIDL_FLAG_NO_ALIAS|0x00020320"),
+        ("21321", "CSIDL_FLAG_NO_ALIAS|0x00020321"),
+        ("21322", "CSIDL_FLAG_NO_ALIAS|0x00020322"),
+        ("21323", "CSIDL_FLAG_NO_ALIAS|0x00020323"),
+        ("21324", "CSIDL_FLAG_NO_ALIAS|0x00020324"),
+        ("21325", "CSIDL_FLAG_NO_ALIAS|0x00020325"),
+        ("21326", "CSIDL_FLAG_NO_ALIAS|0x00020326"),
+        ("21327", "CSIDL_FLAG_NO_ALIAS|0x00020327"),
+        ("21328", "CSIDL_FLAG_NO_ALIAS|0x00020328"),
+        ("21329", "CSIDL_FLAG_NO_ALIAS|0x00020329"),
+        ("21330", "CSIDL_FLAG_NO_ALIAS|0x00020330"),
+        ("21331", "CSIDL_FLAG_NO_ALIAS|0x00020331"),
+        ("21332", "CSIDL_FLAG_NO_ALIAS|0x00020332"),
+        ("21333", "CSIDL_FLAG_NO_ALIAS|0x00020333"),
+        ("21334", "CSIDL_FLAG_NO_ALIAS|0x00020334"),
+        ("21335", "CSIDL_FLAG_NO_ALIAS|0x00020335"),
+        ("21336", "CSIDL_FLAG_NO_ALIAS|0x00020336"),
+        ("21337", "CSIDL_FLAG_NO_ALIAS|0x00020337"),
+        ("21338", "CSIDL_FLAG_NO_ALIAS|0x00020338"),
+        ("21339", "CSIDL_FLAG_NO_ALIAS|0x00020339"),
+        ("21340", "CSIDL_FLAG_NO_ALIAS|0x00020340"),
+        ("21341", "CSIDL_FLAG_NO_ALIAS|0x00020341"),
+        ("21342", "CSIDL_FLAG_NO_ALIAS|0x00020342"),
+        ("21343", "CSIDL_FLAG_NO_ALIAS|0x00020343"),
+        ("21344", "CSIDL_FLAG_NO_ALIAS|0x00020344"),
+        ("21345", "CSIDL_FLAG_NO_ALIAS|0x00020345"),
+        ("21346", "CSIDL_FLAG_NO_ALIAS|0x00020346"),
+        ("21347", "CSIDL_FLAG_NO_ALIAS|0x00020347"),
+        ("21348", "CSIDL_FLAG_NO_ALIAS|0x00020348"),
+        ("21349", "CSIDL_FLAG_NO_ALIAS|0x00020349"),
+        ("21350", "CSIDL_FLAG_NO_ALIAS|0x00020350"),
+        ("21351", "CSIDL_FLAG_NO_ALIAS|0x00020351"),
+        ("21352", "CSIDL_FLAG_NO_ALIAS|0x00020352"),
+        ("21353", "CSIDL_FLAG_NO_ALIAS|0x00020353"),
+        ("21354", "CSIDL_FLAG_NO_ALIAS|0x00020354"),
+        ("21355", "CSIDL_FLAG_NO_ALIAS|0x00020355"),
+        ("21356", "CSIDL_FLAG_NO_ALIAS|0x00020356"),
+        ("21357", "CSIDL_FLAG_NO_ALIAS|0x00020357"),
+        ("21358", "CSIDL_FLAG_NO_ALIAS|0x00020358"),
+        ("21359", "CSIDL_FLAG_NO_ALIAS|0x00020359"),
+        ("21360", "CSIDL_FLAG_NO_ALIAS|0x00020360"),
+        ("21361", "CSIDL_FLAG_NO_ALIAS|0x00020361"),
+        ("21362", "CSIDL_FLAG_NO_ALIAS|0x00020362"),
+        ("21363", "CSIDL_FLAG_NO_ALIAS|0x00020363"),
+        ("21364", "CSIDL_FLAG_NO_ALIAS|0x00020364"),
+        ("21365", "CSIDL_FLAG_NO_ALIAS|0x00020365"),
+        ("21366", "CSIDL_FLAG_NO_ALIAS|0x00020366"),
+        ("21367", "CSIDL_FLAG_NO_ALIAS|0x00020367"),
+        ("21368", "CSIDL_FLAG_NO_ALIAS|0x00020368"),
+        ("21369", "CSIDL_FLAG_NO_ALIAS|0x00020369"),
+        ("21370", "CSIDL_FLAG_NO_ALIAS|0x00020370"),
+        ("21371", "CSIDL_FLAG_NO_ALIAS|0x00020371"),
+        ("21372", "CSIDL_FLAG_NO_ALIAS|0x00020372"),
+        ("21373", "CSIDL_FLAG_NO_ALIAS|0x00020373"),
+        ("21374", "CSIDL_FLAG_NO_ALIAS|0x00020374"),
+        ("21375", "CSIDL_FLAG_NO_ALIAS|0x00020375"),
+        ("21376", "CSIDL_FLAG_NO_ALIAS|0x00020376"),
+        ("21377", "CSIDL_FLAG_NO_ALIAS|0x00020377"),
+        ("21378", "CSIDL_FLAG_NO_ALIAS|0x00020378"),
+        ("21379", "CSIDL_FLAG_NO_ALIAS|0x00020379"),
+        ("21380", "CSIDL_FLAG_NO_ALIAS|0x00020380"),
+        ("21381", "CSIDL_FLAG_NO_ALIAS|0x00020381"),
+        ("21382", "CSIDL_FLAG_NO_ALIAS|0x00020382"),
+        ("21383", "CSIDL_FLAG_NO_ALIAS|0x00020383"),
+        ("21384", "CSIDL_FLAG_NO_ALIAS|0x00020384"),
+        ("21385", "CSIDL_FLAG_NO_ALIAS|0x00020385"),
+        ("21386", "CSIDL_FLAG_NO_ALIAS|0x00020386"),
+        ("21387", "CSIDL_FLAG_NO_ALIAS|0x00020387"),
+        ("21388", "CSIDL_FLAG_NO_ALIAS|0x00020388"),
+        ("21389", "CSIDL_FLAG_NO_ALIAS|0x00020389"),
+        ("21390", "CSIDL_FLAG_NO_ALIAS|0x00020390"),
+        ("21391", "CSIDL_FLAG_NO_ALIAS|0x00020391"),
+        ("21392", "CSIDL_FLAG_NO_ALIAS|0x00020392"),
+        ("21393", "CSIDL_FLAG_NO_ALIAS|0x00020393"),
+        ("21394", "CSIDL_FLAG_NO_ALIAS|0x00020394"),
+        ("21395", "CSIDL_FLAG_NO_ALIAS|0x00020395"),
+        ("21396", "CSIDL_FLAG_NO_ALIAS|0x00020396"),
+        ("21397", "CSIDL_FLAG_NO_ALIAS|0x00020397"),
+        ("21398", "CSIDL_FLAG_NO_ALIAS|0x00020398"),
+        ("21399", "CSIDL_FLAG_NO_ALIAS|0x00020399"),
+        ("21400", "CSIDL_FLAG_NO_ALIAS|0x00020400"),
+        ("21401", "CSIDL_FLAG_NO_ALIAS|0x00020401"),
+        ("21402", "CSIDL_FLAG_NO_ALIAS|0x00020402"),
+        ("21403", "CSIDL_FLAG_NO_ALIAS|0x00020403"),
+        ("21404", "CSIDL_FLAG_NO_ALIAS|0x00020404"),
+        ("21405", "CSIDL_FLAG_NO_ALIAS|0x00020405"),
+        ("21406", "CSIDL_FLAG_NO_ALIAS|0x00020406"),
+        ("21407", "CSIDL_FLAG_NO_ALIAS|0x00020407"),
+        ("21408", "CSIDL_FLAG_NO_ALIAS|0x00020408"),
+        ("21409", "CSIDL_FLAG_NO_ALIAS|0x00020409"),
+        ("21410", "CSIDL_FLAG_NO_ALIAS|0x00020410"),
+        ("21411", "CSIDL_FLAG_NO_ALIAS|0x00020411"),
+        ("21412", "CSIDL_FLAG_NO_ALIAS|0x00020412"),
+        ("21413", "CSIDL_FLAG_NO_ALIAS|0x00020413"),
+        ("21414", "CSIDL_FLAG_NO_ALIAS|0x00020414"),
+        ("21415", "CSIDL_FLAG_NO_ALIAS|0x00020415"),
+        ("21416", "CSIDL_FLAG_NO_ALIAS|0x00020416"),
+        ("21417", "CSIDL_FLAG_NO_ALIAS|0x00020417"),
+        ("21418", "CSIDL_FLAG_NO_ALIAS|0x00020418"),
+        ("21419", "CSIDL_FLAG_NO_ALIAS|0x00020419"),
+        ("21420", "CSIDL_FLAG_NO_ALIAS|0x00020420"),
+        ("21421", "CSIDL_FLAG_NO_ALIAS|0x00020421"),
+        ("21422", "CSIDL_FLAG_NO_ALIAS|0x00020422"),
+        ("21423", "CSIDL_FLAG_NO_ALIAS|0x00020423"),
+        ("21424", "CSIDL_FLAG_NO_ALIAS|0x00020424"),
+        ("21425", "CSIDL_FLAG_NO_ALIAS|0x00020425"),
+        ("21426", "CSIDL_FLAG_NO_ALIAS|0x00020426"),
+        ("21427", "CSIDL_FLAG_NO_ALIAS|0x00020427"),
+        ("21428", "CSIDL_FLAG_NO_ALIAS|0x00020428"),
+        ("21429", "CSIDL_FLAG_NO_ALIAS|0x00020429"),
+        ("21430", "CSIDL_FLAG_NO_ALIAS|0x00020430"),
+        ("21431", "CSIDL_FLAG_NO_ALIAS|0x00020431"),
+        ("21432", "CSIDL_FLAG_NO_ALIAS|0x00020432"),
+        ("21433", "CSIDL_FLAG_NO_ALIAS|0x00020433"),
+        ("21434", "CSIDL_FLAG_NO_ALIAS|0x00020434"),
+        ("21435", "CSIDL_FLAG_NO_ALIAS|0x00020435"),
+        ("21436", "CSIDL_FLAG_NO_ALIAS|0x00020436"),
+        ("21437", "CSIDL_FLAG_NO_ALIAS|0x00020437"),
+        ("21438", "CSIDL_FLAG_NO_ALIAS|0x00020438"),
+        ("21439", "CSIDL_FLAG_NO_ALIAS|0x00020439"),
+        ("21440", "CSIDL_FLAG_NO_ALIAS|0x00020440"),
+        ("21441", "CSIDL_FLAG_NO_ALIAS|0x00020441"),
+        ("21442", "CSIDL_FLAG_NO_ALIAS|0x00020442"),
+        ("21443", "CSIDL_FLAG_NO_ALIAS|0x00020443"),
+        ("21444", "CSIDL_FLAG_NO_ALIAS|0x00020444"),
+        ("21445", "CSIDL_FLAG_NO_ALIAS|0x00020445"),
+        ("21446", "CSIDL_FLAG_NO_ALIAS|0x00020446"),
+        ("21447", "CSIDL_FLAG_NO_ALIAS|0x00020447"),
+        ("21448", "CSIDL_FLAG_NO_ALIAS|0x00020448"),
+        ("21449", "CSIDL_FLAG_NO_ALIAS|0x00020449"),
+        ("21450", "CSIDL_FLAG_NO_ALIAS|0x00020450"),
+        ("21451", "CSIDL_FLAG_NO_ALIAS|0x00020451"),
+        ("21452", "CSIDL_FLAG_NO_ALIAS|0x00020452"),
+        ("21453", "CSIDL_FLAG_NO_ALIAS|0x00020453"),
+        ("21454", "CSIDL_FLAG_NO_ALIAS|0x00020454"),
+        ("21455", "CSIDL_FLAG_NO_ALIAS|0x00020455"),
+        ("21456", "CSIDL_FLAG_NO_ALIAS|0x00020456"),
+        ("21457", "CSIDL_FLAG_NO_ALIAS|0x00020457"),
+        ("21458", "CSIDL_FLAG_NO_ALIAS|0x00020458"),
+        ("21459", "CSIDL_FLAG_NO_ALIAS|0x00020459"),
+        ("21460", "CSIDL_FLAG_NO_ALIAS|0x00020460"),
+        ("21461", "CSIDL_FLAG_NO_ALIAS|0x00020461"),
+        ("21462", "CSIDL_FLAG_NO_ALIAS|0x00020462"),
+        ("21463", "CSIDL_FLAG_NO_ALIAS|0x00020463"),
+        ("21464", "CSIDL_FLAG_NO_ALIAS|0x00020464"),
+        ("21465", "CSIDL_FLAG_NO_ALIAS|0x00020465"),
+        ("21466", "CSIDL_FLAG_NO_ALIAS|0x00020466"),
+        ("21467", "CSIDL_FLAG_NO_ALIAS|0x00020467"),
+        ("21468", "CSIDL_FLAG_NO_ALIAS|0x00020468"),
+        ("21469", "CSIDL_FLAG_NO_ALIAS|0x00020469"),
+        ("21470", "CSIDL_FLAG_NO_ALIAS|0x00020470"),
+        ("21471", "CSIDL_FLAG_NO_ALIAS|0x00020471"),
+        ("21472", "CSIDL_FLAG_NO_ALIAS|0x00020472"),
+        ("21473", "CSIDL_FLAG_NO_ALIAS|0x00020473"),
+        ("21474", "CSIDL_FLAG_NO_ALIAS|0x00020474"),
+        ("21475", "CSIDL_FLAG_NO_ALIAS|0x00020475"),
+        ("21476", "CSIDL_FLAG_NO_ALIAS|0x00020476"),
+        ("21477", "CSIDL_FLAG_NO_ALIAS|0x00020477"),
+        ("21478", "CSIDL_FLAG_NO_ALIAS|0x00020478"),
+        ("21479", "CSIDL_FLAG_NO_ALIAS|0x00020479"),
+        ("21480", "CSIDL_FLAG_NO_ALIAS|0x00020480"),
+        ("21481", "CSIDL_FLAG_NO_ALIAS|0x00020481"),
+        ("21482", "CSIDL_FLAG_NO_ALIAS|0x00020482"),
+        ("21483", "CSIDL_FLAG_NO_ALIAS|0x00020483"),
+        ("21484", "CSIDL_FLAG_NO_ALIAS|0x00020484"),
+        ("21485", "CSIDL_FLAG_NO_ALIAS|0x00020485"),
+        ("21486", "CSIDL_FLAG_NO_ALIAS|0x00020486"),
+        ("21487", "CSIDL_FLAG_NO_ALIAS|0x00020487"),
+        ("21488", "CSIDL_FLAG_NO_ALIAS|0x00020488"),
+        ("21489", "CSIDL_FLAG_NO_ALIAS|0x00020489"),
+        ("21490", "CSIDL_FLAG_NO_ALIAS|0x00020490"),
+        ("21491", "CSIDL_FLAG_NO_ALIAS|0x00020491"),
+        ("21492", "CSIDL_FLAG_NO_ALIAS|0x00020492"),
+        ("21493", "CSIDL_FLAG_NO_ALIAS|0x00020493"),
+        ("21494", "CSIDL_FLAG_NO_ALIAS|0x00020494"),
+        ("21495", "CSIDL_FLAG_NO_ALIAS|0x00020495"),
+        ("21496", "CSIDL_FLAG_NO_ALIAS|0x00020496"),
+        ("21497", "CSIDL_FLAG_NO_ALIAS|0x00020497"),
+        ("21498", "CSIDL_FLAG_NO_ALIAS|0x00020498"),
+        ("21499", "CSIDL_FLAG_NO_ALIAS|0x00020499"),
+        ("21500", "CSIDL_FLAG_NO_ALIAS|0x00020500"),
+        ("21501", "CSIDL_FLAG_NO_ALIAS|0x00020501"),
+        ("21502", "CSIDL_FLAG_NO_ALIAS|0x00020502"),
+        ("21503", "CSIDL_FLAG_NO_ALIAS|0x00020503"),
+        ("21504", "CSIDL_FLAG_NO_ALIAS|0x00020504"),
+        ("21505", "CSIDL_FLAG_NO_ALIAS|0x00020505"),
+        ("21506", "CSIDL_FLAG_NO_ALIAS|0x00020506"),
+        ("21507", "CSIDL_FLAG_NO_ALIAS|0x00020507"),
+        ("21508", "CSIDL_FLAG_NO_ALIAS|0x00020508"),
+        ("21509", "CSIDL_FLAG_NO_ALIAS|0x00020509"),
+        ("21510", "CSIDL_FLAG_NO_ALIAS|0x00020510"),
+        ("21511", "CSIDL_FLAG_NO_ALIAS|0x00020511"),
+        ("21512", "CSIDL_FLAG_NO_ALIAS|0x00020512"),
+        ("21513", "CSIDL_FLAG_NO_ALIAS|0x00020513"),
+        ("21514", "CSIDL_FLAG_NO_ALIAS|0x00020514"),
+        ("21515", "CSIDL_FLAG_NO_ALIAS|0x00020515"),
+        ("21516", "CSIDL_FLAG_NO_ALIAS|0x00020516"),
+        ("21517", "CSIDL_FLAG_NO_ALIAS|0x00020517"),
+        ("21518", "CSIDL_FLAG_NO_ALIAS|0x00020518"),
+        ("21519", "CSIDL_FLAG_NO_ALIAS|0x00020519"),
+        ("21520", "CSIDL_FLAG_NO_ALIAS|0x00020520"),
+        ("21521", "CSIDL_FLAG_NO_ALIAS|0x00020521"),
+        ("21522", "CSIDL_FLAG_NO_ALIAS|0x00020522"),
+        ("21523", "CSIDL_FLAG_NO_ALIAS|0x00020523"),
+        ("21524", "CSIDL_FLAG_NO_ALIAS|0x00020524"),
+        ("21525", "CSIDL_FLAG_NO_ALIAS|0x00020525"),
+        ("21526", "CSIDL_FLAG_NO_ALIAS|0x00020526"),
+        ("21527", "CSIDL_FLAG_NO_ALIAS|0x00020527"),
+        ("21528", "CSIDL_FLAG_NO_ALIAS|0x00020528"),
+        ("21529", "CSIDL_FLAG_NO_ALIAS|0x00020529"),
+        ("21530", "CSIDL_FLAG_NO_ALIAS|0x00020530"),
+        ("21531", "CSIDL_FLAG_NO_ALIAS|0x00020531"),
+        ("21532", "CSIDL_FLAG_NO_ALIAS|0x00020532"),
+        ("21533", "CSIDL_FLAG_NO_ALIAS|0x00020533"),
+        ("21534", "CSIDL_FLAG_NO_ALIAS|0x00020534"),
+        ("21535", "CSIDL_FLAG_NO_ALIAS|0x00020535"),
+        ("21536", "CSIDL_FLAG_NO_ALIAS|0x00020536"),
+        ("21537", "CSIDL_FLAG_NO_ALIAS|0x00020537"),
+        ("21538", "CSIDL_FLAG_NO_ALIAS|0x00020538"),
+        ("21539", "CSIDL_FLAG_NO_ALIAS|0x00020539"),
+        ("21540", "CSIDL_FLAG_NO_ALIAS|0x00020540"),
+        ("21541", "CSIDL_FLAG_NO_ALIAS|0x00020541"),
+        ("21542", "CSIDL_FLAG_NO_ALIAS|0x00020542"),
+        ("21543", "CSIDL_FLAG_NO_ALIAS|0x00020543"),
+        ("21544", "CSIDL_FLAG_NO_ALIAS|0x00020544"),
+        ("21545", "CSIDL_FLAG_NO_ALIAS|0x00020545"),
+        ("21546", "CSIDL_FLAG_NO_ALIAS|0x00020546"),
+        ("21547", "CSIDL_FLAG_NO_ALIAS|0x00020547"),
+        ("21548", "CSIDL_FLAG_NO_ALIAS|0x00020548"),
+        ("21549", "CSIDL_FLAG_NO_ALIAS|0x00020549"),
+        ("21550", "CSIDL_FLAG_NO_ALIAS|0x00020550"),
+        ("21551", "CSIDL_FLAG_NO_ALIAS|0x00020551"),
+        ("21552", "CSIDL_FLAG_NO_ALIAS|0x00020552"),
+        ("21553", "CSIDL_FLAG_NO_ALIAS|0x00020553"),
+        ("21554", "CSIDL_FLAG_NO_ALIAS|0x00020554"),
+        ("21555", "CSIDL_FLAG_NO_ALIAS|0x00020555"),
+        ("21556", "CSIDL_FLAG_NO_ALIAS|0x00020556"),
+        ("21557", "CSIDL_FLAG_NO_ALIAS|0x00020557"),
+        ("21558", "CSIDL_FLAG_NO_ALIAS|0x00020558"),
+        ("21559", "CSIDL_FLAG_NO_ALIAS|0x00020559"),
+        ("21560", "CSIDL_FLAG_NO_ALIAS|0x00020560"),
+        ("21561", "CSIDL_FLAG_NO_ALIAS|0x00020561"),
+        ("21562", "CSIDL_FLAG_NO_ALIAS|0x00020562"),
+        ("21563", "CSIDL_FLAG_NO_ALIAS|0x00020563"),
+        ("21564", "CSIDL_FLAG_NO_ALIAS|0x00020564"),
+        ("21565", "CSIDL_FLAG_NO_ALIAS|0x00020565"),
+        ("21566", "CSIDL_FLAG_NO_ALIAS|0x00020566"),
+        ("21567", "CSIDL_FLAG_NO_ALIAS|0x00020567"),
+        ("21568", "CSIDL_FLAG_NO_ALIAS|0x00020568"),
+        ("21569", "CSIDL_FLAG_NO_ALIAS|0x00020569"),
+        ("21570", "CSIDL_FLAG_NO_ALIAS|0x00020570"),
+        ("21571", "CSIDL_FLAG_NO_ALIAS|0x00020571"),
+        ("21572", "CSIDL_FLAG_NO_ALIAS|0x00020572"),
+        ("21573", "CSIDL_FLAG_NO_ALIAS|0x00020573"),
+        ("21574", "CSIDL_FLAG_NO_ALIAS|0x00020574"),
+        ("21575", "CSIDL_FLAG_NO_ALIAS|0x00020575"),
+        ("21576", "CSIDL_FLAG_NO_ALIAS|0x00020576"),
+        ("21577", "CSIDL_FLAG_NO_ALIAS|0x00020577"),
+        ("21578", "CSIDL_FLAG_NO_ALIAS|0x00020578"),
+        ("21579", "CSIDL_FLAG_NO_ALIAS|0x00020579"),
+        ("21580", "CSIDL_FLAG_NO_ALIAS|0x00020580"),
+        ("21581", "CSIDL_FLAG_NO_ALIAS|0x00020581"),
+        ("21582", "CSIDL_FLAG_NO_ALIAS|0x00020582"),
+        ("21583", "CSIDL_FLAG_NO_ALIAS|0x00020583"),
+        ("21584", "CSIDL_FLAG_NO_ALIAS|0x00020584"),
+        ("21585", "CSIDL_FLAG_NO_ALIAS|0x00020585"),
+        ("21586", "CSIDL_FLAG_NO_ALIAS|0x00020586"),
+        ("21587", "CSIDL_FLAG_NO_ALIAS|0x00020587"),
+        ("21588", "CSIDL_FLAG_NO_ALIAS|0x00020588"),
+        ("21589", "CSIDL_FLAG_NO_ALIAS|0x00020589"),
+        ("21590", "CSIDL_FLAG_NO_ALIAS|0x00020590"),
+        ("21591", "CSIDL_FLAG_NO_ALIAS|0x00020591"),
+        ("21592", "CSIDL_FLAG_NO_ALIAS|0x00020592"),
+        ("21593", "CSIDL_FLAG_NO_ALIAS|0x00020593"),
+        ("21594", "CSIDL_FLAG_NO_ALIAS|0x00020594"),
+        ("21595", "CSIDL_FLAG_NO_ALIAS|0x00020595"),
+        ("21596", "CSIDL_FLAG_NO_ALIAS|0x00020596"),
+        ("21597", "CSIDL_FLAG_NO_ALIAS|0x00020597"),
+        ("21598", "CSIDL_FLAG_NO_ALIAS|0x00020598"),
+        ("21599", "CSIDL_FLAG_NO_ALIAS|0x00020599"),
+        ("21600", "CSIDL_FLAG_NO_ALIAS|0x00020600"),
+        ("21601", "CSIDL_FLAG_NO_ALIAS|0x00020601"),
+        ("21602", "CSIDL_FLAG_NO_ALIAS|0x00020602"),
+        ("21603", "CSIDL_FLAG_NO_ALIAS|0x00020603"),
+        ("21604", "CSIDL_FLAG_NO_ALIAS|0x00020604"),
+        ("21605", "CSIDL_FLAG_NO_ALIAS|0x00020605"),
+        ("21606", "CSIDL_FLAG_NO_ALIAS|0x00020606"),
+        ("21607", "CSIDL_FLAG_NO_ALIAS|0x00020607"),
+        ("21608", "CSIDL_FLAG_NO_ALIAS|0x00020608"),
+        ("21609", "CSIDL_FLAG_NO_ALIAS|0x00020609"),
+        ("21610", "CSIDL_FLAG_NO_ALIAS|0x00020610"),
+        ("21611", "CSIDL_FLAG_NO_ALIAS|0x00020611"),
+        ("21612", "CSIDL_FLAG_NO_ALIAS|0x00020612"),
+        ("21613", "CSIDL_FLAG_NO_ALIAS|0x00020613"),
+        ("21614", "CSIDL_FLAG_NO_ALIAS|0x00020614"),
+        ("21615", "CSIDL_FLAG_NO_ALIAS|0x00020615"),
+        ("21616", "CSIDL_FLAG_NO_ALIAS|0x00020616"),
+        ("21617", "CSIDL_FLAG_NO_ALIAS|0x00020617"),
+        ("21618", "CSIDL_FLAG_NO_ALIAS|0x00020618"),
+        ("21619", "CSIDL_FLAG_NO_ALIAS|0x00020619"),
+        ("21620", "CSIDL_FLAG_NO_ALIAS|0x00020620"),
+        ("21621", "CSIDL_FLAG_NO_ALIAS|0x00020621"),
+        ("21622", "CSIDL_FLAG_NO_ALIAS|0x00020622"),
+        ("21623", "CSIDL_FLAG_NO_ALIAS|0x00020623"),
+        ("21624", "CSIDL_FLAG_NO_ALIAS|0x00020624"),
+        ("21625", "CSIDL_FLAG_NO_ALIAS|0x00020625"),
+        ("21626", "CSIDL_FLAG_NO_ALIAS|0x00020626"),
+        ("21627", "CSIDL_FLAG_NO_ALIAS|0x00020627"),
+        ("21628", "CSIDL_FLAG_NO_ALIAS|0x00020628"),
+        ("21629", "CSIDL_FLAG_NO_ALIAS|0x00020629"),
+        ("21630", "CSIDL_FLAG_NO_ALIAS|0x00020630"),
+        ("21631", "CSIDL_FLAG_NO_ALIAS|0x00020631"),
+        ("21632", "CSIDL_FLAG_NO_ALIAS|0x00020632"),
+        ("21633", "CSIDL_FLAG_NO_ALIAS|0x00020633"),
+        ("21634", "CSIDL_FLAG_NO_ALIAS|0x00020634"),
+        ("21635", "CSIDL_FLAG_NO_ALIAS|0x00020635"),
+        ("21636", "CSIDL_FLAG_NO_ALIAS|0x00020636"),
+        ("21637", "CSIDL_FLAG_NO_ALIAS|0x00020637"),
+        ("21638", "CSIDL_FLAG_NO_ALIAS|0x00020638"),
+        ("21639", "CSIDL_FLAG_NO_ALIAS|0x00020639"),
+        ("21640", "CSIDL_FLAG_NO_ALIAS|0x00020640"),
+        ("21641", "CSIDL_FLAG_NO_ALIAS|0x00020641"),
+        ("21642", "CSIDL_FLAG_NO_ALIAS|0x00020642"),
+        ("21643", "CSIDL_FLAG_NO_ALIAS|0x00020643"),
+        ("21644", "CSIDL_FLAG_NO_ALIAS|0x00020644"),
+        ("21645", "CSIDL_FLAG_NO_ALIAS|0x00020645"),
+        ("21646", "CSIDL_FLAG_NO_ALIAS|0x00020646"),
+        ("21647", "CSIDL_FLAG_NO_ALIAS|0x00020647"),
+        ("21648", "CSIDL_FLAG_NO_ALIAS|0x00020648"),
+        ("21649", "CSIDL_FLAG_NO_ALIAS|0x00020649"),
+        ("21650", "CSIDL_FLAG_NO_ALIAS|0x00020650"),
+        ("21651", "CSIDL_FLAG_NO_ALIAS|0x00020651"),
+        ("21652", "CSIDL_FLAG_NO_ALIAS|0x00020652"),
+        ("21653", "CSIDL_FLAG_NO_ALIAS|0x00020653"),
+        ("21654", "CSIDL_FLAG_NO_ALIAS|0x00020654"),
+        ("21655", "CSIDL_FLAG_NO_ALIAS|0x00020655"),
+        ("21656", "CSIDL_FLAG_NO_ALIAS|0x00020656"),
+        ("21657", "CSIDL_FLAG_NO_ALIAS|0x00020657"),
+        ("21658", "CSIDL_FLAG_NO_ALIAS|0x00020658"),
+        ("21659", "CSIDL_FLAG_NO_ALIAS|0x00020659"),
+        ("21660", "CSIDL_FLAG_NO_ALIAS|0x00020660"),
+        ("21661", "CSIDL_FLAG_NO_ALIAS|0x00020661"),
+        ("21662", "CSIDL_FLAG_NO_ALIAS|0x00020662"),
+        ("21663", "CSIDL_FLAG_NO_ALIAS|0x00020663"),
+        ("21664", "CSIDL_FLAG_NO_ALIAS|0x00020664"),
+        ("21665", "CSIDL_FLAG_NO_ALIAS|0x00020665"),
+        ("21666", "CSIDL_FLAG_NO_ALIAS|0x00020666"),
+        ("21667", "CSIDL_FLAG_NO_ALIAS|0x00020667"),
+        ("21668", "CSIDL_FLAG_NO_ALIAS|0x00020668"),
+        ("21669", "CSIDL_FLAG_NO_ALIAS|0x00020669"),
+        ("21670", "CSIDL_FLAG_NO_ALIAS|0x00020670"),
+        ("21671", "CSIDL_FLAG_NO_ALIAS|0x00020671"),
+        ("21672", "CSIDL_FLAG_NO_ALIAS|0x00020672"),
+        ("21673", "CSIDL_FLAG_NO_ALIAS|0x00020673"),
+        ("21674", "CSIDL_FLAG_NO_ALIAS|0x00020674"),
+        ("21675", "CSIDL_FLAG_NO_ALIAS|0x00020675"),
+        ("21676", "CSIDL_FLAG_NO_ALIAS|0x00020676"),
+        ("21677", "CSIDL_FLAG_NO_ALIAS|0x00020677"),
+        ("21678", "CSIDL_FLAG_NO_ALIAS|0x00020678"),
+        ("21679", "CSIDL_FLAG_NO_ALIAS|0x00020679"),
+        ("21680", "CSIDL_FLAG_NO_ALIAS|0x00020680"),
+        ("21681", "CSIDL_FLAG_NO_ALIAS|0x00020681"),
+        ("21682", "CSIDL_FLAG_NO_ALIAS|0x00020682"),
+        ("21683", "CSIDL_FLAG_NO_ALIAS|0x00020683"),
+        ("21684", "CSIDL_FLAG_NO_ALIAS|0x00020684"),
+        ("21685", "CSIDL_FLAG_NO_ALIAS|0x00020685"),
+        ("21686", "CSIDL_FLAG_NO_ALIAS|0x00020686"),
+        ("21687", "CSIDL_FLAG_NO_ALIAS|0x00020687"),
+        ("21688", "CSIDL_FLAG_NO_ALIAS|0x00020688"),
+        ("21689", "CSIDL_FLAG_NO_ALIAS|0x00020689"),
+        ("21690", "CSIDL_FLAG_NO_ALIAS|0x00020690"),
+        ("21691", "CSIDL_FLAG_NO_ALIAS|0x00020691"),
+        ("21692", "CSIDL_FLAG_NO_ALIAS|0x00020692"),
+        ("21693", "CSIDL_FLAG_NO_ALIAS|0x00020693"),
+        ("21694", "CSIDL_FLAG_NO_ALIAS|0x00020694"),
+        ("21695", "CSIDL_FLAG_NO_ALIAS|0x00020695"),
+        ("21696", "CSIDL_FLAG_NO_ALIAS|0x00020696"),
+        ("21697", "CSIDL_FLAG_NO_ALIAS|0x00020697"),
+        ("21698", "CSIDL_FLAG_NO_ALIAS|0x00020698"),
+        ("21699", "CSIDL_FLAG_NO_ALIAS|0x00020699"),
+        ("21700", "CSIDL_FLAG_NO_ALIAS|0x00020700"),
+        ("21701", "CSIDL_FLAG_NO_ALIAS|0x00020701"),
+        ("21702", "CSIDL_FLAG_NO_ALIAS|0x00020702"),
+        ("21703", "CSIDL_FLAG_NO_ALIAS|0x00020703"),
+        ("21704", "CSIDL_FLAG_NO_ALIAS|0x00020704"),
+        ("21705", "CSIDL_FLAG_NO_ALIAS|0x00020705"),
+        ("21706", "CSIDL_FLAG_NO_ALIAS|0x00020706"),
+        ("21707", "CSIDL_FLAG_NO_ALIAS|0x00020707"),
+        ("21708", "CSIDL_FLAG_NO_ALIAS|0x00020708"),
+        ("21709", "CSIDL_FLAG_NO_ALIAS|0x00020709"),
+        ("21710", "CSIDL_FLAG_NO_ALIAS|0x00020710"),
+        ("21711", "CSIDL_FLAG_NO_ALIAS|0x00020711"),
+        ("21712", "CSIDL_FLAG_NO_ALIAS|0x00020712"),
+        ("21713", "CSIDL_FLAG_NO_ALIAS|0x00020713"),
+        ("21714", "CSIDL_FLAG_NO_ALIAS|0x00020714"),
+        ("21715", "CSIDL_FLAG_NO_ALIAS|0x00020715"),
+        ("21716", "CSIDL_FLAG_NO_ALIAS|0x00020716"),
+        ("21717", "CSIDL_FLAG_NO_ALIAS|0x00020717"),
+        ("21718", "CSIDL_FLAG_NO_ALIAS|0x00020718"),
+        ("21719", "CSIDL_FLAG_NO_ALIAS|0x00020719"),
+        ("21720", "CSIDL_FLAG_NO_ALIAS|0x00020720"),
+        ("21721", "CSIDL_FLAG_NO_ALIAS|0x00020721"),
+        ("21722", "CSIDL_FLAG_NO_ALIAS|0x00020722"),
+        ("21723", "CSIDL_FLAG_NO_ALIAS|0x00020723"),
+        ("21724", "CSIDL_FLAG_NO_ALIAS|0x00020724"),
+        ("21725", "CSIDL_FLAG_NO_ALIAS|0x00020725"),
+        ("21726", "CSIDL_FLAG_NO_ALIAS|0x00020726"),
+        ("21727", "CSIDL_FLAG_NO_ALIAS|0x00020727"),
+        ("21728", "CSIDL_FLAG_NO_ALIAS|0x00020728"),
+        ("21729", "CSIDL_FLAG_NO_ALIAS|0x00020729"),
+        ("21730", "CSIDL_FLAG_NO_ALIAS|0x00020730"),
+        ("21731", "CSIDL_FLAG_NO_ALIAS|0x00020731"),
+        ("21732", "CSIDL_FLAG_NO_ALIAS|0x00020732"),
+        ("21733", "CSIDL_FLAG_NO_ALIAS|0x00020733"),
+        ("21734", "CSIDL_FLAG_NO_ALIAS|0x00020734"),
+        ("21735", "CSIDL_FLAG_NO_ALIAS|0x00020735"),
+        ("21736", "CSIDL_FLAG_NO_ALIAS|0x00020736"),
+        ("21737", "CSIDL_FLAG_NO_ALIAS|0x00020737"),
+        ("21738", "CSIDL_FLAG_NO_ALIAS|0x00020738"),
+        ("21739", "CSIDL_FLAG_NO_ALIAS|0x00020739"),
+        ("21740", "CSIDL_FLAG_NO_ALIAS|0x00020740"),
+        ("21741", "CSIDL_FLAG_NO_ALIAS|0x00020741"),
+        ("21742", "CSIDL_FLAG_NO_ALIAS|0x00020742"),
+        ("21743", "CSIDL_FLAG_NO_ALIAS|0x00020743"),
+        ("21744", "CSIDL_FLAG_NO_ALIAS|0x00020744"),
+        ("21745", "CSIDL_FLAG_NO_ALIAS|0x00020745"),
+        ("21746", "CSIDL_FLAG_NO_ALIAS|0x00020746"),
+        ("21747", "CSIDL_FLAG_NO_ALIAS|0x00020747"),
+        ("21748", "CSIDL_FLAG_NO_ALIAS|0x00020748"),
+        ("21749", "CSIDL_FLAG_NO_ALIAS|0x00020749"),
+        ("21750", "CSIDL_FLAG_NO_ALIAS|0x00020750"),
+        ("21751", "CSIDL_FLAG_NO_ALIAS|0x00020751"),
+        ("21752", "CSIDL_FLAG_NO_ALIAS|0x00020752"),
+        ("21753", "CSIDL_FLAG_NO_ALIAS|0x00020753"),
+        ("21754", "CSIDL_FLAG_NO_ALIAS|0x00020754"),
+        ("21755", "CSIDL_FLAG_NO_ALIAS|0x00020755"),
+        ("21756", "CSIDL_FLAG_NO_ALIAS|0x00020756"),
+        ("21757", "CSIDL_FLAG_NO_ALIAS|0x00020757"),
+        ("21758", "CSIDL_FLAG_NO_ALIAS|0x00020758"),
+        ("21759", "CSIDL_FLAG_NO_ALIAS|0x00020759"),
+        ("21760", "CSIDL_FLAG_NO_ALIAS|0x00020760"),
+        ("21761", "CSIDL_FLAG_NO_ALIAS|0x00020761"),
+        ("21762", "CSIDL_FLAG_NO_ALIAS|0x00020762"),
+        ("21763", "CSIDL_FLAG_NO_ALIAS|0x00020763"),
+        ("21764", "CSIDL_FLAG_NO_ALIAS|0x00020764"),
+        ("21765", "CSIDL_FLAG_NO_ALIAS|0x00020765"),
+        ("21766", "CSIDL_FLAG_NO_ALIAS|0x00020766"),
+        ("21767", "CSIDL_FLAG_NO_ALIAS|0x00020767"),
+        ("21768", "CSIDL_FLAG_NO_ALIAS|0x00020768"),
+        ("21769", "CSIDL_FLAG_NO_ALIAS|0x00020769"),
+        ("21770", "CSIDL_FLAG_NO_ALIAS|0x00020770"),
+        ("21771", "CSIDL_FLAG_NO_ALIAS|0x00020771"),
+        ("21772", "CSIDL_FLAG_NO_ALIAS|0x00020772"),
+        ("21773", "CSIDL_FLAG_NO_ALIAS|0x00020773"),
+        ("21774", "CSIDL_FLAG_NO_ALIAS|0x00020774"),
+        ("21775", "CSIDL_FLAG_NO_ALIAS|0x00020775"),
+        ("21776", "CSIDL_FLAG_NO_ALIAS|0x00020776"),
+        ("21777", "CSIDL_FLAG_NO_ALIAS|0x00020777"),
+        ("21778", "CSIDL_FLAG_NO_ALIAS|0x00020778"),
+        ("21779", "CSIDL_FLAG_NO_ALIAS|0x00020779"),
+        ("21780", "CSIDL_FLAG_NO_ALIAS|0x00020780"),
+        ("21781", "CSIDL_FLAG_NO_ALIAS|0x00020781"),
+        ("21782", "CSIDL_FLAG_NO_ALIAS|0x00020782"),
+        ("21783", "CSIDL_FLAG_NO_ALIAS|0x00020783"),
+        ("21784", "CSIDL_FLAG_NO_ALIAS|0x00020784"),
+        ("21785", "CSIDL_FLAG_NO_ALIAS|0x00020785"),
+        ("21786", "CSIDL_FLAG_NO_ALIAS|0x00020786"),
+        ("21787", "CSIDL_FLAG_NO_ALIAS|0x00020787"),
+        ("21788", "CSIDL_FLAG_NO_ALIAS|0x00020788"),
+        ("21789", "CSIDL_FLAG_NO_ALIAS|0x00020789"),
+        ("21790", "CSIDL_FLAG_NO_ALIAS|0x00020790"),
+        ("21791", "CSIDL_FLAG_NO_ALIAS|0x00020791"),
+        ("21792", "CSIDL_FLAG_NO_ALIAS|0x00020792"),
+        ("21793", "CSIDL_FLAG_NO_ALIAS|0x00020793"),
+        ("21794", "CSIDL_FLAG_NO_ALIAS|0x00020794"),
+        ("21795", "CSIDL_FLAG_NO_ALIAS|0x00020795"),
+        ("21796", "CSIDL_FLAG_NO_ALIAS|0x00020796"),
+        ("21797", "CSIDL_FLAG_NO_ALIAS|0x00020797"),
+        ("21798", "CSIDL_FLAG_NO_ALIAS|0x00020798"),
+        ("21799", "CSIDL_FLAG_NO_ALIAS|0x00020799"),
+        ("21800", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020000"),
+        ("21801", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020001"),
+        ("21802", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020002"),
+        ("21803", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020003"),
+        ("21804", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020004"),
+        ("21805", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020005"),
+        ("21806", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020006"),
+        ("21807", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020007"),
+        ("21808", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020008"),
+        ("21809", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020009"),
+        ("21810", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020010"),
+        ("21811", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020011"),
+        ("21812", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020012"),
+        ("21813", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020013"),
+        ("21814", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020014"),
+        ("21815", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020015"),
+        ("21816", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020016"),
+        ("21817", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020017"),
+        ("21818", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020018"),
+        ("21819", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020019"),
+        ("21820", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020020"),
+        ("21821", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020021"),
+        ("21822", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020022"),
+        ("21823", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020023"),
+        ("21824", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020024"),
+        ("21825", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020025"),
+        ("21826", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020026"),
+        ("21827", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020027"),
+        ("21828", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020028"),
+        ("21829", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020029"),
+        ("21830", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020030"),
+        ("21831", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020031"),
+        ("21832", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020032"),
+        ("21833", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020033"),
+        ("21834", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020034"),
+        ("21835", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020035"),
+        ("21836", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020036"),
+        ("21837", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020037"),
+        ("21838", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020038"),
+        ("21839", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020039"),
+        ("21840", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020040"),
+        ("21841", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020041"),
+        ("21842", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020042"),
+        ("21843", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020043"),
+        ("21844", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020044"),
+        ("21845", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020045"),
+        ("21846", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020046"),
+        ("21847", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020047"),
+        ("21848", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020048"),
+        ("21849", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020049"),
+        ("21850", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020050"),
+        ("21851", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020051"),
+        ("21852", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020052"),
+        ("21853", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020053"),
+        ("21854", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020054"),
+        ("21855", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020055"),
+        ("21856", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020056"),
+        ("21857", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020057"),
+        ("21858", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020058"),
+        ("21859", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020059"),
+        ("21860", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020060"),
+        ("21861", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020061"),
+        ("21862", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020062"),
+        ("21863", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020063"),
+        ("21864", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020064"),
+        ("21865", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020065"),
+        ("21866", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020066"),
+        ("21867", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020067"),
+        ("21868", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020068"),
+        ("21869", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020069"),
+        ("21870", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020070"),
+        ("21871", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020071"),
+        ("21872", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020072"),
+        ("21873", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020073"),
+        ("21874", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020074"),
+        ("21875", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020075"),
+        ("21876", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020076"),
+        ("21877", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020077"),
+        ("21878", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020078"),
+        ("21879", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020079"),
+        ("21880", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020080"),
+        ("21881", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020081"),
+        ("21882", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020082"),
+        ("21883", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020083"),
+        ("21884", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020084"),
+        ("21885", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020085"),
+        ("21886", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020086"),
+        ("21887", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020087"),
+        ("21888", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020088"),
+        ("21889", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020089"),
+        ("21890", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020090"),
+        ("21891", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020091"),
+        ("21892", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020092"),
+        ("21893", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020093"),
+        ("21894", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020094"),
+        ("21895", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020095"),
+        ("21896", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020096"),
+        ("21897", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020097"),
+        ("21898", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020098"),
+        ("21899", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020099"),
+        ("21900", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020100"),
+        ("21901", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020101"),
+        ("21902", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020102"),
+        ("21903", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020103"),
+        ("21904", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020104"),
+        ("21905", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020105"),
+        ("21906", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020106"),
+        ("21907", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020107"),
+        ("21908", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020108"),
+        ("21909", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020109"),
+        ("21910", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020110"),
+        ("21911", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020111"),
+        ("21912", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020112"),
+        ("21913", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020113"),
+        ("21914", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020114"),
+        ("21915", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020115"),
+        ("21916", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020116"),
+        ("21917", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020117"),
+        ("21918", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020118"),
+        ("21919", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020119"),
+        ("21920", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020120"),
+        ("21921", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020121"),
+        ("21922", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020122"),
+        ("21923", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020123"),
+        ("21924", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020124"),
+        ("21925", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020125"),
+        ("21926", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020126"),
+        ("21927", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020127"),
+        ("21928", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020128"),
+        ("21929", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020129"),
+        ("21930", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020130"),
+        ("21931", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020131"),
+        ("21932", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020132"),
+        ("21933", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020133"),
+        ("21934", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020134"),
+        ("21935", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020135"),
+        ("21936", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020136"),
+        ("21937", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020137"),
+        ("21938", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020138"),
+        ("21939", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020139"),
+        ("21940", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020140"),
+        ("21941", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020141"),
+        ("21942", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020142"),
+        ("21943", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020143"),
+        ("21944", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020144"),
+        ("21945", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020145"),
+        ("21946", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020146"),
+        ("21947", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020147"),
+        ("21948", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020148"),
+        ("21949", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020149"),
+        ("21950", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020150"),
+        ("21951", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020151"),
+        ("21952", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020152"),
+        ("21953", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020153"),
+        ("21954", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020154"),
+        ("21955", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020155"),
+        ("21956", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020156"),
+        ("21957", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020157"),
+        ("21958", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020158"),
+        ("21959", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020159"),
+        ("21960", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020160"),
+        ("21961", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020161"),
+        ("21962", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020162"),
+        ("21963", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020163"),
+        ("21964", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020164"),
+        ("21965", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020165"),
+        ("21966", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020166"),
+        ("21967", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020167"),
+        ("21968", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020168"),
+        ("21969", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020169"),
+        ("21970", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020170"),
+        ("21971", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020171"),
+        ("21972", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020172"),
+        ("21973", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020173"),
+        ("21974", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020174"),
+        ("21975", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020175"),
+        ("21976", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020176"),
+        ("21977", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020177"),
+        ("21978", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020178"),
+        ("21979", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020179"),
+        ("21980", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020180"),
+        ("21981", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020181"),
+        ("21982", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020182"),
+        ("21983", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020183"),
+        ("21984", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020184"),
+        ("21985", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020185"),
+        ("21986", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020186"),
+        ("21987", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020187"),
+        ("21988", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020188"),
+        ("21989", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020189"),
+        ("21990", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020190"),
+        ("21991", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020191"),
+        ("21992", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020192"),
+        ("21993", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020193"),
+        ("21994", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020194"),
+        ("21995", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020195"),
+        ("21996", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020196"),
+        ("21997", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020197"),
+        ("21998", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020198"),
+        ("21999", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00020199"),
+        ("22000", "CSIDL_FLAG_DONT_UNEXPAND|0x00020000"),
+        ("22001", "CSIDL_FLAG_DONT_UNEXPAND|0x00020001"),
+        ("22002", "CSIDL_FLAG_DONT_UNEXPAND|0x00020002"),
+        ("22003", "CSIDL_FLAG_DONT_UNEXPAND|0x00020003"),
+        ("22004", "CSIDL_FLAG_DONT_UNEXPAND|0x00020004"),
+        ("22005", "CSIDL_FLAG_DONT_UNEXPAND|0x00020005"),
+        ("22006", "CSIDL_FLAG_DONT_UNEXPAND|0x00020006"),
+        ("22007", "CSIDL_FLAG_DONT_UNEXPAND|0x00020007"),
+        ("22008", "CSIDL_FLAG_DONT_UNEXPAND|0x00020008"),
+        ("22009", "CSIDL_FLAG_DONT_UNEXPAND|0x00020009"),
+        ("22010", "CSIDL_FLAG_DONT_UNEXPAND|0x00020010"),
+        ("22011", "CSIDL_FLAG_DONT_UNEXPAND|0x00020011"),
+        ("22012", "CSIDL_FLAG_DONT_UNEXPAND|0x00020012"),
+        ("22013", "CSIDL_FLAG_DONT_UNEXPAND|0x00020013"),
+        ("22014", "CSIDL_FLAG_DONT_UNEXPAND|0x00020014"),
+        ("22015", "CSIDL_FLAG_DONT_UNEXPAND|0x00020015"),
+        ("22016", "CSIDL_FLAG_DONT_UNEXPAND|0x00020016"),
+        ("22017", "CSIDL_FLAG_DONT_UNEXPAND|0x00020017"),
+        ("22018", "CSIDL_FLAG_DONT_UNEXPAND|0x00020018"),
+        ("22019", "CSIDL_FLAG_DONT_UNEXPAND|0x00020019"),
+        ("22020", "CSIDL_FLAG_DONT_UNEXPAND|0x00020020"),
+        ("22021", "CSIDL_FLAG_DONT_UNEXPAND|0x00020021"),
+        ("22022", "CSIDL_FLAG_DONT_UNEXPAND|0x00020022"),
+        ("22023", "CSIDL_FLAG_DONT_UNEXPAND|0x00020023"),
+        ("22024", "CSIDL_FLAG_DONT_UNEXPAND|0x00020024"),
+        ("22025", "CSIDL_FLAG_DONT_UNEXPAND|0x00020025"),
+        ("22026", "CSIDL_FLAG_DONT_UNEXPAND|0x00020026"),
+        ("22027", "CSIDL_FLAG_DONT_UNEXPAND|0x00020027"),
+        ("22028", "CSIDL_FLAG_DONT_UNEXPAND|0x00020028"),
+        ("22029", "CSIDL_FLAG_DONT_UNEXPAND|0x00020029"),
+        ("22030", "CSIDL_FLAG_DONT_UNEXPAND|0x00020030"),
+        ("22031", "CSIDL_FLAG_DONT_UNEXPAND|0x00020031"),
+        ("22032", "CSIDL_FLAG_DONT_UNEXPAND|0x00020032"),
+        ("22033", "CSIDL_FLAG_DONT_UNEXPAND|0x00020033"),
+        ("22034", "CSIDL_FLAG_DONT_UNEXPAND|0x00020034"),
+        ("22035", "CSIDL_FLAG_DONT_UNEXPAND|0x00020035"),
+        ("22036", "CSIDL_FLAG_DONT_UNEXPAND|0x00020036"),
+        ("22037", "CSIDL_FLAG_DONT_UNEXPAND|0x00020037"),
+        ("22038", "CSIDL_FLAG_DONT_UNEXPAND|0x00020038"),
+        ("22039", "CSIDL_FLAG_DONT_UNEXPAND|0x00020039"),
+        ("22040", "CSIDL_FLAG_DONT_UNEXPAND|0x00020040"),
+        ("22041", "CSIDL_FLAG_DONT_UNEXPAND|0x00020041"),
+        ("22042", "CSIDL_FLAG_DONT_UNEXPAND|0x00020042"),
+        ("22043", "CSIDL_FLAG_DONT_UNEXPAND|0x00020043"),
+        ("22044", "CSIDL_FLAG_DONT_UNEXPAND|0x00020044"),
+        ("22045", "CSIDL_FLAG_DONT_UNEXPAND|0x00020045"),
+        ("22046", "CSIDL_FLAG_DONT_UNEXPAND|0x00020046"),
+        ("22047", "CSIDL_FLAG_DONT_UNEXPAND|0x00020047"),
+        ("22048", "CSIDL_FLAG_DONT_UNEXPAND|0x00020048"),
+        ("22049", "CSIDL_FLAG_DONT_UNEXPAND|0x00020049"),
+        ("22050", "CSIDL_FLAG_DONT_UNEXPAND|0x00020050"),
+        ("22051", "CSIDL_FLAG_DONT_UNEXPAND|0x00020051"),
+        ("22052", "CSIDL_FLAG_DONT_UNEXPAND|0x00020052"),
+        ("22053", "CSIDL_FLAG_DONT_UNEXPAND|0x00020053"),
+        ("22054", "CSIDL_FLAG_DONT_UNEXPAND|0x00020054"),
+        ("22055", "CSIDL_FLAG_DONT_UNEXPAND|0x00020055"),
+        ("22056", "CSIDL_FLAG_DONT_UNEXPAND|0x00020056"),
+        ("22057", "CSIDL_FLAG_DONT_UNEXPAND|0x00020057"),
+        ("22058", "CSIDL_FLAG_DONT_UNEXPAND|0x00020058"),
+        ("22059", "CSIDL_FLAG_DONT_UNEXPAND|0x00020059"),
+        ("22060", "CSIDL_FLAG_DONT_UNEXPAND|0x00020060"),
+        ("22061", "CSIDL_FLAG_DONT_UNEXPAND|0x00020061"),
+        ("22062", "CSIDL_FLAG_DONT_UNEXPAND|0x00020062"),
+        ("22063", "CSIDL_FLAG_DONT_UNEXPAND|0x00020063"),
+        ("22064", "CSIDL_FLAG_DONT_UNEXPAND|0x00020064"),
+        ("22065", "CSIDL_FLAG_DONT_UNEXPAND|0x00020065"),
+        ("22066", "CSIDL_FLAG_DONT_UNEXPAND|0x00020066"),
+        ("22067", "CSIDL_FLAG_DONT_UNEXPAND|0x00020067"),
+        ("22068", "CSIDL_FLAG_DONT_UNEXPAND|0x00020068"),
+        ("22069", "CSIDL_FLAG_DONT_UNEXPAND|0x00020069"),
+        ("22070", "CSIDL_FLAG_DONT_UNEXPAND|0x00020070"),
+        ("22071", "CSIDL_FLAG_DONT_UNEXPAND|0x00020071"),
+        ("22072", "CSIDL_FLAG_DONT_UNEXPAND|0x00020072"),
+        ("22073", "CSIDL_FLAG_DONT_UNEXPAND|0x00020073"),
+        ("22074", "CSIDL_FLAG_DONT_UNEXPAND|0x00020074"),
+        ("22075", "CSIDL_FLAG_DONT_UNEXPAND|0x00020075"),
+        ("22076", "CSIDL_FLAG_DONT_UNEXPAND|0x00020076"),
+        ("22077", "CSIDL_FLAG_DONT_UNEXPAND|0x00020077"),
+        ("22078", "CSIDL_FLAG_DONT_UNEXPAND|0x00020078"),
+        ("22079", "CSIDL_FLAG_DONT_UNEXPAND|0x00020079"),
+        ("22080", "CSIDL_FLAG_DONT_UNEXPAND|0x00020080"),
+        ("22081", "CSIDL_FLAG_DONT_UNEXPAND|0x00020081"),
+        ("22082", "CSIDL_FLAG_DONT_UNEXPAND|0x00020082"),
+        ("22083", "CSIDL_FLAG_DONT_UNEXPAND|0x00020083"),
+        ("22084", "CSIDL_FLAG_DONT_UNEXPAND|0x00020084"),
+        ("22085", "CSIDL_FLAG_DONT_UNEXPAND|0x00020085"),
+        ("22086", "CSIDL_FLAG_DONT_UNEXPAND|0x00020086"),
+        ("22087", "CSIDL_FLAG_DONT_UNEXPAND|0x00020087"),
+        ("22088", "CSIDL_FLAG_DONT_UNEXPAND|0x00020088"),
+        ("22089", "CSIDL_FLAG_DONT_UNEXPAND|0x00020089"),
+        ("22090", "CSIDL_FLAG_DONT_UNEXPAND|0x00020090"),
+        ("22091", "CSIDL_FLAG_DONT_UNEXPAND|0x00020091"),
+        ("22092", "CSIDL_FLAG_DONT_UNEXPAND|0x00020092"),
+        ("22093", "CSIDL_FLAG_DONT_UNEXPAND|0x00020093"),
+        ("22094", "CSIDL_FLAG_DONT_UNEXPAND|0x00020094"),
+        ("22095", "CSIDL_FLAG_DONT_UNEXPAND|0x00020095"),
+        ("22096", "CSIDL_FLAG_DONT_UNEXPAND|0x00020096"),
+        ("22097", "CSIDL_FLAG_DONT_UNEXPAND|0x00020097"),
+        ("22098", "CSIDL_FLAG_DONT_UNEXPAND|0x00020098"),
+        ("22099", "CSIDL_FLAG_DONT_UNEXPAND|0x00020099"),
+        ("22100", "CSIDL_FLAG_DONT_UNEXPAND|0x00020100"),
+        ("22101", "CSIDL_FLAG_DONT_UNEXPAND|0x00020101"),
+        ("22102", "CSIDL_FLAG_DONT_UNEXPAND|0x00020102"),
+        ("22103", "CSIDL_FLAG_DONT_UNEXPAND|0x00020103"),
+        ("22104", "CSIDL_FLAG_DONT_UNEXPAND|0x00020104"),
+        ("22105", "CSIDL_FLAG_DONT_UNEXPAND|0x00020105"),
+        ("22106", "CSIDL_FLAG_DONT_UNEXPAND|0x00020106"),
+        ("22107", "CSIDL_FLAG_DONT_UNEXPAND|0x00020107"),
+        ("22108", "CSIDL_FLAG_DONT_UNEXPAND|0x00020108"),
+        ("22109", "CSIDL_FLAG_DONT_UNEXPAND|0x00020109"),
+        ("22110", "CSIDL_FLAG_DONT_UNEXPAND|0x00020110"),
+        ("22111", "CSIDL_FLAG_DONT_UNEXPAND|0x00020111"),
+        ("22112", "CSIDL_FLAG_DONT_UNEXPAND|0x00020112"),
+        ("22113", "CSIDL_FLAG_DONT_UNEXPAND|0x00020113"),
+        ("22114", "CSIDL_FLAG_DONT_UNEXPAND|0x00020114"),
+        ("22115", "CSIDL_FLAG_DONT_UNEXPAND|0x00020115"),
+        ("22116", "CSIDL_FLAG_DONT_UNEXPAND|0x00020116"),
+        ("22117", "CSIDL_FLAG_DONT_UNEXPAND|0x00020117"),
+        ("22118", "CSIDL_FLAG_DONT_UNEXPAND|0x00020118"),
+        ("22119", "CSIDL_FLAG_DONT_UNEXPAND|0x00020119"),
+        ("22120", "CSIDL_FLAG_DONT_UNEXPAND|0x00020120"),
+        ("22121", "CSIDL_FLAG_DONT_UNEXPAND|0x00020121"),
+        ("22122", "CSIDL_FLAG_DONT_UNEXPAND|0x00020122"),
+        ("22123", "CSIDL_FLAG_DONT_UNEXPAND|0x00020123"),
+        ("22124", "CSIDL_FLAG_DONT_UNEXPAND|0x00020124"),
+        ("22125", "CSIDL_FLAG_DONT_UNEXPAND|0x00020125"),
+        ("22126", "CSIDL_FLAG_DONT_UNEXPAND|0x00020126"),
+        ("22127", "CSIDL_FLAG_DONT_UNEXPAND|0x00020127"),
+        ("22128", "CSIDL_FLAG_DONT_UNEXPAND|0x00020128"),
+        ("22129", "CSIDL_FLAG_DONT_UNEXPAND|0x00020129"),
+        ("22130", "CSIDL_FLAG_DONT_UNEXPAND|0x00020130"),
+        ("22131", "CSIDL_FLAG_DONT_UNEXPAND|0x00020131"),
+        ("22132", "CSIDL_FLAG_DONT_UNEXPAND|0x00020132"),
+        ("22133", "CSIDL_FLAG_DONT_UNEXPAND|0x00020133"),
+        ("22134", "CSIDL_FLAG_DONT_UNEXPAND|0x00020134"),
+        ("22135", "CSIDL_FLAG_DONT_UNEXPAND|0x00020135"),
+        ("22136", "CSIDL_FLAG_DONT_UNEXPAND|0x00020136"),
+        ("22137", "CSIDL_FLAG_DONT_UNEXPAND|0x00020137"),
+        ("22138", "CSIDL_FLAG_DONT_UNEXPAND|0x00020138"),
+        ("22139", "CSIDL_FLAG_DONT_UNEXPAND|0x00020139"),
+        ("22140", "CSIDL_FLAG_DONT_UNEXPAND|0x00020140"),
+        ("22141", "CSIDL_FLAG_DONT_UNEXPAND|0x00020141"),
+        ("22142", "CSIDL_FLAG_DONT_UNEXPAND|0x00020142"),
+        ("22143", "CSIDL_FLAG_DONT_UNEXPAND|0x00020143"),
+        ("22144", "CSIDL_FLAG_DONT_UNEXPAND|0x00020144"),
+        ("22145", "CSIDL_FLAG_DONT_UNEXPAND|0x00020145"),
+        ("22146", "CSIDL_FLAG_DONT_UNEXPAND|0x00020146"),
+        ("22147", "CSIDL_FLAG_DONT_UNEXPAND|0x00020147"),
+        ("22148", "CSIDL_FLAG_DONT_UNEXPAND|0x00020148"),
+        ("22149", "CSIDL_FLAG_DONT_UNEXPAND|0x00020149"),
+        ("22150", "CSIDL_FLAG_DONT_UNEXPAND|0x00020150"),
+        ("22151", "CSIDL_FLAG_DONT_UNEXPAND|0x00020151"),
+        ("22152", "CSIDL_FLAG_DONT_UNEXPAND|0x00020152"),
+        ("22153", "CSIDL_FLAG_DONT_UNEXPAND|0x00020153"),
+        ("22154", "CSIDL_FLAG_DONT_UNEXPAND|0x00020154"),
+        ("22155", "CSIDL_FLAG_DONT_UNEXPAND|0x00020155"),
+        ("22156", "CSIDL_FLAG_DONT_UNEXPAND|0x00020156"),
+        ("22157", "CSIDL_FLAG_DONT_UNEXPAND|0x00020157"),
+        ("22158", "CSIDL_FLAG_DONT_UNEXPAND|0x00020158"),
+        ("22159", "CSIDL_FLAG_DONT_UNEXPAND|0x00020159"),
+        ("22160", "CSIDL_FLAG_DONT_UNEXPAND|0x00020160"),
+        ("22161", "CSIDL_FLAG_DONT_UNEXPAND|0x00020161"),
+        ("22162", "CSIDL_FLAG_DONT_UNEXPAND|0x00020162"),
+        ("22163", "CSIDL_FLAG_DONT_UNEXPAND|0x00020163"),
+        ("22164", "CSIDL_FLAG_DONT_UNEXPAND|0x00020164"),
+        ("22165", "CSIDL_FLAG_DONT_UNEXPAND|0x00020165"),
+        ("22166", "CSIDL_FLAG_DONT_UNEXPAND|0x00020166"),
+        ("22167", "CSIDL_FLAG_DONT_UNEXPAND|0x00020167"),
+        ("22168", "CSIDL_FLAG_DONT_UNEXPAND|0x00020168"),
+        ("22169", "CSIDL_FLAG_DONT_UNEXPAND|0x00020169"),
+        ("22170", "CSIDL_FLAG_DONT_UNEXPAND|0x00020170"),
+        ("22171", "CSIDL_FLAG_DONT_UNEXPAND|0x00020171"),
+        ("22172", "CSIDL_FLAG_DONT_UNEXPAND|0x00020172"),
+        ("22173", "CSIDL_FLAG_DONT_UNEXPAND|0x00020173"),
+        ("22174", "CSIDL_FLAG_DONT_UNEXPAND|0x00020174"),
+        ("22175", "CSIDL_FLAG_DONT_UNEXPAND|0x00020175"),
+        ("22176", "CSIDL_FLAG_DONT_UNEXPAND|0x00020176"),
+        ("22177", "CSIDL_FLAG_DONT_UNEXPAND|0x00020177"),
+        ("22178", "CSIDL_FLAG_DONT_UNEXPAND|0x00020178"),
+        ("22179", "CSIDL_FLAG_DONT_UNEXPAND|0x00020179"),
+        ("22180", "CSIDL_FLAG_DONT_UNEXPAND|0x00020180"),
+        ("22181", "CSIDL_FLAG_DONT_UNEXPAND|0x00020181"),
+        ("22182", "CSIDL_FLAG_DONT_UNEXPAND|0x00020182"),
+        ("22183", "CSIDL_FLAG_DONT_UNEXPAND|0x00020183"),
+        ("22184", "CSIDL_FLAG_DONT_UNEXPAND|0x00020184"),
+        ("22185", "CSIDL_FLAG_DONT_UNEXPAND|0x00020185"),
+        ("22186", "CSIDL_FLAG_DONT_UNEXPAND|0x00020186"),
+        ("22187", "CSIDL_FLAG_DONT_UNEXPAND|0x00020187"),
+        ("22188", "CSIDL_FLAG_DONT_UNEXPAND|0x00020188"),
+        ("22189", "CSIDL_FLAG_DONT_UNEXPAND|0x00020189"),
+        ("22190", "CSIDL_FLAG_DONT_UNEXPAND|0x00020190"),
+        ("22191", "CSIDL_FLAG_DONT_UNEXPAND|0x00020191"),
+        ("22192", "CSIDL_FLAG_DONT_UNEXPAND|0x00020192"),
+        ("22193", "CSIDL_FLAG_DONT_UNEXPAND|0x00020193"),
+        ("22194", "CSIDL_FLAG_DONT_UNEXPAND|0x00020194"),
+        ("22195", "CSIDL_FLAG_DONT_UNEXPAND|0x00020195"),
+        ("22196", "CSIDL_FLAG_DONT_UNEXPAND|0x00020196"),
+        ("22197", "CSIDL_FLAG_DONT_UNEXPAND|0x00020197"),
+        ("22198", "CSIDL_FLAG_DONT_UNEXPAND|0x00020198"),
+        ("22199", "CSIDL_FLAG_DONT_UNEXPAND|0x00020199"),
+        ("22200", "CSIDL_FLAG_DONT_UNEXPAND|0x00020200"),
+        ("22201", "CSIDL_FLAG_DONT_UNEXPAND|0x00020201"),
+        ("22202", "CSIDL_FLAG_DONT_UNEXPAND|0x00020202"),
+        ("22203", "CSIDL_FLAG_DONT_UNEXPAND|0x00020203"),
+        ("22204", "CSIDL_FLAG_DONT_UNEXPAND|0x00020204"),
+        ("22205", "CSIDL_FLAG_DONT_UNEXPAND|0x00020205"),
+        ("22206", "CSIDL_FLAG_DONT_UNEXPAND|0x00020206"),
+        ("22207", "CSIDL_FLAG_DONT_UNEXPAND|0x00020207"),
+        ("22208", "CSIDL_FLAG_DONT_UNEXPAND|0x00020208"),
+        ("22209", "CSIDL_FLAG_DONT_UNEXPAND|0x00020209"),
+        ("22210", "CSIDL_FLAG_DONT_UNEXPAND|0x00020210"),
+        ("22211", "CSIDL_FLAG_DONT_UNEXPAND|0x00020211"),
+        ("22212", "CSIDL_FLAG_DONT_UNEXPAND|0x00020212"),
+        ("22213", "CSIDL_FLAG_DONT_UNEXPAND|0x00020213"),
+        ("22214", "CSIDL_FLAG_DONT_UNEXPAND|0x00020214"),
+        ("22215", "CSIDL_FLAG_DONT_UNEXPAND|0x00020215"),
+        ("22216", "CSIDL_FLAG_DONT_UNEXPAND|0x00020216"),
+        ("22217", "CSIDL_FLAG_DONT_UNEXPAND|0x00020217"),
+        ("22218", "CSIDL_FLAG_DONT_UNEXPAND|0x00020218"),
+        ("22219", "CSIDL_FLAG_DONT_UNEXPAND|0x00020219"),
+        ("22220", "CSIDL_FLAG_DONT_UNEXPAND|0x00020220"),
+        ("22221", "CSIDL_FLAG_DONT_UNEXPAND|0x00020221"),
+        ("22222", "CSIDL_FLAG_DONT_UNEXPAND|0x00020222"),
+        ("22223", "CSIDL_FLAG_DONT_UNEXPAND|0x00020223"),
+        ("22224", "CSIDL_FLAG_DONT_UNEXPAND|0x00020224"),
+        ("22225", "CSIDL_FLAG_DONT_UNEXPAND|0x00020225"),
+        ("22226", "CSIDL_FLAG_DONT_UNEXPAND|0x00020226"),
+        ("22227", "CSIDL_FLAG_DONT_UNEXPAND|0x00020227"),
+        ("22228", "CSIDL_FLAG_DONT_UNEXPAND|0x00020228"),
+        ("22229", "CSIDL_FLAG_DONT_UNEXPAND|0x00020229"),
+        ("22230", "CSIDL_FLAG_DONT_UNEXPAND|0x00020230"),
+        ("22231", "CSIDL_FLAG_DONT_UNEXPAND|0x00020231"),
+        ("22232", "CSIDL_FLAG_DONT_UNEXPAND|0x00020232"),
+        ("22233", "CSIDL_FLAG_DONT_UNEXPAND|0x00020233"),
+        ("22234", "CSIDL_FLAG_DONT_UNEXPAND|0x00020234"),
+        ("22235", "CSIDL_FLAG_DONT_UNEXPAND|0x00020235"),
+        ("22236", "CSIDL_FLAG_DONT_UNEXPAND|0x00020236"),
+        ("22237", "CSIDL_FLAG_DONT_UNEXPAND|0x00020237"),
+        ("22238", "CSIDL_FLAG_DONT_UNEXPAND|0x00020238"),
+        ("22239", "CSIDL_FLAG_DONT_UNEXPAND|0x00020239"),
+        ("22240", "CSIDL_FLAG_DONT_UNEXPAND|0x00020240"),
+        ("22241", "CSIDL_FLAG_DONT_UNEXPAND|0x00020241"),
+        ("22242", "CSIDL_FLAG_DONT_UNEXPAND|0x00020242"),
+        ("22243", "CSIDL_FLAG_DONT_UNEXPAND|0x00020243"),
+        ("22244", "CSIDL_FLAG_DONT_UNEXPAND|0x00020244"),
+        ("22245", "CSIDL_FLAG_DONT_UNEXPAND|0x00020245"),
+        ("22246", "CSIDL_FLAG_DONT_UNEXPAND|0x00020246"),
+        ("22247", "CSIDL_FLAG_DONT_UNEXPAND|0x00020247"),
+        ("22248", "CSIDL_FLAG_DONT_UNEXPAND|0x00020248"),
+        ("22249", "CSIDL_FLAG_DONT_UNEXPAND|0x00020249"),
+        ("22250", "CSIDL_FLAG_DONT_UNEXPAND|0x00020250"),
+        ("22251", "CSIDL_FLAG_DONT_UNEXPAND|0x00020251"),
+        ("22252", "CSIDL_FLAG_DONT_UNEXPAND|0x00020252"),
+        ("22253", "CSIDL_FLAG_DONT_UNEXPAND|0x00020253"),
+        ("22254", "CSIDL_FLAG_DONT_UNEXPAND|0x00020254"),
+        ("22255", "CSIDL_FLAG_DONT_UNEXPAND|0x00020255"),
+        ("22256", "CSIDL_FLAG_DONT_UNEXPAND|0x00020256"),
+        ("22257", "CSIDL_FLAG_DONT_UNEXPAND|0x00020257"),
+        ("22258", "CSIDL_FLAG_DONT_UNEXPAND|0x00020258"),
+        ("22259", "CSIDL_FLAG_DONT_UNEXPAND|0x00020259"),
+        ("22260", "CSIDL_FLAG_DONT_UNEXPAND|0x00020260"),
+        ("22261", "CSIDL_FLAG_DONT_UNEXPAND|0x00020261"),
+        ("22262", "CSIDL_FLAG_DONT_UNEXPAND|0x00020262"),
+        ("22263", "CSIDL_FLAG_DONT_UNEXPAND|0x00020263"),
+        ("22264", "CSIDL_FLAG_DONT_UNEXPAND|0x00020264"),
+        ("22265", "CSIDL_FLAG_DONT_UNEXPAND|0x00020265"),
+        ("22266", "CSIDL_FLAG_DONT_UNEXPAND|0x00020266"),
+        ("22267", "CSIDL_FLAG_DONT_UNEXPAND|0x00020267"),
+        ("22268", "CSIDL_FLAG_DONT_UNEXPAND|0x00020268"),
+        ("22269", "CSIDL_FLAG_DONT_UNEXPAND|0x00020269"),
+        ("22270", "CSIDL_FLAG_DONT_UNEXPAND|0x00020270"),
+        ("22271", "CSIDL_FLAG_DONT_UNEXPAND|0x00020271"),
+        ("22272", "CSIDL_FLAG_DONT_UNEXPAND|0x00020272"),
+        ("22273", "CSIDL_FLAG_DONT_UNEXPAND|0x00020273"),
+        ("22274", "CSIDL_FLAG_DONT_UNEXPAND|0x00020274"),
+        ("22275", "CSIDL_FLAG_DONT_UNEXPAND|0x00020275"),
+        ("22276", "CSIDL_FLAG_DONT_UNEXPAND|0x00020276"),
+        ("22277", "CSIDL_FLAG_DONT_UNEXPAND|0x00020277"),
+        ("22278", "CSIDL_FLAG_DONT_UNEXPAND|0x00020278"),
+        ("22279", "CSIDL_FLAG_DONT_UNEXPAND|0x00020279"),
+        ("22280", "CSIDL_FLAG_DONT_UNEXPAND|0x00020280"),
+        ("22281", "CSIDL_FLAG_DONT_UNEXPAND|0x00020281"),
+        ("22282", "CSIDL_FLAG_DONT_UNEXPAND|0x00020282"),
+        ("22283", "CSIDL_FLAG_DONT_UNEXPAND|0x00020283"),
+        ("22284", "CSIDL_FLAG_DONT_UNEXPAND|0x00020284"),
+        ("22285", "CSIDL_FLAG_DONT_UNEXPAND|0x00020285"),
+        ("22286", "CSIDL_FLAG_DONT_UNEXPAND|0x00020286"),
+        ("22287", "CSIDL_FLAG_DONT_UNEXPAND|0x00020287"),
+        ("22288", "CSIDL_FLAG_DONT_UNEXPAND|0x00020288"),
+        ("22289", "CSIDL_FLAG_DONT_UNEXPAND|0x00020289"),
+        ("22290", "CSIDL_FLAG_DONT_UNEXPAND|0x00020290"),
+        ("22291", "CSIDL_FLAG_DONT_UNEXPAND|0x00020291"),
+        ("22292", "CSIDL_FLAG_DONT_UNEXPAND|0x00020292"),
+        ("22293", "CSIDL_FLAG_DONT_UNEXPAND|0x00020293"),
+        ("22294", "CSIDL_FLAG_DONT_UNEXPAND|0x00020294"),
+        ("22295", "CSIDL_FLAG_DONT_UNEXPAND|0x00020295"),
+        ("22296", "CSIDL_FLAG_DONT_UNEXPAND|0x00020296"),
+        ("22297", "CSIDL_FLAG_DONT_UNEXPAND|0x00020297"),
+        ("22298", "CSIDL_FLAG_DONT_UNEXPAND|0x00020298"),
+        ("22299", "CSIDL_FLAG_DONT_UNEXPAND|0x00020299"),
+        ("22300", "CSIDL_FLAG_DONT_UNEXPAND|0x00020300"),
+        ("22301", "CSIDL_FLAG_DONT_UNEXPAND|0x00020301"),
+        ("22302", "CSIDL_FLAG_DONT_UNEXPAND|0x00020302"),
+        ("22303", "CSIDL_FLAG_DONT_UNEXPAND|0x00020303"),
+        ("22304", "CSIDL_FLAG_DONT_UNEXPAND|0x00020304"),
+        ("22305", "CSIDL_FLAG_DONT_UNEXPAND|0x00020305"),
+        ("22306", "CSIDL_FLAG_DONT_UNEXPAND|0x00020306"),
+        ("22307", "CSIDL_FLAG_DONT_UNEXPAND|0x00020307"),
+        ("22308", "CSIDL_FLAG_DONT_UNEXPAND|0x00020308"),
+        ("22309", "CSIDL_FLAG_DONT_UNEXPAND|0x00020309"),
+        ("22310", "CSIDL_FLAG_DONT_UNEXPAND|0x00020310"),
+        ("22311", "CSIDL_FLAG_DONT_UNEXPAND|0x00020311"),
+        ("22312", "CSIDL_FLAG_DONT_UNEXPAND|0x00020312"),
+        ("22313", "CSIDL_FLAG_DONT_UNEXPAND|0x00020313"),
+        ("22314", "CSIDL_FLAG_DONT_UNEXPAND|0x00020314"),
+        ("22315", "CSIDL_FLAG_DONT_UNEXPAND|0x00020315"),
+        ("22316", "CSIDL_FLAG_DONT_UNEXPAND|0x00020316"),
+        ("22317", "CSIDL_FLAG_DONT_UNEXPAND|0x00020317"),
+        ("22318", "CSIDL_FLAG_DONT_UNEXPAND|0x00020318"),
+        ("22319", "CSIDL_FLAG_DONT_UNEXPAND|0x00020319"),
+        ("22320", "CSIDL_FLAG_DONT_UNEXPAND|0x00020320"),
+        ("22321", "CSIDL_FLAG_DONT_UNEXPAND|0x00020321"),
+        ("22322", "CSIDL_FLAG_DONT_UNEXPAND|0x00020322"),
+        ("22323", "CSIDL_FLAG_DONT_UNEXPAND|0x00020323"),
+        ("22324", "CSIDL_FLAG_DONT_UNEXPAND|0x00020324"),
+        ("22325", "CSIDL_FLAG_DONT_UNEXPAND|0x00020325"),
+        ("22326", "CSIDL_FLAG_DONT_UNEXPAND|0x00020326"),
+        ("22327", "CSIDL_FLAG_DONT_UNEXPAND|0x00020327"),
+        ("22328", "CSIDL_FLAG_DONT_UNEXPAND|0x00020328"),
+        ("22329", "CSIDL_FLAG_DONT_UNEXPAND|0x00020329"),
+        ("22330", "CSIDL_FLAG_DONT_UNEXPAND|0x00020330"),
+        ("22331", "CSIDL_FLAG_DONT_UNEXPAND|0x00020331"),
+        ("22332", "CSIDL_FLAG_DONT_UNEXPAND|0x00020332"),
+        ("22333", "CSIDL_FLAG_DONT_UNEXPAND|0x00020333"),
+        ("22334", "CSIDL_FLAG_DONT_UNEXPAND|0x00020334"),
+        ("22335", "CSIDL_FLAG_DONT_UNEXPAND|0x00020335"),
+        ("22336", "CSIDL_FLAG_DONT_UNEXPAND|0x00020336"),
+        ("22337", "CSIDL_FLAG_DONT_UNEXPAND|0x00020337"),
+        ("22338", "CSIDL_FLAG_DONT_UNEXPAND|0x00020338"),
+        ("22339", "CSIDL_FLAG_DONT_UNEXPAND|0x00020339"),
+        ("22340", "CSIDL_FLAG_DONT_UNEXPAND|0x00020340"),
+        ("22341", "CSIDL_FLAG_DONT_UNEXPAND|0x00020341"),
+        ("22342", "CSIDL_FLAG_DONT_UNEXPAND|0x00020342"),
+        ("22343", "CSIDL_FLAG_DONT_UNEXPAND|0x00020343"),
+        ("22344", "CSIDL_FLAG_DONT_UNEXPAND|0x00020344"),
+        ("22345", "CSIDL_FLAG_DONT_UNEXPAND|0x00020345"),
+        ("22346", "CSIDL_FLAG_DONT_UNEXPAND|0x00020346"),
+        ("22347", "CSIDL_FLAG_DONT_UNEXPAND|0x00020347"),
+        ("22348", "CSIDL_FLAG_DONT_UNEXPAND|0x00020348"),
+        ("22349", "CSIDL_FLAG_DONT_UNEXPAND|0x00020349"),
+        ("22350", "CSIDL_FLAG_DONT_UNEXPAND|0x00020350"),
+        ("22351", "CSIDL_FLAG_DONT_UNEXPAND|0x00020351"),
+        ("22352", "CSIDL_FLAG_DONT_UNEXPAND|0x00020352"),
+        ("22353", "CSIDL_FLAG_DONT_UNEXPAND|0x00020353"),
+        ("22354", "CSIDL_FLAG_DONT_UNEXPAND|0x00020354"),
+        ("22355", "CSIDL_FLAG_DONT_UNEXPAND|0x00020355"),
+        ("22356", "CSIDL_FLAG_DONT_UNEXPAND|0x00020356"),
+        ("22357", "CSIDL_FLAG_DONT_UNEXPAND|0x00020357"),
+        ("22358", "CSIDL_FLAG_DONT_UNEXPAND|0x00020358"),
+        ("22359", "CSIDL_FLAG_DONT_UNEXPAND|0x00020359"),
+        ("22360", "CSIDL_FLAG_DONT_UNEXPAND|0x00020360"),
+        ("22361", "CSIDL_FLAG_DONT_UNEXPAND|0x00020361"),
+        ("22362", "CSIDL_FLAG_DONT_UNEXPAND|0x00020362"),
+        ("22363", "CSIDL_FLAG_DONT_UNEXPAND|0x00020363"),
+        ("22364", "CSIDL_FLAG_DONT_UNEXPAND|0x00020364"),
+        ("22365", "CSIDL_FLAG_DONT_UNEXPAND|0x00020365"),
+        ("22366", "CSIDL_FLAG_DONT_UNEXPAND|0x00020366"),
+        ("22367", "CSIDL_FLAG_DONT_UNEXPAND|0x00020367"),
+        ("22368", "CSIDL_FLAG_DONT_UNEXPAND|0x00020368"),
+        ("22369", "CSIDL_FLAG_DONT_UNEXPAND|0x00020369"),
+        ("22370", "CSIDL_FLAG_DONT_UNEXPAND|0x00020370"),
+        ("22371", "CSIDL_FLAG_DONT_UNEXPAND|0x00020371"),
+        ("22372", "CSIDL_FLAG_DONT_UNEXPAND|0x00020372"),
+        ("22373", "CSIDL_FLAG_DONT_UNEXPAND|0x00020373"),
+        ("22374", "CSIDL_FLAG_DONT_UNEXPAND|0x00020374"),
+        ("22375", "CSIDL_FLAG_DONT_UNEXPAND|0x00020375"),
+        ("22376", "CSIDL_FLAG_DONT_UNEXPAND|0x00020376"),
+        ("22377", "CSIDL_FLAG_DONT_UNEXPAND|0x00020377"),
+        ("22378", "CSIDL_FLAG_DONT_UNEXPAND|0x00020378"),
+        ("22379", "CSIDL_FLAG_DONT_UNEXPAND|0x00020379"),
+        ("22380", "CSIDL_FLAG_DONT_UNEXPAND|0x00020380"),
+        ("22381", "CSIDL_FLAG_DONT_UNEXPAND|0x00020381"),
+        ("22382", "CSIDL_FLAG_DONT_UNEXPAND|0x00020382"),
+        ("22383", "CSIDL_FLAG_DONT_UNEXPAND|0x00020383"),
+        ("22384", "CSIDL_FLAG_DONT_UNEXPAND|0x00020384"),
+        ("22385", "CSIDL_FLAG_DONT_UNEXPAND|0x00020385"),
+        ("22386", "CSIDL_FLAG_DONT_UNEXPAND|0x00020386"),
+        ("22387", "CSIDL_FLAG_DONT_UNEXPAND|0x00020387"),
+        ("22388", "CSIDL_FLAG_DONT_UNEXPAND|0x00020388"),
+        ("22389", "CSIDL_FLAG_DONT_UNEXPAND|0x00020389"),
+        ("22390", "CSIDL_FLAG_DONT_UNEXPAND|0x00020390"),
+        ("22391", "CSIDL_FLAG_DONT_UNEXPAND|0x00020391"),
+        ("22392", "CSIDL_FLAG_DONT_UNEXPAND|0x00020392"),
+        ("22393", "CSIDL_FLAG_DONT_UNEXPAND|0x00020393"),
+        ("22394", "CSIDL_FLAG_DONT_UNEXPAND|0x00020394"),
+        ("22395", "CSIDL_FLAG_DONT_UNEXPAND|0x00020395"),
+        ("22396", "CSIDL_FLAG_DONT_UNEXPAND|0x00020396"),
+        ("22397", "CSIDL_FLAG_DONT_UNEXPAND|0x00020397"),
+        ("22398", "CSIDL_FLAG_DONT_UNEXPAND|0x00020398"),
+        ("22399", "CSIDL_FLAG_DONT_UNEXPAND|0x00020399"),
+        ("22400", "CSIDL_FLAG_DONT_UNEXPAND|0x00020400"),
+        ("22401", "CSIDL_FLAG_DONT_UNEXPAND|0x00020401"),
+        ("22402", "CSIDL_FLAG_DONT_UNEXPAND|0x00020402"),
+        ("22403", "CSIDL_FLAG_DONT_UNEXPAND|0x00020403"),
+        ("22404", "CSIDL_FLAG_DONT_UNEXPAND|0x00020404"),
+        ("22405", "CSIDL_FLAG_DONT_UNEXPAND|0x00020405"),
+        ("22406", "CSIDL_FLAG_DONT_UNEXPAND|0x00020406"),
+        ("22407", "CSIDL_FLAG_DONT_UNEXPAND|0x00020407"),
+        ("22408", "CSIDL_FLAG_DONT_UNEXPAND|0x00020408"),
+        ("22409", "CSIDL_FLAG_DONT_UNEXPAND|0x00020409"),
+        ("22410", "CSIDL_FLAG_DONT_UNEXPAND|0x00020410"),
+        ("22411", "CSIDL_FLAG_DONT_UNEXPAND|0x00020411"),
+        ("22412", "CSIDL_FLAG_DONT_UNEXPAND|0x00020412"),
+        ("22413", "CSIDL_FLAG_DONT_UNEXPAND|0x00020413"),
+        ("22414", "CSIDL_FLAG_DONT_UNEXPAND|0x00020414"),
+        ("22415", "CSIDL_FLAG_DONT_UNEXPAND|0x00020415"),
+        ("22416", "CSIDL_FLAG_DONT_UNEXPAND|0x00020416"),
+        ("22417", "CSIDL_FLAG_DONT_UNEXPAND|0x00020417"),
+        ("22418", "CSIDL_FLAG_DONT_UNEXPAND|0x00020418"),
+        ("22419", "CSIDL_FLAG_DONT_UNEXPAND|0x00020419"),
+        ("22420", "CSIDL_FLAG_DONT_UNEXPAND|0x00020420"),
+        ("22421", "CSIDL_FLAG_DONT_UNEXPAND|0x00020421"),
+        ("22422", "CSIDL_FLAG_DONT_UNEXPAND|0x00020422"),
+        ("22423", "CSIDL_FLAG_DONT_UNEXPAND|0x00020423"),
+        ("22424", "CSIDL_FLAG_DONT_UNEXPAND|0x00020424"),
+        ("22425", "CSIDL_FLAG_DONT_UNEXPAND|0x00020425"),
+        ("22426", "CSIDL_FLAG_DONT_UNEXPAND|0x00020426"),
+        ("22427", "CSIDL_FLAG_DONT_UNEXPAND|0x00020427"),
+        ("22428", "CSIDL_FLAG_DONT_UNEXPAND|0x00020428"),
+        ("22429", "CSIDL_FLAG_DONT_UNEXPAND|0x00020429"),
+        ("22430", "CSIDL_FLAG_DONT_UNEXPAND|0x00020430"),
+        ("22431", "CSIDL_FLAG_DONT_UNEXPAND|0x00020431"),
+        ("22432", "CSIDL_FLAG_DONT_UNEXPAND|0x00020432"),
+        ("22433", "CSIDL_FLAG_DONT_UNEXPAND|0x00020433"),
+        ("22434", "CSIDL_FLAG_DONT_UNEXPAND|0x00020434"),
+        ("22435", "CSIDL_FLAG_DONT_UNEXPAND|0x00020435"),
+        ("22436", "CSIDL_FLAG_DONT_UNEXPAND|0x00020436"),
+        ("22437", "CSIDL_FLAG_DONT_UNEXPAND|0x00020437"),
+        ("22438", "CSIDL_FLAG_DONT_UNEXPAND|0x00020438"),
+        ("22439", "CSIDL_FLAG_DONT_UNEXPAND|0x00020439"),
+        ("22440", "CSIDL_FLAG_DONT_UNEXPAND|0x00020440"),
+        ("22441", "CSIDL_FLAG_DONT_UNEXPAND|0x00020441"),
+        ("22442", "CSIDL_FLAG_DONT_UNEXPAND|0x00020442"),
+        ("22443", "CSIDL_FLAG_DONT_UNEXPAND|0x00020443"),
+        ("22444", "CSIDL_FLAG_DONT_UNEXPAND|0x00020444"),
+        ("22445", "CSIDL_FLAG_DONT_UNEXPAND|0x00020445"),
+        ("22446", "CSIDL_FLAG_DONT_UNEXPAND|0x00020446"),
+        ("22447", "CSIDL_FLAG_DONT_UNEXPAND|0x00020447"),
+        ("22448", "CSIDL_FLAG_DONT_UNEXPAND|0x00020448"),
+        ("22449", "CSIDL_FLAG_DONT_UNEXPAND|0x00020449"),
+        ("22450", "CSIDL_FLAG_DONT_UNEXPAND|0x00020450"),
+        ("22451", "CSIDL_FLAG_DONT_UNEXPAND|0x00020451"),
+        ("22452", "CSIDL_FLAG_DONT_UNEXPAND|0x00020452"),
+        ("22453", "CSIDL_FLAG_DONT_UNEXPAND|0x00020453"),
+        ("22454", "CSIDL_FLAG_DONT_UNEXPAND|0x00020454"),
+        ("22455", "CSIDL_FLAG_DONT_UNEXPAND|0x00020455"),
+        ("22456", "CSIDL_FLAG_DONT_UNEXPAND|0x00020456"),
+        ("22457", "CSIDL_FLAG_DONT_UNEXPAND|0x00020457"),
+        ("22458", "CSIDL_FLAG_DONT_UNEXPAND|0x00020458"),
+        ("22459", "CSIDL_FLAG_DONT_UNEXPAND|0x00020459"),
+        ("22460", "CSIDL_FLAG_DONT_UNEXPAND|0x00020460"),
+        ("22461", "CSIDL_FLAG_DONT_UNEXPAND|0x00020461"),
+        ("22462", "CSIDL_FLAG_DONT_UNEXPAND|0x00020462"),
+        ("22463", "CSIDL_FLAG_DONT_UNEXPAND|0x00020463"),
+        ("22464", "CSIDL_FLAG_DONT_UNEXPAND|0x00020464"),
+        ("22465", "CSIDL_FLAG_DONT_UNEXPAND|0x00020465"),
+        ("22466", "CSIDL_FLAG_DONT_UNEXPAND|0x00020466"),
+        ("22467", "CSIDL_FLAG_DONT_UNEXPAND|0x00020467"),
+        ("22468", "CSIDL_FLAG_DONT_UNEXPAND|0x00020468"),
+        ("22469", "CSIDL_FLAG_DONT_UNEXPAND|0x00020469"),
+        ("22470", "CSIDL_FLAG_DONT_UNEXPAND|0x00020470"),
+        ("22471", "CSIDL_FLAG_DONT_UNEXPAND|0x00020471"),
+        ("22472", "CSIDL_FLAG_DONT_UNEXPAND|0x00020472"),
+        ("22473", "CSIDL_FLAG_DONT_UNEXPAND|0x00020473"),
+        ("22474", "CSIDL_FLAG_DONT_UNEXPAND|0x00020474"),
+        ("22475", "CSIDL_FLAG_DONT_UNEXPAND|0x00020475"),
+        ("22476", "CSIDL_FLAG_DONT_UNEXPAND|0x00020476"),
+        ("22477", "CSIDL_FLAG_DONT_UNEXPAND|0x00020477"),
+        ("22478", "CSIDL_FLAG_DONT_UNEXPAND|0x00020478"),
+        ("22479", "CSIDL_FLAG_DONT_UNEXPAND|0x00020479"),
+        ("22480", "CSIDL_FLAG_DONT_UNEXPAND|0x00020480"),
+        ("22481", "CSIDL_FLAG_DONT_UNEXPAND|0x00020481"),
+        ("22482", "CSIDL_FLAG_DONT_UNEXPAND|0x00020482"),
+        ("22483", "CSIDL_FLAG_DONT_UNEXPAND|0x00020483"),
+        ("22484", "CSIDL_FLAG_DONT_UNEXPAND|0x00020484"),
+        ("22485", "CSIDL_FLAG_DONT_UNEXPAND|0x00020485"),
+        ("22486", "CSIDL_FLAG_DONT_UNEXPAND|0x00020486"),
+        ("22487", "CSIDL_FLAG_DONT_UNEXPAND|0x00020487"),
+        ("22488", "CSIDL_FLAG_DONT_UNEXPAND|0x00020488"),
+        ("22489", "CSIDL_FLAG_DONT_UNEXPAND|0x00020489"),
+        ("22490", "CSIDL_FLAG_DONT_UNEXPAND|0x00020490"),
+        ("22491", "CSIDL_FLAG_DONT_UNEXPAND|0x00020491"),
+        ("22492", "CSIDL_FLAG_DONT_UNEXPAND|0x00020492"),
+        ("22493", "CSIDL_FLAG_DONT_UNEXPAND|0x00020493"),
+        ("22494", "CSIDL_FLAG_DONT_UNEXPAND|0x00020494"),
+        ("22495", "CSIDL_FLAG_DONT_UNEXPAND|0x00020495"),
+        ("22496", "CSIDL_FLAG_DONT_UNEXPAND|0x00020496"),
+        ("22497", "CSIDL_FLAG_DONT_UNEXPAND|0x00020497"),
+        ("22498", "CSIDL_FLAG_DONT_UNEXPAND|0x00020498"),
+        ("22499", "CSIDL_FLAG_DONT_UNEXPAND|0x00020499"),
+        ("22500", "CSIDL_FLAG_DONT_UNEXPAND|0x00020500"),
+        ("22501", "CSIDL_FLAG_DONT_UNEXPAND|0x00020501"),
+        ("22502", "CSIDL_FLAG_DONT_UNEXPAND|0x00020502"),
+        ("22503", "CSIDL_FLAG_DONT_UNEXPAND|0x00020503"),
+        ("22504", "CSIDL_FLAG_DONT_UNEXPAND|0x00020504"),
+        ("22505", "CSIDL_FLAG_DONT_UNEXPAND|0x00020505"),
+        ("22506", "CSIDL_FLAG_DONT_UNEXPAND|0x00020506"),
+        ("22507", "CSIDL_FLAG_DONT_UNEXPAND|0x00020507"),
+        ("22508", "CSIDL_FLAG_DONT_UNEXPAND|0x00020508"),
+        ("22509", "CSIDL_FLAG_DONT_UNEXPAND|0x00020509"),
+        ("22510", "CSIDL_FLAG_DONT_UNEXPAND|0x00020510"),
+        ("22511", "CSIDL_FLAG_DONT_UNEXPAND|0x00020511"),
+        ("22512", "CSIDL_FLAG_DONT_UNEXPAND|0x00020512"),
+        ("22513", "CSIDL_FLAG_DONT_UNEXPAND|0x00020513"),
+        ("22514", "CSIDL_FLAG_DONT_UNEXPAND|0x00020514"),
+        ("22515", "CSIDL_FLAG_DONT_UNEXPAND|0x00020515"),
+        ("22516", "CSIDL_FLAG_DONT_UNEXPAND|0x00020516"),
+        ("22517", "CSIDL_FLAG_DONT_UNEXPAND|0x00020517"),
+        ("22518", "CSIDL_FLAG_DONT_UNEXPAND|0x00020518"),
+        ("22519", "CSIDL_FLAG_DONT_UNEXPAND|0x00020519"),
+        ("22520", "CSIDL_FLAG_DONT_UNEXPAND|0x00020520"),
+        ("22521", "CSIDL_FLAG_DONT_UNEXPAND|0x00020521"),
+        ("22522", "CSIDL_FLAG_DONT_UNEXPAND|0x00020522"),
+        ("22523", "CSIDL_FLAG_DONT_UNEXPAND|0x00020523"),
+        ("22524", "CSIDL_FLAG_DONT_UNEXPAND|0x00020524"),
+        ("22525", "CSIDL_FLAG_DONT_UNEXPAND|0x00020525"),
+        ("22526", "CSIDL_FLAG_DONT_UNEXPAND|0x00020526"),
+        ("22527", "CSIDL_FLAG_DONT_UNEXPAND|0x00020527"),
+        ("22528", "CSIDL_FLAG_DONT_UNEXPAND|0x00020528"),
+        ("22529", "CSIDL_FLAG_DONT_UNEXPAND|0x00020529"),
+        ("22530", "CSIDL_FLAG_DONT_UNEXPAND|0x00020530"),
+        ("22531", "CSIDL_FLAG_DONT_UNEXPAND|0x00020531"),
+        ("22532", "CSIDL_FLAG_DONT_UNEXPAND|0x00020532"),
+        ("22533", "CSIDL_FLAG_DONT_UNEXPAND|0x00020533"),
+        ("22534", "CSIDL_FLAG_DONT_UNEXPAND|0x00020534"),
+        ("22535", "CSIDL_FLAG_DONT_UNEXPAND|0x00020535"),
+        ("22536", "CSIDL_FLAG_DONT_UNEXPAND|0x00020536"),
+        ("22537", "CSIDL_FLAG_DONT_UNEXPAND|0x00020537"),
+        ("22538", "CSIDL_FLAG_DONT_UNEXPAND|0x00020538"),
+        ("22539", "CSIDL_FLAG_DONT_UNEXPAND|0x00020539"),
+        ("22540", "CSIDL_FLAG_DONT_UNEXPAND|0x00020540"),
+        ("22541", "CSIDL_FLAG_DONT_UNEXPAND|0x00020541"),
+        ("22542", "CSIDL_FLAG_DONT_UNEXPAND|0x00020542"),
+        ("22543", "CSIDL_FLAG_DONT_UNEXPAND|0x00020543"),
+        ("22544", "CSIDL_FLAG_DONT_UNEXPAND|0x00020544"),
+        ("22545", "CSIDL_FLAG_DONT_UNEXPAND|0x00020545"),
+        ("22546", "CSIDL_FLAG_DONT_UNEXPAND|0x00020546"),
+        ("22547", "CSIDL_FLAG_DONT_UNEXPAND|0x00020547"),
+        ("22548", "CSIDL_FLAG_DONT_UNEXPAND|0x00020548"),
+        ("22549", "CSIDL_FLAG_DONT_UNEXPAND|0x00020549"),
+        ("22550", "CSIDL_FLAG_DONT_UNEXPAND|0x00020550"),
+        ("22551", "CSIDL_FLAG_DONT_UNEXPAND|0x00020551"),
+        ("22552", "CSIDL_FLAG_DONT_UNEXPAND|0x00020552"),
+        ("22553", "CSIDL_FLAG_DONT_UNEXPAND|0x00020553"),
+        ("22554", "CSIDL_FLAG_DONT_UNEXPAND|0x00020554"),
+        ("22555", "CSIDL_FLAG_DONT_UNEXPAND|0x00020555"),
+        ("22556", "CSIDL_FLAG_DONT_UNEXPAND|0x00020556"),
+        ("22557", "CSIDL_FLAG_DONT_UNEXPAND|0x00020557"),
+        ("22558", "CSIDL_FLAG_DONT_UNEXPAND|0x00020558"),
+        ("22559", "CSIDL_FLAG_DONT_UNEXPAND|0x00020559"),
+        ("22560", "CSIDL_FLAG_DONT_UNEXPAND|0x00020560"),
+        ("22561", "CSIDL_FLAG_DONT_UNEXPAND|0x00020561"),
+        ("22562", "CSIDL_FLAG_DONT_UNEXPAND|0x00020562"),
+        ("22563", "CSIDL_FLAG_DONT_UNEXPAND|0x00020563"),
+        ("22564", "CSIDL_FLAG_DONT_UNEXPAND|0x00020564"),
+        ("22565", "CSIDL_FLAG_DONT_UNEXPAND|0x00020565"),
+        ("22566", "CSIDL_FLAG_DONT_UNEXPAND|0x00020566"),
+        ("22567", "CSIDL_FLAG_DONT_UNEXPAND|0x00020567"),
+        ("22568", "CSIDL_FLAG_DONT_UNEXPAND|0x00020568"),
+        ("22569", "CSIDL_FLAG_DONT_UNEXPAND|0x00020569"),
+        ("22570", "CSIDL_FLAG_DONT_UNEXPAND|0x00020570"),
+        ("22571", "CSIDL_FLAG_DONT_UNEXPAND|0x00020571"),
+        ("22572", "CSIDL_FLAG_DONT_UNEXPAND|0x00020572"),
+        ("22573", "CSIDL_FLAG_DONT_UNEXPAND|0x00020573"),
+        ("22574", "CSIDL_FLAG_DONT_UNEXPAND|0x00020574"),
+        ("22575", "CSIDL_FLAG_DONT_UNEXPAND|0x00020575"),
+        ("22576", "CSIDL_FLAG_DONT_UNEXPAND|0x00020576"),
+        ("22577", "CSIDL_FLAG_DONT_UNEXPAND|0x00020577"),
+        ("22578", "CSIDL_FLAG_DONT_UNEXPAND|0x00020578"),
+        ("22579", "CSIDL_FLAG_DONT_UNEXPAND|0x00020579"),
+        ("22580", "CSIDL_FLAG_DONT_UNEXPAND|0x00020580"),
+        ("22581", "CSIDL_FLAG_DONT_UNEXPAND|0x00020581"),
+        ("22582", "CSIDL_FLAG_DONT_UNEXPAND|0x00020582"),
+        ("22583", "CSIDL_FLAG_DONT_UNEXPAND|0x00020583"),
+        ("22584", "CSIDL_FLAG_DONT_UNEXPAND|0x00020584"),
+        ("22585", "CSIDL_FLAG_DONT_UNEXPAND|0x00020585"),
+        ("22586", "CSIDL_FLAG_DONT_UNEXPAND|0x00020586"),
+        ("22587", "CSIDL_FLAG_DONT_UNEXPAND|0x00020587"),
+        ("22588", "CSIDL_FLAG_DONT_UNEXPAND|0x00020588"),
+        ("22589", "CSIDL_FLAG_DONT_UNEXPAND|0x00020589"),
+        ("22590", "CSIDL_FLAG_DONT_UNEXPAND|0x00020590"),
+        ("22591", "CSIDL_FLAG_DONT_UNEXPAND|0x00020591"),
+        ("22592", "CSIDL_FLAG_DONT_UNEXPAND|0x00020592"),
+        ("22593", "CSIDL_FLAG_DONT_UNEXPAND|0x00020593"),
+        ("22594", "CSIDL_FLAG_DONT_UNEXPAND|0x00020594"),
+        ("22595", "CSIDL_FLAG_DONT_UNEXPAND|0x00020595"),
+        ("22596", "CSIDL_FLAG_DONT_UNEXPAND|0x00020596"),
+        ("22597", "CSIDL_FLAG_DONT_UNEXPAND|0x00020597"),
+        ("22598", "CSIDL_FLAG_DONT_UNEXPAND|0x00020598"),
+        ("22599", "CSIDL_FLAG_DONT_UNEXPAND|0x00020599"),
+        ("22600", "CSIDL_FLAG_DONT_UNEXPAND|0x00020600"),
+        ("22601", "CSIDL_FLAG_DONT_UNEXPAND|0x00020601"),
+        ("22602", "CSIDL_FLAG_DONT_UNEXPAND|0x00020602"),
+        ("22603", "CSIDL_FLAG_DONT_UNEXPAND|0x00020603"),
+        ("22604", "CSIDL_FLAG_DONT_UNEXPAND|0x00020604"),
+        ("22605", "CSIDL_FLAG_DONT_UNEXPAND|0x00020605"),
+        ("22606", "CSIDL_FLAG_DONT_UNEXPAND|0x00020606"),
+        ("22607", "CSIDL_FLAG_DONT_UNEXPAND|0x00020607"),
+        ("22608", "CSIDL_FLAG_DONT_UNEXPAND|0x00020608"),
+        ("22609", "CSIDL_FLAG_DONT_UNEXPAND|0x00020609"),
+        ("22610", "CSIDL_FLAG_DONT_UNEXPAND|0x00020610"),
+        ("22611", "CSIDL_FLAG_DONT_UNEXPAND|0x00020611"),
+        ("22612", "CSIDL_FLAG_DONT_UNEXPAND|0x00020612"),
+        ("22613", "CSIDL_FLAG_DONT_UNEXPAND|0x00020613"),
+        ("22614", "CSIDL_FLAG_DONT_UNEXPAND|0x00020614"),
+        ("22615", "CSIDL_FLAG_DONT_UNEXPAND|0x00020615"),
+        ("22616", "CSIDL_FLAG_DONT_UNEXPAND|0x00020616"),
+        ("22617", "CSIDL_FLAG_DONT_UNEXPAND|0x00020617"),
+        ("22618", "CSIDL_FLAG_DONT_UNEXPAND|0x00020618"),
+        ("22619", "CSIDL_FLAG_DONT_UNEXPAND|0x00020619"),
+        ("22620", "CSIDL_FLAG_DONT_UNEXPAND|0x00020620"),
+        ("22621", "CSIDL_FLAG_DONT_UNEXPAND|0x00020621"),
+        ("22622", "CSIDL_FLAG_DONT_UNEXPAND|0x00020622"),
+        ("22623", "CSIDL_FLAG_DONT_UNEXPAND|0x00020623"),
+        ("22624", "CSIDL_FLAG_DONT_UNEXPAND|0x00020624"),
+        ("22625", "CSIDL_FLAG_DONT_UNEXPAND|0x00020625"),
+        ("22626", "CSIDL_FLAG_DONT_UNEXPAND|0x00020626"),
+        ("22627", "CSIDL_FLAG_DONT_UNEXPAND|0x00020627"),
+        ("22628", "CSIDL_FLAG_DONT_UNEXPAND|0x00020628"),
+        ("22629", "CSIDL_FLAG_DONT_UNEXPAND|0x00020629"),
+        ("22630", "CSIDL_FLAG_DONT_UNEXPAND|0x00020630"),
+        ("22631", "CSIDL_FLAG_DONT_UNEXPAND|0x00020631"),
+        ("22632", "CSIDL_FLAG_DONT_UNEXPAND|0x00020632"),
+        ("22633", "CSIDL_FLAG_DONT_UNEXPAND|0x00020633"),
+        ("22634", "CSIDL_FLAG_DONT_UNEXPAND|0x00020634"),
+        ("22635", "CSIDL_FLAG_DONT_UNEXPAND|0x00020635"),
+        ("22636", "CSIDL_FLAG_DONT_UNEXPAND|0x00020636"),
+        ("22637", "CSIDL_FLAG_DONT_UNEXPAND|0x00020637"),
+        ("22638", "CSIDL_FLAG_DONT_UNEXPAND|0x00020638"),
+        ("22639", "CSIDL_FLAG_DONT_UNEXPAND|0x00020639"),
+        ("22640", "CSIDL_FLAG_DONT_UNEXPAND|0x00020640"),
+        ("22641", "CSIDL_FLAG_DONT_UNEXPAND|0x00020641"),
+        ("22642", "CSIDL_FLAG_DONT_UNEXPAND|0x00020642"),
+        ("22643", "CSIDL_FLAG_DONT_UNEXPAND|0x00020643"),
+        ("22644", "CSIDL_FLAG_DONT_UNEXPAND|0x00020644"),
+        ("22645", "CSIDL_FLAG_DONT_UNEXPAND|0x00020645"),
+        ("22646", "CSIDL_FLAG_DONT_UNEXPAND|0x00020646"),
+        ("22647", "CSIDL_FLAG_DONT_UNEXPAND|0x00020647"),
+        ("22648", "CSIDL_FLAG_DONT_UNEXPAND|0x00020648"),
+        ("22649", "CSIDL_FLAG_DONT_UNEXPAND|0x00020649"),
+        ("22650", "CSIDL_FLAG_DONT_UNEXPAND|0x00020650"),
+        ("22651", "CSIDL_FLAG_DONT_UNEXPAND|0x00020651"),
+        ("22652", "CSIDL_FLAG_DONT_UNEXPAND|0x00020652"),
+        ("22653", "CSIDL_FLAG_DONT_UNEXPAND|0x00020653"),
+        ("22654", "CSIDL_FLAG_DONT_UNEXPAND|0x00020654"),
+        ("22655", "CSIDL_FLAG_DONT_UNEXPAND|0x00020655"),
+        ("22656", "CSIDL_FLAG_DONT_UNEXPAND|0x00020656"),
+        ("22657", "CSIDL_FLAG_DONT_UNEXPAND|0x00020657"),
+        ("22658", "CSIDL_FLAG_DONT_UNEXPAND|0x00020658"),
+        ("22659", "CSIDL_FLAG_DONT_UNEXPAND|0x00020659"),
+        ("22660", "CSIDL_FLAG_DONT_UNEXPAND|0x00020660"),
+        ("22661", "CSIDL_FLAG_DONT_UNEXPAND|0x00020661"),
+        ("22662", "CSIDL_FLAG_DONT_UNEXPAND|0x00020662"),
+        ("22663", "CSIDL_FLAG_DONT_UNEXPAND|0x00020663"),
+        ("22664", "CSIDL_FLAG_DONT_UNEXPAND|0x00020664"),
+        ("22665", "CSIDL_FLAG_DONT_UNEXPAND|0x00020665"),
+        ("22666", "CSIDL_FLAG_DONT_UNEXPAND|0x00020666"),
+        ("22667", "CSIDL_FLAG_DONT_UNEXPAND|0x00020667"),
+        ("22668", "CSIDL_FLAG_DONT_UNEXPAND|0x00020668"),
+        ("22669", "CSIDL_FLAG_DONT_UNEXPAND|0x00020669"),
+        ("22670", "CSIDL_FLAG_DONT_UNEXPAND|0x00020670"),
+        ("22671", "CSIDL_FLAG_DONT_UNEXPAND|0x00020671"),
+        ("22672", "CSIDL_FLAG_DONT_UNEXPAND|0x00020672"),
+        ("22673", "CSIDL_FLAG_DONT_UNEXPAND|0x00020673"),
+        ("22674", "CSIDL_FLAG_DONT_UNEXPAND|0x00020674"),
+        ("22675", "CSIDL_FLAG_DONT_UNEXPAND|0x00020675"),
+        ("22676", "CSIDL_FLAG_DONT_UNEXPAND|0x00020676"),
+        ("22677", "CSIDL_FLAG_DONT_UNEXPAND|0x00020677"),
+        ("22678", "CSIDL_FLAG_DONT_UNEXPAND|0x00020678"),
+        ("22679", "CSIDL_FLAG_DONT_UNEXPAND|0x00020679"),
+        ("22680", "CSIDL_FLAG_DONT_UNEXPAND|0x00020680"),
+        ("22681", "CSIDL_FLAG_DONT_UNEXPAND|0x00020681"),
+        ("22682", "CSIDL_FLAG_DONT_UNEXPAND|0x00020682"),
+        ("22683", "CSIDL_FLAG_DONT_UNEXPAND|0x00020683"),
+        ("22684", "CSIDL_FLAG_DONT_UNEXPAND|0x00020684"),
+        ("22685", "CSIDL_FLAG_DONT_UNEXPAND|0x00020685"),
+        ("22686", "CSIDL_FLAG_DONT_UNEXPAND|0x00020686"),
+        ("22687", "CSIDL_FLAG_DONT_UNEXPAND|0x00020687"),
+        ("22688", "CSIDL_FLAG_DONT_UNEXPAND|0x00020688"),
+        ("22689", "CSIDL_FLAG_DONT_UNEXPAND|0x00020689"),
+        ("22690", "CSIDL_FLAG_DONT_UNEXPAND|0x00020690"),
+        ("22691", "CSIDL_FLAG_DONT_UNEXPAND|0x00020691"),
+        ("22692", "CSIDL_FLAG_DONT_UNEXPAND|0x00020692"),
+        ("22693", "CSIDL_FLAG_DONT_UNEXPAND|0x00020693"),
+        ("22694", "CSIDL_FLAG_DONT_UNEXPAND|0x00020694"),
+        ("22695", "CSIDL_FLAG_DONT_UNEXPAND|0x00020695"),
+        ("22696", "CSIDL_FLAG_DONT_UNEXPAND|0x00020696"),
+        ("22697", "CSIDL_FLAG_DONT_UNEXPAND|0x00020697"),
+        ("22698", "CSIDL_FLAG_DONT_UNEXPAND|0x00020698"),
+        ("22699", "CSIDL_FLAG_DONT_UNEXPAND|0x00020699"),
+        ("22700", "CSIDL_FLAG_DONT_UNEXPAND|0x00020700"),
+        ("22701", "CSIDL_FLAG_DONT_UNEXPAND|0x00020701"),
+        ("22702", "CSIDL_FLAG_DONT_UNEXPAND|0x00020702"),
+        ("22703", "CSIDL_FLAG_DONT_UNEXPAND|0x00020703"),
+        ("22704", "CSIDL_FLAG_DONT_UNEXPAND|0x00020704"),
+        ("22705", "CSIDL_FLAG_DONT_UNEXPAND|0x00020705"),
+        ("22706", "CSIDL_FLAG_DONT_UNEXPAND|0x00020706"),
+        ("22707", "CSIDL_FLAG_DONT_UNEXPAND|0x00020707"),
+        ("22708", "CSIDL_FLAG_DONT_UNEXPAND|0x00020708"),
+        ("22709", "CSIDL_FLAG_DONT_UNEXPAND|0x00020709"),
+        ("22710", "CSIDL_FLAG_DONT_UNEXPAND|0x00020710"),
+        ("22711", "CSIDL_FLAG_DONT_UNEXPAND|0x00020711"),
+        ("22712", "CSIDL_FLAG_DONT_UNEXPAND|0x00020712"),
+        ("22713", "CSIDL_FLAG_DONT_UNEXPAND|0x00020713"),
+        ("22714", "CSIDL_FLAG_DONT_UNEXPAND|0x00020714"),
+        ("22715", "CSIDL_FLAG_DONT_UNEXPAND|0x00020715"),
+        ("22716", "CSIDL_FLAG_DONT_UNEXPAND|0x00020716"),
+        ("22717", "CSIDL_FLAG_DONT_UNEXPAND|0x00020717"),
+        ("22718", "CSIDL_FLAG_DONT_UNEXPAND|0x00020718"),
+        ("22719", "CSIDL_FLAG_DONT_UNEXPAND|0x00020719"),
+        ("22720", "CSIDL_FLAG_DONT_UNEXPAND|0x00020720"),
+        ("22721", "CSIDL_FLAG_DONT_UNEXPAND|0x00020721"),
+        ("22722", "CSIDL_FLAG_DONT_UNEXPAND|0x00020722"),
+        ("22723", "CSIDL_FLAG_DONT_UNEXPAND|0x00020723"),
+        ("22724", "CSIDL_FLAG_DONT_UNEXPAND|0x00020724"),
+        ("22725", "CSIDL_FLAG_DONT_UNEXPAND|0x00020725"),
+        ("22726", "CSIDL_FLAG_DONT_UNEXPAND|0x00020726"),
+        ("22727", "CSIDL_FLAG_DONT_UNEXPAND|0x00020727"),
+        ("22728", "CSIDL_FLAG_DONT_UNEXPAND|0x00020728"),
+        ("22729", "CSIDL_FLAG_DONT_UNEXPAND|0x00020729"),
+        ("22730", "CSIDL_FLAG_DONT_UNEXPAND|0x00020730"),
+        ("22731", "CSIDL_FLAG_DONT_UNEXPAND|0x00020731"),
+        ("22732", "CSIDL_FLAG_DONT_UNEXPAND|0x00020732"),
+        ("22733", "CSIDL_FLAG_DONT_UNEXPAND|0x00020733"),
+        ("22734", "CSIDL_FLAG_DONT_UNEXPAND|0x00020734"),
+        ("22735", "CSIDL_FLAG_DONT_UNEXPAND|0x00020735"),
+        ("22736", "CSIDL_FLAG_DONT_UNEXPAND|0x00020736"),
+        ("22737", "CSIDL_FLAG_DONT_UNEXPAND|0x00020737"),
+        ("22738", "CSIDL_FLAG_DONT_UNEXPAND|0x00020738"),
+        ("22739", "CSIDL_FLAG_DONT_UNEXPAND|0x00020739"),
+        ("22740", "CSIDL_FLAG_DONT_UNEXPAND|0x00020740"),
+        ("22741", "CSIDL_FLAG_DONT_UNEXPAND|0x00020741"),
+        ("22742", "CSIDL_FLAG_DONT_UNEXPAND|0x00020742"),
+        ("22743", "CSIDL_FLAG_DONT_UNEXPAND|0x00020743"),
+        ("22744", "CSIDL_FLAG_DONT_UNEXPAND|0x00020744"),
+        ("22745", "CSIDL_FLAG_DONT_UNEXPAND|0x00020745"),
+        ("22746", "CSIDL_FLAG_DONT_UNEXPAND|0x00020746"),
+        ("22747", "CSIDL_FLAG_DONT_UNEXPAND|0x00020747"),
+        ("22748", "CSIDL_FLAG_DONT_UNEXPAND|0x00020748"),
+        ("22749", "CSIDL_FLAG_DONT_UNEXPAND|0x00020749"),
+        ("22750", "CSIDL_FLAG_DONT_UNEXPAND|0x00020750"),
+        ("22751", "CSIDL_FLAG_DONT_UNEXPAND|0x00020751"),
+        ("22752", "CSIDL_FLAG_DONT_UNEXPAND|0x00020752"),
+        ("22753", "CSIDL_FLAG_DONT_UNEXPAND|0x00020753"),
+        ("22754", "CSIDL_FLAG_DONT_UNEXPAND|0x00020754"),
+        ("22755", "CSIDL_FLAG_DONT_UNEXPAND|0x00020755"),
+        ("22756", "CSIDL_FLAG_DONT_UNEXPAND|0x00020756"),
+        ("22757", "CSIDL_FLAG_DONT_UNEXPAND|0x00020757"),
+        ("22758", "CSIDL_FLAG_DONT_UNEXPAND|0x00020758"),
+        ("22759", "CSIDL_FLAG_DONT_UNEXPAND|0x00020759"),
+        ("22760", "CSIDL_FLAG_DONT_UNEXPAND|0x00020760"),
+        ("22761", "CSIDL_FLAG_DONT_UNEXPAND|0x00020761"),
+        ("22762", "CSIDL_FLAG_DONT_UNEXPAND|0x00020762"),
+        ("22763", "CSIDL_FLAG_DONT_UNEXPAND|0x00020763"),
+        ("22764", "CSIDL_FLAG_DONT_UNEXPAND|0x00020764"),
+        ("22765", "CSIDL_FLAG_DONT_UNEXPAND|0x00020765"),
+        ("22766", "CSIDL_FLAG_DONT_UNEXPAND|0x00020766"),
+        ("22767", "CSIDL_FLAG_DONT_UNEXPAND|0x00020767"),
+        ("22768", "CSIDL_FLAG_DONT_UNEXPAND|0x00020768"),
+        ("22769", "CSIDL_FLAG_DONT_UNEXPAND|0x00020769"),
+        ("22770", "CSIDL_FLAG_DONT_UNEXPAND|0x00020770"),
+        ("22771", "CSIDL_FLAG_DONT_UNEXPAND|0x00020771"),
+        ("22772", "CSIDL_FLAG_DONT_UNEXPAND|0x00020772"),
+        ("22773", "CSIDL_FLAG_DONT_UNEXPAND|0x00020773"),
+        ("22774", "CSIDL_FLAG_DONT_UNEXPAND|0x00020774"),
+        ("22775", "CSIDL_FLAG_DONT_UNEXPAND|0x00020775"),
+        ("22776", "CSIDL_FLAG_DONT_UNEXPAND|0x00020776"),
+        ("22777", "CSIDL_FLAG_DONT_UNEXPAND|0x00020777"),
+        ("22778", "CSIDL_FLAG_DONT_UNEXPAND|0x00020778"),
+        ("22779", "CSIDL_FLAG_DONT_UNEXPAND|0x00020779"),
+        ("22780", "CSIDL_FLAG_DONT_UNEXPAND|0x00020780"),
+        ("22781", "CSIDL_FLAG_DONT_UNEXPAND|0x00020781"),
+        ("22782", "CSIDL_FLAG_DONT_UNEXPAND|0x00020782"),
+        ("22783", "CSIDL_FLAG_DONT_UNEXPAND|0x00020783"),
+        ("22784", "CSIDL_FLAG_DONT_UNEXPAND|0x00020784"),
+        ("22785", "CSIDL_FLAG_DONT_UNEXPAND|0x00020785"),
+        ("22786", "CSIDL_FLAG_DONT_UNEXPAND|0x00020786"),
+        ("22787", "CSIDL_FLAG_DONT_UNEXPAND|0x00020787"),
+        ("22788", "CSIDL_FLAG_DONT_UNEXPAND|0x00020788"),
+        ("22789", "CSIDL_FLAG_DONT_UNEXPAND|0x00020789"),
+        ("22790", "CSIDL_FLAG_DONT_UNEXPAND|0x00020790"),
+        ("22791", "CSIDL_FLAG_DONT_UNEXPAND|0x00020791"),
+        ("22792", "CSIDL_FLAG_DONT_UNEXPAND|0x00020792"),
+        ("22793", "CSIDL_FLAG_DONT_UNEXPAND|0x00020793"),
+        ("22794", "CSIDL_FLAG_DONT_UNEXPAND|0x00020794"),
+        ("22795", "CSIDL_FLAG_DONT_UNEXPAND|0x00020795"),
+        ("22796", "CSIDL_FLAG_DONT_UNEXPAND|0x00020796"),
+        ("22797", "CSIDL_FLAG_DONT_UNEXPAND|0x00020797"),
+        ("22798", "CSIDL_FLAG_DONT_UNEXPAND|0x00020798"),
+        ("22799", "CSIDL_FLAG_DONT_UNEXPAND|0x00020799"),
+        ("22800", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020000"),
+        ("22801", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020001"),
+        ("22802", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020002"),
+        ("22803", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020003"),
+        ("22804", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020004"),
+        ("22805", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020005"),
+        ("22806", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020006"),
+        ("22807", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020007"),
+        ("22808", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020008"),
+        ("22809", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020009"),
+        ("22810", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020010"),
+        ("22811", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020011"),
+        ("22812", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020012"),
+        ("22813", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020013"),
+        ("22814", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020014"),
+        ("22815", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020015"),
+        ("22816", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020016"),
+        ("22817", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020017"),
+        ("22818", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020018"),
+        ("22819", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020019"),
+        ("22820", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020020"),
+        ("22821", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020021"),
+        ("22822", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020022"),
+        ("22823", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020023"),
+        ("22824", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020024"),
+        ("22825", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020025"),
+        ("22826", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020026"),
+        ("22827", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020027"),
+        ("22828", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020028"),
+        ("22829", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020029"),
+        ("22830", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020030"),
+        ("22831", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020031"),
+        ("22832", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020032"),
+        ("22833", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020033"),
+        ("22834", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020034"),
+        ("22835", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020035"),
+        ("22836", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020036"),
+        ("22837", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020037"),
+        ("22838", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020038"),
+        ("22839", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020039"),
+        ("22840", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020040"),
+        ("22841", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020041"),
+        ("22842", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020042"),
+        ("22843", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020043"),
+        ("22844", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020044"),
+        ("22845", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020045"),
+        ("22846", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020046"),
+        ("22847", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020047"),
+        ("22848", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020048"),
+        ("22849", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020049"),
+        ("22850", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020050"),
+        ("22851", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020051"),
+        ("22852", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020052"),
+        ("22853", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020053"),
+        ("22854", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020054"),
+        ("22855", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020055"),
+        ("22856", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020056"),
+        ("22857", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020057"),
+        ("22858", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020058"),
+        ("22859", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020059"),
+        ("22860", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020060"),
+        ("22861", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020061"),
+        ("22862", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020062"),
+        ("22863", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020063"),
+        ("22864", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020064"),
+        ("22865", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020065"),
+        ("22866", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020066"),
+        ("22867", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020067"),
+        ("22868", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020068"),
+        ("22869", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020069"),
+        ("22870", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020070"),
+        ("22871", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020071"),
+        ("22872", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020072"),
+        ("22873", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020073"),
+        ("22874", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020074"),
+        ("22875", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020075"),
+        ("22876", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020076"),
+        ("22877", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020077"),
+        ("22878", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020078"),
+        ("22879", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020079"),
+        ("22880", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020080"),
+        ("22881", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020081"),
+        ("22882", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020082"),
+        ("22883", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020083"),
+        ("22884", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020084"),
+        ("22885", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020085"),
+        ("22886", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020086"),
+        ("22887", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020087"),
+        ("22888", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020088"),
+        ("22889", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020089"),
+        ("22890", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020090"),
+        ("22891", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020091"),
+        ("22892", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020092"),
+        ("22893", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020093"),
+        ("22894", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020094"),
+        ("22895", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020095"),
+        ("22896", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020096"),
+        ("22897", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020097"),
+        ("22898", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020098"),
+        ("22899", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020099"),
+        ("22900", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020100"),
+        ("22901", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020101"),
+        ("22902", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020102"),
+        ("22903", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020103"),
+        ("22904", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020104"),
+        ("22905", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020105"),
+        ("22906", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020106"),
+        ("22907", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020107"),
+        ("22908", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020108"),
+        ("22909", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020109"),
+        ("22910", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020110"),
+        ("22911", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020111"),
+        ("22912", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020112"),
+        ("22913", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020113"),
+        ("22914", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020114"),
+        ("22915", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020115"),
+        ("22916", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020116"),
+        ("22917", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020117"),
+        ("22918", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020118"),
+        ("22919", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020119"),
+        ("22920", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020120"),
+        ("22921", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020121"),
+        ("22922", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020122"),
+        ("22923", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020123"),
+        ("22924", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020124"),
+        ("22925", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020125"),
+        ("22926", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020126"),
+        ("22927", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020127"),
+        ("22928", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020128"),
+        ("22929", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020129"),
+        ("22930", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020130"),
+        ("22931", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020131"),
+        ("22932", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020132"),
+        ("22933", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020133"),
+        ("22934", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020134"),
+        ("22935", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020135"),
+        ("22936", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020136"),
+        ("22937", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020137"),
+        ("22938", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020138"),
+        ("22939", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020139"),
+        ("22940", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020140"),
+        ("22941", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020141"),
+        ("22942", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020142"),
+        ("22943", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020143"),
+        ("22944", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020144"),
+        ("22945", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020145"),
+        ("22946", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020146"),
+        ("22947", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020147"),
+        ("22948", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020148"),
+        ("22949", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020149"),
+        ("22950", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020150"),
+        ("22951", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020151"),
+        ("22952", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020152"),
+        ("22953", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020153"),
+        ("22954", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020154"),
+        ("22955", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020155"),
+        ("22956", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020156"),
+        ("22957", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020157"),
+        ("22958", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020158"),
+        ("22959", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020159"),
+        ("22960", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020160"),
+        ("22961", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020161"),
+        ("22962", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020162"),
+        ("22963", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020163"),
+        ("22964", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020164"),
+        ("22965", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020165"),
+        ("22966", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020166"),
+        ("22967", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020167"),
+        ("22968", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020168"),
+        ("22969", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020169"),
+        ("22970", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020170"),
+        ("22971", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020171"),
+        ("22972", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020172"),
+        ("22973", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020173"),
+        ("22974", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020174"),
+        ("22975", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020175"),
+        ("22976", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020176"),
+        ("22977", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020177"),
+        ("22978", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020178"),
+        ("22979", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020179"),
+        ("22980", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020180"),
+        ("22981", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020181"),
+        ("22982", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020182"),
+        ("22983", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020183"),
+        ("22984", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020184"),
+        ("22985", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020185"),
+        ("22986", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020186"),
+        ("22987", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020187"),
+        ("22988", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020188"),
+        ("22989", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020189"),
+        ("22990", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020190"),
+        ("22991", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020191"),
+        ("22992", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020192"),
+        ("22993", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020193"),
+        ("22994", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020194"),
+        ("22995", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020195"),
+        ("22996", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020196"),
+        ("22997", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020197"),
+        ("22998", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020198"),
+        ("22999", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|0x00020199"),
+        ("23000", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020000"),
+        ("23001", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020001"),
+        ("23002", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020002"),
+        ("23003", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020003"),
+        ("23004", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020004"),
+        ("23005", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020005"),
+        ("23006", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020006"),
+        ("23007", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020007"),
+        ("23008", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020008"),
+        ("23009", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020009"),
+        ("23010", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020010"),
+        ("23011", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020011"),
+        ("23012", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020012"),
+        ("23013", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020013"),
+        ("23014", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020014"),
+        ("23015", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020015"),
+        ("23016", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020016"),
+        ("23017", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020017"),
+        ("23018", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020018"),
+        ("23019", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020019"),
+        ("23020", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020020"),
+        ("23021", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020021"),
+        ("23022", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020022"),
+        ("23023", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020023"),
+        ("23024", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020024"),
+        ("23025", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020025"),
+        ("23026", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020026"),
+        ("23027", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020027"),
+        ("23028", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020028"),
+        ("23029", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020029"),
+        ("23030", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020030"),
+        ("23031", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020031"),
+        ("23032", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020032"),
+        ("23033", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020033"),
+        ("23034", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020034"),
+        ("23035", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020035"),
+        ("23036", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020036"),
+        ("23037", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020037"),
+        ("23038", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020038"),
+        ("23039", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020039"),
+        ("23040", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020040"),
+        ("23041", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020041"),
+        ("23042", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020042"),
+        ("23043", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020043"),
+        ("23044", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020044"),
+        ("23045", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020045"),
+        ("23046", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020046"),
+        ("23047", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020047"),
+        ("23048", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020048"),
+        ("23049", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020049"),
+        ("23050", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020050"),
+        ("23051", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020051"),
+        ("23052", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020052"),
+        ("23053", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020053"),
+        ("23054", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020054"),
+        ("23055", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020055"),
+        ("23056", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020056"),
+        ("23057", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020057"),
+        ("23058", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020058"),
+        ("23059", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020059"),
+        ("23060", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020060"),
+        ("23061", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020061"),
+        ("23062", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020062"),
+        ("23063", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020063"),
+        ("23064", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020064"),
+        ("23065", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020065"),
+        ("23066", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020066"),
+        ("23067", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020067"),
+        ("23068", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020068"),
+        ("23069", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020069"),
+        ("23070", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020070"),
+        ("23071", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020071"),
+        ("23072", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020072"),
+        ("23073", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020073"),
+        ("23074", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020074"),
+        ("23075", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020075"),
+        ("23076", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020076"),
+        ("23077", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020077"),
+        ("23078", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020078"),
+        ("23079", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020079"),
+        ("23080", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020080"),
+        ("23081", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020081"),
+        ("23082", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020082"),
+        ("23083", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020083"),
+        ("23084", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020084"),
+        ("23085", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020085"),
+        ("23086", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020086"),
+        ("23087", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020087"),
+        ("23088", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020088"),
+        ("23089", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020089"),
+        ("23090", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020090"),
+        ("23091", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020091"),
+        ("23092", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020092"),
+        ("23093", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020093"),
+        ("23094", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020094"),
+        ("23095", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020095"),
+        ("23096", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020096"),
+        ("23097", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020097"),
+        ("23098", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020098"),
+        ("23099", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020099"),
+        ("23100", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020100"),
+        ("23101", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020101"),
+        ("23102", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020102"),
+        ("23103", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020103"),
+        ("23104", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020104"),
+        ("23105", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020105"),
+        ("23106", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020106"),
+        ("23107", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020107"),
+        ("23108", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020108"),
+        ("23109", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020109"),
+        ("23110", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020110"),
+        ("23111", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020111"),
+        ("23112", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020112"),
+        ("23113", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020113"),
+        ("23114", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020114"),
+        ("23115", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020115"),
+        ("23116", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020116"),
+        ("23117", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020117"),
+        ("23118", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020118"),
+        ("23119", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020119"),
+        ("23120", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020120"),
+        ("23121", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020121"),
+        ("23122", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020122"),
+        ("23123", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020123"),
+        ("23124", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020124"),
+        ("23125", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020125"),
+        ("23126", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020126"),
+        ("23127", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020127"),
+        ("23128", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020128"),
+        ("23129", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020129"),
+        ("23130", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020130"),
+        ("23131", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020131"),
+        ("23132", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020132"),
+        ("23133", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020133"),
+        ("23134", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020134"),
+        ("23135", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020135"),
+        ("23136", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020136"),
+        ("23137", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020137"),
+        ("23138", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020138"),
+        ("23139", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020139"),
+        ("23140", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020140"),
+        ("23141", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020141"),
+        ("23142", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020142"),
+        ("23143", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020143"),
+        ("23144", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020144"),
+        ("23145", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020145"),
+        ("23146", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020146"),
+        ("23147", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020147"),
+        ("23148", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020148"),
+        ("23149", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020149"),
+        ("23150", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020150"),
+        ("23151", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020151"),
+        ("23152", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020152"),
+        ("23153", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020153"),
+        ("23154", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020154"),
+        ("23155", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020155"),
+        ("23156", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020156"),
+        ("23157", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020157"),
+        ("23158", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020158"),
+        ("23159", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020159"),
+        ("23160", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020160"),
+        ("23161", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020161"),
+        ("23162", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020162"),
+        ("23163", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020163"),
+        ("23164", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020164"),
+        ("23165", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020165"),
+        ("23166", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020166"),
+        ("23167", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020167"),
+        ("23168", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020168"),
+        ("23169", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020169"),
+        ("23170", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020170"),
+        ("23171", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020171"),
+        ("23172", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020172"),
+        ("23173", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020173"),
+        ("23174", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020174"),
+        ("23175", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020175"),
+        ("23176", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020176"),
+        ("23177", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020177"),
+        ("23178", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020178"),
+        ("23179", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020179"),
+        ("23180", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020180"),
+        ("23181", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020181"),
+        ("23182", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020182"),
+        ("23183", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020183"),
+        ("23184", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020184"),
+        ("23185", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020185"),
+        ("23186", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020186"),
+        ("23187", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020187"),
+        ("23188", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020188"),
+        ("23189", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020189"),
+        ("23190", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020190"),
+        ("23191", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020191"),
+        ("23192", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020192"),
+        ("23193", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020193"),
+        ("23194", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020194"),
+        ("23195", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020195"),
+        ("23196", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020196"),
+        ("23197", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020197"),
+        ("23198", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020198"),
+        ("23199", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020199"),
+        ("23200", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020200"),
+        ("23201", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020201"),
+        ("23202", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020202"),
+        ("23203", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020203"),
+        ("23204", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020204"),
+        ("23205", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020205"),
+        ("23206", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020206"),
+        ("23207", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020207"),
+        ("23208", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020208"),
+        ("23209", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020209"),
+        ("23210", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020210"),
+        ("23211", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020211"),
+        ("23212", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020212"),
+        ("23213", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020213"),
+        ("23214", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020214"),
+        ("23215", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020215"),
+        ("23216", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020216"),
+        ("23217", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020217"),
+        ("23218", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020218"),
+        ("23219", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020219"),
+        ("23220", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020220"),
+        ("23221", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020221"),
+        ("23222", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020222"),
+        ("23223", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020223"),
+        ("23224", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020224"),
+        ("23225", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020225"),
+        ("23226", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020226"),
+        ("23227", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020227"),
+        ("23228", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020228"),
+        ("23229", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020229"),
+        ("23230", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020230"),
+        ("23231", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020231"),
+        ("23232", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020232"),
+        ("23233", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020233"),
+        ("23234", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020234"),
+        ("23235", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020235"),
+        ("23236", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020236"),
+        ("23237", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020237"),
+        ("23238", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020238"),
+        ("23239", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020239"),
+        ("23240", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020240"),
+        ("23241", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020241"),
+        ("23242", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020242"),
+        ("23243", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020243"),
+        ("23244", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020244"),
+        ("23245", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020245"),
+        ("23246", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020246"),
+        ("23247", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020247"),
+        ("23248", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020248"),
+        ("23249", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020249"),
+        ("23250", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020250"),
+        ("23251", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020251"),
+        ("23252", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020252"),
+        ("23253", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020253"),
+        ("23254", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020254"),
+        ("23255", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020255"),
+        ("23256", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020256"),
+        ("23257", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020257"),
+        ("23258", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020258"),
+        ("23259", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020259"),
+        ("23260", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020260"),
+        ("23261", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020261"),
+        ("23262", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020262"),
+        ("23263", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020263"),
+        ("23264", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020264"),
+        ("23265", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020265"),
+        ("23266", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020266"),
+        ("23267", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020267"),
+        ("23268", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020268"),
+        ("23269", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020269"),
+        ("23270", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020270"),
+        ("23271", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020271"),
+        ("23272", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020272"),
+        ("23273", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020273"),
+        ("23274", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020274"),
+        ("23275", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020275"),
+        ("23276", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020276"),
+        ("23277", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020277"),
+        ("23278", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020278"),
+        ("23279", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020279"),
+        ("23280", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020280"),
+        ("23281", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020281"),
+        ("23282", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020282"),
+        ("23283", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020283"),
+        ("23284", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020284"),
+        ("23285", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020285"),
+        ("23286", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020286"),
+        ("23287", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020287"),
+        ("23288", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020288"),
+        ("23289", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020289"),
+        ("23290", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020290"),
+        ("23291", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020291"),
+        ("23292", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020292"),
+        ("23293", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020293"),
+        ("23294", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020294"),
+        ("23295", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020295"),
+        ("23296", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020296"),
+        ("23297", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020297"),
+        ("23298", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020298"),
+        ("23299", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020299"),
+        ("23300", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020300"),
+        ("23301", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020301"),
+        ("23302", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020302"),
+        ("23303", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020303"),
+        ("23304", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020304"),
+        ("23305", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020305"),
+        ("23306", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020306"),
+        ("23307", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020307"),
+        ("23308", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020308"),
+        ("23309", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020309"),
+        ("23310", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020310"),
+        ("23311", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020311"),
+        ("23312", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020312"),
+        ("23313", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020313"),
+        ("23314", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020314"),
+        ("23315", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020315"),
+        ("23316", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020316"),
+        ("23317", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020317"),
+        ("23318", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020318"),
+        ("23319", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020319"),
+        ("23320", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020320"),
+        ("23321", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020321"),
+        ("23322", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020322"),
+        ("23323", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020323"),
+        ("23324", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020324"),
+        ("23325", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020325"),
+        ("23326", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020326"),
+        ("23327", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020327"),
+        ("23328", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020328"),
+        ("23329", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020329"),
+        ("23330", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020330"),
+        ("23331", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020331"),
+        ("23332", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020332"),
+        ("23333", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020333"),
+        ("23334", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020334"),
+        ("23335", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020335"),
+        ("23336", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020336"),
+        ("23337", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020337"),
+        ("23338", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020338"),
+        ("23339", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020339"),
+        ("23340", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020340"),
+        ("23341", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020341"),
+        ("23342", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020342"),
+        ("23343", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020343"),
+        ("23344", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020344"),
+        ("23345", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020345"),
+        ("23346", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020346"),
+        ("23347", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020347"),
+        ("23348", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020348"),
+        ("23349", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020349"),
+        ("23350", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020350"),
+        ("23351", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020351"),
+        ("23352", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020352"),
+        ("23353", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020353"),
+        ("23354", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020354"),
+        ("23355", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020355"),
+        ("23356", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020356"),
+        ("23357", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020357"),
+        ("23358", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020358"),
+        ("23359", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020359"),
+        ("23360", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020360"),
+        ("23361", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020361"),
+        ("23362", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020362"),
+        ("23363", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020363"),
+        ("23364", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020364"),
+        ("23365", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020365"),
+        ("23366", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020366"),
+        ("23367", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020367"),
+        ("23368", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020368"),
+        ("23369", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020369"),
+        ("23370", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020370"),
+        ("23371", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020371"),
+        ("23372", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020372"),
+        ("23373", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020373"),
+        ("23374", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020374"),
+        ("23375", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020375"),
+        ("23376", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020376"),
+        ("23377", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020377"),
+        ("23378", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020378"),
+        ("23379", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020379"),
+        ("23380", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020380"),
+        ("23381", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020381"),
+        ("23382", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020382"),
+        ("23383", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020383"),
+        ("23384", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020384"),
+        ("23385", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020385"),
+        ("23386", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020386"),
+        ("23387", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020387"),
+        ("23388", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020388"),
+        ("23389", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020389"),
+        ("23390", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020390"),
+        ("23391", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020391"),
+        ("23392", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020392"),
+        ("23393", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020393"),
+        ("23394", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020394"),
+        ("23395", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020395"),
+        ("23396", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020396"),
+        ("23397", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020397"),
+        ("23398", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020398"),
+        ("23399", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020399"),
+        ("23400", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020400"),
+        ("23401", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020401"),
+        ("23402", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020402"),
+        ("23403", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020403"),
+        ("23404", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020404"),
+        ("23405", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020405"),
+        ("23406", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020406"),
+        ("23407", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020407"),
+        ("23408", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020408"),
+        ("23409", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020409"),
+        ("23410", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020410"),
+        ("23411", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020411"),
+        ("23412", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020412"),
+        ("23413", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020413"),
+        ("23414", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020414"),
+        ("23415", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020415"),
+        ("23416", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020416"),
+        ("23417", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020417"),
+        ("23418", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020418"),
+        ("23419", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020419"),
+        ("23420", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020420"),
+        ("23421", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020421"),
+        ("23422", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020422"),
+        ("23423", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020423"),
+        ("23424", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020424"),
+        ("23425", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020425"),
+        ("23426", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020426"),
+        ("23427", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020427"),
+        ("23428", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020428"),
+        ("23429", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020429"),
+        ("23430", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020430"),
+        ("23431", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020431"),
+        ("23432", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020432"),
+        ("23433", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020433"),
+        ("23434", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020434"),
+        ("23435", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020435"),
+        ("23436", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020436"),
+        ("23437", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020437"),
+        ("23438", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020438"),
+        ("23439", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020439"),
+        ("23440", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020440"),
+        ("23441", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020441"),
+        ("23442", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020442"),
+        ("23443", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020443"),
+        ("23444", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020444"),
+        ("23445", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020445"),
+        ("23446", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020446"),
+        ("23447", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020447"),
+        ("23448", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020448"),
+        ("23449", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020449"),
+        ("23450", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020450"),
+        ("23451", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020451"),
+        ("23452", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020452"),
+        ("23453", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020453"),
+        ("23454", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020454"),
+        ("23455", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020455"),
+        ("23456", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020456"),
+        ("23457", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020457"),
+        ("23458", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020458"),
+        ("23459", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020459"),
+        ("23460", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020460"),
+        ("23461", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020461"),
+        ("23462", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020462"),
+        ("23463", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020463"),
+        ("23464", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020464"),
+        ("23465", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020465"),
+        ("23466", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020466"),
+        ("23467", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020467"),
+        ("23468", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020468"),
+        ("23469", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020469"),
+        ("23470", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020470"),
+        ("23471", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020471"),
+        ("23472", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020472"),
+        ("23473", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020473"),
+        ("23474", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020474"),
+        ("23475", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020475"),
+        ("23476", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020476"),
+        ("23477", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020477"),
+        ("23478", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020478"),
+        ("23479", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020479"),
+        ("23480", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020480"),
+        ("23481", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020481"),
+        ("23482", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020482"),
+        ("23483", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020483"),
+        ("23484", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020484"),
+        ("23485", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020485"),
+        ("23486", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020486"),
+        ("23487", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020487"),
+        ("23488", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020488"),
+        ("23489", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020489"),
+        ("23490", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020490"),
+        ("23491", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020491"),
+        ("23492", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020492"),
+        ("23493", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020493"),
+        ("23494", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020494"),
+        ("23495", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020495"),
+        ("23496", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020496"),
+        ("23497", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020497"),
+        ("23498", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020498"),
+        ("23499", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020499"),
+        ("23500", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020500"),
+        ("23501", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020501"),
+        ("23502", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020502"),
+        ("23503", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020503"),
+        ("23504", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020504"),
+        ("23505", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020505"),
+        ("23506", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020506"),
+        ("23507", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020507"),
+        ("23508", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020508"),
+        ("23509", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020509"),
+        ("23510", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020510"),
+        ("23511", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020511"),
+        ("23512", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020512"),
+        ("23513", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020513"),
+        ("23514", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020514"),
+        ("23515", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020515"),
+        ("23516", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020516"),
+        ("23517", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020517"),
+        ("23518", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020518"),
+        ("23519", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020519"),
+        ("23520", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020520"),
+        ("23521", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020521"),
+        ("23522", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020522"),
+        ("23523", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020523"),
+        ("23524", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020524"),
+        ("23525", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020525"),
+        ("23526", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020526"),
+        ("23527", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020527"),
+        ("23528", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020528"),
+        ("23529", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020529"),
+        ("23530", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020530"),
+        ("23531", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020531"),
+        ("23532", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020532"),
+        ("23533", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020533"),
+        ("23534", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020534"),
+        ("23535", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020535"),
+        ("23536", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020536"),
+        ("23537", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020537"),
+        ("23538", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020538"),
+        ("23539", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020539"),
+        ("23540", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020540"),
+        ("23541", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020541"),
+        ("23542", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020542"),
+        ("23543", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020543"),
+        ("23544", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020544"),
+        ("23545", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020545"),
+        ("23546", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020546"),
+        ("23547", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020547"),
+        ("23548", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020548"),
+        ("23549", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020549"),
+        ("23550", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020550"),
+        ("23551", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020551"),
+        ("23552", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020552"),
+        ("23553", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020553"),
+        ("23554", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020554"),
+        ("23555", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020555"),
+        ("23556", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020556"),
+        ("23557", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020557"),
+        ("23558", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020558"),
+        ("23559", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020559"),
+        ("23560", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020560"),
+        ("23561", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020561"),
+        ("23562", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020562"),
+        ("23563", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020563"),
+        ("23564", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020564"),
+        ("23565", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020565"),
+        ("23566", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020566"),
+        ("23567", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020567"),
+        ("23568", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020568"),
+        ("23569", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020569"),
+        ("23570", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020570"),
+        ("23571", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020571"),
+        ("23572", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020572"),
+        ("23573", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020573"),
+        ("23574", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020574"),
+        ("23575", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020575"),
+        ("23576", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020576"),
+        ("23577", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020577"),
+        ("23578", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020578"),
+        ("23579", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020579"),
+        ("23580", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020580"),
+        ("23581", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020581"),
+        ("23582", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020582"),
+        ("23583", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020583"),
+        ("23584", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020584"),
+        ("23585", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020585"),
+        ("23586", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020586"),
+        ("23587", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020587"),
+        ("23588", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020588"),
+        ("23589", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020589"),
+        ("23590", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020590"),
+        ("23591", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020591"),
+        ("23592", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020592"),
+        ("23593", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020593"),
+        ("23594", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020594"),
+        ("23595", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020595"),
+        ("23596", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020596"),
+        ("23597", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020597"),
+        ("23598", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020598"),
+        ("23599", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020599"),
+        ("23600", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020600"),
+        ("23601", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020601"),
+        ("23602", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020602"),
+        ("23603", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020603"),
+        ("23604", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020604"),
+        ("23605", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020605"),
+        ("23606", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020606"),
+        ("23607", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020607"),
+        ("23608", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020608"),
+        ("23609", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020609"),
+        ("23610", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020610"),
+        ("23611", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020611"),
+        ("23612", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020612"),
+        ("23613", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020613"),
+        ("23614", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020614"),
+        ("23615", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020615"),
+        ("23616", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020616"),
+        ("23617", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020617"),
+        ("23618", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020618"),
+        ("23619", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020619"),
+        ("23620", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020620"),
+        ("23621", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020621"),
+        ("23622", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020622"),
+        ("23623", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020623"),
+        ("23624", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020624"),
+        ("23625", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020625"),
+        ("23626", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020626"),
+        ("23627", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020627"),
+        ("23628", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020628"),
+        ("23629", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020629"),
+        ("23630", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020630"),
+        ("23631", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020631"),
+        ("23632", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020632"),
+        ("23633", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020633"),
+        ("23634", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020634"),
+        ("23635", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020635"),
+        ("23636", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020636"),
+        ("23637", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020637"),
+        ("23638", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020638"),
+        ("23639", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020639"),
+        ("23640", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020640"),
+        ("23641", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020641"),
+        ("23642", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020642"),
+        ("23643", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020643"),
+        ("23644", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020644"),
+        ("23645", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020645"),
+        ("23646", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020646"),
+        ("23647", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020647"),
+        ("23648", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020648"),
+        ("23649", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020649"),
+        ("23650", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020650"),
+        ("23651", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020651"),
+        ("23652", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020652"),
+        ("23653", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020653"),
+        ("23654", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020654"),
+        ("23655", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020655"),
+        ("23656", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020656"),
+        ("23657", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020657"),
+        ("23658", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020658"),
+        ("23659", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020659"),
+        ("23660", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020660"),
+        ("23661", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020661"),
+        ("23662", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020662"),
+        ("23663", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020663"),
+        ("23664", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020664"),
+        ("23665", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020665"),
+        ("23666", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020666"),
+        ("23667", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020667"),
+        ("23668", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020668"),
+        ("23669", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020669"),
+        ("23670", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020670"),
+        ("23671", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020671"),
+        ("23672", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020672"),
+        ("23673", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020673"),
+        ("23674", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020674"),
+        ("23675", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020675"),
+        ("23676", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020676"),
+        ("23677", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020677"),
+        ("23678", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020678"),
+        ("23679", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020679"),
+        ("23680", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020680"),
+        ("23681", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020681"),
+        ("23682", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020682"),
+        ("23683", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020683"),
+        ("23684", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020684"),
+        ("23685", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020685"),
+        ("23686", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020686"),
+        ("23687", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020687"),
+        ("23688", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020688"),
+        ("23689", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020689"),
+        ("23690", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020690"),
+        ("23691", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020691"),
+        ("23692", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020692"),
+        ("23693", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020693"),
+        ("23694", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020694"),
+        ("23695", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020695"),
+        ("23696", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020696"),
+        ("23697", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020697"),
+        ("23698", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020698"),
+        ("23699", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020699"),
+        ("23700", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020700"),
+        ("23701", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020701"),
+        ("23702", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020702"),
+        ("23703", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020703"),
+        ("23704", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020704"),
+        ("23705", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020705"),
+        ("23706", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020706"),
+        ("23707", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020707"),
+        ("23708", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020708"),
+        ("23709", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020709"),
+        ("23710", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020710"),
+        ("23711", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020711"),
+        ("23712", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020712"),
+        ("23713", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020713"),
+        ("23714", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020714"),
+        ("23715", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020715"),
+        ("23716", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020716"),
+        ("23717", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020717"),
+        ("23718", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020718"),
+        ("23719", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020719"),
+        ("23720", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020720"),
+        ("23721", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020721"),
+        ("23722", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020722"),
+        ("23723", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020723"),
+        ("23724", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020724"),
+        ("23725", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020725"),
+        ("23726", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020726"),
+        ("23727", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020727"),
+        ("23728", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020728"),
+        ("23729", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020729"),
+        ("23730", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020730"),
+        ("23731", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020731"),
+        ("23732", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020732"),
+        ("23733", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020733"),
+        ("23734", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020734"),
+        ("23735", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020735"),
+        ("23736", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020736"),
+        ("23737", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020737"),
+        ("23738", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020738"),
+        ("23739", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020739"),
+        ("23740", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020740"),
+        ("23741", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020741"),
+        ("23742", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020742"),
+        ("23743", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020743"),
+        ("23744", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020744"),
+        ("23745", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020745"),
+        ("23746", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020746"),
+        ("23747", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020747"),
+        ("23748", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020748"),
+        ("23749", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020749"),
+        ("23750", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020750"),
+        ("23751", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020751"),
+        ("23752", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020752"),
+        ("23753", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020753"),
+        ("23754", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020754"),
+        ("23755", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020755"),
+        ("23756", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020756"),
+        ("23757", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020757"),
+        ("23758", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020758"),
+        ("23759", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020759"),
+        ("23760", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020760"),
+        ("23761", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020761"),
+        ("23762", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020762"),
+        ("23763", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020763"),
+        ("23764", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020764"),
+        ("23765", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020765"),
+        ("23766", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020766"),
+        ("23767", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020767"),
+        ("23768", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020768"),
+        ("23769", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020769"),
+        ("23770", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020770"),
+        ("23771", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020771"),
+        ("23772", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020772"),
+        ("23773", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020773"),
+        ("23774", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020774"),
+        ("23775", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020775"),
+        ("23776", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020776"),
+        ("23777", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020777"),
+        ("23778", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020778"),
+        ("23779", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020779"),
+        ("23780", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020780"),
+        ("23781", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020781"),
+        ("23782", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020782"),
+        ("23783", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020783"),
+        ("23784", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020784"),
+        ("23785", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020785"),
+        ("23786", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020786"),
+        ("23787", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020787"),
+        ("23788", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020788"),
+        ("23789", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020789"),
+        ("23790", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020790"),
+        ("23791", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020791"),
+        ("23792", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020792"),
+        ("23793", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020793"),
+        ("23794", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020794"),
+        ("23795", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020795"),
+        ("23796", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020796"),
+        ("23797", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020797"),
+        ("23798", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020798"),
+        ("23799", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020799"),
+        ("23800", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020000"),
+        ("23801", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020001"),
+        ("23802", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020002"),
+        ("23803", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020003"),
+        ("23804", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020004"),
+        ("23805", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020005"),
+        ("23806", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020006"),
+        ("23807", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020007"),
+        ("23808", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020008"),
+        ("23809", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020009"),
+        ("23810", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020010"),
+        ("23811", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020011"),
+        ("23812", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020012"),
+        ("23813", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020013"),
+        ("23814", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020014"),
+        ("23815", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020015"),
+        ("23816", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020016"),
+        ("23817", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020017"),
+        ("23818", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020018"),
+        ("23819", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020019"),
+        ("23820", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020020"),
+        ("23821", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020021"),
+        ("23822", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020022"),
+        ("23823", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020023"),
+        ("23824", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020024"),
+        ("23825", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020025"),
+        ("23826", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020026"),
+        ("23827", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020027"),
+        ("23828", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020028"),
+        ("23829", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020029"),
+        ("23830", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020030"),
+        ("23831", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020031"),
+        ("23832", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020032"),
+        ("23833", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020033"),
+        ("23834", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020034"),
+        ("23835", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020035"),
+        ("23836", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020036"),
+        ("23837", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020037"),
+        ("23838", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020038"),
+        ("23839", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020039"),
+        ("23840", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020040"),
+        ("23841", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020041"),
+        ("23842", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020042"),
+        ("23843", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020043"),
+        ("23844", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020044"),
+        ("23845", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020045"),
+        ("23846", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020046"),
+        ("23847", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020047"),
+        ("23848", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020048"),
+        ("23849", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020049"),
+        ("23850", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020050"),
+        ("23851", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020051"),
+        ("23852", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020052"),
+        ("23853", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020053"),
+        ("23854", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020054"),
+        ("23855", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020055"),
+        ("23856", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020056"),
+        ("23857", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020057"),
+        ("23858", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020058"),
+        ("23859", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020059"),
+        ("23860", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020060"),
+        ("23861", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020061"),
+        ("23862", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020062"),
+        ("23863", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020063"),
+        ("23864", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020064"),
+        ("23865", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020065"),
+        ("23866", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020066"),
+        ("23867", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020067"),
+        ("23868", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020068"),
+        ("23869", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020069"),
+        ("23870", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020070"),
+        ("23871", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020071"),
+        ("23872", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020072"),
+        ("23873", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020073"),
+        ("23874", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020074"),
+        ("23875", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020075"),
+        ("23876", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020076"),
+        ("23877", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020077"),
+        ("23878", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020078"),
+        ("23879", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020079"),
+        ("23880", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020080"),
+        ("23881", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020081"),
+        ("23882", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020082"),
+        ("23883", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020083"),
+        ("23884", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020084"),
+        ("23885", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020085"),
+        ("23886", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020086"),
+        ("23887", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020087"),
+        ("23888", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020088"),
+        ("23889", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020089"),
+        ("23890", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020090"),
+        ("23891", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020091"),
+        ("23892", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020092"),
+        ("23893", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020093"),
+        ("23894", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020094"),
+        ("23895", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020095"),
+        ("23896", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020096"),
+        ("23897", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020097"),
+        ("23898", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020098"),
+        ("23899", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020099"),
+        ("23900", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020100"),
+        ("23901", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020101"),
+        ("23902", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020102"),
+        ("23903", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020103"),
+        ("23904", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020104"),
+        ("23905", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020105"),
+        ("23906", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020106"),
+        ("23907", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020107"),
+        ("23908", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020108"),
+        ("23909", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020109"),
+        ("23910", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020110"),
+        ("23911", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020111"),
+        ("23912", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020112"),
+        ("23913", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020113"),
+        ("23914", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020114"),
+        ("23915", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020115"),
+        ("23916", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020116"),
+        ("23917", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020117"),
+        ("23918", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020118"),
+        ("23919", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020119"),
+        ("23920", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020120"),
+        ("23921", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020121"),
+        ("23922", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020122"),
+        ("23923", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020123"),
+        ("23924", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020124"),
+        ("23925", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020125"),
+        ("23926", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020126"),
+        ("23927", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020127"),
+        ("23928", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020128"),
+        ("23929", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020129"),
+        ("23930", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020130"),
+        ("23931", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020131"),
+        ("23932", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020132"),
+        ("23933", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020133"),
+        ("23934", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020134"),
+        ("23935", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020135"),
+        ("23936", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020136"),
+        ("23937", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020137"),
+        ("23938", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020138"),
+        ("23939", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020139"),
+        ("23940", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020140"),
+        ("23941", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020141"),
+        ("23942", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020142"),
+        ("23943", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020143"),
+        ("23944", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020144"),
+        ("23945", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020145"),
+        ("23946", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020146"),
+        ("23947", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020147"),
+        ("23948", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020148"),
+        ("23949", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020149"),
+        ("23950", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020150"),
+        ("23951", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020151"),
+        ("23952", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020152"),
+        ("23953", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020153"),
+        ("23954", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020154"),
+        ("23955", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020155"),
+        ("23956", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020156"),
+        ("23957", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020157"),
+        ("23958", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020158"),
+        ("23959", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020159"),
+        ("23960", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020160"),
+        ("23961", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020161"),
+        ("23962", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020162"),
+        ("23963", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020163"),
+        ("23964", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020164"),
+        ("23965", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020165"),
+        ("23966", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020166"),
+        ("23967", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020167"),
+        ("23968", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020168"),
+        ("23969", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020169"),
+        ("23970", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020170"),
+        ("23971", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020171"),
+        ("23972", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020172"),
+        ("23973", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020173"),
+        ("23974", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020174"),
+        ("23975", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020175"),
+        ("23976", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020176"),
+        ("23977", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020177"),
+        ("23978", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020178"),
+        ("23979", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020179"),
+        ("23980", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020180"),
+        ("23981", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020181"),
+        ("23982", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020182"),
+        ("23983", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020183"),
+        ("23984", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020184"),
+        ("23985", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020185"),
+        ("23986", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020186"),
+        ("23987", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020187"),
+        ("23988", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020188"),
+        ("23989", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020189"),
+        ("23990", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020190"),
+        ("23991", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020191"),
+        ("23992", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020192"),
+        ("23993", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020193"),
+        ("23994", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020194"),
+        ("23995", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020195"),
+        ("23996", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020196"),
+        ("23997", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020197"),
+        ("23998", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020198"),
+        ("23999", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|0x00020199"),
+        ("24000", "CSIDL_FLAG_DONT_VERIFY|0x00020000"),
+        ("24001", "CSIDL_FLAG_DONT_VERIFY|0x00020001"),
+        ("24002", "CSIDL_FLAG_DONT_VERIFY|0x00020002"),
+        ("24003", "CSIDL_FLAG_DONT_VERIFY|0x00020003"),
+        ("24004", "CSIDL_FLAG_DONT_VERIFY|0x00020004"),
+        ("24005", "CSIDL_FLAG_DONT_VERIFY|0x00020005"),
+        ("24006", "CSIDL_FLAG_DONT_VERIFY|0x00020006"),
+        ("24007", "CSIDL_FLAG_DONT_VERIFY|0x00020007"),
+        ("24008", "CSIDL_FLAG_DONT_VERIFY|0x00020008"),
+        ("24009", "CSIDL_FLAG_DONT_VERIFY|0x00020009"),
+        ("24010", "CSIDL_FLAG_DONT_VERIFY|0x00020010"),
+        ("24011", "CSIDL_FLAG_DONT_VERIFY|0x00020011"),
+        ("24012", "CSIDL_FLAG_DONT_VERIFY|0x00020012"),
+        ("24013", "CSIDL_FLAG_DONT_VERIFY|0x00020013"),
+        ("24014", "CSIDL_FLAG_DONT_VERIFY|0x00020014"),
+        ("24015", "CSIDL_FLAG_DONT_VERIFY|0x00020015"),
+        ("24016", "CSIDL_FLAG_DONT_VERIFY|0x00020016"),
+        ("24017", "CSIDL_FLAG_DONT_VERIFY|0x00020017"),
+        ("24018", "CSIDL_FLAG_DONT_VERIFY|0x00020018"),
+        ("24019", "CSIDL_FLAG_DONT_VERIFY|0x00020019"),
+        ("24020", "CSIDL_FLAG_DONT_VERIFY|0x00020020"),
+        ("24021", "CSIDL_FLAG_DONT_VERIFY|0x00020021"),
+        ("24022", "CSIDL_FLAG_DONT_VERIFY|0x00020022"),
+        ("24023", "CSIDL_FLAG_DONT_VERIFY|0x00020023"),
+        ("24024", "CSIDL_FLAG_DONT_VERIFY|0x00020024"),
+        ("24025", "CSIDL_FLAG_DONT_VERIFY|0x00020025"),
+        ("24026", "CSIDL_FLAG_DONT_VERIFY|0x00020026"),
+        ("24027", "CSIDL_FLAG_DONT_VERIFY|0x00020027"),
+        ("24028", "CSIDL_FLAG_DONT_VERIFY|0x00020028"),
+        ("24029", "CSIDL_FLAG_DONT_VERIFY|0x00020029"),
+        ("24030", "CSIDL_FLAG_DONT_VERIFY|0x00020030"),
+        ("24031", "CSIDL_FLAG_DONT_VERIFY|0x00020031"),
+        ("24032", "CSIDL_FLAG_DONT_VERIFY|0x00020032"),
+        ("24033", "CSIDL_FLAG_DONT_VERIFY|0x00020033"),
+        ("24034", "CSIDL_FLAG_DONT_VERIFY|0x00020034"),
+        ("24035", "CSIDL_FLAG_DONT_VERIFY|0x00020035"),
+        ("24036", "CSIDL_FLAG_DONT_VERIFY|0x00020036"),
+        ("24037", "CSIDL_FLAG_DONT_VERIFY|0x00020037"),
+        ("24038", "CSIDL_FLAG_DONT_VERIFY|0x00020038"),
+        ("24039", "CSIDL_FLAG_DONT_VERIFY|0x00020039"),
+        ("24040", "CSIDL_FLAG_DONT_VERIFY|0x00020040"),
+        ("24041", "CSIDL_FLAG_DONT_VERIFY|0x00020041"),
+        ("24042", "CSIDL_FLAG_DONT_VERIFY|0x00020042"),
+        ("24043", "CSIDL_FLAG_DONT_VERIFY|0x00020043"),
+        ("24044", "CSIDL_FLAG_DONT_VERIFY|0x00020044"),
+        ("24045", "CSIDL_FLAG_DONT_VERIFY|0x00020045"),
+        ("24046", "CSIDL_FLAG_DONT_VERIFY|0x00020046"),
+        ("24047", "CSIDL_FLAG_DONT_VERIFY|0x00020047"),
+        ("24048", "CSIDL_FLAG_DONT_VERIFY|0x00020048"),
+        ("24049", "CSIDL_FLAG_DONT_VERIFY|0x00020049"),
+        ("24050", "CSIDL_FLAG_DONT_VERIFY|0x00020050"),
+        ("24051", "CSIDL_FLAG_DONT_VERIFY|0x00020051"),
+        ("24052", "CSIDL_FLAG_DONT_VERIFY|0x00020052"),
+        ("24053", "CSIDL_FLAG_DONT_VERIFY|0x00020053"),
+        ("24054", "CSIDL_FLAG_DONT_VERIFY|0x00020054"),
+        ("24055", "CSIDL_FLAG_DONT_VERIFY|0x00020055"),
+        ("24056", "CSIDL_FLAG_DONT_VERIFY|0x00020056"),
+        ("24057", "CSIDL_FLAG_DONT_VERIFY|0x00020057"),
+        ("24058", "CSIDL_FLAG_DONT_VERIFY|0x00020058"),
+        ("24059", "CSIDL_FLAG_DONT_VERIFY|0x00020059"),
+        ("24060", "CSIDL_FLAG_DONT_VERIFY|0x00020060"),
+        ("24061", "CSIDL_FLAG_DONT_VERIFY|0x00020061"),
+        ("24062", "CSIDL_FLAG_DONT_VERIFY|0x00020062"),
+        ("24063", "CSIDL_FLAG_DONT_VERIFY|0x00020063"),
+        ("24064", "CSIDL_FLAG_DONT_VERIFY|0x00020064"),
+        ("24065", "CSIDL_FLAG_DONT_VERIFY|0x00020065"),
+        ("24066", "CSIDL_FLAG_DONT_VERIFY|0x00020066"),
+        ("24067", "CSIDL_FLAG_DONT_VERIFY|0x00020067"),
+        ("24068", "CSIDL_FLAG_DONT_VERIFY|0x00020068"),
+        ("24069", "CSIDL_FLAG_DONT_VERIFY|0x00020069"),
+        ("24070", "CSIDL_FLAG_DONT_VERIFY|0x00020070"),
+        ("24071", "CSIDL_FLAG_DONT_VERIFY|0x00020071"),
+        ("24072", "CSIDL_FLAG_DONT_VERIFY|0x00020072"),
+        ("24073", "CSIDL_FLAG_DONT_VERIFY|0x00020073"),
+        ("24074", "CSIDL_FLAG_DONT_VERIFY|0x00020074"),
+        ("24075", "CSIDL_FLAG_DONT_VERIFY|0x00020075"),
+        ("24076", "CSIDL_FLAG_DONT_VERIFY|0x00020076"),
+        ("24077", "CSIDL_FLAG_DONT_VERIFY|0x00020077"),
+        ("24078", "CSIDL_FLAG_DONT_VERIFY|0x00020078"),
+        ("24079", "CSIDL_FLAG_DONT_VERIFY|0x00020079"),
+        ("24080", "CSIDL_FLAG_DONT_VERIFY|0x00020080"),
+        ("24081", "CSIDL_FLAG_DONT_VERIFY|0x00020081"),
+        ("24082", "CSIDL_FLAG_DONT_VERIFY|0x00020082"),
+        ("24083", "CSIDL_FLAG_DONT_VERIFY|0x00020083"),
+        ("24084", "CSIDL_FLAG_DONT_VERIFY|0x00020084"),
+        ("24085", "CSIDL_FLAG_DONT_VERIFY|0x00020085"),
+        ("24086", "CSIDL_FLAG_DONT_VERIFY|0x00020086"),
+        ("24087", "CSIDL_FLAG_DONT_VERIFY|0x00020087"),
+        ("24088", "CSIDL_FLAG_DONT_VERIFY|0x00020088"),
+        ("24089", "CSIDL_FLAG_DONT_VERIFY|0x00020089"),
+        ("24090", "CSIDL_FLAG_DONT_VERIFY|0x00020090"),
+        ("24091", "CSIDL_FLAG_DONT_VERIFY|0x00020091"),
+        ("24092", "CSIDL_FLAG_DONT_VERIFY|0x00020092"),
+        ("24093", "CSIDL_FLAG_DONT_VERIFY|0x00020093"),
+        ("24094", "CSIDL_FLAG_DONT_VERIFY|0x00020094"),
+        ("24095", "CSIDL_FLAG_DONT_VERIFY|0x00020095"),
+        ("24096", "CSIDL_FLAG_DONT_VERIFY|0x00020096"),
+        ("24097", "CSIDL_FLAG_DONT_VERIFY|0x00020097"),
+        ("24098", "CSIDL_FLAG_DONT_VERIFY|0x00020098"),
+        ("24099", "CSIDL_FLAG_DONT_VERIFY|0x00020099"),
+        ("24100", "CSIDL_FLAG_DONT_VERIFY|0x00020100"),
+        ("24101", "CSIDL_FLAG_DONT_VERIFY|0x00020101"),
+        ("24102", "CSIDL_FLAG_DONT_VERIFY|0x00020102"),
+        ("24103", "CSIDL_FLAG_DONT_VERIFY|0x00020103"),
+        ("24104", "CSIDL_FLAG_DONT_VERIFY|0x00020104"),
+        ("24105", "CSIDL_FLAG_DONT_VERIFY|0x00020105"),
+        ("24106", "CSIDL_FLAG_DONT_VERIFY|0x00020106"),
+        ("24107", "CSIDL_FLAG_DONT_VERIFY|0x00020107"),
+        ("24108", "CSIDL_FLAG_DONT_VERIFY|0x00020108"),
+        ("24109", "CSIDL_FLAG_DONT_VERIFY|0x00020109"),
+        ("24110", "CSIDL_FLAG_DONT_VERIFY|0x00020110"),
+        ("24111", "CSIDL_FLAG_DONT_VERIFY|0x00020111"),
+        ("24112", "CSIDL_FLAG_DONT_VERIFY|0x00020112"),
+        ("24113", "CSIDL_FLAG_DONT_VERIFY|0x00020113"),
+        ("24114", "CSIDL_FLAG_DONT_VERIFY|0x00020114"),
+        ("24115", "CSIDL_FLAG_DONT_VERIFY|0x00020115"),
+        ("24116", "CSIDL_FLAG_DONT_VERIFY|0x00020116"),
+        ("24117", "CSIDL_FLAG_DONT_VERIFY|0x00020117"),
+        ("24118", "CSIDL_FLAG_DONT_VERIFY|0x00020118"),
+        ("24119", "CSIDL_FLAG_DONT_VERIFY|0x00020119"),
+        ("24120", "CSIDL_FLAG_DONT_VERIFY|0x00020120"),
+        ("24121", "CSIDL_FLAG_DONT_VERIFY|0x00020121"),
+        ("24122", "CSIDL_FLAG_DONT_VERIFY|0x00020122"),
+        ("24123", "CSIDL_FLAG_DONT_VERIFY|0x00020123"),
+        ("24124", "CSIDL_FLAG_DONT_VERIFY|0x00020124"),
+        ("24125", "CSIDL_FLAG_DONT_VERIFY|0x00020125"),
+        ("24126", "CSIDL_FLAG_DONT_VERIFY|0x00020126"),
+        ("24127", "CSIDL_FLAG_DONT_VERIFY|0x00020127"),
+        ("24128", "CSIDL_FLAG_DONT_VERIFY|0x00020128"),
+        ("24129", "CSIDL_FLAG_DONT_VERIFY|0x00020129"),
+        ("24130", "CSIDL_FLAG_DONT_VERIFY|0x00020130"),
+        ("24131", "CSIDL_FLAG_DONT_VERIFY|0x00020131"),
+        ("24132", "CSIDL_FLAG_DONT_VERIFY|0x00020132"),
+        ("24133", "CSIDL_FLAG_DONT_VERIFY|0x00020133"),
+        ("24134", "CSIDL_FLAG_DONT_VERIFY|0x00020134"),
+        ("24135", "CSIDL_FLAG_DONT_VERIFY|0x00020135"),
+        ("24136", "CSIDL_FLAG_DONT_VERIFY|0x00020136"),
+        ("24137", "CSIDL_FLAG_DONT_VERIFY|0x00020137"),
+        ("24138", "CSIDL_FLAG_DONT_VERIFY|0x00020138"),
+        ("24139", "CSIDL_FLAG_DONT_VERIFY|0x00020139"),
+        ("24140", "CSIDL_FLAG_DONT_VERIFY|0x00020140"),
+        ("24141", "CSIDL_FLAG_DONT_VERIFY|0x00020141"),
+        ("24142", "CSIDL_FLAG_DONT_VERIFY|0x00020142"),
+        ("24143", "CSIDL_FLAG_DONT_VERIFY|0x00020143"),
+        ("24144", "CSIDL_FLAG_DONT_VERIFY|0x00020144"),
+        ("24145", "CSIDL_FLAG_DONT_VERIFY|0x00020145"),
+        ("24146", "CSIDL_FLAG_DONT_VERIFY|0x00020146"),
+        ("24147", "CSIDL_FLAG_DONT_VERIFY|0x00020147"),
+        ("24148", "CSIDL_FLAG_DONT_VERIFY|0x00020148"),
+        ("24149", "CSIDL_FLAG_DONT_VERIFY|0x00020149"),
+        ("24150", "CSIDL_FLAG_DONT_VERIFY|0x00020150"),
+        ("24151", "CSIDL_FLAG_DONT_VERIFY|0x00020151"),
+        ("24152", "CSIDL_FLAG_DONT_VERIFY|0x00020152"),
+        ("24153", "CSIDL_FLAG_DONT_VERIFY|0x00020153"),
+        ("24154", "CSIDL_FLAG_DONT_VERIFY|0x00020154"),
+        ("24155", "CSIDL_FLAG_DONT_VERIFY|0x00020155"),
+        ("24156", "CSIDL_FLAG_DONT_VERIFY|0x00020156"),
+        ("24157", "CSIDL_FLAG_DONT_VERIFY|0x00020157"),
+        ("24158", "CSIDL_FLAG_DONT_VERIFY|0x00020158"),
+        ("24159", "CSIDL_FLAG_DONT_VERIFY|0x00020159"),
+        ("24160", "CSIDL_FLAG_DONT_VERIFY|0x00020160"),
+        ("24161", "CSIDL_FLAG_DONT_VERIFY|0x00020161"),
+        ("24162", "CSIDL_FLAG_DONT_VERIFY|0x00020162"),
+        ("24163", "CSIDL_FLAG_DONT_VERIFY|0x00020163"),
+        ("24164", "CSIDL_FLAG_DONT_VERIFY|0x00020164"),
+        ("24165", "CSIDL_FLAG_DONT_VERIFY|0x00020165"),
+        ("24166", "CSIDL_FLAG_DONT_VERIFY|0x00020166"),
+        ("24167", "CSIDL_FLAG_DONT_VERIFY|0x00020167"),
+        ("24168", "CSIDL_FLAG_DONT_VERIFY|0x00020168"),
+        ("24169", "CSIDL_FLAG_DONT_VERIFY|0x00020169"),
+        ("24170", "CSIDL_FLAG_DONT_VERIFY|0x00020170"),
+        ("24171", "CSIDL_FLAG_DONT_VERIFY|0x00020171"),
+        ("24172", "CSIDL_FLAG_DONT_VERIFY|0x00020172"),
+        ("24173", "CSIDL_FLAG_DONT_VERIFY|0x00020173"),
+        ("24174", "CSIDL_FLAG_DONT_VERIFY|0x00020174"),
+        ("24175", "CSIDL_FLAG_DONT_VERIFY|0x00020175"),
+        ("24176", "CSIDL_FLAG_DONT_VERIFY|0x00020176"),
+        ("24177", "CSIDL_FLAG_DONT_VERIFY|0x00020177"),
+        ("24178", "CSIDL_FLAG_DONT_VERIFY|0x00020178"),
+        ("24179", "CSIDL_FLAG_DONT_VERIFY|0x00020179"),
+        ("24180", "CSIDL_FLAG_DONT_VERIFY|0x00020180"),
+        ("24181", "CSIDL_FLAG_DONT_VERIFY|0x00020181"),
+        ("24182", "CSIDL_FLAG_DONT_VERIFY|0x00020182"),
+        ("24183", "CSIDL_FLAG_DONT_VERIFY|0x00020183"),
+        ("24184", "CSIDL_FLAG_DONT_VERIFY|0x00020184"),
+        ("24185", "CSIDL_FLAG_DONT_VERIFY|0x00020185"),
+        ("24186", "CSIDL_FLAG_DONT_VERIFY|0x00020186"),
+        ("24187", "CSIDL_FLAG_DONT_VERIFY|0x00020187"),
+        ("24188", "CSIDL_FLAG_DONT_VERIFY|0x00020188"),
+        ("24189", "CSIDL_FLAG_DONT_VERIFY|0x00020189"),
+        ("24190", "CSIDL_FLAG_DONT_VERIFY|0x00020190"),
+        ("24191", "CSIDL_FLAG_DONT_VERIFY|0x00020191"),
+        ("24192", "CSIDL_FLAG_DONT_VERIFY|0x00020192"),
+        ("24193", "CSIDL_FLAG_DONT_VERIFY|0x00020193"),
+        ("24194", "CSIDL_FLAG_DONT_VERIFY|0x00020194"),
+        ("24195", "CSIDL_FLAG_DONT_VERIFY|0x00020195"),
+        ("24196", "CSIDL_FLAG_DONT_VERIFY|0x00020196"),
+        ("24197", "CSIDL_FLAG_DONT_VERIFY|0x00020197"),
+        ("24198", "CSIDL_FLAG_DONT_VERIFY|0x00020198"),
+        ("24199", "CSIDL_FLAG_DONT_VERIFY|0x00020199"),
+        ("24200", "CSIDL_FLAG_DONT_VERIFY|0x00020200"),
+        ("24201", "CSIDL_FLAG_DONT_VERIFY|0x00020201"),
+        ("24202", "CSIDL_FLAG_DONT_VERIFY|0x00020202"),
+        ("24203", "CSIDL_FLAG_DONT_VERIFY|0x00020203"),
+        ("24204", "CSIDL_FLAG_DONT_VERIFY|0x00020204"),
+        ("24205", "CSIDL_FLAG_DONT_VERIFY|0x00020205"),
+        ("24206", "CSIDL_FLAG_DONT_VERIFY|0x00020206"),
+        ("24207", "CSIDL_FLAG_DONT_VERIFY|0x00020207"),
+        ("24208", "CSIDL_FLAG_DONT_VERIFY|0x00020208"),
+        ("24209", "CSIDL_FLAG_DONT_VERIFY|0x00020209"),
+        ("24210", "CSIDL_FLAG_DONT_VERIFY|0x00020210"),
+        ("24211", "CSIDL_FLAG_DONT_VERIFY|0x00020211"),
+        ("24212", "CSIDL_FLAG_DONT_VERIFY|0x00020212"),
+        ("24213", "CSIDL_FLAG_DONT_VERIFY|0x00020213"),
+        ("24214", "CSIDL_FLAG_DONT_VERIFY|0x00020214"),
+        ("24215", "CSIDL_FLAG_DONT_VERIFY|0x00020215"),
+        ("24216", "CSIDL_FLAG_DONT_VERIFY|0x00020216"),
+        ("24217", "CSIDL_FLAG_DONT_VERIFY|0x00020217"),
+        ("24218", "CSIDL_FLAG_DONT_VERIFY|0x00020218"),
+        ("24219", "CSIDL_FLAG_DONT_VERIFY|0x00020219"),
+        ("24220", "CSIDL_FLAG_DONT_VERIFY|0x00020220"),
+        ("24221", "CSIDL_FLAG_DONT_VERIFY|0x00020221"),
+        ("24222", "CSIDL_FLAG_DONT_VERIFY|0x00020222"),
+        ("24223", "CSIDL_FLAG_DONT_VERIFY|0x00020223"),
+        ("24224", "CSIDL_FLAG_DONT_VERIFY|0x00020224"),
+        ("24225", "CSIDL_FLAG_DONT_VERIFY|0x00020225"),
+        ("24226", "CSIDL_FLAG_DONT_VERIFY|0x00020226"),
+        ("24227", "CSIDL_FLAG_DONT_VERIFY|0x00020227"),
+        ("24228", "CSIDL_FLAG_DONT_VERIFY|0x00020228"),
+        ("24229", "CSIDL_FLAG_DONT_VERIFY|0x00020229"),
+        ("24230", "CSIDL_FLAG_DONT_VERIFY|0x00020230"),
+        ("24231", "CSIDL_FLAG_DONT_VERIFY|0x00020231"),
+        ("24232", "CSIDL_FLAG_DONT_VERIFY|0x00020232"),
+        ("24233", "CSIDL_FLAG_DONT_VERIFY|0x00020233"),
+        ("24234", "CSIDL_FLAG_DONT_VERIFY|0x00020234"),
+        ("24235", "CSIDL_FLAG_DONT_VERIFY|0x00020235"),
+        ("24236", "CSIDL_FLAG_DONT_VERIFY|0x00020236"),
+        ("24237", "CSIDL_FLAG_DONT_VERIFY|0x00020237"),
+        ("24238", "CSIDL_FLAG_DONT_VERIFY|0x00020238"),
+        ("24239", "CSIDL_FLAG_DONT_VERIFY|0x00020239"),
+        ("24240", "CSIDL_FLAG_DONT_VERIFY|0x00020240"),
+        ("24241", "CSIDL_FLAG_DONT_VERIFY|0x00020241"),
+        ("24242", "CSIDL_FLAG_DONT_VERIFY|0x00020242"),
+        ("24243", "CSIDL_FLAG_DONT_VERIFY|0x00020243"),
+        ("24244", "CSIDL_FLAG_DONT_VERIFY|0x00020244"),
+        ("24245", "CSIDL_FLAG_DONT_VERIFY|0x00020245"),
+        ("24246", "CSIDL_FLAG_DONT_VERIFY|0x00020246"),
+        ("24247", "CSIDL_FLAG_DONT_VERIFY|0x00020247"),
+        ("24248", "CSIDL_FLAG_DONT_VERIFY|0x00020248"),
+        ("24249", "CSIDL_FLAG_DONT_VERIFY|0x00020249"),
+        ("24250", "CSIDL_FLAG_DONT_VERIFY|0x00020250"),
+        ("24251", "CSIDL_FLAG_DONT_VERIFY|0x00020251"),
+        ("24252", "CSIDL_FLAG_DONT_VERIFY|0x00020252"),
+        ("24253", "CSIDL_FLAG_DONT_VERIFY|0x00020253"),
+        ("24254", "CSIDL_FLAG_DONT_VERIFY|0x00020254"),
+        ("24255", "CSIDL_FLAG_DONT_VERIFY|0x00020255"),
+        ("24256", "CSIDL_FLAG_DONT_VERIFY|0x00020256"),
+        ("24257", "CSIDL_FLAG_DONT_VERIFY|0x00020257"),
+        ("24258", "CSIDL_FLAG_DONT_VERIFY|0x00020258"),
+        ("24259", "CSIDL_FLAG_DONT_VERIFY|0x00020259"),
+        ("24260", "CSIDL_FLAG_DONT_VERIFY|0x00020260"),
+        ("24261", "CSIDL_FLAG_DONT_VERIFY|0x00020261"),
+        ("24262", "CSIDL_FLAG_DONT_VERIFY|0x00020262"),
+        ("24263", "CSIDL_FLAG_DONT_VERIFY|0x00020263"),
+        ("24264", "CSIDL_FLAG_DONT_VERIFY|0x00020264"),
+        ("24265", "CSIDL_FLAG_DONT_VERIFY|0x00020265"),
+        ("24266", "CSIDL_FLAG_DONT_VERIFY|0x00020266"),
+        ("24267", "CSIDL_FLAG_DONT_VERIFY|0x00020267"),
+        ("24268", "CSIDL_FLAG_DONT_VERIFY|0x00020268"),
+        ("24269", "CSIDL_FLAG_DONT_VERIFY|0x00020269"),
+        ("24270", "CSIDL_FLAG_DONT_VERIFY|0x00020270"),
+        ("24271", "CSIDL_FLAG_DONT_VERIFY|0x00020271"),
+        ("24272", "CSIDL_FLAG_DONT_VERIFY|0x00020272"),
+        ("24273", "CSIDL_FLAG_DONT_VERIFY|0x00020273"),
+        ("24274", "CSIDL_FLAG_DONT_VERIFY|0x00020274"),
+        ("24275", "CSIDL_FLAG_DONT_VERIFY|0x00020275"),
+        ("24276", "CSIDL_FLAG_DONT_VERIFY|0x00020276"),
+        ("24277", "CSIDL_FLAG_DONT_VERIFY|0x00020277"),
+        ("24278", "CSIDL_FLAG_DONT_VERIFY|0x00020278"),
+        ("24279", "CSIDL_FLAG_DONT_VERIFY|0x00020279"),
+        ("24280", "CSIDL_FLAG_DONT_VERIFY|0x00020280"),
+        ("24281", "CSIDL_FLAG_DONT_VERIFY|0x00020281"),
+        ("24282", "CSIDL_FLAG_DONT_VERIFY|0x00020282"),
+        ("24283", "CSIDL_FLAG_DONT_VERIFY|0x00020283"),
+        ("24284", "CSIDL_FLAG_DONT_VERIFY|0x00020284"),
+        ("24285", "CSIDL_FLAG_DONT_VERIFY|0x00020285"),
+        ("24286", "CSIDL_FLAG_DONT_VERIFY|0x00020286"),
+        ("24287", "CSIDL_FLAG_DONT_VERIFY|0x00020287"),
+        ("24288", "CSIDL_FLAG_DONT_VERIFY|0x00020288"),
+        ("24289", "CSIDL_FLAG_DONT_VERIFY|0x00020289"),
+        ("24290", "CSIDL_FLAG_DONT_VERIFY|0x00020290"),
+        ("24291", "CSIDL_FLAG_DONT_VERIFY|0x00020291"),
+        ("24292", "CSIDL_FLAG_DONT_VERIFY|0x00020292"),
+        ("24293", "CSIDL_FLAG_DONT_VERIFY|0x00020293"),
+        ("24294", "CSIDL_FLAG_DONT_VERIFY|0x00020294"),
+        ("24295", "CSIDL_FLAG_DONT_VERIFY|0x00020295"),
+        ("24296", "CSIDL_FLAG_DONT_VERIFY|0x00020296"),
+        ("24297", "CSIDL_FLAG_DONT_VERIFY|0x00020297"),
+        ("24298", "CSIDL_FLAG_DONT_VERIFY|0x00020298"),
+        ("24299", "CSIDL_FLAG_DONT_VERIFY|0x00020299"),
+        ("24300", "CSIDL_FLAG_DONT_VERIFY|0x00020300"),
+        ("24301", "CSIDL_FLAG_DONT_VERIFY|0x00020301"),
+        ("24302", "CSIDL_FLAG_DONT_VERIFY|0x00020302"),
+        ("24303", "CSIDL_FLAG_DONT_VERIFY|0x00020303"),
+        ("24304", "CSIDL_FLAG_DONT_VERIFY|0x00020304"),
+        ("24305", "CSIDL_FLAG_DONT_VERIFY|0x00020305"),
+        ("24306", "CSIDL_FLAG_DONT_VERIFY|0x00020306"),
+        ("24307", "CSIDL_FLAG_DONT_VERIFY|0x00020307"),
+        ("24308", "CSIDL_FLAG_DONT_VERIFY|0x00020308"),
+        ("24309", "CSIDL_FLAG_DONT_VERIFY|0x00020309"),
+        ("24310", "CSIDL_FLAG_DONT_VERIFY|0x00020310"),
+        ("24311", "CSIDL_FLAG_DONT_VERIFY|0x00020311"),
+        ("24312", "CSIDL_FLAG_DONT_VERIFY|0x00020312"),
+        ("24313", "CSIDL_FLAG_DONT_VERIFY|0x00020313"),
+        ("24314", "CSIDL_FLAG_DONT_VERIFY|0x00020314"),
+        ("24315", "CSIDL_FLAG_DONT_VERIFY|0x00020315"),
+        ("24316", "CSIDL_FLAG_DONT_VERIFY|0x00020316"),
+        ("24317", "CSIDL_FLAG_DONT_VERIFY|0x00020317"),
+        ("24318", "CSIDL_FLAG_DONT_VERIFY|0x00020318"),
+        ("24319", "CSIDL_FLAG_DONT_VERIFY|0x00020319"),
+        ("24320", "CSIDL_FLAG_DONT_VERIFY|0x00020320"),
+        ("24321", "CSIDL_FLAG_DONT_VERIFY|0x00020321"),
+        ("24322", "CSIDL_FLAG_DONT_VERIFY|0x00020322"),
+        ("24323", "CSIDL_FLAG_DONT_VERIFY|0x00020323"),
+        ("24324", "CSIDL_FLAG_DONT_VERIFY|0x00020324"),
+        ("24325", "CSIDL_FLAG_DONT_VERIFY|0x00020325"),
+        ("24326", "CSIDL_FLAG_DONT_VERIFY|0x00020326"),
+        ("24327", "CSIDL_FLAG_DONT_VERIFY|0x00020327"),
+        ("24328", "CSIDL_FLAG_DONT_VERIFY|0x00020328"),
+        ("24329", "CSIDL_FLAG_DONT_VERIFY|0x00020329"),
+        ("24330", "CSIDL_FLAG_DONT_VERIFY|0x00020330"),
+        ("24331", "CSIDL_FLAG_DONT_VERIFY|0x00020331"),
+        ("24332", "CSIDL_FLAG_DONT_VERIFY|0x00020332"),
+        ("24333", "CSIDL_FLAG_DONT_VERIFY|0x00020333"),
+        ("24334", "CSIDL_FLAG_DONT_VERIFY|0x00020334"),
+        ("24335", "CSIDL_FLAG_DONT_VERIFY|0x00020335"),
+        ("24336", "CSIDL_FLAG_DONT_VERIFY|0x00020336"),
+        ("24337", "CSIDL_FLAG_DONT_VERIFY|0x00020337"),
+        ("24338", "CSIDL_FLAG_DONT_VERIFY|0x00020338"),
+        ("24339", "CSIDL_FLAG_DONT_VERIFY|0x00020339"),
+        ("24340", "CSIDL_FLAG_DONT_VERIFY|0x00020340"),
+        ("24341", "CSIDL_FLAG_DONT_VERIFY|0x00020341"),
+        ("24342", "CSIDL_FLAG_DONT_VERIFY|0x00020342"),
+        ("24343", "CSIDL_FLAG_DONT_VERIFY|0x00020343"),
+        ("24344", "CSIDL_FLAG_DONT_VERIFY|0x00020344"),
+        ("24345", "CSIDL_FLAG_DONT_VERIFY|0x00020345"),
+        ("24346", "CSIDL_FLAG_DONT_VERIFY|0x00020346"),
+        ("24347", "CSIDL_FLAG_DONT_VERIFY|0x00020347"),
+        ("24348", "CSIDL_FLAG_DONT_VERIFY|0x00020348"),
+        ("24349", "CSIDL_FLAG_DONT_VERIFY|0x00020349"),
+        ("24350", "CSIDL_FLAG_DONT_VERIFY|0x00020350"),
+        ("24351", "CSIDL_FLAG_DONT_VERIFY|0x00020351"),
+        ("24352", "CSIDL_FLAG_DONT_VERIFY|0x00020352"),
+        ("24353", "CSIDL_FLAG_DONT_VERIFY|0x00020353"),
+        ("24354", "CSIDL_FLAG_DONT_VERIFY|0x00020354"),
+        ("24355", "CSIDL_FLAG_DONT_VERIFY|0x00020355"),
+        ("24356", "CSIDL_FLAG_DONT_VERIFY|0x00020356"),
+        ("24357", "CSIDL_FLAG_DONT_VERIFY|0x00020357"),
+        ("24358", "CSIDL_FLAG_DONT_VERIFY|0x00020358"),
+        ("24359", "CSIDL_FLAG_DONT_VERIFY|0x00020359"),
+        ("24360", "CSIDL_FLAG_DONT_VERIFY|0x00020360"),
+        ("24361", "CSIDL_FLAG_DONT_VERIFY|0x00020361"),
+        ("24362", "CSIDL_FLAG_DONT_VERIFY|0x00020362"),
+        ("24363", "CSIDL_FLAG_DONT_VERIFY|0x00020363"),
+        ("24364", "CSIDL_FLAG_DONT_VERIFY|0x00020364"),
+        ("24365", "CSIDL_FLAG_DONT_VERIFY|0x00020365"),
+        ("24366", "CSIDL_FLAG_DONT_VERIFY|0x00020366"),
+        ("24367", "CSIDL_FLAG_DONT_VERIFY|0x00020367"),
+        ("24368", "CSIDL_FLAG_DONT_VERIFY|0x00020368"),
+        ("24369", "CSIDL_FLAG_DONT_VERIFY|0x00020369"),
+        ("24370", "CSIDL_FLAG_DONT_VERIFY|0x00020370"),
+        ("24371", "CSIDL_FLAG_DONT_VERIFY|0x00020371"),
+        ("24372", "CSIDL_FLAG_DONT_VERIFY|0x00020372"),
+        ("24373", "CSIDL_FLAG_DONT_VERIFY|0x00020373"),
+        ("24374", "CSIDL_FLAG_DONT_VERIFY|0x00020374"),
+        ("24375", "CSIDL_FLAG_DONT_VERIFY|0x00020375"),
+        ("24376", "CSIDL_FLAG_DONT_VERIFY|0x00020376"),
+        ("24377", "CSIDL_FLAG_DONT_VERIFY|0x00020377"),
+        ("24378", "CSIDL_FLAG_DONT_VERIFY|0x00020378"),
+        ("24379", "CSIDL_FLAG_DONT_VERIFY|0x00020379"),
+        ("24380", "CSIDL_FLAG_DONT_VERIFY|0x00020380"),
+        ("24381", "CSIDL_FLAG_DONT_VERIFY|0x00020381"),
+        ("24382", "CSIDL_FLAG_DONT_VERIFY|0x00020382"),
+        ("24383", "CSIDL_FLAG_DONT_VERIFY|0x00020383"),
+        ("24384", "CSIDL_FLAG_DONT_VERIFY|0x00020384"),
+        ("24385", "CSIDL_FLAG_DONT_VERIFY|0x00020385"),
+        ("24386", "CSIDL_FLAG_DONT_VERIFY|0x00020386"),
+        ("24387", "CSIDL_FLAG_DONT_VERIFY|0x00020387"),
+        ("24388", "CSIDL_FLAG_DONT_VERIFY|0x00020388"),
+        ("24389", "CSIDL_FLAG_DONT_VERIFY|0x00020389"),
+        ("24390", "CSIDL_FLAG_DONT_VERIFY|0x00020390"),
+        ("24391", "CSIDL_FLAG_DONT_VERIFY|0x00020391"),
+        ("24392", "CSIDL_FLAG_DONT_VERIFY|0x00020392"),
+        ("24393", "CSIDL_FLAG_DONT_VERIFY|0x00020393"),
+        ("24394", "CSIDL_FLAG_DONT_VERIFY|0x00020394"),
+        ("24395", "CSIDL_FLAG_DONT_VERIFY|0x00020395"),
+        ("24396", "CSIDL_FLAG_DONT_VERIFY|0x00020396"),
+        ("24397", "CSIDL_FLAG_DONT_VERIFY|0x00020397"),
+        ("24398", "CSIDL_FLAG_DONT_VERIFY|0x00020398"),
+        ("24399", "CSIDL_FLAG_DONT_VERIFY|0x00020399"),
+        ("24400", "CSIDL_FLAG_DONT_VERIFY|0x00020400"),
+        ("24401", "CSIDL_FLAG_DONT_VERIFY|0x00020401"),
+        ("24402", "CSIDL_FLAG_DONT_VERIFY|0x00020402"),
+        ("24403", "CSIDL_FLAG_DONT_VERIFY|0x00020403"),
+        ("24404", "CSIDL_FLAG_DONT_VERIFY|0x00020404"),
+        ("24405", "CSIDL_FLAG_DONT_VERIFY|0x00020405"),
+        ("24406", "CSIDL_FLAG_DONT_VERIFY|0x00020406"),
+        ("24407", "CSIDL_FLAG_DONT_VERIFY|0x00020407"),
+        ("24408", "CSIDL_FLAG_DONT_VERIFY|0x00020408"),
+        ("24409", "CSIDL_FLAG_DONT_VERIFY|0x00020409"),
+        ("24410", "CSIDL_FLAG_DONT_VERIFY|0x00020410"),
+        ("24411", "CSIDL_FLAG_DONT_VERIFY|0x00020411"),
+        ("24412", "CSIDL_FLAG_DONT_VERIFY|0x00020412"),
+        ("24413", "CSIDL_FLAG_DONT_VERIFY|0x00020413"),
+        ("24414", "CSIDL_FLAG_DONT_VERIFY|0x00020414"),
+        ("24415", "CSIDL_FLAG_DONT_VERIFY|0x00020415"),
+        ("24416", "CSIDL_FLAG_DONT_VERIFY|0x00020416"),
+        ("24417", "CSIDL_FLAG_DONT_VERIFY|0x00020417"),
+        ("24418", "CSIDL_FLAG_DONT_VERIFY|0x00020418"),
+        ("24419", "CSIDL_FLAG_DONT_VERIFY|0x00020419"),
+        ("24420", "CSIDL_FLAG_DONT_VERIFY|0x00020420"),
+        ("24421", "CSIDL_FLAG_DONT_VERIFY|0x00020421"),
+        ("24422", "CSIDL_FLAG_DONT_VERIFY|0x00020422"),
+        ("24423", "CSIDL_FLAG_DONT_VERIFY|0x00020423"),
+        ("24424", "CSIDL_FLAG_DONT_VERIFY|0x00020424"),
+        ("24425", "CSIDL_FLAG_DONT_VERIFY|0x00020425"),
+        ("24426", "CSIDL_FLAG_DONT_VERIFY|0x00020426"),
+        ("24427", "CSIDL_FLAG_DONT_VERIFY|0x00020427"),
+        ("24428", "CSIDL_FLAG_DONT_VERIFY|0x00020428"),
+        ("24429", "CSIDL_FLAG_DONT_VERIFY|0x00020429"),
+        ("24430", "CSIDL_FLAG_DONT_VERIFY|0x00020430"),
+        ("24431", "CSIDL_FLAG_DONT_VERIFY|0x00020431"),
+        ("24432", "CSIDL_FLAG_DONT_VERIFY|0x00020432"),
+        ("24433", "CSIDL_FLAG_DONT_VERIFY|0x00020433"),
+        ("24434", "CSIDL_FLAG_DONT_VERIFY|0x00020434"),
+        ("24435", "CSIDL_FLAG_DONT_VERIFY|0x00020435"),
+        ("24436", "CSIDL_FLAG_DONT_VERIFY|0x00020436"),
+        ("24437", "CSIDL_FLAG_DONT_VERIFY|0x00020437"),
+        ("24438", "CSIDL_FLAG_DONT_VERIFY|0x00020438"),
+        ("24439", "CSIDL_FLAG_DONT_VERIFY|0x00020439"),
+        ("24440", "CSIDL_FLAG_DONT_VERIFY|0x00020440"),
+        ("24441", "CSIDL_FLAG_DONT_VERIFY|0x00020441"),
+        ("24442", "CSIDL_FLAG_DONT_VERIFY|0x00020442"),
+        ("24443", "CSIDL_FLAG_DONT_VERIFY|0x00020443"),
+        ("24444", "CSIDL_FLAG_DONT_VERIFY|0x00020444"),
+        ("24445", "CSIDL_FLAG_DONT_VERIFY|0x00020445"),
+        ("24446", "CSIDL_FLAG_DONT_VERIFY|0x00020446"),
+        ("24447", "CSIDL_FLAG_DONT_VERIFY|0x00020447"),
+        ("24448", "CSIDL_FLAG_DONT_VERIFY|0x00020448"),
+        ("24449", "CSIDL_FLAG_DONT_VERIFY|0x00020449"),
+        ("24450", "CSIDL_FLAG_DONT_VERIFY|0x00020450"),
+        ("24451", "CSIDL_FLAG_DONT_VERIFY|0x00020451"),
+        ("24452", "CSIDL_FLAG_DONT_VERIFY|0x00020452"),
+        ("24453", "CSIDL_FLAG_DONT_VERIFY|0x00020453"),
+        ("24454", "CSIDL_FLAG_DONT_VERIFY|0x00020454"),
+        ("24455", "CSIDL_FLAG_DONT_VERIFY|0x00020455"),
+        ("24456", "CSIDL_FLAG_DONT_VERIFY|0x00020456"),
+        ("24457", "CSIDL_FLAG_DONT_VERIFY|0x00020457"),
+        ("24458", "CSIDL_FLAG_DONT_VERIFY|0x00020458"),
+        ("24459", "CSIDL_FLAG_DONT_VERIFY|0x00020459"),
+        ("24460", "CSIDL_FLAG_DONT_VERIFY|0x00020460"),
+        ("24461", "CSIDL_FLAG_DONT_VERIFY|0x00020461"),
+        ("24462", "CSIDL_FLAG_DONT_VERIFY|0x00020462"),
+        ("24463", "CSIDL_FLAG_DONT_VERIFY|0x00020463"),
+        ("24464", "CSIDL_FLAG_DONT_VERIFY|0x00020464"),
+        ("24465", "CSIDL_FLAG_DONT_VERIFY|0x00020465"),
+        ("24466", "CSIDL_FLAG_DONT_VERIFY|0x00020466"),
+        ("24467", "CSIDL_FLAG_DONT_VERIFY|0x00020467"),
+        ("24468", "CSIDL_FLAG_DONT_VERIFY|0x00020468"),
+        ("24469", "CSIDL_FLAG_DONT_VERIFY|0x00020469"),
+        ("24470", "CSIDL_FLAG_DONT_VERIFY|0x00020470"),
+        ("24471", "CSIDL_FLAG_DONT_VERIFY|0x00020471"),
+        ("24472", "CSIDL_FLAG_DONT_VERIFY|0x00020472"),
+        ("24473", "CSIDL_FLAG_DONT_VERIFY|0x00020473"),
+        ("24474", "CSIDL_FLAG_DONT_VERIFY|0x00020474"),
+        ("24475", "CSIDL_FLAG_DONT_VERIFY|0x00020475"),
+        ("24476", "CSIDL_FLAG_DONT_VERIFY|0x00020476"),
+        ("24477", "CSIDL_FLAG_DONT_VERIFY|0x00020477"),
+        ("24478", "CSIDL_FLAG_DONT_VERIFY|0x00020478"),
+        ("24479", "CSIDL_FLAG_DONT_VERIFY|0x00020479"),
+        ("24480", "CSIDL_FLAG_DONT_VERIFY|0x00020480"),
+        ("24481", "CSIDL_FLAG_DONT_VERIFY|0x00020481"),
+        ("24482", "CSIDL_FLAG_DONT_VERIFY|0x00020482"),
+        ("24483", "CSIDL_FLAG_DONT_VERIFY|0x00020483"),
+        ("24484", "CSIDL_FLAG_DONT_VERIFY|0x00020484"),
+        ("24485", "CSIDL_FLAG_DONT_VERIFY|0x00020485"),
+        ("24486", "CSIDL_FLAG_DONT_VERIFY|0x00020486"),
+        ("24487", "CSIDL_FLAG_DONT_VERIFY|0x00020487"),
+        ("24488", "CSIDL_FLAG_DONT_VERIFY|0x00020488"),
+        ("24489", "CSIDL_FLAG_DONT_VERIFY|0x00020489"),
+        ("24490", "CSIDL_FLAG_DONT_VERIFY|0x00020490"),
+        ("24491", "CSIDL_FLAG_DONT_VERIFY|0x00020491"),
+        ("24492", "CSIDL_FLAG_DONT_VERIFY|0x00020492"),
+        ("24493", "CSIDL_FLAG_DONT_VERIFY|0x00020493"),
+        ("24494", "CSIDL_FLAG_DONT_VERIFY|0x00020494"),
+        ("24495", "CSIDL_FLAG_DONT_VERIFY|0x00020495"),
+        ("24496", "CSIDL_FLAG_DONT_VERIFY|0x00020496"),
+        ("24497", "CSIDL_FLAG_DONT_VERIFY|0x00020497"),
+        ("24498", "CSIDL_FLAG_DONT_VERIFY|0x00020498"),
+        ("24499", "CSIDL_FLAG_DONT_VERIFY|0x00020499"),
+        ("24500", "CSIDL_FLAG_DONT_VERIFY|0x00020500"),
+        ("24501", "CSIDL_FLAG_DONT_VERIFY|0x00020501"),
+        ("24502", "CSIDL_FLAG_DONT_VERIFY|0x00020502"),
+        ("24503", "CSIDL_FLAG_DONT_VERIFY|0x00020503"),
+        ("24504", "CSIDL_FLAG_DONT_VERIFY|0x00020504"),
+        ("24505", "CSIDL_FLAG_DONT_VERIFY|0x00020505"),
+        ("24506", "CSIDL_FLAG_DONT_VERIFY|0x00020506"),
+        ("24507", "CSIDL_FLAG_DONT_VERIFY|0x00020507"),
+        ("24508", "CSIDL_FLAG_DONT_VERIFY|0x00020508"),
+        ("24509", "CSIDL_FLAG_DONT_VERIFY|0x00020509"),
+        ("24510", "CSIDL_FLAG_DONT_VERIFY|0x00020510"),
+        ("24511", "CSIDL_FLAG_DONT_VERIFY|0x00020511"),
+        ("24512", "CSIDL_FLAG_DONT_VERIFY|0x00020512"),
+        ("24513", "CSIDL_FLAG_DONT_VERIFY|0x00020513"),
+        ("24514", "CSIDL_FLAG_DONT_VERIFY|0x00020514"),
+        ("24515", "CSIDL_FLAG_DONT_VERIFY|0x00020515"),
+        ("24516", "CSIDL_FLAG_DONT_VERIFY|0x00020516"),
+        ("24517", "CSIDL_FLAG_DONT_VERIFY|0x00020517"),
+        ("24518", "CSIDL_FLAG_DONT_VERIFY|0x00020518"),
+        ("24519", "CSIDL_FLAG_DONT_VERIFY|0x00020519"),
+        ("24520", "CSIDL_FLAG_DONT_VERIFY|0x00020520"),
+        ("24521", "CSIDL_FLAG_DONT_VERIFY|0x00020521"),
+        ("24522", "CSIDL_FLAG_DONT_VERIFY|0x00020522"),
+        ("24523", "CSIDL_FLAG_DONT_VERIFY|0x00020523"),
+        ("24524", "CSIDL_FLAG_DONT_VERIFY|0x00020524"),
+        ("24525", "CSIDL_FLAG_DONT_VERIFY|0x00020525"),
+        ("24526", "CSIDL_FLAG_DONT_VERIFY|0x00020526"),
+        ("24527", "CSIDL_FLAG_DONT_VERIFY|0x00020527"),
+        ("24528", "CSIDL_FLAG_DONT_VERIFY|0x00020528"),
+        ("24529", "CSIDL_FLAG_DONT_VERIFY|0x00020529"),
+        ("24530", "CSIDL_FLAG_DONT_VERIFY|0x00020530"),
+        ("24531", "CSIDL_FLAG_DONT_VERIFY|0x00020531"),
+        ("24532", "CSIDL_FLAG_DONT_VERIFY|0x00020532"),
+        ("24533", "CSIDL_FLAG_DONT_VERIFY|0x00020533"),
+        ("24534", "CSIDL_FLAG_DONT_VERIFY|0x00020534"),
+        ("24535", "CSIDL_FLAG_DONT_VERIFY|0x00020535"),
+        ("24536", "CSIDL_FLAG_DONT_VERIFY|0x00020536"),
+        ("24537", "CSIDL_FLAG_DONT_VERIFY|0x00020537"),
+        ("24538", "CSIDL_FLAG_DONT_VERIFY|0x00020538"),
+        ("24539", "CSIDL_FLAG_DONT_VERIFY|0x00020539"),
+        ("24540", "CSIDL_FLAG_DONT_VERIFY|0x00020540"),
+        ("24541", "CSIDL_FLAG_DONT_VERIFY|0x00020541"),
+        ("24542", "CSIDL_FLAG_DONT_VERIFY|0x00020542"),
+        ("24543", "CSIDL_FLAG_DONT_VERIFY|0x00020543"),
+        ("24544", "CSIDL_FLAG_DONT_VERIFY|0x00020544"),
+        ("24545", "CSIDL_FLAG_DONT_VERIFY|0x00020545"),
+        ("24546", "CSIDL_FLAG_DONT_VERIFY|0x00020546"),
+        ("24547", "CSIDL_FLAG_DONT_VERIFY|0x00020547"),
+        ("24548", "CSIDL_FLAG_DONT_VERIFY|0x00020548"),
+        ("24549", "CSIDL_FLAG_DONT_VERIFY|0x00020549"),
+        ("24550", "CSIDL_FLAG_DONT_VERIFY|0x00020550"),
+        ("24551", "CSIDL_FLAG_DONT_VERIFY|0x00020551"),
+        ("24552", "CSIDL_FLAG_DONT_VERIFY|0x00020552"),
+        ("24553", "CSIDL_FLAG_DONT_VERIFY|0x00020553"),
+        ("24554", "CSIDL_FLAG_DONT_VERIFY|0x00020554"),
+        ("24555", "CSIDL_FLAG_DONT_VERIFY|0x00020555"),
+        ("24556", "CSIDL_FLAG_DONT_VERIFY|0x00020556"),
+        ("24557", "CSIDL_FLAG_DONT_VERIFY|0x00020557"),
+        ("24558", "CSIDL_FLAG_DONT_VERIFY|0x00020558"),
+        ("24559", "CSIDL_FLAG_DONT_VERIFY|0x00020559"),
+        ("24560", "CSIDL_FLAG_DONT_VERIFY|0x00020560"),
+        ("24561", "CSIDL_FLAG_DONT_VERIFY|0x00020561"),
+        ("24562", "CSIDL_FLAG_DONT_VERIFY|0x00020562"),
+        ("24563", "CSIDL_FLAG_DONT_VERIFY|0x00020563"),
+        ("24564", "CSIDL_FLAG_DONT_VERIFY|0x00020564"),
+        ("24565", "CSIDL_FLAG_DONT_VERIFY|0x00020565"),
+        ("24566", "CSIDL_FLAG_DONT_VERIFY|0x00020566"),
+        ("24567", "CSIDL_FLAG_DONT_VERIFY|0x00020567"),
+        ("24568", "CSIDL_FLAG_DONT_VERIFY|0x00020568"),
+        ("24569", "CSIDL_FLAG_DONT_VERIFY|0x00020569"),
+        ("24570", "CSIDL_FLAG_DONT_VERIFY|0x00020570"),
+        ("24571", "CSIDL_FLAG_DONT_VERIFY|0x00020571"),
+        ("24572", "CSIDL_FLAG_DONT_VERIFY|0x00020572"),
+        ("24573", "CSIDL_FLAG_DONT_VERIFY|0x00020573"),
+        ("24574", "CSIDL_FLAG_DONT_VERIFY|0x00020574"),
+        ("24575", "CSIDL_FLAG_DONT_VERIFY|0x00020575"),
+        ("24576", "CSIDL_FLAG_DONT_VERIFY|0x00020576"),
+        ("24577", "CSIDL_FLAG_DONT_VERIFY|0x00020577"),
+        ("24578", "CSIDL_FLAG_DONT_VERIFY|0x00020578"),
+        ("24579", "CSIDL_FLAG_DONT_VERIFY|0x00020579"),
+        ("24580", "CSIDL_FLAG_DONT_VERIFY|0x00020580"),
+        ("24581", "CSIDL_FLAG_DONT_VERIFY|0x00020581"),
+        ("24582", "CSIDL_FLAG_DONT_VERIFY|0x00020582"),
+        ("24583", "CSIDL_FLAG_DONT_VERIFY|0x00020583"),
+        ("24584", "CSIDL_FLAG_DONT_VERIFY|0x00020584"),
+        ("24585", "CSIDL_FLAG_DONT_VERIFY|0x00020585"),
+        ("24586", "CSIDL_FLAG_DONT_VERIFY|0x00020586"),
+        ("24587", "CSIDL_FLAG_DONT_VERIFY|0x00020587"),
+        ("24588", "CSIDL_FLAG_DONT_VERIFY|0x00020588"),
+        ("24589", "CSIDL_FLAG_DONT_VERIFY|0x00020589"),
+        ("24590", "CSIDL_FLAG_DONT_VERIFY|0x00020590"),
+        ("24591", "CSIDL_FLAG_DONT_VERIFY|0x00020591"),
+        ("24592", "CSIDL_FLAG_DONT_VERIFY|0x00020592"),
+        ("24593", "CSIDL_FLAG_DONT_VERIFY|0x00020593"),
+        ("24594", "CSIDL_FLAG_DONT_VERIFY|0x00020594"),
+        ("24595", "CSIDL_FLAG_DONT_VERIFY|0x00020595"),
+        ("24596", "CSIDL_FLAG_DONT_VERIFY|0x00020596"),
+        ("24597", "CSIDL_FLAG_DONT_VERIFY|0x00020597"),
+        ("24598", "CSIDL_FLAG_DONT_VERIFY|0x00020598"),
+        ("24599", "CSIDL_FLAG_DONT_VERIFY|0x00020599"),
+        ("24600", "CSIDL_FLAG_DONT_VERIFY|0x00020600"),
+        ("24601", "CSIDL_FLAG_DONT_VERIFY|0x00020601"),
+        ("24602", "CSIDL_FLAG_DONT_VERIFY|0x00020602"),
+        ("24603", "CSIDL_FLAG_DONT_VERIFY|0x00020603"),
+        ("24604", "CSIDL_FLAG_DONT_VERIFY|0x00020604"),
+        ("24605", "CSIDL_FLAG_DONT_VERIFY|0x00020605"),
+        ("24606", "CSIDL_FLAG_DONT_VERIFY|0x00020606"),
+        ("24607", "CSIDL_FLAG_DONT_VERIFY|0x00020607"),
+        ("24608", "CSIDL_FLAG_DONT_VERIFY|0x00020608"),
+        ("24609", "CSIDL_FLAG_DONT_VERIFY|0x00020609"),
+        ("24610", "CSIDL_FLAG_DONT_VERIFY|0x00020610"),
+        ("24611", "CSIDL_FLAG_DONT_VERIFY|0x00020611"),
+        ("24612", "CSIDL_FLAG_DONT_VERIFY|0x00020612"),
+        ("24613", "CSIDL_FLAG_DONT_VERIFY|0x00020613"),
+        ("24614", "CSIDL_FLAG_DONT_VERIFY|0x00020614"),
+        ("24615", "CSIDL_FLAG_DONT_VERIFY|0x00020615"),
+        ("24616", "CSIDL_FLAG_DONT_VERIFY|0x00020616"),
+        ("24617", "CSIDL_FLAG_DONT_VERIFY|0x00020617"),
+        ("24618", "CSIDL_FLAG_DONT_VERIFY|0x00020618"),
+        ("24619", "CSIDL_FLAG_DONT_VERIFY|0x00020619"),
+        ("24620", "CSIDL_FLAG_DONT_VERIFY|0x00020620"),
+        ("24621", "CSIDL_FLAG_DONT_VERIFY|0x00020621"),
+        ("24622", "CSIDL_FLAG_DONT_VERIFY|0x00020622"),
+        ("24623", "CSIDL_FLAG_DONT_VERIFY|0x00020623"),
+        ("24624", "CSIDL_FLAG_DONT_VERIFY|0x00020624"),
+        ("24625", "CSIDL_FLAG_DONT_VERIFY|0x00020625"),
+        ("24626", "CSIDL_FLAG_DONT_VERIFY|0x00020626"),
+        ("24627", "CSIDL_FLAG_DONT_VERIFY|0x00020627"),
+        ("24628", "CSIDL_FLAG_DONT_VERIFY|0x00020628"),
+        ("24629", "CSIDL_FLAG_DONT_VERIFY|0x00020629"),
+        ("24630", "CSIDL_FLAG_DONT_VERIFY|0x00020630"),
+        ("24631", "CSIDL_FLAG_DONT_VERIFY|0x00020631"),
+        ("24632", "CSIDL_FLAG_DONT_VERIFY|0x00020632"),
+        ("24633", "CSIDL_FLAG_DONT_VERIFY|0x00020633"),
+        ("24634", "CSIDL_FLAG_DONT_VERIFY|0x00020634"),
+        ("24635", "CSIDL_FLAG_DONT_VERIFY|0x00020635"),
+        ("24636", "CSIDL_FLAG_DONT_VERIFY|0x00020636"),
+        ("24637", "CSIDL_FLAG_DONT_VERIFY|0x00020637"),
+        ("24638", "CSIDL_FLAG_DONT_VERIFY|0x00020638"),
+        ("24639", "CSIDL_FLAG_DONT_VERIFY|0x00020639"),
+        ("24640", "CSIDL_FLAG_DONT_VERIFY|0x00020640"),
+        ("24641", "CSIDL_FLAG_DONT_VERIFY|0x00020641"),
+        ("24642", "CSIDL_FLAG_DONT_VERIFY|0x00020642"),
+        ("24643", "CSIDL_FLAG_DONT_VERIFY|0x00020643"),
+        ("24644", "CSIDL_FLAG_DONT_VERIFY|0x00020644"),
+        ("24645", "CSIDL_FLAG_DONT_VERIFY|0x00020645"),
+        ("24646", "CSIDL_FLAG_DONT_VERIFY|0x00020646"),
+        ("24647", "CSIDL_FLAG_DONT_VERIFY|0x00020647"),
+        ("24648", "CSIDL_FLAG_DONT_VERIFY|0x00020648"),
+        ("24649", "CSIDL_FLAG_DONT_VERIFY|0x00020649"),
+        ("24650", "CSIDL_FLAG_DONT_VERIFY|0x00020650"),
+        ("24651", "CSIDL_FLAG_DONT_VERIFY|0x00020651"),
+        ("24652", "CSIDL_FLAG_DONT_VERIFY|0x00020652"),
+        ("24653", "CSIDL_FLAG_DONT_VERIFY|0x00020653"),
+        ("24654", "CSIDL_FLAG_DONT_VERIFY|0x00020654"),
+        ("24655", "CSIDL_FLAG_DONT_VERIFY|0x00020655"),
+        ("24656", "CSIDL_FLAG_DONT_VERIFY|0x00020656"),
+        ("24657", "CSIDL_FLAG_DONT_VERIFY|0x00020657"),
+        ("24658", "CSIDL_FLAG_DONT_VERIFY|0x00020658"),
+        ("24659", "CSIDL_FLAG_DONT_VERIFY|0x00020659"),
+        ("24660", "CSIDL_FLAG_DONT_VERIFY|0x00020660"),
+        ("24661", "CSIDL_FLAG_DONT_VERIFY|0x00020661"),
+        ("24662", "CSIDL_FLAG_DONT_VERIFY|0x00020662"),
+        ("24663", "CSIDL_FLAG_DONT_VERIFY|0x00020663"),
+        ("24664", "CSIDL_FLAG_DONT_VERIFY|0x00020664"),
+        ("24665", "CSIDL_FLAG_DONT_VERIFY|0x00020665"),
+        ("24666", "CSIDL_FLAG_DONT_VERIFY|0x00020666"),
+        ("24667", "CSIDL_FLAG_DONT_VERIFY|0x00020667"),
+        ("24668", "CSIDL_FLAG_DONT_VERIFY|0x00020668"),
+        ("24669", "CSIDL_FLAG_DONT_VERIFY|0x00020669"),
+        ("24670", "CSIDL_FLAG_DONT_VERIFY|0x00020670"),
+        ("24671", "CSIDL_FLAG_DONT_VERIFY|0x00020671"),
+        ("24672", "CSIDL_FLAG_DONT_VERIFY|0x00020672"),
+        ("24673", "CSIDL_FLAG_DONT_VERIFY|0x00020673"),
+        ("24674", "CSIDL_FLAG_DONT_VERIFY|0x00020674"),
+        ("24675", "CSIDL_FLAG_DONT_VERIFY|0x00020675"),
+        ("24676", "CSIDL_FLAG_DONT_VERIFY|0x00020676"),
+        ("24677", "CSIDL_FLAG_DONT_VERIFY|0x00020677"),
+        ("24678", "CSIDL_FLAG_DONT_VERIFY|0x00020678"),
+        ("24679", "CSIDL_FLAG_DONT_VERIFY|0x00020679"),
+        ("24680", "CSIDL_FLAG_DONT_VERIFY|0x00020680"),
+        ("24681", "CSIDL_FLAG_DONT_VERIFY|0x00020681"),
+        ("24682", "CSIDL_FLAG_DONT_VERIFY|0x00020682"),
+        ("24683", "CSIDL_FLAG_DONT_VERIFY|0x00020683"),
+        ("24684", "CSIDL_FLAG_DONT_VERIFY|0x00020684"),
+        ("24685", "CSIDL_FLAG_DONT_VERIFY|0x00020685"),
+        ("24686", "CSIDL_FLAG_DONT_VERIFY|0x00020686"),
+        ("24687", "CSIDL_FLAG_DONT_VERIFY|0x00020687"),
+        ("24688", "CSIDL_FLAG_DONT_VERIFY|0x00020688"),
+        ("24689", "CSIDL_FLAG_DONT_VERIFY|0x00020689"),
+        ("24690", "CSIDL_FLAG_DONT_VERIFY|0x00020690"),
+        ("24691", "CSIDL_FLAG_DONT_VERIFY|0x00020691"),
+        ("24692", "CSIDL_FLAG_DONT_VERIFY|0x00020692"),
+        ("24693", "CSIDL_FLAG_DONT_VERIFY|0x00020693"),
+        ("24694", "CSIDL_FLAG_DONT_VERIFY|0x00020694"),
+        ("24695", "CSIDL_FLAG_DONT_VERIFY|0x00020695"),
+        ("24696", "CSIDL_FLAG_DONT_VERIFY|0x00020696"),
+        ("24697", "CSIDL_FLAG_DONT_VERIFY|0x00020697"),
+        ("24698", "CSIDL_FLAG_DONT_VERIFY|0x00020698"),
+        ("24699", "CSIDL_FLAG_DONT_VERIFY|0x00020699"),
+        ("24700", "CSIDL_FLAG_DONT_VERIFY|0x00020700"),
+        ("24701", "CSIDL_FLAG_DONT_VERIFY|0x00020701"),
+        ("24702", "CSIDL_FLAG_DONT_VERIFY|0x00020702"),
+        ("24703", "CSIDL_FLAG_DONT_VERIFY|0x00020703"),
+        ("24704", "CSIDL_FLAG_DONT_VERIFY|0x00020704"),
+        ("24705", "CSIDL_FLAG_DONT_VERIFY|0x00020705"),
+        ("24706", "CSIDL_FLAG_DONT_VERIFY|0x00020706"),
+        ("24707", "CSIDL_FLAG_DONT_VERIFY|0x00020707"),
+        ("24708", "CSIDL_FLAG_DONT_VERIFY|0x00020708"),
+        ("24709", "CSIDL_FLAG_DONT_VERIFY|0x00020709"),
+        ("24710", "CSIDL_FLAG_DONT_VERIFY|0x00020710"),
+        ("24711", "CSIDL_FLAG_DONT_VERIFY|0x00020711"),
+        ("24712", "CSIDL_FLAG_DONT_VERIFY|0x00020712"),
+        ("24713", "CSIDL_FLAG_DONT_VERIFY|0x00020713"),
+        ("24714", "CSIDL_FLAG_DONT_VERIFY|0x00020714"),
+        ("24715", "CSIDL_FLAG_DONT_VERIFY|0x00020715"),
+        ("24716", "CSIDL_FLAG_DONT_VERIFY|0x00020716"),
+        ("24717", "CSIDL_FLAG_DONT_VERIFY|0x00020717"),
+        ("24718", "CSIDL_FLAG_DONT_VERIFY|0x00020718"),
+        ("24719", "CSIDL_FLAG_DONT_VERIFY|0x00020719"),
+        ("24720", "CSIDL_FLAG_DONT_VERIFY|0x00020720"),
+        ("24721", "CSIDL_FLAG_DONT_VERIFY|0x00020721"),
+        ("24722", "CSIDL_FLAG_DONT_VERIFY|0x00020722"),
+        ("24723", "CSIDL_FLAG_DONT_VERIFY|0x00020723"),
+        ("24724", "CSIDL_FLAG_DONT_VERIFY|0x00020724"),
+        ("24725", "CSIDL_FLAG_DONT_VERIFY|0x00020725"),
+        ("24726", "CSIDL_FLAG_DONT_VERIFY|0x00020726"),
+        ("24727", "CSIDL_FLAG_DONT_VERIFY|0x00020727"),
+        ("24728", "CSIDL_FLAG_DONT_VERIFY|0x00020728"),
+        ("24729", "CSIDL_FLAG_DONT_VERIFY|0x00020729"),
+        ("24730", "CSIDL_FLAG_DONT_VERIFY|0x00020730"),
+        ("24731", "CSIDL_FLAG_DONT_VERIFY|0x00020731"),
+        ("24732", "CSIDL_FLAG_DONT_VERIFY|0x00020732"),
+        ("24733", "CSIDL_FLAG_DONT_VERIFY|0x00020733"),
+        ("24734", "CSIDL_FLAG_DONT_VERIFY|0x00020734"),
+        ("24735", "CSIDL_FLAG_DONT_VERIFY|0x00020735"),
+        ("24736", "CSIDL_FLAG_DONT_VERIFY|0x00020736"),
+        ("24737", "CSIDL_FLAG_DONT_VERIFY|0x00020737"),
+        ("24738", "CSIDL_FLAG_DONT_VERIFY|0x00020738"),
+        ("24739", "CSIDL_FLAG_DONT_VERIFY|0x00020739"),
+        ("24740", "CSIDL_FLAG_DONT_VERIFY|0x00020740"),
+        ("24741", "CSIDL_FLAG_DONT_VERIFY|0x00020741"),
+        ("24742", "CSIDL_FLAG_DONT_VERIFY|0x00020742"),
+        ("24743", "CSIDL_FLAG_DONT_VERIFY|0x00020743"),
+        ("24744", "CSIDL_FLAG_DONT_VERIFY|0x00020744"),
+        ("24745", "CSIDL_FLAG_DONT_VERIFY|0x00020745"),
+        ("24746", "CSIDL_FLAG_DONT_VERIFY|0x00020746"),
+        ("24747", "CSIDL_FLAG_DONT_VERIFY|0x00020747"),
+        ("24748", "CSIDL_FLAG_DONT_VERIFY|0x00020748"),
+        ("24749", "CSIDL_FLAG_DONT_VERIFY|0x00020749"),
+        ("24750", "CSIDL_FLAG_DONT_VERIFY|0x00020750"),
+        ("24751", "CSIDL_FLAG_DONT_VERIFY|0x00020751"),
+        ("24752", "CSIDL_FLAG_DONT_VERIFY|0x00020752"),
+        ("24753", "CSIDL_FLAG_DONT_VERIFY|0x00020753"),
+        ("24754", "CSIDL_FLAG_DONT_VERIFY|0x00020754"),
+        ("24755", "CSIDL_FLAG_DONT_VERIFY|0x00020755"),
+        ("24756", "CSIDL_FLAG_DONT_VERIFY|0x00020756"),
+        ("24757", "CSIDL_FLAG_DONT_VERIFY|0x00020757"),
+        ("24758", "CSIDL_FLAG_DONT_VERIFY|0x00020758"),
+        ("24759", "CSIDL_FLAG_DONT_VERIFY|0x00020759"),
+        ("24760", "CSIDL_FLAG_DONT_VERIFY|0x00020760"),
+        ("24761", "CSIDL_FLAG_DONT_VERIFY|0x00020761"),
+        ("24762", "CSIDL_FLAG_DONT_VERIFY|0x00020762"),
+        ("24763", "CSIDL_FLAG_DONT_VERIFY|0x00020763"),
+        ("24764", "CSIDL_FLAG_DONT_VERIFY|0x00020764"),
+        ("24765", "CSIDL_FLAG_DONT_VERIFY|0x00020765"),
+        ("24766", "CSIDL_FLAG_DONT_VERIFY|0x00020766"),
+        ("24767", "CSIDL_FLAG_DONT_VERIFY|0x00020767"),
+        ("24768", "CSIDL_FLAG_DONT_VERIFY|0x00020768"),
+        ("24769", "CSIDL_FLAG_DONT_VERIFY|0x00020769"),
+        ("24770", "CSIDL_FLAG_DONT_VERIFY|0x00020770"),
+        ("24771", "CSIDL_FLAG_DONT_VERIFY|0x00020771"),
+        ("24772", "CSIDL_FLAG_DONT_VERIFY|0x00020772"),
+        ("24773", "CSIDL_FLAG_DONT_VERIFY|0x00020773"),
+        ("24774", "CSIDL_FLAG_DONT_VERIFY|0x00020774"),
+        ("24775", "CSIDL_FLAG_DONT_VERIFY|0x00020775"),
+        ("24776", "CSIDL_FLAG_DONT_VERIFY|0x00020776"),
+        ("24777", "CSIDL_FLAG_DONT_VERIFY|0x00020777"),
+        ("24778", "CSIDL_FLAG_DONT_VERIFY|0x00020778"),
+        ("24779", "CSIDL_FLAG_DONT_VERIFY|0x00020779"),
+        ("24780", "CSIDL_FLAG_DONT_VERIFY|0x00020780"),
+        ("24781", "CSIDL_FLAG_DONT_VERIFY|0x00020781"),
+        ("24782", "CSIDL_FLAG_DONT_VERIFY|0x00020782"),
+        ("24783", "CSIDL_FLAG_DONT_VERIFY|0x00020783"),
+        ("24784", "CSIDL_FLAG_DONT_VERIFY|0x00020784"),
+        ("24785", "CSIDL_FLAG_DONT_VERIFY|0x00020785"),
+        ("24786", "CSIDL_FLAG_DONT_VERIFY|0x00020786"),
+        ("24787", "CSIDL_FLAG_DONT_VERIFY|0x00020787"),
+        ("24788", "CSIDL_FLAG_DONT_VERIFY|0x00020788"),
+        ("24789", "CSIDL_FLAG_DONT_VERIFY|0x00020789"),
+        ("24790", "CSIDL_FLAG_DONT_VERIFY|0x00020790"),
+        ("24791", "CSIDL_FLAG_DONT_VERIFY|0x00020791"),
+        ("24792", "CSIDL_FLAG_DONT_VERIFY|0x00020792"),
+        ("24793", "CSIDL_FLAG_DONT_VERIFY|0x00020793"),
+        ("24794", "CSIDL_FLAG_DONT_VERIFY|0x00020794"),
+        ("24795", "CSIDL_FLAG_DONT_VERIFY|0x00020795"),
+        ("24796", "CSIDL_FLAG_DONT_VERIFY|0x00020796"),
+        ("24797", "CSIDL_FLAG_DONT_VERIFY|0x00020797"),
+        ("24798", "CSIDL_FLAG_DONT_VERIFY|0x00020798"),
+        ("24799", "CSIDL_FLAG_DONT_VERIFY|0x00020799"),
+        ("24800", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020000"),
+        ("24801", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020001"),
+        ("24802", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020002"),
+        ("24803", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020003"),
+        ("24804", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020004"),
+        ("24805", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020005"),
+        ("24806", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020006"),
+        ("24807", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020007"),
+        ("24808", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020008"),
+        ("24809", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020009"),
+        ("24810", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020010"),
+        ("24811", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020011"),
+        ("24812", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020012"),
+        ("24813", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020013"),
+        ("24814", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020014"),
+        ("24815", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020015"),
+        ("24816", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020016"),
+        ("24817", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020017"),
+        ("24818", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020018"),
+        ("24819", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020019"),
+        ("24820", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020020"),
+        ("24821", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020021"),
+        ("24822", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020022"),
+        ("24823", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020023"),
+        ("24824", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020024"),
+        ("24825", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020025"),
+        ("24826", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020026"),
+        ("24827", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020027"),
+        ("24828", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020028"),
+        ("24829", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020029"),
+        ("24830", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020030"),
+        ("24831", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020031"),
+        ("24832", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020032"),
+        ("24833", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020033"),
+        ("24834", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020034"),
+        ("24835", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020035"),
+        ("24836", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020036"),
+        ("24837", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020037"),
+        ("24838", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020038"),
+        ("24839", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020039"),
+        ("24840", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020040"),
+        ("24841", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020041"),
+        ("24842", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020042"),
+        ("24843", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020043"),
+        ("24844", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020044"),
+        ("24845", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020045"),
+        ("24846", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020046"),
+        ("24847", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020047"),
+        ("24848", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020048"),
+        ("24849", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020049"),
+        ("24850", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020050"),
+        ("24851", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020051"),
+        ("24852", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020052"),
+        ("24853", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020053"),
+        ("24854", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020054"),
+        ("24855", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020055"),
+        ("24856", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020056"),
+        ("24857", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020057"),
+        ("24858", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020058"),
+        ("24859", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020059"),
+        ("24860", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020060"),
+        ("24861", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020061"),
+        ("24862", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020062"),
+        ("24863", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020063"),
+        ("24864", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020064"),
+        ("24865", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020065"),
+        ("24866", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020066"),
+        ("24867", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020067"),
+        ("24868", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020068"),
+        ("24869", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020069"),
+        ("24870", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020070"),
+        ("24871", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020071"),
+        ("24872", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020072"),
+        ("24873", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020073"),
+        ("24874", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020074"),
+        ("24875", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020075"),
+        ("24876", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020076"),
+        ("24877", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020077"),
+        ("24878", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020078"),
+        ("24879", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020079"),
+        ("24880", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020080"),
+        ("24881", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020081"),
+        ("24882", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020082"),
+        ("24883", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020083"),
+        ("24884", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020084"),
+        ("24885", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020085"),
+        ("24886", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020086"),
+        ("24887", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020087"),
+        ("24888", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020088"),
+        ("24889", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020089"),
+        ("24890", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020090"),
+        ("24891", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020091"),
+        ("24892", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020092"),
+        ("24893", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020093"),
+        ("24894", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020094"),
+        ("24895", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020095"),
+        ("24896", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020096"),
+        ("24897", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020097"),
+        ("24898", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020098"),
+        ("24899", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020099"),
+        ("24900", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020100"),
+        ("24901", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020101"),
+        ("24902", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020102"),
+        ("24903", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020103"),
+        ("24904", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020104"),
+        ("24905", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020105"),
+        ("24906", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020106"),
+        ("24907", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020107"),
+        ("24908", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020108"),
+        ("24909", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020109"),
+        ("24910", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020110"),
+        ("24911", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020111"),
+        ("24912", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020112"),
+        ("24913", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020113"),
+        ("24914", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020114"),
+        ("24915", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020115"),
+        ("24916", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020116"),
+        ("24917", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020117"),
+        ("24918", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020118"),
+        ("24919", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020119"),
+        ("24920", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020120"),
+        ("24921", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020121"),
+        ("24922", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020122"),
+        ("24923", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020123"),
+        ("24924", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020124"),
+        ("24925", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020125"),
+        ("24926", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020126"),
+        ("24927", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020127"),
+        ("24928", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020128"),
+        ("24929", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020129"),
+        ("24930", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020130"),
+        ("24931", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020131"),
+        ("24932", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020132"),
+        ("24933", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020133"),
+        ("24934", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020134"),
+        ("24935", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020135"),
+        ("24936", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020136"),
+        ("24937", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020137"),
+        ("24938", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020138"),
+        ("24939", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020139"),
+        ("24940", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020140"),
+        ("24941", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020141"),
+        ("24942", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020142"),
+        ("24943", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020143"),
+        ("24944", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020144"),
+        ("24945", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020145"),
+        ("24946", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020146"),
+        ("24947", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020147"),
+        ("24948", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020148"),
+        ("24949", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020149"),
+        ("24950", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020150"),
+        ("24951", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020151"),
+        ("24952", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020152"),
+        ("24953", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020153"),
+        ("24954", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020154"),
+        ("24955", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020155"),
+        ("24956", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020156"),
+        ("24957", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020157"),
+        ("24958", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020158"),
+        ("24959", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020159"),
+        ("24960", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020160"),
+        ("24961", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020161"),
+        ("24962", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020162"),
+        ("24963", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020163"),
+        ("24964", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020164"),
+        ("24965", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020165"),
+        ("24966", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020166"),
+        ("24967", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020167"),
+        ("24968", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020168"),
+        ("24969", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020169"),
+        ("24970", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020170"),
+        ("24971", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020171"),
+        ("24972", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020172"),
+        ("24973", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020173"),
+        ("24974", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020174"),
+        ("24975", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020175"),
+        ("24976", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020176"),
+        ("24977", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020177"),
+        ("24978", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020178"),
+        ("24979", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020179"),
+        ("24980", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020180"),
+        ("24981", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020181"),
+        ("24982", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020182"),
+        ("24983", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020183"),
+        ("24984", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020184"),
+        ("24985", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020185"),
+        ("24986", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020186"),
+        ("24987", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020187"),
+        ("24988", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020188"),
+        ("24989", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020189"),
+        ("24990", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020190"),
+        ("24991", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020191"),
+        ("24992", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020192"),
+        ("24993", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020193"),
+        ("24994", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020194"),
+        ("24995", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020195"),
+        ("24996", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020196"),
+        ("24997", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020197"),
+        ("24998", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020198"),
+        ("24999", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_VERIFY|0x00020199"),
+        ("25000", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020000"),
+        ("25001", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020001"),
+        ("25002", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020002"),
+        ("25003", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020003"),
+        ("25004", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020004"),
+        ("25005", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020005"),
+        ("25006", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020006"),
+        ("25007", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020007"),
+        ("25008", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020008"),
+        ("25009", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020009"),
+        ("25010", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020010"),
+        ("25011", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020011"),
+        ("25012", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020012"),
+        ("25013", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020013"),
+        ("25014", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020014"),
+        ("25015", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020015"),
+        ("25016", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020016"),
+        ("25017", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020017"),
+        ("25018", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020018"),
+        ("25019", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020019"),
+        ("25020", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020020"),
+        ("25021", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020021"),
+        ("25022", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020022"),
+        ("25023", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020023"),
+        ("25024", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020024"),
+        ("25025", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020025"),
+        ("25026", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020026"),
+        ("25027", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020027"),
+        ("25028", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020028"),
+        ("25029", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020029"),
+        ("25030", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020030"),
+        ("25031", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020031"),
+        ("25032", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020032"),
+        ("25033", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020033"),
+        ("25034", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020034"),
+        ("25035", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020035"),
+        ("25036", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020036"),
+        ("25037", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020037"),
+        ("25038", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020038"),
+        ("25039", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020039"),
+        ("25040", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020040"),
+        ("25041", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020041"),
+        ("25042", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020042"),
+        ("25043", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020043"),
+        ("25044", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020044"),
+        ("25045", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020045"),
+        ("25046", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020046"),
+        ("25047", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020047"),
+        ("25048", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020048"),
+        ("25049", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020049"),
+        ("25050", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020050"),
+        ("25051", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020051"),
+        ("25052", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020052"),
+        ("25053", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020053"),
+        ("25054", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020054"),
+        ("25055", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020055"),
+        ("25056", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020056"),
+        ("25057", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020057"),
+        ("25058", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020058"),
+        ("25059", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020059"),
+        ("25060", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020060"),
+        ("25061", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020061"),
+        ("25062", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020062"),
+        ("25063", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020063"),
+        ("25064", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020064"),
+        ("25065", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020065"),
+        ("25066", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020066"),
+        ("25067", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020067"),
+        ("25068", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020068"),
+        ("25069", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020069"),
+        ("25070", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020070"),
+        ("25071", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020071"),
+        ("25072", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020072"),
+        ("25073", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020073"),
+        ("25074", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020074"),
+        ("25075", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020075"),
+        ("25076", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020076"),
+        ("25077", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020077"),
+        ("25078", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020078"),
+        ("25079", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020079"),
+        ("25080", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020080"),
+        ("25081", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020081"),
+        ("25082", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020082"),
+        ("25083", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020083"),
+        ("25084", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020084"),
+        ("25085", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020085"),
+        ("25086", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020086"),
+        ("25087", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020087"),
+        ("25088", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020088"),
+        ("25089", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020089"),
+        ("25090", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020090"),
+        ("25091", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020091"),
+        ("25092", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020092"),
+        ("25093", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020093"),
+        ("25094", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020094"),
+        ("25095", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020095"),
+        ("25096", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020096"),
+        ("25097", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020097"),
+        ("25098", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020098"),
+        ("25099", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020099"),
+        ("25100", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020100"),
+        ("25101", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020101"),
+        ("25102", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020102"),
+        ("25103", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020103"),
+        ("25104", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020104"),
+        ("25105", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020105"),
+        ("25106", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020106"),
+        ("25107", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020107"),
+        ("25108", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020108"),
+        ("25109", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020109"),
+        ("25110", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020110"),
+        ("25111", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020111"),
+        ("25112", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020112"),
+        ("25113", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020113"),
+        ("25114", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020114"),
+        ("25115", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020115"),
+        ("25116", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020116"),
+        ("25117", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020117"),
+        ("25118", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020118"),
+        ("25119", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020119"),
+        ("25120", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020120"),
+        ("25121", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020121"),
+        ("25122", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020122"),
+        ("25123", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020123"),
+        ("25124", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020124"),
+        ("25125", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020125"),
+        ("25126", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020126"),
+        ("25127", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020127"),
+        ("25128", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020128"),
+        ("25129", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020129"),
+        ("25130", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020130"),
+        ("25131", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020131"),
+        ("25132", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020132"),
+        ("25133", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020133"),
+        ("25134", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020134"),
+        ("25135", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020135"),
+        ("25136", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020136"),
+        ("25137", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020137"),
+        ("25138", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020138"),
+        ("25139", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020139"),
+        ("25140", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020140"),
+        ("25141", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020141"),
+        ("25142", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020142"),
+        ("25143", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020143"),
+        ("25144", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020144"),
+        ("25145", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020145"),
+        ("25146", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020146"),
+        ("25147", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020147"),
+        ("25148", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020148"),
+        ("25149", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020149"),
+        ("25150", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020150"),
+        ("25151", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020151"),
+        ("25152", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020152"),
+        ("25153", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020153"),
+        ("25154", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020154"),
+        ("25155", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020155"),
+        ("25156", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020156"),
+        ("25157", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020157"),
+        ("25158", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020158"),
+        ("25159", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020159"),
+        ("25160", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020160"),
+        ("25161", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020161"),
+        ("25162", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020162"),
+        ("25163", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020163"),
+        ("25164", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020164"),
+        ("25165", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020165"),
+        ("25166", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020166"),
+        ("25167", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020167"),
+        ("25168", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020168"),
+        ("25169", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020169"),
+        ("25170", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020170"),
+        ("25171", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020171"),
+        ("25172", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020172"),
+        ("25173", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020173"),
+        ("25174", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020174"),
+        ("25175", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020175"),
+        ("25176", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020176"),
+        ("25177", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020177"),
+        ("25178", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020178"),
+        ("25179", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020179"),
+        ("25180", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020180"),
+        ("25181", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020181"),
+        ("25182", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020182"),
+        ("25183", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020183"),
+        ("25184", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020184"),
+        ("25185", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020185"),
+        ("25186", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020186"),
+        ("25187", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020187"),
+        ("25188", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020188"),
+        ("25189", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020189"),
+        ("25190", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020190"),
+        ("25191", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020191"),
+        ("25192", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020192"),
+        ("25193", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020193"),
+        ("25194", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020194"),
+        ("25195", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020195"),
+        ("25196", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020196"),
+        ("25197", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020197"),
+        ("25198", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020198"),
+        ("25199", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020199"),
+        ("25200", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020200"),
+        ("25201", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020201"),
+        ("25202", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020202"),
+        ("25203", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020203"),
+        ("25204", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020204"),
+        ("25205", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020205"),
+        ("25206", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020206"),
+        ("25207", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020207"),
+        ("25208", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020208"),
+        ("25209", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020209"),
+        ("25210", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020210"),
+        ("25211", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020211"),
+        ("25212", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020212"),
+        ("25213", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020213"),
+        ("25214", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020214"),
+        ("25215", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020215"),
+        ("25216", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020216"),
+        ("25217", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020217"),
+        ("25218", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020218"),
+        ("25219", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020219"),
+        ("25220", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020220"),
+        ("25221", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020221"),
+        ("25222", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020222"),
+        ("25223", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020223"),
+        ("25224", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020224"),
+        ("25225", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020225"),
+        ("25226", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020226"),
+        ("25227", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020227"),
+        ("25228", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020228"),
+        ("25229", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020229"),
+        ("25230", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020230"),
+        ("25231", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020231"),
+        ("25232", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020232"),
+        ("25233", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020233"),
+        ("25234", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020234"),
+        ("25235", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020235"),
+        ("25236", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020236"),
+        ("25237", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020237"),
+        ("25238", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020238"),
+        ("25239", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020239"),
+        ("25240", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020240"),
+        ("25241", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020241"),
+        ("25242", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020242"),
+        ("25243", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020243"),
+        ("25244", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020244"),
+        ("25245", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020245"),
+        ("25246", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020246"),
+        ("25247", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020247"),
+        ("25248", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020248"),
+        ("25249", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020249"),
+        ("25250", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020250"),
+        ("25251", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020251"),
+        ("25252", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020252"),
+        ("25253", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020253"),
+        ("25254", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020254"),
+        ("25255", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020255"),
+        ("25256", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020256"),
+        ("25257", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020257"),
+        ("25258", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020258"),
+        ("25259", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020259"),
+        ("25260", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020260"),
+        ("25261", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020261"),
+        ("25262", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020262"),
+        ("25263", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020263"),
+        ("25264", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020264"),
+        ("25265", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020265"),
+        ("25266", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020266"),
+        ("25267", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020267"),
+        ("25268", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020268"),
+        ("25269", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020269"),
+        ("25270", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020270"),
+        ("25271", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020271"),
+        ("25272", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020272"),
+        ("25273", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020273"),
+        ("25274", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020274"),
+        ("25275", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020275"),
+        ("25276", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020276"),
+        ("25277", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020277"),
+        ("25278", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020278"),
+        ("25279", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020279"),
+        ("25280", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020280"),
+        ("25281", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020281"),
+        ("25282", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020282"),
+        ("25283", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020283"),
+        ("25284", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020284"),
+        ("25285", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020285"),
+        ("25286", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020286"),
+        ("25287", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020287"),
+        ("25288", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020288"),
+        ("25289", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020289"),
+        ("25290", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020290"),
+        ("25291", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020291"),
+        ("25292", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020292"),
+        ("25293", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020293"),
+        ("25294", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020294"),
+        ("25295", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020295"),
+        ("25296", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020296"),
+        ("25297", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020297"),
+        ("25298", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020298"),
+        ("25299", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020299"),
+        ("25300", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020300"),
+        ("25301", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020301"),
+        ("25302", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020302"),
+        ("25303", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020303"),
+        ("25304", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020304"),
+        ("25305", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020305"),
+        ("25306", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020306"),
+        ("25307", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020307"),
+        ("25308", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020308"),
+        ("25309", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020309"),
+        ("25310", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020310"),
+        ("25311", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020311"),
+        ("25312", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020312"),
+        ("25313", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020313"),
+        ("25314", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020314"),
+        ("25315", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020315"),
+        ("25316", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020316"),
+        ("25317", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020317"),
+        ("25318", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020318"),
+        ("25319", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020319"),
+        ("25320", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020320"),
+        ("25321", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020321"),
+        ("25322", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020322"),
+        ("25323", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020323"),
+        ("25324", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020324"),
+        ("25325", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020325"),
+        ("25326", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020326"),
+        ("25327", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020327"),
+        ("25328", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020328"),
+        ("25329", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020329"),
+        ("25330", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020330"),
+        ("25331", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020331"),
+        ("25332", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020332"),
+        ("25333", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020333"),
+        ("25334", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020334"),
+        ("25335", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020335"),
+        ("25336", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020336"),
+        ("25337", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020337"),
+        ("25338", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020338"),
+        ("25339", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020339"),
+        ("25340", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020340"),
+        ("25341", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020341"),
+        ("25342", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020342"),
+        ("25343", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020343"),
+        ("25344", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020344"),
+        ("25345", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020345"),
+        ("25346", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020346"),
+        ("25347", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020347"),
+        ("25348", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020348"),
+        ("25349", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020349"),
+        ("25350", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020350"),
+        ("25351", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020351"),
+        ("25352", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020352"),
+        ("25353", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020353"),
+        ("25354", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020354"),
+        ("25355", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020355"),
+        ("25356", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020356"),
+        ("25357", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020357"),
+        ("25358", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020358"),
+        ("25359", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020359"),
+        ("25360", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020360"),
+        ("25361", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020361"),
+        ("25362", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020362"),
+        ("25363", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020363"),
+        ("25364", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020364"),
+        ("25365", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020365"),
+        ("25366", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020366"),
+        ("25367", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020367"),
+        ("25368", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020368"),
+        ("25369", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020369"),
+        ("25370", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020370"),
+        ("25371", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020371"),
+        ("25372", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020372"),
+        ("25373", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020373"),
+        ("25374", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020374"),
+        ("25375", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020375"),
+        ("25376", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020376"),
+        ("25377", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020377"),
+        ("25378", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020378"),
+        ("25379", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020379"),
+        ("25380", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020380"),
+        ("25381", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020381"),
+        ("25382", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020382"),
+        ("25383", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020383"),
+        ("25384", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020384"),
+        ("25385", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020385"),
+        ("25386", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020386"),
+        ("25387", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020387"),
+        ("25388", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020388"),
+        ("25389", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020389"),
+        ("25390", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020390"),
+        ("25391", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020391"),
+        ("25392", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020392"),
+        ("25393", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020393"),
+        ("25394", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020394"),
+        ("25395", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020395"),
+        ("25396", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020396"),
+        ("25397", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020397"),
+        ("25398", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020398"),
+        ("25399", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020399"),
+        ("25400", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020400"),
+        ("25401", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020401"),
+        ("25402", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020402"),
+        ("25403", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020403"),
+        ("25404", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020404"),
+        ("25405", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020405"),
+        ("25406", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020406"),
+        ("25407", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020407"),
+        ("25408", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020408"),
+        ("25409", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020409"),
+        ("25410", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020410"),
+        ("25411", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020411"),
+        ("25412", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020412"),
+        ("25413", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020413"),
+        ("25414", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020414"),
+        ("25415", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020415"),
+        ("25416", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020416"),
+        ("25417", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020417"),
+        ("25418", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020418"),
+        ("25419", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020419"),
+        ("25420", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020420"),
+        ("25421", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020421"),
+        ("25422", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020422"),
+        ("25423", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020423"),
+        ("25424", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020424"),
+        ("25425", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020425"),
+        ("25426", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020426"),
+        ("25427", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020427"),
+        ("25428", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020428"),
+        ("25429", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020429"),
+        ("25430", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020430"),
+        ("25431", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020431"),
+        ("25432", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020432"),
+        ("25433", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020433"),
+        ("25434", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020434"),
+        ("25435", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020435"),
+        ("25436", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020436"),
+        ("25437", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020437"),
+        ("25438", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020438"),
+        ("25439", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020439"),
+        ("25440", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020440"),
+        ("25441", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020441"),
+        ("25442", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020442"),
+        ("25443", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020443"),
+        ("25444", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020444"),
+        ("25445", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020445"),
+        ("25446", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020446"),
+        ("25447", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020447"),
+        ("25448", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020448"),
+        ("25449", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020449"),
+        ("25450", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020450"),
+        ("25451", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020451"),
+        ("25452", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020452"),
+        ("25453", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020453"),
+        ("25454", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020454"),
+        ("25455", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020455"),
+        ("25456", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020456"),
+        ("25457", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020457"),
+        ("25458", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020458"),
+        ("25459", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020459"),
+        ("25460", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020460"),
+        ("25461", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020461"),
+        ("25462", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020462"),
+        ("25463", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020463"),
+        ("25464", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020464"),
+        ("25465", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020465"),
+        ("25466", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020466"),
+        ("25467", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020467"),
+        ("25468", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020468"),
+        ("25469", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020469"),
+        ("25470", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020470"),
+        ("25471", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020471"),
+        ("25472", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020472"),
+        ("25473", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020473"),
+        ("25474", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020474"),
+        ("25475", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020475"),
+        ("25476", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020476"),
+        ("25477", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020477"),
+        ("25478", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020478"),
+        ("25479", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020479"),
+        ("25480", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020480"),
+        ("25481", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020481"),
+        ("25482", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020482"),
+        ("25483", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020483"),
+        ("25484", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020484"),
+        ("25485", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020485"),
+        ("25486", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020486"),
+        ("25487", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020487"),
+        ("25488", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020488"),
+        ("25489", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020489"),
+        ("25490", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020490"),
+        ("25491", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020491"),
+        ("25492", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020492"),
+        ("25493", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020493"),
+        ("25494", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020494"),
+        ("25495", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020495"),
+        ("25496", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020496"),
+        ("25497", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020497"),
+        ("25498", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020498"),
+        ("25499", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020499"),
+        ("25500", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020500"),
+        ("25501", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020501"),
+        ("25502", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020502"),
+        ("25503", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020503"),
+        ("25504", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020504"),
+        ("25505", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020505"),
+        ("25506", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020506"),
+        ("25507", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020507"),
+        ("25508", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020508"),
+        ("25509", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020509"),
+        ("25510", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020510"),
+        ("25511", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020511"),
+        ("25512", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020512"),
+        ("25513", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020513"),
+        ("25514", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020514"),
+        ("25515", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020515"),
+        ("25516", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020516"),
+        ("25517", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020517"),
+        ("25518", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020518"),
+        ("25519", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020519"),
+        ("25520", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020520"),
+        ("25521", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020521"),
+        ("25522", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020522"),
+        ("25523", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020523"),
+        ("25524", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020524"),
+        ("25525", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020525"),
+        ("25526", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020526"),
+        ("25527", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020527"),
+        ("25528", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020528"),
+        ("25529", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020529"),
+        ("25530", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020530"),
+        ("25531", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020531"),
+        ("25532", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020532"),
+        ("25533", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020533"),
+        ("25534", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020534"),
+        ("25535", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020535"),
+        ("25536", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020536"),
+        ("25537", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020537"),
+        ("25538", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020538"),
+        ("25539", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020539"),
+        ("25540", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020540"),
+        ("25541", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020541"),
+        ("25542", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020542"),
+        ("25543", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020543"),
+        ("25544", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020544"),
+        ("25545", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020545"),
+        ("25546", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020546"),
+        ("25547", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020547"),
+        ("25548", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020548"),
+        ("25549", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020549"),
+        ("25550", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020550"),
+        ("25551", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020551"),
+        ("25552", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020552"),
+        ("25553", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020553"),
+        ("25554", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020554"),
+        ("25555", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020555"),
+        ("25556", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020556"),
+        ("25557", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020557"),
+        ("25558", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020558"),
+        ("25559", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020559"),
+        ("25560", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020560"),
+        ("25561", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020561"),
+        ("25562", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020562"),
+        ("25563", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020563"),
+        ("25564", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020564"),
+        ("25565", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020565"),
+        ("25566", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020566"),
+        ("25567", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020567"),
+        ("25568", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020568"),
+        ("25569", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020569"),
+        ("25570", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020570"),
+        ("25571", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020571"),
+        ("25572", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020572"),
+        ("25573", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020573"),
+        ("25574", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020574"),
+        ("25575", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020575"),
+        ("25576", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020576"),
+        ("25577", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020577"),
+        ("25578", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020578"),
+        ("25579", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020579"),
+        ("25580", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020580"),
+        ("25581", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020581"),
+        ("25582", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020582"),
+        ("25583", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020583"),
+        ("25584", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020584"),
+        ("25585", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020585"),
+        ("25586", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020586"),
+        ("25587", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020587"),
+        ("25588", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020588"),
+        ("25589", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020589"),
+        ("25590", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020590"),
+        ("25591", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020591"),
+        ("25592", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020592"),
+        ("25593", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020593"),
+        ("25594", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020594"),
+        ("25595", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020595"),
+        ("25596", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020596"),
+        ("25597", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020597"),
+        ("25598", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020598"),
+        ("25599", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020599"),
+        ("25600", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020600"),
+        ("25601", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020601"),
+        ("25602", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020602"),
+        ("25603", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020603"),
+        ("25604", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020604"),
+        ("25605", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020605"),
+        ("25606", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020606"),
+        ("25607", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020607"),
+        ("25608", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020608"),
+        ("25609", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020609"),
+        ("25610", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020610"),
+        ("25611", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020611"),
+        ("25612", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020612"),
+        ("25613", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020613"),
+        ("25614", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020614"),
+        ("25615", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020615"),
+        ("25616", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020616"),
+        ("25617", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020617"),
+        ("25618", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020618"),
+        ("25619", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020619"),
+        ("25620", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020620"),
+        ("25621", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020621"),
+        ("25622", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020622"),
+        ("25623", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020623"),
+        ("25624", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020624"),
+        ("25625", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020625"),
+        ("25626", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020626"),
+        ("25627", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020627"),
+        ("25628", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020628"),
+        ("25629", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020629"),
+        ("25630", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020630"),
+        ("25631", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020631"),
+        ("25632", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020632"),
+        ("25633", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020633"),
+        ("25634", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020634"),
+        ("25635", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020635"),
+        ("25636", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020636"),
+        ("25637", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020637"),
+        ("25638", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020638"),
+        ("25639", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020639"),
+        ("25640", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020640"),
+        ("25641", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020641"),
+        ("25642", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020642"),
+        ("25643", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020643"),
+        ("25644", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020644"),
+        ("25645", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020645"),
+        ("25646", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020646"),
+        ("25647", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020647"),
+        ("25648", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020648"),
+        ("25649", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020649"),
+        ("25650", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020650"),
+        ("25651", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020651"),
+        ("25652", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020652"),
+        ("25653", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020653"),
+        ("25654", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020654"),
+        ("25655", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020655"),
+        ("25656", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020656"),
+        ("25657", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020657"),
+        ("25658", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020658"),
+        ("25659", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020659"),
+        ("25660", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020660"),
+        ("25661", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020661"),
+        ("25662", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020662"),
+        ("25663", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020663"),
+        ("25664", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020664"),
+        ("25665", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020665"),
+        ("25666", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020666"),
+        ("25667", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020667"),
+        ("25668", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020668"),
+        ("25669", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020669"),
+        ("25670", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020670"),
+        ("25671", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020671"),
+        ("25672", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020672"),
+        ("25673", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020673"),
+        ("25674", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020674"),
+        ("25675", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020675"),
+        ("25676", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020676"),
+        ("25677", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020677"),
+        ("25678", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020678"),
+        ("25679", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020679"),
+        ("25680", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020680"),
+        ("25681", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020681"),
+        ("25682", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020682"),
+        ("25683", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020683"),
+        ("25684", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020684"),
+        ("25685", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020685"),
+        ("25686", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020686"),
+        ("25687", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020687"),
+        ("25688", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020688"),
+        ("25689", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020689"),
+        ("25690", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020690"),
+        ("25691", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020691"),
+        ("25692", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020692"),
+        ("25693", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020693"),
+        ("25694", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020694"),
+        ("25695", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020695"),
+        ("25696", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020696"),
+        ("25697", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020697"),
+        ("25698", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020698"),
+        ("25699", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020699"),
+        ("25700", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020700"),
+        ("25701", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020701"),
+        ("25702", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020702"),
+        ("25703", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020703"),
+        ("25704", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020704"),
+        ("25705", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020705"),
+        ("25706", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020706"),
+        ("25707", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020707"),
+        ("25708", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020708"),
+        ("25709", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020709"),
+        ("25710", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020710"),
+        ("25711", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020711"),
+        ("25712", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020712"),
+        ("25713", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020713"),
+        ("25714", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020714"),
+        ("25715", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020715"),
+        ("25716", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020716"),
+        ("25717", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020717"),
+        ("25718", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020718"),
+        ("25719", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020719"),
+        ("25720", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020720"),
+        ("25721", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020721"),
+        ("25722", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020722"),
+        ("25723", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020723"),
+        ("25724", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020724"),
+        ("25725", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020725"),
+        ("25726", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020726"),
+        ("25727", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020727"),
+        ("25728", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020728"),
+        ("25729", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020729"),
+        ("25730", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020730"),
+        ("25731", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020731"),
+        ("25732", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020732"),
+        ("25733", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020733"),
+        ("25734", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020734"),
+        ("25735", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020735"),
+        ("25736", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020736"),
+        ("25737", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020737"),
+        ("25738", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020738"),
+        ("25739", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020739"),
+        ("25740", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020740"),
+        ("25741", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020741"),
+        ("25742", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020742"),
+        ("25743", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020743"),
+        ("25744", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020744"),
+        ("25745", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020745"),
+        ("25746", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020746"),
+        ("25747", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020747"),
+        ("25748", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020748"),
+        ("25749", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020749"),
+        ("25750", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020750"),
+        ("25751", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020751"),
+        ("25752", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020752"),
+        ("25753", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020753"),
+        ("25754", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020754"),
+        ("25755", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020755"),
+        ("25756", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020756"),
+        ("25757", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020757"),
+        ("25758", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020758"),
+        ("25759", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020759"),
+        ("25760", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020760"),
+        ("25761", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020761"),
+        ("25762", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020762"),
+        ("25763", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020763"),
+        ("25764", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020764"),
+        ("25765", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020765"),
+        ("25766", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020766"),
+        ("25767", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020767"),
+        ("25768", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020768"),
+        ("25769", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020769"),
+        ("25770", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020770"),
+        ("25771", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020771"),
+        ("25772", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020772"),
+        ("25773", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020773"),
+        ("25774", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020774"),
+        ("25775", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020775"),
+        ("25776", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020776"),
+        ("25777", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020777"),
+        ("25778", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020778"),
+        ("25779", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020779"),
+        ("25780", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020780"),
+        ("25781", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020781"),
+        ("25782", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020782"),
+        ("25783", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020783"),
+        ("25784", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020784"),
+        ("25785", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020785"),
+        ("25786", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020786"),
+        ("25787", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020787"),
+        ("25788", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020788"),
+        ("25789", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020789"),
+        ("25790", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020790"),
+        ("25791", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020791"),
+        ("25792", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020792"),
+        ("25793", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020793"),
+        ("25794", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020794"),
+        ("25795", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020795"),
+        ("25796", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020796"),
+        ("25797", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020797"),
+        ("25798", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020798"),
+        ("25799", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020799"),
+        ("25800", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020000"),
+        ("25801", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020001"),
+        ("25802", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020002"),
+        ("25803", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020003"),
+        ("25804", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020004"),
+        ("25805", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020005"),
+        ("25806", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020006"),
+        ("25807", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020007"),
+        ("25808", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020008"),
+        ("25809", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020009"),
+        ("25810", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020010"),
+        ("25811", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020011"),
+        ("25812", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020012"),
+        ("25813", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020013"),
+        ("25814", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020014"),
+        ("25815", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020015"),
+        ("25816", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020016"),
+        ("25817", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020017"),
+        ("25818", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020018"),
+        ("25819", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020019"),
+        ("25820", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020020"),
+        ("25821", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020021"),
+        ("25822", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020022"),
+        ("25823", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020023"),
+        ("25824", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020024"),
+        ("25825", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020025"),
+        ("25826", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020026"),
+        ("25827", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020027"),
+        ("25828", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020028"),
+        ("25829", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020029"),
+        ("25830", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020030"),
+        ("25831", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020031"),
+        ("25832", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020032"),
+        ("25833", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020033"),
+        ("25834", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020034"),
+        ("25835", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020035"),
+        ("25836", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020036"),
+        ("25837", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020037"),
+        ("25838", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020038"),
+        ("25839", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020039"),
+        ("25840", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020040"),
+        ("25841", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020041"),
+        ("25842", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020042"),
+        ("25843", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020043"),
+        ("25844", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020044"),
+        ("25845", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020045"),
+        ("25846", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020046"),
+        ("25847", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020047"),
+        ("25848", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020048"),
+        ("25849", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020049"),
+        ("25850", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020050"),
+        ("25851", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020051"),
+        ("25852", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020052"),
+        ("25853", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020053"),
+        ("25854", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020054"),
+        ("25855", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020055"),
+        ("25856", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020056"),
+        ("25857", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020057"),
+        ("25858", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020058"),
+        ("25859", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020059"),
+        ("25860", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020060"),
+        ("25861", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020061"),
+        ("25862", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020062"),
+        ("25863", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020063"),
+        ("25864", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020064"),
+        ("25865", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020065"),
+        ("25866", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020066"),
+        ("25867", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020067"),
+        ("25868", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020068"),
+        ("25869", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020069"),
+        ("25870", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020070"),
+        ("25871", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020071"),
+        ("25872", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020072"),
+        ("25873", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020073"),
+        ("25874", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020074"),
+        ("25875", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020075"),
+        ("25876", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020076"),
+        ("25877", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020077"),
+        ("25878", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020078"),
+        ("25879", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020079"),
+        ("25880", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020080"),
+        ("25881", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020081"),
+        ("25882", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020082"),
+        ("25883", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020083"),
+        ("25884", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020084"),
+        ("25885", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020085"),
+        ("25886", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020086"),
+        ("25887", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020087"),
+        ("25888", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020088"),
+        ("25889", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020089"),
+        ("25890", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020090"),
+        ("25891", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020091"),
+        ("25892", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020092"),
+        ("25893", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020093"),
+        ("25894", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020094"),
+        ("25895", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020095"),
+        ("25896", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020096"),
+        ("25897", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020097"),
+        ("25898", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020098"),
+        ("25899", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020099"),
+        ("25900", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020100"),
+        ("25901", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020101"),
+        ("25902", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020102"),
+        ("25903", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020103"),
+        ("25904", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020104"),
+        ("25905", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020105"),
+        ("25906", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020106"),
+        ("25907", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020107"),
+        ("25908", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020108"),
+        ("25909", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020109"),
+        ("25910", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020110"),
+        ("25911", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020111"),
+        ("25912", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020112"),
+        ("25913", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020113"),
+        ("25914", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020114"),
+        ("25915", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020115"),
+        ("25916", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020116"),
+        ("25917", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020117"),
+        ("25918", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020118"),
+        ("25919", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020119"),
+        ("25920", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020120"),
+        ("25921", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020121"),
+        ("25922", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020122"),
+        ("25923", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020123"),
+        ("25924", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020124"),
+        ("25925", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020125"),
+        ("25926", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020126"),
+        ("25927", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020127"),
+        ("25928", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020128"),
+        ("25929", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020129"),
+        ("25930", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020130"),
+        ("25931", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020131"),
+        ("25932", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020132"),
+        ("25933", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020133"),
+        ("25934", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020134"),
+        ("25935", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020135"),
+        ("25936", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020136"),
+        ("25937", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020137"),
+        ("25938", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020138"),
+        ("25939", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020139"),
+        ("25940", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020140"),
+        ("25941", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020141"),
+        ("25942", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020142"),
+        ("25943", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020143"),
+        ("25944", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020144"),
+        ("25945", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020145"),
+        ("25946", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020146"),
+        ("25947", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020147"),
+        ("25948", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020148"),
+        ("25949", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020149"),
+        ("25950", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020150"),
+        ("25951", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020151"),
+        ("25952", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020152"),
+        ("25953", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020153"),
+        ("25954", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020154"),
+        ("25955", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020155"),
+        ("25956", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020156"),
+        ("25957", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020157"),
+        ("25958", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020158"),
+        ("25959", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020159"),
+        ("25960", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020160"),
+        ("25961", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020161"),
+        ("25962", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020162"),
+        ("25963", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020163"),
+        ("25964", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020164"),
+        ("25965", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020165"),
+        ("25966", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020166"),
+        ("25967", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020167"),
+        ("25968", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020168"),
+        ("25969", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020169"),
+        ("25970", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020170"),
+        ("25971", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020171"),
+        ("25972", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020172"),
+        ("25973", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020173"),
+        ("25974", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020174"),
+        ("25975", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020175"),
+        ("25976", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020176"),
+        ("25977", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020177"),
+        ("25978", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020178"),
+        ("25979", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020179"),
+        ("25980", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020180"),
+        ("25981", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020181"),
+        ("25982", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020182"),
+        ("25983", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020183"),
+        ("25984", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020184"),
+        ("25985", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020185"),
+        ("25986", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020186"),
+        ("25987", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020187"),
+        ("25988", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020188"),
+        ("25989", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020189"),
+        ("25990", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020190"),
+        ("25991", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020191"),
+        ("25992", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020192"),
+        ("25993", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020193"),
+        ("25994", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020194"),
+        ("25995", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020195"),
+        ("25996", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020196"),
+        ("25997", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020197"),
+        ("25998", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020198"),
+        ("25999", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_VERIFY|0x00020199"),
+        ("26000", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020000"),
+        ("26001", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020001"),
+        ("26002", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020002"),
+        ("26003", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020003"),
+        ("26004", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020004"),
+        ("26005", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020005"),
+        ("26006", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020006"),
+        ("26007", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020007"),
+        ("26008", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020008"),
+        ("26009", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020009"),
+        ("26010", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020010"),
+        ("26011", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020011"),
+        ("26012", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020012"),
+        ("26013", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020013"),
+        ("26014", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020014"),
+        ("26015", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020015"),
+        ("26016", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020016"),
+        ("26017", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020017"),
+        ("26018", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020018"),
+        ("26019", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020019"),
+        ("26020", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020020"),
+        ("26021", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020021"),
+        ("26022", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020022"),
+        ("26023", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020023"),
+        ("26024", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020024"),
+        ("26025", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020025"),
+        ("26026", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020026"),
+        ("26027", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020027"),
+        ("26028", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020028"),
+        ("26029", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020029"),
+        ("26030", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020030"),
+        ("26031", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020031"),
+        ("26032", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020032"),
+        ("26033", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020033"),
+        ("26034", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020034"),
+        ("26035", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020035"),
+        ("26036", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020036"),
+        ("26037", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020037"),
+        ("26038", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020038"),
+        ("26039", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020039"),
+        ("26040", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020040"),
+        ("26041", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020041"),
+        ("26042", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020042"),
+        ("26043", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020043"),
+        ("26044", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020044"),
+        ("26045", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020045"),
+        ("26046", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020046"),
+        ("26047", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020047"),
+        ("26048", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020048"),
+        ("26049", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020049"),
+        ("26050", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020050"),
+        ("26051", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020051"),
+        ("26052", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020052"),
+        ("26053", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020053"),
+        ("26054", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020054"),
+        ("26055", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020055"),
+        ("26056", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020056"),
+        ("26057", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020057"),
+        ("26058", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020058"),
+        ("26059", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020059"),
+        ("26060", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020060"),
+        ("26061", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020061"),
+        ("26062", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020062"),
+        ("26063", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020063"),
+        ("26064", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020064"),
+        ("26065", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020065"),
+        ("26066", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020066"),
+        ("26067", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020067"),
+        ("26068", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020068"),
+        ("26069", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020069"),
+        ("26070", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020070"),
+        ("26071", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020071"),
+        ("26072", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020072"),
+        ("26073", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020073"),
+        ("26074", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020074"),
+        ("26075", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020075"),
+        ("26076", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020076"),
+        ("26077", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020077"),
+        ("26078", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020078"),
+        ("26079", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020079"),
+        ("26080", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020080"),
+        ("26081", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020081"),
+        ("26082", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020082"),
+        ("26083", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020083"),
+        ("26084", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020084"),
+        ("26085", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020085"),
+        ("26086", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020086"),
+        ("26087", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020087"),
+        ("26088", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020088"),
+        ("26089", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020089"),
+        ("26090", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020090"),
+        ("26091", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020091"),
+        ("26092", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020092"),
+        ("26093", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020093"),
+        ("26094", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020094"),
+        ("26095", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020095"),
+        ("26096", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020096"),
+        ("26097", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020097"),
+        ("26098", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020098"),
+        ("26099", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020099"),
+        ("26100", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020100"),
+        ("26101", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020101"),
+        ("26102", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020102"),
+        ("26103", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020103"),
+        ("26104", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020104"),
+        ("26105", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020105"),
+        ("26106", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020106"),
+        ("26107", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020107"),
+        ("26108", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020108"),
+        ("26109", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020109"),
+        ("26110", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020110"),
+        ("26111", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020111"),
+        ("26112", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020112"),
+        ("26113", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020113"),
+        ("26114", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020114"),
+        ("26115", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020115"),
+        ("26116", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020116"),
+        ("26117", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020117"),
+        ("26118", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020118"),
+        ("26119", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020119"),
+        ("26120", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020120"),
+        ("26121", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020121"),
+        ("26122", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020122"),
+        ("26123", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020123"),
+        ("26124", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020124"),
+        ("26125", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020125"),
+        ("26126", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020126"),
+        ("26127", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020127"),
+        ("26128", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020128"),
+        ("26129", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020129"),
+        ("26130", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020130"),
+        ("26131", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020131"),
+        ("26132", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020132"),
+        ("26133", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020133"),
+        ("26134", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020134"),
+        ("26135", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020135"),
+        ("26136", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020136"),
+        ("26137", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020137"),
+        ("26138", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020138"),
+        ("26139", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020139"),
+        ("26140", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020140"),
+        ("26141", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020141"),
+        ("26142", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020142"),
+        ("26143", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020143"),
+        ("26144", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020144"),
+        ("26145", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020145"),
+        ("26146", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020146"),
+        ("26147", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020147"),
+        ("26148", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020148"),
+        ("26149", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020149"),
+        ("26150", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020150"),
+        ("26151", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020151"),
+        ("26152", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020152"),
+        ("26153", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020153"),
+        ("26154", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020154"),
+        ("26155", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020155"),
+        ("26156", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020156"),
+        ("26157", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020157"),
+        ("26158", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020158"),
+        ("26159", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020159"),
+        ("26160", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020160"),
+        ("26161", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020161"),
+        ("26162", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020162"),
+        ("26163", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020163"),
+        ("26164", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020164"),
+        ("26165", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020165"),
+        ("26166", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020166"),
+        ("26167", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020167"),
+        ("26168", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020168"),
+        ("26169", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020169"),
+        ("26170", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020170"),
+        ("26171", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020171"),
+        ("26172", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020172"),
+        ("26173", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020173"),
+        ("26174", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020174"),
+        ("26175", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020175"),
+        ("26176", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020176"),
+        ("26177", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020177"),
+        ("26178", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020178"),
+        ("26179", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020179"),
+        ("26180", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020180"),
+        ("26181", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020181"),
+        ("26182", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020182"),
+        ("26183", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020183"),
+        ("26184", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020184"),
+        ("26185", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020185"),
+        ("26186", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020186"),
+        ("26187", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020187"),
+        ("26188", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020188"),
+        ("26189", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020189"),
+        ("26190", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020190"),
+        ("26191", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020191"),
+        ("26192", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020192"),
+        ("26193", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020193"),
+        ("26194", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020194"),
+        ("26195", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020195"),
+        ("26196", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020196"),
+        ("26197", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020197"),
+        ("26198", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020198"),
+        ("26199", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020199"),
+        ("26200", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020200"),
+        ("26201", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020201"),
+        ("26202", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020202"),
+        ("26203", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020203"),
+        ("26204", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020204"),
+        ("26205", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020205"),
+        ("26206", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020206"),
+        ("26207", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020207"),
+        ("26208", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020208"),
+        ("26209", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020209"),
+        ("26210", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020210"),
+        ("26211", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020211"),
+        ("26212", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020212"),
+        ("26213", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020213"),
+        ("26214", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020214"),
+        ("26215", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020215"),
+        ("26216", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020216"),
+        ("26217", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020217"),
+        ("26218", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020218"),
+        ("26219", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020219"),
+        ("26220", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020220"),
+        ("26221", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020221"),
+        ("26222", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020222"),
+        ("26223", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020223"),
+        ("26224", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020224"),
+        ("26225", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020225"),
+        ("26226", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020226"),
+        ("26227", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020227"),
+        ("26228", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020228"),
+        ("26229", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020229"),
+        ("26230", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020230"),
+        ("26231", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020231"),
+        ("26232", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020232"),
+        ("26233", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020233"),
+        ("26234", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020234"),
+        ("26235", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020235"),
+        ("26236", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020236"),
+        ("26237", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020237"),
+        ("26238", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020238"),
+        ("26239", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020239"),
+        ("26240", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020240"),
+        ("26241", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020241"),
+        ("26242", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020242"),
+        ("26243", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020243"),
+        ("26244", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020244"),
+        ("26245", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020245"),
+        ("26246", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020246"),
+        ("26247", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020247"),
+        ("26248", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020248"),
+        ("26249", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020249"),
+        ("26250", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020250"),
+        ("26251", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020251"),
+        ("26252", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020252"),
+        ("26253", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020253"),
+        ("26254", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020254"),
+        ("26255", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020255"),
+        ("26256", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020256"),
+        ("26257", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020257"),
+        ("26258", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020258"),
+        ("26259", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020259"),
+        ("26260", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020260"),
+        ("26261", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020261"),
+        ("26262", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020262"),
+        ("26263", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020263"),
+        ("26264", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020264"),
+        ("26265", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020265"),
+        ("26266", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020266"),
+        ("26267", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020267"),
+        ("26268", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020268"),
+        ("26269", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020269"),
+        ("26270", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020270"),
+        ("26271", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020271"),
+        ("26272", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020272"),
+        ("26273", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020273"),
+        ("26274", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020274"),
+        ("26275", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020275"),
+        ("26276", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020276"),
+        ("26277", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020277"),
+        ("26278", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020278"),
+        ("26279", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020279"),
+        ("26280", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020280"),
+        ("26281", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020281"),
+        ("26282", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020282"),
+        ("26283", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020283"),
+        ("26284", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020284"),
+        ("26285", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020285"),
+        ("26286", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020286"),
+        ("26287", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020287"),
+        ("26288", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020288"),
+        ("26289", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020289"),
+        ("26290", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020290"),
+        ("26291", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020291"),
+        ("26292", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020292"),
+        ("26293", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020293"),
+        ("26294", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020294"),
+        ("26295", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020295"),
+        ("26296", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020296"),
+        ("26297", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020297"),
+        ("26298", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020298"),
+        ("26299", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020299"),
+        ("26300", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020300"),
+        ("26301", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020301"),
+        ("26302", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020302"),
+        ("26303", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020303"),
+        ("26304", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020304"),
+        ("26305", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020305"),
+        ("26306", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020306"),
+        ("26307", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020307"),
+        ("26308", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020308"),
+        ("26309", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020309"),
+        ("26310", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020310"),
+        ("26311", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020311"),
+        ("26312", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020312"),
+        ("26313", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020313"),
+        ("26314", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020314"),
+        ("26315", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020315"),
+        ("26316", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020316"),
+        ("26317", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020317"),
+        ("26318", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020318"),
+        ("26319", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020319"),
+        ("26320", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020320"),
+        ("26321", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020321"),
+        ("26322", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020322"),
+        ("26323", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020323"),
+        ("26324", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020324"),
+        ("26325", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020325"),
+        ("26326", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020326"),
+        ("26327", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020327"),
+        ("26328", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020328"),
+        ("26329", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020329"),
+        ("26330", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020330"),
+        ("26331", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020331"),
+        ("26332", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020332"),
+        ("26333", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020333"),
+        ("26334", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020334"),
+        ("26335", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020335"),
+        ("26336", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020336"),
+        ("26337", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020337"),
+        ("26338", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020338"),
+        ("26339", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020339"),
+        ("26340", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020340"),
+        ("26341", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020341"),
+        ("26342", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020342"),
+        ("26343", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020343"),
+        ("26344", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020344"),
+        ("26345", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020345"),
+        ("26346", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020346"),
+        ("26347", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020347"),
+        ("26348", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020348"),
+        ("26349", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020349"),
+        ("26350", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020350"),
+        ("26351", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020351"),
+        ("26352", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020352"),
+        ("26353", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020353"),
+        ("26354", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020354"),
+        ("26355", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020355"),
+        ("26356", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020356"),
+        ("26357", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020357"),
+        ("26358", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020358"),
+        ("26359", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020359"),
+        ("26360", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020360"),
+        ("26361", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020361"),
+        ("26362", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020362"),
+        ("26363", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020363"),
+        ("26364", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020364"),
+        ("26365", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020365"),
+        ("26366", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020366"),
+        ("26367", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020367"),
+        ("26368", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020368"),
+        ("26369", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020369"),
+        ("26370", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020370"),
+        ("26371", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020371"),
+        ("26372", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020372"),
+        ("26373", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020373"),
+        ("26374", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020374"),
+        ("26375", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020375"),
+        ("26376", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020376"),
+        ("26377", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020377"),
+        ("26378", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020378"),
+        ("26379", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020379"),
+        ("26380", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020380"),
+        ("26381", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020381"),
+        ("26382", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020382"),
+        ("26383", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020383"),
+        ("26384", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020384"),
+        ("26385", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020385"),
+        ("26386", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020386"),
+        ("26387", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020387"),
+        ("26388", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020388"),
+        ("26389", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020389"),
+        ("26390", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020390"),
+        ("26391", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020391"),
+        ("26392", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020392"),
+        ("26393", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020393"),
+        ("26394", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020394"),
+        ("26395", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020395"),
+        ("26396", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020396"),
+        ("26397", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020397"),
+        ("26398", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020398"),
+        ("26399", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020399"),
+        ("26400", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020400"),
+        ("26401", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020401"),
+        ("26402", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020402"),
+        ("26403", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020403"),
+        ("26404", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020404"),
+        ("26405", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020405"),
+        ("26406", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020406"),
+        ("26407", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020407"),
+        ("26408", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020408"),
+        ("26409", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020409"),
+        ("26410", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020410"),
+        ("26411", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020411"),
+        ("26412", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020412"),
+        ("26413", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020413"),
+        ("26414", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020414"),
+        ("26415", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020415"),
+        ("26416", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020416"),
+        ("26417", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020417"),
+        ("26418", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020418"),
+        ("26419", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020419"),
+        ("26420", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020420"),
+        ("26421", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020421"),
+        ("26422", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020422"),
+        ("26423", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020423"),
+        ("26424", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020424"),
+        ("26425", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020425"),
+        ("26426", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020426"),
+        ("26427", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020427"),
+        ("26428", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020428"),
+        ("26429", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020429"),
+        ("26430", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020430"),
+        ("26431", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020431"),
+        ("26432", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020432"),
+        ("26433", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020433"),
+        ("26434", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020434"),
+        ("26435", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020435"),
+        ("26436", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020436"),
+        ("26437", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020437"),
+        ("26438", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020438"),
+        ("26439", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020439"),
+        ("26440", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020440"),
+        ("26441", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020441"),
+        ("26442", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020442"),
+        ("26443", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020443"),
+        ("26444", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020444"),
+        ("26445", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020445"),
+        ("26446", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020446"),
+        ("26447", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020447"),
+        ("26448", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020448"),
+        ("26449", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020449"),
+        ("26450", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020450"),
+        ("26451", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020451"),
+        ("26452", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020452"),
+        ("26453", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020453"),
+        ("26454", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020454"),
+        ("26455", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020455"),
+        ("26456", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020456"),
+        ("26457", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020457"),
+        ("26458", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020458"),
+        ("26459", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020459"),
+        ("26460", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020460"),
+        ("26461", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020461"),
+        ("26462", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020462"),
+        ("26463", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020463"),
+        ("26464", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020464"),
+        ("26465", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020465"),
+        ("26466", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020466"),
+        ("26467", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020467"),
+        ("26468", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020468"),
+        ("26469", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020469"),
+        ("26470", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020470"),
+        ("26471", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020471"),
+        ("26472", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020472"),
+        ("26473", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020473"),
+        ("26474", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020474"),
+        ("26475", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020475"),
+        ("26476", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020476"),
+        ("26477", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020477"),
+        ("26478", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020478"),
+        ("26479", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020479"),
+        ("26480", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020480"),
+        ("26481", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020481"),
+        ("26482", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020482"),
+        ("26483", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020483"),
+        ("26484", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020484"),
+        ("26485", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020485"),
+        ("26486", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020486"),
+        ("26487", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020487"),
+        ("26488", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020488"),
+        ("26489", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020489"),
+        ("26490", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020490"),
+        ("26491", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020491"),
+        ("26492", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020492"),
+        ("26493", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020493"),
+        ("26494", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020494"),
+        ("26495", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020495"),
+        ("26496", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020496"),
+        ("26497", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020497"),
+        ("26498", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020498"),
+        ("26499", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020499"),
+        ("26500", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020500"),
+        ("26501", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020501"),
+        ("26502", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020502"),
+        ("26503", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020503"),
+        ("26504", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020504"),
+        ("26505", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020505"),
+        ("26506", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020506"),
+        ("26507", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020507"),
+        ("26508", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020508"),
+        ("26509", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020509"),
+        ("26510", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020510"),
+        ("26511", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020511"),
+        ("26512", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020512"),
+        ("26513", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020513"),
+        ("26514", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020514"),
+        ("26515", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020515"),
+        ("26516", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020516"),
+        ("26517", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020517"),
+        ("26518", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020518"),
+        ("26519", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020519"),
+        ("26520", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020520"),
+        ("26521", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020521"),
+        ("26522", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020522"),
+        ("26523", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020523"),
+        ("26524", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020524"),
+        ("26525", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020525"),
+        ("26526", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020526"),
+        ("26527", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020527"),
+        ("26528", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020528"),
+        ("26529", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020529"),
+        ("26530", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020530"),
+        ("26531", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020531"),
+        ("26532", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020532"),
+        ("26533", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020533"),
+        ("26534", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020534"),
+        ("26535", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020535"),
+        ("26536", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020536"),
+        ("26537", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020537"),
+        ("26538", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020538"),
+        ("26539", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020539"),
+        ("26540", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020540"),
+        ("26541", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020541"),
+        ("26542", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020542"),
+        ("26543", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020543"),
+        ("26544", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020544"),
+        ("26545", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020545"),
+        ("26546", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020546"),
+        ("26547", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020547"),
+        ("26548", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020548"),
+        ("26549", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020549"),
+        ("26550", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020550"),
+        ("26551", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020551"),
+        ("26552", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020552"),
+        ("26553", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020553"),
+        ("26554", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020554"),
+        ("26555", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020555"),
+        ("26556", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020556"),
+        ("26557", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020557"),
+        ("26558", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020558"),
+        ("26559", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020559"),
+        ("26560", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020560"),
+        ("26561", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020561"),
+        ("26562", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020562"),
+        ("26563", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020563"),
+        ("26564", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020564"),
+        ("26565", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020565"),
+        ("26566", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020566"),
+        ("26567", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020567"),
+        ("26568", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020568"),
+        ("26569", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020569"),
+        ("26570", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020570"),
+        ("26571", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020571"),
+        ("26572", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020572"),
+        ("26573", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020573"),
+        ("26574", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020574"),
+        ("26575", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020575"),
+        ("26576", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020576"),
+        ("26577", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020577"),
+        ("26578", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020578"),
+        ("26579", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020579"),
+        ("26580", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020580"),
+        ("26581", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020581"),
+        ("26582", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020582"),
+        ("26583", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020583"),
+        ("26584", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020584"),
+        ("26585", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020585"),
+        ("26586", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020586"),
+        ("26587", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020587"),
+        ("26588", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020588"),
+        ("26589", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020589"),
+        ("26590", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020590"),
+        ("26591", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020591"),
+        ("26592", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020592"),
+        ("26593", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020593"),
+        ("26594", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020594"),
+        ("26595", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020595"),
+        ("26596", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020596"),
+        ("26597", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020597"),
+        ("26598", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020598"),
+        ("26599", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020599"),
+        ("26600", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020600"),
+        ("26601", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020601"),
+        ("26602", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020602"),
+        ("26603", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020603"),
+        ("26604", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020604"),
+        ("26605", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020605"),
+        ("26606", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020606"),
+        ("26607", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020607"),
+        ("26608", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020608"),
+        ("26609", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020609"),
+        ("26610", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020610"),
+        ("26611", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020611"),
+        ("26612", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020612"),
+        ("26613", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020613"),
+        ("26614", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020614"),
+        ("26615", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020615"),
+        ("26616", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020616"),
+        ("26617", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020617"),
+        ("26618", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020618"),
+        ("26619", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020619"),
+        ("26620", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020620"),
+        ("26621", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020621"),
+        ("26622", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020622"),
+        ("26623", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020623"),
+        ("26624", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020624"),
+        ("26625", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020625"),
+        ("26626", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020626"),
+        ("26627", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020627"),
+        ("26628", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020628"),
+        ("26629", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020629"),
+        ("26630", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020630"),
+        ("26631", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020631"),
+        ("26632", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020632"),
+        ("26633", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020633"),
+        ("26634", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020634"),
+        ("26635", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020635"),
+        ("26636", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020636"),
+        ("26637", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020637"),
+        ("26638", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020638"),
+        ("26639", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020639"),
+        ("26640", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020640"),
+        ("26641", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020641"),
+        ("26642", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020642"),
+        ("26643", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020643"),
+        ("26644", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020644"),
+        ("26645", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020645"),
+        ("26646", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020646"),
+        ("26647", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020647"),
+        ("26648", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020648"),
+        ("26649", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020649"),
+        ("26650", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020650"),
+        ("26651", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020651"),
+        ("26652", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020652"),
+        ("26653", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020653"),
+        ("26654", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020654"),
+        ("26655", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020655"),
+        ("26656", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020656"),
+        ("26657", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020657"),
+        ("26658", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020658"),
+        ("26659", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020659"),
+        ("26660", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020660"),
+        ("26661", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020661"),
+        ("26662", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020662"),
+        ("26663", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020663"),
+        ("26664", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020664"),
+        ("26665", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020665"),
+        ("26666", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020666"),
+        ("26667", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020667"),
+        ("26668", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020668"),
+        ("26669", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020669"),
+        ("26670", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020670"),
+        ("26671", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020671"),
+        ("26672", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020672"),
+        ("26673", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020673"),
+        ("26674", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020674"),
+        ("26675", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020675"),
+        ("26676", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020676"),
+        ("26677", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020677"),
+        ("26678", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020678"),
+        ("26679", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020679"),
+        ("26680", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020680"),
+        ("26681", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020681"),
+        ("26682", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020682"),
+        ("26683", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020683"),
+        ("26684", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020684"),
+        ("26685", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020685"),
+        ("26686", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020686"),
+        ("26687", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020687"),
+        ("26688", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020688"),
+        ("26689", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020689"),
+        ("26690", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020690"),
+        ("26691", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020691"),
+        ("26692", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020692"),
+        ("26693", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020693"),
+        ("26694", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020694"),
+        ("26695", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020695"),
+        ("26696", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020696"),
+        ("26697", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020697"),
+        ("26698", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020698"),
+        ("26699", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020699"),
+        ("26700", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020700"),
+        ("26701", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020701"),
+        ("26702", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020702"),
+        ("26703", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020703"),
+        ("26704", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020704"),
+        ("26705", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020705"),
+        ("26706", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020706"),
+        ("26707", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020707"),
+        ("26708", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020708"),
+        ("26709", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020709"),
+        ("26710", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020710"),
+        ("26711", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020711"),
+        ("26712", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020712"),
+        ("26713", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020713"),
+        ("26714", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020714"),
+        ("26715", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020715"),
+        ("26716", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020716"),
+        ("26717", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020717"),
+        ("26718", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020718"),
+        ("26719", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020719"),
+        ("26720", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020720"),
+        ("26721", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020721"),
+        ("26722", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020722"),
+        ("26723", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020723"),
+        ("26724", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020724"),
+        ("26725", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020725"),
+        ("26726", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020726"),
+        ("26727", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020727"),
+        ("26728", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020728"),
+        ("26729", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020729"),
+        ("26730", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020730"),
+        ("26731", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020731"),
+        ("26732", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020732"),
+        ("26733", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020733"),
+        ("26734", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020734"),
+        ("26735", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020735"),
+        ("26736", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020736"),
+        ("26737", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020737"),
+        ("26738", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020738"),
+        ("26739", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020739"),
+        ("26740", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020740"),
+        ("26741", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020741"),
+        ("26742", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020742"),
+        ("26743", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020743"),
+        ("26744", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020744"),
+        ("26745", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020745"),
+        ("26746", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020746"),
+        ("26747", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020747"),
+        ("26748", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020748"),
+        ("26749", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020749"),
+        ("26750", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020750"),
+        ("26751", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020751"),
+        ("26752", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020752"),
+        ("26753", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020753"),
+        ("26754", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020754"),
+        ("26755", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020755"),
+        ("26756", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020756"),
+        ("26757", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020757"),
+        ("26758", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020758"),
+        ("26759", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020759"),
+        ("26760", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020760"),
+        ("26761", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020761"),
+        ("26762", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020762"),
+        ("26763", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020763"),
+        ("26764", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020764"),
+        ("26765", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020765"),
+        ("26766", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020766"),
+        ("26767", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020767"),
+        ("26768", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020768"),
+        ("26769", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020769"),
+        ("26770", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020770"),
+        ("26771", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020771"),
+        ("26772", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020772"),
+        ("26773", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020773"),
+        ("26774", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020774"),
+        ("26775", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020775"),
+        ("26776", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020776"),
+        ("26777", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020777"),
+        ("26778", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020778"),
+        ("26779", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020779"),
+        ("26780", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020780"),
+        ("26781", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020781"),
+        ("26782", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020782"),
+        ("26783", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020783"),
+        ("26784", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020784"),
+        ("26785", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020785"),
+        ("26786", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020786"),
+        ("26787", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020787"),
+        ("26788", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020788"),
+        ("26789", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020789"),
+        ("26790", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020790"),
+        ("26791", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020791"),
+        ("26792", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020792"),
+        ("26793", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020793"),
+        ("26794", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020794"),
+        ("26795", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020795"),
+        ("26796", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020796"),
+        ("26797", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020797"),
+        ("26798", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020798"),
+        ("26799", "CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020799"),
+        ("26800", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020000"),
+        ("26801", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020001"),
+        ("26802", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020002"),
+        ("26803", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020003"),
+        ("26804", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020004"),
+        ("26805", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020005"),
+        ("26806", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020006"),
+        ("26807", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020007"),
+        ("26808", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020008"),
+        ("26809", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020009"),
+        ("26810", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020010"),
+        ("26811", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020011"),
+        ("26812", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020012"),
+        ("26813", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020013"),
+        ("26814", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020014"),
+        ("26815", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020015"),
+        ("26816", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020016"),
+        ("26817", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020017"),
+        ("26818", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020018"),
+        ("26819", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020019"),
+        ("26820", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020020"),
+        ("26821", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020021"),
+        ("26822", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020022"),
+        ("26823", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020023"),
+        ("26824", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020024"),
+        ("26825", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020025"),
+        ("26826", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020026"),
+        ("26827", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020027"),
+        ("26828", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020028"),
+        ("26829", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020029"),
+        ("26830", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020030"),
+        ("26831", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020031"),
+        ("26832", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020032"),
+        ("26833", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020033"),
+        ("26834", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020034"),
+        ("26835", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020035"),
+        ("26836", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020036"),
+        ("26837", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020037"),
+        ("26838", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020038"),
+        ("26839", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020039"),
+        ("26840", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020040"),
+        ("26841", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020041"),
+        ("26842", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020042"),
+        ("26843", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020043"),
+        ("26844", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020044"),
+        ("26845", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020045"),
+        ("26846", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020046"),
+        ("26847", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020047"),
+        ("26848", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020048"),
+        ("26849", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020049"),
+        ("26850", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020050"),
+        ("26851", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020051"),
+        ("26852", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020052"),
+        ("26853", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020053"),
+        ("26854", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020054"),
+        ("26855", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020055"),
+        ("26856", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020056"),
+        ("26857", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020057"),
+        ("26858", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020058"),
+        ("26859", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020059"),
+        ("26860", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020060"),
+        ("26861", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020061"),
+        ("26862", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020062"),
+        ("26863", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020063"),
+        ("26864", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020064"),
+        ("26865", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020065"),
+        ("26866", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020066"),
+        ("26867", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020067"),
+        ("26868", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020068"),
+        ("26869", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020069"),
+        ("26870", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020070"),
+        ("26871", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020071"),
+        ("26872", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020072"),
+        ("26873", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020073"),
+        ("26874", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020074"),
+        ("26875", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020075"),
+        ("26876", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020076"),
+        ("26877", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020077"),
+        ("26878", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020078"),
+        ("26879", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020079"),
+        ("26880", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020080"),
+        ("26881", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020081"),
+        ("26882", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020082"),
+        ("26883", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020083"),
+        ("26884", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020084"),
+        ("26885", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020085"),
+        ("26886", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020086"),
+        ("26887", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020087"),
+        ("26888", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020088"),
+        ("26889", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020089"),
+        ("26890", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020090"),
+        ("26891", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020091"),
+        ("26892", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020092"),
+        ("26893", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020093"),
+        ("26894", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020094"),
+        ("26895", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020095"),
+        ("26896", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020096"),
+        ("26897", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020097"),
+        ("26898", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020098"),
+        ("26899", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020099"),
+        ("26900", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020100"),
+        ("26901", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020101"),
+        ("26902", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020102"),
+        ("26903", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020103"),
+        ("26904", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020104"),
+        ("26905", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020105"),
+        ("26906", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020106"),
+        ("26907", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020107"),
+        ("26908", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020108"),
+        ("26909", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020109"),
+        ("26910", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020110"),
+        ("26911", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020111"),
+        ("26912", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020112"),
+        ("26913", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020113"),
+        ("26914", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020114"),
+        ("26915", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020115"),
+        ("26916", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020116"),
+        ("26917", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020117"),
+        ("26918", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020118"),
+        ("26919", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020119"),
+        ("26920", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020120"),
+        ("26921", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020121"),
+        ("26922", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020122"),
+        ("26923", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020123"),
+        ("26924", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020124"),
+        ("26925", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020125"),
+        ("26926", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020126"),
+        ("26927", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020127"),
+        ("26928", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020128"),
+        ("26929", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020129"),
+        ("26930", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020130"),
+        ("26931", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020131"),
+        ("26932", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020132"),
+        ("26933", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020133"),
+        ("26934", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020134"),
+        ("26935", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020135"),
+        ("26936", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020136"),
+        ("26937", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020137"),
+        ("26938", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020138"),
+        ("26939", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020139"),
+        ("26940", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020140"),
+        ("26941", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020141"),
+        ("26942", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020142"),
+        ("26943", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020143"),
+        ("26944", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020144"),
+        ("26945", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020145"),
+        ("26946", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020146"),
+        ("26947", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020147"),
+        ("26948", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020148"),
+        ("26949", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020149"),
+        ("26950", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020150"),
+        ("26951", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020151"),
+        ("26952", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020152"),
+        ("26953", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020153"),
+        ("26954", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020154"),
+        ("26955", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020155"),
+        ("26956", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020156"),
+        ("26957", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020157"),
+        ("26958", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020158"),
+        ("26959", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020159"),
+        ("26960", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020160"),
+        ("26961", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020161"),
+        ("26962", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020162"),
+        ("26963", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020163"),
+        ("26964", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020164"),
+        ("26965", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020165"),
+        ("26966", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020166"),
+        ("26967", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020167"),
+        ("26968", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020168"),
+        ("26969", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020169"),
+        ("26970", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020170"),
+        ("26971", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020171"),
+        ("26972", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020172"),
+        ("26973", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020173"),
+        ("26974", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020174"),
+        ("26975", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020175"),
+        ("26976", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020176"),
+        ("26977", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020177"),
+        ("26978", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020178"),
+        ("26979", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020179"),
+        ("26980", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020180"),
+        ("26981", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020181"),
+        ("26982", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020182"),
+        ("26983", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020183"),
+        ("26984", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020184"),
+        ("26985", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020185"),
+        ("26986", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020186"),
+        ("26987", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020187"),
+        ("26988", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020188"),
+        ("26989", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020189"),
+        ("26990", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020190"),
+        ("26991", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020191"),
+        ("26992", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020192"),
+        ("26993", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020193"),
+        ("26994", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020194"),
+        ("26995", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020195"),
+        ("26996", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020196"),
+        ("26997", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020197"),
+        ("26998", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020198"),
+        ("26999", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020199"),
+        ("27000", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020000"),
+        ("27001", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020001"),
+        ("27002", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020002"),
+        ("27003", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020003"),
+        ("27004", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020004"),
+        ("27005", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020005"),
+        ("27006", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020006"),
+        ("27007", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020007"),
+        ("27008", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020008"),
+        ("27009", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020009"),
+        ("27010", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020010"),
+        ("27011", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020011"),
+        ("27012", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020012"),
+        ("27013", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020013"),
+        ("27014", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020014"),
+        ("27015", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020015"),
+        ("27016", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020016"),
+        ("27017", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020017"),
+        ("27018", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020018"),
+        ("27019", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020019"),
+        ("27020", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020020"),
+        ("27021", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020021"),
+        ("27022", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020022"),
+        ("27023", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020023"),
+        ("27024", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020024"),
+        ("27025", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020025"),
+        ("27026", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020026"),
+        ("27027", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020027"),
+        ("27028", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020028"),
+        ("27029", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020029"),
+        ("27030", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020030"),
+        ("27031", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020031"),
+        ("27032", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020032"),
+        ("27033", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020033"),
+        ("27034", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020034"),
+        ("27035", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020035"),
+        ("27036", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020036"),
+        ("27037", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020037"),
+        ("27038", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020038"),
+        ("27039", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020039"),
+        ("27040", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020040"),
+        ("27041", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020041"),
+        ("27042", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020042"),
+        ("27043", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020043"),
+        ("27044", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020044"),
+        ("27045", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020045"),
+        ("27046", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020046"),
+        ("27047", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020047"),
+        ("27048", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020048"),
+        ("27049", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020049"),
+        ("27050", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020050"),
+        ("27051", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020051"),
+        ("27052", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020052"),
+        ("27053", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020053"),
+        ("27054", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020054"),
+        ("27055", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020055"),
+        ("27056", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020056"),
+        ("27057", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020057"),
+        ("27058", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020058"),
+        ("27059", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020059"),
+        ("27060", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020060"),
+        ("27061", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020061"),
+        ("27062", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020062"),
+        ("27063", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020063"),
+        ("27064", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020064"),
+        ("27065", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020065"),
+        ("27066", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020066"),
+        ("27067", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020067"),
+        ("27068", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020068"),
+        ("27069", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020069"),
+        ("27070", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020070"),
+        ("27071", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020071"),
+        ("27072", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020072"),
+        ("27073", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020073"),
+        ("27074", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020074"),
+        ("27075", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020075"),
+        ("27076", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020076"),
+        ("27077", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020077"),
+        ("27078", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020078"),
+        ("27079", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020079"),
+        ("27080", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020080"),
+        ("27081", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020081"),
+        ("27082", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020082"),
+        ("27083", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020083"),
+        ("27084", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020084"),
+        ("27085", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020085"),
+        ("27086", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020086"),
+        ("27087", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020087"),
+        ("27088", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020088"),
+        ("27089", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020089"),
+        ("27090", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020090"),
+        ("27091", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020091"),
+        ("27092", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020092"),
+        ("27093", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020093"),
+        ("27094", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020094"),
+        ("27095", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020095"),
+        ("27096", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020096"),
+        ("27097", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020097"),
+        ("27098", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020098"),
+        ("27099", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020099"),
+        ("27100", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020100"),
+        ("27101", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020101"),
+        ("27102", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020102"),
+        ("27103", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020103"),
+        ("27104", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020104"),
+        ("27105", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020105"),
+        ("27106", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020106"),
+        ("27107", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020107"),
+        ("27108", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020108"),
+        ("27109", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020109"),
+        ("27110", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020110"),
+        ("27111", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020111"),
+        ("27112", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020112"),
+        ("27113", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020113"),
+        ("27114", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020114"),
+        ("27115", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020115"),
+        ("27116", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020116"),
+        ("27117", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020117"),
+        ("27118", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020118"),
+        ("27119", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020119"),
+        ("27120", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020120"),
+        ("27121", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020121"),
+        ("27122", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020122"),
+        ("27123", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020123"),
+        ("27124", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020124"),
+        ("27125", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020125"),
+        ("27126", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020126"),
+        ("27127", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020127"),
+        ("27128", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020128"),
+        ("27129", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020129"),
+        ("27130", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020130"),
+        ("27131", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020131"),
+        ("27132", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020132"),
+        ("27133", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020133"),
+        ("27134", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020134"),
+        ("27135", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020135"),
+        ("27136", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020136"),
+        ("27137", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020137"),
+        ("27138", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020138"),
+        ("27139", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020139"),
+        ("27140", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020140"),
+        ("27141", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020141"),
+        ("27142", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020142"),
+        ("27143", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020143"),
+        ("27144", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020144"),
+        ("27145", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020145"),
+        ("27146", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020146"),
+        ("27147", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020147"),
+        ("27148", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020148"),
+        ("27149", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020149"),
+        ("27150", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020150"),
+        ("27151", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020151"),
+        ("27152", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020152"),
+        ("27153", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020153"),
+        ("27154", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020154"),
+        ("27155", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020155"),
+        ("27156", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020156"),
+        ("27157", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020157"),
+        ("27158", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020158"),
+        ("27159", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020159"),
+        ("27160", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020160"),
+        ("27161", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020161"),
+        ("27162", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020162"),
+        ("27163", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020163"),
+        ("27164", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020164"),
+        ("27165", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020165"),
+        ("27166", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020166"),
+        ("27167", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020167"),
+        ("27168", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020168"),
+        ("27169", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020169"),
+        ("27170", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020170"),
+        ("27171", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020171"),
+        ("27172", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020172"),
+        ("27173", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020173"),
+        ("27174", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020174"),
+        ("27175", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020175"),
+        ("27176", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020176"),
+        ("27177", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020177"),
+        ("27178", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020178"),
+        ("27179", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020179"),
+        ("27180", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020180"),
+        ("27181", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020181"),
+        ("27182", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020182"),
+        ("27183", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020183"),
+        ("27184", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020184"),
+        ("27185", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020185"),
+        ("27186", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020186"),
+        ("27187", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020187"),
+        ("27188", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020188"),
+        ("27189", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020189"),
+        ("27190", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020190"),
+        ("27191", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020191"),
+        ("27192", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020192"),
+        ("27193", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020193"),
+        ("27194", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020194"),
+        ("27195", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020195"),
+        ("27196", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020196"),
+        ("27197", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020197"),
+        ("27198", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020198"),
+        ("27199", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020199"),
+        ("27200", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020200"),
+        ("27201", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020201"),
+        ("27202", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020202"),
+        ("27203", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020203"),
+        ("27204", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020204"),
+        ("27205", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020205"),
+        ("27206", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020206"),
+        ("27207", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020207"),
+        ("27208", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020208"),
+        ("27209", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020209"),
+        ("27210", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020210"),
+        ("27211", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020211"),
+        ("27212", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020212"),
+        ("27213", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020213"),
+        ("27214", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020214"),
+        ("27215", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020215"),
+        ("27216", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020216"),
+        ("27217", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020217"),
+        ("27218", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020218"),
+        ("27219", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020219"),
+        ("27220", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020220"),
+        ("27221", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020221"),
+        ("27222", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020222"),
+        ("27223", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020223"),
+        ("27224", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020224"),
+        ("27225", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020225"),
+        ("27226", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020226"),
+        ("27227", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020227"),
+        ("27228", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020228"),
+        ("27229", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020229"),
+        ("27230", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020230"),
+        ("27231", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020231"),
+        ("27232", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020232"),
+        ("27233", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020233"),
+        ("27234", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020234"),
+        ("27235", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020235"),
+        ("27236", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020236"),
+        ("27237", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020237"),
+        ("27238", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020238"),
+        ("27239", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020239"),
+        ("27240", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020240"),
+        ("27241", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020241"),
+        ("27242", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020242"),
+        ("27243", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020243"),
+        ("27244", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020244"),
+        ("27245", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020245"),
+        ("27246", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020246"),
+        ("27247", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020247"),
+        ("27248", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020248"),
+        ("27249", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020249"),
+        ("27250", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020250"),
+        ("27251", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020251"),
+        ("27252", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020252"),
+        ("27253", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020253"),
+        ("27254", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020254"),
+        ("27255", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020255"),
+        ("27256", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020256"),
+        ("27257", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020257"),
+        ("27258", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020258"),
+        ("27259", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020259"),
+        ("27260", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020260"),
+        ("27261", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020261"),
+        ("27262", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020262"),
+        ("27263", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020263"),
+        ("27264", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020264"),
+        ("27265", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020265"),
+        ("27266", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020266"),
+        ("27267", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020267"),
+        ("27268", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020268"),
+        ("27269", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020269"),
+        ("27270", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020270"),
+        ("27271", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020271"),
+        ("27272", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020272"),
+        ("27273", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020273"),
+        ("27274", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020274"),
+        ("27275", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020275"),
+        ("27276", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020276"),
+        ("27277", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020277"),
+        ("27278", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020278"),
+        ("27279", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020279"),
+        ("27280", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020280"),
+        ("27281", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020281"),
+        ("27282", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020282"),
+        ("27283", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020283"),
+        ("27284", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020284"),
+        ("27285", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020285"),
+        ("27286", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020286"),
+        ("27287", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020287"),
+        ("27288", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020288"),
+        ("27289", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020289"),
+        ("27290", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020290"),
+        ("27291", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020291"),
+        ("27292", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020292"),
+        ("27293", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020293"),
+        ("27294", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020294"),
+        ("27295", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020295"),
+        ("27296", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020296"),
+        ("27297", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020297"),
+        ("27298", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020298"),
+        ("27299", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020299"),
+        ("27300", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020300"),
+        ("27301", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020301"),
+        ("27302", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020302"),
+        ("27303", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020303"),
+        ("27304", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020304"),
+        ("27305", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020305"),
+        ("27306", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020306"),
+        ("27307", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020307"),
+        ("27308", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020308"),
+        ("27309", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020309"),
+        ("27310", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020310"),
+        ("27311", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020311"),
+        ("27312", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020312"),
+        ("27313", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020313"),
+        ("27314", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020314"),
+        ("27315", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020315"),
+        ("27316", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020316"),
+        ("27317", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020317"),
+        ("27318", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020318"),
+        ("27319", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020319"),
+        ("27320", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020320"),
+        ("27321", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020321"),
+        ("27322", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020322"),
+        ("27323", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020323"),
+        ("27324", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020324"),
+        ("27325", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020325"),
+        ("27326", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020326"),
+        ("27327", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020327"),
+        ("27328", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020328"),
+        ("27329", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020329"),
+        ("27330", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020330"),
+        ("27331", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020331"),
+        ("27332", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020332"),
+        ("27333", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020333"),
+        ("27334", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020334"),
+        ("27335", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020335"),
+        ("27336", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020336"),
+        ("27337", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020337"),
+        ("27338", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020338"),
+        ("27339", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020339"),
+        ("27340", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020340"),
+        ("27341", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020341"),
+        ("27342", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020342"),
+        ("27343", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020343"),
+        ("27344", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020344"),
+        ("27345", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020345"),
+        ("27346", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020346"),
+        ("27347", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020347"),
+        ("27348", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020348"),
+        ("27349", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020349"),
+        ("27350", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020350"),
+        ("27351", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020351"),
+        ("27352", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020352"),
+        ("27353", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020353"),
+        ("27354", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020354"),
+        ("27355", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020355"),
+        ("27356", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020356"),
+        ("27357", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020357"),
+        ("27358", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020358"),
+        ("27359", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020359"),
+        ("27360", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020360"),
+        ("27361", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020361"),
+        ("27362", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020362"),
+        ("27363", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020363"),
+        ("27364", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020364"),
+        ("27365", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020365"),
+        ("27366", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020366"),
+        ("27367", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020367"),
+        ("27368", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020368"),
+        ("27369", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020369"),
+        ("27370", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020370"),
+        ("27371", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020371"),
+        ("27372", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020372"),
+        ("27373", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020373"),
+        ("27374", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020374"),
+        ("27375", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020375"),
+        ("27376", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020376"),
+        ("27377", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020377"),
+        ("27378", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020378"),
+        ("27379", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020379"),
+        ("27380", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020380"),
+        ("27381", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020381"),
+        ("27382", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020382"),
+        ("27383", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020383"),
+        ("27384", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020384"),
+        ("27385", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020385"),
+        ("27386", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020386"),
+        ("27387", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020387"),
+        ("27388", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020388"),
+        ("27389", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020389"),
+        ("27390", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020390"),
+        ("27391", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020391"),
+        ("27392", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020392"),
+        ("27393", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020393"),
+        ("27394", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020394"),
+        ("27395", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020395"),
+        ("27396", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020396"),
+        ("27397", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020397"),
+        ("27398", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020398"),
+        ("27399", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020399"),
+        ("27400", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020400"),
+        ("27401", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020401"),
+        ("27402", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020402"),
+        ("27403", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020403"),
+        ("27404", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020404"),
+        ("27405", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020405"),
+        ("27406", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020406"),
+        ("27407", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020407"),
+        ("27408", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020408"),
+        ("27409", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020409"),
+        ("27410", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020410"),
+        ("27411", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020411"),
+        ("27412", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020412"),
+        ("27413", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020413"),
+        ("27414", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020414"),
+        ("27415", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020415"),
+        ("27416", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020416"),
+        ("27417", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020417"),
+        ("27418", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020418"),
+        ("27419", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020419"),
+        ("27420", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020420"),
+        ("27421", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020421"),
+        ("27422", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020422"),
+        ("27423", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020423"),
+        ("27424", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020424"),
+        ("27425", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020425"),
+        ("27426", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020426"),
+        ("27427", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020427"),
+        ("27428", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020428"),
+        ("27429", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020429"),
+        ("27430", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020430"),
+        ("27431", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020431"),
+        ("27432", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020432"),
+        ("27433", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020433"),
+        ("27434", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020434"),
+        ("27435", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020435"),
+        ("27436", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020436"),
+        ("27437", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020437"),
+        ("27438", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020438"),
+        ("27439", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020439"),
+        ("27440", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020440"),
+        ("27441", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020441"),
+        ("27442", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020442"),
+        ("27443", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020443"),
+        ("27444", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020444"),
+        ("27445", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020445"),
+        ("27446", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020446"),
+        ("27447", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020447"),
+        ("27448", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020448"),
+        ("27449", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020449"),
+        ("27450", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020450"),
+        ("27451", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020451"),
+        ("27452", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020452"),
+        ("27453", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020453"),
+        ("27454", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020454"),
+        ("27455", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020455"),
+        ("27456", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020456"),
+        ("27457", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020457"),
+        ("27458", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020458"),
+        ("27459", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020459"),
+        ("27460", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020460"),
+        ("27461", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020461"),
+        ("27462", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020462"),
+        ("27463", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020463"),
+        ("27464", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020464"),
+        ("27465", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020465"),
+        ("27466", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020466"),
+        ("27467", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020467"),
+        ("27468", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020468"),
+        ("27469", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020469"),
+        ("27470", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020470"),
+        ("27471", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020471"),
+        ("27472", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020472"),
+        ("27473", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020473"),
+        ("27474", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020474"),
+        ("27475", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020475"),
+        ("27476", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020476"),
+        ("27477", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020477"),
+        ("27478", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020478"),
+        ("27479", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020479"),
+        ("27480", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020480"),
+        ("27481", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020481"),
+        ("27482", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020482"),
+        ("27483", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020483"),
+        ("27484", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020484"),
+        ("27485", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020485"),
+        ("27486", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020486"),
+        ("27487", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020487"),
+        ("27488", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020488"),
+        ("27489", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020489"),
+        ("27490", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020490"),
+        ("27491", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020491"),
+        ("27492", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020492"),
+        ("27493", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020493"),
+        ("27494", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020494"),
+        ("27495", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020495"),
+        ("27496", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020496"),
+        ("27497", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020497"),
+        ("27498", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020498"),
+        ("27499", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020499"),
+        ("27500", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020500"),
+        ("27501", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020501"),
+        ("27502", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020502"),
+        ("27503", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020503"),
+        ("27504", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020504"),
+        ("27505", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020505"),
+        ("27506", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020506"),
+        ("27507", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020507"),
+        ("27508", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020508"),
+        ("27509", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020509"),
+        ("27510", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020510"),
+        ("27511", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020511"),
+        ("27512", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020512"),
+        ("27513", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020513"),
+        ("27514", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020514"),
+        ("27515", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020515"),
+        ("27516", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020516"),
+        ("27517", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020517"),
+        ("27518", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020518"),
+        ("27519", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020519"),
+        ("27520", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020520"),
+        ("27521", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020521"),
+        ("27522", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020522"),
+        ("27523", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020523"),
+        ("27524", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020524"),
+        ("27525", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020525"),
+        ("27526", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020526"),
+        ("27527", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020527"),
+        ("27528", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020528"),
+        ("27529", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020529"),
+        ("27530", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020530"),
+        ("27531", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020531"),
+        ("27532", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020532"),
+        ("27533", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020533"),
+        ("27534", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020534"),
+        ("27535", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020535"),
+        ("27536", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020536"),
+        ("27537", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020537"),
+        ("27538", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020538"),
+        ("27539", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020539"),
+        ("27540", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020540"),
+        ("27541", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020541"),
+        ("27542", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020542"),
+        ("27543", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020543"),
+        ("27544", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020544"),
+        ("27545", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020545"),
+        ("27546", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020546"),
+        ("27547", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020547"),
+        ("27548", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020548"),
+        ("27549", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020549"),
+        ("27550", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020550"),
+        ("27551", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020551"),
+        ("27552", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020552"),
+        ("27553", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020553"),
+        ("27554", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020554"),
+        ("27555", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020555"),
+        ("27556", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020556"),
+        ("27557", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020557"),
+        ("27558", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020558"),
+        ("27559", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020559"),
+        ("27560", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020560"),
+        ("27561", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020561"),
+        ("27562", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020562"),
+        ("27563", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020563"),
+        ("27564", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020564"),
+        ("27565", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020565"),
+        ("27566", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020566"),
+        ("27567", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020567"),
+        ("27568", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020568"),
+        ("27569", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020569"),
+        ("27570", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020570"),
+        ("27571", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020571"),
+        ("27572", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020572"),
+        ("27573", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020573"),
+        ("27574", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020574"),
+        ("27575", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020575"),
+        ("27576", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020576"),
+        ("27577", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020577"),
+        ("27578", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020578"),
+        ("27579", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020579"),
+        ("27580", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020580"),
+        ("27581", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020581"),
+        ("27582", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020582"),
+        ("27583", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020583"),
+        ("27584", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020584"),
+        ("27585", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020585"),
+        ("27586", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020586"),
+        ("27587", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020587"),
+        ("27588", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020588"),
+        ("27589", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020589"),
+        ("27590", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020590"),
+        ("27591", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020591"),
+        ("27592", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020592"),
+        ("27593", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020593"),
+        ("27594", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020594"),
+        ("27595", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020595"),
+        ("27596", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020596"),
+        ("27597", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020597"),
+        ("27598", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020598"),
+        ("27599", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020599"),
+        ("27600", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020600"),
+        ("27601", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020601"),
+        ("27602", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020602"),
+        ("27603", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020603"),
+        ("27604", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020604"),
+        ("27605", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020605"),
+        ("27606", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020606"),
+        ("27607", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020607"),
+        ("27608", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020608"),
+        ("27609", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020609"),
+        ("27610", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020610"),
+        ("27611", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020611"),
+        ("27612", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020612"),
+        ("27613", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020613"),
+        ("27614", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020614"),
+        ("27615", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020615"),
+        ("27616", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020616"),
+        ("27617", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020617"),
+        ("27618", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020618"),
+        ("27619", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020619"),
+        ("27620", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020620"),
+        ("27621", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020621"),
+        ("27622", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020622"),
+        ("27623", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020623"),
+        ("27624", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020624"),
+        ("27625", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020625"),
+        ("27626", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020626"),
+        ("27627", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020627"),
+        ("27628", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020628"),
+        ("27629", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020629"),
+        ("27630", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020630"),
+        ("27631", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020631"),
+        ("27632", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020632"),
+        ("27633", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020633"),
+        ("27634", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020634"),
+        ("27635", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020635"),
+        ("27636", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020636"),
+        ("27637", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020637"),
+        ("27638", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020638"),
+        ("27639", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020639"),
+        ("27640", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020640"),
+        ("27641", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020641"),
+        ("27642", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020642"),
+        ("27643", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020643"),
+        ("27644", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020644"),
+        ("27645", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020645"),
+        ("27646", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020646"),
+        ("27647", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020647"),
+        ("27648", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020648"),
+        ("27649", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020649"),
+        ("27650", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020650"),
+        ("27651", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020651"),
+        ("27652", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020652"),
+        ("27653", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020653"),
+        ("27654", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020654"),
+        ("27655", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020655"),
+        ("27656", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020656"),
+        ("27657", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020657"),
+        ("27658", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020658"),
+        ("27659", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020659"),
+        ("27660", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020660"),
+        ("27661", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020661"),
+        ("27662", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020662"),
+        ("27663", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020663"),
+        ("27664", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020664"),
+        ("27665", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020665"),
+        ("27666", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020666"),
+        ("27667", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020667"),
+        ("27668", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020668"),
+        ("27669", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020669"),
+        ("27670", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020670"),
+        ("27671", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020671"),
+        ("27672", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020672"),
+        ("27673", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020673"),
+        ("27674", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020674"),
+        ("27675", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020675"),
+        ("27676", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020676"),
+        ("27677", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020677"),
+        ("27678", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020678"),
+        ("27679", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020679"),
+        ("27680", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020680"),
+        ("27681", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020681"),
+        ("27682", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020682"),
+        ("27683", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020683"),
+        ("27684", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020684"),
+        ("27685", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020685"),
+        ("27686", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020686"),
+        ("27687", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020687"),
+        ("27688", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020688"),
+        ("27689", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020689"),
+        ("27690", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020690"),
+        ("27691", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020691"),
+        ("27692", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020692"),
+        ("27693", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020693"),
+        ("27694", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020694"),
+        ("27695", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020695"),
+        ("27696", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020696"),
+        ("27697", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020697"),
+        ("27698", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020698"),
+        ("27699", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020699"),
+        ("27700", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020700"),
+        ("27701", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020701"),
+        ("27702", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020702"),
+        ("27703", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020703"),
+        ("27704", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020704"),
+        ("27705", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020705"),
+        ("27706", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020706"),
+        ("27707", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020707"),
+        ("27708", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020708"),
+        ("27709", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020709"),
+        ("27710", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020710"),
+        ("27711", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020711"),
+        ("27712", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020712"),
+        ("27713", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020713"),
+        ("27714", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020714"),
+        ("27715", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020715"),
+        ("27716", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020716"),
+        ("27717", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020717"),
+        ("27718", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020718"),
+        ("27719", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020719"),
+        ("27720", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020720"),
+        ("27721", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020721"),
+        ("27722", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020722"),
+        ("27723", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020723"),
+        ("27724", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020724"),
+        ("27725", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020725"),
+        ("27726", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020726"),
+        ("27727", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020727"),
+        ("27728", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020728"),
+        ("27729", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020729"),
+        ("27730", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020730"),
+        ("27731", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020731"),
+        ("27732", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020732"),
+        ("27733", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020733"),
+        ("27734", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020734"),
+        ("27735", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020735"),
+        ("27736", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020736"),
+        ("27737", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020737"),
+        ("27738", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020738"),
+        ("27739", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020739"),
+        ("27740", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020740"),
+        ("27741", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020741"),
+        ("27742", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020742"),
+        ("27743", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020743"),
+        ("27744", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020744"),
+        ("27745", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020745"),
+        ("27746", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020746"),
+        ("27747", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020747"),
+        ("27748", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020748"),
+        ("27749", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020749"),
+        ("27750", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020750"),
+        ("27751", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020751"),
+        ("27752", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020752"),
+        ("27753", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020753"),
+        ("27754", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020754"),
+        ("27755", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020755"),
+        ("27756", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020756"),
+        ("27757", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020757"),
+        ("27758", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020758"),
+        ("27759", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020759"),
+        ("27760", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020760"),
+        ("27761", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020761"),
+        ("27762", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020762"),
+        ("27763", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020763"),
+        ("27764", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020764"),
+        ("27765", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020765"),
+        ("27766", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020766"),
+        ("27767", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020767"),
+        ("27768", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020768"),
+        ("27769", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020769"),
+        ("27770", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020770"),
+        ("27771", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020771"),
+        ("27772", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020772"),
+        ("27773", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020773"),
+        ("27774", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020774"),
+        ("27775", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020775"),
+        ("27776", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020776"),
+        ("27777", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020777"),
+        ("27778", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020778"),
+        ("27779", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020779"),
+        ("27780", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020780"),
+        ("27781", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020781"),
+        ("27782", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020782"),
+        ("27783", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020783"),
+        ("27784", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020784"),
+        ("27785", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020785"),
+        ("27786", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020786"),
+        ("27787", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020787"),
+        ("27788", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020788"),
+        ("27789", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020789"),
+        ("27790", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020790"),
+        ("27791", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020791"),
+        ("27792", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020792"),
+        ("27793", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020793"),
+        ("27794", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020794"),
+        ("27795", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020795"),
+        ("27796", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020796"),
+        ("27797", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020797"),
+        ("27798", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020798"),
+        ("27799", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020799"),
+        ("27800", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020000"),
+        ("27801", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020001"),
+        ("27802", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020002"),
+        ("27803", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020003"),
+        ("27804", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020004"),
+        ("27805", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020005"),
+        ("27806", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020006"),
+        ("27807", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020007"),
+        ("27808", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020008"),
+        ("27809", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020009"),
+        ("27810", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020010"),
+        ("27811", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020011"),
+        ("27812", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020012"),
+        ("27813", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020013"),
+        ("27814", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020014"),
+        ("27815", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020015"),
+        ("27816", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020016"),
+        ("27817", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020017"),
+        ("27818", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020018"),
+        ("27819", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020019"),
+        ("27820", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020020"),
+        ("27821", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020021"),
+        ("27822", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020022"),
+        ("27823", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020023"),
+        ("27824", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020024"),
+        ("27825", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020025"),
+        ("27826", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020026"),
+        ("27827", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020027"),
+        ("27828", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020028"),
+        ("27829", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020029"),
+        ("27830", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020030"),
+        ("27831", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020031"),
+        ("27832", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020032"),
+        ("27833", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020033"),
+        ("27834", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020034"),
+        ("27835", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020035"),
+        ("27836", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020036"),
+        ("27837", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020037"),
+        ("27838", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020038"),
+        ("27839", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020039"),
+        ("27840", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020040"),
+        ("27841", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020041"),
+        ("27842", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020042"),
+        ("27843", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020043"),
+        ("27844", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020044"),
+        ("27845", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020045"),
+        ("27846", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020046"),
+        ("27847", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020047"),
+        ("27848", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020048"),
+        ("27849", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020049"),
+        ("27850", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020050"),
+        ("27851", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020051"),
+        ("27852", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020052"),
+        ("27853", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020053"),
+        ("27854", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020054"),
+        ("27855", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020055"),
+        ("27856", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020056"),
+        ("27857", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020057"),
+        ("27858", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020058"),
+        ("27859", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020059"),
+        ("27860", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020060"),
+        ("27861", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020061"),
+        ("27862", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020062"),
+        ("27863", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020063"),
+        ("27864", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020064"),
+        ("27865", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020065"),
+        ("27866", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020066"),
+        ("27867", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020067"),
+        ("27868", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020068"),
+        ("27869", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020069"),
+        ("27870", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020070"),
+        ("27871", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020071"),
+        ("27872", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020072"),
+        ("27873", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020073"),
+        ("27874", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020074"),
+        ("27875", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020075"),
+        ("27876", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020076"),
+        ("27877", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020077"),
+        ("27878", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020078"),
+        ("27879", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020079"),
+        ("27880", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020080"),
+        ("27881", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020081"),
+        ("27882", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020082"),
+        ("27883", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020083"),
+        ("27884", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020084"),
+        ("27885", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020085"),
+        ("27886", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020086"),
+        ("27887", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020087"),
+        ("27888", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020088"),
+        ("27889", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020089"),
+        ("27890", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020090"),
+        ("27891", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020091"),
+        ("27892", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020092"),
+        ("27893", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020093"),
+        ("27894", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020094"),
+        ("27895", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020095"),
+        ("27896", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020096"),
+        ("27897", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020097"),
+        ("27898", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020098"),
+        ("27899", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020099"),
+        ("27900", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020100"),
+        ("27901", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020101"),
+        ("27902", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020102"),
+        ("27903", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020103"),
+        ("27904", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020104"),
+        ("27905", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020105"),
+        ("27906", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020106"),
+        ("27907", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020107"),
+        ("27908", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020108"),
+        ("27909", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020109"),
+        ("27910", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020110"),
+        ("27911", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020111"),
+        ("27912", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020112"),
+        ("27913", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020113"),
+        ("27914", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020114"),
+        ("27915", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020115"),
+        ("27916", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020116"),
+        ("27917", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020117"),
+        ("27918", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020118"),
+        ("27919", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020119"),
+        ("27920", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020120"),
+        ("27921", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020121"),
+        ("27922", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020122"),
+        ("27923", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020123"),
+        ("27924", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020124"),
+        ("27925", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020125"),
+        ("27926", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020126"),
+        ("27927", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020127"),
+        ("27928", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020128"),
+        ("27929", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020129"),
+        ("27930", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020130"),
+        ("27931", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020131"),
+        ("27932", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020132"),
+        ("27933", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020133"),
+        ("27934", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020134"),
+        ("27935", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020135"),
+        ("27936", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020136"),
+        ("27937", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020137"),
+        ("27938", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020138"),
+        ("27939", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020139"),
+        ("27940", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020140"),
+        ("27941", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020141"),
+        ("27942", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020142"),
+        ("27943", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020143"),
+        ("27944", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020144"),
+        ("27945", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020145"),
+        ("27946", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020146"),
+        ("27947", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020147"),
+        ("27948", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020148"),
+        ("27949", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020149"),
+        ("27950", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020150"),
+        ("27951", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020151"),
+        ("27952", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020152"),
+        ("27953", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020153"),
+        ("27954", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020154"),
+        ("27955", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020155"),
+        ("27956", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020156"),
+        ("27957", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020157"),
+        ("27958", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020158"),
+        ("27959", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020159"),
+        ("27960", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020160"),
+        ("27961", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020161"),
+        ("27962", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020162"),
+        ("27963", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020163"),
+        ("27964", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020164"),
+        ("27965", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020165"),
+        ("27966", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020166"),
+        ("27967", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020167"),
+        ("27968", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020168"),
+        ("27969", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020169"),
+        ("27970", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020170"),
+        ("27971", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020171"),
+        ("27972", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020172"),
+        ("27973", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020173"),
+        ("27974", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020174"),
+        ("27975", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020175"),
+        ("27976", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020176"),
+        ("27977", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020177"),
+        ("27978", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020178"),
+        ("27979", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020179"),
+        ("27980", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020180"),
+        ("27981", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020181"),
+        ("27982", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020182"),
+        ("27983", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020183"),
+        ("27984", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020184"),
+        ("27985", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020185"),
+        ("27986", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020186"),
+        ("27987", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020187"),
+        ("27988", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020188"),
+        ("27989", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020189"),
+        ("27990", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020190"),
+        ("27991", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020191"),
+        ("27992", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020192"),
+        ("27993", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020193"),
+        ("27994", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020194"),
+        ("27995", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020195"),
+        ("27996", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020196"),
+        ("27997", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020197"),
+        ("27998", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020198"),
+        ("27999", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_DONT_UNEXPAND|CSIDL_FLAG_DONT_VERIFY|0x00020199"),
+        ("28000", "CSIDL_FLAG_CREATE|0x00020000"),
+        ("28001", "CSIDL_FLAG_CREATE|0x00020001"),
+        ("28002", "CSIDL_FLAG_CREATE|0x00020002"),
+        ("28003", "CSIDL_FLAG_CREATE|0x00020003"),
+        ("28004", "CSIDL_FLAG_CREATE|0x00020004"),
+        ("28005", "CSIDL_FLAG_CREATE|0x00020005"),
+        ("28006", "CSIDL_FLAG_CREATE|0x00020006"),
+        ("28007", "CSIDL_FLAG_CREATE|0x00020007"),
+        ("28008", "CSIDL_FLAG_CREATE|0x00020008"),
+        ("28009", "CSIDL_FLAG_CREATE|0x00020009"),
+        ("28010", "CSIDL_FLAG_CREATE|0x00020010"),
+        ("28011", "CSIDL_FLAG_CREATE|0x00020011"),
+        ("28012", "CSIDL_FLAG_CREATE|0x00020012"),
+        ("28013", "CSIDL_FLAG_CREATE|0x00020013"),
+        ("28014", "CSIDL_FLAG_CREATE|0x00020014"),
+        ("28015", "CSIDL_FLAG_CREATE|0x00020015"),
+        ("28016", "CSIDL_FLAG_CREATE|0x00020016"),
+        ("28017", "CSIDL_FLAG_CREATE|0x00020017"),
+        ("28018", "CSIDL_FLAG_CREATE|0x00020018"),
+        ("28019", "CSIDL_FLAG_CREATE|0x00020019"),
+        ("28020", "CSIDL_FLAG_CREATE|0x00020020"),
+        ("28021", "CSIDL_FLAG_CREATE|0x00020021"),
+        ("28022", "CSIDL_FLAG_CREATE|0x00020022"),
+        ("28023", "CSIDL_FLAG_CREATE|0x00020023"),
+        ("28024", "CSIDL_FLAG_CREATE|0x00020024"),
+        ("28025", "CSIDL_FLAG_CREATE|0x00020025"),
+        ("28026", "CSIDL_FLAG_CREATE|0x00020026"),
+        ("28027", "CSIDL_FLAG_CREATE|0x00020027"),
+        ("28028", "CSIDL_FLAG_CREATE|0x00020028"),
+        ("28029", "CSIDL_FLAG_CREATE|0x00020029"),
+        ("28030", "CSIDL_FLAG_CREATE|0x00020030"),
+        ("28031", "CSIDL_FLAG_CREATE|0x00020031"),
+        ("28032", "CSIDL_FLAG_CREATE|0x00020032"),
+        ("28033", "CSIDL_FLAG_CREATE|0x00020033"),
+        ("28034", "CSIDL_FLAG_CREATE|0x00020034"),
+        ("28035", "CSIDL_FLAG_CREATE|0x00020035"),
+        ("28036", "CSIDL_FLAG_CREATE|0x00020036"),
+        ("28037", "CSIDL_FLAG_CREATE|0x00020037"),
+        ("28038", "CSIDL_FLAG_CREATE|0x00020038"),
+        ("28039", "CSIDL_FLAG_CREATE|0x00020039"),
+        ("28040", "CSIDL_FLAG_CREATE|0x00020040"),
+        ("28041", "CSIDL_FLAG_CREATE|0x00020041"),
+        ("28042", "CSIDL_FLAG_CREATE|0x00020042"),
+        ("28043", "CSIDL_FLAG_CREATE|0x00020043"),
+        ("28044", "CSIDL_FLAG_CREATE|0x00020044"),
+        ("28045", "CSIDL_FLAG_CREATE|0x00020045"),
+        ("28046", "CSIDL_FLAG_CREATE|0x00020046"),
+        ("28047", "CSIDL_FLAG_CREATE|0x00020047"),
+        ("28048", "CSIDL_FLAG_CREATE|0x00020048"),
+        ("28049", "CSIDL_FLAG_CREATE|0x00020049"),
+        ("28050", "CSIDL_FLAG_CREATE|0x00020050"),
+        ("28051", "CSIDL_FLAG_CREATE|0x00020051"),
+        ("28052", "CSIDL_FLAG_CREATE|0x00020052"),
+        ("28053", "CSIDL_FLAG_CREATE|0x00020053"),
+        ("28054", "CSIDL_FLAG_CREATE|0x00020054"),
+        ("28055", "CSIDL_FLAG_CREATE|0x00020055"),
+        ("28056", "CSIDL_FLAG_CREATE|0x00020056"),
+        ("28057", "CSIDL_FLAG_CREATE|0x00020057"),
+        ("28058", "CSIDL_FLAG_CREATE|0x00020058"),
+        ("28059", "CSIDL_FLAG_CREATE|0x00020059"),
+        ("28060", "CSIDL_FLAG_CREATE|0x00020060"),
+        ("28061", "CSIDL_FLAG_CREATE|0x00020061"),
+        ("28062", "CSIDL_FLAG_CREATE|0x00020062"),
+        ("28063", "CSIDL_FLAG_CREATE|0x00020063"),
+        ("28064", "CSIDL_FLAG_CREATE|0x00020064"),
+        ("28065", "CSIDL_FLAG_CREATE|0x00020065"),
+        ("28066", "CSIDL_FLAG_CREATE|0x00020066"),
+        ("28067", "CSIDL_FLAG_CREATE|0x00020067"),
+        ("28068", "CSIDL_FLAG_CREATE|0x00020068"),
+        ("28069", "CSIDL_FLAG_CREATE|0x00020069"),
+        ("28070", "CSIDL_FLAG_CREATE|0x00020070"),
+        ("28071", "CSIDL_FLAG_CREATE|0x00020071"),
+        ("28072", "CSIDL_FLAG_CREATE|0x00020072"),
+        ("28073", "CSIDL_FLAG_CREATE|0x00020073"),
+        ("28074", "CSIDL_FLAG_CREATE|0x00020074"),
+        ("28075", "CSIDL_FLAG_CREATE|0x00020075"),
+        ("28076", "CSIDL_FLAG_CREATE|0x00020076"),
+        ("28077", "CSIDL_FLAG_CREATE|0x00020077"),
+        ("28078", "CSIDL_FLAG_CREATE|0x00020078"),
+        ("28079", "CSIDL_FLAG_CREATE|0x00020079"),
+        ("28080", "CSIDL_FLAG_CREATE|0x00020080"),
+        ("28081", "CSIDL_FLAG_CREATE|0x00020081"),
+        ("28082", "CSIDL_FLAG_CREATE|0x00020082"),
+        ("28083", "CSIDL_FLAG_CREATE|0x00020083"),
+        ("28084", "CSIDL_FLAG_CREATE|0x00020084"),
+        ("28085", "CSIDL_FLAG_CREATE|0x00020085"),
+        ("28086", "CSIDL_FLAG_CREATE|0x00020086"),
+        ("28087", "CSIDL_FLAG_CREATE|0x00020087"),
+        ("28088", "CSIDL_FLAG_CREATE|0x00020088"),
+        ("28089", "CSIDL_FLAG_CREATE|0x00020089"),
+        ("28090", "CSIDL_FLAG_CREATE|0x00020090"),
+        ("28091", "CSIDL_FLAG_CREATE|0x00020091"),
+        ("28092", "CSIDL_FLAG_CREATE|0x00020092"),
+        ("28093", "CSIDL_FLAG_CREATE|0x00020093"),
+        ("28094", "CSIDL_FLAG_CREATE|0x00020094"),
+        ("28095", "CSIDL_FLAG_CREATE|0x00020095"),
+        ("28096", "CSIDL_FLAG_CREATE|0x00020096"),
+        ("28097", "CSIDL_FLAG_CREATE|0x00020097"),
+        ("28098", "CSIDL_FLAG_CREATE|0x00020098"),
+        ("28099", "CSIDL_FLAG_CREATE|0x00020099"),
+        ("28100", "CSIDL_FLAG_CREATE|0x00020100"),
+        ("28101", "CSIDL_FLAG_CREATE|0x00020101"),
+        ("28102", "CSIDL_FLAG_CREATE|0x00020102"),
+        ("28103", "CSIDL_FLAG_CREATE|0x00020103"),
+        ("28104", "CSIDL_FLAG_CREATE|0x00020104"),
+        ("28105", "CSIDL_FLAG_CREATE|0x00020105"),
+        ("28106", "CSIDL_FLAG_CREATE|0x00020106"),
+        ("28107", "CSIDL_FLAG_CREATE|0x00020107"),
+        ("28108", "CSIDL_FLAG_CREATE|0x00020108"),
+        ("28109", "CSIDL_FLAG_CREATE|0x00020109"),
+        ("28110", "CSIDL_FLAG_CREATE|0x00020110"),
+        ("28111", "CSIDL_FLAG_CREATE|0x00020111"),
+        ("28112", "CSIDL_FLAG_CREATE|0x00020112"),
+        ("28113", "CSIDL_FLAG_CREATE|0x00020113"),
+        ("28114", "CSIDL_FLAG_CREATE|0x00020114"),
+        ("28115", "CSIDL_FLAG_CREATE|0x00020115"),
+        ("28116", "CSIDL_FLAG_CREATE|0x00020116"),
+        ("28117", "CSIDL_FLAG_CREATE|0x00020117"),
+        ("28118", "CSIDL_FLAG_CREATE|0x00020118"),
+        ("28119", "CSIDL_FLAG_CREATE|0x00020119"),
+        ("28120", "CSIDL_FLAG_CREATE|0x00020120"),
+        ("28121", "CSIDL_FLAG_CREATE|0x00020121"),
+        ("28122", "CSIDL_FLAG_CREATE|0x00020122"),
+        ("28123", "CSIDL_FLAG_CREATE|0x00020123"),
+        ("28124", "CSIDL_FLAG_CREATE|0x00020124"),
+        ("28125", "CSIDL_FLAG_CREATE|0x00020125"),
+        ("28126", "CSIDL_FLAG_CREATE|0x00020126"),
+        ("28127", "CSIDL_FLAG_CREATE|0x00020127"),
+        ("28128", "CSIDL_FLAG_CREATE|0x00020128"),
+        ("28129", "CSIDL_FLAG_CREATE|0x00020129"),
+        ("28130", "CSIDL_FLAG_CREATE|0x00020130"),
+        ("28131", "CSIDL_FLAG_CREATE|0x00020131"),
+        ("28132", "CSIDL_FLAG_CREATE|0x00020132"),
+        ("28133", "CSIDL_FLAG_CREATE|0x00020133"),
+        ("28134", "CSIDL_FLAG_CREATE|0x00020134"),
+        ("28135", "CSIDL_FLAG_CREATE|0x00020135"),
+        ("28136", "CSIDL_FLAG_CREATE|0x00020136"),
+        ("28137", "CSIDL_FLAG_CREATE|0x00020137"),
+        ("28138", "CSIDL_FLAG_CREATE|0x00020138"),
+        ("28139", "CSIDL_FLAG_CREATE|0x00020139"),
+        ("28140", "CSIDL_FLAG_CREATE|0x00020140"),
+        ("28141", "CSIDL_FLAG_CREATE|0x00020141"),
+        ("28142", "CSIDL_FLAG_CREATE|0x00020142"),
+        ("28143", "CSIDL_FLAG_CREATE|0x00020143"),
+        ("28144", "CSIDL_FLAG_CREATE|0x00020144"),
+        ("28145", "CSIDL_FLAG_CREATE|0x00020145"),
+        ("28146", "CSIDL_FLAG_CREATE|0x00020146"),
+        ("28147", "CSIDL_FLAG_CREATE|0x00020147"),
+        ("28148", "CSIDL_FLAG_CREATE|0x00020148"),
+        ("28149", "CSIDL_FLAG_CREATE|0x00020149"),
+        ("28150", "CSIDL_FLAG_CREATE|0x00020150"),
+        ("28151", "CSIDL_FLAG_CREATE|0x00020151"),
+        ("28152", "CSIDL_FLAG_CREATE|0x00020152"),
+        ("28153", "CSIDL_FLAG_CREATE|0x00020153"),
+        ("28154", "CSIDL_FLAG_CREATE|0x00020154"),
+        ("28155", "CSIDL_FLAG_CREATE|0x00020155"),
+        ("28156", "CSIDL_FLAG_CREATE|0x00020156"),
+        ("28157", "CSIDL_FLAG_CREATE|0x00020157"),
+        ("28158", "CSIDL_FLAG_CREATE|0x00020158"),
+        ("28159", "CSIDL_FLAG_CREATE|0x00020159"),
+        ("28160", "CSIDL_FLAG_CREATE|0x00020160"),
+        ("28161", "CSIDL_FLAG_CREATE|0x00020161"),
+        ("28162", "CSIDL_FLAG_CREATE|0x00020162"),
+        ("28163", "CSIDL_FLAG_CREATE|0x00020163"),
+        ("28164", "CSIDL_FLAG_CREATE|0x00020164"),
+        ("28165", "CSIDL_FLAG_CREATE|0x00020165"),
+        ("28166", "CSIDL_FLAG_CREATE|0x00020166"),
+        ("28167", "CSIDL_FLAG_CREATE|0x00020167"),
+        ("28168", "CSIDL_FLAG_CREATE|0x00020168"),
+        ("28169", "CSIDL_FLAG_CREATE|0x00020169"),
+        ("28170", "CSIDL_FLAG_CREATE|0x00020170"),
+        ("28171", "CSIDL_FLAG_CREATE|0x00020171"),
+        ("28172", "CSIDL_FLAG_CREATE|0x00020172"),
+        ("28173", "CSIDL_FLAG_CREATE|0x00020173"),
+        ("28174", "CSIDL_FLAG_CREATE|0x00020174"),
+        ("28175", "CSIDL_FLAG_CREATE|0x00020175"),
+        ("28176", "CSIDL_FLAG_CREATE|0x00020176"),
+        ("28177", "CSIDL_FLAG_CREATE|0x00020177"),
+        ("28178", "CSIDL_FLAG_CREATE|0x00020178"),
+        ("28179", "CSIDL_FLAG_CREATE|0x00020179"),
+        ("28180", "CSIDL_FLAG_CREATE|0x00020180"),
+        ("28181", "CSIDL_FLAG_CREATE|0x00020181"),
+        ("28182", "CSIDL_FLAG_CREATE|0x00020182"),
+        ("28183", "CSIDL_FLAG_CREATE|0x00020183"),
+        ("28184", "CSIDL_FLAG_CREATE|0x00020184"),
+        ("28185", "CSIDL_FLAG_CREATE|0x00020185"),
+        ("28186", "CSIDL_FLAG_CREATE|0x00020186"),
+        ("28187", "CSIDL_FLAG_CREATE|0x00020187"),
+        ("28188", "CSIDL_FLAG_CREATE|0x00020188"),
+        ("28189", "CSIDL_FLAG_CREATE|0x00020189"),
+        ("28190", "CSIDL_FLAG_CREATE|0x00020190"),
+        ("28191", "CSIDL_FLAG_CREATE|0x00020191"),
+        ("28192", "CSIDL_FLAG_CREATE|0x00020192"),
+        ("28193", "CSIDL_FLAG_CREATE|0x00020193"),
+        ("28194", "CSIDL_FLAG_CREATE|0x00020194"),
+        ("28195", "CSIDL_FLAG_CREATE|0x00020195"),
+        ("28196", "CSIDL_FLAG_CREATE|0x00020196"),
+        ("28197", "CSIDL_FLAG_CREATE|0x00020197"),
+        ("28198", "CSIDL_FLAG_CREATE|0x00020198"),
+        ("28199", "CSIDL_FLAG_CREATE|0x00020199"),
+        ("28200", "CSIDL_FLAG_CREATE|0x00020200"),
+        ("28201", "CSIDL_FLAG_CREATE|0x00020201"),
+        ("28202", "CSIDL_FLAG_CREATE|0x00020202"),
+        ("28203", "CSIDL_FLAG_CREATE|0x00020203"),
+        ("28204", "CSIDL_FLAG_CREATE|0x00020204"),
+        ("28205", "CSIDL_FLAG_CREATE|0x00020205"),
+        ("28206", "CSIDL_FLAG_CREATE|0x00020206"),
+        ("28207", "CSIDL_FLAG_CREATE|0x00020207"),
+        ("28208", "CSIDL_FLAG_CREATE|0x00020208"),
+        ("28209", "CSIDL_FLAG_CREATE|0x00020209"),
+        ("28210", "CSIDL_FLAG_CREATE|0x00020210"),
+        ("28211", "CSIDL_FLAG_CREATE|0x00020211"),
+        ("28212", "CSIDL_FLAG_CREATE|0x00020212"),
+        ("28213", "CSIDL_FLAG_CREATE|0x00020213"),
+        ("28214", "CSIDL_FLAG_CREATE|0x00020214"),
+        ("28215", "CSIDL_FLAG_CREATE|0x00020215"),
+        ("28216", "CSIDL_FLAG_CREATE|0x00020216"),
+        ("28217", "CSIDL_FLAG_CREATE|0x00020217"),
+        ("28218", "CSIDL_FLAG_CREATE|0x00020218"),
+        ("28219", "CSIDL_FLAG_CREATE|0x00020219"),
+        ("28220", "CSIDL_FLAG_CREATE|0x00020220"),
+        ("28221", "CSIDL_FLAG_CREATE|0x00020221"),
+        ("28222", "CSIDL_FLAG_CREATE|0x00020222"),
+        ("28223", "CSIDL_FLAG_CREATE|0x00020223"),
+        ("28224", "CSIDL_FLAG_CREATE|0x00020224"),
+        ("28225", "CSIDL_FLAG_CREATE|0x00020225"),
+        ("28226", "CSIDL_FLAG_CREATE|0x00020226"),
+        ("28227", "CSIDL_FLAG_CREATE|0x00020227"),
+        ("28228", "CSIDL_FLAG_CREATE|0x00020228"),
+        ("28229", "CSIDL_FLAG_CREATE|0x00020229"),
+        ("28230", "CSIDL_FLAG_CREATE|0x00020230"),
+        ("28231", "CSIDL_FLAG_CREATE|0x00020231"),
+        ("28232", "CSIDL_FLAG_CREATE|0x00020232"),
+        ("28233", "CSIDL_FLAG_CREATE|0x00020233"),
+        ("28234", "CSIDL_FLAG_CREATE|0x00020234"),
+        ("28235", "CSIDL_FLAG_CREATE|0x00020235"),
+        ("28236", "CSIDL_FLAG_CREATE|0x00020236"),
+        ("28237", "CSIDL_FLAG_CREATE|0x00020237"),
+        ("28238", "CSIDL_FLAG_CREATE|0x00020238"),
+        ("28239", "CSIDL_FLAG_CREATE|0x00020239"),
+        ("28240", "CSIDL_FLAG_CREATE|0x00020240"),
+        ("28241", "CSIDL_FLAG_CREATE|0x00020241"),
+        ("28242", "CSIDL_FLAG_CREATE|0x00020242"),
+        ("28243", "CSIDL_FLAG_CREATE|0x00020243"),
+        ("28244", "CSIDL_FLAG_CREATE|0x00020244"),
+        ("28245", "CSIDL_FLAG_CREATE|0x00020245"),
+        ("28246", "CSIDL_FLAG_CREATE|0x00020246"),
+        ("28247", "CSIDL_FLAG_CREATE|0x00020247"),
+        ("28248", "CSIDL_FLAG_CREATE|0x00020248"),
+        ("28249", "CSIDL_FLAG_CREATE|0x00020249"),
+        ("28250", "CSIDL_FLAG_CREATE|0x00020250"),
+        ("28251", "CSIDL_FLAG_CREATE|0x00020251"),
+        ("28252", "CSIDL_FLAG_CREATE|0x00020252"),
+        ("28253", "CSIDL_FLAG_CREATE|0x00020253"),
+        ("28254", "CSIDL_FLAG_CREATE|0x00020254"),
+        ("28255", "CSIDL_FLAG_CREATE|0x00020255"),
+        ("28256", "CSIDL_FLAG_CREATE|0x00020256"),
+        ("28257", "CSIDL_FLAG_CREATE|0x00020257"),
+        ("28258", "CSIDL_FLAG_CREATE|0x00020258"),
+        ("28259", "CSIDL_FLAG_CREATE|0x00020259"),
+        ("28260", "CSIDL_FLAG_CREATE|0x00020260"),
+        ("28261", "CSIDL_FLAG_CREATE|0x00020261"),
+        ("28262", "CSIDL_FLAG_CREATE|0x00020262"),
+        ("28263", "CSIDL_FLAG_CREATE|0x00020263"),
+        ("28264", "CSIDL_FLAG_CREATE|0x00020264"),
+        ("28265", "CSIDL_FLAG_CREATE|0x00020265"),
+        ("28266", "CSIDL_FLAG_CREATE|0x00020266"),
+        ("28267", "CSIDL_FLAG_CREATE|0x00020267"),
+        ("28268", "CSIDL_FLAG_CREATE|0x00020268"),
+        ("28269", "CSIDL_FLAG_CREATE|0x00020269"),
+        ("28270", "CSIDL_FLAG_CREATE|0x00020270"),
+        ("28271", "CSIDL_FLAG_CREATE|0x00020271"),
+        ("28272", "CSIDL_FLAG_CREATE|0x00020272"),
+        ("28273", "CSIDL_FLAG_CREATE|0x00020273"),
+        ("28274", "CSIDL_FLAG_CREATE|0x00020274"),
+        ("28275", "CSIDL_FLAG_CREATE|0x00020275"),
+        ("28276", "CSIDL_FLAG_CREATE|0x00020276"),
+        ("28277", "CSIDL_FLAG_CREATE|0x00020277"),
+        ("28278", "CSIDL_FLAG_CREATE|0x00020278"),
+        ("28279", "CSIDL_FLAG_CREATE|0x00020279"),
+        ("28280", "CSIDL_FLAG_CREATE|0x00020280"),
+        ("28281", "CSIDL_FLAG_CREATE|0x00020281"),
+        ("28282", "CSIDL_FLAG_CREATE|0x00020282"),
+        ("28283", "CSIDL_FLAG_CREATE|0x00020283"),
+        ("28284", "CSIDL_FLAG_CREATE|0x00020284"),
+        ("28285", "CSIDL_FLAG_CREATE|0x00020285"),
+        ("28286", "CSIDL_FLAG_CREATE|0x00020286"),
+        ("28287", "CSIDL_FLAG_CREATE|0x00020287"),
+        ("28288", "CSIDL_FLAG_CREATE|0x00020288"),
+        ("28289", "CSIDL_FLAG_CREATE|0x00020289"),
+        ("28290", "CSIDL_FLAG_CREATE|0x00020290"),
+        ("28291", "CSIDL_FLAG_CREATE|0x00020291"),
+        ("28292", "CSIDL_FLAG_CREATE|0x00020292"),
+        ("28293", "CSIDL_FLAG_CREATE|0x00020293"),
+        ("28294", "CSIDL_FLAG_CREATE|0x00020294"),
+        ("28295", "CSIDL_FLAG_CREATE|0x00020295"),
+        ("28296", "CSIDL_FLAG_CREATE|0x00020296"),
+        ("28297", "CSIDL_FLAG_CREATE|0x00020297"),
+        ("28298", "CSIDL_FLAG_CREATE|0x00020298"),
+        ("28299", "CSIDL_FLAG_CREATE|0x00020299"),
+        ("28300", "CSIDL_FLAG_CREATE|0x00020300"),
+        ("28301", "CSIDL_FLAG_CREATE|0x00020301"),
+        ("28302", "CSIDL_FLAG_CREATE|0x00020302"),
+        ("28303", "CSIDL_FLAG_CREATE|0x00020303"),
+        ("28304", "CSIDL_FLAG_CREATE|0x00020304"),
+        ("28305", "CSIDL_FLAG_CREATE|0x00020305"),
+        ("28306", "CSIDL_FLAG_CREATE|0x00020306"),
+        ("28307", "CSIDL_FLAG_CREATE|0x00020307"),
+        ("28308", "CSIDL_FLAG_CREATE|0x00020308"),
+        ("28309", "CSIDL_FLAG_CREATE|0x00020309"),
+        ("28310", "CSIDL_FLAG_CREATE|0x00020310"),
+        ("28311", "CSIDL_FLAG_CREATE|0x00020311"),
+        ("28312", "CSIDL_FLAG_CREATE|0x00020312"),
+        ("28313", "CSIDL_FLAG_CREATE|0x00020313"),
+        ("28314", "CSIDL_FLAG_CREATE|0x00020314"),
+        ("28315", "CSIDL_FLAG_CREATE|0x00020315"),
+        ("28316", "CSIDL_FLAG_CREATE|0x00020316"),
+        ("28317", "CSIDL_FLAG_CREATE|0x00020317"),
+        ("28318", "CSIDL_FLAG_CREATE|0x00020318"),
+        ("28319", "CSIDL_FLAG_CREATE|0x00020319"),
+        ("28320", "CSIDL_FLAG_CREATE|0x00020320"),
+        ("28321", "CSIDL_FLAG_CREATE|0x00020321"),
+        ("28322", "CSIDL_FLAG_CREATE|0x00020322"),
+        ("28323", "CSIDL_FLAG_CREATE|0x00020323"),
+        ("28324", "CSIDL_FLAG_CREATE|0x00020324"),
+        ("28325", "CSIDL_FLAG_CREATE|0x00020325"),
+        ("28326", "CSIDL_FLAG_CREATE|0x00020326"),
+        ("28327", "CSIDL_FLAG_CREATE|0x00020327"),
+        ("28328", "CSIDL_FLAG_CREATE|0x00020328"),
+        ("28329", "CSIDL_FLAG_CREATE|0x00020329"),
+        ("28330", "CSIDL_FLAG_CREATE|0x00020330"),
+        ("28331", "CSIDL_FLAG_CREATE|0x00020331"),
+        ("28332", "CSIDL_FLAG_CREATE|0x00020332"),
+        ("28333", "CSIDL_FLAG_CREATE|0x00020333"),
+        ("28334", "CSIDL_FLAG_CREATE|0x00020334"),
+        ("28335", "CSIDL_FLAG_CREATE|0x00020335"),
+        ("28336", "CSIDL_FLAG_CREATE|0x00020336"),
+        ("28337", "CSIDL_FLAG_CREATE|0x00020337"),
+        ("28338", "CSIDL_FLAG_CREATE|0x00020338"),
+        ("28339", "CSIDL_FLAG_CREATE|0x00020339"),
+        ("28340", "CSIDL_FLAG_CREATE|0x00020340"),
+        ("28341", "CSIDL_FLAG_CREATE|0x00020341"),
+        ("28342", "CSIDL_FLAG_CREATE|0x00020342"),
+        ("28343", "CSIDL_FLAG_CREATE|0x00020343"),
+        ("28344", "CSIDL_FLAG_CREATE|0x00020344"),
+        ("28345", "CSIDL_FLAG_CREATE|0x00020345"),
+        ("28346", "CSIDL_FLAG_CREATE|0x00020346"),
+        ("28347", "CSIDL_FLAG_CREATE|0x00020347"),
+        ("28348", "CSIDL_FLAG_CREATE|0x00020348"),
+        ("28349", "CSIDL_FLAG_CREATE|0x00020349"),
+        ("28350", "CSIDL_FLAG_CREATE|0x00020350"),
+        ("28351", "CSIDL_FLAG_CREATE|0x00020351"),
+        ("28352", "CSIDL_FLAG_CREATE|0x00020352"),
+        ("28353", "CSIDL_FLAG_CREATE|0x00020353"),
+        ("28354", "CSIDL_FLAG_CREATE|0x00020354"),
+        ("28355", "CSIDL_FLAG_CREATE|0x00020355"),
+        ("28356", "CSIDL_FLAG_CREATE|0x00020356"),
+        ("28357", "CSIDL_FLAG_CREATE|0x00020357"),
+        ("28358", "CSIDL_FLAG_CREATE|0x00020358"),
+        ("28359", "CSIDL_FLAG_CREATE|0x00020359"),
+        ("28360", "CSIDL_FLAG_CREATE|0x00020360"),
+        ("28361", "CSIDL_FLAG_CREATE|0x00020361"),
+        ("28362", "CSIDL_FLAG_CREATE|0x00020362"),
+        ("28363", "CSIDL_FLAG_CREATE|0x00020363"),
+        ("28364", "CSIDL_FLAG_CREATE|0x00020364"),
+        ("28365", "CSIDL_FLAG_CREATE|0x00020365"),
+        ("28366", "CSIDL_FLAG_CREATE|0x00020366"),
+        ("28367", "CSIDL_FLAG_CREATE|0x00020367"),
+        ("28368", "CSIDL_FLAG_CREATE|0x00020368"),
+        ("28369", "CSIDL_FLAG_CREATE|0x00020369"),
+        ("28370", "CSIDL_FLAG_CREATE|0x00020370"),
+        ("28371", "CSIDL_FLAG_CREATE|0x00020371"),
+        ("28372", "CSIDL_FLAG_CREATE|0x00020372"),
+        ("28373", "CSIDL_FLAG_CREATE|0x00020373"),
+        ("28374", "CSIDL_FLAG_CREATE|0x00020374"),
+        ("28375", "CSIDL_FLAG_CREATE|0x00020375"),
+        ("28376", "CSIDL_FLAG_CREATE|0x00020376"),
+        ("28377", "CSIDL_FLAG_CREATE|0x00020377"),
+        ("28378", "CSIDL_FLAG_CREATE|0x00020378"),
+        ("28379", "CSIDL_FLAG_CREATE|0x00020379"),
+        ("28380", "CSIDL_FLAG_CREATE|0x00020380"),
+        ("28381", "CSIDL_FLAG_CREATE|0x00020381"),
+        ("28382", "CSIDL_FLAG_CREATE|0x00020382"),
+        ("28383", "CSIDL_FLAG_CREATE|0x00020383"),
+        ("28384", "CSIDL_FLAG_CREATE|0x00020384"),
+        ("28385", "CSIDL_FLAG_CREATE|0x00020385"),
+        ("28386", "CSIDL_FLAG_CREATE|0x00020386"),
+        ("28387", "CSIDL_FLAG_CREATE|0x00020387"),
+        ("28388", "CSIDL_FLAG_CREATE|0x00020388"),
+        ("28389", "CSIDL_FLAG_CREATE|0x00020389"),
+        ("28390", "CSIDL_FLAG_CREATE|0x00020390"),
+        ("28391", "CSIDL_FLAG_CREATE|0x00020391"),
+        ("28392", "CSIDL_FLAG_CREATE|0x00020392"),
+        ("28393", "CSIDL_FLAG_CREATE|0x00020393"),
+        ("28394", "CSIDL_FLAG_CREATE|0x00020394"),
+        ("28395", "CSIDL_FLAG_CREATE|0x00020395"),
+        ("28396", "CSIDL_FLAG_CREATE|0x00020396"),
+        ("28397", "CSIDL_FLAG_CREATE|0x00020397"),
+        ("28398", "CSIDL_FLAG_CREATE|0x00020398"),
+        ("28399", "CSIDL_FLAG_CREATE|0x00020399"),
+        ("28400", "CSIDL_FLAG_CREATE|0x00020400"),
+        ("28401", "CSIDL_FLAG_CREATE|0x00020401"),
+        ("28402", "CSIDL_FLAG_CREATE|0x00020402"),
+        ("28403", "CSIDL_FLAG_CREATE|0x00020403"),
+        ("28404", "CSIDL_FLAG_CREATE|0x00020404"),
+        ("28405", "CSIDL_FLAG_CREATE|0x00020405"),
+        ("28406", "CSIDL_FLAG_CREATE|0x00020406"),
+        ("28407", "CSIDL_FLAG_CREATE|0x00020407"),
+        ("28408", "CSIDL_FLAG_CREATE|0x00020408"),
+        ("28409", "CSIDL_FLAG_CREATE|0x00020409"),
+        ("28410", "CSIDL_FLAG_CREATE|0x00020410"),
+        ("28411", "CSIDL_FLAG_CREATE|0x00020411"),
+        ("28412", "CSIDL_FLAG_CREATE|0x00020412"),
+        ("28413", "CSIDL_FLAG_CREATE|0x00020413"),
+        ("28414", "CSIDL_FLAG_CREATE|0x00020414"),
+        ("28415", "CSIDL_FLAG_CREATE|0x00020415"),
+        ("28416", "CSIDL_FLAG_CREATE|0x00020416"),
+        ("28417", "CSIDL_FLAG_CREATE|0x00020417"),
+        ("28418", "CSIDL_FLAG_CREATE|0x00020418"),
+        ("28419", "CSIDL_FLAG_CREATE|0x00020419"),
+        ("28420", "CSIDL_FLAG_CREATE|0x00020420"),
+        ("28421", "CSIDL_FLAG_CREATE|0x00020421"),
+        ("28422", "CSIDL_FLAG_CREATE|0x00020422"),
+        ("28423", "CSIDL_FLAG_CREATE|0x00020423"),
+        ("28424", "CSIDL_FLAG_CREATE|0x00020424"),
+        ("28425", "CSIDL_FLAG_CREATE|0x00020425"),
+        ("28426", "CSIDL_FLAG_CREATE|0x00020426"),
+        ("28427", "CSIDL_FLAG_CREATE|0x00020427"),
+        ("28428", "CSIDL_FLAG_CREATE|0x00020428"),
+        ("28429", "CSIDL_FLAG_CREATE|0x00020429"),
+        ("28430", "CSIDL_FLAG_CREATE|0x00020430"),
+        ("28431", "CSIDL_FLAG_CREATE|0x00020431"),
+        ("28432", "CSIDL_FLAG_CREATE|0x00020432"),
+        ("28433", "CSIDL_FLAG_CREATE|0x00020433"),
+        ("28434", "CSIDL_FLAG_CREATE|0x00020434"),
+        ("28435", "CSIDL_FLAG_CREATE|0x00020435"),
+        ("28436", "CSIDL_FLAG_CREATE|0x00020436"),
+        ("28437", "CSIDL_FLAG_CREATE|0x00020437"),
+        ("28438", "CSIDL_FLAG_CREATE|0x00020438"),
+        ("28439", "CSIDL_FLAG_CREATE|0x00020439"),
+        ("28440", "CSIDL_FLAG_CREATE|0x00020440"),
+        ("28441", "CSIDL_FLAG_CREATE|0x00020441"),
+        ("28442", "CSIDL_FLAG_CREATE|0x00020442"),
+        ("28443", "CSIDL_FLAG_CREATE|0x00020443"),
+        ("28444", "CSIDL_FLAG_CREATE|0x00020444"),
+        ("28445", "CSIDL_FLAG_CREATE|0x00020445"),
+        ("28446", "CSIDL_FLAG_CREATE|0x00020446"),
+        ("28447", "CSIDL_FLAG_CREATE|0x00020447"),
+        ("28448", "CSIDL_FLAG_CREATE|0x00020448"),
+        ("28449", "CSIDL_FLAG_CREATE|0x00020449"),
+        ("28450", "CSIDL_FLAG_CREATE|0x00020450"),
+        ("28451", "CSIDL_FLAG_CREATE|0x00020451"),
+        ("28452", "CSIDL_FLAG_CREATE|0x00020452"),
+        ("28453", "CSIDL_FLAG_CREATE|0x00020453"),
+        ("28454", "CSIDL_FLAG_CREATE|0x00020454"),
+        ("28455", "CSIDL_FLAG_CREATE|0x00020455"),
+        ("28456", "CSIDL_FLAG_CREATE|0x00020456"),
+        ("28457", "CSIDL_FLAG_CREATE|0x00020457"),
+        ("28458", "CSIDL_FLAG_CREATE|0x00020458"),
+        ("28459", "CSIDL_FLAG_CREATE|0x00020459"),
+        ("28460", "CSIDL_FLAG_CREATE|0x00020460"),
+        ("28461", "CSIDL_FLAG_CREATE|0x00020461"),
+        ("28462", "CSIDL_FLAG_CREATE|0x00020462"),
+        ("28463", "CSIDL_FLAG_CREATE|0x00020463"),
+        ("28464", "CSIDL_FLAG_CREATE|0x00020464"),
+        ("28465", "CSIDL_FLAG_CREATE|0x00020465"),
+        ("28466", "CSIDL_FLAG_CREATE|0x00020466"),
+        ("28467", "CSIDL_FLAG_CREATE|0x00020467"),
+        ("28468", "CSIDL_FLAG_CREATE|0x00020468"),
+        ("28469", "CSIDL_FLAG_CREATE|0x00020469"),
+        ("28470", "CSIDL_FLAG_CREATE|0x00020470"),
+        ("28471", "CSIDL_FLAG_CREATE|0x00020471"),
+        ("28472", "CSIDL_FLAG_CREATE|0x00020472"),
+        ("28473", "CSIDL_FLAG_CREATE|0x00020473"),
+        ("28474", "CSIDL_FLAG_CREATE|0x00020474"),
+        ("28475", "CSIDL_FLAG_CREATE|0x00020475"),
+        ("28476", "CSIDL_FLAG_CREATE|0x00020476"),
+        ("28477", "CSIDL_FLAG_CREATE|0x00020477"),
+        ("28478", "CSIDL_FLAG_CREATE|0x00020478"),
+        ("28479", "CSIDL_FLAG_CREATE|0x00020479"),
+        ("28480", "CSIDL_FLAG_CREATE|0x00020480"),
+        ("28481", "CSIDL_FLAG_CREATE|0x00020481"),
+        ("28482", "CSIDL_FLAG_CREATE|0x00020482"),
+        ("28483", "CSIDL_FLAG_CREATE|0x00020483"),
+        ("28484", "CSIDL_FLAG_CREATE|0x00020484"),
+        ("28485", "CSIDL_FLAG_CREATE|0x00020485"),
+        ("28486", "CSIDL_FLAG_CREATE|0x00020486"),
+        ("28487", "CSIDL_FLAG_CREATE|0x00020487"),
+        ("28488", "CSIDL_FLAG_CREATE|0x00020488"),
+        ("28489", "CSIDL_FLAG_CREATE|0x00020489"),
+        ("28490", "CSIDL_FLAG_CREATE|0x00020490"),
+        ("28491", "CSIDL_FLAG_CREATE|0x00020491"),
+        ("28492", "CSIDL_FLAG_CREATE|0x00020492"),
+        ("28493", "CSIDL_FLAG_CREATE|0x00020493"),
+        ("28494", "CSIDL_FLAG_CREATE|0x00020494"),
+        ("28495", "CSIDL_FLAG_CREATE|0x00020495"),
+        ("28496", "CSIDL_FLAG_CREATE|0x00020496"),
+        ("28497", "CSIDL_FLAG_CREATE|0x00020497"),
+        ("28498", "CSIDL_FLAG_CREATE|0x00020498"),
+        ("28499", "CSIDL_FLAG_CREATE|0x00020499"),
+        ("28500", "CSIDL_FLAG_CREATE|0x00020500"),
+        ("28501", "CSIDL_FLAG_CREATE|0x00020501"),
+        ("28502", "CSIDL_FLAG_CREATE|0x00020502"),
+        ("28503", "CSIDL_FLAG_CREATE|0x00020503"),
+        ("28504", "CSIDL_FLAG_CREATE|0x00020504"),
+        ("28505", "CSIDL_FLAG_CREATE|0x00020505"),
+        ("28506", "CSIDL_FLAG_CREATE|0x00020506"),
+        ("28507", "CSIDL_FLAG_CREATE|0x00020507"),
+        ("28508", "CSIDL_FLAG_CREATE|0x00020508"),
+        ("28509", "CSIDL_FLAG_CREATE|0x00020509"),
+        ("28510", "CSIDL_FLAG_CREATE|0x00020510"),
+        ("28511", "CSIDL_FLAG_CREATE|0x00020511"),
+        ("28512", "CSIDL_FLAG_CREATE|0x00020512"),
+        ("28513", "CSIDL_FLAG_CREATE|0x00020513"),
+        ("28514", "CSIDL_FLAG_CREATE|0x00020514"),
+        ("28515", "CSIDL_FLAG_CREATE|0x00020515"),
+        ("28516", "CSIDL_FLAG_CREATE|0x00020516"),
+        ("28517", "CSIDL_FLAG_CREATE|0x00020517"),
+        ("28518", "CSIDL_FLAG_CREATE|0x00020518"),
+        ("28519", "CSIDL_FLAG_CREATE|0x00020519"),
+        ("28520", "CSIDL_FLAG_CREATE|0x00020520"),
+        ("28521", "CSIDL_FLAG_CREATE|0x00020521"),
+        ("28522", "CSIDL_FLAG_CREATE|0x00020522"),
+        ("28523", "CSIDL_FLAG_CREATE|0x00020523"),
+        ("28524", "CSIDL_FLAG_CREATE|0x00020524"),
+        ("28525", "CSIDL_FLAG_CREATE|0x00020525"),
+        ("28526", "CSIDL_FLAG_CREATE|0x00020526"),
+        ("28527", "CSIDL_FLAG_CREATE|0x00020527"),
+        ("28528", "CSIDL_FLAG_CREATE|0x00020528"),
+        ("28529", "CSIDL_FLAG_CREATE|0x00020529"),
+        ("28530", "CSIDL_FLAG_CREATE|0x00020530"),
+        ("28531", "CSIDL_FLAG_CREATE|0x00020531"),
+        ("28532", "CSIDL_FLAG_CREATE|0x00020532"),
+        ("28533", "CSIDL_FLAG_CREATE|0x00020533"),
+        ("28534", "CSIDL_FLAG_CREATE|0x00020534"),
+        ("28535", "CSIDL_FLAG_CREATE|0x00020535"),
+        ("28536", "CSIDL_FLAG_CREATE|0x00020536"),
+        ("28537", "CSIDL_FLAG_CREATE|0x00020537"),
+        ("28538", "CSIDL_FLAG_CREATE|0x00020538"),
+        ("28539", "CSIDL_FLAG_CREATE|0x00020539"),
+        ("28540", "CSIDL_FLAG_CREATE|0x00020540"),
+        ("28541", "CSIDL_FLAG_CREATE|0x00020541"),
+        ("28542", "CSIDL_FLAG_CREATE|0x00020542"),
+        ("28543", "CSIDL_FLAG_CREATE|0x00020543"),
+        ("28544", "CSIDL_FLAG_CREATE|0x00020544"),
+        ("28545", "CSIDL_FLAG_CREATE|0x00020545"),
+        ("28546", "CSIDL_FLAG_CREATE|0x00020546"),
+        ("28547", "CSIDL_FLAG_CREATE|0x00020547"),
+        ("28548", "CSIDL_FLAG_CREATE|0x00020548"),
+        ("28549", "CSIDL_FLAG_CREATE|0x00020549"),
+        ("28550", "CSIDL_FLAG_CREATE|0x00020550"),
+        ("28551", "CSIDL_FLAG_CREATE|0x00020551"),
+        ("28552", "CSIDL_FLAG_CREATE|0x00020552"),
+        ("28553", "CSIDL_FLAG_CREATE|0x00020553"),
+        ("28554", "CSIDL_FLAG_CREATE|0x00020554"),
+        ("28555", "CSIDL_FLAG_CREATE|0x00020555"),
+        ("28556", "CSIDL_FLAG_CREATE|0x00020556"),
+        ("28557", "CSIDL_FLAG_CREATE|0x00020557"),
+        ("28558", "CSIDL_FLAG_CREATE|0x00020558"),
+        ("28559", "CSIDL_FLAG_CREATE|0x00020559"),
+        ("28560", "CSIDL_FLAG_CREATE|0x00020560"),
+        ("28561", "CSIDL_FLAG_CREATE|0x00020561"),
+        ("28562", "CSIDL_FLAG_CREATE|0x00020562"),
+        ("28563", "CSIDL_FLAG_CREATE|0x00020563"),
+        ("28564", "CSIDL_FLAG_CREATE|0x00020564"),
+        ("28565", "CSIDL_FLAG_CREATE|0x00020565"),
+        ("28566", "CSIDL_FLAG_CREATE|0x00020566"),
+        ("28567", "CSIDL_FLAG_CREATE|0x00020567"),
+        ("28568", "CSIDL_FLAG_CREATE|0x00020568"),
+        ("28569", "CSIDL_FLAG_CREATE|0x00020569"),
+        ("28570", "CSIDL_FLAG_CREATE|0x00020570"),
+        ("28571", "CSIDL_FLAG_CREATE|0x00020571"),
+        ("28572", "CSIDL_FLAG_CREATE|0x00020572"),
+        ("28573", "CSIDL_FLAG_CREATE|0x00020573"),
+        ("28574", "CSIDL_FLAG_CREATE|0x00020574"),
+        ("28575", "CSIDL_FLAG_CREATE|0x00020575"),
+        ("28576", "CSIDL_FLAG_CREATE|0x00020576"),
+        ("28577", "CSIDL_FLAG_CREATE|0x00020577"),
+        ("28578", "CSIDL_FLAG_CREATE|0x00020578"),
+        ("28579", "CSIDL_FLAG_CREATE|0x00020579"),
+        ("28580", "CSIDL_FLAG_CREATE|0x00020580"),
+        ("28581", "CSIDL_FLAG_CREATE|0x00020581"),
+        ("28582", "CSIDL_FLAG_CREATE|0x00020582"),
+        ("28583", "CSIDL_FLAG_CREATE|0x00020583"),
+        ("28584", "CSIDL_FLAG_CREATE|0x00020584"),
+        ("28585", "CSIDL_FLAG_CREATE|0x00020585"),
+        ("28586", "CSIDL_FLAG_CREATE|0x00020586"),
+        ("28587", "CSIDL_FLAG_CREATE|0x00020587"),
+        ("28588", "CSIDL_FLAG_CREATE|0x00020588"),
+        ("28589", "CSIDL_FLAG_CREATE|0x00020589"),
+        ("28590", "CSIDL_FLAG_CREATE|0x00020590"),
+        ("28591", "CSIDL_FLAG_CREATE|0x00020591"),
+        ("28592", "CSIDL_FLAG_CREATE|0x00020592"),
+        ("28593", "CSIDL_FLAG_CREATE|0x00020593"),
+        ("28594", "CSIDL_FLAG_CREATE|0x00020594"),
+        ("28595", "CSIDL_FLAG_CREATE|0x00020595"),
+        ("28596", "CSIDL_FLAG_CREATE|0x00020596"),
+        ("28597", "CSIDL_FLAG_CREATE|0x00020597"),
+        ("28598", "CSIDL_FLAG_CREATE|0x00020598"),
+        ("28599", "CSIDL_FLAG_CREATE|0x00020599"),
+        ("28600", "CSIDL_FLAG_CREATE|0x00020600"),
+        ("28601", "CSIDL_FLAG_CREATE|0x00020601"),
+        ("28602", "CSIDL_FLAG_CREATE|0x00020602"),
+        ("28603", "CSIDL_FLAG_CREATE|0x00020603"),
+        ("28604", "CSIDL_FLAG_CREATE|0x00020604"),
+        ("28605", "CSIDL_FLAG_CREATE|0x00020605"),
+        ("28606", "CSIDL_FLAG_CREATE|0x00020606"),
+        ("28607", "CSIDL_FLAG_CREATE|0x00020607"),
+        ("28608", "CSIDL_FLAG_CREATE|0x00020608"),
+        ("28609", "CSIDL_FLAG_CREATE|0x00020609"),
+        ("28610", "CSIDL_FLAG_CREATE|0x00020610"),
+        ("28611", "CSIDL_FLAG_CREATE|0x00020611"),
+        ("28612", "CSIDL_FLAG_CREATE|0x00020612"),
+        ("28613", "CSIDL_FLAG_CREATE|0x00020613"),
+        ("28614", "CSIDL_FLAG_CREATE|0x00020614"),
+        ("28615", "CSIDL_FLAG_CREATE|0x00020615"),
+        ("28616", "CSIDL_FLAG_CREATE|0x00020616"),
+        ("28617", "CSIDL_FLAG_CREATE|0x00020617"),
+        ("28618", "CSIDL_FLAG_CREATE|0x00020618"),
+        ("28619", "CSIDL_FLAG_CREATE|0x00020619"),
+        ("28620", "CSIDL_FLAG_CREATE|0x00020620"),
+        ("28621", "CSIDL_FLAG_CREATE|0x00020621"),
+        ("28622", "CSIDL_FLAG_CREATE|0x00020622"),
+        ("28623", "CSIDL_FLAG_CREATE|0x00020623"),
+        ("28624", "CSIDL_FLAG_CREATE|0x00020624"),
+        ("28625", "CSIDL_FLAG_CREATE|0x00020625"),
+        ("28626", "CSIDL_FLAG_CREATE|0x00020626"),
+        ("28627", "CSIDL_FLAG_CREATE|0x00020627"),
+        ("28628", "CSIDL_FLAG_CREATE|0x00020628"),
+        ("28629", "CSIDL_FLAG_CREATE|0x00020629"),
+        ("28630", "CSIDL_FLAG_CREATE|0x00020630"),
+        ("28631", "CSIDL_FLAG_CREATE|0x00020631"),
+        ("28632", "CSIDL_FLAG_CREATE|0x00020632"),
+        ("28633", "CSIDL_FLAG_CREATE|0x00020633"),
+        ("28634", "CSIDL_FLAG_CREATE|0x00020634"),
+        ("28635", "CSIDL_FLAG_CREATE|0x00020635"),
+        ("28636", "CSIDL_FLAG_CREATE|0x00020636"),
+        ("28637", "CSIDL_FLAG_CREATE|0x00020637"),
+        ("28638", "CSIDL_FLAG_CREATE|0x00020638"),
+        ("28639", "CSIDL_FLAG_CREATE|0x00020639"),
+        ("28640", "CSIDL_FLAG_CREATE|0x00020640"),
+        ("28641", "CSIDL_FLAG_CREATE|0x00020641"),
+        ("28642", "CSIDL_FLAG_CREATE|0x00020642"),
+        ("28643", "CSIDL_FLAG_CREATE|0x00020643"),
+        ("28644", "CSIDL_FLAG_CREATE|0x00020644"),
+        ("28645", "CSIDL_FLAG_CREATE|0x00020645"),
+        ("28646", "CSIDL_FLAG_CREATE|0x00020646"),
+        ("28647", "CSIDL_FLAG_CREATE|0x00020647"),
+        ("28648", "CSIDL_FLAG_CREATE|0x00020648"),
+        ("28649", "CSIDL_FLAG_CREATE|0x00020649"),
+        ("28650", "CSIDL_FLAG_CREATE|0x00020650"),
+        ("28651", "CSIDL_FLAG_CREATE|0x00020651"),
+        ("28652", "CSIDL_FLAG_CREATE|0x00020652"),
+        ("28653", "CSIDL_FLAG_CREATE|0x00020653"),
+        ("28654", "CSIDL_FLAG_CREATE|0x00020654"),
+        ("28655", "CSIDL_FLAG_CREATE|0x00020655"),
+        ("28656", "CSIDL_FLAG_CREATE|0x00020656"),
+        ("28657", "CSIDL_FLAG_CREATE|0x00020657"),
+        ("28658", "CSIDL_FLAG_CREATE|0x00020658"),
+        ("28659", "CSIDL_FLAG_CREATE|0x00020659"),
+        ("28660", "CSIDL_FLAG_CREATE|0x00020660"),
+        ("28661", "CSIDL_FLAG_CREATE|0x00020661"),
+        ("28662", "CSIDL_FLAG_CREATE|0x00020662"),
+        ("28663", "CSIDL_FLAG_CREATE|0x00020663"),
+        ("28664", "CSIDL_FLAG_CREATE|0x00020664"),
+        ("28665", "CSIDL_FLAG_CREATE|0x00020665"),
+        ("28666", "CSIDL_FLAG_CREATE|0x00020666"),
+        ("28667", "CSIDL_FLAG_CREATE|0x00020667"),
+        ("28668", "CSIDL_FLAG_CREATE|0x00020668"),
+        ("28669", "CSIDL_FLAG_CREATE|0x00020669"),
+        ("28670", "CSIDL_FLAG_CREATE|0x00020670"),
+        ("28671", "CSIDL_FLAG_CREATE|0x00020671"),
+        ("28672", "CSIDL_FLAG_CREATE|0x00020672"),
+        ("28673", "CSIDL_FLAG_CREATE|0x00020673"),
+        ("28674", "CSIDL_FLAG_CREATE|0x00020674"),
+        ("28675", "CSIDL_FLAG_CREATE|0x00020675"),
+        ("28676", "CSIDL_FLAG_CREATE|0x00020676"),
+        ("28677", "CSIDL_FLAG_CREATE|0x00020677"),
+        ("28678", "CSIDL_FLAG_CREATE|0x00020678"),
+        ("28679", "CSIDL_FLAG_CREATE|0x00020679"),
+        ("28680", "CSIDL_FLAG_CREATE|0x00020680"),
+        ("28681", "CSIDL_FLAG_CREATE|0x00020681"),
+        ("28682", "CSIDL_FLAG_CREATE|0x00020682"),
+        ("28683", "CSIDL_FLAG_CREATE|0x00020683"),
+        ("28684", "CSIDL_FLAG_CREATE|0x00020684"),
+        ("28685", "CSIDL_FLAG_CREATE|0x00020685"),
+        ("28686", "CSIDL_FLAG_CREATE|0x00020686"),
+        ("28687", "CSIDL_FLAG_CREATE|0x00020687"),
+        ("28688", "CSIDL_FLAG_CREATE|0x00020688"),
+        ("28689", "CSIDL_FLAG_CREATE|0x00020689"),
+        ("28690", "CSIDL_FLAG_CREATE|0x00020690"),
+        ("28691", "CSIDL_FLAG_CREATE|0x00020691"),
+        ("28692", "CSIDL_FLAG_CREATE|0x00020692"),
+        ("28693", "CSIDL_FLAG_CREATE|0x00020693"),
+        ("28694", "CSIDL_FLAG_CREATE|0x00020694"),
+        ("28695", "CSIDL_FLAG_CREATE|0x00020695"),
+        ("28696", "CSIDL_FLAG_CREATE|0x00020696"),
+        ("28697", "CSIDL_FLAG_CREATE|0x00020697"),
+        ("28698", "CSIDL_FLAG_CREATE|0x00020698"),
+        ("28699", "CSIDL_FLAG_CREATE|0x00020699"),
+        ("28700", "CSIDL_FLAG_CREATE|0x00020700"),
+        ("28701", "CSIDL_FLAG_CREATE|0x00020701"),
+        ("28702", "CSIDL_FLAG_CREATE|0x00020702"),
+        ("28703", "CSIDL_FLAG_CREATE|0x00020703"),
+        ("28704", "CSIDL_FLAG_CREATE|0x00020704"),
+        ("28705", "CSIDL_FLAG_CREATE|0x00020705"),
+        ("28706", "CSIDL_FLAG_CREATE|0x00020706"),
+        ("28707", "CSIDL_FLAG_CREATE|0x00020707"),
+        ("28708", "CSIDL_FLAG_CREATE|0x00020708"),
+        ("28709", "CSIDL_FLAG_CREATE|0x00020709"),
+        ("28710", "CSIDL_FLAG_CREATE|0x00020710"),
+        ("28711", "CSIDL_FLAG_CREATE|0x00020711"),
+        ("28712", "CSIDL_FLAG_CREATE|0x00020712"),
+        ("28713", "CSIDL_FLAG_CREATE|0x00020713"),
+        ("28714", "CSIDL_FLAG_CREATE|0x00020714"),
+        ("28715", "CSIDL_FLAG_CREATE|0x00020715"),
+        ("28716", "CSIDL_FLAG_CREATE|0x00020716"),
+        ("28717", "CSIDL_FLAG_CREATE|0x00020717"),
+        ("28718", "CSIDL_FLAG_CREATE|0x00020718"),
+        ("28719", "CSIDL_FLAG_CREATE|0x00020719"),
+        ("28720", "CSIDL_FLAG_CREATE|0x00020720"),
+        ("28721", "CSIDL_FLAG_CREATE|0x00020721"),
+        ("28722", "CSIDL_FLAG_CREATE|0x00020722"),
+        ("28723", "CSIDL_FLAG_CREATE|0x00020723"),
+        ("28724", "CSIDL_FLAG_CREATE|0x00020724"),
+        ("28725", "CSIDL_FLAG_CREATE|0x00020725"),
+        ("28726", "CSIDL_FLAG_CREATE|0x00020726"),
+        ("28727", "CSIDL_FLAG_CREATE|0x00020727"),
+        ("28728", "CSIDL_FLAG_CREATE|0x00020728"),
+        ("28729", "CSIDL_FLAG_CREATE|0x00020729"),
+        ("28730", "CSIDL_FLAG_CREATE|0x00020730"),
+        ("28731", "CSIDL_FLAG_CREATE|0x00020731"),
+        ("28732", "CSIDL_FLAG_CREATE|0x00020732"),
+        ("28733", "CSIDL_FLAG_CREATE|0x00020733"),
+        ("28734", "CSIDL_FLAG_CREATE|0x00020734"),
+        ("28735", "CSIDL_FLAG_CREATE|0x00020735"),
+        ("28736", "CSIDL_FLAG_CREATE|0x00020736"),
+        ("28737", "CSIDL_FLAG_CREATE|0x00020737"),
+        ("28738", "CSIDL_FLAG_CREATE|0x00020738"),
+        ("28739", "CSIDL_FLAG_CREATE|0x00020739"),
+        ("28740", "CSIDL_FLAG_CREATE|0x00020740"),
+        ("28741", "CSIDL_FLAG_CREATE|0x00020741"),
+        ("28742", "CSIDL_FLAG_CREATE|0x00020742"),
+        ("28743", "CSIDL_FLAG_CREATE|0x00020743"),
+        ("28744", "CSIDL_FLAG_CREATE|0x00020744"),
+        ("28745", "CSIDL_FLAG_CREATE|0x00020745"),
+        ("28746", "CSIDL_FLAG_CREATE|0x00020746"),
+        ("28747", "CSIDL_FLAG_CREATE|0x00020747"),
+        ("28748", "CSIDL_FLAG_CREATE|0x00020748"),
+        ("28749", "CSIDL_FLAG_CREATE|0x00020749"),
+        ("28750", "CSIDL_FLAG_CREATE|0x00020750"),
+        ("28751", "CSIDL_FLAG_CREATE|0x00020751"),
+        ("28752", "CSIDL_FLAG_CREATE|0x00020752"),
+        ("28753", "CSIDL_FLAG_CREATE|0x00020753"),
+        ("28754", "CSIDL_FLAG_CREATE|0x00020754"),
+        ("28755", "CSIDL_FLAG_CREATE|0x00020755"),
+        ("28756", "CSIDL_FLAG_CREATE|0x00020756"),
+        ("28757", "CSIDL_FLAG_CREATE|0x00020757"),
+        ("28758", "CSIDL_FLAG_CREATE|0x00020758"),
+        ("28759", "CSIDL_FLAG_CREATE|0x00020759"),
+        ("28760", "CSIDL_FLAG_CREATE|0x00020760"),
+        ("28761", "CSIDL_FLAG_CREATE|0x00020761"),
+        ("28762", "CSIDL_FLAG_CREATE|0x00020762"),
+        ("28763", "CSIDL_FLAG_CREATE|0x00020763"),
+        ("28764", "CSIDL_FLAG_CREATE|0x00020764"),
+        ("28765", "CSIDL_FLAG_CREATE|0x00020765"),
+        ("28766", "CSIDL_FLAG_CREATE|0x00020766"),
+        ("28767", "CSIDL_FLAG_CREATE|0x00020767"),
+        ("28768", "CSIDL_FLAG_CREATE|0x00020768"),
+        ("28769", "CSIDL_FLAG_CREATE|0x00020769"),
+        ("28770", "CSIDL_FLAG_CREATE|0x00020770"),
+        ("28771", "CSIDL_FLAG_CREATE|0x00020771"),
+        ("28772", "CSIDL_FLAG_CREATE|0x00020772"),
+        ("28773", "CSIDL_FLAG_CREATE|0x00020773"),
+        ("28774", "CSIDL_FLAG_CREATE|0x00020774"),
+        ("28775", "CSIDL_FLAG_CREATE|0x00020775"),
+        ("28776", "CSIDL_FLAG_CREATE|0x00020776"),
+        ("28777", "CSIDL_FLAG_CREATE|0x00020777"),
+        ("28778", "CSIDL_FLAG_CREATE|0x00020778"),
+        ("28779", "CSIDL_FLAG_CREATE|0x00020779"),
+        ("28780", "CSIDL_FLAG_CREATE|0x00020780"),
+        ("28781", "CSIDL_FLAG_CREATE|0x00020781"),
+        ("28782", "CSIDL_FLAG_CREATE|0x00020782"),
+        ("28783", "CSIDL_FLAG_CREATE|0x00020783"),
+        ("28784", "CSIDL_FLAG_CREATE|0x00020784"),
+        ("28785", "CSIDL_FLAG_CREATE|0x00020785"),
+        ("28786", "CSIDL_FLAG_CREATE|0x00020786"),
+        ("28787", "CSIDL_FLAG_CREATE|0x00020787"),
+        ("28788", "CSIDL_FLAG_CREATE|0x00020788"),
+        ("28789", "CSIDL_FLAG_CREATE|0x00020789"),
+        ("28790", "CSIDL_FLAG_CREATE|0x00020790"),
+        ("28791", "CSIDL_FLAG_CREATE|0x00020791"),
+        ("28792", "CSIDL_FLAG_CREATE|0x00020792"),
+        ("28793", "CSIDL_FLAG_CREATE|0x00020793"),
+        ("28794", "CSIDL_FLAG_CREATE|0x00020794"),
+        ("28795", "CSIDL_FLAG_CREATE|0x00020795"),
+        ("28796", "CSIDL_FLAG_CREATE|0x00020796"),
+        ("28797", "CSIDL_FLAG_CREATE|0x00020797"),
+        ("28798", "CSIDL_FLAG_CREATE|0x00020798"),
+        ("28799", "CSIDL_FLAG_CREATE|0x00020799"),
+        ("28800", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020000"),
+        ("28801", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020001"),
+        ("28802", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020002"),
+        ("28803", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020003"),
+        ("28804", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020004"),
+        ("28805", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020005"),
+        ("28806", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020006"),
+        ("28807", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020007"),
+        ("28808", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020008"),
+        ("28809", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020009"),
+        ("28810", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020010"),
+        ("28811", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020011"),
+        ("28812", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020012"),
+        ("28813", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020013"),
+        ("28814", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020014"),
+        ("28815", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020015"),
+        ("28816", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020016"),
+        ("28817", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020017"),
+        ("28818", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020018"),
+        ("28819", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020019"),
+        ("28820", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020020"),
+        ("28821", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020021"),
+        ("28822", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020022"),
+        ("28823", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020023"),
+        ("28824", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020024"),
+        ("28825", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020025"),
+        ("28826", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020026"),
+        ("28827", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020027"),
+        ("28828", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020028"),
+        ("28829", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020029"),
+        ("28830", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020030"),
+        ("28831", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020031"),
+        ("28832", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020032"),
+        ("28833", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020033"),
+        ("28834", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020034"),
+        ("28835", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020035"),
+        ("28836", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020036"),
+        ("28837", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020037"),
+        ("28838", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020038"),
+        ("28839", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020039"),
+        ("28840", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020040"),
+        ("28841", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020041"),
+        ("28842", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020042"),
+        ("28843", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020043"),
+        ("28844", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020044"),
+        ("28845", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020045"),
+        ("28846", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020046"),
+        ("28847", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020047"),
+        ("28848", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020048"),
+        ("28849", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020049"),
+        ("28850", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020050"),
+        ("28851", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020051"),
+        ("28852", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020052"),
+        ("28853", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020053"),
+        ("28854", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020054"),
+        ("28855", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020055"),
+        ("28856", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020056"),
+        ("28857", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020057"),
+        ("28858", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020058"),
+        ("28859", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020059"),
+        ("28860", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020060"),
+        ("28861", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020061"),
+        ("28862", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020062"),
+        ("28863", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020063"),
+        ("28864", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020064"),
+        ("28865", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020065"),
+        ("28866", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020066"),
+        ("28867", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020067"),
+        ("28868", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020068"),
+        ("28869", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020069"),
+        ("28870", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020070"),
+        ("28871", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020071"),
+        ("28872", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020072"),
+        ("28873", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020073"),
+        ("28874", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020074"),
+        ("28875", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020075"),
+        ("28876", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020076"),
+        ("28877", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020077"),
+        ("28878", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020078"),
+        ("28879", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020079"),
+        ("28880", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020080"),
+        ("28881", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020081"),
+        ("28882", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020082"),
+        ("28883", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020083"),
+        ("28884", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020084"),
+        ("28885", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020085"),
+        ("28886", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020086"),
+        ("28887", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020087"),
+        ("28888", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020088"),
+        ("28889", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020089"),
+        ("28890", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020090"),
+        ("28891", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020091"),
+        ("28892", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020092"),
+        ("28893", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020093"),
+        ("28894", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020094"),
+        ("28895", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020095"),
+        ("28896", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020096"),
+        ("28897", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020097"),
+        ("28898", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020098"),
+        ("28899", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020099"),
+        ("28900", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020100"),
+        ("28901", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020101"),
+        ("28902", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020102"),
+        ("28903", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020103"),
+        ("28904", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020104"),
+        ("28905", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020105"),
+        ("28906", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020106"),
+        ("28907", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020107"),
+        ("28908", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020108"),
+        ("28909", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020109"),
+        ("28910", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020110"),
+        ("28911", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020111"),
+        ("28912", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020112"),
+        ("28913", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020113"),
+        ("28914", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020114"),
+        ("28915", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020115"),
+        ("28916", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020116"),
+        ("28917", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020117"),
+        ("28918", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020118"),
+        ("28919", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020119"),
+        ("28920", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020120"),
+        ("28921", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020121"),
+        ("28922", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020122"),
+        ("28923", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020123"),
+        ("28924", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020124"),
+        ("28925", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020125"),
+        ("28926", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020126"),
+        ("28927", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020127"),
+        ("28928", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020128"),
+        ("28929", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020129"),
+        ("28930", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020130"),
+        ("28931", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020131"),
+        ("28932", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020132"),
+        ("28933", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020133"),
+        ("28934", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020134"),
+        ("28935", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020135"),
+        ("28936", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020136"),
+        ("28937", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020137"),
+        ("28938", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020138"),
+        ("28939", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020139"),
+        ("28940", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020140"),
+        ("28941", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020141"),
+        ("28942", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020142"),
+        ("28943", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020143"),
+        ("28944", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020144"),
+        ("28945", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020145"),
+        ("28946", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020146"),
+        ("28947", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020147"),
+        ("28948", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020148"),
+        ("28949", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020149"),
+        ("28950", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020150"),
+        ("28951", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020151"),
+        ("28952", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020152"),
+        ("28953", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020153"),
+        ("28954", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020154"),
+        ("28955", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020155"),
+        ("28956", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020156"),
+        ("28957", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020157"),
+        ("28958", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020158"),
+        ("28959", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020159"),
+        ("28960", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020160"),
+        ("28961", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020161"),
+        ("28962", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020162"),
+        ("28963", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020163"),
+        ("28964", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020164"),
+        ("28965", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020165"),
+        ("28966", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020166"),
+        ("28967", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020167"),
+        ("28968", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020168"),
+        ("28969", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020169"),
+        ("28970", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020170"),
+        ("28971", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020171"),
+        ("28972", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020172"),
+        ("28973", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020173"),
+        ("28974", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020174"),
+        ("28975", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020175"),
+        ("28976", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020176"),
+        ("28977", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020177"),
+        ("28978", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020178"),
+        ("28979", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020179"),
+        ("28980", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020180"),
+        ("28981", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020181"),
+        ("28982", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020182"),
+        ("28983", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020183"),
+        ("28984", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020184"),
+        ("28985", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020185"),
+        ("28986", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020186"),
+        ("28987", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020187"),
+        ("28988", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020188"),
+        ("28989", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020189"),
+        ("28990", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020190"),
+        ("28991", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020191"),
+        ("28992", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020192"),
+        ("28993", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020193"),
+        ("28994", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020194"),
+        ("28995", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020195"),
+        ("28996", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020196"),
+        ("28997", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020197"),
+        ("28998", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020198"),
+        ("28999", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_CREATE|0x00020199"),
+        ("29000", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020000"),
+        ("29001", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020001"),
+        ("29002", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020002"),
+        ("29003", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020003"),
+        ("29004", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020004"),
+        ("29005", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020005"),
+        ("29006", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020006"),
+        ("29007", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020007"),
+        ("29008", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020008"),
+        ("29009", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020009"),
+        ("29010", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020010"),
+        ("29011", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020011"),
+        ("29012", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020012"),
+        ("29013", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020013"),
+        ("29014", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020014"),
+        ("29015", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020015"),
+        ("29016", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020016"),
+        ("29017", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020017"),
+        ("29018", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020018"),
+        ("29019", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020019"),
+        ("29020", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020020"),
+        ("29021", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020021"),
+        ("29022", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020022"),
+        ("29023", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020023"),
+        ("29024", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020024"),
+        ("29025", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020025"),
+        ("29026", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020026"),
+        ("29027", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020027"),
+        ("29028", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020028"),
+        ("29029", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020029"),
+        ("29030", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020030"),
+        ("29031", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020031"),
+        ("29032", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020032"),
+        ("29033", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020033"),
+        ("29034", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020034"),
+        ("29035", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020035"),
+        ("29036", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020036"),
+        ("29037", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020037"),
+        ("29038", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020038"),
+        ("29039", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020039"),
+        ("29040", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020040"),
+        ("29041", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020041"),
+        ("29042", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020042"),
+        ("29043", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020043"),
+        ("29044", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020044"),
+        ("29045", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020045"),
+        ("29046", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020046"),
+        ("29047", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020047"),
+        ("29048", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020048"),
+        ("29049", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020049"),
+        ("29050", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020050"),
+        ("29051", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020051"),
+        ("29052", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020052"),
+        ("29053", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020053"),
+        ("29054", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020054"),
+        ("29055", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020055"),
+        ("29056", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020056"),
+        ("29057", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020057"),
+        ("29058", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020058"),
+        ("29059", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020059"),
+        ("29060", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020060"),
+        ("29061", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020061"),
+        ("29062", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020062"),
+        ("29063", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020063"),
+        ("29064", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020064"),
+        ("29065", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020065"),
+        ("29066", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020066"),
+        ("29067", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020067"),
+        ("29068", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020068"),
+        ("29069", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020069"),
+        ("29070", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020070"),
+        ("29071", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020071"),
+        ("29072", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020072"),
+        ("29073", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020073"),
+        ("29074", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020074"),
+        ("29075", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020075"),
+        ("29076", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020076"),
+        ("29077", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020077"),
+        ("29078", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020078"),
+        ("29079", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020079"),
+        ("29080", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020080"),
+        ("29081", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020081"),
+        ("29082", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020082"),
+        ("29083", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020083"),
+        ("29084", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020084"),
+        ("29085", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020085"),
+        ("29086", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020086"),
+        ("29087", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020087"),
+        ("29088", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020088"),
+        ("29089", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020089"),
+        ("29090", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020090"),
+        ("29091", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020091"),
+        ("29092", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020092"),
+        ("29093", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020093"),
+        ("29094", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020094"),
+        ("29095", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020095"),
+        ("29096", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020096"),
+        ("29097", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020097"),
+        ("29098", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020098"),
+        ("29099", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020099"),
+        ("29100", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020100"),
+        ("29101", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020101"),
+        ("29102", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020102"),
+        ("29103", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020103"),
+        ("29104", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020104"),
+        ("29105", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020105"),
+        ("29106", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020106"),
+        ("29107", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020107"),
+        ("29108", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020108"),
+        ("29109", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020109"),
+        ("29110", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020110"),
+        ("29111", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020111"),
+        ("29112", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020112"),
+        ("29113", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020113"),
+        ("29114", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020114"),
+        ("29115", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020115"),
+        ("29116", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020116"),
+        ("29117", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020117"),
+        ("29118", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020118"),
+        ("29119", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020119"),
+        ("29120", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020120"),
+        ("29121", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020121"),
+        ("29122", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020122"),
+        ("29123", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020123"),
+        ("29124", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020124"),
+        ("29125", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020125"),
+        ("29126", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020126"),
+        ("29127", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020127"),
+        ("29128", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020128"),
+        ("29129", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020129"),
+        ("29130", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020130"),
+        ("29131", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020131"),
+        ("29132", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020132"),
+        ("29133", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020133"),
+        ("29134", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020134"),
+        ("29135", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020135"),
+        ("29136", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020136"),
+        ("29137", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020137"),
+        ("29138", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020138"),
+        ("29139", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020139"),
+        ("29140", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020140"),
+        ("29141", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020141"),
+        ("29142", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020142"),
+        ("29143", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020143"),
+        ("29144", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020144"),
+        ("29145", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020145"),
+        ("29146", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020146"),
+        ("29147", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020147"),
+        ("29148", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020148"),
+        ("29149", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020149"),
+        ("29150", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020150"),
+        ("29151", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020151"),
+        ("29152", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020152"),
+        ("29153", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020153"),
+        ("29154", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020154"),
+        ("29155", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020155"),
+        ("29156", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020156"),
+        ("29157", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020157"),
+        ("29158", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020158"),
+        ("29159", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020159"),
+        ("29160", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020160"),
+        ("29161", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020161"),
+        ("29162", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020162"),
+        ("29163", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020163"),
+        ("29164", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020164"),
+        ("29165", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020165"),
+        ("29166", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020166"),
+        ("29167", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020167"),
+        ("29168", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020168"),
+        ("29169", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020169"),
+        ("29170", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020170"),
+        ("29171", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020171"),
+        ("29172", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020172"),
+        ("29173", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020173"),
+        ("29174", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020174"),
+        ("29175", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020175"),
+        ("29176", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020176"),
+        ("29177", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020177"),
+        ("29178", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020178"),
+        ("29179", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020179"),
+        ("29180", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020180"),
+        ("29181", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020181"),
+        ("29182", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020182"),
+        ("29183", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020183"),
+        ("29184", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020184"),
+        ("29185", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020185"),
+        ("29186", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020186"),
+        ("29187", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020187"),
+        ("29188", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020188"),
+        ("29189", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020189"),
+        ("29190", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020190"),
+        ("29191", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020191"),
+        ("29192", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020192"),
+        ("29193", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020193"),
+        ("29194", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020194"),
+        ("29195", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020195"),
+        ("29196", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020196"),
+        ("29197", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020197"),
+        ("29198", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020198"),
+        ("29199", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020199"),
+        ("29200", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020200"),
+        ("29201", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020201"),
+        ("29202", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020202"),
+        ("29203", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020203"),
+        ("29204", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020204"),
+        ("29205", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020205"),
+        ("29206", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020206"),
+        ("29207", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020207"),
+        ("29208", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020208"),
+        ("29209", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020209"),
+        ("29210", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020210"),
+        ("29211", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020211"),
+        ("29212", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020212"),
+        ("29213", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020213"),
+        ("29214", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020214"),
+        ("29215", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020215"),
+        ("29216", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020216"),
+        ("29217", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020217"),
+        ("29218", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020218"),
+        ("29219", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020219"),
+        ("29220", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020220"),
+        ("29221", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020221"),
+        ("29222", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020222"),
+        ("29223", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020223"),
+        ("29224", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020224"),
+        ("29225", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020225"),
+        ("29226", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020226"),
+        ("29227", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020227"),
+        ("29228", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020228"),
+        ("29229", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020229"),
+        ("29230", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020230"),
+        ("29231", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020231"),
+        ("29232", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020232"),
+        ("29233", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020233"),
+        ("29234", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020234"),
+        ("29235", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020235"),
+        ("29236", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020236"),
+        ("29237", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020237"),
+        ("29238", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020238"),
+        ("29239", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020239"),
+        ("29240", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020240"),
+        ("29241", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020241"),
+        ("29242", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020242"),
+        ("29243", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020243"),
+        ("29244", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020244"),
+        ("29245", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020245"),
+        ("29246", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020246"),
+        ("29247", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020247"),
+        ("29248", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020248"),
+        ("29249", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020249"),
+        ("29250", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020250"),
+        ("29251", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020251"),
+        ("29252", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020252"),
+        ("29253", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020253"),
+        ("29254", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020254"),
+        ("29255", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020255"),
+        ("29256", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020256"),
+        ("29257", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020257"),
+        ("29258", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020258"),
+        ("29259", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020259"),
+        ("29260", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020260"),
+        ("29261", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020261"),
+        ("29262", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020262"),
+        ("29263", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020263"),
+        ("29264", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020264"),
+        ("29265", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020265"),
+        ("29266", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020266"),
+        ("29267", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020267"),
+        ("29268", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020268"),
+        ("29269", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020269"),
+        ("29270", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020270"),
+        ("29271", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020271"),
+        ("29272", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020272"),
+        ("29273", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020273"),
+        ("29274", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020274"),
+        ("29275", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020275"),
+        ("29276", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020276"),
+        ("29277", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020277"),
+        ("29278", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020278"),
+        ("29279", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020279"),
+        ("29280", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020280"),
+        ("29281", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020281"),
+        ("29282", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020282"),
+        ("29283", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020283"),
+        ("29284", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020284"),
+        ("29285", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020285"),
+        ("29286", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020286"),
+        ("29287", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020287"),
+        ("29288", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020288"),
+        ("29289", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020289"),
+        ("29290", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020290"),
+        ("29291", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020291"),
+        ("29292", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020292"),
+        ("29293", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020293"),
+        ("29294", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020294"),
+        ("29295", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020295"),
+        ("29296", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020296"),
+        ("29297", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020297"),
+        ("29298", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020298"),
+        ("29299", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020299"),
+        ("29300", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020300"),
+        ("29301", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020301"),
+        ("29302", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020302"),
+        ("29303", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020303"),
+        ("29304", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020304"),
+        ("29305", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020305"),
+        ("29306", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020306"),
+        ("29307", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020307"),
+        ("29308", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020308"),
+        ("29309", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020309"),
+        ("29310", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020310"),
+        ("29311", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020311"),
+        ("29312", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020312"),
+        ("29313", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020313"),
+        ("29314", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020314"),
+        ("29315", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020315"),
+        ("29316", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020316"),
+        ("29317", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020317"),
+        ("29318", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020318"),
+        ("29319", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020319"),
+        ("29320", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020320"),
+        ("29321", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020321"),
+        ("29322", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020322"),
+        ("29323", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020323"),
+        ("29324", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020324"),
+        ("29325", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020325"),
+        ("29326", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020326"),
+        ("29327", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020327"),
+        ("29328", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020328"),
+        ("29329", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020329"),
+        ("29330", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020330"),
+        ("29331", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020331"),
+        ("29332", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020332"),
+        ("29333", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020333"),
+        ("29334", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020334"),
+        ("29335", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020335"),
+        ("29336", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020336"),
+        ("29337", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020337"),
+        ("29338", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020338"),
+        ("29339", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020339"),
+        ("29340", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020340"),
+        ("29341", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020341"),
+        ("29342", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020342"),
+        ("29343", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020343"),
+        ("29344", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020344"),
+        ("29345", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020345"),
+        ("29346", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020346"),
+        ("29347", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020347"),
+        ("29348", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020348"),
+        ("29349", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020349"),
+        ("29350", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020350"),
+        ("29351", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020351"),
+        ("29352", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020352"),
+        ("29353", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020353"),
+        ("29354", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020354"),
+        ("29355", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020355"),
+        ("29356", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020356"),
+        ("29357", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020357"),
+        ("29358", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020358"),
+        ("29359", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020359"),
+        ("29360", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020360"),
+        ("29361", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020361"),
+        ("29362", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020362"),
+        ("29363", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020363"),
+        ("29364", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020364"),
+        ("29365", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020365"),
+        ("29366", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020366"),
+        ("29367", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020367"),
+        ("29368", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020368"),
+        ("29369", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020369"),
+        ("29370", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020370"),
+        ("29371", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020371"),
+        ("29372", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020372"),
+        ("29373", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020373"),
+        ("29374", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020374"),
+        ("29375", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020375"),
+        ("29376", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020376"),
+        ("29377", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020377"),
+        ("29378", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020378"),
+        ("29379", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020379"),
+        ("29380", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020380"),
+        ("29381", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020381"),
+        ("29382", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020382"),
+        ("29383", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020383"),
+        ("29384", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020384"),
+        ("29385", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020385"),
+        ("29386", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020386"),
+        ("29387", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020387"),
+        ("29388", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020388"),
+        ("29389", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020389"),
+        ("29390", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020390"),
+        ("29391", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020391"),
+        ("29392", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020392"),
+        ("29393", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020393"),
+        ("29394", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020394"),
+        ("29395", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020395"),
+        ("29396", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020396"),
+        ("29397", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020397"),
+        ("29398", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020398"),
+        ("29399", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020399"),
+        ("29400", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020400"),
+        ("29401", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020401"),
+        ("29402", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020402"),
+        ("29403", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020403"),
+        ("29404", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020404"),
+        ("29405", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020405"),
+        ("29406", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020406"),
+        ("29407", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020407"),
+        ("29408", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020408"),
+        ("29409", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020409"),
+        ("29410", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020410"),
+        ("29411", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020411"),
+        ("29412", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020412"),
+        ("29413", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020413"),
+        ("29414", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020414"),
+        ("29415", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020415"),
+        ("29416", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020416"),
+        ("29417", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020417"),
+        ("29418", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020418"),
+        ("29419", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020419"),
+        ("29420", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020420"),
+        ("29421", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020421"),
+        ("29422", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020422"),
+        ("29423", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020423"),
+        ("29424", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020424"),
+        ("29425", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020425"),
+        ("29426", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020426"),
+        ("29427", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020427"),
+        ("29428", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020428"),
+        ("29429", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020429"),
+        ("29430", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020430"),
+        ("29431", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020431"),
+        ("29432", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020432"),
+        ("29433", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020433"),
+        ("29434", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020434"),
+        ("29435", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020435"),
+        ("29436", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020436"),
+        ("29437", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020437"),
+        ("29438", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020438"),
+        ("29439", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020439"),
+        ("29440", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020440"),
+        ("29441", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020441"),
+        ("29442", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020442"),
+        ("29443", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020443"),
+        ("29444", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020444"),
+        ("29445", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020445"),
+        ("29446", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020446"),
+        ("29447", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020447"),
+        ("29448", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020448"),
+        ("29449", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020449"),
+        ("29450", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020450"),
+        ("29451", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020451"),
+        ("29452", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020452"),
+        ("29453", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020453"),
+        ("29454", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020454"),
+        ("29455", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020455"),
+        ("29456", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020456"),
+        ("29457", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020457"),
+        ("29458", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020458"),
+        ("29459", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020459"),
+        ("29460", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020460"),
+        ("29461", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020461"),
+        ("29462", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020462"),
+        ("29463", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020463"),
+        ("29464", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020464"),
+        ("29465", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020465"),
+        ("29466", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020466"),
+        ("29467", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020467"),
+        ("29468", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020468"),
+        ("29469", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020469"),
+        ("29470", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020470"),
+        ("29471", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020471"),
+        ("29472", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020472"),
+        ("29473", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020473"),
+        ("29474", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020474"),
+        ("29475", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020475"),
+        ("29476", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020476"),
+        ("29477", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020477"),
+        ("29478", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020478"),
+        ("29479", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020479"),
+        ("29480", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020480"),
+        ("29481", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020481"),
+        ("29482", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020482"),
+        ("29483", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020483"),
+        ("29484", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020484"),
+        ("29485", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020485"),
+        ("29486", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020486"),
+        ("29487", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020487"),
+        ("29488", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020488"),
+        ("29489", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020489"),
+        ("29490", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020490"),
+        ("29491", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020491"),
+        ("29492", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020492"),
+        ("29493", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020493"),
+        ("29494", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020494"),
+        ("29495", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020495"),
+        ("29496", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020496"),
+        ("29497", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020497"),
+        ("29498", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020498"),
+        ("29499", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020499"),
+        ("29500", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020500"),
+        ("29501", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020501"),
+        ("29502", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020502"),
+        ("29503", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020503"),
+        ("29504", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020504"),
+        ("29505", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020505"),
+        ("29506", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020506"),
+        ("29507", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020507"),
+        ("29508", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020508"),
+        ("29509", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020509"),
+        ("29510", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020510"),
+        ("29511", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020511"),
+        ("29512", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020512"),
+        ("29513", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020513"),
+        ("29514", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020514"),
+        ("29515", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020515"),
+        ("29516", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020516"),
+        ("29517", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020517"),
+        ("29518", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020518"),
+        ("29519", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020519"),
+        ("29520", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020520"),
+        ("29521", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020521"),
+        ("29522", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020522"),
+        ("29523", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020523"),
+        ("29524", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020524"),
+        ("29525", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020525"),
+        ("29526", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020526"),
+        ("29527", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020527"),
+        ("29528", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020528"),
+        ("29529", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020529"),
+        ("29530", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020530"),
+        ("29531", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020531"),
+        ("29532", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020532"),
+        ("29533", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020533"),
+        ("29534", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020534"),
+        ("29535", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020535"),
+        ("29536", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020536"),
+        ("29537", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020537"),
+        ("29538", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020538"),
+        ("29539", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020539"),
+        ("29540", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020540"),
+        ("29541", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020541"),
+        ("29542", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020542"),
+        ("29543", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020543"),
+        ("29544", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020544"),
+        ("29545", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020545"),
+        ("29546", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020546"),
+        ("29547", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020547"),
+        ("29548", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020548"),
+        ("29549", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020549"),
+        ("29550", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020550"),
+        ("29551", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020551"),
+        ("29552", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020552"),
+        ("29553", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020553"),
+        ("29554", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020554"),
+        ("29555", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020555"),
+        ("29556", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020556"),
+        ("29557", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020557"),
+        ("29558", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020558"),
+        ("29559", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020559"),
+        ("29560", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020560"),
+        ("29561", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020561"),
+        ("29562", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020562"),
+        ("29563", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020563"),
+        ("29564", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020564"),
+        ("29565", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020565"),
+        ("29566", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020566"),
+        ("29567", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020567"),
+        ("29568", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020568"),
+        ("29569", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020569"),
+        ("29570", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020570"),
+        ("29571", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020571"),
+        ("29572", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020572"),
+        ("29573", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020573"),
+        ("29574", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020574"),
+        ("29575", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020575"),
+        ("29576", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020576"),
+        ("29577", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020577"),
+        ("29578", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020578"),
+        ("29579", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020579"),
+        ("29580", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020580"),
+        ("29581", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020581"),
+        ("29582", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020582"),
+        ("29583", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020583"),
+        ("29584", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020584"),
+        ("29585", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020585"),
+        ("29586", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020586"),
+        ("29587", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020587"),
+        ("29588", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020588"),
+        ("29589", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020589"),
+        ("29590", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020590"),
+        ("29591", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020591"),
+        ("29592", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020592"),
+        ("29593", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020593"),
+        ("29594", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020594"),
+        ("29595", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020595"),
+        ("29596", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020596"),
+        ("29597", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020597"),
+        ("29598", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020598"),
+        ("29599", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020599"),
+        ("29600", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020600"),
+        ("29601", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020601"),
+        ("29602", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020602"),
+        ("29603", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020603"),
+        ("29604", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020604"),
+        ("29605", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020605"),
+        ("29606", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020606"),
+        ("29607", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020607"),
+        ("29608", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020608"),
+        ("29609", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020609"),
+        ("29610", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020610"),
+        ("29611", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020611"),
+        ("29612", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020612"),
+        ("29613", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020613"),
+        ("29614", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020614"),
+        ("29615", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020615"),
+        ("29616", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020616"),
+        ("29617", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020617"),
+        ("29618", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020618"),
+        ("29619", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020619"),
+        ("29620", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020620"),
+        ("29621", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020621"),
+        ("29622", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020622"),
+        ("29623", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020623"),
+        ("29624", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020624"),
+        ("29625", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020625"),
+        ("29626", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020626"),
+        ("29627", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020627"),
+        ("29628", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020628"),
+        ("29629", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020629"),
+        ("29630", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020630"),
+        ("29631", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020631"),
+        ("29632", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020632"),
+        ("29633", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020633"),
+        ("29634", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020634"),
+        ("29635", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020635"),
+        ("29636", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020636"),
+        ("29637", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020637"),
+        ("29638", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020638"),
+        ("29639", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020639"),
+        ("29640", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020640"),
+        ("29641", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020641"),
+        ("29642", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020642"),
+        ("29643", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020643"),
+        ("29644", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020644"),
+        ("29645", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020645"),
+        ("29646", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020646"),
+        ("29647", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020647"),
+        ("29648", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020648"),
+        ("29649", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020649"),
+        ("29650", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020650"),
+        ("29651", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020651"),
+        ("29652", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020652"),
+        ("29653", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020653"),
+        ("29654", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020654"),
+        ("29655", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020655"),
+        ("29656", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020656"),
+        ("29657", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020657"),
+        ("29658", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020658"),
+        ("29659", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020659"),
+        ("29660", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020660"),
+        ("29661", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020661"),
+        ("29662", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020662"),
+        ("29663", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020663"),
+        ("29664", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020664"),
+        ("29665", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020665"),
+        ("29666", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020666"),
+        ("29667", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020667"),
+        ("29668", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020668"),
+        ("29669", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020669"),
+        ("29670", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020670"),
+        ("29671", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020671"),
+        ("29672", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020672"),
+        ("29673", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020673"),
+        ("29674", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020674"),
+        ("29675", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020675"),
+        ("29676", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020676"),
+        ("29677", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020677"),
+        ("29678", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020678"),
+        ("29679", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020679"),
+        ("29680", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020680"),
+        ("29681", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020681"),
+        ("29682", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020682"),
+        ("29683", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020683"),
+        ("29684", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020684"),
+        ("29685", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020685"),
+        ("29686", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020686"),
+        ("29687", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020687"),
+        ("29688", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020688"),
+        ("29689", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020689"),
+        ("29690", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020690"),
+        ("29691", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020691"),
+        ("29692", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020692"),
+        ("29693", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020693"),
+        ("29694", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020694"),
+        ("29695", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020695"),
+        ("29696", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020696"),
+        ("29697", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020697"),
+        ("29698", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020698"),
+        ("29699", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020699"),
+        ("29700", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020700"),
+        ("29701", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020701"),
+        ("29702", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020702"),
+        ("29703", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020703"),
+        ("29704", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020704"),
+        ("29705", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020705"),
+        ("29706", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020706"),
+        ("29707", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020707"),
+        ("29708", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020708"),
+        ("29709", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020709"),
+        ("29710", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020710"),
+        ("29711", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020711"),
+        ("29712", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020712"),
+        ("29713", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020713"),
+        ("29714", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020714"),
+        ("29715", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020715"),
+        ("29716", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020716"),
+        ("29717", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020717"),
+        ("29718", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020718"),
+        ("29719", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020719"),
+        ("29720", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020720"),
+        ("29721", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020721"),
+        ("29722", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020722"),
+        ("29723", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020723"),
+        ("29724", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020724"),
+        ("29725", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020725"),
+        ("29726", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020726"),
+        ("29727", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020727"),
+        ("29728", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020728"),
+        ("29729", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020729"),
+        ("29730", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020730"),
+        ("29731", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020731"),
+        ("29732", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020732"),
+        ("29733", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020733"),
+        ("29734", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020734"),
+        ("29735", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020735"),
+        ("29736", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020736"),
+        ("29737", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020737"),
+        ("29738", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020738"),
+        ("29739", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020739"),
+        ("29740", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020740"),
+        ("29741", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020741"),
+        ("29742", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020742"),
+        ("29743", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020743"),
+        ("29744", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020744"),
+        ("29745", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020745"),
+        ("29746", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020746"),
+        ("29747", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020747"),
+        ("29748", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020748"),
+        ("29749", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020749"),
+        ("29750", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020750"),
+        ("29751", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020751"),
+        ("29752", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020752"),
+        ("29753", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020753"),
+        ("29754", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020754"),
+        ("29755", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020755"),
+        ("29756", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020756"),
+        ("29757", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020757"),
+        ("29758", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020758"),
+        ("29759", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020759"),
+        ("29760", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020760"),
+        ("29761", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020761"),
+        ("29762", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020762"),
+        ("29763", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020763"),
+        ("29764", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020764"),
+        ("29765", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020765"),
+        ("29766", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020766"),
+        ("29767", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020767"),
+        ("29768", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020768"),
+        ("29769", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020769"),
+        ("29770", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020770"),
+        ("29771", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020771"),
+        ("29772", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020772"),
+        ("29773", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020773"),
+        ("29774", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020774"),
+        ("29775", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020775"),
+        ("29776", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020776"),
+        ("29777", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020777"),
+        ("29778", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020778"),
+        ("29779", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020779"),
+        ("29780", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020780"),
+        ("29781", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020781"),
+        ("29782", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020782"),
+        ("29783", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020783"),
+        ("29784", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020784"),
+        ("29785", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020785"),
+        ("29786", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020786"),
+        ("29787", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020787"),
+        ("29788", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020788"),
+        ("29789", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020789"),
+        ("29790", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020790"),
+        ("29791", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020791"),
+        ("29792", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020792"),
+        ("29793", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020793"),
+        ("29794", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020794"),
+        ("29795", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020795"),
+        ("29796", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020796"),
+        ("29797", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020797"),
+        ("29798", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020798"),
+        ("29799", "CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020799"),
+        ("29800", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020000"),
+        ("29801", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020001"),
+        ("29802", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020002"),
+        ("29803", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020003"),
+        ("29804", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020004"),
+        ("29805", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020005"),
+        ("29806", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020006"),
+        ("29807", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020007"),
+        ("29808", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020008"),
+        ("29809", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020009"),
+        ("29810", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020010"),
+        ("29811", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020011"),
+        ("29812", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020012"),
+        ("29813", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020013"),
+        ("29814", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020014"),
+        ("29815", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020015"),
+        ("29816", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020016"),
+        ("29817", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020017"),
+        ("29818", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020018"),
+        ("29819", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020019"),
+        ("29820", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020020"),
+        ("29821", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020021"),
+        ("29822", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020022"),
+        ("29823", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020023"),
+        ("29824", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020024"),
+        ("29825", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020025"),
+        ("29826", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020026"),
+        ("29827", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020027"),
+        ("29828", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020028"),
+        ("29829", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020029"),
+        ("29830", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020030"),
+        ("29831", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020031"),
+        ("29832", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020032"),
+        ("29833", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020033"),
+        ("29834", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020034"),
+        ("29835", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020035"),
+        ("29836", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020036"),
+        ("29837", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020037"),
+        ("29838", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020038"),
+        ("29839", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020039"),
+        ("29840", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020040"),
+        ("29841", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020041"),
+        ("29842", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020042"),
+        ("29843", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020043"),
+        ("29844", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020044"),
+        ("29845", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020045"),
+        ("29846", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020046"),
+        ("29847", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020047"),
+        ("29848", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020048"),
+        ("29849", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020049"),
+        ("29850", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020050"),
+        ("29851", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020051"),
+        ("29852", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020052"),
+        ("29853", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020053"),
+        ("29854", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020054"),
+        ("29855", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020055"),
+        ("29856", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020056"),
+        ("29857", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020057"),
+        ("29858", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020058"),
+        ("29859", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020059"),
+        ("29860", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020060"),
+        ("29861", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020061"),
+        ("29862", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020062"),
+        ("29863", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020063"),
+        ("29864", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020064"),
+        ("29865", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020065"),
+        ("29866", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020066"),
+        ("29867", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020067"),
+        ("29868", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020068"),
+        ("29869", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020069"),
+        ("29870", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020070"),
+        ("29871", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020071"),
+        ("29872", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020072"),
+        ("29873", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020073"),
+        ("29874", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020074"),
+        ("29875", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020075"),
+        ("29876", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020076"),
+        ("29877", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020077"),
+        ("29878", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020078"),
+        ("29879", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020079"),
+        ("29880", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020080"),
+        ("29881", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020081"),
+        ("29882", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020082"),
+        ("29883", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020083"),
+        ("29884", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020084"),
+        ("29885", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020085"),
+        ("29886", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020086"),
+        ("29887", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020087"),
+        ("29888", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020088"),
+        ("29889", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020089"),
+        ("29890", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020090"),
+        ("29891", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020091"),
+        ("29892", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020092"),
+        ("29893", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020093"),
+        ("29894", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020094"),
+        ("29895", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020095"),
+        ("29896", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020096"),
+        ("29897", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020097"),
+        ("29898", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020098"),
+        ("29899", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020099"),
+        ("29900", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020100"),
+        ("29901", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020101"),
+        ("29902", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020102"),
+        ("29903", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020103"),
+        ("29904", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020104"),
+        ("29905", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020105"),
+        ("29906", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020106"),
+        ("29907", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020107"),
+        ("29908", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020108"),
+        ("29909", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020109"),
+        ("29910", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020110"),
+        ("29911", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020111"),
+        ("29912", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020112"),
+        ("29913", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020113"),
+        ("29914", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020114"),
+        ("29915", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020115"),
+        ("29916", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020116"),
+        ("29917", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020117"),
+        ("29918", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020118"),
+        ("29919", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020119"),
+        ("29920", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020120"),
+        ("29921", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020121"),
+        ("29922", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020122"),
+        ("29923", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020123"),
+        ("29924", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020124"),
+        ("29925", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020125"),
+        ("29926", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020126"),
+        ("29927", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020127"),
+        ("29928", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020128"),
+        ("29929", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020129"),
+        ("29930", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020130"),
+        ("29931", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020131"),
+        ("29932", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020132"),
+        ("29933", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020133"),
+        ("29934", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020134"),
+        ("29935", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020135"),
+        ("29936", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020136"),
+        ("29937", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020137"),
+        ("29938", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020138"),
+        ("29939", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020139"),
+        ("29940", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020140"),
+        ("29941", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020141"),
+        ("29942", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020142"),
+        ("29943", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020143"),
+        ("29944", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020144"),
+        ("29945", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020145"),
+        ("29946", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020146"),
+        ("29947", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020147"),
+        ("29948", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020148"),
+        ("29949", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020149"),
+        ("29950", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020150"),
+        ("29951", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020151"),
+        ("29952", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020152"),
+        ("29953", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020153"),
+        ("29954", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020154"),
+        ("29955", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020155"),
+        ("29956", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020156"),
+        ("29957", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020157"),
+        ("29958", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020158"),
+        ("29959", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020159"),
+        ("29960", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020160"),
+        ("29961", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020161"),
+        ("29962", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020162"),
+        ("29963", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020163"),
+        ("29964", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020164"),
+        ("29965", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020165"),
+        ("29966", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020166"),
+        ("29967", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020167"),
+        ("29968", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020168"),
+        ("29969", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020169"),
+        ("29970", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020170"),
+        ("29971", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020171"),
+        ("29972", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020172"),
+        ("29973", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020173"),
+        ("29974", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020174"),
+        ("29975", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020175"),
+        ("29976", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020176"),
+        ("29977", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020177"),
+        ("29978", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020178"),
+        ("29979", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020179"),
+        ("29980", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020180"),
+        ("29981", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020181"),
+        ("29982", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020182"),
+        ("29983", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020183"),
+        ("29984", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020184"),
+        ("29985", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020185"),
+        ("29986", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020186"),
+        ("29987", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020187"),
+        ("29988", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020188"),
+        ("29989", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020189"),
+        ("29990", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020190"),
+        ("29991", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020191"),
+        ("29992", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020192"),
+        ("29993", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020193"),
+        ("29994", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020194"),
+        ("29995", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020195"),
+        ("29996", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020196"),
+        ("29997", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020197"),
+        ("29998", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020198"),
+        ("29999", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|CSIDL_FLAG_CREATE|0x00020199"),
+        ("30000", "0x00030000"),
+        ("30001", "0x00030001"),
+        ("30002", "0x00030002"),
+        ("30003", "0x00030003"),
+        ("30004", "0x00030004"),
+        ("30005", "0x00030005"),
+        ("30006", "0x00030006"),
+        ("30007", "0x00030007"),
+        ("30008", "0x00030008"),
+        ("30009", "0x00030009"),
+        ("30010", "0x00030010"),
+        ("30011", "0x00030011"),
+        ("30012", "0x00030012"),
+        ("30013", "0x00030013"),
+        ("30014", "0x00030014"),
+        ("30015", "0x00030015"),
+        ("30016", "0x00030016"),
+        ("30017", "0x00030017"),
+        ("30018", "0x00030018"),
+        ("30019", "0x00030019"),
+        ("30020", "0x00030020"),
+        ("30021", "0x00030021"),
+        ("30022", "0x00030022"),
+        ("30023", "0x00030023"),
+        ("30024", "0x00030024"),
+        ("30025", "0x00030025"),
+        ("30026", "0x00030026"),
+        ("30027", "0x00030027"),
+        ("30028", "0x00030028"),
+        ("30029", "0x00030029"),
+        ("30030", "0x00030030"),
+        ("30031", "0x00030031"),
+        ("30032", "0x00030032"),
+        ("30033", "0x00030033"),
+        ("30034", "0x00030034"),
+        ("30035", "0x00030035"),
+        ("30036", "0x00030036"),
+        ("30037", "0x00030037"),
+        ("30038", "0x00030038"),
+        ("30039", "0x00030039"),
+        ("30040", "0x00030040"),
+        ("30041", "0x00030041"),
+        ("30042", "0x00030042"),
+        ("30043", "0x00030043"),
+        ("30044", "0x00030044"),
+        ("30045", "0x00030045"),
+        ("30046", "0x00030046"),
+        ("30047", "0x00030047"),
+        ("30048", "0x00030048"),
+        ("30049", "0x00030049"),
+        ("30050", "0x00030050"),
+        ("30051", "0x00030051"),
+        ("30052", "0x00030052"),
+        ("30053", "0x00030053"),
+        ("30054", "0x00030054"),
+        ("30055", "0x00030055"),
+        ("30056", "0x00030056"),
+        ("30057", "0x00030057"),
+        ("30058", "0x00030058"),
+        ("30059", "0x00030059"),
+        ("30060", "0x00030060"),
+        ("30061", "0x00030061"),
+        ("30062", "0x00030062"),
+        ("30063", "0x00030063"),
+        ("30064", "0x00030064"),
+        ("30065", "0x00030065"),
+        ("30066", "0x00030066"),
+        ("30067", "0x00030067"),
+        ("30068", "0x00030068"),
+        ("30069", "0x00030069"),
+        ("30070", "0x00030070"),
+        ("30071", "0x00030071"),
+        ("30072", "0x00030072"),
+        ("30073", "0x00030073"),
+        ("30074", "0x00030074"),
+        ("30075", "0x00030075"),
+        ("30076", "0x00030076"),
+        ("30077", "0x00030077"),
+        ("30078", "0x00030078"),
+        ("30079", "0x00030079"),
+        ("30080", "0x00030080"),
+        ("30081", "0x00030081"),
+        ("30082", "0x00030082"),
+        ("30083", "0x00030083"),
+        ("30084", "0x00030084"),
+        ("30085", "0x00030085"),
+        ("30086", "0x00030086"),
+        ("30087", "0x00030087"),
+        ("30088", "0x00030088"),
+        ("30089", "0x00030089"),
+        ("30090", "0x00030090"),
+        ("30091", "0x00030091"),
+        ("30092", "0x00030092"),
+        ("30093", "0x00030093"),
+        ("30094", "0x00030094"),
+        ("30095", "0x00030095"),
+        ("30096", "0x00030096"),
+        ("30097", "0x00030097"),
+        ("30098", "0x00030098"),
+        ("30099", "0x00030099"),
+        ("30100", "0x00030100"),
+        ("30101", "0x00030101"),
+        ("30102", "0x00030102"),
+        ("30103", "0x00030103"),
+        ("30104", "0x00030104"),
+        ("30105", "0x00030105"),
+        ("30106", "0x00030106"),
+        ("30107", "0x00030107"),
+        ("30108", "0x00030108"),
+        ("30109", "0x00030109"),
+        ("30110", "0x00030110"),
+        ("30111", "0x00030111"),
+        ("30112", "0x00030112"),
+        ("30113", "0x00030113"),
+        ("30114", "0x00030114"),
+        ("30115", "0x00030115"),
+        ("30116", "0x00030116"),
+        ("30117", "0x00030117"),
+        ("30118", "0x00030118"),
+        ("30119", "0x00030119"),
+        ("30120", "0x00030120"),
+        ("30121", "0x00030121"),
+        ("30122", "0x00030122"),
+        ("30123", "0x00030123"),
+        ("30124", "0x00030124"),
+        ("30125", "0x00030125"),
+        ("30126", "0x00030126"),
+        ("30127", "0x00030127"),
+        ("30128", "0x00030128"),
+        ("30129", "0x00030129"),
+        ("30130", "0x00030130"),
+        ("30131", "0x00030131"),
+        ("30132", "0x00030132"),
+        ("30133", "0x00030133"),
+        ("30134", "0x00030134"),
+        ("30135", "0x00030135"),
+        ("30136", "0x00030136"),
+        ("30137", "0x00030137"),
+        ("30138", "0x00030138"),
+        ("30139", "0x00030139"),
+        ("30140", "0x00030140"),
+        ("30141", "0x00030141"),
+        ("30142", "0x00030142"),
+        ("30143", "0x00030143"),
+        ("30144", "0x00030144"),
+        ("30145", "0x00030145"),
+        ("30146", "0x00030146"),
+        ("30147", "0x00030147"),
+        ("30148", "0x00030148"),
+        ("30149", "0x00030149"),
+        ("30150", "0x00030150"),
+        ("30151", "0x00030151"),
+        ("30152", "0x00030152"),
+        ("30153", "0x00030153"),
+        ("30154", "0x00030154"),
+        ("30155", "0x00030155"),
+        ("30156", "0x00030156"),
+        ("30157", "0x00030157"),
+        ("30158", "0x00030158"),
+        ("30159", "0x00030159"),
+        ("30160", "0x00030160"),
+        ("30161", "0x00030161"),
+        ("30162", "0x00030162"),
+        ("30163", "0x00030163"),
+        ("30164", "0x00030164"),
+        ("30165", "0x00030165"),
+        ("30166", "0x00030166"),
+        ("30167", "0x00030167"),
+        ("30168", "0x00030168"),
+        ("30169", "0x00030169"),
+        ("30170", "0x00030170"),
+        ("30171", "0x00030171"),
+        ("30172", "0x00030172"),
+        ("30173", "0x00030173"),
+        ("30174", "0x00030174"),
+        ("30175", "0x00030175"),
+        ("30176", "0x00030176"),
+        ("30177", "0x00030177"),
+        ("30178", "0x00030178"),
+        ("30179", "0x00030179"),
+        ("30180", "0x00030180"),
+        ("30181", "0x00030181"),
+        ("30182", "0x00030182"),
+        ("30183", "0x00030183"),
+        ("30184", "0x00030184"),
+        ("30185", "0x00030185"),
+        ("30186", "0x00030186"),
+        ("30187", "0x00030187"),
+        ("30188", "0x00030188"),
+        ("30189", "0x00030189"),
+        ("30190", "0x00030190"),
+        ("30191", "0x00030191"),
+        ("30192", "0x00030192"),
+        ("30193", "0x00030193"),
+        ("30194", "0x00030194"),
+        ("30195", "0x00030195"),
+        ("30196", "0x00030196"),
+        ("30197", "0x00030197"),
+        ("30198", "0x00030198"),
+        ("30199", "0x00030199"),
+        ("30200", "0x00030200"),
+        ("30201", "0x00030201"),
+        ("30202", "0x00030202"),
+        ("30203", "0x00030203"),
+        ("30204", "0x00030204"),
+        ("30205", "0x00030205"),
+        ("30206", "0x00030206"),
+        ("30207", "0x00030207"),
+        ("30208", "0x00030208"),
+        ("30209", "0x00030209"),
+        ("30210", "0x00030210"),
+        ("30211", "0x00030211"),
+        ("30212", "0x00030212"),
+        ("30213", "0x00030213"),
+        ("30214", "0x00030214"),
+        ("30215", "0x00030215"),
+        ("30216", "0x00030216"),
+        ("30217", "0x00030217"),
+        ("30218", "0x00030218"),
+        ("30219", "0x00030219"),
+        ("30220", "0x00030220"),
+        ("30221", "0x00030221"),
+        ("30222", "0x00030222"),
+        ("30223", "0x00030223"),
+        ("30224", "0x00030224"),
+        ("30225", "0x00030225"),
+        ("30226", "0x00030226"),
+        ("30227", "0x00030227"),
+        ("30228", "0x00030228"),
+        ("30229", "0x00030229"),
+        ("30230", "0x00030230"),
+        ("30231", "0x00030231"),
+        ("30232", "0x00030232"),
+        ("30233", "0x00030233"),
+        ("30234", "0x00030234"),
+        ("30235", "0x00030235"),
+        ("30236", "0x00030236"),
+        ("30237", "0x00030237"),
+        ("30238", "0x00030238"),
+        ("30239", "0x00030239"),
+        ("30240", "0x00030240"),
+        ("30241", "0x00030241"),
+        ("30242", "0x00030242"),
+        ("30243", "0x00030243"),
+        ("30244", "0x00030244"),
+        ("30245", "0x00030245"),
+        ("30246", "0x00030246"),
+        ("30247", "0x00030247"),
+        ("30248", "0x00030248"),
+        ("30249", "0x00030249"),
+        ("30250", "0x00030250"),
+        ("30251", "0x00030251"),
+        ("30252", "0x00030252"),
+        ("30253", "0x00030253"),
+        ("30254", "0x00030254"),
+        ("30255", "0x00030255"),
+        ("30256", "0x00030256"),
+        ("30257", "0x00030257"),
+        ("30258", "0x00030258"),
+        ("30259", "0x00030259"),
+        ("30260", "0x00030260"),
+        ("30261", "0x00030261"),
+        ("30262", "0x00030262"),
+        ("30263", "0x00030263"),
+        ("30264", "0x00030264"),
+        ("30265", "0x00030265"),
+        ("30266", "0x00030266"),
+        ("30267", "0x00030267"),
+        ("30268", "0x00030268"),
+        ("30269", "0x00030269"),
+        ("30270", "0x00030270"),
+        ("30271", "0x00030271"),
+        ("30272", "0x00030272"),
+        ("30273", "0x00030273"),
+        ("30274", "0x00030274"),
+        ("30275", "0x00030275"),
+        ("30276", "0x00030276"),
+        ("30277", "0x00030277"),
+        ("30278", "0x00030278"),
+        ("30279", "0x00030279"),
+        ("30280", "0x00030280"),
+        ("30281", "0x00030281"),
+        ("30282", "0x00030282"),
+        ("30283", "0x00030283"),
+        ("30284", "0x00030284"),
+        ("30285", "0x00030285"),
+        ("30286", "0x00030286"),
+        ("30287", "0x00030287"),
+        ("30288", "0x00030288"),
+        ("30289", "0x00030289"),
+        ("30290", "0x00030290"),
+        ("30291", "0x00030291"),
+        ("30292", "0x00030292"),
+        ("30293", "0x00030293"),
+        ("30294", "0x00030294"),
+        ("30295", "0x00030295"),
+        ("30296", "0x00030296"),
+        ("30297", "0x00030297"),
+        ("30298", "0x00030298"),
+        ("30299", "0x00030299"),
+        ("30300", "0x00030300"),
+        ("30301", "0x00030301"),
+        ("30302", "0x00030302"),
+        ("30303", "0x00030303"),
+        ("30304", "0x00030304"),
+        ("30305", "0x00030305"),
+        ("30306", "0x00030306"),
+        ("30307", "0x00030307"),
+        ("30308", "0x00030308"),
+        ("30309", "0x00030309"),
+        ("30310", "0x00030310"),
+        ("30311", "0x00030311"),
+        ("30312", "0x00030312"),
+        ("30313", "0x00030313"),
+        ("30314", "0x00030314"),
+        ("30315", "0x00030315"),
+        ("30316", "0x00030316"),
+        ("30317", "0x00030317"),
+        ("30318", "0x00030318"),
+        ("30319", "0x00030319"),
+        ("30320", "0x00030320"),
+        ("30321", "0x00030321"),
+        ("30322", "0x00030322"),
+        ("30323", "0x00030323"),
+        ("30324", "0x00030324"),
+        ("30325", "0x00030325"),
+        ("30326", "0x00030326"),
+        ("30327", "0x00030327"),
+        ("30328", "0x00030328"),
+        ("30329", "0x00030329"),
+        ("30330", "0x00030330"),
+        ("30331", "0x00030331"),
+        ("30332", "0x00030332"),
+        ("30333", "0x00030333"),
+        ("30334", "0x00030334"),
+        ("30335", "0x00030335"),
+        ("30336", "0x00030336"),
+        ("30337", "0x00030337"),
+        ("30338", "0x00030338"),
+        ("30339", "0x00030339"),
+        ("30340", "0x00030340"),
+        ("30341", "0x00030341"),
+        ("30342", "0x00030342"),
+        ("30343", "0x00030343"),
+        ("30344", "0x00030344"),
+        ("30345", "0x00030345"),
+        ("30346", "0x00030346"),
+        ("30347", "0x00030347"),
+        ("30348", "0x00030348"),
+        ("30349", "0x00030349"),
+        ("30350", "0x00030350"),
+        ("30351", "0x00030351"),
+        ("30352", "0x00030352"),
+        ("30353", "0x00030353"),
+        ("30354", "0x00030354"),
+        ("30355", "0x00030355"),
+        ("30356", "0x00030356"),
+        ("30357", "0x00030357"),
+        ("30358", "0x00030358"),
+        ("30359", "0x00030359"),
+        ("30360", "0x00030360"),
+        ("30361", "0x00030361"),
+        ("30362", "0x00030362"),
+        ("30363", "0x00030363"),
+        ("30364", "0x00030364"),
+        ("30365", "0x00030365"),
+        ("30366", "0x00030366"),
+        ("30367", "0x00030367"),
+        ("30368", "0x00030368"),
+        ("30369", "0x00030369"),
+        ("30370", "0x00030370"),
+        ("30371", "0x00030371"),
+        ("30372", "0x00030372"),
+        ("30373", "0x00030373"),
+        ("30374", "0x00030374"),
+        ("30375", "0x00030375"),
+        ("30376", "0x00030376"),
+        ("30377", "0x00030377"),
+        ("30378", "0x00030378"),
+        ("30379", "0x00030379"),
+        ("30380", "0x00030380"),
+        ("30381", "0x00030381"),
+        ("30382", "0x00030382"),
+        ("30383", "0x00030383"),
+        ("30384", "0x00030384"),
+        ("30385", "0x00030385"),
+        ("30386", "0x00030386"),
+        ("30387", "0x00030387"),
+        ("30388", "0x00030388"),
+        ("30389", "0x00030389"),
+        ("30390", "0x00030390"),
+        ("30391", "0x00030391"),
+        ("30392", "0x00030392"),
+        ("30393", "0x00030393"),
+        ("30394", "0x00030394"),
+        ("30395", "0x00030395"),
+        ("30396", "0x00030396"),
+        ("30397", "0x00030397"),
+        ("30398", "0x00030398"),
+        ("30399", "0x00030399"),
+        ("30400", "0x00030400"),
+        ("30401", "0x00030401"),
+        ("30402", "0x00030402"),
+        ("30403", "0x00030403"),
+        ("30404", "0x00030404"),
+        ("30405", "0x00030405"),
+        ("30406", "0x00030406"),
+        ("30407", "0x00030407"),
+        ("30408", "0x00030408"),
+        ("30409", "0x00030409"),
+        ("30410", "0x00030410"),
+        ("30411", "0x00030411"),
+        ("30412", "0x00030412"),
+        ("30413", "0x00030413"),
+        ("30414", "0x00030414"),
+        ("30415", "0x00030415"),
+        ("30416", "0x00030416"),
+        ("30417", "0x00030417"),
+        ("30418", "0x00030418"),
+        ("30419", "0x00030419"),
+        ("30420", "0x00030420"),
+        ("30421", "0x00030421"),
+        ("30422", "0x00030422"),
+        ("30423", "0x00030423"),
+        ("30424", "0x00030424"),
+        ("30425", "0x00030425"),
+        ("30426", "0x00030426"),
+        ("30427", "0x00030427"),
+        ("30428", "0x00030428"),
+        ("30429", "0x00030429"),
+        ("30430", "0x00030430"),
+        ("30431", "0x00030431"),
+        ("30432", "0x00030432"),
+        ("30433", "0x00030433"),
+        ("30434", "0x00030434"),
+        ("30435", "0x00030435"),
+        ("30436", "0x00030436"),
+        ("30437", "0x00030437"),
+        ("30438", "0x00030438"),
+        ("30439", "0x00030439"),
+        ("30440", "0x00030440"),
+        ("30441", "0x00030441"),
+        ("30442", "0x00030442"),
+        ("30443", "0x00030443"),
+        ("30444", "0x00030444"),
+        ("30445", "0x00030445"),
+        ("30446", "0x00030446"),
+        ("30447", "0x00030447"),
+        ("30448", "0x00030448"),
+        ("30449", "0x00030449"),
+        ("30450", "0x00030450"),
+        ("30451", "0x00030451"),
+        ("30452", "0x00030452"),
+        ("30453", "0x00030453"),
+        ("30454", "0x00030454"),
+        ("30455", "0x00030455"),
+        ("30456", "0x00030456"),
+        ("30457", "0x00030457"),
+        ("30458", "0x00030458"),
+        ("30459", "0x00030459"),
+        ("30460", "0x00030460"),
+        ("30461", "0x00030461"),
+        ("30462", "0x00030462"),
+        ("30463", "0x00030463"),
+        ("30464", "0x00030464"),
+        ("30465", "0x00030465"),
+        ("30466", "0x00030466"),
+        ("30467", "0x00030467"),
+        ("30468", "0x00030468"),
+        ("30469", "0x00030469"),
+        ("30470", "0x00030470"),
+        ("30471", "0x00030471"),
+        ("30472", "0x00030472"),
+        ("30473", "0x00030473"),
+        ("30474", "0x00030474"),
+        ("30475", "0x00030475"),
+        ("30476", "0x00030476"),
+        ("30477", "0x00030477"),
+        ("30478", "0x00030478"),
+        ("30479", "0x00030479"),
+        ("30480", "0x00030480"),
+        ("30481", "0x00030481"),
+        ("30482", "0x00030482"),
+        ("30483", "0x00030483"),
+        ("30484", "0x00030484"),
+        ("30485", "0x00030485"),
+        ("30486", "0x00030486"),
+        ("30487", "0x00030487"),
+        ("30488", "0x00030488"),
+        ("30489", "0x00030489"),
+        ("30490", "0x00030490"),
+        ("30491", "0x00030491"),
+        ("30492", "0x00030492"),
+        ("30493", "0x00030493"),
+        ("30494", "0x00030494"),
+        ("30495", "0x00030495"),
+        ("30496", "0x00030496"),
+        ("30497", "0x00030497"),
+        ("30498", "0x00030498"),
+        ("30499", "0x00030499"),
+        ("30500", "0x00030500"),
+        ("30501", "0x00030501"),
+        ("30502", "0x00030502"),
+        ("30503", "0x00030503"),
+        ("30504", "0x00030504"),
+        ("30505", "0x00030505"),
+        ("30506", "0x00030506"),
+        ("30507", "0x00030507"),
+        ("30508", "0x00030508"),
+        ("30509", "0x00030509"),
+        ("30510", "0x00030510"),
+        ("30511", "0x00030511"),
+        ("30512", "0x00030512"),
+        ("30513", "0x00030513"),
+        ("30514", "0x00030514"),
+        ("30515", "0x00030515"),
+        ("30516", "0x00030516"),
+        ("30517", "0x00030517"),
+        ("30518", "0x00030518"),
+        ("30519", "0x00030519"),
+        ("30520", "0x00030520"),
+        ("30521", "0x00030521"),
+        ("30522", "0x00030522"),
+        ("30523", "0x00030523"),
+        ("30524", "0x00030524"),
+        ("30525", "0x00030525"),
+        ("30526", "0x00030526"),
+        ("30527", "0x00030527"),
+        ("30528", "0x00030528"),
+        ("30529", "0x00030529"),
+        ("30530", "0x00030530"),
+        ("30531", "0x00030531"),
+        ("30532", "0x00030532"),
+        ("30533", "0x00030533"),
+        ("30534", "0x00030534"),
+        ("30535", "0x00030535"),
+        ("30536", "0x00030536"),
+        ("30537", "0x00030537"),
+        ("30538", "0x00030538"),
+        ("30539", "0x00030539"),
+        ("30540", "0x00030540"),
+        ("30541", "0x00030541"),
+        ("30542", "0x00030542"),
+        ("30543", "0x00030543"),
+        ("30544", "0x00030544"),
+        ("30545", "0x00030545"),
+        ("30546", "0x00030546"),
+        ("30547", "0x00030547"),
+        ("30548", "0x00030548"),
+        ("30549", "0x00030549"),
+        ("30550", "0x00030550"),
+        ("30551", "0x00030551"),
+        ("30552", "0x00030552"),
+        ("30553", "0x00030553"),
+        ("30554", "0x00030554"),
+        ("30555", "0x00030555"),
+        ("30556", "0x00030556"),
+        ("30557", "0x00030557"),
+        ("30558", "0x00030558"),
+        ("30559", "0x00030559"),
+        ("30560", "0x00030560"),
+        ("30561", "0x00030561"),
+        ("30562", "0x00030562"),
+        ("30563", "0x00030563"),
+        ("30564", "0x00030564"),
+        ("30565", "0x00030565"),
+        ("30566", "0x00030566"),
+        ("30567", "0x00030567"),
+        ("30568", "0x00030568"),
+        ("30569", "0x00030569"),
+        ("30570", "0x00030570"),
+        ("30571", "0x00030571"),
+        ("30572", "0x00030572"),
+        ("30573", "0x00030573"),
+        ("30574", "0x00030574"),
+        ("30575", "0x00030575"),
+        ("30576", "0x00030576"),
+        ("30577", "0x00030577"),
+        ("30578", "0x00030578"),
+        ("30579", "0x00030579"),
+        ("30580", "0x00030580"),
+        ("30581", "0x00030581"),
+        ("30582", "0x00030582"),
+        ("30583", "0x00030583"),
+        ("30584", "0x00030584"),
+        ("30585", "0x00030585"),
+        ("30586", "0x00030586"),
+        ("30587", "0x00030587"),
+        ("30588", "0x00030588"),
+        ("30589", "0x00030589"),
+        ("30590", "0x00030590"),
+        ("30591", "0x00030591"),
+        ("30592", "0x00030592"),
+        ("30593", "0x00030593"),
+        ("30594", "0x00030594"),
+        ("30595", "0x00030595"),
+        ("30596", "0x00030596"),
+        ("30597", "0x00030597"),
+        ("30598", "0x00030598"),
+        ("30599", "0x00030599"),
+        ("30600", "0x00030600"),
+        ("30601", "0x00030601"),
+        ("30602", "0x00030602"),
+        ("30603", "0x00030603"),
+        ("30604", "0x00030604"),
+        ("30605", "0x00030605"),
+        ("30606", "0x00030606"),
+        ("30607", "0x00030607"),
+        ("30608", "0x00030608"),
+        ("30609", "0x00030609"),
+        ("30610", "0x00030610"),
+        ("30611", "0x00030611"),
+        ("30612", "0x00030612"),
+        ("30613", "0x00030613"),
+        ("30614", "0x00030614"),
+        ("30615", "0x00030615"),
+        ("30616", "0x00030616"),
+        ("30617", "0x00030617"),
+        ("30618", "0x00030618"),
+        ("30619", "0x00030619"),
+        ("30620", "0x00030620"),
+        ("30621", "0x00030621"),
+        ("30622", "0x00030622"),
+        ("30623", "0x00030623"),
+        ("30624", "0x00030624"),
+        ("30625", "0x00030625"),
+        ("30626", "0x00030626"),
+        ("30627", "0x00030627"),
+        ("30628", "0x00030628"),
+        ("30629", "0x00030629"),
+        ("30630", "0x00030630"),
+        ("30631", "0x00030631"),
+        ("30632", "0x00030632"),
+        ("30633", "0x00030633"),
+        ("30634", "0x00030634"),
+        ("30635", "0x00030635"),
+        ("30636", "0x00030636"),
+        ("30637", "0x00030637"),
+        ("30638", "0x00030638"),
+        ("30639", "0x00030639"),
+        ("30640", "0x00030640"),
+        ("30641", "0x00030641"),
+        ("30642", "0x00030642"),
+        ("30643", "0x00030643"),
+        ("30644", "0x00030644"),
+        ("30645", "0x00030645"),
+        ("30646", "0x00030646"),
+        ("30647", "0x00030647"),
+        ("30648", "0x00030648"),
+        ("30649", "0x00030649"),
+        ("30650", "0x00030650"),
+        ("30651", "0x00030651"),
+        ("30652", "0x00030652"),
+        ("30653", "0x00030653"),
+        ("30654", "0x00030654"),
+        ("30655", "0x00030655"),
+        ("30656", "0x00030656"),
+        ("30657", "0x00030657"),
+        ("30658", "0x00030658"),
+        ("30659", "0x00030659"),
+        ("30660", "0x00030660"),
+        ("30661", "0x00030661"),
+        ("30662", "0x00030662"),
+        ("30663", "0x00030663"),
+        ("30664", "0x00030664"),
+        ("30665", "0x00030665"),
+        ("30666", "0x00030666"),
+        ("30667", "0x00030667"),
+        ("30668", "0x00030668"),
+        ("30669", "0x00030669"),
+        ("30670", "0x00030670"),
+        ("30671", "0x00030671"),
+        ("30672", "0x00030672"),
+        ("30673", "0x00030673"),
+        ("30674", "0x00030674"),
+        ("30675", "0x00030675"),
+        ("30676", "0x00030676"),
+        ("30677", "0x00030677"),
+        ("30678", "0x00030678"),
+        ("30679", "0x00030679"),
+        ("30680", "0x00030680"),
+        ("30681", "0x00030681"),
+        ("30682", "0x00030682"),
+        ("30683", "0x00030683"),
+        ("30684", "0x00030684"),
+        ("30685", "0x00030685"),
+        ("30686", "0x00030686"),
+        ("30687", "0x00030687"),
+        ("30688", "0x00030688"),
+        ("30689", "0x00030689"),
+        ("30690", "0x00030690"),
+        ("30691", "0x00030691"),
+        ("30692", "0x00030692"),
+        ("30693", "0x00030693"),
+        ("30694", "0x00030694"),
+        ("30695", "0x00030695"),
+        ("30696", "0x00030696"),
+        ("30697", "0x00030697"),
+        ("30698", "0x00030698"),
+        ("30699", "0x00030699"),
+        ("30700", "0x00030700"),
+        ("30701", "0x00030701"),
+        ("30702", "0x00030702"),
+        ("30703", "0x00030703"),
+        ("30704", "0x00030704"),
+        ("30705", "0x00030705"),
+        ("30706", "0x00030706"),
+        ("30707", "0x00030707"),
+        ("30708", "0x00030708"),
+        ("30709", "0x00030709"),
+        ("30710", "0x00030710"),
+        ("30711", "0x00030711"),
+        ("30712", "0x00030712"),
+        ("30713", "0x00030713"),
+        ("30714", "0x00030714"),
+        ("30715", "0x00030715"),
+        ("30716", "0x00030716"),
+        ("30717", "0x00030717"),
+        ("30718", "0x00030718"),
+        ("30719", "0x00030719"),
+        ("30720", "0x00030720"),
+        ("30721", "0x00030721"),
+        ("30722", "0x00030722"),
+        ("30723", "0x00030723"),
+        ("30724", "0x00030724"),
+        ("30725", "0x00030725"),
+        ("30726", "0x00030726"),
+        ("30727", "0x00030727"),
+        ("30728", "0x00030728"),
+        ("30729", "0x00030729"),
+        ("30730", "0x00030730"),
+        ("30731", "0x00030731"),
+        ("30732", "0x00030732"),
+        ("30733", "0x00030733"),
+        ("30734", "0x00030734"),
+        ("30735", "0x00030735"),
+        ("30736", "0x00030736"),
+        ("30737", "0x00030737"),
+        ("30738", "0x00030738"),
+        ("30739", "0x00030739"),
+        ("30740", "0x00030740"),
+        ("30741", "0x00030741"),
+        ("30742", "0x00030742"),
+        ("30743", "0x00030743"),
+        ("30744", "0x00030744"),
+        ("30745", "0x00030745"),
+        ("30746", "0x00030746"),
+        ("30747", "0x00030747"),
+        ("30748", "0x00030748"),
+        ("30749", "0x00030749"),
+        ("30750", "0x00030750"),
+        ("30751", "0x00030751"),
+        ("30752", "0x00030752"),
+        ("30753", "0x00030753"),
+        ("30754", "0x00030754"),
+        ("30755", "0x00030755"),
+        ("30756", "0x00030756"),
+        ("30757", "0x00030757"),
+        ("30758", "0x00030758"),
+        ("30759", "0x00030759"),
+        ("30760", "0x00030760"),
+        ("30761", "0x00030761"),
+        ("30762", "0x00030762"),
+        ("30763", "0x00030763"),
+        ("30764", "0x00030764"),
+        ("30765", "0x00030765"),
+        ("30766", "0x00030766"),
+        ("30767", "0x00030767"),
+        ("30768", "0x00030768"),
+        ("30769", "0x00030769"),
+        ("30770", "0x00030770"),
+        ("30771", "0x00030771"),
+        ("30772", "0x00030772"),
+        ("30773", "0x00030773"),
+        ("30774", "0x00030774"),
+        ("30775", "0x00030775"),
+        ("30776", "0x00030776"),
+        ("30777", "0x00030777"),
+        ("30778", "0x00030778"),
+        ("30779", "0x00030779"),
+        ("30780", "0x00030780"),
+        ("30781", "0x00030781"),
+        ("30782", "0x00030782"),
+        ("30783", "0x00030783"),
+        ("30784", "0x00030784"),
+        ("30785", "0x00030785"),
+        ("30786", "0x00030786"),
+        ("30787", "0x00030787"),
+        ("30788", "0x00030788"),
+        ("30789", "0x00030789"),
+        ("30790", "0x00030790"),
+        ("30791", "0x00030791"),
+        ("30792", "0x00030792"),
+        ("30793", "0x00030793"),
+        ("30794", "0x00030794"),
+        ("30795", "0x00030795"),
+        ("30796", "0x00030796"),
+        ("30797", "0x00030797"),
+        ("30798", "0x00030798"),
+        ("30799", "0x00030799"),
+        ("30800", "CSIDL_FLAG_PER_USER_INIT|0x00030000"),
+        ("30801", "CSIDL_FLAG_PER_USER_INIT|0x00030001"),
+        ("30802", "CSIDL_FLAG_PER_USER_INIT|0x00030002"),
+        ("30803", "CSIDL_FLAG_PER_USER_INIT|0x00030003"),
+        ("30804", "CSIDL_FLAG_PER_USER_INIT|0x00030004"),
+        ("30805", "CSIDL_FLAG_PER_USER_INIT|0x00030005"),
+        ("30806", "CSIDL_FLAG_PER_USER_INIT|0x00030006"),
+        ("30807", "CSIDL_FLAG_PER_USER_INIT|0x00030007"),
+        ("30808", "CSIDL_FLAG_PER_USER_INIT|0x00030008"),
+        ("30809", "CSIDL_FLAG_PER_USER_INIT|0x00030009"),
+        ("30810", "CSIDL_FLAG_PER_USER_INIT|0x00030010"),
+        ("30811", "CSIDL_FLAG_PER_USER_INIT|0x00030011"),
+        ("30812", "CSIDL_FLAG_PER_USER_INIT|0x00030012"),
+        ("30813", "CSIDL_FLAG_PER_USER_INIT|0x00030013"),
+        ("30814", "CSIDL_FLAG_PER_USER_INIT|0x00030014"),
+        ("30815", "CSIDL_FLAG_PER_USER_INIT|0x00030015"),
+        ("30816", "CSIDL_FLAG_PER_USER_INIT|0x00030016"),
+        ("30817", "CSIDL_FLAG_PER_USER_INIT|0x00030017"),
+        ("30818", "CSIDL_FLAG_PER_USER_INIT|0x00030018"),
+        ("30819", "CSIDL_FLAG_PER_USER_INIT|0x00030019"),
+        ("30820", "CSIDL_FLAG_PER_USER_INIT|0x00030020"),
+        ("30821", "CSIDL_FLAG_PER_USER_INIT|0x00030021"),
+        ("30822", "CSIDL_FLAG_PER_USER_INIT|0x00030022"),
+        ("30823", "CSIDL_FLAG_PER_USER_INIT|0x00030023"),
+        ("30824", "CSIDL_FLAG_PER_USER_INIT|0x00030024"),
+        ("30825", "CSIDL_FLAG_PER_USER_INIT|0x00030025"),
+        ("30826", "CSIDL_FLAG_PER_USER_INIT|0x00030026"),
+        ("30827", "CSIDL_FLAG_PER_USER_INIT|0x00030027"),
+        ("30828", "CSIDL_FLAG_PER_USER_INIT|0x00030028"),
+        ("30829", "CSIDL_FLAG_PER_USER_INIT|0x00030029"),
+        ("30830", "CSIDL_FLAG_PER_USER_INIT|0x00030030"),
+        ("30831", "CSIDL_FLAG_PER_USER_INIT|0x00030031"),
+        ("30832", "CSIDL_FLAG_PER_USER_INIT|0x00030032"),
+        ("30833", "CSIDL_FLAG_PER_USER_INIT|0x00030033"),
+        ("30834", "CSIDL_FLAG_PER_USER_INIT|0x00030034"),
+        ("30835", "CSIDL_FLAG_PER_USER_INIT|0x00030035"),
+        ("30836", "CSIDL_FLAG_PER_USER_INIT|0x00030036"),
+        ("30837", "CSIDL_FLAG_PER_USER_INIT|0x00030037"),
+        ("30838", "CSIDL_FLAG_PER_USER_INIT|0x00030038"),
+        ("30839", "CSIDL_FLAG_PER_USER_INIT|0x00030039"),
+        ("30840", "CSIDL_FLAG_PER_USER_INIT|0x00030040"),
+        ("30841", "CSIDL_FLAG_PER_USER_INIT|0x00030041"),
+        ("30842", "CSIDL_FLAG_PER_USER_INIT|0x00030042"),
+        ("30843", "CSIDL_FLAG_PER_USER_INIT|0x00030043"),
+        ("30844", "CSIDL_FLAG_PER_USER_INIT|0x00030044"),
+        ("30845", "CSIDL_FLAG_PER_USER_INIT|0x00030045"),
+        ("30846", "CSIDL_FLAG_PER_USER_INIT|0x00030046"),
+        ("30847", "CSIDL_FLAG_PER_USER_INIT|0x00030047"),
+        ("30848", "CSIDL_FLAG_PER_USER_INIT|0x00030048"),
+        ("30849", "CSIDL_FLAG_PER_USER_INIT|0x00030049"),
+        ("30850", "CSIDL_FLAG_PER_USER_INIT|0x00030050"),
+        ("30851", "CSIDL_FLAG_PER_USER_INIT|0x00030051"),
+        ("30852", "CSIDL_FLAG_PER_USER_INIT|0x00030052"),
+        ("30853", "CSIDL_FLAG_PER_USER_INIT|0x00030053"),
+        ("30854", "CSIDL_FLAG_PER_USER_INIT|0x00030054"),
+        ("30855", "CSIDL_FLAG_PER_USER_INIT|0x00030055"),
+        ("30856", "CSIDL_FLAG_PER_USER_INIT|0x00030056"),
+        ("30857", "CSIDL_FLAG_PER_USER_INIT|0x00030057"),
+        ("30858", "CSIDL_FLAG_PER_USER_INIT|0x00030058"),
+        ("30859", "CSIDL_FLAG_PER_USER_INIT|0x00030059"),
+        ("30860", "CSIDL_FLAG_PER_USER_INIT|0x00030060"),
+        ("30861", "CSIDL_FLAG_PER_USER_INIT|0x00030061"),
+        ("30862", "CSIDL_FLAG_PER_USER_INIT|0x00030062"),
+        ("30863", "CSIDL_FLAG_PER_USER_INIT|0x00030063"),
+        ("30864", "CSIDL_FLAG_PER_USER_INIT|0x00030064"),
+        ("30865", "CSIDL_FLAG_PER_USER_INIT|0x00030065"),
+        ("30866", "CSIDL_FLAG_PER_USER_INIT|0x00030066"),
+        ("30867", "CSIDL_FLAG_PER_USER_INIT|0x00030067"),
+        ("30868", "CSIDL_FLAG_PER_USER_INIT|0x00030068"),
+        ("30869", "CSIDL_FLAG_PER_USER_INIT|0x00030069"),
+        ("30870", "CSIDL_FLAG_PER_USER_INIT|0x00030070"),
+        ("30871", "CSIDL_FLAG_PER_USER_INIT|0x00030071"),
+        ("30872", "CSIDL_FLAG_PER_USER_INIT|0x00030072"),
+        ("30873", "CSIDL_FLAG_PER_USER_INIT|0x00030073"),
+        ("30874", "CSIDL_FLAG_PER_USER_INIT|0x00030074"),
+        ("30875", "CSIDL_FLAG_PER_USER_INIT|0x00030075"),
+        ("30876", "CSIDL_FLAG_PER_USER_INIT|0x00030076"),
+        ("30877", "CSIDL_FLAG_PER_USER_INIT|0x00030077"),
+        ("30878", "CSIDL_FLAG_PER_USER_INIT|0x00030078"),
+        ("30879", "CSIDL_FLAG_PER_USER_INIT|0x00030079"),
+        ("30880", "CSIDL_FLAG_PER_USER_INIT|0x00030080"),
+        ("30881", "CSIDL_FLAG_PER_USER_INIT|0x00030081"),
+        ("30882", "CSIDL_FLAG_PER_USER_INIT|0x00030082"),
+        ("30883", "CSIDL_FLAG_PER_USER_INIT|0x00030083"),
+        ("30884", "CSIDL_FLAG_PER_USER_INIT|0x00030084"),
+        ("30885", "CSIDL_FLAG_PER_USER_INIT|0x00030085"),
+        ("30886", "CSIDL_FLAG_PER_USER_INIT|0x00030086"),
+        ("30887", "CSIDL_FLAG_PER_USER_INIT|0x00030087"),
+        ("30888", "CSIDL_FLAG_PER_USER_INIT|0x00030088"),
+        ("30889", "CSIDL_FLAG_PER_USER_INIT|0x00030089"),
+        ("30890", "CSIDL_FLAG_PER_USER_INIT|0x00030090"),
+        ("30891", "CSIDL_FLAG_PER_USER_INIT|0x00030091"),
+        ("30892", "CSIDL_FLAG_PER_USER_INIT|0x00030092"),
+        ("30893", "CSIDL_FLAG_PER_USER_INIT|0x00030093"),
+        ("30894", "CSIDL_FLAG_PER_USER_INIT|0x00030094"),
+        ("30895", "CSIDL_FLAG_PER_USER_INIT|0x00030095"),
+        ("30896", "CSIDL_FLAG_PER_USER_INIT|0x00030096"),
+        ("30897", "CSIDL_FLAG_PER_USER_INIT|0x00030097"),
+        ("30898", "CSIDL_FLAG_PER_USER_INIT|0x00030098"),
+        ("30899", "CSIDL_FLAG_PER_USER_INIT|0x00030099"),
+        ("30900", "CSIDL_FLAG_PER_USER_INIT|0x00030100"),
+        ("30901", "CSIDL_FLAG_PER_USER_INIT|0x00030101"),
+        ("30902", "CSIDL_FLAG_PER_USER_INIT|0x00030102"),
+        ("30903", "CSIDL_FLAG_PER_USER_INIT|0x00030103"),
+        ("30904", "CSIDL_FLAG_PER_USER_INIT|0x00030104"),
+        ("30905", "CSIDL_FLAG_PER_USER_INIT|0x00030105"),
+        ("30906", "CSIDL_FLAG_PER_USER_INIT|0x00030106"),
+        ("30907", "CSIDL_FLAG_PER_USER_INIT|0x00030107"),
+        ("30908", "CSIDL_FLAG_PER_USER_INIT|0x00030108"),
+        ("30909", "CSIDL_FLAG_PER_USER_INIT|0x00030109"),
+        ("30910", "CSIDL_FLAG_PER_USER_INIT|0x00030110"),
+        ("30911", "CSIDL_FLAG_PER_USER_INIT|0x00030111"),
+        ("30912", "CSIDL_FLAG_PER_USER_INIT|0x00030112"),
+        ("30913", "CSIDL_FLAG_PER_USER_INIT|0x00030113"),
+        ("30914", "CSIDL_FLAG_PER_USER_INIT|0x00030114"),
+        ("30915", "CSIDL_FLAG_PER_USER_INIT|0x00030115"),
+        ("30916", "CSIDL_FLAG_PER_USER_INIT|0x00030116"),
+        ("30917", "CSIDL_FLAG_PER_USER_INIT|0x00030117"),
+        ("30918", "CSIDL_FLAG_PER_USER_INIT|0x00030118"),
+        ("30919", "CSIDL_FLAG_PER_USER_INIT|0x00030119"),
+        ("30920", "CSIDL_FLAG_PER_USER_INIT|0x00030120"),
+        ("30921", "CSIDL_FLAG_PER_USER_INIT|0x00030121"),
+        ("30922", "CSIDL_FLAG_PER_USER_INIT|0x00030122"),
+        ("30923", "CSIDL_FLAG_PER_USER_INIT|0x00030123"),
+        ("30924", "CSIDL_FLAG_PER_USER_INIT|0x00030124"),
+        ("30925", "CSIDL_FLAG_PER_USER_INIT|0x00030125"),
+        ("30926", "CSIDL_FLAG_PER_USER_INIT|0x00030126"),
+        ("30927", "CSIDL_FLAG_PER_USER_INIT|0x00030127"),
+        ("30928", "CSIDL_FLAG_PER_USER_INIT|0x00030128"),
+        ("30929", "CSIDL_FLAG_PER_USER_INIT|0x00030129"),
+        ("30930", "CSIDL_FLAG_PER_USER_INIT|0x00030130"),
+        ("30931", "CSIDL_FLAG_PER_USER_INIT|0x00030131"),
+        ("30932", "CSIDL_FLAG_PER_USER_INIT|0x00030132"),
+        ("30933", "CSIDL_FLAG_PER_USER_INIT|0x00030133"),
+        ("30934", "CSIDL_FLAG_PER_USER_INIT|0x00030134"),
+        ("30935", "CSIDL_FLAG_PER_USER_INIT|0x00030135"),
+        ("30936", "CSIDL_FLAG_PER_USER_INIT|0x00030136"),
+        ("30937", "CSIDL_FLAG_PER_USER_INIT|0x00030137"),
+        ("30938", "CSIDL_FLAG_PER_USER_INIT|0x00030138"),
+        ("30939", "CSIDL_FLAG_PER_USER_INIT|0x00030139"),
+        ("30940", "CSIDL_FLAG_PER_USER_INIT|0x00030140"),
+        ("30941", "CSIDL_FLAG_PER_USER_INIT|0x00030141"),
+        ("30942", "CSIDL_FLAG_PER_USER_INIT|0x00030142"),
+        ("30943", "CSIDL_FLAG_PER_USER_INIT|0x00030143"),
+        ("30944", "CSIDL_FLAG_PER_USER_INIT|0x00030144"),
+        ("30945", "CSIDL_FLAG_PER_USER_INIT|0x00030145"),
+        ("30946", "CSIDL_FLAG_PER_USER_INIT|0x00030146"),
+        ("30947", "CSIDL_FLAG_PER_USER_INIT|0x00030147"),
+        ("30948", "CSIDL_FLAG_PER_USER_INIT|0x00030148"),
+        ("30949", "CSIDL_FLAG_PER_USER_INIT|0x00030149"),
+        ("30950", "CSIDL_FLAG_PER_USER_INIT|0x00030150"),
+        ("30951", "CSIDL_FLAG_PER_USER_INIT|0x00030151"),
+        ("30952", "CSIDL_FLAG_PER_USER_INIT|0x00030152"),
+        ("30953", "CSIDL_FLAG_PER_USER_INIT|0x00030153"),
+        ("30954", "CSIDL_FLAG_PER_USER_INIT|0x00030154"),
+        ("30955", "CSIDL_FLAG_PER_USER_INIT|0x00030155"),
+        ("30956", "CSIDL_FLAG_PER_USER_INIT|0x00030156"),
+        ("30957", "CSIDL_FLAG_PER_USER_INIT|0x00030157"),
+        ("30958", "CSIDL_FLAG_PER_USER_INIT|0x00030158"),
+        ("30959", "CSIDL_FLAG_PER_USER_INIT|0x00030159"),
+        ("30960", "CSIDL_FLAG_PER_USER_INIT|0x00030160"),
+        ("30961", "CSIDL_FLAG_PER_USER_INIT|0x00030161"),
+        ("30962", "CSIDL_FLAG_PER_USER_INIT|0x00030162"),
+        ("30963", "CSIDL_FLAG_PER_USER_INIT|0x00030163"),
+        ("30964", "CSIDL_FLAG_PER_USER_INIT|0x00030164"),
+        ("30965", "CSIDL_FLAG_PER_USER_INIT|0x00030165"),
+        ("30966", "CSIDL_FLAG_PER_USER_INIT|0x00030166"),
+        ("30967", "CSIDL_FLAG_PER_USER_INIT|0x00030167"),
+        ("30968", "CSIDL_FLAG_PER_USER_INIT|0x00030168"),
+        ("30969", "CSIDL_FLAG_PER_USER_INIT|0x00030169"),
+        ("30970", "CSIDL_FLAG_PER_USER_INIT|0x00030170"),
+        ("30971", "CSIDL_FLAG_PER_USER_INIT|0x00030171"),
+        ("30972", "CSIDL_FLAG_PER_USER_INIT|0x00030172"),
+        ("30973", "CSIDL_FLAG_PER_USER_INIT|0x00030173"),
+        ("30974", "CSIDL_FLAG_PER_USER_INIT|0x00030174"),
+        ("30975", "CSIDL_FLAG_PER_USER_INIT|0x00030175"),
+        ("30976", "CSIDL_FLAG_PER_USER_INIT|0x00030176"),
+        ("30977", "CSIDL_FLAG_PER_USER_INIT|0x00030177"),
+        ("30978", "CSIDL_FLAG_PER_USER_INIT|0x00030178"),
+        ("30979", "CSIDL_FLAG_PER_USER_INIT|0x00030179"),
+        ("30980", "CSIDL_FLAG_PER_USER_INIT|0x00030180"),
+        ("30981", "CSIDL_FLAG_PER_USER_INIT|0x00030181"),
+        ("30982", "CSIDL_FLAG_PER_USER_INIT|0x00030182"),
+        ("30983", "CSIDL_FLAG_PER_USER_INIT|0x00030183"),
+        ("30984", "CSIDL_FLAG_PER_USER_INIT|0x00030184"),
+        ("30985", "CSIDL_FLAG_PER_USER_INIT|0x00030185"),
+        ("30986", "CSIDL_FLAG_PER_USER_INIT|0x00030186"),
+        ("30987", "CSIDL_FLAG_PER_USER_INIT|0x00030187"),
+        ("30988", "CSIDL_FLAG_PER_USER_INIT|0x00030188"),
+        ("30989", "CSIDL_FLAG_PER_USER_INIT|0x00030189"),
+        ("30990", "CSIDL_FLAG_PER_USER_INIT|0x00030190"),
+        ("30991", "CSIDL_FLAG_PER_USER_INIT|0x00030191"),
+        ("30992", "CSIDL_FLAG_PER_USER_INIT|0x00030192"),
+        ("30993", "CSIDL_FLAG_PER_USER_INIT|0x00030193"),
+        ("30994", "CSIDL_FLAG_PER_USER_INIT|0x00030194"),
+        ("30995", "CSIDL_FLAG_PER_USER_INIT|0x00030195"),
+        ("30996", "CSIDL_FLAG_PER_USER_INIT|0x00030196"),
+        ("30997", "CSIDL_FLAG_PER_USER_INIT|0x00030197"),
+        ("30998", "CSIDL_FLAG_PER_USER_INIT|0x00030198"),
+        ("30999", "CSIDL_FLAG_PER_USER_INIT|0x00030199"),
+        ("31000", "CSIDL_FLAG_NO_ALIAS|0x00030000"),
+        ("31001", "CSIDL_FLAG_NO_ALIAS|0x00030001"),
+        ("31002", "CSIDL_FLAG_NO_ALIAS|0x00030002"),
+        ("31003", "CSIDL_FLAG_NO_ALIAS|0x00030003"),
+        ("31004", "CSIDL_FLAG_NO_ALIAS|0x00030004"),
+        ("31005", "CSIDL_FLAG_NO_ALIAS|0x00030005"),
+        ("31006", "CSIDL_FLAG_NO_ALIAS|0x00030006"),
+        ("31007", "CSIDL_FLAG_NO_ALIAS|0x00030007"),
+        ("31008", "CSIDL_FLAG_NO_ALIAS|0x00030008"),
+        ("31009", "CSIDL_FLAG_NO_ALIAS|0x00030009"),
+        ("31010", "CSIDL_FLAG_NO_ALIAS|0x00030010"),
+        ("31011", "CSIDL_FLAG_NO_ALIAS|0x00030011"),
+        ("31012", "CSIDL_FLAG_NO_ALIAS|0x00030012"),
+        ("31013", "CSIDL_FLAG_NO_ALIAS|0x00030013"),
+        ("31014", "CSIDL_FLAG_NO_ALIAS|0x00030014"),
+        ("31015", "CSIDL_FLAG_NO_ALIAS|0x00030015"),
+        ("31016", "CSIDL_FLAG_NO_ALIAS|0x00030016"),
+        ("31017", "CSIDL_FLAG_NO_ALIAS|0x00030017"),
+        ("31018", "CSIDL_FLAG_NO_ALIAS|0x00030018"),
+        ("31019", "CSIDL_FLAG_NO_ALIAS|0x00030019"),
+        ("31020", "CSIDL_FLAG_NO_ALIAS|0x00030020"),
+        ("31021", "CSIDL_FLAG_NO_ALIAS|0x00030021"),
+        ("31022", "CSIDL_FLAG_NO_ALIAS|0x00030022"),
+        ("31023", "CSIDL_FLAG_NO_ALIAS|0x00030023"),
+        ("31024", "CSIDL_FLAG_NO_ALIAS|0x00030024"),
+        ("31025", "CSIDL_FLAG_NO_ALIAS|0x00030025"),
+        ("31026", "CSIDL_FLAG_NO_ALIAS|0x00030026"),
+        ("31027", "CSIDL_FLAG_NO_ALIAS|0x00030027"),
+        ("31028", "CSIDL_FLAG_NO_ALIAS|0x00030028"),
+        ("31029", "CSIDL_FLAG_NO_ALIAS|0x00030029"),
+        ("31030", "CSIDL_FLAG_NO_ALIAS|0x00030030"),
+        ("31031", "CSIDL_FLAG_NO_ALIAS|0x00030031"),
+        ("31032", "CSIDL_FLAG_NO_ALIAS|0x00030032"),
+        ("31033", "CSIDL_FLAG_NO_ALIAS|0x00030033"),
+        ("31034", "CSIDL_FLAG_NO_ALIAS|0x00030034"),
+        ("31035", "CSIDL_FLAG_NO_ALIAS|0x00030035"),
+        ("31036", "CSIDL_FLAG_NO_ALIAS|0x00030036"),
+        ("31037", "CSIDL_FLAG_NO_ALIAS|0x00030037"),
+        ("31038", "CSIDL_FLAG_NO_ALIAS|0x00030038"),
+        ("31039", "CSIDL_FLAG_NO_ALIAS|0x00030039"),
+        ("31040", "CSIDL_FLAG_NO_ALIAS|0x00030040"),
+        ("31041", "CSIDL_FLAG_NO_ALIAS|0x00030041"),
+        ("31042", "CSIDL_FLAG_NO_ALIAS|0x00030042"),
+        ("31043", "CSIDL_FLAG_NO_ALIAS|0x00030043"),
+        ("31044", "CSIDL_FLAG_NO_ALIAS|0x00030044"),
+        ("31045", "CSIDL_FLAG_NO_ALIAS|0x00030045"),
+        ("31046", "CSIDL_FLAG_NO_ALIAS|0x00030046"),
+        ("31047", "CSIDL_FLAG_NO_ALIAS|0x00030047"),
+        ("31048", "CSIDL_FLAG_NO_ALIAS|0x00030048"),
+        ("31049", "CSIDL_FLAG_NO_ALIAS|0x00030049"),
+        ("31050", "CSIDL_FLAG_NO_ALIAS|0x00030050"),
+        ("31051", "CSIDL_FLAG_NO_ALIAS|0x00030051"),
+        ("31052", "CSIDL_FLAG_NO_ALIAS|0x00030052"),
+        ("31053", "CSIDL_FLAG_NO_ALIAS|0x00030053"),
+        ("31054", "CSIDL_FLAG_NO_ALIAS|0x00030054"),
+        ("31055", "CSIDL_FLAG_NO_ALIAS|0x00030055"),
+        ("31056", "CSIDL_FLAG_NO_ALIAS|0x00030056"),
+        ("31057", "CSIDL_FLAG_NO_ALIAS|0x00030057"),
+        ("31058", "CSIDL_FLAG_NO_ALIAS|0x00030058"),
+        ("31059", "CSIDL_FLAG_NO_ALIAS|0x00030059"),
+        ("31060", "CSIDL_FLAG_NO_ALIAS|0x00030060"),
+        ("31061", "CSIDL_FLAG_NO_ALIAS|0x00030061"),
+        ("31062", "CSIDL_FLAG_NO_ALIAS|0x00030062"),
+        ("31063", "CSIDL_FLAG_NO_ALIAS|0x00030063"),
+        ("31064", "CSIDL_FLAG_NO_ALIAS|0x00030064"),
+        ("31065", "CSIDL_FLAG_NO_ALIAS|0x00030065"),
+        ("31066", "CSIDL_FLAG_NO_ALIAS|0x00030066"),
+        ("31067", "CSIDL_FLAG_NO_ALIAS|0x00030067"),
+        ("31068", "CSIDL_FLAG_NO_ALIAS|0x00030068"),
+        ("31069", "CSIDL_FLAG_NO_ALIAS|0x00030069"),
+        ("31070", "CSIDL_FLAG_NO_ALIAS|0x00030070"),
+        ("31071", "CSIDL_FLAG_NO_ALIAS|0x00030071"),
+        ("31072", "CSIDL_FLAG_NO_ALIAS|0x00030072"),
+        ("31073", "CSIDL_FLAG_NO_ALIAS|0x00030073"),
+        ("31074", "CSIDL_FLAG_NO_ALIAS|0x00030074"),
+        ("31075", "CSIDL_FLAG_NO_ALIAS|0x00030075"),
+        ("31076", "CSIDL_FLAG_NO_ALIAS|0x00030076"),
+        ("31077", "CSIDL_FLAG_NO_ALIAS|0x00030077"),
+        ("31078", "CSIDL_FLAG_NO_ALIAS|0x00030078"),
+        ("31079", "CSIDL_FLAG_NO_ALIAS|0x00030079"),
+        ("31080", "CSIDL_FLAG_NO_ALIAS|0x00030080"),
+        ("31081", "CSIDL_FLAG_NO_ALIAS|0x00030081"),
+        ("31082", "CSIDL_FLAG_NO_ALIAS|0x00030082"),
+        ("31083", "CSIDL_FLAG_NO_ALIAS|0x00030083"),
+        ("31084", "CSIDL_FLAG_NO_ALIAS|0x00030084"),
+        ("31085", "CSIDL_FLAG_NO_ALIAS|0x00030085"),
+        ("31086", "CSIDL_FLAG_NO_ALIAS|0x00030086"),
+        ("31087", "CSIDL_FLAG_NO_ALIAS|0x00030087"),
+        ("31088", "CSIDL_FLAG_NO_ALIAS|0x00030088"),
+        ("31089", "CSIDL_FLAG_NO_ALIAS|0x00030089"),
+        ("31090", "CSIDL_FLAG_NO_ALIAS|0x00030090"),
+        ("31091", "CSIDL_FLAG_NO_ALIAS|0x00030091"),
+        ("31092", "CSIDL_FLAG_NO_ALIAS|0x00030092"),
+        ("31093", "CSIDL_FLAG_NO_ALIAS|0x00030093"),
+        ("31094", "CSIDL_FLAG_NO_ALIAS|0x00030094"),
+        ("31095", "CSIDL_FLAG_NO_ALIAS|0x00030095"),
+        ("31096", "CSIDL_FLAG_NO_ALIAS|0x00030096"),
+        ("31097", "CSIDL_FLAG_NO_ALIAS|0x00030097"),
+        ("31098", "CSIDL_FLAG_NO_ALIAS|0x00030098"),
+        ("31099", "CSIDL_FLAG_NO_ALIAS|0x00030099"),
+        ("31100", "CSIDL_FLAG_NO_ALIAS|0x00030100"),
+        ("31101", "CSIDL_FLAG_NO_ALIAS|0x00030101"),
+        ("31102", "CSIDL_FLAG_NO_ALIAS|0x00030102"),
+        ("31103", "CSIDL_FLAG_NO_ALIAS|0x00030103"),
+        ("31104", "CSIDL_FLAG_NO_ALIAS|0x00030104"),
+        ("31105", "CSIDL_FLAG_NO_ALIAS|0x00030105"),
+        ("31106", "CSIDL_FLAG_NO_ALIAS|0x00030106"),
+        ("31107", "CSIDL_FLAG_NO_ALIAS|0x00030107"),
+        ("31108", "CSIDL_FLAG_NO_ALIAS|0x00030108"),
+        ("31109", "CSIDL_FLAG_NO_ALIAS|0x00030109"),
+        ("31110", "CSIDL_FLAG_NO_ALIAS|0x00030110"),
+        ("31111", "CSIDL_FLAG_NO_ALIAS|0x00030111"),
+        ("31112", "CSIDL_FLAG_NO_ALIAS|0x00030112"),
+        ("31113", "CSIDL_FLAG_NO_ALIAS|0x00030113"),
+        ("31114", "CSIDL_FLAG_NO_ALIAS|0x00030114"),
+        ("31115", "CSIDL_FLAG_NO_ALIAS|0x00030115"),
+        ("31116", "CSIDL_FLAG_NO_ALIAS|0x00030116"),
+        ("31117", "CSIDL_FLAG_NO_ALIAS|0x00030117"),
+        ("31118", "CSIDL_FLAG_NO_ALIAS|0x00030118"),
+        ("31119", "CSIDL_FLAG_NO_ALIAS|0x00030119"),
+        ("31120", "CSIDL_FLAG_NO_ALIAS|0x00030120"),
+        ("31121", "CSIDL_FLAG_NO_ALIAS|0x00030121"),
+        ("31122", "CSIDL_FLAG_NO_ALIAS|0x00030122"),
+        ("31123", "CSIDL_FLAG_NO_ALIAS|0x00030123"),
+        ("31124", "CSIDL_FLAG_NO_ALIAS|0x00030124"),
+        ("31125", "CSIDL_FLAG_NO_ALIAS|0x00030125"),
+        ("31126", "CSIDL_FLAG_NO_ALIAS|0x00030126"),
+        ("31127", "CSIDL_FLAG_NO_ALIAS|0x00030127"),
+        ("31128", "CSIDL_FLAG_NO_ALIAS|0x00030128"),
+        ("31129", "CSIDL_FLAG_NO_ALIAS|0x00030129"),
+        ("31130", "CSIDL_FLAG_NO_ALIAS|0x00030130"),
+        ("31131", "CSIDL_FLAG_NO_ALIAS|0x00030131"),
+        ("31132", "CSIDL_FLAG_NO_ALIAS|0x00030132"),
+        ("31133", "CSIDL_FLAG_NO_ALIAS|0x00030133"),
+        ("31134", "CSIDL_FLAG_NO_ALIAS|0x00030134"),
+        ("31135", "CSIDL_FLAG_NO_ALIAS|0x00030135"),
+        ("31136", "CSIDL_FLAG_NO_ALIAS|0x00030136"),
+        ("31137", "CSIDL_FLAG_NO_ALIAS|0x00030137"),
+        ("31138", "CSIDL_FLAG_NO_ALIAS|0x00030138"),
+        ("31139", "CSIDL_FLAG_NO_ALIAS|0x00030139"),
+        ("31140", "CSIDL_FLAG_NO_ALIAS|0x00030140"),
+        ("31141", "CSIDL_FLAG_NO_ALIAS|0x00030141"),
+        ("31142", "CSIDL_FLAG_NO_ALIAS|0x00030142"),
+        ("31143", "CSIDL_FLAG_NO_ALIAS|0x00030143"),
+        ("31144", "CSIDL_FLAG_NO_ALIAS|0x00030144"),
+        ("31145", "CSIDL_FLAG_NO_ALIAS|0x00030145"),
+        ("31146", "CSIDL_FLAG_NO_ALIAS|0x00030146"),
+        ("31147", "CSIDL_FLAG_NO_ALIAS|0x00030147"),
+        ("31148", "CSIDL_FLAG_NO_ALIAS|0x00030148"),
+        ("31149", "CSIDL_FLAG_NO_ALIAS|0x00030149"),
+        ("31150", "CSIDL_FLAG_NO_ALIAS|0x00030150"),
+        ("31151", "CSIDL_FLAG_NO_ALIAS|0x00030151"),
+        ("31152", "CSIDL_FLAG_NO_ALIAS|0x00030152"),
+        ("31153", "CSIDL_FLAG_NO_ALIAS|0x00030153"),
+        ("31154", "CSIDL_FLAG_NO_ALIAS|0x00030154"),
+        ("31155", "CSIDL_FLAG_NO_ALIAS|0x00030155"),
+        ("31156", "CSIDL_FLAG_NO_ALIAS|0x00030156"),
+        ("31157", "CSIDL_FLAG_NO_ALIAS|0x00030157"),
+        ("31158", "CSIDL_FLAG_NO_ALIAS|0x00030158"),
+        ("31159", "CSIDL_FLAG_NO_ALIAS|0x00030159"),
+        ("31160", "CSIDL_FLAG_NO_ALIAS|0x00030160"),
+        ("31161", "CSIDL_FLAG_NO_ALIAS|0x00030161"),
+        ("31162", "CSIDL_FLAG_NO_ALIAS|0x00030162"),
+        ("31163", "CSIDL_FLAG_NO_ALIAS|0x00030163"),
+        ("31164", "CSIDL_FLAG_NO_ALIAS|0x00030164"),
+        ("31165", "CSIDL_FLAG_NO_ALIAS|0x00030165"),
+        ("31166", "CSIDL_FLAG_NO_ALIAS|0x00030166"),
+        ("31167", "CSIDL_FLAG_NO_ALIAS|0x00030167"),
+        ("31168", "CSIDL_FLAG_NO_ALIAS|0x00030168"),
+        ("31169", "CSIDL_FLAG_NO_ALIAS|0x00030169"),
+        ("31170", "CSIDL_FLAG_NO_ALIAS|0x00030170"),
+        ("31171", "CSIDL_FLAG_NO_ALIAS|0x00030171"),
+        ("31172", "CSIDL_FLAG_NO_ALIAS|0x00030172"),
+        ("31173", "CSIDL_FLAG_NO_ALIAS|0x00030173"),
+        ("31174", "CSIDL_FLAG_NO_ALIAS|0x00030174"),
+        ("31175", "CSIDL_FLAG_NO_ALIAS|0x00030175"),
+        ("31176", "CSIDL_FLAG_NO_ALIAS|0x00030176"),
+        ("31177", "CSIDL_FLAG_NO_ALIAS|0x00030177"),
+        ("31178", "CSIDL_FLAG_NO_ALIAS|0x00030178"),
+        ("31179", "CSIDL_FLAG_NO_ALIAS|0x00030179"),
+        ("31180", "CSIDL_FLAG_NO_ALIAS|0x00030180"),
+        ("31181", "CSIDL_FLAG_NO_ALIAS|0x00030181"),
+        ("31182", "CSIDL_FLAG_NO_ALIAS|0x00030182"),
+        ("31183", "CSIDL_FLAG_NO_ALIAS|0x00030183"),
+        ("31184", "CSIDL_FLAG_NO_ALIAS|0x00030184"),
+        ("31185", "CSIDL_FLAG_NO_ALIAS|0x00030185"),
+        ("31186", "CSIDL_FLAG_NO_ALIAS|0x00030186"),
+        ("31187", "CSIDL_FLAG_NO_ALIAS|0x00030187"),
+        ("31188", "CSIDL_FLAG_NO_ALIAS|0x00030188"),
+        ("31189", "CSIDL_FLAG_NO_ALIAS|0x00030189"),
+        ("31190", "CSIDL_FLAG_NO_ALIAS|0x00030190"),
+        ("31191", "CSIDL_FLAG_NO_ALIAS|0x00030191"),
+        ("31192", "CSIDL_FLAG_NO_ALIAS|0x00030192"),
+        ("31193", "CSIDL_FLAG_NO_ALIAS|0x00030193"),
+        ("31194", "CSIDL_FLAG_NO_ALIAS|0x00030194"),
+        ("31195", "CSIDL_FLAG_NO_ALIAS|0x00030195"),
+        ("31196", "CSIDL_FLAG_NO_ALIAS|0x00030196"),
+        ("31197", "CSIDL_FLAG_NO_ALIAS|0x00030197"),
+        ("31198", "CSIDL_FLAG_NO_ALIAS|0x00030198"),
+        ("31199", "CSIDL_FLAG_NO_ALIAS|0x00030199"),
+        ("31200", "CSIDL_FLAG_NO_ALIAS|0x00030200"),
+        ("31201", "CSIDL_FLAG_NO_ALIAS|0x00030201"),
+        ("31202", "CSIDL_FLAG_NO_ALIAS|0x00030202"),
+        ("31203", "CSIDL_FLAG_NO_ALIAS|0x00030203"),
+        ("31204", "CSIDL_FLAG_NO_ALIAS|0x00030204"),
+        ("31205", "CSIDL_FLAG_NO_ALIAS|0x00030205"),
+        ("31206", "CSIDL_FLAG_NO_ALIAS|0x00030206"),
+        ("31207", "CSIDL_FLAG_NO_ALIAS|0x00030207"),
+        ("31208", "CSIDL_FLAG_NO_ALIAS|0x00030208"),
+        ("31209", "CSIDL_FLAG_NO_ALIAS|0x00030209"),
+        ("31210", "CSIDL_FLAG_NO_ALIAS|0x00030210"),
+        ("31211", "CSIDL_FLAG_NO_ALIAS|0x00030211"),
+        ("31212", "CSIDL_FLAG_NO_ALIAS|0x00030212"),
+        ("31213", "CSIDL_FLAG_NO_ALIAS|0x00030213"),
+        ("31214", "CSIDL_FLAG_NO_ALIAS|0x00030214"),
+        ("31215", "CSIDL_FLAG_NO_ALIAS|0x00030215"),
+        ("31216", "CSIDL_FLAG_NO_ALIAS|0x00030216"),
+        ("31217", "CSIDL_FLAG_NO_ALIAS|0x00030217"),
+        ("31218", "CSIDL_FLAG_NO_ALIAS|0x00030218"),
+        ("31219", "CSIDL_FLAG_NO_ALIAS|0x00030219"),
+        ("31220", "CSIDL_FLAG_NO_ALIAS|0x00030220"),
+        ("31221", "CSIDL_FLAG_NO_ALIAS|0x00030221"),
+        ("31222", "CSIDL_FLAG_NO_ALIAS|0x00030222"),
+        ("31223", "CSIDL_FLAG_NO_ALIAS|0x00030223"),
+        ("31224", "CSIDL_FLAG_NO_ALIAS|0x00030224"),
+        ("31225", "CSIDL_FLAG_NO_ALIAS|0x00030225"),
+        ("31226", "CSIDL_FLAG_NO_ALIAS|0x00030226"),
+        ("31227", "CSIDL_FLAG_NO_ALIAS|0x00030227"),
+        ("31228", "CSIDL_FLAG_NO_ALIAS|0x00030228"),
+        ("31229", "CSIDL_FLAG_NO_ALIAS|0x00030229"),
+        ("31230", "CSIDL_FLAG_NO_ALIAS|0x00030230"),
+        ("31231", "CSIDL_FLAG_NO_ALIAS|0x00030231"),
+        ("31232", "CSIDL_FLAG_NO_ALIAS|0x00030232"),
+        ("31233", "CSIDL_FLAG_NO_ALIAS|0x00030233"),
+        ("31234", "CSIDL_FLAG_NO_ALIAS|0x00030234"),
+        ("31235", "CSIDL_FLAG_NO_ALIAS|0x00030235"),
+        ("31236", "CSIDL_FLAG_NO_ALIAS|0x00030236"),
+        ("31237", "CSIDL_FLAG_NO_ALIAS|0x00030237"),
+        ("31238", "CSIDL_FLAG_NO_ALIAS|0x00030238"),
+        ("31239", "CSIDL_FLAG_NO_ALIAS|0x00030239"),
+        ("31240", "CSIDL_FLAG_NO_ALIAS|0x00030240"),
+        ("31241", "CSIDL_FLAG_NO_ALIAS|0x00030241"),
+        ("31242", "CSIDL_FLAG_NO_ALIAS|0x00030242"),
+        ("31243", "CSIDL_FLAG_NO_ALIAS|0x00030243"),
+        ("31244", "CSIDL_FLAG_NO_ALIAS|0x00030244"),
+        ("31245", "CSIDL_FLAG_NO_ALIAS|0x00030245"),
+        ("31246", "CSIDL_FLAG_NO_ALIAS|0x00030246"),
+        ("31247", "CSIDL_FLAG_NO_ALIAS|0x00030247"),
+        ("31248", "CSIDL_FLAG_NO_ALIAS|0x00030248"),
+        ("31249", "CSIDL_FLAG_NO_ALIAS|0x00030249"),
+        ("31250", "CSIDL_FLAG_NO_ALIAS|0x00030250"),
+        ("31251", "CSIDL_FLAG_NO_ALIAS|0x00030251"),
+        ("31252", "CSIDL_FLAG_NO_ALIAS|0x00030252"),
+        ("31253", "CSIDL_FLAG_NO_ALIAS|0x00030253"),
+        ("31254", "CSIDL_FLAG_NO_ALIAS|0x00030254"),
+        ("31255", "CSIDL_FLAG_NO_ALIAS|0x00030255"),
+        ("31256", "CSIDL_FLAG_NO_ALIAS|0x00030256"),
+        ("31257", "CSIDL_FLAG_NO_ALIAS|0x00030257"),
+        ("31258", "CSIDL_FLAG_NO_ALIAS|0x00030258"),
+        ("31259", "CSIDL_FLAG_NO_ALIAS|0x00030259"),
+        ("31260", "CSIDL_FLAG_NO_ALIAS|0x00030260"),
+        ("31261", "CSIDL_FLAG_NO_ALIAS|0x00030261"),
+        ("31262", "CSIDL_FLAG_NO_ALIAS|0x00030262"),
+        ("31263", "CSIDL_FLAG_NO_ALIAS|0x00030263"),
+        ("31264", "CSIDL_FLAG_NO_ALIAS|0x00030264"),
+        ("31265", "CSIDL_FLAG_NO_ALIAS|0x00030265"),
+        ("31266", "CSIDL_FLAG_NO_ALIAS|0x00030266"),
+        ("31267", "CSIDL_FLAG_NO_ALIAS|0x00030267"),
+        ("31268", "CSIDL_FLAG_NO_ALIAS|0x00030268"),
+        ("31269", "CSIDL_FLAG_NO_ALIAS|0x00030269"),
+        ("31270", "CSIDL_FLAG_NO_ALIAS|0x00030270"),
+        ("31271", "CSIDL_FLAG_NO_ALIAS|0x00030271"),
+        ("31272", "CSIDL_FLAG_NO_ALIAS|0x00030272"),
+        ("31273", "CSIDL_FLAG_NO_ALIAS|0x00030273"),
+        ("31274", "CSIDL_FLAG_NO_ALIAS|0x00030274"),
+        ("31275", "CSIDL_FLAG_NO_ALIAS|0x00030275"),
+        ("31276", "CSIDL_FLAG_NO_ALIAS|0x00030276"),
+        ("31277", "CSIDL_FLAG_NO_ALIAS|0x00030277"),
+        ("31278", "CSIDL_FLAG_NO_ALIAS|0x00030278"),
+        ("31279", "CSIDL_FLAG_NO_ALIAS|0x00030279"),
+        ("31280", "CSIDL_FLAG_NO_ALIAS|0x00030280"),
+        ("31281", "CSIDL_FLAG_NO_ALIAS|0x00030281"),
+        ("31282", "CSIDL_FLAG_NO_ALIAS|0x00030282"),
+        ("31283", "CSIDL_FLAG_NO_ALIAS|0x00030283"),
+        ("31284", "CSIDL_FLAG_NO_ALIAS|0x00030284"),
+        ("31285", "CSIDL_FLAG_NO_ALIAS|0x00030285"),
+        ("31286", "CSIDL_FLAG_NO_ALIAS|0x00030286"),
+        ("31287", "CSIDL_FLAG_NO_ALIAS|0x00030287"),
+        ("31288", "CSIDL_FLAG_NO_ALIAS|0x00030288"),
+        ("31289", "CSIDL_FLAG_NO_ALIAS|0x00030289"),
+        ("31290", "CSIDL_FLAG_NO_ALIAS|0x00030290"),
+        ("31291", "CSIDL_FLAG_NO_ALIAS|0x00030291"),
+        ("31292", "CSIDL_FLAG_NO_ALIAS|0x00030292"),
+        ("31293", "CSIDL_FLAG_NO_ALIAS|0x00030293"),
+        ("31294", "CSIDL_FLAG_NO_ALIAS|0x00030294"),
+        ("31295", "CSIDL_FLAG_NO_ALIAS|0x00030295"),
+        ("31296", "CSIDL_FLAG_NO_ALIAS|0x00030296"),
+        ("31297", "CSIDL_FLAG_NO_ALIAS|0x00030297"),
+        ("31298", "CSIDL_FLAG_NO_ALIAS|0x00030298"),
+        ("31299", "CSIDL_FLAG_NO_ALIAS|0x00030299"),
+        ("31300", "CSIDL_FLAG_NO_ALIAS|0x00030300"),
+        ("31301", "CSIDL_FLAG_NO_ALIAS|0x00030301"),
+        ("31302", "CSIDL_FLAG_NO_ALIAS|0x00030302"),
+        ("31303", "CSIDL_FLAG_NO_ALIAS|0x00030303"),
+        ("31304", "CSIDL_FLAG_NO_ALIAS|0x00030304"),
+        ("31305", "CSIDL_FLAG_NO_ALIAS|0x00030305"),
+        ("31306", "CSIDL_FLAG_NO_ALIAS|0x00030306"),
+        ("31307", "CSIDL_FLAG_NO_ALIAS|0x00030307"),
+        ("31308", "CSIDL_FLAG_NO_ALIAS|0x00030308"),
+        ("31309", "CSIDL_FLAG_NO_ALIAS|0x00030309"),
+        ("31310", "CSIDL_FLAG_NO_ALIAS|0x00030310"),
+        ("31311", "CSIDL_FLAG_NO_ALIAS|0x00030311"),
+        ("31312", "CSIDL_FLAG_NO_ALIAS|0x00030312"),
+        ("31313", "CSIDL_FLAG_NO_ALIAS|0x00030313"),
+        ("31314", "CSIDL_FLAG_NO_ALIAS|0x00030314"),
+        ("31315", "CSIDL_FLAG_NO_ALIAS|0x00030315"),
+        ("31316", "CSIDL_FLAG_NO_ALIAS|0x00030316"),
+        ("31317", "CSIDL_FLAG_NO_ALIAS|0x00030317"),
+        ("31318", "CSIDL_FLAG_NO_ALIAS|0x00030318"),
+        ("31319", "CSIDL_FLAG_NO_ALIAS|0x00030319"),
+        ("31320", "CSIDL_FLAG_NO_ALIAS|0x00030320"),
+        ("31321", "CSIDL_FLAG_NO_ALIAS|0x00030321"),
+        ("31322", "CSIDL_FLAG_NO_ALIAS|0x00030322"),
+        ("31323", "CSIDL_FLAG_NO_ALIAS|0x00030323"),
+        ("31324", "CSIDL_FLAG_NO_ALIAS|0x00030324"),
+        ("31325", "CSIDL_FLAG_NO_ALIAS|0x00030325"),
+        ("31326", "CSIDL_FLAG_NO_ALIAS|0x00030326"),
+        ("31327", "CSIDL_FLAG_NO_ALIAS|0x00030327"),
+        ("31328", "CSIDL_FLAG_NO_ALIAS|0x00030328"),
+        ("31329", "CSIDL_FLAG_NO_ALIAS|0x00030329"),
+        ("31330", "CSIDL_FLAG_NO_ALIAS|0x00030330"),
+        ("31331", "CSIDL_FLAG_NO_ALIAS|0x00030331"),
+        ("31332", "CSIDL_FLAG_NO_ALIAS|0x00030332"),
+        ("31333", "CSIDL_FLAG_NO_ALIAS|0x00030333"),
+        ("31334", "CSIDL_FLAG_NO_ALIAS|0x00030334"),
+        ("31335", "CSIDL_FLAG_NO_ALIAS|0x00030335"),
+        ("31336", "CSIDL_FLAG_NO_ALIAS|0x00030336"),
+        ("31337", "CSIDL_FLAG_NO_ALIAS|0x00030337"),
+        ("31338", "CSIDL_FLAG_NO_ALIAS|0x00030338"),
+        ("31339", "CSIDL_FLAG_NO_ALIAS|0x00030339"),
+        ("31340", "CSIDL_FLAG_NO_ALIAS|0x00030340"),
+        ("31341", "CSIDL_FLAG_NO_ALIAS|0x00030341"),
+        ("31342", "CSIDL_FLAG_NO_ALIAS|0x00030342"),
+        ("31343", "CSIDL_FLAG_NO_ALIAS|0x00030343"),
+        ("31344", "CSIDL_FLAG_NO_ALIAS|0x00030344"),
+        ("31345", "CSIDL_FLAG_NO_ALIAS|0x00030345"),
+        ("31346", "CSIDL_FLAG_NO_ALIAS|0x00030346"),
+        ("31347", "CSIDL_FLAG_NO_ALIAS|0x00030347"),
+        ("31348", "CSIDL_FLAG_NO_ALIAS|0x00030348"),
+        ("31349", "CSIDL_FLAG_NO_ALIAS|0x00030349"),
+        ("31350", "CSIDL_FLAG_NO_ALIAS|0x00030350"),
+        ("31351", "CSIDL_FLAG_NO_ALIAS|0x00030351"),
+        ("31352", "CSIDL_FLAG_NO_ALIAS|0x00030352"),
+        ("31353", "CSIDL_FLAG_NO_ALIAS|0x00030353"),
+        ("31354", "CSIDL_FLAG_NO_ALIAS|0x00030354"),
+        ("31355", "CSIDL_FLAG_NO_ALIAS|0x00030355"),
+        ("31356", "CSIDL_FLAG_NO_ALIAS|0x00030356"),
+        ("31357", "CSIDL_FLAG_NO_ALIAS|0x00030357"),
+        ("31358", "CSIDL_FLAG_NO_ALIAS|0x00030358"),
+        ("31359", "CSIDL_FLAG_NO_ALIAS|0x00030359"),
+        ("31360", "CSIDL_FLAG_NO_ALIAS|0x00030360"),
+        ("31361", "CSIDL_FLAG_NO_ALIAS|0x00030361"),
+        ("31362", "CSIDL_FLAG_NO_ALIAS|0x00030362"),
+        ("31363", "CSIDL_FLAG_NO_ALIAS|0x00030363"),
+        ("31364", "CSIDL_FLAG_NO_ALIAS|0x00030364"),
+        ("31365", "CSIDL_FLAG_NO_ALIAS|0x00030365"),
+        ("31366", "CSIDL_FLAG_NO_ALIAS|0x00030366"),
+        ("31367", "CSIDL_FLAG_NO_ALIAS|0x00030367"),
+        ("31368", "CSIDL_FLAG_NO_ALIAS|0x00030368"),
+        ("31369", "CSIDL_FLAG_NO_ALIAS|0x00030369"),
+        ("31370", "CSIDL_FLAG_NO_ALIAS|0x00030370"),
+        ("31371", "CSIDL_FLAG_NO_ALIAS|0x00030371"),
+        ("31372", "CSIDL_FLAG_NO_ALIAS|0x00030372"),
+        ("31373", "CSIDL_FLAG_NO_ALIAS|0x00030373"),
+        ("31374", "CSIDL_FLAG_NO_ALIAS|0x00030374"),
+        ("31375", "CSIDL_FLAG_NO_ALIAS|0x00030375"),
+        ("31376", "CSIDL_FLAG_NO_ALIAS|0x00030376"),
+        ("31377", "CSIDL_FLAG_NO_ALIAS|0x00030377"),
+        ("31378", "CSIDL_FLAG_NO_ALIAS|0x00030378"),
+        ("31379", "CSIDL_FLAG_NO_ALIAS|0x00030379"),
+        ("31380", "CSIDL_FLAG_NO_ALIAS|0x00030380"),
+        ("31381", "CSIDL_FLAG_NO_ALIAS|0x00030381"),
+        ("31382", "CSIDL_FLAG_NO_ALIAS|0x00030382"),
+        ("31383", "CSIDL_FLAG_NO_ALIAS|0x00030383"),
+        ("31384", "CSIDL_FLAG_NO_ALIAS|0x00030384"),
+        ("31385", "CSIDL_FLAG_NO_ALIAS|0x00030385"),
+        ("31386", "CSIDL_FLAG_NO_ALIAS|0x00030386"),
+        ("31387", "CSIDL_FLAG_NO_ALIAS|0x00030387"),
+        ("31388", "CSIDL_FLAG_NO_ALIAS|0x00030388"),
+        ("31389", "CSIDL_FLAG_NO_ALIAS|0x00030389"),
+        ("31390", "CSIDL_FLAG_NO_ALIAS|0x00030390"),
+        ("31391", "CSIDL_FLAG_NO_ALIAS|0x00030391"),
+        ("31392", "CSIDL_FLAG_NO_ALIAS|0x00030392"),
+        ("31393", "CSIDL_FLAG_NO_ALIAS|0x00030393"),
+        ("31394", "CSIDL_FLAG_NO_ALIAS|0x00030394"),
+        ("31395", "CSIDL_FLAG_NO_ALIAS|0x00030395"),
+        ("31396", "CSIDL_FLAG_NO_ALIAS|0x00030396"),
+        ("31397", "CSIDL_FLAG_NO_ALIAS|0x00030397"),
+        ("31398", "CSIDL_FLAG_NO_ALIAS|0x00030398"),
+        ("31399", "CSIDL_FLAG_NO_ALIAS|0x00030399"),
+        ("31400", "CSIDL_FLAG_NO_ALIAS|0x00030400"),
+        ("31401", "CSIDL_FLAG_NO_ALIAS|0x00030401"),
+        ("31402", "CSIDL_FLAG_NO_ALIAS|0x00030402"),
+        ("31403", "CSIDL_FLAG_NO_ALIAS|0x00030403"),
+        ("31404", "CSIDL_FLAG_NO_ALIAS|0x00030404"),
+        ("31405", "CSIDL_FLAG_NO_ALIAS|0x00030405"),
+        ("31406", "CSIDL_FLAG_NO_ALIAS|0x00030406"),
+        ("31407", "CSIDL_FLAG_NO_ALIAS|0x00030407"),
+        ("31408", "CSIDL_FLAG_NO_ALIAS|0x00030408"),
+        ("31409", "CSIDL_FLAG_NO_ALIAS|0x00030409"),
+        ("31410", "CSIDL_FLAG_NO_ALIAS|0x00030410"),
+        ("31411", "CSIDL_FLAG_NO_ALIAS|0x00030411"),
+        ("31412", "CSIDL_FLAG_NO_ALIAS|0x00030412"),
+        ("31413", "CSIDL_FLAG_NO_ALIAS|0x00030413"),
+        ("31414", "CSIDL_FLAG_NO_ALIAS|0x00030414"),
+        ("31415", "CSIDL_FLAG_NO_ALIAS|0x00030415"),
+        ("31416", "CSIDL_FLAG_NO_ALIAS|0x00030416"),
+        ("31417", "CSIDL_FLAG_NO_ALIAS|0x00030417"),
+        ("31418", "CSIDL_FLAG_NO_ALIAS|0x00030418"),
+        ("31419", "CSIDL_FLAG_NO_ALIAS|0x00030419"),
+        ("31420", "CSIDL_FLAG_NO_ALIAS|0x00030420"),
+        ("31421", "CSIDL_FLAG_NO_ALIAS|0x00030421"),
+        ("31422", "CSIDL_FLAG_NO_ALIAS|0x00030422"),
+        ("31423", "CSIDL_FLAG_NO_ALIAS|0x00030423"),
+        ("31424", "CSIDL_FLAG_NO_ALIAS|0x00030424"),
+        ("31425", "CSIDL_FLAG_NO_ALIAS|0x00030425"),
+        ("31426", "CSIDL_FLAG_NO_ALIAS|0x00030426"),
+        ("31427", "CSIDL_FLAG_NO_ALIAS|0x00030427"),
+        ("31428", "CSIDL_FLAG_NO_ALIAS|0x00030428"),
+        ("31429", "CSIDL_FLAG_NO_ALIAS|0x00030429"),
+        ("31430", "CSIDL_FLAG_NO_ALIAS|0x00030430"),
+        ("31431", "CSIDL_FLAG_NO_ALIAS|0x00030431"),
+        ("31432", "CSIDL_FLAG_NO_ALIAS|0x00030432"),
+        ("31433", "CSIDL_FLAG_NO_ALIAS|0x00030433"),
+        ("31434", "CSIDL_FLAG_NO_ALIAS|0x00030434"),
+        ("31435", "CSIDL_FLAG_NO_ALIAS|0x00030435"),
+        ("31436", "CSIDL_FLAG_NO_ALIAS|0x00030436"),
+        ("31437", "CSIDL_FLAG_NO_ALIAS|0x00030437"),
+        ("31438", "CSIDL_FLAG_NO_ALIAS|0x00030438"),
+        ("31439", "CSIDL_FLAG_NO_ALIAS|0x00030439"),
+        ("31440", "CSIDL_FLAG_NO_ALIAS|0x00030440"),
+        ("31441", "CSIDL_FLAG_NO_ALIAS|0x00030441"),
+        ("31442", "CSIDL_FLAG_NO_ALIAS|0x00030442"),
+        ("31443", "CSIDL_FLAG_NO_ALIAS|0x00030443"),
+        ("31444", "CSIDL_FLAG_NO_ALIAS|0x00030444"),
+        ("31445", "CSIDL_FLAG_NO_ALIAS|0x00030445"),
+        ("31446", "CSIDL_FLAG_NO_ALIAS|0x00030446"),
+        ("31447", "CSIDL_FLAG_NO_ALIAS|0x00030447"),
+        ("31448", "CSIDL_FLAG_NO_ALIAS|0x00030448"),
+        ("31449", "CSIDL_FLAG_NO_ALIAS|0x00030449"),
+        ("31450", "CSIDL_FLAG_NO_ALIAS|0x00030450"),
+        ("31451", "CSIDL_FLAG_NO_ALIAS|0x00030451"),
+        ("31452", "CSIDL_FLAG_NO_ALIAS|0x00030452"),
+        ("31453", "CSIDL_FLAG_NO_ALIAS|0x00030453"),
+        ("31454", "CSIDL_FLAG_NO_ALIAS|0x00030454"),
+        ("31455", "CSIDL_FLAG_NO_ALIAS|0x00030455"),
+        ("31456", "CSIDL_FLAG_NO_ALIAS|0x00030456"),
+        ("31457", "CSIDL_FLAG_NO_ALIAS|0x00030457"),
+        ("31458", "CSIDL_FLAG_NO_ALIAS|0x00030458"),
+        ("31459", "CSIDL_FLAG_NO_ALIAS|0x00030459"),
+        ("31460", "CSIDL_FLAG_NO_ALIAS|0x00030460"),
+        ("31461", "CSIDL_FLAG_NO_ALIAS|0x00030461"),
+        ("31462", "CSIDL_FLAG_NO_ALIAS|0x00030462"),
+        ("31463", "CSIDL_FLAG_NO_ALIAS|0x00030463"),
+        ("31464", "CSIDL_FLAG_NO_ALIAS|0x00030464"),
+        ("31465", "CSIDL_FLAG_NO_ALIAS|0x00030465"),
+        ("31466", "CSIDL_FLAG_NO_ALIAS|0x00030466"),
+        ("31467", "CSIDL_FLAG_NO_ALIAS|0x00030467"),
+        ("31468", "CSIDL_FLAG_NO_ALIAS|0x00030468"),
+        ("31469", "CSIDL_FLAG_NO_ALIAS|0x00030469"),
+        ("31470", "CSIDL_FLAG_NO_ALIAS|0x00030470"),
+        ("31471", "CSIDL_FLAG_NO_ALIAS|0x00030471"),
+        ("31472", "CSIDL_FLAG_NO_ALIAS|0x00030472"),
+        ("31473", "CSIDL_FLAG_NO_ALIAS|0x00030473"),
+        ("31474", "CSIDL_FLAG_NO_ALIAS|0x00030474"),
+        ("31475", "CSIDL_FLAG_NO_ALIAS|0x00030475"),
+        ("31476", "CSIDL_FLAG_NO_ALIAS|0x00030476"),
+        ("31477", "CSIDL_FLAG_NO_ALIAS|0x00030477"),
+        ("31478", "CSIDL_FLAG_NO_ALIAS|0x00030478"),
+        ("31479", "CSIDL_FLAG_NO_ALIAS|0x00030479"),
+        ("31480", "CSIDL_FLAG_NO_ALIAS|0x00030480"),
+        ("31481", "CSIDL_FLAG_NO_ALIAS|0x00030481"),
+        ("31482", "CSIDL_FLAG_NO_ALIAS|0x00030482"),
+        ("31483", "CSIDL_FLAG_NO_ALIAS|0x00030483"),
+        ("31484", "CSIDL_FLAG_NO_ALIAS|0x00030484"),
+        ("31485", "CSIDL_FLAG_NO_ALIAS|0x00030485"),
+        ("31486", "CSIDL_FLAG_NO_ALIAS|0x00030486"),
+        ("31487", "CSIDL_FLAG_NO_ALIAS|0x00030487"),
+        ("31488", "CSIDL_FLAG_NO_ALIAS|0x00030488"),
+        ("31489", "CSIDL_FLAG_NO_ALIAS|0x00030489"),
+        ("31490", "CSIDL_FLAG_NO_ALIAS|0x00030490"),
+        ("31491", "CSIDL_FLAG_NO_ALIAS|0x00030491"),
+        ("31492", "CSIDL_FLAG_NO_ALIAS|0x00030492"),
+        ("31493", "CSIDL_FLAG_NO_ALIAS|0x00030493"),
+        ("31494", "CSIDL_FLAG_NO_ALIAS|0x00030494"),
+        ("31495", "CSIDL_FLAG_NO_ALIAS|0x00030495"),
+        ("31496", "CSIDL_FLAG_NO_ALIAS|0x00030496"),
+        ("31497", "CSIDL_FLAG_NO_ALIAS|0x00030497"),
+        ("31498", "CSIDL_FLAG_NO_ALIAS|0x00030498"),
+        ("31499", "CSIDL_FLAG_NO_ALIAS|0x00030499"),
+        ("31500", "CSIDL_FLAG_NO_ALIAS|0x00030500"),
+        ("31501", "CSIDL_FLAG_NO_ALIAS|0x00030501"),
+        ("31502", "CSIDL_FLAG_NO_ALIAS|0x00030502"),
+        ("31503", "CSIDL_FLAG_NO_ALIAS|0x00030503"),
+        ("31504", "CSIDL_FLAG_NO_ALIAS|0x00030504"),
+        ("31505", "CSIDL_FLAG_NO_ALIAS|0x00030505"),
+        ("31506", "CSIDL_FLAG_NO_ALIAS|0x00030506"),
+        ("31507", "CSIDL_FLAG_NO_ALIAS|0x00030507"),
+        ("31508", "CSIDL_FLAG_NO_ALIAS|0x00030508"),
+        ("31509", "CSIDL_FLAG_NO_ALIAS|0x00030509"),
+        ("31510", "CSIDL_FLAG_NO_ALIAS|0x00030510"),
+        ("31511", "CSIDL_FLAG_NO_ALIAS|0x00030511"),
+        ("31512", "CSIDL_FLAG_NO_ALIAS|0x00030512"),
+        ("31513", "CSIDL_FLAG_NO_ALIAS|0x00030513"),
+        ("31514", "CSIDL_FLAG_NO_ALIAS|0x00030514"),
+        ("31515", "CSIDL_FLAG_NO_ALIAS|0x00030515"),
+        ("31516", "CSIDL_FLAG_NO_ALIAS|0x00030516"),
+        ("31517", "CSIDL_FLAG_NO_ALIAS|0x00030517"),
+        ("31518", "CSIDL_FLAG_NO_ALIAS|0x00030518"),
+        ("31519", "CSIDL_FLAG_NO_ALIAS|0x00030519"),
+        ("31520", "CSIDL_FLAG_NO_ALIAS|0x00030520"),
+        ("31521", "CSIDL_FLAG_NO_ALIAS|0x00030521"),
+        ("31522", "CSIDL_FLAG_NO_ALIAS|0x00030522"),
+        ("31523", "CSIDL_FLAG_NO_ALIAS|0x00030523"),
+        ("31524", "CSIDL_FLAG_NO_ALIAS|0x00030524"),
+        ("31525", "CSIDL_FLAG_NO_ALIAS|0x00030525"),
+        ("31526", "CSIDL_FLAG_NO_ALIAS|0x00030526"),
+        ("31527", "CSIDL_FLAG_NO_ALIAS|0x00030527"),
+        ("31528", "CSIDL_FLAG_NO_ALIAS|0x00030528"),
+        ("31529", "CSIDL_FLAG_NO_ALIAS|0x00030529"),
+        ("31530", "CSIDL_FLAG_NO_ALIAS|0x00030530"),
+        ("31531", "CSIDL_FLAG_NO_ALIAS|0x00030531"),
+        ("31532", "CSIDL_FLAG_NO_ALIAS|0x00030532"),
+        ("31533", "CSIDL_FLAG_NO_ALIAS|0x00030533"),
+        ("31534", "CSIDL_FLAG_NO_ALIAS|0x00030534"),
+        ("31535", "CSIDL_FLAG_NO_ALIAS|0x00030535"),
+        ("31536", "CSIDL_FLAG_NO_ALIAS|0x00030536"),
+        ("31537", "CSIDL_FLAG_NO_ALIAS|0x00030537"),
+        ("31538", "CSIDL_FLAG_NO_ALIAS|0x00030538"),
+        ("31539", "CSIDL_FLAG_NO_ALIAS|0x00030539"),
+        ("31540", "CSIDL_FLAG_NO_ALIAS|0x00030540"),
+        ("31541", "CSIDL_FLAG_NO_ALIAS|0x00030541"),
+        ("31542", "CSIDL_FLAG_NO_ALIAS|0x00030542"),
+        ("31543", "CSIDL_FLAG_NO_ALIAS|0x00030543"),
+        ("31544", "CSIDL_FLAG_NO_ALIAS|0x00030544"),
+        ("31545", "CSIDL_FLAG_NO_ALIAS|0x00030545"),
+        ("31546", "CSIDL_FLAG_NO_ALIAS|0x00030546"),
+        ("31547", "CSIDL_FLAG_NO_ALIAS|0x00030547"),
+        ("31548", "CSIDL_FLAG_NO_ALIAS|0x00030548"),
+        ("31549", "CSIDL_FLAG_NO_ALIAS|0x00030549"),
+        ("31550", "CSIDL_FLAG_NO_ALIAS|0x00030550"),
+        ("31551", "CSIDL_FLAG_NO_ALIAS|0x00030551"),
+        ("31552", "CSIDL_FLAG_NO_ALIAS|0x00030552"),
+        ("31553", "CSIDL_FLAG_NO_ALIAS|0x00030553"),
+        ("31554", "CSIDL_FLAG_NO_ALIAS|0x00030554"),
+        ("31555", "CSIDL_FLAG_NO_ALIAS|0x00030555"),
+        ("31556", "CSIDL_FLAG_NO_ALIAS|0x00030556"),
+        ("31557", "CSIDL_FLAG_NO_ALIAS|0x00030557"),
+        ("31558", "CSIDL_FLAG_NO_ALIAS|0x00030558"),
+        ("31559", "CSIDL_FLAG_NO_ALIAS|0x00030559"),
+        ("31560", "CSIDL_FLAG_NO_ALIAS|0x00030560"),
+        ("31561", "CSIDL_FLAG_NO_ALIAS|0x00030561"),
+        ("31562", "CSIDL_FLAG_NO_ALIAS|0x00030562"),
+        ("31563", "CSIDL_FLAG_NO_ALIAS|0x00030563"),
+        ("31564", "CSIDL_FLAG_NO_ALIAS|0x00030564"),
+        ("31565", "CSIDL_FLAG_NO_ALIAS|0x00030565"),
+        ("31566", "CSIDL_FLAG_NO_ALIAS|0x00030566"),
+        ("31567", "CSIDL_FLAG_NO_ALIAS|0x00030567"),
+        ("31568", "CSIDL_FLAG_NO_ALIAS|0x00030568"),
+        ("31569", "CSIDL_FLAG_NO_ALIAS|0x00030569"),
+        ("31570", "CSIDL_FLAG_NO_ALIAS|0x00030570"),
+        ("31571", "CSIDL_FLAG_NO_ALIAS|0x00030571"),
+        ("31572", "CSIDL_FLAG_NO_ALIAS|0x00030572"),
+        ("31573", "CSIDL_FLAG_NO_ALIAS|0x00030573"),
+        ("31574", "CSIDL_FLAG_NO_ALIAS|0x00030574"),
+        ("31575", "CSIDL_FLAG_NO_ALIAS|0x00030575"),
+        ("31576", "CSIDL_FLAG_NO_ALIAS|0x00030576"),
+        ("31577", "CSIDL_FLAG_NO_ALIAS|0x00030577"),
+        ("31578", "CSIDL_FLAG_NO_ALIAS|0x00030578"),
+        ("31579", "CSIDL_FLAG_NO_ALIAS|0x00030579"),
+        ("31580", "CSIDL_FLAG_NO_ALIAS|0x00030580"),
+        ("31581", "CSIDL_FLAG_NO_ALIAS|0x00030581"),
+        ("31582", "CSIDL_FLAG_NO_ALIAS|0x00030582"),
+        ("31583", "CSIDL_FLAG_NO_ALIAS|0x00030583"),
+        ("31584", "CSIDL_FLAG_NO_ALIAS|0x00030584"),
+        ("31585", "CSIDL_FLAG_NO_ALIAS|0x00030585"),
+        ("31586", "CSIDL_FLAG_NO_ALIAS|0x00030586"),
+        ("31587", "CSIDL_FLAG_NO_ALIAS|0x00030587"),
+        ("31588", "CSIDL_FLAG_NO_ALIAS|0x00030588"),
+        ("31589", "CSIDL_FLAG_NO_ALIAS|0x00030589"),
+        ("31590", "CSIDL_FLAG_NO_ALIAS|0x00030590"),
+        ("31591", "CSIDL_FLAG_NO_ALIAS|0x00030591"),
+        ("31592", "CSIDL_FLAG_NO_ALIAS|0x00030592"),
+        ("31593", "CSIDL_FLAG_NO_ALIAS|0x00030593"),
+        ("31594", "CSIDL_FLAG_NO_ALIAS|0x00030594"),
+        ("31595", "CSIDL_FLAG_NO_ALIAS|0x00030595"),
+        ("31596", "CSIDL_FLAG_NO_ALIAS|0x00030596"),
+        ("31597", "CSIDL_FLAG_NO_ALIAS|0x00030597"),
+        ("31598", "CSIDL_FLAG_NO_ALIAS|0x00030598"),
+        ("31599", "CSIDL_FLAG_NO_ALIAS|0x00030599"),
+        ("31600", "CSIDL_FLAG_NO_ALIAS|0x00030600"),
+        ("31601", "CSIDL_FLAG_NO_ALIAS|0x00030601"),
+        ("31602", "CSIDL_FLAG_NO_ALIAS|0x00030602"),
+        ("31603", "CSIDL_FLAG_NO_ALIAS|0x00030603"),
+        ("31604", "CSIDL_FLAG_NO_ALIAS|0x00030604"),
+        ("31605", "CSIDL_FLAG_NO_ALIAS|0x00030605"),
+        ("31606", "CSIDL_FLAG_NO_ALIAS|0x00030606"),
+        ("31607", "CSIDL_FLAG_NO_ALIAS|0x00030607"),
+        ("31608", "CSIDL_FLAG_NO_ALIAS|0x00030608"),
+        ("31609", "CSIDL_FLAG_NO_ALIAS|0x00030609"),
+        ("31610", "CSIDL_FLAG_NO_ALIAS|0x00030610"),
+        ("31611", "CSIDL_FLAG_NO_ALIAS|0x00030611"),
+        ("31612", "CSIDL_FLAG_NO_ALIAS|0x00030612"),
+        ("31613", "CSIDL_FLAG_NO_ALIAS|0x00030613"),
+        ("31614", "CSIDL_FLAG_NO_ALIAS|0x00030614"),
+        ("31615", "CSIDL_FLAG_NO_ALIAS|0x00030615"),
+        ("31616", "CSIDL_FLAG_NO_ALIAS|0x00030616"),
+        ("31617", "CSIDL_FLAG_NO_ALIAS|0x00030617"),
+        ("31618", "CSIDL_FLAG_NO_ALIAS|0x00030618"),
+        ("31619", "CSIDL_FLAG_NO_ALIAS|0x00030619"),
+        ("31620", "CSIDL_FLAG_NO_ALIAS|0x00030620"),
+        ("31621", "CSIDL_FLAG_NO_ALIAS|0x00030621"),
+        ("31622", "CSIDL_FLAG_NO_ALIAS|0x00030622"),
+        ("31623", "CSIDL_FLAG_NO_ALIAS|0x00030623"),
+        ("31624", "CSIDL_FLAG_NO_ALIAS|0x00030624"),
+        ("31625", "CSIDL_FLAG_NO_ALIAS|0x00030625"),
+        ("31626", "CSIDL_FLAG_NO_ALIAS|0x00030626"),
+        ("31627", "CSIDL_FLAG_NO_ALIAS|0x00030627"),
+        ("31628", "CSIDL_FLAG_NO_ALIAS|0x00030628"),
+        ("31629", "CSIDL_FLAG_NO_ALIAS|0x00030629"),
+        ("31630", "CSIDL_FLAG_NO_ALIAS|0x00030630"),
+        ("31631", "CSIDL_FLAG_NO_ALIAS|0x00030631"),
+        ("31632", "CSIDL_FLAG_NO_ALIAS|0x00030632"),
+        ("31633", "CSIDL_FLAG_NO_ALIAS|0x00030633"),
+        ("31634", "CSIDL_FLAG_NO_ALIAS|0x00030634"),
+        ("31635", "CSIDL_FLAG_NO_ALIAS|0x00030635"),
+        ("31636", "CSIDL_FLAG_NO_ALIAS|0x00030636"),
+        ("31637", "CSIDL_FLAG_NO_ALIAS|0x00030637"),
+        ("31638", "CSIDL_FLAG_NO_ALIAS|0x00030638"),
+        ("31639", "CSIDL_FLAG_NO_ALIAS|0x00030639"),
+        ("31640", "CSIDL_FLAG_NO_ALIAS|0x00030640"),
+        ("31641", "CSIDL_FLAG_NO_ALIAS|0x00030641"),
+        ("31642", "CSIDL_FLAG_NO_ALIAS|0x00030642"),
+        ("31643", "CSIDL_FLAG_NO_ALIAS|0x00030643"),
+        ("31644", "CSIDL_FLAG_NO_ALIAS|0x00030644"),
+        ("31645", "CSIDL_FLAG_NO_ALIAS|0x00030645"),
+        ("31646", "CSIDL_FLAG_NO_ALIAS|0x00030646"),
+        ("31647", "CSIDL_FLAG_NO_ALIAS|0x00030647"),
+        ("31648", "CSIDL_FLAG_NO_ALIAS|0x00030648"),
+        ("31649", "CSIDL_FLAG_NO_ALIAS|0x00030649"),
+        ("31650", "CSIDL_FLAG_NO_ALIAS|0x00030650"),
+        ("31651", "CSIDL_FLAG_NO_ALIAS|0x00030651"),
+        ("31652", "CSIDL_FLAG_NO_ALIAS|0x00030652"),
+        ("31653", "CSIDL_FLAG_NO_ALIAS|0x00030653"),
+        ("31654", "CSIDL_FLAG_NO_ALIAS|0x00030654"),
+        ("31655", "CSIDL_FLAG_NO_ALIAS|0x00030655"),
+        ("31656", "CSIDL_FLAG_NO_ALIAS|0x00030656"),
+        ("31657", "CSIDL_FLAG_NO_ALIAS|0x00030657"),
+        ("31658", "CSIDL_FLAG_NO_ALIAS|0x00030658"),
+        ("31659", "CSIDL_FLAG_NO_ALIAS|0x00030659"),
+        ("31660", "CSIDL_FLAG_NO_ALIAS|0x00030660"),
+        ("31661", "CSIDL_FLAG_NO_ALIAS|0x00030661"),
+        ("31662", "CSIDL_FLAG_NO_ALIAS|0x00030662"),
+        ("31663", "CSIDL_FLAG_NO_ALIAS|0x00030663"),
+        ("31664", "CSIDL_FLAG_NO_ALIAS|0x00030664"),
+        ("31665", "CSIDL_FLAG_NO_ALIAS|0x00030665"),
+        ("31666", "CSIDL_FLAG_NO_ALIAS|0x00030666"),
+        ("31667", "CSIDL_FLAG_NO_ALIAS|0x00030667"),
+        ("31668", "CSIDL_FLAG_NO_ALIAS|0x00030668"),
+        ("31669", "CSIDL_FLAG_NO_ALIAS|0x00030669"),
+        ("31670", "CSIDL_FLAG_NO_ALIAS|0x00030670"),
+        ("31671", "CSIDL_FLAG_NO_ALIAS|0x00030671"),
+        ("31672", "CSIDL_FLAG_NO_ALIAS|0x00030672"),
+        ("31673", "CSIDL_FLAG_NO_ALIAS|0x00030673"),
+        ("31674", "CSIDL_FLAG_NO_ALIAS|0x00030674"),
+        ("31675", "CSIDL_FLAG_NO_ALIAS|0x00030675"),
+        ("31676", "CSIDL_FLAG_NO_ALIAS|0x00030676"),
+        ("31677", "CSIDL_FLAG_NO_ALIAS|0x00030677"),
+        ("31678", "CSIDL_FLAG_NO_ALIAS|0x00030678"),
+        ("31679", "CSIDL_FLAG_NO_ALIAS|0x00030679"),
+        ("31680", "CSIDL_FLAG_NO_ALIAS|0x00030680"),
+        ("31681", "CSIDL_FLAG_NO_ALIAS|0x00030681"),
+        ("31682", "CSIDL_FLAG_NO_ALIAS|0x00030682"),
+        ("31683", "CSIDL_FLAG_NO_ALIAS|0x00030683"),
+        ("31684", "CSIDL_FLAG_NO_ALIAS|0x00030684"),
+        ("31685", "CSIDL_FLAG_NO_ALIAS|0x00030685"),
+        ("31686", "CSIDL_FLAG_NO_ALIAS|0x00030686"),
+        ("31687", "CSIDL_FLAG_NO_ALIAS|0x00030687"),
+        ("31688", "CSIDL_FLAG_NO_ALIAS|0x00030688"),
+        ("31689", "CSIDL_FLAG_NO_ALIAS|0x00030689"),
+        ("31690", "CSIDL_FLAG_NO_ALIAS|0x00030690"),
+        ("31691", "CSIDL_FLAG_NO_ALIAS|0x00030691"),
+        ("31692", "CSIDL_FLAG_NO_ALIAS|0x00030692"),
+        ("31693", "CSIDL_FLAG_NO_ALIAS|0x00030693"),
+        ("31694", "CSIDL_FLAG_NO_ALIAS|0x00030694"),
+        ("31695", "CSIDL_FLAG_NO_ALIAS|0x00030695"),
+        ("31696", "CSIDL_FLAG_NO_ALIAS|0x00030696"),
+        ("31697", "CSIDL_FLAG_NO_ALIAS|0x00030697"),
+        ("31698", "CSIDL_FLAG_NO_ALIAS|0x00030698"),
+        ("31699", "CSIDL_FLAG_NO_ALIAS|0x00030699"),
+        ("31700", "CSIDL_FLAG_NO_ALIAS|0x00030700"),
+        ("31701", "CSIDL_FLAG_NO_ALIAS|0x00030701"),
+        ("31702", "CSIDL_FLAG_NO_ALIAS|0x00030702"),
+        ("31703", "CSIDL_FLAG_NO_ALIAS|0x00030703"),
+        ("31704", "CSIDL_FLAG_NO_ALIAS|0x00030704"),
+        ("31705", "CSIDL_FLAG_NO_ALIAS|0x00030705"),
+        ("31706", "CSIDL_FLAG_NO_ALIAS|0x00030706"),
+        ("31707", "CSIDL_FLAG_NO_ALIAS|0x00030707"),
+        ("31708", "CSIDL_FLAG_NO_ALIAS|0x00030708"),
+        ("31709", "CSIDL_FLAG_NO_ALIAS|0x00030709"),
+        ("31710", "CSIDL_FLAG_NO_ALIAS|0x00030710"),
+        ("31711", "CSIDL_FLAG_NO_ALIAS|0x00030711"),
+        ("31712", "CSIDL_FLAG_NO_ALIAS|0x00030712"),
+        ("31713", "CSIDL_FLAG_NO_ALIAS|0x00030713"),
+        ("31714", "CSIDL_FLAG_NO_ALIAS|0x00030714"),
+        ("31715", "CSIDL_FLAG_NO_ALIAS|0x00030715"),
+        ("31716", "CSIDL_FLAG_NO_ALIAS|0x00030716"),
+        ("31717", "CSIDL_FLAG_NO_ALIAS|0x00030717"),
+        ("31718", "CSIDL_FLAG_NO_ALIAS|0x00030718"),
+        ("31719", "CSIDL_FLAG_NO_ALIAS|0x00030719"),
+        ("31720", "CSIDL_FLAG_NO_ALIAS|0x00030720"),
+        ("31721", "CSIDL_FLAG_NO_ALIAS|0x00030721"),
+        ("31722", "CSIDL_FLAG_NO_ALIAS|0x00030722"),
+        ("31723", "CSIDL_FLAG_NO_ALIAS|0x00030723"),
+        ("31724", "CSIDL_FLAG_NO_ALIAS|0x00030724"),
+        ("31725", "CSIDL_FLAG_NO_ALIAS|0x00030725"),
+        ("31726", "CSIDL_FLAG_NO_ALIAS|0x00030726"),
+        ("31727", "CSIDL_FLAG_NO_ALIAS|0x00030727"),
+        ("31728", "CSIDL_FLAG_NO_ALIAS|0x00030728"),
+        ("31729", "CSIDL_FLAG_NO_ALIAS|0x00030729"),
+        ("31730", "CSIDL_FLAG_NO_ALIAS|0x00030730"),
+        ("31731", "CSIDL_FLAG_NO_ALIAS|0x00030731"),
+        ("31732", "CSIDL_FLAG_NO_ALIAS|0x00030732"),
+        ("31733", "CSIDL_FLAG_NO_ALIAS|0x00030733"),
+        ("31734", "CSIDL_FLAG_NO_ALIAS|0x00030734"),
+        ("31735", "CSIDL_FLAG_NO_ALIAS|0x00030735"),
+        ("31736", "CSIDL_FLAG_NO_ALIAS|0x00030736"),
+        ("31737", "CSIDL_FLAG_NO_ALIAS|0x00030737"),
+        ("31738", "CSIDL_FLAG_NO_ALIAS|0x00030738"),
+        ("31739", "CSIDL_FLAG_NO_ALIAS|0x00030739"),
+        ("31740", "CSIDL_FLAG_NO_ALIAS|0x00030740"),
+        ("31741", "CSIDL_FLAG_NO_ALIAS|0x00030741"),
+        ("31742", "CSIDL_FLAG_NO_ALIAS|0x00030742"),
+        ("31743", "CSIDL_FLAG_NO_ALIAS|0x00030743"),
+        ("31744", "CSIDL_FLAG_NO_ALIAS|0x00030744"),
+        ("31745", "CSIDL_FLAG_NO_ALIAS|0x00030745"),
+        ("31746", "CSIDL_FLAG_NO_ALIAS|0x00030746"),
+        ("31747", "CSIDL_FLAG_NO_ALIAS|0x00030747"),
+        ("31748", "CSIDL_FLAG_NO_ALIAS|0x00030748"),
+        ("31749", "CSIDL_FLAG_NO_ALIAS|0x00030749"),
+        ("31750", "CSIDL_FLAG_NO_ALIAS|0x00030750"),
+        ("31751", "CSIDL_FLAG_NO_ALIAS|0x00030751"),
+        ("31752", "CSIDL_FLAG_NO_ALIAS|0x00030752"),
+        ("31753", "CSIDL_FLAG_NO_ALIAS|0x00030753"),
+        ("31754", "CSIDL_FLAG_NO_ALIAS|0x00030754"),
+        ("31755", "CSIDL_FLAG_NO_ALIAS|0x00030755"),
+        ("31756", "CSIDL_FLAG_NO_ALIAS|0x00030756"),
+        ("31757", "CSIDL_FLAG_NO_ALIAS|0x00030757"),
+        ("31758", "CSIDL_FLAG_NO_ALIAS|0x00030758"),
+        ("31759", "CSIDL_FLAG_NO_ALIAS|0x00030759"),
+        ("31760", "CSIDL_FLAG_NO_ALIAS|0x00030760"),
+        ("31761", "CSIDL_FLAG_NO_ALIAS|0x00030761"),
+        ("31762", "CSIDL_FLAG_NO_ALIAS|0x00030762"),
+        ("31763", "CSIDL_FLAG_NO_ALIAS|0x00030763"),
+        ("31764", "CSIDL_FLAG_NO_ALIAS|0x00030764"),
+        ("31765", "CSIDL_FLAG_NO_ALIAS|0x00030765"),
+        ("31766", "CSIDL_FLAG_NO_ALIAS|0x00030766"),
+        ("31767", "CSIDL_FLAG_NO_ALIAS|0x00030767"),
+        ("31768", "CSIDL_FLAG_NO_ALIAS|0x00030768"),
+        ("31769", "CSIDL_FLAG_NO_ALIAS|0x00030769"),
+        ("31770", "CSIDL_FLAG_NO_ALIAS|0x00030770"),
+        ("31771", "CSIDL_FLAG_NO_ALIAS|0x00030771"),
+        ("31772", "CSIDL_FLAG_NO_ALIAS|0x00030772"),
+        ("31773", "CSIDL_FLAG_NO_ALIAS|0x00030773"),
+        ("31774", "CSIDL_FLAG_NO_ALIAS|0x00030774"),
+        ("31775", "CSIDL_FLAG_NO_ALIAS|0x00030775"),
+        ("31776", "CSIDL_FLAG_NO_ALIAS|0x00030776"),
+        ("31777", "CSIDL_FLAG_NO_ALIAS|0x00030777"),
+        ("31778", "CSIDL_FLAG_NO_ALIAS|0x00030778"),
+        ("31779", "CSIDL_FLAG_NO_ALIAS|0x00030779"),
+        ("31780", "CSIDL_FLAG_NO_ALIAS|0x00030780"),
+        ("31781", "CSIDL_FLAG_NO_ALIAS|0x00030781"),
+        ("31782", "CSIDL_FLAG_NO_ALIAS|0x00030782"),
+        ("31783", "CSIDL_FLAG_NO_ALIAS|0x00030783"),
+        ("31784", "CSIDL_FLAG_NO_ALIAS|0x00030784"),
+        ("31785", "CSIDL_FLAG_NO_ALIAS|0x00030785"),
+        ("31786", "CSIDL_FLAG_NO_ALIAS|0x00030786"),
+        ("31787", "CSIDL_FLAG_NO_ALIAS|0x00030787"),
+        ("31788", "CSIDL_FLAG_NO_ALIAS|0x00030788"),
+        ("31789", "CSIDL_FLAG_NO_ALIAS|0x00030789"),
+        ("31790", "CSIDL_FLAG_NO_ALIAS|0x00030790"),
+        ("31791", "CSIDL_FLAG_NO_ALIAS|0x00030791"),
+        ("31792", "CSIDL_FLAG_NO_ALIAS|0x00030792"),
+        ("31793", "CSIDL_FLAG_NO_ALIAS|0x00030793"),
+        ("31794", "CSIDL_FLAG_NO_ALIAS|0x00030794"),
+        ("31795", "CSIDL_FLAG_NO_ALIAS|0x00030795"),
+        ("31796", "CSIDL_FLAG_NO_ALIAS|0x00030796"),
+        ("31797", "CSIDL_FLAG_NO_ALIAS|0x00030797"),
+        ("31798", "CSIDL_FLAG_NO_ALIAS|0x00030798"),
+        ("31799", "CSIDL_FLAG_NO_ALIAS|0x00030799"),
+        ("31800", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030000"),
+        ("31801", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030001"),
+        ("31802", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030002"),
+        ("31803", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030003"),
+        ("31804", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030004"),
+        ("31805", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030005"),
+        ("31806", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030006"),
+        ("31807", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030007"),
+        ("31808", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030008"),
+        ("31809", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030009"),
+        ("31810", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030010"),
+        ("31811", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030011"),
+        ("31812", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030012"),
+        ("31813", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030013"),
+        ("31814", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030014"),
+        ("31815", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030015"),
+        ("31816", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030016"),
+        ("31817", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030017"),
+        ("31818", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030018"),
+        ("31819", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030019"),
+        ("31820", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030020"),
+        ("31821", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030021"),
+        ("31822", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030022"),
+        ("31823", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030023"),
+        ("31824", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030024"),
+        ("31825", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030025"),
+        ("31826", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030026"),
+        ("31827", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030027"),
+        ("31828", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030028"),
+        ("31829", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030029"),
+        ("31830", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030030"),
+        ("31831", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030031"),
+        ("31832", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030032"),
+        ("31833", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030033"),
+        ("31834", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030034"),
+        ("31835", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030035"),
+        ("31836", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030036"),
+        ("31837", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030037"),
+        ("31838", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030038"),
+        ("31839", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030039"),
+        ("31840", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030040"),
+        ("31841", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030041"),
+        ("31842", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030042"),
+        ("31843", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030043"),
+        ("31844", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030044"),
+        ("31845", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030045"),
+        ("31846", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030046"),
+        ("31847", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030047"),
+        ("31848", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030048"),
+        ("31849", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030049"),
+        ("31850", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030050"),
+        ("31851", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030051"),
+        ("31852", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030052"),
+        ("31853", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030053"),
+        ("31854", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030054"),
+        ("31855", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030055"),
+        ("31856", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030056"),
+        ("31857", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030057"),
+        ("31858", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030058"),
+        ("31859", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030059"),
+        ("31860", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030060"),
+        ("31861", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030061"),
+        ("31862", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030062"),
+        ("31863", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030063"),
+        ("31864", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030064"),
+        ("31865", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030065"),
+        ("31866", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030066"),
+        ("31867", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030067"),
+        ("31868", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030068"),
+        ("31869", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030069"),
+        ("31870", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030070"),
+        ("31871", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030071"),
+        ("31872", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030072"),
+        ("31873", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030073"),
+        ("31874", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030074"),
+        ("31875", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030075"),
+        ("31876", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030076"),
+        ("31877", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030077"),
+        ("31878", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030078"),
+        ("31879", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030079"),
+        ("31880", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030080"),
+        ("31881", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030081"),
+        ("31882", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030082"),
+        ("31883", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030083"),
+        ("31884", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030084"),
+        ("31885", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030085"),
+        ("31886", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030086"),
+        ("31887", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030087"),
+        ("31888", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030088"),
+        ("31889", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030089"),
+        ("31890", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030090"),
+        ("31891", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030091"),
+        ("31892", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030092"),
+        ("31893", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030093"),
+        ("31894", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030094"),
+        ("31895", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030095"),
+        ("31896", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030096"),
+        ("31897", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030097"),
+        ("31898", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030098"),
+        ("31899", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030099"),
+        ("31900", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030100"),
+        ("31901", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030101"),
+        ("31902", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030102"),
+        ("31903", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030103"),
+        ("31904", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030104"),
+        ("31905", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030105"),
+        ("31906", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030106"),
+        ("31907", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030107"),
+        ("31908", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030108"),
+        ("31909", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030109"),
+        ("31910", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030110"),
+        ("31911", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030111"),
+        ("31912", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030112"),
+        ("31913", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030113"),
+        ("31914", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030114"),
+        ("31915", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030115"),
+        ("31916", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030116"),
+        ("31917", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030117"),
+        ("31918", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030118"),
+        ("31919", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030119"),
+        ("31920", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030120"),
+        ("31921", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030121"),
+        ("31922", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030122"),
+        ("31923", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030123"),
+        ("31924", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030124"),
+        ("31925", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030125"),
+        ("31926", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030126"),
+        ("31927", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030127"),
+        ("31928", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030128"),
+        ("31929", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030129"),
+        ("31930", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030130"),
+        ("31931", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030131"),
+        ("31932", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030132"),
+        ("31933", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030133"),
+        ("31934", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030134"),
+        ("31935", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030135"),
+        ("31936", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030136"),
+        ("31937", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030137"),
+        ("31938", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030138"),
+        ("31939", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030139"),
+        ("31940", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030140"),
+        ("31941", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030141"),
+        ("31942", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030142"),
+        ("31943", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030143"),
+        ("31944", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030144"),
+        ("31945", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030145"),
+        ("31946", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030146"),
+        ("31947", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030147"),
+        ("31948", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030148"),
+        ("31949", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030149"),
+        ("31950", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030150"),
+        ("31951", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030151"),
+        ("31952", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030152"),
+        ("31953", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030153"),
+        ("31954", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030154"),
+        ("31955", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030155"),
+        ("31956", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030156"),
+        ("31957", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030157"),
+        ("31958", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030158"),
+        ("31959", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030159"),
+        ("31960", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030160"),
+        ("31961", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030161"),
+        ("31962", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030162"),
+        ("31963", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030163"),
+        ("31964", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030164"),
+        ("31965", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030165"),
+        ("31966", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030166"),
+        ("31967", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030167"),
+        ("31968", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030168"),
+        ("31969", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030169"),
+        ("31970", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030170"),
+        ("31971", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030171"),
+        ("31972", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030172"),
+        ("31973", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030173"),
+        ("31974", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030174"),
+        ("31975", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030175"),
+        ("31976", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030176"),
+        ("31977", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030177"),
+        ("31978", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030178"),
+        ("31979", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030179"),
+        ("31980", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030180"),
+        ("31981", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030181"),
+        ("31982", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030182"),
+        ("31983", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030183"),
+        ("31984", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030184"),
+        ("31985", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030185"),
+        ("31986", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030186"),
+        ("31987", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030187"),
+        ("31988", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030188"),
+        ("31989", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030189"),
+        ("31990", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030190"),
+        ("31991", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030191"),
+        ("31992", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030192"),
+        ("31993", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030193"),
+        ("31994", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030194"),
+        ("31995", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030195"),
+        ("31996", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030196"),
+        ("31997", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030197"),
+        ("31998", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030198"),
+        ("31999", "CSIDL_FLAG_PER_USER_INIT|CSIDL_FLAG_NO_ALIAS|0x00030199"),
+        ("32000", "CSIDL_FLAG_DONT_UNEXPAND|0x00030000"),
+        ("32001", "CSIDL_FLAG_DONT_UNEXPAND|0x00030001"),
+        ("32002", "CSIDL_FLAG_DONT_UNEXPAND|0x00030002"),
+        ("32003", "CSIDL_FLAG_DONT_UNEXPAND|0x00030003"),
+        ("32004", "CSIDL_FLAG_DONT_UNEXPAND|0x00030004"),
+        ("32005", "CSIDL_FLAG_DONT_UNEXPAND|0x00030005"),
+        ("32006", "CSIDL_FLAG_DONT_UNEXPAND|0x00030006"),
+        ("32007", "CSIDL_FLAG_DONT_UNEXPAND|0x00030007"),
+        ("32008", "CSIDL_FLAG_DONT_UNEXPAND|0x00030008"),
+        ("32009", "CSIDL_FLAG_DONT_UNEXPAND|0x00030009"),
+        ("32010", "CSIDL_FLAG_DONT_UNEXPAND|0x00030010"),
+        ("32011", "CSIDL_FLAG_DONT_UNEXPAND|0x00030011"),
+        ("32012", "CSIDL_FLAG_DONT_UNEXPAND|0x00030012"),
+        ("32013", "CSIDL_FLAG_DONT_UNEXPAND|0x00030013"),
+        ("32014", "CSIDL_FLAG_DONT_UNEXPAND|0x00030014"),
+        ("32015", "CSIDL_FLAG_DONT_UNEXPAND|0x00030015"),
+        ("32016", "CSIDL_FLAG_DONT_UNEXPAND|0x00030016"),
+        ("32017", "CSIDL_FLAG_DONT_UNEXPAND|0x00030017"),
+        ("32018", "CSIDL_FLAG_DONT_UNEXPAND|0x00030018"),
+        ("32019", "CSIDL_FLAG_DONT_UNEXPAND|0x00030019"),
+        ("32020", "CSIDL_FLAG_DONT_UNEXPAND|0x00030020"),
+        ("32021", "CSIDL_FLAG_DONT_UNEXPAND|0x00030021"),
+        ("32022", "CSIDL_FLAG_DONT_UNEXPAND|0x00030022"),
+        ("32023", "CSIDL_FLAG_DONT_UNEXPAND|0x00030023"),
+        ("32024", "CSIDL_FLAG_DONT_UNEXPAND|0x00030024"),
+        ("32025", "CSIDL_FLAG_DONT_UNEXPAND|0x00030025"),
+        ("32026", "CSIDL_FLAG_DONT_UNEXPAND|0x00030026"),
+        ("32027", "CSIDL_FLAG_DONT_UNEXPAND|0x00030027"),
+        ("32028", "CSIDL_FLAG_DONT_UNEXPAND|0x00030028"),
+        ("32029", "CSIDL_FLAG_DONT_UNEXPAND|0x00030029"),
+        ("32030", "CSIDL_FLAG_DONT_UNEXPAND|0x00030030"),
+        ("32031", "CSIDL_FLAG_DONT_UNEXPAND|0x00030031"),
+        ("32032", "CSIDL_FLAG_DONT_UNEXPAND|0x00030032"),
+        ("32033", "CSIDL_FLAG_DONT_UNEXPAND|0x00030033"),
+        ("32034", "CSIDL_FLAG_DONT_UNEXPAND|0x00030034"),
+        ("32035", "CSIDL_FLAG_DONT_UNEXPAND|0x00030035"),
+        ("32036", "CSIDL_FLAG_DONT_UNEXPAND|0x00030036"),
+        ("32037", "CSIDL_FLAG_DONT_UNEXPAND|0x00030037"),
+        ("32038", "CSIDL_FLAG_DONT_UNEXPAND|0x00030038"),
+        ("32039", "CSIDL_FLAG_DONT_UNEXPAND|0x00030039"),
+        ("32040", "CSIDL_FLAG_DONT_UNEXPAND|0x00030040"),
+        ("32041", "CSIDL_FLAG_DONT_UNEXPAND|0x00030041"),
+        ("32042", "CSIDL_FLAG_DONT_UNEXPAND|0x00030042"),
+        ("32043", "CSIDL_FLAG_DONT_UNEXPAND|0x00030043"),
+        ("32044", "CSIDL_FLAG_DONT_UNEXPAND|0x00030044"),
+        ("32045", "CSIDL_FLAG_DONT_UNEXPAND|0x00030045"),
+        ("32046", "CSIDL_FLAG_DONT_UNEXPAND|0x00030046"),
+        ("32047", "CSIDL_FLAG_DONT_UNEXPAND|0x00030047"),
+        ("32048", "CSIDL_FLAG_DONT_UNEXPAND|0x00030048"),
+        ("32049", "CSIDL_FLAG_DONT_UNEXPAND|0x00030049"),
+        ("32050", "CSIDL_FLAG_DONT_UNEXPAND|0x00030050"),
+        ("32051", "CSIDL_FLAG_DONT_UNEXPAND|0x00030051"),
+        ("32052", "CSIDL_FLAG_DONT_UNEXPAND|0x00030052"),
+        ("32053", "CSIDL_FLAG_DONT_UNEXPAND|0x00030053"),
+        ("32054", "CSIDL_FLAG_DONT_UNEXPAND|0x00030054"),
+        ("32055", "CSIDL_FLAG_DONT_UNEXPAND|0x00030055"),
+        ("32056", "CSIDL_FLAG_DONT_UNEXPAND|0x00030056"),
+        ("32057", "CSIDL_FLAG_DONT_UNEXPAND|0x00030057"),
+        ("32058", "CSIDL_FLAG_DONT_UNEXPAND|0x00030058"),
+        ("32059", "CSIDL_FLAG_DONT_UNEXPAND|0x00030059"),
+        ("32060", "CSIDL_FLAG_DONT_UNEXPAND|0x00030060"),
+        ("32061", "CSIDL_FLAG_DONT_UNEXPAND|0x00030061"),
+        ("32062", "CSIDL_FLAG_DONT_UNEXPAND|0x00030062"),
+        ("32063", "CSIDL_FLAG_DONT_UNEXPAND|0x00030063"),
+        ("32064", "CSIDL_FLAG_DONT_UNEXPAND|0x00030064"),
+        ("32065", "CSIDL_FLAG_DONT_UNEXPAND|0x00030065"),
+        ("32066", "CSIDL_FLAG_DONT_UNEXPAND|0x00030066"),
+        ("32067", "CSIDL_FLAG_DONT_UNEXPAND|0x00030067"),
+        ("32068", "CSIDL_FLAG_DONT_UNEXPAND|0x00030068"),
+        ("32069", "CSIDL_FLAG_DONT_UNEXPAND|0x00030069"),
+        ("32070", "CSIDL_FLAG_DONT_UNEXPAND|0x00030070"),
+        ("32071", "CSIDL_FLAG_DONT_UNEXPAND|0x00030071"),
+        ("32072", "CSIDL_FLAG_DONT_UNEXPAND|0x00030072"),
+        ("32073", "CSIDL_FLAG_DONT_UNEXPAND|0x00030073"),
+        ("32074", "CSIDL_FLAG_DONT_UNEXPAND|0x00030074"),
+        ("32075", "CSIDL_FLAG_DONT_UNEXPAND|0x00030075"),
+        ("32076", "CSIDL_FLAG_DONT_UNEXPAND|0x00030076"),
+        ("32077", "CSIDL_FLAG_DONT_UNEXPAND|0x00030077"),
+        ("32078", "CSIDL_FLAG_DONT_UNEXPAND|0x00030078"),
+        ("32079", "CSIDL_FLAG_DONT_UNEXPAND|0x00030079"),
+        ("32080", "CSIDL_FLAG_DONT_UNEXPAND|0x00030080"),
+        ("32081", "CSIDL_FLAG_DONT_UNEXPAND|0x00030081"),
+        ("32082", "CSIDL_FLAG_DONT_UNEXPAND|0x00030082"),
+        ("32083", "CSIDL_FLAG_DONT_UNEXPAND|0x00030083"),
+        ("32084", "CSIDL_FLAG_DONT_UNEXPAND|0x00030084"),
+        ("32085", "CSIDL_FLAG_DONT_UNEXPAND|0x00030085"),
+        ("32086", "CSIDL_FLAG_DONT_UNEXPAND|0x00030086"),
+        ("32087", "CSIDL_FLAG_DONT_UNEXPAND|0x00030087"),
+        ("32088", "CSIDL_FLAG_DONT_UNEXPAND|0x00030088"),
+        ("32089", "CSIDL_FLAG_DONT_UNEXPAND|0x00030089"),
+        ("32090", "CSIDL_FLAG_DONT_UNEXPAND|0x00030090"),
+        ("32091", "CSIDL_FLAG_DONT_UNEXPAND|0x00030091"),
+        ("32092", "CSIDL_FLAG_DONT_UNEXPAND|0x00030092"),
+        ("32093", "CSIDL_FLAG_DONT_UNEXPAND|0x00030093"),
+        ("32094", "CSIDL_FLAG_DONT_UNEXPAND|0x00030094"),
+        ("32095", "CSIDL_FLAG_DONT_UNEXPAND|0x00030095"),
+        ("32096", "CSIDL_FLAG_DONT_UNEXPAND|0x00030096"),
+        ("32097", "CSIDL_FLAG_DONT_UNEXPAND|0x00030097"),
+        ("32098", "CSIDL_FLAG_DONT_UNEXPAND|0x00030098"),
+        ("32099", "CSIDL_FLAG_DONT_UNEXPAND|0x00030099"),
+        ("32100", "CSIDL_FLAG_DONT_UNEXPAND|0x00030100"),
+        ("32101", "CSIDL_FLAG_DONT_UNEXPAND|0x00030101"),
+        ("32102", "CSIDL_FLAG_DONT_UNEXPAND|0x00030102"),
+        ("32103", "CSIDL_FLAG_DONT_UNEXPAND|0x00030103"),
+        ("32104", "CSIDL_FLAG_DONT_UNEXPAND|0x00030104"),
+        ("32105", "CSIDL_FLAG_DONT_UNEXPAND|0x00030105"),
+        ("32106", "CSIDL_FLAG_DONT_UNEXPAND|0x00030106"),
+        ("32107", "CSIDL_FLAG_DONT_UNEXPAND|0x00030107"),
+        ("32108", "CSIDL_FLAG_DONT_UNEXPAND|0x00030108"),
+        ("32109", "CSIDL_FLAG_DONT_UNEXPAND|0x00030109"),
+        ("32110", "CSIDL_FLAG_DONT_UNEXPAND|0x00030110"),
+        ("32111", "CSIDL_FLAG_DONT_UNEXPAND|0x00030111"),
+        ("32112", "CSIDL_FLAG_DONT_UNEXPAND|0x00030112"),
+        ("32113", "CSIDL_FLAG_DONT_UNEXPAND|0x00030113"),
+        ("32114", "CSIDL_FLAG_DONT_UNEXPAND|0x00030114"),
+        ("32115", "CSIDL_FLAG_DONT_UNEXPAND|0x00030115"),
+        ("32116", "CSIDL_FLAG_DONT_UNEXPAND|0x00030116"),
+        ("32117", "CSIDL_FLAG_DONT_UNEXPAND|0x00030117"),
+        ("32118", "CSIDL_FLAG_DONT_UNEXPAND|0x00030118"),
+        ("32119", "CSIDL_FLAG_DONT_UNEXPAND|0x00030119"),
+        ("32120", "CSIDL_FLAG_DONT_UNEXPAND|0x00030120"),
+        ("32121", "CSIDL_FLAG_DONT_UNEXPAND|0x00030121"),
+        ("32122", "CSIDL_FLAG_DONT_UNEXPAND|0x00030122"),
+        ("32123", "CSIDL_FLAG_DONT_UNEXPAND|0x00030123"),
+        ("32124", "CSIDL_FLAG_DONT_UNEXPAND|0x00030124"),
+        ("32125", "CSIDL_FLAG_DONT_UNEXPAND|0x00030125"),
+        ("32126", "CSIDL_FLAG_DONT_UNEXPAND|0x00030126"),
+        ("32127", "CSIDL_FLAG_DONT_UNEXPAND|0x00030127"),
+        ("32128", "CSIDL_FLAG_DONT_UNEXPAND|0x00030128"),
+        ("32129", "CSIDL_FLAG_DONT_UNEXPAND|0x00030129"),
+        ("32130", "CSIDL_FLAG_DONT_UNEXPAND|0x00030130"),
+        ("32131", "CSIDL_FLAG_DONT_UNEXPAND|0x00030131"),
+        ("32132", "CSIDL_FLAG_DONT_UNEXPAND|0x00030132"),
+        ("32133", "CSIDL_FLAG_DONT_UNEXPAND|0x00030133"),
+        ("32134", "CSIDL_FLAG_DONT_UNEXPAND|0x00030134"),
+        ("32135", "CSIDL_FLAG_DONT_UNEXPAND|0x00030135"),
+        ("32136", "CSIDL_FLAG_DONT_UNEXPAND|0x00030136"),
+        ("32137", "CSIDL_FLAG_DONT_UNEXPAND|0x00030137"),
+        ("32138", "CSIDL_FLAG_DONT_UNEXPAND|0x00030138"),
+        ("32139", "CSIDL_FLAG_DONT_UNEXPAND|0x00030139"),
+        ("32140", "CSIDL_FLAG_DONT_UNEXPAND|0x00030140"),
+        ("32141", "CSIDL_FLAG_DONT_UNEXPAND|0x00030141"),
+        ("32142", "CSIDL_FLAG_DONT_UNEXPAND|0x00030142"),
+        ("32143", "CSIDL_FLAG_DONT_UNEXPAND|0x00030143"),
+        ("32144", "CSIDL_FLAG_DONT_UNEXPAND|0x00030144"),
+        ("32145", "CSIDL_FLAG_DONT_UNEXPAND|0x00030145"),
+        ("32146", "CSIDL_FLAG_DONT_UNEXPAND|0x00030146"),
+        ("32147", "CSIDL_FLAG_DONT_UNEXPAND|0x00030147"),
+        ("32148", "CSIDL_FLAG_DONT_UNEXPAND|0x00030148"),
+        ("32149", "CSIDL_FLAG_DONT_UNEXPAND|0x00030149"),
+        ("32150", "CSIDL_FLAG_DONT_UNEXPAND|0x00030150"),
+        ("32151", "CSIDL_FLAG_DONT_UNEXPAND|0x00030151"),
+        ("32152", "CSIDL_FLAG_DONT_UNEXPAND|0x00030152"),
+        ("32153", "CSIDL_FLAG_DONT_UNEXPAND|0x00030153"),
+        ("32154", "CSIDL_FLAG_DONT_UNEXPAND|0x00030154"),
+        ("32155", "CSIDL_FLAG_DONT_UNEXPAND|0x00030155"),
+        ("32156", "CSIDL_FLAG_DONT_UNEXPAND|0x00030156"),
+        ("32157", "CSIDL_FLAG_DONT_UNEXPAND|0x00030157"),
+        ("32158", "CSIDL_FLAG_DONT_UNEXPAND|0x00030158"),
+        ("32159", "CSIDL_FLAG_DONT_UNEXPAND|0x00030159"),
+        ("32160", "CSIDL_FLAG_DONT_UNEXPAND|0x00030160"),
+        ("32161", "CSIDL_FLAG_DONT_UNEXPAND|0x00030161"),
+        ("32162", "CSIDL_FLAG_DONT_UNEXPAND|0x00030162"),
+        ("32163", "CSIDL_FLAG_DONT_UNEXPAND|0x00030163"),
+        ("32164", "CSIDL_FLAG_DONT_UNEXPAND|0x00030164"),
+        ("32165", "CSIDL_FLAG_DONT_UNEXPAND|0x00030165"),
+        ("32166", "CSIDL_FLAG_DONT_UNEXPAND|0x00030166"),
+        ("32167", "CSIDL_FLAG_DONT_UNEXPAND|0x00030167"),
+        ("32168", "CSIDL_FLAG_DONT_UNEXPAND|0x00030168"),
+        ("32169", "CSIDL_FLAG_DONT_UNEXPAND|0x00030169"),
+        ("32170", "CSIDL_FLAG_DONT_UNEXPAND|0x00030170"),
+        ("32171", "CSIDL_FLAG_DONT_UNEXPAND|0x00030171"),
+        ("32172", "CSIDL_FLAG_DONT_UNEXPAND|0x00030172"),
+        ("32173", "CSIDL_FLAG_DONT_UNEXPAND|0x00030173"),
+        ("32174", "CSIDL_FLAG_DONT_UNEXPAND|0x00030174"),
+        ("32175", "CSIDL_FLAG_DONT_UNEXPAND|0x00030175"),
+        ("32176", "CSIDL_FLAG_DONT_UNEXPAND|0x00030176"),
+        ("32177", "CSIDL_FLAG_DONT_UNEXPAND|0x00030177"),
+        ("32178", "CSIDL_FLAG_DONT_UNEXPAND|0x00030178"),
+        ("32179", "CSIDL_FLAG_DONT_UNEXPAND|0x00030179"),
+        ("32180", "CSIDL_FLAG_DONT_UNEXPAND|0x00030180"),
+        ("32181", "CSIDL_FLAG_DONT_UNEXPAND|0x00030181"),
+        ("32182", "CSIDL_FLAG_DONT_UNEXPAND|0x00030182"),
+        ("32183", "CSIDL_FLAG_DONT_UNEXPAND|0x00030183"),
+        ("32184", "CSIDL_FLAG_DONT_UNEXPAND|0x00030184"),
+        ("32185", "CSIDL_FLAG_DONT_UNEXPAND|0x00030185"),
+        ("32186", "CSIDL_FLAG_DONT_UNEXPAND|0x00030186"),
+        ("32187", "CSIDL_FLAG_DONT_UNEXPAND|0x00030187"),
+        ("32188", "CSIDL_FLAG_DONT_UNEXPAND|0x00030188"),
+        ("32189", "CSIDL_FLAG_DONT_UNEXPAND|0x00030189"),
+        ("32190", "CSIDL_FLAG_DONT_UNEXPAND|0x00030190"),
+        ("32191", "CSIDL_FLAG_DONT_UNEXPAND|0x00030191"),
+        ("32192", "CSIDL_FLAG_DONT_UNEXPAND|0x00030192"),
+        ("32193", "CSIDL_FLAG_DONT_UNEXPAND|0x00030193"),
+        ("32194", "CSIDL_FLAG_DONT_UNEXPAND|0x00030194"),
+        ("32195", "CSIDL_FLAG_DONT_UNEXPAND|0x00030195"),
+        ("32196", "CSIDL_FLAG_DONT_UNEXPAND|0x00030196"),
+        ("32197", "CSIDL_FLAG_DONT_UNEXPAND|0x00030197"),
+        ("32198", "CSIDL_FLAG_DONT_UNEXPAND|0x00030198"),
+        ("32199", "CSIDL_FLAG_DONT_UNEXPAND|0x00030199"),
+        ("32200", "CSIDL_FLAG_DONT_UNEXPAND|0x00030200"),
+        ("32201", "CSIDL_FLAG_DONT_UNEXPAND|0x00030201"),
+        ("32202", "CSIDL_FLAG_DONT_UNEXPAND|0x00030202"),
+        ("32203", "CSIDL_FLAG_DONT_UNEXPAND|0x00030203"),
+        ("32204", "CSIDL_FLAG_DONT_UNEXPAND|0x00030204"),
+        ("32205", "CSIDL_FLAG_DONT_UNEXPAND|0x00030205"),
+        ("32206", "CSIDL_FLAG_DONT_UNEXPAND|0x00030206"),
+        ("32207", "CSIDL_FLAG_DONT_UNEXPAND|0x00030207"),
+        ("32208", "CSIDL_FLAG_DONT_UNEXPAND|0x00030208"),
+        ("32209", "CSIDL_FLAG_DONT_UNEXPAND|0x00030209"),
+        ("32210", "CSIDL_FLAG_DONT_UNEXPAND|0x00030210"),
+        ("32211", "CSIDL_FLAG_DONT_UNEXPAND|0x00030211"),
+        ("32212", "CSIDL_FLAG_DONT_UNEXPAND|0x00030212"),
+        ("32213", "CSIDL_FLAG_DONT_UNEXPAND|0x00030213"),
+        ("32214", "CSIDL_FLAG_DONT_UNEXPAND|0x00030214"),
+        ("32215", "CSIDL_FLAG_DONT_UNEXPAND|0x00030215"),
+        ("32216", "CSIDL_FLAG_DONT_UNEXPAND|0x00030216"),
+        ("32217", "CSIDL_FLAG_DONT_UNEXPAND|0x00030217"),
+        ("32218", "CSIDL_FLAG_DONT_UNEXPAND|0x00030218"),
+        ("32219", "CSIDL_FLAG_DONT_UNEXPAND|0x00030219"),
+        ("32220", "CSIDL_FLAG_DONT_UNEXPAND|0x00030220"),
+        ("32221", "CSIDL_FLAG_DONT_UNEXPAND|0x00030221"),
+        ("32222", "CSIDL_FLAG_DONT_UNEXPAND|0x00030222"),
+        ("32223", "CSIDL_FLAG_DONT_UNEXPAND|0x00030223"),
+        ("32224", "CSIDL_FLAG_DONT_UNEXPAND|0x00030224"),
+        ("32225", "CSIDL_FLAG_DONT_UNEXPAND|0x00030225"),
+        ("32226", "CSIDL_FLAG_DONT_UNEXPAND|0x00030226"),
+        ("32227", "CSIDL_FLAG_DONT_UNEXPAND|0x00030227"),
+        ("32228", "CSIDL_FLAG_DONT_UNEXPAND|0x00030228"),
+        ("32229", "CSIDL_FLAG_DONT_UNEXPAND|0x00030229"),
+        ("32230", "CSIDL_FLAG_DONT_UNEXPAND|0x00030230"),
+        ("32231", "CSIDL_FLAG_DONT_UNEXPAND|0x00030231"),
+        ("32232", "CSIDL_FLAG_DONT_UNEXPAND|0x00030232"),
+        ("32233", "CSIDL_FLAG_DONT_UNEXPAND|0x00030233"),
+        ("32234", "CSIDL_FLAG_DONT_UNEXPAND|0x00030234"),
+        ("32235", "CSIDL_FLAG_DONT_UNEXPAND|0x00030235"),
+        ("32236", "CSIDL_FLAG_DONT_UNEXPAND|0x00030236"),
+        ("32237", "CSIDL_FLAG_DONT_UNEXPAND|0x00030237"),
+        ("32238", "CSIDL_FLAG_DONT_UNEXPAND|0x00030238"),
+        ("32239", "CSIDL_FLAG_DONT_UNEXPAND|0x00030239"),
+        ("32240", "CSIDL_FLAG_DONT_UNEXPAND|0x00030240"),
+        ("32241", "CSIDL_FLAG_DONT_UNEXPAND|0x00030241"),
+        ("32242", "CSIDL_FLAG_DONT_UNEXPAND|0x00030242"),
+        ("32243", "CSIDL_FLAG_DONT_UNEXPAND|0x00030243"),
+        ("32244", "CSIDL_FLAG_DONT_UNEXPAND|0x00030244"),
+        ("32245", "CSIDL_FLAG_DONT_UNEXPAND|0x00030245"),
+        ("32246", "CSIDL_FLAG_DONT_UNEXPAND|0x00030246"),
+        ("32247", "CSIDL_FLAG_DONT_UNEXPAND|0x00030247"),
+        ("32248", "CSIDL_FLAG_DONT_UNEXPAND|0x00030248"),
+        ("32249", "CSIDL_FLAG_DONT_UNEXPAND|0x00030249"),
+        ("32250", "CSIDL_FLAG_DONT_UNEXPAND|0x00030250"),
+        ("32251", "CSIDL_FLAG_DONT_UNEXPAND|0x00030251"),
+        ("32252", "CSIDL_FLAG_DONT_UNEXPAND|0x00030252"),
+        ("32253", "CSIDL_FLAG_DONT_UNEXPAND|0x00030253"),
+        ("32254", "CSIDL_FLAG_DONT_UNEXPAND|0x00030254"),
+        ("32255", "CSIDL_FLAG_DONT_UNEXPAND|0x00030255"),
+        ("32256", "CSIDL_FLAG_DONT_UNEXPAND|0x00030256"),
+        ("32257", "CSIDL_FLAG_DONT_UNEXPAND|0x00030257"),
+        ("32258", "CSIDL_FLAG_DONT_UNEXPAND|0x00030258"),
+        ("32259", "CSIDL_FLAG_DONT_UNEXPAND|0x00030259"),
+        ("32260", "CSIDL_FLAG_DONT_UNEXPAND|0x00030260"),
+        ("32261", "CSIDL_FLAG_DONT_UNEXPAND|0x00030261"),
+        ("32262", "CSIDL_FLAG_DONT_UNEXPAND|0x00030262"),
+        ("32263", "CSIDL_FLAG_DONT_UNEXPAND|0x00030263"),
+        ("32264", "CSIDL_FLAG_DONT_UNEXPAND|0x00030264"),
+        ("32265", "CSIDL_FLAG_DONT_UNEXPAND|0x00030265"),
+        ("32266", "CSIDL_FLAG_DONT_UNEXPAND|0x00030266"),
+        ("32267", "CSIDL_FLAG_DONT_UNEXPAND|0x00030267"),
+        ("32268", "CSIDL_FLAG_DONT_UNEXPAND|0x00030268"),
+        ("32269", "CSIDL_FLAG_DONT_UNEXPAND|0x00030269"),
+        ("32270", "CSIDL_FLAG_DONT_UNEXPAND|0x00030270"),
+        ("32271", "CSIDL_FLAG_DONT_UNEXPAND|0x00030271"),
+        ("32272", "CSIDL_FLAG_DONT_UNEXPAND|0x00030272"),
+        ("32273", "CSIDL_FLAG_DONT_UNEXPAND|0x00030273"),
+        ("32274", "CSIDL_FLAG_DONT_UNEXPAND|0x00030274"),
+        ("32275", "CSIDL_FLAG_DONT_UNEXPAND|0x00030275"),
+        ("32276", "CSIDL_FLAG_DONT_UNEXPAND|0x00030276"),
+        ("32277", "CSIDL_FLAG_DONT_UNEXPAND|0x00030277"),
+        ("32278", "CSIDL_FLAG_DONT_UNEXPAND|0x00030278"),
+        ("32279", "CSIDL_FLAG_DONT_UNEXPAND|0x00030279"),
+        ("32280", "CSIDL_FLAG_DONT_UNEXPAND|0x00030280"),
+        ("32281", "CSIDL_FLAG_DONT_UNEXPAND|0x00030281"),
+        ("32282", "CSIDL_FLAG_DONT_UNEXPAND|0x00030282"),
+        ("32283", "CSIDL_FLAG_DONT_UNEXPAND|0x00030283"),
+        ("32284", "CSIDL_FLAG_DONT_UNEXPAND|0x00030284"),
+        ("32285", "CSIDL_FLAG_DONT_UNEXPAND|0x00030285"),
+        ("32286", "CSIDL_FLAG_DONT_UNEXPAND|0x00030286"),
+        ("32287", "CSIDL_FLAG_DONT_UNEXPAND|0x00030287"),
+        ("32288", "CSIDL_FLAG_DONT_UNEXPAND|0x00030288"),
+        ("32289", "CSIDL_FLAG_DONT_UNEXPAND|0x00030289"),
+        ("32290", "CSIDL_FLAG_DONT_UNEXPAND|0x00030290"),
+        ("32291", "CSIDL_FLAG_DONT_UNEXPAND|0x00030291"),
+        ("32292", "CSIDL_FLAG_DONT_UNEXPAND|0x00030292"),
+        ("32293", "CSIDL_FLAG_DONT_UNEXPAND|0x00030293"),
+        ("32294", "CSIDL_FLAG_DONT_UNEXPAND|0x00030294"),
+        ("32295", "CSIDL_FLAG_DONT_UNEXPAND|0x00030295"),
+        ("32296", "CSIDL_FLAG_DONT_UNEXPAND|0x00030296"),
+        ("32297", "CSIDL_FLAG_DONT_UNEXPAND|0x00030297"),
+        ("32298", "CSIDL_FLAG_DONT_UNEXPAND|0x00030298"),
+        ("32299", "CSIDL_FLAG_DONT_UNEXPAND|0x00030299"),
+        ("32300", "CSIDL_FLAG_DONT_UNEXPAND|0x00030300"),
+        ("32301", "CSIDL_FLAG_DONT_UNEXPAND|0x00030301"),
+        ("32302", "CSIDL_FLAG_DONT_UNEXPAND|0x00030302"),
+        ("32303", "CSIDL_FLAG_DONT_UNEXPAND|0x00030303"),
+        ("32304", "CSIDL_FLAG_DONT_UNEXPAND|0x00030304"),
+        ("32305", "CSIDL_FLAG_DONT_UNEXPAND|0x00030305"),
+        ("32306", "CSIDL_FLAG_DONT_UNEXPAND|0x00030306"),
+        ("32307", "CSIDL_FLAG_DONT_UNEXPAND|0x00030307"),
+        ("32308", "CSIDL_FLAG_DONT_UNEXPAND|0x00030308"),
+        ("32309", "CSIDL_FLAG_DONT_UNEXPAND|0x00030309"),
+        ("32310", "CSIDL_FLAG_DONT_UNEXPAND|0x00030310"),
+        ("32311", "CSIDL_FLAG_DONT_UNEXPAND|0x00030311"),
+        ("32312", "CSIDL_FLAG_DONT_UNEXPAND|0x00030312"),
+        ("32313", "CSIDL_FLAG_DONT_UNEXPAND|0x00030313"),
+        ("32314", "CSIDL_FLAG_DONT_UNEXPAND|0x00030314"),
+        ("32315", "CSIDL_FLAG_DONT_UNEXPAND|0x00030315"),
+        ("32316", "CSIDL_FLAG_DONT_UNEXPAND|0x00030316"),
+        ("32317", "CSIDL_FLAG_DONT_UNEXPAND|0x00030317"),
+        ("32318", "CSIDL_FLAG_DONT_UNEXPAND|0x00030318"),
+        ("32319", "CSIDL_FLAG_DONT_UNEXPAND|0x00030319"),
+        ("32320", "CSIDL_FLAG_DONT_UNEXPAND|0x00030320"),
+        ("32321", "CSIDL_FLAG_DONT_UNEXPAND|0x00030321"),
+        ("32322", "CSIDL_FLAG_DONT_UNEXPAND|0x00030322"),
+        ("32323", "CSIDL_FLAG_DONT_UNEXPAND|0x00030323"),
+        ("32324", "CSIDL_FLAG_DONT_UNEXPAND|0x00030324"),
+        ("32325", "CSIDL_FLAG_DONT_UNEXPAND|0x00030325"),
+        ("32326", "CSIDL_FLAG_DONT_UNEXPAND|0x00030326"),
+        ("32327", "CSIDL_FLAG_DONT_UNEXPAND|0x00030327"),
+        ("32328", "CSIDL_FLAG_DONT_UNEXPAND|0x00030328"),
+        ("32329", "CSIDL_FLAG_DONT_UNEXPAND|0x00030329"),
+        ("32330", "CSIDL_FLAG_DONT_UNEXPAND|0x00030330"),
+        ("32331", "CSIDL_FLAG_DONT_UNEXPAND|0x00030331"),
+        ("32332", "CSIDL_FLAG_DONT_UNEXPAND|0x00030332"),
+        ("32333", "CSIDL_FLAG_DONT_UNEXPAND|0x00030333"),
+        ("32334", "CSIDL_FLAG_DONT_UNEXPAND|0x00030334"),
+        ("32335", "CSIDL_FLAG_DONT_UNEXPAND|0x00030335"),
+        ("32336", "CSIDL_FLAG_DONT_UNEXPAND|0x00030336"),
+        ("32337", "CSIDL_FLAG_DONT_UNEXPAND|0x00030337"),
+        ("32338", "CSIDL_FLAG_DONT_UNEXPAND|0x00030338"),
+        ("32339", "CSIDL_FLAG_DONT_UNEXPAND|0x00030339"),
+        ("32340", "CSIDL_FLAG_DONT_UNEXPAND|0x00030340"),
+        ("32341", "CSIDL_FLAG_DONT_UNEXPAND|0x00030341"),
+        ("32342", "CSIDL_FLAG_DONT_UNEXPAND|0x00030342"),
+        ("32343", "CSIDL_FLAG_DONT_UNEXPAND|0x00030343"),
+        ("32344", "CSIDL_FLAG_DONT_UNEXPAND|0x00030344"),
+        ("32345", "CSIDL_FLAG_DONT_UNEXPAND|0x00030345"),
+        ("32346", "CSIDL_FLAG_DONT_UNEXPAND|0x00030346"),
+        ("32347", "CSIDL_FLAG_DONT_UNEXPAND|0x00030347"),
+        ("32348", "CSIDL_FLAG_DONT_UNEXPAND|0x00030348"),
+        ("32349", "CSIDL_FLAG_DONT_UNEXPAND|0x00030349"),
+        ("32350", "CSIDL_FLAG_DONT_UNEXPAND|0x00030350"),
+        ("32351", "CSIDL_FLAG_DONT_UNEXPAND|0x00030351"),
+        ("32352", "CSIDL_FLAG_DONT_UNEXPAND|0x00030352"),
+        ("32353", "CSIDL_FLAG_DONT_UNEXPAND|0x00030353"),
+        ("32354", "CSIDL_FLAG_DONT_UNEXPAND|0x00030354"),
+        ("32355", "CSIDL_FLAG_DONT_UNEXPAND|0x00030355"),
+        ("32356", "CSIDL_FLAG_DONT_UNEXPAND|0x00030356"),
+        ("32357", "CSIDL_FLAG_DONT_UNEXPAND|0x00030357"),
+        ("32358", "CSIDL_FLAG_DONT_UNEXPAND|0x00030358"),
+        ("32359", "CSIDL_FLAG_DONT_UNEXPAND|0x00030359"),
+        ("32360", "CSIDL_FLAG_DONT_UNEXPAND|0x00030360"),
+        ("32361", "CSIDL_FLAG_DONT_UNEXPAND|0x00030361"),
+        ("32362", "CSIDL_FLAG_DONT_UNEXPAND|0x00030362"),
+        ("32363", "CSIDL_FLAG_DONT_UNEXPAND|0x00030363"),
+        ("32364", "CSIDL_FLAG_DONT_UNEXPAND|0x00030364"),
+        ("32365", "CSIDL_FLAG_DONT_UNEXPAND|0x00030365"),
+        ("32366", "CSIDL_FLAG_DONT_UNEXPAND|0x00030366"),
+        ("32367", "CSIDL_FLAG_DONT_UNEXPAND|0x00030367"),
+        ("32368", "CSIDL_FLAG_DONT_UNEXPAND|0x00030368"),
+        ("32369", "CSIDL_FLAG_DONT_UNEXPAND|0x00030369"),
+        ("32370", "CSIDL_FLAG_DONT_UNEXPAND|0x00030370"),
+        ("32371", "CSIDL_FLAG_DONT_UNEXPAND|0x00030371"),
+        ("32372", "CSIDL_FLAG_DONT_UNEXPAND|0x00030372"),
+        ("32373", "CSIDL_FLAG_DONT_UNEXPAND|0x00030373"),
+        ("32374", "CSIDL_FLAG_DONT_UNEXPAND|0x00030374"),
+        ("32375", "CSIDL_FLAG_DONT_UNEXPAND|0x00030375"),
+        ("32376", "CSIDL_FLAG_DONT_UNEXPAND|0x00030376"),
+        ("32377", "CSIDL_FLAG_DONT_UNEXPAND|0x00030377"),
+        ("32378", "CSIDL_FLAG_DONT_UNEXPAND|0x00030378"),
+        ("32379", "CSIDL_FLAG_DONT_UNEXPAND|0x00030379"),
+        ("32380", "CSIDL_FLAG_DONT_UNEXPAND|0x00030380"),
+        ("32381", "CSIDL_FLAG_DONT_UNEXPAND|0x00030381"),
+        ("32382", "CSIDL_FLAG_DONT_UNEXPAND|0x00030382"),
+        ("32383", "CSIDL_FLAG_DONT_UNEXPAND|0x00030383"),
+        ("32384", "CSIDL_FLAG_DONT_UNEXPAND|0x00030384"),
+        ("32385", "CSIDL_FLAG_DONT_UNEXPAND|0x00030385"),
+        ("32386", "CSIDL_FLAG_DONT_UNEXPAND|0x00030386"),
+        ("32387", "CSIDL_FLAG_DONT_UNEXPAND|0x00030387"),
+        ("32388", "CSIDL_FLAG_DONT_UNEXPAND|0x00030388"),
+        ("32389", "CSIDL_FLAG_DONT_UNEXPAND|0x00030389"),
+        ("32390", "CSIDL_FLAG_DONT_UNEXPAND|0x00030390"),
+        ("32391", "CSIDL_FLAG_DONT_UNEXPAND|0x00030391"),
+        ("32392", "CSIDL_FLAG_DONT_UNEXPAND|0x00030392"),
+        ("32393", "CSIDL_FLAG_DONT_UNEXPAND|0x00030393"),
+        ("32394", "CSIDL_FLAG_DONT_UNEXPAND|0x00030394"),
+        ("32395", "CSIDL_FLAG_DONT_UNEXPAND|0x00030395"),
+        ("32396", "CSIDL_FLAG_DONT_UNEXPAND|0x00030396"),
+        ("32397", "CSIDL_FLAG_DONT_UNEXPAND|0x00030397"),
+        ("32398", "CSIDL_FLAG_DONT_UNEXPAND|0x00030398"),
+        ("32399", "CSIDL_FLAG_DONT_UNEXPAND|0x00030399"),
+        ("32400", "CSIDL_FLAG_DONT_UNEXPAND|0x00030400"),
+        ("32401", "CSIDL_FLAG_DONT_UNEXPAND|0x00030401"),
+        ("32402", "CSIDL_FLAG_DONT_UNEXPAND|0x00030402"),
+        ("32403", "CSIDL_FLAG_DONT_UNEXPAND|0x00030403"),
+        ("32404", "CSIDL_FLAG_DONT_UNEXPAND|0x00030404"),
+        ("32405", "CSIDL_FLAG_DONT_UNEXPAND|0x00030405"),
+        ("32406", "CSIDL_FLAG_DONT_UNEXPAND|0x00030406"),
+        ("32407", "CSIDL_FLAG_DONT_UNEXPAND|0x00030407"),
+        ("32408", "CSIDL_FLAG_DONT_UNEXPAND|0x00030408"),
+        ("32409", "CSIDL_FLAG_DONT_UNEXPAND|0x00030409"),
+        ("32410", "CSIDL_FLAG_DONT_UNEXPAND|0x00030410"),
+        ("32411", "CSIDL_FLAG_DONT_UNEXPAND|0x00030411"),
+        ("32412", "CSIDL_FLAG_DONT_UNEXPAND|0x00030412"),
+        ("32413", "CSIDL_FLAG_DONT_UNEXPAND|0x00030413"),
+        ("32414", "CSIDL_FLAG_DONT_UNEXPAND|0x00030414"),
+        ("32415", "CSIDL_FLAG_DONT_UNEXPAND|0x00030415"),
+        ("32416", "CSIDL_FLAG_DONT_UNEXPAND|0x00030416"),
+        ("32417", "CSIDL_FLAG_DONT_UNEXPAND|0x00030417"),
+        ("32418", "CSIDL_FLAG_DONT_UNEXPAND|0x00030418"),
+        ("32419", "CSIDL_FLAG_DONT_UNEXPAND|0x00030419"),
+        ("32420", "CSIDL_FLAG_DONT_UNEXPAND|0x00030420"),
+        ("32421", "CSIDL_FLAG_DONT_UNEXPAND|0x00030421"),
+        ("32422", "CSIDL_FLAG_DONT_UNEXPAND|0x00030422"),
+        ("32423", "CSIDL_FLAG_DONT_UNEXPAND|0x00030423"),
+        ("32424", "CSIDL_FLAG_DONT_UNEXPAND|0x00030424"),
+        ("32425", "CSIDL_FLAG_DONT_UNEXPAND|0x00030425"),
+        ("32426", "CSIDL_FLAG_DONT_UNEXPAND|0x00030426"),
+        ("32427", "CSIDL_FLAG_DONT_UNEXPAND|0x00030427"),
+        ("32428", "CSIDL_FLAG_DONT_UNEXPAND|0x00030428"),
+        ("32429", "CSIDL_FLAG_DONT_UNEXPAND|0x00030429"),
+        ("32430", "CSIDL_FLAG_DONT_UNEXPAND|0x00030430"),
+        ("32431", "CSIDL_FLAG_DONT_UNEXPAND|0x00030431"),
+        ("32432", "CSIDL_FLAG_DONT_UNEXPAND|0x00030432"),
+        ("32433", "CSIDL_FLAG_DONT_UNEXPAND|0x00030433"),
+        ("32434", "CSIDL_FLAG_DONT_UNEXPAND|0x00030434"),
+        ("32435", "CSIDL_FLAG_DONT_UNEXPAND|0x00030435"),
+        ("32436", "CSIDL_FLAG_DONT_UNEXPAND|0x00030436"),
+        ("32437", "CSIDL_FLAG_DONT_UNEXPAND|0x00030437"),
+        ("32438", "CSIDL_FLAG_DONT_UNEXPAND|0x00030438"),
+        ("32439", "CSIDL_FLAG_DONT_UNEXPAND|0x00030439"),
+        ("32440", "CSIDL_FLAG_DONT_UNEXPAND|0x00030440"),
+        ("32441", "CSIDL_FLAG_DONT_UNEXPAND|0x00030441"),
+        ("32442", "CSIDL_FLAG_DONT_UNEXPAND|0x00030442"),
+        ("32443", "CSIDL_FLAG_DONT_UNEXPAND|0x00030443"),
+        ("32444", "CSIDL_FLAG_DONT_UNEXPAND|0x00030444"),
+        ("32445", "CSIDL_FLAG_DONT_UNEXPAND|0x00030445"),
+        ("32446", "CSIDL_FLAG_DONT_UNEXPAND|0x00030446"),
+        ("32447", "CSIDL_FLAG_DONT_UNEXPAND|0x00030447"),
+        ("32448", "CSIDL_FLAG_DONT_UNEXPAND|0x00030448"),
+        ("32449", "CSIDL_FLAG_DONT_UNEXPAND|0x00030449"),
+        ("32450", "CSIDL_FLAG_DONT_UNEXPAND|0x00030450"),
+        ("32451", "CSIDL_FLAG_DONT_UNEXPAND|0x00030451"),
+        ("32452", "CSIDL_FLAG_DONT_UNEXPAND|0x00030452"),
+        ("32453", "CSIDL_FLAG_DONT_UNEXPAND|0x00030453"),
+        ("32454", "CSIDL_FLAG_DONT_UNEXPAND|0x00030454"),
+        ("32455", "CSIDL_FLAG_DONT_UNEXPAND|0x00030455"),
+        ("32456", "CSIDL_FLAG_DONT_UNEXPAND|0x00030456"),
+        ("32457", "CSIDL_FLAG_DONT_UNEXPAND|0x00030457"),
+        ("32458", "CSIDL_FLAG_DONT_UNEXPAND|0x00030458"),
+        ("32459", "CSIDL_FLAG_DONT_UNEXPAND|0x00030459"),
+        ("32460", "CSIDL_FLAG_DONT_UNEXPAND|0x00030460"),
+        ("32461", "CSIDL_FLAG_DONT_UNEXPAND|0x00030461"),
+        ("32462", "CSIDL_FLAG_DONT_UNEXPAND|0x00030462"),
+        ("32463", "CSIDL_FLAG_DONT_UNEXPAND|0x00030463"),
+        ("32464", "CSIDL_FLAG_DONT_UNEXPAND|0x00030464"),
+        ("32465", "CSIDL_FLAG_DONT_UNEXPAND|0x00030465"),
+        ("32466", "CSIDL_FLAG_DONT_UNEXPAND|0x00030466"),
+        ("32467", "CSIDL_FLAG_DONT_UNEXPAND|0x00030467"),
+        ("32468", "CSIDL_FLAG_DONT_UNEXPAND|0x00030468"),
+        ("32469", "CSIDL_FLAG_DONT_UNEXPAND|0x00030469"),
+        ("32470", "CSIDL_FLAG_DONT_UNEXPAND|0x00030470"),
+        ("32471", "CSIDL_FLAG_DONT_UNEXPAND|0x00030471"),
+        ("32472", "CSIDL_FLAG_DONT_UNEXPAND|0x00030472"),
+        ("32473", "CSIDL_FLAG_DONT_UNEXPAND|0x00030473"),
+        ("32474", "CSIDL_FLAG_DONT_UNEXPAND|0x00030474"),
+        ("32475", "CSIDL_FLAG_DONT_UNEXPAND|0x00030475"),
+        ("32476", "CSIDL_FLAG_DONT_UNEXPAND|0x00030476"),
+        ("32477", "CSIDL_FLAG_DONT_UNEXPAND|0x00030477"),
+        ("32478", "CSIDL_FLAG_DONT_UNEXPAND|0x00030478"),
+        ("32479", "CSIDL_FLAG_DONT_UNEXPAND|0x00030479"),
+        ("32480", "CSIDL_FLAG_DONT_UNEXPAND|0x00030480"),
+        ("32481", "CSIDL_FLAG_DONT_UNEXPAND|0x00030481"),
+        ("32482", "CSIDL_FLAG_DONT_UNEXPAND|0x00030482"),
+        ("32483", "CSIDL_FLAG_DONT_UNEXPAND|0x00030483"),
+        ("32484", "CSIDL_FLAG_DONT_UNEXPAND|0x00030484"),
+        ("32485", "CSIDL_FLAG_DONT_UNEXPAND|0x00030485"),
+        ("32486", "CSIDL_FLAG_DONT_UNEXPAND|0x00030486"),
+        ("32487", "CSIDL_FLAG_DONT_UNEXPAND|0x00030487"),
+        ("32488", "CSIDL_FLAG_DONT_UNEXPAND|0x00030488"),
+        ("32489", "CSIDL_FLAG_DONT_UNEXPAND|0x00030489"),
+        ("32490", "CSIDL_FLAG_DONT_UNEXPAND|0x00030490"),
+        ("32491", "CSIDL_FLAG_DONT_UNEXPAND|0x00030491"),
+        ("32492", "CSIDL_FLAG_DONT_UNEXPAND|0x00030492"),
+        ("32493", "CSIDL_FLAG_DONT_UNEXPAND|0x00030493"),
+        ("32494", "CSIDL_FLAG_DONT_UNEXPAND|0x00030494"),
+        ("32495", "CSIDL_FLAG_DONT_UNEXPAND|0x00030495"),
+        ("32496", "CSIDL_FLAG_DONT_UNEXPAND|0x00030496"),
+        ("32497", "CSIDL_FLAG_DONT_UNEXPAND|0x00030497"),
+        ("32498", "CSIDL_FLAG_DONT_UNEXPAND|0x00030498"),
+        ("32499", "CSIDL_FLAG_DONT_UNEXPAND|0x00030499"),
+        ("32500", "CSIDL_FLAG_DONT_UNEXPAND|0x00030500"),
+        ("32501", "CSIDL_FLAG_DONT_UNEXPAND|0x00030501"),
+        ("32502", "CSIDL_FLAG_DONT_UNEXPAND|0x00030502"),
+        ("32503", "CSIDL_FLAG_DONT_UNEXPAND|0x00030503"),
+        ("32504", "CSIDL_FLAG_DONT_UNEXPAND|0x00030504"),
+        ("32505", "CSIDL_FLAG_DONT_UNEXPAND|0x00030505"),
+        ("32506", "CSIDL_FLAG_DONT_UNEXPAND|0x00030506"),
+        ("32507", "CSIDL_FLAG_DONT_UNEXPAND|0x00030507"),
+        ("32508", "CSIDL_FLAG_DONT_UNEXPAND|0x00030508"),
+        ("32509", "CSIDL_FLAG_DONT_UNEXPAND|0x00030509"),
+        ("32510", "CSIDL_FLAG_DONT_UNEXPAND|0x00030510"),
+        ("32511", "CSIDL_FLAG_DONT_UNEXPAND|0x00030511"),
+        ("32512", "CSIDL_FLAG_DONT_UNEXPAND|0x00030512"),
+        ("32513", "CSIDL_FLAG_DONT_UNEXPAND|0x00030513"),
+        ("32514", "CSIDL_FLAG_DONT_UNEXPAND|0x00030514"),
+        ("32515", "CSIDL_FLAG_DONT_UNEXPAND|0x00030515"),
+        ("32516", "CSIDL_FLAG_DONT_UNEXPAND|0x00030516"),
+        ("32517", "CSIDL_FLAG_DONT_UNEXPAND|0x00030517"),
+        ("32518", "CSIDL_FLAG_DONT_UNEXPAND|0x00030518"),
+        ("32519", "CSIDL_FLAG_DONT_UNEXPAND|0x00030519"),
+        ("32520", "CSIDL_FLAG_DONT_UNEXPAND|0x00030520"),
+        ("32521", "CSIDL_FLAG_DONT_UNEXPAND|0x00030521"),
+        ("32522", "CSIDL_FLAG_DONT_UNEXPAND|0x00030522"),
+        ("32523", "CSIDL_FLAG_DONT_UNEXPAND|0x00030523"),
+        ("32524", "CSIDL_FLAG_DONT_UNEXPAND|0x00030524"),
+        ("32525", "CSIDL_FLAG_DONT_UNEXPAND|0x00030525"),
+        ("32526", "CSIDL_FLAG_DONT_UNEXPAND|0x00030526"),
+        ("32527", "CSIDL_FLAG_DONT_UNEXPAND|0x00030527"),
+        ("32528", "CSIDL_FLAG_DONT_UNEXPAND|0x00030528"),
+        ("32529", "CSIDL_FLAG_DONT_UNEXPAND|0x00030529"),
+        ("32530", "CSIDL_FLAG_DONT_UNEXPAND|0x00030530"),
+        ("32531", "CSIDL_FLAG_DONT_UNEXPAND|0x00030531"),
+        ("32532", "CSIDL_FLAG_DONT_UNEXPAND|0x00030532"),
+        ("32533", "CSIDL_FLAG_DONT_UNEXPAND|0x00030533"),
+        ("32534", "CSIDL_FLAG_DONT_UNEXPAND|0x00030534"),
+        ("32535", "CSIDL_FLAG_DONT_UNEXPAND|0x00030535"),
+        ("32536", "CSIDL_FLAG_DONT_UNEXPAND|0x00030536"),
+        ("32537", "CSIDL_FLAG_DONT_UNEXPAND|0x00030537"),
+        ("32538", "CSIDL_FLAG_DONT_UNEXPAND|0x00030538"),
+        ("32539", "CSIDL_FLAG_DONT_UNEXPAND|0x00030539"),
+        ("32540", "CSIDL_FLAG_DONT_UNEXPAND|0x00030540"),
+        ("32541", "CSIDL_FLAG_DONT_UNEXPAND|0x00030541"),
+        ("32542", "CSIDL_FLAG_DONT_UNEXPAND|0x00030542"),
+        ("32543", "CSIDL_FLAG_DONT_UNEXPAND|0x00030543"),
+        ("32544", "CSIDL_FLAG_DONT_UNEXPAND|0x00030544"),
+        ("32545", "CSIDL_FLAG_DONT_UNEXPAND|0x00030545"),
+        ("32546", "CSIDL_FLAG_DONT_UNEXPAND|0x00030546"),
+        ("32547", "CSIDL_FLAG_DONT_UNEXPAND|0x00030547"),
+        ("32548", "CSIDL_FLAG_DONT_UNEXPAND|0x00030548"),
+        ("32549", "CSIDL_FLAG_DONT_UNEXPAND|0x00030549"),
+        ("32550", "CSIDL_FLAG_DONT_UNEXPAND|0x00030550"),
+        ("32551", "CSIDL_FLAG_DONT_UNEXPAND|0x00030551"),
+        ("32552", "CSIDL_FLAG_DONT_UNEXPAND|0x00030552"),
+        ("32553", "CSIDL_FLAG_DONT_UNEXPAND|0x00030553"),
+        ("32554", "CSIDL_FLAG_DONT_UNEXPAND|0x00030554"),
+        ("32555", "CSIDL_FLAG_DONT_UNEXPAND|0x00030555"),
+        ("32556", "CSIDL_FLAG_DONT_UNEXPAND|0x00030556"),
+        ("32557", "CSIDL_FLAG_DONT_UNEXPAND|0x00030557"),
+        ("32558", "CSIDL_FLAG_DONT_UNEXPAND|0x00030558"),
+        ("32559", "CSIDL_FLAG_DONT_UNEXPAND|0x00030559"),
+        ("32560", "CSIDL_FLAG_DONT_UNEXPAND|0x00030560"),
+        ("32561", "CSIDL_FLAG_DONT_UNEXPAND|0x00030561"),
+        ("32562", "CSIDL_FLAG_DONT_UNEXPAND|0x00030562"),
+        ("32563", "CSIDL_FLAG_DONT_UNEXPAND|0x00030563"),
+        ("32564", "CSIDL_FLAG_DONT_UNEXPAND|0x00030564"),
+        ("32565", "CSIDL_FLAG_DONT_UNEXPAND|0x00030565"),
+        ("32566", "CSIDL_FLAG_DONT_UNEXPAND|0x00030566"),
+        ("32567", "CSIDL_FLAG_DONT_UNEXPAND|0x00030567"),
+        ("32568", "CSIDL_FLAG_DONT_UNEXPAND|0x00030568"),
+        ("32569", "CSIDL_FLAG_DONT_UNEXPAND|0x00030569"),
+        ("32570", "CSIDL_FLAG_DONT_UNEXPAND|0x00030570"),
+        ("32571", "CSIDL_FLAG_DONT_UNEXPAND|0x00030571"),
+        ("32572", "CSIDL_FLAG_DONT_UNEXPAND|0x00030572"),
+        ("32573", "CSIDL_FLAG_DONT_UNEXPAND|0x00030573"),
+        ("32574", "CSIDL_FLAG_DONT_UNEXPAND|0x00030574"),
+        ("32575", "CSIDL_FLAG_DONT_UNEXPAND|0x00030575"),
+        ("32576", "CSIDL_FLAG_DONT_UNEXPAND|0x00030576"),
+        ("32577", "CSIDL_FLAG_DONT_UNEXPAND|0x00030577"),
+        ("32578", "CSIDL_FLAG_DONT_UNEXPAND|0x00030578"),
+        ("32579", "CSIDL_FLAG_DONT_UNEXPAND|0x00030579"),
+        ("32580", "CSIDL_FLAG_DONT_UNEXPAND|0x00030580"),
+        ("32581", "CSIDL_FLAG_DONT_UNEXPAND|0x00030581"),
+        ("32582", "CSIDL_FLAG_DONT_UNEXPAND|0x00030582"),
+        ("32583", "CSIDL_FLAG_DONT_UNEXPAND|0x00030583"),
+        ("32584", "CSIDL_FLAG_DONT_UNEXPAND|0x00030584"),
+        ("32585", "CSIDL_FLAG_DONT_UNEXPAND|0x00030585"),
+        ("32586", "CSIDL_FLAG_DONT_UNEXPAND|0x00030586"),
+        ("32587", "CSIDL_FLAG_DONT_UNEXPAND|0x00030587"),
+        ("32588", "CSIDL_FLAG_DONT_UNEXPAND|0x00030588"),
+        ("32589", "CSIDL_FLAG_DONT_UNEXPAND|0x00030589"),
+        ("32590", "CSIDL_FLAG_DONT_UNEXPAND|0x00030590"),
+        ("32591", "CSIDL_FLAG_DONT_UNEXPAND|0x00030591"),
+        ("32592", "CSIDL_FLAG_DONT_UNEXPAND|0x00030592"),
+        ("32593", "CSIDL_FLAG_DONT_UNEXPAND|0x00030593"),
+        ("32594", "CSIDL_FLAG_DONT_UNEXPAND|0x00030594"),
+        ("32595", "CSIDL_FLAG_DONT_UNEXPAND|0x00030595"),
+        ("32596", "CSIDL_FLAG_DONT_UNEXPAND|0x00030596"),
+        ("32597", "CSIDL_FLAG_DONT_UNEXPAND|0x00030597"),
+        ("32598", "CSIDL_FLAG_DONT_UNEXPAND|0x00030598"),
+        ("32599", "CSIDL_FLAG_DONT_UNEXPAND|0x00030599"),
+        ("32600", "CSIDL_FLAG_DONT_UNEXPAND|0x00030600"),
+        ("32601", "CSIDL_FLAG_DONT_UNEXPAND|0x00030601"),
+        ("32602", "CSIDL_FLAG_DONT_UNEXPAND|0x00030602"),
+        ("32603", "CSIDL_FLAG_DONT_UNEXPAND|0x00030603"),
+        ("32604", "CSIDL_FLAG_DONT_UNEXPAND|0x00030604"),
+        ("32605", "CSIDL_FLAG_DONT_UNEXPAND|0x00030605"),
+        ("32606", "CSIDL_FLAG_DONT_UNEXPAND|0x00030606"),
+        ("32607", "CSIDL_FLAG_DONT_UNEXPAND|0x00030607"),
+        ("32608", "CSIDL_FLAG_DONT_UNEXPAND|0x00030608"),
+        ("32609", "CSIDL_FLAG_DONT_UNEXPAND|0x00030609"),
+        ("32610", "CSIDL_FLAG_DONT_UNEXPAND|0x00030610"),
+        ("32611", "CSIDL_FLAG_DONT_UNEXPAND|0x00030611"),
+        ("32612", "CSIDL_FLAG_DONT_UNEXPAND|0x00030612"),
+        ("32613", "CSIDL_FLAG_DONT_UNEXPAND|0x00030613"),
+        ("32614", "CSIDL_FLAG_DONT_UNEXPAND|0x00030614"),
+        ("32615", "CSIDL_FLAG_DONT_UNEXPAND|0x00030615"),
+        ("32616", "CSIDL_FLAG_DONT_UNEXPAND|0x00030616"),
+        ("32617", "CSIDL_FLAG_DONT_UNEXPAND|0x00030617"),
+        ("32618", "CSIDL_FLAG_DONT_UNEXPAND|0x00030618"),
+        ("32619", "CSIDL_FLAG_DONT_UNEXPAND|0x00030619"),
+        ("32620", "CSIDL_FLAG_DONT_UNEXPAND|0x00030620"),
+        ("32621", "CSIDL_FLAG_DONT_UNEXPAND|0x00030621"),
+        ("32622", "CSIDL_FLAG_DONT_UNEXPAND|0x00030622"),
+        ("32623", "CSIDL_FLAG_DONT_UNEXPAND|0x00030623"),
+        ("32624", "CSIDL_FLAG_DONT_UNEXPAND|0x00030624"),
+        ("32625", "CSIDL_FLAG_DONT_UNEXPAND|0x00030625"),
+        ("32626", "CSIDL_FLAG_DONT_UNEXPAND|0x00030626"),
+        ("32627", "CSIDL_FLAG_DONT_UNEXPAND|0x00030627"),
+        ("32628", "CSIDL_FLAG_DONT_UNEXPAND|0x00030628"),
+        ("32629", "CSIDL_FLAG_DONT_UNEXPAND|0x00030629"),
+        ("32630", "CSIDL_FLAG_DONT_UNEXPAND|0x00030630"),
+        ("32631", "CSIDL_FLAG_DONT_UNEXPAND|0x00030631"),
+        ("32632", "CSIDL_FLAG_DONT_UNEXPAND|0x00030632"),
+        ("32633", "CSIDL_FLAG_DONT_UNEXPAND|0x00030633"),
+        ("32634", "CSIDL_FLAG_DONT_UNEXPAND|0x00030634"),
+        ("32635", "CSIDL_FLAG_DONT_UNEXPAND|0x00030635"),
+        ("32636", "CSIDL_FLAG_DONT_UNEXPAND|0x00030636"),
+        ("32637", "CSIDL_FLAG_DONT_UNEXPAND|0x00030637"),
+        ("32638", "CSIDL_FLAG_DONT_UNEXPAND|0x00030638"),
+        ("32639", "CSIDL_FLAG_DONT_UNEXPAND|0x00030639"),
+        ("32640", "CSIDL_FLAG_DONT_UNEXPAND|0x00030640"),
+        ("32641", "CSIDL_FLAG_DONT_UNEXPAND|0x00030641"),
+        ("32642", "CSIDL_FLAG_DONT_UNEXPAND|0x00030642"),
+        ("32643", "CSIDL_FLAG_DONT_UNEXPAND|0x00030643"),
+        ("32644", "CSIDL_FLAG_DONT_UNEXPAND|0x00030644"),
+        ("32645", "CSIDL_FLAG_DONT_UNEXPAND|0x00030645"),
+        ("32646", "CSIDL_FLAG_DONT_UNEXPAND|0x00030646"),
+        ("32647", "CSIDL_FLAG_DONT_UNEXPAND|0x00030647"),
+        ("32648", "CSIDL_FLAG_DONT_UNEXPAND|0x00030648"),
+        ("32649", "CSIDL_FLAG_DONT_UNEXPAND|0x00030649"),
+        ("32650", "CSIDL_FLAG_DONT_UNEXPAND|0x00030650"),
+        ("32651", "CSIDL_FLAG_DONT_UNEXPAND|0x00030651"),
+        ("32652", "CSIDL_FLAG_DONT_UNEXPAND|0x00030652"),
+        ("32653", "CSIDL_FLAG_DONT_UNEXPAND|0x00030653"),
+        ("32654", "CSIDL_FLAG_DONT_UNEXPAND|0x00030654"),
+        ("32655", "CSIDL_FLAG_DONT_UNEXPAND|0x00030655"),
+        ("32656", "CSIDL_FLAG_DONT_UNEXPAND|0x00030656"),
+        ("32657", "CSIDL_FLAG_DONT_UNEXPAND|0x00030657"),
+        ("32658", "CSIDL_FLAG_DONT_UNEXPAND|0x00030658"),
+        ("32659", "CSIDL_FLAG_DONT_UNEXPAND|0x00030659"),
+        ("32660", "CSIDL_FLAG_DONT_UNEXPAND|0x00030660"),
+        ("32661", "CSIDL_FLAG_DONT_UNEXPAND|0x00030661"),
+        ("32662", "CSIDL_FLAG_DONT_UNEXPAND|0x00030662"),
+        ("32663", "CSIDL_FLAG_DONT_UNEXPAND|0x00030663"),
+        ("32664", "CSIDL_FLAG_DONT_UNEXPAND|0x00030664"),
+        ("32665", "CSIDL_FLAG_DONT_UNEXPAND|0x00030665"),
+        ("32666", "CSIDL_FLAG_DONT_UNEXPAND|0x00030666"),
+        ("32667", "CSIDL_FLAG_DONT_UNEXPAND|0x00030667"),
+        ("32668", "CSIDL_FLAG_DONT_UNEXPAND|0x00030668"),
+        ("32669", "CSIDL_FLAG_DONT_UNEXPAND|0x00030669"),
+        ("32670", "CSIDL_FLAG_DONT_UNEXPAND|0x00030670"),
+        ("32671", "CSIDL_FLAG_DONT_UNEXPAND|0x00030671"),
+        ("32672", "CSIDL_FLAG_DONT_UNEXPAND|0x00030672"),
+        ("32673", "CSIDL_FLAG_DONT_UNEXPAND|0x00030673"),
+        ("32674", "CSIDL_FLAG_DONT_UNEXPAND|0x00030674"),
+        ("32675", "CSIDL_FLAG_DONT_UNEXPAND|0x00030675"),
+        ("32676", "CSIDL_FLAG_DONT_UNEXPAND|0x00030676"),
+        ("32677", "CSIDL_FLAG_DONT_UNEXPAND|0x00030677"),
+        ("32678", "CSIDL_FLAG_DONT_UNEXPAND|0x00030678"),
+        ("32679", "CSIDL_FLAG_DONT_UNEXPAND|0x00030679"),
+        ("32680", "CSIDL_FLAG_DONT_UNEXPAND|0x00030680"),
+        ("32681", "CSIDL_FLAG_DONT_UNEXPAND|0x00030681"),
+        ("32682", "CSIDL_FLAG_DONT_UNEXPAND|0x00030682"),
+        ("32683", "CSIDL_FLAG_DONT_UNEXPAND|0x00030683"),
+        ("32684", "CSIDL_FLAG_DONT_UNEXPAND|0x00030684"),
+        ("32685", "CSIDL_FLAG_DONT_UNEXPAND|0x00030685"),
+        ("32686", "CSIDL_FLAG_DONT_UNEXPAND|0x00030686"),
+        ("32687", "CSIDL_FLAG_DONT_UNEXPAND|0x00030687"),
+        ("32688", "CSIDL_FLAG_DONT_UNEXPAND|0x00030688"),
+        ("32689", "CSIDL_FLAG_DONT_UNEXPAND|0x00030689"),
+        ("32690", "CSIDL_FLAG_DONT_UNEXPAND|0x00030690"),
+        ("32691", "CSIDL_FLAG_DONT_UNEXPAND|0x00030691"),
+        ("32692", "CSIDL_FLAG_DONT_UNEXPAND|0x00030692"),
+        ("32693", "CSIDL_FLAG_DONT_UNEXPAND|0x00030693"),
+        ("32694", "CSIDL_FLAG_DONT_UNEXPAND|0x00030694"),
+        ("32695", "CSIDL_FLAG_DONT_UNEXPAND|0x00030695"),
+        ("32696", "CSIDL_FLAG_DONT_UNEXPAND|0x00030696"),
+        ("32697", "CSIDL_FLAG_DONT_UNEXPAND|0x00030697"),
+        ("32698", "CSIDL_FLAG_DONT_UNEXPAND|0x00030698"),
+        ("32699", "CSIDL_FLAG_DONT_UNEXPAND|0x00030699"),
+        ("32700", "CSIDL_FLAG_DONT_UNEXPAND|0x00030700"),
+        ("32701", "CSIDL_FLAG_DONT_UNEXPAND|0x00030701"),
+        ("32702", "CSIDL_FLAG_DONT_UNEXPAND|0x00030702"),
+        ("32703", "CSIDL_FLAG_DONT_UNEXPAND|0x00030703"),
+        ("32704", "CSIDL_FLAG_DONT_UNEXPAND|0x00030704"),
+        ("32705", "CSIDL_FLAG_DONT_UNEXPAND|0x00030705"),
+        ("32706", "CSIDL_FLAG_DONT_UNEXPAND|0x00030706"),
+        ("32707", "CSIDL_FLAG_DONT_UNEXPAND|0x00030707"),
+        ("32708", "CSIDL_FLAG_DONT_UNEXPAND|0x00030708"),
+        ("32709", "CSIDL_FLAG_DONT_UNEXPAND|0x00030709"),
+        ("32710", "CSIDL_FLAG_DONT_UNEXPAND|0x00030710"),
+        ("32711", "CSIDL_FLAG_DONT_UNEXPAND|0x00030711"),
+        ("32712", "CSIDL_FLAG_DONT_UNEXPAND|0x00030712"),
+        ("32713", "CSIDL_FLAG_DONT_UNEXPAND|0x00030713"),
+        ("32714", "CSIDL_FLAG_DONT_UNEXPAND|0x00030714"),
+        ("32715", "CSIDL_FLAG_DONT_UNEXPAND|0x00030715"),
+        ("32716", "CSIDL_FLAG_DONT_UNEXPAND|0x00030716"),
+        ("32717", "CSIDL_FLAG_DONT_UNEXPAND|0x00030717"),
+        ("32718", "CSIDL_FLAG_DONT_UNEXPAND|0x00030718"),
+        ("32719", "CSIDL_FLAG_DONT_UNEXPAND|0x00030719"),
+        ("32720", "CSIDL_FLAG_DONT_UNEXPAND|0x00030720"),
+        ("32721", "CSIDL_FLAG_DONT_UNEXPAND|0x00030721"),
+        ("32722", "CSIDL_FLAG_DONT_UNEXPAND|0x00030722"),
+        ("32723", "CSIDL_FLAG_DONT_UNEXPAND|0x00030723"),
+        ("32724", "CSIDL_FLAG_DONT_UNEXPAND|0x00030724"),
+        ("32725", "CSIDL_FLAG_DONT_UNEXPAND|0x00030725"),
+        ("32726", "CSIDL_FLAG_DONT_UNEXPAND|0x00030726"),
+        ("32727", "CSIDL_FLAG_DONT_UNEXPAND|0x00030727"),
+        ("32728", "CSIDL_FLAG_DONT_UNEXPAND|0x00030728"),
+        ("32729", "CSIDL_FLAG_DONT_UNEXPAND|0x00030729"),
+        ("32730", "CSIDL_FLAG_DONT_UNEXPAND|0x00030730"),
+        ("32731", "CSIDL_FLAG_DONT_UNEXPAND|0x00030731"),
+        ("32732", "CSIDL_FLAG_DONT_UNEXPAND|0x00030732"),
+        ("32733", "CSIDL_FLAG_DONT_UNEXPAND|0x00030733"),
+        ("32734", "CSIDL_FLAG_DONT_UNEXPAND|0x00030734"),
+        ("32735", "CSIDL_FLAG_DONT_UNEXPAND|0x00030735"),
+        ("32736", "CSIDL_FLAG_DONT_UNEXPAND|0x00030736"),
+        ("32737", "CSIDL_FLAG_DONT_UNEXPAND|0x00030737"),
+        ("32738", "CSIDL_FLAG_DONT_UNEXPAND|0x00030738"),
+        ("32739", "CSIDL_FLAG_DONT_UNEXPAND|0x00030739"),
+        ("32740", "CSIDL_FLAG_DONT_UNEXPAND|0x00030740"),
+        ("32741", "CSIDL_FLAG_DONT_UNEXPAND|0x00030741"),
+        ("32742", "CSIDL_FLAG_DONT_UNEXPAND|0x00030742"),
+        ("32743", "CSIDL_FLAG_DONT_UNEXPAND|0x00030743"),
+        ("32744", "CSIDL_FLAG_DONT_UNEXPAND|0x00030744"),
+        ("32745", "CSIDL_FLAG_DONT_UNEXPAND|0x00030745"),
+        ("32746", "CSIDL_FLAG_DONT_UNEXPAND|0x00030746"),
+        ("32747", "CSIDL_FLAG_DONT_UNEXPAND|0x00030747"),
+        ("32748", "CSIDL_FLAG_DONT_UNEXPAND|0x00030748"),
+        ("32749", "CSIDL_FLAG_DONT_UNEXPAND|0x00030749"),
+        ("32750", "CSIDL_FLAG_DONT_UNEXPAND|0x00030750"),
+        ("32751", "CSIDL_FLAG_DONT_UNEXPAND|0x00030751"),
+        ("32752", "CSIDL_FLAG_DONT_UNEXPAND|0x00030752"),
+        ("32753", "CSIDL_FLAG_DONT_UNEXPAND|0x00030753"),
+        ("32754", "CSIDL_FLAG_DONT_UNEXPAND|0x00030754"),
+        ("32755", "CSIDL_FLAG_DONT_UNEXPAND|0x00030755"),
+        ("32756", "CSIDL_FLAG_DONT_UNEXPAND|0x00030756"),
+        ("32757", "CSIDL_FLAG_DONT_UNEXPAND|0x00030757"),
+        ("32758", "CSIDL_FLAG_DONT_UNEXPAND|0x00030758"),
+        ("32759", "CSIDL_FLAG_DONT_UNEXPAND|0x00030759"),
+        ("32760", "CSIDL_FLAG_DONT_UNEXPAND|0x00030760"),
+        ("32761", "CSIDL_FLAG_DONT_UNEXPAND|0x00030761"),
+        ("32762", "CSIDL_FLAG_DONT_UNEXPAND|0x00030762"),
+        ("32763", "CSIDL_FLAG_DONT_UNEXPAND|0x00030763"),
+        ("32764", "CSIDL_FLAG_DONT_UNEXPAND|0x00030764"),
+        ("32765", "CSIDL_FLAG_DONT_UNEXPAND|0x00030765"),
+        ("32766", "CSIDL_FLAG_DONT_UNEXPAND|0x00030766"),
+        ("32767", "CSIDL_FLAG_DONT_UNEXPAND|0x00030767"),
+    ]
+
+
+def api_name_createtoolhelp32snapshot_arg_name_flags_data():
+    return [
+        ("1", "TH32CS_SNAPHEAPLIST"),
+        ("2", "TH32CS_SNAPPROCESS"),
+        ("3", "TH32CS_SNAPHEAPLIST|TH32CS_SNAPPROCESS"),
+        ("4", "TH32CS_SNAPTHREAD"),
+        ("5", "TH32CS_SNAPHEAPLIST|TH32CS_SNAPTHREAD"),
+        ("6", "TH32CS_SNAPPROCESS|TH32CS_SNAPTHREAD"),
+        ("7", "TH32CS_SNAPHEAPLIST|TH32CS_SNAPPROCESS|TH32CS_SNAPTHREAD"),
+        ("8", "TH32CS_SNAPMODULE"),
+        ("9", "TH32CS_SNAPHEAPLIST|TH32CS_SNAPMODULE"),
+        ("10", "TH32CS_SNAPMODULE32"),
+        ("11", "TH32CS_SNAPHEAPLIST|TH32CS_SNAPMODULE32"),
+        ("12", "TH32CS_SNAPPROCESS|TH32CS_SNAPMODULE32"),
+        ("13", "TH32CS_SNAPHEAPLIST|TH32CS_SNAPPROCESS|TH32CS_SNAPMODULE32"),
+        ("14", "TH32CS_SNAPTHREAD|TH32CS_SNAPMODULE32"),
+        ("15", "TH32CS_SNAPHEAPLIST|TH32CS_SNAPTHREAD|TH32CS_SNAPMODULE32"),
+    ]
+
+
+def blobtype_data():
+    return [
+        ("1", "SIMPLEBLOB"),
+        ("6", "PUBLICKEYBLOB"),
+        ("7", "PRIVATEKEYBLOB"),
+        ("8", "PLAINTEXTKEYBLOB"),
+        ("9", "OPAQUEKEYBLOB"),
+        ("10", "PUBLICKEYBLOBEX"),
+        ("11", "SYMMETRICWRAPKEYBLOB"),
+    ]
+
+
+def algid_data():
+    return [
+        ("1", "AT_KEYEXCHANGE"),
+        ("2", "AT_SIGNATURE"),
+        ("2000", "NO_SIGN"),
+        ("2200", "DSA Public Key Signature"),
+        ("2203", "ECDSA"),
+        ("2400", "RSA Public Key Signature"),
+        ("6601", "DES"),
+        ("6602", "RC2"),
+        ("6603", "3DES"),
+        ("6604", "DESX"),
+        ("6609", "Two-key 3DES"),
+        ("6610", "AES_256"),
+        ("6611", "AES"),
+        ("6801", "RC4"),
+        ("8001", "MD2"),
+        ("8002", "MD4"),
+        ("8003", "MD5"),
+        ("8004", "SHA1"),
+        ("8005", "MAC"),
+        ("8009", "HMAC"),
+    ]
+
+
+def hookidentifer_data():
+    return [
+        ("0", "WH_JOURNALRECORD"),
+        ("1", "WH_JOURNALPLAYBACK"),
+        ("2", "WH_KEYBOARD"),
+        ("3", "WH_GETMESSAGE"),
+        ("4", "WH_CALLWNDPROC"),
+        ("5", "WH_CBT"),
+        ("6", "WH_SYSMSGFILTER"),
+        ("7", "WH_MOUSE"),
+        ("8", "WH_HARDWARE"),
+        ("9", "WH_DEBUG"),
+        ("10", "WH_SHELL"),
+        ("11", "WH_FOREGROUNDIDLE"),
+        ("12", "WH_CALLWNDPROCRET"),
+        ("13", "WH_KEYBOARD_LL"),
+    ]
+
+
+def infolevel_data():
+    return [
+        ("1", "HTTP_QUERY_CONTENT_TYPE"),
+        ("5", "HTTP_QUERY_CONTENT_LENGTH"),
+        ("6", "HTTP_QUERY_CONTENT_LANGUAGE"),
+        ("9", "HTTP_QUERY_DATE"),
+        ("12", "HTTP_QUERY_VERSION"),
+        ("15", "HTTP_QUERY_RAW_HEADERS"),
+    ]
+
+
+def disposition_data():
+    return [
+        ("1", "REG_CREATED_NEW_KEY"),
+    ]
+
+
+def createdisposition_data():
+    return [
+        ("0", "FILE_SUPERSEDE"),
+        ("1", "FILE_OPEN"),
+        ("2", "FILE_CREATE"),
+        ("3", "FILE_OPEN_IF"),
+        ("4", "FILE_OVERWRITE"),
+    ]
+
+
+def shareaccess_data():
+    return [
+        ("1", "FILE_SHARE_READ"),
+        ("2", "FILE_SHARE_WRITE"),
+        ("3", "FILE_SHARE_READ|FILE_SHARE_WRITE"),
+        ("4", "FILE_SHARE_DELETE"),
+    ]
+
+
+def systeminformationclass_data():
+    return [
+        ("0", "FILE_SUPERSEDE"),
+        ("1", "FILE_OPEN"),
+        ("2", "FILE_CREATE"),
+        ("3", "FILE_OPEN_IF"),
+        ("4", "FILE_OVERWRITE"),
+    ]
+
+
+def category_registry_arg_name_type_data():
+    return [
+        ("0", "REG_NONE"),
+        ("1", "REG_SZ"),
+        ("2", "REG_EXPAND_SZ"),
+        ("3", "REG_BINARY"),
+        ("4", "REG_DWORD"),
+        ("5", "REG_DWORD_BIG_ENDIAN"),
+        ("6", "REG_LINK"),
+        ("7", "REG_MULTI_SZ"),
+        ("8", "REG_RESOURCE_LIST"),
+        ("9", "REG_FULL_RESOURCE_DESCRIPTOR"),
+    ]
+
+
+def api_name_opensc_arg_name_desiredaccess_data():
+    return [
+        ("1", "SC_MANAGER_CONNECT"),
+        ("2", "SC_MANAGER_CREATE_SERVICE"),
+        ("3", "SC_MANAGER_CONNECT|SC_MANAGER_CREATE_SERVICE"),
+        ("4", "SC_MANAGER_ENUMERATE_SERVICE"),
+        ("5", "SC_MANAGER_CONNECT|SC_MANAGER_ENUMERATE_SERVICE"),
+        ("6", "SC_MANAGER_CREATE_SERVICE|SC_MANAGER_ENUMERATE_SERVICE"),
+        ("7", "SC_MANAGER_CONNECT|SC_MANAGER_CREATE_SERVICE|SC_MANAGER_ENUMERATE_SERVICE"),
+        ("8", "SC_MANAGER_LOCK"),
+        ("9", "SC_MANAGER_CONNECT|SC_MANAGER_LOCK"),
+        ("10", "SC_MANAGER_QUERY_LOCK_STATUS"),
+        ("11", "SC_MANAGER_CONNECT|SC_MANAGER_QUERY_LOCK_STATUS"),
+        ("12", "SC_MANAGER_CREATE_SERVICE|SC_MANAGER_QUERY_LOCK_STATUS"),
+        ("13", "SC_MANAGER_CONNECT|SC_MANAGER_CREATE_SERVICE|SC_MANAGER_QUERY_LOCK_STATUS"),
+        ("14", "SC_MANAGER_ENUMERATE_SERVICE|SC_MANAGER_QUERY_LOCK_STATUS"),
+        ("15", "SC_MANAGER_CONNECT|SC_MANAGER_ENUMERATE_SERVICE|SC_MANAGER_QUERY_LOCK_STATUS"),
+        ("16", "SC_MANAGER_CREATE_SERVICE|SC_MANAGER_ENUMERATE_SERVICE|SC_MANAGER_QUERY_LOCK_STATUS"),
+        ("17", "SC_MANAGER_CONNECT|SC_MANAGER_CREATE_SERVICE|SC_MANAGER_ENUMERATE_SERVICE|SC_MANAGER_QUERY_LOCK_STATUS"),
+        ("18", "SC_MANAGER_LOCK|SC_MANAGER_QUERY_LOCK_STATUS"),
+        ("19", "SC_MANAGER_CONNECT|SC_MANAGER_LOCK|SC_MANAGER_QUERY_LOCK_STATUS"),
+        ("20", "SC_MANAGER_MODIFY_BOOT_CONFIG"),
+        ("21", "SC_MANAGER_CONNECT|SC_MANAGER_MODIFY_BOOT_CONFIG"),
+        ("22", "SC_MANAGER_CREATE_SERVICE|SC_MANAGER_MODIFY_BOOT_CONFIG"),
+        ("23", "SC_MANAGER_CONNECT|SC_MANAGER_CREATE_SERVICE|SC_MANAGER_MODIFY_BOOT_CONFIG"),
+        ("24", "SC_MANAGER_ENUMERATE_SERVICE|SC_MANAGER_MODIFY_BOOT_CONFIG"),
+        ("25", "SC_MANAGER_CONNECT|SC_MANAGER_ENUMERATE_SERVICE|SC_MANAGER_MODIFY_BOOT_CONFIG"),
+        ("26", "SC_MANAGER_CREATE_SERVICE|SC_MANAGER_ENUMERATE_SERVICE|SC_MANAGER_MODIFY_BOOT_CONFIG"),
+        ("27", "SC_MANAGER_CONNECT|SC_MANAGER_CREATE_SERVICE|SC_MANAGER_ENUMERATE_SERVICE|SC_MANAGER_MODIFY_BOOT_CONFIG"),
+        ("28", "SC_MANAGER_LOCK|SC_MANAGER_MODIFY_BOOT_CONFIG"),
+        ("29", "SC_MANAGER_CONNECT|SC_MANAGER_LOCK|SC_MANAGER_MODIFY_BOOT_CONFIG"),
+        ("30", "SC_MANAGER_QUERY_LOCK_STATUS|SC_MANAGER_MODIFY_BOOT_CONFIG"),
+        ("31", "SC_MANAGER_CONNECT|SC_MANAGER_QUERY_LOCK_STATUS|SC_MANAGER_MODIFY_BOOT_CONFIG"),
+    ]
+
+
+def category_services_arg_name_controlcode_data():
+    return [
+        ("1", "SERVICE_CONTROL_STOP"),
+        ("2", "SERVICE_CONTROL_PAUSE"),
+        ("3", "SERVICE_CONTROL_CONTINUE"),
+        ("4", "SERVICE_CONTROL_INTERROGATE"),
+        ("6", "SERVICE_CONTROL_PARAMCHANGE"),
+        ("7", "SERVICE_CONTROL_NETBINDADD"),
+        ("8", "SERVICE_CONTROL_NETBINDREMOVE"),
+        ("9", "SERVICE_CONTROL_NETBINDENABLE"),
+    ]
+
+
+def category_services_arg_name_errorcontrol_data():
+    return [
+        ("0", "SERVICE_ERROR_IGNORE"),
+        ("1", "SERVICE_ERROR_NORMAL"),
+        ("2", "SERVICE_ERROR_SEVERE"),
+    ]
+
+
+def category_services_arg_name_starttype_data():
+    return [
+        ("0", "SERVICE_BOOT_START"),
+        ("1", "SERVICE_SYSTEM_START"),
+        ("2", "SERVICE_AUTO_START"),
+        ("3", "SERVICE_DEMAND_START"),
+    ]
+
+
+def category_services_arg_name_servicetype_data():
+    return [
+        ("130", "SERVICE_FILE_SYSTEM_DRIVER"),
+    ]
+
+
+def category_services_arg_name_desiredaccess_data():
+    return [
+        ("1", "SERVICE_QUERY_CONFIG"),
+        ("2", "SERVICE_CHANGE_CONFIG"),
+        ("3", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG"),
+        ("4", "SERVICE_QUERY_STATUS"),
+        ("5", "SERVICE_QUERY_CONFIG|SERVICE_QUERY_STATUS"),
+        ("6", "SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS"),
+        ("7", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS"),
+        ("8", "SERVICE_ENUMERATE_DEPENDENTS"),
+        ("9", "SERVICE_QUERY_CONFIG|SERVICE_ENUMERATE_DEPENDENTS"),
+        ("10", "SERVICE_START"),
+        ("11", "SERVICE_QUERY_CONFIG|SERVICE_START"),
+        ("12", "SERVICE_CHANGE_CONFIG|SERVICE_START"),
+        ("13", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_START"),
+        ("14", "SERVICE_QUERY_STATUS|SERVICE_START"),
+        ("15", "SERVICE_QUERY_CONFIG|SERVICE_QUERY_STATUS|SERVICE_START"),
+        ("16", "SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_START"),
+        ("17", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_START"),
+        ("18", "SERVICE_ENUMERATE_DEPENDENTS|SERVICE_START"),
+        ("19", "SERVICE_QUERY_CONFIG|SERVICE_ENUMERATE_DEPENDENTS|SERVICE_START"),
+        ("20", "SERVICE_STOP"),
+        ("21", "SERVICE_QUERY_CONFIG|SERVICE_STOP"),
+        ("22", "SERVICE_CHANGE_CONFIG|SERVICE_STOP"),
+        ("23", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_STOP"),
+        ("24", "SERVICE_QUERY_STATUS|SERVICE_STOP"),
+        ("25", "SERVICE_QUERY_CONFIG|SERVICE_QUERY_STATUS|SERVICE_STOP"),
+        ("26", "SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_STOP"),
+        ("27", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_STOP"),
+        ("28", "SERVICE_ENUMERATE_DEPENDENTS|SERVICE_STOP"),
+        ("29", "SERVICE_QUERY_CONFIG|SERVICE_ENUMERATE_DEPENDENTS|SERVICE_STOP"),
+        ("30", "SERVICE_START|SERVICE_STOP"),
+        ("31", "SERVICE_QUERY_CONFIG|SERVICE_START|SERVICE_STOP"),
+        ("32", "SERVICE_CHANGE_CONFIG|SERVICE_START|SERVICE_STOP"),
+        ("33", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_START|SERVICE_STOP"),
+        ("34", "SERVICE_QUERY_STATUS|SERVICE_START|SERVICE_STOP"),
+        ("35", "SERVICE_QUERY_CONFIG|SERVICE_QUERY_STATUS|SERVICE_START|SERVICE_STOP"),
+        ("36", "SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_START|SERVICE_STOP"),
+        ("37", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_START|SERVICE_STOP"),
+        ("38", "SERVICE_ENUMERATE_DEPENDENTS|SERVICE_START|SERVICE_STOP"),
+        ("39", "SERVICE_QUERY_CONFIG|SERVICE_ENUMERATE_DEPENDENTS|SERVICE_START|SERVICE_STOP"),
+        ("40", "SERVICE_PAUSE_CONTINUE"),
+        ("41", "SERVICE_QUERY_CONFIG|SERVICE_PAUSE_CONTINUE"),
+        ("42", "SERVICE_CHANGE_CONFIG|SERVICE_PAUSE_CONTINUE"),
+        ("43", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_PAUSE_CONTINUE"),
+        ("44", "SERVICE_QUERY_STATUS|SERVICE_PAUSE_CONTINUE"),
+        ("45", "SERVICE_QUERY_CONFIG|SERVICE_QUERY_STATUS|SERVICE_PAUSE_CONTINUE"),
+        ("46", "SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_PAUSE_CONTINUE"),
+        ("47", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_PAUSE_CONTINUE"),
+        ("48", "SERVICE_ENUMERATE_DEPENDENTS|SERVICE_PAUSE_CONTINUE"),
+        ("49", "SERVICE_QUERY_CONFIG|SERVICE_ENUMERATE_DEPENDENTS|SERVICE_PAUSE_CONTINUE"),
+        ("50", "SERVICE_START|SERVICE_PAUSE_CONTINUE"),
+        ("51", "SERVICE_QUERY_CONFIG|SERVICE_START|SERVICE_PAUSE_CONTINUE"),
+        ("52", "SERVICE_CHANGE_CONFIG|SERVICE_START|SERVICE_PAUSE_CONTINUE"),
+        ("53", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_START|SERVICE_PAUSE_CONTINUE"),
+        ("54", "SERVICE_QUERY_STATUS|SERVICE_START|SERVICE_PAUSE_CONTINUE"),
+        ("55", "SERVICE_QUERY_CONFIG|SERVICE_QUERY_STATUS|SERVICE_START|SERVICE_PAUSE_CONTINUE"),
+        ("56", "SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_START|SERVICE_PAUSE_CONTINUE"),
+        ("57", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_START|SERVICE_PAUSE_CONTINUE"),
+        ("58", "SERVICE_ENUMERATE_DEPENDENTS|SERVICE_START|SERVICE_PAUSE_CONTINUE"),
+        ("59", "SERVICE_QUERY_CONFIG|SERVICE_ENUMERATE_DEPENDENTS|SERVICE_START|SERVICE_PAUSE_CONTINUE"),
+        ("60", "SERVICE_STOP|SERVICE_PAUSE_CONTINUE"),
+        ("61", "SERVICE_QUERY_CONFIG|SERVICE_STOP|SERVICE_PAUSE_CONTINUE"),
+        ("62", "SERVICE_CHANGE_CONFIG|SERVICE_STOP|SERVICE_PAUSE_CONTINUE"),
+        ("63", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_STOP|SERVICE_PAUSE_CONTINUE"),
+        ("64", "SERVICE_QUERY_STATUS|SERVICE_STOP|SERVICE_PAUSE_CONTINUE"),
+        ("65", "SERVICE_QUERY_CONFIG|SERVICE_QUERY_STATUS|SERVICE_STOP|SERVICE_PAUSE_CONTINUE"),
+        ("66", "SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_STOP|SERVICE_PAUSE_CONTINUE"),
+        ("67", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_STOP|SERVICE_PAUSE_CONTINUE"),
+        ("68", "SERVICE_ENUMERATE_DEPENDENTS|SERVICE_STOP|SERVICE_PAUSE_CONTINUE"),
+        ("69", "SERVICE_QUERY_CONFIG|SERVICE_ENUMERATE_DEPENDENTS|SERVICE_STOP|SERVICE_PAUSE_CONTINUE"),
+        ("70", "SERVICE_START|SERVICE_STOP|SERVICE_PAUSE_CONTINUE"),
+        ("71", "SERVICE_QUERY_CONFIG|SERVICE_START|SERVICE_STOP|SERVICE_PAUSE_CONTINUE"),
+        ("72", "SERVICE_CHANGE_CONFIG|SERVICE_START|SERVICE_STOP|SERVICE_PAUSE_CONTINUE"),
+        ("73", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_START|SERVICE_STOP|SERVICE_PAUSE_CONTINUE"),
+        ("74", "SERVICE_QUERY_STATUS|SERVICE_START|SERVICE_STOP|SERVICE_PAUSE_CONTINUE"),
+        ("75", "SERVICE_QUERY_CONFIG|SERVICE_QUERY_STATUS|SERVICE_START|SERVICE_STOP|SERVICE_PAUSE_CONTINUE"),
+        ("76", "SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_START|SERVICE_STOP|SERVICE_PAUSE_CONTINUE"),
+        ("77", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_START|SERVICE_STOP|SERVICE_PAUSE_CONTINUE"),
+        ("78", "SERVICE_ENUMERATE_DEPENDENTS|SERVICE_START|SERVICE_STOP|SERVICE_PAUSE_CONTINUE"),
+        ("79", "SERVICE_QUERY_CONFIG|SERVICE_ENUMERATE_DEPENDENTS|SERVICE_START|SERVICE_STOP|SERVICE_PAUSE_CONTINUE"),
+        ("80", "SERVICE_INTERROGATE"),
+        ("81", "SERVICE_QUERY_CONFIG|SERVICE_INTERROGATE"),
+        ("82", "SERVICE_CHANGE_CONFIG|SERVICE_INTERROGATE"),
+        ("83", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_INTERROGATE"),
+        ("84", "SERVICE_QUERY_STATUS|SERVICE_INTERROGATE"),
+        ("85", "SERVICE_QUERY_CONFIG|SERVICE_QUERY_STATUS|SERVICE_INTERROGATE"),
+        ("86", "SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_INTERROGATE"),
+        ("87", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_INTERROGATE"),
+        ("88", "SERVICE_ENUMERATE_DEPENDENTS|SERVICE_INTERROGATE"),
+        ("89", "SERVICE_QUERY_CONFIG|SERVICE_ENUMERATE_DEPENDENTS|SERVICE_INTERROGATE"),
+        ("90", "SERVICE_START|SERVICE_INTERROGATE"),
+        ("91", "SERVICE_QUERY_CONFIG|SERVICE_START|SERVICE_INTERROGATE"),
+        ("92", "SERVICE_CHANGE_CONFIG|SERVICE_START|SERVICE_INTERROGATE"),
+        ("93", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_START|SERVICE_INTERROGATE"),
+        ("94", "SERVICE_QUERY_STATUS|SERVICE_START|SERVICE_INTERROGATE"),
+        ("95", "SERVICE_QUERY_CONFIG|SERVICE_QUERY_STATUS|SERVICE_START|SERVICE_INTERROGATE"),
+        ("96", "SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_START|SERVICE_INTERROGATE"),
+        ("97", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_START|SERVICE_INTERROGATE"),
+        ("98", "SERVICE_ENUMERATE_DEPENDENTS|SERVICE_START|SERVICE_INTERROGATE"),
+        ("99", "SERVICE_QUERY_CONFIG|SERVICE_ENUMERATE_DEPENDENTS|SERVICE_START|SERVICE_INTERROGATE"),
+        ("100", "SERVICE_USER_DEFINED_CONTROL"),
+        ("101", "SERVICE_QUERY_CONFIG|SERVICE_USER_DEFINED_CONTROL"),
+        ("102", "SERVICE_CHANGE_CONFIG|SERVICE_USER_DEFINED_CONTROL"),
+        ("103", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_USER_DEFINED_CONTROL"),
+        ("104", "SERVICE_QUERY_STATUS|SERVICE_USER_DEFINED_CONTROL"),
+        ("105", "SERVICE_QUERY_CONFIG|SERVICE_QUERY_STATUS|SERVICE_USER_DEFINED_CONTROL"),
+        ("106", "SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_USER_DEFINED_CONTROL"),
+        ("107", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_USER_DEFINED_CONTROL"),
+        ("108", "SERVICE_ENUMERATE_DEPENDENTS|SERVICE_USER_DEFINED_CONTROL"),
+        ("109", "SERVICE_QUERY_CONFIG|SERVICE_ENUMERATE_DEPENDENTS|SERVICE_USER_DEFINED_CONTROL"),
+        ("110", "SERVICE_START|SERVICE_USER_DEFINED_CONTROL"),
+        ("111", "SERVICE_QUERY_CONFIG|SERVICE_START|SERVICE_USER_DEFINED_CONTROL"),
+        ("112", "SERVICE_CHANGE_CONFIG|SERVICE_START|SERVICE_USER_DEFINED_CONTROL"),
+        ("113", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_START|SERVICE_USER_DEFINED_CONTROL"),
+        ("114", "SERVICE_QUERY_STATUS|SERVICE_START|SERVICE_USER_DEFINED_CONTROL"),
+        ("115", "SERVICE_QUERY_CONFIG|SERVICE_QUERY_STATUS|SERVICE_START|SERVICE_USER_DEFINED_CONTROL"),
+        ("116", "SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_START|SERVICE_USER_DEFINED_CONTROL"),
+        ("117", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_START|SERVICE_USER_DEFINED_CONTROL"),
+        ("118", "SERVICE_ENUMERATE_DEPENDENTS|SERVICE_START|SERVICE_USER_DEFINED_CONTROL"),
+        ("119", "SERVICE_QUERY_CONFIG|SERVICE_ENUMERATE_DEPENDENTS|SERVICE_START|SERVICE_USER_DEFINED_CONTROL"),
+        ("120", "SERVICE_STOP|SERVICE_USER_DEFINED_CONTROL"),
+        ("121", "SERVICE_QUERY_CONFIG|SERVICE_STOP|SERVICE_USER_DEFINED_CONTROL"),
+        ("122", "SERVICE_CHANGE_CONFIG|SERVICE_STOP|SERVICE_USER_DEFINED_CONTROL"),
+        ("123", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_STOP|SERVICE_USER_DEFINED_CONTROL"),
+        ("124", "SERVICE_QUERY_STATUS|SERVICE_STOP|SERVICE_USER_DEFINED_CONTROL"),
+        ("125", "SERVICE_QUERY_CONFIG|SERVICE_QUERY_STATUS|SERVICE_STOP|SERVICE_USER_DEFINED_CONTROL"),
+        ("126", "SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_STOP|SERVICE_USER_DEFINED_CONTROL"),
+        ("127", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_STOP|SERVICE_USER_DEFINED_CONTROL"),
+        ("128", "SERVICE_ENUMERATE_DEPENDENTS|SERVICE_STOP|SERVICE_USER_DEFINED_CONTROL"),
+        ("129", "SERVICE_QUERY_CONFIG|SERVICE_ENUMERATE_DEPENDENTS|SERVICE_STOP|SERVICE_USER_DEFINED_CONTROL"),
+        ("130", "SERVICE_START|SERVICE_STOP|SERVICE_USER_DEFINED_CONTROL"),
+        ("131", "SERVICE_QUERY_CONFIG|SERVICE_START|SERVICE_STOP|SERVICE_USER_DEFINED_CONTROL"),
+        ("132", "SERVICE_CHANGE_CONFIG|SERVICE_START|SERVICE_STOP|SERVICE_USER_DEFINED_CONTROL"),
+        ("133", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_START|SERVICE_STOP|SERVICE_USER_DEFINED_CONTROL"),
+        ("134", "SERVICE_QUERY_STATUS|SERVICE_START|SERVICE_STOP|SERVICE_USER_DEFINED_CONTROL"),
+        ("135", "SERVICE_QUERY_CONFIG|SERVICE_QUERY_STATUS|SERVICE_START|SERVICE_STOP|SERVICE_USER_DEFINED_CONTROL"),
+        ("136", "SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_START|SERVICE_STOP|SERVICE_USER_DEFINED_CONTROL"),
+        ("137", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_START|SERVICE_STOP|SERVICE_USER_DEFINED_CONTROL"),
+        ("138", "SERVICE_ENUMERATE_DEPENDENTS|SERVICE_START|SERVICE_STOP|SERVICE_USER_DEFINED_CONTROL"),
+        ("139", "SERVICE_QUERY_CONFIG|SERVICE_ENUMERATE_DEPENDENTS|SERVICE_START|SERVICE_STOP|SERVICE_USER_DEFINED_CONTROL"),
+        ("140", "SERVICE_PAUSE_CONTINUE|SERVICE_USER_DEFINED_CONTROL"),
+        ("141", "SERVICE_QUERY_CONFIG|SERVICE_PAUSE_CONTINUE|SERVICE_USER_DEFINED_CONTROL"),
+        ("142", "SERVICE_CHANGE_CONFIG|SERVICE_PAUSE_CONTINUE|SERVICE_USER_DEFINED_CONTROL"),
+        ("143", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_PAUSE_CONTINUE|SERVICE_USER_DEFINED_CONTROL"),
+        ("144", "SERVICE_QUERY_STATUS|SERVICE_PAUSE_CONTINUE|SERVICE_USER_DEFINED_CONTROL"),
+        ("145", "SERVICE_QUERY_CONFIG|SERVICE_QUERY_STATUS|SERVICE_PAUSE_CONTINUE|SERVICE_USER_DEFINED_CONTROL"),
+        ("146", "SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_PAUSE_CONTINUE|SERVICE_USER_DEFINED_CONTROL"),
+        ("147", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_PAUSE_CONTINUE|SERVICE_USER_DEFINED_CONTROL"),
+        ("148", "SERVICE_ENUMERATE_DEPENDENTS|SERVICE_PAUSE_CONTINUE|SERVICE_USER_DEFINED_CONTROL"),
+        ("149", "SERVICE_QUERY_CONFIG|SERVICE_ENUMERATE_DEPENDENTS|SERVICE_PAUSE_CONTINUE|SERVICE_USER_DEFINED_CONTROL"),
+        ("150", "SERVICE_START|SERVICE_PAUSE_CONTINUE|SERVICE_USER_DEFINED_CONTROL"),
+        ("151", "SERVICE_QUERY_CONFIG|SERVICE_START|SERVICE_PAUSE_CONTINUE|SERVICE_USER_DEFINED_CONTROL"),
+        ("152", "SERVICE_CHANGE_CONFIG|SERVICE_START|SERVICE_PAUSE_CONTINUE|SERVICE_USER_DEFINED_CONTROL"),
+        ("153", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_START|SERVICE_PAUSE_CONTINUE|SERVICE_USER_DEFINED_CONTROL"),
+        ("154", "SERVICE_QUERY_STATUS|SERVICE_START|SERVICE_PAUSE_CONTINUE|SERVICE_USER_DEFINED_CONTROL"),
+        ("155", "SERVICE_QUERY_CONFIG|SERVICE_QUERY_STATUS|SERVICE_START|SERVICE_PAUSE_CONTINUE|SERVICE_USER_DEFINED_CONTROL"),
+        ("156", "SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_START|SERVICE_PAUSE_CONTINUE|SERVICE_USER_DEFINED_CONTROL"),
+        ("157", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_START|SERVICE_PAUSE_CONTINUE|SERVICE_USER_DEFINED_CONTROL"),
+        ("158", "SERVICE_ENUMERATE_DEPENDENTS|SERVICE_START|SERVICE_PAUSE_CONTINUE|SERVICE_USER_DEFINED_CONTROL"),
+        ("159", "SERVICE_QUERY_CONFIG|SERVICE_ENUMERATE_DEPENDENTS|SERVICE_START|SERVICE_PAUSE_CONTINUE|SERVICE_USER_DEFINED_CONTROL"),
+        ("160", "SERVICE_STOP|SERVICE_PAUSE_CONTINUE|SERVICE_USER_DEFINED_CONTROL"),
+        ("161", "SERVICE_QUERY_CONFIG|SERVICE_STOP|SERVICE_PAUSE_CONTINUE|SERVICE_USER_DEFINED_CONTROL"),
+        ("162", "SERVICE_CHANGE_CONFIG|SERVICE_STOP|SERVICE_PAUSE_CONTINUE|SERVICE_USER_DEFINED_CONTROL"),
+        ("163", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_STOP|SERVICE_PAUSE_CONTINUE|SERVICE_USER_DEFINED_CONTROL"),
+        ("164", "SERVICE_QUERY_STATUS|SERVICE_STOP|SERVICE_PAUSE_CONTINUE|SERVICE_USER_DEFINED_CONTROL"),
+        ("165", "SERVICE_QUERY_CONFIG|SERVICE_QUERY_STATUS|SERVICE_STOP|SERVICE_PAUSE_CONTINUE|SERVICE_USER_DEFINED_CONTROL"),
+        ("166", "SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_STOP|SERVICE_PAUSE_CONTINUE|SERVICE_USER_DEFINED_CONTROL"),
+        ("167", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_STOP|SERVICE_PAUSE_CONTINUE|SERVICE_USER_DEFINED_CONTROL"),
+        ("168", "SERVICE_ENUMERATE_DEPENDENTS|SERVICE_STOP|SERVICE_PAUSE_CONTINUE|SERVICE_USER_DEFINED_CONTROL"),
+        ("169", "SERVICE_QUERY_CONFIG|SERVICE_ENUMERATE_DEPENDENTS|SERVICE_STOP|SERVICE_PAUSE_CONTINUE|SERVICE_USER_DEFINED_CONTROL"),
+        ("170", "SERVICE_START|SERVICE_STOP|SERVICE_PAUSE_CONTINUE|SERVICE_USER_DEFINED_CONTROL"),
+        ("171", "SERVICE_QUERY_CONFIG|SERVICE_START|SERVICE_STOP|SERVICE_PAUSE_CONTINUE|SERVICE_USER_DEFINED_CONTROL"),
+        ("172", "SERVICE_CHANGE_CONFIG|SERVICE_START|SERVICE_STOP|SERVICE_PAUSE_CONTINUE|SERVICE_USER_DEFINED_CONTROL"),
+        ("173", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_START|SERVICE_STOP|SERVICE_PAUSE_CONTINUE|SERVICE_USER_DEFINED_CONTROL"),
+        ("174", "SERVICE_QUERY_STATUS|SERVICE_START|SERVICE_STOP|SERVICE_PAUSE_CONTINUE|SERVICE_USER_DEFINED_CONTROL"),
+        ("175", "SERVICE_QUERY_CONFIG|SERVICE_QUERY_STATUS|SERVICE_START|SERVICE_STOP|SERVICE_PAUSE_CONTINUE|SERVICE_USER_DEFINED_CONTROL"),
+        ("176", "SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_START|SERVICE_STOP|SERVICE_PAUSE_CONTINUE|SERVICE_USER_DEFINED_CONTROL"),
+        ("177", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_START|SERVICE_STOP|SERVICE_PAUSE_CONTINUE|SERVICE_USER_DEFINED_CONTROL"),
+        ("178", "SERVICE_ENUMERATE_DEPENDENTS|SERVICE_START|SERVICE_STOP|SERVICE_PAUSE_CONTINUE|SERVICE_USER_DEFINED_CONTROL"),
+        ("179", "SERVICE_QUERY_CONFIG|SERVICE_ENUMERATE_DEPENDENTS|SERVICE_START|SERVICE_STOP|SERVICE_PAUSE_CONTINUE|SERVICE_USER_DEFINED_CONTROL"),
+        ("180", "SERVICE_INTERROGATE|SERVICE_USER_DEFINED_CONTROL"),
+        ("181", "SERVICE_QUERY_CONFIG|SERVICE_INTERROGATE|SERVICE_USER_DEFINED_CONTROL"),
+        ("182", "SERVICE_CHANGE_CONFIG|SERVICE_INTERROGATE|SERVICE_USER_DEFINED_CONTROL"),
+        ("183", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_INTERROGATE|SERVICE_USER_DEFINED_CONTROL"),
+        ("184", "SERVICE_QUERY_STATUS|SERVICE_INTERROGATE|SERVICE_USER_DEFINED_CONTROL"),
+        ("185", "SERVICE_QUERY_CONFIG|SERVICE_QUERY_STATUS|SERVICE_INTERROGATE|SERVICE_USER_DEFINED_CONTROL"),
+        ("186", "SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_INTERROGATE|SERVICE_USER_DEFINED_CONTROL"),
+        ("187", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_INTERROGATE|SERVICE_USER_DEFINED_CONTROL"),
+        ("188", "SERVICE_ENUMERATE_DEPENDENTS|SERVICE_INTERROGATE|SERVICE_USER_DEFINED_CONTROL"),
+        ("189", "SERVICE_QUERY_CONFIG|SERVICE_ENUMERATE_DEPENDENTS|SERVICE_INTERROGATE|SERVICE_USER_DEFINED_CONTROL"),
+        ("190", "SERVICE_START|SERVICE_INTERROGATE|SERVICE_USER_DEFINED_CONTROL"),
+        ("191", "SERVICE_QUERY_CONFIG|SERVICE_START|SERVICE_INTERROGATE|SERVICE_USER_DEFINED_CONTROL"),
+        ("192", "SERVICE_CHANGE_CONFIG|SERVICE_START|SERVICE_INTERROGATE|SERVICE_USER_DEFINED_CONTROL"),
+        ("193", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_START|SERVICE_INTERROGATE|SERVICE_USER_DEFINED_CONTROL"),
+        ("194", "SERVICE_QUERY_STATUS|SERVICE_START|SERVICE_INTERROGATE|SERVICE_USER_DEFINED_CONTROL"),
+        ("195", "SERVICE_QUERY_CONFIG|SERVICE_QUERY_STATUS|SERVICE_START|SERVICE_INTERROGATE|SERVICE_USER_DEFINED_CONTROL"),
+        ("196", "SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_START|SERVICE_INTERROGATE|SERVICE_USER_DEFINED_CONTROL"),
+        ("197", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_START|SERVICE_INTERROGATE|SERVICE_USER_DEFINED_CONTROL"),
+        ("198", "SERVICE_ENUMERATE_DEPENDENTS|SERVICE_START|SERVICE_INTERROGATE|SERVICE_USER_DEFINED_CONTROL"),
+        ("199", "SERVICE_QUERY_CONFIG|SERVICE_ENUMERATE_DEPENDENTS|SERVICE_START|SERVICE_INTERROGATE|SERVICE_USER_DEFINED_CONTROL"),
+        ("200", "0x00000200"),
+        ("201", "SERVICE_QUERY_CONFIG|0x00000200"),
+        ("202", "SERVICE_CHANGE_CONFIG|0x00000200"),
+        ("203", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|0x00000200"),
+        ("204", "SERVICE_QUERY_STATUS|0x00000200"),
+        ("205", "SERVICE_QUERY_CONFIG|SERVICE_QUERY_STATUS|0x00000200"),
+        ("206", "SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|0x00000200"),
+        ("207", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|0x00000200"),
+        ("208", "SERVICE_ENUMERATE_DEPENDENTS|0x00000200"),
+        ("209", "SERVICE_QUERY_CONFIG|SERVICE_ENUMERATE_DEPENDENTS|0x00000200"),
+        ("210", "SERVICE_START|0x00000200"),
+        ("211", "SERVICE_QUERY_CONFIG|SERVICE_START|0x00000200"),
+        ("212", "SERVICE_CHANGE_CONFIG|SERVICE_START|0x00000200"),
+        ("213", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_START|0x00000200"),
+        ("214", "SERVICE_QUERY_STATUS|SERVICE_START|0x00000200"),
+        ("215", "SERVICE_QUERY_CONFIG|SERVICE_QUERY_STATUS|SERVICE_START|0x00000200"),
+        ("216", "SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_START|0x00000200"),
+        ("217", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_START|0x00000200"),
+        ("218", "SERVICE_ENUMERATE_DEPENDENTS|SERVICE_START|0x00000200"),
+        ("219", "SERVICE_QUERY_CONFIG|SERVICE_ENUMERATE_DEPENDENTS|SERVICE_START|0x00000200"),
+        ("220", "SERVICE_STOP|0x00000200"),
+        ("221", "SERVICE_QUERY_CONFIG|SERVICE_STOP|0x00000200"),
+        ("222", "SERVICE_CHANGE_CONFIG|SERVICE_STOP|0x00000200"),
+        ("223", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_STOP|0x00000200"),
+        ("224", "SERVICE_QUERY_STATUS|SERVICE_STOP|0x00000200"),
+        ("225", "SERVICE_QUERY_CONFIG|SERVICE_QUERY_STATUS|SERVICE_STOP|0x00000200"),
+        ("226", "SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_STOP|0x00000200"),
+        ("227", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_STOP|0x00000200"),
+        ("228", "SERVICE_ENUMERATE_DEPENDENTS|SERVICE_STOP|0x00000200"),
+        ("229", "SERVICE_QUERY_CONFIG|SERVICE_ENUMERATE_DEPENDENTS|SERVICE_STOP|0x00000200"),
+        ("230", "SERVICE_START|SERVICE_STOP|0x00000200"),
+        ("231", "SERVICE_QUERY_CONFIG|SERVICE_START|SERVICE_STOP|0x00000200"),
+        ("232", "SERVICE_CHANGE_CONFIG|SERVICE_START|SERVICE_STOP|0x00000200"),
+        ("233", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_START|SERVICE_STOP|0x00000200"),
+        ("234", "SERVICE_QUERY_STATUS|SERVICE_START|SERVICE_STOP|0x00000200"),
+        ("235", "SERVICE_QUERY_CONFIG|SERVICE_QUERY_STATUS|SERVICE_START|SERVICE_STOP|0x00000200"),
+        ("236", "SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_START|SERVICE_STOP|0x00000200"),
+        ("237", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_START|SERVICE_STOP|0x00000200"),
+        ("238", "SERVICE_ENUMERATE_DEPENDENTS|SERVICE_START|SERVICE_STOP|0x00000200"),
+        ("239", "SERVICE_QUERY_CONFIG|SERVICE_ENUMERATE_DEPENDENTS|SERVICE_START|SERVICE_STOP|0x00000200"),
+        ("240", "SERVICE_PAUSE_CONTINUE|0x00000200"),
+        ("241", "SERVICE_QUERY_CONFIG|SERVICE_PAUSE_CONTINUE|0x00000200"),
+        ("242", "SERVICE_CHANGE_CONFIG|SERVICE_PAUSE_CONTINUE|0x00000200"),
+        ("243", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_PAUSE_CONTINUE|0x00000200"),
+        ("244", "SERVICE_QUERY_STATUS|SERVICE_PAUSE_CONTINUE|0x00000200"),
+        ("245", "SERVICE_QUERY_CONFIG|SERVICE_QUERY_STATUS|SERVICE_PAUSE_CONTINUE|0x00000200"),
+        ("246", "SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_PAUSE_CONTINUE|0x00000200"),
+        ("247", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_QUERY_STATUS|SERVICE_PAUSE_CONTINUE|0x00000200"),
+        ("248", "SERVICE_ENUMERATE_DEPENDENTS|SERVICE_PAUSE_CONTINUE|0x00000200"),
+        ("249", "SERVICE_QUERY_CONFIG|SERVICE_ENUMERATE_DEPENDENTS|SERVICE_PAUSE_CONTINUE|0x00000200"),
+        ("250", "SERVICE_START|SERVICE_PAUSE_CONTINUE|0x00000200"),
+        ("251", "SERVICE_QUERY_CONFIG|SERVICE_START|SERVICE_PAUSE_CONTINUE|0x00000200"),
+        ("252", "SERVICE_CHANGE_CONFIG|SERVICE_START|SERVICE_PAUSE_CONTINUE|0x00000200"),
+        ("253", "SERVICE_QUERY_CONFIG|SERVICE_CHANGE_CONFIG|SERVICE_START|SERVICE_PAUSE_CONTINUE|0x00000200"),
+        ("254", "SERVICE_QUERY_STATUS|SERVICE_START|SERVICE_PAUSE_CONTINUE|0x00000200"),
+        ("255", "SERVICE_QUERY_CONFIG|SERVICE_QUERY_STATUS|SERVICE_START|SERVICE_PAUSE_CONTINUE|0x00000200"),
+    ]
+
+
+def category_registry_arg_name_access_desired_access_data():
+    return [
+        ("1", "KEY_QUERY_VALUE"),
+        ("2", "KEY_SET_VALUE"),
+        ("3", "KEY_QUERY_VALUE|KEY_SET_VALUE"),
+        ("4", "KEY_CREATE_SUB_KEY"),
+        ("5", "KEY_QUERY_VALUE|KEY_CREATE_SUB_KEY"),
+        ("6", "KEY_SET_VALUE|KEY_CREATE_SUB_KEY"),
+        ("7", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_CREATE_SUB_KEY"),
+        ("8", "KEY_ENUMERATE_SUB_KEYS"),
+        ("9", "KEY_QUERY_VALUE|KEY_ENUMERATE_SUB_KEYS"),
+        ("10", "KEY_NOTIFY"),
+        ("11", "KEY_QUERY_VALUE|KEY_NOTIFY"),
+        ("12", "KEY_SET_VALUE|KEY_NOTIFY"),
+        ("13", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_NOTIFY"),
+        ("14", "KEY_CREATE_SUB_KEY|KEY_NOTIFY"),
+        ("15", "KEY_QUERY_VALUE|KEY_CREATE_SUB_KEY|KEY_NOTIFY"),
+        ("16", "KEY_SET_VALUE|KEY_CREATE_SUB_KEY|KEY_NOTIFY"),
+        ("17", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_CREATE_SUB_KEY|KEY_NOTIFY"),
+        ("18", "KEY_ENUMERATE_SUB_KEYS|KEY_NOTIFY"),
+        ("19", "KEY_QUERY_VALUE|KEY_ENUMERATE_SUB_KEYS|KEY_NOTIFY"),
+        ("20", "KEY_CREATE_LINK"),
+        ("21", "KEY_QUERY_VALUE|KEY_CREATE_LINK"),
+        ("22", "KEY_SET_VALUE|KEY_CREATE_LINK"),
+        ("23", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_CREATE_LINK"),
+        ("24", "KEY_CREATE_SUB_KEY|KEY_CREATE_LINK"),
+        ("25", "KEY_QUERY_VALUE|KEY_CREATE_SUB_KEY|KEY_CREATE_LINK"),
+        ("26", "KEY_SET_VALUE|KEY_CREATE_SUB_KEY|KEY_CREATE_LINK"),
+        ("27", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_CREATE_SUB_KEY|KEY_CREATE_LINK"),
+        ("28", "KEY_ENUMERATE_SUB_KEYS|KEY_CREATE_LINK"),
+        ("29", "KEY_QUERY_VALUE|KEY_ENUMERATE_SUB_KEYS|KEY_CREATE_LINK"),
+        ("30", "KEY_NOTIFY|KEY_CREATE_LINK"),
+        ("31", "KEY_QUERY_VALUE|KEY_NOTIFY|KEY_CREATE_LINK"),
+        ("32", "KEY_SET_VALUE|KEY_NOTIFY|KEY_CREATE_LINK"),
+        ("33", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_NOTIFY|KEY_CREATE_LINK"),
+        ("34", "KEY_CREATE_SUB_KEY|KEY_NOTIFY|KEY_CREATE_LINK"),
+        ("35", "KEY_QUERY_VALUE|KEY_CREATE_SUB_KEY|KEY_NOTIFY|KEY_CREATE_LINK"),
+        ("36", "KEY_SET_VALUE|KEY_CREATE_SUB_KEY|KEY_NOTIFY|KEY_CREATE_LINK"),
+        ("37", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_CREATE_SUB_KEY|KEY_NOTIFY|KEY_CREATE_LINK"),
+        ("38", "KEY_ENUMERATE_SUB_KEYS|KEY_NOTIFY|KEY_CREATE_LINK"),
+        ("39", "KEY_QUERY_VALUE|KEY_ENUMERATE_SUB_KEYS|KEY_NOTIFY|KEY_CREATE_LINK"),
+        ("40", "0x00000040"),
+        ("41", "KEY_QUERY_VALUE|0x00000040"),
+        ("42", "KEY_SET_VALUE|0x00000040"),
+        ("43", "KEY_QUERY_VALUE|KEY_SET_VALUE|0x00000040"),
+        ("44", "KEY_CREATE_SUB_KEY|0x00000040"),
+        ("45", "KEY_QUERY_VALUE|KEY_CREATE_SUB_KEY|0x00000040"),
+        ("46", "KEY_SET_VALUE|KEY_CREATE_SUB_KEY|0x00000040"),
+        ("47", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_CREATE_SUB_KEY|0x00000040"),
+        ("48", "KEY_ENUMERATE_SUB_KEYS|0x00000040"),
+        ("49", "KEY_QUERY_VALUE|KEY_ENUMERATE_SUB_KEYS|0x00000040"),
+        ("50", "KEY_NOTIFY|0x00000040"),
+        ("51", "KEY_QUERY_VALUE|KEY_NOTIFY|0x00000040"),
+        ("52", "KEY_SET_VALUE|KEY_NOTIFY|0x00000040"),
+        ("53", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_NOTIFY|0x00000040"),
+        ("54", "KEY_CREATE_SUB_KEY|KEY_NOTIFY|0x00000040"),
+        ("55", "KEY_QUERY_VALUE|KEY_CREATE_SUB_KEY|KEY_NOTIFY|0x00000040"),
+        ("56", "KEY_SET_VALUE|KEY_CREATE_SUB_KEY|KEY_NOTIFY|0x00000040"),
+        ("57", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_CREATE_SUB_KEY|KEY_NOTIFY|0x00000040"),
+        ("58", "KEY_ENUMERATE_SUB_KEYS|KEY_NOTIFY|0x00000040"),
+        ("59", "KEY_QUERY_VALUE|KEY_ENUMERATE_SUB_KEYS|KEY_NOTIFY|0x00000040"),
+        ("60", "KEY_CREATE_LINK|0x00000040"),
+        ("61", "KEY_QUERY_VALUE|KEY_CREATE_LINK|0x00000040"),
+        ("62", "KEY_SET_VALUE|KEY_CREATE_LINK|0x00000040"),
+        ("63", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_CREATE_LINK|0x00000040"),
+        ("64", "KEY_CREATE_SUB_KEY|KEY_CREATE_LINK|0x00000040"),
+        ("65", "KEY_QUERY_VALUE|KEY_CREATE_SUB_KEY|KEY_CREATE_LINK|0x00000040"),
+        ("66", "KEY_SET_VALUE|KEY_CREATE_SUB_KEY|KEY_CREATE_LINK|0x00000040"),
+        ("67", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_CREATE_SUB_KEY|KEY_CREATE_LINK|0x00000040"),
+        ("68", "KEY_ENUMERATE_SUB_KEYS|KEY_CREATE_LINK|0x00000040"),
+        ("69", "KEY_QUERY_VALUE|KEY_ENUMERATE_SUB_KEYS|KEY_CREATE_LINK|0x00000040"),
+        ("70", "KEY_NOTIFY|KEY_CREATE_LINK|0x00000040"),
+        ("71", "KEY_QUERY_VALUE|KEY_NOTIFY|KEY_CREATE_LINK|0x00000040"),
+        ("72", "KEY_SET_VALUE|KEY_NOTIFY|KEY_CREATE_LINK|0x00000040"),
+        ("73", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_NOTIFY|KEY_CREATE_LINK|0x00000040"),
+        ("74", "KEY_CREATE_SUB_KEY|KEY_NOTIFY|KEY_CREATE_LINK|0x00000040"),
+        ("75", "KEY_QUERY_VALUE|KEY_CREATE_SUB_KEY|KEY_NOTIFY|KEY_CREATE_LINK|0x00000040"),
+        ("76", "KEY_SET_VALUE|KEY_CREATE_SUB_KEY|KEY_NOTIFY|KEY_CREATE_LINK|0x00000040"),
+        ("77", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_CREATE_SUB_KEY|KEY_NOTIFY|KEY_CREATE_LINK|0x00000040"),
+        ("78", "KEY_ENUMERATE_SUB_KEYS|KEY_NOTIFY|KEY_CREATE_LINK|0x00000040"),
+        ("79", "KEY_QUERY_VALUE|KEY_ENUMERATE_SUB_KEYS|KEY_NOTIFY|KEY_CREATE_LINK|0x00000040"),
+        ("80", "0x00000080"),
+        ("81", "KEY_QUERY_VALUE|0x00000080"),
+        ("82", "KEY_SET_VALUE|0x00000080"),
+        ("83", "KEY_QUERY_VALUE|KEY_SET_VALUE|0x00000080"),
+        ("84", "KEY_CREATE_SUB_KEY|0x00000080"),
+        ("85", "KEY_QUERY_VALUE|KEY_CREATE_SUB_KEY|0x00000080"),
+        ("86", "KEY_SET_VALUE|KEY_CREATE_SUB_KEY|0x00000080"),
+        ("87", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_CREATE_SUB_KEY|0x00000080"),
+        ("88", "KEY_ENUMERATE_SUB_KEYS|0x00000080"),
+        ("89", "KEY_QUERY_VALUE|KEY_ENUMERATE_SUB_KEYS|0x00000080"),
+        ("90", "KEY_NOTIFY|0x00000080"),
+        ("91", "KEY_QUERY_VALUE|KEY_NOTIFY|0x00000080"),
+        ("92", "KEY_SET_VALUE|KEY_NOTIFY|0x00000080"),
+        ("93", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_NOTIFY|0x00000080"),
+        ("94", "KEY_CREATE_SUB_KEY|KEY_NOTIFY|0x00000080"),
+        ("95", "KEY_QUERY_VALUE|KEY_CREATE_SUB_KEY|KEY_NOTIFY|0x00000080"),
+        ("96", "KEY_SET_VALUE|KEY_CREATE_SUB_KEY|KEY_NOTIFY|0x00000080"),
+        ("97", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_CREATE_SUB_KEY|KEY_NOTIFY|0x00000080"),
+        ("98", "KEY_ENUMERATE_SUB_KEYS|KEY_NOTIFY|0x00000080"),
+        ("99", "KEY_QUERY_VALUE|KEY_ENUMERATE_SUB_KEYS|KEY_NOTIFY|0x00000080"),
+        ("100", "KEY_WOW64_64KEY"),
+        ("101", "KEY_QUERY_VALUE|KEY_WOW64_64KEY"),
+        ("102", "KEY_SET_VALUE|KEY_WOW64_64KEY"),
+        ("103", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_WOW64_64KEY"),
+        ("104", "KEY_CREATE_SUB_KEY|KEY_WOW64_64KEY"),
+        ("105", "KEY_QUERY_VALUE|KEY_CREATE_SUB_KEY|KEY_WOW64_64KEY"),
+        ("106", "KEY_SET_VALUE|KEY_CREATE_SUB_KEY|KEY_WOW64_64KEY"),
+        ("107", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_CREATE_SUB_KEY|KEY_WOW64_64KEY"),
+        ("108", "KEY_ENUMERATE_SUB_KEYS|KEY_WOW64_64KEY"),
+        ("109", "KEY_QUERY_VALUE|KEY_ENUMERATE_SUB_KEYS|KEY_WOW64_64KEY"),
+        ("110", "KEY_NOTIFY|KEY_WOW64_64KEY"),
+        ("111", "KEY_QUERY_VALUE|KEY_NOTIFY|KEY_WOW64_64KEY"),
+        ("112", "KEY_SET_VALUE|KEY_NOTIFY|KEY_WOW64_64KEY"),
+        ("113", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_NOTIFY|KEY_WOW64_64KEY"),
+        ("114", "KEY_CREATE_SUB_KEY|KEY_NOTIFY|KEY_WOW64_64KEY"),
+        ("115", "KEY_QUERY_VALUE|KEY_CREATE_SUB_KEY|KEY_NOTIFY|KEY_WOW64_64KEY"),
+        ("116", "KEY_SET_VALUE|KEY_CREATE_SUB_KEY|KEY_NOTIFY|KEY_WOW64_64KEY"),
+        ("117", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_CREATE_SUB_KEY|KEY_NOTIFY|KEY_WOW64_64KEY"),
+        ("118", "KEY_ENUMERATE_SUB_KEYS|KEY_NOTIFY|KEY_WOW64_64KEY"),
+        ("119", "KEY_QUERY_VALUE|KEY_ENUMERATE_SUB_KEYS|KEY_NOTIFY|KEY_WOW64_64KEY"),
+        ("120", "KEY_CREATE_LINK|KEY_WOW64_64KEY"),
+        ("121", "KEY_QUERY_VALUE|KEY_CREATE_LINK|KEY_WOW64_64KEY"),
+        ("122", "KEY_SET_VALUE|KEY_CREATE_LINK|KEY_WOW64_64KEY"),
+        ("123", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_CREATE_LINK|KEY_WOW64_64KEY"),
+        ("124", "KEY_CREATE_SUB_KEY|KEY_CREATE_LINK|KEY_WOW64_64KEY"),
+        ("125", "KEY_QUERY_VALUE|KEY_CREATE_SUB_KEY|KEY_CREATE_LINK|KEY_WOW64_64KEY"),
+        ("126", "KEY_SET_VALUE|KEY_CREATE_SUB_KEY|KEY_CREATE_LINK|KEY_WOW64_64KEY"),
+        ("127", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_CREATE_SUB_KEY|KEY_CREATE_LINK|KEY_WOW64_64KEY"),
+        ("128", "KEY_ENUMERATE_SUB_KEYS|KEY_CREATE_LINK|KEY_WOW64_64KEY"),
+        ("129", "KEY_QUERY_VALUE|KEY_ENUMERATE_SUB_KEYS|KEY_CREATE_LINK|KEY_WOW64_64KEY"),
+        ("130", "KEY_NOTIFY|KEY_CREATE_LINK|KEY_WOW64_64KEY"),
+        ("131", "KEY_QUERY_VALUE|KEY_NOTIFY|KEY_CREATE_LINK|KEY_WOW64_64KEY"),
+        ("132", "KEY_SET_VALUE|KEY_NOTIFY|KEY_CREATE_LINK|KEY_WOW64_64KEY"),
+        ("133", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_NOTIFY|KEY_CREATE_LINK|KEY_WOW64_64KEY"),
+        ("134", "KEY_CREATE_SUB_KEY|KEY_NOTIFY|KEY_CREATE_LINK|KEY_WOW64_64KEY"),
+        ("135", "KEY_QUERY_VALUE|KEY_CREATE_SUB_KEY|KEY_NOTIFY|KEY_CREATE_LINK|KEY_WOW64_64KEY"),
+        ("136", "KEY_SET_VALUE|KEY_CREATE_SUB_KEY|KEY_NOTIFY|KEY_CREATE_LINK|KEY_WOW64_64KEY"),
+        ("137", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_CREATE_SUB_KEY|KEY_NOTIFY|KEY_CREATE_LINK|KEY_WOW64_64KEY"),
+        ("138", "KEY_ENUMERATE_SUB_KEYS|KEY_NOTIFY|KEY_CREATE_LINK|KEY_WOW64_64KEY"),
+        ("139", "KEY_QUERY_VALUE|KEY_ENUMERATE_SUB_KEYS|KEY_NOTIFY|KEY_CREATE_LINK|KEY_WOW64_64KEY"),
+        ("140", "KEY_WOW64_64KEY|0x00000040"),
+        ("141", "KEY_QUERY_VALUE|KEY_WOW64_64KEY|0x00000040"),
+        ("142", "KEY_SET_VALUE|KEY_WOW64_64KEY|0x00000040"),
+        ("143", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_WOW64_64KEY|0x00000040"),
+        ("144", "KEY_CREATE_SUB_KEY|KEY_WOW64_64KEY|0x00000040"),
+        ("145", "KEY_QUERY_VALUE|KEY_CREATE_SUB_KEY|KEY_WOW64_64KEY|0x00000040"),
+        ("146", "KEY_SET_VALUE|KEY_CREATE_SUB_KEY|KEY_WOW64_64KEY|0x00000040"),
+        ("147", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_CREATE_SUB_KEY|KEY_WOW64_64KEY|0x00000040"),
+        ("148", "KEY_ENUMERATE_SUB_KEYS|KEY_WOW64_64KEY|0x00000040"),
+        ("149", "KEY_QUERY_VALUE|KEY_ENUMERATE_SUB_KEYS|KEY_WOW64_64KEY|0x00000040"),
+        ("150", "KEY_NOTIFY|KEY_WOW64_64KEY|0x00000040"),
+        ("151", "KEY_QUERY_VALUE|KEY_NOTIFY|KEY_WOW64_64KEY|0x00000040"),
+        ("152", "KEY_SET_VALUE|KEY_NOTIFY|KEY_WOW64_64KEY|0x00000040"),
+        ("153", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_NOTIFY|KEY_WOW64_64KEY|0x00000040"),
+        ("154", "KEY_CREATE_SUB_KEY|KEY_NOTIFY|KEY_WOW64_64KEY|0x00000040"),
+        ("155", "KEY_QUERY_VALUE|KEY_CREATE_SUB_KEY|KEY_NOTIFY|KEY_WOW64_64KEY|0x00000040"),
+        ("156", "KEY_SET_VALUE|KEY_CREATE_SUB_KEY|KEY_NOTIFY|KEY_WOW64_64KEY|0x00000040"),
+        ("157", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_CREATE_SUB_KEY|KEY_NOTIFY|KEY_WOW64_64KEY|0x00000040"),
+        ("158", "KEY_ENUMERATE_SUB_KEYS|KEY_NOTIFY|KEY_WOW64_64KEY|0x00000040"),
+        ("159", "KEY_QUERY_VALUE|KEY_ENUMERATE_SUB_KEYS|KEY_NOTIFY|KEY_WOW64_64KEY|0x00000040"),
+        ("160", "KEY_CREATE_LINK|KEY_WOW64_64KEY|0x00000040"),
+        ("161", "KEY_QUERY_VALUE|KEY_CREATE_LINK|KEY_WOW64_64KEY|0x00000040"),
+        ("162", "KEY_SET_VALUE|KEY_CREATE_LINK|KEY_WOW64_64KEY|0x00000040"),
+        ("163", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_CREATE_LINK|KEY_WOW64_64KEY|0x00000040"),
+        ("164", "KEY_CREATE_SUB_KEY|KEY_CREATE_LINK|KEY_WOW64_64KEY|0x00000040"),
+        ("165", "KEY_QUERY_VALUE|KEY_CREATE_SUB_KEY|KEY_CREATE_LINK|KEY_WOW64_64KEY|0x00000040"),
+        ("166", "KEY_SET_VALUE|KEY_CREATE_SUB_KEY|KEY_CREATE_LINK|KEY_WOW64_64KEY|0x00000040"),
+        ("167", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_CREATE_SUB_KEY|KEY_CREATE_LINK|KEY_WOW64_64KEY|0x00000040"),
+        ("168", "KEY_ENUMERATE_SUB_KEYS|KEY_CREATE_LINK|KEY_WOW64_64KEY|0x00000040"),
+        ("169", "KEY_QUERY_VALUE|KEY_ENUMERATE_SUB_KEYS|KEY_CREATE_LINK|KEY_WOW64_64KEY|0x00000040"),
+        ("170", "KEY_NOTIFY|KEY_CREATE_LINK|KEY_WOW64_64KEY|0x00000040"),
+        ("171", "KEY_QUERY_VALUE|KEY_NOTIFY|KEY_CREATE_LINK|KEY_WOW64_64KEY|0x00000040"),
+        ("172", "KEY_SET_VALUE|KEY_NOTIFY|KEY_CREATE_LINK|KEY_WOW64_64KEY|0x00000040"),
+        ("173", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_NOTIFY|KEY_CREATE_LINK|KEY_WOW64_64KEY|0x00000040"),
+        ("174", "KEY_CREATE_SUB_KEY|KEY_NOTIFY|KEY_CREATE_LINK|KEY_WOW64_64KEY|0x00000040"),
+        ("175", "KEY_QUERY_VALUE|KEY_CREATE_SUB_KEY|KEY_NOTIFY|KEY_CREATE_LINK|KEY_WOW64_64KEY|0x00000040"),
+        ("176", "KEY_SET_VALUE|KEY_CREATE_SUB_KEY|KEY_NOTIFY|KEY_CREATE_LINK|KEY_WOW64_64KEY|0x00000040"),
+        ("177", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_CREATE_SUB_KEY|KEY_NOTIFY|KEY_CREATE_LINK|KEY_WOW64_64KEY|0x00000040"),
+        ("178", "KEY_ENUMERATE_SUB_KEYS|KEY_NOTIFY|KEY_CREATE_LINK|KEY_WOW64_64KEY|0x00000040"),
+        ("179", "KEY_QUERY_VALUE|KEY_ENUMERATE_SUB_KEYS|KEY_NOTIFY|KEY_CREATE_LINK|KEY_WOW64_64KEY|0x00000040"),
+        ("180", "KEY_WOW64_64KEY|0x00000080"),
+        ("181", "KEY_QUERY_VALUE|KEY_WOW64_64KEY|0x00000080"),
+        ("182", "KEY_SET_VALUE|KEY_WOW64_64KEY|0x00000080"),
+        ("183", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_WOW64_64KEY|0x00000080"),
+        ("184", "KEY_CREATE_SUB_KEY|KEY_WOW64_64KEY|0x00000080"),
+        ("185", "KEY_QUERY_VALUE|KEY_CREATE_SUB_KEY|KEY_WOW64_64KEY|0x00000080"),
+        ("186", "KEY_SET_VALUE|KEY_CREATE_SUB_KEY|KEY_WOW64_64KEY|0x00000080"),
+        ("187", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_CREATE_SUB_KEY|KEY_WOW64_64KEY|0x00000080"),
+        ("188", "KEY_ENUMERATE_SUB_KEYS|KEY_WOW64_64KEY|0x00000080"),
+        ("189", "KEY_QUERY_VALUE|KEY_ENUMERATE_SUB_KEYS|KEY_WOW64_64KEY|0x00000080"),
+        ("190", "KEY_NOTIFY|KEY_WOW64_64KEY|0x00000080"),
+        ("191", "KEY_QUERY_VALUE|KEY_NOTIFY|KEY_WOW64_64KEY|0x00000080"),
+        ("192", "KEY_SET_VALUE|KEY_NOTIFY|KEY_WOW64_64KEY|0x00000080"),
+        ("193", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_NOTIFY|KEY_WOW64_64KEY|0x00000080"),
+        ("194", "KEY_CREATE_SUB_KEY|KEY_NOTIFY|KEY_WOW64_64KEY|0x00000080"),
+        ("195", "KEY_QUERY_VALUE|KEY_CREATE_SUB_KEY|KEY_NOTIFY|KEY_WOW64_64KEY|0x00000080"),
+        ("196", "KEY_SET_VALUE|KEY_CREATE_SUB_KEY|KEY_NOTIFY|KEY_WOW64_64KEY|0x00000080"),
+        ("197", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_CREATE_SUB_KEY|KEY_NOTIFY|KEY_WOW64_64KEY|0x00000080"),
+        ("198", "KEY_ENUMERATE_SUB_KEYS|KEY_NOTIFY|KEY_WOW64_64KEY|0x00000080"),
+        ("199", "KEY_QUERY_VALUE|KEY_ENUMERATE_SUB_KEYS|KEY_NOTIFY|KEY_WOW64_64KEY|0x00000080"),
+        ("200", "0x00000200"),
+        ("201", "KEY_QUERY_VALUE|0x00000200"),
+        ("202", "KEY_SET_VALUE|0x00000200"),
+        ("203", "KEY_QUERY_VALUE|KEY_SET_VALUE|0x00000200"),
+        ("204", "KEY_CREATE_SUB_KEY|0x00000200"),
+        ("205", "KEY_QUERY_VALUE|KEY_CREATE_SUB_KEY|0x00000200"),
+        ("206", "KEY_SET_VALUE|KEY_CREATE_SUB_KEY|0x00000200"),
+        ("207", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_CREATE_SUB_KEY|0x00000200"),
+        ("208", "KEY_ENUMERATE_SUB_KEYS|0x00000200"),
+        ("209", "KEY_QUERY_VALUE|KEY_ENUMERATE_SUB_KEYS|0x00000200"),
+        ("210", "KEY_NOTIFY|0x00000200"),
+        ("211", "KEY_QUERY_VALUE|KEY_NOTIFY|0x00000200"),
+        ("212", "KEY_SET_VALUE|KEY_NOTIFY|0x00000200"),
+        ("213", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_NOTIFY|0x00000200"),
+        ("214", "KEY_CREATE_SUB_KEY|KEY_NOTIFY|0x00000200"),
+        ("215", "KEY_QUERY_VALUE|KEY_CREATE_SUB_KEY|KEY_NOTIFY|0x00000200"),
+        ("216", "KEY_SET_VALUE|KEY_CREATE_SUB_KEY|KEY_NOTIFY|0x00000200"),
+        ("217", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_CREATE_SUB_KEY|KEY_NOTIFY|0x00000200"),
+        ("218", "KEY_ENUMERATE_SUB_KEYS|KEY_NOTIFY|0x00000200"),
+        ("219", "KEY_QUERY_VALUE|KEY_ENUMERATE_SUB_KEYS|KEY_NOTIFY|0x00000200"),
+        ("220", "KEY_CREATE_LINK|0x00000200"),
+        ("221", "KEY_QUERY_VALUE|KEY_CREATE_LINK|0x00000200"),
+        ("222", "KEY_SET_VALUE|KEY_CREATE_LINK|0x00000200"),
+        ("223", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_CREATE_LINK|0x00000200"),
+        ("224", "KEY_CREATE_SUB_KEY|KEY_CREATE_LINK|0x00000200"),
+        ("225", "KEY_QUERY_VALUE|KEY_CREATE_SUB_KEY|KEY_CREATE_LINK|0x00000200"),
+        ("226", "KEY_SET_VALUE|KEY_CREATE_SUB_KEY|KEY_CREATE_LINK|0x00000200"),
+        ("227", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_CREATE_SUB_KEY|KEY_CREATE_LINK|0x00000200"),
+        ("228", "KEY_ENUMERATE_SUB_KEYS|KEY_CREATE_LINK|0x00000200"),
+        ("229", "KEY_QUERY_VALUE|KEY_ENUMERATE_SUB_KEYS|KEY_CREATE_LINK|0x00000200"),
+        ("230", "KEY_NOTIFY|KEY_CREATE_LINK|0x00000200"),
+        ("231", "KEY_QUERY_VALUE|KEY_NOTIFY|KEY_CREATE_LINK|0x00000200"),
+        ("232", "KEY_SET_VALUE|KEY_NOTIFY|KEY_CREATE_LINK|0x00000200"),
+        ("233", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_NOTIFY|KEY_CREATE_LINK|0x00000200"),
+        ("234", "KEY_CREATE_SUB_KEY|KEY_NOTIFY|KEY_CREATE_LINK|0x00000200"),
+        ("235", "KEY_QUERY_VALUE|KEY_CREATE_SUB_KEY|KEY_NOTIFY|KEY_CREATE_LINK|0x00000200"),
+        ("236", "KEY_SET_VALUE|KEY_CREATE_SUB_KEY|KEY_NOTIFY|KEY_CREATE_LINK|0x00000200"),
+        ("237", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_CREATE_SUB_KEY|KEY_NOTIFY|KEY_CREATE_LINK|0x00000200"),
+        ("238", "KEY_ENUMERATE_SUB_KEYS|KEY_NOTIFY|KEY_CREATE_LINK|0x00000200"),
+        ("239", "KEY_QUERY_VALUE|KEY_ENUMERATE_SUB_KEYS|KEY_NOTIFY|KEY_CREATE_LINK|0x00000200"),
+        ("240", "0x00000240"),
+        ("241", "KEY_QUERY_VALUE|0x00000240"),
+        ("242", "KEY_SET_VALUE|0x00000240"),
+        ("243", "KEY_QUERY_VALUE|KEY_SET_VALUE|0x00000240"),
+        ("244", "KEY_CREATE_SUB_KEY|0x00000240"),
+        ("245", "KEY_QUERY_VALUE|KEY_CREATE_SUB_KEY|0x00000240"),
+        ("246", "KEY_SET_VALUE|KEY_CREATE_SUB_KEY|0x00000240"),
+        ("247", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_CREATE_SUB_KEY|0x00000240"),
+        ("248", "KEY_ENUMERATE_SUB_KEYS|0x00000240"),
+        ("249", "KEY_QUERY_VALUE|KEY_ENUMERATE_SUB_KEYS|0x00000240"),
+        ("250", "KEY_NOTIFY|0x00000240"),
+        ("251", "KEY_QUERY_VALUE|KEY_NOTIFY|0x00000240"),
+        ("252", "KEY_SET_VALUE|KEY_NOTIFY|0x00000240"),
+        ("253", "KEY_QUERY_VALUE|KEY_SET_VALUE|KEY_NOTIFY|0x00000240"),
+        ("254", "KEY_CREATE_SUB_KEY|KEY_NOTIFY|0x00000240"),
+        ("255", "KEY_QUERY_VALUE|KEY_CREATE_SUB_KEY|KEY_NOTIFY|0x00000240"),
+    ]
+
+
+def arg_name_protection_and_others_data():
+    return [
+        ("1", "PAGE_NOACCESS"),
+        ("2", "PAGE_READONLY"),
+        ("3", "PAGE_NOACCESS|PAGE_READONLY"),
+        ("4", "PAGE_READWRITE"),
+        ("5", "PAGE_NOACCESS|PAGE_READWRITE"),
+        ("6", "PAGE_READONLY|PAGE_READWRITE"),
+        ("7", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE"),
+        ("8", "PAGE_WRITECOPY"),
+        ("9", "PAGE_NOACCESS|PAGE_WRITECOPY"),
+        ("10", "PAGE_EXECUTE"),
+        ("11", "PAGE_NOACCESS|PAGE_EXECUTE"),
+        ("12", "PAGE_READONLY|PAGE_EXECUTE"),
+        ("13", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE"),
+        ("14", "PAGE_READWRITE|PAGE_EXECUTE"),
+        ("15", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE"),
+        ("16", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE"),
+        ("17", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE"),
+        ("18", "PAGE_WRITECOPY|PAGE_EXECUTE"),
+        ("19", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE"),
+        ("20", "PAGE_EXECUTE_READ"),
+        ("21", "PAGE_NOACCESS|PAGE_EXECUTE_READ"),
+        ("22", "PAGE_READONLY|PAGE_EXECUTE_READ"),
+        ("23", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE_READ"),
+        ("24", "PAGE_READWRITE|PAGE_EXECUTE_READ"),
+        ("25", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE_READ"),
+        ("26", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READ"),
+        ("27", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READ"),
+        ("28", "PAGE_WRITECOPY|PAGE_EXECUTE_READ"),
+        ("29", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE_READ"),
+        ("30", "PAGE_EXECUTE|PAGE_EXECUTE_READ"),
+        ("31", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_EXECUTE_READ"),
+        ("32", "PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READ"),
+        ("33", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READ"),
+        ("34", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ"),
+        ("35", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ"),
+        ("36", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ"),
+        ("37", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ"),
+        ("38", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READ"),
+        ("39", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READ"),
+        ("40", "PAGE_EXECUTE_READWRITE"),
+        ("41", "PAGE_NOACCESS|PAGE_EXECUTE_READWRITE"),
+        ("42", "PAGE_READONLY|PAGE_EXECUTE_READWRITE"),
+        ("43", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE_READWRITE"),
+        ("44", "PAGE_READWRITE|PAGE_EXECUTE_READWRITE"),
+        ("45", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE_READWRITE"),
+        ("46", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READWRITE"),
+        ("47", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READWRITE"),
+        ("48", "PAGE_WRITECOPY|PAGE_EXECUTE_READWRITE"),
+        ("49", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE_READWRITE"),
+        ("50", "PAGE_EXECUTE|PAGE_EXECUTE_READWRITE"),
+        ("51", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE"),
+        ("52", "PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE"),
+        ("53", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE"),
+        ("54", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE"),
+        ("55", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE"),
+        ("56", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE"),
+        ("57", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE"),
+        ("58", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE"),
+        ("59", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE"),
+        ("60", "PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE"),
+        ("61", "PAGE_NOACCESS|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE"),
+        ("62", "PAGE_READONLY|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE"),
+        ("63", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE"),
+        ("64", "PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE"),
+        ("65", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE"),
+        ("66", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE"),
+        ("67", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE"),
+        ("68", "PAGE_WRITECOPY|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE"),
+        ("69", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE"),
+        ("70", "PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE"),
+        ("71", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE"),
+        ("72", "PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE"),
+        ("73", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE"),
+        ("74", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE"),
+        ("75", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE"),
+        ("76", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE"),
+        ("77", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE"),
+        ("78", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE"),
+        ("79", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE"),
+        ("80", "PAGE_EXECUTE_WRITECOPY"),
+        ("81", "PAGE_NOACCESS|PAGE_EXECUTE_WRITECOPY"),
+        ("82", "PAGE_READONLY|PAGE_EXECUTE_WRITECOPY"),
+        ("83", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE_WRITECOPY"),
+        ("84", "PAGE_READWRITE|PAGE_EXECUTE_WRITECOPY"),
+        ("85", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE_WRITECOPY"),
+        ("86", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_WRITECOPY"),
+        ("87", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_WRITECOPY"),
+        ("88", "PAGE_WRITECOPY|PAGE_EXECUTE_WRITECOPY"),
+        ("89", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE_WRITECOPY"),
+        ("90", "PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY"),
+        ("91", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY"),
+        ("92", "PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY"),
+        ("93", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY"),
+        ("94", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY"),
+        ("95", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY"),
+        ("96", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY"),
+        ("97", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY"),
+        ("98", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY"),
+        ("99", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY"),
+        ("100", "PAGE_GUARD"),
+        ("101", "PAGE_NOACCESS|PAGE_GUARD"),
+        ("102", "PAGE_READONLY|PAGE_GUARD"),
+        ("103", "PAGE_NOACCESS|PAGE_READONLY|PAGE_GUARD"),
+        ("104", "PAGE_READWRITE|PAGE_GUARD"),
+        ("105", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_GUARD"),
+        ("106", "PAGE_READONLY|PAGE_READWRITE|PAGE_GUARD"),
+        ("107", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_GUARD"),
+        ("108", "PAGE_WRITECOPY|PAGE_GUARD"),
+        ("109", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_GUARD"),
+        ("110", "PAGE_EXECUTE|PAGE_GUARD"),
+        ("111", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_GUARD"),
+        ("112", "PAGE_READONLY|PAGE_EXECUTE|PAGE_GUARD"),
+        ("113", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_GUARD"),
+        ("114", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_GUARD"),
+        ("115", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_GUARD"),
+        ("116", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_GUARD"),
+        ("117", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_GUARD"),
+        ("118", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_GUARD"),
+        ("119", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_GUARD"),
+        ("120", "PAGE_EXECUTE_READ|PAGE_GUARD"),
+        ("121", "PAGE_NOACCESS|PAGE_EXECUTE_READ|PAGE_GUARD"),
+        ("122", "PAGE_READONLY|PAGE_EXECUTE_READ|PAGE_GUARD"),
+        ("123", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE_READ|PAGE_GUARD"),
+        ("124", "PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_GUARD"),
+        ("125", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_GUARD"),
+        ("126", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_GUARD"),
+        ("127", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_GUARD"),
+        ("128", "PAGE_WRITECOPY|PAGE_EXECUTE_READ|PAGE_GUARD"),
+        ("129", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE_READ|PAGE_GUARD"),
+        ("130", "PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD"),
+        ("131", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD"),
+        ("132", "PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD"),
+        ("133", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD"),
+        ("134", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD"),
+        ("135", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD"),
+        ("136", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD"),
+        ("137", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD"),
+        ("138", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD"),
+        ("139", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD"),
+        ("140", "PAGE_EXECUTE_READWRITE|PAGE_GUARD"),
+        ("141", "PAGE_NOACCESS|PAGE_EXECUTE_READWRITE|PAGE_GUARD"),
+        ("142", "PAGE_READONLY|PAGE_EXECUTE_READWRITE|PAGE_GUARD"),
+        ("143", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE_READWRITE|PAGE_GUARD"),
+        ("144", "PAGE_READWRITE|PAGE_EXECUTE_READWRITE|PAGE_GUARD"),
+        ("145", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE_READWRITE|PAGE_GUARD"),
+        ("146", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READWRITE|PAGE_GUARD"),
+        ("147", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READWRITE|PAGE_GUARD"),
+        ("148", "PAGE_WRITECOPY|PAGE_EXECUTE_READWRITE|PAGE_GUARD"),
+        ("149", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE_READWRITE|PAGE_GUARD"),
+        ("150", "PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD"),
+        ("151", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD"),
+        ("152", "PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD"),
+        ("153", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD"),
+        ("154", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD"),
+        ("155", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD"),
+        ("156", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD"),
+        ("157", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD"),
+        ("158", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD"),
+        ("159", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD"),
+        ("160", "PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD"),
+        ("161", "PAGE_NOACCESS|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD"),
+        ("162", "PAGE_READONLY|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD"),
+        ("163", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD"),
+        ("164", "PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD"),
+        ("165", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD"),
+        ("166", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD"),
+        ("167", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD"),
+        ("168", "PAGE_WRITECOPY|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD"),
+        ("169", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD"),
+        ("170", "PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD"),
+        ("171", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD"),
+        ("172", "PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD"),
+        ("173", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD"),
+        ("174", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD"),
+        ("175", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD"),
+        ("176", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD"),
+        ("177", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD"),
+        ("178", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD"),
+        ("179", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD"),
+        ("180", "PAGE_EXECUTE_WRITECOPY|PAGE_GUARD"),
+        ("181", "PAGE_NOACCESS|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD"),
+        ("182", "PAGE_READONLY|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD"),
+        ("183", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD"),
+        ("184", "PAGE_READWRITE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD"),
+        ("185", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD"),
+        ("186", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD"),
+        ("187", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD"),
+        ("188", "PAGE_WRITECOPY|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD"),
+        ("189", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD"),
+        ("190", "PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD"),
+        ("191", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD"),
+        ("192", "PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD"),
+        ("193", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD"),
+        ("194", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD"),
+        ("195", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD"),
+        ("196", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD"),
+        ("197", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD"),
+        ("198", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD"),
+        ("199", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD"),
+        ("200", "PAGE_NOCACHE"),
+        ("201", "PAGE_NOACCESS|PAGE_NOCACHE"),
+        ("202", "PAGE_READONLY|PAGE_NOCACHE"),
+        ("203", "PAGE_NOACCESS|PAGE_READONLY|PAGE_NOCACHE"),
+        ("204", "PAGE_READWRITE|PAGE_NOCACHE"),
+        ("205", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_NOCACHE"),
+        ("206", "PAGE_READONLY|PAGE_READWRITE|PAGE_NOCACHE"),
+        ("207", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_NOCACHE"),
+        ("208", "PAGE_WRITECOPY|PAGE_NOCACHE"),
+        ("209", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_NOCACHE"),
+        ("210", "PAGE_EXECUTE|PAGE_NOCACHE"),
+        ("211", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_NOCACHE"),
+        ("212", "PAGE_READONLY|PAGE_EXECUTE|PAGE_NOCACHE"),
+        ("213", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_NOCACHE"),
+        ("214", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_NOCACHE"),
+        ("215", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_NOCACHE"),
+        ("216", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_NOCACHE"),
+        ("217", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_NOCACHE"),
+        ("218", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_NOCACHE"),
+        ("219", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_NOCACHE"),
+        ("220", "PAGE_EXECUTE_READ|PAGE_NOCACHE"),
+        ("221", "PAGE_NOACCESS|PAGE_EXECUTE_READ|PAGE_NOCACHE"),
+        ("222", "PAGE_READONLY|PAGE_EXECUTE_READ|PAGE_NOCACHE"),
+        ("223", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE_READ|PAGE_NOCACHE"),
+        ("224", "PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_NOCACHE"),
+        ("225", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_NOCACHE"),
+        ("226", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_NOCACHE"),
+        ("227", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_NOCACHE"),
+        ("228", "PAGE_WRITECOPY|PAGE_EXECUTE_READ|PAGE_NOCACHE"),
+        ("229", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE_READ|PAGE_NOCACHE"),
+        ("230", "PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_NOCACHE"),
+        ("231", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_NOCACHE"),
+        ("232", "PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_NOCACHE"),
+        ("233", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_NOCACHE"),
+        ("234", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_NOCACHE"),
+        ("235", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_NOCACHE"),
+        ("236", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_NOCACHE"),
+        ("237", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_NOCACHE"),
+        ("238", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_NOCACHE"),
+        ("239", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_NOCACHE"),
+        ("240", "PAGE_EXECUTE_READWRITE|PAGE_NOCACHE"),
+        ("241", "PAGE_NOACCESS|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE"),
+        ("242", "PAGE_READONLY|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE"),
+        ("243", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE"),
+        ("244", "PAGE_READWRITE|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE"),
+        ("245", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE"),
+        ("246", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE"),
+        ("247", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE"),
+        ("248", "PAGE_WRITECOPY|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE"),
+        ("249", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE"),
+        ("250", "PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE"),
+        ("251", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE"),
+        ("252", "PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE"),
+        ("253", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE"),
+        ("254", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE"),
+        ("255", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE"),
+        ("256", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE"),
+        ("257", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE"),
+        ("258", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE"),
+        ("259", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE"),
+        ("260", "PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE"),
+        ("261", "PAGE_NOACCESS|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE"),
+        ("262", "PAGE_READONLY|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE"),
+        ("263", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE"),
+        ("264", "PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE"),
+        ("265", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE"),
+        ("266", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE"),
+        ("267", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE"),
+        ("268", "PAGE_WRITECOPY|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE"),
+        ("269", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE"),
+        ("270", "PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE"),
+        ("271", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE"),
+        ("272", "PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE"),
+        ("273", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE"),
+        ("274", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE"),
+        ("275", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE"),
+        ("276", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE"),
+        ("277", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE"),
+        ("278", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE"),
+        ("279", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE"),
+        ("280", "PAGE_EXECUTE_WRITECOPY|PAGE_NOCACHE"),
+        ("281", "PAGE_NOACCESS|PAGE_EXECUTE_WRITECOPY|PAGE_NOCACHE"),
+        ("282", "PAGE_READONLY|PAGE_EXECUTE_WRITECOPY|PAGE_NOCACHE"),
+        ("283", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE_WRITECOPY|PAGE_NOCACHE"),
+        ("284", "PAGE_READWRITE|PAGE_EXECUTE_WRITECOPY|PAGE_NOCACHE"),
+        ("285", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE_WRITECOPY|PAGE_NOCACHE"),
+        ("286", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_WRITECOPY|PAGE_NOCACHE"),
+        ("287", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_WRITECOPY|PAGE_NOCACHE"),
+        ("288", "PAGE_WRITECOPY|PAGE_EXECUTE_WRITECOPY|PAGE_NOCACHE"),
+        ("289", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE_WRITECOPY|PAGE_NOCACHE"),
+        ("290", "PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_NOCACHE"),
+        ("291", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_NOCACHE"),
+        ("292", "PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_NOCACHE"),
+        ("293", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_NOCACHE"),
+        ("294", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_NOCACHE"),
+        ("295", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_NOCACHE"),
+        ("296", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_NOCACHE"),
+        ("297", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_NOCACHE"),
+        ("298", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_NOCACHE"),
+        ("299", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_NOCACHE"),
+        ("300", "PAGE_GUARD|PAGE_NOCACHE"),
+        ("301", "PAGE_NOACCESS|PAGE_GUARD|PAGE_NOCACHE"),
+        ("302", "PAGE_READONLY|PAGE_GUARD|PAGE_NOCACHE"),
+        ("303", "PAGE_NOACCESS|PAGE_READONLY|PAGE_GUARD|PAGE_NOCACHE"),
+        ("304", "PAGE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("305", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("306", "PAGE_READONLY|PAGE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("307", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("308", "PAGE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE"),
+        ("309", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE"),
+        ("310", "PAGE_EXECUTE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("311", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("312", "PAGE_READONLY|PAGE_EXECUTE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("313", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("314", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("315", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("316", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("317", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("318", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("319", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("320", "PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_NOCACHE"),
+        ("321", "PAGE_NOACCESS|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_NOCACHE"),
+        ("322", "PAGE_READONLY|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_NOCACHE"),
+        ("323", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_NOCACHE"),
+        ("324", "PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_NOCACHE"),
+        ("325", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_NOCACHE"),
+        ("326", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_NOCACHE"),
+        ("327", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_NOCACHE"),
+        ("328", "PAGE_WRITECOPY|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_NOCACHE"),
+        ("329", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_NOCACHE"),
+        ("330", "PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_NOCACHE"),
+        ("331", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_NOCACHE"),
+        ("332", "PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_NOCACHE"),
+        ("333", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_NOCACHE"),
+        ("334", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_NOCACHE"),
+        ("335", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_NOCACHE"),
+        ("336", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_NOCACHE"),
+        ("337", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_NOCACHE"),
+        ("338", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_NOCACHE"),
+        ("339", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_NOCACHE"),
+        ("340", "PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("341", "PAGE_NOACCESS|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("342", "PAGE_READONLY|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("343", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("344", "PAGE_READWRITE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("345", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("346", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("347", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("348", "PAGE_WRITECOPY|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("349", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("350", "PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("351", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("352", "PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("353", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("354", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("355", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("356", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("357", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("358", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("359", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("360", "PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("361", "PAGE_NOACCESS|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("362", "PAGE_READONLY|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("363", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("364", "PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("365", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("366", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("367", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("368", "PAGE_WRITECOPY|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("369", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("370", "PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("371", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("372", "PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("373", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("374", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("375", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("376", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("377", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("378", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("379", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE"),
+        ("380", "PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE"),
+        ("381", "PAGE_NOACCESS|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE"),
+        ("382", "PAGE_READONLY|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE"),
+        ("383", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE"),
+        ("384", "PAGE_READWRITE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE"),
+        ("385", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE"),
+        ("386", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE"),
+        ("387", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE"),
+        ("388", "PAGE_WRITECOPY|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE"),
+        ("389", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE"),
+        ("390", "PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE"),
+        ("391", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE"),
+        ("392", "PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE"),
+        ("393", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE"),
+        ("394", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE"),
+        ("395", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE"),
+        ("396", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE"),
+        ("397", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE"),
+        ("398", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE"),
+        ("399", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE"),
+        ("400", "PAGE_WRITECOMBINE"),
+        ("401", "PAGE_NOACCESS|PAGE_WRITECOMBINE"),
+        ("402", "PAGE_READONLY|PAGE_WRITECOMBINE"),
+        ("403", "PAGE_NOACCESS|PAGE_READONLY|PAGE_WRITECOMBINE"),
+        ("404", "PAGE_READWRITE|PAGE_WRITECOMBINE"),
+        ("405", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_WRITECOMBINE"),
+        ("406", "PAGE_READONLY|PAGE_READWRITE|PAGE_WRITECOMBINE"),
+        ("407", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_WRITECOMBINE"),
+        ("408", "PAGE_WRITECOPY|PAGE_WRITECOMBINE"),
+        ("409", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_WRITECOMBINE"),
+        ("410", "PAGE_EXECUTE|PAGE_WRITECOMBINE"),
+        ("411", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_WRITECOMBINE"),
+        ("412", "PAGE_READONLY|PAGE_EXECUTE|PAGE_WRITECOMBINE"),
+        ("413", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_WRITECOMBINE"),
+        ("414", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_WRITECOMBINE"),
+        ("415", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_WRITECOMBINE"),
+        ("416", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_WRITECOMBINE"),
+        ("417", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_WRITECOMBINE"),
+        ("418", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_WRITECOMBINE"),
+        ("419", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_WRITECOMBINE"),
+        ("420", "PAGE_EXECUTE_READ|PAGE_WRITECOMBINE"),
+        ("421", "PAGE_NOACCESS|PAGE_EXECUTE_READ|PAGE_WRITECOMBINE"),
+        ("422", "PAGE_READONLY|PAGE_EXECUTE_READ|PAGE_WRITECOMBINE"),
+        ("423", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE_READ|PAGE_WRITECOMBINE"),
+        ("424", "PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_WRITECOMBINE"),
+        ("425", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_WRITECOMBINE"),
+        ("426", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_WRITECOMBINE"),
+        ("427", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_WRITECOMBINE"),
+        ("428", "PAGE_WRITECOPY|PAGE_EXECUTE_READ|PAGE_WRITECOMBINE"),
+        ("429", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE_READ|PAGE_WRITECOMBINE"),
+        ("430", "PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_WRITECOMBINE"),
+        ("431", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_WRITECOMBINE"),
+        ("432", "PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_WRITECOMBINE"),
+        ("433", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_WRITECOMBINE"),
+        ("434", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_WRITECOMBINE"),
+        ("435", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_WRITECOMBINE"),
+        ("436", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_WRITECOMBINE"),
+        ("437", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_WRITECOMBINE"),
+        ("438", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_WRITECOMBINE"),
+        ("439", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_WRITECOMBINE"),
+        ("440", "PAGE_EXECUTE_READWRITE|PAGE_WRITECOMBINE"),
+        ("441", "PAGE_NOACCESS|PAGE_EXECUTE_READWRITE|PAGE_WRITECOMBINE"),
+        ("442", "PAGE_READONLY|PAGE_EXECUTE_READWRITE|PAGE_WRITECOMBINE"),
+        ("443", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE_READWRITE|PAGE_WRITECOMBINE"),
+        ("444", "PAGE_READWRITE|PAGE_EXECUTE_READWRITE|PAGE_WRITECOMBINE"),
+        ("445", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE_READWRITE|PAGE_WRITECOMBINE"),
+        ("446", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READWRITE|PAGE_WRITECOMBINE"),
+        ("447", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READWRITE|PAGE_WRITECOMBINE"),
+        ("448", "PAGE_WRITECOPY|PAGE_EXECUTE_READWRITE|PAGE_WRITECOMBINE"),
+        ("449", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE_READWRITE|PAGE_WRITECOMBINE"),
+        ("450", "PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_WRITECOMBINE"),
+        ("451", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_WRITECOMBINE"),
+        ("452", "PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_WRITECOMBINE"),
+        ("453", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_WRITECOMBINE"),
+        ("454", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_WRITECOMBINE"),
+        ("455", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_WRITECOMBINE"),
+        ("456", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_WRITECOMBINE"),
+        ("457", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_WRITECOMBINE"),
+        ("458", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_WRITECOMBINE"),
+        ("459", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_WRITECOMBINE"),
+        ("460", "PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_WRITECOMBINE"),
+        ("461", "PAGE_NOACCESS|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_WRITECOMBINE"),
+        ("462", "PAGE_READONLY|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_WRITECOMBINE"),
+        ("463", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_WRITECOMBINE"),
+        ("464", "PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_WRITECOMBINE"),
+        ("465", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_WRITECOMBINE"),
+        ("466", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_WRITECOMBINE"),
+        ("467", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_WRITECOMBINE"),
+        ("468", "PAGE_WRITECOPY|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_WRITECOMBINE"),
+        ("469", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_WRITECOMBINE"),
+        ("470", "PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_WRITECOMBINE"),
+        ("471", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_WRITECOMBINE"),
+        ("472", "PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_WRITECOMBINE"),
+        ("473", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_WRITECOMBINE"),
+        ("474", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_WRITECOMBINE"),
+        ("475", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_WRITECOMBINE"),
+        ("476", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_WRITECOMBINE"),
+        ("477", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_WRITECOMBINE"),
+        ("478", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_WRITECOMBINE"),
+        ("479", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_WRITECOMBINE"),
+        ("480", "PAGE_EXECUTE_WRITECOPY|PAGE_WRITECOMBINE"),
+        ("481", "PAGE_NOACCESS|PAGE_EXECUTE_WRITECOPY|PAGE_WRITECOMBINE"),
+        ("482", "PAGE_READONLY|PAGE_EXECUTE_WRITECOPY|PAGE_WRITECOMBINE"),
+        ("483", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE_WRITECOPY|PAGE_WRITECOMBINE"),
+        ("484", "PAGE_READWRITE|PAGE_EXECUTE_WRITECOPY|PAGE_WRITECOMBINE"),
+        ("485", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE_WRITECOPY|PAGE_WRITECOMBINE"),
+        ("486", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_WRITECOPY|PAGE_WRITECOMBINE"),
+        ("487", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_WRITECOPY|PAGE_WRITECOMBINE"),
+        ("488", "PAGE_WRITECOPY|PAGE_EXECUTE_WRITECOPY|PAGE_WRITECOMBINE"),
+        ("489", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE_WRITECOPY|PAGE_WRITECOMBINE"),
+        ("490", "PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_WRITECOMBINE"),
+        ("491", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_WRITECOMBINE"),
+        ("492", "PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_WRITECOMBINE"),
+        ("493", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_WRITECOMBINE"),
+        ("494", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_WRITECOMBINE"),
+        ("495", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_WRITECOMBINE"),
+        ("496", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_WRITECOMBINE"),
+        ("497", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_WRITECOMBINE"),
+        ("498", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_WRITECOMBINE"),
+        ("499", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_WRITECOMBINE"),
+        ("500", "PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("501", "PAGE_NOACCESS|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("502", "PAGE_READONLY|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("503", "PAGE_NOACCESS|PAGE_READONLY|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("504", "PAGE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("505", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("506", "PAGE_READONLY|PAGE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("507", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("508", "PAGE_WRITECOPY|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("509", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("510", "PAGE_EXECUTE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("511", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("512", "PAGE_READONLY|PAGE_EXECUTE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("513", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("514", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("515", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("516", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("517", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("518", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("519", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("520", "PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("521", "PAGE_NOACCESS|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("522", "PAGE_READONLY|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("523", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("524", "PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("525", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("526", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("527", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("528", "PAGE_WRITECOPY|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("529", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("530", "PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("531", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("532", "PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("533", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("534", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("535", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("536", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("537", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("538", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("539", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("540", "PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("541", "PAGE_NOACCESS|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("542", "PAGE_READONLY|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("543", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("544", "PAGE_READWRITE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("545", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("546", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("547", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("548", "PAGE_WRITECOPY|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("549", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("550", "PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("551", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("552", "PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("553", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("554", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("555", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("556", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("557", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("558", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("559", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("560", "PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("561", "PAGE_NOACCESS|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("562", "PAGE_READONLY|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("563", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("564", "PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("565", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("566", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("567", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("568", "PAGE_WRITECOPY|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("569", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("570", "PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("571", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("572", "PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("573", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("574", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("575", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("576", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("577", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("578", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("579", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("580", "PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("581", "PAGE_NOACCESS|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("582", "PAGE_READONLY|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("583", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("584", "PAGE_READWRITE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("585", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("586", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("587", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("588", "PAGE_WRITECOPY|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("589", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("590", "PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("591", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("592", "PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("593", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("594", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("595", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("596", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("597", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("598", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("599", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_WRITECOMBINE"),
+        ("600", "PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("601", "PAGE_NOACCESS|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("602", "PAGE_READONLY|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("603", "PAGE_NOACCESS|PAGE_READONLY|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("604", "PAGE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("605", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("606", "PAGE_READONLY|PAGE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("607", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("608", "PAGE_WRITECOPY|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("609", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("610", "PAGE_EXECUTE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("611", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("612", "PAGE_READONLY|PAGE_EXECUTE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("613", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("614", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("615", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("616", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("617", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("618", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("619", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("620", "PAGE_EXECUTE_READ|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("621", "PAGE_NOACCESS|PAGE_EXECUTE_READ|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("622", "PAGE_READONLY|PAGE_EXECUTE_READ|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("623", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE_READ|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("624", "PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("625", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("626", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("627", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("628", "PAGE_WRITECOPY|PAGE_EXECUTE_READ|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("629", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE_READ|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("630", "PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("631", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("632", "PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("633", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("634", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("635", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("636", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("637", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("638", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("639", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("640", "PAGE_EXECUTE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("641", "PAGE_NOACCESS|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("642", "PAGE_READONLY|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("643", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("644", "PAGE_READWRITE|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("645", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("646", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("647", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("648", "PAGE_WRITECOPY|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("649", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("650", "PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("651", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("652", "PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("653", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("654", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("655", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("656", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("657", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("658", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("659", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("660", "PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("661", "PAGE_NOACCESS|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("662", "PAGE_READONLY|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("663", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("664", "PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("665", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("666", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("667", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("668", "PAGE_WRITECOPY|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("669", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("670", "PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("671", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("672", "PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("673", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("674", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("675", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("676", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("677", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("678", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("679", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("680", "PAGE_EXECUTE_WRITECOPY|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("681", "PAGE_NOACCESS|PAGE_EXECUTE_WRITECOPY|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("682", "PAGE_READONLY|PAGE_EXECUTE_WRITECOPY|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("683", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE_WRITECOPY|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("684", "PAGE_READWRITE|PAGE_EXECUTE_WRITECOPY|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("685", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE_WRITECOPY|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("686", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_WRITECOPY|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("687", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_WRITECOPY|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("688", "PAGE_WRITECOPY|PAGE_EXECUTE_WRITECOPY|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("689", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE_WRITECOPY|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("690", "PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("691", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("692", "PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("693", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("694", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("695", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("696", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("697", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("698", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("699", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("700", "PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("701", "PAGE_NOACCESS|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("702", "PAGE_READONLY|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("703", "PAGE_NOACCESS|PAGE_READONLY|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("704", "PAGE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("705", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("706", "PAGE_READONLY|PAGE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("707", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("708", "PAGE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("709", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("710", "PAGE_EXECUTE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("711", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("712", "PAGE_READONLY|PAGE_EXECUTE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("713", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("714", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("715", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("716", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("717", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("718", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("719", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("720", "PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("721", "PAGE_NOACCESS|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("722", "PAGE_READONLY|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("723", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("724", "PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("725", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("726", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("727", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("728", "PAGE_WRITECOPY|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("729", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("730", "PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("731", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("732", "PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("733", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("734", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("735", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("736", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("737", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("738", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("739", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("740", "PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("741", "PAGE_NOACCESS|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("742", "PAGE_READONLY|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("743", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("744", "PAGE_READWRITE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("745", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("746", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("747", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("748", "PAGE_WRITECOPY|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("749", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("750", "PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("751", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("752", "PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("753", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("754", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("755", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("756", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("757", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("758", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("759", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("760", "PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("761", "PAGE_NOACCESS|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("762", "PAGE_READONLY|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("763", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("764", "PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("765", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("766", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("767", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("768", "PAGE_WRITECOPY|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("769", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("770", "PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("771", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("772", "PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("773", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("774", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("775", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("776", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("777", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("778", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("779", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("780", "PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("781", "PAGE_NOACCESS|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("782", "PAGE_READONLY|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("783", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("784", "PAGE_READWRITE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("785", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("786", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("787", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("788", "PAGE_WRITECOPY|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("789", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("790", "PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("791", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("792", "PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("793", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("794", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("795", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("796", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("797", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("798", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("799", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|PAGE_NOCACHE|PAGE_WRITECOMBINE"),
+        ("800", "0x00000800"),
+        ("801", "PAGE_NOACCESS|0x00000800"),
+        ("802", "PAGE_READONLY|0x00000800"),
+        ("803", "PAGE_NOACCESS|PAGE_READONLY|0x00000800"),
+        ("804", "PAGE_READWRITE|0x00000800"),
+        ("805", "PAGE_NOACCESS|PAGE_READWRITE|0x00000800"),
+        ("806", "PAGE_READONLY|PAGE_READWRITE|0x00000800"),
+        ("807", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|0x00000800"),
+        ("808", "PAGE_WRITECOPY|0x00000800"),
+        ("809", "PAGE_NOACCESS|PAGE_WRITECOPY|0x00000800"),
+        ("810", "PAGE_EXECUTE|0x00000800"),
+        ("811", "PAGE_NOACCESS|PAGE_EXECUTE|0x00000800"),
+        ("812", "PAGE_READONLY|PAGE_EXECUTE|0x00000800"),
+        ("813", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|0x00000800"),
+        ("814", "PAGE_READWRITE|PAGE_EXECUTE|0x00000800"),
+        ("815", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|0x00000800"),
+        ("816", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|0x00000800"),
+        ("817", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|0x00000800"),
+        ("818", "PAGE_WRITECOPY|PAGE_EXECUTE|0x00000800"),
+        ("819", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|0x00000800"),
+        ("820", "PAGE_EXECUTE_READ|0x00000800"),
+        ("821", "PAGE_NOACCESS|PAGE_EXECUTE_READ|0x00000800"),
+        ("822", "PAGE_READONLY|PAGE_EXECUTE_READ|0x00000800"),
+        ("823", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE_READ|0x00000800"),
+        ("824", "PAGE_READWRITE|PAGE_EXECUTE_READ|0x00000800"),
+        ("825", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE_READ|0x00000800"),
+        ("826", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READ|0x00000800"),
+        ("827", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READ|0x00000800"),
+        ("828", "PAGE_WRITECOPY|PAGE_EXECUTE_READ|0x00000800"),
+        ("829", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE_READ|0x00000800"),
+        ("830", "PAGE_EXECUTE|PAGE_EXECUTE_READ|0x00000800"),
+        ("831", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_EXECUTE_READ|0x00000800"),
+        ("832", "PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READ|0x00000800"),
+        ("833", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READ|0x00000800"),
+        ("834", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|0x00000800"),
+        ("835", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|0x00000800"),
+        ("836", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|0x00000800"),
+        ("837", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|0x00000800"),
+        ("838", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READ|0x00000800"),
+        ("839", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READ|0x00000800"),
+        ("840", "PAGE_EXECUTE_READWRITE|0x00000800"),
+        ("841", "PAGE_NOACCESS|PAGE_EXECUTE_READWRITE|0x00000800"),
+        ("842", "PAGE_READONLY|PAGE_EXECUTE_READWRITE|0x00000800"),
+        ("843", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE_READWRITE|0x00000800"),
+        ("844", "PAGE_READWRITE|PAGE_EXECUTE_READWRITE|0x00000800"),
+        ("845", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE_READWRITE|0x00000800"),
+        ("846", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READWRITE|0x00000800"),
+        ("847", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READWRITE|0x00000800"),
+        ("848", "PAGE_WRITECOPY|PAGE_EXECUTE_READWRITE|0x00000800"),
+        ("849", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE_READWRITE|0x00000800"),
+        ("850", "PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|0x00000800"),
+        ("851", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|0x00000800"),
+        ("852", "PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|0x00000800"),
+        ("853", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|0x00000800"),
+        ("854", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|0x00000800"),
+        ("855", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|0x00000800"),
+        ("856", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|0x00000800"),
+        ("857", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|0x00000800"),
+        ("858", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|0x00000800"),
+        ("859", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|0x00000800"),
+        ("860", "PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|0x00000800"),
+        ("861", "PAGE_NOACCESS|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|0x00000800"),
+        ("862", "PAGE_READONLY|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|0x00000800"),
+        ("863", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|0x00000800"),
+        ("864", "PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|0x00000800"),
+        ("865", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|0x00000800"),
+        ("866", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|0x00000800"),
+        ("867", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|0x00000800"),
+        ("868", "PAGE_WRITECOPY|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|0x00000800"),
+        ("869", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|0x00000800"),
+        ("870", "PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|0x00000800"),
+        ("871", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|0x00000800"),
+        ("872", "PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|0x00000800"),
+        ("873", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|0x00000800"),
+        ("874", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|0x00000800"),
+        ("875", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|0x00000800"),
+        ("876", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|0x00000800"),
+        ("877", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|0x00000800"),
+        ("878", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|0x00000800"),
+        ("879", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|0x00000800"),
+        ("880", "PAGE_EXECUTE_WRITECOPY|0x00000800"),
+        ("881", "PAGE_NOACCESS|PAGE_EXECUTE_WRITECOPY|0x00000800"),
+        ("882", "PAGE_READONLY|PAGE_EXECUTE_WRITECOPY|0x00000800"),
+        ("883", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE_WRITECOPY|0x00000800"),
+        ("884", "PAGE_READWRITE|PAGE_EXECUTE_WRITECOPY|0x00000800"),
+        ("885", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE_WRITECOPY|0x00000800"),
+        ("886", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_WRITECOPY|0x00000800"),
+        ("887", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_WRITECOPY|0x00000800"),
+        ("888", "PAGE_WRITECOPY|PAGE_EXECUTE_WRITECOPY|0x00000800"),
+        ("889", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE_WRITECOPY|0x00000800"),
+        ("890", "PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|0x00000800"),
+        ("891", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|0x00000800"),
+        ("892", "PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|0x00000800"),
+        ("893", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|0x00000800"),
+        ("894", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|0x00000800"),
+        ("895", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|0x00000800"),
+        ("896", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|0x00000800"),
+        ("897", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|0x00000800"),
+        ("898", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|0x00000800"),
+        ("899", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|0x00000800"),
+        ("900", "PAGE_GUARD|0x00000800"),
+        ("901", "PAGE_NOACCESS|PAGE_GUARD|0x00000800"),
+        ("902", "PAGE_READONLY|PAGE_GUARD|0x00000800"),
+        ("903", "PAGE_NOACCESS|PAGE_READONLY|PAGE_GUARD|0x00000800"),
+        ("904", "PAGE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("905", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("906", "PAGE_READONLY|PAGE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("907", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("908", "PAGE_WRITECOPY|PAGE_GUARD|0x00000800"),
+        ("909", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_GUARD|0x00000800"),
+        ("910", "PAGE_EXECUTE|PAGE_GUARD|0x00000800"),
+        ("911", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_GUARD|0x00000800"),
+        ("912", "PAGE_READONLY|PAGE_EXECUTE|PAGE_GUARD|0x00000800"),
+        ("913", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_GUARD|0x00000800"),
+        ("914", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_GUARD|0x00000800"),
+        ("915", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_GUARD|0x00000800"),
+        ("916", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_GUARD|0x00000800"),
+        ("917", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_GUARD|0x00000800"),
+        ("918", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_GUARD|0x00000800"),
+        ("919", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_GUARD|0x00000800"),
+        ("920", "PAGE_EXECUTE_READ|PAGE_GUARD|0x00000800"),
+        ("921", "PAGE_NOACCESS|PAGE_EXECUTE_READ|PAGE_GUARD|0x00000800"),
+        ("922", "PAGE_READONLY|PAGE_EXECUTE_READ|PAGE_GUARD|0x00000800"),
+        ("923", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE_READ|PAGE_GUARD|0x00000800"),
+        ("924", "PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_GUARD|0x00000800"),
+        ("925", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_GUARD|0x00000800"),
+        ("926", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_GUARD|0x00000800"),
+        ("927", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_GUARD|0x00000800"),
+        ("928", "PAGE_WRITECOPY|PAGE_EXECUTE_READ|PAGE_GUARD|0x00000800"),
+        ("929", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE_READ|PAGE_GUARD|0x00000800"),
+        ("930", "PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD|0x00000800"),
+        ("931", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD|0x00000800"),
+        ("932", "PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD|0x00000800"),
+        ("933", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD|0x00000800"),
+        ("934", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD|0x00000800"),
+        ("935", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD|0x00000800"),
+        ("936", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD|0x00000800"),
+        ("937", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD|0x00000800"),
+        ("938", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD|0x00000800"),
+        ("939", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_GUARD|0x00000800"),
+        ("940", "PAGE_EXECUTE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("941", "PAGE_NOACCESS|PAGE_EXECUTE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("942", "PAGE_READONLY|PAGE_EXECUTE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("943", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("944", "PAGE_READWRITE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("945", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("946", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("947", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("948", "PAGE_WRITECOPY|PAGE_EXECUTE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("949", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("950", "PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("951", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("952", "PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("953", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("954", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("955", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("956", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("957", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("958", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("959", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("960", "PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("961", "PAGE_NOACCESS|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("962", "PAGE_READONLY|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("963", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("964", "PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("965", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("966", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("967", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("968", "PAGE_WRITECOPY|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("969", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("970", "PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("971", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("972", "PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("973", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("974", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("975", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("976", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("977", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("978", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("979", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_READ|PAGE_EXECUTE_READWRITE|PAGE_GUARD|0x00000800"),
+        ("980", "PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|0x00000800"),
+        ("981", "PAGE_NOACCESS|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|0x00000800"),
+        ("982", "PAGE_READONLY|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|0x00000800"),
+        ("983", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|0x00000800"),
+        ("984", "PAGE_READWRITE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|0x00000800"),
+        ("985", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|0x00000800"),
+        ("986", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|0x00000800"),
+        ("987", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|0x00000800"),
+        ("988", "PAGE_WRITECOPY|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|0x00000800"),
+        ("989", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|0x00000800"),
+        ("990", "PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|0x00000800"),
+        ("991", "PAGE_NOACCESS|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|0x00000800"),
+        ("992", "PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|0x00000800"),
+        ("993", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|0x00000800"),
+        ("994", "PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|0x00000800"),
+        ("995", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|0x00000800"),
+        ("996", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|0x00000800"),
+        ("997", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|0x00000800"),
+        ("998", "PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|0x00000800"),
+        ("999", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|PAGE_EXECUTE_WRITECOPY|PAGE_GUARD|0x00000800"),
+        ("1000", "0x00001000"),
+        ("1001", "PAGE_NOACCESS|0x00001000"),
+        ("1002", "PAGE_READONLY|0x00001000"),
+        ("1003", "PAGE_NOACCESS|PAGE_READONLY|0x00001000"),
+        ("1004", "PAGE_READWRITE|0x00001000"),
+        ("1005", "PAGE_NOACCESS|PAGE_READWRITE|0x00001000"),
+        ("1006", "PAGE_READONLY|PAGE_READWRITE|0x00001000"),
+        ("1007", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|0x00001000"),
+        ("1008", "PAGE_WRITECOPY|0x00001000"),
+        ("1009", "PAGE_NOACCESS|PAGE_WRITECOPY|0x00001000"),
+        ("1010", "PAGE_EXECUTE|0x00001000"),
+        ("1011", "PAGE_NOACCESS|PAGE_EXECUTE|0x00001000"),
+        ("1012", "PAGE_READONLY|PAGE_EXECUTE|0x00001000"),
+        ("1013", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE|0x00001000"),
+        ("1014", "PAGE_READWRITE|PAGE_EXECUTE|0x00001000"),
+        ("1015", "PAGE_NOACCESS|PAGE_READWRITE|PAGE_EXECUTE|0x00001000"),
+        ("1016", "PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|0x00001000"),
+        ("1017", "PAGE_NOACCESS|PAGE_READONLY|PAGE_READWRITE|PAGE_EXECUTE|0x00001000"),
+        ("1018", "PAGE_WRITECOPY|PAGE_EXECUTE|0x00001000"),
+        ("1019", "PAGE_NOACCESS|PAGE_WRITECOPY|PAGE_EXECUTE|0x00001000"),
+        ("1020", "PAGE_EXECUTE_READ|0x00001000"),
+        ("1021", "PAGE_NOACCESS|PAGE_EXECUTE_READ|0x00001000"),
+        ("1022", "PAGE_READONLY|PAGE_EXECUTE_READ|0x00001000"),
+        ("1023", "PAGE_NOACCESS|PAGE_READONLY|PAGE_EXECUTE_READ|0x00001000"),
+    ]
+
+
+def arg_name_iocontrolcode_data():
+    return [
+        ("90018", "FSCTL_LOCK_VOLUME"),
+    ]
+
+
+def api_name_in_creation_data():
+    return [
+        ("34999060", "NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_DEFAULT_ERROR_MODE|0x30919000"),
+        ("46732117", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40732100"),
+        ("44856195", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x40816100"),
+        ("51250358", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x50210300"),
+        ("27581750", "CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20501300"),
+        ("52644411", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50604000"),
+        ("49553081", "DEBUG_PROCESS|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x40513000"),
+        ("46632736", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40632300"),
+        ("4259806", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x00219800"),
+        ("27433960", "NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20433900"),
+        ("55089736", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x50009300"),
+        ("45816652", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x40816200"),
+        ("3813377", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00813300"),
+        ("40101036", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|0x40101000"),
+        ("30919732", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|0x30919300"),
+        ("57097756", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50017300"),
+        ("48309889", "DEBUG_PROCESS|DETACHED_PROCESS|HIGH_PRIORITY_CLASS|CREATE_NO_WINDOW|0x40309800"),
+        ("32986303", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30906300"),
+        ("29946400", "CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x20906000"),
+        ("4361581", "DEBUG_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x00321100"),
+        ("25714572", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x20714100"),
+        ("55899201", "DEBUG_PROCESS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x50819200"),
+        ("21948564", "CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x20908100"),
+        ("44947925", "DEBUG_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x40907900"),
+        ("25708113", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x20708100"),
+        ("29355642", "DEBUG_ONLY_THIS_PROCESS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x20315200"),
+        ("3120712", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00120300"),
+        ("21785599", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x20705100"),
+        ("41149861", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x40109800"),
+        ("16668202", "DEBUG_ONLY_THIS_PROCESS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10628200"),
+        ("60489496", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|0x60409000"),
+        ("15508906", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x10508900"),
+        ("11674034", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x10634000"),
+        ("6145583", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00105100"),
+        ("19344829", "DEBUG_PROCESS|DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x10304800"),
+        ("66004722", "DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x60004300"),
+        ("8463797", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x00423300"),
+        ("19424193", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x10424100"),
+        ("37016100", "CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30016100"),
+        ("19930928", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x10930900"),
+        ("53607700", "CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50607300"),
+        ("43255855", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40215800"),
+        ("27333947", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20333900"),
+        ("38758515", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x30718100"),
+        ("30619179", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|0x30619100"),
+        ("8807338", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_NO_WINDOW|0x00807300"),
+        ("48718589", "DEBUG_PROCESS|DETACHED_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_NO_WINDOW|0x40718100"),
+        ("65017521", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x60017100"),
+        ("15640737", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x10600300"),
+        ("60360798", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|0x60320300"),
+        ("56347185", "DEBUG_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50307100"),
+        ("33627956", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30627900"),
+        ("61804626", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|0x60804200"),
+        ("9395515", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x00315100"),
+        ("26110185", "DEBUG_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20110100"),
+        ("14341596", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x10301100"),
+        ("55345174", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x50305100"),
+        ("13404674", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10404200"),
+        ("12618679", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10618200"),
+        ("49068792", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x40028300"),
+        ("20347968", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|0x20307900"),
+        ("47432182", "DEBUG_ONLY_THIS_PROCESS|HIGH_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40432100"),
+        ("16925311", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10925300"),
+        ("47372484", "CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40332000"),
+        ("14107286", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_DEFAULT_ERROR_MODE|0x10107200"),
+        ("65791465", "DEBUG_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x60711000"),
+        ("61592962", "DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x60512900"),
+        ("9530457", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x00530000"),
+        ("24516447", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_DEFAULT_ERROR_MODE|0x20516000"),
+        ("66183424", "CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x60103000"),
+        ("6673737", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00633300"),
+        ("12717694", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10717200"),
+        ("9820912", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x00820900"),
+        ("34311977", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_DEFAULT_ERROR_MODE|0x30311900"),
+        ("40139657", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|0x40139200"),
+        ("8074180", "HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x00034100"),
+        ("49071134", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x40031100"),
+        ("58958224", "CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x50918200"),
+        ("62851126", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60811100"),
+        ("39949968", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x30909900"),
+        ("15986003", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x10906000"),
+        ("54377461", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x50337000"),
+        ("7068967", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00028900"),
+        ("56737698", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50737200"),
+        ("62595915", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60515900"),
+        ("16026674", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10026200"),
+        ("14577169", "DEBUG_PROCESS|DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x10537100"),
+        ("20204358", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|0x20204300"),
+        ("6988005", "DEBUG_PROCESS|CREATE_SUSPENDED|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00908000"),
+        ("65509029", "DEBUG_PROCESS|DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x60509000"),
+        ("54822822", "DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_DEFAULT_ERROR_MODE|0x50822800"),
+        ("30259181", "DEBUG_PROCESS|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|0x30219100"),
+        ("30025392", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|0x30025300"),
+        ("37668397", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30628300"),
+        ("58652525", "DEBUG_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x50612100"),
+        ("15290965", "DEBUG_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x10210900"),
+        ("28609801", "DEBUG_PROCESS|CREATE_NO_WINDOW|0x20609800"),
+        ("36734180", "HIGH_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30734100"),
+        ("37579438", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30539000"),
+        ("182194", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|0x00102100"),
+        ("40301467", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|0x40301000"),
+        ("56953928", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50913900"),
+        ("6848365", "DEBUG_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00808300"),
+        ("63180798", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60100300"),
+        ("19732196", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x10732100"),
+        ("61435027", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|0x60435000"),
+        ("11573588", "DETACHED_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x10533100"),
+        ("1651986", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x00611900"),
+        ("4060631", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x00020200"),
+        ("59250825", "DEBUG_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x50210800"),
+        ("7880889", "DEBUG_PROCESS|DETACHED_PROCESS|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00800800"),
+        ("46182375", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40102300"),
+        ("30270405", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|0x30230000"),
+        ("55708493", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x50708000"),
+        ("27303989", "DEBUG_PROCESS|DETACHED_PROCESS|HIGH_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20303900"),
+        ("38754912", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x30714900"),
+        ("53578376", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50538300"),
+        ("21959773", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x20919300"),
+        ("34874053", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x30834000"),
+        ("65060781", "DEBUG_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x60020300"),
+        ("34892475", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_DEFAULT_ERROR_MODE|0x30812000"),
+        ("1691990", "CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x00611900"),
+        ("61465048", "DETACHED_PROCESS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x60425000"),
+        ("1794592", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x00714100"),
+        ("22276778", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20236300"),
+        ("10641781", "DEBUG_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|0x10601300"),
+        ("13618724", "CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10618300"),
+        ("8275849", "DEBUG_PROCESS|DETACHED_PROCESS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x00235800"),
+        ("45452028", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x40412000"),
+        ("65628444", "CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x60628000"),
+        ("35650274", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x30610200"),
+        ("4963210", "CREATE_NEW_CONSOLE|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x00923200"),
+        ("53497904", "CREATE_SUSPENDED|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50417900"),
+        ("63080203", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60000200"),
+        ("24617678", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_DEFAULT_ERROR_MODE|0x20617200"),
+        ("47156421", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40116000"),
+        ("17778202", "DEBUG_ONLY_THIS_PROCESS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10738200"),
+        ("49273138", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x40233100"),
+        ("10390851", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|0x10310800"),
+        ("1950295", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x00910200"),
+        ("28970330", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x20930300"),
+        ("13934517", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10934100"),
+        ("56610512", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50610100"),
+        ("57457385", "DEBUG_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50417300"),
+        ("7479305", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00439300"),
+        ("52301382", "DEBUG_ONLY_THIS_PROCESS|HIGH_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50301300"),
+        ("1782324", "CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x00702300"),
+        ("28593397", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_NO_WINDOW|0x20513300"),
+        ("3440969", "DEBUG_PROCESS|DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00400900"),
+        ("4830835", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_DEFAULT_ERROR_MODE|0x00830800"),
+        ("62696375", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60616300"),
+        ("63400997", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60400900"),
+        ("51100939", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|0x50100900"),
+        ("16255117", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10215100"),
+        ("1771573", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x00731100"),
+        ("13445071", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10405000"),
+        ("9749999", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x00709900"),
+        ("39963721", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x30923300"),
+        ("9218035", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x00218000"),
+        ("54178431", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x50138000"),
+        ("8665990", "CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x00625900"),
+        ("61590388", "DETACHED_PROCESS|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x60510300"),
+        ("42174018", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40134000"),
+        ("16610264", "CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10610200"),
+        ("1303120", "NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|0x00303100"),
+        ("28536606", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_UNICODE_ENVIRONMENT|CREATE_NO_WINDOW|0x20536200"),
+        ("39571569", "DEBUG_PROCESS|DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x30531100"),
+        ("21275291", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x20235200"),
+        ("25425758", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x20425300"),
+        ("61069549", "DEBUG_PROCESS|DETACHED_PROCESS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x60029100"),
+        ("42383962", "DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40303900"),
+        ("53921214", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50921200"),
+        ("51392954", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x50312900"),
+        ("61371242", "DEBUG_ONLY_THIS_PROCESS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x60331200"),
+        ("37330057", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30330000"),
+        ("40060126", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|0x40020100"),
+        ("54633001", "DEBUG_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x50633000"),
+        ("43557424", "CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40517000"),
+        ("20233540", "IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|0x20233100"),
+        ("30020683", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|0x30020200"),
+        ("44174274", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x40134200"),
+        ("29726195", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x20726100"),
+        ("9433863", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x00433800"),
+        ("5072379", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x00032300"),
+        ("45878073", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x40838000"),
+        ("22438291", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20438200"),
+        ("34931689", "DEBUG_PROCESS|DETACHED_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_DEFAULT_ERROR_MODE|0x30931200"),
+        ("52062137", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50022100"),
+        ("63279240", "IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60239200"),
+        ("63578449", "DEBUG_PROCESS|DETACHED_PROCESS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60538000"),
+        ("47045532", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40005100"),
+        ("65104556", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x60104100"),
+        ("35489684", "CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x30409200"),
+        ("12691224", "CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10611200"),
+        ("1114966", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|0x00114900"),
+        ("33489029", "DEBUG_PROCESS|DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30409000"),
+        ("63360280", "HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60320200"),
+        ("31098806", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x30018800"),
+        ("17288201", "DEBUG_PROCESS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10208200"),
+        ("42238706", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40238300"),
+        ("44613260", "NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_DEFAULT_ERROR_MODE|0x40613200"),
+        ("20613196", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|0x20613100"),
+        ("33188484", "CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30108000"),
+        ("63366049", "DEBUG_PROCESS|DETACHED_PROCESS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60326000"),
+        ("65353322", "DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x60313300"),
+        ("37761343", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30721300"),
+        ("47048784", "CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40008300"),
+        ("28449011", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x20409000"),
+        ("10059203", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_PROTECTED_PROCESS|0x10019200"),
+        ("49338899", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x40338800"),
+        ("36631789", "DEBUG_PROCESS|DETACHED_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30631300"),
+        ("50339708", "DETACHED_PROCESS|CREATE_UNICODE_ENVIRONMENT|0x50339300"),
+        ("51433563", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|0x50433100"),
+        ("1902054", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|0x00902000"),
+        ("47971054", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40931000"),
+        ("48713745", "DEBUG_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_NO_WINDOW|0x40713300"),
+        ("13219830", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10219800"),
+        ("18829512", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_NO_WINDOW|0x10829100"),
+        ("50674036", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|0x50634000"),
+        ("65203928", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x60203900"),
+        ("20650876", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|0x20610800"),
+        ("49671392", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x40631300"),
+        ("57276278", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50236200"),
+        ("58761975", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x50721900"),
+        ("27610075", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20610000"),
+        ("861172", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|0x00821100"),
+        ("52634772", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50634300"),
+        ("365894", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|0x00325800"),
+        ("62912578", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60912100"),
+        ("19853337", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x10813300"),
+        ("10012635", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|0x10012200"),
+        ("42854008", "DETACHED_PROCESS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40814000"),
+        ("34984823", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_DEFAULT_ERROR_MODE|0x30904800"),
+        ("25649003", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x20609000"),
+        ("39620141", "DEBUG_PROCESS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x30620100"),
+        ("56308195", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50308100"),
+        ("49245014", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x40205000"),
+        ("42949531", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40909100"),
+        ("52475530", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50435100"),
+        ("46144302", "DEBUG_ONLY_THIS_PROCESS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40104300"),
+        ("43127710", "CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40127300"),
+        ("46666909", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40626900"),
+        ("63973659", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60933200"),
+        ("12235796", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10235300"),
+        ("64927202", "DEBUG_ONLY_THIS_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x60927200"),
+        ("28097596", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_NO_WINDOW|0x20017100"),
+        ("58081781", "DEBUG_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_NO_WINDOW|0x50001300"),
+        ("15564694", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x10524200"),
+        ("62913969", "DEBUG_PROCESS|DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60913900"),
+        ("27339857", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20339800"),
+        ("21067263", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x20027200"),
+        ("45119875", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x40119800"),
+        ("16291132", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10211100"),
+        ("1227714", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|0x00227300"),
+        ("37311822", "DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30311800"),
+        ("15569958", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x10529900"),
+        ("2997434", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00917000"),
+        ("22690138", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20610100"),
+        ("32565964", "CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30525900"),
+        ("13321896", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10321800"),
+        ("11544102", "DEBUG_ONLY_THIS_PROCESS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x10504100"),
+        ("49458701", "DEBUG_PROCESS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x40418300"),
+        ("373263", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|0x00333200"),
+        ("25889122", "DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x20809100"),
+        ("58350454", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x50310000"),
+        ("42560421", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40520000"),
+        ("10219295", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|0x10219200"),
+        ("14841916", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x10801900"),
+        ("50660978", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|0x50620900"),
+        ("27879833", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20839800"),
+        ("7027498", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00027000"),
+        ("53065777", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50025300"),
+        ("65092144", "CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x60012100"),
+        ("13737243", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10737200"),
+        ("32120595", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30120100"),
+        ("49445540", "IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x40405100"),
+        ("14305426", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_DEFAULT_ERROR_MODE|0x10305000"),
+        ("61205467", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|0x60205000"),
+        ("40593552", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|0x40513100"),
+        ("42896182", "DEBUG_ONLY_THIS_PROCESS|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40816100"),
+        ("22059173", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20019100"),
+        ("43930275", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40930200"),
+        ("28091838", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_NO_WINDOW|0x20011800"),
+        ("21361911", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x20321900"),
+        ("65797902", "DEBUG_ONLY_THIS_PROCESS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x60717900"),
+        ("21406077", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|0x20406000"),
+        ("42016969", "DEBUG_PROCESS|DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40016900"),
+        ("13085100", "EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10005100"),
+        ("6594135", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00514100"),
+        ("50517068", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|0x50517000"),
+        ("36892954", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30812900"),
+        ("16405835", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10405800"),
+        ("52511031", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50511000"),
+        ("17633788", "DETACHED_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10633300"),
+        ("5789952", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x00709900"),
+        ("38297148", "DETACHED_PROCESS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_NO_WINDOW|0x30217100"),
+        ("2573268", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00533200"),
+        ("39348194", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x30308100"),
+        ("21161863", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x20121800"),
+        ("6709226", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00709200"),
+        ("17662336", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10622300"),
+        ("33963276", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30923200"),
+        ("26431095", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20431000"),
+        ("45442451", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x40402000"),
+        ("259970", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|0x00219900"),
+        ("59869430", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x50829000"),
+        ("58576660", "NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x50536200"),
+        ("12226799", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10226300"),
+        ("47441565", "DEBUG_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40401100"),
+        ("45938342", "DEBUG_ONLY_THIS_PROCESS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x40938300"),
+        ("53172108", "DETACHED_PROCESS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50132100"),
+        ("44593766", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_DEFAULT_ERROR_MODE|0x40513300"),
+        ("2294498", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00214000"),
+        ("21488398", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x20408300"),
+        ("46240922", "DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40200900"),
+        ("65409576", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x60409100"),
+        ("25295327", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x20215300"),
+        ("34342462", "DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x30302000"),
+        ("36841691", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30801200"),
+        ("60204960", "NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|0x60204900"),
+        ("8987477", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_NO_WINDOW|0x00907000"),
+        ("50612623", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|0x50612200"),
+        ("16718783", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10718300"),
+        ("27181884", "CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20101800"),
+        ("15916716", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x10916300"),
+        ("29860711", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x20820300"),
+        ("15197146", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x10117100"),
+        ("42865475", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40825000"),
+        ("15810678", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x10810200"),
+        ("9397324", "CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x00317300"),
+        ("19185738", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x10105300"),
+        ("22316531", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20316100"),
+        ("34214034", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_DEFAULT_ERROR_MODE|0x30214000"),
+        ("51520449", "DEBUG_PROCESS|DETACHED_PROCESS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|0x50520000"),
+        ("19007401", "DEBUG_PROCESS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x10007000"),
+        ("29670080", "HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x20630000"),
+        ("631961", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|0x00631900"),
+        ("41926525", "DEBUG_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|0x40926100"),
+        ("9539246", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x00539200"),
+        ("2112015", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00112000"),
+        ("34970728", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x30930300"),
+        ("11181062", "DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x10101000"),
+        ("64814922", "DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_DEFAULT_ERROR_MODE|0x60814900"),
+        ("17994041", "DEBUG_PROCESS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10914000"),
+        ("65307644", "CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x60307200"),
+        ("3289392", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00209300"),
+        ("5059926", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x00019900"),
+        ("62337276", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60337200"),
+        ("23817658", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20817200"),
+        ("65819101", "DEBUG_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x60819100"),
+        ("18920891", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_NO_WINDOW|0x10920800"),
+        ("56438712", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50438300"),
+        ("36800471", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30800000"),
+        ("25221548", "DETACHED_PROCESS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x20221100"),
+        ("29163697", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x20123200"),
+        ("66525698", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x60525200"),
+        ("32950333", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30910300"),
+        ("56417832", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50417800"),
+        ("25674047", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x20634000"),
+        ("38327511", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_NO_WINDOW|0x30327100"),
+        ("50944925", "DEBUG_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|0x50904900"),
+        ("61530269", "DEBUG_PROCESS|DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|0x60530200"),
+        ("13516596", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10516100"),
+        ("55908646", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x50908200"),
+        ("52320978", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50320900"),
+        ("33723115", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30723100"),
+        ("29200916", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x20200900"),
+        ("27437431", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20437000"),
+        ("4065859", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x00025800"),
+        ("15544069", "DEBUG_PROCESS|DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x10504000"),
+        ("45656384", "CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x40616300"),
+        ("56615474", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50615000"),
+        ("30599191", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|0x30519100"),
+        ("49383928", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x40303900"),
+        ("27983364", "CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20903300"),
+        ("34681372", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_DEFAULT_ERROR_MODE|0x30601300"),
+        ("29760957", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x20720900"),
+        ("55184024", "CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x50104000"),
+        ("47463252", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40423200"),
+        ("56004387", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50004300"),
+        ("20815246", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|0x20815200"),
+        ("45765834", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x40725800"),
+        ("21826906", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_BREAKAWAY_FROM_JOB|0x20826900"),
+        ("14725258", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_DEFAULT_ERROR_MODE|0x10725200"),
+        ("19898905", "DEBUG_PROCESS|CREATE_SUSPENDED|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x10818900"),
+        ("56696065", "DEBUG_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50616000"),
+        ("54826049", "DEBUG_PROCESS|DETACHED_PROCESS|IDLE_PRIORITY_CLASS|CREATE_DEFAULT_ERROR_MODE|0x50826000"),
+        ("61588146", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x60508100"),
+        ("26376116", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20336100"),
+        ("8183466", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_NO_WINDOW|0x00103000"),
+        ("12674967", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10634900"),
+        ("59737721", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x50737300"),
+        ("33728935", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30728900"),
+        ("39778162", "DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x30738100"),
+        ("46560797", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40520300"),
+        ("46563410", "CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40523000"),
+        ("51849681", "DEBUG_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x50809200"),
+        ("20686287", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|0x20606200"),
+        ("29545041", "DEBUG_PROCESS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x20505000"),
+        ("1321539", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|0x00321100"),
+        ("2970023", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00930000"),
+        ("5626880", "HIGH_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x00626800"),
+        ("62351825", "DEBUG_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60311800"),
+        ("63479044", "CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60439000"),
+        ("46963459", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40923000"),
+        ("10744823", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|0x10704800"),
+        ("24456213", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x20416200"),
+        ("13100070", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10100000"),
+        ("48941806", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x40901800"),
+        ("47211025", "DEBUG_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40211000"),
+        ("31289298", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x30209200"),
+        ("13638430", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10638000"),
+        ("9112014", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x00112000"),
+        ("24629665", "DEBUG_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_DEFAULT_ERROR_MODE|0x20629200"),
+        ("58664039", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x50624000"),
+        ("7005538", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00005100"),
+        ("45836277", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x40836200"),
+        ("6361411", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00321000"),
+        ("59649708", "DETACHED_PROCESS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x50609300"),
+        ("522261", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|0x00522200"),
+        ("55645230", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x50605200"),
+        ("53356219", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50316200"),
+        ("8130733", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_NO_WINDOW|0x00130300"),
+        ("37943495", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30903000"),
+        ("6246305", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00206300"),
+        ("54689681", "DEBUG_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_DEFAULT_ERROR_MODE|0x50609200"),
+        ("3609385", "DEBUG_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00609300"),
+        ("65980910", "CREATE_NEW_CONSOLE|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x60900900"),
+        ("10737033", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|0x10737000"),
+        ("63411030", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60411000"),
+        ("62814454", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60814000"),
+        ("319898", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|0x00319800"),
+        ("49557850", "CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x40517800"),
+        ("44475444", "CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x40435000"),
+        ("37640882", "DEBUG_ONLY_THIS_PROCESS|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30600800"),
+        ("10757230", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|0x10717200"),
+        ("565947", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|0x00525900"),
+        ("20858120", "NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|0x20818100"),
+        ("42957131", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40917100"),
+        ("8781727", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_NO_WINDOW|0x00701300"),
+        ("46993835", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40913800"),
+        ("35551188", "DETACHED_PROCESS|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x30511100"),
+        ("8824587", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_NO_WINDOW|0x00824100"),
+        ("28440357", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x20400300"),
+        ("41911094", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|0x40911000"),
+        ("8504017", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_NO_WINDOW|0x00504000"),
+        ("44433156", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_DEFAULT_ERROR_MODE|0x40433100"),
+        ("27561265", "DEBUG_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20521200"),
+        ("21537921", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|0x20537900"),
+        ("55497935", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x50417900"),
+        ("41536188", "DETACHED_PROCESS|HIGH_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|0x40536100"),
+        ("65883877", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x60803800"),
+        ("12903015", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10903000"),
+        ("33537805", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30537800"),
+        ("10519022", "DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|0x10519000"),
+        ("59774288", "DETACHED_PROCESS|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x50734200"),
+        ("48500688", "DETACHED_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_NO_WINDOW|0x40500200"),
+        ("42536405", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40536000"),
+        ("10544081", "DEBUG_PROCESS|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|0x10504000"),
+        ("63662343", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60622300"),
+        ("29721682", "DEBUG_ONLY_THIS_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x20721200"),
+        ("22365050", "CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20325000"),
+        ("43423392", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40423300"),
+        ("66568375", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x60528300"),
+        ("60858216", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_PROTECTED_PROCESS|0x60818200"),
+        ("56680186", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50600100"),
+        ("50768110", "CREATE_NEW_CONSOLE|CREATE_PROTECTED_PROCESS|0x50728100"),
+        ("64538849", "DEBUG_PROCESS|DETACHED_PROCESS|IDLE_PRIORITY_CLASS|CREATE_DEFAULT_ERROR_MODE|0x60538800"),
+        ("56614115", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50614100"),
+        ("28204938", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_NO_WINDOW|0x20204900"),
+        ("17575139", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10535100"),
+        ("45282438", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x40202000"),
+        ("19611110", "CREATE_NEW_CONSOLE|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x10611100"),
+        ("58207724", "CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_NO_WINDOW|0x50207300"),
+        ("10731112", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|0x10731100"),
+        ("42466330", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40426300"),
+        ("53197152", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50117100"),
+        ("17230737", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10230300"),
+        ("18530919", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|CREATE_NO_WINDOW|0x10530900"),
+        ("12259004", "CREATE_SUSPENDED|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10219000"),
+        ("15593676", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x10513200"),
+        ("27075845", "DEBUG_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20035800"),
+        ("17427455", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10427000"),
+        ("4029868", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_DEFAULT_ERROR_MODE|0x00029800"),
+        ("20305793", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|0x20305300"),
+        ("64399290", "CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_DEFAULT_ERROR_MODE|0x60319200"),
+        ("62150268", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60110200"),
+        ("61660891", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x60620800"),
+        ("32823603", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30823200"),
+        ("47039577", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40039100"),
+        ("31312052", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|0x30312000"),
+        ("9140091", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x00100000"),
+        ("9786304", "CREATE_SUSPENDED|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x00706300"),
+        ("19975563", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x10935100"),
+        ("61372145", "DEBUG_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x60332100"),
+        ("18677929", "DEBUG_PROCESS|DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x10637900"),
+        ("37491307", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30411300"),
+        ("48803403", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_UNICODE_ENVIRONMENT|CREATE_NO_WINDOW|0x40803000"),
+        ("3911876", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00911800"),
+        ("46790935", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40710900"),
+        ("54863393", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x50823300"),
+        ("45837822", "DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x40837800"),
+        ("28438237", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_NO_WINDOW|0x20438200"),
+        ("13536840", "IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10536800"),
+        ("20352557", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|0x20312100"),
+        ("48340996", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x40300900"),
+        ("66700830", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x60700800"),
+        ("860353", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|0x00820300"),
+        ("21907561", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|0x20907100"),
+        ("45798035", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x40718000"),
+        ("1972594", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x00932100"),
+        ("13180816", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10100800"),
+        ("12698343", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10618300"),
+        ("11879295", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x10839200"),
+        ("9446755", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x00406300"),
+        ("35255001", "DEBUG_PROCESS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x30215000"),
+        ("2591758", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00511300"),
+        ("23187368", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20107300"),
+        ("46646227", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40606200"),
+        ("29026187", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x20026100"),
+        ("37206116", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30206100"),
+        ("4437239", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_DEFAULT_ERROR_MODE|0x00437200"),
+        ("8416161", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_NO_WINDOW|0x00416100"),
+        ("65638109", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x60638100"),
+        ("55543108", "DETACHED_PROCESS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x50503100"),
+        ("21079971", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x20039900"),
+        ("48493924", "CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_NO_WINDOW|0x40413900"),
+        ("32458993", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30418900"),
+        ("61142746", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x60102300"),
+        ("10644450", "CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|0x10604000"),
+        ("6075913", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00035900"),
+        ("59418420", "NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x50418000"),
+        ("17057451", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10017000"),
+        ("2038897", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00038800"),
+        ("51982863", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x50902800"),
+        ("14759759", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x10719300"),
+        ("46846895", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40806800"),
+        ("61619471", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|0x60619000"),
+        ("42290946", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40210900"),
+        ("1114868", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|0x00114800"),
+        ("35430797", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x30430300"),
+        ("26427798", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20427300"),
+        ("20634412", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|0x20634000"),
+        ("65871914", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x60831900"),
+        ("18718931", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_NO_WINDOW|0x10718900"),
+        ("17682241", "DEBUG_PROCESS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10602200"),
+        ("14909140", "IDLE_PRIORITY_CLASS|CREATE_DEFAULT_ERROR_MODE|0x10909100"),
+        ("54881721", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_DEFAULT_ERROR_MODE|0x50801300"),
+        ("34908670", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_DEFAULT_ERROR_MODE|0x30908200"),
+        ("39163155", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x30123100"),
+        ("51102517", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|0x50102100"),
+        ("21523807", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_BREAKAWAY_FROM_JOB|0x20523800"),
+        ("65586182", "DEBUG_ONLY_THIS_PROCESS|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x60506100"),
+        ("57947225", "DEBUG_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50907200"),
+        ("6731589", "DEBUG_PROCESS|DETACHED_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00731100"),
+        ("44665517", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x40625100"),
+        ("49620176", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x40620100"),
+        ("58856908", "DETACHED_PROCESS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x50816900"),
+        ("2987687", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00907200"),
+        ("30611553", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|0x30611100"),
+        ("38388105", "DEBUG_PROCESS|CREATE_SUSPENDED|EXTENDED_STARTUPINFO_PRESENT|CREATE_NO_WINDOW|0x30308100"),
+        ("484487", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|0x00404000"),
+        ("61289160", "NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x60209100"),
+        ("37631", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|0x00037200"),
+        ("43294132", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40214100"),
+        ("53505737", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50505300"),
+        ("14431291", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_DEFAULT_ERROR_MODE|0x10431200"),
+        ("57641005", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50601000"),
+        ("46041831", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40001800"),
+        ("3513239", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00513200"),
+        ("48644124", "CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x40604100"),
+        ("3664580", "HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00624100"),
+        ("60736530", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|0x60736100"),
+        ("12077322", "DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10037300"),
+        ("20250123", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|0x20210100"),
+        ("26728937", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20728900"),
+        ("5239310", "CREATE_NEW_CONSOLE|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x00239300"),
+        ("66321425", "DEBUG_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x60321000"),
+        ("18892573", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_NO_WINDOW|0x10812100"),
+        ("8095678", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_NO_WINDOW|0x00015200"),
+        ("23558953", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20518900"),
+        ("55005568", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x50005100"),
+        ("9470598", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x00430100"),
+        ("65729755", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x60729300"),
+        ("58089696", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_NO_WINDOW|0x50009200"),
+        ("1017406", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|0x00017000"),
+        ("45747913", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x40707900"),
+        ("26049486", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20009000"),
+        ("32354503", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30314100"),
+        ("60937730", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|0x60937300"),
+        ("46356953", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40316900"),
+        ("43253253", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40213200"),
+        ("33352590", "CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30312100"),
+        ("40041324", "CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|0x40001300"),
+        ("27169559", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20129100"),
+        ("33507221", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30507200"),
+        ("11206322", "DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|0x10206300"),
+        ("56331668", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50331200"),
+        ("16476410", "CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10436000"),
+        ("24638549", "DEBUG_PROCESS|DETACHED_PROCESS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_DEFAULT_ERROR_MODE|0x20638100"),
+        ("39950057", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x30910000"),
+        ("34286054", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_DEFAULT_ERROR_MODE|0x30206000"),
+        ("4602589", "DEBUG_PROCESS|DETACHED_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_DEFAULT_ERROR_MODE|0x00602100"),
+        ("7799058", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00719000"),
+        ("27018343", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20018300"),
+        ("33480925", "DEBUG_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30400900"),
+        ("7371135", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00331100"),
+        ("41673982", "DEBUG_ONLY_THIS_PROCESS|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x40633900"),
+        ("64727128", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_DEFAULT_ERROR_MODE|0x60727100"),
+        ("36227086", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30227000"),
+        ("38230092", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_NO_WINDOW|0x30230000"),
+        ("39987526", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x30907100"),
+        ("40983073", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|0x40903000"),
+        ("11085772", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x10005300"),
+        ("56202431", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50202000"),
+        ("31544554", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x30504100"),
+        ("53601153", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50601100"),
+        ("37528765", "DEBUG_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30528300"),
+        ("44488204", "CREATE_SUSPENDED|EXTENDED_STARTUPINFO_PRESENT|CREATE_DEFAULT_ERROR_MODE|0x40408200"),
+        ("29308857", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x20308800"),
+        ("41852995", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x40812900"),
+        ("4619943", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|IDLE_PRIORITY_CLASS|CREATE_DEFAULT_ERROR_MODE|0x00619900"),
+        ("40665760", "NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|0x40625300"),
+        ("630209", "DEBUG_PROCESS|DETACHED_PROCESS|0x00630200"),
+        ("31907899", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|0x30907800"),
+        ("45447721", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x40407300"),
+        ("7725892", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00725800"),
+        ("7582173", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00502100"),
+        ("66651634", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x60611200"),
+        ("66534681", "DEBUG_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x60534200"),
+        ("3869713", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00829300"),
+        ("3892087", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00812000"),
+        ("64159641", "DEBUG_PROCESS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x60119200"),
+        ("61971725", "DEBUG_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x60931300"),
+        ("49667594", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x40627100"),
+        ("22329090", "CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20329000"),
+        ("8200175", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_NO_WINDOW|0x00200100"),
+        ("19189751", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x10109300"),
+        ("24273809", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x20233800"),
+        ("44861848", "DETACHED_PROCESS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x40821800"),
+        ("19761372", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x10721300"),
+        ("18230021", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_NO_WINDOW|0x10230000"),
+        ("34875389", "DEBUG_PROCESS|DETACHED_PROCESS|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x30835300"),
+        ("23757488", "DETACHED_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20717000"),
+        ("50043563", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|0x50003100"),
+        ("58344093", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x50304000"),
+        ("57834651", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50834200"),
+        ("35851212", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x30811200"),
+        ("48657272", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x40617200"),
+        ("50715110", "CREATE_NEW_CONSOLE|0x50715100"),
+        ("2015954", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00015900"),
+        ("62971452", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60931000"),
+        ("17902575", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10902100"),
+        ("53600548", "DETACHED_PROCESS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50600100"),
+        ("9100651", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x00100200"),
+        ("39978338", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x30938300"),
+        ("13828940", "IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10828900"),
+        ("62683579", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60603100"),
+        ("15259181", "DEBUG_PROCESS|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x10219100"),
+        ("48052328", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x40012300"),
+        ("48965881", "DEBUG_PROCESS|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x40925800"),
+        ("31508409", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|0x30508000"),
+        ("60737656", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|0x60737200"),
+        ("42839149", "DEBUG_PROCESS|DETACHED_PROCESS|IDLE_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40839100"),
+        ("45721768", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x40721300"),
+        ("7619268", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00619200"),
+        ("33194903", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30114900"),
+        ("32190616", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30110200"),
+        ("45142295", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x40102200"),
+        ("22179202", "DEBUG_ONLY_THIS_PROCESS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20139200"),
+        ("48534110", "CREATE_NEW_CONSOLE|CREATE_NO_WINDOW|0x40534100"),
+        ("5059535", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x00019100"),
+        ("663523", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|0x00623100"),
+        ("11518513", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|0x10518100"),
+        ("56867591", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50827100"),
+        ("32876779", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30836300"),
+        ("6978684", "CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00938200"),
+        ("35642303", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x30602300"),
+        ("22469946", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20429900"),
+        ("9431156", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x00431100"),
+        ("62742648", "DETACHED_PROCESS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60702200"),
+        ("11787884", "CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x10707800"),
+        ("12164371", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10124300"),
+        ("38263441", "DEBUG_PROCESS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x30223000"),
+        ("38033361", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_NO_WINDOW|0x30033300"),
+        ("66383316", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x60303300"),
+        ("61627480", "HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|0x60627000"),
+        ("38786673", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_NO_WINDOW|0x30706200"),
+        ("65270784", "CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x60230300"),
+        ("21653513", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x20613100"),
+        ("19576351", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x10536300"),
+        ("52468447", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50428000"),
+        ("58970574", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x50930100"),
+        ("14298392", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_DEFAULT_ERROR_MODE|0x10218300"),
+        ("64325711", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_DEFAULT_ERROR_MODE|0x60325300"),
+        ("22883819", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20803800"),
+        ("64390352", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_DEFAULT_ERROR_MODE|0x60310300"),
+        ("21896755", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x20816300"),
+        ("13441931", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10401900"),
+        ("25161395", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x20121300"),
+        ("60328432", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|0x60328000"),
+        ("50894805", "DEBUG_PROCESS|CREATE_SUSPENDED|EXTENDED_STARTUPINFO_PRESENT|0x50814800"),
+        ("9069425", "DEBUG_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x00029000"),
+        ("26095534", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20015100"),
+        ("9358385", "DEBUG_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x00318300"),
+        ("11085894", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x10005800"),
+        ("15534411", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x10534000"),
+        ("713803", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|0x00713800"),
+        ("52381947", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50301900"),
+        ("39300552", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x30300100"),
+        ("39096270", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x30016200"),
+        ("15202715", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x10202300"),
+        ("5863362", "DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x00823300"),
+        ("693876", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|0x00613800"),
+        ("61051240", "IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x60011200"),
+        ("64116997", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_DEFAULT_ERROR_MODE|0x60116900"),
+        ("41729489", "DEBUG_PROCESS|DETACHED_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|0x40729000"),
+        ("45818850", "CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x40818800"),
+        ("64263792", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x60223300"),
+        ("5380227", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x00300200"),
+        ("4757960", "NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x00717900"),
+        ("57369409", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50329000"),
+        ("40426664", "CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|0x40426200"),
+        ("43925730", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40925300"),
+        ("42814795", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40814300"),
+        ("34173430", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x30133000"),
+        ("2875242", "DEBUG_ONLY_THIS_PROCESS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00835200"),
+        ("41988519", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x40908100"),
+        ("25518611", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x20518200"),
+        ("24840894", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x20800800"),
+        ("694072", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|0x00614000"),
+        ("35117050", "CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x30117000"),
+        ("30282221", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|0x30202200"),
+        ("43683844", "CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40603800"),
+        ("26046582", "DEBUG_ONLY_THIS_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20006100"),
+        ("20238236", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|0x20238200"),
+        ("15428073", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x10428000"),
+        ("39469770", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x30429300"),
+        ("64920008", "DETACHED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x60920000"),
+        ("28680569", "DEBUG_PROCESS|DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_NO_WINDOW|0x20600100"),
+        ("14963211", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x10923200"),
+        ("36502636", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30502200"),
+        ("41054325", "DEBUG_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x40014300"),
+        ("41359440", "IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x40319000"),
+        ("1127830", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|0x00127800"),
+        ("64160469", "DEBUG_PROCESS|DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x60120000"),
+        ("24693763", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_DEFAULT_ERROR_MODE|0x20613300"),
+        ("66369778", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x60329300"),
+        ("34594412", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_DEFAULT_ERROR_MODE|0x30514000"),
+        ("40032939", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|0x40032900"),
+        ("35583524", "CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x30503100"),
+        ("40927739", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|0x40927300"),
+        ("51430731", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|0x50430300"),
+        ("2675777", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00635300"),
+        ("24698684", "CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_DEFAULT_ERROR_MODE|0x20618200"),
+        ("63977372", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60937300"),
+        ("14713453", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_DEFAULT_ERROR_MODE|0x10713000"),
+        ("63899926", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60819900"),
+        ("37618768", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30618300"),
+        ("27343177", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20303100"),
+        ("32118021", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30118000"),
+        ("12861587", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10821100"),
+        ("49388133", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x40308100"),
+        ("17874555", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10834100"),
+        ("22585940", "IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20505900"),
+        ("33530935", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30530900"),
+        ("63278769", "DEBUG_PROCESS|DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60238300"),
+        ("15516269", "DEBUG_PROCESS|DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x10516200"),
+        ("31624259", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|0x30624200"),
+        ("6231453", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00231000"),
+        ("59577209", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x50537200"),
+        ("29729499", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x20729000"),
+        ("59883590", "CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x50803100"),
+        ("44084396", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_DEFAULT_ERROR_MODE|0x40004300"),
+        ("9287296", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x00207200"),
+        ("19357221", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x10317200"),
+        ("4912058", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_DEFAULT_ERROR_MODE|0x00912000"),
+        ("55530030", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x50530000"),
+        ("31070854", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x30030800"),
+        ("18702236", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_NO_WINDOW|0x10702200"),
+        ("53019974", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50019900"),
+        ("23680427", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20600000"),
+        ("23565205", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20525200"),
+        ("47257409", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40217000"),
+        ("61682713", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x60602300"),
+        ("61595636", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x60515200"),
+        ("6948522", "DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00908100"),
+        ("46361653", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40321200"),
+        ("64325062", "DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_DEFAULT_ERROR_MODE|0x60325000"),
+        ("38914230", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_NO_WINDOW|0x30914200"),
+        ("52854255", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50814200"),
+        ("7773175", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00733100"),
+        ("49650136", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x40610100"),
+        ("49823331", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x40823300"),
+        ("478357", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|0x00438300"),
+        ("2698265", "DEBUG_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00618200"),
+        ("27710483", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20710000"),
+        ("14007721", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_DEFAULT_ERROR_MODE|0x10007300"),
+        ("50344980", "HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|0x50304900"),
+        ("61709992", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|0x60709900"),
+        ("53619473", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50619000"),
+        ("57036520", "NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50036100"),
+        ("38283312", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|EXTENDED_STARTUPINFO_PRESENT|CREATE_NO_WINDOW|0x30203300"),
+        ("1019122", "DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|0x00019100"),
+        ("58341892", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x50301800"),
+        ("24094378", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_DEFAULT_ERROR_MODE|0x20014300"),
+        ("4321711", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_DEFAULT_ERROR_MODE|0x00321300"),
+        ("57479201", "DEBUG_PROCESS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50439200"),
+        ("30920853", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|0x30920800"),
+        ("2126971", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00126900"),
+        ("54961486", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x50921000"),
+        ("46322600", "CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40322200"),
+        ("31897374", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x30817300"),
+        ("59512343", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x50512300"),
+        ("27836480", "HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20836000"),
+        ("55230891", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x50230800"),
+        ("25188648", "DETACHED_PROCESS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x20108200"),
+        ("61215318", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|CREATE_BREAKAWAY_FROM_JOB|0x60215300"),
+        ("20574656", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|0x20534200"),
+        ("6092459", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00012000"),
+        ("55539683", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x50539200"),
+        ("61101290", "CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|0x60101200"),
+        ("32540986", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30500900"),
+        ("12993071", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10913000"),
+        ("42436834", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40436800"),
+        ("31390317", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x30310300"),
+        ("52257567", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50217100"),
+        ("33226442", "DEBUG_ONLY_THIS_PROCESS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30226000"),
+        ("7203868", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00203800"),
+        ("904946", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|0x00904900"),
+        ("3132496", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00132000"),
+        ("54484207", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|EXTENDED_STARTUPINFO_PRESENT|CREATE_DEFAULT_ERROR_MODE|0x50404200"),
+        ("17029503", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10029100"),
+        ("11328526", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|0x10328100"),
+        ("62218814", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60218800"),
+        ("23415260", "NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20415200"),
+        ("36205178", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30205100"),
+        ("57397395", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50317300"),
+        ("38769470", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x30729000"),
+        ("12770587", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10730100"),
+        ("15413958", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x10413900"),
+        ("58023144", "CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_NO_WINDOW|0x50023100"),
+        ("48562381", "DEBUG_PROCESS|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x40522300"),
+        ("40335407", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_UNICODE_ENVIRONMENT|0x40335000"),
+        ("17733124", "CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10733100"),
+        ("6352474", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00312000"),
+        ("58679019", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x50639000"),
+        ("64586188", "DETACHED_PROCESS|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_DEFAULT_ERROR_MODE|0x60506100"),
+        ("45462402", "DEBUG_ONLY_THIS_PROCESS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x40422000"),
+        ("32681571", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30601100"),
+        ("48919883", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|HIGH_PRIORITY_CLASS|CREATE_NO_WINDOW|0x40919800"),
+        ("40700622", "DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|0x40700200"),
+        ("32136406", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30136000"),
+        ("48163871", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x40123800"),
+        ("57265072", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50225000"),
+        ("61972337", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x60932300"),
+        ("9213288", "DETACHED_PROCESS|HIGH_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x00213200"),
+        ("20415913", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|0x20415900"),
+        ("56299504", "CREATE_SUSPENDED|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50219100"),
+        ("47166586", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40126100"),
+        ("12618541", "DEBUG_PROCESS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10618100"),
+        ("24833298", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_DEFAULT_ERROR_MODE|0x20833200"),
+        ("57122058", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50122000"),
+        ("6265381", "DEBUG_PROCESS|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00225300"),
+        ("16091278", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10011200"),
+        ("57977711", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50937300"),
+        ("33093504", "CREATE_SUSPENDED|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30013100"),
+        ("25506282", "DEBUG_ONLY_THIS_PROCESS|HIGH_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x20506200"),
+        ("32285743", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30205300"),
+        ("17053726", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10013300"),
+        ("62283466", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60203000"),
+        ("23226439", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20226000"),
+        ("21840422", "DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x20800000"),
+        ("8256090", "CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x00216000"),
+        ("35261105", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x30221100"),
+        ("15143660", "NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x10103200"),
+        ("14083053", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_DEFAULT_ERROR_MODE|0x10003000"),
+        ("41094000", "EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x40014000"),
+        ("62484290", "CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60404200"),
+        ("32593609", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30513200"),
+        ("2637981", "DEBUG_PROCESS|HIGH_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00637900"),
+        ("38676599", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x30636100"),
+        ("45836946", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x40836900"),
+        ("45849436", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x40809000"),
+        ("8577211", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x00537200"),
+        ("8012944", "CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_NO_WINDOW|0x00012900"),
+        ("66988809", "DEBUG_PROCESS|DETACHED_PROCESS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x60908800"),
+        ("51149325", "DEBUG_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x50109300"),
+        ("62227415", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60227000"),
+        ("16604256", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10604200"),
+        ("11765722", "DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x10725300"),
+        ("60705103", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|0x60705100"),
+        ("50452746", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|0x50412300"),
+        ("7749174", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00709100"),
+        ("38361873", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x30321800"),
+        ("53981689", "DEBUG_PROCESS|DETACHED_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50901200"),
+        ("30060243", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|0x30020200"),
+        ("59681758", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x50601300"),
+        ("59334585", "DEBUG_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x50334100"),
+        ("34831682", "DEBUG_ONLY_THIS_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_DEFAULT_ERROR_MODE|0x30831200"),
+        ("34240059", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x30200000"),
+        ("61488900", "EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x60408900"),
+        ("22747163", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20707100"),
+        ("54026656", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_DEFAULT_ERROR_MODE|0x50026200"),
+        ("7395237", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00315200"),
+        ("10670189", "DEBUG_PROCESS|DETACHED_PROCESS|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|0x10630100"),
+        ("24909589", "DEBUG_PROCESS|DETACHED_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_DEFAULT_ERROR_MODE|0x20909100"),
+        ("56756612", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50716200"),
+        ("6482709", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00402300"),
+        ("53076205", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50036200"),
+        ("14493190", "CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_DEFAULT_ERROR_MODE|0x10413100"),
+        ("66625604", "CREATE_SUSPENDED|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x60625200"),
+        ("13210167", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10210100"),
+        ("46150457", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40110000"),
+        ("66899247", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x60819200"),
+        ("27103270", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20103200"),
+        ("37528533", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30528100"),
+        ("30199117", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|EXTENDED_STARTUPINFO_PRESENT|0x30119100"),
+        ("49087500", "CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x40007100"),
+        ("455094", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|0x00415000"),
+        ("18623467", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_NO_WINDOW|0x10623000"),
+        ("60004241", "DEBUG_PROCESS|IDLE_PRIORITY_CLASS|0x60004200"),
+        ("56409330", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50409300"),
+        ("59679909", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x50639900"),
+        ("44918701", "DEBUG_PROCESS|CREATE_UNICODE_ENVIRONMENT|CREATE_DEFAULT_ERROR_MODE|0x40918300"),
+        ("21950037", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x20910000"),
+        ("52062980", "HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50022900"),
+        ("30154405", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|0x30114000"),
+        ("63766242", "DEBUG_ONLY_THIS_PROCESS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60726200"),
+        ("58402420", "NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_NO_WINDOW|0x50402000"),
+        ("66455145", "DEBUG_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x60415100"),
+        ("41864032", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x40824000"),
+        ("24961207", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x20921200"),
+        ("48479784", "CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x40439300"),
+        ("23492352", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20412300"),
+        ("48057091", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x40017000"),
+        ("57659231", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50619200"),
+        ("4521509", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_UNICODE_ENVIRONMENT|CREATE_DEFAULT_ERROR_MODE|0x00521100"),
+        ("51799784", "CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x50719300"),
+        ("39966497", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x30926000"),
+        ("47397977", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40317900"),
+        ("25909656", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x20909200"),
+        ("9741161", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x00701100"),
+        ("11554532", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x10514100"),
+        ("24033311", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|CREATE_DEFAULT_ERROR_MODE|0x20033300"),
+        ("27299361", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20219300"),
+        ("24916511", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_DEFAULT_ERROR_MODE|0x20916100"),
+        ("66070230", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x60030200"),
+        ("4777519", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x00737100"),
+        ("60128122", "DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|0x60128100"),
+        ("54262909", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x50222900"),
+        ("57959552", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50919100"),
+        ("36591296", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30511200"),
+        ("67002100", "CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x60002100"),
+        ("31392299", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x30312200"),
+        ("14820385", "DEBUG_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_DEFAULT_ERROR_MODE|0x10820300"),
+        ("48968337", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x40928300"),
+        ("47484533", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40404100"),
+        ("54562421", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x50522000"),
+        ("4980942", "DEBUG_ONLY_THIS_PROCESS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_DEFAULT_ERROR_MODE|0x00900900"),
+        ("1159250", "CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x00119200"),
+        ("10706863", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|0x10706800"),
+        ("17540223", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10500200"),
+        ("1095348", "DETACHED_PROCESS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x00015300"),
+        ("62510060", "NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60510000"),
+        ("32024821", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30024800"),
+        ("7637856", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00637800"),
+        ("26625732", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20625300"),
+        ("11426783", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|0x10426300"),
+        ("5778943", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x00738900"),
+        ("58028120", "NORMAL_PRIORITY_CLASS|CREATE_NO_WINDOW|0x50028100"),
+        ("33556078", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30516000"),
+        ("2958173", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00918100"),
+        ("49138854", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x40138800"),
+        ("64275019", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x60235000"),
+        ("61639664", "CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|0x60639200"),
+        ("36280783", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30200300"),
+        ("56475003", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50435000"),
+        ("50564677", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|0x50524200"),
+        ("52912212", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50912200"),
+        ("20038098", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|0x20038000"),
+        ("40839316", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|0x40839300"),
+        ("40203963", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|0x40203900"),
+        ("22201570", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20201100"),
+        ("59600153", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x50600100"),
+        ("7750729", "DEBUG_PROCESS|DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00710300"),
+        ("52954064", "CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50914000"),
+        ("64159333", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x60119300"),
+        ("43903440", "IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40903000"),
+        ("5642244", "CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x00602200"),
+        ("61311694", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|0x60311200"),
+        ("49955607", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x40915200"),
+        ("64167706", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x60127300"),
+        ("40442589", "DEBUG_PROCESS|DETACHED_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|0x40402100"),
+        ("59513656", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x50513200"),
+        ("58652827", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x50612800"),
+        ("25871502", "DEBUG_ONLY_THIS_PROCESS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x20831100"),
+        ("284246", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|0x00204200"),
+        ("61632447", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|0x60632000"),
+        ("25791623", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x20711200"),
+        ("44106586", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_DEFAULT_ERROR_MODE|0x40106100"),
+        ("51341419", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x50301000"),
+        ("32131293", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30131200"),
+        ("48799328", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_NO_WINDOW|0x40719300"),
+        ("10909429", "DEBUG_PROCESS|DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|0x10909000"),
+        ("10465179", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|0x10425100"),
+        ("38742071", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x30702000"),
+        ("66132869", "DEBUG_PROCESS|DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x60132800"),
+        ("7011530", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00011100"),
+        ("36969057", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30929000"),
+        ("35913857", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x30913800"),
+        ("55194855", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x50114800"),
+        ("41318684", "CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|0x40318200"),
+        ("54724747", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_DEFAULT_ERROR_MODE|0x50724300"),
+        ("56342983", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50302900"),
+        ("48745669", "DEBUG_PROCESS|DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x40705200"),
+        ("28180916", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|EXTENDED_STARTUPINFO_PRESENT|CREATE_NO_WINDOW|0x20100900"),
+        ("30375065", "DEBUG_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|0x30335000"),
+        ("41896990", "CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x40816900"),
+        ("8875622", "DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x00835200"),
+        ("45685584", "CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x40605100"),
+        ("24069410", "CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x20029000"),
+        ("39981858", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x30901800"),
+        ("62482088", "DETACHED_PROCESS|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60402000"),
+        ("9964583", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x00924100"),
+        ("37727778", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30727300"),
+        ("10502726", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|0x10502300"),
+        ("61653990", "CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x60613900"),
+        ("33968969", "DEBUG_PROCESS|DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30928900"),
+        ("36097571", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30017100"),
+        ("1108121", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|0x00108100"),
+        ("62880940", "IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60800900"),
+        ("29161231", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x20121200"),
+        ("21435441", "DEBUG_PROCESS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|0x20435000"),
+        ("16017494", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10017000"),
+        ("49766725", "DEBUG_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x40726300"),
+        ("54219423", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_DEFAULT_ERROR_MODE|0x50219000"),
+        ("7946444", "CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00906000"),
+        ("62205388", "DETACHED_PROCESS|HIGH_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60205300"),
+        ("21408752", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|0x20408300"),
+        ("65783396", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x60703300"),
+        ("10891473", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|0x10811000"),
+        ("43771787", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40731300"),
+        ("48465614", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x40425200"),
+        ("17850174", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10810100"),
+        ("9677554", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x00637100"),
+        ("60313969", "DEBUG_PROCESS|DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|0x60313900"),
+        ("51757074", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x50717000"),
+        ("58383718", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_NO_WINDOW|0x50303300"),
+        ("56790282", "DEBUG_ONLY_THIS_PROCESS|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50710200"),
+        ("25665113", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x20625100"),
+        ("36612595", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30612100"),
+        ("5219042", "DEBUG_ONLY_THIS_PROCESS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x00219000"),
+        ("24266166", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x20226100"),
+        ("26058992", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20018900"),
+        ("50309629", "DEBUG_PROCESS|DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|0x50309200"),
+        ("22128009", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20128000"),
+        ("55121535", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x50121100"),
+        ("62696430", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60616000"),
+        ("5275364", "CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x00235300"),
+        ("4662876", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x00622800"),
+        ("8258515", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x00218100"),
+        ("45189632", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x40109200"),
+        ("20591868", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|0x20511800"),
+        ("47876882", "DEBUG_ONLY_THIS_PROCESS|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40836800"),
+        ("53488019", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50408000"),
+        ("4602346", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_DEFAULT_ERROR_MODE|0x00602300"),
+        ("16195916", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10115900"),
+        ("46452994", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40412900"),
+        ("1063157", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x00023100"),
+        ("49349736", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x40309300"),
+        ("16569901", "DEBUG_PROCESS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10529900"),
+        ("64400270", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_DEFAULT_ERROR_MODE|0x60400200"),
+        ("63546191", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60506100"),
+        ("3980474", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00900000"),
+        ("3764416", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00724000"),
+        ("10466018", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|CREATE_PROTECTED_PROCESS|0x10426000"),
+        ("65935173", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x60935100"),
+        ("61564854", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x60524800"),
+        ("27092809", "DEBUG_PROCESS|DETACHED_PROCESS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20012800"),
+        ("12657147", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10617100"),
+        ("40089927", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|0x40009900"),
+        ("42011764", "CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40011300"),
+        ("14541085", "DEBUG_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x10501000"),
+        ("19146555", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x10106100"),
+        ("37067273", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30027200"),
+        ("26475659", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20435200"),
+        ("15764883", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x10724800"),
+        ("50226545", "DEBUG_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|0x50226100"),
+        ("53975575", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50935100"),
+        ("62891492", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60811000"),
+        ("32782238", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30702200"),
+        ("28756007", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x20716000"),
+        ("37444520", "NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30404100"),
+        ("49655889", "DEBUG_PROCESS|DETACHED_PROCESS|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x40615800"),
+        ("52796309", "DEBUG_PROCESS|DETACHED_PROCESS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50716300"),
+        ("526360", "NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|0x00526300"),
+        ("3477129", "DEBUG_PROCESS|DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00437100"),
+        ("64317081", "DEBUG_PROCESS|HIGH_PRIORITY_CLASS|CREATE_DEFAULT_ERROR_MODE|0x60317000"),
+        ("45361339", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x40321300"),
+        ("48077364", "CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x40037300"),
+        ("5645257", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x00605200"),
+        ("29563958", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x20523900"),
+        ("45870103", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x40830100"),
+        ("7326438", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00326000"),
+        ("53046713", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50006300"),
+        ("41569563", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x40529100"),
+        ("11750165", "DEBUG_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x10710100"),
+        ("15643398", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x10603300"),
+        ("34693956", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_DEFAULT_ERROR_MODE|0x30613900"),
+        ("41043121", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x40003100"),
+        ("6834319", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00834300"),
+        ("63035484", "CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60035000"),
+        ("34276471", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x30236000"),
+        ("50738905", "DEBUG_PROCESS|CREATE_SUSPENDED|0x50738900"),
+        ("5939920", "NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x00939900"),
+        ("5218666", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x00218200"),
+        ("6142299", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00102200"),
+        ("6437305", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00437300"),
+        ("60737777", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|0x60737300"),
+        ("25865979", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x20825900"),
+        ("6462663", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00422200"),
+        ("58546308", "DETACHED_PROCESS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x50506300"),
+        ("17874539", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10834100"),
+        ("26309177", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20309100"),
+        ("60369536", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|0x60329100"),
+        ("57991566", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50911100"),
+        ("62938589", "DEBUG_PROCESS|DETACHED_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60938100"),
+        ("48856617", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x40816200"),
+        ("25323695", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x20323200"),
+        ("2816781", "DEBUG_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00816300"),
+        ("55084296", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x50004200"),
+        ("53024832", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50024800"),
+        ("53846242", "DEBUG_ONLY_THIS_PROCESS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50806200"),
+        ("34548843", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x30508800"),
+        ("35792993", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x30712900"),
+        ("64737033", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_DEFAULT_ERROR_MODE|0x60737000"),
+        ("35520140", "IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x30520100"),
+        ("10051922", "DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|0x10011900"),
+        ("42866172", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40826100"),
+        ("66641088", "DETACHED_PROCESS|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x60601000"),
+        ("61841361", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x60801300"),
+        ("28162236", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x20122200"),
+        ("5203274", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x00203200"),
+        ("28419413", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_NO_WINDOW|0x20419000"),
+        ("17248534", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10208100"),
+        ("58448624", "CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x50408200"),
+        ("3144614", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00104200"),
+        ("23625352", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20625300"),
+        ("53293821", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50213800"),
+        ("12393547", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10313100"),
+        ("10347949", "DEBUG_PROCESS|DETACHED_PROCESS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|0x10307900"),
+        ("17148807", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10108800"),
+        ("37436353", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30436300"),
+        ("14010917", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_DEFAULT_ERROR_MODE|0x10010900"),
+        ("42689880", "HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40609800"),
+        ("50588206", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|EXTENDED_STARTUPINFO_PRESENT|0x50508200"),
+        ("62889715", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60809300"),
+        ("38195853", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_NO_WINDOW|0x30115800"),
+        ("25221443", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x20221000"),
+        ("3427542", "DEBUG_ONLY_THIS_PROCESS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00427100"),
+        ("63105768", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60105300"),
+        ("22642234", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20602200"),
+        ("52844597", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50804100"),
+        ("47884189", "DEBUG_PROCESS|DETACHED_PROCESS|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40804100"),
+        ("49191291", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x40111200"),
+        ("26199272", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20119200"),
+        ("59587869", "DEBUG_PROCESS|DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x50507800"),
+        ("25016628", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x20016200"),
+        ("53951578", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50911100"),
+        ("3296940", "IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00216900"),
+        ("40537986", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|0x40537900"),
+        ("23176058", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20136000"),
+        ("32714185", "DEBUG_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30714100"),
+        ("33132920", "NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30132900"),
+        ("22853209", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20813200"),
+        ("51337587", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|0x50337100"),
+        ("18811004", "CREATE_SUSPENDED|CREATE_NO_WINDOW|0x10811000"),
+        ("35658642", "DEBUG_ONLY_THIS_PROCESS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x30618200"),
+        ("65737189", "DEBUG_PROCESS|DETACHED_PROCESS|HIGH_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x60737100"),
+        ("280851", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|0x00200800"),
+        ("59675688", "DETACHED_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x50635200"),
+        ("20018782", "DEBUG_ONLY_THIS_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|0x20018300"),
+        ("7835163", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00835100"),
+        ("63576095", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60536000"),
+        ("66630866", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x60630800"),
+        ("50098362", "DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|0x50018300"),
+        ("4717318", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|CREATE_DEFAULT_ERROR_MODE|0x00717300"),
+        ("31775006", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x30735000"),
+        ("34984172", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_DEFAULT_ERROR_MODE|0x30904100"),
+        ("39685906", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x30605900"),
+        ("57651835", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50611800"),
+        ("45257673", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x40217200"),
+        ("38575824", "CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x30535800"),
+        ("5719561", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x00719100"),
+        ("9366199", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x00326100"),
+        ("25712041", "DEBUG_PROCESS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x20712000"),
+        ("41805243", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|0x40805200"),
+        ("44053120", "NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x40013100"),
+        ("60422925", "DEBUG_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|0x60422900"),
+        ("2832684", "CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00832200"),
+        ("58845315", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x50805300"),
+        ("30301346", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|0x30301300"),
+        ("6078945", "DEBUG_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00038900"),
+        ("24789667", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_DEFAULT_ERROR_MODE|0x20709200"),
+        ("17592158", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10512100"),
+        ("33783071", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30703000"),
+        ("57436696", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50436200"),
+        ("27984519", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20904100"),
+        ("4545682", "DEBUG_ONLY_THIS_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x00505200"),
+        ("64395666", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_DEFAULT_ERROR_MODE|0x60315200"),
+        ("7333023", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00333000"),
+        ("48673879", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x40633800"),
+        ("57142411", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50102000"),
+        ("53698507", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50618100"),
+        ("33025201", "DEBUG_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30025200"),
+        ("10361852", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|0x10321800"),
+        ("5243629", "DEBUG_PROCESS|DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x00203200"),
+        ("24163889", "DEBUG_PROCESS|DETACHED_PROCESS|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x20123800"),
+        ("37304725", "DEBUG_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30304300"),
+        ("27059573", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20019100"),
+        ("39207210", "CREATE_NEW_CONSOLE|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x30207200"),
+        ("6103356", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00103300"),
+        ("49786786", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x40706300"),
+        ("50714032", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|0x50714000"),
+        ("33314970", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30314900"),
+        ("46929699", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40929200"),
+        ("13145808", "DETACHED_PROCESS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10105800"),
+        ("42798670", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40718200"),
+        ("11926754", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|0x10926300"),
+        ("19699635", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x10619200"),
+        ("4910259", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_DEFAULT_ERROR_MODE|0x00910200"),
+        ("57199658", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50119200"),
+        ("16983741", "DEBUG_PROCESS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10903300"),
+        ("66945696", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x60905200"),
+        ("45214187", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x40214100"),
+        ("65787112", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x60707100"),
+        ("44639628", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_DEFAULT_ERROR_MODE|0x40639200"),
+        ("23334772", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20334300"),
+        ("18289280", "HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_NO_WINDOW|0x10209200"),
+        ("51455149", "DEBUG_PROCESS|DETACHED_PROCESS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x50415100"),
+        ("38486606", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_NO_WINDOW|0x30406200"),
+        ("23058357", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20018300"),
+        ("19080356", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x10000300"),
+        ("11672838", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x10632800"),
+        ("10465394", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|0x10425300"),
+        ("57646523", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50606100"),
+        ("53179737", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50139300"),
+        ("16897231", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10817200"),
+        ("41268984", "CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x40228900"),
+        ("46478320", "NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40438300"),
+        ("3358536", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00318100"),
+        ("23221904", "CREATE_SUSPENDED|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20221900"),
+        ("13735684", "CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10735200"),
+        ("31746549", "DEBUG_PROCESS|DETACHED_PROCESS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x30706100"),
+        ("4700763", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_DEFAULT_ERROR_MODE|0x00700300"),
+        ("59007344", "CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x50007300"),
+        ("15255635", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x10215200"),
+        ("66841353", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x60801300"),
+        ("54345744", "CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x50305300"),
+        ("20245665", "DEBUG_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|0x20205200"),
+        ("26095270", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20015200"),
+        ("60771123", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|0x60731100"),
+        ("38119819", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|CREATE_NO_WINDOW|0x30119800"),
+        ("11239237", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|0x10239200"),
+        ("50981228", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|0x50901200"),
+        ("21794641", "DEBUG_PROCESS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x20714200"),
+        ("46922996", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40922900"),
+        ("37390259", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30310200"),
+        ("49263330", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x40223300"),
+        ("7280567", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00200100"),
+        ("4667032", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x00627000"),
+        ("62510354", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60510300"),
+        ("672121", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|0x00632100"),
+        ("58186634", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_NO_WINDOW|0x50106200"),
+        ("8463436", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x00423000"),
+        ("49754904", "CREATE_SUSPENDED|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x40714900"),
+        ("60056249", "DEBUG_PROCESS|DETACHED_PROCESS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|0x60016200"),
+        ("32539000", "CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30539000"),
+        ("20459777", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|0x20419300"),
+        ("29684686", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x20604200"),
+        ("1758728", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x00718300"),
+        ("23874884", "CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20834800"),
+        ("20714384", "CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|0x20714300"),
+        ("65743558", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x60703100"),
+        ("48789194", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_NO_WINDOW|0x40709100"),
+        ("19029133", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x10029100"),
+        ("64975540", "IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x60935100"),
+        ("30277126", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|0x30237100"),
+        ("28755443", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x20715000"),
+        ("23158487", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20118000"),
+        ("38598239", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_NO_WINDOW|0x30518200"),
+        ("26632061", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20632000"),
+        ("40438961", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|0x40438900"),
+        ("37527392", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30527300"),
+        ("61640439", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x60600000"),
+        ("55526300", "CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x50526300"),
+        ("33307484", "CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30307000"),
+        ("21093890", "CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x20013800"),
+        ("50375593", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|0x50335100"),
+        ("6504547", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00504100"),
+        ("25716191", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x20716100"),
+        ("49709329", "DEBUG_PROCESS|DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x40709300"),
+        ("10754552", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|0x10714100"),
+        ("49473732", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x40433300"),
+        ("25783596", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x20703100"),
+        ("11811814", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_BREAKAWAY_FROM_JOB|0x10811800"),
+        ("33013819", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30013800"),
+        ("10267624", "CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|0x10227200"),
+        ("61124735", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|0x60124300"),
+        ("52993797", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50913300"),
+        ("49072448", "DETACHED_PROCESS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x40032000"),
+        ("1000081", "DEBUG_PROCESS|HIGH_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB"),
+        ("51050459", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x50010000"),
+        ("9263873", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x00223800"),
+        ("27539690", "CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20539200"),
+        ("4178370", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x00138300"),
+        ("63650744", "CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60610300"),
+        ("14049715", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x10009300"),
+        ("46944717", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40904300"),
+        ("42213450", "CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40213000"),
+        ("45281448", "DETACHED_PROCESS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x40201000"),
+        ("49223173", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x40223100"),
+        ("40385730", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|0x40305300"),
+        ("39023581", "DEBUG_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x30023100"),
+        ("27422704", "CREATE_SUSPENDED|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20422300"),
+        ("55476583", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x50436100"),
+        ("26735078", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20735000"),
+        ("30888578", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|0x30808100"),
+        ("52789487", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50709000"),
+        ("17668017", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10628000"),
+        ("25265554", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x20225100"),
+        ("25630995", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x20630900"),
+        ("11362587", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x10322100"),
+        ("3671149", "DEBUG_PROCESS|DETACHED_PROCESS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00631100"),
+        ("9093565", "DEBUG_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x00013100"),
+        ("66761620", "NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x60721200"),
+        ("66464492", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x60424000"),
+        ("62691927", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60611900"),
+        ("64016978", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_DEFAULT_ERROR_MODE|0x60016900"),
+        ("9268822", "DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x00228800"),
+        ("58234421", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_NO_WINDOW|0x50234000"),
+        ("57564737", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50524300"),
+        ("26817634", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20817200"),
+        ("560835", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|0x00520800"),
+        ("60957764", "CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|0x60917300"),
+        ("7166500", "CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00126100"),
+        ("8259489", "DEBUG_PROCESS|DETACHED_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x00219000"),
+        ("5757357", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x00717300"),
+        ("34771263", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x30731200"),
+        ("44597492", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_DEFAULT_ERROR_MODE|0x40517000"),
+        ("53198954", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50118900"),
+        ("14040436", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x10000000"),
+        ("55381020", "NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x50301000"),
+        ("44999261", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_DEFAULT_ERROR_MODE|0x40919200"),
+        ("62522140", "IDLE_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60522100"),
+        ("53663041", "DEBUG_PROCESS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50623000"),
+        ("58535046", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_NO_WINDOW|0x50535000"),
+        ("29505643", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x20505200"),
+        ("21729748", "DETACHED_PROCESS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|0x20729300"),
+        ("38336046", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_NO_WINDOW|0x30336000"),
+        ("3968419", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00928000"),
+        ("14029231", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_DEFAULT_ERROR_MODE|0x10029200"),
+        ("65300914", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x60300900"),
+        ("26900059", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20900000"),
+        ("62035197", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60035100"),
+        ("27847764", "CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20807300"),
+        ("52623320", "NORMAL_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50623300"),
+        ("58285930", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_NO_WINDOW|0x50205900"),
+        ("63359344", "CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60319300"),
+        ("52113578", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50113100"),
+        ("58135906", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NO_WINDOW|0x50135900"),
+        ("20300946", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|0x20300900"),
+        ("31040209", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x30000200"),
+        ("11291522", "DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x10211100"),
+        ("38864163", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x30824100"),
+        ("7805967", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00805900"),
+        ("60030575", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|0x60030100"),
+        ("48143084", "CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x40103000"),
+        ("54543324", "CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x50503300"),
+        ("4950087", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x00910000"),
+        ("42877678", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40837200"),
+        ("5412559", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x00412100"),
+        ("20041929", "DEBUG_PROCESS|DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|0x20001900"),
+        ("27618368", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20618300"),
+        ("25902255", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x20902200"),
+        ("26006432", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20006000"),
+        ("27178856", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20138800"),
+        ("11598449", "DEBUG_PROCESS|DETACHED_PROCESS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x10518000"),
+        ("36979789", "DEBUG_PROCESS|DETACHED_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30939300"),
+        ("47051659", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40011200"),
+        ("54135005", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_DEFAULT_ERROR_MODE|0x50135000"),
+        ("29340097", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x20300000"),
+        ("54729865", "DEBUG_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_DEFAULT_ERROR_MODE|0x50729800"),
+        ("21029436", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|0x20029000"),
+        ("2540098", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00500000"),
+        ("63345717", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60305300"),
+        ("35658169", "DEBUG_PROCESS|DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x30618100"),
+        ("30039539", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|0x30039100"),
+        ("27600384", "CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20600300"),
+        ("24815927", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_DEFAULT_ERROR_MODE|0x20815900"),
+        ("20926715", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|0x20926300"),
+        ("38441788", "DETACHED_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x30401300"),
+        ("6881938", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00801900"),
+        ("16777279", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10737200"),
+        ("7779278", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00739200"),
+        ("66911872", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x60911800"),
+        ("9774649", "DEBUG_PROCESS|DETACHED_PROCESS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x00734200"),
+        ("20423963", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|0x20423900"),
+        ("49695578", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x40615100"),
+        ("41945820", "NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x40905800"),
+        ("27262408", "DETACHED_PROCESS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20222000"),
+        ("20516952", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|0x20516900"),
+        ("1653031", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x00613000"),
+        ("8577529", "DEBUG_PROCESS|DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x00537100"),
+        ("38359244", "CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x30319200"),
+        ("39140215", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x30100200"),
+        ("27169271", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20129200"),
+        ("49611289", "DEBUG_PROCESS|DETACHED_PROCESS|HIGH_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x40611200"),
+        ("22810136", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20810100"),
+        ("48731360", "NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_NO_WINDOW|0x40731300"),
+        ("28686145", "DEBUG_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_NO_WINDOW|0x20606100"),
+        ("44690678", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_DEFAULT_ERROR_MODE|0x40610200"),
+        ("51404274", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|0x50404200"),
+        ("3632371", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00632300"),
+        ("23142596", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20102100"),
+        ("63594052", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60514000"),
+        ("21944568", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x20904100"),
+        ("36735496", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30735000"),
+        ("34881628", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_DEFAULT_ERROR_MODE|0x30801200"),
+        ("17267184", "CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10227100"),
+        ("10378198", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|0x10338100"),
+        ("19410728", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x10410300"),
+        ("64289025", "DEBUG_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_DEFAULT_ERROR_MODE|0x60209000"),
+        ("4902946", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_DEFAULT_ERROR_MODE|0x00902900"),
+        ("41979794", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x40939300"),
+        ("39363474", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x30323000"),
+        ("41266060", "NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x40226000"),
+        ("41009193", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|0x40009100"),
+        ("433034", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|0x00433000"),
+        ("20354785", "DEBUG_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|0x20314300"),
+        ("22316361", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20316300"),
+        ("34812373", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_DEFAULT_ERROR_MODE|0x30812300"),
+        ("58026702", "DEBUG_ONLY_THIS_PROCESS|CREATE_UNICODE_ENVIRONMENT|CREATE_NO_WINDOW|0x50026300"),
+        ("14548119", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x10508100"),
+        ("61107334", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|0x60107300"),
+        ("17402346", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10402300"),
+        ("10998297", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|0x10918200"),
+        ("52140537", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50100100"),
+        ("23557004", "CREATE_SUSPENDED|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20517000"),
+        ("528355", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|0x00528300"),
+        ("56549264", "CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50509200"),
+        ("53921688", "DETACHED_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50921200"),
+        ("464312", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|CREATE_PROTECTED_PROCESS|0x00424300"),
+        ("9700323", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x00700300"),
+        ("28203680", "HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_NO_WINDOW|0x20203200"),
+        ("7344563", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00304100"),
+        ("45927659", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x40927200"),
+        ("6396558", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00316100"),
+        ("65492361", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x60412300"),
+        ("62086754", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60006300"),
+        ("29241988", "DETACHED_PROCESS|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x20201900"),
+        ("16936319", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10936300"),
+        ("57519649", "DEBUG_PROCESS|DETACHED_PROCESS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50519200"),
+        ("16970547", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10930100"),
+        ("11271954", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x10231900"),
+        ("57233297", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50233200"),
+        ("21053101", "DEBUG_PROCESS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x20013100"),
+        ("42747016", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40707000"),
+        ("42167196", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40127100"),
+        ("2585807", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00505800"),
+        ("21343207", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x20303200"),
+        ("66820890", "CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x60820800"),
+        ("15132786", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x10132300"),
+        ("45180621", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x40100200"),
+        ("11073726", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x10033300"),
+        ("25862947", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x20822900"),
+        ("38670119", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x30630100"),
+        ("49007482", "DEBUG_ONLY_THIS_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x40007000"),
+        ("51790928", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x50710900"),
+        ("45729936", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x40729900"),
+        ("25052998", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x20012900"),
+        ("38697177", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_NO_WINDOW|0x30617100"),
+        ("63508614", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60508200"),
+        ("9013107", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x00013100"),
+        ("4471545", "DEBUG_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x00431100"),
+        ("53373161", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50333100"),
+        ("61645347", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x60605300"),
+        ("5866767", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x00826300"),
+        ("28890492", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_NO_WINDOW|0x20810000"),
+        ("26442359", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20402300"),
+        ("1365778", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x00325300"),
+        ("56787797", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50707300"),
+        ("8074129", "DEBUG_PROCESS|DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x00034100"),
+        ("36209609", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30209200"),
+        ("7350462", "DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00310000"),
+        ("24001437", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_DEFAULT_ERROR_MODE|0x20001000"),
+        ("57028261", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50028200"),
+        ("66586536", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x60506100"),
+        ("17023523", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10023100"),
+        ("33458089", "DEBUG_PROCESS|DETACHED_PROCESS|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30418000"),
+        ("49063518", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x40023100"),
+        ("63332916", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60332900"),
+        ("127880", "HIGH_PRIORITY_CLASS|0x00127800"),
+        ("23638533", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20638100"),
+        ("65917227", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x60917200"),
+        ("10357702", "DEBUG_ONLY_THIS_PROCESS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|0x10317300"),
+        ("23188477", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20108000"),
+        ("5238835", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x00238800"),
+        ("49527103", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x40527100"),
+        ("22339619", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20339200"),
+        ("47333198", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40333100"),
+        ("50721280", "HIGH_PRIORITY_CLASS|0x50721200"),
+        ("33845131", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30805100"),
+        ("15068448", "DETACHED_PROCESS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x10028000"),
+        ("36968687", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30928200"),
+        ("45740224", "CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x40700200"),
+        ("45709253", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x40709200"),
+        ("3454342", "DEBUG_ONLY_THIS_PROCESS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00414300"),
+        ("17674949", "DEBUG_PROCESS|DETACHED_PROCESS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10634900"),
+        ("50825499", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|0x50825000"),
+        ("26287471", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20207000"),
+        ("25650434", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x20610000"),
+        ("62600278", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60600200"),
+        ("16952306", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10912300"),
+        ("4834574", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_DEFAULT_ERROR_MODE|0x00834100"),
+        ("12253260", "NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10213200"),
+        ("52589108", "DETACHED_PROCESS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50509100"),
+        ("53270538", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50230100"),
+        ("39352042", "DEBUG_ONLY_THIS_PROCESS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x30312000"),
+        ("56888168", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50808100"),
+        ("64784151", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_DEFAULT_ERROR_MODE|0x60704100"),
+        ("59333826", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x50333800"),
+        ("20968787", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|0x20928300"),
+        ("56190399", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50110300"),
+        ("32508001", "DEBUG_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30508000"),
+        ("13056808", "DETACHED_PROCESS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10016800"),
+        ("62186086", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60106000"),
+        ("56759419", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50719000"),
+        ("32508730", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30508300"),
+        ("470846", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|0x00430800"),
+        ("33559525", "DEBUG_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30519100"),
+        ("37623655", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30623200"),
+        ("24103702", "DEBUG_ONLY_THIS_PROCESS|CREATE_UNICODE_ENVIRONMENT|CREATE_DEFAULT_ERROR_MODE|0x20103300"),
+        ("52668682", "DEBUG_ONLY_THIS_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50628200"),
+        ("41303584", "CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|0x40303100"),
+        ("10093096", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|0x10013000"),
+        ("30038275", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|0x30038200"),
+        ("48489985", "DEBUG_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_NO_WINDOW|0x40409900"),
+        ("43904472", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40904000"),
+        ("36694283", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30614200"),
+        ("44462432", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x40422000"),
+        ("15753519", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x10713100"),
+        ("24261453", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x20221000"),
+        ("51396789", "DEBUG_PROCESS|DETACHED_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x50316300"),
+        ("58360099", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x50320000"),
+        ("27647968", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20607900"),
+        ("12249888", "DETACHED_PROCESS|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10209800"),
+        ("52000727", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50000300"),
+        ("10873532", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|0x10833100"),
+        ("29924337", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x20924300"),
+        ("21196215", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x20116200"),
+        ("24097605", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_DEFAULT_ERROR_MODE|0x20017200"),
+        ("16984656", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10904200"),
+        ("13641735", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10601300"),
+        ("48624110", "CREATE_NEW_CONSOLE|CREATE_NO_WINDOW|0x40624100"),
+        ("5513829", "DEBUG_PROCESS|DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x00513800"),
+        ("47334364", "CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40334300"),
+        ("61600417", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|0x60600000"),
+        ("43691936", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40611900"),
+        ("61998603", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x60918200"),
+        ("58279844", "CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x50239800"),
+        ("24739194", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_DEFAULT_ERROR_MODE|0x20739100"),
+        ("25275463", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x20235000"),
+        ("587154", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|0x00507100"),
+        ("25109567", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x20109100"),
+        ("61975995", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x60935900"),
+        ("47397701", "DEBUG_PROCESS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40317300"),
+        ("47243030", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40203000"),
+        ("59069724", "CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x50029300"),
+        ("63326900", "CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60326900"),
+        ("26234881", "DEBUG_PROCESS|HIGH_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20234800"),
+        ("37109622", "DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30109200"),
+        ("44720747", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_DEFAULT_ERROR_MODE|0x40720300"),
+        ("23157470", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20117000"),
+        ("47003033", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40003000"),
+        ("506749", "DEBUG_PROCESS|DETACHED_PROCESS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|0x00506300"),
+        ("6618198", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00618100"),
+        ("31299788", "DETACHED_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x30219300"),
+        ("22489928", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20409900"),
+        ("34040411", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x30000000"),
+        ("16763542", "DEBUG_ONLY_THIS_PROCESS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10723100"),
+        ("2241903", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00201900"),
+        ("7271941", "DEBUG_PROCESS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00231900"),
+        ("2251468", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00211000"),
+        ("9047415", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x00007000"),
+        ("19291828", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x10211800"),
+        ("22207901", "DEBUG_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20207900"),
+        ("16242710", "CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10202300"),
+        ("3588279", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00508200"),
+        ("40431452", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|0x40431000"),
+        ("59507344", "CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x50507300"),
+        ("19522700", "CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x10522300"),
+        ("29387624", "CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x20307200"),
+        ("7315705", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00315300"),
+        ("31780512", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x30700100"),
+        ("42591629", "DEBUG_PROCESS|DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40511200"),
+        ("31057003", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x30017000"),
+        ("712794", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|0x00712300"),
+        ("18585663", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_NO_WINDOW|0x10505200"),
+        ("14221087", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_DEFAULT_ERROR_MODE|0x10221000"),
+        ("13818383", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|HIGH_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10818300"),
+        ("63970913", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60930900"),
+        ("8087634", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_NO_WINDOW|0x00007200"),
+        ("54311755", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_DEFAULT_ERROR_MODE|0x50311300"),
+        ("35983407", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x30903000"),
+        ("63158778", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60118300"),
+        ("53236228", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50236200"),
+        ("17162101", "DEBUG_PROCESS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10122100"),
+        ("59714083", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|HIGH_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x50714000"),
+        ("61235838", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|0x60235800"),
+        ("28624352", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_NO_WINDOW|0x20624300"),
+        ("19302973", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x10302900"),
+        ("26790996", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20710900"),
+        ("10305623", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|0x10305200"),
+        ("41080328", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x40000300"),
+        ("9346924", "CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x00306900"),
+        ("18650100", "CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x10610100"),
+        ("59136898", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x50136800"),
+        ("50134328", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|0x50134300"),
+        ("57952649", "DEBUG_PROCESS|DETACHED_PROCESS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50912200"),
+        ("17731128", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10731100"),
+        ("42189310", "CREATE_NEW_CONSOLE|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40109300"),
+        ("26805723", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20805300"),
+        ("54831302", "DEBUG_ONLY_THIS_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x50831300"),
+        ("49162932", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x40122900"),
+        ("10295016", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|EXTENDED_STARTUPINFO_PRESENT|0x10215000"),
+        ("5903640", "IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x00903200"),
+        ("59278647", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x50238200"),
+        ("25565282", "DEBUG_ONLY_THIS_PROCESS|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x20525200"),
+        ("18914610", "CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_NO_WINDOW|0x10914200"),
+        ("37265712", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30225300"),
+        ("42110061", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40110000"),
+        ("41199549", "DEBUG_PROCESS|DETACHED_PROCESS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x40119100"),
+        ("17407366", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10407300"),
+        ("41518046", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|0x40518000"),
+        ("44176461", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x40136000"),
+        ("13674038", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10634000"),
+        ("58782805", "DEBUG_PROCESS|CREATE_SUSPENDED|EXTENDED_STARTUPINFO_PRESENT|CREATE_NO_WINDOW|0x50702800"),
+        ("31756420", "NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x30716000"),
+        ("47458857", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40418800"),
+        ("2948355", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00908300"),
+        ("44698319", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|EXTENDED_STARTUPINFO_PRESENT|CREATE_DEFAULT_ERROR_MODE|0x40618300"),
+        ("50811953", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|0x50811900"),
+        ("48266333", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x40226300"),
+        ("50059732", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|0x50019300"),
+        ("27395747", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20315300"),
+        ("5971444", "CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x00931000"),
+        ("53769084", "CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50729000"),
+        ("44369507", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x40329100"),
+        ("4746888", "DETACHED_PROCESS|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x00706800"),
+        ("24603969", "DEBUG_PROCESS|DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_DEFAULT_ERROR_MODE|0x20603900"),
+        ("27556313", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20516300"),
+        ("7512301", "DEBUG_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00512300"),
+        ("31671822", "DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x30631800"),
+        ("37777587", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30737100"),
+        ("45123716", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x40123300"),
+        ("62659473", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60619000"),
+        ("33501678", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30501200"),
+        ("17364608", "DETACHED_PROCESS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10324200"),
+        ("21502737", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|0x20502300"),
+        ("32352697", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30312200"),
+        ("22222866", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20222800"),
+        ("28680210", "CREATE_NEW_CONSOLE|EXTENDED_STARTUPINFO_PRESENT|CREATE_NO_WINDOW|0x20600200"),
+        ("7141140", "IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00101100"),
+        ("7557580", "HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00517100"),
+        ("41141844", "CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x40101800"),
+        ("34260290", "CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x30220200"),
+        ("38437801", "DEBUG_PROCESS|CREATE_NO_WINDOW|0x30437800"),
+        ("26619432", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20619000"),
+        ("51290349", "DEBUG_PROCESS|DETACHED_PROCESS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x50210300"),
+        ("26037865", "DEBUG_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20037800"),
+        ("25592648", "DETACHED_PROCESS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x20512200"),
+        ("52414402", "DEBUG_ONLY_THIS_PROCESS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50414000"),
+        ("23427205", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20427200"),
+        ("63483964", "CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60403900"),
+        ("29361435", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x20321000"),
+        ("23072821", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20032800"),
+        ("42223474", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40223000"),
+        ("14008698", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_DEFAULT_ERROR_MODE|0x10008200"),
+        ("54313265", "DEBUG_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_DEFAULT_ERROR_MODE|0x50313200"),
+        ("19486264", "CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x10406200"),
+        ("12990209", "DEBUG_PROCESS|DETACHED_PROCESS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10910200"),
+        ("38891144", "CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_NO_WINDOW|0x30811100"),
+        ("8368951", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x00328900"),
+        ("25372329", "DEBUG_PROCESS|DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x20332300"),
+        ("53115693", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50115200"),
+        ("44255256", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x40215200"),
+        ("601516", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|0x00601100"),
+        ("57897649", "DEBUG_PROCESS|DETACHED_PROCESS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50817200"),
+        ("41850460", "NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x40810000"),
+        ("6863609", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00823200"),
+        ("38008005", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NO_WINDOW|0x30008000"),
+        ("12930874", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10930800"),
+        ("30540735", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|0x30500300"),
+        ("19242373", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x10202300"),
+        ("38013193", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_NO_WINDOW|0x30013100"),
+        ("40589619", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|0x40509200"),
+        ("4186606", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_DEFAULT_ERROR_MODE|0x00106200"),
+        ("22883358", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20803300"),
+        ("51823547", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|0x50823100"),
+        ("18507630", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_NO_WINDOW|0x10507200"),
+        ("60463550", "CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|0x60423100"),
+        ("42530964", "CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40530900"),
+        ("9932416", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x00932000"),
+        ("44247552", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x40207100"),
+        ("49804373", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x40804300"),
+        ("31200830", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|0x30200800"),
+        ("7113152", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00113100"),
+        ("64706091", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_DEFAULT_ERROR_MODE|0x60706000"),
+        ("44699869", "DEBUG_PROCESS|DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_DEFAULT_ERROR_MODE|0x40619800"),
+        ("17372582", "DEBUG_ONLY_THIS_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10332100"),
+        ("13868750", "CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10828300"),
+        ("24933463", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_DEFAULT_ERROR_MODE|0x20933000"),
+        ("28482946", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_NO_WINDOW|0x20402900"),
+        ("46345931", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40305900"),
+        ("46499838", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40419800"),
+        ("11241295", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x10201200"),
+        ("64419962", "DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_DEFAULT_ERROR_MODE|0x60419900"),
+        ("30523864", "CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|0x30523800"),
+        ("66940136", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x60900100"),
+        ("19292600", "CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x10212200"),
+        ("66571447", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x60531000"),
+        ("531081", "DEBUG_PROCESS|HIGH_PRIORITY_CLASS|0x00531000"),
+        ("4765602", "DEBUG_ONLY_THIS_PROCESS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x00725200"),
+        ("52843174", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50803100"),
+        ("36511598", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30511100"),
+        ("65545526", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x60505100"),
+        ("20805431", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|0x20805000"),
+        ("19497233", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x10417200"),
+        ("839431", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|0x00839000"),
+        ("28953936", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x20913900"),
+        ("23812413", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20812000"),
+        ("14350978", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x10310900"),
+        ("9641755", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x00601300"),
+        ("51859795", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x50819300"),
+        ("40787453", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|0x40707000"),
+        ("44444861", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x40404800"),
+        ("40679430", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|0x40639000"),
+        ("45951431", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x40911000"),
+        ("23813884", "CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20813800"),
+        ("27224880", "HIGH_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20224800"),
+        ("32327530", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30327100"),
+        ("36994840", "IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30914800"),
+        ("64718411", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_DEFAULT_ERROR_MODE|0x60718000"),
+        ("66017622", "DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x60017200"),
+        ("65383310", "CREATE_NEW_CONSOLE|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x60303300"),
+        ("32021445", "DEBUG_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30021000"),
+        ("23623897", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20623800"),
+        ("47094079", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40014000"),
+        ("58796570", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_NO_WINDOW|0x50716100"),
+        ("52745977", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50705900"),
+        ("60005834", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|0x60005800"),
+        ("53515467", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50515000"),
+        ("20296799", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|0x20216300"),
+        ("61527840", "IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|0x60527800"),
+        ("28849274", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x20809200"),
+        ("21676065", "DEBUG_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x20636000"),
+        ("6671944", "CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00631900"),
+        ("2490455", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00410000"),
+        ("11326351", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|0x10326300"),
+        ("57970596", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50930100"),
+        ("63981510", "CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60901100"),
+        ("21495595", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x20415100"),
+        ("15162441", "DEBUG_PROCESS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x10122000"),
+        ("38473611", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x30433200"),
+        ("63993653", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60913200"),
+        ("66422773", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x60422300"),
+        ("47468041", "DEBUG_PROCESS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40428000"),
+        ("11879902", "DEBUG_ONLY_THIS_PROCESS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x10839900"),
+        ("57474381", "DEBUG_PROCESS|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50434300"),
+        ("22694566", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20614100"),
+        ("27641810", "CREATE_NEW_CONSOLE|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20601800"),
+        ("35807757", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x30807300"),
+        ("22960350", "CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20920300"),
+        ("30825983", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|HIGH_PRIORITY_CLASS|0x30825900"),
+        ("15792794", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x10712300"),
+        ("11996756", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x10916300"),
+        ("62881299", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60801200"),
+        ("22585431", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20505000"),
+        ("14374676", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x10334200"),
+        ("18029076", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_NO_WINDOW|0x10029000"),
+        ("32753728", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30713300"),
+        ("52685077", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50605000"),
+        ("57388049", "DEBUG_PROCESS|DETACHED_PROCESS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50308000"),
+        ("16540552", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10500100"),
+        ("45620392", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x40620300"),
+        ("50599989", "DEBUG_PROCESS|DETACHED_PROCESS|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|0x50519900"),
+        ("56679709", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50639300"),
+        ("20675892", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|0x20635800"),
+        ("65464529", "DEBUG_PROCESS|DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x60424100"),
+        ("20854561", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|0x20814100"),
+        ("1285194", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x00205100"),
+        ("48376473", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x40336000"),
+        ("22016720", "NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20016300"),
+        ("14922871", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_DEFAULT_ERROR_MODE|0x10922800"),
+        ("3214402", "DEBUG_ONLY_THIS_PROCESS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00214000"),
+        ("5222233", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x00222200"),
+        ("32632106", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30632100"),
+        ("26977483", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20937000"),
+        ("38151325", "DEBUG_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x30111300"),
+        ("44971342", "DEBUG_ONLY_THIS_PROCESS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x40931300"),
+        ("24960823", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x20920800"),
+        ("7948981", "DEBUG_PROCESS|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00908900"),
+        ("10368964", "CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|0x10328900"),
+        ("55471501", "DEBUG_PROCESS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x50431100"),
+        ("52981015", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50901000"),
+        ("33369161", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30329100"),
+        ("15633506", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x10633100"),
+        ("25207334", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x20207300"),
+        ("65527027", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x60527000"),
+        ("62970324", "CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60930300"),
+        ("3456197", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00416100"),
+        ("14204813", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|CREATE_DEFAULT_ERROR_MODE|0x10204800"),
+        ("62714932", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60714900"),
+        ("60258764", "CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|0x60218300"),
+        ("61039484", "CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|0x60039000"),
+        ("32467043", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30427000"),
+        ("57961587", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50921100"),
+        ("45113867", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x40113800"),
+        ("34688580", "HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_DEFAULT_ERROR_MODE|0x30608100"),
+        ("59751151", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x50711100"),
+        ("29964989", "DEBUG_PROCESS|DETACHED_PROCESS|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x20924900"),
+        ("24894246", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_DEFAULT_ERROR_MODE|0x20814200"),
+        ("34000771", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_DEFAULT_ERROR_MODE|0x30000300"),
+        ("50595758", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|0x50515300"),
+        ("42676906", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40636900"),
+        ("19014909", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x10014900"),
+        ("15529473", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x10529000"),
+        ("21849446", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x20809000"),
+        ("45705556", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x40705100"),
+        ("23500620", "NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20500200"),
+        ("61604615", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|0x60604200"),
+        ("26862149", "DEBUG_PROCESS|DETACHED_PROCESS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20822100"),
+        ("56269380", "HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50229300"),
+        ("25909838", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x20909800"),
+        ("21459257", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x20419200"),
+        ("39256332", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x30216300"),
+        ("52437832", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50437800"),
+        ("54414092", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_DEFAULT_ERROR_MODE|0x50414000"),
+        ("55975522", "DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x50935100"),
+        ("54162701", "DEBUG_PROCESS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x50122300"),
+        ("36733993", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30733900"),
+        ("58956350", "CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x50916300"),
+        ("27917228", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20917200"),
+        ("15769449", "DEBUG_PROCESS|DETACHED_PROCESS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x10729000"),
+        ("56400008", "DETACHED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50400000"),
+        ("26505718", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20505300"),
+        ("16927797", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10927300"),
+        ("12584555", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10504100"),
+        ("32147680", "HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30107200"),
+        ("51878698", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x50838200"),
+        ("54337059", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_DEFAULT_ERROR_MODE|0x50337000"),
+        ("65659425", "DEBUG_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x60619000"),
+        ("58859603", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x50819200"),
+        ("62453920", "NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60413900"),
+        ("17378165", "DEBUG_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10338100"),
+        ("53564866", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50524800"),
+        ("23188146", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20108100"),
+        ("46413084", "CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40413000"),
+        ("52326581", "DEBUG_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50326100"),
+        ("237025", "DEBUG_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|0x00237000"),
+        ("61872958", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x60832900"),
+        ("9505909", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x00505900"),
+        ("38639681", "DEBUG_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_NO_WINDOW|0x30639200"),
+        ("21644807", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x20604800"),
+        ("5488168", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x00408100"),
+        ("14816430", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_DEFAULT_ERROR_MODE|0x10816000"),
+        ("4365490", "CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x00325000"),
+        ("10905922", "DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|0x10905900"),
+        ("31294123", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x30214100"),
+        ("13985321", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10905300"),
+        ("65370259", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x60330200"),
+        ("45135159", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x40135100"),
+        ("30362445", "DEBUG_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|0x30322000"),
+        ("63428749", "DEBUG_PROCESS|DETACHED_PROCESS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60428300"),
+        ("56607593", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50607100"),
+        ("47396557", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40316100"),
+        ("52313781", "DEBUG_PROCESS|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50313300"),
+        ("33798650", "CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30718200"),
+        ("46182146", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40102100"),
+        ("12405747", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10405300"),
+        ("58639972", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_NO_WINDOW|0x50639900"),
+        ("63792188", "DETACHED_PROCESS|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60712100"),
+        ("43410250", "CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x40410200"),
+        ("10642833", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|0x10602800"),
+        ("776792", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|0x00736300"),
+        ("18154884", "CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x10114800"),
+        ("13546378", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10506300"),
+        ("49065233", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x40025200"),
+        ("38671733", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x30631300"),
+        ("45486989", "DEBUG_PROCESS|DETACHED_PROCESS|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x40406900"),
+        ("2151638", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00111200"),
+        ("49582504", "CREATE_SUSPENDED|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x40502100"),
+        ("455751", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|0x00415300"),
+        ("7462999", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00422900"),
+        ("10033813", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|0x10033800"),
+        ("35919183", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|HIGH_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x30919100"),
+        ("36758343", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30718300"),
+        ("38188770", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_NO_WINDOW|0x30108300"),
+        ("26294677", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x20214200"),
+        ("41361549", "DEBUG_PROCESS|DETACHED_PROCESS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x40321100"),
+        ("9005189", "DEBUG_PROCESS|DETACHED_PROCESS|HIGH_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x00005100"),
+        ("34908452", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_DEFAULT_ERROR_MODE|0x30908000"),
+        ("41746509", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x40706100"),
+        ("66842508", "DETACHED_PROCESS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x60802100"),
+        ("65011159", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x60011100"),
+        ("60305849", "DEBUG_PROCESS|DETACHED_PROCESS|IDLE_PRIORITY_CLASS|0x60305800"),
+        ("3946665", "DEBUG_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00906200"),
+        ("12597230", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10517200"),
+        ("4053202", "DEBUG_ONLY_THIS_PROCESS|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x00013200"),
+        ("30505926", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|0x30505900"),
+        ("1258007", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x00218000"),
+        ("34703914", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_DEFAULT_ERROR_MODE|0x30703900"),
+        ("41106202", "DEBUG_ONLY_THIS_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x40106200"),
+        ("52921961", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50921900"),
+        ("53128914", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50128900"),
+        ("8786117", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|EXTENDED_STARTUPINFO_PRESENT|CREATE_NO_WINDOW|0x00706100"),
+        ("5151134", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x00111100"),
+        ("13637289", "DEBUG_PROCESS|DETACHED_PROCESS|HIGH_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10637200"),
+        ("5931326", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x00931300"),
+        ("5863798", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x00823300"),
+        ("13965709", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10925300"),
+        ("3733776", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00733300"),
+        ("34398275", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_DEFAULT_ERROR_MODE|0x30318200"),
+        ("47916462", "DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x40916000"),
+        ("25572334", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x20532300"),
+        ("65727810", "CREATE_NEW_CONSOLE|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x60727800"),
+        ("10335255", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|0x10335200"),
+        ("51944423", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x50904000"),
+        ("34147074", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x30107000"),
+        ("32718706", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_UNICODE_ENVIRONMENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30718300"),
+        ("34061525", "DEBUG_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x30021100"),
+        ("30721443", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|0x30721000"),
+        ("57095852", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50015800"),
+        ("18169163", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x10129100"),
+        ("23566240", "IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20526200"),
+        ("16837097", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x10837000"),
+        ("40177570", "CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|0x40137100"),
+        ("50332468", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|0x50332000"),
+        ("15940919", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x10900900"),
+        ("29360155", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x20320100"),
+        ("19358469", "DEBUG_PROCESS|DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x10318000"),
+        ("45898059", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x40818000"),
+        ("59226312", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x50226300"),
+        ("23220865", "DEBUG_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20220800"),
+        ("55745852", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x50705800"),
+        ("20537213", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|0x20537200"),
+        ("21485051", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|0x20405000"),
+        ("29975686", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x20935200"),
+        ("7214914", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00214900"),
+        ("35254471", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x30214000"),
+        ("20260787", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|0x20220300"),
+        ("59185307", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x50105300"),
+        ("62592166", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x60512100"),
+        ("14237158", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_DEFAULT_ERROR_MODE|0x10237100"),
+        ("35597756", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x30517300"),
+        ("64874786", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x60834300"),
+        ("44179393", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x40139300"),
+        ("57993996", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50913900"),
+        ("37072819", "DEBUG_PROCESS|DETACHED_PROCESS|CREATE_NEW_CONSOLE|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30032800"),
+        ("51448495", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x50408000"),
+        ("58071628", "DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x50031200"),
+        ("12771627", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10731200"),
+        ("20418421", "DEBUG_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|0x20418000"),
+        ("41516114", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_BREAKAWAY_FROM_JOB|0x40516100"),
+        ("35730922", "DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_DEFAULT_ERROR_MODE|0x30730900"),
+        ("52628945", "DEBUG_PROCESS|CREATE_SUSPENDED|IDLE_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x50628900"),
+        ("13540029", "DEBUG_PROCESS|DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10500000"),
+        ("37827032", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x30827000"),
+        ("50090073", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|0x50010000"),
+        ("48198150", "CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|CREATE_NO_WINDOW|0x40118100"),
+        ("3664535", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00624100"),
+        ("56516972", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x50516900"),
+        ("13333722", "DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10333300"),
+        ("3740806", "DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x00700800"),
+        ("54269812", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x50229800"),
+        ("39057852", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|CREATE_NO_WINDOW|0x30017800"),
+        ("24459863", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_DEFAULT_ERROR_MODE|0x20419800"),
+        ("51047892", "DEBUG_ONLY_THIS_PROCESS|CREATE_NEW_CONSOLE|HIGH_PRIORITY_CLASS|CREATE_PROTECTED_PROCESS|CREATE_BREAKAWAY_FROM_JOB|0x50007800"),
+        ("49575", "DEBUG_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|0x00009100"),
+        ("48471111", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x40431100"),
+        ("18674569", "DEBUG_PROCESS|DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_NO_WINDOW|0x10634100"),
+        ("6848638", "DETACHED_PROCESS|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|CREATE_UNICODE_ENVIRONMENT|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|CREATE_DEFAULT_ERROR_MODE|0x00808200"),
+        ("12001329", "DEBUG_PROCESS|DETACHED_PROCESS|NORMAL_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x10001300"),
+        ("4426110", "CREATE_NEW_CONSOLE|CREATE_DEFAULT_ERROR_MODE|0x00426100"),
+        ("22415817", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_SUSPENDED|CREATE_NEW_CONSOLE|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20415800"),
+        ("32055903", "DEBUG_PROCESS|DEBUG_ONLY_THIS_PROCESS|CREATE_PROTECTED_PROCESS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x30015900"),
+        ("22009374", "CREATE_SUSPENDED|CREATE_NEW_CONSOLE|NORMAL_PRIORITY_CLASS|IDLE_PRIORITY_CLASS|CREATE_PRESERVE_CODE_AUTHZ_LEVEL|0x20009300"),
+        ("60580051", "DEBUG_PROCESS|CREATE_NEW_CONSOLE|IDLE_PRIORITY_CLASS|EXTENDED_STARTUPINFO_PRESENT|0x60500000"),
+    ]
+
+
+def api_name_move_arg_name_flags_data():
+    return [
+        ("1", "MOVEFILE_REPLACE_EXISTING"),
+        ("2", "MOVEFILE_COPY_ALLOWED"),
+        ("3", "MOVEFILE_REPLACE_EXISTING|MOVEFILE_COPY_ALLOWED"),
+        ("4", "MOVEFILE_DELAY_UNTIL_REBOOT"),
+        ("5", "MOVEFILE_REPLACE_EXISTING|MOVEFILE_DELAY_UNTIL_REBOOT"),
+        ("6", "MOVEFILE_COPY_ALLOWED|MOVEFILE_DELAY_UNTIL_REBOOT"),
+        ("7", "MOVEFILE_REPLACE_EXISTING|MOVEFILE_COPY_ALLOWED|MOVEFILE_DELAY_UNTIL_REBOOT"),
+    ]
+
+
+def arg_name_fileattributes_data():
+    return [
+        ("1", "FILE_ATTRIBUTE_READONLY"),
+        ("2", "FILE_ATTRIBUTE_HIDDEN"),
+        ("3", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN"),
+        ("4", "FILE_ATTRIBUTE_SYSTEM"),
+        ("5", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM"),
+        ("6", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM"),
+        ("7", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM"),
+        ("8", "0x00000008"),
+        ("9", "FILE_ATTRIBUTE_READONLY|0x00000008"),
+        ("10", "FILE_ATTRIBUTE_DIRECTORY"),
+        ("11", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY"),
+        ("12", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY"),
+        ("13", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY"),
+        ("14", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY"),
+        ("15", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY"),
+        ("16", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY"),
+        ("17", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY"),
+        ("18", "FILE_ATTRIBUTE_DIRECTORY|0x00000008"),
+        ("19", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|0x00000008"),
+        ("20", "FILE_ATTRIBUTE_ARCHIVE"),
+        ("21", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE"),
+        ("22", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE"),
+        ("23", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE"),
+        ("24", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE"),
+        ("25", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE"),
+        ("26", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE"),
+        ("27", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE"),
+        ("28", "FILE_ATTRIBUTE_ARCHIVE|0x00000008"),
+        ("29", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|0x00000008"),
+        ("30", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE"),
+        ("31", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE"),
+        ("32", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE"),
+        ("33", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE"),
+        ("34", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE"),
+        ("35", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE"),
+        ("36", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE"),
+        ("37", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE"),
+        ("38", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|0x00000008"),
+        ("39", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|0x00000008"),
+        ("40", "FILE_ATTRIBUTE_DEVICE"),
+        ("41", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE"),
+        ("42", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE"),
+        ("43", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE"),
+        ("44", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE"),
+        ("45", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE"),
+        ("46", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE"),
+        ("47", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE"),
+        ("48", "FILE_ATTRIBUTE_DEVICE|0x00000008"),
+        ("49", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|0x00000008"),
+        ("50", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE"),
+        ("51", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE"),
+        ("52", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE"),
+        ("53", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE"),
+        ("54", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE"),
+        ("55", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE"),
+        ("56", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE"),
+        ("57", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE"),
+        ("58", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|0x00000008"),
+        ("59", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|0x00000008"),
+        ("60", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE"),
+        ("61", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE"),
+        ("62", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE"),
+        ("63", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE"),
+        ("64", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE"),
+        ("65", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE"),
+        ("66", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE"),
+        ("67", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE"),
+        ("68", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00000008"),
+        ("69", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00000008"),
+        ("70", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE"),
+        ("71", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE"),
+        ("72", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE"),
+        ("73", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE"),
+        ("74", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE"),
+        ("75", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE"),
+        ("76", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE"),
+        ("77", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE"),
+        ("78", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00000008"),
+        ("79", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00000008"),
+        ("80", "FILE_ATTRIBUTE_NORMAL"),
+        ("81", "FILE_ATTRIBUTE_READONLY|0x00000080"),
+        ("82", "FILE_ATTRIBUTE_HIDDEN|0x00000080"),
+        ("83", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|0x00000080"),
+        ("84", "FILE_ATTRIBUTE_SYSTEM|0x00000080"),
+        ("85", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|0x00000080"),
+        ("86", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|0x00000080"),
+        ("87", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|0x00000080"),
+        ("88", "0x00000088"),
+        ("89", "FILE_ATTRIBUTE_READONLY|0x00000088"),
+        ("90", "FILE_ATTRIBUTE_DIRECTORY|0x00000080"),
+        ("91", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|0x00000080"),
+        ("92", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|0x00000080"),
+        ("93", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|0x00000080"),
+        ("94", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|0x00000080"),
+        ("95", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|0x00000080"),
+        ("96", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|0x00000080"),
+        ("97", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|0x00000080"),
+        ("98", "FILE_ATTRIBUTE_DIRECTORY|0x00000088"),
+        ("99", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|0x00000088"),
+        ("100", "FILE_ATTRIBUTE_TEMPORARY"),
+        ("101", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY"),
+        ("102", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY"),
+        ("103", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY"),
+        ("104", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY"),
+        ("105", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY"),
+        ("106", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY"),
+        ("107", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY"),
+        ("108", "FILE_ATTRIBUTE_TEMPORARY|0x00000008"),
+        ("109", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|0x00000008"),
+        ("110", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY"),
+        ("111", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY"),
+        ("112", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY"),
+        ("113", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY"),
+        ("114", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY"),
+        ("115", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY"),
+        ("116", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY"),
+        ("117", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY"),
+        ("118", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00000008"),
+        ("119", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00000008"),
+        ("120", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("121", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("122", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("123", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("124", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("125", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("126", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("127", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("128", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00000008"),
+        ("129", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00000008"),
+        ("130", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("131", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("132", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("133", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("134", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("135", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("136", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("137", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("138", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00000008"),
+        ("139", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00000008"),
+        ("140", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("141", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("142", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("143", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("144", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("145", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("146", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("147", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("148", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00000008"),
+        ("149", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00000008"),
+        ("150", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("151", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("152", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("153", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("154", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("155", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("156", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("157", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("158", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00000008"),
+        ("159", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00000008"),
+        ("160", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("161", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("162", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("163", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("164", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("165", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("166", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("167", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("168", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00000008"),
+        ("169", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00000008"),
+        ("170", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("171", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("172", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("173", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("174", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("175", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("176", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("177", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY"),
+        ("178", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00000008"),
+        ("179", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00000008"),
+        ("180", "FILE_ATTRIBUTE_TEMPORARY|0x00000080"),
+        ("181", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|0x00000080"),
+        ("182", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|0x00000080"),
+        ("183", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|0x00000080"),
+        ("184", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|0x00000080"),
+        ("185", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|0x00000080"),
+        ("186", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|0x00000080"),
+        ("187", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|0x00000080"),
+        ("188", "FILE_ATTRIBUTE_TEMPORARY|0x00000088"),
+        ("189", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|0x00000088"),
+        ("190", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00000080"),
+        ("191", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00000080"),
+        ("192", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00000080"),
+        ("193", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00000080"),
+        ("194", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00000080"),
+        ("195", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00000080"),
+        ("196", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00000080"),
+        ("197", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00000080"),
+        ("198", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00000088"),
+        ("199", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00000088"),
+        ("200", "FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("201", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("202", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("203", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("204", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("205", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("206", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("207", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("208", "FILE_ATTRIBUTE_SPARSE_FILE|0x00000008"),
+        ("209", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000008"),
+        ("210", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("211", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("212", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("213", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("214", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("215", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("216", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("217", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("218", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000008"),
+        ("219", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000008"),
+        ("220", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("221", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("222", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("223", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("224", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("225", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("226", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("227", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("228", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00000008"),
+        ("229", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00000008"),
+        ("230", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("231", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("232", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("233", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("234", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("235", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("236", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("237", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("238", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00000008"),
+        ("239", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00000008"),
+        ("240", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("241", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("242", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("243", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("244", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("245", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("246", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("247", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("248", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00000008"),
+        ("249", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00000008"),
+        ("250", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("251", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("252", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("253", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("254", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("255", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("256", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("257", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("258", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00000008"),
+        ("259", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00000008"),
+        ("260", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("261", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("262", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("263", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("264", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("265", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("266", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("267", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("268", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00000008"),
+        ("269", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00000008"),
+        ("270", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("271", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("272", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("273", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("274", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("275", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("276", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("277", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("278", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00000008"),
+        ("279", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00000008"),
+        ("280", "FILE_ATTRIBUTE_SPARSE_FILE|0x00000080"),
+        ("281", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000080"),
+        ("282", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|0x00000080"),
+        ("283", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|0x00000080"),
+        ("284", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|0x00000080"),
+        ("285", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|0x00000080"),
+        ("286", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|0x00000080"),
+        ("287", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|0x00000080"),
+        ("288", "FILE_ATTRIBUTE_SPARSE_FILE|0x00000088"),
+        ("289", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000088"),
+        ("290", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000080"),
+        ("291", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000080"),
+        ("292", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000080"),
+        ("293", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000080"),
+        ("294", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000080"),
+        ("295", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000080"),
+        ("296", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000080"),
+        ("297", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000080"),
+        ("298", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000088"),
+        ("299", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000088"),
+        ("300", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("301", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("302", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("303", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("304", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("305", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("306", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("307", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("308", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000008"),
+        ("309", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000008"),
+        ("310", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("311", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("312", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("313", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("314", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("315", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("316", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("317", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("318", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000008"),
+        ("319", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000008"),
+        ("320", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("321", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("322", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("323", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("324", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("325", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("326", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("327", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("328", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000008"),
+        ("329", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000008"),
+        ("330", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("331", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("332", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("333", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("334", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("335", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("336", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("337", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("338", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000008"),
+        ("339", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000008"),
+        ("340", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("341", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("342", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("343", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("344", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("345", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("346", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("347", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("348", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000008"),
+        ("349", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000008"),
+        ("350", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("351", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("352", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("353", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("354", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("355", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("356", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("357", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("358", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000008"),
+        ("359", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000008"),
+        ("360", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("361", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("362", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("363", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("364", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("365", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("366", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("367", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("368", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000008"),
+        ("369", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000008"),
+        ("370", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("371", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("372", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("373", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("374", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("375", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("376", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("377", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE"),
+        ("378", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000008"),
+        ("379", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000008"),
+        ("380", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000080"),
+        ("381", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000080"),
+        ("382", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000080"),
+        ("383", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000080"),
+        ("384", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000080"),
+        ("385", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000080"),
+        ("386", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000080"),
+        ("387", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000080"),
+        ("388", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000088"),
+        ("389", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000088"),
+        ("390", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000080"),
+        ("391", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000080"),
+        ("392", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000080"),
+        ("393", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000080"),
+        ("394", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000080"),
+        ("395", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000080"),
+        ("396", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000080"),
+        ("397", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000080"),
+        ("398", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000088"),
+        ("399", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00000088"),
+        ("400", "FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("401", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("402", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("403", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("404", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("405", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("406", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("407", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("408", "FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("409", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("410", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("411", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("412", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("413", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("414", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("415", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("416", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("417", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("418", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("419", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("420", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("421", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("422", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("423", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("424", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("425", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("426", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("427", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("428", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("429", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("430", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("431", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("432", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("433", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("434", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("435", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("436", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("437", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("438", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("439", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("440", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("441", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("442", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("443", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("444", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("445", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("446", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("447", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("448", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("449", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("450", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("451", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("452", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("453", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("454", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("455", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("456", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("457", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("458", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("459", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("460", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("461", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("462", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("463", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("464", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("465", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("466", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("467", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("468", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("469", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("470", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("471", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("472", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("473", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("474", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("475", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("476", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("477", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("478", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("479", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("480", "FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("481", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("482", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("483", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("484", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("485", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("486", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("487", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("488", "FILE_ATTRIBUTE_REPARSE_POINT|0x00000088"),
+        ("489", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000088"),
+        ("490", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("491", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("492", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("493", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("494", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("495", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("496", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("497", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("498", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000088"),
+        ("499", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000088"),
+        ("500", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("501", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("502", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("503", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("504", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("505", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("506", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("507", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("508", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("509", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("510", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("511", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("512", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("513", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("514", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("515", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("516", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("517", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("518", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("519", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("520", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("521", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("522", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("523", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("524", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("525", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("526", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("527", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("528", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("529", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("530", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("531", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("532", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("533", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("534", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("535", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("536", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("537", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("538", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("539", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("540", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("541", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("542", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("543", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("544", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("545", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("546", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("547", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("548", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("549", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("550", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("551", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("552", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("553", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("554", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("555", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("556", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("557", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("558", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("559", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("560", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("561", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("562", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("563", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("564", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("565", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("566", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("567", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("568", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("569", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("570", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("571", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("572", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("573", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("574", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("575", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("576", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("577", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("578", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("579", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("580", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("581", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("582", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("583", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("584", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("585", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("586", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("587", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("588", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000088"),
+        ("589", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000088"),
+        ("590", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("591", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("592", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("593", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("594", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("595", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("596", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("597", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("598", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000088"),
+        ("599", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00000088"),
+        ("600", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("601", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("602", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("603", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("604", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("605", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("606", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("607", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("608", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("609", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("610", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("611", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("612", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("613", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("614", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("615", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("616", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("617", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("618", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("619", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("620", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("621", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("622", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("623", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("624", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("625", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("626", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("627", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("628", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("629", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("630", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("631", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("632", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("633", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("634", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("635", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("636", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("637", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("638", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("639", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("640", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("641", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("642", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("643", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("644", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("645", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("646", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("647", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("648", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("649", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("650", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("651", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("652", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("653", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("654", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("655", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("656", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("657", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("658", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("659", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("660", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("661", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("662", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("663", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("664", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("665", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("666", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("667", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("668", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("669", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("670", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("671", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("672", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("673", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("674", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("675", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("676", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("677", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("678", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("679", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("680", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("681", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("682", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("683", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("684", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("685", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("686", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("687", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("688", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000088"),
+        ("689", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000088"),
+        ("690", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("691", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("692", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("693", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("694", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("695", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("696", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("697", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("698", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000088"),
+        ("699", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000088"),
+        ("700", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("701", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("702", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("703", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("704", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("705", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("706", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("707", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("708", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("709", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("710", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("711", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("712", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("713", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("714", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("715", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("716", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("717", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("718", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("719", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("720", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("721", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("722", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("723", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("724", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("725", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("726", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("727", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("728", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("729", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("730", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("731", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("732", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("733", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("734", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("735", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("736", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("737", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("738", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("739", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("740", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("741", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("742", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("743", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("744", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("745", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("746", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("747", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("748", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("749", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("750", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("751", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("752", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("753", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("754", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("755", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("756", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("757", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("758", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("759", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("760", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("761", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("762", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("763", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("764", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("765", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("766", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("767", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("768", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("769", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("770", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("771", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("772", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("773", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("774", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("775", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("776", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("777", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT"),
+        ("778", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("779", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000008"),
+        ("780", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("781", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("782", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("783", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("784", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("785", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("786", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("787", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("788", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000088"),
+        ("789", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000088"),
+        ("790", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("791", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("792", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("793", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("794", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("795", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("796", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("797", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000080"),
+        ("798", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000088"),
+        ("799", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00000088"),
+        ("800", "FILE_ATTRIBUTE_COMPRESSED"),
+        ("801", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("802", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED"),
+        ("803", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED"),
+        ("804", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED"),
+        ("805", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED"),
+        ("806", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED"),
+        ("807", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED"),
+        ("808", "FILE_ATTRIBUTE_COMPRESSED|0x00000008"),
+        ("809", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|0x00000008"),
+        ("810", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("811", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("812", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("813", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("814", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("815", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("816", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("817", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("818", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00000008"),
+        ("819", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00000008"),
+        ("820", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("821", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("822", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("823", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("824", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("825", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("826", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("827", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("828", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00000008"),
+        ("829", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00000008"),
+        ("830", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("831", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("832", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("833", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("834", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("835", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("836", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("837", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("838", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00000008"),
+        ("839", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00000008"),
+        ("840", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("841", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("842", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("843", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("844", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("845", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("846", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("847", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("848", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00000008"),
+        ("849", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00000008"),
+        ("850", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("851", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("852", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("853", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("854", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("855", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("856", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("857", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("858", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00000008"),
+        ("859", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00000008"),
+        ("860", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("861", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("862", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("863", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("864", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("865", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("866", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("867", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("868", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00000008"),
+        ("869", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00000008"),
+        ("870", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("871", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("872", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("873", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("874", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("875", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("876", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("877", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED"),
+        ("878", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00000008"),
+        ("879", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00000008"),
+        ("880", "FILE_ATTRIBUTE_COMPRESSED|0x00000080"),
+        ("881", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|0x00000080"),
+        ("882", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|0x00000080"),
+        ("883", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|0x00000080"),
+        ("884", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|0x00000080"),
+        ("885", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|0x00000080"),
+        ("886", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|0x00000080"),
+        ("887", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|0x00000080"),
+        ("888", "FILE_ATTRIBUTE_COMPRESSED|0x00000088"),
+        ("889", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|0x00000088"),
+        ("890", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00000080"),
+        ("891", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00000080"),
+        ("892", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00000080"),
+        ("893", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00000080"),
+        ("894", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00000080"),
+        ("895", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00000080"),
+        ("896", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00000080"),
+        ("897", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00000080"),
+        ("898", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00000088"),
+        ("899", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00000088"),
+        ("900", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("901", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("902", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("903", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("904", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("905", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("906", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("907", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("908", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00000008"),
+        ("909", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00000008"),
+        ("910", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("911", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("912", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("913", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("914", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("915", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("916", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("917", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("918", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00000008"),
+        ("919", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00000008"),
+        ("920", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("921", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("922", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("923", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("924", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("925", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("926", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("927", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("928", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00000008"),
+        ("929", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00000008"),
+        ("930", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("931", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("932", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("933", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("934", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("935", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("936", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("937", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("938", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00000008"),
+        ("939", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00000008"),
+        ("940", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("941", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("942", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("943", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("944", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("945", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("946", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("947", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("948", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00000008"),
+        ("949", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00000008"),
+        ("950", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("951", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("952", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("953", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("954", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("955", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("956", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("957", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("958", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00000008"),
+        ("959", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00000008"),
+        ("960", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("961", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("962", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("963", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("964", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("965", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("966", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("967", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("968", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00000008"),
+        ("969", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00000008"),
+        ("970", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("971", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("972", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("973", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("974", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("975", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("976", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("977", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED"),
+        ("978", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00000008"),
+        ("979", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00000008"),
+        ("980", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00000080"),
+        ("981", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00000080"),
+        ("982", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00000080"),
+        ("983", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00000080"),
+        ("984", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00000080"),
+        ("985", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00000080"),
+        ("986", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00000080"),
+        ("987", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00000080"),
+        ("988", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00000088"),
+        ("989", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00000088"),
+        ("990", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00000080"),
+        ("991", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00000080"),
+        ("992", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00000080"),
+        ("993", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00000080"),
+        ("994", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00000080"),
+        ("995", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00000080"),
+        ("996", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00000080"),
+        ("997", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00000080"),
+        ("998", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00000088"),
+        ("999", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00000088"),
+        ("1000", "FILE_ATTRIBUTE_OFFLINE"),
+        ("1001", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1002", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE"),
+        ("1003", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE"),
+        ("1004", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE"),
+        ("1005", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE"),
+        ("1006", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE"),
+        ("1007", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE"),
+        ("1008", "FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1009", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1010", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1011", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1012", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1013", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1014", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1015", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1016", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1017", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1018", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1019", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1020", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1021", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1022", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1023", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1024", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1025", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1026", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1027", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1028", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1029", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1030", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1031", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1032", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1033", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1034", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1035", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1036", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1037", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1038", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1039", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1040", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1041", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1042", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1043", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1044", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1045", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1046", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1047", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1048", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1049", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1050", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1051", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1052", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1053", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1054", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1055", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1056", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1057", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1058", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1059", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1060", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1061", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1062", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1063", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1064", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1065", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1066", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1067", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1068", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1069", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1070", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1071", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1072", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1073", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1074", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1075", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1076", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1077", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1078", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1079", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1080", "FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1081", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1082", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1083", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1084", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1085", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1086", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1087", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1088", "FILE_ATTRIBUTE_OFFLINE|0x00000088"),
+        ("1089", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|0x00000088"),
+        ("1090", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1091", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1092", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1093", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1094", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1095", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1096", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1097", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1098", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00000088"),
+        ("1099", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00000088"),
+        ("1100", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1101", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1102", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1103", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1104", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1105", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1106", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1107", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1108", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1109", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1110", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1111", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1112", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1113", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1114", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1115", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1116", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1117", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1118", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1119", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1120", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1121", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1122", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1123", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1124", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1125", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1126", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1127", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1128", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1129", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1130", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1131", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1132", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1133", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1134", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1135", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1136", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1137", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1138", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1139", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1140", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1141", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1142", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1143", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1144", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1145", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1146", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1147", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1148", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1149", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1150", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1151", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1152", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1153", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1154", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1155", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1156", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1157", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1158", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1159", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1160", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1161", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1162", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1163", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1164", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1165", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1166", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1167", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1168", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1169", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1170", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1171", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1172", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1173", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1174", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1175", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1176", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1177", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE"),
+        ("1178", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1179", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1180", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1181", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1182", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1183", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1184", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1185", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1186", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1187", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1188", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00000088"),
+        ("1189", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00000088"),
+        ("1190", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1191", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1192", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1193", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1194", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1195", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1196", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1197", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1198", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00000088"),
+        ("1199", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00000088"),
+        ("1200", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1201", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1202", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1203", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1204", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1205", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1206", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1207", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1208", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1209", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1210", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1211", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1212", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1213", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1214", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1215", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1216", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1217", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1218", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1219", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1220", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1221", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1222", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1223", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1224", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1225", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1226", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1227", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1228", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1229", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1230", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1231", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1232", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1233", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1234", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1235", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1236", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1237", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1238", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1239", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1240", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1241", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1242", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1243", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1244", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1245", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1246", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1247", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1248", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1249", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1250", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1251", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1252", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1253", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1254", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1255", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1256", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1257", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1258", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1259", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1260", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1261", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1262", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1263", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1264", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1265", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1266", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1267", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1268", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1269", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1270", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1271", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1272", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1273", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1274", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1275", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1276", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1277", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1278", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1279", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1280", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1281", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1282", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1283", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1284", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1285", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1286", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1287", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1288", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000088"),
+        ("1289", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000088"),
+        ("1290", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1291", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1292", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1293", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1294", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1295", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1296", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1297", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1298", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000088"),
+        ("1299", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000088"),
+        ("1300", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1301", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1302", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1303", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1304", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1305", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1306", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1307", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1308", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1309", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1310", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1311", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1312", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1313", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1314", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1315", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1316", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1317", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1318", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1319", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1320", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1321", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1322", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1323", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1324", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1325", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1326", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1327", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1328", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1329", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1330", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1331", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1332", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1333", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1334", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1335", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1336", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1337", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1338", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1339", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1340", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1341", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1342", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1343", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1344", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1345", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1346", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1347", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1348", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1349", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1350", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1351", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1352", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1353", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1354", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1355", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1356", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1357", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1358", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1359", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1360", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1361", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1362", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1363", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1364", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1365", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1366", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1367", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1368", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1369", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1370", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1371", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1372", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1373", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1374", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1375", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1376", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1377", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE"),
+        ("1378", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1379", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1380", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1381", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1382", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1383", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1384", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1385", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1386", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1387", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1388", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000088"),
+        ("1389", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000088"),
+        ("1390", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1391", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1392", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1393", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1394", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1395", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1396", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1397", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1398", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000088"),
+        ("1399", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00000088"),
+        ("1400", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1401", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1402", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1403", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1404", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1405", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1406", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1407", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1408", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1409", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1410", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1411", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1412", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1413", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1414", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1415", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1416", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1417", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1418", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1419", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1420", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1421", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1422", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1423", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1424", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1425", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1426", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1427", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1428", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1429", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1430", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1431", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1432", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1433", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1434", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1435", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1436", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1437", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1438", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1439", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1440", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1441", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1442", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1443", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1444", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1445", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1446", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1447", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1448", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1449", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1450", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1451", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1452", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1453", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1454", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1455", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1456", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1457", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1458", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1459", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1460", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1461", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1462", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1463", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1464", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1465", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1466", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1467", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1468", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1469", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1470", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1471", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1472", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1473", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1474", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1475", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1476", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1477", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1478", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1479", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1480", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1481", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1482", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1483", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1484", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1485", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1486", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1487", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1488", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000088"),
+        ("1489", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000088"),
+        ("1490", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1491", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1492", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1493", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1494", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1495", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1496", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1497", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1498", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000088"),
+        ("1499", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000088"),
+        ("1500", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1501", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1502", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1503", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1504", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1505", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1506", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1507", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1508", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1509", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1510", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1511", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1512", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1513", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1514", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1515", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1516", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1517", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1518", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1519", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1520", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1521", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1522", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1523", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1524", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1525", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1526", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1527", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1528", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1529", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1530", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1531", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1532", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1533", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1534", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1535", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1536", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1537", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1538", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1539", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1540", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1541", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1542", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1543", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1544", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1545", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1546", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1547", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1548", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1549", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1550", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1551", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1552", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1553", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1554", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1555", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1556", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1557", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1558", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1559", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1560", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1561", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1562", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1563", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1564", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1565", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1566", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1567", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1568", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1569", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1570", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1571", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1572", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1573", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1574", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1575", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1576", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1577", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1578", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1579", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1580", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1581", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1582", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1583", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1584", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1585", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1586", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1587", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1588", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000088"),
+        ("1589", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000088"),
+        ("1590", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1591", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1592", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1593", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1594", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1595", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1596", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1597", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1598", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000088"),
+        ("1599", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000088"),
+        ("1600", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1601", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1602", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1603", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1604", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1605", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1606", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1607", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1608", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1609", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1610", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1611", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1612", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1613", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1614", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1615", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1616", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1617", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1618", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1619", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1620", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1621", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1622", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1623", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1624", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1625", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1626", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1627", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1628", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1629", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1630", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1631", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1632", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1633", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1634", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1635", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1636", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1637", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1638", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1639", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1640", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1641", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1642", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1643", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1644", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1645", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1646", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1647", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1648", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1649", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1650", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1651", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1652", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1653", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1654", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1655", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1656", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1657", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1658", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1659", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1660", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1661", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1662", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1663", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1664", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1665", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1666", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1667", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1668", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1669", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1670", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1671", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1672", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1673", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1674", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1675", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1676", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1677", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1678", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1679", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1680", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1681", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1682", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1683", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1684", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1685", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1686", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1687", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1688", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000088"),
+        ("1689", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000088"),
+        ("1690", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1691", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1692", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1693", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1694", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1695", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1696", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1697", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1698", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000088"),
+        ("1699", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000088"),
+        ("1700", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1701", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1702", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1703", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1704", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1705", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1706", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1707", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1708", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1709", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1710", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1711", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1712", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1713", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1714", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1715", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1716", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1717", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1718", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1719", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1720", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1721", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1722", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1723", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1724", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1725", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1726", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1727", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1728", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1729", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1730", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1731", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1732", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1733", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1734", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1735", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1736", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1737", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1738", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1739", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1740", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1741", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1742", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1743", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1744", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1745", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1746", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1747", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1748", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1749", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1750", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1751", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1752", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1753", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1754", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1755", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1756", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1757", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1758", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1759", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1760", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1761", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1762", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1763", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1764", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1765", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1766", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1767", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1768", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1769", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1770", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1771", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1772", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1773", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1774", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1775", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1776", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1777", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE"),
+        ("1778", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1779", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1780", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1781", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1782", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1783", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1784", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1785", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1786", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1787", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1788", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000088"),
+        ("1789", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000088"),
+        ("1790", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1791", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1792", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1793", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1794", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1795", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1796", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1797", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1798", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000088"),
+        ("1799", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00000088"),
+        ("1800", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1801", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1802", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1803", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1804", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1805", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1806", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1807", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1808", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1809", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1810", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1811", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1812", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1813", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1814", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1815", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1816", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1817", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1818", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1819", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1820", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1821", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1822", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1823", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1824", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1825", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1826", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1827", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1828", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1829", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1830", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1831", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1832", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1833", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1834", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1835", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1836", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1837", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1838", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1839", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1840", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1841", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1842", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1843", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1844", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1845", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1846", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1847", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1848", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1849", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1850", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1851", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1852", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1853", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1854", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1855", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1856", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1857", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1858", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1859", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1860", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1861", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1862", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1863", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1864", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1865", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1866", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1867", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1868", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1869", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1870", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1871", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1872", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1873", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1874", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1875", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1876", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1877", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1878", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1879", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1880", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1881", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1882", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1883", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1884", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1885", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1886", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1887", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1888", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000088"),
+        ("1889", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000088"),
+        ("1890", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1891", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1892", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1893", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1894", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1895", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1896", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1897", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1898", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000088"),
+        ("1899", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000088"),
+        ("1900", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1901", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1902", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1903", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1904", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1905", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1906", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1907", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1908", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1909", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1910", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1911", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1912", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1913", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1914", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1915", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1916", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1917", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1918", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1919", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1920", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1921", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1922", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1923", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1924", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1925", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1926", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1927", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1928", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1929", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1930", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1931", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1932", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1933", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1934", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1935", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1936", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1937", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1938", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1939", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1940", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1941", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1942", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1943", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1944", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1945", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1946", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1947", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1948", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1949", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1950", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1951", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1952", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1953", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1954", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1955", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1956", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1957", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1958", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1959", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1960", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1961", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1962", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1963", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1964", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1965", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1966", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1967", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1968", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1969", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1970", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1971", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1972", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1973", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1974", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1975", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1976", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1977", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE"),
+        ("1978", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1979", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000008"),
+        ("1980", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1981", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1982", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1983", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1984", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1985", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1986", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1987", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1988", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000088"),
+        ("1989", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000088"),
+        ("1990", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1991", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1992", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1993", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1994", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1995", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1996", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1997", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000080"),
+        ("1998", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000088"),
+        ("1999", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00000088"),
+        ("2000", "FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2001", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2002", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2003", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2004", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2005", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2006", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2007", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2008", "FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2009", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2010", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2011", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2012", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2013", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2014", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2015", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2016", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2017", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2018", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2019", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2020", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2021", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2022", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2023", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2024", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2025", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2026", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2027", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2028", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2029", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2030", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2031", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2032", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2033", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2034", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2035", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2036", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2037", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2038", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2039", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2040", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2041", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2042", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2043", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2044", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2045", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2046", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2047", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2048", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2049", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2050", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2051", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2052", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2053", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2054", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2055", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2056", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2057", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2058", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2059", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2060", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2061", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2062", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2063", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2064", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2065", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2066", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2067", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2068", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2069", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2070", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2071", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2072", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2073", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2074", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2075", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2076", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2077", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2078", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2079", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2080", "FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2081", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2082", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2083", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2084", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2085", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2086", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2087", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2088", "FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("2089", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("2090", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2091", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2092", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2093", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2094", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2095", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2096", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2097", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2098", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("2099", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("2100", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2101", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2102", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2103", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2104", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2105", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2106", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2107", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2108", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2109", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2110", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2111", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2112", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2113", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2114", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2115", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2116", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2117", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2118", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2119", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2120", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2121", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2122", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2123", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2124", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2125", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2126", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2127", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2128", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2129", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2130", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2131", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2132", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2133", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2134", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2135", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2136", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2137", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2138", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2139", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2140", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2141", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2142", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2143", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2144", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2145", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2146", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2147", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2148", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2149", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2150", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2151", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2152", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2153", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2154", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2155", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2156", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2157", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2158", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2159", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2160", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2161", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2162", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2163", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2164", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2165", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2166", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2167", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2168", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2169", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2170", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2171", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2172", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2173", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2174", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2175", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2176", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2177", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2178", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2179", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2180", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2181", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2182", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2183", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2184", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2185", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2186", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2187", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2188", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("2189", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("2190", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2191", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2192", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2193", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2194", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2195", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2196", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2197", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2198", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("2199", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("2200", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2201", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2202", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2203", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2204", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2205", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2206", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2207", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2208", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2209", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2210", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2211", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2212", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2213", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2214", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2215", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2216", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2217", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2218", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2219", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2220", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2221", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2222", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2223", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2224", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2225", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2226", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2227", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2228", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2229", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2230", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2231", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2232", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2233", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2234", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2235", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2236", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2237", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2238", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2239", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2240", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2241", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2242", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2243", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2244", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2245", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2246", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2247", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2248", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2249", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2250", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2251", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2252", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2253", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2254", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2255", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2256", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2257", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2258", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2259", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2260", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2261", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2262", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2263", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2264", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2265", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2266", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2267", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2268", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2269", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2270", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2271", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2272", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2273", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2274", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2275", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2276", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2277", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2278", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2279", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2280", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2281", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2282", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2283", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2284", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2285", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2286", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2287", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2288", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("2289", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("2290", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2291", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2292", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2293", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2294", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2295", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2296", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2297", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2298", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("2299", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("2300", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2301", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2302", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2303", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2304", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2305", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2306", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2307", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2308", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2309", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2310", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2311", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2312", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2313", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2314", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2315", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2316", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2317", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2318", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2319", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2320", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2321", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2322", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2323", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2324", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2325", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2326", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2327", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2328", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2329", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2330", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2331", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2332", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2333", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2334", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2335", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2336", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2337", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2338", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2339", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2340", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2341", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2342", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2343", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2344", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2345", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2346", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2347", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2348", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2349", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2350", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2351", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2352", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2353", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2354", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2355", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2356", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2357", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2358", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2359", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2360", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2361", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2362", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2363", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2364", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2365", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2366", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2367", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2368", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2369", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2370", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2371", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2372", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2373", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2374", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2375", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2376", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2377", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2378", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2379", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2380", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2381", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2382", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2383", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2384", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2385", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2386", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2387", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2388", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("2389", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("2390", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2391", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2392", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2393", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2394", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2395", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2396", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2397", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2398", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("2399", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("2400", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2401", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2402", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2403", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2404", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2405", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2406", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2407", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2408", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2409", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2410", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2411", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2412", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2413", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2414", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2415", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2416", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2417", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2418", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2419", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2420", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2421", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2422", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2423", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2424", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2425", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2426", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2427", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2428", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2429", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2430", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2431", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2432", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2433", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2434", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2435", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2436", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2437", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2438", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2439", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2440", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2441", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2442", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2443", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2444", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2445", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2446", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2447", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2448", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2449", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2450", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2451", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2452", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2453", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2454", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2455", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2456", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2457", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2458", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2459", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2460", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2461", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2462", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2463", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2464", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2465", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2466", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2467", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2468", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2469", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2470", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2471", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2472", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2473", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2474", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2475", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2476", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2477", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2478", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2479", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2480", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2481", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2482", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2483", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2484", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2485", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2486", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2487", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2488", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("2489", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("2490", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2491", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2492", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2493", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2494", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2495", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2496", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2497", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2498", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("2499", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("2500", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2501", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2502", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2503", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2504", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2505", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2506", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2507", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2508", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2509", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2510", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2511", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2512", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2513", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2514", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2515", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2516", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2517", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2518", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2519", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2520", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2521", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2522", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2523", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2524", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2525", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2526", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2527", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2528", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2529", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2530", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2531", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2532", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2533", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2534", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2535", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2536", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2537", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2538", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2539", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2540", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2541", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2542", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2543", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2544", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2545", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2546", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2547", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2548", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2549", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2550", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2551", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2552", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2553", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2554", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2555", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2556", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2557", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2558", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2559", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2560", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2561", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2562", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2563", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2564", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2565", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2566", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2567", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2568", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2569", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2570", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2571", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2572", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2573", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2574", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2575", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2576", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2577", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2578", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2579", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2580", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2581", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2582", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2583", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2584", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2585", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2586", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2587", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2588", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("2589", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("2590", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2591", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2592", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2593", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2594", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2595", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2596", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2597", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2598", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("2599", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("2600", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2601", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2602", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2603", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2604", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2605", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2606", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2607", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2608", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2609", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2610", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2611", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2612", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2613", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2614", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2615", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2616", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2617", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2618", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2619", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2620", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2621", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2622", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2623", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2624", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2625", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2626", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2627", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2628", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2629", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2630", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2631", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2632", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2633", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2634", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2635", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2636", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2637", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2638", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2639", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2640", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2641", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2642", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2643", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2644", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2645", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2646", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2647", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2648", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2649", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2650", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2651", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2652", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2653", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2654", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2655", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2656", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2657", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2658", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2659", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2660", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2661", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2662", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2663", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2664", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2665", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2666", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2667", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2668", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2669", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2670", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2671", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2672", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2673", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2674", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2675", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2676", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2677", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2678", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2679", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2680", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2681", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2682", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2683", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2684", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2685", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2686", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2687", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2688", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("2689", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("2690", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2691", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2692", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2693", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2694", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2695", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2696", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2697", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2698", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("2699", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("2700", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2701", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2702", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2703", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2704", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2705", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2706", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2707", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2708", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2709", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2710", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2711", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2712", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2713", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2714", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2715", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2716", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2717", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2718", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2719", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2720", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2721", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2722", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2723", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2724", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2725", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2726", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2727", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2728", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2729", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2730", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2731", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2732", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2733", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2734", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2735", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2736", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2737", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2738", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2739", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2740", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2741", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2742", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2743", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2744", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2745", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2746", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2747", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2748", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2749", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2750", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2751", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2752", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2753", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2754", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2755", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2756", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2757", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2758", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2759", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2760", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2761", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2762", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2763", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2764", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2765", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2766", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2767", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2768", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2769", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2770", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2771", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2772", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2773", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2774", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2775", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2776", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2777", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2778", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2779", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2780", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2781", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2782", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2783", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2784", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2785", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2786", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2787", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2788", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("2789", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("2790", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2791", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2792", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2793", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2794", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2795", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2796", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2797", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2798", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("2799", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("2800", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2801", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2802", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2803", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2804", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2805", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2806", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2807", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2808", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2809", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2810", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2811", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2812", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2813", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2814", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2815", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2816", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2817", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2818", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2819", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2820", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2821", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2822", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2823", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2824", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2825", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2826", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2827", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2828", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2829", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2830", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2831", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2832", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2833", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2834", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2835", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2836", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2837", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2838", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2839", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2840", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2841", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2842", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2843", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2844", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2845", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2846", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2847", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2848", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2849", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2850", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2851", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2852", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2853", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2854", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2855", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2856", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2857", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2858", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2859", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2860", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2861", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2862", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2863", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2864", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2865", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2866", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2867", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2868", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2869", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2870", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2871", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2872", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2873", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2874", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2875", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2876", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2877", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2878", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2879", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2880", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2881", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2882", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2883", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2884", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2885", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2886", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2887", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2888", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("2889", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("2890", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2891", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2892", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2893", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2894", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2895", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2896", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2897", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2898", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("2899", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("2900", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2901", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2902", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2903", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2904", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2905", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2906", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2907", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2908", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2909", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2910", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2911", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2912", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2913", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2914", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2915", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2916", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2917", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2918", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2919", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2920", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2921", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2922", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2923", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2924", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2925", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2926", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2927", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2928", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2929", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2930", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2931", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2932", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2933", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2934", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2935", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2936", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2937", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2938", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2939", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2940", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2941", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2942", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2943", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2944", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2945", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2946", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2947", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2948", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2949", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2950", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2951", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2952", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2953", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2954", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2955", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2956", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2957", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2958", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2959", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2960", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2961", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2962", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2963", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2964", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2965", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2966", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2967", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2968", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2969", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2970", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2971", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2972", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2973", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2974", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2975", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2976", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2977", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("2978", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2979", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("2980", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2981", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2982", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2983", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2984", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2985", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2986", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2987", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2988", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("2989", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("2990", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2991", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2992", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2993", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2994", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2995", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2996", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2997", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("2998", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("2999", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("3000", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3001", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3002", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3003", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3004", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3005", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3006", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3007", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3008", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3009", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3010", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3011", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3012", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3013", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3014", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3015", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3016", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3017", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3018", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3019", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3020", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3021", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3022", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3023", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3024", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3025", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3026", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3027", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3028", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3029", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3030", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3031", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3032", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3033", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3034", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3035", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3036", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3037", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3038", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3039", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3040", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3041", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3042", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3043", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3044", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3045", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3046", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3047", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3048", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3049", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3050", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3051", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3052", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3053", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3054", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3055", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3056", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3057", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3058", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3059", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3060", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3061", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3062", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3063", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3064", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3065", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3066", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3067", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3068", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3069", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3070", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3071", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3072", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3073", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3074", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3075", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3076", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3077", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3078", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3079", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3080", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3081", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3082", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3083", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3084", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3085", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3086", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3087", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3088", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("3089", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("3090", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3091", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3092", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3093", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3094", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3095", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3096", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3097", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3098", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("3099", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("3100", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3101", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3102", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3103", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3104", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3105", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3106", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3107", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3108", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3109", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3110", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3111", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3112", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3113", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3114", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3115", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3116", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3117", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3118", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3119", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3120", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3121", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3122", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3123", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3124", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3125", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3126", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3127", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3128", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3129", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3130", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3131", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3132", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3133", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3134", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3135", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3136", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3137", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3138", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3139", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3140", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3141", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3142", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3143", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3144", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3145", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3146", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3147", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3148", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3149", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3150", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3151", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3152", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3153", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3154", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3155", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3156", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3157", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3158", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3159", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3160", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3161", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3162", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3163", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3164", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3165", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3166", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3167", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3168", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3169", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3170", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3171", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3172", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3173", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3174", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3175", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3176", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3177", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3178", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3179", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3180", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3181", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3182", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3183", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3184", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3185", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3186", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3187", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3188", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("3189", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("3190", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3191", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3192", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3193", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3194", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3195", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3196", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3197", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3198", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("3199", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("3200", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3201", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3202", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3203", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3204", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3205", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3206", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3207", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3208", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3209", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3210", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3211", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3212", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3213", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3214", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3215", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3216", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3217", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3218", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3219", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3220", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3221", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3222", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3223", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3224", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3225", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3226", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3227", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3228", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3229", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3230", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3231", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3232", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3233", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3234", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3235", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3236", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3237", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3238", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3239", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3240", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3241", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3242", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3243", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3244", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3245", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3246", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3247", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3248", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3249", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3250", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3251", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3252", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3253", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3254", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3255", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3256", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3257", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3258", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3259", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3260", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3261", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3262", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3263", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3264", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3265", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3266", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3267", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3268", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3269", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3270", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3271", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3272", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3273", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3274", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3275", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3276", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3277", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3278", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3279", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3280", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3281", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3282", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3283", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3284", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3285", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3286", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3287", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3288", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("3289", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("3290", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3291", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3292", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3293", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3294", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3295", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3296", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3297", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3298", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("3299", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("3300", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3301", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3302", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3303", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3304", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3305", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3306", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3307", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3308", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3309", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3310", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3311", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3312", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3313", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3314", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3315", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3316", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3317", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3318", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3319", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3320", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3321", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3322", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3323", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3324", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3325", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3326", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3327", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3328", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3329", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3330", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3331", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3332", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3333", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3334", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3335", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3336", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3337", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3338", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3339", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3340", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3341", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3342", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3343", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3344", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3345", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3346", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3347", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3348", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3349", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3350", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3351", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3352", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3353", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3354", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3355", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3356", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3357", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3358", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3359", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3360", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3361", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3362", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3363", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3364", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3365", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3366", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3367", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3368", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3369", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3370", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3371", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3372", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3373", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3374", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3375", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3376", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3377", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3378", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3379", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3380", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3381", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3382", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3383", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3384", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3385", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3386", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3387", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3388", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("3389", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("3390", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3391", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3392", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3393", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3394", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3395", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3396", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3397", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3398", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("3399", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("3400", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3401", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3402", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3403", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3404", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3405", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3406", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3407", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3408", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3409", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3410", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3411", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3412", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3413", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3414", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3415", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3416", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3417", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3418", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3419", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3420", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3421", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3422", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3423", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3424", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3425", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3426", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3427", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3428", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3429", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3430", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3431", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3432", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3433", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3434", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3435", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3436", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3437", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3438", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3439", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3440", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3441", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3442", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3443", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3444", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3445", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3446", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3447", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3448", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3449", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3450", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3451", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3452", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3453", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3454", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3455", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3456", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3457", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3458", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3459", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3460", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3461", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3462", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3463", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3464", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3465", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3466", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3467", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3468", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3469", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3470", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3471", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3472", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3473", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3474", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3475", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3476", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3477", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3478", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3479", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3480", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3481", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3482", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3483", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3484", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3485", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3486", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3487", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3488", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("3489", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("3490", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3491", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3492", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3493", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3494", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3495", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3496", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3497", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3498", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("3499", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("3500", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3501", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3502", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3503", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3504", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3505", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3506", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3507", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3508", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3509", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3510", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3511", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3512", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3513", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3514", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3515", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3516", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3517", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3518", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3519", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3520", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3521", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3522", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3523", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3524", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3525", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3526", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3527", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3528", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3529", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3530", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3531", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3532", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3533", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3534", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3535", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3536", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3537", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3538", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3539", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3540", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3541", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3542", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3543", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3544", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3545", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3546", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3547", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3548", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3549", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3550", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3551", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3552", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3553", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3554", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3555", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3556", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3557", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3558", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3559", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3560", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3561", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3562", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3563", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3564", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3565", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3566", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3567", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3568", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3569", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3570", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3571", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3572", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3573", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3574", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3575", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3576", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3577", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3578", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3579", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3580", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3581", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3582", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3583", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3584", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3585", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3586", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3587", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3588", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("3589", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("3590", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3591", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3592", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3593", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3594", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3595", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3596", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3597", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3598", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("3599", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("3600", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3601", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3602", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3603", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3604", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3605", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3606", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3607", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3608", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3609", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3610", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3611", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3612", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3613", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3614", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3615", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3616", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3617", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3618", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3619", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3620", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3621", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3622", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3623", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3624", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3625", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3626", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3627", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3628", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3629", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3630", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3631", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3632", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3633", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3634", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3635", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3636", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3637", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3638", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3639", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3640", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3641", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3642", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3643", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3644", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3645", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3646", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3647", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3648", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3649", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3650", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3651", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3652", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3653", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3654", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3655", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3656", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3657", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3658", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3659", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3660", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3661", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3662", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3663", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3664", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3665", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3666", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3667", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3668", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3669", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3670", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3671", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3672", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3673", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3674", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3675", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3676", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3677", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3678", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3679", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3680", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3681", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3682", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3683", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3684", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3685", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3686", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3687", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3688", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("3689", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("3690", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3691", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3692", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3693", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3694", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3695", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3696", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3697", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3698", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("3699", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("3700", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3701", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3702", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3703", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3704", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3705", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3706", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3707", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3708", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3709", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3710", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3711", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3712", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3713", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3714", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3715", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3716", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3717", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3718", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3719", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3720", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3721", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3722", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3723", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3724", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3725", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3726", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3727", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3728", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3729", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3730", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3731", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3732", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3733", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3734", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3735", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3736", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3737", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3738", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3739", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3740", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3741", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3742", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3743", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3744", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3745", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3746", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3747", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3748", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3749", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3750", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3751", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3752", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3753", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3754", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3755", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3756", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3757", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3758", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3759", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3760", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3761", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3762", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3763", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3764", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3765", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3766", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3767", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3768", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3769", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3770", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3771", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3772", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3773", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3774", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3775", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3776", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3777", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3778", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3779", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3780", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3781", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3782", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3783", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3784", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3785", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3786", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3787", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3788", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("3789", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("3790", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3791", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3792", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3793", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3794", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3795", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3796", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3797", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3798", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("3799", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("3800", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3801", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3802", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3803", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3804", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3805", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3806", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3807", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3808", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3809", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3810", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3811", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3812", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3813", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3814", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3815", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3816", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3817", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3818", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3819", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3820", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3821", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3822", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3823", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3824", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3825", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3826", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3827", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3828", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3829", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3830", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3831", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3832", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3833", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3834", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3835", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3836", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3837", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3838", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3839", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3840", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3841", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3842", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3843", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3844", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3845", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3846", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3847", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3848", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3849", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3850", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3851", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3852", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3853", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3854", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3855", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3856", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3857", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3858", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3859", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3860", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3861", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3862", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3863", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3864", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3865", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3866", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3867", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3868", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3869", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3870", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3871", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3872", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3873", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3874", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3875", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3876", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3877", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3878", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3879", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3880", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3881", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3882", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3883", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3884", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3885", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3886", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3887", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3888", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("3889", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("3890", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3891", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3892", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3893", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3894", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3895", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3896", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3897", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3898", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("3899", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("3900", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3901", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3902", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3903", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3904", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3905", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3906", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3907", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3908", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3909", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3910", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3911", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3912", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3913", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3914", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3915", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3916", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3917", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3918", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3919", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3920", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3921", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3922", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3923", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3924", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3925", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3926", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3927", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3928", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3929", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3930", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3931", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3932", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3933", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3934", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3935", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3936", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3937", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3938", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3939", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3940", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3941", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3942", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3943", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3944", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3945", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3946", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3947", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3948", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3949", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3950", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3951", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3952", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3953", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3954", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3955", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3956", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3957", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3958", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3959", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3960", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3961", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3962", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3963", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3964", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3965", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3966", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3967", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3968", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3969", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3970", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3971", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3972", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3973", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3974", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3975", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3976", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3977", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED"),
+        ("3978", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3979", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000008"),
+        ("3980", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3981", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3982", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3983", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3984", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3985", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3986", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3987", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3988", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("3989", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("3990", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3991", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3992", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3993", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3994", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3995", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3996", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3997", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000080"),
+        ("3998", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("3999", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00000088"),
+        ("4000", "FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4001", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4002", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4003", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4004", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4005", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4006", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4007", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4008", "FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4009", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4010", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4011", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4012", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4013", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4014", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4015", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4016", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4017", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4018", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4019", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4020", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4021", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4022", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4023", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4024", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4025", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4026", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4027", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4028", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4029", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4030", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4031", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4032", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4033", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4034", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4035", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4036", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4037", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4038", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4039", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4040", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4041", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4042", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4043", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4044", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4045", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4046", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4047", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4048", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4049", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4050", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4051", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4052", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4053", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4054", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4055", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4056", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4057", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4058", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4059", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4060", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4061", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4062", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4063", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4064", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4065", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4066", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4067", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4068", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4069", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4070", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4071", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4072", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4073", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4074", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4075", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4076", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4077", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4078", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4079", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4080", "FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4081", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4082", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4083", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4084", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4085", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4086", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4087", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4088", "FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("4089", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("4090", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4091", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4092", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4093", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4094", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4095", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4096", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4097", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4098", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("4099", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("4100", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4101", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4102", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4103", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4104", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4105", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4106", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4107", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4108", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4109", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4110", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4111", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4112", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4113", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4114", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4115", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4116", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4117", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4118", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4119", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4120", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4121", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4122", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4123", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4124", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4125", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4126", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4127", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4128", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4129", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4130", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4131", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4132", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4133", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4134", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4135", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4136", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4137", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4138", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4139", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4140", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4141", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4142", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4143", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4144", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4145", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4146", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4147", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4148", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4149", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4150", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4151", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4152", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4153", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4154", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4155", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4156", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4157", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4158", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4159", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4160", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4161", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4162", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4163", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4164", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4165", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4166", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4167", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4168", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4169", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4170", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4171", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4172", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4173", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4174", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4175", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4176", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4177", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4178", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4179", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4180", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4181", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4182", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4183", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4184", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4185", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4186", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4187", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4188", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("4189", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("4190", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4191", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4192", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4193", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4194", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4195", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4196", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4197", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4198", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("4199", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("4200", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4201", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4202", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4203", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4204", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4205", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4206", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4207", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4208", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4209", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4210", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4211", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4212", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4213", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4214", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4215", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4216", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4217", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4218", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4219", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4220", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4221", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4222", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4223", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4224", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4225", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4226", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4227", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4228", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4229", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4230", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4231", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4232", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4233", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4234", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4235", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4236", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4237", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4238", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4239", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4240", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4241", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4242", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4243", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4244", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4245", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4246", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4247", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4248", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4249", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4250", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4251", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4252", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4253", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4254", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4255", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4256", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4257", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4258", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4259", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4260", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4261", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4262", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4263", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4264", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4265", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4266", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4267", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4268", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4269", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4270", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4271", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4272", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4273", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4274", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4275", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4276", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4277", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4278", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4279", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4280", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4281", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4282", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4283", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4284", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4285", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4286", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4287", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4288", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("4289", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("4290", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4291", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4292", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4293", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4294", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4295", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4296", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4297", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4298", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("4299", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("4300", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4301", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4302", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4303", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4304", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4305", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4306", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4307", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4308", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4309", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4310", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4311", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4312", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4313", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4314", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4315", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4316", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4317", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4318", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4319", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4320", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4321", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4322", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4323", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4324", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4325", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4326", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4327", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4328", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4329", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4330", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4331", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4332", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4333", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4334", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4335", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4336", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4337", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4338", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4339", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4340", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4341", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4342", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4343", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4344", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4345", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4346", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4347", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4348", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4349", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4350", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4351", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4352", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4353", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4354", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4355", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4356", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4357", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4358", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4359", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4360", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4361", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4362", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4363", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4364", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4365", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4366", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4367", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4368", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4369", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4370", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4371", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4372", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4373", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4374", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4375", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4376", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4377", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4378", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4379", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4380", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4381", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4382", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4383", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4384", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4385", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4386", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4387", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4388", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("4389", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("4390", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4391", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4392", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4393", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4394", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4395", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4396", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4397", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4398", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("4399", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("4400", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4401", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4402", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4403", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4404", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4405", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4406", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4407", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4408", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4409", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4410", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4411", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4412", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4413", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4414", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4415", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4416", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4417", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4418", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4419", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4420", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4421", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4422", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4423", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4424", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4425", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4426", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4427", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4428", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4429", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4430", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4431", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4432", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4433", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4434", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4435", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4436", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4437", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4438", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4439", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4440", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4441", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4442", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4443", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4444", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4445", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4446", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4447", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4448", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4449", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4450", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4451", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4452", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4453", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4454", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4455", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4456", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4457", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4458", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4459", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4460", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4461", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4462", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4463", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4464", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4465", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4466", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4467", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4468", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4469", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4470", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4471", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4472", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4473", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4474", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4475", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4476", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4477", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4478", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4479", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4480", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4481", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4482", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4483", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4484", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4485", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4486", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4487", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4488", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("4489", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("4490", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4491", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4492", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4493", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4494", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4495", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4496", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4497", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4498", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("4499", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("4500", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4501", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4502", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4503", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4504", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4505", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4506", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4507", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4508", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4509", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4510", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4511", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4512", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4513", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4514", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4515", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4516", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4517", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4518", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4519", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4520", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4521", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4522", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4523", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4524", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4525", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4526", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4527", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4528", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4529", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4530", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4531", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4532", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4533", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4534", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4535", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4536", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4537", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4538", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4539", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4540", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4541", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4542", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4543", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4544", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4545", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4546", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4547", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4548", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4549", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4550", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4551", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4552", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4553", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4554", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4555", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4556", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4557", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4558", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4559", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4560", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4561", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4562", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4563", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4564", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4565", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4566", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4567", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4568", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4569", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4570", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4571", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4572", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4573", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4574", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4575", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4576", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4577", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4578", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4579", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4580", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4581", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4582", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4583", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4584", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4585", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4586", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4587", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4588", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("4589", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("4590", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4591", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4592", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4593", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4594", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4595", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4596", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4597", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4598", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("4599", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("4600", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4601", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4602", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4603", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4604", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4605", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4606", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4607", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4608", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4609", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4610", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4611", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4612", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4613", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4614", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4615", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4616", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4617", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4618", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4619", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4620", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4621", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4622", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4623", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4624", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4625", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4626", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4627", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4628", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4629", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4630", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4631", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4632", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4633", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4634", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4635", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4636", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4637", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4638", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4639", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4640", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4641", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4642", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4643", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4644", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4645", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4646", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4647", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4648", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4649", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4650", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4651", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4652", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4653", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4654", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4655", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4656", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4657", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4658", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4659", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4660", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4661", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4662", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4663", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4664", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4665", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4666", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4667", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4668", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4669", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4670", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4671", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4672", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4673", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4674", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4675", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4676", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4677", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4678", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4679", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4680", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4681", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4682", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4683", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4684", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4685", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4686", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4687", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4688", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("4689", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("4690", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4691", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4692", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4693", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4694", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4695", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4696", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4697", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4698", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("4699", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("4700", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4701", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4702", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4703", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4704", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4705", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4706", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4707", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4708", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4709", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4710", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4711", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4712", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4713", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4714", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4715", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4716", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4717", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4718", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4719", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4720", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4721", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4722", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4723", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4724", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4725", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4726", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4727", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4728", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4729", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4730", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4731", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4732", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4733", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4734", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4735", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4736", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4737", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4738", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4739", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4740", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4741", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4742", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4743", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4744", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4745", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4746", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4747", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4748", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4749", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4750", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4751", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4752", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4753", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4754", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4755", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4756", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4757", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4758", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4759", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4760", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4761", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4762", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4763", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4764", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4765", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4766", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4767", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4768", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4769", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4770", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4771", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4772", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4773", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4774", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4775", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4776", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4777", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4778", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4779", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4780", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4781", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4782", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4783", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4784", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4785", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4786", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4787", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4788", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("4789", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("4790", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4791", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4792", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4793", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4794", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4795", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4796", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4797", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4798", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("4799", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("4800", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4801", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4802", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4803", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4804", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4805", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4806", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4807", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4808", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4809", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4810", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4811", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4812", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4813", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4814", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4815", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4816", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4817", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4818", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4819", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4820", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4821", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4822", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4823", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4824", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4825", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4826", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4827", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4828", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4829", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4830", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4831", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4832", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4833", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4834", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4835", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4836", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4837", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4838", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4839", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4840", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4841", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4842", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4843", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4844", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4845", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4846", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4847", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4848", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4849", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4850", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4851", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4852", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4853", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4854", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4855", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4856", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4857", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4858", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4859", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4860", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4861", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4862", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4863", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4864", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4865", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4866", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4867", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4868", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4869", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4870", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4871", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4872", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4873", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4874", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4875", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4876", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4877", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4878", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4879", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4880", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4881", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4882", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4883", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4884", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4885", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4886", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4887", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4888", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("4889", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("4890", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4891", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4892", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4893", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4894", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4895", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4896", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4897", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4898", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("4899", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("4900", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4901", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4902", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4903", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4904", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4905", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4906", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4907", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4908", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4909", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4910", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4911", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4912", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4913", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4914", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4915", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4916", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4917", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4918", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4919", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4920", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4921", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4922", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4923", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4924", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4925", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4926", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4927", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4928", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4929", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4930", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4931", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4932", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4933", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4934", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4935", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4936", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4937", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4938", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4939", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4940", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4941", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4942", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4943", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4944", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4945", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4946", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4947", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4948", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4949", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4950", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4951", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4952", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4953", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4954", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4955", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4956", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4957", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4958", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4959", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4960", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4961", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4962", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4963", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4964", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4965", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4966", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4967", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4968", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4969", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4970", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4971", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4972", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4973", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4974", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4975", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4976", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4977", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("4978", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4979", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("4980", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4981", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4982", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4983", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4984", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4985", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4986", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4987", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4988", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("4989", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("4990", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4991", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4992", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4993", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4994", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4995", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4996", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4997", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("4998", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("4999", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("5000", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5001", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5002", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5003", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5004", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5005", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5006", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5007", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5008", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5009", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5010", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5011", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5012", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5013", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5014", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5015", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5016", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5017", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5018", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5019", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5020", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5021", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5022", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5023", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5024", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5025", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5026", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5027", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5028", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5029", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5030", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5031", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5032", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5033", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5034", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5035", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5036", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5037", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5038", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5039", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5040", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5041", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5042", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5043", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5044", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5045", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5046", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5047", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5048", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5049", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5050", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5051", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5052", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5053", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5054", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5055", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5056", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5057", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5058", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5059", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5060", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5061", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5062", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5063", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5064", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5065", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5066", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5067", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5068", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5069", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5070", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5071", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5072", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5073", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5074", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5075", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5076", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5077", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5078", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5079", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5080", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5081", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5082", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5083", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5084", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5085", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5086", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5087", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5088", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("5089", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("5090", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5091", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5092", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5093", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5094", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5095", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5096", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5097", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5098", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("5099", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("5100", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5101", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5102", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5103", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5104", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5105", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5106", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5107", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5108", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5109", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5110", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5111", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5112", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5113", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5114", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5115", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5116", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5117", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5118", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5119", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5120", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5121", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5122", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5123", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5124", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5125", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5126", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5127", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5128", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5129", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5130", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5131", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5132", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5133", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5134", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5135", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5136", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5137", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5138", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5139", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5140", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5141", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5142", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5143", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5144", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5145", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5146", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5147", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5148", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5149", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5150", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5151", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5152", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5153", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5154", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5155", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5156", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5157", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5158", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5159", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5160", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5161", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5162", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5163", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5164", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5165", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5166", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5167", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5168", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5169", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5170", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5171", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5172", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5173", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5174", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5175", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5176", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5177", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5178", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5179", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5180", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5181", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5182", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5183", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5184", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5185", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5186", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5187", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5188", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("5189", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("5190", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5191", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5192", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5193", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5194", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5195", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5196", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5197", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5198", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("5199", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("5200", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5201", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5202", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5203", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5204", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5205", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5206", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5207", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5208", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5209", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5210", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5211", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5212", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5213", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5214", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5215", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5216", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5217", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5218", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5219", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5220", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5221", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5222", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5223", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5224", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5225", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5226", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5227", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5228", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5229", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5230", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5231", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5232", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5233", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5234", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5235", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5236", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5237", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5238", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5239", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5240", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5241", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5242", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5243", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5244", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5245", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5246", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5247", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5248", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5249", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5250", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5251", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5252", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5253", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5254", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5255", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5256", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5257", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5258", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5259", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5260", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5261", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5262", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5263", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5264", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5265", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5266", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5267", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5268", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5269", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5270", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5271", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5272", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5273", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5274", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5275", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5276", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5277", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5278", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5279", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5280", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5281", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5282", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5283", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5284", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5285", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5286", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5287", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5288", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("5289", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("5290", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5291", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5292", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5293", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5294", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5295", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5296", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5297", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5298", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("5299", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("5300", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5301", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5302", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5303", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5304", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5305", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5306", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5307", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5308", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5309", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5310", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5311", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5312", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5313", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5314", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5315", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5316", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5317", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5318", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5319", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5320", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5321", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5322", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5323", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5324", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5325", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5326", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5327", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5328", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5329", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5330", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5331", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5332", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5333", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5334", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5335", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5336", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5337", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5338", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5339", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5340", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5341", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5342", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5343", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5344", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5345", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5346", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5347", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5348", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5349", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5350", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5351", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5352", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5353", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5354", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5355", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5356", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5357", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5358", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5359", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5360", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5361", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5362", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5363", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5364", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5365", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5366", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5367", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5368", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5369", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5370", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5371", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5372", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5373", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5374", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5375", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5376", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5377", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5378", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5379", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5380", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5381", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5382", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5383", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5384", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5385", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5386", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5387", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5388", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("5389", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("5390", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5391", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5392", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5393", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5394", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5395", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5396", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5397", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5398", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("5399", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("5400", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5401", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5402", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5403", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5404", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5405", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5406", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5407", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5408", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5409", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5410", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5411", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5412", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5413", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5414", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5415", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5416", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5417", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5418", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5419", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5420", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5421", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5422", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5423", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5424", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5425", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5426", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5427", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5428", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5429", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5430", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5431", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5432", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5433", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5434", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5435", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5436", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5437", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5438", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5439", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5440", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5441", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5442", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5443", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5444", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5445", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5446", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5447", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5448", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5449", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5450", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5451", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5452", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5453", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5454", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5455", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5456", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5457", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5458", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5459", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5460", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5461", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5462", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5463", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5464", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5465", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5466", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5467", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5468", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5469", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5470", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5471", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5472", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5473", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5474", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5475", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5476", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5477", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5478", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5479", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5480", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5481", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5482", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5483", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5484", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5485", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5486", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5487", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5488", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("5489", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("5490", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5491", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5492", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5493", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5494", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5495", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5496", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5497", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5498", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("5499", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("5500", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5501", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5502", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5503", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5504", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5505", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5506", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5507", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5508", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5509", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5510", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5511", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5512", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5513", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5514", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5515", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5516", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5517", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5518", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5519", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5520", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5521", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5522", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5523", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5524", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5525", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5526", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5527", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5528", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5529", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5530", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5531", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5532", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5533", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5534", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5535", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5536", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5537", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5538", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5539", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5540", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5541", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5542", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5543", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5544", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5545", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5546", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5547", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5548", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5549", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5550", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5551", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5552", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5553", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5554", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5555", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5556", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5557", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5558", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5559", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5560", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5561", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5562", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5563", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5564", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5565", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5566", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5567", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5568", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5569", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5570", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5571", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5572", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5573", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5574", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5575", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5576", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5577", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5578", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5579", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5580", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5581", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5582", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5583", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5584", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5585", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5586", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5587", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5588", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("5589", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("5590", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5591", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5592", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5593", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5594", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5595", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5596", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5597", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5598", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("5599", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("5600", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5601", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5602", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5603", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5604", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5605", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5606", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5607", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5608", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5609", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5610", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5611", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5612", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5613", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5614", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5615", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5616", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5617", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5618", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5619", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5620", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5621", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5622", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5623", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5624", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5625", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5626", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5627", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5628", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5629", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5630", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5631", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5632", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5633", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5634", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5635", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5636", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5637", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5638", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5639", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5640", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5641", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5642", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5643", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5644", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5645", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5646", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5647", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5648", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5649", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5650", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5651", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5652", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5653", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5654", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5655", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5656", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5657", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5658", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5659", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5660", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5661", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5662", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5663", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5664", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5665", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5666", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5667", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5668", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5669", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5670", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5671", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5672", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5673", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5674", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5675", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5676", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5677", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5678", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5679", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5680", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5681", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5682", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5683", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5684", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5685", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5686", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5687", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5688", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("5689", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("5690", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5691", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5692", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5693", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5694", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5695", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5696", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5697", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5698", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("5699", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("5700", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5701", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5702", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5703", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5704", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5705", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5706", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5707", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5708", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5709", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5710", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5711", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5712", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5713", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5714", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5715", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5716", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5717", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5718", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5719", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5720", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5721", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5722", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5723", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5724", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5725", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5726", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5727", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5728", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5729", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5730", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5731", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5732", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5733", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5734", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5735", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5736", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5737", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5738", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5739", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5740", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5741", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5742", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5743", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5744", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5745", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5746", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5747", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5748", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5749", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5750", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5751", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5752", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5753", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5754", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5755", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5756", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5757", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5758", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5759", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5760", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5761", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5762", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5763", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5764", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5765", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5766", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5767", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5768", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5769", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5770", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5771", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5772", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5773", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5774", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5775", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5776", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5777", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5778", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5779", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5780", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5781", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5782", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5783", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5784", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5785", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5786", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5787", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5788", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("5789", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("5790", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5791", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5792", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5793", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5794", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5795", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5796", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5797", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5798", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("5799", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("5800", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5801", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5802", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5803", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5804", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5805", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5806", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5807", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5808", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5809", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5810", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5811", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5812", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5813", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5814", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5815", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5816", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5817", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5818", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5819", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5820", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5821", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5822", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5823", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5824", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5825", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5826", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5827", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5828", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5829", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5830", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5831", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5832", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5833", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5834", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5835", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5836", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5837", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5838", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5839", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5840", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5841", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5842", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5843", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5844", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5845", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5846", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5847", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5848", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5849", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5850", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5851", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5852", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5853", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5854", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5855", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5856", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5857", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5858", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5859", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5860", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5861", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5862", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5863", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5864", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5865", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5866", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5867", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5868", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5869", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5870", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5871", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5872", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5873", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5874", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5875", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5876", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5877", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5878", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5879", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5880", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5881", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5882", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5883", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5884", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5885", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5886", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5887", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5888", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("5889", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("5890", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5891", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5892", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5893", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5894", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5895", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5896", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5897", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5898", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("5899", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("5900", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5901", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5902", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5903", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5904", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5905", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5906", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5907", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5908", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5909", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5910", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5911", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5912", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5913", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5914", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5915", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5916", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5917", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5918", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5919", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5920", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5921", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5922", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5923", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5924", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5925", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5926", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5927", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5928", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5929", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5930", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5931", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5932", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5933", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5934", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5935", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5936", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5937", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5938", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5939", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5940", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5941", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5942", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5943", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5944", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5945", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5946", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5947", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5948", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5949", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5950", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5951", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5952", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5953", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5954", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5955", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5956", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5957", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5958", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5959", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5960", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5961", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5962", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5963", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5964", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5965", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5966", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5967", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5968", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5969", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5970", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5971", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5972", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5973", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5974", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5975", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5976", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5977", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("5978", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5979", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("5980", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5981", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5982", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5983", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5984", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5985", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5986", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5987", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5988", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("5989", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("5990", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5991", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5992", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5993", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5994", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5995", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5996", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5997", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("5998", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("5999", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("6000", "FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6001", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6002", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6003", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6004", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6005", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6006", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6007", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6008", "FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6009", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6010", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6011", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6012", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6013", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6014", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6015", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6016", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6017", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6018", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6019", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6020", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6021", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6022", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6023", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6024", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6025", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6026", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6027", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6028", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6029", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6030", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6031", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6032", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6033", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6034", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6035", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6036", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6037", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6038", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6039", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6040", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6041", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6042", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6043", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6044", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6045", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6046", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6047", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6048", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6049", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6050", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6051", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6052", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6053", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6054", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6055", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6056", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6057", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6058", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6059", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6060", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6061", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6062", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6063", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6064", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6065", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6066", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6067", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6068", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6069", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6070", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6071", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6072", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6073", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6074", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6075", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6076", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6077", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6078", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6079", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6080", "FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6081", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6082", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6083", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6084", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6085", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6086", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6087", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6088", "FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("6089", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("6090", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6091", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6092", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6093", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6094", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6095", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6096", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6097", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6098", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("6099", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("6100", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6101", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6102", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6103", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6104", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6105", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6106", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6107", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6108", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6109", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6110", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6111", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6112", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6113", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6114", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6115", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6116", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6117", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6118", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6119", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6120", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6121", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6122", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6123", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6124", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6125", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6126", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6127", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6128", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6129", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6130", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6131", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6132", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6133", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6134", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6135", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6136", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6137", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6138", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6139", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6140", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6141", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6142", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6143", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6144", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6145", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6146", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6147", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6148", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6149", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6150", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6151", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6152", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6153", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6154", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6155", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6156", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6157", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6158", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6159", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6160", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6161", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6162", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6163", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6164", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6165", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6166", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6167", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6168", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6169", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6170", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6171", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6172", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6173", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6174", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6175", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6176", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6177", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6178", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6179", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6180", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6181", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6182", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6183", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6184", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6185", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6186", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6187", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6188", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("6189", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("6190", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6191", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6192", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6193", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6194", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6195", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6196", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6197", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6198", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("6199", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("6200", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6201", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6202", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6203", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6204", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6205", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6206", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6207", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6208", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6209", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6210", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6211", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6212", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6213", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6214", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6215", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6216", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6217", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6218", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6219", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6220", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6221", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6222", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6223", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6224", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6225", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6226", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6227", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6228", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6229", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6230", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6231", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6232", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6233", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6234", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6235", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6236", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6237", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6238", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6239", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6240", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6241", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6242", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6243", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6244", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6245", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6246", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6247", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6248", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6249", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6250", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6251", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6252", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6253", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6254", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6255", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6256", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6257", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6258", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6259", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6260", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6261", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6262", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6263", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6264", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6265", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6266", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6267", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6268", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6269", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6270", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6271", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6272", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6273", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6274", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6275", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6276", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6277", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6278", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6279", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6280", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6281", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6282", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6283", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6284", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6285", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6286", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6287", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6288", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("6289", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("6290", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6291", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6292", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6293", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6294", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6295", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6296", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6297", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6298", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("6299", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("6300", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6301", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6302", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6303", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6304", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6305", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6306", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6307", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6308", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6309", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6310", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6311", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6312", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6313", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6314", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6315", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6316", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6317", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6318", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6319", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6320", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6321", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6322", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6323", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6324", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6325", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6326", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6327", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6328", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6329", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6330", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6331", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6332", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6333", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6334", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6335", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6336", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6337", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6338", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6339", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6340", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6341", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6342", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6343", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6344", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6345", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6346", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6347", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6348", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6349", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6350", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6351", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6352", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6353", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6354", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6355", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6356", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6357", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6358", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6359", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6360", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6361", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6362", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6363", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6364", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6365", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6366", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6367", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6368", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6369", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6370", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6371", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6372", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6373", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6374", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6375", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6376", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6377", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6378", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6379", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6380", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6381", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6382", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6383", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6384", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6385", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6386", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6387", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6388", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("6389", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("6390", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6391", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6392", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6393", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6394", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6395", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6396", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6397", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6398", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("6399", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("6400", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6401", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6402", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6403", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6404", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6405", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6406", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6407", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6408", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6409", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6410", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6411", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6412", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6413", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6414", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6415", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6416", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6417", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6418", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6419", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6420", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6421", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6422", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6423", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6424", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6425", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6426", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6427", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6428", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6429", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6430", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6431", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6432", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6433", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6434", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6435", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6436", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6437", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6438", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6439", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6440", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6441", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6442", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6443", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6444", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6445", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6446", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6447", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6448", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6449", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6450", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6451", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6452", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6453", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6454", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6455", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6456", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6457", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6458", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6459", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6460", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6461", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6462", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6463", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6464", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6465", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6466", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6467", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6468", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6469", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6470", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6471", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6472", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6473", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6474", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6475", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6476", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6477", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6478", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6479", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6480", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6481", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6482", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6483", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6484", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6485", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6486", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6487", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6488", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("6489", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("6490", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6491", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6492", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6493", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6494", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6495", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6496", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6497", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6498", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("6499", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("6500", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6501", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6502", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6503", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6504", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6505", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6506", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6507", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6508", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6509", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6510", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6511", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6512", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6513", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6514", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6515", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6516", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6517", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6518", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6519", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6520", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6521", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6522", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6523", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6524", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6525", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6526", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6527", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6528", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6529", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6530", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6531", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6532", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6533", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6534", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6535", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6536", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6537", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6538", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6539", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6540", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6541", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6542", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6543", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6544", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6545", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6546", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6547", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6548", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6549", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6550", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6551", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6552", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6553", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6554", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6555", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6556", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6557", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6558", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6559", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6560", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6561", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6562", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6563", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6564", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6565", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6566", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6567", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6568", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6569", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6570", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6571", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6572", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6573", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6574", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6575", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6576", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6577", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6578", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6579", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6580", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6581", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6582", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6583", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6584", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6585", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6586", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6587", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6588", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("6589", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("6590", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6591", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6592", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6593", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6594", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6595", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6596", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6597", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6598", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("6599", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("6600", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6601", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6602", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6603", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6604", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6605", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6606", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6607", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6608", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6609", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6610", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6611", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6612", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6613", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6614", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6615", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6616", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6617", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6618", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6619", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6620", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6621", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6622", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6623", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6624", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6625", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6626", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6627", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6628", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6629", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6630", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6631", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6632", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6633", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6634", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6635", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6636", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6637", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6638", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6639", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6640", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6641", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6642", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6643", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6644", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6645", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6646", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6647", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6648", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6649", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6650", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6651", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6652", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6653", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6654", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6655", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6656", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6657", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6658", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6659", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6660", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6661", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6662", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6663", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6664", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6665", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6666", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6667", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6668", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6669", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6670", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6671", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6672", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6673", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6674", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6675", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6676", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6677", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6678", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6679", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6680", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6681", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6682", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6683", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6684", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6685", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6686", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6687", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6688", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("6689", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("6690", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6691", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6692", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6693", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6694", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6695", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6696", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6697", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6698", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("6699", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("6700", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6701", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6702", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6703", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6704", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6705", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6706", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6707", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6708", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6709", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6710", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6711", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6712", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6713", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6714", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6715", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6716", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6717", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6718", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6719", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6720", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6721", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6722", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6723", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6724", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6725", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6726", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6727", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6728", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6729", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6730", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6731", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6732", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6733", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6734", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6735", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6736", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6737", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6738", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6739", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6740", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6741", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6742", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6743", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6744", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6745", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6746", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6747", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6748", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6749", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6750", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6751", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6752", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6753", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6754", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6755", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6756", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6757", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6758", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6759", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6760", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6761", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6762", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6763", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6764", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6765", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6766", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6767", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6768", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6769", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6770", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6771", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6772", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6773", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6774", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6775", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6776", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6777", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6778", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6779", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6780", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6781", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6782", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6783", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6784", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6785", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6786", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6787", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6788", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("6789", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("6790", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6791", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6792", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6793", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6794", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6795", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6796", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6797", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6798", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("6799", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("6800", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6801", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6802", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6803", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6804", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6805", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6806", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6807", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6808", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6809", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6810", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6811", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6812", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6813", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6814", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6815", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6816", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6817", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6818", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6819", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6820", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6821", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6822", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6823", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6824", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6825", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6826", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6827", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6828", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6829", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6830", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6831", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6832", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6833", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6834", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6835", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6836", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6837", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6838", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6839", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6840", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6841", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6842", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6843", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6844", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6845", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6846", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6847", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6848", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6849", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6850", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6851", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6852", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6853", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6854", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6855", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6856", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6857", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6858", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6859", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6860", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6861", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6862", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6863", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6864", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6865", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6866", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6867", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6868", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6869", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6870", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6871", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6872", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6873", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6874", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6875", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6876", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6877", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6878", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6879", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6880", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6881", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6882", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6883", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6884", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6885", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6886", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6887", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6888", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("6889", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("6890", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6891", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6892", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6893", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6894", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6895", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6896", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6897", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6898", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("6899", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("6900", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6901", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6902", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6903", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6904", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6905", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6906", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6907", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6908", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6909", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6910", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6911", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6912", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6913", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6914", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6915", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6916", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6917", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6918", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6919", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6920", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6921", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6922", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6923", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6924", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6925", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6926", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6927", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6928", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6929", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6930", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6931", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6932", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6933", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6934", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6935", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6936", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6937", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6938", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6939", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6940", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6941", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6942", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6943", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6944", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6945", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6946", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6947", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6948", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6949", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6950", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6951", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6952", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6953", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6954", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6955", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6956", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6957", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6958", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6959", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6960", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6961", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6962", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6963", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6964", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6965", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6966", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6967", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6968", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6969", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6970", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6971", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6972", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6973", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6974", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6975", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6976", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6977", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("6978", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6979", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("6980", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6981", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6982", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6983", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6984", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6985", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6986", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6987", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6988", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("6989", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("6990", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6991", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6992", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6993", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6994", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6995", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6996", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6997", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("6998", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("6999", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("7000", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7001", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7002", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7003", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7004", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7005", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7006", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7007", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7008", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7009", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7010", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7011", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7012", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7013", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7014", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7015", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7016", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7017", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7018", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7019", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7020", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7021", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7022", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7023", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7024", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7025", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7026", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7027", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7028", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7029", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7030", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7031", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7032", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7033", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7034", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7035", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7036", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7037", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7038", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7039", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7040", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7041", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7042", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7043", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7044", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7045", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7046", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7047", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7048", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7049", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7050", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7051", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7052", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7053", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7054", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7055", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7056", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7057", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7058", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7059", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7060", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7061", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7062", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7063", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7064", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7065", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7066", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7067", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7068", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7069", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7070", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7071", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7072", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7073", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7074", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7075", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7076", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7077", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7078", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7079", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7080", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7081", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7082", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7083", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7084", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7085", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7086", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7087", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7088", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("7089", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("7090", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7091", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7092", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7093", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7094", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7095", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7096", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7097", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7098", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("7099", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("7100", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7101", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7102", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7103", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7104", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7105", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7106", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7107", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7108", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7109", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7110", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7111", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7112", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7113", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7114", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7115", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7116", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7117", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7118", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7119", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7120", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7121", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7122", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7123", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7124", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7125", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7126", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7127", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7128", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7129", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7130", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7131", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7132", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7133", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7134", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7135", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7136", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7137", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7138", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7139", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7140", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7141", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7142", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7143", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7144", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7145", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7146", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7147", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7148", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7149", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7150", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7151", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7152", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7153", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7154", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7155", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7156", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7157", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7158", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7159", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7160", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7161", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7162", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7163", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7164", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7165", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7166", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7167", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7168", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7169", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7170", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7171", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7172", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7173", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7174", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7175", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7176", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7177", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7178", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7179", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7180", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7181", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7182", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7183", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7184", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7185", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7186", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7187", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7188", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("7189", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("7190", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7191", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7192", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7193", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7194", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7195", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7196", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7197", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7198", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("7199", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("7200", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7201", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7202", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7203", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7204", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7205", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7206", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7207", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7208", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7209", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7210", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7211", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7212", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7213", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7214", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7215", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7216", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7217", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7218", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7219", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7220", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7221", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7222", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7223", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7224", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7225", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7226", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7227", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7228", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7229", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7230", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7231", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7232", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7233", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7234", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7235", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7236", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7237", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7238", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7239", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7240", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7241", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7242", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7243", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7244", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7245", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7246", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7247", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7248", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7249", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7250", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7251", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7252", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7253", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7254", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7255", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7256", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7257", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7258", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7259", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7260", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7261", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7262", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7263", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7264", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7265", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7266", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7267", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7268", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7269", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7270", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7271", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7272", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7273", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7274", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7275", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7276", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7277", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7278", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7279", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7280", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7281", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7282", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7283", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7284", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7285", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7286", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7287", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7288", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("7289", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("7290", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7291", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7292", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7293", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7294", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7295", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7296", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7297", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7298", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("7299", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("7300", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7301", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7302", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7303", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7304", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7305", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7306", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7307", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7308", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7309", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7310", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7311", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7312", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7313", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7314", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7315", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7316", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7317", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7318", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7319", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7320", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7321", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7322", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7323", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7324", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7325", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7326", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7327", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7328", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7329", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7330", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7331", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7332", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7333", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7334", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7335", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7336", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7337", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7338", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7339", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7340", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7341", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7342", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7343", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7344", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7345", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7346", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7347", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7348", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7349", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7350", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7351", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7352", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7353", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7354", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7355", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7356", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7357", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7358", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7359", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7360", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7361", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7362", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7363", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7364", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7365", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7366", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7367", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7368", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7369", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7370", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7371", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7372", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7373", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7374", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7375", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7376", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7377", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7378", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7379", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7380", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7381", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7382", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7383", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7384", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7385", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7386", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7387", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7388", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("7389", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("7390", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7391", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7392", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7393", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7394", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7395", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7396", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7397", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7398", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("7399", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("7400", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7401", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7402", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7403", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7404", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7405", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7406", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7407", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7408", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7409", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7410", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7411", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7412", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7413", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7414", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7415", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7416", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7417", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7418", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7419", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7420", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7421", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7422", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7423", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7424", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7425", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7426", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7427", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7428", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7429", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7430", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7431", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7432", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7433", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7434", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7435", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7436", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7437", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7438", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7439", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7440", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7441", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7442", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7443", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7444", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7445", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7446", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7447", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7448", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7449", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7450", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7451", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7452", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7453", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7454", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7455", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7456", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7457", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7458", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7459", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7460", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7461", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7462", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7463", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7464", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7465", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7466", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7467", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7468", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7469", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7470", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7471", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7472", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7473", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7474", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7475", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7476", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7477", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7478", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7479", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7480", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7481", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7482", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7483", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7484", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7485", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7486", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7487", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7488", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("7489", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("7490", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7491", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7492", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7493", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7494", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7495", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7496", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7497", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7498", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("7499", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("7500", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7501", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7502", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7503", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7504", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7505", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7506", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7507", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7508", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7509", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7510", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7511", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7512", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7513", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7514", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7515", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7516", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7517", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7518", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7519", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7520", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7521", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7522", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7523", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7524", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7525", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7526", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7527", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7528", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7529", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7530", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7531", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7532", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7533", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7534", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7535", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7536", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7537", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7538", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7539", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7540", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7541", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7542", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7543", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7544", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7545", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7546", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7547", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7548", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7549", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7550", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7551", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7552", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7553", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7554", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7555", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7556", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7557", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7558", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7559", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7560", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7561", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7562", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7563", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7564", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7565", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7566", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7567", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7568", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7569", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7570", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7571", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7572", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7573", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7574", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7575", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7576", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7577", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7578", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7579", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7580", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7581", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7582", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7583", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7584", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7585", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7586", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7587", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7588", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("7589", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("7590", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7591", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7592", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7593", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7594", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7595", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7596", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7597", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7598", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("7599", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("7600", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7601", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7602", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7603", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7604", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7605", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7606", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7607", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7608", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7609", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7610", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7611", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7612", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7613", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7614", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7615", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7616", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7617", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7618", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7619", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7620", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7621", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7622", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7623", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7624", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7625", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7626", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7627", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7628", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7629", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7630", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7631", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7632", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7633", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7634", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7635", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7636", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7637", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7638", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7639", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7640", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7641", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7642", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7643", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7644", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7645", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7646", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7647", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7648", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7649", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7650", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7651", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7652", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7653", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7654", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7655", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7656", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7657", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7658", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7659", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7660", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7661", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7662", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7663", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7664", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7665", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7666", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7667", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7668", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7669", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7670", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7671", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7672", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7673", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7674", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7675", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7676", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7677", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7678", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7679", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7680", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7681", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7682", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7683", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7684", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7685", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7686", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7687", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7688", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("7689", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("7690", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7691", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7692", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7693", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7694", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7695", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7696", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7697", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7698", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("7699", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("7700", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7701", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7702", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7703", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7704", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7705", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7706", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7707", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7708", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7709", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7710", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7711", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7712", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7713", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7714", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7715", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7716", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7717", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7718", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7719", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7720", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7721", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7722", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7723", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7724", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7725", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7726", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7727", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7728", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7729", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7730", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7731", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7732", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7733", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7734", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7735", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7736", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7737", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7738", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7739", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7740", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7741", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7742", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7743", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7744", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7745", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7746", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7747", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7748", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7749", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7750", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7751", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7752", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7753", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7754", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7755", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7756", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7757", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7758", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7759", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7760", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7761", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7762", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7763", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7764", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7765", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7766", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7767", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7768", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7769", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7770", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7771", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7772", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7773", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7774", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7775", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7776", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7777", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7778", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7779", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7780", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7781", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7782", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7783", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7784", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7785", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7786", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7787", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7788", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("7789", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("7790", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7791", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7792", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7793", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7794", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7795", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7796", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7797", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7798", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("7799", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("7800", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7801", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7802", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7803", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7804", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7805", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7806", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7807", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7808", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7809", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7810", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7811", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7812", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7813", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7814", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7815", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7816", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7817", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7818", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7819", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7820", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7821", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7822", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7823", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7824", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7825", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7826", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7827", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7828", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7829", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7830", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7831", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7832", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7833", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7834", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7835", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7836", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7837", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7838", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7839", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7840", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7841", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7842", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7843", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7844", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7845", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7846", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7847", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7848", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7849", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7850", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7851", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7852", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7853", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7854", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7855", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7856", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7857", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7858", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7859", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7860", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7861", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7862", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7863", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7864", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7865", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7866", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7867", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7868", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7869", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7870", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7871", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7872", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7873", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7874", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7875", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7876", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7877", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7878", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7879", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7880", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7881", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7882", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7883", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7884", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7885", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7886", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7887", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7888", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("7889", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("7890", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7891", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7892", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7893", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7894", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7895", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7896", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7897", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7898", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("7899", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("7900", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7901", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7902", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7903", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7904", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7905", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7906", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7907", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7908", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7909", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7910", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7911", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7912", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7913", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7914", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7915", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7916", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7917", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7918", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7919", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7920", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7921", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7922", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7923", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7924", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7925", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7926", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7927", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7928", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7929", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7930", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7931", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7932", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7933", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7934", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7935", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7936", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7937", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7938", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7939", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7940", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7941", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7942", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7943", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7944", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7945", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7946", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7947", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7948", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7949", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7950", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7951", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7952", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7953", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7954", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7955", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7956", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7957", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7958", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7959", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7960", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7961", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7962", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7963", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7964", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7965", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7966", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7967", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7968", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7969", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7970", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7971", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7972", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7973", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7974", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7975", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7976", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7977", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED"),
+        ("7978", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7979", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000008"),
+        ("7980", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7981", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7982", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7983", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7984", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7985", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7986", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7987", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7988", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("7989", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("7990", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7991", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7992", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7993", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7994", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7995", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7996", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7997", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000080"),
+        ("7998", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("7999", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00000088"),
+        ("8000", "FILE_ATTRIBUTE_VIRTUAL"),
+        ("8001", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8002", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8003", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8004", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8005", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8006", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8007", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8008", "FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8009", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8010", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8011", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8012", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8013", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8014", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8015", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8016", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8017", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8018", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8019", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8020", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8021", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8022", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8023", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8024", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8025", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8026", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8027", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8028", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8029", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8030", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8031", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8032", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8033", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8034", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8035", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8036", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8037", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8038", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8039", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8040", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8041", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8042", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8043", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8044", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8045", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8046", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8047", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8048", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8049", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8050", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8051", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8052", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8053", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8054", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8055", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8056", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8057", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8058", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8059", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8060", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8061", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8062", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8063", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8064", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8065", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8066", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8067", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8068", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8069", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8070", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8071", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8072", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8073", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8074", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8075", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8076", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8077", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8078", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8079", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8080", "FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8081", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8082", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8083", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8084", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8085", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8086", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8087", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8088", "FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("8089", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("8090", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8091", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8092", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8093", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8094", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8095", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8096", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8097", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8098", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("8099", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("8100", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8101", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8102", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8103", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8104", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8105", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8106", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8107", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8108", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8109", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8110", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8111", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8112", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8113", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8114", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8115", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8116", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8117", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8118", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8119", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8120", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8121", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8122", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8123", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8124", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8125", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8126", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8127", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8128", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8129", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8130", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8131", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8132", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8133", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8134", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8135", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8136", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8137", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8138", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8139", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8140", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8141", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8142", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8143", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8144", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8145", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8146", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8147", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8148", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8149", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8150", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8151", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8152", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8153", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8154", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8155", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8156", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8157", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8158", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8159", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8160", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8161", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8162", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8163", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8164", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8165", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8166", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8167", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8168", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8169", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8170", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8171", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8172", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8173", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8174", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8175", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8176", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8177", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8178", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8179", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8180", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8181", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8182", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8183", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8184", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8185", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8186", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8187", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8188", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("8189", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("8190", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8191", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8192", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8193", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8194", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8195", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8196", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8197", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8198", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("8199", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("8200", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8201", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8202", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8203", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8204", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8205", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8206", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8207", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8208", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8209", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8210", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8211", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8212", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8213", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8214", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8215", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8216", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8217", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8218", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8219", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8220", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8221", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8222", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8223", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8224", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8225", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8226", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8227", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8228", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8229", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8230", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8231", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8232", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8233", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8234", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8235", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8236", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8237", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8238", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8239", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8240", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8241", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8242", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8243", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8244", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8245", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8246", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8247", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8248", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8249", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8250", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8251", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8252", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8253", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8254", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8255", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8256", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8257", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8258", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8259", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8260", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8261", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8262", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8263", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8264", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8265", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8266", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8267", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8268", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8269", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8270", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8271", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8272", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8273", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8274", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8275", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8276", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8277", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8278", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8279", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8280", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8281", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8282", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8283", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8284", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8285", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8286", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8287", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8288", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("8289", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("8290", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8291", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8292", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8293", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8294", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8295", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8296", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8297", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8298", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("8299", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("8300", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8301", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8302", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8303", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8304", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8305", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8306", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8307", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8308", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8309", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8310", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8311", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8312", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8313", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8314", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8315", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8316", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8317", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8318", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8319", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8320", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8321", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8322", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8323", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8324", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8325", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8326", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8327", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8328", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8329", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8330", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8331", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8332", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8333", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8334", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8335", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8336", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8337", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8338", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8339", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8340", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8341", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8342", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8343", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8344", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8345", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8346", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8347", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8348", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8349", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8350", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8351", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8352", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8353", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8354", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8355", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8356", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8357", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8358", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8359", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8360", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8361", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8362", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8363", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8364", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8365", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8366", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8367", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8368", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8369", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8370", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8371", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8372", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8373", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8374", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8375", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8376", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8377", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8378", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8379", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8380", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8381", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8382", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8383", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8384", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8385", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8386", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8387", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8388", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("8389", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("8390", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8391", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8392", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8393", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8394", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8395", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8396", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8397", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8398", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("8399", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("8400", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8401", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8402", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8403", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8404", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8405", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8406", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8407", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8408", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8409", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8410", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8411", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8412", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8413", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8414", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8415", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8416", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8417", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8418", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8419", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8420", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8421", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8422", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8423", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8424", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8425", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8426", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8427", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8428", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8429", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8430", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8431", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8432", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8433", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8434", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8435", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8436", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8437", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8438", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8439", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8440", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8441", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8442", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8443", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8444", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8445", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8446", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8447", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8448", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8449", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8450", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8451", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8452", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8453", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8454", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8455", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8456", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8457", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8458", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8459", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8460", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8461", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8462", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8463", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8464", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8465", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8466", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8467", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8468", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8469", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8470", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8471", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8472", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8473", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8474", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8475", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8476", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8477", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8478", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8479", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8480", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8481", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8482", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8483", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8484", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8485", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8486", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8487", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8488", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("8489", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("8490", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8491", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8492", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8493", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8494", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8495", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8496", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8497", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8498", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("8499", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("8500", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8501", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8502", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8503", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8504", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8505", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8506", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8507", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8508", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8509", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8510", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8511", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8512", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8513", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8514", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8515", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8516", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8517", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8518", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8519", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8520", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8521", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8522", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8523", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8524", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8525", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8526", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8527", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8528", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8529", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8530", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8531", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8532", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8533", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8534", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8535", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8536", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8537", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8538", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8539", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8540", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8541", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8542", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8543", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8544", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8545", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8546", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8547", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8548", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8549", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8550", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8551", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8552", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8553", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8554", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8555", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8556", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8557", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8558", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8559", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8560", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8561", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8562", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8563", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8564", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8565", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8566", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8567", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8568", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8569", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8570", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8571", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8572", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8573", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8574", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8575", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8576", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8577", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8578", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8579", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8580", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8581", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8582", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8583", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8584", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8585", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8586", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8587", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8588", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("8589", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("8590", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8591", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8592", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8593", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8594", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8595", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8596", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8597", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8598", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("8599", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("8600", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8601", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8602", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8603", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8604", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8605", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8606", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8607", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8608", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8609", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8610", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8611", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8612", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8613", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8614", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8615", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8616", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8617", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8618", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8619", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8620", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8621", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8622", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8623", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8624", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8625", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8626", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8627", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8628", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8629", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8630", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8631", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8632", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8633", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8634", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8635", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8636", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8637", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8638", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8639", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8640", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8641", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8642", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8643", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8644", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8645", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8646", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8647", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8648", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8649", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8650", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8651", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8652", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8653", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8654", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8655", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8656", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8657", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8658", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8659", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8660", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8661", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8662", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8663", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8664", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8665", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8666", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8667", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8668", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8669", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8670", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8671", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8672", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8673", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8674", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8675", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8676", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8677", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8678", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8679", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8680", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8681", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8682", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8683", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8684", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8685", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8686", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8687", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8688", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("8689", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("8690", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8691", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8692", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8693", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8694", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8695", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8696", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8697", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8698", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("8699", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("8700", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8701", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8702", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8703", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8704", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8705", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8706", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8707", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8708", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8709", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8710", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8711", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8712", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8713", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8714", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8715", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8716", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8717", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8718", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8719", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8720", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8721", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8722", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8723", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8724", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8725", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8726", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8727", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8728", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8729", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8730", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8731", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8732", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8733", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8734", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8735", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8736", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8737", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8738", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8739", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8740", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8741", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8742", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8743", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8744", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8745", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8746", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8747", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8748", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8749", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8750", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8751", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8752", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8753", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8754", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8755", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8756", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8757", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8758", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8759", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8760", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8761", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8762", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8763", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8764", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8765", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8766", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8767", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8768", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8769", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8770", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8771", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8772", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8773", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8774", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8775", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8776", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8777", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8778", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8779", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8780", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8781", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8782", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8783", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8784", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8785", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8786", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8787", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8788", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("8789", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("8790", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8791", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8792", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8793", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8794", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8795", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8796", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8797", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8798", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("8799", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("8800", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8801", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8802", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8803", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8804", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8805", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8806", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8807", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8808", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8809", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8810", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8811", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8812", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8813", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8814", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8815", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8816", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8817", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8818", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8819", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8820", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8821", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8822", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8823", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8824", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8825", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8826", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8827", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8828", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8829", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8830", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8831", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8832", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8833", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8834", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8835", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8836", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8837", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8838", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8839", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8840", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8841", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8842", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8843", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8844", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8845", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8846", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8847", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8848", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8849", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8850", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8851", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8852", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8853", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8854", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8855", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8856", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8857", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8858", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8859", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8860", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8861", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8862", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8863", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8864", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8865", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8866", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8867", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8868", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8869", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8870", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8871", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8872", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8873", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8874", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8875", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8876", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8877", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8878", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8879", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8880", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8881", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8882", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8883", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8884", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8885", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8886", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8887", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8888", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("8889", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("8890", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8891", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8892", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8893", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8894", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8895", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8896", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8897", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8898", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("8899", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("8900", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8901", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8902", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8903", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8904", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8905", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8906", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8907", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8908", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8909", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8910", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8911", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8912", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8913", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8914", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8915", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8916", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8917", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8918", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8919", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8920", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8921", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8922", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8923", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8924", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8925", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8926", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8927", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8928", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8929", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8930", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8931", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8932", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8933", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8934", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8935", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8936", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8937", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8938", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8939", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8940", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8941", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8942", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8943", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8944", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8945", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8946", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8947", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8948", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8949", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8950", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8951", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8952", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8953", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8954", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8955", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8956", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8957", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8958", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8959", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8960", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8961", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8962", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8963", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8964", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8965", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8966", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8967", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8968", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8969", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8970", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8971", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8972", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8973", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8974", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8975", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8976", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8977", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL"),
+        ("8978", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8979", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("8980", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8981", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8982", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8983", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8984", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8985", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8986", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8987", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8988", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("8989", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("8990", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8991", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8992", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8993", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8994", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8995", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8996", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8997", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("8998", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("8999", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("9000", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9001", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9002", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9003", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9004", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9005", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9006", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9007", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9008", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9009", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9010", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9011", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9012", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9013", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9014", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9015", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9016", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9017", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9018", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9019", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9020", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9021", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9022", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9023", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9024", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9025", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9026", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9027", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9028", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9029", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9030", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9031", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9032", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9033", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9034", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9035", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9036", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9037", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9038", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9039", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9040", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9041", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9042", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9043", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9044", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9045", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9046", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9047", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9048", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9049", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9050", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9051", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9052", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9053", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9054", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9055", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9056", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9057", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9058", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9059", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9060", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9061", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9062", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9063", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9064", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9065", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9066", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9067", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9068", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9069", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9070", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9071", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9072", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9073", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9074", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9075", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9076", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9077", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9078", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9079", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9080", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9081", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9082", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9083", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9084", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9085", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9086", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9087", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9088", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("9089", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("9090", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9091", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9092", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9093", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9094", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9095", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9096", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9097", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9098", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("9099", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("9100", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9101", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9102", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9103", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9104", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9105", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9106", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9107", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9108", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9109", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9110", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9111", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9112", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9113", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9114", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9115", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9116", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9117", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9118", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9119", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9120", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9121", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9122", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9123", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9124", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9125", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9126", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9127", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9128", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9129", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9130", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9131", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9132", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9133", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9134", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9135", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9136", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9137", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9138", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9139", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9140", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9141", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9142", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9143", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9144", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9145", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9146", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9147", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9148", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9149", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9150", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9151", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9152", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9153", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9154", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9155", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9156", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9157", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9158", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9159", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9160", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9161", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9162", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9163", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9164", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9165", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9166", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9167", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9168", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9169", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9170", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9171", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9172", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9173", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9174", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9175", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9176", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9177", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9178", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9179", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9180", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9181", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9182", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9183", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9184", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9185", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9186", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9187", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9188", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("9189", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("9190", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9191", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9192", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9193", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9194", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9195", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9196", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9197", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9198", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("9199", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("9200", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9201", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9202", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9203", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9204", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9205", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9206", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9207", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9208", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9209", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9210", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9211", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9212", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9213", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9214", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9215", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9216", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9217", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9218", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9219", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9220", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9221", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9222", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9223", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9224", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9225", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9226", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9227", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9228", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9229", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9230", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9231", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9232", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9233", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9234", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9235", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9236", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9237", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9238", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9239", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9240", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9241", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9242", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9243", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9244", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9245", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9246", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9247", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9248", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9249", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9250", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9251", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9252", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9253", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9254", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9255", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9256", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9257", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9258", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9259", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9260", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9261", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9262", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9263", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9264", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9265", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9266", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9267", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9268", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9269", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9270", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9271", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9272", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9273", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9274", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9275", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9276", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9277", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9278", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9279", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9280", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9281", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9282", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9283", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9284", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9285", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9286", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9287", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9288", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("9289", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("9290", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9291", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9292", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9293", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9294", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9295", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9296", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9297", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9298", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("9299", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("9300", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9301", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9302", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9303", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9304", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9305", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9306", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9307", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9308", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9309", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9310", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9311", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9312", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9313", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9314", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9315", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9316", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9317", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9318", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9319", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9320", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9321", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9322", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9323", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9324", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9325", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9326", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9327", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9328", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9329", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9330", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9331", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9332", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9333", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9334", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9335", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9336", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9337", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9338", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9339", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9340", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9341", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9342", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9343", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9344", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9345", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9346", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9347", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9348", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9349", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9350", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9351", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9352", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9353", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9354", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9355", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9356", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9357", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9358", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9359", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9360", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9361", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9362", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9363", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9364", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9365", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9366", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9367", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9368", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9369", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9370", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9371", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9372", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9373", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9374", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9375", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9376", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9377", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9378", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9379", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9380", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9381", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9382", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9383", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9384", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9385", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9386", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9387", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9388", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("9389", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("9390", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9391", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9392", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9393", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9394", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9395", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9396", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9397", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9398", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("9399", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("9400", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9401", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9402", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9403", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9404", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9405", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9406", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9407", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9408", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9409", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9410", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9411", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9412", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9413", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9414", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9415", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9416", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9417", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9418", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9419", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9420", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9421", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9422", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9423", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9424", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9425", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9426", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9427", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9428", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9429", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9430", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9431", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9432", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9433", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9434", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9435", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9436", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9437", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9438", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9439", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9440", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9441", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9442", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9443", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9444", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9445", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9446", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9447", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9448", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9449", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9450", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9451", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9452", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9453", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9454", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9455", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9456", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9457", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9458", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9459", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9460", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9461", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9462", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9463", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9464", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9465", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9466", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9467", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9468", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9469", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9470", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9471", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9472", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9473", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9474", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9475", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9476", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9477", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9478", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9479", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9480", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9481", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9482", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9483", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9484", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9485", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9486", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9487", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9488", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("9489", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("9490", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9491", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9492", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9493", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9494", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9495", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9496", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9497", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9498", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("9499", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("9500", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9501", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9502", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9503", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9504", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9505", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9506", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9507", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9508", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9509", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9510", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9511", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9512", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9513", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9514", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9515", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9516", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9517", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9518", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9519", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9520", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9521", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9522", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9523", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9524", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9525", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9526", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9527", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9528", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9529", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9530", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9531", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9532", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9533", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9534", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9535", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9536", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9537", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9538", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9539", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9540", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9541", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9542", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9543", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9544", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9545", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9546", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9547", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9548", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9549", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9550", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9551", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9552", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9553", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9554", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9555", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9556", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9557", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9558", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9559", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9560", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9561", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9562", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9563", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9564", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9565", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9566", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9567", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9568", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9569", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9570", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9571", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9572", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9573", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9574", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9575", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9576", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9577", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9578", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9579", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9580", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9581", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9582", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9583", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9584", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9585", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9586", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9587", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9588", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("9589", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("9590", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9591", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9592", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9593", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9594", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9595", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9596", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9597", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9598", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("9599", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("9600", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9601", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9602", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9603", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9604", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9605", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9606", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9607", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9608", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9609", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9610", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9611", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9612", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9613", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9614", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9615", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9616", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9617", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9618", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9619", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9620", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9621", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9622", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9623", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9624", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9625", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9626", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9627", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9628", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9629", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9630", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9631", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9632", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9633", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9634", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9635", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9636", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9637", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9638", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9639", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9640", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9641", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9642", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9643", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9644", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9645", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9646", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9647", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9648", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9649", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9650", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9651", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9652", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9653", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9654", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9655", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9656", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9657", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9658", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9659", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9660", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9661", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9662", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9663", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9664", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9665", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9666", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9667", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9668", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9669", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9670", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9671", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9672", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9673", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9674", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9675", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9676", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9677", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9678", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9679", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9680", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9681", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9682", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9683", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9684", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9685", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9686", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9687", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9688", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("9689", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("9690", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9691", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9692", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9693", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9694", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9695", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9696", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9697", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9698", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("9699", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("9700", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9701", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9702", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9703", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9704", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9705", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9706", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9707", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9708", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9709", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9710", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9711", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9712", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9713", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9714", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9715", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9716", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9717", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9718", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9719", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9720", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9721", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9722", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9723", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9724", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9725", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9726", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9727", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9728", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9729", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9730", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9731", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9732", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9733", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9734", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9735", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9736", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9737", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9738", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9739", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9740", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9741", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9742", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9743", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9744", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9745", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9746", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9747", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9748", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9749", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9750", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9751", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9752", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9753", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9754", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9755", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9756", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9757", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9758", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9759", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9760", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9761", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9762", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9763", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9764", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9765", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9766", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9767", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9768", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9769", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9770", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9771", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9772", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9773", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9774", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9775", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9776", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9777", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9778", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9779", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9780", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9781", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9782", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9783", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9784", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9785", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9786", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9787", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9788", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("9789", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("9790", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9791", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9792", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9793", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9794", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9795", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9796", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9797", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9798", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("9799", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("9800", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9801", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9802", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9803", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9804", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9805", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9806", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9807", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9808", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9809", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9810", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9811", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9812", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9813", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9814", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9815", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9816", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9817", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9818", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9819", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9820", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9821", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9822", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9823", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9824", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9825", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9826", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9827", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9828", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9829", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9830", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9831", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9832", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9833", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9834", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9835", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9836", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9837", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9838", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9839", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9840", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9841", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9842", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9843", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9844", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9845", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9846", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9847", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9848", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9849", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9850", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9851", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9852", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9853", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9854", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9855", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9856", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9857", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9858", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9859", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9860", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9861", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9862", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9863", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9864", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9865", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9866", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9867", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9868", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9869", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9870", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9871", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9872", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9873", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9874", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9875", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9876", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9877", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9878", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9879", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9880", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9881", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9882", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9883", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9884", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9885", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9886", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9887", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9888", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("9889", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("9890", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9891", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9892", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9893", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9894", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9895", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9896", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9897", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9898", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("9899", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("9900", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9901", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9902", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9903", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9904", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9905", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9906", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9907", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9908", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9909", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9910", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9911", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9912", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9913", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9914", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9915", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9916", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9917", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9918", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9919", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9920", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9921", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9922", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9923", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9924", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9925", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9926", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9927", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9928", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9929", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9930", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9931", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9932", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9933", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9934", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9935", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9936", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9937", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9938", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9939", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9940", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9941", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9942", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9943", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9944", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9945", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9946", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9947", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9948", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9949", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9950", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9951", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9952", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9953", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9954", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9955", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9956", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9957", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9958", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9959", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9960", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9961", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9962", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9963", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9964", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9965", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9966", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9967", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9968", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9969", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9970", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9971", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9972", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9973", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9974", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9975", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9976", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9977", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL"),
+        ("9978", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9979", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000008"),
+        ("9980", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9981", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9982", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9983", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9984", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9985", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9986", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9987", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9988", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("9989", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("9990", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9991", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9992", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9993", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9994", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9995", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9996", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9997", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000080"),
+        ("9998", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("9999", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00000088"),
+        ("10000", "0x00010000"),
+        ("10001", "FILE_ATTRIBUTE_READONLY|0x00010000"),
+        ("10002", "FILE_ATTRIBUTE_HIDDEN|0x00010000"),
+        ("10003", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|0x00010000"),
+        ("10004", "FILE_ATTRIBUTE_SYSTEM|0x00010000"),
+        ("10005", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|0x00010000"),
+        ("10006", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|0x00010000"),
+        ("10007", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|0x00010000"),
+        ("10008", "0x00010008"),
+        ("10009", "FILE_ATTRIBUTE_READONLY|0x00010008"),
+        ("10010", "FILE_ATTRIBUTE_DIRECTORY|0x00010000"),
+        ("10011", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|0x00010000"),
+        ("10012", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|0x00010000"),
+        ("10013", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|0x00010000"),
+        ("10014", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|0x00010000"),
+        ("10015", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|0x00010000"),
+        ("10016", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|0x00010000"),
+        ("10017", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|0x00010000"),
+        ("10018", "FILE_ATTRIBUTE_DIRECTORY|0x00010008"),
+        ("10019", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|0x00010008"),
+        ("10020", "FILE_ATTRIBUTE_ARCHIVE|0x00010000"),
+        ("10021", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|0x00010000"),
+        ("10022", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|0x00010000"),
+        ("10023", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|0x00010000"),
+        ("10024", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|0x00010000"),
+        ("10025", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|0x00010000"),
+        ("10026", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|0x00010000"),
+        ("10027", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|0x00010000"),
+        ("10028", "FILE_ATTRIBUTE_ARCHIVE|0x00010008"),
+        ("10029", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|0x00010008"),
+        ("10030", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|0x00010000"),
+        ("10031", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|0x00010000"),
+        ("10032", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|0x00010000"),
+        ("10033", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|0x00010000"),
+        ("10034", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|0x00010000"),
+        ("10035", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|0x00010000"),
+        ("10036", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|0x00010000"),
+        ("10037", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|0x00010000"),
+        ("10038", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|0x00010008"),
+        ("10039", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|0x00010008"),
+        ("10040", "FILE_ATTRIBUTE_DEVICE|0x00010000"),
+        ("10041", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|0x00010000"),
+        ("10042", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|0x00010000"),
+        ("10043", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|0x00010000"),
+        ("10044", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|0x00010000"),
+        ("10045", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|0x00010000"),
+        ("10046", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|0x00010000"),
+        ("10047", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|0x00010000"),
+        ("10048", "FILE_ATTRIBUTE_DEVICE|0x00010008"),
+        ("10049", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|0x00010008"),
+        ("10050", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|0x00010000"),
+        ("10051", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|0x00010000"),
+        ("10052", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|0x00010000"),
+        ("10053", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|0x00010000"),
+        ("10054", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|0x00010000"),
+        ("10055", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|0x00010000"),
+        ("10056", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|0x00010000"),
+        ("10057", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|0x00010000"),
+        ("10058", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|0x00010008"),
+        ("10059", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|0x00010008"),
+        ("10060", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00010000"),
+        ("10061", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00010000"),
+        ("10062", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00010000"),
+        ("10063", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00010000"),
+        ("10064", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00010000"),
+        ("10065", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00010000"),
+        ("10066", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00010000"),
+        ("10067", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00010000"),
+        ("10068", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00010008"),
+        ("10069", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00010008"),
+        ("10070", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00010000"),
+        ("10071", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00010000"),
+        ("10072", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00010000"),
+        ("10073", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00010000"),
+        ("10074", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00010000"),
+        ("10075", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00010000"),
+        ("10076", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00010000"),
+        ("10077", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00010000"),
+        ("10078", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00010008"),
+        ("10079", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00010008"),
+        ("10080", "0x00010080"),
+        ("10081", "FILE_ATTRIBUTE_READONLY|0x00010080"),
+        ("10082", "FILE_ATTRIBUTE_HIDDEN|0x00010080"),
+        ("10083", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|0x00010080"),
+        ("10084", "FILE_ATTRIBUTE_SYSTEM|0x00010080"),
+        ("10085", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|0x00010080"),
+        ("10086", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|0x00010080"),
+        ("10087", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|0x00010080"),
+        ("10088", "0x00010088"),
+        ("10089", "FILE_ATTRIBUTE_READONLY|0x00010088"),
+        ("10090", "FILE_ATTRIBUTE_DIRECTORY|0x00010080"),
+        ("10091", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|0x00010080"),
+        ("10092", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|0x00010080"),
+        ("10093", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|0x00010080"),
+        ("10094", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|0x00010080"),
+        ("10095", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|0x00010080"),
+        ("10096", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|0x00010080"),
+        ("10097", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|0x00010080"),
+        ("10098", "FILE_ATTRIBUTE_DIRECTORY|0x00010088"),
+        ("10099", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|0x00010088"),
+        ("10100", "FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10101", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10102", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10103", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10104", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10105", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10106", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10107", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10108", "FILE_ATTRIBUTE_TEMPORARY|0x00010008"),
+        ("10109", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|0x00010008"),
+        ("10110", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10111", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10112", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10113", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10114", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10115", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10116", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10117", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10118", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00010008"),
+        ("10119", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00010008"),
+        ("10120", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10121", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10122", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10123", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10124", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10125", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10126", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10127", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10128", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00010008"),
+        ("10129", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00010008"),
+        ("10130", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10131", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10132", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10133", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10134", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10135", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10136", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10137", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10138", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00010008"),
+        ("10139", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00010008"),
+        ("10140", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10141", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10142", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10143", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10144", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10145", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10146", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10147", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10148", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00010008"),
+        ("10149", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00010008"),
+        ("10150", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10151", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10152", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10153", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10154", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10155", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10156", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10157", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10158", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00010008"),
+        ("10159", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00010008"),
+        ("10160", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10161", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10162", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10163", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10164", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10165", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10166", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10167", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10168", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00010008"),
+        ("10169", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00010008"),
+        ("10170", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10171", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10172", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10173", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10174", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10175", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10176", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10177", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00010000"),
+        ("10178", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00010008"),
+        ("10179", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00010008"),
+        ("10180", "FILE_ATTRIBUTE_TEMPORARY|0x00010080"),
+        ("10181", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|0x00010080"),
+        ("10182", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|0x00010080"),
+        ("10183", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|0x00010080"),
+        ("10184", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|0x00010080"),
+        ("10185", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|0x00010080"),
+        ("10186", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|0x00010080"),
+        ("10187", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|0x00010080"),
+        ("10188", "FILE_ATTRIBUTE_TEMPORARY|0x00010088"),
+        ("10189", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|0x00010088"),
+        ("10190", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00010080"),
+        ("10191", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00010080"),
+        ("10192", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00010080"),
+        ("10193", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00010080"),
+        ("10194", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00010080"),
+        ("10195", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00010080"),
+        ("10196", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00010080"),
+        ("10197", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00010080"),
+        ("10198", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00010088"),
+        ("10199", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00010088"),
+        ("10200", "FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10201", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10202", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10203", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10204", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10205", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10206", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10207", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10208", "FILE_ATTRIBUTE_SPARSE_FILE|0x00010008"),
+        ("10209", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010008"),
+        ("10210", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10211", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10212", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10213", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10214", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10215", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10216", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10217", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10218", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010008"),
+        ("10219", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010008"),
+        ("10220", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10221", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10222", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10223", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10224", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10225", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10226", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10227", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10228", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010008"),
+        ("10229", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010008"),
+        ("10230", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10231", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10232", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10233", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10234", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10235", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10236", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10237", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10238", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010008"),
+        ("10239", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010008"),
+        ("10240", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10241", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10242", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10243", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10244", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10245", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10246", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10247", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10248", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010008"),
+        ("10249", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010008"),
+        ("10250", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10251", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10252", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10253", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10254", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10255", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10256", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10257", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10258", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010008"),
+        ("10259", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010008"),
+        ("10260", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10261", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10262", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10263", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10264", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10265", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10266", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10267", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10268", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010008"),
+        ("10269", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010008"),
+        ("10270", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10271", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10272", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10273", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10274", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10275", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10276", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10277", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10278", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010008"),
+        ("10279", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00010008"),
+        ("10280", "FILE_ATTRIBUTE_SPARSE_FILE|0x00010080"),
+        ("10281", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010080"),
+        ("10282", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|0x00010080"),
+        ("10283", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|0x00010080"),
+        ("10284", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|0x00010080"),
+        ("10285", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|0x00010080"),
+        ("10286", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|0x00010080"),
+        ("10287", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|0x00010080"),
+        ("10288", "FILE_ATTRIBUTE_SPARSE_FILE|0x00010088"),
+        ("10289", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010088"),
+        ("10290", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010080"),
+        ("10291", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010080"),
+        ("10292", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010080"),
+        ("10293", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010080"),
+        ("10294", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010080"),
+        ("10295", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010080"),
+        ("10296", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010080"),
+        ("10297", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010080"),
+        ("10298", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010088"),
+        ("10299", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010088"),
+        ("10300", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10301", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10302", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10303", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10304", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10305", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10306", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10307", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10308", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010008"),
+        ("10309", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010008"),
+        ("10310", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10311", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10312", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10313", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10314", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10315", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10316", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10317", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10318", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010008"),
+        ("10319", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010008"),
+        ("10320", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10321", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10322", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10323", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10324", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10325", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10326", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10327", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10328", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010008"),
+        ("10329", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010008"),
+        ("10330", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10331", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10332", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10333", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10334", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10335", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10336", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10337", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10338", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010008"),
+        ("10339", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010008"),
+        ("10340", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10341", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10342", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10343", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10344", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10345", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10346", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10347", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10348", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010008"),
+        ("10349", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010008"),
+        ("10350", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10351", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10352", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10353", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10354", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10355", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10356", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10357", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10358", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010008"),
+        ("10359", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010008"),
+        ("10360", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10361", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10362", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10363", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10364", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10365", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10366", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10367", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10368", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010008"),
+        ("10369", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010008"),
+        ("10370", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10371", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10372", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10373", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10374", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10375", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10376", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10377", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010000"),
+        ("10378", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010008"),
+        ("10379", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010008"),
+        ("10380", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010080"),
+        ("10381", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010080"),
+        ("10382", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010080"),
+        ("10383", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010080"),
+        ("10384", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010080"),
+        ("10385", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010080"),
+        ("10386", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010080"),
+        ("10387", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010080"),
+        ("10388", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010088"),
+        ("10389", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010088"),
+        ("10390", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010080"),
+        ("10391", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010080"),
+        ("10392", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010080"),
+        ("10393", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010080"),
+        ("10394", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010080"),
+        ("10395", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010080"),
+        ("10396", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010080"),
+        ("10397", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010080"),
+        ("10398", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010088"),
+        ("10399", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00010088"),
+        ("10400", "FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10401", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10402", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10403", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10404", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10405", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10406", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10407", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10408", "FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10409", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10410", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10411", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10412", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10413", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10414", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10415", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10416", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10417", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10418", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10419", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10420", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10421", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10422", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10423", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10424", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10425", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10426", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10427", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10428", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10429", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10430", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10431", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10432", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10433", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10434", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10435", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10436", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10437", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10438", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10439", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10440", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10441", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10442", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10443", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10444", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10445", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10446", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10447", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10448", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10449", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10450", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10451", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10452", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10453", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10454", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10455", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10456", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10457", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10458", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10459", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10460", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10461", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10462", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10463", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10464", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10465", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10466", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10467", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10468", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10469", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10470", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10471", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10472", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10473", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10474", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10475", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10476", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10477", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10478", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10479", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10480", "FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10481", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10482", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10483", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10484", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10485", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10486", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10487", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10488", "FILE_ATTRIBUTE_REPARSE_POINT|0x00010088"),
+        ("10489", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010088"),
+        ("10490", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10491", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10492", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10493", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10494", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10495", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10496", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10497", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10498", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010088"),
+        ("10499", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010088"),
+        ("10500", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10501", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10502", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10503", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10504", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10505", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10506", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10507", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10508", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10509", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10510", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10511", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10512", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10513", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10514", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10515", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10516", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10517", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10518", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10519", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10520", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10521", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10522", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10523", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10524", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10525", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10526", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10527", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10528", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10529", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10530", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10531", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10532", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10533", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10534", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10535", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10536", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10537", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10538", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10539", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10540", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10541", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10542", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10543", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10544", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10545", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10546", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10547", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10548", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10549", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10550", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10551", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10552", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10553", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10554", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10555", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10556", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10557", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10558", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10559", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10560", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10561", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10562", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10563", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10564", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10565", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10566", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10567", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10568", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10569", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10570", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10571", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10572", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10573", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10574", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10575", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10576", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10577", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10578", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10579", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10580", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10581", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10582", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10583", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10584", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10585", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10586", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10587", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10588", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010088"),
+        ("10589", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010088"),
+        ("10590", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10591", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10592", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10593", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10594", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10595", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10596", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10597", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10598", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010088"),
+        ("10599", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00010088"),
+        ("10600", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10601", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10602", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10603", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10604", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10605", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10606", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10607", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10608", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10609", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10610", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10611", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10612", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10613", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10614", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10615", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10616", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10617", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10618", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10619", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10620", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10621", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10622", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10623", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10624", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10625", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10626", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10627", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10628", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10629", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10630", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10631", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10632", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10633", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10634", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10635", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10636", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10637", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10638", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10639", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10640", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10641", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10642", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10643", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10644", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10645", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10646", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10647", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10648", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10649", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10650", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10651", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10652", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10653", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10654", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10655", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10656", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10657", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10658", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10659", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10660", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10661", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10662", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10663", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10664", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10665", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10666", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10667", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10668", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10669", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10670", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10671", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10672", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10673", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10674", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10675", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10676", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10677", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10678", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10679", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10680", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10681", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10682", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10683", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10684", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10685", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10686", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10687", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10688", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010088"),
+        ("10689", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010088"),
+        ("10690", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10691", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10692", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10693", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10694", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10695", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10696", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10697", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10698", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010088"),
+        ("10699", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010088"),
+        ("10700", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10701", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10702", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10703", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10704", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10705", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10706", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10707", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10708", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10709", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10710", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10711", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10712", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10713", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10714", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10715", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10716", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10717", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10718", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10719", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10720", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10721", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10722", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10723", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10724", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10725", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10726", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10727", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10728", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10729", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10730", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10731", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10732", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10733", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10734", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10735", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10736", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10737", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10738", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10739", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10740", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10741", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10742", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10743", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10744", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10745", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10746", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10747", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10748", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10749", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10750", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10751", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10752", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10753", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10754", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10755", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10756", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10757", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10758", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10759", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10760", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10761", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10762", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10763", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10764", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10765", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10766", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10767", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10768", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10769", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10770", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10771", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10772", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10773", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10774", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10775", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10776", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10777", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010000"),
+        ("10778", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10779", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010008"),
+        ("10780", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10781", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10782", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10783", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10784", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10785", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10786", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10787", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10788", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010088"),
+        ("10789", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010088"),
+        ("10790", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10791", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10792", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10793", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10794", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10795", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10796", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10797", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010080"),
+        ("10798", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010088"),
+        ("10799", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00010088"),
+        ("10800", "FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10801", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10802", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10803", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10804", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10805", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10806", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10807", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10808", "FILE_ATTRIBUTE_COMPRESSED|0x00010008"),
+        ("10809", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|0x00010008"),
+        ("10810", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10811", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10812", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10813", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10814", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10815", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10816", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10817", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10818", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00010008"),
+        ("10819", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00010008"),
+        ("10820", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10821", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10822", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10823", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10824", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10825", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10826", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10827", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10828", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00010008"),
+        ("10829", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00010008"),
+        ("10830", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10831", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10832", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10833", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10834", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10835", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10836", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10837", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10838", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00010008"),
+        ("10839", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00010008"),
+        ("10840", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10841", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10842", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10843", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10844", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10845", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10846", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10847", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10848", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00010008"),
+        ("10849", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00010008"),
+        ("10850", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10851", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10852", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10853", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10854", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10855", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10856", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10857", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10858", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00010008"),
+        ("10859", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00010008"),
+        ("10860", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10861", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10862", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10863", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10864", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10865", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10866", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10867", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10868", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00010008"),
+        ("10869", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00010008"),
+        ("10870", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10871", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10872", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10873", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10874", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10875", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10876", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10877", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10878", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00010008"),
+        ("10879", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00010008"),
+        ("10880", "FILE_ATTRIBUTE_COMPRESSED|0x00010080"),
+        ("10881", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|0x00010080"),
+        ("10882", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|0x00010080"),
+        ("10883", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|0x00010080"),
+        ("10884", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|0x00010080"),
+        ("10885", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|0x00010080"),
+        ("10886", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|0x00010080"),
+        ("10887", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|0x00010080"),
+        ("10888", "FILE_ATTRIBUTE_COMPRESSED|0x00010088"),
+        ("10889", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|0x00010088"),
+        ("10890", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00010080"),
+        ("10891", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00010080"),
+        ("10892", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00010080"),
+        ("10893", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00010080"),
+        ("10894", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00010080"),
+        ("10895", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00010080"),
+        ("10896", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00010080"),
+        ("10897", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00010080"),
+        ("10898", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00010088"),
+        ("10899", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00010088"),
+        ("10900", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10901", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10902", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10903", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10904", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10905", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10906", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10907", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10908", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010008"),
+        ("10909", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010008"),
+        ("10910", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10911", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10912", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10913", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10914", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10915", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10916", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10917", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10918", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010008"),
+        ("10919", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010008"),
+        ("10920", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10921", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10922", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10923", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10924", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10925", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10926", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10927", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10928", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010008"),
+        ("10929", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010008"),
+        ("10930", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10931", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10932", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10933", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10934", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10935", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10936", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10937", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10938", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010008"),
+        ("10939", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010008"),
+        ("10940", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10941", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10942", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10943", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10944", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10945", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10946", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10947", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10948", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010008"),
+        ("10949", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010008"),
+        ("10950", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10951", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10952", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10953", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10954", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10955", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10956", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10957", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10958", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010008"),
+        ("10959", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010008"),
+        ("10960", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10961", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10962", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10963", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10964", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10965", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10966", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10967", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10968", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010008"),
+        ("10969", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010008"),
+        ("10970", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10971", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10972", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10973", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10974", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10975", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10976", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10977", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010000"),
+        ("10978", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010008"),
+        ("10979", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010008"),
+        ("10980", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010080"),
+        ("10981", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010080"),
+        ("10982", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010080"),
+        ("10983", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010080"),
+        ("10984", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010080"),
+        ("10985", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010080"),
+        ("10986", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010080"),
+        ("10987", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010080"),
+        ("10988", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010088"),
+        ("10989", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010088"),
+        ("10990", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010080"),
+        ("10991", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010080"),
+        ("10992", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010080"),
+        ("10993", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010080"),
+        ("10994", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010080"),
+        ("10995", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010080"),
+        ("10996", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010080"),
+        ("10997", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010080"),
+        ("10998", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010088"),
+        ("10999", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00010088"),
+        ("11000", "FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11001", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11002", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11003", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11004", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11005", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11006", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11007", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11008", "FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11009", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11010", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11011", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11012", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11013", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11014", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11015", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11016", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11017", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11018", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11019", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11020", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11021", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11022", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11023", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11024", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11025", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11026", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11027", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11028", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11029", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11030", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11031", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11032", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11033", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11034", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11035", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11036", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11037", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11038", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11039", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11040", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11041", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11042", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11043", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11044", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11045", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11046", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11047", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11048", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11049", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11050", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11051", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11052", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11053", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11054", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11055", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11056", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11057", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11058", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11059", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11060", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11061", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11062", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11063", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11064", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11065", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11066", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11067", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11068", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11069", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11070", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11071", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11072", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11073", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11074", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11075", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11076", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11077", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11078", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11079", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11080", "FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11081", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11082", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11083", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11084", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11085", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11086", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11087", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11088", "FILE_ATTRIBUTE_OFFLINE|0x00010088"),
+        ("11089", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|0x00010088"),
+        ("11090", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11091", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11092", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11093", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11094", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11095", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11096", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11097", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11098", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00010088"),
+        ("11099", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00010088"),
+        ("11100", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11101", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11102", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11103", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11104", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11105", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11106", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11107", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11108", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11109", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11110", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11111", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11112", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11113", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11114", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11115", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11116", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11117", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11118", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11119", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11120", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11121", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11122", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11123", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11124", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11125", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11126", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11127", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11128", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11129", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11130", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11131", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11132", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11133", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11134", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11135", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11136", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11137", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11138", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11139", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11140", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11141", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11142", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11143", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11144", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11145", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11146", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11147", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11148", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11149", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11150", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11151", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11152", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11153", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11154", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11155", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11156", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11157", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11158", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11159", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11160", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11161", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11162", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11163", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11164", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11165", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11166", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11167", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11168", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11169", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11170", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11171", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11172", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11173", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11174", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11175", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11176", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11177", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11178", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11179", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11180", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11181", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11182", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11183", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11184", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11185", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11186", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11187", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11188", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010088"),
+        ("11189", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010088"),
+        ("11190", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11191", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11192", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11193", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11194", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11195", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11196", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11197", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11198", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010088"),
+        ("11199", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00010088"),
+        ("11200", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11201", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11202", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11203", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11204", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11205", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11206", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11207", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11208", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11209", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11210", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11211", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11212", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11213", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11214", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11215", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11216", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11217", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11218", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11219", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11220", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11221", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11222", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11223", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11224", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11225", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11226", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11227", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11228", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11229", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11230", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11231", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11232", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11233", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11234", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11235", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11236", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11237", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11238", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11239", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11240", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11241", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11242", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11243", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11244", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11245", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11246", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11247", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11248", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11249", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11250", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11251", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11252", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11253", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11254", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11255", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11256", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11257", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11258", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11259", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11260", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11261", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11262", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11263", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11264", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11265", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11266", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11267", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11268", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11269", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11270", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11271", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11272", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11273", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11274", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11275", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11276", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11277", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11278", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11279", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11280", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11281", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11282", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11283", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11284", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11285", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11286", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11287", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11288", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010088"),
+        ("11289", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010088"),
+        ("11290", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11291", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11292", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11293", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11294", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11295", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11296", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11297", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11298", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010088"),
+        ("11299", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010088"),
+        ("11300", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11301", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11302", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11303", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11304", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11305", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11306", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11307", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11308", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11309", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11310", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11311", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11312", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11313", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11314", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11315", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11316", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11317", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11318", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11319", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11320", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11321", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11322", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11323", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11324", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11325", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11326", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11327", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11328", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11329", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11330", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11331", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11332", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11333", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11334", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11335", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11336", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11337", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11338", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11339", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11340", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11341", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11342", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11343", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11344", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11345", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11346", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11347", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11348", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11349", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11350", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11351", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11352", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11353", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11354", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11355", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11356", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11357", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11358", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11359", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11360", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11361", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11362", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11363", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11364", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11365", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11366", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11367", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11368", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11369", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11370", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11371", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11372", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11373", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11374", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11375", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11376", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11377", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11378", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11379", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11380", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11381", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11382", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11383", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11384", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11385", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11386", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11387", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11388", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010088"),
+        ("11389", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010088"),
+        ("11390", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11391", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11392", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11393", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11394", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11395", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11396", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11397", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11398", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010088"),
+        ("11399", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00010088"),
+        ("11400", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11401", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11402", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11403", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11404", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11405", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11406", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11407", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11408", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11409", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11410", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11411", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11412", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11413", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11414", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11415", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11416", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11417", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11418", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11419", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11420", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11421", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11422", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11423", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11424", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11425", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11426", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11427", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11428", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11429", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11430", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11431", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11432", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11433", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11434", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11435", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11436", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11437", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11438", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11439", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11440", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11441", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11442", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11443", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11444", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11445", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11446", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11447", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11448", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11449", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11450", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11451", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11452", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11453", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11454", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11455", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11456", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11457", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11458", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11459", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11460", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11461", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11462", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11463", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11464", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11465", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11466", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11467", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11468", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11469", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11470", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11471", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11472", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11473", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11474", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11475", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11476", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11477", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11478", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11479", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11480", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11481", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11482", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11483", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11484", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11485", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11486", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11487", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11488", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010088"),
+        ("11489", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010088"),
+        ("11490", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11491", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11492", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11493", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11494", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11495", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11496", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11497", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11498", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010088"),
+        ("11499", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010088"),
+        ("11500", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11501", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11502", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11503", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11504", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11505", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11506", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11507", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11508", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11509", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11510", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11511", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11512", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11513", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11514", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11515", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11516", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11517", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11518", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11519", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11520", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11521", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11522", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11523", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11524", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11525", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11526", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11527", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11528", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11529", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11530", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11531", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11532", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11533", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11534", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11535", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11536", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11537", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11538", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11539", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11540", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11541", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11542", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11543", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11544", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11545", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11546", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11547", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11548", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11549", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11550", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11551", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11552", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11553", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11554", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11555", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11556", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11557", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11558", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11559", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11560", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11561", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11562", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11563", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11564", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11565", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11566", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11567", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11568", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11569", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11570", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11571", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11572", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11573", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11574", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11575", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11576", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11577", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11578", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11579", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11580", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11581", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11582", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11583", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11584", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11585", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11586", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11587", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11588", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010088"),
+        ("11589", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010088"),
+        ("11590", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11591", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11592", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11593", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11594", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11595", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11596", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11597", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11598", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010088"),
+        ("11599", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010088"),
+        ("11600", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11601", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11602", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11603", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11604", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11605", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11606", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11607", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11608", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11609", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11610", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11611", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11612", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11613", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11614", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11615", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11616", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11617", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11618", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11619", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11620", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11621", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11622", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11623", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11624", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11625", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11626", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11627", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11628", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11629", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11630", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11631", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11632", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11633", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11634", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11635", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11636", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11637", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11638", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11639", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11640", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11641", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11642", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11643", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11644", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11645", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11646", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11647", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11648", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11649", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11650", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11651", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11652", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11653", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11654", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11655", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11656", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11657", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11658", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11659", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11660", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11661", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11662", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11663", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11664", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11665", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11666", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11667", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11668", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11669", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11670", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11671", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11672", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11673", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11674", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11675", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11676", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11677", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11678", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11679", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11680", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11681", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11682", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11683", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11684", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11685", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11686", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11687", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11688", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010088"),
+        ("11689", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010088"),
+        ("11690", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11691", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11692", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11693", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11694", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11695", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11696", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11697", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11698", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010088"),
+        ("11699", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010088"),
+        ("11700", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11701", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11702", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11703", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11704", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11705", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11706", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11707", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11708", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11709", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11710", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11711", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11712", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11713", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11714", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11715", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11716", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11717", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11718", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11719", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11720", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11721", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11722", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11723", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11724", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11725", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11726", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11727", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11728", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11729", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11730", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11731", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11732", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11733", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11734", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11735", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11736", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11737", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11738", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11739", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11740", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11741", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11742", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11743", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11744", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11745", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11746", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11747", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11748", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11749", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11750", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11751", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11752", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11753", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11754", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11755", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11756", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11757", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11758", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11759", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11760", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11761", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11762", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11763", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11764", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11765", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11766", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11767", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11768", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11769", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11770", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11771", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11772", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11773", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11774", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11775", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11776", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11777", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11778", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11779", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11780", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11781", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11782", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11783", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11784", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11785", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11786", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11787", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11788", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010088"),
+        ("11789", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010088"),
+        ("11790", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11791", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11792", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11793", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11794", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11795", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11796", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11797", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11798", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010088"),
+        ("11799", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00010088"),
+        ("11800", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11801", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11802", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11803", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11804", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11805", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11806", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11807", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11808", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11809", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11810", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11811", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11812", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11813", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11814", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11815", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11816", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11817", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11818", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11819", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11820", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11821", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11822", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11823", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11824", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11825", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11826", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11827", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11828", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11829", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11830", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11831", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11832", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11833", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11834", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11835", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11836", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11837", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11838", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11839", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11840", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11841", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11842", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11843", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11844", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11845", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11846", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11847", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11848", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11849", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11850", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11851", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11852", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11853", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11854", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11855", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11856", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11857", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11858", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11859", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11860", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11861", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11862", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11863", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11864", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11865", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11866", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11867", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11868", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11869", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11870", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11871", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11872", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11873", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11874", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11875", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11876", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11877", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11878", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11879", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11880", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11881", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11882", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11883", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11884", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11885", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11886", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11887", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11888", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010088"),
+        ("11889", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010088"),
+        ("11890", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11891", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11892", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11893", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11894", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11895", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11896", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11897", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11898", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010088"),
+        ("11899", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010088"),
+        ("11900", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11901", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11902", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11903", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11904", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11905", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11906", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11907", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11908", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11909", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11910", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11911", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11912", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11913", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11914", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11915", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11916", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11917", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11918", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11919", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11920", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11921", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11922", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11923", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11924", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11925", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11926", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11927", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11928", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11929", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11930", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11931", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11932", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11933", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11934", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11935", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11936", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11937", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11938", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11939", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11940", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11941", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11942", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11943", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11944", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11945", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11946", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11947", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11948", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11949", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11950", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11951", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11952", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11953", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11954", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11955", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11956", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11957", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11958", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11959", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11960", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11961", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11962", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11963", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11964", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11965", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11966", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11967", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11968", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11969", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11970", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11971", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11972", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11973", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11974", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11975", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11976", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11977", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010000"),
+        ("11978", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11979", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010008"),
+        ("11980", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11981", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11982", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11983", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11984", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11985", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11986", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11987", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11988", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010088"),
+        ("11989", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010088"),
+        ("11990", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11991", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11992", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11993", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11994", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11995", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11996", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11997", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010080"),
+        ("11998", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010088"),
+        ("11999", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00010088"),
+        ("12000", "FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12001", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12002", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12003", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12004", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12005", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12006", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12007", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12008", "FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12009", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12010", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12011", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12012", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12013", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12014", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12015", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12016", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12017", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12018", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12019", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12020", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12021", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12022", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12023", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12024", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12025", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12026", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12027", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12028", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12029", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12030", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12031", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12032", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12033", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12034", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12035", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12036", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12037", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12038", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12039", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12040", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12041", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12042", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12043", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12044", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12045", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12046", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12047", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12048", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12049", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12050", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12051", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12052", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12053", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12054", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12055", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12056", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12057", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12058", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12059", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12060", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12061", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12062", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12063", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12064", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12065", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12066", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12067", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12068", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12069", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12070", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12071", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12072", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12073", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12074", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12075", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12076", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12077", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12078", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12079", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12080", "FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12081", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12082", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12083", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12084", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12085", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12086", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12087", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12088", "FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("12089", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("12090", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12091", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12092", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12093", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12094", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12095", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12096", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12097", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12098", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("12099", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("12100", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12101", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12102", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12103", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12104", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12105", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12106", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12107", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12108", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12109", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12110", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12111", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12112", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12113", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12114", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12115", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12116", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12117", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12118", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12119", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12120", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12121", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12122", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12123", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12124", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12125", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12126", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12127", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12128", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12129", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12130", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12131", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12132", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12133", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12134", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12135", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12136", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12137", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12138", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12139", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12140", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12141", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12142", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12143", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12144", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12145", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12146", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12147", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12148", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12149", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12150", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12151", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12152", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12153", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12154", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12155", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12156", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12157", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12158", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12159", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12160", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12161", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12162", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12163", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12164", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12165", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12166", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12167", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12168", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12169", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12170", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12171", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12172", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12173", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12174", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12175", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12176", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12177", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12178", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12179", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12180", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12181", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12182", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12183", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12184", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12185", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12186", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12187", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12188", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("12189", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("12190", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12191", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12192", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12193", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12194", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12195", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12196", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12197", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12198", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("12199", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("12200", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12201", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12202", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12203", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12204", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12205", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12206", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12207", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12208", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12209", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12210", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12211", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12212", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12213", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12214", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12215", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12216", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12217", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12218", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12219", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12220", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12221", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12222", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12223", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12224", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12225", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12226", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12227", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12228", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12229", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12230", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12231", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12232", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12233", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12234", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12235", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12236", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12237", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12238", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12239", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12240", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12241", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12242", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12243", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12244", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12245", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12246", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12247", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12248", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12249", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12250", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12251", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12252", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12253", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12254", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12255", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12256", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12257", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12258", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12259", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12260", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12261", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12262", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12263", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12264", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12265", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12266", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12267", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12268", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12269", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12270", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12271", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12272", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12273", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12274", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12275", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12276", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12277", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12278", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12279", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12280", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12281", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12282", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12283", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12284", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12285", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12286", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12287", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12288", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("12289", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("12290", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12291", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12292", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12293", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12294", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12295", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12296", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12297", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12298", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("12299", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("12300", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12301", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12302", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12303", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12304", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12305", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12306", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12307", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12308", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12309", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12310", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12311", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12312", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12313", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12314", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12315", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12316", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12317", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12318", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12319", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12320", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12321", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12322", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12323", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12324", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12325", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12326", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12327", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12328", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12329", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12330", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12331", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12332", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12333", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12334", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12335", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12336", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12337", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12338", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12339", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12340", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12341", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12342", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12343", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12344", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12345", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12346", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12347", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12348", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12349", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12350", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12351", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12352", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12353", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12354", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12355", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12356", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12357", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12358", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12359", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12360", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12361", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12362", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12363", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12364", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12365", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12366", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12367", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12368", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12369", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12370", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12371", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12372", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12373", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12374", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12375", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12376", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12377", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12378", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12379", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12380", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12381", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12382", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12383", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12384", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12385", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12386", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12387", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12388", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("12389", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("12390", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12391", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12392", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12393", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12394", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12395", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12396", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12397", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12398", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("12399", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("12400", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12401", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12402", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12403", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12404", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12405", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12406", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12407", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12408", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12409", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12410", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12411", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12412", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12413", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12414", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12415", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12416", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12417", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12418", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12419", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12420", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12421", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12422", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12423", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12424", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12425", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12426", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12427", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12428", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12429", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12430", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12431", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12432", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12433", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12434", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12435", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12436", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12437", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12438", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12439", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12440", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12441", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12442", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12443", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12444", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12445", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12446", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12447", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12448", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12449", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12450", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12451", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12452", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12453", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12454", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12455", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12456", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12457", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12458", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12459", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12460", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12461", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12462", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12463", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12464", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12465", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12466", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12467", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12468", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12469", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12470", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12471", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12472", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12473", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12474", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12475", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12476", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12477", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12478", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12479", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12480", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12481", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12482", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12483", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12484", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12485", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12486", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12487", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12488", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("12489", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("12490", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12491", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12492", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12493", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12494", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12495", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12496", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12497", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12498", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("12499", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("12500", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12501", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12502", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12503", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12504", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12505", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12506", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12507", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12508", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12509", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12510", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12511", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12512", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12513", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12514", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12515", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12516", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12517", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12518", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12519", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12520", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12521", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12522", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12523", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12524", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12525", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12526", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12527", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12528", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12529", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12530", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12531", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12532", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12533", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12534", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12535", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12536", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12537", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12538", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12539", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12540", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12541", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12542", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12543", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12544", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12545", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12546", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12547", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12548", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12549", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12550", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12551", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12552", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12553", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12554", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12555", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12556", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12557", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12558", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12559", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12560", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12561", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12562", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12563", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12564", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12565", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12566", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12567", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12568", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12569", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12570", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12571", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12572", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12573", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12574", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12575", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12576", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12577", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12578", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12579", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12580", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12581", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12582", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12583", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12584", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12585", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12586", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12587", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12588", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("12589", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("12590", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12591", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12592", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12593", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12594", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12595", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12596", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12597", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12598", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("12599", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("12600", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12601", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12602", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12603", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12604", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12605", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12606", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12607", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12608", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12609", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12610", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12611", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12612", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12613", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12614", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12615", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12616", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12617", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12618", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12619", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12620", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12621", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12622", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12623", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12624", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12625", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12626", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12627", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12628", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12629", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12630", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12631", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12632", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12633", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12634", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12635", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12636", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12637", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12638", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12639", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12640", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12641", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12642", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12643", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12644", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12645", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12646", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12647", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12648", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12649", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12650", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12651", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12652", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12653", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12654", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12655", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12656", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12657", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12658", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12659", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12660", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12661", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12662", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12663", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12664", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12665", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12666", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12667", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12668", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12669", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12670", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12671", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12672", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12673", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12674", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12675", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12676", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12677", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12678", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12679", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12680", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12681", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12682", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12683", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12684", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12685", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12686", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12687", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12688", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("12689", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("12690", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12691", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12692", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12693", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12694", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12695", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12696", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12697", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12698", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("12699", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("12700", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12701", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12702", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12703", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12704", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12705", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12706", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12707", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12708", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12709", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12710", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12711", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12712", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12713", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12714", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12715", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12716", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12717", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12718", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12719", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12720", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12721", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12722", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12723", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12724", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12725", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12726", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12727", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12728", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12729", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12730", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12731", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12732", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12733", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12734", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12735", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12736", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12737", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12738", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12739", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12740", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12741", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12742", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12743", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12744", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12745", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12746", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12747", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12748", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12749", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12750", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12751", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12752", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12753", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12754", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12755", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12756", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12757", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12758", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12759", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12760", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12761", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12762", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12763", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12764", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12765", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12766", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12767", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12768", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12769", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12770", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12771", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12772", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12773", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12774", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12775", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12776", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12777", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12778", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12779", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12780", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12781", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12782", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12783", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12784", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12785", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12786", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12787", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12788", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("12789", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("12790", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12791", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12792", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12793", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12794", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12795", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12796", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12797", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12798", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("12799", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("12800", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12801", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12802", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12803", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12804", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12805", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12806", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12807", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12808", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12809", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12810", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12811", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12812", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12813", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12814", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12815", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12816", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12817", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12818", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12819", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12820", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12821", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12822", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12823", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12824", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12825", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12826", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12827", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12828", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12829", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12830", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12831", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12832", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12833", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12834", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12835", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12836", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12837", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12838", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12839", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12840", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12841", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12842", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12843", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12844", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12845", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12846", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12847", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12848", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12849", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12850", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12851", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12852", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12853", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12854", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12855", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12856", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12857", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12858", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12859", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12860", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12861", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12862", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12863", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12864", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12865", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12866", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12867", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12868", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12869", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12870", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12871", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12872", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12873", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12874", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12875", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12876", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12877", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12878", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12879", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12880", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12881", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12882", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12883", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12884", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12885", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12886", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12887", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12888", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("12889", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("12890", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12891", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12892", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12893", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12894", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12895", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12896", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12897", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12898", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("12899", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("12900", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12901", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12902", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12903", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12904", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12905", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12906", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12907", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12908", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12909", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12910", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12911", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12912", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12913", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12914", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12915", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12916", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12917", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12918", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12919", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12920", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12921", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12922", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12923", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12924", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12925", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12926", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12927", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12928", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12929", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12930", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12931", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12932", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12933", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12934", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12935", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12936", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12937", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12938", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12939", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12940", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12941", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12942", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12943", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12944", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12945", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12946", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12947", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12948", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12949", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12950", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12951", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12952", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12953", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12954", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12955", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12956", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12957", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12958", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12959", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12960", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12961", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12962", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12963", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12964", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12965", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12966", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12967", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12968", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12969", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12970", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12971", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12972", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12973", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12974", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12975", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12976", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12977", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("12978", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12979", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("12980", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12981", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12982", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12983", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12984", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12985", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12986", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12987", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12988", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("12989", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("12990", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12991", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12992", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12993", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12994", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12995", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12996", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12997", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("12998", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("12999", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("13000", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13001", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13002", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13003", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13004", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13005", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13006", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13007", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13008", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13009", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13010", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13011", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13012", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13013", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13014", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13015", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13016", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13017", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13018", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13019", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13020", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13021", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13022", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13023", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13024", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13025", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13026", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13027", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13028", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13029", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13030", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13031", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13032", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13033", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13034", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13035", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13036", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13037", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13038", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13039", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13040", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13041", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13042", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13043", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13044", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13045", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13046", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13047", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13048", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13049", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13050", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13051", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13052", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13053", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13054", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13055", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13056", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13057", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13058", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13059", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13060", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13061", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13062", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13063", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13064", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13065", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13066", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13067", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13068", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13069", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13070", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13071", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13072", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13073", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13074", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13075", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13076", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13077", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13078", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13079", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13080", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13081", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13082", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13083", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13084", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13085", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13086", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13087", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13088", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("13089", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("13090", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13091", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13092", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13093", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13094", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13095", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13096", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13097", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13098", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("13099", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("13100", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13101", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13102", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13103", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13104", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13105", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13106", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13107", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13108", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13109", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13110", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13111", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13112", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13113", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13114", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13115", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13116", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13117", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13118", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13119", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13120", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13121", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13122", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13123", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13124", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13125", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13126", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13127", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13128", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13129", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13130", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13131", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13132", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13133", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13134", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13135", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13136", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13137", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13138", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13139", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13140", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13141", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13142", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13143", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13144", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13145", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13146", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13147", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13148", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13149", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13150", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13151", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13152", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13153", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13154", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13155", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13156", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13157", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13158", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13159", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13160", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13161", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13162", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13163", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13164", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13165", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13166", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13167", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13168", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13169", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13170", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13171", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13172", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13173", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13174", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13175", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13176", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13177", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13178", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13179", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13180", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13181", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13182", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13183", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13184", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13185", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13186", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13187", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13188", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("13189", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("13190", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13191", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13192", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13193", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13194", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13195", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13196", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13197", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13198", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("13199", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("13200", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13201", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13202", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13203", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13204", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13205", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13206", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13207", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13208", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13209", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13210", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13211", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13212", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13213", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13214", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13215", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13216", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13217", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13218", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13219", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13220", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13221", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13222", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13223", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13224", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13225", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13226", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13227", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13228", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13229", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13230", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13231", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13232", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13233", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13234", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13235", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13236", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13237", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13238", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13239", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13240", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13241", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13242", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13243", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13244", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13245", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13246", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13247", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13248", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13249", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13250", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13251", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13252", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13253", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13254", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13255", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13256", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13257", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13258", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13259", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13260", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13261", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13262", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13263", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13264", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13265", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13266", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13267", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13268", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13269", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13270", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13271", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13272", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13273", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13274", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13275", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13276", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13277", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13278", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13279", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13280", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13281", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13282", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13283", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13284", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13285", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13286", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13287", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13288", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("13289", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("13290", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13291", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13292", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13293", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13294", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13295", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13296", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13297", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13298", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("13299", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("13300", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13301", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13302", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13303", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13304", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13305", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13306", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13307", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13308", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13309", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13310", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13311", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13312", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13313", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13314", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13315", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13316", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13317", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13318", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13319", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13320", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13321", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13322", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13323", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13324", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13325", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13326", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13327", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13328", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13329", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13330", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13331", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13332", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13333", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13334", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13335", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13336", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13337", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13338", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13339", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13340", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13341", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13342", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13343", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13344", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13345", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13346", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13347", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13348", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13349", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13350", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13351", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13352", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13353", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13354", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13355", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13356", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13357", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13358", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13359", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13360", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13361", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13362", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13363", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13364", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13365", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13366", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13367", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13368", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13369", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13370", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13371", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13372", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13373", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13374", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13375", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13376", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13377", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13378", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13379", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13380", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13381", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13382", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13383", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13384", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13385", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13386", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13387", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13388", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("13389", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("13390", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13391", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13392", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13393", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13394", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13395", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13396", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13397", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13398", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("13399", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("13400", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13401", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13402", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13403", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13404", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13405", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13406", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13407", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13408", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13409", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13410", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13411", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13412", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13413", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13414", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13415", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13416", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13417", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13418", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13419", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13420", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13421", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13422", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13423", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13424", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13425", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13426", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13427", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13428", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13429", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13430", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13431", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13432", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13433", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13434", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13435", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13436", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13437", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13438", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13439", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13440", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13441", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13442", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13443", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13444", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13445", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13446", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13447", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13448", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13449", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13450", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13451", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13452", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13453", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13454", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13455", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13456", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13457", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13458", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13459", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13460", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13461", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13462", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13463", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13464", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13465", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13466", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13467", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13468", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13469", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13470", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13471", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13472", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13473", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13474", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13475", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13476", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13477", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13478", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13479", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13480", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13481", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13482", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13483", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13484", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13485", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13486", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13487", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13488", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("13489", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("13490", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13491", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13492", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13493", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13494", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13495", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13496", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13497", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13498", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("13499", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("13500", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13501", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13502", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13503", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13504", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13505", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13506", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13507", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13508", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13509", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13510", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13511", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13512", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13513", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13514", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13515", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13516", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13517", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13518", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13519", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13520", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13521", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13522", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13523", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13524", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13525", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13526", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13527", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13528", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13529", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13530", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13531", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13532", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13533", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13534", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13535", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13536", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13537", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13538", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13539", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13540", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13541", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13542", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13543", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13544", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13545", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13546", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13547", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13548", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13549", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13550", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13551", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13552", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13553", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13554", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13555", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13556", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13557", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13558", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13559", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13560", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13561", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13562", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13563", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13564", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13565", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13566", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13567", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13568", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13569", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13570", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13571", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13572", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13573", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13574", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13575", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13576", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13577", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13578", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13579", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13580", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13581", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13582", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13583", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13584", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13585", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13586", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13587", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13588", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("13589", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("13590", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13591", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13592", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13593", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13594", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13595", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13596", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13597", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13598", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("13599", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("13600", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13601", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13602", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13603", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13604", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13605", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13606", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13607", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13608", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13609", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13610", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13611", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13612", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13613", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13614", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13615", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13616", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13617", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13618", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13619", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13620", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13621", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13622", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13623", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13624", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13625", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13626", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13627", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13628", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13629", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13630", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13631", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13632", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13633", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13634", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13635", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13636", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13637", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13638", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13639", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13640", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13641", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13642", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13643", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13644", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13645", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13646", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13647", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13648", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13649", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13650", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13651", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13652", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13653", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13654", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13655", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13656", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13657", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13658", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13659", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13660", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13661", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13662", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13663", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13664", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13665", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13666", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13667", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13668", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13669", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13670", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13671", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13672", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13673", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13674", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13675", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13676", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13677", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13678", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13679", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13680", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13681", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13682", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13683", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13684", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13685", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13686", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13687", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13688", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("13689", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("13690", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13691", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13692", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13693", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13694", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13695", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13696", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13697", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13698", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("13699", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("13700", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13701", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13702", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13703", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13704", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13705", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13706", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13707", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13708", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13709", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13710", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13711", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13712", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13713", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13714", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13715", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13716", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13717", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13718", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13719", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13720", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13721", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13722", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13723", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13724", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13725", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13726", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13727", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13728", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13729", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13730", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13731", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13732", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13733", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13734", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13735", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13736", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13737", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13738", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13739", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13740", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13741", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13742", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13743", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13744", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13745", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13746", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13747", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13748", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13749", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13750", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13751", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13752", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13753", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13754", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13755", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13756", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13757", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13758", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13759", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13760", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13761", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13762", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13763", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13764", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13765", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13766", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13767", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13768", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13769", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13770", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13771", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13772", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13773", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13774", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13775", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13776", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13777", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13778", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13779", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13780", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13781", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13782", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13783", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13784", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13785", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13786", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13787", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13788", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("13789", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("13790", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13791", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13792", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13793", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13794", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13795", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13796", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13797", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13798", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("13799", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("13800", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13801", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13802", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13803", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13804", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13805", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13806", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13807", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13808", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13809", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13810", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13811", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13812", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13813", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13814", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13815", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13816", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13817", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13818", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13819", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13820", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13821", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13822", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13823", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13824", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13825", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13826", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13827", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13828", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13829", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13830", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13831", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13832", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13833", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13834", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13835", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13836", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13837", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13838", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13839", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13840", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13841", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13842", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13843", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13844", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13845", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13846", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13847", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13848", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13849", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13850", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13851", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13852", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13853", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13854", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13855", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13856", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13857", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13858", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13859", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13860", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13861", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13862", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13863", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13864", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13865", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13866", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13867", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13868", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13869", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13870", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13871", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13872", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13873", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13874", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13875", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13876", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13877", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13878", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13879", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13880", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13881", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13882", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13883", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13884", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13885", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13886", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13887", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13888", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("13889", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("13890", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13891", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13892", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13893", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13894", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13895", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13896", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13897", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13898", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("13899", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("13900", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13901", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13902", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13903", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13904", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13905", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13906", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13907", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13908", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13909", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13910", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13911", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13912", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13913", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13914", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13915", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13916", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13917", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13918", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13919", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13920", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13921", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13922", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13923", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13924", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13925", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13926", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13927", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13928", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13929", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13930", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13931", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13932", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13933", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13934", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13935", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13936", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13937", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13938", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13939", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13940", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13941", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13942", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13943", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13944", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13945", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13946", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13947", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13948", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13949", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13950", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13951", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13952", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13953", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13954", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13955", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13956", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13957", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13958", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13959", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13960", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13961", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13962", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13963", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13964", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13965", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13966", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13967", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13968", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13969", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13970", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13971", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13972", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13973", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13974", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13975", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13976", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13977", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010000"),
+        ("13978", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13979", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010008"),
+        ("13980", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13981", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13982", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13983", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13984", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13985", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13986", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13987", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13988", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("13989", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("13990", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13991", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13992", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13993", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13994", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13995", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13996", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13997", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010080"),
+        ("13998", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("13999", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00010088"),
+        ("14000", "FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14001", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14002", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14003", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14004", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14005", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14006", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14007", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14008", "FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14009", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14010", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14011", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14012", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14013", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14014", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14015", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14016", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14017", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14018", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14019", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14020", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14021", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14022", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14023", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14024", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14025", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14026", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14027", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14028", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14029", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14030", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14031", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14032", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14033", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14034", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14035", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14036", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14037", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14038", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14039", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14040", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14041", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14042", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14043", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14044", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14045", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14046", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14047", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14048", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14049", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14050", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14051", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14052", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14053", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14054", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14055", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14056", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14057", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14058", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14059", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14060", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14061", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14062", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14063", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14064", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14065", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14066", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14067", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14068", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14069", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14070", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14071", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14072", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14073", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14074", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14075", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14076", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14077", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14078", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14079", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14080", "FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14081", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14082", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14083", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14084", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14085", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14086", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14087", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14088", "FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("14089", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("14090", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14091", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14092", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14093", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14094", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14095", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14096", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14097", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14098", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("14099", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("14100", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14101", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14102", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14103", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14104", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14105", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14106", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14107", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14108", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14109", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14110", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14111", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14112", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14113", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14114", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14115", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14116", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14117", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14118", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14119", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14120", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14121", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14122", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14123", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14124", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14125", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14126", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14127", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14128", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14129", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14130", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14131", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14132", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14133", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14134", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14135", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14136", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14137", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14138", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14139", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14140", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14141", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14142", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14143", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14144", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14145", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14146", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14147", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14148", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14149", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14150", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14151", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14152", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14153", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14154", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14155", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14156", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14157", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14158", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14159", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14160", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14161", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14162", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14163", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14164", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14165", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14166", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14167", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14168", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14169", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14170", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14171", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14172", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14173", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14174", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14175", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14176", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14177", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14178", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14179", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14180", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14181", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14182", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14183", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14184", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14185", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14186", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14187", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14188", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("14189", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("14190", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14191", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14192", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14193", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14194", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14195", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14196", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14197", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14198", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("14199", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("14200", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14201", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14202", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14203", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14204", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14205", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14206", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14207", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14208", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14209", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14210", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14211", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14212", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14213", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14214", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14215", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14216", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14217", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14218", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14219", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14220", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14221", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14222", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14223", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14224", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14225", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14226", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14227", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14228", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14229", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14230", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14231", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14232", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14233", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14234", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14235", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14236", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14237", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14238", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14239", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14240", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14241", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14242", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14243", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14244", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14245", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14246", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14247", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14248", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14249", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14250", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14251", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14252", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14253", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14254", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14255", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14256", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14257", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14258", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14259", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14260", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14261", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14262", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14263", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14264", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14265", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14266", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14267", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14268", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14269", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14270", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14271", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14272", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14273", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14274", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14275", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14276", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14277", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14278", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14279", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14280", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14281", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14282", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14283", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14284", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14285", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14286", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14287", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14288", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("14289", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("14290", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14291", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14292", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14293", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14294", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14295", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14296", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14297", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14298", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("14299", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("14300", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14301", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14302", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14303", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14304", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14305", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14306", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14307", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14308", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14309", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14310", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14311", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14312", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14313", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14314", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14315", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14316", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14317", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14318", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14319", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14320", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14321", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14322", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14323", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14324", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14325", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14326", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14327", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14328", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14329", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14330", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14331", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14332", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14333", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14334", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14335", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14336", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14337", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14338", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14339", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14340", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14341", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14342", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14343", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14344", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14345", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14346", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14347", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14348", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14349", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14350", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14351", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14352", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14353", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14354", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14355", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14356", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14357", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14358", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14359", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14360", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14361", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14362", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14363", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14364", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14365", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14366", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14367", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14368", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14369", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14370", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14371", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14372", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14373", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14374", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14375", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14376", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14377", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14378", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14379", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14380", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14381", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14382", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14383", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14384", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14385", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14386", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14387", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14388", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("14389", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("14390", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14391", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14392", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14393", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14394", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14395", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14396", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14397", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14398", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("14399", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("14400", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14401", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14402", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14403", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14404", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14405", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14406", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14407", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14408", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14409", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14410", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14411", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14412", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14413", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14414", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14415", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14416", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14417", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14418", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14419", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14420", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14421", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14422", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14423", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14424", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14425", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14426", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14427", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14428", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14429", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14430", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14431", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14432", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14433", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14434", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14435", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14436", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14437", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14438", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14439", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14440", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14441", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14442", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14443", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14444", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14445", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14446", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14447", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14448", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14449", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14450", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14451", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14452", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14453", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14454", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14455", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14456", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14457", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14458", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14459", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14460", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14461", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14462", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14463", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14464", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14465", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14466", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14467", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14468", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14469", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14470", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14471", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14472", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14473", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14474", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14475", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14476", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14477", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14478", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14479", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14480", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14481", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14482", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14483", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14484", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14485", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14486", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14487", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14488", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("14489", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("14490", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14491", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14492", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14493", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14494", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14495", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14496", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14497", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14498", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("14499", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("14500", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14501", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14502", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14503", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14504", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14505", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14506", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14507", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14508", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14509", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14510", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14511", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14512", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14513", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14514", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14515", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14516", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14517", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14518", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14519", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14520", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14521", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14522", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14523", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14524", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14525", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14526", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14527", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14528", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14529", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14530", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14531", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14532", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14533", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14534", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14535", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14536", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14537", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14538", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14539", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14540", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14541", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14542", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14543", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14544", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14545", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14546", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14547", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14548", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14549", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14550", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14551", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14552", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14553", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14554", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14555", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14556", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14557", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14558", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14559", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14560", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14561", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14562", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14563", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14564", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14565", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14566", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14567", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14568", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14569", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14570", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14571", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14572", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14573", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14574", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14575", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14576", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14577", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14578", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14579", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14580", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14581", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14582", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14583", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14584", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14585", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14586", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14587", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14588", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("14589", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("14590", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14591", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14592", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14593", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14594", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14595", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14596", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14597", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14598", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("14599", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("14600", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14601", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14602", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14603", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14604", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14605", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14606", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14607", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14608", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14609", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14610", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14611", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14612", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14613", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14614", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14615", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14616", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14617", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14618", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14619", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14620", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14621", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14622", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14623", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14624", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14625", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14626", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14627", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14628", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14629", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14630", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14631", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14632", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14633", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14634", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14635", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14636", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14637", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14638", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14639", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14640", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14641", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14642", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14643", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14644", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14645", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14646", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14647", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14648", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14649", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14650", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14651", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14652", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14653", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14654", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14655", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14656", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14657", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14658", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14659", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14660", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14661", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14662", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14663", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14664", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14665", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14666", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14667", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14668", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14669", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14670", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14671", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14672", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14673", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14674", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14675", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14676", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14677", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14678", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14679", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14680", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14681", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14682", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14683", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14684", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14685", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14686", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14687", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14688", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("14689", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("14690", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14691", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14692", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14693", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14694", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14695", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14696", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14697", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14698", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("14699", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("14700", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14701", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14702", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14703", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14704", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14705", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14706", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14707", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14708", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14709", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14710", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14711", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14712", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14713", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14714", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14715", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14716", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14717", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14718", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14719", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14720", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14721", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14722", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14723", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14724", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14725", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14726", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14727", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14728", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14729", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14730", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14731", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14732", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14733", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14734", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14735", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14736", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14737", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14738", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14739", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14740", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14741", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14742", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14743", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14744", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14745", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14746", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14747", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14748", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14749", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14750", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14751", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14752", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14753", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14754", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14755", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14756", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14757", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14758", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14759", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14760", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14761", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14762", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14763", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14764", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14765", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14766", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14767", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14768", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14769", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14770", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14771", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14772", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14773", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14774", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14775", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14776", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14777", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14778", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14779", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14780", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14781", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14782", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14783", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14784", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14785", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14786", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14787", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14788", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("14789", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("14790", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14791", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14792", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14793", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14794", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14795", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14796", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14797", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14798", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("14799", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("14800", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14801", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14802", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14803", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14804", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14805", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14806", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14807", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14808", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14809", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14810", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14811", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14812", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14813", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14814", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14815", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14816", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14817", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14818", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14819", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14820", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14821", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14822", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14823", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14824", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14825", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14826", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14827", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14828", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14829", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14830", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14831", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14832", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14833", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14834", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14835", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14836", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14837", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14838", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14839", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14840", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14841", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14842", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14843", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14844", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14845", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14846", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14847", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14848", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14849", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14850", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14851", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14852", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14853", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14854", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14855", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14856", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14857", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14858", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14859", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14860", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14861", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14862", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14863", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14864", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14865", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14866", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14867", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14868", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14869", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14870", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14871", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14872", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14873", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14874", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14875", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14876", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14877", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14878", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14879", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14880", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14881", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14882", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14883", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14884", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14885", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14886", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14887", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14888", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("14889", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("14890", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14891", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14892", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14893", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14894", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14895", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14896", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14897", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14898", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("14899", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("14900", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14901", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14902", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14903", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14904", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14905", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14906", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14907", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14908", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14909", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14910", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14911", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14912", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14913", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14914", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14915", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14916", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14917", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14918", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14919", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14920", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14921", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14922", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14923", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14924", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14925", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14926", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14927", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14928", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14929", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14930", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14931", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14932", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14933", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14934", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14935", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14936", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14937", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14938", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14939", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14940", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14941", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14942", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14943", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14944", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14945", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14946", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14947", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14948", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14949", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14950", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14951", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14952", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14953", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14954", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14955", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14956", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14957", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14958", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14959", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14960", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14961", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14962", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14963", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14964", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14965", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14966", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14967", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14968", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14969", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14970", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14971", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14972", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14973", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14974", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14975", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14976", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14977", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("14978", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14979", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("14980", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14981", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14982", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14983", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14984", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14985", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14986", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14987", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14988", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("14989", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("14990", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14991", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14992", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14993", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14994", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14995", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14996", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14997", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("14998", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("14999", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("15000", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15001", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15002", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15003", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15004", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15005", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15006", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15007", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15008", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15009", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15010", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15011", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15012", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15013", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15014", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15015", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15016", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15017", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15018", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15019", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15020", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15021", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15022", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15023", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15024", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15025", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15026", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15027", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15028", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15029", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15030", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15031", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15032", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15033", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15034", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15035", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15036", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15037", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15038", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15039", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15040", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15041", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15042", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15043", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15044", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15045", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15046", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15047", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15048", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15049", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15050", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15051", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15052", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15053", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15054", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15055", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15056", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15057", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15058", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15059", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15060", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15061", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15062", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15063", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15064", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15065", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15066", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15067", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15068", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15069", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15070", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15071", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15072", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15073", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15074", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15075", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15076", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15077", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15078", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15079", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15080", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15081", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15082", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15083", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15084", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15085", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15086", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15087", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15088", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("15089", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("15090", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15091", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15092", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15093", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15094", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15095", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15096", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15097", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15098", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("15099", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("15100", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15101", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15102", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15103", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15104", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15105", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15106", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15107", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15108", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15109", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15110", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15111", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15112", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15113", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15114", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15115", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15116", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15117", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15118", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15119", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15120", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15121", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15122", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15123", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15124", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15125", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15126", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15127", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15128", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15129", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15130", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15131", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15132", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15133", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15134", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15135", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15136", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15137", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15138", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15139", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15140", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15141", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15142", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15143", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15144", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15145", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15146", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15147", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15148", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15149", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15150", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15151", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15152", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15153", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15154", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15155", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15156", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15157", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15158", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15159", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15160", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15161", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15162", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15163", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15164", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15165", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15166", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15167", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15168", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15169", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15170", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15171", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15172", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15173", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15174", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15175", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15176", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15177", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15178", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15179", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15180", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15181", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15182", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15183", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15184", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15185", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15186", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15187", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15188", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("15189", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("15190", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15191", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15192", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15193", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15194", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15195", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15196", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15197", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15198", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("15199", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("15200", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15201", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15202", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15203", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15204", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15205", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15206", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15207", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15208", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15209", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15210", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15211", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15212", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15213", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15214", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15215", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15216", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15217", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15218", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15219", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15220", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15221", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15222", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15223", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15224", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15225", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15226", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15227", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15228", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15229", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15230", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15231", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15232", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15233", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15234", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15235", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15236", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15237", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15238", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15239", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15240", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15241", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15242", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15243", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15244", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15245", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15246", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15247", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15248", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15249", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15250", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15251", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15252", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15253", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15254", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15255", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15256", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15257", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15258", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15259", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15260", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15261", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15262", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15263", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15264", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15265", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15266", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15267", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15268", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15269", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15270", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15271", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15272", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15273", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15274", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15275", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15276", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15277", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15278", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15279", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15280", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15281", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15282", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15283", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15284", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15285", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15286", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15287", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15288", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("15289", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("15290", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15291", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15292", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15293", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15294", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15295", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15296", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15297", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15298", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("15299", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("15300", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15301", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15302", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15303", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15304", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15305", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15306", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15307", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15308", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15309", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15310", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15311", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15312", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15313", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15314", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15315", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15316", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15317", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15318", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15319", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15320", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15321", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15322", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15323", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15324", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15325", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15326", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15327", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15328", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15329", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15330", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15331", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15332", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15333", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15334", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15335", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15336", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15337", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15338", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15339", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15340", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15341", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15342", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15343", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15344", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15345", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15346", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15347", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15348", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15349", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15350", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15351", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15352", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15353", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15354", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15355", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15356", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15357", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15358", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15359", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15360", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15361", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15362", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15363", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15364", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15365", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15366", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15367", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15368", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15369", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15370", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15371", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15372", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15373", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15374", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15375", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15376", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15377", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15378", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15379", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15380", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15381", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15382", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15383", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15384", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15385", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15386", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15387", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15388", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("15389", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("15390", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15391", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15392", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15393", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15394", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15395", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15396", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15397", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15398", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("15399", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("15400", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15401", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15402", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15403", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15404", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15405", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15406", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15407", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15408", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15409", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15410", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15411", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15412", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15413", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15414", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15415", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15416", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15417", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15418", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15419", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15420", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15421", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15422", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15423", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15424", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15425", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15426", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15427", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15428", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15429", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15430", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15431", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15432", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15433", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15434", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15435", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15436", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15437", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15438", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15439", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15440", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15441", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15442", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15443", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15444", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15445", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15446", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15447", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15448", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15449", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15450", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15451", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15452", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15453", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15454", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15455", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15456", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15457", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15458", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15459", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15460", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15461", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15462", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15463", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15464", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15465", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15466", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15467", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15468", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15469", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15470", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15471", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15472", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15473", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15474", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15475", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15476", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15477", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15478", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15479", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15480", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15481", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15482", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15483", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15484", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15485", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15486", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15487", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15488", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("15489", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("15490", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15491", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15492", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15493", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15494", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15495", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15496", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15497", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15498", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("15499", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("15500", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15501", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15502", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15503", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15504", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15505", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15506", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15507", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15508", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15509", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15510", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15511", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15512", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15513", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15514", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15515", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15516", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15517", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15518", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15519", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15520", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15521", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15522", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15523", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15524", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15525", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15526", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15527", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15528", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15529", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15530", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15531", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15532", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15533", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15534", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15535", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15536", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15537", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15538", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15539", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15540", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15541", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15542", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15543", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15544", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15545", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15546", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15547", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15548", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15549", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15550", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15551", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15552", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15553", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15554", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15555", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15556", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15557", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15558", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15559", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15560", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15561", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15562", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15563", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15564", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15565", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15566", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15567", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15568", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15569", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15570", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15571", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15572", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15573", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15574", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15575", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15576", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15577", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15578", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15579", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15580", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15581", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15582", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15583", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15584", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15585", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15586", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15587", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15588", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("15589", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("15590", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15591", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15592", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15593", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15594", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15595", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15596", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15597", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15598", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("15599", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("15600", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15601", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15602", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15603", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15604", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15605", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15606", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15607", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15608", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15609", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15610", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15611", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15612", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15613", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15614", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15615", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15616", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15617", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15618", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15619", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15620", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15621", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15622", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15623", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15624", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15625", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15626", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15627", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15628", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15629", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15630", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15631", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15632", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15633", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15634", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15635", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15636", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15637", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15638", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15639", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15640", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15641", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15642", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15643", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15644", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15645", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15646", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15647", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15648", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15649", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15650", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15651", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15652", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15653", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15654", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15655", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15656", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15657", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15658", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15659", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15660", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15661", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15662", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15663", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15664", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15665", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15666", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15667", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15668", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15669", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15670", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15671", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15672", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15673", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15674", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15675", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15676", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15677", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15678", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15679", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15680", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15681", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15682", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15683", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15684", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15685", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15686", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15687", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15688", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("15689", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("15690", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15691", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15692", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15693", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15694", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15695", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15696", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15697", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15698", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("15699", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("15700", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15701", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15702", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15703", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15704", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15705", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15706", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15707", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15708", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15709", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15710", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15711", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15712", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15713", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15714", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15715", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15716", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15717", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15718", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15719", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15720", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15721", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15722", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15723", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15724", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15725", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15726", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15727", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15728", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15729", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15730", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15731", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15732", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15733", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15734", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15735", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15736", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15737", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15738", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15739", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15740", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15741", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15742", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15743", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15744", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15745", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15746", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15747", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15748", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15749", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15750", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15751", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15752", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15753", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15754", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15755", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15756", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15757", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15758", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15759", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15760", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15761", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15762", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15763", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15764", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15765", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15766", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15767", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15768", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15769", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15770", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15771", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15772", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15773", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15774", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15775", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15776", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15777", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15778", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15779", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15780", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15781", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15782", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15783", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15784", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15785", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15786", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15787", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15788", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("15789", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("15790", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15791", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15792", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15793", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15794", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15795", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15796", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15797", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15798", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("15799", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("15800", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15801", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15802", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15803", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15804", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15805", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15806", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15807", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15808", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15809", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15810", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15811", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15812", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15813", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15814", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15815", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15816", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15817", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15818", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15819", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15820", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15821", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15822", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15823", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15824", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15825", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15826", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15827", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15828", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15829", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15830", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15831", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15832", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15833", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15834", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15835", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15836", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15837", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15838", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15839", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15840", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15841", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15842", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15843", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15844", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15845", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15846", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15847", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15848", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15849", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15850", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15851", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15852", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15853", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15854", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15855", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15856", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15857", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15858", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15859", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15860", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15861", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15862", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15863", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15864", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15865", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15866", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15867", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15868", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15869", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15870", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15871", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15872", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15873", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15874", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15875", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15876", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15877", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15878", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15879", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15880", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15881", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15882", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15883", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15884", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15885", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15886", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15887", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15888", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("15889", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("15890", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15891", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15892", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15893", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15894", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15895", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15896", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15897", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15898", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("15899", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("15900", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15901", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15902", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15903", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15904", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15905", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15906", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15907", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15908", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15909", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15910", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15911", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15912", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15913", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15914", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15915", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15916", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15917", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15918", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15919", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15920", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15921", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15922", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15923", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15924", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15925", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15926", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15927", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15928", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15929", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15930", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15931", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15932", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15933", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15934", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15935", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15936", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15937", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15938", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15939", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15940", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15941", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15942", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15943", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15944", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15945", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15946", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15947", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15948", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15949", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15950", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15951", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15952", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15953", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15954", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15955", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15956", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15957", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15958", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15959", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15960", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15961", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15962", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15963", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15964", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15965", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15966", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15967", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15968", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15969", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15970", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15971", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15972", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15973", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15974", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15975", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15976", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15977", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("15978", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15979", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("15980", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15981", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15982", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15983", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15984", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15985", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15986", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15987", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15988", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("15989", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("15990", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15991", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15992", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15993", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15994", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15995", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15996", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15997", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("15998", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("15999", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("16000", "FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16001", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16002", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16003", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16004", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16005", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16006", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16007", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16008", "FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16009", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16010", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16011", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16012", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16013", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16014", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16015", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16016", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16017", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16018", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16019", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16020", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16021", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16022", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16023", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16024", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16025", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16026", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16027", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16028", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16029", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16030", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16031", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16032", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16033", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16034", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16035", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16036", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16037", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16038", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16039", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16040", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16041", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16042", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16043", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16044", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16045", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16046", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16047", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16048", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16049", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16050", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16051", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16052", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16053", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16054", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16055", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16056", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16057", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16058", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16059", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16060", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16061", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16062", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16063", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16064", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16065", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16066", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16067", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16068", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16069", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16070", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16071", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16072", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16073", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16074", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16075", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16076", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16077", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16078", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16079", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16080", "FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16081", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16082", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16083", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16084", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16085", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16086", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16087", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16088", "FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("16089", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("16090", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16091", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16092", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16093", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16094", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16095", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16096", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16097", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16098", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("16099", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("16100", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16101", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16102", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16103", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16104", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16105", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16106", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16107", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16108", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16109", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16110", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16111", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16112", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16113", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16114", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16115", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16116", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16117", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16118", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16119", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16120", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16121", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16122", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16123", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16124", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16125", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16126", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16127", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16128", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16129", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16130", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16131", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16132", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16133", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16134", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16135", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16136", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16137", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16138", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16139", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16140", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16141", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16142", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16143", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16144", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16145", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16146", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16147", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16148", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16149", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16150", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16151", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16152", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16153", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16154", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16155", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16156", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16157", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16158", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16159", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16160", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16161", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16162", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16163", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16164", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16165", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16166", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16167", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16168", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16169", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16170", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16171", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16172", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16173", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16174", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16175", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16176", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16177", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16178", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16179", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16180", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16181", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16182", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16183", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16184", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16185", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16186", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16187", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16188", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("16189", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("16190", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16191", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16192", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16193", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16194", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16195", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16196", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16197", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16198", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("16199", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("16200", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16201", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16202", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16203", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16204", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16205", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16206", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16207", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16208", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16209", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16210", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16211", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16212", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16213", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16214", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16215", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16216", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16217", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16218", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16219", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16220", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16221", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16222", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16223", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16224", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16225", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16226", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16227", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16228", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16229", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16230", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16231", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16232", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16233", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16234", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16235", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16236", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16237", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16238", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16239", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16240", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16241", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16242", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16243", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16244", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16245", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16246", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16247", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16248", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16249", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16250", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16251", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16252", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16253", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16254", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16255", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16256", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16257", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16258", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16259", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16260", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16261", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16262", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16263", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16264", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16265", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16266", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16267", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16268", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16269", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16270", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16271", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16272", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16273", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16274", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16275", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16276", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16277", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16278", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16279", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16280", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16281", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16282", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16283", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16284", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16285", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16286", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16287", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16288", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("16289", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("16290", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16291", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16292", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16293", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16294", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16295", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16296", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16297", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16298", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("16299", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("16300", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16301", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16302", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16303", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16304", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16305", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16306", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16307", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16308", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16309", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16310", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16311", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16312", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16313", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16314", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16315", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16316", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16317", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16318", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16319", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16320", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16321", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16322", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16323", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16324", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16325", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16326", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16327", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16328", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16329", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16330", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16331", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16332", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16333", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16334", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16335", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16336", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16337", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16338", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16339", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16340", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16341", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16342", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16343", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16344", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16345", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16346", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16347", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16348", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16349", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16350", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16351", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16352", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16353", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16354", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16355", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16356", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16357", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16358", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16359", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16360", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16361", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16362", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16363", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16364", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16365", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16366", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16367", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16368", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16369", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16370", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16371", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16372", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16373", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16374", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16375", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16376", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16377", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16378", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16379", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16380", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16381", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16382", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16383", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16384", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16385", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16386", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16387", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16388", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("16389", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("16390", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16391", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16392", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16393", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16394", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16395", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16396", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16397", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16398", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("16399", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("16400", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16401", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16402", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16403", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16404", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16405", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16406", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16407", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16408", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16409", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16410", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16411", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16412", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16413", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16414", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16415", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16416", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16417", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16418", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16419", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16420", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16421", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16422", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16423", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16424", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16425", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16426", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16427", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16428", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16429", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16430", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16431", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16432", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16433", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16434", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16435", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16436", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16437", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16438", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16439", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16440", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16441", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16442", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16443", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16444", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16445", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16446", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16447", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16448", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16449", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16450", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16451", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16452", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16453", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16454", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16455", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16456", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16457", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16458", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16459", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16460", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16461", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16462", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16463", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16464", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16465", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16466", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16467", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16468", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16469", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16470", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16471", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16472", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16473", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16474", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16475", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16476", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16477", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16478", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16479", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16480", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16481", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16482", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16483", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16484", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16485", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16486", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16487", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16488", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("16489", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("16490", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16491", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16492", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16493", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16494", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16495", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16496", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16497", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16498", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("16499", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("16500", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16501", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16502", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16503", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16504", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16505", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16506", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16507", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16508", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16509", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16510", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16511", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16512", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16513", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16514", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16515", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16516", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16517", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16518", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16519", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16520", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16521", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16522", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16523", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16524", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16525", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16526", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16527", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16528", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16529", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16530", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16531", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16532", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16533", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16534", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16535", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16536", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16537", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16538", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16539", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16540", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16541", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16542", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16543", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16544", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16545", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16546", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16547", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16548", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16549", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16550", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16551", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16552", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16553", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16554", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16555", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16556", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16557", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16558", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16559", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16560", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16561", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16562", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16563", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16564", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16565", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16566", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16567", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16568", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16569", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16570", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16571", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16572", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16573", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16574", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16575", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16576", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16577", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16578", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16579", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16580", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16581", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16582", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16583", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16584", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16585", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16586", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16587", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16588", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("16589", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("16590", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16591", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16592", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16593", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16594", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16595", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16596", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16597", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16598", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("16599", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("16600", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16601", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16602", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16603", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16604", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16605", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16606", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16607", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16608", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16609", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16610", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16611", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16612", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16613", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16614", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16615", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16616", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16617", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16618", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16619", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16620", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16621", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16622", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16623", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16624", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16625", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16626", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16627", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16628", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16629", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16630", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16631", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16632", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16633", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16634", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16635", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16636", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16637", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16638", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16639", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16640", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16641", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16642", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16643", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16644", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16645", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16646", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16647", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16648", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16649", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16650", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16651", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16652", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16653", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16654", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16655", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16656", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16657", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16658", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16659", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16660", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16661", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16662", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16663", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16664", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16665", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16666", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16667", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16668", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16669", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16670", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16671", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16672", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16673", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16674", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16675", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16676", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16677", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16678", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16679", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16680", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16681", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16682", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16683", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16684", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16685", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16686", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16687", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16688", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("16689", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("16690", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16691", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16692", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16693", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16694", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16695", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16696", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16697", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16698", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("16699", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("16700", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16701", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16702", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16703", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16704", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16705", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16706", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16707", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16708", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16709", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16710", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16711", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16712", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16713", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16714", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16715", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16716", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16717", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16718", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16719", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16720", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16721", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16722", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16723", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16724", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16725", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16726", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16727", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16728", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16729", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16730", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16731", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16732", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16733", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16734", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16735", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16736", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16737", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16738", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16739", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16740", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16741", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16742", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16743", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16744", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16745", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16746", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16747", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16748", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16749", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16750", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16751", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16752", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16753", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16754", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16755", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16756", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16757", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16758", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16759", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16760", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16761", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16762", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16763", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16764", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16765", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16766", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16767", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16768", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16769", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16770", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16771", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16772", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16773", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16774", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16775", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16776", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16777", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16778", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16779", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16780", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16781", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16782", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16783", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16784", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16785", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16786", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16787", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16788", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("16789", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("16790", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16791", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16792", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16793", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16794", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16795", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16796", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16797", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16798", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("16799", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("16800", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16801", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16802", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16803", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16804", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16805", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16806", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16807", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16808", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16809", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16810", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16811", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16812", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16813", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16814", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16815", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16816", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16817", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16818", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16819", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16820", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16821", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16822", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16823", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16824", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16825", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16826", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16827", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16828", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16829", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16830", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16831", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16832", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16833", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16834", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16835", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16836", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16837", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16838", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16839", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16840", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16841", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16842", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16843", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16844", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16845", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16846", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16847", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16848", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16849", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16850", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16851", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16852", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16853", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16854", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16855", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16856", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16857", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16858", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16859", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16860", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16861", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16862", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16863", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16864", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16865", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16866", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16867", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16868", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16869", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16870", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16871", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16872", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16873", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16874", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16875", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16876", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16877", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16878", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16879", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16880", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16881", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16882", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16883", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16884", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16885", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16886", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16887", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16888", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("16889", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("16890", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16891", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16892", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16893", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16894", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16895", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16896", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16897", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16898", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("16899", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("16900", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16901", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16902", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16903", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16904", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16905", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16906", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16907", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16908", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16909", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16910", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16911", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16912", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16913", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16914", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16915", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16916", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16917", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16918", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16919", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16920", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16921", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16922", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16923", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16924", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16925", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16926", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16927", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16928", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16929", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16930", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16931", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16932", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16933", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16934", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16935", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16936", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16937", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16938", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16939", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16940", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16941", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16942", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16943", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16944", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16945", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16946", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16947", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16948", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16949", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16950", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16951", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16952", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16953", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16954", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16955", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16956", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16957", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16958", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16959", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16960", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16961", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16962", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16963", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16964", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16965", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16966", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16967", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16968", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16969", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16970", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16971", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16972", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16973", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16974", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16975", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16976", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16977", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("16978", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16979", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("16980", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16981", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16982", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16983", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16984", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16985", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16986", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16987", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16988", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("16989", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("16990", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16991", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16992", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16993", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16994", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16995", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16996", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16997", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("16998", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("16999", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("17000", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17001", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17002", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17003", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17004", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17005", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17006", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17007", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17008", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17009", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17010", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17011", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17012", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17013", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17014", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17015", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17016", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17017", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17018", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17019", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17020", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17021", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17022", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17023", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17024", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17025", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17026", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17027", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17028", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17029", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17030", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17031", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17032", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17033", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17034", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17035", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17036", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17037", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17038", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17039", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17040", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17041", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17042", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17043", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17044", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17045", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17046", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17047", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17048", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17049", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17050", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17051", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17052", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17053", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17054", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17055", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17056", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17057", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17058", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17059", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17060", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17061", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17062", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17063", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17064", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17065", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17066", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17067", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17068", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17069", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17070", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17071", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17072", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17073", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17074", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17075", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17076", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17077", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17078", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17079", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17080", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17081", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17082", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17083", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17084", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17085", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17086", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17087", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17088", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("17089", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("17090", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17091", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17092", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17093", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17094", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17095", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17096", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17097", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17098", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("17099", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("17100", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17101", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17102", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17103", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17104", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17105", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17106", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17107", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17108", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17109", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17110", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17111", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17112", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17113", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17114", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17115", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17116", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17117", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17118", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17119", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17120", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17121", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17122", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17123", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17124", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17125", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17126", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17127", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17128", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17129", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17130", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17131", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17132", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17133", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17134", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17135", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17136", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17137", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17138", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17139", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17140", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17141", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17142", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17143", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17144", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17145", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17146", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17147", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17148", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17149", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17150", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17151", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17152", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17153", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17154", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17155", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17156", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17157", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17158", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17159", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17160", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17161", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17162", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17163", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17164", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17165", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17166", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17167", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17168", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17169", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17170", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17171", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17172", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17173", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17174", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17175", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17176", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17177", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17178", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17179", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17180", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17181", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17182", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17183", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17184", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17185", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17186", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17187", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17188", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("17189", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("17190", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17191", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17192", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17193", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17194", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17195", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17196", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17197", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17198", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("17199", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("17200", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17201", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17202", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17203", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17204", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17205", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17206", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17207", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17208", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17209", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17210", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17211", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17212", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17213", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17214", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17215", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17216", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17217", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17218", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17219", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17220", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17221", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17222", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17223", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17224", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17225", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17226", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17227", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17228", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17229", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17230", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17231", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17232", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17233", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17234", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17235", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17236", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17237", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17238", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17239", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17240", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17241", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17242", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17243", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17244", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17245", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17246", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17247", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17248", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17249", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17250", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17251", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17252", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17253", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17254", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17255", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17256", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17257", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17258", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17259", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17260", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17261", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17262", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17263", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17264", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17265", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17266", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17267", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17268", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17269", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17270", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17271", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17272", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17273", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17274", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17275", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17276", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17277", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17278", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17279", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17280", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17281", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17282", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17283", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17284", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17285", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17286", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17287", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17288", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("17289", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("17290", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17291", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17292", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17293", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17294", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17295", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17296", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17297", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17298", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("17299", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("17300", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17301", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17302", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17303", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17304", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17305", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17306", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17307", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17308", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17309", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17310", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17311", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17312", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17313", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17314", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17315", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17316", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17317", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17318", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17319", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17320", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17321", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17322", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17323", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17324", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17325", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17326", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17327", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17328", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17329", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17330", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17331", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17332", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17333", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17334", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17335", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17336", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17337", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17338", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17339", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17340", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17341", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17342", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17343", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17344", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17345", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17346", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17347", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17348", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17349", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17350", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17351", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17352", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17353", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17354", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17355", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17356", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17357", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17358", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17359", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17360", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17361", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17362", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17363", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17364", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17365", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17366", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17367", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17368", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17369", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17370", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17371", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17372", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17373", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17374", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17375", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17376", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17377", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17378", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17379", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17380", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17381", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17382", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17383", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17384", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17385", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17386", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17387", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17388", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("17389", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("17390", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17391", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17392", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17393", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17394", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17395", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17396", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17397", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17398", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("17399", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("17400", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17401", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17402", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17403", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17404", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17405", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17406", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17407", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17408", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17409", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17410", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17411", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17412", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17413", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17414", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17415", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17416", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17417", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17418", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17419", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17420", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17421", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17422", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17423", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17424", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17425", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17426", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17427", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17428", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17429", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17430", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17431", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17432", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17433", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17434", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17435", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17436", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17437", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17438", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17439", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17440", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17441", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17442", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17443", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17444", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17445", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17446", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17447", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17448", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17449", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17450", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17451", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17452", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17453", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17454", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17455", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17456", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17457", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17458", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17459", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17460", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17461", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17462", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17463", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17464", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17465", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17466", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17467", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17468", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17469", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17470", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17471", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17472", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17473", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17474", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17475", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17476", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17477", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17478", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17479", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17480", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17481", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17482", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17483", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17484", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17485", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17486", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17487", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17488", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("17489", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("17490", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17491", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17492", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17493", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17494", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17495", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17496", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17497", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17498", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("17499", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("17500", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17501", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17502", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17503", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17504", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17505", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17506", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17507", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17508", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17509", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17510", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17511", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17512", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17513", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17514", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17515", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17516", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17517", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17518", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17519", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17520", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17521", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17522", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17523", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17524", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17525", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17526", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17527", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17528", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17529", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17530", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17531", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17532", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17533", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17534", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17535", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17536", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17537", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17538", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17539", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17540", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17541", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17542", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17543", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17544", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17545", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17546", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17547", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17548", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17549", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17550", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17551", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17552", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17553", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17554", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17555", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17556", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17557", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17558", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17559", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17560", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17561", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17562", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17563", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17564", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17565", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17566", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17567", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17568", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17569", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17570", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17571", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17572", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17573", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17574", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17575", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17576", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17577", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17578", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17579", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17580", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17581", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17582", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17583", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17584", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17585", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17586", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17587", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17588", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("17589", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("17590", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17591", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17592", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17593", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17594", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17595", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17596", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17597", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17598", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("17599", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("17600", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17601", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17602", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17603", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17604", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17605", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17606", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17607", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17608", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17609", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17610", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17611", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17612", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17613", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17614", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17615", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17616", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17617", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17618", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17619", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17620", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17621", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17622", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17623", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17624", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17625", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17626", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17627", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17628", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17629", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17630", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17631", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17632", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17633", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17634", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17635", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17636", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17637", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17638", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17639", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17640", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17641", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17642", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17643", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17644", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17645", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17646", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17647", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17648", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17649", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17650", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17651", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17652", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17653", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17654", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17655", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17656", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17657", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17658", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17659", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17660", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17661", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17662", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17663", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17664", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17665", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17666", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17667", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17668", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17669", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17670", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17671", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17672", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17673", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17674", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17675", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17676", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17677", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17678", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17679", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17680", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17681", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17682", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17683", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17684", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17685", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17686", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17687", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17688", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("17689", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("17690", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17691", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17692", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17693", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17694", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17695", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17696", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17697", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17698", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("17699", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("17700", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17701", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17702", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17703", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17704", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17705", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17706", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17707", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17708", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17709", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17710", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17711", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17712", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17713", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17714", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17715", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17716", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17717", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17718", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17719", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17720", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17721", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17722", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17723", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17724", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17725", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17726", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17727", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17728", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17729", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17730", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17731", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17732", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17733", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17734", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17735", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17736", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17737", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17738", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17739", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17740", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17741", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17742", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17743", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17744", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17745", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17746", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17747", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17748", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17749", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17750", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17751", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17752", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17753", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17754", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17755", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17756", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17757", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17758", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17759", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17760", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17761", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17762", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17763", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17764", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17765", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17766", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17767", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17768", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17769", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17770", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17771", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17772", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17773", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17774", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17775", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17776", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17777", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17778", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17779", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17780", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17781", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17782", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17783", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17784", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17785", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17786", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17787", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17788", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("17789", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("17790", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17791", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17792", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17793", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17794", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17795", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17796", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17797", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17798", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("17799", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("17800", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17801", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17802", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17803", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17804", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17805", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17806", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17807", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17808", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17809", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17810", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17811", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17812", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17813", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17814", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17815", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17816", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17817", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17818", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17819", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17820", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17821", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17822", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17823", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17824", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17825", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17826", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17827", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17828", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17829", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17830", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17831", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17832", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17833", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17834", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17835", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17836", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17837", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17838", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17839", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17840", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17841", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17842", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17843", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17844", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17845", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17846", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17847", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17848", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17849", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17850", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17851", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17852", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17853", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17854", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17855", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17856", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17857", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17858", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17859", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17860", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17861", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17862", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17863", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17864", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17865", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17866", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17867", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17868", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17869", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17870", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17871", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17872", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17873", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17874", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17875", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17876", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17877", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17878", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17879", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17880", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17881", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17882", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17883", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17884", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17885", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17886", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17887", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17888", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("17889", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("17890", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17891", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17892", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17893", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17894", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17895", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17896", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17897", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17898", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("17899", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("17900", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17901", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17902", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17903", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17904", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17905", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17906", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17907", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17908", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17909", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17910", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17911", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17912", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17913", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17914", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17915", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17916", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17917", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17918", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17919", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17920", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17921", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17922", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17923", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17924", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17925", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17926", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17927", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17928", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17929", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17930", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17931", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17932", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17933", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17934", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17935", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17936", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17937", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17938", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17939", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17940", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17941", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17942", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17943", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17944", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17945", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17946", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17947", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17948", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17949", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17950", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17951", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17952", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17953", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17954", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17955", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17956", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17957", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17958", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17959", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17960", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17961", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17962", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17963", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17964", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17965", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17966", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17967", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17968", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17969", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17970", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17971", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17972", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17973", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17974", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17975", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17976", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17977", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010000"),
+        ("17978", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17979", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010008"),
+        ("17980", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17981", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17982", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17983", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17984", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17985", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17986", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17987", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17988", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("17989", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("17990", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17991", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17992", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17993", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17994", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17995", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17996", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17997", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010080"),
+        ("17998", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("17999", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00010088"),
+        ("18000", "FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18001", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18002", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18003", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18004", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18005", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18006", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18007", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18008", "FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18009", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18010", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18011", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18012", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18013", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18014", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18015", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18016", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18017", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18018", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18019", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18020", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18021", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18022", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18023", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18024", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18025", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18026", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18027", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18028", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18029", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18030", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18031", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18032", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18033", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18034", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18035", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18036", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18037", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18038", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18039", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18040", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18041", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18042", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18043", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18044", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18045", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18046", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18047", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18048", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18049", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18050", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18051", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18052", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18053", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18054", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18055", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18056", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18057", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18058", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18059", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18060", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18061", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18062", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18063", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18064", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18065", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18066", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18067", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18068", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18069", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18070", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18071", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18072", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18073", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18074", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18075", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18076", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18077", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18078", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18079", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18080", "FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18081", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18082", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18083", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18084", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18085", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18086", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18087", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18088", "FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("18089", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("18090", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18091", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18092", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18093", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18094", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18095", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18096", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18097", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18098", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("18099", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("18100", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18101", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18102", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18103", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18104", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18105", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18106", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18107", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18108", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18109", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18110", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18111", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18112", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18113", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18114", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18115", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18116", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18117", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18118", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18119", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18120", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18121", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18122", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18123", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18124", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18125", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18126", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18127", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18128", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18129", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18130", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18131", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18132", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18133", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18134", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18135", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18136", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18137", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18138", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18139", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18140", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18141", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18142", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18143", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18144", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18145", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18146", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18147", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18148", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18149", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18150", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18151", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18152", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18153", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18154", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18155", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18156", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18157", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18158", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18159", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18160", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18161", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18162", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18163", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18164", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18165", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18166", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18167", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18168", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18169", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18170", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18171", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18172", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18173", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18174", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18175", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18176", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18177", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18178", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18179", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18180", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18181", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18182", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18183", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18184", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18185", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18186", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18187", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18188", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("18189", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("18190", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18191", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18192", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18193", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18194", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18195", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18196", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18197", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18198", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("18199", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("18200", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18201", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18202", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18203", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18204", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18205", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18206", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18207", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18208", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18209", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18210", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18211", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18212", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18213", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18214", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18215", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18216", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18217", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18218", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18219", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18220", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18221", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18222", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18223", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18224", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18225", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18226", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18227", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18228", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18229", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18230", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18231", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18232", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18233", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18234", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18235", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18236", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18237", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18238", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18239", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18240", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18241", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18242", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18243", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18244", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18245", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18246", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18247", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18248", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18249", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18250", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18251", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18252", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18253", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18254", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18255", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18256", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18257", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18258", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18259", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18260", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18261", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18262", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18263", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18264", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18265", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18266", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18267", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18268", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18269", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18270", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18271", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18272", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18273", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18274", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18275", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18276", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18277", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18278", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18279", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18280", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18281", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18282", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18283", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18284", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18285", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18286", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18287", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18288", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("18289", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("18290", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18291", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18292", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18293", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18294", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18295", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18296", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18297", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18298", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("18299", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("18300", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18301", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18302", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18303", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18304", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18305", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18306", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18307", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18308", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18309", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18310", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18311", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18312", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18313", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18314", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18315", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18316", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18317", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18318", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18319", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18320", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18321", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18322", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18323", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18324", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18325", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18326", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18327", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18328", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18329", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18330", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18331", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18332", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18333", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18334", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18335", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18336", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18337", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18338", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18339", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18340", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18341", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18342", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18343", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18344", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18345", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18346", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18347", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18348", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18349", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18350", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18351", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18352", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18353", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18354", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18355", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18356", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18357", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18358", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18359", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18360", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18361", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18362", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18363", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18364", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18365", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18366", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18367", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18368", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18369", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18370", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18371", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18372", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18373", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18374", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18375", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18376", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18377", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18378", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18379", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18380", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18381", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18382", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18383", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18384", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18385", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18386", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18387", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18388", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("18389", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("18390", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18391", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18392", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18393", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18394", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18395", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18396", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18397", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18398", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("18399", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("18400", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18401", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18402", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18403", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18404", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18405", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18406", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18407", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18408", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18409", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18410", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18411", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18412", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18413", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18414", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18415", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18416", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18417", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18418", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18419", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18420", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18421", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18422", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18423", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18424", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18425", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18426", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18427", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18428", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18429", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18430", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18431", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18432", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18433", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18434", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18435", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18436", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18437", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18438", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18439", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18440", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18441", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18442", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18443", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18444", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18445", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18446", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18447", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18448", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18449", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18450", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18451", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18452", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18453", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18454", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18455", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18456", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18457", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18458", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18459", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18460", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18461", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18462", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18463", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18464", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18465", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18466", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18467", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18468", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18469", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18470", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18471", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18472", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18473", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18474", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18475", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18476", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18477", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18478", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18479", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18480", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18481", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18482", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18483", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18484", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18485", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18486", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18487", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18488", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("18489", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("18490", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18491", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18492", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18493", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18494", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18495", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18496", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18497", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18498", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("18499", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("18500", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18501", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18502", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18503", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18504", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18505", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18506", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18507", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18508", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18509", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18510", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18511", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18512", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18513", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18514", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18515", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18516", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18517", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18518", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18519", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18520", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18521", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18522", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18523", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18524", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18525", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18526", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18527", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18528", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18529", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18530", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18531", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18532", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18533", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18534", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18535", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18536", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18537", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18538", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18539", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18540", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18541", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18542", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18543", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18544", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18545", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18546", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18547", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18548", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18549", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18550", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18551", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18552", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18553", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18554", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18555", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18556", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18557", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18558", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18559", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18560", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18561", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18562", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18563", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18564", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18565", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18566", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18567", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18568", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18569", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18570", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18571", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18572", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18573", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18574", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18575", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18576", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18577", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18578", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18579", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18580", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18581", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18582", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18583", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18584", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18585", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18586", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18587", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18588", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("18589", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("18590", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18591", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18592", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18593", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18594", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18595", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18596", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18597", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18598", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("18599", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("18600", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18601", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18602", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18603", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18604", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18605", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18606", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18607", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18608", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18609", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18610", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18611", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18612", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18613", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18614", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18615", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18616", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18617", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18618", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18619", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18620", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18621", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18622", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18623", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18624", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18625", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18626", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18627", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18628", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18629", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18630", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18631", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18632", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18633", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18634", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18635", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18636", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18637", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18638", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18639", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18640", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18641", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18642", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18643", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18644", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18645", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18646", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18647", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18648", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18649", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18650", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18651", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18652", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18653", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18654", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18655", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18656", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18657", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18658", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18659", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18660", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18661", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18662", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18663", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18664", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18665", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18666", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18667", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18668", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18669", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18670", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18671", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18672", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18673", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18674", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18675", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18676", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18677", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18678", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18679", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18680", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18681", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18682", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18683", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18684", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18685", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18686", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18687", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18688", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("18689", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("18690", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18691", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18692", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18693", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18694", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18695", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18696", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18697", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18698", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("18699", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("18700", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18701", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18702", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18703", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18704", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18705", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18706", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18707", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18708", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18709", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18710", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18711", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18712", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18713", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18714", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18715", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18716", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18717", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18718", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18719", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18720", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18721", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18722", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18723", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18724", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18725", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18726", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18727", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18728", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18729", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18730", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18731", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18732", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18733", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18734", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18735", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18736", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18737", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18738", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18739", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18740", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18741", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18742", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18743", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18744", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18745", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18746", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18747", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18748", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18749", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18750", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18751", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18752", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18753", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18754", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18755", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18756", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18757", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18758", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18759", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18760", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18761", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18762", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18763", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18764", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18765", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18766", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18767", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18768", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18769", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18770", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18771", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18772", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18773", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18774", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18775", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18776", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18777", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18778", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18779", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18780", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18781", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18782", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18783", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18784", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18785", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18786", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18787", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18788", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("18789", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("18790", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18791", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18792", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18793", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18794", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18795", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18796", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18797", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18798", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("18799", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("18800", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18801", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18802", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18803", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18804", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18805", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18806", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18807", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18808", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18809", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18810", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18811", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18812", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18813", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18814", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18815", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18816", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18817", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18818", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18819", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18820", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18821", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18822", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18823", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18824", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18825", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18826", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18827", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18828", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18829", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18830", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18831", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18832", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18833", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18834", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18835", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18836", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18837", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18838", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18839", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18840", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18841", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18842", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18843", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18844", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18845", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18846", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18847", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18848", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18849", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18850", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18851", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18852", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18853", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18854", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18855", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18856", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18857", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18858", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18859", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18860", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18861", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18862", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18863", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18864", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18865", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18866", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18867", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18868", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18869", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18870", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18871", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18872", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18873", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18874", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18875", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18876", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18877", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18878", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18879", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18880", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18881", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18882", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18883", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18884", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18885", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18886", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18887", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18888", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("18889", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("18890", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18891", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18892", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18893", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18894", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18895", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18896", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18897", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18898", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("18899", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("18900", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18901", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18902", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18903", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18904", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18905", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18906", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18907", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18908", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18909", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18910", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18911", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18912", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18913", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18914", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18915", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18916", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18917", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18918", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18919", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18920", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18921", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18922", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18923", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18924", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18925", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18926", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18927", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18928", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18929", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18930", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18931", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18932", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18933", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18934", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18935", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18936", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18937", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18938", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18939", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18940", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18941", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18942", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18943", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18944", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18945", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18946", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18947", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18948", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18949", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18950", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18951", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18952", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18953", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18954", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18955", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18956", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18957", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18958", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18959", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18960", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18961", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18962", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18963", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18964", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18965", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18966", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18967", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18968", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18969", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18970", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18971", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18972", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18973", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18974", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18975", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18976", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18977", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("18978", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18979", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("18980", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18981", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18982", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18983", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18984", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18985", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18986", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18987", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18988", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("18989", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("18990", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18991", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18992", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18993", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18994", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18995", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18996", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18997", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("18998", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("18999", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("19000", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19001", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19002", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19003", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19004", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19005", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19006", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19007", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19008", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19009", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19010", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19011", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19012", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19013", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19014", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19015", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19016", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19017", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19018", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19019", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19020", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19021", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19022", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19023", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19024", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19025", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19026", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19027", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19028", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19029", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19030", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19031", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19032", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19033", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19034", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19035", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19036", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19037", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19038", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19039", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19040", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19041", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19042", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19043", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19044", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19045", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19046", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19047", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19048", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19049", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19050", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19051", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19052", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19053", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19054", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19055", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19056", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19057", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19058", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19059", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19060", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19061", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19062", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19063", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19064", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19065", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19066", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19067", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19068", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19069", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19070", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19071", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19072", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19073", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19074", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19075", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19076", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19077", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19078", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19079", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19080", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19081", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19082", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19083", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19084", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19085", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19086", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19087", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19088", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("19089", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("19090", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19091", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19092", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19093", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19094", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19095", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19096", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19097", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19098", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("19099", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("19100", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19101", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19102", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19103", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19104", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19105", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19106", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19107", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19108", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19109", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19110", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19111", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19112", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19113", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19114", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19115", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19116", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19117", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19118", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19119", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19120", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19121", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19122", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19123", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19124", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19125", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19126", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19127", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19128", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19129", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19130", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19131", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19132", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19133", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19134", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19135", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19136", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19137", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19138", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19139", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19140", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19141", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19142", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19143", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19144", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19145", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19146", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19147", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19148", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19149", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19150", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19151", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19152", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19153", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19154", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19155", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19156", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19157", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19158", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19159", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19160", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19161", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19162", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19163", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19164", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19165", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19166", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19167", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19168", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19169", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19170", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19171", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19172", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19173", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19174", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19175", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19176", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19177", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19178", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19179", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19180", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19181", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19182", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19183", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19184", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19185", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19186", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19187", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19188", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("19189", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("19190", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19191", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19192", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19193", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19194", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19195", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19196", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19197", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19198", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("19199", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("19200", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19201", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19202", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19203", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19204", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19205", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19206", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19207", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19208", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19209", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19210", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19211", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19212", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19213", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19214", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19215", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19216", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19217", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19218", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19219", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19220", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19221", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19222", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19223", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19224", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19225", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19226", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19227", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19228", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19229", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19230", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19231", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19232", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19233", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19234", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19235", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19236", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19237", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19238", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19239", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19240", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19241", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19242", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19243", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19244", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19245", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19246", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19247", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19248", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19249", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19250", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19251", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19252", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19253", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19254", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19255", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19256", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19257", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19258", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19259", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19260", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19261", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19262", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19263", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19264", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19265", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19266", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19267", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19268", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19269", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19270", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19271", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19272", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19273", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19274", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19275", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19276", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19277", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19278", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19279", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19280", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19281", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19282", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19283", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19284", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19285", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19286", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19287", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19288", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("19289", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("19290", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19291", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19292", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19293", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19294", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19295", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19296", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19297", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19298", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("19299", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("19300", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19301", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19302", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19303", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19304", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19305", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19306", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19307", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19308", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19309", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19310", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19311", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19312", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19313", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19314", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19315", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19316", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19317", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19318", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19319", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19320", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19321", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19322", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19323", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19324", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19325", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19326", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19327", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19328", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19329", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19330", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19331", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19332", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19333", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19334", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19335", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19336", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19337", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19338", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19339", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19340", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19341", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19342", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19343", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19344", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19345", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19346", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19347", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19348", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19349", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19350", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19351", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19352", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19353", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19354", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19355", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19356", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19357", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19358", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19359", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19360", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19361", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19362", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19363", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19364", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19365", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19366", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19367", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19368", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19369", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19370", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19371", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19372", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19373", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19374", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19375", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19376", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19377", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19378", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19379", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19380", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19381", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19382", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19383", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19384", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19385", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19386", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19387", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19388", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("19389", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("19390", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19391", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19392", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19393", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19394", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19395", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19396", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19397", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19398", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("19399", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("19400", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19401", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19402", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19403", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19404", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19405", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19406", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19407", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19408", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19409", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19410", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19411", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19412", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19413", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19414", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19415", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19416", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19417", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19418", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19419", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19420", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19421", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19422", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19423", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19424", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19425", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19426", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19427", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19428", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19429", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19430", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19431", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19432", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19433", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19434", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19435", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19436", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19437", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19438", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19439", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19440", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19441", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19442", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19443", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19444", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19445", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19446", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19447", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19448", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19449", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19450", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19451", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19452", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19453", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19454", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19455", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19456", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19457", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19458", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19459", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19460", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19461", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19462", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19463", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19464", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19465", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19466", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19467", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19468", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19469", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19470", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19471", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19472", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19473", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19474", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19475", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19476", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19477", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19478", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19479", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19480", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19481", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19482", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19483", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19484", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19485", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19486", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19487", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19488", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("19489", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("19490", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19491", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19492", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19493", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19494", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19495", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19496", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19497", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19498", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("19499", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("19500", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19501", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19502", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19503", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19504", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19505", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19506", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19507", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19508", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19509", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19510", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19511", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19512", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19513", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19514", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19515", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19516", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19517", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19518", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19519", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19520", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19521", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19522", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19523", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19524", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19525", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19526", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19527", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19528", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19529", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19530", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19531", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19532", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19533", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19534", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19535", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19536", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19537", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19538", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19539", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19540", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19541", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19542", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19543", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19544", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19545", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19546", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19547", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19548", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19549", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19550", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19551", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19552", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19553", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19554", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19555", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19556", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19557", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19558", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19559", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19560", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19561", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19562", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19563", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19564", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19565", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19566", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19567", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19568", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19569", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19570", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19571", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19572", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19573", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19574", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19575", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19576", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19577", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19578", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19579", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19580", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19581", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19582", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19583", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19584", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19585", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19586", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19587", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19588", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("19589", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("19590", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19591", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19592", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19593", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19594", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19595", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19596", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19597", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19598", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("19599", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("19600", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19601", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19602", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19603", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19604", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19605", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19606", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19607", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19608", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19609", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19610", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19611", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19612", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19613", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19614", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19615", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19616", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19617", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19618", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19619", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19620", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19621", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19622", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19623", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19624", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19625", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19626", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19627", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19628", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19629", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19630", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19631", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19632", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19633", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19634", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19635", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19636", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19637", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19638", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19639", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19640", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19641", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19642", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19643", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19644", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19645", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19646", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19647", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19648", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19649", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19650", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19651", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19652", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19653", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19654", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19655", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19656", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19657", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19658", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19659", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19660", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19661", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19662", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19663", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19664", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19665", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19666", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19667", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19668", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19669", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19670", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19671", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19672", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19673", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19674", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19675", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19676", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19677", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19678", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19679", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19680", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19681", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19682", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19683", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19684", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19685", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19686", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19687", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19688", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("19689", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("19690", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19691", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19692", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19693", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19694", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19695", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19696", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19697", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19698", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("19699", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("19700", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19701", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19702", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19703", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19704", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19705", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19706", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19707", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19708", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19709", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19710", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19711", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19712", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19713", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19714", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19715", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19716", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19717", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19718", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19719", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19720", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19721", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19722", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19723", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19724", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19725", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19726", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19727", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19728", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19729", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19730", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19731", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19732", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19733", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19734", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19735", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19736", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19737", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19738", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19739", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19740", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19741", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19742", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19743", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19744", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19745", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19746", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19747", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19748", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19749", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19750", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19751", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19752", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19753", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19754", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19755", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19756", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19757", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19758", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19759", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19760", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19761", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19762", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19763", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19764", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19765", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19766", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19767", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19768", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19769", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19770", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19771", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19772", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19773", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19774", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19775", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19776", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19777", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19778", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19779", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19780", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19781", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19782", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19783", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19784", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19785", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19786", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19787", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19788", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("19789", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("19790", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19791", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19792", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19793", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19794", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19795", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19796", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19797", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19798", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("19799", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("19800", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19801", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19802", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19803", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19804", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19805", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19806", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19807", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19808", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19809", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19810", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19811", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19812", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19813", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19814", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19815", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19816", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19817", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19818", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19819", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19820", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19821", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19822", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19823", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19824", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19825", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19826", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19827", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19828", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19829", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19830", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19831", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19832", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19833", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19834", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19835", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19836", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19837", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19838", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19839", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19840", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19841", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19842", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19843", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19844", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19845", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19846", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19847", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19848", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19849", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19850", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19851", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19852", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19853", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19854", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19855", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19856", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19857", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19858", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19859", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19860", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19861", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19862", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19863", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19864", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19865", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19866", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19867", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19868", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19869", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19870", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19871", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19872", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19873", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19874", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19875", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19876", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19877", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19878", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19879", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19880", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19881", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19882", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19883", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19884", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19885", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19886", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19887", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19888", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("19889", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("19890", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19891", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19892", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19893", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19894", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19895", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19896", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19897", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19898", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("19899", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("19900", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19901", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19902", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19903", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19904", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19905", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19906", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19907", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19908", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19909", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19910", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19911", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19912", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19913", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19914", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19915", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19916", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19917", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19918", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19919", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19920", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19921", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19922", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19923", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19924", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19925", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19926", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19927", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19928", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19929", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19930", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19931", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19932", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19933", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19934", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19935", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19936", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19937", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19938", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19939", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19940", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19941", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19942", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19943", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19944", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19945", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19946", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19947", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19948", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19949", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19950", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19951", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19952", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19953", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19954", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19955", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19956", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19957", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19958", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19959", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19960", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19961", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19962", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19963", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19964", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19965", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19966", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19967", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19968", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19969", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19970", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19971", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19972", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19973", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19974", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19975", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19976", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19977", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010000"),
+        ("19978", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19979", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010008"),
+        ("19980", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19981", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19982", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19983", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19984", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19985", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19986", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19987", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19988", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("19989", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("19990", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19991", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19992", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19993", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19994", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19995", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19996", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19997", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010080"),
+        ("19998", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("19999", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00010088"),
+        ("20000", "0x00020000"),
+        ("20001", "FILE_ATTRIBUTE_READONLY|0x00020000"),
+        ("20002", "FILE_ATTRIBUTE_HIDDEN|0x00020000"),
+        ("20003", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|0x00020000"),
+        ("20004", "FILE_ATTRIBUTE_SYSTEM|0x00020000"),
+        ("20005", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|0x00020000"),
+        ("20006", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|0x00020000"),
+        ("20007", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|0x00020000"),
+        ("20008", "0x00020008"),
+        ("20009", "FILE_ATTRIBUTE_READONLY|0x00020008"),
+        ("20010", "FILE_ATTRIBUTE_DIRECTORY|0x00020000"),
+        ("20011", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|0x00020000"),
+        ("20012", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|0x00020000"),
+        ("20013", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|0x00020000"),
+        ("20014", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|0x00020000"),
+        ("20015", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|0x00020000"),
+        ("20016", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|0x00020000"),
+        ("20017", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|0x00020000"),
+        ("20018", "FILE_ATTRIBUTE_DIRECTORY|0x00020008"),
+        ("20019", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|0x00020008"),
+        ("20020", "FILE_ATTRIBUTE_ARCHIVE|0x00020000"),
+        ("20021", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|0x00020000"),
+        ("20022", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|0x00020000"),
+        ("20023", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|0x00020000"),
+        ("20024", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|0x00020000"),
+        ("20025", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|0x00020000"),
+        ("20026", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|0x00020000"),
+        ("20027", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|0x00020000"),
+        ("20028", "FILE_ATTRIBUTE_ARCHIVE|0x00020008"),
+        ("20029", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|0x00020008"),
+        ("20030", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|0x00020000"),
+        ("20031", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|0x00020000"),
+        ("20032", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|0x00020000"),
+        ("20033", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|0x00020000"),
+        ("20034", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|0x00020000"),
+        ("20035", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|0x00020000"),
+        ("20036", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|0x00020000"),
+        ("20037", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|0x00020000"),
+        ("20038", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|0x00020008"),
+        ("20039", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|0x00020008"),
+        ("20040", "FILE_ATTRIBUTE_DEVICE|0x00020000"),
+        ("20041", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|0x00020000"),
+        ("20042", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|0x00020000"),
+        ("20043", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|0x00020000"),
+        ("20044", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|0x00020000"),
+        ("20045", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|0x00020000"),
+        ("20046", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|0x00020000"),
+        ("20047", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|0x00020000"),
+        ("20048", "FILE_ATTRIBUTE_DEVICE|0x00020008"),
+        ("20049", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|0x00020008"),
+        ("20050", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|0x00020000"),
+        ("20051", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|0x00020000"),
+        ("20052", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|0x00020000"),
+        ("20053", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|0x00020000"),
+        ("20054", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|0x00020000"),
+        ("20055", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|0x00020000"),
+        ("20056", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|0x00020000"),
+        ("20057", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|0x00020000"),
+        ("20058", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|0x00020008"),
+        ("20059", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|0x00020008"),
+        ("20060", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00020000"),
+        ("20061", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00020000"),
+        ("20062", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00020000"),
+        ("20063", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00020000"),
+        ("20064", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00020000"),
+        ("20065", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00020000"),
+        ("20066", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00020000"),
+        ("20067", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00020000"),
+        ("20068", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00020008"),
+        ("20069", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00020008"),
+        ("20070", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00020000"),
+        ("20071", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00020000"),
+        ("20072", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00020000"),
+        ("20073", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00020000"),
+        ("20074", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00020000"),
+        ("20075", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00020000"),
+        ("20076", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00020000"),
+        ("20077", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00020000"),
+        ("20078", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00020008"),
+        ("20079", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00020008"),
+        ("20080", "0x00020080"),
+        ("20081", "FILE_ATTRIBUTE_READONLY|0x00020080"),
+        ("20082", "FILE_ATTRIBUTE_HIDDEN|0x00020080"),
+        ("20083", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|0x00020080"),
+        ("20084", "FILE_ATTRIBUTE_SYSTEM|0x00020080"),
+        ("20085", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|0x00020080"),
+        ("20086", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|0x00020080"),
+        ("20087", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|0x00020080"),
+        ("20088", "0x00020088"),
+        ("20089", "FILE_ATTRIBUTE_READONLY|0x00020088"),
+        ("20090", "FILE_ATTRIBUTE_DIRECTORY|0x00020080"),
+        ("20091", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|0x00020080"),
+        ("20092", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|0x00020080"),
+        ("20093", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|0x00020080"),
+        ("20094", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|0x00020080"),
+        ("20095", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|0x00020080"),
+        ("20096", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|0x00020080"),
+        ("20097", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|0x00020080"),
+        ("20098", "FILE_ATTRIBUTE_DIRECTORY|0x00020088"),
+        ("20099", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|0x00020088"),
+        ("20100", "FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20101", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20102", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20103", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20104", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20105", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20106", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20107", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20108", "FILE_ATTRIBUTE_TEMPORARY|0x00020008"),
+        ("20109", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|0x00020008"),
+        ("20110", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20111", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20112", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20113", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20114", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20115", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20116", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20117", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20118", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00020008"),
+        ("20119", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00020008"),
+        ("20120", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20121", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20122", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20123", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20124", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20125", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20126", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20127", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20128", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00020008"),
+        ("20129", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00020008"),
+        ("20130", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20131", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20132", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20133", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20134", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20135", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20136", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20137", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20138", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00020008"),
+        ("20139", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00020008"),
+        ("20140", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20141", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20142", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20143", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20144", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20145", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20146", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20147", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20148", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00020008"),
+        ("20149", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00020008"),
+        ("20150", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20151", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20152", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20153", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20154", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20155", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20156", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20157", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20158", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00020008"),
+        ("20159", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00020008"),
+        ("20160", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20161", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20162", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20163", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20164", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20165", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20166", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20167", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20168", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00020008"),
+        ("20169", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00020008"),
+        ("20170", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20171", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20172", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20173", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20174", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20175", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20176", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20177", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00020000"),
+        ("20178", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00020008"),
+        ("20179", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00020008"),
+        ("20180", "FILE_ATTRIBUTE_TEMPORARY|0x00020080"),
+        ("20181", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|0x00020080"),
+        ("20182", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|0x00020080"),
+        ("20183", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|0x00020080"),
+        ("20184", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|0x00020080"),
+        ("20185", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|0x00020080"),
+        ("20186", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|0x00020080"),
+        ("20187", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|0x00020080"),
+        ("20188", "FILE_ATTRIBUTE_TEMPORARY|0x00020088"),
+        ("20189", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|0x00020088"),
+        ("20190", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00020080"),
+        ("20191", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00020080"),
+        ("20192", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00020080"),
+        ("20193", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00020080"),
+        ("20194", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00020080"),
+        ("20195", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00020080"),
+        ("20196", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00020080"),
+        ("20197", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00020080"),
+        ("20198", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00020088"),
+        ("20199", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00020088"),
+        ("20200", "FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20201", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20202", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20203", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20204", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20205", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20206", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20207", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20208", "FILE_ATTRIBUTE_SPARSE_FILE|0x00020008"),
+        ("20209", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020008"),
+        ("20210", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20211", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20212", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20213", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20214", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20215", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20216", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20217", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20218", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020008"),
+        ("20219", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020008"),
+        ("20220", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20221", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20222", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20223", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20224", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20225", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20226", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20227", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20228", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020008"),
+        ("20229", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020008"),
+        ("20230", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20231", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20232", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20233", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20234", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20235", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20236", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20237", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20238", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020008"),
+        ("20239", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020008"),
+        ("20240", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20241", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20242", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20243", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20244", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20245", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20246", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20247", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20248", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020008"),
+        ("20249", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020008"),
+        ("20250", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20251", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20252", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20253", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20254", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20255", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20256", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20257", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20258", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020008"),
+        ("20259", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020008"),
+        ("20260", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20261", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20262", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20263", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20264", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20265", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20266", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20267", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20268", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020008"),
+        ("20269", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020008"),
+        ("20270", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20271", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20272", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20273", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20274", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20275", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20276", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20277", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20278", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020008"),
+        ("20279", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00020008"),
+        ("20280", "FILE_ATTRIBUTE_SPARSE_FILE|0x00020080"),
+        ("20281", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020080"),
+        ("20282", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|0x00020080"),
+        ("20283", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|0x00020080"),
+        ("20284", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|0x00020080"),
+        ("20285", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|0x00020080"),
+        ("20286", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|0x00020080"),
+        ("20287", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|0x00020080"),
+        ("20288", "FILE_ATTRIBUTE_SPARSE_FILE|0x00020088"),
+        ("20289", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020088"),
+        ("20290", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020080"),
+        ("20291", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020080"),
+        ("20292", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020080"),
+        ("20293", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020080"),
+        ("20294", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020080"),
+        ("20295", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020080"),
+        ("20296", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020080"),
+        ("20297", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020080"),
+        ("20298", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020088"),
+        ("20299", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020088"),
+        ("20300", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20301", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20302", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20303", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20304", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20305", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20306", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20307", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20308", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020008"),
+        ("20309", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020008"),
+        ("20310", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20311", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20312", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20313", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20314", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20315", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20316", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20317", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20318", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020008"),
+        ("20319", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020008"),
+        ("20320", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20321", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20322", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20323", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20324", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20325", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20326", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20327", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20328", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020008"),
+        ("20329", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020008"),
+        ("20330", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20331", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20332", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20333", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20334", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20335", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20336", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20337", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20338", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020008"),
+        ("20339", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020008"),
+        ("20340", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20341", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20342", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20343", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20344", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20345", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20346", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20347", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20348", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020008"),
+        ("20349", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020008"),
+        ("20350", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20351", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20352", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20353", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20354", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20355", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20356", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20357", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20358", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020008"),
+        ("20359", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020008"),
+        ("20360", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20361", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20362", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20363", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20364", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20365", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20366", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20367", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20368", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020008"),
+        ("20369", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020008"),
+        ("20370", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20371", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20372", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20373", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20374", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20375", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20376", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20377", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020000"),
+        ("20378", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020008"),
+        ("20379", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020008"),
+        ("20380", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020080"),
+        ("20381", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020080"),
+        ("20382", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020080"),
+        ("20383", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020080"),
+        ("20384", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020080"),
+        ("20385", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020080"),
+        ("20386", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020080"),
+        ("20387", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020080"),
+        ("20388", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020088"),
+        ("20389", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020088"),
+        ("20390", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020080"),
+        ("20391", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020080"),
+        ("20392", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020080"),
+        ("20393", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020080"),
+        ("20394", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020080"),
+        ("20395", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020080"),
+        ("20396", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020080"),
+        ("20397", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020080"),
+        ("20398", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020088"),
+        ("20399", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00020088"),
+        ("20400", "FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20401", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20402", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20403", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20404", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20405", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20406", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20407", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20408", "FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20409", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20410", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20411", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20412", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20413", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20414", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20415", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20416", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20417", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20418", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20419", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20420", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20421", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20422", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20423", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20424", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20425", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20426", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20427", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20428", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20429", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20430", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20431", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20432", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20433", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20434", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20435", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20436", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20437", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20438", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20439", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20440", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20441", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20442", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20443", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20444", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20445", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20446", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20447", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20448", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20449", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20450", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20451", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20452", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20453", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20454", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20455", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20456", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20457", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20458", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20459", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20460", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20461", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20462", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20463", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20464", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20465", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20466", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20467", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20468", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20469", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20470", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20471", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20472", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20473", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20474", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20475", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20476", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20477", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20478", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20479", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20480", "FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20481", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20482", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20483", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20484", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20485", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20486", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20487", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20488", "FILE_ATTRIBUTE_REPARSE_POINT|0x00020088"),
+        ("20489", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020088"),
+        ("20490", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20491", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20492", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20493", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20494", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20495", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20496", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20497", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20498", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020088"),
+        ("20499", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020088"),
+        ("20500", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20501", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20502", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20503", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20504", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20505", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20506", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20507", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20508", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20509", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20510", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20511", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20512", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20513", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20514", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20515", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20516", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20517", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20518", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20519", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20520", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20521", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20522", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20523", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20524", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20525", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20526", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20527", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20528", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20529", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20530", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20531", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20532", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20533", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20534", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20535", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20536", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20537", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20538", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20539", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20540", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20541", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20542", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20543", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20544", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20545", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20546", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20547", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20548", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20549", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20550", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20551", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20552", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20553", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20554", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20555", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20556", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20557", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20558", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20559", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20560", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20561", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20562", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20563", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20564", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20565", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20566", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20567", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20568", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20569", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20570", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20571", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20572", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20573", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20574", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20575", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20576", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20577", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20578", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20579", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20580", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20581", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20582", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20583", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20584", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20585", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20586", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20587", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20588", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020088"),
+        ("20589", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020088"),
+        ("20590", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20591", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20592", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20593", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20594", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20595", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20596", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20597", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20598", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020088"),
+        ("20599", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00020088"),
+        ("20600", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20601", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20602", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20603", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20604", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20605", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20606", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20607", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20608", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20609", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20610", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20611", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20612", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20613", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20614", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20615", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20616", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20617", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20618", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20619", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20620", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20621", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20622", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20623", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20624", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20625", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20626", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20627", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20628", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20629", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20630", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20631", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20632", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20633", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20634", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20635", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20636", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20637", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20638", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20639", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20640", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20641", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20642", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20643", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20644", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20645", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20646", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20647", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20648", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20649", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20650", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20651", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20652", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20653", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20654", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20655", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20656", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20657", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20658", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20659", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20660", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20661", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20662", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20663", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20664", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20665", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20666", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20667", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20668", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20669", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20670", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20671", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20672", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20673", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20674", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20675", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20676", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20677", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20678", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20679", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20680", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20681", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20682", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20683", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20684", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20685", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20686", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20687", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20688", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020088"),
+        ("20689", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020088"),
+        ("20690", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20691", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20692", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20693", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20694", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20695", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20696", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20697", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20698", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020088"),
+        ("20699", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020088"),
+        ("20700", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20701", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20702", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20703", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20704", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20705", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20706", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20707", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20708", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20709", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20710", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20711", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20712", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20713", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20714", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20715", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20716", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20717", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20718", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20719", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20720", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20721", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20722", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20723", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20724", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20725", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20726", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20727", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20728", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20729", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20730", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20731", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20732", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20733", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20734", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20735", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20736", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20737", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20738", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20739", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20740", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20741", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20742", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20743", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20744", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20745", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20746", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20747", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20748", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20749", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20750", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20751", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20752", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20753", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20754", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20755", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20756", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20757", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20758", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20759", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20760", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20761", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20762", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20763", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20764", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20765", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20766", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20767", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20768", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20769", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20770", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20771", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20772", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20773", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20774", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20775", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20776", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20777", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020000"),
+        ("20778", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20779", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020008"),
+        ("20780", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20781", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20782", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20783", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20784", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20785", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20786", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20787", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20788", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020088"),
+        ("20789", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020088"),
+        ("20790", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20791", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20792", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20793", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20794", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20795", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20796", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20797", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020080"),
+        ("20798", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020088"),
+        ("20799", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00020088"),
+        ("20800", "FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20801", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20802", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20803", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20804", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20805", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20806", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20807", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20808", "FILE_ATTRIBUTE_COMPRESSED|0x00020008"),
+        ("20809", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|0x00020008"),
+        ("20810", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20811", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20812", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20813", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20814", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20815", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20816", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20817", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20818", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00020008"),
+        ("20819", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00020008"),
+        ("20820", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20821", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20822", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20823", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20824", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20825", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20826", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20827", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20828", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00020008"),
+        ("20829", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00020008"),
+        ("20830", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20831", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20832", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20833", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20834", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20835", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20836", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20837", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20838", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00020008"),
+        ("20839", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00020008"),
+        ("20840", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20841", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20842", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20843", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20844", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20845", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20846", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20847", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20848", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00020008"),
+        ("20849", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00020008"),
+        ("20850", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20851", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20852", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20853", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20854", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20855", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20856", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20857", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20858", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00020008"),
+        ("20859", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00020008"),
+        ("20860", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20861", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20862", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20863", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20864", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20865", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20866", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20867", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20868", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00020008"),
+        ("20869", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00020008"),
+        ("20870", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20871", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20872", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20873", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20874", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20875", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20876", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20877", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20878", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00020008"),
+        ("20879", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00020008"),
+        ("20880", "FILE_ATTRIBUTE_COMPRESSED|0x00020080"),
+        ("20881", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|0x00020080"),
+        ("20882", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|0x00020080"),
+        ("20883", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|0x00020080"),
+        ("20884", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|0x00020080"),
+        ("20885", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|0x00020080"),
+        ("20886", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|0x00020080"),
+        ("20887", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|0x00020080"),
+        ("20888", "FILE_ATTRIBUTE_COMPRESSED|0x00020088"),
+        ("20889", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|0x00020088"),
+        ("20890", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00020080"),
+        ("20891", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00020080"),
+        ("20892", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00020080"),
+        ("20893", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00020080"),
+        ("20894", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00020080"),
+        ("20895", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00020080"),
+        ("20896", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00020080"),
+        ("20897", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00020080"),
+        ("20898", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00020088"),
+        ("20899", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00020088"),
+        ("20900", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20901", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20902", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20903", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20904", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20905", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20906", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20907", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20908", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020008"),
+        ("20909", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020008"),
+        ("20910", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20911", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20912", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20913", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20914", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20915", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20916", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20917", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20918", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020008"),
+        ("20919", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020008"),
+        ("20920", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20921", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20922", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20923", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20924", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20925", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20926", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20927", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20928", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020008"),
+        ("20929", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020008"),
+        ("20930", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20931", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20932", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20933", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20934", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20935", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20936", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20937", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20938", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020008"),
+        ("20939", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020008"),
+        ("20940", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20941", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20942", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20943", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20944", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20945", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20946", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20947", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20948", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020008"),
+        ("20949", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020008"),
+        ("20950", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20951", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20952", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20953", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20954", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20955", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20956", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20957", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20958", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020008"),
+        ("20959", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020008"),
+        ("20960", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20961", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20962", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20963", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20964", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20965", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20966", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20967", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20968", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020008"),
+        ("20969", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020008"),
+        ("20970", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20971", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20972", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20973", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20974", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20975", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20976", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20977", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020000"),
+        ("20978", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020008"),
+        ("20979", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020008"),
+        ("20980", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020080"),
+        ("20981", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020080"),
+        ("20982", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020080"),
+        ("20983", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020080"),
+        ("20984", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020080"),
+        ("20985", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020080"),
+        ("20986", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020080"),
+        ("20987", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020080"),
+        ("20988", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020088"),
+        ("20989", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020088"),
+        ("20990", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020080"),
+        ("20991", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020080"),
+        ("20992", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020080"),
+        ("20993", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020080"),
+        ("20994", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020080"),
+        ("20995", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020080"),
+        ("20996", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020080"),
+        ("20997", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020080"),
+        ("20998", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020088"),
+        ("20999", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00020088"),
+        ("21000", "FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21001", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21002", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21003", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21004", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21005", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21006", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21007", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21008", "FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21009", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21010", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21011", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21012", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21013", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21014", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21015", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21016", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21017", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21018", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21019", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21020", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21021", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21022", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21023", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21024", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21025", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21026", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21027", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21028", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21029", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21030", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21031", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21032", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21033", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21034", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21035", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21036", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21037", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21038", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21039", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21040", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21041", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21042", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21043", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21044", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21045", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21046", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21047", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21048", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21049", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21050", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21051", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21052", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21053", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21054", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21055", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21056", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21057", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21058", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21059", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21060", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21061", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21062", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21063", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21064", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21065", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21066", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21067", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21068", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21069", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21070", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21071", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21072", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21073", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21074", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21075", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21076", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21077", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21078", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21079", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21080", "FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21081", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21082", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21083", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21084", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21085", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21086", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21087", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21088", "FILE_ATTRIBUTE_OFFLINE|0x00020088"),
+        ("21089", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|0x00020088"),
+        ("21090", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21091", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21092", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21093", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21094", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21095", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21096", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21097", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21098", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00020088"),
+        ("21099", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00020088"),
+        ("21100", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21101", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21102", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21103", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21104", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21105", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21106", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21107", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21108", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21109", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21110", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21111", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21112", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21113", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21114", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21115", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21116", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21117", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21118", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21119", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21120", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21121", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21122", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21123", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21124", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21125", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21126", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21127", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21128", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21129", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21130", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21131", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21132", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21133", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21134", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21135", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21136", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21137", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21138", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21139", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21140", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21141", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21142", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21143", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21144", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21145", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21146", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21147", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21148", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21149", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21150", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21151", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21152", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21153", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21154", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21155", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21156", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21157", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21158", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21159", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21160", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21161", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21162", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21163", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21164", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21165", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21166", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21167", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21168", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21169", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21170", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21171", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21172", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21173", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21174", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21175", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21176", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21177", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21178", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21179", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21180", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21181", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21182", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21183", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21184", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21185", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21186", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21187", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21188", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020088"),
+        ("21189", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020088"),
+        ("21190", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21191", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21192", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21193", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21194", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21195", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21196", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21197", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21198", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020088"),
+        ("21199", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00020088"),
+        ("21200", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21201", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21202", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21203", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21204", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21205", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21206", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21207", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21208", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21209", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21210", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21211", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21212", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21213", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21214", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21215", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21216", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21217", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21218", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21219", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21220", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21221", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21222", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21223", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21224", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21225", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21226", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21227", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21228", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21229", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21230", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21231", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21232", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21233", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21234", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21235", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21236", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21237", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21238", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21239", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21240", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21241", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21242", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21243", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21244", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21245", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21246", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21247", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21248", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21249", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21250", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21251", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21252", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21253", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21254", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21255", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21256", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21257", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21258", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21259", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21260", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21261", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21262", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21263", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21264", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21265", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21266", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21267", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21268", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21269", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21270", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21271", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21272", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21273", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21274", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21275", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21276", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21277", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21278", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21279", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21280", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21281", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21282", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21283", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21284", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21285", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21286", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21287", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21288", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020088"),
+        ("21289", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020088"),
+        ("21290", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21291", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21292", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21293", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21294", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21295", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21296", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21297", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21298", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020088"),
+        ("21299", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020088"),
+        ("21300", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21301", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21302", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21303", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21304", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21305", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21306", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21307", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21308", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21309", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21310", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21311", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21312", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21313", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21314", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21315", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21316", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21317", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21318", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21319", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21320", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21321", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21322", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21323", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21324", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21325", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21326", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21327", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21328", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21329", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21330", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21331", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21332", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21333", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21334", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21335", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21336", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21337", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21338", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21339", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21340", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21341", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21342", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21343", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21344", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21345", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21346", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21347", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21348", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21349", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21350", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21351", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21352", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21353", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21354", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21355", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21356", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21357", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21358", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21359", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21360", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21361", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21362", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21363", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21364", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21365", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21366", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21367", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21368", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21369", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21370", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21371", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21372", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21373", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21374", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21375", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21376", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21377", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21378", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21379", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21380", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21381", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21382", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21383", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21384", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21385", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21386", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21387", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21388", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020088"),
+        ("21389", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020088"),
+        ("21390", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21391", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21392", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21393", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21394", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21395", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21396", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21397", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21398", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020088"),
+        ("21399", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00020088"),
+        ("21400", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21401", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21402", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21403", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21404", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21405", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21406", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21407", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21408", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21409", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21410", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21411", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21412", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21413", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21414", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21415", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21416", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21417", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21418", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21419", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21420", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21421", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21422", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21423", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21424", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21425", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21426", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21427", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21428", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21429", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21430", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21431", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21432", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21433", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21434", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21435", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21436", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21437", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21438", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21439", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21440", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21441", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21442", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21443", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21444", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21445", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21446", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21447", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21448", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21449", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21450", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21451", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21452", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21453", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21454", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21455", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21456", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21457", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21458", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21459", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21460", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21461", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21462", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21463", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21464", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21465", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21466", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21467", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21468", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21469", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21470", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21471", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21472", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21473", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21474", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21475", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21476", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21477", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21478", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21479", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21480", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21481", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21482", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21483", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21484", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21485", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21486", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21487", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21488", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020088"),
+        ("21489", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020088"),
+        ("21490", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21491", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21492", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21493", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21494", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21495", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21496", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21497", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21498", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020088"),
+        ("21499", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020088"),
+        ("21500", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21501", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21502", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21503", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21504", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21505", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21506", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21507", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21508", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21509", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21510", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21511", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21512", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21513", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21514", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21515", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21516", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21517", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21518", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21519", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21520", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21521", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21522", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21523", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21524", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21525", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21526", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21527", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21528", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21529", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21530", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21531", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21532", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21533", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21534", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21535", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21536", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21537", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21538", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21539", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21540", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21541", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21542", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21543", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21544", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21545", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21546", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21547", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21548", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21549", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21550", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21551", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21552", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21553", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21554", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21555", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21556", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21557", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21558", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21559", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21560", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21561", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21562", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21563", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21564", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21565", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21566", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21567", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21568", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21569", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21570", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21571", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21572", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21573", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21574", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21575", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21576", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21577", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21578", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21579", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21580", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21581", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21582", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21583", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21584", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21585", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21586", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21587", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21588", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020088"),
+        ("21589", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020088"),
+        ("21590", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21591", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21592", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21593", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21594", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21595", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21596", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21597", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21598", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020088"),
+        ("21599", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020088"),
+        ("21600", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21601", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21602", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21603", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21604", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21605", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21606", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21607", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21608", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21609", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21610", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21611", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21612", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21613", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21614", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21615", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21616", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21617", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21618", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21619", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21620", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21621", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21622", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21623", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21624", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21625", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21626", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21627", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21628", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21629", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21630", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21631", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21632", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21633", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21634", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21635", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21636", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21637", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21638", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21639", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21640", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21641", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21642", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21643", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21644", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21645", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21646", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21647", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21648", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21649", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21650", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21651", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21652", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21653", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21654", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21655", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21656", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21657", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21658", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21659", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21660", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21661", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21662", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21663", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21664", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21665", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21666", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21667", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21668", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21669", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21670", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21671", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21672", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21673", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21674", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21675", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21676", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21677", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21678", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21679", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21680", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21681", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21682", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21683", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21684", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21685", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21686", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21687", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21688", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020088"),
+        ("21689", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020088"),
+        ("21690", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21691", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21692", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21693", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21694", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21695", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21696", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21697", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21698", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020088"),
+        ("21699", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020088"),
+        ("21700", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21701", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21702", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21703", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21704", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21705", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21706", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21707", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21708", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21709", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21710", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21711", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21712", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21713", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21714", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21715", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21716", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21717", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21718", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21719", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21720", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21721", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21722", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21723", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21724", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21725", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21726", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21727", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21728", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21729", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21730", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21731", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21732", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21733", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21734", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21735", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21736", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21737", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21738", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21739", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21740", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21741", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21742", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21743", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21744", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21745", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21746", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21747", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21748", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21749", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21750", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21751", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21752", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21753", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21754", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21755", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21756", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21757", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21758", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21759", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21760", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21761", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21762", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21763", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21764", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21765", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21766", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21767", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21768", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21769", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21770", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21771", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21772", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21773", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21774", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21775", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21776", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21777", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21778", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21779", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21780", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21781", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21782", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21783", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21784", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21785", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21786", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21787", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21788", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020088"),
+        ("21789", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020088"),
+        ("21790", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21791", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21792", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21793", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21794", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21795", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21796", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21797", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21798", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020088"),
+        ("21799", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00020088"),
+        ("21800", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21801", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21802", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21803", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21804", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21805", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21806", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21807", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21808", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21809", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21810", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21811", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21812", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21813", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21814", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21815", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21816", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21817", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21818", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21819", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21820", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21821", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21822", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21823", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21824", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21825", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21826", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21827", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21828", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21829", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21830", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21831", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21832", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21833", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21834", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21835", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21836", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21837", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21838", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21839", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21840", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21841", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21842", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21843", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21844", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21845", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21846", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21847", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21848", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21849", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21850", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21851", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21852", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21853", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21854", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21855", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21856", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21857", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21858", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21859", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21860", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21861", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21862", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21863", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21864", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21865", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21866", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21867", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21868", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21869", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21870", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21871", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21872", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21873", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21874", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21875", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21876", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21877", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21878", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21879", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21880", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21881", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21882", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21883", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21884", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21885", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21886", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21887", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21888", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020088"),
+        ("21889", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020088"),
+        ("21890", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21891", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21892", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21893", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21894", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21895", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21896", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21897", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21898", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020088"),
+        ("21899", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020088"),
+        ("21900", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21901", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21902", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21903", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21904", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21905", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21906", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21907", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21908", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21909", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21910", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21911", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21912", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21913", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21914", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21915", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21916", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21917", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21918", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21919", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21920", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21921", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21922", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21923", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21924", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21925", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21926", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21927", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21928", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21929", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21930", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21931", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21932", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21933", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21934", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21935", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21936", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21937", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21938", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21939", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21940", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21941", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21942", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21943", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21944", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21945", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21946", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21947", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21948", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21949", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21950", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21951", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21952", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21953", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21954", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21955", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21956", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21957", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21958", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21959", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21960", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21961", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21962", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21963", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21964", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21965", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21966", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21967", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21968", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21969", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21970", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21971", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21972", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21973", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21974", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21975", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21976", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21977", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020000"),
+        ("21978", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21979", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020008"),
+        ("21980", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21981", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21982", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21983", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21984", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21985", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21986", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21987", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21988", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020088"),
+        ("21989", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020088"),
+        ("21990", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21991", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21992", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21993", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21994", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21995", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21996", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21997", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020080"),
+        ("21998", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020088"),
+        ("21999", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00020088"),
+        ("22000", "FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22001", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22002", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22003", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22004", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22005", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22006", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22007", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22008", "FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22009", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22010", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22011", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22012", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22013", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22014", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22015", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22016", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22017", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22018", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22019", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22020", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22021", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22022", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22023", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22024", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22025", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22026", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22027", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22028", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22029", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22030", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22031", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22032", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22033", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22034", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22035", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22036", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22037", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22038", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22039", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22040", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22041", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22042", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22043", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22044", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22045", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22046", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22047", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22048", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22049", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22050", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22051", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22052", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22053", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22054", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22055", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22056", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22057", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22058", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22059", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22060", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22061", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22062", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22063", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22064", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22065", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22066", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22067", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22068", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22069", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22070", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22071", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22072", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22073", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22074", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22075", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22076", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22077", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22078", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22079", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22080", "FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22081", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22082", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22083", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22084", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22085", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22086", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22087", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22088", "FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("22089", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("22090", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22091", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22092", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22093", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22094", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22095", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22096", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22097", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22098", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("22099", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("22100", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22101", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22102", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22103", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22104", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22105", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22106", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22107", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22108", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22109", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22110", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22111", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22112", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22113", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22114", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22115", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22116", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22117", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22118", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22119", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22120", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22121", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22122", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22123", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22124", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22125", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22126", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22127", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22128", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22129", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22130", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22131", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22132", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22133", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22134", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22135", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22136", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22137", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22138", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22139", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22140", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22141", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22142", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22143", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22144", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22145", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22146", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22147", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22148", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22149", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22150", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22151", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22152", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22153", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22154", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22155", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22156", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22157", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22158", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22159", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22160", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22161", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22162", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22163", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22164", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22165", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22166", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22167", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22168", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22169", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22170", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22171", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22172", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22173", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22174", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22175", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22176", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22177", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22178", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22179", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22180", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22181", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22182", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22183", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22184", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22185", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22186", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22187", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22188", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("22189", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("22190", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22191", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22192", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22193", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22194", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22195", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22196", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22197", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22198", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("22199", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("22200", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22201", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22202", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22203", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22204", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22205", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22206", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22207", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22208", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22209", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22210", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22211", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22212", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22213", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22214", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22215", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22216", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22217", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22218", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22219", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22220", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22221", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22222", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22223", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22224", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22225", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22226", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22227", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22228", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22229", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22230", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22231", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22232", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22233", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22234", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22235", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22236", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22237", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22238", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22239", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22240", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22241", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22242", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22243", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22244", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22245", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22246", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22247", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22248", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22249", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22250", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22251", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22252", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22253", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22254", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22255", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22256", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22257", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22258", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22259", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22260", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22261", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22262", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22263", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22264", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22265", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22266", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22267", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22268", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22269", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22270", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22271", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22272", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22273", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22274", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22275", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22276", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22277", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22278", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22279", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22280", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22281", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22282", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22283", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22284", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22285", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22286", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22287", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22288", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("22289", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("22290", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22291", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22292", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22293", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22294", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22295", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22296", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22297", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22298", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("22299", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("22300", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22301", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22302", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22303", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22304", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22305", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22306", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22307", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22308", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22309", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22310", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22311", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22312", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22313", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22314", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22315", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22316", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22317", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22318", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22319", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22320", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22321", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22322", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22323", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22324", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22325", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22326", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22327", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22328", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22329", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22330", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22331", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22332", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22333", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22334", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22335", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22336", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22337", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22338", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22339", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22340", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22341", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22342", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22343", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22344", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22345", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22346", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22347", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22348", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22349", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22350", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22351", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22352", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22353", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22354", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22355", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22356", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22357", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22358", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22359", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22360", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22361", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22362", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22363", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22364", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22365", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22366", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22367", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22368", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22369", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22370", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22371", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22372", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22373", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22374", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22375", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22376", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22377", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22378", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22379", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22380", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22381", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22382", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22383", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22384", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22385", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22386", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22387", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22388", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("22389", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("22390", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22391", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22392", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22393", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22394", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22395", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22396", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22397", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22398", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("22399", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("22400", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22401", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22402", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22403", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22404", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22405", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22406", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22407", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22408", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22409", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22410", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22411", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22412", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22413", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22414", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22415", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22416", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22417", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22418", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22419", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22420", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22421", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22422", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22423", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22424", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22425", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22426", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22427", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22428", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22429", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22430", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22431", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22432", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22433", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22434", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22435", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22436", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22437", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22438", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22439", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22440", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22441", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22442", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22443", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22444", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22445", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22446", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22447", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22448", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22449", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22450", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22451", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22452", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22453", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22454", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22455", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22456", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22457", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22458", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22459", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22460", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22461", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22462", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22463", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22464", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22465", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22466", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22467", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22468", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22469", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22470", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22471", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22472", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22473", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22474", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22475", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22476", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22477", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22478", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22479", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22480", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22481", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22482", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22483", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22484", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22485", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22486", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22487", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22488", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("22489", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("22490", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22491", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22492", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22493", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22494", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22495", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22496", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22497", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22498", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("22499", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("22500", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22501", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22502", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22503", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22504", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22505", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22506", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22507", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22508", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22509", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22510", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22511", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22512", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22513", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22514", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22515", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22516", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22517", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22518", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22519", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22520", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22521", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22522", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22523", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22524", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22525", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22526", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22527", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22528", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22529", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22530", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22531", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22532", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22533", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22534", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22535", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22536", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22537", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22538", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22539", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22540", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22541", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22542", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22543", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22544", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22545", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22546", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22547", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22548", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22549", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22550", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22551", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22552", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22553", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22554", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22555", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22556", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22557", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22558", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22559", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22560", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22561", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22562", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22563", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22564", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22565", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22566", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22567", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22568", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22569", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22570", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22571", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22572", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22573", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22574", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22575", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22576", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22577", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22578", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22579", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22580", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22581", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22582", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22583", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22584", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22585", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22586", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22587", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22588", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("22589", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("22590", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22591", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22592", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22593", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22594", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22595", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22596", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22597", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22598", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("22599", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("22600", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22601", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22602", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22603", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22604", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22605", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22606", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22607", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22608", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22609", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22610", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22611", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22612", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22613", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22614", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22615", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22616", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22617", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22618", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22619", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22620", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22621", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22622", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22623", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22624", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22625", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22626", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22627", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22628", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22629", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22630", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22631", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22632", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22633", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22634", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22635", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22636", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22637", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22638", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22639", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22640", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22641", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22642", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22643", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22644", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22645", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22646", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22647", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22648", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22649", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22650", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22651", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22652", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22653", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22654", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22655", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22656", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22657", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22658", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22659", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22660", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22661", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22662", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22663", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22664", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22665", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22666", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22667", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22668", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22669", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22670", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22671", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22672", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22673", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22674", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22675", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22676", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22677", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22678", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22679", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22680", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22681", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22682", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22683", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22684", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22685", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22686", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22687", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22688", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("22689", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("22690", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22691", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22692", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22693", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22694", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22695", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22696", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22697", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22698", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("22699", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("22700", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22701", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22702", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22703", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22704", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22705", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22706", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22707", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22708", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22709", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22710", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22711", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22712", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22713", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22714", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22715", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22716", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22717", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22718", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22719", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22720", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22721", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22722", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22723", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22724", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22725", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22726", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22727", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22728", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22729", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22730", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22731", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22732", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22733", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22734", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22735", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22736", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22737", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22738", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22739", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22740", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22741", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22742", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22743", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22744", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22745", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22746", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22747", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22748", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22749", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22750", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22751", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22752", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22753", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22754", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22755", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22756", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22757", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22758", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22759", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22760", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22761", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22762", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22763", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22764", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22765", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22766", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22767", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22768", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22769", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22770", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22771", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22772", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22773", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22774", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22775", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22776", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22777", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22778", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22779", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22780", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22781", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22782", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22783", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22784", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22785", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22786", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22787", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22788", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("22789", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("22790", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22791", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22792", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22793", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22794", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22795", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22796", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22797", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22798", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("22799", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("22800", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22801", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22802", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22803", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22804", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22805", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22806", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22807", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22808", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22809", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22810", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22811", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22812", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22813", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22814", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22815", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22816", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22817", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22818", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22819", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22820", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22821", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22822", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22823", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22824", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22825", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22826", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22827", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22828", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22829", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22830", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22831", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22832", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22833", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22834", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22835", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22836", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22837", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22838", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22839", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22840", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22841", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22842", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22843", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22844", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22845", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22846", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22847", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22848", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22849", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22850", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22851", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22852", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22853", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22854", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22855", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22856", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22857", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22858", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22859", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22860", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22861", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22862", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22863", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22864", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22865", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22866", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22867", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22868", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22869", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22870", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22871", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22872", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22873", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22874", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22875", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22876", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22877", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22878", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22879", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22880", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22881", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22882", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22883", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22884", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22885", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22886", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22887", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22888", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("22889", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("22890", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22891", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22892", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22893", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22894", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22895", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22896", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22897", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22898", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("22899", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("22900", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22901", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22902", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22903", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22904", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22905", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22906", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22907", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22908", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22909", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22910", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22911", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22912", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22913", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22914", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22915", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22916", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22917", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22918", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22919", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22920", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22921", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22922", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22923", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22924", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22925", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22926", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22927", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22928", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22929", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22930", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22931", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22932", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22933", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22934", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22935", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22936", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22937", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22938", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22939", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22940", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22941", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22942", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22943", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22944", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22945", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22946", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22947", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22948", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22949", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22950", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22951", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22952", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22953", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22954", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22955", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22956", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22957", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22958", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22959", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22960", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22961", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22962", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22963", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22964", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22965", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22966", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22967", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22968", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22969", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22970", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22971", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22972", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22973", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22974", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22975", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22976", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22977", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("22978", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22979", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("22980", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22981", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22982", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22983", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22984", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22985", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22986", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22987", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22988", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("22989", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("22990", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22991", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22992", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22993", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22994", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22995", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22996", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22997", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("22998", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("22999", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("23000", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23001", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23002", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23003", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23004", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23005", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23006", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23007", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23008", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23009", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23010", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23011", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23012", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23013", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23014", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23015", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23016", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23017", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23018", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23019", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23020", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23021", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23022", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23023", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23024", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23025", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23026", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23027", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23028", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23029", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23030", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23031", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23032", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23033", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23034", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23035", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23036", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23037", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23038", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23039", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23040", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23041", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23042", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23043", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23044", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23045", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23046", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23047", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23048", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23049", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23050", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23051", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23052", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23053", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23054", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23055", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23056", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23057", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23058", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23059", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23060", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23061", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23062", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23063", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23064", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23065", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23066", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23067", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23068", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23069", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23070", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23071", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23072", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23073", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23074", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23075", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23076", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23077", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23078", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23079", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23080", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23081", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23082", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23083", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23084", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23085", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23086", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23087", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23088", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("23089", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("23090", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23091", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23092", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23093", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23094", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23095", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23096", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23097", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23098", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("23099", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("23100", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23101", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23102", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23103", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23104", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23105", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23106", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23107", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23108", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23109", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23110", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23111", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23112", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23113", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23114", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23115", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23116", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23117", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23118", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23119", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23120", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23121", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23122", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23123", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23124", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23125", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23126", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23127", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23128", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23129", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23130", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23131", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23132", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23133", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23134", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23135", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23136", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23137", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23138", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23139", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23140", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23141", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23142", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23143", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23144", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23145", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23146", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23147", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23148", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23149", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23150", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23151", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23152", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23153", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23154", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23155", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23156", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23157", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23158", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23159", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23160", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23161", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23162", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23163", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23164", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23165", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23166", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23167", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23168", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23169", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23170", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23171", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23172", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23173", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23174", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23175", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23176", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23177", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23178", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23179", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23180", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23181", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23182", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23183", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23184", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23185", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23186", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23187", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23188", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("23189", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("23190", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23191", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23192", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23193", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23194", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23195", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23196", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23197", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23198", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("23199", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("23200", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23201", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23202", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23203", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23204", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23205", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23206", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23207", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23208", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23209", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23210", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23211", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23212", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23213", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23214", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23215", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23216", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23217", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23218", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23219", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23220", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23221", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23222", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23223", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23224", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23225", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23226", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23227", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23228", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23229", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23230", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23231", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23232", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23233", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23234", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23235", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23236", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23237", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23238", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23239", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23240", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23241", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23242", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23243", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23244", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23245", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23246", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23247", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23248", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23249", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23250", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23251", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23252", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23253", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23254", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23255", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23256", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23257", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23258", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23259", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23260", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23261", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23262", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23263", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23264", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23265", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23266", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23267", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23268", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23269", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23270", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23271", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23272", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23273", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23274", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23275", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23276", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23277", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23278", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23279", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23280", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23281", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23282", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23283", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23284", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23285", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23286", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23287", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23288", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("23289", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("23290", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23291", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23292", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23293", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23294", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23295", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23296", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23297", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23298", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("23299", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("23300", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23301", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23302", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23303", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23304", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23305", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23306", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23307", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23308", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23309", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23310", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23311", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23312", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23313", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23314", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23315", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23316", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23317", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23318", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23319", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23320", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23321", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23322", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23323", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23324", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23325", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23326", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23327", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23328", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23329", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23330", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23331", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23332", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23333", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23334", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23335", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23336", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23337", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23338", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23339", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23340", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23341", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23342", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23343", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23344", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23345", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23346", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23347", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23348", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23349", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23350", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23351", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23352", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23353", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23354", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23355", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23356", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23357", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23358", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23359", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23360", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23361", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23362", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23363", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23364", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23365", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23366", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23367", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23368", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23369", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23370", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23371", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23372", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23373", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23374", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23375", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23376", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23377", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23378", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23379", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23380", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23381", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23382", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23383", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23384", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23385", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23386", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23387", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23388", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("23389", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("23390", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23391", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23392", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23393", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23394", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23395", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23396", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23397", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23398", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("23399", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("23400", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23401", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23402", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23403", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23404", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23405", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23406", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23407", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23408", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23409", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23410", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23411", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23412", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23413", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23414", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23415", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23416", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23417", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23418", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23419", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23420", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23421", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23422", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23423", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23424", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23425", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23426", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23427", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23428", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23429", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23430", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23431", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23432", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23433", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23434", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23435", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23436", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23437", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23438", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23439", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23440", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23441", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23442", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23443", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23444", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23445", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23446", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23447", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23448", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23449", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23450", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23451", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23452", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23453", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23454", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23455", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23456", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23457", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23458", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23459", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23460", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23461", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23462", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23463", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23464", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23465", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23466", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23467", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23468", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23469", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23470", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23471", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23472", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23473", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23474", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23475", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23476", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23477", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23478", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23479", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23480", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23481", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23482", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23483", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23484", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23485", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23486", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23487", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23488", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("23489", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("23490", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23491", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23492", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23493", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23494", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23495", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23496", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23497", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23498", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("23499", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("23500", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23501", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23502", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23503", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23504", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23505", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23506", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23507", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23508", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23509", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23510", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23511", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23512", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23513", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23514", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23515", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23516", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23517", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23518", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23519", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23520", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23521", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23522", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23523", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23524", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23525", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23526", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23527", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23528", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23529", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23530", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23531", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23532", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23533", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23534", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23535", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23536", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23537", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23538", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23539", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23540", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23541", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23542", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23543", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23544", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23545", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23546", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23547", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23548", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23549", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23550", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23551", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23552", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23553", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23554", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23555", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23556", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23557", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23558", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23559", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23560", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23561", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23562", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23563", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23564", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23565", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23566", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23567", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23568", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23569", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23570", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23571", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23572", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23573", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23574", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23575", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23576", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23577", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23578", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23579", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23580", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23581", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23582", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23583", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23584", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23585", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23586", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23587", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23588", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("23589", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("23590", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23591", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23592", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23593", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23594", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23595", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23596", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23597", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23598", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("23599", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("23600", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23601", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23602", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23603", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23604", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23605", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23606", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23607", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23608", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23609", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23610", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23611", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23612", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23613", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23614", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23615", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23616", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23617", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23618", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23619", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23620", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23621", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23622", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23623", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23624", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23625", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23626", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23627", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23628", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23629", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23630", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23631", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23632", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23633", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23634", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23635", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23636", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23637", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23638", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23639", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23640", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23641", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23642", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23643", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23644", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23645", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23646", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23647", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23648", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23649", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23650", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23651", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23652", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23653", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23654", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23655", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23656", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23657", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23658", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23659", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23660", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23661", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23662", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23663", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23664", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23665", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23666", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23667", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23668", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23669", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23670", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23671", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23672", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23673", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23674", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23675", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23676", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23677", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23678", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23679", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23680", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23681", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23682", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23683", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23684", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23685", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23686", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23687", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23688", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("23689", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("23690", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23691", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23692", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23693", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23694", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23695", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23696", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23697", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23698", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("23699", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("23700", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23701", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23702", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23703", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23704", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23705", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23706", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23707", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23708", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23709", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23710", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23711", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23712", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23713", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23714", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23715", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23716", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23717", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23718", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23719", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23720", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23721", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23722", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23723", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23724", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23725", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23726", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23727", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23728", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23729", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23730", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23731", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23732", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23733", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23734", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23735", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23736", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23737", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23738", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23739", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23740", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23741", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23742", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23743", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23744", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23745", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23746", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23747", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23748", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23749", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23750", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23751", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23752", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23753", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23754", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23755", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23756", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23757", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23758", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23759", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23760", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23761", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23762", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23763", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23764", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23765", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23766", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23767", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23768", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23769", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23770", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23771", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23772", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23773", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23774", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23775", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23776", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23777", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23778", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23779", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23780", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23781", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23782", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23783", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23784", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23785", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23786", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23787", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23788", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("23789", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("23790", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23791", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23792", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23793", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23794", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23795", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23796", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23797", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23798", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("23799", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("23800", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23801", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23802", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23803", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23804", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23805", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23806", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23807", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23808", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23809", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23810", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23811", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23812", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23813", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23814", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23815", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23816", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23817", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23818", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23819", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23820", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23821", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23822", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23823", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23824", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23825", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23826", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23827", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23828", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23829", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23830", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23831", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23832", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23833", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23834", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23835", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23836", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23837", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23838", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23839", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23840", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23841", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23842", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23843", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23844", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23845", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23846", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23847", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23848", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23849", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23850", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23851", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23852", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23853", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23854", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23855", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23856", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23857", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23858", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23859", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23860", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23861", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23862", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23863", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23864", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23865", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23866", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23867", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23868", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23869", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23870", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23871", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23872", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23873", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23874", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23875", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23876", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23877", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23878", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23879", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23880", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23881", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23882", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23883", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23884", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23885", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23886", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23887", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23888", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("23889", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("23890", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23891", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23892", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23893", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23894", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23895", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23896", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23897", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23898", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("23899", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("23900", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23901", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23902", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23903", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23904", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23905", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23906", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23907", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23908", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23909", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23910", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23911", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23912", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23913", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23914", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23915", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23916", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23917", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23918", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23919", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23920", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23921", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23922", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23923", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23924", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23925", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23926", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23927", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23928", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23929", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23930", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23931", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23932", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23933", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23934", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23935", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23936", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23937", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23938", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23939", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23940", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23941", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23942", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23943", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23944", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23945", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23946", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23947", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23948", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23949", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23950", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23951", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23952", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23953", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23954", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23955", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23956", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23957", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23958", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23959", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23960", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23961", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23962", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23963", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23964", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23965", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23966", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23967", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23968", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23969", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23970", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23971", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23972", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23973", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23974", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23975", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23976", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23977", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020000"),
+        ("23978", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23979", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020008"),
+        ("23980", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23981", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23982", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23983", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23984", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23985", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23986", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23987", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23988", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("23989", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("23990", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23991", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23992", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23993", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23994", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23995", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23996", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23997", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020080"),
+        ("23998", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("23999", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00020088"),
+        ("24000", "FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24001", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24002", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24003", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24004", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24005", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24006", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24007", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24008", "FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24009", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24010", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24011", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24012", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24013", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24014", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24015", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24016", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24017", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24018", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24019", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24020", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24021", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24022", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24023", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24024", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24025", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24026", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24027", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24028", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24029", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24030", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24031", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24032", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24033", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24034", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24035", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24036", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24037", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24038", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24039", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24040", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24041", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24042", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24043", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24044", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24045", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24046", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24047", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24048", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24049", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24050", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24051", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24052", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24053", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24054", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24055", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24056", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24057", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24058", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24059", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24060", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24061", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24062", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24063", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24064", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24065", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24066", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24067", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24068", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24069", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24070", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24071", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24072", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24073", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24074", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24075", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24076", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24077", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24078", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24079", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24080", "FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24081", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24082", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24083", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24084", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24085", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24086", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24087", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24088", "FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("24089", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("24090", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24091", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24092", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24093", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24094", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24095", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24096", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24097", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24098", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("24099", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("24100", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24101", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24102", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24103", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24104", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24105", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24106", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24107", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24108", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24109", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24110", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24111", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24112", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24113", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24114", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24115", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24116", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24117", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24118", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24119", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24120", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24121", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24122", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24123", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24124", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24125", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24126", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24127", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24128", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24129", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24130", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24131", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24132", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24133", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24134", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24135", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24136", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24137", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24138", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24139", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24140", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24141", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24142", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24143", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24144", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24145", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24146", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24147", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24148", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24149", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24150", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24151", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24152", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24153", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24154", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24155", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24156", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24157", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24158", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24159", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24160", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24161", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24162", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24163", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24164", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24165", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24166", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24167", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24168", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24169", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24170", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24171", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24172", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24173", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24174", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24175", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24176", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24177", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24178", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24179", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24180", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24181", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24182", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24183", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24184", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24185", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24186", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24187", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24188", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("24189", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("24190", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24191", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24192", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24193", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24194", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24195", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24196", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24197", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24198", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("24199", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("24200", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24201", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24202", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24203", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24204", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24205", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24206", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24207", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24208", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24209", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24210", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24211", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24212", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24213", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24214", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24215", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24216", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24217", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24218", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24219", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24220", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24221", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24222", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24223", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24224", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24225", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24226", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24227", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24228", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24229", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24230", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24231", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24232", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24233", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24234", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24235", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24236", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24237", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24238", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24239", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24240", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24241", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24242", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24243", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24244", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24245", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24246", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24247", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24248", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24249", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24250", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24251", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24252", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24253", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24254", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24255", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24256", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24257", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24258", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24259", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24260", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24261", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24262", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24263", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24264", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24265", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24266", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24267", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24268", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24269", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24270", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24271", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24272", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24273", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24274", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24275", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24276", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24277", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24278", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24279", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24280", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24281", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24282", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24283", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24284", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24285", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24286", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24287", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24288", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("24289", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("24290", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24291", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24292", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24293", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24294", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24295", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24296", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24297", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24298", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("24299", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("24300", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24301", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24302", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24303", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24304", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24305", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24306", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24307", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24308", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24309", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24310", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24311", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24312", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24313", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24314", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24315", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24316", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24317", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24318", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24319", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24320", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24321", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24322", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24323", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24324", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24325", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24326", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24327", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24328", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24329", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24330", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24331", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24332", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24333", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24334", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24335", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24336", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24337", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24338", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24339", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24340", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24341", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24342", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24343", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24344", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24345", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24346", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24347", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24348", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24349", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24350", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24351", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24352", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24353", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24354", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24355", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24356", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24357", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24358", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24359", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24360", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24361", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24362", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24363", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24364", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24365", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24366", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24367", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24368", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24369", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24370", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24371", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24372", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24373", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24374", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24375", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24376", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24377", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24378", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24379", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24380", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24381", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24382", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24383", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24384", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24385", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24386", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24387", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24388", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("24389", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("24390", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24391", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24392", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24393", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24394", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24395", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24396", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24397", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24398", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("24399", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("24400", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24401", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24402", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24403", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24404", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24405", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24406", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24407", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24408", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24409", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24410", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24411", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24412", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24413", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24414", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24415", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24416", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24417", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24418", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24419", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24420", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24421", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24422", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24423", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24424", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24425", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24426", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24427", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24428", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24429", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24430", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24431", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24432", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24433", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24434", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24435", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24436", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24437", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24438", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24439", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24440", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24441", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24442", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24443", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24444", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24445", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24446", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24447", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24448", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24449", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24450", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24451", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24452", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24453", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24454", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24455", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24456", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24457", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24458", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24459", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24460", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24461", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24462", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24463", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24464", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24465", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24466", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24467", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24468", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24469", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24470", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24471", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24472", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24473", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24474", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24475", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24476", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24477", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24478", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24479", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24480", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24481", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24482", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24483", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24484", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24485", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24486", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24487", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24488", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("24489", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("24490", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24491", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24492", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24493", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24494", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24495", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24496", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24497", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24498", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("24499", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("24500", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24501", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24502", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24503", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24504", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24505", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24506", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24507", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24508", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24509", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24510", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24511", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24512", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24513", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24514", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24515", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24516", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24517", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24518", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24519", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24520", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24521", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24522", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24523", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24524", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24525", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24526", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24527", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24528", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24529", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24530", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24531", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24532", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24533", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24534", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24535", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24536", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24537", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24538", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24539", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24540", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24541", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24542", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24543", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24544", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24545", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24546", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24547", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24548", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24549", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24550", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24551", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24552", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24553", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24554", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24555", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24556", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24557", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24558", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24559", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24560", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24561", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24562", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24563", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24564", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24565", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24566", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24567", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24568", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24569", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24570", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24571", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24572", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24573", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24574", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24575", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24576", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24577", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24578", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24579", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24580", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24581", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24582", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24583", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24584", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24585", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24586", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24587", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24588", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("24589", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("24590", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24591", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24592", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24593", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24594", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24595", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24596", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24597", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24598", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("24599", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("24600", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24601", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24602", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24603", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24604", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24605", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24606", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24607", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24608", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24609", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24610", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24611", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24612", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24613", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24614", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24615", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24616", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24617", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24618", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24619", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24620", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24621", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24622", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24623", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24624", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24625", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24626", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24627", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24628", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24629", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24630", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24631", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24632", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24633", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24634", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24635", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24636", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24637", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24638", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24639", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24640", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24641", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24642", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24643", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24644", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24645", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24646", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24647", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24648", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24649", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24650", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24651", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24652", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24653", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24654", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24655", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24656", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24657", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24658", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24659", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24660", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24661", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24662", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24663", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24664", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24665", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24666", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24667", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24668", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24669", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24670", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24671", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24672", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24673", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24674", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24675", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24676", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24677", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24678", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24679", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24680", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24681", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24682", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24683", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24684", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24685", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24686", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24687", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24688", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("24689", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("24690", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24691", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24692", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24693", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24694", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24695", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24696", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24697", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24698", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("24699", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("24700", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24701", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24702", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24703", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24704", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24705", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24706", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24707", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24708", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24709", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24710", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24711", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24712", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24713", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24714", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24715", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24716", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24717", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24718", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24719", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24720", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24721", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24722", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24723", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24724", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24725", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24726", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24727", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24728", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24729", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24730", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24731", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24732", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24733", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24734", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24735", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24736", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24737", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24738", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24739", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24740", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24741", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24742", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24743", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24744", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24745", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24746", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24747", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24748", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24749", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24750", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24751", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24752", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24753", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24754", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24755", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24756", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24757", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24758", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24759", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24760", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24761", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24762", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24763", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24764", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24765", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24766", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24767", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24768", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24769", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24770", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24771", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24772", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24773", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24774", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24775", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24776", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24777", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24778", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24779", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24780", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24781", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24782", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24783", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24784", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24785", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24786", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24787", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24788", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("24789", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("24790", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24791", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24792", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24793", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24794", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24795", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24796", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24797", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24798", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("24799", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("24800", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24801", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24802", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24803", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24804", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24805", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24806", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24807", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24808", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24809", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24810", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24811", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24812", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24813", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24814", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24815", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24816", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24817", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24818", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24819", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24820", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24821", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24822", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24823", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24824", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24825", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24826", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24827", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24828", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24829", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24830", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24831", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24832", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24833", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24834", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24835", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24836", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24837", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24838", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24839", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24840", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24841", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24842", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24843", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24844", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24845", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24846", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24847", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24848", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24849", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24850", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24851", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24852", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24853", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24854", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24855", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24856", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24857", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24858", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24859", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24860", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24861", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24862", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24863", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24864", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24865", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24866", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24867", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24868", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24869", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24870", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24871", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24872", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24873", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24874", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24875", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24876", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24877", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24878", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24879", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24880", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24881", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24882", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24883", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24884", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24885", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24886", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24887", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24888", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("24889", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("24890", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24891", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24892", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24893", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24894", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24895", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24896", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24897", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24898", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("24899", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("24900", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24901", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24902", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24903", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24904", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24905", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24906", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24907", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24908", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24909", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24910", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24911", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24912", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24913", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24914", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24915", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24916", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24917", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24918", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24919", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24920", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24921", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24922", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24923", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24924", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24925", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24926", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24927", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24928", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24929", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24930", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24931", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24932", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24933", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24934", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24935", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24936", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24937", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24938", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24939", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24940", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24941", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24942", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24943", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24944", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24945", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24946", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24947", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24948", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24949", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24950", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24951", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24952", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24953", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24954", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24955", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24956", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24957", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24958", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24959", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24960", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24961", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24962", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24963", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24964", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24965", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24966", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24967", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24968", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24969", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24970", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24971", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24972", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24973", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24974", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24975", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24976", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24977", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("24978", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24979", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("24980", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24981", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24982", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24983", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24984", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24985", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24986", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24987", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24988", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("24989", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("24990", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24991", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24992", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24993", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24994", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24995", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24996", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24997", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("24998", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("24999", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("25000", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25001", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25002", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25003", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25004", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25005", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25006", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25007", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25008", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25009", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25010", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25011", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25012", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25013", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25014", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25015", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25016", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25017", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25018", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25019", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25020", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25021", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25022", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25023", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25024", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25025", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25026", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25027", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25028", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25029", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25030", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25031", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25032", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25033", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25034", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25035", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25036", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25037", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25038", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25039", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25040", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25041", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25042", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25043", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25044", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25045", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25046", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25047", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25048", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25049", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25050", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25051", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25052", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25053", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25054", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25055", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25056", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25057", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25058", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25059", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25060", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25061", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25062", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25063", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25064", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25065", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25066", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25067", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25068", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25069", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25070", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25071", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25072", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25073", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25074", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25075", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25076", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25077", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25078", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25079", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25080", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25081", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25082", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25083", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25084", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25085", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25086", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25087", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25088", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("25089", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("25090", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25091", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25092", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25093", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25094", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25095", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25096", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25097", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25098", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("25099", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("25100", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25101", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25102", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25103", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25104", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25105", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25106", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25107", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25108", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25109", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25110", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25111", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25112", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25113", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25114", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25115", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25116", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25117", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25118", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25119", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25120", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25121", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25122", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25123", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25124", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25125", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25126", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25127", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25128", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25129", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25130", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25131", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25132", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25133", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25134", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25135", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25136", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25137", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25138", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25139", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25140", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25141", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25142", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25143", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25144", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25145", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25146", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25147", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25148", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25149", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25150", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25151", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25152", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25153", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25154", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25155", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25156", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25157", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25158", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25159", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25160", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25161", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25162", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25163", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25164", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25165", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25166", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25167", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25168", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25169", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25170", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25171", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25172", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25173", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25174", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25175", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25176", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25177", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25178", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25179", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25180", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25181", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25182", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25183", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25184", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25185", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25186", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25187", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25188", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("25189", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("25190", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25191", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25192", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25193", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25194", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25195", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25196", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25197", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25198", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("25199", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("25200", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25201", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25202", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25203", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25204", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25205", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25206", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25207", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25208", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25209", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25210", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25211", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25212", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25213", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25214", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25215", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25216", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25217", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25218", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25219", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25220", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25221", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25222", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25223", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25224", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25225", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25226", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25227", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25228", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25229", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25230", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25231", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25232", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25233", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25234", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25235", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25236", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25237", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25238", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25239", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25240", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25241", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25242", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25243", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25244", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25245", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25246", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25247", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25248", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25249", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25250", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25251", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25252", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25253", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25254", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25255", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25256", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25257", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25258", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25259", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25260", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25261", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25262", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25263", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25264", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25265", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25266", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25267", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25268", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25269", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25270", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25271", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25272", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25273", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25274", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25275", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25276", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25277", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25278", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25279", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25280", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25281", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25282", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25283", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25284", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25285", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25286", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25287", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25288", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("25289", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("25290", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25291", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25292", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25293", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25294", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25295", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25296", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25297", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25298", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("25299", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("25300", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25301", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25302", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25303", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25304", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25305", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25306", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25307", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25308", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25309", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25310", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25311", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25312", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25313", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25314", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25315", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25316", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25317", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25318", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25319", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25320", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25321", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25322", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25323", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25324", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25325", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25326", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25327", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25328", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25329", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25330", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25331", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25332", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25333", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25334", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25335", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25336", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25337", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25338", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25339", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25340", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25341", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25342", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25343", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25344", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25345", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25346", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25347", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25348", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25349", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25350", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25351", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25352", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25353", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25354", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25355", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25356", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25357", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25358", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25359", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25360", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25361", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25362", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25363", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25364", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25365", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25366", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25367", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25368", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25369", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25370", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25371", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25372", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25373", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25374", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25375", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25376", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25377", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25378", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25379", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25380", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25381", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25382", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25383", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25384", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25385", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25386", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25387", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25388", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("25389", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("25390", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25391", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25392", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25393", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25394", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25395", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25396", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25397", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25398", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("25399", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("25400", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25401", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25402", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25403", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25404", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25405", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25406", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25407", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25408", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25409", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25410", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25411", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25412", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25413", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25414", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25415", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25416", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25417", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25418", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25419", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25420", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25421", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25422", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25423", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25424", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25425", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25426", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25427", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25428", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25429", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25430", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25431", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25432", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25433", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25434", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25435", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25436", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25437", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25438", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25439", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25440", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25441", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25442", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25443", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25444", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25445", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25446", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25447", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25448", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25449", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25450", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25451", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25452", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25453", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25454", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25455", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25456", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25457", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25458", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25459", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25460", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25461", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25462", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25463", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25464", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25465", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25466", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25467", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25468", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25469", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25470", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25471", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25472", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25473", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25474", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25475", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25476", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25477", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25478", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25479", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25480", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25481", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25482", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25483", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25484", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25485", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25486", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25487", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25488", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("25489", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("25490", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25491", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25492", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25493", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25494", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25495", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25496", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25497", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25498", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("25499", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("25500", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25501", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25502", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25503", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25504", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25505", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25506", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25507", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25508", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25509", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25510", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25511", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25512", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25513", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25514", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25515", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25516", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25517", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25518", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25519", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25520", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25521", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25522", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25523", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25524", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25525", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25526", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25527", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25528", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25529", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25530", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25531", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25532", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25533", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25534", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25535", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25536", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25537", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25538", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25539", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25540", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25541", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25542", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25543", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25544", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25545", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25546", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25547", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25548", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25549", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25550", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25551", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25552", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25553", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25554", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25555", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25556", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25557", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25558", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25559", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25560", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25561", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25562", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25563", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25564", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25565", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25566", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25567", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25568", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25569", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25570", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25571", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25572", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25573", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25574", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25575", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25576", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25577", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25578", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25579", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25580", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25581", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25582", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25583", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25584", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25585", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25586", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25587", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25588", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("25589", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("25590", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25591", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25592", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25593", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25594", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25595", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25596", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25597", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25598", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("25599", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("25600", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25601", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25602", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25603", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25604", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25605", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25606", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25607", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25608", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25609", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25610", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25611", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25612", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25613", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25614", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25615", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25616", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25617", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25618", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25619", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25620", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25621", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25622", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25623", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25624", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25625", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25626", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25627", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25628", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25629", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25630", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25631", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25632", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25633", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25634", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25635", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25636", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25637", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25638", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25639", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25640", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25641", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25642", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25643", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25644", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25645", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25646", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25647", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25648", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25649", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25650", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25651", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25652", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25653", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25654", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25655", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25656", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25657", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25658", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25659", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25660", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25661", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25662", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25663", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25664", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25665", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25666", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25667", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25668", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25669", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25670", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25671", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25672", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25673", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25674", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25675", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25676", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25677", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25678", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25679", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25680", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25681", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25682", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25683", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25684", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25685", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25686", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25687", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25688", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("25689", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("25690", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25691", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25692", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25693", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25694", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25695", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25696", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25697", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25698", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("25699", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("25700", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25701", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25702", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25703", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25704", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25705", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25706", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25707", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25708", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25709", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25710", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25711", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25712", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25713", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25714", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25715", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25716", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25717", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25718", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25719", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25720", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25721", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25722", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25723", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25724", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25725", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25726", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25727", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25728", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25729", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25730", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25731", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25732", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25733", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25734", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25735", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25736", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25737", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25738", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25739", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25740", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25741", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25742", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25743", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25744", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25745", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25746", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25747", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25748", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25749", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25750", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25751", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25752", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25753", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25754", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25755", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25756", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25757", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25758", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25759", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25760", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25761", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25762", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25763", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25764", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25765", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25766", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25767", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25768", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25769", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25770", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25771", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25772", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25773", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25774", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25775", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25776", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25777", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25778", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25779", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25780", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25781", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25782", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25783", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25784", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25785", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25786", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25787", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25788", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("25789", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("25790", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25791", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25792", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25793", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25794", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25795", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25796", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25797", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25798", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("25799", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("25800", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25801", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25802", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25803", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25804", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25805", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25806", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25807", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25808", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25809", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25810", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25811", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25812", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25813", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25814", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25815", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25816", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25817", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25818", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25819", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25820", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25821", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25822", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25823", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25824", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25825", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25826", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25827", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25828", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25829", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25830", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25831", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25832", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25833", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25834", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25835", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25836", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25837", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25838", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25839", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25840", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25841", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25842", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25843", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25844", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25845", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25846", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25847", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25848", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25849", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25850", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25851", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25852", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25853", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25854", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25855", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25856", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25857", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25858", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25859", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25860", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25861", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25862", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25863", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25864", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25865", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25866", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25867", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25868", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25869", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25870", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25871", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25872", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25873", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25874", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25875", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25876", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25877", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25878", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25879", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25880", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25881", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25882", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25883", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25884", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25885", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25886", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25887", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25888", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("25889", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("25890", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25891", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25892", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25893", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25894", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25895", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25896", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25897", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25898", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("25899", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("25900", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25901", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25902", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25903", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25904", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25905", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25906", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25907", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25908", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25909", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25910", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25911", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25912", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25913", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25914", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25915", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25916", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25917", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25918", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25919", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25920", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25921", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25922", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25923", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25924", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25925", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25926", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25927", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25928", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25929", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25930", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25931", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25932", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25933", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25934", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25935", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25936", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25937", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25938", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25939", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25940", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25941", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25942", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25943", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25944", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25945", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25946", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25947", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25948", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25949", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25950", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25951", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25952", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25953", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25954", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25955", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25956", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25957", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25958", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25959", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25960", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25961", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25962", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25963", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25964", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25965", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25966", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25967", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25968", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25969", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25970", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25971", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25972", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25973", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25974", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25975", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25976", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25977", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("25978", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25979", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("25980", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25981", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25982", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25983", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25984", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25985", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25986", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25987", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25988", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("25989", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("25990", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25991", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25992", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25993", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25994", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25995", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25996", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25997", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("25998", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("25999", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("26000", "FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26001", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26002", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26003", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26004", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26005", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26006", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26007", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26008", "FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26009", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26010", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26011", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26012", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26013", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26014", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26015", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26016", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26017", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26018", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26019", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26020", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26021", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26022", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26023", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26024", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26025", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26026", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26027", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26028", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26029", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26030", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26031", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26032", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26033", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26034", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26035", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26036", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26037", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26038", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26039", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26040", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26041", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26042", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26043", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26044", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26045", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26046", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26047", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26048", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26049", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26050", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26051", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26052", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26053", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26054", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26055", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26056", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26057", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26058", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26059", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26060", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26061", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26062", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26063", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26064", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26065", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26066", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26067", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26068", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26069", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26070", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26071", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26072", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26073", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26074", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26075", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26076", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26077", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26078", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26079", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26080", "FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26081", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26082", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26083", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26084", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26085", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26086", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26087", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26088", "FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("26089", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("26090", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26091", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26092", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26093", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26094", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26095", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26096", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26097", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26098", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("26099", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("26100", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26101", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26102", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26103", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26104", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26105", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26106", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26107", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26108", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26109", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26110", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26111", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26112", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26113", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26114", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26115", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26116", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26117", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26118", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26119", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26120", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26121", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26122", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26123", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26124", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26125", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26126", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26127", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26128", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26129", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26130", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26131", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26132", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26133", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26134", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26135", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26136", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26137", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26138", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26139", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26140", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26141", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26142", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26143", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26144", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26145", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26146", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26147", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26148", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26149", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26150", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26151", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26152", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26153", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26154", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26155", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26156", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26157", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26158", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26159", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26160", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26161", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26162", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26163", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26164", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26165", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26166", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26167", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26168", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26169", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26170", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26171", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26172", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26173", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26174", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26175", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26176", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26177", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26178", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26179", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26180", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26181", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26182", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26183", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26184", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26185", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26186", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26187", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26188", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("26189", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("26190", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26191", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26192", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26193", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26194", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26195", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26196", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26197", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26198", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("26199", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("26200", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26201", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26202", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26203", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26204", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26205", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26206", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26207", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26208", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26209", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26210", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26211", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26212", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26213", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26214", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26215", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26216", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26217", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26218", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26219", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26220", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26221", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26222", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26223", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26224", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26225", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26226", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26227", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26228", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26229", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26230", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26231", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26232", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26233", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26234", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26235", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26236", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26237", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26238", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26239", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26240", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26241", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26242", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26243", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26244", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26245", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26246", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26247", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26248", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26249", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26250", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26251", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26252", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26253", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26254", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26255", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26256", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26257", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26258", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26259", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26260", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26261", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26262", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26263", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26264", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26265", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26266", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26267", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26268", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26269", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26270", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26271", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26272", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26273", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26274", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26275", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26276", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26277", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26278", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26279", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26280", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26281", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26282", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26283", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26284", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26285", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26286", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26287", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26288", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("26289", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("26290", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26291", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26292", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26293", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26294", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26295", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26296", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26297", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26298", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("26299", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("26300", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26301", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26302", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26303", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26304", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26305", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26306", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26307", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26308", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26309", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26310", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26311", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26312", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26313", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26314", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26315", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26316", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26317", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26318", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26319", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26320", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26321", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26322", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26323", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26324", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26325", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26326", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26327", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26328", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26329", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26330", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26331", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26332", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26333", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26334", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26335", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26336", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26337", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26338", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26339", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26340", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26341", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26342", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26343", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26344", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26345", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26346", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26347", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26348", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26349", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26350", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26351", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26352", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26353", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26354", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26355", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26356", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26357", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26358", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26359", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26360", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26361", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26362", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26363", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26364", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26365", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26366", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26367", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26368", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26369", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26370", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26371", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26372", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26373", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26374", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26375", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26376", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26377", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26378", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26379", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26380", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26381", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26382", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26383", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26384", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26385", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26386", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26387", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26388", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("26389", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("26390", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26391", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26392", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26393", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26394", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26395", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26396", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26397", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26398", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("26399", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("26400", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26401", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26402", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26403", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26404", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26405", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26406", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26407", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26408", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26409", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26410", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26411", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26412", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26413", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26414", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26415", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26416", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26417", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26418", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26419", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26420", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26421", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26422", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26423", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26424", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26425", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26426", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26427", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26428", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26429", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26430", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26431", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26432", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26433", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26434", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26435", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26436", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26437", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26438", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26439", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26440", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26441", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26442", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26443", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26444", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26445", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26446", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26447", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26448", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26449", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26450", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26451", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26452", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26453", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26454", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26455", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26456", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26457", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26458", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26459", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26460", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26461", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26462", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26463", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26464", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26465", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26466", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26467", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26468", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26469", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26470", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26471", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26472", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26473", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26474", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26475", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26476", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26477", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26478", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26479", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26480", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26481", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26482", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26483", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26484", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26485", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26486", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26487", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26488", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("26489", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("26490", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26491", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26492", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26493", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26494", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26495", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26496", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26497", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26498", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("26499", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("26500", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26501", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26502", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26503", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26504", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26505", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26506", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26507", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26508", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26509", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26510", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26511", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26512", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26513", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26514", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26515", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26516", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26517", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26518", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26519", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26520", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26521", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26522", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26523", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26524", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26525", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26526", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26527", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26528", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26529", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26530", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26531", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26532", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26533", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26534", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26535", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26536", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26537", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26538", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26539", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26540", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26541", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26542", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26543", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26544", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26545", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26546", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26547", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26548", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26549", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26550", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26551", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26552", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26553", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26554", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26555", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26556", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26557", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26558", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26559", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26560", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26561", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26562", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26563", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26564", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26565", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26566", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26567", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26568", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26569", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26570", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26571", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26572", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26573", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26574", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26575", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26576", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26577", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26578", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26579", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26580", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26581", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26582", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26583", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26584", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26585", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26586", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26587", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26588", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("26589", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("26590", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26591", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26592", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26593", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26594", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26595", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26596", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26597", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26598", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("26599", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("26600", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26601", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26602", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26603", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26604", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26605", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26606", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26607", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26608", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26609", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26610", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26611", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26612", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26613", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26614", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26615", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26616", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26617", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26618", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26619", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26620", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26621", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26622", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26623", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26624", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26625", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26626", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26627", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26628", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26629", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26630", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26631", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26632", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26633", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26634", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26635", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26636", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26637", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26638", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26639", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26640", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26641", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26642", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26643", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26644", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26645", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26646", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26647", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26648", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26649", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26650", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26651", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26652", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26653", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26654", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26655", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26656", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26657", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26658", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26659", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26660", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26661", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26662", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26663", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26664", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26665", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26666", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26667", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26668", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26669", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26670", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26671", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26672", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26673", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26674", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26675", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26676", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26677", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26678", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26679", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26680", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26681", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26682", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26683", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26684", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26685", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26686", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26687", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26688", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("26689", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("26690", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26691", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26692", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26693", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26694", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26695", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26696", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26697", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26698", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("26699", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("26700", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26701", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26702", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26703", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26704", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26705", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26706", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26707", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26708", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26709", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26710", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26711", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26712", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26713", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26714", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26715", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26716", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26717", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26718", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26719", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26720", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26721", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26722", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26723", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26724", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26725", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26726", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26727", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26728", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26729", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26730", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26731", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26732", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26733", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26734", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26735", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26736", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26737", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26738", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26739", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26740", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26741", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26742", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26743", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26744", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26745", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26746", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26747", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26748", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26749", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26750", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26751", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26752", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26753", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26754", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26755", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26756", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26757", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26758", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26759", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26760", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26761", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26762", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26763", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26764", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26765", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26766", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26767", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26768", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26769", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26770", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26771", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26772", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26773", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26774", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26775", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26776", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26777", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26778", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26779", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26780", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26781", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26782", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26783", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26784", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26785", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26786", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26787", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26788", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("26789", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("26790", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26791", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26792", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26793", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26794", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26795", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26796", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26797", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26798", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("26799", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("26800", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26801", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26802", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26803", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26804", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26805", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26806", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26807", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26808", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26809", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26810", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26811", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26812", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26813", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26814", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26815", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26816", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26817", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26818", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26819", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26820", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26821", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26822", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26823", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26824", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26825", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26826", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26827", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26828", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26829", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26830", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26831", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26832", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26833", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26834", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26835", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26836", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26837", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26838", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26839", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26840", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26841", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26842", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26843", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26844", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26845", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26846", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26847", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26848", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26849", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26850", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26851", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26852", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26853", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26854", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26855", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26856", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26857", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26858", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26859", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26860", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26861", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26862", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26863", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26864", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26865", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26866", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26867", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26868", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26869", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26870", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26871", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26872", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26873", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26874", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26875", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26876", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26877", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26878", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26879", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26880", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26881", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26882", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26883", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26884", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26885", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26886", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26887", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26888", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("26889", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("26890", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26891", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26892", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26893", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26894", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26895", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26896", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26897", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26898", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("26899", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("26900", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26901", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26902", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26903", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26904", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26905", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26906", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26907", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26908", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26909", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26910", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26911", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26912", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26913", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26914", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26915", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26916", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26917", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26918", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26919", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26920", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26921", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26922", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26923", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26924", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26925", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26926", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26927", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26928", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26929", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26930", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26931", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26932", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26933", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26934", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26935", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26936", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26937", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26938", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26939", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26940", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26941", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26942", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26943", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26944", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26945", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26946", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26947", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26948", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26949", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26950", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26951", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26952", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26953", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26954", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26955", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26956", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26957", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26958", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26959", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26960", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26961", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26962", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26963", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26964", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26965", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26966", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26967", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26968", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26969", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26970", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26971", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26972", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26973", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26974", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26975", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26976", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26977", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("26978", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26979", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("26980", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26981", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26982", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26983", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26984", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26985", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26986", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26987", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26988", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("26989", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("26990", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26991", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26992", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26993", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26994", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26995", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26996", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26997", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("26998", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("26999", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("27000", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27001", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27002", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27003", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27004", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27005", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27006", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27007", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27008", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27009", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27010", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27011", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27012", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27013", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27014", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27015", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27016", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27017", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27018", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27019", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27020", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27021", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27022", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27023", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27024", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27025", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27026", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27027", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27028", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27029", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27030", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27031", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27032", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27033", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27034", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27035", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27036", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27037", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27038", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27039", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27040", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27041", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27042", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27043", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27044", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27045", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27046", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27047", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27048", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27049", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27050", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27051", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27052", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27053", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27054", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27055", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27056", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27057", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27058", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27059", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27060", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27061", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27062", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27063", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27064", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27065", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27066", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27067", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27068", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27069", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27070", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27071", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27072", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27073", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27074", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27075", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27076", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27077", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27078", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27079", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27080", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27081", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27082", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27083", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27084", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27085", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27086", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27087", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27088", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("27089", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("27090", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27091", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27092", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27093", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27094", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27095", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27096", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27097", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27098", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("27099", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("27100", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27101", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27102", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27103", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27104", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27105", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27106", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27107", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27108", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27109", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27110", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27111", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27112", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27113", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27114", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27115", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27116", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27117", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27118", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27119", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27120", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27121", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27122", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27123", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27124", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27125", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27126", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27127", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27128", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27129", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27130", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27131", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27132", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27133", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27134", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27135", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27136", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27137", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27138", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27139", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27140", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27141", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27142", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27143", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27144", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27145", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27146", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27147", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27148", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27149", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27150", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27151", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27152", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27153", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27154", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27155", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27156", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27157", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27158", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27159", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27160", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27161", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27162", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27163", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27164", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27165", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27166", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27167", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27168", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27169", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27170", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27171", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27172", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27173", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27174", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27175", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27176", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27177", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27178", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27179", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27180", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27181", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27182", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27183", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27184", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27185", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27186", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27187", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27188", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("27189", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("27190", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27191", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27192", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27193", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27194", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27195", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27196", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27197", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27198", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("27199", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("27200", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27201", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27202", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27203", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27204", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27205", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27206", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27207", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27208", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27209", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27210", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27211", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27212", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27213", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27214", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27215", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27216", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27217", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27218", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27219", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27220", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27221", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27222", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27223", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27224", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27225", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27226", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27227", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27228", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27229", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27230", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27231", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27232", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27233", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27234", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27235", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27236", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27237", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27238", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27239", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27240", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27241", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27242", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27243", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27244", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27245", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27246", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27247", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27248", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27249", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27250", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27251", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27252", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27253", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27254", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27255", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27256", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27257", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27258", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27259", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27260", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27261", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27262", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27263", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27264", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27265", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27266", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27267", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27268", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27269", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27270", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27271", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27272", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27273", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27274", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27275", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27276", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27277", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27278", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27279", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27280", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27281", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27282", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27283", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27284", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27285", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27286", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27287", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27288", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("27289", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("27290", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27291", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27292", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27293", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27294", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27295", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27296", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27297", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27298", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("27299", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("27300", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27301", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27302", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27303", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27304", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27305", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27306", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27307", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27308", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27309", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27310", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27311", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27312", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27313", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27314", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27315", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27316", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27317", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27318", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27319", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27320", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27321", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27322", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27323", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27324", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27325", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27326", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27327", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27328", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27329", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27330", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27331", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27332", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27333", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27334", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27335", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27336", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27337", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27338", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27339", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27340", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27341", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27342", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27343", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27344", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27345", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27346", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27347", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27348", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27349", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27350", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27351", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27352", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27353", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27354", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27355", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27356", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27357", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27358", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27359", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27360", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27361", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27362", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27363", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27364", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27365", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27366", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27367", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27368", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27369", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27370", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27371", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27372", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27373", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27374", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27375", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27376", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27377", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27378", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27379", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27380", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27381", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27382", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27383", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27384", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27385", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27386", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27387", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27388", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("27389", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("27390", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27391", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27392", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27393", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27394", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27395", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27396", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27397", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27398", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("27399", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("27400", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27401", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27402", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27403", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27404", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27405", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27406", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27407", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27408", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27409", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27410", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27411", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27412", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27413", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27414", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27415", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27416", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27417", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27418", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27419", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27420", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27421", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27422", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27423", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27424", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27425", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27426", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27427", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27428", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27429", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27430", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27431", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27432", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27433", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27434", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27435", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27436", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27437", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27438", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27439", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27440", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27441", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27442", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27443", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27444", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27445", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27446", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27447", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27448", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27449", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27450", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27451", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27452", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27453", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27454", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27455", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27456", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27457", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27458", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27459", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27460", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27461", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27462", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27463", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27464", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27465", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27466", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27467", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27468", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27469", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27470", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27471", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27472", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27473", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27474", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27475", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27476", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27477", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27478", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27479", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27480", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27481", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27482", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27483", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27484", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27485", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27486", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27487", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27488", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("27489", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("27490", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27491", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27492", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27493", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27494", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27495", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27496", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27497", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27498", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("27499", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("27500", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27501", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27502", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27503", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27504", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27505", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27506", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27507", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27508", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27509", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27510", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27511", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27512", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27513", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27514", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27515", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27516", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27517", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27518", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27519", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27520", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27521", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27522", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27523", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27524", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27525", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27526", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27527", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27528", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27529", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27530", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27531", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27532", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27533", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27534", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27535", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27536", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27537", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27538", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27539", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27540", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27541", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27542", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27543", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27544", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27545", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27546", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27547", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27548", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27549", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27550", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27551", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27552", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27553", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27554", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27555", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27556", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27557", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27558", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27559", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27560", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27561", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27562", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27563", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27564", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27565", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27566", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27567", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27568", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27569", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27570", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27571", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27572", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27573", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27574", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27575", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27576", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27577", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27578", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27579", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27580", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27581", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27582", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27583", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27584", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27585", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27586", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27587", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27588", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("27589", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("27590", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27591", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27592", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27593", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27594", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27595", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27596", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27597", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27598", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("27599", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("27600", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27601", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27602", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27603", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27604", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27605", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27606", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27607", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27608", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27609", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27610", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27611", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27612", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27613", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27614", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27615", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27616", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27617", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27618", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27619", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27620", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27621", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27622", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27623", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27624", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27625", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27626", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27627", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27628", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27629", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27630", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27631", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27632", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27633", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27634", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27635", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27636", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27637", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27638", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27639", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27640", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27641", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27642", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27643", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27644", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27645", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27646", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27647", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27648", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27649", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27650", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27651", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27652", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27653", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27654", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27655", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27656", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27657", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27658", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27659", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27660", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27661", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27662", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27663", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27664", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27665", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27666", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27667", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27668", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27669", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27670", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27671", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27672", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27673", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27674", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27675", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27676", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27677", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27678", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27679", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27680", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27681", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27682", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27683", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27684", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27685", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27686", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27687", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27688", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("27689", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("27690", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27691", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27692", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27693", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27694", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27695", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27696", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27697", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27698", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("27699", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("27700", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27701", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27702", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27703", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27704", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27705", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27706", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27707", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27708", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27709", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27710", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27711", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27712", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27713", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27714", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27715", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27716", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27717", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27718", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27719", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27720", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27721", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27722", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27723", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27724", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27725", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27726", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27727", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27728", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27729", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27730", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27731", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27732", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27733", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27734", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27735", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27736", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27737", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27738", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27739", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27740", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27741", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27742", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27743", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27744", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27745", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27746", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27747", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27748", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27749", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27750", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27751", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27752", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27753", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27754", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27755", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27756", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27757", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27758", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27759", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27760", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27761", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27762", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27763", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27764", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27765", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27766", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27767", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27768", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27769", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27770", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27771", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27772", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27773", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27774", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27775", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27776", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27777", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27778", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27779", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27780", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27781", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27782", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27783", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27784", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27785", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27786", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27787", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27788", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("27789", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("27790", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27791", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27792", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27793", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27794", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27795", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27796", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27797", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27798", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("27799", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("27800", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27801", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27802", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27803", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27804", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27805", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27806", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27807", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27808", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27809", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27810", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27811", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27812", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27813", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27814", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27815", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27816", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27817", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27818", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27819", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27820", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27821", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27822", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27823", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27824", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27825", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27826", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27827", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27828", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27829", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27830", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27831", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27832", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27833", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27834", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27835", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27836", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27837", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27838", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27839", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27840", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27841", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27842", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27843", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27844", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27845", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27846", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27847", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27848", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27849", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27850", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27851", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27852", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27853", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27854", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27855", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27856", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27857", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27858", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27859", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27860", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27861", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27862", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27863", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27864", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27865", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27866", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27867", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27868", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27869", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27870", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27871", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27872", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27873", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27874", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27875", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27876", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27877", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27878", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27879", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27880", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27881", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27882", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27883", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27884", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27885", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27886", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27887", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27888", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("27889", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("27890", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27891", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27892", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27893", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27894", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27895", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27896", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27897", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27898", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("27899", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("27900", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27901", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27902", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27903", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27904", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27905", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27906", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27907", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27908", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27909", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27910", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27911", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27912", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27913", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27914", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27915", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27916", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27917", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27918", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27919", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27920", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27921", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27922", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27923", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27924", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27925", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27926", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27927", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27928", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27929", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27930", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27931", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27932", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27933", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27934", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27935", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27936", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27937", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27938", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27939", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27940", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27941", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27942", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27943", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27944", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27945", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27946", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27947", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27948", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27949", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27950", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27951", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27952", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27953", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27954", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27955", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27956", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27957", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27958", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27959", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27960", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27961", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27962", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27963", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27964", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27965", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27966", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27967", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27968", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27969", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27970", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27971", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27972", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27973", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27974", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27975", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27976", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27977", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020000"),
+        ("27978", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27979", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020008"),
+        ("27980", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27981", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27982", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27983", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27984", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27985", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27986", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27987", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27988", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("27989", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("27990", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27991", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27992", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27993", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27994", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27995", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27996", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27997", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020080"),
+        ("27998", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("27999", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|FILE_ATTRIBUTE_ENCRYPTED|0x00020088"),
+        ("28000", "FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28001", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28002", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28003", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28004", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28005", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28006", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28007", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28008", "FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28009", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28010", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28011", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28012", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28013", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28014", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28015", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28016", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28017", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28018", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28019", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28020", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28021", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28022", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28023", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28024", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28025", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28026", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28027", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28028", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28029", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28030", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28031", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28032", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28033", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28034", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28035", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28036", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28037", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28038", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28039", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28040", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28041", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28042", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28043", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28044", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28045", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28046", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28047", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28048", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28049", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28050", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28051", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28052", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28053", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28054", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28055", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28056", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28057", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28058", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28059", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28060", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28061", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28062", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28063", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28064", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28065", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28066", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28067", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28068", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28069", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28070", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28071", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28072", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28073", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28074", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28075", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28076", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28077", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28078", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28079", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28080", "FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28081", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28082", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28083", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28084", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28085", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28086", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28087", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28088", "FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("28089", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("28090", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28091", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28092", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28093", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28094", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28095", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28096", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28097", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28098", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("28099", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("28100", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28101", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28102", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28103", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28104", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28105", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28106", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28107", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28108", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28109", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28110", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28111", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28112", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28113", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28114", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28115", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28116", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28117", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28118", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28119", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28120", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28121", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28122", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28123", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28124", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28125", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28126", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28127", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28128", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28129", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28130", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28131", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28132", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28133", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28134", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28135", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28136", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28137", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28138", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28139", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28140", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28141", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28142", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28143", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28144", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28145", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28146", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28147", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28148", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28149", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28150", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28151", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28152", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28153", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28154", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28155", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28156", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28157", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28158", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28159", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28160", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28161", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28162", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28163", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28164", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28165", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28166", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28167", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28168", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28169", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28170", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28171", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28172", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28173", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28174", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28175", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28176", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28177", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28178", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28179", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28180", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28181", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28182", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28183", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28184", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28185", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28186", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28187", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28188", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("28189", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("28190", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28191", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28192", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28193", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28194", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28195", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28196", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28197", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28198", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("28199", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("28200", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28201", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28202", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28203", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28204", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28205", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28206", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28207", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28208", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28209", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28210", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28211", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28212", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28213", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28214", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28215", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28216", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28217", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28218", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28219", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28220", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28221", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28222", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28223", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28224", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28225", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28226", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28227", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28228", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28229", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28230", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28231", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28232", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28233", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28234", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28235", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28236", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28237", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28238", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28239", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28240", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28241", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28242", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28243", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28244", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28245", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28246", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28247", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28248", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28249", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28250", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28251", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28252", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28253", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28254", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28255", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28256", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28257", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28258", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28259", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28260", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28261", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28262", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28263", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28264", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28265", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28266", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28267", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28268", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28269", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28270", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28271", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28272", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28273", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28274", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28275", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28276", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28277", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28278", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28279", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28280", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28281", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28282", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28283", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28284", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28285", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28286", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28287", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28288", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("28289", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("28290", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28291", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28292", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28293", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28294", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28295", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28296", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28297", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28298", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("28299", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("28300", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28301", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28302", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28303", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28304", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28305", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28306", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28307", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28308", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28309", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28310", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28311", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28312", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28313", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28314", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28315", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28316", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28317", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28318", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28319", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28320", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28321", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28322", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28323", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28324", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28325", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28326", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28327", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28328", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28329", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28330", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28331", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28332", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28333", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28334", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28335", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28336", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28337", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28338", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28339", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28340", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28341", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28342", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28343", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28344", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28345", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28346", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28347", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28348", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28349", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28350", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28351", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28352", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28353", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28354", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28355", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28356", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28357", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28358", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28359", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28360", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28361", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28362", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28363", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28364", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28365", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28366", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28367", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28368", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28369", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28370", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28371", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28372", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28373", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28374", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28375", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28376", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28377", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28378", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28379", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28380", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28381", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28382", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28383", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28384", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28385", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28386", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28387", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28388", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("28389", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("28390", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28391", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28392", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28393", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28394", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28395", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28396", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28397", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28398", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("28399", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("28400", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28401", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28402", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28403", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28404", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28405", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28406", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28407", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28408", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28409", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28410", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28411", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28412", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28413", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28414", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28415", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28416", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28417", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28418", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28419", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28420", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28421", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28422", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28423", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28424", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28425", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28426", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28427", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28428", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28429", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28430", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28431", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28432", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28433", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28434", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28435", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28436", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28437", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28438", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28439", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28440", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28441", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28442", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28443", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28444", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28445", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28446", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28447", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28448", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28449", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28450", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28451", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28452", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28453", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28454", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28455", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28456", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28457", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28458", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28459", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28460", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28461", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28462", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28463", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28464", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28465", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28466", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28467", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28468", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28469", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28470", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28471", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28472", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28473", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28474", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28475", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28476", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28477", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28478", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28479", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28480", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28481", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28482", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28483", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28484", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28485", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28486", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28487", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28488", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("28489", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("28490", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28491", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28492", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28493", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28494", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28495", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28496", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28497", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28498", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("28499", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("28500", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28501", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28502", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28503", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28504", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28505", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28506", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28507", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28508", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28509", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28510", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28511", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28512", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28513", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28514", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28515", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28516", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28517", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28518", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28519", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28520", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28521", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28522", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28523", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28524", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28525", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28526", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28527", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28528", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28529", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28530", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28531", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28532", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28533", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28534", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28535", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28536", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28537", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28538", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28539", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28540", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28541", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28542", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28543", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28544", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28545", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28546", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28547", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28548", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28549", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28550", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28551", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28552", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28553", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28554", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28555", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28556", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28557", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28558", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28559", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28560", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28561", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28562", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28563", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28564", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28565", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28566", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28567", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28568", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28569", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28570", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28571", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28572", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28573", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28574", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28575", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28576", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28577", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28578", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28579", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28580", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28581", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28582", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28583", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28584", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28585", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28586", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28587", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28588", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("28589", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("28590", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28591", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28592", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28593", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28594", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28595", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28596", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28597", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28598", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("28599", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("28600", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28601", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28602", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28603", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28604", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28605", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28606", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28607", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28608", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28609", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28610", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28611", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28612", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28613", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28614", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28615", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28616", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28617", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28618", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28619", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28620", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28621", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28622", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28623", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28624", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28625", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28626", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28627", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28628", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28629", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28630", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28631", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28632", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28633", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28634", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28635", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28636", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28637", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28638", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28639", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28640", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28641", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28642", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28643", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28644", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28645", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28646", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28647", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28648", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28649", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28650", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28651", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28652", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28653", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28654", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28655", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28656", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28657", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28658", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28659", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28660", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28661", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28662", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28663", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28664", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28665", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28666", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28667", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28668", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28669", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28670", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28671", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28672", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28673", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28674", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28675", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28676", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28677", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28678", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28679", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28680", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28681", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28682", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28683", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28684", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28685", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28686", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28687", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28688", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("28689", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("28690", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28691", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28692", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28693", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28694", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28695", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28696", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28697", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28698", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("28699", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("28700", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28701", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28702", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28703", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28704", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28705", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28706", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28707", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28708", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28709", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28710", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28711", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28712", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28713", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28714", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28715", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28716", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28717", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28718", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28719", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28720", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28721", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28722", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28723", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28724", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28725", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28726", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28727", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28728", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28729", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28730", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28731", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28732", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28733", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28734", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28735", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28736", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28737", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28738", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28739", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28740", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28741", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28742", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28743", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28744", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28745", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28746", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28747", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28748", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28749", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28750", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28751", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28752", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28753", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28754", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28755", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28756", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28757", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28758", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28759", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28760", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28761", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28762", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28763", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28764", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28765", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28766", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28767", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28768", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28769", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28770", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28771", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28772", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28773", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28774", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28775", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28776", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28777", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28778", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28779", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28780", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28781", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28782", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28783", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28784", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28785", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28786", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28787", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28788", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("28789", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("28790", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28791", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28792", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28793", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28794", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28795", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28796", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28797", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28798", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("28799", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("28800", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28801", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28802", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28803", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28804", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28805", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28806", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28807", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28808", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28809", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28810", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28811", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28812", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28813", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28814", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28815", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28816", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28817", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28818", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28819", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28820", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28821", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28822", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28823", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28824", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28825", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28826", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28827", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28828", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28829", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28830", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28831", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28832", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28833", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28834", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28835", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28836", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28837", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28838", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28839", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28840", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28841", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28842", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28843", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28844", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28845", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28846", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28847", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28848", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28849", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28850", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28851", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28852", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28853", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28854", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28855", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28856", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28857", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28858", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28859", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28860", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28861", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28862", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28863", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28864", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28865", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28866", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28867", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28868", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28869", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28870", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28871", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28872", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28873", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28874", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28875", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28876", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28877", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28878", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28879", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28880", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28881", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28882", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28883", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28884", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28885", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28886", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28887", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28888", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("28889", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("28890", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28891", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28892", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28893", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28894", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28895", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28896", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28897", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28898", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("28899", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("28900", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28901", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28902", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28903", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28904", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28905", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28906", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28907", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28908", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28909", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28910", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28911", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28912", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28913", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28914", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28915", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28916", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28917", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28918", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28919", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28920", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28921", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28922", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28923", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28924", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28925", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28926", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28927", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28928", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28929", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28930", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28931", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28932", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28933", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28934", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28935", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28936", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28937", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28938", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28939", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28940", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28941", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28942", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28943", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28944", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28945", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28946", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28947", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28948", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28949", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28950", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28951", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28952", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28953", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28954", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28955", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28956", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28957", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28958", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28959", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28960", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28961", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28962", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28963", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28964", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28965", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28966", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28967", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28968", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28969", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28970", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28971", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28972", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28973", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28974", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28975", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28976", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28977", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("28978", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28979", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("28980", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28981", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28982", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28983", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28984", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28985", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28986", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28987", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28988", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("28989", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("28990", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28991", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28992", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28993", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28994", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28995", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28996", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28997", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("28998", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("28999", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("29000", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29001", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29002", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29003", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29004", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29005", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29006", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29007", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29008", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29009", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29010", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29011", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29012", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29013", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29014", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29015", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29016", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29017", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29018", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29019", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29020", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29021", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29022", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29023", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29024", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29025", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29026", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29027", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29028", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29029", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29030", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29031", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29032", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29033", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29034", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29035", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29036", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29037", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29038", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29039", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29040", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29041", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29042", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29043", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29044", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29045", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29046", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29047", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29048", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29049", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29050", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29051", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29052", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29053", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29054", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29055", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29056", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29057", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29058", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29059", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29060", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29061", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29062", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29063", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29064", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29065", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29066", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29067", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29068", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29069", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29070", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29071", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29072", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29073", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29074", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29075", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29076", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29077", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29078", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29079", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29080", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29081", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29082", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29083", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29084", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29085", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29086", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29087", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29088", "FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("29089", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("29090", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29091", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29092", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29093", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29094", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29095", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29096", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29097", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29098", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("29099", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("29100", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29101", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29102", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29103", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29104", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29105", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29106", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29107", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29108", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29109", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29110", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29111", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29112", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29113", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29114", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29115", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29116", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29117", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29118", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29119", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29120", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29121", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29122", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29123", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29124", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29125", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29126", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29127", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29128", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29129", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29130", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29131", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29132", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29133", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29134", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29135", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29136", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29137", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29138", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29139", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29140", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29141", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29142", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29143", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29144", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29145", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29146", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29147", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29148", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29149", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29150", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29151", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29152", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29153", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29154", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29155", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29156", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29157", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29158", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29159", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29160", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29161", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29162", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29163", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29164", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29165", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29166", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29167", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29168", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29169", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29170", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29171", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29172", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29173", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29174", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29175", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29176", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29177", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29178", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29179", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29180", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29181", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29182", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29183", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29184", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29185", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29186", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29187", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29188", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("29189", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("29190", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29191", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29192", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29193", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29194", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29195", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29196", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29197", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29198", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("29199", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("29200", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29201", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29202", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29203", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29204", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29205", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29206", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29207", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29208", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29209", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29210", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29211", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29212", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29213", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29214", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29215", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29216", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29217", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29218", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29219", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29220", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29221", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29222", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29223", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29224", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29225", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29226", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29227", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29228", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29229", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29230", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29231", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29232", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29233", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29234", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29235", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29236", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29237", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29238", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29239", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29240", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29241", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29242", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29243", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29244", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29245", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29246", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29247", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29248", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29249", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29250", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29251", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29252", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29253", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29254", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29255", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29256", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29257", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29258", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29259", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29260", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29261", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29262", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29263", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29264", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29265", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29266", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29267", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29268", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29269", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29270", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29271", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29272", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29273", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29274", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29275", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29276", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29277", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29278", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29279", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29280", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29281", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29282", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29283", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29284", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29285", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29286", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29287", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29288", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("29289", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("29290", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29291", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29292", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29293", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29294", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29295", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29296", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29297", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29298", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("29299", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("29300", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29301", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29302", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29303", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29304", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29305", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29306", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29307", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29308", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29309", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29310", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29311", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29312", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29313", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29314", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29315", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29316", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29317", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29318", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29319", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29320", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29321", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29322", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29323", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29324", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29325", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29326", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29327", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29328", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29329", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29330", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29331", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29332", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29333", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29334", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29335", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29336", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29337", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29338", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29339", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29340", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29341", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29342", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29343", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29344", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29345", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29346", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29347", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29348", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29349", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29350", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29351", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29352", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29353", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29354", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29355", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29356", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29357", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29358", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29359", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29360", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29361", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29362", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29363", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29364", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29365", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29366", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29367", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29368", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29369", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29370", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29371", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29372", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29373", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29374", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29375", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29376", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29377", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29378", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29379", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29380", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29381", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29382", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29383", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29384", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29385", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29386", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29387", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29388", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("29389", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("29390", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29391", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29392", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29393", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29394", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29395", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29396", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29397", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29398", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("29399", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("29400", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29401", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29402", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29403", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29404", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29405", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29406", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29407", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29408", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29409", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29410", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29411", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29412", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29413", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29414", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29415", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29416", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29417", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29418", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29419", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29420", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29421", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29422", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29423", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29424", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29425", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29426", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29427", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29428", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29429", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29430", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29431", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29432", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29433", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29434", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29435", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29436", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29437", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29438", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29439", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29440", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29441", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29442", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29443", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29444", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29445", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29446", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29447", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29448", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29449", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29450", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29451", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29452", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29453", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29454", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29455", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29456", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29457", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29458", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29459", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29460", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29461", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29462", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29463", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29464", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29465", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29466", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29467", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29468", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29469", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29470", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29471", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29472", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29473", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29474", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29475", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29476", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29477", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29478", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29479", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29480", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29481", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29482", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29483", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29484", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29485", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29486", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29487", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29488", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("29489", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("29490", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29491", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29492", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29493", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29494", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29495", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29496", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29497", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29498", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("29499", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("29500", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29501", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29502", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29503", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29504", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29505", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29506", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29507", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29508", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29509", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29510", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29511", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29512", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29513", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29514", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29515", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29516", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29517", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29518", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29519", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29520", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29521", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29522", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29523", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29524", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29525", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29526", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29527", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29528", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29529", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29530", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29531", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29532", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29533", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29534", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29535", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29536", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29537", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29538", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29539", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29540", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29541", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29542", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29543", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29544", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29545", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29546", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29547", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29548", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29549", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29550", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29551", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29552", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29553", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29554", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29555", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29556", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29557", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29558", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29559", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29560", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29561", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29562", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29563", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29564", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29565", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29566", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29567", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29568", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29569", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29570", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29571", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29572", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29573", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29574", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29575", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29576", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29577", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29578", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29579", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29580", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29581", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29582", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29583", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29584", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29585", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29586", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29587", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29588", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("29589", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("29590", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29591", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29592", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29593", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29594", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29595", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29596", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29597", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29598", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("29599", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("29600", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29601", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29602", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29603", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29604", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29605", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29606", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29607", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29608", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29609", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29610", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29611", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29612", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29613", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29614", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29615", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29616", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29617", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29618", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29619", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29620", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29621", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29622", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29623", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29624", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29625", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29626", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29627", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29628", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29629", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29630", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29631", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29632", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29633", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29634", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29635", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29636", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29637", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29638", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29639", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29640", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29641", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29642", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29643", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29644", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29645", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29646", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29647", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29648", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29649", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29650", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29651", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29652", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29653", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29654", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29655", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29656", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29657", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29658", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29659", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29660", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29661", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29662", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29663", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29664", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29665", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29666", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29667", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29668", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29669", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29670", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29671", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29672", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29673", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29674", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29675", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29676", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29677", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29678", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29679", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29680", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29681", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29682", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29683", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29684", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29685", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29686", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29687", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29688", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("29689", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("29690", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29691", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29692", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29693", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29694", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29695", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29696", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29697", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29698", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("29699", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("29700", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29701", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29702", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29703", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29704", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29705", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29706", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29707", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29708", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29709", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29710", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29711", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29712", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29713", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29714", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29715", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29716", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29717", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29718", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29719", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29720", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29721", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29722", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29723", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29724", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29725", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29726", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29727", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29728", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29729", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29730", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29731", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29732", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29733", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29734", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29735", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29736", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29737", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29738", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29739", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29740", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29741", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29742", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29743", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29744", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29745", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29746", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29747", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29748", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29749", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29750", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29751", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29752", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29753", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29754", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29755", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29756", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29757", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29758", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29759", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29760", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29761", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29762", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29763", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29764", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29765", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29766", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29767", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29768", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29769", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29770", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29771", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29772", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29773", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29774", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29775", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29776", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29777", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29778", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29779", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29780", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29781", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29782", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29783", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29784", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29785", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29786", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29787", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29788", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("29789", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("29790", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29791", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29792", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29793", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29794", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29795", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29796", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29797", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29798", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("29799", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("29800", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29801", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29802", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29803", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29804", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29805", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29806", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29807", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29808", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29809", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29810", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29811", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29812", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29813", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29814", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29815", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29816", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29817", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29818", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29819", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29820", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29821", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29822", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29823", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29824", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29825", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29826", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29827", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29828", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29829", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29830", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29831", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29832", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29833", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29834", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29835", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29836", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29837", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29838", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29839", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29840", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29841", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29842", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29843", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29844", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29845", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29846", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29847", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29848", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29849", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29850", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29851", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29852", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29853", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29854", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29855", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29856", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29857", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29858", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29859", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29860", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29861", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29862", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29863", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29864", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29865", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29866", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29867", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29868", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29869", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29870", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29871", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29872", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29873", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29874", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29875", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29876", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29877", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29878", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29879", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29880", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29881", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29882", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29883", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29884", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29885", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29886", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29887", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29888", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("29889", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("29890", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29891", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29892", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29893", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29894", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29895", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29896", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29897", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29898", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("29899", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("29900", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29901", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29902", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29903", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29904", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29905", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29906", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29907", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29908", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29909", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29910", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29911", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29912", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29913", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29914", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29915", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29916", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29917", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29918", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29919", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29920", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29921", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29922", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29923", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29924", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29925", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29926", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29927", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29928", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29929", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29930", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29931", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29932", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29933", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29934", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29935", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29936", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29937", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29938", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29939", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29940", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29941", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29942", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29943", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29944", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29945", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29946", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29947", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29948", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29949", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29950", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29951", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29952", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29953", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29954", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29955", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29956", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29957", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29958", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29959", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29960", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29961", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29962", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29963", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29964", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29965", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29966", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29967", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29968", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29969", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29970", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29971", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29972", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29973", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29974", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29975", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29976", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29977", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020000"),
+        ("29978", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29979", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020008"),
+        ("29980", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29981", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29982", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29983", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29984", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29985", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29986", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29987", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29988", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("29989", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("29990", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29991", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29992", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29993", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29994", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29995", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29996", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29997", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020080"),
+        ("29998", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("29999", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|FILE_ATTRIBUTE_VIRTUAL|0x00020088"),
+        ("30000", "0x00030000"),
+        ("30001", "FILE_ATTRIBUTE_READONLY|0x00030000"),
+        ("30002", "FILE_ATTRIBUTE_HIDDEN|0x00030000"),
+        ("30003", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|0x00030000"),
+        ("30004", "FILE_ATTRIBUTE_SYSTEM|0x00030000"),
+        ("30005", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|0x00030000"),
+        ("30006", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|0x00030000"),
+        ("30007", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|0x00030000"),
+        ("30008", "0x00030008"),
+        ("30009", "FILE_ATTRIBUTE_READONLY|0x00030008"),
+        ("30010", "FILE_ATTRIBUTE_DIRECTORY|0x00030000"),
+        ("30011", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|0x00030000"),
+        ("30012", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|0x00030000"),
+        ("30013", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|0x00030000"),
+        ("30014", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|0x00030000"),
+        ("30015", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|0x00030000"),
+        ("30016", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|0x00030000"),
+        ("30017", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|0x00030000"),
+        ("30018", "FILE_ATTRIBUTE_DIRECTORY|0x00030008"),
+        ("30019", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|0x00030008"),
+        ("30020", "FILE_ATTRIBUTE_ARCHIVE|0x00030000"),
+        ("30021", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|0x00030000"),
+        ("30022", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|0x00030000"),
+        ("30023", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|0x00030000"),
+        ("30024", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|0x00030000"),
+        ("30025", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|0x00030000"),
+        ("30026", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|0x00030000"),
+        ("30027", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|0x00030000"),
+        ("30028", "FILE_ATTRIBUTE_ARCHIVE|0x00030008"),
+        ("30029", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|0x00030008"),
+        ("30030", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|0x00030000"),
+        ("30031", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|0x00030000"),
+        ("30032", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|0x00030000"),
+        ("30033", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|0x00030000"),
+        ("30034", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|0x00030000"),
+        ("30035", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|0x00030000"),
+        ("30036", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|0x00030000"),
+        ("30037", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|0x00030000"),
+        ("30038", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|0x00030008"),
+        ("30039", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|0x00030008"),
+        ("30040", "FILE_ATTRIBUTE_DEVICE|0x00030000"),
+        ("30041", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|0x00030000"),
+        ("30042", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|0x00030000"),
+        ("30043", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|0x00030000"),
+        ("30044", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|0x00030000"),
+        ("30045", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|0x00030000"),
+        ("30046", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|0x00030000"),
+        ("30047", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|0x00030000"),
+        ("30048", "FILE_ATTRIBUTE_DEVICE|0x00030008"),
+        ("30049", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|0x00030008"),
+        ("30050", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|0x00030000"),
+        ("30051", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|0x00030000"),
+        ("30052", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|0x00030000"),
+        ("30053", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|0x00030000"),
+        ("30054", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|0x00030000"),
+        ("30055", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|0x00030000"),
+        ("30056", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|0x00030000"),
+        ("30057", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|0x00030000"),
+        ("30058", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|0x00030008"),
+        ("30059", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|0x00030008"),
+        ("30060", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00030000"),
+        ("30061", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00030000"),
+        ("30062", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00030000"),
+        ("30063", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00030000"),
+        ("30064", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00030000"),
+        ("30065", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00030000"),
+        ("30066", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00030000"),
+        ("30067", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00030000"),
+        ("30068", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00030008"),
+        ("30069", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00030008"),
+        ("30070", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00030000"),
+        ("30071", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00030000"),
+        ("30072", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00030000"),
+        ("30073", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00030000"),
+        ("30074", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00030000"),
+        ("30075", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00030000"),
+        ("30076", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00030000"),
+        ("30077", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00030000"),
+        ("30078", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00030008"),
+        ("30079", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|0x00030008"),
+        ("30080", "0x00030080"),
+        ("30081", "FILE_ATTRIBUTE_READONLY|0x00030080"),
+        ("30082", "FILE_ATTRIBUTE_HIDDEN|0x00030080"),
+        ("30083", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|0x00030080"),
+        ("30084", "FILE_ATTRIBUTE_SYSTEM|0x00030080"),
+        ("30085", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|0x00030080"),
+        ("30086", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|0x00030080"),
+        ("30087", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|0x00030080"),
+        ("30088", "0x00030088"),
+        ("30089", "FILE_ATTRIBUTE_READONLY|0x00030088"),
+        ("30090", "FILE_ATTRIBUTE_DIRECTORY|0x00030080"),
+        ("30091", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|0x00030080"),
+        ("30092", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|0x00030080"),
+        ("30093", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|0x00030080"),
+        ("30094", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|0x00030080"),
+        ("30095", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|0x00030080"),
+        ("30096", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|0x00030080"),
+        ("30097", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|0x00030080"),
+        ("30098", "FILE_ATTRIBUTE_DIRECTORY|0x00030088"),
+        ("30099", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|0x00030088"),
+        ("30100", "FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30101", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30102", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30103", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30104", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30105", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30106", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30107", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30108", "FILE_ATTRIBUTE_TEMPORARY|0x00030008"),
+        ("30109", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|0x00030008"),
+        ("30110", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30111", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30112", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30113", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30114", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30115", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30116", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30117", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30118", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00030008"),
+        ("30119", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00030008"),
+        ("30120", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30121", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30122", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30123", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30124", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30125", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30126", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30127", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30128", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00030008"),
+        ("30129", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00030008"),
+        ("30130", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30131", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30132", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30133", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30134", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30135", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30136", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30137", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30138", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00030008"),
+        ("30139", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|0x00030008"),
+        ("30140", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30141", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30142", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30143", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30144", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30145", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30146", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30147", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30148", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00030008"),
+        ("30149", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00030008"),
+        ("30150", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30151", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30152", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30153", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30154", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30155", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30156", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30157", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30158", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00030008"),
+        ("30159", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00030008"),
+        ("30160", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30161", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30162", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30163", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30164", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30165", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30166", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30167", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30168", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00030008"),
+        ("30169", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00030008"),
+        ("30170", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30171", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30172", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30173", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30174", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30175", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30176", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30177", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00030000"),
+        ("30178", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00030008"),
+        ("30179", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|0x00030008"),
+        ("30180", "FILE_ATTRIBUTE_TEMPORARY|0x00030080"),
+        ("30181", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|0x00030080"),
+        ("30182", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|0x00030080"),
+        ("30183", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|0x00030080"),
+        ("30184", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|0x00030080"),
+        ("30185", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|0x00030080"),
+        ("30186", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|0x00030080"),
+        ("30187", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|0x00030080"),
+        ("30188", "FILE_ATTRIBUTE_TEMPORARY|0x00030088"),
+        ("30189", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|0x00030088"),
+        ("30190", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00030080"),
+        ("30191", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00030080"),
+        ("30192", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00030080"),
+        ("30193", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00030080"),
+        ("30194", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00030080"),
+        ("30195", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00030080"),
+        ("30196", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00030080"),
+        ("30197", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00030080"),
+        ("30198", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00030088"),
+        ("30199", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|0x00030088"),
+        ("30200", "FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30201", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30202", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30203", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30204", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30205", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30206", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30207", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30208", "FILE_ATTRIBUTE_SPARSE_FILE|0x00030008"),
+        ("30209", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030008"),
+        ("30210", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30211", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30212", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30213", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30214", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30215", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30216", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30217", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30218", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030008"),
+        ("30219", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030008"),
+        ("30220", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30221", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30222", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30223", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30224", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30225", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30226", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30227", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30228", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030008"),
+        ("30229", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030008"),
+        ("30230", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30231", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30232", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30233", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30234", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30235", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30236", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30237", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30238", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030008"),
+        ("30239", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030008"),
+        ("30240", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30241", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30242", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30243", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30244", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30245", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30246", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30247", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30248", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030008"),
+        ("30249", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030008"),
+        ("30250", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30251", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30252", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30253", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30254", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30255", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30256", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30257", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30258", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030008"),
+        ("30259", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030008"),
+        ("30260", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30261", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30262", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30263", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30264", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30265", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30266", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30267", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30268", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030008"),
+        ("30269", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030008"),
+        ("30270", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30271", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30272", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30273", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30274", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30275", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30276", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30277", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30278", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030008"),
+        ("30279", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|0x00030008"),
+        ("30280", "FILE_ATTRIBUTE_SPARSE_FILE|0x00030080"),
+        ("30281", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030080"),
+        ("30282", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|0x00030080"),
+        ("30283", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|0x00030080"),
+        ("30284", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|0x00030080"),
+        ("30285", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|0x00030080"),
+        ("30286", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|0x00030080"),
+        ("30287", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|0x00030080"),
+        ("30288", "FILE_ATTRIBUTE_SPARSE_FILE|0x00030088"),
+        ("30289", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030088"),
+        ("30290", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030080"),
+        ("30291", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030080"),
+        ("30292", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030080"),
+        ("30293", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030080"),
+        ("30294", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030080"),
+        ("30295", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030080"),
+        ("30296", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030080"),
+        ("30297", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030080"),
+        ("30298", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030088"),
+        ("30299", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030088"),
+        ("30300", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30301", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30302", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30303", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30304", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30305", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30306", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30307", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30308", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030008"),
+        ("30309", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030008"),
+        ("30310", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30311", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30312", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30313", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30314", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30315", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30316", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30317", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30318", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030008"),
+        ("30319", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030008"),
+        ("30320", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30321", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30322", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30323", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30324", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30325", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30326", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30327", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30328", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030008"),
+        ("30329", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030008"),
+        ("30330", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30331", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30332", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30333", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30334", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30335", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30336", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30337", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30338", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030008"),
+        ("30339", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030008"),
+        ("30340", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30341", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30342", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30343", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30344", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30345", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30346", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30347", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30348", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030008"),
+        ("30349", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030008"),
+        ("30350", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30351", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30352", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30353", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30354", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30355", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30356", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30357", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30358", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030008"),
+        ("30359", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030008"),
+        ("30360", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30361", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30362", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30363", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30364", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30365", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30366", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30367", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30368", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030008"),
+        ("30369", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030008"),
+        ("30370", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30371", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30372", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30373", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30374", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30375", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30376", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30377", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030000"),
+        ("30378", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030008"),
+        ("30379", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030008"),
+        ("30380", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030080"),
+        ("30381", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030080"),
+        ("30382", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030080"),
+        ("30383", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030080"),
+        ("30384", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030080"),
+        ("30385", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030080"),
+        ("30386", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030080"),
+        ("30387", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030080"),
+        ("30388", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030088"),
+        ("30389", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030088"),
+        ("30390", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030080"),
+        ("30391", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030080"),
+        ("30392", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030080"),
+        ("30393", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030080"),
+        ("30394", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030080"),
+        ("30395", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030080"),
+        ("30396", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030080"),
+        ("30397", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030080"),
+        ("30398", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030088"),
+        ("30399", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|0x00030088"),
+        ("30400", "FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30401", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30402", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30403", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30404", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30405", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30406", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30407", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30408", "FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30409", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30410", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30411", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30412", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30413", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30414", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30415", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30416", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30417", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30418", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30419", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30420", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30421", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30422", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30423", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30424", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30425", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30426", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30427", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30428", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30429", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30430", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30431", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30432", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30433", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30434", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30435", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30436", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30437", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30438", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30439", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30440", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30441", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30442", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30443", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30444", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30445", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30446", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30447", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30448", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30449", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30450", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30451", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30452", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30453", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30454", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30455", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30456", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30457", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30458", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30459", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30460", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30461", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30462", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30463", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30464", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30465", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30466", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30467", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30468", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30469", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30470", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30471", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30472", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30473", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30474", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30475", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30476", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30477", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30478", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30479", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30480", "FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30481", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30482", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30483", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30484", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30485", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30486", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30487", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30488", "FILE_ATTRIBUTE_REPARSE_POINT|0x00030088"),
+        ("30489", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030088"),
+        ("30490", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30491", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30492", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30493", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30494", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30495", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30496", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30497", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30498", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030088"),
+        ("30499", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030088"),
+        ("30500", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30501", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30502", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30503", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30504", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30505", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30506", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30507", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30508", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30509", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30510", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30511", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30512", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30513", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30514", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30515", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30516", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30517", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30518", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30519", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30520", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30521", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30522", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30523", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30524", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30525", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30526", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30527", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30528", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30529", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30530", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30531", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30532", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30533", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30534", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30535", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30536", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30537", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30538", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30539", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30540", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30541", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30542", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30543", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30544", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30545", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30546", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30547", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30548", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30549", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30550", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30551", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30552", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30553", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30554", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30555", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30556", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30557", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30558", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30559", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30560", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30561", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30562", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30563", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30564", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30565", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30566", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30567", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30568", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30569", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30570", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30571", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30572", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30573", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30574", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30575", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30576", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30577", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30578", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30579", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30580", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30581", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30582", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30583", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30584", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30585", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30586", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30587", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30588", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030088"),
+        ("30589", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030088"),
+        ("30590", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30591", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30592", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30593", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30594", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30595", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30596", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30597", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30598", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030088"),
+        ("30599", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|0x00030088"),
+        ("30600", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30601", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30602", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30603", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30604", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30605", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30606", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30607", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30608", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30609", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30610", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30611", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30612", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30613", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30614", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30615", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30616", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30617", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30618", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30619", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30620", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30621", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30622", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30623", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30624", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30625", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30626", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30627", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30628", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30629", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30630", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30631", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30632", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30633", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30634", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30635", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30636", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30637", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30638", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30639", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30640", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30641", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30642", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30643", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30644", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30645", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30646", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30647", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30648", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30649", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30650", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30651", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30652", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30653", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30654", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30655", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30656", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30657", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30658", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30659", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30660", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30661", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30662", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30663", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30664", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30665", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30666", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30667", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30668", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30669", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30670", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30671", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30672", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30673", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30674", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30675", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30676", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30677", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30678", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30679", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30680", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30681", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30682", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30683", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30684", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30685", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30686", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30687", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30688", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030088"),
+        ("30689", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030088"),
+        ("30690", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30691", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30692", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30693", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30694", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30695", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30696", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30697", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30698", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030088"),
+        ("30699", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030088"),
+        ("30700", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30701", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30702", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30703", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30704", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30705", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30706", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30707", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30708", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30709", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30710", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30711", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30712", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30713", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30714", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30715", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30716", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30717", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30718", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30719", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30720", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30721", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30722", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30723", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30724", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30725", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30726", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30727", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30728", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30729", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30730", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30731", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30732", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30733", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30734", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30735", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30736", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30737", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30738", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30739", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30740", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30741", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30742", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30743", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30744", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30745", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30746", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30747", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30748", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30749", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30750", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30751", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30752", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30753", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30754", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30755", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30756", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30757", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30758", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30759", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30760", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30761", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30762", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30763", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30764", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30765", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30766", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30767", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30768", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30769", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30770", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30771", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30772", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30773", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30774", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30775", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30776", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30777", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030000"),
+        ("30778", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30779", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030008"),
+        ("30780", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30781", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30782", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30783", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30784", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30785", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30786", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30787", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30788", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030088"),
+        ("30789", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030088"),
+        ("30790", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30791", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30792", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30793", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30794", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30795", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30796", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30797", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030080"),
+        ("30798", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030088"),
+        ("30799", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|0x00030088"),
+        ("30800", "FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30801", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30802", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30803", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30804", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30805", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30806", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30807", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30808", "FILE_ATTRIBUTE_COMPRESSED|0x00030008"),
+        ("30809", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|0x00030008"),
+        ("30810", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30811", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30812", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30813", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30814", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30815", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30816", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30817", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30818", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00030008"),
+        ("30819", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00030008"),
+        ("30820", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30821", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30822", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30823", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30824", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30825", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30826", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30827", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30828", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00030008"),
+        ("30829", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00030008"),
+        ("30830", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30831", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30832", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30833", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30834", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30835", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30836", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30837", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30838", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00030008"),
+        ("30839", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|0x00030008"),
+        ("30840", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30841", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30842", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30843", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30844", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30845", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30846", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30847", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30848", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00030008"),
+        ("30849", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00030008"),
+        ("30850", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30851", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30852", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30853", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30854", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30855", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30856", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30857", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30858", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00030008"),
+        ("30859", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00030008"),
+        ("30860", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30861", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30862", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30863", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30864", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30865", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30866", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30867", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30868", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00030008"),
+        ("30869", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00030008"),
+        ("30870", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30871", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30872", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30873", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30874", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30875", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30876", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30877", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30878", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00030008"),
+        ("30879", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|0x00030008"),
+        ("30880", "FILE_ATTRIBUTE_COMPRESSED|0x00030080"),
+        ("30881", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|0x00030080"),
+        ("30882", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|0x00030080"),
+        ("30883", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|0x00030080"),
+        ("30884", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|0x00030080"),
+        ("30885", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|0x00030080"),
+        ("30886", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|0x00030080"),
+        ("30887", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|0x00030080"),
+        ("30888", "FILE_ATTRIBUTE_COMPRESSED|0x00030088"),
+        ("30889", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|0x00030088"),
+        ("30890", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00030080"),
+        ("30891", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00030080"),
+        ("30892", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00030080"),
+        ("30893", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00030080"),
+        ("30894", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00030080"),
+        ("30895", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00030080"),
+        ("30896", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00030080"),
+        ("30897", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00030080"),
+        ("30898", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00030088"),
+        ("30899", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|0x00030088"),
+        ("30900", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30901", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30902", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30903", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30904", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30905", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30906", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30907", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30908", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030008"),
+        ("30909", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030008"),
+        ("30910", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30911", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30912", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30913", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30914", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30915", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30916", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30917", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30918", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030008"),
+        ("30919", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030008"),
+        ("30920", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30921", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30922", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30923", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30924", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30925", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30926", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30927", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30928", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030008"),
+        ("30929", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030008"),
+        ("30930", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30931", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30932", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30933", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30934", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30935", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30936", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30937", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30938", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030008"),
+        ("30939", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030008"),
+        ("30940", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30941", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30942", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30943", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30944", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30945", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30946", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30947", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30948", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030008"),
+        ("30949", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030008"),
+        ("30950", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30951", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30952", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30953", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30954", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30955", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30956", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30957", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30958", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030008"),
+        ("30959", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030008"),
+        ("30960", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30961", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30962", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30963", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30964", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30965", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30966", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30967", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30968", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030008"),
+        ("30969", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030008"),
+        ("30970", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30971", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30972", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30973", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30974", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30975", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30976", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30977", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030000"),
+        ("30978", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030008"),
+        ("30979", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030008"),
+        ("30980", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030080"),
+        ("30981", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030080"),
+        ("30982", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030080"),
+        ("30983", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030080"),
+        ("30984", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030080"),
+        ("30985", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030080"),
+        ("30986", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030080"),
+        ("30987", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030080"),
+        ("30988", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030088"),
+        ("30989", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030088"),
+        ("30990", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030080"),
+        ("30991", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030080"),
+        ("30992", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030080"),
+        ("30993", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030080"),
+        ("30994", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030080"),
+        ("30995", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030080"),
+        ("30996", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030080"),
+        ("30997", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030080"),
+        ("30998", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030088"),
+        ("30999", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|0x00030088"),
+        ("31000", "FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31001", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31002", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31003", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31004", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31005", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31006", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31007", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31008", "FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31009", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31010", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31011", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31012", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31013", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31014", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31015", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31016", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31017", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31018", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31019", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31020", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31021", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31022", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31023", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31024", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31025", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31026", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31027", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31028", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31029", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31030", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31031", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31032", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31033", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31034", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31035", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31036", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31037", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31038", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31039", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31040", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31041", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31042", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31043", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31044", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31045", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31046", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31047", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31048", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31049", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31050", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31051", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31052", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31053", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31054", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31055", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31056", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31057", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31058", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31059", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31060", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31061", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31062", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31063", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31064", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31065", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31066", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31067", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31068", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31069", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31070", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31071", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31072", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31073", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31074", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31075", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31076", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31077", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31078", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31079", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31080", "FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31081", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31082", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31083", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31084", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31085", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31086", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31087", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31088", "FILE_ATTRIBUTE_OFFLINE|0x00030088"),
+        ("31089", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_OFFLINE|0x00030088"),
+        ("31090", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31091", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31092", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31093", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31094", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31095", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31096", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31097", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31098", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00030088"),
+        ("31099", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_OFFLINE|0x00030088"),
+        ("31100", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31101", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31102", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31103", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31104", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31105", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31106", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31107", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31108", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31109", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31110", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31111", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31112", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31113", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31114", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31115", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31116", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31117", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31118", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31119", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31120", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31121", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31122", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31123", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31124", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31125", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31126", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31127", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31128", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31129", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31130", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31131", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31132", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31133", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31134", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31135", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31136", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31137", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31138", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31139", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31140", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31141", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31142", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31143", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31144", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31145", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31146", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31147", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31148", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31149", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31150", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31151", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31152", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31153", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31154", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31155", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31156", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31157", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31158", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31159", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31160", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31161", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31162", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31163", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31164", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31165", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31166", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31167", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31168", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31169", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31170", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31171", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31172", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31173", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31174", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31175", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31176", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31177", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31178", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31179", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31180", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31181", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31182", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31183", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31184", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31185", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31186", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31187", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31188", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030088"),
+        ("31189", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030088"),
+        ("31190", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31191", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31192", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31193", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31194", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31195", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31196", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31197", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31198", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030088"),
+        ("31199", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_OFFLINE|0x00030088"),
+        ("31200", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31201", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31202", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31203", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31204", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31205", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31206", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31207", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31208", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31209", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31210", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31211", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31212", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31213", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31214", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31215", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31216", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31217", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31218", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31219", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31220", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31221", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31222", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31223", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31224", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31225", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31226", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31227", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31228", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31229", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31230", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31231", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31232", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31233", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31234", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31235", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31236", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31237", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31238", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31239", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31240", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31241", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31242", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31243", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31244", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31245", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31246", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31247", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31248", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31249", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31250", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31251", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31252", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31253", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31254", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31255", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31256", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31257", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31258", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31259", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31260", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31261", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31262", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31263", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31264", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31265", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31266", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31267", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31268", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31269", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31270", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31271", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31272", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31273", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31274", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31275", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31276", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31277", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31278", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31279", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31280", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31281", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31282", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31283", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31284", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31285", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31286", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31287", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31288", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030088"),
+        ("31289", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030088"),
+        ("31290", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31291", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31292", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31293", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31294", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31295", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31296", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31297", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31298", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030088"),
+        ("31299", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030088"),
+        ("31300", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31301", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31302", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31303", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31304", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31305", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31306", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31307", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31308", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31309", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31310", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31311", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31312", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31313", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31314", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31315", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31316", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31317", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31318", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31319", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31320", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31321", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31322", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31323", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31324", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31325", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31326", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31327", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31328", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31329", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31330", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31331", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31332", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31333", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31334", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31335", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31336", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31337", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31338", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31339", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31340", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31341", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31342", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31343", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31344", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31345", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31346", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31347", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31348", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31349", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31350", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31351", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31352", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31353", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31354", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31355", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31356", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31357", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31358", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31359", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31360", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31361", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31362", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31363", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31364", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31365", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31366", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31367", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31368", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31369", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31370", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31371", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31372", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31373", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31374", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31375", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31376", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31377", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31378", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31379", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31380", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31381", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31382", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31383", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31384", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31385", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31386", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31387", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31388", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030088"),
+        ("31389", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030088"),
+        ("31390", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31391", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31392", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31393", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31394", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31395", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31396", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31397", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31398", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030088"),
+        ("31399", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_OFFLINE|0x00030088"),
+        ("31400", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31401", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31402", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31403", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31404", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31405", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31406", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31407", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31408", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31409", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31410", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31411", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31412", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31413", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31414", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31415", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31416", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31417", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31418", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31419", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31420", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31421", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31422", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31423", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31424", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31425", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31426", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31427", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31428", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31429", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31430", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31431", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31432", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31433", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31434", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31435", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31436", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31437", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31438", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31439", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31440", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31441", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31442", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31443", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31444", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31445", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31446", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31447", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31448", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31449", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31450", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31451", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31452", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31453", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31454", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31455", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31456", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31457", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31458", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31459", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31460", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31461", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31462", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31463", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31464", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31465", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31466", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31467", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31468", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31469", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31470", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31471", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31472", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31473", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31474", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31475", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31476", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31477", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31478", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31479", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31480", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31481", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31482", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31483", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31484", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31485", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31486", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31487", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31488", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030088"),
+        ("31489", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030088"),
+        ("31490", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31491", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31492", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31493", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31494", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31495", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31496", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31497", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31498", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030088"),
+        ("31499", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030088"),
+        ("31500", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31501", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31502", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31503", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31504", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31505", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31506", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31507", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31508", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31509", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31510", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31511", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31512", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31513", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31514", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31515", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31516", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31517", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31518", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31519", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31520", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31521", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31522", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31523", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31524", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31525", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31526", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31527", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31528", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31529", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31530", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31531", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31532", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31533", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31534", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31535", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31536", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31537", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31538", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31539", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31540", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31541", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31542", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31543", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31544", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31545", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31546", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31547", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31548", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31549", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31550", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31551", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31552", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31553", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31554", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31555", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31556", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31557", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31558", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31559", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31560", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31561", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31562", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31563", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31564", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31565", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31566", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31567", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31568", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31569", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31570", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31571", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31572", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31573", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31574", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31575", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31576", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31577", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31578", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31579", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31580", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31581", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31582", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31583", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31584", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31585", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31586", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31587", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31588", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030088"),
+        ("31589", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030088"),
+        ("31590", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31591", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31592", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31593", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31594", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31595", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31596", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31597", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31598", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030088"),
+        ("31599", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030088"),
+        ("31600", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31601", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31602", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31603", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31604", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31605", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31606", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31607", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31608", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31609", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31610", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31611", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31612", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31613", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31614", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31615", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31616", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31617", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31618", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31619", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31620", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31621", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31622", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31623", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31624", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31625", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31626", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31627", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31628", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31629", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31630", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31631", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31632", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31633", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31634", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31635", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31636", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31637", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31638", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31639", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31640", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31641", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31642", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31643", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31644", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31645", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31646", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31647", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31648", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31649", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31650", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31651", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31652", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31653", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31654", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31655", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31656", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31657", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31658", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31659", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31660", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31661", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31662", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31663", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31664", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31665", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31666", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31667", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31668", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31669", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31670", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31671", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31672", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31673", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31674", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31675", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31676", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31677", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31678", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31679", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31680", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31681", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31682", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31683", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31684", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31685", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31686", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31687", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31688", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030088"),
+        ("31689", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030088"),
+        ("31690", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31691", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31692", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31693", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31694", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31695", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31696", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31697", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31698", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030088"),
+        ("31699", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030088"),
+        ("31700", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31701", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31702", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31703", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31704", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31705", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31706", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31707", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31708", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31709", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31710", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31711", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31712", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31713", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31714", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31715", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31716", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31717", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31718", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31719", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31720", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31721", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31722", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31723", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31724", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31725", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31726", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31727", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31728", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31729", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31730", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31731", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31732", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31733", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31734", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31735", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31736", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31737", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31738", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31739", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31740", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31741", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31742", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31743", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31744", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31745", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31746", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31747", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31748", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31749", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31750", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31751", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31752", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31753", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31754", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31755", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31756", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31757", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31758", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31759", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31760", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31761", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31762", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31763", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31764", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31765", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31766", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31767", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31768", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31769", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31770", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31771", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31772", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31773", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31774", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31775", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31776", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31777", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31778", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31779", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31780", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31781", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31782", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31783", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31784", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31785", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31786", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31787", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31788", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030088"),
+        ("31789", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030088"),
+        ("31790", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31791", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31792", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31793", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31794", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31795", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31796", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31797", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31798", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030088"),
+        ("31799", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_OFFLINE|0x00030088"),
+        ("31800", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31801", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31802", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31803", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31804", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31805", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31806", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31807", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31808", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31809", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31810", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31811", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31812", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31813", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31814", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31815", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31816", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31817", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31818", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31819", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31820", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31821", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31822", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31823", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31824", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31825", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31826", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31827", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31828", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31829", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31830", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31831", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31832", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31833", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31834", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31835", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31836", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31837", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31838", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31839", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31840", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31841", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31842", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31843", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31844", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31845", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31846", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31847", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31848", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31849", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31850", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31851", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31852", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31853", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31854", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31855", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31856", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31857", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31858", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31859", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31860", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31861", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31862", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31863", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31864", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31865", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31866", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31867", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31868", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31869", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31870", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31871", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31872", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31873", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31874", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31875", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31876", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31877", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31878", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31879", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31880", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31881", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31882", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31883", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31884", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31885", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31886", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31887", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31888", "FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030088"),
+        ("31889", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030088"),
+        ("31890", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31891", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31892", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31893", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31894", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31895", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31896", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31897", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31898", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030088"),
+        ("31899", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030088"),
+        ("31900", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31901", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31902", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31903", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31904", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31905", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31906", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31907", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31908", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31909", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31910", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31911", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31912", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31913", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31914", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31915", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31916", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31917", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31918", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31919", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31920", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31921", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31922", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31923", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31924", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31925", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31926", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31927", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31928", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31929", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31930", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31931", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31932", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31933", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31934", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31935", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31936", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31937", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31938", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31939", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31940", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31941", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31942", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31943", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31944", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31945", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31946", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31947", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31948", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31949", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31950", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31951", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31952", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31953", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31954", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31955", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31956", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31957", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31958", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31959", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31960", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31961", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31962", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31963", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31964", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31965", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31966", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31967", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31968", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31969", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31970", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31971", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31972", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31973", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31974", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31975", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31976", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31977", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030000"),
+        ("31978", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31979", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030008"),
+        ("31980", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31981", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31982", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31983", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31984", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31985", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31986", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31987", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31988", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030088"),
+        ("31989", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030088"),
+        ("31990", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31991", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31992", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31993", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31994", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31995", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31996", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31997", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030080"),
+        ("31998", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030088"),
+        ("31999", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_COMPRESSED|FILE_ATTRIBUTE_OFFLINE|0x00030088"),
+        ("32000", "FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32001", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32002", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32003", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32004", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32005", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32006", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32007", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32008", "FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32009", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32010", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32011", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32012", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32013", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32014", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32015", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32016", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32017", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32018", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32019", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32020", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32021", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32022", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32023", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32024", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32025", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32026", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32027", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32028", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32029", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32030", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32031", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32032", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32033", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32034", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32035", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32036", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32037", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32038", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32039", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32040", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32041", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32042", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32043", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32044", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32045", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32046", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32047", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32048", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32049", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32050", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32051", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32052", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32053", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32054", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32055", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32056", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32057", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32058", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32059", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32060", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32061", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32062", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32063", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32064", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32065", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32066", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32067", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32068", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32069", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32070", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32071", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32072", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32073", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32074", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32075", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32076", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32077", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32078", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32079", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32080", "FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32081", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32082", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32083", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32084", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32085", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32086", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32087", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32088", "FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030088"),
+        ("32089", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030088"),
+        ("32090", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32091", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32092", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32093", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32094", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32095", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32096", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32097", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32098", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030088"),
+        ("32099", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030088"),
+        ("32100", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32101", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32102", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32103", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32104", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32105", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32106", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32107", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32108", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32109", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32110", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32111", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32112", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32113", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32114", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32115", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32116", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32117", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32118", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32119", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32120", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32121", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32122", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32123", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32124", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32125", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32126", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32127", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32128", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32129", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32130", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32131", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32132", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32133", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32134", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32135", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32136", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32137", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32138", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32139", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32140", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32141", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32142", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32143", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32144", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32145", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32146", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32147", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32148", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32149", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32150", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32151", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32152", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32153", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32154", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32155", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32156", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32157", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32158", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32159", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32160", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32161", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32162", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32163", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32164", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32165", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32166", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32167", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32168", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32169", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32170", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32171", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32172", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32173", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32174", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32175", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32176", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32177", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32178", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32179", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32180", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32181", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32182", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32183", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32184", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32185", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32186", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32187", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32188", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030088"),
+        ("32189", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030088"),
+        ("32190", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32191", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32192", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32193", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32194", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32195", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32196", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32197", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32198", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030088"),
+        ("32199", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030088"),
+        ("32200", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32201", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32202", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32203", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32204", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32205", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32206", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32207", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32208", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32209", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32210", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32211", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32212", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32213", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32214", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32215", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32216", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32217", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32218", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32219", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32220", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32221", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32222", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32223", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32224", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32225", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32226", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32227", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32228", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32229", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32230", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32231", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32232", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32233", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32234", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32235", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32236", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32237", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32238", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32239", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32240", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32241", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32242", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32243", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32244", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32245", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32246", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32247", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32248", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32249", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32250", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32251", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32252", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32253", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32254", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32255", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32256", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32257", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32258", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32259", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32260", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32261", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32262", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32263", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32264", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32265", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32266", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32267", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32268", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32269", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32270", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32271", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32272", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32273", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32274", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32275", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32276", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32277", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32278", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32279", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32280", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32281", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32282", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32283", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32284", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32285", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32286", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32287", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32288", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030088"),
+        ("32289", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030088"),
+        ("32290", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32291", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32292", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32293", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32294", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32295", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32296", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32297", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32298", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030088"),
+        ("32299", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030088"),
+        ("32300", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32301", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32302", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32303", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32304", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32305", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32306", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32307", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32308", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32309", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32310", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32311", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32312", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32313", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32314", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32315", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32316", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32317", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32318", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32319", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32320", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32321", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32322", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32323", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32324", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32325", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32326", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32327", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32328", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32329", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32330", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32331", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32332", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32333", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32334", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32335", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32336", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32337", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32338", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32339", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32340", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32341", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32342", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32343", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32344", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32345", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32346", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32347", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32348", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32349", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32350", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32351", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32352", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32353", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32354", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32355", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32356", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32357", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32358", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32359", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32360", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32361", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32362", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32363", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32364", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32365", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32366", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32367", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32368", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32369", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32370", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32371", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32372", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32373", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32374", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32375", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32376", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32377", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32378", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32379", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32380", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32381", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32382", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32383", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32384", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32385", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32386", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32387", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32388", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030088"),
+        ("32389", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030088"),
+        ("32390", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32391", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32392", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32393", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32394", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32395", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32396", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32397", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32398", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030088"),
+        ("32399", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030088"),
+        ("32400", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32401", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32402", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32403", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32404", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32405", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32406", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32407", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32408", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32409", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32410", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32411", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32412", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32413", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32414", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32415", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32416", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32417", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32418", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32419", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32420", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32421", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32422", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32423", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32424", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32425", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32426", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32427", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32428", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32429", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32430", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32431", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32432", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32433", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32434", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32435", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32436", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32437", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32438", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32439", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32440", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32441", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32442", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32443", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32444", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32445", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32446", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32447", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32448", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32449", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32450", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32451", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32452", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32453", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32454", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32455", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32456", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32457", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32458", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32459", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32460", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32461", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32462", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32463", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32464", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32465", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32466", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32467", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32468", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32469", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32470", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32471", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32472", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32473", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32474", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32475", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32476", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32477", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32478", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32479", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32480", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32481", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32482", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32483", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32484", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32485", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32486", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32487", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32488", "FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030088"),
+        ("32489", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030088"),
+        ("32490", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32491", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32492", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32493", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32494", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32495", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32496", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32497", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32498", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030088"),
+        ("32499", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030088"),
+        ("32500", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32501", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32502", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32503", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32504", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32505", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32506", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32507", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32508", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32509", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32510", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32511", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32512", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32513", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32514", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32515", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32516", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32517", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32518", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32519", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32520", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32521", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32522", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32523", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32524", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32525", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32526", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32527", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32528", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32529", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32530", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32531", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32532", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32533", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32534", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32535", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32536", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32537", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32538", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32539", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32540", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32541", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32542", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32543", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32544", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32545", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32546", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32547", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32548", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32549", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32550", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32551", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32552", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32553", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32554", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32555", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32556", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32557", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32558", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32559", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32560", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32561", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32562", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32563", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32564", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32565", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32566", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32567", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32568", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32569", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32570", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32571", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32572", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32573", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32574", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32575", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32576", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32577", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32578", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32579", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32580", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32581", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32582", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32583", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32584", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32585", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32586", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32587", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32588", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030088"),
+        ("32589", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030088"),
+        ("32590", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32591", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32592", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32593", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32594", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32595", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32596", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32597", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32598", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030088"),
+        ("32599", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030088"),
+        ("32600", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32601", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32602", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32603", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32604", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32605", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32606", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32607", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32608", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32609", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32610", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32611", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32612", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32613", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32614", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32615", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32616", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32617", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32618", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32619", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32620", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32621", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32622", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32623", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32624", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32625", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32626", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32627", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32628", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32629", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32630", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32631", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32632", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32633", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32634", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32635", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32636", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32637", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32638", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32639", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32640", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32641", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32642", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32643", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32644", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32645", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32646", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32647", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32648", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32649", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32650", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32651", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32652", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32653", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32654", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32655", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32656", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32657", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32658", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32659", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32660", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32661", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32662", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32663", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32664", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32665", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32666", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32667", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32668", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32669", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32670", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32671", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32672", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32673", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32674", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32675", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32676", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32677", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32678", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32679", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32680", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32681", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32682", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32683", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32684", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32685", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32686", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32687", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32688", "FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030088"),
+        ("32689", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030088"),
+        ("32690", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32691", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32692", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32693", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32694", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32695", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32696", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32697", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030080"),
+        ("32698", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030088"),
+        ("32699", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030088"),
+        ("32700", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32701", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32702", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32703", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32704", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32705", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32706", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32707", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32708", "FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32709", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32710", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32711", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32712", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32713", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32714", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32715", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32716", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32717", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32718", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32719", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32720", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32721", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32722", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32723", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32724", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32725", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32726", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32727", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32728", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32729", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32730", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32731", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32732", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32733", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32734", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32735", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32736", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32737", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32738", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32739", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32740", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32741", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32742", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32743", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32744", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32745", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32746", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32747", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32748", "FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32749", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32750", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32751", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32752", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32753", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32754", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32755", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32756", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32757", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32758", "FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32759", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_DIRECTORY|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030008"),
+        ("32760", "FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32761", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32762", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32763", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32764", "FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32765", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32766", "FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+        ("32767", "FILE_ATTRIBUTE_READONLY|FILE_ATTRIBUTE_HIDDEN|FILE_ATTRIBUTE_SYSTEM|FILE_ATTRIBUTE_ARCHIVE|FILE_ATTRIBUTE_DEVICE|FILE_ATTRIBUTE_TEMPORARY|FILE_ATTRIBUTE_SPARSE_FILE|FILE_ATTRIBUTE_REPARSE_POINT|FILE_ATTRIBUTE_NOT_CONTENT_INDEXED|0x00030000"),
+    ]
+
+
+def api_name_nt_arg_name_desiredaccess_data():
+    return [
+        ("9818878", "FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|ACCESS_SYSTEM_SECURITY|0x08808800"),
+        ("21049199", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00009000"),
+        ("22175380", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x00005200"),
+        ("29445288", "GENERIC_EXECUTE|FILE_READ_EA|FILE_READ_ATTRIBUTES|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x08405200"),
+        ("19449067", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x08409000"),
+        ("21994524", "GENERIC_EXECUTE|FILE_APPEND_DATA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00804400"),
+        ("15443556", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04403400"),
+        ("10288268", "GENERIC_ALL|FILE_READ_EA|FILE_EXECUTE|FILE_DELETE_CHILD|WRITE_OWNER|0x00208200"),
+        ("29937007", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08807000"),
+        ("27738229", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_EXECUTE|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04608200"),
+        ("37876915", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04806800"),
+        ("29785741", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08605600"),
+        ("33651309", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00601200"),
+        ("4177913", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x04007800"),
+        ("2937896", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|0x00807800"),
+        ("4304371", "FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|0x04204200"),
+        ("25081817", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x04001800"),
+        ("31464307", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00404200"),
+        ("6669915", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|0x04609800"),
+        ("6034967", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|0x04004800"),
+        ("4467892", "FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|READ_CONTROL|WRITE_DAC|0x04407800"),
+        ("27901667", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04801600"),
+        ("18713951", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|0x08603800"),
+        ("23774447", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00604400"),
+        ("5839774", "FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x04809600"),
+        ("39530309", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08400200"),
+        ("21413281", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_READ_ATTRIBUTES|DELETE|ACCESS_SYSTEM_SECURITY|0x00403200"),
+        ("32650135", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|0x00600000"),
+        ("31933401", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00803400"),
+        ("8071830", "FILE_WRITE_EA|FILE_EXECUTE|DELETE|READ_CONTROL|WRITE_DAC|0x08001800"),
+        ("16641385", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|WRITE_DAC|0x04601200"),
+        ("20356609", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_READ_EA|DELETE|WRITE_DAC|SYNCHRONIZE|0x00206600"),
+        ("20378560", "GENERIC_EXECUTE|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x00208400"),
+        ("20564494", "GENERIC_EXECUTE|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x00404400"),
+        ("14131793", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|0x04001600"),
+        ("34099151", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|0x04009000"),
+        ("14102371", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|0x04002200"),
+        ("28900036", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|SYNCHRONIZE|0x08800000"),
+        ("10748236", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|WRITE_DAC|SYNCHRONIZE|0x00608200"),
+        ("13002456", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|ACCESS_SYSTEM_SECURITY|0x00002400"),
+        ("24480362", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|0x04400200"),
+        ("16521690", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|0x04401600"),
+        ("31693906", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x00603800"),
+        ("16490459", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|0x04400400"),
+        ("38744564", "GENERIC_EXECUTE|GENERIC_ALL|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|0x08604400"),
+        ("6452113", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|0x04402000"),
+        ("17181214", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04001200"),
+        ("15266367", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04206200"),
+        ("22149891", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|0x00009800"),
+        ("27764197", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_GENERIC_WRITE|FILE_READ_ACCESS|FILE_READ_ATTRIBUTES|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04604000"),
+        ("35191937", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04001800"),
+        ("14513731", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|0x04403600"),
+        ("10822635", "GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|READ_CONTROL|0x00802600"),
+        ("25729189", "GENERIC_EXECUTE|FILE_GENERIC_READ|FILE_WRITE_ATTRIBUTES|ACCESS_SYSTEM_SECURITY|0x04609000"),
+        ("36377085", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x04207000"),
+        ("32051612", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|DELETE|WRITE_DAC|0x00001600"),
+        ("36224895", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|READ_CONTROL|0x04204800"),
+        ("25052348", "GENERIC_EXECUTE|FILE_READ_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04002200"),
+        ("11570846", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00400800"),
+        ("12380348", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|0x00200200"),
+        ("6187530", "MAXIMUM_ALLOWED|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|0x04007400"),
+        ("6362286", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x04202200"),
+        ("20201975", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|0x00201800"),
+        ("7495652", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x04405600"),
+        ("19156827", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08006800"),
+        ("29959959", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08809800"),
+        ("16395230", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_EA|FILE_EXECUTE|DELETE|WRITE_OWNER|SYNCHRONIZE|0x04205200"),
+        ("36462606", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|READ_CONTROL|WRITE_DAC|0x04402600"),
+        ("8491016", "FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|DELETE|WRITE_OWNER|0x08401000"),
+        ("20295063", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|0x00205000"),
+        ("30124729", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|0x00004600"),
+        ("34283174", "GENERIC_EXECUTE|GENERIC_ALL|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|0x04203000"),
+        ("38569015", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x08409000"),
+        ("25815699", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|ACCESS_SYSTEM_SECURITY|0x04805600"),
+        ("11915604", "GENERIC_ALL|FILE_APPEND_DATA|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00805600"),
+        ("32671867", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|READ_CONTROL|WRITE_DAC|0x00601800"),
+        ("27414852", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|ACCESS_SYSTEM_SECURITY|0x04404800"),
+        ("37675422", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_EXECUTE|DELETE|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04605400"),
+        ("12496496", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|WRITE_OWNER|0x00406400"),
+        ("12932727", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|0x00802600"),
+        ("29981499", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08801400"),
+        ("6900366", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|0x04800200"),
+        ("30952265", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_DAC|SYNCHRONIZE|0x00802200"),
+        ("14836330", "GENERIC_ALL|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|0x04806200"),
+        ("3722564", "MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00602400"),
+        ("35360537", "GENERIC_EXECUTE|GENERIC_ALL|FILE_GENERIC_WRITE|FILE_READ_ACCESS|FILE_EXECUTE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04200400"),
+        ("8059551", "FILE_READ_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|0x08009400"),
+        ("30210021", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_EXECUTE|DELETE|0x00200000"),
+        ("32566372", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x00406200"),
+        ("32248573", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_DAC|0x00208400"),
+        ("11105916", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00005800"),
+        ("16104885", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|SYNCHRONIZE|0x04004800"),
+        ("30481624", "GENERIC_EXECUTE|GENERIC_ALL|FILE_APPEND_DATA|FILE_EXECUTE|WRITE_OWNER|0x00401600"),
+        ("10975600", "GENERIC_ALL|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x00805600"),
+        ("10415255", "GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|0x00405200"),
+        ("13306618", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_WRITE_EA|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00206600"),
+        ("22266844", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_DELETE_CHILD|READ_CONTROL|WRITE_DAC|0x00206800"),
+        ("19128670", "GENERIC_ALL|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08008600"),
+        ("27884132", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x04804000"),
+        ("38243095", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|WRITE_DAC|0x08203000"),
+        ("4112900", "FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|0x04002800"),
+        ("35141857", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04001800"),
+        ("21436730", "GENERIC_EXECUTE|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x00406600"),
+        ("13173585", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00003400"),
+        ("2643089", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_READ_ATTRIBUTES|WRITE_DAC|0x00603000"),
+        ("23199343", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00009200"),
+        ("15364458", "GENERIC_ALL|FILE_READ_EA|FILE_WRITE_EA|FILE_DELETE_CHILD|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04204400"),
+        ("26878456", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|READ_CONTROL|WRITE_DAC|0x04808400"),
+        ("25603507", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_ATTRIBUTES|ACCESS_SYSTEM_SECURITY|0x04603400"),
+        ("36914539", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|0x04804400"),
+        ("2428521", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|READ_CONTROL|0x00408400"),
+        ("25627210", "GENERIC_EXECUTE|FILE_WRITE_EA|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x04607200"),
+        ("31398277", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00208200"),
+        ("19577159", "GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08407000"),
+        ("19575583", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08405400"),
+        ("30561641", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_DELETE_CHILD|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x00401600"),
+        ("38023259", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_DELETE_CHILD|READ_CONTROL|0x08003200"),
+        ("14011751", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|0x04001600"),
+        ("33359379", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00209200"),
+        ("36837583", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|0x04807400"),
+        ("38326264", "GENERIC_EXECUTE|GENERIC_ALL|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|READ_CONTROL|SYNCHRONIZE|0x08206200"),
+        ("18029563", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|0x08009400"),
+        ("31336518", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_EA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00206400"),
+        ("2229563", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|0x00209400"),
+        ("5569345", "FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04409200"),
+        ("5900587", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04800400"),
+        ("16578634", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x04408600"),
+        ("5268284", "FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04208200"),
+        ("34747940", "GENERIC_EXECUTE|GENERIC_ALL|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|0x04607800"),
+        ("28453865", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_DAC|0x08403800"),
+        ("16087152", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|0x04007000"),
+        ("16124534", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|0x04004400"),
+        ("16690694", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|WRITE_OWNER|0x04600600"),
+        ("7972081", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04802000"),
+        ("30781013", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|WRITE_OWNER|SYNCHRONIZE|0x00601000"),
+        ("8895936", "FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|0x08805800"),
+        ("5123558", "FILE_READ_EA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04003400"),
+        ("2591503", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|0x00401400"),
+        ("28694788", "GENERIC_EXECUTE|FILE_READ_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|0x08604600"),
+        ("25332672", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04202600"),
+        ("39617298", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_EA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|ACCESS_SYSTEM_SECURITY|0x08607200"),
+        ("7279194", "MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04209000"),
+        ("38275877", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|READ_CONTROL|WRITE_DAC|0x08205800"),
+        ("33182535", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00002400"),
+        ("10780448", "GENERIC_ALL|FILE_READ_EA|FILE_DELETE_CHILD|WRITE_OWNER|SYNCHRONIZE|0x00600400"),
+        ("12886631", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|WRITE_OWNER|0x00806600"),
+        ("39971596", "GENERIC_EXECUTE|GENERIC_ALL|FILE_GENERIC_WRITE|FILE_READ_ATTRIBUTES|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x08801400"),
+        ("24914695", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|SYNCHRONIZE|0x04804600"),
+        ("21328924", "GENERIC_EXECUTE|FILE_APPEND_DATA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00208800"),
+        ("12898870", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|0x00808800"),
+        ("34240168", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_DAC|0x04200000"),
+        ("20395226", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|DELETE|WRITE_OWNER|SYNCHRONIZE|0x00205200"),
+        ("11962138", "GENERIC_ALL|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00802000"),
+        ("36997805", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|DELETE|WRITE_OWNER|SYNCHRONIZE|0x04807800"),
+        ("36536499", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_GENERIC_READ|FILE_WRITE_EA|DELETE|0x04406400"),
+        ("33371486", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00201400"),
+        ("33289033", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x00209000"),
+        ("3290720", "MAXIMUM_ALLOWED|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x00200600"),
+        ("31581330", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00401200"),
+        ("38068241", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_DELETE_CHILD|READ_CONTROL|WRITE_DAC|0x08008200"),
+        ("17211481", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_ATTRIBUTES|DELETE|ACCESS_SYSTEM_SECURITY|0x04201400"),
+        ("13508078", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00408000"),
+        ("13486586", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x00406400"),
+        ("15762518", "GENERIC_ALL|FILE_READ_EA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04602400"),
+        ("11520158", "GENERIC_ALL|FILE_READ_EA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00400000"),
+        ("20305582", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|0x00205400"),
+        ("26900714", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|0x04800600"),
+        ("4922180", "FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|0x04802000"),
+        ("14463184", "GENERIC_ALL|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|0x04403000"),
+        ("38571210", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_EA|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x08401200"),
+        ("7346641", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_DELETE_CHILD|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04206600"),
+        ("20587848", "GENERIC_EXECUTE|FILE_READ_EA|FILE_DELETE_CHILD|WRITE_OWNER|SYNCHRONIZE|0x00407800"),
+        ("24807563", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|0x04807400"),
+        ("11390814", "GENERIC_ALL|FILE_APPEND_DATA|FILE_WRITE_EA|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00200800"),
+        ("16494504", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|0x04404400"),
+        ("7776510", "MAXIMUM_ALLOWED|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04606400"),
+        ("13371886", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00201800"),
+        ("9215671", "FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|ACCESS_SYSTEM_SECURITY|0x08205600"),
+        ("11802870", "GENERIC_ALL|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|ACCESS_SYSTEM_SECURITY|0x00802800"),
+        ("8873327", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|0x08803200"),
+        ("10505174", "GENERIC_ALL|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|0x00405000"),
+        ("28100829", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_READ_EA|FILE_EXECUTE|SYNCHRONIZE|0x08000800"),
+        ("2216580", "MAXIMUM_ALLOWED|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|0x00206400"),
+        ("22656566", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|0x00606400"),
+        ("34246975", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_DAC|0x04206800"),
+        ("17572652", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04402600"),
+        ("10081312", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|0x00001200"),
+        ("35979942", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04809800"),
+        ("32366420", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_EXECUTE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x00206400"),
+        ("20536928", "GENERIC_EXECUTE|FILE_READ_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|0x00406800"),
+        ("3934607", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00804600"),
+        ("4017377", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|0x04007200"),
+        ("11336675", "GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00206600"),
+        ("34512074", "GENERIC_EXECUTE|GENERIC_ALL|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|SYNCHRONIZE|0x04402000"),
+        ("27482351", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x04402200"),
+        ("27609456", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|ACCESS_SYSTEM_SECURITY|0x04609400"),
+        ("32659472", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_DAC|0x00609400"),
+        ("21514854", "GENERIC_EXECUTE|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00404800"),
+        ("37725563", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04605400"),
+        ("19200322", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|ACCESS_SYSTEM_SECURITY|0x08200200"),
+        ("14710226", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|DELETE|SYNCHRONIZE|0x04600200"),
+        ("36622179", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|0x04602000"),
+        ("25011013", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|DELETE|ACCESS_SYSTEM_SECURITY|0x04001000"),
+        ("29897448", "GENERIC_EXECUTE|FILE_READ_EA|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x08807400"),
+        ("15280815", "GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x04200800"),
+        ("24101517", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|0x04001400"),
+        ("10969714", "GENERIC_ALL|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x00809600"),
+        ("10998335", "GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|0x00808200"),
+        ("30401447", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|0x00401400"),
+        ("13649784", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00609600"),
+        ("34199093", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|0x04009000"),
+        ("22995223", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_EXECUTE|DELETE|WRITE_OWNER|SYNCHRONIZE|0x00805200"),
+        ("11413958", "GENERIC_ALL|FILE_READ_EA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|ACCESS_SYSTEM_SECURITY|0x00403800"),
+        ("10288300", "GENERIC_ALL|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|0x00208200"),
+        ("22120579", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|0x00000400"),
+        ("14426425", "GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|READ_CONTROL|0x04406400"),
+        ("34589896", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|0x04409800"),
+        ("18932197", "GENERIC_ALL|FILE_GENERIC_WRITE|FILE_READ_ACCESS|FILE_READ_ATTRIBUTES|DELETE|0x08802000"),
+        ("32970397", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_GENERIC_WRITE|FILE_READ_ACCESS|FILE_READ_ATTRIBUTES|DELETE|WRITE_DAC|0x00800200"),
+        ("24884002", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|WRITE_OWNER|0x04804000"),
+        ("7785791", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04605600"),
+        ("10548094", "GENERIC_ALL|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|0x00408000"),
+        ("33273736", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00203600"),
+        ("16189553", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|0x04009400"),
+        ("25265903", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04205800"),
+        ("18639980", "GENERIC_ALL|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|0x08609800"),
+        ("5192062", "FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04002000"),
+        ("39498169", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x08408000"),
+        ("8337770", "FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|0x08207600"),
+        ("6289140", "MAXIMUM_ALLOWED|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|0x04209000"),
+        ("34481288", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_EA|FILE_READ_ATTRIBUTES|WRITE_OWNER|0x04401200"),
+        ("9929500", "FILE_WRITE_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08809400"),
+        ("4234123", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|0x04204000"),
+        ("26618002", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|DELETE|0x04608000"),
+        ("14121315", "GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|0x04001200"),
+        ("11592356", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00402200"),
+        ("33187897", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00007800"),
+        ("5828572", "FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x04808400"),
+        ("8599885", "FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|0x08409800"),
+        ("14513493", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|SYNCHRONIZE|0x04403400"),
+        ("38494039", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|DELETE|WRITE_OWNER|0x08404000"),
+        ("6328987", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|0x04208800"),
+        ("6793400", "MAXIMUM_ALLOWED|DELETE|WRITE_OWNER|SYNCHRONIZE|0x04603400"),
+        ("27002194", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|ACCESS_SYSTEM_SECURITY|0x04002000"),
+        ("13347435", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00207400"),
+        ("2987655", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|WRITE_OWNER|SYNCHRONIZE|0x00807600"),
+        ("32202947", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|0x00202800"),
+        ("8130984", "FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|0x08000800"),
+        ("15914179", "GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04804000"),
+        ("34838709", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|0x04808600"),
+        ("31070431", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|DELETE|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00000400"),
+        ("24804110", "GENERIC_EXECUTE|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|0x04804000"),
+        ("38383984", "GENERIC_EXECUTE|GENERIC_ALL|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|0x08203800"),
+        ("10533808", "GENERIC_ALL|FILE_READ_EA|DELETE|READ_CONTROL|SYNCHRONIZE|0x00403800"),
+        ("8969437", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x08809400"),
+        ("32798181", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|0x00608000"),
+        ("23823110", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x00803000"),
+        ("29607071", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|ACCESS_SYSTEM_SECURITY|0x08607000"),
+        ("24200523", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|0x04200400"),
+        ("4386465", "FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|WRITE_OWNER|SYNCHRONIZE|0x04206400"),
+        ("3891409", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x00801400"),
+        ("7292314", "MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x04202200"),
+        ("3636488", "MAXIMUM_ALLOWED|FILE_READ_EA|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x00606400"),
+        ("6409459", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_DELETE_CHILD|0x04409400"),
+        ("22914410", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_WRITE_EA|DELETE|SYNCHRONIZE|0x00804400"),
+        ("12977207", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x00807200"),
+        ("29992053", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08802000"),
+        ("8706615", "FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|SYNCHRONIZE|0x08606600"),
+        ("12713527", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|0x00603400"),
+        ("10972014", "GENERIC_ALL|FILE_APPEND_DATA|FILE_WRITE_EA|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x00802000"),
+        ("30105419", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|SYNCHRONIZE|0x00005400"),
+        ("29911793", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08801600"),
+        ("4303290", "FILE_WRITE_EA|FILE_READ_ATTRIBUTES|SYNCHRONIZE|0x04203200"),
+        ("33164376", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_GENERIC_WRITE|FILE_EXECUTE|FILE_DELETE_CHILD|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00004200"),
+        ("35627132", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x04607000"),
+        ("21892242", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x00802200"),
+        ("34320889", "GENERIC_EXECUTE|GENERIC_ALL|FILE_GENERIC_READ|0x04200800"),
+        ("31630579", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x00600400"),
+        ("27389008", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_EA|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04209000"),
+        ("22201018", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_WRITE_EA|0x00201000"),
+        ("13532405", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00402400"),
+        ("20874793", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|0x00804600"),
+        ("13752924", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00602800"),
+        ("11571783", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00401600"),
+        ("19913071", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08803000"),
+        ("10416532", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|0x00406400"),
+        ("31718898", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_EA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00608800"),
+        ("31418562", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|ACCESS_SYSTEM_SECURITY|0x00408400"),
+        ("22233884", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|0x00203800"),
+        ("8759119", "FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|0x08609000"),
+        ("5536754", "FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04406600"),
+        ("16834468", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|READ_CONTROL|0x04804400"),
+        ("9369073", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08209000"),
+        ("23964636", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00804600"),
+        ("38108755", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|0x08008600"),
+        ("3240040", "MAXIMUM_ALLOWED|FILE_DELETE_CHILD|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00200000"),
+        ("36352430", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_EA|FILE_EXECUTE|DELETE|WRITE_DAC|SYNCHRONIZE|0x04202400"),
+        ("31901165", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00801000"),
+        ("12548271", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|WRITE_DAC|SYNCHRONIZE|0x00408200"),
+        ("2593177", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|0x00403000"),
+        ("35377310", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04207200"),
+        ("28405847", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|0x08405800"),
+        ("39919118", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_EA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08809000"),
+        ("17691557", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x04601400"),
+        ("35258765", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04208600"),
+        ("26177696", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x04007600"),
+        ("37421579", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x04401400"),
+        ("9143230", "FILE_WRITE_EA|FILE_EXECUTE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08003200"),
+        ("24662472", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|READ_CONTROL|WRITE_DAC|0x04602400"),
+        ("33874593", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00804400"),
+        ("32825639", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|READ_CONTROL|0x00805600"),
+        ("13728833", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00608800"),
+        ("3458917", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00408800"),
+        ("6615263", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|0x04605200"),
+        ("29598678", "GENERIC_EXECUTE|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08408600"),
+        ("6076760", "MAXIMUM_ALLOWED|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|0x04006600"),
+        ("15712279", "GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04602200"),
+        ("17491685", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x04401600"),
+        ("23333821", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_EXECUTE|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00203800"),
+        ("38007531", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|0x08007400"),
+        ("8297143", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|0x08207000"),
+        ("8302878", "FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|SYNCHRONIZE|0x08202800"),
+        ("5991949", "FILE_READ_ACCESS|FILE_READ_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04801800"),
+        ("10797131", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|0x00607000"),
+        ("19130104", "GENERIC_ALL|FILE_APPEND_DATA|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08000000"),
+        ("20989801", "GENERIC_EXECUTE|FILE_READ_ACCESS|WRITE_OWNER|SYNCHRONIZE|0x00809800"),
+        ("16674820", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_EXECUTE|DELETE|READ_CONTROL|WRITE_DAC|0x04604800"),
+        ("2072935", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|0x00002800"),
+        ("23504851", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00404800"),
+        ("3110258", "MAXIMUM_ALLOWED|FILE_READ_EA|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00000200"),
+        ("31807463", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|ACCESS_SYSTEM_SECURITY|0x00807400"),
+        ("37016262", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|ACCESS_SYSTEM_SECURITY|0x04006200"),
+        ("31098298", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_EA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x00008200"),
+        ("36797614", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|DELETE|WRITE_OWNER|SYNCHRONIZE|0x04607600"),
+        ("7194417", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04004400"),
+        ("30458411", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_EA|DELETE|WRITE_DAC|0x00408400"),
+        ("24898601", "GENERIC_EXECUTE|FILE_READ_ACCESS|DELETE|WRITE_OWNER|0x04808600"),
+        ("18748641", "GENERIC_ALL|FILE_READ_ACCESS|FILE_DELETE_CHILD|WRITE_DAC|SYNCHRONIZE|0x08608600"),
+        ("32795234", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|DELETE|WRITE_OWNER|SYNCHRONIZE|0x00605200"),
+        ("19030040", "GENERIC_ALL|FILE_DELETE_CHILD|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x08000000"),
+        ("8069347", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|0x08009200"),
+        ("12117754", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|0x00007600"),
+        ("39655076", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x08605000"),
+        ("32077740", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|0x00007600"),
+        ("19429549", "GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x08409400"),
+        ("33393036", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00203000"),
+        ("30215975", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|0x00205800"),
+        ("28946011", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_EA|WRITE_DAC|SYNCHRONIZE|0x08806000"),
+        ("35630828", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_EA|FILE_EXECUTE|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x04600800"),
+        ("25915312", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04805200"),
+        ("8735642", "FILE_WRITE_ACCESS|FILE_DELETE_CHILD|DELETE|READ_CONTROL|SYNCHRONIZE|0x08605600"),
+        ("2502483", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_READ_ATTRIBUTES|SYNCHRONIZE|0x00402400"),
+        ("24981136", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|0x04801000"),
+        ("14955539", "GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|0x04805400"),
+        ("19330087", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08200000"),
+        ("14634308", "GENERIC_ALL|FILE_READ_EA|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|0x04604200"),
+        ("32841676", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|WRITE_DAC|0x00801600"),
+        ("11148640", "GENERIC_ALL|FILE_DELETE_CHILD|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00008600"),
+        ("26434520", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|0x04404400"),
+        ("21870670", "GENERIC_EXECUTE|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00800600"),
+        ("32119639", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|DELETE|SYNCHRONIZE|0x00009600"),
+        ("29111302", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08001200"),
+        ("12468868", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_EXECUTE|FILE_DELETE_CHILD|READ_CONTROL|WRITE_DAC|0x00408800"),
+        ("8657700", "FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|0x08607600"),
+        ("8543529", "FILE_READ_ACCESS|FILE_READ_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|0x08403400"),
+        ("17299535", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x04209400"),
+        ("13789111", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00609000"),
+        ("6080435", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|WRITE_OWNER|0x04000400"),
+        ("8946058", "FILE_READ_EA|FILE_WRITE_EA|FILE_DELETE_CHILD|WRITE_DAC|SYNCHRONIZE|0x08806000"),
+        ("3114716", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00004600"),
+        ("24739177", "GENERIC_EXECUTE|FILE_GENERIC_WRITE|FILE_READ_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|0x04609000"),
+        ("11755433", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00605400"),
+        ("4979026", "FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x04809000"),
+        ("6249239", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|WRITE_DAC|0x04209200"),
+        ("38754395", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|0x08604200"),
+        ("18486304", "GENERIC_ALL|FILE_APPEND_DATA|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|0x08406200"),
+        ("9359791", "FILE_READ_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08209600"),
+        ("25383150", "GENERIC_EXECUTE|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04203000"),
+        ("21913154", "GENERIC_EXECUTE|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00803000"),
+        ("23419133", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|ACCESS_SYSTEM_SECURITY|0x00409000"),
+        ("10497247", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|0x00407200"),
+        ("13641783", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00601600"),
+        ("10881688", "GENERIC_ALL|FILE_READ_EA|FILE_READ_ATTRIBUTES|WRITE_OWNER|0x00801600"),
+        ("38102024", "GENERIC_EXECUTE|GENERIC_ALL|FILE_APPEND_DATA|FILE_EXECUTE|SYNCHRONIZE|0x08002000"),
+        ("13350355", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00200200"),
+        ("5517999", "FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04407800"),
+        ("26154251", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|WRITE_DAC|SYNCHRONIZE|0x04004200"),
+        ("28290415", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|DELETE|WRITE_OWNER|0x08200400"),
+        ("20271617", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|DELETE|READ_CONTROL|WRITE_DAC|0x00201600"),
+        ("23994414", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00804400"),
+        ("8002483", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_READ_ATTRIBUTES|0x08002400"),
+        ("35074335", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04004200"),
+        ("28166077", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x08006000"),
+        ("27865337", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04805200"),
+        ("3425390", "MAXIMUM_ALLOWED|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x00405200"),
+        ("20529824", "GENERIC_EXECUTE|FILE_APPEND_DATA|FILE_EXECUTE|READ_CONTROL|SYNCHRONIZE|0x00409800"),
+        ("20210276", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|0x00200200"),
+        ("23500153", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00400000"),
+        ("9794728", "FILE_READ_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08604600"),
+        ("3298504", "MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x00208400"),
+        ("6446332", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|WRITE_DAC|0x04406200"),
+        ("23614305", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_ATTRIBUTES|DELETE|ACCESS_SYSTEM_SECURITY|0x00604200"),
+        ("6291505", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|0x04201400"),
+        ("35228389", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x04208200"),
+        ("33726697", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00606600"),
+        ("21425611", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_EA|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x00405600"),
+        ("2272522", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|0x00202400"),
+        ("24480550", "GENERIC_EXECUTE|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|0x04400400"),
+        ("19569069", "GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_EXECUTE|FILE_DELETE_CHILD|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08409000"),
+        ("27633510", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x04603400"),
+        ("9815092", "FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|ACCESS_SYSTEM_SECURITY|0x08805000"),
+        ("5676422", "FILE_WRITE_ACCESS|FILE_EXECUTE|DELETE|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04606400"),
+        ("39536243", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_DELETE_CHILD|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08406200"),
+        ("16150821", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_EXECUTE|DELETE|WRITE_DAC|SYNCHRONIZE|0x04000800"),
+        ("34470481", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|0x04400400"),
+        ("26354132", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|0x04204000"),
+        ("30774385", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x00604200"),
+        ("23443043", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_DELETE_CHILD|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00403000"),
+        ("28784977", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|0x08604800"),
+        ("28982105", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|0x08802000"),
+        ("20963125", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x00803000"),
+        ("29007882", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_READ_ATTRIBUTES|ACCESS_SYSTEM_SECURITY|0x08007800"),
+        ("13696270", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x00606200"),
+        ("26066921", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|0x04006800"),
+        ("12970136", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_GENERIC_WRITE|FILE_EXECUTE|DELETE|WRITE_DAC|0x00800000"),
+        ("2987226", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|WRITE_OWNER|SYNCHRONIZE|0x00807200"),
+        ("30149780", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|0x00009600"),
+        ("21690147", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x00600000"),
+        ("26062867", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|READ_CONTROL|WRITE_DAC|0x04002800"),
+        ("39245394", "GENERIC_EXECUTE|GENERIC_ALL|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x08205200"),
+        ("2742203", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|WRITE_DAC|SYNCHRONIZE|0x00602200"),
+        ("25156392", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04006200"),
+        ("2754418", "MAXIMUM_ALLOWED|FILE_READ_EA|FILE_WRITE_EA|DELETE|WRITE_DAC|SYNCHRONIZE|0x00604400"),
+        ("11847594", "GENERIC_ALL|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00807400"),
+        ("21198409", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_READ_EA|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00008400"),
+        ("25917967", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04807800"),
+        ("25055257", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04005200"),
+        ("26626953", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|0x04606800"),
+        ("27178454", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04008400"),
+        ("6146848", "MAXIMUM_ALLOWED|FILE_READ_EA|FILE_DELETE_CHILD|WRITE_DAC|SYNCHRONIZE|0x04006800"),
+        ("24576080", "GENERIC_EXECUTE|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x04406000"),
+        ("28246690", "GENERIC_EXECUTE|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|WRITE_DAC|0x08206600"),
+        ("18719880", "GENERIC_ALL|FILE_READ_ATTRIBUTES|DELETE|SYNCHRONIZE|0x08609800"),
+        ("12846304", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_ATTRIBUTES|WRITE_DAC|0x00806200"),
+        ("39863981", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x08803800"),
+        ("31944660", "GENERIC_EXECUTE|GENERIC_ALL|FILE_EXECUTE|FILE_DELETE_CHILD|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00804600"),
+        ("37760877", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04600800"),
+        ("4531460", "FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|READ_CONTROL|SYNCHRONIZE|0x04401400"),
+        ("10910505", "GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|0x00800400"),
+        ("28989889", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_READ_EA|FILE_READ_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|0x08809800"),
+        ("34978140", "GENERIC_EXECUTE|GENERIC_ALL|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x04808000"),
+        ("24084752", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|0x04004600"),
+        ("22650381", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|0x00600200"),
+        ("33436276", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x00406200"),
+        ("11148648", "GENERIC_ALL|FILE_READ_EA|FILE_DELETE_CHILD|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00008600"),
+        ("22415091", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|0x00405000"),
+        ("4796423", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_EXECUTE|DELETE|WRITE_OWNER|SYNCHRONIZE|0x04606400"),
+        ("8863931", "FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|0x08803800"),
+        ("31360414", "GENERIC_EXECUTE|GENERIC_ALL|FILE_APPEND_DATA|FILE_WRITE_EA|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00200400"),
+        ("35769550", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04609400"),
+        ("4009611", "FILE_READ_ACCESS|FILE_WRITE_EA|0x04009600"),
+        ("25048421", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_EXECUTE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04008400"),
+        ("15772087", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04602000"),
+        ("31620754", "GENERIC_EXECUTE|GENERIC_ALL|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x00600600"),
+        ("12607553", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|0x00607400"),
+        ("27739009", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04609000"),
+        ("11352621", "GENERIC_ALL|FILE_READ_ACCESS|FILE_EXECUTE|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00202600"),
+        ("37445540", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04405400"),
+        ("37245144", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04205000"),
+        ("33103014", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00003000"),
+        ("33929920", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00809800"),
+        ("3830301", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x00800200"),
+        ("21970971", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00800800"),
+        ("18703359", "GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|0x08603200"),
+        ("31129299", "GENERIC_EXECUTE|GENERIC_ALL|FILE_GENERIC_READ|FILE_WRITE_EA|ACCESS_SYSTEM_SECURITY|0x00009200"),
+        ("13973155", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00803000"),
+        ("38961992", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x08801800"),
+        ("30890334", "GENERIC_EXECUTE|GENERIC_ALL|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|0x00800200"),
+        ("33976879", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00806800"),
+        ("29839984", "GENERIC_EXECUTE|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x08809800"),
+        ("29373097", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08203000"),
+        ("15759578", "GENERIC_ALL|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04609400"),
+        ("30409482", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_READ_ATTRIBUTES|0x00409400"),
+        ("31954985", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00804800"),
+        ("23512390", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00402200"),
+        ("13239779", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x00209600"),
+        ("39090423", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_EXECUTE|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x08000400"),
+        ("27113490", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04003400"),
+        ("26469215", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|READ_CONTROL|WRITE_DAC|0x04409200"),
+        ("35199594", "GENERIC_EXECUTE|GENERIC_ALL|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04009400"),
+        ("5136106", "FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04006000"),
+        ("30262308", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_EA|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|0x00202200"),
+        ("27781652", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04601600"),
+        ("33457678", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00407600"),
+        ("4359605", "FILE_READ_ACCESS|FILE_APPEND_DATA|DELETE|WRITE_DAC|SYNCHRONIZE|0x04209600"),
+        ("30104515", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|0x00004400"),
+        ("2326551", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|0x00206400"),
+        ("11162706", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00002600"),
+        ("39797047", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08607000"),
+        ("33163777", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_GENERIC_WRITE|FILE_READ_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00003600"),
+        ("30712113", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|0x00602000"),
+        ("8764647", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x08604600"),
+        ("2158699", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|0x00008600"),
+        ("13305280", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ATTRIBUTES|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00205200"),
+        ("31093870", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x00003800"),
+        ("38744949", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|0x08604800"),
+        ("32638777", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|0x00608600"),
+        ("7787351", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04607200"),
+        ("36558923", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|0x04408800"),
+        ("14423590", "GENERIC_ALL|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|READ_CONTROL|0x04403400"),
+        ("10809690", "GENERIC_ALL|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|0x00809600"),
+        ("39931709", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08801600"),
+        ("7607991", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|ACCESS_SYSTEM_SECURITY|0x04607800"),
+        ("4250705", "FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|0x04200600"),
+        ("12639180", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|0x00609000"),
+        ("3899789", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x00809600"),
+        ("16210092", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|0x04200000"),
+        ("10224150", "GENERIC_ALL|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|0x00204000"),
+        ("30285627", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|WRITE_OWNER|0x00205600"),
+        ("29004460", "GENERIC_EXECUTE|FILE_EXECUTE|FILE_DELETE_CHILD|ACCESS_SYSTEM_SECURITY|0x08004400"),
+        ("17517537", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04407400"),
+        ("19788471", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08608400"),
+        ("32826271", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|READ_CONTROL|0x00806200"),
+        ("9278633", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|DELETE|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x08208600"),
+        ("39060558", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_EA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x08000400"),
+        ("36544936", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|0x04404800"),
+        ("30728586", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|0x00608400"),
+        ("28953188", "GENERIC_EXECUTE|FILE_READ_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|0x08803000"),
+        ("38224310", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|READ_CONTROL|0x08204200"),
+        ("35688895", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x04608800"),
+        ("13559569", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00409400"),
+        ("34340056", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|WRITE_DAC|SYNCHRONIZE|0x04200000"),
+        ("36408183", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|0x04408000"),
+        ("2746113", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|0x00606000"),
+        ("28159372", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|0x08009200"),
+        ("20605167", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|0x00605000"),
+        ("36772490", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x04602400"),
+        ("36605707", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_ATTRIBUTES|0x04605600"),
+        ("33101402", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00001400"),
+        ("23325970", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00205800"),
+        ("35262339", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04202200"),
+        ("36285748", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|0x04205600"),
+        ("32563168", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x00403000"),
+        ("12918078", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|SYNCHRONIZE|0x00808000"),
+        ("37898090", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x04808000"),
+        ("17762632", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04602600"),
+        ("6569208", "MAXIMUM_ALLOWED|FILE_READ_EA|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x04409200"),
+        ("8835931", "FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|0x08805800"),
+        ("36972652", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x04802600"),
+        ("29890728", "GENERIC_EXECUTE|FILE_READ_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x08800600"),
+        ("37105314", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04005200"),
+        ("6882211", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|WRITE_OWNER|0x04802200"),
+        ("14321945", "GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|0x04201800"),
+        ("20890784", "GENERIC_EXECUTE|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|0x00800600"),
+        ("20481519", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|0x00401400"),
+        ("33491152", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x00401000"),
+        ("7857814", "MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04807800"),
+        ("32029695", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|READ_CONTROL|0x00009600"),
+        ("33252838", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00202800"),
+        ("24387061", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|WRITE_OWNER|SYNCHRONIZE|0x04207000"),
+        ("17781458", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_WRITE_EA|FILE_DELETE_CHILD|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04601400"),
+        ("7758888", "MAXIMUM_ALLOWED|FILE_READ_EA|FILE_READ_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04608800"),
+        ("11287380", "GENERIC_ALL|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x00207200"),
+        ("27333697", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04203600"),
+        ("17595809", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04405800"),
+        ("15358222", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_EXECUTE|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04208200"),
+        ("13205321", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|ACCESS_SYSTEM_SECURITY|0x00205200"),
+        ("16233682", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|0x04203600"),
+        ("2768222", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_EXECUTE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x00608200"),
+        ("10745182", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|0x00605000"),
+        ("12074295", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|0x00004200"),
+        ("36975496", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x04805400"),
+        ("10665285", "GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|READ_CONTROL|WRITE_DAC|0x00605200"),
+        ("6661349", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|0x04601200"),
+        ("25983498", "GENERIC_EXECUTE|FILE_READ_EA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04803400"),
+        ("28021604", "GENERIC_EXECUTE|FILE_APPEND_DATA|READ_CONTROL|0x08001600"),
+        ("31411664", "GENERIC_EXECUTE|GENERIC_ALL|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|ACCESS_SYSTEM_SECURITY|0x00401600"),
+        ("32150475", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_DAC|SYNCHRONIZE|0x00000400"),
+        ("19650553", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x08600400"),
+        ("34782217", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|WRITE_OWNER|SYNCHRONIZE|0x04602200"),
+        ("4810840", "FILE_DELETE_CHILD|DELETE|0x04800800"),
+        ("4749588", "FILE_READ_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|0x04609400"),
+        ("35041788", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04001600"),
+        ("10800493", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|0x00800400"),
+        ("9636298", "FILE_READ_EA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x08606200"),
+        ("17438988", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x04408800"),
+        ("18084709", "GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|0x08004600"),
+        ("39397902", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08207800"),
+        ("11221912", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x00201800"),
+        ("37870040", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_DELETE_CHILD|DELETE|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04800000"),
+        ("24748141", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|0x04608000"),
+        ("10932819", "GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|DELETE|READ_CONTROL|SYNCHRONIZE|0x00802800"),
+        ("15511813", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04401800"),
+        ("14240728", "GENERIC_ALL|FILE_READ_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|WRITE_DAC|0x04200600"),
+        ("11576111", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00406000"),
+        ("21140749", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_READ_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00000600"),
+        ("37503107", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04403000"),
+        ("34859987", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|0x04809800"),
+        ("27349613", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04209600"),
+        ("16280818", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_WRITE_EA|WRITE_OWNER|0x04200800"),
+        ("32325006", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|READ_CONTROL|SYNCHRONIZE|0x00205000"),
+        ("2488726", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|0x00408600"),
+        ("16098137", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|0x04008000"),
+        ("6079855", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|READ_CONTROL|WRITE_DAC|0x04009800"),
+        ("13537740", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00407600"),
+        ("17330111", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04200000"),
+        ("24650389", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_READ_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|0x04600200"),
+        ("7781138", "MAXIMUM_ALLOWED|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04601000"),
+        ("18031854", "GENERIC_ALL|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|READ_CONTROL|0x08001800"),
+        ("5274483", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04204400"),
+        ("8387513", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|0x08207400"),
+        ("4317756", "FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|0x04207600"),
+        ("32856706", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|0x00806600"),
+        ("39518092", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08408000"),
+        ("30564367", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x00404200"),
+        ("16244449", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_DELETE_CHILD|WRITE_DAC|0x04204400"),
+        ("8395804", "FILE_APPEND_DATA|DELETE|WRITE_OWNER|SYNCHRONIZE|0x08205800"),
+        ("32605034", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|0x00605000"),
+        ("37195361", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04005200"),
+        ("6503542", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|0x04403400"),
+        ("19916859", "GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08806800"),
+        ("28201542", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|0x08201400"),
+        ("14795825", "GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|DELETE|WRITE_OWNER|SYNCHRONIZE|0x04605800"),
+        ("38799650", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|SYNCHRONIZE|0x08609600"),
+        ("12873230", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_EA|FILE_EXECUTE|DELETE|READ_CONTROL|WRITE_DAC|0x00803200"),
+        ("12529670", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|READ_CONTROL|SYNCHRONIZE|0x00409600"),
+        ("7942570", "MAXIMUM_ALLOWED|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04802400"),
+        ("31365529", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00205400"),
+        ("7862854", "MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04802800"),
+        ("36871150", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|0x04801000"),
+        ("8649139", "FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|WRITE_DAC|0x08609000"),
+        ("7757600", "MAXIMUM_ALLOWED|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04607600"),
+        ("25593526", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04403400"),
+        ("37079083", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04009000"),
+        ("15432062", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x04402000"),
+        ("7961430", "MAXIMUM_ALLOWED|FILE_WRITE_EA|FILE_EXECUTE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04801400"),
+        ("3810670", "MAXIMUM_ALLOWED|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|ACCESS_SYSTEM_SECURITY|0x00800600"),
+        ("7571948", "MAXIMUM_ALLOWED|FILE_READ_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04401800"),
+        ("39540980", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08400800"),
+        ("15236149", "GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x04206000"),
+        ("17799455", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04609400"),
+        ("20031680", "GENERIC_EXECUTE|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|0x00001600"),
+        ("18958690", "GENERIC_ALL|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|0x08808600"),
+        ("8315151", "FILE_READ_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|0x08205000"),
+        ("8749432", "FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|WRITE_DAC|SYNCHRONIZE|0x08609400"),
+        ("24877334", "GENERIC_EXECUTE|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|0x04807200"),
+        ("15377279", "GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04207200"),
+        ("35674199", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04604000"),
+        ("20683791", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|0x00603600"),
+        ("28376978", "GENERIC_EXECUTE|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x08206800"),
+        ("23469698", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00409600"),
+        ("36173118", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x04003000"),
+        ("15273697", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04203600"),
+        ("24961574", "GENERIC_EXECUTE|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x04801400"),
+        ("24542928", "GENERIC_EXECUTE|FILE_READ_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|0x04402800"),
+        ("30877539", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|0x00807400"),
+        ("35962400", "GENERIC_EXECUTE|GENERIC_ALL|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04802400"),
+        ("33585204", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_APPEND_DATA|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00405200"),
+        ("23631377", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x00601200"),
+        ("16689835", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|WRITE_OWNER|0x04609800"),
+        ("16041014", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|WRITE_DAC|0x04001000"),
+        ("35327399", "GENERIC_EXECUTE|GENERIC_ALL|FILE_GENERIC_READ|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|ACCESS_SYSTEM_SECURITY|0x04207200"),
+        ("33340265", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00200200"),
+        ("29497241", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x08407200"),
+        ("20897800", "GENERIC_EXECUTE|DELETE|WRITE_OWNER|0x00807800"),
+        ("11674635", "GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|DELETE|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00604600"),
+        ("20699201", "GENERIC_EXECUTE|FILE_READ_ACCESS|DELETE|WRITE_OWNER|0x00609200"),
+        ("10876506", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|0x00806400"),
+        ("19562991", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08402800"),
+        ("3070057", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY"),
+        ("39775879", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08605800"),
+        ("8546251", "FILE_READ_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|WRITE_DAC|SYNCHRONIZE|0x08406200"),
+        ("33368104", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00208000"),
+        ("27433363", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x04403200"),
+        ("6396116", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|0x04206000"),
+        ("25631619", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x04601600"),
+        ("27776283", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04606200"),
+        ("26290434", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|DELETE|WRITE_OWNER|0x04200400"),
+        ("16442652", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|WRITE_DAC|0x04402600"),
+        ("17139301", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04009200"),
+        ("8641784", "FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|WRITE_DAC|0x08601600"),
+        ("4137731", "FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|0x04007600"),
+        ("15306738", "GENERIC_ALL|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04206600"),
+        ("31854953", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00804800"),
+        ("33099079", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x00009000"),
+        ("5424336", "FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x04404200"),
+        ("32475462", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|READ_CONTROL|WRITE_DAC|0x00405400"),
+        ("36930152", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|0x04800000"),
+        ("27170107", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04000000"),
+        ("35867319", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04807200"),
+        ("7891301", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x04801200"),
+        ("14640207", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|WRITE_DAC|0x04600200"),
+        ("3890677", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x00800600"),
+        ("23400252", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|ACCESS_SYSTEM_SECURITY|0x00400200"),
+        ("28305072", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|SYNCHRONIZE|0x08205000"),
+        ("35412293", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|ACCESS_SYSTEM_SECURITY|0x04402200"),
+        ("24390685", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|0x04200600"),
+        ("6499431", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|DELETE|WRITE_OWNER|0x04409400"),
+        ("37265400", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04205400"),
+        ("2773871", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x00603800"),
+        ("18671448", "GENERIC_ALL|FILE_READ_EA|FILE_DELETE_CHILD|DELETE|READ_CONTROL|WRITE_DAC|0x08601400"),
+        ("20636329", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_READ_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|0x00606200"),
+        ("36465506", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|0x04405400"),
+        ("18397883", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_READ_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|0x08207800"),
+        ("25571535", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04401400"),
+        ("17858356", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04808200"),
+        ("5938348", "FILE_READ_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04808200"),
+        ("23634554", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x00604400"),
+        ("37555557", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04405400"),
+        ("38847220", "GENERIC_EXECUTE|GENERIC_ALL|FILE_EXECUTE|WRITE_DAC|0x08807200"),
+        ("10533160", "GENERIC_ALL|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|0x00403000"),
+        ("33212472", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|ACCESS_SYSTEM_SECURITY|0x00202400"),
+        ("17948776", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04808600"),
+        ("4137533", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|0x04007400"),
+        ("39525222", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_EXECUTE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08405200"),
+        ("15725850", "GENERIC_ALL|FILE_WRITE_EA|FILE_DELETE_CHILD|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04605800"),
+        ("14810595", "GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|0x04800400"),
+        ("34794410", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_EA|DELETE|WRITE_OWNER|SYNCHRONIZE|0x04604400"),
+        ("14999343", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|0x04809200"),
+        ("35765146", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04605000"),
+        ("28403185", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|0x08403000"),
+        ("23585175", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00405000"),
+        ("25821755", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x04801600"),
+        ("38737098", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_EA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|0x08607000"),
+        ("11361139", "GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00201000"),
+        ("36010533", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|0x04000400"),
+        ("11210739", "GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|ACCESS_SYSTEM_SECURITY|0x00200600"),
+        ("21396238", "GENERIC_EXECUTE|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00206200"),
+        ("3419792", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|ACCESS_SYSTEM_SECURITY|0x00409600"),
+        ("22771676", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x00601600"),
+        ("15050430", "GENERIC_ALL|FILE_WRITE_EA|FILE_EXECUTE|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04000400"),
+        ("6630857", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|READ_CONTROL|0x04600800"),
+        ("12659903", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|0x00609800"),
+        ("14409254", "GENERIC_ALL|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|0x04409200"),
+        ("34625213", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|READ_CONTROL|0x04605200"),
+        ("12267036", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|READ_CONTROL|WRITE_DAC|0x00207000"),
+        ("7682721", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x04602600"),
+        ("37161634", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04001600"),
+        ("4427211", "FILE_READ_ACCESS|FILE_WRITE_EA|READ_CONTROL|0x04407200"),
+        ("16298022", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_EXECUTE|DELETE|WRITE_OWNER|0x04208000"),
+        ("5562118", "FILE_READ_EA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04402000"),
+        ("36984924", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|0x04804800"),
+        ("17800790", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|ACCESS_SYSTEM_SECURITY|0x04800600"),
+        ("5601169", "FILE_READ_ACCESS|FILE_READ_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|ACCESS_SYSTEM_SECURITY|0x04601000"),
+        ("22522677", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|READ_CONTROL|SYNCHRONIZE|0x00402600"),
+        ("9938274", "FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08808200"),
+        ("20232085", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|0x00202000"),
+        ("3985470", "MAXIMUM_ALLOWED|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00805400"),
+        ("16373243", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_DELETE_CHILD|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x04203200"),
+        ("38312011", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_EA|DELETE|SYNCHRONIZE|0x08202000"),
+        ("11953432", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00803400"),
+        ("10335484", "GENERIC_ALL|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|0x00205400"),
+        ("16389885", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|0x04209800"),
+        ("3608764", "MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|ACCESS_SYSTEM_SECURITY|0x00608600"),
+        ("3788389", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00608200"),
+        ("36643057", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|WRITE_DAC|0x04603000"),
+        ("10367290", "GENERIC_ALL|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x00207200"),
+        ("30029460", "GENERIC_EXECUTE|GENERIC_ALL|FILE_EXECUTE|FILE_DELETE_CHILD|READ_CONTROL|0x00009400"),
+        ("21296795", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x00206600"),
+        ("37419933", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|ACCESS_SYSTEM_SECURITY|0x04409800"),
+        ("28614798", "GENERIC_EXECUTE|FILE_READ_EA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|0x08604600"),
+        ("14848464", "GENERIC_ALL|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|WRITE_DAC|0x04808400"),
+        ("34746848", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_EA|FILE_DELETE_CHILD|WRITE_DAC|SYNCHRONIZE|0x04606800"),
+        ("5014827", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|DELETE|ACCESS_SYSTEM_SECURITY|0x04004800"),
+        ("4256609", "FILE_READ_ACCESS|FILE_READ_EA|DELETE|WRITE_DAC|0x04206600"),
+        ("11001037", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|ACCESS_SYSTEM_SECURITY|0x00001000"),
+        ("24240681", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_READ_ATTRIBUTES|WRITE_DAC|0x04200600"),
+        ("35347584", "GENERIC_EXECUTE|GENERIC_ALL|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04207400"),
+        ("31055547", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00005400"),
+        ("34350772", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|0x04200600"),
+        ("24406440", "GENERIC_EXECUTE|FILE_DELETE_CHILD|0x04406400"),
+        ("29432033", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x08402000"),
+        ("28048688", "GENERIC_EXECUTE|FILE_READ_EA|FILE_READ_ATTRIBUTES|WRITE_DAC|0x08008600"),
+        ("20390014", "GENERIC_EXECUTE|FILE_APPEND_DATA|FILE_WRITE_EA|DELETE|WRITE_OWNER|SYNCHRONIZE|0x00200000"),
+        ("39231684", "GENERIC_EXECUTE|GENERIC_ALL|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x08201600"),
+        ("36298331", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|0x04208200"),
+        ("38148442", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_DELETE_CHILD|WRITE_DAC|SYNCHRONIZE|0x08008400"),
+        ("3245009", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00205000"),
+        ("26048166", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_DAC|0x04008000"),
+        ("28334272", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|READ_CONTROL|SYNCHRONIZE|0x08204200"),
+        ("26245058", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_WRITE_EA|FILE_DELETE_CHILD|WRITE_DAC|0x04205000"),
+        ("7186261", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04006200"),
+        ("28882338", "GENERIC_EXECUTE|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|0x08802200"),
+        ("31435952", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x00405800"),
+        ("6016800", "MAXIMUM_ALLOWED|DELETE|0x04006800"),
+        ("28011732", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|0x08001600"),
+        ("25549748", "GENERIC_EXECUTE|FILE_READ_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04409600"),
+        ("23144894", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00004800"),
+        ("38175710", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x08005600"),
+        ("13791148", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00601000"),
+        ("18933380", "GENERIC_ALL|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|0x08803200"),
+        ("27398873", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04208800"),
+        ("13941057", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00801000"),
+        ("31986006", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00806000"),
+        ("29696751", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x08606600"),
+        ("13015283", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_READ_ATTRIBUTES|DELETE|ACCESS_SYSTEM_SECURITY|0x00005200"),
+        ("32254814", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|DELETE|WRITE_DAC|0x00204800"),
+        ("26482425", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|WRITE_OWNER|0x04402400"),
+        ("7656859", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04606800"),
+        ("27854714", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04804600"),
+        ("29453623", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_EXECUTE|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x08403600"),
+        ("13727896", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00607800"),
+        ("38074124", "GENERIC_EXECUTE|GENERIC_ALL|FILE_APPEND_DATA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|0x08004000"),
+        ("3826012", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x00806000"),
+        ("21924190", "GENERIC_EXECUTE|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00804000"),
+        ("18816511", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|0x08806400"),
+        ("14236762", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|0x04206600"),
+        ("23507698", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00407600"),
+        ("9157517", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08007400"),
+        ("27351456", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04201400"),
+        ("14105614", "GENERIC_ALL|FILE_APPEND_DATA|FILE_WRITE_EA|SYNCHRONIZE|0x04005600"),
+        ("17415863", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|ACCESS_SYSTEM_SECURITY|0x04405800"),
+        ("5231874", "FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x04201800"),
+        ("36108163", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|0x04008000"),
+        ("7829782", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x04809600"),
+        ("16846731", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|WRITE_DAC|0x04806600"),
+        ("31096367", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x00006200"),
+        ("27731332", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04601200"),
+        ("25407965", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|ACCESS_SYSTEM_SECURITY|0x04407800"),
+        ("14781385", "GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|0x04601200"),
+        ("22454351", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|0x00404200"),
+        ("34680280", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ATTRIBUTES|WRITE_OWNER|0x04600200"),
+        ("24155115", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|0x04005000"),
+        ("37803353", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|ACCESS_SYSTEM_SECURITY|0x04803200"),
+        ("26341511", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|0x04201400"),
+        ("29837989", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_READ_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x08807800"),
+        ("23401465", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|ACCESS_SYSTEM_SECURITY|0x00401400"),
+        ("33764806", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00604800"),
+        ("4394116", "FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|0x04204000"),
+        ("22691922", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|0x00601800"),
+        ("30939079", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|READ_CONTROL|SYNCHRONIZE|0x00809000"),
+        ("32156726", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|0x00006600"),
+        ("37872356", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04802200"),
+        ("38881462", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|WRITE_OWNER|0x08801400"),
+        ("12331794", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|0x00201600"),
+        ("34186343", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|0x04006200"),
+        ("6478786", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|0x04408600"),
+        ("23138497", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00008400"),
+        ("22687859", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_DELETE_CHILD|WRITE_OWNER|0x00607800"),
+        ("24109393", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|0x04009200"),
+        ("28851550", "GENERIC_EXECUTE|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|0x08801400"),
+        ("9985076", "FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08805000"),
+        ("7777872", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04607800"),
+        ("15901164", "GENERIC_ALL|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04801000"),
+        ("31960985", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00800800"),
+        ("19555072", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08405000"),
+        ("23071001", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|DELETE|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00001000"),
+        ("8860847", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|READ_CONTROL|WRITE_DAC|0x08800800"),
+        ("25255957", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04205800"),
+        ("3770401", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00600400"),
+        ("11536240", "GENERIC_ALL|FILE_DELETE_CHILD|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00406200"),
+        ("34558091", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|0x04408000"),
+        ("23241044", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_DELETE_CHILD|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00201000"),
+        ("24586762", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|0x04406600"),
+        ("26968202", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x04808200"),
+        ("25387868", "GENERIC_EXECUTE|FILE_READ_EA|FILE_EXECUTE|FILE_DELETE_CHILD|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04207800"),
+        ("35024349", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x04004200"),
+        ("26417888", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_READ_ATTRIBUTES|DELETE|0x04407800"),
+        ("30989016", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|WRITE_OWNER|SYNCHRONIZE|0x00809000"),
+        ("9557539", "FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08407400"),
+        ("8269433", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|READ_CONTROL|WRITE_DAC|0x08209400"),
+        ("21962747", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00802600"),
+        ("17095598", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x04005400"),
+        ("3338162", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00208000"),
+        ("28761233", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x08601200"),
+        ("7810715", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|ACCESS_SYSTEM_SECURITY|0x04800600"),
+        ("21542857", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00402800"),
+        ("33050300", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00000200"),
+        ("28523605", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_APPEND_DATA|READ_CONTROL|SYNCHRONIZE|0x08403600"),
+        ("10759278", "GENERIC_ALL|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_DAC|SYNCHRONIZE|0x00609200"),
+        ("28117803", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|DELETE|SYNCHRONIZE|0x08007800"),
+        ("31412404", "GENERIC_EXECUTE|GENERIC_ALL|FILE_APPEND_DATA|DELETE|ACCESS_SYSTEM_SECURITY|0x00402400"),
+        ("19372787", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08202600"),
+        ("15044131", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04004000"),
+        ("30341091", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|0x00201000"),
+        ("5995249", "FILE_READ_ACCESS|FILE_READ_EA|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04805200"),
+        ("23731162", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00601000"),
+        ("36586157", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|0x04406000"),
+        ("24016257", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|0x04006200"),
+        ("5071402", "FILE_WRITE_ACCESS|DELETE|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04001400"),
+        ("5843656", "FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04803600"),
+        ("12802439", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|0x00802400"),
+        ("33788032", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00608000"),
+        ("4143905", "FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|0x04003800"),
+        ("22655588", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|0x00605400"),
+        ("9320727", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08200600"),
+        ("10350120", "GENERIC_ALL|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|0x00200000"),
+        ("32445667", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|WRITE_DAC|0x00405600"),
+        ("6465961", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|0x04405800"),
+        ("37898252", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x04808200"),
+        ("33634908", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x00604800"),
+        ("22208659", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_DELETE_CHILD|0x00208600"),
+        ("2048504", "MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_ATTRIBUTES|WRITE_DAC|0x00008400"),
+        ("28542666", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|WRITE_DAC|SYNCHRONIZE|0x08402600"),
+        ("15611499", "GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|ACCESS_SYSTEM_SECURITY|0x04601400"),
+        ("35930063", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04800000"),
+        ("10536723", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|0x00406600"),
+        ("24756586", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|0x04606400"),
+        ("35369621", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_EXECUTE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04209600"),
+        ("39577772", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08407600"),
+        ("36545512", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|0x04405400"),
+        ("25514546", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04404400"),
+        ("39306701", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08206600"),
+        ("5845850", "FILE_WRITE_EA|FILE_DELETE_CHILD|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04805800"),
+        ("5959210", "FILE_WRITE_EA|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04809200"),
+        ("16439222", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_EXECUTE|DELETE|READ_CONTROL|0x04409200"),
+        ("35565073", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04405000"),
+        ("27906120", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04806000"),
+        ("11691511", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x00601400"),
+        ("5521174", "FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04401000"),
+        ("20690330", "GENERIC_EXECUTE|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|0x00600200"),
+        ("11948340", "GENERIC_ALL|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00808200"),
+        ("6262961", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|0x04202800"),
+        ("36759035", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|DELETE|WRITE_DAC|SYNCHRONIZE|0x04609000"),
+        ("10160840", "GENERIC_ALL|FILE_DELETE_CHILD|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x00000800"),
+        ("6157264", "MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_DAC|SYNCHRONIZE|0x04007200"),
+        ("15988628", "GENERIC_ALL|FILE_READ_EA|FILE_EXECUTE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04808600"),
+        ("29642377", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x08602200"),
+        ("39397938", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08207800"),
+        ("28622079", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|READ_CONTROL|0x08602000"),
+        ("27229489", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_READ_ATTRIBUTES|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x04209400"),
+        ("28362408", "GENERIC_EXECUTE|FILE_READ_EA|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x08202400"),
+        ("30099476", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|0x00009400"),
+        ("6339555", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|0x04209400"),
+        ("36672578", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|0x04602400"),
+        ("9828942", "FILE_WRITE_ACCESS|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x08808800"),
+        ("19352086", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08202000"),
+        ("19330122", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08200000"),
+        ("3888952", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x00808800"),
+        ("39263205", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x08203200"),
+        ("33281578", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x00201400"),
+        ("14282050", "GENERIC_ALL|FILE_WRITE_EA|FILE_DELETE_CHILD|WRITE_OWNER|0x04202000"),
+        ("25394618", "GENERIC_EXECUTE|FILE_READ_EA|FILE_WRITE_EA|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04204600"),
+        ("12499674", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|0x00409600"),
+        ("22167648", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_DELETE_CHILD|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x00007600"),
+        ("3453532", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00403400"),
+        ("25582008", "GENERIC_EXECUTE|FILE_READ_EA|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04402000"),
+        ("24016069", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_READ_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|0x04006000"),
+        ("9557991", "FILE_READ_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08407800"),
+        ("6581991", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|0x04401800"),
+        ("27711166", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04601000"),
+        ("4196072", "FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|SYNCHRONIZE|0x04006000"),
+        ("2645886", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|WRITE_DAC|0x00605800"),
+        ("8440972", "FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_DAC|0x08400800"),
+        ("34840963", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_DAC|0x04800800"),
+        ("5168762", "FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04008600"),
+        ("34430856", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|READ_CONTROL|0x04400800"),
+        ("38636149", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|0x08606000"),
+        ("26298185", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|0x04208000"),
+        ("6018833", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|DELETE|0x04008800"),
+        ("19968614", "GENERIC_ALL|FILE_APPEND_DATA|FILE_WRITE_EA|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08808600"),
+        ("9042518", "FILE_READ_EA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x08002400"),
+        ("22243904", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_ATTRIBUTES|WRITE_DAC|0x00203800"),
+        ("30509537", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|0x00409400"),
+        ("33337183", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00207000"),
+        ("25888611", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_EA|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x04808600"),
+        ("28776235", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x08606200"),
+        ("2158666", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_DAC|SYNCHRONIZE|0x00008600"),
+        ("29486867", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x08406800"),
+        ("6365204", "MAXIMUM_ALLOWED|FILE_APPEND_DATA|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x04205200"),
+        ("37854625", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04804600"),
+        ("14406905", "GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_ATTRIBUTES|0x04406800"),
+        ("7170083", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04000000"),
+        ("6797464", "MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|SYNCHRONIZE|0x04607400"),
+        ("22418419", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|DELETE|0x00408400"),
+        ("8620445", "FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|READ_CONTROL|0x08600400"),
+        ("16966864", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x04806800"),
+        ("17507153", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04407000"),
+        ("11520234", "GENERIC_ALL|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00400200"),
+        ("18442827", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|WRITE_DAC|0x08402800"),
+        ("37725835", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04605800"),
+        ("9515993", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08405800"),
+        ("24967742", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x04807600"),
+        ("34917437", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|DELETE|SYNCHRONIZE|0x04807400"),
+        ("10194687", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|0x00004600"),
+        ("21128007", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00008000"),
+        ("20879845", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|DELETE|READ_CONTROL|WRITE_DAC|0x00809800"),
+        ("18276238", "GENERIC_ALL|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|DELETE|READ_CONTROL|WRITE_DAC|0x08206200"),
+        ("20092710", "GENERIC_EXECUTE|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|0x00002600"),
+        ("3337452", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00207400"),
+        ("9640920", "FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x08600800"),
+        ("35741470", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04601400"),
+        ("33724004", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_APPEND_DATA|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00604000"),
+        ("34895336", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|0x04805200"),
+        ("31625540", "GENERIC_EXECUTE|GENERIC_ALL|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x00605400"),
+        ("6198297", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|0x04008200"),
+        ("15808556", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|ACCESS_SYSTEM_SECURITY|0x04808400"),
+        ("19194893", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08004800"),
+        ("23816480", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ATTRIBUTES|DELETE|ACCESS_SYSTEM_SECURITY|0x00806400"),
+        ("33824218", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_WRITE_EA|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x00804200"),
+        ("39902636", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08802600"),
+        ("11550647", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00400600"),
+        ("21269644", "GENERIC_EXECUTE|FILE_APPEND_DATA|FILE_DELETE_CHILD|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00209600"),
+        ("35597640", "GENERIC_EXECUTE|GENERIC_ALL|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04407600"),
+        ("24745236", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|WRITE_DAC|SYNCHRONIZE|0x04605200"),
+        ("22600029", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_EXECUTE|0x00600000"),
+        ("13070688", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00000600"),
+        ("18874198", "GENERIC_ALL|FILE_READ_EA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|0x08804000"),
+        ("20304304", "GENERIC_EXECUTE|FILE_APPEND_DATA|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|0x00204200"),
+        ("34776198", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_EA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x04606000"),
+        ("21775598", "GENERIC_EXECUTE|FILE_READ_EA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00605400"),
+        ("25958785", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04808600"),
+        ("38864623", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_EXECUTE|READ_CONTROL|WRITE_DAC|0x08804600"),
+        ("16559771", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|0x04409600"),
+        ("24601302", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_WRITE_ATTRIBUTES|0x04601200"),
+        ("34061517", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|0x04001400"),
+        ("34368530", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x04208400"),
+        ("4290173", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|0x04200000"),
+        ("20359809", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_READ_EA|DELETE|WRITE_DAC|SYNCHRONIZE|0x00209800"),
+        ("19167762", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08007600"),
+        ("23460314", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00400200"),
+        ("3425805", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x00405800"),
+        ("22256922", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|0x00206800"),
+        ("11444241", "GENERIC_ALL|FILE_READ_ACCESS|FILE_DELETE_CHILD|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00404200"),
+        ("8660315", "FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|0x08600200"),
+        ("12374162", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x00204000"),
+        ("10681806", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|WRITE_OWNER|0x00601800"),
+        ("30248328", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|WRITE_DAC|0x00208200"),
+        ("31917922", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00807800"),
+        ("20215760", "GENERIC_EXECUTE|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|0x00205600"),
+        ("38983919", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|0x08803800"),
+        ("39759595", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08609400"),
+        ("9130128", "FILE_READ_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08000000"),
+        ("5533851", "FILE_READ_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04403800"),
+        ("7145567", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04005400"),
+        ("14946042", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_DELETE_CHILD|WRITE_DAC|SYNCHRONIZE|0x04806000"),
+        ("3068822", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_EXECUTE|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00008800"),
+        ("3909526", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00809400"),
+        ("15588891", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04408800"),
+        ("8043119", "FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|WRITE_DAC|0x08003000"),
+        ("12628561", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|0x00608400"),
+        ("27530493", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04400400"),
+        ("5829834", "FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x04809800"),
+        ("20080521", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|0x00000400"),
+        ("17052162", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04002000"),
+        ("12650867", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_DAC|0x00600800"),
+        ("21028013", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x00008000"),
+        ("4311382", "FILE_WRITE_ACCESS|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|0x04201200"),
+        ("8304160", "FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|0x08204000"),
+        ("16474401", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|DELETE|READ_CONTROL|WRITE_DAC|0x04404400"),
+        ("30289249", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_DELETE_CHILD|WRITE_OWNER|0x00209200"),
+        ("29270947", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x08200800"),
+        ("16520428", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_EXECUTE|READ_CONTROL|SYNCHRONIZE|0x04400400"),
+        ("24825182", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|READ_CONTROL|0x04805000"),
+        ("23615021", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_EXECUTE|DELETE|ACCESS_SYSTEM_SECURITY|0x00605000"),
+        ("36419934", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|0x04409800"),
+        ("7664553", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04604400"),
+        ("18074210", "GENERIC_ALL|FILE_WRITE_EA|DELETE|READ_CONTROL|WRITE_DAC|0x08004200"),
+        ("10392037", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|DELETE|WRITE_OWNER|SYNCHRONIZE|0x00202000"),
+        ("9606949", "FILE_READ_ACCESS|FILE_READ_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|ACCESS_SYSTEM_SECURITY|0x08606800"),
+        ("28709940", "GENERIC_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|0x08609800"),
+        ("21379256", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00209200"),
+        ("37812718", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|ACCESS_SYSTEM_SECURITY|0x04802600"),
+        ("27507131", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04407000"),
+        ("8241584", "FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|WRITE_DAC|0x08201400"),
+        ("6618519", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|0x04608400"),
+        ("24164113", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x04004000"),
+        ("25893738", "GENERIC_EXECUTE|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x04803600"),
+        ("8196350", "FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|0x08006200"),
+        ("36491353", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|0x04401200"),
+        ("39821214", "GENERIC_EXECUTE|GENERIC_ALL|FILE_APPEND_DATA|FILE_WRITE_EA|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x08801200"),
+        ("31187165", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00007000"),
+        ("8670752", "FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|0x08600600"),
+        ("5040804", "FILE_APPEND_DATA|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04000800"),
+        ("2786462", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|WRITE_OWNER|SYNCHRONIZE|0x00606400"),
+        ("24298739", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|0x04208600"),
+        ("30568073", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x00408000"),
+        ("23115299", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00005200"),
+        ("32202444", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_DELETE_CHILD|0x00202400"),
+        ("34195344", "GENERIC_EXECUTE|GENERIC_ALL|FILE_APPEND_DATA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|0x04005200"),
+        ("4067167", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|0x04007000"),
+        ("26021043", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_DELETE_CHILD|READ_CONTROL|0x04001000"),
+        ("4559614", "FILE_APPEND_DATA|FILE_WRITE_EA|DELETE|WRITE_DAC|SYNCHRONIZE|0x04409600"),
+        ("7442804", "MAXIMUM_ALLOWED|FILE_APPEND_DATA|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04402800"),
+        ("30291266", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|0x00201200"),
+        ("39612646", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|DELETE|ACCESS_SYSTEM_SECURITY|0x08602600"),
+        ("21699742", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x00609600"),
+        ("33604112", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|ACCESS_SYSTEM_SECURITY|0x00604000"),
+        ("9299323", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x08209200"),
+        ("12335381", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|0x00205200"),
+        ("17788063", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04608000"),
+        ("21892080", "GENERIC_EXECUTE|FILE_READ_ATTRIBUTES|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x00802000"),
+        ("26233569", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|0x04203400"),
+        ("7296953", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x04206800"),
+        ("37463238", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04403200"),
+        ("39901962", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08801800"),
+        ("8601187", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|0x08601000"),
+        ("2262373", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|0x00202200"),
+        ("24646140", "GENERIC_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_DAC|0x04606000"),
+        ("30255947", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|0x00205800"),
+        ("15667916", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04607800"),
+        ("19510902", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08400800"),
+        ("33340429", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_EXECUTE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00200400"),
+        ("16770725", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x04600600"),
+        ("12509504", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|0x00409400"),
+        ("11656534", "GENERIC_ALL|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00606400"),
+        ("3295954", "MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x00205800"),
+        ("31656926", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00606800"),
+        ("21966911", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00806800"),
+        ("18463697", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|READ_CONTROL|WRITE_DAC|0x08403600"),
+        ("31794419", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00604400"),
+        ("15773157", "GENERIC_ALL|FILE_GENERIC_WRITE|FILE_READ_ACCESS|FILE_DELETE_CHILD|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04603000"),
+        ("14953613", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|DELETE|WRITE_DAC|SYNCHRONIZE|0x04803600"),
+        ("38821520", "GENERIC_EXECUTE|GENERIC_ALL|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|READ_CONTROL|0x08801400"),
+        ("35556585", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04406400"),
+        ("15765390", "GENERIC_ALL|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04605200"),
+        ("2437799", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|0x00407600"),
+        ("18765211", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_EA|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x08605200"),
+        ("14778187", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x04608000"),
+        ("14260750", "GENERIC_ALL|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|0x04200600"),
+        ("36304114", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|0x04204000"),
+        ("26218978", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|0x04208800"),
+        ("6926301", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|0x04806200"),
+        ("27948522", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04808400"),
+        ("3566531", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00406400"),
+        ("34312388", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|0x04202200"),
+        ("10969230", "GENERIC_ALL|FILE_WRITE_EA|FILE_EXECUTE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x00809200"),
+        ("2402114", "MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|0x00402000"),
+        ("29789752", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08609600"),
+        ("13246835", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00206800"),
+        ("37096975", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x04006800"),
+        ("13253238", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00203200"),
+        ("34237928", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|0x04207800"),
+        ("20560636", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x00400600"),
+        ("25092501", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x04002400"),
+        ("15987514", "GENERIC_ALL|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04807400"),
+        ("14128068", "GENERIC_ALL|FILE_READ_EA|FILE_EXECUTE|FILE_DELETE_CHILD|READ_CONTROL|SYNCHRONIZE|0x04008000"),
+        ("20196758", "GENERIC_EXECUTE|FILE_READ_EA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|0x00006600"),
+        ("5305066", "FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04205000"),
+        ("3815185", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|ACCESS_SYSTEM_SECURITY|0x00805000"),
+        ("22461251", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|READ_CONTROL|WRITE_DAC|0x00401200"),
+        ("38738485", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|0x08608400"),
+        ("14454548", "GENERIC_ALL|FILE_READ_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|0x04404400"),
+        ("28199887", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|0x08009800"),
+        ("23108723", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00008600"),
+        ("4193063", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|SYNCHRONIZE|0x04003000"),
+        ("9696164", "FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x08606000"),
+        ("8995848", "FILE_READ_EA|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|SYNCHRONIZE|0x08805800"),
+        ("9207571", "FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|ACCESS_SYSTEM_SECURITY|0x08207400"),
+        ("35937039", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04807000"),
+        ("36566501", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x04406400"),
+        ("25023666", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x04003600"),
+        ("16405405", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|0x04405400"),
+        ("12402177", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|0x00402000"),
+        ("29689303", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x08609200"),
+        ("8709793", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|0x08609600"),
+        ("4350552", "FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|0x04200400"),
+        ("16300342", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|0x04200200"),
+        ("34050545", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|0x04000400"),
+        ("11280559", "GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x00200400"),
+        ("31012759", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|ACCESS_SYSTEM_SECURITY|0x00002600"),
+        ("11134972", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00004800"),
+        ("8361198", "FILE_READ_EA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x08201000"),
+        ("17689023", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_EXECUTE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x04609000"),
+        ("27567931", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04407800"),
+        ("37402785", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|ACCESS_SYSTEM_SECURITY|0x04402600"),
+        ("18332095", "GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|0x08202000"),
+        ("25615454", "GENERIC_EXECUTE|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|ACCESS_SYSTEM_SECURITY|0x04605400"),
+        ("10458373", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|0x00408200"),
+        ("13079521", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00009400"),
+        ("19933285", "GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08803200"),
+        ("25834829", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_READ_EA|FILE_EXECUTE|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x04804800"),
+        ("24391731", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|0x04201600"),
+        ("31536025", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00406000"),
+        ("19487311", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x08407200"),
+        ("22346790", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|0x00206600"),
+        ("4383866", "FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|WRITE_OWNER|SYNCHRONIZE|0x04203800"),
+        ("17516571", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04406400"),
+        ("19580197", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08400000"),
+        ("10162851", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x00002800"),
+        ("5653261", "FILE_READ_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04603200"),
+        ("3374517", "MAXIMUM_ALLOWED|FILE_GENERIC_WRITE|FILE_READ_ACCESS|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00204400"),
+        ("3083389", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x00003200"),
+        ("27793151", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04603000"),
+        ("36209549", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|0x04209400"),
+        ("22088519", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|0x00008400"),
+        ("2123164", "MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|0x00003000"),
+        ("36781735", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|0x04601600"),
+        ("30289809", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|WRITE_OWNER|0x00209800"),
+        ("34894928", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|0x04804800"),
+        ("30682055", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|WRITE_OWNER|0x00602000"),
+        ("21807269", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_READ_EA|FILE_EXECUTE|FILE_DELETE_CHILD|ACCESS_SYSTEM_SECURITY|0x00807200"),
+        ("32181531", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|0x00001400"),
+        ("29352622", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_EXECUTE|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08202600"),
+        ("35901287", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04801200"),
+        ("22456833", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|DELETE|WRITE_DAC|0x00406800"),
+        ("7588452", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04408400"),
+        ("8588345", "FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|0x08408200"),
+        ("9619786", "FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|ACCESS_SYSTEM_SECURITY|0x08609600"),
+        ("16825000", "GENERIC_ALL|MAXIMUM_ALLOWED|READ_CONTROL|0x04805000"),
+        ("39185252", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08005200"),
+        ("39166744", "GENERIC_EXECUTE|GENERIC_ALL|FILE_APPEND_DATA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08006600"),
+        ("33617135", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|ACCESS_SYSTEM_SECURITY|0x00607000"),
+        ("10525468", "GENERIC_ALL|FILE_READ_EA|FILE_EXECUTE|FILE_DELETE_CHILD|READ_CONTROL|SYNCHRONIZE|0x00405400"),
+        ("2554077", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_DAC|SYNCHRONIZE|0x00404000"),
+        ("2498202", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|DELETE|WRITE_OWNER|0x00408200"),
+        ("7673700", "MAXIMUM_ALLOWED|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04603600"),
+        ("33776663", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00606600"),
+        ("12164033", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x00004000"),
+        ("15540617", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04400600"),
+        ("16200457", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|0x04200400"),
+        ("33658113", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00608000"),
+        ("33148565", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00008400"),
+        ("21008765", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|ACCESS_SYSTEM_SECURITY|0x00008600"),
+        ("34457064", "GENERIC_EXECUTE|GENERIC_ALL|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_DAC|0x04407000"),
+        ("12158916", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|0x00008800"),
+        ("13931464", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00801400"),
+        ("2482977", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|0x00402800"),
+        ("16055089", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_READ_ATTRIBUTES|DELETE|WRITE_DAC|0x04005000"),
+        ("39527417", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08407400"),
+        ("30683595", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|0x00603400"),
+        ("22022381", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|READ_CONTROL|0x00002200"),
+        ("30601246", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|0x00601200"),
+        ("34182109", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|0x04002000"),
+        ("3705429", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_EXECUTE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00605400"),
+        ("6419279", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|0x04409200"),
+        ("25789562", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04609400"),
+        ("20546406", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_APPEND_DATA|WRITE_DAC|SYNCHRONIZE|0x00406400"),
+        ("15404731", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|ACCESS_SYSTEM_SECURITY|0x04404600"),
+        ("28187292", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|0x08007200"),
+        ("10907100", "GENERIC_ALL|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|0x00807000"),
+        ("36854124", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|0x04804000"),
+        ("17787029", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_EXECUTE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04607000"),
+        ("15598328", "GENERIC_ALL|FILE_READ_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04408200"),
+        ("26702259", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_DELETE_CHILD|SYNCHRONIZE|0x04602200"),
+        ("38071379", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|0x08001200"),
+        ("5561318", "FILE_READ_EA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04401200"),
+        ("12748325", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|0x00608200"),
+        ("33950551", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00800400"),
+        ("9665361", "FILE_READ_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x08605200"),
+        ("4261726", "FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|0x04201600"),
+        ("39343318", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_EA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08203200"),
+        ("25088295", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x04008200"),
+        ("21707115", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00607000"),
+        ("23446642", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_DELETE_CHILD|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00406600"),
+        ("20929676", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|READ_CONTROL|SYNCHRONIZE|0x00809600"),
+        ("26910460", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|SYNCHRONIZE|0x04800400"),
+        ("10047847", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|WRITE_DAC|0x00007800"),
+        ("19778550", "GENERIC_ALL|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08608400"),
+        ("18291016", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|DELETE|WRITE_OWNER|0x08201000"),
+        ("18704174", "GENERIC_ALL|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|0x08604000"),
+        ("34105553", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|0x04005400"),
+        ("30012419", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|DELETE|0x00002400"),
+        ("4103707", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|0x04003600"),
+        ("6582335", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|0x04402200"),
+        ("22336307", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|0x00206200"),
+        ("16028235", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|READ_CONTROL|0x04008200"),
+        ("23852461", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00802400"),
+        ("32714592", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|0x00604400"),
+        ("38985456", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|WRITE_OWNER|SYNCHRONIZE|0x08805400"),
+        ("31155220", "GENERIC_EXECUTE|GENERIC_ALL|FILE_EXECUTE|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00005200"),
+        ("20262682", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_READ_ATTRIBUTES|READ_CONTROL|WRITE_DAC|0x00202600"),
+        ("7408579", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|ACCESS_SYSTEM_SECURITY|0x04408400"),
+        ("9683451", "FILE_READ_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x08603400"),
+        ("7597004", "MAXIMUM_ALLOWED|FILE_APPEND_DATA|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04407000"),
+        ("30117151", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|0x00007000"),
+        ("12746616", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|WRITE_DAC|SYNCHRONIZE|0x00606600"),
+        ("3746376", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00606200"),
+        ("17887955", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x04807800"),
+        ("8186080", "FILE_READ_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|0x08006000"),
+        ("24274711", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|0x04204600"),
+        ("27516245", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04406200"),
+        ("39442717", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x08402600"),
+        ("22404138", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|0x00404000"),
+        ("5079713", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04009600"),
+        ("2974767", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x00804600"),
+        ("10503430", "GENERIC_ALL|FILE_WRITE_EA|FILE_EXECUTE|SYNCHRONIZE|0x00403400"),
+        ("34179805", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x04009800"),
+        ("11996787", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00806600"),
+        ("20928273", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|READ_CONTROL|SYNCHRONIZE|0x00808200"),
+        ("16832757", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|0x04802600"),
+        ("4731255", "FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|READ_CONTROL|SYNCHRONIZE|0x04601200"),
+        ("4268123", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|0x04208000"),
+        ("17898632", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x04808600"),
+        ("35292871", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x04202800"),
+        ("17755780", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04605600"),
+        ("20168899", "GENERIC_EXECUTE|FILE_GENERIC_READ|FILE_WRITE_EA|WRITE_DAC|0x00008800"),
+        ("16558728", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|0x04408600"),
+        ("2743180", "MAXIMUM_ALLOWED|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|0x00603000"),
+        ("19869259", "GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_DELETE_CHILD|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x08809200"),
+        ("4335963", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|0x04205800"),
+        ("34565139", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x04405000"),
+        ("2493604", "MAXIMUM_ALLOWED|FILE_APPEND_DATA|DELETE|WRITE_OWNER|0x00403600"),
+        ("20189327", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|0x00009200"),
+        ("33198394", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00008200"),
+        ("20437516", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|0x00407400"),
+        ("14541506", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|0x04401400"),
+        ("15655029", "GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_EXECUTE|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04605000"),
+        ("13125697", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00005600"),
+        ("21833035", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x00803000"),
+        ("25001182", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|ACCESS_SYSTEM_SECURITY|0x04001000"),
+        ("39149998", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_EA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08009800"),
+        ("38031061", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|READ_CONTROL|0x08001000"),
+        ("2563932", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x00403800"),
+        ("5396260", "FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04206200"),
+        ("3151111", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00001000"),
+        ("22535461", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|READ_CONTROL|SYNCHRONIZE|0x00405400"),
+        ("29594170", "GENERIC_EXECUTE|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08404000"),
+        ("23539293", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00409200"),
+        ("31120685", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00000600"),
+        ("31680783", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x00600600"),
+        ("35054480", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ATTRIBUTES|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04004400"),
+        ("6414964", "MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|0x04404800"),
+        ("8120485", "FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|0x08000400"),
+        ("19574302", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08404200"),
+        ("30460168", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|0x00400000"),
+        ("21879741", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00809600"),
+        ("38183607", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|WRITE_OWNER|SYNCHRONIZE|0x08003600"),
+        ("32107414", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|SYNCHRONIZE|0x00007400"),
+        ("32465951", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|0x00405800"),
+        ("20672792", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|0x00602600"),
+        ("17387336", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04207200"),
+        ("35964427", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04804400"),
+        ("2272422", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_EXECUTE|DELETE|READ_CONTROL|WRITE_DAC|0x00202400"),
+        ("11479902", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00409800"),
+        ("5929678", "FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04809600"),
+        ("17161946", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04001800"),
+        ("33517312", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00407200"),
+        ("9100291", "FILE_READ_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08000200"),
+        ("14845729", "GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|WRITE_DAC|0x04805600"),
+        ("22849005", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|WRITE_DAC|0x00809000"),
+        ("13764626", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00604600"),
+        ("5216697", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|ACCESS_SYSTEM_SECURITY|0x04206600"),
+        ("3801323", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|ACCESS_SYSTEM_SECURITY|0x00801200"),
+        ("19984777", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08804600"),
+        ("8649508", "FILE_READ_EA|FILE_WRITE_ATTRIBUTES|WRITE_DAC|0x08609400"),
+        ("5048085", "FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04008000"),
+        ("3028956", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x00008800"),
+        ("39125504", "GENERIC_EXECUTE|GENERIC_ALL|FILE_APPEND_DATA|FILE_WRITE_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08005400"),
+        ("15152362", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04002200"),
+        ("12239461", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|READ_CONTROL|0x00209400"),
+        ("18812782", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|0x08802600"),
+        ("31664014", "GENERIC_EXECUTE|GENERIC_ALL|FILE_APPEND_DATA|FILE_WRITE_EA|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00604000"),
+        ("16078741", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|0x04008600"),
+        ("31017499", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|ACCESS_SYSTEM_SECURITY|0x00007400"),
+        ("27375117", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_GENERIC_WRITE|FILE_READ_ACCESS|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04205000"),
+        ("10066681", "GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_ATTRIBUTES|READ_CONTROL|WRITE_DAC|0x00006600"),
+        ("30945439", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|WRITE_DAC|SYNCHRONIZE|0x00805400"),
+        ("15802886", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|ACCESS_SYSTEM_SECURITY|0x04802800"),
+        ("12031554", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|0x00001400"),
+        ("4410539", "FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|0x04400400"),
+        ("10138643", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_DELETE_CHILD|DELETE|READ_CONTROL|SYNCHRONIZE|0x00008600"),
+        ("39177180", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08007000"),
+        ("12301720", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|0x00201600"),
+        ("31731457", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00601400"),
+        ("8144251", "FILE_READ_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|WRITE_DAC|SYNCHRONIZE|0x08004200"),
+        ("11398250", "GENERIC_ALL|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00208200"),
+        ("33744129", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00604000"),
+        ("2209916", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|0x00209800"),
+        ("27787585", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04607400"),
+        ("37636680", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x04606600"),
+        ("22407240", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_DELETE_CHILD|0x00407200"),
+        ("22043832", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|WRITE_DAC|0x00003800"),
+        ("19626068", "GENERIC_ALL|FILE_READ_EA|FILE_EXECUTE|FILE_DELETE_CHILD|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x08606000"),
+        ("4969097", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x04809000"),
+        ("16435998", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|0x04405800"),
+        ("15891955", "GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x04801800"),
+        ("34154457", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|WRITE_DAC|SYNCHRONIZE|0x04004400"),
+        ("28065800", "GENERIC_EXECUTE|READ_CONTROL|WRITE_DAC|0x08005800"),
+        ("31497464", "GENERIC_EXECUTE|GENERIC_ALL|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x00407400"),
+        ("36418845", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|DELETE|0x04408800"),
+        ("15693169", "GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x04603000"),
+        ("17583203", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04403200"),
+        ("39128454", "GENERIC_EXECUTE|GENERIC_ALL|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08008400"),
+        ("26090024", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_EXECUTE|DELETE|WRITE_OWNER|0x04000000"),
+        ("28791074", "GENERIC_EXECUTE|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|SYNCHRONIZE|0x08601000"),
+        ("5303555", "FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04203400"),
+        ("9259836", "FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x08209800"),
+        ("27095207", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x04005200"),
+        ("27148906", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04008800"),
+        ("37845075", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04805000"),
+        ("2153967", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|0x00003800"),
+        ("4030356", "FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|0x04000200"),
+        ("15470626", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|DELETE|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04400600"),
+        ("30109247", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|SYNCHRONIZE|0x00009200"),
+        ("5479486", "FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04409400"),
+        ("3448230", "MAXIMUM_ALLOWED|FILE_WRITE_EA|FILE_EXECUTE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00408200"),
+        ("33558484", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00408400"),
+        ("18941918", "GENERIC_ALL|FILE_READ_EA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|0x08801800"),
+        ("28398152", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|0x08208000"),
+        ("22561169", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x00401000"),
+        ("13086727", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x00006600"),
+        ("22140974", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|0x00000800"),
+        ("22295081", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_ATTRIBUTES|DELETE|WRITE_OWNER|0x00205000"),
+        ("7970204", "MAXIMUM_ALLOWED|FILE_APPEND_DATA|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04800200"),
+        ("10417472", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|0x00407400"),
+        ("19986911", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08806800"),
+        ("24346545", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|0x04206400"),
+        ("11778548", "GENERIC_ALL|FILE_READ_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00608400"),
+        ("35545461", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04405400"),
+        ("13459647", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00409600"),
+        ("3260217", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00200200"),
+        ("13038333", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x00008200"),
+        ("9830318", "FILE_READ_EA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x08800200"),
+        ("29283908", "GENERIC_EXECUTE|FILE_READ_EA|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x08203800"),
+        ("36717844", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_DELETE_CHILD|DELETE|SYNCHRONIZE|0x04607800"),
+        ("14527495", "GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|0x04407400"),
+        ("22144218", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_WRITE_EA|WRITE_DAC|SYNCHRONIZE|0x00004200"),
+        ("2711681", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_ATTRIBUTES|DELETE|SYNCHRONIZE|0x00601600"),
+        ("10707582", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|0x00607400"),
+        ("28265584", "GENERIC_EXECUTE|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|0x08205400"),
+        ("39346158", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_EA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08206000"),
+        ("7406004", "MAXIMUM_ALLOWED|FILE_APPEND_DATA|ACCESS_SYSTEM_SECURITY|0x04406000"),
+        ("5217414", "FILE_APPEND_DATA|FILE_WRITE_EA|DELETE|ACCESS_SYSTEM_SECURITY|0x04207400"),
+        ("5445098", "FILE_READ_EA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04405000"),
+        ("4890912", "FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|0x04800800"),
+        ("7679812", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|DELETE|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04609800"),
+        ("20262134", "GENERIC_EXECUTE|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|0x00202000"),
+        ("24760521", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x04600400"),
+        ("33176619", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00006600"),
+        ("30452162", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|0x00402000"),
+        ("25361558", "GENERIC_EXECUTE|FILE_READ_EA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04201400"),
+        ("6693241", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|0x04603200"),
+        ("21862836", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00802800"),
+        ("9813294", "FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|ACCESS_SYSTEM_SECURITY|0x08803200"),
+        ("4448145", "FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_DAC|0x04408000"),
+        ("29266640", "GENERIC_EXECUTE|FILE_DELETE_CHILD|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x08206600"),
+        ("3217695", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|ACCESS_SYSTEM_SECURITY|0x00207600"),
+        ("12400648", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_DELETE_CHILD|0x00400600"),
+        ("19233152", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x08203000"),
+        ("35402440", "GENERIC_EXECUTE|GENERIC_ALL|FILE_DELETE_CHILD|ACCESS_SYSTEM_SECURITY|0x04402400"),
+        ("25394447", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04204400"),
+        ("33713867", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00603800"),
+        ("4916038", "FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|DELETE|SYNCHRONIZE|0x04806000"),
+        ("4575314", "FILE_APPEND_DATA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x04405200"),
+        ("15655698", "GENERIC_ALL|FILE_READ_EA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04605600"),
+        ("18270450", "GENERIC_ALL|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|READ_CONTROL|WRITE_DAC|0x08200400"),
+        ("31327776", "GENERIC_EXECUTE|GENERIC_ALL|FILE_GENERIC_WRITE|FILE_EXECUTE|FILE_DELETE_CHILD|ACCESS_SYSTEM_SECURITY|0x00207600"),
+        ("27521853", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04401800"),
+        ("5037025", "FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x04007000"),
+        ("31269696", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00209600"),
+        ("3718492", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00608400"),
+        ("10183534", "GENERIC_ALL|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|0x00003400"),
+        ("16627372", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|0x04607200"),
+        ("6400282", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_READ_ATTRIBUTES|0x04400200"),
+        ("4536729", "FILE_READ_ACCESS|FILE_READ_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|0x04406600"),
+        ("28883975", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|0x08803800"),
+        ("39346925", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08206800"),
+        ("23086779", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x00006600"),
+        ("20805776", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|0x00805600"),
+        ("11051033", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00001000"),
+        ("36070970", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|0x04000800"),
+        ("28530515", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|0x08400400"),
+        ("15555851", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04405800"),
+        ("23369064", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00209000"),
+        ("9601298", "FILE_READ_EA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|ACCESS_SYSTEM_SECURITY|0x08601200"),
+        ("39024722", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x08004600"),
+        ("38595514", "GENERIC_EXECUTE|GENERIC_ALL|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|0x08405400"),
+        ("34150952", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|0x04000800"),
+        ("5285017", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x04205000"),
+        ("13279930", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00209800"),
+        ("38131421", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_EXECUTE|DELETE|READ_CONTROL|SYNCHRONIZE|0x08001400"),
+        ("32670308", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|0x00600200"),
+        ("9505905", "FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08405800"),
+        ("29274091", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x08204000"),
+        ("31136694", "GENERIC_EXECUTE|GENERIC_ALL|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00006600"),
+        ("21294919", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x00204800"),
+        ("28913534", "GENERIC_EXECUTE|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|0x08803400"),
+        ("19017254", "GENERIC_ALL|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|ACCESS_SYSTEM_SECURITY|0x08007200"),
+        ("39669654", "GENERIC_EXECUTE|GENERIC_ALL|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x08609600"),
+        ("36111108", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|0x04001000"),
+        ("9233746", "FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x08203600"),
+        ("4685979", "FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|0x04605800"),
+        ("34666267", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|READ_CONTROL|WRITE_DAC|0x04606200"),
+        ("11365639", "GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00205600"),
+        ("37207041", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_DELETE_CHILD|ACCESS_SYSTEM_SECURITY|0x04207000"),
+        ("9362599", "FILE_GENERIC_READ|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x08202400"),
+        ("29328318", "GENERIC_EXECUTE|FILE_READ_EA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08208200"),
+        ("13222876", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x00202800"),
+        ("33769216", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00609200"),
+        ("9926974", "FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08806800"),
+        ("30879508", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_EA|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|0x00809400"),
+        ("26019149", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|0x04009000"),
+        ("26930897", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|0x04800800"),
+        ("37280639", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x04200600"),
+        ("21092595", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x00002400"),
+        ("3859834", "MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00809800"),
+        ("12917017", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|DELETE|SYNCHRONIZE|0x00807000"),
+        ("38514506", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|0x08404400"),
+        ("8675026", "FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|DELETE|READ_CONTROL|WRITE_DAC|0x08605000"),
+        ("13579957", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_GENERIC_WRITE|FILE_READ_ACCESS|FILE_DELETE_CHILD|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00409800"),
+        ("2681912", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|0x00601800"),
+        ("30048757", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_DAC|0x00008600"),
+        ("9541013", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08401000"),
+        ("10599817", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|DELETE|WRITE_OWNER|SYNCHRONIZE|0x00409800"),
+        ("7845927", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04805800"),
+        ("2775688", "MAXIMUM_ALLOWED|FILE_READ_EA|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x00605600"),
+        ("6176175", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x04006000"),
+        ("39572543", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08402400"),
+        ("19651917", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x08601800"),
+        ("26381037", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|WRITE_OWNER|SYNCHRONIZE|0x04201000"),
+        ("29624267", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x08604200"),
+        ("30651240", "GENERIC_EXECUTE|GENERIC_ALL|FILE_DELETE_CHILD|DELETE|WRITE_DAC|0x00601200"),
+        ("10169812", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_WRITE_EA|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x00009800"),
+        ("22596853", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|SYNCHRONIZE|0x00406800"),
+        ("31362570", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00202400"),
+        ("9864586", "FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x08804400"),
+        ("23427768", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x00407600"),
+        ("3502475", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00402400"),
+        ("16353008", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_EA|DELETE|WRITE_DAC|SYNCHRONIZE|0x04203000"),
+        ("20409061", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|0x00409000"),
+        ("30875203", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|DELETE|READ_CONTROL|WRITE_DAC|0x00805200"),
+        ("28211264", "GENERIC_EXECUTE|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|0x08201200"),
+        ("4234146", "FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|0x04204000"),
+        ("36500616", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|SYNCHRONIZE|0x04400600"),
+        ("13199980", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00009800"),
+        ("24923338", "GENERIC_EXECUTE|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|0x04803200"),
+        ("15222082", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_READ_ATTRIBUTES|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x04202000"),
+        ("10696971", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|0x00606800"),
+        ("24284183", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|0x04204000"),
+        ("26337162", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|0x04207000"),
+        ("7010065", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|ACCESS_SYSTEM_SECURITY|0x04000000"),
+        ("2140605", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|WRITE_DAC|SYNCHRONIZE|0x00000600"),
+        ("7484287", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x04404200"),
+        ("25576824", "GENERIC_EXECUTE|FILE_APPEND_DATA|FILE_EXECUTE|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04406800"),
+        ("39851079", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x08801000"),
+        ("19849034", "GENERIC_ALL|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x08809000"),
+        ("7179854", "MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04009800"),
+        ("15387950", "GENERIC_ALL|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04207800"),
+        ("6095558", "MAXIMUM_ALLOWED|FILE_READ_EA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|0x04005400"),
+        ("39553710", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08403600"),
+        ("7262064", "MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04202000"),
+        ("35214331", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|ACCESS_SYSTEM_SECURITY|0x04204200"),
+        ("20705283", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_READ_ATTRIBUTES|SYNCHRONIZE|0x00605200"),
+        ("30865702", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|0x00805600"),
+        ("27140471", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04000400"),
+        ("36401593", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|0x04401400"),
+        ("6873658", "MAXIMUM_ALLOWED|FILE_READ_EA|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|READ_CONTROL|WRITE_DAC|0x04803600"),
+        ("25407232", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|ACCESS_SYSTEM_SECURITY|0x04407200"),
+        ("19433400", "GENERIC_ALL|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x08403400"),
+        ("17831620", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_EXECUTE|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x04801600"),
+        ("26404119", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|0x04404000"),
+        ("16063908", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|0x04003800"),
+        ("28053858", "GENERIC_EXECUTE|FILE_READ_EA|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|WRITE_DAC|0x08003800"),
+        ("17309386", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04209200"),
+        ("8710049", "FILE_READ_ACCESS|FILE_READ_EA|FILE_DELETE_CHILD|DELETE|SYNCHRONIZE|0x08600000"),
+        ("25801553", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|ACCESS_SYSTEM_SECURITY|0x04801400"),
+        ("32953621", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_EXECUTE|DELETE|WRITE_DAC|SYNCHRONIZE|0x00803600"),
+        ("2453348", "MAXIMUM_ALLOWED|FILE_READ_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|0x00403200"),
+        ("24901480", "GENERIC_EXECUTE|FILE_READ_ATTRIBUTES|SYNCHRONIZE|0x04801400"),
+        ("27343677", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04203600"),
+        ("3018765", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|ACCESS_SYSTEM_SECURITY|0x00008600"),
+        ("35613754", "GENERIC_EXECUTE|GENERIC_ALL|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|ACCESS_SYSTEM_SECURITY|0x04603600"),
+        ("3492732", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x00402600"),
+        ("26251016", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|DELETE|WRITE_DAC|0x04201000"),
+        ("30924460", "GENERIC_EXECUTE|GENERIC_ALL|FILE_EXECUTE|FILE_DELETE_CHILD|READ_CONTROL|SYNCHRONIZE|0x00804400"),
+        ("14027140", "GENERIC_ALL|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|0x04007000"),
+        ("5845572", "FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04805400"),
+        ("6112181", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|0x04002000"),
+        ("26822851", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|READ_CONTROL|0x04802800"),
+        ("20862628", "GENERIC_EXECUTE|FILE_READ_EA|FILE_EXECUTE|READ_CONTROL|WRITE_DAC|0x00802600"),
+        ("31629416", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x00609400"),
+        ("8543650", "FILE_WRITE_EA|FILE_DELETE_CHILD|WRITE_DAC|SYNCHRONIZE|0x08403600"),
+        ("34408736", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|0x04408600"),
+        ("16421101", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ATTRIBUTES|READ_CONTROL|0x04401000"),
+        ("9502594", "FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08402400"),
+        ("6796194", "MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|0x04606000"),
+        ("30887945", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|0x00807800"),
+        ("22409295", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|0x00409200"),
+        ("9072539", "FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x08002400"),
+        ("10662783", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|0x00602600"),
+        ("8452645", "FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|DELETE|WRITE_DAC|0x08402600"),
+        ("11384196", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00204000"),
+        ("29058513", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x08008400"),
+        ("24329510", "GENERIC_EXECUTE|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|0x04209400"),
+        ("35038590", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x04008400"),
+        ("37837078", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x04807000"),
+        ("16731942", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|0x04601800"),
+        ("26659176", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|0x04609000"),
+        ("5798353", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04608200"),
+        ("32892631", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|DELETE|WRITE_OWNER|0x00802600"),
+        ("27544051", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04404000"),
+        ("29599065", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08409000"),
+        ("5200988", "FILE_READ_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|ACCESS_SYSTEM_SECURITY|0x04200800"),
+        ("35885548", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x04805400"),
+        ("16664739", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|0x04604600"),
+        ("29748830", "GENERIC_EXECUTE|FILE_WRITE_EA|FILE_EXECUTE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08608800"),
+        ("33571061", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00401000"),
+        ("36647221", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_EXECUTE|WRITE_DAC|0x04607200"),
+        ("4198007", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|DELETE|WRITE_OWNER|SYNCHRONIZE|0x04008000"),
+        ("21810296", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|ACCESS_SYSTEM_SECURITY|0x00800200"),
+        ("38292556", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|0x08202400"),
+        ("13513376", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00403200"),
+        ("36360647", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x04200600"),
+        ("25410510", "GENERIC_EXECUTE|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|ACCESS_SYSTEM_SECURITY|0x04400400"),
+        ("6839211", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|DELETE|READ_CONTROL|0x04809200"),
+        ("14767866", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x04607800"),
+        ("19358012", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_WRITE_EA|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08208000"),
+        ("21723291", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00603200"),
+        ("33649934", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00609800"),
+        ("23281754", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x00201600"),
+        ("11559711", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00409600"),
+        ("2953044", "MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_DELETE_CHILD|DELETE|WRITE_DAC|SYNCHRONIZE|0x00803000"),
+        ("20833170", "GENERIC_EXECUTE|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|0x00803000"),
+        ("17250134", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04200000"),
+        ("8702256", "FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|SYNCHRONIZE|0x08602200"),
+        ("32151682", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_READ_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|0x00001600"),
+        ("35925748", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04805600"),
+        ("31798424", "GENERIC_EXECUTE|GENERIC_ALL|FILE_APPEND_DATA|FILE_EXECUTE|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00608400"),
+        ("5268453", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04208400"),
+        ("3209655", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|ACCESS_SYSTEM_SECURITY|0x00209600"),
+        ("30644014", "GENERIC_EXECUTE|GENERIC_ALL|FILE_APPEND_DATA|FILE_WRITE_EA|WRITE_DAC|0x00604000"),
+        ("13469977", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00409800"),
+        ("19334616", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08204600"),
+        ("19220545", "GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x08200400"),
+        ("34710157", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|0x04600000"),
+        ("11850938", "GENERIC_ALL|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00800800"),
+        ("4664958", "FILE_READ_EA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|0x04604800"),
+        ("34909352", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|0x04809200"),
+        ("23678191", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00608000"),
+        ("30185373", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|0x00005200"),
+        ("10905634", "GENERIC_ALL|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|SYNCHRONIZE|0x00805600"),
+        ("32818732", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|0x00808600"),
+        ("5728537", "FILE_GENERIC_WRITE|FILE_READ_ACCESS|FILE_EXECUTE|ACCESS_SYSTEM_SECURITY|0x04608400"),
+        ("7031480", "MAXIMUM_ALLOWED|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x04001400"),
+        ("8953349", "FILE_READ_ACCESS|FILE_READ_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|0x08803200"),
+        ("2337809", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|DELETE|READ_CONTROL|SYNCHRONIZE|0x00207800"),
+        ("20089077", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|WRITE_OWNER|0x00009000"),
+        ("19973241", "GENERIC_ALL|FILE_READ_ACCESS|FILE_DELETE_CHILD|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08803200"),
+        ("24031677", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|READ_CONTROL|0x04001600"),
+        ("33312287", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00202200"),
+        ("32153096", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|0x00003000"),
+        ("30718461", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|SYNCHRONIZE|0x00608400"),
+        ("31137864", "GENERIC_EXECUTE|GENERIC_ALL|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00007800"),
+        ("39219872", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|ACCESS_SYSTEM_SECURITY|0x08209800"),
+        ("30740630", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_EA|FILE_EXECUTE|WRITE_DAC|SYNCHRONIZE|0x00600600"),
+        ("18524157", "GENERIC_ALL|FILE_GENERIC_WRITE|FILE_READ_ACCESS|FILE_DELETE_CHILD|0x08404000"),
+        ("25090040", "GENERIC_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x04000000"),
+        ("33156246", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00006200"),
+        ("27597835", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04407800"),
+        ("39996989", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08806800"),
+        ("7537232", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04407200"),
+        ("11231864", "GENERIC_ALL|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x00201800"),
+        ("8288308", "FILE_READ_EA|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|0x08208200"),
+        ("37712842", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_DELETE_CHILD|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04602800"),
+        ("29659899", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x08609800"),
+        ("11149905", "GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00009800"),
+        ("2839439", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|DELETE|READ_CONTROL|0x00809400"),
+        ("13418389", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|ACCESS_SYSTEM_SECURITY|0x00408200"),
+        ("37386983", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04206800"),
+        ("11460444", "GENERIC_ALL|FILE_APPEND_DATA|FILE_DELETE_CHILD|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00400400"),
+        ("26389963", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|0x04209800"),
+        ("31230054", "GENERIC_EXECUTE|GENERIC_ALL|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x00200000"),
+        ("29917300", "GENERIC_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08807200"),
+        ("39839899", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x08809800"),
+        ("2043762", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_DAC|0x00003600"),
+        ("5241098", "FILE_READ_EA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04201000"),
+        ("17009891", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|ACCESS_SYSTEM_SECURITY|0x04009800"),
+        ("12007762", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|0x00007600"),
+        ("35955770", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04805600"),
+        ("27693969", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x04603800"),
+        ("36193376", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|0x04003200"),
+        ("2213679", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|0x00203600"),
+        ("8637229", "FILE_READ_ACCESS|FILE_READ_EA|FILE_EXECUTE|DELETE|READ_CONTROL|0x08607200"),
+        ("9256538", "FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x08206400"),
+        ("22224614", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|READ_CONTROL|0x00204600"),
+        ("22061636", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|READ_CONTROL|WRITE_DAC|0x00001600"),
+        ("19253887", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x08203800"),
+        ("21427225", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x00407200"),
+        ("19762241", "GENERIC_ALL|FILE_READ_ACCESS|FILE_DELETE_CHILD|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08602200"),
+        ("8969914", "FILE_APPEND_DATA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x08809800"),
+        ("39701495", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08601400"),
+        ("11014234", "GENERIC_ALL|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|DELETE|ACCESS_SYSTEM_SECURITY|0x00004200"),
+        ("20124733", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|0x00004600"),
+        ("10841199", "GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|WRITE_DAC|0x00801000"),
+        ("24858608", "GENERIC_EXECUTE|FILE_READ_EA|DELETE|WRITE_DAC|0x04808600"),
+        ("39529397", "GENERIC_EXECUTE|GENERIC_ALL|FILE_GENERIC_WRITE|FILE_READ_ACCESS|FILE_READ_ATTRIBUTES|ACCESS_SYSTEM_SECURITY|0x08409200"),
+        ("9448269", "FILE_READ_ACCESS|FILE_READ_EA|FILE_EXECUTE|FILE_DELETE_CHILD|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x08408200"),
+        ("9714906", "FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08604800"),
+        ("2375427", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x00205400"),
+        ("32453544", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|0x00403400"),
+        ("4361808", "FILE_READ_EA|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x04201800"),
+        ("6619825", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|DELETE|0x04609800"),
+        ("22391278", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|SYNCHRONIZE|0x00201200"),
+        ("11667231", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00607200"),
+        ("6331997", "MAXIMUM_ALLOWED|FILE_GENERIC_WRITE|FILE_READ_ACCESS|FILE_READ_ATTRIBUTES|DELETE|0x04201800"),
+        ("21887038", "GENERIC_EXECUTE|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x00807000"),
+        ("15365706", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04205600"),
+        ("5219098", "FILE_READ_EA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|ACCESS_SYSTEM_SECURITY|0x04209000"),
+        ("24726081", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_READ_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|0x04606000"),
+        ("3100296", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00000200"),
+        ("22866397", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|0x00806200"),
+        ("35233731", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x04203600"),
+        ("24673573", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|0x04603400"),
+        ("33587031", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00407000"),
+        ("4968661", "FILE_READ_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x04808600"),
+        ("29408361", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|ACCESS_SYSTEM_SECURITY|0x08408200"),
+        ("19742767", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08602600"),
+        ("38231790", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|0x08201600"),
+        ("27015309", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_ATTRIBUTES|DELETE|ACCESS_SYSTEM_SECURITY|0x04005200"),
+        ("22553881", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|0x00403800"),
+        ("7741995", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04601800"),
+        ("14871200", "GENERIC_ALL|DELETE|READ_CONTROL|WRITE_DAC|0x04801200"),
+        ("20912199", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|0x00802000"),
+        ("16066447", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|READ_CONTROL|WRITE_DAC|0x04006400"),
+        ("24546666", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|WRITE_DAC|SYNCHRONIZE|0x04406600"),
+        ("20783266", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|WRITE_OWNER|SYNCHRONIZE|0x00603200"),
+        ("25287431", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x04207400"),
+        ("36266556", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|0x04206400"),
+        ("18969059", "GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_DELETE_CHILD|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x08809000"),
+        ("18956158", "GENERIC_ALL|FILE_READ_EA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|0x08806000"),
+        ("7178402", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04008400"),
+        ("23560181", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00400000"),
+        ("32015256", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|0x00005200"),
+        ("26489886", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|WRITE_OWNER|0x04409800"),
+        ("30613601", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|DELETE|0x00603600"),
+        ("32083695", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|WRITE_OWNER|0x00003600"),
+        ("15595346", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04405200"),
+        ("11509083", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_READ_ATTRIBUTES|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00409000"),
+        ("30389933", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|0x00209800"),
+        ("29880610", "GENERIC_EXECUTE|FILE_WRITE_EA|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x08800600"),
+        ("13251142", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00201000"),
+        ("13729767", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00609600"),
+        ("3893751", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x00803600"),
+        ("19170438", "GENERIC_ALL|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08000400"),
+        ("39954046", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08804000"),
+        ("39876754", "GENERIC_EXECUTE|GENERIC_ALL|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x08806600"),
+        ("5459839", "FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04409800"),
+        ("36656872", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_DAC|0x04606800"),
+        ("30292579", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|0x00202400"),
+        ("3237467", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x00207400"),
+        ("26639487", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|0x04609400"),
+        ("23948453", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00808400"),
+        ("10613201", "GENERIC_ALL|FILE_READ_ACCESS|DELETE|0x00603200"),
+        ("3435270", "MAXIMUM_ALLOWED|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x00405200"),
+        ("33026350", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x00006200"),
+        ("32703590", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|0x00603400"),
+        ("29275555", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x08205400"),
+        ("32628436", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|READ_CONTROL|0x00608400"),
+        ("32656171", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|0x00606000"),
+        ("26904649", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_DELETE_CHILD|SYNCHRONIZE|0x04804600"),
+        ("29156461", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08006400"),
+        ("27540748", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04400600"),
+        ("39434301", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x08404200"),
+        ("17460441", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_DELETE_CHILD|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04400400"),
+        ("32319787", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|0x00209600"),
+        ("9196775", "FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08006600"),
+        ("15418172", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|ACCESS_SYSTEM_SECURITY|0x04408000"),
+        ("7362382", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04202200"),
+        ("26217877", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|0x04207800"),
+        ("22145721", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|0x00005600"),
+        ("9402250", "FILE_WRITE_EA|FILE_DELETE_CHILD|ACCESS_SYSTEM_SECURITY|0x08402200"),
+        ("28011656", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|0x08001600"),
+        ("25517733", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04407600"),
+        ("3551711", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00401600"),
+        ("31490549", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x00400400"),
+        ("37697607", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x04607600"),
+        ("12884619", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|WRITE_OWNER|0x00804600"),
+        ("20728363", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|0x00608200"),
+        ("9994464", "FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08804400"),
+        ("8949382", "FILE_WRITE_ACCESS|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|0x08809200"),
+        ("27903041", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_DELETE_CHILD|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04803000"),
+        ("16223252", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|READ_CONTROL|0x04203200"),
+        ("27543141", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04403000"),
+        ("10056830", "GENERIC_ALL|FILE_WRITE_EA|FILE_EXECUTE|DELETE|WRITE_DAC|0x00006800"),
+        ("3624894", "MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x00604800"),
+        ("10646027", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|WRITE_DAC|0x00606000"),
+        ("10085265", "GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|WRITE_OWNER|0x00005200"),
+        ("20698888", "GENERIC_EXECUTE|FILE_READ_EA|FILE_READ_ATTRIBUTES|DELETE|WRITE_OWNER|0x00608800"),
+        ("21237085", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x00207000"),
+        ("28349886", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|0x08209800"),
+        ("2960088", "MAXIMUM_ALLOWED|FILE_READ_EA|FILE_READ_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x00800000"),
+        ("24768698", "GENERIC_EXECUTE|FILE_READ_EA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x04608600"),
+        ("14977451", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x04807400"),
+        ("37138005", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04008000"),
+        ("35139787", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04009600"),
+        ("21812342", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|ACCESS_SYSTEM_SECURITY|0x00802200"),
+        ("16033752", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|0x04003600"),
+        ("3516770", "MAXIMUM_ALLOWED|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00406600"),
+        ("8755513", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|0x08605400"),
+        ("36490056", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|0x04400000"),
+        ("8525969", "FILE_READ_ACCESS|FILE_READ_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|0x08405800"),
+        ("27565988", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04405800"),
+        ("39141020", "GENERIC_EXECUTE|GENERIC_ALL|FILE_EXECUTE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08001000"),
+        ("27734220", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_EXECUTE|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04604200"),
+        ("11006011", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_EA|ACCESS_SYSTEM_SECURITY|0x00006000"),
+        ("9593841", "FILE_READ_ACCESS|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08403800"),
+        ("13617417", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|DELETE|ACCESS_SYSTEM_SECURITY|0x00607400"),
+        ("8155692", "FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|0x08005600"),
+        ("32325981", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|0x00205800"),
+        ("39422383", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x08402200"),
+        ("5730921", "FILE_READ_ACCESS|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04600800"),
+        ("10848199", "GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|WRITE_DAC|0x00808000"),
+        ("32250127", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|0x00200000"),
+        ("5105380", "FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04005200"),
+        ("20509255", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|SYNCHRONIZE|0x00409200"),
+        ("30701264", "GENERIC_EXECUTE|GENERIC_ALL|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|SYNCHRONIZE|0x00601200"),
+        ("21086197", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x00006000"),
+        ("7145054", "MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04005000"),
+        ("22927065", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|READ_CONTROL|SYNCHRONIZE|0x00807000"),
+        ("15830850", "GENERIC_ALL|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x04800800"),
+        ("22455219", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|DELETE|WRITE_DAC|0x00405200"),
+        ("13923120", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00803000"),
+        ("23807082", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_READ_ATTRIBUTES|ACCESS_SYSTEM_SECURITY|0x00807000"),
+        ("3915371", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00805200"),
+        ("39358971", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08208800"),
+        ("18810507", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_ATTRIBUTES|DELETE|0x08800400"),
+        ("29222372", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x08202200"),
+        ("27844114", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04804000"),
+        ("16470225", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|DELETE|READ_CONTROL|WRITE_DAC|0x04400200"),
+        ("25693947", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x04603800"),
+        ("38247088", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_EA|FILE_READ_ATTRIBUTES|WRITE_DAC|0x08207000"),
+        ("8654840", "FILE_DELETE_CHILD|DELETE|WRITE_DAC|0x08604800"),
+        ("17222571", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x04202400"),
+        ("10048418", "GENERIC_ALL|FILE_READ_EA|FILE_WRITE_EA|WRITE_DAC|0x00008400"),
+        ("4837179", "FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|0x04807000"),
+        ("19707602", "GENERIC_ALL|FILE_WRITE_ACCESS|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08607600"),
+        ("36726363", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|0x04606200"),
+        ("3511459", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00401400"),
+        ("18711108", "GENERIC_ALL|FILE_READ_EA|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|0x08601000"),
+        ("19591735", "GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08401600"),
+        ("35238328", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x04208200"),
+        ("34135626", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|DELETE|READ_CONTROL|SYNCHRONIZE|0x04005600"),
+        ("31327773", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00207600"),
+        ("25771599", "GENERIC_EXECUTE|FILE_GENERIC_READ|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04601400"),
+        ("24625444", "GENERIC_EXECUTE|FILE_APPEND_DATA|FILE_DELETE_CHILD|READ_CONTROL|0x04605400"),
+        ("26455449", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_DELETE_CHILD|DELETE|WRITE_DAC|0x04405400"),
+        ("11221066", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x00201000"),
+        ("32370600", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x00200600"),
+        ("30995241", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|SYNCHRONIZE|0x00805200"),
+        ("16237706", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|0x04207600"),
+        ("27611693", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|ACCESS_SYSTEM_SECURITY|0x04601600"),
+        ("13890694", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x00800600"),
+        ("23800288", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_READ_ATTRIBUTES|ACCESS_SYSTEM_SECURITY|0x00800200"),
+        ("4312644", "FILE_APPEND_DATA|FILE_DELETE_CHILD|DELETE|SYNCHRONIZE|0x04202600"),
+        ("27826813", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x04806800"),
+        ("13817004", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_APPEND_DATA|DELETE|ACCESS_SYSTEM_SECURITY|0x00807000"),
+        ("7375477", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04205400"),
+        ("34994509", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|0x04804400"),
+        ("17121006", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04001000"),
+        ("4240187", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|WRITE_DAC|0x04200000"),
+        ("34165601", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x04005600"),
+        ("20933134", "GENERIC_EXECUTE|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|0x00803000"),
+        ("7434931", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x04404800"),
+        ("2773253", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x00603200"),
+        ("22390005", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|DELETE|WRITE_OWNER|SYNCHRONIZE|0x00200000"),
+        ("21101409", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_READ_EA|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00001400"),
+        ("38228893", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|READ_CONTROL|0x08208800"),
+        ("28373153", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x08203000"),
+        ("35743139", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04603000"),
+        ("39247532", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x08207400"),
+        ("12451640", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_DELETE_CHILD|DELETE|WRITE_DAC|0x00401600"),
+        ("37784379", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04604200"),
+        ("28493332", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|0x08403200"),
+        ("31363472", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00203400"),
+        ("12661609", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|READ_CONTROL|WRITE_DAC|0x00601600"),
+        ("19386847", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08206800"),
+        ("33976797", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_GENERIC_WRITE|FILE_READ_ACCESS|FILE_READ_ATTRIBUTES|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00806600"),
+        ("21542316", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00402200"),
+        ("4720604", "FILE_APPEND_DATA|READ_CONTROL|SYNCHRONIZE|0x04600600"),
+        ("17312606", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04202600"),
+        ("34154958", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_EA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|0x04004800"),
+        ("33290789", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x00200600"),
+        ("18868343", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|0x08808200"),
+        ("26951868", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_DAC|SYNCHRONIZE|0x04801800"),
+        ("33524502", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00404400"),
+        ("14898598", "GENERIC_ALL|FILE_READ_EA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|0x04808400"),
+        ("13572221", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_EXECUTE|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00402200"),
+        ("20279162", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|0x00209000"),
+        ("6678989", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|0x04608800"),
+        ("10141859", "GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_DELETE_CHILD|WRITE_DAC|SYNCHRONIZE|0x00001800"),
+        ("29793407", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08603400"),
+        ("10136993", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|0x00006800"),
+        ("3001998", "MAXIMUM_ALLOWED|FILE_READ_EA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|ACCESS_SYSTEM_SECURITY|0x00001800"),
+        ("6374090", "MAXIMUM_ALLOWED|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x04204000"),
+        ("7812694", "MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|ACCESS_SYSTEM_SECURITY|0x04802600"),
+        ("20055580", "GENERIC_EXECUTE|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|0x00005400"),
+        ("6742568", "MAXIMUM_ALLOWED|FILE_READ_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|0x04602400"),
+        ("35330215", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04200200"),
+        ("38685499", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|WRITE_OWNER|0x08605400"),
+        ("32869411", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|READ_CONTROL|WRITE_DAC|0x00809400"),
+        ("35521360", "GENERIC_EXECUTE|GENERIC_ALL|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04401200"),
+        ("14947208", "GENERIC_ALL|FILE_READ_EA|WRITE_DAC|SYNCHRONIZE|0x04807200"),
+        ("28486877", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|WRITE_OWNER|0x08406800"),
+        ("27863004", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_APPEND_DATA|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04803000"),
+        ("32173827", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x00003800"),
+        ("35411881", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_ATTRIBUTES|DELETE|ACCESS_SYSTEM_SECURITY|0x04401800"),
+        ("7709446", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04609400"),
+        ("39201597", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|ACCESS_SYSTEM_SECURITY|0x08201400"),
+        ("17774758", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04604600"),
+        ("6919159", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|0x04809000"),
+        ("29630705", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x08600600"),
+        ("7347561", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04207400"),
+        ("22275839", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|DELETE|READ_CONTROL|WRITE_DAC|0x00205800"),
+        ("2781776", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|0x00601600"),
+        ("21090994", "GENERIC_EXECUTE|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x00000800"),
+        ("38865143", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|0x08805000"),
+        ("21896267", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x00806200"),
+        ("30819327", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|0x00809200"),
+        ("12689317", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|0x00609200"),
+        ("20068862", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|READ_CONTROL|WRITE_DAC|0x00008800"),
+        ("18374207", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x08204200"),
+        ("8274557", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|0x08204400"),
+        ("38307117", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|0x08207000"),
+        ("6204233", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|0x04204200"),
+        ("27780746", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04600600"),
+        ("14965893", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x04805800"),
+        ("6357879", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_DAC|SYNCHRONIZE|0x04207800"),
+        ("25007781", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|ACCESS_SYSTEM_SECURITY|0x04007600"),
+        ("29108228", "GENERIC_EXECUTE|FILE_READ_EA|FILE_EXECUTE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08008200"),
+        ("17922266", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04802200"),
+        ("16082897", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|WRITE_OWNER|0x04002800"),
+        ("7314725", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04204600"),
+        ("24480129", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_READ_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|0x04400000"),
+        ("6583634", "MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|WRITE_OWNER|SYNCHRONIZE|0x04403600"),
+        ("15833004", "GENERIC_ALL|FILE_APPEND_DATA|DELETE|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x04803000"),
+        ("6661000", "MAXIMUM_ALLOWED|READ_CONTROL|WRITE_DAC|0x04601000"),
+        ("28867624", "GENERIC_EXECUTE|FILE_APPEND_DATA|FILE_EXECUTE|READ_CONTROL|WRITE_DAC|0x08807600"),
+        ("14815993", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|0x04805800"),
+        ("9072671", "FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x08002600"),
+        ("6247473", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|WRITE_DAC|0x04207400"),
+        ("36729452", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|READ_CONTROL|SYNCHRONIZE|0x04609400"),
+        ("20482716", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|WRITE_OWNER|0x00402600"),
+        ("17922305", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04802200"),
+        ("25026528", "GENERIC_EXECUTE|FILE_READ_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x04006400"),
+        ("26970483", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x04800400"),
+        ("29371086", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08201000"),
+        ("13917574", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00807400"),
+        ("34094782", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|0x04004600"),
+        ("6064519", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|0x04004400"),
+        ("18568978", "GENERIC_ALL|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x08408800"),
+        ("24809719", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|0x04809600"),
+        ("14714326", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|0x04604200"),
+        ("22324937", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_GENERIC_WRITE|FILE_READ_ACCESS|FILE_EXECUTE|0x00204800"),
+        ("6643589", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|WRITE_DAC|0x04603400"),
+        ("11172974", "GENERIC_ALL|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00002800"),
+        ("7573231", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04403200"),
+        ("2283618", "MAXIMUM_ALLOWED|FILE_READ_EA|FILE_WRITE_EA|WRITE_OWNER|0x00203600"),
+        ("16860029", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_EXECUTE|READ_CONTROL|WRITE_DAC|0x04800000"),
+        ("28053247", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|DELETE|WRITE_DAC|0x08003200"),
+        ("2777800", "MAXIMUM_ALLOWED|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x00607800"),
+        ("25661591", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04601400"),
+        ("32054283", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_READ_ATTRIBUTES|DELETE|WRITE_DAC|0x00004200"),
+        ("27392205", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04202200"),
+        ("28178400", "GENERIC_EXECUTE|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x08008400"),
+        ("26844301", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ATTRIBUTES|WRITE_DAC|0x04804200"),
+        ("27496627", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x04406600"),
+        ("39359001", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08209000"),
+        ("10630165", "GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|0x00600000"),
+        ("4455856", "FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|WRITE_DAC|0x04405800"),
+        ("27178928", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04008800"),
+        ("22860033", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|READ_CONTROL|WRITE_DAC|0x00800000"),
+        ("38446767", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_DAC|0x08406600"),
+        ("18934298", "GENERIC_ALL|FILE_READ_EA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|0x08804200"),
+        ("3512817", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00402800"),
+        ("10638120", "GENERIC_ALL|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|0x00608000"),
+        ("5195651", "FILE_READ_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04005600"),
+        ("11132366", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00002200"),
+        ("28062195", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|0x08002000"),
+        ("19120128", "GENERIC_ALL|FILE_READ_EA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08000000"),
+        ("5538980", "FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04408800"),
+        ("38867323", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|0x08807200"),
+        ("31790411", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_EA|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00600400"),
+        ("9245067", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x08205000"),
+        ("25787063", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04607000"),
+        ("9226276", "FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|READ_CONTROL|ACCESS_SYSTEM_SECURITY|0x08206200"),
+        ("32103366", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|SYNCHRONIZE|0x00003200"),
+        ("29454321", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x08404200"),
+        ("8176227", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x08006200"),
+        ("17847196", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04807000"),
+        ("34321512", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|0x04201400"),
+        ("22951045", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|DELETE|WRITE_DAC|SYNCHRONIZE|0x00801000"),
+        ("8774027", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x08604000"),
+        ("35392862", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04202800"),
+        ("6973057", "MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x04803000"),
+        ("24541741", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|0x04401600"),
+        ("21249191", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x00209000"),
+        ("19871175", "GENERIC_ALL|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x08801000"),
+        ("35751951", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04601800"),
+        ("37076756", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04006600"),
+        ("20803826", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|0x00803800"),
+        ("38209194", "GENERIC_EXECUTE|GENERIC_ALL|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|0x08209000"),
+        ("26542395", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|0x04402200"),
+        ("10992214", "GENERIC_ALL|FILE_APPEND_DATA|FILE_WRITE_EA|DELETE|WRITE_OWNER|SYNCHRONIZE|0x00802200"),
+        ("18530411", "GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_EA|DELETE|READ_CONTROL|SYNCHRONIZE|0x08400400"),
+        ("20110016", "GENERIC_EXECUTE|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|DELETE|SYNCHRONIZE"),
+        ("22833715", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|0x00803600"),
+        ("11524022", "GENERIC_ALL|FILE_WRITE_ACCESS|FILE_EXECUTE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00404000"),
+        ("12172723", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|0x00002600"),
+        ("3535089", "MAXIMUM_ALLOWED|FILE_GENERIC_READ|DELETE|ACCESS_SYSTEM_SECURITY|0x00405000"),
+        ("25131288", "GENERIC_EXECUTE|FILE_READ_EA|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04001200"),
+        ("31993087", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_READ_ATTRIBUTES|DELETE|WRITE_OWNER|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00803000"),
+        ("37142526", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_APPEND_DATA|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04002400"),
+        ("25762143", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x04602000"),
+        ("6780440", "MAXIMUM_ALLOWED|FILE_DELETE_CHILD|WRITE_OWNER|SYNCHRONIZE|0x04600400"),
+        ("13966879", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00806800"),
+        ("31940352", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00800200"),
+        ("28992450", "GENERIC_EXECUTE|FILE_WRITE_EA|FILE_DELETE_CHILD|DELETE|WRITE_OWNER|SYNCHRONIZE|0x08802400"),
+        ("8526303", "FILE_READ_ACCESS|FILE_WRITE_ACCESS|FILE_WRITE_ATTRIBUTES|READ_CONTROL|SYNCHRONIZE|0x08406200"),
+        ("31691582", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_READ_ATTRIBUTES|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_OWNER|ACCESS_SYSTEM_SECURITY|0x00601400"),
+        ("39650969", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x08600800"),
+        ("16237892", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_WRITE_EA|FILE_READ_ATTRIBUTES|DELETE|READ_CONTROL|0x04207800"),
+        ("17047978", "GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_EA|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04007800"),
+        ("39607371", "GENERIC_EXECUTE|GENERIC_ALL|FILE_READ_ACCESS|FILE_WRITE_EA|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|ACCESS_SYSTEM_SECURITY|0x08607200"),
+        ("33965845", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_DELETE_CHILD|READ_CONTROL|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00805800"),
+        ("25058441", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_DELETE_CHILD|DELETE|WRITE_DAC|ACCESS_SYSTEM_SECURITY|0x04008400"),
+        ("29141955", "GENERIC_EXECUTE|FILE_READ_ACCESS|FILE_APPEND_DATA|FILE_WRITE_EA|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|WRITE_DAC|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x08001800"),
+        ("31518722", "GENERIC_EXECUTE|GENERIC_ALL|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_WRITE_ATTRIBUTES|DELETE|SYNCHRONIZE|ACCESS_SYSTEM_SECURITY|0x00408600"),
+        ("2677162", "MAXIMUM_ALLOWED|FILE_WRITE_ACCESS|FILE_EXECUTE|FILE_DELETE_CHILD|FILE_WRITE_ATTRIBUTES|DELETE|READ_CONTROL|WRITE_DAC|0x00607000"),
+        ("11214809", "GENERIC_ALL|FILE_READ_ACCESS|FILE_READ_EA|DELETE|ACCESS_SYSTEM_SECURITY|0x00204800"),
+    ]
+
+
+def api_name_ntopenprocess_arg_name_desiredaccess_data():
+    return [
+        ("1572690429", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_QUERY_INFORMATION|0x1500690000"),
+        ("1370452012", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_READ|0x1300452000"),
+        ("192358432", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x100258000"),
+        ("539430827", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|0x509430000"),
+        ("325030618", "GENERIC_EXECUTE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x305030000"),
+        ("975270373", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x905270000"),
+        ("1780376612", "GENERIC_READ|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1700276000"),
+        ("2125867280", "GENERIC_EXECUTE|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x2105866000"),
+        ("1576994072", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|SYNCHRONIZE|0x1504894000"),
+        ("1351398587", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1301298000"),
+        ("487050948", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x405050000"),
+        ("1513424717", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x1501424000"),
+        ("1391211640", "GENERIC_READ|GENERIC_ALL|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1301210000"),
+        ("972720032", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|SYNCHRONIZE|0x900620000"),
+        ("2089015292", "GENERIC_READ|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x2009014000"),
+        ("1367848756", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x1305848000"),
+        ("1141005815", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x1101004000"),
+        ("500874032", "PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|0x500874000"),
+        ("1082537069", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1000436000"),
+        ("2080481909", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x2000480000"),
+        ("622445802", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x600444000"),
+        ("354895883", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x304894000"),
+        ("2092915787", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x2000814000"),
+        ("519959451", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x509858000"),
+        ("260239818", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x200238000"),
+        ("296722007", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|SYNCHRONIZE|0x204622000"),
+        ("1363804845", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|0x1301804000"),
+        ("822554588", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x800454000"),
+        ("53012884", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SUSPEND_RESUME|0x01012000"),
+        ("401065813", "PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x401064000"),
+        ("367282783", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x305282000"),
+        ("305830886", "PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SUSPEND_RESUME|0x305830000"),
+        ("1665007608", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_VM_OPERATION|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1605006000"),
+        ("1915605862", "GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x1905604000"),
+        ("350945812", "GENERIC_WRITE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x300844000"),
+        ("624152589", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x604052000"),
+        ("2062364823", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x2000264000"),
+        ("39773319", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x09672000"),
+        ("1746701158", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1704600000"),
+        ("1661515941", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1601414000"),
+        ("706731138", "MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x704630000"),
+        ("495560457", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x405460000"),
+        ("1400198365", "PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1400098000"),
+        ("28956004", "GENERIC_EXECUTE|PROCESS_SET_SESSIONID|SYNCHRONIZE|0x08856000"),
+        ("1034469823", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x1004468000"),
+        ("1109767563", "PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1109666000"),
+        ("479689266", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x409688000"),
+        ("1269487385", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1209486000"),
+        ("1178966477", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1108866000"),
+        ("57072531", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x05072000"),
+        ("461959382", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x401858000"),
+        ("415080798", "GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x405080000"),
+        ("599259706", "GENERIC_READ|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x509258000"),
+        ("1025282937", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x1005282000"),
+        ("968525186", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x908424000"),
+        ("1473909417", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1401808000"),
+        ("649962918", "GENERIC_WRITE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x609862000"),
+        ("1174984730", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1104884000"),
+        ("1847152869", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1805052000"),
+        ("999803565", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x909802000"),
+        ("1923262316", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x1901262000"),
+        ("55103603", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x05002000"),
+        ("192923787", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x100822000"),
+        ("1705395758", "PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1705294000"),
+        ("667661109", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x605660000"),
+        ("628231275", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x608230000"),
+        ("432837335", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x400836000"),
+        ("1600215955", "PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x1600214000"),
+        ("2139442763", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x2109442000"),
+        ("2051400594", "GENERIC_WRITE|GENERIC_ALL|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x2001400000"),
+        ("1936919214", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1904818000"),
+        ("1950705345", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1900604000"),
+        ("204989402", "PROCESS_CREATE_THREAD|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x204888000"),
+        ("203368010", "MAXIMUM_ALLOWED|PROCESS_VM_READ|SYNCHRONIZE|0x201268000"),
+        ("728551060", "GENERIC_EXECUTE|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x708450000"),
+        ("1871615582", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1801614000"),
+        ("1805830856", "PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|0x1805830000"),
+        ("1147617716", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1105616000"),
+        ("690399099", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x600298000"),
+        ("858949190", "GENERIC_WRITE|GENERIC_ALL|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x808848000"),
+        ("138207859", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x108206000"),
+        ("112605908", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x100604000"),
+        ("1630499654", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1600498000"),
+        ("324873672", "GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x304872000"),
+        ("210925717", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x200824000"),
+        ("254133512", "GENERIC_WRITE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x204032000"),
+        ("2110125955", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x2100024000"),
+        ("116252226", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|0x104252000"),
+        ("602590123", "MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|SYNCHRONIZE|0x600490000"),
+        ("2112696125", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|0x2100696000"),
+        ("1182061405", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1100060000"),
+        ("166918111", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_SET_QUOTA|SYNCHRONIZE|0x104818000"),
+        ("1122366413", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1100266000"),
+        ("342571092", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x300470000"),
+        ("1473181630", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1401080000"),
+        ("318535929", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x308434000"),
+        ("641839375", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x601838000"),
+        ("1744142608", "GENERIC_WRITE|PROCESS_VM_OPERATION|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1704042000"),
+        ("1419177671", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1409076000"),
+        ("706610665", "MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x704610000"),
+        ("674981142", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x604880000"),
+        ("1333262204", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_SET_INFORMATION|0x1301262000"),
+        ("805229230", "PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x805228000"),
+        ("2086877635", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x2004876000"),
+        ("40399104", "GENERIC_WRITE|PROCESS_SET_SESSIONID|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x00298000"),
+        ("1303403353", "MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1301402000"),
+        ("731362976", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x701262000"),
+        ("857573070", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x805472000"),
+        ("1935863107", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x1905862000"),
+        ("1459333641", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1409232000"),
+        ("700748271", "PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x700648000"),
+        ("1178602619", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x1108602000"),
+        ("15173011", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x05072000"),
+        ("2044511195", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x2004410000"),
+        ("486823569", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x404822000"),
+        ("1527808649", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x1505808000"),
+        ("1653886980", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x1601886000"),
+        ("683754538", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x601654000"),
+        ("1505689201", "PROCESS_TERMINATE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1505688000"),
+        ("41402153", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|0x01402000"),
+        ("1158911010", "GENERIC_WRITE|GENERIC_ALL|PROCESS_VM_READ|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1108810000"),
+        ("46499065", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_LIMITED_INFORMATION|0x04498000"),
+        ("1597984979", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1505884000"),
+        ("242986095", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|SYNCHRONIZE|0x200886000"),
+        ("929963964", "GENERIC_EXECUTE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x909862000"),
+        ("1994507985", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1904406000"),
+        ("1538793035", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1508692000"),
+        ("149035714", "GENERIC_WRITE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x109034000"),
+        ("1712302984", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1700202000"),
+        ("814953168", "GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x804852000"),
+        ("2094044700", "GENERIC_READ|GENERIC_ALL|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x2004044000"),
+        ("938289854", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x908288000"),
+        ("2127517304", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x2105416000"),
+        ("167214045", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|0x105214000"),
+        ("1478463606", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1408462000"),
+        ("723446533", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x701446000"),
+        ("1255657533", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1205656000"),
+        ("1837913429", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1805812000"),
+        ("989658458", "GENERIC_READ|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|0x909658000"),
+        ("2142127282", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x2100026000"),
+        ("1017758194", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|SYNCHRONIZE|0x1005658000"),
+        ("212152918", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x200052000"),
+        ("1929475283", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1909474000"),
+        ("1268221662", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1208220000"),
+        ("445215651", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x405214000"),
+        ("732098247", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|0x700098000"),
+        ("234863002", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_QUERY_LIMITED_INFORMATION|0x204862000"),
+        ("1579710227", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1509610000"),
+        ("97295889", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_CREATE_PROCESS|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x05294000"),
+        ("1061217742", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1001216000"),
+        ("1554671470", "GENERIC_WRITE|GENERIC_ALL|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1504670000"),
+        ("1267449418", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1205448000"),
+        ("2061940650", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x2001840000"),
+        ("1689701474", "GENERIC_READ|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1609600000"),
+        ("2144764888", "GENERIC_WRITE|PROCESS_VM_OPERATION|PROCESS_CREATE_PROCESS|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x2104664000"),
+        ("1767857060", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_LIMITED_INFORMATION|0x1705856000"),
+        ("2075192501", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x2005092000"),
+        ("2063863600", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x2001862000"),
+        ("964778463", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x904678000"),
+        ("1962342736", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1900242000"),
+        ("631832011", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_READ|0x601832000"),
+        ("694881572", "GENERIC_READ|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x604880000"),
+        ("2032982903", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x2000882000"),
+        ("523174440", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x501074000"),
+        ("801221979", "PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x801220000"),
+        ("930627626", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x900626000"),
+        ("32659368", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x00658000"),
+        ("655987650", "GENERIC_WRITE|GENERIC_ALL|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x605886000"),
+        ("1261341453", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1201240000"),
+        ("918531713", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x908430000"),
+        ("1161889080", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_CREATE_PROCESS|PROCESS_QUERY_LIMITED_INFORMATION|0x1101888000"),
+        ("1504022324", "PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x1504022000"),
+        ("123807049", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_DUP_HANDLE|PROCESS_QUERY_LIMITED_INFORMATION|0x101806000"),
+        ("1802229338", "MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1800228000"),
+        ("559416363", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x509416000"),
+        ("266702150", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|SYNCHRONIZE|0x204602000"),
+        ("1950379612", "GENERIC_WRITE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1900278000"),
+        ("1174136239", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1104036000"),
+        ("1493787276", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1401686000"),
+        ("103936432", "MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x101836000"),
+        ("749519926", "GENERIC_WRITE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x709418000"),
+        ("270474623", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x200474000"),
+        ("832119359", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x800018000"),
+        ("204294584", "PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x204294000"),
+        ("225834467", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|0x205834000"),
+        ("1544007063", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_LIMITED_INFORMATION|0x1504006000"),
+        ("347713644", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x305612000"),
+        ("1752602933", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x1700602000"),
+        ("2107959673", "MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x2105858000"),
+        ("561381586", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x501280000"),
+        ("695365040", "GENERIC_READ|GENERIC_ALL|PROCESS_DUP_HANDLE|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x605264000"),
+        ("870074167", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|0x800074000"),
+        ("1792143", "PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|SYNCHRONIZE|0x01692000"),
+        ("1424812496", "GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|0x1404812000"),
+        ("1555008279", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|0x1505008000"),
+        ("188276832", "GENERIC_READ|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|0x108276000"),
+        ("1919911756", "GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1909810000"),
+        ("1905770663", "PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1905670000"),
+        ("1551911605", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1501810000"),
+        ("2076242535", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x2004242000"),
+        ("2114845598", "GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x2104844000"),
+        ("1340556862", "GENERIC_WRITE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1300456000"),
+        ("850392722", "GENERIC_WRITE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x800292000"),
+        ("1147812894", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SUSPEND_RESUME|0x1105812000"),
+        ("1687580551", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1605480000"),
+        ("1405298441", "PROCESS_TERMINATE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|0x1405298000"),
+        ("730649588", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x700648000"),
+        ("1889617223", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1809616000"),
+        ("672565819", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x600464000"),
+        ("2078598275", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x2008498000"),
+        ("1324343188", "GENERIC_EXECUTE|PROCESS_VM_OPERATION|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1304242000"),
+        ("1341440420", "GENERIC_WRITE|PROCESS_VM_WRITE|PROCESS_QUERY_INFORMATION|0x1301440000"),
+        ("390323707", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x300222000"),
+        ("429207733", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x409206000"),
+        ("426528352", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x404428000"),
+        ("1485159326", "GENERIC_READ|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1405058000"),
+        ("358224718", "GENERIC_WRITE|GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x308224000"),
+        ("2037415831", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x2005414000"),
+        ("903697055", "MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_QUERY_LIMITED_INFORMATION|0x901696000"),
+        ("1858015569", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1808014000"),
+        ("221745529", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x201644000"),
+        ("389519094", "GENERIC_READ|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x309418000"),
+        ("1025230976", "GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x1005230000"),
+        ("467300986", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x405200000"),
+        ("1304884241", "PROCESS_TERMINATE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|0x1304884000"),
+        ("1486888074", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|0x1404888000"),
+        ("2082945396", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x2000844000"),
+        ("305799328", "PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x305698000"),
+        ("1110051816", "GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x1100050000"),
+        ("1484036603", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x1404036000"),
+        ("793313994", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x701212000"),
+        ("789702246", "GENERIC_READ|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x709602000"),
+        ("267977553", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x205876000"),
+        ("875344170", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|SYNCHRONIZE|0x805244000"),
+        ("897188856", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x805088000"),
+        ("1581038574", "GENERIC_READ|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x1501038000"),
+        ("2033057385", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x2001056000"),
+        ("528040383", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x508040000"),
+        ("235061422", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x205060000"),
+        ("245764196", "GENERIC_WRITE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|SYNCHRONIZE|0x205664000"),
+        ("1093847258", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1001846000"),
+        ("742050574", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x700050000"),
+        ("717478614", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x705478000"),
+        ("746988316", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x704888000"),
+        ("1663392329", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1601292000"),
+        ("1079083405", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1009082000"),
+        ("178943877", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x108842000"),
+        ("1763470929", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x1701470000"),
+        ("1765435446", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1705434000"),
+        ("257338206", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x205238000"),
+        ("1976194281", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1904094000"),
+        ("560681213", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x500680000"),
+        ("73048746", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x01048000"),
+        ("566607923", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x504606000"),
+        ("1424254009", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_OPERATION|0x1404254000"),
+        ("440760095", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|SYNCHRONIZE|0x400660000"),
+        ("551813408", "GENERIC_WRITE|GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x501812000"),
+        ("820112221", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x800012000"),
+        ("198294489", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|0x108294000"),
+        ("1276047907", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x1204046000"),
+        ("1330646122", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|0x1300646000"),
+        ("1891675841", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x1801674000"),
+        ("658115586", "GENERIC_WRITE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x608014000"),
+        ("1300139833", "PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1300038000"),
+        ("1707910154", "MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|SYNCHRONIZE|0x1705810000"),
+        ("2096515722", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x2004414000"),
+        ("584477366", "GENERIC_READ|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x504476000"),
+        ("1089895249", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1009894000"),
+        ("940664452", "GENERIC_WRITE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|0x900664000"),
+        ("188781516", "GENERIC_READ|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x108680000"),
+        ("560326099", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|SYNCHRONIZE|0x500226000"),
+        ("44072112", "GENERIC_WRITE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_SET_QUOTA|0x04072000"),
+        ("2139296208", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_SET_INFORMATION|0x2109296000"),
+        ("1380989010", "GENERIC_READ|PROCESS_VM_READ|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1300888000"),
+        ("900406050", "PROCESS_VM_READ|PROCESS_DUP_HANDLE|0x900406000"),
+        ("2140228176", "GENERIC_WRITE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|0x2100228000"),
+        ("50308233", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x00208000"),
+        ("1610095515", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1600094000"),
+        ("817677680", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x805676000"),
+        ("402720644", "MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x400620000"),
+        ("1977726861", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1905626000"),
+        ("1412883555", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1400882000"),
+        ("1349218325", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x1309218000"),
+        ("1932314360", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1900214000"),
+        ("1585615666", "GENERIC_READ|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1505614000"),
+        ("1140948456", "GENERIC_WRITE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1100848000"),
+        ("1757173898", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1705072000"),
+        ("537783462", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x505682000"),
+        ("230125514", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x200024000"),
+        ("1060717369", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1000616000"),
+        ("1967919649", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1905818000"),
+        ("277739637", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x205638000"),
+        ("248819452", "GENERIC_WRITE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x208818000"),
+        ("1211705388", "GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1201604000"),
+        ("1291883437", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1201882000"),
+        ("2044207567", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x2004206000"),
+        ("956814233", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|0x904814000"),
+        ("445995182", "GENERIC_WRITE|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x405894000"),
+        ("418060535", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x408060000"),
+        ("1578471082", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|PROCESS_QUERY_LIMITED_INFORMATION|0x1508470000"),
+        ("1556801252", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1504800000"),
+        ("1590821181", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x1500820000"),
+        ("747513644", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x705412000"),
+        ("868704891", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x808604000"),
+        ("931219609", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x901218000"),
+        ("1832593903", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1800492000"),
+        ("728110567", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x708010000"),
+        ("50264400", "GENERIC_WRITE|GENERIC_ALL|PROCESS_QUERY_INFORMATION|0x00264000"),
+        ("1319277847", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x1309276000"),
+        ("1502894589", "MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x1500894000"),
+        ("868503878", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x808402000"),
+        ("284258531", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x204258000"),
+        ("876267676", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x804266000"),
+        ("8953173", "PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x08852000"),
+        ("36432065", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|0x04432000"),
+        ("1657509441", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1605408000"),
+        ("1696707238", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1604606000"),
+        ("523748370", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x501648000"),
+        ("153093489", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x101092000"),
+        ("1337292868", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|0x1305292000"),
+        ("424925532", "GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x404824000"),
+        ("2132866418", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_QUERY_INFORMATION|0x2100866000"),
+        ("1613209833", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x1601208000"),
+        ("281476213", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_SET_INFORMATION|0x201476000"),
+        ("1614978064", "GENERIC_ALL|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|SYNCHRONIZE|0x1604878000"),
+        ("953045030", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_QUERY_LIMITED_INFORMATION|0x901044000"),
+        ("390251026", "GENERIC_READ|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_QUERY_LIMITED_INFORMATION|0x300250000"),
+        ("440584161", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|SYNCHRONIZE|0x400484000"),
+        ("907211786", "MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x905210000"),
+        ("393852983", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x301852000"),
+        ("42776477", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x00676000"),
+        ("1349156803", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1309056000"),
+        ("165822737", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x105822000"),
+        ("1055016142", "GENERIC_WRITE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|0x1005016000"),
+        ("2063340940", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x2001240000"),
+        ("1463710002", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|SYNCHRONIZE|0x1401610000"),
+        ("1549500985", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1509400000"),
+        ("2122519744", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x2100418000"),
+        ("1060914625", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1000814000"),
+        ("1377587926", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1305486000"),
+        ("219614464", "GENERIC_ALL|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|0x209614000"),
+        ("690420373", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x600420000"),
+        ("1272654731", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x1200654000"),
+        ("835880829", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|0x805880000"),
+        ("94586376", "GENERIC_READ|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x04486000"),
+        ("599293431", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x509292000"),
+        ("239510637", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x209410000"),
+        ("1012220094", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|0x1000220000"),
+        ("1494520674", "GENERIC_READ|GENERIC_ALL|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1404420000"),
+        ("1863096068", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|0x1801096000"),
+        ("630439938", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x600438000"),
+        ("1831647796", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1801646000"),
+        ("1866865029", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_QUERY_LIMITED_INFORMATION|0x1804864000"),
+        ("583263501", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x501262000"),
+        ("107038436", "MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_QUERY_INFORMATION|0x105038000"),
+        ("1293176800", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1201076000"),
+        ("1693532491", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1601432000"),
+        ("1887653620", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1805652000"),
+        ("502157130", "MAXIMUM_ALLOWED|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x500056000"),
+        ("1076677337", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1004676000"),
+        ("1963846935", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x1901846000"),
+        ("162662319", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x100662000"),
+        ("480950758", "GENERIC_READ|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x400850000"),
+        ("673388752", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x601288000"),
+        ("655779164", "GENERIC_WRITE|GENERIC_ALL|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x605678000"),
+        ("2034703914", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x2004602000"),
+        ("1882440276", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|0x1800440000"),
+        ("1112939317", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1100838000"),
+        ("615848343", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x605848000"),
+        ("1191681928", "GENERIC_READ|GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x1101680000"),
+        ("130770272", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x100670000"),
+        ("935979714", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x905878000"),
+        ("1694959309", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1604858000"),
+        ("899150866", "GENERIC_READ|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x809050000"),
+        ("1135236073", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|0x1105236000"),
+        ("742279024", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_QUERY_LIMITED_INFORMATION|0x700278000"),
+        ("939433567", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x909432000"),
+        ("1772847664", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1700846000"),
+        ("819842287", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|0x809842000"),
+        ("1790555311", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1700454000"),
+        ("1335437631", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1305436000"),
+        ("1215462705", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x1205462000"),
+        ("1966318265", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1904218000"),
+        ("2041495129", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x2001494000"),
+        ("1747252172", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|0x1705252000"),
+        ("825469779", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x805468000"),
+        ("317433179", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x305432000"),
+        ("1878419162", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x1808418000"),
+        ("1351583801", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1301482000"),
+        ("581711387", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x501610000"),
+        ("391030849", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|0x301030000"),
+        ("1970487785", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1900486000"),
+        ("1772635366", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1700634000"),
+        ("1120599661", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1100498000"),
+        ("206807571", "MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x204806000"),
+        ("1769412242", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|0x1709412000"),
+        ("1020581197", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1000480000"),
+        ("531315474", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x501214000"),
+        ("457004538", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x405004000"),
+        ("1341810961", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x1301810000"),
+        ("1940884658", "GENERIC_WRITE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x1900884000"),
+        ("1498906169", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|SYNCHRONIZE|0x1408806000"),
+        ("505842510", "PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x505842000"),
+        ("1821923764", "GENERIC_EXECUTE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1801822000"),
+        ("309575499", "PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x309474000"),
+        ("614287156", "GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x604286000"),
+        ("67014951", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x05014000"),
+        ("936923509", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x904822000"),
+        ("1669517324", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1609416000"),
+        ("941410556", "GENERIC_WRITE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x901410000"),
+        ("270604656", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x200604000"),
+        ("1813998798", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1801898000"),
+        ("700333438", "PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x700232000"),
+        ("473733466", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x401632000"),
+        ("775724124", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|SYNCHRONIZE|0x705624000"),
+        ("651207173", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x601206000"),
+        ("1650939680", "GENERIC_WRITE|GENERIC_ALL|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1600838000"),
+        ("1122193964", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1100092000"),
+        ("211362195", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|SYNCHRONIZE|0x201262000"),
+        ("477636497", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|0x405636000"),
+        ("1618547661", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1608446000"),
+        ("1417859938", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x1405858000"),
+        ("589552300", "GENERIC_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x509452000"),
+        ("1230818375", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x1200818000"),
+        ("1531457556", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1501456000"),
+        ("845198413", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x805098000"),
+        ("792751769", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x700650000"),
+        ("1837327224", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1805226000"),
+        ("564853034", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_QUERY_LIMITED_INFORMATION|0x504852000"),
+        ("55914890", "GENERIC_WRITE|GENERIC_ALL|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x05814000"),
+        ("255166195", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|SYNCHRONIZE|0x205066000"),
+        ("714878125", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|0x704878000"),
+        ("2065430988", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_VM_OPERATION|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x2005430000"),
+        ("1959396576", "GENERIC_WRITE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1909296000"),
+        ("1511405672", "GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1501404000"),
+        ("1290434529", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x1200434000"),
+        ("1511184646", "GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1501084000"),
+        ("200156703", "PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x200056000"),
+        ("491834159", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|0x401834000"),
+        ("485181594", "GENERIC_READ|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x405080000"),
+        ("250945946", "GENERIC_WRITE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x200844000"),
+        ("2096600194", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|0x2004600000"),
+        ("1686035176", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x1604034000"),
+        ("156501128", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x104400000"),
+        ("380099312", "GENERIC_READ|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x300098000"),
+        ("429241231", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x409240000"),
+        ("491579097", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x401478000"),
+        ("1106796651", "MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1104696000"),
+        ("604726245", "PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x604626000"),
+        ("1883327797", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1801226000"),
+        ("2087566772", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x2005466000"),
+        ("349662935", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x309662000"),
+        ("1129918564", "GENERIC_EXECUTE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1109818000"),
+        ("1544798049", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_DUP_HANDLE|SYNCHRONIZE|0x1504698000"),
+        ("380084103", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_QUOTA|0x300084000"),
+        ("1393702119", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_SET_QUOTA|SYNCHRONIZE|0x1301602000"),
+        ("150523621", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x100422000"),
+        ("533248616", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x501248000"),
+        ("1885041785", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1805040000"),
+        ("155310973", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x105210000"),
+        ("232930107", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_SET_QUOTA|SYNCHRONIZE|0x200830000"),
+        ("967506924", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x905406000"),
+        ("260515447", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x200414000"),
+        ("1480635805", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x1400634000"),
+        ("1956172808", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1904072000"),
+        ("1610311167", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1600210000"),
+        ("1029406602", "GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x1009406000"),
+        ("2108580467", "PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x2108480000"),
+        ("1571394050", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_VM_READ|PROCESS_DUP_HANDLE|SYNCHRONIZE|0x1501294000"),
+        ("181338215", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x101238000"),
+        ("1810880885", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SUSPEND_RESUME|0x1800880000"),
+        ("248064909", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x208064000"),
+        ("1900347495", "PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1900246000"),
+        ("813818889", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_CREATE_PROCESS|PROCESS_SUSPEND_RESUME|0x801818000"),
+        ("2144813611", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x2104812000"),
+        ("1870987498", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1800886000"),
+        ("1414177173", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1404076000"),
+        ("17660166", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|0x05660000"),
+        ("301629102", "PROCESS_CREATE_THREAD|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x301628000"),
+        ("1375058364", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x1305058000"),
+        ("1885677089", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_CREATE_PROCESS|PROCESS_QUERY_LIMITED_INFORMATION|0x1805676000"),
+        ("1683536455", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1601436000"),
+        ("1696536638", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1604436000"),
+        ("1756947398", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1704846000"),
+        ("1705434513", "PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x1705434000"),
+        ("1166371013", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1104270000"),
+        ("1863065591", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1801064000"),
+        ("658817469", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x608816000"),
+        ("1096523262", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1004422000"),
+        ("1780422474", "GENERIC_READ|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|0x1700422000"),
+        ("1237486522", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x1205486000"),
+        ("999210726", "GENERIC_READ|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x909210000"),
+        ("1455134042", "GENERIC_WRITE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_DUP_HANDLE|SYNCHRONIZE|0x1405034000"),
+        ("678684027", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|0x608684000"),
+        ("1608517798", "PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1608416000"),
+        ("580152700", "GENERIC_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x500052000"),
+        ("1164258354", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x1104258000"),
+        ("327108015", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|SYNCHRONIZE|0x305008000"),
+        ("1361483787", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1301482000"),
+        ("1745213382", "GENERIC_WRITE|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1705212000"),
+        ("570351612", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x500250000"),
+        ("1580228805", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_SUSPEND_RESUME|0x1500228000"),
+        ("184584132", "GENERIC_READ|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|SYNCHRONIZE|0x104484000"),
+        ("674330068", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|SYNCHRONIZE|0x604230000"),
+        ("1553197904", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1501096000"),
+        ("1305101035", "PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1305000000"),
+        ("1032570427", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1000470000"),
+        ("1090328853", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1000228000"),
+        ("94882006", "GENERIC_READ|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|0x04882000"),
+        ("516763809", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x504662000"),
+        ("2094297273", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x2004296000"),
+        ("1897819783", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1805818000"),
+        ("1651364925", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1601264000"),
+        ("454142142", "GENERIC_WRITE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|SYNCHRONIZE|0x404042000"),
+        ("492326565", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x400226000"),
+        ("208529007", "PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x208428000"),
+        ("757377802", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x705276000"),
+        ("2024124392", "GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x2004024000"),
+        ("1178536896", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1108436000"),
+        ("932635550", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x900634000"),
+        ("505857832", "PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x505856000"),
+        ("1407070178", "MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|0x1405070000"),
+        ("1980379404", "GENERIC_READ|PROCESS_SET_SESSIONID|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1900278000"),
+        ("1580255461", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1500254000"),
+        ("1297693815", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x1205692000"),
+        ("1000671694", "PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1000670000"),
+        ("167485935", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x105484000"),
+        ("1765950873", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1705850000"),
+        ("1991491176", "GENERIC_READ|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x1901490000"),
+        ("1345413652", "GENERIC_WRITE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1305412000"),
+        ("324966376", "GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x304866000"),
+        ("1077649429", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1005648000"),
+        ("46803824", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x04802000"),
+        ("955514185", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|SYNCHRONIZE|0x905414000"),
+        ("134431121", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x104430000"),
+        ("1529950081", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_PROCESS|SYNCHRONIZE|0x1509850000"),
+        ("696927084", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x604826000"),
+        ("791425375", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x701424000"),
+        ("1134327685", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1104226000"),
+        ("464022115", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|0x404022000"),
+        ("904304970", "PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x904204000"),
+        ("1920616198", "GENERIC_EXECUTE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|0x1900616000"),
+        ("1328547191", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1308446000"),
+        ("1942198347", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1900098000"),
+        ("1879855243", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1809854000"),
+        ("60201329", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x00200000"),
+        ("398671951", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x308670000"),
+        ("1726925209", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1704824000"),
+        ("836043113", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x804042000"),
+        ("1959247049", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_DUP_HANDLE|PROCESS_QUERY_LIMITED_INFORMATION|0x1909246000"),
+        ("108788912", "PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x108688000"),
+        ("1303476805", "MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_SUSPEND_RESUME|0x1301476000"),
+        ("1413357741", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1401256000"),
+        ("423176058", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_DUP_HANDLE|SYNCHRONIZE|0x401076000"),
+        ("1560814348", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_VM_OPERATION|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x1500814000"),
+        ("1059349591", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1009248000"),
+        ("516357640", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x504256000"),
+        ("1362192399", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1300092000"),
+        ("293053257", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x201052000"),
+        ("629312596", "GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x609212000"),
+        ("2114593961", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x2104492000"),
+        ("1973947610", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_READ|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1901846000"),
+        ("2141140181", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|SYNCHRONIZE|0x2101040000"),
+        ("553580697", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x501480000"),
+        ("481564847", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x401464000"),
+        ("243672038", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|0x201672000"),
+        ("1620326207", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1600226000"),
+        ("869183322", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x809082000"),
+        ("1508791313", "PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1508690000"),
+        ("1147463852", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x1105462000"),
+        ("1301687518", "PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1301686000"),
+        ("1155476957", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x1105476000"),
+        ("1439406100", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_SET_QUOTA|0x1409406000"),
+        ("285863930", "GENERIC_READ|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x205862000"),
+        ("324515592", "GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x304414000"),
+        ("1221982572", "GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1201882000"),
+        ("145401360", "GENERIC_WRITE|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x105400000"),
+        ("765005902", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x705004000"),
+        ("1262299002", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_QUERY_LIMITED_INFORMATION|0x1200298000"),
+        ("2033097316", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x2001096000"),
+        ("459987873", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x409886000"),
+        ("2019590712", "GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x2009490000"),
+        ("999564342", "GENERIC_READ|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x909464000"),
+        ("1993799023", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1901698000"),
+        ("1174992822", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1104892000"),
+        ("131569143", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x101468000"),
+        ("1860701548", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_VM_OPERATION|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1800600000"),
+        ("1794807380", "GENERIC_READ|GENERIC_ALL|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1704806000"),
+        ("1287476632", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x1205476000"),
+        ("2071050206", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_SET_INFORMATION|0x2001050000"),
+        ("526618740", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x504618000"),
+        ("274930943", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x204830000"),
+        ("842557839", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x800456000"),
+        ("1593055568", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1501054000"),
+        ("148700950", "GENERIC_WRITE|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x108600000"),
+        ("1363383176", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1301282000"),
+        ("495750176", "GENERIC_READ|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|SYNCHRONIZE|0x405650000"),
+        ("107428815", "MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SUSPEND_RESUME|0x105428000"),
+        ("101107478", "PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x101006000"),
+        ("675960125", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|SYNCHRONIZE|0x605860000"),
+        ("1369326250", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1309226000"),
+        ("2129695571", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x2109694000"),
+        ("679684441", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|0x609684000"),
+        ("2138634058", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_DUP_HANDLE|0x2108634000"),
+        ("454857637", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x404856000"),
+        ("1874445847", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x1804444000"),
+        ("2085162318", "GENERIC_READ|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x2005062000"),
+        ("1809729672", "PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1809628000"),
+        ("1578720802", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1508620000"),
+        ("2100315293", "PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x2100214000"),
+        ("1242667749", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1200666000"),
+        ("1970467102", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x1900466000"),
+        ("399453778", "GENERIC_READ|GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x309452000"),
+        ("1188590080", "GENERIC_READ|PROCESS_CREATE_PROCESS|SYNCHRONIZE|0x1108490000"),
+        ("1528343553", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1508242000"),
+        ("1009727200", "PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1009626000"),
+        ("1501986671", "PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1501886000"),
+        ("377457160", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x305456000"),
+        ("212204143", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|0x200204000"),
+        ("1552529016", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1500428000"),
+        ("1152569248", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1100468000"),
+        ("1644954495", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1604854000"),
+        ("447702395", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x405602000"),
+        ("559007428", "GENERIC_WRITE|GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x509006000"),
+        ("7169260", "MAXIMUM_ALLOWED|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x05068000"),
+        ("2040203118", "GENERIC_WRITE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x2000202000"),
+        ("690286795", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x600286000"),
+        ("1014543930", "GENERIC_ALL|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1004442000"),
+        ("277558726", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x205458000"),
+        ("2021156556", "GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x2001056000"),
+        ("263348543", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x201248000"),
+        ("52123982", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x00022000"),
+        ("103096433", "MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_QUERY_INFORMATION|0x101096000"),
+        ("1527124666", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1505024000"),
+        ("1409722200", "PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1409622000"),
+        ("459169868", "GENERIC_WRITE|GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x409068000"),
+        ("1696567725", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1604466000"),
+        ("106317977", "MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x104216000"),
+        ("1907950633", "MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1905850000"),
+        ("325897046", "GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_QUERY_LIMITED_INFORMATION|0x305896000"),
+        ("103185569", "MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x101084000"),
+        ("94237840", "GENERIC_READ|GENERIC_ALL|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x04236000"),
+        ("1921512161", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|SYNCHRONIZE|0x1901412000"),
+        ("167943803", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x105842000"),
+        ("44841817", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x04840000"),
+        ("1517226398", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x1505226000"),
+        ("1136535495", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1104434000"),
+        ("962204772", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x900204000"),
+        ("931758432", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x901658000"),
+        ("309121864", "PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x309020000"),
+        ("45379987", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x05278000"),
+        ("1615825382", "GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1605824000"),
+        ("887128850", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x805028000"),
+        ("1138118103", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_QUOTA|SYNCHRONIZE|0x1108018000"),
+        ("1467605158", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x1405604000"),
+        ("1229683743", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1209682000"),
+        ("28189849", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x08088000"),
+        ("2058468761", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x2008468000"),
+        ("1954965463", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1904864000"),
+        ("1248124825", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1208024000"),
+        ("1735947715", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1705846000"),
+        ("666529442", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x604428000"),
+        ("236668279", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|0x204668000"),
+        ("70242356", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x00242000"),
+        ("104605253", "PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x104604000"),
+        ("1390699122", "GENERIC_READ|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x1300698000"),
+        ("1282231987", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x1200230000"),
+        ("1835740563", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1805640000"),
+        ("664046685", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x604046000"),
+        ("162141092", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x100040000"),
+        ("1787118068", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|SYNCHRONIZE|0x1705018000"),
+        ("1153845202", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1101844000"),
+        ("652807490", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x600806000"),
+        ("220403862", "GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x200402000"),
+        ("648818942", "GENERIC_WRITE|PROCESS_CREATE_THREAD|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x608818000"),
+        ("593728931", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x501628000"),
+        ("823890011", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_READ|0x801890000"),
+        ("2041405233", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x2001404000"),
+        ("602965380", "MAXIMUM_ALLOWED|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x600864000"),
+        ("13541806", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x01440000"),
+        ("1048942921", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1008842000"),
+        ("520193285", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x500092000"),
+        ("1048017255", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1008016000"),
+        ("288410823", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|0x208410000"),
+        ("694625712", "GENERIC_READ|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x604624000"),
+        ("741800661", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x701800000"),
+        ("677864573", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x605864000"),
+        ("1101982567", "PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1101882000"),
+        ("870109716", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x800008000"),
+        ("2060910107", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_SET_QUOTA|SYNCHRONIZE|0x2000810000"),
+        ("1572169705", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1500068000"),
+        ("1190366008", "GENERIC_READ|GENERIC_ALL|PROCESS_VM_OPERATION|SYNCHRONIZE|0x1100266000"),
+        ("1014016101", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_QUOTA|0x1004016000"),
+        ("1141124984", "GENERIC_WRITE|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1101024000"),
+        ("1042705781", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1000604000"),
+        ("1934730946", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1904630000"),
+        ("570369343", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x500268000"),
+        ("318495582", "GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x308494000"),
+        ("1392719275", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1300618000"),
+        ("1513608581", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x1501608000"),
+        ("495868791", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x405868000"),
+        ("567205485", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x505204000"),
+        ("1040186160", "GENERIC_WRITE|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|SYNCHRONIZE|0x1000086000"),
+        ("10759163", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x00658000"),
+        ("802650668", "MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x800650000"),
+        ("351298996", "GENERIC_WRITE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x301298000"),
+        ("1545777288", "GENERIC_WRITE|PROCESS_VM_OPERATION|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1505676000"),
+        ("55936012", "GENERIC_WRITE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_READ|SYNCHRONIZE|0x05836000"),
+        ("139713345", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x109612000"),
+        ("922041104", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x900040000"),
+        ("1832022925", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x1800022000"),
+        ("24670908", "GENERIC_EXECUTE|PROCESS_VM_OPERATION|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x04670000"),
+        ("743078249", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|0x701078000"),
+        ("650875230", "GENERIC_WRITE|GENERIC_ALL|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x600874000"),
+        ("82853784", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x00852000"),
+        ("787666160", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|0x705666000"),
+        ("728072947", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x708072000"),
+        ("339108494", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x309008000"),
+        ("591626652", "GENERIC_READ|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x501626000"),
+        ("302022783", "MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x300022000"),
+        ("1407589679", "MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1405488000"),
+        ("30525194", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x00424000"),
+        ("805637317", "PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x805636000"),
+        ("820784024", "GENERIC_EXECUTE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|SYNCHRONIZE|0x800684000"),
+        ("742503117", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x700402000"),
+        ("1680705719", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1600604000"),
+        ("627183026", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x605082000"),
+        ("2137112171", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|SYNCHRONIZE|0x2105012000"),
+        ("781485408", "GENERIC_READ|PROCESS_VM_OPERATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x701484000"),
+        ("942097237", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x900096000"),
+        ("713882971", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x701882000"),
+        ("1856739891", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1804638000"),
+        ("548319520", "GENERIC_WRITE|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x508218000"),
+        ("1783815683", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1701814000"),
+        ("178809792", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x108808000"),
+        ("587976185", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|SYNCHRONIZE|0x505876000"),
+        ("1716990549", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1704890000"),
+        ("1879059655", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1809058000"),
+        ("1309159416", "PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1309058000"),
+        ("977993214", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x905892000"),
+        ("1017066760", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x1005066000"),
+        ("906337892", "MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x904236000"),
+        ("2059442380", "GENERIC_WRITE|GENERIC_ALL|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x2009442000"),
+        ("1526699693", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1504698000"),
+        ("1536451069", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_LIMITED_INFORMATION|0x1504450000"),
+        ("739434876", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|0x709434000"),
+        ("1976661377", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1904660000"),
+        ("1514282823", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|0x1504282000"),
+        ("1129584445", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1109484000"),
+        ("1927034917", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x1905034000"),
+        ("296385279", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x204284000"),
+        ("1468675779", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1408674000"),
+        ("696782366", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x604682000"),
+        ("1826274029", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|0x1804274000"),
+        ("40440276", "GENERIC_WRITE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|0x00440000"),
+        ("2038917136", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x2008816000"),
+        ("56938102", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_QUOTA|SYNCHRONIZE|0x04838000"),
+        ("848769895", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x808668000"),
+        ("1336186880", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_PROCESS|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1304086000"),
+        ("620762236", "GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x600662000"),
+        ("1203600176", "MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|0x1201600000"),
+        ("841880616", "GENERIC_WRITE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x801880000"),
+        ("846111946", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x804010000"),
+        ("948035237", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x908034000"),
+        ("2095827062", "GENERIC_READ|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_LIMITED_INFORMATION|0x2005826000"),
+        ("1160413251", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1100412000"),
+        ("426386217", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x404286000"),
+        ("1736259193", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x1704258000"),
+        ("1713838609", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x1701838000"),
+        ("264608504", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_SET_SESSIONID|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x204608000"),
+        ("287855781", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x205854000"),
+        ("319505717", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x309404000"),
+        ("1408143396", "PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1408042000"),
+        ("1692969657", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1600868000"),
+        ("520740063", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|SYNCHRONIZE|0x500640000"),
+        ("831211078", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_LIMITED_INFORMATION|0x801210000"),
+        ("1976879554", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1904878000"),
+        ("1937647475", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1905646000"),
+        ("452984826", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x400884000"),
+        ("1296396620", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1204296000"),
+        ("342649702", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x300648000"),
+        ("1133411379", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1101410000"),
+        ("48346020", "GENERIC_WRITE|PROCESS_VM_WRITE|SYNCHRONIZE|0x08246000"),
+        ("12478547", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x00478000"),
+        ("1355221182", "GENERIC_WRITE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x1305220000"),
+        ("495270425", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_QUERY_INFORMATION|0x405270000"),
+        ("916283989", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x904282000"),
+        ("927986346", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x905886000"),
+        ("214084301", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x204084000"),
+        ("446815793", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x404814000"),
+        ("1172376822", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1100276000"),
+        ("944484648", "GENERIC_WRITE|PROCESS_VM_OPERATION|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x904484000"),
+        ("1177138674", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1105038000"),
+        ("758860836", "GENERIC_WRITE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|0x708860000"),
+        ("181538282", "GENERIC_READ|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x101438000"),
+        ("1318106372", "GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1308006000"),
+        ("864922270", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x804822000"),
+        ("1792969460", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1700868000"),
+        ("334960343", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x304860000"),
+        ("782333540", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x700232000"),
+        ("375502287", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x305402000"),
+        ("1884000891", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SUSPEND_RESUME|0x1804000000"),
+        ("1191798283", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1101698000"),
+        ("1371154861", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1301054000"),
+        ("1096574616", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1004474000"),
+        ("1884783166", "GENERIC_READ|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1804682000"),
+        ("1080975553", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1000874000"),
+        ("195692031", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_VM_WRITE|0x105692000"),
+        ("674165285", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x604064000"),
+        ("1618893003", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_QUERY_LIMITED_INFORMATION|0x1608892000"),
+        ("1833383057", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1801282000"),
+        ("1249714952", "GENERIC_WRITE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1209614000"),
+        ("1806385204", "MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1804284000"),
+        ("1091770556", "GENERIC_READ|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1001670000"),
+        ("1984521690", "GENERIC_READ|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1904420000"),
+        ("1597622967", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x1505622000"),
+        ("1461104522", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1401004000"),
+        ("1610698477", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|0x1600698000"),
+        ("1466938381", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1404838000"),
+        ("1070541964", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1000440000"),
+        ("77207781", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x05206000"),
+        ("1915141498", "GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1905040000"),
+        ("1969523929", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1909422000"),
+        ("617012253", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|0x605012000"),
+        ("285052226", "GENERIC_READ|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|0x205052000"),
+        ("1704796525", "PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1704696000"),
+        ("912602394", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x900602000"),
+        ("1747865717", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1705864000"),
+        ("235745126", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x205644000"),
+        ("1141867128", "GENERIC_WRITE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x1101866000"),
+        ("351662302", "GENERIC_WRITE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x301662000"),
+        ("754227475", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x704226000"),
+        ("2126953246", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x2104852000"),
+        ("1976047118", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x1904046000"),
+        ("177931599", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x105830000"),
+        ("887485532", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x805484000"),
+        ("1785194208", "GENERIC_READ|PROCESS_VM_OPERATION|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1705094000"),
+        ("344290560", "GENERIC_WRITE|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x304290000"),
+        ("459476238", "GENERIC_WRITE|GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|0x409476000"),
+        ("103949468", "MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x101848000"),
+        ("1596221498", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1504220000"),
+        ("1539405352", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1509404000"),
+        ("1053309108", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1001208000"),
+        ("2124182205", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x2104082000"),
+        ("897664549", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x805664000"),
+        ("954526283", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x904426000"),
+        ("1289864318", "GENERIC_READ|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x1209864000"),
+        ("60507916", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x00406000"),
+        ("1734117937", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1704016000"),
+        ("1696472817", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SUSPEND_RESUME|0x1604472000"),
+        ("34171515", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x04070000"),
+        ("865862317", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x805862000"),
+        ("1832569928", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1800468000"),
+        ("1187762097", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|SYNCHRONIZE|0x1105662000"),
+        ("1254143649", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1204042000"),
+        ("2045600902", "GENERIC_WRITE|PROCESS_CREATE_THREAD|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x2005600000"),
+        ("1330630191", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|0x1300630000"),
+        ("1737340152", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|SYNCHRONIZE|0x1705240000"),
+        ("1167057899", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x1105056000"),
+        ("445953263", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x405852000"),
+        ("1301292566", "PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x1301292000"),
+        ("585731184", "GENERIC_READ|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x505630000"),
+        ("757408398", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x705408000"),
+        ("2084219763", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x2004218000"),
+        ("547950773", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x505850000"),
+        ("2133319525", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x2101218000"),
+        ("1780216685", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x1700216000"),
+        ("1217106911", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1205006000"),
+        ("390813152", "GENERIC_READ|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x300812000"),
+        ("1837803878", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x1805802000"),
+        ("1451818981", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x1401818000"),
+        ("58231388", "GENERIC_WRITE|GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x08230000"),
+        ("1762189957", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1700088000"),
+        ("1519483211", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1509482000"),
+        ("1372159807", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1300058000"),
+        ("2029359305", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x2009258000"),
+        ("1633622989", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x1601622000"),
+        ("1403599241", "MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1401498000"),
+        ("554844820", "GENERIC_WRITE|GENERIC_ALL|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|0x504844000"),
+        ("1916752242", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1904652000"),
+        ("766668555", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x704668000"),
+        ("1619363285", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1609262000"),
+        ("1366077112", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x1304076000"),
+        ("220556011", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_READ|SYNCHRONIZE|0x200456000"),
+        ("1060153245", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1000052000"),
+        ("1532569443", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1500468000"),
+        ("1916802584", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x1904802000"),
+        ("748651336", "GENERIC_WRITE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x708650000"),
+        ("1004123768", "PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1004022000"),
+        ("1225049873", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x1205048000"),
+        ("611036821", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|0x601036000"),
+        ("367391546", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x305290000"),
+        ("133936181", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|SYNCHRONIZE|0x101836000"),
+        ("1732154668", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1700054000"),
+        ("772688363", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x700688000"),
+        ("439427111", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x409426000"),
+        ("2071144513", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x2001044000"),
+        ("1150657438", "GENERIC_WRITE|GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1100656000"),
+        ("79604117", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|0x09604000"),
+        ("2040721943", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x2000620000"),
+        ("2089763262", "GENERIC_READ|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x2009662000"),
+        ("1557386905", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1505286000"),
+        ("1831929556", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1801828000"),
+        ("1275684144", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|0x1205684000"),
+        ("1236510029", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|SYNCHRONIZE|0x1204410000"),
+        ("1306774819", "MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1304674000"),
+        ("1365331764", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1305230000"),
+        ("483015491", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x401014000"),
+        ("1243229056", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_QUERY_LIMITED_INFORMATION|0x1201228000"),
+        ("29076293", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|0x09076000"),
+        ("1964787421", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_WRITE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1904686000"),
+        ("1897934428", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1805834000"),
+        ("2146383657", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x2104282000"),
+        ("148712961", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x108612000"),
+        ("387648241", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|0x305648000"),
+        ("749854496", "GENERIC_WRITE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|0x709854000"),
+        ("1030655110", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x1000654000"),
+        ("1600323774", "PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1600222000"),
+        ("914076494", "GENERIC_ALL|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|0x904076000"),
+        ("1190920256", "GENERIC_READ|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1100820000"),
+        ("126583341", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x104482000"),
+        ("1769050980", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x1709050000"),
+        ("1721051538", "GENERIC_EXECUTE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1701050000"),
+        ("700758876", "PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x700658000"),
+        ("122681195", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x100680000"),
+        ("873344347", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x801244000"),
+        ("2129112044", "GENERIC_EXECUTE|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|SYNCHRONIZE|0x2109012000"),
+        ("300524058", "PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_DUP_HANDLE|SYNCHRONIZE|0x300424000"),
+        ("988402267", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|0x908402000"),
+        ("726668577", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x704668000"),
+        ("1259448162", "GENERIC_WRITE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|0x1209448000"),
+        ("1917452303", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x1905452000"),
+        ("264780331", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x204680000"),
+        ("622583547", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x600482000"),
+        ("251983451", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x201882000"),
+        ("309898402", "PROCESS_CREATE_THREAD|PROCESS_QUERY_INFORMATION|0x309898000"),
+        ("1401496973", "PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x1401496000"),
+        ("371521106", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x301420000"),
+        ("1053064937", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x1001064000"),
+        ("586413951", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x504412000"),
+        ("244804726", "GENERIC_WRITE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x204804000"),
+        ("801518294", "PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x801418000"),
+        ("886181850", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x804080000"),
+        ("1080640838", "GENERIC_READ|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|0x1000640000"),
+        ("757725974", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x705624000"),
+        ("20040542", "GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x00040000"),
+        ("810079856", "GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x800078000"),
+        ("565284033", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|0x505284000"),
+        ("1393184650", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1301084000"),
+        ("692991623", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x600890000"),
+        ("521803376", "GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x501802000"),
+        ("2127122980", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x2105022000"),
+        ("271423411", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x201422000"),
+        ("1543345641", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1501244000"),
+        ("501970713", "PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x501870000"),
+        ("1372135545", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1300034000"),
+        ("682414956", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x600414000"),
+        ("690090890", "GENERIC_READ|GENERIC_ALL|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SUSPEND_RESUME|0x600090000"),
+        ("2018232897", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SUSPEND_RESUME|0x2008232000"),
+        ("829708149", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|SYNCHRONIZE|0x809608000"),
+        ("84118129", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|SYNCHRONIZE|0x04018000"),
+        ("1223125172", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1201024000"),
+        ("1747977030", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1705876000"),
+        ("276662891", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SUSPEND_RESUME|0x204662000"),
+        ("939042498", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|0x909042000"),
+        ("1935134698", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1905034000"),
+        ("1582139060", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1500038000"),
+        ("632131299", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x600030000"),
+        ("21712892", "GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x01612000"),
+        ("792487116", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x700486000"),
+        ("1615277111", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x1605276000"),
+        ("1344218374", "GENERIC_WRITE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x1304218000"),
+        ("84053828", "GENERIC_READ|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x04052000"),
+        ("801594350", "PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x801494000"),
+        ("491634846", "GENERIC_READ|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|0x401634000"),
+        ("994468382", "GENERIC_READ|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x904468000"),
+        ("1892377298", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1800276000"),
+        ("841994048", "GENERIC_WRITE|PROCESS_VM_OPERATION|PROCESS_DUP_HANDLE|SYNCHRONIZE|0x801894000"),
+        ("82573774", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x00472000"),
+        ("2101643891", "PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x2101642000"),
+        ("163107157", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x101006000"),
+        ("1391818351", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x1301818000"),
+        ("1163695819", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x1101694000"),
+        ("60535630", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x00434000"),
+        ("1792493823", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x1700492000"),
+        ("2081283998", "GENERIC_READ|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x2001282000"),
+        ("1487833191", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x1405832000"),
+        ("2091773791", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x2001672000"),
+        ("255807937", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x205806000"),
+        ("1415236291", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|0x1405236000"),
+        ("657224066", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|0x605224000"),
+        ("1994032353", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x1904032000"),
+        ("764362688", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_VM_OPERATION|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x704262000"),
+        ("1942782002", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|SYNCHRONIZE|0x1900682000"),
+        ("704150663", "PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x704050000"),
+        ("1158011212", "GENERIC_WRITE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1108010000"),
+        ("1406384405", "MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1404284000"),
+        ("1908365841", "PROCESS_TERMINATE|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1908264000"),
+        ("753128037", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|SYNCHRONIZE|0x701028000"),
+        ("428869454", "GENERIC_EXECUTE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x408868000"),
+        ("1604133491", "PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1604032000"),
+        ("1040549984", "GENERIC_WRITE|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1000448000"),
+        ("1051190242", "GENERIC_WRITE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1001090000"),
+        ("1413834147", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|0x1401834000"),
+        ("1517834303", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x1505834000"),
+        ("1354148004", "GENERIC_WRITE|GENERIC_ALL|PROCESS_SET_SESSIONID|SYNCHRONIZE|0x1304048000"),
+        ("607765251", "MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x605664000"),
+        ("2092680782", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x2000680000"),
+        ("1447892809", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_SUSPEND_RESUME|0x1405892000"),
+        ("684414619", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x604414000"),
+        ("1560461560", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1500460000"),
+        ("932640503", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x900640000"),
+        ("439130299", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x409030000"),
+        ("46115142", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x04014000"),
+        ("912729412", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x900628000"),
+        ("1821781851", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1801680000"),
+        ("1246115835", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1204014000"),
+        ("1630488107", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_SET_QUOTA|0x1600488000"),
+        ("1292166514", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1200066000"),
+        ("1892443493", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1800442000"),
+        ("239141111", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x209040000"),
+        ("1546978992", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1504878000"),
+        ("71398896", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x01298000"),
+        ("1404427564", "PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1404426000"),
+        ("889998369", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x809898000"),
+        ("1848748550", "GENERIC_WRITE|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1808648000"),
+        ("106032512", "MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x104032000"),
+        ("1295640143", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|0x1205640000"),
+        ("1840308695", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1800208000"),
+        ("1727654416", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_QUERY_INFORMATION|0x1705654000"),
+        ("2003696587", "MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x2001696000"),
+        ("1113415647", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1101414000"),
+        ("1273524354", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1201424000"),
+        ("1538336316", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1508236000"),
+        ("1700966101", "PROCESS_TERMINATE|PROCESS_SET_QUOTA|SYNCHRONIZE|0x1700866000"),
+        ("1223609597", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1201608000"),
+        ("920561416", "GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x900460000"),
+        ("1063699705", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1001698000"),
+        ("247747312", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x205646000"),
+        ("1036298187", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|0x1004298000"),
+        ("489263851", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x409262000"),
+        ("561197720", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x501096000"),
+        ("1376708365", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1304608000"),
+        ("1940816785", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x1900816000"),
+        ("1809619978", "PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x1809618000"),
+        ("173390971", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x101290000"),
+        ("1545580042", "GENERIC_WRITE|PROCESS_CREATE_THREAD|PROCESS_DUP_HANDLE|SYNCHRONIZE|0x1505480000"),
+        ("1786740938", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1704640000"),
+        ("1140684177", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|0x1100684000"),
+        ("386934330", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x304834000"),
+        ("401785530", "PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x401684000"),
+        ("2090224834", "GENERIC_READ|GENERIC_ALL|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|0x2000224000"),
+        ("116342493", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x104242000"),
+        ("601846208", "PROCESS_VM_OPERATION|PROCESS_SET_INFORMATION|0x601846000"),
+        ("1580594091", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|SYNCHRONIZE|0x1500494000"),
+        ("191781379", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x101680000"),
+        ("1053154094", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|SYNCHRONIZE|0x1001054000"),
+        ("1579903328", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1509802000"),
+        ("192512763", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x100412000"),
+        ("626981058", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x604880000"),
+        ("1156485864", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x1104484000"),
+        ("156546979", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x104446000"),
+        ("1929518562", "GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1909418000"),
+        ("940847488", "GENERIC_WRITE|PROCESS_VM_OPERATION|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x900846000"),
+        ("1836016928", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x1804016000"),
+        ("464788554", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x404688000"),
+        ("16623001", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_QUERY_LIMITED_INFORMATION|0x04622000"),
+        ("2109431156", "PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x2109430000"),
+        ("1364923541", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1304822000"),
+        ("1077436001", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|0x1005436000"),
+        ("2072481645", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x2000480000"),
+        ("1726172700", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1704072000"),
+        ("2030979390", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x2000878000"),
+        ("424727170", "GENERIC_EXECUTE|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x404626000"),
+        ("1975298636", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x1905298000"),
+        ("191176279", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x101076000"),
+        ("619078920", "GENERIC_ALL|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x609078000"),
+        ("748612962", "GENERIC_WRITE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x708612000"),
+        ("1706917550", "MAXIMUM_ALLOWED|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1704816000"),
+        ("994279510", "GENERIC_READ|GENERIC_ALL|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x904278000"),
+        ("1382672776", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x1300672000"),
+        ("1582391976", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1500290000"),
+        ("968650301", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x908650000"),
+        ("459379569", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x409278000"),
+        ("1094674295", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|0x1004674000"),
+        ("1363593570", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1301492000"),
+        ("1858085275", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1808084000"),
+        ("154536083", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|SYNCHRONIZE|0x104436000"),
+        ("790256038", "GENERIC_READ|GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|0x700256000"),
+        ("1301892066", "PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|0x1301892000"),
+        ("481324448", "GENERIC_READ|PROCESS_VM_OPERATION|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x401224000"),
+        ("694260801", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SUSPEND_RESUME|0x604260000"),
+        ("399942591", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x309842000"),
+        ("1623164791", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1601064000"),
+        ("816613949", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x804612000"),
+        ("291140556", "GENERIC_READ|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x201040000"),
+        ("196052482", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|0x104052000"),
+        ("451645604", "GENERIC_WRITE|GENERIC_ALL|PROCESS_SET_SESSIONID|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x401644000"),
+        ("449455772", "GENERIC_WRITE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x409454000"),
+        ("1340803950", "GENERIC_WRITE|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x1300802000"),
+        ("354088291", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|0x304088000"),
+        ("329292602", "GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x309292000"),
+        ("516399785", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x504298000"),
+        ("1638126819", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1608026000"),
+        ("924280208", "GENERIC_EXECUTE|PROCESS_VM_OPERATION|PROCESS_SET_INFORMATION|0x904280000"),
+        ("229573789", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x209472000"),
+        ("606174283", "MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x604074000"),
+        ("70366671", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x00266000"),
+        ("213674524", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x201674000"),
+        ("646002810", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_VM_READ|PROCESS_SUSPEND_RESUME|0x604002000"),
+        ("260362977", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x200262000"),
+        ("1133056099", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|0x1101056000"),
+        ("772838439", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_QUERY_INFORMATION|0x700838000"),
+        ("165759455", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x105658000"),
+        ("27126119", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_SET_QUOTA|SYNCHRONIZE|0x05026000"),
+        ("137744407", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x105644000"),
+        ("743051046", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_QUERY_LIMITED_INFORMATION|0x701050000"),
+        ("157994872", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x105894000"),
+        ("1181897857", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x1101896000"),
+        ("1861067187", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x1801066000"),
+        ("1069012256", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|0x1009012000"),
+        ("92579651", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x00478000"),
+        ("346602784", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x304602000"),
+        ("208584937", "PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x208484000"),
+        ("429000734", "GENERIC_EXECUTE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x409000000"),
+        ("195215532", "GENERIC_READ|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x105214000"),
+        ("1580994354", "GENERIC_READ|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1500894000"),
+        ("1202999397", "MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1200898000"),
+        ("73652661", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x01652000"),
+        ("1302073821", "MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x1300072000"),
+        ("54638793", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x04638000"),
+        ("1138832226", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|0x1108832000"),
+        ("1589366670", "GENERIC_READ|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1509266000"),
+        ("1682176398", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1600076000"),
+        ("933618138", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|0x901618000"),
+        ("2101818383", "PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x2101818000"),
+        ("741261595", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x701260000"),
+        ("1346976549", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1304876000"),
+        ("331574817", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x301474000"),
+        ("1808120958", "PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1808020000"),
+        ("867689992", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x805688000"),
+        ("1823183944", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1801082000"),
+        ("849766565", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x809666000"),
+        ("211923018", "GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x201822000"),
+        ("1609369623", "PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1609268000"),
+        ("12327335", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x00226000"),
+        ("1778168282", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1708068000"),
+        ("1391924876", "GENERIC_READ|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1301824000"),
+        ("1822504223", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1800404000"),
+        ("1288012251", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|0x1208012000"),
+        ("1598689416", "GENERIC_READ|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1508688000"),
+        ("1328909000", "GENERIC_EXECUTE|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1308808000"),
+        ("745888420", "GENERIC_WRITE|PROCESS_VM_WRITE|PROCESS_QUERY_INFORMATION|0x705888000"),
+        ("1589207290", "GENERIC_READ|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1509206000"),
+        ("200884910", "PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x200884000"),
+        ("1871757453", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1801656000"),
+        ("2049604577", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x2009604000"),
+        ("1002940987", "MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1000840000"),
+        ("610990674", "GENERIC_ALL|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x600890000"),
+        ("472550815", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x400450000"),
+        ("834852218", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_SET_INFORMATION|0x804852000"),
+        ("843588054", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|SYNCHRONIZE|0x801488000"),
+        ("833713052", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x801612000"),
+        ("810702231", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x800602000"),
+        ("395059405", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x305058000"),
+        ("597228819", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_SUSPEND_RESUME|0x505228000"),
+        ("2092280889", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_CREATE_PROCESS|PROCESS_SUSPEND_RESUME|0x2000280000"),
+        ("1861894421", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_WRITE|PROCESS_QUERY_INFORMATION|0x1801894000"),
+        ("366114655", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x304014000"),
+        ("199670800", "GENERIC_READ|GENERIC_ALL|PROCESS_SUSPEND_RESUME|0x109670000"),
+        ("300674835", "PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|0x300674000"),
+        ("1147356383", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1105256000"),
+        ("1748579737", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1708478000"),
+        ("1712804307", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x1700804000"),
+        ("1130539496", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1100438000"),
+        ("725864593", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x705864000"),
+        ("1167680044", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|0x1105680000"),
+        ("804517455", "PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x804416000"),
+        ("954110717", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x904010000"),
+        ("1379275379", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1309274000"),
+        ("1968947408", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_VM_OPERATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1908846000"),
+        ("1160006128", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|0x1100006000"),
+        ("953736164", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|SYNCHRONIZE|0x901636000"),
+        ("80647989", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x00646000"),
+        ("1266331504", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1204230000"),
+        ("161953499", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x101852000"),
+        ("115902383", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x105802000"),
+        ("1861924586", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1801824000"),
+        ("1647397954", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1605296000"),
+        ("230406867", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|0x200406000"),
+        ("544385473", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x504284000"),
+        ("1884981976", "GENERIC_READ|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1804880000"),
+        ("1020117887", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1000016000"),
+        ("1435362908", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1405262000"),
+        ("2114837523", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x2104836000"),
+        ("1424790115", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|SYNCHRONIZE|0x1404690000"),
+        ("1243523055", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1201422000"),
+        ("317411350", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x305410000"),
+        ("1273814655", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x1201814000"),
+        ("770852831", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|0x700852000"),
+        ("989699624", "GENERIC_READ|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x909698000"),
+        ("2132491855", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x2100490000"),
+        ("261432591", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x201432000"),
+        ("1696291853", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x1604290000"),
+        ("1327059379", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1305058000"),
+        ("909418454", "PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|0x909418000"),
+        ("1022037213", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1000036000"),
+        ("2085934072", "GENERIC_READ|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|SYNCHRONIZE|0x2005834000"),
+        ("1694299483", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1604298000"),
+        ("1833849997", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x1801848000"),
+        ("662003483", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x600002000"),
+        ("1280883998", "GENERIC_READ|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x1200882000"),
+        ("25886731", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x05886000"),
+        ("1456376285", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1404276000"),
+        ("368416113", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_SET_QUOTA|0x308416000"),
+        ("1908055305", "PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1908054000"),
+        ("834261141", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x804260000"),
+        ("1694446408", "GENERIC_READ|GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_QUERY_INFORMATION|0x1604446000"),
+        ("1003248889", "MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_CREATE_PROCESS|PROCESS_SUSPEND_RESUME|0x1001248000"),
+        ("1089298659", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x1009298000"),
+        ("367202533", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x305202000"),
+        ("1478013381", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1408012000"),
+        ("241184816", "GENERIC_WRITE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x201084000"),
+        ("1037242726", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x1005242000"),
+        ("1126563767", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1104462000"),
+        ("1378591900", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1308490000"),
+        ("194876566", "GENERIC_READ|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x104876000"),
+        ("213352070", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|SYNCHRONIZE|0x201252000"),
+        ("2080139408", "GENERIC_READ|PROCESS_VM_OPERATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x2000038000"),
+        ("1821024003", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|0x1801024000"),
+        ("83103662", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x01002000"),
+        ("1860783988", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_VM_OPERATION|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1800682000"),
+        ("814550262", "GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x804450000"),
+        ("1660189917", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1600088000"),
+        ("1008740912", "PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1008640000"),
+        ("1621725215", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1601624000"),
+        ("1315011539", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1305010000"),
+        ("1724637354", "GENERIC_EXECUTE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1704636000"),
+        ("857101387", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x805000000"),
+        ("967871826", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x905870000"),
+        ("282542939", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x200442000"),
+        ("1890430448", "GENERIC_READ|GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|0x1800430000"),
+        ("327291644", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x305290000"),
+        ("819214646", "GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x809214000"),
+        ("1723228464", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|0x1701228000"),
+        ("1975458188", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|0x1905458000"),
+        ("257032850", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|0x205032000"),
+        ("149664605", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x109664000"),
+        ("210523018", "GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x200422000"),
+        ("144336271", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x104236000"),
+        ("1407745805", "MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1405644000"),
+        ("247923680", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x205822000"),
+        ("2039664858", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|0x2009664000"),
+        ("1429687550", "GENERIC_EXECUTE|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1409686000"),
+        ("475605407", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x405604000"),
+        ("1952608095", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|0x1900608000"),
+        ("340989753", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x300888000"),
+        ("1141217271", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1101216000"),
+        ("1871536634", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1801436000"),
+        ("839444475", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|0x809444000"),
+        ("366813358", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x304812000"),
+        ("973578010", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_READ|SYNCHRONIZE|0x901478000"),
+        ("830934180", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|SYNCHRONIZE|0x800834000"),
+        ("189962031", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_VM_WRITE|SYNCHRONIZE|0x109862000"),
+        ("166237602", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x104236000"),
+        ("1855959270", "GENERIC_WRITE|GENERIC_ALL|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1805858000"),
+        ("1896616781", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x1804616000"),
+        ("379109105", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x309008000"),
+        ("356856700", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x304856000"),
+        ("2015323915", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x2005222000"),
+        ("2067066010", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_VM_READ|0x2005066000"),
+        ("1920201720", "GENERIC_EXECUTE|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1900200000"),
+        ("440240839", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|0x400240000"),
+        ("570605629", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x500604000"),
+        ("356997996", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x304896000"),
+        ("1611882342", "GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x1601882000"),
+        ("442381815", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x400280000"),
+        ("739932976", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x709832000"),
+        ("1685542570", "GENERIC_READ|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1605442000"),
+        ("1335698859", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|0x1305698000"),
+        ("341668417", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_QUERY_INFORMATION|0x301668000"),
+        ("1203447431", "MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1201446000"),
+        ("312437115", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x300436000"),
+        ("575269730", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x505268000"),
+        ("1826189506", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1804088000"),
+        ("1024816049", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_DUP_HANDLE|0x1004816000"),
+        ("463839911", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x401838000"),
+        ("1675719950", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1605618000"),
+        ("175849954", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x105848000"),
+        ("770538676", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x700438000"),
+        ("33734207", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x01634000"),
+        ("1901405226", "PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1901404000"),
+        ("1339681769", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1309680000"),
+        ("1804496580", "PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x1804496000"),
+        ("821345049", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_DUP_HANDLE|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x801244000"),
+        ("1500224081", "PROCESS_TERMINATE|PROCESS_CREATE_PROCESS|0x1500224000"),
+        ("1442928563", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1400828000"),
+        ("57676652", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x05676000"),
+        ("696040701", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x604040000"),
+        ("2032396391", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x2000296000"),
+        ("1819565841", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1809464000"),
+        ("1964550573", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1904450000"),
+        ("356260624", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x304260000"),
+        ("1218539528", "GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1208438000"),
+        ("1213051450", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1201050000"),
+        ("232247987", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x200246000"),
+        ("1141229462", "GENERIC_WRITE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1101228000"),
+        ("980187365", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x900086000"),
+        ("1972401578", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1900400000"),
+        ("558477836", "GENERIC_WRITE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x508476000"),
+        ("962896748", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x900896000"),
+        ("550888533", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x500888000"),
+        ("443491399", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x401490000"),
+        ("1059988539", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1009888000"),
+        ("1021128510", "GENERIC_EXECUTE|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1001028000"),
+        ("91246680", "GENERIC_READ|GENERIC_ALL|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x01246000"),
+        ("1197354345", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1105254000"),
+        ("471585730", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x401484000"),
+        ("2105798650", "PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x2105698000"),
+        ("384828627", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x304828000"),
+        ("276875192", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x204874000"),
+        ("802033288", "MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x800032000"),
+        ("1960746169", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|SYNCHRONIZE|0x1900646000"),
+        ("2049976884", "GENERIC_WRITE|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x2009876000"),
+        ("1545073478", "GENERIC_WRITE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1505072000"),
+        ("459329620", "GENERIC_WRITE|GENERIC_ALL|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x409228000"),
+        ("1468566500", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1408466000"),
+        ("809971131", "PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x809870000"),
+        ("1523454425", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_QUERY_INFORMATION|0x1501454000"),
+        ("1474943236", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1404842000"),
+        ("685965380", "GENERIC_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x605864000"),
+        ("1822679782", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1800678000"),
+        ("350506723", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x300406000"),
+        ("818726029", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|SYNCHRONIZE|0x808626000"),
+        ("1301306001", "PROCESS_TERMINATE|SYNCHRONIZE|0x1301206000"),
+        ("34781400", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x04680000"),
+        ("1485564977", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1405464000"),
+        ("711775667", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x701674000"),
+        ("1244595662", "GENERIC_WRITE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1204494000"),
+        ("1246733003", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1204632000"),
+        ("685512818", "GENERIC_READ|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x605412000"),
+        ("411601445", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x401600000"),
+        ("488649640", "GENERIC_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x408648000"),
+        ("133194239", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x101094000"),
+        ("1038520836", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1008420000"),
+        ("995511586", "GENERIC_READ|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x905410000"),
+        ("935730715", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x905630000"),
+        ("229023192", "GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x209022000"),
+        ("555460595", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x505460000"),
+        ("1575530084", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|SYNCHRONIZE|0x1505430000"),
+        ("120908616", "GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x100808000"),
+        ("1096038208", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_SET_INFORMATION|0x1004038000"),
+        ("538967747", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x508866000"),
+        ("859170957", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x809070000"),
+        ("1904024871", "PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|0x1904024000"),
+        ("1797947481", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1705846000"),
+        ("1608157461", "PROCESS_TERMINATE|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1608056000"),
+        ("319889860", "GENERIC_ALL|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x309888000"),
+        ("1390521113", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1300420000"),
+        ("829677080", "GENERIC_EXECUTE|PROCESS_CREATE_PROCESS|PROCESS_QUERY_LIMITED_INFORMATION|0x809676000"),
+        ("76431615", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x04430000"),
+        ("1848786529", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1808686000"),
+        ("2042807238", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x2000806000"),
+        ("1344802961", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x1304802000"),
+        ("1816820713", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x1804820000"),
+        ("1545942759", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1505842000"),
+        ("228033205", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x208032000"),
+        ("1650206087", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|0x1600206000"),
+        ("696349549", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x604248000"),
+        ("593066781", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x501066000"),
+        ("1288496058", "GENERIC_READ|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_DUP_HANDLE|0x1208496000"),
+        ("1528998109", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_SET_QUOTA|SYNCHRONIZE|0x1508898000"),
+        ("1871554237", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1801454000"),
+        ("448200266", "GENERIC_WRITE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|0x408200000"),
+        ("374681572", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x304680000"),
+        ("777446270", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|0x705446000"),
+        ("1333027448", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1301026000"),
+        ("1688917572", "GENERIC_READ|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1608816000"),
+        ("538265149", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x508264000"),
+        ("1111023481", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1101022000"),
+        ("861844026", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|0x801844000"),
+        ("1395195833", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1305094000"),
+        ("185121214", "GENERIC_READ|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x105020000"),
+        ("978287779", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x908286000"),
+        ("367198284", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x305098000"),
+        ("1018466364", "GENERIC_ALL|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x1008466000"),
+        ("1079648965", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x1009648000"),
+        ("1114281844", "GENERIC_ALL|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x1104280000"),
+        ("82921898", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x00820000"),
+        ("324826542", "GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x304826000"),
+        ("1627557356", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1605456000"),
+        ("520873171", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x500872000"),
+        ("1204217227", "PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1204216000"),
+        ("109718569", "PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x109618000"),
+        ("851411367", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x801410000"),
+        ("1089597010", "GENERIC_READ|PROCESS_VM_READ|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1009496000"),
+        ("987092626", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x905092000"),
+        ("502946650", "MAXIMUM_ALLOWED|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x500846000"),
+        ("333906486", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x301806000"),
+        ("1122074929", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x1100074000"),
+        ("1623504983", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1601404000"),
+        ("1156733630", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1104632000"),
+        ("2012968095", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|SYNCHRONIZE|0x2000868000"),
+        ("740616426", "GENERIC_WRITE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_QUERY_INFORMATION|0x700616000"),
+        ("1522122185", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|SYNCHRONIZE|0x1500022000"),
+        ("382138433", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x300038000"),
+        ("382557721", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x300456000"),
+        ("25033469", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x05032000"),
+        ("1260670865", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|0x1200670000"),
+        ("528224062", "GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|0x508224000"),
+        ("1586795421", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_WRITE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1504694000"),
+        ("1368180763", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1308080000"),
+        ("1538816400", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_QUERY_INFORMATION|0x1508816000"),
+        ("1100037623", "PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1100036000"),
+        ("1678905389", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1608804000"),
+        ("494542302", "GENERIC_READ|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x404442000"),
+        ("1332647492", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1300646000"),
+        ("29878354", "GENERIC_EXECUTE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x09878000"),
+        ("1678016826", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|0x1608016000"),
+        ("1435775412", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1405674000"),
+        ("849697428", "GENERIC_WRITE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x809696000"),
+        ("1176886247", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|0x1104886000"),
+        ("522965915", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x500864000"),
+        ("1728613716", "GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1708612000"),
+        ("1100385085", "PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1100284000"),
+        ("489061083", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|PROCESS_QUERY_LIMITED_INFORMATION|0x409060000"),
+        ("532169455", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x500068000"),
+        ("1965243778", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1905242000"),
+        ("1188551695", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1108450000"),
+        ("1680141886", "GENERIC_READ|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1600040000"),
+        ("541401463", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x501400000"),
+        ("1204618814", "PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SUSPEND_RESUME|0x1204618000"),
+        ("1782411972", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x1700410000"),
+        ("1132558580", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1100458000"),
+        ("913491501", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x901490000"),
+        ("1108675742", "PROCESS_CREATE_THREAD|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1108674000"),
+        ("748457469", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x708456000"),
+        ("852968119", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_SET_QUOTA|SYNCHRONIZE|0x800868000"),
+        ("1894573565", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1804472000"),
+        ("2097969126", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x2005868000"),
+        ("1783837252", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1701836000"),
+        ("1397874890", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SUSPEND_RESUME|0x1305874000"),
+        ("1557813593", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1505812000"),
+        ("1115213131", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x1105212000"),
+        ("816579405", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x804478000"),
+        ("315740746", "GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x305640000"),
+        ("1531933279", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1501832000"),
+        ("1517513919", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1505412000"),
+        ("269107628", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x209006000"),
+        ("364557445", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x304456000"),
+        ("206021245", "MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x204020000"),
+        ("1607180250", "MAXIMUM_ALLOWED|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1605080000"),
+        ("640102841", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x600002000"),
+        ("877250438", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_QUERY_INFORMATION|0x805250000"),
+        ("734986151", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|SYNCHRONIZE|0x704886000"),
+        ("1184555905", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1104454000"),
+        ("597370032", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|SYNCHRONIZE|0x505270000"),
+        ("2030866860", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|0x2000866000"),
+        ("554361689", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x504260000"),
+        ("1195697317", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1105696000"),
+        ("319552839", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x309452000"),
+        ("2022995357", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x2000894000"),
+        ("1751863755", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1701862000"),
+        ("377239959", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x305238000"),
+        ("1662779185", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1600678000"),
+        ("979898473", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|0x909898000"),
+        ("539891366", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x509890000"),
+        ("25023616", "GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x05022000"),
+        ("2083026633", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x2001026000"),
+        ("790400981", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x700400000"),
+        ("1467915600", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1405814000"),
+        ("1978075698", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1908074000"),
+        ("392962503", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x300862000"),
+        ("898887873", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x808886000"),
+        ("1404070897", "PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SUSPEND_RESUME|0x1404070000"),
+        ("361596496", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x301496000"),
+        ("1787307902", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1705206000"),
+        ("647040011", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_READ|0x605040000"),
+        ("1141777658", "GENERIC_WRITE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1101676000"),
+        ("944020979", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x904020000"),
+        ("1346932181", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|SYNCHRONIZE|0x1304832000"),
+        ("1094779966", "GENERIC_READ|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1004678000"),
+        ("1952334559", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1900234000"),
+        ("1362003934", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x1300002000"),
+        ("1037494316", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x1005494000"),
+        ("1405362779", "PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1405262000"),
+        ("1860066373", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x1800066000"),
+        ("2132523882", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x2100422000"),
+        ("738255118", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x708254000"),
+        ("1662510247", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1600410000"),
+        ("2031526269", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x2001426000"),
+        ("1867183210", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_VM_READ|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1805082000"),
+        ("645800892", "GENERIC_WRITE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SUSPEND_RESUME|0x605800000"),
+        ("1003740150", "MAXIMUM_ALLOWED|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|SYNCHRONIZE|0x1001640000"),
+        ("1055628666", "GENERIC_WRITE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x1005628000"),
+        ("659933080", "GENERIC_WRITE|GENERIC_ALL|PROCESS_CREATE_PROCESS|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x609832000"),
+        ("684066895", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SUSPEND_RESUME|0x604066000"),
+        ("356812784", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x304812000"),
+        ("516123261", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x504022000"),
+        ("565094829", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|0x505094000"),
+        ("684344290", "GENERIC_READ|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x604244000"),
+        ("1804532626", "PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1804432000"),
+        ("1606468471", "MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|0x1604468000"),
+        ("83280114", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|0x01280000"),
+        ("2023139444", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x2001038000"),
+        ("2117744710", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x2105644000"),
+        ("2010937099", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x2000836000"),
+        ("427726462", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x405626000"),
+        ("1340108602", "GENERIC_WRITE|PROCESS_CREATE_THREAD|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1300008000"),
+        ("1817900269", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1805800000"),
+        ("1911110210", "GENERIC_ALL|PROCESS_VM_READ|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1901010000"),
+        ("483575206", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x401474000"),
+        ("603499700", "MAXIMUM_ALLOWED|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x601498000"),
+        ("1965604099", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|0x1905604000"),
+        ("1532502497", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1500402000"),
+        ("2051600649", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x2001600000"),
+        ("269907490", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x209806000"),
+        ("1529033695", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1509032000"),
+        ("1186211386", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1104210000"),
+        ("395825498", "GENERIC_READ|GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x305824000"),
+        ("259046430", "GENERIC_WRITE|GENERIC_ALL|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_QUERY_INFORMATION|0x209046000"),
+        ("601895718", "PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x601894000"),
+        ("2102199354", "MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x2100098000"),
+        ("124760607", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x104660000"),
+        ("1942803459", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1900802000"),
+        ("506862253", "MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|0x504862000"),
+        ("299008685", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x209008000"),
+        ("657540802", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x605440000"),
+        ("1796289284", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1704288000"),
+        ("833258878", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|0x801258000"),
+        ("1332868425", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_QUERY_INFORMATION|0x1300868000"),
+        ("1742018494", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|0x1700018000"),
+        ("1742833730", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1700832000"),
+        ("1973032637", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x1901032000"),
+        ("1070595772", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1000494000"),
+        ("878364099", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|SYNCHRONIZE|0x808264000"),
+        ("1707356155", "MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|SYNCHRONIZE|0x1705256000"),
+        ("1088231571", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1008230000"),
+        ("951562502", "GENERIC_WRITE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x901462000"),
+        ("1991949955", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1901848000"),
+        ("1384969969", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1304868000"),
+        ("536154001", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|SYNCHRONIZE|0x504054000"),
+        ("1847708093", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|SYNCHRONIZE|0x1805608000"),
+        ("1712885493", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1700884000"),
+        ("1510296693", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x1500296000"),
+        ("377796659", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x305696000"),
+        ("877953472", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x805852000"),
+        ("1428778284", "GENERIC_EXECUTE|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1408678000"),
+        ("403464405", "MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_QUERY_INFORMATION|0x401464000"),
+        ("210895876", "GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x200894000"),
+        ("673780088", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_CREATE_PROCESS|SYNCHRONIZE|0x601680000"),
+        ("115201183", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x105200000"),
+        ("1195330901", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1105230000"),
+        ("809981252", "PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x809880000"),
+        ("1569955225", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1509854000"),
+        ("1373542964", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1301442000"),
+        ("1353821162", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x1301820000"),
+        ("1234356368", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1204256000"),
+        ("1162813953", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x1100812000"),
+        ("1250956022", "GENERIC_WRITE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|SYNCHRONIZE|0x1200856000"),
+        ("1701489945", "PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x1701488000"),
+        ("101585976", "PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x101484000"),
+        ("47270757", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x05270000"),
+        ("765708137", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|SYNCHRONIZE|0x705608000"),
+        ("1180747702", "GENERIC_READ|PROCESS_CREATE_THREAD|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1100646000"),
+        ("1583236670", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x1501236000"),
+        ("1804178072", "PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|SYNCHRONIZE|0x1804078000"),
+        ("131385825", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x101284000"),
+        ("1177767648", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1105666000"),
+        ("464929616", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x404828000"),
+        ("1817448852", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|0x1805448000"),
+        ("1413026393", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x1401026000"),
+        ("186804430", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_QUERY_INFORMATION|0x104804000"),
+        ("875273283", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x805272000"),
+        ("1153186605", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1101086000"),
+        ("673697196", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x601696000"),
+        ("1508770836", "PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1508670000"),
+        ("481221144", "GENERIC_READ|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x401220000"),
+        ("593175787", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x501074000"),
+        ("1904169133", "PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1904068000"),
+        ("1539670314", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x1509670000"),
+        ("438484623", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x408484000"),
+        ("856834056", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|0x804834000"),
+        ("1632691004", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_QUERY_LIMITED_INFORMATION|0x1600690000"),
+        ("1871367602", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1801266000"),
+        ("2055497681", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x2005496000"),
+        ("1140730390", "GENERIC_WRITE|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1100630000"),
+        ("153986029", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|SYNCHRONIZE|0x101886000"),
+        ("522998182", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|SYNCHRONIZE|0x500898000"),
+        ("354622520", "GENERIC_WRITE|GENERIC_ALL|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x304622000"),
+        ("887277897", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x805276000"),
+        ("392026810", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_READ|PROCESS_SUSPEND_RESUME|0x300026000"),
+        ("148755710", "GENERIC_WRITE|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x108654000"),
+        ("1339298651", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x1309298000"),
+        ("925856000", "GENERIC_EXECUTE|0x905856000"),
+        ("1250223190", "GENERIC_WRITE|GENERIC_ALL|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x1200222000"),
+        ("2063299869", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x2001298000"),
+        ("69209501", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x09208000"),
+        ("423300616", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x401200000"),
+        ("592314783", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x500214000"),
+        ("1850988838", "GENERIC_WRITE|GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1800888000"),
+        ("554186415", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x504086000"),
+        ("81757988", "GENERIC_READ|PROCESS_VM_OPERATION|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x01656000"),
+        ("1299239010", "GENERIC_READ|GENERIC_ALL|PROCESS_VM_READ|PROCESS_QUERY_LIMITED_INFORMATION|0x1209238000"),
+        ("1785335235", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1705234000"),
+        ("1353717381", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1301616000"),
+        ("722060465", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|0x700060000"),
+        ("251717666", "GENERIC_WRITE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x201616000"),
+        ("805264845", "PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|0x805264000"),
+        ("483350190", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|SYNCHRONIZE|0x401250000"),
+        ("1820899431", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1800898000"),
+        ("1144252005", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|0x1104252000"),
+        ("922233143", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x900232000"),
+        ("1868992605", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1808892000"),
+        ("312665475", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x300664000"),
+        ("553361907", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x501260000"),
+        ("1704716776", "PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1704616000"),
+        ("770402386", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x700402000"),
+        ("1947156599", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1905056000"),
+        ("1526145557", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1504044000"),
+        ("833261807", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x801260000"),
+        ("1712409078", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_LIMITED_INFORMATION|0x1700408000"),
+        ("1444203172", "GENERIC_WRITE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x1404202000"),
+        ("1722966292", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1700866000"),
+        ("771766837", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x701666000"),
+        ("107040959", "MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x105040000"),
+        ("1080940180", "GENERIC_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|SYNCHRONIZE|0x1000840000"),
+        ("878917361", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x808816000"),
+        ("1627700135", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|SYNCHRONIZE|0x1605600000"),
+        ("2117772083", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|SYNCHRONIZE|0x2105672000"),
+        ("364731383", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x304630000"),
+        ("713215105", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x701214000"),
+        ("927376922", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x905276000"),
+        ("773869300", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x701868000"),
+        ("961588598", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x901488000"),
+        ("365189606", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x305088000"),
+        ("921363402", "GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x901262000"),
+        ("1128764096", "GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|SYNCHRONIZE|0x1108664000"),
+        ("747804336", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x705804000"),
+        ("1464316771", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1404216000"),
+        ("1595926140", "GENERIC_READ|GENERIC_ALL|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|SYNCHRONIZE|0x1505826000"),
+        ("528954080", "GENERIC_EXECUTE|PROCESS_CREATE_PROCESS|SYNCHRONIZE|0x508854000"),
+        ("78038117", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|0x08038000"),
+        ("314756354", "GENERIC_ALL|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x304656000"),
+        ("943391703", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x901290000"),
+        ("111357832", "GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x101256000"),
+        ("1857611434", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1805610000"),
+        ("42763864", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x00662000"),
+        ("741583570", "GENERIC_WRITE|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x701482000"),
+        ("220088080", "GENERIC_EXECUTE|PROCESS_CREATE_PROCESS|0x200088000"),
+        ("1776385605", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1704284000"),
+        ("512519713", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x500418000"),
+        ("1987565404", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1905464000"),
+        ("715021701", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x705020000"),
+        ("1894581072", "GENERIC_READ|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1804480000"),
+        ("450655447", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x400654000"),
+        ("891108836", "GENERIC_READ|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x801008000"),
+        ("851701629", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x801600000"),
+        ("207110779", "MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x205010000"),
+        ("1273453236", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1201452000"),
+        ("1197531444", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1105430000"),
+        ("1904062031", "PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_VM_WRITE|0x1904062000"),
+        ("847215715", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x805214000"),
+        ("969501451", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x909400000"),
+        ("949153439", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x909052000"),
+        ("1780520193", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|SYNCHRONIZE|0x1700420000"),
+        ("818622392", "GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x808622000"),
+        ("1440567422", "GENERIC_WRITE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1400466000"),
+        ("719485750", "GENERIC_ALL|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x709484000"),
+        ("1194612387", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x1104612000"),
+        ("299450166", "GENERIC_READ|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|0x209450000"),
+        ("216511196", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x204410000"),
+        ("1416061360", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1404060000"),
+        ("241891162", "GENERIC_WRITE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x201890000"),
+        ("1042369506", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1000268000"),
+        ("1525346484", "GENERIC_EXECUTE|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1505246000"),
+        ("450299132", "GENERIC_WRITE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x400298000"),
+        ("1488037096", "GENERIC_READ|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_LIMITED_INFORMATION|0x1408036000"),
+        ("109780657", "PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x109680000"),
+        ("601302387", "PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x601202000"),
+        ("1925122333", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1905022000"),
+        ("2031988169", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|SYNCHRONIZE|0x2001888000"),
+        ("1689032678", "GENERIC_READ|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x1609032000"),
+        ("1586798044", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|SYNCHRONIZE|0x1504698000"),
+        ("1842551024", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1800450000"),
+        ("533613740", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x501612000"),
+        ("494866706", "GENERIC_READ|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x404866000"),
+        ("2071705814", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x2001604000"),
+        ("1613428104", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_SET_QUOTA|0x1601428000"),
+        ("1326477822", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x1304476000"),
+        ("1498307714", "GENERIC_READ|GENERIC_ALL|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1408206000"),
+        ("1832703550", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1800602000"),
+        ("859647443", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x809646000"),
+        ("462715496", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x400614000"),
+        ("158196822", "GENERIC_WRITE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x108096000"),
+        ("1352462194", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|0x1300462000"),
+        ("1702192279", "MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1700092000"),
+        ("1035093969", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x1005092000"),
+        ("865792359", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x805692000"),
+        ("130775341", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x100674000"),
+        ("739567864", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x709466000"),
+        ("1723488544", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x1701488000"),
+        ("1802294947", "MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x1800294000"),
+        ("347906174", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|SYNCHRONIZE|0x305806000"),
+        ("1095771330", "GENERIC_READ|GENERIC_ALL|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1005670000"),
+        ("2086885593", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x2004884000"),
+        ("1755196584", "GENERIC_WRITE|GENERIC_ALL|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1705096000"),
+        ("2102540087", "MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|SYNCHRONIZE|0x2100440000"),
+        ("937553735", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x905452000"),
+        ("932810953", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x900810000"),
+        ("960339945", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x900238000"),
+        ("958037407", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x908036000"),
+        ("1131450844", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|0x1101450000"),
+        ("1035009616", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1005008000"),
+        ("2046057562", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x2004056000"),
+        ("2001256257", "PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|0x2001256000"),
+        ("2005454179", "PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|0x2005454000"),
+        ("1379411667", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1309410000"),
+        ("1037245048", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_DUP_HANDLE|PROCESS_QUERY_LIMITED_INFORMATION|0x1005244000"),
+        ("1611749423", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1601648000"),
+        ("497029287", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x405028000"),
+        ("55391992", "GENERIC_WRITE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x05290000"),
+        ("2128785793", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x2108684000"),
+        ("1979813407", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1909812000"),
+        ("1764831989", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x1704830000"),
+        ("1125619765", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1105618000"),
+        ("234225013", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_QUERY_LIMITED_INFORMATION|0x204224000"),
+        ("688191890", "GENERIC_READ|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x608090000"),
+        ("291341771", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x201240000"),
+        ("749899398", "GENERIC_WRITE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x709898000"),
+        ("792922838", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x700822000"),
+        ("369673321", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x309672000"),
+        ("1267022156", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|0x1205022000"),
+        ("779089328", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x709088000"),
+        ("273626525", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x201626000"),
+        ("17723861", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x05622000"),
+        ("1388324056", "GENERIC_READ|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|SYNCHRONIZE|0x1308224000"),
+        ("1520110298", "GENERIC_EXECUTE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1500010000"),
+        ("1074743176", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1004642000"),
+        ("326017167", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x304016000"),
+        ("280369729", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x200268000"),
+        ("1585811803", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x1505810000"),
+        ("743811060", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_LIMITED_INFORMATION|0x701810000"),
+        ("1919664078", "GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|0x1909664000"),
+        ("953516977", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x901416000"),
+        ("642355614", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x600254000"),
+        ("802284511", "MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x800284000"),
+        ("281181995", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x201080000"),
+        ("688041442", "GENERIC_READ|PROCESS_CREATE_THREAD|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x608040000"),
+        ("362861663", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x300860000"),
+        ("1624644364", "GENERIC_EXECUTE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x1604644000"),
+        ("1282813146", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x1200812000"),
+        ("425680147", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|0x405680000"),
+        ("1143717664", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1101616000"),
+        ("2123870975", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x2101870000"),
+        ("1901686497", "PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|0x1901686000"),
+        ("523337176", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x501236000"),
+        ("54957794", "GENERIC_WRITE|GENERIC_ALL|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x04856000"),
+        ("352079323", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x300078000"),
+        ("1096372859", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1004272000"),
+        ("945496950", "GENERIC_WRITE|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x905496000"),
+        ("940330951", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x900230000"),
+        ("1015885385", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1005884000"),
+        ("1177147289", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1105046000"),
+        ("1482387610", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_VM_READ|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1400286000"),
+        ("1518968164", "GENERIC_ALL|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|SYNCHRONIZE|0x1508868000"),
+        ("1470691864", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x1400690000"),
+        ("384786700", "GENERIC_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x304686000"),
+        ("552158764", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x500058000"),
+        ("867710374", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x805610000"),
+        ("779456798", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x709456000"),
+        ("894246053", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_DUP_HANDLE|0x804246000"),
+        ("1662959863", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1600858000"),
+        ("510544737", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x500444000"),
+        ("2098973401", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x2008872000"),
+        ("219176206", "GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x209076000"),
+        ("3644142", "MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|0x01644000"),
+        ("1797107754", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1705006000"),
+        ("832949900", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x800848000"),
+        ("803645543", "MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x801644000"),
+        ("399761204", "GENERIC_READ|GENERIC_ALL|PROCESS_SET_SESSIONID|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x309660000"),
+        ("1750722464", "GENERIC_WRITE|GENERIC_ALL|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1700622000"),
+        ("189072329", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x109072000"),
+        ("236170121", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|SYNCHRONIZE|0x204070000"),
+        ("1478183771", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1408082000"),
+        ("1949359005", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1909258000"),
+        ("1014257825", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x1004256000"),
+        ("602928484", "MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x600828000"),
+        ("1184513832", "GENERIC_READ|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1104412000"),
+        ("1804574055", "PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|SYNCHRONIZE|0x1804474000"),
+        ("1723229408", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1701228000"),
+        ("1673658167", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|0x1601658000"),
+        ("856773894", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x804672000"),
+        ("1007541282", "MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1005440000"),
+        ("1132381834", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1100280000"),
+        ("1124836476", "GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|0x1104836000"),
+        ("1311492298", "GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|0x1301492000"),
+        ("1378737589", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1308636000"),
+        ("1487931260", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1405830000"),
+        ("686840637", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x604840000"),
+        ("1310545418", "GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1300444000"),
+        ("1333252995", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x1301252000"),
+        ("1229943572", "GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1209842000"),
+        ("255535062", "GENERIC_WRITE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x205434000"),
+        ("1225865422", "GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1205864000"),
+        ("850729089", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_CREATE_PROCESS|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x800628000"),
+        ("1961120664", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1901020000"),
+        ("301012839", "PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|0x301012000"),
+        ("1539752987", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1509652000"),
+        ("1870296864", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|0x1800296000"),
+        ("563091650", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x501090000"),
+        ("119038649", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x109038000"),
+        ("914093939", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x904092000"),
+        ("2045750507", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x2005650000"),
+        ("1083635002", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_QUERY_LIMITED_INFORMATION|0x1001634000"),
+        ("440395067", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x400294000"),
+        ("1184751547", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1104650000"),
+        ("706772634", "MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x704672000"),
+        ("1957004481", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|0x1905004000"),
+        ("766713239", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x704612000"),
+        ("153219465", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x101218000"),
+        ("622537975", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x600436000"),
+        ("1599913958", "GENERIC_READ|GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1509812000"),
+        ("869551753", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x809450000"),
+        ("48670886", "GENERIC_WRITE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SUSPEND_RESUME|0x08670000"),
+        ("1713723892", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1701622000"),
+        ("1167402133", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|0x1105402000"),
+        ("1036073733", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1004072000"),
+        ("325237229", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x305236000"),
+        ("2001932312", "PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x2001832000"),
+        ("1557736159", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|SYNCHRONIZE|0x1505636000"),
+        ("253830456", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|0x201830000"),
+        ("1506946314", "MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1504846000"),
+        ("90206635", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x00206000"),
+        ("1486557592", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1404456000"),
+        ("1706878325", "MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x1704878000"),
+        ("1719963299", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1709862000"),
+        ("1251611576", "GENERIC_WRITE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1201610000"),
+        ("460537096", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x400436000"),
+        ("110483503", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x100482000"),
+        ("808094545", "PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x808094000"),
+        ("1888038593", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x1808038000"),
+        ("375764911", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x305664000"),
+        ("1271906773", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1201806000"),
+        ("912582222", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x900482000"),
+        ("516922514", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x504822000"),
+        ("1833208302", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x1801208000"),
+        ("469508281", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x409408000"),
+        ("940873134", "GENERIC_WRITE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x900872000"),
+        ("299766311", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x209666000"),
+        ("201592825", "PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x201492000"),
+        ("589760919", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x509660000"),
+        ("330956672", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x300856000"),
+        ("1486787655", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1404686000"),
+        ("1531573053", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1501472000"),
+        ("309987292", "PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x309886000"),
+        ("200311056", "PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x200210000"),
+        ("1935237294", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1905236000"),
+        ("1736006760", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x1704006000"),
+        ("644938062", "GENERIC_WRITE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|SYNCHRONIZE|0x604838000"),
+        ("2080064390", "GENERIC_READ|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x2000064000"),
+        ("1467477428", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1405476000"),
+        ("1889535651", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1809434000"),
+        ("108306228", "PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x108206000"),
+        ("878112740", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x808012000"),
+        ("386808730", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x304808000"),
+        ("1672843908", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x1600842000"),
+        ("549685051", "GENERIC_WRITE|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_QUERY_LIMITED_INFORMATION|0x509684000"),
+        ("643569323", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x601468000"),
+        ("2042493669", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x2000492000"),
+        ("607693739", "MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x605692000"),
+        ("98997027", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x08896000"),
+        ("124974982", "GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x104874000"),
+        ("1669952125", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|SYNCHRONIZE|0x1609852000"),
+        ("1864438233", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|0x1804438000"),
+        ("305624674", "PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x305624000"),
+        ("1019534344", "GENERIC_ALL|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1009434000"),
+        ("494134581", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x404034000"),
+        ("1012948300", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1000848000"),
+        ("1224842371", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x1204842000"),
+        ("675076028", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|0x605076000"),
+        ("854183120", "GENERIC_WRITE|GENERIC_ALL|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x804082000"),
+        ("957401741", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x905400000"),
+        ("627285090", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_LIMITED_INFORMATION|0x605284000"),
+        ("1711529647", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1701428000"),
+        ("1909421725", "PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1909420000"),
+        ("228536159", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|SYNCHRONIZE|0x208436000"),
+        ("966463559", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x904462000"),
+        ("1836469859", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x1804468000"),
+        ("1600070784", "PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x1600070000"),
+        ("1719277576", "GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1709276000"),
+        ("1760058685", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x1700058000"),
+        ("1616752529", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1604652000"),
+        ("700699183", "PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x700698000"),
+        ("695866516", "GENERIC_READ|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x605866000"),
+        ("523269570", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x501268000"),
+        ("230832730", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x200832000"),
+        ("2043925736", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x2001824000"),
+        ("2018041640", "GENERIC_ALL|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x2008040000"),
+        ("1887920659", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1805820000"),
+        ("1009313607", "PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1009212000"),
+        ("1156874752", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x1104874000"),
+        ("1932025214", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1900024000"),
+        ("392401264", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x300400000"),
+        ("925504642", "GENERIC_EXECUTE|PROCESS_CREATE_THREAD|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x905404000"),
+        ("443139262", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x401038000"),
+        ("468857947", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x408856000"),
+        ("189516490", "GENERIC_READ|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x109416000"),
+        ("2142942236", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x2100842000"),
+        ("1296323161", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1204222000"),
+        ("335052490", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|0x305052000"),
+        ("1631399240", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1601298000"),
+        ("232331695", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x200230000"),
+        ("1463725498", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1401624000"),
+        ("463704033", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|SYNCHRONIZE|0x401604000"),
+        ("1612662512", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x1600662000"),
+        ("66852344", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x04852000"),
+        ("1003652110", "MAXIMUM_ALLOWED|PROCESS_VM_READ|PROCESS_SET_QUOTA|0x1001652000"),
+        ("688808576", "GENERIC_READ|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x608808000"),
+        ("1825097410", "GENERIC_EXECUTE|PROCESS_VM_READ|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1805096000"),
+        ("543585955", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x501484000"),
+        ("198755070", "GENERIC_READ|GENERIC_ALL|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x108654000"),
+        ("1293431516", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1201430000"),
+        ("418245627", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x408244000"),
+        ("1334721030", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1304620000"),
+        ("418608668", "GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x408608000"),
+        ("737502814", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x705402000"),
+        ("2017263575", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x2005262000"),
+        ("1458236239", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_INFORMATION|0x1408236000"),
+        ("396801931", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x304800000"),
+        ("645265158", "GENERIC_WRITE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x605264000"),
+        ("1433599399", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1401498000"),
+        ("374794907", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x304694000"),
+        ("1427075024", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_QUERY_LIMITED_INFORMATION|0x1405074000"),
+        ("471023321", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x401022000"),
+        ("267980339", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x205880000"),
+        ("320642937", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|0x300642000"),
+        ("1030641272", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1000640000"),
+        ("1099873353", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1009872000"),
+        ("1676744261", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x1604644000"),
+        ("491728422", "GENERIC_READ|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x401628000"),
+        ("1799213036", "GENERIC_READ|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_QUERY_LIMITED_INFORMATION|0x1709212000"),
+        ("173924697", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x101824000"),
+        ("473006246", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|0x401006000"),
+        ("428867533", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x408866000"),
+        ("1127426254", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|0x1105426000"),
+        ("2097199460", "GENERIC_READ|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x2005098000"),
+        ("1799598922", "GENERIC_READ|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1709498000"),
+        ("652881011", "GENERIC_WRITE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_QUERY_LIMITED_INFORMATION|0x600880000"),
+        ("131720185", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|SYNCHRONIZE|0x101620000"),
+        ("1512205696", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1500204000"),
+        ("1626272218", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_SET_INFORMATION|0x1604272000"),
+        ("1882188920", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1800088000"),
+        ("791066335", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|0x701066000"),
+        ("1123086463", "GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|0x1101086000"),
+        ("1860928824", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SUSPEND_RESUME|SYNCHRONIZE|0x1800828000"),
+        ("2075649410", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_VM_READ|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x2005648000"),
+        ("2029956308", "GENERIC_EXECUTE|PROCESS_VM_OPERATION|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|SYNCHRONIZE|0x2009856000"),
+        ("495529540", "GENERIC_READ|GENERIC_ALL|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x405428000"),
+        ("1499408600", "GENERIC_READ|GENERIC_ALL|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x1409408000"),
+        ("1313567051", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1301466000"),
+        ("62453954", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x00452000"),
+        ("505649937", "PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x505648000"),
+        ("1787864292", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|0x1705864000"),
+        ("279433571", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x209432000"),
+        ("488594794", "GENERIC_READ|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x408494000"),
+        ("1175694538", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|0x1105694000"),
+        ("979205276", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x909204000"),
+        ("247265492", "GENERIC_WRITE|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x205264000"),
+        ("1168651664", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1108650000"),
+        ("771179243", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x701078000"),
+        ("198517768", "GENERIC_READ|GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x108416000"),
+        ("590279857", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x500278000"),
+        ("904362160", "PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|SYNCHRONIZE|0x904262000"),
+        ("1284500739", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1204400000"),
+        ("1498835471", "GENERIC_READ|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1408834000"),
+        ("1932776575", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x1900676000"),
+        ("2015124138", "GENERIC_ALL|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|SYNCHRONIZE|0x2005024000"),
+        ("737809156", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|0x705808000"),
+        ("1412301532", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1400200000"),
+        ("233857788", "GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_VM_OPERATION|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x201856000"),
+        ("1580874199", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|0x1500874000"),
+        ("816172493", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x804072000"),
+        ("701251981", "PROCESS_TERMINATE|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x701250000"),
+        ("1061877580", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1001876000"),
+        ("1604665941", "PROCESS_TERMINATE|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|0x1604664000"),
+        ("366772671", "GENERIC_WRITE|GENERIC_EXECUTE|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x304672000"),
+        ("1661955010", "GENERIC_WRITE|GENERIC_EXECUTE|PROCESS_VM_READ|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1601854000"),
+        ("905487692", "PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_CREATE_PROCESS|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x905486000"),
+        ("1051616265", "GENERIC_WRITE|GENERIC_ALL|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|0x1001616000"),
+        ("1519875527", "GENERIC_ALL|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_WRITE|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x1509874000"),
+        ("717189989", "GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_CREATE_PROCESS|PROCESS_SET_QUOTA|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x705088000"),
+        ("534966746", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_DUP_HANDLE|PROCESS_SET_QUOTA|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x504866000"),
+        ("1024258419", "GENERIC_EXECUTE|PROCESS_TERMINATE|PROCESS_VM_OPERATION|PROCESS_VM_READ|PROCESS_QUERY_INFORMATION|0x1004258000"),
+        ("1189541870", "GENERIC_READ|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SUSPEND_RESUME|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1109440000"),
+        ("289402672", "GENERIC_READ|PROCESS_CREATE_THREAD|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_DUP_HANDLE|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|0x209402000"),
+        ("973197116", "GENERIC_WRITE|GENERIC_EXECUTE|GENERIC_ALL|MAXIMUM_ALLOWED|PROCESS_CREATE_THREAD|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x901096000"),
+        ("1438517514", "GENERIC_EXECUTE|GENERIC_ALL|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_SET_QUOTA|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|SYNCHRONIZE|0x1408416000"),
+        ("583241603", "GENERIC_READ|MAXIMUM_ALLOWED|PROCESS_TERMINATE|PROCESS_CREATE_THREAD|PROCESS_SET_INFORMATION|PROCESS_QUERY_INFORMATION|PROCESS_QUERY_LIMITED_INFORMATION|0x501240000"),
+        ("780354435", "GENERIC_READ|PROCESS_TERMINATE|PROCESS_SET_SESSIONID|PROCESS_VM_READ|PROCESS_VM_WRITE|PROCESS_QUERY_INFORMATION|SYNCHRONIZE|0x700254000"),
+    ]
+
+
+def api_name_ntopenthread_arg_name_desiredaccess_data():
+    return [
+        ("32214", "THREAD_SET_CONTEXT|THREAD_DIRECT_IMPERSONATION|0x00032004"),
+        ("1269541", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01269000"),
+        ("736650", "THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00736000"),
+        ("635310", "THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00635000"),
+        ("678380", "THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00678000"),
+        ("1676909", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01676000"),
+        ("751496", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x00751004"),
+        ("1025574", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01025004"),
+        ("1289120", "THREAD_SET_INFORMATION|THREAD_IMPERSONATE|0x01289000"),
+        ("472810", "THREAD_SET_CONTEXT|THREAD_QUERY_LIMITED_INFORMATION|0x00472000"),
+        ("2061638", "MAXIMUM_ALLOWED|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00061000"),
+        ("695209", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_DIRECT_IMPERSONATION|0x00695000"),
+        ("1483986", "THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01483004"),
+        ("2067731", "MAXIMUM_ALLOWED|THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00067000"),
+        ("1347023", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|0x01347000"),
+        ("2071122", "MAXIMUM_ALLOWED|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|0x00071000"),
+        ("1260949", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01260000"),
+        ("1084762", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01084000"),
+        ("2035368", "MAXIMUM_ALLOWED|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00035000"),
+        ("1263644", "THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01263004"),
+        ("1280287", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x01280004"),
+        ("1668827", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01668004"),
+        ("664495", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x00664004"),
+        ("913206", "THREAD_SUSPEND_RESUME|THREAD_DIRECT_IMPERSONATION|0x00913004"),
+        ("512063", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|0x00512000"),
+        ("1149150", "THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x01149000"),
+        ("1072406", "THREAD_SUSPEND_RESUME|THREAD_SET_LIMITED_INFORMATION|0x01072004"),
+        ("1146909", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01146000"),
+        ("948471", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00948000"),
+        ("1919546", "THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01919004"),
+        ("1344760", "THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01344000"),
+        ("754324", "THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00754004"),
+        ("714342", "THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00714000"),
+        ("283058", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|0x00283000"),
+        ("695897", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_QUERY_LIMITED_INFORMATION|0x00695004"),
+        ("982632", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00982000"),
+        ("693451", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00693000"),
+        ("1971467", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01971004"),
+        ("1394895", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_QUERY_LIMITED_INFORMATION|0x01394004"),
+        ("1314819", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_QUERY_LIMITED_INFORMATION|0x01314000"),
+        ("590938", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00590000"),
+        ("970144", "THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x00970004"),
+        ("1519223", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01519000"),
+        ("1243001", "THREAD_TERMINATE|0x01243000"),
+        ("1542046", "THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|0x01542004"),
+        ("876155", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x00876004"),
+        ("2049299", "MAXIMUM_ALLOWED|THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x00049000"),
+        ("1059121", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|0x01059000"),
+        ("864326", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00864004"),
+        ("912645", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00912004"),
+        ("450067", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|0x00450004"),
+        ("1496163", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x01496000"),
+        ("767448", "THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00767000"),
+        ("1336139", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|0x01336000"),
+        ("1996760", "THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01996000"),
+        ("2060900", "MAXIMUM_ALLOWED|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00060000"),
+        ("788172", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x00788000"),
+        ("1831974", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01831004"),
+        ("1791318", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01791000"),
+        ("249799", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00249000"),
+        ("1413047", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|0x01413004"),
+        ("480192", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|0x00480000"),
+        ("1152052", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|0x01152000"),
+        ("399927", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00399004"),
+        ("25822", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00025000"),
+        ("596171", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x00596000"),
+        ("523681", "THREAD_TERMINATE|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00523000"),
+        ("568323", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00568000"),
+        ("1221118", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|0x01221000"),
+        ("365442", "THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00365000"),
+        ("1155887", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_QUERY_LIMITED_INFORMATION|0x01155004"),
+        ("1900017", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|0x01900004"),
+        ("38839", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00038000"),
+        ("9894", "THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_QUERY_LIMITED_INFORMATION|0x00009004"),
+        ("1132525", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01132004"),
+        ("143677", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00143004"),
+        ("88011", "THREAD_TERMINATE|THREAD_SET_CONTEXT|0x00088000"),
+        ("24400", "THREAD_SET_LIMITED_INFORMATION|0x00024000"),
+        ("1472602", "THREAD_SUSPEND_RESUME|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01472000"),
+        ("1342393", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01342000"),
+        ("1122055", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|0x01122004"),
+        ("1218299", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x01218000"),
+        ("1444660", "THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01444000"),
+        ("1852161", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x01852000"),
+        ("1576038", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|0x01576000"),
+        ("1650196", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|0x01650004"),
+        ("1596424", "THREAD_SET_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01596004"),
+        ("589833", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00589000"),
+        ("923671", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00923000"),
+        ("1145768", "THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01145000"),
+        ("807539", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00807000"),
+        ("1741168", "THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x01741000"),
+        ("1061234", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01061004"),
+        ("1022291", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x01022000"),
+        ("961393", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00961000"),
+        ("1885875", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01885004"),
+        ("704774", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00704004"),
+        ("836278", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00836000"),
+        ("1509107", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|0x01509004"),
+        ("2052235", "MAXIMUM_ALLOWED|THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00052004"),
+        ("2053535", "MAXIMUM_ALLOWED|THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00053004"),
+        ("60163", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x00060000"),
+        ("144102", "THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|0x00144000"),
+        ("1360", "THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00001000"),
+        ("279369", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00279000"),
+        ("27945", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00027004"),
+        ("537345", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00537004"),
+        ("1078645", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01078004"),
+        ("369619", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00369000"),
+        ("273767", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00273004"),
+        ("1333378", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01333000"),
+        ("1226369", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01226000"),
+        ("1969688", "THREAD_GET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01969000"),
+        ("1780076", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|0x01780004"),
+        ("1150380", "THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01150000"),
+        ("1161321", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01161000"),
+        ("1622677", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01622004"),
+        ("1662127", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|0x01662004"),
+        ("1178842", "THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01178000"),
+        ("1638515", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01638004"),
+        ("1282321", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01282000"),
+        ("2086748", "MAXIMUM_ALLOWED|THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00086000"),
+        ("293495", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x00293004"),
+        ("1447924", "THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01447004"),
+        ("61815", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_LIMITED_INFORMATION|0x00061004"),
+        ("929220", "THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00929000"),
+        ("448850", "THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00448000"),
+        ("163475", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00163004"),
+        ("256789", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00256000"),
+        ("754415", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_LIMITED_INFORMATION|0x00754004"),
+        ("314589", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00314000"),
+        ("586169", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x00586000"),
+        ("312223", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00312000"),
+        ("1222377", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01222004"),
+        ("366088", "THREAD_GET_CONTEXT|THREAD_SET_THREAD_TOKEN|0x00366000"),
+        ("1328639", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01328000"),
+        ("736827", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00736004"),
+        ("574655", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00574004"),
+        ("108537", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00108004"),
+        ("545513", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00545000"),
+        ("1163419", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_LIMITED_INFORMATION|0x01163000"),
+        ("422138", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|0x00422000"),
+        ("655610", "THREAD_SET_CONTEXT|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00655000"),
+        ("790383", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00790000"),
+        ("818251", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00818000"),
+        ("637840", "THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00637000"),
+        ("1635808", "THREAD_GET_CONTEXT|THREAD_QUERY_LIMITED_INFORMATION|0x01635000"),
+        ("1544551", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01544000"),
+        ("655034", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|0x00655004"),
+        ("1094471", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01094000"),
+        ("1560994", "THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01560004"),
+        ("1119133", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|0x01119000"),
+        ("1601257", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01601004"),
+        ("1415960", "THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01415000"),
+        ("481481", "THREAD_TERMINATE|THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x00481000"),
+        ("1731752", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01731000"),
+        ("2013642", "MAXIMUM_ALLOWED|THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00013000"),
+        ("1253919", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01253000"),
+        ("438678", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00438000"),
+        ("1794445", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01794004"),
+        ("1148737", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01148004"),
+        ("630509", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00630000"),
+        ("956960", "THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00956000"),
+        ("171460", "THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00171000"),
+        ("1270849", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01270000"),
+        ("678533", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00678000"),
+        ("2085565", "MAXIMUM_ALLOWED|THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00085004"),
+        ("562975", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00562004"),
+        ("1229188", "THREAD_GET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|0x01229000"),
+        ("1404838", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01404000"),
+        ("1266403", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_LIMITED_INFORMATION|0x01266000"),
+        ("1970356", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01970004"),
+        ("1849778", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01849000"),
+        ("1378357", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01378004"),
+        ("1235140", "THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x01235000"),
+        ("1576258", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01576000"),
+        ("1567009", "THREAD_TERMINATE|THREAD_GET_CONTEXT|0x01567000"),
+        ("727166", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x00727004"),
+        ("1678877", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01678004"),
+        ("1556193", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|0x01556000"),
+        ("70676", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00070004"),
+        ("1080815", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_LIMITED_INFORMATION|0x01080004"),
+        ("1695592", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01695000"),
+        ("340542", "THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00340000"),
+        ("525973", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00525000"),
+        ("1337740", "THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01337000"),
+        ("1108502", "THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01108000"),
+        ("1232258", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01232000"),
+        ("1038185", "THREAD_TERMINATE|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|0x01038004"),
+        ("837381", "THREAD_TERMINATE|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00837000"),
+        ("1496574", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01496004"),
+        ("1153806", "THREAD_SUSPEND_RESUME|THREAD_QUERY_LIMITED_INFORMATION|0x01153004"),
+        ("798312", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00798000"),
+        ("275168", "THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x00275000"),
+        ("16590", "THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00016000"),
+        ("773920", "THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00773000"),
+        ("1463127", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|0x01463004"),
+        ("1682484", "THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x01682004"),
+        ("1180860", "THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01180000"),
+        ("56477", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00056004"),
+        ("798922", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00798000"),
+        ("1832756", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01832004"),
+        ("1245276", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01245004"),
+        ("1108711", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01108000"),
+        ("385954", "THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00385004"),
+        ("292900", "THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00292000"),
+        ("906116", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|0x00906004"),
+        ("1934339", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01934000"),
+        ("1518035", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|0x01518004"),
+        ("1363046", "THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|0x01363004"),
+        ("1115160", "THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x01115000"),
+        ("573977", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00573004"),
+        ("1435544", "THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01435004"),
+        ("704240", "THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00704000"),
+        ("996264", "THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00996004"),
+        ("395575", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00395004"),
+        ("1296245", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01296004"),
+        ("2000568", "MAXIMUM_ALLOWED|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION"),
+        ("462940", "THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00462000"),
+        ("1374685", "THREAD_TERMINATE|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01374004"),
+        ("738887", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_QUERY_LIMITED_INFORMATION|0x00738004"),
+        ("1106381", "THREAD_TERMINATE|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01106000"),
+        ("1721078", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|0x01721000"),
+        ("603757", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00603004"),
+        ("481261", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00481000"),
+        ("1225213", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_DIRECT_IMPERSONATION|0x01225000"),
+        ("1211275", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01211004"),
+        ("254911", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00254000"),
+        ("428739", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00428000"),
+        ("1756962", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01756000"),
+        ("28603", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00028000"),
+        ("1187142", "THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x01187000"),
+        ("1747620", "THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01747000"),
+        ("1286753", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01286000"),
+        ("360345", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00360004"),
+        ("625816", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_LIMITED_INFORMATION|0x00625004"),
+        ("803148", "THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x00803000"),
+        ("90912", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00090000"),
+        ("1622638", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01622000"),
+        ("1878108", "THREAD_GET_CONTEXT|THREAD_IMPERSONATE|0x01878000"),
+        ("1314692", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01314000"),
+        ("826925", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00826004"),
+        ("1885737", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01885004"),
+        ("751227", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00751004"),
+        ("169010", "THREAD_SET_CONTEXT|0x00169000"),
+        ("290432", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00290000"),
+        ("490973", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00490000"),
+        ("1312727", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01312004"),
+        ("2059894", "MAXIMUM_ALLOWED|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_QUERY_LIMITED_INFORMATION|0x00059004"),
+        ("704298", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x00704000"),
+        ("83156", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x00083004"),
+        ("891293", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x00891000"),
+        ("1494085", "THREAD_TERMINATE|THREAD_SET_THREAD_TOKEN|0x01494004"),
+        ("585391", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00585000"),
+        ("939828", "THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00939000"),
+        ("2085049", "MAXIMUM_ALLOWED|THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|0x00085000"),
+        ("1148423", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01148000"),
+        ("1946808", "THREAD_GET_CONTEXT|THREAD_QUERY_LIMITED_INFORMATION|0x01946000"),
+        ("1257845", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01257004"),
+        ("378481", "THREAD_TERMINATE|THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x00378000"),
+        ("261731", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00261000"),
+        ("1763197", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|0x01763004"),
+        ("26740", "THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00026000"),
+        ("1341337", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01341004"),
+        ("1036415", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_LIMITED_INFORMATION|0x01036004"),
+        ("1601419", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_LIMITED_INFORMATION|0x01601000"),
+        ("281363", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00281000"),
+        ("1892636", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01892004"),
+        ("1328630", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01328000"),
+        ("406911", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00406000"),
+        ("1941792", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01941000"),
+        ("1345726", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01345004"),
+        ("1687041", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|0x01687000"),
+        ("495674", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00495004"),
+        ("861433", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00861000"),
+        ("769001", "THREAD_TERMINATE|0x00769000"),
+        ("1641813", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_LIMITED_INFORMATION|0x01641000"),
+        ("1016657", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01016004"),
+        ("1406445", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01406004"),
+        ("907967", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00907004"),
+        ("1541927", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01541004"),
+        ("1842781", "THREAD_TERMINATE|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01842000"),
+        ("751414", "THREAD_SET_CONTEXT|THREAD_SET_LIMITED_INFORMATION|0x00751004"),
+        ("1471429", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01471000"),
+        ("1360183", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|0x01360000"),
+        ("2004155", "MAXIMUM_ALLOWED|THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x00004004"),
+        ("1472053", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|0x01472000"),
+        ("95591", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00095000"),
+        ("1500528", "THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01500000"),
+        ("940315", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00940004"),
+        ("327025", "THREAD_TERMINATE|THREAD_SET_INFORMATION|0x00327004"),
+        ("1456454", "THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01456004"),
+        ("558895", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_QUERY_LIMITED_INFORMATION|0x00558004"),
+        ("1935279", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01935000"),
+        ("459377", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00459004"),
+        ("61159", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x00061000"),
+        ("761686", "THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00761004"),
+        ("1017173", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x01017000"),
+        ("2095478", "MAXIMUM_ALLOWED|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00095000"),
+        ("1751512", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01751000"),
+        ("469805", "THREAD_TERMINATE|THREAD_QUERY_LIMITED_INFORMATION|0x00469004"),
+        ("661852", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00661000"),
+        ("41319", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00041000"),
+        ("941658", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00941000"),
+        ("1125952", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01125000"),
+        ("110110", "THREAD_SET_CONTEXT|THREAD_IMPERSONATE|0x00110000"),
+        ("794909", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00794000"),
+        ("2084605", "MAXIMUM_ALLOWED|THREAD_TERMINATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00084004"),
+        ("926852", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00926000"),
+        ("339615", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00339004"),
+        ("535862", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00535000"),
+        ("47128", "THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|0x00047000"),
+        ("567393", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00567000"),
+        ("703108", "THREAD_GET_CONTEXT|THREAD_IMPERSONATE|0x00703000"),
+        ("327749", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00327000"),
+        ("318200", "THREAD_DIRECT_IMPERSONATION|0x00318000"),
+        ("1806589", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01806000"),
+        ("1942619", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01942000"),
+        ("1516822", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01516000"),
+        ("1895493", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x01895000"),
+        ("1453427", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01453004"),
+        ("1965035", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|0x01965004"),
+        ("2086212", "MAXIMUM_ALLOWED|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_DIRECT_IMPERSONATION|0x00086000"),
+        ("68250", "THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00068000"),
+        ("800691", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00800000"),
+        ("1186973", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01186000"),
+        ("1988898", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_QUERY_LIMITED_INFORMATION|0x01988000"),
+        ("829283", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x00829000"),
+        ("939181", "THREAD_TERMINATE|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|0x00939000"),
+        ("973422", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00973000"),
+        ("1098377", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01098004"),
+        ("778008", "THREAD_GET_CONTEXT|0x00778000"),
+        ("1794343", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01794000"),
+        ("22708", "THREAD_GET_CONTEXT|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00022000"),
+        ("1920272", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01920000"),
+        ("1431304", "THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01431004"),
+        ("283170", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x00283000"),
+        ("452483", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x00452000"),
+        ("595815", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_LIMITED_INFORMATION|0x00595004"),
+        ("2015524", "MAXIMUM_ALLOWED|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00015004"),
+        ("1147760", "THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01147000"),
+        ("1248837", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01248004"),
+        ("1210156", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x01210004"),
+        ("757402", "THREAD_SUSPEND_RESUME|THREAD_SET_LIMITED_INFORMATION|0x00757000"),
+        ("1598988", "THREAD_GET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01598000"),
+        ("967854", "THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00967004"),
+        ("1543100", "THREAD_IMPERSONATE|0x01543000"),
+        ("356656", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00356004"),
+        ("1250821", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01250000"),
+        ("370890", "THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_QUERY_LIMITED_INFORMATION|0x00370000"),
+        ("1754922", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01754000"),
+        ("98486", "THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x00098004"),
+        ("784101", "THREAD_TERMINATE|THREAD_IMPERSONATE|0x00784000"),
+        ("1668628", "THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01668000"),
+        ("107071", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|0x00107000"),
+        ("388719", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00388000"),
+        ("570499", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x00570000"),
+        ("412527", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00412004"),
+        ("1829723", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01829000"),
+        ("1460562", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01460000"),
+        ("1124323", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01124000"),
+        ("432129", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|0x00432000"),
+        ("986508", "THREAD_GET_CONTEXT|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00986000"),
+        ("2013118", "MAXIMUM_ALLOWED|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|0x00013000"),
+        ("1131931", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01131000"),
+        ("683084", "THREAD_SET_THREAD_TOKEN|0x00683004"),
+        ("1464583", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01464000"),
+        ("112534", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00112004"),
+        ("1983765", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01983004"),
+        ("243445", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00243004"),
+        ("70243", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00070000"),
+        ("842792", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00842000"),
+        ("1564889", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_QUERY_LIMITED_INFORMATION|0x01564000"),
+        ("315544", "THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00315004"),
+        ("1039482", "THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x01039000"),
+        ("677686", "THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00677004"),
+        ("1639462", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01639000"),
+        ("947628", "THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00947000"),
+        ("1081121", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|0x01081000"),
+        ("1393293", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x01393000"),
+        ("1549827", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01549004"),
+        ("56416", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_LIMITED_INFORMATION|0x00056004"),
+        ("428227", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00428004"),
+        ("1916370", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01916000"),
+        ("1660337", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01660004"),
+        ("1529929", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01529000"),
+        ("769488", "THREAD_GET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x00769000"),
+        ("713603", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00713000"),
+        ("1271954", "THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01271004"),
+        ("990079", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|0x00990000"),
+        ("1090531", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01090000"),
+        ("742724", "THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00742004"),
+        ("102176", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x00102004"),
+        ("1270606", "THREAD_SUSPEND_RESUME|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01270004"),
+        ("427166", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x00427004"),
+        ("1689302", "THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01689000"),
+        ("885926", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00885004"),
+        ("1066790", "THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01066000"),
+        ("608224", "THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00608004"),
+        ("957660", "THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00957000"),
+        ("243817", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_LIMITED_INFORMATION|0x00243004"),
+        ("927249", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00927000"),
+        ("1275497", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x01275004"),
+        ("160082", "THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|0x00160000"),
+        ("778339", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00778000"),
+        ("1112166", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x01112004"),
+        ("1081825", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01081004"),
+        ("740263", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00740000"),
+        ("97757", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00097004"),
+        ("624746", "THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00624004"),
+        ("1289063", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|0x01289000"),
+        ("1977299", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x01977000"),
+        ("1352099", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|0x01352000"),
+        ("263136", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|0x00263004"),
+        ("1004267", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01004004"),
+        ("1398867", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01398004"),
+        ("1697544", "THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01697004"),
+        ("406744", "THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00406004"),
+        ("567698", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00567000"),
+        ("956214", "THREAD_SET_CONTEXT|THREAD_DIRECT_IMPERSONATION|0x00956004"),
+        ("458188", "THREAD_GET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|0x00458000"),
+        ("1426450", "THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01426000"),
+        ("494573", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00494000"),
+        ("1204076", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|0x01204004"),
+        ("1227651", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01227000"),
+        ("2087622", "MAXIMUM_ALLOWED|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00087000"),
+        ("351165", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x00351004"),
+        ("622435", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00622004"),
+        ("1193946", "THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01193004"),
+        ("1051946", "THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01051004"),
+        ("456753", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00456000"),
+        ("35517", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00035004"),
+        ("2035506", "MAXIMUM_ALLOWED|THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00035004"),
+        ("2004196", "MAXIMUM_ALLOWED|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|0x00004004"),
+        ("1962012", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|0x01962000"),
+        ("1924685", "THREAD_TERMINATE|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01924004"),
+        ("915778", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00915000"),
+        ("803412", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_LIMITED_INFORMATION|0x00803000"),
+        ("1055177", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x01055004"),
+        ("480065", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|0x00480004"),
+        ("1805485", "THREAD_TERMINATE|THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x01805004"),
+        ("1729052", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|0x01729000"),
+        ("1157844", "THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01157004"),
+        ("1840547", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01840004"),
+        ("1710820", "THREAD_SET_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01710000"),
+        ("1875429", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01875000"),
+        ("1129595", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01129004"),
+        ("463752", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00463000"),
+        ("2061304", "MAXIMUM_ALLOWED|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00061004"),
+        ("1465224", "THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01465004"),
+        ("357560", "THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00357000"),
+        ("912886", "THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_QUERY_LIMITED_INFORMATION|0x00912004"),
+        ("1602527", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01602004"),
+        ("898751", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00898000"),
+        ("414736", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00414004"),
+        ("1055861", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01055000"),
+        ("1533124", "THREAD_SET_INFORMATION|THREAD_IMPERSONATE|0x01533004"),
+        ("1515405", "THREAD_TERMINATE|THREAD_SET_LIMITED_INFORMATION|0x01515004"),
+        ("1080451", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01080000"),
+        ("316398", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00316000"),
+        ("781892", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_QUERY_LIMITED_INFORMATION|0x00781000"),
+        ("282171", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x00282000"),
+        ("431017", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|0x00431004"),
+        ("1603252", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01603000"),
+        ("886095", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|0x00886004"),
+        ("426281", "THREAD_TERMINATE|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x00426000"),
+        ("1623067", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|0x01623004"),
+        ("1395458", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01395000"),
+        ("1599720", "THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01599000"),
+        ("1219130", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|0x01219000"),
+        ("1798462", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01798000"),
+        ("212201", "THREAD_TERMINATE|THREAD_DIRECT_IMPERSONATION|0x00212000"),
+        ("656490", "THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x00656000"),
+        ("779478", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00779000"),
+        ("1134694", "THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01134004"),
+        ("21295", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x00021004"),
+        ("857938", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00857000"),
+        ("49473", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00049000"),
+        ("1500172", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x01500000"),
+        ("1153926", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01153004"),
+        ("429226", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00429004"),
+        ("568980", "THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00568000"),
+        ("199946", "THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00199004"),
+        ("363704", "THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00363004"),
+        ("505636", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00505004"),
+        ("30195", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|0x00030004"),
+        ("2059926", "MAXIMUM_ALLOWED|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00059004"),
+        ("1806739", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01806000"),
+        ("865826", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00865004"),
+        ("885505", "THREAD_TERMINATE|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00885004"),
+        ("1900242", "THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01900000"),
+        ("1787251", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01787000"),
+        ("962658", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00962000"),
+        ("165457", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00165004"),
+        ("136546", "THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00136004"),
+        ("1013478", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01013000"),
+        ("1287031", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|0x01287000"),
+        ("162680", "THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00162000"),
+        ("1948912", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01948000"),
+        ("1757904", "THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01757004"),
+        ("1934275", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01934004"),
+        ("1238321", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01238000"),
+        ("1533511", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01533000"),
+        ("454519", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00454000"),
+        ("200072", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|0x00200000"),
+        ("268525", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00268004"),
+        ("1041012", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|0x01041000"),
+        ("1574329", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01574000"),
+        ("1594578", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01594000"),
+        ("487421", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00487000"),
+        ("1944462", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01944000"),
+        ("1549009", "THREAD_TERMINATE|THREAD_GET_CONTEXT|0x01549000"),
+        ("551701", "THREAD_TERMINATE|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00551000"),
+        ("932563", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00932000"),
+        ("694172", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x00694000"),
+        ("1872249", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01872000"),
+        ("1221027", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|0x01221004"),
+        ("1441616", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01441004"),
+        ("229383", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00229000"),
+        ("1469091", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|0x01469000"),
+        ("1297530", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01297000"),
+        ("1540586", "THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01540004"),
+        ("1661532", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01661000"),
+        ("1932303", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01932000"),
+        ("752760", "THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00752000"),
+        ("946583", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00946000"),
+        ("1119353", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01119000"),
+        ("1275337", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01275004"),
+        ("189286", "THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x00189004"),
+        ("1261603", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01261000"),
+        ("397248", "THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00397000"),
+        ("509086", "THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|0x00509004"),
+        ("386916", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00386004"),
+        ("541609", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00541000"),
+        ("570436", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00570004"),
+        ("1247221", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01247000"),
+        ("2094330", "MAXIMUM_ALLOWED|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00094000"),
+        ("1882003", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|0x01882000"),
+        ("1054735", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01054004"),
+        ("1060014", "THREAD_SET_CONTEXT|0x01060004"),
+        ("1035107", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|0x01035004"),
+        ("1960028", "THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|0x01960000"),
+        ("1183413", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_LIMITED_INFORMATION|0x01183000"),
+        ("386062", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|0x00386000"),
+        ("1165567", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01165004"),
+        ("1155197", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|0x01155004"),
+        ("1287523", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01287000"),
+        ("625510", "THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00625000"),
+        ("1131944", "THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01131004"),
+        ("362622", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00362000"),
+        ("336285", "THREAD_TERMINATE|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x00336004"),
+        ("1076618", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01076000"),
+        ("1064607", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01064004"),
+        ("1080349", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01080000"),
+        ("1011584", "THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01011004"),
+        ("987617", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00987004"),
+        ("1877063", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|0x01877000"),
+        ("1216769", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01216000"),
+        ("516991", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00516000"),
+        ("1349757", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01349004"),
+        ("720893", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_QUERY_LIMITED_INFORMATION|0x00720000"),
+        ("711518", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00711000"),
+        ("1998093", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|0x01998000"),
+        ("2021622", "MAXIMUM_ALLOWED|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00021000"),
+        ("241711", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00241000"),
+        ("333499", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x00333000"),
+        ("750904", "THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00750004"),
+        ("1508776", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01508004"),
+        ("2000212", "MAXIMUM_ALLOWED|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_DIRECT_IMPERSONATION"),
+        ("892787", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00892004"),
+        ("415162", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x00415000"),
+        ("980988", "THREAD_GET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00980000"),
+        ("1986685", "THREAD_TERMINATE|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01986004"),
+        ("933426", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00933004"),
+        ("1913244", "THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01913004"),
+        ("1730507", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01730004"),
+        ("1684752", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01684000"),
+        ("20330", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00020000"),
+        ("1716082", "THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|0x01716000"),
+        ("1651181", "THREAD_TERMINATE|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|0x01651000"),
+        ("1692030", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|0x01692000"),
+        ("533191", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|0x00533000"),
+        ("1563770", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01563000"),
+        ("493392", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00493000"),
+        ("1124632", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01124000"),
+        ("1901640", "THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01901000"),
+        ("671069", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|0x00671000"),
+        ("1999860", "THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01999000"),
+        ("187998", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00187000"),
+        ("1470285", "THREAD_TERMINATE|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x01470004"),
+        ("139468", "THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00139000"),
+        ("799545", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00799004"),
+        ("1771484", "THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x01771004"),
+        ("212757", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00212004"),
+        ("38152", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x00038000"),
+        ("622359", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00622000"),
+        ("342276", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00342004"),
+        ("1603041", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|0x01603000"),
+        ("2078929", "MAXIMUM_ALLOWED|THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00078000"),
+        ("615067", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|0x00615004"),
+        ("17929", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00017000"),
+        ("1202158", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x01202000"),
+        ("696326", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00696004"),
+        ("1505139", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|0x01505000"),
+        ("1084353", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01084000"),
+        ("217891", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_QUERY_LIMITED_INFORMATION|0x00217000"),
+        ("1606896", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_QUERY_LIMITED_INFORMATION|0x01606004"),
+        ("641353", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00641000"),
+        ("1836854", "THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01836004"),
+        ("1438901", "THREAD_TERMINATE|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01438000"),
+        ("1408216", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_DIRECT_IMPERSONATION|0x01408004"),
+        ("2000120", "MAXIMUM_ALLOWED|THREAD_SET_INFORMATION|THREAD_IMPERSONATE"),
+        ("1449061", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|0x01449000"),
+        ("590338", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00590000"),
+        ("303734", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00303004"),
+        ("1520224", "THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01520004"),
+        ("348411", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_LIMITED_INFORMATION|0x00348000"),
+        ("236570", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00236000"),
+        ("1786675", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01786004"),
+        ("92163", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x00092000"),
+        ("332996", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00332004"),
+        ("1958682", "THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01958000"),
+        ("182446", "THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00182004"),
+        ("1793151", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x01793000"),
+        ("872907", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00872004"),
+        ("512948", "THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00512000"),
+        ("781230", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00781000"),
+        ("901378", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00901000"),
+        ("656250", "THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00656000"),
+        ("829877", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00829004"),
+        ("983322", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00983000"),
+        ("390388", "THREAD_GET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00390000"),
+        ("191036", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|0x00191004"),
+        ("1011935", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01011004"),
+        ("650837", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00650004"),
+        ("244308", "THREAD_GET_CONTEXT|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00244000"),
+        ("2021825", "MAXIMUM_ALLOWED|THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00021004"),
+        ("1134790", "THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01134000"),
+        ("1943150", "THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x01943000"),
+        ("1601696", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01601004"),
+        ("525145", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x00525004"),
+        ("1190534", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01190004"),
+        ("1392791", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01392000"),
+        ("1292003", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|0x01292000"),
+        ("155988", "THREAD_GET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00155000"),
+        ("1916861", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01916000"),
+        ("257539", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00257000"),
+        ("1670578", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01670000"),
+        ("223412", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_LIMITED_INFORMATION|0x00223000"),
+        ("148545", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00148004"),
+        ("1996492", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x01996000"),
+        ("747354", "THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00747004"),
+        ("1532980", "THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01532000"),
+        ("1999647", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01999004"),
+        ("1266456", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01266004"),
+        ("368896", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_QUERY_LIMITED_INFORMATION|0x00368004"),
+        ("1271996", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01271004"),
+        ("1296274", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01296004"),
+        ("1132337", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01132004"),
+        ("2088810", "MAXIMUM_ALLOWED|THREAD_SET_CONTEXT|THREAD_QUERY_LIMITED_INFORMATION|0x00088000"),
+        ("876003", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|0x00876000"),
+        ("506444", "THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00506004"),
+        ("686043", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|0x00686000"),
+        ("15336", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00015004"),
+        ("1692505", "THREAD_TERMINATE|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01692004"),
+        ("891954", "THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00891004"),
+        ("203430", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00203000"),
+        ("1442169", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x01442000"),
+        ("1299060", "THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|0x01299000"),
+        ("1450877", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01450004"),
+        ("930874", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00930004"),
+        ("278854", "THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00278004"),
+        ("1608357", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01608004"),
+        ("955514", "THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00955004"),
+        ("1497704", "THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01497004"),
+        ("1243240", "THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01243000"),
+        ("1651212", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_DIRECT_IMPERSONATION|0x01651000"),
+        ("1410660", "THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01410000"),
+        ("320703", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00320000"),
+        ("221796", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00221004"),
+        ("453695", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00453004"),
+        ("615345", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00615004"),
+        ("1313055", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|0x01313004"),
+        ("858759", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00858000"),
+        ("756772", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00756000"),
+        ("200681", "THREAD_TERMINATE|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00200000"),
+        ("1703438", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01703000"),
+        ("1325062", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|0x01325000"),
+        ("572275", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00572004"),
+        ("1991766", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01991004"),
+        ("1938751", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01938000"),
+        ("1503094", "THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|0x01503004"),
+        ("496041", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|0x00496000"),
+        ("268520", "THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00268000"),
+        ("641244", "THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00641004"),
+        ("533587", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00533004"),
+        ("806864", "THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00806004"),
+        ("1501055", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|0x01501004"),
+        ("801524", "THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00801004"),
+        ("308292", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x00308000"),
+        ("982965", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00982004"),
+        ("1008255", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01008004"),
+        ("1235997", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01235004"),
+        ("1054725", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01054004"),
+        ("1746970", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01746000"),
+        ("1775021", "THREAD_TERMINATE|THREAD_SET_INFORMATION|0x01775000"),
+        ("3739", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00003000"),
+        ("178564", "THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00178004"),
+        ("961072", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|0x00961000"),
+        ("906560", "THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00906000"),
+        ("113999", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00113000"),
+        ("947199", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|0x00947000"),
+        ("1201389", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01201000"),
+        ("287710", "THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00287000"),
+        ("818139", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|0x00818000"),
+        ("1770450", "THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01770000"),
+        ("155639", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00155000"),
+        ("1004329", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01004000"),
+        ("941201", "THREAD_TERMINATE|THREAD_DIRECT_IMPERSONATION|0x00941000"),
+        ("648084", "THREAD_SET_THREAD_TOKEN|0x00648004"),
+        ("297119", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|0x00297000"),
+        ("723197", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|0x00723004"),
+        ("1697793", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01697000"),
+        ("698086", "THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|0x00698004"),
+        ("1384889", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_QUERY_LIMITED_INFORMATION|0x01384000"),
+        ("1165315", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01165004"),
+        ("351676", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00351004"),
+        ("1749754", "THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01749004"),
+        ("1073609", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01073000"),
+        ("730652", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00730000"),
+        ("509180", "THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|0x00509000"),
+        ("814273", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00814000"),
+        ("831488", "THREAD_GET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x00831000"),
+        ("513397", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00513004"),
+        ("1680123", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|0x01680000"),
+        ("492626", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00492004"),
+        ("1949507", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01949004"),
+        ("1937405", "THREAD_TERMINATE|THREAD_SET_LIMITED_INFORMATION|0x01937004"),
+        ("1473691", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01473000"),
+        ("2058247", "MAXIMUM_ALLOWED|THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00058004"),
+        ("2073919", "MAXIMUM_ALLOWED|THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00073000"),
+        ("1511826", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01511004"),
+        ("1392351", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01392000"),
+        ("1342717", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01342004"),
+        ("2067577", "MAXIMUM_ALLOWED|THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00067004"),
+        ("1475660", "THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01475000"),
+        ("340561", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00340000"),
+        ("1127790", "THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01127000"),
+        ("1162889", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_QUERY_LIMITED_INFORMATION|0x01162000"),
+        ("1664384", "THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01664004"),
+        ("336014", "THREAD_SET_CONTEXT|0x00336004"),
+        ("1686687", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01686004"),
+        ("888733", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00888000"),
+        ("127492", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x00127000"),
+        ("24420", "THREAD_SET_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00024000"),
+        ("1776575", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01776004"),
+        ("1845048", "THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|0x01845000"),
+        ("1288880", "THREAD_SET_THREAD_TOKEN|THREAD_QUERY_LIMITED_INFORMATION|0x01288000"),
+        ("1133255", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01133004"),
+        ("1770280", "THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x01770000"),
+        ("498054", "THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|0x00498004"),
+        ("1712153", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x01712000"),
+        ("692483", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x00692000"),
+        ("827202", "THREAD_SUSPEND_RESUME|THREAD_DIRECT_IMPERSONATION|0x00827000"),
+        ("322018", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|0x00322000"),
+        ("440524", "THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00440004"),
+        ("1472252", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01472000"),
+        ("406106", "THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|0x00406004"),
+        ("1997763", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01997000"),
+        ("272937", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00272004"),
+        ("190535", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00190004"),
+        ("799597", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00799004"),
+        ("298915", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00298004"),
+        ("331655", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00331004"),
+        ("1791822", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01791000"),
+        ("1606293", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x01606000"),
+        ("2079668", "MAXIMUM_ALLOWED|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00079000"),
+        ("970052", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|0x00970000"),
+        ("1489058", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|0x01489000"),
+        ("628697", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00628004"),
+        ("99088", "THREAD_GET_CONTEXT|THREAD_SET_THREAD_TOKEN|0x00099000"),
+        ("2015220", "MAXIMUM_ALLOWED|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00015000"),
+        ("1629070", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|0x01629000"),
+        ("454938", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00454000"),
+        ("617287", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x00617004"),
+        ("1802456", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01802004"),
+        ("1713551", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01713000"),
+        ("1130539", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01130000"),
+        ("1564761", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01564000"),
+        ("59317", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00059004"),
+        ("506456", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00506004"),
+        ("72149", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x00072000"),
+        ("1111901", "THREAD_TERMINATE|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01111000"),
+        ("1286630", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01286000"),
+        ("1242135", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|0x01242004"),
+        ("1441130", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|0x01441000"),
+        ("1522979", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01522000"),
+        ("160211", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_DIRECT_IMPERSONATION|0x00160000"),
+        ("852233", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00852000"),
+        ("1941901", "THREAD_TERMINATE|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01941000"),
+        ("993677", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00993004"),
+        ("966511", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00966000"),
+        ("1349715", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01349004"),
+        ("1112761", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01112000"),
+        ("149228", "THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00149000"),
+        ("1712898", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_QUERY_LIMITED_INFORMATION|0x01712000"),
+        ("877456", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00877004"),
+        ("389191", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|0x00389000"),
+        ("1018512", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01018000"),
+        ("912786", "THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00912004"),
+        ("1431473", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01431000"),
+        ("817316", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00817004"),
+        ("673880", "THREAD_SET_THREAD_TOKEN|THREAD_QUERY_LIMITED_INFORMATION|0x00673000"),
+        ("1175926", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01175004"),
+        ("623923", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00623000"),
+        ("42461", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00042000"),
+        ("1468779", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01468000"),
+        ("1086604", "THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01086004"),
+        ("94219", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_DIRECT_IMPERSONATION|0x00094000"),
+        ("356468", "THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00356000"),
+        ("586008", "THREAD_GET_CONTEXT|0x00586000"),
+        ("1299422", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01299000"),
+        ("3306", "THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00003004"),
+        ("687113", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|0x00687000"),
+        ("600922", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00600000"),
+        ("14291", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x00014000"),
+        ("2046487", "MAXIMUM_ALLOWED|THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x00046004"),
+        ("834682", "THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00834000"),
+        ("878579", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00878000"),
+        ("1371008", "THREAD_GET_CONTEXT|0x01371000"),
+        ("1489387", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01489004"),
+        ("1974687", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01974004"),
+        ("528363", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00528000"),
+        ("1842679", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01842000"),
+        ("370143", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x00370000"),
+        ("415846", "THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00415004"),
+        ("240977", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00240004"),
+        ("829818", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_QUERY_LIMITED_INFORMATION|0x00829000"),
+        ("1014904", "THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01014004"),
+        ("999087", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|0x00999004"),
+        ("685037", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|0x00685004"),
+        ("902969", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00902000"),
+        ("1264002", "THREAD_SUSPEND_RESUME|0x01264000"),
+        ("751969", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00751000"),
+        ("169652", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00169000"),
+        ("1231095", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|0x01231004"),
+        ("787228", "THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00787000"),
+        ("1402590", "THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01402000"),
+        ("1052726", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01052004"),
+        ("390102", "THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|0x00390000"),
+        ("281296", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x00281004"),
+        ("548290", "THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x00548000"),
+        ("2018745", "MAXIMUM_ALLOWED|THREAD_TERMINATE|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00018004"),
+        ("1671724", "THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01671004"),
+        ("1234694", "THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01234004"),
+        ("1742686", "THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01742004"),
+        ("975045", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|0x00975004"),
+        ("1271795", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01271004"),
+        ("1846019", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|0x01846000"),
+        ("1301182", "THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|0x01301000"),
+        ("504280", "THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x00504000"),
+        ("1103154", "THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x01103004"),
+        ("1539322", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01539000"),
+        ("1510761", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01510000"),
+        ("1522207", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_DIRECT_IMPERSONATION|0x01522004"),
+        ("947970", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00947000"),
+        ("1407601", "THREAD_TERMINATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01407000"),
+        ("1907009", "THREAD_TERMINATE|THREAD_GET_CONTEXT|0x01907000"),
+        ("1381085", "THREAD_TERMINATE|THREAD_SET_THREAD_TOKEN|0x01381004"),
+        ("1852659", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01852000"),
+        ("285362", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00285000"),
+        ("570173", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x00570000"),
+        ("728665", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00728004"),
+        ("826404", "THREAD_SET_LIMITED_INFORMATION|0x00826004"),
+        ("1628228", "THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01628000"),
+        ("1758630", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01758000"),
+        ("240385", "THREAD_TERMINATE|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00240004"),
+        ("1344675", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01344004"),
+        ("1929377", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01929004"),
+        ("1180329", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01180000"),
+        ("658765", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00658004"),
+        ("1997230", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01997000"),
+        ("1222142", "THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x01222000"),
+        ("1116669", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01116000"),
+        ("590347", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00590004"),
+        ("607137", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|0x00607004"),
+        ("396028", "THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|0x00396000"),
+        ("552183", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|0x00552000"),
+        ("1212", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_DIRECT_IMPERSONATION|0x00001000"),
+        ("41087", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|0x00041004"),
+        ("1381292", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x01381000"),
+        ("310068", "THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|0x00310000"),
+        ("1066345", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01066004"),
+        ("1798410", "THREAD_SET_CONTEXT|THREAD_SET_LIMITED_INFORMATION|0x01798000"),
+        ("1301949", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01301000"),
+        ("751564", "THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00751004"),
+        ("1496408", "THREAD_GET_CONTEXT|THREAD_SET_LIMITED_INFORMATION|0x01496000"),
+        ("1050361", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01050000"),
+        ("1792555", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01792004"),
+        ("1304020", "THREAD_SET_INFORMATION|0x01304000"),
+        ("1659361", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01659000"),
+        ("72256", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00072004"),
+        ("861446", "THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00861004"),
+        ("1652927", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01652004"),
+        ("159349", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00159000"),
+        ("1292814", "THREAD_SET_CONTEXT|THREAD_QUERY_LIMITED_INFORMATION|0x01292004"),
+        ("1077902", "THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01077000"),
+        ("270996", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00270004"),
+        ("725287", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x00725004"),
+        ("343166", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x00343004"),
+        ("1424929", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01424000"),
+        ("1109037", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|0x01109004"),
+        ("120856", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00120004"),
+        ("552702", "THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00552000"),
+        ("1871391", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01871000"),
+        ("1269868", "THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01269000"),
+        ("272948", "THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00272000"),
+        ("918836", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00918004"),
+        ("659049", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|0x00659000"),
+        ("1752720", "THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01752000"),
+        ("1444413", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_LIMITED_INFORMATION|0x01444000"),
+        ("1059850", "THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01059000"),
+        ("686476", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00686004"),
+        ("482077", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|0x00482004"),
+        ("1240776", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01240004"),
+        ("141206", "THREAD_SUSPEND_RESUME|THREAD_DIRECT_IMPERSONATION|0x00141004"),
+        ("1783851", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01783000"),
+        ("1444625", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01444004"),
+        ("869898", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_QUERY_LIMITED_INFORMATION|0x00869000"),
+        ("879855", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00879004"),
+        ("415621", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00415000"),
+        ("756975", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00756004"),
+        ("881190", "THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|0x00881000"),
+        ("233821", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00233000"),
+        ("788894", "THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_QUERY_LIMITED_INFORMATION|0x00788004"),
+        ("1736384", "THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01736004"),
+        ("460275", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00460004"),
+        ("1435347", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01435004"),
+        ("1758252", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01758000"),
+        ("247670", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00247000"),
+        ("810146", "THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x00810004"),
+        ("1583424", "THREAD_SET_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01583004"),
+        ("1200922", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01200000"),
+        ("1950556", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01950004"),
+        ("1383741", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01383000"),
+        ("1063637", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01063004"),
+        ("1792681", "THREAD_TERMINATE|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01792000"),
+        ("696019", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|0x00696000"),
+        ("2706", "THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00002004"),
+        ("1264393", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01264000"),
+        ("1329226", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01329004"),
+        ("1564284", "THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x01564004"),
+        ("647942", "THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00647000"),
+        ("252996", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00252004"),
+        ("1715916", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01715004"),
+        ("1924083", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|0x01924000"),
+        ("1944554", "THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01944004"),
+        ("2008248", "MAXIMUM_ALLOWED|THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00008000"),
+        ("339970", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00339000"),
+        ("153792", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00153000"),
+        ("400597", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00400004"),
+        ("346805", "THREAD_TERMINATE|THREAD_QUERY_LIMITED_INFORMATION|0x00346004"),
+        ("1174230", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01174000"),
+        ("1168100", "THREAD_IMPERSONATE|0x01168000"),
+        ("644762", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00644000"),
+        ("1905201", "THREAD_TERMINATE|THREAD_DIRECT_IMPERSONATION|0x01905000"),
+        ("1836873", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01836000"),
+        ("1560687", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01560004"),
+        ("1812273", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01812000"),
+        ("435975", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00435004"),
+        ("1051440", "THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01051000"),
+        ("191245", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00191004"),
+        ("854194", "THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|0x00854004"),
+        ("453828", "THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00453000"),
+        ("1633106", "THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|0x01633004"),
+        ("116374", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00116004"),
+        ("2064613", "MAXIMUM_ALLOWED|THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00064000"),
+        ("121211", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_DIRECT_IMPERSONATION|0x00121000"),
+        ("177331", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00177000"),
+        ("1845737", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01845004"),
+        ("396154", "THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x00396004"),
+        ("600269", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00600000"),
+        ("248207", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_DIRECT_IMPERSONATION|0x00248004"),
+        ("842597", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00842004"),
+        ("1317427", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01317004"),
+        ("1266951", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01266000"),
+        ("816020", "THREAD_SET_INFORMATION|0x00816000"),
+        ("517427", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00517004"),
+        ("1668985", "THREAD_TERMINATE|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01668004"),
+        ("1473069", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|0x01473000"),
+        ("1226499", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x01226000"),
+        ("973605", "THREAD_TERMINATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00973004"),
+        ("1593844", "THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01593004"),
+        ("1951198", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|0x01951000"),
+        ("686162", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x00686000"),
+        ("53523", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00053000"),
+        ("485095", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|0x00485004"),
+        ("18994", "THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00018004"),
+        ("1659047", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|0x01659004"),
+        ("74923", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00074000"),
+        ("1101481", "THREAD_TERMINATE|THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x01101000"),
+        ("1660494", "THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x01660004"),
+        ("1050046", "THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|0x01050004"),
+        ("898129", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|0x00898000"),
+        ("354010", "THREAD_SET_CONTEXT|0x00354000"),
+        ("1821873", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01821000"),
+        ("263101", "THREAD_TERMINATE|THREAD_IMPERSONATE|0x00263000"),
+        ("1021459", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01021000"),
+        ("1242372", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01242000"),
+        ("828968", "THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00828000"),
+        ("1539724", "THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01539004"),
+        ("112130", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|0x00112000"),
+        ("831506", "THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00831004"),
+        ("1760716", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01760004"),
+        ("700287", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x00700004"),
+        ("959338", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00959000"),
+        ("150295", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x00150004"),
+        ("1184423", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01184000"),
+        ("595146", "THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x00595004"),
+        ("1385214", "THREAD_SET_CONTEXT|THREAD_DIRECT_IMPERSONATION|0x01385004"),
+        ("589468", "THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00589000"),
+        ("368511", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00368000"),
+        ("472620", "THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00472000"),
+        ("1400056", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|0x01400004"),
+        ("596256", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00596004"),
+        ("475393", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00475000"),
+        ("990631", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00990000"),
+        ("985581", "THREAD_TERMINATE|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00985000"),
+        ("379982", "THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00379000"),
+        ("2030634", "MAXIMUM_ALLOWED|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00030004"),
+        ("1385524", "THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01385004"),
+        ("832477", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00832004"),
+        ("1733609", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01733000"),
+        ("1589273", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01589000"),
+        ("1305428", "THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01305000"),
+        ("749854", "THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00749004"),
+        ("1466482", "THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x01466000"),
+        ("248837", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00248004"),
+        ("1617635", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01617004"),
+        ("812510", "THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00812000"),
+        ("437616", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00437004"),
+        ("37647", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00037004"),
+        ("359819", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_QUERY_LIMITED_INFORMATION|0x00359000"),
+        ("259144", "THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x00259004"),
+        ("2055645", "MAXIMUM_ALLOWED|THREAD_TERMINATE|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00055004"),
+        ("1927925", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01927004"),
+        ("1792241", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01792000"),
+        ("134396", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00134004"),
+        ("503129", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|0x00503000"),
+        ("1688002", "THREAD_SUSPEND_RESUME|0x01688000"),
+        ("1949647", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01949004"),
+        ("1978818", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_QUERY_LIMITED_INFORMATION|0x01978000"),
+        ("1453007", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|0x01453004"),
+        ("774535", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00774004"),
+        ("863148", "THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x00863000"),
+        ("1052570", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01052000"),
+        ("1304529", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01304000"),
+        ("369753", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00369000"),
+        ("1673644", "THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01673004"),
+        ("104347", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00104004"),
+        ("389544", "THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00389004"),
+        ("724429", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00724000"),
+        ("1040535", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01040004"),
+        ("2001511", "MAXIMUM_ALLOWED|THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00001000"),
+        ("461472", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00461000"),
+        ("778325", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00778004"),
+        ("1717907", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01717004"),
+        ("2084227", "MAXIMUM_ALLOWED|THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00084004"),
+        ("1020353", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01020000"),
+        ("81241", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00081000"),
+        ("174387", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00174004"),
+        ("1446209", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_DIRECT_IMPERSONATION|0x01446000"),
+        ("486817", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_LIMITED_INFORMATION|0x00486004"),
+        ("676325", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00676004"),
+        ("1296457", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01296004"),
+        ("1035061", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|0x01035000"),
+        ("481395", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00481004"),
+        ("2032288", "MAXIMUM_ALLOWED|THREAD_GET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x00032000"),
+        ("1784592", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01784000"),
+        ("776446", "THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00776004"),
+        ("1871612", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01871000"),
+        ("1333934", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01333004"),
+        ("1348005", "THREAD_TERMINATE|0x01348004"),
+        ("1122202", "THREAD_SUSPEND_RESUME|THREAD_DIRECT_IMPERSONATION|0x01122000"),
+        ("1683967", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01683004"),
+        ("487053", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|0x00487000"),
+        ("1220890", "THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_QUERY_LIMITED_INFORMATION|0x01220000"),
+        ("213746", "THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00213004"),
+        ("1300520", "THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01300000"),
+        ("1466959", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01466000"),
+        ("109349", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00109000"),
+        ("1295340", "THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01295000"),
+        ("420390", "THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00420000"),
+        ("1581432", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01581000"),
+        ("2039009", "MAXIMUM_ALLOWED|THREAD_TERMINATE|THREAD_GET_CONTEXT|0x00039000"),
+        ("777970", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00777000"),
+        ("1808004", "0x01808004"),
+        ("1276293", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x01276000"),
+        ("259327", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00259004"),
+        ("1150073", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|0x01150000"),
+        ("1695569", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01695000"),
+        ("2039271", "MAXIMUM_ALLOWED|THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00039000"),
+        ("2090983", "MAXIMUM_ALLOWED|THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00090000"),
+        ("1348511", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01348000"),
+        ("348889", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_QUERY_LIMITED_INFORMATION|0x00348000"),
+        ("1537360", "THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01537000"),
+        ("1202237", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01202004"),
+        ("1511779", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01511000"),
+        ("1210417", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_LIMITED_INFORMATION|0x01210004"),
+        ("1072035", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|0x01072004"),
+        ("1835762", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01835000"),
+        ("570937", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00570004"),
+        ("103700", "THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00103000"),
+        ("564477", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00564004"),
+        ("1315268", "THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01315000"),
+        ("457579", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00457000"),
+        ("1310412", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_LIMITED_INFORMATION|0x01310000"),
+        ("360002", "THREAD_SUSPEND_RESUME|0x00360000"),
+        ("1444302", "THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01444000"),
+        ("34899", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_QUERY_LIMITED_INFORMATION|0x00034000"),
+        ("198066", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|0x00198004"),
+        ("1205643", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01205000"),
+        ("931959", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00931000"),
+        ("1498787", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01498004"),
+        ("1805462", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01805000"),
+        ("1478251", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01478000"),
+        ("1215734", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01215004"),
+        ("1921400", "THREAD_SET_LIMITED_INFORMATION|0x01921000"),
+        ("432757", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00432004"),
+        ("198420", "THREAD_SET_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00198000"),
+        ("784590", "THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00784000"),
+        ("1406023", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|0x01406000"),
+        ("1247259", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01247000"),
+        ("1344687", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01344004"),
+        ("1768587", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01768004"),
+        ("1853175", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x01853004"),
+        ("1733981", "THREAD_TERMINATE|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01733000"),
+        ("2017485", "MAXIMUM_ALLOWED|THREAD_TERMINATE|THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x00017004"),
+        ("390549", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00390000"),
+        ("716368", "THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00716000"),
+        ("14389", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00014000"),
+        ("1624596", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01624004"),
+        ("1414101", "THREAD_TERMINATE|THREAD_IMPERSONATE|0x01414000"),
+        ("1128448", "THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01128000"),
+        ("1234524", "THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01234004"),
+        ("60062", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|0x00060000"),
+        ("798103", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|0x00798000"),
+        ("1807691", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01807000"),
+        ("2089054", "MAXIMUM_ALLOWED|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|0x00089004"),
+        ("917786", "THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00917004"),
+        ("744317", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00744004"),
+        ("590213", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_DIRECT_IMPERSONATION|0x00590000"),
+        ("1066832", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01066000"),
+        ("788604", "THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00788004"),
+        ("856945", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00856004"),
+        ("1977919", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01977000"),
+        ("874910", "THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00874000"),
+        ("1992281", "THREAD_TERMINATE|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x01992000"),
+        ("493731", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00493000"),
+        ("667624", "THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00667004"),
+        ("1290876", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01290004"),
+        ("686277", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00686004"),
+        ("465991", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00465000"),
+        ("1252013", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|0x01252000"),
+        ("125316", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00125004"),
+        ("1468545", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01468004"),
+        ("1148354", "THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01148004"),
+        ("1584234", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01584004"),
+        ("1768599", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01768000"),
+        ("1003958", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01003000"),
+        ("1278733", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01278000"),
+        ("861625", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00861004"),
+        ("893885", "THREAD_TERMINATE|THREAD_SET_THREAD_TOKEN|THREAD_QUERY_LIMITED_INFORMATION|0x00893004"),
+        ("271106", "THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|0x00271004"),
+        ("1176973", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01176000"),
+        ("1635865", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01635004"),
+        ("101994", "THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00101004"),
+        ("809745", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00809004"),
+        ("1175699", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01175000"),
+        ("1848042", "THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|0x01848000"),
+        ("543616", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00543004"),
+        ("308496", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x00308004"),
+        ("335962", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00335000"),
+        ("375554", "THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00375004"),
+        ("723513", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00723000"),
+        ("1615189", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|0x01615000"),
+        ("1481476", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01481004"),
+        ("1692563", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01692000"),
+        ("1007908", "THREAD_GET_CONTEXT|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01007000"),
+        ("2066035", "MAXIMUM_ALLOWED|THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|0x00066004"),
+        ("1369808", "THREAD_GET_CONTEXT|THREAD_QUERY_LIMITED_INFORMATION|0x01369000"),
+        ("1777672", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01777000"),
+        ("1756990", "THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01756000"),
+        ("1443271", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01443000"),
+        ("1147545", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01147004"),
+        ("1398814", "THREAD_SET_CONTEXT|THREAD_QUERY_LIMITED_INFORMATION|0x01398004"),
+        ("1597568", "THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01597000"),
+        ("160135", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|0x00160004"),
+        ("1674418", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_LIMITED_INFORMATION|0x01674000"),
+        ("1339149", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x01339000"),
+        ("1197519", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01197000"),
+        ("1847238", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01847000"),
+        ("51630", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00051000"),
+        ("196800", "THREAD_QUERY_LIMITED_INFORMATION|0x00196000"),
+        ("153282", "THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x00153000"),
+        ("1344073", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|0x01344000"),
+        ("1878010", "THREAD_SET_CONTEXT|0x01878000"),
+        ("522479", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00522000"),
+        ("1118009", "THREAD_TERMINATE|THREAD_GET_CONTEXT|0x01118000"),
+        ("1702012", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|0x01702000"),
+        ("17539", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00017000"),
+        ("246851", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00246000"),
+        ("429250", "THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00429000"),
+        ("1101333", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01101000"),
+        ("762768", "THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00762000"),
+        ("1798124", "THREAD_SET_INFORMATION|THREAD_IMPERSONATE|0x01798004"),
+        ("1675666", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01675004"),
+        ("1406450", "THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01406000"),
+        ("97307", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00097004"),
+        ("841595", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00841004"),
+        ("66043", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|0x00066000"),
+        ("420767", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00420004"),
+        ("1806992", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01806000"),
+        ("1054058", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|0x01054000"),
+        ("964396", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00964004"),
+        ("1978197", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|0x01978004"),
+        ("1172120", "THREAD_SET_INFORMATION|THREAD_IMPERSONATE|0x01172000"),
+        ("162678", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00162000"),
+        ("1880510", "THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01880000"),
+        ("320901", "THREAD_TERMINATE|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00320000"),
+        ("1097662", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01097000"),
+        ("484397", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00484004"),
+        ("488322", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00488000"),
+        ("877282", "THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x00877000"),
+        ("363943", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00363000"),
+        ("616506", "THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00616004"),
+        ("104604", "THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00104004"),
+        ("646468", "THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00646000"),
+        ("1755827", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01755004"),
+        ("1088378", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01088000"),
+        ("249367", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00249004"),
+        ("1429535", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01429004"),
+        ("28162", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x00028000"),
+        ("1836201", "THREAD_TERMINATE|THREAD_DIRECT_IMPERSONATION|0x01836000"),
+        ("376429", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00376000"),
+        ("31714", "THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00031004"),
+        ("1843560", "THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01843000"),
+        ("568403", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_LIMITED_INFORMATION|0x00568000"),
+        ("1803758", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01803000"),
+        ("1378917", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01378004"),
+        ("1843338", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01843000"),
+        ("1540319", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01540000"),
+        ("1896732", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01896000"),
+        ("1683136", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|0x01683004"),
+        ("513793", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00513000"),
+        ("26396", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00026004"),
+        ("329161", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x00329000"),
+        ("841458", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00841000"),
+        ("617545", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00617004"),
+        ("1473914", "THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01473004"),
+        ("493535", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00493004"),
+        ("811962", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00811000"),
+        ("1184508", "THREAD_GET_CONTEXT|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01184000"),
+        ("618355", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00618004"),
+        ("2037840", "MAXIMUM_ALLOWED|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00037000"),
+        ("1191101", "THREAD_TERMINATE|THREAD_IMPERSONATE|0x01191000"),
+        ("1281730", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01281000"),
+        ("175154", "THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x00175004"),
+        ("1432448", "THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01432000"),
+        ("676777", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00676004"),
+        ("1667182", "THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|0x01667000"),
+        ("200886", "THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_QUERY_LIMITED_INFORMATION|0x00200004"),
+        ("550084", "THREAD_SET_THREAD_TOKEN|0x00550004"),
+        ("1618204", "THREAD_DIRECT_IMPERSONATION|0x01618004"),
+        ("1940226", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01940004"),
+        ("1483050", "THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|0x01483000"),
+        ("690196", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|0x00690004"),
+        ("1426115", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|0x01426004"),
+        ("750836", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00750004"),
+        ("200079", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|0x00200000"),
+        ("441260", "THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00441000"),
+        ("154644", "THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00154004"),
+        ("1382971", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01382000"),
+        ("719774", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00719004"),
+        ("1277741", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01277000"),
+        ("614447", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00614004"),
+        ("1048208", "THREAD_GET_CONTEXT|THREAD_DIRECT_IMPERSONATION|0x01048000"),
+        ("902217", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_DIRECT_IMPERSONATION|0x00902004"),
+        ("1646517", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01646004"),
+        ("1067002", "THREAD_SUSPEND_RESUME|0x01067000"),
+        ("1147632", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01147000"),
+        ("1655648", "THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01655000"),
+        ("964001", "THREAD_TERMINATE|0x00964000"),
+        ("1572910", "THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01572000"),
+        ("1258115", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|0x01258004"),
+        ("1842062", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|0x01842000"),
+        ("856064", "THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|0x00856004"),
+        ("552560", "THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00552000"),
+        ("1803129", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|0x01803000"),
+        ("1392933", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01392000"),
+        ("1106850", "THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01106000"),
+        ("890801", "THREAD_TERMINATE|THREAD_QUERY_LIMITED_INFORMATION|0x00890000"),
+        ("516789", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00516000"),
+        ("658589", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00658000"),
+        ("1630220", "THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01630000"),
+        ("1793167", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x01793004"),
+        ("383893", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_QUERY_LIMITED_INFORMATION|0x00383000"),
+        ("1510701", "THREAD_TERMINATE|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01510000"),
+        ("292444", "THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00292004"),
+        ("1180980", "THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01180000"),
+        ("1803473", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01803000"),
+        ("1643899", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_QUERY_LIMITED_INFORMATION|0x01643000"),
+        ("397249", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00397000"),
+        ("953299", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x00953000"),
+        ("484767", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00484004"),
+        ("2092728", "MAXIMUM_ALLOWED|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00092000"),
+        ("591483", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x00591000"),
+        ("1340605", "THREAD_TERMINATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01340004"),
+        ("890630", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00890000"),
+        ("1006551", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01006000"),
+        ("1075995", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01075004"),
+        ("1065421", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01065000"),
+        ("662452", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00662000"),
+        ("2001593", "MAXIMUM_ALLOWED|THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00001000"),
+        ("130718", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00130000"),
+        ("1178861", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01178000"),
+        ("1219129", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|0x01219000"),
+        ("864251", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00864000"),
+        ("147196", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|0x00147004"),
+        ("910240", "THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00910000"),
+        ("1206821", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01206000"),
+        ("1496670", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01496000"),
+        ("337596", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00337004"),
+        ("446506", "THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00446004"),
+        ("1097918", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01097000"),
+        ("823381", "THREAD_TERMINATE|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00823000"),
+        ("1282956", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01282004"),
+        ("884404", "THREAD_SET_LIMITED_INFORMATION|0x00884004"),
+        ("1105723", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01105000"),
+        ("1817946", "THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01817004"),
+        ("1446626", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01446004"),
+        ("241743", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00241000"),
+        ("134957", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00134004"),
+        ("229543", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00229000"),
+        ("1500267", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01500004"),
+        ("497394", "THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00497004"),
+        ("1851604", "THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01851004"),
+        ("845199", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|0x00845000"),
+        ("922757", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00922004"),
+        ("933411", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_LIMITED_INFORMATION|0x00933000"),
+        ("1530887", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_QUERY_LIMITED_INFORMATION|0x01530004"),
+        ("330850", "THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00330000"),
+        ("1154102", "THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|0x01154000"),
+        ("1965144", "THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x01965004"),
+        ("628476", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00628004"),
+        ("1731941", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01731000"),
+        ("35480", "THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x00035000"),
+        ("811628", "THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00811000"),
+        ("1499377", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01499004"),
+        ("330439", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00330000"),
+        ("1382585", "THREAD_TERMINATE|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01382004"),
+        ("4985", "THREAD_TERMINATE|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00004004"),
+        ("1198286", "THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x01198004"),
+        ("2084136", "MAXIMUM_ALLOWED|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|0x00084004"),
+        ("1664139", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|0x01664000"),
+        ("2090700", "MAXIMUM_ALLOWED|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00090000"),
+        ("82572", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00082000"),
+        ("799354", "THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00799004"),
+        ("593449", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00593000"),
+        ("368061", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|0x00368000"),
+        ("527015", "THREAD_TERMINATE|THREAD_SET_CONTEXT|0x00527004"),
+        ("1883018", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|0x01883000"),
+        ("506983", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00506000"),
+        ("1766352", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01766000"),
+        ("719498", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x00719000"),
+        ("615288", "THREAD_GET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x00615000"),
+        ("321987", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00321004"),
+        ("1556403", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_LIMITED_INFORMATION|0x01556000"),
+        ("78945", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00078004"),
+        ("282771", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00282000"),
+        ("668727", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00668004"),
+        ("1198229", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01198000"),
+        ("1280372", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01280000"),
+        ("12589", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00012000"),
+        ("340249", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00340000"),
+        ("1752933", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01752000"),
+        ("2070223", "MAXIMUM_ALLOWED|THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00070000"),
+        ("306906", "THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00306004"),
+        ("1203866", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01203004"),
+        ("1198295", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x01198004"),
+        ("1434624", "THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01434004"),
+        ("870160", "THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x00870000"),
+        ("1393050", "THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|0x01393000"),
+        ("311110", "THREAD_SET_CONTEXT|THREAD_IMPERSONATE|0x00311000"),
+        ("414639", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00414000"),
+        ("159531", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00159000"),
+        ("106431", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00106000"),
+        ("1455304", "THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01455004"),
+        ("1142051", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|0x01142000"),
+        ("260427", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00260004"),
+        ("848113", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|0x00848000"),
+        ("623178", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x00623000"),
+        ("1423542", "THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01423000"),
+        ("386627", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00386004"),
+        ("1458212", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_DIRECT_IMPERSONATION|0x01458000"),
+        ("106679", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00106000"),
+        ("374354", "THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00374004"),
+        ("75259", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00075000"),
+        ("1767743", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01767000"),
+        ("1312428", "THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01312000"),
+        ("524300", "THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00524000"),
+        ("1574849", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01574000"),
+        ("16461", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00016000"),
+        ("760662", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00760000"),
+        ("443659", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00443000"),
+        ("810784", "THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00810004"),
+        ("530789", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00530000"),
+        ("984276", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00984004"),
+        ("501326", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00501004"),
+        ("1697671", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01697000"),
+        ("1200611", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01200000"),
+        ("2057586", "MAXIMUM_ALLOWED|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00057004"),
+        ("1869215", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_DIRECT_IMPERSONATION|0x01869004"),
+        ("1359839", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01359000"),
+        ("926431", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00926000"),
+        ("780019", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|0x00780000"),
+        ("1904643", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01904000"),
+        ("1064413", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_LIMITED_INFORMATION|0x01064000"),
+        ("1725294", "THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x01725004"),
+        ("1867601", "THREAD_TERMINATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01867000"),
+        ("402558", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00402000"),
+        ("613043", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|0x00613000"),
+        ("506484", "THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x00506004"),
+        ("1396575", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01396004"),
+        ("1124993", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01124000"),
+        ("350722", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00350000"),
+        ("1153130", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|0x01153000"),
+        ("1440514", "THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01440004"),
+        ("269845", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00269004"),
+        ("2083237", "MAXIMUM_ALLOWED|THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00083004"),
+        ("745802", "THREAD_SUSPEND_RESUME|THREAD_QUERY_LIMITED_INFORMATION|0x00745000"),
+        ("544991", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00544000"),
+        ("1216507", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01216004"),
+        ("822226", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00822004"),
+        ("2045196", "MAXIMUM_ALLOWED|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|0x00045004"),
+        ("417690", "THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00417000"),
+        ("1109878", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01109000"),
+        ("567831", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00567000"),
+        ("274971", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00274000"),
+        ("225756", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00225004"),
+        ("1492549", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01492000"),
+        ("777119", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|0x00777000"),
+        ("2015551", "MAXIMUM_ALLOWED|THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00015000"),
+        ("1627753", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01627000"),
+        ("1523476", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01523004"),
+        ("2038494", "MAXIMUM_ALLOWED|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x00038004"),
+        ("1191652", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01191000"),
+        ("819407", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_LIMITED_INFORMATION|0x00819004"),
+        ("282735", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00282004"),
+        ("90790", "THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00090000"),
+        ("840668", "THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00840000"),
+        ("1711366", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01711004"),
+        ("1431230", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01431000"),
+        ("1633998", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01633000"),
+        ("1378908", "THREAD_GET_CONTEXT|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01378000"),
+        ("1414337", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01414004"),
+        ("684004", "0x00684004"),
+        ("120825", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00120004"),
+        ("411159", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x00411000"),
+        ("1425985", "THREAD_TERMINATE|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01425004"),
+        ("696858", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00696000"),
+        ("2051676", "MAXIMUM_ALLOWED|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00051004"),
+        ("1409619", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01409000"),
+        ("2051131", "MAXIMUM_ALLOWED|THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|0x00051000"),
+        ("1586373", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01586000"),
+        ("1394355", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01394004"),
+        ("1852710", "THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01852000"),
+        ("1096812", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_LIMITED_INFORMATION|0x01096000"),
+        ("480630", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00480000"),
+        ("1698288", "THREAD_GET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x01698000"),
+        ("748471", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00748000"),
+        ("628745", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00628004"),
+        ("1747610", "THREAD_SET_CONTEXT|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01747000"),
+        ("632464", "THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00632004"),
+        ("1561849", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01561000"),
+        ("1929752", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01929000"),
+        ("67776", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00067004"),
+        ("452563", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00452000"),
+        ("104130", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|0x00104000"),
+        ("205805", "THREAD_TERMINATE|THREAD_QUERY_LIMITED_INFORMATION|0x00205004"),
+        ("508026", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|0x00508004"),
+        ("291314", "THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00291004"),
+        ("1669506", "THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01669004"),
+        ("697219", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_DIRECT_IMPERSONATION|0x00697000"),
+        ("910271", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00910000"),
+        ("14766", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00014004"),
+        ("901731", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00901000"),
+        ("1535222", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01535000"),
+        ("1539442", "THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01539000"),
+        ("1572877", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01572004"),
+        ("71784", "THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00071004"),
+        ("1904730", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01904000"),
+        ("400749", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00400000"),
+        ("1072484", "THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x01072004"),
+        ("223336", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00223004"),
+        ("304692", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00304000"),
+        ("520443", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00520000"),
+        ("1440960", "THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01440000"),
+        ("304369", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00304000"),
+        ("1188415", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_LIMITED_INFORMATION|0x01188004"),
+        ("2031437", "MAXIMUM_ALLOWED|THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00031004"),
+        ("694455", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00694004"),
+        ("953107", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|0x00953004"),
+        ("1729383", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01729000"),
+        ("529845", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00529004"),
+        ("38027", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|0x00038004"),
+        ("478382", "THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00478000"),
+        ("884610", "THREAD_SET_CONTEXT|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00884000"),
+        ("464826", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00464004"),
+        ("1997", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00001004"),
+        ("1275460", "THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01275000"),
+        ("755629", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00755000"),
+        ("1163596", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01163004"),
+        ("276903", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00276000"),
+        ("2018002", "MAXIMUM_ALLOWED|THREAD_SUSPEND_RESUME|0x00018000"),
+        ("1793176", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x01793004"),
+        ("431829", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00431000"),
+        ("257498", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x00257000"),
+        ("1139263", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01139000"),
+        ("1916729", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01916000"),
+        ("699130", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|0x00699000"),
+        ("306298", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x00306000"),
+        ("237535", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00237004"),
+        ("1796322", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01796000"),
+        ("535164", "THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x00535004"),
+        ("408334", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00408004"),
+        ("526511", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00526000"),
+        ("624329", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00624000"),
+        ("470440", "THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00470000"),
+        ("495365", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00495004"),
+        ("1217737", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01217004"),
+        ("324518", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00324000"),
+        ("552283", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x00552000"),
+        ("622855", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00622004"),
+        ("889555", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00889004"),
+        ("904895", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_QUERY_LIMITED_INFORMATION|0x00904004"),
+        ("2007967", "MAXIMUM_ALLOWED|THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00007004"),
+        ("166792", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00166000"),
+        ("1110243", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01110000"),
+        ("1774734", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01774004"),
+        ("491507", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00491004"),
+        ("66878", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00066000"),
+        ("1115109", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_IMPERSONATE|0x01115000"),
+        ("1443252", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01443000"),
+        ("954489", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x00954000"),
+        ("7490", "THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x00007000"),
+        ("1524559", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01524000"),
+        ("940461", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00940000"),
+        ("1144280", "THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x01144000"),
+        ("581572", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00581000"),
+        ("2043971", "MAXIMUM_ALLOWED|THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00043000"),
+        ("87028", "THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|0x00087000"),
+        ("291076", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|0x00291004"),
+        ("431691", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00431000"),
+        ("1657679", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01657000"),
+        ("1985485", "THREAD_TERMINATE|THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x01985004"),
+        ("984674", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00984004"),
+        ("855713", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00855000"),
+        ("1508391", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01508000"),
+        ("347357", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00347004"),
+        ("1262886", "THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_QUERY_LIMITED_INFORMATION|0x01262004"),
+        ("1380215", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_DIRECT_IMPERSONATION|0x01380004"),
+        ("861080", "THREAD_SET_THREAD_TOKEN|0x00861000"),
+        ("167706", "THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00167004"),
+        ("8881", "THREAD_TERMINATE|THREAD_SET_THREAD_TOKEN|THREAD_QUERY_LIMITED_INFORMATION|0x00008000"),
+        ("497397", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00497004"),
+        ("1030193", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|0x01030000"),
+        ("1594292", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x01594000"),
+        ("1741904", "THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01741004"),
+        ("1831526", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01831004"),
+        ("551083", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|0x00551000"),
+        ("1961105", "THREAD_TERMINATE|THREAD_IMPERSONATE|0x01961004"),
+        ("448679", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00448000"),
+        ("20977", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00020004"),
+        ("283117", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|0x00283004"),
+        ("1576141", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x01576000"),
+        ("1947289", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x01947000"),
+        ("1552453", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01552000"),
+        ("1561185", "THREAD_TERMINATE|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|0x01561004"),
+        ("1025523", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01025000"),
+        ("121664", "THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00121004"),
+        ("1827902", "THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01827000"),
+        ("364980", "THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00364000"),
+        ("1249933", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01249000"),
+        ("1188852", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01188000"),
+        ("1347162", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x01347000"),
+        ("1040975", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01040004"),
+        ("582283", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x00582000"),
+        ("1792439", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01792000"),
+        ("431280", "THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x00431000"),
+        ("1614813", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_LIMITED_INFORMATION|0x01614000"),
+        ("1277236", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01277004"),
+        ("590238", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00590000"),
+        ("1473083", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|0x01473000"),
+        ("697765", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00697004"),
+        ("932777", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00932004"),
+        ("1052653", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01052000"),
+        ("693000", "0x00693000"),
+        ("844980", "THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00844000"),
+        ("496133", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|0x00496000"),
+        ("44891", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_QUERY_LIMITED_INFORMATION|0x00044000"),
+        ("1436971", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01436000"),
+        ("290233", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00290000"),
+        ("491241", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00491000"),
+        ("1669952", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01669000"),
+        ("1721967", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01721004"),
+        ("1639915", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01639004"),
+        ("397211", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_DIRECT_IMPERSONATION|0x00397000"),
+        ("334552", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00334000"),
+        ("1717587", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01717004"),
+        ("1728013", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|0x01728000"),
+        ("1506252", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01506000"),
+        ("1898038", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|0x01898000"),
+        ("1044415", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_LIMITED_INFORMATION|0x01044004"),
+        ("344732", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00344000"),
+        ("1255701", "THREAD_TERMINATE|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01255000"),
+        ("2033571", "MAXIMUM_ALLOWED|THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00033000"),
+        ("172637", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00172004"),
+        ("1927761", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01927000"),
+        ("1561507", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01561004"),
+        ("897527", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00897004"),
+        ("1820499", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x01820000"),
+        ("1367411", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_LIMITED_INFORMATION|0x01367000"),
+        ("1713999", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01713000"),
+        ("169954", "THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00169004"),
+        ("1507689", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01507000"),
+        ("278106", "THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|0x00278004"),
+        ("2064322", "MAXIMUM_ALLOWED|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00064000"),
+        ("1456410", "THREAD_SET_CONTEXT|THREAD_SET_LIMITED_INFORMATION|0x01456000"),
+        ("2064132", "MAXIMUM_ALLOWED|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|0x00064000"),
+        ("748446", "THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00748004"),
+        ("2013375", "MAXIMUM_ALLOWED|THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00013004"),
+        ("2021517", "MAXIMUM_ALLOWED|THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00021004"),
+        ("446795", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00446004"),
+        ("1889442", "THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01889000"),
+        ("386439", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00386000"),
+        ("847406", "THREAD_SUSPEND_RESUME|THREAD_SET_LIMITED_INFORMATION|0x00847004"),
+        ("846947", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00846004"),
+        ("1301083", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|0x01301000"),
+        ("1543448", "THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01543000"),
+        ("1861845", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01861004"),
+        ("414741", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00414000"),
+        ("1286333", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01286000"),
+        ("1068135", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|0x01068004"),
+        ("827102", "THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|0x00827000"),
+        ("1502100", "THREAD_IMPERSONATE|0x01502000"),
+        ("1026148", "THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x01026000"),
+        ("906106", "THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|0x00906004"),
+        ("386573", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00386000"),
+        ("625678", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00625000"),
+        ("1173047", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|0x01173004"),
+        ("1515304", "THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01515004"),
+        ("1925356", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01925004"),
+        ("427472", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00427000"),
+        ("1099234", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01099004"),
+        ("944420", "THREAD_SET_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00944000"),
+        ("2065639", "MAXIMUM_ALLOWED|THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00065000"),
+        ("808996", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00808004"),
+        ("1737271", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01737000"),
+        ("701177", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x00701004"),
+        ("1315361", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01315000"),
+        ("516661", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00516000"),
+        ("1718816", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_LIMITED_INFORMATION|0x01718004"),
+        ("296393", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00296000"),
+        ("389013", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|0x00389000"),
+        ("1661943", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01661000"),
+        ("1973094", "THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|0x01973004"),
+        ("1577261", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01577000"),
+        ("1904214", "THREAD_SET_CONTEXT|THREAD_DIRECT_IMPERSONATION|0x01904004"),
+        ("691591", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00691000"),
+        ("1097796", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01097004"),
+        ("1431206", "THREAD_SUSPEND_RESUME|THREAD_DIRECT_IMPERSONATION|0x01431004"),
+        ("1302506", "THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01302004"),
+        ("626603", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00626000"),
+        ("178279", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00178000"),
+        ("1705564", "THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01705004"),
+        ("1409184", "THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|0x01409004"),
+        ("1476820", "THREAD_SET_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01476000"),
+        ("1894490", "THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x01894000"),
+        ("1973362", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01973000"),
+        ("2057988", "MAXIMUM_ALLOWED|THREAD_GET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00057000"),
+        ("555897", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_QUERY_LIMITED_INFORMATION|0x00555004"),
+        ("994640", "THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00994000"),
+        ("388473", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00388000"),
+        ("1491805", "THREAD_TERMINATE|THREAD_QUERY_LIMITED_INFORMATION|0x01491004"),
+        ("937320", "THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00937000"),
+        ("1312776", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01312004"),
+        ("1311400", "THREAD_SET_LIMITED_INFORMATION|0x01311000"),
+        ("913775", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00913004"),
+        ("1092128", "THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|0x01092000"),
+        ("25831", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00025000"),
+        ("1280866", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01280004"),
+        ("1923991", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01923000"),
+        ("1018296", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x01018004"),
+        ("1859489", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x01859000"),
+        ("1552145", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x01552004"),
+        ("875738", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00875000"),
+        ("964771", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00964000"),
+        ("317537", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00317004"),
+        ("1077894", "THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_QUERY_LIMITED_INFORMATION|0x01077004"),
+        ("892826", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00892004"),
+        ("918453", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00918000"),
+        ("2052184", "MAXIMUM_ALLOWED|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|0x00052004"),
+        ("37590", "THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00037000"),
+        ("222683", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00222000"),
+        ("197642", "THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00197000"),
+        ("1775551", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01775000"),
+        ("1222038", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|0x01222000"),
+        ("656548", "THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00656000"),
+        ("991365", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00991004"),
+        ("1389773", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01389000"),
+        ("1995860", "THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01995000"),
+        ("126570", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00126000"),
+        ("1004517", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01004004"),
+        ("1532893", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_QUERY_LIMITED_INFORMATION|0x01532000"),
+        ("172421", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00172000"),
+        ("725271", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00725000"),
+        ("1273719", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01273000"),
+        ("692500", "THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00692000"),
+        ("213770", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00213000"),
+        ("1678565", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01678004"),
+        ("201180", "THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|0x00201000"),
+        ("874536", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00874004"),
+        ("1849569", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01849000"),
+        ("1360481", "THREAD_TERMINATE|THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x01360000"),
+        ("1152748", "THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01152000"),
+        ("1322571", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01322000"),
+        ("165028", "THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|0x00165000"),
+        ("827032", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|0x00827000"),
+        ("1279453", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01279000"),
+        ("924092", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|0x00924000"),
+        ("849486", "THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x00849004"),
+        ("227853", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00227000"),
+        ("1235486", "THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x01235004"),
+        ("931196", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|0x00931004"),
+        ("576269", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00576000"),
+        ("232997", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00232004"),
+        ("1598911", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01598000"),
+        ("1919440", "THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01919000"),
+        ("1485356", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01485004"),
+        ("514474", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00514004"),
+        ("1408548", "THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01408000"),
+        ("1538295", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x01538004"),
+        ("1580641", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01580000"),
+        ("189804", "THREAD_QUERY_LIMITED_INFORMATION|0x00189004"),
+        ("847949", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00847000"),
+        ("1216368", "THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01216000"),
+        ("251963", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00251000"),
+        ("710607", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00710004"),
+        ("1611093", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|0x01611000"),
+        ("1541994", "THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01541004"),
+        ("914229", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00914000"),
+        ("790439", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00790000"),
+        ("2046812", "MAXIMUM_ALLOWED|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_LIMITED_INFORMATION|0x00046000"),
+        ("245700", "THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00245000"),
+        ("491090", "THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|0x00491000"),
+        ("1819337", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01819004"),
+        ("319970", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00319000"),
+        ("6985", "THREAD_TERMINATE|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00006004"),
+        ("1707737", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01707004"),
+        ("1537345", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01537004"),
+        ("985519", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00985000"),
+        ("1477262", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01477000"),
+        ("540239", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00540000"),
+        ("2021954", "MAXIMUM_ALLOWED|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00021004"),
+        ("608931", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00608000"),
+        ("172398", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00172000"),
+        ("1195721", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01195000"),
+        ("1888268", "THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01888000"),
+        ("1526866", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01526004"),
+        ("59211", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_DIRECT_IMPERSONATION|0x00059000"),
+        ("1365884", "THREAD_SET_THREAD_TOKEN|THREAD_QUERY_LIMITED_INFORMATION|0x01365004"),
+        ("1273684", "THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01273004"),
+        ("1509251", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01509000"),
+        ("1445058", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|0x01445000"),
+        ("1646092", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|0x01646000"),
+        ("442292", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x00442000"),
+        ("1981234", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01981004"),
+        ("1818021", "THREAD_TERMINATE|THREAD_SET_INFORMATION|0x01818000"),
+        ("799041", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|0x00799000"),
+        ("807435", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00807004"),
+        ("160175", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x00160004"),
+        ("196095", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|0x00196004"),
+        ("1371559", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01371000"),
+        ("750021", "THREAD_TERMINATE|THREAD_SET_INFORMATION|0x00750000"),
+        ("2074296", "MAXIMUM_ALLOWED|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x00074004"),
+        ("569717", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00569004"),
+        ("258058", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|0x00258000"),
+        ("1724891", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_QUERY_LIMITED_INFORMATION|0x01724000"),
+        ("1329655", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01329004"),
+        ("1828811", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_LIMITED_INFORMATION|0x01828000"),
+        ("1459980", "THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01459000"),
+        ("133926", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00133004"),
+        ("661049", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|0x00661000"),
+        ("62635", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00062004"),
+        ("1829981", "THREAD_TERMINATE|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01829000"),
+        ("304011", "THREAD_TERMINATE|THREAD_SET_CONTEXT|0x00304000"),
+        ("1111186", "THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|0x01111004"),
+        ("531250", "THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00531000"),
+        ("730295", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x00730004"),
+        ("1229179", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x01229000"),
+        ("841293", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x00841000"),
+        ("569910", "THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00569000"),
+        ("1416620", "THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01416000"),
+        ("778484", "THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x00778004"),
+        ("1613996", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01613004"),
+        ("85908", "THREAD_GET_CONTEXT|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00085000"),
+        ("549225", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00549004"),
+        ("1837354", "THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01837004"),
+        ("1779738", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01779000"),
+        ("947650", "THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00947000"),
+        ("1769609", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01769000"),
+        ("768542", "THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00768000"),
+        ("1221968", "THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01221000"),
+        ("11458", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00011000"),
+        ("456460", "THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00456000"),
+        ("1691348", "THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01691000"),
+        ("978857", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00978004"),
+        ("1942475", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01942004"),
+        ("1141759", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01141000"),
+        ("309574", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00309004"),
+        ("1407812", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_LIMITED_INFORMATION|0x01407000"),
+        ("361792", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00361000"),
+        ("169812", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_LIMITED_INFORMATION|0x00169000"),
+        ("1714038", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|0x01714000"),
+        ("32553", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00032000"),
+        ("1882279", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01882000"),
+        ("864370", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00864000"),
+        ("1932499", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x01932000"),
+        ("648864", "THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00648004"),
+        ("638461", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00638000"),
+        ("580637", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00580004"),
+        ("1570800", "THREAD_QUERY_LIMITED_INFORMATION|0x01570000"),
+        ("1870670", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01870000"),
+        ("1041023", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|0x01041000"),
+        ("1013682", "THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01013000"),
+        ("1924697", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01924004"),
+        ("1532790", "THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01532000"),
+        ("1045073", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|0x01045000"),
+        ("717808", "THREAD_GET_CONTEXT|THREAD_QUERY_LIMITED_INFORMATION|0x00717000"),
+        ("433482", "THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x00433000"),
+        ("1160441", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01160000"),
+        ("896610", "THREAD_SET_CONTEXT|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00896000"),
+        ("1792550", "THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01792000"),
+        ("775982", "THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00775000"),
+        ("539198", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|0x00539000"),
+        ("944836", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00944004"),
+        ("319967", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00319004"),
+        ("1624263", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01624000"),
+        ("1083869", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01083000"),
+        ("130065", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|0x00130004"),
+        ("1817608", "THREAD_GET_CONTEXT|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01817000"),
+        ("628748", "THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00628000"),
+        ("1271883", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_QUERY_LIMITED_INFORMATION|0x01271000"),
+        ("968578", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00968000"),
+        ("498204", "THREAD_DIRECT_IMPERSONATION|0x00498004"),
+        ("545659", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00545000"),
+        ("1198011", "THREAD_TERMINATE|THREAD_SET_CONTEXT|0x01198000"),
+        ("129737", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00129004"),
+        ("438906", "THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00438004"),
+        ("1735114", "THREAD_SET_CONTEXT|THREAD_IMPERSONATE|0x01735004"),
+        ("1705251", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x01705000"),
+        ("307352", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00307000"),
+        ("842206", "THREAD_SUSPEND_RESUME|THREAD_DIRECT_IMPERSONATION|0x00842004"),
+        ("1502748", "THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01502000"),
+        ("1958172", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|0x01958000"),
+        ("700110", "THREAD_SET_CONTEXT|THREAD_IMPERSONATE|0x00700000"),
+        ("1906047", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|0x01906004"),
+        ("382876", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00382004"),
+        ("1818336", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01818004"),
+        ("1034623", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01034000"),
+        ("257421", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00257000"),
+        ("1269601", "THREAD_TERMINATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01269000"),
+        ("811494", "THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_SET_LIMITED_INFORMATION|0x00811004"),
+        ("1046735", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01046004"),
+        ("82929", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00082000"),
+        ("1615718", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01615000"),
+        ("390640", "THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00390000"),
+        ("1146437", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01146004"),
+        ("251118", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|0x00251000"),
+        ("334340", "THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00334000"),
+        ("1553536", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01553004"),
+        ("1612104", "THREAD_IMPERSONATE|0x01612004"),
+        ("381108", "THREAD_GET_CONTEXT|THREAD_IMPERSONATE|0x00381000"),
+        ("1401678", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01401000"),
+        ("158660", "THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00158000"),
+        ("832453", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00832000"),
+        ("1191346", "THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01191004"),
+        ("635197", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|0x00635004"),
+        ("1660082", "THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|0x01660000"),
+        ("1258799", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01258000"),
+        ("886768", "THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00886000"),
+        ("1962516", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01962004"),
+        ("705961", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00705000"),
+        ("1502464", "THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01502004"),
+        ("1434962", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01434000"),
+        ("772009", "THREAD_TERMINATE|THREAD_GET_CONTEXT|0x00772000"),
+        ("2087629", "MAXIMUM_ALLOWED|THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00087000"),
+        ("1105965", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01105004"),
+        ("126394", "THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00126004"),
+        ("904266", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00904004"),
+        ("1046081", "THREAD_TERMINATE|THREAD_SET_THREAD_TOKEN|0x01046000"),
+        ("1044918", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01044000"),
+        ("1846932", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01846000"),
+        ("59718", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00059000"),
+        ("162607", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00162004"),
+        ("1263579", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01263000"),
+        ("507707", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00507004"),
+        ("1744902", "THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01744000"),
+        ("815133", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|0x00815000"),
+        ("1690066", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|0x01690004"),
+        ("285392", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00285000"),
+        ("1005622", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01005000"),
+        ("588918", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00588000"),
+        ("1619048", "THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|0x01619000"),
+        ("1633734", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01633004"),
+        ("1289721", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01289000"),
+        ("1206476", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x01206004"),
+        ("1633666", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01633004"),
+        ("1337875", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01337004"),
+        ("2019714", "MAXIMUM_ALLOWED|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00019004"),
+        ("1703973", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01703000"),
+        ("356227", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_DIRECT_IMPERSONATION|0x00356004"),
+        ("631951", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00631000"),
+        ("661536", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00661004"),
+        ("397289", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x00397000"),
+        ("369383", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00369000"),
+        ("563055", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|0x00563004"),
+        ("647700", "THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00647000"),
+        ("456408", "THREAD_GET_CONTEXT|THREAD_SET_LIMITED_INFORMATION|0x00456000"),
+        ("9281", "THREAD_TERMINATE|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x00009000"),
+        ("1169055", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|0x01169004"),
+        ("697703", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00697000"),
+        ("1742889", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_QUERY_LIMITED_INFORMATION|0x01742000"),
+        ("1475038", "THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|0x01475000"),
+        ("1074671", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01074000"),
+        ("1351805", "THREAD_TERMINATE|THREAD_QUERY_LIMITED_INFORMATION|0x01351004"),
+        ("810815", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_QUERY_LIMITED_INFORMATION|0x00810004"),
+        ("5450", "THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00005000"),
+        ("488047", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|0x00488004"),
+        ("1013832", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01013000"),
+        ("1564649", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01564000"),
+        ("409441", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00409000"),
+        ("93400", "THREAD_SET_LIMITED_INFORMATION|0x00093000"),
+        ("70990", "THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00070000"),
+        ("307064", "THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|0x00307004"),
+        ("296473", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00296000"),
+        ("1121737", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01121004"),
+        ("1561282", "THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x01561000"),
+        ("1325594", "THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01325004"),
+        ("1241919", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x01241000"),
+        ("620546", "THREAD_SUSPEND_RESUME|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00620004"),
+        ("1792750", "THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01792000"),
+        ("403773", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00403000"),
+        ("1877357", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01877004"),
+        ("285207", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_DIRECT_IMPERSONATION|0x00285004"),
+        ("804595", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00804004"),
+        ("448004", "0x00448004"),
+        ("1639062", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|0x01639000"),
+        ("168610", "THREAD_SET_CONTEXT|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00168000"),
+        ("1765500", "THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01765000"),
+        ("43002", "THREAD_SUSPEND_RESUME|0x00043000"),
+        ("1922041", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|0x01922000"),
+        ("1034316", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01034004"),
+        ("1500741", "THREAD_TERMINATE|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01500000"),
+        ("644283", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_THREAD_TOKEN|THREAD_DIRECT_IMPERSONATION|0x00644000"),
+        ("1903331", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01903000"),
+        ("1342019", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_CONTEXT|0x01342000"),
+        ("1438575", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x01438004"),
+        ("1669352", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01669000"),
+        ("922900", "THREAD_IMPERSONATE|THREAD_QUERY_LIMITED_INFORMATION|0x00922000"),
+        ("758790", "THREAD_SET_CONTEXT|THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00758000"),
+        ("365726", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00365004"),
+        ("537780", "THREAD_SET_THREAD_TOKEN|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x00537000"),
+        ("2076835", "MAXIMUM_ALLOWED|THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x00076004"),
+        ("281400", "THREAD_SET_LIMITED_INFORMATION|0x00281000"),
+        ("1169415", "THREAD_TERMINATE|THREAD_SET_CONTEXT|THREAD_SET_LIMITED_INFORMATION|0x01169004"),
+        ("362061", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|0x00362000"),
+        ("384348", "THREAD_GET_CONTEXT|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00384000"),
+        ("1037614", "THREAD_SET_CONTEXT|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01037004"),
+        ("1183376", "THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x01183004"),
+        ("586126", "THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_IMPERSONATE|0x00586004"),
+        ("284437", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00284004"),
+        ("185429", "THREAD_TERMINATE|THREAD_GET_CONTEXT|THREAD_SET_INFORMATION|THREAD_SET_LIMITED_INFORMATION|0x00185000"),
+        ("1413206", "THREAD_SUSPEND_RESUME|THREAD_DIRECT_IMPERSONATION|0x01413004"),
+        ("1572863", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_QUERY_LIMITED_INFORMATION|0x01572000"),
+        ("872561", "THREAD_TERMINATE|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|THREAD_IMPERSONATE|THREAD_SET_LIMITED_INFORMATION|0x00872000"),
+        ("540301", "THREAD_TERMINATE|THREAD_IMPERSONATE|THREAD_DIRECT_IMPERSONATION|0x00540000"),
+        ("1579607", "THREAD_TERMINATE|THREAD_SUSPEND_RESUME|THREAD_DIRECT_IMPERSONATION|THREAD_SET_LIMITED_INFORMATION|0x01579004"),
+        ("843074", "THREAD_SET_CONTEXT|THREAD_SET_INFORMATION|THREAD_QUERY_INFORMATION|0x00843004"),
+    ]
+
+
+def api_name_cointernet_arg_name_featureentry_data():
+    return [
+        ("0", "FEATURE_OBJECT_CACHING"),
+        ("1", "FEATURE_ZONE_ELEVATION"),
+        ("2", "FEATURE_MIME_HANDLING"),
+        ("3", "FEATURE_MIME_SNIFFING"),
+        ("4", "FEATURE_WINDOW_RESTRICTIONS"),
+        ("5", "FEATURE_WEBOC_POPUPMANAGEMENT"),
+    ]
+
+
+def api_name_cointernet_arg_name_flags_data():
+    return [
+        ("1", "SET_FEATURE_ON_THREAD"),
+        ("2", "SET_FEATURE_ON_PROCESS"),
+        ("3", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_PROCESS"),
+        ("4", "SET_FEATURE_IN_REGISTRY"),
+        ("5", "SET_FEATURE_ON_THREAD|SET_FEATURE_IN_REGISTRY"),
+        ("6", "SET_FEATURE_ON_PROCESS|SET_FEATURE_IN_REGISTRY"),
+        ("7", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_PROCESS|SET_FEATURE_IN_REGISTRY"),
+        ("8", "SET_FEATURE_ON_THREAD_LOCALMACHINE"),
+        ("9", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_THREAD_LOCALMACHINE"),
+        ("10", "SET_FEATURE_ON_THREAD_INTRANET"),
+        ("11", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_THREAD_INTRANET"),
+        ("12", "SET_FEATURE_ON_PROCESS|SET_FEATURE_ON_THREAD_INTRANET"),
+        ("13", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_PROCESS|SET_FEATURE_ON_THREAD_INTRANET"),
+        ("14", "SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_INTRANET"),
+        ("15", "SET_FEATURE_ON_THREAD|SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_INTRANET"),
+        ("16", "SET_FEATURE_ON_PROCESS|SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_INTRANET"),
+        ("17", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_PROCESS|SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_INTRANET"),
+        ("18", "SET_FEATURE_ON_THREAD_LOCALMACHINE|SET_FEATURE_ON_THREAD_INTRANET"),
+        ("19", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_THREAD_LOCALMACHINE|SET_FEATURE_ON_THREAD_INTRANET"),
+        ("20", "SET_FEATURE_ON_THREAD_TRUSTED"),
+        ("21", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_THREAD_TRUSTED"),
+        ("22", "SET_FEATURE_ON_PROCESS|SET_FEATURE_ON_THREAD_TRUSTED"),
+        ("23", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_PROCESS|SET_FEATURE_ON_THREAD_TRUSTED"),
+        ("24", "SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_TRUSTED"),
+        ("25", "SET_FEATURE_ON_THREAD|SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_TRUSTED"),
+        ("26", "SET_FEATURE_ON_PROCESS|SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_TRUSTED"),
+        ("27", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_PROCESS|SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_TRUSTED"),
+        ("28", "SET_FEATURE_ON_THREAD_LOCALMACHINE|SET_FEATURE_ON_THREAD_TRUSTED"),
+        ("29", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_THREAD_LOCALMACHINE|SET_FEATURE_ON_THREAD_TRUSTED"),
+        ("30", "SET_FEATURE_ON_THREAD_INTRANET|SET_FEATURE_ON_THREAD_TRUSTED"),
+        ("31", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_THREAD_INTRANET|SET_FEATURE_ON_THREAD_TRUSTED"),
+        ("32", "SET_FEATURE_ON_PROCESS|SET_FEATURE_ON_THREAD_INTRANET|SET_FEATURE_ON_THREAD_TRUSTED"),
+        ("33", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_PROCESS|SET_FEATURE_ON_THREAD_INTRANET|SET_FEATURE_ON_THREAD_TRUSTED"),
+        ("34", "SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_INTRANET|SET_FEATURE_ON_THREAD_TRUSTED"),
+        ("35", "SET_FEATURE_ON_THREAD|SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_INTRANET|SET_FEATURE_ON_THREAD_TRUSTED"),
+        ("36", "SET_FEATURE_ON_PROCESS|SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_INTRANET|SET_FEATURE_ON_THREAD_TRUSTED"),
+        ("37", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_PROCESS|SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_INTRANET|SET_FEATURE_ON_THREAD_TRUSTED"),
+        ("38", "SET_FEATURE_ON_THREAD_LOCALMACHINE|SET_FEATURE_ON_THREAD_INTRANET|SET_FEATURE_ON_THREAD_TRUSTED"),
+        ("39", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_THREAD_LOCALMACHINE|SET_FEATURE_ON_THREAD_INTRANET|SET_FEATURE_ON_THREAD_TRUSTED"),
+        ("40", "SET_FEATURE_ON_THREAD_INTERNET"),
+        ("41", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_THREAD_INTERNET"),
+        ("42", "SET_FEATURE_ON_PROCESS|SET_FEATURE_ON_THREAD_INTERNET"),
+        ("43", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_PROCESS|SET_FEATURE_ON_THREAD_INTERNET"),
+        ("44", "SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_INTERNET"),
+        ("45", "SET_FEATURE_ON_THREAD|SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_INTERNET"),
+        ("46", "SET_FEATURE_ON_PROCESS|SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_INTERNET"),
+        ("47", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_PROCESS|SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_INTERNET"),
+        ("48", "SET_FEATURE_ON_THREAD_LOCALMACHINE|SET_FEATURE_ON_THREAD_INTERNET"),
+        ("49", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_THREAD_LOCALMACHINE|SET_FEATURE_ON_THREAD_INTERNET"),
+        ("50", "SET_FEATURE_ON_THREAD_INTRANET|SET_FEATURE_ON_THREAD_INTERNET"),
+        ("51", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_THREAD_INTRANET|SET_FEATURE_ON_THREAD_INTERNET"),
+        ("52", "SET_FEATURE_ON_PROCESS|SET_FEATURE_ON_THREAD_INTRANET|SET_FEATURE_ON_THREAD_INTERNET"),
+        ("53", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_PROCESS|SET_FEATURE_ON_THREAD_INTRANET|SET_FEATURE_ON_THREAD_INTERNET"),
+        ("54", "SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_INTRANET|SET_FEATURE_ON_THREAD_INTERNET"),
+        ("55", "SET_FEATURE_ON_THREAD|SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_INTRANET|SET_FEATURE_ON_THREAD_INTERNET"),
+        ("56", "SET_FEATURE_ON_PROCESS|SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_INTRANET|SET_FEATURE_ON_THREAD_INTERNET"),
+        ("57", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_PROCESS|SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_INTRANET|SET_FEATURE_ON_THREAD_INTERNET"),
+        ("58", "SET_FEATURE_ON_THREAD_LOCALMACHINE|SET_FEATURE_ON_THREAD_INTRANET|SET_FEATURE_ON_THREAD_INTERNET"),
+        ("59", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_THREAD_LOCALMACHINE|SET_FEATURE_ON_THREAD_INTRANET|SET_FEATURE_ON_THREAD_INTERNET"),
+        ("60", "SET_FEATURE_ON_THREAD_TRUSTED|SET_FEATURE_ON_THREAD_INTERNET"),
+        ("61", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_THREAD_TRUSTED|SET_FEATURE_ON_THREAD_INTERNET"),
+        ("62", "SET_FEATURE_ON_PROCESS|SET_FEATURE_ON_THREAD_TRUSTED|SET_FEATURE_ON_THREAD_INTERNET"),
+        ("63", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_PROCESS|SET_FEATURE_ON_THREAD_TRUSTED|SET_FEATURE_ON_THREAD_INTERNET"),
+        ("64", "SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_TRUSTED|SET_FEATURE_ON_THREAD_INTERNET"),
+        ("65", "SET_FEATURE_ON_THREAD|SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_TRUSTED|SET_FEATURE_ON_THREAD_INTERNET"),
+        ("66", "SET_FEATURE_ON_PROCESS|SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_TRUSTED|SET_FEATURE_ON_THREAD_INTERNET"),
+        ("67", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_PROCESS|SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_TRUSTED|SET_FEATURE_ON_THREAD_INTERNET"),
+        ("68", "SET_FEATURE_ON_THREAD_LOCALMACHINE|SET_FEATURE_ON_THREAD_TRUSTED|SET_FEATURE_ON_THREAD_INTERNET"),
+        ("69", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_THREAD_LOCALMACHINE|SET_FEATURE_ON_THREAD_TRUSTED|SET_FEATURE_ON_THREAD_INTERNET"),
+        ("70", "SET_FEATURE_ON_THREAD_INTRANET|SET_FEATURE_ON_THREAD_TRUSTED|SET_FEATURE_ON_THREAD_INTERNET"),
+        ("71", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_THREAD_INTRANET|SET_FEATURE_ON_THREAD_TRUSTED|SET_FEATURE_ON_THREAD_INTERNET"),
+        ("72", "SET_FEATURE_ON_PROCESS|SET_FEATURE_ON_THREAD_INTRANET|SET_FEATURE_ON_THREAD_TRUSTED|SET_FEATURE_ON_THREAD_INTERNET"),
+        ("73", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_PROCESS|SET_FEATURE_ON_THREAD_INTRANET|SET_FEATURE_ON_THREAD_TRUSTED|SET_FEATURE_ON_THREAD_INTERNET"),
+        ("74", "SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_INTRANET|SET_FEATURE_ON_THREAD_TRUSTED|SET_FEATURE_ON_THREAD_INTERNET"),
+        ("75", "SET_FEATURE_ON_THREAD|SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_INTRANET|SET_FEATURE_ON_THREAD_TRUSTED|SET_FEATURE_ON_THREAD_INTERNET"),
+        ("76", "SET_FEATURE_ON_PROCESS|SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_INTRANET|SET_FEATURE_ON_THREAD_TRUSTED|SET_FEATURE_ON_THREAD_INTERNET"),
+        ("77", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_PROCESS|SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_INTRANET|SET_FEATURE_ON_THREAD_TRUSTED|SET_FEATURE_ON_THREAD_INTERNET"),
+        ("78", "SET_FEATURE_ON_THREAD_LOCALMACHINE|SET_FEATURE_ON_THREAD_INTRANET|SET_FEATURE_ON_THREAD_TRUSTED|SET_FEATURE_ON_THREAD_INTERNET"),
+        ("79", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_THREAD_LOCALMACHINE|SET_FEATURE_ON_THREAD_INTRANET|SET_FEATURE_ON_THREAD_TRUSTED|SET_FEATURE_ON_THREAD_INTERNET"),
+        ("80", "SET_FEATURE_ON_THREAD_RESTRICTED"),
+        ("81", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_THREAD_RESTRICTED"),
+        ("82", "SET_FEATURE_ON_PROCESS|SET_FEATURE_ON_THREAD_RESTRICTED"),
+        ("83", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_PROCESS|SET_FEATURE_ON_THREAD_RESTRICTED"),
+        ("84", "SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_RESTRICTED"),
+        ("85", "SET_FEATURE_ON_THREAD|SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_RESTRICTED"),
+        ("86", "SET_FEATURE_ON_PROCESS|SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_RESTRICTED"),
+        ("87", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_PROCESS|SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_RESTRICTED"),
+        ("88", "SET_FEATURE_ON_THREAD_LOCALMACHINE|SET_FEATURE_ON_THREAD_RESTRICTED"),
+        ("89", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_THREAD_LOCALMACHINE|SET_FEATURE_ON_THREAD_RESTRICTED"),
+        ("90", "SET_FEATURE_ON_THREAD_INTRANET|SET_FEATURE_ON_THREAD_RESTRICTED"),
+        ("91", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_THREAD_INTRANET|SET_FEATURE_ON_THREAD_RESTRICTED"),
+        ("92", "SET_FEATURE_ON_PROCESS|SET_FEATURE_ON_THREAD_INTRANET|SET_FEATURE_ON_THREAD_RESTRICTED"),
+        ("93", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_PROCESS|SET_FEATURE_ON_THREAD_INTRANET|SET_FEATURE_ON_THREAD_RESTRICTED"),
+        ("94", "SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_INTRANET|SET_FEATURE_ON_THREAD_RESTRICTED"),
+        ("95", "SET_FEATURE_ON_THREAD|SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_INTRANET|SET_FEATURE_ON_THREAD_RESTRICTED"),
+        ("96", "SET_FEATURE_ON_PROCESS|SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_INTRANET|SET_FEATURE_ON_THREAD_RESTRICTED"),
+        ("97", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_PROCESS|SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_INTRANET|SET_FEATURE_ON_THREAD_RESTRICTED"),
+        ("98", "SET_FEATURE_ON_THREAD_LOCALMACHINE|SET_FEATURE_ON_THREAD_INTRANET|SET_FEATURE_ON_THREAD_RESTRICTED"),
+        ("99", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_THREAD_LOCALMACHINE|SET_FEATURE_ON_THREAD_INTRANET|SET_FEATURE_ON_THREAD_RESTRICTED"),
+        ("100", "0x00000100"),
+        ("101", "SET_FEATURE_ON_THREAD|0x00000100"),
+        ("102", "SET_FEATURE_ON_PROCESS|0x00000100"),
+        ("103", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_PROCESS|0x00000100"),
+        ("104", "SET_FEATURE_IN_REGISTRY|0x00000100"),
+        ("105", "SET_FEATURE_ON_THREAD|SET_FEATURE_IN_REGISTRY|0x00000100"),
+        ("106", "SET_FEATURE_ON_PROCESS|SET_FEATURE_IN_REGISTRY|0x00000100"),
+        ("107", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_PROCESS|SET_FEATURE_IN_REGISTRY|0x00000100"),
+        ("108", "SET_FEATURE_ON_THREAD_LOCALMACHINE|0x00000100"),
+        ("109", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_THREAD_LOCALMACHINE|0x00000100"),
+        ("110", "SET_FEATURE_ON_THREAD_INTRANET|0x00000100"),
+        ("111", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_THREAD_INTRANET|0x00000100"),
+        ("112", "SET_FEATURE_ON_PROCESS|SET_FEATURE_ON_THREAD_INTRANET|0x00000100"),
+        ("113", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_PROCESS|SET_FEATURE_ON_THREAD_INTRANET|0x00000100"),
+        ("114", "SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_INTRANET|0x00000100"),
+        ("115", "SET_FEATURE_ON_THREAD|SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_INTRANET|0x00000100"),
+        ("116", "SET_FEATURE_ON_PROCESS|SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_INTRANET|0x00000100"),
+        ("117", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_PROCESS|SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_INTRANET|0x00000100"),
+        ("118", "SET_FEATURE_ON_THREAD_LOCALMACHINE|SET_FEATURE_ON_THREAD_INTRANET|0x00000100"),
+        ("119", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_THREAD_LOCALMACHINE|SET_FEATURE_ON_THREAD_INTRANET|0x00000100"),
+        ("120", "SET_FEATURE_ON_THREAD_TRUSTED|0x00000100"),
+        ("121", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_THREAD_TRUSTED|0x00000100"),
+        ("122", "SET_FEATURE_ON_PROCESS|SET_FEATURE_ON_THREAD_TRUSTED|0x00000100"),
+        ("123", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_PROCESS|SET_FEATURE_ON_THREAD_TRUSTED|0x00000100"),
+        ("124", "SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_TRUSTED|0x00000100"),
+        ("125", "SET_FEATURE_ON_THREAD|SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_TRUSTED|0x00000100"),
+        ("126", "SET_FEATURE_ON_PROCESS|SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_TRUSTED|0x00000100"),
+        ("127", "SET_FEATURE_ON_THREAD|SET_FEATURE_ON_PROCESS|SET_FEATURE_IN_REGISTRY|SET_FEATURE_ON_THREAD_TRUSTED|0x00000100"),
+    ]
+
+
+def api_name_socket_data():
+    return [
+        ("1", "IPPROTO_ICMP"),
+        ("2", "IPPROTO_IGMP"),
+        ("3", "BTHPROTO_RFCOMM"),
+        ("6", "IPPROTO_TCP"),
+        ("17", "IPPROTO_UDP"),
+        ("58", "IPPROTO_ICMPV6"),
+    ]
+
+
+def api_name_internetsetoptiona_arg_name_option_data():
+    return [
+        ("1", "INTERNET_OPTION_CALLBACK"),
+        ("2", "INTERNET_OPTION_CONNECT_TIMEOUT"),
+        ("3", "INTERNET_OPTION_CONNECT_RETRIES"),
+        ("4", "INTERNET_OPTION_CONNECT_BACKOFF"),
+        ("5", "INTERNET_OPTION_SEND_TIMEOUT"),
+        ("6", "INTERNET_OPTION_RECEIVE_TIMEOUT"),
+        ("7", "INTERNET_OPTION_DATA_SEND_TIMEOUT"),
+        ("8", "INTERNET_OPTION_DATA_RECEIVE_TIMEOUT"),
+        ("9", "INTERNET_OPTION_HANDLE_TYPE"),
+        ("10", "INTERNET_OPTION_ASYNC_PRIORITY"),
+        ("15", "INTERNET_OPTION_PARENT_HANDLE"),
+        ("16", "INTERNET_OPTION_KEEP_CONNECTION"),
+        ("17", "INTERNET_OPTION_REQUEST_FLAGS"),
+        ("18", "INTERNET_OPTION_EXTENDED_ERROR"),
+        ("20", "INTERNET_OPTION_SECURITY_CERTIFICATE_STRUCT"),
+        ("21", "INTERNET_OPTION_DATAFILE_NAME"),
+        ("22", "INTERNET_OPTION_URL"),
+        ("23", "INTERNET_OPTION_SECURITY_CERTIFICATE"),
+        ("24", "INTERNET_OPTION_SECURITY_KEY_BITNESS"),
+        ("25", "INTERNET_OPTION_REFRESH"),
+        ("26", "INTERNET_OPTION_PROXY"),
+        ("27", "INTERNET_OPTION_SETTINGS_CHANGED"),
+        ("28", "INTERNET_OPTION_VERSION"),
+        ("29", "INTERNET_OPTION_USER_AGENT"),
+        ("30", "INTERNET_OPTION_POLICY"),
+        ("31", "INTERNET_OPTION_DISCONNECTED_TIMEOUT"),
+        ("32", "INTERNET_OPTION_CONNECTED_STATE"),
+        ("33", "INTERNET_OPTION_IDLE_STATE"),
+        ("34", "INTERNET_OPTION_OFFLINE_SEMANTICS"),
+        ("35", "INTERNET_OPTION_SECONDARY_CACHE_KEY"),
+        ("36", "INTERNET_OPTION_CALLBACK_FILTER"),
+        ("37", "INTERNET_OPTION_CONNECT_TIME"),
+        ("38", "INTERNET_OPTION_SEND_THROUGHPUT"),
+        ("39", "INTERNET_OPTION_RECEIVE_THROUGHPUT"),
+        ("40", "INTERNET_OPTION_BYPASS_EDITED_ENTRY"),
+        ("41", "INTERNET_OPTION_HTTP_DECODING"),
+        ("43", "INTERNET_OPTION_DIAGNOSTIC_SOCKET_INFO"),
+        ("44", "INTERNET_OPTION_CODEPAGE"),
+        ("45", "INTERNET_OPTION_CACHE_TIMESTAMPS"),
+        ("46", "INTERNET_OPTION_DISABLE_AUTODIAL"),
+        ("49", "INTERNET_OPTION_MAX_CONNS_PER_SERVER"),
+        ("50", "INTERNET_OPTION_ALTER_IDENTITY"),
+        ("51", "INTERNET_OPTION_SUPPRESS_BEHAVIOR"),
+        ("52", "INTERNET_OPTION_AUTODIAL_MODE"),
+        ("53", "INTERNET_OPTION_AUTODIAL_CONNECTION"),
+        ("54", "INTERNET_OPTION_CLIENT_CERT_CONTEXT"),
+        ("55", "INTERNET_OPTION_AUTH_FLAGS"),
+        ("56", "INTERNET_OPTION_COOKIES_3RD_PARTY"),
+        ("57", "INTERNET_OPTION_DISABLE_PASSPORT_AUTH"),
+        ("58", "INTERNET_OPTION_SEND_UTF8_SERVERNAME_TO_PROXY"),
+        ("59", "INTERNET_OPTION_EXEMPT_CONNECTION_LIMIT"),
+        ("60", "INTERNET_OPTION_DATAFILE_EXT"),
+        ("64", "INTERNET_OPTION_CODEPAGE_PATH"),
+        ("65", "INTERNET_OPTION_CODEPAGE_EXTRA"),
+        ("66", "INTERNET_OPTION_IDN"),
+        ("67", "INTERNET_OPTION_MAX_CONNS_PER_PROXY"),
+        ("68", "INTERNET_OPTION_SUPPRESS_SERVER_AUTH"),
+        ("69", "INTERNET_OPTION_SERVER_CERT_CHAIN_CONTEXT"),
+    ]
+
+
+def arg_name_fileinformationclass_data():
+    return [
+        ("1", "FileDirectoryInformation"),
+        ("2", "FileFullDirectoryInformation"),
+        ("3", "FileBothDirectoryInformation"),
+        ("4", "FileBasicInformation"),
+        ("5", "FileStandardInformation"),
+        ("6", "FileInternalInformation"),
+        ("7", "FileEaInformation"),
+        ("8", "FileAccessInformation"),
+        ("9", "FileNameInformation"),
+        ("10", "FileRenameInformation"),
+        ("11", "FileLinkInformation"),
+        ("12", "FileNamesInformation"),
+        ("13", "FileDispositionInformation"),
+        ("14", "FilePositionInformation"),
+        ("15", "FileFullEaInformation"),
+        ("16", "FileModeInformation"),
+        ("17", "FileAlignmentInformation"),
+        ("18", "FileAllInformation"),
+        ("19", "FileAllocationInformation"),
+        ("20", "FileEndOfFileInformation"),
+        ("21", "FileAlternativeNameInformation"),
+        ("22", "FileStreamInformation"),
+        ("23", "FilePipeInformation"),
+        ("24", "FilePipeLocalInformation"),
+        ("25", "FilePipeRemoteInformation"),
+        ("26", "FileMailslotQueryInformation"),
+        ("27", "FileMailslotSetInformation"),
+        ("28", "FileCompressionInformation"),
+        ("29", "FileObjectIdInformation"),
+        ("30", "FileCompletionInformation"),
+        ("31", "FileMoveClusterInformation"),
+        ("32", "FileQuotaInformation"),
+        ("33", "FileReparsePointInformation"),
+        ("34", "FileNetworkOpenInformation"),
+        ("35", "FileAttributeTagInformation"),
+        ("36", "FileTrackingInformation"),
+        ("37", "FileIdBothDirectoryInformation"),
+        ("38", "FileIdFullDirectoryInformation"),
+        ("39", "FileShortNameInformation"),
+        ("40", "FileIoCompletionNotificationInformation"),
+        ("41", "FileIoStatusBlockRangeInformation"),
+        ("42", "FileIoPriorityHintInformation"),
+        ("43", "FileSfioReserveInformation"),
+        ("44", "FileSfioVolumeInformation"),
+        ("45", "FileHardLinkInformation"),
+        ("46", "FileProcessIdsUsingFileInformation"),
+        ("47", "FileNormalizedNameInformation"),
+        ("48", "FileNetworkPhysicalNameInformation"),
+        ("49", "FileIdGlobalTxDirectoryInformation"),
+        ("50", "FileIsRemoteDeviceInformation"),
+        ("51", "FileAttributeCacheInformation"),
+        ("52", "FileNumaNodeInformation"),
+        ("53", "FileStandardLinkInformation"),
+        ("54", "FileRemoteProtocolInformation"),
+        ("55", "FileReplaceCompletionInformation"),
+    ]
+
+
+def arg_name_processinformationclass_data():
+    return [
+        ("0", "ProcessBasicInformation"),
+        ("7", "ProcessDebugPort"),
+        ("29", "ProcessBreakOnTermination"),
+        ("30", "ProcessDebugObjectHandle"),
+        ("31", "ProcessDebugFlags"),
+    ]
+
+
+def arg_name_threadinformationclass_data():
+    return [
+        ("0", "ThreadBasicInformation"),
+    ]
+
+
+def arg_name_memtype_data():
+    return [
+        ("20000", "MEM_PRIVATE"),
+    ]
+
+
+def arg_name_show_data():
+    return [
+        ("0", "SW_HIDE"),
+        ("1", "SW_SHOWNORMAL"),
+        ("2", "SW_SHOWMINIMIZED"),
+        ("3", "SW_SHOWMAXIMIZED"),
+        ("4", "SW_SHOWNOACTIVATE"),
+        ("5", "SW_SHOW"),
+        ("6", "SW_MINIMIZE"),
+        ("7", "SW_SHOWMINNOACTIVE"),
+        ("8", "SW_SHOWNA"),
+        ("9", "SW_RESTORE"),
+        ("10", "SW_SHOWDEFAULT"),
+    ]
+
+
+def arg_name_registry_data():
+    return [
+        ("80000000", "HKEY_CLASSES_ROOT"),
+        ("80000001", "HKEY_CURRENT_USER"),
+        ("80000002", "HKEY_LOCAL_MACHINE"),
+    ]
diff --git a/tests/utils_tests.py b/tests/utils_tests.py
deleted file mode 100644
index c38eff0c379..00000000000
--- a/tests/utils_tests.py
+++ /dev/null
@@ -1,139 +0,0 @@
-# Copyright (C) 2010-2015 Cuckoo Foundation.
-# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
-# See the file 'docs/LICENSE' for copying permission.
-
-from __future__ import absolute_import
-import os
-import tempfile
-from nose.tools import assert_equal, raises, assert_not_equal
-from lib.cuckoo.common.objects import File
-
-import lib.cuckoo.common.utils as utils
-from lib.cuckoo.common.exceptions import CuckooOperationalError
-
-
-class TestCreateFolders:
-    def setUp(self):
-        self.tmp_dir = tempfile.gettempdir()
-
-    def test_single_folder(self):
-        """Tests a single folder creation."""
-        utils.create_folders(self.tmp_dir, ["foo"])
-        assert os.path.exists(os.path.join(self.tmp_dir, "foo"))
-        os.rmdir(os.path.join(self.tmp_dir, "foo"))
-
-    def test_multiple_folders(self):
-        """Tests multiple folders creation."""
-        utils.create_folders(self.tmp_dir, ["foo", "bar"])
-        assert os.path.exists(os.path.join(self.tmp_dir, "foo"))
-        assert os.path.exists(os.path.join(self.tmp_dir, "bar"))
-        os.rmdir(os.path.join(self.tmp_dir, "foo"))
-        os.rmdir(os.path.join(self.tmp_dir, "bar"))
-
-
-class TestCreateFolder:
-    def setUp(self):
-        self.tmp_dir = tempfile.gettempdir()
-
-    def test_single_folder(self):
-        """Tests a single folder creation."""
-        utils.create_folder(self.tmp_dir, "foo")
-        assert os.path.exists(os.path.join(self.tmp_dir, "foo"))
-        utils.create_folder(self.tmp_dir, "foo")
-        os.rmdir(os.path.join(self.tmp_dir, "foo"))
-
-
-class TestConvertChar:
-    def test_utf(self):
-        assert_equal("\\xe9", utils.convert_char(u"\xe9"))
-
-    def test_digit(self):
-        assert_equal("9", utils.convert_char(u"9"))
-
-    def test_literal(self):
-        assert_equal("e", utils.convert_char("e"))
-
-    def test_punctation(self):
-        assert_equal(".", utils.convert_char("."))
-
-    def test_whitespace(self):
-        assert_equal(" ", utils.convert_char(" "))
-
-
-class TestConvertToPrintable:
-    def test_utf(self):
-        assert_equal("\\xe9", utils.convert_to_printable(u"\xe9"))
-
-    def test_digit(self):
-        assert_equal("9", utils.convert_to_printable(u"9"))
-
-    def test_literal(self):
-        assert_equal("e", utils.convert_to_printable("e"))
-
-    def test_punctation(self):
-        assert_equal(".", utils.convert_to_printable("."))
-
-    def test_whitespace(self):
-        assert_equal(" ", utils.convert_to_printable(" "))
-
-    def test_non_printable(self):
-        assert_equal(r"\x0b", utils.convert_to_printable(chr(11)))
-
-
-class TestDatetimeToIso:
-    def test_convert_date(self):
-        assert_equal("2000-01-01T11:43:35", utils.datetime_to_iso("2000-01-01 11:43:35"))
-
-
-class TestFile:
-    def setUp(self):
-        self.tmp = tempfile.mkstemp()
-        self.file = File(self.tmp[1])
-
-    def test_get_name(self):
-        assert_equal(self.tmp[1].split("/")[-1], self.file.get_name())
-
-    def test_get_data(self):
-        assert_equal("", self.file.get_data())
-
-    def test_get_size(self):
-        assert_equal(0, self.file.get_size())
-
-    def test_get_crc32(self):
-        assert_equal("00000000", self.file.get_crc32())
-
-    def test_get_md5(self):
-        assert_equal("d41d8cd98f00b204e9800998ecf8427e", self.file.get_md5())
-
-    def test_get_sha1(self):
-        assert_equal("da39a3ee5e6b4b0d3255bfef95601890afd80709", self.file.get_sha1())
-
-    def test_get_sha256(self):
-        assert_equal("e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855", self.file.get_sha256())
-
-    def test_get_sha512(self):
-        assert_equal(
-            "cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e",
-            self.file.get_sha512(),
-        )
-
-    def test_get_ssdeep(self):
-        try:
-            import pydeep
-
-            assert_not_equal(None, self.file.get_ssdeep())
-        except ImportError:
-            assert_equal(None, self.file.get_ssdeep())
-
-    def test_get_type(self):
-        assert_equal("empty", self.file.get_type())
-
-    def test_get_all_type(self):
-        assert isinstance(self.file.get_all()[0], dict)
-
-    def test_get_all_keys(self):
-        for key in ["name", "size", "crc32", "md5", "sha1", "sha256", "sha512", "ssdeep", "type"]:
-            assert key in self.file.get_all()[0]
-
-    def tearDown(self):
-        os.remove(self.tmp[1])
diff --git a/tests/web/test_apiv2.py b/tests/web/test_apiv2.py
new file mode 100644
index 00000000000..796eefa6949
--- /dev/null
+++ b/tests/web/test_apiv2.py
@@ -0,0 +1,90 @@
+import pathlib
+from unittest.mock import patch
+
+import pytest
+from django.test import SimpleTestCase
+
+from lib.cuckoo.common.config import ConfigMeta
+from lib.cuckoo.core.database import (
+    TASK_BANNED,
+    TASK_COMPLETED,
+    TASK_DISTRIBUTED,
+    TASK_DISTRIBUTED_COMPLETED,
+    TASK_FAILED_ANALYSIS,
+    TASK_FAILED_PROCESSING,
+    TASK_FAILED_REPORTING,
+    TASK_PENDING,
+    TASK_RECOVERED,
+    TASK_REPORTED,
+    TASK_RUNNING,
+    Task,
+)
+
+
+@pytest.fixture
+def taskreprocess_enabled(custom_conf_path: pathlib.Path):
+    with open(custom_conf_path / "api.conf", "wt") as fil:
+        print("[taskreprocess]\nenabled = yes", file=fil)
+    ConfigMeta.refresh()
+    yield
+
+
+@pytest.mark.usefixtures("db", "tmp_cuckoo_root")
+class ReprocessTask(SimpleTestCase):
+    taskprocess_config = "lib.cuckoo.common.web_utils.apiconf.taskreprocess"
+    """API configuration to patch in each test case."""
+
+    def test_api_disabled(self):
+        response = self.client.get("/apiv2/tasks/reprocess/1/")
+        assert response.status_code == 200
+        assert response.headers["content-type"] == "application/json"
+        json_body = {"error": True, "error_value": "Task Reprocess API is Disabled"}
+        assert response.json() == json_body
+
+    @pytest.mark.usefixtures("taskreprocess_enabled")
+    def test_task_does_not_exist(self):
+        patch_target = "lib.cuckoo.core.database._Database.view_task"
+        with patch(patch_target, return_value=None):
+            response = self.client.get("/apiv2/tasks/reprocess/1/")
+        assert response.status_code == 200
+        assert response.headers["content-type"] == "application/json"
+        json_body = {"error": True, "error_value": "Task ID does not exist in the database"}
+        assert response.json() == json_body
+
+    @pytest.mark.usefixtures("taskreprocess_enabled")
+    def test_can_reprocess(self):
+        task = Task()
+        valid_status = (TASK_REPORTED, TASK_RECOVERED, TASK_FAILED_PROCESSING, TASK_FAILED_REPORTING)
+        patch_target = "lib.cuckoo.core.database._Database.view_task"
+        with patch(patch_target, return_value=task):
+            for status in valid_status:
+                expected_response = {"error": False, "data": f"Task ID 1 with status {status} marked for reprocessing"}
+                with self.subTest(status):
+                    task.status = status
+                    response = self.client.get("/apiv2/tasks/reprocess/1/")
+                    assert response.status_code == 200
+                    assert response.headers["content-type"] == "application/json"
+                    assert response.json() == expected_response
+
+    @pytest.mark.usefixtures("taskreprocess_enabled")
+    def test_cant_reprocess(self):
+        task = Task()
+        invalid_status = (
+            TASK_COMPLETED,
+            TASK_FAILED_ANALYSIS,
+            TASK_DISTRIBUTED_COMPLETED,
+            TASK_BANNED,
+            TASK_PENDING,
+            TASK_RUNNING,
+            TASK_DISTRIBUTED,
+        )
+        patch_target = "lib.cuckoo.core.database._Database.view_task"
+        with patch(patch_target, return_value=task):
+            for status in invalid_status:
+                expected_response = {"error": True, "error_value": f"Task ID 1 cannot be reprocessed in status {status}"}
+                with self.subTest(status):
+                    task.status = status
+                    response = self.client.get("/apiv2/tasks/reprocess/1/")
+                    assert response.status_code == 200
+                    assert response.headers["content-type"] == "application/json"
+                    assert response.json() == expected_response
diff --git a/tests/web/test_submission_views.py b/tests/web/test_submission_views.py
new file mode 100644
index 00000000000..5896cf79428
--- /dev/null
+++ b/tests/web/test_submission_views.py
@@ -0,0 +1,243 @@
+import ast
+import os
+import re
+import textwrap
+
+import pytest
+from django.test import SimpleTestCase
+from submission.views import (
+    correlate_platform_packages,
+    get_form_data,
+    get_lib_common_constants,
+    get_package_info,
+    parse_ast,
+    web_conf,
+)
+
+
+@pytest.mark.usefixtures("db")
+class TestSubmissionViews(SimpleTestCase):
+    maxDiff = None
+
+    def setUp(self):
+        self.linux_enabled = web_conf.linux.enabled
+        self.excluded_packages = web_conf.package_exclusion.packages
+        self.linux_package_dir = os.path.join(
+            os.path.abspath(os.path.dirname(__file__)), "..", "..", "analyzer", "linux", "modules", "packages"
+        )
+        self.windows_package_dir = os.path.join(
+            os.path.abspath(os.path.dirname(__file__)), "..", "..", "analyzer", "windows", "modules", "packages"
+        )
+        web_conf.linux.enabled = True
+
+    def tearDown(self):
+        web_conf.linux.enabled = self.linux_enabled
+        web_conf.package_exclusion.packages = self.excluded_packages
+
+    def find_in_list(self, regex, list_of_strings):
+        """Test if the regex matches any string in the list."""
+        pattern = re.compile(regex, flags=re.DOTALL)
+        for string in list_of_strings:
+            if pattern.match(string):
+                return True
+        return False
+
+    def one_should_match(self, regex, list_of_strings):
+        """One of the strings should match."""
+        found = self.find_in_list(regex, list_of_strings)
+        self.assertTrue(found, f"No string matched <{regex}>")
+
+    def none_should_match(self, regex, list_of_strings):
+        """None of the strings should match."""
+        found = self.find_in_list(regex, list_of_strings)
+        self.assertFalse(found, f"One or more strings matched <{regex}>")
+
+    def test_submission_page(self):
+        """The submission page should have a package selection form.
+
+        The form should have a list of at least 10 options.
+        """
+        submission_page = self.client.get("/submit/#file")
+        self.assertIsNotNone(submission_page.content)
+        self.assertIn("Analysis Package", submission_page.content.decode())
+        pattern = re.compile(r'select class="form-control" id="form_package" name="package">(.*?)</select>', flags=re.DOTALL)
+        matches = re.findall(pattern, submission_page.content.decode())
+        self.assertEqual(len(matches), 1)
+        group0 = matches[0].strip()
+        self.assertTrue(group0.startswith("<option value"))
+        self.assertTrue(group0.endswith("</option>"))
+        option_pattern = re.compile(r"<option (.*?)</option>", flags=re.DOTALL)
+        options = re.findall(option_pattern, group0)
+        self.assertEqual('value="" title="">Detect Automatically', options[0])
+
+        self.one_should_match('value="exe" title=".*">exe - .*', options)
+        self.one_should_match(".*ichitaro.*", options)
+        self.one_should_match(".*chromium.*", options)
+        self.assertGreater(len(options), 10)
+        for opt in options:
+            self.assertTrue(opt.startswith("value="))
+
+    def test_package_exclusion(self):
+        """Pick a couple of packages to exclude, to test exclusion"""
+        web_conf.package_exclusion.packages = "chromium,chromium_ext,ichitaro,shellcode"
+        submission_page = self.client.get("/submit/#file")
+        self.assertIsNotNone(submission_page.content)
+        self.assertIn("Analysis Package", submission_page.content.decode())
+        option_pattern = re.compile(r"<option (.*?)</option>", flags=re.DOTALL)
+        options = re.findall(option_pattern, submission_page.content.decode())
+        self.assertGreater(len(options), 10)
+        # excluded packages should not be listed
+        self.none_should_match(".*ichitaro.*", options)
+        self.none_should_match(".*chromium.*", options)
+        # Package 'shellcode' was excluded.
+        self.none_should_match('.*"shellcode".*', options)
+
+    def test_get_package_exe_info(self):
+        """Get the package info from exe.py."""
+        expected_options = ("str1", "str2", "str3")
+        context = {
+            "OPT_ARGUMENTS": expected_options[0],
+            "OPT_APPDATA": expected_options[1],
+            "OPT_RUNASX86": expected_options[2],
+            "ARCHIVE_OPTIONS": (1, 2),
+            "DLL_OPTIONS": (3, 4),
+        }
+        actual = get_package_info(self.windows_package_dir, "exe.py", "windows", context)
+        self.assertEqual("exe", actual["name"])
+        self.assertEqual("Exe", actual["classname"])
+        self.assertIn("summary", actual)
+        self.assertIn("description", actual)
+        self.assertEqual("Runs the supplied executable.", actual["summary"])
+        expected_description = textwrap.dedent(
+            f"""\
+        Executes the given sample, passing '{context["OPT_ARGUMENTS"]}' if specified.
+        Use the '{context["OPT_APPDATA"]}' option to run the executable from the APPDATA directory.
+        Use the '{context["OPT_RUNASX86"]}' option to set the 32BITREQUIRED flag in the PE header,
+        using 'CorFlags.exe /32bit+'.
+        The .exe extension will be added automatically.
+        OPTIONS: {expected_options}"""
+        )
+        actual_description = actual["description"]
+        self.assertEqual(expected_description, actual_description)
+        self.assertEqual(expected_options, actual["option_names"])
+
+    def test_get_package_rar_info(self):
+        """Get the package info from rar.py."""
+        context = {
+            "ARCHIVE_OPTIONS": (2, 5, 1, 3),
+            "DLL_OPTIONS": (3, 4, 2, 5),
+        }
+        actual = get_package_info(self.windows_package_dir, "rar.py", "windows", context)
+        self.assertIn("name", actual)
+        self.assertEqual("rar", actual["name"])
+        self.assertIn("summary", actual)
+        self.assertIn("description", actual)
+        self.assertIn("option_names", actual)
+        self.assertEqual([1, 2, 3, 4, 5], actual["option_names"])
+
+    def test_get_package_one(self):
+        """Get the package info from one.py."""
+        context = dict()
+        actual = get_package_info(self.windows_package_dir, "one.py", "windows", context)
+        self.assertEqual("one", actual["name"])
+        self.assertNotIn("_OPT_YARASCAN", actual["description"])
+        self.assertIn("'yarascan'", actual["description"])
+
+    def test_get_package_bash(self):
+        """Get the package info from bash.py."""
+        context = {
+            "summary": "should not be preserved",
+            "description": "should not be preserved",
+            "option_names": ("opt1", "opt2", "opt3"),
+        }
+        actual = get_package_info(self.linux_package_dir, "bash.py", "linux", context)
+        self.assertEqual("bash", actual["name"])
+        self.assertEqual("linux", actual["platform"])
+        self.assertNotEqual("should not be preserved", actual["summary"])
+        self.assertNotEqual("should not be preserved", actual["description"])
+        # The bash package does not have a summary, description, or option_names.
+        self.assertIn(" has no summary", actual["summary"])
+        self.assertIn(" has no description", actual["description"])
+        self.assertFalse(actual["option_names"])
+
+    def test_get_form_data(self):
+        """Use get_form_data() and check the values returned."""
+        packages, machines = get_form_data()
+        self.assertIsInstance(packages, list)
+        self.assertIsInstance(machines, list)
+        self.assertGreater(len(packages), 10)
+        self.assertGreater(len(machines), 0)
+        platforms = {package["platform"] for package in packages}
+        self.assertIn("windows", platforms)
+        self.assertIn("linux", platforms)
+        package_names = {package["name"] for package in packages}
+        self.assertIn("bash (linux only)", package_names)
+
+    def test_get_lib_common_constants(self):
+        """Ensure we get the constants from lib/common/constants.py"""
+        actual = get_lib_common_constants(platform="windows")
+        self.assertIsInstance(actual, dict)
+        self.assertEqual("runasx86", actual["OPT_RUNASX86"])
+        self.assertCountEqual(("file", "password"), actual["ARCHIVE_OPTIONS"])
+        self.assertCountEqual(("arguments", "dllloader", "function"), actual["DLL_OPTIONS"])
+        self.assertIn("SystemDrive", actual["TRUSTED_PATH_TEXT"])
+        self.assertIn("SystemDrive", actual["MSOFFICE_TRUSTED_PATH"])
+
+    def test_parse_ast(self):
+        """Test some of the parse_ast functionality."""
+        var1 = "x"
+        val1 = "value-of-x"
+
+        # Test ast.BinOp
+        code1 = f"{var1} = 'value-of-' + 'x'"
+        tree = ast.parse(code1)
+        actual = parse_ast(tree.body)
+        self.assertEqual(val1, actual[var1])
+
+        # Test ast.Name lookup from context
+        var2 = "y"
+        code2 = f"{var1} = '{val1}'\n{var2} = f'{{x}}'"
+        tree = ast.parse(code2)
+        actual = parse_ast(tree.body)
+        self.assertEqual(val1, actual[var1])
+        self.assertEqual(val1, actual[var2])
+
+        # Test ast.Tuple handling.
+        code3 = f"{var1} = (1, 2)"
+        tree = ast.parse(code3)
+        actual = parse_ast(tree.body)
+        self.assertEqual((1, 2), actual[var1])
+
+    def test_correlate_platform_packages(self):
+        """Test the correlate_platform_packages function."""
+        win_packages = [
+            {
+                "name": "firefox",
+                "summary": "opens a url with firefox",
+                "platform": "windows",
+            },
+            {
+                "name": "autoit",
+                "summary": "opens a file with autoit",
+                "platform": "windows",
+            },
+        ]
+        linux_packages = [
+            {
+                "name": "firefox",
+                "platform": "linux",
+            },
+            {
+                "name": "bash",
+                "platform": "linux",
+            },
+        ]
+        package_dict = {
+            "windows": win_packages,
+            "linux": linux_packages,
+        }
+        actual = correlate_platform_packages(package_dict)
+        self.assertEqual(3, len(actual))
+        names = [item["name"] for item in actual]
+        self.assertIn("firefox", names)
+        self.assertIn("bash (linux only)", names)
diff --git a/tests/zip_compound/files/example_config.json b/tests/zip_compound/files/example_config.json
new file mode 100644
index 00000000000..4fc4b2d3dd9
--- /dev/null
+++ b/tests/zip_compound/files/example_config.json
@@ -0,0 +1,7 @@
+{
+    "path_to_extract":{
+        "a.exe":"%USERPROFILE%\\Desktop\\a\\b\\c",
+        "folder_b": "%appdata%"
+    },
+    "target_file":"a.exe"
+}
diff --git a/tests/zip_compound/files/misconfiguration.json b/tests/zip_compound/files/misconfiguration.json
new file mode 100644
index 00000000000..12f725f57df
--- /dev/null
+++ b/tests/zip_compound/files/misconfiguration.json
@@ -0,0 +1,6 @@
+{
+    "path_to_extract":{
+        "test_executable.exe":"%USERPROFILE%\\Desktop\\a\\b\\c"
+    }
+    "target_file":"test_exec.exe"
+}
diff --git a/tests/zip_compound/test_extract_path.py b/tests/zip_compound/test_extract_path.py
new file mode 100644
index 00000000000..5b5fc59274b
--- /dev/null
+++ b/tests/zip_compound/test_extract_path.py
@@ -0,0 +1,24 @@
+import logging
+import os
+import sys
+
+logging.basicConfig(level=logging.DEBUG)
+
+testfile_dir = os.path.dirname(__file__)
+testfile_dir = os.path.join(testfile_dir, "..", "..", "analyzer", "windows")
+sys.path.append(testfile_dir)
+
+import modules.packages.zip as zip
+
+extract_dir = os.path.expandvars("%USERPROFILE%\\Desktop")
+
+
+def test_zip_Extraction():
+    zip_obj = zip.Zip()
+    zip_obj.extract_zip("./files/test_zip.zip", extract_dir)
+
+
+def test_zip_JSON():
+    zip_obj = zip.Zip()
+    f = zip_obj.process_unzipped_contents(extract_dir, "test_executable.exe")
+    print(f)
diff --git a/tests/zip_compound/test_json_config.py b/tests/zip_compound/test_json_config.py
new file mode 100644
index 00000000000..54410088b81
--- /dev/null
+++ b/tests/zip_compound/test_json_config.py
@@ -0,0 +1,31 @@
+# Copyright (C) 2021 CSIT
+# This file is part of CAPE Sandbox - http://www.capesandbox.com
+# See the file 'docs/LICENSE' for copying permission.
+
+import os
+import sys
+
+import pytest
+
+testfile_dir = os.path.dirname(__file__)
+module_dir = os.path.join(testfile_dir, "", "../..", "analyzer", "windows")
+sys.path.append(module_dir)
+
+from lib.common.exceptions import CuckooPackageError
+from lib.core.compound import extract_json_data
+
+
+def test_invalid_json():
+    with pytest.raises(CuckooPackageError) as e:
+        extract_json_data("./files", "misconfiguration.json")
+    assert "JSON decode error" in str(e.value)
+
+    data = extract_json_data("./files", "nosuchfile")
+    assert data == {}
+
+
+def test_json():
+    data = extract_json_data("./files", "example_config.json")
+    assert data["path_to_extract"]["a.exe"] == "%USERPROFILE%\\Desktop\\a\\b\\c"
+    assert data["path_to_extract"]["folder_b"] == "%appdata%"
+    assert data["target_file"] == "a.exe"
diff --git a/tests/zip_compound/test_windows_zip_compound.py b/tests/zip_compound/test_windows_zip_compound.py
new file mode 100644
index 00000000000..66452414e9f
--- /dev/null
+++ b/tests/zip_compound/test_windows_zip_compound.py
@@ -0,0 +1,221 @@
+# Copyright (C) 2021 CSIT
+# This file is part of CAPE Sandbox - http://www.capesandbox.com
+# See the file 'docs/LICENSE' for copying permission.
+
+import os
+import shutil
+import sys
+from contextlib import contextmanager, suppress
+from typing import Dict
+
+import pytest
+
+testfile_dir = os.path.dirname(__file__)
+module_dir = os.path.join(testfile_dir, "", "../..", "analyzer", "windows")
+sys.path.append(module_dir)
+
+from lib.common.exceptions import CuckooPackageError
+from lib.cuckoo.common.path_utils import path_delete, path_exists
+from modules.packages.zip_compound import ZipCompound
+
+# Note: References "single_layer_json.zip" and "multi_layer_json.zip" files
+option_curdir = os.path.expandvars("%USERPROFILE%\\Desktop\\whatmeow")
+option_filename = "some_EXECutable.exe"
+
+dest_folders = (
+    os.path.expandvars("%userprofile%\\Desktop\\testcape\\a\\b\\c"),
+    os.path.expandvars("%userprofile%\\Desktop\\testcape\\d\\e\\f"),
+    os.path.expandvars("%userprofile%\\Desktop\\testcape\\capetest"),
+)
+
+
+@contextmanager
+def cleanup():
+    try:
+        yield
+    finally:
+        global option_curdir
+        test_folder = os.path.expandvars("%userprofile%\\Desktop\\testcape")
+        to_remove = (test_folder, option_curdir)
+
+        for folder in to_remove:
+            try:
+                shutil.rmtree(folder)
+            except FileNotFoundError:
+                continue
+
+
+def generate_analysis_dict(curdir: bool = False, file: bool = False) -> Dict[str, str]:
+    global option_curdir, option_filename
+    options = {}
+    if curdir:
+        options["curdir"] = option_curdir
+    if file:
+        options["file"] = option_filename
+    return options
+
+
+def test_analysis_dict():
+    global option_curdir, option_filename
+
+    assert generate_analysis_dict() == {}
+    assert generate_analysis_dict(curdir=True) == {"curdir": option_curdir}
+    assert generate_analysis_dict(file=True) == {"file": option_filename}
+    assert generate_analysis_dict(curdir=True, file=True) == {"curdir": option_curdir, "file": option_filename}
+
+
+def test_curdir():
+    """Test the curdir submission option
+    Checks if the files are at the right "curdir" location
+    """
+    global option_curdir
+    files = ("__configuration1.json", "test_executable.exe", "test_loadable.dll", "test_notes.txt", "test_notes_immovable.txt")
+
+    def check_files(expected_dir):
+        # Checks whether all the files are present inside the specified directory.
+        for f in files:
+            path_to_check = os.path.join(expected_dir, f)
+            assert path_exists(path_to_check)
+
+    def cleanup_temp():
+        for f in files:
+            with suppress(FileNotFoundError):
+                path_delete(os.path.join(os.path.expandvars("%TEMP%"), f))
+
+    # Assumes that "file" submission option is provided (required)
+    # No JSON config
+    # No curdir, defaults to %TEMP.
+    try:
+        y = ZipCompound(options=generate_analysis_dict(file=True))
+        y.prepare_zip_compound("./files/single_layer_json.zip", "__configuration0.json")
+        check_files(os.path.expandvars("%TEMP%"))
+    finally:
+        cleanup_temp()
+
+    # Curdir, specified by "option_curdir"
+    with cleanup():
+        z = ZipCompound(options=generate_analysis_dict(curdir=True, file=True))
+        z.prepare_zip_compound("./files/single_layer_json.zip", "__configuration0.json")
+        check_files(option_curdir)
+
+
+def test_invalid_file_option():
+    """Test invalid `file` submission
+    Should fail if `file` was not provided during submission and no JSON
+    or `file` value is not supported
+    """
+
+    z = ZipCompound(options=generate_analysis_dict(curdir=True))
+
+    # No `file` and no JSON --> should fail
+    with cleanup():
+        with pytest.raises(CuckooPackageError) as e:
+            z.prepare_zip_compound("./files/single_layer_json.zip", "__configuration0.json")
+        assert "File must be specified" in str(e.value)
+
+    # Wrong `file` (no extension) and no JSON --> should fail
+    z.options["file"] = "test_executable"
+    with cleanup():
+        with pytest.raises(CuckooPackageError) as e:
+            z.prepare_zip_compound("./files/single_layer_json.zip", "__configuration0.json")
+        assert "no extension recognised" in str(e.value)
+
+
+def test_valid_file_option():
+    """Test valid file submission option"""
+    global dest_folders, option_curdir
+
+    expected_filename = "test_executable.exe"
+    expected_path = os.path.join(dest_folders[0], expected_filename)
+
+    # `File` + no json (+curdir) --> covered under test_curdir()
+
+    # No `file` + json --> json provided
+    with cleanup():
+        y = ZipCompound(options=generate_analysis_dict(curdir=True))
+        file_name, file_path = y.prepare_zip_compound("./files/single_layer_json.zip", "__configuration1.json")
+        assert file_name == expected_filename
+        assert file_path == expected_path
+
+    # `file` + json (+curdir) --> json overwrites
+    with cleanup():
+        z = ZipCompound(options=generate_analysis_dict(curdir=True, file=True))
+        file_name, file_path = z.prepare_zip_compound("./files/single_layer_json.zip", "__configuration1.json")
+        assert file_name == expected_filename
+        assert file_path == expected_path
+
+
+def test_folder_extraction():
+    """Tests the simple moving of folders, with "target_file" being a file
+    in the root directory of the zip
+    """
+    global dest_folders
+
+    def check_moved_files():
+        expected_files = (
+            os.path.join(option_curdir, "__configuration1.json"),
+            os.path.join(option_curdir, "__configuration2.json"),
+            os.path.join(dest_folders[0], "test_executable.exe"),
+            os.path.join(dest_folders[1], "folder", "test_notes_immovable.txt"),
+            os.path.join(dest_folders[1], "folder\\kewl", "test_notes.txt"),
+            os.path.join(dest_folders[2], "fld\\nested", "testfile.txt"),
+            os.path.join(dest_folders[2], "fld\\nested\\last", "test_loadable.dll"),
+        )
+        for f in expected_files:
+            assert path_exists(f)
+
+    with cleanup():
+        z = ZipCompound(options=generate_analysis_dict(curdir=True, file=True))
+        z.prepare_zip_compound("./files/multi_layer_json.zip", "__configuration1.json")
+        check_moved_files()
+
+
+def test_invalid_json_target():
+    """When "target_file" is a relative path, but its containing folder
+    is moved before the specified "target_file"
+    """
+    global dest_folders
+
+    # Tests JSON "target_file" whose containing directory is shifted
+    with cleanup():
+        with pytest.raises(CuckooPackageError) as e:
+            z = ZipCompound(options=generate_analysis_dict(curdir=True, file=True))
+            z.prepare_zip_compound("./files/multi_layer_json.zip", "__configuration2.json")
+        assert "Error getting the correct path" in str(e.value)
+
+
+def test_json_target_1():
+    # When JSON "target_file" is a relative path but its containing folder is not moved
+    expected_filename = "test_loadable.dll"
+    expected_filepath = os.path.join(option_curdir, "fld\\nested\\last", "test_loadable.dll")
+    with cleanup():
+        z = ZipCompound(options=generate_analysis_dict(curdir=True, file=True))
+        filename, filepath = z.prepare_zip_compound("./files/multi_layer_json.zip", "__configuration3.json")
+        assert filename == expected_filename
+        assert filepath == expected_filepath
+
+
+def test_json_target_2():
+    # When JSON "target_file" is a relative path, moved before moving its containing folder
+    expected_filename = "test_loadable.dll"
+    expected_filepath = os.path.join(dest_folders[2], "fld\\nested\\last", "test_loadable.dll")
+
+    def check_moved():
+        expected_files = (
+            os.path.join(option_curdir, "__configuration1.json"),
+            os.path.join(option_curdir, "__configuration2.json"),
+            os.path.join(dest_folders[0], "test_executable.exe"),
+            os.path.join(dest_folders[2], "test_notes_immovable.txt"),
+            os.path.join(dest_folders[1], "kewl", "test_notes.txt"),
+            os.path.join(dest_folders[2], "fld\\nested\\last", "test_loadable.dll"),
+        )
+        for f in expected_files:
+            assert path_exists(f)
+
+    with cleanup():
+        z = ZipCompound(options=generate_analysis_dict(curdir=True, file=True))
+        filename, filepath = z.prepare_zip_compound("./files/multi_layer_json.zip", "__configuration4.json")
+        assert filename == expected_filename
+        assert filepath == expected_filepath
+        # Sanity check
+        check_moved()
diff --git a/utils/admin.py b/utils/admin.py
index 9f4fff7d960..68d060b8746 100644
--- a/utils/admin.py
+++ b/utils/admin.py
@@ -1,18 +1,14 @@
-from __future__ import absolute_import
-from __future__ import print_function
 import os
-import sys
 import shutil
+import sys
 
 CUCKOO_ROOT = os.path.join(os.path.abspath(os.path.dirname(".")), "..")
 sys.path.append(CUCKOO_ROOT)
 
 
-from lib.cuckoo.core.database import Database, Task, TASK_PENDING
 from lib.cuckoo.common.config import Config
 from lib.cuckoo.common.constants import CUCKOO_ROOT
-from lib.cuckoo.common.web_utils import perform_malscore_search, perform_search, perform_ttps_search, search_term_map
-import modules.processing.network as network
+from lib.cuckoo.common.path_utils import path_exists
 
 repconf = Config("reporting")
 
@@ -25,16 +21,27 @@
     results_db = pymongo.MongoClient(
         repconf.mongodb.host,
         port=repconf.mongodb.port,
-        username=repconf.mongodb.get("username", None),
-        password=repconf.mongodb.get("password", None),
-        authSource=repconf.mongodb.db,
+        username=repconf.mongodb.get("username"),
+        password=repconf.mongodb.get("password"),
+        authSource=repconf.mongodb.get("authsource", "cuckoo"),
+        tlsCAFile=repconf.mongodb.get("tlscafile", None),
     )[repconf.mongodb.db]
     FULL_DB = True
 
+if repconf.elasticsearchdb.enabled:
+    from dev_utils.elasticsearchdb import (
+        delete_analysis_and_related_calls,
+        elastic_handler,
+        get_analysis_index,
+        get_query_by_info_id,
+    )
+
+    es = elastic_handler
+
 
 # Used for displaying enabled config options in Django UI
-enabledconf = dict()
-for cfile in ["reporting", "processing", "auxiliary", "web"]:
+enabledconf = {}
+for cfile in ("reporting", "processing", "auxiliary", "web"):
     curconf = Config(cfile)
     confdata = curconf.get_config()
     for item in confdata:
@@ -46,26 +53,34 @@
 
 
 def remove(task_id):
+    if repconf.mongodb.enabled or repconf.elasticsearchdb.enabled:
+        if repconf.mongodb.enabled:
+            analyses = list(results_db.analysis.find({"info.id": int(task_id)}, {"_id": 1, "behavior.processes": 1}))
+        elif repconf.elasticsearchdb.enabled:
+            analyses = [
+                d["_source"]
+                for d in es.search(index=get_analysis_index(), query=get_query_by_info_id(task_id), _source=["behavior.processes"])[
+                    "hits"
+                ]["hits"]
+            ]
+        else:
+            analyses = []
 
-    if enabledconf["mongodb"]:
-        analyses = results_db.analysis.find({"info.id": int(task_id)}, {"_id": 1, "behavior.processes": 1})
-        # Checks if more analysis found with the same ID, like if process.py was run manually.
-        if analyses.count() > 1:
-            message = "Multiple tasks with this ID deleted."
-        elif analyses.count() == 1:
-            message = "Task deleted."
-
-        if analyses.count() > 0:
+        if len(analyses) > 0:
             # Delete dups too.
             for analysis in analyses:
-                # Delete calls.
-                for process in analysis.get("behavior", {}).get("processes", []):
-                    for call in process["calls"]:
-                        results_db.calls.remove({"_id": ObjectId(call)})
-                # Delete analysis data.
-                results_db.analysis.remove({"_id": ObjectId(analysis["_id"])})
+                if repconf.mongodb.enabled:
+                    # Delete calls.
+                    for process in analysis.get("behavior", {}).get("processes", []):
+                        for call in process["calls"]:
+                            results_db.calls.delete_one({"_id": ObjectId(call)})
+                    # Delete analysis data.
+                    results_db.analysis.delete_one({"_id": ObjectId(analysis["_id"])})
+                elif repconf.elasticsearchdb.enabled:
+                    delete_analysis_and_related_calls(analysis["info"]["id"])
+
             analyses_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", task_id)
-            if os.path.exists(analyses_path):
+            if path_exists(analyses_path):
                 shutil.rmtree(analyses_path)
         else:
             print("nothing found")
diff --git a/utils/cleaners.py b/utils/cleaners.py
index e9ec7a21bd3..4c927169e5c 100644
--- a/utils/cleaners.py
+++ b/utils/cleaners.py
@@ -1,579 +1,104 @@
 # Copyright (C) 2010-2015 Cuckoo Foundation.
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
-
-from __future__ import absolute_import
-from __future__ import print_function
-
+import argparse
 import os
 import sys
-import shutil
-import argparse
-import logging
-from bson.objectid import ObjectId
-from datetime import datetime, timedelta
-from multiprocessing.pool import ThreadPool
 
 CUCKOO_ROOT = os.path.join(os.path.abspath(os.path.dirname(__file__)), "..")
 sys.path.append(CUCKOO_ROOT)
 
-from sqlalchemy import desc
-from lib.cuckoo.common.dist_db import create_session
-from lib.cuckoo.common.dist_db import Task as DTask
-from lib.cuckoo.common.config import Config
-from lib.cuckoo.common.utils import delete_folder
-from lib.cuckoo.core.startup import create_structure, init_console_logging
-from lib.cuckoo.core.database import (
-    Database,
-    Task,
-    Sample,
-    TASK_RUNNING,
-    TASK_PENDING,
-    TASK_FAILED_ANALYSIS,
-    TASK_FAILED_PROCESSING,
-    TASK_FAILED_REPORTING,
-    TASK_RECOVERED,
-    TASK_REPORTED,
-)
-
-
-log = logging.getLogger()
-
-cuckoo = Config()
-rep_config = Config("reporting")
-resolver_pool = ThreadPool(50)
-
-# Initialize the database connection.
-db = Database()
-mdb = rep_config.mongodb.get("db", "cuckoo")
-
-
-def connect_to_mongo():
-    conn = False
-    # Check if MongoDB reporting is enabled and drop that if it is.
-    if rep_config.mongodb and rep_config.mongodb.enabled:
-        from pymongo import MongoClient
-
-        host = rep_config.mongodb.get("host", "127.0.0.1")
-        port = rep_config.mongodb.get("port", 27017)
-        user = rep_config.mongodb.get("username", None)
-        password = rep_config.mongodb.get("password", None)
-        try:
-            conn = MongoClient(host=host, port=port, username=user, password=password, authSource=mdb)
-        except Exception as e:
-            log.warning("Unable to connect to MongoDB database: {}, {}".format(mdb, e))
-
-    return conn
-
-
-def connect_to_es():
-    es = None
-    delidx = None
-    # Check if ElasticSearch is enabled and delete that data if it is.
-    from elasticsearch import Elasticsearch
-
-    delidx = rep_config.elasticsearchdb.index + "-*"
-    try:
-        es = Elasticsearch(hosts=[{"host": rep_config.elasticsearchdb.host, "port": rep_config.elasticsearchdb.port,}], timeout=60)
-    except:
-        log.warning("Unable to connect to ElasticSearch")
-
-    return es, delidx
-
-def delete_bulk_tasks_n_folders(tids: list, delete_mongo: bool):
-    results_db = connect_to_mongo()[mdb]
-    ids = [tid["info.id"] for tid in tids]
-    for i in range(0, len(ids), 10):
-        ids_tmp = ids[i:i+10]
-        if delete_mongo:
-            try:
-                analyses_tmp = list()
-                log.info("Deleting MongoDB data for Tasks #{0}".format(",".join([str(id) for id in ids_tmp])))
-                analyses = results_db.analysis.find({"info.id": {"$in": [id for id in ids_tmp]}}, {"behavior.processes": 1, "_id": 1})
-                if analyses.count() > 0:
-                    for analysis in analyses:
-                        calls = list()
-                        for process in analysis.get("behavior", {}).get("processes", []):
-                            calls = list()
-                            for call in process["calls"]:
-                                #results_db.calls.delete_one({"_id": ObjectId(call)})
-                                calls.append(ObjectId(call))
-                        if calls:
-                            results_db.analysis.delete_many({"_id": {"$in": calls}})
-                        #results_db.analysis.delete_one({"_id": ObjectId(analysis["_id"])})
-                        analyses_tmp.append(ObjectId(analysis["_id"]))
-                if analyses_tmp:
-                    results_db.analysis.delete_many({"_id": {"$in": analyses_tmp}})
-            except Exception as e:
-                log.info(e)
-
-            if db.delete_tasks(ids_tmp):
-                for id in ids_tmp:
-                    try:
-                        path = os.path.join(CUCKOO_ROOT, "storage", "analyses", "%s" % str(id))
-                        if os.path.isdir(path):
-                            delete_folder(path)
-                    except Exception as e:
-                        log.error(e)
-        else:
-            # If we don't remove from mongo we should keep in db to be able to show task in webgui
-            for id in ids_tmp:
-                try:
-                    path = os.path.join(CUCKOO_ROOT, "storage", "analyses", "%s" % str(id))
-                    if os.path.isdir(path):
-                        delete_folder(path)
-                except Exception as e:
-                    log.error(e)
-
-def delete_data(tid):
-    if isinstance(tid, dict):
-        if "info.id" in tid:
-            tid = tid["info.id"]
-        elif tid.get("info", {}).get("id", 0):
-            tid = tid["info"]["id"]
-        elif "id" in tid:
-            tid = tid["id"]
-    try:
-        log.info("removing %s from analysis db" % (tid))
-        delete_mongo_data(tid)
-    except:
-        log.info("failed to remove analysis info (may not exist) %s" % (tid))
-    if db.delete_task(tid):
-        delete_folder(os.path.join(CUCKOO_ROOT, "storage", "analyses", "%s" % tid))
-    else:
-        log.info("failed to remove faile task %s from DB" % (tid))
-
-def delete_mongo_data(tid):
-    try:
-        results_db = connect_to_mongo()[mdb]
-        analyses = results_db.analysis.find({"info.id": int(tid)}, {"behavior.processes": 1, "_id": 1})
-        if analyses.count() > 0:
-            for analysis in analyses:
-                calls = list()
-                log.info("deleting MongoDB data for Task #{0}".format(tid))
-                for process in analysis.get("behavior", {}).get("processes", []):
-                    calls = list()
-                    for call in process["calls"]:
-                        #results_db.calls.delete_one({"_id": ObjectId(call)})
-                        calls.append(ObjectId(call))
-
-                if calls:
-                    results_db.analysis.delete_many({"_id": {"$in": calls}})
-                results_db.analysis.delete_one({"_id": ObjectId(analysis["_id"])})
-    except Exception as e:
-        log.info(e)
-
-
-def dist_delete_data(data, dist_db):
-    for id, file in data:
-        try:
-            if os.path.exists(file):
-                try:
-                    os.remove(file)
-                except Exception as e:
-                    log.info(e)
-            db.delete_task(id)
-            # clean dist_db
-            dist_task = dist_db.query(Task).filter(DTask.main_task.id == id).first()
-            if dist_task:
-                dist_db.delete(dist_task.id)
-        except Exception as e:
-            log.info(e)
-
-
-def cuckoo_clean():
-    """Clean up cuckoo setup.
-    It deletes logs, all stored data from file system and configured databases (SQL
-    and MongoDB.
-    """
-    # Init logging.
-    # This need to init a console logger handler, because the standard
-    # logger (init_logging()) logs to a file which will be deleted.
-    create_structure()
-    init_console_logging()
-
-    # Drop all tables.
-    db.drop()
-
-    conn = connect_to_mongo()
-    if not conn:
-        log.info("Can't connect to mongo")
-        return
-    try:
-        conn.drop_database(mdb)
-        conn.close()
-    except:
-        log.warning("Unable to drop MongoDB database: %s", mdb)
-
-    if rep_config.elasticsearchdb and rep_config.elasticsearchdb.enabled and not rep_config.elasticsearchdb.searchonly:
-        es = False
-        es, delidx = connect_to_es()
-        if not es:
-            return
-        analyses = es.search(index=delidx, doc_type="analysis", q="*")["hits"]["hits"]
-        if analyses:
-            for analysis in analyses:
-                esidx = analysis["_index"]
-                esid = analysis["_id"]
-                # Check if behavior exists
-                if analysis["_source"]["behavior"]:
-                    for process in analysis["_source"]["behavior"]["processes"]:
-                        for call in process["calls"]:
-                            es.delete(
-                                index=esidx, doc_type="calls", id=call,
-                            )
-                # Delete the analysis results
-                es.delete(
-                    index=esidx, doc_type="analysis", id=esid,
-                )
-
-    # Paths to clean.
-    paths = [
-        os.path.join(CUCKOO_ROOT, "db"),
-        os.path.join(CUCKOO_ROOT, "log"),
-        os.path.join(CUCKOO_ROOT, "storage"),
-    ]
-
-    # Delete various directories.
-    for path in paths:
-        if os.path.isdir(path):
-            try:
-                shutil.rmtree(path)
-            except (IOError, OSError) as e:
-                log.warning("Error removing directory %s: %s", path, e)
-
-    # Delete all compiled Python objects ("*.pyc").
-    for dirpath, dirnames, filenames in os.walk(CUCKOO_ROOT):
-        for fname in filenames:
-            if not fname.endswith(".pyc"):
-                continue
-
-            path = os.path.join(CUCKOO_ROOT, dirpath, fname)
-
-            try:
-                os.unlink(path)
-            except (IOError, OSError) as e:
-                log.warning("Error removing file %s: %s", path, e)
-
-
-def cuckoo_clean_failed_tasks():
-    """Clean up failed tasks
-    It deletes all stored data from file system and configured databases (SQL
-    and MongoDB for failed tasks.
-    """
-    # Init logging.
-    # This need to init a console logger handler, because the standard
-    # logger (init_logging()) logs to a file which will be deleted.
-    create_structure()
-    init_console_logging()
-
-    failed_tasks_a = db.list_tasks(status=TASK_FAILED_ANALYSIS)
-    failed_tasks_p = db.list_tasks(status=TASK_FAILED_PROCESSING)
-    failed_tasks_r = db.list_tasks(status=TASK_FAILED_REPORTING)
-    failed_tasks_rc = db.list_tasks(status=TASK_RECOVERED)
-    resolver_pool.map(lambda tid: delete_data(tid.to_dict()["id"]), failed_tasks_a)
-    resolver_pool.map(lambda tid: delete_data(tid.to_dict()["id"]), failed_tasks_p)
-    resolver_pool.map(lambda tid: delete_data(tid.to_dict()["id"]), failed_tasks_r)
-    resolver_pool.map(lambda tid: delete_data(tid.to_dict()["id"]), failed_tasks_rc)
-
-
-def cuckoo_clean_bson_suri_logs():
-    """Clean up raw suri log files probably not needed if storing in mongo. Does not remove extracted files
-    """
-    # Init logging.
-    # This need to init a console logger handler, because the standard
-    # logger (init_logging()) logs to a file which will be deleted.
-    create_structure()
-    init_console_logging()
-    from glob import glob
-
-    failed_tasks_a = db.list_tasks(status=TASK_FAILED_ANALYSIS)
-    failed_tasks_p = db.list_tasks(status=TASK_FAILED_PROCESSING)
-    failed_tasks_r = db.list_tasks(status=TASK_FAILED_REPORTING)
-    failed_tasks_rc = db.list_tasks(status=TASK_RECOVERED)
-    tasks_rp = db.list_tasks(status=TASK_REPORTED)
-    for e in failed_tasks_a, failed_tasks_p, failed_tasks_r, failed_tasks_rc, tasks_rp:
-        for el2 in e:
-            new = el2.to_dict()
-            id = new["id"]
-            path = os.path.join(CUCKOO_ROOT, "storage", "analyses", "%s" % id)
-            if os.path.exists(path):
-                jsonlogs = glob("%s/logs/*json*" % (path))
-                bsondata = glob("%s/logs/*.bson" % (path))
-                filesmeta = glob("%s/logs/files/*.meta" % (path))
-                for f in jsonlogs, bsondata, filesmeta:
-                    for fe in f:
-                        try:
-                            log.info(("removing %s" % (fe)))
-                            os.remove(fe)
-                        except Exception as Err:
-                            log.info(("failed to remove sorted_pcap from disk %s" % (Err)))
-
-
-def cuckoo_clean_failed_url_tasks():
-    """Clean up failed tasks
-    It deletes all stored data from file system and configured databases (SQL
-    and MongoDB for failed tasks.
-    """
-    # Init logging.
-    # This need to init a console logger handler, because the standard
-    # logger (init_logging()) logs to a file which will be deleted.
-    create_structure()
-    init_console_logging()
-    results_db = connect_to_mongo()[mdb]
-    if not results_db:
-        log.info("Can't connect to mongo")
-        return
-
-    rtmp = results_db.analysis.find({"info.category": "url", "network.http.0": {"$exists": False}}, {"info.id": 1}, sort=[("_id", -1)]).limit(
-        100
-    )
-    if rtmp and rtmp.count() > 0:
-        resolver_pool.map(lambda tid: delete_data(tid), rtmp)
-
-
-def cuckoo_clean_lower_score(args):
-    """Clean up tasks with score <= X
-    It deletes all stored data from file system and configured databases (SQL
-    and MongoDB for tasks.
-    """
-    # Init logging.
-    # This need to init a console logger handler, because the standard
-    # logger (init_logging()) logs to a file which will be deleted.
-    if not args.malscore:
-        log.info("No malscore argument provided bailing")
-        return
-
-    create_structure()
-    init_console_logging()
-    id_arr = []
-    results_db = connect_to_mongo()[mdb]
-    if not results_db:
-        log.info("Can't connect to mongo")
-        return
-
-    result = list(results_db.analysis.find({"malscore": {"$lte": args.malscore}}))
-    id_arr = [entry["info"]["id"] for entry in result]
-    log.info(("number of matching records %s" % len(id_arr)))
-    resolver_pool.map(lambda tid: delete_data(tid), id_arr)
-
-
-def cuckoo_clean_before_day(args):
-    """Clean up failed tasks
-    It deletes all stored data from file system and configured databases (SQL
-    and MongoDB for tasks completed before now - days.
-    """
-    # Init logging.
-    # This need to init a console logger handler, because the standard
-    # logger (init_logging()) logs to a file which will be deleted.
-    if not args.delete_older_than_days:
-        log.info("No days argument provided bailing")
-        return
-    else:
-        days = args.delete_older_than_days
-    create_structure()
-    init_console_logging()
-    id_arr = []
-
-    results_db = connect_to_mongo()[mdb]
-    if not results_db:
-        log.info("Can't connect to mongo")
-        return
-
-    added_before = datetime.now() - timedelta(days=int(days))
-    if args.files_only_filter:
-        log.info("file filter applied")
-        old_tasks = db.list_tasks(added_before=added_before, category="file")
-    elif args.urls_only_filter:
-        log.info("url filter applied")
-        old_tasks = db.list_tasks(added_before=added_before, category="url")
-    else:
-        old_tasks = db.list_tasks(added_before=added_before)
-
-    for e in old_tasks:
-        id_arr.append({"info.id": (int(e.to_dict()["id"]))})
-
-    log.info(("number of matching records %s before suri/custom filter " % len(id_arr)))
-    if id_arr and args.suricata_zero_alert_filter:
-        result = list(results_db.analysis.find({"suricata.alerts.alert": {"$exists": False}, "$or": id_arr}, {"info.id": 1, "_id": 0}))
-        id_arr = [entry["info"]["id"] for entry in result]
-    if id_arr and args.custom_include_filter:
-        result = list(results_db.analysis.find({"info.custom": {"$regex": args.custom_include_filter}, "$or": id_arr}, {"info.id": 1, "_id": 0}))
-        id_arr = [entry["info"]["id"] for entry in result]
-    log.info("number of matching records %s" % len(id_arr))
-    delete_bulk_tasks_n_folders(id_arr, args.dont_delete_mongo)
-    #resolver_pool.map(lambda tid: delete_data(tid), id_arr)
-
-
-def cuckoo_clean_sorted_pcap_dump():
-    """Clean up failed tasks
-    It deletes all stored data from file system and configured databases (SQL
-    and MongoDB for failed tasks.
-    """
-    # Init logging.
-    # This need to init a console logger handler, because the standard
-    # logger (init_logging()) logs to a file which will be deleted.
-    create_structure()
-    init_console_logging()
-    results_db = connect_to_mongo()[mdb]
-    if not results_db:
-        log.info("Can't connect to mongo")
-        return
-
-    done = False
-    while not done:
-        rtmp = results_db.analysis.find({"network.sorted_pcap_id": {"$exists": True}}, {"info.id": 1}, sort=[("_id", -1)]).limit(100)
-        if rtmp and rtmp.count() > 0:
-            for e in rtmp:
-                if e["info"]["id"]:
-                    log.info((e["info"]["id"]))
-                    try:
-                        results_db.analysis.update({"info.id": int(e["info"]["id"])}, {"$unset": {"network.sorted_pcap_id": ""}})
-                    except:
-                        log.info(("failed to remove sorted pcap from db for id %s" % (e["info"]["id"])))
-                    try:
-                        path = os.path.join(CUCKOO_ROOT, "storage", "analyses", "%s" % (e["info"]["id"]), "dump_sorted.pcap")
-                        os.remove(path)
-                    except Exception as e:
-                        log.info(("failed to remove sorted_pcap from disk %s" % (e)))
-                else:
-                    done = True
-        else:
-            done = True
-
-
-def cuckoo_clean_pending_tasks():
-    """Clean up pending tasks
-    It deletes all stored data from file system and configured databases (SQL
-    and MongoDB for pending tasks.
-    """
-    # Init logging.
-    # This need to init a console logger handler, because the standard
-    # logger (init_logging()) logs to a file which will be deleted.
-    create_structure()
-    init_console_logging()
-
-    results_db = connect_to_mongo()[mdb]
-    if not results_db:
-        log.info("Can't connect to mongo")
-        return
-
-    pending_tasks = db.list_tasks(status=TASK_PENDING)
-    resolver_pool.map(lambda tid: delete_data(tid.to_dict()["id"]), pending_tasks)
-
-
-def cuckoo_clean_range_tasks(start, end):
-    """Clean up tasks between start and end
-    It deletes all stored data from file system and configured databases (SQL
-    and MongoDB for selected tasks.
-    """
-    # Init logging.
-    # This need to init a console logger handler, because the standard
-    # logger (init_logging()) logs to a file which will be deleted.
-    create_structure()
-    init_console_logging()
-    pending_tasks = db.list_tasks(id_after=start - 1, id_before=end + 1)
-    resolver_pool.map(lambda tid: delete_data(tid.to_dict()["id"]), pending_tasks)
-
-
-def cuckoo_dedup_cluster_queue():
-
-    """
-    Cleans duplicated pending tasks from cluster queue
-    """
-
-    session = db.Session()
-    dist_session = create_session(rep_config.distributed.db, echo=False)
-    dist_db = dist_session()
-    hash_dict = dict()
-    duplicated = session.query(Sample, Task).join(Task).filter(Sample.id == Task.sample_id, Task.status == "pending").order_by(Sample.sha256)
-
-    for sample, task in duplicated:
-        try:
-            # hash -> [[id, file]]
-            hash_dict.setdefault(sample.sha256, list())
-            hash_dict[sample.sha256].append((task.id, task.target))
-        except UnicodeDecodeError:
-            pass
-
-    resolver_pool.map(lambda sha256: dist_delete_data(hash_dict[sha256][1:], dist_db), hash_dict)
-
-
-def cape_clean_tlp():
-
-    create_structure()
-    init_console_logging()
-
-    results_db = connect_to_mongo()[mdb]
-    if not results_db:
-        log.info("Can't connect to mongo")
-        return
-
-    tlp_tasks = db.get_tlp_tasks()
-    resolver_pool.map(lambda tid: delete_data(tid), tlp_tasks)
-
+from lib.cuckoo.common.cleaners_utils import execute_cleanup
+from lib.cuckoo.core.database import init_database
 
 if __name__ == "__main__":
     parser = argparse.ArgumentParser()
-    parser.add_argument("--clean", help="Remove all tasks and samples and their associated data", action="store_true", required=False)
+    parser.add_argument(
+        "-tr", "--time-range", help="Time range can be specified as: 1d, 22h, 55m, etc", action="store", required=False
+    )
+    parser.add_argument(
+        "--clean", help="Remove all tasks and samples and their associated data", action="store_true", required=False
+    )
     parser.add_argument("--failed-clean", help="Remove all tasks marked as failed", action="store_true", required=False)
-    parser.add_argument("--failed-url-clean", help="Remove all tasks that are url tasks but we don't have any HTTP traffic", action="store_true", required=False)
-    parser.add_argument("--delete-older-than-days", help="Remove all tasks older than X number of days", type=int, required=False)
-    parser.add_argument("--pcap-sorted-clean", help="remove sorted pcap from jobs", action="store_true", required=False)
-    parser.add_argument("--suricata-zero-alert-filter", help="only remove events with zero suri alerts DELETE AFTER ONLY", action="store_true", required=False)
-    parser.add_argument("--urls-only-filter", help="only remove url events filter DELETE AFTER ONLY", action="store_true", required=False)
-    parser.add_argument("--files-only-filter", help="only remove files events filter DELETE AFTER ONLY", action="store_true", required=False)
-    parser.add_argument("--custom-include-filter", help="Only include jobs that match the custom field DELETE AFTER ONLY", required=False)
-    parser.add_argument("--bson-suri-logs-clean", help="clean bson and suri logs from analysis dirs", required=False, action="store_true")
+    parser.add_argument(
+        "--failed-url-clean",
+        help="Remove all tasks that are url tasks but we don't have any HTTP traffic",
+        action="store_true",
+        required=False,
+    )
+    parser.add_argument("--delete-older-than", help="Remove all tasks older than time range.", required=False)
+    parser.add_argument("--pcap-sorted-clean", help="Remove sorted pcap from jobs", action="store_true", required=False)
+    parser.add_argument(
+        "--suricata-zero-alert-filter",
+        help="only remove events with zero suri alerts DELETE AFTER ONLY",
+        action="store_true",
+        required=False,
+    )
+    parser.add_argument(
+        "--urls-only-filter", help="only remove url events filter DELETE AFTER ONLY", action="store_true", required=False
+    )
+    parser.add_argument(
+        "--files-only-filter", help="only remove files events filter DELETE AFTER ONLY", action="store_true", required=False
+    )
+    parser.add_argument(
+        "--custom-include-filter", help="Only include jobs that match the custom field DELETE AFTER ONLY", required=False
+    )
+    parser.add_argument(
+        "--bson-suri-logs-clean", help="clean bson and suri logs from analysis dirs", required=False, action="store_true"
+    )
     parser.add_argument("--pending-clean", help="Remove all tasks marked as pending", required=False, action="store_true")
     parser.add_argument("--malscore", help="Remove all tasks with malscore <= X", required=False, action="store", type=int)
     parser.add_argument("--tlp", help="Remove all tasks with TLP", required=False, default=False, action="store_true")
-    parser.add_argument("-ddm", "--dont-delete-mongo", help="Keep mongo data but remove the rest", required=False, default=False, action="store_true")
-    parser.add_argument("-drs", "--delete-range-start", help="First job in range to delete, should be used with --delete-range-end", action="store", type=int, required=False,)
-    parser.add_argument("-dre", "--delete-range-end", help="Last job in range to delete, should be used with --delete-range-start", action="store", type=int, required=False )
-    parser.add_argument("-ddc", "--deduplicated-cluster-queue", help="Remove all pending duplicated jobs for our cluster, leave only 1 copy of task", action="store_true", required=False )
-    args = parser.parse_args()
-
-    if args.clean:
-        cuckoo_clean()
-        sys.exit(0)
-
-    if args.tlp:
-        cape_clean_tlp()
-        sys.exit()
-
-    if args.failed_clean:
-        cuckoo_clean_failed_tasks()
-        sys.exit(0)
-
-    if args.failed_url_clean:
-        cuckoo_clean_failed_url_tasks()
-        sys.exit(0)
-
-    if args.delete_older_than_days:
-        cuckoo_clean_before_day(args)
-        sys.exit(0)
-
-    if args.pcap_sorted_clean:
-        cuckoo_clean_sorted_pcap_dump()
-        sys.exit(0)
-
-    if args.bson_suri_logs_clean:
-        cuckoo_clean_bson_suri_logs()
-        sys.exit(0)
-
-    if args.pending_clean:
-        cuckoo_clean_pending_tasks()
-        sys.exit(0)
-
-    if args.malscore:
-        cuckoo_clean_lower_score(args)
-        sys.exit(0)
+    parser.add_argument(
+        "--delete-tmp-items-older-than",
+        help="Remove all items in tmp folder older than time range",
+        required=False,
+    )
+    parser.add_argument(
+        "--delete-binaries-items-older-than",
+        help="Remove all items in binaries folder older than time range",
+        required=False,
+    )
+    parser.add_argument(
+        "-dm", "--delete-mongo", help="Delete data in mongo. By default keep", required=False, default=False, action="store_true"
+    )
+    parser.add_argument(
+        "-duf",
+        "--delete-unused-file-data-in-mongo",
+        help="Delete data from the 'files' collection in mongo that is no longer needed.",
+        action="store_true",
+    )
+    parser.add_argument(
+        "-drs",
+        "--delete-range",
+        help="Delete jobs in range. Ex 1-5",
+        action="store",
+        required=False,
+    )
+    parser.add_argument(
+        "-ddc",
+        "--deduplicated-cluster-queue",
+        help="Remove all pending duplicated jobs for our cluster, leave only 1 copy of task",
+        action="store_true",
+        required=False,
+    )
+    parser.add_argument(
+        "-cmc",
+        "--cleanup-mongo-calls",
+        help="Manage all pending jobs before time range",
+        action="store",
+        required=False,
+    )
 
-    if args.delete_range_start and args.delete_range_end:
-        cuckoo_clean_range_tasks(args.delete_range_start, args.delete_range_end)
-        sys.exit(0)
+    parser.add_argument(
+        "-cfcbi",
+        "--cleanup-files-collection-by-id",
+        help="Pull out task(s) id lower than X from files collection",
+        action="store",
+        required=False,
+        type=int,
+    )
 
-    if args.deduplicated_cluster_queue:
-        cuckoo_dedup_cluster_queue()
-        sys.exit(0)
+    args = parser.parse_args()
+    init_database()
+    execute_cleanup(vars(args))
diff --git a/utils/community.py b/utils/community.py
index 5693f66ac41..e6902f95a85 100644
--- a/utils/community.py
+++ b/utils/community.py
@@ -3,48 +3,93 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-import shutil
 import os
+import shutil
 import sys
 import zipfile
-from io import BytesIO
-if sys.version_info[:2] < (3, 6):
-    sys.exit("You are running an incompatible version of Python, please use >= 3.6")
-import logging
-import urllib3
+from contextlib import suppress
+
+if sys.version_info[:2] < (3, 8):
+    sys.exit("You are running an incompatible version of Python, please use >= 3.8")
+
 import argparse
+import logging
 import tarfile
 from io import BytesIO
 
+import urllib3
+
 sys.path.append(os.path.join(os.path.abspath(os.path.dirname(__file__)), ".."))
 
 import lib.cuckoo.common.colors as colors
 from lib.cuckoo.common.constants import CUCKOO_ROOT
+from lib.cuckoo.common.integrations.mitre import mitre_update
+from lib.cuckoo.common.path_utils import path_exists, path_mkdir
+
+blocklist = {}
+if path_exists(os.path.join(CUCKOO_ROOT, "utils", "community_blocklist.py")):
+    from utils.community_blocklist import blocklist
 
 log = logging.getLogger(__name__)
-URL = "https://github.com/kevoreilly/community/archive/{0}.tar.gz"
 
-def flare_capa_rules():
+
+def flare_capa(proxy=None):
+    signature_urls = (
+        "https://github.com/mandiant/capa/raw/master/sigs/1_flare_msvc_rtf_32_64.sig",
+        "https://github.com/mandiant/capa/raw/master/sigs/2_flare_msvc_atlmfc_32_64.sig",
+        "https://github.com/mandiant/capa/raw/master/sigs/3_flare_common_libs.sig",
+    )
     try:
-        http = urllib3.PoolManager()
-        data = http.request("GET", "https://github.com/fireeye/capa-rules/archive/master.zip").data
+        if proxy:
+            http = urllib3.ProxyManager(proxy)
+        else:
+            http = urllib3.PoolManager()
+        data = http.request("GET", "https://github.com/mandiant/capa-rules/archive/master.zip").data
         dest_folder = os.path.join(CUCKOO_ROOT, "data")
         shutil.rmtree((os.path.join(dest_folder, "capa-rules-master")), ignore_errors=True)
         shutil.rmtree((os.path.join(dest_folder, "capa-rules")), ignore_errors=True)
         zipfile.ZipFile(BytesIO(data)).extractall(path=dest_folder)
         os.rename(os.path.join(dest_folder, "capa-rules-master"), os.path.join(dest_folder, "capa-rules"))
-        print("[+] FLARE CAPA rules installed")
+
+        # shutil.rmtree((os.path.join(dest_folder, "capa-signatures")), ignore_errors=True)
+        capa_sigs_path = os.path.join(dest_folder, "flare-signatures")
+        if not os.path.isdir(capa_sigs_path):
+            path_mkdir(capa_sigs_path)
+        for url in signature_urls:
+            signature_name = url.rsplit("/", 1)[-1]
+            with (
+                http.request("GET", url, preload_content=False) as sig,
+                open(os.path.join(capa_sigs_path, signature_name), "wb") as out_sig,
+            ):
+                shutil.copyfileobj(sig, out_sig)
+
+        print("[+] FLARE CAPA rules/signatures installed")
     except Exception as e:
         print(e)
 
-def install(enabled, force, rewrite, filepath):
-    if filepath and os.path.exists(filepath):
-        data = open(filepath, "rb").read()
+
+def install(enabled, force, rewrite, clean=False, filepath: str = False, access_token=None, proxy=False, url: str = False):
+    if filepath and path_exists(filepath):
+        t = tarfile.TarFile.open(filepath, mode="r:gz")
     else:
-        print("Downloading modules from {0}".format(URL))
+        print(f"Downloading modules from {url}")
         try:
-            http = urllib3.PoolManager()
-            data = http.request("GET", URL).data
+            if proxy:
+                http = urllib3.ProxyManager(proxy)
+            else:
+                http = urllib3.PoolManager()
+            if access_token is None:
+                data = http.request("GET", url).data
+            elif "github" in url:
+                data = http.request(
+                    "GET", url, headers={"Authorization": f"token {access_token}", "User-Agent": "CAPEv2_sandbox"}
+                ).data
+            else:
+                data = http.request("GET", url, headers={"PRIVATE-TOKEN": access_token}).data
+
+            if b"Not Found" == data:
+                print("You don't have permissions to access this repo")
+                sys.exit(-1)
             t = tarfile.TarFile.open(fileobj=BytesIO(data), mode="r:gz")
         except Exception as e:
             print("ERROR: Unable to download archive: %s" % e)
@@ -58,66 +103,96 @@ def install(enabled, force, rewrite, filepath):
         "machinery": "modules/machinery",
         "analyzer": "analyzer",
         "data": "data",
+        "common": "lib/cuckoo/common",
+        "integrations": "lib/cuckoo/common/integrations",
+        "mitre": "data/mitre",
+        "yara": "data/yara",
+        "utils": "utils",
     }
 
     members = t.getmembers()
-    directory = members[0].name.split("/")[0]
+    directory = members[0].name.split("/", 1)[0]
 
     for category in enabled:
         folder = folders.get(category, False)
         if not folder:
             continue
 
-        print("\nInstalling {0}".format(colors.cyan(category.upper())))
+        print(f"\nInstalling {colors.cyan(category.upper())}")
+
+        if clean and path_exists(folder):
+            print(f"\n Deleting the folder content of the category {colors.cyan(category.upper())}")
+            shutil.rmtree(folder)
 
         # E.g., "community-master/modules/signatures".
-        name_start = "%s/%s" % (directory, folder)
+        name_start = f"{directory}/{folder}"
         for member in members:
             if not member.name.startswith(name_start) or name_start == member.name:
                 continue
 
             filepath = os.path.join(CUCKOO_ROOT, folder, member.name[len(name_start) + 1 :])
-            if member.name.endswith(".gitignore"):
+            if member.name.lower().endswith((".gitignore", "readme.md", "-ci.yml")):
                 continue
 
             if member.isdir():
-                if not os.path.exists(filepath):
-                    os.mkdir(filepath)
+                if not path_exists(filepath):
+                    path_mkdir(filepath)
                 continue
 
-            if not rewrite:
-                if os.path.exists(filepath):
-                    print('File "{}" already exists, {}'.format(filepath, colors.yellow("skipped")))
-                    continue
+            if not rewrite and path_exists(filepath):
+                print(f'File "{filepath}" already exists, {colors.yellow("skipped")}')
+                continue
 
             install = False
             dest_file = os.path.basename(filepath)
+
+            if filepath in blocklist.get(category, []):
+                print(f'You have blocklisted file: {dest_file}. {colors.yellow("skipped")}')
+                continue
+
             if not force:
-                while 1:
-                    choice = input('Do you want to install file "{}"? [yes/no] '.format(dest_file))
-                    if choice.lower() == "yes":
+                while True:
+                    choice = input(f'Do you want to install file "{dest_file}"? [yes/no] ')
+                    if choice.lower() in ("y", "yes"):
                         install = True
                         break
-                    elif choice.lower() == "no":
+                    elif choice.lower() in ("n", "no"):
                         break
-                    else:
-                        continue
             else:
                 install = True
 
             if install:
-                if not os.path.exists(os.path.dirname(filepath)):
-                    os.makedirs(os.path.dirname(filepath))
+                if not path_exists(os.path.dirname(filepath)):
+                    path_mkdir(os.path.dirname(filepath))
 
-                print('File "{}" {}'.format(filepath, colors.green("installed")))
-                open(filepath, "wb").write(t.extractfile(member).read())
+                try:
+                    with open(filepath, "wb") as f:
+                        f.write(t.extractfile(member).read())
+                    print(f'File "{filepath}" {colors.green("installed")}')
+                except PermissionError:
+                    print(colors.red(f"Fix permission on: {filepath}"))
 
 
-def main():
-    global URL
+def ipinfo_asn_database_fetch(token, proxy=False):
+    if proxy:
+        http = urllib3.ProxyManager(proxy)
+    else:
+        http = urllib3.PoolManager()
+    try:
+        database = http.request("GET", "https://ipinfo.io/data/free/country_asn.mmdb", fields={"token": token}).data
+        if database:
+            with open(os.path.join(CUCKOO_ROOT, "data", "country_asn.mmdb"), "wb") as f:
+                f.write(database)
+
+    except Exception as e:
+        log.error("Can't getch asn database: %s", str(e))
+
 
+def main():
     parser = argparse.ArgumentParser()
     parser.add_argument("-a", "--all", help="Download everything", action="store_true", required=False)
+    parser.add_argument("-c", "--clean", help="Clean existing files", action="store_true", required=False)
+    parser.add_argument("-cm", "--common", help="Download CAPE common modules", action="store_true", required=False)
     parser.add_argument("-e", "--feeds", help="Download CAPE feed modules", action="store_true", required=False)
     parser.add_argument("-s", "--signatures", help="Download CAPE signatures", action="store_true", required=False)
     parser.add_argument("-p", "--processing", help="Download processing modules", action="store_true", required=False)
@@ -125,19 +200,63 @@ def main():
     parser.add_argument("-r", "--reporting", help="Download reporting modules", action="store_true", required=False)
     parser.add_argument("-an", "--analyzer", help="Download analyzer modules/binaries/etc", action="store_true", required=False)
     parser.add_argument("-data", "--data", help="Download data items", action="store_true", required=False)
-    parser.add_argument("-f", "--force", help="Install files without confirmation", action="store_true", default=False, required=False)
+    parser.add_argument("-i", "--integrations", help="Download integration items", action="store_true", required=False)
+    parser.add_argument(
+        "-f", "--force", help="Install files without confirmation", action="store_true", default=False, required=False
+    )
     parser.add_argument("-w", "--rewrite", help="Rewrite existing files", action="store_true", required=False)
     parser.add_argument("-b", "--branch", help="Specify a different branch", action="store", default="master", required=False)
-    parser.add_argument("--file", help="Specify a local copy of a community .zip file", action="store", default=False, required=False)
-    parser.add_argument("-cr", "--capa-rules", help="Download capa rules", action="store_true", default=False, required=False)
+    parser.add_argument(
+        "--file", help="Specify a local copy of a community .zip file", action="store", default=False, required=False
+    )
+    parser.add_argument(
+        "-cr", "--capa-rules", help="Download capa rules and signatures", action="store_true", default=False, required=False
+    )
+    parser.add_argument("--mitre", help="Download updated MITRE JSONS", action="store_true", default=False, required=False)
+    parser.add_argument(
+        "--mitre-offline",
+        help="Download updated MITRE JSONS from community repo",
+        action="store_true",
+        default=False,
+        required=False,
+    )
+    parser.add_argument(
+        "-u", "--url", help="Download community modules from the specified url", action="store", default=None, required=False
+    )
+    parser.add_argument(
+        "-t", "--token", help="Access token to download private repositories", action="store", default=None, required=False
+    )
+    parser.add_argument("--proxy", help="Proxy to use. Ex http://127.0.0.1:8080", action="store", required=False)
+    parser.add_argument("-y", "--yara", help="Download YARA rules", action="store_true", required=False)
+    parser.add_argument("-ut", "--utils", help="Download community utilities", action="store_true", required=False)
+
+    parser.add_argument(
+        "-iasn",
+        "--ipinfo-asn",
+        help="Download ipinfo.io ASN database. provide your token as argument",
+        action="store",
+        required=False,
+    )
+
     args = parser.parse_args()
 
-    URL = URL.format(args.branch)
     enabled = []
 
     if args.all:
-        enabled = ["feeds", "processing", "signatures", "reporting", "machinery", "analyzer", "data"]
-        flare_capa_rules()
+        enabled = [
+            "feeds",
+            "processing",
+            "signatures",
+            "reporting",
+            "machinery",
+            "analyzer",
+            "data",
+            "integrations",
+            "mitre",
+            "common",
+            "utils",
+        ]
+        flare_capa(args.proxy)
     else:
         if args.feeds:
             enabled.append("feeds")
@@ -151,11 +270,32 @@ def main():
             enabled.append("machinery")
         if args.analyzer:
             enabled.append("analyzer")
+        if args.common:
+            enabled.append("common")
+        # Data contains yara
         if args.data:
             enabled.append("data")
+        elif args.yara:
+            enabled.append("yara")
+        if args.integrations:
+            enabled.append("integrations")
+        if args.mitre_offline:
+            enabled.append("mitre")
+        if args.utils:
+            enabled.append("utils")
 
     if args.capa_rules:
-        flare_capa_rules()
+        flare_capa(args.proxy)
+        if not enabled:
+            return
+
+    if args.mitre:
+        mitre_update()
+        if not enabled:
+            return
+
+    if args.ipinfo_asn:
+        ipinfo_asn_database_fetch(args.ipinfo_asn, args.proxy)
         if not enabled:
             return
 
@@ -164,12 +304,18 @@ def main():
         parser.print_help()
         return
 
-    install(enabled, args.force, args.rewrite, args.file)
+    install(
+        enabled,
+        args.force,
+        args.rewrite,
+        args.clean,
+        args.file,
+        args.token,
+        args.proxy,
+        args.url or f"https://github.com/kevoreilly/community/archive/{args.branch}.tar.gz",
+    )
 
 
 if __name__ == "__main__":
-    try:
+    with suppress(KeyboardInterrupt):
         main()
-    except KeyboardInterrupt:
-        pass
-
diff --git a/utils/community_blocklist.py b/utils/community_blocklist.py
new file mode 100644
index 00000000000..f65041e4924
--- /dev/null
+++ b/utils/community_blocklist.py
@@ -0,0 +1,10 @@
+# Just add path inside of the list. Ex: "signatures/my_amazing_signature.py"
+blocklist = {
+    "feeds": [],
+    "signatures": [],
+    "processing": [],
+    "reporting": [],
+    "machinery": [],
+    "analyzer": [],
+    "data": [],
+}
diff --git a/utils/create_bloom.py b/utils/create_bloom.py
deleted file mode 100644
index c0b1c9874ba..00000000000
--- a/utils/create_bloom.py
+++ /dev/null
@@ -1,111 +0,0 @@
-# Copyright (C) 2020 King-Konsto
-#
-# This program is free software: you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation, either version 3 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program.  If not, see <http://www.gnu.org/licenses/>.
-
-import gzip
-import json
-import logging
-import os
-import requests
-import sys
-
-try:
-    from flor import BloomFilter
-    HAVE_FLOR = True
-except ImportError:
-    HAVE_FLOR = False
-    logging.error("Python library 'flor' is not installed -> pip3 install flor")
-
-from lib.cuckoo.common.constants import CUCKOO_ROOT
-
-
-API_URL = "https://dgarchive.caad.fkie.fraunhofer.de/today/1"
-API_USER = ""
-API_PW = ""
-
-if __name__ == "__main__":
-    logging.getLogger().setLevel(logging.DEBUG)
-    if not HAVE_FLOR:
-        logging.error("Python library 'flor' is not installed -> pip3 install flor")
-        sys.exit(-1)
-
-    logging.info("Starting bloomfilter generation script")
-    session = requests.Session()
-    session.auth = (API_USER, API_PW)
-
-    if not (API_URL and API_USER and API_PW and session):
-        logging.error("Please put your credentials into API_USER, API_PW and API_URL")
-        sys.exit(-1)
-
-    # 1. call API and get json dict containing active DGA domains and DGA families
-    # endpoint /today/1 means today, yesterday and tomorrow (today +/- 1)
-    logging.info("Fetching data from Fraunhofer API")
-    response = session.get(API_URL)
-    if not response:
-        logging.error("Fraunhofer DGA API call malformed or credentials invalid")
-        sys.exit(-1)
-
-    if response.status_code != 200:
-        logging.error("Error while querying Fraunhofer DGA API: %s", response.status_code)
-        sys.exit(-1)
-
-    dga_json = response.json()
-    if not dga_json:
-        logging.error("API response could not be transformed into json dict")
-        sys.exit(-1)
-
-    # 2. create empty bloomfilter
-    logging.info("Creating bloomfilter and DGA dict")
-    bloom = BloomFilter(n=1000000, p=0.0001)
-
-    # 3. insert DGA domains from json dict into bloomfilter and create dict for family lookup
-    dga_lookup_dict = {}
-    first_entry = False
-    test_domain = None
-    test_family = None
-    for family, domain_list in dga_json.items():
-        if not first_entry:
-            test_domain = domain_list[0]
-            test_family = family
-            first_entry = True
-        for domain in domain_list:
-            # insert domain into bloomfilter
-            if not domain.lower().encode("utf8") in bloom:
-                bloom.add(domain.lower().encode("utf8"))
-
-            # insert into family/domain lookup table
-            dga_lookup_dict[domain] = family
-
-    # test with first DGA domain/family pair that should be present in the bloomfilter and the dga_dict
-    if not (first_entry and test_domain and test_family):
-        logging.error("Unknown error while creating bloomfilter and DGA dict")
-        sys.exit(-1)
-    if test_domain.lower().encode("utf8") in bloom and dga_lookup_dict.get(test_domain.lower(), "") == test_family:
-        logging.info("%s (%s)", test_domain, test_family)
-        logging.info("Bloomfilter and DGA dict successfully created")
-    else:
-        logging.error("Unknown error while creating bloomfilter and DGA dict")
-        sys.exit(-1)
-
-    # 5. write bloomfilter and dga dict to a file so that the sandbox can use it in the python signature
-    logging.info("Write bloomfilter and dga dict to files")
-    bloom_path = os.path.join(CUCKOO_ROOT, "data",  "dga.bloom")
-    with open(bloom_path, "wb") as f:
-        bloom.write(f)
-
-    lookup_path = os.path.join(CUCKOO_ROOT, "data", "dga_lookup_dict.json.gz")
-    with gzip.GzipFile(lookup_path, "w") as fout:
-        fout.write(json.dumps(dga_lookup_dict).encode("utf8"))
-
-    logging.info("Successfully generated bloomfilter and dga dict file")
diff --git a/utils/cuckoomx.py b/utils/cuckoomx.py
deleted file mode 100644
index dc63a850a79..00000000000
--- a/utils/cuckoomx.py
+++ /dev/null
@@ -1,163 +0,0 @@
-#!/bin/python
-from __future__ import absolute_import
-from __future__ import print_function
-import os
-import sys
-import email
-import imaplib
-import hashlib
-import tempfile
-import smtplib
-from time import sleep
-import mimetypes
-from email import Encoders
-from email.mime.text import MIMEText
-from email.MIMEMultipart import MIMEMultipart
-from email.MIMEBase import MIMEBase
-
-try:
-    from sflock.main import unpack
-    from sflock.unpack import ZipFile
-    from sflock.abstracts import File
-except ImportError:
-    print("Missed deps" "sudo apt-get install p7zip-full rar unace-nonfree" "sudo pip3 install -U git+https://github.com/doomedraven/sflock")
-
-# Cuckoo root
-CUCKOO_ROOT = os.path.join(os.path.abspath(os.path.dirname(__file__)), "..")
-sys.path.append(CUCKOO_ROOT)
-from lib.cuckoo.common.config import Config
-
-
-from lib.cuckoo.core.database import Database
-from lib.cuckoo.common.utils import store_temp_file
-
-from sqlalchemy.sql import func
-from sqlalchemy import create_engine
-from sqlalchemy.orm import sessionmaker
-from sqlalchemy.orm import relationship
-from sqlalchemy.ext.declarative import declarative_base
-from sqlalchemy import Column, Integer, String, Boolean, DateTime
-
-main_db = Database()
-Base = declarative_base()
-email_config = Config("cuckoomx")
-
-
-class CUCKOOMX(Base):
-    __tablename__ = "cuckoomx"
-    id = Column(Integer, primary_key=True)
-    sha256 = Column(String(64), nullable=False)
-    email = Column(String(250), nullable=False)
-    cuckoo_id = Column(Integer, nullable=False)
-    reported = Column(Boolean, default=False)
-    uploaded_date = Column(DateTime, default=func.now())
-
-
-engine = create_engine(email_config.cuckoomx.get("db", "sqlite://cuckoomx.db"))
-Base.metadata.create_all(engine)
-
-
-def send_notification(db, db_entry=False):
-    tasks = list()
-    if db_entry:
-        tasks = [db_entry]
-    else:
-        tasks = cuckoomx_db.query(CUCKOOMX).filter_by(reported=False).order_by(CUCKOOMX.id.asc())
-    if tasks:
-        for task in tasks:
-            task_info = main_db.view_task(task.cuckoo_id)
-            if task_info.status == "reported":
-                send_email(email_config.cuckoomx.get("cuckoo_url"), str(task.cuckoo_id), task.email)
-                task.reported = True
-    db.commit()
-
-
-def send_email(url, id, to):
-    try:
-        msg = MIMEMultipart()
-        msg["Subject"] = "[Cuckoo] Analysis finished for: {}".format(id)
-        msg["From"] = email_config.cuckoomx.get("user")
-        msg["To"] = to
-        msg["Body"] = url + id
-        part = MIMEBase("application", "octet-stream")
-        msgAlternative = MIMEMultipart("alternative")
-        msg.attach(msgAlternative)
-        msgAlternative.attach(MIMEText(url + id, "plain"))
-
-        server = smtplib.SMTP_SSL(email_config.cuckoomx.get("server"), int(email_config.cuckoomx.get("port")))
-        server.login(email_config.cuckoomx.get("user"), email_config.cuckoomx.get("password"))
-        # server.set_debuglevel(1)
-        server.sendmail(email_config.cuckoomx.get("from"), to.split(", "), msg.as_string())
-        server.quit()
-    except Exception as e:
-        print(e)
-
-
-def get_new_emails(db):
-    imaplib.IMAP4.debug = imaplib.IMAP4_SSL.debug = 1
-
-    conn = imaplib.IMAP4_SSL(email_config.cuckoomx.get("server"))
-    conn.login(email_config.cuckoomx.get("user"), email_config.cuckoomx.get("password"))
-    conn.select("Inbox")
-
-    (retcode, messages) = conn.search(None, "(UNSEEN)")
-    if retcode == "OK" and messages:
-        for num in messages[0].split(" "):
-            if num:
-                typ, data = conn.fetch(num, "(RFC822)")
-                msg = email.message_from_string(data[0][1])
-                if msg:
-                    email_dict = dict()
-                    email_dict["Attachments"] = list()
-                    for k, v in msg.items():
-                        email_dict[k] = v
-
-                    if email_dict.get("Subject", ""):
-                        print("[+] Procesing email with Subject: {0}".format(email_dict["Subject"]))
-                    for part in msg.walk():
-                        attachment = False
-                        if part.get_filename():
-                            filename = part.get_filename()
-                            content_type = part.get_content_type()
-                            attachment = part.get_payload(decode=True)
-                            sha256 = hashlib.sha256(attachment).hexdigest()
-
-                            if attachment:
-                                # unpack it
-                                z = ZipFile(File(contents=attachment, password=email_config.cuckoomx.get("archive_password")))
-                                files = list(z.unpack(password=email_config.cuckoomx.get("archive_password"), duplicates=[]))
-                                for file in files:
-                                    new_file = db.query(CUCKOOMX).filter(CUCKOOMX.sha256 == file.sha256).first()
-                                    if new_file is None:
-                                        new_file = CUCKOOMX(sha256=file.sha256)
-
-                                        temp_file_path = store_temp_file(file.contents, file.filename)
-                                        task_id = main_db.add_path(file_path=temp_file_path)
-                                        new_file.cuckoo_id = task_id
-                                        new_file.email = email_dict.get("From", "")
-                                        db.add(new_file)
-                                        db.commit()
-                                    else:
-                                        send_notification(db, new_file)
-                # mark as seen
-                typ, data = conn.store(num, "+FLAGS", "\Seen")
-
-    conn.close()
-    conn.logout()
-
-
-if __name__ == "__main__":
-    Base.metadata.bind = engine
-    DBSession = sessionmaker(bind=engine)
-    cuckoomx_db = DBSession()
-    while True:
-        try:
-            send_notification(cuckoomx_db)
-        except Exception as e:
-            print(e)
-        try:
-            get_new_emails(cuckoomx_db)
-        except Exception as e:
-            print(e)
-        sleep(30)
-    cuckoomx_db.close()
diff --git a/utils/db_migration/env.py b/utils/db_migration/env.py
index 0af9f59b7be..5bd4dd969e2 100644
--- a/utils/db_migration/env.py
+++ b/utils/db_migration/env.py
@@ -2,15 +2,12 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import with_statement
-
-from __future__ import absolute_import
 import os.path
 import sys
+from logging.config import fileConfig
 
 from alembic import context
 from sqlalchemy import create_engine, pool
-from logging.config import fileConfig
 
 # This is the Alembic Config object, which provides access to the values within
 # the .ini file in use.
@@ -24,10 +21,10 @@
 curdir = os.path.abspath(os.path.dirname(__file__))
 sys.path.append(os.path.join(curdir, "..", ".."))
 
-from lib.cuckoo.core.database import Base, Database
+from lib.cuckoo.core.database import Base, _Database
 
 # Get database connection string from cuckoo configuration.
-url = Database(schema_check=False).engine.url.__to_string__(hide_password=False)
+url = _Database(schema_check=False).engine.url.__to_string__(hide_password=False)
 target_metadata = Base.metadata
 
 
diff --git a/utils/db_migration/versions/1. add_on_delete_cascade_to_task_tags_.py b/utils/db_migration/versions/1. add_on_delete_cascade_to_task_tags_.py
new file mode 100644
index 00000000000..7bcbd076616
--- /dev/null
+++ b/utils/db_migration/versions/1. add_on_delete_cascade_to_task_tags_.py	
@@ -0,0 +1,33 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+"""Add ON DELETE CASCADE to tasks_tags foreign keys
+
+Revision ID: 4e000e02a409
+Revises:
+Create Date: 2025-04-11 09:58:42.957359
+
+"""
+
+# revision identifiers, used by Alembic.
+revision = '4e000e02a409'
+down_revision = None
+
+from alembic import op
+
+
+def upgrade():
+     op.drop_constraint('tasks_tags_task_id_fkey', 'tasks_tags', type_='foreignkey')
+     op.create_foreign_key('tasks_tags_task_id_fkey', 'tasks_tags', 'tasks', ['task_id'], ['id'], ondelete='CASCADE')
+
+     op.drop_constraint('tasks_tags_tag_id_fkey', 'tasks_tags', type_='foreignkey')
+     op.create_foreign_key('tasks_tags_tag_id_fkey', 'tasks_tags', 'tags', ['tag_id'], ['id'], ondelete='CASCADE')
+
+
+def downgrade():
+     op.drop_constraint('tasks_tags_task_id_fkey', 'tasks_tags', type_='foreignkey')
+     op.create_foreign_key('tasks_tags_task_id_fkey', 'tasks_tags', 'tasks', ['task_id'], ['id'])
+
+     op.drop_constraint('tasks_tags_tag_id_fkey', 'tasks_tags', type_='foreignkey')
+     op.create_foreign_key('tasks_tags_tag_id_fkey', 'tasks_tags', 'tags', ['tag_id'], ['id'])
diff --git a/utils/db_migration/versions/2. Database cleanup.py b/utils/db_migration/versions/2. Database cleanup.py
new file mode 100644
index 00000000000..28f7f04004a
--- /dev/null
+++ b/utils/db_migration/versions/2. Database cleanup.py	
@@ -0,0 +1,54 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+from alembic import op
+import sqlalchemy as sa
+
+# revision identifiers, used by Alembic.
+revision = '2b3c4d5e6f7g'
+down_revision = '4e000e02a409'
+branch_labels = None
+depends_on = None
+
+
+def upgrade() -> None:
+
+    op.alter_column('samples', 'file_size',
+        existing_type=sa.INTEGER(),
+        type_=sa.BIGINT(),
+        existing_nullable=False
+    )
+
+    op.drop_column('samples', 'parent')
+    op.drop_column('tasks', 'parent_id')
+    op.drop_column('tasks', 'shrike_sid')
+    op.drop_column('tasks', 'shrike_msg')
+    op.drop_column('tasks', 'shrike_refer')
+    op.drop_column('tasks', 'shrike_url')
+    op.drop_column('tasks', 'username')
+
+def downgrade() -> None:
+    # First, drop the foreign key constraint
+    op.drop_constraint('fk_samples_parent_id_samples', 'samples', type_='foreignkey')
+
+    # Then, rename the column back to 'parent'
+    op.add_column('samples', sa.Column('parent', sa.INTEGER(), autoincrement=False, nullable=True))
+
+    op.alter_column('samples', 'file_size',
+        existing_type=sa.BIGINT(),
+        type_=sa.INTEGER(),
+        existing_nullable=False
+    )
+
+    op.add_column('tasks', sa.Column('shrike_url', sa.VARCHAR(length=4096), autoincrement=False, nullable=True))
+    op.add_column('tasks', sa.Column('shrike_refer', sa.VARCHAR(length=4096), autoincrement=False, nullable=True))
+    op.add_column('tasks', sa.Column('shrike_msg', sa.VARCHAR(length=4096), autoincrement=False, nullable=True))
+    op.add_column('tasks', sa.Column('shrike_sid', sa.INTEGER(), autoincrement=False, nullable=True))
+    op.add_column('tasks', sa.Column('parent_id', sa.INTEGER(), autoincrement=False, nullable=True))
+
+    # 1. Add the old parent_id column back
+    op.add_column('samples', sa.Column('parent_id', sa.INTEGER(), autoincrement=False, nullable=True))
+
+    # 2. Drop the new association table
+    op.drop_table('sample_associations')
diff --git a/utils/db_migration/versions/Deprecated/1. add_platform_column_for_guests.py b/utils/db_migration/versions/Deprecated/1. add_platform_column_for_guests.py
new file mode 100644
index 00000000000..2688e39e0ef
--- /dev/null
+++ b/utils/db_migration/versions/Deprecated/1. add_platform_column_for_guests.py	
@@ -0,0 +1,31 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+"""add_platform_column_for_guests
+
+Revision ID: 3a1c6c03844b
+Revises: None
+Create Date: 2024-03-07 16:11:55.712298
+
+"""
+
+# revision identifiers, used by Alembic.
+revision = "3a1c6c03844b"
+down_revision = None
+
+import sqlalchemy as sa
+from alembic import op
+
+
+def upgrade():
+    # Add the platform column to the guests table with a default value of 'windows'
+    op.add_column("guests", sa.Column("platform", sa.String(length=50), nullable=True))
+
+    # Update existing rows with the default value
+    op.execute("UPDATE guests SET platform = 'windows' WHERE platform IS NULL")
+
+
+def downgrade():
+    # Remove the platform column from the guests table
+    op.drop_column("guests", "platform")
diff --git a/utils/db_migration/versions/Deprecated/2. set_guest_platform_to_non_nullable.py b/utils/db_migration/versions/Deprecated/2. set_guest_platform_to_non_nullable.py
new file mode 100644
index 00000000000..cf74f2f18f0
--- /dev/null
+++ b/utils/db_migration/versions/Deprecated/2. set_guest_platform_to_non_nullable.py	
@@ -0,0 +1,38 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+"""Set guest.platform to non-nullable
+
+Revision ID: c2bd0eb5e69d
+Revises: 3a1c6c03844b
+Create Date: 2024-04-09 16:03:58.751378
+
+"""
+
+# revision identifiers, used by Alembic.
+revision = "c2bd0eb5e69d"
+down_revision = "3a1c6c03844b"
+
+import sqlalchemy as sa
+from alembic import op
+
+
+def upgrade():
+    # ### commands auto generated by Alembic - please adjust! ###
+    try:
+        op.alter_column("guests", "platform", existing_type=sa.VARCHAR(length=255), nullable=False)
+    except sa.exc.OperationalError:
+        # sqlite does not support altering columns
+        pass
+    # ### end Alembic commands ###
+
+
+def downgrade():
+    # ### commands auto generated by Alembic - please adjust! ###
+    try:
+        op.alter_column("guests", "platform", existing_type=sa.VARCHAR(length=255), nullable=True)
+    except sa.exc.OperationalError:
+        # sqlite does not support altering columns
+        pass
+    # ### end Alembic commands ###
diff --git a/utils/db_migration/versions/2.2-cape.py b/utils/db_migration/versions/Deprecated/2.2-cape.py
similarity index 82%
rename from utils/db_migration/versions/2.2-cape.py
rename to utils/db_migration/versions/Deprecated/2.2-cape.py
index 5d8027fee31..5d64d150eb7 100644
--- a/utils/db_migration/versions/2.2-cape.py
+++ b/utils/db_migration/versions/Deprecated/2.2-cape.py
@@ -11,26 +11,23 @@
 """
 
 # revision identifiers, used by Alembic.
-revision = 'c554ed5f32a0'
-down_revision = '2996ec5ea15c'
+revision = "c554ed5f32a0"
+down_revision = "2996ec5ea15c"
 
-import sys
 import os.path
-import sqlalchemy as sa
-from datetime import datetime
+import sys
 
+import sqlalchemy as sa
 
 try:
     from alembic import op
 except ImportError:
-    print("Unable to import alembic (install with `pip3 install alembic`)")
+    print("Unable to import alembic (install with `poetry run pip install alembic`)")
     sys.exit()
 
 curdir = os.path.abspath(os.path.dirname(__file__))
 sys.path.append(os.path.join(curdir, "..", "..", ".."))
 
-import lib.cuckoo.core.database as db
-
 
 def upgrade():
     op.add_column("tasks", sa.Column("cape", sa.String(length=2048), nullable=True))
diff --git a/utils/db_migration/versions/Deprecated/2_3_1_square_hammer.py b/utils/db_migration/versions/Deprecated/2_3_1_square_hammer.py
new file mode 100644
index 00000000000..f0f3cb81f70
--- /dev/null
+++ b/utils/db_migration/versions/Deprecated/2_3_1_square_hammer.py
@@ -0,0 +1,43 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+"""2.3.1_square_hammer
+
+Revision ID: 703266a6bbc5
+Revises: 6ab863a3b510
+Create Date: 2021-05-02 18:24:43.075702
+
+"""
+
+from contextlib import suppress
+
+# revision identifiers, used by Alembic.
+revision = "703266a6bbc5"
+down_revision = "6ab863a3b510"
+
+from alembic import op
+
+
+def upgrade():
+    op.execute("ALTER TABLE tasks alter status drop default")
+    op.execute("ALTER TYPE status_type RENAME TO status_type_old;")
+    op.execute(
+        "CREATE TYPE status_type AS ENUM('banned', 'pending', 'running', 'distributed', 'completed', 'reported', 'recovered', 'failed_analysis', 'failed_processing', 'failed_reporting');"
+    )
+    op.execute("ALTER TABLE tasks ALTER COLUMN status TYPE status_type USING status::text::status_type")
+    op.execute("ALTER TABLE tasks ALTER status set default 'pending'::status_type")
+    op.execute("DROP TYPE status_type_old;")
+
+
+def downgrade():
+    with suppress(Exception):
+        op.execute("DROP TYPE status_type_old;")
+    op.execute("ALTER TABLE tasks alter status drop default")
+    op.execute("ALTER TYPE status_type RENAME TO status_type_old;")
+    op.execute(
+        "CREATE TYPE status_type AS ENUM('pending', 'running', 'distributed', 'completed', 'reported', 'recovered', 'failed_analysis', 'failed_processing', 'failed_reporting');"
+    )
+    op.execute("ALTER TABLE tasks ALTER COLUMN status TYPE status_type USING status::text::status_type")
+    op.execute("ALTER TABLE tasks ALTER status set default 'pending'::status_type")
+    op.execute("DROP TYPE status_type_old;")
diff --git a/utils/db_migration/versions/Deprecated/2_3_2_custom_auth_usernames.py b/utils/db_migration/versions/Deprecated/2_3_2_custom_auth_usernames.py
new file mode 100644
index 00000000000..9a018b6a61c
--- /dev/null
+++ b/utils/db_migration/versions/Deprecated/2_3_2_custom_auth_usernames.py
@@ -0,0 +1,26 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+"""2_3_2_custom_auth_usernames
+
+Revision ID: 6dc79a3ee6e4
+Revises: 703266a6bbc5
+Create Date: 2021-06-17 08:01:32.057197
+
+"""
+
+# revision identifiers, used by Alembic.
+revision = "6dc79a3ee6e4"
+down_revision = "703266a6bbc5"
+
+import sqlalchemy as sa
+from alembic import op
+
+
+def upgrade():
+    op.add_column("tasks", sa.Column("username", sa.String(length=256), nullable=True))
+
+
+def downgrade():
+    op.drop_column("tasks", "username")
diff --git a/utils/db_migration/versions/Deprecated/2_3_3_add_arch_to_machine_conf.py b/utils/db_migration/versions/Deprecated/2_3_3_add_arch_to_machine_conf.py
new file mode 100644
index 00000000000..bb2c768bbca
--- /dev/null
+++ b/utils/db_migration/versions/Deprecated/2_3_3_add_arch_to_machine_conf.py
@@ -0,0 +1,27 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+"""add arch to machine config
+
+Revision ID: 8537286ff4d5
+Revises: 6dc79a3ee6e4
+Create Date: 2021-11-04 13:41:08.438214
+
+"""
+
+# revision identifiers, used by Alembic.
+revision = "8537286ff4d5"
+down_revision = "6dc79a3ee6e4"
+
+import sqlalchemy as sa
+from alembic import op
+
+
+def upgrade():
+    op.add_column("machines", sa.Column("arch", sa.String(length=255), nullable=False, server_default="lorem ipsum"))
+    op.alter_column("machines", "arch", server_default=None)
+
+
+def downgrade():
+    op.drop_column("machines", "arch")
diff --git a/utils/db_migration/versions/Deprecated/2_3_3_expand_error_message.py b/utils/db_migration/versions/Deprecated/2_3_3_expand_error_message.py
new file mode 100644
index 00000000000..19ef8c4e185
--- /dev/null
+++ b/utils/db_migration/versions/Deprecated/2_3_3_expand_error_message.py
@@ -0,0 +1,26 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+"""2.3.3 expand error message
+
+Revision ID: 02af0b0ec686
+Revises: 8537286ff4d5
+Create Date: 2022-07-28 18:46:00.169029
+
+"""
+
+# revision identifiers, used by Alembic.
+revision = "02af0b0ec686"
+down_revision = "8537286ff4d5"
+
+import sqlalchemy as sa
+from alembic import op
+
+
+def upgrade():
+    op.alter_column("errors", "message", existing_type=sa.String(length=255), type_=sa.String(length=1024), existing_nullable=True)
+
+
+def downgrade():
+    op.alter_column("errors", "message", existing_type=sa.String(length=1024), type_=sa.String(length=255), existing_nullable=True)
diff --git a/utils/db_migration/versions/2_3_task2user_id.py b/utils/db_migration/versions/Deprecated/2_3_task2user_id.py
similarity index 84%
rename from utils/db_migration/versions/2_3_task2user_id.py
rename to utils/db_migration/versions/Deprecated/2_3_task2user_id.py
index 76b1a761887..31b1f461a55 100644
--- a/utils/db_migration/versions/2_3_task2user_id.py
+++ b/utils/db_migration/versions/Deprecated/2_3_task2user_id.py
@@ -11,20 +11,17 @@
 """
 
 # revision identifiers, used by Alembic.
-revision = '6ab863a3b510'
-down_revision = 'c554ed5f32a0'
+revision = "6ab863a3b510"
+down_revision = "c554ed5f32a0"
 
 
-import sys
-from datetime import datetime
-
-
-from alembic import op
 import sqlalchemy as sa
+from alembic import op
 
 
 def upgrade():
     op.add_column("tasks", sa.Column("user_id", sa.Integer, nullable=True))
 
+
 def downgrade():
     op.drop_column("tasks", "user_id")
diff --git a/utils/db_migration/versions/Deprecated/2_4_0_change_options_to_text.py b/utils/db_migration/versions/Deprecated/2_4_0_change_options_to_text.py
new file mode 100644
index 00000000000..6b3444357ae
--- /dev/null
+++ b/utils/db_migration/versions/Deprecated/2_4_0_change_options_to_text.py
@@ -0,0 +1,26 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+"""2_4_0_change_options_to_text
+
+Revision ID: a8441ab0fd0f
+Revises: d6aa5d949b70
+Create Date: 2023-02-24 16:59:10.667367
+
+"""
+
+# revision identifiers, used by Alembic.
+revision = "a8441ab0fd0f"
+down_revision = "d6aa5d949b70"
+
+import sqlalchemy as sa
+from alembic import op
+
+
+def upgrade():
+    op.alter_column("tasks", "options", existing_type=sa.String(length=1024), type_=sa.Text(), existing_nullable=True)
+
+
+def downgrade():
+    op.alter_column("tasks", "options", existing_type=sa.Text(), type_=sa.String(length=1024), existing_nullable=True)
diff --git a/utils/db_migration/versions/add_distributed.py b/utils/db_migration/versions/Deprecated/add_distributed.py
similarity index 97%
rename from utils/db_migration/versions/add_distributed.py
rename to utils/db_migration/versions/Deprecated/add_distributed.py
index 53b7dfa027c..d22e01ed567 100644
--- a/utils/db_migration/versions/add_distributed.py
+++ b/utils/db_migration/versions/Deprecated/add_distributed.py
@@ -15,8 +15,6 @@
 """
 
 # revision identifiers, used by Alembic.
-from __future__ import absolute_import
-
 revision = "e4954d358c80"
 down_revision = "36926b59dfbb"
 
diff --git a/utils/db_migration/versions/Deprecated/add_reserved_column_for_machines.py b/utils/db_migration/versions/Deprecated/add_reserved_column_for_machines.py
new file mode 100644
index 00000000000..770fdc4646d
--- /dev/null
+++ b/utils/db_migration/versions/Deprecated/add_reserved_column_for_machines.py
@@ -0,0 +1,34 @@
+# Copyright (C) 2010-2015 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+"""Add 'reserved' column for machines
+
+Revision ID: d6aa5d949b70
+Revises: 02af0b0ec686
+Create Date: 2023-02-15 17:10:41.338499
+
+"""
+
+# revision identifiers, used by Alembic.
+revision = "d6aa5d949b70"
+down_revision = "02af0b0ec686"
+
+import sqlalchemy as sa
+from alembic import op
+
+
+def upgrade():
+    # ### commands auto generated by Alembic - please adjust! ###
+    op.add_column("machines", sa.Column("reserved", sa.Boolean(), nullable=False, server_default="f"))
+    op.create_unique_constraint("uq_machine_label", "machines", ["label"])
+    op.create_unique_constraint("uq_machine_name", "machines", ["name"])
+    # ### end Alembic commands ###
+
+
+def downgrade():
+    # ### commands auto generated by Alembic - please adjust! ###
+    op.drop_constraint("uq_machine_label", "machines", type_="unique")
+    op.drop_constraint("uq_machine_name", "machines", type_="unique")
+    op.drop_column("machines", "reserved")
+    # ### end Alembic commands ###
diff --git a/utils/db_migration/versions/add_sample_parent_id.py b/utils/db_migration/versions/Deprecated/add_sample_parent_id.py
similarity index 78%
rename from utils/db_migration/versions/add_sample_parent_id.py
rename to utils/db_migration/versions/Deprecated/add_sample_parent_id.py
index 5c023c21d29..a80b78af77a 100644
--- a/utils/db_migration/versions/add_sample_parent_id.py
+++ b/utils/db_migration/versions/Deprecated/add_sample_parent_id.py
@@ -13,29 +13,23 @@
 """
 
 # revision identifiers, used by Alembic.
-from __future__ import absolute_import
-from __future__ import print_function
-
 revision = "36926b59dfbb"
 down_revision = "3c8bf4133b44"
 
-import sys
 import os.path
+import sys
 
-from datetime import datetime
 import sqlalchemy as sa
 
 try:
     from alembic import op
 except ImportError:
-    print("Unable to import alembic (install with `pip3 install alembic`)")
+    print("Unable to import alembic (install with `poetry run pip install alembic`)")
     sys.exit()
 
 curdir = os.path.abspath(os.path.dirname(__file__))
 sys.path.append(os.path.join(curdir, "..", "..", ".."))
 
-import lib.cuckoo.core.database as db
-
 
 def upgrade():
     op.add_column("samples", sa.Column("parent", sa.Integer, nullable=True))
diff --git a/utils/db_migration/versions/add_shrike_and_parent_id_columns.py b/utils/db_migration/versions/Deprecated/add_shrike_and_parent_id_columns.py
similarity index 79%
rename from utils/db_migration/versions/add_shrike_and_parent_id_columns.py
rename to utils/db_migration/versions/Deprecated/add_shrike_and_parent_id_columns.py
index f63db3e666e..63acf17615c 100644
--- a/utils/db_migration/versions/add_shrike_and_parent_id_columns.py
+++ b/utils/db_migration/versions/Deprecated/add_shrike_and_parent_id_columns.py
@@ -9,39 +9,32 @@
 Create Date: 2015-03-29 08:43:11.468664
 
 """
-# revision identifiers, used by Alembic.
-from __future__ import absolute_import
-from __future__ import print_function
 
+# revision identifiers, used by Alembic.
 revision = "f111620bb8"
 down_revision = "4b09c454108c"
 
-from alembic import op
-import sqlalchemy as sa
-
 import os.path
-import sqlalchemy as sa
 import sys
-from datetime import datetime
+
+import sqlalchemy as sa
 
 try:
-    from dateutil.parser import parse
+    pass
 except ImportError:
     print("Unable to import dateutil.parser", end=" ")
-    print("(install with `pip3 install python-dateutil`)")
+    print("(install with `poetry run pip install python-dateutil`)")
     sys.exit()
 
 try:
     from alembic import op
 except ImportError:
-    print("Unable to import alembic (install with `pip3 install alembic`)")
+    print("Unable to import alembic (install with `poetry run pip install alembic`)")
     sys.exit()
 
 curdir = os.path.abspath(os.path.dirname(__file__))
 sys.path.append(os.path.join(curdir, "..", "..", ".."))
 
-import lib.cuckoo.core.database as db
-
 
 def upgrade():
     op.add_column("tasks", sa.Column("shrike_url", sa.String(length=4096), nullable=True))
diff --git a/utils/db_migration/versions/add_source_url.py b/utils/db_migration/versions/Deprecated/add_source_url.py
similarity index 100%
rename from utils/db_migration/versions/add_source_url.py
rename to utils/db_migration/versions/Deprecated/add_source_url.py
index 291ff682b8e..1c5921ac66f 100644
--- a/utils/db_migration/versions/add_source_url.py
+++ b/utils/db_migration/versions/Deprecated/add_source_url.py
@@ -14,8 +14,8 @@
 revision = "2996ec5ea15c"
 down_revision = "7331c4d994fd"
 
-from alembic import op
 import sqlalchemy as sa
+from alembic import op
 
 
 def upgrade():
diff --git a/utils/db_migration/versions/add_task_tlp.py b/utils/db_migration/versions/Deprecated/add_task_tlp.py
similarity index 80%
rename from utils/db_migration/versions/add_task_tlp.py
rename to utils/db_migration/versions/Deprecated/add_task_tlp.py
index 3b7681db0b6..76108b3e1cd 100644
--- a/utils/db_migration/versions/add_task_tlp.py
+++ b/utils/db_migration/versions/Deprecated/add_task_tlp.py
@@ -9,20 +9,19 @@
 Create Date: 2020-04-10 12:17:18.530901
 
 """
-from __future__ import absolute_import
-from __future__ import print_function
 
 # revision identifiers, used by Alembic.
 revision = "7331c4d994fd"
 down_revision = "30d0230de7cd"
 
-import sqlalchemy as sa
 import sys
 
+import sqlalchemy as sa
+
 try:
     from alembic import op
 except ImportError:
-    print("Unable to import alembic (install with `pip3 install alembic`)")
+    print("Unable to import alembic (install with `poetry run pip install alembic`)")
     sys.exit()
 
 
diff --git a/utils/db_migration/versions/from_0_6_to_1_1.py b/utils/db_migration/versions/Deprecated/from_0_6_to_1_1.py
similarity index 86%
rename from utils/db_migration/versions/from_0_6_to_1_1.py
rename to utils/db_migration/versions/Deprecated/from_0_6_to_1_1.py
index 4d92eab0b6a..b7a401e3dfe 100644
--- a/utils/db_migration/versions/from_0_6_to_1_1.py
+++ b/utils/db_migration/versions/Deprecated/from_0_6_to_1_1.py
@@ -11,33 +11,30 @@
 """
 
 # Revision identifiers, used by Alembic.
-from __future__ import absolute_import
-from __future__ import print_function
-
 revision = "263a45963c72"
 mongo_revision = "1"
 down_revision = None
 
 import os
 import sys
-import sqlalchemy as sa
-
 from datetime import datetime
 
+import sqlalchemy as sa
+
 try:
     from dateutil.parser import parse
 except ImportError:
     print("Unable to import dateutil.parser", end=" ")
-    print("(install with `pip3 install python-dateutil`)")
+    print("(install with `poetry run pip install python-dateutil`)")
     sys.exit()
 
 try:
     from alembic import op
 except ImportError:
-    print("Unable to import alembic (install with `pip3 install alembic`)")
+    print("Unable to import alembic (install with `poetry run pip install alembic`)")
     sys.exit()
 
-sys.path.append(os.path.join("..", ".."))
+sys.path.append(os.path.join("..", "..", ".."))
 
 import lib.cuckoo.core.database as db
 from lib.cuckoo.common.config import Config
@@ -61,7 +58,9 @@ def upgrade():
 
         # Create table used by Tag.
         op.create_table(
-            "tags", sa.Column("id", sa.Integer(), primary_key=True), sa.Column("name", sa.String(length=255), nullable=False, unique=True),
+            "tags",
+            sa.Column("id", sa.Integer(), primary_key=True),
+            sa.Column("name", sa.String(length=255), nullable=False, unique=True),
         )
 
         # Create secondary table used in association Machine - Tag.
@@ -75,7 +74,9 @@ def upgrade():
         op.add_column("machines", sa.Column("interface", sa.String(length=255), nullable=True))
         op.add_column("machines", sa.Column("snapshot", sa.String(length=255), nullable=True))
         # TODO: change default value, be aware sqlite doesn't support that kind of ALTER statement.
-        op.add_column("machines", sa.Column("resultserver_ip", sa.String(length=255), server_default="192.168.56.1", nullable=False))
+        op.add_column(
+            "machines", sa.Column("resultserver_ip", sa.String(length=255), server_default="192.168.56.1", nullable=False)
+        )
         # TODO: change default value, be aware sqlite doesn't support that kind of ALTER statement.
         op.add_column("machines", sa.Column("resultserver_port", sa.String(length=255), server_default="2042", nullable=False))
 
@@ -274,50 +275,13 @@ def upgrade():
 def mongo_upgrade():
     """Migrate mongodb schema and data."""
     # Read reporting.conf to fetch mongo configuration.
-    config = Config(cfg=os.path.join("..", "..", "conf", "reporting.conf"))
+    config = Config("reporting")
     # Run migration only if mongo is enabled as reporting module.
     if config.mongodb.enabled:
-        host = config.mongodb.get("host", "127.0.0.1")
-        port = config.mongodb.get("port", 27017)
-        database = config.mongodb.get("db", "cuckoo")
-        user = config.mongodb.get("user", None)
-        password = config.mongodb.get("password", None)
-        print("Mongo reporting is enabled, strarting mongo data migration.")
-
-        if not port.isnumber():
-            print("Port must be an integer")
-            sys.exit()
-
-        # Support old Mongo.
-        try:
-            from pymongo.connection import Connection
-            from pymongo.errors import ConnectionFailure
-
-            conn = Connection(host, port)
-            db = conn.cuckoo
-            done = True
-        except ImportError:
-            print("Unable to import pymongo (install with `pip3 install pymongo`)")
-            done = False
-        except ConnectionFailure:
-            print("Cannot connect to MongoDB")
-            sys.exit()
-
-        try:
-            if not done:
-                import pymongo
-
-                try:
-                    db = pymongo.MongoClient(host, port=port, username=user, password=password, authSource=database)[database]
-                except pymongo.errors.ConnectionFailure:
-                    print("Cannot connect to MongoDB")
-                    sys.exit()
-        except ImportError:
-            print("Unable to import pymongo (install with `pip3 install pymongo`)")
-            sys.exit()
+        from dev_utils.mongodb import mongo_collection_names
 
         # Check for schema version and create it.
-        if "cuckoo_schema" in db.collection_names():
+        if "cuckoo_schema" in mongo_collection_names:
             print("Mongo schema version not expected")
             sys.exit()
         else:
diff --git a/utils/db_migration/versions/from_1_1_to_1_2-added_states.py b/utils/db_migration/versions/Deprecated/from_1_1_to_1_2-added_states.py
similarity index 98%
rename from utils/db_migration/versions/from_1_1_to_1_2-added_states.py
rename to utils/db_migration/versions/Deprecated/from_1_1_to_1_2-added_states.py
index 91e527b0317..a68e1d6e875 100644
--- a/utils/db_migration/versions/from_1_1_to_1_2-added_states.py
+++ b/utils/db_migration/versions/Deprecated/from_1_1_to_1_2-added_states.py
@@ -11,32 +11,30 @@
 # Spaghetti as a way of life.
 
 # Revision identifiers, used by Alembic.
-from __future__ import absolute_import
-from __future__ import print_function
-
 revision = "495d5a6edef3"
 down_revision = "18eee46c6f81"
 
 import os.path
-import sqlalchemy as sa
 import sys
 from datetime import datetime
 
+import sqlalchemy as sa
+
 try:
     from dateutil.parser import parse
 except ImportError:
     print("Unable to import dateutil.parser", end=" ")
-    print("(install with `pip3 install python-dateutil`)")
+    print("(install with `poetry run pip install python-dateutil`)")
     sys.exit()
 
 try:
     from alembic import op
 except ImportError:
-    print("Unable to import alembic (install with `pip3 install alembic`)")
+    print("Unable to import alembic (install with `poetry run pip install alembic`)")
     sys.exit()
 
 curdir = os.path.abspath(os.path.dirname(__file__))
-sys.path.append(os.path.join(curdir, "..", ".."))
+sys.path.append(os.path.join(curdir, "..", "..", ".."))
 
 import lib.cuckoo.core.database as db
 
diff --git a/utils/db_migration/versions/from_1_1_to_1_2-extend_file_type.py b/utils/db_migration/versions/Deprecated/from_1_1_to_1_2-extend_file_type.py
similarity index 82%
rename from utils/db_migration/versions/from_1_1_to_1_2-extend_file_type.py
rename to utils/db_migration/versions/Deprecated/from_1_1_to_1_2-extend_file_type.py
index 594cbb04ff7..534ea6bbc36 100644
--- a/utils/db_migration/versions/from_1_1_to_1_2-extend_file_type.py
+++ b/utils/db_migration/versions/Deprecated/from_1_1_to_1_2-extend_file_type.py
@@ -12,18 +12,17 @@
 """
 
 # Revision identifiers, used by Alembic.
-from __future__ import absolute_import
-
 revision = "18eee46c6f81"
 down_revision = "263a45963c72"
 
-from alembic import op
 import os.path
-import sqlalchemy as sa
 import sys
 
+import sqlalchemy as sa
+from alembic import op
+
 curdir = os.path.abspath(os.path.dirname(__file__))
-sys.path.append(os.path.join(curdir, "..", ".."))
+sys.path.append(os.path.join(curdir, "..", "..", ".."))
 
 import lib.cuckoo.core.database as db
 
@@ -33,21 +32,20 @@ def _perform(upgrade):
 
     sample_list = conn.execute("SELECT id, file_size, file_type, md5, crc32, " "sha1, sha256, sha512, ssdeep FROM samples")
 
-    samples = []
-    for sample in sample_list:
-        samples.append(
-            {
-                "id": sample[0],
-                "file_size": sample[1],
-                "file_type": sample[2],
-                "md5": sample[3],
-                "crc32": sample[4],
-                "sha1": sample[5],
-                "sha256": sample[6],
-                "sha512": sample[7],
-                "ssdeep": sample[8],
-            }
-        )
+    samples = [
+        {
+            "id": sample[0],
+            "file_size": sample[1],
+            "file_type": sample[2],
+            "md5": sample[3],
+            "crc32": sample[4],
+            "sha1": sample[5],
+            "sha256": sample[6],
+            "sha512": sample[7],
+            "ssdeep": sample[8],
+        }
+        for sample in sample_list
+    ]
 
     # PostgreSQL and MySQL have different names for the foreign key of
     # Task.sample_id -> Sample.id; for SQLite we don't drop/recreate the
@@ -57,7 +55,7 @@ def _perform(upgrade):
         "postgresql": "tasks_sample_id_fkey",
     }
 
-    fkey = fkey_name.get(db.Database(schema_check=False).engine.name)
+    fkey = fkey_name.get(db._Database(schema_check=False).engine.name)
 
     # First drop the foreign key.
     if fkey:
diff --git a/utils/db_migration/versions/from_1_2_to_1_2-accuvant-add_statistics.py b/utils/db_migration/versions/Deprecated/from_1_2_to_1_2-accuvant-add_statistics.py
similarity index 97%
rename from utils/db_migration/versions/from_1_2_to_1_2-accuvant-add_statistics.py
rename to utils/db_migration/versions/Deprecated/from_1_2_to_1_2-accuvant-add_statistics.py
index 6ad561d1ab8..e045bae53cc 100644
--- a/utils/db_migration/versions/from_1_2_to_1_2-accuvant-add_statistics.py
+++ b/utils/db_migration/versions/Deprecated/from_1_2_to_1_2-accuvant-add_statistics.py
@@ -11,34 +11,30 @@
 """
 
 # revision identifiers, used by Alembic.
-from __future__ import absolute_import
-from __future__ import print_function
-
 revision = "4b09c454108c"
 down_revision = "495d5a6edef3"
 
-from alembic import op
-import sqlalchemy as sa
-
 import os.path
 import sys
 from datetime import datetime
 
+import sqlalchemy as sa
+
 try:
     from dateutil.parser import parse
 except ImportError:
     print("Unable to import dateutil.parser", end=" ")
-    print("(install with `pip3 install python-dateutil`)")
+    print("(install with `poetry run pip install python-dateutil`)")
     sys.exit()
 
 try:
     from alembic import op
 except ImportError:
-    print("Unable to import alembic (install with `pip3 install alembic`)")
+    print("Unable to import alembic (install with `poetry run pip install alembic`)")
     sys.exit()
 
 curdir = os.path.abspath(os.path.dirname(__file__))
-sys.path.append(os.path.join(curdir, "..", ".."))
+sys.path.append(os.path.join(curdir, "..", "..", ".."))
 
 import lib.cuckoo.core.database as db
 
diff --git a/utils/db_migration/versions/options_255_2_1024.py b/utils/db_migration/versions/Deprecated/options_255_2_1024.py
similarity index 100%
rename from utils/db_migration/versions/options_255_2_1024.py
rename to utils/db_migration/versions/Deprecated/options_255_2_1024.py
index 09740f8c615..54a2d2da4b3 100644
--- a/utils/db_migration/versions/options_255_2_1024.py
+++ b/utils/db_migration/versions/Deprecated/options_255_2_1024.py
@@ -14,8 +14,8 @@
 revision = "30d0230de7cd"
 down_revision = "e4954d358c80"
 
-from alembic import op
 import sqlalchemy as sa
+from alembic import op
 
 
 def upgrade():
diff --git a/utils/db_migration/versions/proper_indexes.py b/utils/db_migration/versions/Deprecated/proper_indexes.py
similarity index 89%
rename from utils/db_migration/versions/proper_indexes.py
rename to utils/db_migration/versions/Deprecated/proper_indexes.py
index 4ea84d21cc4..f9ec77274f9 100644
--- a/utils/db_migration/versions/proper_indexes.py
+++ b/utils/db_migration/versions/Deprecated/proper_indexes.py
@@ -11,17 +11,15 @@
 """
 
 # revision identifiers, used by Alembic.
-from __future__ import absolute_import
-from __future__ import print_function
-
 import sys
+
 revision = "3c8bf4133b44"
 down_revision = "f111620bb8"
 
 try:
     from alembic import op
 except ImportError:
-    print("Unable to import alembic (install with `pip3 install alembic`)")
+    print("Unable to import alembic (install with `poetry run pip install alembic`)")
     sys.exit()
 
 
diff --git a/utils/db_migration_dist/env.py b/utils/db_migration_dist/env.py
index 27af93cc0fb..07ecb4da6c2 100644
--- a/utils/db_migration_dist/env.py
+++ b/utils/db_migration_dist/env.py
@@ -2,14 +2,12 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import with_statement
-from __future__ import absolute_import
 import os
 import sys
+from logging.config import fileConfig
 
 from alembic import context
 from sqlalchemy import create_engine, pool
-from logging.config import fileConfig
 
 # This is the Alembic Config object, which provides access to the values within
 # the .ini file in use.
@@ -23,12 +21,11 @@
 curdir = os.path.abspath(os.path.dirname(__file__))
 sys.path.append(os.path.join(curdir, "..", ".."))
 
-from lib.cuckoo.common.dist_db import Base
 from lib.cuckoo.common.config import Config
-reporting_conf = Config("reporting")
+from lib.cuckoo.common.dist_db import Base
 
 # Get database connection string from cuckoo configuration.
-url = reporting_conf.distributed.db
+url = Config("distributed").distributed.db
 target_metadata = Base.metadata
 
 
diff --git a/utils/db_migration_dist/versions/dist_1_1.py b/utils/db_migration_dist/versions/dist_1_1.py
deleted file mode 100644
index 0aa049f28cb..00000000000
--- a/utils/db_migration_dist/versions/dist_1_1.py
+++ /dev/null
@@ -1,26 +0,0 @@
-# Copyright (C) 2010-2015 Cuckoo Foundation.
-# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
-# See the file 'docs/LICENSE' for copying permission.
-
-"""dist_1.1
-
-Revision ID: 431b7f0b3240
-Revises: None
-Create Date: 2021-03-08 13:39:01.310802
-
-"""
-
-# revision identifiers, used by Alembic.
-revision = '431b7f0b3240'
-down_revision = None
-
-from alembic import op
-import sqlalchemy as sa
-
-
-def upgrade():
-    op.add_column("task", sa.Column("route", sa.String(length=128), nullable=True))
-
-
-def downgrade():
-    op.drop_column("task", "route")
diff --git a/utils/dist.py b/utils/dist.py
index 5a58aff6b77..f319bdc2055 100644
--- a/utils/dist.py
+++ b/utils/dist.py
@@ -3,74 +3,107 @@
 # Copyright (C) 2010-2015 Cuckoo Foundation.
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
-# ToDo
+
 # https://github.com/cuckoosandbox/cuckoo/pull/1694/files
-from __future__ import absolute_import
-from __future__ import print_function
-import os
-import sys
-import time
-import json
-import shutil
-import queue
+import argparse
+import distutils.util
 import hashlib
+import json
 import logging
-from logging import handlers
-import tarfile
-import argparse
+import os
+import queue
+import shutil
+import sys
 import threading
-from io import BytesIO
-from zipfile import ZipFile
+import time
+import timeit
+import zipfile
+from contextlib import suppress
 from datetime import datetime, timedelta
+from io import BytesIO
 from itertools import combinations
-import distutils.util
-from sqlalchemy import or_, and_
-from sqlalchemy.exc import SQLAlchemyError, OperationalError
+from logging import handlers
+from urllib.parse import urlparse
+
+from sqlalchemy import and_, or_, select, func, delete, case
+from sqlalchemy.exc import OperationalError, SQLAlchemyError
+import pyzipper
+import requests
+
+requests.packages.urllib3.disable_warnings()
 
 CUCKOO_ROOT = os.path.join(os.path.abspath(os.path.dirname(__file__)), "..")
 sys.path.append(CUCKOO_ROOT)
 
+from lib.cuckoo.common.iocs import dump_iocs, load_iocs
+from lib.cuckoo.common.cleaners_utils import free_space_monitor
 from lib.cuckoo.common.config import Config
+from lib.cuckoo.common.dist_db import ExitNodes, Machine, Node, Task, create_session
+from lib.cuckoo.common.path_utils import path_delete, path_exists, path_get_size, path_mkdir, path_mount_point, path_write_file
+from lib.cuckoo.common.socket_utils import send_socket_command
 from lib.cuckoo.common.utils import get_options
-from lib.cuckoo.common.dist_db import Node, Task, Machine, create_session
 from lib.cuckoo.core.database import (
-    Database,
+    TASK_BANNED,
+    TASK_DISTRIBUTED,
+    TASK_DISTRIBUTED_COMPLETED,
+    TASK_FAILED_REPORTING,
+    TASK_PENDING,
     TASK_REPORTED,
     TASK_RUNNING,
-    TASK_PENDING,
-    TASK_FAILED_REPORTING,
-    TASK_DISTRIBUTED_COMPLETED,
-    TASK_DISTRIBUTED,
+    Database,
+    _Database,
+    init_database,
 )
 from lib.cuckoo.core.database import Task as MD_Task
+from dev_utils.mongodb import mongo_update_one
+
+dist_conf = Config("distributed")
+main_server_name = dist_conf.distributed.get("main_server_name", "master")
+
+HAVE_GCP = False
+if dist_conf.GCP.enabled:
+    from lib.cuckoo.common.gcp import GCP, HAVE_GCP
+
+    cloud = GCP()
 
 # we need original db to reserve ID in db,
 # to store later report, from master or worker
+
+cfg = Config()
 reporting_conf = Config("reporting")
+web_conf = Config("web")
+
+zip_pwd = web_conf.zipped_download.zip_pwd
+if not isinstance(zip_pwd, bytes):
+    zip_pwd = zip_pwd.encode()
 
 # init
 logging.getLogger("elasticsearch").setLevel(logging.WARNING)
 logging.getLogger("requests").setLevel(logging.WARNING)
 logging.getLogger("urllib3").setLevel(logging.WARNING)
 
+dist_ignore_patterns = shutil.ignore_patterns(*[pattern.strip() for pattern in dist_conf.distributed.ignore_patterns.split(",")])
 STATUSES = {}
 ID2NAME = {}
 SERVER_TAGS = {}
-main_db = Database()
+main_db: _Database = Database()
 
 dead_count = 5
-if reporting_conf.distributed.dead_count:
-    dead_count = reporting_conf.distributed.dead_count
+if dist_conf.distributed.dead_count:
+    dead_count = dist_conf.distributed.dead_count
+
+NFS_FETCH = dist_conf.distributed.get("nfs")
+RESTAPI_FETCH = dist_conf.distributed.get("restapi")
 
 INTERVAL = 10
 
 # controller of dead nodes
-failed_count = dict()
+failed_count = {}
 # status controler count to reset number
-status_count = dict()
+status_count = {}
 
 lock_retriever = threading.Lock()
-dist_lock = threading.BoundedSemaphore(int(reporting_conf.distributed.dist_threads))
+dist_lock = threading.BoundedSemaphore(int(dist_conf.distributed.dist_threads))
 fetch_lock = threading.BoundedSemaphore(1)
 
 delete_enabled = False
@@ -78,51 +111,78 @@
 
 
 def required(package):
-    sys.exit("The %s package is required: pip3 install %s" % (package, package))
+    sys.exit("The %s package is required: poetry run pip install %s" % (package, package))
 
-try:
-    from flask import Flask, request, make_response, jsonify
-except ImportError:
-    required("flask")
 
+# todo, consider to migrate to fastAPI?
 try:
-    import requests
-    from requests.auth import HTTPBasicAuth
+    from flask import Flask, jsonify, make_response
 except ImportError:
-    required("requests")
-
-try:
-    requests.packages.urllib3.disable_warnings()
-except AttributeError:
-    pass
+    required("flask")
 
 try:
+    from flask_restful import Api as RestApi
+    from flask_restful import Resource as RestResource
     from flask_restful import abort, reqparse
-    from flask_restful import Api as RestApi, Resource as RestResource
 except ImportError:
     required("flask-restful")
 
-session = create_session(reporting_conf.distributed.db, echo=False)
+session = create_session(dist_conf.distributed.db, echo=False)
+
+binaries_folder = os.path.join(CUCKOO_ROOT, "storage", "binaries")
+if not path_exists(binaries_folder):
+    path_mkdir(binaries_folder, mode=0o755)
+
+
+def node_status(url: str, name: str, apikey: str) -> dict:
+    """
+    Retrieve the status of a CAPE node.
 
+    This function sends a GET request to the specified CAPE node URL to retrieve its status.
+    It uses the provided API key for authorization.
 
-def node_status(url, name, ht_user, ht_pass):
+    Args:
+        url (str): The base URL of the CAPE node.
+        name (str): The name of the CAPE node.
+        apikey (str): The API key for authorization.
+
+    Returns:
+        dict: A dictionary containing the status data of the CAPE node. If an error occurs,
+            an empty dictionary is returned.
+    """
     try:
-        r = requests.get(os.path.join(url, "cuckoo", "status/"), params={"username": ht_user, "password": ht_pass}, verify=False, timeout=200)
+        r = requests.get(
+            os.path.join(url, "cuckoo", "status/"), headers={"Authorization": f"Token {apikey}"}, verify=False, timeout=300
+        )
         return r.json().get("data", {})
     except Exception as e:
-        log.critical("Possible invalid Cuckoo node (%s): %s", name, e)
+        log.critical("Possible invalid CAPE node (%s): %s", name, e)
     return {}
 
 
-def node_fetch_tasks(status, url, ht_user, ht_pass, action="fetch", since=0):
+def node_fetch_tasks(status, url, apikey, action="fetch", since=0):
+    """
+    Fetches tasks from a remote server based on the given status and other parameters.
+
+    Args:
+        status (str): The status of the tasks to fetch (e.g., "completed", "pending").
+        url (str): The base URL of the remote server.
+        apikey (str): The API key for authentication.
+        action (str, optional): The action to perform. Defaults to "fetch".
+        since (int, optional): The timestamp to fetch tasks completed after. Defaults to 0.
+
+    Returns:
+        list: A list of tasks fetched from the remote server. Returns an empty list if an error occurs.
+    """
     try:
         url = os.path.join(url, "tasks", "list/")
-        params = dict(status=status, ids=True, username=ht_user, password=ht_pass)
+        params = dict(status=status, ids=True)
         if action == "fetch":
             params["completed_after"] = since
-        r = requests.get(url, params=params, verify=False)
+        r = requests.get(url, params=params, headers={"Authorization": f"Token {apikey}"}, verify=False)
         if not r.ok:
-            log.error(f"Error fetching task list. Status code: {r.status_code}")
+            log.error("Error fetching task list. Status code: %d - %s. Saving error to /tmp/dist_error.html", r.status_code, r.url)
+            _ = path_write_file("/tmp/dist_error.html", r.content)
             return []
         return r.json().get("data", [])
     except Exception as e:
@@ -131,56 +191,198 @@ def node_fetch_tasks(status, url, ht_user, ht_pass, action="fetch", since=0):
     return []
 
 
-def node_list_machines(url, ht_user, ht_pass):
+def node_list_machines(url, apikey):
+    """
+    Retrieves a list of machines from a CAPE node and yields Machine objects.
+
+    Args:
+        url (str): The base URL of the CAPE node.
+        apikey (str): The API key for authentication.
+
+    Yields:
+        Machine: An instance of the Machine class with the machine's details.
+
+    Raises:
+        HTTPException: If the request to the CAPE node fails or returns an error.
+    """
     try:
-        r = requests.get(os.path.join(url, "machines", "list/"), params={"username": ht_user, "password": ht_pass}, verify=False)
+        r = requests.get(os.path.join(url, "machines", "list/"), headers={"Authorization": f"Token {apikey}"}, verify=False)
         for machine in r.json()["data"]:
             yield Machine(name=machine["name"], platform=machine["platform"], tags=machine["tags"])
     except Exception as e:
         abort(404, message="Invalid CAPE node (%s): %s" % (url, e))
 
 
-def node_get_report(task_id, fmt, url, ht_user, ht_pass, stream=False):
+def node_list_exitnodes(url, apikey):
+    """
+    Fetches a list of exit nodes from a given URL using the provided API key.
+
+    Args:
+        url (str): The base URL of the CAPE node.
+        apikey (str): The API key for authorization.
+
+    Yields:
+        dict: Each exit node data as a dictionary.
+
+    Raises:
+        HTTPException: If the request fails or the response is invalid.
+    """
+    try:
+        r = requests.get(os.path.join(url, "exitnodes/"), headers={"Authorization": f"Token {apikey}"}, verify=False)
+        for exitnode in r.json()["data"]:
+            yield exitnode
+    except Exception as e:
+        abort(404, message="Invalid CAPE node (%s): %s" % (url, e))
+
+
+def node_get_report(task_id, fmt, url, apikey, stream=False):
+    """
+    Fetches a report for a given task from a specified URL.
+
+    Args:
+        task_id (int): The ID of the task for which the report is to be fetched.
+        fmt (str): The format of the report (e.g., 'json', 'html').
+        url (str): The base URL of the server from which to fetch the report.
+        apikey (str): The API key for authorization.
+        stream (bool, optional): Whether to stream the response. Defaults to False.
+
+    Returns:
+        requests.Response: The response object containing the report.
+
+    Raises:
+        Exception: If there is an error fetching the report.
+    """
     try:
         url = os.path.join(url, "tasks", "get", "report", "%d/" % task_id, fmt)
-        return requests.get(url, stream=stream, params={"username": ht_user, "password": ht_pass}, verify=False, timeout=300)
+        return requests.get(url, stream=stream, headers={"Authorization": f"Token {apikey}"}, verify=False, timeout=800)
     except Exception as e:
         log.critical("Error fetching report (task #%d, node %s): %s", task_id, url, e)
 
 
+def node_get_report_nfs(task_id, worker_name, main_task_id) -> bool:
+    """
+    Retrieves a report from a worker node via NFS and copies it to the main task's analysis directory.
+
+    Args:
+        task_id (int): The ID of the task on the worker node.
+        worker_name (str): The name of the worker node.
+        main_task_id (int): The ID of the main task on the main node.
+
+    Returns:
+        bool: True if the operation was successful, False otherwise.
+
+    Raises:
+        Exception: If there is an error during the copying process.
+
+    Logs:
+        Error messages if the worker node is not mounted, the file does not exist, or if there is an exception during copying.
+    """
+    worker_path = os.path.join(CUCKOO_ROOT, dist_conf.NFS.mount_folder, str(worker_name))
+
+    if not path_mount_point(worker_path):
+        log.error("[-] Worker: %s is not mounted to: %s!", worker_name, worker_path)
+        return True
+
+    worker_path = os.path.join(worker_path, "storage", "analyses", str(task_id))
+
+    if not path_exists(worker_path):
+        log.error("File on destiny doesn't exist: %s", worker_path)
+        return True
+
+    analyses_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(main_task_id))
+    if not path_exists(analyses_path):
+        path_mkdir(analyses_path, mode=0o755, exist_ok=False)
+
+    try:
+        shutil.copytree(worker_path, analyses_path, ignore=dist_ignore_patterns, ignore_dangling_symlinks=True, dirs_exist_ok=True)
+    except shutil.Error:
+        log.error("Files doens't exist on worker")
+    except Exception as e:
+        log.exception(e)
+        return False
+
+    return True
+
+
 def _delete_many(node, ids, nodes, db):
+    """
+    Deletes multiple tasks from a specified node if the node is not the main server.
+
+    Args:
+        node (str): The identifier of the node from which tasks are to be deleted.
+        ids (list): A list of task IDs to be deleted.
+        nodes (dict): A dictionary containing node information, where keys are node identifiers and values are node details.
+        db (object): The database connection object to perform rollback in case of failure.
+
+    Returns:
+        None
+
+    Raises:
+        Exception: If there is an error during the deletion process.
+
+    Logs:
+        Debug: Logs the task IDs and node name from which tasks are being deleted.
+        Info: Logs the status code and content if the response status code is not 200.
+        Critical: Logs the error message if an exception occurs during the deletion process.
+    """
+    if nodes[node].name == main_server_name:
+        return
     try:
         url = os.path.join(nodes[node].url, "tasks", "delete_many/")
-        log.info("Removing task id(s): {0} - from node: {1}".format(ids, nodes[node].name))
+        apikey = nodes[node].apikey
+        log.debug("Removing task id(s): %s - from node: %s", ids, nodes[node].name)
         res = requests.post(
             url,
-            auth=HTTPBasicAuth(nodes[node].ht_user, nodes[node].ht_pass),
-            data={"ids": ids},
+            headers={"Authorization": f"Token {apikey}"},
+            data={"ids": ids, "delete_mongo": False},
             verify=False,
         )
         if res and res.status_code != 200:
-            log.info("{} - {}".format(res.status_code, res.content))
+            log.info("%d - %s", res.status_code, res.content)
             db.rollback()
+
     except Exception as e:
         log.critical("Error deleting task (tasks #%s, node %s): %s", ids, nodes[node].name, e)
         db.rollback()
 
 
-def node_submit_task(task_id, node_id):
+def node_submit_task(task_id, node_id, main_task_id):
+    """
+    Submits a task to a specified node for processing.
 
+    Args:
+        task_id (int): The ID of the task to be submitted.
+        node_id (int): The ID of the node to which the task will be submitted.
+        main_task_id (int): The ID of the main task associated with this task.
+
+    Returns:
+        bool: True if the task was successfully submitted, False otherwise.
+
+    Raises:
+        Exception: If there is an error during the task submission process.
+
+    The function performs the following steps:
+    1. Retrieves the node and task information from the database.
+    2. Checks if the node is the main server and returns if it is.
+    3. Prepares the task data for submission based on the task category.
+    4. Submits the task to the node using an HTTP POST request.
+    5. Handles different response statuses from the node.
+    6. Updates the task status in the database based on the submission result.
+    7. Logs relevant information and errors during the process.
+    """
     db = session()
-    node = db.query(Node).filter_by(id=node_id).first()
-    task = db.query(Task).filter_by(id=task_id).first()
+    node = db.scalar(select(Node).where(Node.id == node_id))
+    task = db.get(Task, task_id)
     check = False
     try:
-        if node.name == "master":
+        if node.name == main_server_name:
             return
 
         # Remove the earlier appended comma
         if task.tags:
             if task.tags[-1] == ",":
                 task.tags = task.tags[:-1]
-
+        apikey = node.apikey
         data = dict(
             package=task.package,
             timeout=task.timeout,
@@ -194,8 +396,7 @@ def node_submit_task(task_id, node_id):
             memory=task.memory,
             enforce_timeout=task.enforce_timeout,
             route=task.route,
-            username=node.ht_user,
-            password=node.ht_pass,
+            tlp=task.tlp,
         )
 
         if task.category in ("file", "pcap"):
@@ -205,7 +406,20 @@ def node_submit_task(task_id, node_id):
             url = os.path.join(node.url, "tasks", "create", "file/")
             # If the file does not exist anymore, ignore it and move on
             # to the next file.
-            if not os.path.exists(task.path):
+            if not path_exists(task.path):
+                task.finished = True
+                task.retrieved = True
+                main_db.set_status(task.main_task_id, TASK_FAILED_REPORTING)
+                try:
+                    db.commit()
+                except Exception as e:
+                    log.exception(e)
+                    db.rollback()
+                return
+            try:
+                files = dict(file=open(task.path, "rb"))
+                r = requests.post(url, data=data, files=files, headers={"Authorization": f"Token {apikey}"}, verify=False)
+            except OSError:
                 task.finished = True
                 task.retrieved = True
                 main_db.set_status(task.main_task_id, TASK_FAILED_REPORTING)
@@ -215,16 +429,17 @@ def node_submit_task(task_id, node_id):
                     log.exception(e)
                     db.rollback()
                 return
-            files = dict(file=open(task.path, "rb"))
-            r = requests.post(url, data=data, files=files, verify=False)
         elif task.category == "url":
             url = os.path.join(node.url, "tasks", "create", "url/")
-            r = requests.post(url, data={"url": task.path, "options": task.options, "username": node.ht_user, "password": node.ht_pass}, verify=False)
+            r = requests.post(
+                url, data={"url": task.path, "options": task.options}, headers={"Authorization": f"Token {apikey}"}, verify=False
+            )
         elif task.category == "static":
             url = os.path.join(node.url, "tasks", "create", "static/")
-            log.info("Static isn't finished")
+            files = dict(file=open(task.path, "rb"))
+            r = requests.post(url, data=data, files=files, headers={"Authorization": f"Token {apikey}"}, verify=False)
         else:
-            log.debug("Target category is: {}".format(task.category))
+            log.debug("Target category is: %s", task.category)
             db.close()
             return
 
@@ -234,30 +449,44 @@ def node_submit_task(task_id, node_id):
 
         # Zip files preprocessed, so only one id
         if r and r.status_code == 200:
-            if "task_ids" in r.json().get("data", {}) and len(r.json().get("data", {})["task_ids"]) > 0 and r.json().get("data", {})["task_ids"] is not None:
+            if (
+                "task_ids" in r.json().get("data", {})
+                and len(r.json().get("data", {})["task_ids"]) > 0
+                and r.json().get("data", {})["task_ids"] is not None
+            ):
                 task.task_id = r.json().get("data", {})["task_ids"][0]
                 check = True
-            elif "task_id" in r.json() and r.json()["task_id"] > 0 and r.json()["task_id"] is not None:
+            elif r.json().get("task_id", 0) > 0:
                 task.task_id = r.json()["task_id"]
                 check = True
             else:
-                log.debug("Failed to submit task {} to node: {}, code: {}".format(task_id, node.name, r.status_code))
-
-            log.debug("Submitted task to worker: {} - {} - {} - {}".format(node.name, task.task_id, task.main_task_id, r.json()))
+                log.debug(
+                    "Failed to submit: main_task_id: %d task %d to node: %s, code: %d, msg: %s",
+                    task.main_task_id,
+                    task_id,
+                    node.name,
+                    r.status_code,
+                    r.content,
+                )
+                if b"File too big, enable" in r.content:
+                    main_db.set_status(task.main_task_id, TASK_BANNED)
+            if task.task_id:
+                log.debug("Submitted task to worker: %s - %d - %d", node.name, task.task_id, task.main_task_id)
 
         elif r.status_code == 500:
-            log.debug((r.status_code, r.text))
+            log.info("Saving error to /tmp/dist_error.html")
+            _ = path_write_file("/tmp/dist_error.html", r.content)
+            log.info((r.status_code, r.text[:200]))
 
         elif r.status_code == 429:
             log.info((r.status_code, "see api auth for more details"))
 
         else:
-            log.info("Node: {} - Task submit to worker failed: {} - {}".format(node.id, r.status_code, r.content))
+            log.info("Node: %d - Task submit to worker failed: %d - %s", node.id, r.status_code, r.text)
 
         if check:
             task.node_id = node.id
 
-
             # We have to refresh() the task object because otherwise we get
             # the unmodified object back in further sql queries..
             # TODO Commit once, refresh() all at once. This could potentially
@@ -273,230 +502,563 @@ def node_submit_task(task_id, node_id):
         log.exception(e)
         log.critical("Error submitting task (task #%d, node %s): %s", task.id, node.name, e)
 
-
     db.commit()
     db.close()
     return check
 
 
+# class Retriever():
 class Retriever(threading.Thread):
+    """
+    A class that retrieves and processes tasks from distributed nodes.
+
+    Methods
+    -------
+    run():
+        Initializes and starts various threads for fetching and processing tasks.
+
+    free_space_mon():
+        Monitors free disk space and logs an error if space is insufficient.
+
+    notification_loop():
+        Sends notifications for completed tasks to configured callback URLs.
+
+    failed_cleaner():
+        Cleans up failed tasks from nodes and updates their status in the database.
+
+    fetcher():
+        Continuously fetches tasks from enabled nodes and processes them.
+
+    delete_target_file(task_id: int, sample_sha256: str, target: str):
+        Deletes the original file and its binary copy if configured to do so.
+
+    fetch_latest_reports_nfs():
+        Fetches the latest reports from nodes using NFS and processes them.
+
+    fetch_latest_reports():
+        Fetches the latest reports from nodes using REST API and processes them.
+
+    remove_from_worker():
+        Removes tasks from worker nodes and updates their status in the database.
+    """
 
     def run(self):
         self.cleaner_queue = queue.Queue()
         self.fetcher_queue = queue.Queue()
-        self.cfg = Config()
-        self.t_is_none = dict()
-        self.status_count = dict()
-        self.current_queue = dict()
-        self.current_two_queue = dict()
+        self.t_is_none = {}
+        self.status_count = {}
+        self.current_queue = {}
+        self.current_two_queue = {}
         self.stop_dist = threading.Event()
+        self.threads = []
+
+        if dist_conf.GCP.enabled and HAVE_GCP:
+            # autodiscovery is generic name so in case if we have AWS or Azure it should implement the logic inside
+            thread = threading.Thread(target=cloud.autodiscovery, name="autodiscovery", args=())
+            thread.daemon = True
+            thread.start()
+            self.threads.append(thread)
 
-        for x in range(int(reporting_conf.distributed.dist_threads)):
+        for _ in range(int(dist_conf.distributed.dist_threads)):
             if dist_lock.acquire(blocking=False):
-                thread = threading.Thread(target=self.fetch_latest_reports, args=())
-                thread.daemon = True
-                thread.start()
+                if NFS_FETCH:
+                    thread = threading.Thread(target=self.fetch_latest_reports_nfs, name="fetch_latest_reports_nfs", args=())
+                elif RESTAPI_FETCH:
+                    thread = threading.Thread(target=self.fetch_latest_reports, name="fetch_latest_reports", args=())
+                if RESTAPI_FETCH or NFS_FETCH:
+                    thread.daemon = True
+                    thread.start()
+                    self.threads.append(thread)
 
         if fetch_lock.acquire(blocking=False):
-            thread = threading.Thread(target=self.fetcher, args=())
+            thread = threading.Thread(target=self.fetcher, name="fetcher", args=())
             thread.daemon = True
             thread.start()
+            self.threads.append(thread)
 
         # Delete the task and all its associated files.
         # (It will still remain in the nodes" database, though.)
-        if reporting_conf.distributed.remove_task_on_worker or delete_enabled:
-            thread = threading.Thread(target=self.remove_from_worker, args=())
+        if dist_conf.distributed.remove_task_on_worker or delete_enabled:
+            thread = threading.Thread(target=self.remove_from_worker, name="remove_from_worker", args=())
             thread.daemon = True
             thread.start()
+            self.threads.append(thread)
 
-        if reporting_conf.distributed.failed_cleaner or failed_clean_enabled:
-            thread = threading.Thread(target=self.failed_cleaner, args=())
+        if dist_conf.distributed.failed_cleaner or failed_clean_enabled:
+            thread = threading.Thread(target=self.failed_cleaner, name="failed_to_clean", args=())
             thread.daemon = True
             thread.start()
+            self.threads.append(thread)
 
-        thread = threading.Thread(target=self.free_space_mon, args=())
+        thread = threading.Thread(target=self.free_space_mon, name="free_space_mon", args=())
         thread.daemon = True
         thread.start()
+        self.threads.append(thread)
 
         if reporting_conf.callback.enabled:
-            thread = threading.Thread(target=self.notification_loop, args=())
+            thread = threading.Thread(target=self.notification_loop, name="notification_loop", args=())
             thread.daemon = True
             thread.start()
+            self.threads.append(thread)
+
+        # thread monitoring
+        for thr in self.threads:
+            try:
+                thr.join(timeout=0.0)
+                log.info("Thread: %s - Alive: %s", thr.name, str(thr.is_alive()))
+            except Exception as e:
+                log.exception(e)
+            time.sleep(60)
 
     def free_space_mon(self):
+        """
+        Monitors the free disk space in the analysis folder and logs an error
+        message if the available space is below the configured threshold. This
+        check is performed periodically every 10 minutes. The check is ignored
+        if the 'freespace' configuration variable is set to zero.
+
+        The analysis folder path is resolved to its full base path to handle
+        cases where it might be a symbolic link.
+
+        Returns:
+            None
+        """
         # If not enough free disk space is available, then we print an
         # error message and wait another round (this check is ignored
         # when the freespace configuration variable is set to zero).
-        while True:
-            if self.cfg.cuckoo.freespace:
-                # Resolve the full base path to the analysis folder, just in
-                # case somebody decides to make a symbolic link out of it.
-                dir_path = os.path.join(CUCKOO_ROOT, "storage", "analyses")
-
-                if hasattr(os, "statvfs"):
-                    dir_stats = os.statvfs(dir_path)
-
-                    # Calculate the free disk space in megabytes.
-                    space_available = dir_stats.f_bavail * dir_stats.f_frsize
-                    space_available /= 1024 * 1024
-
-                    if space_available < self.cfg.cuckoo.freespace:
-                        log.error("Not enough free disk space! (Only %d MB!)", space_available)
-                        self.stop_dist.set()
-                        continue
-                    else:
-                        self.stop_dist.clear()
-
-                time.sleep(60)
-
-    def zip_files(self, files):
-        in_memory = BytesIO()
-        zf = ZipFile(in_memory, mode="w")
-
-        for file in files:
-            zf.writestr(os.path.basename(file), open(file, "rb").read())
-
-        zf.close()
-        in_memory.seek(0)
-
-        # read the data
-        data = in_memory.read()
-        in_memory.close()
-
-        return data
+        if cfg.cuckoo.freespace:
+            # Resolve the full base path to the analysis folder, just in
+            # case somebody decides to make a symbolic link out of it.
+            dir_path = os.path.join(CUCKOO_ROOT, "storage", "analyses")
+            while True:
+                free_space_monitor(dir_path, analysis=True)
+                time.sleep(600)
 
     def notification_loop(self):
+        """
+        Continuously checks for completed tasks that have not been notified and sends notifications to specified URLs.
+
+        This method runs an infinite loop that:
+        1. Queries the database for tasks that are finished, retrieved, but not yet notified.
+        2. For each task, updates the main task status to `TASK_REPORTED`.
+        3. Sends a POST request to each URL specified in the configuration with the task ID in the payload.
+        4. Marks the task as notified if the POST request is successful.
+        5. Logs the status of each notification attempt.
+
+        The loop sleeps for 20 seconds before repeating the process.
+
+        Raises:
+            requests.exceptions.ConnectionError: If there is a connection error while sending the POST request.
+            Exception: For any other exceptions that occur during the notification process.
+        """
         urls = reporting_conf.callback.url.split(",")
+        headers = {"x-api-key": reporting_conf.callback.key}
 
-        db = session()
-        while True:
+        with session() as db:
+            while True:
+                stmt = (
+                    select(Task)
+                    .where(Task.finished.is_(True), Task.retrieved.is_(True), Task.notificated.is_(False))
+                    .order_by(Task.id.desc())
+                )
 
-            tasks = db.query(Task).filter_by(finished=True, retrieved=True, notificated=False).order_by(Task.id.desc()).all()
-            if tasks is not None:
-                for task in tasks:
-                    main_db.set_status(task.main_task_id, TASK_REPORTED)
-                    log.debug("reporting main_task_id: {}".format(task.main_task_id))
+                for task in db.scalars(stmt):
+                    with main_db.session.begin():
+                        main_db.set_status(task.main_task_id, TASK_REPORTED)
+                    log.debug("reporting main_task_id: %d", task.main_task_id)
                     for url in urls:
                         try:
-                            res = requests.post(url, data=json.dumps({"task_id": int(task.main_task_id)}))
+                            res = requests.post(url, headers=headers, data=json.dumps({"task_id": int(task.main_task_id)}))
                             if res and res.ok:
-                                # log.info(res.content)
                                 task.notificated = True
-                                #db.commit()
-                                #db.refresh(task)
                             else:
-                                log.info("failed to report: {} - {}".format(task.main_task_id, res.status_code))
+                                log.info("failed to report: %d - %d", task.main_task_id, res.status_code)
                         except requests.exceptions.ConnectionError:
                             log.info("Can't report to callback")
                         except Exception as e:
-                            log.info("failed to report: {} - {}".format(task.main_task_id, e))
-            db.commit()
-            time.sleep(20)
-        db.close()
+                            log.info("failed to report: %d - %s", task.main_task_id, str(e))
+                db.commit()
+                time.sleep(20)
 
     def failed_cleaner(self):
+        """
+        Periodically checks for failed tasks on enabled nodes and cleans them up.
+
+        This method continuously queries the database for nodes that are enabled and
+        checks for tasks that have failed either during analysis or processing. If a
+        failed task is found, it updates the task status to indicate failure, marks
+        the task as finished, retrieved, and notified, and then adds the task to the
+        cleaner queue for further processing.
+
+        The method runs indefinitely, sleeping for 600 seconds between each iteration.
+
+        Attributes:
+            self.cleaner_queue (Queue): A queue to hold tasks that need to be cleaned.
+
+        Notes:
+            - This method acquires and releases a lock (`lock_retriever`) to ensure
+                thread-safe operations when adding tasks to the cleaner queue.
+            - The method commits changes to the database after processing each node.
+            - The method closes the database session before exiting.
+
+        Raises:
+            Any exceptions raised during database operations or task processing are
+            not explicitly handled within this method.
+        """
         db = session()
         while True:
-            for node in db.query(Node).filter_by(enabled=True).all():
-                log.info("Checking for failed tasks on: {}".format(node.name))
-                for status in ("failed_analysis", "failed_processing"):
-                    for task in node_fetch_tasks(status, node.url, node.ht_user, node.ht_pass, action="delete"):
-                        t = db.query(Task).filter_by(task_id=task["id"], node_id=node.id).order_by(Task.id.desc()).first()
-                        if t is not None:
-                            log.info("Cleaning failed_analysis for id:{}, node:{}: main_task_id: {}".format(t.id, t.node_id, t.main_task_id))
+            nodes = db.execute(select(Node.id, Node.name, Node.url, Node.apikey).where(Node.enabled.is_(True)))
+            for node in nodes:
+                log.info("Checking for failed tasks on: %s", node.name)
+                for task in node_fetch_tasks("failed_analysis|failed_processing", node.url, node.apikey, action="delete"):
+                    task_stmt = select(Task).where(Task.task_id == task["id"], Task.node_id == node.id).order_by(Task.id.desc())
+                    t = db.scalar(task_stmt)
+                    if t is not None:
+                        log.info("Cleaning failed for id: %d, node: %s: main_task_id: %d", t.id, t.node_id, t.main_task_id)
+                        with main_db.session.begin():
                             main_db.set_status(t.main_task_id, TASK_FAILED_REPORTING)
-                            t.finished = True
-                            t.retrieved = True
-                            t.notificated = True
-                            lock_retriever.acquire()
-                            if (t.node_id, t.task_id) not in self.cleaner_queue.queue:
-                                self.cleaner_queue.put((t.node_id, t.task_id))
-                            lock_retriever.release()
-                        else:
-                            log.debug("failed_cleaner t is None for: {} - node_id: {}".format(task["id"], node.id))
-                            lock_retriever.acquire()
-                            if (node.id, task["id"]) not in self.cleaner_queue.queue:
-                                self.cleaner_queue.put((node.id, task["id"]))
-                            lock_retriever.release()
-                    db.commit()
+                        t.finished = True
+                        t.retrieved = True
+                        t.notificated = True
+                        lock_retriever.acquire()
+                        if (t.node_id, t.task_id) not in self.cleaner_queue.queue:
+                            self.cleaner_queue.put((t.node_id, t.task_id))
+                        lock_retriever.release()
+                    else:
+                        log.debug("failed_cleaner t is None for: %s - node_id: %d", str(task["id"]), node.id)
+                        lock_retriever.acquire()
+                        if (node.id, task["id"]) not in self.cleaner_queue.queue:
+                            self.cleaner_queue.put((node.id, task["id"]))
+                        lock_retriever.release()
+                db.commit()
             time.sleep(600)
         db.close()
 
     def fetcher(self):
-        """ Method that runs forever """
-        last_checks = dict()
+        """
+        Method that runs indefinitely to fetch tasks from nodes and process them.
+
+        This method continuously checks for tasks from enabled nodes and processes them.
+        It maintains a status count and last check time for each node. If a node's tasks
+        are fetched successfully, they are added to the fetcher queue. If a node is deemed
+        dead after a certain number of failures, it is logged.
+
+        Attributes:
+            last_checks (dict): Dictionary to keep track of the last check time for each node.
+            status_count (dict): Dictionary to keep track of the status count for each node.
+            stop_dist (threading.Event): Event to signal stopping the distribution.
+            cleaner_queue (queue.Queue): Queue to hold tasks that need cleaning.
+            fetcher_queue (queue.Queue): Queue to hold tasks that need fetching.
+            current_queue (dict): Dictionary to keep track of the current queue for each node.
+
+        Raises:
+            Exception: If an error occurs during task processing, it is logged and the status count is incremented
+        """
+        last_checks = {}
         # to not exit till cleaner works
-        db = session()
-        while not self.stop_dist.isSet():
-            for node in db.query(Node).filter_by(enabled=True).all():
-                self.status_count.setdefault(node.name, 0)
-                last_checks.setdefault(node.name, 0)
-                last_checks[node.name] += 1
-                # reset it every 10 calls
-                if node.last_check:
-                    last_check = int(node.last_check.strftime("%s"))
-                else:
-                    last_check = 0
-                if last_checks[node.name] == 10:
-                    last_check = 0
-                    last_checks[node.name] = 0
-                limit = 0
-                for task in node_fetch_tasks("reported", node.url, node.ht_user, node.ht_pass, "fetch", last_check):
-                    tasker = (
-                        db.query(Task)
-                        .filter_by(finished=False, retrieved=False, task_id=task["id"], node_id=node.id, deleted=False)
+        with session() as db:
+            while True:
+                if self.stop_dist.is_set():
+                    time.sleep(60)
+                    continue
+                # .with_entities(Node.id, Node.name, Node.url, Node.apikey, Node.last_check)
+                nodes = db.scalars(select(Node).where(Node.enabled.is_(True)))
+                for node in nodes:
+                    self.status_count.setdefault(node.name, 0)
+                    last_checks.setdefault(node.name, 0)
+                    last_checks[node.name] += 1
+                    # reset it every 10 calls
+                    if hasattr(node, "last_check") and node.last_check:
+                        last_check = int(node.last_check.strftime("%s"))
+                    else:
+                        last_check = 0
+                    if last_checks[node.name] == 3:
+                        last_check = 0
+                        last_checks[node.name] = 0
+                    limit = 0
+                    task_ids = []
+                    for task in node_fetch_tasks("reported", node.url, node.apikey, "fetch", last_check):
+                        task_ids.append(task["id"])
+
+                    if True:
+                        stmt = (
+                            select(Task)
+                            .where(
+                                Task.finished.is_(False),
+                                Task.retrieved.is_(False),
+                                Task.node_id == node.id,
+                                Task.deleted.is_(False),
+                                Task.task_id.in_(task_ids),
+                            )
+                            .order_by(Task.id.desc())
+                        )
+                        tasker = db.scalars(stmt)
+
+                        if tasker is None:
+                            # log.debug(f"Node ID: {node.id} - Task ID: {task['id']} - adding to cleaner")
+                            self.cleaner_queue.put((node.id, task["id"]))
+                            continue
+
+                        for task in tasker:
+                            try:
+                                if (
+                                    task.task_id not in self.current_queue.get(node.id, [])
+                                    and (task.task_id, node.id) not in self.fetcher_queue.queue
+                                ):
+                                    limit += 1
+                                    self.fetcher_queue.put(({"id": task.task_id}, node.id))
+                                    # log.debug("%s - %d", task, node.id)
+                                    """
+                                    completed_on = datetime.strptime(task["completed_on"], "%Y-%m-%d %H:%M:%S")
+                                    if node.last_check is None or completed_on > node.last_check:
+                                        node.last_check = completed_on
+                                        db.commit()
+                                        db.refresh(node)
+                                    #if limit == 50:
+                                    #    break
+                                    """
+                            except Exception as e:
+                                self.status_count[node.name] += 1
+                                log.exception(e)
+                                if self.status_count[node.name] == dead_count:
+                                    log.info("[-] %s dead", node.name)
+                                    # node_data = db.query(Node).filter_by(name=node.name).first()
+                                    # node_data.enabled = False
+                                    # db.commit()
+                db.commit()
+                # time.sleep(5)
+
+    def delete_target_file(self, task_id: int, sample_sha256: str, target: str):
+        """
+        Deletes the target file and its binary copy if certain conditions are met.
+
+        Args:
+            task_id (int): The ID of the task associated with the file.
+            sample_sha256 (str): The SHA-256 hash of the sample file.
+            target (str): The path to the target file.
+
+        Behavior:
+            - Deletes the target file if `cfg.cuckoo.delete_original` is True and the target file exists.
+            - Deletes the binary copy of the file if `cfg.cuckoo.delete_bin_copy` is True and no other tasks are using the sample.
+
+        Note:
+            - The function checks if the target file exists before attempting to delete it.
+            - The function checks if the binary copy is still in use by other tasks before deleting it.
+        """
+        # Is ok to delete original file, but we need to lookup on delete_bin_copy if no more pendings tasks
+        if cfg.cuckoo.delete_original and target and path_exists(target):
+            path_delete(target)
+
+        if cfg.cuckoo.delete_bin_copy:
+            copy_path = os.path.join(CUCKOO_ROOT, "storage", "binaries", sample_sha256)
+            if path_exists(copy_path):
+                with main_db.session.begin():
+                    sample_still_used = main_db.sample_still_used(sample_sha256, task_id)
+                if not sample_still_used:
+                    path_delete(copy_path)
+
+    # This should be executed as external thread as it generates bottle neck
+    def fetch_latest_reports_nfs(self):
+        """
+        Fetches the latest reports from NFS (Network File System) for distributed tasks.
+
+        This method continuously checks for new tasks in the fetcher queue and processes them.
+        It retrieves the task details from the database, fetches the corresponding report from
+        the specified node, and updates the task status in the main database.
+
+        The method performs the following steps:
+        1. Continuously checks for new tasks in the fetcher queue.
+        2. Retrieves task details from the database.
+        3. Fetches the report from the specified node.
+        4. Updates the task status in the main database.
+        5. Moves the report to the appropriate location.
+        6. Creates a symbolic link to the analysis folder.
+        7. Deletes the target file if necessary.
+        8. Marks the task as retrieved and finished in the database.
+
+        The method handles various exceptions and logs relevant information for debugging purposes.
+
+        Note:
+            This method runs indefinitely until the `stop_dist` event is set.
+
+        Raises:
+            Exception: If any error occurs during the processing of tasks.
+
+        """
+        # db = session()
+        with session() as db:
+            # to not exit till cleaner works
+            while True:
+                if self.stop_dist.is_set():
+                    time.sleep(60)
+                    continue
+                task, node_id = self.fetcher_queue.get()
+
+                self.current_queue.setdefault(node_id, []).append(task["id"])
+                try:
+                    # In the case that a worker node has been reset over time it"s
+                    # possible that there are multiple combinations of
+                    # node-id/task-id, in this case we take the last one available.
+                    # (This makes it possible to re-setup a worker node).
+                    stmt = (
+                        select(Task)
+                        .where(
+                            Task.node_id == node_id,
+                            Task.task_id == task["id"],
+                            Task.retrieved.is_(False),
+                            Task.finished.is_(False),
+                        )
                         .order_by(Task.id.desc())
-                        .first()
                     )
-                    if tasker is None:
-                        self.cleaner_queue.put((node.id, task["id"]))
+                    t = db.scalar(stmt)
+                    if t is None:
+                        self.t_is_none.setdefault(node_id, []).append(task["id"])
+
+                        # sometime it not deletes tasks in workers of some fails or something
+                        # this will do the trick
+                        log.debug("tf else,")
+                        if (node_id, task.get("id")) not in self.cleaner_queue.queue:
+                            self.cleaner_queue.put((node_id, task.get("id")))
                         continue
-                    try:
-                        if task["id"] not in self.current_queue.get(node.id, []) and (task["id"], node.id) not in self.fetcher_queue.queue:
-                            limit += 1
-                            self.fetcher_queue.put((task, node.id))
-                            # log.debug("{} - {}".format(task, node.id))
-                            completed_on = datetime.strptime(task["completed_on"], "%Y-%m-%d %H:%M:%S")
-                            if node.last_check is None or completed_on > node.last_check:
-                                node.last_check = completed_on
-                                db.commit()
-                                db.refresh(node)
-                            if limit == 50:
-                                break
-                    except Exception as e:
-                        self.status_count[node.name] += 1
-                        log.info(e)
-                        if self.status_count[node.name] == dead_count:
-                            log.info("[-] {} dead".format(node.name))
-                            # node_data = db.query(Node).filter_by(name=node.name).first()
-                            # node_data.enabled = False
-                            # db.commit()
-            db.commit()
-            time.sleep(5)
-        db.close()
+
+                    log.debug(
+                        "Fetching dist report for: id: %d, task_id: %d, main_task_id: %d from node: %s",
+                        t.id,
+                        t.task_id,
+                        t.main_task_id,
+                        ID2NAME[t.node_id] if t.node_id in ID2NAME else t.node_id,
+                    )
+                    with main_db.session.begin():
+                        # set completed_on time
+                        main_db.set_status(t.main_task_id, TASK_DISTRIBUTED_COMPLETED)
+                        # set reported time
+                        main_db.set_status(t.main_task_id, TASK_REPORTED)
+
+                    # Fetch each requested report.
+                    report_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(t.main_task_id))
+                    # ToDo option
+                    node = db.scalar(select(Node).where(Node.id == node_id))
+
+                    start_copy = timeit.default_timer()
+                    copied = node_get_report_nfs(t.task_id, node.name, t.main_task_id)
+
+                    if not copied:
+                        log.error("Can't copy report %d from node: %s for task: %d", t.task_id, node.name, t.main_task_id)
+                        continue
+
+                    timediff = timeit.default_timer() - start_copy
+                    log.info(
+                        "It took %s seconds to copy report %d from node: %s for task: %d",
+                        f"{timediff:.2f}",
+                        t.task_id,
+                        node.name,
+                        t.main_task_id,
+                    )
+
+                    # this doesn't exist for some reason
+                    if path_exists(t.path):
+                        sample_sha256 = None
+                        sample_parent = None
+                        with main_db.session.begin():
+                            samples = main_db.find_sample(task_id=t.main_task_id)
+                            if samples:
+                                sample_sha256 = samples[0].sample.sha256
+                                if hasattr(samples[0].sample, "parent_links"):
+                                    for parent in samples[0].sample.parent_links:
+                                        if parent.task_id == t.main_task_id:
+                                            sample_parent = parent.parent.to_dict()
+                                            break
+
+                        if sample_sha256 is None:
+                            # keep fallback for now
+                            sample = open(t.path, "rb").read()
+                            sample_sha256 = hashlib.sha256(sample).hexdigest()
+
+                        destination = os.path.join(binaries_folder, sample_sha256)
+                        if not path_exists(destination) and path_exists(t.path):
+                            try:
+                                shutil.move(t.path, destination)
+                            except FileNotFoundError as e:
+                                log.error("Failed to move: %s - %s", t.path, str(e))
+                        # creating link to analysis folder
+                        if path_exists(destination):
+                            try:
+                                os.symlink(destination, os.path.join(report_path, "binary"))
+                            except Exception:
+                                # print(f"Failed link binary: {e}")
+                                pass
+
+                        self.delete_target_file(t.main_task_id, sample_sha256, t.path)
+
+                    if sample_parent:
+                        try:
+                            report = load_iocs(t.main_task_id, detail=True)
+                            report["info"].update({"parent_sample": sample_parent})
+                            dump_iocs(report, t.main_task_id)
+                            # ToDo insert into mongo
+                            mongo_update_one(
+                                "analysis", {"info.id": int(t.main_task_id)}, {"$set": {"info.parent_sample": sample_parent}}
+                            )
+                        except Exception as e:
+                            log.exception("Failed to save iocs for parent sample: %s", str(e))
+
+                    t.retrieved = True
+                    t.finished = True
+                    db.commit()
+
+                except Exception as e:
+                    log.exception(e)
+                self.current_queue[node_id].remove(task["id"])
+                db.commit()
 
     # This should be executed as external thread as it generates bottle neck
     def fetch_latest_reports(self):
+        """
+        Continuously fetches the latest reports from distributed nodes and processes them.
+
+        This method runs in an infinite loop until `self.stop_dist` is set. It retrieves tasks from the `fetcher_queue`,
+        fetches the corresponding reports from the nodes, and processes them. The reports are saved to the local storage
+        and the task status is updated in the database.
+
+        The method handles various scenarios such as:
+        - Task not found or already processed.
+        - Report retrieval failures.
+        - Report extraction and saving.
+        - Handling of sample binaries associated with the tasks.
+
+        The method also manages a cleaner queue to handle tasks that need to be cleaned up.
+
+        Raises:
+            Exception: If any unexpected error occurs during the report fetching and processing.
+        """
         db = session()
         # to not exit till cleaner works
-        while not self.stop_dist.isSet():
+        while True:
+            if self.stop_dist.is_set():
+                time.sleep(60)
+                continue
             task, node_id = self.fetcher_queue.get()
 
-            self.current_queue.setdefault(node_id, list()).append(task["id"])
+            self.current_queue.setdefault(node_id, []).append(task["id"])
 
             try:
                 # In the case that a Cuckoo node has been reset over time it"s
                 # possible that there are multiple combinations of
                 # node-id/task-id, in this case we take the last one available.
                 # (This makes it possible to re-setup a Cuckoo node).
-                t = (
-                    db.query(Task)
-                    .filter_by(node_id=node_id, task_id=task["id"], retrieved=False, finished=False)
+                stmt = (
+                    select(Task)
+                    .where(
+                        Task.node_id == node_id,
+                        Task.task_id == task["id"],
+                        Task.retrieved.is_(False),
+                        Task.finished.is_(False),
+                    )
                     .order_by(Task.id.desc())
-                    .first()
                 )
+                t = db.scalar(stmt)
                 if t is None:
-                    self.t_is_none.setdefault(node_id, list()).append(task["id"])
+                    self.t_is_none.setdefault(node_id, []).append(task["id"])
 
                     # sometime it not deletes tasks in workers of some fails or something
                     # this will do the trick
@@ -506,316 +1068,501 @@ def fetch_latest_reports(self):
                     continue
 
                 log.debug(
-                    "Fetching dist report for: id: {}, task_id: {}, main_task_id:{} from node: {}".format(
-                        t.id, t.task_id, t.main_task_id, ID2NAME[t.node_id] if t.node_id in ID2NAME else t.node_id
-                    )
+                    "Fetching dist report for: id: %d, task_id: %d, main_task_id: %d from node: %s",
+                    t.id,
+                    t.task_id,
+                    t.main_task_id,
+                    ID2NAME[t.node_id] if t.node_id in ID2NAME else t.node_id,
                 )
-                # set completed_on time
-                main_db.set_status(t.main_task_id, TASK_DISTRIBUTED_COMPLETED)
-                # set reported time
-                main_db.set_status(t.main_task_id, TASK_REPORTED)
-
-                t.finished = True
-                t.retrieved = True
-                db.commit()
+                with main_db.session.begin():
+                    # set completed_on time
+                    main_db.set_status(t.main_task_id, TASK_DISTRIBUTED_COMPLETED)
+                    # set reported time
+                    main_db.set_status(t.main_task_id, TASK_REPORTED)
 
                 # Fetch each requested report.
-                node = db.query(Node).filter_by(id=node_id).first()
-                report = node_get_report(t.task_id, "dist", node.url, node.ht_user, node.ht_pass, stream=True)
+                node = db.scalar(select(Node).where(Node.id == node_id))
+                report = node_get_report(t.task_id, "dist/", node.url, node.apikey, stream=True)
 
                 if report is None:
-                    log.info("dist report retrieve failed NONE: task_id: {} from node: {}".format(t.task_id, node_id))
+                    log.info("dist report retrieve failed NONE: task_id: %d from node: %d", t.task_id, node_id)
                     continue
 
                 if report.status_code != 200:
-                    log.info("dist report retrieve failed - status_code {}: task_id: {} from node: {}".format(report.status_code, t.task_id, node_id))
+                    log.info(
+                        "dist report retrieve failed - status_code %d: task_id: %d from node: %s",
+                        report.status_code,
+                        t.task_id,
+                        node_id,
+                    )
                     if report.status_code == 400 and (node_id, task.get("id")) not in self.cleaner_queue.queue:
                         self.cleaner_queue.put((node_id, task.get("id")))
+                        log.info("Status code: %d - MSG: %s", report.status_code, report.text)
                     continue
 
-                report_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", "{}".format(t.main_task_id))
-                if not os.path.exists(report_path):
-                    os.makedirs(report_path, mode=0o777)
+                log.info(
+                    "Report size for task %s is: %s MB",
+                    t.task_id,
+                    f"{int(report.headers.get('Content-length', 1)) / int(1 << 20):,.0f}",
+                )
+
+                report_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(t.main_task_id))
+                if not path_exists(report_path):
+                    path_mkdir(report_path, mode=0o755)
                 try:
-                    fileobj = BytesIO(report.content)
                     if report.content:
-                        file = tarfile.open(fileobj=fileobj, mode="r:bz2")  # errorlevel=0
-                        try:
-                            file.extractall(report_path)
-                            if (node_id, task.get("id")) not in self.cleaner_queue.queue:
-                                self.cleaner_queue.put((node_id, task.get("id")))
-                        except OSError:
-                            log.error("Permission denied: {}".format(report_path))
+                        # with pyzipper.AESZipFile(BytesIO(report.content)) as zf:
+                        #    zf.setpassword(zip_pwd)
+                        with zipfile.ZipFile(BytesIO(report.content)) as zf:
+                            try:
+                                zf.extractall(report_path)
+                                if (node_id, task.get("id")) not in self.cleaner_queue.queue:
+                                    self.cleaner_queue.put((node_id, task.get("id")))
+                            except OSError:
+                                log.error("Permission denied: %s", report_path)
+
+                        if path_exists(t.path):
+                            sample_sha256 = None
+                            with main_db.session.begin():
+                                samples = main_db.find_sample(task_id=t.main_task_id)
+                                if samples:
+                                    sample_sha256 = samples[0].sample.sha256
+                            if sample_sha256 is None:
+                                # keep fallback for now
+                                sample = open(t.path, "rb").read()
+                                sample_sha256 = hashlib.sha256(sample).hexdigest()
 
-                        if os.path.exists(t.path):
-                            sample = open(t.path, "rb").read()
-                            sample_sha256 = hashlib.sha256(sample).hexdigest()
                             destination = os.path.join(CUCKOO_ROOT, "storage", "binaries")
-                            if not os.path.exists(destination):
-                                os.makedirs(destination, mode=0o755)
+                            if not path_exists(destination):
+                                path_mkdir(destination, mode=0o755)
+
                             destination = os.path.join(destination, sample_sha256)
-                            if not os.path.exists(destination):
+                            if not path_exists(destination) and path_exists(t.path):
                                 shutil.move(t.path, destination)
+
                             # creating link to analysis folder
-                            try:
-                                os.symlink(destination, os.path.join(report_path, "binary"))
-                            except Exception as e:
-                                pass
+                            if path_exists(t.path):
+                                with suppress(Exception):
+                                    os.symlink(destination, os.path.join(report_path, "binary"))
+
+                                self.delete_target_file(t.main_task_id, sample_sha256, t.path)
+
+                        else:
+                            log.debug("%s doesn't exist", t.path)
+
+                        t.retrieved = True
+                        t.finished = True
+                        db.commit()
 
                     else:
-                        log.error("Tar file is empty")
-                        # closing StringIO objects
-                        fileobj.close()
-                except tarfile.ReadError:
-                    log.error("Task id: {} from node.id: {} Read error, fileobj.len: {}".format(t.task_id, t.node_id, fileobj.len))
+                        log.error("Zip file is empty")
+                except pyzipper.zipfile.BadZipFile:
+                    log.error("File is not a zip file")
                 except Exception as e:
-                    logging.exception("Exception: %s" % e)
-                    if os.path.exists(os.path.join(report_path, "reports", "report.json")):
-                        os.remove(os.path.join(report_path, "reports", "report.json"))
+                    log.exception("Exception: %s", str(e))
+                    if path_exists(os.path.join(report_path, "reports", "report.json")):
+                        path_delete(os.path.join(report_path, "reports", "report.json"))
             except Exception as e:
-                logging.exception(e)
+                log.exception(e)
             self.current_queue[node_id].remove(task["id"])
             db.commit()
         db.close()
 
     def remove_from_worker(self):
-        db = session()
-        nodes = dict()
-        details = dict()
-        for node in db.query(Node).all():
-            nodes.setdefault(node.id, node)
+        """
+        Removes tasks from worker nodes.
+
+        This method continuously processes tasks from the cleaner queue and removes them from the worker nodes.
+        It retrieves the list of nodes from the database and processes tasks in the cleaner queue.
+        If a task is found in the `t_is_none` dictionary for a node, it is removed from the list.
+        The method then sends a request to delete the tasks from the worker node.
+
+        The method performs the following steps:
+        1. Retrieves the list of nodes from the database.
+        2. Continuously processes tasks from the cleaner queue.
+        3. Groups tasks by node ID.
+        4. Removes tasks from the `t_is_none` dictionary if present.
+        5. Sends a request to delete tasks from the worker node.
+        6. Commits the changes to the database.
+        7. Sleeps for 20 seconds before processing the next batch of tasks.
+
+        Note:
+            The method runs indefinitely until manually stopped.
+
+        ToDo:
+            Determine if additional actions are needed when the length of `t_is_none[node_id]` exceeds 50.
+
+        """
+        nodes = {}
+        with session() as db:
+            for node in db.scalars(select(Node)):
+                nodes.setdefault(node.id, node)
 
         while True:
-            node_id, task_id = self.cleaner_queue.get()
-            details.setdefault(node_id, list())
-            details[node_id].append(str(task_id))
-            if task_id in self.t_is_none.get(node_id, list()):
-                self.t_is_none[node_id].remove(task_id)
-
-            node = nodes[node_id]
-            if node and details[node_id]:
-                ids = ",".join(details[node])
-                _delete_many(node, ids, nodes, db)
+            details = {}
+            # print("cleaner size is ", self.cleaner_queue.qsize())
+            for _ in range(self.cleaner_queue.qsize()):
+                node_id, task_id = self.cleaner_queue.get()
+                details.setdefault(node_id, []).append(str(task_id))
+                if task_id in self.t_is_none.get(node_id, []):
+                    self.t_is_none[node_id].remove(task_id)
+
+                    if len(self.t_is_none[node_id]) > 50:
+                        break
+
+                    # ToDo Do we need to do something here?
+
+            for node_id in details:
+                node = nodes[node_id]
+                if node and details[node_id]:
+                    ids = ",".join(list(set(details[node_id])))
+                    print(ids)
+                    _delete_many(node_id, ids, nodes, db)
 
-            db.commit()
-            time.sleep(20)
-        db.close()
+                db.commit()
+                time.sleep(20)
 
 
 class StatusThread(threading.Thread):
-
-    def submit_tasks(self, node_id, pend_tasks_num, options_like=False, force_push_push=False, db=None):
+    """
+    A thread that handles the submission of tasks to nodes and manages the status of nodes.
+
+    Methods
+    -------
+    submit_tasks(node_id, pend_tasks_num, options_like=False, force_push_push=False, db=None)
+        Submits tasks to a specified node.
+
+    load_vm_tags(db, node_id, node_name)
+        Loads the tags for virtual machines associated with a node.
+
+    run()
+        The main loop that continuously checks the status of nodes and submits tasks.
+    """
+
+    def submit_tasks(self, node_name, pend_tasks_num, options_like=False, force_push_push=False, db=None):
+        """
+        Submits tasks to a specified node.
+
+        Args:
+            node_name (str): The identifier of the node to which tasks will be submitted.
+            pend_tasks_num (int): The number of pending tasks to be submitted.
+            options_like (bool, optional): Flag to filter tasks based on options. Defaults to False.
+            force_push_push (bool, optional): Flag to forcefully push tasks to the node. Defaults to False.
+            db (Session, optional): The database session to use. Defaults to None.
+
+        Returns:
+            bool: True if tasks were successfully submitted, False otherwise.
+
+        Raises:
+            OperationalError: If there is an operational error when querying the database.
+            SQLAlchemyError: If there is a SQLAlchemy error when querying the database.
+        """
         # HACK do not create a new session if the current one (passed as parameter) is still valid.
         try:
-            node = db.query(Node).filter_by(name=node_id).first()
+            # ToDo name should be id?
+            node = db.scalar(select(Node).where(Node.name == node_name))
         except (OperationalError, SQLAlchemyError) as e:
-            log.warning("Got an operational Exception when trying to submit tasks: {}".format(e))
+            log.warning("Got an operational Exception when trying to submit tasks: %s", str(e))
             return False
 
         if node.name not in SERVER_TAGS:
             self.load_vm_tags(db, node.id, node.name)
 
         limit = 0
-
+        # ToDo delete instead of select
         # check if we have tasks with no node_id and task_id, but with main_task_id
-        bad_tasks = db.query(Task).filter(Task.node_id==None, Task.task_id==None, Task.main_task_id != None).all()
+        stmt = select(Task).where(Task.node_id.is_(None), Task.task_id.is_(None), Task.main_task_id.is_not(None))
+        bad_tasks = db.scalars(stmt)
         if bad_tasks:
             for task in bad_tasks:
                 db.delete(task)
                 db.commit()
-                main_db.set_status(task.main_task_id, TASK_PENDING)
+                with main_db.session.begin():
+                    main_db.set_status(task.main_task_id, TASK_PENDING)
 
-        if node.name != "master":
+        if node.name != main_server_name:
             # don"t do nothing if nothing in pending
             # Get tasks from main_db submitted through web interface
-            main_db_tasks = main_db.list_tasks(status=TASK_PENDING, options_like=options_like, limit=pend_tasks_num, order_by=MD_Task.priority.desc())
-            if not main_db_tasks:
-                return True
-            if main_db_tasks:
-                for t in main_db_tasks:
-                    force_push = False
-                    try:
+            # Exclude category
+            with main_db.session.begin():
+                main_db_tasks = main_db.list_tasks(
+                    status=TASK_PENDING,
+                    options_like=options_like,
+                    limit=pend_tasks_num,
+                    order_by=MD_Task.priority.desc(),
+                    for_update=True,
+                )
+                if not main_db_tasks:
+                    return True
+                if main_db_tasks:
+                    for t in main_db_tasks:
                         options = get_options(t.options)
-                        # check if node exist and its correct
-                        if "node=" in t.options:
-                            requested_node = options.get("node")
-                            if requested_node not in STATUSES:
-                                # if the requested node is not available
-                                force_push = True
-                            elif requested_node != node.name:
-                                # otherwise keep looping
+                        # Check if file exist, if no wipe from db and continue, rare cases
+                        if t.category in ("file", "pcap", "static"):
+                            if not path_exists(t.target):
+                                log.info("Task id: %d - File doesn't exist: %s", t.id, t.target)
+                                main_db.set_status(t.id, TASK_BANNED)
                                 continue
-                        if "timeout=" in t.options:
-                            t.timeout = options.get("timeout", 0)
-                    except Exception as e:
-                        log.error(e, exc_info=True)
-                    # wtf are you doing in pendings?
-                    tasks = db.query(Task).filter_by(main_task_id=t.id).all()
-                    if tasks:
-                        for task in tasks:
-                            #log.info("Deleting incorrectly uploaded file from dist db, main_task_id: {}".format(t.id))
-                            if node.name == "master":
-                                main_db.set_status(t.id, TASK_RUNNING)
-                            else:
-                                main_db.set_status(t.id, TASK_DISTRIBUTED)
-                            #db.delete(task)
+
+                            if not web_conf.general.allow_ignore_size and "ignore_size_check" not in options:
+                                # We can't upload size bigger than X to our workers. In case we extract archive that contains bigger file.
+                                file_size = path_get_size(t.target)
+                                if file_size > web_conf.general.max_sample_size:
+                                    log.warning(
+                                        "File size: %d is bigger than allowed: %d", file_size, web_conf.general.max_sample_size
+                                    )
+                                    main_db.set_status(t.id, TASK_BANNED)
+                                    continue
+                        force_push = False
+                        try:
+                            # check if node exist and its correct
+                            if options.get("node"):
+                                requested_node = options.get("node")
+                                if requested_node not in STATUSES:
+                                    # if the requested node is not available
+                                    force_push = True
+                                elif requested_node != node.name:
+                                    # otherwise keep looping
+                                    continue
+                            if "timeout=" in t.options:
+                                t.timeout = options.get("timeout", 0)
+                        except Exception as e:
+                            log.exception(e)
+                        # wtf are you doing in pendings?
+                        tasks = db.scalars(select(Task).where(Task.main_task_id == t.id)).all()
+                        if tasks:
+                            for task in tasks:
+                                log.info("Deleting incorrectly uploaded file from dist db, main_task_id: %s", t.id)
+                                if node.name == main_server_name:
+                                    main_db.set_status(t.id, TASK_RUNNING)
+                                else:
+                                    main_db.set_status(t.id, TASK_DISTRIBUTED)
+                                # db.delete(task)
+                            db.commit()
+                            continue
+                        # Convert array of tags into comma separated list
+                        tags = ",".join([tag.name for tag in t.tags])
+                        # Append a comma, to make LIKE searches more precise
+                        if tags:
+                            tags += ","
+
+                        # sanity check
+                        if "x86" in tags and "x64" in tags:
+                            tags = tags.replace("x86,", "")
+
+                        if "msoffice-crypt-tmp" in t.target and "password=" in t.options:
+                            # t.options = t.options.replace(f"password={options['password']}", "")
+                            options["password"]
+                        # if options.get("node"):
+                        #    t.options = t.options.replace(f"node={options['node']}", "")
+                        if options.get("node"):
+                            del options["node"]
+                        t.options = ",".join([f"{k}={v}" for k, v in options.items()])
+                        if t.options:
+                            t.options += ","
+                        t.options += f"main_task_id={t.id}"
+                        args = dict(
+                            package=t.package,
+                            category=t.category,
+                            timeout=t.timeout,
+                            priority=t.priority,
+                            options=t.options,
+                            machine=t.machine,
+                            platform=t.platform,
+                            tags=tags,
+                            custom=t.custom,
+                            memory=t.memory,
+                            clock=t.clock,
+                            enforce_timeout=t.enforce_timeout,
+                            main_task_id=t.id,
+                            route=t.route,
+                            tlp=t.tlp,
+                        )
+                        task = Task(path=t.target, **args)
+                        db.add(task)
+                        try:
+                            db.commit()
+                        except Exception as e:
+                            log.exception(e)
+                            log.info("TASK_FAILED_REPORTING")
+                            db.rollback()
+                            log.info(e)
+                            continue
+                        if force_push or force_push_push:
+                            # Submit appropriate tasks to node
+                            submitted = node_submit_task(task.id, node.id, t.id)
+                            if submitted:
+                                if node.name == main_server_name:
+                                    main_db.set_status(t.id, TASK_RUNNING)
+                                else:
+                                    main_db.set_status(t.id, TASK_DISTRIBUTED)
+                            limit += 1
+                            if limit in (pend_tasks_num, len(main_db_tasks)):
+                                db.commit()
+                                log.info("Pushed all tasks")
+                                return True
+
+                    # ToDo not finished
+                    # Only get tasks that have not been pushed yet.
+                    """
+                    q = db.query(Task).filter(or_(Task.node_id.is_(None), Task.task_id.is_(None)), Task.finished.is_(False))
+                    if q is None:
                         db.commit()
-                        continue
+                        return True
 
-                    # Check if file exist, if no wipe from db and continue, rare cases
-                    if t.category in ("file", "pcap", "static") and not os.path.exists(t.target):
-                        log.info("Task id: {} - File doesn't exist: {}".format(t.id, t.target))
-                        main_db.delete_task(t.id)
-                        continue
+                    # Order by task priority and task id.
+                    q = q.order_by(-Task.priority, Task.main_task_id)
+                    # if we have node set in options push
 
-                    # Convert array of tags into comma separated list
-                    tags = ",".join([tag.name for tag in t.tags])
-                    # Append a comma, to make LIKE searches more precise
-                    if tags:
-                        tags += ","
-
-                    #sanity check
-                    if "x86" in tags and "x64" in tags:
-                        tags = tags.replace("x86,", "")
-                    if "msoffice-crypt-tmp" in t.target and "password=" in t.options:
-                        t.options = t.options.replace("password=", "pwd=")
-                    args = dict(package=t.package, category=t.category, timeout=t.timeout, priority=t.priority,
-                                options=t.options+",main_task_id={}".format(t.id), machine=t.machine, platform=t.platform,
-                                tags=tags, custom=t.custom, memory=t.memory, clock=t.clock,
-                                enforce_timeout=t.enforce_timeout, main_task_id=t.id, route=t.route)
-                    task = Task(path=t.target, **args)
-
-                    db.add(task)
-                    try:
+                    if dist_conf.distributed.enable_tags:
+                        # Create filter query from tasks in ta
+                        tags = [getattr(Task, "tags") == ""]
+                        for tg in SERVER_TAGS[node.name]:
+                            if len(tg.split(",")) == 1:
+                                tags.append(getattr(Task, "tags") == (tg + ","))
+                            else:
+                                tg = tg.split(",")
+                                # ie. LIKE "%,%,%,"
+                                t_combined = [getattr(Task, "tags").like("%s" % ("%," * len(tg)))]
+                                for tag in tg:
+                                    t_combined.append(getattr(Task, "tags").like("%%%s%%" % (tag + ",")))
+                                tags.append(and_(*t_combined))
+                        # Filter by available tags
+                        q = q.filter(or_(*tags))
+
+                    to_upload = q.limit(pend_tasks_num).all()
+                    """
+                    # 1. Start with a select() statement and initial filters.
+                    stmt = (
+                        select(Task)
+                        .where(or_(Task.node_id.is_(None), Task.task_id.is_(None)), Task.finished.is_(False))
+                        .order_by(Task.priority.desc(), Task.main_task_id)
+                    )
+                    # print(stmt, "stmt")
+                    # ToDo broken
+                    """
+                    # 3. Apply the dynamic tag filter.
+                    if dist_conf.distributed.enable_tags:
+                        tags_conditions = [Task.tags == ""]
+                        for tg in SERVER_TAGS[node.name]:
+                            tags_list = tg.split(",")
+                            if len(tags_list) == 1:
+                                tags_conditions.append(Task.tags == f"{tg},")
+                            else:
+                                # The pattern of building a list of conditions for `and_` or `or_`
+                                # works the same way with the modern .where() clause.
+                                t_combined = [Task.tags.like(f"%{tag},%") for tag in tags_list]
+                                tags_conditions.append(and_(*t_combined))
+
+                        stmt = stmt.where(or_(*tags_conditions))
+                    """
+                    # 4. Apply the limit and execute the query.
+                    to_upload = db.scalars(stmt.limit(pend_tasks_num)).all()
+                    print(to_upload, node.name, pend_tasks_num)
+
+                    if not to_upload:
                         db.commit()
-                    except Exception as e:
-                        log.exception(e)
-                        log.info("TASK_FAILED_REPORTING")
-                        db.rollback()
-                        log.info(e)
-                        continue
-
-                    if force_push or force_push_push:
-                        # Submit appropriate tasks to node
-                        submitted = node_submit_task(task.id, node.id)
+                        log.info("nothing to upload? How? o_O")
+                        return False
+                    # Submit appropriate tasks to node
+                    log.debug("going to upload %d tasks to node %s", pend_tasks_num, node.name)
+                    for task in to_upload:
+                        submitted = node_submit_task(task.id, node.id, task.main_task_id)
                         if submitted:
-                            if node.name == "master":
-                                main_db.set_status(t.id, TASK_RUNNING)
+                            if node.name == main_server_name:
+                                main_db.set_status(task.main_task_id, TASK_RUNNING)
                             else:
-                                main_db.set_status(t.id, TASK_DISTRIBUTED)
+                                main_db.set_status(task.main_task_id, TASK_DISTRIBUTED)
+                        else:
+                            log.info("something is wrong with submission of task: %d", task.id)
+                            db.delete(task)
+                            db.commit()
                         limit += 1
-                        if limit == pend_tasks_num or limit == len(main_db_tasks):
+                        if limit == pend_tasks_num:
                             db.commit()
-                            log.info("Pushed all tasks")
                             return True
-
-                # Only get tasks that have not been pushed yet.
-                q = db.query(Task).filter(or_(Task.node_id==None, Task.task_id==None), Task.finished==False)
-                if q is None:
-                    db.commit()
-                    return True
-                # Order by task priority and task id.
-                q = q.order_by(-Task.priority, Task.main_task_id)
-                # if we have node set in options push
-                if reporting_conf.distributed.enable_tags:
-                    # Create filter query from tasks in ta
-                    tags = [getattr(Task, "tags") == ""]
-                    for tg in SERVER_TAGS[node.name]:
-                        if len(tg.split(",")) == 1:
-                            tags.append(getattr(Task, "tags") == (tg + ","))
-                        else:
-                            tg = tg.split(",")
-                            # ie. LIKE "%,%,%,"
-                            t_combined = [getattr(Task, "tags").like("%s" % ("%," * len(tg)))]
-                            for tag in tg:
-                                t_combined.append(getattr(Task, "tags").like("%%%s%%" % (tag + ",")))
-                            tags.append(and_(*t_combined))
-                    # Filter by available tags
-                    q = q.filter(or_(*tags))
-                to_upload = q.limit(pend_tasks_num).all()
-                if not to_upload:
-                    db.commit()
-                    log.info("nothing to upload? How? o_O")
-                    return True
-                # Submit appropriate tasks to node
-                log.debug("going to upload {} tasks to node {}".format(pend_tasks_num, node.name))
-                for task in to_upload:
-                    submitted = node_submit_task(task.id, node.id)
-                    if submitted:
-                        if node.name == "master":
-                            main_db.set_status(task.main_task_id, TASK_RUNNING)
-                        else:
-                            main_db.set_status(task.main_task_id, TASK_DISTRIBUTED)
-                    else:
-                        print("something is wrong with submission of task: {}".format(task.id))
-                        db.delete(task)
-                        db.commit()
-                    limit += 1
-                    if limit == pend_tasks_num:
-                        db.commit()
-                        return True
         db.commit()
         return True
 
     def load_vm_tags(self, db, node_id, node_name):
+        """
+        Load virtual machine tags for a specific node and store them in the global SERVER_TAGS dictionary.
+
+        Args:
+            db (Session): The database session to query the machines.
+            node_id (int): The ID of the node to load tags for.
+            node_name (str): The name of the node to load tags for.
+
+        Returns:
+            None
+        """
         global SERVER_TAGS
         # Get available node tags
-        machines = db.query(Machine).filter_by(node_id=node_id).all()
+        machines = db.scalars(select(Machine).where(Machine.node_id == node_id))
+        # Todo need all?
 
         # Get available tag combinations
         ta = set()
         for m in machines:
             for i in range(1, len(m.tags) + 1):
                 for tag in combinations(m.tags, i):
-                    ta.add(','.join(tag))
+                    ta.add(",".join(tag))
         SERVER_TAGS[node_name] = list(ta)
 
     def run(self):
-        global main_db
-        global retrieve
-        global STATUSES
-        MINIMUMQUEUE = dict()
+        global retrieve, STATUSES
+        MINIMUMQUEUE = {}
 
         # handle another user case,
         # when master used to only store data and not process samples
 
         db = session()
-        if reporting_conf.distributed.master_storage_only == "no":
-            master = db.query(Node).filter_by(name="master").first()
+        master_storage_only = False
+        if not dist_conf.distributed.master_storage_only:
+            stmt1 = select(Node.id, Node.name, Node.url, Node.apikey).where(Node.name == main_server_name)
+            master = db.stelar(stmt1)
             if master is None:
                 master_storage_only = True
-            elif db.query(Machine).filter_by(node_id=master.id).count() == 0:
+            elif db.scalar(select(func.count(Machine.id)).where(Machine.node_id == master.id)) == 0:
                 master_storage_only = True
         else:
             master_storage_only = True
         db.close()
 
-        #MINIMUMQUEUE but per Node depending of number vms
-        for node in db.query(Node).filter_by(enabled=True).all():
-            MINIMUMQUEUE[node.name] = db.query(Machine).filter_by(node_id=node.id).count()
+        # MINIMUMQUEUE but per Node depending of number vms
+        nodes = db.scalars(select(Node).where(Node.enabled.is_(True)))
+        for node in nodes:
+            MINIMUMQUEUE[node.name] = db.scalar(select(func.count(Machine.id)).where(Machine.node_id == node.id))
             ID2NAME[node.id] = node.name
             self.load_vm_tags(db, node.id, node.name)
 
         db.commit()
         statuses = {}
         while True:
-
-
             # HACK: This exception handling here is a big hack as well as db should check if the
             # there is any issue with the current session (expired or database is down.).
             try:
-                # Request a status update on all Cuckoo nodes.
-                for node in db.query(Node).filter_by(enabled=True).all():
-                    status = node_status(node.url, node.name, node.ht_user, node.ht_pass)
+                # Remove disabled nodes
+                nodes = db.scalars(select(Node).where(Node.enabled.is_(False)))
+
+                for node in nodes or []:
+                    if node.name in STATUSES:
+                        STATUSES.pop(node.name)
+
+                # Request a status update on all CAPE nodes.
+                nodes = db.scalars(select(Node).where(Node.enabled.is_(True)))
+                for node in nodes:
+                    status = node_status(node.url, node.name, node.apikey)
                     if not status:
                         failed_count.setdefault(node.name, 0)
                         failed_count[node.name] += 1
                         # This will declare worker as dead after X failed connections checks
                         if failed_count[node.name] == dead_count:
-                            log.info("[-] {} dead".format(node.name))
-                            #node.enabled = False
+                            log.info("[-] %s dead", node.name)
+                            # node.enabled = False
                             db.commit()
-                            #STATUSES[node.name]["enabled"] = False
+                            if node.name in STATUSES:
+                                STATUSES.pop(node.name)
                         continue
                     failed_count[node.name] = 0
                     log.info("Status.. %s -> %s", node.name, status["tasks"])
@@ -823,20 +1570,32 @@ def run(self):
                     statuses[node.name]["enabled"] = True
                     STATUSES = statuses
                     try:
-                        #first submit tasks with specified node
-                        res = self.submit_tasks(node.name, MINIMUMQUEUE[node.name], options_like="node={}".format(node.name), force_push_push=True, db=db)
+                        # first submit tasks with specified node
+                        res = self.submit_tasks(
+                            node.name,
+                            MINIMUMQUEUE[node.name],
+                            options_like=f"node={node.name}",
+                            force_push_push=True,
+                            db=db,
+                        )
+                        # We return False if nothing uploaded to cicle the nodes in case we have tags related tasks
                         if not res:
                             continue
                         # Balance the tasks, works fine if no tags are set
-
-                        node_name = min(STATUSES, key=lambda k: STATUSES[k]["tasks"]["completed"] + STATUSES[k]["tasks"]["pending"] + STATUSES[k]["tasks"]["running"])
+                        node_name = min(
+                            STATUSES,
+                            key=lambda k: STATUSES[k]["tasks"]["completed"]
+                            + STATUSES[k]["tasks"]["pending"]
+                            + STATUSES[k]["tasks"]["running"],
+                        )
                         if node_name != node.name:
-                            node = db.query(Node).filter_by(name=node_name).first()
-
-                        pend_tasks_num = MINIMUMQUEUE[node.name] - (STATUSES[node.name]["tasks"]["pending"] + STATUSES[node.name]["tasks"]["running"])
+                            node = db.scalar(select(Node).where(Node.name == node_name))
+                        pend_tasks_num = MINIMUMQUEUE[node.name] - (
+                            STATUSES[node.name]["tasks"]["pending"] + STATUSES[node.name]["tasks"]["running"]
+                        )
                     except KeyError:
                         # servers hotplug
-                        MINIMUMQUEUE[node.name] = db.query(Machine).filter_by(node_id=node.id).count()
+                        MINIMUMQUEUE[node.name] = db.scalar(select(func.count(Machine.id)).where(Machine.node_id == node.id))
                         continue
                     if pend_tasks_num <= 0:
                         continue
@@ -848,15 +1607,19 @@ def run(self):
                         if not res:
                             continue
 
-                    elif statuses.get("master", {}).get("tasks", {}).get("pending", 0) > MINIMUMQUEUE.get("master", 0) and status["tasks"]["pending"] < MINIMUMQUEUE[node.name]:
+                    elif (
+                        statuses.get(main_server_name, {}).get("tasks", {}).get("pending", 0)
+                        > MINIMUMQUEUE.get(main_server_name, 0)
+                        and status["tasks"]["pending"] < MINIMUMQUEUE[node.name]
+                    ):
                         res = self.submit_tasks(node.name, pend_tasks_num, db=db)
                         if not res:
                             continue
                 db.commit()
             except Exception as e:
-                log.error("Got an exception when trying to check nodes status and submit tasks: {}.".format(e), exc_info=True)
+                log.exception("Got an exception when trying to check nodes status and submit tasks: %s.", str(e))
 
-                #ToDo hard test this rollback, this normally only happens on db restart and similar
+                # ToDo hard test this rollback, this normally only happens on db restart and similar
                 db.rollback()
             time.sleep(INTERVAL)
 
@@ -864,6 +1627,17 @@ def run(self):
 
 
 def output_json(data, code, headers=None):
+    """
+    Create a JSON response with the given data, HTTP status code, and optional headers.
+
+    Args:
+        data (dict): The data to be serialized to JSON.
+        code (int): The HTTP status code for the response.
+        headers (dict, optional): Additional headers to include in the response. Defaults to None.
+
+    Returns:
+        Response: A Flask response object with the JSON data and specified headers.
+    """
     resp = make_response(json.dumps(data), code)
     resp.headers.extend(headers or {})
     return resp
@@ -874,70 +1648,122 @@ def __init__(self, *args, **kwargs):
         RestResource.__init__(self, *args, **kwargs)
 
         self._parser = reqparse.RequestParser()
-        self._parser.add_argument("name", type=str)
-        self._parser.add_argument("url", type=str)
-        self._parser.add_argument("ht_user", type=str, default="")
-        self._parser.add_argument("ht_pass", type=str, default="")
-        self._parser.add_argument("enabled", type=distutils.util.strtobool, default=None)
+        self._parser.add_argument("name", type=str, location="form")
+        self._parser.add_argument("url", type=str, location="form")
+        self._parser.add_argument("apikey", type=str, default="", location="form")
+        self._parser.add_argument("exitnodes", type=distutils.util.strtobool, default=None, location="form")
+        self._parser.add_argument("enabled", type=distutils.util.strtobool, default=None, location="form")
 
 
 class NodeRootApi(NodeBaseApi):
     def get(self):
         nodes = {}
         db = session()
-        for node in db.query(Node).all():
-            machines = []
-            for machine in node.machines.all():
-                machines.append(dict(name=machine.name, platform=machine.platform, tags=machine.tags,))
-
-            nodes[node.name] = dict(name=node.name, url=node.url, machines=machines, enabled=node.enabled,)
+        for node in db.scalars(select(Node)):
+            machines = [
+                dict(
+                    name=machine.name,
+                    platform=machine.platform,
+                    tags=machine.tags,
+                )
+                for machine in node.machines.all()
+            ]
+
+            nodes[node.name] = dict(
+                name=node.name,
+                url=node.url,
+                machines=machines,
+                enabled=node.enabled,
+            )
         db.close()
         return dict(nodes=nodes)
 
     def post(self):
         db = session()
         args = self._parser.parse_args()
-        node = Node(name=args["name"], url=args["url"], ht_user=args["ht_user"], ht_pass=args["ht_pass"])
-
-        if db.query(Node).filter_by(name=args["name"]).first():
-            return dict(success=False, message="Node called %s already exists" % args["name"])
+        node_exist = False
+        # On autoscaling we might get the same name but different IP for server. Kinda PUT friendly POST
+        node = db.scalar(select(Node).where(Node.name == args["name"]))
+        if node:
+            if node.url == args["url"]:
+                return dict(success=False, message=f"Node called {args['name']} already exists")
+            else:
+                node.url = args["url"]
+        else:
+            node = Node(name=args["name"], url=args["url"], apikey=args["apikey"])
 
         machines = []
-        for machine in node_list_machines(args["url"], args["ht_user"], args["ht_pass"]):
-            machines.append(dict(name=machine.name, platform=machine.platform, tags=machine.tags,))
+        for machine in node_list_machines(args["url"], args["apikey"]):
+            machines.append(dict(name=machine.name, platform=machine.platform, tags=machine.tags))
             node.machines.append(machine)
             db.add(machine)
 
-        db.add(node)
+        exitnodes = []
+        for exitnode in node_list_exitnodes(args["url"], args.get("apikey")):
+            exitnode_db = db.scalar(select(ExitNodes).where(ExitNodes.name == exitnode))
+            if exitnode_db:
+                exitnode = exitnode_db
+            else:
+                exitnode = ExitNodes(name=exitnode)
+            exitnodes.append(dict(name=exitnode.name))
+            node.exitnodes.append(exitnode)
+            db.add(exitnode)
+
+        if args.get("enabled"):
+            node.enabled = bool(args["enabled"])
+
+        if not node_exist:
+            db.add(node)
         db.commit()
         db.close()
-        return dict(name=args["name"], machines=machines)
+
+        if NFS_FETCH:
+            # Add entry to /etc/fstab, create folder and mount server
+            hostname = urlparse(args["url"]).netloc.split(":")[0]
+            if hostname != main_server_name:
+                send_socket_command(dist_conf.NFS.fstab_socket, "add_entry", *[hostname, args["name"]])
+
+        return dict(name=args["name"], machines=machines, exitnodes=exitnodes)
 
 
 class NodeApi(NodeBaseApi):
     def get(self, name):
         db = session()
-        node = db.query(Node).filter_by(name=name).first()
+        node = db.scalar(select(Node).where(Node.name == name))
         db.close()
         return dict(name=node.name, url=node.url)
 
     def put(self, name):
         db = session()
         args = self._parser.parse_args()
-        node = db.query(Node).filter_by(name=name).first()
+        node = db.scalar(select(Node).where(Node.name == name))
 
         if not node:
             return dict(error=True, error_value="Node doesn't exist")
 
         for k, v in args.items():
-            if v is not None:
-                setattr(node, k, v)
+            if k == "exitnodes":
+                exitnodes = []
+                for exitnode in node_list_exitnodes(node.url, node.apikey):
+                    exitnode_db = db.scalar(select(ExitNodes).where(ExitNodes.name == exitnode))
+                    if exitnode_db:
+                        exitnode = exitnode_db
+                    else:
+                        exitnode = ExitNodes(name=exitnode)
+                    exitnodes.append(dict(name=exitnode.name))
+                    node.exitnodes.append(exitnode)
+                    db.add(exitnode)
+                db.add(node)
+            else:
+                if v is not None:
+                    setattr(node, k, v)
         db.commit()
-        return dict(error=False, error_value="Successfully modified node: %s" % node.name)
+        db.close()
+        return dict(error=False, error_value=f"Successfully modified node: {name}")
 
     def delete(self, name):
         db = session()
-        node = db.query(Node).filter_by(name=name).first()
+        node = db.scalar(select(Node).where(Node.name == name))
         node.enabled = False
         db.commit()
         db.close()
@@ -948,26 +1774,27 @@ def __init__(self, *args, **kwargs):
         RestResource.__init__(self, *args, **kwargs)
 
         self._parser = reqparse.RequestParser()
-        self._parser.add_argument("package", type=str, default="")
-        self._parser.add_argument("timeout", type=int, default=0)
-        self._parser.add_argument("priority", type=int, default=1)
-        self._parser.add_argument("options", type=str, default="")
-        self._parser.add_argument("machine", type=str, default="")
-        self._parser.add_argument("platform", type=str, default="windows")
-        self._parser.add_argument("tags", type=str, default="")
-        self._parser.add_argument("custom", type=str, default="")
-        self._parser.add_argument("memory", type=str, default="0")
-        self._parser.add_argument("clock", type=int)
-        self._parser.add_argument("enforce_timeout", type=bool, default=False)
+        self._parser.add_argument("package", type=str, default="", location="form")
+        self._parser.add_argument("timeout", type=int, default=0, location="form")
+        self._parser.add_argument("priority", type=int, default=1, location="form")
+        self._parser.add_argument("options", type=str, default="", location="form")
+        self._parser.add_argument("machine", type=str, default="", location="form")
+        self._parser.add_argument("platform", type=str, default="windows", location="form")
+        self._parser.add_argument("tags", type=str, default="", location="form")
+        self._parser.add_argument("custom", type=str, default="", location="form")
+        self._parser.add_argument("memory", type=str, default="0", location="form")
+        self._parser.add_argument("clock", type=int, location="form")
+        self._parser.add_argument("enforce_timeout", type=bool, default=False, location="form")
 
 
 class TaskInfo(RestResource):
     def get(self, main_task_id):
         response = {"status": 0}
         db = session()
-        task_db = db.query(Task).filter_by(main_task_id=main_task_id).first()
+        task_db = db.scalar(select(Task).where(Task.main_task_id == main_task_id))
         if task_db and task_db.node_id:
-            node = db.query(Node).filter_by(id=task_db.node_id).first()
+            node_stmt = select(Node.id, Node.name, Node.url, Node.apikey, Node.enabled).where(Node.id == task_db.node_id)
+            node = db.scalar(node_stmt)
             response = {"status": 1, "task_id": task_db.task_id, "url": node.url, "name": node.name}
         else:
             response = {"status": "pending"}
@@ -977,17 +1804,21 @@ def get(self, main_task_id):
 
 class StatusRootApi(RestResource):
     def get(self):
-        null = None
+        # null = None
         db = session()
-        tasks = db.query(Task).filter(Task.node_id != null)
-
-        tasks = dict(
-            processing=tasks.filter_by(finished=False).count(),
-            processed=tasks.filter_by(finished=True).count(),
-            pending=db.query(Task).filter_by(node_id=None).count(),
-        )
-        db.close()
-        return jsonify({"nodes": STATUSES, "tasks": tasks})
+        unified_counts = db.execute(
+            select(
+                func.count(case((and_(Task.node_id.is_not(None), Task.finished.is_(False)), Task.id))).label("processing"),
+                func.count(case((and_(Task.node_id.is_not(None), Task.finished.is_(True)), Task.id))).label("processed"),
+                func.count(case((Task.node_id.is_(None), Task.id))).label("pending"),
+            )
+        ).first()
+        tasks_counts = {
+            "processing": unified_counts.processing,
+            "processed": unified_counts.processed,
+            "pending": unified_counts.pending,
+        }
+        return jsonify({"nodes": STATUSES, "tasks": tasks_counts})
 
 
 class DistRestApi(RestApi):
@@ -1000,30 +1831,30 @@ def __init__(self, *args, **kwargs):
 
 def update_machine_table(node_name):
     db = session()
-    node = db.query(Node).filter_by(name=node_name).first()
+    node = db.scalar(select(Node).where(Node.name == node_name))
 
     # get new vms
-    new_machines = node_list_machines(node.url, node.ht_user, node.ht_pass)
+    new_machines = node_list_machines(node.url, node.apikey)
 
     # delete all old vms
-    _ = db.query(Machine).filter_by(node_id=node.id).delete()
+    db.execute(delete(Machine).where(Machine.node_id == node.id))
 
-    log.info("Available VM's on %s:" % node_name)
+    log.info("Available VM's on %s:", node_name)
     # replace with new vms
     for machine in new_machines:
-        log.info("-->\t%s" % machine.name)
+        log.info("-->\t%s", machine.name)
         node.machines.append(machine)
         db.add(machine)
 
     db.commit()
 
-    log.info("Updated the machine table for node: %s" % node_name)
+    log.info("Updated the machine table for node: %s", node_name)
 
 
 def delete_vm_on_node(node_name, vm_name):
     db = session()
-    node = db.query(Node).filter_by(name=node_name).first()
-    vm = db.query(Machine).filter_by(name=vm_name, node_id=node.id).first()
+    node = db.scalar(select(Node).where(Node.name == node_name))
+    vm = db.scalar(select(Machine).where(Machine.name == vm_name, Machine.node_id == node.id))
 
     if not vm:
         log.error("The selected VM does not exist")
@@ -1033,23 +1864,41 @@ def delete_vm_on_node(node_name, vm_name):
 
     if status:
         # delete vm in dist db
-        vm = db.query(Machine).filter_by(name=vm_name, node_id=node.id).delete()
+        db.execute(delete(Machine).where(Machine.name == vm_name, Machine.node_id == node.id))
         db.commit()
     db.close()
 
 
 def node_enabled(node_name, status):
     db = session()
-    node = db.query(Node).filter_by(name=node_name).first()
+    node = db.scalar(select(Node).where(Node.name == node_name))
     node.enabled = status
     db.commit()
     db.close()
 
+
 def cron_cleaner(clean_x_hours=False):
-    """ Method that runs forever """
+    """
+    Method that runs forever to clean up tasks.
+
+    Args:
+        clean_x_hours (bool or int, optional): If provided, only clean up tasks that were
+        notified and created within the last `clean_x_hours` hours.
+
+    The method performs the following steps:
+    1. Checks if the cleaner is already running by looking for a PID file at "/tmp/dist_cleaner.pid".
+    2. If the cleaner is not running, it creates a PID file to indicate that it is running.
+    3. Connects to the database and retrieves all nodes.
+    4. Depending on the `clean_x_hours` argument, it retrieves tasks that need to be cleaned up.
+    5. Marks the retrieved tasks as deleted and groups them by node.
+    6. Deletes the tasks from the nodes.
+    7. Commits the changes to the database and closes the connection.
+    8. Deletes the PID file to indicate that the cleaner has finished running.
+    """
+    """Method that runs forever"""
 
     # Check if we are not runned
-    if os.path.exists("/tmp/dist_cleaner.pid"):
+    if path_exists("/tmp/dist_cleaner.pid"):
         log.info("we running")
         sys.exit()
 
@@ -1058,23 +1907,27 @@ def cron_cleaner(clean_x_hours=False):
     pid.close()
 
     db = session()
-    nodes = dict()
-    details = dict()
+    nodes = {}
+    details = {}
 
-    for node in db.query(Node).all():
+    for node in db.scalars(select(Node)):
         nodes.setdefault(node.id, node)
 
     # Allow force cleanup notificated but for some reason not deleted even when it set to deleted
     if clean_x_hours:
-        tasks = db.query(Task).filter(Task.notificated==True, Task.clock >= datetime.now()-timedelta(hours=clean_x_hours)).order_by(Task.id.desc()).all()
+        stmt = (
+            select(Task)
+            .where(Task.notificated.is_(True), Task.clock >= datetime.now() - timedelta(hours=clean_x_hours))
+            .order_by(Task.id.desc())
+        )
     else:
-        tasks = db.query(Task).filter_by(notificated=True, deleted=False).order_by(Task.id.desc()).all()
+        stmt = select(Task).where(Task.notificated.is_(True), Task.deleted.is_(False)).order_by(Task.id.desc())
+    tasks = db.scalars(stmt)
     if tasks is not None:
         for task in tasks:
             node = nodes[task.node_id]
             if node:
-                details.setdefault(node.id, list())
-                details[node.id].append(str(task.task_id))
+                details.setdefault(node.id, []).append(str(task.task_id))
                 task.deleted = True
 
         for node in details:
@@ -1086,7 +1939,7 @@ def cron_cleaner(clean_x_hours=False):
 
     db.commit()
     db.close()
-    os.remove("/tmp/dist_cleaner.pid")
+    path_delete("/tmp/dist_cleaner.pid")
 
 
 def create_app(database_connection):
@@ -1095,7 +1948,7 @@ def create_app(database_connection):
     app = Flask("Distributed CAPE")
     # app.config["SQLALCHEMY_DATABASE_URI"] = database_connection
     app.config["SQLALCHEMY_TRACK_MODIFICATIONS"] = True
-    app.config["SQLALCHEMY_POOL_SIZE"] = int(reporting_conf.distributed.dist_threads) + 5
+    app.config["SQLALCHEMY_POOL_SIZE"] = int(dist_conf.distributed.dist_threads) + 5
     app.config["SECRET_KEY"] = os.urandom(32)
     restapi = DistRestApi(app)
     restapi.add_resource(NodeRootApi, "/node")
@@ -1110,8 +1963,13 @@ def init_logging(debug=False):
     formatter = logging.Formatter("%(asctime)s %(levelname)s:%(module)s:%(threadName)s - %(message)s")
     log = logging.getLogger()
 
-    if not os.path.exists(os.path.join(CUCKOO_ROOT, "log")):
-        os.makedirs(os.path.join(CUCKOO_ROOT, "log"))
+    for h in log.handlers[:]:
+        if isinstance(h, logging.StreamHandler) and h.stream == sys.stderr:
+            log.removeHandler(h)
+            h.close()
+
+    if not path_exists(os.path.join(CUCKOO_ROOT, "log")):
+        path_mkdir(os.path.join(CUCKOO_ROOT, "log"))
     fh = handlers.TimedRotatingFileHandler(os.path.join(CUCKOO_ROOT, "log", "dist.log"), when="midnight", backupCount=10)
     fh.setFormatter(formatter)
     log.addHandler(fh)
@@ -1127,6 +1985,7 @@ def init_logging(debug=False):
 
     return log
 
+
 if __name__ == "__main__":
     p = argparse.ArgumentParser()
     p.add_argument("host", nargs="?", default="0.0.0.0", help="Host to listen on")
@@ -1138,8 +1997,19 @@ def init_logging(debug=False):
     p.add_argument("--disable", action="store_true", help="Disable Node provided in --node")
     p.add_argument("--enable", action="store_true", help="Enable Node provided in --node")
     p.add_argument("--clean-workers", action="store_true", help="Delete reported and notificated tasks from workers")
-    p.add_argument("-ec", "--enable-clean", action="store_true", help="Enable delete tasks from nodes, also will remove tasks submited by humands and not dist")
-    p.add_argument("-ef", "--enable-failed-clean", action="store_true", default=False, help="Enable delete failed tasks from nodes, also will remove tasks submited by humands and not dist")
+    p.add_argument(
+        "-ec",
+        "--enable-clean",
+        action="store_true",
+        help="Enable delete tasks from nodes, also will remove tasks submited by humands and not dist",
+    )
+    p.add_argument(
+        "-ef",
+        "--enable-failed-clean",
+        action="store_true",
+        default=False,
+        help="Enable delete failed tasks from nodes, also will remove tasks submited by humands and not dist",
+    )
     p.add_argument("-fr", "--force-reported", action="store", help="change report to reported")
     p.add_argument(
         "-ch",
@@ -1152,16 +2022,18 @@ def init_logging(debug=False):
 
     args = p.parse_args()
     log = init_logging(args.debug)
+    init_database()
 
     if args.enable_clean:
         cron_cleaner(args.clean_hours)
-        sys.exit()
+        # sys.exit()
 
     if args.force_reported:
-        # set completed_on time
-        main_db.set_status(args.force_reported, TASK_DISTRIBUTED_COMPLETED)
-        # set reported time
-        main_db.set_status(args.force_reported, TASK_REPORTED)
+        with main_db.session.begin():
+            # set completed_on time
+            main_db.set_status(args.force_reported, TASK_DISTRIBUTED_COMPLETED)
+            # set reported time
+            main_db.set_status(args.force_reported, TASK_REPORTED)
         sys.exit()
 
     delete_enabled = args.enable_clean
@@ -1178,27 +2050,30 @@ def init_logging(debug=False):
         sys.exit()
 
     else:
-        app = create_app(database_connection=reporting_conf.distributed.db)
+        app = create_app(database_connection=dist_conf.distributed.db)
 
-        t = StatusThread()
+        t = StatusThread(name="StatusThread")
         t.daemon = True
         t.start()
 
-        retrieve = Retriever()
+        retrieve = Retriever(name="Retriever")
         retrieve.daemon = True
         retrieve.start()
+        # ret = Retriever()
+        # ret.run()
 
         app.run(host=args.host, port=args.port, debug=args.debug, use_reloader=False)
 
 else:
-    app = create_app(database_connection=reporting_conf.distributed.db)
+    init_database(exists_ok=True)
+    app = create_app(database_connection=dist_conf.distributed.db)
 
     # this allows run it with gunicorn/uwsgi
     log = init_logging(True)
-    retrieve = Retriever()
+    retrieve = Retriever(name="Retriever")
     retrieve.daemon = True
     retrieve.start()
 
-    t = StatusThread()
+    t = StatusThread(name="StatusThread")
     t.daemon = True
     t.start()
diff --git a/utils/down.py b/utils/down.py
new file mode 100644
index 00000000000..ebea770de3d
--- /dev/null
+++ b/utils/down.py
@@ -0,0 +1,14 @@
+#!/usr/bin/python
+
+import os
+import subprocess
+
+if __name__ == "__main__":
+    config_name = os.environ.get("config")
+    local_ip = os.environ.get("ifconfig_local")
+    vpn_gateway = os.environ.get("route_vpn_gateway")
+    dev = os.environ.get("dev")
+    ip_table = dev[3:]
+    print("ip rule del from {} table {}".format(local_ip, ip_table))
+    print("ip route del default via {} dev {} table {}".format(vpn_gateway, dev, ip_table))
+    subprocess.call(["ip", "rule", "del", "from", local_ip, "table", ip_table])
diff --git a/utils/fstab.py b/utils/fstab.py
new file mode 100644
index 00000000000..9daa139bb61
--- /dev/null
+++ b/utils/fstab.py
@@ -0,0 +1,197 @@
+#!/usr/bin/env python
+# Copyright (C) 2014-2016 Cuckoo Foundation.
+# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
+# See the file 'docs/LICENSE' for copying permission.
+
+# This is auxiliar module for dist.py to add entries to /etc/fstab for new instances
+
+import argparse
+import errno
+import grp
+import json
+import logging.handlers
+import os
+import signal
+import socket
+import stat
+import subprocess
+import sys
+import tempfile
+import threading
+
+if sys.version_info[:2] < (3, 8):
+    sys.exit("You are running an incompatible version of Python, please use >= 3.8")
+
+CUCKOO_ROOT = os.path.join(os.path.abspath(os.path.dirname(__file__)), "..")
+sys.path.append(CUCKOO_ROOT)
+
+from lib.cuckoo.common.config import Config
+from lib.cuckoo.common.path_utils import path_delete, path_exists, path_mkdir, path_mount_point, path_read_file, path_write_file
+
+dist_conf = Config("distributed")
+log = logging.getLogger(__name__)
+unixpath = tempfile.NamedTemporaryFile(mode="w+", delete=True)  # tempfile.mktemp()
+lock = threading.Lock()
+
+username = False
+log = logging.getLogger("cape-fstab")
+formatter = logging.Formatter("%(asctime)s [%(name)s] %(levelname)s: %(message)s")
+ch = logging.StreamHandler()
+ch.setFormatter(formatter)
+log.addHandler(ch)
+log.setLevel(logging.INFO)
+
+
+def add_nfs_entry(hostname: str, worker_folder: str):
+    worker_path = os.path.abspath(os.path.join(CUCKOO_ROOT, dist_conf.NFS.mount_folder, worker_folder))
+    if not path_exists(worker_path):
+        path_mkdir(worker_path, parent=True, mode=0o755)
+
+    if path_mount_point(worker_path):
+        return
+
+    with lock:
+        fstab = path_read_file("/etc/fstab", mode="text").split("\n")
+        # new line strip
+        if fstab[-1] == "":
+            fstab = fstab[:-1]
+        if any(hostname in entry for entry in fstab if not entry.startswith("#")):
+            return
+
+        # hostname:/opt/CAPEv2 /opt/CAPEv2/2 nfs, auto,users,nofail,noatime,nolock,intr,tcp,actimeo=1800, 0 0
+        fstab.append(f"{hostname}:/opt/CAPEv2 {worker_path} nfs, auto,user,users,nofail,noatime,nolock,intr,tcp,actimeo=1800, 0 0")
+        _ = path_write_file("/etc/fstab", "\n".join(fstab), mode="text")
+
+        try:
+            subprocess.check_output(["mount", worker_path])
+        except Exception as e:
+            print("add_nfs_entry error on mount: %s", str(e))
+
+
+def remove_nfs_entry(hostname: str):
+    worker_path = os.path.join(CUCKOO_ROOT, dist_conf.NFS.mount_folder, hostname)
+
+    with lock:
+        fstab = path_read_file("/etc/fstab", mode="text").split("\n")
+        for entry in fstab:
+            if entry.startswith(hostname) and " nfs, " in entry:
+                fstab.remove(entry)
+                _ = path_write_file("/etc/fstab", "\n".join(fstab), mode="text")
+                break
+        try:
+            subprocess.check_output(["umount", worker_path])
+        except Exception as e:
+            print("remove_nfs_entry error on umount: %s", str(e))
+
+
+handlers = {
+    "add_entry": add_nfs_entry,
+    "remove_entry": remove_nfs_entry,
+}
+
+if __name__ == "__main__":
+    parser = argparse.ArgumentParser()
+    parser.add_argument("socket", nargs="?", default="/tmp/cape-fstab", help="Unix socket path for fstab worker")
+    parser.add_argument("-g", "--group", default="cape", help="Unix socket group")
+    parser.add_argument("-v", "--verbose", action="store_true", help="Enable verbose logging")
+    settings = parser.parse_args()
+
+    if settings.verbose:
+        # Verbose logging is not only controlled by the level. Some INFO logs are also
+        # conditional (like here).
+        log.setLevel(logging.DEBUG)
+        log.info("Verbose logging enabled")
+
+    if os.getuid():
+        sys.exit("This utility is supposed to be ran as root.")
+
+    if path_exists(settings.socket):
+        path_delete(settings.socket)
+
+    server = socket.socket(socket.AF_UNIX, socket.SOCK_DGRAM)
+    server.bind(settings.socket)
+
+    # Provide the correct file ownership and permission so CAPE can use it
+    # from an unprivileged process, based on Sean Whalen's routetor.
+    try:
+        gr = grp.getgrnam(settings.group)
+    except KeyError:
+        sys.exit(
+            "The group (`%s`) does not exist. Please define the group / user "
+            "through which Cuckoo will connect to the rooter, e.g., "
+            "./utils/fstab.py -g myuser" % settings.group
+        )
+
+    # global username
+    username = settings.group
+    # 0 instead of os.getuid() can give Permission denied
+    os.chown(settings.socket, os.getuid(), gr.gr_gid)
+    os.chmod(settings.socket, stat.S_IRUSR | stat.S_IWUSR | stat.S_IRGRP | stat.S_IWGRP)
+
+    # Simple object to allow a signal handler to stop the fstab loop
+
+    class Run:
+        def __init__(self):
+            self.run = True
+
+    do = Run()
+
+    def handle_sigterm(sig, f):
+        do.run = False
+        server.shutdown(socket.SHUT_RDWR)
+        server.close()
+
+    signal.signal(signal.SIGTERM, handle_sigterm)
+
+    while do.run:
+        try:
+            command, addr = server.recvfrom(4096)
+        except socket.error as e:
+            if not do.run:
+                # When the signal handler shuts the server down, do.run is False and
+                # server.recvfrom raises an exception. Ignore that exception and exit.
+                break
+            if e.errno == errno.EINTR:
+                continue
+            raise e
+
+        try:
+            obj = json.loads(command)
+        except Exception:
+            log.info("Received invalid request: %r", command)
+            continue
+
+        command = obj.get("command")
+        args = obj.get("args", [])
+        kwargs = obj.get("kwargs", {})
+
+        if not isinstance(command, str) or command not in handlers:
+            log.warning("Received incorrect command: %r", command)
+            continue
+
+        if not isinstance(args, (tuple, list)):
+            log.warning("Invalid arguments type: %r", args)
+            continue
+
+        if not isinstance(kwargs, dict):
+            log.warning("Invalid keyword arguments: %r", kwargs)
+            continue
+
+        for arg in args + list(kwargs.keys()) + list(kwargs.values()):
+            if not isinstance(arg, str):
+                log.warning("Invalid argument type detected: %r (%s)", arg, type(arg))
+                break
+        else:
+            if settings.verbose:
+                log.info(
+                    "Processing command: %s %s %s", command, " ".join(args), " ".join("%s=%s" % (k, v) for k, v in kwargs.items())
+                )
+
+            error = None
+            output = None
+            try:
+                output = handlers[command](*args, **kwargs)
+            except Exception as e:
+                log.exception("Error executing command: %s", command)
+                error = str(e)
+            server.sendto(json.dumps({"output": output, "exception": error}).encode(), addr)
diff --git a/utils/linux_mktaps.sh b/utils/linux_mktaps.sh
deleted file mode 100644
index b5c575ae5c6..00000000000
--- a/utils/linux_mktaps.sh
+++ /dev/null
@@ -1,11 +0,0 @@
-#!/bin/bash
-#ex: armel_2 u64 u32 mips_3 mipsel ppc_2 sparc_2
-vms=(your_vm_list_goes_here)
-for vm in "${vms[@]}"
-do
-    :
-    sudo ip tuntap add dev tap_$vm mode tap user cape
-    sudo ip link set tap_$vm master br0
-    sudo ip link set dev tap_$vm up
-    sudo ip link set dev br0 up
-done
diff --git a/utils/listdump.py b/utils/listdump.py
deleted file mode 100644
index 9a897823573..00000000000
--- a/utils/listdump.py
+++ /dev/null
@@ -1,40 +0,0 @@
-#!/usr/bin/env python
-# Copyright (C) 2015 Optiv, Inc. (brad.spengler@optiv.com)
-# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
-# See the file 'docs/LICENSE' for copying permission.
-
-from __future__ import absolute_import
-from __future__ import print_function
-import os
-import sys
-import struct
-
-PAGE_EXECUTE_READWRITE = 0x40
-
-
-def main():
-    if len(sys.argv) != 2:
-        print("Usage: listdump.py <dump file>")
-        return None
-    try:
-        f = open(sys.argv[1], "rb")
-        while True:
-            data = f.read(24)
-            if data == "":
-                break
-            addr, size, mem_state, mem_type, mem_prot = struct.unpack("QIIII", data)
-            offset = f.tell()
-            extra = ""
-            if mem_prot == PAGE_EXECUTE_READWRITE:
-                extra += ", RWX"
-            if f.read(2) == "MZ":
-                extra += ", HAS PE"
-            print("0x%x: " % offset + "(0x%x" % addr + " -> " + "0x%x)" % (addr + size) + extra)
-            f.seek(size - 2, 1)
-    except:
-        print("Unable to open {0}.".format(sys.argv[1]))
-        return None
-
-
-if __name__ == "__main__":
-    main()
diff --git a/utils/machine.py b/utils/machine.py
deleted file mode 100644
index b10dd891239..00000000000
--- a/utils/machine.py
+++ /dev/null
@@ -1,100 +0,0 @@
-#!/usr/bin/env python
-# Copyright (C) 2010-2015 Cuckoo Foundation.
-# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
-# See the file 'docs/LICENSE' for copying permission.
-
-from __future__ import absolute_import
-import argparse
-import logging
-import os.path
-import sys
-
-sys.path.append(os.path.join(os.path.abspath(os.path.dirname(__file__)), ".."))
-
-from lib.cuckoo.common.config import Config
-from lib.cuckoo.common.constants import CUCKOO_ROOT
-from lib.cuckoo.core.database import Database
-
-
-def update_conf(machinery, args):
-    """Writes the new machine to the relevant configuration file."""
-    path = os.path.join(CUCKOO_ROOT, "conf", "%s.conf" % machinery)
-
-    lines = []
-    for line in open(path, "rb"):
-        line = line.strip()
-
-        if line.split("=")[0].strip() == "machines":
-            # If there are already one or more labels then append the new
-            # label to the list, otherwise make a new list.
-            if line.split("=", 1)[1].strip():
-                line += ", %s" % args.vmname
-            else:
-                line += " %s" % args.vmname
-
-        lines.append(line)
-
-    lines += [
-        "",
-        "[%s]" % args.vmname,
-        "label = %s" % args.vmname,
-        "platform = %s" % args.platform,
-        "ip = %s" % args.ip,
-    ]
-
-    if args.snapshot:
-        lines.append("snapshot = %s" % args.snapshot)
-
-    if args.interface:
-        lines.append("interface = %s" % args.interface)
-
-    if args.resultserver:
-        ip, port = args.resultserver.split(":")
-        lines.append("resultserver_ip = %s" % ip)
-        lines.append("resultserver_port = %s" % port)
-
-    if args.tags:
-        lines.append("tags = %s" % args.tags)
-
-    open(path, "wb").write("\n".join(lines))
-
-
-def main():
-    parser = argparse.ArgumentParser()
-    parser.add_argument("vmname", type=str, help="Name of the Virtual Machine.")
-    parser.add_argument("--debug", action="store_true", help="Debug log in case of errors.")
-    parser.add_argument("--add", action="store_true", help="Add a Virtual Machine.")
-    parser.add_argument("--ip", type=str, help="Static IP Address.")
-    parser.add_argument("--platform", type=str, default="windows", help="Guest Operating System.")
-    parser.add_argument("--tags", type=str, help="Tags for this Virtual Machine.")
-    parser.add_argument("--interface", type=str, help="Sniffer interface for this machine.")
-    parser.add_argument("--snapshot", type=str, help="Specific Virtual Machine Snapshot to use.")
-    parser.add_argument("--resultserver", type=str, help="IP:Port of the Result Server.")
-    args = parser.parse_args()
-
-    logging.basicConfig()
-    log = logging.getLogger()
-
-    if args.debug:
-        log.setLevel(logging.DEBUG)
-
-    db = Database()
-    conf = Config()
-
-    if args.resultserver:
-        resultserver_ip, resultserver_port = args.resultserver.split(":")
-    else:
-        resultserver_ip = conf.resultserver.ip
-        resultserver_port = conf.resultserver.port
-
-    if args.add:
-        db.add_machine(
-            args.vmname, args.vmname, args.ip, args.platform, args.tags, args.interface, args.snapshot, resultserver_ip, int(resultserver_port)
-        )
-        db.unlock_machine(args.vmname)
-
-        update_conf(conf.cuckoo.machinery, args)
-
-
-if __name__ == "__main__":
-    main()
diff --git a/utils/process.py b/utils/process.py
index a9d0cd4c768..63a55348657 100644
--- a/utils/process.py
+++ b/utils/process.py
@@ -2,292 +2,574 @@
 # Copyright (C) 2010-2015 Cuckoo Foundation.
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
-from __future__ import absolute_import
-import os
+import argparse
 import gc
-import sys
-import time
 import json
 import logging
-import argparse
-import signal
-import multiprocessing
+import os
 import platform
 import resource
+import signal
+import sys
+import time
+from contextlib import suppress
+
+try:
+    from setproctitle import getproctitle, setproctitle
+except ImportError:
+    sys.exit("Missed dependency. Run: poetry install")
 
-if sys.version_info[:2] < (3, 6):
-    sys.exit("You are running an incompatible version of Python, please use >= 3.6")
+if sys.version_info[:2] < (3, 8):
+    sys.exit("You are running an incompatible version of Python, please use >= 3.8")
 
 try:
     import pebble
 except ImportError:
-    sys.exit("Missed dependency: pip3 install Pebble")
+    sys.exit("Missed dependency. Run: poetry install")
 
 log = logging.getLogger()
 
 sys.path.append(os.path.join(os.path.abspath(os.path.dirname(__file__)), ".."))
+from concurrent.futures import TimeoutError
+
+from lib.cuckoo.common.cleaners_utils import free_space_monitor
 from lib.cuckoo.common.colors import red
 from lib.cuckoo.common.config import Config
 from lib.cuckoo.common.constants import CUCKOO_ROOT
-from lib.cuckoo.core.database import Database, Task, TASK_REPORTED, TASK_COMPLETED
-from lib.cuckoo.core.database import TASK_FAILED_PROCESSING
-from lib.cuckoo.core.plugins import GetFeeds, RunProcessing, RunSignatures
-from lib.cuckoo.core.plugins import RunReporting
-from lib.cuckoo.core.startup import init_modules, init_yara, ConsoleHandler
-from concurrent.futures import TimeoutError
+from lib.cuckoo.common.path_utils import path_delete, path_exists, path_mkdir
+from lib.cuckoo.common.utils import get_options
+from lib.cuckoo.core.database import (
+    TASK_COMPLETED,
+    TASK_FAILED_PROCESSING,
+    TASK_FAILED_REPORTING,
+    TASK_REPORTED,
+    Database,
+    Task,
+    init_database,
+)
+from lib.cuckoo.core.plugins import RunProcessing, RunReporting, RunSignatures
+from lib.cuckoo.core.startup import ConsoleHandler, check_linux_dist, init_modules
 
 cfg = Config()
+logconf = Config("logging")
 repconf = Config("reporting")
+db = Database()
+
 if repconf.mongodb.enabled:
     from bson.objectid import ObjectId
-    from pymongo import MongoClient
-    from pymongo.errors import ConnectionFailure
+
+    from dev_utils.mongodb import mongo_find, mongo_find_one
 
 if repconf.elasticsearchdb.enabled and not repconf.elasticsearchdb.searchonly:
-    from elasticsearch import Elasticsearch
+    from elasticsearch.exceptions import RequestError as ESRequestError
 
-    baseidx = repconf.elasticsearchdb.index
-    fullidx = baseidx + "-*"
-    es = Elasticsearch(hosts=[{"host": repconf.elasticsearchdb.host, "port": repconf.elasticsearchdb.port,}], timeout=60)
+    from dev_utils.elasticsearchdb import elastic_handler, get_analysis_index, get_query_by_info_id
+
+    es = elastic_handler
+
+check_linux_dist()
 
 pending_future_map = {}
 pending_task_id_map = {}
+original_proctitle = getproctitle()
+
 
 # https://stackoverflow.com/questions/41105733/limit-ram-usage-to-python-program
 def memory_limit(percentage: float = 0.8):
+    """
+    Sets a memory limit for the current process on Linux systems.
+
+    Args:
+        percentage (float): Percentage of the total system memory that is allowed to be used. Defaults to 0.8 (80%).
+
+    Returns:
+        None
+    """
     if platform.system() != "Linux":
-        print('Only works on linux!')
+        print("Only works on linux!")
         return
     _, hard = resource.getrlimit(resource.RLIMIT_AS)
-    resource.setrlimit(resource.RLIMIT_AS, (get_memory() * 1024 * percentage, hard))
+    resource.setrlimit(resource.RLIMIT_AS, (int(get_memory() * 1024 * percentage), hard))
+
 
 def get_memory():
-    with open('/proc/meminfo', 'r') as mem:
+    with open("/proc/meminfo", "r") as mem:
         free_memory = 0
         for i in mem:
             sline = i.split()
-            if str(sline[0]) == 'MemAvailable:':
+            if str(sline[0]) == "MemAvailable:":
                 free_memory = int(sline[1])
                 break
     return free_memory
 
-def process(target=None, copy_path=None, task=None, report=False, auto=False, capeproc=False, memory_debugging=False):
+
+def process(
+    target=None,
+    sample_sha256=None,
+    task=None,
+    report=False,
+    auto=False,
+    capeproc=False,
+    memory_debugging=False,
+    debug: bool = False,
+):
     # This is the results container. It's what will be used by all the
     # reporting modules to make it consumable by humans and machines.
     # It will contain all the results generated by every processing
     # module available. Its structure can be observed through the JSON
     # dump in the analysis' reports folder. (If jsondump is enabled.)
+
     task_dict = task.to_dict() or {}
     task_id = task_dict.get("id") or 0
+    # cluster mode
+    main_task_id = False
+    if "main_task_id" in task_dict.get("options", ""):
+        main_task_id = get_options(task_dict["options"]).get("main_task_id", 0)
+
+    # ToDo new logger here
+    per_analysis_handler = init_per_analysis_logging(tid=str(task_id), debug=debug)
+    set_formatter_fmt(task_id, main_task_id)
+    setproctitle(f"{original_proctitle} [Task {task_id}]")
     results = {"statistics": {"processing": [], "signatures": [], "reporting": []}}
     if memory_debugging:
         gc.collect()
-        log.info("[%s] (1) GC object counts: %d, %d", task_id, len(gc.get_objects()), len(gc.garbage))
+        log.info("(1) GC object counts: %d, %d", len(gc.get_objects()), len(gc.garbage))
     if memory_debugging:
         gc.collect()
-        log.info("[%s] (2) GC object counts: %d, %d", task_id, len(gc.get_objects()), len(gc.garbage))
-    RunProcessing(task=task_dict, results=results).run()
+        log.info("(2) GC object counts: %d, %d", len(gc.get_objects()), len(gc.garbage))
+    with db.session.begin():
+        RunProcessing(task=task_dict, results=results).run()
     if memory_debugging:
         gc.collect()
-        log.info("[%s] (3) GC object counts: %d, %d", task_id, len(gc.get_objects()), len(gc.garbage))
+        log.info("(3) GC object counts: %d, %d", len(gc.get_objects()), len(gc.garbage))
 
     RunSignatures(task=task_dict, results=results).run()
     if memory_debugging:
         gc.collect()
-        log.info("[%s] (4) GC object counts: %d, %d", task_id, len(gc.get_objects()), len(gc.garbage))
+        log.info("(4) GC object counts: %d, %d", len(gc.get_objects()), len(gc.garbage))
 
     if report:
-        if repconf.mongodb.enabled:
-            host = repconf.mongodb.host
-            port = repconf.mongodb.port
-            db = repconf.mongodb.db
-            conn = MongoClient(
-                host, port=port, username=repconf.mongodb.get("username", None), password=repconf.mongodb.get("password", None), authSource=db
-            )
-            mdata = conn[db]
-            analyses = mdata.analysis.find({"info.id": int(task_id)})
-            if analyses.count() > 0:
-                log.debug("Deleting analysis data for Task %s" % task_id)
-                for analysis in analyses:
-                    for process in analysis["behavior"].get("processes", []):
-                        for call in process["calls"]:
-                            mdata.calls.remove({"_id": ObjectId(call)})
-                    mdata.analysis.remove({"_id": ObjectId(analysis["_id"])})
-            conn.close()
-            log.debug("Deleted previous MongoDB data for Task %s" % task_id)
-
-        if repconf.elasticsearchdb.enabled and not repconf.elasticsearchdb.searchonly:
-            analyses = es.search(index=fullidx, doc_type="analysis", q='info.id: "%s"' % task_id)["hits"]["hits"]
-            if analyses:
-                for analysis in analyses:
-                    esidx = analysis["_index"]
-                    esid = analysis["_id"]
-                    # Check if behavior exists
-                    if analysis["_source"]["behavior"]:
-                        for process in analysis["_source"]["behavior"]["processes"]:
-                            for call in process["calls"]:
-                                es.delete(
-                                    index=esidx, doc_type="calls", id=call,
-                                )
-                    # Delete the analysis results
-                    es.delete(
-                        index=esidx, doc_type="analysis", id=esid,
-                    )
         if auto or capeproc:
             reprocess = False
         else:
             reprocess = report
 
-        RunReporting(task=task.to_dict(), results=results, reprocess=reprocess).run()
-        Database().set_status(task_id, TASK_REPORTED)
+        error_count = RunReporting(task=task.to_dict(), results=results, reprocess=reprocess).run()
+        status = TASK_REPORTED if error_count == 0 else TASK_FAILED_REPORTING
+        with db.session.begin():
+            db.set_status(task_id, status)
 
         if auto:
-            if cfg.cuckoo.delete_original and os.path.exists(target):
-                os.unlink(target)
-
-            if cfg.cuckoo.delete_bin_copy and os.path.exists(copy_path):
-                os.unlink(copy_path)
+            # Is ok to delete original file, but we need to lookup on delete_bin_copy if no more pendings tasks
+            if cfg.cuckoo.delete_original and target and path_exists(target):
+                path_delete(target)
+
+            if cfg.cuckoo.delete_bin_copy and task.category != "url":
+                copy_path = os.path.join(CUCKOO_ROOT, "storage", "binaries", sample_sha256)
+                if path_exists(copy_path):
+                    with db.session.begin():
+                        is_still_used = db.sample_still_used(sample_sha256, task_id)
+                    if not is_still_used:
+                        path_delete(copy_path)
 
     if memory_debugging:
         gc.collect()
-        log.info("[%s] (5) GC object counts: %d, %d", task_id, len(gc.get_objects()), len(gc.garbage))
+        log.info("(5) GC object counts: %d, %d", len(gc.get_objects()), len(gc.garbage))
         for i, obj in enumerate(gc.garbage):
-            log.info("[%s] (garbage) GC object #%d: type=%s", task_id, i, type(obj).__name__)
+            log.info("(garbage) GC object #%d: type=%s", i, type(obj).__name__)
+
+    log.removeHandler(per_analysis_handler)
+
+    # Remove the SQLAlchemy session to ensure the next task pulls objects from
+    # the database, instead of relying on a potentially outdated object cache.
+    # Stale data can prevent SQLAlchemy from querying the database or issuing
+    # statements, resulting in unexpected errors and inconsistencies.
+    db.session.remove()
 
 
 def init_worker():
     signal.signal(signal.SIGINT, signal.SIG_IGN)
+    # See https://docs.sqlalchemy.org/en/14/core/pooling.html#using-connection-pools-with-multiprocessing-or-os-fork
+    db.engine.dispose(close=False)
+
+
+def get_formatter_fmt(task_id=None, main_task_id=None):
+    """
+    Generates a logging format string with optional task identifiers.
+
+    Args:
+        task_id (int, optional): The ID of the task. Defaults to None.
+        main_task_id (int, optional): The ID of the main task. Defaults to None.
+
+    Returns:
+        str: A formatted string for logging that includes the task information if provided.
+    """
+    task_info = f"[Task {task_id}" if task_id is not None else ""
+    if main_task_id:
+        task_info += f" ({main_task_id})"
+    if task_id or main_task_id:
+        task_info += "] "
+    return f"%(asctime)s {task_info}[%(name)s] %(levelname)s: %(message)s"
+
+
+FORMATTER = logging.Formatter(get_formatter_fmt())
+
+
+def set_formatter_fmt(task_id=None, main_task_id=None):
+    FORMATTER._style._fmt = get_formatter_fmt(task_id, main_task_id)
+
+
+class ForceClosingTimedRotatingFileHandler(logging.handlers.TimedRotatingFileHandler):
+    def doRollover(self):
+        """
+        Override doRollover to force close the old handler before creating a new one.
+        """
+        if self.stream:
+            logging.debug("Flushing log stream...")
+            self.stream.flush()
+            logging.debug("Closing log stream...")
+            self.stream.close()
+            logging.debug("Log stream closed.")
+        logging.handlers.TimedRotatingFileHandler.doRollover(self)
+
+
+def init_logging(debug=False):
+    """
+    Initializes logging for the application.
+
+    This function sets up logging handlers for console output, syslog, and file output.
+    It also configures log rotation if enabled in the configuration.
+
+    Args:
+        debug (bool): If True, sets the logging level to DEBUG. Otherwise, sets it to INFO.
+
+    Returns:
+        tuple: A tuple containing the console handler, file handler, and syslog handler (if configured).
+
+    Raises:
+        PermissionError: If there is an issue creating or accessing the log file, typically due to incorrect user permissions.
+    # Pyattck creates root logger which we don't want. So we must use this dirty hack to remove it
+    # If basicConfig was already called by something and had a StreamHandler added,
+    # replace it with a ConsoleHandler.
+    for h in log.handlers[:]:
+        if isinstance(h, logging.StreamHandler) and h.stream == sys.stderr:
+            log.removeHandler(h)
+            h.close()
+    """
+    """
+    Handlers:
+        - ch - console handler
+        - slh - syslog handler
+        - fh - file handle -> process.log
+    """
 
-
-def init_logging(auto=False, tid=0, debug=False):
-    formatter = logging.Formatter("%(asctime)s [%(name)s] %(levelname)s: %(message)s")
     ch = ConsoleHandler()
-    ch.setFormatter(formatter)
+    ch.setFormatter(FORMATTER)
     log.addHandler(ch)
+
+    slh = False
+
+    if logconf.logger.syslog_process:
+        slh = logging.handlers.SysLogHandler(address=logconf.logger.syslog_dev)
+        slh.setFormatter(FORMATTER)
+        log.addHandler(slh)
+
     try:
-        if not os.path.exists(os.path.join(CUCKOO_ROOT, "log")):
-            os.makedirs(os.path.join(CUCKOO_ROOT, "log"))
-        if auto:
-            if cfg.logging.enabled:
-                days = cfg.logging.backup_count or 7
-                fh = logging.handlers.TimedRotatingFileHandler(
-                    os.path.join(CUCKOO_ROOT, "log", "process.log"), when="midnight", backupCount=int(days)
-                )
-            else:
-                fh = logging.handlers.WatchedFileHandler(os.path.join(CUCKOO_ROOT, "log", "process.log"))
+        if not path_exists(os.path.join(CUCKOO_ROOT, "log")):
+            path_mkdir(os.path.join(CUCKOO_ROOT, "log"))
+
+        path = os.path.join(CUCKOO_ROOT, "log", "process.log")
+        if logconf.log_rotation.enabled:
+            days = logconf.log_rotation.backup_count or 7
+            fh = ForceClosingTimedRotatingFileHandler(path, when="midnight", backupCount=int(days))
         else:
-            fh = logging.handlers.WatchedFileHandler(os.path.join(CUCKOO_ROOT, "log", "process-%s.log" % tid))
+            fh = logging.handlers.WatchedFileHandler(path)
 
+        fh.setFormatter(FORMATTER)
+        log.addHandler(fh)
     except PermissionError:
         sys.exit("Probably executed with wrong user, PermissionError to create/access log")
 
-    fh.setFormatter(formatter)
-    log.addHandler(fh)
-
     if debug:
         log.setLevel(logging.DEBUG)
     else:
         log.setLevel(logging.INFO)
 
     logging.getLogger("urllib3").setLevel(logging.WARNING)
+    return ch, fh, slh
+
+
+def init_per_analysis_logging(tid=0, debug=False):
+    """
+    Handlers:
+        - fhpa - file handler per analysis
+    """
+
+    fhpa = False
+
+    try:
+        if not path_exists(os.path.join(CUCKOO_ROOT, "log")):
+            path_mkdir(os.path.join(CUCKOO_ROOT, "log"))
+
+        if logconf.logger.process_analysis_folder:
+            path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(tid), "process.log")
+        else:
+            path = os.path.join(CUCKOO_ROOT, "log", "process-%s.log" % str(tid))
+        if path_exists(path):
+            path_delete(path)
+
+        fhpa = logging.handlers.WatchedFileHandler(path)
+        fhpa.setFormatter(FORMATTER)
+        log.addHandler(fhpa)
+    except PermissionError:
+        sys.exit("Probably executed with wrong user, PermissionError to create/access log")
+
+    if debug:
+        log.setLevel(logging.DEBUG)
+    else:
+        log.setLevel(logging.INFO)
+
+    return fhpa
 
 
 def processing_finished(future):
+    """
+    Callback function to handle the completion of a processing task.
+
+    This function is called when a future task is completed. It retrieves the task ID from the
+    pending_future_map, logs the result, and updates the task status in the database. If an
+    exception occurs during processing, it logs the error and sets the task status to failed.
+
+    Args:
+        future (concurrent.futures.Future): The future object representing the asynchronous task.
+
+    Raises:
+        TimeoutError: If the processing task times out.
+        pebble.ProcessExpired: If the processing task expires.
+        Exception: For any other exceptions that occur during processing.
+    """
     task_id = pending_future_map.get(future)
-    try:
-        result = future.result()
-        log.info("Task #%d: reports generation completed", task_id)
-    except TimeoutError as error:
-        log.error("Processing Timeout %s", error)
-        Database().set_status(task_id, TASK_FAILED_PROCESSING)
-    except pebble.ProcessExpired as error:
-        log.error("Exception when processing task %s: %s, Exitcode: %d", task_id, error)
-        Database().set_status(task_id, TASK_FAILED_PROCESSING)
-    except Exception as error:
-        log.error("Exception when processing task %s: %s %s", task_id, error)
-        Database().set_status(task_id, TASK_FAILED_PROCESSING)
-
-    del pending_future_map[future]
-    del pending_task_id_map[task_id]
-
-def autoprocess(parallel=1, failed_processing=False, maxtasksperchild=7, memory_debugging=False, processing_timeout=300):
+    with db.session.begin():
+        try:
+            _ = future.result()
+            log.info("Reports generation completed for Task #%d", task_id)
+        except TimeoutError as error:
+            log.error("[%d] Processing timeout: %s. Function: %s", task_id, error, error.args[1])
+            db.set_status(task_id, TASK_FAILED_PROCESSING)
+        except (pebble.ProcessExpired, Exception) as error:
+            log.exception("[%d] Exception when processing task: %s", task_id, error)
+            db.set_status(task_id, TASK_FAILED_PROCESSING)
+
+    pending_future_map.pop(future)
+    pending_task_id_map.pop(task_id)
+    set_formatter_fmt()
+    setproctitle(original_proctitle)
+
+
+def autoprocess(
+    parallel=1, failed_processing=False, maxtasksperchild=7, memory_debugging=False, processing_timeout=300, debug: bool = False, disable_memory_limit: bool = False
+):
+    """
+    Automatically processes analysis data using a process pool.
+
+    Args:
+        parallel (int): Number of parallel processes to use. Default is 1.
+        failed_processing (bool): Whether to process failed tasks. Default is False.
+        maxtasksperchild (int): Maximum number of tasks per child process. Default is 7.
+        memory_debugging (bool): Whether to enable memory debugging. Default is False.
+        processing_timeout (int): Timeout for processing each task in seconds. Default is 300.
+        debug (bool): Whether to enable debug mode. Default is False.
+
+    Raises:
+        KeyboardInterrupt: If the process is interrupted by the user.
+        MemoryError: If there is not enough free RAM to run processing.
+        OSError: If an OS-related error occurs.
+        Exception: If any other exception occurs during processing.
+
+    """
     maxcount = cfg.cuckoo.max_analysis_count
     count = 0
-    db = Database()
     # pool = multiprocessing.Pool(parallel, init_worker)
-    pool = pebble.ProcessPool(max_workers=parallel, max_tasks=maxtasksperchild, initializer=init_worker)
+    pool = False
     try:
-        memory_limit()
+        if not disable_memory_limit:
+            memory_limit()
         log.info("Processing analysis data")
-        # CAUTION - big ugly loop ahead.
-        while count < maxcount or not maxcount:
-            # If still full, don't add more (necessary despite pool).
-            if len(pending_task_id_map) >= parallel:
-                time.sleep(5)
-                continue
-            if failed_processing:
-                tasks = db.list_tasks(status=TASK_FAILED_PROCESSING, limit=parallel, order_by=Task.completed_on.asc())
-            else:
-                tasks = db.list_tasks(status=TASK_COMPLETED, limit=parallel, order_by=Task.completed_on.asc())
-            added = False
-            # For loop to add only one, nice. (reason is that we shouldn't overshoot maxcount)
-            for task in tasks:
-                # Not-so-efficient lock.
-                if pending_task_id_map.get(task.id):
+        with pebble.ProcessPool(max_workers=parallel, max_tasks=maxtasksperchild, initializer=init_worker) as pool:
+            # CAUTION - big ugly loop ahead.
+            while count < maxcount or not maxcount:
+                # If not enough free disk space is available, then we print an
+                # error message and wait another round (this check is ignored
+                # when the freespace configuration variable is set to zero).
+                if cfg.cuckoo.freespace_processing:
+                    # Resolve the full base path to the analysis folder, just in
+                    # case somebody decides to make a symbolic link out of it.
+                    dir_path = os.path.join(CUCKOO_ROOT, "storage", "analyses")
+                    free_space_monitor(dir_path, processing=True)
+
+                # If still full, don't add more (necessary despite pool).
+                if len(pending_task_id_map) >= parallel:
+                    time.sleep(5)
                     continue
-                log.info("Processing analysis data for Task #%d", task.id)
-                if task.category == "file":
-                    sample = db.view_sample(task.sample_id)
-                    copy_path = os.path.join(CUCKOO_ROOT, "storage", "binaries", sample.sha256)
-                else:
-                    copy_path = None
-                args = task.target, copy_path
-                kwargs = dict(report=True, auto=True, task=task, memory_debugging=memory_debugging)
-                if memory_debugging:
-                    gc.collect()
-                    log.info("[%d] (before) GC object counts: %d, %d", task.id, len(gc.get_objects()), len(gc.garbage))
-                # result = pool.apply_async(process, args, kwargs)
-                future = pool.schedule(process, args, kwargs, timeout=processing_timeout)
-                pending_future_map[future] = task.id
-                pending_task_id_map[task.id] = future
-                future.add_done_callback(processing_finished)
-                if memory_debugging:
-                    gc.collect()
-                    log.info("[%d] (after) GC object counts: %d, %d", task.id, len(gc.get_objects()), len(gc.garbage))
-                count += 1
-                added = True
-                break
-            if not added:
-                # don't hog cpu
-                time.sleep(5)
+                with db.session.begin():
+                    if failed_processing:
+                        tasks = db.list_tasks(status=TASK_FAILED_PROCESSING, limit=parallel, order_by=Task.completed_on.asc())
+                    else:
+                        tasks = db.list_tasks(status=TASK_COMPLETED, limit=parallel, order_by=Task.completed_on.asc())
+                    # Make sure the tasks are available as normal objects after the transaction ends, so that
+                    # sqlalchemy doesn't auto-initiate a new transaction the next time they are accessed.
+                    db.session.expunge_all()
+                added = False
+                # For loop to add only one, nice. (reason is that we shouldn't overshoot maxcount)
+                for task in tasks:
+                    # Not-so-efficient lock.
+                    if pending_task_id_map.get(task.id):
+                        continue
+
+                    log.info("Processing analysis data for Task #%d", task.id)
+                    sample_hash = ""
+                    if task.category != "url":
+                        with db.session.begin():
+                            sample = db.view_sample(task.sample_id)
+                            if sample:
+                                sample_hash = sample.sha256
+
+                    args = task.target, sample_hash
+                    kwargs = dict(report=True, auto=True, task=task, memory_debugging=memory_debugging, debug=debug)
+                    if memory_debugging:
+                        gc.collect()
+                        log.info("(before) GC object counts: %d, %d", len(gc.get_objects()), len(gc.garbage))
+                    # result = pool.apply_async(process, args, kwargs)
+                    future = pool.schedule(process, args, kwargs, timeout=processing_timeout)
+                    pending_future_map[future] = task.id
+                    pending_task_id_map[task.id] = future
+                    future.add_done_callback(processing_finished)
+                    if memory_debugging:
+                        gc.collect()
+                        log.info("(after) GC object counts: %d, %d", len(gc.get_objects()), len(gc.garbage))
+                    count += 1
+                    added = True
+                    break
+
+                if not added:
+                    # don't hog cpu
+                    time.sleep(5)
     except KeyboardInterrupt:
         # ToDo verify in finally
         # pool.terminate()
         raise
-    except MemoryError:
-        mem = get_memory() / 1024 /1024
-        print('Remain: %.2f GB' % mem)
-        sys.stderr.write('\n\nERROR: Memory Exception\n')
+    except (MemoryError, OSError):
+        mem = get_memory() / 1024 / 1024
+        sys.stderr.write(
+            "\n\nERROR: Memory Exception\nRemain: %.2f GB\nYour system doesn't have enough FREE RAM to run processing!" % mem
+        )
         sys.exit(1)
-    except Exception as e:
+    except Exception:
         import traceback
+
         traceback.print_exc()
     finally:
-        pool.close()
-        pool.join()
+        if pool:
+            pool.close()
+            pool.join()
+
+
+def _load_report(task_id: int):
+    """
+    Load the analysis report for a given task ID from the configured database.
+
+    This function attempts to load the analysis report from MongoDB if it is enabled.
+    If MongoDB is not enabled, it tries to load the report from Elasticsearch if it is enabled and not in search-only mode.
+
+    Args:
+        task_id (int): The ID of the task for which to load the analysis report.
+
+    Returns:
+        dict or bool: The analysis report as a dictionary if found, otherwise False.
+    """
+    if repconf.mongodb.enabled:
+        analysis = mongo_find_one("analysis", {"info.id": task_id}, sort=[("_id", -1)])
+        for process in analysis.get("behavior", {}).get("processes", []):
+            calls = [ObjectId(call) for call in process["calls"]]
+            process["calls"] = []
+            for call in mongo_find("calls", {"_id": {"$in": calls}}, sort=[("_id", 1)]) or []:
+                process["calls"] += call["calls"]
+        return analysis
+
+    if repconf.elasticsearchdb.enabled and not repconf.elasticsearchdb.searchonly:
+        try:
+            analyses = (
+                es.search(index=get_analysis_index(), query=get_query_by_info_id(task_id), sort={"info.id": {"order": "desc"}})
+                .get("hits", {})
+                .get("hits", [])
+            )
+            if analyses:
+                return analyses[0]
+        except ESRequestError as e:
+            print(e)
+
+    return False
+
+
+def parse_id(id_string: str):
+    """
+    Parses a string representing a range or list of ranges of IDs and returns a list of tuples.
+
+    Args:
+        id_string (str): A string representing IDs. It can be "auto" or a string of comma-separated
+            ranges (e.g., "1-3,5,7-9").
+
+    Returns:
+        list: A list of tuples where each tuple represents a range of IDs. If the input is "auto",
+            it returns the string "auto".
+
+    Raises:
+        TypeError: If the input string is not in the correct format or if a range is invalid.
+    """
+    if id_string == "auto":
+        return id_string
+    id_string = id_string.replace(" ", "")
+    blocks = [block.split("-") for block in id_string.split(",")]
+    for index, block in enumerate(blocks):
+        block = list(map(int, block))
+        if len(block) == 2:
+            if block[1] < block[0]:
+                raise TypeError("Invalid id input")
+            else:
+                blocks[index] = block
+        elif len(block) == 1:
+            blocks[index] = (block[0], block[0])
+        else:
+            raise TypeError("Invalid id input")
+    return blocks
+
 
 def main():
     parser = argparse.ArgumentParser()
-    parser.add_argument("id", type=str, help="ID of the analysis to process (auto for continuous processing of unprocessed tasks).")
+    parser.add_argument(
+        "id",
+        type=parse_id,
+        help="ID of the analysis to process (auto for continuous processing of unprocessed tasks). Can be 1 or 1-10 or 1,3,5,7",
+    )
     parser.add_argument("-c", "--caperesubmit", help="Allow CAPE resubmit processing.", action="store_true", required=False)
     parser.add_argument("-d", "--debug", help="Display debug messages", action="store_true", required=False)
     parser.add_argument("-r", "--report", help="Re-generate report", action="store_true", required=False)
-    parser.add_argument("-s", "--signatures", help="Re-execute signatures on the report", action="store_true", required=False)
-    parser.add_argument("-p", "--parallel", help="Number of parallel threads to use (auto mode only).", type=int, required=False, default=1)
-    parser.add_argument("-fp", "--failed-processing", help="reprocess failed processing", action="store_true", required=False, default=False)
-    parser.add_argument("-mc", "--maxtasksperchild", help="Max children tasks per worker", action="store", type=int, required=False, default=7)
     parser.add_argument(
-        "-md", "--memory-debugging", help="Enable logging garbage collection related info", action="store_true", required=False, default=False
+        "-p", "--parallel", help="Number of parallel threads to use (auto mode only).", type=int, required=False, default=1
+    )
+    parser.add_argument(
+        "-fp", "--failed-processing", help="reprocess failed processing", action="store_true", required=False, default=False
+    )
+    parser.add_argument(
+        "-mc", "--maxtasksperchild", help="Max children tasks per worker", action="store", type=int, required=False, default=7
+    )
+    parser.add_argument(
+        "-md",
+        "--memory-debugging",
+        help="Enable logging garbage collection related info",
+        action="store_true",
+        required=False,
+        default=False,
     )
     parser.add_argument(
         "-pt",
@@ -298,38 +580,113 @@ def main():
         required=False,
         default=300,
     )
+    testing_args = parser.add_argument_group("Signature testing options")
+    testing_args.add_argument(
+        "-sig",
+        "--signatures",
+        help="Re-execute signatures on the report, doesn't work for signature with self.get_raw_argument, use self.get_argument",
+        action="store_true",
+        default=False,
+        required=False,
+    )
+    testing_args.add_argument(
+        "-sn",
+        "--signature-name",
+        help="Run only one signature. To be used with --signature. Example -sig -sn cape_detected_threat",
+        action="store",
+        default=False,
+        required=False,
+    )
+    testing_args.add_argument(
+        "-jr",
+        "--json-report",
+        help="Path to json report, only if data not in mongo/default report location",
+        action="store",
+        default=False,
+        required=False,
+    )
+    parser.add_argument("--disable-memory-limit", help="Disable memory limit.", action="store_true", default=False, required=False)
     args = parser.parse_args()
 
-    init_yara()
+    init_database()
+    handlers = init_logging(debug=args.debug)
     init_modules()
     if args.id == "auto":
-        init_logging(auto=True, debug=args.debug)
         autoprocess(
             parallel=args.parallel,
             failed_processing=args.failed_processing,
             maxtasksperchild=args.maxtasksperchild,
             memory_debugging=args.memory_debugging,
             processing_timeout=args.processing_timeout,
+            debug=args.debug,
+            disable_memory_limit= args.disable_memory_limit,
         )
     else:
-        if not os.path.exists(os.path.join(CUCKOO_ROOT, "storage", "analyses", args.id)):
-            sys.exit(red("\n[-] Analysis folder doesn't exist anymore\n"))
-        init_logging(tid=args.id, debug=args.debug)
-        task = Database().view_task(int(args.id))
-        if args.signatures:
-            report = os.path.join(CUCKOO_ROOT, "storage", "analyses", args.id, "reports", "report.json")
-            if not os.path.exists(report):
-                sys.exit("File {} doest exist".format(report))
-
-            results = json.load(open(report))
-            if results is not None:
-                RunSignatures(task=task.to_dict(), results=results).run()
-        else:
-            process(task=task, report=args.report, capeproc=args.caperesubmit, memory_debugging=args.memory_debugging)
+        for start, end in args.id:
+            for num in range(start, end + 1):
+                set_formatter_fmt(num)
+                log.debug("Processing task")
+                if not path_exists(os.path.join(CUCKOO_ROOT, "storage", "analyses", str(num))):
+                    print(red(f"\n[{num}] Analysis folder doesn't exist anymore\n"))
+                    continue
+                with db.session.begin():
+                    task = db.view_task(num)
+                    if task is None:
+                        task = {"id": num, "target": None}
+                        print("Task not in database")
+                    else:
+                        # Add sample lookup as we point to sample from TMP. Case when delete_original=on
+                        if not path_exists(task.target):
+                            samples = db.sample_path_by_hash(task_id=task.id)
+                            for sample in samples:
+                                if path_exists(sample):
+                                    task.__setattr__("target", sample)
+                                    break
+                    # Make sure that SQLAlchemy doesn't auto-begin a new transaction the next time
+                    # these objects are accessed.
+                    db.session.expunge_all()
+
+                if args.signatures:
+                    report = False
+                    results = _load_report(num)
+                    if not results:
+                        # fallback to json
+                        report = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(num), "reports", "report.json")
+                        if not path_exists(report):
+                            if args.json_report and path_exists(args.json_report):
+                                report = args.json_report
+                            else:
+                                sys.exit(f"File {report} doesn't exist")
+                        if report:
+                            results = json.load(open(report))
+                    if results is not None:
+                        # If the "statistics" key-value pair has not been set by now, set it here
+                        if "statistics" not in results:
+                            results["statistics"] = {"signatures": []}
+                        if isinstance(task, dict):
+                            RunSignatures(task=task, results=results).run(args.signature_name)
+                        else:
+                            RunSignatures(task=task.to_dict(), results=results).run(args.signature_name)
+                        # If you are only running a single signature, print that output
+                        if args.signature_name and results["signatures"]:
+                            print(results["signatures"][0])
+                else:
+                    process(
+                        task=task,
+                        report=args.report,
+                        capeproc=args.caperesubmit,
+                        memory_debugging=args.memory_debugging,
+                        debug=args.debug,
+                    )
+                log.debug("Finished processing task")
+                set_formatter_fmt()
+
+    for handler in handlers:
+        if not handler:
+            continue
+        log.removeHandler(handler)
 
 
 if __name__ == "__main__":
-    try:
+    with suppress(KeyboardInterrupt):
         main()
-    except KeyboardInterrupt:
-        pass
diff --git a/utils/profiling.py b/utils/profiling.py
new file mode 100644
index 00000000000..642d4ebcbd2
--- /dev/null
+++ b/utils/profiling.py
@@ -0,0 +1,30 @@
+import time
+from dataclasses import dataclass, field
+
+
+@dataclass
+class Counter:
+    """Profiler that counts real and CPU time."""
+
+    real: float = field(default_factory=time.perf_counter)
+    cpu: float = field(default_factory=time.process_time)
+
+    def __sub__(self, other):
+        real = self.real - other.real
+        cpu = self.cpu - other.cpu
+        return Counter(real, cpu)
+
+    def __add__(self, other):
+        real = self.real + other.real
+        cpu = self.cpu + other.cpu
+        return Counter(real, cpu)
+
+    def __str__(self) -> str:
+        return f"{self.real:.2f}s (cpu {self.cpu:.2f}s)".format(self.real, self.cpu)
+
+    def __enter__(self):
+        return self
+
+    def __exit__(self, exc_type, exc_value, exc_tb):
+        elapsed = Counter() - self
+        self.__dict__.update(**elapsed.__dict__)
diff --git a/utils/proxy2cape.py b/utils/proxy2cape.py
new file mode 100644
index 00000000000..4715c8048a1
--- /dev/null
+++ b/utils/proxy2cape.py
@@ -0,0 +1,156 @@
+import os
+import sys
+from contextlib import suppress
+
+# ToDo crudini to write conf directly
+
+try:
+    import requests
+    from socks5man.exceptions import Socks5CreationError
+    from socks5man.manager import Manager
+
+    # first run socks5man to generate /home/cape/.socks5man on each server
+    # You will need to distribute socks5man.db to all servers to /home/cape/.socks5man
+except ImportError:
+    sys.exit("Missed dependency. Run: poetry run pip install requests git+https://github.com/CAPESandbox/socks5man")
+
+
+def get_proxy_list():
+    try:
+        r = requests.get(proxy_url, verify=False)
+        if r and r.ok:
+            return r.json()
+    except Exception as e:
+        print(e)
+
+
+def generate_all_conf(proxy_url, local_ip):
+    if not os.path.exists("redsocks_configs"):
+        os.makedirs("redsocks_configs")
+
+    proxy_names = list()
+    # redsocks_configs_run = ""
+    supervisor_conf = ""
+
+    supervisor_template = """
+[program:{name}]
+command=/usr/bin/redsocks2 -c {path}
+directory=/opt/CAPEv2/
+user=root
+autostart=true
+autorestart=true
+stopasgroup=true
+stderr_logfile=/var/log/supervisor/{name}.err.log
+stdout_logfile=/var/log/supervisor/{name}.out.log
+"""
+
+    cape_full_conf = """
+[socks5]
+# By default we disable socks5 support as it requires running utils/rooter.py as
+# root next to cuckoo.py (which should run as regular user).
+enabled = no
+# Comma-separated list of the available proxies.
+proxies = {all_configs}
+"""
+
+    config_template = """
+[{proxy_name}]
+name = {proxy_name}
+description = {proxy_name}
+proxyport = {local_port}
+dnsport = {local_dns_port}
+"""
+
+    # https://github.com/semigodking/redsocks/blob/master/redsocks.conf.example
+    redsocks_template = """
+base {{
+    log_debug = off;
+    log_info = on;
+    log = "file:/var/log/redsocks_{name}.log";
+    daemon = off;
+    redirector = iptables;
+    reuseport = on;
+    user = nobody;
+    //group = nobody;
+    reuseport = on;
+}}
+redsocks {{
+    bind = "{local_ip}:{local_port}";
+    relay = "{socks_ip}:{socks_port}";
+    type = socks5;
+    autoproxy = 0;
+}}
+redudp {{
+    bind = "{local_ip}:{local_dns_port}";
+    // `relay' is ip and port of socks5 proxy server.
+    relay = "{socks_ip}:{socks_port}";
+    type = socks5;
+    dest = "8.8.8.8:53";
+    udp_timeout = 30;
+    // udp_timeout_stream = 180;
+}}
+tcpdns {{
+    bind = "{local_ip}:{local_dns_port}";
+    tcpdns1 = "8.8.4.4:53";
+    tcpdns2 = "8.8.8.8";
+    timeout = 30;
+}}
+"""
+
+    proxies = get_proxy_list()
+
+    if proxies is None:
+        exit("Something is wrong")
+
+    ccs = sorted(proxies)
+    for index, cc in enumerate(ccs):
+        local_dns_port = 10053 + index
+        proxy_name = cc + "_socks5"
+        with suppress(Socks5CreationError):
+            Manager().add(
+                proxies[cc]["socks_ip"],
+                proxies[cc]["socks_port"],
+                description=proxy_name,
+                dnsport=local_dns_port,
+            )
+
+        proxy_names.append(proxy_name)
+        cape_config = config_template.format(
+            proxy_name=proxy_name,
+            local_port=proxies[cc]["socks_port"],
+            local_dns_port=local_dns_port,
+        )
+        cape_full_conf += cape_config
+
+        redsocks_conf = redsocks_template.format(
+            name=proxy_name,
+            local_ip=local_ip,
+            local_port=proxies[cc]["socks_port"],
+            socks_ip=proxies[cc]["socks_ip"],
+            socks_port=proxies[cc]["socks_port"],
+            local_dns_port=local_dns_port,
+        )
+        # print(redsocks_conf)
+        conf_path = "redsocks_configs/{}.conf".format(proxy_name)
+        with open(conf_path, "w") as f:
+            f.write(redsocks_conf)
+
+        supervisor_conf += supervisor_template.format(name=proxy_name, path=conf_path)
+
+        # redsocks_configs_run += "redsocks2 -c " + conf_path + "\n"
+
+    # print(redsocks_configs_run)
+    with open("socks5.conf", "w") as f:
+        f.write(cape_full_conf.format(all_configs=",".join(proxy_names)))
+
+    # print(supervisor_conf)
+    with open("supervisor_socks.conf", "w") as f:
+        f.write(supervisor_conf)
+
+
+if __name__ == "__main__":
+    # Your CAPE hostonly IP
+    local_ip = sys.argv[1]
+    # From where fetch details about socks
+    proxy_url = sys.argv[2]
+    generate_all_conf(proxy_url, local_ip)
diff --git a/utils/rooter.py b/utils/rooter.py
index 407f3b3073c..cda44e56eb4 100644
--- a/utils/rooter.py
+++ b/utils/rooter.py
@@ -3,26 +3,28 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-import os
-import sys
-import signal
 import argparse
+import errno
 import grp
+import ipaddress
 import json
 import logging.handlers
-import os.path
+import os
+import signal
 import socket
 import stat
 import subprocess
 import sys
-import errno
 
+if sys.version_info[:2] < (3, 10):
+    sys.exit("You are running an incompatible version of Python, please use >= 3.10")
 
-if sys.version_info[:2] < (3, 5):
-    sys.exit("You are running an incompatible version of Python, please use >= 3.5")
+CUCKOO_ROOT = os.path.join(os.path.abspath(os.path.dirname(__file__)), "..")
+sys.path.append(CUCKOO_ROOT)
 
+from lib.cuckoo.common.path_utils import path_delete, path_exists
 
+username = False
 log = logging.getLogger("cuckoo-rooter")
 formatter = logging.Formatter("%(asctime)s [%(name)s] %(levelname)s: %(message)s")
 ch = logging.StreamHandler()
@@ -30,8 +32,7 @@
 log.addHandler(ch)
 log.setLevel(logging.INFO)
 
-
-class s(object):
+class s:
     iptables = None
     iptables_save = None
     iptables_restore = None
@@ -46,8 +47,75 @@ def run(*args):
     return stdout, stderr
 
 
-def run_iptables(*args):
-    iptables_args = [s.iptables]
+def get_tun_peer_address(interface_name):
+    """Gets the peer address of a tun interface.
+
+    Args:
+        interface_name: The name of the tun interface (e.g., "tun0").
+        Format similar to:
+        inet 172.30.1.5 peer 172.30.1.6/32 scope global
+
+    Returns:
+        The peer IP address as a string, or None if an error occurs.  Returns None if the interface does not exist, or does not have a peer.
+    """
+    try:
+        result = subprocess.run(["ip", "addr", "show", interface_name], capture_output=True, text=True, check=True)
+        output = result.stdout
+
+        for line in output.splitlines():
+            if "peer" in line:
+                parts = line.split()
+                if len(parts) > 1:  # Check if there's a second element to avoid IndexError
+                    peer_with_cidr = parts[3]
+                    try:
+                        # Handle CIDR notation using ipaddress library
+                        peer_ip = ipaddress.ip_interface(peer_with_cidr).ip.exploded
+                        return peer_ip
+                    except ValueError:  # Handle invalid CIDR notations
+                        try:
+                            peer_ip = peer_with_cidr.split("/")[0]  # Try just splitting by /
+                            return peer_ip
+                        except IndexError:
+                            return None  # Invalid format - give up.
+                else:
+                    return None  # No peer address found on the line.
+        return None  # "peer" not found in the output
+
+    except subprocess.CalledProcessError as e:
+        if e.returncode == 1:  # Interface not found
+            return None
+        else:
+            print(f"Error executing ip command: {e}")
+            return None
+    except FileNotFoundError:
+        print("ip command not found. Is iproute2 installed?")
+        return None
+
+
+def enable_ip_forwarding(sysctl="/usr/sbin/sysctl"):
+    log.debug("Enabling IPv4 forwarding")
+    run(sysctl, "-w" "net.ipv4.ip_forward=1")
+
+
+def check_tuntap(vm_name, main_iface):
+    """Create tuntap device for qemu vms"""
+    try:
+        run(s.ip, "tuntap", "add", "dev", f"tap_{vm_name}", "mode", "tap", "user", username)
+        run(s.ip, "link", "set", "tap_{vm_name}", "master", main_iface)
+        run(s.ip, "link", "set", "dev", "tap_{vm_name}", "up")
+        run(s.ip, "link", "set", "dev", main_iface, "up")
+        return True
+    except subprocess.CalledProcessError:
+        return False
+
+
+def run_iptables(*args, **kwargs):
+    if kwargs and kwargs.get('netns'):
+        netns = kwargs.get('netns')
+        iptables_args = ["/usr/sbin/ip", "netns", "exec", netns, s.iptables]
+    else:
+        iptables_args = [s.iptables]
+
     iptables_args.extend(list(args))
     iptables_args.extend(["-m", "comment", "--comment", "CAPE-rooter"])
     return run(*iptables_args)
@@ -66,19 +134,25 @@ def cleanup_rooter():
     if not stdout:
         return
 
-    cleaned = []
-    for l in stdout.split("\n"):
-        if l and "CAPE-rooter" not in l:
-            cleaned.append(l)
+    cleaned = [line for line in stdout.split("\n") if line and "CAPE-rooter" not in line]
 
     p = subprocess.Popen([s.iptables_restore], stdin=subprocess.PIPE, universal_newlines=True)
     p.communicate(input="\n".join(cleaned))
 
+    run_iptables("-F", "CAPE_ACCEPTED_SEGMENTS")
+    run_iptables("-F", "CAPE_REJECTED_SEGMENTS")
+    run_iptables("-N", "CAPE_ACCEPTED_SEGMENTS")
+    run_iptables("-N", "CAPE_REJECTED_SEGMENTS")
+    run_iptables("-I", "FORWARD", "-j", "CAPE_REJECTED_SEGMENTS")
+    run_iptables("-I", "FORWARD", "-j", "CAPE_ACCEPTED_SEGMENTS")
+
 
 def nic_available(interface):
     """Check if specified network interface is available."""
     try:
-        subprocess.check_call([settings.ip, "link", "show", interface], stdout=subprocess.PIPE, stderr=subprocess.PIPE, universal_newlines=True)
+        subprocess.check_call(
+            [settings.ip, "link", "show", interface], stdout=subprocess.PIPE, stderr=subprocess.PIPE, universal_newlines=True
+        )
         return True
     except subprocess.CalledProcessError:
         return False
@@ -88,23 +162,55 @@ def rt_available(rt_table):
     """Check if specified routing table is defined."""
     try:
         subprocess.check_call(
-            [settings.ip, "route", "list", "table", rt_table], stdout=subprocess.PIPE, stderr=subprocess.PIPE, universal_newlines=True
+            [settings.ip, "route", "list", "table", rt_table],
+            stdout=subprocess.PIPE,
+            stderr=subprocess.PIPE,
+            universal_newlines=True,
         )
         return True
     except subprocess.CalledProcessError:
         return False
 
 
+def init_vrf(rt_table, dirty_line_dev):
+    run(s.ip, "link", "add", "dirty-line", "type", "vrf", "table", rt_table)
+    run(s.ip, "link", "set", "dev", "dirty-line", "up")
+    run(s.ip, "rule", "add", "l3mdev", "proto", "kernel", "prio", "1000")
+    run(s.ip, "rule", "add", "l3mdev", "proto", "kernel", "unreachable", "prio", "1001")
+    run(s.ip, "rule", "add", "lookup", "local", "proto", "kernel", "prio", "32765")
+    run(s.ip, "rule", "delete", "lookup", "local", "prio", "0")
+    run(s.ip, "link", "set", "dev", dirty_line_dev, "master", "dirty-line")
+
+
+def cleanup_vrf(dirty_line_dev):
+    run(s.ip, "rule", "add", "lookup", "local", "proto", "kernel", "prio", "0")
+    run(s.ip, "rule", "delete", "lookup", "local", "prio", "32765")
+    run(s.ip, "rule", "delete", "l3mdev", "prio", "1000")
+    run(s.ip, "rule", "delete", "l3mdev", "unreachable", "prio", "1001")
+    run(s.ip, "link", "set", "dev", dirty_line_dev, "nomaster")
+    run(s.ip, "link", "set", "dev", "dirty-line", "down")
+    run(s.ip, "link", "del", "dirty-line")
+
+
+def add_dev_to_vrf(dev):
+    run(s.ip, "link", "set", "dev", dev, "master", "dirty-line")
+
+
+def delete_dev_from_vrf(dev):
+    run(s.ip, "link", "set", "dev", dev, "nomaster")
+
+
 def vpn_status(name):
     """Gets current VPN status."""
     ret = {}
-    for line in run(settings.systemctl, "status", "openvpn@{}.service".format(name))[0].split("\n"):
+    for line in run(settings.systemctl, "status", f"openvpn@{name}.service")[0].split("\n"):
         if "running" in line:
             ret[name] = "running"
             break
 
     return ret
 
+
 def forward_drop():
     """Disable any and all forwarding unless explicitly said so."""
     run_iptables("-P", "FORWARD", "DROP")
@@ -113,6 +219,7 @@ def forward_drop():
 def state_enable():
     """Enable stateful connection tracking."""
     run_iptables("-A", "INPUT", "-m", "state", "--state", "ESTABLISHED,RELATED", "-j", "ACCEPT")
+    run_iptables("-I", "CAPE_ACCEPTED_SEGMENTS", "-m", "state", "--state", "ESTABLISHED,RELATED", "-j", "ACCEPT")
 
 
 def state_disable():
@@ -121,6 +228,9 @@ def state_disable():
         _, err = run_iptables("-D", "INPUT", "-m", "state", "--state", "ESTABLISHED,RELATED", "-j", "ACCEPT")
         if err:
             break
+        _, err = run_iptables("-D", "CAPE_ACCEPTED_SEGMENTS", "-m", "state", "--state", "ESTABLISHED,RELATED", "-j", "ACCEPT")
+        if err:
+            break
 
 
 def enable_nat(interface):
@@ -133,10 +243,233 @@ def disable_nat(interface):
     run_iptables("-t", "nat", "-D", "POSTROUTING", "-o", interface, "-j", "MASQUERADE")
 
 
+def enable_mitmdump(interface, client, port, netns):
+    """Enable mitmdump on this interface."""
+
+    log.info("enable_mitmdump client: %s port: %s netns: %s", client, port, netns)
+
+    if netns:
+        # assume all traffic in network namespace can be captured
+        run_iptables(
+            "-t",
+            "nat",
+            "-I",
+            "PREROUTING",
+            "-p",
+            "tcp",
+            "--dport",
+            "443",
+            "-j",
+            "REDIRECT",
+            "--to-port",
+            port,
+            netns=netns,
+        )
+        run_iptables(
+            "-t",
+            "nat",
+            "-I",
+            "PREROUTING",
+            "-p",
+            "tcp",
+            "--dport",
+            "80",
+            "-j",
+            "REDIRECT",
+            "--to-port",
+            port,
+            netns=netns,
+        )
+    else:
+        run_iptables(
+            "-t",
+            "nat",
+            "-I",
+            "PREROUTING",
+            "-i",
+            interface,
+            "-s",
+            client,
+            "-p",
+            "tcp",
+            "--dport",
+            "443",
+            "-j",
+            "REDIRECT",
+            "--to-port",
+            port,
+        )
+        run_iptables(
+            "-t",
+            "nat",
+            "-I",
+            "PREROUTING",
+            "-i",
+            interface,
+            "-s",
+            client,
+            "-p",
+            "tcp",
+            "--dport",
+            "80",
+            "-j",
+            "REDIRECT",
+            "--to-port",
+            port
+        )
+
+
+def disable_mitmdump(interface, client, port, netns):
+    """Disable mitmdump on this interface."""
+
+    if netns:
+        run_iptables(
+            "-t",
+            "nat",
+            "-D",
+            "PREROUTING",
+            "-p",
+            "tcp",
+            "--dport",
+            "443",
+            "-j",
+            "REDIRECT",
+            "--to-port",
+            port,
+            netns=netns,
+        )
+        run_iptables(
+            "-t",
+            "nat",
+            "-D",
+            "PREROUTING",
+            "-p",
+            "tcp",
+            "--dport",
+            "80",
+            "-j",
+            "REDIRECT",
+            "--to-port",
+            port,
+            netns=netns,
+        )
+    else:
+        run_iptables(
+            "-t",
+            "nat",
+            "-D",
+            "PREROUTING",
+            "-i",
+            interface,
+            "-s",
+            client,
+            "-p",
+            "tcp",
+            "--dport",
+            "443",
+            "-j",
+            "REDIRECT",
+            "--to-port",
+            port,
+        )
+        run_iptables(
+            "-t",
+            "nat",
+            "-D",
+            "PREROUTING",
+            "-i",
+            interface,
+            "-s",
+            client,
+            "-p",
+            "tcp",
+            "--dport",
+            "80",
+            "-j",
+            "REDIRECT",
+            "--to-port",
+            port,
+        )
+
+def polarproxy_enable(interface, client, tls_port, proxy_port):
+    log.info("Enabling polarproxy route.")
+    run_iptables(
+        "-t",
+        "nat",
+        "-I",
+        "PREROUTING",
+        "1",
+        "-i",
+        interface,
+        "--source",
+        client,
+        "-p",
+        "tcp",
+        "--dport",
+        tls_port,
+        "-j",
+        "REDIRECT",
+        "--to",
+        proxy_port
+    )
+    run_iptables(
+        "-A",
+        "INPUT",
+        "-i",
+        interface,
+        "-p",
+        "tcp",
+        "--dport",
+        proxy_port,
+        "-m",
+        "state",
+        "--state",
+        "NEW",
+        "-j",
+        "ACCEPT"
+    )
+
+def polarproxy_disable(interface, client, tls_port, proxy_port):
+    log.info("Disabling polarproxy route.")
+    run_iptables(
+        "-t",
+        "nat",
+        "-D",
+        "PREROUTING",
+        "-i",
+        interface,
+        "--source",
+        client,
+        "-p",
+        "tcp",
+        "--dport",
+        tls_port,
+        "-j",
+        "REDIRECT",
+        "--to",
+        proxy_port
+    )
+    run_iptables(
+        "-D",
+        "INPUT",
+        "-i",
+        interface,
+        "-p",
+        "tcp",
+        "--dport",
+        proxy_port,
+        "-m",
+        "state",
+        "--state",
+        "NEW",
+        "-j",
+        "ACCEPT"
+    )
+
 def init_rttable(rt_table, interface):
     """Initialise routing table for this interface using routes
     from main table."""
-    if rt_table in ["local", "main", "default"]:
+    if rt_table in ("local", "main", "default"):
         return
 
     stdout, _ = run(settings.ip, "route", "list", "dev", interface)
@@ -148,29 +481,120 @@ def init_rttable(rt_table, interface):
 
 def flush_rttable(rt_table):
     """Flushes specified routing table entries."""
-    if rt_table in ["local", "main", "default"]:
+    if rt_table in ("local", "main", "default"):
         return
 
     run(settings.ip, "route", "flush", "table", rt_table)
 
 
-def forward_enable(src, dst, ipaddr):
-    """Enable forwarding a specific IP address from one interface into
-    another."""
+def forward_enable(src, dst, ipaddr, accept_segments=None, proto=None, ports=None):
+    """Enable forwarding a specific IP address from one interface into another."""
     # Delete libvirt's default FORWARD REJECT rules. e.g.:
     # -A FORWARD -o virbr0 -j REJECT --reject-with icmp-port-unreachable
     # -A FORWARD -i virbr0 -j REJECT --reject-with icmp-port-unreachable
     run_iptables("-D", "FORWARD", "-i", src, "-j", "REJECT")
     run_iptables("-D", "FORWARD", "-o", src, "-j", "REJECT")
-    run_iptables("-I", "FORWARD", "-i", src, "-o", dst, "--source", ipaddr, "-j", "ACCEPT")
-    run_iptables("-I", "FORWARD", "-i", dst, "-o", src, "--destination", ipaddr, "-j", "ACCEPT")
+    if ports and (not proto or proto not in ["tcp", "udp"]):
+        log.debug("Invalid protocol of transport layer")
+        return False
+    if ports:
+        if "-" in ports:
+            # We need a single hyphen to indicate that it is a range
+            if ports.count("-") != 1:
+                log.debug("Invalid ports range entry: %s", ports)
+                return False
+            else:
+                start_port, end_port = ports.split("-")
+                if not start_port.isdigit() or not end_port.isdigit() or start_port > end_port:
+                    log.debug("Invalid port range entry: %s", ports)
+                    return False
+                else:
+                    # Good to go! iptables takes port ranges as start:end
+                    ports = ports.replace("-", ":")
+        # Handle a single port
+        else:
+            if not ports.isdigit():
+                log.debug("Invalid port entry: %s", ports)
+                return False
+
+    args = ["-I", "CAPE_ACCEPTED_SEGMENTS", "-i", src, "-o", dst, "--source", ipaddr]
+    if accept_segments:
+        args += ["--destination", accept_segments]
+    if ports:
+        args += ["-p", proto, "-m", "multiport", "--dport", ports]
+    args += ["-j", "ACCEPT"]
+    run_iptables(*args)
 
 
-def forward_disable(src, dst, ipaddr):
+def forward_disable(src, dst, ipaddr, accept_segments=None, proto=None, ports=None):
     """Disable forwarding of a specific IP address from one interface into
     another."""
-    run_iptables("-D", "FORWARD", "-i", src, "-o", dst, "--source", ipaddr, "-j", "ACCEPT")
-    run_iptables("-D", "FORWARD", "-i", dst, "-o", src, "--destination", ipaddr, "-j", "ACCEPT")
+    if ports and (not proto or proto not in ["tcp", "udp"]):
+        log.debug("Invalid protocol of transport layer")
+        return False
+    if ports:
+        if "-" in ports:
+            # We need a single hyphen to indicate that it is a range
+            if ports.count("-") != 1:
+                log.debug("Invalid ports range entry: %s", ports)
+                return False
+            else:
+                start_port, end_port = ports.split("-")
+                if not start_port.isdigit() or not end_port.isdigit() or start_port > end_port:
+                    log.debug("Invalid port range entry: %s", ports)
+                    return False
+                else:
+                    # Good to go! iptables takes port ranges as start:end
+                    ports = ports.replace("-", ":")
+        # Handle a single port
+        else:
+            if not ports.isdigit():
+                log.debug("Invalid port entry: %s", ports)
+                return False
+
+    args = ["-D", "CAPE_ACCEPTED_SEGMENTS", "-i", src, "-o", dst, "--source", ipaddr]
+    if accept_segments:
+        args += ["--destination", accept_segments]
+    if ports:
+        args += ["-p", proto, "-m", "multiport", "--dport", ports]
+    args += ["-j", "ACCEPT"]
+    run_iptables(*args)
+
+
+def forward_reject_enable(src, dst, ipaddr, reject_segments):
+    """Enable forwarding a specific IP address from one interface into another
+    but reject some targets network segments."""
+    run_iptables(
+        "-I", "CAPE_REJECTED_SEGMENTS", "-i", src, "-o", dst, "--source", ipaddr, "--destination", reject_segments, "-j", "REJECT"
+    )
+
+
+def forward_reject_disable(src, dst, ipaddr, reject_segments):
+    """Disable forwarding a specific IP address from one interface into another
+    but reject some targets network segments."""
+    run_iptables(
+        "-D", "CAPE_REJECTED_SEGMENTS", "-i", src, "-o", dst, "--source", ipaddr, "--destination", reject_segments, "-j", "REJECT"
+    )
+
+
+def hostports_reject_enable(src, ipaddr, reject_hostports):
+    """Enable drop a specific IP address from one interface to host ports."""
+    run_iptables(
+        "-A", "INPUT", "-i", src, "--source", ipaddr, "-p", "tcp", "-m", "multiport", "--dport", reject_hostports, "-j", "REJECT"
+    )
+    run_iptables(
+        "-A", "INPUT", "-i", src, "--source", ipaddr, "-p", "udp", "-m", "multiport", "--dport", reject_hostports, "-j", "REJECT"
+    )
+
+
+def hostports_reject_disable(src, ipaddr, reject_hostports):
+    """Disable drop a specific IP address from one interface to host ports."""
+    run_iptables(
+        "-D", "INPUT", "-i", src, "--source", ipaddr, "-p", "tcp", "-m", "multiport", "--dport", reject_hostports, "-j", "REJECT"
+    )
+    run_iptables(
+        "-D", "INPUT", "-i", src, "--source", ipaddr, "-p", "udp", "-m", "multiport", "--dport", reject_hostports, "-j", "REJECT"
+    )
 
 
 def srcroute_enable(rt_table, ipaddr):
@@ -234,11 +658,31 @@ def inetsim_redirect_port(action, srcip, dstip, ports):
             log.debug("Invalid inetsim ports entry: %s", entry)
             continue
         srcport, dstport = entry.split(":")
-        if not srcport.isdigit() or not dstport.isdigit():
-            log.debug("Invalid inetsim ports entry: %s", entry)
+        if not dstport.isdigit():
+            log.debug("Invalid inetsim dstport entry: %s", dstport)
             continue
-        run(
-            settings.iptables,
+
+        # Handle srcport ranges
+        if "-" in srcport:
+            # We need a single hyphen to indicate that it is a range
+            if srcport.count("-") != 1:
+                log.debug("Invalid inetsim srcport range entry: %s", srcport)
+                continue
+            else:
+                start_srcport, end_srcport = srcport.split("-")
+                if not start_srcport.isdigit() or not end_srcport.isdigit():
+                    log.debug("Invalid inetsim srcport range entry: %s", srcport)
+                    continue
+                else:
+                    # Good to go! iptables takes port ranges as start:end
+                    srcport = srcport.replace("-", ":")
+
+        # Handle a single srcport
+        else:
+            if not srcport.isdigit():
+                log.debug("Invalid inetsim srcport entry: %s", srcport)
+                continue
+        run_iptables(
             "-t",
             "nat",
             action,
@@ -257,19 +701,64 @@ def inetsim_redirect_port(action, srcip, dstip, ports):
         )
 
 
-def inetsim_enable(ipaddr, inetsim_ip, dns_port, resultserver_port, ports):
-    """Enable hijacking of all traffic and send it to InetSIM."""
-    log.info("Enabling inetsim route.")
-    inetsim_redirect_port("-A", ipaddr, inetsim_ip, ports)
+def inetsim_service_port_trap(action, srcip, dstip, protocol):
+    # Note that the multiport limit for ports specified is 15,
+    # so we will split this up into two rules
     run_iptables(
         "-t",
         "nat",
-        "-I",
+        action,
+        "PREROUTING",
+        "--source",
+        srcip,
+        "-p",
+        protocol,
+        "-m",
+        "multiport",
+        "--dports",
+        # The following ports are used for default services on Ubuntu
+        "7,9,13,17,19,21,22,25,37,69,79,80,110,113",
+        "-j",
+        "DNAT",
+        "--to-destination",
+        dstip,
+    )
+    run_iptables(
+        "-t",
+        "nat",
+        action,
+        "PREROUTING",
+        "--source",
+        srcip,
+        "-p",
+        protocol,
+        "-m",
+        "multiport",
+        "--dports",
+        # The following ports are used for default services on Ubuntu
+        "123,443,465,514,990,995,6667",
+        "-j",
+        "DNAT",
+        "--to-destination",
+        dstip,
+    )
+
+
+def inetsim_trap(action, ipaddr, inetsim_ip, resultserver_port):
+    # There are four options for protocol in iptables: tcp, udp, icmp and all
+    # Since we want tcp, udp and icmp to be configured differently, we cannot use all
+    # tcp
+    run_iptables(
+        "-t",
+        "nat",
+        action,
         "PREROUTING",
         "--source",
         ipaddr,
         "-p",
         "tcp",
+        "-m",
+        "tcp",
         "--syn",
         "!",
         "--dport",
@@ -277,42 +766,118 @@ def inetsim_enable(ipaddr, inetsim_ip, dns_port, resultserver_port, ports):
         "-j",
         "DNAT",
         "--to-destination",
-        "{}".format(inetsim_ip),
+        "%s:%s" % (inetsim_ip, "1"),
     )
-    run_iptables("-A", "OUTPUT", "-m", "conntrack", "--ctstate", "INVALID", "-j", "DROP")
-    run_iptables("-A", "OUTPUT", "-m", "state", "--state", "INVALID", "-j", "DROP")
-    dns_forward("-A", ipaddr, inetsim_ip, dns_port)
-    run_iptables("-A", "OUTPUT", "--source", ipaddr, "-j", "DROP")
-
-
-def inetsim_disable(ipaddr, inetsim_ip, dns_port, resultserver_port, ports):
-    """Disable hijacking of all traffic and send it to InetSIM."""
-    log.info("Disabling inetsim route.")
-    inetsim_redirect_port("-D", ipaddr, inetsim_ip, ports)
+    # udp
     run_iptables(
-        "-D",
-        "PREROUTING",
         "-t",
         "nat",
+        action,
+        "PREROUTING",
         "--source",
         ipaddr,
         "-p",
-        "tcp",
-        "--syn",
+        "udp",
         "!",
         "--dport",
         resultserver_port,
         "-j",
         "DNAT",
         "--to-destination",
-        "{}".format(inetsim_ip),
+        "%s:%s" % (inetsim_ip, "1"),
     )
+    # icmp
+    run_iptables(
+        "-t",
+        "nat",
+        action,
+        "PREROUTING",
+        "--source",
+        ipaddr,
+        "-p",
+        "icmp",
+        "--icmp-type",
+        "any",
+        "-j",
+        "DNAT",
+        "--to-destination",
+        "%s:%s" % (inetsim_ip, "1"),
+    )
+
+
+def inetsim_enable(ipaddr, inetsim_ip, dns_port, resultserver_port, ports):
+    """Enable hijacking of all traffic and send it to InetSIM."""
+    log.info("Enabling inetsim route.")
+    inetsim_redirect_port("-A", ipaddr, inetsim_ip, ports)
+    inetsim_service_port_trap("-A", ipaddr, inetsim_ip, "tcp")
+    inetsim_service_port_trap("-A", ipaddr, inetsim_ip, "udp")
+    dns_forward("-A", ipaddr, inetsim_ip, dns_port)
+    inetsim_trap("-A", ipaddr, inetsim_ip, resultserver_port)
+    # INetSim does not have an SSH service, so SSH traffic can get through to the host. We want to block this.
+    run_iptables("-A", "INPUT", "--source", ipaddr, "-p", "tcp", "-m", "tcp", "--dport", "22", "-j", "DROP")
+    run_iptables("-A", "OUTPUT", "-m", "conntrack", "--ctstate", "INVALID", "-j", "DROP")
+    run_iptables("-A", "OUTPUT", "-m", "state", "--state", "INVALID", "-j", "DROP")
+    run_iptables("-A", "OUTPUT", "--source", ipaddr, "-j", "DROP")
+
+
+def inetsim_disable(ipaddr, inetsim_ip, dns_port, resultserver_port, ports):
+    """Disable hijacking of all traffic and send it to InetSIM."""
+    log.info("Disabling inetsim route.")
+    inetsim_redirect_port("-D", ipaddr, inetsim_ip, ports)
+    inetsim_service_port_trap("-D", ipaddr, inetsim_ip, "tcp")
+    inetsim_service_port_trap("-D", ipaddr, inetsim_ip, "udp")
+    dns_forward("-D", ipaddr, inetsim_ip, dns_port)
+    inetsim_trap("-D", ipaddr, inetsim_ip, resultserver_port)
+    run_iptables("-D", "INPUT", "--source", ipaddr, "-p", "tcp", "-m", "tcp", "--dport", "22", "-j", "DROP")
     run_iptables("-D", "OUTPUT", "-m", "conntrack", "--ctstate", "INVALID", "-j", "DROP")
     run_iptables("-D", "OUTPUT", "-m", "state", "--state", "INVALID", "-j", "DROP")
-    dns_forward("-D", ipaddr, inetsim_ip, dns_port)
     run_iptables("-D", "OUTPUT", "--source", ipaddr, "-j", "DROP")
 
 
+def interface_route_tun_enable(ipaddr: str, out_interface: str, task_id: str):
+    """Enable routing and NAT via tun output_interface."""
+    log.info("Enabling interface routing via: %s for task: %s", out_interface, task_id)
+
+    # mark packets from analysis VM
+    run_iptables("-t", "mangle", "-I", "PREROUTING", "--source", ipaddr, "-j", "MARK", "--set-mark", task_id)
+
+    run_iptables("-t", "nat", "-I", "POSTROUTING", "--source", ipaddr, "-o", out_interface, "-j", "MASQUERADE")
+    # ACCEPT forward
+    run_iptables("-t", "filter", "-I", "FORWARD", "--source", ipaddr, "-o", out_interface, "-j", "ACCEPT")
+
+    # in routing table add route table task_id
+    run(s.ip, "rule", "add", "fwmark", task_id, "lookup", task_id)
+
+    peer_ip = get_tun_peer_address(out_interface)
+    if peer_ip:
+        log.info("interface_route_enable %s has peer: %s ", out_interface, peer_ip)
+        run(s.ip, "route", "add", "default", "via", peer_ip, "table", task_id)
+    else:
+        log.error("interface_route_enable missing peer IP ")
+
+
+def interface_route_tun_disable(ipaddr: str, out_interface: str, task_id: str):
+    """Disable routing and NAT via tun output_interface."""
+    log.info("Disable interface routing via: %s for task: %s", out_interface, task_id)
+
+    # mark packets from analysis VM
+    run_iptables("-t", "mangle", "-D", "PREROUTING", "--source", ipaddr, "-j", "MARK", "--set-mark", task_id)
+
+    run_iptables("-t", "nat", "-D", "POSTROUTING", "--source", ipaddr, "-o", out_interface, "-j", "MASQUERADE")
+    # ACCEPT forward
+    run_iptables("-t", "filter", "-D", "FORWARD", "--source", ipaddr, "-o", out_interface, "-j", "ACCEPT")
+
+    # in routing table add route table task_id
+    run(s.ip, "rule", "del", "fwmark", task_id, "lookup", task_id)
+
+    peer_ip = get_tun_peer_address(out_interface)
+    if peer_ip:
+        log.info("interface_route_disable %s has peer %s", out_interface, peer_ip)
+        run(s.ip, "route", "del", "default", "via", peer_ip, "table", task_id)
+    else:
+        log.error("interface_route_disable missing peer IP ")
+
+
 def socks5_enable(ipaddr, resultserver_port, dns_port, proxy_port):
     """Enable hijacking of all traffic and send it to socks5."""
     log.info("Enabling socks route.")
@@ -334,10 +899,14 @@ def socks5_enable(ipaddr, resultserver_port, dns_port, proxy_port):
         "--to-ports",
         proxy_port,
     )
-    run_iptables("-I", "1", "OUTPUT", "-m", "conntrack", "--ctstate", "INVALID", "-j", "DROP")
-    run_iptables("-I", "2", "OUTPUT", "-m", "state", "--state", "INVALID", "-j", "DROP")
-    run_iptables("-t", "nat", "-A", "PREROUTING", "-p", "tcp", "--dport", "53", "--source", ipaddr, "-j", "REDIRECT", "--to-ports", dns_port)
-    run_iptables("-t", "nat", "-A", "PREROUTING", "-p", "udp", "--dport", "53", "--source", ipaddr, "-j", "REDIRECT", "--to-ports", dns_port)
+    run_iptables("-I", "OUTPUT", "1", "-m", "conntrack", "--ctstate", "INVALID", "-j", "DROP")
+    run_iptables("-I", "OUTPUT", "2", "-m", "state", "--state", "INVALID", "-j", "DROP")
+    run_iptables(
+        "-t", "nat", "-A", "PREROUTING", "-p", "tcp", "--dport", "53", "--source", ipaddr, "-j", "REDIRECT", "--to-ports", dns_port
+    )
+    run_iptables(
+        "-t", "nat", "-A", "PREROUTING", "-p", "udp", "--dport", "53", "--source", ipaddr, "-j", "REDIRECT", "--to-ports", dns_port
+    )
     run_iptables("-A", "OUTPUT", "--source", ipaddr, "-j", "DROP")
 
 
@@ -364,13 +933,19 @@ def socks5_disable(ipaddr, resultserver_port, dns_port, proxy_port):
     )
     run_iptables("-D", "OUTPUT", "-m", "conntrack", "--ctstate", "INVALID", "-j", "DROP")
     run_iptables("-D", "OUTPUT", "-m", "state", "--state", "INVALID", "-j", "DROP")
-    run_iptables("-t", "nat", "-D", "PREROUTING", "-p", "tcp", "--dport", "53", "--source", ipaddr, "-j", "REDIRECT", "--to-ports", dns_port)
-    run_iptables("-t", "nat", "-D", "PREROUTING", "-p", "udp", "--dport", "53", "--source", ipaddr, "-j", "REDIRECT", "--to-ports", dns_port)
+    run_iptables(
+        "-t", "nat", "-D", "PREROUTING", "-p", "tcp", "--dport", "53", "--source", ipaddr, "-j", "REDIRECT", "--to-ports", dns_port
+    )
+    run_iptables(
+        "-t", "nat", "-D", "PREROUTING", "-p", "udp", "--dport", "53", "--source", ipaddr, "-j", "REDIRECT", "--to-ports", dns_port
+    )
     run_iptables("-D", "OUTPUT", "--source", ipaddr, "-j", "DROP")
 
 
 def drop_enable(ipaddr, resultserver_port):
-    run_iptables("-t", "nat", "-I", "PREROUTING", "--source", ipaddr, "-p", "tcp", "--syn", "--dport", resultserver_port, "-j", "ACCEPT")
+    run_iptables(
+        "-t", "nat", "-I", "PREROUTING", "--source", ipaddr, "-p", "tcp", "--syn", "--dport", resultserver_port, "-j", "ACCEPT"
+    )
     run_iptables("-A", "INPUT", "--destination", ipaddr, "-p", "tcp", "--dport", "8000", "-j", "ACCEPT")
     run_iptables("-A", "INPUT", "--destination", ipaddr, "-p", "tcp", "--sport", resultserver_port, "-j", "ACCEPT")
     run_iptables("-A", "OUTPUT", "--destination", ipaddr, "-p", "tcp", "--dport", "8000", "-j", "ACCEPT")
@@ -380,7 +955,9 @@ def drop_enable(ipaddr, resultserver_port):
 
 
 def drop_disable(ipaddr, resultserver_port):
-    run_iptables("-t", "nat", "-D", "PREROUTING", "--source", ipaddr, "-p", "tcp", "--syn", "--dport", resultserver_port, "-j", "ACCEPT")
+    run_iptables(
+        "-t", "nat", "-D", "PREROUTING", "--source", ipaddr, "-p", "tcp", "--syn", "--dport", resultserver_port, "-j", "ACCEPT"
+    )
     run_iptables("-D", "INPUT", "--destination", ipaddr, "-p", "tcp", "--dport", "8000", "-j", "ACCEPT")
     run_iptables("-D", "INPUT", "--destination", ipaddr, "-p", "tcp", "--sport", resultserver_port, "-j", "ACCEPT")
     run_iptables("-D", "OUTPUT", "--destination", ipaddr, "-p", "tcp", "--dport", "8000", "-j", "ACCEPT")
@@ -402,22 +979,37 @@ def drop_disable(ipaddr, resultserver_port):
     "flush_rttable": flush_rttable,
     "forward_enable": forward_enable,
     "forward_disable": forward_disable,
+    "forward_reject_enable": forward_reject_enable,
+    "forward_reject_disable": forward_reject_disable,
+    "hostports_reject_enable": hostports_reject_enable,
+    "hostports_reject_disable": hostports_reject_disable,
     "srcroute_enable": srcroute_enable,
     "srcroute_disable": srcroute_disable,
     "inetsim_enable": inetsim_enable,
     "inetsim_disable": inetsim_disable,
+    "interface_route_tun_enable": interface_route_tun_enable,
+    "interface_route_tun_disable": interface_route_tun_disable,
     "socks5_enable": socks5_enable,
     "socks5_disable": socks5_disable,
     "drop_enable": drop_enable,
     "drop_disable": drop_disable,
     "cleanup_rooter": cleanup_rooter,
+    "init_vrf": init_vrf,
+    "cleanup_vrf": cleanup_vrf,
+    "add_dev_to_vrf": add_dev_to_vrf,
+    "delete_dev_from_vrf": delete_dev_from_vrf,
+    "enable_mitmdump": enable_mitmdump,
+    "disable_mitmdump": disable_mitmdump,
+    "polarproxy_enable": polarproxy_enable,
+    "polarproxy_disable": polarproxy_disable,
 }
 
 if __name__ == "__main__":
     parser = argparse.ArgumentParser()
     parser.add_argument("socket", nargs="?", default="/tmp/cuckoo-rooter", help="Unix socket path")
-    parser.add_argument("-g", "--group", default="cuckoo", help="Unix socket group")
+    parser.add_argument("-g", "--group", default="cape", help="Unix socket group")
     parser.add_argument("--systemctl", default="/bin/systemctl", help="Systemctl wrapper script for invoking OpenVPN")
+    parser.add_argument("--sysctl", default="/usr/sbin/sysctl", help="Path to sysctl")
     parser.add_argument("--iptables", default="/sbin/iptables", help="Path to iptables")
     parser.add_argument("--iptables-save", default="/sbin/iptables-save", help="Path to iptables-save")
     parser.add_argument("--iptables-restore", default="/sbin/iptables-restore", help="Path to iptables-restore")
@@ -426,23 +1018,31 @@ def drop_disable(ipaddr, resultserver_port):
     settings = parser.parse_args()
 
     if settings.verbose:
+        # Verbose logging is not only controlled by the level. Some INFO logs are also
+        # conditional (like here).
         log.setLevel(logging.DEBUG)
+        log.info("Verbose logging enabled")
 
-    if not settings.systemctl or not os.path.exists(settings.systemctl):
+    if not settings.systemctl or not path_exists(settings.systemctl):
         sys.exit(
             "The systemctl binary is not available, please configure it!\n"
             "Note that on CentOS you should provide --systemctl /bin/systemctl, "
             "rather than using the Ubuntu/Debian default /bin/systemctl."
         )
 
-    if not settings.iptables or not os.path.exists(settings.iptables):
+    if not settings.iptables or not path_exists(settings.iptables):
         sys.exit("The `iptables` binary is not available, eh?!")
 
+    if not settings.sysctl or not path_exists(settings.sysctl):
+        sys.exit("The `sysctrl` binary is not available, eh?!")
+
     if os.getuid():
         sys.exit("This utility is supposed to be ran as root.")
 
-    if os.path.exists(settings.socket):
-        os.remove(settings.socket)
+    enable_ip_forwarding(settings.sysctl)
+
+    if path_exists(settings.socket):
+        path_delete(settings.socket)
 
     server = socket.socket(socket.AF_UNIX, socket.SOCK_DGRAM)
     server.bind(settings.socket)
@@ -458,6 +1058,8 @@ def drop_disable(ipaddr, resultserver_port):
             "./utils/rooter.py -g myuser" % settings.group
         )
 
+    # global username
+    username = settings.group
     os.chown(settings.socket, 0, gr.gr_gid)
     os.chmod(settings.socket, stat.S_IRUSR | stat.S_IWUSR | stat.S_IWGRP)
 
@@ -469,7 +1071,7 @@ def drop_disable(ipaddr, resultserver_port):
 
     # Simple object to allow a signal handler to stop the rooter loop
 
-    class Run(object):
+    class Run:
         def __init__(self):
             self.run = True
 
@@ -487,13 +1089,17 @@ def handle_sigterm(sig, f):
         try:
             command, addr = server.recvfrom(4096)
         except socket.error as e:
+            if not do.run:
+                # When the signal handler shuts the server down, do.run is False and
+                # server.recvfrom raises an exception. Ignore that exception and exit.
+                break
             if e.errno == errno.EINTR:
                 continue
             raise e
 
         try:
             obj = json.loads(command)
-        except:
+        except Exception:
             log.info("Received invalid request: %r", command)
             continue
 
@@ -502,30 +1108,32 @@ def handle_sigterm(sig, f):
         kwargs = obj.get("kwargs", {})
 
         if not isinstance(command, str) or command not in handlers:
-            log.info("Received incorrect command: %r", command)
+            log.warning("Received incorrect command: %r", command)
             continue
 
         if not isinstance(args, (tuple, list)):
-            log.info("Invalid arguments type: %r", args)
+            log.warning("Invalid arguments type: %r", args)
             continue
 
         if not isinstance(kwargs, dict):
-            log.info("Invalid keyword arguments: %r", kwargs)
+            log.warning("Invalid keyword arguments: %r", kwargs)
             continue
 
         for arg in args + list(kwargs.keys()) + list(kwargs.values()):
             if not isinstance(arg, str):
-                log.info("Invalid argument detected: %r", arg)
+                log.warning("Invalid argument type detected: %r (%s)", arg, type(arg))
                 break
         else:
             if settings.verbose:
-                log.info("Processing command: %s %s %s", command, " ".join(args), " ".join("%s=%s" % (k, v) for k, v in kwargs.items()))
+                log.info(
+                    "Processing command: %s %s %s", command, " ".join(args), " ".join("%s=%s" % (k, v) for k, v in kwargs.items())
+                )
 
             error = None
             output = None
             try:
                 output = handlers[command](*args, **kwargs)
             except Exception as e:
-                log.exception("Error executing command: {}".format(command))
+                log.exception("Error executing command: %s", command)
                 error = str(e)
-            server.sendto(json.dumps({"output": output, "exception": error,}).encode("utf-8"), addr)
+            server.sendto(json.dumps({"output": output, "exception": error}).encode(), addr)
diff --git a/utils/route.py b/utils/route.py
index 48d3b7c06e2..5bbf62726ff 100755
--- a/utils/route.py
+++ b/utils/route.py
@@ -1,7 +1,21 @@
 #!/usr/bin/python
 
 """
-    Aux script for VPN setup
+Aux script for VPN setup
+
+Get a look on utils/vpn2cape.py
+Example:
+    /etc/iproute2/rt_tables
+        5 host1
+        6 host2
+        7 host3
+
+    conf/routing.conf
+        [vpn5]
+        name = X.ovpn
+        description = X
+        interface = tunX
+        rt_table = host1
 """
 
 import os
@@ -10,13 +24,18 @@
 IP_ROUTE_TABLES = "/etc/iproute2/rt_tables"
 
 if __name__ == "__main__":
+    # This doesn't work out of the box for most of the providers.
+    # To make it works for your provider you need first to uncomment `print(os.environ)` to get all variables
+    # Adjust variables name or even code if needed to match your entries in rt_table
+    # print(os.environ)
     config_name = os.environ.get("config")
     local_ip = os.environ.get("ifconfig_local")
     vpn_gateway = os.environ.get("route_vpn_gateway")
-    common_name = os.environ.get("common_name")
     dev = os.environ.get("dev")
-    ip_table = common_name
-    print("ip rule add from {} table {}".format(local_ip, ip_table))
-    print("ip route add default via {} dev {} table {}".format(vpn_gateway, dev, ip_table))
+    # You might need to edit next line to set ip_table name properly. It can be under different variable.
+    # if you don't have host1 in os.enviroment under any variable, search another variable that you can use and edit rt_tables and routing.conf
+    ip_table = dev[3:]
+    print(f"ip rule add from {local_ip} table {ip_table}")
+    print(f"ip route add default via {vpn_gateway} dev {dev} table {ip_table}")
     subprocess.call(["ip", "rule", "add", "from", local_ip, "table", ip_table])
     subprocess.call(["ip", "route", "add", "default", "via", vpn_gateway, "dev", dev, "table", ip_table])
diff --git a/utils/router_manager.py b/utils/router_manager.py
new file mode 100644
index 00000000000..dfff28c5c75
--- /dev/null
+++ b/utils/router_manager.py
@@ -0,0 +1,207 @@
+import argparse
+import logging
+import os
+import sys
+
+CAPE_ROOT = os.path.join(os.path.abspath(os.path.dirname(__file__)), "..")
+sys.path.append(CAPE_ROOT)
+
+from lib.cuckoo.common.config import Config
+from lib.cuckoo.common.exceptions import CuckooCriticalError, CuckooNetworkError
+from lib.cuckoo.core.rooter import _load_socks5_operational, rooter
+
+cfg = Config()
+routing = Config("routing")
+log = logging.getLogger()
+socks5s = _load_socks5_operational()
+machinery_conf = Config(cfg.cuckoo.machinery)
+vpns = routing.vpn.get("vpns", "")
+
+# os.listdir('/sys/class/net/')
+HAVE_NETWORKIFACES = False
+try:
+    import psutil
+
+    network_interfaces = list(psutil.net_if_addrs().keys())
+    HAVE_NETWORKIFACES = True
+except ImportError:
+    print("Missing dependency: poetry run pip install psutil")
+
+
+def check_privileges():
+    if not os.environ.get("SUDO_UID") and os.geteuid() != 0:
+        raise PermissionError("You need to run this script with sudo or as root.")
+
+
+def _rooter_response_check(rooter_response):
+    if rooter_response and rooter_response["exception"] is not None:
+        raise CuckooCriticalError(f"Error execution rooter command: {rooter_response['exception']}")
+
+
+def route_enable(route, interface, rt_table, machine, reject_segments, reject_hostports):
+    if route == "inetsim":
+        rooter_response = rooter(
+            "inetsim_enable",
+            machine.ip,
+            str(routing.inetsim.server),
+            str(routing.inetsim.dnsport),
+            str(cfg.resultserver.port),
+            str(routing.inetsim.ports),
+        )
+    elif route == "tor":
+        rooter_response = rooter(
+            "socks5_enable",
+            machine.ip,
+            str(cfg.resultserver.port),
+            str(routing.tor.dnsport),
+            str(routing.tor.proxyport),
+        )
+    elif route in socks5s:
+        rooter_response = rooter(
+            "socks5_enable",
+            machine.ip,
+            str(cfg.resultserver.port),
+            str(socks5s[route]["dnsport"]),
+            str(socks5s[route]["port"]),
+        )
+    elif route in ("none", "None", "drop"):
+        rooter_response = rooter("drop_enable", machine.ip, str(cfg.resultserver.port))
+        _rooter_response_check(rooter_response)
+
+    # check if the interface is up
+    if HAVE_NETWORKIFACES and routing.routing.verify_interface and interface and interface not in network_interfaces:
+        raise CuckooNetworkError(f"Network interface {interface} not found")
+    if interface:
+        # import code;code.interact(local=dict(locals(), **globals()))
+        rooter_response = rooter(
+            "forward_enable", machine.interface or machinery_conf.get(cfg.cuckoo.machinery).get("interface"), interface, machine.ip
+        )
+        _rooter_response_check(rooter_response)
+
+    if reject_segments:
+        rooter_response = rooter("forward_reject_enable", machine.interface, interface, machine.ip, reject_segments)
+        _rooter_response_check(rooter_response)
+
+    if reject_hostports:
+        rooter_response = rooter("hostports_reject_enable", machine.interface, machine.ip, reject_hostports)
+        _rooter_response_check(rooter_response)
+
+    log.info("Enabled route '%s'. Bear in mind that routes none and drop won't generate PCAP file", route)
+
+    if rt_table:
+        rooter_response = rooter("srcroute_enable", rt_table, machine.ip)
+        _rooter_response_check(rooter_response)
+
+
+def route_disable(route, interface, rt_table, machine, reject_segments, reject_hostports):
+    if interface:
+        rooter_response = rooter(
+            "forward_disable", machine.interface or machinery_conf.get(cfg.cuckoo.machinery).get("interface"), interface, machine.ip
+        )
+        _rooter_response_check(rooter_response)
+        if reject_segments:
+            rooter_response = rooter("forward_reject_disable", machine.interface, interface, machine.ip, reject_segments)
+            _rooter_response_check(rooter_response)
+        if reject_hostports:
+            rooter_response = rooter("hostports_reject_disable", machine.interface, machine.ip, reject_hostports)
+            _rooter_response_check(rooter_response)
+        log.info("Disabled route '%s'", route)
+
+    if rt_table:
+        rooter_response = rooter("srcroute_disable", rt_table, machine.ip)
+        _rooter_response_check(rooter_response)
+
+    if route == "inetsim":
+        rooter_response = rooter(
+            "inetsim_disable",
+            machine.ip,
+            routing.inetsim.server,
+            str(routing.inetsim.dnsport),
+            str(cfg.resultserver.port),
+            str(routing.inetsim.ports),
+        )
+    elif route == "tor":
+        rooter_response = rooter(
+            "socks5_disable",
+            machine.ip,
+            str(cfg.resultserver.port),
+            str(routing.tor.dnsport),
+            str(routing.tor.proxyport),
+        )
+    elif route in socks5s:
+        rooter_response = rooter(
+            "socks5_disable",
+            machine.ip,
+            str(cfg.resultserver.port),
+            str(socks5s[route]["dnsport"]),
+            str(socks5s[route]["port"]),
+        )
+    elif route in ("none", "None", "drop"):
+        rooter_response = rooter("drop_disable", machine.ip, str(cfg.resultserver.port))
+        _rooter_response_check(rooter_response)
+
+
+if __name__ == "__main__":
+    parser = argparse.ArgumentParser("Standalone script to debug VM problems that allows to enable routing on VM")
+    parser.add_argument("-r", "--route", default="tor", help="Route to enable")
+    parser.add_argument("-e", "--enable", default=False, action="store_true", help="Route enable")
+    parser.add_argument("-d", "--disable", default=False, action="store_true", help="Route disable")
+    parser.add_argument("--show-vm-names", action="store_true", default=False, help="Show names of all vms to use")
+    parser.add_argument(
+        "--vm-name",
+        default="",
+        help="VM name to load VM config from conf/<machinery>.conf, name that you have between []. Ex: [cape_vm1]. Specify only cape_vm1",
+    )
+    parser.add_argument("-v", "--verbose", action="store_true", help="Enable verbose logging")
+    args = parser.parse_args()
+    check_privileges()
+    route = args.route
+    rt_table = None
+    reject_segments = None
+    reject_hostports = None
+    if route in ("none", "None", "drop", "false"):
+        interface = None
+        rt_table = None
+    elif route == "inetsim":
+        interface = routing.inetsim.interface
+    elif route == "tor":
+        interface = routing.tor.interface
+    elif route == "internet" and routing.routing.internet != "none":
+        interface = routing.routing.internet
+        rt_table = routing.routing.rt_table
+        if routing.routing.reject_segments != "none":
+            reject_segments = routing.routing.reject_segments
+        if routing.routing.reject_hostports != "none":
+            reject_hostports = str(routing.routing.reject_hostports)
+    elif route in vpns:
+        vpn = routing.get(route)
+        interface = vpn.interface
+        rt_table = vpn.rt_table
+    elif route in socks5s:
+        interface = ""
+    else:
+        log.warning("Unknown network routing destination specified, ignoring routing for this analysis: %s", route)
+        interface = None
+        rt_table = None
+
+        # Check if the network interface is still available. If a VPN dies for
+        # some reason, its tunX interface will no longer be available.
+        if interface and not rooter("nic_available", interface):
+            log.error(
+                "The network interface '%s' configured for this analysis is "
+                "not available at the moment, switching to route=none mode",
+                interface,
+            )
+            route = "none"
+            interface = None
+            rt_table = None
+
+    if args.enable:
+        print(route, interface, rt_table, machinery_conf.get(args.vm_name), reject_segments, reject_hostports)
+        route_enable(route, interface, rt_table, machinery_conf.get(args.vm_name), reject_segments, reject_hostports)
+    elif args.disable:
+        route_disable(route, interface, rt_table, machinery_conf.get(args.vm_name), reject_segments, reject_hostports)
+    elif args.show_vm_names:
+        sys.exit(machinery_conf.get(cfg.cuckoo.machinery).get("machines").split(","))
+    else:
+        parser.print_help()
diff --git a/utils/sample_path.py b/utils/sample_path.py
index ce06b4f0a8f..519e51c14f3 100644
--- a/utils/sample_path.py
+++ b/utils/sample_path.py
@@ -1,40 +1,25 @@
-from __future__ import absolute_import
-from __future__ import print_function
+import argparse
 import os
 import sys
-import pymongo
 
 CUCKOO_ROOT = os.path.join(os.path.abspath(os.path.dirname(__file__)), "..")
 sys.path.append(CUCKOO_ROOT)
 
 from lib.cuckoo.common.config import Config
-from lib.cuckoo.core.database import Database
-
+from lib.cuckoo.common.path_utils import path_exists
+from lib.cuckoo.core.database import Database, init_database
 
 repconf = Config("reporting")
-if len(sys.argv) == 2:
-    db = Database()
-    paths = db.sample_path_by_hash(sys.argv[1])
-    if paths is not None:
-        paths = [path for path in paths if os.path.exists(path)]
+
+if "__main__" == __name__:
+    parser = argparse.ArgumentParser()
+    parser.add_argument("--hash", help="Hash to lookup", default=None, action="store", required=False)
+    parser.add_argument("--id", help="Get hash by sample_id from task", default=None, action="store", required=False)
+    args = parser.parse_args()
+
+    init_database()
+    paths = Database().sample_path_by_hash(sample_hash=args.hash, task_id=args.id)
+    if paths:
+        paths = [path for path in paths if path_exists(path)]
         if paths:
-            print(("Found by db.sample_path_by_hash: {}".format(sys.argv[1])))
-            print(paths)
-    else:
-        results_db = pymongo.MongoClient(
-            repconf.mongodb.host,
-            port=repconf.mongodb.port,
-            username=repconf.mongodb.get("username", None),
-            password=repconf.mongodb.get("password", None),
-            authSource=repconf.mongodb.db,
-        )[repconf.mongodb.db]
-        tasks = results_db.analysis.find({"dropped.sha256": sys.argv[1]})
-        if tasks:
-            for task in tasks:
-                path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(task["info"]["id"]), "files", sys.argv[1])
-                if os.path.exists(path):
-                    paths = [path]
-                    print(("Found by dropped in mongo: {}".format(sys.argv[1])))
-                    break
-else:
-    print("provide hash to search")
+            print("\n".join(paths))
diff --git a/utils/smtp_sinkhole.py b/utils/smtp_sinkhole.py
deleted file mode 100644
index f1dcd30f0f2..00000000000
--- a/utils/smtp_sinkhole.py
+++ /dev/null
@@ -1,89 +0,0 @@
-#!/usr/bin/env python
-# Copyright (C) 2014-2016 Cuckoo Foundation.
-# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
-# See the file 'docs/LICENSE' for copying permission.
-
-from __future__ import absolute_import
-import os
-import sys
-import logging
-import asyncore
-import argparse
-
-import smtplib
-from email.MIMEMultipart import MIMEMultipart
-from email.MIMEBase import MIMEBase
-from email import Encoders
-
-from datetime import datetime
-from smtpd import SMTPServer
-
-# Cuckoo root
-sys.path.append(os.path.join(os.path.abspath(os.path.dirname(__file__)), ".."))
-from lib.cuckoo.common.config import Config
-
-email_config = Config("smtp_sinkhole")
-
-
-class SmtpSink(SMTPServer):
-    """SMTP Sinkhole server."""
-
-    # Where mails should be saved.
-    mail_dir = None
-    forward = None
-
-    def process_message(self, peer, mailfrom, rcpttos, data):
-        """Custom mail processing used to save mails to disk."""
-        # Save message to disk only if path is passed.
-        timestamp = datetime.now()
-        if self.mail_dir:
-            file_name = "%s" % timestamp.strftime("%Y%m%d%H%M%S")
-
-            # Duplicate check.
-            i = 0
-            while os.path.exists(os.path.join(self.mail_dir, file_name + str(i))):
-                i += 1
-
-            file_name = file_name + str(i)
-            with open(os.path.join(self.mail_dir, file_name), "w") as mail:
-                mail.write(data)
-
-        # Forward message to specific email address
-        if self.forward and email_config:
-            try:
-                timestamp = datetime.now()
-                msg = MIMEMultipart()
-                msg["Subject"] = "Email from smtp sinkhole: {0}".format(timestamp.strftime("%Y-%m-%d %H:%M:%S"))
-                msg["From"] = email_config.email["from"]
-                msg["To"] = email_config.email["to"]
-                part = MIMEBase("application", "octet-stream")
-                part.set_payload(data)
-                Encoders.encode_base64(part)
-                part.add_header("Content-Disposition", 'attachment; filename="cuckoo.eml"')
-                msg.attach(part)
-                server = smtplib.SMTP_SSL(email_config.email["server"], int(email_config.email["port"]))
-                server.login(email_config.email["user"], email_config.email["password"])
-                server.set_debuglevel(1)
-                server.sendmail(email_config.email["from"], email_config.email["to"].split(" ,"), msg.as_string())
-                server.quit()
-            except Exception as e:
-                logging.error(e)
-
-
-if __name__ == "__main__":
-    parser = argparse.ArgumentParser(prog="smtp_sinkhole.py", usage="%(prog)s [host [port]]", description="SMTP Sinkhole")
-    parser.add_argument("host", nargs="?", default="127.0.0.1")
-    parser.add_argument("port", nargs="?", type=int, default=1025)
-    parser.add_argument("--dir", default=None, help="Directory used to dump emails.")
-    parser.add_argument("--forward", action="store_true", default=False, help="Forward emails to specific email address")
-
-    args = parser.parse_args()
-
-    s = SmtpSink((args.host, args.port), None)
-    s.mail_dir = args.dir
-    s.forward = args.forward
-
-    try:
-        asyncore.loop()
-    except KeyboardInterrupt:
-        pass
diff --git a/utils/smtp_sinkhole.sh b/utils/smtp_sinkhole.sh
deleted file mode 100755
index 3e1eb443124..00000000000
--- a/utils/smtp_sinkhole.sh
+++ /dev/null
@@ -1,18 +0,0 @@
-#!/bin/sh
-# Add "@reboot /opt/cuckoo-modified/utils/smtp_sinkhole.sh" to the root crontab.
-# smtp
-sudo iptables -t nat -A PREROUTING -i virbr0 -p tcp -m tcp --dport 25 -j REDIRECT --to-ports 1025
-sudo iptables -t nat -A PREROUTING -i virbr0 -p tcp -m tcp --sport 25 -j REDIRECT --to-ports 1025
-# tls + ssl
-sudo iptables -t nat -A PREROUTING -i virbr0 -p tcp -m tcp --dport 465 -j REDIRECT --to-ports 1025
-sudo iptables -t nat -A PREROUTING -i virbr0 -p tcp -m tcp --dport 587 -j REDIRECT --to-ports 1025
-
-cd /opt/CAPEv2/utils
-if [ ! -f "/opt/CAPEv2/utils/smtp_sinkhole.py" ]; then
-    exit 1
-fi
-
-if [ ! -d dumps ]; then
-    mkdir -p /opt/CAPEv2/utils/dumps
-fi
-python smtp_sinkhole.py 0.0.0.0 1025 --dir /opt/CAPEv2/utils/dumps
diff --git a/utils/submit.py b/utils/submit.py
index a191c0d70e6..8785b58f5c8 100644
--- a/utils/submit.py
+++ b/utils/submit.py
@@ -3,8 +3,6 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-from __future__ import print_function
 import argparse
 import fnmatch
 import logging
@@ -20,13 +18,15 @@
     HAVE_REQUESTS = False
 
 sys.path.append(os.path.join(os.path.abspath(os.path.dirname(__file__)), ".."))
-
 from lib.cuckoo.common.colors import bold, green, red, yellow
-from lib.cuckoo.common.objects import File
-from lib.cuckoo.common.utils import to_unicode
-from lib.cuckoo.core.database import Database
-from lib.cuckoo.common.config import Config
 from lib.cuckoo.common.exceptions import CuckooDemuxError
+from lib.cuckoo.common.objects import File
+from lib.cuckoo.common.path_utils import path_exists
+from lib.cuckoo.common.utils import sanitize_filename, store_temp_file, to_unicode
+from lib.cuckoo.core.database import Database, init_database
+from lib.cuckoo.core.startup import check_user_permissions
+
+check_user_permissions(os.getenv("CAPE_AS_ROOT", False))
 
 
 def main():
@@ -34,10 +34,17 @@ def main():
     parser.add_argument("target", help="URL, path to the file or folder to analyze")
     parser.add_argument("-d", "--debug", action="store_true", help="Enable debug logging")
     parser.add_argument(
-        "--remote", type=str, action="store", default=None, help="Specify IP:port to a Cuckoo API server to submit remotely", required=False
+        "--remote",
+        type=str,
+        action="store",
+        default=None,
+        help="Specify IP:port to a Cuckoo API server to submit remotely",
+        required=False,
     )
     parser.add_argument("--user", type=str, action="store", default=None, help="Username for Basic Auth", required=False)
     parser.add_argument("--password", type=str, action="store", default=None, help="Password for Basic Auth", required=False)
+    parser.add_argument("--token", type=str, action="store", default=None, help="Token for Token Auth", required=False)
+    parser.add_argument("--route", type=str, action="store", default=None, help="Specify an analysis route", required=False)
     parser.add_argument("--sslnoverify", action="store_true", default=False, help="Do not validate SSL cert", required=False)
     parser.add_argument("--ssl", action="store_true", default=False, help="Use SSL/TLS for remote", required=False)
     parser.add_argument("--url", action="store_true", default=False, help="Specify whether the target is an URL", required=False)
@@ -53,10 +60,20 @@ def main():
         required=False,
     )
     parser.add_argument(
-        "--priority", type=int, action="store", default=1, help="Specify a priority for the analysis represented by an integer", required=False
+        "--priority",
+        type=int,
+        action="store",
+        default=1,
+        help="Specify a priority for the analysis represented by an integer",
+        required=False,
     )
     parser.add_argument(
-        "--machine", type=str, action="store", default="", help="Specify the identifier of a machine you want to use", required=False
+        "--machine",
+        type=str,
+        action="store",
+        default="",
+        help="Specify the identifier of a machine you want to use",
+        required=False,
     )
     parser.add_argument(
         "--platform",
@@ -78,14 +95,23 @@ def main():
     )
     parser.add_argument("--clock", type=str, action="store", default=None, help="Set virtual machine clock", required=False)
     parser.add_argument(
-        "--tags", type=str, action="store", default=None, help="Specify tags identifier of a machine you want to use", required=False
+        "--tags",
+        type=str,
+        action="store",
+        default=None,
+        help="Specify tags identifier of a machine you want to use",
+        required=False,
     )
     parser.add_argument("--max", type=int, action="store", default=None, help="Maximum samples to add in a row", required=False)
     parser.add_argument("--pattern", type=str, action="store", default=None, help="Pattern of files to submit", required=False)
-    parser.add_argument("--shuffle", action="store_true", default=False, help="Shuffle samples before submitting them", required=False)
-    parser.add_argument("--unique", action="store_true", default=False, help="Only submit new samples, ignore duplicates", required=False)
+    parser.add_argument(
+        "--shuffle", action="store_true", default=False, help="Shuffle samples before submitting them", required=False
+    )
+    parser.add_argument(
+        "--unique", action="store_true", default=False, help="Only submit new samples, ignore duplicates", required=False
+    )
     parser.add_argument("--quiet", action="store_true", default=False, help="Only print text on failure", required=False)
-    parser.add_argument("--procdump", action="store_true", default=False, help="Dump, upload and process proc/memdumps", required=False)
+    parser.add_argument("--procdump", action="store_true", default=False, help="Disable process dumps", required=False)
 
     try:
         args = parser.parse_args()
@@ -105,6 +131,7 @@ def main():
     if args.quiet:
         logging.disable(logging.WARNING)
 
+    init_database()
     db = Database()
 
     target = to_unicode(args.target)
@@ -113,20 +140,20 @@ def main():
 
     if args.procdump:
         if args.options:
-            args.options = ",procdump=1"
+            args.options = ",procdump=0"
         else:
-            args.options = "procdump=1"
+            args.options = "procdump=0"
 
     if args.url:
         if args.remote:
             if not HAVE_REQUESTS:
-                print((bold(red("Error")) + ": you need to install python-requests (`pip3 install requests`)"))
+                print((bold(red("Error")) + ": you need to install python-requests (`poetry run pip install requests`)"))
                 return False
 
             if args.ssl:
-                url = "https://{0}/tasks/create/url".format(args.remote)
+                url = "https://{0}/apiv2/tasks/create/url/".format(args.remote)
             else:
-                url = "http://{0}/tasks/create/url".format(args.remote)
+                url = "http://{0}/apiv2/tasks/create/url/".format(args.remote)
 
             data = dict(
                 url=target,
@@ -140,6 +167,7 @@ def main():
                 enforce_timeout=args.enforce_timeout,
                 custom=args.custom,
                 tags=args.tags,
+                route=args.route,
             )
 
             try:
@@ -152,6 +180,15 @@ def main():
                         response = requests.post(url, auth=(args.user, args.password), data=data, verify=verify)
                     else:
                         response = requests.post(url, auth=(args.user, args.password), data=data)
+                elif args.token:
+                    if args.ssl:
+                        if args.sslnoverify:
+                            verify = False
+                        else:
+                            verify = True
+                        response = requests.post(url, headers={"Authorization": f"Token {args.token}"}, data=data, verify=verify)
+                    else:
+                        response = requests.post(url, headers={"Authorization": f"Token {args.token}"}, data=data)
                 else:
                     if args.ssl:
                         if args.sslnoverify:
@@ -169,31 +206,33 @@ def main():
             json = response.json()
             task_id = json["task_id"]
         else:
-            task_id = db.add_url(
-                target,
-                package=args.package,
-                timeout=sane_timeout,
-                options=args.options,
-                priority=args.priority,
-                machine=args.machine,
-                platform=args.platform,
-                custom=args.custom,
-                memory=args.memory,
-                enforce_timeout=args.enforce_timeout,
-                clock=args.clock,
-                tags=args.tags,
-            )
+            with db.session.begin():
+                task_id = db.add_url(
+                    target,
+                    package=args.package,
+                    timeout=sane_timeout,
+                    options=args.options,
+                    priority=args.priority,
+                    machine=args.machine,
+                    platform=args.platform,
+                    custom=args.custom,
+                    memory=args.memory,
+                    enforce_timeout=args.enforce_timeout,
+                    clock=args.clock,
+                    tags=args.tags,
+                    route=args.route,
+                )
 
         if task_id:
             if not args.quiet:
-                print((bold(green("Success")) + u': URL "{0}" added as task with ID {1}'.format(target, task_id)))
+                print((bold(green("Success")) + ': URL "{0}" added as task with ID {1}'.format(target, task_id)))
         else:
             print((bold(red("Error")) + ": adding task to database"))
     else:
         # Get absolute path to deal with relative.
         path = to_unicode(os.path.abspath(target))
-        if not os.path.exists(path):
-            print((bold(red("Error")) + u': the specified file/folder does not exist at path "{0}"'.format(path)))
+        if not path_exists(path):
+            print((bold(red("Error")) + ': the specified file/folder does not exist at path "{0}"'.format(path)))
             return False
 
         files = []
@@ -232,12 +271,12 @@ def main():
 
             if args.remote:
                 if not HAVE_REQUESTS:
-                    print((bold(red("Error")) + ": you need to install python-requests (`pip3 install requests`)"))
+                    print((bold(red("Error")) + ": you need to install python-requests (`poetry run pip install requests`)"))
                     return False
                 if args.ssl:
-                    url = "https://{0}/tasks/create/file".format(args.remote)
+                    url = "https://{0}/apiv2/tasks/create/file/".format(args.remote)
                 else:
-                    url = "http://{0}/tasks/create/file".format(args.remote)
+                    url = "http://{0}/apiv2/tasks/create/file/".format(args.remote)
 
                 files = dict(file=open(file_path, "rb"), filename=os.path.basename(file_path))
 
@@ -252,6 +291,7 @@ def main():
                     enforce_timeout=args.enforce_timeout,
                     custom=args.custom,
                     tags=args.tags,
+                    route=args.route,
                 )
 
                 try:
@@ -264,6 +304,17 @@ def main():
                             response = requests.post(url, auth=(args.user, args.password), files=files, data=data, verify=verify)
                         else:
                             response = requests.post(url, auth=(args.user, args.password), files=files, data=data)
+                    elif args.token:
+                        if args.ssl:
+                            if args.sslnoverify:
+                                verify = False
+                            else:
+                                verify = True
+                            response = requests.post(
+                                url, headers={"Authorization": f"Token {args.token}"}, files=files, data=data, verify=verify
+                            )
+                        else:
+                            response = requests.post(url, headers={"Authorization": f"Token {args.token}"}, files=files, data=data)
                     else:
                         if args.ssl:
                             if args.sslnoverify:
@@ -279,40 +330,47 @@ def main():
                     return False
 
                 json = response.json()
-                task_ids = [json.get("task_ids", None)]
+                task_ids = json["data"].get("task_ids")
 
             else:
-                if args.unique and db.check_file_uniq(File(file_path).get_sha256()):
-                    msg = ": Sample {0} (skipping file)".format(file_path)
-                    if not args.quiet:
-                        print((bold(yellow("Duplicate")) + msg))
-                    continue
+                if args.unique:
+                    with db.session.begin():
+                        already_exists = db.check_file_uniq(File(file_path).get_sha256())
+                    if already_exists:
+                        msg = ": Sample {0} (skipping file)".format(file_path)
+                        if not args.quiet:
+                            print((bold(yellow("Duplicate")) + msg))
+                        continue
 
                 try:
-                    task_ids, extra_details = db.demux_sample_and_add_to_db(
-                        file_path=file_path.encode("utf-8"),
-                        package=args.package,
-                        timeout=sane_timeout,
-                        options=args.options,
-                        priority=args.priority,
-                        machine=args.machine,
-                        platform=args.platform,
-                        memory=args.memory,
-                        custom=args.custom,
-                        enforce_timeout=args.enforce_timeout,
-                        clock=args.clock,
-                        tags=args.tags,
-                    )
+                    tmp_path = store_temp_file(open(file_path, "rb").read(), sanitize_filename(os.path.basename(file_path)))
+                    with db.session.begin():
+                        # ToDo expose extra_details["errors"]
+                        task_ids, extra_details = db.demux_sample_and_add_to_db(
+                            file_path=tmp_path,
+                            package=args.package,
+                            timeout=sane_timeout,
+                            options=args.options,
+                            priority=args.priority,
+                            machine=args.machine,
+                            platform=args.platform,
+                            memory=args.memory,
+                            custom=args.custom,
+                            enforce_timeout=args.enforce_timeout,
+                            clock=args.clock,
+                            tags=args.tags,
+                            route=args.route,
+                        )
                 except CuckooDemuxError as e:
                     task_ids = []
                     print((bold(red("Error")) + ": {0}".format(e)))
             tasks_count = len(task_ids)
             if tasks_count > 1:
                 if not args.quiet:
-                    print((bold(green("Success")) + u': File "{0}" added as task with IDs {1}'.format(file_path, task_ids)))
+                    print((bold(green("Success")) + ': File "{0}" added as task with IDs {1}'.format(file_path, task_ids)))
             elif tasks_count > 0:
                 if not args.quiet:
-                    print((bold(green("Success")) + u': File "{0}" added as task with ID {1}'.format(file_path, task_ids[0])))
+                    print((bold(green("Success")) + ': File "{0}" added as task with ID {1}'.format(file_path, task_ids[0])))
             else:
                 print((bold(red("Error")) + ": adding task to database"))
 
diff --git a/utils/tcpdumpwrapper.py b/utils/tcpdumpwrapper.py
index 0b045901fe6..abfb682a9fb 100644
--- a/utils/tcpdumpwrapper.py
+++ b/utils/tcpdumpwrapper.py
@@ -4,11 +4,9 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-import sys
 import os
+import sys
 import time
-from six.moves import range
 
 iface = ""
 for idx, arg in enumerate(sys.argv):
@@ -18,7 +16,7 @@
 for i in range(30):
     f = open("/proc/net/dev", "rb")
     for line in f:
-        dev = line.split(":")[0]
+        dev = line.split(":", 1)[0]
         if dev == iface:
             break
     f.close()
diff --git a/utils/test_suricata_signature.py b/utils/test_suricata_signature.py
deleted file mode 100644
index 1fc7bf950ab..00000000000
--- a/utils/test_suricata_signature.py
+++ /dev/null
@@ -1,13 +0,0 @@
-from __future__ import absolute_import
-from __future__ import print_function
-import os, sys
-
-if sys.version_info[:2] < (3, 5):
-    sys.exit("You are running an incompatible version of Python, please use >= 3.5")
-
-CUCKOO_ROOT = os.path.join(os.path.abspath(os.path.dirname(__file__)), "..")
-sys.path.append(CUCKOO_ROOT)
-
-from lib.cuckoo.core.plugins import get_suricata_family
-
-print("Suricata detects as:", get_suricata_family(sys.argv[1]))
diff --git a/utils/tls.py b/utils/tls.py
new file mode 100644
index 00000000000..b8919a0b7de
--- /dev/null
+++ b/utils/tls.py
@@ -0,0 +1,61 @@
+import os
+import re
+from dataclasses import dataclass
+from typing import ClassVar
+
+
+@dataclass()
+class TLS12KeyLog:
+    """TLS 1.2 key log."""
+
+    # The type of secret that is being conveyed. TLS 1.2 and earlier
+    # uses the label "CLIENT_RANDOM" to identify the "master" secret
+    # for the connection.
+    LOG_LABEL: ClassVar[str] = "CLIENT_RANDOM"
+    # The 32-byte value of the Random field from the
+    # 'client hello' message sent during the TLS handshake.
+    client_random: str
+    # The 32-byte value of the Random field from the
+    # 'server hello' message sent during the TLS handshake.
+    server_random: str
+    # The value of the identified secret for the identified
+    # connection.
+    master_secret: str
+
+    @classmethod
+    def from_cape_log(cls, log):
+        TLS12_PATTERN = r"client_random:\s*(?P<client_random>[a-f0-9]+)\s*,\s*server_random:\s*(?P<server_random>[a-f0-9]+)\s*,\s*master_secret:\s*(?P<master_secret>[a-f0-9]+)\s*"
+        retval = None
+        match = re.match(TLS12_PATTERN, log)
+        params = match.groupdict() if match else {}
+        if len(params) == 3:
+            retval = cls(**params)
+        return retval
+
+    def __str__(self):
+        """Return a string that adheres to the SSLKEYLOGFILE standard
+        for TLS 1.2 (and earlier).
+        """
+        return f"{self.LOG_LABEL} {self.client_random} {self.master_secret}"
+
+
+def tlslog_to_sslkeylogfile(tls_log_path, sslkeylogfile_path):
+    """Convert Cape's TLS log file (tlsdump.log) into a format that is
+    readable by WireShark (SSLKEYLOGFILE).
+
+    The SSLKEYLOGFILE format is defined by the IETF TLS working group.
+    The draft standard is published here:
+    https://datatracker.ietf.org/doc/draft-ietf-tls-keylogfile/
+    """
+    if not os.path.exists(tls_log_path):
+        return
+
+    # SSLKEYLOGFILE should be encoded using utf-8, even though the
+    # content only includes ASCII characters. Though Unicode is
+    # permitted in comments, the file MUST NOT contain a Unicode byte
+    # order mark.
+    with open(tls_log_path, "r") as ifile, open(sslkeylogfile_path, "w+", encoding="utf-8") as ofile:
+        for line in ifile:
+            tlslog = TLS12KeyLog.from_cape_log(line)
+            if tlslog:
+                ofile.write(f"{tlslog}\n")
diff --git a/utils/tridupdate.py b/utils/tridupdate.py
deleted file mode 100644
index a9f04309c06..00000000000
--- a/utils/tridupdate.py
+++ /dev/null
@@ -1,122 +0,0 @@
-#!/usr/bin/env python
-
-# --------------------------------------------------------------------------
-# Name:        tridupdate.py
-# Purpose:     TrID's definitions package updater
-#
-# Authors:     Marco Pontello - first release
-#              Chenfeng Bao - added compatibility with Python 2.x & 3.x
-#
-# Created:     20/05/2012
-# Copyright:   (c) Mark 2012-
-# Licence:     public domain
-# --------------------------------------------------------------------------
-
-
-from __future__ import print_function
-
-import os
-import sys
-import hashlib
-import argparse
-
-if sys.version_info.major >= 3:
-    from urllib.request import urlopen
-else:
-    from urllib import urlopen
-import zipfile
-import tempfile
-
-PROGRAM_VER = "1.10"
-
-
-def errexit(mess, errlev=1):
-    """Display an error and exit."""
-    print("%s: error: %s" % (os.path.split(sys.argv[0])[1], mess))
-    sys.exit(errlev)
-
-
-def chunked(file, chunk_size):
-    """Helper function to read files in chunks."""
-    return iter(lambda: file.read(chunk_size), b"")
-
-
-def MD5digest(filename=None, data=None):
-    """Return an MD5 digest for a file or a string."""
-    h = hashlib.md5()
-    if filename:
-        f = open(filename, "rb")
-        for data in chunked(f, 1024 * 1024):
-            h.update(data)
-        f.close()
-    elif data:
-        h.update(data)
-    return h.hexdigest()
-
-
-def trdget(url_defs):
-    """Download & unzip a new TrID defs package"""
-    f = tempfile.TemporaryFile()
-    u = urlopen(url_defs)
-    for data in chunked(u, 1024 * 8):
-        f.write(data)
-        print("\r%dKB" % (f.tell() / 1024), end=" ")
-        sys.stdout.flush()
-    print("\r", end=" ")
-    z = zipfile.ZipFile(f)
-    trd = z.read("triddefs.trd")
-    z.close()
-    f.close()
-    return trd
-
-
-def get_cmdline():
-    """Evaluate command line parameters, usage & help."""
-    parser = argparse.ArgumentParser(
-        description="TrID's definitions updater", formatter_class=argparse.ArgumentDefaultsHelpFormatter, prefix_chars="-/+"
-    )
-    parser.add_argument("filename", action="store", nargs="?", help="TRD package filename.", default="triddefs.trd")
-    parser.add_argument("--version", action="version", version="TrIDUpdate v%s - (C) 2012 M.Pontello" % PROGRAM_VER)
-    res = parser.parse_args()
-    return res
-
-
-def main():
-    res = get_cmdline()
-    trdfilename = res.filename
-
-    url_MD5 = "http://mark0.net/download/triddefs.trd.md5"
-    url_defs = "http://mark0.net/download/triddefs.zip"
-
-    if os.path.exists(trdfilename):
-        curdigest = MD5digest(filename=trdfilename)
-        print("MD5: %s" % (curdigest))
-    else:
-        curdigest = 0
-        print("File %s not found" % (trdfilename))
-
-    print("Checking last version online...")
-    f = urlopen(url_MD5)
-    newdigest = f.read().decode()
-    f.close()
-    print("MD5: %s" % (newdigest))
-
-    if curdigest == newdigest:
-        print("Current defs are up-to-date.")
-        sys.exit(0)
-
-    print("Downloading new defs...")
-    trdpack = trdget(url_defs)
-
-    print("Checking defs integrity...")
-    if MD5digest(data=trdpack) == newdigest:
-        f = open(trdfilename, "wb")
-        f.write(trdpack)
-        f.close()
-        print("OK.")
-    else:
-        errexit("Digest don't match. Retry!")
-
-
-if __name__ == "__main__":
-    main()
diff --git a/utils/vpn2cape.py b/utils/vpn2cape.py
index 925fecd099b..911efdd0ea1 100644
--- a/utils/vpn2cape.py
+++ b/utils/vpn2cape.py
@@ -1,39 +1,39 @@
+import argparse
 import os
 import re
-import sys
-import argparse
 
 #
-#   VPN intergrator for CAPE
-#   Quick and Dirty script by doomedraven to preparate configs for vpn integration
-
-def main():
-    rt_table = dict()
-    templates = list()
-    paths = list()
-    vpns = list()
+#   VPN integrator for CAPE
+#   Quick and Dirty script by doomedraven to prepare configs for vpn integration
+
+
+def main(folder, port):
+    idx_start = 1000
+    rt_table = {}
+    templates = []
+    paths = []
+    vpns = []
     template = """
 [vpn_{id}]
-# rename this to something different, you will use thil field to see in webgui or set in routing.conf
 name = {vpn_path}
 description = {description}
 interface = tun{id}
 rt_table = {rt}
 """
 
-    files = os.listdir(sys.argv[1])
+    files = os.listdir(folder)
     for index, file in enumerate(files):
         if file.endswith(".ovpn"):
-            path = os.path.join(sys.argv[1], file)
+            path = os.path.join(folder, file)
             tmp = open(path, "rt").read()
             write = 0
 
             # rt_table
             rt = ""
-            rt = re.findall("remote\s(.*)\s1194", tmp)
+            rt = re.findall(fr"remote\s(.*)\s{port}", tmp)
             if rt:
-                # start from id 5
-                rt_table.setdefault(str(index + 5), rt[0])
+                # start from id idx_start
+                rt_table.setdefault(str(index + idx_start), rt[0])
                 rt = rt[0]
 
             # add read login data from conf file
@@ -48,23 +48,33 @@ def main():
                 tmp += "\nping 10"
                 tmp += "\nping-restart 60"
                 tmp += "\npull-filter ignore auth-token"
+                tmp += "\npull-filter ignore ifconfig-ipv6"
+                tmp += "\npull-filter ignore route-ipv6"
                 write = 1
 
             # check device
-            dev = re.findall("dev tun\\b", tmp)
+            dev = re.findall("dev tun0", tmp)
             if dev:
-                tmp = tmp.replace("dev tun", "dev tun{0}".format(index + 1))
-                # print(file, 'dev tun{0}'.format(index+1))
+                tmp = tmp.replace("dev tun0", f"dev tun{index + idx_start}")
+                # print(file, f"dev tun{index+idx_start}")
                 write = 1
 
-            # tempalte for CAPE's routing.conf
-            print(template.format(vpn_name=file.split("/")[-1], vpn_path=path, description=file.split(".ovpn")[0], id=index + 1, rt=rt))
-            vpns.append("vpn_{0}".format(index + 1))
+            # template for CAPE's routing.conf
+            print(
+                template.format(
+                    vpn_path=path,
+                    description=file.split(".ovpn", 1)[0],
+                    id=index + idx_start,
+                    rt=rt,
+                )
+            )
+            vpns.append(f"vpn_{index + idx_start}")
+
+            file = file.replace(" ", r"\ ")
+            paths.append(f"sudo openvpn --config {file} &")
 
-            file = file.replace(" ", "\ ")
-            paths.append("sudo openvpn --config {0} --script-security 2 --route-noexec --route-up utils/route.py &".format(file))
             if write:
-                # updatign config
+                # updating config
                 tmp2 = open(path, "wt")
                 tmp2.write(tmp)
                 tmp2.close()
@@ -74,14 +84,14 @@ def main():
         print(", ".join(vpns))
 
     if templates:
-        print("\n\n\n[+] Tempaltes for CAPE's routing.conf")
+        print("\n\n\n[+] Templates for CAPE's routing.conf")
         for template in templates:
             print(template)
 
     if rt_table:
         print("\n\n\n[+] rt_table for /etc/iproute2/rt_tables")
         for route in sorted(rt_table, key=int):
-            print("{0} {1}".format(route, rt_table[route]))
+            print(f"{route} {rt_table[route]}")
 
     if paths:
         print("\n\n\n[+] Paths to execute all in one")
@@ -92,4 +102,8 @@ def main():
 if __name__ == "__main__":
     p = argparse.ArgumentParser()
     p.add_argument("-f", "--folder", action="store", help="Path to folder with ovpn configs")
-    main()
+    p.add_argument("-p", "--port", action="store", help="Port used by vpn server")
+    args = p.parse_args()
+    folder = args.folder
+    port = args.port
+    main(folder, port)
diff --git a/utils/vpncheck.py b/utils/vpncheck.py
index 2d03d0f8582..e3b6f02fd3d 100644
--- a/utils/vpncheck.py
+++ b/utils/vpncheck.py
@@ -3,8 +3,6 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-from __future__ import print_function
 import argparse
 import fcntl
 import os
@@ -14,6 +12,7 @@
 
 sys.path.append(os.path.join(os.path.abspath(os.path.dirname(__file__)), ".."))
 
+from lib.cuckoo.common.path_utils import path_delete, path_exists
 from lib.cuckoo.core.rooter import rooter, vpns
 from lib.cuckoo.core.startup import init_rooter, init_routing
 
@@ -35,8 +34,8 @@ def get_ip_address(interface):
     parser.add_argument("-v", "--verbose", action="store_true", help="Enable verbose logging")
     args = parser.parse_args()
 
-    if os.path.exists(args.client):
-        os.unlink(args.client)
+    if path_exists(args.client):
+        path_delete(args.client)
 
     init_rooter()
     init_routing()
@@ -47,7 +46,8 @@ def get_ip_address(interface):
             print("Not a configured VPN", vpn)
             continue
 
-        if not rooter("nic_available", vpns[vpn].interface):
+        is_nic_available = rooter("nic_available", vpns[vpn].interface)["output"]
+        if not is_nic_available:
             print("VPN is no longer available", vpn, file=sys.stderr)
             error = 1
             continue
diff --git a/utils/yara_test.py b/utils/yara_test.py
deleted file mode 100644
index 5d54010af8d..00000000000
--- a/utils/yara_test.py
+++ /dev/null
@@ -1,152 +0,0 @@
-#!/usr/bin/env python
-# Copyright (C) 2010-2015 Cuckoo Foundation.
-# This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
-# See the file 'docs/LICENSE' for copying permission.
-
-from __future__ import absolute_import
-from __future__ import print_function
-import os
-import sys
-import logging
-
-try:
-    import yara
-
-    HAVE_YARA = True
-except ImportError:
-    HAVE_YARA = False
-
-log = logging.getLogger()
-
-sys.path.append(os.path.join(os.path.abspath(os.path.dirname(__file__)), ".."))
-
-from lib.cuckoo.common.objects import File
-from lib.cuckoo.common.config import Config
-from lib.cuckoo.common.constants import CUCKOO_ROOT
-
-
-def init_yara():
-    """Generates index for yara signatures."""
-
-    def find_signatures(root):
-        signatures = []
-        for entry in os.listdir(root):
-            if entry.endswith(".yara") or entry.endswith(".yar"):
-                signatures.append(os.path.join(root, entry))
-
-        return signatures
-
-    print("Initializing Yara...")
-
-    # Generate root directory for yara rules.
-    yara_root = os.path.join(CUCKOO_ROOT, "data", "yara")
-
-    # We divide yara rules in three categories.
-    # CAPE adds a fourth
-    categories = ["binaries", "memory", "CAPE"]  # "urls"
-    generated = []
-    # Loop through all categories.
-    for category in categories:
-        # Check if there is a directory for the given category.
-        category_root = os.path.join(yara_root, category)
-        if not os.path.exists(category_root):
-            continue
-
-        # Check if the directory contains any rules.
-        signatures = []
-        for entry in os.listdir(category_root):
-            if entry.endswith(".yara") or entry.endswith(".yar"):
-                signatures.append(os.path.join(category_root, entry))
-                try:
-                    compile_yara(os.path.join(category_root, entry))
-                except Exception as e:
-                    print(os.path.join(category_root, entry), e)
-
-        if not signatures:
-            continue
-
-        # Generate path for the category's index file.
-        index_name = "index_{0}.yar".format(category)
-        index_path = os.path.join(yara_root, index_name)
-
-        # Create index file and populate it.
-        with open(index_path, "w") as index_handle:
-            for signature in signatures:
-                index_handle.write('include "{0}"\n'.format(signature))
-
-        generated.append(index_name)
-
-    for entry in generated:
-        if entry == generated[-1]:
-            print(("\t `-- {}", entry))
-        else:
-            print(("\t |-- {}", entry))
-
-
-def compile_yara(rulepath=""):
-    """Compile Yara signatures.
-    """
-    if not HAVE_YARA:
-        if not File.notified_yara:
-            File.notified_yara = True
-            print("Unable to import yara (please compile from sources)")
-        return
-
-    if not os.path.exists(rulepath):
-        print(("The specified rule file at {} doesn't exist, skip", rulepath))
-        return
-
-    try:
-        rules = yara.compile(rulepath)
-    except Exception as e:
-        print("Unexpected error:", sys.exc_info()[0])
-        raise
-        if "duplicated identifier" in e.args[0]:
-            print("Duplicate rule in {}, rulepath")
-            print(e.args[0])
-        else:
-            print("ERROR: SyntaxError in rules: {}".format(e.args))
-            return
-
-
-def test_yara():
-    print("About to attempt to compile yara rules...")
-
-    # Generate root directory for yara rules.
-    yara_root = os.path.join(CUCKOO_ROOT, "data", "yara")
-
-    # We divide yara rules in three categories.
-    # CAPE adds a fourth
-    categories = ["binaries", "urls", "memory", "CAPE"]
-    generated = []
-    # Loop through all categories.
-    for category in categories:
-        # Check if there is a directory for the given category.
-        category_root = os.path.join(yara_root, category)
-        if not os.path.exists(category_root):
-            continue
-
-        # Generate path for the category's index file.
-        index_name = "index_{0}.yar".format(category)
-        index_path = os.path.join(yara_root, index_name)
-
-        print(("Compiling {}", format(index_path)))
-        compile_yara(index_path)
-
-
-def main():
-    os.chdir(CUCKOO_ROOT)
-
-    init_yara()
-    test_yara()
-
-    print("Complete")
-
-
-if __name__ == "__main__":
-    cfg = Config()
-
-    try:
-        main()
-    except KeyboardInterrupt:
-        pass
diff --git a/uwsgi/cape.conf b/uwsgi/cape.conf
new file mode 100644
index 00000000000..ee5429f84c4
--- /dev/null
+++ b/uwsgi/cape.conf
@@ -0,0 +1,79 @@
+server {
+    listen 80;
+    server_name _;
+    return 404;
+}
+
+server {
+    listen 443;
+    server_name _;
+    return 404;
+}
+
+server {
+    listen 80;
+    listen [::]:80;
+    server_name <your_domain> www.<your_domain>;
+        return 301 https://$host$request_uri;
+}
+
+server {
+    #if ($bad_referer){
+    #    return <URL>;
+    #}
+    #if ($block_ua) {
+    #    return 444;
+    #}
+    #if ($http_user_agent = "") {
+    #    return 444;
+    #}
+
+    modsecurity on;
+    modsecurity_rules_file /etc/nginx/modsec/main.conf;
+
+    listen 443 ssl default_server;
+    server_name <your_domain> www.<your_domain>;
+    ssl_certificate         /etc/letsencrypt/live/<your_domain>-0001/fullchain.pem;
+    ssl_certificate_key     /etc/letsencrypt/live/<your_domain>-0001/privkey.pem;
+    ssl_client_certificate /etc/ssl/certs/cloudflare.crt;
+
+    ssl_session_cache shared:SSL:20m;
+    ssl_session_timeout 60m;
+    ssl_prefer_server_ciphers on;
+    ssl_ciphers ECDH+AESGCM:ECDH+AES256:ECDH+AES128:DHE+AES128:!ADH:!AECDH:!MD5;
+
+    ##
+    # Nginx Bad Bot Blocker Includes
+    # REPO: https://github.com/mitchellkrogza/nginx-ultimate-bad-bot-blocker
+    ##
+    include /etc/nginx/bots.d/ddos.conf;
+    include /etc/nginx/bots.d/blockbots.conf;
+
+    ssl_dhparam /etc/nginx/cert/dhparam.pem;
+    ssl_protocols TLSv1.2 TLSv1.3;
+
+    add_header Strict-Transport-Security "max-age=31536000" always;
+
+
+    location / {
+        proxy_pass http://127.0.0.1:8000;
+        client_max_body_size 32M;
+        client_body_buffer_size 512k;
+        proxy_send_timeout 90;
+        proxy_read_timeout 300;
+        proxy_buffers 32 4k;
+        proxy_connect_timeout 90;
+        proxy_set_header Host $http_host;
+        proxy_set_header X-Real-IP $remote_addr;
+        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+        proxy_set_header X-Forwarded-Proto $scheme;
+        include     uwsgi_params; # the uwsgi_params in nginx
+    }
+    location /static/ {
+        alias /opt/CAPEv2/web/static/;
+    }
+    location '/.well-known/acme-challenge' {
+        default_type "text/plain";
+        root /var/www/<your_domain>;
+    }
+}
diff --git a/uwsgi/cape.ini b/uwsgi/cape.ini
new file mode 100644
index 00000000000..0945feb4b2c
--- /dev/null
+++ b/uwsgi/cape.ini
@@ -0,0 +1,32 @@
+[uwsgi]
+    lazy-apps = True
+    vacuum = True
+    ; if using with NGINX
+    http-socket = 127.0.0.1:8000
+    ; if standalone
+    ;http-socket = 0.0.0.0:8000
+    static-map = /static=/opt/CAPEv2/web/static
+    # to get venv path run: cd /opt/CAPEv2 && poetry env list --full-path
+    # virtualenv = <path_goes_here>
+    # You might need to change plugin version, depending on your python version
+    plugins = python312
+    callable = application
+    chdir = /opt/CAPEv2/web
+    file = web/wsgi.py
+    env = DJANGO_SETTINGS_MODULE=web.settings
+    uid = cape
+    gid = cape
+    enable-threads = true
+    master = true
+    processes = 10
+    workers = 10
+    ;max-requests = 300
+    manage-script-name = true
+    ;disable-logging = True
+    listen = 2056
+    ;harakiri = 30
+    hunder-lock = True
+    #max-worker-lifetime = 30
+    ;Some files found in this directory are processed by uWSGI init.d script as
+    ;uWSGI configuration files.
+    touch-reload=/tmp/capeuwsgireload
diff --git a/uwsgi/capedist.ini b/uwsgi/capedist.ini
new file mode 100644
index 00000000000..325e971b313
--- /dev/null
+++ b/uwsgi/capedist.ini
@@ -0,0 +1,30 @@
+[uwsgi]
+    ; you might need to adjust plugin-dir path for your system
+    ; plugins-dir = /usr/lib/uwsgi/plugins
+    plugins = python38
+    callable = app
+    ; to get venv path run: cd /opt/CAPEv2 && poetry env list --full-path
+    ; virtualenv = <path_goes_here>
+    ; You might need to change plugin version, depending on your python version
+    chdir = /opt/CAPEv2/utils
+    master = true
+    mount = /=dist.py
+    threads = 5
+    workers = 1
+    manage-script-name = true
+    ; if you will use with nginx, comment next line
+    socket = 0.0.0.0:9003
+    safe-pidfile = /tmp/dist.pid
+    protocol=http
+    enable-threads = true
+    lazy = true
+    lazy-apps = True
+    timeout = 600
+    chmod-socket = 664
+    chown-socket = cape:cape
+    gui = cape
+    uid = cape
+    harakiri = 30
+    hunder-lock = True
+    stats = 127.0.0.1:9191
+    touch-reload=/tmp/capeuwsgidistreload
diff --git a/web/analysis/forms.py b/web/analysis/forms.py
index 13ce266fd18..315b44680d0 100644
--- a/web/analysis/forms.py
+++ b/web/analysis/forms.py
@@ -2,9 +2,7 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 from django import forms
-
 from submission.models import Comment, Tag
 
 
diff --git a/web/analysis/templatetags/analysis_tags.py b/web/analysis/templatetags/analysis_tags.py
index afbe247d072..791dfffcd2b 100644
--- a/web/analysis/templatetags/analysis_tags.py
+++ b/web/analysis/templatetags/analysis_tags.py
@@ -1,6 +1,4 @@
-from __future__ import absolute_import
 import os
-import six
 from io import StringIO
 
 try:
@@ -9,14 +7,29 @@
     import re
 
 from collections import OrderedDict
-from django.utils.safestring import mark_safe
-from django.utils.html import escape
+from uuid import NAMESPACE_DNS, uuid3
+
 from django.template.defaultfilters import register
+from django.utils.html import escape
+from django.utils.safestring import mark_safe
+
+
+@register.filter("is_string")
+def is_string(value):
+    return isinstance(value, str)
+
+
+@register.filter("comma_join")
+def comma_join(value):
+    return ",".join(str(task) for task in value)
+
 
 @register.filter("network_rn")
 def network_rn_func(value):
     """get basename from path"""
-    return list(filter(None, value.decode("utf-8").split("\r\n")))
+    if isinstance(value, bytes):
+        value = value.decode()
+    return list(filter(None, value.split("\r\n")))
 
 
 @register.filter("filename")
@@ -24,6 +37,7 @@ def filename(value):
     """get basename from path"""
     return os.path.basename(value)
 
+
 @register.filter("mongo_id")
 def mongo_id(value):
     """Retrieve _id value.
@@ -34,7 +48,7 @@ def mongo_id(value):
             value = value["_id"]
 
     # Return value
-    return six.text_type(value)
+    return str(value)
 
 
 @register.filter("is_dict")
@@ -47,14 +61,16 @@ def is_dict(value):
 def get_item(dictionary, key):
     return dictionary.get(key, "")
 
+
 malware_name_url_pattern = """<a href="/analysis/search/detections:{malware_name}"><span style="color:#EE1B2F;font-weight: bold;">{malware_name}</span></a>"""
+
+
 @register.filter("get_detection_by_pid")
 def get_detection_by_pid(dictionary, key):
     if not dictionary:
         return
     detections = dictionary.get(str(key), "")
     if detections:
-
         if len(detections) > 1:
             output = " -> ".join([malware_name_url_pattern.format(malware_name=name) for name in detections])
         else:
@@ -68,15 +84,6 @@ def dehex(value):
     return re.sub(r"\\x[0-9a-f]{2}", "", value)
 
 
-@register.filter(name="stats_total")
-def stats_total(value):
-    total = float()
-    for item in value:
-        total += item["time"]
-
-    return total
-
-
 @register.filter(name="sort")
 def sort(value):
     if isinstance(value, dict):
@@ -101,89 +108,101 @@ def format_cli(cli, length):
         return ""
     return ret
 
+
 @register.filter(name="flare_capa_capability")
 def flare_capa_capabilities(obj, *args, **kwargs):
     result = StringIO()
+
     def _print(lvl, s):
-        result.write((lvl * u'  ') + s)
+        result.write((lvl * "  ") + s)
 
     _print(1, '<table class="table table-striped table-hover table-bordered">\n')
-    _print(1, '<thead>\n')
-    _print(1, '<tr>\n')
+    _print(1, "<thead>\n")
+    _print(1, "<tr>\n")
     _print(1, '<th scope="col">Namespace</th>\n')
     _print(1, '<th scope="col">Capability</th>\n')
-    _print(2, '</tr>\n')
-    _print(3, '</thead>\n')
-    _print(3, '<tbody>\n')
+    _print(2, "</tr>\n")
+    _print(3, "</thead>\n")
+    _print(3, "<tbody>\n")
     for namespaces, capabilities in obj.get("CAPABILITY", {}).items():
-        _print(4, '<tr>\n')
-        _print(4, '<th width="25%" scope="row">'+namespaces+'</th>\n')
-        _print(4, '<td>\n')
+        _print(4, "<tr>\n")
+        _print(4, '<th width="25%" scope="row">' + namespaces + "</th>\n")
+        _print(4, "<td>\n")
         for capability in capabilities:
-            _print(5, '<li>'+capability+'</li>\n')
-        _print(4, '</td>\n')
-        _print(3, '</tr>\n')
-    _print(2, '</tbody>\n')
-    _print(1, '</table>\n')
+            _print(5, "<li>" + capability + "</li>\n")
+        _print(4, "</td>\n")
+        _print(3, "</tr>\n")
+    _print(2, "</tbody>\n")
+    _print(1, "</table>\n")
 
-    return mark_safe(result.getvalue())
+    ret_result = result.getvalue()
+    result.close()
+    return mark_safe(ret_result)
 
 
 @register.filter(name="flare_capa_attck")
 def flare_capa_attck(obj, *args, **kwargs):
     result = StringIO()
+
     def _print(lvl, s):
-        result.write((lvl * u'  ') + s)
+        result.write((lvl * "  ") + s)
 
     _print(1, '<table class="table table-striped table-hover table-bordered">\n')
-    _print(1, '<thead>\n')
-    _print(1, '<tr>\n')
+    _print(1, "<thead>\n")
+    _print(1, "<tr>\n")
     _print(1, '<th scope="col">ATT&CK Tactic</th>\n')
     _print(1, '<th scope="col">ATT&CK Technique</th>\n')
-    _print(2, '</tr>\n')
-    _print(3, '</thead>\n')
-    _print(3, '<tbody>\n')
+    _print(2, "</tr>\n")
+    _print(3, "</thead>\n")
+    _print(3, "<tbody>\n")
     for tactic, techniques in obj.get("ATTCK", {}).items():
-        _print(4, '<tr>\n')
-        _print(4, '<th scope="row">'+tactic+'</th>\n')
-        _print(4, '<td>\n')
+        _print(4, "<tr>\n")
+        _print(4, '<th width="25%" scope="row">' + tactic + "</th>\n")
+        _print(4, "<td>\n")
         for technique in techniques:
-            _print(5, '<li>'+technique+'</li>\n')
+            _print(5, "<li>" + technique + "</li>\n")
+
+        _print(4, "</td>\n")
+        _print(3, "</tr>\n")
+    _print(2, "</tbody>\n")
+    _print(1, "</table>\n")
 
-        _print(4, '</td>\n')
-        _print(3, '</tr>\n')
-    _print(2, '</tbody>\n')
-    _print(1, '</table>\n')
+    ret_result = result.getvalue()
+    result.close()
+    return mark_safe(ret_result)
 
-    return mark_safe(result.getvalue())
 
 @register.filter(name="flare_capa_mbc")
 def flare_capa_mbc(obj, *args, **kwargs):
     result = StringIO()
+
     def _print(lvl, s):
-        result.write((lvl * u'  ') + s)
+        result.write((lvl * "  ") + s)
 
     _print(1, '<table class="table table-striped table-hover table-bordered">\n')
-    _print(1, '<thead>\n')
-    _print(1, '<tr>\n')
+    _print(1, "<thead>\n")
+    _print(1, "<tr>\n")
     _print(1, '<th scope="col">MBC Objective</th>\n')
     _print(1, '<th scope="col">MBC Behavior</th>\n')
-    _print(2, '</tr>\n')
-    _print(3, '</thead>\n')
-    _print(3, '<tbody>\n')
+    _print(2, "</tr>\n")
+    _print(3, "</thead>\n")
+    _print(3, "<tbody>\n")
     for objective, behaviors in obj.get("MBC", {}).items():
-        _print(4, '<tr>\n')
-        _print(4, '<th scope="row">'+objective+'</th>\n')
-        _print(4, '<td>\n')
+        _print(4, "<tr>\n")
+        _print(4, '<th width="25%" scope="row">' + objective + "</th>\n")
+        _print(4, "<td>\n")
         for behavior in behaviors:
-            _print(5, '<li>'+behavior+'</li>\n')
+            _print(5, "<li>" + behavior + "</li>\n")
 
-        _print(4, '</td>\n')
-        _print(3, '</tr>\n')
-    _print(2, '</tbody>\n')
-    _print(1, '</table>\n')
+        _print(4, "</td>\n")
+        _print(3, "</tr>\n")
+    _print(2, "</tbody>\n")
+    _print(1, "</table>\n")
+
+    ret_result = result.getvalue()
+    result.close()
+    return mark_safe(ret_result)
 
-    return mark_safe(result.getvalue())
 
 # Thanks Sandor
 @register.simple_tag
@@ -193,35 +212,43 @@ def malware_config(obj, *args, **kwargs):
     unordered lists. Empty dicts and lists are rendered as empty fields.
     Single element lists are expanded and rendered as regular values.
     """
-    level = kwargs.get('level') or 0
+    level = kwargs.get("level") or 0
     result = StringIO()
 
     def _print(lvl, s):
-        result.write((lvl * u'  ') + str(s))
+        result.write((lvl * "  ") + str(s))
 
     if isinstance(obj, dict):
         if obj:
-            _print(0, '\n')
-            _print(level + 0, '<table>\n')
+            _print(0, "\n")
+            _print(level + 0, "<table>\n")
             for key, val in obj.items():
-                _print(level + 1, '<tr>\n')
-                _print(level + 2, '<td>' + malware_config(key, level=level + 3) + '</td>\n')
-                _print(level + 2, '<td>' + malware_config(val, level=level + 3) + '</td>\n')
-                _print(level + 1, '</tr>\n')
-            _print(level + 0, '</table>\n')
-            _print(level - 1, '')
+                _print(level + 1, "<tr>\n")
+                _print(level + 2, "<td>" + malware_config(key, level=level + 3) + "</td>\n")
+                _print(level + 2, "<td>" + malware_config(val, level=level + 3) + "</td>\n")
+                _print(level + 1, "</tr>\n")
+            _print(level + 0, "</table>\n")
+            _print(level - 1, "")
     elif isinstance(obj, list):
         if obj:
             if len(obj) > 1:
-                _print(0, '\n')
-                _print(level + 0, '<ul style="columns: 4;">\n')
+                _print(0, "\n")
+                _print(level + 0, '<ul style="margin: 0;columns: 4;">\n')
                 for item in obj:
-                    _print(level + 1, '<li>' + malware_config(item, level=level + 2) + '</li>\n')
-                _print(level + 0, '</ul>\n')
-                _print(level - 1, '')
+                    _print(level + 1, "<li>" + malware_config(item, level=level + 2) + "</li>\n")
+                _print(level + 0, "</ul>\n")
+                _print(level - 1, "")
             else:
                 result.write(malware_config(obj[0]))
     else:
         result.write(escape(str(obj)))
 
-    return mark_safe(result.getvalue())
+    ret_result = result.getvalue()
+    result.close()
+    return mark_safe(ret_result)
+
+
+@register.filter(name="playback_url")
+def playback_url(task_id):
+    session_id = uuid3(NAMESPACE_DNS, str(task_id)).hex[:16]
+    return f"{task_id}_{session_id}"
diff --git a/web/analysis/templatetags/generic_tags.py b/web/analysis/templatetags/generic_tags.py
index 75ef6087d20..6b3e928b43d 100644
--- a/web/analysis/templatetags/generic_tags.py
+++ b/web/analysis/templatetags/generic_tags.py
@@ -1,8 +1,9 @@
-from __future__ import absolute_import
-from lib.cuckoo.common.utils import convert_to_printable
-from django.template.defaultfilters import register
 from collections import deque
 
+from django.template.defaultfilters import register
+
+from lib.cuckoo.common.utils import convert_to_printable
+
 
 @register.filter("endswith")
 def endswith(value, thestr):
@@ -25,7 +26,8 @@ def proctreetolist(tree):
             newnode = {}
             newnode["pid"] = node["pid"]
             newnode["name"] = node["name"]
-            newnode["module_path"] = node["module_path"]
+            if "module_path" in node:
+                newnode["module_path"] = node["module_path"]
             if "environ" in node and "CommandLine" in node["environ"]:
                 cmdline = node["environ"]["CommandLine"]
                 if cmdline.startswith('"'):
diff --git a/web/analysis/templatetags/key_tags.py b/web/analysis/templatetags/key_tags.py
index e42d49ce417..47b4149d833 100644
--- a/web/analysis/templatetags/key_tags.py
+++ b/web/analysis/templatetags/key_tags.py
@@ -1,4 +1,3 @@
-from __future__ import absolute_import
 from django import template
 
 register = template.Library()
@@ -6,4 +5,33 @@
 
 @register.filter(name="getkey")
 def getkey(mapping, value):
-    return mapping.get(value, "")
+    if isinstance(mapping, dict):
+        return mapping.get(value, "")
+
+
+@register.filter(name="gettype")
+def gettype(value):
+    return str(type(value))
+
+
+@register.filter(name="str2list")
+def str2list(value):
+    if isinstance(value, str):
+        return [value]
+    return value
+
+
+@register.filter(name="dict2list")
+def dict2list(value):
+    if isinstance(value, dict):
+        return [value]
+    return value
+
+
+@register.filter(name="parentfixup")
+def parentfixup(value):
+    if "file_size" in value:
+        value["size"] = value["file_size"]
+    if "name" not in value:
+        value["name"] = value["sha256"]
+    return value
diff --git a/web/analysis/templatetags/pdf_tags.py b/web/analysis/templatetags/pdf_tags.py
index 63153b8bee7..e62350c407a 100644
--- a/web/analysis/templatetags/pdf_tags.py
+++ b/web/analysis/templatetags/pdf_tags.py
@@ -1,4 +1,3 @@
-from __future__ import absolute_import
 from django import template
 
 register = template.Library()
@@ -7,6 +6,18 @@
 @register.filter(name="datefmt")
 def datefmt(value):
     formatted = (
-        value[2:6] + "/" + value[6:8] + "/" + value[8:10] + " " + value[10:12] + ":" + value[12:14] + ":" + value[14:16] + " GMT" + value[16:19]
+        value[2:6]
+        + "/"
+        + value[6:8]
+        + "/"
+        + value[8:10]
+        + " "
+        + value[10:12]
+        + ":"
+        + value[12:14]
+        + ":"
+        + value[14:16]
+        + " GMT"
+        + value[16:19]
     )
     return formatted
diff --git a/web/analysis/urls.py b/web/analysis/urls.py
index bfba90c4cc3..3b8120b5ec4 100644
--- a/web/analysis/urls.py
+++ b/web/analysis/urls.py
@@ -2,31 +2,45 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file "docs/LICENSE" for copying permission.
 
-from __future__ import absolute_import
-from django.conf.urls import url
+from django.urls import re_path
+
 from analysis import views
 
 urlpatterns = [
-    url(r"^$", views.index, name="analysis"),
-    url(r"^page/(?P<page>\d+)/$", views.index, name="index"),
-    url(r"^(?P<task_id>\d+)/$", views.report, name="report"),
-    url(r"^load_files/(?P<task_id>\d+)/(?P<category>\w+)/$", views.load_files, name="load_files"),
-    url(r"^surialert/(?P<task_id>\d+)/$", views.surialert, name="surialert"),
-    url(r"^surihttp/(?P<task_id>\d+)/$", views.surihttp, name="surihttp"),
-    url(r"^suritls/(?P<task_id>\d+)/$", views.suritls, name="suritls"),
-    url(r"^surifiles/(?P<task_id>\d+)/$", views.surifiles, name="surifiles"),
-    url(r"^antivirus/(?P<task_id>\d+)/$", views.antivirus, name="antivirus"),
-    url(r"^shrike/(?P<task_id>\d+)/$", views.shrike, name="shrike"),
-    url(r"^remove/(?P<task_id>\d+)/$", views.remove, name="remove"),
-    url(r"^chunk/(?P<task_id>\d+)/(?P<pid>\d+)/(?P<pagenum>\d+)/$", views.chunk, name="chunk"),
-    url(r"^filtered/(?P<task_id>\d+)/(?P<pid>\d+)/(?P<category>\w+)/(?P<apilist>[!]?[A-Za-z_0-9,%]*)/(?P<caller>\w+)/(?P<tid>\w+)/$", views.filtered_chunk, name="filtered_chunk",),
-    url(r"^file_nl/(?P<category>\w+)/(?P<task_id>\d+)/(?P<dlfile>\w+)/$", views.file_nl, name="file_nl"),
-    url(r"^search/(?P<task_id>\d+)/$", views.search_behavior, name="search_behavior"),
-    url(r"^search/(?P<searched>[\w\d\s:\-_]+)/$", views.search, name="search"),
-    url(r"^search/$", views.search, name="search"),
-    url(r"^pending/$", views.pending, name="pending"),
-    url(r"^procdump/(?P<task_id>\d+)/(?P<process_id>\d+)/(?P<start>\w+)/(?P<end>\w+)/$", views.procdump, name="procdump"),
-    url(r"^(?P<task_id>\d+)/pcapstream/(?P<conntuple>[.,\w]+)/$", views.pcapstream, name="pcapstream"),
-    url(r"^(?P<task_id>\d+)/comments/$", views.comments, name="comments"),
-    url(r"^on_demand/(?P<service>[\w\-_]+)/(?P<task_id>\d+)/(?P<category>\w+)/(?P<sha256>\w{64})", views.on_demand, name="on_demand"),
+    re_path(r"^$", views.index, name="analysis"),
+    re_path(r"^page/(?P<page>\d+)/$", views.index, name="index"),
+    re_path(r"^(?P<task_id>\d+)/$", views.report, name="report"),
+    re_path(r"^load_files/(?P<task_id>\d+)/(?P<category>\w+)/$", views.load_files, name="load_files"),
+    re_path(r"^surialert/(?P<task_id>\d+)/$", views.surialert, name="surialert"),
+    re_path(r"^surihttp/(?P<task_id>\d+)/$", views.surihttp, name="surihttp"),
+    re_path(r"^suritls/(?P<task_id>\d+)/$", views.suritls, name="suritls"),
+    re_path(r"^surifiles/(?P<task_id>\d+)/$", views.surifiles, name="surifiles"),
+    re_path(r"^antivirus/(?P<task_id>\d+)/$", views.antivirus, name="antivirus"),
+    re_path(r"^remove/(?P<task_id>\d+)/$", views.remove, name="remove"),
+    re_path(r"^signature-calls/(?P<task_id>\d+)/$", views.signature_calls, name="signature-calls"),
+    re_path(r"^chunk/(?P<task_id>\d+)/(?P<pid>\d+)/(?P<pagenum>\d+)/$", views.chunk, name="chunk"),
+    re_path(
+        r"^filtered/(?P<task_id>\d+)/(?P<pid>\d+)/(?P<category>\w+)/(?P<apilist>[!]?[A-Za-z_0-9,%]*)/(?P<caller>\w+)/(?P<tid>\w+)/$",
+        views.filtered_chunk,
+        name="filtered_chunk",
+    ),
+    re_path(r"^file_nl/(?P<category>\w+)/(?P<task_id>\d+)/(?P<dlfile>\w+)/$", views.file_nl, name="file_nl"),
+    re_path(r"^search/(?P<task_id>\d+)/$", views.search_behavior, name="search_behavior"),
+    re_path(r"^search/(?P<searched>[\w\d\s:\-_\.]+)/$", views.search, name="search"),
+    re_path(r"^search/$", views.search, name="search"),
+    re_path(r"^pending/$", views.pending, name="pending"),
+    re_path(r"^ban_user_tasks/(?P<user_id>[\d]+)/$", views.ban_all_user_tasks, name="ban_all_user_tasks"),
+    re_path(r"^ban_user/(?P<user_id>[\d]+)/$", views.ban_user, name="ban_user"),
+    re_path(r"^procdump/(?P<task_id>\d+)/(?P<process_id>\d+)/(?P<start>\w+)/(?P<end>\w+)/$", views.procdump, name="procdump"),
+    re_path(
+        r"^procdump/(?P<task_id>\d+)/(?P<process_id>\d+)/(?P<start>\w+)/(?P<end>\w+)/(?P<zipped>\d)/$",
+        views.procdump,
+        name="procdump",
+    ),
+    re_path(r"^reprocess/(?P<task_id>\d+)/$", views.reprocess_task, name="reprocess_tasks"),
+    re_path(r"^(?P<task_id>\d+)/pcapstream/(?P<conntuple>[.,\w]+)/$", views.pcapstream, name="pcapstream"),
+    re_path(r"^(?P<task_id>\d+)/comments/$", views.comments, name="comments"),
+    re_path(
+        r"^on_demand/(?P<service>[\w\-_]+)/(?P<task_id>\d+)/(?P<category>\w+)/(?P<sha256>\w{64})", views.on_demand, name="on_demand"
+    ),
 ]
diff --git a/web/analysis/views.py b/web/analysis/views.py
index 2a75c0e02bc..3db18dd3250 100644
--- a/web/analysis/views.py
+++ b/web/analysis/views.py
@@ -2,50 +2,57 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-from __future__ import print_function
-
+import base64
+import collections
+import datetime
+import json
 import os
+import subprocess
 import sys
-import zlib
-import shutil
-import json
-import zipfile
 import tempfile
-import datetime
+import zipfile
+from contextlib import suppress
 from io import BytesIO
+from pathlib import Path
 from urllib.parse import quote
+from wsgiref.util import FileWrapper
 
 from django.conf import settings
-from wsgiref.util import FileWrapper
-from django.http import HttpResponse, StreamingHttpResponse, JsonResponse
+from django.contrib.auth.decorators import login_required
+from django.core.exceptions import BadRequest, PermissionDenied
+from django.http import HttpResponse, HttpResponseRedirect, StreamingHttpResponse
 from django.shortcuts import redirect, render
-from django.views.decorators.http import require_safe
 from django.views.decorators.csrf import csrf_exempt
-from django.contrib.auth.decorators import login_required
-from django.core.exceptions import PermissionDenied
-
+from django.views.decorators.http import require_POST, require_safe
 from rest_framework.decorators import api_view
 
 sys.path.append(settings.CUCKOO_PATH)
 
-from lib.cuckoo.core.database import Database, Task, TASK_PENDING
-from lib.cuckoo.common.config import Config
-from lib.cuckoo.common.constants import CUCKOO_ROOT, ANALYSIS_BASE_PATH
-from lib.cuckoo.common.web_utils import (
-    perform_malscore_search,
-    perform_search,
-    perform_ttps_search,
-    statistics,
-)
+from lib.cuckoo.common.pcap_utils import PcapToNg
 import modules.processing.network as network
+from lib.cuckoo.common.config import Config
+from lib.cuckoo.common.constants import ANALYSIS_BASE_PATH, CUCKOO_ROOT
+from lib.cuckoo.common.path_utils import path_exists, path_get_size, path_mkdir, path_read_file, path_safe
+from lib.cuckoo.common.utils import delete_folder, yara_detected
+from lib.cuckoo.common.web_utils import category_all_files, my_rate_minutes, my_rate_seconds, perform_search, rateblock, statistics
+from lib.cuckoo.core.database import TASK_PENDING, Database, Task
+from modules.reporting.report_doc import CHUNK_CALL_SIZE
+
+try:
+    from django_ratelimit.decorators import ratelimit
+except ImportError:
+    try:
+        from ratelimit.decorators import ratelimit
+    except ImportError:
+        print("missed dependency: poetry install")
+
+from lib.cuckoo.common.webadmin_utils import disable_user
 
 try:
     import re2 as re
 except ImportError:
     import re
 
-
 try:
     import requests
 
@@ -58,27 +65,48 @@
 
     HAVE_PYZIPPER = True
 except ImportError:
-    print("Missed dependency: pip3 install pyzipper -U")
+    print("Missed dependency: poetry install")
     HAVE_PYZIPPER = False
 
 TASK_LIMIT = 25
 
 processing_cfg = Config("processing")
 reporting_cfg = Config("reporting")
+integrations_cfg = Config("integrations")
+web_cfg = Config("web")
+
+try:
+    # On demand features
+    HAVE_FLARE_CAPA = False
+    if integrations_cfg.flare_capa.on_demand:
+        from lib.cuckoo.common.integrations.capa import HAVE_FLARE_CAPA, flare_capa_details
+except (NameError, ImportError):
+    print("Can't import FLARE-CAPA")
+
+HAVE_STRINGS = False
+if processing_cfg.strings.on_demand:
+    from lib.cuckoo.common.integrations.strings import extract_strings
 
-# On demand features
-HAVE_FLARE_CAPA = False
-if processing_cfg.flare_capa.on_demand:
-    from lib.cuckoo.common.integrations.capa import flare_capa_details, HAVE_FLARE_CAPA
+    HAVE_STRINGS = True
 
 HAVE_VBA2GRAPH = False
 if processing_cfg.vba2graph.on_demand:
-    from lib.cuckoo.common.integrations.vba2graph import vba2graph_func, HAVE_VBA2GRAPH
+    from lib.cuckoo.common.integrations.vba2graph import HAVE_VBA2GRAPH, vba2graph_func
 
+HAVE_XLM_DEOBF = False
+if processing_cfg.xlsdeobf.on_demand:
+    from lib.cuckoo.common.integrations.XLMMacroDeobfuscator import HAVE_XLM_DEOBF, xlmdeobfuscate
+
+HAVE_VIRUSTOTAL = False
+if processing_cfg.virustotal.on_demand:
+    from lib.cuckoo.common.integrations.virustotal import vt_lookup
+
+    HAVE_VIRUSTOTAL = True
 
 if reporting_cfg.bingraph.on_demand:
     try:
-        from lib.cuckoo.common.graphs.binGraph.binGraph import generate_graphs as bingraph_gen
+        from binGraph.binGraph import generate_graphs as bingraph_gen
+
         from modules.reporting.bingraph import bingraph_args_dict
 
         HAVE_BINGRAPH = True
@@ -87,64 +115,96 @@
 else:
     HAVE_BINGRAPH = False
 
+HAVE_FLOSS = False
+if integrations_cfg.floss.on_demand:
+    from lib.cuckoo.common.integrations.floss import HAVE_FLOSS, Floss
+
+USE_SEVENZIP = False
+if reporting_cfg.compression.compressiontool == "7zip":
+    USE_SEVENZIP = True
+    SEVENZIP_PATH = reporting_cfg.compression.sevenzippath.strip() or "/usr/bin/7z"
 
 # Used for displaying enabled config options in Django UI
-enabledconf = dict()
-for cfile in ["reporting", "processing", "auxiliary", "web"]:
+enabledconf = {}
+on_demand_conf = {}
+for cfile in ("integrations", "reporting", "processing", "auxiliary", "web", "distributed"):
     curconf = Config(cfile)
     confdata = curconf.get_config()
     for item in confdata:
         if "enabled" in confdata[item]:
             if confdata[item]["enabled"] == "yes":
                 enabledconf[item] = True
+                if confdata[item].get("on_demand", "no") == "yes":
+                    on_demand_conf[item] = True
             else:
                 enabledconf[item] = False
 
 if enabledconf["mongodb"]:
-    import pymongo
     from bson.objectid import ObjectId
 
-    results_db = pymongo.MongoClient(
-        settings.MONGO_HOST,
-        port=settings.MONGO_PORT,
-        username=settings.MONGO_USER,
-        password=settings.MONGO_PASS,
-        authSource=settings.MONGO_DB,
-    )[settings.MONGO_DB]
+    from dev_utils.mongodb import mongo_aggregate, mongo_delete_data, mongo_find, mongo_find_one, mongo_update_one
+
 es_as_db = False
 essearch = False
 if enabledconf["elasticsearchdb"]:
-    from elasticsearch import Elasticsearch
+    from dev_utils.elasticsearchdb import elastic_handler, get_analysis_index, get_calls_index, get_query_by_info_id
 
     essearch = Config("reporting").elasticsearchdb.searchonly
     if not essearch:
         es_as_db = True
-    baseidx = Config("reporting").elasticsearchdb.index
-    fullidx = baseidx + "-*"
-    es = Elasticsearch(
-        hosts=[
-            {
-                "host": settings.ELASTIC_HOST,
-                "port": settings.ELASTIC_PORT,
-            }
-        ],
-        timeout=60,
-    )
+
+    es = elastic_handler
+
+DISABLED_WEB = True
+# if elif else won't work here
+if enabledconf["mongodb"] or enabledconf["elasticsearchdb"]:
+    DISABLED_WEB = False
 
 db = Database()
 
+anon_not_viewable_func_list = (
+    "file",
+    "remove",
+    # "search",
+    "pending",
+    "filtered_chunk",
+    "search_behavior",
+    "statistics_data",
+)
+
+
 # Conditional decorator for web authentication
-class conditional_login_required(object):
+class conditional_login_required:
     def __init__(self, dec, condition):
         self.decorator = dec
         self.condition = condition
 
     def __call__(self, func):
+        if settings.ANON_VIEW and func.__name__ not in anon_not_viewable_func_list:
+            return func
         if not self.condition:
             return func
         return self.decorator(func)
 
 
+def _path_safe(path: str) -> bool:
+    if web_cfg.security.check_path_safe:
+        return path_safe(path)
+
+    return True
+
+
+def get_tags_tasks(task_ids: list) -> str:
+    for analysis in db.list_tasks(task_ids=task_ids):
+        return analysis.tags_tasks
+
+
+def get_task_package(task_id: int) -> str:
+    task = db.view_task(task_id)
+    task_dict = task.to_dict()
+    return task_dict.get("package", "")
+
+
 def get_analysis_info(db, id=-1, task=None):
     if not task:
         task = db.view_task(id)
@@ -152,23 +212,29 @@ def get_analysis_info(db, id=-1, task=None):
         return None
 
     new = task.to_dict()
-    if new["category"] in ["file", "pcap", "static"] and new["sample_id"] != None:
+    if new["category"] in ("file", "pcap", "static") and new["sample_id"] is not None:
         new["sample"] = db.view_sample(new["sample_id"]).to_dict()
         filename = os.path.basename(new["target"])
         new.update({"filename": filename})
 
-    if "machine" in new and new["machine"]:
+    new.update({"user_task_tags": get_tags_tasks([new["id"]])})
+
+    if new.get("machine"):
         machine = new["machine"]
         machine = machine.strip(".vmx")
         machine = os.path.basename(machine)
         new.update({"machine": machine})
 
+    rtmp = False
+
     if enabledconf["mongodb"]:
-        rtmp = results_db.analysis.find_one(
+        rtmp = mongo_find_one(
+            "analysis",
             {"info.id": int(new["id"])},
             {
                 "info": 1,
-                "virustotal_summary": 1,
+                "target.file.virustotal.summary": 1,
+                "url.virustotal.summary": 1,
                 "malscore": 1,
                 "detections": 1,
                 "network.pcap_sha256": 1,
@@ -182,11 +248,30 @@ def get_analysis_info(db, id=-1, task=None):
                 "trid": 1,
                 "_id": 0,
             },
-            sort=[("_id", pymongo.DESCENDING)],
+            sort=[("_id", -1)],
         )
 
     if es_as_db:
-        rtmp = es.search(index=fullidx, doc_type="analysis", q='info.id: "%s"' % str(new["id"]))["hits"]["hits"]
+        rtmp = es.search(
+            index=get_analysis_index(),
+            query=get_query_by_info_id(str(new["id"])),
+            _source=[
+                "info",
+                "target.file.virustotal.summary",
+                "url.virustotal.summary",
+                "malscore",
+                "detections",
+                "network.pcap_sha256",
+                "mlist_cnt",
+                "f_mlist_cnt",
+                "target.file.clamav",
+                "suri_tls_cnt",
+                "suri_alert_cnt",
+                "suri_http_cnt",
+                "suri_file_cnt",
+                "trid",
+            ],
+        )["hits"]["hits"]
         if len(rtmp) > 1:
             rtmp = rtmp[-1]["_source"]
         elif len(rtmp) == 1:
@@ -197,7 +282,6 @@ def get_analysis_info(db, id=-1, task=None):
     if rtmp:
         for keyword in (
             "detections",
-            "virustotal_summary",
             "mlist_cnt",
             "f_mlist_cnt",
             "suri_tls_cnt",
@@ -216,11 +300,6 @@ def get_analysis_info(db, id=-1, task=None):
                 if rtmp["info"].get(keyword, False):
                     new[keyword] = rtmp["info"][keyword]
 
-            if enabledconf.get("display_shrike", False) and rtmp["info"].get("shrike_msg", False):
-                new["shrike_msg"] = rtmp["info"]["shrike_msg"]
-            if enabledconf.get("display_shrike", False) and rtmp["info"].get("shrike_msg", False):
-                new["shrike_msg"] = rtmp["info"]["shrike_msg"]
-
         if "network" in rtmp and "pcap_sha256" in rtmp["network"]:
             new["pcap_sha256"] = rtmp["network"]["pcap_sha256"]
 
@@ -228,10 +307,15 @@ def get_analysis_info(db, id=-1, task=None):
             for keyword in ("clamav", "trid"):
                 if rtmp["info"].get(keyword, False):
                     new[keyword] = rtmp["info"]["target"][keyword]
+            if rtmp["target"]["file"].get("virustotal", {}).get("summary", False):
+                new["virustotal_summary"] = rtmp["target"]["file"]["virustotal"]["summary"]
+
+        if rtmp.get("url", {}).get("virustotal", {}).get("summary", False):
+            new["virustotal_summary"] = rtmp["url"]["virustotal"]["summary"]
 
         if settings.MOLOCH_ENABLED:
             if settings.MOLOCH_BASE[-1] != "/":
-                settings.MOLOCH_BASE = settings.MOLOCH_BASE + "/"
+                settings.MOLOCH_BASE += "/"
             new["moloch_url"] = (
                 settings.MOLOCH_BASE
                 + "?date=-1&expression=tags"
@@ -249,42 +333,54 @@ def index(request, page=1):
         page = 1
     off = (page - 1) * TASK_LIMIT
 
-    tasks_files = db.list_tasks(limit=TASK_LIMIT, offset=off, category="file", not_status=TASK_PENDING)
-    tasks_files += db.list_tasks(limit=TASK_LIMIT, offset=off, category="static", not_status=TASK_PENDING)
-    tasks_urls = db.list_tasks(limit=TASK_LIMIT, offset=off, category="url", not_status=TASK_PENDING)
-    tasks_pcaps = db.list_tasks(limit=TASK_LIMIT, offset=off, category="pcap", not_status=TASK_PENDING)
     analyses_files = []
     analyses_urls = []
     analyses_pcaps = []
+    analyses_static = []
+
+    tasks_files = db.list_tasks(limit=TASK_LIMIT, offset=off, category="file", not_status=TASK_PENDING)
+    tasks_static = db.list_tasks(limit=TASK_LIMIT, offset=off, category="static", not_status=TASK_PENDING)
+    tasks_urls = db.list_tasks(limit=TASK_LIMIT, offset=off, category="url", not_status=TASK_PENDING)
+    tasks_pcaps = db.list_tasks(limit=TASK_LIMIT, offset=off, category="pcap", not_status=TASK_PENDING)
 
     # Vars to define when to show Next/Previous buttons
-    paging = dict()
+    paging = {}
     paging["show_file_next"] = "show"
     paging["show_url_next"] = "show"
     paging["show_pcap_next"] = "show"
+    paging["show_static_next"] = "show"
     paging["next_page"] = str(page + 1)
     paging["prev_page"] = str(page - 1)
 
     pages_files_num = 0
     pages_urls_num = 0
     pages_pcaps_num = 0
+    pages_static_num = 0
     tasks_files_number = db.count_matching_tasks(category="file", not_status=TASK_PENDING) or 0
-    tasks_files_number += db.count_matching_tasks(category="static", not_status=TASK_PENDING) or 0
+    tasks_static_number = db.count_matching_tasks(category="static", not_status=TASK_PENDING) or 0
     tasks_urls_number = db.count_matching_tasks(category="url", not_status=TASK_PENDING) or 0
     tasks_pcaps_number = db.count_matching_tasks(category="pcap", not_status=TASK_PENDING) or 0
     if tasks_files_number:
         pages_files_num = int(tasks_files_number / TASK_LIMIT + 1)
+    if tasks_static_number:
+        pages_static_num = int(tasks_static_number / TASK_LIMIT + 1)
     if tasks_urls_number:
         pages_urls_num = int(tasks_urls_number / TASK_LIMIT + 1)
     if tasks_pcaps_number:
         pages_pcaps_num = int(tasks_pcaps_number / TASK_LIMIT + 1)
+
     files_pages = []
     urls_pages = []
     pcaps_pages = []
+    static_pages = []
     if pages_files_num < 11 or page < 6:
         files_pages = list(range(1, min(10, pages_files_num) + 1))
     elif page > 5:
         files_pages = list(range(min(page - 5, pages_files_num - 10) + 1, min(page + 5, pages_files_num) + 1))
+    if pages_static_num < 11 or page < 6:
+        static_pages = list(range(1, min(10, pages_static_num) + 1))
+    elif page > 5:
+        static_pages = list(range(min(page - 5, pages_static_num - 10) + 1, min(page + 5, pages_static_num) + 1))
     if pages_urls_num < 11 or page < 6:
         urls_pages = list(range(1, min(10, pages_urls_num) + 1))
     elif page > 5:
@@ -294,13 +390,27 @@ def index(request, page=1):
     elif page > 5:
         pcaps_pages = list(range(min(page - 5, pages_pcaps_num - 10) + 1, min(page + 5, pages_pcaps_num) + 1))
 
+    first_file = 0
+    first_static = 0
+    first_pcap = 0
+    first_url = 0
     # On a fresh install, we need handle where there are 0 tasks.
     buf = db.list_tasks(limit=1, category="file", not_status=TASK_PENDING, order_by=Task.added_on.asc())
     if len(buf) == 1:
-        first_file = db.list_tasks(limit=1, category="file", not_status=TASK_PENDING, order_by=Task.added_on.asc())[0].to_dict()["id"]
+        first_file = db.list_tasks(limit=1, category="file", not_status=TASK_PENDING, order_by=Task.added_on.asc())[0].to_dict()[
+            "id"
+        ]
         paging["show_file_prev"] = "show"
     else:
         paging["show_file_prev"] = "hide"
+    buf = db.list_tasks(limit=1, category="static", not_status=TASK_PENDING, order_by=Task.added_on.asc())
+    if len(buf) == 1:
+        first_static = db.list_tasks(limit=1, category="static", not_status=TASK_PENDING, order_by=Task.added_on.asc())[
+            0
+        ].to_dict()["id"]
+        paging["show_static_prev"] = "show"
+    else:
+        paging["show_static_prev"] = "hide"
     buf = db.list_tasks(limit=1, category="url", not_status=TASK_PENDING, order_by=Task.added_on.asc())
     if len(buf) == 1:
         first_url = db.list_tasks(limit=1, category="url", not_status=TASK_PENDING, order_by=Task.added_on.asc())[0].to_dict()["id"]
@@ -309,7 +419,9 @@ def index(request, page=1):
         paging["show_url_prev"] = "hide"
     buf = db.list_tasks(limit=1, category="pcap", not_status=TASK_PENDING, order_by=Task.added_on.asc())
     if len(buf) == 1:
-        first_pcap = db.list_tasks(limit=1, category="pcap", not_status=TASK_PENDING, order_by=Task.added_on.asc())[0].to_dict()["id"]
+        first_pcap = db.list_tasks(limit=1, category="pcap", not_status=TASK_PENDING, order_by=Task.added_on.asc())[0].to_dict()[
+            "id"
+        ]
         paging["show_pcap_prev"] = "show"
     else:
         paging["show_pcap_prev"] = "hide"
@@ -322,6 +434,9 @@ def index(request, page=1):
             if page <= 1:
                 paging["show_file_prev"] = "hide"
 
+            # Added =: Fix page navigation for pages after the first page
+            else:
+                paging["show_file_prev"] = "show"
             if db.view_errors(task.id):
                 new["errors"] = True
 
@@ -329,6 +444,21 @@ def index(request, page=1):
     else:
         paging["show_file_next"] = "hide"
 
+    if tasks_static:
+        for task in tasks_static:
+            new = get_analysis_info(db, task=task)
+            if new["id"] == first_static:
+                paging["show_static_next"] = "hide"
+            if page <= 1:
+                paging["show_static_prev"] = "hide"
+
+            if db.view_errors(task.id):
+                new["errors"] = True
+
+            analyses_static.append(new)
+    else:
+        paging["show_static_next"] = "hide"
+
     if tasks_urls:
         for task in tasks_urls:
             new = get_analysis_info(db, task=task)
@@ -360,6 +490,7 @@ def index(request, page=1):
         paging["show_pcap_next"] = "hide"
 
     paging["files_page_range"] = files_pages
+    paging["static_page_range"] = static_pages
     paging["urls_page_range"] = urls_pages
     paging["pcaps_page_range"] = pcaps_pages
     paging["current_page"] = page
@@ -367,132 +498,265 @@ def index(request, page=1):
     return render(
         request,
         "analysis/index.html",
-        {"files": analyses_files, "urls": analyses_urls, "pcaps": analyses_pcaps, "paging": paging, "config": enabledconf},
+        {
+            "title": "Recent Analysis",
+            "files": analyses_files,
+            "static": analyses_static,
+            "urls": analyses_urls,
+            "pcaps": analyses_pcaps,
+            "paging": paging,
+            "config": enabledconf,
+        },
     )
 
 
 @require_safe
 @conditional_login_required(login_required, settings.WEB_AUTHENTICATION)
 def pending(request):
-    db = Database()
-    tasks = db.list_tasks(inclide_hashes=True, status=TASK_PENDING)
+    # db = Database()
+    tasks = db.list_tasks(status=TASK_PENDING)
 
     pending = []
     for task in tasks:
-        pending.append(
-            {
-                "target": task.target,
-                "added_on": task.added_on,
-                "category": task.category,
-                "md5": task.sample.md5,
-                "sha256": task.sample.sha256,
-            }
-        )
+        # Some tasks do not have sample attributes
+        sample = db.view_sample(task.sample_id)
+        if sample:
+            pending.append(
+                {
+                    "id": task.id,
+                    "target": task.target,
+                    "added_on": task.added_on,
+                    "category": task.category,
+                    "md5": sample.md5,
+                    "sha256": sample.sha256,
+                }
+            )
 
-    return render(request, "analysis/pending.html", {"tasks": pending})
+    data = {"tasks": pending, "count": len(pending), "title": "Pending Tasks"}
+    return render(request, "analysis/pending.html", data)
 
 
-ajax_mongo_schema = {
-    "CAPE": "CAPE",
-    "CAPE_old": "CAPE",
-    "dropped": "dropped",
-    "debugger": "debugger",
-    "behavior": "behavior",
-    "network": "network",
-    "procdump": "procdump",
-    "memory": "memory",
-}
+# @require_safe
+# @conditional_login_required(login_required, settings.WEB_AUTHENTICATION)
+# @ratelimit(key="ip", rate=my_rate_seconds, block=rateblock)
+# @ratelimit(key="ip", rate=my_rate_minutes, block=rateblock)
+def _load_file(task_id, sha256, existen_details, name):
+    filepath = False
+    if name == "bingraph":
+        filepath = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(task_id), "bingraph", sha256 + "-ent.svg")
+
+    elif name == "vba2graph":
+        filepath = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(task_id), "vba2graph", "svg", sha256 + ".svg")
+
+    elif name == "debugger":
+        debugger_log_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(task_id), "debugger")
+        if path_exists(debugger_log_path) and _path_safe(debugger_log_path):
+            for log in os.listdir(debugger_log_path):
+                if not log.endswith(".log"):
+                    continue
+
+                existen_details[int(log.strip(".log"))] = Path(os.path.join(debugger_log_path, log)).read_text()
+    else:
+        return existen_details
+
+    if name in ("bingraph", "vba2graph"):
+        if not filepath or not path_exists(filepath) or not _path_safe(filepath):
+            return existen_details
+
+        existen_details.setdefault(sha256, Path(filepath).read_text())
+
+    return existen_details
 
 
 @require_safe
 @conditional_login_required(login_required, settings.WEB_AUTHENTICATION)
+# @ratelimit(key="ip", rate=my_rate_seconds, block=rateblock)
+# @ratelimit(key="ip", rate=my_rate_minutes, block=rateblock)
 def load_files(request, task_id, category):
     """Filters calls for call category.
     @param task_id: cuckoo task id
     """
-    # ToDo remove in CAPEv3
-    if request.is_ajax() and category in ("CAPE", "CAPE_old", "dropped", "behavior", "debugger", "network", "procdump", "memory"):
-        data = dict()
-        bingraph = False
-        debugger_logs = dict()
-        bingraph_dict_content = dict()
+    is_ajax = request.headers.get("x-requested-with") == "XMLHttpRequest"
+    if is_ajax and category in (
+        "CAPE",
+        "dropped",
+        "behavior",
+        "strace",
+        "debugger",
+        "network",
+        "procdump",
+        "procmemory",
+        "memory",
+        "tracee",
+    ):
+        data = {}
+        debugger_logs = {}
+        bingraph_dict_content = {}
+        vba2graph_dict_content = {}
         # Search calls related to your PID.
         if enabledconf["mongodb"]:
-            if category in ("behavior", "debugger"):
-                data = results_db.analysis.find_one(
+            if category in ("behavior", "debugger", "strace"):
+                data = mongo_find_one(
+                    "analysis",
                     {"info.id": int(task_id)},
-                    {"behavior.processes": 1, "behavior.processtree": 1, "detections2pid":1, "info.tlp": 1, "_id": 0},
+                    {"behavior.processes": 1, "behavior.processtree": 1, "detections2pid": 1, "info.tlp": 1, "_id": 0},
                 )
                 if category == "debugger":
                     data["debugger"] = data["behavior"]
+                if category == "strace":
+                    data["strace"] = data["behavior"]
+            elif category == "tracee":
+                data = mongo_find_one("analysis", {"info.id": int(task_id)}, {category: 1, "info.tlp": 1, "_id": 0})
+                tmp = data["tracee"]
+                data["tracee"] = {}
+                data["tracee"]["rawData"] = tmp
+                with open("/opt/CAPEv2/data/linux/linux-syscalls.json", "r") as f:
+                    data["tracee"]["syscalls_decoded"] = json.load(f)
+                    data["tracee"]["syscalls_decoded"]["syscalls"].extend(
+                        [
+                            {"name": "stdio_over_socket", "cat": "SIGNATURISED"},
+                            {"name": "k8s_api_connection", "cat": "SIGNATURISED"},
+                            {"name": "aslr_inspection", "cat": "SIGNATURISED"},
+                            {"name": "proc_mem_code_injection", "cat": "SIGNATURISED"},
+                            {"name": "docker_abuse", "cat": "SIGNATURISED"},
+                            {"name": "scheduled_task_mod", "cat": "SIGNATURISED"},
+                            {"name": "ld_preload", "cat": "SIGNATURISED"},
+                            {"name": "cgroup_notify_on_release", "cat": "SIGNATURISED"},
+                            {"name": "default_loader_mod", "cat": "SIGNATURISED"},
+                            {"name": "sudoers_modification", "cat": "SIGNATURISED"},
+                            {"name": "sched_debug_recon", "cat": "SIGNATURISED"},
+                            {"name": "system_request_key_mod", "cat": "SIGNATURISED"},
+                            {"name": "cgroup_release_agent", "cat": "SIGNATURISED"},
+                            {"name": "rcd_modification", "cat": "SIGNATURISED"},
+                            {"name": "core_pattern_modification", "cat": "SIGNATURISED"},
+                            {"name": "proc_kcore_read", "cat": "SIGNATURISED"},
+                            {"name": "proc_mem_access", "cat": "SIGNATURISED"},
+                            {"name": "hidden_file_created", "cat": "SIGNATURISED"},
+                            {"name": "anti_debugging", "cat": "SIGNATURISED"},
+                            {"name": "ptrace_code_injection", "cat": "SIGNATURISED"},
+                            {"name": "process_vm_write_inject", "cat": "SIGNATURISED"},
+                            {"name": "disk_mount", "cat": "SIGNATURISED"},
+                            {"name": "dynamic_code_loading", "cat": "SIGNATURISED"},
+                            {"name": "fileless_execution", "cat": "SIGNATURISED"},
+                            {"name": "illegitimate_shell", "cat": "SIGNATURISED"},
+                            {"name": "kernel_module_loading", "cat": "SIGNATURISED"},
+                            {"name": "k8s_cert_theft", "cat": "SIGNATURISED"},
+                            {"name": "proc_fops_hooking", "cat": "SIGNATURISED"},
+                            {"name": "syscall_hooking", "cat": "SIGNATURISED"},
+                            {"name": "dropped_executable", "cat": "SIGNATURISED"},
+                            {"name": "sched_debug_recon", "cat": "SIGNATURISED"},
+                            {"name": "sched_process_exec", "cat": "SIGNATURISED"},
+                            {"name": "security_inode_unlink", "cat": "SIGNATURISED"},
+                            {"name": "security_bpf_prog", "cat": "SIGNATURISED"},
+                            {"name": "security_socket_connect", "cat": "SIGNATURISED"},
+                            {"name": "security_socket_accept", "cat": "SIGNATURISED"},
+                            {"name": "security_socket_bind", "cat": "SIGNATURISED"},
+                            {"name": "security_sb_mount", "cat": "SIGNATURISED"},
+                            {"name": "net_packet_icmp", "cat": "SIGNATURISED"},
+                            {"name": "net_packet_icmpv6", "cat": "SIGNATURISED"},
+                            {"name": "net_packet_dns_request", "cat": "SIGNATURISED"},
+                            {"name": "net_packet_dns_response", "cat": "SIGNATURISED"},
+                            {"name": "net_packet_http_request", "cat": "SIGNATURISED"},
+                            {"name": "net_packet_http_response", "cat": "SIGNATURISED"},
+                            {"name": "process_vm_readv", "cat": "SIGNATURISED"},
+                            {"name": "process_vm_writev", "cat": "SIGNATURISED"},
+                            {"name": "finit_module", "cat": "SIGNATURISED"},
+                            {"name": "memfd_create", "cat": "SIGNATURISED"},
+                        ]
+                    )
+                data["tracee"]["syscalls"] = json.dumps(data["tracee"]["syscalls_decoded"])
+                data["tracee"]["cats"] = [
+                    "SIGNATURISED",
+                    "kernel",
+                    "fs",
+                    "mm",
+                    "net",
+                    "ipc",
+                    "security",
+                    "drivers",
+                    "io_uring",
+                    "crypto",
+                    "block",
+                ]
             elif category == "network":
-                data = results_db.analysis.find_one(
-                    {"info.id": int(task_id)}, {ajax_mongo_schema[category]: 1, "info.tlp": 1, "cif": 1, "suricata": 1, "_id": 0}
+                data = mongo_find_one(
+                    "analysis",
+                    {"info.id": int(task_id)},
+                    {category: 1, "info.tlp": 1, "cif": 1, "suricata": 1, "pcapng": 1, "_id": 0},
                 )
             else:
-                data = results_db.analysis.find_one({"info.id": int(task_id)}, {ajax_mongo_schema[category]: 1, "info.tlp": 1, "_id": 0})
-
-            if enabledconf["bingraph"]:
-                bingraph_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(task_id), "bingraph")
-                if os.path.exists(bingraph_path):
-                    if ajax_mongo_schema.get(category, "") in ("dropped", "procdump"):
-                        for block in data.get(category, []):
-                            print(block)
-                            if not block.get("sha256"):
-                                print("missed sha256", block)
-                                continue
-                            tmp_file = os.path.join(bingraph_path, block["sha256"] + "-ent.svg")
-                            if os.path.exists(tmp_file):
-                                with open(tmp_file, "r") as f:
-                                    bingraph_dict_content.setdefault(block["sha256"], f.read())
-
-                    if ajax_mongo_schema.get(category, "").startswith("CAPE") and data:
-                        if isinstance(data.get("CAPE", {}), dict) and "payloads" in data.get("CAPE", {}):
-                            cape_files = data.get("CAPE", {}).get("payloads", []) or []
-                        # ToDo remove in CAPEv3
-                        else:
-                            cape_files = data.get("CAPE", []) or []
-                        for block in cape_files:
-                            if not block.get("sha256"):
-                                continue
-                            tmp_file = os.path.join(bingraph_path, block["sha256"] + "-ent.svg")
-                            if os.path.exists(tmp_file):
-                                with open(tmp_file, "r") as f:
-                                    bingraph_dict_content.setdefault(block["sha256"], f.read())
-
-                    if bingraph_dict_content:
-                        bingraph = True
-            if category == "debugger":
-                debugger_log_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(task_id), "debugger")
-                if os.path.exists(debugger_log_path):
-                    for log in os.listdir(debugger_log_path):
-                        if not log.endswith(".log"):
-                            continue
-                        with open(os.path.join(debugger_log_path, log), "r") as f:
-                            debugger_logs[int(log.strip(".log"))] = f.read()
+                data = mongo_find_one("analysis", {"info.id": int(task_id)}, {category: 1, "info.tlp": 1, "_id": 0})
+        elif enabledconf["elasticsearchdb"]:
+            if category in ("behavior", "debugger"):
+                data = elastic_handler.search(
+                    index=get_analysis_index(),
+                    query=get_query_by_info_id(task_id),
+                    _source=["behavior.processes", "behavior.processtree", "info.tlp"],
+                )["hits"]["hits"][0]["_source"]
+
+                if category == "debugger":
+                    data["debugger"] = data["behavior"]
+                if category == "strace":
+                    data["strace"] = data["behavior"]
+            elif category == "network":
+                data = elastic_handler.search(
+                    index=get_analysis_index(),
+                    query=get_query_by_info_id(task_id),
+                    _source=[category, "suricata", "cif", "info.tlp"],
+                )["hits"]["hits"][0]["_source"]
+            else:
+                data = elastic_handler.search(
+                    index=get_analysis_index(), query=get_query_by_info_id(task_id), _source=[category, "info.tlp"]
+                )["hits"]["hits"][0]["_source"]
+
+        sha256_blocks = []
+        if data:
+            if category == "CAPE":
+                sha256_blocks = data.get("CAPE", {}).get("payloads", [])
+            if category in ("dropped", "procdump"):
+                sha256_blocks = data.get(category, [])
+
+        if (enabledconf["vba2graph"] or enabledconf["bingraph"]) and sha256_blocks:
+            for block in sha256_blocks or []:
+                if not block.get("sha256"):
+                    continue
+                if enabledconf["bingraph"]:
+                    bingraph_dict_content = _load_file(task_id, block["sha256"], bingraph_dict_content, name="bingraph")
+                if enabledconf["vba2graph"]:
+                    vba2graph_dict_content = _load_file(task_id, block["sha256"], vba2graph_dict_content, name="vba2graph")
+
+        if category == "debugger":
+            debugger_logs = _load_file(task_id, "", debugger_logs, name="debugger")
 
         # ES isn't supported
-        # ToDo remove in CAPEv3
-        if category == "CAPE_old":
-            page = "analysis/CAPE/index_old.html"
-            category = "CAPE"
-        else:
-            page = "analysis/{}/index.html".format(category)
+        page = "analysis/{}/index.html".format(category)
 
         ajax_response = {
-            ajax_mongo_schema[category]: data.get(category, {}),
+            category: data.get(category, {}),
             "tlp": data.get("info").get("tlp", ""),
             "id": task_id,
-            "bingraph": {"enabled": bingraph, "content": bingraph_dict_content},
+            "graphs": {
+                "bingraph": {"enabled": enabledconf["bingraph"], "content": bingraph_dict_content},
+                "vba2graph": {"enabled": enabledconf["vba2graph"], "content": vba2graph_dict_content},
+            },
             "config": enabledconf,
-
+            "tab_name": category,
+            "on_demand": on_demand_conf,
         }
 
         if category == "debugger":
             ajax_response["debugger_logs"] = debugger_logs
         elif category == "network":
+            ajax_response["domainlookups"] = {i["domain"]: i["ip"] for i in ajax_response.get("network", {}).get("domains", {})}
             ajax_response["suricata"] = data.get("suricata", {})
             ajax_response["cif"] = data.get("cif", [])
+            ajax_response["pcapng"] = data.get("pcapng", {})
+            tls_path = os.path.join(ANALYSIS_BASE_PATH, "analyses", str(task_id), "tlsdump", "tlsdump.log")
+            if _path_safe(tls_path):
+                ajax_response["tlskeys_exists"] = _path_safe(tls_path)
+            mitmdump_path = os.path.join(ANALYSIS_BASE_PATH, "analyses", str(task_id), "mitmdump", "dump.har")
+            if _path_safe(mitmdump_path):
+                ajax_response["mitmdump_exists"] = _path_safe(mitmdump_path)
         elif category == "behavior":
             ajax_response["detections2pid"] = data.get("detections2pid", {})
         return render(request, page, ajax_response)
@@ -501,24 +765,122 @@ def load_files(request, task_id, category):
         raise PermissionDenied
 
 
+def fetch_signature_call_data(task_id, requested_calls):
+    try:
+        requested_calls_by_pid = collections.defaultdict(lambda: collections.defaultdict(set))
+        for requested_call in requested_calls:
+            if requested_call.get("type") != "call":
+                raise BadRequest("Only items whose 'type' is 'call' are accepted.")
+            pid = requested_call["pid"]
+            cid = requested_call["cid"]
+            # Store the "page number" (i.e. chunk) and the index within that chunk of the
+            # requested calls.
+            # Group the calls within the same chunk together so we only have to
+            # query once for each chunk.
+            chunk_idx, call_idx = divmod(cid, CHUNK_CALL_SIZE)
+            requested_calls_by_pid[pid][chunk_idx].add(call_idx)
+    except (AttributeError, KeyError, TypeError, ValueError):
+        raise BadRequest
+
+    if enabledconf["mongodb"]:
+        # First, get the list of ObjectID's for call chunks for each process.
+        process_data = mongo_find_one(
+            "analysis",
+            {"info.id": task_id},
+            {"behavior.processes.process_id": 1, "behavior.processes.calls": 1, "_id": 0},
+        )
+    elif es_as_db:
+        process_data = es.search(
+            index=get_analysis_index(),
+            body={"query": {"bool": {"must": [{"match": {"info.id": task_id}}]}}},
+            _source=["behavior.processes.process_id", "behavior.processes.calls"],
+        )["hits"]["hits"][0]["_source"]
+    else:
+        return HttpResponse()
+
+    # Organize it for quick lookup by PID.
+    process_data_by_pid = {proc["process_id"]: proc["calls"] for proc in process_data["behavior"]["processes"]}
+
+    calls_to_return = []
+    try:
+        # For each of the requested calls, look it up based on the ObjectID
+        # referenced from the appropriate chunk in the process's calls and the
+        # index within that chunk.
+        for pid, chunk_ids in sorted(requested_calls_by_pid.items()):
+            for chunk_idx, call_idxs in sorted(chunk_ids.items()):
+                chunk_id = process_data_by_pid[pid][chunk_idx]
+                if enabledconf["mongodb"]:
+                    call_data = mongo_find_one(
+                        "calls",
+                        {"_id": chunk_id},
+                        {"calls": 1, "_id": 0},
+                    )
+                elif es_as_db:
+                    call_data = es.search(
+                        index=get_calls_index(),
+                        body={"query": {"bool": {"must": [{"match": {"_id": chunk_id}}]}}},
+                        _source=["calls"],
+                    )["hits"]["hits"][0]["_source"]
+                else:
+                    return HttpResponse()
+
+                for call_idx in sorted(call_idxs):
+                    calls_to_return.append(call_data["calls"][call_idx])
+    except (KeyError, IndexError):
+        raise BadRequest("Unable to find requested call.")
+
+    return calls_to_return
+
+
+@csrf_exempt
+@require_POST
+@conditional_login_required(login_required, settings.WEB_AUTHENTICATION)
+def signature_calls(request, task_id):
+    try:
+        requested_calls = json.loads(request.body)
+    except json.JSONDecodeError:
+        raise BadRequest("Invalid JSON body.")
+
+    if not requested_calls:
+        return HttpResponse()
+
+    try:
+        if "call" in requested_calls[0]:
+            calls_to_return = [requested_call["call"] for requested_call in requested_calls]
+        else:
+            calls_to_return = fetch_signature_call_data(int(task_id), requested_calls)
+    except (AttributeError, IndexError, TypeError):
+        raise BadRequest
+
+    return render(request, "analysis/behavior/_chunk.html", {"chunk": {"calls": calls_to_return}})
+
+
 @require_safe
 @conditional_login_required(login_required, settings.WEB_AUTHENTICATION)
 def chunk(request, task_id, pid, pagenum):
     try:
         pid, pagenum = int(pid), int(pagenum) - 1
-    except:
+    except Exception:
         raise PermissionDenied
 
-    if request.is_ajax():
+    is_ajax = request.headers.get("x-requested-with") == "XMLHttpRequest"
+    if is_ajax:
         if enabledconf["mongodb"]:
-            record = results_db.analysis.find_one(
+            record = mongo_find_one(
+                "analysis",
                 {"info.id": int(task_id), "behavior.processes.process_id": pid},
-                {"behavior.processes.process_id": 1, "behavior.processes.calls": 1, "_id": 0},
+                {"info.machine.platform": 1, "behavior.processes.process_id": 1, "behavior.processes.calls": 1, "_id": 0},
             )
 
         if es_as_db:
             record = es.search(
-                index=fullidx, doc_type="analysis", q='behavior.processes.process_id: "%s" and info.id:' '"%s"' % (pid, task_id)
+                index=get_analysis_index(),
+                body={
+                    "query": {
+                        "bool": {"must": [{"match": {"behavior.processes.process_id": pid}}, {"match": {"info.id": task_id}}]}
+                    }
+                },
+                _source=["info.machine.platform", "behavior.processes.process_id", "behavior.processes.calls"],
             )["hits"]["hits"][0]["_source"]
 
         if not record:
@@ -528,6 +890,7 @@ def chunk(request, task_id, pid, pagenum):
         for pdict in record["behavior"]["processes"]:
             if pdict["process_id"] == pid:
                 process = pdict
+                break
 
         if not process:
             raise PermissionDenied
@@ -535,16 +898,19 @@ def chunk(request, task_id, pid, pagenum):
         if pagenum >= 0 and pagenum < len(process["calls"]):
             objectid = process["calls"][pagenum]
             if enabledconf["mongodb"]:
-                chunk = results_db.calls.find_one({"_id": ObjectId(objectid)})
-
+                chunk = mongo_find_one("calls", {"_id": ObjectId(objectid)})
             if es_as_db:
-                chunk = es.search(index=fullidx, doc_type="calls", q='_id: "%s"' % objectid,)["hits"]["hits"][
-                    0
-                ]["_source"]
+                chunk = es.search(index=get_calls_index(), body={"query": {"match": {"_id": objectid}}})["hits"]["hits"][0][
+                    "_source"
+                ]
+
         else:
             chunk = dict(calls=[])
 
-        return render(request, "analysis/behavior/_chunk.html", {"chunk": chunk})
+        if record["info"].get("machine", {}).get("platform", "") == "linux":
+            return render(request, "analysis/strace/_chunk.html", {"chunk": chunk})
+        else:
+            return render(request, "analysis/behavior/_chunk.html", {"chunk": chunk})
     else:
         raise PermissionDenied
 
@@ -558,19 +924,24 @@ def filtered_chunk(request, task_id, pid, category, apilist, caller, tid):
     @param category: call category type
     @param apilist: comma-separated list of APIs to include, if preceded by ! specifies to exclude the list
     """
-    if request.is_ajax():
+    is_ajax = request.headers.get("x-requested-with") == "XMLHttpRequest"
+    if is_ajax:
         # Search calls related to your PID.
         if enabledconf["mongodb"]:
-            record = results_db.analysis.find_one(
+            record = mongo_find_one(
+                "analysis",
                 {"info.id": int(task_id), "behavior.processes.process_id": int(pid)},
-                {"behavior.processes.process_id": 1, "behavior.processes.calls": 1, "_id": 0},
+                {"info.machine.platform": 1, "behavior.processes.process_id": 1, "behavior.processes.calls": 1, "_id": 0},
             )
         if es_as_db:
-            # print "info.id: \"%s\" and behavior.processes.process_id: \"%s\"" % (task_id, pid)
             record = es.search(
-                index=fullidx,
-                doc_type="analysis",
-                q='info.id: "%s" and behavior.processes.process_id: "%s"' % (task_id, pid),
+                index=get_analysis_index(),
+                body={
+                    "query": {
+                        "bool": {"must": [{"match": {"behavior.processes.process_id": pid}}, {"match": {"info.id": task_id}}]}
+                    }
+                },
+                _source=["info.machine.platform", "behavior.processes.process_id", "behavior.processes.calls"],
             )["hits"]["hits"][0]["_source"]
 
         if not record:
@@ -596,73 +967,80 @@ def filtered_chunk(request, task_id, pid, category, apilist, caller, tid):
         apis = apilist.split(",")
         apis[:] = [s.strip().lower() for s in apis if len(s.strip())]
 
-        tid = int(tid)
-
         # Populate dict, fetching data from all calls and selecting only appropriate category/APIs.
-        for call in process["calls"]:
+        for call in process.get("calls", []):
             if enabledconf["mongodb"]:
-                chunk = results_db.calls.find_one({"_id": call})
+                chunk = mongo_find_one("calls", {"_id": call})
             if es_as_db:
-                chunk = es.search(index=fullidx, doc_type="calls", q='_id: "%s"' % call)["hits"]["hits"][0]["_source"]
-            for call in chunk["calls"]:
+                chunk = es.search(index=get_calls_index(), body={"query": {"match": {"_id": call}}})["hits"]["hits"][0]["_source"]
+            for call in chunk.get("calls", []):
                 # filter by call or tid
-                if caller != "null" or tid != 0:
-                    if call["caller"] == caller and call["thread_id"] == tid:
+                if caller != "null" or tid != "0":
+                    if caller in ("null", call["caller"]) and tid in ("0", call["thread_id"]):
                         filtered_process["calls"].append(call)
-                elif category == "all" or call["category"] == category:
+                elif category in ("all", call["category"]):
                     if len(apis) > 0:
                         add_call = -1
                         for api in apis:
-                            if call["api"].lower() == api:
-                                if exclude is True:
+                            if api in call["api"].lower():
+                                if exclude:
                                     add_call = 0
                                 else:
                                     add_call = 1
                                 break
-                        if (exclude == True and add_call != 0) or (exclude == False and add_call == 1):
+                        if (exclude and add_call != 0) or (not exclude and add_call == 1):
                             filtered_process["calls"].append(call)
                     else:
                         filtered_process["calls"].append(call)
 
-        return render(request, "analysis/behavior/_chunk.html", {"chunk": filtered_process})
+        if record["info"]["machine"]["platform"] == "linux":
+            return render(request, "analysis/strace/_chunk.html", {"chunk": filtered_process})
+        else:
+            return render(request, "analysis/behavior/_chunk.html", {"chunk": filtered_process})
     else:
         raise PermissionDenied
 
 
 def gen_moloch_from_suri_http(suricata):
-    if "http" in suricata and suricata["http"]:
+    if suricata.get("http"):
         for e in suricata["http"]:
-            if "srcip" in e and e["srcip"]:
-                e["moloch_src_ip_url"] = settings.MOLOCH_BASE + "?date=-1&expression=ip" + quote("\x3d\x3d%s" % (str(e["srcip"])), safe="")
-            if "dstip" in e and e["dstip"]:
-                e["moloch_dst_ip_url"] = settings.MOLOCH_BASE + "?date=-1&expression=ip" + quote("\x3d\x3d%s" % (str(e["dstip"])), safe="")
-            if "dstport" in e and e["dstport"]:
+            if e.get("srcip"):
+                e["moloch_src_ip_url"] = (
+                    settings.MOLOCH_BASE + "?date=-1&expression=ip" + quote("\x3d\x3d%s" % (str(e["srcip"])), safe="")
+                )
+            if e.get("dstip"):
+                e["moloch_dst_ip_url"] = (
+                    settings.MOLOCH_BASE + "?date=-1&expression=ip" + quote("\x3d\x3d%s" % (str(e["dstip"])), safe="")
+                )
+            if e.get("dstport"):
                 e["moloch_dst_port_url"] = (
                     settings.MOLOCH_BASE
                     + "?date=-1&expression=port"
                     + quote("\x3d\x3d%s\x26\x26tags\x3d\x3d\x22tcp\x22" % (str(e["dstport"])), safe="")
                 )
-            if "srcport" in e and e["srcport"]:
+            if e.get("srcport"):
                 e["moloch_src_port_url"] = (
                     settings.MOLOCH_BASE
                     + "?date=-1&expression=port"
                     + quote("\x3d\x3d%s\x26\x26tags\x3d\x3d\x22tcp\x22" % (str(e["srcport"])), safe="")
                 )
-            if "hostname" in e and e["hostname"]:
+            if e.get("hostname"):
                 e["moloch_http_host_url"] = (
                     settings.MOLOCH_BASE + "?date=-1&expression=host.http" + quote("\x3d\x3d\x22%s\x22" % (e["hostname"]), safe="")
                 )
-            if "uri" in e and e["uri"]:
+            if e.get("uri"):
                 e["moloch_http_uri_url"] = (
-                    settings.MOLOCH_BASE + "?date=-1&expression=http.uri" + quote("\x3d\x3d\x22%s\x22" % (e["uri"].encode("utf8")), safe="")
+                    settings.MOLOCH_BASE
+                    + "?date=-1&expression=http.uri"
+                    + quote("\x3d\x3d\x22%s\x22" % (e["uri"].encode()), safe="")
                 )
-            if "ua" in e and e["ua"]:
+            if e.get("ua"):
                 e["moloch_http_ua_url"] = (
                     settings.MOLOCH_BASE
                     + "?date=-1&expression=http.user-agent"
-                    + quote("\x3d\x3d\x22%s\x22" % (e["ua"].encode("utf8")), safe="")
+                    + quote("\x3d\x3d\x22%s\x22" % (e["ua"].encode()), safe="")
                 )
-            if "method" in e and e["method"]:
+            if e.get("method"):
                 e["moloch_http_method_url"] = (
                     settings.MOLOCH_BASE + "?date=-1&expression=http.method" + quote("\x3d\x3d\x22%s\x22" % (e["method"]), safe="")
                 )
@@ -670,29 +1048,35 @@ def gen_moloch_from_suri_http(suricata):
 
 
 def gen_moloch_from_suri_alerts(suricata):
-    if "alerts" in suricata and suricata["alerts"]:
+    if suricata.get("alerts"):
         for e in suricata["alerts"]:
-            if "srcip" in e and e["srcip"]:
-                e["moloch_src_ip_url"] = settings.MOLOCH_BASE + "?date=-1&expression=ip" + quote("\x3d\x3d%s" % (str(e["srcip"])), safe="")
-            if "dstip" in e and e["dstip"]:
-                e["moloch_dst_ip_url"] = settings.MOLOCH_BASE + "?date=-1&expression=ip" + quote("\x3d\x3d%s" % (str(e["dstip"])), safe="")
-            if "dstport" in e and e["dstport"]:
+            if e.get("srcip"):
+                e["moloch_src_ip_url"] = (
+                    settings.MOLOCH_BASE + "?date=-1&expression=ip" + quote("\x3d\x3d%s" % (str(e["srcip"])), safe="")
+                )
+            if e.get("dstip"):
+                e["moloch_dst_ip_url"] = (
+                    settings.MOLOCH_BASE + "?date=-1&expression=ip" + quote("\x3d\x3d%s" % (str(e["dstip"])), safe="")
+                )
+            if e.get("dstport"):
                 e["moloch_dst_port_url"] = (
                     settings.MOLOCH_BASE
                     + "?date=-1&expression=port"
                     + quote("\x3d\x3d%s\x26\x26tags\x3d\x3d\x22%s\x22" % (str(e["dstport"]), e["protocol"].lower()), safe="")
                 )
-            if "srcport" in e and e["srcport"]:
+            if e.get("srcport"):
                 e["moloch_src_port_url"] = (
                     settings.MOLOCH_BASE
                     + "?date=-1&expression=port"
                     + quote("\x3d\x3d%s\x26\x26tags\x3d\x3d\x22%s\x22" % (str(e["srcport"]), e["protocol"].lower()), safe="")
                 )
-            if "sid" in e and e["sid"]:
+            if e.get("sid"):
                 e["moloch_sid_url"] = (
-                    settings.MOLOCH_BASE + "?date=-1&expression=tags" + quote("\x3d\x3d\x22suri_sid\x3a%s\x22" % (e["sid"]), safe="")
+                    settings.MOLOCH_BASE
+                    + "?date=-1&expression=tags"
+                    + quote("\x3d\x3d\x22suri_sid\x3a%s\x22" % (e["sid"]), safe="")
                 )
-            if "signature" in e and e["signature"]:
+            if e.get("signature"):
                 e["moloch_msg_url"] = (
                     settings.MOLOCH_BASE
                     + "?date=-1&expression=tags"
@@ -702,52 +1086,56 @@ def gen_moloch_from_suri_alerts(suricata):
 
 
 def gen_moloch_from_suri_file_info(suricata):
-    if "files" in suricata and suricata["files"]:
+    if suricata.get("files"):
         for e in suricata["files"]:
-            if "srcip" in e and e["srcip"]:
-                e["moloch_src_ip_url"] = settings.MOLOCH_BASE + "?date=-1&expression=ip" + quote("\x3d\x3d%s" % (str(e["srcip"])), safe="")
-            if "dstip" in e and e["dstip"]:
-                e["moloch_dst_ip_url"] = settings.MOLOCH_BASE + "?date=-1&expression=ip" + quote("\x3d\x3d%s" % (str(e["dstip"])), safe="")
-            if "dp" in e and e["dp"]:
+            if e.get("srcip"):
+                e["moloch_src_ip_url"] = (
+                    settings.MOLOCH_BASE + "?date=-1&expression=ip" + quote("\x3d\x3d%s" % (str(e["srcip"])), safe="")
+                )
+            if e.get("dstip"):
+                e["moloch_dst_ip_url"] = (
+                    settings.MOLOCH_BASE + "?date=-1&expression=ip" + quote("\x3d\x3d%s" % (str(e["dstip"])), safe="")
+                )
+            if e.get("dp"):
                 e["moloch_dst_port_url"] = (
                     settings.MOLOCH_BASE
                     + "?date=-1&expression=port"
                     + quote("\x3d\x3d%s\x26\x26tags\x3d\x3d\x22%s\x22" % (str(e["dp"]), "tcp"), safe="")
                 )
-            if "sp" in e and e["sp"]:
+            if e.get("sp"):
                 e["moloch_src_port_url"] = (
                     settings.MOLOCH_BASE
                     + "?date=-1&expression=port"
                     + quote("\x3d\x3d%s\x26\x26tags\x3d\x3d\x22%s\x22" % (str(e["sp"]), "tcp"), safe="")
                 )
-            if "http_uri" in e and e["http_uri"]:
+            if e.get("http_uri"):
                 e["moloch_uri_url"] = (
                     settings.MOLOCH_BASE + "?date=-1&expression=http.uri" + quote("\x3d\x3d\x22%s\x22" % (e["http_uri"]), safe="")
                 )
-            if "http_host" in e and e["http_host"]:
+            if e.get("http_host"):
                 e["moloch_host_url"] = (
                     settings.MOLOCH_BASE + "?date=-1&expression=http.host" + quote("\x3d\x3d\x22%s\x22" % (e["http_host"]), safe="")
                 )
             if "file_info" in e:
-                if "clamav" in e["file_info"] and e["file_info"]["clamav"]:
+                if e["file_info"].get("clamav"):
                     e["moloch_clamav_url"] = (
                         settings.MOLOCH_BASE
                         + "?date=-1&expression=tags"
                         + quote("\x3d\x3d\x22clamav\x3a%s\x22" % (re.sub(r"[\W]", "_", e["file_info"]["clamav"])), safe="")
                     )
-                if "md5" in e["file_info"] and e["file_info"]["md5"]:
+                if e["file_info"].get("md5"):
                     e["moloch_md5_url"] = (
                         settings.MOLOCH_BASE
                         + "?date=-1&expression=tags"
                         + quote("\x3d\x3d\x22md5\x3a%s\x22" % (e["file_info"]["md5"]), safe="")
                     )
-                if "sha256" in e["file_info"] and e["file_info"]["sha256"]:
+                if e["file_info"].get("sha256"):
                     e["moloch_sha256_url"] = (
                         settings.MOLOCH_BASE
                         + "?date=-1&expression=tags"
                         + quote("\x3d\x3d\x22sha256\x3a%s\x22" % (e["file_info"]["sha256"]), safe="")
                     )
-                if "yara" in e["file_info"] and e["file_info"]["yara"]:
+                if e["file_info"].get("yara"):
                     for sign in e["file_info"]["yara"]:
                         if "name" in sign:
                             sign["moloch_yara_url"] = (
@@ -759,19 +1147,23 @@ def gen_moloch_from_suri_file_info(suricata):
 
 
 def gen_moloch_from_suri_tls(suricata):
-    if "tls" in suricata and suricata["tls"]:
+    if suricata.get("tls"):
         for e in suricata["tls"]:
-            if "srcip" in e and e["srcip"]:
-                e["moloch_src_ip_url"] = settings.MOLOCH_BASE + "?date=-1&expression=ip" + quote("\x3d\x3d%s" % (str(e["srcip"])), safe="")
-            if "dstip" in e and e["dstip"]:
-                e["moloch_dst_ip_url"] = settings.MOLOCH_BASE + "?date=-1&expression=ip" + quote("\x3d\x3d%s" % (str(e["dstip"])), safe="")
-            if "dstport" in e and e["dstport"]:
+            if e.get("srcip"):
+                e["moloch_src_ip_url"] = (
+                    settings.MOLOCH_BASE + "?date=-1&expression=ip" + quote("\x3d\x3d%s" % (str(e["srcip"])), safe="")
+                )
+            if e.get("dstip"):
+                e["moloch_dst_ip_url"] = (
+                    settings.MOLOCH_BASE + "?date=-1&expression=ip" + quote("\x3d\x3d%s" % (str(e["dstip"])), safe="")
+                )
+            if e.get("dstport"):
                 e["moloch_dst_port_url"] = (
                     settings.MOLOCH_BASE
                     + "?date=-1&expression=port"
                     + quote("\x3d\x3d%s\x26\x26tags\x3d\x3d\x22%s\x22" % (str(e["dstport"]), "tcp"), safe="")
                 )
-            if "srcport" in e and e["srcport"]:
+            if e.get("srcport"):
                 e["moloch_src_port_url"] = (
                     settings.MOLOCH_BASE
                     + "?date=-1&expression=port"
@@ -794,40 +1186,90 @@ def gen_moloch_from_antivirus(virustotal):
 
 @require_safe
 @conditional_login_required(login_required, settings.WEB_AUTHENTICATION)
-def surialert(request, task_id):
-    report = results_db.analysis.find_one({"info.id": int(task_id)}, {"suricata.alerts": 1, "_id": 0}, sort=[("_id", pymongo.DESCENDING)])
-    if not report:
+def antivirus(request, task_id):
+    if enabledconf["mongodb"]:
+        rtmp = mongo_find_one(
+            "analysis",
+            {"info.id": int(task_id)},
+            {"target.file.virustotal": 1, "url.virustotal": 1, "info.category": 1, "_id": 0},
+            sort=[("_id", -1)],
+        )
+    elif es_as_db:
+        rtmp = es.search(index=get_analysis_index(), query=get_query_by_info_id(task_id), _source=["virustotal", "info.category"])[
+            "hits"
+        ]["hits"]
+        if len(rtmp) == 0:
+            rtmp = None
+        else:
+            rtmp = rtmp[0]["_source"]
+    else:
+        rtmp = None
+    if not rtmp:
         return render(request, "error.html", {"error": "The specified analysis does not exist"})
 
-    suricata = report["suricata"]
+    if rtmp.get("target", {}).get("file"):
+        rtmp["virustotal"] = rtmp.get("target", {}).get("file", {}).get("virustotal")
+        del rtmp["target"]["file"]["virustotal"]
+    elif rtmp.get("url", {}).get("virustotal"):
+        rtmp["virustotal"] = rtmp.get("url", {}).get("virustotal")
+        del rtmp["url"]["virustotal"]
 
     if settings.MOLOCH_ENABLED:
         if settings.MOLOCH_BASE[-1] != "/":
-            settings.MOLOCH_BASE = settings.MOLOCH_BASE + "/"
+            settings.MOLOCH_BASE += "/"
+        if "virustotal" in rtmp:
+            rtmp["virustotal"] = gen_moloch_from_antivirus(rtmp["virustotal"])
 
-        suricata = gen_moloch_from_suri_alerts(suricata)
+    rtmp.setdefault("file", {}).setdefault("virustotal", rtmp["virustotal"])
+    del rtmp["virustotal"]
 
-    return render(request, "analysis/surialert.html", {"analysis": report, "config": enabledconf})
+    return render(request, "analysis/antivirus.html", rtmp)
 
 
 @require_safe
 @conditional_login_required(login_required, settings.WEB_AUTHENTICATION)
-def shrike(request, task_id):
-    shrike = results_db.analysis.find_one(
-        {"info.id": int(task_id)},
-        {"info.shrike_url": 1, "info.shrike_msg": 1, "info.shrike_sid": 1, "info.shrike_refer": 1, "_id": 0},
-        sort=[("_id", pymongo.DESCENDING)],
-    )
-    if not shrike:
+def surialert(request, task_id):
+    if enabledconf["mongodb"]:
+        report = mongo_find_one("analysis", {"info.id": int(task_id)}, {"suricata.alerts": 1, "_id": 0}, sort=[("_id", -1)])
+    elif es_as_db:
+        report = es.search(index=get_analysis_index(), query=get_query_by_info_id(task_id), _source=["suricata.alerts"])["hits"][
+            "hits"
+        ]
+        if len(report) == 0:
+            report = None
+        else:
+            report = report[0]["_source"]
+    else:
+        report = None
+    if not report:
         return render(request, "error.html", {"error": "The specified analysis does not exist"})
 
-    return render(request, "analysis/shrike.html", {"shrike": shrike})
+    suricata = report["suricata"]
+
+    if settings.MOLOCH_ENABLED:
+        if settings.MOLOCH_BASE[-1] != "/":
+            settings.MOLOCH_BASE += "/"
+
+        suricata = gen_moloch_from_suri_alerts(suricata)
 
+    return render(request, "analysis/surialert.html", {"suricata": report["suricata"], "config": enabledconf})
 
 @require_safe
 @conditional_login_required(login_required, settings.WEB_AUTHENTICATION)
 def surihttp(request, task_id):
-    report = results_db.analysis.find_one({"info.id": int(task_id)}, {"suricata.http": 1, "_id": 0}, sort=[("_id", pymongo.DESCENDING)])
+    if enabledconf["mongodb"]:
+        report = mongo_find_one("analysis", {"info.id": int(task_id)}, {"suricata.http": 1, "_id": 0}, sort=[("_id", -1)])
+    elif es_as_db:
+        report = es.search(index=get_analysis_index(), query=get_query_by_info_id(task_id), _source=["suricata.http"])["hits"][
+            "hits"
+        ]
+        if len(report) == 0:
+            report = None
+        else:
+            report = report[0]["_source"]
+    else:
+        report = None
+
     if not report:
         return render(request, "error.html", {"error": "The specified analysis does not exist"})
 
@@ -835,17 +1277,29 @@ def surihttp(request, task_id):
 
     if settings.MOLOCH_ENABLED:
         if settings.MOLOCH_BASE[-1] != "/":
-            settings.MOLOCH_BASE = settings.MOLOCH_BASE + "/"
+            settings.MOLOCH_BASE += "/"
 
         suricata = gen_moloch_from_suri_http(suricata)
 
-    return render(request, "analysis/surihttp.html", {"analysis": report, "config": enabledconf})
+    return render(request, "analysis/surihttp.html", {"analysis": report["suricata"], "config": enabledconf})
 
 
 @require_safe
 @conditional_login_required(login_required, settings.WEB_AUTHENTICATION)
 def suritls(request, task_id):
-    report = results_db.analysis.find_one({"info.id": int(task_id)}, {"suricata.tls": 1, "_id": 0}, sort=[("_id", pymongo.DESCENDING)])
+    if enabledconf["mongodb"]:
+        report = mongo_find_one("analysis", {"info.id": int(task_id)}, {"suricata.tls": 1, "_id": 0}, sort=[("_id", -1)])
+    elif es_as_db:
+        report = es.search(index=get_analysis_index(), query=get_query_by_info_id(task_id), _source=["suricata.tls"])["hits"][
+            "hits"
+        ]
+        if len(report) == 0:
+            report = None
+        else:
+            report = report[0]["_source"]
+    else:
+        report = None
+
     if not report:
         return render(request, "error.html", {"error": "The specified analysis does not exist"})
 
@@ -853,19 +1307,31 @@ def suritls(request, task_id):
 
     if settings.MOLOCH_ENABLED:
         if settings.MOLOCH_BASE[-1] != "/":
-            settings.MOLOCH_BASE = settings.MOLOCH_BASE + "/"
+            settings.MOLOCH_BASE += "/"
 
         suricata = gen_moloch_from_suri_tls(suricata)
 
-    return render(request, "analysis/suritls.html", {"analysis": report, "config": enabledconf})
+    return render(request, "analysis/suritls.html", {"analysis": report["suricata"], "config": enabledconf})
 
 
 @require_safe
 @conditional_login_required(login_required, settings.WEB_AUTHENTICATION)
 def surifiles(request, task_id):
-    report = results_db.analysis.find_one(
-        {"info.id": int(task_id)}, {"info.id": 1, "suricata.files": 1, "_id": 0}, sort=[("_id", pymongo.DESCENDING)]
-    )
+    if enabledconf["mongodb"]:
+        report = mongo_find_one(
+            "analysis", {"info.id": int(task_id)}, {"info.id": 1, "suricata.files": 1, "_id": 0}, sort=[("_id", -1)]
+        )
+    elif es_as_db:
+        report = es.search(index=get_analysis_index(), query=get_query_by_info_id(task_id), _source=["suricata.files"])["hits"][
+            "hits"
+        ]
+        if len(report) == 0:
+            report = None
+        else:
+            report = report[0]["_source"]
+    else:
+        report = None
+
     if not report:
         return render(request, "error.html", {"error": "The specified analysis does not exist"})
 
@@ -873,28 +1339,11 @@ def surifiles(request, task_id):
 
     if settings.MOLOCH_ENABLED:
         if settings.MOLOCH_BASE[-1] != "/":
-            settings.MOLOCH_BASE = settings.MOLOCH_BASE + "/"
+            settings.MOLOCH_BASE += "/"
 
         suricata = gen_moloch_from_suri_file_info(suricata)
 
-    return render(request, "analysis/surifiles.html", {"analysis": report, "config": enabledconf})
-
-
-@require_safe
-@conditional_login_required(login_required, settings.WEB_AUTHENTICATION)
-def antivirus(request, task_id):
-    rtmp = results_db.analysis.find_one(
-        {"info.id": int(task_id)}, {"virustotal": 1, "info.category": 1, "_id": 0}, sort=[("_id", pymongo.DESCENDING)]
-    )
-    if not rtmp:
-        return render(request, "error.html", {"error": "The specified analysis does not exist"})
-    if settings.MOLOCH_ENABLED:
-        if settings.MOLOCH_BASE[-1] != "/":
-            settings.MOLOCH_BASE = settings.MOLOCH_BASE + "/"
-        if "virustotal" in rtmp:
-            rtmp["virustotal"] = gen_moloch_from_antivirus(rtmp["virustotal"])
-
-    return render(request, "analysis/antivirus.html", {"analysis": rtmp})
+    return render(request, "analysis/surifiles.html", {"analysis": report["suricata"], "config": enabledconf})
 
 
 @csrf_exempt
@@ -905,17 +1354,36 @@ def search_behavior(request, task_id):
         results = []
         search_pid = None
         search_tid = None
-        match = re.search("pid=(?P<search_pid>\d+)", query)
+        search_apicall = None
+        search_argname = None
+        search_procname = None
+
+        match = re.search(r"pid=(?P<search_pid>\d+)", query)
         if match:
             search_pid = int(match.group("search_pid"))
-        match = re.search("tid=(?P<search_tid>\d+)", query)
+        match = re.search(r"tid=(?P<search_tid>\d+)", query)
         if match:
             search_tid = match.group("search_tid")
+        match = re.search(r"apicall=(?P<search_apicall>[A-Za-z]+)", query)
+        if match:
+            search_apicall = match.group("search_apicall")
+        match = re.search(r"argname=(?P<search_argname>[A-Za-z]+)", query)
+        if match:
+            search_argname = match.group("search_argname")
+        match = re.search(r"procname=(?P<search_procname>[A-Za-z0-9\.\-]+)", query)
+        if match:
+            search_procname = match.group("search_procname")
 
         if search_pid:
             query = query.replace("pid=" + str(search_pid), "")
         if search_tid:
             query = query.replace("tid=" + search_tid, "")
+        if search_apicall:
+            query = query.replace("apicall=" + search_apicall, "")
+        if search_argname:
+            query = query.replace("argname=" + search_argname, "")
+        if search_procname:
+            query = query.replace("procname=" + search_procname, "")
 
         query = query.strip()
 
@@ -923,42 +1391,46 @@ def search_behavior(request, task_id):
 
         # Fetch anaylsis report
         if enabledconf["mongodb"]:
-            record = results_db.analysis.find_one({"info.id": int(task_id)}, {"behavior.processes": 1, "_id": 0})
+            record = mongo_find_one("analysis", {"info.id": int(task_id)}, {"behavior.processes": 1, "_id": 0})
         if es_as_db:
-            esquery = es.search(index=fullidx, doc_type="analysis", q='info.id: "%s"' % task_id)["hits"]["hits"][0]
+            esquery = es.search(index=get_analysis_index(), query=get_query_by_info_id(task_id))["hits"]["hits"][0]
             esidx = esquery["_index"]
             record = esquery["_source"]
 
         # Loop through every process
         for process in record["behavior"]["processes"]:
+            if search_procname and process["process_name"].lower() != search_procname.lower():
+                continue
             if search_pid and process["process_id"] != search_pid:
                 continue
 
             process_results = []
 
             if enabledconf["mongodb"]:
-                chunks = results_db.calls.find({"_id": {"$in": process["calls"]}})
+                chunks = mongo_find("calls", {"_id": {"$in": process["calls"]}})
             if es_as_db:
                 # I don't believe ES has a similar function to MongoDB's $in
                 # so we'll just iterate the call list and query appropriately
-                chunks = list()
+                chunks = []
                 for callitem in process["calls"]:
                     data = es.search(index=esidx, oc_type="calls", q="_id: %s" % callitem)["hits"]["hits"][0]["_source"]
                     chunks.append(data)
 
             for chunk in chunks:
-                for call in chunk["calls"]:
+                for call in chunk.get("calls", []):
                     if search_tid and call["thread_id"] != search_tid:
                         continue
-                    # TODO: ES can speed this up instead of parsing with
-                    # Python regex.
-                    if query.search(call["api"]):
-                        process_results.append(call)
-                    else:
-                        for argument in call["arguments"]:
-                            if query.search(argument["name"]) or query.search(argument["value"]):
-                                process_results.append(call)
-                                break
+                    if search_apicall and call["api"] != search_apicall:
+                        continue
+
+                    # TODO: ES can speed this up instead of parsing with Python regex.
+
+                    for argument in call["arguments"]:
+                        if search_argname and argument["name"] != search_argname:
+                            continue
+                        if isinstance(argument["value"], (str, bytes)) and query.search(argument["value"]):
+                            process_results.append(call)
+                            break
 
             if len(process_results) > 0:
                 results.append({"process": process, "signs": process_results})
@@ -968,120 +1440,142 @@ def search_behavior(request, task_id):
         raise PermissionDenied
 
 
+def split_signature_calls(report):
+    """For each of the signatures in the given report, examine its "data" and separate out calls in to a "calls" key."""
+    if report is None:
+        return None
+    for sig in report.get("signatures", []):
+        if sig.get("new_data"):
+            continue
+        calls = []
+        non_calls = []
+        for datum in sig.pop("data", []):
+            if datum.get("type") == "call":
+                calls.append(datum)
+            else:
+                non_calls.append(datum)
+        if calls:
+            sig["calls"] = calls
+        sig["data"] = non_calls
+
+    return report
+
+
 @require_safe
 @conditional_login_required(login_required, settings.WEB_AUTHENTICATION)
+@ratelimit(key="ip", rate=my_rate_seconds, block=rateblock)
+@ratelimit(key="ip", rate=my_rate_minutes, block=rateblock)
 def report(request, task_id):
     network_report = False
+    report = {}
     if enabledconf["mongodb"]:
-        report = results_db.analysis.find_one(
+        report = mongo_find_one(
+            "analysis",
             {"info.id": int(task_id)},
-            {"dropped": 0, "CAPE.payloads": 0, "procdump": 0, "behavior.processes": 0, "network": 0, "memory": 0},
-            sort=[("_id", pymongo.DESCENDING)],
+            {"dropped": 0, "CAPE.payloads": 0, "procdump": 0, "procmemory": 0, "behavior.processes": 0, "network": 0, "memory": 0},
+            sort=[("_id", -1)],
         )
-        network_report = results_db.analysis.find_one(
+        network_report = mongo_find_one(
+            "analysis",
             {"info.id": int(task_id)},
-            {"network.domainlookups": 1, "network.iplookups": 1, "network.dns": 1, "network.hosts": 1},
-            sort=[("_id", pymongo.DESCENDING)],
+            {"network.domains": 1, "network.dns": 1, "network.hosts": 1},
+            sort=[("_id", -1)],
         )
-        # ToDo
-        # memory_exist = results_db.analysis.find({"info.id": int(task_id), "memory": {"$exists": True}})
+        report = split_signature_calls(report)
+
     if es_as_db:
-        query = es.search(index=fullidx, doc_type="analysis", q='info.id: "%s"' % task_id)["hits"]["hits"][0]
+        query = es.search(index=get_analysis_index(), query=get_query_by_info_id(task_id))["hits"]["hits"][0]
         report = query["_source"]
+        # Extract out data for Admin tab in the analysis page
+        network_report = es.search(
+            index=get_analysis_index(),
+            query=get_query_by_info_id(task_id),
+            _source=["network.domains", "network.dns", "network.hosts"],
+        )["hits"]["hits"][0]["_source"]
+
         # Extract out data for Admin tab in the analysis page
         esdata = {"index": query["_index"], "id": query["_id"]}
         report["es"] = esdata
     if not report:
-        return render(request, "error.html", {"error": "The specified analysis does not exist or not finished yet"})
+        if DISABLED_WEB:
+            msg = "You need to enable Mongodb/ES to be able to use WEBGUI to see the analysis"
+        else:
+            msg = "The specified analysis does not exist or not finished yet."
+
+        return render(request, "error.html", {"error": msg})
 
     if isinstance(report.get("CAPE"), dict) and report.get("CAPE", {}).get("configs", {}):
         report["malware_conf"] = report["CAPE"]["configs"]
-    if enabledconf["compressresults"]:
-        for keyword in ("CAPE", "procdump", "enhanced", "summary"):
-            if report.get(keyword, False):
-                try:
-                    report[keyword] = json.loads(zlib.decompress(report[keyword]))
-                except Exception:
-                    pass
-        if report.get("behavior", {}).get("summary", {}):
+    report["CAPE"] = 0
+    report["dropped"] = 0
+    report["procdump"] = 0
+    report["memory"] = 0
+
+    for key, value in (("dropped", "dropped"), ("procdump", "procdump"), ("CAPE.payloads", "CAPE"), ("procmemory", "procmemory")):
+        if enabledconf["mongodb"]:
             try:
-                report["behavior"]["summary"] = json.loads(zlib.decompress(report["behavior"]["summary"]))
+                report[value] = list(
+                    mongo_aggregate(
+                        "analysis",
+                        [
+                            {"$match": {"info.id": int(task_id)}},
+                            {
+                                "$project": {
+                                    "_id": 0,
+                                    f"{value}_size": {
+                                        "$add": [
+                                            {"$size": {"$ifNull": [f"${key}.{subkey}", []]}} for subkey in ("sha256", "file_ref")
+                                        ]
+                                    },
+                                },
+                            },
+                        ],
+                    )
+                )[0][f"{value}_size"]
             except Exception:
-                pass
-    children = 0
-    if "CAPE_children" in report:
-        children = report["CAPE_children"]
-
-    try:
-        report["dropped"] = list(
-            results_db.analysis.aggregate(
-                [{"$match": {"info.id": int(task_id)}}, {"$project": {"_id": 0, "dropped_size": {"$size": "$dropped.sha256"}}}]
-            )
-        )[0]["dropped_size"]
-    except:
-        report["dropped"] = 0
+                report[value] = 0
 
-    try:
-        tmp_data = list(
-            results_db.analysis.aggregate(
-                [{"$match": {"info.id": int(task_id)}}, {"$project": {"_id": 0, "cape_size": {"$size": "$CAPE.payloads.sha256"}}}]
-            )
-        )
-        report["CAPE"] = tmp_data[0]["cape_size"] or 0
-        # ToDo remove in CAPEv3 *_old
-        if not report["CAPE"]:
-            tmp_data = list(
-                results_db.analysis.aggregate(
-                    [
-                        {"$match": {"info.id": int(task_id)}},
-                        {
-                            "$project": {
-                                "_id": 0,
-                                "cape_size_old": {"$size": "$CAPE.sha256"},
-                                "cape_conf_size_old": {"$size": "$CAPE.cape_config"},
-                            }
-                        },
-                    ]
+        elif es_as_db:
+            try:
+                report[value] = len(
+                    es.search(index=get_analysis_index(), query=get_query_by_info_id(task_id), _source=[f"{key}.sha256"])["hits"][
+                        "hits"
+                    ][0]["_source"].get(key)
                 )
-            )
-            report["CAPE_old"] = tmp_data[0]["cape_size_old"] or tmp_data[0]["cape_conf_size_old"] or 0
-    except Exception as e:
-        print(e)
-        report["CAPE"] = 0
+            except Exception as e:
+                print(e)
 
     try:
-        tmp_data = list(
-            results_db.analysis.aggregate(
-                [{"$match": {"info.id": int(task_id)}}, {"$project": {"_id": 0, "procdump_size": {"$size": "$procdump.sha256"}}}]
+        if enabledconf["mongodb"]:
+            tmp_data = list(mongo_find("analysis", {"info.id": int(task_id), "memory": {"$exists": True}}))
+            if tmp_data:
+                report["memory"] = tmp_data[0]["_id"] or 0
+        elif es_as_db:
+            report["memory"] = len(
+                es.search(index=get_analysis_index(), query=get_query_by_info_id(task_id), _source=["memory"])["hits"]["hits"]
             )
-        )
-        report["procdump"] = tmp_data[0]["procdump_size"] or 0
     except Exception as e:
         print(e)
-        report["procdump_size"] = 0
-
-    try:
-        tmp_data = list(results_db.analysis.aggregate([{"$match": {"info.id": int(task_id)}}, {"$project": {"_id": 1}}]))
-        report["memory"] = tmp_data[0]["_id"] or 0
-    except Exception as e:
-        print(e)
-        report["memory"] = 0
 
     reports_exist = False
-    reporting_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(task_id), "reports")
-    if os.path.exists(reporting_path) and os.listdir(reporting_path):
-        reports_exist = True
+    # check if we allow dl reports only to specific users
+    if settings.ALLOW_DL_REPORTS_TO_ALL:
+        reporting_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(task_id), "reports")
+        if path_exists(reporting_path) and os.listdir(reporting_path):
+            reports_exist = True
 
     debugger_log_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(task_id), "debugger")
-    if os.path.exists(debugger_log_path) and os.listdir(debugger_log_path):
+    if path_exists(debugger_log_path) and os.listdir(debugger_log_path):
         report["debugger_logs"] = 1
 
     if settings.MOLOCH_ENABLED and "suricata" in report:
         suricata = report["suricata"]
         if settings.MOLOCH_BASE[-1] != "/":
-            settings.MOLOCH_BASE = settings.MOLOCH_BASE + "/"
+            settings.MOLOCH_BASE += "/"
         report["moloch_url"] = (
-            settings.MOLOCH_BASE + "?date=-1&expression=tags" + quote("\x3d\x3d\x22%s\x3a%s\x22" % (settings.MOLOCH_NODE, task_id), safe="")
+            settings.MOLOCH_BASE
+            + "?date=-1&expression=tags"
+            + quote("\x3d\x3d\x22%s\x3a%s\x22" % (settings.MOLOCH_NODE, task_id), safe="")
         )
         if isinstance(suricata, dict):
             suricata = gen_moloch_from_suri_http(suricata)
@@ -1092,23 +1586,28 @@ def report(request, task_id):
     if settings.MOLOCH_ENABLED and "virustotal" in report:
         report["virustotal"] = gen_moloch_from_antivirus(report["virustotal"])
 
-    vba2graph = processing_cfg.vba2graph.enabled
-    vba2graph_svg_content = ""
-    vba2graph_svg_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(task_id), "vba2graph", "svg", "vba2graph.svg")
-    if os.path.exists(vba2graph_svg_path):
-        vba2graph_svg_content = open(vba2graph_svg_path, "rb").read().decode("utf8")
+    vba2graph = False
+    vba2graph_dict_content = {}
+    # we don't want to do this for urls but we might as well check that the target exists
+    if report.get("target", {}).get("file", {}).get("sha256"):
+        vba2graph = processing_cfg.vba2graph.enabled
+        vba2graph_svg_path = os.path.join(
+            CUCKOO_ROOT, "storage", "analyses", str(task_id), "vba2graph", "svg", report["target"]["file"]["sha256"] + ".svg"
+        )
+
+        if path_exists(vba2graph_svg_path) and _path_safe(vba2graph_svg_path):
+            vba2graph_dict_content.setdefault(report["target"]["file"]["sha256"], Path(vba2graph_svg_path).read_text())
 
     bingraph = reporting_cfg.bingraph.enabled
     bingraph_dict_content = {}
     bingraph_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(task_id), "bingraph")
-    if os.path.exists(bingraph_path):
+    if path_exists(bingraph_path):
         for file in os.listdir(bingraph_path):
             tmp_file = os.path.join(bingraph_path, file)
-            with open(tmp_file, "r") as f:
-                bingraph_dict_content.setdefault(os.path.basename(tmp_file).split("-")[0], f.read())
+            bingraph_dict_content.setdefault(os.path.basename(tmp_file).split("-", 1)[0], Path(tmp_file).read_text())
 
-    domainlookups = dict()
-    iplookups = dict()
+    domainlookups = {}
+    iplookups = {}
     if network_report.get("network", {}):
         report["network"] = network_report["network"]
 
@@ -1119,21 +1618,81 @@ def report(request, task_id):
                 for a in i["answers"]:
                     iplookups[a["data"]] = i["request"]
 
+    if HAVE_REQUEST and enabledconf["distributed"]:
+        try:
+            res = requests.get(f"http://127.0.0.1:9003/task/{task_id}", timeout=3, verify=False)
+            if res and res.ok:
+                if "name" in res.json():
+                    report["distributed"] = {}
+                    report["distributed"]["name"] = res.json()["name"]
+                    report["distributed"]["task_id"] = res.json()["task_id"]
+        except Exception as e:
+            print(e)
+
+    stats_total = {
+        "total": 0,
+        "processing": 0,
+        "signatures": 0,
+        "reporting": 0,
+    }
+    for stats_category in ("processing", "signatures", "reporting"):
+        total = 0.0
+        for item in report.get("statistics", {}).get(stats_category, []) or []:
+            total += item["time"]
+
+        stats_total["total"] += total
+        stats_total[stats_category] = "{:.2f}".format(total)
+
+    stats_total["total"] = "{:.2f}".format(stats_total["total"])
+    if HAVE_REQUEST and enabledconf["distributed"]:
+        try:
+            res = requests.get(f"http://127.0.0.1:9003/task/{task_id}", timeout=3, verify=False)
+            if res and res.ok:
+                res = res.json()
+                if "name" in res:
+                    report["distributed"] = {}
+                    report["distributed"]["name"] = res["name"]
+                    report["distributed"]["task_id"] = res["task_id"]
+        except Exception as e:
+            print(e)
+
+    existent_tasks = {}
+    if web_cfg.general.get("existent_tasks", False) and report.get("target", {}).get("file", {}).get("sha256"):
+        records = perform_search("sha256", report["target"]["file"]["sha256"])
+        for record in records:
+            if record["info"]["id"] == report["info"]["id"]:
+                continue
+            existent_tasks[record["info"]["id"]] = record.get("detections")
+
+    # process log per task if enabled:
+    process_log_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(task_id), "process.log")
+    if web_cfg.general.expose_process_log and path_exists(process_log_path) and path_get_size(process_log_path):
+        report["process_log"] = path_read_file(process_log_path, mode="text")
+
     return render(
         request,
         "analysis/report.html",
         {
+            "title": "Analysis Report",
             "analysis": report,
-            "children": children,
+            # ToDo test
+            "file": report.get("target", {}).get("file", {}),
+            "id": report["info"]["id"],
+            "tab_name": "static",
+            "source_url": report["info"].get("source_url", ""),
+            # till here
             "domainlookups": domainlookups,
             "iplookups": iplookups,
             "settings": settings,
             "config": enabledconf,
             "reports_exist": reports_exist,
+            "stats_total": stats_total,
             "graphs": {
-                "vba2graph": {"enabled": vba2graph, "content": vba2graph_svg_content},
+                "vba2graph": {"enabled": vba2graph, "content": vba2graph_dict_content},
                 "bingraph": {"enabled": bingraph, "content": bingraph_dict_content},
             },
+            "on_demand": on_demand_conf,
+            "existent_tasks": existent_tasks,
         },
     )
 
@@ -1142,104 +1701,171 @@ def report(request, task_id):
 @csrf_exempt
 @api_view(["GET"])
 def file_nl(request, category, task_id, dlfile):
-    file_name = dlfile
     base_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(task_id))
     path = False
     if category == "screenshot":
-        file_name = file_name + ".jpg"
-        path = os.path.join(base_path, "shots", file_name)
-        cd = "image/jpeg"
+        for ext, cd in ((".jpg", "image/jpeg"), (".png", "image/png")):
+            file_name = dlfile + ext
+            path = os.path.join(base_path, "shots", file_name)
+            if path_exists(path):
+                break
+        else:
+            return render(request, "error.html", {"error": f"Could not find screenshot {dlfile}"})
 
     elif category == "bingraph":
-        path = os.path.join(base_path, str(task_id), "bingraph", file_name + "-ent.svg")
-        file_name = file_name + "-ent.svg"
+        file_name = dlfile + "-ent.svg"
+        path = os.path.join(base_path, "bingraph", file_name)
+        cd = "image/svg+xml"
+
+    elif category == "vba2graph":
+        file_name = f"{dlfile}.svg"
+        path = os.path.join(base_path, "vba2graph", "svg", file_name)
         cd = "image/svg+xml"
+
     else:
         return render(request, "error.html", {"error": "Category not defined"})
 
-    if path and not os.path.normpath(path).startswith(base_path):
+    if path and not _path_safe(path):
         return render(request, "error.html", {"error": "File not found"})
 
+    # Performance considerations
+    # https://docs.djangoproject.com/en/4.1/ref/request-response/#streaminghttpresponse-objects
+    file_size = Path(path).stat().st_size
     try:
         resp = StreamingHttpResponse(FileWrapper(open(path, "rb"), 8192), content_type=cd)
-    except:
+    except Exception:
         return render(request, "error.html", {"error": "File {} not found".format(path)})
 
-    resp["Content-Length"] = os.path.getsize(path)
+    resp["Content-Length"] = file_size
     resp["Content-Disposition"] = "attachment; filename=" + file_name
     return resp
 
 
+zip_categories = (
+    "staticzip",
+    "droppedzip",
+    "CAPEzip",
+    "procdumpzip",
+    "memdumpzip",
+    "networkzip",
+    "pcapzip",
+    "droppedzipall",
+    "procdumpzipall",
+    "CAPEzipall",
+    "capeyarazipall",
+    "logszipall",
+)
+category_map = {
+    "CAPE": "CAPE",
+    "procdump": "procdump",
+    "dropped": "files",
+}
+
+
+def _file_search_all_files(search_category: str, search_term: str) -> list:
+    path = []
+    try:
+        projection = {
+            "info.parent_sample.path": 1,
+            "info.parent_sample.cape_yara.name": 1,
+            "target.file.path": 1,
+            "target.file.cape_yara.name": 1,
+            "dropped.path": 1,
+            "dropped.cape_yara.name": 1,
+            "procdump.path": 1,
+            "procdump.cape_yara.name": 1,
+            "CAPE.payloads.path": 1,
+            "CAPE.payloads.cape_yara.name": 1,
+            "info.parent_sample.extracted_files_tool.path": 1,
+            "info.parent_sample.extracted_files_tool.cape_yara.name": 1,
+            "target.file.extracted_files_tool.path": 1,
+            "target.file.extracted_files_tool.cape_yara.name": 1,
+            "dropped.extracted_files_tool.path": 1,
+            "dropped.extracted_files_tool.cape_yara.name": 1,
+            "procdump.extracted_files_tool.path": 1,
+            "procdump.extracted_files_tool.cape_yara.name": 1,
+            "CAPE.payloads.extracted_files_tool.path": 1,
+            "CAPE.payloads.extracted_files_tool.cape_yara.name": 1,
+        }
+        records = perform_search(search_category, search_term, projection=projection)
+        search_term = search_term.lower()
+        for _, filepath, _, _ in yara_detected(search_term, records):
+            if not path_exists(filepath):
+                continue
+            path.append(filepath)
+    except ValueError as e:
+        print("mongodb load", e)
+
+    # remove any duplicated before return
+    return list(set(path))
+
+
 @require_safe
 @conditional_login_required(login_required, settings.WEB_AUTHENTICATION)
 @csrf_exempt
+@ratelimit(key="ip", rate=my_rate_seconds, block=rateblock)
+@ratelimit(key="ip", rate=my_rate_minutes, block=rateblock)
 @api_view(["GET"])
 def file(request, category, task_id, dlfile):
     file_name = dlfile
-    cd = ""
+    cd = "application/octet-stream"
+    path = ""
     mem_zip = False
-    size = 0
     extmap = {
         "memdump": ".dmp",
         "memdumpstrings": ".dmp.strings",
     }
 
-    if category == "sample":
-        path = os.path.join(CUCKOO_ROOT, "storage", "binaries", dlfile)
-    elif category in (
-        "samplezip",
-        "dropped",
-        "droppedzip",
-        "CAPE",
-        "CAPEZIP",
-        "procdump",
-        "procdumpzip",
-        "memdumpzip",
-        "networkzip",
-    ):
-        # ability to download password protected zip archives
-        path = ""
-        if category in ("sample", "samplezip"):
-            path = os.path.join(CUCKOO_ROOT, "storage", "binaries", file_name)
-        elif category in ("dropped", "droppedzip"):
-            path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(task_id), "files", file_name)
-        elif category.startswith("CAPE"):
-            buf = os.path.join(CUCKOO_ROOT, "storage", "analyses", task_id, "CAPE", file_name)
-            if os.path.isdir(buf):
-                dfile = min(os.listdir(buf), key=len)
-                path = os.path.join(buf, dfile)
-            else:
-                path = buf
-        elif category == "networkzip":
-            buf = os.path.join(CUCKOO_ROOT, "storage", "analyses", task_id, "network", file_name)
+    if category in zip_categories and not HAVE_PYZIPPER:
+        return render(request, "error.html", {"error": "Missed pyzipper library: poetry install"})
+
+    if category in ("sample", "static", "staticzip"):
+        path = os.path.join(CUCKOO_ROOT, "storage", "binaries", file_name)
+    elif category in ("dropped", "droppedzip"):
+        path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(task_id), "files", file_name)
+        # Self Extracted support folder
+        if not path_exists(path):
+            path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(task_id), "selfextracted", file_name)
+    elif category in ("droppedzipall", "procdumpzipall", "CAPEzipall"):
+        if web_cfg.zipped_download.download_all:
+            sub_cat = category.replace("zipall", "")
+            path = category_all_files(
+                task_id, sub_cat, os.path.join(CUCKOO_ROOT, "storage", "analyses", str(task_id), category_map[sub_cat])
+            )
+            file_name = f"{task_id}_{category}"
+    elif category.startswith("CAPE"):
+        buf = os.path.join(CUCKOO_ROOT, "storage", "analyses", task_id, "CAPE", file_name)
+        if os.path.isdir(buf):
+            dfile = min(os.listdir(buf), key=len)
+            path = os.path.join(buf, dfile)
+        else:
             path = buf
-        elif category.startswith("procdump"):
-            path = os.path.join(CUCKOO_ROOT, "storage", "analyses", task_id, "procdump", file_name)
-        elif category.startswith("memdumpzip"):
-            path = os.path.join(CUCKOO_ROOT, "storage", "analyses", task_id, "memory", file_name + ".dmp")
-            file_name += ".dmp"
-        if path and not os.path.exists(path):
-            return render(request, "error.html", {"error": "File {} not found".format(os.path.basename(path))})
-        if category in ("samplezip", "droppedzip", "CAPEZIP", "procdumpzip", "memdumpzip", "networkzip"):
-            if HAVE_PYZIPPER:
-                mem_zip = BytesIO()
-                with pyzipper.AESZipFile(mem_zip, "w", compression=pyzipper.ZIP_LZMA, encryption=pyzipper.WZ_AES) as zf:
-                    zf.setpassword(settings.ZIP_PWD)
-                    with open(path, "rb") as f:
-                        zf.writestr(os.path.basename(path), f.read())
-            else:
-                return render(request, "error.html", {"error": "Missed pyzipper library"})
-            file_name += ".zip"
-            path = os.path.join(tempfile.gettempdir(), file_name)
-            cd = "application/zip"
+            if not path_exists(path):
+                path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(task_id), "selfextracted", file_name)
+    elif category == "networkzip":
+        buf = os.path.join(CUCKOO_ROOT, "storage", "analyses", task_id, "network", file_name)
+        path = buf
+    elif category.startswith("memdumpzip"):
+        path = os.path.join(CUCKOO_ROOT, "storage", "analyses", task_id, "memory", file_name + ".dmp")
+        file_name += ".dmp"
+    elif category in ("pcap", "pcapzip"):
+        file_name += ".pcap"
+        path = os.path.join(CUCKOO_ROOT, "storage", "analyses", task_id, "dump.pcap")
+        cd = "application/vnd.tcpdump.pcap"
+    elif category == "pcapng":
+        analysis_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", task_id)
+        pcap_path = os.path.join(analysis_path, "dump.pcap")
+        tls_log_path = os.path.join(analysis_path, "tlsdump", "tlsdump.log")
+        ssl_key_log_path = os.path.join(analysis_path, "aux", "sslkeylogfile", "sslkeys.log")
+        path = os.path.join(CUCKOO_ROOT, "storage", "analyses", task_id, "dump.pcapng")
+        pcapng = PcapToNg(pcap_path, tls_log_path, ssl_key_log_path)
+        pcapng.generate(path)
+        file_name += ".pcapng"
+        cd = "application/vnd.tcpdump.pcap"
     elif category == "debugger_log":
         path = os.path.join(CUCKOO_ROOT, "storage", "analyses", task_id, "debugger", str(dlfile) + ".log")
     elif category == "rtf":
         path = os.path.join(CUCKOO_ROOT, "storage", "analyses", task_id, "rtf_objects", file_name)
-    elif category == "pcap":
-        file_name += ".pcap"
-        path = os.path.join(CUCKOO_ROOT, "storage", "analyses", task_id, "dump.pcap")
-        cd = "application/vnd.tcpdump.pcap"
     elif category == "usage":
         path = os.path.join(CUCKOO_ROOT, "storage", "analyses", task_id, "aux", "usage.svg")
         file_name = "usage.svg"
@@ -1247,7 +1873,7 @@ def file(request, category, task_id, dlfile):
     elif category in extmap:
         file_name += extmap[category]
         path = os.path.join(CUCKOO_ROOT, "storage", "analyses", task_id, "memory", file_name)
-        if not os.path.exists(path):
+        if not path_exists(path):
             file_name += ".zip"
             path += ".zip"
             cd = "application/zip"
@@ -1258,7 +1884,7 @@ def file(request, category, task_id, dlfile):
             path = os.path.join(buf, dfile)
         else:
             path = buf
-    elif category == "procdump":
+    elif category.startswith("procdump"):
         buf = os.path.join(CUCKOO_ROOT, "storage", "analyses", task_id, "procdump", file_name)
         if os.path.isdir(buf):
             dfile = min(os.listdir(buf), key=len)
@@ -1271,70 +1897,131 @@ def file(request, category, task_id, dlfile):
         path = os.path.join(CUCKOO_ROOT, "storage", "analyses", task_id, "logs", "files.zip")
         cd = "application/zip"
     elif category == "suricata":
-        file_name = "file." + dlfile
         path = os.path.join(CUCKOO_ROOT, "storage", "analyses", task_id, "logs", "files", file_name)
     elif category == "rtf":
         path = os.path.join(CUCKOO_ROOT, "storage", "analyses", task_id, "rtf_objects", file_name)
+    elif category == "tlskeys":
+        path = os.path.join(CUCKOO_ROOT, "storage", "analyses", task_id, "tlsdump", "tlsdump.log")
+    # linux sysmon url to download sysmon.data xml
+    elif category == "sysmon":
+        path = os.path.join(CUCKOO_ROOT, "storage", "analyses", task_id, "sysmon", "sysmon.data")
+    elif category == "evtx":
+        path = os.path.join(CUCKOO_ROOT, "storage", "analyses", task_id, "evtx", "evtx.zip")
+        file_name = f"{task_id}_evtx.zip"
+        cd = "application/zip"
+    elif category == "capeyarazipall":
+        # search in mongo and get the path
+        if enabledconf["mongodb"] and web_cfg.zipped_download.download_all:
+            path = _file_search_all_files(category.replace("zipall", ""), dlfile)
+    elif category == "logszipall":
+        buf = os.path.join(CUCKOO_ROOT, "storage", "analyses", task_id, "logs")
+        path = []
+        for dfile in os.listdir(buf):
+            path.append(os.path.join(buf, dfile))
+    elif category == "mitmdump":
+        path = os.path.join(CUCKOO_ROOT, "storage", "analyses", task_id, "mitmdump", "dump.har")
+        cd = "text/plain"
     else:
         return render(request, "error.html", {"error": "Category not defined"})
 
-    if not cd:
-        cd = "application/octet-stream"
+    if not isinstance(path, list):
+        send_filename = f"{task_id + '_' if task_id not in os.path.basename(path) else ''}{os.path.basename(path)}"
+        if category in zip_categories:
+            send_filename += ".zip"
+    else:
+        send_filename = file_name + ".zip"
+
+    if not path:
+        return render(
+            request,
+            "error.html",
+            {"error": "Files not found or option is not enabled in conf/web.conf -> [zipped_download] -> download_all"},
+        )
+
+    test_path = path
+    if isinstance(path, list):
+        test_path = path[0]
+
+    if test_path and (not path_exists(test_path) or not _path_safe(test_path)):
+        return render(request, "error.html", {"error": "File {} not found".format(os.path.basename(test_path))})
+
     try:
-        if category in ("samplezip", "droppedzip", "CAPEZIP", "procdumpzip", "memdumpzip", "networkzip"):
-            if mem_zip:
+        if category in zip_categories:
+            if not isinstance(path, list):
+                path = [path]
+            if USE_SEVENZIP:
+                zip_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", f"{task_id}", f"{file_name}.zip")
+                sevenZipArgs = [SEVENZIP_PATH, f"-p{settings.ZIP_PWD.decode()}", "a", zip_path]
+                sevenZipArgs.extend(path)
+                try:
+                    subprocess.check_call(sevenZipArgs)
+                except subprocess.CalledProcessError:
+                    return render(request, "error.html", {"error": "error compressing file"})
+                zip_fd = open(zip_path, "rb")
+                resp = StreamingHttpResponse(zip_fd, content_type="application/zip")
+                resp["Content-Length"] = os.path.getsize(zip_path)
+                resp["Content-Disposition"] = f"attachment; filename={file_name}.zip"
+                return resp
+            else:
+                mem_zip = BytesIO()
+                with pyzipper.AESZipFile(mem_zip, "w", compression=pyzipper.ZIP_DEFLATED, encryption=pyzipper.WZ_AES) as zf:
+                    zf.setpassword(settings.ZIP_PWD)
+                    if not isinstance(path, list):
+                        path = [path]
+                    for file in path:
+                        with open(file, "rb") as f:
+                            zf.writestr(os.path.basename(file), f.read())
                 mem_zip.seek(0)
                 resp = StreamingHttpResponse(mem_zip, content_type=cd)
                 resp["Content-Length"] = len(mem_zip.getvalue())
+                file_name += ".zip"
+                path = os.path.join(tempfile.gettempdir(), file_name)
+                cd = "application/zip"
         else:
-            if not os.path.exists(path):
-                return render(request, "error.html", {"error": "File {} not found".format(os.path.basename(path))})
             resp = StreamingHttpResponse(FileWrapper(open(path, "rb"), 8091), content_type=cd)
-            resp["Content-Length"] = os.path.getsize(path)
-        resp["Content-Disposition"] = "attachment; filename={0}".format(os.path.basename(path))
+            resp["Content-Length"] = Path(path).stat().st_size
+        resp["Content-Disposition"] = f"attachment; filename={send_filename}"
         return resp
     except Exception as e:
         print(e)
         return render(request, "error.html", {"error": "File {} not found".format(os.path.basename(path))})
 
-    resp["Content-Length"] = size  # os.path.getsize(path)
-    resp["Content-Disposition"] = "attachment; filename=" + file_name
-    if path.endswith(".zip") and os.path.exists(path):
-        os.remove(path)
-    return resp
-
 
 @require_safe
 @conditional_login_required(login_required, settings.WEB_AUTHENTICATION)
-def procdump(request, task_id, process_id, start, end):
+def procdump(request, task_id, process_id, start, end, zipped=False):
     origname = process_id + ".dmp"
     tmpdir = None
     tmp_file_path = None
     response = False
     if enabledconf["mongodb"]:
-        analysis = results_db.analysis.find_one({"info.id": int(task_id)}, {"procmemory": 1, "_id": 0}, sort=[("_id", pymongo.DESCENDING)])
+        analysis = mongo_find_one("analysis", {"info.id": int(task_id)}, {"procmemory": 1, "_id": 0}, sort=[("_id", -1)])
     if es_as_db:
-        analysis = es.search(index=fullidx, doc_type="analysis", q='info.id: "%s"' % task_id)["hits"]["hits"][0]["_source"]
+        analysis = es.search(index=get_analysis_index(), query=get_query_by_info_id(task_id))["hits"]["hits"][0]["_source"]
 
     dumpfile = os.path.join(CUCKOO_ROOT, "storage", "analyses", task_id, "memory", origname)
-    if not os.path.exists(dumpfile):
+
+    if not _path_safe(dumpfile):
+        return render(request, "error.html", {"error": f"File not found: {os.path.basename(dumpfile)}"})
+
+    if not path_exists(dumpfile):
         dumpfile += ".zip"
-        if not os.path.exists(dumpfile):
+        if not path_exists(dumpfile):
             return render(request, "error.html", {"error": "File not found"})
         f = zipfile.ZipFile(dumpfile, "r")
         tmpdir = tempfile.mkdtemp(prefix="capeprocdump_", dir=settings.TEMP_PATH)
         tmp_file_path = f.extract(origname, path=tmpdir)
         f.close()
         dumpfile = tmp_file_path
-    try:
-        file_item = open(dumpfile, "rb")
-    except IOError:
-        file_item = None
 
-    file_name = "{0}_{1:x}.dmp".format(process_id, int(start, 16))
+    content_type = "application/octet-stream"
+
+    if not path_exists(dumpfile):
+        return render(request, "error.html", {"error": "File not found"})
 
-    if file_item and analysis and "procmemory" in analysis:
-        for proc in analysis["procmemory"]:
+    file_name = f"{process_id}_{int(start, 16):x}.dmp"
+    with open(dumpfile, "rb") as file_item:
+        for proc in analysis.get("procmemory", []) or []:
             if proc["pid"] == int(process_id):
                 s = BytesIO()
                 for memmap in proc["address_space"]:
@@ -1343,23 +2030,25 @@ def procdump(request, task_id, process_id, start, end):
                             file_item.seek(chunk["offset"])
                             s.write(file_item.read(int(chunk["size"], 16)))
                 s.seek(0)
-                size = len(s.getvalue())
-                if size:
-                    content_type = "application/octet-stream"
-                    response = StreamingHttpResponse(s, content_type=content_type)
-                    response["Content-Length"] = size
-                    response["Content-Disposition"] = "attachment; filename={0}".format(file_name)
-                    break
-
-    if file_item:
-        file_item.close()
-    try:
+                if zipped and HAVE_PYZIPPER:
+                    mem_zip = BytesIO()
+                    with pyzipper.AESZipFile(mem_zip, "w", compression=pyzipper.ZIP_DEFLATED, encryption=pyzipper.WZ_AES) as zf:
+                        zf.setpassword(settings.ZIP_PWD)
+                        zf.writestr(file_name, s.getvalue())
+                    file_name += ".zip"
+                    content_type = "application/zip"
+                    mem_zip.seek(0)
+                    s = mem_zip
+                response = StreamingHttpResponse(s, content_type=content_type)
+                response["Content-Length"] = len(s.getvalue())
+                response["Content-Disposition"] = "attachment; filename={0}".format(file_name)
+                break
+
+    with suppress(Exception):
         if tmp_file_path:
-            os.unlink(tmp_file_path)
+            Path(tmp_file_path).unlink()
         if tmpdir:
-            shutil.rmtree(tmpdir)
-    except:
-        pass
+            delete_folder(tmpdir)
 
     if response:
         return response
@@ -1370,7 +2059,23 @@ def procdump(request, task_id, process_id, start, end):
 @require_safe
 @conditional_login_required(login_required, settings.WEB_AUTHENTICATION)
 def filereport(request, task_id, category):
+    # check if allowed to download to all + if no if user has permissions
+    if not settings.ALLOW_DL_REPORTS_TO_ALL and (
+        request.user.is_anonymous
+        or (
+            hasattr(request.user, "userprofile")
+            and hasattr(request.user.userprofile, "reports")
+            and not request.user.userprofile.reports
+        )
+    ):
+        return render(
+            request,
+            "error.html",
+            {"error": "You don't have permissions to download reports. Ask admin to enable it for you in user profile."},
+        )
+
     formats = {
+        "protobuf": "report.protobuf",
         "json": "report.json",
         "html": "report.html",
         "htmlsummary": "summary-report.html",
@@ -1379,104 +2084,93 @@ def filereport(request, task_id, category):
         "maec5": "report.maec-5.0.json",
         "metadata": "report.metadata.xml",
         "misp": "misp.json",
+        "litereport": "lite.json",
+        "cents": "cents.rules",
     }
 
     if category in formats:
-        file_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(task_id), "reports", formats[category])
-        file_name = str(task_id) + "_" + formats[category]
-        content_type = "application/octet-stream"
+        path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(task_id), "reports", formats[category])
 
-        if os.path.exists(file_path):
-            response = HttpResponse(open(file_path, "rb").read(), content_type=content_type)
-            response["Content-Disposition"] = "attachment; filename={0}".format(file_name)
+        if not _path_safe(path) or not path_exists(path):
+            return render(request, "error.html", {"error": f"File not found: {formats[category]}"})
 
-            return response
+        response = HttpResponse(Path(path).read_bytes(), content_type="application/octet-stream")
+        response["Content-Disposition"] = f"attachment; filename={task_id}_{formats[category]}"
+        return response
 
-        """
-        elif enabledconf["distributed"]:
-            # check for memdump on slave
-            try:
-                res = requests.get("http://127.0.0.1:9003/task/{task_id}".format(task_id=task_id), verify=False, timeout=30)
-                if res and res.ok and res.json()["status"] == 1:
-                    url = res.json()["url"]
-                    dist_task_id = res.json()["task_id"]
-                    return redirect(url.replace(":8090", ":8000")+"api/tasks/get/report/"+str(dist_task_id)+"/"+category+"/", permanent=True)
-            except Exception as e:
-                print(e)
-        """
     return render(request, "error.html", {"error": "File not found"}, status=404)
 
 
 @require_safe
 @conditional_login_required(login_required, settings.WEB_AUTHENTICATION)
 def full_memory_dump_file(request, analysis_number):
-    file_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(analysis_number), "memory.dmp")
-    if os.path.exists(file_path):
-        filename = os.path.basename(file_path)
-    elif os.path.exists(file_path + ".zip"):
-        file_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(analysis_number), "memory.dmp.zip")
-        if os.path.exists(file_path):
-            filename = os.path.basename(file_path)
-    elif enabledconf["distributed"]:
-        # check for memdump on slave
-        try:
-            res = requests.get("http://127.0.0.1:9003/task/{task_id}".format(task_id=analysis_number), verify=False, timeout=30)
-            if res and res.ok and res.json()["status"] == 1:
-                url = res.json()["url"]
-                dist_task_id = res.json()["task_id"]
-                return redirect(url.replace(":8090", ":8000") + "api/tasks/get/fullmemory/" + str(dist_task_id) + "/", permanent=True)
-        except Exception as e:
-            print(e)
+    filename = False
+    for name in ("memory.dmp", "memory.dmp.zip"):
+        path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(analysis_number), name)
+        if path_exists(path) and _path_safe(path):
+            filename = name
+            break
+
     if filename:
         content_type = "application/octet-stream"
-        response = StreamingHttpResponse(FileWrapper(open(file_path), 8192), content_type=content_type)
-        response["Content-Length"] = os.path.getsize(file_path)
-        response["Content-Disposition"] = "attachment; filename=%s" % filename
+        response = StreamingHttpResponse(FileWrapper(open(path, "rb"), 8192), content_type=content_type)
+        response["Content-Length"] = os.path.getsize(path)
+        response["Content-Disposition"] = f"attachment; filename={filename}"
         return response
-    else:
-        return render(request, "error.html", {"error": "File not found"})
+
+    return render(request, "error.html", {"error": "File not found"})
 
 
 @require_safe
 @conditional_login_required(login_required, settings.WEB_AUTHENTICATION)
 def full_memory_dump_strings(request, analysis_number):
-    file_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(analysis_number), "memory.dmp.strings")
     filename = None
-    if os.path.exists(file_path):
-        filename = os.path.basename(file_path)
-    else:
-        file_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(analysis_number), "memory.dmp.strings.zip")
-        if os.path.exists(file_path):
-            filename = os.path.basename(file_path)
+    for name in ("memory.dmp.strings", "memory.dmp.strings.zip"):
+        path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(analysis_number), name)
+        if path_exists(path):
+            filename = name
+            if not _path_safe(ANALYSIS_BASE_PATH):
+                return render(request, "error.html", {"error": f"File not found: {name}"})
+            break
     if filename:
         content_type = "application/octet-stream"
-        response = StreamingHttpResponse(FileWrapper(open(file_path), 8192), content_type=content_type)
-        response["Content-Length"] = os.path.getsize(file_path)
+        response = StreamingHttpResponse(FileWrapper(open(path), 8192), content_type=content_type)
+        response["Content-Length"] = os.path.getsize(path)
         response["Content-Disposition"] = "attachment; filename=%s" % filename
         return response
-    else:
-        return render(request, "error.html", {"error": "File not found"})
+
+    return render(request, "error.html", {"error": "File not found"})
 
 
 @csrf_exempt
 @conditional_login_required(login_required, settings.WEB_AUTHENTICATION)
-def search(request, searched=False):
-    if "search" in request.POST or searched:
+@ratelimit(key="ip", rate=my_rate_seconds, block=rateblock)
+@ratelimit(key="ip", rate=my_rate_minutes, block=rateblock)
+def search(request, searched=""):
+    if "search" in request.POST or "search" in request.GET or searched:
         term = ""
-        if not searched and request.POST.get("search"):
-            searched = request.POST["search"]
+        if not searched:
+            if request.POST.get("search"):
+                searched = str(request.POST["search"])
+            elif request.GET.get("search"):
+                searched = str(request.GET["search"])
 
         if ":" in searched:
             term, value = searched.strip().split(":", 1)
         else:
             value = searched.strip()
 
-        # Check on search size. But malscore can be a single digit number.
-        if term != "malscore" and len(value) < 3:
+        # Check on search size. But malscore, ID and package can be strings of less than 3 characters.
+        if term not in {"malscore", "id", "ids", "package"} and len(value) < 3:
             return render(
                 request,
                 "analysis/search.html",
-                {"analyses": None, "term": searched, "error": "Search term too short, minimum 3 characters required"},
+                {
+                    "title": "Search",
+                    "analyses": None,
+                    "term": searched,
+                    "error": "Search term too short, minimum 3 characters required",
+                },
             )
 
         # name:foo or name: foo
@@ -1485,13 +2179,17 @@ def search(request, searched=False):
 
         if not term:
             value = value.lower()
-            if re.match(r"^([a-fA-F\d]{32})$", value):
+            split_by = "," if "," in value else " "
+            tmp_value = value.split(split_by)[0]
+            if len(tmp_value) == 64 and re.match(r"^([a-fA-F\d]{64})$", tmp_value):
+                term = "sha256"
+            elif len(tmp_value) == 32 and re.match(r"^([a-fA-F\d]{32})$", tmp_value):
                 term = "md5"
-            elif re.match(r"^([a-fA-F\d]{40})$", value):
+            elif len(tmp_value) == 40 and re.match(r"^([a-fA-F\d]{40})$", tmp_value):
                 term = "sha1"
-            elif re.match(r"^([a-fA-F\d]{64})$", value):
-                term = "sha256"
-            elif re.match(r"^([a-fA-F\d]{128})$", value):
+            elif len(tmp_value) == 96 and re.match(r"^([a-fA-F\d]{96})$", tmp_value):
+                term = "sha3"
+            elif len(tmp_value) == 128 and re.match(r"^([a-fA-F\d]{128})$", tmp_value):
                 term = "sha512"
 
         if term == "ids":
@@ -1501,28 +2199,29 @@ def search(request, searched=False):
                 return render(
                     request,
                     "analysis/search.html",
-                    {"analyses": None, "term": searched, "error": "Not all values are integers"},
+                    {"title": "Search", "analyses": None, "term": searched, "error": "Not all values are integers"},
                 )
 
+        # Escape forward slash characters
+        if isinstance(value, str):
+            value = value.replace("\\", "\\\\")
+
+        term_only, value_only = term, value
+
         try:
-            if term == "malscore":
-                records = perform_malscore_search(value)
-            elif term == "ttp":
-                records = perform_ttps_search(value)
-            else:
-                records = perform_search(term, value)
+            records = perform_search(term, value, user_id=request.user.id, privs=request.user.is_staff)
         except ValueError:
             if term:
                 return render(
                     request,
                     "analysis/search.html",
-                    {"analyses": None, "term": searched, "error": "Invalid search term: %s" % term},
+                    {"title": "Search", "analyses": None, "term": searched, "error": "Invalid search term: %s" % term},
                 )
             else:
                 return render(
                     request,
                     "analysis/search.html",
-                    {"analyses": None, "term": None, "error": "Unable to recognize the search syntax"},
+                    {"title": "Search", "analyses": None, "term": None, "error": "Unable to recognize the search syntax"},
                 )
 
         analyses = []
@@ -1530,53 +2229,45 @@ def search(request, searched=False):
             new = None
             if enabledconf["mongodb"] and enabledconf["elasticsearchdb"] and essearch and not term:
                 new = get_analysis_info(db, id=int(result["_source"]["task_id"]))
-            if enabledconf["mongodb"] and term:
+            if enabledconf["mongodb"] and term and "info" in result:
                 new = get_analysis_info(db, id=int(result["info"]["id"]))
             if es_as_db:
-                new = get_analysis_info(db, id=int(result["_source"]["info"]["id"]))
+                new = get_analysis_info(db, id=int(result["info"]["id"]))
             if not new:
                 continue
             analyses.append(new)
+
         return render(
             request,
             "analysis/search.html",
-            {"analyses": analyses, "config": enabledconf, "term": searched, "error": None},
+            {
+                "title": "Search Results",
+                "analyses": analyses,
+                "config": enabledconf,
+                "term": searched,
+                "error": None,
+                "term_only": term_only,
+                "value_only": value_only,
+            },
         )
-    else:
-        return render(request, "analysis/search.html", {"analyses": None, "term": None, "error": None})
+    return render(request, "analysis/search.html", {"title": "Search", "analyses": None, "term": None, "error": None})
 
 
 @require_safe
 @conditional_login_required(login_required, settings.WEB_AUTHENTICATION)
 def remove(request, task_id):
     """Remove an analysis."""
-    if not enabledconf["delete"] or not request.user.is_staff:
-        return render(request, "success_simple.html", {"message": "buy a lot of whyskey to admin ;)"})
+    if not enabledconf["delete"] and not request.user.is_staff:
+        return render(request, "success_simple.html", {"message": "buy a lot of whiskey to admin ;)"})
 
     if enabledconf["mongodb"]:
-        analyses = results_db.analysis.find({"info.id": int(task_id)}, {"_id": 1, "behavior.processes": 1})
-        # Checks if more analysis found with the same ID, like if process.py was run manually.
-        if analyses.count() > 1:
-            message = "Multiple tasks with this ID deleted."
-        elif analyses.count() == 1:
-            message = "Task deleted."
-
-        if analyses.count() > 0:
-            # Delete dups too.
-            for analysis in analyses:
-                # Delete calls.
-                for process in analysis.get("behavior", {}).get("processes", []):
-                    for call in process["calls"]:
-                        results_db.calls.remove({"_id": ObjectId(call)})
-                # Delete analysis data.
-                results_db.analysis.remove({"_id": ObjectId(analysis["_id"])})
-            analyses_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", task_id)
-            if os.path.exists(analyses_path):
-                shutil.rmtree(analyses_path)
-        else:
-            return render(request, "error.html", {"error": "The specified analysis does not exist"})
+        mongo_delete_data(int(task_id))
+        analyses_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", task_id)
+        if path_exists(analyses_path):
+            delete_folder(analyses_path)
+        message = "Task(s) deleted."
     if es_as_db:
-        analyses = es.search(index=fullidx, doc_type="analysis", q='info.id: "%s"' % task_id)["hits"]["hits"]
+        analyses = es.search(index=get_analysis_index(), query=get_query_by_info_id(task_id))["hits"]["hits"]
         if len(analyses) > 1:
             message = "Multiple tasks with this ID deleted."
         elif len(analyses) == 1:
@@ -1602,7 +2293,7 @@ def remove(request, task_id):
                 )
     elif essearch:
         # remove es search data
-        analyses = es.search(index=fullidx, doc_type="analysis", q='info.id: "%s"' % task_id)["hits"]["hits"]
+        analyses = es.search(index=get_analysis_index(), query=get_query_by_info_id(task_id))["hits"]["hits"]
         if len(analyses) > 1:
             message = "Multiple tasks with this ID deleted."
         elif len(analyses) == 1:
@@ -1630,38 +2321,40 @@ def pcapstream(request, task_id, conntuple):
     sport, dport = int(sport), int(dport)
 
     if enabledconf["mongodb"]:
-        conndata = results_db.analysis.find_one(
+        conndata = mongo_find_one(
+            "analysis",
             {"info.id": int(task_id)},
-            {"network.tcp": 1, "network.udp": 1, "network.sorted_pcap_sha256": 1, "_id": 0},
-            sort=[("_id", pymongo.DESCENDING)],
+            {"network.sorted.tcp": 1, "network.sorted.udp": 1, "network.sorted_pcap_sha256": 1, "_id": 0},
+            sort=[("_id", -1)],
         )
 
     if es_as_db:
-        conndata = es.search(index=fullidx, doc_type="analysis", q='info.id: "%s"' % task_id)["hits"]["hits"][0]["_source"]
+        conndata = es.search(index=get_analysis_index(), query=get_query_by_info_id(task_id))["hits"]["hits"][0]["_source"]
 
     if not conndata:
         return render(request, "standalone_error.html", {"error": "The specified analysis does not exist"})
 
     try:
         if proto == "udp":
-            connlist = conndata["network"]["udp"]
+            connlist = conndata["network"]["sorted"]["udp"]
         else:
-            connlist = conndata["network"]["tcp"]
+            connlist = conndata["network"]["sorted"]["tcp"]
 
         conns = [i for i in connlist if (i["sport"], i["dport"], i["src"], i["dst"]) == (sport, dport, src, dst)]
         stream = conns[0]
         offset = stream["offset"]
-    except:
+    except Exception:
         return render(request, "standalone_error.html", {"error": "Could not find the requested stream"})
 
     try:
-        # This will check if we have a sorted PCAP
-        test_pcap = conndata["network"]["sorted_pcap_sha256"]
         # if we do, build out the path to it
-        pcap_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", task_id, "dump_sorted.pcap")
-        fobj = open(pcap_path, "rb")
-    except Exception as e:
-        # print str(e)
+        path = os.path.join(CUCKOO_ROOT, "storage", "analyses", task_id, "dump_sorted.pcap")
+
+        if not path_exists(path) or not _path_safe(path):
+            return render(request, "standalone_error.html", {"error": "The required sorted PCAP does not exist"})
+
+        fobj = open(path, "rb")
+    except Exception:
         return render(request, "standalone_error.html", {"error": "The required sorted PCAP does not exist"})
 
     packets = list(network.packets_for_stream(fobj, offset))
@@ -1678,19 +2371,17 @@ def comments(request, task_id):
             return render(request, "error.html", {"error": "No comment provided."})
 
         if enabledconf["mongodb"]:
-            report = results_db.analysis.find_one(
-                {"info.id": int(task_id)}, {"info.comments": 1, "_id": 0}, sort=[("_id", pymongo.DESCENDING)]
-            )
+            report = mongo_find_one("analysis", {"info.id": int(task_id)}, {"info.comments": 1, "_id": 0}, sort=[("_id", -1)])
         if es_as_db:
-            query = es.search(index=fullidx, doc_type="analysis", q='info.id: "%s"' % task_id)["hits"]["hits"][0]
+            query = es.search(index=get_analysis_index(), query=get_query_by_info_id(task_id))["hits"]["hits"][0]
             report = query["_source"]
             esid = query["_id"]
             esidx = query["_index"]
         if "comments" in report["info"]:
             curcomments = report["info"]["comments"]
         else:
-            curcomments = list()
-        buf = dict()
+            curcomments = []
+        buf = {}
         buf["Timestamp"] = datetime.datetime.now().strftime("%Y-%m-%d %H:%M:%S")
         escape_map = {
             "&": "&amp;",
@@ -1705,59 +2396,83 @@ def comments(request, task_id):
         buf["Status"] = "posted"
         curcomments.insert(0, buf)
         if enabledconf["mongodb"]:
-            results_db.analysis.update({"info.id": int(task_id)}, {"$set": {"info.comments": curcomments}}, upsert=False, multi=True)
+            mongo_update_one("analysis", {"info.id": int(task_id)}, {"$set": {"info.comments": curcomments}})
         if es_as_db:
-            es.update(index=esidx, doc_type="analysis", id=esid, body={"doc": {"info": {"comments": curcomments}}})
+            es.update(index=esidx, id=esid, body={"doc": {"info": {"comments": curcomments}}})
         return redirect("report", task_id=task_id)
 
-    else:
-        return render(request, "error.html", {"error": "Invalid Method"})
+    return render(request, "error.html", {"error": "Invalid Method"})
 
 
 @conditional_login_required(login_required, settings.WEB_AUTHENTICATION)
 def vtupload(request, category, task_id, filename, dlfile):
-    if enabledconf["vtupload"] and settings.VTDL_PRIV_KEY:
+    if enabledconf["vtupload"] and integrations_cfg.virustotal.apikey:
         try:
-            if category == "sample":
+            folder_name = False
+            path = False
+            if category in ("sample", "static"):
                 path = os.path.join(CUCKOO_ROOT, "storage", "binaries", dlfile)
             elif category == "dropped":
-                path = os.path.join(CUCKOO_ROOT, "storage", "analyses", task_id, "files", filename)
-            params = {"x-apikey": settings.VTDL_PRIV_KEY}
+                folder_name = "files"
+            elif category in ("CAPE", "procdump"):
+                folder_name = category
+
+            if folder_name:
+                path = os.path.join(CUCKOO_ROOT, "storage", "analyses", task_id, folder_name, filename)
+
+            if not path or not _path_safe(path):
+                return render(request, "error.html", {"error": f"File not found: {os.path.basename(path)}"})
+
+            headers = {"x-apikey": integrations_cfg.virustotal.apikey}
             files = {"file": (filename, open(path, "rb"))}
-            response = requests.post("https://www.virustotal.com/api/v3/files", files=files, params=params)
+            response = requests.post("https://www.virustotal.com/api/v3/files", files=files, headers=headers)
             if response.ok:
-                data = response.json().get("data", {})
-                id = data.get("id")
+                id = response.json().get("data", {}).get("id")
                 if id:
+                    hashbytes, _ = base64.b64decode(id).split(b":")
+                    md5hash = hashbytes.decode()
                     return render(
-                        request, "success_vtup.html", {"permalink": "https://www.virustotal.com/api/v3/analyses/{id}".format(id=id)}
+                        request, "success_vtup.html", {"permalink": "https://www.virustotal.com/gui/file/{id}".format(id=md5hash)}
                     )
             else:
-                return render(request, "error.html", {"error": "Response code: {} - {}".format(response.status_code, response.reason)})
+                return render(
+                    request, "error.html", {"error": "Response code: {} - {}".format(response.status_code, response.reason)}
+                )
         except Exception as err:
             return render(request, "error.html", {"error": err})
-    else:
-        return
 
 
 @conditional_login_required(login_required, settings.WEB_AUTHENTICATION)
 def statistics_data(request, days=7):
     if days.isdigit():
-        details = statistics(int(days))
-        return render(request, "statistics.html", {"statistics": details, "days": days})
-    else:
-        return render(request, "error.html", {"error": "Provide days as number"})
+        try:
+            details = statistics(int(days))
+        except Exception as e:
+            # psycopg2.OperationalError
+            print(e)
+            return render(
+                request,
+                "error.html",
+                {"title": "Statistics", "error": "Please restart your database. Probably it had an update or it just down"},
+            )
+        return render(request, "statistics.html", {"title": "Statistics", "statistics": details, "days": days})
+    return render(request, "error.html", {"title": "Statistics", "error": "Provide days as number"})
 
 
 on_demand_config_mapper = {
     "bingraph": reporting_cfg,
-    "flare_capa": processing_cfg,
+    "flare_capa": integrations_cfg,
     "vba2graph": processing_cfg,
+    "xlsdeobf": processing_cfg,
+    "strings": processing_cfg,
+    "floss": integrations_cfg,
 }
 
 
 @conditional_login_required(login_required, settings.WEB_AUTHENTICATION)
-def on_demand(request, service: str, task_id: int, category: str, sha256):
+@ratelimit(key="ip", rate=my_rate_seconds, block=rateblock)
+@ratelimit(key="ip", rate=my_rate_minutes, block=rateblock)
+def on_demand(request, service: str, task_id: str, category: str, sha256):
     """
     This aux function allows to generate some details on demand, this is specially useful for long running libraries and we don't need them in many cases due to scripted submissions
     @param service: Service for which we want to generate details
@@ -1773,36 +2488,72 @@ def on_demand(request, service: str, task_id: int, category: str, sha256):
     # 4. reload page
     """
 
-    if service not in ("bingraph", "flare_capa", "vba2graph") and not on_demand_config_mapper.get(service, {}).get(service, {}).get(
-        "on_demand"
-    ):
+    if service not in (
+        "bingraph",
+        "flare_capa",
+        "vba2graph",
+        "virustotal",
+        "xlsdeobf",
+        "strings",
+        "floss",
+    ) and not getattr(
+        on_demand_config_mapper.get(service, {}), service
+    ).get("on_demand"):
         return render(request, "error.html", {"error": "Not supported/enabled service on demand"})
 
-    if category == "static":
-        path = os.path.join(ANALYSIS_BASE_PATH, str(task_id), "binary")
+    # Self Extracted support folder
+    path = os.path.join(CUCKOO_ROOT, "storage", "analyses", task_id, "selfextracted", sha256)
+
+    if not path_exists(path):
+        extractedfile = False
+        if category == "static":
+            path = os.path.join(ANALYSIS_BASE_PATH, "analyses", task_id, "binary")
+            category = "target.file"
+        elif category == "dropped":
+            path = os.path.join(ANALYSIS_BASE_PATH, "analyses", task_id, "files", sha256)
+        else:
+            path = os.path.join(ANALYSIS_BASE_PATH, "analyses", task_id, category, sha256)
     else:
-        path = os.path.join(ANALYSIS_BASE_PATH, str(task_id), category, sha256)
+        category = "target.file"
+        extractedfile = True
 
-    if path and (not os.path.normpath(path).startswith(ANALYSIS_BASE_PATH) or not os.path.exists(path)):
+    if path and (not _path_safe(path) or not path_exists(path)):
         return render(request, "error.html", {"error": "File not found: {}".format(path)})
 
     details = False
     if service == "flare_capa" and HAVE_FLARE_CAPA:
+        # ToDo check if PE
         details = flare_capa_details(path, category.lower(), on_demand=True)
+        if not details:
+            details = {"msg": "No results"}
 
     elif service == "vba2graph" and HAVE_VBA2GRAPH:
-        vba2graph_func(path, str(task_id), on_demand=True)
-
+        vba2graph_func(path, task_id, sha256, on_demand=True)
+
+    elif service == "strings" and HAVE_STRINGS:
+        details = extract_strings(path, on_demand=True)
+        if not details:
+            details = {"strings": "No strings extracted"}
+
+    elif service == "virustotal" and HAVE_VIRUSTOTAL:
+        details = vt_lookup("file", sha256, on_demand=True)
+        if not details:
+            details = {"msg": "No results"}
+
+    elif service == "xlsdeobf" and HAVE_XLM_DEOBF:
+        details = xlmdeobfuscate(path, task_id, on_demand=True)
+        if not details:
+            details = {"msg": "No results"}
     elif (
         service == "bingraph"
         and HAVE_BINGRAPH
         and reporting_cfg.bingraph.enabled
         and reporting_cfg.bingraph.on_demand
-        and not os.path.exists(os.path.join(ANALYSIS_BASE_PATH, str(task_id), "bingraph", sha256 + "-ent.svg"))
+        and not path_exists(os.path.join(ANALYSIS_BASE_PATH, "analyses", task_id, "bingraph", sha256 + "-ent.svg"))
     ):
-        bingraph_path = os.path.join(ANALYSIS_BASE_PATH, str(task_id), "bingraph")
-        if not os.path.exists(bingraph_path):
-            os.makedirs(bingraph_path)
+        bingraph_path = os.path.join(ANALYSIS_BASE_PATH, "analyses", task_id, "bingraph")
+        if not path_exists(bingraph_path):
+            path_mkdir(bingraph_path)
         try:
             bingraph_args_dict.update({"prefix": sha256, "files": [path], "save_dir": bingraph_path})
             try:
@@ -1811,26 +2562,73 @@ def on_demand(request, service: str, task_id: int, category: str, sha256):
                 print("Can't generate bingraph for {}: {}".format(sha256, e))
         except Exception as e:
             print("Bingraph on demand error:", e)
-
+    elif service == "floss" and HAVE_FLOSS:
+        package = get_task_package(task_id)
+        details = Floss(path, package, on_demand=True).run()
+        if not details:
+            details = {"msg": "No results"}
     if details:
-        buf = results_db.analysis.find_one({"info.id": int(task_id)}, {"_id": 1, category: 1})
+        buf = mongo_find_one("analysis", {"info.id": int(task_id)}, {"_id": 1, category: 1})
+
+        servicedata = {}
         if category == "CAPE":
             for block in buf[category].get("payloads", []) or []:
                 if block.get("sha256") == sha256:
                     block[service] = details
                     break
-
-        elif category == "static":
-            if buf.get(category, {}):
-                buf["static"][service] = details
-
-        elif category == "procdump":
+            servicedata = buf[category]
+        elif category in ("procdump", "procmemory", "dropped"):
             for block in buf[category] or []:
                 if block.get("sha256") == sha256:
                     block[service] = details
                     break
-
-        results_db.analysis.update({"_id": ObjectId(buf["_id"])}, {"$set": {category: buf[category]}})
+            servicedata = buf[category]
+        elif "target" in category:
+            servicedata = buf.get("target", {}).get("file", {})
+            if servicedata:
+                if service == "xlsdeobf":
+                    servicedata.setdefault("office", {}).setdefault("XLMMacroDeobfuscator", details)
+                elif extractedfile:
+                    for block in servicedata.get("extracted_files", []):
+                        if block.get("sha256") == sha256:
+                            block[service] = details
+                            break
+                else:
+                    servicedata.setdefault(service, details)
+
+        if servicedata:
+            mongo_update_one("analysis", {"_id": ObjectId(buf["_id"])}, {"$set": {category: servicedata}})
         del details
 
     return redirect("report", task_id=task_id)
+
+
+@conditional_login_required(login_required, settings.WEB_AUTHENTICATION)
+def ban_all_user_tasks(request, user_id: int):
+    if request.user.is_staff or request.user.is_superuser:
+        db.ban_user_tasks(user_id)
+        return HttpResponseRedirect(request.META.get("HTTP_REFERER", "/"))
+    return render(request, "error.html", {"error": "Nice try! You don't have permission to ban user tasks"})
+
+
+@conditional_login_required(login_required, settings.WEB_AUTHENTICATION)
+def ban_user(request, user_id: int):
+    if request.user.is_staff or request.user.is_superuser:
+        success = disable_user(user_id)
+        if success:
+            return HttpResponseRedirect(request.META.get("HTTP_REFERER", "/"))
+        else:
+            return render(request, "error.html", {"error": f"Can't ban user id {user_id}"})
+    return render(request, "error.html", {"error": "Nice try! You don't have permission to ban users"})
+
+
+@conditional_login_required(login_required, settings.WEB_AUTHENTICATION)
+def reprocess_task(request, task_id: int):
+    if not settings.REPROCESS_TASKS:
+        return HttpResponseRedirect(request.META.get("HTTP_REFERER", "/"))
+
+    error, msg, _ = db.tasks_reprocess(task_id)
+    if error:
+        return render(request, "error.html", {"error": msg})
+    else:
+        return HttpResponseRedirect(request.META.get("HTTP_REFERER", "/"))
diff --git a/web/apiv2/throttling.py b/web/apiv2/throttling.py
index d1ef9f1bcf7..3359af58373 100644
--- a/web/apiv2/throttling.py
+++ b/web/apiv2/throttling.py
@@ -1,6 +1,6 @@
 from rest_framework.throttling import UserRateThrottle
 
-# https://www.django-rest-framework.org/api-guide/throttling/
+# https://www.django-rest-framework.org/api-guide/throttling/
 # https://dev.to/mattschwartz/how-to-add-subscription-based-throttling-to-a-django-api-28j0
 # For function-based views you can use the decorator: @throttle_classes([UserRateThrottle])
 
@@ -8,11 +8,6 @@
 # https://docs.djangoproject.com/en/3.2/ref/settings/#caches
 # https://docs.djangoproject.com/en/3.2/topics/cache/#setting-up-the-cache
 
-duration_map = {
-    "m": 1,
-    "h": 60,
-    "d": 24 * 60 * 60,
-}
 
 class SubscriptionRateThrottle(UserRateThrottle):
     # Define a custom scope name to be referenced by DRF in settings.py
@@ -35,13 +30,11 @@ def allow_request(self, request, view):
             return True
 
         if request.user.is_authenticated:
-            user_limit = request.user.userprofile.suscription
-            if user_limit:
-                requests, duration = user_limit.split("/")
-                if duration in duration_map:
-                    # Override the default from settings.py
-                    self.duration = duration_map[duration]
-                    self.num_requests = int(requests)
+            if request.user.userprofile.subscription:
+                requests, duration = self.parse_rate(request.user.userprofile.subscription)
+                # Override the default from settings.py
+                self.duration = duration
+                self.num_requests = int(requests)
             else:
                 # No limit == unlimited plan
                 return True
diff --git a/web/apiv2/urls.py b/web/apiv2/urls.py
index e0627e1a90b..a4ef7337222 100644
--- a/web/apiv2/urls.py
+++ b/web/apiv2/urls.py
@@ -2,69 +2,74 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file "docs/LICENSE" for copying permission.
 
-from __future__ import absolute_import
-from django.conf.urls import url, include
-from django.urls import path
-
+# from django.conf.urls import include
+from django.urls import path, re_path
 from rest_framework.authtoken.views import obtain_auth_token
 
 from apiv2 import views
 
 urlpatterns = [
-    url(r"^$", views.index, name="apiv2"),
+    re_path(r"^$", views.index, name="apiv2"),
     # disabled due to token auth
-    #url(r'^api-auth/', include('rest_framework.urls', namespace='rest_framework')),
-    path('api-token-auth/', obtain_auth_token, name='api_token_auth'),
-    url(r"^tasks/create/file/$", views.tasks_create_file),
-    url(r"^tasks/stats/$", views.task_x_hours),
-    url(r"^tasks/create/url/$", views.tasks_create_url),
-    url(r"^tasks/create/dlnexec/$", views.tasks_create_dlnexec),
-    url(r"^tasks/create/vtdl/$", views.tasks_vtdl),
-    url(r"^tasks/create/static/$", views.tasks_create_static),
-    url(r"^tasks/search/md5/(?P<md5>([a-fA-F\d]{32}))/$", views.tasks_search),
-    url(r"^tasks/search/sha1/(?P<sha1>([a-fA-F\d]{40}))/$", views.tasks_search),
-    url(r"^tasks/search/sha256/(?P<sha256>([a-fA-F\d]{64}))/$", views.tasks_search),
-    url(r"^tasks/extendedsearch/$", views.ext_tasks_search),
-    url(r"^tasks/list/$", views.tasks_list),
-    url(r"^tasks/list/(?P<limit>\d+)/$", views.tasks_list),
-    url(r"^tasks/list/(?P<limit>\d+)/(?P<offset>\d+)/$", views.tasks_list),
-    url(r"^tasks/list/(?P<limit>\d+)/(?P<offset>\d+)/(?P<window>\d+)/$", views.tasks_list),
-    url(r"^tasks/view/(?P<task_id>\d+)/$", views.tasks_view),
-    url(r"^tasks/reschedule/(?P<task_id>\d+)/$", views.tasks_reschedule),
-    url(r"^tasks/delete/(?P<task_id>\d+)/$", views.tasks_delete),
-    url(r"^tasks/delete_many/$", views.tasks_delete_many),
-    url(r"^tasks/status/(?P<task_id>\d+)/$", views.tasks_status),
-    url(r"^tasks/get/report/(?P<task_id>\d+)/$", views.tasks_report),
-    url(r"^tasks/get/report/(?P<task_id>\d+)/(?P<report_format>\w+)/$", views.tasks_report),
-    url(r"^tasks/get/iocs/(?P<task_id>\d+)/$", views.tasks_iocs),
-    url(r"^tasks/get/iocs/(?P<task_id>\d+)/(?P<detail>detailed)/$", views.tasks_iocs),
-    url(r"^tasks/get/config/(?P<task_id>\d+)/$", views.tasks_config),
-    url(r"^tasks/get/config/(?P<task_id>\d+)/(?P<cape_name>\w+)/$", views.tasks_config),
-    url(r"^tasks/get/screenshot/(?P<task_id>\d+)/$", views.tasks_screenshot),
-    url(r"^tasks/get/screenshot/(?P<task_id>\d+)/(?P<screenshot>\d{1,4})/$", views.tasks_screenshot),
-    url(r"^tasks/get/procmemory/(?P<task_id>\d+)/$", views.tasks_procmemory),
-    url(r"^tasks/get/procmemory/(?P<task_id>\d+)/(?P<pid>\d{1,5})/$", views.tasks_procmemory),
-    url(r"^tasks/get/fullmemory/(?P<task_id>\d+)/$", views.tasks_fullmemory),
-    url(r"^tasks/get/pcap/(?P<task_id>\d+)/$", views.tasks_pcap),
-    url(r"^tasks/get/dropped/(?P<task_id>\d+)/$", views.tasks_dropped),
-    url(r"^tasks/get/surifile/(?P<task_id>\d+)/$", views.tasks_surifile),
-    url(r"^tasks/get/payloadfiles/(?P<task_id>\d+)/$", views.tasks_payloadfiles),
-    url(r"^tasks/get/procdumpfiles/(?P<task_id>\d+)/$", views.tasks_procdumpfiles),
-    url(r"^files/view/md5/(?P<md5>([a-fA-F\d]{32}))/$", views.files_view),
-    url(r"^files/view/sha1/(?P<sha1>([a-fA-F\d]{40}))/$", views.files_view),
-    url(r"^files/view/sha256/(?P<sha256>([a-fA-F\d]{64}))/$", views.files_view),
-    url(r"^files/view/id/(?P<sample_id>\d+)/$", views.files_view),
-    url(r"^files/get/(?P<stype>md5)/(?P<value>([a-fA-F\d]{32}))/$", views.file),
-    url(r"^files/get/(?P<stype>sha1)/(?P<value>([a-fA-F\d]{40}))/$", views.file),
-    url(r"^files/get/(?P<stype>sha256)/(?P<value>([a-fA-F\d]{64}))/$", views.file),
-    url(r"^files/get/(?P<stype>task)/(?P<value>\d+)/$", views.file),
-    url(r"^machines/list/$", views.machines_list),
-    url(r"^machines/view/(?P<name>[\w$-/:-?{-~!^_`\[\]]+)/$", views.machines_view),
-    url(r"^cuckoo/status/$", views.cuckoo_status),
-    url(r"^tasks/get/rollingsuri/(?P<window>\d+)/$", views.tasks_rollingsuri),
-    url(r"^tasks/get/rollingshrike/(?P<window>\d+)/$", views.tasks_rollingshrike),
-    url(r"^tasks/get/rollingshrike/(?P<window>\d+)/(?P<msgfilter>[\w$-/:-?{-~!^_`\[\]\s\x5c]+)/$", views.tasks_rollingshrike),
-    url(r"^tasks/get/latests/(?P<hours>\d+)/$", views.tasks_latest),
-    # url(r"^tasks/add/(?P<category>[A-Za-z0-9]+)/(?P<task_id>\d+)/$", views.post_processing),
-    url(r"^tasks/statistics/(?P<days>\d+)/$", views.statistics_data),
+    # re_path(r'^api-auth/', include('rest_framework.urls', namespace='rest_framework')),
+    path("api-token-auth/", obtain_auth_token, name="api_token_auth"),
+    re_path(r"^tasks/create/file/$", views.tasks_create_file),
+    re_path(r"^tasks/stats/$", views.task_x_hours),
+    re_path(r"^tasks/create/url/$", views.tasks_create_url),
+    re_path(r"^tasks/create/dlnexec/$", views.tasks_create_dlnexec),
+    re_path(r"^tasks/create/download_services/$", views.tasks_download_services),
+    re_path(r"^tasks/create/static/$", views.tasks_create_static),
+    re_path(r"^tasks/search/md5/(?P<md5>([a-fA-F\d]{32}))/$", views.tasks_search),
+    re_path(r"^tasks/search/sha1/(?P<sha1>([a-fA-F\d]{40}))/$", views.tasks_search),
+    re_path(r"^tasks/search/sha256/(?P<sha256>([a-fA-F\d]{64}))/$", views.tasks_search),
+    re_path(r"^tasks/extendedsearch/$", views.ext_tasks_search),
+    re_path(r"^tasks/list/$", views.tasks_list),
+    re_path(r"^tasks/list/(?P<limit>\d+)/$", views.tasks_list),
+    re_path(r"^tasks/list/(?P<limit>\d+)/(?P<offset>\d+)/$", views.tasks_list),
+    re_path(r"^tasks/list/(?P<limit>\d+)/(?P<offset>\d+)/(?P<window>\d+)/$", views.tasks_list),
+    re_path(r"^tasks/view/(?P<task_id>\d+)/$", views.tasks_view),
+    re_path(r"^tasks/reschedule/(?P<task_id>\d+)/$", views.tasks_reschedule),
+    re_path(r"^tasks/reprocess/(?P<task_id>\d+)/$", views.tasks_reprocess),
+    re_path(r"^tasks/delete/(?P<task_id>(\d+|[0-9,-]+))/$", views.tasks_delete),
+    re_path(r"^tasks/delete/(?P<task_id>(\d+|[0-9,-]+))/(?P<status>\w+)/$", views.tasks_delete),
+    re_path(r"^tasks/delete_many/$", views.tasks_delete_many),
+    re_path(r"^tasks/status/(?P<task_id>\d+)/$", views.tasks_status),
+    re_path(r"^tasks/get/report/(?P<task_id>\d+)/$", views.tasks_report),
+    re_path(r"^tasks/get/report/(?P<task_id>\d+)/(?P<report_format>\w+)/$", views.tasks_report),
+    re_path(r"^tasks/get/report/(?P<task_id>\d+)/(?P<report_format>\w+)/(?P<make_zip>\w{3})/$", views.tasks_report),
+    re_path(r"^tasks/get/iocs/(?P<task_id>\d+)/$", views.tasks_iocs),
+    re_path(r"^tasks/get/iocs/(?P<task_id>\d+)/(?P<detail>detailed)/$", views.tasks_iocs),
+    re_path(r"^tasks/get/config/(?P<task_id>\d+)/$", views.tasks_config),
+    re_path(r"^tasks/get/config/(?P<task_id>\d+)/(?P<cape_name>\w+)/$", views.tasks_config),
+    re_path(r"^tasks/get/screenshot/(?P<task_id>\d+)/$", views.tasks_screenshot),
+    re_path(r"^tasks/get/screenshot/(?P<task_id>\d+)/(?P<screenshot>\d{1,4})/$", views.tasks_screenshot),
+    re_path(r"^tasks/get/stream/(?P<task_id>\d+)/$", views.tasks_file_stream),
+    re_path(r"^tasks/get/procmemory/(?P<task_id>\d+)/$", views.tasks_procmemory),
+    re_path(r"^tasks/get/procmemory/(?P<task_id>\d+)/(?P<pid>\d{1,5})/$", views.tasks_procmemory),
+    re_path(r"^tasks/get/fullmemory/(?P<task_id>\d+)/$", views.tasks_fullmemory),
+    re_path(r"^tasks/get/pcap/(?P<task_id>\d+)/$", views.tasks_pcap),
+    re_path(r"^tasks/get/tlspcap/(?P<task_id>\d+)/$", views.tasks_tlspcap),
+    re_path(r"^tasks/get/evtx/(?P<task_id>\d+)/$", views.tasks_evtx),
+    re_path(r"^tasks/get/dropped/(?P<task_id>\d+)/$", views.tasks_dropped),
+    re_path(r"^tasks/get/surifile/(?P<task_id>\d+)/$", views.tasks_surifile),
+    re_path(r"^tasks/get/mitmdump/(?P<task_id>\d+)/$", views.tasks_mitmdump),
+    re_path(r"^tasks/get/payloadfiles/(?P<task_id>\d+)/$", views.tasks_payloadfiles),
+    re_path(r"^tasks/get/procdumpfiles/(?P<task_id>\d+)/$", views.tasks_procdumpfiles),
+    re_path(r"^files/view/md5/(?P<md5>([a-fA-F\d]{32}))/$", views.files_view),
+    re_path(r"^files/view/sha1/(?P<sha1>([a-fA-F\d]{40}))/$", views.files_view),
+    re_path(r"^files/view/sha256/(?P<sha256>([a-fA-F\d]{64}))/$", views.files_view),
+    re_path(r"^files/view/id/(?P<sample_id>\d+)/$", views.files_view),
+    re_path(r"^files/get/(?P<stype>md5)/(?P<value>([a-fA-F\d]{32}))/$", views.file),
+    re_path(r"^files/get/(?P<stype>sha1)/(?P<value>([a-fA-F\d]{40}))/$", views.file),
+    re_path(r"^files/get/(?P<stype>sha256)/(?P<value>([a-fA-F\d]{64}))/$", views.file),
+    re_path(r"^files/get/(?P<stype>task)/(?P<value>\d+)/$", views.file),
+    re_path(r"^machines/list/$", views.machines_list),
+    re_path(r"^machines/view/(?P<name>[\w$-/:-?{-~!^_`\[\]]+)/$", views.machines_view),
+    re_path(r"^cuckoo/status/$", views.cuckoo_status),
+    re_path(r"^tasks/get/latests/(?P<hours>\d+)/$", views.tasks_latest),
+    # re_path(r"^tasks/add/(?P<category>[A-Za-z0-9]+)/(?P<task_id>\d+)/$", views.post_processing),
+    re_path(r"^tasks/statistics/(?P<days>\d+)/$", views.statistics_data),
+    re_path(r"^exitnodes/$", views.exit_nodes_list),
+    # re_path(r"^dist/tasks_reported$", views.dist_tasks_reported),
+    # re_path(r"^dist/tasks_notification/(?P<task_id>\d+)$", views.dist_tasks_notification),
 ]
diff --git a/web/apiv2/views.py b/web/apiv2/views.py
index 6fb163e58c2..62b322f1bed 100644
--- a/web/apiv2/views.py
+++ b/web/apiv2/views.py
@@ -1,52 +1,66 @@
 # encoding: utf-8
-from __future__ import absolute_import
+import hashlib
 import json
+import logging
 import os
-import sys
 import socket
-import tarfile
-import logging
-from io import BytesIO
+import subprocess
+import sys
+import zipfile
 from datetime import datetime, timedelta
-from zlib import decompress
+from io import BytesIO
+from urllib.parse import quote
+from wsgiref.util import FileWrapper
 
+import pyzipper
 import requests
+from bson.objectid import ObjectId
 from django.conf import settings
-from wsgiref.util import FileWrapper
+from django.contrib.auth.decorators import login_required
 from django.http import StreamingHttpResponse
-from django.shortcuts import render, redirect
+from django.shortcuts import render
 from django.views.decorators.csrf import csrf_exempt
 from django.views.decorators.http import require_safe
-
-
-from rest_framework.response import Response
 from rest_framework.decorators import api_view
-
-from bson.objectid import ObjectId
-from django.contrib.auth.decorators import login_required
+from rest_framework.response import Response
 
 sys.path.append(settings.CUCKOO_PATH)
-from lib.cuckoo.common.objects import File
+
 from lib.cuckoo.common.config import Config
-from utils.cleaners import delete_mongo_data
-from lib.cuckoo.core.database import TASK_RUNNING
-from lib.cuckoo.common.saztopcap import saz_to_pcap
-from lib.cuckoo.core.database import Database, Task
-from lib.cuckoo.common.quarantine import unquarantine
+from lib.cuckoo.common.constants import ANALYSIS_BASE_PATH, CUCKOO_ROOT, CUCKOO_VERSION
 from lib.cuckoo.common.exceptions import CuckooDemuxError
-from lib.cuckoo.common.constants import CUCKOO_ROOT, CUCKOO_VERSION
-from lib.cuckoo.common.utils import store_temp_file, delete_folder, sanitize_filename, generate_fake_name
-from lib.cuckoo.common.utils import convert_to_printable, get_user_filename, get_options, validate_referrer
+from lib.cuckoo.common.path_utils import path_delete, path_exists
+from lib.cuckoo.common.saztopcap import saz_to_pcap
+from lib.cuckoo.common.utils import (
+    convert_to_printable,
+    create_zip,
+    delete_folder,
+    get_options,
+    get_user_filename,
+    sanitize_filename,
+    store_temp_file,
+)
 from lib.cuckoo.common.web_utils import (
-    perform_malscore_search,
+    apiconf,
+    download_file,
+    download_from_3rdparty,
+    force_int,
+    parse_request_arguments,
     perform_search,
-    perform_ttps_search,
+    process_new_dlnexec_task,
+    process_new_task_files,
     search_term_map,
-    get_file_content,
     statistics,
+    validate_task,
+)
+from lib.cuckoo.core.database import (
+    TASK_RECOVERED,
+    TASK_RUNNING,
+    Database,
+    Task,
+    _Database,
 )
-from lib.cuckoo.common.web_utils import download_file, validate_task, apiconf, force_int, _download_file, parse_request_arguments
-from lib.cuckoo.common.web_utils import download_from_vt
+from lib.cuckoo.core.rooter import _load_socks5_operational, vpns
 
 try:
     import psutil
@@ -54,56 +68,77 @@
     HAVE_PSUTIL = True
 except ImportError:
     HAVE_PSUTIL = False
-    print("Missed psutil dependency: pip3 install -U psutil")
+    print("Missed psutil dependency: poetry run pip install -U psutil")
+
+log = logging.getLogger(__name__)
 
 try:
-    import pyzipper
+    zippwd = settings.ZIP_PWD
+except AttributeError:
+    zippwd = b"infected"
 
-    HAVE_PYZIPPER = True
+try:
+    import re2 as re
 except ImportError:
-    HAVE_PYZIPPER = False
-    print("Missed pyzipper dependency: pip3 install pyzipper -U")
-
-log = logging.getLogger(__name__)
+    import re
 
 # FORMAT = '%(asctime)-15s %(clientip)s %(user)-8s %(message)s'
 
 # Config variables
 repconf = Config("reporting")
 web_conf = Config("web")
+routing_conf = Config("routing")
+reporting_conf = Config("reporting")
+dist_conf = Config("distributed")
 
-if repconf.mongodb.enabled:
-    import pymongo
+zlib_compresion = False
+if repconf.compression.enabled:
+    from zlib import decompress
 
-    results_db = pymongo.MongoClient(
-        settings.MONGO_HOST,
-        port=settings.MONGO_PORT,
-        username=settings.MONGO_USER,
-        password=settings.MONGO_PASS,
-        authSource=settings.MONGO_DB,
-    )[settings.MONGO_DB]
+    zlib_compresion = True
+
+USE_SEVENZIP = False
+if reporting_conf.compression.compressiontool.strip() == "7zip":
+    USE_SEVENZIP = True
+    SEVENZIP_PATH = reporting_conf.compression.sevenzippath.strip() or "/usr/bin/7z"
+
+
+if repconf.mongodb.enabled:
+    from dev_utils.mongodb import (
+        mongo_delete_data,
+        mongo_find,
+        mongo_find_one,
+        mongo_find_one_and_update,
+    )
 
 es_as_db = False
 if repconf.elasticsearchdb.enabled and not repconf.elasticsearchdb.searchonly:
-    from elasticsearch import Elasticsearch
+    from dev_utils.elasticsearchdb import (
+        elastic_handler,
+        get_analysis_index,
+        get_query_by_info_id,
+    )
 
     es_as_db = True
-    baseidx = repconf.elasticsearchdb.index
-    fullidx = baseidx + "-*"
-    es = Elasticsearch(
-        hosts=[
-            {
-                "host": repconf.elasticsearchdb.host,
-                "port": repconf.elasticsearchdb.port,
-            }
-        ],
-        timeout=60,
+    es = elastic_handler
+
+
+DIST_ENABLED = False
+if dist_conf.distributed.enabled:
+    from lib.cuckoo.common.dist_db import create_session
+    from lib.cuckoo.common.dist_db import Task as DTask
+
+    dist_session = create_session(
+        dist_conf.distributed.db,
+        echo=False,
     )
+    DIST_ENABLED = True
+
+db: _Database = Database()
 
-db = Database()
 
 # Conditional decorator for web authentication
-class conditional_login_required(object):
+class conditional_login_required:
     def __init__(self, dec, condition):
         self.decorator = dec
         self.condition = condition
@@ -163,7 +198,7 @@ def index(request):
                 parsed[key]["rps"] = "None"
                 parsed[key]["rpm"] = "None"
 
-    return render(request, "apiv2/index.html", {"config": parsed})
+    return render(request, "apiv2/index.html", {"title": "API", "config": parsed})
 
 
 @csrf_exempt
@@ -180,17 +215,24 @@ def tasks_create_static(request):
     options = request.data.get("options", "")
     priority = force_int(request.data.get("priority"))
 
-    resp["error"] = False
+    resp["error"] = []
     files = request.FILES.getlist("file")
     extra_details = {}
-    task_ids = list()
+    task_ids = []
     for sample in files:
         tmp_path = store_temp_file(sample.read(), sanitize_filename(sample.name))
         try:
             task_id, extra_details = db.demux_sample_and_add_to_db(
-                tmp_path, options=options, priority=priority, static=1, only_extraction=True, user_id=request.user.id or 0
+                tmp_path,
+                options=options,
+                priority=priority,
+                static=1,
+                only_extraction=True,
+                user_id=request.user.id or 0,
             )
             task_ids.extend(task_id)
+            if extra_details.get("erros"):
+                resp["errors"].extend(extra_details["errors"])
         except CuckooDemuxError as e:
             resp = {"error": True, "error_value": e}
             return Response(resp)
@@ -199,6 +241,9 @@ def tasks_create_static(request):
     resp["data"]["task_ids"] = task_ids
     if extra_details and "config" in extra_details:
         resp["data"]["config"] = extra_details["config"]
+    if extra_details.get("errors"):
+        resp["errors"].extend(extra_details["errors"])
+
     callback = apiconf.filecreate.get("status")
     if task_ids:
         if len(task_ids) == 1:
@@ -209,7 +254,7 @@ def tasks_create_static(request):
             resp["data"] = {}
             resp["data"]["message"] = "Task IDs {0} have been submitted".format(", ".join(str(x) for x in task_ids))
             if callback:
-                resp["url"] = list()
+                resp["url"] = []
                 for tid in task_ids:
                     resp["url"].append("{0}/submit/status/{1}".format(apiconf.api.get("url"), tid))
             else:
@@ -233,18 +278,28 @@ def tasks_create_file(request):
             return Response(resp)
         resp["error"] = False
         # Parse potential POST options (see submission/views.py)
-        quarantine = request.data.get("quarantine", "")
         pcap = request.data.get("pcap", "")
-        unique = bool(request.data.get("unique", False))
-        static = request.data.get("static", "")
-        priority = force_int(request.data.get("priority"))
-        options = request.data.get("options", "")
-        machine = request.data.get("machine", "")
 
-        if request.data.get("process_dump"):
-            if options:
-                options += ","
-            options += "procmemdump=1,procdump=1"
+        (
+            static,
+            package,
+            timeout,
+            priority,
+            options,
+            machine,
+            platform,
+            tags,
+            custom,
+            memory,
+            clock,
+            enforce_timeout,
+            unique,
+            referrer,
+            tlp,
+            tags_tasks,
+            route,
+            cape,
+        ) = parse_request_arguments(request, keyword="data")
 
         details = {
             "errors": [],
@@ -260,11 +315,8 @@ def tasks_create_file(request):
             "user_id": request.user.id or 0,
         }
 
-        task_ids_tmp = []
         task_machines = []
-        vm_list = []
-        for vm in db.list_machines():
-            vm_list.append(vm.label)
+        vm_list = [vm.label for vm in db.list_machines()]
 
         if machine.lower() == "all":
             if not apiconf.filecreate.get("allmachines"):
@@ -276,55 +328,37 @@ def tasks_create_file(request):
             # Check if VM is in our machines table
             if machine == "" or machine in vm_list:
                 task_machines.append(machine)
-            # Error if its not
             else:
                 resp = {
                     "error": True,
-                    "error_value": ("Machine '{0}' does not exist. " "Available: {1}".format(machine, ", ".join(vm_list))),
+                    "error_value": f"Machine '{machine}' does not exist. Available: {', '.join(vm_list)}",
                 }
                 return Response(resp)
-        # Parse a max file size to be uploaded
-        max_file_size = settings.MAX_UPLOAD_SIZE
-        if not max_file_size or int(max_file_size) == 0:
-            max_file_size = 5 * 1048576
-        else:
-            max_file_size = int(max_file_size) * 1048576
 
-        files = list()
+        files = []
         # Check if we are allowing multiple file submissions
         multifile = apiconf.filecreate.get("multifile")
         if multifile:
             files = request.FILES.getlist("file")
         else:
             files = [request.FILES.getlist("file")[0]]
-        # Handle all files
-        for sample in files:
-            if sample.size == 0:
-                resp = {"error": True, "error_value": "You submitted an empty file"}
-                return Response(resp)
-            if sample.size > max_file_size:
-                resp = {"error": True, "error_value": "File size exceeds API limit"}
-                return Response(resp)
-            tmp_path = store_temp_file(sample.read(), sanitize_filename(sample.name))
-            details["path"] = tmp_path
 
-            if (web_conf.uniq_submission.enabled or unique) and db.check_file_uniq(
-                File(tmp_path).get_sha256(), hours=web_conf.uniq_submission.hours
-            ):
-                details["errors"].append({sample.name: "Not unique, as unique option set on submit or in conf/web.conf"})
-                continue
+        opt_filename = get_user_filename(options, custom)
+        list_of_tasks, details = process_new_task_files(request, files, details, opt_filename, unique)
+
+        for content, tmp_path, _ in list_of_tasks:
             if pcap:
-                if sample.name.lower().endswith(".saz"):
+                if tmp_path.lower().endswith(b".saz"):
                     saz = saz_to_pcap(tmp_path)
                     if saz:
                         try:
-                            os.remove(tmp_path)
+                            path_delete(tmp_path)
                         except Exception as e:
                             print(e, "removing pcap")
                         tmp_path = saz
                     else:
-                        resp = {"error": True, "error_value": "Failed to convert SAZ to PCAP"}
-                        return Response(resp)
+                        details["error"].append({os.path.basename(tmp_path): "Failed to convert SAZ to PCAP"})
+                        continue
                 task_id = db.add_pcap(file_path=tmp_path)
                 details["task_ids"].append(task_id)
                 continue
@@ -332,25 +366,17 @@ def tasks_create_file(request):
                 task_id = db.add_static(file_path=tmp_path, priority=priority, user_id=request.user.id or 0)
                 details["task_ids"].append(task_id)
                 continue
-            if quarantine:
-                path = unquarantine(tmp_path)
-                try:
-                    os.remove(tmp_path)
-                    tmp_path = path
-                except Exception as e:
-                    print(e, "removing quarantine")
-                try:
-                    File(path).get_type()
-                except TypeError:
-                    details["errors"].append({os.path.basename(tmp_path): "Error submitting file - bad file type"})
-                    continue
-            else:
-                details["content"] = get_file_content(tmp_path)
-                status, task_ids_tmp = download_file(**details)
+            if tmp_path:
+                details["path"] = tmp_path
+                details["content"] = content
+
+                status, tasks_details = download_file(**details)
                 if status == "error":
-                    details["errors"].append({os.path.basename(tmp_path): task_ids_tmp})
+                    details["errors"].append({os.path.basename(tmp_path).decode(): tasks_details})
                 else:
-                    details["task_ids"] = task_ids_tmp
+                    details["task_ids"] = tasks_details.get("task_ids")
+                    if tasks_details.get("errors"):
+                        details["errors"].extend(tasks_details["errors"])
 
         if details["task_ids"]:
             tasks_count = len(details["task_ids"])
@@ -366,9 +392,11 @@ def tasks_create_file(request):
                 if callback:
                     resp["url"] = ["{0}/submit/status/{1}/".format(apiconf.api.get("url"), details.get("task_ids", [])[0])]
             else:
-                resp["data"]["message"] = "Task IDs {0} have been submitted".format(", ".join(str(x) for x in details.get("task_ids", [])))
+                resp["data"]["message"] = "Task IDs {0} have been submitted".format(
+                    ", ".join(str(x) for x in details.get("task_ids", []))
+                )
                 if callback:
-                    resp["url"] = list()
+                    resp["url"] = []
                     for tid in details.get("task_ids", []):
                         resp["url"].append("{0}/submit/status/{1}".format(apiconf.api.get("url"), tid))
         else:
@@ -388,7 +416,7 @@ def tasks_create_url(request):
     if request.method == "POST":
         resp["error"] = False
 
-        url = request.data.get("url", None)
+        url = request.data.get("url")
         (
             static,
             package,
@@ -402,23 +430,17 @@ def tasks_create_url(request):
             memory,
             clock,
             enforce_timeout,
-            shrike_url,
-            shrike_msg,
-            shrike_sid,
-            shrike_refer,
             unique,
             referrer,
             tlp,
             tags_tasks,
             route,
             cape,
-        ) = parse_request_arguments(request)
+        ) = parse_request_arguments(request, keyword="data")
 
         task_ids = []
         task_machines = []
-        vm_list = []
-        for vm in db.list_machines():
-            vm_list.append(vm.label)
+        vm_list = [vm.label for vm in db.list_machines()]
 
         if not url:
             resp = {"error": True, "error_value": "URL value is empty"}
@@ -438,7 +460,7 @@ def tasks_create_url(request):
             else:
                 resp = {
                     "error": True,
-                    "error_value": ("Machine '{0}' does not exist. " "Available: {1}".format(machine, ", ".join(vm_list))),
+                    "error_value": "Machine '{0}' does not exist. Available: {1}".format(machine, ", ".join(vm_list)),
                 }
                 return Response(resp)
 
@@ -461,10 +483,6 @@ def tasks_create_url(request):
                 memory=memory,
                 enforce_timeout=enforce_timeout,
                 clock=clock,
-                shrike_url=shrike_url,
-                shrike_msg=shrike_msg,
-                shrike_sid=shrike_sid,
-                shrike_refer=shrike_refer,
                 route=route,
                 cape=cape,
                 tlp=tlp,
@@ -498,21 +516,35 @@ def tasks_create_dlnexec(request):
             return Response(resp)
 
         resp["error"] = False
-        url = request.data.get("dlnexec", None)
+        url = request.data.get("dlnexec")
         if not url:
             resp = {"error": True, "error_value": "URL value is empty"}
             return Response(resp)
 
-        options = request.data.get("options", "")
-        custom = request.data.get("custom", "")
-        machine = request.data.get("machine", "")
-        referrer = validate_referrer(request.data.get("referrer", None))
+        (
+            static,
+            package,
+            timeout,
+            priority,
+            options,
+            machine,
+            platform,
+            tags,
+            custom,
+            memory,
+            clock,
+            enforce_timeout,
+            unique,
+            referrer,
+            tlp,
+            tags_tasks,
+            route,
+            cape,
+        ) = parse_request_arguments(request, keyword="data")
 
         details = {}
         task_machines = []
-        vm_list = []
-        for vm in db.list_machines():
-            vm_list.append(vm.label)
+        vm_list = [vm.label for vm in db.list_machines()]
 
         if machine.lower() == "all":
             if not apiconf.dlnexeccreate.get("allmachines"):
@@ -526,26 +558,16 @@ def tasks_create_dlnexec(request):
                 task_machines.append(machine)
             # Error if its not
             else:
-                resp = {"error": True, "error_value": ("Machine '{0}' does not exist. Available: {1}".format(machine, ", ".join(vm_list)))}
+                resp = {
+                    "error": True,
+                    "error_value": "Machine '{0}' does not exist. Available: {1}".format(machine, ", ".join(vm_list)),
+                }
                 return Response(resp)
 
-        if referrer:
-            if options:
-                options += ","
-            options += "referrer=%s" % (referrer)
-
-        url = url.replace("hxxps://", "https://").replace("hxxp://", "http://").replace("[.]", ".")
-        response = _download_file(request.data.get("route", None), url, options)
-        if not response:
+        path, content, _ = process_new_dlnexec_task(url, route, options, custom)
+        if not path:
             return Response({"error": "Was impossible to retrieve url"})
 
-        name = os.path.basename(url)
-        if not "." in name:
-            name = get_user_filename(options, custom) or generate_fake_name()
-
-        path = store_temp_file(response, name)
-
-        content = get_file_content(path)
         details = {
             "errors": [],
             "content": content,
@@ -562,11 +584,13 @@ def tasks_create_dlnexec(request):
             "user_id": request.user.id or 0,
         }
 
-        status, task_ids_tmp = download_file(**details)
+        status, tasks_details = download_file(**details)
         if status == "error":
-            details["errors"].append({os.path.basename(path): task_ids_tmp})
+            details["errors"].append({os.path.basename(path).decode(): tasks_details})
         else:
-            details["task_ids"] = task_ids_tmp
+            details["task_ids"] = tasks_details.get("task_ids")
+            if tasks_details.get("errors"):
+                details["errors"].extend(tasks_details["errors"])
 
         if details["task_ids"]:
             tasks_count = len(details["task_ids"])
@@ -579,107 +603,9 @@ def tasks_create_dlnexec(request):
             if len(details.get("task_ids")) == 1:
                 resp["data"]["message"] = "Task ID {0} has been submitted".format(str(details.get("task_ids", [])[0]))
             else:
-                resp["data"]["message"] = "Task IDs {0} have been submitted".format(", ".join(str(x) for x in details.get("task_ids", [])))
-        else:
-            resp = {"error": True, "error_value": "Error adding task to database", "errors": details["errors"]}
-    else:
-        resp = {"error": True, "error_value": "Method not allowed"}
-
-    return Response(resp)
-
-
-# Download a file from VT for analysis
-@csrf_exempt
-@api_view(["POST"])
-def tasks_vtdl(request):
-    resp = {}
-    if request.method == "POST":
-        # Check if this API function is enabled
-        if not apiconf.vtdl.get("enabled"):
-            resp = {"error": True, "error_value": "VTDL Create API is Disabled"}
-            return Response(resp)
-
-        hashes = request.data.get("vtdl".strip(), None)
-        if not hashes:
-            hashes = request.data.get("hashes".strip(), None)
-
-        if not hashes:
-            resp = {"error": True, "error_value": "vtdl (hash list) value is empty"}
-            return Response(resp)
-
-        resp["error"] = False
-        options = request.data.get("options", "")
-        custom = request.data.get("custom", "")
-        machine = request.data.get("machine", "")
-
-        opt_filename = get_user_filename(options, custom)
-
-        task_machines = []
-        vm_list = []
-        opt_apikey = False
-        opts = get_options(options)
-        if opts:
-            opt_apikey = opts.get("apikey", False)
-
-        if not (settings.VTDL_KEY or opt_apikey) or not settings.VTDL_PATH:
-            resp = {
-                "error": True,
-                "error_value": "You specified VirusTotal but must edit the file and specify your VTDL_KEY variable and VTDL_PATH base directory",
-            }
-            return Response(resp)
-
-        for vm in db.list_machines():
-            vm_list.append(vm.label)
-
-        if machine.lower() == "all":
-            if not apiconf.filecreate.get("allmachines"):
-                resp = {"error": True, "error_value": "Machine=all is disabled using the API"}
-                return Response(resp)
-            for entry in vm_list:
-                task_machines.append(entry)
-        else:
-            # Check if VM is in our machines table
-            if machine == "" or machine in vm_list:
-                task_machines.append(machine)
-            # Error if its not
-            else:
-                resp = {
-                    "error": True,
-                    "error_value": ("Machine '{0}' does not exist. " "Available: {1}".format(machine, ", ".join(vm_list))),
-                }
-                return Response(resp)
-
-        details = {
-            "apikey": settings.VTDL_KEY or opt_apikey,
-            "errors": [],
-            "content": False,
-            "request": request,
-            "task_ids": [],
-            "url": False,
-            "params": {},
-            "headers": {},
-            "service": "VirusTotal",
-            "path": "",
-            "fhash": False,
-            "options": options,
-            "only_extraction": False,
-            "user_id": request.user.id or 0,
-        }
-
-        details = download_from_vt(hashes, details, opt_filename, settings)
-
-        if details["task_ids"]:
-            tasks_count = len(details["task_ids"])
-        else:
-            tasks_count = 0
-        if tasks_count > 0:
-            resp["data"] = {}
-            resp["errors"] = details["errors"]
-            resp["data"]["task_ids"] = details["task_ids"]
-            if len(details["task_ids"]) == 1:
-                resp["data"]["message"] = "Task ID {0} has been submitted".format(str(details["task_ids"][0]))
-            else:
-                resp["data"]["message"] = "Task IDs {0} have been submitted".format(", ".join(str(x) for x in details["task_ids"]))
+                resp["data"]["message"] = "Task IDs {0} have been submitted".format(
+                    ", ".join(str(x) for x in details.get("task_ids", []))
+                )
         else:
             resp = {"error": True, "error_value": "Error adding task to database", "errors": details["errors"]}
     else:
@@ -692,7 +618,6 @@ def tasks_vtdl(request):
 @csrf_exempt
 @api_view(["GET"])
 def files_view(request, md5=None, sha1=None, sha256=None, sample_id=None):
-
     if not apiconf.fileview.get("enabled"):
         resp = {"error": True, "error_value": "File View API is Disabled"}
         return Response(resp)
@@ -700,6 +625,13 @@ def files_view(request, md5=None, sha1=None, sha256=None, sample_id=None):
     resp = {}
     if md5 or sha1 or sha256 or sample_id:
         resp["error"] = False
+        """
+        for key, value in (("md5", md5), ("sha1", sha1), ("sha256", sha256), ("id", sample_id)):
+            if value:
+                if not apiconf.fileview.get(key):
+                    resp = {"error": True, "error_value": f"File View by {key.upper()} is Disabled"}
+                    return Response(resp)
+        """
         if md5:
             if not apiconf.fileview.get("md5"):
                 resp = {"error": True, "error_value": "File View by MD5 is Disabled"}
@@ -768,13 +700,13 @@ def tasks_search(request, md5=None, sha1=None, sha256=None):
                 sids = [tmp_sample.to_dict()["id"] for tmp_sample in samples]
             else:
                 sids = [sample.to_dict()["id"]]
-            resp["data"] = list()
+            resp["data"] = []
             for sid in sids:
                 tasks = db.list_tasks(sample_id=sid)
                 for task in tasks:
                     buf = task.to_dict()
                     # Remove path information, just grab the file name
-                    buf["target"] = buf["target"].split("/")[-1]
+                    buf["target"] = buf["target"].rsplit("/", 1)[-1]
                     resp["data"].append(buf)
         else:
             resp = {"data": [], "error": False}
@@ -782,6 +714,7 @@ def tasks_search(request, md5=None, sha1=None, sha256=None):
     return Response(resp)
 
 
+# ToDo requires proper review and rewrite
 # Return Task ID's and data that match a hash.
 @csrf_exempt
 @api_view(["POST"])
@@ -792,23 +725,29 @@ def ext_tasks_search(request):
         resp = {"error": True, "error_value": "Extended Task Search API is Disabled"}
         return Response(resp)
 
-    return_data = list()
+    return_data = []
     term = request.data.get("option", "")
     value = request.data.get("argument", "")
+    search_limit = request.data.get("search_limit", 50)
 
     if term and value:
         records = False
-        if not term in search_term_map.keys() and term not in ("malscore", "ttp"):
+        if term not in search_term_map and term not in ("malscore", "ttp"):
             resp = {"error": True, "error_value": "Invalid Option. '%s' is not a valid option." % term}
             return Response(resp)
 
-        if term in ("ids", "options", "tags_tasks"):
+        if term == "tags_tasks":
+            value = [int(v.id) for v in db.list_tasks(tags_tasks_like=value, limit=int(search_limit))]
+            term = "ids"
+        elif term == "options":
+            value = [int(v.id) for v in db.list_tasks(options_like=value, limit=search_limit)]
+            term = "ids"
+        elif term == "ids":
             if all([v.strip().isdigit() for v in value.split(",")]):
                 value = [int(v.strip()) for v in filter(None, value.split(","))]
             else:
                 return Response({"error": True, "error_value": "Not all values are integers"})
-        if term == "ids":
-            tmp_value = list()
+            tmp_value = []
             for task in db.list_tasks(task_ids=value) or []:
                 if task.status == "reported":
                     tmp_value.append(task.id)
@@ -816,14 +755,8 @@ def ext_tasks_search(request):
                     return_data.append({"analysis": {"status": task.status, "id": task.id}})
             value = tmp_value
             del tmp_value
-
         try:
-            if term == "malscore":
-                records = perform_malscore_search(value)
-            elif term == "ttp":
-                records = perform_ttps_search(value)
-            else:
-                records = perform_search(term, value)
+            records = perform_search(term, value, user_id=request.user.id, privs=request.user.is_staff, web=False)
         except ValueError:
             if not term:
                 resp = {"error": True, "error_value": "No option provided."}
@@ -860,8 +793,7 @@ def ext_tasks_search(request):
 @csrf_exempt
 @api_view(["GET"])
 def tasks_list(request, offset=None, limit=None, window=None):
-
-    if not apiconf.tasklist.get("enabled", None):
+    if not apiconf.tasklist.get("enabled"):
         resp = {"error": True, "error_value": "Task List API is Disabled"}
         return Response(resp)
 
@@ -874,6 +806,7 @@ def tasks_list(request, offset=None, limit=None, window=None):
         limit = int(apiconf.tasklist.get("maxlimit"))
 
     completed_after = request.query_params.get("completed_after")
+    ids_only = request.query_params.get("ids")
     if completed_after:
         completed_after = datetime.fromtimestamp(int(completed_after))
 
@@ -887,41 +820,53 @@ def tasks_list(request, offset=None, limit=None, window=None):
 
     status = request.query_params.get("status")
     option = request.query_params.get("option")
+    category = request.query_params.get("category")
 
     if offset:
         offset = int(offset)
-    resp["data"] = list()
+    resp["data"] = []
     resp["config"] = "Limit: {0}, Offset: {1}".format(limit, offset)
     resp["buf"] = 0
 
-    for row in db.list_tasks(
+    tasks = db.list_tasks(
         limit=limit,
         details=True,
+        category=category,
         offset=offset,
         completed_after=completed_after,
         status=status,
         options_like=option,
         order_by=Task.completed_on.desc(),
-    ):
-        resp["buf"] += 1
-        task = row.to_dict()
-        task["guest"] = {}
-        if row.guest:
-            task["guest"] = row.guest.to_dict()
+    )
 
-        task["errors"] = []
-        for error in row.errors:
-            task["errors"].append(error.message)
+    if not tasks:
+        return Response(resp)
+
+    # Dist.py fetches only ids
+    if ids_only:
+        resp["data"] = [{"id": task.id} for task in tasks]
+    else:
+        for row in tasks:
+            resp["buf"] += 1
+            task = row.to_dict()
+            task["guest"] = {}
+            if row.guest:
+                task["guest"] = row.guest.to_dict()
+
+            task["errors"] = []
+            for error in row.errors:
+                task["errors"].append(error.message)
 
-        task["sample"] = {}
-        if row.sample_id:
-            sample = db.view_sample(row.sample_id)
-            task["sample"] = sample.to_dict()
+            task["sample"] = {}
+            if row.sample_id:
+                sample = db.view_sample(row.sample_id)
+                if sample:
+                    task["sample"] = sample.to_dict()
 
-        if task["target"]:
-            task["target"] = convert_to_printable(task["target"])
+            if task.get("target"):
+                task["target"] = convert_to_printable(task["target"])
 
-        resp["data"].append(task)
+            resp["data"].append(task)
 
     return Response(resp)
 
@@ -929,42 +874,150 @@ def tasks_list(request, offset=None, limit=None, window=None):
 @csrf_exempt
 @api_view(["GET"])
 def tasks_view(request, task_id):
-
     if not apiconf.taskview.get("enabled"):
         resp = {"error": True, "error_value": "Task View API is Disabled"}
         return Response(resp)
 
-    resp = {}
     task = db.view_task(task_id, details=True)
-    resp["error"] = False
-    if task:
-        entry = task.to_dict()
-        if entry["category"] != "url":
-            entry["target"] = entry["target"].split("/")[-1]
-        entry["guest"] = {}
-        if task.guest:
-            entry["guest"] = task.guest.to_dict()
-
-        entry["errors"] = []
-        for error in task.errors:
-            entry["errors"].append(error.message)
-
-        entry["sample"] = {}
-        if task.sample_id:
-            sample = db.view_sample(task.sample_id)
-            entry["sample"] = sample.to_dict()
-
-        resp["data"] = entry
-    else:
+    if not task:
         resp = {"error": True, "error_value": "Task not found in database"}
+        return Response(resp)
+
+    resp = {"error": False}
+    entry = task.to_dict()
+    if entry["category"] != "url":
+        entry["target"] = entry["target"].rsplit("/", 1)[-1]
+    entry["guest"] = {}
+    if task.guest:
+        entry["guest"] = task.guest.to_dict()
+
+    entry["errors"] = []
+    for error in task.errors:
+        entry["errors"].append(error.message)
+
+    entry["sample"] = {}
+    if task.sample_id:
+        sample = db.view_sample(task.sample_id)
+        entry["sample"] = sample.to_dict()
+
+    if task.status == TASK_RECOVERED and task.custom:
+        m = re.match(r"^Recovery_(?P<taskid>\d+)$", task.custom)
+        if m:
+            task_id = int(m.group("taskid"))
+            task = db.view_task(task_id, details=True)
+            resp["error"] = False
+            if task:
+                entry = task.to_dict()
+                if entry["category"] != "url":
+                    entry["target"] = entry["target"].rsplit("/", 1)[-1]
+                    entry["guest"] = {}
+                if task.guest:
+                    entry["guest"] = task.guest.to_dict()
+                entry["errors"] = []
+                for error in task.errors:
+                    entry["errors"].append(error.message)
+                entry["sample"] = {}
+                if task.sample_id:
+                    sample = db.view_sample(task.sample_id)
+                    entry["sample"] = sample.to_dict()
+
+    if repconf.mongodb.enabled:
+        rtmp = mongo_find_one(
+            "analysis",
+            {"info.id": int(task.id)},
+            {
+                "info": 1,
+                "virustotal_summary": 1,
+                "malscore": 1,
+                "detections": 1,
+                "network.pcap_sha256": 1,
+                "mlist_cnt": 1,
+                "f_mlist_cnt": 1,
+                "target.file.clamav": 1,
+                "suri_tls_cnt": 1,
+                "suri_alert_cnt": 1,
+                "suri_http_cnt": 1,
+                "suri_file_cnt": 1,
+                "trid": 1,
+                "_id": 0,
+            },
+            sort=[("_id", -1)],
+        )
+
+    rtmp = None
+    if es_as_db:
+        rtmp = es.search(
+            index=get_analysis_index(),
+            query=get_query_by_info_id(str(task.id)),
+            _source=[
+                "info",
+                "virustotal_summary",
+                "malscore",
+                "detections",
+                "network.pcap_sha256",
+                "mlist_cnt",
+                "f_mlist_cnt",
+                "target.file.clamav",
+                "suri_tls_cnt",
+                "suri_alert_cnt",
+                "suri_http_cnt",
+                "suri_file_cnt",
+                "trid",
+            ],
+        )["hits"]["hits"]
+        if len(rtmp) > 1:
+            rtmp = rtmp[-1]["_source"]
+        elif len(rtmp) == 1:
+            rtmp = rtmp[0]["_source"]
+        else:
+            pass
 
+    if rtmp:
+        for keyword in (
+            "detections",
+            "virustotal_summary",
+            "mlist_cnt",
+            "f_mlist_cnt",
+            "suri_tls_cnt",
+            "suri_alert_cnt",
+            "suri_file_cnt",
+            "suri_http_cnt",
+            "mlist_cnt",
+            "f_mlist_cnt",
+            "malscore",
+        ):
+            if keyword in rtmp:
+                entry[keyword] = rtmp[keyword]
+
+        if "info" in rtmp:
+            for keyword in ("custom", "package"):
+                if rtmp["info"].get(keyword, False):
+                    entry[keyword] = rtmp["info"][keyword]
+
+        if "network" in rtmp and "pcap_sha256" in rtmp["network"]:
+            entry["pcap_sha256"] = rtmp["network"]["pcap_sha256"]
+
+        if rtmp.get("target", {}).get("file", False):
+            for keyword in ("clamav", "trid"):
+                if rtmp["info"].get(keyword, False):
+                    entry[keyword] = rtmp["info"]["target"][keyword]
+
+        if settings.MOLOCH_ENABLED:
+            if settings.MOLOCH_BASE[-1] != "/":
+                settings.MOLOCH_BASE += "/"
+            entry["moloch_url"] = (
+                settings.MOLOCH_BASE
+                + "?date=-1&expression=tags"
+                + quote("\x3d\x3d\x22%s\x3a%s\x22" % (settings.MOLOCH_NODE, task.id), safe="")
+            )
+
+    resp["data"] = entry
     return Response(resp)
 
 
 @csrf_exempt
 @api_view(["GET"])
 def tasks_reschedule(request, task_id):
-
     if not apiconf.taskresched.get("enabled"):
         resp = {"error": True, "error_value": "Task Reschedule API is Disabled"}
         return Response(resp)
@@ -974,21 +1027,43 @@ def tasks_reschedule(request, task_id):
         return Response(resp)
 
     resp = {}
-    if db.reschedule(task_id):
+    new_task_id = db.reschedule(task_id)
+    if new_task_id:
         resp["error"] = False
-        resp["data"] = "Task ID {0} has been rescheduled".format(task_id)
+        resp["data"] = {}
+        resp["data"]["new_task_id"] = new_task_id
+        resp["data"]["message"] = "Task ID {0} has been rescheduled".format(task_id)
     else:
-        resp = {"error": True, "error_value": ("An error occured while trying to reschedule " "Task ID {0}".format(task_id))}
+        resp = {
+            "error": True,
+            "error_value": "An error occurred while trying to reschedule Task ID {0}".format(task_id),
+        }
 
     return Response(resp)
 
 
 @csrf_exempt
 @api_view(["GET"])
-def tasks_delete(request, task_id):
+def tasks_reprocess(request, task_id):
+    resp = {}
+    if not apiconf.taskreprocess.get("enabled"):
+        resp["error"] = True
+        resp["error_value"] = "Task Reprocess API is Disabled"
+        return Response(resp)
+
+    error, msg, task_status = db.tasks_reprocess(task_id)
+    if error:
+        return Response({"error": True, "error_value": msg})
+
+    return Response({"error": error, "data": f"Task ID {task_id} with status {task_status} marked for reprocessing"})
+
+
+@csrf_exempt
+@api_view(["GET"])
+def tasks_delete(request, task_id, status=False):
     """
     task_id: int or string if many
-    example: 1 or 1,2,3,4
+    example: 1 or 1,2,3,4 or 1-4
 
     """
     if not (apiconf.taskdelete.get("enabled") or request.user.is_staff):
@@ -997,26 +1072,33 @@ def tasks_delete(request, task_id):
 
     if isinstance(task_id, int):
         task_id = [task_id]
+    elif "-" in task_id:
+        start, end = map(force_int, task_id.split("-"))
+        if start > end:
+            resp = {"error": True, "error_value": "Start Task ID is bigger than End Task ID"}
+            return Response(resp)
+        else:
+            task_id = list(range(start, end + 1))
     else:
-        task_id = [task.strip() for task in task_id.split(",")]
+        task_id = [force_int(task.strip()) for task in task_id.split(",")]
 
     resp = {}
-    s_deleted = list()
-    f_deleted = list()
+    s_deleted = []
+    f_deleted = []
     for task in task_id:
-        check = validate_task(task)
+        check = validate_task(task, status)
         if check["error"]:
-            f_deleted.append(task)
+            f_deleted.append(str(task))
             continue
 
-        # ToDo missed mongo?
         if db.delete_task(task):
             delete_folder(os.path.join(CUCKOO_ROOT, "storage", "analyses", "%s" % task))
-            delete_mongo_data(task)
+            if web_conf.web_reporting.get("enabled", True):
+                mongo_delete_data(task)
 
-            s_deleted.append(task)
+            s_deleted.append(str(task))
         else:
-            f_deleted.append(task)
+            f_deleted.append(str(task))
 
     if s_deleted:
         resp["data"] = "Task(s) ID(s) {0} has been deleted".format(",".join(s_deleted))
@@ -1029,42 +1111,80 @@ def tasks_delete(request, task_id):
 
 
 @csrf_exempt
-@api_view(["GET"])
+@api_view(["GET", "POST"])
 def tasks_status(request, task_id):
-
     if not apiconf.taskstatus.get("enabled"):
         resp = {"error": True, "error_value": "Task status API is disabled"}
         return Response(resp)
 
-    status = db.view_task(task_id).to_dict()["status"]
-    if not status:
+    resp = {}
+    task = db.view_task(task_id)
+    if not task:
         resp = {"error": True, "error_value": "Task does not exist"}
-    else:
+        return Response(resp)
+    if request.method == "GET":
+        status = task.to_dict()["status"]
         resp = {"error": False, "data": status}
-
+    elif request.method == "POST" and apiconf.user_stop.enabled and request.data.get("status", "") == "finish":
+        machine = db.view_machine(task.guest.name)
+        # Todo probably add task status if pending
+        if machine.status == "running":
+            try:
+                guest_env = requests.get(f"http://{machine.ip}:8000/environ").json()
+                complete_folder = hashlib.md5(f"cape-{task_id}".encode()).hexdigest()
+                if machine.platform == "windows":
+                    dest_folder = f"{guest_env['environ']['TMP']}\\{complete_folder}"
+                elif machine.platform == "linux":
+                    dest_folder = f"{guest_env['environ'].get('TMP', '/tmp')}/{complete_folder}"
+                r = requests.post(f"http://{machine.ip}:8000/mkdir", data={"dirpath": dest_folder})
+                resp = {"error": r.status_code == 200, "data": r.text}
+            except requests.exceptions.ConnectionError as e:
+                log.error(e)
     return Response(resp)
 
 
 @csrf_exempt
 @api_view(["GET"])
-def tasks_report(request, task_id, report_format="json"):
-
+def tasks_report(request, task_id, report_format="json", make_zip=False):
     if not apiconf.taskreport.get("enabled"):
-        resp = {"error": True, "error_value": "Task Deletion API is Disabled"}
+        resp = {"error": True, "error_value": "Task Report API is Disabled"}
         return Response(resp)
 
+    allow_dl = False
+    if hasattr(request.user, "userprofile") and request.user.userprofile.reports:
+        allow_dl = True
+    # check if allowed to download to all + if no if user has permissions
+    if not settings.ALLOW_DL_REPORTS_TO_ALL and allow_dl is False:
+        return render(
+            request,
+            "error.html",
+            {"error": "You don't have permissions to download reports. Ask admin to enable it for you in user profile."},
+        )
+
     check = validate_task(task_id)
     if check["error"]:
         return Response(check)
 
+    if check.get("tlp", "") in ("red", "Red"):
+        return Response({"error": True, "error_value": "Task has a TLP of RED"})
+
+
+    rtid = check.get("rtid", 0)
+    if rtid:
+        task_id = rtid
+
     resp = {}
+
     srcdir = os.path.join(CUCKOO_ROOT, "storage", "analyses", "%s" % task_id, "reports")
+    if not os.path.normpath(srcdir).startswith(ANALYSIS_BASE_PATH):
+        return render(request, "error.html", {"error": f"File not found {os.path.basename(srcdir)}"})
 
     # Report validity check
-    if os.path.exists(srcdir) and len(os.listdir(srcdir)) == 0:
+    if path_exists(srcdir) and len(os.listdir(srcdir)) == 0:
         resp = {"error": True, "error_value": "No reports created for task %s" % task_id}
 
     formats = {
+        "protobuf": "report.protobuf",
         "json": "report.json",
         "html": "report.html",
         "htmlsummary": "summary-report.html",
@@ -1072,24 +1192,43 @@ def tasks_report(request, task_id, report_format="json"):
         "maec": "report.maec-4.1.xml",
         "maec5": "report.maec-5.0.json",
         "metadata": "report.metadata.xml",
+        "litereport": "lite.json",
+        "parti": "report.parti",
     }
 
-    bz_formats = {
+    report_formats = {
+        # Use the 'all' option if you want all generated files except for memory.dmp
         "all": {"type": "-", "files": ["memory.dmp"]},
+        # Use the 'dropped' option if you want all dropped files found in the /files directory
         "dropped": {"type": "+", "files": ["files"]},
-        "dist": {"type": "-", "files": ["binary", "dump_sorted.pcap", "memory.dmp"]},
-    }
-
-    tar_formats = {
-        "bz2": "w:bz2",
-        "gz": "w:gz",
-        "tar": "w",
+        # Use the 'dist' option if you want all generated files except for binary, dump_sorted.pcap, memory.dmp, and
+        # those found in the /logs directory
+        "dist": {"type": "-", "files": ["binary", "dump_sorted.pcap", "memory.dmp", "logs"]},
+        #  Use the 'lite' option if you want the generated files files.json, dump.pcap, and those found
+        # in the /CAPE, /files, /procdump, /macros and /shots directories
+        "lite": {
+            "type": "+",
+            "files": [
+                "files.json",
+                "CAPE",
+                "files",
+                "procdump",
+                "macros",
+                "shots",
+                "dump.pcap",
+                "selfextracted",
+                "evtx",
+                "tlsdump",
+            ],
+        },
     }
 
     if report_format.lower() in formats:
-        report_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", "%s" % task_id, "reports", formats[report_format.lower()])
-        if os.path.exists(report_path):
-            if report_format in ("json", "maec5"):
+        report_path = os.path.join(srcdir, formats[report_format.lower()])
+        if not os.path.normpath(report_path).startswith(ANALYSIS_BASE_PATH):
+            return render(request, "error.html", {"error": f"File not found {os.path.basename(report_path)}"})
+        if path_exists(report_path):
+            if report_format in ("litereport", "json", "maec5"):
                 content = "application/json; charset=UTF-8"
                 ext = "json"
             elif report_format.startswith("html"):
@@ -1101,59 +1240,87 @@ def tasks_report(request, task_id, report_format="json"):
             elif report_format == "pdf":
                 content = "application/pdf"
                 ext = "pdf"
+            elif report_format == "protobuf":
+                content = "application/octet-stream"
+                ext = "protobuf"
+            elif report_format == "parti":
+                ext = "parti"
+                content = "application/zip"
             fname = "%s_report.%s" % (task_id, ext)
-            resp = StreamingHttpResponse(FileWrapper(open(report_path, "rb"), 8096), content_type=content or "application/octet-stream;")
-            resp["Content-Length"] = os.path.getsize(report_path)
-            resp["Content-Disposition"] = "attachment; filename=" + fname
+
+            if make_zip:
+                if os.path.exists(report_path + ".zip"):
+                    report_path += ".zip"
+                    resp = StreamingHttpResponse(
+                        FileWrapper(open(report_path, "rb"), 8096), content_type="application/zip"
+                    )
+                    resp["Content-Length"] = os.path.getsize(report_path)
+                    resp["Content-Disposition"] = "attachment; filename=" + fname
+                else:
+                    mem_zip = create_zip(files=report_path)
+                    if mem_zip is False:
+                        resp = {"error": True, "error_value": "Can't create zip archive for report file"}
+                        return Response(resp)
+
+                    resp = StreamingHttpResponse(mem_zip, content_type="application/zip")
+                    resp["Content-Length"] = len(mem_zip.getvalue())
+                    resp["Content-Disposition"] = f"attachment; filename={report_format}.zip"
+            else:
+                resp = StreamingHttpResponse(
+                    FileWrapper(open(report_path, "rb"), 8096), content_type=content or "application/octet-stream;"
+                )
+                resp["Content-Length"] = os.path.getsize(report_path)
+                resp["Content-Disposition"] = "attachment; filename=" + fname
+
             return resp
 
         else:
             resp = {"error": True, "error_value": "Reports directory does not exist"}
             return Response(resp)
 
-    elif report_format.lower() == "all":
-        if not apiconf.taskreport.get("all"):
-            resp = {"error": True, "error_value": "Downloading all reports in one call is disabled"}
-            return Response(resp)
-
-        fname = "%s_reports.tar.bz2" % task_id
-        s = BytesIO()
-        tar = tarfile.open(name=fname, fileobj=s, mode="w:bz2")
-        for rep in os.listdir(srcdir):
-            tar.add(os.path.join(srcdir, rep), arcname=rep)
-        tar.close()
-        s.seek(0)
-        resp = StreamingHttpResponse(s, content_type="application/octet-stream;")
-        resp["Content-Length"] = str(len(s.getvalue()))
-        resp["Content-Disposition"] = "attachment; filename=" + fname
-        return resp
+    elif report_format.lower() in report_formats:
+        if report_format.lower() == "all":
+            if not apiconf.taskreport.get("all"):
+                resp = {"error": True, "error_value": "Downloading all reports in one call is disabled"}
+                return Response(resp)
 
-    elif report_format.lower() in bz_formats:
-        bzf = bz_formats[report_format.lower()]
+        report_files = report_formats[report_format.lower()]
         srcdir = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(task_id))
-        s = BytesIO()
+        if not os.path.normpath(srcdir).startswith(ANALYSIS_BASE_PATH) and path_exists(srcdir):
+            return render(request, "error.html", {"error": f"File not found {os.path.basename(srcdir)}"})
 
-        # By default go for bz2 encoded tar files (for legacy reasons.)
-        # tarmode = tar_formats.get("tar", "w:bz2")
+        mem_zip = BytesIO()
+        with zipfile.ZipFile(mem_zip, "a", zipfile.ZIP_DEFLATED, False) as zf:
+            for filedir in os.listdir(srcdir):
+                try:
+                    filepath = os.path.join(srcdir, filedir)
+                    if report_files["type"] == "-" and filedir not in report_files["files"]:
+                        if os.path.isdir(filepath):
+                            for subfile in os.listdir(filepath):
+                                zf.write(os.path.join(filepath, subfile), os.path.join(filedir, subfile))
+                        else:
+                            zf.write(filepath, filedir)
+                    if report_files["type"] == "+" and filedir in report_files["files"]:
+                        if os.path.isdir(filepath):
+                            for subfile in os.listdir(filepath):
+                                zf.write(os.path.join(filepath, subfile), os.path.join(filedir, subfile))
+                        else:
+                            zf.write(filepath, filedir)
+                except Exception as e:
+                    log.exception(e)
 
-        tar = tarfile.open(fileobj=s, mode="w:bz2")
-        if not os.path.exists(srcdir):
-            resp = {"error": True, "error_value": "Report doesn't exists"}
-            return Response(resp)
+            # exception for lite report that is under reports/lite.json
+            if report_format.lower() == "lite":
+                lite_report_path = os.path.join(srcdir, "reports", "lite.json")
+                if path_exists(lite_report_path):
+                    zf.write(lite_report_path, "reports/lite.json")
+                else:
+                    log.warning("Lite report does not exist. Did you enable 'litereport' in reporting.conf?")
 
-        for filedir in os.listdir(srcdir):
-            try:
-                if bzf["type"] == "-" and filedir not in bzf["files"]:
-                    tar.add(os.path.join(srcdir, filedir), arcname=filedir)
-                if bzf["type"] == "+" and filedir in bzf["files"]:
-                    tar.add(os.path.join(srcdir, filedir), arcname=filedir)
-            except Exception as e:
-                log.error(e, exc_info=True)
-        tar.close()
-        s.seek(0)
-        resp = StreamingHttpResponse(s, content_type="application/octet-stream;")
-        resp["Content-Length"] = str(len(s.getvalue()))
-        resp["Content-Disposition"] = "attachment; filename=" + report_format.lower()
+        mem_zip.seek(0)
+        resp = StreamingHttpResponse(mem_zip, content_type="application/zip")
+        resp["Content-Length"] = len(mem_zip.getvalue())
+        resp["Content-Disposition"] = f"attachment; filename={report_format.lower()}.zip"
         return resp
 
     else:
@@ -1164,7 +1331,6 @@ def tasks_report(request, task_id, report_format="json"):
 @csrf_exempt
 @api_view(["GET"])
 def tasks_iocs(request, task_id, detail=None):
-
     if not apiconf.taskiocs.get("enabled"):
         resp = {"error": True, "error_value": "IOC download API is disabled"}
         return Response(resp)
@@ -1173,11 +1339,19 @@ def tasks_iocs(request, task_id, detail=None):
     if check["error"]:
         return Response(check)
 
-    buf = {}
-    if repconf.mongodb.get("enabled") and not buf:
-        buf = results_db.analysis.find_one({"info.id": int(task_id)})
+    if check.get("tlp", "") in ("red", "Red"):
+        return Response({"error": True, "error_value": "Task has a TLP of RED"})
+
+
+    rtid = check.get("rtid", 0)
+    if rtid:
+        task_id = rtid
+
+    buf = {}
+    if repconf.mongodb.get("enabled") and not buf:
+        buf = mongo_find_one("analysis", {"info.id": int(task_id)}, {"behavior.calls": 0})
     if es_as_db and not buf:
-        tmp = es.search(index=fullidx, doc_type="analysis", q='info.id: "%s"' % task_id)["hits"]["hits"]
+        tmp = es.search(index=get_analysis_index(), query=get_query_by_info_id(task_id))["hits"]["hits"]
         if tmp:
             buf = tmp[-1]["_source"]
         else:
@@ -1187,15 +1361,18 @@ def tasks_iocs(request, task_id, detail=None):
         return Response(resp)
     if repconf.jsondump.get("enabled") and not buf:
         jfile = os.path.join(CUCKOO_ROOT, "storage", "analyses", "%s" % task_id, "reports", "report.json")
-        with open(jfile, "r") as jdata:
-            buf = json.load(jdata)
+        if os.path.normpath(jfile).startswith(ANALYSIS_BASE_PATH):
+            with open(jfile, "r") as jdata:
+                buf = json.load(jdata)
     if not buf:
         resp = {"error": True, "error_value": "Unable to retrieve report to parse for IOCs"}
         return Response(resp)
 
     data = {}
-    # if "certs" in buf:
-    #    data["certs"] = buf["certs"]
+    if "tr_extractor" in buf:
+        data["tr_extractor"] = buf["tr_extractor"]
+    if "certs" in buf:
+        data["certs"] = buf["certs"]
     data["detections"] = buf.get("detections")
     data["malscore"] = buf["malscore"]
     data["info"] = buf["info"]
@@ -1219,14 +1396,11 @@ def tasks_iocs(request, task_id, detail=None):
         if data["target"]["category"] == "file":
             del data["target"]["file"]["path"]
             del data["target"]["file"]["guest_paths"]
-            for x in data["target"]["file"]["yara"]:
-                for i in range(0, len(x["strings"])):
-                    x["strings"][i] = x["strings"][i].hex()
 
     data["network"] = {}
     if "network" in list(buf.keys()) and buf["network"]:
         data["network"]["traffic"] = {}
-        for netitem in ["tcp", "udp", "irc", "http", "dns", "smtp", "hosts", "domains"]:
+        for netitem in ("tcp", "udp", "irc", "http", "dns", "smtp", "hosts", "domains"):
             if netitem in buf["network"]:
                 data["network"]["traffic"][netitem + "_count"] = len(buf["network"][netitem])
             else:
@@ -1240,7 +1414,7 @@ def tasks_iocs(request, task_id, detail=None):
         data["network"]["ids"]["alerts"] = buf["suricata"]["alerts"]
         data["network"]["ids"]["http"] = buf["suricata"]["http"]
         data["network"]["ids"]["totalfiles"] = len(buf["suricata"]["files"])
-        data["network"]["ids"]["files"] = list()
+        data["network"]["ids"]["files"] = []
         for surifile in buf["suricata"]["files"]:
             if "file_info" in list(surifile.keys()):
                 tmpfile = surifile
@@ -1256,25 +1430,25 @@ def tasks_iocs(request, task_id, detail=None):
         pe = {}
         pdf = {}
         office = {}
-        if "peid_signatures" in buf["static"] and buf["static"]["peid_signatures"]:
+        if buf["static"].get("peid_signatures"):
             pe["peid_signatures"] = buf["static"]["peid_signatures"]
-        if "pe_timestamp" in buf["static"] and buf["static"]["pe_timestamp"]:
+        if buf["static"].get("pe_timestamp"):
             pe["pe_timestamp"] = buf["static"]["pe_timestamp"]
-        if "pe_imphash" in buf["static"] and buf["static"]["pe_imphash"]:
+        if buf["static"].get("pe_imphash"):
             pe["pe_imphash"] = buf["static"]["pe_imphash"]
-        if "pe_icon_hash" in buf["static"] and buf["static"]["pe_icon_hash"]:
+        if buf["static"].get("pe_icon_hash"):
             pe["pe_icon_hash"] = buf["static"]["pe_icon_hash"]
-        if "pe_icon_fuzzy" in buf["static"] and buf["static"]["pe_icon_fuzzy"]:
+        if buf["static"].get("pe_icon_fuzzy"):
             pe["pe_icon_fuzzy"] = buf["static"]["pe_icon_fuzzy"]
-        if "Objects" in buf["static"] and buf["static"]["Objects"]:
+        if buf["static"].get("Objects"):
             pdf["objects"] = len(buf["static"]["Objects"])
-        if "Info" in buf["static"] and buf["static"]["Info"]:
+        if buf["static"].get("Info"):
             if "PDF Header" in list(buf["static"]["Info"].keys()):
                 pdf["header"] = buf["static"]["Info"]["PDF Header"]
         if "Streams" in buf["static"]:
             if "/Page" in list(buf["static"]["Streams"].keys()):
                 pdf["pages"] = buf["static"]["Streams"]["/Page"]
-        if "Macro" in buf["static"] and buf["static"]["Macro"]:
+        if buf["static"].get("Macro"):
             if "Analysis" in buf["static"]["Macro"]:
                 office["signatures"] = {}
                 for item in buf["static"]["Macro"]["Analysis"]:
@@ -1316,24 +1490,26 @@ def tasks_iocs(request, task_id, detail=None):
         data["process_tree"] = {
             "pid": buf["behavior"]["processtree"][0]["pid"],
             "name": buf["behavior"]["processtree"][0]["name"],
-            "spawned_processes": [createProcessTreeNode(child_process) for child_process in buf["behavior"]["processtree"][0]["children"]],
+            "spawned_processes": [
+                createProcessTreeNode(child_process) for child_process in buf["behavior"]["processtree"][0]["children"]
+            ],
         }
     if "dropped" in buf:
         for entry in buf["dropped"]:
             tmpdict = {}
             if entry.get("clamav", False):
                 tmpdict["clamav"] = entry["clamav"]
-            if entry["sha256"]:
+            if entry.get("sha256"):
                 tmpdict["sha256"] = entry["sha256"]
-            if entry["md5"]:
+            if entry.get("md5"):
                 tmpdict["md5"] = entry["md5"]
-            if entry["yara"]:
+            if entry.get("yara"):
                 tmpdict["yara"] = entry["yara"]
-            if entry.get("trid", False):
+            if entry.get("trid"):
                 tmpdict["trid"] = entry["trid"]
-            if entry["type"]:
+            if entry.get("type"):
                 tmpdict["type"] = entry["type"]
-            if entry["guest_paths"]:
+            if entry.get("guest_paths"):
                 tmpdict["guest_paths"] = entry["guest_paths"]
             data["dropped"].append(tmpdict)
 
@@ -1342,7 +1518,7 @@ def tasks_iocs(request, task_id, detail=None):
         return Response(resp)
 
     if "static" in buf:
-        if "pe_versioninfo" in buf["static"] and buf["static"]["pe_versioninfo"]:
+        if buf["static"].get("pe_versioninfo"):
             data["static"]["pe"]["pe_versioninfo"] = buf["static"]["pe_versioninfo"]
 
     if "behavior" in buf and "summary" in buf["behavior"]:
@@ -1361,7 +1537,7 @@ def tasks_iocs(request, task_id, detail=None):
             else:
                 data["network"]["http"]["host"] = ""
             if "data" in req and "\r\n" in req["data"]:
-                data["network"]["http"]["data"] = req["data"].split("\r\n")[0]
+                data["network"]["http"]["data"] = req["data"].split("\r\n", 1)[0]
             else:
                 data["network"]["http"]["data"] = ""
             if "method" in req:
@@ -1382,7 +1558,6 @@ def tasks_iocs(request, task_id, detail=None):
         data["trid"] = buf["trid"]
     else:
         data["trid"] = ["None matched"]
-
     resp = {"error": False, "data": data}
     return Response(resp)
 
@@ -1390,7 +1565,6 @@ def tasks_iocs(request, task_id, detail=None):
 @csrf_exempt
 @api_view(["GET"])
 def tasks_screenshot(request, task_id, screenshot="all"):
-
     if not apiconf.taskscreenshot.get("enabled"):
         resp = {"error": True, "error_value": "Screenshot download API is disabled"}
         return Response(resp)
@@ -1399,32 +1573,42 @@ def tasks_screenshot(request, task_id, screenshot="all"):
     if check["error"]:
         return Response(check)
 
+    if check.get("tlp", "") in ("red", "Red"):
+        return Response({"error": True, "error_value": "Task has a TLP of RED"})
+
+
+    rtid = check.get("rtid", 0)
+    if rtid:
+        task_id = rtid
+
     srcdir = os.path.join(CUCKOO_ROOT, "storage", "analyses", "%s" % task_id, "shots")
+    if not os.path.normpath(srcdir).startswith(ANALYSIS_BASE_PATH):
+        return render(request, "error.html", {"error": f"File not found: {os.path.basename(srcdir)}"})
 
     if len(os.listdir(srcdir)) == 0:
         resp = {"error": True, "error_value": "No screenshots created for task %s" % task_id}
         return Response(resp)
 
     if screenshot == "all":
-        fname = "%s_screenshots.tar.bz2" % task_id
-        s = BytesIO()
-        tar = tarfile.open(fileobj=s, mode="w:bz2")
-        for shot in os.listdir(srcdir):
-            tar.add(os.path.join(srcdir, shot), arcname=shot)
-        tar.close()
-        s.seek(0)
-        resp = StreamingHttpResponse(s, content_type="application/octet-stream;")
-        resp["Content-Length"] = str(len(s.getvalue()))
-        resp["Content-Disposition"] = "attachment; filename=" + fname
+        mem_zip = create_zip(folder=srcdir)
+        if mem_zip is False:
+            resp = {"error": True, "error_value": "Can't create zip archive for report file"}
+            return Response(resp)
+
+        resp = StreamingHttpResponse(mem_zip, content_type="application/zip")
+        resp["Content-Length"] = len(mem_zip.getvalue())
+        resp["Content-Disposition"] = f"attachment; filename={task_id}_screenshots.zip"
         return resp
 
     else:
-        shot = srcdir + "/" + screenshot.zfill(4) + ".jpg"
-        if os.path.exists(shot):
-            resp = StreamingHttpResponse(FileWrapper(open(shot, "rb"), 8096), content_type="image/jpeg")
-            resp["Content-Length"] = os.path.getsize(shot)
-            resp["Content-Disposition"] = "attachment; filename=" + os.path.basename(shot)
-            return resp
+        for ext, ct in ((".jpg", "image/jpeg"), (".png", "image/png")):
+            shot = srcdir + "/" + screenshot.zfill(4) + ext
+            if path_exists(shot):
+                fname = f"{task_id}_{os.path.basename(shot)}"
+                resp = StreamingHttpResponse(FileWrapper(open(shot, "rb"), 8096), content_type=ct)
+                resp["Content-Length"] = os.path.getsize(shot)
+                resp["Content-Disposition"] = f"attachment; filename={fname}"
+                return resp
 
         else:
             resp = {"error": True, "error_value": "Screenshot does not exist"}
@@ -1434,7 +1618,6 @@ def tasks_screenshot(request, task_id, screenshot="all"):
 @csrf_exempt
 @api_view(["GET"])
 def tasks_pcap(request, task_id):
-
     if not apiconf.taskpcap.get("enabled"):
         resp = {"error": True, "error_value": "PCAP download API is disabled"}
         return Response(resp)
@@ -1443,8 +1626,18 @@ def tasks_pcap(request, task_id):
     if check["error"]:
         return Response(check)
 
+    if check.get("tlp", "") in ("red", "Red"):
+        return Response({"error": True, "error_value": "Task has a TLP of RED"})
+
+
+    rtid = check.get("rtid", 0)
+    if rtid:
+        task_id = rtid
+
     srcfile = os.path.join(CUCKOO_ROOT, "storage", "analyses", "%s" % task_id, "dump.pcap")
-    if os.path.exists(srcfile):
+    if not os.path.normpath(srcfile).startswith(ANALYSIS_BASE_PATH):
+        return render(request, "error.html", {"error": f"File not found: {os.path.basename(srcfile)}"})
+    if path_exists(srcfile):
         fname = "%s_dump.pcap" % task_id
         resp = StreamingHttpResponse(FileWrapper(open(srcfile, "rb"), 8096), content_type="application/vnd.tcpdump.pcap")
         resp["Content-Length"] = os.path.getsize(srcfile)
@@ -1458,8 +1651,97 @@ def tasks_pcap(request, task_id):
 
 @csrf_exempt
 @api_view(["GET"])
-def tasks_dropped(request, task_id):
+def tasks_tlspcap(request, task_id):
+    if not apiconf.tasktlspcap.get("enabled"):
+        resp = {"error": True, "error_value": "TLS PCAP download API is disabled"}
+        return Response(resp)
+
+    check = validate_task(task_id)
+    if check["error"]:
+        return Response(check)
+
+    rtid = check.get("rtid", 0)
+    if rtid:
+        task_id = rtid
+
+    srcfile = os.path.join(CUCKOO_ROOT, "storage", "analyses", "%s" % task_id, "polarproxy", "tls.pcap")
+    if not os.path.normpath(srcfile).startswith(ANALYSIS_BASE_PATH):
+        return render(request, "error.html", {"error": f"File not found: {os.path.basename(srcfile)}"})
+    if path_exists(srcfile):
+        fname = "%s_tls.pcap" % task_id
+        resp = StreamingHttpResponse(FileWrapper(open(srcfile, "rb"), 8096), content_type="application/vnd.tcpdump.pcap")
+        resp["Content-Length"] = os.path.getsize(srcfile)
+        resp["Content-Disposition"] = "attachment; filename=" + fname
+        return resp
+
+    else:
+        resp = {"error": True, "error_value": "TLS PCAP does not exist"}
+        return Response(resp)
+
+
+@csrf_exempt
+@api_view(["GET"])
+def tasks_evtx(request, task_id):
+    if not apiconf.taskevtx.get("enabled"):
+        resp = {"error": True, "error_value": "EVTX download API is disabled"}
+        return Response(resp)
+
+    check = validate_task(task_id)
+    if check["error"]:
+        return Response(check)
+
+    if check.get("tlp", "") in ("red", "Red"):
+        return Response({"error": True, "error_value": "Task has a TLP of RED"})
+
+
+    rtid = check.get("rtid", 0)
+    if rtid:
+        task_id = rtid
+
+    evtxfile = os.path.join(CUCKOO_ROOT, "storage", "analyses", "%s" % task_id, "evtx", "evtx.zip")
+    if not os.path.normpath(evtxfile).startswith(ANALYSIS_BASE_PATH):
+        return render(request, "error.html", {"error": f"File not found: {os.path.basename(evtxfile)}"})
+    if path_exists(evtxfile):
+        fname = "%s_evtx.zip" % task_id
+        resp = StreamingHttpResponse(FileWrapper(open(evtxfile, "rb")), content_type="application/zip")
+        resp["Content-Length"] = os.path.getsize(evtxfile)
+        resp["Content-Disposition"] = "attachment; filename=" + fname
+        return resp
+
+    else:
+        resp = {"error": True, "error_value": "EVTX does not exist"}
+        return Response(resp)
+
+
+@csrf_exempt
+@api_view(["GET"])
+def tasks_mitmdump(request, task_id):
+    if not apiconf.mitmdump.get("enabled"):
+        resp = {"error": True, "error_value": "Mitmdump HAR download API is disabled"}
+        return Response(resp)
+    check = validate_task(task_id)
+    if check["error"]:
+        return Response(check)
+    rtid = check.get("rtid", 0)
+    if rtid:
+        task_id = rtid
+    harfile = os.path.join(CUCKOO_ROOT, "storage", "analyses", "%s" % task_id, "mitmdump", "dump.har")
+    if not os.path.normpath(harfile).startswith(ANALYSIS_BASE_PATH):
+        return render(request, "error.html", {"error": f"File not found: {os.path.basename(harfile)}"})
+    if path_exists(harfile):
+        fname = "%s_dump.har" % task_id
+        resp = StreamingHttpResponse(FileWrapper(open(harfile, "rb")), content_type="text/plain")
+        resp["Content-Length"] = os.path.getsize(harfile)
+        resp["Content-Disposition"] = "attachment; filename=" + fname
+        return resp
+    else:
+        resp = {"error": True, "error_value": "HAR file does not exist"}
+        return Response(resp)
+
 
+@csrf_exempt
+@api_view(["GET"])
+def tasks_dropped(request, task_id):
     if not apiconf.taskdropped.get("enabled"):
         resp = {"error": True, "error_value": "Dropped File download API is disabled"}
         return Response(resp)
@@ -1468,40 +1750,49 @@ def tasks_dropped(request, task_id):
     if check["error"]:
         return Response(check)
 
+    if check.get("tlp", "") in ("red", "Red"):
+        return Response({"error": True, "error_value": "Task has a TLP of RED"})
+
+
+    rtid = check.get("rtid", 0)
+    if rtid:
+        task_id = rtid
+
     srcdir = os.path.join(CUCKOO_ROOT, "storage", "analyses", "%s" % task_id, "files")
+    if not os.path.normpath(srcdir).startswith(ANALYSIS_BASE_PATH):
+        return render(request, "error.html", {"error": f"File not found: {os.path.basename(srcdir)}"})
 
-    if not os.path.exists(srcdir) or not len(os.listdir(srcdir)):
+    if not path_exists(srcdir) or not len(os.listdir(srcdir)):
         resp = {"error": True, "error_value": "No files dropped for task %s" % task_id}
         return Response(resp)
 
     else:
-        fname = "%s_dropped.tar.bz2" % task_id
-        s = BytesIO()
-        tar = tarfile.open(fileobj=s, mode="w:bz2")
-        for dirfile in os.listdir(srcdir):
-            tar.add(os.path.join(srcdir, dirfile), arcname=dirfile)
-        tar.close()
-        s.seek(0)
+        mem_zip = create_zip(folder=srcdir, encrypted=True)
+        if mem_zip is False:
+            resp = {"error": True, "error_value": "Can't create zip archive for report file"}
+            return Response(resp)
 
         # in Mb
         dropped_max_size_limit = request.GET.get("max_size", False)
         # convert to MB
-        size = len(s.getvalue())
-        size_in_mb = int(size/1024/1024)
+        size = len(mem_zip.getvalue())
+        size_in_mb = int(size / 1024 / 1024)
         if dropped_max_size_limit and size_in_mb > int(dropped_max_size_limit):
-            resp = {"error": True, "error_value": "Archive is bigger than max size. Current size is {}".format(size_in_mb)}
+            resp = {
+                "error": True,
+                "error_value": "Archive is bigger than max size. Current size is {}".format(size_in_mb),
+            }
             return Response(resp)
 
-        resp = StreamingHttpResponse(s, content_type="application/octet-stream;")
-        resp["Content-Length"] = str(len(s.getvalue()))
-        resp["Content-Disposition"] = "attachment; filename=" + fname
+        resp = StreamingHttpResponse(mem_zip, content_type="application/zip")
+        resp["Content-Length"] = len(mem_zip.getvalue())
+        resp["Content-Disposition"] = f"attachment; filename={task_id}_dropped.zip"
         return resp
 
 
 @csrf_exempt
 @api_view(["GET"])
 def tasks_surifile(request, task_id):
-
     if not apiconf.taskdropped.get("enabled"):
         resp = {"error": True, "error_value": "Suricata File download API is disabled"}
         return Response(resp)
@@ -1510,13 +1801,21 @@ def tasks_surifile(request, task_id):
     if check["error"]:
         return Response(check)
 
-    srcfile = os.path.join(CUCKOO_ROOT, "storage", "analyses", "%s" % task_id, "logs", "files.zip")
+    if check.get("tlp", "") in ("red", "Red"):
+        return Response({"error": True, "error_value": "Task has a TLP of RED"})
+
+
+    rtid = check.get("rtid", 0)
+    if rtid:
+        task_id = rtid
 
-    if os.path.exists(srcfile):
-        fname = "%s_surifiles.zip" % task_id
+    srcfile = os.path.join(CUCKOO_ROOT, "storage", "analyses", "%s" % task_id, "logs", "files.zip")
+    if not os.path.normpath(srcfile).startswith(ANALYSIS_BASE_PATH):
+        return render(request, "error.html", {"error": f"File not found: {os.path.basename(srcfile)}"})
+    if path_exists(srcfile):
         resp = StreamingHttpResponse(FileWrapper(open(srcfile, "rb"), 8192), content_type="application/octet-stream;")
         resp["Content-Length"] = os.path.getsize(srcfile)
-        resp["Content-Disposition"] = "attachment; filename=" + fname
+        resp["Content-Disposition"] = f"attachment; filename={task_id}_surifiles.zip"
         return resp
 
     else:
@@ -1541,7 +1840,11 @@ def tasks_rollingsuri(request, window=60):
     gen_time = datetime.now() - timedelta(minutes=window)
     dummy_id = ObjectId.from_datetime(gen_time)
     result = list(
-        results_db.analysis.find({"suricata.alerts": {"$exists": True}, "_id": {"$gte": dummy_id}}, {"suricata.alerts": 1, "info.id": 1})
+        mongo_find(
+            "analysis",
+            {"suricata.alerts": {"$exists": True}, "_id": {"$gte": dummy_id}},
+            {"suricata.alerts": 1, "info.id": 1},
+        )
     )
     resp = []
     for e in result:
@@ -1552,57 +1855,9 @@ def tasks_rollingsuri(request, window=60):
     return Response(resp)
 
 
-@csrf_exempt
-@api_view(["GET"])
-def tasks_rollingshrike(request, window=60, msgfilter=None):
-    window = int(window)
-
-    if not apiconf.rollingshrike.get("enabled"):
-        resp = {"error": True, "error_value": "Rolling Shrike API is disabled"}
-        return Response(resp)
-    maxwindow = apiconf.rollingshrike.get("maxwindow")
-    if maxwindow > 0:
-        if window > maxwindow:
-            resp = {"error": True, "error_value": "The Window You Specified is greater than the configured maximum"}
-            return Response(resp)
-
-    gen_time = datetime.now() - timedelta(minutes=window)
-    dummy_id = ObjectId.from_datetime(gen_time)
-    if msgfilter:
-        result = results_db.analysis.find(
-            {
-                "info.shrike_url": {"$exists": True, "$ne": None},
-                "_id": {"$gte": dummy_id},
-                "info.shrike_msg": {"$regex": msgfilter, "$options": "-1"},
-            },
-            {"info.id": 1, "info.shrike_msg": 1, "info.shrike_sid": 1, "info.shrike_url": 1, "info.shrike_refer": 1},
-            sort=[("_id", pymongo.DESCENDING)],
-        )
-    else:
-        result = results_db.analysis.find(
-            {"info.shrike_url": {"$exists": True, "$ne": None}, "_id": {"$gte": dummy_id}},
-            {"info.id": 1, "info.shrike_msg": 1, "info.shrike_sid": 1, "info.shrike_url": 1, "info.shrike_refer": 1},
-            sort=[("_id", pymongo.DESCENDING)],
-        )
-
-    resp = []
-    for e in result:
-        tmp = {}
-        tmp["id"] = e["info"]["id"]
-        tmp["shrike_msg"] = e["info"]["shrike_msg"]
-        tmp["shrike_sid"] = e["info"]["shrike_sid"]
-        tmp["shrike_url"] = e["info"]["shrike_url"]
-        if "shrike_refer" in e["info"] and e["info"]["shrike_refer"]:
-            tmp["shrike_refer"] = e["info"]["shrike_refer"]
-        resp.append(tmp)
-
-    return Response(resp)
-
-
 @csrf_exempt
 @api_view(["GET"])
 def tasks_procmemory(request, task_id, pid="all"):
-
     if not apiconf.taskprocmemory.get("enabled"):
         resp = {"error": True, "error_value": "Process memory download API is disabled"}
         return Response(resp)
@@ -1611,58 +1866,76 @@ def tasks_procmemory(request, task_id, pid="all"):
     if check["error"]:
         return Response(check)
 
+    if check.get("tlp", "") in ("red", "Red"):
+        return Response({"error": True, "error_value": "Task has a TLP of RED"})
+
+
+    rtid = check.get("rtid", 0)
+    if rtid:
+        task_id = rtid
+
     # Check if any process memory dumps exist
-    srcdir = os.path.join(CUCKOO_ROOT, "storage", "analyses", "%s" % task_id, "memory")
-    if not os.path.exists(srcdir):
+    srcdir = os.path.join(CUCKOO_ROOT, "storage", "analyses", f"{task_id}", "memory")
+    if not path_exists(srcdir):
         resp = {"error": True, "error_value": "No memory dumps saved"}
         return Response(resp)
 
+    parent_folder = os.path.dirname(srcdir)
+    analysis_dir = os.path.join(CUCKOO_ROOT, "storage", "analyses", f"{task_id}")
     if pid == "all":
         if not apiconf.taskprocmemory.get("all"):
             resp = {"error": True, "error_value": "Downloading of all process memory dumps is disabled"}
             return Response(resp)
-
-        fname = "%s_procdumps.tar.bz2" % task_id
-        s = BytesIO()
-        tar = tarfile.open(fileobj=s, mode="w:bz2")
-        for memdump in os.listdir(srcdir):
-            tar.add(os.path.join(srcdir, memdump), arcname=memdump)
-        tar.close()
-        s.seek(0)
-        resp = StreamingHttpResponse(s, content_type="application/octet-stream;")
-        resp["Content-Length"] = str(len(s.getvalue()))
-        resp["Content-Disposition"] = "attachment; filename=" + fname
+        if USE_SEVENZIP:
+            zip_path = os.path.join(analysis_dir, "procdumps.zip")
+            try:
+                subprocess.check_call(["/usr/bin/7z", f"-p{settings.ZIP_PWD.decode()}", "a", zip_path, srcdir])
+            except subprocess.CalledProcessError:
+                resp = {"error": True, "error_value": "error compressing file"}
+                return Response(resp)
+            # using `with` prematurely closes the file
+            zip_fd = open(zip_path, "rb")
+            resp = StreamingHttpResponse(zip_fd, content_type="application/zip")
+            resp["Content-Length"] = os.path.getsize(zip_path)
+        else:
+            mem_zip = create_zip(folder=srcdir, encrypted=True)
+            if mem_zip is False:
+                resp = {"error": True, "error_value": "Can't create zip archive for report file"}
+                return Response(resp)
+            resp = StreamingHttpResponse(mem_zip, content_type="application/zip")
+            resp["Content-Length"] = len(mem_zip.getvalue())
+        resp["Content-Disposition"] = f"attachment; filename={task_id}_procdumps.zip"
+        return resp
     else:
-        srcfile = srcdir + "/" + pid + ".dmp"
-        if os.path.exists(srcfile):
-            if apiconf.taskprocmemory.get("compress"):
-                fname = srcfile.split("/")[-1]
-                s = BytesIO()
-                tar = tarfile.open(fileobj=s, mode="w:bz2")
-                tar.add(srcfile, arcname=fname)
-                tar.close()
-                s.seek(0)
-                resp = StreamingHttpResponse(s, content_type="application/octet-stream;")
-                archive = "%s-%s_dmp.tar.bz2" % (task_id, pid)
-                resp["Content-Length"] = str(len(s.getvalue()))
-                resp["Content-Disposition"] = "attachment; filename=" + archive
+        filepath = os.path.join(parent_folder, pid + ".dmp")
+        if path_exists(filepath):
+            if USE_SEVENZIP:
+                zip_path = os.path.join(analysis_dir, f"{task_id}-{pid}_dmp.zip")
+                try:
+                    subprocess.check_call([SEVENZIP_PATH, f"-p{settings.ZIP_PWD.decode()}", "a", zip_path, filepath])
+                except subprocess.CalledProcessError:
+                    resp = {"error": True, "error_value": "error compressing file"}
+                    return Response(resp)
+                zip_fd = open(zip_path, "rb")
+                resp = StreamingHttpResponse(zip_fd, content_type="application/zip")
+                resp["Content-Length"] = os.path.getsize(zip_path)
             else:
-                mime = "application/octet-stream"
-                fname = "%s-%s.dmp" % (task_id, pid)
-                resp = StreamingHttpResponse(FileWrapper(open(srcfile, "rb"), 8096), content_type=mime)
-                resp["Content-Length"] = os.path.getsize(srcfile)
-                resp["Content-Disposition"] = "attachment; filename=" + fname
+                mem_zip = create_zip(files=filepath, encrypted=True)
+                if mem_zip is False:
+                    resp = {"error": True, "error_value": "Can't create zip archive for report file"}
+                    return Response(resp)
+                resp = StreamingHttpResponse(mem_zip, content_type="application/zip")
+                resp["Content-Length"] = len(mem_zip.getvalue())
+            resp["Content-Disposition"] = f"attachment; filename={task_id}-{pid}_dmp.zip"
+            return resp
         else:
-            resp = {"error": True, "error_value": "Process memory dump does not exist for " "pid %s" % pid}
+            resp = {"error": True, "error_value": "Process memory dump does not exist for pid %s" % pid}
             return Response(resp)
 
-    return resp
-
 
 @csrf_exempt
 @api_view(["GET"])
 def tasks_fullmemory(request, task_id):
-
     if not apiconf.taskfullmemory.get("enabled"):
         resp = {"error": True, "error_value": "Full memory download API is disabled"}
         return Response(resp)
@@ -1671,31 +1944,30 @@ def tasks_fullmemory(request, task_id):
     if check["error"]:
         return Response(check)
 
+    if check.get("tlp", "") in ("red", "Red"):
+        return Response({"error": True, "error_value": "Task has a TLP of RED"})
+
+
+    rtid = check.get("rtid", 0)
+    if rtid:
+        task_id = rtid
+
     filename = ""
     file_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(task_id), "memory.dmp")
-    if os.path.exists(file_path):
+    if path_exists(file_path):
         filename = os.path.basename(file_path)
-    elif os.path.exists(file_path + ".zip"):
+    elif path_exists(file_path + ".zip"):
         file_path = os.path.join(CUCKOO_ROOT, "storage", "analyses", str(task_id), "memory.dmp.zip")
-        if os.path.exists(file_path):
+        if path_exists(file_path):
             filename = os.path.basename(file_path)
-    elif repconf.distributed.enabled:
-        # check for memdump on slave
-        try:
-            res = requests.get("http://127.0.0.1:9003/task/{task_id}".format(task_id=task_id), verify=False, timeout=30)
-            if res and res.ok and res.json()["status"] == 1:
-                url = res.json()["url"]
-                dist_task_id = res.json()["task_id"]
-                return redirect(url.replace(":8090", ":8000") + "apiv2/tasks/get/fullmemory/" + str(dist_task_id) + "/", permanent=True)
-        except Exception as e:
-            log.error(e)
 
     if filename:
         content_type = "application/octet-stream"
         chunk_size = 8192
+        fname = f"{task_id}_{filename}"
         response = StreamingHttpResponse(FileWrapper(open(file_path, "rb"), chunk_size), content_type=content_type)
         response["Content-Length"] = os.path.getsize(file_path)
-        response["Content-Disposition"] = "attachment; filename=%s" % filename
+        response["Content-Disposition"] = f"attachment; filename={fname}"
         return response
     else:
         resp = {"error": True, "error_value": "Memory dump not found for task " + task_id}
@@ -1705,41 +1977,72 @@ def tasks_fullmemory(request, task_id):
 @csrf_exempt
 @api_view(["GET"])
 def file(request, stype, value):
-
-    if not apiconf.sampledl.get("enabled"):
+    if not apiconf.sampledl.get("enabled", False):
         resp = {"error": True, "error_value": "Sample download API is disabled"}
         return Response(resp)
 
+    # This Func is not Synced with views.py "def file()"
+
     file_hash = False
-    if stype == "md5":
-        file_hash = db.find_sample(md5=value).to_dict()["sha256"]
-    elif stype == "sha1":
-        file_hash = db.find_sample(sha1=value).to_dict()["sha256"]
-    elif stype == "sha256":
+    if stype in ("md5", "sha1", "sha256"):
         file_hash = value
     elif stype == "task":
         check = validate_task(value)
         if check["error"]:
             return Response(check)
+
         sid = db.view_task(value).to_dict()["sample_id"]
         file_hash = db.view_sample(sid).to_dict()["sha256"]
 
-    sample = os.path.join(CUCKOO_ROOT, "storage", "binaries", file_hash)
-    if os.path.exists(sample):
-        resp = StreamingHttpResponse(FileWrapper(open(sample, "rb"), 8096), content_type="application/octet-stream")
-        resp["Content-Length"] = os.path.getsize(sample)
-        resp["Content-Disposition"] = "attachment; filename=" + "%s.bin" % file_hash
-        return resp
+    if not file_hash:
+        resp = {"error": True, "error_value": "Sample %s was not found" % file_hash}
+        return Response(resp)
 
-    else:
+    paths = db.sample_path_by_hash(sample_hash=file_hash)
+
+    if not paths:
         resp = {"error": True, "error_value": "Sample %s was not found" % file_hash}
-        return Response(file_hash)
+        return Response(resp)
+
+    for sample in paths:
+        if request.GET.get("encrypted"):
+            # Check if file exists in temp folder
+            zip_path = f"/tmp/{file_hash}.zip"
+            file_exists = os.path.isfile(zip_path)
+            if file_exists:
+                resp = StreamingHttpResponse(FileWrapper(open(zip_path, "rb"), 8096), content_type="application/zip")
+                resp["Content-Disposition"] = f"attachment; filename={file_hash}.zip"
+                return resp
+
+            if USE_SEVENZIP:
+                try:
+                    subprocess.check_call([SEVENZIP_PATH, f"-p{settings.ZIP_PWD.decode()}", "a", zip_path, sample])
+                except subprocess.CalledProcessError:
+                    resp = {"error": True, "error_value": "error compressing file"}
+                    return Response(resp)
+                zip_fd = open(zip_path, "rb")
+                resp = StreamingHttpResponse(zip_fd, content_type="application/zip")
+                resp["Content-Length"] = os.path.getsize(zip_path)
+                resp["Content-Disposition"] = f"attachment; filename={file_hash}.zip"
+                return resp
+            else:
+                # If files does not exist encrypt and move to tmp folder
+                with pyzipper.AESZipFile(zip_path, "w", encryption=pyzipper.WZ_AES) as zf:
+                    zf.setpassword(b"infected")
+                    zf.write(sample, os.path.basename(sample), zipfile.ZIP_DEFLATED)
+                resp = StreamingHttpResponse(FileWrapper(open(zip_path, "rb"), 8096), content_type="application/zip")
+                resp["Content-Disposition"] = f"attachment; filename={file_hash}.zip"
+            return resp
+        else:
+            resp = StreamingHttpResponse(FileWrapper(open(sample, "rb"), 8096), content_type="application/octet-stream")
+            resp["Content-Length"] = os.path.getsize(sample)
+            resp["Content-Disposition"] = f"attachment; filename={file_hash}.bin"
+        return resp
 
 
 @csrf_exempt
 @api_view(["GET"])
 def machines_list(request):
-
     if not apiconf.machinelist.get("enabled"):
         resp = {"error": True, "error_value": "Machine list API is disabled"}
         return Response(resp)
@@ -1755,8 +2058,27 @@ def machines_list(request):
 
 @csrf_exempt
 @api_view(["GET"])
-def machines_view(request, name=None):
+def exit_nodes_list(request):
+    if not apiconf.list_exitnodes.get("enabled"):
+        resp = {"error": True, "error_value": "Exit nodes list API is disabled"}
+        return Response(resp)
 
+    resp = {}
+    resp["data"] = []
+    resp["error"] = False
+    resp["data"] += ["socks:" + sock5 for sock5 in _load_socks5_operational() or []]
+    resp["data"] += ["vpn:" + vpn for vpn in vpns.keys() or []]
+    if routing_conf.tor.enabled:
+        resp["data"].append("tor")
+    if routing_conf.inetsim.enabled:
+        resp["data"].append("inetsim")
+
+    return Response(resp)
+
+
+@csrf_exempt
+@api_view(["GET"])
+def machines_view(request, name=None):
     if not apiconf.machineview.get("enabled"):
         resp = {"error": True, "error_value": "Machine view API is disabled"}
         return Response(resp)
@@ -1788,16 +2110,20 @@ def cuckoo_status(request):
         resp["error_value"] = "Cuckoo Status API is disabled"
     else:
         resp["error"] = False
+        tasks_dict_with_counts = db.get_tasks_status_count()
+        total_sum = 0
+        if isinstance(tasks_dict_with_counts, dict):
+            total_sum = sum(tasks_dict_with_counts.values())
         resp["data"] = dict(
             version=CUCKOO_VERSION,
             hostname=socket.gethostname(),
             machines=dict(total=len(db.list_machines()), available=db.count_machines_available()),
             tasks=dict(
-                total=db.count_tasks(),
-                pending=db.count_tasks("pending"),
-                running=db.count_tasks("running"),
-                completed=db.count_tasks("completed"),
-                reported=db.count_tasks("reported"),
+                total=total_sum,
+                pending=tasks_dict_with_counts.get("pending", 0),
+                running=tasks_dict_with_counts.get("running", 0),
+                completed=tasks_dict_with_counts.get("completed", 0),
+                reported=tasks_dict_with_counts.get("reported", 0),
             ),
         )
 
@@ -1815,7 +2141,12 @@ def cuckoo_status(request):
 
             # add more from https://pypi.org/project/psutil/
             resp["data"]["server"] = {
-                "storage": {"free": hdd_free, "total": hdd_total, "used": hdd_used, "used_by": "{}%".format(hdd_percent_used)},
+                "storage": {
+                    "free": hdd_free,
+                    "total": hdd_total,
+                    "used": hdd_used,
+                    "used_by": "{}%".format(hdd_percent_used),
+                },
                 "ram": {"free": ram_free, "total": ram_total, "used": ram_used},
             }
     return Response(resp)
@@ -1824,14 +2155,13 @@ def cuckoo_status(request):
 @csrf_exempt
 @api_view(["GET"])
 def task_x_hours(request):
-
     session = db.Session()
     res = (
         session.query(Task)
         .filter(Task.added_on.between(datetime.datetime.now(), datetime.datetime.now() - datetime.timedelta(days=1)))
         .all()
     )
-    results = dict()
+    results = {}
     if res:
         for date, samples in res:
             results.setdefault(date.strftime("%Y-%m-%eT%H:%M:00"), samples)
@@ -1843,7 +2173,6 @@ def task_x_hours(request):
 @csrf_exempt
 @api_view(["GET"])
 def tasks_latest(request, hours):
-
     resp = {}
     resp["error"] = False
     timestamp = datetime.now() - timedelta(hours=int(hours))
@@ -1855,7 +2184,6 @@ def tasks_latest(request, hours):
 @csrf_exempt
 @api_view(["GET"])
 def tasks_payloadfiles(request, task_id):
-
     if not apiconf.payloadfiles.get("enabled"):
         resp = {"error": True, "error_value": "CAPE payload file download API is disabled"}
         return Response(resp)
@@ -1864,38 +2192,35 @@ def tasks_payloadfiles(request, task_id):
     if check["error"]:
         return Response(check)
 
-    try:
-        zippwd = settings.ZIP_PWD
-    except AttributeError:
-        zippwd = b"infected"
+    if check.get("tlp", "") in ("red", "Red"):
+        return Response({"error": True, "error_value": "Task has a TLP of RED"})
 
-    capepath = os.path.join(CUCKOO_ROOT, "storage", "analyses", task_id, "CAPE")
 
-    if os.path.exists(capepath):
-        if not HAVE_PYZIPPER:
-            return Response({"error": True, "error_value": "Install pyzipper to be able to download files"})
-        mem_zip = BytesIO()
-        with pyzipper.AESZipFile(mem_zip, "w", compression=pyzipper.ZIP_LZMA, encryption=pyzipper.WZ_AES) as zf:
-            zf.setpassword(zippwd)
-            for fname in next(os.walk(capepath))[2]:
-                if len(fname) == 64:
-                    filepath = os.path.join(capepath, fname)
-                    with open(filepath, "rb") as f:
-                        zf.writestr(os.path.basename(filepath), f.read())
+    rtid = check.get("rtid", 0)
+    if rtid:
+        task_id = rtid
+
+    srcdir = os.path.join(CUCKOO_ROOT, "storage", "analyses", task_id, "CAPE")
+
+    if not os.path.normpath(srcdir).startswith(ANALYSIS_BASE_PATH):
+        return render(request, "error.html", {"error": f"File not found: {os.path.basename(srcdir)}"})
+
+    if path_exists(srcdir):
+        mem_zip = create_zip(folder=srcdir, encrypted=True)
+        if mem_zip is False:
+            resp = {"error": True, "error_value": "Can't create zip archive for report file"}
+            return Response(resp)
 
-        mem_zip.seek(0)
         resp = StreamingHttpResponse(mem_zip, content_type="application/zip")
         resp["Content-Length"] = len(mem_zip.getvalue())
         resp["Content-Disposition"] = f"attachment; filename=cape_payloads_{task_id}.zip"
         return resp
-    else:
-        return Response({"error": True, "error_value": f"No CAPE file(s) for task {task_id}."})
+    return Response({"error": True, "error_value": f"No CAPE file(s) for task {task_id}."})
 
 
 @csrf_exempt
 @api_view(["GET"])
 def tasks_procdumpfiles(request, task_id):
-
     if not apiconf.procdumpfiles.get("enabled"):
         resp = {"error": True, "error_value": "Procdump file download API is disabled"}
         return Response(resp)
@@ -1904,29 +2229,23 @@ def tasks_procdumpfiles(request, task_id):
     if check["error"]:
         return Response(check)
 
-    try:
-        zippwd = settings.ZIP_PWD
-    except AttributeError:
-        zippwd = b"infected"
+    if check.get("tlp", "") in ("red", "Red"):
+        return Response({"error": True, "error_value": "Task has a TLP of RED"})
 
-    # ToDo add all/one
 
-    procdumppath = os.path.join(CUCKOO_ROOT, "storage", "analyses", task_id, "procdump")
+    rtid = check.get("rtid", 0)
+    if rtid:
+        task_id = rtid
 
-    # ToDo check bad rturn
-    if os.path.exists(procdumppath):
-        if not HAVE_PYZIPPER:
-            return Response({"error": True, "error_value": "Install pyzipper to be able to download files"})
-        mem_zip = BytesIO()
-        with pyzipper.AESZipFile(mem_zip, "w", compression=pyzipper.ZIP_LZMA, encryption=pyzipper.WZ_AES) as zf:
-            zf.setpassword(zippwd)
-            for fname in next(os.walk(procdumppath))[2]:
-                if len(fname) == 64:
-                    filepath = os.path.join(procdumppath, fname)
-                    with open(filepath, "rb") as f:
-                        zf.writestr(os.path.basename(filepath), f.read())
+    # ToDo add all/one
+
+    srcdir = os.path.join(CUCKOO_ROOT, "storage", "analyses", task_id, "procdump")
+    if path_exists(srcdir):
+        mem_zip = create_zip(folder=srcdir, encrypted=True)
+        if mem_zip is False:
+            resp = {"error": True, "error_value": "Can't create zip archive for report file"}
+            return Response(resp)
 
-        mem_zip.seek(0)
         resp = StreamingHttpResponse(mem_zip, content_type="application/zip")
         resp["Content-Length"] = len(mem_zip.getvalue())
         resp["Content-Disposition"] = f"attachment; filename=cape_payloads_{task_id}.zip"
@@ -1939,7 +2258,6 @@ def tasks_procdumpfiles(request, task_id):
 @csrf_exempt
 @api_view(["GET"])
 def tasks_config(request, task_id, cape_name=False):
-
     if not apiconf.capeconfig.get("enabled"):
         resp = {"error": True, "error_value": "Config download API is disabled"}
         return Response(resp)
@@ -1948,74 +2266,68 @@ def tasks_config(request, task_id, cape_name=False):
     if check["error"]:
         return Response(check)
 
-    buf = dict()
+    if check.get("tlp", "") in ("red", "Red"):
+        return Response({"error": True, "error_value": "Task has a TLP of RED"})
+
+
+    rtid = check.get("rtid", 0)
+    if rtid:
+        task_id = rtid
+
+    buf = {}
     if repconf.mongodb.get("enabled"):
-        buf = results_db.analysis.find_one({"info.id": int(task_id)}, {"CAPE": 1}, sort=[("_id", pymongo.DESCENDING)])
-    if repconf.jsondump.get("enabled") and not buf:
-        jfile = os.path.join(CUCKOO_ROOT, "storage", "analyses", "%s" % task_id, "reports", "report.json")
-        with open(jfile, "r") as jdata:
-            buf = json.load(jdata)
+        buf = mongo_find_one("analysis", {"info.id": int(task_id)}, {"CAPE.configs": 1}, sort=[("_id", -1)])
     if es_as_db and not buf:
-        tmp = es.search(index=fullidx, doc_type="analysis", q='info.id: "%s"' % str(task_id))["hits"]["hits"]
+        tmp = es.search(index=get_analysis_index(), query=get_query_by_info_id(task_id))["hits"]["hits"]
         if len(tmp) > 1:
             buf = tmp[-1]["_source"]
         elif len(tmp) == 1:
             buf = tmp[0]["_source"]
         else:
             buf = None
+    if repconf.jsondump.get("enabled") and not buf:
+        jfile = os.path.join(CUCKOO_ROOT, "storage", "analyses", "%s" % task_id, "reports", "report.json")
+        if os.path.normpath(jfile).startswith(ANALYSIS_BASE_PATH):
+            with open(jfile, "r") as jdata:
+                buf = json.load(jdata)
 
-    if buf.get("CAPE"):
-        try:
-            buf["CAPE"] = json.loads(decompress(buf["CAPE"]))
-        except:
-            pass
+    if buf and not buf.get("CAPE"):
+        resp = {"error": True, "error_value": "Unable to retrieve results for task {}.".format(task_id)}
+        return Response(resp)
 
-        if isinstance(buf, dict) and buf.get("CAPE", False):
-            try:
-                buf["CAPE"] = json.loads(decompress(buf["CAPE"]))
-            except:
-                # In case compress results processing module is not enabled
-                pass
-            data = []
-            if not isinstance(buf["CAPE"], list) and buf["CAPE"].get("configs"):
-                if cape_name and buf["CAPE"]["configs"].get("cape_name", "") == cape_name:
-                    return Response({cape_name.lower(): buf["CAPE"]["configs"][cape_name]})
-                data = buf["CAPE"]["configs"]
-            if data:
-                resp = {"error": False, "configs": data}
-            else:
-                resp = {"error": True, "error_value": "CAPE config for task {} does not exist.".format(task_id)}
-            return Response(resp)
+    if isinstance(buf, dict) and buf.get("CAPE", False):
+        if zlib_compresion:
+            buf["CAPE"] = json.loads(decompress(buf["CAPE"]))
+        data = []
+        if not isinstance(buf["CAPE"], list) and buf["CAPE"].get("configs"):
+            if cape_name and buf["CAPE"]["configs"].get(cape_name, "") == cape_name:
+                return Response({cape_name.lower(): buf["CAPE"]["configs"][cape_name]})
+            data = buf["CAPE"]["configs"]
+        if data:
+            resp = {"error": False, "configs": data}
         else:
             resp = {"error": True, "error_value": "CAPE config for task {} does not exist.".format(task_id)}
-            return Response(resp)
+        return Response(resp)
     else:
-        resp = {"error": True, "error_value": "Unable to retrieve results for task {}.".format(task_id)}
+        resp = {"error": True, "error_value": "CAPE config for task {} does not exist.".format(task_id)}
         return Response(resp)
 
 
-"""
-
 @csrf_exempt
-@api_view(['POST'])
-#should be securized by checking category, this is just an example how easy to extend webgui with external tools
+@api_view(["POST"])
+# should be securized by checking category, this is just an example how easy to extend webgui with external tools
 def post_processing(request, category, task_id):
-
     content = request.data.get("content", "")
     if content and category:
         content = json.loads(content)
         if not content:
             return Response({"error": True, "msg": "Missed content data or category"})
-        buf = results_db.analysis.find_one({"info.id": int(task_id)}, {"_id": 1})
-        if not buf:
-            return Response({"error": True, "msg": "Task id doesn't exist"})
-        results_db.analysis.update({"_id": ObjectId(buf["_id"])}, {"$set": {category: content}})
+        _ = mongo_find_one_and_update("analysis", {"info.id": int(task_id)}, {"$set": {category: content}})
         resp = {"error": False, "msg": "Added under the key {}".format(category)}
     else:
         resp = {"error": True, "msg": "Missed content data or category"}
 
     return Response(resp)
-"""
 
 
 @csrf_exempt
@@ -2033,6 +2345,7 @@ def statistics_data(requests, days):
 @api_view(["POST"])
 def tasks_delete_many(request):
     response = {}
+    delete_mongo = request.POST.get("delete_mongo", True)
     for task_id in request.POST.get("ids", "").split(",") or []:
         task_id = int(task_id)
         task = db.view_task(task_id)
@@ -2042,11 +2355,8 @@ def tasks_delete_many(request):
                 continue
             if db.delete_task(task_id):
                 delete_folder(os.path.join(CUCKOO_ROOT, "storage", "analyses", "%d" % task_id))
-            task = results_db.analysis.find_one({"info.id": task_id})
-            if task is not None:
-                for processes in task.get("behavior", {}).get("processes", []):
-                    [results_db.calls.remove(call) for call in processes.get("calls", [])]
-                results_db.analysis.remove({"info.id": task_id})
+            if delete_mongo:
+                mongo_delete_data(task_id)
         else:
             response.setdefault(task_id, "not exists")
     response["status"] = "OK"
@@ -2056,3 +2366,199 @@ def tasks_delete_many(request):
 def limit_exceeded(request, exception):
     resp = {"error": True, "error_value": "Rate limit exceeded for this API"}
     return Response(resp)
+
+
+dl_service_map = {
+    "VirusTotal": "vtdl",
+}
+
+
+@csrf_exempt
+@api_view(["POST"])
+def tasks_download_services(request):
+    # Check if this API function is enabled
+    if not apiconf.downloading_services.get("enabled"):
+        return Response({"error": True, "error_value": "Download sample API is Disabled"})
+    resp = {}
+    hashes = request.POST.get("hashes").strip()
+    if not hashes:
+        return Response({"error": True, "error_value": "hashes value is empty"})
+    resp["error"] = False
+    # Parse potential POST options (see submission/views.py)
+    options = request.POST.get("options", "")
+    custom = request.POST.get("custom", "")
+    machine = request.POST.get("machine", "")
+    opt_filename = get_user_filename(options, custom)
+
+    details = {}
+    task_machines = []
+    vm_list = []
+    opt_apikey = False
+    opts = get_options(options)
+    if opts:
+        opt_apikey = opts.get("apikey", False)
+
+    for vm in db.list_machines():
+        vm_list.append(vm.label)
+    if machine.lower() == "all":
+        if not apiconf.filecreate.get("allmachines"):
+            resp = {"error": True, "error_value": "Machine=all is disabled using the API"}
+            return Response(resp)
+        for entry in vm_list:
+            task_machines.append(entry)
+    else:
+        # Check if VM is in our machines table
+        if machine == "" or machine in vm_list:
+            task_machines.append(machine)
+        # Error if its not
+        else:
+            resp = {
+                "error": True,
+                "error_value": "Machine '{0}' does not exist. Available: {1}".format(machine, ", ".join(vm_list)),
+            }
+            return Response(resp)
+
+    details = {
+        "errors": [],
+        "content": False,
+        "request": request,
+        "task_id": [],
+        "url": False,
+        "params": {},
+        "headers": {},
+        "path": "",
+        "fhash": False,
+        "options": options,
+        "only_extraction": False,
+        "service": "",
+        "user_id": request.user.id or 0,
+    }
+
+    if opt_apikey:
+        details["apikey"] = opt_apikey
+
+    details = download_from_3rdparty(hashes, details, opt_filename)
+    if isinstance(details.get("task_ids"), list):
+        tasks_count = len(details["task_ids"])
+    else:
+        tasks_count = 0
+    if tasks_count > 0:
+        resp["data"] = {}
+        resp["errors"] = details["errors"]
+        resp["data"]["task_ids"] = details.get("task_ids", [])
+        if len(details.get("task_ids", [])) == 1:
+            resp["data"]["message"] = "Task ID {0} has been submitted".format(str(details.get("task_ids", [])[0]))
+        else:
+            resp["data"]["message"] = "Task IDs {0} have been submitted".format(
+                ", ".join(str(x) for x in details.get("task_ids", []))
+            )
+    else:
+        resp = {"error": True, "error_value": "Error adding task to database", "errors": details["errors"]}
+
+    return Response(resp)
+
+
+@csrf_exempt
+@api_view(["POST"])
+def tasks_file_stream(request, task_id):
+    """Streams a file from the running machine with matching task_id."""
+
+    def _stream_iterator(fp, guest_name, chunk_size=1024):
+        pos = 0
+        while True:
+            machine = db.view_machine(guest_name)
+            if machine.status != "running":
+                break
+            with open(fp, "rb") as fd:
+                if pos:
+                    fd.seek(pos)
+                while True:
+                    content = fd.read(chunk_size)
+                    if not content:
+                        break
+                    yield content
+                    pos = fd.tell()
+
+    if not apiconf.taskstatus.get("enabled"):
+        resp = {"error": True, "error_value": "Task status API is disabled"}
+        return Response(resp)
+    resp = {}
+    task = db.view_task(task_id)
+    if not task:
+        resp = {"error": True, "error_value": "Task does not exist"}
+        return Response(resp)
+    machine = db.view_machine(task.guest.name)
+    if machine.status != "running":
+        resp = {"error": True, "error_value": "Machine is not running", "errors": machine.status}
+        return Response(resp)
+    filepath = request.data.get("filepath")
+    if not filepath:
+        resp = {"error": True, "error_value": "filepath not set"}
+        return Response(resp)
+    if request.data.get("is_local", ""):
+        if filepath.startswith(("/", r"\/")):
+            resp = {"error": True, "error_value": "Filepath mustn't start with /"}
+            return Response(resp)
+        filepath = os.path.join(CUCKOO_ROOT, "storage", "analyses", f"{task_id}", filepath)
+        if not os.path.isfile(filepath):
+            resp = {"error": True, "error_value": "file does not exist"}
+            return Response(resp)
+        return StreamingHttpResponse(
+            streaming_content=_stream_iterator(filepath, task.guest.name), content_type="application/octet-stream"
+        )
+    try:
+        r = requests.post(f"http://{machine.ip}:8000/retrieve", stream=True, data={"filepath": filepath, "streaming": "1"})
+        if r.status_code >= 400:
+            resp = {"error": True, "error_value": f"{filepath} does not exist"}
+            return Response(resp)
+        return StreamingHttpResponse(streaming_content=r.iter_content(chunk_size=1024), content_type="application/octet-stream")
+    except requests.exceptions.RequestException as ex:
+        log.exception(ex)
+        resp = {"error": True, "error_value": f"Requests exception: {ex}"}
+    return Response(resp)
+
+
+@csrf_exempt
+@api_view(["GET"])
+def dist_tasks_reported(request):
+    # List finished tasks here
+    if not DIST_ENABLED:
+        return Response(
+            {
+                "Error": True,
+                "error_value": "Distributed CAPE is not enabled",
+            }
+        )
+    """
+
+        Add new API endpoint in CAPE to query the tasks that are reported and ready to be retrieved
+        Add new API endpoint in CAPE to set "task.notificated = True" for a specific task
+
+        yeah we could script that go and fetch reported tasks.
+        can you currently list tasks that are finished but waiting to be retrieved in the api?
+        e.g. in the notification_loop() in dist.py, where it queries tasks that need to be sent to the callback url it does this:
+
+        if there was an pi endpoint that exposed that, and another that allowed us to set notificated on the task when we'd finished processing it, then we wouldnt need the callback anymore
+    """
+    # change to with session as
+    dist_db = dist_session()
+    ready = []
+    tasks = dist_db.query(DTask).filter_by(finished=True, retrieved=True, notificated=False).order_by(DTask.id.desc()).all()
+    for task in tasks or []:
+        ready.append(task.main_task_id)
+    dist_db.close()
+    return Response({"Tasks": ready})
+
+
+@csrf_exempt
+@api_view(["GET"])
+def dist_tasks_notification(request, task_id: int):
+    dist_db = dist_session()
+    tasks = dist_db.query(DTask).filter_by(main_task_id=task_id).order_by(DTask.id.desc()).all()
+    if not tasks:
+        return Response({"error": True, "error_value": f"No tasks found with main_task_id: {task_id}"})
+    for task in tasks:
+        # main_db.set_status(task.main_task_id, TASK_REPORTED)
+        # log.debug("reporting main_task_id: {}".format(task.main_task_id))
+        task.notificated = True
+
diff --git a/web/captcha_admin/__init__.py b/web/captcha_admin/__init__.py
index 12f12e1ff56..e040b4b70ff 100644
--- a/web/captcha_admin/__init__.py
+++ b/web/captcha_admin/__init__.py
@@ -1,17 +1,18 @@
-VERSION = (1, 0, 0, 'final', 0)
-__author__ = u'Daniel Barreto'
-__license__ = u'MIT'
-__maintainer__ = u'Micah Mangione'
-__email__ = 'micah@connectio.us'
-__status__ = 'RC'
+VERSION = (1, 0, 0, "final", 0)
+__author__ = "Daniel Barreto"
+__license__ = "MIT"
+__maintainer__ = "Micah Mangione"
+__email__ = "micah@connectio.us"
+__status__ = "RC"
+
 
 def get_version(version=VERSION):
     "Returns a PEP 386-compliant version number from VERSION."
     if version is None:
-        return '0.0'
+        return "0.0"
     else:
         assert len(version) == 5
-        assert version[3] in ('alpha', 'beta', 'rc', 'final')
+        assert version[3] in ("alpha", "beta", "rc", "final")
 
     # Now build the two parts of the version number:
     # main = X.Y[.Z]
@@ -19,11 +20,11 @@ def get_version(version=VERSION):
     #     | {a|b|c}N - for alpha, beta and rc releases
 
     parts = 2 if version[2] == 0 else 3
-    main = '.'.join(str(x) for x in version[:parts])
+    main = ".".join(str(x) for x in version[:parts])
 
-    sub = ''
-    if version[3] != 'final':
-        mapping = {'alpha': 'a', 'beta': 'b', 'rc': 'c'}
+    sub = ""
+    if version[3] != "final":
+        mapping = {"alpha": "a", "beta": "b", "rc": "c"}
         sub = mapping[version[3]] + str(version[4])
 
     return str(main + sub)
diff --git a/web/captcha_admin/admin.py b/web/captcha_admin/admin.py
index 833b3b16dfe..a25db6734ce 100644
--- a/web/captcha_admin/admin.py
+++ b/web/captcha_admin/admin.py
@@ -6,7 +6,8 @@
 
 class AdminSite(admin.AdminSite, AdminSiteRegistryFix):
     login_form = AdminAuthenticationForm
-    login_template = 'admin/captcha_login.html'
+    login_template = "admin/captcha_login.html"
+
 
 site = AdminSite()
 admin.site = site
diff --git a/web/captcha_admin/apps.py b/web/captcha_admin/apps.py
index 5e3e638b46e..486e363913f 100644
--- a/web/captcha_admin/apps.py
+++ b/web/captcha_admin/apps.py
@@ -6,4 +6,5 @@ class AdminConfig(_AdminConfig):
     Inherit Django AdminConfig. We want the autodiscover feature. Do not define your default_site according to the
     Django docs. Otherwise, we will end up with a recursive import error when loading this module.
     """
+
     pass
diff --git a/web/captcha_admin/forms.py b/web/captcha_admin/forms.py
index 1a0a0a4df90..dbb44e9444d 100644
--- a/web/captcha_admin/forms.py
+++ b/web/captcha_admin/forms.py
@@ -1,7 +1,6 @@
-from django.contrib.admin.forms import AdminAuthenticationForm as _AdminAuthenticationForm
-
 from captcha.fields import ReCaptchaField
 from captcha.widgets import ReCaptchaV3
+from django.contrib.admin.forms import AdminAuthenticationForm as _AdminAuthenticationForm
 
 
 class AdminAuthenticationForm(_AdminAuthenticationForm):
diff --git a/web/captcha_admin/mixins.py b/web/captcha_admin/mixins.py
index f6ea00878e4..8c505ab0854 100644
--- a/web/captcha_admin/mixins.py
+++ b/web/captcha_admin/mixins.py
@@ -1,18 +1,18 @@
 from django.contrib.admin.sites import site as default_site
 
 
-class AdminSiteRegistryFix(object):
-    '''
+class AdminSiteRegistryFix:
+    """
     This fix links the '_registry' property to the original AdminSites
     '_registry' property. This is necessary, because of the character of
     the admins 'autodiscover' function. Otherwise the admin site will say,
     that you haven't permission to edit anything.
-    '''
+    """
 
     def _registry_getter(self):
         return default_site._registry
 
-    def _registry_setter(self,value):
+    def _registry_setter(self, value):
         default_site._registry = value
 
     _registry = property(_registry_getter, _registry_setter)
diff --git a/web/compare/urls.py b/web/compare/urls.py
index a5539a1167b..610c56b9c02 100644
--- a/web/compare/urls.py
+++ b/web/compare/urls.py
@@ -2,12 +2,12 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file "docs/LICENSE" for copying permission.
 
-from __future__ import absolute_import
-from django.conf.urls import url
+from django.urls import re_path
+
 from compare import views
 
 urlpatterns = [
-    url(r"^(?P<left_id>\d+)/$", views.left, name="compare_left"),
-    url(r"^(?P<left_id>\d+)/(?P<right_id>\d+)/$", views.both, name="compare_both"),
-    url(r"^(?P<left_id>\d+)/(?P<right_hash>\w+)/$", views.hash, name="compare_hash"),
+    re_path(r"^(?P<left_id>\d+)/$", views.left, name="compare_left"),
+    re_path(r"^(?P<left_id>\d+)/(?P<right_id>\d+)/$", views.both, name="compare_both"),
+    re_path(r"^(?P<left_id>\d+)/(?P<right_hash>\w+)/$", views.hash, name="compare_hash"),
 ]
diff --git a/web/compare/views.py b/web/compare/views.py
index b94814f5014..0ab3b65f048 100644
--- a/web/compare/views.py
+++ b/web/compare/views.py
@@ -2,20 +2,19 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 import sys
 
 from django.conf import settings
+from django.contrib.auth.decorators import login_required
 from django.shortcuts import render
 from django.views.decorators.http import require_safe
-from django.contrib.auth.decorators import login_required
 
 sys.path.append(settings.CUCKOO_PATH)
 
 import lib.cuckoo.common.compare as compare
 from lib.cuckoo.common.config import Config
 
-enabledconf = dict()
+enabledconf = {}
 confdata = Config("reporting").get_config()
 for item in confdata:
     if confdata[item]["enabled"] == "yes":
@@ -24,27 +23,22 @@
         enabledconf[item] = False
 
 if enabledconf["mongodb"]:
-    import pymongo
-
-    # results_db = pymongo.MongoClient(settings.MONGO_HOST, settings.MONGO_PORT)[settings.MONGO_DB]
-    results_db = pymongo.MongoClient(
-        settings.MONGO_HOST, port=settings.MONGO_PORT, username=settings.MONGO_USER, password=settings.MONGO_PASS, authSource=settings.MONGO_DB
-    )[settings.MONGO_DB]
+    from dev_utils.mongodb import mongo_find, mongo_find_one
 
 es_as_db = False
 if enabledconf["elasticsearchdb"]:
-    from elasticsearch import Elasticsearch
+    from dev_utils.elasticsearchdb import elastic_handler, get_analysis_index, get_query_by_info_id
 
     es_as_db = True
-    essearch = Config("reporting").elasticsearchdb.searchonly
+    essearch = confdata["elasticsearchdb"]["searchonly"]
     if essearch:
         es_as_db = False
-    baseidx = Config("reporting").elasticsearchdb.index
-    fullidx = baseidx + "-*"
-    es = Elasticsearch(hosts=[{"host": settings.ELASTIC_HOST, "port": settings.ELASTIC_PORT,}], timeout=60)
+
+    es = elastic_handler
+
 
 # Conditional decorator for web authentication
-class conditional_login_required(object):
+class conditional_login_required:
     def __init__(self, dec, condition):
         self.decorator = dec
         self.condition = condition
@@ -59,9 +53,9 @@ def __call__(self, func):
 @conditional_login_required(login_required, settings.WEB_AUTHENTICATION)
 def left(request, left_id):
     if enabledconf["mongodb"]:
-        left = results_db.analysis.find_one({"info.id": int(left_id)}, {"target": 1, "info": 1})
+        left = mongo_find_one("analysis", {"info.id": int(left_id)}, {"target": 1, "info": 1})
     if es_as_db:
-        hits = es.search(index=fullidx, doc_type="analysis", q='info.id: "%s"' % left_id)["hits"]["hits"]
+        hits = es.search(index=get_analysis_index(), query=get_query_by_info_id(left_id))["hits"]["hits"]
         if hits:
             left = hits[-1]["_source"]
         else:
@@ -71,27 +65,36 @@ def left(request, left_id):
 
     # Select all analyses with same file hash.
     if enabledconf["mongodb"]:
-        records = results_db.analysis.find(
-            {"$and": [{"target.file.md5": left["target"]["file"]["md5"]}, {"info.id": {"$ne": int(left_id)}}]}, {"target": 1, "info": 1}
+        records = mongo_find(
+            "analysis",
+            {"$and": [{"target.file.md5": left["target"]["file"]["md5"]}, {"info.id": {"$ne": int(left_id)}}]},
+            {"target": 1, "info": 1},
         )
     if es_as_db:
-        records = list()
-        results = es.search(
-            index=fullidx, doc_type="analysis", q='target.file.md5: "%s" NOT info.id: "%s"' % (left["target"]["file"]["md5"], left_id)
-        )["hits"]["hits"]
+        records = []
+        q = {
+            "query": {
+                "bool": {
+                    "must": [{"match": {"target.file.md5": left["target"]["file"]["md5"]}}],
+                    "must_not": [{"match": {"info.id": left_id}}],
+                }
+            }
+        }
+        results = es.search(index=get_analysis_index(), body=q)["hits"]["hits"]
         for item in results:
             records.append(item["_source"])
 
-    return render(request, "compare/left.html", {"left": left, "records": records})
+    data = {"title": "Compare", "left": left, "records": records}
+    return render(request, "compare/left.html", data)
 
 
 @require_safe
 @conditional_login_required(login_required, settings.WEB_AUTHENTICATION)
 def hash(request, left_id, right_hash):
     if enabledconf["mongodb"]:
-        left = results_db.analysis.find_one({"info.id": int(left_id)}, {"target": 1, "info": 1})
+        left = mongo_find_one("analysis", {"info.id": int(left_id)}, {"target": 1, "info": 1})
     if es_as_db:
-        hits = es.search(index=fullidx, doc_type="analysis", q='info.id: "%s"' % left_id)["hits"]["hits"]
+        hits = es.search(index=get_analysis_index(), query=get_query_by_info_id(left_id))["hits"]["hits"]
         if hits:
             left = hits[-1]["_source"]
         else:
@@ -101,14 +104,22 @@ def hash(request, left_id, right_hash):
 
     # Select all analyses with same file hash.
     if enabledconf["mongodb"]:
-        records = results_db.analysis.find(
-            {"$and": [{"target.file.md5": left["target"]["file"]["md5"]}, {"info.id": {"$ne": int(left_id)}}]}, {"target": 1, "info": 1}
+        records = mongo_find(
+            "analysis",
+            {"$and": [{"target.file.md5": left["target"]["file"]["md5"]}, {"info.id": {"$ne": int(left_id)}}]},
+            {"target": 1, "info": 1},
         )
     if es_as_db:
-        records = list()
-        results = es.search(index=fullidx, doc_type="analysis", q='target.file.md5: "%s" NOT info.id: "%s"' % (right_hash, left_id))["hits"][
-            "hits"
-        ]
+        records = []
+        q = {
+            "query": {
+                "bool": {
+                    "must": [{"match": {"target.file.md5": right_hash}}],
+                    "must_not": [{"match": {"info.id": left_id}}],
+                }
+            }
+        }
+        results = es.search(index=get_analysis_index(), body=q)["hits"]["hits"]
         for item in results:
             records.append(item["_source"])
 
@@ -120,19 +131,29 @@ def hash(request, left_id, right_hash):
 @conditional_login_required(login_required, settings.WEB_AUTHENTICATION)
 def both(request, left_id, right_id):
     if enabledconf["mongodb"]:
-        left = results_db.analysis.find_one({"info.id": int(left_id)}, {"target": 1, "info": 1, "summary": 1})
-        right = results_db.analysis.find_one({"info.id": int(right_id)}, {"target": 1, "info": 1, "summary": 1})
+        left = mongo_find_one("analysis", {"info.id": int(left_id)}, {"target": 1, "info": 1, "summary": 1})
+        right = mongo_find_one("analysis", {"info.id": int(right_id)}, {"target": 1, "info": 1, "summary": 1})
         # Execute comparison.
-        counts = compare.helper_percentages_mongo(results_db, left_id, right_id)
-        summary_compare = compare.helper_summary_mongo(results_db, left_id, right_id)
-    if es_as_db:
-        left = es.search(index=fullidx, doc_type="analysis", q='info.id: "%s"' % left_id)["hits"]["hits"][-1]["_source"]
-        right = es.search(index=fullidx, doc_type="analysis", q='info.id: "%s"' % right_id)["hits"]["hits"][-1]["_source"]
-        counts = compare.helper_percentages_elastic(es, left_id, right_id, fullidx)
-        summary_compare = compare.summary_similarities(left, right)
+        counts = compare.helper_percentages_mongo(left_id, right_id)
+        summary_compare = compare.helper_summary_mongo(left_id, right_id)
+    elif es_as_db:
+        left = es.search(index=get_analysis_index(), query=get_query_by_info_id(left_id), _source=["target", "info"])["hits"][
+            "hits"
+        ][-1]["_source"]
+        right = es.search(index=get_analysis_index(), query=get_query_by_info_id(right_id), _source=["target", "info"])["hits"][
+            "hits"
+        ][-1]["_source"]
+        counts = compare.helper_percentages_elastic(es, left_id, right_id)
+        summary_compare = compare.helper_summary_elastic(es, left_id, right_id)
 
     return render(
         request,
         "compare/both.html",
-        {"left": left, "right": right, "left_counts": counts[left_id], "right_counts": counts[right_id], "summary": summary_compare},
+        {
+            "left": left,
+            "right": right,
+            "left_counts": counts[left_id],
+            "right_counts": counts[right_id],
+            "summary": summary_compare,
+        },
     )
diff --git a/web/dashboard/urls.py b/web/dashboard/urls.py
index fa0371e7823..de7ca558275 100644
--- a/web/dashboard/urls.py
+++ b/web/dashboard/urls.py
@@ -2,10 +2,10 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file "docs/LICENSE" for copying permission.
 
-from __future__ import absolute_import
-from django.conf.urls import url
+from django.urls import re_path
+
 from dashboard import views
 
 urlpatterns = [
-    url(r"^$", views.index),
+    re_path(r"^$", views.index),
 ]
diff --git a/web/dashboard/views.py b/web/dashboard/views.py
index e80e670c208..5a7a09787e1 100644
--- a/web/dashboard/views.py
+++ b/web/dashboard/views.py
@@ -2,40 +2,60 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 import sys
 
 from django.conf import settings
+from django.contrib.auth.decorators import login_required
 from django.shortcuts import render
 from django.views.decorators.http import require_safe
-from django.contrib.auth.decorators import login_required
 
 sys.path.append(settings.CUCKOO_PATH)
 
-from lib.cuckoo.core.database import Database, TASK_PENDING, TASK_RUNNING, TASK_DISTRIBUTED
-from lib.cuckoo.core.database import TASK_COMPLETED, TASK_RECOVERED
-from lib.cuckoo.core.database import TASK_REPORTED, TASK_FAILED_ANALYSIS
-from lib.cuckoo.core.database import TASK_FAILED_PROCESSING, TASK_FAILED_REPORTING
 from lib.cuckoo.common.web_utils import top_detections
+from lib.cuckoo.core.database import (
+    TASK_COMPLETED,
+    TASK_DISTRIBUTED,
+    TASK_FAILED_ANALYSIS,
+    TASK_FAILED_PROCESSING,
+    TASK_FAILED_REPORTING,
+    TASK_PENDING,
+    TASK_RECOVERED,
+    TASK_REPORTED,
+    TASK_RUNNING,
+    Database,
+)
+
 
 # Conditional decorator for web authentication
-class conditional_login_required(object):
+class conditional_login_required:
     def __init__(self, dec, condition):
         self.decorator = dec
         self.condition = condition
 
     def __call__(self, func):
+        if settings.ANON_VIEW:
+            return func
         if not self.condition:
             return func
         return self.decorator(func)
 
 
+def format_number_with_space(number):
+    return f"{number:,}".replace(",", " ")
+
+
 @require_safe
 @conditional_login_required(login_required, settings.WEB_AUTHENTICATION)
 def index(request):
     db = Database()
 
-    report = dict(total_samples=db.count_samples(), total_tasks=db.count_tasks(), states_count={}, estimate_hour=None, estimate_day=None)
+    report = dict(
+        total_samples=format_number_with_space(db.count_samples()),
+        total_tasks=format_number_with_space(db.count_tasks()),
+        states_count={},
+        estimate_hour=None,
+        estimate_day=None,
+    )
 
     states = (
         TASK_PENDING,
@@ -56,6 +76,8 @@ def index(request):
     tasks = db.count_tasks(status=TASK_COMPLETED)
     tasks += db.count_tasks(status=TASK_REPORTED)
 
+    data = {"title": "Dashboard", "report": {}}
+
     if tasks:
         # Get the time when the first task started and last one ended.
         started, completed = db.minmax_tasks()
@@ -67,8 +89,9 @@ def index(request):
         else:
             hourly = 0
 
-        report["estimate_hour"] = int(hourly)
-        report["estimate_day"] = int(24 * hourly)
+        report["estimate_hour"] = format_number_with_space(int(hourly))
+        report["estimate_day"] = format_number_with_space(int(24 * hourly))
         report["top_detections"] = top_detections()
 
-    return render(request, "dashboard/index.html", {"report": report})
+        data["report"] = report
+    return render(request, "dashboard/index.html", data)
diff --git a/web/guac/__init__.py b/web/guac/__init__.py
new file mode 100644
index 00000000000..e69de29bb2d
diff --git a/web/guac/consumers.py b/web/guac/consumers.py
new file mode 100644
index 00000000000..fb966d16727
--- /dev/null
+++ b/web/guac/consumers.py
@@ -0,0 +1,95 @@
+import asyncio
+import logging
+import urllib.parse
+
+from asgiref.sync import sync_to_async
+from channels.generic.websocket import AsyncWebsocketConsumer
+from guacamole.client import GuacamoleClient
+
+from lib.cuckoo.common.config import Config
+
+logger = logging.getLogger("guac-session")
+web_cfg = Config("web")
+
+
+class GuacamoleWebSocketConsumer(AsyncWebsocketConsumer):
+    client = None
+    task = None
+
+    async def connect(self):
+        """
+        Initiate the GuacamoleClient and create a connection to it.
+        """
+        guacd_hostname = web_cfg.guacamole.guacd_host or "localhost"
+        guacd_port = int(web_cfg.guacamole.guacd_port) or 4822
+        guacd_recording_path = web_cfg.guacamole.guacd_recording_path or ""
+        guest_protocol = web_cfg.guacamole.guest_protocol or "vnc"
+        guest_width = int(web_cfg.guacamole.guest_width) or 1280
+        guest_height = int(web_cfg.guacamole.guest_height) or 1024
+        guest_username = web_cfg.guacamole.username or ""
+        guest_password = web_cfg.guacamole.password or ""
+
+        params = urllib.parse.parse_qs(self.scope["query_string"].decode())
+
+        if "rdp" in guest_protocol:
+            hosts = params.get("guest_ip", "")
+            guest_host = hosts[0]
+            guest_port = int(web_cfg.guacamole.guest_rdp_port) or 3389
+            ignore_cert = "true" if web_cfg.guacamole.ignore_rdp_cert is True else "false"
+        else:
+            guest_host = web_cfg.guacamole.vnc_host or "localhost"
+            ports = params.get("vncport", ["5900"])
+            guest_port = int(ports[0])
+            ignore_cert = "false"
+
+        guacd_recording_name = params.get("recording_name", ["task-recording"])[0]
+
+        self.client = GuacamoleClient(guacd_hostname, guacd_port)
+
+        self.client.handshake(
+            protocol=guest_protocol,
+            width=guest_width,
+            height=guest_height,
+            hostname=guest_host,
+            port=guest_port,
+            username=guest_username,
+            password=guest_password,
+            recording_path=guacd_recording_path,
+            recording_name=guacd_recording_name,
+            ignore_cert=ignore_cert,
+        )
+
+        if self.client.connected:
+            # start receiving data from GuacamoleClient
+            loop = asyncio.get_event_loop()
+            self.task = loop.create_task(self.open())
+
+            # Accept connection
+            await self.accept(subprotocol="guacamole")
+        else:
+            await self.close()
+
+    async def disconnect(self, code):
+        """
+        Close the GuacamoleClient connection on WebSocket disconnect.
+        """
+        self.task.cancel()
+        await sync_to_async(self.client.close)()
+
+    async def receive(self, text_data=None, bytes_data=None):
+        """
+        Handle data received in the WebSocket, send to GuacamoleClient.
+        """
+        if text_data is not None:
+            logger.debug("To server: %s", text_data)
+            self.client.send(text_data)
+
+    async def open(self):
+        """
+        Receive data from GuacamoleClient and pass it to the WebSocket
+        """
+        while True:
+            content = await sync_to_async(self.client.receive)()
+            if content:
+                logger.debug("From server: %s", content)
+                await self.send(text_data=content)
diff --git a/web/guac/routing.py b/web/guac/routing.py
new file mode 100644
index 00000000000..1d9f1b8027f
--- /dev/null
+++ b/web/guac/routing.py
@@ -0,0 +1,10 @@
+from django.urls import re_path
+
+from .consumers import GuacamoleWebSocketConsumer
+
+websocket_urlpatterns = [
+    re_path(
+        r"guac/websocket-tunnel/(?P<session_id>\w+)",
+        GuacamoleWebSocketConsumer.as_asgi(),
+    ),
+]
diff --git a/web/guac/templates/guac/error.html b/web/guac/templates/guac/error.html
new file mode 100644
index 00000000000..6abbcf59391
--- /dev/null
+++ b/web/guac/templates/guac/error.html
@@ -0,0 +1,27 @@
+{% load static %}
+<!DOCTYPE html>
+<html>
+<head>
+    <link rel="icon" href="{% static 'img/cape.png' %}">
+    <meta charset="utf-8"/>
+    <title>Guacamole Console</title>
+</head>
+<body>
+    {% block content %}
+        <div class="alert alert-secondary">
+            <h4>Error</h4>
+            <p>{{error_msg}}</p>
+            <script>
+                switch ('{{error}}') {
+                    case 'remote session':
+                        var task_url = location.origin + 'submit/status/{{task_id}}';
+                        break;
+                }
+                document.getElementById("taskStatus").addEventListener("click", function() {
+                    location.replace(task_url);
+                }, false);
+            </script>
+        </div>
+    {% endblock %}
+</body>
+</html>
\ No newline at end of file
diff --git a/web/guac/templates/guac/index.html b/web/guac/templates/guac/index.html
new file mode 100644
index 00000000000..f0492e7fb54
--- /dev/null
+++ b/web/guac/templates/guac/index.html
@@ -0,0 +1,42 @@
+{% load static %}
+<!DOCTYPE html>
+<html>
+<head>
+    <link rel="icon" href="{% static 'img/cape.png' %}">
+    <link href="{% static 'css/guac-main.css' %}" rel="stylesheet" type="text/css"/>
+    <script src="{% static 'js/crypto-js.min.js' %}"></script>
+    <script src="{% static 'js/guac-main.js' %}"></script>
+    <script src="{% static 'js/guacamole-1.4.0-all.min.js' %}"></script>
+    <script src="{% static 'js/jquery.js' %}"></script>
+    <script src="{% static 'js/jquery-ui.min.js' %}"></script>
+    <meta charset="utf-8"/>
+    <title>Guacamole Console</title>
+</head>
+<body>
+    <div class="guaconsole">
+        <div>
+            <button id="stopTask">End Session</button>
+        </div>
+        <div id="container">
+            <div id="terminal"></div>
+        </div>
+        <div class="dialog" id="launch_error">
+            <div class="inner">
+                <p class="message"></p>
+                <p class="error_msg"></p>
+                <button type="button" id="taskStatus">View Task</button>
+            </div>
+        </div>
+        <script>
+            document.getElementById("stopTask").addEventListener("click", function () {
+                stopTask("{{task_id}}");
+            });
+            var task_url = location.origin + '/submit/status/{{task_id}}'
+            document.getElementById("taskStatus").addEventListener("click", function() {
+                location.replace(task_url);
+            }, false);
+	        GuacMe("html", "{{guest_ip}}","{{vncport}}", "{{session_id}}", "{{recording_name}}");
+        </script>
+    </div>
+</body>
+</html>
diff --git a/web/guac/templates/guac/wait.html b/web/guac/templates/guac/wait.html
new file mode 100644
index 00000000000..457490336ae
--- /dev/null
+++ b/web/guac/templates/guac/wait.html
@@ -0,0 +1,33 @@
+{% load static %}
+<!DOCTYPE html>
+<html>
+<head>
+    <link rel="icon" href="{% static 'img/cape.png' %}">
+    <script src="{% static 'js/jquery.js' %}"></script>
+    <script src="{% static 'js/jquery-ui.min.js' %}"></script>
+    <meta charset="utf-8"/>
+    <title>Guacamole Console</title>
+</head>
+<body>
+    {% block content %}
+        <div class="alert alert-secondary">
+            <h4>Hang on...</h4>
+            <p>The VM is not running, yet. This page will refresh every 5 seconds.</p>
+            <div class="progress progress-striped active" style="margin-top: 10px;"></div>
+            <button type="button" id="taskStatus">View Task</button>
+            <script>
+                var task_url = location.origin + '/submit/status/{{task_id}}'
+                document.getElementById("taskStatus").addEventListener("click", function() {
+                    location.replace(task_url);
+                }, false);
+            </script>
+        </div>
+        <script type="text/JavaScript">
+            function reloadpage() {
+                location.reload(true);
+            }
+            setTimeout(reloadpage, 5000);
+        </script>
+    {% endblock %}
+</body>
+</html>
\ No newline at end of file
diff --git a/web/guac/urls.py b/web/guac/urls.py
new file mode 100644
index 00000000000..dbf41e6f560
--- /dev/null
+++ b/web/guac/urls.py
@@ -0,0 +1,7 @@
+from django.urls import re_path
+
+from guac import views
+
+urlpatterns = [
+    re_path(r"^(?P<task_id>\d+)/(?P<session_data>[\w=]+)/$", views.index, name="index"),
+]
diff --git a/web/guac/views.py b/web/guac/views.py
new file mode 100644
index 00000000000..2223a8c449f
--- /dev/null
+++ b/web/guac/views.py
@@ -0,0 +1,71 @@
+from base64 import urlsafe_b64decode
+from xml.etree import ElementTree as ET
+from django.shortcuts import render
+from lib.cuckoo.common.config import Config
+
+try:
+    import libvirt
+
+    LIBVIRT_AVAILABLE = True
+except ImportError:
+    print("Missed python-libvirt. Use extra/libvirt_installer.sh")
+    LIBVIRT_AVAILABLE = False
+
+machinery = Config().cuckoo.machinery
+machinery_available = ["kvm", "qemu"]
+machinery_dsn = getattr(Config(machinery), machinery).get("dsn", "qemu:///system")
+
+
+def index(request, task_id, session_data):
+    if not LIBVIRT_AVAILABLE:
+        return render(
+            request,
+            "guac/error.html",
+            {"error_msg": "Libvirt not available", "error": "remote session", "task_id": task_id},
+        )
+
+    if machinery not in machinery_available:
+        return render(
+            request,
+            "guac/error.html",
+            {"error_msg": f"Machinery type '{machinery}' is not supported", "error": "remote session", "task_id": task_id},
+        )
+
+    conn = None
+    state = None
+    recording_name = ""
+
+    conn = libvirt.open(machinery_dsn)
+    if conn:
+        try:
+            session_id, label, guest_ip = urlsafe_b64decode(session_data).decode("utf8").split("|")
+            recording_name = f"{task_id}_{session_id}"
+            dom = conn.lookupByName(label)
+            if dom:
+                state = dom.state(flags=0)
+        except Exception as e:
+            return render(
+                request,
+                "guac/error.html",
+                {"error_msg": f"{e}", "error": "remote session", "task_id": task_id},
+            )
+
+    if state:
+        if state[0] == 1:
+            vmXml = dom.XMLDesc(0)
+            root = ET.fromstring(vmXml)
+            graphics = root.find('./devices/graphics[@type="vnc"]')
+            vncport = graphics.get("port") if graphics else None
+            return render(
+                request,
+                "guac/index.html",
+                {
+                    "vncport": vncport,
+                    "session_id": session_id,
+                    "task_id": task_id,
+                    "recording_name": recording_name,
+                    "guest_ip": guest_ip,
+                },
+            )
+        else:
+            return render(request, "guac/wait.html", {"task_id": task_id})
diff --git a/web/manage.py b/web/manage.py
index 1403592dc3c..81232ff990b 100644
--- a/web/manage.py
+++ b/web/manage.py
@@ -3,7 +3,6 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 import os
 import sys
 
diff --git a/web/static/css/bootstrap-social.min.css b/web/static/css/bootstrap-social.min.css
index 3cf87431059..3e122a51213 100644
--- a/web/static/css/bootstrap-social.min.css
+++ b/web/static/css/bootstrap-social.min.css
@@ -1,2 +1,2 @@
 .btn-social,.btn-social-icon{display:-ms-inline-flexbox;display:inline-flex;-ms-flex-pack:start;justify-content:flex-start;-ms-flex-align:center;align-items:center;overflow:hidden;text-overflow:ellipsis;white-space:nowrap}.btn-social-icon>:first-child,.btn-social>:first-child{-ms-flex:0 0 1em;flex:0 0 1em;padding:0;margin-right:.75rem}.btn-social-icon>:last-child,.btn-social>:last-child{overflow:hidden;text-overflow:ellipsis;white-space:nowrap}.btn-block.btn-social-icon,.btn-social.btn-block{display:-ms-flexbox;display:flex}.btn-lg.btn-social-icon>:first-child,.btn-social.btn-lg>:first-child{margin-right:1rem}.btn-sm.btn-social-icon>:first-child,.btn-social.btn-sm>:first-child{margin-right:.5rem}.btn-social-icon{width:2.25rem;height:2.25rem;padding:0;-ms-flex-pack:center;justify-content:center;-ms-flex-align:center;align-items:center;box-sizing:content-box}.btn-social-icon>:first-child{margin:0;padding:0;padding-right:0;margin-right:0}.btn-social-icon.btn-lg{width:2.875rem;height:2.875rem;margin-right:0}.btn-social-icon.btn-lg>:first-child{margin-right:0}.btn-social-icon.btn-sm{width:1.8125rem;height:1.8125rem}.btn-social-icon.btn-sm>:first-child{margin-right:0}.btn-bitbucket{color:#fff;background-color:#205081;border-color:#205081;color:#fff}.btn-bitbucket:hover{color:#fff;background-color:#183d62;border-color:#163758}.btn-bitbucket.focus,.btn-bitbucket:focus{box-shadow:0 0 0 .2rem rgba(65,106,148,.5)}.btn-bitbucket.disabled,.btn-bitbucket:disabled{color:#fff;background-color:#205081;border-color:#205081}.btn-bitbucket:not(:disabled):not(.disabled).active,.btn-bitbucket:not(:disabled):not(.disabled):active,.show>.btn-bitbucket.dropdown-toggle{color:#fff;background-color:#163758;border-color:#13304e}.btn-bitbucket:not(:disabled):not(.disabled).active:focus,.btn-bitbucket:not(:disabled):not(.disabled):active:focus,.show>.btn-bitbucket.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(65,106,148,.5)}.btn-dropbox{color:#fff;background-color:#007ee5;border-color:#007ee5;color:#fff}.btn-dropbox:hover{color:#fff;background-color:#0069bf;border-color:#0062b2}.btn-dropbox.focus,.btn-dropbox:focus{box-shadow:0 0 0 .2rem rgba(38,145,233,.5)}.btn-dropbox.disabled,.btn-dropbox:disabled{color:#fff;background-color:#007ee5;border-color:#007ee5}.btn-dropbox:not(:disabled):not(.disabled).active,.btn-dropbox:not(:disabled):not(.disabled):active,.show>.btn-dropbox.dropdown-toggle{color:#fff;background-color:#0062b2;border-color:#005ba5}.btn-dropbox:not(:disabled):not(.disabled).active:focus,.btn-dropbox:not(:disabled):not(.disabled):active:focus,.show>.btn-dropbox.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(38,145,233,.5)}.btn-facebook{color:#fff;background-color:#3b5998;border-color:#3b5998;color:#fff}.btn-facebook:hover{color:#fff;background-color:#30497c;border-color:#2d4373}.btn-facebook.focus,.btn-facebook:focus{box-shadow:0 0 0 .2rem rgba(88,114,167,.5)}.btn-facebook.disabled,.btn-facebook:disabled{color:#fff;background-color:#3b5998;border-color:#3b5998}.btn-facebook:not(:disabled):not(.disabled).active,.btn-facebook:not(:disabled):not(.disabled):active,.show>.btn-facebook.dropdown-toggle{color:#fff;background-color:#2d4373;border-color:#293e6a}.btn-facebook:not(:disabled):not(.disabled).active:focus,.btn-facebook:not(:disabled):not(.disabled):active:focus,.show>.btn-facebook.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(88,114,167,.5)}.btn-flickr{color:#fff;background-color:#0063dc;border-color:#0063dc;color:#fff}.btn-flickr:hover{color:#fff;background-color:#0052b6;border-color:#004ca9}.btn-flickr.focus,.btn-flickr:focus{box-shadow:0 0 0 .2rem rgba(38,122,225,.5)}.btn-flickr.disabled,.btn-flickr:disabled{color:#fff;background-color:#0063dc;border-color:#0063dc}.btn-flickr:not(:disabled):not(.disabled).active,.btn-flickr:not(:disabled):not(.disabled):active,.show>.btn-flickr.dropdown-toggle{color:#fff;background-color:#004ca9;border-color:#00469c}.btn-flickr:not(:disabled):not(.disabled).active:focus,.btn-flickr:not(:disabled):not(.disabled):active:focus,.show>.btn-flickr.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(38,122,225,.5)}.btn-foursquare{color:#fff;background-color:#f94877;border-color:#f94877;color:#fff}.btn-foursquare:hover{color:#fff;background-color:#f8235b;border-color:#f71752}.btn-foursquare.focus,.btn-foursquare:focus{box-shadow:0 0 0 .2rem rgba(250,99,139,.5)}.btn-foursquare.disabled,.btn-foursquare:disabled{color:#fff;background-color:#f94877;border-color:#f94877}.btn-foursquare:not(:disabled):not(.disabled).active,.btn-foursquare:not(:disabled):not(.disabled):active,.show>.btn-foursquare.dropdown-toggle{color:#fff;background-color:#f71752;border-color:#f70a49}.btn-foursquare:not(:disabled):not(.disabled).active:focus,.btn-foursquare:not(:disabled):not(.disabled):active:focus,.show>.btn-foursquare.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(250,99,139,.5)}.btn-github{color:#fff;background-color:#333;border-color:#333;color:#fff}.btn-github:hover{color:#fff;background-color:#202020;border-color:#1a1a1a}.btn-github.focus,.btn-github:focus{box-shadow:0 0 0 .2rem rgba(82,82,82,.5)}.btn-github.disabled,.btn-github:disabled{color:#fff;background-color:#333;border-color:#333}.btn-github:not(:disabled):not(.disabled).active,.btn-github:not(:disabled):not(.disabled):active,.show>.btn-github.dropdown-toggle{color:#fff;background-color:#1a1a1a;border-color:#131313}.btn-github:not(:disabled):not(.disabled).active:focus,.btn-github:not(:disabled):not(.disabled):active:focus,.show>.btn-github.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(82,82,82,.5)}.btn-google{color:#fff;background-color:#4285f4;border-color:#4285f4;color:#fff}.btn-google:hover{color:#fff;background-color:#1e6ef2;border-color:#1266f1}.btn-google.focus,.btn-google:focus{box-shadow:0 0 0 .2rem rgba(94,151,246,.5)}.btn-google.disabled,.btn-google:disabled{color:#fff;background-color:#4285f4;border-color:#4285f4}.btn-google:not(:disabled):not(.disabled).active,.btn-google:not(:disabled):not(.disabled):active,.show>.btn-google.dropdown-toggle{color:#fff;background-color:#1266f1;border-color:#0e60e9}.btn-google:not(:disabled):not(.disabled).active:focus,.btn-google:not(:disabled):not(.disabled):active:focus,.show>.btn-google.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(94,151,246,.5)}.btn-instagram{color:#fff;background-color:#405de6;border-color:#405de6;color:#fff}.btn-instagram:hover{color:#fff;background-color:#1e40e2;border-color:#1c3dd7}.btn-instagram.focus,.btn-instagram:focus{box-shadow:0 0 0 .2rem rgba(93,117,234,.5)}.btn-instagram.disabled,.btn-instagram:disabled{color:#fff;background-color:#405de6;border-color:#405de6}.btn-instagram:not(:disabled):not(.disabled).active,.btn-instagram:not(:disabled):not(.disabled):active,.show>.btn-instagram.dropdown-toggle{color:#fff;background-color:#1c3dd7;border-color:#1b3acc}.btn-instagram:not(:disabled):not(.disabled).active:focus,.btn-instagram:not(:disabled):not(.disabled):active:focus,.show>.btn-instagram.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(93,117,234,.5)}.btn-linkedin{color:#fff;background-color:#0077b5;border-color:#0077b5;color:#fff}.btn-linkedin:hover{color:#fff;background-color:#005e8f;border-color:#005582}.btn-linkedin.focus,.btn-linkedin:focus{box-shadow:0 0 0 .2rem rgba(38,139,192,.5)}.btn-linkedin.disabled,.btn-linkedin:disabled{color:#fff;background-color:#0077b5;border-color:#0077b5}.btn-linkedin:not(:disabled):not(.disabled).active,.btn-linkedin:not(:disabled):not(.disabled):active,.show>.btn-linkedin.dropdown-toggle{color:#fff;background-color:#005582;border-color:#004d75}.btn-linkedin:not(:disabled):not(.disabled).active:focus,.btn-linkedin:not(:disabled):not(.disabled):active:focus,.show>.btn-linkedin.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(38,139,192,.5)}.btn-microsoft{color:#fff;background-color:#f65314;border-color:#f65314;color:#fff}.btn-microsoft:hover{color:#fff;background-color:#db4308;border-color:#cf3f08}.btn-microsoft.focus,.btn-microsoft:focus{box-shadow:0 0 0 .2rem rgba(247,109,55,.5)}.btn-microsoft.disabled,.btn-microsoft:disabled{color:#fff;background-color:#f65314;border-color:#f65314}.btn-microsoft:not(:disabled):not(.disabled).active,.btn-microsoft:not(:disabled):not(.disabled):active,.show>.btn-microsoft.dropdown-toggle{color:#fff;background-color:#cf3f08;border-color:#c33c07}.btn-microsoft:not(:disabled):not(.disabled).active:focus,.btn-microsoft:not(:disabled):not(.disabled):active:focus,.show>.btn-microsoft.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(247,109,55,.5)}.btn-odnoklassniki{color:#212529;background-color:#ed812b;border-color:#ed812b;color:#fff}.btn-odnoklassniki:hover{color:#fff;background-color:#df6d13;border-color:#d36812}.btn-odnoklassniki.focus,.btn-odnoklassniki:focus{box-shadow:0 0 0 .2rem rgba(206,115,43,.5)}.btn-odnoklassniki.disabled,.btn-odnoklassniki:disabled{color:#212529;background-color:#ed812b;border-color:#ed812b}.btn-odnoklassniki:not(:disabled):not(.disabled).active,.btn-odnoklassniki:not(:disabled):not(.disabled):active,.show>.btn-odnoklassniki.dropdown-toggle{color:#fff;background-color:#d36812;border-color:#c76211}.btn-odnoklassniki:not(:disabled):not(.disabled).active:focus,.btn-odnoklassniki:not(:disabled):not(.disabled):active:focus,.show>.btn-odnoklassniki.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(206,115,43,.5)}.btn-openid{color:#212529;background-color:#f7931e;border-color:#f7931e;color:#fff}.btn-openid:hover{color:#fff;background-color:#e78008;border-color:#da7908}.btn-openid.focus,.btn-openid:focus{box-shadow:0 0 0 .2rem rgba(215,131,32,.5)}.btn-openid.disabled,.btn-openid:disabled{color:#212529;background-color:#f7931e;border-color:#f7931e}.btn-openid:not(:disabled):not(.disabled).active,.btn-openid:not(:disabled):not(.disabled):active,.show>.btn-openid.dropdown-toggle{color:#fff;background-color:#da7908;border-color:#ce7207}.btn-openid:not(:disabled):not(.disabled).active:focus,.btn-openid:not(:disabled):not(.disabled):active:focus,.show>.btn-openid.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(215,131,32,.5)}.btn-pinterest{color:#fff;background-color:#bd081c;border-color:#bd081c;color:#fff}.btn-pinterest:hover{color:#fff;background-color:#980617;border-color:#8c0615}.btn-pinterest.focus,.btn-pinterest:focus{box-shadow:0 0 0 .2rem rgba(199,45,62,.5)}.btn-pinterest.disabled,.btn-pinterest:disabled{color:#fff;background-color:#bd081c;border-color:#bd081c}.btn-pinterest:not(:disabled):not(.disabled).active,.btn-pinterest:not(:disabled):not(.disabled):active,.show>.btn-pinterest.dropdown-toggle{color:#fff;background-color:#8c0615;border-color:#800513}.btn-pinterest:not(:disabled):not(.disabled).active:focus,.btn-pinterest:not(:disabled):not(.disabled):active:focus,.show>.btn-pinterest.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(199,45,62,.5)}.btn-reddit{color:#212529;background-color:#cee3f8;border-color:#cee3f8;color:#000}.btn-reddit:hover{color:#212529;background-color:#add0f3;border-color:#a1caf2}.btn-reddit.focus,.btn-reddit:focus{box-shadow:0 0 0 .2rem rgba(180,199,217,.5)}.btn-reddit.disabled,.btn-reddit:disabled{color:#212529;background-color:#cee3f8;border-color:#cee3f8}.btn-reddit:not(:disabled):not(.disabled).active,.btn-reddit:not(:disabled):not(.disabled):active,.show>.btn-reddit.dropdown-toggle{color:#212529;background-color:#a1caf2;border-color:#96c3f0}.btn-reddit:not(:disabled):not(.disabled).active:focus,.btn-reddit:not(:disabled):not(.disabled):active:focus,.show>.btn-reddit.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(180,199,217,.5)}.btn-soundcloud{color:#212529;background-color:#f80;border-color:#f80;color:#fff}.btn-soundcloud:hover{color:#fff;background-color:#d97400;border-color:#cc6d00}.btn-soundcloud.focus,.btn-soundcloud:focus{box-shadow:0 0 0 .2rem rgba(222,121,6,.5)}.btn-soundcloud.disabled,.btn-soundcloud:disabled{color:#212529;background-color:#f80;border-color:#f80}.btn-soundcloud:not(:disabled):not(.disabled).active,.btn-soundcloud:not(:disabled):not(.disabled):active,.show>.btn-soundcloud.dropdown-toggle{color:#fff;background-color:#cc6d00;border-color:#bf6600}.btn-soundcloud:not(:disabled):not(.disabled).active:focus,.btn-soundcloud:not(:disabled):not(.disabled):active:focus,.show>.btn-soundcloud.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(222,121,6,.5)}.btn-tumblr{color:#fff;background-color:#35465c;border-color:#35465c;color:#fff}.btn-tumblr:hover{color:#fff;background-color:#273444;border-color:#222d3c}.btn-tumblr.focus,.btn-tumblr:focus{box-shadow:0 0 0 .2rem rgba(83,98,116,.5)}.btn-tumblr.disabled,.btn-tumblr:disabled{color:#fff;background-color:#35465c;border-color:#35465c}.btn-tumblr:not(:disabled):not(.disabled).active,.btn-tumblr:not(:disabled):not(.disabled):active,.show>.btn-tumblr.dropdown-toggle{color:#fff;background-color:#222d3c;border-color:#1e2734}.btn-tumblr:not(:disabled):not(.disabled).active:focus,.btn-tumblr:not(:disabled):not(.disabled):active:focus,.show>.btn-tumblr.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(83,98,116,.5)}.btn-twitter{color:#fff;background-color:#1da1f2;border-color:#1da1f2;color:#fff}.btn-twitter:hover{color:#fff;background-color:#0d8ddc;border-color:#0c85d0}.btn-twitter.focus,.btn-twitter:focus{box-shadow:0 0 0 .2rem rgba(63,175,244,.5)}.btn-twitter.disabled,.btn-twitter:disabled{color:#fff;background-color:#1da1f2;border-color:#1da1f2}.btn-twitter:not(:disabled):not(.disabled).active,.btn-twitter:not(:disabled):not(.disabled):active,.show>.btn-twitter.dropdown-toggle{color:#fff;background-color:#0c85d0;border-color:#0b7ec4}.btn-twitter:not(:disabled):not(.disabled).active:focus,.btn-twitter:not(:disabled):not(.disabled):active:focus,.show>.btn-twitter.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(63,175,244,.5)}.btn-vimeo{color:#fff;background-color:#162221;border-color:#162221;color:#fff}.btn-vimeo:hover{color:#fff;background-color:#070b0a;border-color:#020303}.btn-vimeo.focus,.btn-vimeo:focus{box-shadow:0 0 0 .2rem rgba(57,67,66,.5)}.btn-vimeo.disabled,.btn-vimeo:disabled{color:#fff;background-color:#162221;border-color:#162221}.btn-vimeo:not(:disabled):not(.disabled).active,.btn-vimeo:not(:disabled):not(.disabled):active,.show>.btn-vimeo.dropdown-toggle{color:#fff;background-color:#020303;border-color:#000}.btn-vimeo:not(:disabled):not(.disabled).active:focus,.btn-vimeo:not(:disabled):not(.disabled):active:focus,.show>.btn-vimeo.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(57,67,66,.5)}.btn-vk{color:#fff;background-color:#45668e;border-color:#45668e;color:#fff}.btn-vk:hover{color:#fff;background-color:#385474;border-color:#344d6c}.btn-vk.focus,.btn-vk:focus{box-shadow:0 0 0 .2rem rgba(97,125,159,.5)}.btn-vk.disabled,.btn-vk:disabled{color:#fff;background-color:#45668e;border-color:#45668e}.btn-vk:not(:disabled):not(.disabled).active,.btn-vk:not(:disabled):not(.disabled):active,.show>.btn-vk.dropdown-toggle{color:#fff;background-color:#344d6c;border-color:#304763}.btn-vk:not(:disabled):not(.disabled).active:focus,.btn-vk:not(:disabled):not(.disabled):active:focus,.show>.btn-vk.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(97,125,159,.5)}.btn-yahoo{color:#fff;background-color:#410093;border-color:#410093;color:#fff}.btn-yahoo:hover{color:#fff;background-color:#30006d;border-color:#2a0060}.btn-yahoo.focus,.btn-yahoo:focus{box-shadow:0 0 0 .2rem rgba(94,38,163,.5)}.btn-yahoo.disabled,.btn-yahoo:disabled{color:#fff;background-color:#410093;border-color:#410093}.btn-yahoo:not(:disabled):not(.disabled).active,.btn-yahoo:not(:disabled):not(.disabled):active,.show>.btn-yahoo.dropdown-toggle{color:#fff;background-color:#2a0060;border-color:#250053}.btn-yahoo:not(:disabled):not(.disabled).active:focus,.btn-yahoo:not(:disabled):not(.disabled):active:focus,.show>.btn-yahoo.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(94,38,163,.5)}
-/*# sourceMappingURL=bootstrap-social.min.css.map */
\ No newline at end of file
+/*# sourceMappingURL=bootstrap-social.min.css.map */
diff --git a/web/static/css/bootstrap-social.min.css.map b/web/static/css/bootstrap-social.min.css.map
index 17a353ba700..6dc230b056c 100644
--- a/web/static/css/bootstrap-social.min.css.map
+++ b/web/static/css/bootstrap-social.min.css.map
@@ -1 +1 @@
-{"version":3,"sources":["bootstrap-social.scss","node_modules/bootstrap/scss/mixins/_text-truncate.scss","node_modules/bootstrap/scss/mixins/_buttons.scss","node_modules/bootstrap/scss/mixins/_gradients.scss","bootstrap-social.css"],"names":[],"mappings":"AAcA,YAAA,iBACI,QAAA,mBAAA,QAAA,YACA,cAAA,MAAA,gBAAA,WACA,eAAA,OAAA,YAAA,OCbF,SAAA,OACA,cAAA,SACA,YAAA,ODQF,8BAAA,yBAMQ,SAAA,EAAA,EAAA,IAAA,KAAA,EAAA,EAAA,IACA,QAAA,EACA,aAAA,OARR,6BAAA,wBCVE,SAAA,OACA,cAAA,SACA,YAAA,ODQF,2BAAA,sBAcQ,QAAA,YAAA,QAAA,KAdR,qCAAA,gCAkBY,aAAA,KAlBZ,qCAAA,gCAuBY,aAAA,MAKZ,iBAEI,MAAA,QACA,OAAA,QACA,QAAA,EACA,cAAA,OAAA,gBAAA,OACA,eAAA,OAAA,YAAA,OACA,WAAA,YAPJ,8BASQ,OAAA,EACA,QAAA,EACA,cAAA,EACA,aAAA,EAZR,wBAeQ,MAAA,SACA,OAAA,SAIA,aAAA,EApBR,qCAkBY,aAAA,EAlBZ,wBAuBQ,MAAA,UACA,OAAA,UAxBR,qCA0BY,aAAA,EAUZ,eExEE,MAAA,KCAE,iBAAA,QDEF,aAAA,QFmEE,MAAA,KAGJ,qBElEI,MAAA,KCNA,iBAAA,QDQA,aAAA,QFgEJ,qBAAA,qBEvDM,WAAA,EAAA,EAAA,EAAA,MAAA,oBFuDN,wBAAA,wBEhDI,MAAA,KACA,iBAAA,QACA,aAAA,QF8CJ,oDAAA,oDI2BA,qCF/DI,MAAA,KACA,iBAAA,QAIA,aAAA,QF+BJ,0DAAA,0DIkCA,2CF1DQ,WAAA,EAAA,EAAA,EAAA,MAAA,oBF4BR,aE5EE,MAAA,KCAE,iBAAA,QDEF,aAAA,QFmEE,MAAA,KAOJ,mBEtEI,MAAA,KCNA,iBAAA,QDQA,aAAA,QFoEJ,mBAAA,mBE3DM,WAAA,EAAA,EAAA,EAAA,MAAA,oBF2DN,sBAAA,sBEpDI,MAAA,KACA,iBAAA,QACA,aAAA,QFkDJ,kDAAA,kDI0DA,mCFlGI,MAAA,KACA,iBAAA,QAIA,aAAA,QFmCJ,wDAAA,wDIiEA,yCF7FQ,WAAA,EAAA,EAAA,EAAA,MAAA,oBFgCR,cEhFE,MAAA,KCAE,iBAAA,QDEF,aAAA,QFmEE,MAAA,KAWJ,oBE1EI,MAAA,KCNA,iBAAA,QDQA,aAAA,QFwEJ,oBAAA,oBE/DM,WAAA,EAAA,EAAA,EAAA,MAAA,oBF+DN,uBAAA,uBExDI,MAAA,KACA,iBAAA,QACA,aAAA,QFsDJ,mDAAA,mDIyFA,oCFrII,MAAA,KACA,iBAAA,QAIA,aAAA,QFuCJ,yDAAA,yDIgGA,0CFhIQ,WAAA,EAAA,EAAA,EAAA,MAAA,oBFoCR,YEpFE,MAAA,KCAE,iBAAA,QDEF,aAAA,QFmEE,MAAA,KAeJ,kBE9EI,MAAA,KCNA,iBAAA,QDQA,aAAA,QF4EJ,kBAAA,kBEnEM,WAAA,EAAA,EAAA,EAAA,MAAA,oBFmEN,qBAAA,qBE5DI,MAAA,KACA,iBAAA,QACA,aAAA,QF0DJ,iDAAA,iDIwHA,kCFxKI,MAAA,KACA,iBAAA,QAIA,aAAA,QF2CJ,uDAAA,uDI+HA,wCFnKQ,WAAA,EAAA,EAAA,EAAA,MAAA,oBFwCR,gBExFE,MAAA,KCAE,iBAAA,QDEF,aAAA,QFmEE,MAAA,KAmBJ,sBElFI,MAAA,KCNA,iBAAA,QDQA,aAAA,QFgFJ,sBAAA,sBEvEM,WAAA,EAAA,EAAA,EAAA,MAAA,oBFuEN,yBAAA,yBEhEI,MAAA,KACA,iBAAA,QACA,aAAA,QF8DJ,qDAAA,qDIuJA,sCF3MI,MAAA,KACA,iBAAA,QAIA,aAAA,QF+CJ,2DAAA,2DI8JA,4CFtMQ,WAAA,EAAA,EAAA,EAAA,MAAA,oBF4CR,YE5FE,MAAA,KCAE,iBAAA,KDEF,aAAA,KFmEE,MAAA,KAuBJ,kBEtFI,MAAA,KCNA,iBAAA,QDQA,aAAA,QFoFJ,kBAAA,kBE3EM,WAAA,EAAA,EAAA,EAAA,MAAA,kBF2EN,qBAAA,qBEpEI,MAAA,KACA,iBAAA,KACA,aAAA,KFkEJ,iDAAA,iDIsLA,kCF9OI,MAAA,KACA,iBAAA,QAIA,aAAA,QFmDJ,uDAAA,uDI6LA,wCFzOQ,WAAA,EAAA,EAAA,EAAA,MAAA,kBFgDR,YEhGE,MAAA,KCAE,iBAAA,QDEF,aAAA,QFmEE,MAAA,KA2BJ,kBE1FI,MAAA,KCNA,iBAAA,QDQA,aAAA,QFwFJ,kBAAA,kBE/EM,WAAA,EAAA,EAAA,EAAA,MAAA,oBF+EN,qBAAA,qBExEI,MAAA,KACA,iBAAA,QACA,aAAA,QFsEJ,iDAAA,iDIqNA,kCFjRI,MAAA,KACA,iBAAA,QAIA,aAAA,QFuDJ,uDAAA,uDI4NA,wCF5QQ,WAAA,EAAA,EAAA,EAAA,MAAA,oBFoDR,eEpGE,MAAA,KCAE,iBAAA,QDEF,aAAA,QFmEE,MAAA,KA+BJ,qBE9FI,MAAA,KCNA,iBAAA,QDQA,aAAA,QF4FJ,qBAAA,qBEnFM,WAAA,EAAA,EAAA,EAAA,MAAA,oBFmFN,wBAAA,wBE5EI,MAAA,KACA,iBAAA,QACA,aAAA,QF0EJ,oDAAA,oDIoPA,qCFpTI,MAAA,KACA,iBAAA,QAIA,aAAA,QF2DJ,0DAAA,0DI2PA,2CF/SQ,WAAA,EAAA,EAAA,EAAA,MAAA,oBFwDR,cExGE,MAAA,KCAE,iBAAA,QDEF,aAAA,QFmEE,MAAA,KAmCJ,oBElGI,MAAA,KCNA,iBAAA,QDQA,aAAA,QFgGJ,oBAAA,oBEvFM,WAAA,EAAA,EAAA,EAAA,MAAA,oBFuFN,uBAAA,uBEhFI,MAAA,KACA,iBAAA,QACA,aAAA,QF8EJ,mDAAA,mDImRA,oCFvVI,MAAA,KACA,iBAAA,QAIA,aAAA,QF+DJ,yDAAA,yDI0RA,0CFlVQ,WAAA,EAAA,EAAA,EAAA,MAAA,oBF4DR,eE5GE,MAAA,KCAE,iBAAA,QDEF,aAAA,QFmEE,MAAA,KAuCJ,qBEtGI,MAAA,KCNA,iBAAA,QDQA,aAAA,QFoGJ,qBAAA,qBE3FM,WAAA,EAAA,EAAA,EAAA,MAAA,oBF2FN,wBAAA,wBEpFI,MAAA,KACA,iBAAA,QACA,aAAA,QFkFJ,oDAAA,oDIkTA,qCF1XI,MAAA,KACA,iBAAA,QAIA,aAAA,QFmEJ,0DAAA,0DIyTA,2CFrXQ,WAAA,EAAA,EAAA,EAAA,MAAA,oBFgER,mBEhHE,MAAA,QCAE,iBAAA,QDEF,aAAA,QFmEE,MAAA,KA2CJ,yBE1GI,MAAA,KCNA,iBAAA,QDQA,aAAA,QFwGJ,yBAAA,yBE/FM,WAAA,EAAA,EAAA,EAAA,MAAA,oBF+FN,4BAAA,4BExFI,MAAA,QACA,iBAAA,QACA,aAAA,QFsFJ,wDAAA,wDIiVA,yCF7ZI,MAAA,KACA,iBAAA,QAIA,aAAA,QFuEJ,8DAAA,8DIwVA,+CFxZQ,WAAA,EAAA,EAAA,EAAA,MAAA,oBFoER,YEpHE,MAAA,QCAE,iBAAA,QDEF,aAAA,QFmEE,MAAA,KA+CJ,kBE9GI,MAAA,KCNA,iBAAA,QDQA,aAAA,QF4GJ,kBAAA,kBEnGM,WAAA,EAAA,EAAA,EAAA,MAAA,oBFmGN,qBAAA,qBE5FI,MAAA,QACA,iBAAA,QACA,aAAA,QF0FJ,iDAAA,iDIgXA,kCFhcI,MAAA,KACA,iBAAA,QAIA,aAAA,QF2EJ,uDAAA,uDIuXA,wCF3bQ,WAAA,EAAA,EAAA,EAAA,MAAA,oBFwER,eExHE,MAAA,KCAE,iBAAA,QDEF,aAAA,QFmEE,MAAA,KAmDJ,qBElHI,MAAA,KCNA,iBAAA,QDQA,aAAA,QFgHJ,qBAAA,qBEvGM,WAAA,EAAA,EAAA,EAAA,MAAA,mBFuGN,wBAAA,wBEhGI,MAAA,KACA,iBAAA,QACA,aAAA,QF8FJ,oDAAA,oDI+YA,qCFneI,MAAA,KACA,iBAAA,QAIA,aAAA,QF+EJ,0DAAA,0DIsZA,2CF9dQ,WAAA,EAAA,EAAA,EAAA,MAAA,mBF4ER,YE5HE,MAAA,QCAE,iBAAA,QDEF,aAAA,QFmEE,MAAA,KAuDJ,kBEtHI,MAAA,QCNA,iBAAA,QDQA,aAAA,QFoHJ,kBAAA,kBE3GM,WAAA,EAAA,EAAA,EAAA,MAAA,qBF2GN,qBAAA,qBEpGI,MAAA,QACA,iBAAA,QACA,aAAA,QFkGJ,iDAAA,iDI8aA,kCFtgBI,MAAA,QACA,iBAAA,QAIA,aAAA,QFmFJ,uDAAA,uDIqbA,wCFjgBQ,WAAA,EAAA,EAAA,EAAA,MAAA,qBFgFR,gBEhIE,MAAA,QCAE,iBAAA,KDEF,aAAA,KFmEE,MAAA,KA2DJ,sBE1HI,MAAA,KCNA,iBAAA,QDQA,aAAA,QFwHJ,sBAAA,sBE/GM,WAAA,EAAA,EAAA,EAAA,MAAA,mBF+GN,yBAAA,yBExGI,MAAA,QACA,iBAAA,KACA,aAAA,KFsGJ,qDAAA,qDI6cA,sCFziBI,MAAA,KACA,iBAAA,QAIA,aAAA,QFuFJ,2DAAA,2DIodA,4CFpiBQ,WAAA,EAAA,EAAA,EAAA,MAAA,mBFoFR,YEpIE,MAAA,KCAE,iBAAA,QDEF,aAAA,QFmEE,MAAA,KA+DJ,kBE9HI,MAAA,KCNA,iBAAA,QDQA,aAAA,QF4HJ,kBAAA,kBEnHM,WAAA,EAAA,EAAA,EAAA,MAAA,mBFmHN,qBAAA,qBE5GI,MAAA,KACA,iBAAA,QACA,aAAA,QF0GJ,iDAAA,iDI4eA,kCF5kBI,MAAA,KACA,iBAAA,QAIA,aAAA,QF2FJ,uDAAA,uDImfA,wCFvkBQ,WAAA,EAAA,EAAA,EAAA,MAAA,mBFwFR,aExIE,MAAA,KCAE,iBAAA,QDEF,aAAA,QFmEE,MAAA,KAmEJ,mBElII,MAAA,KCNA,iBAAA,QDQA,aAAA,QFgIJ,mBAAA,mBEvHM,WAAA,EAAA,EAAA,EAAA,MAAA,oBFuHN,sBAAA,sBEhHI,MAAA,KACA,iBAAA,QACA,aAAA,QF8GJ,kDAAA,kDI2gBA,mCF/mBI,MAAA,KACA,iBAAA,QAIA,aAAA,QF+FJ,wDAAA,wDIkhBA,yCF1mBQ,WAAA,EAAA,EAAA,EAAA,MAAA,oBF4FR,WE5IE,MAAA,KCAE,iBAAA,QDEF,aAAA,QFmEE,MAAA,KAuEJ,iBEtII,MAAA,KCNA,iBAAA,QDQA,aAAA,QFoIJ,iBAAA,iBE3HM,WAAA,EAAA,EAAA,EAAA,MAAA,kBF2HN,oBAAA,oBEpHI,MAAA,KACA,iBAAA,QACA,aAAA,QFkHJ,gDAAA,gDI0iBA,iCFlpBI,MAAA,KACA,iBAAA,QAIA,aAAA,KFmGJ,sDAAA,sDIijBA,uCF7oBQ,WAAA,EAAA,EAAA,EAAA,MAAA,kBFgGR,QEhJE,MAAA,KCAE,iBAAA,QDEF,aAAA,QFmEE,MAAA,KA2EJ,cE1II,MAAA,KCNA,iBAAA,QDQA,aAAA,QFwIJ,cAAA,cE/HM,WAAA,EAAA,EAAA,EAAA,MAAA,oBF+HN,iBAAA,iBExHI,MAAA,KACA,iBAAA,QACA,aAAA,QFsHJ,6CAAA,6CIykBA,8BFrrBI,MAAA,KACA,iBAAA,QAIA,aAAA,QFuGJ,mDAAA,mDIglBA,oCFhrBQ,WAAA,EAAA,EAAA,EAAA,MAAA,oBFoGR,WEpJE,MAAA,KCAE,iBAAA,QDEF,aAAA,QFmEE,MAAA,KA+EJ,iBE9II,MAAA,KCNA,iBAAA,QDQA,aAAA,QF4IJ,iBAAA,iBEnIM,WAAA,EAAA,EAAA,EAAA,MAAA,mBFmIN,oBAAA,oBE5HI,MAAA,KACA,iBAAA,QACA,aAAA,QF0HJ,gDAAA,gDIwmBA,iCFxtBI,MAAA,KACA,iBAAA,QAIA,aAAA,QF2GJ,sDAAA,sDI+mBA,uCFntBQ,WAAA,EAAA,EAAA,EAAA,MAAA","sourcesContent":["@import \"~bootstrap/scss/functions\";\n@import \"~bootstrap/scss/mixins/box-shadow\";\n@import \"~bootstrap/scss/mixins/buttons\";\n@import \"~bootstrap/scss/mixins/hover\";\n@import \"~bootstrap/scss/mixins/gradients\";\n@import \"~bootstrap/scss/mixins/text-truncate\";\n@import \"~bootstrap/scss/variables\";\n// hey, brand-colors\n@import \"~brand-colors/dist/latest/scss/brand-colors.latest\";\n// compute sizes for default/lg/sm\n$bs-height-base: (($font-size-base * $btn-line-height) + ($btn-padding-y * 2)) !default;\n$bs-height-lg: (($font-size-lg * $btn-line-height-lg) + ($btn-padding-y-lg * 2)) !default;\n$bs-height-sm: (($font-size-sm * $btn-line-height-sm) + ($btn-padding-y-sm * 2)) !default;\n//\n.btn-social {\n    display: inline-flex;\n    justify-content: flex-start;\n    align-items: center;\n    @include text-truncate();\n    > :first-child {\n        flex: 0 0 1em;\n        padding: 0;\n        margin-right: $btn-padding-x;\n    }\n    > :last-child {\n        @include text-truncate();\n    }\n    &.btn-block {\n        display: flex;\n    }\n    &.btn-lg {\n        > :first-child {\n            margin-right: $btn-padding-x-lg;\n        }\n    }\n    &.btn-sm {\n        > :first-child {\n            margin-right: $btn-padding-x-sm;\n        }\n    }\n}\n\n.btn-social-icon {\n    @extend .btn-social;\n    width: $bs-height-base;\n    height: $bs-height-base;\n    padding: 0;\n    justify-content: center;\n    align-items: center;\n    box-sizing: content-box;\n    > :first-child {\n        margin: 0;\n        padding: 0;\n        padding-right: 0;\n        margin-right: 0;\n    }\n    &.btn-lg {\n        width: $bs-height-lg;\n        height: $bs-height-lg;\n        > :first-child {\n            margin-right: 0;\n        }\n        margin-right: 0;\n    }\n    &.btn-sm {\n        width: $bs-height-sm;\n        height: $bs-height-sm;\n        > :first-child {\n            margin-right: 0;\n        }\n    }\n}\n\n@mixin btn-social($color-bg, $color: #ffffff) {\n    @include button-variant($color-bg, $color-bg);\n    color: $color;\n}\n\n.btn-bitbucket {\n    @include btn-social($bc-bitbucket);\n}\n\n.btn-dropbox {\n    @include btn-social($bc-dropbox);\n}\n\n.btn-facebook {\n    @include btn-social($bc-facebook);\n}\n\n.btn-flickr {\n    @include btn-social($bc-flickr);\n}\n\n.btn-foursquare {\n    @include btn-social($bc-foursquare);\n}\n\n.btn-github {\n    @include btn-social($bc-github-8);\n}\n\n.btn-google {\n    @include btn-social($bc-google);\n}\n\n.btn-instagram {\n    @include btn-social($bc-instagram);\n}\n\n.btn-linkedin {\n    @include btn-social($bc-linkedin);\n}\n\n.btn-microsoft {\n    @include btn-social($bc-microsoft);\n}\n\n.btn-odnoklassniki {\n    @include btn-social($bc-odnoklassniki);\n}\n\n.btn-openid {\n    @include btn-social(#f7931e);\n}\n\n.btn-pinterest {\n    @include btn-social($bc-pinterest);\n}\n\n.btn-reddit {\n    @include btn-social($bc-reddit-3, #000);\n}\n\n.btn-soundcloud {\n    @include btn-social($bc-soundcloud);\n}\n\n.btn-tumblr {\n    @include btn-social($bc-tumblr);\n}\n\n.btn-twitter {\n    @include btn-social($bc-twitter);\n}\n\n.btn-vimeo {\n    @include btn-social($bc-vimeo);\n}\n\n.btn-vk {\n    @include btn-social($bc-vkontakte);\n}\n\n.btn-yahoo {\n    @include btn-social($bc-yahoo);\n}\n","// Text truncate\n// Requires inline-block or block for proper styling\n\n@mixin text-truncate() {\n  overflow: hidden;\n  text-overflow: ellipsis;\n  white-space: nowrap;\n}\n","// Button variants\n//\n// Easily pump out default styles, as well as :hover, :focus, :active,\n// and disabled options for all buttons\n\n@mixin button-variant($background, $border, $hover-background: darken($background, 7.5%), $hover-border: darken($border, 10%), $active-background: darken($background, 10%), $active-border: darken($border, 12.5%)) {\n  color: color-yiq($background);\n  @include gradient-bg($background);\n  border-color: $border;\n  @include box-shadow($btn-box-shadow);\n\n  @include hover {\n    color: color-yiq($hover-background);\n    @include gradient-bg($hover-background);\n    border-color: $hover-border;\n  }\n\n  &:focus,\n  &.focus {\n    // Avoid using mixin so we can pass custom focus shadow properly\n    @if $enable-shadows {\n      box-shadow: $btn-box-shadow, 0 0 0 $btn-focus-width rgba(mix(color-yiq($background), $border, 15%), .5);\n    } @else {\n      box-shadow: 0 0 0 $btn-focus-width rgba(mix(color-yiq($background), $border, 15%), .5);\n    }\n  }\n\n  // Disabled comes first so active can properly restyle\n  &.disabled,\n  &:disabled {\n    color: color-yiq($background);\n    background-color: $background;\n    border-color: $border;\n    // Remove CSS gradients if they're enabled\n    @if $enable-gradients {\n      background-image: none;\n    }\n  }\n\n  &:not(:disabled):not(.disabled):active,\n  &:not(:disabled):not(.disabled).active,\n  .show > &.dropdown-toggle {\n    color: color-yiq($active-background);\n    background-color: $active-background;\n    @if $enable-gradients {\n      background-image: none; // Remove the gradient for the pressed/active state\n    }\n    border-color: $active-border;\n\n    &:focus {\n      // Avoid using mixin so we can pass custom focus shadow properly\n      @if $enable-shadows and $btn-active-box-shadow != none {\n        box-shadow: $btn-active-box-shadow, 0 0 0 $btn-focus-width rgba(mix(color-yiq($background), $border, 15%), .5);\n      } @else {\n        box-shadow: 0 0 0 $btn-focus-width rgba(mix(color-yiq($background), $border, 15%), .5);\n      }\n    }\n  }\n}\n\n@mixin button-outline-variant($color, $color-hover: color-yiq($color), $active-background: $color, $active-border: $color) {\n  color: $color;\n  border-color: $color;\n\n  @include hover {\n    color: $color-hover;\n    background-color: $active-background;\n    border-color: $active-border;\n  }\n\n  &:focus,\n  &.focus {\n    box-shadow: 0 0 0 $btn-focus-width rgba($color, .5);\n  }\n\n  &.disabled,\n  &:disabled {\n    color: $color;\n    background-color: transparent;\n  }\n\n  &:not(:disabled):not(.disabled):active,\n  &:not(:disabled):not(.disabled).active,\n  .show > &.dropdown-toggle {\n    color: color-yiq($active-background);\n    background-color: $active-background;\n    border-color: $active-border;\n\n    &:focus {\n      // Avoid using mixin so we can pass custom focus shadow properly\n      @if $enable-shadows and $btn-active-box-shadow != none {\n        box-shadow: $btn-active-box-shadow, 0 0 0 $btn-focus-width rgba($color, .5);\n      } @else {\n        box-shadow: 0 0 0 $btn-focus-width rgba($color, .5);\n      }\n    }\n  }\n}\n\n// Button sizes\n@mixin button-size($padding-y, $padding-x, $font-size, $line-height, $border-radius) {\n  padding: $padding-y $padding-x;\n  @include font-size($font-size);\n  line-height: $line-height;\n  // Manually declare to provide an override to the browser default\n  @include border-radius($border-radius, 0);\n}\n","// Gradients\n\n@mixin gradient-bg($color) {\n  @if $enable-gradients {\n    background: $color linear-gradient(180deg, mix($body-bg, $color, 15%), $color) repeat-x;\n  } @else {\n    background-color: $color;\n  }\n}\n\n// Horizontal gradient, from left to right\n//\n// Creates two color stops, start and end, by specifying a color and position for each color stop.\n@mixin gradient-x($start-color: $gray-700, $end-color: $gray-800, $start-percent: 0%, $end-percent: 100%) {\n  background-image: linear-gradient(to right, $start-color $start-percent, $end-color $end-percent);\n  background-repeat: repeat-x;\n}\n\n// Vertical gradient, from top to bottom\n//\n// Creates two color stops, start and end, by specifying a color and position for each color stop.\n@mixin gradient-y($start-color: $gray-700, $end-color: $gray-800, $start-percent: 0%, $end-percent: 100%) {\n  background-image: linear-gradient(to bottom, $start-color $start-percent, $end-color $end-percent);\n  background-repeat: repeat-x;\n}\n\n@mixin gradient-directional($start-color: $gray-700, $end-color: $gray-800, $deg: 45deg) {\n  background-image: linear-gradient($deg, $start-color, $end-color);\n  background-repeat: repeat-x;\n}\n@mixin gradient-x-three-colors($start-color: $blue, $mid-color: $purple, $color-stop: 50%, $end-color: $red) {\n  background-image: linear-gradient(to right, $start-color, $mid-color $color-stop, $end-color);\n  background-repeat: no-repeat;\n}\n@mixin gradient-y-three-colors($start-color: $blue, $mid-color: $purple, $color-stop: 50%, $end-color: $red) {\n  background-image: linear-gradient($start-color, $mid-color $color-stop, $end-color);\n  background-repeat: no-repeat;\n}\n@mixin gradient-radial($inner-color: $gray-700, $outer-color: $gray-800) {\n  background-image: radial-gradient(circle, $inner-color, $outer-color);\n  background-repeat: no-repeat;\n}\n@mixin gradient-striped($color: rgba($white, .15), $angle: 45deg) {\n  background-image: linear-gradient($angle, $color 25%, transparent 25%, transparent 50%, $color 50%, $color 75%, transparent 75%, transparent);\n}\n","/*\n* @preserve brand-colors 2.0.1\n* http://reimertz.github.io/brand-colors\n* (c) 2017 Pierre Reimertz\n* may be freely distributed under the MIT license.\n*/\n.btn-social, .btn-social-icon {\n  display: inline-flex;\n  justify-content: flex-start;\n  align-items: center;\n  overflow: hidden;\n  text-overflow: ellipsis;\n  white-space: nowrap;\n}\n\n.btn-social > :first-child, .btn-social-icon > :first-child {\n  flex: 0 0 1em;\n  padding: 0;\n  margin-right: 0.75rem;\n}\n\n.btn-social > :last-child, .btn-social-icon > :last-child {\n  overflow: hidden;\n  text-overflow: ellipsis;\n  white-space: nowrap;\n}\n\n.btn-social.btn-block, .btn-block.btn-social-icon {\n  display: flex;\n}\n\n.btn-social.btn-lg > :first-child, .btn-lg.btn-social-icon > :first-child {\n  margin-right: 1rem;\n}\n\n.btn-social.btn-sm > :first-child, .btn-sm.btn-social-icon > :first-child {\n  margin-right: 0.5rem;\n}\n\n.btn-social-icon {\n  width: 2.25rem;\n  height: 2.25rem;\n  padding: 0;\n  justify-content: center;\n  align-items: center;\n  box-sizing: content-box;\n}\n\n.btn-social-icon > :first-child {\n  margin: 0;\n  padding: 0;\n  padding-right: 0;\n  margin-right: 0;\n}\n\n.btn-social-icon.btn-lg {\n  width: 2.875rem;\n  height: 2.875rem;\n  margin-right: 0;\n}\n\n.btn-social-icon.btn-lg > :first-child {\n  margin-right: 0;\n}\n\n.btn-social-icon.btn-sm {\n  width: 1.8125rem;\n  height: 1.8125rem;\n}\n\n.btn-social-icon.btn-sm > :first-child {\n  margin-right: 0;\n}\n\n.btn-bitbucket {\n  color: #fff;\n  background-color: #205081;\n  border-color: #205081;\n  color: #ffffff;\n}\n\n.btn-bitbucket:hover {\n  color: #fff;\n  background-color: #183d62;\n  border-color: #163758;\n}\n\n.btn-bitbucket:focus, .btn-bitbucket.focus {\n  box-shadow: 0 0 0 0.2rem rgba(65, 106, 148, 0.5);\n}\n\n.btn-bitbucket.disabled, .btn-bitbucket:disabled {\n  color: #fff;\n  background-color: #205081;\n  border-color: #205081;\n}\n\n.btn-bitbucket:not(:disabled):not(.disabled):active, .btn-bitbucket:not(:disabled):not(.disabled).active,\n.show > .btn-bitbucket.dropdown-toggle {\n  color: #fff;\n  background-color: #163758;\n  border-color: #13304e;\n}\n\n.btn-bitbucket:not(:disabled):not(.disabled):active:focus, .btn-bitbucket:not(:disabled):not(.disabled).active:focus,\n.show > .btn-bitbucket.dropdown-toggle:focus {\n  box-shadow: 0 0 0 0.2rem rgba(65, 106, 148, 0.5);\n}\n\n.btn-dropbox {\n  color: #fff;\n  background-color: #007ee5;\n  border-color: #007ee5;\n  color: #ffffff;\n}\n\n.btn-dropbox:hover {\n  color: #fff;\n  background-color: #0069bf;\n  border-color: #0062b2;\n}\n\n.btn-dropbox:focus, .btn-dropbox.focus {\n  box-shadow: 0 0 0 0.2rem rgba(38, 145, 233, 0.5);\n}\n\n.btn-dropbox.disabled, .btn-dropbox:disabled {\n  color: #fff;\n  background-color: #007ee5;\n  border-color: #007ee5;\n}\n\n.btn-dropbox:not(:disabled):not(.disabled):active, .btn-dropbox:not(:disabled):not(.disabled).active,\n.show > .btn-dropbox.dropdown-toggle {\n  color: #fff;\n  background-color: #0062b2;\n  border-color: #005ba5;\n}\n\n.btn-dropbox:not(:disabled):not(.disabled):active:focus, .btn-dropbox:not(:disabled):not(.disabled).active:focus,\n.show > .btn-dropbox.dropdown-toggle:focus {\n  box-shadow: 0 0 0 0.2rem rgba(38, 145, 233, 0.5);\n}\n\n.btn-facebook {\n  color: #fff;\n  background-color: #3b5998;\n  border-color: #3b5998;\n  color: #ffffff;\n}\n\n.btn-facebook:hover {\n  color: #fff;\n  background-color: #30497c;\n  border-color: #2d4373;\n}\n\n.btn-facebook:focus, .btn-facebook.focus {\n  box-shadow: 0 0 0 0.2rem rgba(88, 114, 167, 0.5);\n}\n\n.btn-facebook.disabled, .btn-facebook:disabled {\n  color: #fff;\n  background-color: #3b5998;\n  border-color: #3b5998;\n}\n\n.btn-facebook:not(:disabled):not(.disabled):active, .btn-facebook:not(:disabled):not(.disabled).active,\n.show > .btn-facebook.dropdown-toggle {\n  color: #fff;\n  background-color: #2d4373;\n  border-color: #293e6a;\n}\n\n.btn-facebook:not(:disabled):not(.disabled):active:focus, .btn-facebook:not(:disabled):not(.disabled).active:focus,\n.show > .btn-facebook.dropdown-toggle:focus {\n  box-shadow: 0 0 0 0.2rem rgba(88, 114, 167, 0.5);\n}\n\n.btn-flickr {\n  color: #fff;\n  background-color: #0063dc;\n  border-color: #0063dc;\n  color: #ffffff;\n}\n\n.btn-flickr:hover {\n  color: #fff;\n  background-color: #0052b6;\n  border-color: #004ca9;\n}\n\n.btn-flickr:focus, .btn-flickr.focus {\n  box-shadow: 0 0 0 0.2rem rgba(38, 122, 225, 0.5);\n}\n\n.btn-flickr.disabled, .btn-flickr:disabled {\n  color: #fff;\n  background-color: #0063dc;\n  border-color: #0063dc;\n}\n\n.btn-flickr:not(:disabled):not(.disabled):active, .btn-flickr:not(:disabled):not(.disabled).active,\n.show > .btn-flickr.dropdown-toggle {\n  color: #fff;\n  background-color: #004ca9;\n  border-color: #00469c;\n}\n\n.btn-flickr:not(:disabled):not(.disabled):active:focus, .btn-flickr:not(:disabled):not(.disabled).active:focus,\n.show > .btn-flickr.dropdown-toggle:focus {\n  box-shadow: 0 0 0 0.2rem rgba(38, 122, 225, 0.5);\n}\n\n.btn-foursquare {\n  color: #fff;\n  background-color: #f94877;\n  border-color: #f94877;\n  color: #ffffff;\n}\n\n.btn-foursquare:hover {\n  color: #fff;\n  background-color: #f8235b;\n  border-color: #f71752;\n}\n\n.btn-foursquare:focus, .btn-foursquare.focus {\n  box-shadow: 0 0 0 0.2rem rgba(250, 99, 139, 0.5);\n}\n\n.btn-foursquare.disabled, .btn-foursquare:disabled {\n  color: #fff;\n  background-color: #f94877;\n  border-color: #f94877;\n}\n\n.btn-foursquare:not(:disabled):not(.disabled):active, .btn-foursquare:not(:disabled):not(.disabled).active,\n.show > .btn-foursquare.dropdown-toggle {\n  color: #fff;\n  background-color: #f71752;\n  border-color: #f70a49;\n}\n\n.btn-foursquare:not(:disabled):not(.disabled):active:focus, .btn-foursquare:not(:disabled):not(.disabled).active:focus,\n.show > .btn-foursquare.dropdown-toggle:focus {\n  box-shadow: 0 0 0 0.2rem rgba(250, 99, 139, 0.5);\n}\n\n.btn-github {\n  color: #fff;\n  background-color: #333;\n  border-color: #333;\n  color: #ffffff;\n}\n\n.btn-github:hover {\n  color: #fff;\n  background-color: #202020;\n  border-color: #1a1a1a;\n}\n\n.btn-github:focus, .btn-github.focus {\n  box-shadow: 0 0 0 0.2rem rgba(82, 82, 82, 0.5);\n}\n\n.btn-github.disabled, .btn-github:disabled {\n  color: #fff;\n  background-color: #333;\n  border-color: #333;\n}\n\n.btn-github:not(:disabled):not(.disabled):active, .btn-github:not(:disabled):not(.disabled).active,\n.show > .btn-github.dropdown-toggle {\n  color: #fff;\n  background-color: #1a1a1a;\n  border-color: #131313;\n}\n\n.btn-github:not(:disabled):not(.disabled):active:focus, .btn-github:not(:disabled):not(.disabled).active:focus,\n.show > .btn-github.dropdown-toggle:focus {\n  box-shadow: 0 0 0 0.2rem rgba(82, 82, 82, 0.5);\n}\n\n.btn-google {\n  color: #fff;\n  background-color: #4285f4;\n  border-color: #4285f4;\n  color: #ffffff;\n}\n\n.btn-google:hover {\n  color: #fff;\n  background-color: #1e6ef2;\n  border-color: #1266f1;\n}\n\n.btn-google:focus, .btn-google.focus {\n  box-shadow: 0 0 0 0.2rem rgba(94, 151, 246, 0.5);\n}\n\n.btn-google.disabled, .btn-google:disabled {\n  color: #fff;\n  background-color: #4285f4;\n  border-color: #4285f4;\n}\n\n.btn-google:not(:disabled):not(.disabled):active, .btn-google:not(:disabled):not(.disabled).active,\n.show > .btn-google.dropdown-toggle {\n  color: #fff;\n  background-color: #1266f1;\n  border-color: #0e60e9;\n}\n\n.btn-google:not(:disabled):not(.disabled):active:focus, .btn-google:not(:disabled):not(.disabled).active:focus,\n.show > .btn-google.dropdown-toggle:focus {\n  box-shadow: 0 0 0 0.2rem rgba(94, 151, 246, 0.5);\n}\n\n.btn-instagram {\n  color: #fff;\n  background-color: #405de6;\n  border-color: #405de6;\n  color: #ffffff;\n}\n\n.btn-instagram:hover {\n  color: #fff;\n  background-color: #1e40e2;\n  border-color: #1c3dd7;\n}\n\n.btn-instagram:focus, .btn-instagram.focus {\n  box-shadow: 0 0 0 0.2rem rgba(93, 117, 234, 0.5);\n}\n\n.btn-instagram.disabled, .btn-instagram:disabled {\n  color: #fff;\n  background-color: #405de6;\n  border-color: #405de6;\n}\n\n.btn-instagram:not(:disabled):not(.disabled):active, .btn-instagram:not(:disabled):not(.disabled).active,\n.show > .btn-instagram.dropdown-toggle {\n  color: #fff;\n  background-color: #1c3dd7;\n  border-color: #1b3acc;\n}\n\n.btn-instagram:not(:disabled):not(.disabled):active:focus, .btn-instagram:not(:disabled):not(.disabled).active:focus,\n.show > .btn-instagram.dropdown-toggle:focus {\n  box-shadow: 0 0 0 0.2rem rgba(93, 117, 234, 0.5);\n}\n\n.btn-linkedin {\n  color: #fff;\n  background-color: #0077b5;\n  border-color: #0077b5;\n  color: #ffffff;\n}\n\n.btn-linkedin:hover {\n  color: #fff;\n  background-color: #005e8f;\n  border-color: #005582;\n}\n\n.btn-linkedin:focus, .btn-linkedin.focus {\n  box-shadow: 0 0 0 0.2rem rgba(38, 139, 192, 0.5);\n}\n\n.btn-linkedin.disabled, .btn-linkedin:disabled {\n  color: #fff;\n  background-color: #0077b5;\n  border-color: #0077b5;\n}\n\n.btn-linkedin:not(:disabled):not(.disabled):active, .btn-linkedin:not(:disabled):not(.disabled).active,\n.show > .btn-linkedin.dropdown-toggle {\n  color: #fff;\n  background-color: #005582;\n  border-color: #004d75;\n}\n\n.btn-linkedin:not(:disabled):not(.disabled):active:focus, .btn-linkedin:not(:disabled):not(.disabled).active:focus,\n.show > .btn-linkedin.dropdown-toggle:focus {\n  box-shadow: 0 0 0 0.2rem rgba(38, 139, 192, 0.5);\n}\n\n.btn-microsoft {\n  color: #fff;\n  background-color: #f65314;\n  border-color: #f65314;\n  color: #ffffff;\n}\n\n.btn-microsoft:hover {\n  color: #fff;\n  background-color: #db4308;\n  border-color: #cf3f08;\n}\n\n.btn-microsoft:focus, .btn-microsoft.focus {\n  box-shadow: 0 0 0 0.2rem rgba(247, 109, 55, 0.5);\n}\n\n.btn-microsoft.disabled, .btn-microsoft:disabled {\n  color: #fff;\n  background-color: #f65314;\n  border-color: #f65314;\n}\n\n.btn-microsoft:not(:disabled):not(.disabled):active, .btn-microsoft:not(:disabled):not(.disabled).active,\n.show > .btn-microsoft.dropdown-toggle {\n  color: #fff;\n  background-color: #cf3f08;\n  border-color: #c33c07;\n}\n\n.btn-microsoft:not(:disabled):not(.disabled):active:focus, .btn-microsoft:not(:disabled):not(.disabled).active:focus,\n.show > .btn-microsoft.dropdown-toggle:focus {\n  box-shadow: 0 0 0 0.2rem rgba(247, 109, 55, 0.5);\n}\n\n.btn-odnoklassniki {\n  color: #212529;\n  background-color: #ed812b;\n  border-color: #ed812b;\n  color: #ffffff;\n}\n\n.btn-odnoklassniki:hover {\n  color: #fff;\n  background-color: #df6d13;\n  border-color: #d36812;\n}\n\n.btn-odnoklassniki:focus, .btn-odnoklassniki.focus {\n  box-shadow: 0 0 0 0.2rem rgba(206, 115, 43, 0.5);\n}\n\n.btn-odnoklassniki.disabled, .btn-odnoklassniki:disabled {\n  color: #212529;\n  background-color: #ed812b;\n  border-color: #ed812b;\n}\n\n.btn-odnoklassniki:not(:disabled):not(.disabled):active, .btn-odnoklassniki:not(:disabled):not(.disabled).active,\n.show > .btn-odnoklassniki.dropdown-toggle {\n  color: #fff;\n  background-color: #d36812;\n  border-color: #c76211;\n}\n\n.btn-odnoklassniki:not(:disabled):not(.disabled):active:focus, .btn-odnoklassniki:not(:disabled):not(.disabled).active:focus,\n.show > .btn-odnoklassniki.dropdown-toggle:focus {\n  box-shadow: 0 0 0 0.2rem rgba(206, 115, 43, 0.5);\n}\n\n.btn-openid {\n  color: #212529;\n  background-color: #f7931e;\n  border-color: #f7931e;\n  color: #ffffff;\n}\n\n.btn-openid:hover {\n  color: #fff;\n  background-color: #e78008;\n  border-color: #da7908;\n}\n\n.btn-openid:focus, .btn-openid.focus {\n  box-shadow: 0 0 0 0.2rem rgba(215, 131, 32, 0.5);\n}\n\n.btn-openid.disabled, .btn-openid:disabled {\n  color: #212529;\n  background-color: #f7931e;\n  border-color: #f7931e;\n}\n\n.btn-openid:not(:disabled):not(.disabled):active, .btn-openid:not(:disabled):not(.disabled).active,\n.show > .btn-openid.dropdown-toggle {\n  color: #fff;\n  background-color: #da7908;\n  border-color: #ce7207;\n}\n\n.btn-openid:not(:disabled):not(.disabled):active:focus, .btn-openid:not(:disabled):not(.disabled).active:focus,\n.show > .btn-openid.dropdown-toggle:focus {\n  box-shadow: 0 0 0 0.2rem rgba(215, 131, 32, 0.5);\n}\n\n.btn-pinterest {\n  color: #fff;\n  background-color: #bd081c;\n  border-color: #bd081c;\n  color: #ffffff;\n}\n\n.btn-pinterest:hover {\n  color: #fff;\n  background-color: #980617;\n  border-color: #8c0615;\n}\n\n.btn-pinterest:focus, .btn-pinterest.focus {\n  box-shadow: 0 0 0 0.2rem rgba(199, 45, 62, 0.5);\n}\n\n.btn-pinterest.disabled, .btn-pinterest:disabled {\n  color: #fff;\n  background-color: #bd081c;\n  border-color: #bd081c;\n}\n\n.btn-pinterest:not(:disabled):not(.disabled):active, .btn-pinterest:not(:disabled):not(.disabled).active,\n.show > .btn-pinterest.dropdown-toggle {\n  color: #fff;\n  background-color: #8c0615;\n  border-color: #800513;\n}\n\n.btn-pinterest:not(:disabled):not(.disabled):active:focus, .btn-pinterest:not(:disabled):not(.disabled).active:focus,\n.show > .btn-pinterest.dropdown-toggle:focus {\n  box-shadow: 0 0 0 0.2rem rgba(199, 45, 62, 0.5);\n}\n\n.btn-reddit {\n  color: #212529;\n  background-color: #cee3f8;\n  border-color: #cee3f8;\n  color: #000;\n}\n\n.btn-reddit:hover {\n  color: #212529;\n  background-color: #add0f3;\n  border-color: #a1caf2;\n}\n\n.btn-reddit:focus, .btn-reddit.focus {\n  box-shadow: 0 0 0 0.2rem rgba(180, 199, 217, 0.5);\n}\n\n.btn-reddit.disabled, .btn-reddit:disabled {\n  color: #212529;\n  background-color: #cee3f8;\n  border-color: #cee3f8;\n}\n\n.btn-reddit:not(:disabled):not(.disabled):active, .btn-reddit:not(:disabled):not(.disabled).active,\n.show > .btn-reddit.dropdown-toggle {\n  color: #212529;\n  background-color: #a1caf2;\n  border-color: #96c3f0;\n}\n\n.btn-reddit:not(:disabled):not(.disabled):active:focus, .btn-reddit:not(:disabled):not(.disabled).active:focus,\n.show > .btn-reddit.dropdown-toggle:focus {\n  box-shadow: 0 0 0 0.2rem rgba(180, 199, 217, 0.5);\n}\n\n.btn-soundcloud {\n  color: #212529;\n  background-color: #ff8800;\n  border-color: #ff8800;\n  color: #ffffff;\n}\n\n.btn-soundcloud:hover {\n  color: #fff;\n  background-color: #d97400;\n  border-color: #cc6d00;\n}\n\n.btn-soundcloud:focus, .btn-soundcloud.focus {\n  box-shadow: 0 0 0 0.2rem rgba(222, 121, 6, 0.5);\n}\n\n.btn-soundcloud.disabled, .btn-soundcloud:disabled {\n  color: #212529;\n  background-color: #ff8800;\n  border-color: #ff8800;\n}\n\n.btn-soundcloud:not(:disabled):not(.disabled):active, .btn-soundcloud:not(:disabled):not(.disabled).active,\n.show > .btn-soundcloud.dropdown-toggle {\n  color: #fff;\n  background-color: #cc6d00;\n  border-color: #bf6600;\n}\n\n.btn-soundcloud:not(:disabled):not(.disabled):active:focus, .btn-soundcloud:not(:disabled):not(.disabled).active:focus,\n.show > .btn-soundcloud.dropdown-toggle:focus {\n  box-shadow: 0 0 0 0.2rem rgba(222, 121, 6, 0.5);\n}\n\n.btn-tumblr {\n  color: #fff;\n  background-color: #35465c;\n  border-color: #35465c;\n  color: #ffffff;\n}\n\n.btn-tumblr:hover {\n  color: #fff;\n  background-color: #273444;\n  border-color: #222d3c;\n}\n\n.btn-tumblr:focus, .btn-tumblr.focus {\n  box-shadow: 0 0 0 0.2rem rgba(83, 98, 116, 0.5);\n}\n\n.btn-tumblr.disabled, .btn-tumblr:disabled {\n  color: #fff;\n  background-color: #35465c;\n  border-color: #35465c;\n}\n\n.btn-tumblr:not(:disabled):not(.disabled):active, .btn-tumblr:not(:disabled):not(.disabled).active,\n.show > .btn-tumblr.dropdown-toggle {\n  color: #fff;\n  background-color: #222d3c;\n  border-color: #1e2734;\n}\n\n.btn-tumblr:not(:disabled):not(.disabled):active:focus, .btn-tumblr:not(:disabled):not(.disabled).active:focus,\n.show > .btn-tumblr.dropdown-toggle:focus {\n  box-shadow: 0 0 0 0.2rem rgba(83, 98, 116, 0.5);\n}\n\n.btn-twitter {\n  color: #fff;\n  background-color: #1da1f2;\n  border-color: #1da1f2;\n  color: #ffffff;\n}\n\n.btn-twitter:hover {\n  color: #fff;\n  background-color: #0d8ddc;\n  border-color: #0c85d0;\n}\n\n.btn-twitter:focus, .btn-twitter.focus {\n  box-shadow: 0 0 0 0.2rem rgba(63, 175, 244, 0.5);\n}\n\n.btn-twitter.disabled, .btn-twitter:disabled {\n  color: #fff;\n  background-color: #1da1f2;\n  border-color: #1da1f2;\n}\n\n.btn-twitter:not(:disabled):not(.disabled):active, .btn-twitter:not(:disabled):not(.disabled).active,\n.show > .btn-twitter.dropdown-toggle {\n  color: #fff;\n  background-color: #0c85d0;\n  border-color: #0b7ec4;\n}\n\n.btn-twitter:not(:disabled):not(.disabled):active:focus, .btn-twitter:not(:disabled):not(.disabled).active:focus,\n.show > .btn-twitter.dropdown-toggle:focus {\n  box-shadow: 0 0 0 0.2rem rgba(63, 175, 244, 0.5);\n}\n\n.btn-vimeo {\n  color: #fff;\n  background-color: #162221;\n  border-color: #162221;\n  color: #ffffff;\n}\n\n.btn-vimeo:hover {\n  color: #fff;\n  background-color: #070b0a;\n  border-color: #020303;\n}\n\n.btn-vimeo:focus, .btn-vimeo.focus {\n  box-shadow: 0 0 0 0.2rem rgba(57, 67, 66, 0.5);\n}\n\n.btn-vimeo.disabled, .btn-vimeo:disabled {\n  color: #fff;\n  background-color: #162221;\n  border-color: #162221;\n}\n\n.btn-vimeo:not(:disabled):not(.disabled):active, .btn-vimeo:not(:disabled):not(.disabled).active,\n.show > .btn-vimeo.dropdown-toggle {\n  color: #fff;\n  background-color: #020303;\n  border-color: black;\n}\n\n.btn-vimeo:not(:disabled):not(.disabled):active:focus, .btn-vimeo:not(:disabled):not(.disabled).active:focus,\n.show > .btn-vimeo.dropdown-toggle:focus {\n  box-shadow: 0 0 0 0.2rem rgba(57, 67, 66, 0.5);\n}\n\n.btn-vk {\n  color: #fff;\n  background-color: #45668e;\n  border-color: #45668e;\n  color: #ffffff;\n}\n\n.btn-vk:hover {\n  color: #fff;\n  background-color: #385474;\n  border-color: #344d6c;\n}\n\n.btn-vk:focus, .btn-vk.focus {\n  box-shadow: 0 0 0 0.2rem rgba(97, 125, 159, 0.5);\n}\n\n.btn-vk.disabled, .btn-vk:disabled {\n  color: #fff;\n  background-color: #45668e;\n  border-color: #45668e;\n}\n\n.btn-vk:not(:disabled):not(.disabled):active, .btn-vk:not(:disabled):not(.disabled).active,\n.show > .btn-vk.dropdown-toggle {\n  color: #fff;\n  background-color: #344d6c;\n  border-color: #304763;\n}\n\n.btn-vk:not(:disabled):not(.disabled):active:focus, .btn-vk:not(:disabled):not(.disabled).active:focus,\n.show > .btn-vk.dropdown-toggle:focus {\n  box-shadow: 0 0 0 0.2rem rgba(97, 125, 159, 0.5);\n}\n\n.btn-yahoo {\n  color: #fff;\n  background-color: #410093;\n  border-color: #410093;\n  color: #ffffff;\n}\n\n.btn-yahoo:hover {\n  color: #fff;\n  background-color: #30006d;\n  border-color: #2a0060;\n}\n\n.btn-yahoo:focus, .btn-yahoo.focus {\n  box-shadow: 0 0 0 0.2rem rgba(94, 38, 163, 0.5);\n}\n\n.btn-yahoo.disabled, .btn-yahoo:disabled {\n  color: #fff;\n  background-color: #410093;\n  border-color: #410093;\n}\n\n.btn-yahoo:not(:disabled):not(.disabled):active, .btn-yahoo:not(:disabled):not(.disabled).active,\n.show > .btn-yahoo.dropdown-toggle {\n  color: #fff;\n  background-color: #2a0060;\n  border-color: #250053;\n}\n\n.btn-yahoo:not(:disabled):not(.disabled):active:focus, .btn-yahoo:not(:disabled):not(.disabled).active:focus,\n.show > .btn-yahoo.dropdown-toggle:focus {\n  box-shadow: 0 0 0 0.2rem rgba(94, 38, 163, 0.5);\n}\n\n/*# sourceMappingURL=bootstrap-social.css.map */"]}
\ No newline at end of file
+{"version":3,"sources":["bootstrap-social.scss","node_modules/bootstrap/scss/mixins/_text-truncate.scss","node_modules/bootstrap/scss/mixins/_buttons.scss","node_modules/bootstrap/scss/mixins/_gradients.scss","bootstrap-social.css"],"names":[],"mappings":"AAcA,YAAA,iBACI,QAAA,mBAAA,QAAA,YACA,cAAA,MAAA,gBAAA,WACA,eAAA,OAAA,YAAA,OCbF,SAAA,OACA,cAAA,SACA,YAAA,ODQF,8BAAA,yBAMQ,SAAA,EAAA,EAAA,IAAA,KAAA,EAAA,EAAA,IACA,QAAA,EACA,aAAA,OARR,6BAAA,wBCVE,SAAA,OACA,cAAA,SACA,YAAA,ODQF,2BAAA,sBAcQ,QAAA,YAAA,QAAA,KAdR,qCAAA,gCAkBY,aAAA,KAlBZ,qCAAA,gCAuBY,aAAA,MAKZ,iBAEI,MAAA,QACA,OAAA,QACA,QAAA,EACA,cAAA,OAAA,gBAAA,OACA,eAAA,OAAA,YAAA,OACA,WAAA,YAPJ,8BASQ,OAAA,EACA,QAAA,EACA,cAAA,EACA,aAAA,EAZR,wBAeQ,MAAA,SACA,OAAA,SAIA,aAAA,EApBR,qCAkBY,aAAA,EAlBZ,wBAuBQ,MAAA,UACA,OAAA,UAxBR,qCA0BY,aAAA,EAUZ,eExEE,MAAA,KCAE,iBAAA,QDEF,aAAA,QFmEE,MAAA,KAGJ,qBElEI,MAAA,KCNA,iBAAA,QDQA,aAAA,QFgEJ,qBAAA,qBEvDM,WAAA,EAAA,EAAA,EAAA,MAAA,oBFuDN,wBAAA,wBEhDI,MAAA,KACA,iBAAA,QACA,aAAA,QF8CJ,oDAAA,oDI2BA,qCF/DI,MAAA,KACA,iBAAA,QAIA,aAAA,QF+BJ,0DAAA,0DIkCA,2CF1DQ,WAAA,EAAA,EAAA,EAAA,MAAA,oBF4BR,aE5EE,MAAA,KCAE,iBAAA,QDEF,aAAA,QFmEE,MAAA,KAOJ,mBEtEI,MAAA,KCNA,iBAAA,QDQA,aAAA,QFoEJ,mBAAA,mBE3DM,WAAA,EAAA,EAAA,EAAA,MAAA,oBF2DN,sBAAA,sBEpDI,MAAA,KACA,iBAAA,QACA,aAAA,QFkDJ,kDAAA,kDI0DA,mCFlGI,MAAA,KACA,iBAAA,QAIA,aAAA,QFmCJ,wDAAA,wDIiEA,yCF7FQ,WAAA,EAAA,EAAA,EAAA,MAAA,oBFgCR,cEhFE,MAAA,KCAE,iBAAA,QDEF,aAAA,QFmEE,MAAA,KAWJ,oBE1EI,MAAA,KCNA,iBAAA,QDQA,aAAA,QFwEJ,oBAAA,oBE/DM,WAAA,EAAA,EAAA,EAAA,MAAA,oBF+DN,uBAAA,uBExDI,MAAA,KACA,iBAAA,QACA,aAAA,QFsDJ,mDAAA,mDIyFA,oCFrII,MAAA,KACA,iBAAA,QAIA,aAAA,QFuCJ,yDAAA,yDIgGA,0CFhIQ,WAAA,EAAA,EAAA,EAAA,MAAA,oBFoCR,YEpFE,MAAA,KCAE,iBAAA,QDEF,aAAA,QFmEE,MAAA,KAeJ,kBE9EI,MAAA,KCNA,iBAAA,QDQA,aAAA,QF4EJ,kBAAA,kBEnEM,WAAA,EAAA,EAAA,EAAA,MAAA,oBFmEN,qBAAA,qBE5DI,MAAA,KACA,iBAAA,QACA,aAAA,QF0DJ,iDAAA,iDIwHA,kCFxKI,MAAA,KACA,iBAAA,QAIA,aAAA,QF2CJ,uDAAA,uDI+HA,wCFnKQ,WAAA,EAAA,EAAA,EAAA,MAAA,oBFwCR,gBExFE,MAAA,KCAE,iBAAA,QDEF,aAAA,QFmEE,MAAA,KAmBJ,sBElFI,MAAA,KCNA,iBAAA,QDQA,aAAA,QFgFJ,sBAAA,sBEvEM,WAAA,EAAA,EAAA,EAAA,MAAA,oBFuEN,yBAAA,yBEhEI,MAAA,KACA,iBAAA,QACA,aAAA,QF8DJ,qDAAA,qDIuJA,sCF3MI,MAAA,KACA,iBAAA,QAIA,aAAA,QF+CJ,2DAAA,2DI8JA,4CFtMQ,WAAA,EAAA,EAAA,EAAA,MAAA,oBF4CR,YE5FE,MAAA,KCAE,iBAAA,KDEF,aAAA,KFmEE,MAAA,KAuBJ,kBEtFI,MAAA,KCNA,iBAAA,QDQA,aAAA,QFoFJ,kBAAA,kBE3EM,WAAA,EAAA,EAAA,EAAA,MAAA,kBF2EN,qBAAA,qBEpEI,MAAA,KACA,iBAAA,KACA,aAAA,KFkEJ,iDAAA,iDIsLA,kCF9OI,MAAA,KACA,iBAAA,QAIA,aAAA,QFmDJ,uDAAA,uDI6LA,wCFzOQ,WAAA,EAAA,EAAA,EAAA,MAAA,kBFgDR,YEhGE,MAAA,KCAE,iBAAA,QDEF,aAAA,QFmEE,MAAA,KA2BJ,kBE1FI,MAAA,KCNA,iBAAA,QDQA,aAAA,QFwFJ,kBAAA,kBE/EM,WAAA,EAAA,EAAA,EAAA,MAAA,oBF+EN,qBAAA,qBExEI,MAAA,KACA,iBAAA,QACA,aAAA,QFsEJ,iDAAA,iDIqNA,kCFjRI,MAAA,KACA,iBAAA,QAIA,aAAA,QFuDJ,uDAAA,uDI4NA,wCF5QQ,WAAA,EAAA,EAAA,EAAA,MAAA,oBFoDR,eEpGE,MAAA,KCAE,iBAAA,QDEF,aAAA,QFmEE,MAAA,KA+BJ,qBE9FI,MAAA,KCNA,iBAAA,QDQA,aAAA,QF4FJ,qBAAA,qBEnFM,WAAA,EAAA,EAAA,EAAA,MAAA,oBFmFN,wBAAA,wBE5EI,MAAA,KACA,iBAAA,QACA,aAAA,QF0EJ,oDAAA,oDIoPA,qCFpTI,MAAA,KACA,iBAAA,QAIA,aAAA,QF2DJ,0DAAA,0DI2PA,2CF/SQ,WAAA,EAAA,EAAA,EAAA,MAAA,oBFwDR,cExGE,MAAA,KCAE,iBAAA,QDEF,aAAA,QFmEE,MAAA,KAmCJ,oBElGI,MAAA,KCNA,iBAAA,QDQA,aAAA,QFgGJ,oBAAA,oBEvFM,WAAA,EAAA,EAAA,EAAA,MAAA,oBFuFN,uBAAA,uBEhFI,MAAA,KACA,iBAAA,QACA,aAAA,QF8EJ,mDAAA,mDImRA,oCFvVI,MAAA,KACA,iBAAA,QAIA,aAAA,QF+DJ,yDAAA,yDI0RA,0CFlVQ,WAAA,EAAA,EAAA,EAAA,MAAA,oBF4DR,eE5GE,MAAA,KCAE,iBAAA,QDEF,aAAA,QFmEE,MAAA,KAuCJ,qBEtGI,MAAA,KCNA,iBAAA,QDQA,aAAA,QFoGJ,qBAAA,qBE3FM,WAAA,EAAA,EAAA,EAAA,MAAA,oBF2FN,wBAAA,wBEpFI,MAAA,KACA,iBAAA,QACA,aAAA,QFkFJ,oDAAA,oDIkTA,qCF1XI,MAAA,KACA,iBAAA,QAIA,aAAA,QFmEJ,0DAAA,0DIyTA,2CFrXQ,WAAA,EAAA,EAAA,EAAA,MAAA,oBFgER,mBEhHE,MAAA,QCAE,iBAAA,QDEF,aAAA,QFmEE,MAAA,KA2CJ,yBE1GI,MAAA,KCNA,iBAAA,QDQA,aAAA,QFwGJ,yBAAA,yBE/FM,WAAA,EAAA,EAAA,EAAA,MAAA,oBF+FN,4BAAA,4BExFI,MAAA,QACA,iBAAA,QACA,aAAA,QFsFJ,wDAAA,wDIiVA,yCF7ZI,MAAA,KACA,iBAAA,QAIA,aAAA,QFuEJ,8DAAA,8DIwVA,+CFxZQ,WAAA,EAAA,EAAA,EAAA,MAAA,oBFoER,YEpHE,MAAA,QCAE,iBAAA,QDEF,aAAA,QFmEE,MAAA,KA+CJ,kBE9GI,MAAA,KCNA,iBAAA,QDQA,aAAA,QF4GJ,kBAAA,kBEnGM,WAAA,EAAA,EAAA,EAAA,MAAA,oBFmGN,qBAAA,qBE5FI,MAAA,QACA,iBAAA,QACA,aAAA,QF0FJ,iDAAA,iDIgXA,kCFhcI,MAAA,KACA,iBAAA,QAIA,aAAA,QF2EJ,uDAAA,uDIuXA,wCF3bQ,WAAA,EAAA,EAAA,EAAA,MAAA,oBFwER,eExHE,MAAA,KCAE,iBAAA,QDEF,aAAA,QFmEE,MAAA,KAmDJ,qBElHI,MAAA,KCNA,iBAAA,QDQA,aAAA,QFgHJ,qBAAA,qBEvGM,WAAA,EAAA,EAAA,EAAA,MAAA,mBFuGN,wBAAA,wBEhGI,MAAA,KACA,iBAAA,QACA,aAAA,QF8FJ,oDAAA,oDI+YA,qCFneI,MAAA,KACA,iBAAA,QAIA,aAAA,QF+EJ,0DAAA,0DIsZA,2CF9dQ,WAAA,EAAA,EAAA,EAAA,MAAA,mBF4ER,YE5HE,MAAA,QCAE,iBAAA,QDEF,aAAA,QFmEE,MAAA,KAuDJ,kBEtHI,MAAA,QCNA,iBAAA,QDQA,aAAA,QFoHJ,kBAAA,kBE3GM,WAAA,EAAA,EAAA,EAAA,MAAA,qBF2GN,qBAAA,qBEpGI,MAAA,QACA,iBAAA,QACA,aAAA,QFkGJ,iDAAA,iDI8aA,kCFtgBI,MAAA,QACA,iBAAA,QAIA,aAAA,QFmFJ,uDAAA,uDIqbA,wCFjgBQ,WAAA,EAAA,EAAA,EAAA,MAAA,qBFgFR,gBEhIE,MAAA,QCAE,iBAAA,KDEF,aAAA,KFmEE,MAAA,KA2DJ,sBE1HI,MAAA,KCNA,iBAAA,QDQA,aAAA,QFwHJ,sBAAA,sBE/GM,WAAA,EAAA,EAAA,EAAA,MAAA,mBF+GN,yBAAA,yBExGI,MAAA,QACA,iBAAA,KACA,aAAA,KFsGJ,qDAAA,qDI6cA,sCFziBI,MAAA,KACA,iBAAA,QAIA,aAAA,QFuFJ,2DAAA,2DIodA,4CFpiBQ,WAAA,EAAA,EAAA,EAAA,MAAA,mBFoFR,YEpIE,MAAA,KCAE,iBAAA,QDEF,aAAA,QFmEE,MAAA,KA+DJ,kBE9HI,MAAA,KCNA,iBAAA,QDQA,aAAA,QF4HJ,kBAAA,kBEnHM,WAAA,EAAA,EAAA,EAAA,MAAA,mBFmHN,qBAAA,qBE5GI,MAAA,KACA,iBAAA,QACA,aAAA,QF0GJ,iDAAA,iDI4eA,kCF5kBI,MAAA,KACA,iBAAA,QAIA,aAAA,QF2FJ,uDAAA,uDImfA,wCFvkBQ,WAAA,EAAA,EAAA,EAAA,MAAA,mBFwFR,aExIE,MAAA,KCAE,iBAAA,QDEF,aAAA,QFmEE,MAAA,KAmEJ,mBElII,MAAA,KCNA,iBAAA,QDQA,aAAA,QFgIJ,mBAAA,mBEvHM,WAAA,EAAA,EAAA,EAAA,MAAA,oBFuHN,sBAAA,sBEhHI,MAAA,KACA,iBAAA,QACA,aAAA,QF8GJ,kDAAA,kDI2gBA,mCF/mBI,MAAA,KACA,iBAAA,QAIA,aAAA,QF+FJ,wDAAA,wDIkhBA,yCF1mBQ,WAAA,EAAA,EAAA,EAAA,MAAA,oBF4FR,WE5IE,MAAA,KCAE,iBAAA,QDEF,aAAA,QFmEE,MAAA,KAuEJ,iBEtII,MAAA,KCNA,iBAAA,QDQA,aAAA,QFoIJ,iBAAA,iBE3HM,WAAA,EAAA,EAAA,EAAA,MAAA,kBF2HN,oBAAA,oBEpHI,MAAA,KACA,iBAAA,QACA,aAAA,QFkHJ,gDAAA,gDI0iBA,iCFlpBI,MAAA,KACA,iBAAA,QAIA,aAAA,KFmGJ,sDAAA,sDIijBA,uCF7oBQ,WAAA,EAAA,EAAA,EAAA,MAAA,kBFgGR,QEhJE,MAAA,KCAE,iBAAA,QDEF,aAAA,QFmEE,MAAA,KA2EJ,cE1II,MAAA,KCNA,iBAAA,QDQA,aAAA,QFwIJ,cAAA,cE/HM,WAAA,EAAA,EAAA,EAAA,MAAA,oBF+HN,iBAAA,iBExHI,MAAA,KACA,iBAAA,QACA,aAAA,QFsHJ,6CAAA,6CIykBA,8BFrrBI,MAAA,KACA,iBAAA,QAIA,aAAA,QFuGJ,mDAAA,mDIglBA,oCFhrBQ,WAAA,EAAA,EAAA,EAAA,MAAA,oBFoGR,WEpJE,MAAA,KCAE,iBAAA,QDEF,aAAA,QFmEE,MAAA,KA+EJ,iBE9II,MAAA,KCNA,iBAAA,QDQA,aAAA,QF4IJ,iBAAA,iBEnIM,WAAA,EAAA,EAAA,EAAA,MAAA,mBFmIN,oBAAA,oBE5HI,MAAA,KACA,iBAAA,QACA,aAAA,QF0HJ,gDAAA,gDIwmBA,iCFxtBI,MAAA,KACA,iBAAA,QAIA,aAAA,QF2GJ,sDAAA,sDI+mBA,uCFntBQ,WAAA,EAAA,EAAA,EAAA,MAAA","sourcesContent":["@import \"~bootstrap/scss/functions\";\n@import \"~bootstrap/scss/mixins/box-shadow\";\n@import \"~bootstrap/scss/mixins/buttons\";\n@import \"~bootstrap/scss/mixins/hover\";\n@import \"~bootstrap/scss/mixins/gradients\";\n@import \"~bootstrap/scss/mixins/text-truncate\";\n@import \"~bootstrap/scss/variables\";\n// hey, brand-colors\n@import \"~brand-colors/dist/latest/scss/brand-colors.latest\";\n// compute sizes for default/lg/sm\n$bs-height-base: (($font-size-base * $btn-line-height) + ($btn-padding-y * 2)) !default;\n$bs-height-lg: (($font-size-lg * $btn-line-height-lg) + ($btn-padding-y-lg * 2)) !default;\n$bs-height-sm: (($font-size-sm * $btn-line-height-sm) + ($btn-padding-y-sm * 2)) !default;\n//\n.btn-social {\n    display: inline-flex;\n    justify-content: flex-start;\n    align-items: center;\n    @include text-truncate();\n    > :first-child {\n        flex: 0 0 1em;\n        padding: 0;\n        margin-right: $btn-padding-x;\n    }\n    > :last-child {\n        @include text-truncate();\n    }\n    &.btn-block {\n        display: flex;\n    }\n    &.btn-lg {\n        > :first-child {\n            margin-right: $btn-padding-x-lg;\n        }\n    }\n    &.btn-sm {\n        > :first-child {\n            margin-right: $btn-padding-x-sm;\n        }\n    }\n}\n\n.btn-social-icon {\n    @extend .btn-social;\n    width: $bs-height-base;\n    height: $bs-height-base;\n    padding: 0;\n    justify-content: center;\n    align-items: center;\n    box-sizing: content-box;\n    > :first-child {\n        margin: 0;\n        padding: 0;\n        padding-right: 0;\n        margin-right: 0;\n    }\n    &.btn-lg {\n        width: $bs-height-lg;\n        height: $bs-height-lg;\n        > :first-child {\n            margin-right: 0;\n        }\n        margin-right: 0;\n    }\n    &.btn-sm {\n        width: $bs-height-sm;\n        height: $bs-height-sm;\n        > :first-child {\n            margin-right: 0;\n        }\n    }\n}\n\n@mixin btn-social($color-bg, $color: #ffffff) {\n    @include button-variant($color-bg, $color-bg);\n    color: $color;\n}\n\n.btn-bitbucket {\n    @include btn-social($bc-bitbucket);\n}\n\n.btn-dropbox {\n    @include btn-social($bc-dropbox);\n}\n\n.btn-facebook {\n    @include btn-social($bc-facebook);\n}\n\n.btn-flickr {\n    @include btn-social($bc-flickr);\n}\n\n.btn-foursquare {\n    @include btn-social($bc-foursquare);\n}\n\n.btn-github {\n    @include btn-social($bc-github-8);\n}\n\n.btn-google {\n    @include btn-social($bc-google);\n}\n\n.btn-instagram {\n    @include btn-social($bc-instagram);\n}\n\n.btn-linkedin {\n    @include btn-social($bc-linkedin);\n}\n\n.btn-microsoft {\n    @include btn-social($bc-microsoft);\n}\n\n.btn-odnoklassniki {\n    @include btn-social($bc-odnoklassniki);\n}\n\n.btn-openid {\n    @include btn-social(#f7931e);\n}\n\n.btn-pinterest {\n    @include btn-social($bc-pinterest);\n}\n\n.btn-reddit {\n    @include btn-social($bc-reddit-3, #000);\n}\n\n.btn-soundcloud {\n    @include btn-social($bc-soundcloud);\n}\n\n.btn-tumblr {\n    @include btn-social($bc-tumblr);\n}\n\n.btn-twitter {\n    @include btn-social($bc-twitter);\n}\n\n.btn-vimeo {\n    @include btn-social($bc-vimeo);\n}\n\n.btn-vk {\n    @include btn-social($bc-vkontakte);\n}\n\n.btn-yahoo {\n    @include btn-social($bc-yahoo);\n}\n","// Text truncate\n// Requires inline-block or block for proper styling\n\n@mixin text-truncate() {\n  overflow: hidden;\n  text-overflow: ellipsis;\n  white-space: nowrap;\n}\n","// Button variants\n//\n// Easily pump out default styles, as well as :hover, :focus, :active,\n// and disabled options for all buttons\n\n@mixin button-variant($background, $border, $hover-background: darken($background, 7.5%), $hover-border: darken($border, 10%), $active-background: darken($background, 10%), $active-border: darken($border, 12.5%)) {\n  color: color-yiq($background);\n  @include gradient-bg($background);\n  border-color: $border;\n  @include box-shadow($btn-box-shadow);\n\n  @include hover {\n    color: color-yiq($hover-background);\n    @include gradient-bg($hover-background);\n    border-color: $hover-border;\n  }\n\n  &:focus,\n  &.focus {\n    // Avoid using mixin so we can pass custom focus shadow properly\n    @if $enable-shadows {\n      box-shadow: $btn-box-shadow, 0 0 0 $btn-focus-width rgba(mix(color-yiq($background), $border, 15%), .5);\n    } @else {\n      box-shadow: 0 0 0 $btn-focus-width rgba(mix(color-yiq($background), $border, 15%), .5);\n    }\n  }\n\n  // Disabled comes first so active can properly restyle\n  &.disabled,\n  &:disabled {\n    color: color-yiq($background);\n    background-color: $background;\n    border-color: $border;\n    // Remove CSS gradients if they're enabled\n    @if $enable-gradients {\n      background-image: none;\n    }\n  }\n\n  &:not(:disabled):not(.disabled):active,\n  &:not(:disabled):not(.disabled).active,\n  .show > &.dropdown-toggle {\n    color: color-yiq($active-background);\n    background-color: $active-background;\n    @if $enable-gradients {\n      background-image: none; // Remove the gradient for the pressed/active state\n    }\n    border-color: $active-border;\n\n    &:focus {\n      // Avoid using mixin so we can pass custom focus shadow properly\n      @if $enable-shadows and $btn-active-box-shadow != none {\n        box-shadow: $btn-active-box-shadow, 0 0 0 $btn-focus-width rgba(mix(color-yiq($background), $border, 15%), .5);\n      } @else {\n        box-shadow: 0 0 0 $btn-focus-width rgba(mix(color-yiq($background), $border, 15%), .5);\n      }\n    }\n  }\n}\n\n@mixin button-outline-variant($color, $color-hover: color-yiq($color), $active-background: $color, $active-border: $color) {\n  color: $color;\n  border-color: $color;\n\n  @include hover {\n    color: $color-hover;\n    background-color: $active-background;\n    border-color: $active-border;\n  }\n\n  &:focus,\n  &.focus {\n    box-shadow: 0 0 0 $btn-focus-width rgba($color, .5);\n  }\n\n  &.disabled,\n  &:disabled {\n    color: $color;\n    background-color: transparent;\n  }\n\n  &:not(:disabled):not(.disabled):active,\n  &:not(:disabled):not(.disabled).active,\n  .show > &.dropdown-toggle {\n    color: color-yiq($active-background);\n    background-color: $active-background;\n    border-color: $active-border;\n\n    &:focus {\n      // Avoid using mixin so we can pass custom focus shadow properly\n      @if $enable-shadows and $btn-active-box-shadow != none {\n        box-shadow: $btn-active-box-shadow, 0 0 0 $btn-focus-width rgba($color, .5);\n      } @else {\n        box-shadow: 0 0 0 $btn-focus-width rgba($color, .5);\n      }\n    }\n  }\n}\n\n// Button sizes\n@mixin button-size($padding-y, $padding-x, $font-size, $line-height, $border-radius) {\n  padding: $padding-y $padding-x;\n  @include font-size($font-size);\n  line-height: $line-height;\n  // Manually declare to provide an override to the browser default\n  @include border-radius($border-radius, 0);\n}\n","// Gradients\n\n@mixin gradient-bg($color) {\n  @if $enable-gradients {\n    background: $color linear-gradient(180deg, mix($body-bg, $color, 15%), $color) repeat-x;\n  } @else {\n    background-color: $color;\n  }\n}\n\n// Horizontal gradient, from left to right\n//\n// Creates two color stops, start and end, by specifying a color and position for each color stop.\n@mixin gradient-x($start-color: $gray-700, $end-color: $gray-800, $start-percent: 0%, $end-percent: 100%) {\n  background-image: linear-gradient(to right, $start-color $start-percent, $end-color $end-percent);\n  background-repeat: repeat-x;\n}\n\n// Vertical gradient, from top to bottom\n//\n// Creates two color stops, start and end, by specifying a color and position for each color stop.\n@mixin gradient-y($start-color: $gray-700, $end-color: $gray-800, $start-percent: 0%, $end-percent: 100%) {\n  background-image: linear-gradient(to bottom, $start-color $start-percent, $end-color $end-percent);\n  background-repeat: repeat-x;\n}\n\n@mixin gradient-directional($start-color: $gray-700, $end-color: $gray-800, $deg: 45deg) {\n  background-image: linear-gradient($deg, $start-color, $end-color);\n  background-repeat: repeat-x;\n}\n@mixin gradient-x-three-colors($start-color: $blue, $mid-color: $purple, $color-stop: 50%, $end-color: $red) {\n  background-image: linear-gradient(to right, $start-color, $mid-color $color-stop, $end-color);\n  background-repeat: no-repeat;\n}\n@mixin gradient-y-three-colors($start-color: $blue, $mid-color: $purple, $color-stop: 50%, $end-color: $red) {\n  background-image: linear-gradient($start-color, $mid-color $color-stop, $end-color);\n  background-repeat: no-repeat;\n}\n@mixin gradient-radial($inner-color: $gray-700, $outer-color: $gray-800) {\n  background-image: radial-gradient(circle, $inner-color, $outer-color);\n  background-repeat: no-repeat;\n}\n@mixin gradient-striped($color: rgba($white, .15), $angle: 45deg) {\n  background-image: linear-gradient($angle, $color 25%, transparent 25%, transparent 50%, $color 50%, $color 75%, transparent 75%, transparent);\n}\n","/*\n* @preserve brand-colors 2.0.1\n* http://reimertz.github.io/brand-colors\n* (c) 2017 Pierre Reimertz\n* may be freely distributed under the MIT license.\n*/\n.btn-social, .btn-social-icon {\n  display: inline-flex;\n  justify-content: flex-start;\n  align-items: center;\n  overflow: hidden;\n  text-overflow: ellipsis;\n  white-space: nowrap;\n}\n\n.btn-social > :first-child, .btn-social-icon > :first-child {\n  flex: 0 0 1em;\n  padding: 0;\n  margin-right: 0.75rem;\n}\n\n.btn-social > :last-child, .btn-social-icon > :last-child {\n  overflow: hidden;\n  text-overflow: ellipsis;\n  white-space: nowrap;\n}\n\n.btn-social.btn-block, .btn-block.btn-social-icon {\n  display: flex;\n}\n\n.btn-social.btn-lg > :first-child, .btn-lg.btn-social-icon > :first-child {\n  margin-right: 1rem;\n}\n\n.btn-social.btn-sm > :first-child, .btn-sm.btn-social-icon > :first-child {\n  margin-right: 0.5rem;\n}\n\n.btn-social-icon {\n  width: 2.25rem;\n  height: 2.25rem;\n  padding: 0;\n  justify-content: center;\n  align-items: center;\n  box-sizing: content-box;\n}\n\n.btn-social-icon > :first-child {\n  margin: 0;\n  padding: 0;\n  padding-right: 0;\n  margin-right: 0;\n}\n\n.btn-social-icon.btn-lg {\n  width: 2.875rem;\n  height: 2.875rem;\n  margin-right: 0;\n}\n\n.btn-social-icon.btn-lg > :first-child {\n  margin-right: 0;\n}\n\n.btn-social-icon.btn-sm {\n  width: 1.8125rem;\n  height: 1.8125rem;\n}\n\n.btn-social-icon.btn-sm > :first-child {\n  margin-right: 0;\n}\n\n.btn-bitbucket {\n  color: #fff;\n  background-color: #205081;\n  border-color: #205081;\n  color: #ffffff;\n}\n\n.btn-bitbucket:hover {\n  color: #fff;\n  background-color: #183d62;\n  border-color: #163758;\n}\n\n.btn-bitbucket:focus, .btn-bitbucket.focus {\n  box-shadow: 0 0 0 0.2rem rgba(65, 106, 148, 0.5);\n}\n\n.btn-bitbucket.disabled, .btn-bitbucket:disabled {\n  color: #fff;\n  background-color: #205081;\n  border-color: #205081;\n}\n\n.btn-bitbucket:not(:disabled):not(.disabled):active, .btn-bitbucket:not(:disabled):not(.disabled).active,\n.show > .btn-bitbucket.dropdown-toggle {\n  color: #fff;\n  background-color: #163758;\n  border-color: #13304e;\n}\n\n.btn-bitbucket:not(:disabled):not(.disabled):active:focus, .btn-bitbucket:not(:disabled):not(.disabled).active:focus,\n.show > .btn-bitbucket.dropdown-toggle:focus {\n  box-shadow: 0 0 0 0.2rem rgba(65, 106, 148, 0.5);\n}\n\n.btn-dropbox {\n  color: #fff;\n  background-color: #007ee5;\n  border-color: #007ee5;\n  color: #ffffff;\n}\n\n.btn-dropbox:hover {\n  color: #fff;\n  background-color: #0069bf;\n  border-color: #0062b2;\n}\n\n.btn-dropbox:focus, .btn-dropbox.focus {\n  box-shadow: 0 0 0 0.2rem rgba(38, 145, 233, 0.5);\n}\n\n.btn-dropbox.disabled, .btn-dropbox:disabled {\n  color: #fff;\n  background-color: #007ee5;\n  border-color: #007ee5;\n}\n\n.btn-dropbox:not(:disabled):not(.disabled):active, .btn-dropbox:not(:disabled):not(.disabled).active,\n.show > .btn-dropbox.dropdown-toggle {\n  color: #fff;\n  background-color: #0062b2;\n  border-color: #005ba5;\n}\n\n.btn-dropbox:not(:disabled):not(.disabled):active:focus, .btn-dropbox:not(:disabled):not(.disabled).active:focus,\n.show > .btn-dropbox.dropdown-toggle:focus {\n  box-shadow: 0 0 0 0.2rem rgba(38, 145, 233, 0.5);\n}\n\n.btn-facebook {\n  color: #fff;\n  background-color: #3b5998;\n  border-color: #3b5998;\n  color: #ffffff;\n}\n\n.btn-facebook:hover {\n  color: #fff;\n  background-color: #30497c;\n  border-color: #2d4373;\n}\n\n.btn-facebook:focus, .btn-facebook.focus {\n  box-shadow: 0 0 0 0.2rem rgba(88, 114, 167, 0.5);\n}\n\n.btn-facebook.disabled, .btn-facebook:disabled {\n  color: #fff;\n  background-color: #3b5998;\n  border-color: #3b5998;\n}\n\n.btn-facebook:not(:disabled):not(.disabled):active, .btn-facebook:not(:disabled):not(.disabled).active,\n.show > .btn-facebook.dropdown-toggle {\n  color: #fff;\n  background-color: #2d4373;\n  border-color: #293e6a;\n}\n\n.btn-facebook:not(:disabled):not(.disabled):active:focus, .btn-facebook:not(:disabled):not(.disabled).active:focus,\n.show > .btn-facebook.dropdown-toggle:focus {\n  box-shadow: 0 0 0 0.2rem rgba(88, 114, 167, 0.5);\n}\n\n.btn-flickr {\n  color: #fff;\n  background-color: #0063dc;\n  border-color: #0063dc;\n  color: #ffffff;\n}\n\n.btn-flickr:hover {\n  color: #fff;\n  background-color: #0052b6;\n  border-color: #004ca9;\n}\n\n.btn-flickr:focus, .btn-flickr.focus {\n  box-shadow: 0 0 0 0.2rem rgba(38, 122, 225, 0.5);\n}\n\n.btn-flickr.disabled, .btn-flickr:disabled {\n  color: #fff;\n  background-color: #0063dc;\n  border-color: #0063dc;\n}\n\n.btn-flickr:not(:disabled):not(.disabled):active, .btn-flickr:not(:disabled):not(.disabled).active,\n.show > .btn-flickr.dropdown-toggle {\n  color: #fff;\n  background-color: #004ca9;\n  border-color: #00469c;\n}\n\n.btn-flickr:not(:disabled):not(.disabled):active:focus, .btn-flickr:not(:disabled):not(.disabled).active:focus,\n.show > .btn-flickr.dropdown-toggle:focus {\n  box-shadow: 0 0 0 0.2rem rgba(38, 122, 225, 0.5);\n}\n\n.btn-foursquare {\n  color: #fff;\n  background-color: #f94877;\n  border-color: #f94877;\n  color: #ffffff;\n}\n\n.btn-foursquare:hover {\n  color: #fff;\n  background-color: #f8235b;\n  border-color: #f71752;\n}\n\n.btn-foursquare:focus, .btn-foursquare.focus {\n  box-shadow: 0 0 0 0.2rem rgba(250, 99, 139, 0.5);\n}\n\n.btn-foursquare.disabled, .btn-foursquare:disabled {\n  color: #fff;\n  background-color: #f94877;\n  border-color: #f94877;\n}\n\n.btn-foursquare:not(:disabled):not(.disabled):active, .btn-foursquare:not(:disabled):not(.disabled).active,\n.show > .btn-foursquare.dropdown-toggle {\n  color: #fff;\n  background-color: #f71752;\n  border-color: #f70a49;\n}\n\n.btn-foursquare:not(:disabled):not(.disabled):active:focus, .btn-foursquare:not(:disabled):not(.disabled).active:focus,\n.show > .btn-foursquare.dropdown-toggle:focus {\n  box-shadow: 0 0 0 0.2rem rgba(250, 99, 139, 0.5);\n}\n\n.btn-github {\n  color: #fff;\n  background-color: #333;\n  border-color: #333;\n  color: #ffffff;\n}\n\n.btn-github:hover {\n  color: #fff;\n  background-color: #202020;\n  border-color: #1a1a1a;\n}\n\n.btn-github:focus, .btn-github.focus {\n  box-shadow: 0 0 0 0.2rem rgba(82, 82, 82, 0.5);\n}\n\n.btn-github.disabled, .btn-github:disabled {\n  color: #fff;\n  background-color: #333;\n  border-color: #333;\n}\n\n.btn-github:not(:disabled):not(.disabled):active, .btn-github:not(:disabled):not(.disabled).active,\n.show > .btn-github.dropdown-toggle {\n  color: #fff;\n  background-color: #1a1a1a;\n  border-color: #131313;\n}\n\n.btn-github:not(:disabled):not(.disabled):active:focus, .btn-github:not(:disabled):not(.disabled).active:focus,\n.show > .btn-github.dropdown-toggle:focus {\n  box-shadow: 0 0 0 0.2rem rgba(82, 82, 82, 0.5);\n}\n\n.btn-google {\n  color: #fff;\n  background-color: #4285f4;\n  border-color: #4285f4;\n  color: #ffffff;\n}\n\n.btn-google:hover {\n  color: #fff;\n  background-color: #1e6ef2;\n  border-color: #1266f1;\n}\n\n.btn-google:focus, .btn-google.focus {\n  box-shadow: 0 0 0 0.2rem rgba(94, 151, 246, 0.5);\n}\n\n.btn-google.disabled, .btn-google:disabled {\n  color: #fff;\n  background-color: #4285f4;\n  border-color: #4285f4;\n}\n\n.btn-google:not(:disabled):not(.disabled):active, .btn-google:not(:disabled):not(.disabled).active,\n.show > .btn-google.dropdown-toggle {\n  color: #fff;\n  background-color: #1266f1;\n  border-color: #0e60e9;\n}\n\n.btn-google:not(:disabled):not(.disabled):active:focus, .btn-google:not(:disabled):not(.disabled).active:focus,\n.show > .btn-google.dropdown-toggle:focus {\n  box-shadow: 0 0 0 0.2rem rgba(94, 151, 246, 0.5);\n}\n\n.btn-instagram {\n  color: #fff;\n  background-color: #405de6;\n  border-color: #405de6;\n  color: #ffffff;\n}\n\n.btn-instagram:hover {\n  color: #fff;\n  background-color: #1e40e2;\n  border-color: #1c3dd7;\n}\n\n.btn-instagram:focus, .btn-instagram.focus {\n  box-shadow: 0 0 0 0.2rem rgba(93, 117, 234, 0.5);\n}\n\n.btn-instagram.disabled, .btn-instagram:disabled {\n  color: #fff;\n  background-color: #405de6;\n  border-color: #405de6;\n}\n\n.btn-instagram:not(:disabled):not(.disabled):active, .btn-instagram:not(:disabled):not(.disabled).active,\n.show > .btn-instagram.dropdown-toggle {\n  color: #fff;\n  background-color: #1c3dd7;\n  border-color: #1b3acc;\n}\n\n.btn-instagram:not(:disabled):not(.disabled):active:focus, .btn-instagram:not(:disabled):not(.disabled).active:focus,\n.show > .btn-instagram.dropdown-toggle:focus {\n  box-shadow: 0 0 0 0.2rem rgba(93, 117, 234, 0.5);\n}\n\n.btn-linkedin {\n  color: #fff;\n  background-color: #0077b5;\n  border-color: #0077b5;\n  color: #ffffff;\n}\n\n.btn-linkedin:hover {\n  color: #fff;\n  background-color: #005e8f;\n  border-color: #005582;\n}\n\n.btn-linkedin:focus, .btn-linkedin.focus {\n  box-shadow: 0 0 0 0.2rem rgba(38, 139, 192, 0.5);\n}\n\n.btn-linkedin.disabled, .btn-linkedin:disabled {\n  color: #fff;\n  background-color: #0077b5;\n  border-color: #0077b5;\n}\n\n.btn-linkedin:not(:disabled):not(.disabled):active, .btn-linkedin:not(:disabled):not(.disabled).active,\n.show > .btn-linkedin.dropdown-toggle {\n  color: #fff;\n  background-color: #005582;\n  border-color: #004d75;\n}\n\n.btn-linkedin:not(:disabled):not(.disabled):active:focus, .btn-linkedin:not(:disabled):not(.disabled).active:focus,\n.show > .btn-linkedin.dropdown-toggle:focus {\n  box-shadow: 0 0 0 0.2rem rgba(38, 139, 192, 0.5);\n}\n\n.btn-microsoft {\n  color: #fff;\n  background-color: #f65314;\n  border-color: #f65314;\n  color: #ffffff;\n}\n\n.btn-microsoft:hover {\n  color: #fff;\n  background-color: #db4308;\n  border-color: #cf3f08;\n}\n\n.btn-microsoft:focus, .btn-microsoft.focus {\n  box-shadow: 0 0 0 0.2rem rgba(247, 109, 55, 0.5);\n}\n\n.btn-microsoft.disabled, .btn-microsoft:disabled {\n  color: #fff;\n  background-color: #f65314;\n  border-color: #f65314;\n}\n\n.btn-microsoft:not(:disabled):not(.disabled):active, .btn-microsoft:not(:disabled):not(.disabled).active,\n.show > .btn-microsoft.dropdown-toggle {\n  color: #fff;\n  background-color: #cf3f08;\n  border-color: #c33c07;\n}\n\n.btn-microsoft:not(:disabled):not(.disabled):active:focus, .btn-microsoft:not(:disabled):not(.disabled).active:focus,\n.show > .btn-microsoft.dropdown-toggle:focus {\n  box-shadow: 0 0 0 0.2rem rgba(247, 109, 55, 0.5);\n}\n\n.btn-odnoklassniki {\n  color: #212529;\n  background-color: #ed812b;\n  border-color: #ed812b;\n  color: #ffffff;\n}\n\n.btn-odnoklassniki:hover {\n  color: #fff;\n  background-color: #df6d13;\n  border-color: #d36812;\n}\n\n.btn-odnoklassniki:focus, .btn-odnoklassniki.focus {\n  box-shadow: 0 0 0 0.2rem rgba(206, 115, 43, 0.5);\n}\n\n.btn-odnoklassniki.disabled, .btn-odnoklassniki:disabled {\n  color: #212529;\n  background-color: #ed812b;\n  border-color: #ed812b;\n}\n\n.btn-odnoklassniki:not(:disabled):not(.disabled):active, .btn-odnoklassniki:not(:disabled):not(.disabled).active,\n.show > .btn-odnoklassniki.dropdown-toggle {\n  color: #fff;\n  background-color: #d36812;\n  border-color: #c76211;\n}\n\n.btn-odnoklassniki:not(:disabled):not(.disabled):active:focus, .btn-odnoklassniki:not(:disabled):not(.disabled).active:focus,\n.show > .btn-odnoklassniki.dropdown-toggle:focus {\n  box-shadow: 0 0 0 0.2rem rgba(206, 115, 43, 0.5);\n}\n\n.btn-openid {\n  color: #212529;\n  background-color: #f7931e;\n  border-color: #f7931e;\n  color: #ffffff;\n}\n\n.btn-openid:hover {\n  color: #fff;\n  background-color: #e78008;\n  border-color: #da7908;\n}\n\n.btn-openid:focus, .btn-openid.focus {\n  box-shadow: 0 0 0 0.2rem rgba(215, 131, 32, 0.5);\n}\n\n.btn-openid.disabled, .btn-openid:disabled {\n  color: #212529;\n  background-color: #f7931e;\n  border-color: #f7931e;\n}\n\n.btn-openid:not(:disabled):not(.disabled):active, .btn-openid:not(:disabled):not(.disabled).active,\n.show > .btn-openid.dropdown-toggle {\n  color: #fff;\n  background-color: #da7908;\n  border-color: #ce7207;\n}\n\n.btn-openid:not(:disabled):not(.disabled):active:focus, .btn-openid:not(:disabled):not(.disabled).active:focus,\n.show > .btn-openid.dropdown-toggle:focus {\n  box-shadow: 0 0 0 0.2rem rgba(215, 131, 32, 0.5);\n}\n\n.btn-pinterest {\n  color: #fff;\n  background-color: #bd081c;\n  border-color: #bd081c;\n  color: #ffffff;\n}\n\n.btn-pinterest:hover {\n  color: #fff;\n  background-color: #980617;\n  border-color: #8c0615;\n}\n\n.btn-pinterest:focus, .btn-pinterest.focus {\n  box-shadow: 0 0 0 0.2rem rgba(199, 45, 62, 0.5);\n}\n\n.btn-pinterest.disabled, .btn-pinterest:disabled {\n  color: #fff;\n  background-color: #bd081c;\n  border-color: #bd081c;\n}\n\n.btn-pinterest:not(:disabled):not(.disabled):active, .btn-pinterest:not(:disabled):not(.disabled).active,\n.show > .btn-pinterest.dropdown-toggle {\n  color: #fff;\n  background-color: #8c0615;\n  border-color: #800513;\n}\n\n.btn-pinterest:not(:disabled):not(.disabled):active:focus, .btn-pinterest:not(:disabled):not(.disabled).active:focus,\n.show > .btn-pinterest.dropdown-toggle:focus {\n  box-shadow: 0 0 0 0.2rem rgba(199, 45, 62, 0.5);\n}\n\n.btn-reddit {\n  color: #212529;\n  background-color: #cee3f8;\n  border-color: #cee3f8;\n  color: #000;\n}\n\n.btn-reddit:hover {\n  color: #212529;\n  background-color: #add0f3;\n  border-color: #a1caf2;\n}\n\n.btn-reddit:focus, .btn-reddit.focus {\n  box-shadow: 0 0 0 0.2rem rgba(180, 199, 217, 0.5);\n}\n\n.btn-reddit.disabled, .btn-reddit:disabled {\n  color: #212529;\n  background-color: #cee3f8;\n  border-color: #cee3f8;\n}\n\n.btn-reddit:not(:disabled):not(.disabled):active, .btn-reddit:not(:disabled):not(.disabled).active,\n.show > .btn-reddit.dropdown-toggle {\n  color: #212529;\n  background-color: #a1caf2;\n  border-color: #96c3f0;\n}\n\n.btn-reddit:not(:disabled):not(.disabled):active:focus, .btn-reddit:not(:disabled):not(.disabled).active:focus,\n.show > .btn-reddit.dropdown-toggle:focus {\n  box-shadow: 0 0 0 0.2rem rgba(180, 199, 217, 0.5);\n}\n\n.btn-soundcloud {\n  color: #212529;\n  background-color: #ff8800;\n  border-color: #ff8800;\n  color: #ffffff;\n}\n\n.btn-soundcloud:hover {\n  color: #fff;\n  background-color: #d97400;\n  border-color: #cc6d00;\n}\n\n.btn-soundcloud:focus, .btn-soundcloud.focus {\n  box-shadow: 0 0 0 0.2rem rgba(222, 121, 6, 0.5);\n}\n\n.btn-soundcloud.disabled, .btn-soundcloud:disabled {\n  color: #212529;\n  background-color: #ff8800;\n  border-color: #ff8800;\n}\n\n.btn-soundcloud:not(:disabled):not(.disabled):active, .btn-soundcloud:not(:disabled):not(.disabled).active,\n.show > .btn-soundcloud.dropdown-toggle {\n  color: #fff;\n  background-color: #cc6d00;\n  border-color: #bf6600;\n}\n\n.btn-soundcloud:not(:disabled):not(.disabled):active:focus, .btn-soundcloud:not(:disabled):not(.disabled).active:focus,\n.show > .btn-soundcloud.dropdown-toggle:focus {\n  box-shadow: 0 0 0 0.2rem rgba(222, 121, 6, 0.5);\n}\n\n.btn-tumblr {\n  color: #fff;\n  background-color: #35465c;\n  border-color: #35465c;\n  color: #ffffff;\n}\n\n.btn-tumblr:hover {\n  color: #fff;\n  background-color: #273444;\n  border-color: #222d3c;\n}\n\n.btn-tumblr:focus, .btn-tumblr.focus {\n  box-shadow: 0 0 0 0.2rem rgba(83, 98, 116, 0.5);\n}\n\n.btn-tumblr.disabled, .btn-tumblr:disabled {\n  color: #fff;\n  background-color: #35465c;\n  border-color: #35465c;\n}\n\n.btn-tumblr:not(:disabled):not(.disabled):active, .btn-tumblr:not(:disabled):not(.disabled).active,\n.show > .btn-tumblr.dropdown-toggle {\n  color: #fff;\n  background-color: #222d3c;\n  border-color: #1e2734;\n}\n\n.btn-tumblr:not(:disabled):not(.disabled):active:focus, .btn-tumblr:not(:disabled):not(.disabled).active:focus,\n.show > .btn-tumblr.dropdown-toggle:focus {\n  box-shadow: 0 0 0 0.2rem rgba(83, 98, 116, 0.5);\n}\n\n.btn-twitter {\n  color: #fff;\n  background-color: #1da1f2;\n  border-color: #1da1f2;\n  color: #ffffff;\n}\n\n.btn-twitter:hover {\n  color: #fff;\n  background-color: #0d8ddc;\n  border-color: #0c85d0;\n}\n\n.btn-twitter:focus, .btn-twitter.focus {\n  box-shadow: 0 0 0 0.2rem rgba(63, 175, 244, 0.5);\n}\n\n.btn-twitter.disabled, .btn-twitter:disabled {\n  color: #fff;\n  background-color: #1da1f2;\n  border-color: #1da1f2;\n}\n\n.btn-twitter:not(:disabled):not(.disabled):active, .btn-twitter:not(:disabled):not(.disabled).active,\n.show > .btn-twitter.dropdown-toggle {\n  color: #fff;\n  background-color: #0c85d0;\n  border-color: #0b7ec4;\n}\n\n.btn-twitter:not(:disabled):not(.disabled):active:focus, .btn-twitter:not(:disabled):not(.disabled).active:focus,\n.show > .btn-twitter.dropdown-toggle:focus {\n  box-shadow: 0 0 0 0.2rem rgba(63, 175, 244, 0.5);\n}\n\n.btn-vimeo {\n  color: #fff;\n  background-color: #162221;\n  border-color: #162221;\n  color: #ffffff;\n}\n\n.btn-vimeo:hover {\n  color: #fff;\n  background-color: #070b0a;\n  border-color: #020303;\n}\n\n.btn-vimeo:focus, .btn-vimeo.focus {\n  box-shadow: 0 0 0 0.2rem rgba(57, 67, 66, 0.5);\n}\n\n.btn-vimeo.disabled, .btn-vimeo:disabled {\n  color: #fff;\n  background-color: #162221;\n  border-color: #162221;\n}\n\n.btn-vimeo:not(:disabled):not(.disabled):active, .btn-vimeo:not(:disabled):not(.disabled).active,\n.show > .btn-vimeo.dropdown-toggle {\n  color: #fff;\n  background-color: #020303;\n  border-color: black;\n}\n\n.btn-vimeo:not(:disabled):not(.disabled):active:focus, .btn-vimeo:not(:disabled):not(.disabled).active:focus,\n.show > .btn-vimeo.dropdown-toggle:focus {\n  box-shadow: 0 0 0 0.2rem rgba(57, 67, 66, 0.5);\n}\n\n.btn-vk {\n  color: #fff;\n  background-color: #45668e;\n  border-color: #45668e;\n  color: #ffffff;\n}\n\n.btn-vk:hover {\n  color: #fff;\n  background-color: #385474;\n  border-color: #344d6c;\n}\n\n.btn-vk:focus, .btn-vk.focus {\n  box-shadow: 0 0 0 0.2rem rgba(97, 125, 159, 0.5);\n}\n\n.btn-vk.disabled, .btn-vk:disabled {\n  color: #fff;\n  background-color: #45668e;\n  border-color: #45668e;\n}\n\n.btn-vk:not(:disabled):not(.disabled):active, .btn-vk:not(:disabled):not(.disabled).active,\n.show > .btn-vk.dropdown-toggle {\n  color: #fff;\n  background-color: #344d6c;\n  border-color: #304763;\n}\n\n.btn-vk:not(:disabled):not(.disabled):active:focus, .btn-vk:not(:disabled):not(.disabled).active:focus,\n.show > .btn-vk.dropdown-toggle:focus {\n  box-shadow: 0 0 0 0.2rem rgba(97, 125, 159, 0.5);\n}\n\n.btn-yahoo {\n  color: #fff;\n  background-color: #410093;\n  border-color: #410093;\n  color: #ffffff;\n}\n\n.btn-yahoo:hover {\n  color: #fff;\n  background-color: #30006d;\n  border-color: #2a0060;\n}\n\n.btn-yahoo:focus, .btn-yahoo.focus {\n  box-shadow: 0 0 0 0.2rem rgba(94, 38, 163, 0.5);\n}\n\n.btn-yahoo.disabled, .btn-yahoo:disabled {\n  color: #fff;\n  background-color: #410093;\n  border-color: #410093;\n}\n\n.btn-yahoo:not(:disabled):not(.disabled):active, .btn-yahoo:not(:disabled):not(.disabled).active,\n.show > .btn-yahoo.dropdown-toggle {\n  color: #fff;\n  background-color: #2a0060;\n  border-color: #250053;\n}\n\n.btn-yahoo:not(:disabled):not(.disabled):active:focus, .btn-yahoo:not(:disabled):not(.disabled).active:focus,\n.show > .btn-yahoo.dropdown-toggle:focus {\n  box-shadow: 0 0 0 0.2rem rgba(94, 38, 163, 0.5);\n}\n\n/*# sourceMappingURL=bootstrap-social.css.map */"]}
diff --git a/web/static/css/bootstrap.min.css b/web/static/css/bootstrap.min.css
index b35d4e105b0..828d4d51257 100644
--- a/web/static/css/bootstrap.min.css
+++ b/web/static/css/bootstrap.min.css
@@ -9,4 +9,4 @@
  * Copyright 2011-2021 The Bootstrap Authors
  * Copyright 2011-2021 Twitter, Inc.
  * Licensed under MIT (https://github.com/twbs/bootstrap/blob/main/LICENSE)
- */@import url(https://fonts.googleapis.com/css2?family=Lato:ital,wght@0,400;0,700;1,400&display=swap);:root{--blue:#375a7f;--indigo:#6610f2;--purple:#6f42c1;--pink:#e83e8c;--red:#e74c3c;--orange:#fd7e14;--yellow:#f39c12;--green:#00bc8c;--teal:#20c997;--cyan:#3498db;--white:#fff;--gray:#888;--gray-dark:#303030;--primary:#375a7f;--secondary:#444;--success:#00bc8c;--info:#3498db;--warning:#f39c12;--danger:#e74c3c;--light:#adb5bd;--dark:#303030;--breakpoint-xs:0;--breakpoint-sm:576px;--breakpoint-md:768px;--breakpoint-lg:992px;--breakpoint-xl:1200px;--font-family-sans-serif:Lato,-apple-system,BlinkMacSystemFont,"Segoe UI",Roboto,"Helvetica Neue",Arial,sans-serif,"Apple Color Emoji","Segoe UI Emoji","Segoe UI Symbol";--font-family-monospace:SFMono-Regular,Menlo,Monaco,Consolas,"Liberation Mono","Courier New",monospace}*,::after,::before{box-sizing:border-box}html{font-family:sans-serif;line-height:1.15;-webkit-text-size-adjust:100%;-webkit-tap-highlight-color:transparent}article,aside,figcaption,figure,footer,header,hgroup,main,nav,section{display:block}body{margin:0;font-family:Lato,-apple-system,BlinkMacSystemFont,"Segoe UI",Roboto,"Helvetica Neue",Arial,sans-serif,"Apple Color Emoji","Segoe UI Emoji","Segoe UI Symbol";font-size:.9375rem;font-weight:400;line-height:1.5;color:#fff;text-align:left;background-color:#222}[tabindex="-1"]:focus:not(:focus-visible){outline:0!important}hr{box-sizing:content-box;height:0;overflow:visible}h1,h2,h3,h4,h5,h6{margin-top:0;margin-bottom:.5rem}p{margin-top:0;margin-bottom:1rem}abbr[data-original-title],abbr[title]{text-decoration:underline;-webkit-text-decoration:underline dotted;text-decoration:underline dotted;cursor:help;border-bottom:0;-webkit-text-decoration-skip-ink:none;text-decoration-skip-ink:none}address{margin-bottom:1rem;font-style:normal;line-height:inherit}dl,ol,ul{margin-top:0;margin-bottom:1rem}ol ol,ol ul,ul ol,ul ul{margin-bottom:0}dt{font-weight:700}dd{margin-bottom:.5rem;margin-left:0}blockquote{margin:0 0 1rem}b,strong{font-weight:bolder}small{font-size:80%}sub,sup{position:relative;font-size:75%;line-height:0;vertical-align:baseline}sub{bottom:-.25em}sup{top:-.5em}a{color:#00bc8c;text-decoration:none;background-color:transparent}a:hover{color:#007053;text-decoration:underline}a:not([href]):not([class]){color:inherit;text-decoration:none}a:not([href]):not([class]):hover{color:inherit;text-decoration:none}code,kbd,pre,samp{font-family:SFMono-Regular,Menlo,Monaco,Consolas,"Liberation Mono","Courier New",monospace;font-size:1em}pre{margin-top:0;margin-bottom:1rem;overflow:auto;-ms-overflow-style:scrollbar}figure{margin:0 0 1rem}img{vertical-align:middle;border-style:none}svg{overflow:hidden;vertical-align:middle}table{border-collapse:collapse}caption{padding-top:.75rem;padding-bottom:.75rem;color:#888;text-align:left;caption-side:bottom}th{text-align:inherit;text-align:-webkit-match-parent}label{display:inline-block;margin-bottom:.5rem}button{border-radius:0}button:focus:not(:focus-visible){outline:0}button,input,optgroup,select,textarea{margin:0;font-family:inherit;font-size:inherit;line-height:inherit}button,input{overflow:visible}button,select{text-transform:none}[role=button]{cursor:pointer}select{word-wrap:normal}[type=button],[type=reset],[type=submit],button{-webkit-appearance:button}[type=button]:not(:disabled),[type=reset]:not(:disabled),[type=submit]:not(:disabled),button:not(:disabled){cursor:pointer}[type=button]::-moz-focus-inner,[type=reset]::-moz-focus-inner,[type=submit]::-moz-focus-inner,button::-moz-focus-inner{padding:0;border-style:none}input[type=checkbox],input[type=radio]{box-sizing:border-box;padding:0}textarea{overflow:auto;resize:vertical}fieldset{min-width:0;padding:0;margin:0;border:0}legend{display:block;width:100%;max-width:100%;padding:0;margin-bottom:.5rem;font-size:1.5rem;line-height:inherit;color:inherit;white-space:normal}progress{vertical-align:baseline}[type=number]::-webkit-inner-spin-button,[type=number]::-webkit-outer-spin-button{height:auto}[type=search]{outline-offset:-2px;-webkit-appearance:none}[type=search]::-webkit-search-decoration{-webkit-appearance:none}::-webkit-file-upload-button{font:inherit;-webkit-appearance:button}output{display:inline-block}summary{display:list-item;cursor:pointer}template{display:none}[hidden]{display:none!important}.h1,.h2,.h3,.h4,.h5,.h6,h1,h2,h3,h4,h5,h6{margin-bottom:.5rem;font-weight:500;line-height:1.2}.h1,h1{font-size:3rem}.h2,h2{font-size:2.5rem}.h3,h3{font-size:2rem}.h4,h4{font-size:1.40625rem}.h5,h5{font-size:1.171875rem}.h6,h6{font-size:.9375rem}.lead{font-size:1.171875rem;font-weight:300}.display-1{font-size:6rem;font-weight:300;line-height:1.2}.display-2{font-size:5.5rem;font-weight:300;line-height:1.2}.display-3{font-size:4.5rem;font-weight:300;line-height:1.2}.display-4{font-size:3.5rem;font-weight:300;line-height:1.2}hr{margin-top:1rem;margin-bottom:1rem;border:0;border-top:1px solid rgba(0,0,0,.1)}.small,small{font-size:80%;font-weight:400}.mark,mark{padding:.2em;background-color:#fcf8e3}.list-unstyled{padding-left:0;list-style:none}.list-inline{padding-left:0;list-style:none}.list-inline-item{display:inline-block}.list-inline-item:not(:last-child){margin-right:.5rem}.initialism{font-size:90%;text-transform:uppercase}.blockquote{margin-bottom:1rem;font-size:1.171875rem}.blockquote-footer{display:block;font-size:80%;color:#888}.blockquote-footer::before{content:"\2014\00A0"}.img-fluid{max-width:100%;height:auto}.img-thumbnail{padding:.25rem;background-color:#222;border:1px solid #dee2e6;border-radius:.25rem;max-width:100%;height:auto}.figure{display:inline-block}.figure-img{margin-bottom:.5rem;line-height:1}.figure-caption{font-size:90%;color:#888}code{font-size:87.5%;color:#e83e8c;word-wrap:break-word}a>code{color:inherit}kbd{padding:.2rem .4rem;font-size:87.5%;color:#fff;background-color:#222;border-radius:.2rem}kbd kbd{padding:0;font-size:100%;font-weight:700}pre{display:block;font-size:87.5%;color:inherit}pre code{font-size:inherit;color:inherit;word-break:normal}.pre-scrollable{max-height:340px;overflow-y:scroll}.container,.container-fluid,.container-lg,.container-md,.container-sm,.container-xl{width:100%;padding-right:15px;padding-left:15px;margin-right:auto;margin-left:auto}@media (min-width:576px){.container,.container-sm{max-width:540px}}@media (min-width:768px){.container,.container-md,.container-sm{max-width:720px}}@media (min-width:992px){.container,.container-lg,.container-md,.container-sm{max-width:960px}}@media (min-width:1200px){.container,.container-lg,.container-md,.container-sm,.container-xl{max-width:1140px}}.row{display:-ms-flexbox;display:flex;-ms-flex-wrap:wrap;flex-wrap:wrap;margin-right:-15px;margin-left:-15px}.no-gutters{margin-right:0;margin-left:0}.no-gutters>.col,.no-gutters>[class*=col-]{padding-right:0;padding-left:0}.col,.col-1,.col-10,.col-11,.col-12,.col-2,.col-3,.col-4,.col-5,.col-6,.col-7,.col-8,.col-9,.col-auto,.col-lg,.col-lg-1,.col-lg-10,.col-lg-11,.col-lg-12,.col-lg-2,.col-lg-3,.col-lg-4,.col-lg-5,.col-lg-6,.col-lg-7,.col-lg-8,.col-lg-9,.col-lg-auto,.col-md,.col-md-1,.col-md-10,.col-md-11,.col-md-12,.col-md-2,.col-md-3,.col-md-4,.col-md-5,.col-md-6,.col-md-7,.col-md-8,.col-md-9,.col-md-auto,.col-sm,.col-sm-1,.col-sm-10,.col-sm-11,.col-sm-12,.col-sm-2,.col-sm-3,.col-sm-4,.col-sm-5,.col-sm-6,.col-sm-7,.col-sm-8,.col-sm-9,.col-sm-auto,.col-xl,.col-xl-1,.col-xl-10,.col-xl-11,.col-xl-12,.col-xl-2,.col-xl-3,.col-xl-4,.col-xl-5,.col-xl-6,.col-xl-7,.col-xl-8,.col-xl-9,.col-xl-auto{position:relative;width:100%;padding-right:15px;padding-left:15px}.col{-ms-flex-preferred-size:0;flex-basis:0;-ms-flex-positive:1;flex-grow:1;max-width:100%}.row-cols-1>*{-ms-flex:0 0 100%;flex:0 0 100%;max-width:100%}.row-cols-2>*{-ms-flex:0 0 50%;flex:0 0 50%;max-width:50%}.row-cols-3>*{-ms-flex:0 0 33.333333%;flex:0 0 33.333333%;max-width:33.333333%}.row-cols-4>*{-ms-flex:0 0 25%;flex:0 0 25%;max-width:25%}.row-cols-5>*{-ms-flex:0 0 20%;flex:0 0 20%;max-width:20%}.row-cols-6>*{-ms-flex:0 0 16.666667%;flex:0 0 16.666667%;max-width:16.666667%}.col-auto{-ms-flex:0 0 auto;flex:0 0 auto;width:auto;max-width:100%}.col-1{-ms-flex:0 0 8.333333%;flex:0 0 8.333333%;max-width:8.333333%}.col-2{-ms-flex:0 0 16.666667%;flex:0 0 16.666667%;max-width:16.666667%}.col-3{-ms-flex:0 0 25%;flex:0 0 25%;max-width:25%}.col-4{-ms-flex:0 0 33.333333%;flex:0 0 33.333333%;max-width:33.333333%}.col-5{-ms-flex:0 0 41.666667%;flex:0 0 41.666667%;max-width:41.666667%}.col-6{-ms-flex:0 0 50%;flex:0 0 50%;max-width:50%}.col-7{-ms-flex:0 0 58.333333%;flex:0 0 58.333333%;max-width:58.333333%}.col-8{-ms-flex:0 0 66.666667%;flex:0 0 66.666667%;max-width:66.666667%}.col-9{-ms-flex:0 0 75%;flex:0 0 75%;max-width:75%}.col-10{-ms-flex:0 0 83.333333%;flex:0 0 83.333333%;max-width:83.333333%}.col-11{-ms-flex:0 0 91.666667%;flex:0 0 91.666667%;max-width:91.666667%}.col-12{-ms-flex:0 0 100%;flex:0 0 100%;max-width:100%}.order-first{-ms-flex-order:-1;order:-1}.order-last{-ms-flex-order:13;order:13}.order-0{-ms-flex-order:0;order:0}.order-1{-ms-flex-order:1;order:1}.order-2{-ms-flex-order:2;order:2}.order-3{-ms-flex-order:3;order:3}.order-4{-ms-flex-order:4;order:4}.order-5{-ms-flex-order:5;order:5}.order-6{-ms-flex-order:6;order:6}.order-7{-ms-flex-order:7;order:7}.order-8{-ms-flex-order:8;order:8}.order-9{-ms-flex-order:9;order:9}.order-10{-ms-flex-order:10;order:10}.order-11{-ms-flex-order:11;order:11}.order-12{-ms-flex-order:12;order:12}.offset-1{margin-left:8.333333%}.offset-2{margin-left:16.666667%}.offset-3{margin-left:25%}.offset-4{margin-left:33.333333%}.offset-5{margin-left:41.666667%}.offset-6{margin-left:50%}.offset-7{margin-left:58.333333%}.offset-8{margin-left:66.666667%}.offset-9{margin-left:75%}.offset-10{margin-left:83.333333%}.offset-11{margin-left:91.666667%}@media (min-width:576px){.col-sm{-ms-flex-preferred-size:0;flex-basis:0;-ms-flex-positive:1;flex-grow:1;max-width:100%}.row-cols-sm-1>*{-ms-flex:0 0 100%;flex:0 0 100%;max-width:100%}.row-cols-sm-2>*{-ms-flex:0 0 50%;flex:0 0 50%;max-width:50%}.row-cols-sm-3>*{-ms-flex:0 0 33.333333%;flex:0 0 33.333333%;max-width:33.333333%}.row-cols-sm-4>*{-ms-flex:0 0 25%;flex:0 0 25%;max-width:25%}.row-cols-sm-5>*{-ms-flex:0 0 20%;flex:0 0 20%;max-width:20%}.row-cols-sm-6>*{-ms-flex:0 0 16.666667%;flex:0 0 16.666667%;max-width:16.666667%}.col-sm-auto{-ms-flex:0 0 auto;flex:0 0 auto;width:auto;max-width:100%}.col-sm-1{-ms-flex:0 0 8.333333%;flex:0 0 8.333333%;max-width:8.333333%}.col-sm-2{-ms-flex:0 0 16.666667%;flex:0 0 16.666667%;max-width:16.666667%}.col-sm-3{-ms-flex:0 0 25%;flex:0 0 25%;max-width:25%}.col-sm-4{-ms-flex:0 0 33.333333%;flex:0 0 33.333333%;max-width:33.333333%}.col-sm-5{-ms-flex:0 0 41.666667%;flex:0 0 41.666667%;max-width:41.666667%}.col-sm-6{-ms-flex:0 0 50%;flex:0 0 50%;max-width:50%}.col-sm-7{-ms-flex:0 0 58.333333%;flex:0 0 58.333333%;max-width:58.333333%}.col-sm-8{-ms-flex:0 0 66.666667%;flex:0 0 66.666667%;max-width:66.666667%}.col-sm-9{-ms-flex:0 0 75%;flex:0 0 75%;max-width:75%}.col-sm-10{-ms-flex:0 0 83.333333%;flex:0 0 83.333333%;max-width:83.333333%}.col-sm-11{-ms-flex:0 0 91.666667%;flex:0 0 91.666667%;max-width:91.666667%}.col-sm-12{-ms-flex:0 0 100%;flex:0 0 100%;max-width:100%}.order-sm-first{-ms-flex-order:-1;order:-1}.order-sm-last{-ms-flex-order:13;order:13}.order-sm-0{-ms-flex-order:0;order:0}.order-sm-1{-ms-flex-order:1;order:1}.order-sm-2{-ms-flex-order:2;order:2}.order-sm-3{-ms-flex-order:3;order:3}.order-sm-4{-ms-flex-order:4;order:4}.order-sm-5{-ms-flex-order:5;order:5}.order-sm-6{-ms-flex-order:6;order:6}.order-sm-7{-ms-flex-order:7;order:7}.order-sm-8{-ms-flex-order:8;order:8}.order-sm-9{-ms-flex-order:9;order:9}.order-sm-10{-ms-flex-order:10;order:10}.order-sm-11{-ms-flex-order:11;order:11}.order-sm-12{-ms-flex-order:12;order:12}.offset-sm-0{margin-left:0}.offset-sm-1{margin-left:8.333333%}.offset-sm-2{margin-left:16.666667%}.offset-sm-3{margin-left:25%}.offset-sm-4{margin-left:33.333333%}.offset-sm-5{margin-left:41.666667%}.offset-sm-6{margin-left:50%}.offset-sm-7{margin-left:58.333333%}.offset-sm-8{margin-left:66.666667%}.offset-sm-9{margin-left:75%}.offset-sm-10{margin-left:83.333333%}.offset-sm-11{margin-left:91.666667%}}@media (min-width:768px){.col-md{-ms-flex-preferred-size:0;flex-basis:0;-ms-flex-positive:1;flex-grow:1;max-width:100%}.row-cols-md-1>*{-ms-flex:0 0 100%;flex:0 0 100%;max-width:100%}.row-cols-md-2>*{-ms-flex:0 0 50%;flex:0 0 50%;max-width:50%}.row-cols-md-3>*{-ms-flex:0 0 33.333333%;flex:0 0 33.333333%;max-width:33.333333%}.row-cols-md-4>*{-ms-flex:0 0 25%;flex:0 0 25%;max-width:25%}.row-cols-md-5>*{-ms-flex:0 0 20%;flex:0 0 20%;max-width:20%}.row-cols-md-6>*{-ms-flex:0 0 16.666667%;flex:0 0 16.666667%;max-width:16.666667%}.col-md-auto{-ms-flex:0 0 auto;flex:0 0 auto;width:auto;max-width:100%}.col-md-1{-ms-flex:0 0 8.333333%;flex:0 0 8.333333%;max-width:8.333333%}.col-md-2{-ms-flex:0 0 16.666667%;flex:0 0 16.666667%;max-width:16.666667%}.col-md-3{-ms-flex:0 0 25%;flex:0 0 25%;max-width:25%}.col-md-4{-ms-flex:0 0 33.333333%;flex:0 0 33.333333%;max-width:33.333333%}.col-md-5{-ms-flex:0 0 41.666667%;flex:0 0 41.666667%;max-width:41.666667%}.col-md-6{-ms-flex:0 0 50%;flex:0 0 50%;max-width:50%}.col-md-7{-ms-flex:0 0 58.333333%;flex:0 0 58.333333%;max-width:58.333333%}.col-md-8{-ms-flex:0 0 66.666667%;flex:0 0 66.666667%;max-width:66.666667%}.col-md-9{-ms-flex:0 0 75%;flex:0 0 75%;max-width:75%}.col-md-10{-ms-flex:0 0 83.333333%;flex:0 0 83.333333%;max-width:83.333333%}.col-md-11{-ms-flex:0 0 91.666667%;flex:0 0 91.666667%;max-width:91.666667%}.col-md-12{-ms-flex:0 0 100%;flex:0 0 100%;max-width:100%}.order-md-first{-ms-flex-order:-1;order:-1}.order-md-last{-ms-flex-order:13;order:13}.order-md-0{-ms-flex-order:0;order:0}.order-md-1{-ms-flex-order:1;order:1}.order-md-2{-ms-flex-order:2;order:2}.order-md-3{-ms-flex-order:3;order:3}.order-md-4{-ms-flex-order:4;order:4}.order-md-5{-ms-flex-order:5;order:5}.order-md-6{-ms-flex-order:6;order:6}.order-md-7{-ms-flex-order:7;order:7}.order-md-8{-ms-flex-order:8;order:8}.order-md-9{-ms-flex-order:9;order:9}.order-md-10{-ms-flex-order:10;order:10}.order-md-11{-ms-flex-order:11;order:11}.order-md-12{-ms-flex-order:12;order:12}.offset-md-0{margin-left:0}.offset-md-1{margin-left:8.333333%}.offset-md-2{margin-left:16.666667%}.offset-md-3{margin-left:25%}.offset-md-4{margin-left:33.333333%}.offset-md-5{margin-left:41.666667%}.offset-md-6{margin-left:50%}.offset-md-7{margin-left:58.333333%}.offset-md-8{margin-left:66.666667%}.offset-md-9{margin-left:75%}.offset-md-10{margin-left:83.333333%}.offset-md-11{margin-left:91.666667%}}@media (min-width:992px){.col-lg{-ms-flex-preferred-size:0;flex-basis:0;-ms-flex-positive:1;flex-grow:1;max-width:100%}.row-cols-lg-1>*{-ms-flex:0 0 100%;flex:0 0 100%;max-width:100%}.row-cols-lg-2>*{-ms-flex:0 0 50%;flex:0 0 50%;max-width:50%}.row-cols-lg-3>*{-ms-flex:0 0 33.333333%;flex:0 0 33.333333%;max-width:33.333333%}.row-cols-lg-4>*{-ms-flex:0 0 25%;flex:0 0 25%;max-width:25%}.row-cols-lg-5>*{-ms-flex:0 0 20%;flex:0 0 20%;max-width:20%}.row-cols-lg-6>*{-ms-flex:0 0 16.666667%;flex:0 0 16.666667%;max-width:16.666667%}.col-lg-auto{-ms-flex:0 0 auto;flex:0 0 auto;width:auto;max-width:100%}.col-lg-1{-ms-flex:0 0 8.333333%;flex:0 0 8.333333%;max-width:8.333333%}.col-lg-2{-ms-flex:0 0 16.666667%;flex:0 0 16.666667%;max-width:16.666667%}.col-lg-3{-ms-flex:0 0 25%;flex:0 0 25%;max-width:25%}.col-lg-4{-ms-flex:0 0 33.333333%;flex:0 0 33.333333%;max-width:33.333333%}.col-lg-5{-ms-flex:0 0 41.666667%;flex:0 0 41.666667%;max-width:41.666667%}.col-lg-6{-ms-flex:0 0 50%;flex:0 0 50%;max-width:50%}.col-lg-7{-ms-flex:0 0 58.333333%;flex:0 0 58.333333%;max-width:58.333333%}.col-lg-8{-ms-flex:0 0 66.666667%;flex:0 0 66.666667%;max-width:66.666667%}.col-lg-9{-ms-flex:0 0 75%;flex:0 0 75%;max-width:75%}.col-lg-10{-ms-flex:0 0 83.333333%;flex:0 0 83.333333%;max-width:83.333333%}.col-lg-11{-ms-flex:0 0 91.666667%;flex:0 0 91.666667%;max-width:91.666667%}.col-lg-12{-ms-flex:0 0 100%;flex:0 0 100%;max-width:100%}.order-lg-first{-ms-flex-order:-1;order:-1}.order-lg-last{-ms-flex-order:13;order:13}.order-lg-0{-ms-flex-order:0;order:0}.order-lg-1{-ms-flex-order:1;order:1}.order-lg-2{-ms-flex-order:2;order:2}.order-lg-3{-ms-flex-order:3;order:3}.order-lg-4{-ms-flex-order:4;order:4}.order-lg-5{-ms-flex-order:5;order:5}.order-lg-6{-ms-flex-order:6;order:6}.order-lg-7{-ms-flex-order:7;order:7}.order-lg-8{-ms-flex-order:8;order:8}.order-lg-9{-ms-flex-order:9;order:9}.order-lg-10{-ms-flex-order:10;order:10}.order-lg-11{-ms-flex-order:11;order:11}.order-lg-12{-ms-flex-order:12;order:12}.offset-lg-0{margin-left:0}.offset-lg-1{margin-left:8.333333%}.offset-lg-2{margin-left:16.666667%}.offset-lg-3{margin-left:25%}.offset-lg-4{margin-left:33.333333%}.offset-lg-5{margin-left:41.666667%}.offset-lg-6{margin-left:50%}.offset-lg-7{margin-left:58.333333%}.offset-lg-8{margin-left:66.666667%}.offset-lg-9{margin-left:75%}.offset-lg-10{margin-left:83.333333%}.offset-lg-11{margin-left:91.666667%}}@media (min-width:1200px){.col-xl{-ms-flex-preferred-size:0;flex-basis:0;-ms-flex-positive:1;flex-grow:1;max-width:100%}.row-cols-xl-1>*{-ms-flex:0 0 100%;flex:0 0 100%;max-width:100%}.row-cols-xl-2>*{-ms-flex:0 0 50%;flex:0 0 50%;max-width:50%}.row-cols-xl-3>*{-ms-flex:0 0 33.333333%;flex:0 0 33.333333%;max-width:33.333333%}.row-cols-xl-4>*{-ms-flex:0 0 25%;flex:0 0 25%;max-width:25%}.row-cols-xl-5>*{-ms-flex:0 0 20%;flex:0 0 20%;max-width:20%}.row-cols-xl-6>*{-ms-flex:0 0 16.666667%;flex:0 0 16.666667%;max-width:16.666667%}.col-xl-auto{-ms-flex:0 0 auto;flex:0 0 auto;width:auto;max-width:100%}.col-xl-1{-ms-flex:0 0 8.333333%;flex:0 0 8.333333%;max-width:8.333333%}.col-xl-2{-ms-flex:0 0 16.666667%;flex:0 0 16.666667%;max-width:16.666667%}.col-xl-3{-ms-flex:0 0 25%;flex:0 0 25%;max-width:25%}.col-xl-4{-ms-flex:0 0 33.333333%;flex:0 0 33.333333%;max-width:33.333333%}.col-xl-5{-ms-flex:0 0 41.666667%;flex:0 0 41.666667%;max-width:41.666667%}.col-xl-6{-ms-flex:0 0 50%;flex:0 0 50%;max-width:50%}.col-xl-7{-ms-flex:0 0 58.333333%;flex:0 0 58.333333%;max-width:58.333333%}.col-xl-8{-ms-flex:0 0 66.666667%;flex:0 0 66.666667%;max-width:66.666667%}.col-xl-9{-ms-flex:0 0 75%;flex:0 0 75%;max-width:75%}.col-xl-10{-ms-flex:0 0 83.333333%;flex:0 0 83.333333%;max-width:83.333333%}.col-xl-11{-ms-flex:0 0 91.666667%;flex:0 0 91.666667%;max-width:91.666667%}.col-xl-12{-ms-flex:0 0 100%;flex:0 0 100%;max-width:100%}.order-xl-first{-ms-flex-order:-1;order:-1}.order-xl-last{-ms-flex-order:13;order:13}.order-xl-0{-ms-flex-order:0;order:0}.order-xl-1{-ms-flex-order:1;order:1}.order-xl-2{-ms-flex-order:2;order:2}.order-xl-3{-ms-flex-order:3;order:3}.order-xl-4{-ms-flex-order:4;order:4}.order-xl-5{-ms-flex-order:5;order:5}.order-xl-6{-ms-flex-order:6;order:6}.order-xl-7{-ms-flex-order:7;order:7}.order-xl-8{-ms-flex-order:8;order:8}.order-xl-9{-ms-flex-order:9;order:9}.order-xl-10{-ms-flex-order:10;order:10}.order-xl-11{-ms-flex-order:11;order:11}.order-xl-12{-ms-flex-order:12;order:12}.offset-xl-0{margin-left:0}.offset-xl-1{margin-left:8.333333%}.offset-xl-2{margin-left:16.666667%}.offset-xl-3{margin-left:25%}.offset-xl-4{margin-left:33.333333%}.offset-xl-5{margin-left:41.666667%}.offset-xl-6{margin-left:50%}.offset-xl-7{margin-left:58.333333%}.offset-xl-8{margin-left:66.666667%}.offset-xl-9{margin-left:75%}.offset-xl-10{margin-left:83.333333%}.offset-xl-11{margin-left:91.666667%}}.table{width:100%;margin-bottom:1rem;color:#fff}.table td,.table th{padding:.75rem;vertical-align:top;border-top:1px solid #444}.table thead th{vertical-align:bottom;border-bottom:2px solid #444}.table tbody+tbody{border-top:2px solid #444}.table-sm td,.table-sm th{padding:.3rem}.table-bordered{border:1px solid #444}.table-bordered td,.table-bordered th{border:1px solid #444}.table-bordered thead td,.table-bordered thead th{border-bottom-width:2px}.table-borderless tbody+tbody,.table-borderless td,.table-borderless th,.table-borderless thead th{border:0}.table-striped tbody tr:nth-of-type(odd){background-color:#303030}.table-hover tbody tr:hover{color:#fff;background-color:rgba(0,0,0,.075)}.table-primary,.table-primary>td,.table-primary>th{background-color:#c7d1db}.table-primary tbody+tbody,.table-primary td,.table-primary th,.table-primary thead th{border-color:#97a9bc}.table-hover .table-primary:hover{background-color:#b7c4d1}.table-hover .table-primary:hover>td,.table-hover .table-primary:hover>th{background-color:#b7c4d1}.table-secondary,.table-secondary>td,.table-secondary>th{background-color:#cbcbcb}.table-secondary tbody+tbody,.table-secondary td,.table-secondary th,.table-secondary thead th{border-color:#9e9e9e}.table-hover .table-secondary:hover{background-color:#bebebe}.table-hover .table-secondary:hover>td,.table-hover .table-secondary:hover>th{background-color:#bebebe}.table-success,.table-success>td,.table-success>th{background-color:#b8ecdf}.table-success tbody+tbody,.table-success td,.table-success th,.table-success thead th{border-color:#7adcc3}.table-hover .table-success:hover{background-color:#a4e7d6}.table-hover .table-success:hover>td,.table-hover .table-success:hover>th{background-color:#a4e7d6}.table-info,.table-info>td,.table-info>th{background-color:#c6e2f5}.table-info tbody+tbody,.table-info td,.table-info th,.table-info thead th{border-color:#95c9ec}.table-hover .table-info:hover{background-color:#b0d7f1}.table-hover .table-info:hover>td,.table-hover .table-info:hover>th{background-color:#b0d7f1}.table-warning,.table-warning>td,.table-warning>th{background-color:#fce3bd}.table-warning tbody+tbody,.table-warning td,.table-warning th,.table-warning thead th{border-color:#f9cc84}.table-hover .table-warning:hover{background-color:#fbd9a5}.table-hover .table-warning:hover>td,.table-hover .table-warning:hover>th{background-color:#fbd9a5}.table-danger,.table-danger>td,.table-danger>th{background-color:#f8cdc8}.table-danger tbody+tbody,.table-danger td,.table-danger th,.table-danger thead th{border-color:#f3a29a}.table-hover .table-danger:hover{background-color:#f5b8b1}.table-hover .table-danger:hover>td,.table-hover .table-danger:hover>th{background-color:#f5b8b1}.table-light,.table-light>td,.table-light>th{background-color:#e8eaed}.table-light tbody+tbody,.table-light td,.table-light th,.table-light thead th{border-color:#d4d9dd}.table-hover .table-light:hover{background-color:#dadde2}.table-hover .table-light:hover>td,.table-hover .table-light:hover>th{background-color:#dadde2}.table-dark,.table-dark>td,.table-dark>th{background-color:#c5c5c5}.table-dark tbody+tbody,.table-dark td,.table-dark th,.table-dark thead th{border-color:#939393}.table-hover .table-dark:hover{background-color:#b8b8b8}.table-hover .table-dark:hover>td,.table-hover .table-dark:hover>th{background-color:#b8b8b8}.table-active,.table-active>td,.table-active>th{background-color:rgba(0,0,0,.075)}.table-hover .table-active:hover{background-color:rgba(0,0,0,.075)}.table-hover .table-active:hover>td,.table-hover .table-active:hover>th{background-color:rgba(0,0,0,.075)}.table .thead-dark th{color:#fff;background-color:#303030;border-color:#434343}.table .thead-light th{color:#444;background-color:#ebebeb;border-color:#444}.table-dark{color:#fff;background-color:#303030}.table-dark td,.table-dark th,.table-dark thead th{border-color:#434343}.table-dark.table-bordered{border:0}.table-dark.table-striped tbody tr:nth-of-type(odd){background-color:rgba(255,255,255,.05)}.table-dark.table-hover tbody tr:hover{color:#fff;background-color:rgba(255,255,255,.075)}@media (max-width:575.98px){.table-responsive-sm{display:block;width:100%;overflow-x:auto;-webkit-overflow-scrolling:touch}.table-responsive-sm>.table-bordered{border:0}}@media (max-width:767.98px){.table-responsive-md{display:block;width:100%;overflow-x:auto;-webkit-overflow-scrolling:touch}.table-responsive-md>.table-bordered{border:0}}@media (max-width:991.98px){.table-responsive-lg{display:block;width:100%;overflow-x:auto;-webkit-overflow-scrolling:touch}.table-responsive-lg>.table-bordered{border:0}}@media (max-width:1199.98px){.table-responsive-xl{display:block;width:100%;overflow-x:auto;-webkit-overflow-scrolling:touch}.table-responsive-xl>.table-bordered{border:0}}.table-responsive{display:block;width:100%;overflow-x:auto;-webkit-overflow-scrolling:touch}.table-responsive>.table-bordered{border:0}.form-control{display:block;width:100%;height:calc(1.5em + .75rem + 2px);padding:.375rem .75rem;font-size:.9375rem;font-weight:400;line-height:1.5;color:#444;background-color:#fff;background-clip:padding-box;border:1px solid #222;border-radius:.25rem;transition:border-color .15s ease-in-out,box-shadow .15s ease-in-out}@media (prefers-reduced-motion:reduce){.form-control{transition:none}}.form-control::-ms-expand{background-color:transparent;border:0}.form-control:-moz-focusring{color:transparent;text-shadow:0 0 0 #444}.form-control:focus{color:#444;background-color:#fff;border-color:#739ac2;outline:0;box-shadow:0 0 0 .2rem rgba(55,90,127,.25)}.form-control::-webkit-input-placeholder{color:#888;opacity:1}.form-control::-moz-placeholder{color:#888;opacity:1}.form-control:-ms-input-placeholder{color:#888;opacity:1}.form-control::-ms-input-placeholder{color:#888;opacity:1}.form-control::placeholder{color:#888;opacity:1}.form-control:disabled,.form-control[readonly]{background-color:#ebebeb;opacity:1}input[type=date].form-control,input[type=datetime-local].form-control,input[type=month].form-control,input[type=time].form-control{-webkit-appearance:none;-moz-appearance:none;appearance:none}select.form-control:focus::-ms-value{color:#444;background-color:#fff}.form-control-file,.form-control-range{display:block;width:100%}.col-form-label{padding-top:calc(.375rem + 1px);padding-bottom:calc(.375rem + 1px);margin-bottom:0;font-size:inherit;line-height:1.5}.col-form-label-lg{padding-top:calc(.5rem + 1px);padding-bottom:calc(.5rem + 1px);font-size:1.171875rem;line-height:1.5}.col-form-label-sm{padding-top:calc(.25rem + 1px);padding-bottom:calc(.25rem + 1px);font-size:.825rem;line-height:1.5}.form-control-plaintext{display:block;width:100%;padding:.375rem 0;margin-bottom:0;font-size:.9375rem;line-height:1.5;color:#fff;background-color:transparent;border:solid transparent;border-width:1px 0}.form-control-plaintext.form-control-lg,.form-control-plaintext.form-control-sm{padding-right:0;padding-left:0}.form-control-sm{height:calc(1.5em + .5rem + 2px);padding:.25rem .5rem;font-size:.825rem;line-height:1.5;border-radius:.2rem}.form-control-lg{height:calc(1.5em + 1rem + 2px);padding:.5rem 1rem;font-size:1.171875rem;line-height:1.5;border-radius:.3rem}select.form-control[multiple],select.form-control[size]{height:auto}textarea.form-control{height:auto}.form-group{margin-bottom:1rem}.form-text{display:block;margin-top:.25rem}.form-row{display:-ms-flexbox;display:flex;-ms-flex-wrap:wrap;flex-wrap:wrap;margin-right:-5px;margin-left:-5px}.form-row>.col,.form-row>[class*=col-]{padding-right:5px;padding-left:5px}.form-check{position:relative;display:block;padding-left:1.25rem}.form-check-input{position:absolute;margin-top:.3rem;margin-left:-1.25rem}.form-check-input:disabled~.form-check-label,.form-check-input[disabled]~.form-check-label{color:#888}.form-check-label{margin-bottom:0}.form-check-inline{display:-ms-inline-flexbox;display:inline-flex;-ms-flex-align:center;align-items:center;padding-left:0;margin-right:.75rem}.form-check-inline .form-check-input{position:static;margin-top:0;margin-right:.3125rem;margin-left:0}.valid-feedback{display:none;width:100%;margin-top:.25rem;font-size:80%;color:#00bc8c}.valid-tooltip{position:absolute;top:100%;left:0;z-index:5;display:none;max-width:100%;padding:.25rem .5rem;margin-top:.1rem;font-size:.825rem;line-height:1.5;color:#fff;background-color:rgba(0,188,140,.9);border-radius:.25rem}.form-row>.col>.valid-tooltip,.form-row>[class*=col-]>.valid-tooltip{left:5px}.is-valid~.valid-feedback,.is-valid~.valid-tooltip,.was-validated :valid~.valid-feedback,.was-validated :valid~.valid-tooltip{display:block}.form-control.is-valid,.was-validated .form-control:valid{border-color:#00bc8c;padding-right:calc(1.5em + .75rem);background-image:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='8' height='8' viewBox='0 0 8 8'%3e%3cpath fill='%2300bc8c' d='M2.3 6.73L.6 4.53c-.4-1.04.46-1.4 1.1-.8l1.1 1.4 3.4-3.8c.6-.63 1.6-.27 1.2.7l-4 4.6c-.43.5-.8.4-1.1.1z'/%3e%3c/svg%3e");background-repeat:no-repeat;background-position:right calc(.375em + .1875rem) center;background-size:calc(.75em + .375rem) calc(.75em + .375rem)}.form-control.is-valid:focus,.was-validated .form-control:valid:focus{border-color:#00bc8c;box-shadow:0 0 0 .2rem rgba(0,188,140,.25)}.was-validated textarea.form-control:valid,textarea.form-control.is-valid{padding-right:calc(1.5em + .75rem);background-position:top calc(.375em + .1875rem) right calc(.375em + .1875rem)}.custom-select.is-valid,.was-validated .custom-select:valid{border-color:#00bc8c;padding-right:calc(.75em + 2.3125rem);background:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='4' height='5' viewBox='0 0 4 5'%3e%3cpath fill='%23303030' d='M2 0L0 2h4zm0 5L0 3h4z'/%3e%3c/svg%3e") right .75rem center/8px 10px no-repeat,#fff url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='8' height='8' viewBox='0 0 8 8'%3e%3cpath fill='%2300bc8c' d='M2.3 6.73L.6 4.53c-.4-1.04.46-1.4 1.1-.8l1.1 1.4 3.4-3.8c.6-.63 1.6-.27 1.2.7l-4 4.6c-.43.5-.8.4-1.1.1z'/%3e%3c/svg%3e") center right 1.75rem/calc(.75em + .375rem) calc(.75em + .375rem) no-repeat}.custom-select.is-valid:focus,.was-validated .custom-select:valid:focus{border-color:#00bc8c;box-shadow:0 0 0 .2rem rgba(0,188,140,.25)}.form-check-input.is-valid~.form-check-label,.was-validated .form-check-input:valid~.form-check-label{color:#00bc8c}.form-check-input.is-valid~.valid-feedback,.form-check-input.is-valid~.valid-tooltip,.was-validated .form-check-input:valid~.valid-feedback,.was-validated .form-check-input:valid~.valid-tooltip{display:block}.custom-control-input.is-valid~.custom-control-label,.was-validated .custom-control-input:valid~.custom-control-label{color:#00bc8c}.custom-control-input.is-valid~.custom-control-label::before,.was-validated .custom-control-input:valid~.custom-control-label::before{border-color:#00bc8c}.custom-control-input.is-valid:checked~.custom-control-label::before,.was-validated .custom-control-input:valid:checked~.custom-control-label::before{border-color:#00efb2;background-color:#00efb2}.custom-control-input.is-valid:focus~.custom-control-label::before,.was-validated .custom-control-input:valid:focus~.custom-control-label::before{box-shadow:0 0 0 .2rem rgba(0,188,140,.25)}.custom-control-input.is-valid:focus:not(:checked)~.custom-control-label::before,.was-validated .custom-control-input:valid:focus:not(:checked)~.custom-control-label::before{border-color:#00bc8c}.custom-file-input.is-valid~.custom-file-label,.was-validated .custom-file-input:valid~.custom-file-label{border-color:#00bc8c}.custom-file-input.is-valid:focus~.custom-file-label,.was-validated .custom-file-input:valid:focus~.custom-file-label{border-color:#00bc8c;box-shadow:0 0 0 .2rem rgba(0,188,140,.25)}.invalid-feedback{display:none;width:100%;margin-top:.25rem;font-size:80%;color:#e74c3c}.invalid-tooltip{position:absolute;top:100%;left:0;z-index:5;display:none;max-width:100%;padding:.25rem .5rem;margin-top:.1rem;font-size:.825rem;line-height:1.5;color:#fff;background-color:rgba(231,76,60,.9);border-radius:.25rem}.form-row>.col>.invalid-tooltip,.form-row>[class*=col-]>.invalid-tooltip{left:5px}.is-invalid~.invalid-feedback,.is-invalid~.invalid-tooltip,.was-validated :invalid~.invalid-feedback,.was-validated :invalid~.invalid-tooltip{display:block}.form-control.is-invalid,.was-validated .form-control:invalid{border-color:#e74c3c;padding-right:calc(1.5em + .75rem);background-image:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='12' height='12' fill='none' stroke='%23e74c3c' viewBox='0 0 12 12'%3e%3ccircle cx='6' cy='6' r='4.5'/%3e%3cpath stroke-linejoin='round' d='M5.8 3.6h.4L6 6.5z'/%3e%3ccircle cx='6' cy='8.2' r='.6' fill='%23e74c3c' stroke='none'/%3e%3c/svg%3e");background-repeat:no-repeat;background-position:right calc(.375em + .1875rem) center;background-size:calc(.75em + .375rem) calc(.75em + .375rem)}.form-control.is-invalid:focus,.was-validated .form-control:invalid:focus{border-color:#e74c3c;box-shadow:0 0 0 .2rem rgba(231,76,60,.25)}.was-validated textarea.form-control:invalid,textarea.form-control.is-invalid{padding-right:calc(1.5em + .75rem);background-position:top calc(.375em + .1875rem) right calc(.375em + .1875rem)}.custom-select.is-invalid,.was-validated .custom-select:invalid{border-color:#e74c3c;padding-right:calc(.75em + 2.3125rem);background:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='4' height='5' viewBox='0 0 4 5'%3e%3cpath fill='%23303030' d='M2 0L0 2h4zm0 5L0 3h4z'/%3e%3c/svg%3e") right .75rem center/8px 10px no-repeat,#fff url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='12' height='12' fill='none' stroke='%23e74c3c' viewBox='0 0 12 12'%3e%3ccircle cx='6' cy='6' r='4.5'/%3e%3cpath stroke-linejoin='round' d='M5.8 3.6h.4L6 6.5z'/%3e%3ccircle cx='6' cy='8.2' r='.6' fill='%23e74c3c' stroke='none'/%3e%3c/svg%3e") center right 1.75rem/calc(.75em + .375rem) calc(.75em + .375rem) no-repeat}.custom-select.is-invalid:focus,.was-validated .custom-select:invalid:focus{border-color:#e74c3c;box-shadow:0 0 0 .2rem rgba(231,76,60,.25)}.form-check-input.is-invalid~.form-check-label,.was-validated .form-check-input:invalid~.form-check-label{color:#e74c3c}.form-check-input.is-invalid~.invalid-feedback,.form-check-input.is-invalid~.invalid-tooltip,.was-validated .form-check-input:invalid~.invalid-feedback,.was-validated .form-check-input:invalid~.invalid-tooltip{display:block}.custom-control-input.is-invalid~.custom-control-label,.was-validated .custom-control-input:invalid~.custom-control-label{color:#e74c3c}.custom-control-input.is-invalid~.custom-control-label::before,.was-validated .custom-control-input:invalid~.custom-control-label::before{border-color:#e74c3c}.custom-control-input.is-invalid:checked~.custom-control-label::before,.was-validated .custom-control-input:invalid:checked~.custom-control-label::before{border-color:#ed7669;background-color:#ed7669}.custom-control-input.is-invalid:focus~.custom-control-label::before,.was-validated .custom-control-input:invalid:focus~.custom-control-label::before{box-shadow:0 0 0 .2rem rgba(231,76,60,.25)}.custom-control-input.is-invalid:focus:not(:checked)~.custom-control-label::before,.was-validated .custom-control-input:invalid:focus:not(:checked)~.custom-control-label::before{border-color:#e74c3c}.custom-file-input.is-invalid~.custom-file-label,.was-validated .custom-file-input:invalid~.custom-file-label{border-color:#e74c3c}.custom-file-input.is-invalid:focus~.custom-file-label,.was-validated .custom-file-input:invalid:focus~.custom-file-label{border-color:#e74c3c;box-shadow:0 0 0 .2rem rgba(231,76,60,.25)}.form-inline{display:-ms-flexbox;display:flex;-ms-flex-flow:row wrap;flex-flow:row wrap;-ms-flex-align:center;align-items:center}.form-inline .form-check{width:100%}@media (min-width:576px){.form-inline label{display:-ms-flexbox;display:flex;-ms-flex-align:center;align-items:center;-ms-flex-pack:center;justify-content:center;margin-bottom:0}.form-inline .form-group{display:-ms-flexbox;display:flex;-ms-flex:0 0 auto;flex:0 0 auto;-ms-flex-flow:row wrap;flex-flow:row wrap;-ms-flex-align:center;align-items:center;margin-bottom:0}.form-inline .form-control{display:inline-block;width:auto;vertical-align:middle}.form-inline .form-control-plaintext{display:inline-block}.form-inline .custom-select,.form-inline .input-group{width:auto}.form-inline .form-check{display:-ms-flexbox;display:flex;-ms-flex-align:center;align-items:center;-ms-flex-pack:center;justify-content:center;width:auto;padding-left:0}.form-inline .form-check-input{position:relative;-ms-flex-negative:0;flex-shrink:0;margin-top:0;margin-right:.25rem;margin-left:0}.form-inline .custom-control{-ms-flex-align:center;align-items:center;-ms-flex-pack:center;justify-content:center}.form-inline .custom-control-label{margin-bottom:0}}.btn{display:inline-block;font-weight:400;color:#fff;text-align:center;vertical-align:middle;-webkit-user-select:none;-moz-user-select:none;-ms-user-select:none;user-select:none;background-color:transparent;border:1px solid transparent;padding:.375rem .75rem;font-size:.9375rem;line-height:1.5;border-radius:.25rem;transition:color .15s ease-in-out,background-color .15s ease-in-out,border-color .15s ease-in-out,box-shadow .15s ease-in-out}@media (prefers-reduced-motion:reduce){.btn{transition:none}}.btn:hover{color:#fff;text-decoration:none}.btn.focus,.btn:focus{outline:0;box-shadow:0 0 0 .2rem rgba(55,90,127,.25)}.btn.disabled,.btn:disabled{opacity:.65}.btn:not(:disabled):not(.disabled){cursor:pointer}a.btn.disabled,fieldset:disabled a.btn{pointer-events:none}.btn-primary{color:#fff;background-color:#375a7f;border-color:#375a7f}.btn-primary:hover{color:#fff;background-color:#2b4764;border-color:#28415b}.btn-primary.focus,.btn-primary:focus{color:#fff;background-color:#2b4764;border-color:#28415b;box-shadow:0 0 0 .2rem rgba(85,115,146,.5)}.btn-primary.disabled,.btn-primary:disabled{color:#fff;background-color:#375a7f;border-color:#375a7f}.btn-primary:not(:disabled):not(.disabled).active,.btn-primary:not(:disabled):not(.disabled):active,.show>.btn-primary.dropdown-toggle{color:#fff;background-color:#28415b;border-color:#243a53}.btn-primary:not(:disabled):not(.disabled).active:focus,.btn-primary:not(:disabled):not(.disabled):active:focus,.show>.btn-primary.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(85,115,146,.5)}.btn-secondary{color:#fff;background-color:#444;border-color:#444}.btn-secondary:hover{color:#fff;background-color:#313131;border-color:#2b2b2b}.btn-secondary.focus,.btn-secondary:focus{color:#fff;background-color:#313131;border-color:#2b2b2b;box-shadow:0 0 0 .2rem rgba(96,96,96,.5)}.btn-secondary.disabled,.btn-secondary:disabled{color:#fff;background-color:#444;border-color:#444}.btn-secondary:not(:disabled):not(.disabled).active,.btn-secondary:not(:disabled):not(.disabled):active,.show>.btn-secondary.dropdown-toggle{color:#fff;background-color:#2b2b2b;border-color:#242424}.btn-secondary:not(:disabled):not(.disabled).active:focus,.btn-secondary:not(:disabled):not(.disabled):active:focus,.show>.btn-secondary.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(96,96,96,.5)}.btn-success{color:#fff;background-color:#00bc8c;border-color:#00bc8c}.btn-success:hover{color:#fff;background-color:#009670;border-color:#008966}.btn-success.focus,.btn-success:focus{color:#fff;background-color:#009670;border-color:#008966;box-shadow:0 0 0 .2rem rgba(38,198,157,.5)}.btn-success.disabled,.btn-success:disabled{color:#fff;background-color:#00bc8c;border-color:#00bc8c}.btn-success:not(:disabled):not(.disabled).active,.btn-success:not(:disabled):not(.disabled):active,.show>.btn-success.dropdown-toggle{color:#fff;background-color:#008966;border-color:#007c5d}.btn-success:not(:disabled):not(.disabled).active:focus,.btn-success:not(:disabled):not(.disabled):active:focus,.show>.btn-success.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(38,198,157,.5)}.btn-info{color:#fff;background-color:#3498db;border-color:#3498db}.btn-info:hover{color:#fff;background-color:#2384c6;border-color:#217dbb}.btn-info.focus,.btn-info:focus{color:#fff;background-color:#2384c6;border-color:#217dbb;box-shadow:0 0 0 .2rem rgba(82,167,224,.5)}.btn-info.disabled,.btn-info:disabled{color:#fff;background-color:#3498db;border-color:#3498db}.btn-info:not(:disabled):not(.disabled).active,.btn-info:not(:disabled):not(.disabled):active,.show>.btn-info.dropdown-toggle{color:#fff;background-color:#217dbb;border-color:#1f76b0}.btn-info:not(:disabled):not(.disabled).active:focus,.btn-info:not(:disabled):not(.disabled):active:focus,.show>.btn-info.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(82,167,224,.5)}.btn-warning{color:#fff;background-color:#f39c12;border-color:#f39c12}.btn-warning:hover{color:#fff;background-color:#d4860b;border-color:#c87f0a}.btn-warning.focus,.btn-warning:focus{color:#fff;background-color:#d4860b;border-color:#c87f0a;box-shadow:0 0 0 .2rem rgba(245,171,54,.5)}.btn-warning.disabled,.btn-warning:disabled{color:#fff;background-color:#f39c12;border-color:#f39c12}.btn-warning:not(:disabled):not(.disabled).active,.btn-warning:not(:disabled):not(.disabled):active,.show>.btn-warning.dropdown-toggle{color:#fff;background-color:#c87f0a;border-color:#bc770a}.btn-warning:not(:disabled):not(.disabled).active:focus,.btn-warning:not(:disabled):not(.disabled):active:focus,.show>.btn-warning.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(245,171,54,.5)}.btn-danger{color:#fff;background-color:#e74c3c;border-color:#e74c3c}.btn-danger:hover{color:#fff;background-color:#e12e1c;border-color:#d62c1a}.btn-danger.focus,.btn-danger:focus{color:#fff;background-color:#e12e1c;border-color:#d62c1a;box-shadow:0 0 0 .2rem rgba(235,103,89,.5)}.btn-danger.disabled,.btn-danger:disabled{color:#fff;background-color:#e74c3c;border-color:#e74c3c}.btn-danger:not(:disabled):not(.disabled).active,.btn-danger:not(:disabled):not(.disabled):active,.show>.btn-danger.dropdown-toggle{color:#fff;background-color:#d62c1a;border-color:#ca2a19}.btn-danger:not(:disabled):not(.disabled).active:focus,.btn-danger:not(:disabled):not(.disabled):active:focus,.show>.btn-danger.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(235,103,89,.5)}.btn-light{color:#222;background-color:#adb5bd;border-color:#adb5bd}.btn-light:hover{color:#fff;background-color:#98a2ac;border-color:#919ca6}.btn-light.focus,.btn-light:focus{color:#fff;background-color:#98a2ac;border-color:#919ca6;box-shadow:0 0 0 .2rem rgba(152,159,166,.5)}.btn-light.disabled,.btn-light:disabled{color:#222;background-color:#adb5bd;border-color:#adb5bd}.btn-light:not(:disabled):not(.disabled).active,.btn-light:not(:disabled):not(.disabled):active,.show>.btn-light.dropdown-toggle{color:#fff;background-color:#919ca6;border-color:#8a95a1}.btn-light:not(:disabled):not(.disabled).active:focus,.btn-light:not(:disabled):not(.disabled):active:focus,.show>.btn-light.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(152,159,166,.5)}.btn-dark{color:#fff;background-color:#303030;border-color:#303030}.btn-dark:hover{color:#fff;background-color:#1d1d1d;border-color:#171717}.btn-dark.focus,.btn-dark:focus{color:#fff;background-color:#1d1d1d;border-color:#171717;box-shadow:0 0 0 .2rem rgba(79,79,79,.5)}.btn-dark.disabled,.btn-dark:disabled{color:#fff;background-color:#303030;border-color:#303030}.btn-dark:not(:disabled):not(.disabled).active,.btn-dark:not(:disabled):not(.disabled):active,.show>.btn-dark.dropdown-toggle{color:#fff;background-color:#171717;border-color:#101010}.btn-dark:not(:disabled):not(.disabled).active:focus,.btn-dark:not(:disabled):not(.disabled):active:focus,.show>.btn-dark.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(79,79,79,.5)}.btn-outline-primary{color:#375a7f;border-color:#375a7f}.btn-outline-primary:hover{color:#fff;background-color:#375a7f;border-color:#375a7f}.btn-outline-primary.focus,.btn-outline-primary:focus{box-shadow:0 0 0 .2rem rgba(55,90,127,.5)}.btn-outline-primary.disabled,.btn-outline-primary:disabled{color:#375a7f;background-color:transparent}.btn-outline-primary:not(:disabled):not(.disabled).active,.btn-outline-primary:not(:disabled):not(.disabled):active,.show>.btn-outline-primary.dropdown-toggle{color:#fff;background-color:#375a7f;border-color:#375a7f}.btn-outline-primary:not(:disabled):not(.disabled).active:focus,.btn-outline-primary:not(:disabled):not(.disabled):active:focus,.show>.btn-outline-primary.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(55,90,127,.5)}.btn-outline-secondary{color:#444;border-color:#444}.btn-outline-secondary:hover{color:#fff;background-color:#444;border-color:#444}.btn-outline-secondary.focus,.btn-outline-secondary:focus{box-shadow:0 0 0 .2rem rgba(68,68,68,.5)}.btn-outline-secondary.disabled,.btn-outline-secondary:disabled{color:#444;background-color:transparent}.btn-outline-secondary:not(:disabled):not(.disabled).active,.btn-outline-secondary:not(:disabled):not(.disabled):active,.show>.btn-outline-secondary.dropdown-toggle{color:#fff;background-color:#444;border-color:#444}.btn-outline-secondary:not(:disabled):not(.disabled).active:focus,.btn-outline-secondary:not(:disabled):not(.disabled):active:focus,.show>.btn-outline-secondary.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(68,68,68,.5)}.btn-outline-success{color:#00bc8c;border-color:#00bc8c}.btn-outline-success:hover{color:#fff;background-color:#00bc8c;border-color:#00bc8c}.btn-outline-success.focus,.btn-outline-success:focus{box-shadow:0 0 0 .2rem rgba(0,188,140,.5)}.btn-outline-success.disabled,.btn-outline-success:disabled{color:#00bc8c;background-color:transparent}.btn-outline-success:not(:disabled):not(.disabled).active,.btn-outline-success:not(:disabled):not(.disabled):active,.show>.btn-outline-success.dropdown-toggle{color:#fff;background-color:#00bc8c;border-color:#00bc8c}.btn-outline-success:not(:disabled):not(.disabled).active:focus,.btn-outline-success:not(:disabled):not(.disabled):active:focus,.show>.btn-outline-success.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(0,188,140,.5)}.btn-outline-info{color:#3498db;border-color:#3498db}.btn-outline-info:hover{color:#fff;background-color:#3498db;border-color:#3498db}.btn-outline-info.focus,.btn-outline-info:focus{box-shadow:0 0 0 .2rem rgba(52,152,219,.5)}.btn-outline-info.disabled,.btn-outline-info:disabled{color:#3498db;background-color:transparent}.btn-outline-info:not(:disabled):not(.disabled).active,.btn-outline-info:not(:disabled):not(.disabled):active,.show>.btn-outline-info.dropdown-toggle{color:#fff;background-color:#3498db;border-color:#3498db}.btn-outline-info:not(:disabled):not(.disabled).active:focus,.btn-outline-info:not(:disabled):not(.disabled):active:focus,.show>.btn-outline-info.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(52,152,219,.5)}.btn-outline-warning{color:#f39c12;border-color:#f39c12}.btn-outline-warning:hover{color:#fff;background-color:#f39c12;border-color:#f39c12}.btn-outline-warning.focus,.btn-outline-warning:focus{box-shadow:0 0 0 .2rem rgba(243,156,18,.5)}.btn-outline-warning.disabled,.btn-outline-warning:disabled{color:#f39c12;background-color:transparent}.btn-outline-warning:not(:disabled):not(.disabled).active,.btn-outline-warning:not(:disabled):not(.disabled):active,.show>.btn-outline-warning.dropdown-toggle{color:#fff;background-color:#f39c12;border-color:#f39c12}.btn-outline-warning:not(:disabled):not(.disabled).active:focus,.btn-outline-warning:not(:disabled):not(.disabled):active:focus,.show>.btn-outline-warning.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(243,156,18,.5)}.btn-outline-danger{color:#e74c3c;border-color:#e74c3c}.btn-outline-danger:hover{color:#fff;background-color:#e74c3c;border-color:#e74c3c}.btn-outline-danger.focus,.btn-outline-danger:focus{box-shadow:0 0 0 .2rem rgba(231,76,60,.5)}.btn-outline-danger.disabled,.btn-outline-danger:disabled{color:#e74c3c;background-color:transparent}.btn-outline-danger:not(:disabled):not(.disabled).active,.btn-outline-danger:not(:disabled):not(.disabled):active,.show>.btn-outline-danger.dropdown-toggle{color:#fff;background-color:#e74c3c;border-color:#e74c3c}.btn-outline-danger:not(:disabled):not(.disabled).active:focus,.btn-outline-danger:not(:disabled):not(.disabled):active:focus,.show>.btn-outline-danger.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(231,76,60,.5)}.btn-outline-light{color:#adb5bd;border-color:#adb5bd}.btn-outline-light:hover{color:#222;background-color:#adb5bd;border-color:#adb5bd}.btn-outline-light.focus,.btn-outline-light:focus{box-shadow:0 0 0 .2rem rgba(173,181,189,.5)}.btn-outline-light.disabled,.btn-outline-light:disabled{color:#adb5bd;background-color:transparent}.btn-outline-light:not(:disabled):not(.disabled).active,.btn-outline-light:not(:disabled):not(.disabled):active,.show>.btn-outline-light.dropdown-toggle{color:#222;background-color:#adb5bd;border-color:#adb5bd}.btn-outline-light:not(:disabled):not(.disabled).active:focus,.btn-outline-light:not(:disabled):not(.disabled):active:focus,.show>.btn-outline-light.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(173,181,189,.5)}.btn-outline-dark{color:#303030;border-color:#303030}.btn-outline-dark:hover{color:#fff;background-color:#303030;border-color:#303030}.btn-outline-dark.focus,.btn-outline-dark:focus{box-shadow:0 0 0 .2rem rgba(48,48,48,.5)}.btn-outline-dark.disabled,.btn-outline-dark:disabled{color:#303030;background-color:transparent}.btn-outline-dark:not(:disabled):not(.disabled).active,.btn-outline-dark:not(:disabled):not(.disabled):active,.show>.btn-outline-dark.dropdown-toggle{color:#fff;background-color:#303030;border-color:#303030}.btn-outline-dark:not(:disabled):not(.disabled).active:focus,.btn-outline-dark:not(:disabled):not(.disabled):active:focus,.show>.btn-outline-dark.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(48,48,48,.5)}.btn-link{font-weight:400;color:#00bc8c;text-decoration:none}.btn-link:hover{color:#007053;text-decoration:underline}.btn-link.focus,.btn-link:focus{text-decoration:underline}.btn-link.disabled,.btn-link:disabled{color:#888;pointer-events:none}.btn-group-lg>.btn,.btn-lg{padding:.5rem 1rem;font-size:1.171875rem;line-height:1.5;border-radius:.3rem}.btn-group-sm>.btn,.btn-sm{padding:.25rem .5rem;font-size:.825rem;line-height:1.5;border-radius:.2rem}.btn-block{display:block;width:100%}.btn-block+.btn-block{margin-top:.5rem}input[type=button].btn-block,input[type=reset].btn-block,input[type=submit].btn-block{width:100%}.fade{transition:opacity .15s linear}@media (prefers-reduced-motion:reduce){.fade{transition:none}}.fade:not(.show){opacity:0}.collapse:not(.show){display:none}.collapsing{position:relative;height:0;overflow:hidden;transition:height .35s ease}@media (prefers-reduced-motion:reduce){.collapsing{transition:none}}.dropdown,.dropleft,.dropright,.dropup{position:relative}.dropdown-toggle{white-space:nowrap}.dropdown-toggle::after{display:inline-block;margin-left:.255em;vertical-align:.255em;content:"";border-top:.3em solid;border-right:.3em solid transparent;border-bottom:0;border-left:.3em solid transparent}.dropdown-toggle:empty::after{margin-left:0}.dropdown-menu{position:absolute;top:100%;left:0;z-index:1000;display:none;float:left;min-width:10rem;padding:.5rem 0;margin:.125rem 0 0;font-size:.9375rem;color:#fff;text-align:left;list-style:none;background-color:#222;background-clip:padding-box;border:1px solid #444;border-radius:.25rem}.dropdown-menu-left{right:auto;left:0}.dropdown-menu-right{right:0;left:auto}@media (min-width:576px){.dropdown-menu-sm-left{right:auto;left:0}.dropdown-menu-sm-right{right:0;left:auto}}@media (min-width:768px){.dropdown-menu-md-left{right:auto;left:0}.dropdown-menu-md-right{right:0;left:auto}}@media (min-width:992px){.dropdown-menu-lg-left{right:auto;left:0}.dropdown-menu-lg-right{right:0;left:auto}}@media (min-width:1200px){.dropdown-menu-xl-left{right:auto;left:0}.dropdown-menu-xl-right{right:0;left:auto}}.dropup .dropdown-menu{top:auto;bottom:100%;margin-top:0;margin-bottom:.125rem}.dropup .dropdown-toggle::after{display:inline-block;margin-left:.255em;vertical-align:.255em;content:"";border-top:0;border-right:.3em solid transparent;border-bottom:.3em solid;border-left:.3em solid transparent}.dropup .dropdown-toggle:empty::after{margin-left:0}.dropright .dropdown-menu{top:0;right:auto;left:100%;margin-top:0;margin-left:.125rem}.dropright .dropdown-toggle::after{display:inline-block;margin-left:.255em;vertical-align:.255em;content:"";border-top:.3em solid transparent;border-right:0;border-bottom:.3em solid transparent;border-left:.3em solid}.dropright .dropdown-toggle:empty::after{margin-left:0}.dropright .dropdown-toggle::after{vertical-align:0}.dropleft .dropdown-menu{top:0;right:100%;left:auto;margin-top:0;margin-right:.125rem}.dropleft .dropdown-toggle::after{display:inline-block;margin-left:.255em;vertical-align:.255em;content:""}.dropleft .dropdown-toggle::after{display:none}.dropleft .dropdown-toggle::before{display:inline-block;margin-right:.255em;vertical-align:.255em;content:"";border-top:.3em solid transparent;border-right:.3em solid;border-bottom:.3em solid transparent}.dropleft .dropdown-toggle:empty::after{margin-left:0}.dropleft .dropdown-toggle::before{vertical-align:0}.dropdown-menu[x-placement^=bottom],.dropdown-menu[x-placement^=left],.dropdown-menu[x-placement^=right],.dropdown-menu[x-placement^=top]{right:auto;bottom:auto}.dropdown-divider{height:0;margin:.5rem 0;overflow:hidden;border-top:1px solid #444}.dropdown-item{display:block;width:100%;padding:.25rem 1.5rem;clear:both;font-weight:400;color:#fff;text-align:inherit;white-space:nowrap;background-color:transparent;border:0}.dropdown-item:focus,.dropdown-item:hover{color:#fff;text-decoration:none;background-color:#375a7f}.dropdown-item.active,.dropdown-item:active{color:#fff;text-decoration:none;background-color:#375a7f}.dropdown-item.disabled,.dropdown-item:disabled{color:#adb5bd;pointer-events:none;background-color:transparent}.dropdown-menu.show{display:block}.dropdown-header{display:block;padding:.5rem 1.5rem;margin-bottom:0;font-size:.825rem;color:#888;white-space:nowrap}.dropdown-item-text{display:block;padding:.25rem 1.5rem;color:#fff}.btn-group,.btn-group-vertical{position:relative;display:-ms-inline-flexbox;display:inline-flex;vertical-align:middle}.btn-group-vertical>.btn,.btn-group>.btn{position:relative;-ms-flex:1 1 auto;flex:1 1 auto}.btn-group-vertical>.btn:hover,.btn-group>.btn:hover{z-index:1}.btn-group-vertical>.btn.active,.btn-group-vertical>.btn:active,.btn-group-vertical>.btn:focus,.btn-group>.btn.active,.btn-group>.btn:active,.btn-group>.btn:focus{z-index:1}.btn-toolbar{display:-ms-flexbox;display:flex;-ms-flex-wrap:wrap;flex-wrap:wrap;-ms-flex-pack:start;justify-content:flex-start}.btn-toolbar .input-group{width:auto}.btn-group>.btn-group:not(:first-child),.btn-group>.btn:not(:first-child){margin-left:-1px}.btn-group>.btn-group:not(:last-child)>.btn,.btn-group>.btn:not(:last-child):not(.dropdown-toggle){border-top-right-radius:0;border-bottom-right-radius:0}.btn-group>.btn-group:not(:first-child)>.btn,.btn-group>.btn:not(:first-child){border-top-left-radius:0;border-bottom-left-radius:0}.dropdown-toggle-split{padding-right:.5625rem;padding-left:.5625rem}.dropdown-toggle-split::after,.dropright .dropdown-toggle-split::after,.dropup .dropdown-toggle-split::after{margin-left:0}.dropleft .dropdown-toggle-split::before{margin-right:0}.btn-group-sm>.btn+.dropdown-toggle-split,.btn-sm+.dropdown-toggle-split{padding-right:.375rem;padding-left:.375rem}.btn-group-lg>.btn+.dropdown-toggle-split,.btn-lg+.dropdown-toggle-split{padding-right:.75rem;padding-left:.75rem}.btn-group-vertical{-ms-flex-direction:column;flex-direction:column;-ms-flex-align:start;align-items:flex-start;-ms-flex-pack:center;justify-content:center}.btn-group-vertical>.btn,.btn-group-vertical>.btn-group{width:100%}.btn-group-vertical>.btn-group:not(:first-child),.btn-group-vertical>.btn:not(:first-child){margin-top:-1px}.btn-group-vertical>.btn-group:not(:last-child)>.btn,.btn-group-vertical>.btn:not(:last-child):not(.dropdown-toggle){border-bottom-right-radius:0;border-bottom-left-radius:0}.btn-group-vertical>.btn-group:not(:first-child)>.btn,.btn-group-vertical>.btn:not(:first-child){border-top-left-radius:0;border-top-right-radius:0}.btn-group-toggle>.btn,.btn-group-toggle>.btn-group>.btn{margin-bottom:0}.btn-group-toggle>.btn input[type=checkbox],.btn-group-toggle>.btn input[type=radio],.btn-group-toggle>.btn-group>.btn input[type=checkbox],.btn-group-toggle>.btn-group>.btn input[type=radio]{position:absolute;clip:rect(0,0,0,0);pointer-events:none}.input-group{position:relative;display:-ms-flexbox;display:flex;-ms-flex-wrap:wrap;flex-wrap:wrap;-ms-flex-align:stretch;align-items:stretch;width:100%}.input-group>.custom-file,.input-group>.custom-select,.input-group>.form-control,.input-group>.form-control-plaintext{position:relative;-ms-flex:1 1 auto;flex:1 1 auto;width:1%;min-width:0;margin-bottom:0}.input-group>.custom-file+.custom-file,.input-group>.custom-file+.custom-select,.input-group>.custom-file+.form-control,.input-group>.custom-select+.custom-file,.input-group>.custom-select+.custom-select,.input-group>.custom-select+.form-control,.input-group>.form-control+.custom-file,.input-group>.form-control+.custom-select,.input-group>.form-control+.form-control,.input-group>.form-control-plaintext+.custom-file,.input-group>.form-control-plaintext+.custom-select,.input-group>.form-control-plaintext+.form-control{margin-left:-1px}.input-group>.custom-file .custom-file-input:focus~.custom-file-label,.input-group>.custom-select:focus,.input-group>.form-control:focus{z-index:3}.input-group>.custom-file .custom-file-input:focus{z-index:4}.input-group>.custom-select:not(:first-child),.input-group>.form-control:not(:first-child){border-top-left-radius:0;border-bottom-left-radius:0}.input-group>.custom-file{display:-ms-flexbox;display:flex;-ms-flex-align:center;align-items:center}.input-group>.custom-file:not(:first-child) .custom-file-label,.input-group>.custom-file:not(:last-child) .custom-file-label{border-top-left-radius:0;border-bottom-left-radius:0}.input-group:not(.has-validation)>.custom-file:not(:last-child) .custom-file-label::after,.input-group:not(.has-validation)>.custom-select:not(:last-child),.input-group:not(.has-validation)>.form-control:not(:last-child){border-top-right-radius:0;border-bottom-right-radius:0}.input-group.has-validation>.custom-file:nth-last-child(n+3) .custom-file-label::after,.input-group.has-validation>.custom-select:nth-last-child(n+3),.input-group.has-validation>.form-control:nth-last-child(n+3){border-top-right-radius:0;border-bottom-right-radius:0}.input-group-append,.input-group-prepend{display:-ms-flexbox;display:flex}.input-group-append .btn,.input-group-prepend .btn{position:relative;z-index:2}.input-group-append .btn:focus,.input-group-prepend .btn:focus{z-index:3}.input-group-append .btn+.btn,.input-group-append .btn+.input-group-text,.input-group-append .input-group-text+.btn,.input-group-append .input-group-text+.input-group-text,.input-group-prepend .btn+.btn,.input-group-prepend .btn+.input-group-text,.input-group-prepend .input-group-text+.btn,.input-group-prepend .input-group-text+.input-group-text{margin-left:-1px}.input-group-prepend{margin-right:-1px}.input-group-append{margin-left:-1px}.input-group-text{display:-ms-flexbox;display:flex;-ms-flex-align:center;align-items:center;padding:.375rem .75rem;margin-bottom:0;font-size:.9375rem;font-weight:400;line-height:1.5;color:#adb5bd;text-align:center;white-space:nowrap;background-color:#444;border:1px solid #222;border-radius:.25rem}.input-group-text input[type=checkbox],.input-group-text input[type=radio]{margin-top:0}.input-group-lg>.custom-select,.input-group-lg>.form-control:not(textarea){height:calc(1.5em + 1rem + 2px)}.input-group-lg>.custom-select,.input-group-lg>.form-control,.input-group-lg>.input-group-append>.btn,.input-group-lg>.input-group-append>.input-group-text,.input-group-lg>.input-group-prepend>.btn,.input-group-lg>.input-group-prepend>.input-group-text{padding:.5rem 1rem;font-size:1.171875rem;line-height:1.5;border-radius:.3rem}.input-group-sm>.custom-select,.input-group-sm>.form-control:not(textarea){height:calc(1.5em + .5rem + 2px)}.input-group-sm>.custom-select,.input-group-sm>.form-control,.input-group-sm>.input-group-append>.btn,.input-group-sm>.input-group-append>.input-group-text,.input-group-sm>.input-group-prepend>.btn,.input-group-sm>.input-group-prepend>.input-group-text{padding:.25rem .5rem;font-size:.825rem;line-height:1.5;border-radius:.2rem}.input-group-lg>.custom-select,.input-group-sm>.custom-select{padding-right:1.75rem}.input-group.has-validation>.input-group-append:nth-last-child(n+3)>.btn,.input-group.has-validation>.input-group-append:nth-last-child(n+3)>.input-group-text,.input-group:not(.has-validation)>.input-group-append:not(:last-child)>.btn,.input-group:not(.has-validation)>.input-group-append:not(:last-child)>.input-group-text,.input-group>.input-group-append:last-child>.btn:not(:last-child):not(.dropdown-toggle),.input-group>.input-group-append:last-child>.input-group-text:not(:last-child),.input-group>.input-group-prepend>.btn,.input-group>.input-group-prepend>.input-group-text{border-top-right-radius:0;border-bottom-right-radius:0}.input-group>.input-group-append>.btn,.input-group>.input-group-append>.input-group-text,.input-group>.input-group-prepend:first-child>.btn:not(:first-child),.input-group>.input-group-prepend:first-child>.input-group-text:not(:first-child),.input-group>.input-group-prepend:not(:first-child)>.btn,.input-group>.input-group-prepend:not(:first-child)>.input-group-text{border-top-left-radius:0;border-bottom-left-radius:0}.custom-control{position:relative;z-index:1;display:block;min-height:1.40625rem;padding-left:1.5rem;-webkit-print-color-adjust:exact;color-adjust:exact}.custom-control-inline{display:-ms-inline-flexbox;display:inline-flex;margin-right:1rem}.custom-control-input{position:absolute;left:0;z-index:-1;width:1rem;height:1.203125rem;opacity:0}.custom-control-input:checked~.custom-control-label::before{color:#fff;border-color:#375a7f;background-color:#375a7f}.custom-control-input:focus~.custom-control-label::before{box-shadow:0 0 0 .2rem rgba(55,90,127,.25)}.custom-control-input:focus:not(:checked)~.custom-control-label::before{border-color:#739ac2}.custom-control-input:not(:disabled):active~.custom-control-label::before{color:#fff;background-color:#97b3d2;border-color:#97b3d2}.custom-control-input:disabled~.custom-control-label,.custom-control-input[disabled]~.custom-control-label{color:#888}.custom-control-input:disabled~.custom-control-label::before,.custom-control-input[disabled]~.custom-control-label::before{background-color:#ebebeb}.custom-control-label{position:relative;margin-bottom:0;vertical-align:top}.custom-control-label::before{position:absolute;top:.203125rem;left:-1.5rem;display:block;width:1rem;height:1rem;pointer-events:none;content:"";background-color:#fff;border:#adb5bd solid 1px}.custom-control-label::after{position:absolute;top:.203125rem;left:-1.5rem;display:block;width:1rem;height:1rem;content:"";background:50%/50% 50% no-repeat}.custom-checkbox .custom-control-label::before{border-radius:.25rem}.custom-checkbox .custom-control-input:checked~.custom-control-label::after{background-image:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='8' height='8' viewBox='0 0 8 8'%3e%3cpath fill='%23fff' d='M6.564.75l-3.59 3.612-1.538-1.55L0 4.26l2.974 2.99L8 2.193z'/%3e%3c/svg%3e")}.custom-checkbox .custom-control-input:indeterminate~.custom-control-label::before{border-color:#375a7f;background-color:#375a7f}.custom-checkbox .custom-control-input:indeterminate~.custom-control-label::after{background-image:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='4' height='4' viewBox='0 0 4 4'%3e%3cpath stroke='%23fff' d='M0 2h4'/%3e%3c/svg%3e")}.custom-checkbox .custom-control-input:disabled:checked~.custom-control-label::before{background-color:rgba(55,90,127,.5)}.custom-checkbox .custom-control-input:disabled:indeterminate~.custom-control-label::before{background-color:rgba(55,90,127,.5)}.custom-radio .custom-control-label::before{border-radius:50%}.custom-radio .custom-control-input:checked~.custom-control-label::after{background-image:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='12' height='12' viewBox='-4 -4 8 8'%3e%3ccircle r='3' fill='%23fff'/%3e%3c/svg%3e")}.custom-radio .custom-control-input:disabled:checked~.custom-control-label::before{background-color:rgba(55,90,127,.5)}.custom-switch{padding-left:2.25rem}.custom-switch .custom-control-label::before{left:-2.25rem;width:1.75rem;pointer-events:all;border-radius:.5rem}.custom-switch .custom-control-label::after{top:calc(.203125rem + 2px);left:calc(-2.25rem + 2px);width:calc(1rem - 4px);height:calc(1rem - 4px);background-color:#adb5bd;border-radius:.5rem;transition:background-color .15s ease-in-out,border-color .15s ease-in-out,box-shadow .15s ease-in-out,-webkit-transform .15s ease-in-out;transition:transform .15s ease-in-out,background-color .15s ease-in-out,border-color .15s ease-in-out,box-shadow .15s ease-in-out;transition:transform .15s ease-in-out,background-color .15s ease-in-out,border-color .15s ease-in-out,box-shadow .15s ease-in-out,-webkit-transform .15s ease-in-out}@media (prefers-reduced-motion:reduce){.custom-switch .custom-control-label::after{transition:none}}.custom-switch .custom-control-input:checked~.custom-control-label::after{background-color:#fff;-webkit-transform:translateX(.75rem);transform:translateX(.75rem)}.custom-switch .custom-control-input:disabled:checked~.custom-control-label::before{background-color:rgba(55,90,127,.5)}.custom-select{display:inline-block;width:100%;height:calc(1.5em + .75rem + 2px);padding:.375rem 1.75rem .375rem .75rem;font-size:.9375rem;font-weight:400;line-height:1.5;color:#444;vertical-align:middle;background:#fff url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='4' height='5' viewBox='0 0 4 5'%3e%3cpath fill='%23303030' d='M2 0L0 2h4zm0 5L0 3h4z'/%3e%3c/svg%3e") right .75rem center/8px 10px no-repeat;border:1px solid #222;border-radius:.25rem;-webkit-appearance:none;-moz-appearance:none;appearance:none}.custom-select:focus{border-color:#739ac2;outline:0;box-shadow:0 0 0 .2rem rgba(55,90,127,.25)}.custom-select:focus::-ms-value{color:#444;background-color:#fff}.custom-select[multiple],.custom-select[size]:not([size="1"]){height:auto;padding-right:.75rem;background-image:none}.custom-select:disabled{color:#888;background-color:#ebebeb}.custom-select::-ms-expand{display:none}.custom-select:-moz-focusring{color:transparent;text-shadow:0 0 0 #444}.custom-select-sm{height:calc(1.5em + .5rem + 2px);padding-top:.25rem;padding-bottom:.25rem;padding-left:.5rem;font-size:.825rem}.custom-select-lg{height:calc(1.5em + 1rem + 2px);padding-top:.5rem;padding-bottom:.5rem;padding-left:1rem;font-size:1.171875rem}.custom-file{position:relative;display:inline-block;width:100%;height:calc(1.5em + .75rem + 2px);margin-bottom:0}.custom-file-input{position:relative;z-index:2;width:100%;height:calc(1.5em + .75rem + 2px);margin:0;overflow:hidden;opacity:0}.custom-file-input:focus~.custom-file-label{border-color:#739ac2;box-shadow:0 0 0 .2rem rgba(55,90,127,.25)}.custom-file-input:disabled~.custom-file-label,.custom-file-input[disabled]~.custom-file-label{background-color:#ebebeb}.custom-file-input:lang(en)~.custom-file-label::after{content:"Browse"}.custom-file-input~.custom-file-label[data-browse]::after{content:attr(data-browse)}.custom-file-label{position:absolute;top:0;right:0;left:0;z-index:1;height:calc(1.5em + .75rem + 2px);padding:.375rem .75rem;overflow:hidden;font-weight:400;line-height:1.5;color:#adb5bd;background-color:#fff;border:1px solid #222;border-radius:.25rem}.custom-file-label::after{position:absolute;top:0;right:0;bottom:0;z-index:3;display:block;height:calc(1.5em + .75rem);padding:.375rem .75rem;line-height:1.5;color:#adb5bd;content:"Browse";background-color:#444;border-left:inherit;border-radius:0 .25rem .25rem 0}.custom-range{width:100%;height:1.4rem;padding:0;background-color:transparent;-webkit-appearance:none;-moz-appearance:none;appearance:none}.custom-range:focus{outline:0}.custom-range:focus::-webkit-slider-thumb{box-shadow:0 0 0 1px #222,0 0 0 .2rem rgba(55,90,127,.25)}.custom-range:focus::-moz-range-thumb{box-shadow:0 0 0 1px #222,0 0 0 .2rem rgba(55,90,127,.25)}.custom-range:focus::-ms-thumb{box-shadow:0 0 0 1px #222,0 0 0 .2rem rgba(55,90,127,.25)}.custom-range::-moz-focus-outer{border:0}.custom-range::-webkit-slider-thumb{width:1rem;height:1rem;margin-top:-.25rem;background-color:#375a7f;border:0;border-radius:1rem;-webkit-transition:background-color .15s ease-in-out,border-color .15s ease-in-out,box-shadow .15s ease-in-out;transition:background-color .15s ease-in-out,border-color .15s ease-in-out,box-shadow .15s ease-in-out;-webkit-appearance:none;appearance:none}@media (prefers-reduced-motion:reduce){.custom-range::-webkit-slider-thumb{-webkit-transition:none;transition:none}}.custom-range::-webkit-slider-thumb:active{background-color:#97b3d2}.custom-range::-webkit-slider-runnable-track{width:100%;height:.5rem;color:transparent;cursor:pointer;background-color:#dee2e6;border-color:transparent;border-radius:1rem}.custom-range::-moz-range-thumb{width:1rem;height:1rem;background-color:#375a7f;border:0;border-radius:1rem;-moz-transition:background-color .15s ease-in-out,border-color .15s ease-in-out,box-shadow .15s ease-in-out;transition:background-color .15s ease-in-out,border-color .15s ease-in-out,box-shadow .15s ease-in-out;-moz-appearance:none;appearance:none}@media (prefers-reduced-motion:reduce){.custom-range::-moz-range-thumb{-moz-transition:none;transition:none}}.custom-range::-moz-range-thumb:active{background-color:#97b3d2}.custom-range::-moz-range-track{width:100%;height:.5rem;color:transparent;cursor:pointer;background-color:#dee2e6;border-color:transparent;border-radius:1rem}.custom-range::-ms-thumb{width:1rem;height:1rem;margin-top:0;margin-right:.2rem;margin-left:.2rem;background-color:#375a7f;border:0;border-radius:1rem;-ms-transition:background-color .15s ease-in-out,border-color .15s ease-in-out,box-shadow .15s ease-in-out;transition:background-color .15s ease-in-out,border-color .15s ease-in-out,box-shadow .15s ease-in-out;appearance:none}@media (prefers-reduced-motion:reduce){.custom-range::-ms-thumb{-ms-transition:none;transition:none}}.custom-range::-ms-thumb:active{background-color:#97b3d2}.custom-range::-ms-track{width:100%;height:.5rem;color:transparent;cursor:pointer;background-color:transparent;border-color:transparent;border-width:.5rem}.custom-range::-ms-fill-lower{background-color:#dee2e6;border-radius:1rem}.custom-range::-ms-fill-upper{margin-right:15px;background-color:#dee2e6;border-radius:1rem}.custom-range:disabled::-webkit-slider-thumb{background-color:#adb5bd}.custom-range:disabled::-webkit-slider-runnable-track{cursor:default}.custom-range:disabled::-moz-range-thumb{background-color:#adb5bd}.custom-range:disabled::-moz-range-track{cursor:default}.custom-range:disabled::-ms-thumb{background-color:#adb5bd}.custom-control-label::before,.custom-file-label,.custom-select{transition:background-color .15s ease-in-out,border-color .15s ease-in-out,box-shadow .15s ease-in-out}@media (prefers-reduced-motion:reduce){.custom-control-label::before,.custom-file-label,.custom-select{transition:none}}.nav{display:-ms-flexbox;display:flex;-ms-flex-wrap:wrap;flex-wrap:wrap;padding-left:0;margin-bottom:0;list-style:none}.nav-link{display:block;padding:.5rem 2rem}.nav-link:focus,.nav-link:hover{text-decoration:none}.nav-link.disabled{color:#adb5bd;pointer-events:none;cursor:default}.nav-tabs{border-bottom:1px solid #444}.nav-tabs .nav-link{margin-bottom:-1px;border:1px solid transparent;border-top-left-radius:.25rem;border-top-right-radius:.25rem}.nav-tabs .nav-link:focus,.nav-tabs .nav-link:hover{border-color:#444 #444 transparent}.nav-tabs .nav-link.disabled{color:#adb5bd;background-color:transparent;border-color:transparent}.nav-tabs .nav-item.show .nav-link,.nav-tabs .nav-link.active{color:#fff;background-color:#222;border-color:#444 #444 transparent}.nav-tabs .dropdown-menu{margin-top:-1px;border-top-left-radius:0;border-top-right-radius:0}.nav-pills .nav-link{border-radius:.25rem}.nav-pills .nav-link.active,.nav-pills .show>.nav-link{color:#fff;background-color:#375a7f}.nav-fill .nav-item,.nav-fill>.nav-link{-ms-flex:1 1 auto;flex:1 1 auto;text-align:center}.nav-justified .nav-item,.nav-justified>.nav-link{-ms-flex-preferred-size:0;flex-basis:0;-ms-flex-positive:1;flex-grow:1;text-align:center}.tab-content>.tab-pane{display:none}.tab-content>.active{display:block}.navbar{position:relative;display:-ms-flexbox;display:flex;-ms-flex-wrap:wrap;flex-wrap:wrap;-ms-flex-align:center;align-items:center;-ms-flex-pack:justify;justify-content:space-between;padding:1rem 1rem}.navbar .container,.navbar .container-fluid,.navbar .container-lg,.navbar .container-md,.navbar .container-sm,.navbar .container-xl{display:-ms-flexbox;display:flex;-ms-flex-wrap:wrap;flex-wrap:wrap;-ms-flex-align:center;align-items:center;-ms-flex-pack:justify;justify-content:space-between}.navbar-brand{display:inline-block;padding-top:.324219rem;padding-bottom:.324219rem;margin-right:1rem;font-size:1.171875rem;line-height:inherit;white-space:nowrap}.navbar-brand:focus,.navbar-brand:hover{text-decoration:none}.navbar-nav{display:-ms-flexbox;display:flex;-ms-flex-direction:column;flex-direction:column;padding-left:0;margin-bottom:0;list-style:none}.navbar-nav .nav-link{padding-right:0;padding-left:0}.navbar-nav .dropdown-menu{position:static;float:none}.navbar-text{display:inline-block;padding-top:.5rem;padding-bottom:.5rem}.navbar-collapse{-ms-flex-preferred-size:100%;flex-basis:100%;-ms-flex-positive:1;flex-grow:1;-ms-flex-align:center;align-items:center}.navbar-toggler{padding:.25rem .75rem;font-size:1.171875rem;line-height:1;background-color:transparent;border:1px solid transparent;border-radius:.25rem}.navbar-toggler:focus,.navbar-toggler:hover{text-decoration:none}.navbar-toggler-icon{display:inline-block;width:1.5em;height:1.5em;vertical-align:middle;content:"";background:50%/100% 100% no-repeat}.navbar-nav-scroll{max-height:75vh;overflow-y:auto}@media (max-width:575.98px){.navbar-expand-sm>.container,.navbar-expand-sm>.container-fluid,.navbar-expand-sm>.container-lg,.navbar-expand-sm>.container-md,.navbar-expand-sm>.container-sm,.navbar-expand-sm>.container-xl{padding-right:0;padding-left:0}}@media (min-width:576px){.navbar-expand-sm{-ms-flex-flow:row nowrap;flex-flow:row nowrap;-ms-flex-pack:start;justify-content:flex-start}.navbar-expand-sm .navbar-nav{-ms-flex-direction:row;flex-direction:row}.navbar-expand-sm .navbar-nav .dropdown-menu{position:absolute}.navbar-expand-sm .navbar-nav .nav-link{padding-right:.5rem;padding-left:.5rem}.navbar-expand-sm>.container,.navbar-expand-sm>.container-fluid,.navbar-expand-sm>.container-lg,.navbar-expand-sm>.container-md,.navbar-expand-sm>.container-sm,.navbar-expand-sm>.container-xl{-ms-flex-wrap:nowrap;flex-wrap:nowrap}.navbar-expand-sm .navbar-nav-scroll{overflow:visible}.navbar-expand-sm .navbar-collapse{display:-ms-flexbox!important;display:flex!important;-ms-flex-preferred-size:auto;flex-basis:auto}.navbar-expand-sm .navbar-toggler{display:none}}@media (max-width:767.98px){.navbar-expand-md>.container,.navbar-expand-md>.container-fluid,.navbar-expand-md>.container-lg,.navbar-expand-md>.container-md,.navbar-expand-md>.container-sm,.navbar-expand-md>.container-xl{padding-right:0;padding-left:0}}@media (min-width:768px){.navbar-expand-md{-ms-flex-flow:row nowrap;flex-flow:row nowrap;-ms-flex-pack:start;justify-content:flex-start}.navbar-expand-md .navbar-nav{-ms-flex-direction:row;flex-direction:row}.navbar-expand-md .navbar-nav .dropdown-menu{position:absolute}.navbar-expand-md .navbar-nav .nav-link{padding-right:.5rem;padding-left:.5rem}.navbar-expand-md>.container,.navbar-expand-md>.container-fluid,.navbar-expand-md>.container-lg,.navbar-expand-md>.container-md,.navbar-expand-md>.container-sm,.navbar-expand-md>.container-xl{-ms-flex-wrap:nowrap;flex-wrap:nowrap}.navbar-expand-md .navbar-nav-scroll{overflow:visible}.navbar-expand-md .navbar-collapse{display:-ms-flexbox!important;display:flex!important;-ms-flex-preferred-size:auto;flex-basis:auto}.navbar-expand-md .navbar-toggler{display:none}}@media (max-width:991.98px){.navbar-expand-lg>.container,.navbar-expand-lg>.container-fluid,.navbar-expand-lg>.container-lg,.navbar-expand-lg>.container-md,.navbar-expand-lg>.container-sm,.navbar-expand-lg>.container-xl{padding-right:0;padding-left:0}}@media (min-width:992px){.navbar-expand-lg{-ms-flex-flow:row nowrap;flex-flow:row nowrap;-ms-flex-pack:start;justify-content:flex-start}.navbar-expand-lg .navbar-nav{-ms-flex-direction:row;flex-direction:row}.navbar-expand-lg .navbar-nav .dropdown-menu{position:absolute}.navbar-expand-lg .navbar-nav .nav-link{padding-right:.5rem;padding-left:.5rem}.navbar-expand-lg>.container,.navbar-expand-lg>.container-fluid,.navbar-expand-lg>.container-lg,.navbar-expand-lg>.container-md,.navbar-expand-lg>.container-sm,.navbar-expand-lg>.container-xl{-ms-flex-wrap:nowrap;flex-wrap:nowrap}.navbar-expand-lg .navbar-nav-scroll{overflow:visible}.navbar-expand-lg .navbar-collapse{display:-ms-flexbox!important;display:flex!important;-ms-flex-preferred-size:auto;flex-basis:auto}.navbar-expand-lg .navbar-toggler{display:none}}@media (max-width:1199.98px){.navbar-expand-xl>.container,.navbar-expand-xl>.container-fluid,.navbar-expand-xl>.container-lg,.navbar-expand-xl>.container-md,.navbar-expand-xl>.container-sm,.navbar-expand-xl>.container-xl{padding-right:0;padding-left:0}}@media (min-width:1200px){.navbar-expand-xl{-ms-flex-flow:row nowrap;flex-flow:row nowrap;-ms-flex-pack:start;justify-content:flex-start}.navbar-expand-xl .navbar-nav{-ms-flex-direction:row;flex-direction:row}.navbar-expand-xl .navbar-nav .dropdown-menu{position:absolute}.navbar-expand-xl .navbar-nav .nav-link{padding-right:.5rem;padding-left:.5rem}.navbar-expand-xl>.container,.navbar-expand-xl>.container-fluid,.navbar-expand-xl>.container-lg,.navbar-expand-xl>.container-md,.navbar-expand-xl>.container-sm,.navbar-expand-xl>.container-xl{-ms-flex-wrap:nowrap;flex-wrap:nowrap}.navbar-expand-xl .navbar-nav-scroll{overflow:visible}.navbar-expand-xl .navbar-collapse{display:-ms-flexbox!important;display:flex!important;-ms-flex-preferred-size:auto;flex-basis:auto}.navbar-expand-xl .navbar-toggler{display:none}}.navbar-expand{-ms-flex-flow:row nowrap;flex-flow:row nowrap;-ms-flex-pack:start;justify-content:flex-start}.navbar-expand>.container,.navbar-expand>.container-fluid,.navbar-expand>.container-lg,.navbar-expand>.container-md,.navbar-expand>.container-sm,.navbar-expand>.container-xl{padding-right:0;padding-left:0}.navbar-expand .navbar-nav{-ms-flex-direction:row;flex-direction:row}.navbar-expand .navbar-nav .dropdown-menu{position:absolute}.navbar-expand .navbar-nav .nav-link{padding-right:.5rem;padding-left:.5rem}.navbar-expand>.container,.navbar-expand>.container-fluid,.navbar-expand>.container-lg,.navbar-expand>.container-md,.navbar-expand>.container-sm,.navbar-expand>.container-xl{-ms-flex-wrap:nowrap;flex-wrap:nowrap}.navbar-expand .navbar-nav-scroll{overflow:visible}.navbar-expand .navbar-collapse{display:-ms-flexbox!important;display:flex!important;-ms-flex-preferred-size:auto;flex-basis:auto}.navbar-expand .navbar-toggler{display:none}.navbar-light .navbar-brand{color:#222}.navbar-light .navbar-brand:focus,.navbar-light .navbar-brand:hover{color:#222}.navbar-light .navbar-nav .nav-link{color:rgba(34,34,34,.7)}.navbar-light .navbar-nav .nav-link:focus,.navbar-light .navbar-nav .nav-link:hover{color:#222}.navbar-light .navbar-nav .nav-link.disabled{color:rgba(0,0,0,.3)}.navbar-light .navbar-nav .active>.nav-link,.navbar-light .navbar-nav .nav-link.active,.navbar-light .navbar-nav .nav-link.show,.navbar-light .navbar-nav .show>.nav-link{color:#222}.navbar-light .navbar-toggler{color:rgba(34,34,34,.7);border-color:rgba(34,34,34,.1)}.navbar-light .navbar-toggler-icon{background-image:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='30' height='30' viewBox='0 0 30 30'%3e%3cpath stroke='rgba%2834, 34, 34, 0.7%29' stroke-linecap='round' stroke-miterlimit='10' stroke-width='2' d='M4 7h22M4 15h22M4 23h22'/%3e%3c/svg%3e")}.navbar-light .navbar-text{color:rgba(34,34,34,.7)}.navbar-light .navbar-text a{color:#222}.navbar-light .navbar-text a:focus,.navbar-light .navbar-text a:hover{color:#222}.navbar-dark .navbar-brand{color:#fff}.navbar-dark .navbar-brand:focus,.navbar-dark .navbar-brand:hover{color:#fff}.navbar-dark .navbar-nav .nav-link{color:rgba(255,255,255,.6)}.navbar-dark .navbar-nav .nav-link:focus,.navbar-dark .navbar-nav .nav-link:hover{color:#fff}.navbar-dark .navbar-nav .nav-link.disabled{color:rgba(255,255,255,.25)}.navbar-dark .navbar-nav .active>.nav-link,.navbar-dark .navbar-nav .nav-link.active,.navbar-dark .navbar-nav .nav-link.show,.navbar-dark .navbar-nav .show>.nav-link{color:#fff}.navbar-dark .navbar-toggler{color:rgba(255,255,255,.6);border-color:rgba(255,255,255,.1)}.navbar-dark .navbar-toggler-icon{background-image:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='30' height='30' viewBox='0 0 30 30'%3e%3cpath stroke='rgba%28255, 255, 255, 0.6%29' stroke-linecap='round' stroke-miterlimit='10' stroke-width='2' d='M4 7h22M4 15h22M4 23h22'/%3e%3c/svg%3e")}.navbar-dark .navbar-text{color:rgba(255,255,255,.6)}.navbar-dark .navbar-text a{color:#fff}.navbar-dark .navbar-text a:focus,.navbar-dark .navbar-text a:hover{color:#fff}.card{position:relative;display:-ms-flexbox;display:flex;-ms-flex-direction:column;flex-direction:column;min-width:0;word-wrap:break-word;background-color:#303030;background-clip:border-box;border:1px solid rgba(0,0,0,.125);border-radius:.25rem}.card>hr{margin-right:0;margin-left:0}.card>.list-group{border-top:inherit;border-bottom:inherit}.card>.list-group:first-child{border-top-width:0;border-top-left-radius:calc(.25rem - 1px);border-top-right-radius:calc(.25rem - 1px)}.card>.list-group:last-child{border-bottom-width:0;border-bottom-right-radius:calc(.25rem - 1px);border-bottom-left-radius:calc(.25rem - 1px)}.card>.card-header+.list-group,.card>.list-group+.card-footer{border-top:0}.card-body{-ms-flex:1 1 auto;flex:1 1 auto;min-height:1px;padding:1.25rem}.card-title{margin-bottom:.75rem}.card-subtitle{margin-top:-.375rem;margin-bottom:0}.card-text:last-child{margin-bottom:0}.card-link:hover{text-decoration:none}.card-link+.card-link{margin-left:1.25rem}.card-header{padding:.75rem 1.25rem;margin-bottom:0;background-color:#444;border-bottom:1px solid rgba(0,0,0,.125)}.card-header:first-child{border-radius:calc(.25rem - 1px) calc(.25rem - 1px) 0 0}.card-footer{padding:.75rem 1.25rem;background-color:#444;border-top:1px solid rgba(0,0,0,.125)}.card-footer:last-child{border-radius:0 0 calc(.25rem - 1px) calc(.25rem - 1px)}.card-header-tabs{margin-right:-.625rem;margin-bottom:-.75rem;margin-left:-.625rem;border-bottom:0}.card-header-pills{margin-right:-.625rem;margin-left:-.625rem}.card-img-overlay{position:absolute;top:0;right:0;bottom:0;left:0;padding:1.25rem;border-radius:calc(.25rem - 1px)}.card-img,.card-img-bottom,.card-img-top{-ms-flex-negative:0;flex-shrink:0;width:100%}.card-img,.card-img-top{border-top-left-radius:calc(.25rem - 1px);border-top-right-radius:calc(.25rem - 1px)}.card-img,.card-img-bottom{border-bottom-right-radius:calc(.25rem - 1px);border-bottom-left-radius:calc(.25rem - 1px)}.card-deck .card{margin-bottom:15px}@media (min-width:576px){.card-deck{display:-ms-flexbox;display:flex;-ms-flex-flow:row wrap;flex-flow:row wrap;margin-right:-15px;margin-left:-15px}.card-deck .card{-ms-flex:1 0 0%;flex:1 0 0%;margin-right:15px;margin-bottom:0;margin-left:15px}}.card-group>.card{margin-bottom:15px}@media (min-width:576px){.card-group{display:-ms-flexbox;display:flex;-ms-flex-flow:row wrap;flex-flow:row wrap}.card-group>.card{-ms-flex:1 0 0%;flex:1 0 0%;margin-bottom:0}.card-group>.card+.card{margin-left:0;border-left:0}.card-group>.card:not(:last-child){border-top-right-radius:0;border-bottom-right-radius:0}.card-group>.card:not(:last-child) .card-header,.card-group>.card:not(:last-child) .card-img-top{border-top-right-radius:0}.card-group>.card:not(:last-child) .card-footer,.card-group>.card:not(:last-child) .card-img-bottom{border-bottom-right-radius:0}.card-group>.card:not(:first-child){border-top-left-radius:0;border-bottom-left-radius:0}.card-group>.card:not(:first-child) .card-header,.card-group>.card:not(:first-child) .card-img-top{border-top-left-radius:0}.card-group>.card:not(:first-child) .card-footer,.card-group>.card:not(:first-child) .card-img-bottom{border-bottom-left-radius:0}}.card-columns .card{margin-bottom:.75rem}@media (min-width:576px){.card-columns{-webkit-column-count:3;-moz-column-count:3;column-count:3;-webkit-column-gap:1.25rem;-moz-column-gap:1.25rem;column-gap:1.25rem;orphans:1;widows:1}.card-columns .card{display:inline-block;width:100%}}.accordion{overflow-anchor:none}.accordion>.card{overflow:hidden}.accordion>.card:not(:last-of-type){border-bottom:0;border-bottom-right-radius:0;border-bottom-left-radius:0}.accordion>.card:not(:first-of-type){border-top-left-radius:0;border-top-right-radius:0}.accordion>.card>.card-header{border-radius:0;margin-bottom:-1px}.breadcrumb{display:-ms-flexbox;display:flex;-ms-flex-wrap:wrap;flex-wrap:wrap;padding:.75rem 1rem;margin-bottom:1rem;list-style:none;background-color:#444;border-radius:.25rem}.breadcrumb-item+.breadcrumb-item{padding-left:.5rem}.breadcrumb-item+.breadcrumb-item::before{float:left;padding-right:.5rem;color:#888;content:"/"}.breadcrumb-item+.breadcrumb-item:hover::before{text-decoration:underline}.breadcrumb-item+.breadcrumb-item:hover::before{text-decoration:none}.breadcrumb-item.active{color:#888}.pagination{display:-ms-flexbox;display:flex;padding-left:0;list-style:none;border-radius:.25rem}.page-link{position:relative;display:block;padding:.5rem .75rem;margin-left:0;line-height:1.25;color:#fff;background-color:#00bc8c;border:0 solid transparent}.page-link:hover{z-index:2;color:#fff;text-decoration:none;background-color:#00efb2;border-color:transparent}.page-link:focus{z-index:3;outline:0;box-shadow:0 0 0 .2rem rgba(55,90,127,.25)}.page-item:first-child .page-link{margin-left:0;border-top-left-radius:.25rem;border-bottom-left-radius:.25rem}.page-item:last-child .page-link{border-top-right-radius:.25rem;border-bottom-right-radius:.25rem}.page-item.active .page-link{z-index:3;color:#fff;background-color:#00efb2;border-color:transparent}.page-item.disabled .page-link{color:#fff;pointer-events:none;cursor:auto;background-color:#007053;border-color:transparent}.pagination-lg .page-link{padding:.75rem 1.5rem;font-size:1.171875rem;line-height:1.5}.pagination-lg .page-item:first-child .page-link{border-top-left-radius:.3rem;border-bottom-left-radius:.3rem}.pagination-lg .page-item:last-child .page-link{border-top-right-radius:.3rem;border-bottom-right-radius:.3rem}.pagination-sm .page-link{padding:.25rem .5rem;font-size:.825rem;line-height:1.5}.pagination-sm .page-item:first-child .page-link{border-top-left-radius:.2rem;border-bottom-left-radius:.2rem}.pagination-sm .page-item:last-child .page-link{border-top-right-radius:.2rem;border-bottom-right-radius:.2rem}.badge{display:inline-block;padding:.25em .4em;font-size:75%;font-weight:700;line-height:1;text-align:center;white-space:nowrap;vertical-align:baseline;border-radius:.25rem;transition:color .15s ease-in-out,background-color .15s ease-in-out,border-color .15s ease-in-out,box-shadow .15s ease-in-out}@media (prefers-reduced-motion:reduce){.badge{transition:none}}a.badge:focus,a.badge:hover{text-decoration:none}.badge:empty{display:none}.btn .badge{position:relative;top:-1px}.badge-pill{padding-right:.6em;padding-left:.6em;border-radius:10rem}.badge-primary{color:#fff;background-color:#375a7f}a.badge-primary:focus,a.badge-primary:hover{color:#fff;background-color:#28415b}a.badge-primary.focus,a.badge-primary:focus{outline:0;box-shadow:0 0 0 .2rem rgba(55,90,127,.5)}.badge-secondary{color:#fff;background-color:#444}a.badge-secondary:focus,a.badge-secondary:hover{color:#fff;background-color:#2b2b2b}a.badge-secondary.focus,a.badge-secondary:focus{outline:0;box-shadow:0 0 0 .2rem rgba(68,68,68,.5)}.badge-success{color:#fff;background-color:#00bc8c}a.badge-success:focus,a.badge-success:hover{color:#fff;background-color:#008966}a.badge-success.focus,a.badge-success:focus{outline:0;box-shadow:0 0 0 .2rem rgba(0,188,140,.5)}.badge-info{color:#fff;background-color:#3498db}a.badge-info:focus,a.badge-info:hover{color:#fff;background-color:#217dbb}a.badge-info.focus,a.badge-info:focus{outline:0;box-shadow:0 0 0 .2rem rgba(52,152,219,.5)}.badge-warning{color:#fff;background-color:#f39c12}a.badge-warning:focus,a.badge-warning:hover{color:#fff;background-color:#c87f0a}a.badge-warning.focus,a.badge-warning:focus{outline:0;box-shadow:0 0 0 .2rem rgba(243,156,18,.5)}.badge-danger{color:#fff;background-color:#e74c3c}a.badge-danger:focus,a.badge-danger:hover{color:#fff;background-color:#d62c1a}a.badge-danger.focus,a.badge-danger:focus{outline:0;box-shadow:0 0 0 .2rem rgba(231,76,60,.5)}.badge-light{color:#222;background-color:#adb5bd}a.badge-light:focus,a.badge-light:hover{color:#222;background-color:#919ca6}a.badge-light.focus,a.badge-light:focus{outline:0;box-shadow:0 0 0 .2rem rgba(173,181,189,.5)}.badge-dark{color:#fff;background-color:#303030}a.badge-dark:focus,a.badge-dark:hover{color:#fff;background-color:#171717}a.badge-dark.focus,a.badge-dark:focus{outline:0;box-shadow:0 0 0 .2rem rgba(48,48,48,.5)}.jumbotron{padding:2rem 1rem;margin-bottom:2rem;background-color:#303030;border-radius:.3rem}@media (min-width:576px){.jumbotron{padding:4rem 2rem}}.jumbotron-fluid{padding-right:0;padding-left:0;border-radius:0}.alert{position:relative;padding:.75rem 1.25rem;margin-bottom:1rem;border:1px solid transparent;border-radius:.25rem}.alert-heading{color:inherit}.alert-link{font-weight:700}.alert-dismissible{padding-right:3.90625rem}.alert-dismissible .close{position:absolute;top:0;right:0;z-index:2;padding:.75rem 1.25rem;color:inherit}.alert-primary{color:#1d2f42;background-color:#d7dee5;border-color:#c7d1db}.alert-primary hr{border-top-color:#b7c4d1}.alert-primary .alert-link{color:#0d161f}.alert-secondary{color:#232323;background-color:#dadada;border-color:#cbcbcb}.alert-secondary hr{border-top-color:#bebebe}.alert-secondary .alert-link{color:#0a0a0a}.alert-success{color:#006249;background-color:#ccf2e8;border-color:#b8ecdf}.alert-success hr{border-top-color:#a4e7d6}.alert-success .alert-link{color:#002f23}.alert-info{color:#1b4f72;background-color:#d6eaf8;border-color:#c6e2f5}.alert-info hr{border-top-color:#b0d7f1}.alert-info .alert-link{color:#113249}.alert-warning{color:#7e5109;background-color:#fdebd0;border-color:#fce3bd}.alert-warning hr{border-top-color:#fbd9a5}.alert-warning .alert-link{color:#4e3206}.alert-danger{color:#78281f;background-color:#fadbd8;border-color:#f8cdc8}.alert-danger hr{border-top-color:#f5b8b1}.alert-danger .alert-link{color:#4f1a15}.alert-light{color:#5a5e62;background-color:#eff0f2;border-color:#e8eaed}.alert-light hr{border-top-color:#dadde2}.alert-light .alert-link{color:#424547}.alert-dark{color:#191919;background-color:#d6d6d6;border-color:#c5c5c5}.alert-dark hr{border-top-color:#b8b8b8}.alert-dark .alert-link{color:#000}@-webkit-keyframes progress-bar-stripes{from{background-position:1rem 0}to{background-position:0 0}}@keyframes progress-bar-stripes{from{background-position:1rem 0}to{background-position:0 0}}.progress{display:-ms-flexbox;display:flex;height:1rem;overflow:hidden;line-height:0;font-size:.703125rem;background-color:#444;border-radius:.25rem}.progress-bar{display:-ms-flexbox;display:flex;-ms-flex-direction:column;flex-direction:column;-ms-flex-pack:center;justify-content:center;overflow:hidden;color:#fff;text-align:center;white-space:nowrap;background-color:#375a7f;transition:width .6s ease}@media (prefers-reduced-motion:reduce){.progress-bar{transition:none}}.progress-bar-striped{background-image:linear-gradient(45deg,rgba(255,255,255,.15) 25%,transparent 25%,transparent 50%,rgba(255,255,255,.15) 50%,rgba(255,255,255,.15) 75%,transparent 75%,transparent);background-size:1rem 1rem}.progress-bar-animated{-webkit-animation:1s linear infinite progress-bar-stripes;animation:1s linear infinite progress-bar-stripes}@media (prefers-reduced-motion:reduce){.progress-bar-animated{-webkit-animation:none;animation:none}}.media{display:-ms-flexbox;display:flex;-ms-flex-align:start;align-items:flex-start}.media-body{-ms-flex:1;flex:1}.list-group{display:-ms-flexbox;display:flex;-ms-flex-direction:column;flex-direction:column;padding-left:0;margin-bottom:0;border-radius:.25rem}.list-group-item-action{width:100%;color:#444;text-align:inherit}.list-group-item-action:focus,.list-group-item-action:hover{z-index:1;color:#444;text-decoration:none;background-color:#444}.list-group-item-action:active{color:#fff;background-color:#ebebeb}.list-group-item{position:relative;display:block;padding:.75rem 1.25rem;background-color:#303030;border:1px solid #444}.list-group-item:first-child{border-top-left-radius:inherit;border-top-right-radius:inherit}.list-group-item:last-child{border-bottom-right-radius:inherit;border-bottom-left-radius:inherit}.list-group-item.disabled,.list-group-item:disabled{color:#888;pointer-events:none;background-color:#303030}.list-group-item.active{z-index:2;color:#fff;background-color:#375a7f;border-color:#375a7f}.list-group-item+.list-group-item{border-top-width:0}.list-group-item+.list-group-item.active{margin-top:-1px;border-top-width:1px}.list-group-horizontal{-ms-flex-direction:row;flex-direction:row}.list-group-horizontal>.list-group-item:first-child{border-bottom-left-radius:.25rem;border-top-right-radius:0}.list-group-horizontal>.list-group-item:last-child{border-top-right-radius:.25rem;border-bottom-left-radius:0}.list-group-horizontal>.list-group-item.active{margin-top:0}.list-group-horizontal>.list-group-item+.list-group-item{border-top-width:1px;border-left-width:0}.list-group-horizontal>.list-group-item+.list-group-item.active{margin-left:-1px;border-left-width:1px}@media (min-width:576px){.list-group-horizontal-sm{-ms-flex-direction:row;flex-direction:row}.list-group-horizontal-sm>.list-group-item:first-child{border-bottom-left-radius:.25rem;border-top-right-radius:0}.list-group-horizontal-sm>.list-group-item:last-child{border-top-right-radius:.25rem;border-bottom-left-radius:0}.list-group-horizontal-sm>.list-group-item.active{margin-top:0}.list-group-horizontal-sm>.list-group-item+.list-group-item{border-top-width:1px;border-left-width:0}.list-group-horizontal-sm>.list-group-item+.list-group-item.active{margin-left:-1px;border-left-width:1px}}@media (min-width:768px){.list-group-horizontal-md{-ms-flex-direction:row;flex-direction:row}.list-group-horizontal-md>.list-group-item:first-child{border-bottom-left-radius:.25rem;border-top-right-radius:0}.list-group-horizontal-md>.list-group-item:last-child{border-top-right-radius:.25rem;border-bottom-left-radius:0}.list-group-horizontal-md>.list-group-item.active{margin-top:0}.list-group-horizontal-md>.list-group-item+.list-group-item{border-top-width:1px;border-left-width:0}.list-group-horizontal-md>.list-group-item+.list-group-item.active{margin-left:-1px;border-left-width:1px}}@media (min-width:992px){.list-group-horizontal-lg{-ms-flex-direction:row;flex-direction:row}.list-group-horizontal-lg>.list-group-item:first-child{border-bottom-left-radius:.25rem;border-top-right-radius:0}.list-group-horizontal-lg>.list-group-item:last-child{border-top-right-radius:.25rem;border-bottom-left-radius:0}.list-group-horizontal-lg>.list-group-item.active{margin-top:0}.list-group-horizontal-lg>.list-group-item+.list-group-item{border-top-width:1px;border-left-width:0}.list-group-horizontal-lg>.list-group-item+.list-group-item.active{margin-left:-1px;border-left-width:1px}}@media (min-width:1200px){.list-group-horizontal-xl{-ms-flex-direction:row;flex-direction:row}.list-group-horizontal-xl>.list-group-item:first-child{border-bottom-left-radius:.25rem;border-top-right-radius:0}.list-group-horizontal-xl>.list-group-item:last-child{border-top-right-radius:.25rem;border-bottom-left-radius:0}.list-group-horizontal-xl>.list-group-item.active{margin-top:0}.list-group-horizontal-xl>.list-group-item+.list-group-item{border-top-width:1px;border-left-width:0}.list-group-horizontal-xl>.list-group-item+.list-group-item.active{margin-left:-1px;border-left-width:1px}}.list-group-flush{border-radius:0}.list-group-flush>.list-group-item{border-width:0 0 1px}.list-group-flush>.list-group-item:last-child{border-bottom-width:0}.list-group-item-primary{color:#1d2f42;background-color:#c7d1db}.list-group-item-primary.list-group-item-action:focus,.list-group-item-primary.list-group-item-action:hover{color:#1d2f42;background-color:#b7c4d1}.list-group-item-primary.list-group-item-action.active{color:#fff;background-color:#1d2f42;border-color:#1d2f42}.list-group-item-secondary{color:#232323;background-color:#cbcbcb}.list-group-item-secondary.list-group-item-action:focus,.list-group-item-secondary.list-group-item-action:hover{color:#232323;background-color:#bebebe}.list-group-item-secondary.list-group-item-action.active{color:#fff;background-color:#232323;border-color:#232323}.list-group-item-success{color:#006249;background-color:#b8ecdf}.list-group-item-success.list-group-item-action:focus,.list-group-item-success.list-group-item-action:hover{color:#006249;background-color:#a4e7d6}.list-group-item-success.list-group-item-action.active{color:#fff;background-color:#006249;border-color:#006249}.list-group-item-info{color:#1b4f72;background-color:#c6e2f5}.list-group-item-info.list-group-item-action:focus,.list-group-item-info.list-group-item-action:hover{color:#1b4f72;background-color:#b0d7f1}.list-group-item-info.list-group-item-action.active{color:#fff;background-color:#1b4f72;border-color:#1b4f72}.list-group-item-warning{color:#7e5109;background-color:#fce3bd}.list-group-item-warning.list-group-item-action:focus,.list-group-item-warning.list-group-item-action:hover{color:#7e5109;background-color:#fbd9a5}.list-group-item-warning.list-group-item-action.active{color:#fff;background-color:#7e5109;border-color:#7e5109}.list-group-item-danger{color:#78281f;background-color:#f8cdc8}.list-group-item-danger.list-group-item-action:focus,.list-group-item-danger.list-group-item-action:hover{color:#78281f;background-color:#f5b8b1}.list-group-item-danger.list-group-item-action.active{color:#fff;background-color:#78281f;border-color:#78281f}.list-group-item-light{color:#5a5e62;background-color:#e8eaed}.list-group-item-light.list-group-item-action:focus,.list-group-item-light.list-group-item-action:hover{color:#5a5e62;background-color:#dadde2}.list-group-item-light.list-group-item-action.active{color:#fff;background-color:#5a5e62;border-color:#5a5e62}.list-group-item-dark{color:#191919;background-color:#c5c5c5}.list-group-item-dark.list-group-item-action:focus,.list-group-item-dark.list-group-item-action:hover{color:#191919;background-color:#b8b8b8}.list-group-item-dark.list-group-item-action.active{color:#fff;background-color:#191919;border-color:#191919}.close{float:right;font-size:1.40625rem;font-weight:700;line-height:1;color:#fff;text-shadow:none;opacity:.5}.close:hover{color:#fff;text-decoration:none}.close:not(:disabled):not(.disabled):focus,.close:not(:disabled):not(.disabled):hover{opacity:.75}button.close{padding:0;background-color:transparent;border:0}a.close.disabled{pointer-events:none}.toast{-ms-flex-preferred-size:350px;flex-basis:350px;max-width:350px;font-size:.875rem;background-color:#444;background-clip:padding-box;border:1px solid rgba(0,0,0,.1);box-shadow:0 .25rem .75rem rgba(0,0,0,.1);opacity:0;border-radius:.25rem}.toast:not(:last-child){margin-bottom:.75rem}.toast.showing{opacity:1}.toast.show{display:block;opacity:1}.toast.hide{display:none}.toast-header{display:-ms-flexbox;display:flex;-ms-flex-align:center;align-items:center;padding:.25rem .75rem;color:#888;background-color:#303030;background-clip:padding-box;border-bottom:1px solid rgba(0,0,0,.05);border-top-left-radius:calc(.25rem - 1px);border-top-right-radius:calc(.25rem - 1px)}.toast-body{padding:.75rem}.modal-open{overflow:hidden}.modal-open .modal{overflow-x:hidden;overflow-y:auto}.modal{position:fixed;top:0;left:0;z-index:1050;display:none;width:100%;height:100%;overflow:hidden;outline:0}.modal-dialog{position:relative;width:auto;margin:.5rem;pointer-events:none}.modal.fade .modal-dialog{transition:-webkit-transform .3s ease-out;transition:transform .3s ease-out;transition:transform .3s ease-out,-webkit-transform .3s ease-out;-webkit-transform:translate(0,-50px);transform:translate(0,-50px)}@media (prefers-reduced-motion:reduce){.modal.fade .modal-dialog{transition:none}}.modal.show .modal-dialog{-webkit-transform:none;transform:none}.modal.modal-static .modal-dialog{-webkit-transform:scale(1.02);transform:scale(1.02)}.modal-dialog-scrollable{display:-ms-flexbox;display:flex;max-height:calc(100% - 1rem)}.modal-dialog-scrollable .modal-content{max-height:calc(100vh - 1rem);overflow:hidden}.modal-dialog-scrollable .modal-footer,.modal-dialog-scrollable .modal-header{-ms-flex-negative:0;flex-shrink:0}.modal-dialog-scrollable .modal-body{overflow-y:auto}.modal-dialog-centered{display:-ms-flexbox;display:flex;-ms-flex-align:center;align-items:center;min-height:calc(100% - 1rem)}.modal-dialog-centered::before{display:block;height:calc(100vh - 1rem);height:-webkit-min-content;height:-moz-min-content;height:min-content;content:""}.modal-dialog-centered.modal-dialog-scrollable{-ms-flex-direction:column;flex-direction:column;-ms-flex-pack:center;justify-content:center;height:100%}.modal-dialog-centered.modal-dialog-scrollable .modal-content{max-height:none}.modal-dialog-centered.modal-dialog-scrollable::before{content:none}.modal-content{position:relative;display:-ms-flexbox;display:flex;-ms-flex-direction:column;flex-direction:column;width:100%;pointer-events:auto;background-color:#303030;background-clip:padding-box;border:1px solid #444;border-radius:.3rem;outline:0}.modal-backdrop{position:fixed;top:0;left:0;z-index:1040;width:100vw;height:100vh;background-color:#000}.modal-backdrop.fade{opacity:0}.modal-backdrop.show{opacity:.5}.modal-header{display:-ms-flexbox;display:flex;-ms-flex-align:start;align-items:flex-start;-ms-flex-pack:justify;justify-content:space-between;padding:1rem 1rem;border-bottom:1px solid #444;border-top-left-radius:calc(.3rem - 1px);border-top-right-radius:calc(.3rem - 1px)}.modal-header .close{padding:1rem 1rem;margin:-1rem -1rem -1rem auto}.modal-title{margin-bottom:0;line-height:1.5}.modal-body{position:relative;-ms-flex:1 1 auto;flex:1 1 auto;padding:1rem}.modal-footer{display:-ms-flexbox;display:flex;-ms-flex-wrap:wrap;flex-wrap:wrap;-ms-flex-align:center;align-items:center;-ms-flex-pack:end;justify-content:flex-end;padding:.75rem;border-top:1px solid #444;border-bottom-right-radius:calc(.3rem - 1px);border-bottom-left-radius:calc(.3rem - 1px)}.modal-footer>*{margin:.25rem}.modal-scrollbar-measure{position:absolute;top:-9999px;width:50px;height:50px;overflow:scroll}@media (min-width:576px){.modal-dialog{max-width:500px;margin:1.75rem auto}.modal-dialog-scrollable{max-height:calc(100% - 3.5rem)}.modal-dialog-scrollable .modal-content{max-height:calc(100vh - 3.5rem)}.modal-dialog-centered{min-height:calc(100% - 3.5rem)}.modal-dialog-centered::before{height:calc(100vh - 3.5rem);height:-webkit-min-content;height:-moz-min-content;height:min-content}.modal-sm{max-width:300px}}@media (min-width:992px){.modal-lg,.modal-xl{max-width:800px}}@media (min-width:1200px){.modal-xl{max-width:1140px}}.tooltip{position:absolute;z-index:1070;display:block;margin:0;font-family:Lato,-apple-system,BlinkMacSystemFont,"Segoe UI",Roboto,"Helvetica Neue",Arial,sans-serif,"Apple Color Emoji","Segoe UI Emoji","Segoe UI Symbol";font-style:normal;font-weight:400;line-height:1.5;text-align:left;text-align:start;text-decoration:none;text-shadow:none;text-transform:none;letter-spacing:normal;word-break:normal;word-spacing:normal;white-space:normal;line-break:auto;font-size:.825rem;word-wrap:break-word;opacity:0}.tooltip.show{opacity:.9}.tooltip .arrow{position:absolute;display:block;width:.8rem;height:.4rem}.tooltip .arrow::before{position:absolute;content:"";border-color:transparent;border-style:solid}.bs-tooltip-auto[x-placement^=top],.bs-tooltip-top{padding:.4rem 0}.bs-tooltip-auto[x-placement^=top] .arrow,.bs-tooltip-top .arrow{bottom:0}.bs-tooltip-auto[x-placement^=top] .arrow::before,.bs-tooltip-top .arrow::before{top:0;border-width:.4rem .4rem 0;border-top-color:#000}.bs-tooltip-auto[x-placement^=right],.bs-tooltip-right{padding:0 .4rem}.bs-tooltip-auto[x-placement^=right] .arrow,.bs-tooltip-right .arrow{left:0;width:.4rem;height:.8rem}.bs-tooltip-auto[x-placement^=right] .arrow::before,.bs-tooltip-right .arrow::before{right:0;border-width:.4rem .4rem .4rem 0;border-right-color:#000}.bs-tooltip-auto[x-placement^=bottom],.bs-tooltip-bottom{padding:.4rem 0}.bs-tooltip-auto[x-placement^=bottom] .arrow,.bs-tooltip-bottom .arrow{top:0}.bs-tooltip-auto[x-placement^=bottom] .arrow::before,.bs-tooltip-bottom .arrow::before{bottom:0;border-width:0 .4rem .4rem;border-bottom-color:#000}.bs-tooltip-auto[x-placement^=left],.bs-tooltip-left{padding:0 .4rem}.bs-tooltip-auto[x-placement^=left] .arrow,.bs-tooltip-left .arrow{right:0;width:.4rem;height:.8rem}.bs-tooltip-auto[x-placement^=left] .arrow::before,.bs-tooltip-left .arrow::before{left:0;border-width:.4rem 0 .4rem .4rem;border-left-color:#000}.tooltip-inner{max-width:200px;padding:.25rem .5rem;color:#fff;text-align:center;background-color:#000;border-radius:.25rem}.popover{position:absolute;top:0;left:0;z-index:1060;display:block;max-width:276px;font-family:Lato,-apple-system,BlinkMacSystemFont,"Segoe UI",Roboto,"Helvetica Neue",Arial,sans-serif,"Apple Color Emoji","Segoe UI Emoji","Segoe UI Symbol";font-style:normal;font-weight:400;line-height:1.5;text-align:left;text-align:start;text-decoration:none;text-shadow:none;text-transform:none;letter-spacing:normal;word-break:normal;word-spacing:normal;white-space:normal;line-break:auto;font-size:.825rem;word-wrap:break-word;background-color:#303030;background-clip:padding-box;border:1px solid rgba(0,0,0,.2);border-radius:.3rem}.popover .arrow{position:absolute;display:block;width:1rem;height:.5rem;margin:0 .3rem}.popover .arrow::after,.popover .arrow::before{position:absolute;display:block;content:"";border-color:transparent;border-style:solid}.bs-popover-auto[x-placement^=top],.bs-popover-top{margin-bottom:.5rem}.bs-popover-auto[x-placement^=top]>.arrow,.bs-popover-top>.arrow{bottom:calc(-.5rem - 1px)}.bs-popover-auto[x-placement^=top]>.arrow::before,.bs-popover-top>.arrow::before{bottom:0;border-width:.5rem .5rem 0;border-top-color:rgba(0,0,0,.25)}.bs-popover-auto[x-placement^=top]>.arrow::after,.bs-popover-top>.arrow::after{bottom:1px;border-width:.5rem .5rem 0;border-top-color:#303030}.bs-popover-auto[x-placement^=right],.bs-popover-right{margin-left:.5rem}.bs-popover-auto[x-placement^=right]>.arrow,.bs-popover-right>.arrow{left:calc(-.5rem - 1px);width:.5rem;height:1rem;margin:.3rem 0}.bs-popover-auto[x-placement^=right]>.arrow::before,.bs-popover-right>.arrow::before{left:0;border-width:.5rem .5rem .5rem 0;border-right-color:rgba(0,0,0,.25)}.bs-popover-auto[x-placement^=right]>.arrow::after,.bs-popover-right>.arrow::after{left:1px;border-width:.5rem .5rem .5rem 0;border-right-color:#303030}.bs-popover-auto[x-placement^=bottom],.bs-popover-bottom{margin-top:.5rem}.bs-popover-auto[x-placement^=bottom]>.arrow,.bs-popover-bottom>.arrow{top:calc(-.5rem - 1px)}.bs-popover-auto[x-placement^=bottom]>.arrow::before,.bs-popover-bottom>.arrow::before{top:0;border-width:0 .5rem .5rem .5rem;border-bottom-color:rgba(0,0,0,.25)}.bs-popover-auto[x-placement^=bottom]>.arrow::after,.bs-popover-bottom>.arrow::after{top:1px;border-width:0 .5rem .5rem .5rem;border-bottom-color:#303030}.bs-popover-auto[x-placement^=bottom] .popover-header::before,.bs-popover-bottom .popover-header::before{position:absolute;top:0;left:50%;display:block;width:1rem;margin-left:-.5rem;content:"";border-bottom:1px solid #444}.bs-popover-auto[x-placement^=left],.bs-popover-left{margin-right:.5rem}.bs-popover-auto[x-placement^=left]>.arrow,.bs-popover-left>.arrow{right:calc(-.5rem - 1px);width:.5rem;height:1rem;margin:.3rem 0}.bs-popover-auto[x-placement^=left]>.arrow::before,.bs-popover-left>.arrow::before{right:0;border-width:.5rem 0 .5rem .5rem;border-left-color:rgba(0,0,0,.25)}.bs-popover-auto[x-placement^=left]>.arrow::after,.bs-popover-left>.arrow::after{right:1px;border-width:.5rem 0 .5rem .5rem;border-left-color:#303030}.popover-header{padding:.5rem .75rem;margin-bottom:0;font-size:.9375rem;background-color:#444;border-bottom:1px solid #373737;border-top-left-radius:calc(.3rem - 1px);border-top-right-radius:calc(.3rem - 1px)}.popover-header:empty{display:none}.popover-body{padding:.5rem .75rem;color:#fff}.carousel{position:relative}.carousel.pointer-event{-ms-touch-action:pan-y;touch-action:pan-y}.carousel-inner{position:relative;width:100%;overflow:hidden}.carousel-inner::after{display:block;clear:both;content:""}.carousel-item{position:relative;display:none;float:left;width:100%;margin-right:-100%;-webkit-backface-visibility:hidden;backface-visibility:hidden;transition:-webkit-transform .6s ease-in-out;transition:transform .6s ease-in-out;transition:transform .6s ease-in-out,-webkit-transform .6s ease-in-out}@media (prefers-reduced-motion:reduce){.carousel-item{transition:none}}.carousel-item-next,.carousel-item-prev,.carousel-item.active{display:block}.active.carousel-item-right,.carousel-item-next:not(.carousel-item-left){-webkit-transform:translateX(100%);transform:translateX(100%)}.active.carousel-item-left,.carousel-item-prev:not(.carousel-item-right){-webkit-transform:translateX(-100%);transform:translateX(-100%)}.carousel-fade .carousel-item{opacity:0;transition-property:opacity;-webkit-transform:none;transform:none}.carousel-fade .carousel-item-next.carousel-item-left,.carousel-fade .carousel-item-prev.carousel-item-right,.carousel-fade .carousel-item.active{z-index:1;opacity:1}.carousel-fade .active.carousel-item-left,.carousel-fade .active.carousel-item-right{z-index:0;opacity:0;transition:opacity 0s .6s}@media (prefers-reduced-motion:reduce){.carousel-fade .active.carousel-item-left,.carousel-fade .active.carousel-item-right{transition:none}}.carousel-control-next,.carousel-control-prev{position:absolute;top:0;bottom:0;z-index:1;display:-ms-flexbox;display:flex;-ms-flex-align:center;align-items:center;-ms-flex-pack:center;justify-content:center;width:15%;color:#fff;text-align:center;opacity:.5;transition:opacity .15s ease}@media (prefers-reduced-motion:reduce){.carousel-control-next,.carousel-control-prev{transition:none}}.carousel-control-next:focus,.carousel-control-next:hover,.carousel-control-prev:focus,.carousel-control-prev:hover{color:#fff;text-decoration:none;outline:0;opacity:.9}.carousel-control-prev{left:0}.carousel-control-next{right:0}.carousel-control-next-icon,.carousel-control-prev-icon{display:inline-block;width:20px;height:20px;background:50%/100% 100% no-repeat}.carousel-control-prev-icon{background-image:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' fill='%23fff' width='8' height='8' viewBox='0 0 8 8'%3e%3cpath d='M5.25 0l-4 4 4 4 1.5-1.5L4.25 4l2.5-2.5L5.25 0z'/%3e%3c/svg%3e")}.carousel-control-next-icon{background-image:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' fill='%23fff' width='8' height='8' viewBox='0 0 8 8'%3e%3cpath d='M2.75 0l-1.5 1.5L3.75 4l-2.5 2.5L2.75 8l4-4-4-4z'/%3e%3c/svg%3e")}.carousel-indicators{position:absolute;right:0;bottom:0;left:0;z-index:15;display:-ms-flexbox;display:flex;-ms-flex-pack:center;justify-content:center;padding-left:0;margin-right:15%;margin-left:15%;list-style:none}.carousel-indicators li{box-sizing:content-box;-ms-flex:0 1 auto;flex:0 1 auto;width:30px;height:3px;margin-right:3px;margin-left:3px;text-indent:-999px;cursor:pointer;background-color:#fff;background-clip:padding-box;border-top:10px solid transparent;border-bottom:10px solid transparent;opacity:.5;transition:opacity .6s ease}@media (prefers-reduced-motion:reduce){.carousel-indicators li{transition:none}}.carousel-indicators .active{opacity:1}.carousel-caption{position:absolute;right:15%;bottom:20px;left:15%;z-index:10;padding-top:20px;padding-bottom:20px;color:#fff;text-align:center}@-webkit-keyframes spinner-border{to{-webkit-transform:rotate(360deg);transform:rotate(360deg)}}@keyframes spinner-border{to{-webkit-transform:rotate(360deg);transform:rotate(360deg)}}.spinner-border{display:inline-block;width:2rem;height:2rem;vertical-align:text-bottom;border:.25em solid currentColor;border-right-color:transparent;border-radius:50%;-webkit-animation:.75s linear infinite spinner-border;animation:.75s linear infinite spinner-border}.spinner-border-sm{width:1rem;height:1rem;border-width:.2em}@-webkit-keyframes spinner-grow{0%{-webkit-transform:scale(0);transform:scale(0)}50%{opacity:1;-webkit-transform:none;transform:none}}@keyframes spinner-grow{0%{-webkit-transform:scale(0);transform:scale(0)}50%{opacity:1;-webkit-transform:none;transform:none}}.spinner-grow{display:inline-block;width:2rem;height:2rem;vertical-align:text-bottom;background-color:currentColor;border-radius:50%;opacity:0;-webkit-animation:.75s linear infinite spinner-grow;animation:.75s linear infinite spinner-grow}.spinner-grow-sm{width:1rem;height:1rem}@media (prefers-reduced-motion:reduce){.spinner-border,.spinner-grow{-webkit-animation-duration:1.5s;animation-duration:1.5s}}.align-baseline{vertical-align:baseline!important}.align-top{vertical-align:top!important}.align-middle{vertical-align:middle!important}.align-bottom{vertical-align:bottom!important}.align-text-bottom{vertical-align:text-bottom!important}.align-text-top{vertical-align:text-top!important}.bg-primary{background-color:#375a7f!important}a.bg-primary:focus,a.bg-primary:hover,button.bg-primary:focus,button.bg-primary:hover{background-color:#28415b!important}.bg-secondary{background-color:#444!important}a.bg-secondary:focus,a.bg-secondary:hover,button.bg-secondary:focus,button.bg-secondary:hover{background-color:#2b2b2b!important}.bg-success{background-color:#00bc8c!important}a.bg-success:focus,a.bg-success:hover,button.bg-success:focus,button.bg-success:hover{background-color:#008966!important}.bg-info{background-color:#3498db!important}a.bg-info:focus,a.bg-info:hover,button.bg-info:focus,button.bg-info:hover{background-color:#217dbb!important}.bg-warning{background-color:#f39c12!important}a.bg-warning:focus,a.bg-warning:hover,button.bg-warning:focus,button.bg-warning:hover{background-color:#c87f0a!important}.bg-danger{background-color:#e74c3c!important}a.bg-danger:focus,a.bg-danger:hover,button.bg-danger:focus,button.bg-danger:hover{background-color:#d62c1a!important}.bg-light{background-color:#adb5bd!important}a.bg-light:focus,a.bg-light:hover,button.bg-light:focus,button.bg-light:hover{background-color:#919ca6!important}.bg-dark{background-color:#303030!important}a.bg-dark:focus,a.bg-dark:hover,button.bg-dark:focus,button.bg-dark:hover{background-color:#171717!important}.bg-white{background-color:#fff!important}.bg-transparent{background-color:transparent!important}.border{border:1px solid #dee2e6!important}.border-top{border-top:1px solid #dee2e6!important}.border-right{border-right:1px solid #dee2e6!important}.border-bottom{border-bottom:1px solid #dee2e6!important}.border-left{border-left:1px solid #dee2e6!important}.border-0{border:0!important}.border-top-0{border-top:0!important}.border-right-0{border-right:0!important}.border-bottom-0{border-bottom:0!important}.border-left-0{border-left:0!important}.border-primary{border-color:#375a7f!important}.border-secondary{border-color:#444!important}.border-success{border-color:#00bc8c!important}.border-info{border-color:#3498db!important}.border-warning{border-color:#f39c12!important}.border-danger{border-color:#e74c3c!important}.border-light{border-color:#adb5bd!important}.border-dark{border-color:#303030!important}.border-white{border-color:#fff!important}.rounded-sm{border-radius:.2rem!important}.rounded{border-radius:.25rem!important}.rounded-top{border-top-left-radius:.25rem!important;border-top-right-radius:.25rem!important}.rounded-right{border-top-right-radius:.25rem!important;border-bottom-right-radius:.25rem!important}.rounded-bottom{border-bottom-right-radius:.25rem!important;border-bottom-left-radius:.25rem!important}.rounded-left{border-top-left-radius:.25rem!important;border-bottom-left-radius:.25rem!important}.rounded-lg{border-radius:.3rem!important}.rounded-circle{border-radius:50%!important}.rounded-pill{border-radius:50rem!important}.rounded-0{border-radius:0!important}.clearfix::after{display:block;clear:both;content:""}.d-none{display:none!important}.d-inline{display:inline!important}.d-inline-block{display:inline-block!important}.d-block{display:block!important}.d-table{display:table!important}.d-table-row{display:table-row!important}.d-table-cell{display:table-cell!important}.d-flex{display:-ms-flexbox!important;display:flex!important}.d-inline-flex{display:-ms-inline-flexbox!important;display:inline-flex!important}@media (min-width:576px){.d-sm-none{display:none!important}.d-sm-inline{display:inline!important}.d-sm-inline-block{display:inline-block!important}.d-sm-block{display:block!important}.d-sm-table{display:table!important}.d-sm-table-row{display:table-row!important}.d-sm-table-cell{display:table-cell!important}.d-sm-flex{display:-ms-flexbox!important;display:flex!important}.d-sm-inline-flex{display:-ms-inline-flexbox!important;display:inline-flex!important}}@media (min-width:768px){.d-md-none{display:none!important}.d-md-inline{display:inline!important}.d-md-inline-block{display:inline-block!important}.d-md-block{display:block!important}.d-md-table{display:table!important}.d-md-table-row{display:table-row!important}.d-md-table-cell{display:table-cell!important}.d-md-flex{display:-ms-flexbox!important;display:flex!important}.d-md-inline-flex{display:-ms-inline-flexbox!important;display:inline-flex!important}}@media (min-width:992px){.d-lg-none{display:none!important}.d-lg-inline{display:inline!important}.d-lg-inline-block{display:inline-block!important}.d-lg-block{display:block!important}.d-lg-table{display:table!important}.d-lg-table-row{display:table-row!important}.d-lg-table-cell{display:table-cell!important}.d-lg-flex{display:-ms-flexbox!important;display:flex!important}.d-lg-inline-flex{display:-ms-inline-flexbox!important;display:inline-flex!important}}@media (min-width:1200px){.d-xl-none{display:none!important}.d-xl-inline{display:inline!important}.d-xl-inline-block{display:inline-block!important}.d-xl-block{display:block!important}.d-xl-table{display:table!important}.d-xl-table-row{display:table-row!important}.d-xl-table-cell{display:table-cell!important}.d-xl-flex{display:-ms-flexbox!important;display:flex!important}.d-xl-inline-flex{display:-ms-inline-flexbox!important;display:inline-flex!important}}@media print{.d-print-none{display:none!important}.d-print-inline{display:inline!important}.d-print-inline-block{display:inline-block!important}.d-print-block{display:block!important}.d-print-table{display:table!important}.d-print-table-row{display:table-row!important}.d-print-table-cell{display:table-cell!important}.d-print-flex{display:-ms-flexbox!important;display:flex!important}.d-print-inline-flex{display:-ms-inline-flexbox!important;display:inline-flex!important}}.embed-responsive{position:relative;display:block;width:100%;padding:0;overflow:hidden}.embed-responsive::before{display:block;content:""}.embed-responsive .embed-responsive-item,.embed-responsive embed,.embed-responsive iframe,.embed-responsive object,.embed-responsive video{position:absolute;top:0;bottom:0;left:0;width:100%;height:100%;border:0}.embed-responsive-21by9::before{padding-top:42.857143%}.embed-responsive-16by9::before{padding-top:56.25%}.embed-responsive-4by3::before{padding-top:75%}.embed-responsive-1by1::before{padding-top:100%}.flex-row{-ms-flex-direction:row!important;flex-direction:row!important}.flex-column{-ms-flex-direction:column!important;flex-direction:column!important}.flex-row-reverse{-ms-flex-direction:row-reverse!important;flex-direction:row-reverse!important}.flex-column-reverse{-ms-flex-direction:column-reverse!important;flex-direction:column-reverse!important}.flex-wrap{-ms-flex-wrap:wrap!important;flex-wrap:wrap!important}.flex-nowrap{-ms-flex-wrap:nowrap!important;flex-wrap:nowrap!important}.flex-wrap-reverse{-ms-flex-wrap:wrap-reverse!important;flex-wrap:wrap-reverse!important}.flex-fill{-ms-flex:1 1 auto!important;flex:1 1 auto!important}.flex-grow-0{-ms-flex-positive:0!important;flex-grow:0!important}.flex-grow-1{-ms-flex-positive:1!important;flex-grow:1!important}.flex-shrink-0{-ms-flex-negative:0!important;flex-shrink:0!important}.flex-shrink-1{-ms-flex-negative:1!important;flex-shrink:1!important}.justify-content-start{-ms-flex-pack:start!important;justify-content:flex-start!important}.justify-content-end{-ms-flex-pack:end!important;justify-content:flex-end!important}.justify-content-center{-ms-flex-pack:center!important;justify-content:center!important}.justify-content-between{-ms-flex-pack:justify!important;justify-content:space-between!important}.justify-content-around{-ms-flex-pack:distribute!important;justify-content:space-around!important}.align-items-start{-ms-flex-align:start!important;align-items:flex-start!important}.align-items-end{-ms-flex-align:end!important;align-items:flex-end!important}.align-items-center{-ms-flex-align:center!important;align-items:center!important}.align-items-baseline{-ms-flex-align:baseline!important;align-items:baseline!important}.align-items-stretch{-ms-flex-align:stretch!important;align-items:stretch!important}.align-content-start{-ms-flex-line-pack:start!important;align-content:flex-start!important}.align-content-end{-ms-flex-line-pack:end!important;align-content:flex-end!important}.align-content-center{-ms-flex-line-pack:center!important;align-content:center!important}.align-content-between{-ms-flex-line-pack:justify!important;align-content:space-between!important}.align-content-around{-ms-flex-line-pack:distribute!important;align-content:space-around!important}.align-content-stretch{-ms-flex-line-pack:stretch!important;align-content:stretch!important}.align-self-auto{-ms-flex-item-align:auto!important;align-self:auto!important}.align-self-start{-ms-flex-item-align:start!important;align-self:flex-start!important}.align-self-end{-ms-flex-item-align:end!important;align-self:flex-end!important}.align-self-center{-ms-flex-item-align:center!important;align-self:center!important}.align-self-baseline{-ms-flex-item-align:baseline!important;align-self:baseline!important}.align-self-stretch{-ms-flex-item-align:stretch!important;align-self:stretch!important}@media (min-width:576px){.flex-sm-row{-ms-flex-direction:row!important;flex-direction:row!important}.flex-sm-column{-ms-flex-direction:column!important;flex-direction:column!important}.flex-sm-row-reverse{-ms-flex-direction:row-reverse!important;flex-direction:row-reverse!important}.flex-sm-column-reverse{-ms-flex-direction:column-reverse!important;flex-direction:column-reverse!important}.flex-sm-wrap{-ms-flex-wrap:wrap!important;flex-wrap:wrap!important}.flex-sm-nowrap{-ms-flex-wrap:nowrap!important;flex-wrap:nowrap!important}.flex-sm-wrap-reverse{-ms-flex-wrap:wrap-reverse!important;flex-wrap:wrap-reverse!important}.flex-sm-fill{-ms-flex:1 1 auto!important;flex:1 1 auto!important}.flex-sm-grow-0{-ms-flex-positive:0!important;flex-grow:0!important}.flex-sm-grow-1{-ms-flex-positive:1!important;flex-grow:1!important}.flex-sm-shrink-0{-ms-flex-negative:0!important;flex-shrink:0!important}.flex-sm-shrink-1{-ms-flex-negative:1!important;flex-shrink:1!important}.justify-content-sm-start{-ms-flex-pack:start!important;justify-content:flex-start!important}.justify-content-sm-end{-ms-flex-pack:end!important;justify-content:flex-end!important}.justify-content-sm-center{-ms-flex-pack:center!important;justify-content:center!important}.justify-content-sm-between{-ms-flex-pack:justify!important;justify-content:space-between!important}.justify-content-sm-around{-ms-flex-pack:distribute!important;justify-content:space-around!important}.align-items-sm-start{-ms-flex-align:start!important;align-items:flex-start!important}.align-items-sm-end{-ms-flex-align:end!important;align-items:flex-end!important}.align-items-sm-center{-ms-flex-align:center!important;align-items:center!important}.align-items-sm-baseline{-ms-flex-align:baseline!important;align-items:baseline!important}.align-items-sm-stretch{-ms-flex-align:stretch!important;align-items:stretch!important}.align-content-sm-start{-ms-flex-line-pack:start!important;align-content:flex-start!important}.align-content-sm-end{-ms-flex-line-pack:end!important;align-content:flex-end!important}.align-content-sm-center{-ms-flex-line-pack:center!important;align-content:center!important}.align-content-sm-between{-ms-flex-line-pack:justify!important;align-content:space-between!important}.align-content-sm-around{-ms-flex-line-pack:distribute!important;align-content:space-around!important}.align-content-sm-stretch{-ms-flex-line-pack:stretch!important;align-content:stretch!important}.align-self-sm-auto{-ms-flex-item-align:auto!important;align-self:auto!important}.align-self-sm-start{-ms-flex-item-align:start!important;align-self:flex-start!important}.align-self-sm-end{-ms-flex-item-align:end!important;align-self:flex-end!important}.align-self-sm-center{-ms-flex-item-align:center!important;align-self:center!important}.align-self-sm-baseline{-ms-flex-item-align:baseline!important;align-self:baseline!important}.align-self-sm-stretch{-ms-flex-item-align:stretch!important;align-self:stretch!important}}@media (min-width:768px){.flex-md-row{-ms-flex-direction:row!important;flex-direction:row!important}.flex-md-column{-ms-flex-direction:column!important;flex-direction:column!important}.flex-md-row-reverse{-ms-flex-direction:row-reverse!important;flex-direction:row-reverse!important}.flex-md-column-reverse{-ms-flex-direction:column-reverse!important;flex-direction:column-reverse!important}.flex-md-wrap{-ms-flex-wrap:wrap!important;flex-wrap:wrap!important}.flex-md-nowrap{-ms-flex-wrap:nowrap!important;flex-wrap:nowrap!important}.flex-md-wrap-reverse{-ms-flex-wrap:wrap-reverse!important;flex-wrap:wrap-reverse!important}.flex-md-fill{-ms-flex:1 1 auto!important;flex:1 1 auto!important}.flex-md-grow-0{-ms-flex-positive:0!important;flex-grow:0!important}.flex-md-grow-1{-ms-flex-positive:1!important;flex-grow:1!important}.flex-md-shrink-0{-ms-flex-negative:0!important;flex-shrink:0!important}.flex-md-shrink-1{-ms-flex-negative:1!important;flex-shrink:1!important}.justify-content-md-start{-ms-flex-pack:start!important;justify-content:flex-start!important}.justify-content-md-end{-ms-flex-pack:end!important;justify-content:flex-end!important}.justify-content-md-center{-ms-flex-pack:center!important;justify-content:center!important}.justify-content-md-between{-ms-flex-pack:justify!important;justify-content:space-between!important}.justify-content-md-around{-ms-flex-pack:distribute!important;justify-content:space-around!important}.align-items-md-start{-ms-flex-align:start!important;align-items:flex-start!important}.align-items-md-end{-ms-flex-align:end!important;align-items:flex-end!important}.align-items-md-center{-ms-flex-align:center!important;align-items:center!important}.align-items-md-baseline{-ms-flex-align:baseline!important;align-items:baseline!important}.align-items-md-stretch{-ms-flex-align:stretch!important;align-items:stretch!important}.align-content-md-start{-ms-flex-line-pack:start!important;align-content:flex-start!important}.align-content-md-end{-ms-flex-line-pack:end!important;align-content:flex-end!important}.align-content-md-center{-ms-flex-line-pack:center!important;align-content:center!important}.align-content-md-between{-ms-flex-line-pack:justify!important;align-content:space-between!important}.align-content-md-around{-ms-flex-line-pack:distribute!important;align-content:space-around!important}.align-content-md-stretch{-ms-flex-line-pack:stretch!important;align-content:stretch!important}.align-self-md-auto{-ms-flex-item-align:auto!important;align-self:auto!important}.align-self-md-start{-ms-flex-item-align:start!important;align-self:flex-start!important}.align-self-md-end{-ms-flex-item-align:end!important;align-self:flex-end!important}.align-self-md-center{-ms-flex-item-align:center!important;align-self:center!important}.align-self-md-baseline{-ms-flex-item-align:baseline!important;align-self:baseline!important}.align-self-md-stretch{-ms-flex-item-align:stretch!important;align-self:stretch!important}}@media (min-width:992px){.flex-lg-row{-ms-flex-direction:row!important;flex-direction:row!important}.flex-lg-column{-ms-flex-direction:column!important;flex-direction:column!important}.flex-lg-row-reverse{-ms-flex-direction:row-reverse!important;flex-direction:row-reverse!important}.flex-lg-column-reverse{-ms-flex-direction:column-reverse!important;flex-direction:column-reverse!important}.flex-lg-wrap{-ms-flex-wrap:wrap!important;flex-wrap:wrap!important}.flex-lg-nowrap{-ms-flex-wrap:nowrap!important;flex-wrap:nowrap!important}.flex-lg-wrap-reverse{-ms-flex-wrap:wrap-reverse!important;flex-wrap:wrap-reverse!important}.flex-lg-fill{-ms-flex:1 1 auto!important;flex:1 1 auto!important}.flex-lg-grow-0{-ms-flex-positive:0!important;flex-grow:0!important}.flex-lg-grow-1{-ms-flex-positive:1!important;flex-grow:1!important}.flex-lg-shrink-0{-ms-flex-negative:0!important;flex-shrink:0!important}.flex-lg-shrink-1{-ms-flex-negative:1!important;flex-shrink:1!important}.justify-content-lg-start{-ms-flex-pack:start!important;justify-content:flex-start!important}.justify-content-lg-end{-ms-flex-pack:end!important;justify-content:flex-end!important}.justify-content-lg-center{-ms-flex-pack:center!important;justify-content:center!important}.justify-content-lg-between{-ms-flex-pack:justify!important;justify-content:space-between!important}.justify-content-lg-around{-ms-flex-pack:distribute!important;justify-content:space-around!important}.align-items-lg-start{-ms-flex-align:start!important;align-items:flex-start!important}.align-items-lg-end{-ms-flex-align:end!important;align-items:flex-end!important}.align-items-lg-center{-ms-flex-align:center!important;align-items:center!important}.align-items-lg-baseline{-ms-flex-align:baseline!important;align-items:baseline!important}.align-items-lg-stretch{-ms-flex-align:stretch!important;align-items:stretch!important}.align-content-lg-start{-ms-flex-line-pack:start!important;align-content:flex-start!important}.align-content-lg-end{-ms-flex-line-pack:end!important;align-content:flex-end!important}.align-content-lg-center{-ms-flex-line-pack:center!important;align-content:center!important}.align-content-lg-between{-ms-flex-line-pack:justify!important;align-content:space-between!important}.align-content-lg-around{-ms-flex-line-pack:distribute!important;align-content:space-around!important}.align-content-lg-stretch{-ms-flex-line-pack:stretch!important;align-content:stretch!important}.align-self-lg-auto{-ms-flex-item-align:auto!important;align-self:auto!important}.align-self-lg-start{-ms-flex-item-align:start!important;align-self:flex-start!important}.align-self-lg-end{-ms-flex-item-align:end!important;align-self:flex-end!important}.align-self-lg-center{-ms-flex-item-align:center!important;align-self:center!important}.align-self-lg-baseline{-ms-flex-item-align:baseline!important;align-self:baseline!important}.align-self-lg-stretch{-ms-flex-item-align:stretch!important;align-self:stretch!important}}@media (min-width:1200px){.flex-xl-row{-ms-flex-direction:row!important;flex-direction:row!important}.flex-xl-column{-ms-flex-direction:column!important;flex-direction:column!important}.flex-xl-row-reverse{-ms-flex-direction:row-reverse!important;flex-direction:row-reverse!important}.flex-xl-column-reverse{-ms-flex-direction:column-reverse!important;flex-direction:column-reverse!important}.flex-xl-wrap{-ms-flex-wrap:wrap!important;flex-wrap:wrap!important}.flex-xl-nowrap{-ms-flex-wrap:nowrap!important;flex-wrap:nowrap!important}.flex-xl-wrap-reverse{-ms-flex-wrap:wrap-reverse!important;flex-wrap:wrap-reverse!important}.flex-xl-fill{-ms-flex:1 1 auto!important;flex:1 1 auto!important}.flex-xl-grow-0{-ms-flex-positive:0!important;flex-grow:0!important}.flex-xl-grow-1{-ms-flex-positive:1!important;flex-grow:1!important}.flex-xl-shrink-0{-ms-flex-negative:0!important;flex-shrink:0!important}.flex-xl-shrink-1{-ms-flex-negative:1!important;flex-shrink:1!important}.justify-content-xl-start{-ms-flex-pack:start!important;justify-content:flex-start!important}.justify-content-xl-end{-ms-flex-pack:end!important;justify-content:flex-end!important}.justify-content-xl-center{-ms-flex-pack:center!important;justify-content:center!important}.justify-content-xl-between{-ms-flex-pack:justify!important;justify-content:space-between!important}.justify-content-xl-around{-ms-flex-pack:distribute!important;justify-content:space-around!important}.align-items-xl-start{-ms-flex-align:start!important;align-items:flex-start!important}.align-items-xl-end{-ms-flex-align:end!important;align-items:flex-end!important}.align-items-xl-center{-ms-flex-align:center!important;align-items:center!important}.align-items-xl-baseline{-ms-flex-align:baseline!important;align-items:baseline!important}.align-items-xl-stretch{-ms-flex-align:stretch!important;align-items:stretch!important}.align-content-xl-start{-ms-flex-line-pack:start!important;align-content:flex-start!important}.align-content-xl-end{-ms-flex-line-pack:end!important;align-content:flex-end!important}.align-content-xl-center{-ms-flex-line-pack:center!important;align-content:center!important}.align-content-xl-between{-ms-flex-line-pack:justify!important;align-content:space-between!important}.align-content-xl-around{-ms-flex-line-pack:distribute!important;align-content:space-around!important}.align-content-xl-stretch{-ms-flex-line-pack:stretch!important;align-content:stretch!important}.align-self-xl-auto{-ms-flex-item-align:auto!important;align-self:auto!important}.align-self-xl-start{-ms-flex-item-align:start!important;align-self:flex-start!important}.align-self-xl-end{-ms-flex-item-align:end!important;align-self:flex-end!important}.align-self-xl-center{-ms-flex-item-align:center!important;align-self:center!important}.align-self-xl-baseline{-ms-flex-item-align:baseline!important;align-self:baseline!important}.align-self-xl-stretch{-ms-flex-item-align:stretch!important;align-self:stretch!important}}.float-left{float:left!important}.float-right{float:right!important}.float-none{float:none!important}@media (min-width:576px){.float-sm-left{float:left!important}.float-sm-right{float:right!important}.float-sm-none{float:none!important}}@media (min-width:768px){.float-md-left{float:left!important}.float-md-right{float:right!important}.float-md-none{float:none!important}}@media (min-width:992px){.float-lg-left{float:left!important}.float-lg-right{float:right!important}.float-lg-none{float:none!important}}@media (min-width:1200px){.float-xl-left{float:left!important}.float-xl-right{float:right!important}.float-xl-none{float:none!important}}.user-select-all{-webkit-user-select:all!important;-moz-user-select:all!important;user-select:all!important}.user-select-auto{-webkit-user-select:auto!important;-moz-user-select:auto!important;-ms-user-select:auto!important;user-select:auto!important}.user-select-none{-webkit-user-select:none!important;-moz-user-select:none!important;-ms-user-select:none!important;user-select:none!important}.overflow-auto{overflow:auto!important}.overflow-hidden{overflow:hidden!important}.position-static{position:static!important}.position-relative{position:relative!important}.position-absolute{position:absolute!important}.position-fixed{position:fixed!important}.position-sticky{position:-webkit-sticky!important;position:sticky!important}.fixed-top{position:fixed;top:0;right:0;left:0;z-index:1030}.fixed-bottom{position:fixed;right:0;bottom:0;left:0;z-index:1030}@supports ((position:-webkit-sticky) or (position:sticky)){.sticky-top{position:-webkit-sticky;position:sticky;top:0;z-index:1020}}.sr-only{position:absolute;width:1px;height:1px;padding:0;margin:-1px;overflow:hidden;clip:rect(0,0,0,0);white-space:nowrap;border:0}.sr-only-focusable:active,.sr-only-focusable:focus{position:static;width:auto;height:auto;overflow:visible;clip:auto;white-space:normal}.shadow-sm{box-shadow:0 .125rem .25rem rgba(0,0,0,.075)!important}.shadow{box-shadow:0 .5rem 1rem rgba(0,0,0,.15)!important}.shadow-lg{box-shadow:0 1rem 3rem rgba(0,0,0,.175)!important}.shadow-none{box-shadow:none!important}.w-25{width:25%!important}.w-50{width:50%!important}.w-75{width:75%!important}.w-100{width:100%!important}.w-auto{width:auto!important}.h-25{height:25%!important}.h-50{height:50%!important}.h-75{height:75%!important}.h-100{height:100%!important}.h-auto{height:auto!important}.mw-100{max-width:100%!important}.mh-100{max-height:100%!important}.min-vw-100{min-width:100vw!important}.min-vh-100{min-height:100vh!important}.vw-100{width:100vw!important}.vh-100{height:100vh!important}.m-0{margin:0!important}.mt-0,.my-0{margin-top:0!important}.mr-0,.mx-0{margin-right:0!important}.mb-0,.my-0{margin-bottom:0!important}.ml-0,.mx-0{margin-left:0!important}.m-1{margin:.25rem!important}.mt-1,.my-1{margin-top:.25rem!important}.mr-1,.mx-1{margin-right:.25rem!important}.mb-1,.my-1{margin-bottom:.25rem!important}.ml-1,.mx-1{margin-left:.25rem!important}.m-2{margin:.5rem!important}.mt-2,.my-2{margin-top:.5rem!important}.mr-2,.mx-2{margin-right:.5rem!important}.mb-2,.my-2{margin-bottom:.5rem!important}.ml-2,.mx-2{margin-left:.5rem!important}.m-3{margin:1rem!important}.mt-3,.my-3{margin-top:1rem!important}.mr-3,.mx-3{margin-right:1rem!important}.mb-3,.my-3{margin-bottom:1rem!important}.ml-3,.mx-3{margin-left:1rem!important}.m-4{margin:1.5rem!important}.mt-4,.my-4{margin-top:1.5rem!important}.mr-4,.mx-4{margin-right:1.5rem!important}.mb-4,.my-4{margin-bottom:1.5rem!important}.ml-4,.mx-4{margin-left:1.5rem!important}.m-5{margin:3rem!important}.mt-5,.my-5{margin-top:3rem!important}.mr-5,.mx-5{margin-right:3rem!important}.mb-5,.my-5{margin-bottom:3rem!important}.ml-5,.mx-5{margin-left:3rem!important}.p-0{padding:0!important}.pt-0,.py-0{padding-top:0!important}.pr-0,.px-0{padding-right:0!important}.pb-0,.py-0{padding-bottom:0!important}.pl-0,.px-0{padding-left:0!important}.p-1{padding:.25rem!important}.pt-1,.py-1{padding-top:.25rem!important}.pr-1,.px-1{padding-right:.25rem!important}.pb-1,.py-1{padding-bottom:.25rem!important}.pl-1,.px-1{padding-left:.25rem!important}.p-2{padding:.5rem!important}.pt-2,.py-2{padding-top:.5rem!important}.pr-2,.px-2{padding-right:.5rem!important}.pb-2,.py-2{padding-bottom:.5rem!important}.pl-2,.px-2{padding-left:.5rem!important}.p-3{padding:1rem!important}.pt-3,.py-3{padding-top:1rem!important}.pr-3,.px-3{padding-right:1rem!important}.pb-3,.py-3{padding-bottom:1rem!important}.pl-3,.px-3{padding-left:1rem!important}.p-4{padding:1.5rem!important}.pt-4,.py-4{padding-top:1.5rem!important}.pr-4,.px-4{padding-right:1.5rem!important}.pb-4,.py-4{padding-bottom:1.5rem!important}.pl-4,.px-4{padding-left:1.5rem!important}.p-5{padding:3rem!important}.pt-5,.py-5{padding-top:3rem!important}.pr-5,.px-5{padding-right:3rem!important}.pb-5,.py-5{padding-bottom:3rem!important}.pl-5,.px-5{padding-left:3rem!important}.m-n1{margin:-.25rem!important}.mt-n1,.my-n1{margin-top:-.25rem!important}.mr-n1,.mx-n1{margin-right:-.25rem!important}.mb-n1,.my-n1{margin-bottom:-.25rem!important}.ml-n1,.mx-n1{margin-left:-.25rem!important}.m-n2{margin:-.5rem!important}.mt-n2,.my-n2{margin-top:-.5rem!important}.mr-n2,.mx-n2{margin-right:-.5rem!important}.mb-n2,.my-n2{margin-bottom:-.5rem!important}.ml-n2,.mx-n2{margin-left:-.5rem!important}.m-n3{margin:-1rem!important}.mt-n3,.my-n3{margin-top:-1rem!important}.mr-n3,.mx-n3{margin-right:-1rem!important}.mb-n3,.my-n3{margin-bottom:-1rem!important}.ml-n3,.mx-n3{margin-left:-1rem!important}.m-n4{margin:-1.5rem!important}.mt-n4,.my-n4{margin-top:-1.5rem!important}.mr-n4,.mx-n4{margin-right:-1.5rem!important}.mb-n4,.my-n4{margin-bottom:-1.5rem!important}.ml-n4,.mx-n4{margin-left:-1.5rem!important}.m-n5{margin:-3rem!important}.mt-n5,.my-n5{margin-top:-3rem!important}.mr-n5,.mx-n5{margin-right:-3rem!important}.mb-n5,.my-n5{margin-bottom:-3rem!important}.ml-n5,.mx-n5{margin-left:-3rem!important}.m-auto{margin:auto!important}.mt-auto,.my-auto{margin-top:auto!important}.mr-auto,.mx-auto{margin-right:auto!important}.mb-auto,.my-auto{margin-bottom:auto!important}.ml-auto,.mx-auto{margin-left:auto!important}@media (min-width:576px){.m-sm-0{margin:0!important}.mt-sm-0,.my-sm-0{margin-top:0!important}.mr-sm-0,.mx-sm-0{margin-right:0!important}.mb-sm-0,.my-sm-0{margin-bottom:0!important}.ml-sm-0,.mx-sm-0{margin-left:0!important}.m-sm-1{margin:.25rem!important}.mt-sm-1,.my-sm-1{margin-top:.25rem!important}.mr-sm-1,.mx-sm-1{margin-right:.25rem!important}.mb-sm-1,.my-sm-1{margin-bottom:.25rem!important}.ml-sm-1,.mx-sm-1{margin-left:.25rem!important}.m-sm-2{margin:.5rem!important}.mt-sm-2,.my-sm-2{margin-top:.5rem!important}.mr-sm-2,.mx-sm-2{margin-right:.5rem!important}.mb-sm-2,.my-sm-2{margin-bottom:.5rem!important}.ml-sm-2,.mx-sm-2{margin-left:.5rem!important}.m-sm-3{margin:1rem!important}.mt-sm-3,.my-sm-3{margin-top:1rem!important}.mr-sm-3,.mx-sm-3{margin-right:1rem!important}.mb-sm-3,.my-sm-3{margin-bottom:1rem!important}.ml-sm-3,.mx-sm-3{margin-left:1rem!important}.m-sm-4{margin:1.5rem!important}.mt-sm-4,.my-sm-4{margin-top:1.5rem!important}.mr-sm-4,.mx-sm-4{margin-right:1.5rem!important}.mb-sm-4,.my-sm-4{margin-bottom:1.5rem!important}.ml-sm-4,.mx-sm-4{margin-left:1.5rem!important}.m-sm-5{margin:3rem!important}.mt-sm-5,.my-sm-5{margin-top:3rem!important}.mr-sm-5,.mx-sm-5{margin-right:3rem!important}.mb-sm-5,.my-sm-5{margin-bottom:3rem!important}.ml-sm-5,.mx-sm-5{margin-left:3rem!important}.p-sm-0{padding:0!important}.pt-sm-0,.py-sm-0{padding-top:0!important}.pr-sm-0,.px-sm-0{padding-right:0!important}.pb-sm-0,.py-sm-0{padding-bottom:0!important}.pl-sm-0,.px-sm-0{padding-left:0!important}.p-sm-1{padding:.25rem!important}.pt-sm-1,.py-sm-1{padding-top:.25rem!important}.pr-sm-1,.px-sm-1{padding-right:.25rem!important}.pb-sm-1,.py-sm-1{padding-bottom:.25rem!important}.pl-sm-1,.px-sm-1{padding-left:.25rem!important}.p-sm-2{padding:.5rem!important}.pt-sm-2,.py-sm-2{padding-top:.5rem!important}.pr-sm-2,.px-sm-2{padding-right:.5rem!important}.pb-sm-2,.py-sm-2{padding-bottom:.5rem!important}.pl-sm-2,.px-sm-2{padding-left:.5rem!important}.p-sm-3{padding:1rem!important}.pt-sm-3,.py-sm-3{padding-top:1rem!important}.pr-sm-3,.px-sm-3{padding-right:1rem!important}.pb-sm-3,.py-sm-3{padding-bottom:1rem!important}.pl-sm-3,.px-sm-3{padding-left:1rem!important}.p-sm-4{padding:1.5rem!important}.pt-sm-4,.py-sm-4{padding-top:1.5rem!important}.pr-sm-4,.px-sm-4{padding-right:1.5rem!important}.pb-sm-4,.py-sm-4{padding-bottom:1.5rem!important}.pl-sm-4,.px-sm-4{padding-left:1.5rem!important}.p-sm-5{padding:3rem!important}.pt-sm-5,.py-sm-5{padding-top:3rem!important}.pr-sm-5,.px-sm-5{padding-right:3rem!important}.pb-sm-5,.py-sm-5{padding-bottom:3rem!important}.pl-sm-5,.px-sm-5{padding-left:3rem!important}.m-sm-n1{margin:-.25rem!important}.mt-sm-n1,.my-sm-n1{margin-top:-.25rem!important}.mr-sm-n1,.mx-sm-n1{margin-right:-.25rem!important}.mb-sm-n1,.my-sm-n1{margin-bottom:-.25rem!important}.ml-sm-n1,.mx-sm-n1{margin-left:-.25rem!important}.m-sm-n2{margin:-.5rem!important}.mt-sm-n2,.my-sm-n2{margin-top:-.5rem!important}.mr-sm-n2,.mx-sm-n2{margin-right:-.5rem!important}.mb-sm-n2,.my-sm-n2{margin-bottom:-.5rem!important}.ml-sm-n2,.mx-sm-n2{margin-left:-.5rem!important}.m-sm-n3{margin:-1rem!important}.mt-sm-n3,.my-sm-n3{margin-top:-1rem!important}.mr-sm-n3,.mx-sm-n3{margin-right:-1rem!important}.mb-sm-n3,.my-sm-n3{margin-bottom:-1rem!important}.ml-sm-n3,.mx-sm-n3{margin-left:-1rem!important}.m-sm-n4{margin:-1.5rem!important}.mt-sm-n4,.my-sm-n4{margin-top:-1.5rem!important}.mr-sm-n4,.mx-sm-n4{margin-right:-1.5rem!important}.mb-sm-n4,.my-sm-n4{margin-bottom:-1.5rem!important}.ml-sm-n4,.mx-sm-n4{margin-left:-1.5rem!important}.m-sm-n5{margin:-3rem!important}.mt-sm-n5,.my-sm-n5{margin-top:-3rem!important}.mr-sm-n5,.mx-sm-n5{margin-right:-3rem!important}.mb-sm-n5,.my-sm-n5{margin-bottom:-3rem!important}.ml-sm-n5,.mx-sm-n5{margin-left:-3rem!important}.m-sm-auto{margin:auto!important}.mt-sm-auto,.my-sm-auto{margin-top:auto!important}.mr-sm-auto,.mx-sm-auto{margin-right:auto!important}.mb-sm-auto,.my-sm-auto{margin-bottom:auto!important}.ml-sm-auto,.mx-sm-auto{margin-left:auto!important}}@media (min-width:768px){.m-md-0{margin:0!important}.mt-md-0,.my-md-0{margin-top:0!important}.mr-md-0,.mx-md-0{margin-right:0!important}.mb-md-0,.my-md-0{margin-bottom:0!important}.ml-md-0,.mx-md-0{margin-left:0!important}.m-md-1{margin:.25rem!important}.mt-md-1,.my-md-1{margin-top:.25rem!important}.mr-md-1,.mx-md-1{margin-right:.25rem!important}.mb-md-1,.my-md-1{margin-bottom:.25rem!important}.ml-md-1,.mx-md-1{margin-left:.25rem!important}.m-md-2{margin:.5rem!important}.mt-md-2,.my-md-2{margin-top:.5rem!important}.mr-md-2,.mx-md-2{margin-right:.5rem!important}.mb-md-2,.my-md-2{margin-bottom:.5rem!important}.ml-md-2,.mx-md-2{margin-left:.5rem!important}.m-md-3{margin:1rem!important}.mt-md-3,.my-md-3{margin-top:1rem!important}.mr-md-3,.mx-md-3{margin-right:1rem!important}.mb-md-3,.my-md-3{margin-bottom:1rem!important}.ml-md-3,.mx-md-3{margin-left:1rem!important}.m-md-4{margin:1.5rem!important}.mt-md-4,.my-md-4{margin-top:1.5rem!important}.mr-md-4,.mx-md-4{margin-right:1.5rem!important}.mb-md-4,.my-md-4{margin-bottom:1.5rem!important}.ml-md-4,.mx-md-4{margin-left:1.5rem!important}.m-md-5{margin:3rem!important}.mt-md-5,.my-md-5{margin-top:3rem!important}.mr-md-5,.mx-md-5{margin-right:3rem!important}.mb-md-5,.my-md-5{margin-bottom:3rem!important}.ml-md-5,.mx-md-5{margin-left:3rem!important}.p-md-0{padding:0!important}.pt-md-0,.py-md-0{padding-top:0!important}.pr-md-0,.px-md-0{padding-right:0!important}.pb-md-0,.py-md-0{padding-bottom:0!important}.pl-md-0,.px-md-0{padding-left:0!important}.p-md-1{padding:.25rem!important}.pt-md-1,.py-md-1{padding-top:.25rem!important}.pr-md-1,.px-md-1{padding-right:.25rem!important}.pb-md-1,.py-md-1{padding-bottom:.25rem!important}.pl-md-1,.px-md-1{padding-left:.25rem!important}.p-md-2{padding:.5rem!important}.pt-md-2,.py-md-2{padding-top:.5rem!important}.pr-md-2,.px-md-2{padding-right:.5rem!important}.pb-md-2,.py-md-2{padding-bottom:.5rem!important}.pl-md-2,.px-md-2{padding-left:.5rem!important}.p-md-3{padding:1rem!important}.pt-md-3,.py-md-3{padding-top:1rem!important}.pr-md-3,.px-md-3{padding-right:1rem!important}.pb-md-3,.py-md-3{padding-bottom:1rem!important}.pl-md-3,.px-md-3{padding-left:1rem!important}.p-md-4{padding:1.5rem!important}.pt-md-4,.py-md-4{padding-top:1.5rem!important}.pr-md-4,.px-md-4{padding-right:1.5rem!important}.pb-md-4,.py-md-4{padding-bottom:1.5rem!important}.pl-md-4,.px-md-4{padding-left:1.5rem!important}.p-md-5{padding:3rem!important}.pt-md-5,.py-md-5{padding-top:3rem!important}.pr-md-5,.px-md-5{padding-right:3rem!important}.pb-md-5,.py-md-5{padding-bottom:3rem!important}.pl-md-5,.px-md-5{padding-left:3rem!important}.m-md-n1{margin:-.25rem!important}.mt-md-n1,.my-md-n1{margin-top:-.25rem!important}.mr-md-n1,.mx-md-n1{margin-right:-.25rem!important}.mb-md-n1,.my-md-n1{margin-bottom:-.25rem!important}.ml-md-n1,.mx-md-n1{margin-left:-.25rem!important}.m-md-n2{margin:-.5rem!important}.mt-md-n2,.my-md-n2{margin-top:-.5rem!important}.mr-md-n2,.mx-md-n2{margin-right:-.5rem!important}.mb-md-n2,.my-md-n2{margin-bottom:-.5rem!important}.ml-md-n2,.mx-md-n2{margin-left:-.5rem!important}.m-md-n3{margin:-1rem!important}.mt-md-n3,.my-md-n3{margin-top:-1rem!important}.mr-md-n3,.mx-md-n3{margin-right:-1rem!important}.mb-md-n3,.my-md-n3{margin-bottom:-1rem!important}.ml-md-n3,.mx-md-n3{margin-left:-1rem!important}.m-md-n4{margin:-1.5rem!important}.mt-md-n4,.my-md-n4{margin-top:-1.5rem!important}.mr-md-n4,.mx-md-n4{margin-right:-1.5rem!important}.mb-md-n4,.my-md-n4{margin-bottom:-1.5rem!important}.ml-md-n4,.mx-md-n4{margin-left:-1.5rem!important}.m-md-n5{margin:-3rem!important}.mt-md-n5,.my-md-n5{margin-top:-3rem!important}.mr-md-n5,.mx-md-n5{margin-right:-3rem!important}.mb-md-n5,.my-md-n5{margin-bottom:-3rem!important}.ml-md-n5,.mx-md-n5{margin-left:-3rem!important}.m-md-auto{margin:auto!important}.mt-md-auto,.my-md-auto{margin-top:auto!important}.mr-md-auto,.mx-md-auto{margin-right:auto!important}.mb-md-auto,.my-md-auto{margin-bottom:auto!important}.ml-md-auto,.mx-md-auto{margin-left:auto!important}}@media (min-width:992px){.m-lg-0{margin:0!important}.mt-lg-0,.my-lg-0{margin-top:0!important}.mr-lg-0,.mx-lg-0{margin-right:0!important}.mb-lg-0,.my-lg-0{margin-bottom:0!important}.ml-lg-0,.mx-lg-0{margin-left:0!important}.m-lg-1{margin:.25rem!important}.mt-lg-1,.my-lg-1{margin-top:.25rem!important}.mr-lg-1,.mx-lg-1{margin-right:.25rem!important}.mb-lg-1,.my-lg-1{margin-bottom:.25rem!important}.ml-lg-1,.mx-lg-1{margin-left:.25rem!important}.m-lg-2{margin:.5rem!important}.mt-lg-2,.my-lg-2{margin-top:.5rem!important}.mr-lg-2,.mx-lg-2{margin-right:.5rem!important}.mb-lg-2,.my-lg-2{margin-bottom:.5rem!important}.ml-lg-2,.mx-lg-2{margin-left:.5rem!important}.m-lg-3{margin:1rem!important}.mt-lg-3,.my-lg-3{margin-top:1rem!important}.mr-lg-3,.mx-lg-3{margin-right:1rem!important}.mb-lg-3,.my-lg-3{margin-bottom:1rem!important}.ml-lg-3,.mx-lg-3{margin-left:1rem!important}.m-lg-4{margin:1.5rem!important}.mt-lg-4,.my-lg-4{margin-top:1.5rem!important}.mr-lg-4,.mx-lg-4{margin-right:1.5rem!important}.mb-lg-4,.my-lg-4{margin-bottom:1.5rem!important}.ml-lg-4,.mx-lg-4{margin-left:1.5rem!important}.m-lg-5{margin:3rem!important}.mt-lg-5,.my-lg-5{margin-top:3rem!important}.mr-lg-5,.mx-lg-5{margin-right:3rem!important}.mb-lg-5,.my-lg-5{margin-bottom:3rem!important}.ml-lg-5,.mx-lg-5{margin-left:3rem!important}.p-lg-0{padding:0!important}.pt-lg-0,.py-lg-0{padding-top:0!important}.pr-lg-0,.px-lg-0{padding-right:0!important}.pb-lg-0,.py-lg-0{padding-bottom:0!important}.pl-lg-0,.px-lg-0{padding-left:0!important}.p-lg-1{padding:.25rem!important}.pt-lg-1,.py-lg-1{padding-top:.25rem!important}.pr-lg-1,.px-lg-1{padding-right:.25rem!important}.pb-lg-1,.py-lg-1{padding-bottom:.25rem!important}.pl-lg-1,.px-lg-1{padding-left:.25rem!important}.p-lg-2{padding:.5rem!important}.pt-lg-2,.py-lg-2{padding-top:.5rem!important}.pr-lg-2,.px-lg-2{padding-right:.5rem!important}.pb-lg-2,.py-lg-2{padding-bottom:.5rem!important}.pl-lg-2,.px-lg-2{padding-left:.5rem!important}.p-lg-3{padding:1rem!important}.pt-lg-3,.py-lg-3{padding-top:1rem!important}.pr-lg-3,.px-lg-3{padding-right:1rem!important}.pb-lg-3,.py-lg-3{padding-bottom:1rem!important}.pl-lg-3,.px-lg-3{padding-left:1rem!important}.p-lg-4{padding:1.5rem!important}.pt-lg-4,.py-lg-4{padding-top:1.5rem!important}.pr-lg-4,.px-lg-4{padding-right:1.5rem!important}.pb-lg-4,.py-lg-4{padding-bottom:1.5rem!important}.pl-lg-4,.px-lg-4{padding-left:1.5rem!important}.p-lg-5{padding:3rem!important}.pt-lg-5,.py-lg-5{padding-top:3rem!important}.pr-lg-5,.px-lg-5{padding-right:3rem!important}.pb-lg-5,.py-lg-5{padding-bottom:3rem!important}.pl-lg-5,.px-lg-5{padding-left:3rem!important}.m-lg-n1{margin:-.25rem!important}.mt-lg-n1,.my-lg-n1{margin-top:-.25rem!important}.mr-lg-n1,.mx-lg-n1{margin-right:-.25rem!important}.mb-lg-n1,.my-lg-n1{margin-bottom:-.25rem!important}.ml-lg-n1,.mx-lg-n1{margin-left:-.25rem!important}.m-lg-n2{margin:-.5rem!important}.mt-lg-n2,.my-lg-n2{margin-top:-.5rem!important}.mr-lg-n2,.mx-lg-n2{margin-right:-.5rem!important}.mb-lg-n2,.my-lg-n2{margin-bottom:-.5rem!important}.ml-lg-n2,.mx-lg-n2{margin-left:-.5rem!important}.m-lg-n3{margin:-1rem!important}.mt-lg-n3,.my-lg-n3{margin-top:-1rem!important}.mr-lg-n3,.mx-lg-n3{margin-right:-1rem!important}.mb-lg-n3,.my-lg-n3{margin-bottom:-1rem!important}.ml-lg-n3,.mx-lg-n3{margin-left:-1rem!important}.m-lg-n4{margin:-1.5rem!important}.mt-lg-n4,.my-lg-n4{margin-top:-1.5rem!important}.mr-lg-n4,.mx-lg-n4{margin-right:-1.5rem!important}.mb-lg-n4,.my-lg-n4{margin-bottom:-1.5rem!important}.ml-lg-n4,.mx-lg-n4{margin-left:-1.5rem!important}.m-lg-n5{margin:-3rem!important}.mt-lg-n5,.my-lg-n5{margin-top:-3rem!important}.mr-lg-n5,.mx-lg-n5{margin-right:-3rem!important}.mb-lg-n5,.my-lg-n5{margin-bottom:-3rem!important}.ml-lg-n5,.mx-lg-n5{margin-left:-3rem!important}.m-lg-auto{margin:auto!important}.mt-lg-auto,.my-lg-auto{margin-top:auto!important}.mr-lg-auto,.mx-lg-auto{margin-right:auto!important}.mb-lg-auto,.my-lg-auto{margin-bottom:auto!important}.ml-lg-auto,.mx-lg-auto{margin-left:auto!important}}@media (min-width:1200px){.m-xl-0{margin:0!important}.mt-xl-0,.my-xl-0{margin-top:0!important}.mr-xl-0,.mx-xl-0{margin-right:0!important}.mb-xl-0,.my-xl-0{margin-bottom:0!important}.ml-xl-0,.mx-xl-0{margin-left:0!important}.m-xl-1{margin:.25rem!important}.mt-xl-1,.my-xl-1{margin-top:.25rem!important}.mr-xl-1,.mx-xl-1{margin-right:.25rem!important}.mb-xl-1,.my-xl-1{margin-bottom:.25rem!important}.ml-xl-1,.mx-xl-1{margin-left:.25rem!important}.m-xl-2{margin:.5rem!important}.mt-xl-2,.my-xl-2{margin-top:.5rem!important}.mr-xl-2,.mx-xl-2{margin-right:.5rem!important}.mb-xl-2,.my-xl-2{margin-bottom:.5rem!important}.ml-xl-2,.mx-xl-2{margin-left:.5rem!important}.m-xl-3{margin:1rem!important}.mt-xl-3,.my-xl-3{margin-top:1rem!important}.mr-xl-3,.mx-xl-3{margin-right:1rem!important}.mb-xl-3,.my-xl-3{margin-bottom:1rem!important}.ml-xl-3,.mx-xl-3{margin-left:1rem!important}.m-xl-4{margin:1.5rem!important}.mt-xl-4,.my-xl-4{margin-top:1.5rem!important}.mr-xl-4,.mx-xl-4{margin-right:1.5rem!important}.mb-xl-4,.my-xl-4{margin-bottom:1.5rem!important}.ml-xl-4,.mx-xl-4{margin-left:1.5rem!important}.m-xl-5{margin:3rem!important}.mt-xl-5,.my-xl-5{margin-top:3rem!important}.mr-xl-5,.mx-xl-5{margin-right:3rem!important}.mb-xl-5,.my-xl-5{margin-bottom:3rem!important}.ml-xl-5,.mx-xl-5{margin-left:3rem!important}.p-xl-0{padding:0!important}.pt-xl-0,.py-xl-0{padding-top:0!important}.pr-xl-0,.px-xl-0{padding-right:0!important}.pb-xl-0,.py-xl-0{padding-bottom:0!important}.pl-xl-0,.px-xl-0{padding-left:0!important}.p-xl-1{padding:.25rem!important}.pt-xl-1,.py-xl-1{padding-top:.25rem!important}.pr-xl-1,.px-xl-1{padding-right:.25rem!important}.pb-xl-1,.py-xl-1{padding-bottom:.25rem!important}.pl-xl-1,.px-xl-1{padding-left:.25rem!important}.p-xl-2{padding:.5rem!important}.pt-xl-2,.py-xl-2{padding-top:.5rem!important}.pr-xl-2,.px-xl-2{padding-right:.5rem!important}.pb-xl-2,.py-xl-2{padding-bottom:.5rem!important}.pl-xl-2,.px-xl-2{padding-left:.5rem!important}.p-xl-3{padding:1rem!important}.pt-xl-3,.py-xl-3{padding-top:1rem!important}.pr-xl-3,.px-xl-3{padding-right:1rem!important}.pb-xl-3,.py-xl-3{padding-bottom:1rem!important}.pl-xl-3,.px-xl-3{padding-left:1rem!important}.p-xl-4{padding:1.5rem!important}.pt-xl-4,.py-xl-4{padding-top:1.5rem!important}.pr-xl-4,.px-xl-4{padding-right:1.5rem!important}.pb-xl-4,.py-xl-4{padding-bottom:1.5rem!important}.pl-xl-4,.px-xl-4{padding-left:1.5rem!important}.p-xl-5{padding:3rem!important}.pt-xl-5,.py-xl-5{padding-top:3rem!important}.pr-xl-5,.px-xl-5{padding-right:3rem!important}.pb-xl-5,.py-xl-5{padding-bottom:3rem!important}.pl-xl-5,.px-xl-5{padding-left:3rem!important}.m-xl-n1{margin:-.25rem!important}.mt-xl-n1,.my-xl-n1{margin-top:-.25rem!important}.mr-xl-n1,.mx-xl-n1{margin-right:-.25rem!important}.mb-xl-n1,.my-xl-n1{margin-bottom:-.25rem!important}.ml-xl-n1,.mx-xl-n1{margin-left:-.25rem!important}.m-xl-n2{margin:-.5rem!important}.mt-xl-n2,.my-xl-n2{margin-top:-.5rem!important}.mr-xl-n2,.mx-xl-n2{margin-right:-.5rem!important}.mb-xl-n2,.my-xl-n2{margin-bottom:-.5rem!important}.ml-xl-n2,.mx-xl-n2{margin-left:-.5rem!important}.m-xl-n3{margin:-1rem!important}.mt-xl-n3,.my-xl-n3{margin-top:-1rem!important}.mr-xl-n3,.mx-xl-n3{margin-right:-1rem!important}.mb-xl-n3,.my-xl-n3{margin-bottom:-1rem!important}.ml-xl-n3,.mx-xl-n3{margin-left:-1rem!important}.m-xl-n4{margin:-1.5rem!important}.mt-xl-n4,.my-xl-n4{margin-top:-1.5rem!important}.mr-xl-n4,.mx-xl-n4{margin-right:-1.5rem!important}.mb-xl-n4,.my-xl-n4{margin-bottom:-1.5rem!important}.ml-xl-n4,.mx-xl-n4{margin-left:-1.5rem!important}.m-xl-n5{margin:-3rem!important}.mt-xl-n5,.my-xl-n5{margin-top:-3rem!important}.mr-xl-n5,.mx-xl-n5{margin-right:-3rem!important}.mb-xl-n5,.my-xl-n5{margin-bottom:-3rem!important}.ml-xl-n5,.mx-xl-n5{margin-left:-3rem!important}.m-xl-auto{margin:auto!important}.mt-xl-auto,.my-xl-auto{margin-top:auto!important}.mr-xl-auto,.mx-xl-auto{margin-right:auto!important}.mb-xl-auto,.my-xl-auto{margin-bottom:auto!important}.ml-xl-auto,.mx-xl-auto{margin-left:auto!important}}.stretched-link::after{position:absolute;top:0;right:0;bottom:0;left:0;z-index:1;pointer-events:auto;content:"";background-color:rgba(0,0,0,0)}.text-monospace{font-family:SFMono-Regular,Menlo,Monaco,Consolas,"Liberation Mono","Courier New",monospace!important}.text-justify{text-align:justify!important}.text-wrap{white-space:normal!important}.text-nowrap{white-space:nowrap!important}.text-truncate{overflow:hidden;text-overflow:ellipsis;white-space:nowrap}.text-left{text-align:left!important}.text-right{text-align:right!important}.text-center{text-align:center!important}@media (min-width:576px){.text-sm-left{text-align:left!important}.text-sm-right{text-align:right!important}.text-sm-center{text-align:center!important}}@media (min-width:768px){.text-md-left{text-align:left!important}.text-md-right{text-align:right!important}.text-md-center{text-align:center!important}}@media (min-width:992px){.text-lg-left{text-align:left!important}.text-lg-right{text-align:right!important}.text-lg-center{text-align:center!important}}@media (min-width:1200px){.text-xl-left{text-align:left!important}.text-xl-right{text-align:right!important}.text-xl-center{text-align:center!important}}.text-lowercase{text-transform:lowercase!important}.text-uppercase{text-transform:uppercase!important}.text-capitalize{text-transform:capitalize!important}.font-weight-light{font-weight:300!important}.font-weight-lighter{font-weight:lighter!important}.font-weight-normal{font-weight:400!important}.font-weight-bold{font-weight:700!important}.font-weight-bolder{font-weight:bolder!important}.font-italic{font-style:italic!important}.text-white{color:#fff!important}.text-primary{color:#375a7f!important}a.text-primary:focus,a.text-primary:hover{color:#20344a!important}.text-secondary{color:#444!important}a.text-secondary:focus,a.text-secondary:hover{color:#1e1e1e!important}.text-success{color:#00bc8c!important}a.text-success:focus,a.text-success:hover{color:#007053!important}.text-info{color:#3498db!important}a.text-info:focus,a.text-info:hover{color:#1d6fa5!important}.text-warning{color:#f39c12!important}a.text-warning:focus,a.text-warning:hover{color:#b06f09!important}.text-danger{color:#e74c3c!important}a.text-danger:focus,a.text-danger:hover{color:#bf2718!important}.text-light{color:#adb5bd!important}a.text-light:focus,a.text-light:hover{color:#838f9b!important}.text-dark{color:#303030!important}a.text-dark:focus,a.text-dark:hover{color:#0a0a0a!important}.text-body{color:#fff!important}.text-muted{color:#888!important}.text-black-50{color:rgba(0,0,0,.5)!important}.text-white-50{color:rgba(255,255,255,.5)!important}.text-hide{font:0/0 a;color:transparent;text-shadow:none;background-color:transparent;border:0}.text-decoration-none{text-decoration:none!important}.text-break{word-break:break-word!important;word-wrap:break-word!important}.text-reset{color:inherit!important}.visible{visibility:visible!important}.invisible{visibility:hidden!important}@media print{*,::after,::before{text-shadow:none!important;box-shadow:none!important}a:not(.btn){text-decoration:underline}abbr[title]::after{content:" (" attr(title) ")"}pre{white-space:pre-wrap!important}blockquote,pre{border:1px solid #adb5bd;page-break-inside:avoid}thead{display:table-header-group}img,tr{page-break-inside:avoid}h2,h3,p{orphans:3;widows:3}h2,h3{page-break-after:avoid}@page{size:a3}body{min-width:992px!important}.container{min-width:992px!important}.navbar{display:none}.badge{border:1px solid #000}.table{border-collapse:collapse!important}.table td,.table th{background-color:#fff!important}.table-bordered td,.table-bordered th{border:1px solid #dee2e6!important}.table-dark{color:inherit}.table-dark tbody+tbody,.table-dark td,.table-dark th,.table-dark thead th{border-color:#444}.table .thead-dark th{color:inherit;border-color:#444}}.blockquote-footer{color:#888}.table-primary,.table-primary>td,.table-primary>th{background-color:#375a7f}.table-secondary,.table-secondary>td,.table-secondary>th{background-color:#444}.table-light,.table-light>td,.table-light>th{background-color:#adb5bd}.table-dark,.table-dark>td,.table-dark>th{background-color:#303030}.table-success,.table-success>td,.table-success>th{background-color:#00bc8c}.table-info,.table-info>td,.table-info>th{background-color:#3498db}.table-danger,.table-danger>td,.table-danger>th{background-color:#e74c3c}.table-warning,.table-warning>td,.table-warning>th{background-color:#f39c12}.table-active,.table-active>td,.table-active>th{background-color:rgba(0,0,0,.075)}.table-hover .table-primary:hover,.table-hover .table-primary:hover>td,.table-hover .table-primary:hover>th{background-color:#2f4d6d}.table-hover .table-secondary:hover,.table-hover .table-secondary:hover>td,.table-hover .table-secondary:hover>th{background-color:#373737}.table-hover .table-light:hover,.table-hover .table-light:hover>td,.table-hover .table-light:hover>th{background-color:#9fa8b2}.table-hover .table-dark:hover,.table-hover .table-dark:hover>td,.table-hover .table-dark:hover>th{background-color:#232323}.table-hover .table-success:hover,.table-hover .table-success:hover>td,.table-hover .table-success:hover>th{background-color:#00a379}.table-hover .table-info:hover,.table-hover .table-info:hover>td,.table-hover .table-info:hover>th{background-color:#258cd1}.table-hover .table-danger:hover,.table-hover .table-danger:hover>td,.table-hover .table-danger:hover>th{background-color:#e43725}.table-hover .table-warning:hover,.table-hover .table-warning:hover>td,.table-hover .table-warning:hover>th{background-color:#e08e0b}.table-hover .table-active:hover,.table-hover .table-active:hover>td,.table-hover .table-active:hover>th{background-color:rgba(0,0,0,.075)}.input-group-addon{color:#fff}.nav-pills .nav-item.open .nav-link,.nav-pills .nav-item.open .nav-link:focus,.nav-pills .nav-item.open .nav-link:hover,.nav-pills .nav-link,.nav-pills .nav-link.active,.nav-pills .nav-link.active:focus,.nav-pills .nav-link.active:hover,.nav-tabs .nav-item.open .nav-link,.nav-tabs .nav-item.open .nav-link:focus,.nav-tabs .nav-item.open .nav-link:hover,.nav-tabs .nav-link,.nav-tabs .nav-link.active,.nav-tabs .nav-link.active:focus,.nav-tabs .nav-link.active:hover{color:#fff}.breadcrumb a{color:#fff}.pagination a:hover{text-decoration:none}.close{opacity:.4}.close:focus,.close:hover{opacity:1}.alert{border:none;color:#fff}.alert .alert-link,.alert a{color:#fff;text-decoration:underline}.alert-primary{background-color:#375a7f}.alert-secondary{background-color:#444}.alert-success{background-color:#00bc8c}.alert-info{background-color:#3498db}.alert-warning{background-color:#f39c12}.alert-danger{background-color:#e74c3c}.alert-light{background-color:#adb5bd}.alert-dark{background-color:#303030}.list-group-item-action{color:#fff}.list-group-item-action:focus,.list-group-item-action:hover{background-color:#444;color:#fff}.list-group-item-action .list-group-item-heading{color:#fff}
\ No newline at end of file
+ */@import url(https://fonts.googleapis.com/css2?family=Lato:ital,wght@0,400;0,700;1,400&display=swap);:root{--blue:#375a7f;--indigo:#6610f2;--purple:#6f42c1;--pink:#e83e8c;--red:#e74c3c;--orange:#fd7e14;--yellow:#f39c12;--green:#00bc8c;--teal:#20c997;--cyan:#3498db;--white:#fff;--gray:#888;--gray-dark:#303030;--primary:#375a7f;--secondary:#444;--success:#00bc8c;--info:#3498db;--warning:#f39c12;--danger:#e74c3c;--light:#adb5bd;--dark:#303030;--breakpoint-xs:0;--breakpoint-sm:576px;--breakpoint-md:768px;--breakpoint-lg:992px;--breakpoint-xl:1200px;--font-family-sans-serif:Lato,-apple-system,BlinkMacSystemFont,"Segoe UI",Roboto,"Helvetica Neue",Arial,sans-serif,"Apple Color Emoji","Segoe UI Emoji","Segoe UI Symbol";--font-family-monospace:SFMono-Regular,Menlo,Monaco,Consolas,"Liberation Mono","Courier New",monospace}*,::after,::before{box-sizing:border-box}html{font-family:sans-serif;line-height:1.15;-webkit-text-size-adjust:100%;-webkit-tap-highlight-color:transparent}article,aside,figcaption,figure,footer,header,hgroup,main,nav,section{display:block}body{margin:0;font-family:Lato,-apple-system,BlinkMacSystemFont,"Segoe UI",Roboto,"Helvetica Neue",Arial,sans-serif,"Apple Color Emoji","Segoe UI Emoji","Segoe UI Symbol";font-size:.9375rem;font-weight:400;line-height:1.5;color:#fff;text-align:left;background-color:#222}[tabindex="-1"]:focus:not(:focus-visible){outline:0!important}hr{box-sizing:content-box;height:0;overflow:visible}h1,h2,h3,h4,h5,h6{margin-top:0;margin-bottom:.5rem}p{margin-top:0;margin-bottom:1rem}abbr[data-original-title],abbr[title]{text-decoration:underline;-webkit-text-decoration:underline dotted;text-decoration:underline dotted;cursor:help;border-bottom:0;-webkit-text-decoration-skip-ink:none;text-decoration-skip-ink:none}address{margin-bottom:1rem;font-style:normal;line-height:inherit}dl,ol,ul{margin-top:0;margin-bottom:1rem}ol ol,ol ul,ul ol,ul ul{margin-bottom:0}dt{font-weight:700}dd{margin-bottom:.5rem;margin-left:0}blockquote{margin:0 0 1rem}b,strong{font-weight:bolder}small{font-size:80%}sub,sup{position:relative;font-size:75%;line-height:0;vertical-align:baseline}sub{bottom:-.25em}sup{top:-.5em}a{color:#00bc8c;text-decoration:none;background-color:transparent}a:hover{color:#007053;text-decoration:underline}a:not([href]):not([class]){color:inherit;text-decoration:none}a:not([href]):not([class]):hover{color:inherit;text-decoration:none}code,kbd,pre,samp{font-family:SFMono-Regular,Menlo,Monaco,Consolas,"Liberation Mono","Courier New",monospace;font-size:1em}pre{margin-top:0;margin-bottom:1rem;overflow:auto;-ms-overflow-style:scrollbar}figure{margin:0 0 1rem}img{vertical-align:middle;border-style:none}svg{overflow:hidden;vertical-align:middle}table{border-collapse:collapse}caption{padding-top:.75rem;padding-bottom:.75rem;color:#888;text-align:left;caption-side:bottom}th{text-align:inherit;text-align:-webkit-match-parent}label{display:inline-block;margin-bottom:.5rem}button{border-radius:0}button:focus:not(:focus-visible){outline:0}button,input,optgroup,select,textarea{margin:0;font-family:inherit;font-size:inherit;line-height:inherit}button,input{overflow:visible}button,select{text-transform:none}[role=button]{cursor:pointer}select{word-wrap:normal}[type=button],[type=reset],[type=submit],button{-webkit-appearance:button}[type=button]:not(:disabled),[type=reset]:not(:disabled),[type=submit]:not(:disabled),button:not(:disabled){cursor:pointer}[type=button]::-moz-focus-inner,[type=reset]::-moz-focus-inner,[type=submit]::-moz-focus-inner,button::-moz-focus-inner{padding:0;border-style:none}input[type=checkbox],input[type=radio]{box-sizing:border-box;padding:0}textarea{overflow:auto;resize:vertical}fieldset{min-width:0;padding:0;margin:0;border:0}legend{display:block;width:100%;max-width:100%;padding:0;margin-bottom:.5rem;font-size:1.5rem;line-height:inherit;color:inherit;white-space:normal}progress{vertical-align:baseline}[type=number]::-webkit-inner-spin-button,[type=number]::-webkit-outer-spin-button{height:auto}[type=search]{outline-offset:-2px;-webkit-appearance:none}[type=search]::-webkit-search-decoration{-webkit-appearance:none}::-webkit-file-upload-button{font:inherit;-webkit-appearance:button}output{display:inline-block}summary{display:list-item;cursor:pointer}template{display:none}[hidden]{display:none!important}.h1,.h2,.h3,.h4,.h5,.h6,h1,h2,h3,h4,h5,h6{margin-bottom:.5rem;font-weight:500;line-height:1.2}.h1,h1{font-size:3rem}.h2,h2{font-size:2.5rem}.h3,h3{font-size:2rem}.h4,h4{font-size:1.40625rem}.h5,h5{font-size:1.171875rem}.h6,h6{font-size:.9375rem}.lead{font-size:1.171875rem;font-weight:300}.display-1{font-size:6rem;font-weight:300;line-height:1.2}.display-2{font-size:5.5rem;font-weight:300;line-height:1.2}.display-3{font-size:4.5rem;font-weight:300;line-height:1.2}.display-4{font-size:3.5rem;font-weight:300;line-height:1.2}hr{margin-top:1rem;margin-bottom:1rem;border:0;border-top:1px solid rgba(0,0,0,.1)}.small,small{font-size:80%;font-weight:400}.mark,mark{padding:.2em;background-color:#fcf8e3}.list-unstyled{padding-left:0;list-style:none}.list-inline{padding-left:0;list-style:none}.list-inline-item{display:inline-block}.list-inline-item:not(:last-child){margin-right:.5rem}.initialism{font-size:90%;text-transform:uppercase}.blockquote{margin-bottom:1rem;font-size:1.171875rem}.blockquote-footer{display:block;font-size:80%;color:#888}.blockquote-footer::before{content:"\2014\00A0"}.img-fluid{max-width:100%;height:auto}.img-thumbnail{padding:.25rem;background-color:#222;border:1px solid #dee2e6;border-radius:.25rem;max-width:100%;height:auto}.figure{display:inline-block}.figure-img{margin-bottom:.5rem;line-height:1}.figure-caption{font-size:90%;color:#888}code{font-size:87.5%;color:#e83e8c;word-wrap:break-word}a>code{color:inherit}kbd{padding:.2rem .4rem;font-size:87.5%;color:#fff;background-color:#222;border-radius:.2rem}kbd kbd{padding:0;font-size:100%;font-weight:700}pre{display:block;font-size:87.5%;color:inherit}pre code{font-size:inherit;color:inherit;word-break:normal}.pre-scrollable{max-height:340px;overflow-y:scroll}.container,.container-fluid,.container-lg,.container-md,.container-sm,.container-xl{width:100%;padding-right:15px;padding-left:15px;margin-right:auto;margin-left:auto}@media (min-width:576px){.container,.container-sm{max-width:540px}}@media (min-width:768px){.container,.container-md,.container-sm{max-width:720px}}@media (min-width:992px){.container,.container-lg,.container-md,.container-sm{max-width:960px}}@media (min-width:1200px){.container,.container-lg,.container-md,.container-sm,.container-xl{max-width:1140px}}.row{display:-ms-flexbox;display:flex;-ms-flex-wrap:wrap;flex-wrap:wrap;margin-right:-15px;margin-left:-15px}.no-gutters{margin-right:0;margin-left:0}.no-gutters>.col,.no-gutters>[class*=col-]{padding-right:0;padding-left:0}.col,.col-1,.col-10,.col-11,.col-12,.col-2,.col-3,.col-4,.col-5,.col-6,.col-7,.col-8,.col-9,.col-auto,.col-lg,.col-lg-1,.col-lg-10,.col-lg-11,.col-lg-12,.col-lg-2,.col-lg-3,.col-lg-4,.col-lg-5,.col-lg-6,.col-lg-7,.col-lg-8,.col-lg-9,.col-lg-auto,.col-md,.col-md-1,.col-md-10,.col-md-11,.col-md-12,.col-md-2,.col-md-3,.col-md-4,.col-md-5,.col-md-6,.col-md-7,.col-md-8,.col-md-9,.col-md-auto,.col-sm,.col-sm-1,.col-sm-10,.col-sm-11,.col-sm-12,.col-sm-2,.col-sm-3,.col-sm-4,.col-sm-5,.col-sm-6,.col-sm-7,.col-sm-8,.col-sm-9,.col-sm-auto,.col-xl,.col-xl-1,.col-xl-10,.col-xl-11,.col-xl-12,.col-xl-2,.col-xl-3,.col-xl-4,.col-xl-5,.col-xl-6,.col-xl-7,.col-xl-8,.col-xl-9,.col-xl-auto{position:relative;width:100%;padding-right:15px;padding-left:15px}.col{-ms-flex-preferred-size:0;flex-basis:0;-ms-flex-positive:1;flex-grow:1;max-width:100%}.row-cols-1>*{-ms-flex:0 0 100%;flex:0 0 100%;max-width:100%}.row-cols-2>*{-ms-flex:0 0 50%;flex:0 0 50%;max-width:50%}.row-cols-3>*{-ms-flex:0 0 33.333333%;flex:0 0 33.333333%;max-width:33.333333%}.row-cols-4>*{-ms-flex:0 0 25%;flex:0 0 25%;max-width:25%}.row-cols-5>*{-ms-flex:0 0 20%;flex:0 0 20%;max-width:20%}.row-cols-6>*{-ms-flex:0 0 16.666667%;flex:0 0 16.666667%;max-width:16.666667%}.col-auto{-ms-flex:0 0 auto;flex:0 0 auto;width:auto;max-width:100%}.col-1{-ms-flex:0 0 8.333333%;flex:0 0 8.333333%;max-width:8.333333%}.col-2{-ms-flex:0 0 16.666667%;flex:0 0 16.666667%;max-width:16.666667%}.col-3{-ms-flex:0 0 25%;flex:0 0 25%;max-width:25%}.col-4{-ms-flex:0 0 33.333333%;flex:0 0 33.333333%;max-width:33.333333%}.col-5{-ms-flex:0 0 41.666667%;flex:0 0 41.666667%;max-width:41.666667%}.col-6{-ms-flex:0 0 50%;flex:0 0 50%;max-width:50%}.col-7{-ms-flex:0 0 58.333333%;flex:0 0 58.333333%;max-width:58.333333%}.col-8{-ms-flex:0 0 66.666667%;flex:0 0 66.666667%;max-width:66.666667%}.col-9{-ms-flex:0 0 75%;flex:0 0 75%;max-width:75%}.col-10{-ms-flex:0 0 83.333333%;flex:0 0 83.333333%;max-width:83.333333%}.col-11{-ms-flex:0 0 91.666667%;flex:0 0 91.666667%;max-width:91.666667%}.col-12{-ms-flex:0 0 100%;flex:0 0 100%;max-width:100%}.order-first{-ms-flex-order:-1;order:-1}.order-last{-ms-flex-order:13;order:13}.order-0{-ms-flex-order:0;order:0}.order-1{-ms-flex-order:1;order:1}.order-2{-ms-flex-order:2;order:2}.order-3{-ms-flex-order:3;order:3}.order-4{-ms-flex-order:4;order:4}.order-5{-ms-flex-order:5;order:5}.order-6{-ms-flex-order:6;order:6}.order-7{-ms-flex-order:7;order:7}.order-8{-ms-flex-order:8;order:8}.order-9{-ms-flex-order:9;order:9}.order-10{-ms-flex-order:10;order:10}.order-11{-ms-flex-order:11;order:11}.order-12{-ms-flex-order:12;order:12}.offset-1{margin-left:8.333333%}.offset-2{margin-left:16.666667%}.offset-3{margin-left:25%}.offset-4{margin-left:33.333333%}.offset-5{margin-left:41.666667%}.offset-6{margin-left:50%}.offset-7{margin-left:58.333333%}.offset-8{margin-left:66.666667%}.offset-9{margin-left:75%}.offset-10{margin-left:83.333333%}.offset-11{margin-left:91.666667%}@media (min-width:576px){.col-sm{-ms-flex-preferred-size:0;flex-basis:0;-ms-flex-positive:1;flex-grow:1;max-width:100%}.row-cols-sm-1>*{-ms-flex:0 0 100%;flex:0 0 100%;max-width:100%}.row-cols-sm-2>*{-ms-flex:0 0 50%;flex:0 0 50%;max-width:50%}.row-cols-sm-3>*{-ms-flex:0 0 33.333333%;flex:0 0 33.333333%;max-width:33.333333%}.row-cols-sm-4>*{-ms-flex:0 0 25%;flex:0 0 25%;max-width:25%}.row-cols-sm-5>*{-ms-flex:0 0 20%;flex:0 0 20%;max-width:20%}.row-cols-sm-6>*{-ms-flex:0 0 16.666667%;flex:0 0 16.666667%;max-width:16.666667%}.col-sm-auto{-ms-flex:0 0 auto;flex:0 0 auto;width:auto;max-width:100%}.col-sm-1{-ms-flex:0 0 8.333333%;flex:0 0 8.333333%;max-width:8.333333%}.col-sm-2{-ms-flex:0 0 16.666667%;flex:0 0 16.666667%;max-width:16.666667%}.col-sm-3{-ms-flex:0 0 25%;flex:0 0 25%;max-width:25%}.col-sm-4{-ms-flex:0 0 33.333333%;flex:0 0 33.333333%;max-width:33.333333%}.col-sm-5{-ms-flex:0 0 41.666667%;flex:0 0 41.666667%;max-width:41.666667%}.col-sm-6{-ms-flex:0 0 50%;flex:0 0 50%;max-width:50%}.col-sm-7{-ms-flex:0 0 58.333333%;flex:0 0 58.333333%;max-width:58.333333%}.col-sm-8{-ms-flex:0 0 66.666667%;flex:0 0 66.666667%;max-width:66.666667%}.col-sm-9{-ms-flex:0 0 75%;flex:0 0 75%;max-width:75%}.col-sm-10{-ms-flex:0 0 83.333333%;flex:0 0 83.333333%;max-width:83.333333%}.col-sm-11{-ms-flex:0 0 91.666667%;flex:0 0 91.666667%;max-width:91.666667%}.col-sm-12{-ms-flex:0 0 100%;flex:0 0 100%;max-width:100%}.order-sm-first{-ms-flex-order:-1;order:-1}.order-sm-last{-ms-flex-order:13;order:13}.order-sm-0{-ms-flex-order:0;order:0}.order-sm-1{-ms-flex-order:1;order:1}.order-sm-2{-ms-flex-order:2;order:2}.order-sm-3{-ms-flex-order:3;order:3}.order-sm-4{-ms-flex-order:4;order:4}.order-sm-5{-ms-flex-order:5;order:5}.order-sm-6{-ms-flex-order:6;order:6}.order-sm-7{-ms-flex-order:7;order:7}.order-sm-8{-ms-flex-order:8;order:8}.order-sm-9{-ms-flex-order:9;order:9}.order-sm-10{-ms-flex-order:10;order:10}.order-sm-11{-ms-flex-order:11;order:11}.order-sm-12{-ms-flex-order:12;order:12}.offset-sm-0{margin-left:0}.offset-sm-1{margin-left:8.333333%}.offset-sm-2{margin-left:16.666667%}.offset-sm-3{margin-left:25%}.offset-sm-4{margin-left:33.333333%}.offset-sm-5{margin-left:41.666667%}.offset-sm-6{margin-left:50%}.offset-sm-7{margin-left:58.333333%}.offset-sm-8{margin-left:66.666667%}.offset-sm-9{margin-left:75%}.offset-sm-10{margin-left:83.333333%}.offset-sm-11{margin-left:91.666667%}}@media (min-width:768px){.col-md{-ms-flex-preferred-size:0;flex-basis:0;-ms-flex-positive:1;flex-grow:1;max-width:100%}.row-cols-md-1>*{-ms-flex:0 0 100%;flex:0 0 100%;max-width:100%}.row-cols-md-2>*{-ms-flex:0 0 50%;flex:0 0 50%;max-width:50%}.row-cols-md-3>*{-ms-flex:0 0 33.333333%;flex:0 0 33.333333%;max-width:33.333333%}.row-cols-md-4>*{-ms-flex:0 0 25%;flex:0 0 25%;max-width:25%}.row-cols-md-5>*{-ms-flex:0 0 20%;flex:0 0 20%;max-width:20%}.row-cols-md-6>*{-ms-flex:0 0 16.666667%;flex:0 0 16.666667%;max-width:16.666667%}.col-md-auto{-ms-flex:0 0 auto;flex:0 0 auto;width:auto;max-width:100%}.col-md-1{-ms-flex:0 0 8.333333%;flex:0 0 8.333333%;max-width:8.333333%}.col-md-2{-ms-flex:0 0 16.666667%;flex:0 0 16.666667%;max-width:16.666667%}.col-md-3{-ms-flex:0 0 25%;flex:0 0 25%;max-width:25%}.col-md-4{-ms-flex:0 0 33.333333%;flex:0 0 33.333333%;max-width:33.333333%}.col-md-5{-ms-flex:0 0 41.666667%;flex:0 0 41.666667%;max-width:41.666667%}.col-md-6{-ms-flex:0 0 50%;flex:0 0 50%;max-width:50%}.col-md-7{-ms-flex:0 0 58.333333%;flex:0 0 58.333333%;max-width:58.333333%}.col-md-8{-ms-flex:0 0 66.666667%;flex:0 0 66.666667%;max-width:66.666667%}.col-md-9{-ms-flex:0 0 75%;flex:0 0 75%;max-width:75%}.col-md-10{-ms-flex:0 0 83.333333%;flex:0 0 83.333333%;max-width:83.333333%}.col-md-11{-ms-flex:0 0 91.666667%;flex:0 0 91.666667%;max-width:91.666667%}.col-md-12{-ms-flex:0 0 100%;flex:0 0 100%;max-width:100%}.order-md-first{-ms-flex-order:-1;order:-1}.order-md-last{-ms-flex-order:13;order:13}.order-md-0{-ms-flex-order:0;order:0}.order-md-1{-ms-flex-order:1;order:1}.order-md-2{-ms-flex-order:2;order:2}.order-md-3{-ms-flex-order:3;order:3}.order-md-4{-ms-flex-order:4;order:4}.order-md-5{-ms-flex-order:5;order:5}.order-md-6{-ms-flex-order:6;order:6}.order-md-7{-ms-flex-order:7;order:7}.order-md-8{-ms-flex-order:8;order:8}.order-md-9{-ms-flex-order:9;order:9}.order-md-10{-ms-flex-order:10;order:10}.order-md-11{-ms-flex-order:11;order:11}.order-md-12{-ms-flex-order:12;order:12}.offset-md-0{margin-left:0}.offset-md-1{margin-left:8.333333%}.offset-md-2{margin-left:16.666667%}.offset-md-3{margin-left:25%}.offset-md-4{margin-left:33.333333%}.offset-md-5{margin-left:41.666667%}.offset-md-6{margin-left:50%}.offset-md-7{margin-left:58.333333%}.offset-md-8{margin-left:66.666667%}.offset-md-9{margin-left:75%}.offset-md-10{margin-left:83.333333%}.offset-md-11{margin-left:91.666667%}}@media (min-width:992px){.col-lg{-ms-flex-preferred-size:0;flex-basis:0;-ms-flex-positive:1;flex-grow:1;max-width:100%}.row-cols-lg-1>*{-ms-flex:0 0 100%;flex:0 0 100%;max-width:100%}.row-cols-lg-2>*{-ms-flex:0 0 50%;flex:0 0 50%;max-width:50%}.row-cols-lg-3>*{-ms-flex:0 0 33.333333%;flex:0 0 33.333333%;max-width:33.333333%}.row-cols-lg-4>*{-ms-flex:0 0 25%;flex:0 0 25%;max-width:25%}.row-cols-lg-5>*{-ms-flex:0 0 20%;flex:0 0 20%;max-width:20%}.row-cols-lg-6>*{-ms-flex:0 0 16.666667%;flex:0 0 16.666667%;max-width:16.666667%}.col-lg-auto{-ms-flex:0 0 auto;flex:0 0 auto;width:auto;max-width:100%}.col-lg-1{-ms-flex:0 0 8.333333%;flex:0 0 8.333333%;max-width:8.333333%}.col-lg-2{-ms-flex:0 0 16.666667%;flex:0 0 16.666667%;max-width:16.666667%}.col-lg-3{-ms-flex:0 0 25%;flex:0 0 25%;max-width:25%}.col-lg-4{-ms-flex:0 0 33.333333%;flex:0 0 33.333333%;max-width:33.333333%}.col-lg-5{-ms-flex:0 0 41.666667%;flex:0 0 41.666667%;max-width:41.666667%}.col-lg-6{-ms-flex:0 0 50%;flex:0 0 50%;max-width:50%}.col-lg-7{-ms-flex:0 0 58.333333%;flex:0 0 58.333333%;max-width:58.333333%}.col-lg-8{-ms-flex:0 0 66.666667%;flex:0 0 66.666667%;max-width:66.666667%}.col-lg-9{-ms-flex:0 0 75%;flex:0 0 75%;max-width:75%}.col-lg-10{-ms-flex:0 0 83.333333%;flex:0 0 83.333333%;max-width:83.333333%}.col-lg-11{-ms-flex:0 0 91.666667%;flex:0 0 91.666667%;max-width:91.666667%}.col-lg-12{-ms-flex:0 0 100%;flex:0 0 100%;max-width:100%}.order-lg-first{-ms-flex-order:-1;order:-1}.order-lg-last{-ms-flex-order:13;order:13}.order-lg-0{-ms-flex-order:0;order:0}.order-lg-1{-ms-flex-order:1;order:1}.order-lg-2{-ms-flex-order:2;order:2}.order-lg-3{-ms-flex-order:3;order:3}.order-lg-4{-ms-flex-order:4;order:4}.order-lg-5{-ms-flex-order:5;order:5}.order-lg-6{-ms-flex-order:6;order:6}.order-lg-7{-ms-flex-order:7;order:7}.order-lg-8{-ms-flex-order:8;order:8}.order-lg-9{-ms-flex-order:9;order:9}.order-lg-10{-ms-flex-order:10;order:10}.order-lg-11{-ms-flex-order:11;order:11}.order-lg-12{-ms-flex-order:12;order:12}.offset-lg-0{margin-left:0}.offset-lg-1{margin-left:8.333333%}.offset-lg-2{margin-left:16.666667%}.offset-lg-3{margin-left:25%}.offset-lg-4{margin-left:33.333333%}.offset-lg-5{margin-left:41.666667%}.offset-lg-6{margin-left:50%}.offset-lg-7{margin-left:58.333333%}.offset-lg-8{margin-left:66.666667%}.offset-lg-9{margin-left:75%}.offset-lg-10{margin-left:83.333333%}.offset-lg-11{margin-left:91.666667%}}@media (min-width:1200px){.col-xl{-ms-flex-preferred-size:0;flex-basis:0;-ms-flex-positive:1;flex-grow:1;max-width:100%}.row-cols-xl-1>*{-ms-flex:0 0 100%;flex:0 0 100%;max-width:100%}.row-cols-xl-2>*{-ms-flex:0 0 50%;flex:0 0 50%;max-width:50%}.row-cols-xl-3>*{-ms-flex:0 0 33.333333%;flex:0 0 33.333333%;max-width:33.333333%}.row-cols-xl-4>*{-ms-flex:0 0 25%;flex:0 0 25%;max-width:25%}.row-cols-xl-5>*{-ms-flex:0 0 20%;flex:0 0 20%;max-width:20%}.row-cols-xl-6>*{-ms-flex:0 0 16.666667%;flex:0 0 16.666667%;max-width:16.666667%}.col-xl-auto{-ms-flex:0 0 auto;flex:0 0 auto;width:auto;max-width:100%}.col-xl-1{-ms-flex:0 0 8.333333%;flex:0 0 8.333333%;max-width:8.333333%}.col-xl-2{-ms-flex:0 0 16.666667%;flex:0 0 16.666667%;max-width:16.666667%}.col-xl-3{-ms-flex:0 0 25%;flex:0 0 25%;max-width:25%}.col-xl-4{-ms-flex:0 0 33.333333%;flex:0 0 33.333333%;max-width:33.333333%}.col-xl-5{-ms-flex:0 0 41.666667%;flex:0 0 41.666667%;max-width:41.666667%}.col-xl-6{-ms-flex:0 0 50%;flex:0 0 50%;max-width:50%}.col-xl-7{-ms-flex:0 0 58.333333%;flex:0 0 58.333333%;max-width:58.333333%}.col-xl-8{-ms-flex:0 0 66.666667%;flex:0 0 66.666667%;max-width:66.666667%}.col-xl-9{-ms-flex:0 0 75%;flex:0 0 75%;max-width:75%}.col-xl-10{-ms-flex:0 0 83.333333%;flex:0 0 83.333333%;max-width:83.333333%}.col-xl-11{-ms-flex:0 0 91.666667%;flex:0 0 91.666667%;max-width:91.666667%}.col-xl-12{-ms-flex:0 0 100%;flex:0 0 100%;max-width:100%}.order-xl-first{-ms-flex-order:-1;order:-1}.order-xl-last{-ms-flex-order:13;order:13}.order-xl-0{-ms-flex-order:0;order:0}.order-xl-1{-ms-flex-order:1;order:1}.order-xl-2{-ms-flex-order:2;order:2}.order-xl-3{-ms-flex-order:3;order:3}.order-xl-4{-ms-flex-order:4;order:4}.order-xl-5{-ms-flex-order:5;order:5}.order-xl-6{-ms-flex-order:6;order:6}.order-xl-7{-ms-flex-order:7;order:7}.order-xl-8{-ms-flex-order:8;order:8}.order-xl-9{-ms-flex-order:9;order:9}.order-xl-10{-ms-flex-order:10;order:10}.order-xl-11{-ms-flex-order:11;order:11}.order-xl-12{-ms-flex-order:12;order:12}.offset-xl-0{margin-left:0}.offset-xl-1{margin-left:8.333333%}.offset-xl-2{margin-left:16.666667%}.offset-xl-3{margin-left:25%}.offset-xl-4{margin-left:33.333333%}.offset-xl-5{margin-left:41.666667%}.offset-xl-6{margin-left:50%}.offset-xl-7{margin-left:58.333333%}.offset-xl-8{margin-left:66.666667%}.offset-xl-9{margin-left:75%}.offset-xl-10{margin-left:83.333333%}.offset-xl-11{margin-left:91.666667%}}.table{width:100%;margin-bottom:1rem;color:#fff}.table td,.table th{padding:.75rem;vertical-align:top;border-top:1px solid #444}.table thead th{vertical-align:bottom;border-bottom:2px solid #444}.table tbody+tbody{border-top:2px solid #444}.table-sm td,.table-sm th{padding:.3rem}.table-bordered{border:1px solid #444}.table-bordered td,.table-bordered th{border:1px solid #444}.table-bordered thead td,.table-bordered thead th{border-bottom-width:2px}.table-borderless tbody+tbody,.table-borderless td,.table-borderless th,.table-borderless thead th{border:0}.table-striped tbody tr:nth-of-type(odd){background-color:#303030}.table-hover tbody tr:hover{color:#fff;background-color:rgba(0,0,0,.075)}.table-primary,.table-primary>td,.table-primary>th{background-color:#c7d1db}.table-primary tbody+tbody,.table-primary td,.table-primary th,.table-primary thead th{border-color:#97a9bc}.table-hover .table-primary:hover{background-color:#b7c4d1}.table-hover .table-primary:hover>td,.table-hover .table-primary:hover>th{background-color:#b7c4d1}.table-secondary,.table-secondary>td,.table-secondary>th{background-color:#cbcbcb}.table-secondary tbody+tbody,.table-secondary td,.table-secondary th,.table-secondary thead th{border-color:#9e9e9e}.table-hover .table-secondary:hover{background-color:#bebebe}.table-hover .table-secondary:hover>td,.table-hover .table-secondary:hover>th{background-color:#bebebe}.table-success,.table-success>td,.table-success>th{background-color:#b8ecdf}.table-success tbody+tbody,.table-success td,.table-success th,.table-success thead th{border-color:#7adcc3}.table-hover .table-success:hover{background-color:#a4e7d6}.table-hover .table-success:hover>td,.table-hover .table-success:hover>th{background-color:#a4e7d6}.table-info,.table-info>td,.table-info>th{background-color:#c6e2f5}.table-info tbody+tbody,.table-info td,.table-info th,.table-info thead th{border-color:#95c9ec}.table-hover .table-info:hover{background-color:#b0d7f1}.table-hover .table-info:hover>td,.table-hover .table-info:hover>th{background-color:#b0d7f1}.table-warning,.table-warning>td,.table-warning>th{background-color:#fce3bd}.table-warning tbody+tbody,.table-warning td,.table-warning th,.table-warning thead th{border-color:#f9cc84}.table-hover .table-warning:hover{background-color:#fbd9a5}.table-hover .table-warning:hover>td,.table-hover .table-warning:hover>th{background-color:#fbd9a5}.table-danger,.table-danger>td,.table-danger>th{background-color:#f8cdc8}.table-danger tbody+tbody,.table-danger td,.table-danger th,.table-danger thead th{border-color:#f3a29a}.table-hover .table-danger:hover{background-color:#f5b8b1}.table-hover .table-danger:hover>td,.table-hover .table-danger:hover>th{background-color:#f5b8b1}.table-light,.table-light>td,.table-light>th{background-color:#e8eaed}.table-light tbody+tbody,.table-light td,.table-light th,.table-light thead th{border-color:#d4d9dd}.table-hover .table-light:hover{background-color:#dadde2}.table-hover .table-light:hover>td,.table-hover .table-light:hover>th{background-color:#dadde2}.table-dark,.table-dark>td,.table-dark>th{background-color:#c5c5c5}.table-dark tbody+tbody,.table-dark td,.table-dark th,.table-dark thead th{border-color:#939393}.table-hover .table-dark:hover{background-color:#b8b8b8}.table-hover .table-dark:hover>td,.table-hover .table-dark:hover>th{background-color:#b8b8b8}.table-active,.table-active>td,.table-active>th{background-color:rgba(0,0,0,.075)}.table-hover .table-active:hover{background-color:rgba(0,0,0,.075)}.table-hover .table-active:hover>td,.table-hover .table-active:hover>th{background-color:rgba(0,0,0,.075)}.table .thead-dark th{color:#fff;background-color:#303030;border-color:#434343}.table .thead-light th{color:#444;background-color:#ebebeb;border-color:#444}.table-dark{color:#fff;background-color:#303030}.table-dark td,.table-dark th,.table-dark thead th{border-color:#434343}.table-dark.table-bordered{border:0}.table-dark.table-striped tbody tr:nth-of-type(odd){background-color:rgba(255,255,255,.05)}.table-dark.table-hover tbody tr:hover{color:#fff;background-color:rgba(255,255,255,.075)}@media (max-width:575.98px){.table-responsive-sm{display:block;width:100%;overflow-x:auto;-webkit-overflow-scrolling:touch}.table-responsive-sm>.table-bordered{border:0}}@media (max-width:767.98px){.table-responsive-md{display:block;width:100%;overflow-x:auto;-webkit-overflow-scrolling:touch}.table-responsive-md>.table-bordered{border:0}}@media (max-width:991.98px){.table-responsive-lg{display:block;width:100%;overflow-x:auto;-webkit-overflow-scrolling:touch}.table-responsive-lg>.table-bordered{border:0}}@media (max-width:1199.98px){.table-responsive-xl{display:block;width:100%;overflow-x:auto;-webkit-overflow-scrolling:touch}.table-responsive-xl>.table-bordered{border:0}}.table-responsive{display:block;width:100%;overflow-x:auto;-webkit-overflow-scrolling:touch}.table-responsive>.table-bordered{border:0}.form-control{display:block;width:100%;height:calc(1.5em + .75rem + 2px);padding:.375rem .75rem;font-size:.9375rem;font-weight:400;line-height:1.5;color:#444;background-color:#fff;background-clip:padding-box;border:1px solid #222;border-radius:.25rem;transition:border-color .15s ease-in-out,box-shadow .15s ease-in-out}@media (prefers-reduced-motion:reduce){.form-control{transition:none}}.form-control::-ms-expand{background-color:transparent;border:0}.form-control:-moz-focusring{color:transparent;text-shadow:0 0 0 #444}.form-control:focus{color:#444;background-color:#fff;border-color:#739ac2;outline:0;box-shadow:0 0 0 .2rem rgba(55,90,127,.25)}.form-control::-webkit-input-placeholder{color:#888;opacity:1}.form-control::-moz-placeholder{color:#888;opacity:1}.form-control:-ms-input-placeholder{color:#888;opacity:1}.form-control::-ms-input-placeholder{color:#888;opacity:1}.form-control::placeholder{color:#888;opacity:1}.form-control:disabled,.form-control[readonly]{background-color:#ebebeb;opacity:1}input[type=date].form-control,input[type=datetime-local].form-control,input[type=month].form-control,input[type=time].form-control{-webkit-appearance:none;-moz-appearance:none;appearance:none}select.form-control:focus::-ms-value{color:#444;background-color:#fff}.form-control-file,.form-control-range{display:block;width:100%}.col-form-label{padding-top:calc(.375rem + 1px);padding-bottom:calc(.375rem + 1px);margin-bottom:0;font-size:inherit;line-height:1.5}.col-form-label-lg{padding-top:calc(.5rem + 1px);padding-bottom:calc(.5rem + 1px);font-size:1.171875rem;line-height:1.5}.col-form-label-sm{padding-top:calc(.25rem + 1px);padding-bottom:calc(.25rem + 1px);font-size:.825rem;line-height:1.5}.form-control-plaintext{display:block;width:100%;padding:.375rem 0;margin-bottom:0;font-size:.9375rem;line-height:1.5;color:#fff;background-color:transparent;border:solid transparent;border-width:1px 0}.form-control-plaintext.form-control-lg,.form-control-plaintext.form-control-sm{padding-right:0;padding-left:0}.form-control-sm{height:calc(1.5em + .5rem + 2px);padding:.25rem .5rem;font-size:.825rem;line-height:1.5;border-radius:.2rem}.form-control-lg{height:calc(1.5em + 1rem + 2px);padding:.5rem 1rem;font-size:1.171875rem;line-height:1.5;border-radius:.3rem}select.form-control[multiple],select.form-control[size]{height:auto}textarea.form-control{height:auto}.form-group{margin-bottom:1rem}.form-text{display:block;margin-top:.25rem}.form-row{display:-ms-flexbox;display:flex;-ms-flex-wrap:wrap;flex-wrap:wrap;margin-right:-5px;margin-left:-5px}.form-row>.col,.form-row>[class*=col-]{padding-right:5px;padding-left:5px}.form-check{position:relative;display:block;padding-left:1.25rem}.form-check-input{position:absolute;margin-top:.3rem;margin-left:-1.25rem}.form-check-input:disabled~.form-check-label,.form-check-input[disabled]~.form-check-label{color:#888}.form-check-label{margin-bottom:0}.form-check-inline{display:-ms-inline-flexbox;display:inline-flex;-ms-flex-align:center;align-items:center;padding-left:0;margin-right:.75rem}.form-check-inline .form-check-input{position:static;margin-top:0;margin-right:.3125rem;margin-left:0}.valid-feedback{display:none;width:100%;margin-top:.25rem;font-size:80%;color:#00bc8c}.valid-tooltip{position:absolute;top:100%;left:0;z-index:5;display:none;max-width:100%;padding:.25rem .5rem;margin-top:.1rem;font-size:.825rem;line-height:1.5;color:#fff;background-color:rgba(0,188,140,.9);border-radius:.25rem}.form-row>.col>.valid-tooltip,.form-row>[class*=col-]>.valid-tooltip{left:5px}.is-valid~.valid-feedback,.is-valid~.valid-tooltip,.was-validated :valid~.valid-feedback,.was-validated :valid~.valid-tooltip{display:block}.form-control.is-valid,.was-validated .form-control:valid{border-color:#00bc8c;padding-right:calc(1.5em + .75rem);background-image:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='8' height='8' viewBox='0 0 8 8'%3e%3cpath fill='%2300bc8c' d='M2.3 6.73L.6 4.53c-.4-1.04.46-1.4 1.1-.8l1.1 1.4 3.4-3.8c.6-.63 1.6-.27 1.2.7l-4 4.6c-.43.5-.8.4-1.1.1z'/%3e%3c/svg%3e");background-repeat:no-repeat;background-position:right calc(.375em + .1875rem) center;background-size:calc(.75em + .375rem) calc(.75em + .375rem)}.form-control.is-valid:focus,.was-validated .form-control:valid:focus{border-color:#00bc8c;box-shadow:0 0 0 .2rem rgba(0,188,140,.25)}.was-validated textarea.form-control:valid,textarea.form-control.is-valid{padding-right:calc(1.5em + .75rem);background-position:top calc(.375em + .1875rem) right calc(.375em + .1875rem)}.custom-select.is-valid,.was-validated .custom-select:valid{border-color:#00bc8c;padding-right:calc(.75em + 2.3125rem);background:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='4' height='5' viewBox='0 0 4 5'%3e%3cpath fill='%23303030' d='M2 0L0 2h4zm0 5L0 3h4z'/%3e%3c/svg%3e") right .75rem center/8px 10px no-repeat,#fff url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='8' height='8' viewBox='0 0 8 8'%3e%3cpath fill='%2300bc8c' d='M2.3 6.73L.6 4.53c-.4-1.04.46-1.4 1.1-.8l1.1 1.4 3.4-3.8c.6-.63 1.6-.27 1.2.7l-4 4.6c-.43.5-.8.4-1.1.1z'/%3e%3c/svg%3e") center right 1.75rem/calc(.75em + .375rem) calc(.75em + .375rem) no-repeat}.custom-select.is-valid:focus,.was-validated .custom-select:valid:focus{border-color:#00bc8c;box-shadow:0 0 0 .2rem rgba(0,188,140,.25)}.form-check-input.is-valid~.form-check-label,.was-validated .form-check-input:valid~.form-check-label{color:#00bc8c}.form-check-input.is-valid~.valid-feedback,.form-check-input.is-valid~.valid-tooltip,.was-validated .form-check-input:valid~.valid-feedback,.was-validated .form-check-input:valid~.valid-tooltip{display:block}.custom-control-input.is-valid~.custom-control-label,.was-validated .custom-control-input:valid~.custom-control-label{color:#00bc8c}.custom-control-input.is-valid~.custom-control-label::before,.was-validated .custom-control-input:valid~.custom-control-label::before{border-color:#00bc8c}.custom-control-input.is-valid:checked~.custom-control-label::before,.was-validated .custom-control-input:valid:checked~.custom-control-label::before{border-color:#00efb2;background-color:#00efb2}.custom-control-input.is-valid:focus~.custom-control-label::before,.was-validated .custom-control-input:valid:focus~.custom-control-label::before{box-shadow:0 0 0 .2rem rgba(0,188,140,.25)}.custom-control-input.is-valid:focus:not(:checked)~.custom-control-label::before,.was-validated .custom-control-input:valid:focus:not(:checked)~.custom-control-label::before{border-color:#00bc8c}.custom-file-input.is-valid~.custom-file-label,.was-validated .custom-file-input:valid~.custom-file-label{border-color:#00bc8c}.custom-file-input.is-valid:focus~.custom-file-label,.was-validated .custom-file-input:valid:focus~.custom-file-label{border-color:#00bc8c;box-shadow:0 0 0 .2rem rgba(0,188,140,.25)}.invalid-feedback{display:none;width:100%;margin-top:.25rem;font-size:80%;color:#e74c3c}.invalid-tooltip{position:absolute;top:100%;left:0;z-index:5;display:none;max-width:100%;padding:.25rem .5rem;margin-top:.1rem;font-size:.825rem;line-height:1.5;color:#fff;background-color:rgba(231,76,60,.9);border-radius:.25rem}.form-row>.col>.invalid-tooltip,.form-row>[class*=col-]>.invalid-tooltip{left:5px}.is-invalid~.invalid-feedback,.is-invalid~.invalid-tooltip,.was-validated :invalid~.invalid-feedback,.was-validated :invalid~.invalid-tooltip{display:block}.form-control.is-invalid,.was-validated .form-control:invalid{border-color:#e74c3c;padding-right:calc(1.5em + .75rem);background-image:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='12' height='12' fill='none' stroke='%23e74c3c' viewBox='0 0 12 12'%3e%3ccircle cx='6' cy='6' r='4.5'/%3e%3cpath stroke-linejoin='round' d='M5.8 3.6h.4L6 6.5z'/%3e%3ccircle cx='6' cy='8.2' r='.6' fill='%23e74c3c' stroke='none'/%3e%3c/svg%3e");background-repeat:no-repeat;background-position:right calc(.375em + .1875rem) center;background-size:calc(.75em + .375rem) calc(.75em + .375rem)}.form-control.is-invalid:focus,.was-validated .form-control:invalid:focus{border-color:#e74c3c;box-shadow:0 0 0 .2rem rgba(231,76,60,.25)}.was-validated textarea.form-control:invalid,textarea.form-control.is-invalid{padding-right:calc(1.5em + .75rem);background-position:top calc(.375em + .1875rem) right calc(.375em + .1875rem)}.custom-select.is-invalid,.was-validated .custom-select:invalid{border-color:#e74c3c;padding-right:calc(.75em + 2.3125rem);background:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='4' height='5' viewBox='0 0 4 5'%3e%3cpath fill='%23303030' d='M2 0L0 2h4zm0 5L0 3h4z'/%3e%3c/svg%3e") right .75rem center/8px 10px no-repeat,#fff url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='12' height='12' fill='none' stroke='%23e74c3c' viewBox='0 0 12 12'%3e%3ccircle cx='6' cy='6' r='4.5'/%3e%3cpath stroke-linejoin='round' d='M5.8 3.6h.4L6 6.5z'/%3e%3ccircle cx='6' cy='8.2' r='.6' fill='%23e74c3c' stroke='none'/%3e%3c/svg%3e") center right 1.75rem/calc(.75em + .375rem) calc(.75em + .375rem) no-repeat}.custom-select.is-invalid:focus,.was-validated .custom-select:invalid:focus{border-color:#e74c3c;box-shadow:0 0 0 .2rem rgba(231,76,60,.25)}.form-check-input.is-invalid~.form-check-label,.was-validated .form-check-input:invalid~.form-check-label{color:#e74c3c}.form-check-input.is-invalid~.invalid-feedback,.form-check-input.is-invalid~.invalid-tooltip,.was-validated .form-check-input:invalid~.invalid-feedback,.was-validated .form-check-input:invalid~.invalid-tooltip{display:block}.custom-control-input.is-invalid~.custom-control-label,.was-validated .custom-control-input:invalid~.custom-control-label{color:#e74c3c}.custom-control-input.is-invalid~.custom-control-label::before,.was-validated .custom-control-input:invalid~.custom-control-label::before{border-color:#e74c3c}.custom-control-input.is-invalid:checked~.custom-control-label::before,.was-validated .custom-control-input:invalid:checked~.custom-control-label::before{border-color:#ed7669;background-color:#ed7669}.custom-control-input.is-invalid:focus~.custom-control-label::before,.was-validated .custom-control-input:invalid:focus~.custom-control-label::before{box-shadow:0 0 0 .2rem rgba(231,76,60,.25)}.custom-control-input.is-invalid:focus:not(:checked)~.custom-control-label::before,.was-validated .custom-control-input:invalid:focus:not(:checked)~.custom-control-label::before{border-color:#e74c3c}.custom-file-input.is-invalid~.custom-file-label,.was-validated .custom-file-input:invalid~.custom-file-label{border-color:#e74c3c}.custom-file-input.is-invalid:focus~.custom-file-label,.was-validated .custom-file-input:invalid:focus~.custom-file-label{border-color:#e74c3c;box-shadow:0 0 0 .2rem rgba(231,76,60,.25)}.form-inline{display:-ms-flexbox;display:flex;-ms-flex-flow:row wrap;flex-flow:row wrap;-ms-flex-align:center;align-items:center}.form-inline .form-check{width:100%}@media (min-width:576px){.form-inline label{display:-ms-flexbox;display:flex;-ms-flex-align:center;align-items:center;-ms-flex-pack:center;justify-content:center;margin-bottom:0}.form-inline .form-group{display:-ms-flexbox;display:flex;-ms-flex:0 0 auto;flex:0 0 auto;-ms-flex-flow:row wrap;flex-flow:row wrap;-ms-flex-align:center;align-items:center;margin-bottom:0}.form-inline .form-control{display:inline-block;width:auto;vertical-align:middle}.form-inline .form-control-plaintext{display:inline-block}.form-inline .custom-select,.form-inline .input-group{width:auto}.form-inline .form-check{display:-ms-flexbox;display:flex;-ms-flex-align:center;align-items:center;-ms-flex-pack:center;justify-content:center;width:auto;padding-left:0}.form-inline .form-check-input{position:relative;-ms-flex-negative:0;flex-shrink:0;margin-top:0;margin-right:.25rem;margin-left:0}.form-inline .custom-control{-ms-flex-align:center;align-items:center;-ms-flex-pack:center;justify-content:center}.form-inline .custom-control-label{margin-bottom:0}}.btn{display:inline-block;font-weight:400;color:#fff;text-align:center;vertical-align:middle;-webkit-user-select:none;-moz-user-select:none;-ms-user-select:none;user-select:none;background-color:transparent;border:1px solid transparent;padding:.375rem .75rem;font-size:.9375rem;line-height:1.5;border-radius:.25rem;transition:color .15s ease-in-out,background-color .15s ease-in-out,border-color .15s ease-in-out,box-shadow .15s ease-in-out}@media (prefers-reduced-motion:reduce){.btn{transition:none}}.btn:hover{color:#fff;text-decoration:none}.btn.focus,.btn:focus{outline:0;box-shadow:0 0 0 .2rem rgba(55,90,127,.25)}.btn.disabled,.btn:disabled{opacity:.65}.btn:not(:disabled):not(.disabled){cursor:pointer}a.btn.disabled,fieldset:disabled a.btn{pointer-events:none}.btn-primary{color:#fff;background-color:#375a7f;border-color:#375a7f}.btn-primary:hover{color:#fff;background-color:#2b4764;border-color:#28415b}.btn-primary.focus,.btn-primary:focus{color:#fff;background-color:#2b4764;border-color:#28415b;box-shadow:0 0 0 .2rem rgba(85,115,146,.5)}.btn-primary.disabled,.btn-primary:disabled{color:#fff;background-color:#375a7f;border-color:#375a7f}.btn-primary:not(:disabled):not(.disabled).active,.btn-primary:not(:disabled):not(.disabled):active,.show>.btn-primary.dropdown-toggle{color:#fff;background-color:#28415b;border-color:#243a53}.btn-primary:not(:disabled):not(.disabled).active:focus,.btn-primary:not(:disabled):not(.disabled):active:focus,.show>.btn-primary.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(85,115,146,.5)}.btn-secondary{color:#fff;background-color:#444;border-color:#444}.btn-secondary:hover{color:#fff;background-color:#313131;border-color:#2b2b2b}.btn-secondary.focus,.btn-secondary:focus{color:#fff;background-color:#313131;border-color:#2b2b2b;box-shadow:0 0 0 .2rem rgba(96,96,96,.5)}.btn-secondary.disabled,.btn-secondary:disabled{color:#fff;background-color:#444;border-color:#444}.btn-secondary:not(:disabled):not(.disabled).active,.btn-secondary:not(:disabled):not(.disabled):active,.show>.btn-secondary.dropdown-toggle{color:#fff;background-color:#2b2b2b;border-color:#242424}.btn-secondary:not(:disabled):not(.disabled).active:focus,.btn-secondary:not(:disabled):not(.disabled):active:focus,.show>.btn-secondary.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(96,96,96,.5)}.btn-success{color:#fff;background-color:#00bc8c;border-color:#00bc8c}.btn-success:hover{color:#fff;background-color:#009670;border-color:#008966}.btn-success.focus,.btn-success:focus{color:#fff;background-color:#009670;border-color:#008966;box-shadow:0 0 0 .2rem rgba(38,198,157,.5)}.btn-success.disabled,.btn-success:disabled{color:#fff;background-color:#00bc8c;border-color:#00bc8c}.btn-success:not(:disabled):not(.disabled).active,.btn-success:not(:disabled):not(.disabled):active,.show>.btn-success.dropdown-toggle{color:#fff;background-color:#008966;border-color:#007c5d}.btn-success:not(:disabled):not(.disabled).active:focus,.btn-success:not(:disabled):not(.disabled):active:focus,.show>.btn-success.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(38,198,157,.5)}.btn-info{color:#fff;background-color:#3498db;border-color:#3498db}.btn-info:hover{color:#fff;background-color:#2384c6;border-color:#217dbb}.btn-info.focus,.btn-info:focus{color:#fff;background-color:#2384c6;border-color:#217dbb;box-shadow:0 0 0 .2rem rgba(82,167,224,.5)}.btn-info.disabled,.btn-info:disabled{color:#fff;background-color:#3498db;border-color:#3498db}.btn-info:not(:disabled):not(.disabled).active,.btn-info:not(:disabled):not(.disabled):active,.show>.btn-info.dropdown-toggle{color:#fff;background-color:#217dbb;border-color:#1f76b0}.btn-info:not(:disabled):not(.disabled).active:focus,.btn-info:not(:disabled):not(.disabled):active:focus,.show>.btn-info.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(82,167,224,.5)}.btn-warning{color:#fff;background-color:#f39c12;border-color:#f39c12}.btn-warning:hover{color:#fff;background-color:#d4860b;border-color:#c87f0a}.btn-warning.focus,.btn-warning:focus{color:#fff;background-color:#d4860b;border-color:#c87f0a;box-shadow:0 0 0 .2rem rgba(245,171,54,.5)}.btn-warning.disabled,.btn-warning:disabled{color:#fff;background-color:#f39c12;border-color:#f39c12}.btn-warning:not(:disabled):not(.disabled).active,.btn-warning:not(:disabled):not(.disabled):active,.show>.btn-warning.dropdown-toggle{color:#fff;background-color:#c87f0a;border-color:#bc770a}.btn-warning:not(:disabled):not(.disabled).active:focus,.btn-warning:not(:disabled):not(.disabled):active:focus,.show>.btn-warning.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(245,171,54,.5)}.btn-danger{color:#fff;background-color:#e74c3c;border-color:#e74c3c}.btn-danger:hover{color:#fff;background-color:#e12e1c;border-color:#d62c1a}.btn-danger.focus,.btn-danger:focus{color:#fff;background-color:#e12e1c;border-color:#d62c1a;box-shadow:0 0 0 .2rem rgba(235,103,89,.5)}.btn-danger.disabled,.btn-danger:disabled{color:#fff;background-color:#e74c3c;border-color:#e74c3c}.btn-danger:not(:disabled):not(.disabled).active,.btn-danger:not(:disabled):not(.disabled):active,.show>.btn-danger.dropdown-toggle{color:#fff;background-color:#d62c1a;border-color:#ca2a19}.btn-danger:not(:disabled):not(.disabled).active:focus,.btn-danger:not(:disabled):not(.disabled):active:focus,.show>.btn-danger.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(235,103,89,.5)}.btn-light{color:#222;background-color:#adb5bd;border-color:#adb5bd}.btn-light:hover{color:#fff;background-color:#98a2ac;border-color:#919ca6}.btn-light.focus,.btn-light:focus{color:#fff;background-color:#98a2ac;border-color:#919ca6;box-shadow:0 0 0 .2rem rgba(152,159,166,.5)}.btn-light.disabled,.btn-light:disabled{color:#222;background-color:#adb5bd;border-color:#adb5bd}.btn-light:not(:disabled):not(.disabled).active,.btn-light:not(:disabled):not(.disabled):active,.show>.btn-light.dropdown-toggle{color:#fff;background-color:#919ca6;border-color:#8a95a1}.btn-light:not(:disabled):not(.disabled).active:focus,.btn-light:not(:disabled):not(.disabled):active:focus,.show>.btn-light.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(152,159,166,.5)}.btn-dark{color:#fff;background-color:#303030;border-color:#303030}.btn-dark:hover{color:#fff;background-color:#1d1d1d;border-color:#171717}.btn-dark.focus,.btn-dark:focus{color:#fff;background-color:#1d1d1d;border-color:#171717;box-shadow:0 0 0 .2rem rgba(79,79,79,.5)}.btn-dark.disabled,.btn-dark:disabled{color:#fff;background-color:#303030;border-color:#303030}.btn-dark:not(:disabled):not(.disabled).active,.btn-dark:not(:disabled):not(.disabled):active,.show>.btn-dark.dropdown-toggle{color:#fff;background-color:#171717;border-color:#101010}.btn-dark:not(:disabled):not(.disabled).active:focus,.btn-dark:not(:disabled):not(.disabled):active:focus,.show>.btn-dark.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(79,79,79,.5)}.btn-outline-primary{color:#375a7f;border-color:#375a7f}.btn-outline-primary:hover{color:#fff;background-color:#375a7f;border-color:#375a7f}.btn-outline-primary.focus,.btn-outline-primary:focus{box-shadow:0 0 0 .2rem rgba(55,90,127,.5)}.btn-outline-primary.disabled,.btn-outline-primary:disabled{color:#375a7f;background-color:transparent}.btn-outline-primary:not(:disabled):not(.disabled).active,.btn-outline-primary:not(:disabled):not(.disabled):active,.show>.btn-outline-primary.dropdown-toggle{color:#fff;background-color:#375a7f;border-color:#375a7f}.btn-outline-primary:not(:disabled):not(.disabled).active:focus,.btn-outline-primary:not(:disabled):not(.disabled):active:focus,.show>.btn-outline-primary.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(55,90,127,.5)}.btn-outline-secondary{color:#444;border-color:#444}.btn-outline-secondary:hover{color:#fff;background-color:#444;border-color:#444}.btn-outline-secondary.focus,.btn-outline-secondary:focus{box-shadow:0 0 0 .2rem rgba(68,68,68,.5)}.btn-outline-secondary.disabled,.btn-outline-secondary:disabled{color:#444;background-color:transparent}.btn-outline-secondary:not(:disabled):not(.disabled).active,.btn-outline-secondary:not(:disabled):not(.disabled):active,.show>.btn-outline-secondary.dropdown-toggle{color:#fff;background-color:#444;border-color:#444}.btn-outline-secondary:not(:disabled):not(.disabled).active:focus,.btn-outline-secondary:not(:disabled):not(.disabled):active:focus,.show>.btn-outline-secondary.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(68,68,68,.5)}.btn-outline-success{color:#00bc8c;border-color:#00bc8c}.btn-outline-success:hover{color:#fff;background-color:#00bc8c;border-color:#00bc8c}.btn-outline-success.focus,.btn-outline-success:focus{box-shadow:0 0 0 .2rem rgba(0,188,140,.5)}.btn-outline-success.disabled,.btn-outline-success:disabled{color:#00bc8c;background-color:transparent}.btn-outline-success:not(:disabled):not(.disabled).active,.btn-outline-success:not(:disabled):not(.disabled):active,.show>.btn-outline-success.dropdown-toggle{color:#fff;background-color:#00bc8c;border-color:#00bc8c}.btn-outline-success:not(:disabled):not(.disabled).active:focus,.btn-outline-success:not(:disabled):not(.disabled):active:focus,.show>.btn-outline-success.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(0,188,140,.5)}.btn-outline-info{color:#3498db;border-color:#3498db}.btn-outline-info:hover{color:#fff;background-color:#3498db;border-color:#3498db}.btn-outline-info.focus,.btn-outline-info:focus{box-shadow:0 0 0 .2rem rgba(52,152,219,.5)}.btn-outline-info.disabled,.btn-outline-info:disabled{color:#3498db;background-color:transparent}.btn-outline-info:not(:disabled):not(.disabled).active,.btn-outline-info:not(:disabled):not(.disabled):active,.show>.btn-outline-info.dropdown-toggle{color:#fff;background-color:#3498db;border-color:#3498db}.btn-outline-info:not(:disabled):not(.disabled).active:focus,.btn-outline-info:not(:disabled):not(.disabled):active:focus,.show>.btn-outline-info.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(52,152,219,.5)}.btn-outline-warning{color:#f39c12;border-color:#f39c12}.btn-outline-warning:hover{color:#fff;background-color:#f39c12;border-color:#f39c12}.btn-outline-warning.focus,.btn-outline-warning:focus{box-shadow:0 0 0 .2rem rgba(243,156,18,.5)}.btn-outline-warning.disabled,.btn-outline-warning:disabled{color:#f39c12;background-color:transparent}.btn-outline-warning:not(:disabled):not(.disabled).active,.btn-outline-warning:not(:disabled):not(.disabled):active,.show>.btn-outline-warning.dropdown-toggle{color:#fff;background-color:#f39c12;border-color:#f39c12}.btn-outline-warning:not(:disabled):not(.disabled).active:focus,.btn-outline-warning:not(:disabled):not(.disabled):active:focus,.show>.btn-outline-warning.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(243,156,18,.5)}.btn-outline-danger{color:#e74c3c;border-color:#e74c3c}.btn-outline-danger:hover{color:#fff;background-color:#e74c3c;border-color:#e74c3c}.btn-outline-danger.focus,.btn-outline-danger:focus{box-shadow:0 0 0 .2rem rgba(231,76,60,.5)}.btn-outline-danger.disabled,.btn-outline-danger:disabled{color:#e74c3c;background-color:transparent}.btn-outline-danger:not(:disabled):not(.disabled).active,.btn-outline-danger:not(:disabled):not(.disabled):active,.show>.btn-outline-danger.dropdown-toggle{color:#fff;background-color:#e74c3c;border-color:#e74c3c}.btn-outline-danger:not(:disabled):not(.disabled).active:focus,.btn-outline-danger:not(:disabled):not(.disabled):active:focus,.show>.btn-outline-danger.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(231,76,60,.5)}.btn-outline-light{color:#adb5bd;border-color:#adb5bd}.btn-outline-light:hover{color:#222;background-color:#adb5bd;border-color:#adb5bd}.btn-outline-light.focus,.btn-outline-light:focus{box-shadow:0 0 0 .2rem rgba(173,181,189,.5)}.btn-outline-light.disabled,.btn-outline-light:disabled{color:#adb5bd;background-color:transparent}.btn-outline-light:not(:disabled):not(.disabled).active,.btn-outline-light:not(:disabled):not(.disabled):active,.show>.btn-outline-light.dropdown-toggle{color:#222;background-color:#adb5bd;border-color:#adb5bd}.btn-outline-light:not(:disabled):not(.disabled).active:focus,.btn-outline-light:not(:disabled):not(.disabled):active:focus,.show>.btn-outline-light.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(173,181,189,.5)}.btn-outline-dark{color:#303030;border-color:#303030}.btn-outline-dark:hover{color:#fff;background-color:#303030;border-color:#303030}.btn-outline-dark.focus,.btn-outline-dark:focus{box-shadow:0 0 0 .2rem rgba(48,48,48,.5)}.btn-outline-dark.disabled,.btn-outline-dark:disabled{color:#303030;background-color:transparent}.btn-outline-dark:not(:disabled):not(.disabled).active,.btn-outline-dark:not(:disabled):not(.disabled):active,.show>.btn-outline-dark.dropdown-toggle{color:#fff;background-color:#303030;border-color:#303030}.btn-outline-dark:not(:disabled):not(.disabled).active:focus,.btn-outline-dark:not(:disabled):not(.disabled):active:focus,.show>.btn-outline-dark.dropdown-toggle:focus{box-shadow:0 0 0 .2rem rgba(48,48,48,.5)}.btn-link{font-weight:400;color:#00bc8c;text-decoration:none}.btn-link:hover{color:#007053;text-decoration:underline}.btn-link.focus,.btn-link:focus{text-decoration:underline}.btn-link.disabled,.btn-link:disabled{color:#888;pointer-events:none}.btn-group-lg>.btn,.btn-lg{padding:.5rem 1rem;font-size:1.171875rem;line-height:1.5;border-radius:.3rem}.btn-group-sm>.btn,.btn-sm{padding:.25rem .5rem;font-size:.825rem;line-height:1.5;border-radius:.2rem}.btn-block{display:block;width:100%}.btn-block+.btn-block{margin-top:.5rem}input[type=button].btn-block,input[type=reset].btn-block,input[type=submit].btn-block{width:100%}.fade{transition:opacity .15s linear}@media (prefers-reduced-motion:reduce){.fade{transition:none}}.fade:not(.show){opacity:0}.collapse:not(.show){display:none}.collapsing{position:relative;height:0;overflow:hidden;transition:height .35s ease}@media (prefers-reduced-motion:reduce){.collapsing{transition:none}}.dropdown,.dropleft,.dropright,.dropup{position:relative}.dropdown-toggle{white-space:nowrap}.dropdown-toggle::after{display:inline-block;margin-left:.255em;vertical-align:.255em;content:"";border-top:.3em solid;border-right:.3em solid transparent;border-bottom:0;border-left:.3em solid transparent}.dropdown-toggle:empty::after{margin-left:0}.dropdown-menu{position:absolute;top:100%;left:0;z-index:1000;display:none;float:left;min-width:10rem;padding:.5rem 0;margin:.125rem 0 0;font-size:.9375rem;color:#fff;text-align:left;list-style:none;background-color:#222;background-clip:padding-box;border:1px solid #444;border-radius:.25rem}.dropdown-menu-left{right:auto;left:0}.dropdown-menu-right{right:0;left:auto}@media (min-width:576px){.dropdown-menu-sm-left{right:auto;left:0}.dropdown-menu-sm-right{right:0;left:auto}}@media (min-width:768px){.dropdown-menu-md-left{right:auto;left:0}.dropdown-menu-md-right{right:0;left:auto}}@media (min-width:992px){.dropdown-menu-lg-left{right:auto;left:0}.dropdown-menu-lg-right{right:0;left:auto}}@media (min-width:1200px){.dropdown-menu-xl-left{right:auto;left:0}.dropdown-menu-xl-right{right:0;left:auto}}.dropup .dropdown-menu{top:auto;bottom:100%;margin-top:0;margin-bottom:.125rem}.dropup .dropdown-toggle::after{display:inline-block;margin-left:.255em;vertical-align:.255em;content:"";border-top:0;border-right:.3em solid transparent;border-bottom:.3em solid;border-left:.3em solid transparent}.dropup .dropdown-toggle:empty::after{margin-left:0}.dropright .dropdown-menu{top:0;right:auto;left:100%;margin-top:0;margin-left:.125rem}.dropright .dropdown-toggle::after{display:inline-block;margin-left:.255em;vertical-align:.255em;content:"";border-top:.3em solid transparent;border-right:0;border-bottom:.3em solid transparent;border-left:.3em solid}.dropright .dropdown-toggle:empty::after{margin-left:0}.dropright .dropdown-toggle::after{vertical-align:0}.dropleft .dropdown-menu{top:0;right:100%;left:auto;margin-top:0;margin-right:.125rem}.dropleft .dropdown-toggle::after{display:inline-block;margin-left:.255em;vertical-align:.255em;content:""}.dropleft .dropdown-toggle::after{display:none}.dropleft .dropdown-toggle::before{display:inline-block;margin-right:.255em;vertical-align:.255em;content:"";border-top:.3em solid transparent;border-right:.3em solid;border-bottom:.3em solid transparent}.dropleft .dropdown-toggle:empty::after{margin-left:0}.dropleft .dropdown-toggle::before{vertical-align:0}.dropdown-menu[x-placement^=bottom],.dropdown-menu[x-placement^=left],.dropdown-menu[x-placement^=right],.dropdown-menu[x-placement^=top]{right:auto;bottom:auto}.dropdown-divider{height:0;margin:.5rem 0;overflow:hidden;border-top:1px solid #444}.dropdown-item{display:block;width:100%;padding:.25rem 1.5rem;clear:both;font-weight:400;color:#fff;text-align:inherit;white-space:nowrap;background-color:transparent;border:0}.dropdown-item:focus,.dropdown-item:hover{color:#fff;text-decoration:none;background-color:#375a7f}.dropdown-item.active,.dropdown-item:active{color:#fff;text-decoration:none;background-color:#375a7f}.dropdown-item.disabled,.dropdown-item:disabled{color:#adb5bd;pointer-events:none;background-color:transparent}.dropdown-menu.show{display:block}.dropdown-header{display:block;padding:.5rem 1.5rem;margin-bottom:0;font-size:.825rem;color:#888;white-space:nowrap}.dropdown-item-text{display:block;padding:.25rem 1.5rem;color:#fff}.btn-group,.btn-group-vertical{position:relative;display:-ms-inline-flexbox;display:inline-flex;vertical-align:middle}.btn-group-vertical>.btn,.btn-group>.btn{position:relative;-ms-flex:1 1 auto;flex:1 1 auto}.btn-group-vertical>.btn:hover,.btn-group>.btn:hover{z-index:1}.btn-group-vertical>.btn.active,.btn-group-vertical>.btn:active,.btn-group-vertical>.btn:focus,.btn-group>.btn.active,.btn-group>.btn:active,.btn-group>.btn:focus{z-index:1}.btn-toolbar{display:-ms-flexbox;display:flex;-ms-flex-wrap:wrap;flex-wrap:wrap;-ms-flex-pack:start;justify-content:flex-start}.btn-toolbar .input-group{width:auto}.btn-group>.btn-group:not(:first-child),.btn-group>.btn:not(:first-child){margin-left:-1px}.btn-group>.btn-group:not(:last-child)>.btn,.btn-group>.btn:not(:last-child):not(.dropdown-toggle){border-top-right-radius:0;border-bottom-right-radius:0}.btn-group>.btn-group:not(:first-child)>.btn,.btn-group>.btn:not(:first-child){border-top-left-radius:0;border-bottom-left-radius:0}.dropdown-toggle-split{padding-right:.5625rem;padding-left:.5625rem}.dropdown-toggle-split::after,.dropright .dropdown-toggle-split::after,.dropup .dropdown-toggle-split::after{margin-left:0}.dropleft .dropdown-toggle-split::before{margin-right:0}.btn-group-sm>.btn+.dropdown-toggle-split,.btn-sm+.dropdown-toggle-split{padding-right:.375rem;padding-left:.375rem}.btn-group-lg>.btn+.dropdown-toggle-split,.btn-lg+.dropdown-toggle-split{padding-right:.75rem;padding-left:.75rem}.btn-group-vertical{-ms-flex-direction:column;flex-direction:column;-ms-flex-align:start;align-items:flex-start;-ms-flex-pack:center;justify-content:center}.btn-group-vertical>.btn,.btn-group-vertical>.btn-group{width:100%}.btn-group-vertical>.btn-group:not(:first-child),.btn-group-vertical>.btn:not(:first-child){margin-top:-1px}.btn-group-vertical>.btn-group:not(:last-child)>.btn,.btn-group-vertical>.btn:not(:last-child):not(.dropdown-toggle){border-bottom-right-radius:0;border-bottom-left-radius:0}.btn-group-vertical>.btn-group:not(:first-child)>.btn,.btn-group-vertical>.btn:not(:first-child){border-top-left-radius:0;border-top-right-radius:0}.btn-group-toggle>.btn,.btn-group-toggle>.btn-group>.btn{margin-bottom:0}.btn-group-toggle>.btn input[type=checkbox],.btn-group-toggle>.btn input[type=radio],.btn-group-toggle>.btn-group>.btn input[type=checkbox],.btn-group-toggle>.btn-group>.btn input[type=radio]{position:absolute;clip:rect(0,0,0,0);pointer-events:none}.input-group{position:relative;display:-ms-flexbox;display:flex;-ms-flex-wrap:wrap;flex-wrap:wrap;-ms-flex-align:stretch;align-items:stretch;width:100%}.input-group>.custom-file,.input-group>.custom-select,.input-group>.form-control,.input-group>.form-control-plaintext{position:relative;-ms-flex:1 1 auto;flex:1 1 auto;width:1%;min-width:0;margin-bottom:0}.input-group>.custom-file+.custom-file,.input-group>.custom-file+.custom-select,.input-group>.custom-file+.form-control,.input-group>.custom-select+.custom-file,.input-group>.custom-select+.custom-select,.input-group>.custom-select+.form-control,.input-group>.form-control+.custom-file,.input-group>.form-control+.custom-select,.input-group>.form-control+.form-control,.input-group>.form-control-plaintext+.custom-file,.input-group>.form-control-plaintext+.custom-select,.input-group>.form-control-plaintext+.form-control{margin-left:-1px}.input-group>.custom-file .custom-file-input:focus~.custom-file-label,.input-group>.custom-select:focus,.input-group>.form-control:focus{z-index:3}.input-group>.custom-file .custom-file-input:focus{z-index:4}.input-group>.custom-select:not(:first-child),.input-group>.form-control:not(:first-child){border-top-left-radius:0;border-bottom-left-radius:0}.input-group>.custom-file{display:-ms-flexbox;display:flex;-ms-flex-align:center;align-items:center}.input-group>.custom-file:not(:first-child) .custom-file-label,.input-group>.custom-file:not(:last-child) .custom-file-label{border-top-left-radius:0;border-bottom-left-radius:0}.input-group:not(.has-validation)>.custom-file:not(:last-child) .custom-file-label::after,.input-group:not(.has-validation)>.custom-select:not(:last-child),.input-group:not(.has-validation)>.form-control:not(:last-child){border-top-right-radius:0;border-bottom-right-radius:0}.input-group.has-validation>.custom-file:nth-last-child(n+3) .custom-file-label::after,.input-group.has-validation>.custom-select:nth-last-child(n+3),.input-group.has-validation>.form-control:nth-last-child(n+3){border-top-right-radius:0;border-bottom-right-radius:0}.input-group-append,.input-group-prepend{display:-ms-flexbox;display:flex}.input-group-append .btn,.input-group-prepend .btn{position:relative;z-index:2}.input-group-append .btn:focus,.input-group-prepend .btn:focus{z-index:3}.input-group-append .btn+.btn,.input-group-append .btn+.input-group-text,.input-group-append .input-group-text+.btn,.input-group-append .input-group-text+.input-group-text,.input-group-prepend .btn+.btn,.input-group-prepend .btn+.input-group-text,.input-group-prepend .input-group-text+.btn,.input-group-prepend .input-group-text+.input-group-text{margin-left:-1px}.input-group-prepend{margin-right:-1px}.input-group-append{margin-left:-1px}.input-group-text{display:-ms-flexbox;display:flex;-ms-flex-align:center;align-items:center;padding:.375rem .75rem;margin-bottom:0;font-size:.9375rem;font-weight:400;line-height:1.5;color:#adb5bd;text-align:center;white-space:nowrap;background-color:#444;border:1px solid #222;border-radius:.25rem}.input-group-text input[type=checkbox],.input-group-text input[type=radio]{margin-top:0}.input-group-lg>.custom-select,.input-group-lg>.form-control:not(textarea){height:calc(1.5em + 1rem + 2px)}.input-group-lg>.custom-select,.input-group-lg>.form-control,.input-group-lg>.input-group-append>.btn,.input-group-lg>.input-group-append>.input-group-text,.input-group-lg>.input-group-prepend>.btn,.input-group-lg>.input-group-prepend>.input-group-text{padding:.5rem 1rem;font-size:1.171875rem;line-height:1.5;border-radius:.3rem}.input-group-sm>.custom-select,.input-group-sm>.form-control:not(textarea){height:calc(1.5em + .5rem + 2px)}.input-group-sm>.custom-select,.input-group-sm>.form-control,.input-group-sm>.input-group-append>.btn,.input-group-sm>.input-group-append>.input-group-text,.input-group-sm>.input-group-prepend>.btn,.input-group-sm>.input-group-prepend>.input-group-text{padding:.25rem .5rem;font-size:.825rem;line-height:1.5;border-radius:.2rem}.input-group-lg>.custom-select,.input-group-sm>.custom-select{padding-right:1.75rem}.input-group.has-validation>.input-group-append:nth-last-child(n+3)>.btn,.input-group.has-validation>.input-group-append:nth-last-child(n+3)>.input-group-text,.input-group:not(.has-validation)>.input-group-append:not(:last-child)>.btn,.input-group:not(.has-validation)>.input-group-append:not(:last-child)>.input-group-text,.input-group>.input-group-append:last-child>.btn:not(:last-child):not(.dropdown-toggle),.input-group>.input-group-append:last-child>.input-group-text:not(:last-child),.input-group>.input-group-prepend>.btn,.input-group>.input-group-prepend>.input-group-text{border-top-right-radius:0;border-bottom-right-radius:0}.input-group>.input-group-append>.btn,.input-group>.input-group-append>.input-group-text,.input-group>.input-group-prepend:first-child>.btn:not(:first-child),.input-group>.input-group-prepend:first-child>.input-group-text:not(:first-child),.input-group>.input-group-prepend:not(:first-child)>.btn,.input-group>.input-group-prepend:not(:first-child)>.input-group-text{border-top-left-radius:0;border-bottom-left-radius:0}.custom-control{position:relative;z-index:1;display:block;min-height:1.40625rem;padding-left:1.5rem;-webkit-print-color-adjust:exact;color-adjust:exact}.custom-control-inline{display:-ms-inline-flexbox;display:inline-flex;margin-right:1rem}.custom-control-input{position:absolute;left:0;z-index:-1;width:1rem;height:1.203125rem;opacity:0}.custom-control-input:checked~.custom-control-label::before{color:#fff;border-color:#375a7f;background-color:#375a7f}.custom-control-input:focus~.custom-control-label::before{box-shadow:0 0 0 .2rem rgba(55,90,127,.25)}.custom-control-input:focus:not(:checked)~.custom-control-label::before{border-color:#739ac2}.custom-control-input:not(:disabled):active~.custom-control-label::before{color:#fff;background-color:#97b3d2;border-color:#97b3d2}.custom-control-input:disabled~.custom-control-label,.custom-control-input[disabled]~.custom-control-label{color:#888}.custom-control-input:disabled~.custom-control-label::before,.custom-control-input[disabled]~.custom-control-label::before{background-color:#ebebeb}.custom-control-label{position:relative;margin-bottom:0;vertical-align:top}.custom-control-label::before{position:absolute;top:.203125rem;left:-1.5rem;display:block;width:1rem;height:1rem;pointer-events:none;content:"";background-color:#fff;border:#adb5bd solid 1px}.custom-control-label::after{position:absolute;top:.203125rem;left:-1.5rem;display:block;width:1rem;height:1rem;content:"";background:50%/50% 50% no-repeat}.custom-checkbox .custom-control-label::before{border-radius:.25rem}.custom-checkbox .custom-control-input:checked~.custom-control-label::after{background-image:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='8' height='8' viewBox='0 0 8 8'%3e%3cpath fill='%23fff' d='M6.564.75l-3.59 3.612-1.538-1.55L0 4.26l2.974 2.99L8 2.193z'/%3e%3c/svg%3e")}.custom-checkbox .custom-control-input:indeterminate~.custom-control-label::before{border-color:#375a7f;background-color:#375a7f}.custom-checkbox .custom-control-input:indeterminate~.custom-control-label::after{background-image:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='4' height='4' viewBox='0 0 4 4'%3e%3cpath stroke='%23fff' d='M0 2h4'/%3e%3c/svg%3e")}.custom-checkbox .custom-control-input:disabled:checked~.custom-control-label::before{background-color:rgba(55,90,127,.5)}.custom-checkbox .custom-control-input:disabled:indeterminate~.custom-control-label::before{background-color:rgba(55,90,127,.5)}.custom-radio .custom-control-label::before{border-radius:50%}.custom-radio .custom-control-input:checked~.custom-control-label::after{background-image:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='12' height='12' viewBox='-4 -4 8 8'%3e%3ccircle r='3' fill='%23fff'/%3e%3c/svg%3e")}.custom-radio .custom-control-input:disabled:checked~.custom-control-label::before{background-color:rgba(55,90,127,.5)}.custom-switch{padding-left:2.25rem}.custom-switch .custom-control-label::before{left:-2.25rem;width:1.75rem;pointer-events:all;border-radius:.5rem}.custom-switch .custom-control-label::after{top:calc(.203125rem + 2px);left:calc(-2.25rem + 2px);width:calc(1rem - 4px);height:calc(1rem - 4px);background-color:#adb5bd;border-radius:.5rem;transition:background-color .15s ease-in-out,border-color .15s ease-in-out,box-shadow .15s ease-in-out,-webkit-transform .15s ease-in-out;transition:transform .15s ease-in-out,background-color .15s ease-in-out,border-color .15s ease-in-out,box-shadow .15s ease-in-out;transition:transform .15s ease-in-out,background-color .15s ease-in-out,border-color .15s ease-in-out,box-shadow .15s ease-in-out,-webkit-transform .15s ease-in-out}@media (prefers-reduced-motion:reduce){.custom-switch .custom-control-label::after{transition:none}}.custom-switch .custom-control-input:checked~.custom-control-label::after{background-color:#fff;-webkit-transform:translateX(.75rem);transform:translateX(.75rem)}.custom-switch .custom-control-input:disabled:checked~.custom-control-label::before{background-color:rgba(55,90,127,.5)}.custom-select{display:inline-block;width:100%;height:calc(1.5em + .75rem + 2px);padding:.375rem 1.75rem .375rem .75rem;font-size:.9375rem;font-weight:400;line-height:1.5;color:#444;vertical-align:middle;background:#fff url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='4' height='5' viewBox='0 0 4 5'%3e%3cpath fill='%23303030' d='M2 0L0 2h4zm0 5L0 3h4z'/%3e%3c/svg%3e") right .75rem center/8px 10px no-repeat;border:1px solid #222;border-radius:.25rem;-webkit-appearance:none;-moz-appearance:none;appearance:none}.custom-select:focus{border-color:#739ac2;outline:0;box-shadow:0 0 0 .2rem rgba(55,90,127,.25)}.custom-select:focus::-ms-value{color:#444;background-color:#fff}.custom-select[multiple],.custom-select[size]:not([size="1"]){height:auto;padding-right:.75rem;background-image:none}.custom-select:disabled{color:#888;background-color:#ebebeb}.custom-select::-ms-expand{display:none}.custom-select:-moz-focusring{color:transparent;text-shadow:0 0 0 #444}.custom-select-sm{height:calc(1.5em + .5rem + 2px);padding-top:.25rem;padding-bottom:.25rem;padding-left:.5rem;font-size:.825rem}.custom-select-lg{height:calc(1.5em + 1rem + 2px);padding-top:.5rem;padding-bottom:.5rem;padding-left:1rem;font-size:1.171875rem}.custom-file{position:relative;display:inline-block;width:100%;height:calc(1.5em + .75rem + 2px);margin-bottom:0}.custom-file-input{position:relative;z-index:2;width:100%;height:calc(1.5em + .75rem + 2px);margin:0;overflow:hidden;opacity:0}.custom-file-input:focus~.custom-file-label{border-color:#739ac2;box-shadow:0 0 0 .2rem rgba(55,90,127,.25)}.custom-file-input:disabled~.custom-file-label,.custom-file-input[disabled]~.custom-file-label{background-color:#ebebeb}.custom-file-input:lang(en)~.custom-file-label::after{content:"Browse"}.custom-file-input~.custom-file-label[data-browse]::after{content:attr(data-browse)}.custom-file-label{position:absolute;top:0;right:0;left:0;z-index:1;height:calc(1.5em + .75rem + 2px);padding:.375rem .75rem;overflow:hidden;font-weight:400;line-height:1.5;color:#adb5bd;background-color:#fff;border:1px solid #222;border-radius:.25rem}.custom-file-label::after{position:absolute;top:0;right:0;bottom:0;z-index:3;display:block;height:calc(1.5em + .75rem);padding:.375rem .75rem;line-height:1.5;color:#adb5bd;content:"Browse";background-color:#444;border-left:inherit;border-radius:0 .25rem .25rem 0}.custom-range{width:100%;height:1.4rem;padding:0;background-color:transparent;-webkit-appearance:none;-moz-appearance:none;appearance:none}.custom-range:focus{outline:0}.custom-range:focus::-webkit-slider-thumb{box-shadow:0 0 0 1px #222,0 0 0 .2rem rgba(55,90,127,.25)}.custom-range:focus::-moz-range-thumb{box-shadow:0 0 0 1px #222,0 0 0 .2rem rgba(55,90,127,.25)}.custom-range:focus::-ms-thumb{box-shadow:0 0 0 1px #222,0 0 0 .2rem rgba(55,90,127,.25)}.custom-range::-moz-focus-outer{border:0}.custom-range::-webkit-slider-thumb{width:1rem;height:1rem;margin-top:-.25rem;background-color:#375a7f;border:0;border-radius:1rem;-webkit-transition:background-color .15s ease-in-out,border-color .15s ease-in-out,box-shadow .15s ease-in-out;transition:background-color .15s ease-in-out,border-color .15s ease-in-out,box-shadow .15s ease-in-out;-webkit-appearance:none;appearance:none}@media (prefers-reduced-motion:reduce){.custom-range::-webkit-slider-thumb{-webkit-transition:none;transition:none}}.custom-range::-webkit-slider-thumb:active{background-color:#97b3d2}.custom-range::-webkit-slider-runnable-track{width:100%;height:.5rem;color:transparent;cursor:pointer;background-color:#dee2e6;border-color:transparent;border-radius:1rem}.custom-range::-moz-range-thumb{width:1rem;height:1rem;background-color:#375a7f;border:0;border-radius:1rem;-moz-transition:background-color .15s ease-in-out,border-color .15s ease-in-out,box-shadow .15s ease-in-out;transition:background-color .15s ease-in-out,border-color .15s ease-in-out,box-shadow .15s ease-in-out;-moz-appearance:none;appearance:none}@media (prefers-reduced-motion:reduce){.custom-range::-moz-range-thumb{-moz-transition:none;transition:none}}.custom-range::-moz-range-thumb:active{background-color:#97b3d2}.custom-range::-moz-range-track{width:100%;height:.5rem;color:transparent;cursor:pointer;background-color:#dee2e6;border-color:transparent;border-radius:1rem}.custom-range::-ms-thumb{width:1rem;height:1rem;margin-top:0;margin-right:.2rem;margin-left:.2rem;background-color:#375a7f;border:0;border-radius:1rem;-ms-transition:background-color .15s ease-in-out,border-color .15s ease-in-out,box-shadow .15s ease-in-out;transition:background-color .15s ease-in-out,border-color .15s ease-in-out,box-shadow .15s ease-in-out;appearance:none}@media (prefers-reduced-motion:reduce){.custom-range::-ms-thumb{-ms-transition:none;transition:none}}.custom-range::-ms-thumb:active{background-color:#97b3d2}.custom-range::-ms-track{width:100%;height:.5rem;color:transparent;cursor:pointer;background-color:transparent;border-color:transparent;border-width:.5rem}.custom-range::-ms-fill-lower{background-color:#dee2e6;border-radius:1rem}.custom-range::-ms-fill-upper{margin-right:15px;background-color:#dee2e6;border-radius:1rem}.custom-range:disabled::-webkit-slider-thumb{background-color:#adb5bd}.custom-range:disabled::-webkit-slider-runnable-track{cursor:default}.custom-range:disabled::-moz-range-thumb{background-color:#adb5bd}.custom-range:disabled::-moz-range-track{cursor:default}.custom-range:disabled::-ms-thumb{background-color:#adb5bd}.custom-control-label::before,.custom-file-label,.custom-select{transition:background-color .15s ease-in-out,border-color .15s ease-in-out,box-shadow .15s ease-in-out}@media (prefers-reduced-motion:reduce){.custom-control-label::before,.custom-file-label,.custom-select{transition:none}}.nav{display:-ms-flexbox;display:flex;-ms-flex-wrap:wrap;flex-wrap:wrap;padding-left:0;margin-bottom:0;list-style:none}.nav-link{display:block;padding:.5rem 2rem}.nav-link:focus,.nav-link:hover{text-decoration:none}.nav-link.disabled{color:#adb5bd;pointer-events:none;cursor:default}.nav-tabs{border-bottom:1px solid #444}.nav-tabs .nav-link{margin-bottom:-1px;border:1px solid transparent;border-top-left-radius:.25rem;border-top-right-radius:.25rem}.nav-tabs .nav-link:focus,.nav-tabs .nav-link:hover{border-color:#444 #444 transparent}.nav-tabs .nav-link.disabled{color:#adb5bd;background-color:transparent;border-color:transparent}.nav-tabs .nav-item.show .nav-link,.nav-tabs .nav-link.active{color:#fff;background-color:#222;border-color:#444 #444 transparent}.nav-tabs .dropdown-menu{margin-top:-1px;border-top-left-radius:0;border-top-right-radius:0}.nav-pills .nav-link{border-radius:.25rem}.nav-pills .nav-link.active,.nav-pills .show>.nav-link{color:#fff;background-color:#375a7f}.nav-fill .nav-item,.nav-fill>.nav-link{-ms-flex:1 1 auto;flex:1 1 auto;text-align:center}.nav-justified .nav-item,.nav-justified>.nav-link{-ms-flex-preferred-size:0;flex-basis:0;-ms-flex-positive:1;flex-grow:1;text-align:center}.tab-content>.tab-pane{display:none}.tab-content>.active{display:block}.navbar{position:relative;display:-ms-flexbox;display:flex;-ms-flex-wrap:wrap;flex-wrap:wrap;-ms-flex-align:center;align-items:center;-ms-flex-pack:justify;justify-content:space-between;padding:1rem 1rem}.navbar .container,.navbar .container-fluid,.navbar .container-lg,.navbar .container-md,.navbar .container-sm,.navbar .container-xl{display:-ms-flexbox;display:flex;-ms-flex-wrap:wrap;flex-wrap:wrap;-ms-flex-align:center;align-items:center;-ms-flex-pack:justify;justify-content:space-between}.navbar-brand{display:inline-block;padding-top:.324219rem;padding-bottom:.324219rem;margin-right:1rem;font-size:1.171875rem;line-height:inherit;white-space:nowrap}.navbar-brand:focus,.navbar-brand:hover{text-decoration:none}.navbar-nav{display:-ms-flexbox;display:flex;-ms-flex-direction:column;flex-direction:column;padding-left:0;margin-bottom:0;list-style:none}.navbar-nav .nav-link{padding-right:0;padding-left:0}.navbar-nav .dropdown-menu{position:static;float:none}.navbar-text{display:inline-block;padding-top:.5rem;padding-bottom:.5rem}.navbar-collapse{-ms-flex-preferred-size:100%;flex-basis:100%;-ms-flex-positive:1;flex-grow:1;-ms-flex-align:center;align-items:center}.navbar-toggler{padding:.25rem .75rem;font-size:1.171875rem;line-height:1;background-color:transparent;border:1px solid transparent;border-radius:.25rem}.navbar-toggler:focus,.navbar-toggler:hover{text-decoration:none}.navbar-toggler-icon{display:inline-block;width:1.5em;height:1.5em;vertical-align:middle;content:"";background:50%/100% 100% no-repeat}.navbar-nav-scroll{max-height:75vh;overflow-y:auto}@media (max-width:575.98px){.navbar-expand-sm>.container,.navbar-expand-sm>.container-fluid,.navbar-expand-sm>.container-lg,.navbar-expand-sm>.container-md,.navbar-expand-sm>.container-sm,.navbar-expand-sm>.container-xl{padding-right:0;padding-left:0}}@media (min-width:576px){.navbar-expand-sm{-ms-flex-flow:row nowrap;flex-flow:row nowrap;-ms-flex-pack:start;justify-content:flex-start}.navbar-expand-sm .navbar-nav{-ms-flex-direction:row;flex-direction:row}.navbar-expand-sm .navbar-nav .dropdown-menu{position:absolute}.navbar-expand-sm .navbar-nav .nav-link{padding-right:.5rem;padding-left:.5rem}.navbar-expand-sm>.container,.navbar-expand-sm>.container-fluid,.navbar-expand-sm>.container-lg,.navbar-expand-sm>.container-md,.navbar-expand-sm>.container-sm,.navbar-expand-sm>.container-xl{-ms-flex-wrap:nowrap;flex-wrap:nowrap}.navbar-expand-sm .navbar-nav-scroll{overflow:visible}.navbar-expand-sm .navbar-collapse{display:-ms-flexbox!important;display:flex!important;-ms-flex-preferred-size:auto;flex-basis:auto}.navbar-expand-sm .navbar-toggler{display:none}}@media (max-width:767.98px){.navbar-expand-md>.container,.navbar-expand-md>.container-fluid,.navbar-expand-md>.container-lg,.navbar-expand-md>.container-md,.navbar-expand-md>.container-sm,.navbar-expand-md>.container-xl{padding-right:0;padding-left:0}}@media (min-width:768px){.navbar-expand-md{-ms-flex-flow:row nowrap;flex-flow:row nowrap;-ms-flex-pack:start;justify-content:flex-start}.navbar-expand-md .navbar-nav{-ms-flex-direction:row;flex-direction:row}.navbar-expand-md .navbar-nav .dropdown-menu{position:absolute}.navbar-expand-md .navbar-nav .nav-link{padding-right:.5rem;padding-left:.5rem}.navbar-expand-md>.container,.navbar-expand-md>.container-fluid,.navbar-expand-md>.container-lg,.navbar-expand-md>.container-md,.navbar-expand-md>.container-sm,.navbar-expand-md>.container-xl{-ms-flex-wrap:nowrap;flex-wrap:nowrap}.navbar-expand-md .navbar-nav-scroll{overflow:visible}.navbar-expand-md .navbar-collapse{display:-ms-flexbox!important;display:flex!important;-ms-flex-preferred-size:auto;flex-basis:auto}.navbar-expand-md .navbar-toggler{display:none}}@media (max-width:991.98px){.navbar-expand-lg>.container,.navbar-expand-lg>.container-fluid,.navbar-expand-lg>.container-lg,.navbar-expand-lg>.container-md,.navbar-expand-lg>.container-sm,.navbar-expand-lg>.container-xl{padding-right:0;padding-left:0}}@media (min-width:992px){.navbar-expand-lg{-ms-flex-flow:row nowrap;flex-flow:row nowrap;-ms-flex-pack:start;justify-content:flex-start}.navbar-expand-lg .navbar-nav{-ms-flex-direction:row;flex-direction:row}.navbar-expand-lg .navbar-nav .dropdown-menu{position:absolute}.navbar-expand-lg .navbar-nav .nav-link{padding-right:.5rem;padding-left:.5rem}.navbar-expand-lg>.container,.navbar-expand-lg>.container-fluid,.navbar-expand-lg>.container-lg,.navbar-expand-lg>.container-md,.navbar-expand-lg>.container-sm,.navbar-expand-lg>.container-xl{-ms-flex-wrap:nowrap;flex-wrap:nowrap}.navbar-expand-lg .navbar-nav-scroll{overflow:visible}.navbar-expand-lg .navbar-collapse{display:-ms-flexbox!important;display:flex!important;-ms-flex-preferred-size:auto;flex-basis:auto}.navbar-expand-lg .navbar-toggler{display:none}}@media (max-width:1199.98px){.navbar-expand-xl>.container,.navbar-expand-xl>.container-fluid,.navbar-expand-xl>.container-lg,.navbar-expand-xl>.container-md,.navbar-expand-xl>.container-sm,.navbar-expand-xl>.container-xl{padding-right:0;padding-left:0}}@media (min-width:1200px){.navbar-expand-xl{-ms-flex-flow:row nowrap;flex-flow:row nowrap;-ms-flex-pack:start;justify-content:flex-start}.navbar-expand-xl .navbar-nav{-ms-flex-direction:row;flex-direction:row}.navbar-expand-xl .navbar-nav .dropdown-menu{position:absolute}.navbar-expand-xl .navbar-nav .nav-link{padding-right:.5rem;padding-left:.5rem}.navbar-expand-xl>.container,.navbar-expand-xl>.container-fluid,.navbar-expand-xl>.container-lg,.navbar-expand-xl>.container-md,.navbar-expand-xl>.container-sm,.navbar-expand-xl>.container-xl{-ms-flex-wrap:nowrap;flex-wrap:nowrap}.navbar-expand-xl .navbar-nav-scroll{overflow:visible}.navbar-expand-xl .navbar-collapse{display:-ms-flexbox!important;display:flex!important;-ms-flex-preferred-size:auto;flex-basis:auto}.navbar-expand-xl .navbar-toggler{display:none}}.navbar-expand{-ms-flex-flow:row nowrap;flex-flow:row nowrap;-ms-flex-pack:start;justify-content:flex-start}.navbar-expand>.container,.navbar-expand>.container-fluid,.navbar-expand>.container-lg,.navbar-expand>.container-md,.navbar-expand>.container-sm,.navbar-expand>.container-xl{padding-right:0;padding-left:0}.navbar-expand .navbar-nav{-ms-flex-direction:row;flex-direction:row}.navbar-expand .navbar-nav .dropdown-menu{position:absolute}.navbar-expand .navbar-nav .nav-link{padding-right:.5rem;padding-left:.5rem}.navbar-expand>.container,.navbar-expand>.container-fluid,.navbar-expand>.container-lg,.navbar-expand>.container-md,.navbar-expand>.container-sm,.navbar-expand>.container-xl{-ms-flex-wrap:nowrap;flex-wrap:nowrap}.navbar-expand .navbar-nav-scroll{overflow:visible}.navbar-expand .navbar-collapse{display:-ms-flexbox!important;display:flex!important;-ms-flex-preferred-size:auto;flex-basis:auto}.navbar-expand .navbar-toggler{display:none}.navbar-light .navbar-brand{color:#222}.navbar-light .navbar-brand:focus,.navbar-light .navbar-brand:hover{color:#222}.navbar-light .navbar-nav .nav-link{color:rgba(34,34,34,.7)}.navbar-light .navbar-nav .nav-link:focus,.navbar-light .navbar-nav .nav-link:hover{color:#222}.navbar-light .navbar-nav .nav-link.disabled{color:rgba(0,0,0,.3)}.navbar-light .navbar-nav .active>.nav-link,.navbar-light .navbar-nav .nav-link.active,.navbar-light .navbar-nav .nav-link.show,.navbar-light .navbar-nav .show>.nav-link{color:#222}.navbar-light .navbar-toggler{color:rgba(34,34,34,.7);border-color:rgba(34,34,34,.1)}.navbar-light .navbar-toggler-icon{background-image:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='30' height='30' viewBox='0 0 30 30'%3e%3cpath stroke='rgba%2834, 34, 34, 0.7%29' stroke-linecap='round' stroke-miterlimit='10' stroke-width='2' d='M4 7h22M4 15h22M4 23h22'/%3e%3c/svg%3e")}.navbar-light .navbar-text{color:rgba(34,34,34,.7)}.navbar-light .navbar-text a{color:#222}.navbar-light .navbar-text a:focus,.navbar-light .navbar-text a:hover{color:#222}.navbar-dark .navbar-brand{color:#fff}.navbar-dark .navbar-brand:focus,.navbar-dark .navbar-brand:hover{color:#fff}.navbar-dark .navbar-nav .nav-link{color:rgba(255,255,255,.6)}.navbar-dark .navbar-nav .nav-link:focus,.navbar-dark .navbar-nav .nav-link:hover{color:#fff}.navbar-dark .navbar-nav .nav-link.disabled{color:rgba(255,255,255,.25)}.navbar-dark .navbar-nav .active>.nav-link,.navbar-dark .navbar-nav .nav-link.active,.navbar-dark .navbar-nav .nav-link.show,.navbar-dark .navbar-nav .show>.nav-link{color:#fff}.navbar-dark .navbar-toggler{color:rgba(255,255,255,.6);border-color:rgba(255,255,255,.1)}.navbar-dark .navbar-toggler-icon{background-image:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='30' height='30' viewBox='0 0 30 30'%3e%3cpath stroke='rgba%28255, 255, 255, 0.6%29' stroke-linecap='round' stroke-miterlimit='10' stroke-width='2' d='M4 7h22M4 15h22M4 23h22'/%3e%3c/svg%3e")}.navbar-dark .navbar-text{color:rgba(255,255,255,.6)}.navbar-dark .navbar-text a{color:#fff}.navbar-dark .navbar-text a:focus,.navbar-dark .navbar-text a:hover{color:#fff}.card{position:relative;display:-ms-flexbox;display:flex;-ms-flex-direction:column;flex-direction:column;min-width:0;word-wrap:break-word;background-color:#303030;background-clip:border-box;border:1px solid rgba(0,0,0,.125);border-radius:.25rem}.card>hr{margin-right:0;margin-left:0}.card>.list-group{border-top:inherit;border-bottom:inherit}.card>.list-group:first-child{border-top-width:0;border-top-left-radius:calc(.25rem - 1px);border-top-right-radius:calc(.25rem - 1px)}.card>.list-group:last-child{border-bottom-width:0;border-bottom-right-radius:calc(.25rem - 1px);border-bottom-left-radius:calc(.25rem - 1px)}.card>.card-header+.list-group,.card>.list-group+.card-footer{border-top:0}.card-body{-ms-flex:1 1 auto;flex:1 1 auto;min-height:1px;padding:1.25rem}.card-title{margin-bottom:.75rem}.card-subtitle{margin-top:-.375rem;margin-bottom:0}.card-text:last-child{margin-bottom:0}.card-link:hover{text-decoration:none}.card-link+.card-link{margin-left:1.25rem}.card-header{padding:.75rem 1.25rem;margin-bottom:0;background-color:#444;border-bottom:1px solid rgba(0,0,0,.125)}.card-header:first-child{border-radius:calc(.25rem - 1px) calc(.25rem - 1px) 0 0}.card-footer{padding:.75rem 1.25rem;background-color:#444;border-top:1px solid rgba(0,0,0,.125)}.card-footer:last-child{border-radius:0 0 calc(.25rem - 1px) calc(.25rem - 1px)}.card-header-tabs{margin-right:-.625rem;margin-bottom:-.75rem;margin-left:-.625rem;border-bottom:0}.card-header-pills{margin-right:-.625rem;margin-left:-.625rem}.card-img-overlay{position:absolute;top:0;right:0;bottom:0;left:0;padding:1.25rem;border-radius:calc(.25rem - 1px)}.card-img,.card-img-bottom,.card-img-top{-ms-flex-negative:0;flex-shrink:0;width:100%}.card-img,.card-img-top{border-top-left-radius:calc(.25rem - 1px);border-top-right-radius:calc(.25rem - 1px)}.card-img,.card-img-bottom{border-bottom-right-radius:calc(.25rem - 1px);border-bottom-left-radius:calc(.25rem - 1px)}.card-deck .card{margin-bottom:15px}@media (min-width:576px){.card-deck{display:-ms-flexbox;display:flex;-ms-flex-flow:row wrap;flex-flow:row wrap;margin-right:-15px;margin-left:-15px}.card-deck .card{-ms-flex:1 0 0%;flex:1 0 0%;margin-right:15px;margin-bottom:0;margin-left:15px}}.card-group>.card{margin-bottom:15px}@media (min-width:576px){.card-group{display:-ms-flexbox;display:flex;-ms-flex-flow:row wrap;flex-flow:row wrap}.card-group>.card{-ms-flex:1 0 0%;flex:1 0 0%;margin-bottom:0}.card-group>.card+.card{margin-left:0;border-left:0}.card-group>.card:not(:last-child){border-top-right-radius:0;border-bottom-right-radius:0}.card-group>.card:not(:last-child) .card-header,.card-group>.card:not(:last-child) .card-img-top{border-top-right-radius:0}.card-group>.card:not(:last-child) .card-footer,.card-group>.card:not(:last-child) .card-img-bottom{border-bottom-right-radius:0}.card-group>.card:not(:first-child){border-top-left-radius:0;border-bottom-left-radius:0}.card-group>.card:not(:first-child) .card-header,.card-group>.card:not(:first-child) .card-img-top{border-top-left-radius:0}.card-group>.card:not(:first-child) .card-footer,.card-group>.card:not(:first-child) .card-img-bottom{border-bottom-left-radius:0}}.card-columns .card{margin-bottom:.75rem}@media (min-width:576px){.card-columns{-webkit-column-count:3;-moz-column-count:3;column-count:3;-webkit-column-gap:1.25rem;-moz-column-gap:1.25rem;column-gap:1.25rem;orphans:1;widows:1}.card-columns .card{display:inline-block;width:100%}}.accordion{overflow-anchor:none}.accordion>.card{overflow:hidden}.accordion>.card:not(:last-of-type){border-bottom:0;border-bottom-right-radius:0;border-bottom-left-radius:0}.accordion>.card:not(:first-of-type){border-top-left-radius:0;border-top-right-radius:0}.accordion>.card>.card-header{border-radius:0;margin-bottom:-1px}.breadcrumb{display:-ms-flexbox;display:flex;-ms-flex-wrap:wrap;flex-wrap:wrap;padding:.75rem 1rem;margin-bottom:1rem;list-style:none;background-color:#444;border-radius:.25rem}.breadcrumb-item+.breadcrumb-item{padding-left:.5rem}.breadcrumb-item+.breadcrumb-item::before{float:left;padding-right:.5rem;color:#888;content:"/"}.breadcrumb-item+.breadcrumb-item:hover::before{text-decoration:underline}.breadcrumb-item+.breadcrumb-item:hover::before{text-decoration:none}.breadcrumb-item.active{color:#888}.pagination{display:-ms-flexbox;display:flex;padding-left:0;list-style:none;border-radius:.25rem}.page-link{position:relative;display:block;padding:.5rem .75rem;margin-left:0;line-height:1.25;color:#fff;background-color:#00bc8c;border:0 solid transparent}.page-link:hover{z-index:2;color:#fff;text-decoration:none;background-color:#00efb2;border-color:transparent}.page-link:focus{z-index:3;outline:0;box-shadow:0 0 0 .2rem rgba(55,90,127,.25)}.page-item:first-child .page-link{margin-left:0;border-top-left-radius:.25rem;border-bottom-left-radius:.25rem}.page-item:last-child .page-link{border-top-right-radius:.25rem;border-bottom-right-radius:.25rem}.page-item.active .page-link{z-index:3;color:#fff;background-color:#00efb2;border-color:transparent}.page-item.disabled .page-link{color:#fff;pointer-events:none;cursor:auto;background-color:#007053;border-color:transparent}.pagination-lg .page-link{padding:.75rem 1.5rem;font-size:1.171875rem;line-height:1.5}.pagination-lg .page-item:first-child .page-link{border-top-left-radius:.3rem;border-bottom-left-radius:.3rem}.pagination-lg .page-item:last-child .page-link{border-top-right-radius:.3rem;border-bottom-right-radius:.3rem}.pagination-sm .page-link{padding:.25rem .5rem;font-size:.825rem;line-height:1.5}.pagination-sm .page-item:first-child .page-link{border-top-left-radius:.2rem;border-bottom-left-radius:.2rem}.pagination-sm .page-item:last-child .page-link{border-top-right-radius:.2rem;border-bottom-right-radius:.2rem}.badge{display:inline-block;padding:.25em .4em;font-size:75%;font-weight:700;line-height:1;text-align:center;white-space:nowrap;vertical-align:baseline;border-radius:.25rem;transition:color .15s ease-in-out,background-color .15s ease-in-out,border-color .15s ease-in-out,box-shadow .15s ease-in-out}@media (prefers-reduced-motion:reduce){.badge{transition:none}}a.badge:focus,a.badge:hover{text-decoration:none}.badge:empty{display:none}.btn .badge{position:relative;top:-1px}.badge-pill{padding-right:.6em;padding-left:.6em;border-radius:10rem}.badge-primary{color:#fff;background-color:#375a7f}a.badge-primary:focus,a.badge-primary:hover{color:#fff;background-color:#28415b}a.badge-primary.focus,a.badge-primary:focus{outline:0;box-shadow:0 0 0 .2rem rgba(55,90,127,.5)}.badge-secondary{color:#fff;background-color:#444}a.badge-secondary:focus,a.badge-secondary:hover{color:#fff;background-color:#2b2b2b}a.badge-secondary.focus,a.badge-secondary:focus{outline:0;box-shadow:0 0 0 .2rem rgba(68,68,68,.5)}.badge-success{color:#fff;background-color:#00bc8c}a.badge-success:focus,a.badge-success:hover{color:#fff;background-color:#008966}a.badge-success.focus,a.badge-success:focus{outline:0;box-shadow:0 0 0 .2rem rgba(0,188,140,.5)}.badge-info{color:#fff;background-color:#3498db}a.badge-info:focus,a.badge-info:hover{color:#fff;background-color:#217dbb}a.badge-info.focus,a.badge-info:focus{outline:0;box-shadow:0 0 0 .2rem rgba(52,152,219,.5)}.badge-warning{color:#fff;background-color:#f39c12}a.badge-warning:focus,a.badge-warning:hover{color:#fff;background-color:#c87f0a}a.badge-warning.focus,a.badge-warning:focus{outline:0;box-shadow:0 0 0 .2rem rgba(243,156,18,.5)}.badge-danger{color:#fff;background-color:#e74c3c}a.badge-danger:focus,a.badge-danger:hover{color:#fff;background-color:#d62c1a}a.badge-danger.focus,a.badge-danger:focus{outline:0;box-shadow:0 0 0 .2rem rgba(231,76,60,.5)}.badge-light{color:#222;background-color:#adb5bd}a.badge-light:focus,a.badge-light:hover{color:#222;background-color:#919ca6}a.badge-light.focus,a.badge-light:focus{outline:0;box-shadow:0 0 0 .2rem rgba(173,181,189,.5)}.badge-dark{color:#fff;background-color:#303030}a.badge-dark:focus,a.badge-dark:hover{color:#fff;background-color:#171717}a.badge-dark.focus,a.badge-dark:focus{outline:0;box-shadow:0 0 0 .2rem rgba(48,48,48,.5)}.jumbotron{padding:2rem 1rem;margin-bottom:2rem;background-color:#303030;border-radius:.3rem}@media (min-width:576px){.jumbotron{padding:4rem 2rem}}.jumbotron-fluid{padding-right:0;padding-left:0;border-radius:0}.alert{position:relative;padding:.75rem 1.25rem;margin-bottom:1rem;border:1px solid transparent;border-radius:.25rem}.alert-heading{color:inherit}.alert-link{font-weight:700}.alert-dismissible{padding-right:3.90625rem}.alert-dismissible .close{position:absolute;top:0;right:0;z-index:2;padding:.75rem 1.25rem;color:inherit}.alert-primary{color:#1d2f42;background-color:#d7dee5;border-color:#c7d1db}.alert-primary hr{border-top-color:#b7c4d1}.alert-primary .alert-link{color:#0d161f}.alert-secondary{color:#232323;background-color:#dadada;border-color:#cbcbcb}.alert-secondary hr{border-top-color:#bebebe}.alert-secondary .alert-link{color:#0a0a0a}.alert-success{color:#006249;background-color:#ccf2e8;border-color:#b8ecdf}.alert-success hr{border-top-color:#a4e7d6}.alert-success .alert-link{color:#002f23}.alert-info{color:#1b4f72;background-color:#d6eaf8;border-color:#c6e2f5}.alert-info hr{border-top-color:#b0d7f1}.alert-info .alert-link{color:#113249}.alert-warning{color:#7e5109;background-color:#fdebd0;border-color:#fce3bd}.alert-warning hr{border-top-color:#fbd9a5}.alert-warning .alert-link{color:#4e3206}.alert-danger{color:#78281f;background-color:#fadbd8;border-color:#f8cdc8}.alert-danger hr{border-top-color:#f5b8b1}.alert-danger .alert-link{color:#4f1a15}.alert-light{color:#5a5e62;background-color:#eff0f2;border-color:#e8eaed}.alert-light hr{border-top-color:#dadde2}.alert-light .alert-link{color:#424547}.alert-dark{color:#191919;background-color:#d6d6d6;border-color:#c5c5c5}.alert-dark hr{border-top-color:#b8b8b8}.alert-dark .alert-link{color:#000}@-webkit-keyframes progress-bar-stripes{from{background-position:1rem 0}to{background-position:0 0}}@keyframes progress-bar-stripes{from{background-position:1rem 0}to{background-position:0 0}}.progress{display:-ms-flexbox;display:flex;height:1rem;overflow:hidden;line-height:0;font-size:.703125rem;background-color:#444;border-radius:.25rem}.progress-bar{display:-ms-flexbox;display:flex;-ms-flex-direction:column;flex-direction:column;-ms-flex-pack:center;justify-content:center;overflow:hidden;color:#fff;text-align:center;white-space:nowrap;background-color:#375a7f;transition:width .6s ease}@media (prefers-reduced-motion:reduce){.progress-bar{transition:none}}.progress-bar-striped{background-image:linear-gradient(45deg,rgba(255,255,255,.15) 25%,transparent 25%,transparent 50%,rgba(255,255,255,.15) 50%,rgba(255,255,255,.15) 75%,transparent 75%,transparent);background-size:1rem 1rem}.progress-bar-animated{-webkit-animation:1s linear infinite progress-bar-stripes;animation:1s linear infinite progress-bar-stripes}@media (prefers-reduced-motion:reduce){.progress-bar-animated{-webkit-animation:none;animation:none}}.media{display:-ms-flexbox;display:flex;-ms-flex-align:start;align-items:flex-start}.media-body{-ms-flex:1;flex:1}.list-group{display:-ms-flexbox;display:flex;-ms-flex-direction:column;flex-direction:column;padding-left:0;margin-bottom:0;border-radius:.25rem}.list-group-item-action{width:100%;color:#444;text-align:inherit}.list-group-item-action:focus,.list-group-item-action:hover{z-index:1;color:#444;text-decoration:none;background-color:#444}.list-group-item-action:active{color:#fff;background-color:#ebebeb}.list-group-item{position:relative;display:block;padding:.75rem 1.25rem;background-color:#303030;border:1px solid #444}.list-group-item:first-child{border-top-left-radius:inherit;border-top-right-radius:inherit}.list-group-item:last-child{border-bottom-right-radius:inherit;border-bottom-left-radius:inherit}.list-group-item.disabled,.list-group-item:disabled{color:#888;pointer-events:none;background-color:#303030}.list-group-item.active{z-index:2;color:#fff;background-color:#375a7f;border-color:#375a7f}.list-group-item+.list-group-item{border-top-width:0}.list-group-item+.list-group-item.active{margin-top:-1px;border-top-width:1px}.list-group-horizontal{-ms-flex-direction:row;flex-direction:row}.list-group-horizontal>.list-group-item:first-child{border-bottom-left-radius:.25rem;border-top-right-radius:0}.list-group-horizontal>.list-group-item:last-child{border-top-right-radius:.25rem;border-bottom-left-radius:0}.list-group-horizontal>.list-group-item.active{margin-top:0}.list-group-horizontal>.list-group-item+.list-group-item{border-top-width:1px;border-left-width:0}.list-group-horizontal>.list-group-item+.list-group-item.active{margin-left:-1px;border-left-width:1px}@media (min-width:576px){.list-group-horizontal-sm{-ms-flex-direction:row;flex-direction:row}.list-group-horizontal-sm>.list-group-item:first-child{border-bottom-left-radius:.25rem;border-top-right-radius:0}.list-group-horizontal-sm>.list-group-item:last-child{border-top-right-radius:.25rem;border-bottom-left-radius:0}.list-group-horizontal-sm>.list-group-item.active{margin-top:0}.list-group-horizontal-sm>.list-group-item+.list-group-item{border-top-width:1px;border-left-width:0}.list-group-horizontal-sm>.list-group-item+.list-group-item.active{margin-left:-1px;border-left-width:1px}}@media (min-width:768px){.list-group-horizontal-md{-ms-flex-direction:row;flex-direction:row}.list-group-horizontal-md>.list-group-item:first-child{border-bottom-left-radius:.25rem;border-top-right-radius:0}.list-group-horizontal-md>.list-group-item:last-child{border-top-right-radius:.25rem;border-bottom-left-radius:0}.list-group-horizontal-md>.list-group-item.active{margin-top:0}.list-group-horizontal-md>.list-group-item+.list-group-item{border-top-width:1px;border-left-width:0}.list-group-horizontal-md>.list-group-item+.list-group-item.active{margin-left:-1px;border-left-width:1px}}@media (min-width:992px){.list-group-horizontal-lg{-ms-flex-direction:row;flex-direction:row}.list-group-horizontal-lg>.list-group-item:first-child{border-bottom-left-radius:.25rem;border-top-right-radius:0}.list-group-horizontal-lg>.list-group-item:last-child{border-top-right-radius:.25rem;border-bottom-left-radius:0}.list-group-horizontal-lg>.list-group-item.active{margin-top:0}.list-group-horizontal-lg>.list-group-item+.list-group-item{border-top-width:1px;border-left-width:0}.list-group-horizontal-lg>.list-group-item+.list-group-item.active{margin-left:-1px;border-left-width:1px}}@media (min-width:1200px){.list-group-horizontal-xl{-ms-flex-direction:row;flex-direction:row}.list-group-horizontal-xl>.list-group-item:first-child{border-bottom-left-radius:.25rem;border-top-right-radius:0}.list-group-horizontal-xl>.list-group-item:last-child{border-top-right-radius:.25rem;border-bottom-left-radius:0}.list-group-horizontal-xl>.list-group-item.active{margin-top:0}.list-group-horizontal-xl>.list-group-item+.list-group-item{border-top-width:1px;border-left-width:0}.list-group-horizontal-xl>.list-group-item+.list-group-item.active{margin-left:-1px;border-left-width:1px}}.list-group-flush{border-radius:0}.list-group-flush>.list-group-item{border-width:0 0 1px}.list-group-flush>.list-group-item:last-child{border-bottom-width:0}.list-group-item-primary{color:#1d2f42;background-color:#c7d1db}.list-group-item-primary.list-group-item-action:focus,.list-group-item-primary.list-group-item-action:hover{color:#1d2f42;background-color:#b7c4d1}.list-group-item-primary.list-group-item-action.active{color:#fff;background-color:#1d2f42;border-color:#1d2f42}.list-group-item-secondary{color:#232323;background-color:#cbcbcb}.list-group-item-secondary.list-group-item-action:focus,.list-group-item-secondary.list-group-item-action:hover{color:#232323;background-color:#bebebe}.list-group-item-secondary.list-group-item-action.active{color:#fff;background-color:#232323;border-color:#232323}.list-group-item-success{color:#006249;background-color:#b8ecdf}.list-group-item-success.list-group-item-action:focus,.list-group-item-success.list-group-item-action:hover{color:#006249;background-color:#a4e7d6}.list-group-item-success.list-group-item-action.active{color:#fff;background-color:#006249;border-color:#006249}.list-group-item-info{color:#1b4f72;background-color:#c6e2f5}.list-group-item-info.list-group-item-action:focus,.list-group-item-info.list-group-item-action:hover{color:#1b4f72;background-color:#b0d7f1}.list-group-item-info.list-group-item-action.active{color:#fff;background-color:#1b4f72;border-color:#1b4f72}.list-group-item-warning{color:#7e5109;background-color:#fce3bd}.list-group-item-warning.list-group-item-action:focus,.list-group-item-warning.list-group-item-action:hover{color:#7e5109;background-color:#fbd9a5}.list-group-item-warning.list-group-item-action.active{color:#fff;background-color:#7e5109;border-color:#7e5109}.list-group-item-danger{color:#78281f;background-color:#f8cdc8}.list-group-item-danger.list-group-item-action:focus,.list-group-item-danger.list-group-item-action:hover{color:#78281f;background-color:#f5b8b1}.list-group-item-danger.list-group-item-action.active{color:#fff;background-color:#78281f;border-color:#78281f}.list-group-item-light{color:#5a5e62;background-color:#e8eaed}.list-group-item-light.list-group-item-action:focus,.list-group-item-light.list-group-item-action:hover{color:#5a5e62;background-color:#dadde2}.list-group-item-light.list-group-item-action.active{color:#fff;background-color:#5a5e62;border-color:#5a5e62}.list-group-item-dark{color:#191919;background-color:#c5c5c5}.list-group-item-dark.list-group-item-action:focus,.list-group-item-dark.list-group-item-action:hover{color:#191919;background-color:#b8b8b8}.list-group-item-dark.list-group-item-action.active{color:#fff;background-color:#191919;border-color:#191919}.close{float:right;font-size:1.40625rem;font-weight:700;line-height:1;color:#fff;text-shadow:none;opacity:.5}.close:hover{color:#fff;text-decoration:none}.close:not(:disabled):not(.disabled):focus,.close:not(:disabled):not(.disabled):hover{opacity:.75}button.close{padding:0;background-color:transparent;border:0}a.close.disabled{pointer-events:none}.toast{-ms-flex-preferred-size:350px;flex-basis:350px;max-width:350px;font-size:.875rem;background-color:#444;background-clip:padding-box;border:1px solid rgba(0,0,0,.1);box-shadow:0 .25rem .75rem rgba(0,0,0,.1);opacity:0;border-radius:.25rem}.toast:not(:last-child){margin-bottom:.75rem}.toast.showing{opacity:1}.toast.show{display:block;opacity:1}.toast.hide{display:none}.toast-header{display:-ms-flexbox;display:flex;-ms-flex-align:center;align-items:center;padding:.25rem .75rem;color:#888;background-color:#303030;background-clip:padding-box;border-bottom:1px solid rgba(0,0,0,.05);border-top-left-radius:calc(.25rem - 1px);border-top-right-radius:calc(.25rem - 1px)}.toast-body{padding:.75rem}.modal-open{overflow:hidden}.modal-open .modal{overflow-x:hidden;overflow-y:auto}.modal{position:fixed;top:0;left:0;z-index:1050;display:none;width:100%;height:100%;overflow:hidden;outline:0}.modal-dialog{position:relative;width:auto;margin:.5rem;pointer-events:none}.modal.fade .modal-dialog{transition:-webkit-transform .3s ease-out;transition:transform .3s ease-out;transition:transform .3s ease-out,-webkit-transform .3s ease-out;-webkit-transform:translate(0,-50px);transform:translate(0,-50px)}@media (prefers-reduced-motion:reduce){.modal.fade .modal-dialog{transition:none}}.modal.show .modal-dialog{-webkit-transform:none;transform:none}.modal.modal-static .modal-dialog{-webkit-transform:scale(1.02);transform:scale(1.02)}.modal-dialog-scrollable{display:-ms-flexbox;display:flex;max-height:calc(100% - 1rem)}.modal-dialog-scrollable .modal-content{max-height:calc(100vh - 1rem);overflow:hidden}.modal-dialog-scrollable .modal-footer,.modal-dialog-scrollable .modal-header{-ms-flex-negative:0;flex-shrink:0}.modal-dialog-scrollable .modal-body{overflow-y:auto}.modal-dialog-centered{display:-ms-flexbox;display:flex;-ms-flex-align:center;align-items:center;min-height:calc(100% - 1rem)}.modal-dialog-centered::before{display:block;height:calc(100vh - 1rem);height:-webkit-min-content;height:-moz-min-content;height:min-content;content:""}.modal-dialog-centered.modal-dialog-scrollable{-ms-flex-direction:column;flex-direction:column;-ms-flex-pack:center;justify-content:center;height:100%}.modal-dialog-centered.modal-dialog-scrollable .modal-content{max-height:none}.modal-dialog-centered.modal-dialog-scrollable::before{content:none}.modal-content{position:relative;display:-ms-flexbox;display:flex;-ms-flex-direction:column;flex-direction:column;width:100%;pointer-events:auto;background-color:#303030;background-clip:padding-box;border:1px solid #444;border-radius:.3rem;outline:0}.modal-backdrop{position:fixed;top:0;left:0;z-index:1040;width:100vw;height:100vh;background-color:#000}.modal-backdrop.fade{opacity:0}.modal-backdrop.show{opacity:.5}.modal-header{display:-ms-flexbox;display:flex;-ms-flex-align:start;align-items:flex-start;-ms-flex-pack:justify;justify-content:space-between;padding:1rem 1rem;border-bottom:1px solid #444;border-top-left-radius:calc(.3rem - 1px);border-top-right-radius:calc(.3rem - 1px)}.modal-header .close{padding:1rem 1rem;margin:-1rem -1rem -1rem auto}.modal-title{margin-bottom:0;line-height:1.5}.modal-body{position:relative;-ms-flex:1 1 auto;flex:1 1 auto;padding:1rem}.modal-footer{display:-ms-flexbox;display:flex;-ms-flex-wrap:wrap;flex-wrap:wrap;-ms-flex-align:center;align-items:center;-ms-flex-pack:end;justify-content:flex-end;padding:.75rem;border-top:1px solid #444;border-bottom-right-radius:calc(.3rem - 1px);border-bottom-left-radius:calc(.3rem - 1px)}.modal-footer>*{margin:.25rem}.modal-scrollbar-measure{position:absolute;top:-9999px;width:50px;height:50px;overflow:scroll}@media (min-width:576px){.modal-dialog{max-width:500px;margin:1.75rem auto}.modal-dialog-scrollable{max-height:calc(100% - 3.5rem)}.modal-dialog-scrollable .modal-content{max-height:calc(100vh - 3.5rem)}.modal-dialog-centered{min-height:calc(100% - 3.5rem)}.modal-dialog-centered::before{height:calc(100vh - 3.5rem);height:-webkit-min-content;height:-moz-min-content;height:min-content}.modal-sm{max-width:300px}}@media (min-width:992px){.modal-lg,.modal-xl{max-width:800px}}@media (min-width:1200px){.modal-xl{max-width:1140px}}.tooltip{position:absolute;z-index:1070;display:block;margin:0;font-family:Lato,-apple-system,BlinkMacSystemFont,"Segoe UI",Roboto,"Helvetica Neue",Arial,sans-serif,"Apple Color Emoji","Segoe UI Emoji","Segoe UI Symbol";font-style:normal;font-weight:400;line-height:1.5;text-align:left;text-align:start;text-decoration:none;text-shadow:none;text-transform:none;letter-spacing:normal;word-break:normal;word-spacing:normal;white-space:normal;line-break:auto;font-size:.825rem;word-wrap:break-word;opacity:0}.tooltip.show{opacity:.9}.tooltip .arrow{position:absolute;display:block;width:.8rem;height:.4rem}.tooltip .arrow::before{position:absolute;content:"";border-color:transparent;border-style:solid}.bs-tooltip-auto[x-placement^=top],.bs-tooltip-top{padding:.4rem 0}.bs-tooltip-auto[x-placement^=top] .arrow,.bs-tooltip-top .arrow{bottom:0}.bs-tooltip-auto[x-placement^=top] .arrow::before,.bs-tooltip-top .arrow::before{top:0;border-width:.4rem .4rem 0;border-top-color:#000}.bs-tooltip-auto[x-placement^=right],.bs-tooltip-right{padding:0 .4rem}.bs-tooltip-auto[x-placement^=right] .arrow,.bs-tooltip-right .arrow{left:0;width:.4rem;height:.8rem}.bs-tooltip-auto[x-placement^=right] .arrow::before,.bs-tooltip-right .arrow::before{right:0;border-width:.4rem .4rem .4rem 0;border-right-color:#000}.bs-tooltip-auto[x-placement^=bottom],.bs-tooltip-bottom{padding:.4rem 0}.bs-tooltip-auto[x-placement^=bottom] .arrow,.bs-tooltip-bottom .arrow{top:0}.bs-tooltip-auto[x-placement^=bottom] .arrow::before,.bs-tooltip-bottom .arrow::before{bottom:0;border-width:0 .4rem .4rem;border-bottom-color:#000}.bs-tooltip-auto[x-placement^=left],.bs-tooltip-left{padding:0 .4rem}.bs-tooltip-auto[x-placement^=left] .arrow,.bs-tooltip-left .arrow{right:0;width:.4rem;height:.8rem}.bs-tooltip-auto[x-placement^=left] .arrow::before,.bs-tooltip-left .arrow::before{left:0;border-width:.4rem 0 .4rem .4rem;border-left-color:#000}.tooltip-inner{max-width:200px;padding:.25rem .5rem;color:#fff;text-align:center;background-color:#000;border-radius:.25rem}.popover{position:absolute;top:0;left:0;z-index:1060;display:block;max-width:276px;font-family:Lato,-apple-system,BlinkMacSystemFont,"Segoe UI",Roboto,"Helvetica Neue",Arial,sans-serif,"Apple Color Emoji","Segoe UI Emoji","Segoe UI Symbol";font-style:normal;font-weight:400;line-height:1.5;text-align:left;text-align:start;text-decoration:none;text-shadow:none;text-transform:none;letter-spacing:normal;word-break:normal;word-spacing:normal;white-space:normal;line-break:auto;font-size:.825rem;word-wrap:break-word;background-color:#303030;background-clip:padding-box;border:1px solid rgba(0,0,0,.2);border-radius:.3rem}.popover .arrow{position:absolute;display:block;width:1rem;height:.5rem;margin:0 .3rem}.popover .arrow::after,.popover .arrow::before{position:absolute;display:block;content:"";border-color:transparent;border-style:solid}.bs-popover-auto[x-placement^=top],.bs-popover-top{margin-bottom:.5rem}.bs-popover-auto[x-placement^=top]>.arrow,.bs-popover-top>.arrow{bottom:calc(-.5rem - 1px)}.bs-popover-auto[x-placement^=top]>.arrow::before,.bs-popover-top>.arrow::before{bottom:0;border-width:.5rem .5rem 0;border-top-color:rgba(0,0,0,.25)}.bs-popover-auto[x-placement^=top]>.arrow::after,.bs-popover-top>.arrow::after{bottom:1px;border-width:.5rem .5rem 0;border-top-color:#303030}.bs-popover-auto[x-placement^=right],.bs-popover-right{margin-left:.5rem}.bs-popover-auto[x-placement^=right]>.arrow,.bs-popover-right>.arrow{left:calc(-.5rem - 1px);width:.5rem;height:1rem;margin:.3rem 0}.bs-popover-auto[x-placement^=right]>.arrow::before,.bs-popover-right>.arrow::before{left:0;border-width:.5rem .5rem .5rem 0;border-right-color:rgba(0,0,0,.25)}.bs-popover-auto[x-placement^=right]>.arrow::after,.bs-popover-right>.arrow::after{left:1px;border-width:.5rem .5rem .5rem 0;border-right-color:#303030}.bs-popover-auto[x-placement^=bottom],.bs-popover-bottom{margin-top:.5rem}.bs-popover-auto[x-placement^=bottom]>.arrow,.bs-popover-bottom>.arrow{top:calc(-.5rem - 1px)}.bs-popover-auto[x-placement^=bottom]>.arrow::before,.bs-popover-bottom>.arrow::before{top:0;border-width:0 .5rem .5rem .5rem;border-bottom-color:rgba(0,0,0,.25)}.bs-popover-auto[x-placement^=bottom]>.arrow::after,.bs-popover-bottom>.arrow::after{top:1px;border-width:0 .5rem .5rem .5rem;border-bottom-color:#303030}.bs-popover-auto[x-placement^=bottom] .popover-header::before,.bs-popover-bottom .popover-header::before{position:absolute;top:0;left:50%;display:block;width:1rem;margin-left:-.5rem;content:"";border-bottom:1px solid #444}.bs-popover-auto[x-placement^=left],.bs-popover-left{margin-right:.5rem}.bs-popover-auto[x-placement^=left]>.arrow,.bs-popover-left>.arrow{right:calc(-.5rem - 1px);width:.5rem;height:1rem;margin:.3rem 0}.bs-popover-auto[x-placement^=left]>.arrow::before,.bs-popover-left>.arrow::before{right:0;border-width:.5rem 0 .5rem .5rem;border-left-color:rgba(0,0,0,.25)}.bs-popover-auto[x-placement^=left]>.arrow::after,.bs-popover-left>.arrow::after{right:1px;border-width:.5rem 0 .5rem .5rem;border-left-color:#303030}.popover-header{padding:.5rem .75rem;margin-bottom:0;font-size:.9375rem;background-color:#444;border-bottom:1px solid #373737;border-top-left-radius:calc(.3rem - 1px);border-top-right-radius:calc(.3rem - 1px)}.popover-header:empty{display:none}.popover-body{padding:.5rem .75rem;color:#fff}.carousel{position:relative}.carousel.pointer-event{-ms-touch-action:pan-y;touch-action:pan-y}.carousel-inner{position:relative;width:100%;overflow:hidden}.carousel-inner::after{display:block;clear:both;content:""}.carousel-item{position:relative;display:none;float:left;width:100%;margin-right:-100%;-webkit-backface-visibility:hidden;backface-visibility:hidden;transition:-webkit-transform .6s ease-in-out;transition:transform .6s ease-in-out;transition:transform .6s ease-in-out,-webkit-transform .6s ease-in-out}@media (prefers-reduced-motion:reduce){.carousel-item{transition:none}}.carousel-item-next,.carousel-item-prev,.carousel-item.active{display:block}.active.carousel-item-right,.carousel-item-next:not(.carousel-item-left){-webkit-transform:translateX(100%);transform:translateX(100%)}.active.carousel-item-left,.carousel-item-prev:not(.carousel-item-right){-webkit-transform:translateX(-100%);transform:translateX(-100%)}.carousel-fade .carousel-item{opacity:0;transition-property:opacity;-webkit-transform:none;transform:none}.carousel-fade .carousel-item-next.carousel-item-left,.carousel-fade .carousel-item-prev.carousel-item-right,.carousel-fade .carousel-item.active{z-index:1;opacity:1}.carousel-fade .active.carousel-item-left,.carousel-fade .active.carousel-item-right{z-index:0;opacity:0;transition:opacity 0s .6s}@media (prefers-reduced-motion:reduce){.carousel-fade .active.carousel-item-left,.carousel-fade .active.carousel-item-right{transition:none}}.carousel-control-next,.carousel-control-prev{position:absolute;top:0;bottom:0;z-index:1;display:-ms-flexbox;display:flex;-ms-flex-align:center;align-items:center;-ms-flex-pack:center;justify-content:center;width:15%;color:#fff;text-align:center;opacity:.5;transition:opacity .15s ease}@media (prefers-reduced-motion:reduce){.carousel-control-next,.carousel-control-prev{transition:none}}.carousel-control-next:focus,.carousel-control-next:hover,.carousel-control-prev:focus,.carousel-control-prev:hover{color:#fff;text-decoration:none;outline:0;opacity:.9}.carousel-control-prev{left:0}.carousel-control-next{right:0}.carousel-control-next-icon,.carousel-control-prev-icon{display:inline-block;width:20px;height:20px;background:50%/100% 100% no-repeat}.carousel-control-prev-icon{background-image:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' fill='%23fff' width='8' height='8' viewBox='0 0 8 8'%3e%3cpath d='M5.25 0l-4 4 4 4 1.5-1.5L4.25 4l2.5-2.5L5.25 0z'/%3e%3c/svg%3e")}.carousel-control-next-icon{background-image:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' fill='%23fff' width='8' height='8' viewBox='0 0 8 8'%3e%3cpath d='M2.75 0l-1.5 1.5L3.75 4l-2.5 2.5L2.75 8l4-4-4-4z'/%3e%3c/svg%3e")}.carousel-indicators{position:absolute;right:0;bottom:0;left:0;z-index:15;display:-ms-flexbox;display:flex;-ms-flex-pack:center;justify-content:center;padding-left:0;margin-right:15%;margin-left:15%;list-style:none}.carousel-indicators li{box-sizing:content-box;-ms-flex:0 1 auto;flex:0 1 auto;width:30px;height:3px;margin-right:3px;margin-left:3px;text-indent:-999px;cursor:pointer;background-color:#fff;background-clip:padding-box;border-top:10px solid transparent;border-bottom:10px solid transparent;opacity:.5;transition:opacity .6s ease}@media (prefers-reduced-motion:reduce){.carousel-indicators li{transition:none}}.carousel-indicators .active{opacity:1}.carousel-caption{position:absolute;right:15%;bottom:20px;left:15%;z-index:10;padding-top:20px;padding-bottom:20px;color:#fff;text-align:center}@-webkit-keyframes spinner-border{to{-webkit-transform:rotate(360deg);transform:rotate(360deg)}}@keyframes spinner-border{to{-webkit-transform:rotate(360deg);transform:rotate(360deg)}}.spinner-border{display:inline-block;width:2rem;height:2rem;vertical-align:text-bottom;border:.25em solid currentColor;border-right-color:transparent;border-radius:50%;-webkit-animation:.75s linear infinite spinner-border;animation:.75s linear infinite spinner-border}.spinner-border-sm{width:1rem;height:1rem;border-width:.2em}@-webkit-keyframes spinner-grow{0%{-webkit-transform:scale(0);transform:scale(0)}50%{opacity:1;-webkit-transform:none;transform:none}}@keyframes spinner-grow{0%{-webkit-transform:scale(0);transform:scale(0)}50%{opacity:1;-webkit-transform:none;transform:none}}.spinner-grow{display:inline-block;width:2rem;height:2rem;vertical-align:text-bottom;background-color:currentColor;border-radius:50%;opacity:0;-webkit-animation:.75s linear infinite spinner-grow;animation:.75s linear infinite spinner-grow}.spinner-grow-sm{width:1rem;height:1rem}@media (prefers-reduced-motion:reduce){.spinner-border,.spinner-grow{-webkit-animation-duration:1.5s;animation-duration:1.5s}}.align-baseline{vertical-align:baseline!important}.align-top{vertical-align:top!important}.align-middle{vertical-align:middle!important}.align-bottom{vertical-align:bottom!important}.align-text-bottom{vertical-align:text-bottom!important}.align-text-top{vertical-align:text-top!important}.bg-primary{background-color:#375a7f!important}a.bg-primary:focus,a.bg-primary:hover,button.bg-primary:focus,button.bg-primary:hover{background-color:#28415b!important}.bg-secondary{background-color:#444!important}a.bg-secondary:focus,a.bg-secondary:hover,button.bg-secondary:focus,button.bg-secondary:hover{background-color:#2b2b2b!important}.bg-success{background-color:#00bc8c!important}a.bg-success:focus,a.bg-success:hover,button.bg-success:focus,button.bg-success:hover{background-color:#008966!important}.bg-info{background-color:#3498db!important}a.bg-info:focus,a.bg-info:hover,button.bg-info:focus,button.bg-info:hover{background-color:#217dbb!important}.bg-warning{background-color:#f39c12!important}a.bg-warning:focus,a.bg-warning:hover,button.bg-warning:focus,button.bg-warning:hover{background-color:#c87f0a!important}.bg-danger{background-color:#e74c3c!important}a.bg-danger:focus,a.bg-danger:hover,button.bg-danger:focus,button.bg-danger:hover{background-color:#d62c1a!important}.bg-light{background-color:#adb5bd!important}a.bg-light:focus,a.bg-light:hover,button.bg-light:focus,button.bg-light:hover{background-color:#919ca6!important}.bg-dark{background-color:#303030!important}a.bg-dark:focus,a.bg-dark:hover,button.bg-dark:focus,button.bg-dark:hover{background-color:#171717!important}.bg-white{background-color:#fff!important}.bg-transparent{background-color:transparent!important}.border{border:1px solid #dee2e6!important}.border-top{border-top:1px solid #dee2e6!important}.border-right{border-right:1px solid #dee2e6!important}.border-bottom{border-bottom:1px solid #dee2e6!important}.border-left{border-left:1px solid #dee2e6!important}.border-0{border:0!important}.border-top-0{border-top:0!important}.border-right-0{border-right:0!important}.border-bottom-0{border-bottom:0!important}.border-left-0{border-left:0!important}.border-primary{border-color:#375a7f!important}.border-secondary{border-color:#444!important}.border-success{border-color:#00bc8c!important}.border-info{border-color:#3498db!important}.border-warning{border-color:#f39c12!important}.border-danger{border-color:#e74c3c!important}.border-light{border-color:#adb5bd!important}.border-dark{border-color:#303030!important}.border-white{border-color:#fff!important}.rounded-sm{border-radius:.2rem!important}.rounded{border-radius:.25rem!important}.rounded-top{border-top-left-radius:.25rem!important;border-top-right-radius:.25rem!important}.rounded-right{border-top-right-radius:.25rem!important;border-bottom-right-radius:.25rem!important}.rounded-bottom{border-bottom-right-radius:.25rem!important;border-bottom-left-radius:.25rem!important}.rounded-left{border-top-left-radius:.25rem!important;border-bottom-left-radius:.25rem!important}.rounded-lg{border-radius:.3rem!important}.rounded-circle{border-radius:50%!important}.rounded-pill{border-radius:50rem!important}.rounded-0{border-radius:0!important}.clearfix::after{display:block;clear:both;content:""}.d-none{display:none!important}.d-inline{display:inline!important}.d-inline-block{display:inline-block!important}.d-block{display:block!important}.d-table{display:table!important}.d-table-row{display:table-row!important}.d-table-cell{display:table-cell!important}.d-flex{display:-ms-flexbox!important;display:flex!important}.d-inline-flex{display:-ms-inline-flexbox!important;display:inline-flex!important}@media (min-width:576px){.d-sm-none{display:none!important}.d-sm-inline{display:inline!important}.d-sm-inline-block{display:inline-block!important}.d-sm-block{display:block!important}.d-sm-table{display:table!important}.d-sm-table-row{display:table-row!important}.d-sm-table-cell{display:table-cell!important}.d-sm-flex{display:-ms-flexbox!important;display:flex!important}.d-sm-inline-flex{display:-ms-inline-flexbox!important;display:inline-flex!important}}@media (min-width:768px){.d-md-none{display:none!important}.d-md-inline{display:inline!important}.d-md-inline-block{display:inline-block!important}.d-md-block{display:block!important}.d-md-table{display:table!important}.d-md-table-row{display:table-row!important}.d-md-table-cell{display:table-cell!important}.d-md-flex{display:-ms-flexbox!important;display:flex!important}.d-md-inline-flex{display:-ms-inline-flexbox!important;display:inline-flex!important}}@media (min-width:992px){.d-lg-none{display:none!important}.d-lg-inline{display:inline!important}.d-lg-inline-block{display:inline-block!important}.d-lg-block{display:block!important}.d-lg-table{display:table!important}.d-lg-table-row{display:table-row!important}.d-lg-table-cell{display:table-cell!important}.d-lg-flex{display:-ms-flexbox!important;display:flex!important}.d-lg-inline-flex{display:-ms-inline-flexbox!important;display:inline-flex!important}}@media (min-width:1200px){.d-xl-none{display:none!important}.d-xl-inline{display:inline!important}.d-xl-inline-block{display:inline-block!important}.d-xl-block{display:block!important}.d-xl-table{display:table!important}.d-xl-table-row{display:table-row!important}.d-xl-table-cell{display:table-cell!important}.d-xl-flex{display:-ms-flexbox!important;display:flex!important}.d-xl-inline-flex{display:-ms-inline-flexbox!important;display:inline-flex!important}}@media print{.d-print-none{display:none!important}.d-print-inline{display:inline!important}.d-print-inline-block{display:inline-block!important}.d-print-block{display:block!important}.d-print-table{display:table!important}.d-print-table-row{display:table-row!important}.d-print-table-cell{display:table-cell!important}.d-print-flex{display:-ms-flexbox!important;display:flex!important}.d-print-inline-flex{display:-ms-inline-flexbox!important;display:inline-flex!important}}.embed-responsive{position:relative;display:block;width:100%;padding:0;overflow:hidden}.embed-responsive::before{display:block;content:""}.embed-responsive .embed-responsive-item,.embed-responsive embed,.embed-responsive iframe,.embed-responsive object,.embed-responsive video{position:absolute;top:0;bottom:0;left:0;width:100%;height:100%;border:0}.embed-responsive-21by9::before{padding-top:42.857143%}.embed-responsive-16by9::before{padding-top:56.25%}.embed-responsive-4by3::before{padding-top:75%}.embed-responsive-1by1::before{padding-top:100%}.flex-row{-ms-flex-direction:row!important;flex-direction:row!important}.flex-column{-ms-flex-direction:column!important;flex-direction:column!important}.flex-row-reverse{-ms-flex-direction:row-reverse!important;flex-direction:row-reverse!important}.flex-column-reverse{-ms-flex-direction:column-reverse!important;flex-direction:column-reverse!important}.flex-wrap{-ms-flex-wrap:wrap!important;flex-wrap:wrap!important}.flex-nowrap{-ms-flex-wrap:nowrap!important;flex-wrap:nowrap!important}.flex-wrap-reverse{-ms-flex-wrap:wrap-reverse!important;flex-wrap:wrap-reverse!important}.flex-fill{-ms-flex:1 1 auto!important;flex:1 1 auto!important}.flex-grow-0{-ms-flex-positive:0!important;flex-grow:0!important}.flex-grow-1{-ms-flex-positive:1!important;flex-grow:1!important}.flex-shrink-0{-ms-flex-negative:0!important;flex-shrink:0!important}.flex-shrink-1{-ms-flex-negative:1!important;flex-shrink:1!important}.justify-content-start{-ms-flex-pack:start!important;justify-content:flex-start!important}.justify-content-end{-ms-flex-pack:end!important;justify-content:flex-end!important}.justify-content-center{-ms-flex-pack:center!important;justify-content:center!important}.justify-content-between{-ms-flex-pack:justify!important;justify-content:space-between!important}.justify-content-around{-ms-flex-pack:distribute!important;justify-content:space-around!important}.align-items-start{-ms-flex-align:start!important;align-items:flex-start!important}.align-items-end{-ms-flex-align:end!important;align-items:flex-end!important}.align-items-center{-ms-flex-align:center!important;align-items:center!important}.align-items-baseline{-ms-flex-align:baseline!important;align-items:baseline!important}.align-items-stretch{-ms-flex-align:stretch!important;align-items:stretch!important}.align-content-start{-ms-flex-line-pack:start!important;align-content:flex-start!important}.align-content-end{-ms-flex-line-pack:end!important;align-content:flex-end!important}.align-content-center{-ms-flex-line-pack:center!important;align-content:center!important}.align-content-between{-ms-flex-line-pack:justify!important;align-content:space-between!important}.align-content-around{-ms-flex-line-pack:distribute!important;align-content:space-around!important}.align-content-stretch{-ms-flex-line-pack:stretch!important;align-content:stretch!important}.align-self-auto{-ms-flex-item-align:auto!important;align-self:auto!important}.align-self-start{-ms-flex-item-align:start!important;align-self:flex-start!important}.align-self-end{-ms-flex-item-align:end!important;align-self:flex-end!important}.align-self-center{-ms-flex-item-align:center!important;align-self:center!important}.align-self-baseline{-ms-flex-item-align:baseline!important;align-self:baseline!important}.align-self-stretch{-ms-flex-item-align:stretch!important;align-self:stretch!important}@media (min-width:576px){.flex-sm-row{-ms-flex-direction:row!important;flex-direction:row!important}.flex-sm-column{-ms-flex-direction:column!important;flex-direction:column!important}.flex-sm-row-reverse{-ms-flex-direction:row-reverse!important;flex-direction:row-reverse!important}.flex-sm-column-reverse{-ms-flex-direction:column-reverse!important;flex-direction:column-reverse!important}.flex-sm-wrap{-ms-flex-wrap:wrap!important;flex-wrap:wrap!important}.flex-sm-nowrap{-ms-flex-wrap:nowrap!important;flex-wrap:nowrap!important}.flex-sm-wrap-reverse{-ms-flex-wrap:wrap-reverse!important;flex-wrap:wrap-reverse!important}.flex-sm-fill{-ms-flex:1 1 auto!important;flex:1 1 auto!important}.flex-sm-grow-0{-ms-flex-positive:0!important;flex-grow:0!important}.flex-sm-grow-1{-ms-flex-positive:1!important;flex-grow:1!important}.flex-sm-shrink-0{-ms-flex-negative:0!important;flex-shrink:0!important}.flex-sm-shrink-1{-ms-flex-negative:1!important;flex-shrink:1!important}.justify-content-sm-start{-ms-flex-pack:start!important;justify-content:flex-start!important}.justify-content-sm-end{-ms-flex-pack:end!important;justify-content:flex-end!important}.justify-content-sm-center{-ms-flex-pack:center!important;justify-content:center!important}.justify-content-sm-between{-ms-flex-pack:justify!important;justify-content:space-between!important}.justify-content-sm-around{-ms-flex-pack:distribute!important;justify-content:space-around!important}.align-items-sm-start{-ms-flex-align:start!important;align-items:flex-start!important}.align-items-sm-end{-ms-flex-align:end!important;align-items:flex-end!important}.align-items-sm-center{-ms-flex-align:center!important;align-items:center!important}.align-items-sm-baseline{-ms-flex-align:baseline!important;align-items:baseline!important}.align-items-sm-stretch{-ms-flex-align:stretch!important;align-items:stretch!important}.align-content-sm-start{-ms-flex-line-pack:start!important;align-content:flex-start!important}.align-content-sm-end{-ms-flex-line-pack:end!important;align-content:flex-end!important}.align-content-sm-center{-ms-flex-line-pack:center!important;align-content:center!important}.align-content-sm-between{-ms-flex-line-pack:justify!important;align-content:space-between!important}.align-content-sm-around{-ms-flex-line-pack:distribute!important;align-content:space-around!important}.align-content-sm-stretch{-ms-flex-line-pack:stretch!important;align-content:stretch!important}.align-self-sm-auto{-ms-flex-item-align:auto!important;align-self:auto!important}.align-self-sm-start{-ms-flex-item-align:start!important;align-self:flex-start!important}.align-self-sm-end{-ms-flex-item-align:end!important;align-self:flex-end!important}.align-self-sm-center{-ms-flex-item-align:center!important;align-self:center!important}.align-self-sm-baseline{-ms-flex-item-align:baseline!important;align-self:baseline!important}.align-self-sm-stretch{-ms-flex-item-align:stretch!important;align-self:stretch!important}}@media (min-width:768px){.flex-md-row{-ms-flex-direction:row!important;flex-direction:row!important}.flex-md-column{-ms-flex-direction:column!important;flex-direction:column!important}.flex-md-row-reverse{-ms-flex-direction:row-reverse!important;flex-direction:row-reverse!important}.flex-md-column-reverse{-ms-flex-direction:column-reverse!important;flex-direction:column-reverse!important}.flex-md-wrap{-ms-flex-wrap:wrap!important;flex-wrap:wrap!important}.flex-md-nowrap{-ms-flex-wrap:nowrap!important;flex-wrap:nowrap!important}.flex-md-wrap-reverse{-ms-flex-wrap:wrap-reverse!important;flex-wrap:wrap-reverse!important}.flex-md-fill{-ms-flex:1 1 auto!important;flex:1 1 auto!important}.flex-md-grow-0{-ms-flex-positive:0!important;flex-grow:0!important}.flex-md-grow-1{-ms-flex-positive:1!important;flex-grow:1!important}.flex-md-shrink-0{-ms-flex-negative:0!important;flex-shrink:0!important}.flex-md-shrink-1{-ms-flex-negative:1!important;flex-shrink:1!important}.justify-content-md-start{-ms-flex-pack:start!important;justify-content:flex-start!important}.justify-content-md-end{-ms-flex-pack:end!important;justify-content:flex-end!important}.justify-content-md-center{-ms-flex-pack:center!important;justify-content:center!important}.justify-content-md-between{-ms-flex-pack:justify!important;justify-content:space-between!important}.justify-content-md-around{-ms-flex-pack:distribute!important;justify-content:space-around!important}.align-items-md-start{-ms-flex-align:start!important;align-items:flex-start!important}.align-items-md-end{-ms-flex-align:end!important;align-items:flex-end!important}.align-items-md-center{-ms-flex-align:center!important;align-items:center!important}.align-items-md-baseline{-ms-flex-align:baseline!important;align-items:baseline!important}.align-items-md-stretch{-ms-flex-align:stretch!important;align-items:stretch!important}.align-content-md-start{-ms-flex-line-pack:start!important;align-content:flex-start!important}.align-content-md-end{-ms-flex-line-pack:end!important;align-content:flex-end!important}.align-content-md-center{-ms-flex-line-pack:center!important;align-content:center!important}.align-content-md-between{-ms-flex-line-pack:justify!important;align-content:space-between!important}.align-content-md-around{-ms-flex-line-pack:distribute!important;align-content:space-around!important}.align-content-md-stretch{-ms-flex-line-pack:stretch!important;align-content:stretch!important}.align-self-md-auto{-ms-flex-item-align:auto!important;align-self:auto!important}.align-self-md-start{-ms-flex-item-align:start!important;align-self:flex-start!important}.align-self-md-end{-ms-flex-item-align:end!important;align-self:flex-end!important}.align-self-md-center{-ms-flex-item-align:center!important;align-self:center!important}.align-self-md-baseline{-ms-flex-item-align:baseline!important;align-self:baseline!important}.align-self-md-stretch{-ms-flex-item-align:stretch!important;align-self:stretch!important}}@media (min-width:992px){.flex-lg-row{-ms-flex-direction:row!important;flex-direction:row!important}.flex-lg-column{-ms-flex-direction:column!important;flex-direction:column!important}.flex-lg-row-reverse{-ms-flex-direction:row-reverse!important;flex-direction:row-reverse!important}.flex-lg-column-reverse{-ms-flex-direction:column-reverse!important;flex-direction:column-reverse!important}.flex-lg-wrap{-ms-flex-wrap:wrap!important;flex-wrap:wrap!important}.flex-lg-nowrap{-ms-flex-wrap:nowrap!important;flex-wrap:nowrap!important}.flex-lg-wrap-reverse{-ms-flex-wrap:wrap-reverse!important;flex-wrap:wrap-reverse!important}.flex-lg-fill{-ms-flex:1 1 auto!important;flex:1 1 auto!important}.flex-lg-grow-0{-ms-flex-positive:0!important;flex-grow:0!important}.flex-lg-grow-1{-ms-flex-positive:1!important;flex-grow:1!important}.flex-lg-shrink-0{-ms-flex-negative:0!important;flex-shrink:0!important}.flex-lg-shrink-1{-ms-flex-negative:1!important;flex-shrink:1!important}.justify-content-lg-start{-ms-flex-pack:start!important;justify-content:flex-start!important}.justify-content-lg-end{-ms-flex-pack:end!important;justify-content:flex-end!important}.justify-content-lg-center{-ms-flex-pack:center!important;justify-content:center!important}.justify-content-lg-between{-ms-flex-pack:justify!important;justify-content:space-between!important}.justify-content-lg-around{-ms-flex-pack:distribute!important;justify-content:space-around!important}.align-items-lg-start{-ms-flex-align:start!important;align-items:flex-start!important}.align-items-lg-end{-ms-flex-align:end!important;align-items:flex-end!important}.align-items-lg-center{-ms-flex-align:center!important;align-items:center!important}.align-items-lg-baseline{-ms-flex-align:baseline!important;align-items:baseline!important}.align-items-lg-stretch{-ms-flex-align:stretch!important;align-items:stretch!important}.align-content-lg-start{-ms-flex-line-pack:start!important;align-content:flex-start!important}.align-content-lg-end{-ms-flex-line-pack:end!important;align-content:flex-end!important}.align-content-lg-center{-ms-flex-line-pack:center!important;align-content:center!important}.align-content-lg-between{-ms-flex-line-pack:justify!important;align-content:space-between!important}.align-content-lg-around{-ms-flex-line-pack:distribute!important;align-content:space-around!important}.align-content-lg-stretch{-ms-flex-line-pack:stretch!important;align-content:stretch!important}.align-self-lg-auto{-ms-flex-item-align:auto!important;align-self:auto!important}.align-self-lg-start{-ms-flex-item-align:start!important;align-self:flex-start!important}.align-self-lg-end{-ms-flex-item-align:end!important;align-self:flex-end!important}.align-self-lg-center{-ms-flex-item-align:center!important;align-self:center!important}.align-self-lg-baseline{-ms-flex-item-align:baseline!important;align-self:baseline!important}.align-self-lg-stretch{-ms-flex-item-align:stretch!important;align-self:stretch!important}}@media (min-width:1200px){.flex-xl-row{-ms-flex-direction:row!important;flex-direction:row!important}.flex-xl-column{-ms-flex-direction:column!important;flex-direction:column!important}.flex-xl-row-reverse{-ms-flex-direction:row-reverse!important;flex-direction:row-reverse!important}.flex-xl-column-reverse{-ms-flex-direction:column-reverse!important;flex-direction:column-reverse!important}.flex-xl-wrap{-ms-flex-wrap:wrap!important;flex-wrap:wrap!important}.flex-xl-nowrap{-ms-flex-wrap:nowrap!important;flex-wrap:nowrap!important}.flex-xl-wrap-reverse{-ms-flex-wrap:wrap-reverse!important;flex-wrap:wrap-reverse!important}.flex-xl-fill{-ms-flex:1 1 auto!important;flex:1 1 auto!important}.flex-xl-grow-0{-ms-flex-positive:0!important;flex-grow:0!important}.flex-xl-grow-1{-ms-flex-positive:1!important;flex-grow:1!important}.flex-xl-shrink-0{-ms-flex-negative:0!important;flex-shrink:0!important}.flex-xl-shrink-1{-ms-flex-negative:1!important;flex-shrink:1!important}.justify-content-xl-start{-ms-flex-pack:start!important;justify-content:flex-start!important}.justify-content-xl-end{-ms-flex-pack:end!important;justify-content:flex-end!important}.justify-content-xl-center{-ms-flex-pack:center!important;justify-content:center!important}.justify-content-xl-between{-ms-flex-pack:justify!important;justify-content:space-between!important}.justify-content-xl-around{-ms-flex-pack:distribute!important;justify-content:space-around!important}.align-items-xl-start{-ms-flex-align:start!important;align-items:flex-start!important}.align-items-xl-end{-ms-flex-align:end!important;align-items:flex-end!important}.align-items-xl-center{-ms-flex-align:center!important;align-items:center!important}.align-items-xl-baseline{-ms-flex-align:baseline!important;align-items:baseline!important}.align-items-xl-stretch{-ms-flex-align:stretch!important;align-items:stretch!important}.align-content-xl-start{-ms-flex-line-pack:start!important;align-content:flex-start!important}.align-content-xl-end{-ms-flex-line-pack:end!important;align-content:flex-end!important}.align-content-xl-center{-ms-flex-line-pack:center!important;align-content:center!important}.align-content-xl-between{-ms-flex-line-pack:justify!important;align-content:space-between!important}.align-content-xl-around{-ms-flex-line-pack:distribute!important;align-content:space-around!important}.align-content-xl-stretch{-ms-flex-line-pack:stretch!important;align-content:stretch!important}.align-self-xl-auto{-ms-flex-item-align:auto!important;align-self:auto!important}.align-self-xl-start{-ms-flex-item-align:start!important;align-self:flex-start!important}.align-self-xl-end{-ms-flex-item-align:end!important;align-self:flex-end!important}.align-self-xl-center{-ms-flex-item-align:center!important;align-self:center!important}.align-self-xl-baseline{-ms-flex-item-align:baseline!important;align-self:baseline!important}.align-self-xl-stretch{-ms-flex-item-align:stretch!important;align-self:stretch!important}}.float-left{float:left!important}.float-right{float:right!important}.float-none{float:none!important}@media (min-width:576px){.float-sm-left{float:left!important}.float-sm-right{float:right!important}.float-sm-none{float:none!important}}@media (min-width:768px){.float-md-left{float:left!important}.float-md-right{float:right!important}.float-md-none{float:none!important}}@media (min-width:992px){.float-lg-left{float:left!important}.float-lg-right{float:right!important}.float-lg-none{float:none!important}}@media (min-width:1200px){.float-xl-left{float:left!important}.float-xl-right{float:right!important}.float-xl-none{float:none!important}}.user-select-all{-webkit-user-select:all!important;-moz-user-select:all!important;user-select:all!important}.user-select-auto{-webkit-user-select:auto!important;-moz-user-select:auto!important;-ms-user-select:auto!important;user-select:auto!important}.user-select-none{-webkit-user-select:none!important;-moz-user-select:none!important;-ms-user-select:none!important;user-select:none!important}.overflow-auto{overflow:auto!important}.overflow-hidden{overflow:hidden!important}.position-static{position:static!important}.position-relative{position:relative!important}.position-absolute{position:absolute!important}.position-fixed{position:fixed!important}.position-sticky{position:-webkit-sticky!important;position:sticky!important}.fixed-top{position:fixed;top:0;right:0;left:0;z-index:1030}.fixed-bottom{position:fixed;right:0;bottom:0;left:0;z-index:1030}@supports ((position:-webkit-sticky) or (position:sticky)){.sticky-top{position:-webkit-sticky;position:sticky;top:0;z-index:1020}}.sr-only{position:absolute;width:1px;height:1px;padding:0;margin:-1px;overflow:hidden;clip:rect(0,0,0,0);white-space:nowrap;border:0}.sr-only-focusable:active,.sr-only-focusable:focus{position:static;width:auto;height:auto;overflow:visible;clip:auto;white-space:normal}.shadow-sm{box-shadow:0 .125rem .25rem rgba(0,0,0,.075)!important}.shadow{box-shadow:0 .5rem 1rem rgba(0,0,0,.15)!important}.shadow-lg{box-shadow:0 1rem 3rem rgba(0,0,0,.175)!important}.shadow-none{box-shadow:none!important}.w-25{width:25%!important}.w-50{width:50%!important}.w-75{width:75%!important}.w-100{width:100%!important}.w-auto{width:auto!important}.h-25{height:25%!important}.h-50{height:50%!important}.h-75{height:75%!important}.h-100{height:100%!important}.h-auto{height:auto!important}.mw-100{max-width:100%!important}.mh-100{max-height:100%!important}.min-vw-100{min-width:100vw!important}.min-vh-100{min-height:100vh!important}.vw-100{width:100vw!important}.vh-100{height:100vh!important}.m-0{margin:0!important}.mt-0,.my-0{margin-top:0!important}.mr-0,.mx-0{margin-right:0!important}.mb-0,.my-0{margin-bottom:0!important}.ml-0,.mx-0{margin-left:0!important}.m-1{margin:.25rem!important}.mt-1,.my-1{margin-top:.25rem!important}.mr-1,.mx-1{margin-right:.25rem!important}.mb-1,.my-1{margin-bottom:.25rem!important}.ml-1,.mx-1{margin-left:.25rem!important}.m-2{margin:.5rem!important}.mt-2,.my-2{margin-top:.5rem!important}.mr-2,.mx-2{margin-right:.5rem!important}.mb-2,.my-2{margin-bottom:.5rem!important}.ml-2,.mx-2{margin-left:.5rem!important}.m-3{margin:1rem!important}.mt-3,.my-3{margin-top:1rem!important}.mr-3,.mx-3{margin-right:1rem!important}.mb-3,.my-3{margin-bottom:1rem!important}.ml-3,.mx-3{margin-left:1rem!important}.m-4{margin:1.5rem!important}.mt-4,.my-4{margin-top:1.5rem!important}.mr-4,.mx-4{margin-right:1.5rem!important}.mb-4,.my-4{margin-bottom:1.5rem!important}.ml-4,.mx-4{margin-left:1.5rem!important}.m-5{margin:3rem!important}.mt-5,.my-5{margin-top:3rem!important}.mr-5,.mx-5{margin-right:3rem!important}.mb-5,.my-5{margin-bottom:3rem!important}.ml-5,.mx-5{margin-left:3rem!important}.p-0{padding:0!important}.pt-0,.py-0{padding-top:0!important}.pr-0,.px-0{padding-right:0!important}.pb-0,.py-0{padding-bottom:0!important}.pl-0,.px-0{padding-left:0!important}.p-1{padding:.25rem!important}.pt-1,.py-1{padding-top:.25rem!important}.pr-1,.px-1{padding-right:.25rem!important}.pb-1,.py-1{padding-bottom:.25rem!important}.pl-1,.px-1{padding-left:.25rem!important}.p-2{padding:.5rem!important}.pt-2,.py-2{padding-top:.5rem!important}.pr-2,.px-2{padding-right:.5rem!important}.pb-2,.py-2{padding-bottom:.5rem!important}.pl-2,.px-2{padding-left:.5rem!important}.p-3{padding:1rem!important}.pt-3,.py-3{padding-top:1rem!important}.pr-3,.px-3{padding-right:1rem!important}.pb-3,.py-3{padding-bottom:1rem!important}.pl-3,.px-3{padding-left:1rem!important}.p-4{padding:1.5rem!important}.pt-4,.py-4{padding-top:1.5rem!important}.pr-4,.px-4{padding-right:1.5rem!important}.pb-4,.py-4{padding-bottom:1.5rem!important}.pl-4,.px-4{padding-left:1.5rem!important}.p-5{padding:3rem!important}.pt-5,.py-5{padding-top:3rem!important}.pr-5,.px-5{padding-right:3rem!important}.pb-5,.py-5{padding-bottom:3rem!important}.pl-5,.px-5{padding-left:3rem!important}.m-n1{margin:-.25rem!important}.mt-n1,.my-n1{margin-top:-.25rem!important}.mr-n1,.mx-n1{margin-right:-.25rem!important}.mb-n1,.my-n1{margin-bottom:-.25rem!important}.ml-n1,.mx-n1{margin-left:-.25rem!important}.m-n2{margin:-.5rem!important}.mt-n2,.my-n2{margin-top:-.5rem!important}.mr-n2,.mx-n2{margin-right:-.5rem!important}.mb-n2,.my-n2{margin-bottom:-.5rem!important}.ml-n2,.mx-n2{margin-left:-.5rem!important}.m-n3{margin:-1rem!important}.mt-n3,.my-n3{margin-top:-1rem!important}.mr-n3,.mx-n3{margin-right:-1rem!important}.mb-n3,.my-n3{margin-bottom:-1rem!important}.ml-n3,.mx-n3{margin-left:-1rem!important}.m-n4{margin:-1.5rem!important}.mt-n4,.my-n4{margin-top:-1.5rem!important}.mr-n4,.mx-n4{margin-right:-1.5rem!important}.mb-n4,.my-n4{margin-bottom:-1.5rem!important}.ml-n4,.mx-n4{margin-left:-1.5rem!important}.m-n5{margin:-3rem!important}.mt-n5,.my-n5{margin-top:-3rem!important}.mr-n5,.mx-n5{margin-right:-3rem!important}.mb-n5,.my-n5{margin-bottom:-3rem!important}.ml-n5,.mx-n5{margin-left:-3rem!important}.m-auto{margin:auto!important}.mt-auto,.my-auto{margin-top:auto!important}.mr-auto,.mx-auto{margin-right:auto!important}.mb-auto,.my-auto{margin-bottom:auto!important}.ml-auto,.mx-auto{margin-left:auto!important}@media (min-width:576px){.m-sm-0{margin:0!important}.mt-sm-0,.my-sm-0{margin-top:0!important}.mr-sm-0,.mx-sm-0{margin-right:0!important}.mb-sm-0,.my-sm-0{margin-bottom:0!important}.ml-sm-0,.mx-sm-0{margin-left:0!important}.m-sm-1{margin:.25rem!important}.mt-sm-1,.my-sm-1{margin-top:.25rem!important}.mr-sm-1,.mx-sm-1{margin-right:.25rem!important}.mb-sm-1,.my-sm-1{margin-bottom:.25rem!important}.ml-sm-1,.mx-sm-1{margin-left:.25rem!important}.m-sm-2{margin:.5rem!important}.mt-sm-2,.my-sm-2{margin-top:.5rem!important}.mr-sm-2,.mx-sm-2{margin-right:.5rem!important}.mb-sm-2,.my-sm-2{margin-bottom:.5rem!important}.ml-sm-2,.mx-sm-2{margin-left:.5rem!important}.m-sm-3{margin:1rem!important}.mt-sm-3,.my-sm-3{margin-top:1rem!important}.mr-sm-3,.mx-sm-3{margin-right:1rem!important}.mb-sm-3,.my-sm-3{margin-bottom:1rem!important}.ml-sm-3,.mx-sm-3{margin-left:1rem!important}.m-sm-4{margin:1.5rem!important}.mt-sm-4,.my-sm-4{margin-top:1.5rem!important}.mr-sm-4,.mx-sm-4{margin-right:1.5rem!important}.mb-sm-4,.my-sm-4{margin-bottom:1.5rem!important}.ml-sm-4,.mx-sm-4{margin-left:1.5rem!important}.m-sm-5{margin:3rem!important}.mt-sm-5,.my-sm-5{margin-top:3rem!important}.mr-sm-5,.mx-sm-5{margin-right:3rem!important}.mb-sm-5,.my-sm-5{margin-bottom:3rem!important}.ml-sm-5,.mx-sm-5{margin-left:3rem!important}.p-sm-0{padding:0!important}.pt-sm-0,.py-sm-0{padding-top:0!important}.pr-sm-0,.px-sm-0{padding-right:0!important}.pb-sm-0,.py-sm-0{padding-bottom:0!important}.pl-sm-0,.px-sm-0{padding-left:0!important}.p-sm-1{padding:.25rem!important}.pt-sm-1,.py-sm-1{padding-top:.25rem!important}.pr-sm-1,.px-sm-1{padding-right:.25rem!important}.pb-sm-1,.py-sm-1{padding-bottom:.25rem!important}.pl-sm-1,.px-sm-1{padding-left:.25rem!important}.p-sm-2{padding:.5rem!important}.pt-sm-2,.py-sm-2{padding-top:.5rem!important}.pr-sm-2,.px-sm-2{padding-right:.5rem!important}.pb-sm-2,.py-sm-2{padding-bottom:.5rem!important}.pl-sm-2,.px-sm-2{padding-left:.5rem!important}.p-sm-3{padding:1rem!important}.pt-sm-3,.py-sm-3{padding-top:1rem!important}.pr-sm-3,.px-sm-3{padding-right:1rem!important}.pb-sm-3,.py-sm-3{padding-bottom:1rem!important}.pl-sm-3,.px-sm-3{padding-left:1rem!important}.p-sm-4{padding:1.5rem!important}.pt-sm-4,.py-sm-4{padding-top:1.5rem!important}.pr-sm-4,.px-sm-4{padding-right:1.5rem!important}.pb-sm-4,.py-sm-4{padding-bottom:1.5rem!important}.pl-sm-4,.px-sm-4{padding-left:1.5rem!important}.p-sm-5{padding:3rem!important}.pt-sm-5,.py-sm-5{padding-top:3rem!important}.pr-sm-5,.px-sm-5{padding-right:3rem!important}.pb-sm-5,.py-sm-5{padding-bottom:3rem!important}.pl-sm-5,.px-sm-5{padding-left:3rem!important}.m-sm-n1{margin:-.25rem!important}.mt-sm-n1,.my-sm-n1{margin-top:-.25rem!important}.mr-sm-n1,.mx-sm-n1{margin-right:-.25rem!important}.mb-sm-n1,.my-sm-n1{margin-bottom:-.25rem!important}.ml-sm-n1,.mx-sm-n1{margin-left:-.25rem!important}.m-sm-n2{margin:-.5rem!important}.mt-sm-n2,.my-sm-n2{margin-top:-.5rem!important}.mr-sm-n2,.mx-sm-n2{margin-right:-.5rem!important}.mb-sm-n2,.my-sm-n2{margin-bottom:-.5rem!important}.ml-sm-n2,.mx-sm-n2{margin-left:-.5rem!important}.m-sm-n3{margin:-1rem!important}.mt-sm-n3,.my-sm-n3{margin-top:-1rem!important}.mr-sm-n3,.mx-sm-n3{margin-right:-1rem!important}.mb-sm-n3,.my-sm-n3{margin-bottom:-1rem!important}.ml-sm-n3,.mx-sm-n3{margin-left:-1rem!important}.m-sm-n4{margin:-1.5rem!important}.mt-sm-n4,.my-sm-n4{margin-top:-1.5rem!important}.mr-sm-n4,.mx-sm-n4{margin-right:-1.5rem!important}.mb-sm-n4,.my-sm-n4{margin-bottom:-1.5rem!important}.ml-sm-n4,.mx-sm-n4{margin-left:-1.5rem!important}.m-sm-n5{margin:-3rem!important}.mt-sm-n5,.my-sm-n5{margin-top:-3rem!important}.mr-sm-n5,.mx-sm-n5{margin-right:-3rem!important}.mb-sm-n5,.my-sm-n5{margin-bottom:-3rem!important}.ml-sm-n5,.mx-sm-n5{margin-left:-3rem!important}.m-sm-auto{margin:auto!important}.mt-sm-auto,.my-sm-auto{margin-top:auto!important}.mr-sm-auto,.mx-sm-auto{margin-right:auto!important}.mb-sm-auto,.my-sm-auto{margin-bottom:auto!important}.ml-sm-auto,.mx-sm-auto{margin-left:auto!important}}@media (min-width:768px){.m-md-0{margin:0!important}.mt-md-0,.my-md-0{margin-top:0!important}.mr-md-0,.mx-md-0{margin-right:0!important}.mb-md-0,.my-md-0{margin-bottom:0!important}.ml-md-0,.mx-md-0{margin-left:0!important}.m-md-1{margin:.25rem!important}.mt-md-1,.my-md-1{margin-top:.25rem!important}.mr-md-1,.mx-md-1{margin-right:.25rem!important}.mb-md-1,.my-md-1{margin-bottom:.25rem!important}.ml-md-1,.mx-md-1{margin-left:.25rem!important}.m-md-2{margin:.5rem!important}.mt-md-2,.my-md-2{margin-top:.5rem!important}.mr-md-2,.mx-md-2{margin-right:.5rem!important}.mb-md-2,.my-md-2{margin-bottom:.5rem!important}.ml-md-2,.mx-md-2{margin-left:.5rem!important}.m-md-3{margin:1rem!important}.mt-md-3,.my-md-3{margin-top:1rem!important}.mr-md-3,.mx-md-3{margin-right:1rem!important}.mb-md-3,.my-md-3{margin-bottom:1rem!important}.ml-md-3,.mx-md-3{margin-left:1rem!important}.m-md-4{margin:1.5rem!important}.mt-md-4,.my-md-4{margin-top:1.5rem!important}.mr-md-4,.mx-md-4{margin-right:1.5rem!important}.mb-md-4,.my-md-4{margin-bottom:1.5rem!important}.ml-md-4,.mx-md-4{margin-left:1.5rem!important}.m-md-5{margin:3rem!important}.mt-md-5,.my-md-5{margin-top:3rem!important}.mr-md-5,.mx-md-5{margin-right:3rem!important}.mb-md-5,.my-md-5{margin-bottom:3rem!important}.ml-md-5,.mx-md-5{margin-left:3rem!important}.p-md-0{padding:0!important}.pt-md-0,.py-md-0{padding-top:0!important}.pr-md-0,.px-md-0{padding-right:0!important}.pb-md-0,.py-md-0{padding-bottom:0!important}.pl-md-0,.px-md-0{padding-left:0!important}.p-md-1{padding:.25rem!important}.pt-md-1,.py-md-1{padding-top:.25rem!important}.pr-md-1,.px-md-1{padding-right:.25rem!important}.pb-md-1,.py-md-1{padding-bottom:.25rem!important}.pl-md-1,.px-md-1{padding-left:.25rem!important}.p-md-2{padding:.5rem!important}.pt-md-2,.py-md-2{padding-top:.5rem!important}.pr-md-2,.px-md-2{padding-right:.5rem!important}.pb-md-2,.py-md-2{padding-bottom:.5rem!important}.pl-md-2,.px-md-2{padding-left:.5rem!important}.p-md-3{padding:1rem!important}.pt-md-3,.py-md-3{padding-top:1rem!important}.pr-md-3,.px-md-3{padding-right:1rem!important}.pb-md-3,.py-md-3{padding-bottom:1rem!important}.pl-md-3,.px-md-3{padding-left:1rem!important}.p-md-4{padding:1.5rem!important}.pt-md-4,.py-md-4{padding-top:1.5rem!important}.pr-md-4,.px-md-4{padding-right:1.5rem!important}.pb-md-4,.py-md-4{padding-bottom:1.5rem!important}.pl-md-4,.px-md-4{padding-left:1.5rem!important}.p-md-5{padding:3rem!important}.pt-md-5,.py-md-5{padding-top:3rem!important}.pr-md-5,.px-md-5{padding-right:3rem!important}.pb-md-5,.py-md-5{padding-bottom:3rem!important}.pl-md-5,.px-md-5{padding-left:3rem!important}.m-md-n1{margin:-.25rem!important}.mt-md-n1,.my-md-n1{margin-top:-.25rem!important}.mr-md-n1,.mx-md-n1{margin-right:-.25rem!important}.mb-md-n1,.my-md-n1{margin-bottom:-.25rem!important}.ml-md-n1,.mx-md-n1{margin-left:-.25rem!important}.m-md-n2{margin:-.5rem!important}.mt-md-n2,.my-md-n2{margin-top:-.5rem!important}.mr-md-n2,.mx-md-n2{margin-right:-.5rem!important}.mb-md-n2,.my-md-n2{margin-bottom:-.5rem!important}.ml-md-n2,.mx-md-n2{margin-left:-.5rem!important}.m-md-n3{margin:-1rem!important}.mt-md-n3,.my-md-n3{margin-top:-1rem!important}.mr-md-n3,.mx-md-n3{margin-right:-1rem!important}.mb-md-n3,.my-md-n3{margin-bottom:-1rem!important}.ml-md-n3,.mx-md-n3{margin-left:-1rem!important}.m-md-n4{margin:-1.5rem!important}.mt-md-n4,.my-md-n4{margin-top:-1.5rem!important}.mr-md-n4,.mx-md-n4{margin-right:-1.5rem!important}.mb-md-n4,.my-md-n4{margin-bottom:-1.5rem!important}.ml-md-n4,.mx-md-n4{margin-left:-1.5rem!important}.m-md-n5{margin:-3rem!important}.mt-md-n5,.my-md-n5{margin-top:-3rem!important}.mr-md-n5,.mx-md-n5{margin-right:-3rem!important}.mb-md-n5,.my-md-n5{margin-bottom:-3rem!important}.ml-md-n5,.mx-md-n5{margin-left:-3rem!important}.m-md-auto{margin:auto!important}.mt-md-auto,.my-md-auto{margin-top:auto!important}.mr-md-auto,.mx-md-auto{margin-right:auto!important}.mb-md-auto,.my-md-auto{margin-bottom:auto!important}.ml-md-auto,.mx-md-auto{margin-left:auto!important}}@media (min-width:992px){.m-lg-0{margin:0!important}.mt-lg-0,.my-lg-0{margin-top:0!important}.mr-lg-0,.mx-lg-0{margin-right:0!important}.mb-lg-0,.my-lg-0{margin-bottom:0!important}.ml-lg-0,.mx-lg-0{margin-left:0!important}.m-lg-1{margin:.25rem!important}.mt-lg-1,.my-lg-1{margin-top:.25rem!important}.mr-lg-1,.mx-lg-1{margin-right:.25rem!important}.mb-lg-1,.my-lg-1{margin-bottom:.25rem!important}.ml-lg-1,.mx-lg-1{margin-left:.25rem!important}.m-lg-2{margin:.5rem!important}.mt-lg-2,.my-lg-2{margin-top:.5rem!important}.mr-lg-2,.mx-lg-2{margin-right:.5rem!important}.mb-lg-2,.my-lg-2{margin-bottom:.5rem!important}.ml-lg-2,.mx-lg-2{margin-left:.5rem!important}.m-lg-3{margin:1rem!important}.mt-lg-3,.my-lg-3{margin-top:1rem!important}.mr-lg-3,.mx-lg-3{margin-right:1rem!important}.mb-lg-3,.my-lg-3{margin-bottom:1rem!important}.ml-lg-3,.mx-lg-3{margin-left:1rem!important}.m-lg-4{margin:1.5rem!important}.mt-lg-4,.my-lg-4{margin-top:1.5rem!important}.mr-lg-4,.mx-lg-4{margin-right:1.5rem!important}.mb-lg-4,.my-lg-4{margin-bottom:1.5rem!important}.ml-lg-4,.mx-lg-4{margin-left:1.5rem!important}.m-lg-5{margin:3rem!important}.mt-lg-5,.my-lg-5{margin-top:3rem!important}.mr-lg-5,.mx-lg-5{margin-right:3rem!important}.mb-lg-5,.my-lg-5{margin-bottom:3rem!important}.ml-lg-5,.mx-lg-5{margin-left:3rem!important}.p-lg-0{padding:0!important}.pt-lg-0,.py-lg-0{padding-top:0!important}.pr-lg-0,.px-lg-0{padding-right:0!important}.pb-lg-0,.py-lg-0{padding-bottom:0!important}.pl-lg-0,.px-lg-0{padding-left:0!important}.p-lg-1{padding:.25rem!important}.pt-lg-1,.py-lg-1{padding-top:.25rem!important}.pr-lg-1,.px-lg-1{padding-right:.25rem!important}.pb-lg-1,.py-lg-1{padding-bottom:.25rem!important}.pl-lg-1,.px-lg-1{padding-left:.25rem!important}.p-lg-2{padding:.5rem!important}.pt-lg-2,.py-lg-2{padding-top:.5rem!important}.pr-lg-2,.px-lg-2{padding-right:.5rem!important}.pb-lg-2,.py-lg-2{padding-bottom:.5rem!important}.pl-lg-2,.px-lg-2{padding-left:.5rem!important}.p-lg-3{padding:1rem!important}.pt-lg-3,.py-lg-3{padding-top:1rem!important}.pr-lg-3,.px-lg-3{padding-right:1rem!important}.pb-lg-3,.py-lg-3{padding-bottom:1rem!important}.pl-lg-3,.px-lg-3{padding-left:1rem!important}.p-lg-4{padding:1.5rem!important}.pt-lg-4,.py-lg-4{padding-top:1.5rem!important}.pr-lg-4,.px-lg-4{padding-right:1.5rem!important}.pb-lg-4,.py-lg-4{padding-bottom:1.5rem!important}.pl-lg-4,.px-lg-4{padding-left:1.5rem!important}.p-lg-5{padding:3rem!important}.pt-lg-5,.py-lg-5{padding-top:3rem!important}.pr-lg-5,.px-lg-5{padding-right:3rem!important}.pb-lg-5,.py-lg-5{padding-bottom:3rem!important}.pl-lg-5,.px-lg-5{padding-left:3rem!important}.m-lg-n1{margin:-.25rem!important}.mt-lg-n1,.my-lg-n1{margin-top:-.25rem!important}.mr-lg-n1,.mx-lg-n1{margin-right:-.25rem!important}.mb-lg-n1,.my-lg-n1{margin-bottom:-.25rem!important}.ml-lg-n1,.mx-lg-n1{margin-left:-.25rem!important}.m-lg-n2{margin:-.5rem!important}.mt-lg-n2,.my-lg-n2{margin-top:-.5rem!important}.mr-lg-n2,.mx-lg-n2{margin-right:-.5rem!important}.mb-lg-n2,.my-lg-n2{margin-bottom:-.5rem!important}.ml-lg-n2,.mx-lg-n2{margin-left:-.5rem!important}.m-lg-n3{margin:-1rem!important}.mt-lg-n3,.my-lg-n3{margin-top:-1rem!important}.mr-lg-n3,.mx-lg-n3{margin-right:-1rem!important}.mb-lg-n3,.my-lg-n3{margin-bottom:-1rem!important}.ml-lg-n3,.mx-lg-n3{margin-left:-1rem!important}.m-lg-n4{margin:-1.5rem!important}.mt-lg-n4,.my-lg-n4{margin-top:-1.5rem!important}.mr-lg-n4,.mx-lg-n4{margin-right:-1.5rem!important}.mb-lg-n4,.my-lg-n4{margin-bottom:-1.5rem!important}.ml-lg-n4,.mx-lg-n4{margin-left:-1.5rem!important}.m-lg-n5{margin:-3rem!important}.mt-lg-n5,.my-lg-n5{margin-top:-3rem!important}.mr-lg-n5,.mx-lg-n5{margin-right:-3rem!important}.mb-lg-n5,.my-lg-n5{margin-bottom:-3rem!important}.ml-lg-n5,.mx-lg-n5{margin-left:-3rem!important}.m-lg-auto{margin:auto!important}.mt-lg-auto,.my-lg-auto{margin-top:auto!important}.mr-lg-auto,.mx-lg-auto{margin-right:auto!important}.mb-lg-auto,.my-lg-auto{margin-bottom:auto!important}.ml-lg-auto,.mx-lg-auto{margin-left:auto!important}}@media (min-width:1200px){.m-xl-0{margin:0!important}.mt-xl-0,.my-xl-0{margin-top:0!important}.mr-xl-0,.mx-xl-0{margin-right:0!important}.mb-xl-0,.my-xl-0{margin-bottom:0!important}.ml-xl-0,.mx-xl-0{margin-left:0!important}.m-xl-1{margin:.25rem!important}.mt-xl-1,.my-xl-1{margin-top:.25rem!important}.mr-xl-1,.mx-xl-1{margin-right:.25rem!important}.mb-xl-1,.my-xl-1{margin-bottom:.25rem!important}.ml-xl-1,.mx-xl-1{margin-left:.25rem!important}.m-xl-2{margin:.5rem!important}.mt-xl-2,.my-xl-2{margin-top:.5rem!important}.mr-xl-2,.mx-xl-2{margin-right:.5rem!important}.mb-xl-2,.my-xl-2{margin-bottom:.5rem!important}.ml-xl-2,.mx-xl-2{margin-left:.5rem!important}.m-xl-3{margin:1rem!important}.mt-xl-3,.my-xl-3{margin-top:1rem!important}.mr-xl-3,.mx-xl-3{margin-right:1rem!important}.mb-xl-3,.my-xl-3{margin-bottom:1rem!important}.ml-xl-3,.mx-xl-3{margin-left:1rem!important}.m-xl-4{margin:1.5rem!important}.mt-xl-4,.my-xl-4{margin-top:1.5rem!important}.mr-xl-4,.mx-xl-4{margin-right:1.5rem!important}.mb-xl-4,.my-xl-4{margin-bottom:1.5rem!important}.ml-xl-4,.mx-xl-4{margin-left:1.5rem!important}.m-xl-5{margin:3rem!important}.mt-xl-5,.my-xl-5{margin-top:3rem!important}.mr-xl-5,.mx-xl-5{margin-right:3rem!important}.mb-xl-5,.my-xl-5{margin-bottom:3rem!important}.ml-xl-5,.mx-xl-5{margin-left:3rem!important}.p-xl-0{padding:0!important}.pt-xl-0,.py-xl-0{padding-top:0!important}.pr-xl-0,.px-xl-0{padding-right:0!important}.pb-xl-0,.py-xl-0{padding-bottom:0!important}.pl-xl-0,.px-xl-0{padding-left:0!important}.p-xl-1{padding:.25rem!important}.pt-xl-1,.py-xl-1{padding-top:.25rem!important}.pr-xl-1,.px-xl-1{padding-right:.25rem!important}.pb-xl-1,.py-xl-1{padding-bottom:.25rem!important}.pl-xl-1,.px-xl-1{padding-left:.25rem!important}.p-xl-2{padding:.5rem!important}.pt-xl-2,.py-xl-2{padding-top:.5rem!important}.pr-xl-2,.px-xl-2{padding-right:.5rem!important}.pb-xl-2,.py-xl-2{padding-bottom:.5rem!important}.pl-xl-2,.px-xl-2{padding-left:.5rem!important}.p-xl-3{padding:1rem!important}.pt-xl-3,.py-xl-3{padding-top:1rem!important}.pr-xl-3,.px-xl-3{padding-right:1rem!important}.pb-xl-3,.py-xl-3{padding-bottom:1rem!important}.pl-xl-3,.px-xl-3{padding-left:1rem!important}.p-xl-4{padding:1.5rem!important}.pt-xl-4,.py-xl-4{padding-top:1.5rem!important}.pr-xl-4,.px-xl-4{padding-right:1.5rem!important}.pb-xl-4,.py-xl-4{padding-bottom:1.5rem!important}.pl-xl-4,.px-xl-4{padding-left:1.5rem!important}.p-xl-5{padding:3rem!important}.pt-xl-5,.py-xl-5{padding-top:3rem!important}.pr-xl-5,.px-xl-5{padding-right:3rem!important}.pb-xl-5,.py-xl-5{padding-bottom:3rem!important}.pl-xl-5,.px-xl-5{padding-left:3rem!important}.m-xl-n1{margin:-.25rem!important}.mt-xl-n1,.my-xl-n1{margin-top:-.25rem!important}.mr-xl-n1,.mx-xl-n1{margin-right:-.25rem!important}.mb-xl-n1,.my-xl-n1{margin-bottom:-.25rem!important}.ml-xl-n1,.mx-xl-n1{margin-left:-.25rem!important}.m-xl-n2{margin:-.5rem!important}.mt-xl-n2,.my-xl-n2{margin-top:-.5rem!important}.mr-xl-n2,.mx-xl-n2{margin-right:-.5rem!important}.mb-xl-n2,.my-xl-n2{margin-bottom:-.5rem!important}.ml-xl-n2,.mx-xl-n2{margin-left:-.5rem!important}.m-xl-n3{margin:-1rem!important}.mt-xl-n3,.my-xl-n3{margin-top:-1rem!important}.mr-xl-n3,.mx-xl-n3{margin-right:-1rem!important}.mb-xl-n3,.my-xl-n3{margin-bottom:-1rem!important}.ml-xl-n3,.mx-xl-n3{margin-left:-1rem!important}.m-xl-n4{margin:-1.5rem!important}.mt-xl-n4,.my-xl-n4{margin-top:-1.5rem!important}.mr-xl-n4,.mx-xl-n4{margin-right:-1.5rem!important}.mb-xl-n4,.my-xl-n4{margin-bottom:-1.5rem!important}.ml-xl-n4,.mx-xl-n4{margin-left:-1.5rem!important}.m-xl-n5{margin:-3rem!important}.mt-xl-n5,.my-xl-n5{margin-top:-3rem!important}.mr-xl-n5,.mx-xl-n5{margin-right:-3rem!important}.mb-xl-n5,.my-xl-n5{margin-bottom:-3rem!important}.ml-xl-n5,.mx-xl-n5{margin-left:-3rem!important}.m-xl-auto{margin:auto!important}.mt-xl-auto,.my-xl-auto{margin-top:auto!important}.mr-xl-auto,.mx-xl-auto{margin-right:auto!important}.mb-xl-auto,.my-xl-auto{margin-bottom:auto!important}.ml-xl-auto,.mx-xl-auto{margin-left:auto!important}}.stretched-link::after{position:absolute;top:0;right:0;bottom:0;left:0;z-index:1;pointer-events:auto;content:"";background-color:rgba(0,0,0,0)}.text-monospace{font-family:SFMono-Regular,Menlo,Monaco,Consolas,"Liberation Mono","Courier New",monospace!important}.text-justify{text-align:justify!important}.text-wrap{white-space:normal!important}.text-nowrap{white-space:nowrap!important}.text-truncate{overflow:hidden;text-overflow:ellipsis;white-space:nowrap}.text-left{text-align:left!important}.text-right{text-align:right!important}.text-center{text-align:center!important}@media (min-width:576px){.text-sm-left{text-align:left!important}.text-sm-right{text-align:right!important}.text-sm-center{text-align:center!important}}@media (min-width:768px){.text-md-left{text-align:left!important}.text-md-right{text-align:right!important}.text-md-center{text-align:center!important}}@media (min-width:992px){.text-lg-left{text-align:left!important}.text-lg-right{text-align:right!important}.text-lg-center{text-align:center!important}}@media (min-width:1200px){.text-xl-left{text-align:left!important}.text-xl-right{text-align:right!important}.text-xl-center{text-align:center!important}}.text-lowercase{text-transform:lowercase!important}.text-uppercase{text-transform:uppercase!important}.text-capitalize{text-transform:capitalize!important}.font-weight-light{font-weight:300!important}.font-weight-lighter{font-weight:lighter!important}.font-weight-normal{font-weight:400!important}.font-weight-bold{font-weight:700!important}.font-weight-bolder{font-weight:bolder!important}.font-italic{font-style:italic!important}.text-white{color:#fff!important}.text-primary{color:#375a7f!important}a.text-primary:focus,a.text-primary:hover{color:#20344a!important}.text-secondary{color:#444!important}a.text-secondary:focus,a.text-secondary:hover{color:#1e1e1e!important}.text-success{color:#00bc8c!important}a.text-success:focus,a.text-success:hover{color:#007053!important}.text-info{color:#3498db!important}a.text-info:focus,a.text-info:hover{color:#1d6fa5!important}.text-warning{color:#f39c12!important}a.text-warning:focus,a.text-warning:hover{color:#b06f09!important}.text-danger{color:#e74c3c!important}a.text-danger:focus,a.text-danger:hover{color:#bf2718!important}.text-light{color:#adb5bd!important}a.text-light:focus,a.text-light:hover{color:#838f9b!important}.text-dark{color:#303030!important}a.text-dark:focus,a.text-dark:hover{color:#0a0a0a!important}.text-body{color:#fff!important}.text-muted{color:#888!important}.text-black-50{color:rgba(0,0,0,.5)!important}.text-white-50{color:rgba(255,255,255,.5)!important}.text-hide{font:0/0 a;color:transparent;text-shadow:none;background-color:transparent;border:0}.text-decoration-none{text-decoration:none!important}.text-break{word-break:break-word!important;word-wrap:break-word!important}.text-reset{color:inherit!important}.visible{visibility:visible!important}.invisible{visibility:hidden!important}@media print{*,::after,::before{text-shadow:none!important;box-shadow:none!important}a:not(.btn){text-decoration:underline}abbr[title]::after{content:" (" attr(title) ")"}pre{white-space:pre-wrap!important}blockquote,pre{border:1px solid #adb5bd;page-break-inside:avoid}thead{display:table-header-group}img,tr{page-break-inside:avoid}h2,h3,p{orphans:3;widows:3}h2,h3{page-break-after:avoid}@page{size:a3}body{min-width:992px!important}.container{min-width:992px!important}.navbar{display:none}.badge{border:1px solid #000}.table{border-collapse:collapse!important}.table td,.table th{background-color:#fff!important}.table-bordered td,.table-bordered th{border:1px solid #dee2e6!important}.table-dark{color:inherit}.table-dark tbody+tbody,.table-dark td,.table-dark th,.table-dark thead th{border-color:#444}.table .thead-dark th{color:inherit;border-color:#444}}.blockquote-footer{color:#888}.table-primary,.table-primary>td,.table-primary>th{background-color:#375a7f}.table-secondary,.table-secondary>td,.table-secondary>th{background-color:#444}.table-light,.table-light>td,.table-light>th{background-color:#adb5bd}.table-dark,.table-dark>td,.table-dark>th{background-color:#303030}.table-success,.table-success>td,.table-success>th{background-color:#00bc8c}.table-info,.table-info>td,.table-info>th{background-color:#3498db}.table-danger,.table-danger>td,.table-danger>th{background-color:#e74c3c}.table-warning,.table-warning>td,.table-warning>th{background-color:#f39c12}.table-active,.table-active>td,.table-active>th{background-color:rgba(0,0,0,.075)}.table-hover .table-primary:hover,.table-hover .table-primary:hover>td,.table-hover .table-primary:hover>th{background-color:#2f4d6d}.table-hover .table-secondary:hover,.table-hover .table-secondary:hover>td,.table-hover .table-secondary:hover>th{background-color:#373737}.table-hover .table-light:hover,.table-hover .table-light:hover>td,.table-hover .table-light:hover>th{background-color:#9fa8b2}.table-hover .table-dark:hover,.table-hover .table-dark:hover>td,.table-hover .table-dark:hover>th{background-color:#232323}.table-hover .table-success:hover,.table-hover .table-success:hover>td,.table-hover .table-success:hover>th{background-color:#00a379}.table-hover .table-info:hover,.table-hover .table-info:hover>td,.table-hover .table-info:hover>th{background-color:#258cd1}.table-hover .table-danger:hover,.table-hover .table-danger:hover>td,.table-hover .table-danger:hover>th{background-color:#e43725}.table-hover .table-warning:hover,.table-hover .table-warning:hover>td,.table-hover .table-warning:hover>th{background-color:#e08e0b}.table-hover .table-active:hover,.table-hover .table-active:hover>td,.table-hover .table-active:hover>th{background-color:rgba(0,0,0,.075)}.input-group-addon{color:#fff}.nav-pills .nav-item.open .nav-link,.nav-pills .nav-item.open .nav-link:focus,.nav-pills .nav-item.open .nav-link:hover,.nav-pills .nav-link,.nav-pills .nav-link.active,.nav-pills .nav-link.active:focus,.nav-pills .nav-link.active:hover,.nav-tabs .nav-item.open .nav-link,.nav-tabs .nav-item.open .nav-link:focus,.nav-tabs .nav-item.open .nav-link:hover,.nav-tabs .nav-link,.nav-tabs .nav-link.active,.nav-tabs .nav-link.active:focus,.nav-tabs .nav-link.active:hover{color:#fff}.breadcrumb a{color:#fff}.pagination a:hover{text-decoration:none}.close{opacity:.4}.close:focus,.close:hover{opacity:1}.alert{border:none;color:#fff}.alert .alert-link,.alert a{color:#fff;text-decoration:underline}.alert-primary{background-color:#375a7f}.alert-secondary{background-color:#444}.alert-success{background-color:#00bc8c}.alert-info{background-color:#3498db}.alert-warning{background-color:#f39c12}.alert-danger{background-color:#e74c3c}.alert-light{background-color:#adb5bd}.alert-dark{background-color:#303030}.list-group-item-action{color:#fff}.list-group-item-action:focus,.list-group-item-action:hover{background-color:#444;color:#fff}.list-group-item-action .list-group-item-heading{color:#fff}
diff --git a/web/static/css/datatables.min.css b/web/static/css/datatables.min.css
new file mode 100644
index 00000000000..2cdd75ae65c
--- /dev/null
+++ b/web/static/css/datatables.min.css
@@ -0,0 +1,190 @@
+/*
+ * This combined file was created by the DataTables downloader builder:
+ *   https://datatables.net/download
+ *
+ * To rebuild or modify this file with the latest versions of the included
+ * software please visit:
+ *   https://datatables.net/download/#dt/jszip-3.10.1/pdfmake-0.2.7/dt-2.0.8/af-2.7.0/b-3.0.2/b-colvis-3.0.2/b-html5-3.0.2/b-print-3.0.2/cr-2.0.3/date-1.5.2/fc-5.0.1/fh-4.0.1/kt-2.12.1/r-3.0.2/rg-1.5.0/rr-1.5.0/sc-2.4.3/sb-1.7.1/sp-2.3.1/sl-2.0.3/sr-1.4.1
+ *
+ * Included libraries:
+ *   JSZip 3.10.1, pdfmake 0.2.7, DataTables 2.0.8, AutoFill 2.7.0, Buttons 3.0.2, Column visibility 3.0.2, HTML5 export 3.0.2, Print view 3.0.2, ColReorder 2.0.3, DateTime 1.5.2, FixedColumns 5.0.1, FixedHeader 4.0.1, KeyTable 2.12.1, Responsive 3.0.2, RowGroup 1.5.0, RowReorder 1.5.0, Scroller 2.4.3, SearchBuilder 1.7.1, SearchPanes 2.3.1, Select 2.0.3, StateRestore 1.4.1
+ */
+
+:root{--dt-row-selected: 13, 110, 253;--dt-row-selected-text: 255, 255, 255;--dt-row-selected-link: 9, 10, 11;--dt-row-stripe: 0, 0, 0;--dt-row-hover: 0, 0, 0;--dt-column-ordering: 0, 0, 0;--dt-html-background: white}:root.datatable-dark{--dt-html-background: rgb(33, 37, 41)}table.dataTable td.dt-control{text-align:center;cursor:pointer}table.dataTable td.dt-control:before{display:inline-block;box-sizing:border-box;content:"";border-top:5px solid transparent;border-left:10px solid rgba(0, 0, 0, 0.5);border-bottom:5px solid transparent;border-right:0px solid transparent}table.dataTable tr.dt-hasChild td.dt-control:before{border-top:10px solid rgba(0, 0, 0, 0.5);border-left:5px solid transparent;border-bottom:0px solid transparent;border-right:5px solid transparent}html.datatable-dark table.dataTable td.dt-control:before,:root[data-bs-theme=dark] table.dataTable td.dt-control:before{border-left-color:rgba(255, 255, 255, 0.5)}html.datatable-dark table.dataTable tr.dt-hasChild td.dt-control:before,:root[data-bs-theme=dark] table.dataTable tr.dt-hasChild td.dt-control:before{border-top-color:rgba(255, 255, 255, 0.5);border-left-color:transparent}div.dt-scroll-body thead tr,div.dt-scroll-body tfoot tr{height:0}div.dt-scroll-body thead tr th,div.dt-scroll-body thead tr td,div.dt-scroll-body tfoot tr th,div.dt-scroll-body tfoot tr td{height:0 !important;padding-top:0px !important;padding-bottom:0px !important;border-top-width:0px !important;border-bottom-width:0px !important}div.dt-scroll-body thead tr th div.dt-scroll-sizing,div.dt-scroll-body thead tr td div.dt-scroll-sizing,div.dt-scroll-body tfoot tr th div.dt-scroll-sizing,div.dt-scroll-body tfoot tr td div.dt-scroll-sizing{height:0 !important;overflow:hidden !important}table.dataTable thead>tr>th:active,table.dataTable thead>tr>td:active{outline:none}table.dataTable thead>tr>th.dt-orderable-asc span.dt-column-order:before,table.dataTable thead>tr>th.dt-ordering-asc span.dt-column-order:before,table.dataTable thead>tr>td.dt-orderable-asc span.dt-column-order:before,table.dataTable thead>tr>td.dt-ordering-asc span.dt-column-order:before{position:absolute;display:block;bottom:50%;content:"▲";content:"▲"/""}table.dataTable thead>tr>th.dt-orderable-desc span.dt-column-order:after,table.dataTable thead>tr>th.dt-ordering-desc span.dt-column-order:after,table.dataTable thead>tr>td.dt-orderable-desc span.dt-column-order:after,table.dataTable thead>tr>td.dt-ordering-desc span.dt-column-order:after{position:absolute;display:block;top:50%;content:"▼";content:"▼"/""}table.dataTable thead>tr>th.dt-orderable-asc,table.dataTable thead>tr>th.dt-orderable-desc,table.dataTable thead>tr>th.dt-ordering-asc,table.dataTable thead>tr>th.dt-ordering-desc,table.dataTable thead>tr>td.dt-orderable-asc,table.dataTable thead>tr>td.dt-orderable-desc,table.dataTable thead>tr>td.dt-ordering-asc,table.dataTable thead>tr>td.dt-ordering-desc{position:relative;padding-right:30px}table.dataTable thead>tr>th.dt-orderable-asc span.dt-column-order,table.dataTable thead>tr>th.dt-orderable-desc span.dt-column-order,table.dataTable thead>tr>th.dt-ordering-asc span.dt-column-order,table.dataTable thead>tr>th.dt-ordering-desc span.dt-column-order,table.dataTable thead>tr>td.dt-orderable-asc span.dt-column-order,table.dataTable thead>tr>td.dt-orderable-desc span.dt-column-order,table.dataTable thead>tr>td.dt-ordering-asc span.dt-column-order,table.dataTable thead>tr>td.dt-ordering-desc span.dt-column-order{position:absolute;right:12px;top:0;bottom:0;width:12px}table.dataTable thead>tr>th.dt-orderable-asc span.dt-column-order:before,table.dataTable thead>tr>th.dt-orderable-asc span.dt-column-order:after,table.dataTable thead>tr>th.dt-orderable-desc span.dt-column-order:before,table.dataTable thead>tr>th.dt-orderable-desc span.dt-column-order:after,table.dataTable thead>tr>th.dt-ordering-asc span.dt-column-order:before,table.dataTable thead>tr>th.dt-ordering-asc span.dt-column-order:after,table.dataTable thead>tr>th.dt-ordering-desc span.dt-column-order:before,table.dataTable thead>tr>th.dt-ordering-desc span.dt-column-order:after,table.dataTable thead>tr>td.dt-orderable-asc span.dt-column-order:before,table.dataTable thead>tr>td.dt-orderable-asc span.dt-column-order:after,table.dataTable thead>tr>td.dt-orderable-desc span.dt-column-order:before,table.dataTable thead>tr>td.dt-orderable-desc span.dt-column-order:after,table.dataTable thead>tr>td.dt-ordering-asc span.dt-column-order:before,table.dataTable thead>tr>td.dt-ordering-asc span.dt-column-order:after,table.dataTable thead>tr>td.dt-ordering-desc span.dt-column-order:before,table.dataTable thead>tr>td.dt-ordering-desc span.dt-column-order:after{left:0;opacity:.125;line-height:9px;font-size:.8em}table.dataTable thead>tr>th.dt-orderable-asc,table.dataTable thead>tr>th.dt-orderable-desc,table.dataTable thead>tr>td.dt-orderable-asc,table.dataTable thead>tr>td.dt-orderable-desc{cursor:pointer}table.dataTable thead>tr>th.dt-orderable-asc:hover,table.dataTable thead>tr>th.dt-orderable-desc:hover,table.dataTable thead>tr>td.dt-orderable-asc:hover,table.dataTable thead>tr>td.dt-orderable-desc:hover{outline:2px solid rgba(0, 0, 0, 0.05);outline-offset:-2px}table.dataTable thead>tr>th.dt-ordering-asc span.dt-column-order:before,table.dataTable thead>tr>th.dt-ordering-desc span.dt-column-order:after,table.dataTable thead>tr>td.dt-ordering-asc span.dt-column-order:before,table.dataTable thead>tr>td.dt-ordering-desc span.dt-column-order:after{opacity:.6}table.dataTable thead>tr>th.sorting_desc_disabled span.dt-column-order:after,table.dataTable thead>tr>th.sorting_asc_disabled span.dt-column-order:before,table.dataTable thead>tr>td.sorting_desc_disabled span.dt-column-order:after,table.dataTable thead>tr>td.sorting_asc_disabled span.dt-column-order:before{display:none}table.dataTable thead>tr>th:active,table.dataTable thead>tr>td:active{outline:none}div.dt-scroll-body>table.dataTable>thead>tr>th,div.dt-scroll-body>table.dataTable>thead>tr>td{overflow:hidden}:root.datatable-dark table.dataTable thead>tr>th.dt-orderable-asc:hover,:root.datatable-dark table.dataTable thead>tr>th.dt-orderable-desc:hover,:root.datatable-dark table.dataTable thead>tr>td.dt-orderable-asc:hover,:root.datatable-dark table.dataTable thead>tr>td.dt-orderable-desc:hover,:root[data-bs-theme=dark] table.dataTable thead>tr>th.dt-orderable-asc:hover,:root[data-bs-theme=dark] table.dataTable thead>tr>th.dt-orderable-desc:hover,:root[data-bs-theme=dark] table.dataTable thead>tr>td.dt-orderable-asc:hover,:root[data-bs-theme=dark] table.dataTable thead>tr>td.dt-orderable-desc:hover{outline:2px solid rgba(255, 255, 255, 0.05)}div.dt-processing{position:absolute;top:50%;left:50%;width:200px;margin-left:-100px;margin-top:-22px;text-align:center;padding:2px;z-index:10}div.dt-processing>div:last-child{position:relative;width:80px;height:15px;margin:1em auto}div.dt-processing>div:last-child>div{position:absolute;top:0;width:13px;height:13px;border-radius:50%;background:rgb(13, 110, 253);background:rgb(var(--dt-row-selected));animation-timing-function:cubic-bezier(0, 1, 1, 0)}div.dt-processing>div:last-child>div:nth-child(1){left:8px;animation:datatables-loader-1 .6s infinite}div.dt-processing>div:last-child>div:nth-child(2){left:8px;animation:datatables-loader-2 .6s infinite}div.dt-processing>div:last-child>div:nth-child(3){left:32px;animation:datatables-loader-2 .6s infinite}div.dt-processing>div:last-child>div:nth-child(4){left:56px;animation:datatables-loader-3 .6s infinite}@keyframes datatables-loader-1{0%{transform:scale(0)}100%{transform:scale(1)}}@keyframes datatables-loader-3{0%{transform:scale(1)}100%{transform:scale(0)}}@keyframes datatables-loader-2{0%{transform:translate(0, 0)}100%{transform:translate(24px, 0)}}table.dataTable.nowrap th,table.dataTable.nowrap td{white-space:nowrap}table.dataTable th,table.dataTable td{box-sizing:border-box}table.dataTable th.dt-left,table.dataTable td.dt-left{text-align:left}table.dataTable th.dt-center,table.dataTable td.dt-center{text-align:center}table.dataTable th.dt-right,table.dataTable td.dt-right{text-align:right}table.dataTable th.dt-justify,table.dataTable td.dt-justify{text-align:justify}table.dataTable th.dt-nowrap,table.dataTable td.dt-nowrap{white-space:nowrap}table.dataTable th.dt-empty,table.dataTable td.dt-empty{text-align:center;vertical-align:top}table.dataTable th.dt-type-numeric,table.dataTable th.dt-type-date,table.dataTable td.dt-type-numeric,table.dataTable td.dt-type-date{text-align:right}table.dataTable thead th,table.dataTable thead td,table.dataTable tfoot th,table.dataTable tfoot td{text-align:left}table.dataTable thead th.dt-head-left,table.dataTable thead td.dt-head-left,table.dataTable tfoot th.dt-head-left,table.dataTable tfoot td.dt-head-left{text-align:left}table.dataTable thead th.dt-head-center,table.dataTable thead td.dt-head-center,table.dataTable tfoot th.dt-head-center,table.dataTable tfoot td.dt-head-center{text-align:center}table.dataTable thead th.dt-head-right,table.dataTable thead td.dt-head-right,table.dataTable tfoot th.dt-head-right,table.dataTable tfoot td.dt-head-right{text-align:right}table.dataTable thead th.dt-head-justify,table.dataTable thead td.dt-head-justify,table.dataTable tfoot th.dt-head-justify,table.dataTable tfoot td.dt-head-justify{text-align:justify}table.dataTable thead th.dt-head-nowrap,table.dataTable thead td.dt-head-nowrap,table.dataTable tfoot th.dt-head-nowrap,table.dataTable tfoot td.dt-head-nowrap{white-space:nowrap}table.dataTable tbody th.dt-body-left,table.dataTable tbody td.dt-body-left{text-align:left}table.dataTable tbody th.dt-body-center,table.dataTable tbody td.dt-body-center{text-align:center}table.dataTable tbody th.dt-body-right,table.dataTable tbody td.dt-body-right{text-align:right}table.dataTable tbody th.dt-body-justify,table.dataTable tbody td.dt-body-justify{text-align:justify}table.dataTable tbody th.dt-body-nowrap,table.dataTable tbody td.dt-body-nowrap{white-space:nowrap}table.dataTable{width:100%;margin:0 auto;border-spacing:0}table.dataTable thead th,table.dataTable tfoot th{font-weight:bold}table.dataTable>thead>tr>th,table.dataTable>thead>tr>td{padding:10px;border-bottom:1px solid rgba(0, 0, 0, 0.3)}table.dataTable>thead>tr>th:active,table.dataTable>thead>tr>td:active{outline:none}table.dataTable>tfoot>tr>th,table.dataTable>tfoot>tr>td{border-top:1px solid rgba(0, 0, 0, 0.3);padding:10px 10px 6px 10px}table.dataTable>tbody>tr{background-color:transparent}table.dataTable>tbody>tr:first-child>*{border-top:none}table.dataTable>tbody>tr:last-child>*{border-bottom:none}table.dataTable>tbody>tr.selected>*{box-shadow:inset 0 0 0 9999px rgba(13, 110, 253, 0.9);box-shadow:inset 0 0 0 9999px rgba(var(--dt-row-selected), 0.9);color:rgb(255, 255, 255);color:rgb(var(--dt-row-selected-text))}table.dataTable>tbody>tr.selected a{color:rgb(9, 10, 11);color:rgb(var(--dt-row-selected-link))}table.dataTable>tbody>tr>th,table.dataTable>tbody>tr>td{padding:8px 10px}table.dataTable.row-border>tbody>tr>*,table.dataTable.display>tbody>tr>*{border-top:1px solid rgba(0, 0, 0, 0.15)}table.dataTable.row-border>tbody>tr:first-child>*,table.dataTable.display>tbody>tr:first-child>*{border-top:none}table.dataTable.row-border>tbody>tr.selected+tr.selected>td,table.dataTable.display>tbody>tr.selected+tr.selected>td{border-top-color:rgba(13, 110, 253, 0.65);border-top-color:rgba(var(--dt-row-selected), 0.65)}table.dataTable.cell-border>tbody>tr>*{border-top:1px solid rgba(0, 0, 0, 0.15);border-right:1px solid rgba(0, 0, 0, 0.15)}table.dataTable.cell-border>tbody>tr>*:first-child{border-left:1px solid rgba(0, 0, 0, 0.15)}table.dataTable.cell-border>tbody>tr:first-child>*{border-top:1px solid rgba(0, 0, 0, 0.3)}table.dataTable.stripe>tbody>tr:nth-child(odd)>*,table.dataTable.display>tbody>tr:nth-child(odd)>*{box-shadow:inset 0 0 0 9999px rgba(0, 0, 0, 0.023);box-shadow:inset 0 0 0 9999px rgba(var(--dt-row-stripe), 0.023)}table.dataTable.stripe>tbody>tr:nth-child(odd).selected>*,table.dataTable.display>tbody>tr:nth-child(odd).selected>*{box-shadow:inset 0 0 0 9999px rgba(13, 110, 253, 0.923);box-shadow:inset 0 0 0 9999px rgba(var(--dt-row-selected), 0.923)}table.dataTable.hover>tbody>tr:hover>*,table.dataTable.display>tbody>tr:hover>*{box-shadow:inset 0 0 0 9999px rgba(0, 0, 0, 0.035);box-shadow:inset 0 0 0 9999px rgba(var(--dt-row-hover), 0.035)}table.dataTable.hover>tbody>tr.selected:hover>*,table.dataTable.display>tbody>tr.selected:hover>*{box-shadow:inset 0 0 0 9999px #0d6efd !important;box-shadow:inset 0 0 0 9999px rgba(var(--dt-row-selected), 1) !important}table.dataTable.order-column>tbody tr>.sorting_1,table.dataTable.order-column>tbody tr>.sorting_2,table.dataTable.order-column>tbody tr>.sorting_3,table.dataTable.display>tbody tr>.sorting_1,table.dataTable.display>tbody tr>.sorting_2,table.dataTable.display>tbody tr>.sorting_3{box-shadow:inset 0 0 0 9999px rgba(0, 0, 0, 0.019);box-shadow:inset 0 0 0 9999px rgba(var(--dt-column-ordering), 0.019)}table.dataTable.order-column>tbody tr.selected>.sorting_1,table.dataTable.order-column>tbody tr.selected>.sorting_2,table.dataTable.order-column>tbody tr.selected>.sorting_3,table.dataTable.display>tbody tr.selected>.sorting_1,table.dataTable.display>tbody tr.selected>.sorting_2,table.dataTable.display>tbody tr.selected>.sorting_3{box-shadow:inset 0 0 0 9999px rgba(13, 110, 253, 0.919);box-shadow:inset 0 0 0 9999px rgba(var(--dt-row-selected), 0.919)}table.dataTable.display>tbody>tr:nth-child(odd)>.sorting_1,table.dataTable.order-column.stripe>tbody>tr:nth-child(odd)>.sorting_1{box-shadow:inset 0 0 0 9999px rgba(0, 0, 0, 0.054);box-shadow:inset 0 0 0 9999px rgba(var(--dt-column-ordering), 0.054)}table.dataTable.display>tbody>tr:nth-child(odd)>.sorting_2,table.dataTable.order-column.stripe>tbody>tr:nth-child(odd)>.sorting_2{box-shadow:inset 0 0 0 9999px rgba(0, 0, 0, 0.047);box-shadow:inset 0 0 0 9999px rgba(var(--dt-column-ordering), 0.047)}table.dataTable.display>tbody>tr:nth-child(odd)>.sorting_3,table.dataTable.order-column.stripe>tbody>tr:nth-child(odd)>.sorting_3{box-shadow:inset 0 0 0 9999px rgba(0, 0, 0, 0.039);box-shadow:inset 0 0 0 9999px rgba(var(--dt-column-ordering), 0.039)}table.dataTable.display>tbody>tr:nth-child(odd).selected>.sorting_1,table.dataTable.order-column.stripe>tbody>tr:nth-child(odd).selected>.sorting_1{box-shadow:inset 0 0 0 9999px rgba(13, 110, 253, 0.954);box-shadow:inset 0 0 0 9999px rgba(var(--dt-row-selected), 0.954)}table.dataTable.display>tbody>tr:nth-child(odd).selected>.sorting_2,table.dataTable.order-column.stripe>tbody>tr:nth-child(odd).selected>.sorting_2{box-shadow:inset 0 0 0 9999px rgba(13, 110, 253, 0.947);box-shadow:inset 0 0 0 9999px rgba(var(--dt-row-selected), 0.947)}table.dataTable.display>tbody>tr:nth-child(odd).selected>.sorting_3,table.dataTable.order-column.stripe>tbody>tr:nth-child(odd).selected>.sorting_3{box-shadow:inset 0 0 0 9999px rgba(13, 110, 253, 0.939);box-shadow:inset 0 0 0 9999px rgba(var(--dt-row-selected), 0.939)}table.dataTable.display>tbody>tr.even>.sorting_1,table.dataTable.order-column.stripe>tbody>tr.even>.sorting_1{box-shadow:inset 0 0 0 9999px rgba(0, 0, 0, 0.019);box-shadow:inset 0 0 0 9999px rgba(var(--dt-column-ordering), 0.019)}table.dataTable.display>tbody>tr.even>.sorting_2,table.dataTable.order-column.stripe>tbody>tr.even>.sorting_2{box-shadow:inset 0 0 0 9999px rgba(0, 0, 0, 0.011);box-shadow:inset 0 0 0 9999px rgba(var(--dt-column-ordering), 0.011)}table.dataTable.display>tbody>tr.even>.sorting_3,table.dataTable.order-column.stripe>tbody>tr.even>.sorting_3{box-shadow:inset 0 0 0 9999px rgba(0, 0, 0, 0.003);box-shadow:inset 0 0 0 9999px rgba(var(--dt-column-ordering), 0.003)}table.dataTable.display>tbody>tr.even.selected>.sorting_1,table.dataTable.order-column.stripe>tbody>tr.even.selected>.sorting_1{box-shadow:inset 0 0 0 9999px rgba(13, 110, 253, 0.919);box-shadow:inset 0 0 0 9999px rgba(var(--dt-row-selected), 0.919)}table.dataTable.display>tbody>tr.even.selected>.sorting_2,table.dataTable.order-column.stripe>tbody>tr.even.selected>.sorting_2{box-shadow:inset 0 0 0 9999px rgba(13, 110, 253, 0.911);box-shadow:inset 0 0 0 9999px rgba(var(--dt-row-selected), 0.911)}table.dataTable.display>tbody>tr.even.selected>.sorting_3,table.dataTable.order-column.stripe>tbody>tr.even.selected>.sorting_3{box-shadow:inset 0 0 0 9999px rgba(13, 110, 253, 0.903);box-shadow:inset 0 0 0 9999px rgba(var(--dt-row-selected), 0.903)}table.dataTable.display tbody tr:hover>.sorting_1,table.dataTable.order-column.hover tbody tr:hover>.sorting_1{box-shadow:inset 0 0 0 9999px rgba(0, 0, 0, 0.082);box-shadow:inset 0 0 0 9999px rgba(var(--dt-row-hover), 0.082)}table.dataTable.display tbody tr:hover>.sorting_2,table.dataTable.order-column.hover tbody tr:hover>.sorting_2{box-shadow:inset 0 0 0 9999px rgba(0, 0, 0, 0.074);box-shadow:inset 0 0 0 9999px rgba(var(--dt-row-hover), 0.074)}table.dataTable.display tbody tr:hover>.sorting_3,table.dataTable.order-column.hover tbody tr:hover>.sorting_3{box-shadow:inset 0 0 0 9999px rgba(0, 0, 0, 0.062);box-shadow:inset 0 0 0 9999px rgba(var(--dt-row-hover), 0.062)}table.dataTable.display tbody tr:hover.selected>.sorting_1,table.dataTable.order-column.hover tbody tr:hover.selected>.sorting_1{box-shadow:inset 0 0 0 9999px rgba(13, 110, 253, 0.982);box-shadow:inset 0 0 0 9999px rgba(var(--dt-row-selected), 0.982)}table.dataTable.display tbody tr:hover.selected>.sorting_2,table.dataTable.order-column.hover tbody tr:hover.selected>.sorting_2{box-shadow:inset 0 0 0 9999px rgba(13, 110, 253, 0.974);box-shadow:inset 0 0 0 9999px rgba(var(--dt-row-selected), 0.974)}table.dataTable.display tbody tr:hover.selected>.sorting_3,table.dataTable.order-column.hover tbody tr:hover.selected>.sorting_3{box-shadow:inset 0 0 0 9999px rgba(13, 110, 253, 0.962);box-shadow:inset 0 0 0 9999px rgba(var(--dt-row-selected), 0.962)}table.dataTable.compact thead th,table.dataTable.compact thead td,table.dataTable.compact tfoot th,table.dataTable.compact tfoot td,table.dataTable.compact tbody th,table.dataTable.compact tbody td{padding:4px}div.dt-container{position:relative;clear:both}div.dt-container div.dt-layout-row{display:table;clear:both;width:100%}div.dt-container div.dt-layout-row.dt-layout-table{display:block}div.dt-container div.dt-layout-row.dt-layout-table div.dt-layout-cell{display:block}div.dt-container div.dt-layout-cell{display:table-cell;vertical-align:middle;padding:5px 0}div.dt-container div.dt-layout-cell.dt-full{text-align:center}div.dt-container div.dt-layout-cell.dt-start{text-align:left}div.dt-container div.dt-layout-cell.dt-end{text-align:right}div.dt-container div.dt-layout-cell:empty{display:none}div.dt-container .dt-search input{border:1px solid #aaa;border-radius:3px;padding:5px;background-color:transparent;color:inherit;margin-left:3px}div.dt-container .dt-input{border:1px solid #aaa;border-radius:3px;padding:5px;background-color:transparent;color:inherit}div.dt-container select.dt-input{padding:4px}div.dt-container .dt-paging .dt-paging-button{box-sizing:border-box;display:inline-block;min-width:1.5em;padding:.5em 1em;margin-left:2px;text-align:center;text-decoration:none !important;cursor:pointer;color:inherit !important;border:1px solid transparent;border-radius:2px;background:transparent}div.dt-container .dt-paging .dt-paging-button.current,div.dt-container .dt-paging .dt-paging-button.current:hover{color:inherit !important;border:1px solid rgba(0, 0, 0, 0.3);background-color:rgba(0, 0, 0, 0.05);background:-webkit-gradient(linear, left top, left bottom, color-stop(0%, rgba(230, 230, 230, 0.05)), color-stop(100%, rgba(0, 0, 0, 0.05)));background:-webkit-linear-gradient(top, rgba(230, 230, 230, 0.05) 0%, rgba(0, 0, 0, 0.05) 100%);background:-moz-linear-gradient(top, rgba(230, 230, 230, 0.05) 0%, rgba(0, 0, 0, 0.05) 100%);background:-ms-linear-gradient(top, rgba(230, 230, 230, 0.05) 0%, rgba(0, 0, 0, 0.05) 100%);background:-o-linear-gradient(top, rgba(230, 230, 230, 0.05) 0%, rgba(0, 0, 0, 0.05) 100%);background:linear-gradient(to bottom, rgba(230, 230, 230, 0.05) 0%, rgba(0, 0, 0, 0.05) 100%)}div.dt-container .dt-paging .dt-paging-button.disabled,div.dt-container .dt-paging .dt-paging-button.disabled:hover,div.dt-container .dt-paging .dt-paging-button.disabled:active{cursor:default;color:rgba(0, 0, 0, 0.5) !important;border:1px solid transparent;background:transparent;box-shadow:none}div.dt-container .dt-paging .dt-paging-button:hover{color:white !important;border:1px solid #111;background-color:#111;background:-webkit-gradient(linear, left top, left bottom, color-stop(0%, #585858), color-stop(100%, #111));background:-webkit-linear-gradient(top, #585858 0%, #111 100%);background:-moz-linear-gradient(top, #585858 0%, #111 100%);background:-ms-linear-gradient(top, #585858 0%, #111 100%);background:-o-linear-gradient(top, #585858 0%, #111 100%);background:linear-gradient(to bottom, #585858 0%, #111 100%)}div.dt-container .dt-paging .dt-paging-button:active{outline:none;background-color:#0c0c0c;background:-webkit-gradient(linear, left top, left bottom, color-stop(0%, #2b2b2b), color-stop(100%, #0c0c0c));background:-webkit-linear-gradient(top, #2b2b2b 0%, #0c0c0c 100%);background:-moz-linear-gradient(top, #2b2b2b 0%, #0c0c0c 100%);background:-ms-linear-gradient(top, #2b2b2b 0%, #0c0c0c 100%);background:-o-linear-gradient(top, #2b2b2b 0%, #0c0c0c 100%);background:linear-gradient(to bottom, #2b2b2b 0%, #0c0c0c 100%);box-shadow:inset 0 0 3px #111}div.dt-container .dt-paging .ellipsis{padding:0 1em}div.dt-container .dt-length,div.dt-container .dt-search,div.dt-container .dt-info,div.dt-container .dt-processing,div.dt-container .dt-paging{color:inherit}div.dt-container .dataTables_scroll{clear:both}div.dt-container .dataTables_scroll div.dt-scroll-body{-webkit-overflow-scrolling:touch}div.dt-container .dataTables_scroll div.dt-scroll-body>table>thead>tr>th,div.dt-container .dataTables_scroll div.dt-scroll-body>table>thead>tr>td,div.dt-container .dataTables_scroll div.dt-scroll-body>table>tbody>tr>th,div.dt-container .dataTables_scroll div.dt-scroll-body>table>tbody>tr>td{vertical-align:middle}div.dt-container .dataTables_scroll div.dt-scroll-body>table>thead>tr>th>div.dataTables_sizing,div.dt-container .dataTables_scroll div.dt-scroll-body>table>thead>tr>td>div.dataTables_sizing,div.dt-container .dataTables_scroll div.dt-scroll-body>table>tbody>tr>th>div.dataTables_sizing,div.dt-container .dataTables_scroll div.dt-scroll-body>table>tbody>tr>td>div.dataTables_sizing{height:0;overflow:hidden;margin:0 !important;padding:0 !important}div.dt-container.dt-empty-footer tbody>tr:last-child>*{border-bottom:1px solid rgba(0, 0, 0, 0.3)}div.dt-container.dt-empty-footer .dt-scroll-body{border-bottom:1px solid rgba(0, 0, 0, 0.3)}div.dt-container.dt-empty-footer .dt-scroll-body tbody>tr:last-child>*{border-bottom:none}@media screen and (max-width: 767px){div.dt-container div.dt-layout-row{display:block}div.dt-container div.dt-layout-cell{display:block}div.dt-container div.dt-layout-cell.dt-full,div.dt-container div.dt-layout-cell.dt-start,div.dt-container div.dt-layout-cell.dt-end{text-align:center}}@media screen and (max-width: 640px){.dt-container .dt-length,.dt-container .dt-search{float:none;text-align:center}.dt-container .dt-search{margin-top:.5em}}html.datatable-dark{--dt-row-hover: 255, 255, 255;--dt-row-stripe: 255, 255, 255;--dt-column-ordering: 255, 255, 255}html.datatable-dark table.dataTable>thead>tr>th,html.datatable-dark table.dataTable>thead>tr>td{border-bottom:1px solid rgb(89, 91, 94)}html.datatable-dark table.dataTable>thead>tr>th:active,html.datatable-dark table.dataTable>thead>tr>td:active{outline:none}html.datatable-dark table.dataTable>tfoot>tr>th,html.datatable-dark table.dataTable>tfoot>tr>td{border-top:1px solid rgb(89, 91, 94)}html.datatable-dark table.dataTable.row-border>tbody>tr>*,html.datatable-dark table.dataTable.display>tbody>tr>*{border-top:1px solid rgb(64, 67, 70)}html.datatable-dark table.dataTable.row-border>tbody>tr:first-child>*,html.datatable-dark table.dataTable.display>tbody>tr:first-child>*{border-top:none}html.datatable-dark table.dataTable.row-border>tbody>tr.selected+tr.selected>td,html.datatable-dark table.dataTable.display>tbody>tr.selected+tr.selected>td{border-top-color:rgba(13, 110, 253, 0.65);border-top-color:rgba(var(--dt-row-selected), 0.65)}html.datatable-dark table.dataTable.cell-border>tbody>tr>th,html.datatable-dark table.dataTable.cell-border>tbody>tr>td{border-top:1px solid rgb(64, 67, 70);border-right:1px solid rgb(64, 67, 70)}html.datatable-dark table.dataTable.cell-border>tbody>tr>th:first-child,html.datatable-dark table.dataTable.cell-border>tbody>tr>td:first-child{border-left:1px solid rgb(64, 67, 70)}html.datatable-dark .dt-container.dt-empty-footer table.dataTable{border-bottom:1px solid rgb(89, 91, 94)}html.datatable-dark .dt-container .dt-search input,html.datatable-dark .dt-container .dt-length select{border:1px solid rgba(255, 255, 255, 0.2);background-color:var(--dt-html-background)}html.datatable-dark .dt-container .dt-paging .dt-paging-button.current,html.datatable-dark .dt-container .dt-paging .dt-paging-button.current:hover{border:1px solid rgb(89, 91, 94);background:rgba(255, 255, 255, 0.15)}html.datatable-dark .dt-container .dt-paging .dt-paging-button.disabled,html.datatable-dark .dt-container .dt-paging .dt-paging-button.disabled:hover,html.datatable-dark .dt-container .dt-paging .dt-paging-button.disabled:active{color:#666 !important}html.datatable-dark .dt-container .dt-paging .dt-paging-button:hover{border:1px solid rgb(53, 53, 53);background:rgb(53, 53, 53)}html.datatable-dark .dt-container .dt-paging .dt-paging-button:active{background:#3a3a3a}*[dir=rtl] table.dataTable thead th,*[dir=rtl] table.dataTable thead td,*[dir=rtl] table.dataTable tfoot th,*[dir=rtl] table.dataTable tfoot td{text-align:right}*[dir=rtl] table.dataTable th.dt-type-numeric,*[dir=rtl] table.dataTable th.dt-type-date,*[dir=rtl] table.dataTable td.dt-type-numeric,*[dir=rtl] table.dataTable td.dt-type-date{text-align:left}*[dir=rtl] div.dt-container div.dt-layout-cell.dt-start{text-align:right}*[dir=rtl] div.dt-container div.dt-layout-cell.dt-end{text-align:left}*[dir=rtl] div.dt-container div.dt-search input{margin:0 3px 0 0}
+
+
+div.dt-autofill-handle {
+  position: absolute;
+  height: 10px;
+  width: 10px;
+  z-index: 10;
+  box-sizing: border-box;
+  background: #3366ff;
+  cursor: pointer;
+}
+
+div.dtk-focus-alt div.dt-autofill-handle {
+  background: #ff8b33;
+}
+
+div.dt-autofill-select {
+  position: absolute;
+  z-index: 1001;
+  background-color: #4989de;
+  background-image: repeating-linear-gradient(45deg, transparent, transparent 5px, rgba(255, 255, 255, 0.5) 5px, rgba(255, 255, 255, 0.5) 10px);
+}
+div.dt-autofill-select.top, div.dt-autofill-select.bottom {
+  height: 3px;
+  margin-top: -1px;
+}
+div.dt-autofill-select.left, div.dt-autofill-select.right {
+  width: 3px;
+  margin-left: -1px;
+}
+
+div.dt-autofill-list {
+  position: fixed;
+  top: 50%;
+  left: 50%;
+  width: 500px;
+  margin-left: -250px;
+  background-color: white;
+  border-radius: 0.75em;
+  box-shadow: 0 12px 30px rgba(0, 0, 0, 0.6);
+  z-index: 104;
+  box-sizing: border-box;
+  padding: 2em;
+}
+div.dt-autofill-list div.dtaf-popover-close {
+  position: absolute;
+  top: 6px;
+  right: 6px;
+  width: 22px;
+  height: 22px;
+  text-align: center;
+  border-radius: 3px;
+  cursor: pointer;
+  z-index: 12;
+}
+div.dt-autofill-list > div.dt-autofill-list-items > button {
+  display: block;
+  width: 100%;
+  margin: 1em 0;
+  padding: 1em;
+  border-radius: 0.5em;
+  border: 1px solid rgba(0, 0, 0, 0.175);
+  background-color: #f6f6f6;
+  text-align: left;
+  cursor: pointer;
+}
+div.dt-autofill-list > div.dt-autofill-list-items > button:hover {
+  background-color: #ebebeb;
+}
+div.dt-autofill-list > div.dt-autofill-list-items > button:first-child {
+  margin-top: 0;
+}
+div.dt-autofill-list > div.dt-autofill-list-items > button:last-child {
+  margin-bottom: 0;
+}
+div.dt-autofill-list > div.dt-autofill-list-items > button input[type=number] {
+  display: inline-block;
+  box-sizing: border-box;
+  padding: 6px;
+  width: 70px;
+  margin: -2px 0;
+}
+div.dt-autofill-list > div.dt-autofill-list-items > button span {
+  float: right;
+}
+
+div.dtaf-popover-closeable {
+  padding-top: 2.5em;
+}
+
+div.dt-autofill-background {
+  position: fixed;
+  top: 0;
+  left: 0;
+  width: 100%;
+  height: 100%;
+  background: rgba(0, 0, 0, 0.7);
+  background: radial-gradient(ellipse farthest-corner at center, rgba(0, 0, 0, 0.3) 0%, rgba(0, 0, 0, 0.7) 100%);
+  z-index: 103;
+}
+
+html.datatable-dark div.dt-autofill-handle {
+  background: rgb(110, 168, 254);
+}
+html.datatable-dark div.dt-autofill-select {
+  position: absolute;
+  z-index: 1001;
+  background-color: rgb(110, 168, 254);
+  background-image: repeating-linear-gradient(45deg, transparent, transparent 5px, rgba(0, 0, 0, 0.5) 5px, rgba(0, 0, 0, 0.5) 10px);
+}
+html.datatable-dark div.dt-autofill-list {
+  background-color: var(--dt-html-background);
+  border: 1px solid rgba(255, 255, 255, 0.15);
+}
+html.datatable-dark div.dt-autofill-list button {
+  color: inherit;
+  border: 1px solid rgba(255, 255, 255, 0.175);
+  background-color: rgb(47, 52, 56);
+}
+html.datatable-dark div.dt-autofill-list button:hover {
+  background-color: rgb(64, 69, 73);
+}
+
+@media screen and (max-width: 767px) {
+  div.dt-autofill-handle {
+    height: 16px;
+    width: 16px;
+  }
+  div.dt-autofill-list {
+    width: 90%;
+    left: 74.5%;
+  }
+}
+
+
+@keyframes dtb-spinner{100%{transform:rotate(360deg)}}@-o-keyframes dtb-spinner{100%{-o-transform:rotate(360deg);transform:rotate(360deg)}}@-ms-keyframes dtb-spinner{100%{-ms-transform:rotate(360deg);transform:rotate(360deg)}}@-webkit-keyframes dtb-spinner{100%{-webkit-transform:rotate(360deg);transform:rotate(360deg)}}@-moz-keyframes dtb-spinner{100%{-moz-transform:rotate(360deg);transform:rotate(360deg)}}div.dataTables_wrapper{position:relative}div.dt-buttons{position:initial}div.dt-buttons .dt-button{overflow:hidden;text-overflow:ellipsis;white-space:nowrap}div.dt-button-info{position:fixed;top:50%;left:50%;width:400px;margin-top:-100px;margin-left:-200px;background-color:white;border-radius:.75em;box-shadow:3px 4px 10px 1px rgba(0, 0, 0, 0.8);text-align:center;z-index:2003;overflow:hidden}div.dt-button-info h2{padding:2rem 2rem 1rem 2rem;margin:0;font-weight:normal}div.dt-button-info>div{padding:1em 2em 2em 2em}div.dtb-popover-close{position:absolute;top:6px;right:6px;width:22px;height:22px;text-align:center;border-radius:3px;cursor:pointer;z-index:2003}button.dtb-hide-drop{display:none !important}div.dt-button-collection-title{text-align:center;padding:.3em .5em .5em;margin-left:.5em;margin-right:.5em;font-size:.9em;white-space:nowrap;overflow:hidden;text-overflow:ellipsis}div.dt-button-collection-title:empty{display:none}span.dt-button-spacer{display:inline-block;margin:.5em;white-space:nowrap}span.dt-button-spacer.bar{border-left:1px solid rgba(0, 0, 0, 0.3);vertical-align:middle;padding-left:.5em}span.dt-button-spacer.bar:empty{height:1em;width:1px;padding-left:0}div.dt-button-collection .dt-button-active{padding-right:3em}div.dt-button-collection .dt-button-active:after{position:absolute;top:50%;margin-top:-10px;right:1em;display:inline-block;content:"✓";color:inherit}div.dt-button-collection .dt-button-active.dt-button-split{padding-right:0}div.dt-button-collection .dt-button-active.dt-button-split:after{display:none}div.dt-button-collection .dt-button-active.dt-button-split>*:first-child{padding-right:3em}div.dt-button-collection .dt-button-active.dt-button-split>*:first-child:after{position:absolute;top:50%;margin-top:-10px;right:1em;display:inline-block;content:"✓";color:inherit}div.dt-button-collection .dt-button-active-a a{padding-right:3em}div.dt-button-collection .dt-button-active-a a:after{position:absolute;right:1em;display:inline-block;content:"✓";color:inherit}div.dt-button-collection span.dt-button-spacer{width:100%;font-size:.9em;text-align:center;margin:.5em 0}div.dt-button-collection span.dt-button-spacer:empty{height:0;width:100%}div.dt-button-collection span.dt-button-spacer.bar{border-left:none;border-bottom:1px solid rgba(0, 0, 0, 0.1);padding-left:0}@media print{table.dataTable tr>*{box-shadow:none !important}}html.datatable-dark div.dt-button-info{background-color:var(--dt-html-background);border:1px solid rgba(255, 255, 255, 0.15)}div.dt-buttons>.dt-button,div.dt-buttons>div.dt-button-split .dt-button{position:relative;display:inline-block;box-sizing:border-box;margin-left:.167em;margin-right:.167em;margin-bottom:.333em;padding:.5em 1em;border:1px solid rgba(0, 0, 0, 0.3);border-radius:2px;cursor:pointer;font-size:.88em;line-height:1.6em;color:inherit;white-space:nowrap;overflow:hidden;background-color:rgba(0, 0, 0, 0.1);background:linear-gradient(to bottom, rgba(230, 230, 230, 0.1) 0%, rgba(0, 0, 0, 0.1) 100%);filter:progid:DXImageTransform.Microsoft.gradient(GradientType=0,StartColorStr="rgba(230, 230, 230, 0.1)", EndColorStr="rgba(0, 0, 0, 0.1)");-webkit-user-select:none;-moz-user-select:none;-ms-user-select:none;user-select:none;text-decoration:none;outline:none;text-overflow:ellipsis}div.dt-buttons>.dt-button:first-child,div.dt-buttons>div.dt-button-split .dt-button:first-child{margin-left:0}div.dt-buttons>.dt-button.disabled,div.dt-buttons>div.dt-button-split .dt-button.disabled{cursor:default;opacity:.4}div.dt-buttons>.dt-button.dt-button-active:not(.disabled),div.dt-buttons>div.dt-button-split .dt-button.dt-button-active:not(.disabled){background-color:rgba(0, 0, 0, 0.1);background:linear-gradient(to bottom, rgba(179, 179, 179, 0.1) 0%, rgba(0, 0, 0, 0.1) 100%);filter:progid:DXImageTransform.Microsoft.gradient(GradientType=0,StartColorStr="rgba(179, 179, 179, 0.1)", EndColorStr="rgba(0, 0, 0, 0.1)");box-shadow:inset 1px 1px 3px #999}div.dt-buttons>.dt-button.dt-button-active:not(.disabled):hover:not(.disabled),div.dt-buttons>div.dt-button-split .dt-button.dt-button-active:not(.disabled):hover:not(.disabled){box-shadow:inset 1px 1px 3px #999;background-color:rgba(0, 0, 0, 0.1);background:linear-gradient(to bottom, rgba(128, 128, 128, 0.1) 0%, rgba(0, 0, 0, 0.1) 100%);filter:progid:DXImageTransform.Microsoft.gradient(GradientType=0,StartColorStr="rgba(128, 128, 128, 0.1)", EndColorStr="rgba(0, 0, 0, 0.1)")}div.dt-buttons>.dt-button:hover,div.dt-buttons>div.dt-button-split .dt-button:hover{text-decoration:none}div.dt-buttons>.dt-button:hover:not(.disabled),div.dt-buttons>div.dt-button-split .dt-button:hover:not(.disabled){border:1px solid #666;background-color:rgba(0, 0, 0, 0.1);background:linear-gradient(to bottom, rgba(153, 153, 153, 0.1) 0%, rgba(0, 0, 0, 0.1) 100%);filter:progid:DXImageTransform.Microsoft.gradient(GradientType=0,StartColorStr="rgba(153, 153, 153, 0.1)", EndColorStr="rgba(0, 0, 0, 0.1)")}div.dt-buttons>.dt-button:focus:not(.disabled),div.dt-buttons>div.dt-button-split .dt-button:focus:not(.disabled){outline:2px solid rgb(53, 132, 228)}div.dt-buttons>.dt-button embed,div.dt-buttons>div.dt-button-split .dt-button embed{outline:none}div.dt-buttons>div.dt-button-split .dt-button:first-child{border-right:1px solid rgba(0, 0, 0, 0.15);border-top-right-radius:0;border-bottom-right-radius:0}div.dt-buttons>div.dt-button-split .dt-button:first-child:hover{border-right:1px solid #666}div.dt-buttons>div.dt-button-split .dt-button:last-child{border-left:1px solid transparent;border-top-left-radius:0;border-bottom-left-radius:0}div.dt-buttons>div.dt-button-split .dt-button:last-child:hover{border-left:1px solid #666}div.dt-buttons span.dt-button-down-arrow{position:relative;top:-2px;font-size:10px;padding-left:10px;line-height:1em;opacity:.6}div.dt-buttons div.dt-button-split{display:inline-block}div.dt-buttons div.dt-button-split .dt-button:first-child{margin-right:0}div.dt-buttons div.dt-button-split .dt-button:last-child{margin-left:-1px;padding-left:.75em;padding-right:.75em;z-index:2}div.dt-buttons div.dt-button-split .dt-button:last-child span{padding-left:0}div.dt-button-collection{position:absolute;top:0;left:0;width:200px;margin-top:3px;margin-bottom:3px;padding:.75em 0;border:1px solid rgba(0, 0, 0, 0.4);background-color:white;overflow:hidden;z-index:2002;border-radius:5px;box-shadow:3px 4px 10px 1px rgba(0, 0, 0, 0.3);box-sizing:border-box}div.dt-button-collection .dt-button{position:relative;left:0;right:0;width:100%;display:block;float:none;background:none;margin:0;padding:.5em 1em;border:none;text-align:left;cursor:pointer;color:inherit}div.dt-button-collection .dt-button.dt-button-active{background:none;box-shadow:none}div.dt-button-collection .dt-button.disabled{cursor:default;opacity:.4}div.dt-button-collection .dt-button:hover:not(.disabled){border:none;background:rgba(153, 153, 153, 0.1);box-shadow:none}div.dt-button-collection div.dt-button-split{display:flex;flex-direction:row;flex-wrap:wrap;justify-content:flex-start;align-content:flex-start;align-items:stretch}div.dt-button-collection div.dt-button-split button.dt-button{margin:0;display:inline-block;width:0;flex-grow:1;flex-shrink:0;flex-basis:50px}div.dt-button-collection div.dt-button-split button.dt-button-split-drop{min-width:33px;flex:0}div.dt-button-collection.fixed .dt-button{border-radius:.25em;background:rgba(255, 255, 255, 0.1)}div.dt-button-collection.fixed{position:fixed;display:block;top:50%;left:50%;margin-left:-75px;border-radius:5px;background-color:white;padding:.5em}div.dt-button-collection.fixed.two-column{margin-left:-200px}div.dt-button-collection.fixed.three-column{margin-left:-225px}div.dt-button-collection.fixed.four-column{margin-left:-300px}div.dt-button-collection.fixed.columns{margin-left:-409px}@media screen and (max-width: 1024px){div.dt-button-collection.fixed.columns{margin-left:-308px}}@media screen and (max-width: 640px){div.dt-button-collection.fixed.columns{margin-left:-203px}}@media screen and (max-width: 460px){div.dt-button-collection.fixed.columns{margin-left:-100px}}div.dt-button-collection.fixed>:last-child{max-height:100vh;overflow:auto}div.dt-button-collection.two-column>:last-child,div.dt-button-collection.three-column>:last-child,div.dt-button-collection.four-column>:last-child{display:block !important;-webkit-column-gap:8px;-moz-column-gap:8px;-ms-column-gap:8px;-o-column-gap:8px;column-gap:8px}div.dt-button-collection.two-column>:last-child>*,div.dt-button-collection.three-column>:last-child>*,div.dt-button-collection.four-column>:last-child>*{-webkit-column-break-inside:avoid;break-inside:avoid}div.dt-button-collection.two-column{width:400px}div.dt-button-collection.two-column>:last-child{padding-bottom:1px;column-count:2}div.dt-button-collection.three-column{width:450px}div.dt-button-collection.three-column>:last-child{padding-bottom:1px;column-count:3}div.dt-button-collection.four-column{width:600px}div.dt-button-collection.four-column>:last-child{padding-bottom:1px;column-count:4}div.dt-button-collection .dt-button{border-radius:0}div.dt-button-collection.columns{width:auto}div.dt-button-collection.columns>:last-child{display:flex;flex-wrap:wrap;justify-content:flex-start;align-items:center;gap:6px;width:818px;padding-bottom:1px}div.dt-button-collection.columns>:last-child .dt-button{min-width:200px;flex:0 1;margin:0}div.dt-button-collection.columns.dtb-b3>:last-child,div.dt-button-collection.columns.dtb-b2>:last-child,div.dt-button-collection.columns.dtb-b1>:last-child{justify-content:space-between}div.dt-button-collection.columns.dtb-b3 .dt-button{flex:1 1 32%}div.dt-button-collection.columns.dtb-b2 .dt-button{flex:1 1 48%}div.dt-button-collection.columns.dtb-b1 .dt-button{flex:1 1 100%}@media screen and (max-width: 1024px){div.dt-button-collection.columns>:last-child{width:612px}}@media screen and (max-width: 640px){div.dt-button-collection.columns>:last-child{width:406px}div.dt-button-collection.columns.dtb-b3 .dt-button{flex:0 1 32%}}@media screen and (max-width: 460px){div.dt-button-collection.columns>:last-child{width:200px}}div.dt-button-background{position:fixed;top:0;left:0;width:100%;height:100%;background:rgba(0, 0, 0, 0.7);background:radial-gradient(ellipse farthest-corner at center, rgba(0, 0, 0, 0.3) 0%, rgba(0, 0, 0, 0.7) 100%);z-index:2001}.dt-button.processing{color:rgba(0, 0, 0, 0.2)}.dt-button.processing:after{position:absolute;top:50%;left:50%;width:16px;height:16px;margin:-8px 0 0 -8px;box-sizing:border-box;display:block;content:" ";border:2px solid rgb(40, 40, 40);border-radius:50%;border-left-color:transparent;border-right-color:transparent;animation:dtb-spinner 1500ms infinite linear;-o-animation:dtb-spinner 1500ms infinite linear;-ms-animation:dtb-spinner 1500ms infinite linear;-webkit-animation:dtb-spinner 1500ms infinite linear;-moz-animation:dtb-spinner 1500ms infinite linear}@media screen and (max-width: 640px){div.dt-buttons{float:none !important;text-align:center}}html.datatable-dark div.dt-buttons>.dt-button,html.datatable-dark div.dt-buttons>div.dt-button-split .dt-button{border:1px solid rgb(89, 91, 94);background:rgba(255, 255, 255, 0.15)}html.datatable-dark div.dt-buttons>.dt-button.dt-button-active:not(.disabled),html.datatable-dark div.dt-buttons>div.dt-button-split .dt-button.dt-button-active:not(.disabled){background:rgba(179, 179, 179, 0.15);box-shadow:inset 1px 1px 2px black}html.datatable-dark div.dt-buttons>.dt-button.dt-button-active:not(.disabled):hover:not(.disabled),html.datatable-dark div.dt-buttons>div.dt-button-split .dt-button.dt-button-active:not(.disabled):hover:not(.disabled){background:rgba(128, 128, 128, 0.15);box-shadow:inset 1px 1px 3px black}html.datatable-dark div.dt-buttons>.dt-button:hover:not(.disabled),html.datatable-dark div.dt-buttons>div.dt-button-split .dt-button:hover:not(.disabled){background:rgba(179, 179, 179, 0.15)}html.datatable-dark div.dt-buttons>.dt-button:focus:not(.disabled),html.datatable-dark div.dt-buttons>div.dt-button-split .dt-button:focus:not(.disabled){outline:2px solid rgb(110, 168, 254)}html.datatable-dark div.dt-buttons>div.dt-button-split .dt-button:first-child{border-right:1px solid rgba(255, 255, 255, 0.1)}html.datatable-dark div.dt-buttons>div.dt-button-split .dt-button:first-child:hover{border-right:1px solid rgb(89, 91, 94)}html.datatable-dark div.dt-buttons>div.dt-button-split .dt-button:last-child:hover{border-left:1px solid rgb(89, 91, 94)}html.datatable-dark div.dt-button-collection{border:1px solid rgba(255, 255, 255, 0.15);background-color:rgb(33, 37, 41);box-shadow:3px 4px 10px 1px rgba(0, 0, 0, 0.8)}
+
+
+body.dtcr-dragging{overflow-x:hidden}table.dtcr-cloned.dataTable{position:absolute !important;background-color:rgba(255, 255, 255, 0.7);z-index:202;border-radius:4px}table.dataTable tbody tr td.dtcr-moving{background-color:rgba(127, 127, 127, 0.15)}table.dataTable tbody tr td.dtcr-moving-first{border-left:1px solid #0259c4}table.dataTable tbody tr td.dtcr-moving-last{border-right:1px solid #0259c4}html.datatable-dark table.dtcr-cloned.dataTable{background-color:rgba(33, 33, 33, 0.9)}
+
+
+div.dt-datetime{position:absolute;background-color:white;z-index:2050;border:1px solid #ccc;box-shadow:0 5px 15px -5px rgba(0, 0, 0, 0.5);padding:6px 20px;width:275px;border-radius:5px}div.dt-datetime.inline{position:relative;box-shadow:none}div.dt-datetime div.dt-datetime-title{text-align:center;padding:5px 0px 3px}div.dt-datetime div.dt-datetime-buttons{text-align:center}div.dt-datetime div.dt-datetime-buttons a{display:inline-block;padding:0 .5em .5em .5em;margin:0;font-size:.9em}div.dt-datetime div.dt-datetime-buttons a:hover{text-decoration:underline}div.dt-datetime table{border-spacing:0;margin:12px 0;width:100%}div.dt-datetime table.dt-datetime-table-nospace{margin-top:-12px}div.dt-datetime table th{font-size:.8em;color:#777;font-weight:normal;width:14.285714286%;padding:0 0 4px 0;text-align:center}div.dt-datetime table td{font-size:.9em;color:#444;padding:0}div.dt-datetime table td.selectable{text-align:center;background:#f5f5f5}div.dt-datetime table td.selectable.disabled{color:#aaa;background:white}div.dt-datetime table td.selectable.disabled button:hover{color:#aaa;background:white}div.dt-datetime table td.selectable.now{background-color:#ddd}div.dt-datetime table td.selectable.now button{font-weight:bold}div.dt-datetime table td.selectable.selected button{background:#4e6ca3;color:white;border-radius:2px}div.dt-datetime table td.selectable button:hover{background:#ff8000;color:white;border-radius:2px}div.dt-datetime table td.dt-datetime-week{font-size:.7em}div.dt-datetime table button{width:100%;box-sizing:border-box;border:none;background:transparent;font-size:inherit;color:inherit;text-align:center;padding:4px 0;cursor:pointer;margin:0}div.dt-datetime table button span{display:inline-block;min-width:14px;text-align:right}div.dt-datetime table.weekNumber th{width:12.5%}div.dt-datetime div.dt-datetime-calendar table{margin-top:0}div.dt-datetime div.dt-datetime-label{position:relative;display:inline-block;height:30px;padding:5px 6px;border:1px solid transparent;box-sizing:border-box;cursor:pointer}div.dt-datetime div.dt-datetime-label:hover{border:1px solid #ddd;border-radius:2px;background-color:#f5f5f5}div.dt-datetime div.dt-datetime-label select{position:absolute;top:6px;left:0;cursor:pointer;opacity:0}div.dt-datetime.horizontal{width:550px}div.dt-datetime.horizontal div.dt-datetime-date,div.dt-datetime.horizontal div.dt-datetime-time{width:48%}div.dt-datetime.horizontal div.dt-datetime-time{margin-left:4%}div.dt-datetime div.dt-datetime-date{position:relative;float:left;width:100%}div.dt-datetime div.dt-datetime-time{position:relative;float:left;width:100%;text-align:center}div.dt-datetime div.dt-datetime-time>span{vertical-align:middle}div.dt-datetime div.dt-datetime-time th{text-align:left}div.dt-datetime div.dt-datetime-time div.dt-datetime-timeblock{display:inline-block;vertical-align:middle}div.dt-datetime div.dt-datetime-iconLeft,div.dt-datetime div.dt-datetime-iconRight{width:30px;height:30px;background-position:center;background-repeat:no-repeat;opacity:.3;overflow:hidden;box-sizing:border-box;border:1px solid transparent}div.dt-datetime div.dt-datetime-iconLeft:hover,div.dt-datetime div.dt-datetime-iconRight:hover{border:1px solid #ccc;border-radius:2px;background-color:#f0f0f0;opacity:.6}div.dt-datetime div.dt-datetime-iconLeft button,div.dt-datetime div.dt-datetime-iconRight button{border:none;background:transparent;text-indent:30px;height:100%;width:100%;cursor:pointer}div.dt-datetime div.dt-datetime-iconLeft{position:absolute;top:5px;left:5px}div.dt-datetime div.dt-datetime-iconLeft button{position:relative;z-index:1}div.dt-datetime div.dt-datetime-iconLeft:after{position:absolute;top:7px;left:10px;display:block;content:"";border-top:7px solid transparent;border-right:7px solid black;border-bottom:7px solid transparent}div.dt-datetime div.dt-datetime-iconRight{position:absolute;top:5px;right:5px}div.dt-datetime div.dt-datetime-iconRight button{position:relative;z-index:1}div.dt-datetime div.dt-datetime-iconRight:after{position:absolute;top:7px;left:12px;display:block;content:"";border-top:7px solid transparent;border-left:7px solid black;border-bottom:7px solid transparent}div.dt-datetime-error{clear:both;padding:0 1em;max-width:240px;font-size:11px;line-height:1.25em;text-align:center;color:#b11f1f}html.datatable-dark input.dt-datetime{color-scheme:dark}html.datatable-dark div.dt-datetime{border:1px solid #595b5e;background-color:#212529;box-shadow:3px 4px 10px 1px rgba(0, 0, 0, 0.8)}html.datatable-dark div.dt-datetime table th{color:#ccc}html.datatable-dark div.dt-datetime table td{color:#eee}html.datatable-dark div.dt-datetime table td.selectable{background:#373c41}html.datatable-dark div.dt-datetime table td.selectable.disabled{color:#aaa;background:#171b1f}html.datatable-dark div.dt-datetime table td.selectable.disabled button:hover{color:#aaa;background:#171b1f}html.datatable-dark div.dt-datetime table td.selectable.now{background:#4b5055}html.datatable-dark div.dt-datetime table td.selectable.selected button{background:#6ea8fe;color:black}html.datatable-dark div.dt-datetime table td.selectable button:hover{background:#ff8000;color:black}html.datatable-dark div.dt-datetime div.dt-datetime-label:hover{border:1px solid transparent;background-color:rgba(255, 255, 255, 0.1)}html.datatable-dark div.dt-datetime div.dt-datetime-iconLeft:hover,html.datatable-dark div.dt-datetime div.dt-datetime-iconRight:hover,html.datatable-dark div.dt-datetime div.dt-datetime-iconUp:hover,html.datatable-dark div.dt-datetime div.dt-datetime-iconDown:hover{border:1px solid transparent;background-color:rgba(255, 255, 255, 0.1)}html.datatable-dark div.dt-datetime div.dt-datetime-iconLeft:after{border-right-color:white}html.datatable-dark div.dt-datetime div.dt-datetime-iconRight:after{border-left-color:white}html.datatable-dark div.dt-datetime select{color-scheme:dark}html.datatable-dark div.dt-datetime-error{color:#b11f1f}
+
+
+table.dataTable thead tr>.dtfc-fixed-start,table.dataTable thead tr>.dtfc-fixed-end,table.dataTable tfoot tr>.dtfc-fixed-start,table.dataTable tfoot tr>.dtfc-fixed-end{top:0;bottom:0;z-index:3;background-color:white}table.dataTable tbody tr>.dtfc-fixed-start,table.dataTable tbody tr>.dtfc-fixed-end{z-index:1;background-color:white}table.dataTable tr>.dtfc-fixed-left::after,table.dataTable tr>.dtfc-fixed-right::after{position:absolute;top:0;bottom:0;width:10px;transition:box-shadow .3s;content:"";pointer-events:none}table.dataTable tr>.dtfc-fixed-left::after{right:0;transform:translateX(100%)}table.dataTable tr>.dtfc-fixed-right::after{left:0;transform:translateX(-80%)}table.dataTable.dtfc-scrolling-left tr>.dtfc-fixed-left::after{box-shadow:inset 10px 0 8px -8px rgba(0, 0, 0, 0.2)}table.dataTable.dtfc-scrolling-right tr>.dtfc-fixed-right::after{box-shadow:inset -10px 0 8px -8px rgba(0, 0, 0, 0.2)}table.dataTable.dtfc-scrolling-right tr>.dtfc-fixed-right+.dtfc-fixed-right::after{box-shadow:none}div.dt-scroll,div.dtfh-floatingparent{position:relative}div.dt-scroll div.dtfc-top-blocker,div.dt-scroll div.dtfc-bottom-blocker,div.dtfh-floatingparent div.dtfc-top-blocker,div.dtfh-floatingparent div.dtfc-bottom-blocker{position:absolute;background-color:white}html.datatable-dark table.dataTable thead tr>.dtfc-fixed-start,html.datatable-dark table.dataTable thead tr>.dtfc-fixed-end,html.datatable-dark table.dataTable tfoot tr>.dtfc-fixed-start,html.datatable-dark table.dataTable tfoot tr>.dtfc-fixed-end{background-color:var(--dt-html-background)}html.datatable-dark table.dataTable tbody tr>.dtfc-fixed-start,html.datatable-dark table.dataTable tbody tr>.dtfc-fixed-end{background-color:var(--dt-html-background)}html.datatable-dark table.dataTable.dtfc-scrolling-left tbody>tr>.dtfc-fixed-left::after{box-shadow:inset 10px 0 8px -8px rgba(0, 0, 0, 0.3)}html.datatable-dark table.dataTable.dtfc-scrolling-right tbody>tr>.dtfc-fixed-right::after{box-shadow:inset -10px 0 8px -8px rgba(0, 0, 0, 0.3)}html.datatable-dark table.dataTable.dtfc-scrolling-right tbody>tr>.dtfc-fixed-right+.dtfc-fixed-right::after{box-shadow:none}html.datatable-dark div.dtfc-top-blocker,html.datatable-dark div.dtfc-bottom-blocker{background-color:var(--dt-html-background)}
+
+
+table.fixedHeader-floating,table.fixedHeader-locked{position:relative !important;background-color:var(--dt-html-background);background-color:var(--dt-html-background)}@media print{table.fixedHeader-floating{display:none}}
+
+
+table.dataTable tbody th.focus,table.dataTable tbody td.focus{outline:2px solid #36f;outline-offset:-2px}table.dataTable tbody tr.selected th.focus,table.dataTable tbody tr.selected td.focus{outline-color:#03c}div.dtk-focus-alt table.dataTable tbody th.focus,div.dtk-focus-alt table.dataTable tbody td.focus{outline:2px solid #ff8b33;outline-offset:-2px}html.datatable-dark table.dataTable tbody th.focus,html.datatable-dark table.dataTable tbody td.focus{outline-color:rgb(13, 110, 253)}html.datatable-dark table.dataTable tbody tr.selected th.focus,html.datatable-dark table.dataTable tbody tr.selected td.focus{outline-color:#0143a3}html.datatable-dark div.dtk-focus-alt table.dataTable tbody th.focus,html.datatable-dark div.dtk-focus-alt table.dataTable tbody td.focus{outline-color:#ff8b33}
+
+
+table.dataTable.dtr-inline.collapsed>tbody>tr>td.child,table.dataTable.dtr-inline.collapsed>tbody>tr>th.child,table.dataTable.dtr-inline.collapsed>tbody>tr>td.dataTables_empty{cursor:default !important}table.dataTable.dtr-inline.collapsed>tbody>tr>td.child:before,table.dataTable.dtr-inline.collapsed>tbody>tr>th.child:before,table.dataTable.dtr-inline.collapsed>tbody>tr>td.dataTables_empty:before{display:none !important}table.dataTable.dtr-inline.collapsed>tbody>tr>td.dtr-control,table.dataTable.dtr-inline.collapsed>tbody>tr>th.dtr-control{cursor:pointer}table.dataTable.dtr-inline.collapsed>tbody>tr>td.dtr-control:before,table.dataTable.dtr-inline.collapsed>tbody>tr>th.dtr-control:before{margin-right:.5em;display:inline-block;box-sizing:border-box;content:"";border-top:5px solid transparent;border-left:10px solid rgba(0, 0, 0, 0.5);border-bottom:5px solid transparent;border-right:0px solid transparent}table.dataTable.dtr-inline.collapsed>tbody>tr>td.dtr-control.arrow-right::before,table.dataTable.dtr-inline.collapsed>tbody>tr>th.dtr-control.arrow-right::before{border-top:5px solid transparent;border-left:0px solid transparent;border-bottom:5px solid transparent;border-right:10px solid rgba(0, 0, 0, 0.5)}table.dataTable.dtr-inline.collapsed>tbody>tr.dtr-expanded>td.dtr-control:before,table.dataTable.dtr-inline.collapsed>tbody>tr.dtr-expanded>th.dtr-control:before{border-top:10px solid rgba(0, 0, 0, 0.5);border-left:5px solid transparent;border-bottom:0px solid transparent;border-right:5px solid transparent}table.dataTable.dtr-inline.collapsed.compact>tbody>tr>td.dtr-control,table.dataTable.dtr-inline.collapsed.compact>tbody>tr>th.dtr-control{padding-left:.333em}table.dataTable.dtr-column>tbody>tr>td.dtr-control,table.dataTable.dtr-column>tbody>tr>th.dtr-control,table.dataTable.dtr-column>tbody>tr>td.control,table.dataTable.dtr-column>tbody>tr>th.control{cursor:pointer}table.dataTable.dtr-column>tbody>tr>td.dtr-control:before,table.dataTable.dtr-column>tbody>tr>th.dtr-control:before,table.dataTable.dtr-column>tbody>tr>td.control:before,table.dataTable.dtr-column>tbody>tr>th.control:before{display:inline-block;box-sizing:border-box;content:"";border-top:5px solid transparent;border-left:10px solid rgba(0, 0, 0, 0.5);border-bottom:5px solid transparent;border-right:0px solid transparent}table.dataTable.dtr-column>tbody>tr>td.dtr-control.arrow-right::before,table.dataTable.dtr-column>tbody>tr>th.dtr-control.arrow-right::before,table.dataTable.dtr-column>tbody>tr>td.control.arrow-right::before,table.dataTable.dtr-column>tbody>tr>th.control.arrow-right::before{border-top:5px solid transparent;border-left:0px solid transparent;border-bottom:5px solid transparent;border-right:10px solid rgba(0, 0, 0, 0.5)}table.dataTable.dtr-column>tbody>tr.dtr-expanded td.dtr-control:before,table.dataTable.dtr-column>tbody>tr.dtr-expanded th.dtr-control:before,table.dataTable.dtr-column>tbody>tr.dtr-expanded td.control:before,table.dataTable.dtr-column>tbody>tr.dtr-expanded th.control:before{border-top:10px solid rgba(0, 0, 0, 0.5);border-left:5px solid transparent;border-bottom:0px solid transparent;border-right:5px solid transparent}table.dataTable>tbody>tr.child{padding:.5em 1em}table.dataTable>tbody>tr.child:hover{background:transparent !important}table.dataTable>tbody>tr.child ul.dtr-details{display:inline-block;list-style-type:none;margin:0;padding:0}table.dataTable>tbody>tr.child ul.dtr-details>li{border-bottom:1px solid #efefef;padding:.5em 0}table.dataTable>tbody>tr.child ul.dtr-details>li:first-child{padding-top:0}table.dataTable>tbody>tr.child ul.dtr-details>li:last-child{padding-bottom:0;border-bottom:none}table.dataTable>tbody>tr.child span.dtr-title{display:inline-block;min-width:75px;font-weight:bold}div.dtr-modal{position:fixed;box-sizing:border-box;top:0;left:0;height:100%;width:100%;z-index:100;padding:10em 1em}div.dtr-modal div.dtr-modal-display{position:absolute;top:0;left:0;bottom:0;right:0;width:50%;height:fit-content;max-height:75%;overflow:auto;margin:auto;z-index:102;overflow:auto;background-color:#f5f5f7;border:1px solid black;border-radius:.5em;box-shadow:0 12px 30px rgba(0, 0, 0, 0.6)}div.dtr-modal div.dtr-modal-content{position:relative;padding:2.5em}div.dtr-modal div.dtr-modal-content h2{margin-top:0}div.dtr-modal div.dtr-modal-close{position:absolute;top:6px;right:6px;width:22px;height:22px;text-align:center;border-radius:3px;cursor:pointer;z-index:12}div.dtr-modal div.dtr-modal-background{position:fixed;top:0;left:0;right:0;bottom:0;z-index:101;background:rgba(0, 0, 0, 0.6)}@media screen and (max-width: 767px){div.dtr-modal div.dtr-modal-display{width:95%}}html.datatable-dark table.dataTable>tbody>tr>td.dtr-control:before,html[data-bs-theme=dark] table.dataTable>tbody>tr>td.dtr-control:before{border-left-color:rgba(255, 255, 255, 0.5) !important}html.datatable-dark table.dataTable>tbody>tr>td.dtr-control.arrow-right::before,html[data-bs-theme=dark] table.dataTable>tbody>tr>td.dtr-control.arrow-right::before{border-right-color:rgba(255, 255, 255, 0.5) !important}html.datatable-dark table.dataTable>tbody>tr.dtr-expanded>td.dtr-control:before,html.datatable-dark table.dataTable>tbody>tr.dtr-expanded>th.dtr-control:before,html[data-bs-theme=dark] table.dataTable>tbody>tr.dtr-expanded>td.dtr-control:before,html[data-bs-theme=dark] table.dataTable>tbody>tr.dtr-expanded>th.dtr-control:before{border-top-color:rgba(255, 255, 255, 0.5) !important;border-left-color:transparent !important;border-right-color:transparent !important}html.datatable-dark table.dataTable>tbody>tr.child ul.dtr-details>li,html[data-bs-theme=dark] table.dataTable>tbody>tr.child ul.dtr-details>li{border-bottom-color:rgb(64, 67, 70)}html.datatable-dark div.dtr-modal div.dtr-modal-display,html[data-bs-theme=dark] div.dtr-modal div.dtr-modal-display{background-color:rgb(33, 37, 41);border:1px solid rgba(255, 255, 255, 0.15)}
+
+
+table.dataTable tr.dtrg-group th{background-color:rgba(0, 0, 0, 0.1);text-align:left}table.dataTable tr.dtrg-group.dtrg-level-0 th{font-weight:bold}table.dataTable tr.dtrg-group.dtrg-level-1 th,table.dataTable tr.dtrg-group.dtrg-level-2 th,table.dataTable tr.dtrg-group.dtrg-level-3 th,table.dataTable tr.dtrg-group.dtrg-level-4 th,table.dataTable tr.dtrg-group.dtrg-level-5 th{background-color:rgba(0, 0, 0, 0.05);padding-top:.25em;padding-bottom:.25em;padding-left:2em;font-size:.9em}table.dataTable tr.dtrg-group.dtrg-level-2 th{background-color:rgba(0, 0, 0, 0.01);padding-left:2.5em}table.dataTable tr.dtrg-group.dtrg-level-3 th{background-color:rgba(0, 0, 0, 0.01);padding-left:3em}table.dataTable tr.dtrg-group.dtrg-level-4 th{background-color:rgba(0, 0, 0, 0.01);padding-left:3.5em}table.dataTable tr.dtrg-group.dtrg-level-5 th{background-color:rgba(0, 0, 0, 0.01);padding-left:4em}html.datatable-dark table.dataTable tr.dtrg-group th{background-color:rgba(255, 255, 255, 0.1)}html.datatable-dark table.dataTable tr.dtrg-group.dtrg-level-1 th{background-color:rgba(255, 255, 255, 0.05)}html.datatable-dark table.dataTable tr.dtrg-group.dtrg-level-2 th,html.datatable-dark table.dataTable tr.dtrg-group.dtrg-level-3 th,html.datatable-dark table.dataTable tr.dtrg-group.dtrg-level-4 th,html.datatable-dark table.dataTable tr.dtrg-group.dtrg-level-5 th{background-color:rgba(255, 255, 255, 0.01)}
+
+
+div.dt-rowReorder-float-parent{table-layout:fixed;outline:2px solid rgb(10, 89, 203);z-index:2001;position:absolute !important;overflow:hidden;border-radius:3px}div.dt-rowReorder-float-parent table.dt-rowReorder-float{opacity:.9;background-color:white;margin:0 !important}div.dt-rowReorder-float-parent.drop-not-allowed{cursor:not-allowed}tr.dt-rowReorder-moving{outline:2px solid #888;outline-offset:-2px}body.dt-rowReorder-noOverflow{overflow-x:hidden}table.dataTable td.reorder{text-align:center;cursor:move}html.datatable-dark div.dt-rowReorder-float-parent{outline-color:rgb(110, 168, 254)}html.datatable-dark div.dt-rowReorder-float-parent table.dt-rowReorder-float{background-color:var(--dt-html-background)}html.datatable-dark tr.dt-rowReorder-moving{outline-color:#aaa}
+
+
+div.dts{display:block !important}div.dts tbody th,div.dts tbody td{white-space:nowrap}div.dts div.dts_loading{z-index:1}div.dts div.dts_label{position:absolute;right:20px;background:rgba(0, 0, 0, 0.8);color:white;box-shadow:3px 3px 10px rgba(0, 0, 0, 0.5);text-align:right;border-radius:3px;padding:.4em;z-index:2;display:none}div.dts div.dt-scroll-body,div.dts div.dataTables_scrollBody{background:repeating-linear-gradient(45deg, rgba(0, 0, 0, 0.025), rgba(0, 0, 0, 0.025) 10px, rgba(0, 0, 0, 0) 10px, rgba(0, 0, 0, 0) 20px)}div.dts div.dt-scroll-body table,div.dts div.dataTables_scrollBody table{background-color:white;z-index:2}div.dts div.dt-length,div.dts div.dt-paging,div.dts div.dataTables_paginate,div.dts div.dataTables_length{display:none}html.datatable-dark div.dts div.dts_label{background:rgba(255, 255, 255, 0.8);color:black}html.datatable-dark div.dts div.dt-scroll-body,html.datatable-dark div.dts div.dataTables_scrollBody{background:repeating-linear-gradient(45deg, rgba(255, 255, 255, 0.025), rgba(255, 255, 255, 0.025) 10px, rgba(255, 255, 255, 0) 10px, rgba(255, 255, 255, 0) 20px)}html.datatable-dark div.dts div.dt-scroll-body table,html.datatable-dark div.dts div.dataTables_scrollBody table{background-color:var(--dt-html-background);z-index:2}
+
+
+div.dt-button-collection{overflow:visible !important;z-index:2002 !important}div.dt-button-collection div.dtsb-searchBuilder{padding-left:1em !important;padding-right:1em !important}div.dt-button-collection.dtb-collection-closeable div.dtsb-titleRow{padding-right:40px}.dtsb-greyscale{border:1px solid #cecece !important}div.dtsb-logicContainer .dtsb-greyscale{border:none !important}div.dtsb-searchBuilder{justify-content:space-evenly;cursor:default;margin-bottom:1em;text-align:left}div.dtsb-searchBuilder button.dtsb-button,div.dtsb-searchBuilder select{font-size:1em}div.dtsb-searchBuilder div.dtsb-titleRow{justify-content:space-evenly;margin-bottom:.5em}div.dtsb-searchBuilder div.dtsb-titleRow div.dtsb-title{display:inline-block;padding-top:14px}div.dtsb-searchBuilder div.dtsb-titleRow div.dtsb-title:empty{display:inline}div.dtsb-searchBuilder div.dtsb-titleRow button.dtsb-clearAll{float:right;margin-bottom:.8em}div.dtsb-searchBuilder div.dtsb-vertical .dtsb-value,div.dtsb-searchBuilder div.dtsb-vertical .dtsb-data,div.dtsb-searchBuilder div.dtsb-vertical .dtsb-condition{display:block}div.dtsb-searchBuilder div.dtsb-group{position:relative;clear:both;margin-bottom:.8em}div.dtsb-searchBuilder div.dtsb-group button.dtsb-search{float:right}div.dtsb-searchBuilder div.dtsb-group button.dtsb-clearGroup{margin:2px;text-align:center;padding:0}div.dtsb-searchBuilder div.dtsb-group div.dtsb-logicContainer{-webkit-transform:rotate(90deg);-moz-transform:rotate(90deg);-o-transform:rotate(90deg);-ms-transform:rotate(90deg);transform:rotate(90deg);position:absolute;margin-top:.8em;margin-right:.8em}div.dtsb-searchBuilder div.dtsb-group div.dtsb-criteria{margin-bottom:.8em;display:flex;justify-content:start;flex-flow:row wrap}div.dtsb-searchBuilder div.dtsb-group div.dtsb-criteria select.dtsb-dropDown,div.dtsb-searchBuilder div.dtsb-group div.dtsb-criteria input.dtsb-input{padding:.4em;margin-right:.8em;min-width:5em;max-width:20em;color:inherit;font-size:1em}div.dtsb-searchBuilder div.dtsb-group div.dtsb-criteria select.dtsb-dropDown option.dtsb-notItalic,div.dtsb-searchBuilder div.dtsb-group div.dtsb-criteria input.dtsb-input option.dtsb-notItalic{font-style:normal}div.dtsb-searchBuilder div.dtsb-group div.dtsb-criteria select.dtsb-italic{font-style:italic}div.dtsb-searchBuilder div.dtsb-group div.dtsb-criteria div.dtsb-inputCont{flex:1;white-space:nowrap}div.dtsb-searchBuilder div.dtsb-group div.dtsb-criteria div.dtsb-inputCont span.dtsb-joiner{margin-right:.8em}div.dtsb-searchBuilder div.dtsb-group div.dtsb-criteria div.dtsb-inputCont input.dtsb-value{width:33%}div.dtsb-searchBuilder div.dtsb-group div.dtsb-criteria div.dtsb-inputCont select,div.dtsb-searchBuilder div.dtsb-group div.dtsb-criteria div.dtsb-inputCont input{height:100%;box-sizing:border-box}div.dtsb-searchBuilder div.dtsb-group div.dtsb-criteria div.dtsb-buttonContainer{margin-left:auto;display:inline-block}div.dtsb-searchBuilder div.dtsb-group div.dtsb-criteria div.dtsb-buttonContainer button.dtsb-delete,div.dtsb-searchBuilder div.dtsb-group div.dtsb-criteria div.dtsb-buttonContainer button.dtsb-right,div.dtsb-searchBuilder div.dtsb-group div.dtsb-criteria div.dtsb-buttonContainer button.dtsb-left{margin-right:.8em}div.dtsb-searchBuilder div.dtsb-group div.dtsb-criteria div.dtsb-buttonContainer button.dtsb-delete:last-child,div.dtsb-searchBuilder div.dtsb-group div.dtsb-criteria div.dtsb-buttonContainer button.dtsb-right:last-child,div.dtsb-searchBuilder div.dtsb-group div.dtsb-criteria div.dtsb-buttonContainer button.dtsb-left:last-child{margin-right:0}@media screen and (max-width: 550px){div.dtsb-searchBuilder div.dtsb-group div.dtsb-criteria{display:flex;flex-flow:none;flex-direction:column;justify-content:start;padding-right:calc(35px + .8em);margin-bottom:0px}div.dtsb-searchBuilder div.dtsb-group div.dtsb-criteria:not(:first-child),div.dtsb-searchBuilder div.dtsb-group div.dtsb-criteria:not(:nth-child(2)),div.dtsb-searchBuilder div.dtsb-group div.dtsb-criteria:not(:last-child){padding-top:.8em}div.dtsb-searchBuilder div.dtsb-group div.dtsb-criteria:first-child,div.dtsb-searchBuilder div.dtsb-group div.dtsb-criteria:nth-child(2),div.dtsb-searchBuilder div.dtsb-group div.dtsb-criteria:last-child{padding-top:0em}div.dtsb-searchBuilder div.dtsb-group div.dtsb-criteria select.dtsb-dropDown,div.dtsb-searchBuilder div.dtsb-group div.dtsb-criteria input.dtsb-input{max-width:none;width:100%;margin-bottom:.8em;margin-right:.8em}div.dtsb-searchBuilder div.dtsb-group div.dtsb-criteria div.dtsb-inputCont{margin-right:.8em}div.dtsb-searchBuilder div.dtsb-group div.dtsb-criteria div.dtsb-buttonContainer{position:absolute;width:35px;display:flex;flex-wrap:wrap-reverse;right:0}div.dtsb-searchBuilder div.dtsb-group div.dtsb-criteria div.dtsb-buttonContainer button{margin-right:0px !important}}div.dtsb-searchBuilder button,div.dtsb-searchBuilder select.dtsb-dropDown,div.dtsb-searchBuilder input{background-color:#f9f9f9}div.dtsb-searchBuilder button.dtsb-button{position:relative;display:inline-block;box-sizing:border-box;padding:.5em 1em;border:1px solid rgba(0, 0, 0, 0.3);border-radius:2px;cursor:pointer;font-size:.88em;line-height:1.6em;color:inherit;white-space:nowrap;overflow:hidden;background-color:rgba(0, 0, 0, 0.1);background:linear-gradient(to bottom, rgba(230, 230, 230, 0.1) 0%, rgba(0, 0, 0, 0.1) 100%);-webkit-user-select:none;-moz-user-select:none;-ms-user-select:none;user-select:none;text-decoration:none;outline:none;text-overflow:ellipsis}div.dtsb-searchBuilder button.dtsb-button:hover{background-color:#cecece;cursor:pointer}div.dtsb-searchBuilder div.dtsb-logicContainer{border:1px solid rgba(0, 0, 0, 0.3);background-color:rgba(0, 0, 0, 0.1);background:linear-gradient(to right, rgba(230, 230, 230, 0.1) 0%, rgba(0, 0, 0, 0.1) 100%)}div.dtsb-searchBuilder div.dtsb-logicContainer button{border:1px solid transparent;background:transparent}div.dtsb-searchBuilder button.dtsb-clearGroup{min-width:2em;padding:0}div.dtsb-searchBuilder button.dtsb-iptbtn{min-width:100px;text-align:left}div.dtsb-searchBuilder div.dtsb-group div.dtsb-logicContainer{border:1px solid;border-color:#cecece;border-radius:3px;display:flex;flex-direction:row;flex-wrap:wrap;justify-content:flex-start;align-content:flex-start;align-items:flex-start}div.dtsb-searchBuilder div.dtsb-group div.dtsb-logicContainer button.dtsb-logic{border:none;border-radius:0px;flex-grow:1;flex-shrink:0;flex-basis:3em;margin:0px}div.dtsb-searchBuilder div.dtsb-group div.dtsb-logicContainer button.dtsb-clearGroup{border:none;border-radius:0px;width:2em;margin:0px}div.dtsb-searchBuilder div.dtsb-group div.dtsb-criteria select.dtsb-dropDown,div.dtsb-searchBuilder div.dtsb-group div.dtsb-criteria input.dtsb-input{border:1px solid;border-radius:3px}div.dtsb-searchBuilder div.dtsb-group div.dtsb-criteria select.dtsb-condition{border-color:#48b13c}div.dtsb-searchBuilder div.dtsb-group div.dtsb-criteria select.dtsb-data{border-color:#e70f00}div.dtsb-searchBuilder div.dtsb-group div.dtsb-criteria select.dtsb-value,div.dtsb-searchBuilder div.dtsb-group div.dtsb-criteria input.dtsb-value{border-color:#0069ba}html.datatable-dark div.dtsb-searchBuilder button.dtsb-button,html.datatable-dark div.dtsb-searchBuilder select.dtsb-dropDown,html.datatable-dark div.dtsb-searchBuilder input.dtsb-input{background-color:rgb(66, 69, 73) !important;color-scheme:dark}html.datatable-dark div.dtsb-searchBuilder button.dtsb-button{border:1px solid rgb(89, 91, 94);background:rgba(255, 255, 255, 0.15)}html.datatable-dark div.dtsb-searchBuilder button.dtsb-button:hover{background:rgba(179, 179, 179, 0.15)}html.datatable-dark div.dtsb-searchBuilder div.dtsb-logicContainer{border:1px solid rgb(89, 91, 94)}html.datatable-dark div.dtsb-searchBuilder .dtsb-greyscale{border-color:rgba(255, 255, 255, 0.2) !important}
+
+
+div.dtsp-topRow{display:flex;flex-direction:row;flex-wrap:nowrap;border:2px solid rgba(0, 0, 0, 0);border-radius:3px;justify-content:space-around;align-content:flex-start;align-items:flex-start}div.dtsp-topRow input.dtsp-search{text-overflow:ellipsis;min-width:50px;flex-basis:90px;max-width:none}div.dtsp-topRow input.dtsp-search::placeholder{color:inherit}div.dtsp-topRow div.dtsp-subRow1{display:flex;flex-direction:row;flex-wrap:nowrap;flex:1 1 auto}div.dtsp-topRow div.dtsp-subRow1 div.dtsp-searchCont{position:relative;width:100%}div.dtsp-topRow div.dtsp-subRow1 input{padding-right:2em;width:100% !important;box-sizing:border-box;font-size:1em}div.dtsp-topRow div.dtsp-subRow1 input[disabled=disabled]{background-color:transparent;border:none;cursor:initial;box-shadow:none;padding-bottom:0;padding-top:0;min-height:1em;height:fit-content;box-sizing:content-box}div.dtsp-topRow div.dtsp-subRow1 input[disabled=disabled]::placeholder{color:initial;opacity:1}div.dtsp-topRow div.dtsp-subRow1 button.dtsp-searchIcon{position:absolute;top:0;right:0;bottom:0}div.dtsp-topRow div.dtsp-subRow1 button.dtsp-searchIcon span{background-image:url("data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAA8AAAAPCAYAAAA71pVKAAABbmlDQ1BpY2MAACiRdZE7SwNBFIU/EyWikRRaiFhsoWKhEBREO42FTZAQFYza7G5eQhKX3QQJtoKNhWAh2vgq/AfaCrYKgqAIIhb+Al+NhPVOEkiQZJbZ+3FmzmXmDHjCGTPrtAYhm8vb0bmQthxb0Xzv+PHRxRSabjrWTCQSpun4eaRF1YdR1av5voajM55wTGhpF54wLTsvPC0c3sxbineFe8y0Hhc+ER6x5YDCt0o3KvymOFXhL8X2YnQWPKqnlqpjo47NtJ0VHhYeyGYKZvU86ib+RG5pQWqfzH4coswRQsOgwDoZ8oxKzUlmjX3Bsm+eDfGY8rcoYosjRVq8I6IWpGtCalL0hHwZiir3/3k6yfGxSnd/CNpeXfdzEHz7UNpz3d9T1y2dgfcFrnM1/4bkNPkt+l5NGziGwDZc3tQ04wCudqD32dJtvSx5ZXqSSfi4gK4YdN9Dx2olq+o650+wuCVPdAeHRzAk+wNrfw8JaBFXEnV+AAAACXBIWXMAAA9hAAAPYQGoP6dpAAABMUlEQVQoU6XRr0vDQRjH8akoM4iIjqGoOIZ5oIjB5XWxajaYDGLSIhhNYjcPRDSJwbQNw+L+BNGgYYo/5pT5/shz8vDlBgMPXux7z3N3z+25VOofYyCyd4ZYCavI4gXPsRp9LqiDdrEMH+8wv8Vh8gBfWclFPOEUN3hAHjlMoRa7wTzBS5xgKLFglPkZLjDic6HyDsEMNvGR2Nxifoci3tEI+X770JU0XmPXIlax+LTPh83fFox1X6kxyzdjm9UcdXi9S+Vti6svfyNULhNR9TVsYNhW6Ff9KKCNR7/Zv6eeaQ+6+qcdpu9BqGlp1HFgud+FYdzzUcUExu0Q/cdzHGEFetIlXKPjK/sbqYoOftMiS+j9jzEJPd1Wt+5+kdR/9EM9ucIC5jCbyPc01Q32kfsBppYz3hYFcCwAAAAASUVORK5CYII=") !important;background-repeat:no-repeat;background-position:center;background-size:12px}div.dtsp-topRow div.dtsp-subRow2{white-space:nowrap;flex:0 0 auto}div.dtsp-topRow button>span{display:inline-block;height:100%;width:100%}div.dtsp-topRow button.dtsp-nameButton span{background-image:url("data:image/png;base64,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") !important;background-repeat:no-repeat;background-position:center;background-size:23px;vertical-align:bottom}div.dtsp-topRow button.dtsp-countButton span{background-image:url("data:image/png;base64,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") !important;background-repeat:no-repeat;background-position:center;background-size:18px;vertical-align:bottom}div.dtsp-topRow button.dtsp-collapseButton span.dtsp-caret{position:relative;top:9px;display:inline-block}div.dtsp-topRow button.dtsp-collapseButton.dtsp-rotated{transform:rotate(180deg)}div.dtsp-searchPane table thead th,div.dtsp-searchPane table thead td{width:100% !important}div.dt-button-collection{z-index:2002}div.dt-button-collection.dtb-collection-closeable div.dtsp-titleRow{padding-right:25px}div.dtsp-columns-1{max-width:100%;min-width:100%;margin:0px !important}div.dtsp-columns-2{max-width:49%;min-width:49%;margin:0px !important}div.dtsp-columns-3{max-width:32%;min-width:32%;margin:0px !important}div.dtsp-columns-4{max-width:24%;min-width:24%;margin:0px !important}div.dtsp-columns-5{max-width:19%;min-width:19%;margin:0px !important}div.dtsp-columns-6{max-width:16%;min-width:16%;margin:0px !important}div.dtsp-columns-7{max-width:14%;min-width:14%;margin:0px !important}div.dtsp-columns-8{max-width:12%;min-width:12%;margin:0px !important}div.dtsp-columns-9{max-width:10.5%;min-width:10.5%;margin:0px !important}div.dtsp-narrow{flex-direction:column !important}div.dtsp-narrow div.dtsp-subRow1,div.dtsp-narrow div.dtsp-subRow2{width:100%}div.dtsp-narrow div.dtsp-subRow2 button{margin:0 !important;width:25% !important}div.dt-button-collection div.dtsp-panesContainer{padding-left:1em;padding-right:1em;margin-bottom:0}div.dtsp-panesContainer{margin-bottom:1em}div.dtsp-searchPane div.dt-container,div.dtsp-searchPane div.dataTables_wrapper{width:100%}div.dtsp-searchPane div.dt-container div.dataTables_layout_cell,div.dtsp-searchPane div.dataTables_wrapper div.dataTables_layout_cell{padding:0}div.dtsp-searchPane div.dt-container div.dt-scroll-head,div.dtsp-searchPane div.dt-container div.dataTables_scrollHead,div.dtsp-searchPane div.dataTables_wrapper div.dt-scroll-head,div.dtsp-searchPane div.dataTables_wrapper div.dataTables_scrollHead{display:none !important}div.dtsp-searchPane div.dt-container div.dt-scroll-body,div.dtsp-searchPane div.dt-container div.dataTables_scrollBody,div.dtsp-searchPane div.dataTables_wrapper div.dt-scroll-body,div.dtsp-searchPane div.dataTables_wrapper div.dataTables_scrollBody{background:white !important;border:none}div.dtsp-searchPane div.dt-container div.dt-scroll-body thead,div.dtsp-searchPane div.dt-container div.dataTables_scrollBody thead,div.dtsp-searchPane div.dataTables_wrapper div.dt-scroll-body thead,div.dtsp-searchPane div.dataTables_wrapper div.dataTables_scrollBody thead{display:none}div.dtsp-searchPane div.dt-container div.dt-scroll-body table tr>th,div.dtsp-searchPane div.dt-container div.dt-scroll-body table tr>td,div.dtsp-searchPane div.dt-container div.dataTables_scrollBody table tr>th,div.dtsp-searchPane div.dt-container div.dataTables_scrollBody table tr>td,div.dtsp-searchPane div.dataTables_wrapper div.dt-scroll-body table tr>th,div.dtsp-searchPane div.dataTables_wrapper div.dt-scroll-body table tr>td,div.dtsp-searchPane div.dataTables_wrapper div.dataTables_scrollBody table tr>th,div.dtsp-searchPane div.dataTables_wrapper div.dataTables_scrollBody table tr>td{padding:5px 10px}div.dtsp-searchPane div.dt-container div.dt-scroll-body td.dtsp-nameColumn,div.dtsp-searchPane div.dt-container div.dataTables_scrollBody td.dtsp-nameColumn,div.dtsp-searchPane div.dataTables_wrapper div.dt-scroll-body td.dtsp-nameColumn,div.dtsp-searchPane div.dataTables_wrapper div.dataTables_scrollBody td.dtsp-nameColumn{width:100% !important}div.dtsp-searchPane div.dt-container div.dt-scroll-body div.dtsp-nameCont,div.dtsp-searchPane div.dt-container div.dataTables_scrollBody div.dtsp-nameCont,div.dtsp-searchPane div.dataTables_wrapper div.dt-scroll-body div.dtsp-nameCont,div.dtsp-searchPane div.dataTables_wrapper div.dataTables_scrollBody div.dtsp-nameCont{width:100%;display:flex;flex-direction:row;justify-content:flex-start;align-content:flex-start;align-items:flex-start}div.dtsp-searchPane div.dt-container div.dt-scroll-body div.dtsp-nameCont span.dtsp-name,div.dtsp-searchPane div.dt-container div.dt-scroll-body div.dtsp-nameCont span.dtsp-pill,div.dtsp-searchPane div.dt-container div.dataTables_scrollBody div.dtsp-nameCont span.dtsp-name,div.dtsp-searchPane div.dt-container div.dataTables_scrollBody div.dtsp-nameCont span.dtsp-pill,div.dtsp-searchPane div.dataTables_wrapper div.dt-scroll-body div.dtsp-nameCont span.dtsp-name,div.dtsp-searchPane div.dataTables_wrapper div.dt-scroll-body div.dtsp-nameCont span.dtsp-pill,div.dtsp-searchPane div.dataTables_wrapper div.dataTables_scrollBody div.dtsp-nameCont span.dtsp-name,div.dtsp-searchPane div.dataTables_wrapper div.dataTables_scrollBody div.dtsp-nameCont span.dtsp-pill{cursor:default}div.dtsp-searchPane div.dt-container div.dt-scroll-body div.dtsp-nameCont span.dtsp-name,div.dtsp-searchPane div.dt-container div.dataTables_scrollBody div.dtsp-nameCont span.dtsp-name,div.dtsp-searchPane div.dataTables_wrapper div.dt-scroll-body div.dtsp-nameCont span.dtsp-name,div.dtsp-searchPane div.dataTables_wrapper div.dataTables_scrollBody div.dtsp-nameCont span.dtsp-name{text-overflow:ellipsis;overflow:hidden;display:inline-block;vertical-align:middle;white-space:nowrap;flex-grow:1;text-align:left}div.dtsp-searchPane div.dt-container div.dt-scroll-body div.dtsp-nameCont span.dtsp-pill,div.dtsp-searchPane div.dt-container div.dataTables_scrollBody div.dtsp-nameCont span.dtsp-pill,div.dtsp-searchPane div.dataTables_wrapper div.dt-scroll-body div.dtsp-nameCont span.dtsp-pill,div.dtsp-searchPane div.dataTables_wrapper div.dataTables_scrollBody div.dtsp-nameCont span.dtsp-pill{display:inline-block;background-color:#cfcfcf;text-align:center;border-radius:10px;width:auto;min-width:30px;color:black;font-size:.9em;padding:0 4px}div.dtsp-searchPane div.dt-container div.dt-scroll-body div.dtsp-nameCont span.dtsp-pill:empty,div.dtsp-searchPane div.dt-container div.dataTables_scrollBody div.dtsp-nameCont span.dtsp-pill:empty,div.dtsp-searchPane div.dataTables_wrapper div.dt-scroll-body div.dtsp-nameCont span.dtsp-pill:empty,div.dtsp-searchPane div.dataTables_wrapper div.dataTables_scrollBody div.dtsp-nameCont span.dtsp-pill:empty{display:none}div.dtsp-panesContainer{clear:both;padding-left:0;padding-right:0;text-align:center}div.dtsp-panesContainer div.dtsp-searchPanes{display:flex;flex-direction:row;flex-wrap:wrap;justify-content:space-between;align-content:flex-start;align-items:stretch;clear:both;text-align:left}div.dtsp-panesContainer div.dtsp-searchPanes div.dtsp-searchPane{flex-grow:1;flex-shrink:0;font-size:.9em;margin-top:15px !important}div.dtsp-panesContainer div.dtsp-searchPanes div.dtsp-searchPane div.dt-container,div.dtsp-panesContainer div.dtsp-searchPanes div.dtsp-searchPane div.dataTables_wrapper{flex:1;box-sizing:border-box}div.dtsp-panesContainer div.dtsp-searchPanes div.dtsp-searchPane div.dt-container div.dt-search,div.dtsp-panesContainer div.dtsp-searchPanes div.dtsp-searchPane div.dt-container div.dataTables_filter,div.dtsp-panesContainer div.dtsp-searchPanes div.dtsp-searchPane div.dataTables_wrapper div.dt-search,div.dtsp-panesContainer div.dtsp-searchPanes div.dtsp-searchPane div.dataTables_wrapper div.dataTables_filter{display:none}div.dtsp-panesContainer div.dtsp-title{float:left;padding:10px 0}div.dtsp-panesContainer button.dtsp-clearAll,div.dtsp-panesContainer button.dtsp-collapseAll,div.dtsp-panesContainer button.dtsp-showAll{float:right}div.dtsp-hidden{display:none !important}html.datatable-dark div.dtsp-topRow div.dtsp-subRow1 div.dtsp-searchCont input[disabled=disabled]::placeholder,html[data-bs-theme=dark] div.dtsp-topRow div.dtsp-subRow1 div.dtsp-searchCont input[disabled=disabled]::placeholder{color:white}div.dtsp-searchPane div.dt-container,div.dtsp-searchPane div.dataTables_wrapper{border:1px solid #f0f0f0;border-radius:4px;overflow:hidden}div.dtsp-searchPane div.dt-container:hover,div.dtsp-searchPane div.dataTables_wrapper:hover{border:1px solid #cfcfcf}div.dtsp-searchPane div.dt-container div.dt-scroll,div.dtsp-searchPane div.dataTables_wrapper div.dt-scroll{margin:-5px 0}div.dtsp-searchPane div.dt-container table.dataTable,div.dtsp-searchPane div.dataTables_wrapper table.dataTable{border-bottom:none !important}div.dtsp-searchPane div.dtsp-topRow{border:1px solid transparent}div.dtsp-searchPane div.dtsp-topRow div.dtsp-subRow1 input[disabled=disabled]{padding-bottom:5px}div.dtsp-searchPane div.dtsp-topRow div.dtsp-searchCont input.dtsp-search{border:none;padding-left:3px}div.dtsp-searchPane div.dtsp-topRow.dtsp-bordered{border:1px solid #f0f0f0;border-radius:3px}div.dtsp-searchPane div.dtsp-topRow.dtsp-bordered:hover{background-color:#f0f0f0}div.dtsp-searchPane input.dtsp-paneInputButton,div.dtsp-searchPane button.dtsp-paneButton{height:35px;width:35px;min-width:0;display:inline-block;margin:2px;border:0px solid transparent;background-color:transparent;margin-bottom:0px}div.dtsp-searchPane input.dtsp-paneInputButton:hover,div.dtsp-searchPane button.dtsp-paneButton:hover{background-color:#f0f0f0;border-radius:2px;cursor:pointer}div.dtsp-searchPane button.dtsp-paneButton{vertical-align:middle;opacity:.6}div.dtsp-panesContainer button.dtsp-clearAll,div.dtsp-panesContainer button.dtsp-collapseAll,div.dtsp-panesContainer button.dtsp-showAll{border:1px solid transparent;background-color:transparent}div.dtsp-panesContainer button.dtsp-clearAll:hover,div.dtsp-panesContainer button.dtsp-collapseAll:hover,div.dtsp-panesContainer button.dtsp-showAll:hover{background-color:#f0f0f0;border-radius:2px;cursor:pointer}div.dtsp-panesContainer button.dtsp-disabledButton{cursor:default !important;color:rgb(124, 124, 124)}div.dtsp-panesContainer button.dtsp-disabledButton:hover{background-color:transparent}div.dtsp-panesContainer button.dtsp-disabledButton:focus{outline:none}@media screen and (max-width: 767px){div.dtsp-columns-4,div.dtsp-columns-5,div.dtsp-columns-6{max-width:31% !important;min-width:31% !important}}@media screen and (max-width: 640px){div.dtsp-searchPanes{flex-direction:column !important}div.dtsp-searchPane{max-width:98% !important;min-width:98% !important}}html.datatable-dark div.dtsp-topRow div.dtsp-subRow1 button.dtsp-searchIcon span{filter:invert(1)}html.datatable-dark div.dtsp-topRow button.dtsp-nameButton span{filter:invert(1)}html.datatable-dark div.dtsp-topRow button.dtsp-countButton span{filter:invert(1)}html.datatable-dark div.dtsp-topRow input.dtsp-paneInputButton,html.datatable-dark div.dtsp-topRow button.dtsp-paneButton{color:inherit}html.datatable-dark div.dtsp-topRow input.dtsp-paneInputButton:hover,html.datatable-dark div.dtsp-topRow button.dtsp-paneButton:hover{background-color:rgb(64, 69, 73)}html.datatable-dark div.dtsp-topRow.dtsp-bordered{border:1px solid rgba(255, 255, 255, 0.2);background:rgb(47, 52, 56) !important}html.datatable-dark div.dtsp-topRow.dtsp-bordered:hover{border:1px solid rgba(255, 255, 255, 0.3)}html.datatable-dark div.dtsp-panesContainer button.dtsp-clearAll,html.datatable-dark div.dtsp-panesContainer button.dtsp-collapseAll,html.datatable-dark div.dtsp-panesContainer button.dtsp-showAll{color:inherit}html.datatable-dark div.dtsp-panesContainer button.dtsp-clearAll:hover,html.datatable-dark div.dtsp-panesContainer button.dtsp-collapseAll:hover,html.datatable-dark div.dtsp-panesContainer button.dtsp-showAll:hover{background-color:rgb(64, 69, 73)}html.datatable-dark div.dtsp-panesContainer button.dtsp-disabledButton{color:rgb(124, 124, 124)}html.datatable-dark div.dtsp-searchPane div.dt-container,html.datatable-dark div.dtsp-searchPane div.dataTables_wrapper{border:1px solid rgba(255, 255, 255, 0.2)}html.datatable-dark div.dtsp-searchPane div.dt-container:hover,html.datatable-dark div.dtsp-searchPane div.dataTables_wrapper:hover{border:1px solid rgba(255, 255, 255, 0.3)}html.datatable-dark div.dtsp-searchPane div.dt-container div.dt-scroll-body,html.datatable-dark div.dtsp-searchPane div.dt-container div.dataTables_scrollBody,html.datatable-dark div.dtsp-searchPane div.dataTables_wrapper div.dt-scroll-body,html.datatable-dark div.dtsp-searchPane div.dataTables_wrapper div.dataTables_scrollBody{background:rgb(47, 52, 56) !important}html.datatable-dark div.dtsp-searchPane div.dt-container div.dt-scroll-body div.dtsp-nameCont span.dtsp-pill,html.datatable-dark div.dtsp-searchPane div.dt-container div.dataTables_scrollBody div.dtsp-nameCont span.dtsp-pill,html.datatable-dark div.dtsp-searchPane div.dataTables_wrapper div.dt-scroll-body div.dtsp-nameCont span.dtsp-pill,html.datatable-dark div.dtsp-searchPane div.dataTables_wrapper div.dataTables_scrollBody div.dtsp-nameCont span.dtsp-pill{background-color:rgb(33, 37, 41);color:inherit}
+
+
+table.dataTable>tbody>tr>.selected{background-color:rgba(13, 110, 253, 0.9);color:white}table.dataTable>tbody>tr>.dt-select{text-align:center;vertical-align:middle}table.dataTable>thead>tr>.dt-select{text-align:center}table.dataTable input.dt-select-checkbox{appearance:none;position:relative;display:inline-block;width:12px;height:12px;border:1px solid;border-radius:3px;vertical-align:middle;margin-top:1px;color:inherit;font-size:20px;line-height:1em}table.dataTable input.dt-select-checkbox:checked:after{display:block;content:"✓";margin-top:-8px}table.dataTable input.dt-select-checkbox:indeterminate:after{display:block;position:absolute;content:" ";top:3px;left:3px;height:4px;width:4px;background-color:black;border-radius:2px}table.dataTable>tbody>tr.selected input.dt-select-checkbox:checked{border:1px solid}table.dataTable>tbody>tr>td.select-checkbox,table.dataTable>tbody>tr>th.select-checkbox{position:relative}table.dataTable>tbody>tr>td.select-checkbox:before,table.dataTable>tbody>tr>th.select-checkbox:before{display:block;position:absolute;top:50%;left:50%;width:12px;height:12px;box-sizing:border-box;content:" ";margin-top:-6px;margin-left:-6px;border:1px solid;border-radius:3px}table.dataTable>tbody>tr.selected>td.select-checkbox:before,table.dataTable>tbody>tr.selected>th.select-checkbox:before{border:1px solid;content:"✓";font-size:20px;line-height:6px;text-align:center}table.dataTable.compact>tbody>tr>td.select-checkbox:before,table.dataTable.compact>tbody>tr>th.select-checkbox:before{margin-top:-12px}table.dataTable.compact>tbody>tr.selected>td.select-checkbox:after,table.dataTable.compact>tbody>tr.selected>th.select-checkbox:after{margin-top:-16px}div.dt-container span.select-info,div.dt-container span.select-item{margin-left:.5em}html.datatable-dark table.dataTable input.dt-select-checkbox:indeterminate:after,html[data-bs-theme=dark] table.dataTable input.dt-select-checkbox:indeterminate:after{background-color:white}@media screen and (max-width: 640px){div.dt-container span.select-info,div.dt-container span.select-item{margin-left:0;display:block}}
+
+
+div.dtsr-confirmation,div.dtsr-creation{position:fixed;top:20%;left:50%;width:500px;margin-left:-250px;background-color:white;border-radius:.75em;box-shadow:0 12px 30px rgba(0, 0, 0, 0.6);z-index:2003;box-sizing:border-box;padding:2em}div.dtsr-confirmation div.dtsr-creation-text,div.dtsr-confirmation div.dtsr-confirmation-title-row,div.dtsr-creation div.dtsr-creation-text,div.dtsr-creation div.dtsr-confirmation-title-row{text-align:left}div.dtsr-confirmation div.dtsr-creation-text h2,div.dtsr-confirmation div.dtsr-confirmation-title-row h2,div.dtsr-creation div.dtsr-creation-text h2,div.dtsr-creation div.dtsr-confirmation-title-row h2{padding-left:0;border-bottom:0px;margin-top:0px;padding-top:0px;margin-bottom:1rem}div.dtsr-confirmation div.dtsr-confirmation-text,div.dtsr-creation div.dtsr-confirmation-text{text-align:center}div.dtsr-confirmation div.dtsr-modal-foot,div.dtsr-confirmation div.dtsr-confirmation-buttons,div.dtsr-creation div.dtsr-modal-foot,div.dtsr-creation div.dtsr-confirmation-buttons{text-align:right;margin-top:1em}div.dtsr-confirmation div.dtsr-modal-foot button,div.dtsr-confirmation div.dtsr-confirmation-buttons button,div.dtsr-creation div.dtsr-modal-foot button,div.dtsr-creation div.dtsr-confirmation-buttons button{margin:0px}div.dtsr-confirmation div.dtsr-creation-text,div.dtsr-creation div.dtsr-creation-text{text-align:left;padding:0px;border:none}div.dtsr-confirmation div.dtsr-creation-text span,div.dtsr-creation div.dtsr-creation-text span{font-size:20px}div.dtsr-confirmation div.dtsr-creation-form div.dtsr-left,div.dtsr-confirmation div.dtsr-creation-form div.dtsr-right,div.dtsr-creation div.dtsr-creation-form div.dtsr-left,div.dtsr-creation div.dtsr-creation-form div.dtsr-right{display:inline-block;width:50%}div.dtsr-confirmation div.dtsr-creation-form div.dtsr-left,div.dtsr-creation div.dtsr-creation-form div.dtsr-left{text-align:right}div.dtsr-confirmation div.dtsr-creation-form div.dtsr-right,div.dtsr-confirmation div.dtsr-creation-form div.dtsr-name-row,div.dtsr-creation div.dtsr-creation-form div.dtsr-right,div.dtsr-creation div.dtsr-creation-form div.dtsr-name-row{text-align:left}div.dtsr-confirmation div.dtsr-creation-form div.dtsr-form-row,div.dtsr-creation div.dtsr-creation-form div.dtsr-form-row{display:flex;margin:.5em 0}div.dtsr-confirmation div.dtsr-creation-form div.dtsr-form-row:first-child,div.dtsr-creation div.dtsr-creation-form div.dtsr-form-row:first-child{margin-top:1em;margin-bottom:1em}div.dtsr-confirmation div.dtsr-creation-form div.dtsr-form-row:last-child,div.dtsr-creation div.dtsr-creation-form div.dtsr-form-row:last-child{margin-bottom:0}div.dtsr-confirmation div.dtsr-creation-form div.dtsr-form-row label,div.dtsr-creation div.dtsr-creation-form div.dtsr-form-row label{width:25%;padding-right:1em;text-align:right;padding-top:2px}div.dtsr-confirmation div.dtsr-creation-form div.dtsr-form-row div.dtsr-input,div.dtsr-creation div.dtsr-creation-form div.dtsr-form-row div.dtsr-input{width:75%}div.dtsr-confirmation div.dtsr-creation-form div.dtsr-form-row div.dtsr-input div.dtsr-check-label,div.dtsr-creation div.dtsr-creation-form div.dtsr-form-row div.dtsr-input div.dtsr-check-label{margin-bottom:.5em}div.dtsr-confirmation div.dtsr-creation-form div.dtsr-form-row div.dtsr-input div.dtsr-check-label input,div.dtsr-creation div.dtsr-creation-form div.dtsr-form-row div.dtsr-input div.dtsr-check-label input{margin-right:.5em}div.dtsr-confirmation div.dtsr-confirmation-text,div.dtsr-creation div.dtsr-confirmation-text{text-align:left}div.dtsr-confirmation div.dtsr-confirmation-text label.dtsr-name-label,div.dtsr-creation div.dtsr-confirmation-text label.dtsr-name-label{width:auto;display:inline-block;text-align:right;padding-right:15px}div.dtsr-confirmation div.dtsr-confirmation-text input.dtsr-name-input,div.dtsr-creation div.dtsr-confirmation-text input.dtsr-name-input{width:66.6%;display:inline-block}div.dtsr-confirmation div.dtsr-modal-foot,div.dtsr-creation div.dtsr-modal-foot{text-align:right;padding-top:10px}div.dtsr-confirmation span.dtsr-modal-error,div.dtsr-creation span.dtsr-modal-error{color:red;font-size:.9em}div.dtsr-creation{top:10%}div.dtsr-check-row{padding-top:0px}div.dtsr-popover-close{position:absolute;top:10px;right:10px;width:22px;height:22px;text-align:center;border-radius:3px;cursor:pointer;z-index:12}div.dtsr-background{z-index:2002;position:fixed;top:0;left:0;width:100%;height:100%;background:rgba(0, 0, 0, 0.7);background:radial-gradient(ellipse farthest-corner at center, rgba(0, 0, 0, 0.3) 0%, rgba(0, 0, 0, 0.7) 100%)}div.dt-button-collection h3{text-align:center;margin-top:4px;margin-bottom:8px;font-size:1.5em;white-space:nowrap;overflow:hidden;text-overflow:ellipsis}div.dt-button-collection span.dtsr-emptyStates{border-radius:5px;display:inline-block;line-height:1.6em;white-space:nowrap;text-align:center;vertical-align:middle;width:100%;padding-bottom:7px;padding-top:3px}html.datatable-dark div.dtsr-confirmation,html.datatable-dark div.dtsr-creation,html[data-bs-theme=dark] div.dtsr-confirmation,html[data-bs-theme=dark] div.dtsr-creation{background-color:rgb(33, 37, 41);border:1px solid rgba(255, 255, 255, 0.15)}html.datatable-dark div.dtsr-confirmation button,html.datatable-dark div.dtsr-creation button,html[data-bs-theme=dark] div.dtsr-confirmation button,html[data-bs-theme=dark] div.dtsr-creation button{color:inherit;border:1px solid rgba(255, 255, 255, 0.175);background-color:rgb(47, 52, 56)}html.datatable-dark div.dtsr-confirmation button:hover,html.datatable-dark div.dtsr-creation button:hover,html[data-bs-theme=dark] div.dtsr-confirmation button:hover,html[data-bs-theme=dark] div.dtsr-creation button:hover{background-color:rgb(64, 69, 73)}div.dtsr-confirmation h2,div.dtsr-creation h2{font-size:24px}div.dtsr-confirmation input[type=text],div.dtsr-creation input[type=text]{padding:3px}div.dtsr-confirmation div.dtsr-creation-text,div.dtsr-creation div.dtsr-creation-text{margin-bottom:2em}div.dtsr-confirmation button,div.dtsr-creation button{display:inline-block;margin:1em;padding:.5em 1em;border-radius:.5em;border:1px solid rgba(0, 0, 0, 0.175);background-color:#f6f6f6;text-align:left;cursor:pointer}div.dtsr-confirmation button:hover,div.dtsr-creation button:hover{background-color:#ebebeb}
+
+
diff --git a/web/static/css/fontawesome-all.css b/web/static/css/fontawesome-all.css
index 1a404e7b860..65f9e56dece 100644
--- a/web/static/css/fontawesome-all.css
+++ b/web/static/css/fontawesome-all.css
@@ -1,31 +1,32 @@
 /*!
- * Font Awesome Free 5.15.1 by @fontawesome - https://fontawesome.com
+ * Font Awesome Free 6.0.0 by @fontawesome - https://fontawesome.com
  * License - https://fontawesome.com/license/free (Icons: CC BY 4.0, Fonts: SIL OFL 1.1, Code: MIT License)
+ * Copyright 2022 Fonticons, Inc.
  */
+.fa {
+  font-family: var(--fa-style-family, "Font Awesome 6 Free");
+  font-weight: var(--fa-style, 900); }
+
 .fa,
 .fas,
+.fa-solid,
 .far,
+.fa-regular,
 .fal,
+.fa-light,
+.fat,
+.fa-thin,
 .fad,
-.fab {
+.fa-duotone,
+.fab,
+.fa-brands {
   -moz-osx-font-smoothing: grayscale;
   -webkit-font-smoothing: antialiased;
-  display: inline-block;
+  display: var(--fa-display, inline-block);
   font-style: normal;
   font-variant: normal;
-  text-rendering: auto;
-  line-height: 1; }
-
-.fa-lg {
-  font-size: 1.33333em;
-  line-height: 0.75em;
-  vertical-align: -.0667em; }
-
-.fa-xs {
-  font-size: .75em; }
-
-.fa-sm {
-  font-size: .875em; }
+  line-height: 1;
+  text-rendering: auto; }
 
 .fa-1x {
   font-size: 1em; }
@@ -57,56 +58,359 @@
 .fa-10x {
   font-size: 10em; }
 
+.fa-2xs {
+  font-size: 0.625em;
+  line-height: 0.1em;
+  vertical-align: 0.225em; }
+
+.fa-xs {
+  font-size: 0.75em;
+  line-height: 0.08333em;
+  vertical-align: 0.125em; }
+
+.fa-sm {
+  font-size: 0.875em;
+  line-height: 0.07143em;
+  vertical-align: 0.05357em; }
+
+.fa-lg {
+  font-size: 1.25em;
+  line-height: 0.05em;
+  vertical-align: -0.075em; }
+
+.fa-xl {
+  font-size: 1.5em;
+  line-height: 0.04167em;
+  vertical-align: -0.125em; }
+
+.fa-2xl {
+  font-size: 2em;
+  line-height: 0.03125em;
+  vertical-align: -0.1875em; }
+
 .fa-fw {
   text-align: center;
   width: 1.25em; }
 
 .fa-ul {
   list-style-type: none;
-  margin-left: 2.5em;
+  margin-left: var(--fa-li-margin, 2.5em);
   padding-left: 0; }
   .fa-ul > li {
     position: relative; }
 
 .fa-li {
-  left: -2em;
+  left: calc(var(--fa-li-width, 2em) * -1);
   position: absolute;
   text-align: center;
-  width: 2em;
+  width: var(--fa-li-width, 2em);
   line-height: inherit; }
 
 .fa-border {
-  border: solid 0.08em #eee;
-  border-radius: .1em;
-  padding: .2em .25em .15em; }
+  border-color: var(--fa-border-color, #eee);
+  border-radius: var(--fa-border-radius, 0.1em);
+  border-style: var(--fa-border-style, solid);
+  border-width: var(--fa-border-width, 0.08em);
+  padding: var(--fa-border-padding, 0.2em 0.25em 0.15em); }
 
 .fa-pull-left {
-  float: left; }
+  float: left;
+  margin-right: var(--fa-pull-margin, 0.3em); }
 
 .fa-pull-right {
-  float: right; }
-
-.fa.fa-pull-left,
-.fas.fa-pull-left,
-.far.fa-pull-left,
-.fal.fa-pull-left,
-.fab.fa-pull-left {
-  margin-right: .3em; }
-
-.fa.fa-pull-right,
-.fas.fa-pull-right,
-.far.fa-pull-right,
-.fal.fa-pull-right,
-.fab.fa-pull-right {
-  margin-left: .3em; }
+  float: right;
+  margin-left: var(--fa-pull-margin, 0.3em); }
+
+.fa-beat {
+  -webkit-animation-name: fa-beat;
+          animation-name: fa-beat;
+  -webkit-animation-delay: var(--fa-animation-delay, 0);
+          animation-delay: var(--fa-animation-delay, 0);
+  -webkit-animation-direction: var(--fa-animation-direction, normal);
+          animation-direction: var(--fa-animation-direction, normal);
+  -webkit-animation-duration: var(--fa-animation-duration, 1s);
+          animation-duration: var(--fa-animation-duration, 1s);
+  -webkit-animation-iteration-count: var(--fa-animation-iteration-count, infinite);
+          animation-iteration-count: var(--fa-animation-iteration-count, infinite);
+  -webkit-animation-timing-function: var(--fa-animation-timing, ease-in-out);
+          animation-timing-function: var(--fa-animation-timing, ease-in-out); }
+
+.fa-bounce {
+  -webkit-animation-name: fa-bounce;
+          animation-name: fa-bounce;
+  -webkit-animation-delay: var(--fa-animation-delay, 0);
+          animation-delay: var(--fa-animation-delay, 0);
+  -webkit-animation-direction: var(--fa-animation-direction, normal);
+          animation-direction: var(--fa-animation-direction, normal);
+  -webkit-animation-duration: var(--fa-animation-duration, 1s);
+          animation-duration: var(--fa-animation-duration, 1s);
+  -webkit-animation-iteration-count: var(--fa-animation-iteration-count, infinite);
+          animation-iteration-count: var(--fa-animation-iteration-count, infinite);
+  -webkit-animation-timing-function: var(--fa-animation-timing, cubic-bezier(0.28, 0.84, 0.42, 1));
+          animation-timing-function: var(--fa-animation-timing, cubic-bezier(0.28, 0.84, 0.42, 1)); }
+
+.fa-fade {
+  -webkit-animation-name: fa-fade;
+          animation-name: fa-fade;
+  -webkit-animation-delay: var(--fa-animation-delay, 0);
+          animation-delay: var(--fa-animation-delay, 0);
+  -webkit-animation-direction: var(--fa-animation-direction, normal);
+          animation-direction: var(--fa-animation-direction, normal);
+  -webkit-animation-duration: var(--fa-animation-duration, 1s);
+          animation-duration: var(--fa-animation-duration, 1s);
+  -webkit-animation-iteration-count: var(--fa-animation-iteration-count, infinite);
+          animation-iteration-count: var(--fa-animation-iteration-count, infinite);
+  -webkit-animation-timing-function: var(--fa-animation-timing, cubic-bezier(0.4, 0, 0.6, 1));
+          animation-timing-function: var(--fa-animation-timing, cubic-bezier(0.4, 0, 0.6, 1)); }
+
+.fa-beat-fade {
+  -webkit-animation-name: fa-beat-fade;
+          animation-name: fa-beat-fade;
+  -webkit-animation-delay: var(--fa-animation-delay, 0);
+          animation-delay: var(--fa-animation-delay, 0);
+  -webkit-animation-direction: var(--fa-animation-direction, normal);
+          animation-direction: var(--fa-animation-direction, normal);
+  -webkit-animation-duration: var(--fa-animation-duration, 1s);
+          animation-duration: var(--fa-animation-duration, 1s);
+  -webkit-animation-iteration-count: var(--fa-animation-iteration-count, infinite);
+          animation-iteration-count: var(--fa-animation-iteration-count, infinite);
+  -webkit-animation-timing-function: var(--fa-animation-timing, cubic-bezier(0.4, 0, 0.6, 1));
+          animation-timing-function: var(--fa-animation-timing, cubic-bezier(0.4, 0, 0.6, 1)); }
+
+.fa-flip {
+  -webkit-animation-name: fa-flip;
+          animation-name: fa-flip;
+  -webkit-animation-delay: var(--fa-animation-delay, 0);
+          animation-delay: var(--fa-animation-delay, 0);
+  -webkit-animation-direction: var(--fa-animation-direction, normal);
+          animation-direction: var(--fa-animation-direction, normal);
+  -webkit-animation-duration: var(--fa-animation-duration, 1s);
+          animation-duration: var(--fa-animation-duration, 1s);
+  -webkit-animation-iteration-count: var(--fa-animation-iteration-count, infinite);
+          animation-iteration-count: var(--fa-animation-iteration-count, infinite);
+  -webkit-animation-timing-function: var(--fa-animation-timing, ease-in-out);
+          animation-timing-function: var(--fa-animation-timing, ease-in-out); }
+
+.fa-shake {
+  -webkit-animation-name: fa-shake;
+          animation-name: fa-shake;
+  -webkit-animation-delay: var(--fa-animation-delay, 0);
+          animation-delay: var(--fa-animation-delay, 0);
+  -webkit-animation-direction: var(--fa-animation-direction, normal);
+          animation-direction: var(--fa-animation-direction, normal);
+  -webkit-animation-duration: var(--fa-animation-duration, 1s);
+          animation-duration: var(--fa-animation-duration, 1s);
+  -webkit-animation-iteration-count: var(--fa-animation-iteration-count, infinite);
+          animation-iteration-count: var(--fa-animation-iteration-count, infinite);
+  -webkit-animation-timing-function: var(--fa-animation-timing, linear);
+          animation-timing-function: var(--fa-animation-timing, linear); }
 
 .fa-spin {
-  -webkit-animation: fa-spin 2s infinite linear;
-          animation: fa-spin 2s infinite linear; }
+  -webkit-animation-name: fa-spin;
+          animation-name: fa-spin;
+  -webkit-animation-delay: var(--fa-animation-delay, 0);
+          animation-delay: var(--fa-animation-delay, 0);
+  -webkit-animation-direction: var(--fa-animation-direction, normal);
+          animation-direction: var(--fa-animation-direction, normal);
+  -webkit-animation-duration: var(--fa-animation-duration, 2s);
+          animation-duration: var(--fa-animation-duration, 2s);
+  -webkit-animation-iteration-count: var(--fa-animation-iteration-count, infinite);
+          animation-iteration-count: var(--fa-animation-iteration-count, infinite);
+  -webkit-animation-timing-function: var(--fa-animation-timing, linear);
+          animation-timing-function: var(--fa-animation-timing, linear); }
+
+.fa-spin-reverse {
+  --fa-animation-direction: reverse; }
+
+.fa-pulse,
+.fa-spin-pulse {
+  -webkit-animation-name: fa-spin;
+          animation-name: fa-spin;
+  -webkit-animation-direction: var(--fa-animation-direction, normal);
+          animation-direction: var(--fa-animation-direction, normal);
+  -webkit-animation-duration: var(--fa-animation-duration, 1s);
+          animation-duration: var(--fa-animation-duration, 1s);
+  -webkit-animation-iteration-count: var(--fa-animation-iteration-count, infinite);
+          animation-iteration-count: var(--fa-animation-iteration-count, infinite);
+  -webkit-animation-timing-function: var(--fa-animation-timing, steps(8));
+          animation-timing-function: var(--fa-animation-timing, steps(8)); }
+
+@media (prefers-reduced-motion: reduce) {
+  .fa-beat,
+  .fa-bounce,
+  .fa-fade,
+  .fa-beat-fade,
+  .fa-flip,
+  .fa-pulse,
+  .fa-shake,
+  .fa-spin,
+  .fa-spin-pulse {
+    -webkit-animation-delay: -1ms;
+            animation-delay: -1ms;
+    -webkit-animation-duration: 1ms;
+            animation-duration: 1ms;
+    -webkit-animation-iteration-count: 1;
+            animation-iteration-count: 1;
+    transition-delay: 0s;
+    transition-duration: 0s; } }
+
+@-webkit-keyframes fa-beat {
+  0%, 90% {
+    -webkit-transform: scale(1);
+            transform: scale(1); }
+  45% {
+    -webkit-transform: scale(var(--fa-beat-scale, 1.25));
+            transform: scale(var(--fa-beat-scale, 1.25)); } }
+
+@keyframes fa-beat {
+  0%, 90% {
+    -webkit-transform: scale(1);
+            transform: scale(1); }
+  45% {
+    -webkit-transform: scale(var(--fa-beat-scale, 1.25));
+            transform: scale(var(--fa-beat-scale, 1.25)); } }
+
+@-webkit-keyframes fa-bounce {
+  0% {
+    -webkit-transform: scale(1, 1) translateY(0);
+            transform: scale(1, 1) translateY(0); }
+  10% {
+    -webkit-transform: scale(var(--fa-bounce-start-scale-x, 1.1), var(--fa-bounce-start-scale-y, 0.9)) translateY(0);
+            transform: scale(var(--fa-bounce-start-scale-x, 1.1), var(--fa-bounce-start-scale-y, 0.9)) translateY(0); }
+  30% {
+    -webkit-transform: scale(var(--fa-bounce-jump-scale-x, 0.9), var(--fa-bounce-jump-scale-y, 1.1)) translateY(var(--fa-bounce-height, -0.5em));
+            transform: scale(var(--fa-bounce-jump-scale-x, 0.9), var(--fa-bounce-jump-scale-y, 1.1)) translateY(var(--fa-bounce-height, -0.5em)); }
+  50% {
+    -webkit-transform: scale(var(--fa-bounce-land-scale-x, 1.05), var(--fa-bounce-land-scale-y, 0.95)) translateY(0);
+            transform: scale(var(--fa-bounce-land-scale-x, 1.05), var(--fa-bounce-land-scale-y, 0.95)) translateY(0); }
+  57% {
+    -webkit-transform: scale(1, 1) translateY(var(--fa-bounce-rebound, -0.125em));
+            transform: scale(1, 1) translateY(var(--fa-bounce-rebound, -0.125em)); }
+  64% {
+    -webkit-transform: scale(1, 1) translateY(0);
+            transform: scale(1, 1) translateY(0); }
+  100% {
+    -webkit-transform: scale(1, 1) translateY(0);
+            transform: scale(1, 1) translateY(0); } }
+
+@keyframes fa-bounce {
+  0% {
+    -webkit-transform: scale(1, 1) translateY(0);
+            transform: scale(1, 1) translateY(0); }
+  10% {
+    -webkit-transform: scale(var(--fa-bounce-start-scale-x, 1.1), var(--fa-bounce-start-scale-y, 0.9)) translateY(0);
+            transform: scale(var(--fa-bounce-start-scale-x, 1.1), var(--fa-bounce-start-scale-y, 0.9)) translateY(0); }
+  30% {
+    -webkit-transform: scale(var(--fa-bounce-jump-scale-x, 0.9), var(--fa-bounce-jump-scale-y, 1.1)) translateY(var(--fa-bounce-height, -0.5em));
+            transform: scale(var(--fa-bounce-jump-scale-x, 0.9), var(--fa-bounce-jump-scale-y, 1.1)) translateY(var(--fa-bounce-height, -0.5em)); }
+  50% {
+    -webkit-transform: scale(var(--fa-bounce-land-scale-x, 1.05), var(--fa-bounce-land-scale-y, 0.95)) translateY(0);
+            transform: scale(var(--fa-bounce-land-scale-x, 1.05), var(--fa-bounce-land-scale-y, 0.95)) translateY(0); }
+  57% {
+    -webkit-transform: scale(1, 1) translateY(var(--fa-bounce-rebound, -0.125em));
+            transform: scale(1, 1) translateY(var(--fa-bounce-rebound, -0.125em)); }
+  64% {
+    -webkit-transform: scale(1, 1) translateY(0);
+            transform: scale(1, 1) translateY(0); }
+  100% {
+    -webkit-transform: scale(1, 1) translateY(0);
+            transform: scale(1, 1) translateY(0); } }
+
+@-webkit-keyframes fa-fade {
+  50% {
+    opacity: var(--fa-fade-opacity, 0.4); } }
+
+@keyframes fa-fade {
+  50% {
+    opacity: var(--fa-fade-opacity, 0.4); } }
+
+@-webkit-keyframes fa-beat-fade {
+  0%, 100% {
+    opacity: var(--fa-beat-fade-opacity, 0.4);
+    -webkit-transform: scale(1);
+            transform: scale(1); }
+  50% {
+    opacity: 1;
+    -webkit-transform: scale(var(--fa-beat-fade-scale, 1.125));
+            transform: scale(var(--fa-beat-fade-scale, 1.125)); } }
+
+@keyframes fa-beat-fade {
+  0%, 100% {
+    opacity: var(--fa-beat-fade-opacity, 0.4);
+    -webkit-transform: scale(1);
+            transform: scale(1); }
+  50% {
+    opacity: 1;
+    -webkit-transform: scale(var(--fa-beat-fade-scale, 1.125));
+            transform: scale(var(--fa-beat-fade-scale, 1.125)); } }
+
+@-webkit-keyframes fa-flip {
+  50% {
+    -webkit-transform: rotate3d(var(--fa-flip-x, 0), var(--fa-flip-y, 1), var(--fa-flip-z, 0), var(--fa-flip-angle, -180deg));
+            transform: rotate3d(var(--fa-flip-x, 0), var(--fa-flip-y, 1), var(--fa-flip-z, 0), var(--fa-flip-angle, -180deg)); } }
+
+@keyframes fa-flip {
+  50% {
+    -webkit-transform: rotate3d(var(--fa-flip-x, 0), var(--fa-flip-y, 1), var(--fa-flip-z, 0), var(--fa-flip-angle, -180deg));
+            transform: rotate3d(var(--fa-flip-x, 0), var(--fa-flip-y, 1), var(--fa-flip-z, 0), var(--fa-flip-angle, -180deg)); } }
+
+@-webkit-keyframes fa-shake {
+  0% {
+    -webkit-transform: rotate(-15deg);
+            transform: rotate(-15deg); }
+  4% {
+    -webkit-transform: rotate(15deg);
+            transform: rotate(15deg); }
+  8%, 24% {
+    -webkit-transform: rotate(-18deg);
+            transform: rotate(-18deg); }
+  12%, 28% {
+    -webkit-transform: rotate(18deg);
+            transform: rotate(18deg); }
+  16% {
+    -webkit-transform: rotate(-22deg);
+            transform: rotate(-22deg); }
+  20% {
+    -webkit-transform: rotate(22deg);
+            transform: rotate(22deg); }
+  32% {
+    -webkit-transform: rotate(-12deg);
+            transform: rotate(-12deg); }
+  36% {
+    -webkit-transform: rotate(12deg);
+            transform: rotate(12deg); }
+  40%, 100% {
+    -webkit-transform: rotate(0deg);
+            transform: rotate(0deg); } }
 
-.fa-pulse {
-  -webkit-animation: fa-spin 1s infinite steps(8);
-          animation: fa-spin 1s infinite steps(8); }
+@keyframes fa-shake {
+  0% {
+    -webkit-transform: rotate(-15deg);
+            transform: rotate(-15deg); }
+  4% {
+    -webkit-transform: rotate(15deg);
+            transform: rotate(15deg); }
+  8%, 24% {
+    -webkit-transform: rotate(-18deg);
+            transform: rotate(-18deg); }
+  12%, 28% {
+    -webkit-transform: rotate(18deg);
+            transform: rotate(18deg); }
+  16% {
+    -webkit-transform: rotate(-22deg);
+            transform: rotate(-22deg); }
+  20% {
+    -webkit-transform: rotate(22deg);
+            transform: rotate(22deg); }
+  32% {
+    -webkit-transform: rotate(-12deg);
+            transform: rotate(-12deg); }
+  36% {
+    -webkit-transform: rotate(12deg);
+            transform: rotate(12deg); }
+  40%, 100% {
+    -webkit-transform: rotate(0deg);
+            transform: rotate(0deg); } }
 
 @-webkit-keyframes fa-spin {
   0% {
@@ -125,43 +429,33 @@
             transform: rotate(360deg); } }
 
 .fa-rotate-90 {
-  -ms-filter: "progid:DXImageTransform.Microsoft.BasicImage(rotation=1)";
   -webkit-transform: rotate(90deg);
           transform: rotate(90deg); }
 
 .fa-rotate-180 {
-  -ms-filter: "progid:DXImageTransform.Microsoft.BasicImage(rotation=2)";
   -webkit-transform: rotate(180deg);
           transform: rotate(180deg); }
 
 .fa-rotate-270 {
-  -ms-filter: "progid:DXImageTransform.Microsoft.BasicImage(rotation=3)";
   -webkit-transform: rotate(270deg);
           transform: rotate(270deg); }
 
 .fa-flip-horizontal {
-  -ms-filter: "progid:DXImageTransform.Microsoft.BasicImage(rotation=0, mirror=1)";
   -webkit-transform: scale(-1, 1);
           transform: scale(-1, 1); }
 
 .fa-flip-vertical {
-  -ms-filter: "progid:DXImageTransform.Microsoft.BasicImage(rotation=2, mirror=1)";
   -webkit-transform: scale(1, -1);
           transform: scale(1, -1); }
 
-.fa-flip-both, .fa-flip-horizontal.fa-flip-vertical {
-  -ms-filter: "progid:DXImageTransform.Microsoft.BasicImage(rotation=2, mirror=1)";
+.fa-flip-both,
+.fa-flip-horizontal.fa-flip-vertical {
   -webkit-transform: scale(-1, -1);
           transform: scale(-1, -1); }
 
-:root .fa-rotate-90,
-:root .fa-rotate-180,
-:root .fa-rotate-270,
-:root .fa-flip-horizontal,
-:root .fa-flip-vertical,
-:root .fa-flip-both {
-  -webkit-filter: none;
-          filter: none; }
+.fa-rotate-by {
+  -webkit-transform: rotate(var(--fa-rotate-angle, none));
+          transform: rotate(var(--fa-rotate-angle, none)); }
 
 .fa-stack {
   display: inline-block;
@@ -176,7 +470,8 @@
   left: 0;
   position: absolute;
   text-align: center;
-  width: 100%; }
+  width: 100%;
+  z-index: var(--fa-stack-z-index, auto); }
 
 .fa-stack-1x {
   line-height: inherit; }
@@ -185,3936 +480,6260 @@
   font-size: 2em; }
 
 .fa-inverse {
-  color: #fff; }
+  color: var(--fa-inverse, #fff); }
 
 /* Font Awesome uses the Unicode Private Use Area (PUA) to ensure screen
 readers do not read off random characters that represent icons */
-.fa-500px:before {
-  content: "\f26e"; }
+.fa-0::before {
+  content: "\30"; }
 
-.fa-accessible-icon:before {
-  content: "\f368"; }
+.fa-1::before {
+  content: "\31"; }
 
-.fa-accusoft:before {
-  content: "\f369"; }
+.fa-2::before {
+  content: "\32"; }
 
-.fa-acquisitions-incorporated:before {
-  content: "\f6af"; }
+.fa-3::before {
+  content: "\33"; }
 
-.fa-ad:before {
-  content: "\f641"; }
+.fa-4::before {
+  content: "\34"; }
 
-.fa-address-book:before {
-  content: "\f2b9"; }
+.fa-5::before {
+  content: "\35"; }
 
-.fa-address-card:before {
-  content: "\f2bb"; }
+.fa-6::before {
+  content: "\36"; }
 
-.fa-adjust:before {
-  content: "\f042"; }
+.fa-7::before {
+  content: "\37"; }
 
-.fa-adn:before {
-  content: "\f170"; }
+.fa-8::before {
+  content: "\38"; }
 
-.fa-adversal:before {
-  content: "\f36a"; }
+.fa-9::before {
+  content: "\39"; }
 
-.fa-affiliatetheme:before {
-  content: "\f36b"; }
+.fa-a::before {
+  content: "\41"; }
 
-.fa-air-freshener:before {
-  content: "\f5d0"; }
+.fa-address-book::before {
+  content: "\f2b9"; }
 
-.fa-airbnb:before {
-  content: "\f834"; }
+.fa-contact-book::before {
+  content: "\f2b9"; }
 
-.fa-algolia:before {
-  content: "\f36c"; }
+.fa-address-card::before {
+  content: "\f2bb"; }
+
+.fa-contact-card::before {
+  content: "\f2bb"; }
 
-.fa-align-center:before {
+.fa-vcard::before {
+  content: "\f2bb"; }
+
+.fa-align-center::before {
   content: "\f037"; }
 
-.fa-align-justify:before {
+.fa-align-justify::before {
   content: "\f039"; }
 
-.fa-align-left:before {
+.fa-align-left::before {
   content: "\f036"; }
 
-.fa-align-right:before {
+.fa-align-right::before {
   content: "\f038"; }
 
-.fa-alipay:before {
-  content: "\f642"; }
-
-.fa-allergies:before {
-  content: "\f461"; }
-
-.fa-amazon:before {
-  content: "\f270"; }
-
-.fa-amazon-pay:before {
-  content: "\f42c"; }
-
-.fa-ambulance:before {
-  content: "\f0f9"; }
+.fa-anchor::before {
+  content: "\f13d"; }
 
-.fa-american-sign-language-interpreting:before {
-  content: "\f2a3"; }
+.fa-angle-down::before {
+  content: "\f107"; }
 
-.fa-amilia:before {
-  content: "\f36d"; }
+.fa-angle-left::before {
+  content: "\f104"; }
 
-.fa-anchor:before {
-  content: "\f13d"; }
+.fa-angle-right::before {
+  content: "\f105"; }
 
-.fa-android:before {
-  content: "\f17b"; }
+.fa-angle-up::before {
+  content: "\f106"; }
 
-.fa-angellist:before {
-  content: "\f209"; }
+.fa-angles-down::before {
+  content: "\f103"; }
 
-.fa-angle-double-down:before {
+.fa-angle-double-down::before {
   content: "\f103"; }
 
-.fa-angle-double-left:before {
+.fa-angles-left::before {
   content: "\f100"; }
 
-.fa-angle-double-right:before {
+.fa-angle-double-left::before {
+  content: "\f100"; }
+
+.fa-angles-right::before {
+  content: "\f101"; }
+
+.fa-angle-double-right::before {
   content: "\f101"; }
 
-.fa-angle-double-up:before {
+.fa-angles-up::before {
   content: "\f102"; }
 
-.fa-angle-down:before {
-  content: "\f107"; }
+.fa-angle-double-up::before {
+  content: "\f102"; }
 
-.fa-angle-left:before {
-  content: "\f104"; }
+.fa-ankh::before {
+  content: "\f644"; }
 
-.fa-angle-right:before {
-  content: "\f105"; }
+.fa-apple-whole::before {
+  content: "\f5d1"; }
 
-.fa-angle-up:before {
-  content: "\f106"; }
+.fa-apple-alt::before {
+  content: "\f5d1"; }
 
-.fa-angry:before {
-  content: "\f556"; }
+.fa-archway::before {
+  content: "\f557"; }
 
-.fa-angrycreative:before {
-  content: "\f36e"; }
+.fa-arrow-down::before {
+  content: "\f063"; }
 
-.fa-angular:before {
-  content: "\f420"; }
+.fa-arrow-down-1-9::before {
+  content: "\f162"; }
 
-.fa-ankh:before {
-  content: "\f644"; }
+.fa-sort-numeric-asc::before {
+  content: "\f162"; }
 
-.fa-app-store:before {
-  content: "\f36f"; }
+.fa-sort-numeric-down::before {
+  content: "\f162"; }
 
-.fa-app-store-ios:before {
-  content: "\f370"; }
+.fa-arrow-down-9-1::before {
+  content: "\f886"; }
 
-.fa-apper:before {
-  content: "\f371"; }
+.fa-sort-numeric-desc::before {
+  content: "\f886"; }
 
-.fa-apple:before {
-  content: "\f179"; }
+.fa-sort-numeric-down-alt::before {
+  content: "\f886"; }
 
-.fa-apple-alt:before {
-  content: "\f5d1"; }
+.fa-arrow-down-a-z::before {
+  content: "\f15d"; }
 
-.fa-apple-pay:before {
-  content: "\f415"; }
+.fa-sort-alpha-asc::before {
+  content: "\f15d"; }
 
-.fa-archive:before {
-  content: "\f187"; }
+.fa-sort-alpha-down::before {
+  content: "\f15d"; }
 
-.fa-archway:before {
-  content: "\f557"; }
+.fa-arrow-down-long::before {
+  content: "\f175"; }
 
-.fa-arrow-alt-circle-down:before {
-  content: "\f358"; }
+.fa-long-arrow-down::before {
+  content: "\f175"; }
 
-.fa-arrow-alt-circle-left:before {
-  content: "\f359"; }
+.fa-arrow-down-short-wide::before {
+  content: "\f884"; }
 
-.fa-arrow-alt-circle-right:before {
-  content: "\f35a"; }
+.fa-sort-amount-desc::before {
+  content: "\f884"; }
 
-.fa-arrow-alt-circle-up:before {
-  content: "\f35b"; }
+.fa-sort-amount-down-alt::before {
+  content: "\f884"; }
 
-.fa-arrow-circle-down:before {
-  content: "\f0ab"; }
+.fa-arrow-down-wide-short::before {
+  content: "\f160"; }
 
-.fa-arrow-circle-left:before {
-  content: "\f0a8"; }
+.fa-sort-amount-asc::before {
+  content: "\f160"; }
 
-.fa-arrow-circle-right:before {
-  content: "\f0a9"; }
+.fa-sort-amount-down::before {
+  content: "\f160"; }
 
-.fa-arrow-circle-up:before {
-  content: "\f0aa"; }
+.fa-arrow-down-z-a::before {
+  content: "\f881"; }
 
-.fa-arrow-down:before {
-  content: "\f063"; }
+.fa-sort-alpha-desc::before {
+  content: "\f881"; }
+
+.fa-sort-alpha-down-alt::before {
+  content: "\f881"; }
 
-.fa-arrow-left:before {
+.fa-arrow-left::before {
   content: "\f060"; }
 
-.fa-arrow-right:before {
-  content: "\f061"; }
+.fa-arrow-left-long::before {
+  content: "\f177"; }
 
-.fa-arrow-up:before {
-  content: "\f062"; }
+.fa-long-arrow-left::before {
+  content: "\f177"; }
 
-.fa-arrows-alt:before {
-  content: "\f0b2"; }
+.fa-arrow-pointer::before {
+  content: "\f245"; }
 
-.fa-arrows-alt-h:before {
-  content: "\f337"; }
+.fa-mouse-pointer::before {
+  content: "\f245"; }
 
-.fa-arrows-alt-v:before {
-  content: "\f338"; }
+.fa-arrow-right::before {
+  content: "\f061"; }
 
-.fa-artstation:before {
-  content: "\f77a"; }
+.fa-arrow-right-arrow-left::before {
+  content: "\f0ec"; }
 
-.fa-assistive-listening-systems:before {
-  content: "\f2a2"; }
+.fa-exchange::before {
+  content: "\f0ec"; }
 
-.fa-asterisk:before {
-  content: "\f069"; }
+.fa-arrow-right-from-bracket::before {
+  content: "\f08b"; }
 
-.fa-asymmetrik:before {
-  content: "\f372"; }
+.fa-sign-out::before {
+  content: "\f08b"; }
 
-.fa-at:before {
-  content: "\f1fa"; }
+.fa-arrow-right-long::before {
+  content: "\f178"; }
 
-.fa-atlas:before {
-  content: "\f558"; }
+.fa-long-arrow-right::before {
+  content: "\f178"; }
 
-.fa-atlassian:before {
-  content: "\f77b"; }
+.fa-arrow-right-to-bracket::before {
+  content: "\f090"; }
 
-.fa-atom:before {
-  content: "\f5d2"; }
+.fa-sign-in::before {
+  content: "\f090"; }
 
-.fa-audible:before {
-  content: "\f373"; }
+.fa-arrow-rotate-left::before {
+  content: "\f0e2"; }
 
-.fa-audio-description:before {
-  content: "\f29e"; }
+.fa-arrow-left-rotate::before {
+  content: "\f0e2"; }
 
-.fa-autoprefixer:before {
-  content: "\f41c"; }
+.fa-arrow-rotate-back::before {
+  content: "\f0e2"; }
 
-.fa-avianex:before {
-  content: "\f374"; }
+.fa-arrow-rotate-backward::before {
+  content: "\f0e2"; }
 
-.fa-aviato:before {
-  content: "\f421"; }
+.fa-undo::before {
+  content: "\f0e2"; }
 
-.fa-award:before {
-  content: "\f559"; }
+.fa-arrow-rotate-right::before {
+  content: "\f01e"; }
 
-.fa-aws:before {
-  content: "\f375"; }
+.fa-arrow-right-rotate::before {
+  content: "\f01e"; }
 
-.fa-baby:before {
-  content: "\f77c"; }
+.fa-arrow-rotate-forward::before {
+  content: "\f01e"; }
 
-.fa-baby-carriage:before {
-  content: "\f77d"; }
+.fa-redo::before {
+  content: "\f01e"; }
 
-.fa-backspace:before {
-  content: "\f55a"; }
+.fa-arrow-trend-down::before {
+  content: "\e097"; }
 
-.fa-backward:before {
-  content: "\f04a"; }
+.fa-arrow-trend-up::before {
+  content: "\e098"; }
 
-.fa-bacon:before {
-  content: "\f7e5"; }
+.fa-arrow-turn-down::before {
+  content: "\f149"; }
 
-.fa-bacteria:before {
-  content: "\e059"; }
+.fa-level-down::before {
+  content: "\f149"; }
 
-.fa-bacterium:before {
-  content: "\e05a"; }
+.fa-arrow-turn-up::before {
+  content: "\f148"; }
 
-.fa-bahai:before {
-  content: "\f666"; }
+.fa-level-up::before {
+  content: "\f148"; }
 
-.fa-balance-scale:before {
-  content: "\f24e"; }
+.fa-arrow-up::before {
+  content: "\f062"; }
 
-.fa-balance-scale-left:before {
-  content: "\f515"; }
+.fa-arrow-up-1-9::before {
+  content: "\f163"; }
 
-.fa-balance-scale-right:before {
-  content: "\f516"; }
+.fa-sort-numeric-up::before {
+  content: "\f163"; }
 
-.fa-ban:before {
-  content: "\f05e"; }
+.fa-arrow-up-9-1::before {
+  content: "\f887"; }
 
-.fa-band-aid:before {
-  content: "\f462"; }
+.fa-sort-numeric-up-alt::before {
+  content: "\f887"; }
 
-.fa-bandcamp:before {
-  content: "\f2d5"; }
+.fa-arrow-up-a-z::before {
+  content: "\f15e"; }
 
-.fa-barcode:before {
-  content: "\f02a"; }
+.fa-sort-alpha-up::before {
+  content: "\f15e"; }
 
-.fa-bars:before {
-  content: "\f0c9"; }
+.fa-arrow-up-from-bracket::before {
+  content: "\e09a"; }
 
-.fa-baseball-ball:before {
-  content: "\f433"; }
+.fa-arrow-up-long::before {
+  content: "\f176"; }
 
-.fa-basketball-ball:before {
-  content: "\f434"; }
+.fa-long-arrow-up::before {
+  content: "\f176"; }
 
-.fa-bath:before {
-  content: "\f2cd"; }
+.fa-arrow-up-right-from-square::before {
+  content: "\f08e"; }
 
-.fa-battery-empty:before {
-  content: "\f244"; }
+.fa-external-link::before {
+  content: "\f08e"; }
 
-.fa-battery-full:before {
-  content: "\f240"; }
+.fa-arrow-up-short-wide::before {
+  content: "\f885"; }
 
-.fa-battery-half:before {
-  content: "\f242"; }
+.fa-sort-amount-up-alt::before {
+  content: "\f885"; }
 
-.fa-battery-quarter:before {
-  content: "\f243"; }
+.fa-arrow-up-wide-short::before {
+  content: "\f161"; }
 
-.fa-battery-three-quarters:before {
-  content: "\f241"; }
+.fa-sort-amount-up::before {
+  content: "\f161"; }
 
-.fa-battle-net:before {
-  content: "\f835"; }
+.fa-arrow-up-z-a::before {
+  content: "\f882"; }
 
-.fa-bed:before {
-  content: "\f236"; }
+.fa-sort-alpha-up-alt::before {
+  content: "\f882"; }
 
-.fa-beer:before {
-  content: "\f0fc"; }
+.fa-arrows-left-right::before {
+  content: "\f07e"; }
 
-.fa-behance:before {
-  content: "\f1b4"; }
+.fa-arrows-h::before {
+  content: "\f07e"; }
 
-.fa-behance-square:before {
-  content: "\f1b5"; }
+.fa-arrows-rotate::before {
+  content: "\f021"; }
 
-.fa-bell:before {
-  content: "\f0f3"; }
+.fa-refresh::before {
+  content: "\f021"; }
 
-.fa-bell-slash:before {
-  content: "\f1f6"; }
+.fa-sync::before {
+  content: "\f021"; }
 
-.fa-bezier-curve:before {
-  content: "\f55b"; }
+.fa-arrows-up-down::before {
+  content: "\f07d"; }
 
-.fa-bible:before {
-  content: "\f647"; }
+.fa-arrows-v::before {
+  content: "\f07d"; }
 
-.fa-bicycle:before {
-  content: "\f206"; }
+.fa-arrows-up-down-left-right::before {
+  content: "\f047"; }
 
-.fa-biking:before {
-  content: "\f84a"; }
+.fa-arrows::before {
+  content: "\f047"; }
 
-.fa-bimobject:before {
-  content: "\f378"; }
+.fa-asterisk::before {
+  content: "\2a"; }
 
-.fa-binoculars:before {
-  content: "\f1e5"; }
+.fa-at::before {
+  content: "\40"; }
 
-.fa-biohazard:before {
-  content: "\f780"; }
+.fa-atom::before {
+  content: "\f5d2"; }
 
-.fa-birthday-cake:before {
-  content: "\f1fd"; }
+.fa-audio-description::before {
+  content: "\f29e"; }
 
-.fa-bitbucket:before {
-  content: "\f171"; }
+.fa-austral-sign::before {
+  content: "\e0a9"; }
 
-.fa-bitcoin:before {
-  content: "\f379"; }
+.fa-award::before {
+  content: "\f559"; }
 
-.fa-bity:before {
-  content: "\f37a"; }
+.fa-b::before {
+  content: "\42"; }
 
-.fa-black-tie:before {
-  content: "\f27e"; }
+.fa-baby::before {
+  content: "\f77c"; }
 
-.fa-blackberry:before {
-  content: "\f37b"; }
+.fa-baby-carriage::before {
+  content: "\f77d"; }
 
-.fa-blender:before {
-  content: "\f517"; }
+.fa-carriage-baby::before {
+  content: "\f77d"; }
 
-.fa-blender-phone:before {
-  content: "\f6b6"; }
+.fa-backward::before {
+  content: "\f04a"; }
 
-.fa-blind:before {
-  content: "\f29d"; }
+.fa-backward-fast::before {
+  content: "\f049"; }
 
-.fa-blog:before {
-  content: "\f781"; }
+.fa-fast-backward::before {
+  content: "\f049"; }
 
-.fa-blogger:before {
-  content: "\f37c"; }
+.fa-backward-step::before {
+  content: "\f048"; }
 
-.fa-blogger-b:before {
-  content: "\f37d"; }
+.fa-step-backward::before {
+  content: "\f048"; }
 
-.fa-bluetooth:before {
-  content: "\f293"; }
+.fa-bacon::before {
+  content: "\f7e5"; }
 
-.fa-bluetooth-b:before {
-  content: "\f294"; }
+.fa-bacteria::before {
+  content: "\e059"; }
+
+.fa-bacterium::before {
+  content: "\e05a"; }
+
+.fa-bag-shopping::before {
+  content: "\f290"; }
+
+.fa-shopping-bag::before {
+  content: "\f290"; }
+
+.fa-bahai::before {
+  content: "\f666"; }
+
+.fa-baht-sign::before {
+  content: "\e0ac"; }
+
+.fa-ban::before {
+  content: "\f05e"; }
+
+.fa-cancel::before {
+  content: "\f05e"; }
+
+.fa-ban-smoking::before {
+  content: "\f54d"; }
+
+.fa-smoking-ban::before {
+  content: "\f54d"; }
+
+.fa-bandage::before {
+  content: "\f462"; }
+
+.fa-band-aid::before {
+  content: "\f462"; }
+
+.fa-barcode::before {
+  content: "\f02a"; }
+
+.fa-bars::before {
+  content: "\f0c9"; }
+
+.fa-navicon::before {
+  content: "\f0c9"; }
+
+.fa-bars-progress::before {
+  content: "\f828"; }
+
+.fa-tasks-alt::before {
+  content: "\f828"; }
+
+.fa-bars-staggered::before {
+  content: "\f550"; }
+
+.fa-reorder::before {
+  content: "\f550"; }
+
+.fa-stream::before {
+  content: "\f550"; }
+
+.fa-baseball::before {
+  content: "\f433"; }
+
+.fa-baseball-ball::before {
+  content: "\f433"; }
+
+.fa-baseball-bat-ball::before {
+  content: "\f432"; }
+
+.fa-basket-shopping::before {
+  content: "\f291"; }
+
+.fa-shopping-basket::before {
+  content: "\f291"; }
+
+.fa-basketball::before {
+  content: "\f434"; }
 
-.fa-bold:before {
+.fa-basketball-ball::before {
+  content: "\f434"; }
+
+.fa-bath::before {
+  content: "\f2cd"; }
+
+.fa-bathtub::before {
+  content: "\f2cd"; }
+
+.fa-battery-empty::before {
+  content: "\f244"; }
+
+.fa-battery-0::before {
+  content: "\f244"; }
+
+.fa-battery-full::before {
+  content: "\f240"; }
+
+.fa-battery::before {
+  content: "\f240"; }
+
+.fa-battery-5::before {
+  content: "\f240"; }
+
+.fa-battery-half::before {
+  content: "\f242"; }
+
+.fa-battery-3::before {
+  content: "\f242"; }
+
+.fa-battery-quarter::before {
+  content: "\f243"; }
+
+.fa-battery-2::before {
+  content: "\f243"; }
+
+.fa-battery-three-quarters::before {
+  content: "\f241"; }
+
+.fa-battery-4::before {
+  content: "\f241"; }
+
+.fa-bed::before {
+  content: "\f236"; }
+
+.fa-bed-pulse::before {
+  content: "\f487"; }
+
+.fa-procedures::before {
+  content: "\f487"; }
+
+.fa-beer-mug-empty::before {
+  content: "\f0fc"; }
+
+.fa-beer::before {
+  content: "\f0fc"; }
+
+.fa-bell::before {
+  content: "\f0f3"; }
+
+.fa-bell-concierge::before {
+  content: "\f562"; }
+
+.fa-concierge-bell::before {
+  content: "\f562"; }
+
+.fa-bell-slash::before {
+  content: "\f1f6"; }
+
+.fa-bezier-curve::before {
+  content: "\f55b"; }
+
+.fa-bicycle::before {
+  content: "\f206"; }
+
+.fa-binoculars::before {
+  content: "\f1e5"; }
+
+.fa-biohazard::before {
+  content: "\f780"; }
+
+.fa-bitcoin-sign::before {
+  content: "\e0b4"; }
+
+.fa-blender::before {
+  content: "\f517"; }
+
+.fa-blender-phone::before {
+  content: "\f6b6"; }
+
+.fa-blog::before {
+  content: "\f781"; }
+
+.fa-bold::before {
   content: "\f032"; }
 
-.fa-bolt:before {
+.fa-bolt::before {
+  content: "\f0e7"; }
+
+.fa-zap::before {
   content: "\f0e7"; }
 
-.fa-bomb:before {
+.fa-bolt-lightning::before {
+  content: "\e0b7"; }
+
+.fa-bomb::before {
   content: "\f1e2"; }
 
-.fa-bone:before {
+.fa-bone::before {
   content: "\f5d7"; }
 
-.fa-bong:before {
+.fa-bong::before {
   content: "\f55c"; }
 
-.fa-book:before {
+.fa-book::before {
   content: "\f02d"; }
 
-.fa-book-dead:before {
-  content: "\f6b7"; }
+.fa-book-atlas::before {
+  content: "\f558"; }
+
+.fa-atlas::before {
+  content: "\f558"; }
+
+.fa-book-bible::before {
+  content: "\f647"; }
+
+.fa-bible::before {
+  content: "\f647"; }
 
-.fa-book-medical:before {
+.fa-book-journal-whills::before {
+  content: "\f66a"; }
+
+.fa-journal-whills::before {
+  content: "\f66a"; }
+
+.fa-book-medical::before {
   content: "\f7e6"; }
 
-.fa-book-open:before {
+.fa-book-open::before {
   content: "\f518"; }
 
-.fa-book-reader:before {
+.fa-book-open-reader::before {
   content: "\f5da"; }
 
-.fa-bookmark:before {
-  content: "\f02e"; }
+.fa-book-reader::before {
+  content: "\f5da"; }
 
-.fa-bootstrap:before {
-  content: "\f836"; }
+.fa-book-quran::before {
+  content: "\f687"; }
+
+.fa-quran::before {
+  content: "\f687"; }
+
+.fa-book-skull::before {
+  content: "\f6b7"; }
+
+.fa-book-dead::before {
+  content: "\f6b7"; }
+
+.fa-bookmark::before {
+  content: "\f02e"; }
 
-.fa-border-all:before {
+.fa-border-all::before {
   content: "\f84c"; }
 
-.fa-border-none:before {
+.fa-border-none::before {
   content: "\f850"; }
 
-.fa-border-style:before {
+.fa-border-top-left::before {
+  content: "\f853"; }
+
+.fa-border-style::before {
   content: "\f853"; }
 
-.fa-bowling-ball:before {
+.fa-bowling-ball::before {
   content: "\f436"; }
 
-.fa-box:before {
+.fa-box::before {
   content: "\f466"; }
 
-.fa-box-open:before {
+.fa-box-archive::before {
+  content: "\f187"; }
+
+.fa-archive::before {
+  content: "\f187"; }
+
+.fa-box-open::before {
   content: "\f49e"; }
 
-.fa-box-tissue:before {
+.fa-box-tissue::before {
   content: "\e05b"; }
 
-.fa-boxes:before {
+.fa-boxes-stacked::before {
+  content: "\f468"; }
+
+.fa-boxes::before {
+  content: "\f468"; }
+
+.fa-boxes-alt::before {
   content: "\f468"; }
 
-.fa-braille:before {
+.fa-braille::before {
   content: "\f2a1"; }
 
-.fa-brain:before {
+.fa-brain::before {
   content: "\f5dc"; }
 
-.fa-bread-slice:before {
+.fa-brazilian-real-sign::before {
+  content: "\e46c"; }
+
+.fa-bread-slice::before {
   content: "\f7ec"; }
 
-.fa-briefcase:before {
+.fa-briefcase::before {
   content: "\f0b1"; }
 
-.fa-briefcase-medical:before {
+.fa-briefcase-medical::before {
   content: "\f469"; }
 
-.fa-broadcast-tower:before {
-  content: "\f519"; }
-
-.fa-broom:before {
+.fa-broom::before {
   content: "\f51a"; }
 
-.fa-brush:before {
-  content: "\f55d"; }
+.fa-broom-ball::before {
+  content: "\f458"; }
 
-.fa-btc:before {
-  content: "\f15a"; }
+.fa-quidditch::before {
+  content: "\f458"; }
 
-.fa-buffer:before {
-  content: "\f837"; }
+.fa-quidditch-broom-ball::before {
+  content: "\f458"; }
+
+.fa-brush::before {
+  content: "\f55d"; }
 
-.fa-bug:before {
+.fa-bug::before {
   content: "\f188"; }
 
-.fa-building:before {
+.fa-bug-slash::before {
+  content: "\e490"; }
+
+.fa-building::before {
   content: "\f1ad"; }
 
-.fa-bullhorn:before {
+.fa-building-columns::before {
+  content: "\f19c"; }
+
+.fa-bank::before {
+  content: "\f19c"; }
+
+.fa-institution::before {
+  content: "\f19c"; }
+
+.fa-museum::before {
+  content: "\f19c"; }
+
+.fa-university::before {
+  content: "\f19c"; }
+
+.fa-bullhorn::before {
   content: "\f0a1"; }
 
-.fa-bullseye:before {
+.fa-bullseye::before {
   content: "\f140"; }
 
-.fa-burn:before {
-  content: "\f46a"; }
+.fa-burger::before {
+  content: "\f805"; }
 
-.fa-buromobelexperte:before {
-  content: "\f37f"; }
+.fa-hamburger::before {
+  content: "\f805"; }
 
-.fa-bus:before {
+.fa-bus::before {
   content: "\f207"; }
 
-.fa-bus-alt:before {
+.fa-bus-simple::before {
   content: "\f55e"; }
 
-.fa-business-time:before {
+.fa-bus-alt::before {
+  content: "\f55e"; }
+
+.fa-business-time::before {
   content: "\f64a"; }
 
-.fa-buy-n-large:before {
-  content: "\f8a6"; }
+.fa-briefcase-clock::before {
+  content: "\f64a"; }
 
-.fa-buysellads:before {
-  content: "\f20d"; }
+.fa-c::before {
+  content: "\43"; }
+
+.fa-cake-candles::before {
+  content: "\f1fd"; }
+
+.fa-birthday-cake::before {
+  content: "\f1fd"; }
+
+.fa-cake::before {
+  content: "\f1fd"; }
 
-.fa-calculator:before {
+.fa-calculator::before {
   content: "\f1ec"; }
 
-.fa-calendar:before {
+.fa-calendar::before {
   content: "\f133"; }
 
-.fa-calendar-alt:before {
-  content: "\f073"; }
-
-.fa-calendar-check:before {
+.fa-calendar-check::before {
   content: "\f274"; }
 
-.fa-calendar-day:before {
+.fa-calendar-day::before {
   content: "\f783"; }
 
-.fa-calendar-minus:before {
+.fa-calendar-days::before {
+  content: "\f073"; }
+
+.fa-calendar-alt::before {
+  content: "\f073"; }
+
+.fa-calendar-minus::before {
   content: "\f272"; }
 
-.fa-calendar-plus:before {
+.fa-calendar-plus::before {
   content: "\f271"; }
 
-.fa-calendar-times:before {
+.fa-calendar-week::before {
+  content: "\f784"; }
+
+.fa-calendar-xmark::before {
   content: "\f273"; }
 
-.fa-calendar-week:before {
-  content: "\f784"; }
+.fa-calendar-times::before {
+  content: "\f273"; }
+
+.fa-camera::before {
+  content: "\f030"; }
 
-.fa-camera:before {
+.fa-camera-alt::before {
   content: "\f030"; }
 
-.fa-camera-retro:before {
+.fa-camera-retro::before {
   content: "\f083"; }
 
-.fa-campground:before {
-  content: "\f6bb"; }
+.fa-camera-rotate::before {
+  content: "\e0d8"; }
 
-.fa-canadian-maple-leaf:before {
-  content: "\f785"; }
+.fa-campground::before {
+  content: "\f6bb"; }
 
-.fa-candy-cane:before {
+.fa-candy-cane::before {
   content: "\f786"; }
 
-.fa-cannabis:before {
+.fa-cannabis::before {
   content: "\f55f"; }
 
-.fa-capsules:before {
+.fa-capsules::before {
   content: "\f46b"; }
 
-.fa-car:before {
+.fa-car::before {
   content: "\f1b9"; }
 
-.fa-car-alt:before {
-  content: "\f5de"; }
+.fa-automobile::before {
+  content: "\f1b9"; }
+
+.fa-car-battery::before {
+  content: "\f5df"; }
 
-.fa-car-battery:before {
+.fa-battery-car::before {
   content: "\f5df"; }
 
-.fa-car-crash:before {
+.fa-car-crash::before {
   content: "\f5e1"; }
 
-.fa-car-side:before {
+.fa-car-rear::before {
+  content: "\f5de"; }
+
+.fa-car-alt::before {
+  content: "\f5de"; }
+
+.fa-car-side::before {
   content: "\f5e4"; }
 
-.fa-caravan:before {
+.fa-caravan::before {
   content: "\f8ff"; }
 
-.fa-caret-down:before {
+.fa-caret-down::before {
   content: "\f0d7"; }
 
-.fa-caret-left:before {
+.fa-caret-left::before {
   content: "\f0d9"; }
 
-.fa-caret-right:before {
+.fa-caret-right::before {
   content: "\f0da"; }
 
-.fa-caret-square-down:before {
-  content: "\f150"; }
+.fa-caret-up::before {
+  content: "\f0d8"; }
 
-.fa-caret-square-left:before {
-  content: "\f191"; }
+.fa-carrot::before {
+  content: "\f787"; }
 
-.fa-caret-square-right:before {
-  content: "\f152"; }
+.fa-cart-arrow-down::before {
+  content: "\f218"; }
 
-.fa-caret-square-up:before {
-  content: "\f151"; }
+.fa-cart-flatbed::before {
+  content: "\f474"; }
 
-.fa-caret-up:before {
-  content: "\f0d8"; }
+.fa-dolly-flatbed::before {
+  content: "\f474"; }
 
-.fa-carrot:before {
-  content: "\f787"; }
+.fa-cart-flatbed-suitcase::before {
+  content: "\f59d"; }
 
-.fa-cart-arrow-down:before {
-  content: "\f218"; }
+.fa-luggage-cart::before {
+  content: "\f59d"; }
 
-.fa-cart-plus:before {
+.fa-cart-plus::before {
   content: "\f217"; }
 
-.fa-cash-register:before {
+.fa-cart-shopping::before {
+  content: "\f07a"; }
+
+.fa-shopping-cart::before {
+  content: "\f07a"; }
+
+.fa-cash-register::before {
   content: "\f788"; }
 
-.fa-cat:before {
+.fa-cat::before {
   content: "\f6be"; }
 
-.fa-cc-amazon-pay:before {
-  content: "\f42d"; }
+.fa-cedi-sign::before {
+  content: "\e0df"; }
 
-.fa-cc-amex:before {
-  content: "\f1f3"; }
+.fa-cent-sign::before {
+  content: "\e3f5"; }
 
-.fa-cc-apple-pay:before {
-  content: "\f416"; }
+.fa-certificate::before {
+  content: "\f0a3"; }
 
-.fa-cc-diners-club:before {
-  content: "\f24c"; }
-
-.fa-cc-discover:before {
-  content: "\f1f2"; }
+.fa-chair::before {
+  content: "\f6c0"; }
 
-.fa-cc-jcb:before {
-  content: "\f24b"; }
+.fa-chalkboard::before {
+  content: "\f51b"; }
 
-.fa-cc-mastercard:before {
-  content: "\f1f1"; }
+.fa-blackboard::before {
+  content: "\f51b"; }
 
-.fa-cc-paypal:before {
-  content: "\f1f4"; }
+.fa-chalkboard-user::before {
+  content: "\f51c"; }
 
-.fa-cc-stripe:before {
-  content: "\f1f5"; }
+.fa-chalkboard-teacher::before {
+  content: "\f51c"; }
 
-.fa-cc-visa:before {
-  content: "\f1f0"; }
+.fa-champagne-glasses::before {
+  content: "\f79f"; }
 
-.fa-centercode:before {
-  content: "\f380"; }
+.fa-glass-cheers::before {
+  content: "\f79f"; }
 
-.fa-centos:before {
-  content: "\f789"; }
+.fa-charging-station::before {
+  content: "\f5e7"; }
 
-.fa-certificate:before {
-  content: "\f0a3"; }
+.fa-chart-area::before {
+  content: "\f1fe"; }
 
-.fa-chair:before {
-  content: "\f6c0"; }
+.fa-area-chart::before {
+  content: "\f1fe"; }
 
-.fa-chalkboard:before {
-  content: "\f51b"; }
+.fa-chart-bar::before {
+  content: "\f080"; }
 
-.fa-chalkboard-teacher:before {
-  content: "\f51c"; }
+.fa-bar-chart::before {
+  content: "\f080"; }
 
-.fa-charging-station:before {
-  content: "\f5e7"; }
+.fa-chart-column::before {
+  content: "\e0e3"; }
 
-.fa-chart-area:before {
-  content: "\f1fe"; }
+.fa-chart-gantt::before {
+  content: "\e0e4"; }
 
-.fa-chart-bar:before {
-  content: "\f080"; }
+.fa-chart-line::before {
+  content: "\f201"; }
 
-.fa-chart-line:before {
+.fa-line-chart::before {
   content: "\f201"; }
 
-.fa-chart-pie:before {
+.fa-chart-pie::before {
   content: "\f200"; }
 
-.fa-check:before {
-  content: "\f00c"; }
+.fa-pie-chart::before {
+  content: "\f200"; }
 
-.fa-check-circle:before {
-  content: "\f058"; }
+.fa-check::before {
+  content: "\f00c"; }
 
-.fa-check-double:before {
+.fa-check-double::before {
   content: "\f560"; }
 
-.fa-check-square:before {
-  content: "\f14a"; }
+.fa-check-to-slot::before {
+  content: "\f772"; }
+
+.fa-vote-yea::before {
+  content: "\f772"; }
 
-.fa-cheese:before {
+.fa-cheese::before {
   content: "\f7ef"; }
 
-.fa-chess:before {
+.fa-chess::before {
   content: "\f439"; }
 
-.fa-chess-bishop:before {
+.fa-chess-bishop::before {
   content: "\f43a"; }
 
-.fa-chess-board:before {
+.fa-chess-board::before {
   content: "\f43c"; }
 
-.fa-chess-king:before {
+.fa-chess-king::before {
   content: "\f43f"; }
 
-.fa-chess-knight:before {
+.fa-chess-knight::before {
   content: "\f441"; }
 
-.fa-chess-pawn:before {
+.fa-chess-pawn::before {
   content: "\f443"; }
 
-.fa-chess-queen:before {
+.fa-chess-queen::before {
   content: "\f445"; }
 
-.fa-chess-rook:before {
+.fa-chess-rook::before {
   content: "\f447"; }
 
-.fa-chevron-circle-down:before {
+.fa-chevron-down::before {
+  content: "\f078"; }
+
+.fa-chevron-left::before {
+  content: "\f053"; }
+
+.fa-chevron-right::before {
+  content: "\f054"; }
+
+.fa-chevron-up::before {
+  content: "\f077"; }
+
+.fa-child::before {
+  content: "\f1ae"; }
+
+.fa-church::before {
+  content: "\f51d"; }
+
+.fa-circle::before {
+  content: "\f111"; }
+
+.fa-circle-arrow-down::before {
+  content: "\f0ab"; }
+
+.fa-arrow-circle-down::before {
+  content: "\f0ab"; }
+
+.fa-circle-arrow-left::before {
+  content: "\f0a8"; }
+
+.fa-arrow-circle-left::before {
+  content: "\f0a8"; }
+
+.fa-circle-arrow-right::before {
+  content: "\f0a9"; }
+
+.fa-arrow-circle-right::before {
+  content: "\f0a9"; }
+
+.fa-circle-arrow-up::before {
+  content: "\f0aa"; }
+
+.fa-arrow-circle-up::before {
+  content: "\f0aa"; }
+
+.fa-circle-check::before {
+  content: "\f058"; }
+
+.fa-check-circle::before {
+  content: "\f058"; }
+
+.fa-circle-chevron-down::before {
+  content: "\f13a"; }
+
+.fa-chevron-circle-down::before {
   content: "\f13a"; }
 
-.fa-chevron-circle-left:before {
+.fa-circle-chevron-left::before {
+  content: "\f137"; }
+
+.fa-chevron-circle-left::before {
   content: "\f137"; }
 
-.fa-chevron-circle-right:before {
+.fa-circle-chevron-right::before {
+  content: "\f138"; }
+
+.fa-chevron-circle-right::before {
   content: "\f138"; }
 
-.fa-chevron-circle-up:before {
+.fa-circle-chevron-up::before {
   content: "\f139"; }
 
-.fa-chevron-down:before {
-  content: "\f078"; }
+.fa-chevron-circle-up::before {
+  content: "\f139"; }
 
-.fa-chevron-left:before {
-  content: "\f053"; }
+.fa-circle-dollar-to-slot::before {
+  content: "\f4b9"; }
 
-.fa-chevron-right:before {
-  content: "\f054"; }
+.fa-donate::before {
+  content: "\f4b9"; }
 
-.fa-chevron-up:before {
-  content: "\f077"; }
+.fa-circle-dot::before {
+  content: "\f192"; }
 
-.fa-child:before {
-  content: "\f1ae"; }
+.fa-dot-circle::before {
+  content: "\f192"; }
 
-.fa-chrome:before {
-  content: "\f268"; }
+.fa-circle-down::before {
+  content: "\f358"; }
 
-.fa-chromecast:before {
-  content: "\f838"; }
+.fa-arrow-alt-circle-down::before {
+  content: "\f358"; }
 
-.fa-church:before {
-  content: "\f51d"; }
+.fa-circle-exclamation::before {
+  content: "\f06a"; }
 
-.fa-circle:before {
-  content: "\f111"; }
+.fa-exclamation-circle::before {
+  content: "\f06a"; }
+
+.fa-circle-h::before {
+  content: "\f47e"; }
+
+.fa-hospital-symbol::before {
+  content: "\f47e"; }
+
+.fa-circle-half-stroke::before {
+  content: "\f042"; }
+
+.fa-adjust::before {
+  content: "\f042"; }
+
+.fa-circle-info::before {
+  content: "\f05a"; }
+
+.fa-info-circle::before {
+  content: "\f05a"; }
+
+.fa-circle-left::before {
+  content: "\f359"; }
+
+.fa-arrow-alt-circle-left::before {
+  content: "\f359"; }
+
+.fa-circle-minus::before {
+  content: "\f056"; }
+
+.fa-minus-circle::before {
+  content: "\f056"; }
 
-.fa-circle-notch:before {
+.fa-circle-notch::before {
   content: "\f1ce"; }
 
-.fa-city:before {
+.fa-circle-pause::before {
+  content: "\f28b"; }
+
+.fa-pause-circle::before {
+  content: "\f28b"; }
+
+.fa-circle-play::before {
+  content: "\f144"; }
+
+.fa-play-circle::before {
+  content: "\f144"; }
+
+.fa-circle-plus::before {
+  content: "\f055"; }
+
+.fa-plus-circle::before {
+  content: "\f055"; }
+
+.fa-circle-question::before {
+  content: "\f059"; }
+
+.fa-question-circle::before {
+  content: "\f059"; }
+
+.fa-circle-radiation::before {
+  content: "\f7ba"; }
+
+.fa-radiation-alt::before {
+  content: "\f7ba"; }
+
+.fa-circle-right::before {
+  content: "\f35a"; }
+
+.fa-arrow-alt-circle-right::before {
+  content: "\f35a"; }
+
+.fa-circle-stop::before {
+  content: "\f28d"; }
+
+.fa-stop-circle::before {
+  content: "\f28d"; }
+
+.fa-circle-up::before {
+  content: "\f35b"; }
+
+.fa-arrow-alt-circle-up::before {
+  content: "\f35b"; }
+
+.fa-circle-user::before {
+  content: "\f2bd"; }
+
+.fa-user-circle::before {
+  content: "\f2bd"; }
+
+.fa-circle-xmark::before {
+  content: "\f057"; }
+
+.fa-times-circle::before {
+  content: "\f057"; }
+
+.fa-xmark-circle::before {
+  content: "\f057"; }
+
+.fa-city::before {
   content: "\f64f"; }
 
-.fa-clinic-medical:before {
-  content: "\f7f2"; }
+.fa-clapperboard::before {
+  content: "\e131"; }
 
-.fa-clipboard:before {
+.fa-clipboard::before {
   content: "\f328"; }
 
-.fa-clipboard-check:before {
+.fa-clipboard-check::before {
   content: "\f46c"; }
 
-.fa-clipboard-list:before {
+.fa-clipboard-list::before {
   content: "\f46d"; }
 
-.fa-clock:before {
+.fa-clock::before {
   content: "\f017"; }
 
-.fa-clone:before {
+.fa-clock-four::before {
+  content: "\f017"; }
+
+.fa-clock-rotate-left::before {
+  content: "\f1da"; }
+
+.fa-history::before {
+  content: "\f1da"; }
+
+.fa-clone::before {
   content: "\f24d"; }
 
-.fa-closed-captioning:before {
+.fa-closed-captioning::before {
   content: "\f20a"; }
 
-.fa-cloud:before {
+.fa-cloud::before {
   content: "\f0c2"; }
 
-.fa-cloud-download-alt:before {
-  content: "\f381"; }
+.fa-cloud-arrow-down::before {
+  content: "\f0ed"; }
+
+.fa-cloud-download::before {
+  content: "\f0ed"; }
+
+.fa-cloud-download-alt::before {
+  content: "\f0ed"; }
 
-.fa-cloud-meatball:before {
+.fa-cloud-arrow-up::before {
+  content: "\f0ee"; }
+
+.fa-cloud-upload::before {
+  content: "\f0ee"; }
+
+.fa-cloud-upload-alt::before {
+  content: "\f0ee"; }
+
+.fa-cloud-meatball::before {
   content: "\f73b"; }
 
-.fa-cloud-moon:before {
+.fa-cloud-moon::before {
   content: "\f6c3"; }
 
-.fa-cloud-moon-rain:before {
+.fa-cloud-moon-rain::before {
   content: "\f73c"; }
 
-.fa-cloud-rain:before {
+.fa-cloud-rain::before {
   content: "\f73d"; }
 
-.fa-cloud-showers-heavy:before {
+.fa-cloud-showers-heavy::before {
   content: "\f740"; }
 
-.fa-cloud-sun:before {
+.fa-cloud-sun::before {
   content: "\f6c4"; }
 
-.fa-cloud-sun-rain:before {
+.fa-cloud-sun-rain::before {
   content: "\f743"; }
 
-.fa-cloud-upload-alt:before {
-  content: "\f382"; }
-
-.fa-cloudflare:before {
-  content: "\e07d"; }
-
-.fa-cloudscale:before {
-  content: "\f383"; }
-
-.fa-cloudsmith:before {
-  content: "\f384"; }
-
-.fa-cloudversify:before {
-  content: "\f385"; }
-
-.fa-cocktail:before {
-  content: "\f561"; }
+.fa-clover::before {
+  content: "\e139"; }
 
-.fa-code:before {
+.fa-code::before {
   content: "\f121"; }
 
-.fa-code-branch:before {
+.fa-code-branch::before {
   content: "\f126"; }
 
-.fa-codepen:before {
-  content: "\f1cb"; }
+.fa-code-commit::before {
+  content: "\f386"; }
 
-.fa-codiepie:before {
-  content: "\f284"; }
+.fa-code-compare::before {
+  content: "\e13a"; }
 
-.fa-coffee:before {
-  content: "\f0f4"; }
+.fa-code-fork::before {
+  content: "\e13b"; }
 
-.fa-cog:before {
-  content: "\f013"; }
+.fa-code-merge::before {
+  content: "\f387"; }
 
-.fa-cogs:before {
-  content: "\f085"; }
+.fa-code-pull-request::before {
+  content: "\e13c"; }
 
-.fa-coins:before {
+.fa-coins::before {
   content: "\f51e"; }
 
-.fa-columns:before {
-  content: "\f0db"; }
+.fa-colon-sign::before {
+  content: "\e140"; }
 
-.fa-comment:before {
+.fa-comment::before {
   content: "\f075"; }
 
-.fa-comment-alt:before {
-  content: "\f27a"; }
-
-.fa-comment-dollar:before {
+.fa-comment-dollar::before {
   content: "\f651"; }
 
-.fa-comment-dots:before {
+.fa-comment-dots::before {
+  content: "\f4ad"; }
+
+.fa-commenting::before {
   content: "\f4ad"; }
 
-.fa-comment-medical:before {
+.fa-comment-medical::before {
   content: "\f7f5"; }
 
-.fa-comment-slash:before {
+.fa-comment-slash::before {
   content: "\f4b3"; }
 
-.fa-comments:before {
+.fa-comment-sms::before {
+  content: "\f7cd"; }
+
+.fa-sms::before {
+  content: "\f7cd"; }
+
+.fa-comments::before {
   content: "\f086"; }
 
-.fa-comments-dollar:before {
+.fa-comments-dollar::before {
   content: "\f653"; }
 
-.fa-compact-disc:before {
+.fa-compact-disc::before {
   content: "\f51f"; }
 
-.fa-compass:before {
+.fa-compass::before {
   content: "\f14e"; }
 
-.fa-compress:before {
-  content: "\f066"; }
-
-.fa-compress-alt:before {
-  content: "\f422"; }
-
-.fa-compress-arrows-alt:before {
-  content: "\f78c"; }
+.fa-compass-drafting::before {
+  content: "\f568"; }
 
-.fa-concierge-bell:before {
-  content: "\f562"; }
+.fa-drafting-compass::before {
+  content: "\f568"; }
 
-.fa-confluence:before {
-  content: "\f78d"; }
+.fa-compress::before {
+  content: "\f066"; }
 
-.fa-connectdevelop:before {
-  content: "\f20e"; }
+.fa-computer-mouse::before {
+  content: "\f8cc"; }
 
-.fa-contao:before {
-  content: "\f26d"; }
+.fa-mouse::before {
+  content: "\f8cc"; }
 
-.fa-cookie:before {
+.fa-cookie::before {
   content: "\f563"; }
 
-.fa-cookie-bite:before {
+.fa-cookie-bite::before {
   content: "\f564"; }
 
-.fa-copy:before {
+.fa-copy::before {
   content: "\f0c5"; }
 
-.fa-copyright:before {
+.fa-copyright::before {
   content: "\f1f9"; }
 
-.fa-cotton-bureau:before {
-  content: "\f89e"; }
-
-.fa-couch:before {
+.fa-couch::before {
   content: "\f4b8"; }
 
-.fa-cpanel:before {
-  content: "\f388"; }
+.fa-credit-card::before {
+  content: "\f09d"; }
 
-.fa-creative-commons:before {
-  content: "\f25e"; }
+.fa-credit-card-alt::before {
+  content: "\f09d"; }
 
-.fa-creative-commons-by:before {
-  content: "\f4e7"; }
+.fa-crop::before {
+  content: "\f125"; }
 
-.fa-creative-commons-nc:before {
-  content: "\f4e8"; }
+.fa-crop-simple::before {
+  content: "\f565"; }
 
-.fa-creative-commons-nc-eu:before {
-  content: "\f4e9"; }
+.fa-crop-alt::before {
+  content: "\f565"; }
 
-.fa-creative-commons-nc-jp:before {
-  content: "\f4ea"; }
+.fa-cross::before {
+  content: "\f654"; }
 
-.fa-creative-commons-nd:before {
-  content: "\f4eb"; }
+.fa-crosshairs::before {
+  content: "\f05b"; }
 
-.fa-creative-commons-pd:before {
-  content: "\f4ec"; }
+.fa-crow::before {
+  content: "\f520"; }
 
-.fa-creative-commons-pd-alt:before {
-  content: "\f4ed"; }
+.fa-crown::before {
+  content: "\f521"; }
 
-.fa-creative-commons-remix:before {
-  content: "\f4ee"; }
-
-.fa-creative-commons-sa:before {
-  content: "\f4ef"; }
-
-.fa-creative-commons-sampling:before {
-  content: "\f4f0"; }
-
-.fa-creative-commons-sampling-plus:before {
-  content: "\f4f1"; }
-
-.fa-creative-commons-share:before {
-  content: "\f4f2"; }
-
-.fa-creative-commons-zero:before {
-  content: "\f4f3"; }
-
-.fa-credit-card:before {
-  content: "\f09d"; }
-
-.fa-critical-role:before {
-  content: "\f6c9"; }
-
-.fa-crop:before {
-  content: "\f125"; }
-
-.fa-crop-alt:before {
-  content: "\f565"; }
-
-.fa-cross:before {
-  content: "\f654"; }
-
-.fa-crosshairs:before {
-  content: "\f05b"; }
-
-.fa-crow:before {
-  content: "\f520"; }
-
-.fa-crown:before {
-  content: "\f521"; }
-
-.fa-crutch:before {
+.fa-crutch::before {
   content: "\f7f7"; }
 
-.fa-css3:before {
-  content: "\f13c"; }
-
-.fa-css3-alt:before {
-  content: "\f38b"; }
+.fa-cruzeiro-sign::before {
+  content: "\e152"; }
 
-.fa-cube:before {
+.fa-cube::before {
   content: "\f1b2"; }
 
-.fa-cubes:before {
+.fa-cubes::before {
   content: "\f1b3"; }
 
-.fa-cut:before {
-  content: "\f0c4"; }
-
-.fa-cuttlefish:before {
-  content: "\f38c"; }
-
-.fa-d-and-d:before {
-  content: "\f38d"; }
-
-.fa-d-and-d-beyond:before {
-  content: "\f6ca"; }
-
-.fa-dailymotion:before {
-  content: "\e052"; }
-
-.fa-dashcube:before {
-  content: "\f210"; }
+.fa-d::before {
+  content: "\44"; }
 
-.fa-database:before {
+.fa-database::before {
   content: "\f1c0"; }
 
-.fa-deaf:before {
-  content: "\f2a4"; }
-
-.fa-deezer:before {
-  content: "\e077"; }
+.fa-delete-left::before {
+  content: "\f55a"; }
 
-.fa-delicious:before {
-  content: "\f1a5"; }
+.fa-backspace::before {
+  content: "\f55a"; }
 
-.fa-democrat:before {
+.fa-democrat::before {
   content: "\f747"; }
 
-.fa-deploydog:before {
-  content: "\f38e"; }
+.fa-desktop::before {
+  content: "\f390"; }
 
-.fa-deskpro:before {
-  content: "\f38f"; }
+.fa-desktop-alt::before {
+  content: "\f390"; }
 
-.fa-desktop:before {
-  content: "\f108"; }
+.fa-dharmachakra::before {
+  content: "\f655"; }
 
-.fa-dev:before {
-  content: "\f6cc"; }
+.fa-diagram-next::before {
+  content: "\e476"; }
 
-.fa-deviantart:before {
-  content: "\f1bd"; }
+.fa-diagram-predecessor::before {
+  content: "\e477"; }
 
-.fa-dharmachakra:before {
-  content: "\f655"; }
+.fa-diagram-project::before {
+  content: "\f542"; }
 
-.fa-dhl:before {
-  content: "\f790"; }
+.fa-project-diagram::before {
+  content: "\f542"; }
 
-.fa-diagnoses:before {
-  content: "\f470"; }
+.fa-diagram-successor::before {
+  content: "\e47a"; }
 
-.fa-diaspora:before {
-  content: "\f791"; }
+.fa-diamond::before {
+  content: "\f219"; }
+
+.fa-diamond-turn-right::before {
+  content: "\f5eb"; }
+
+.fa-directions::before {
+  content: "\f5eb"; }
 
-.fa-dice:before {
+.fa-dice::before {
   content: "\f522"; }
 
-.fa-dice-d20:before {
+.fa-dice-d20::before {
   content: "\f6cf"; }
 
-.fa-dice-d6:before {
+.fa-dice-d6::before {
   content: "\f6d1"; }
 
-.fa-dice-five:before {
+.fa-dice-five::before {
   content: "\f523"; }
 
-.fa-dice-four:before {
+.fa-dice-four::before {
   content: "\f524"; }
 
-.fa-dice-one:before {
+.fa-dice-one::before {
   content: "\f525"; }
 
-.fa-dice-six:before {
+.fa-dice-six::before {
   content: "\f526"; }
 
-.fa-dice-three:before {
+.fa-dice-three::before {
   content: "\f527"; }
 
-.fa-dice-two:before {
+.fa-dice-two::before {
   content: "\f528"; }
 
-.fa-digg:before {
-  content: "\f1a6"; }
-
-.fa-digital-ocean:before {
-  content: "\f391"; }
-
-.fa-digital-tachograph:before {
-  content: "\f566"; }
-
-.fa-directions:before {
-  content: "\f5eb"; }
-
-.fa-discord:before {
-  content: "\f392"; }
-
-.fa-discourse:before {
-  content: "\f393"; }
-
-.fa-disease:before {
+.fa-disease::before {
   content: "\f7fa"; }
 
-.fa-divide:before {
+.fa-divide::before {
   content: "\f529"; }
 
-.fa-dizzy:before {
-  content: "\f567"; }
-
-.fa-dna:before {
+.fa-dna::before {
   content: "\f471"; }
 
-.fa-dochub:before {
-  content: "\f394"; }
+.fa-dog::before {
+  content: "\f6d3"; }
 
-.fa-docker:before {
-  content: "\f395"; }
+.fa-dollar-sign::before {
+  content: "\24"; }
 
-.fa-dog:before {
-  content: "\f6d3"; }
+.fa-dollar::before {
+  content: "\24"; }
 
-.fa-dollar-sign:before {
-  content: "\f155"; }
+.fa-usd::before {
+  content: "\24"; }
 
-.fa-dolly:before {
+.fa-dolly::before {
   content: "\f472"; }
 
-.fa-dolly-flatbed:before {
-  content: "\f474"; }
+.fa-dolly-box::before {
+  content: "\f472"; }
 
-.fa-donate:before {
-  content: "\f4b9"; }
+.fa-dong-sign::before {
+  content: "\e169"; }
 
-.fa-door-closed:before {
+.fa-door-closed::before {
   content: "\f52a"; }
 
-.fa-door-open:before {
+.fa-door-open::before {
   content: "\f52b"; }
 
-.fa-dot-circle:before {
-  content: "\f192"; }
-
-.fa-dove:before {
+.fa-dove::before {
   content: "\f4ba"; }
 
-.fa-download:before {
-  content: "\f019"; }
+.fa-down-left-and-up-right-to-center::before {
+  content: "\f422"; }
 
-.fa-draft2digital:before {
-  content: "\f396"; }
+.fa-compress-alt::before {
+  content: "\f422"; }
 
-.fa-drafting-compass:before {
-  content: "\f568"; }
+.fa-down-long::before {
+  content: "\f309"; }
+
+.fa-long-arrow-alt-down::before {
+  content: "\f309"; }
+
+.fa-download::before {
+  content: "\f019"; }
 
-.fa-dragon:before {
+.fa-dragon::before {
   content: "\f6d5"; }
 
-.fa-draw-polygon:before {
+.fa-draw-polygon::before {
   content: "\f5ee"; }
 
-.fa-dribbble:before {
-  content: "\f17d"; }
+.fa-droplet::before {
+  content: "\f043"; }
 
-.fa-dribbble-square:before {
-  content: "\f397"; }
+.fa-tint::before {
+  content: "\f043"; }
 
-.fa-dropbox:before {
-  content: "\f16b"; }
+.fa-droplet-slash::before {
+  content: "\f5c7"; }
+
+.fa-tint-slash::before {
+  content: "\f5c7"; }
 
-.fa-drum:before {
+.fa-drum::before {
   content: "\f569"; }
 
-.fa-drum-steelpan:before {
+.fa-drum-steelpan::before {
   content: "\f56a"; }
 
-.fa-drumstick-bite:before {
+.fa-drumstick-bite::before {
   content: "\f6d7"; }
 
-.fa-drupal:before {
-  content: "\f1a9"; }
-
-.fa-dumbbell:before {
+.fa-dumbbell::before {
   content: "\f44b"; }
 
-.fa-dumpster:before {
+.fa-dumpster::before {
   content: "\f793"; }
 
-.fa-dumpster-fire:before {
+.fa-dumpster-fire::before {
   content: "\f794"; }
 
-.fa-dungeon:before {
+.fa-dungeon::before {
   content: "\f6d9"; }
 
-.fa-dyalog:before {
-  content: "\f399"; }
+.fa-e::before {
+  content: "\45"; }
 
-.fa-earlybirds:before {
-  content: "\f39a"; }
+.fa-ear-deaf::before {
+  content: "\f2a4"; }
 
-.fa-ebay:before {
-  content: "\f4f4"; }
+.fa-deaf::before {
+  content: "\f2a4"; }
 
-.fa-edge:before {
-  content: "\f282"; }
+.fa-deafness::before {
+  content: "\f2a4"; }
 
-.fa-edge-legacy:before {
-  content: "\e078"; }
+.fa-hard-of-hearing::before {
+  content: "\f2a4"; }
 
-.fa-edit:before {
-  content: "\f044"; }
+.fa-ear-listen::before {
+  content: "\f2a2"; }
+
+.fa-assistive-listening-systems::before {
+  content: "\f2a2"; }
+
+.fa-earth-africa::before {
+  content: "\f57c"; }
+
+.fa-globe-africa::before {
+  content: "\f57c"; }
+
+.fa-earth-americas::before {
+  content: "\f57d"; }
+
+.fa-earth::before {
+  content: "\f57d"; }
+
+.fa-earth-america::before {
+  content: "\f57d"; }
+
+.fa-globe-americas::before {
+  content: "\f57d"; }
+
+.fa-earth-asia::before {
+  content: "\f57e"; }
+
+.fa-globe-asia::before {
+  content: "\f57e"; }
+
+.fa-earth-europe::before {
+  content: "\f7a2"; }
+
+.fa-globe-europe::before {
+  content: "\f7a2"; }
+
+.fa-earth-oceania::before {
+  content: "\e47b"; }
 
-.fa-egg:before {
+.fa-globe-oceania::before {
+  content: "\e47b"; }
+
+.fa-egg::before {
   content: "\f7fb"; }
 
-.fa-eject:before {
+.fa-eject::before {
   content: "\f052"; }
 
-.fa-elementor:before {
-  content: "\f430"; }
+.fa-elevator::before {
+  content: "\e16d"; }
 
-.fa-ellipsis-h:before {
+.fa-ellipsis::before {
   content: "\f141"; }
 
-.fa-ellipsis-v:before {
-  content: "\f142"; }
-
-.fa-ello:before {
-  content: "\f5f1"; }
+.fa-ellipsis-h::before {
+  content: "\f141"; }
 
-.fa-ember:before {
-  content: "\f423"; }
+.fa-ellipsis-vertical::before {
+  content: "\f142"; }
 
-.fa-empire:before {
-  content: "\f1d1"; }
+.fa-ellipsis-v::before {
+  content: "\f142"; }
 
-.fa-envelope:before {
+.fa-envelope::before {
   content: "\f0e0"; }
 
-.fa-envelope-open:before {
+.fa-envelope-open::before {
   content: "\f2b6"; }
 
-.fa-envelope-open-text:before {
+.fa-envelope-open-text::before {
   content: "\f658"; }
 
-.fa-envelope-square:before {
-  content: "\f199"; }
+.fa-envelopes-bulk::before {
+  content: "\f674"; }
 
-.fa-envira:before {
-  content: "\f299"; }
+.fa-mail-bulk::before {
+  content: "\f674"; }
 
-.fa-equals:before {
-  content: "\f52c"; }
+.fa-equals::before {
+  content: "\3d"; }
 
-.fa-eraser:before {
+.fa-eraser::before {
   content: "\f12d"; }
 
-.fa-erlang:before {
-  content: "\f39d"; }
-
-.fa-ethereum:before {
-  content: "\f42e"; }
-
-.fa-ethernet:before {
+.fa-ethernet::before {
   content: "\f796"; }
 
-.fa-etsy:before {
-  content: "\f2d7"; }
-
-.fa-euro-sign:before {
+.fa-euro-sign::before {
   content: "\f153"; }
 
-.fa-evernote:before {
-  content: "\f839"; }
-
-.fa-exchange-alt:before {
-  content: "\f362"; }
-
-.fa-exclamation:before {
-  content: "\f12a"; }
+.fa-eur::before {
+  content: "\f153"; }
 
-.fa-exclamation-circle:before {
-  content: "\f06a"; }
+.fa-euro::before {
+  content: "\f153"; }
 
-.fa-exclamation-triangle:before {
-  content: "\f071"; }
+.fa-exclamation::before {
+  content: "\21"; }
 
-.fa-expand:before {
+.fa-expand::before {
   content: "\f065"; }
 
-.fa-expand-alt:before {
-  content: "\f424"; }
-
-.fa-expand-arrows-alt:before {
-  content: "\f31e"; }
+.fa-eye::before {
+  content: "\f06e"; }
 
-.fa-expeditedssl:before {
-  content: "\f23e"; }
+.fa-eye-dropper::before {
+  content: "\f1fb"; }
 
-.fa-external-link-alt:before {
-  content: "\f35d"; }
+.fa-eye-dropper-empty::before {
+  content: "\f1fb"; }
 
-.fa-external-link-square-alt:before {
-  content: "\f360"; }
+.fa-eyedropper::before {
+  content: "\f1fb"; }
 
-.fa-eye:before {
-  content: "\f06e"; }
+.fa-eye-low-vision::before {
+  content: "\f2a8"; }
 
-.fa-eye-dropper:before {
-  content: "\f1fb"; }
+.fa-low-vision::before {
+  content: "\f2a8"; }
 
-.fa-eye-slash:before {
+.fa-eye-slash::before {
   content: "\f070"; }
 
-.fa-facebook:before {
-  content: "\f09a"; }
+.fa-f::before {
+  content: "\46"; }
 
-.fa-facebook-f:before {
-  content: "\f39e"; }
+.fa-face-angry::before {
+  content: "\f556"; }
 
-.fa-facebook-messenger:before {
-  content: "\f39f"; }
+.fa-angry::before {
+  content: "\f556"; }
 
-.fa-facebook-square:before {
-  content: "\f082"; }
+.fa-face-dizzy::before {
+  content: "\f567"; }
 
-.fa-fan:before {
-  content: "\f863"; }
+.fa-dizzy::before {
+  content: "\f567"; }
 
-.fa-fantasy-flight-games:before {
-  content: "\f6dc"; }
+.fa-face-flushed::before {
+  content: "\f579"; }
 
-.fa-fast-backward:before {
-  content: "\f049"; }
+.fa-flushed::before {
+  content: "\f579"; }
 
-.fa-fast-forward:before {
-  content: "\f050"; }
+.fa-face-frown::before {
+  content: "\f119"; }
 
-.fa-faucet:before {
-  content: "\e005"; }
+.fa-frown::before {
+  content: "\f119"; }
 
-.fa-fax:before {
-  content: "\f1ac"; }
+.fa-face-frown-open::before {
+  content: "\f57a"; }
 
-.fa-feather:before {
-  content: "\f52d"; }
+.fa-frown-open::before {
+  content: "\f57a"; }
 
-.fa-feather-alt:before {
-  content: "\f56b"; }
+.fa-face-grimace::before {
+  content: "\f57f"; }
 
-.fa-fedex:before {
-  content: "\f797"; }
+.fa-grimace::before {
+  content: "\f57f"; }
 
-.fa-fedora:before {
-  content: "\f798"; }
+.fa-face-grin::before {
+  content: "\f580"; }
 
-.fa-female:before {
-  content: "\f182"; }
+.fa-grin::before {
+  content: "\f580"; }
 
-.fa-fighter-jet:before {
-  content: "\f0fb"; }
+.fa-face-grin-beam::before {
+  content: "\f582"; }
 
-.fa-figma:before {
-  content: "\f799"; }
+.fa-grin-beam::before {
+  content: "\f582"; }
 
-.fa-file:before {
-  content: "\f15b"; }
+.fa-face-grin-beam-sweat::before {
+  content: "\f583"; }
 
-.fa-file-alt:before {
-  content: "\f15c"; }
+.fa-grin-beam-sweat::before {
+  content: "\f583"; }
 
-.fa-file-archive:before {
-  content: "\f1c6"; }
+.fa-face-grin-hearts::before {
+  content: "\f584"; }
 
-.fa-file-audio:before {
-  content: "\f1c7"; }
+.fa-grin-hearts::before {
+  content: "\f584"; }
 
-.fa-file-code:before {
-  content: "\f1c9"; }
+.fa-face-grin-squint::before {
+  content: "\f585"; }
 
-.fa-file-contract:before {
-  content: "\f56c"; }
+.fa-grin-squint::before {
+  content: "\f585"; }
 
-.fa-file-csv:before {
-  content: "\f6dd"; }
+.fa-face-grin-squint-tears::before {
+  content: "\f586"; }
 
-.fa-file-download:before {
-  content: "\f56d"; }
+.fa-grin-squint-tears::before {
+  content: "\f586"; }
 
-.fa-file-excel:before {
-  content: "\f1c3"; }
+.fa-face-grin-stars::before {
+  content: "\f587"; }
 
-.fa-file-export:before {
-  content: "\f56e"; }
+.fa-grin-stars::before {
+  content: "\f587"; }
 
-.fa-file-image:before {
-  content: "\f1c5"; }
+.fa-face-grin-tears::before {
+  content: "\f588"; }
 
-.fa-file-import:before {
-  content: "\f56f"; }
+.fa-grin-tears::before {
+  content: "\f588"; }
 
-.fa-file-invoice:before {
-  content: "\f570"; }
+.fa-face-grin-tongue::before {
+  content: "\f589"; }
 
-.fa-file-invoice-dollar:before {
-  content: "\f571"; }
+.fa-grin-tongue::before {
+  content: "\f589"; }
 
-.fa-file-medical:before {
-  content: "\f477"; }
+.fa-face-grin-tongue-squint::before {
+  content: "\f58a"; }
 
-.fa-file-medical-alt:before {
-  content: "\f478"; }
+.fa-grin-tongue-squint::before {
+  content: "\f58a"; }
 
-.fa-file-pdf:before {
-  content: "\f1c1"; }
+.fa-face-grin-tongue-wink::before {
+  content: "\f58b"; }
 
-.fa-file-powerpoint:before {
-  content: "\f1c4"; }
+.fa-grin-tongue-wink::before {
+  content: "\f58b"; }
 
-.fa-file-prescription:before {
-  content: "\f572"; }
+.fa-face-grin-wide::before {
+  content: "\f581"; }
 
-.fa-file-signature:before {
-  content: "\f573"; }
+.fa-grin-alt::before {
+  content: "\f581"; }
 
-.fa-file-upload:before {
-  content: "\f574"; }
+.fa-face-grin-wink::before {
+  content: "\f58c"; }
 
-.fa-file-video:before {
-  content: "\f1c8"; }
+.fa-grin-wink::before {
+  content: "\f58c"; }
 
-.fa-file-word:before {
-  content: "\f1c2"; }
+.fa-face-kiss::before {
+  content: "\f596"; }
 
-.fa-fill:before {
-  content: "\f575"; }
+.fa-kiss::before {
+  content: "\f596"; }
 
-.fa-fill-drip:before {
-  content: "\f576"; }
+.fa-face-kiss-beam::before {
+  content: "\f597"; }
 
-.fa-film:before {
-  content: "\f008"; }
+.fa-kiss-beam::before {
+  content: "\f597"; }
 
-.fa-filter:before {
-  content: "\f0b0"; }
+.fa-face-kiss-wink-heart::before {
+  content: "\f598"; }
 
-.fa-fingerprint:before {
-  content: "\f577"; }
+.fa-kiss-wink-heart::before {
+  content: "\f598"; }
 
-.fa-fire:before {
-  content: "\f06d"; }
+.fa-face-laugh::before {
+  content: "\f599"; }
 
-.fa-fire-alt:before {
-  content: "\f7e4"; }
+.fa-laugh::before {
+  content: "\f599"; }
 
-.fa-fire-extinguisher:before {
-  content: "\f134"; }
+.fa-face-laugh-beam::before {
+  content: "\f59a"; }
 
-.fa-firefox:before {
-  content: "\f269"; }
+.fa-laugh-beam::before {
+  content: "\f59a"; }
 
-.fa-firefox-browser:before {
-  content: "\e007"; }
+.fa-face-laugh-squint::before {
+  content: "\f59b"; }
 
-.fa-first-aid:before {
-  content: "\f479"; }
+.fa-laugh-squint::before {
+  content: "\f59b"; }
 
-.fa-first-order:before {
-  content: "\f2b0"; }
+.fa-face-laugh-wink::before {
+  content: "\f59c"; }
 
-.fa-first-order-alt:before {
-  content: "\f50a"; }
+.fa-laugh-wink::before {
+  content: "\f59c"; }
 
-.fa-firstdraft:before {
-  content: "\f3a1"; }
+.fa-face-meh::before {
+  content: "\f11a"; }
 
-.fa-fish:before {
-  content: "\f578"; }
+.fa-meh::before {
+  content: "\f11a"; }
 
-.fa-fist-raised:before {
-  content: "\f6de"; }
+.fa-face-meh-blank::before {
+  content: "\f5a4"; }
 
-.fa-flag:before {
-  content: "\f024"; }
+.fa-meh-blank::before {
+  content: "\f5a4"; }
 
-.fa-flag-checkered:before {
-  content: "\f11e"; }
+.fa-face-rolling-eyes::before {
+  content: "\f5a5"; }
 
-.fa-flag-usa:before {
-  content: "\f74d"; }
+.fa-meh-rolling-eyes::before {
+  content: "\f5a5"; }
 
-.fa-flask:before {
-  content: "\f0c3"; }
+.fa-face-sad-cry::before {
+  content: "\f5b3"; }
 
-.fa-flickr:before {
-  content: "\f16e"; }
+.fa-sad-cry::before {
+  content: "\f5b3"; }
 
-.fa-flipboard:before {
-  content: "\f44d"; }
+.fa-face-sad-tear::before {
+  content: "\f5b4"; }
 
-.fa-flushed:before {
-  content: "\f579"; }
+.fa-sad-tear::before {
+  content: "\f5b4"; }
 
-.fa-fly:before {
-  content: "\f417"; }
+.fa-face-smile::before {
+  content: "\f118"; }
 
-.fa-folder:before {
-  content: "\f07b"; }
+.fa-smile::before {
+  content: "\f118"; }
 
-.fa-folder-minus:before {
-  content: "\f65d"; }
+.fa-face-smile-beam::before {
+  content: "\f5b8"; }
 
-.fa-folder-open:before {
-  content: "\f07c"; }
+.fa-smile-beam::before {
+  content: "\f5b8"; }
 
-.fa-folder-plus:before {
-  content: "\f65e"; }
+.fa-face-smile-wink::before {
+  content: "\f4da"; }
 
-.fa-font:before {
-  content: "\f031"; }
+.fa-smile-wink::before {
+  content: "\f4da"; }
 
-.fa-font-awesome:before {
-  content: "\f2b4"; }
+.fa-face-surprise::before {
+  content: "\f5c2"; }
 
-.fa-font-awesome-alt:before {
-  content: "\f35c"; }
+.fa-surprise::before {
+  content: "\f5c2"; }
 
-.fa-font-awesome-flag:before {
-  content: "\f425"; }
+.fa-face-tired::before {
+  content: "\f5c8"; }
 
-.fa-font-awesome-logo-full:before {
-  content: "\f4e6"; }
+.fa-tired::before {
+  content: "\f5c8"; }
 
-.fa-fonticons:before {
-  content: "\f280"; }
+.fa-fan::before {
+  content: "\f863"; }
 
-.fa-fonticons-fi:before {
-  content: "\f3a2"; }
+.fa-faucet::before {
+  content: "\e005"; }
 
-.fa-football-ball:before {
-  content: "\f44e"; }
+.fa-fax::before {
+  content: "\f1ac"; }
 
-.fa-fort-awesome:before {
-  content: "\f286"; }
+.fa-feather::before {
+  content: "\f52d"; }
 
-.fa-fort-awesome-alt:before {
-  content: "\f3a3"; }
+.fa-feather-pointed::before {
+  content: "\f56b"; }
 
-.fa-forumbee:before {
-  content: "\f211"; }
+.fa-feather-alt::before {
+  content: "\f56b"; }
 
-.fa-forward:before {
-  content: "\f04e"; }
+.fa-file::before {
+  content: "\f15b"; }
 
-.fa-foursquare:before {
-  content: "\f180"; }
+.fa-file-arrow-down::before {
+  content: "\f56d"; }
 
-.fa-free-code-camp:before {
-  content: "\f2c5"; }
+.fa-file-download::before {
+  content: "\f56d"; }
 
-.fa-freebsd:before {
-  content: "\f3a4"; }
+.fa-file-arrow-up::before {
+  content: "\f574"; }
 
-.fa-frog:before {
-  content: "\f52e"; }
+.fa-file-upload::before {
+  content: "\f574"; }
 
-.fa-frown:before {
-  content: "\f119"; }
+.fa-file-audio::before {
+  content: "\f1c7"; }
 
-.fa-frown-open:before {
-  content: "\f57a"; }
+.fa-file-code::before {
+  content: "\f1c9"; }
 
-.fa-fulcrum:before {
-  content: "\f50b"; }
+.fa-file-contract::before {
+  content: "\f56c"; }
 
-.fa-funnel-dollar:before {
-  content: "\f662"; }
+.fa-file-csv::before {
+  content: "\f6dd"; }
 
-.fa-futbol:before {
-  content: "\f1e3"; }
+.fa-file-excel::before {
+  content: "\f1c3"; }
 
-.fa-galactic-republic:before {
-  content: "\f50c"; }
+.fa-file-export::before {
+  content: "\f56e"; }
 
-.fa-galactic-senate:before {
-  content: "\f50d"; }
+.fa-arrow-right-from-file::before {
+  content: "\f56e"; }
 
-.fa-gamepad:before {
-  content: "\f11b"; }
+.fa-file-image::before {
+  content: "\f1c5"; }
 
-.fa-gas-pump:before {
-  content: "\f52f"; }
+.fa-file-import::before {
+  content: "\f56f"; }
 
-.fa-gavel:before {
-  content: "\f0e3"; }
+.fa-arrow-right-to-file::before {
+  content: "\f56f"; }
 
-.fa-gem:before {
-  content: "\f3a5"; }
+.fa-file-invoice::before {
+  content: "\f570"; }
 
-.fa-genderless:before {
-  content: "\f22d"; }
+.fa-file-invoice-dollar::before {
+  content: "\f571"; }
 
-.fa-get-pocket:before {
-  content: "\f265"; }
+.fa-file-lines::before {
+  content: "\f15c"; }
 
-.fa-gg:before {
-  content: "\f260"; }
+.fa-file-alt::before {
+  content: "\f15c"; }
 
-.fa-gg-circle:before {
-  content: "\f261"; }
+.fa-file-text::before {
+  content: "\f15c"; }
 
-.fa-ghost:before {
-  content: "\f6e2"; }
+.fa-file-medical::before {
+  content: "\f477"; }
 
-.fa-gift:before {
-  content: "\f06b"; }
+.fa-file-pdf::before {
+  content: "\f1c1"; }
 
-.fa-gifts:before {
-  content: "\f79c"; }
+.fa-file-powerpoint::before {
+  content: "\f1c4"; }
 
-.fa-git:before {
-  content: "\f1d3"; }
+.fa-file-prescription::before {
+  content: "\f572"; }
 
-.fa-git-alt:before {
-  content: "\f841"; }
+.fa-file-signature::before {
+  content: "\f573"; }
 
-.fa-git-square:before {
-  content: "\f1d2"; }
+.fa-file-video::before {
+  content: "\f1c8"; }
 
-.fa-github:before {
-  content: "\f09b"; }
+.fa-file-waveform::before {
+  content: "\f478"; }
 
-.fa-github-alt:before {
-  content: "\f113"; }
+.fa-file-medical-alt::before {
+  content: "\f478"; }
 
-.fa-github-square:before {
-  content: "\f092"; }
+.fa-file-word::before {
+  content: "\f1c2"; }
 
-.fa-gitkraken:before {
-  content: "\f3a6"; }
+.fa-file-zipper::before {
+  content: "\f1c6"; }
 
-.fa-gitlab:before {
-  content: "\f296"; }
+.fa-file-archive::before {
+  content: "\f1c6"; }
 
-.fa-gitter:before {
-  content: "\f426"; }
+.fa-fill::before {
+  content: "\f575"; }
 
-.fa-glass-cheers:before {
-  content: "\f79f"; }
+.fa-fill-drip::before {
+  content: "\f576"; }
 
-.fa-glass-martini:before {
-  content: "\f000"; }
+.fa-film::before {
+  content: "\f008"; }
 
-.fa-glass-martini-alt:before {
-  content: "\f57b"; }
+.fa-filter::before {
+  content: "\f0b0"; }
 
-.fa-glass-whiskey:before {
-  content: "\f7a0"; }
+.fa-filter-circle-dollar::before {
+  content: "\f662"; }
 
-.fa-glasses:before {
-  content: "\f530"; }
+.fa-funnel-dollar::before {
+  content: "\f662"; }
 
-.fa-glide:before {
-  content: "\f2a5"; }
+.fa-filter-circle-xmark::before {
+  content: "\e17b"; }
 
-.fa-glide-g:before {
-  content: "\f2a6"; }
+.fa-fingerprint::before {
+  content: "\f577"; }
 
-.fa-globe:before {
-  content: "\f0ac"; }
+.fa-fire::before {
+  content: "\f06d"; }
 
-.fa-globe-africa:before {
-  content: "\f57c"; }
+.fa-fire-extinguisher::before {
+  content: "\f134"; }
 
-.fa-globe-americas:before {
-  content: "\f57d"; }
+.fa-fire-flame-curved::before {
+  content: "\f7e4"; }
 
-.fa-globe-asia:before {
-  content: "\f57e"; }
+.fa-fire-alt::before {
+  content: "\f7e4"; }
 
-.fa-globe-europe:before {
-  content: "\f7a2"; }
+.fa-fire-flame-simple::before {
+  content: "\f46a"; }
 
-.fa-gofore:before {
-  content: "\f3a7"; }
+.fa-burn::before {
+  content: "\f46a"; }
 
-.fa-golf-ball:before {
-  content: "\f450"; }
+.fa-fish::before {
+  content: "\f578"; }
 
-.fa-goodreads:before {
-  content: "\f3a8"; }
+.fa-flag::before {
+  content: "\f024"; }
 
-.fa-goodreads-g:before {
-  content: "\f3a9"; }
+.fa-flag-checkered::before {
+  content: "\f11e"; }
 
-.fa-google:before {
-  content: "\f1a0"; }
+.fa-flag-usa::before {
+  content: "\f74d"; }
 
-.fa-google-drive:before {
-  content: "\f3aa"; }
+.fa-flask::before {
+  content: "\f0c3"; }
 
-.fa-google-pay:before {
-  content: "\e079"; }
+.fa-floppy-disk::before {
+  content: "\f0c7"; }
 
-.fa-google-play:before {
-  content: "\f3ab"; }
+.fa-save::before {
+  content: "\f0c7"; }
 
-.fa-google-plus:before {
-  content: "\f2b3"; }
+.fa-florin-sign::before {
+  content: "\e184"; }
 
-.fa-google-plus-g:before {
-  content: "\f0d5"; }
+.fa-folder::before {
+  content: "\f07b"; }
 
-.fa-google-plus-square:before {
-  content: "\f0d4"; }
+.fa-folder-minus::before {
+  content: "\f65d"; }
 
-.fa-google-wallet:before {
-  content: "\f1ee"; }
+.fa-folder-open::before {
+  content: "\f07c"; }
 
-.fa-gopuram:before {
-  content: "\f664"; }
+.fa-folder-plus::before {
+  content: "\f65e"; }
 
-.fa-graduation-cap:before {
-  content: "\f19d"; }
+.fa-folder-tree::before {
+  content: "\f802"; }
 
-.fa-gratipay:before {
-  content: "\f184"; }
+.fa-font::before {
+  content: "\f031"; }
 
-.fa-grav:before {
-  content: "\f2d6"; }
+.fa-football::before {
+  content: "\f44e"; }
 
-.fa-greater-than:before {
-  content: "\f531"; }
+.fa-football-ball::before {
+  content: "\f44e"; }
 
-.fa-greater-than-equal:before {
-  content: "\f532"; }
+.fa-forward::before {
+  content: "\f04e"; }
 
-.fa-grimace:before {
-  content: "\f57f"; }
+.fa-forward-fast::before {
+  content: "\f050"; }
 
-.fa-grin:before {
-  content: "\f580"; }
+.fa-fast-forward::before {
+  content: "\f050"; }
 
-.fa-grin-alt:before {
-  content: "\f581"; }
+.fa-forward-step::before {
+  content: "\f051"; }
 
-.fa-grin-beam:before {
-  content: "\f582"; }
+.fa-step-forward::before {
+  content: "\f051"; }
 
-.fa-grin-beam-sweat:before {
-  content: "\f583"; }
+.fa-franc-sign::before {
+  content: "\e18f"; }
 
-.fa-grin-hearts:before {
-  content: "\f584"; }
+.fa-frog::before {
+  content: "\f52e"; }
 
-.fa-grin-squint:before {
-  content: "\f585"; }
+.fa-futbol::before {
+  content: "\f1e3"; }
 
-.fa-grin-squint-tears:before {
-  content: "\f586"; }
+.fa-futbol-ball::before {
+  content: "\f1e3"; }
 
-.fa-grin-stars:before {
-  content: "\f587"; }
+.fa-soccer-ball::before {
+  content: "\f1e3"; }
 
-.fa-grin-tears:before {
-  content: "\f588"; }
+.fa-g::before {
+  content: "\47"; }
 
-.fa-grin-tongue:before {
-  content: "\f589"; }
+.fa-gamepad::before {
+  content: "\f11b"; }
 
-.fa-grin-tongue-squint:before {
-  content: "\f58a"; }
+.fa-gas-pump::before {
+  content: "\f52f"; }
 
-.fa-grin-tongue-wink:before {
-  content: "\f58b"; }
+.fa-gauge::before {
+  content: "\f624"; }
 
-.fa-grin-wink:before {
-  content: "\f58c"; }
+.fa-dashboard::before {
+  content: "\f624"; }
+
+.fa-gauge-med::before {
+  content: "\f624"; }
+
+.fa-tachometer-alt-average::before {
+  content: "\f624"; }
+
+.fa-gauge-high::before {
+  content: "\f625"; }
+
+.fa-tachometer-alt::before {
+  content: "\f625"; }
+
+.fa-tachometer-alt-fast::before {
+  content: "\f625"; }
+
+.fa-gauge-simple::before {
+  content: "\f629"; }
+
+.fa-gauge-simple-med::before {
+  content: "\f629"; }
+
+.fa-tachometer-average::before {
+  content: "\f629"; }
+
+.fa-gauge-simple-high::before {
+  content: "\f62a"; }
+
+.fa-tachometer::before {
+  content: "\f62a"; }
+
+.fa-tachometer-fast::before {
+  content: "\f62a"; }
+
+.fa-gavel::before {
+  content: "\f0e3"; }
+
+.fa-legal::before {
+  content: "\f0e3"; }
+
+.fa-gear::before {
+  content: "\f013"; }
+
+.fa-cog::before {
+  content: "\f013"; }
+
+.fa-gears::before {
+  content: "\f085"; }
+
+.fa-cogs::before {
+  content: "\f085"; }
+
+.fa-gem::before {
+  content: "\f3a5"; }
+
+.fa-genderless::before {
+  content: "\f22d"; }
+
+.fa-ghost::before {
+  content: "\f6e2"; }
+
+.fa-gift::before {
+  content: "\f06b"; }
+
+.fa-gifts::before {
+  content: "\f79c"; }
+
+.fa-glasses::before {
+  content: "\f530"; }
+
+.fa-globe::before {
+  content: "\f0ac"; }
+
+.fa-golf-ball-tee::before {
+  content: "\f450"; }
+
+.fa-golf-ball::before {
+  content: "\f450"; }
+
+.fa-gopuram::before {
+  content: "\f664"; }
+
+.fa-graduation-cap::before {
+  content: "\f19d"; }
+
+.fa-mortar-board::before {
+  content: "\f19d"; }
+
+.fa-greater-than::before {
+  content: "\3e"; }
+
+.fa-greater-than-equal::before {
+  content: "\f532"; }
+
+.fa-grip::before {
+  content: "\f58d"; }
 
-.fa-grip-horizontal:before {
+.fa-grip-horizontal::before {
   content: "\f58d"; }
 
-.fa-grip-lines:before {
+.fa-grip-lines::before {
   content: "\f7a4"; }
 
-.fa-grip-lines-vertical:before {
+.fa-grip-lines-vertical::before {
   content: "\f7a5"; }
 
-.fa-grip-vertical:before {
+.fa-grip-vertical::before {
   content: "\f58e"; }
 
-.fa-gripfire:before {
-  content: "\f3ac"; }
+.fa-guarani-sign::before {
+  content: "\e19a"; }
 
-.fa-grunt:before {
-  content: "\f3ad"; }
+.fa-guitar::before {
+  content: "\f7a6"; }
 
-.fa-guilded:before {
-  content: "\e07e"; }
+.fa-gun::before {
+  content: "\e19b"; }
 
-.fa-guitar:before {
-  content: "\f7a6"; }
+.fa-h::before {
+  content: "\48"; }
 
-.fa-gulp:before {
-  content: "\f3ae"; }
+.fa-hammer::before {
+  content: "\f6e3"; }
 
-.fa-h-square:before {
-  content: "\f0fd"; }
+.fa-hamsa::before {
+  content: "\f665"; }
 
-.fa-hacker-news:before {
-  content: "\f1d4"; }
+.fa-hand::before {
+  content: "\f256"; }
 
-.fa-hacker-news-square:before {
-  content: "\f3af"; }
+.fa-hand-paper::before {
+  content: "\f256"; }
 
-.fa-hackerrank:before {
-  content: "\f5f7"; }
+.fa-hand-back-fist::before {
+  content: "\f255"; }
 
-.fa-hamburger:before {
-  content: "\f805"; }
+.fa-hand-rock::before {
+  content: "\f255"; }
 
-.fa-hammer:before {
-  content: "\f6e3"; }
+.fa-hand-dots::before {
+  content: "\f461"; }
 
-.fa-hamsa:before {
-  content: "\f665"; }
+.fa-allergies::before {
+  content: "\f461"; }
 
-.fa-hand-holding:before {
-  content: "\f4bd"; }
+.fa-hand-fist::before {
+  content: "\f6de"; }
 
-.fa-hand-holding-heart:before {
-  content: "\f4be"; }
+.fa-fist-raised::before {
+  content: "\f6de"; }
 
-.fa-hand-holding-medical:before {
-  content: "\e05c"; }
+.fa-hand-holding::before {
+  content: "\f4bd"; }
+
+.fa-hand-holding-dollar::before {
+  content: "\f4c0"; }
 
-.fa-hand-holding-usd:before {
+.fa-hand-holding-usd::before {
   content: "\f4c0"; }
 
-.fa-hand-holding-water:before {
+.fa-hand-holding-droplet::before {
   content: "\f4c1"; }
 
-.fa-hand-lizard:before {
+.fa-hand-holding-water::before {
+  content: "\f4c1"; }
+
+.fa-hand-holding-heart::before {
+  content: "\f4be"; }
+
+.fa-hand-holding-medical::before {
+  content: "\e05c"; }
+
+.fa-hand-lizard::before {
   content: "\f258"; }
 
-.fa-hand-middle-finger:before {
+.fa-hand-middle-finger::before {
   content: "\f806"; }
 
-.fa-hand-paper:before {
-  content: "\f256"; }
-
-.fa-hand-peace:before {
+.fa-hand-peace::before {
   content: "\f25b"; }
 
-.fa-hand-point-down:before {
+.fa-hand-point-down::before {
   content: "\f0a7"; }
 
-.fa-hand-point-left:before {
+.fa-hand-point-left::before {
   content: "\f0a5"; }
 
-.fa-hand-point-right:before {
+.fa-hand-point-right::before {
   content: "\f0a4"; }
 
-.fa-hand-point-up:before {
+.fa-hand-point-up::before {
   content: "\f0a6"; }
 
-.fa-hand-pointer:before {
+.fa-hand-pointer::before {
   content: "\f25a"; }
 
-.fa-hand-rock:before {
-  content: "\f255"; }
-
-.fa-hand-scissors:before {
+.fa-hand-scissors::before {
   content: "\f257"; }
 
-.fa-hand-sparkles:before {
+.fa-hand-sparkles::before {
   content: "\e05d"; }
 
-.fa-hand-spock:before {
+.fa-hand-spock::before {
   content: "\f259"; }
 
-.fa-hands:before {
-  content: "\f4c2"; }
+.fa-hands::before {
+  content: "\f2a7"; }
 
-.fa-hands-helping:before {
-  content: "\f4c4"; }
+.fa-sign-language::before {
+  content: "\f2a7"; }
+
+.fa-signing::before {
+  content: "\f2a7"; }
+
+.fa-hands-asl-interpreting::before {
+  content: "\f2a3"; }
+
+.fa-american-sign-language-interpreting::before {
+  content: "\f2a3"; }
 
-.fa-hands-wash:before {
+.fa-asl-interpreting::before {
+  content: "\f2a3"; }
+
+.fa-hands-american-sign-language-interpreting::before {
+  content: "\f2a3"; }
+
+.fa-hands-bubbles::before {
   content: "\e05e"; }
 
-.fa-handshake:before {
+.fa-hands-wash::before {
+  content: "\e05e"; }
+
+.fa-hands-clapping::before {
+  content: "\e1a8"; }
+
+.fa-hands-holding::before {
+  content: "\f4c2"; }
+
+.fa-hands-praying::before {
+  content: "\f684"; }
+
+.fa-praying-hands::before {
+  content: "\f684"; }
+
+.fa-handshake::before {
   content: "\f2b5"; }
 
-.fa-handshake-alt-slash:before {
+.fa-handshake-angle::before {
+  content: "\f4c4"; }
+
+.fa-hands-helping::before {
+  content: "\f4c4"; }
+
+.fa-handshake-simple-slash::before {
+  content: "\e05f"; }
+
+.fa-handshake-alt-slash::before {
   content: "\e05f"; }
 
-.fa-handshake-slash:before {
+.fa-handshake-slash::before {
   content: "\e060"; }
 
-.fa-hanukiah:before {
+.fa-hanukiah::before {
   content: "\f6e6"; }
 
-.fa-hard-hat:before {
-  content: "\f807"; }
+.fa-hard-drive::before {
+  content: "\f0a0"; }
+
+.fa-hdd::before {
+  content: "\f0a0"; }
 
-.fa-hashtag:before {
-  content: "\f292"; }
+.fa-hashtag::before {
+  content: "\23"; }
 
-.fa-hat-cowboy:before {
+.fa-hat-cowboy::before {
   content: "\f8c0"; }
 
-.fa-hat-cowboy-side:before {
+.fa-hat-cowboy-side::before {
   content: "\f8c1"; }
 
-.fa-hat-wizard:before {
+.fa-hat-wizard::before {
   content: "\f6e8"; }
 
-.fa-hdd:before {
-  content: "\f0a0"; }
-
-.fa-head-side-cough:before {
+.fa-head-side-cough::before {
   content: "\e061"; }
 
-.fa-head-side-cough-slash:before {
+.fa-head-side-cough-slash::before {
   content: "\e062"; }
 
-.fa-head-side-mask:before {
+.fa-head-side-mask::before {
   content: "\e063"; }
 
-.fa-head-side-virus:before {
+.fa-head-side-virus::before {
   content: "\e064"; }
 
-.fa-heading:before {
+.fa-heading::before {
+  content: "\f1dc"; }
+
+.fa-header::before {
   content: "\f1dc"; }
 
-.fa-headphones:before {
+.fa-headphones::before {
   content: "\f025"; }
 
-.fa-headphones-alt:before {
+.fa-headphones-simple::before {
+  content: "\f58f"; }
+
+.fa-headphones-alt::before {
   content: "\f58f"; }
 
-.fa-headset:before {
+.fa-headset::before {
   content: "\f590"; }
 
-.fa-heart:before {
+.fa-heart::before {
   content: "\f004"; }
 
-.fa-heart-broken:before {
+.fa-heart-crack::before {
   content: "\f7a9"; }
 
-.fa-heartbeat:before {
-  content: "\f21e"; }
+.fa-heart-broken::before {
+  content: "\f7a9"; }
 
-.fa-helicopter:before {
-  content: "\f533"; }
+.fa-heart-pulse::before {
+  content: "\f21e"; }
 
-.fa-highlighter:before {
-  content: "\f591"; }
+.fa-heartbeat::before {
+  content: "\f21e"; }
 
-.fa-hiking:before {
-  content: "\f6ec"; }
+.fa-helicopter::before {
+  content: "\f533"; }
 
-.fa-hippo:before {
-  content: "\f6ed"; }
+.fa-helmet-safety::before {
+  content: "\f807"; }
 
-.fa-hips:before {
-  content: "\f452"; }
+.fa-hard-hat::before {
+  content: "\f807"; }
 
-.fa-hire-a-helper:before {
-  content: "\f3b0"; }
+.fa-hat-hard::before {
+  content: "\f807"; }
 
-.fa-history:before {
-  content: "\f1da"; }
+.fa-highlighter::before {
+  content: "\f591"; }
 
-.fa-hive:before {
-  content: "\e07f"; }
+.fa-hippo::before {
+  content: "\f6ed"; }
 
-.fa-hockey-puck:before {
+.fa-hockey-puck::before {
   content: "\f453"; }
 
-.fa-holly-berry:before {
+.fa-holly-berry::before {
   content: "\f7aa"; }
 
-.fa-home:before {
-  content: "\f015"; }
-
-.fa-hooli:before {
-  content: "\f427"; }
-
-.fa-hornbill:before {
-  content: "\f592"; }
-
-.fa-horse:before {
+.fa-horse::before {
   content: "\f6f0"; }
 
-.fa-horse-head:before {
+.fa-horse-head::before {
   content: "\f7ab"; }
 
-.fa-hospital:before {
+.fa-hospital::before {
   content: "\f0f8"; }
 
-.fa-hospital-alt:before {
-  content: "\f47d"; }
+.fa-hospital-alt::before {
+  content: "\f0f8"; }
 
-.fa-hospital-symbol:before {
-  content: "\f47e"; }
+.fa-hospital-wide::before {
+  content: "\f0f8"; }
 
-.fa-hospital-user:before {
+.fa-hospital-user::before {
   content: "\f80d"; }
 
-.fa-hot-tub:before {
+.fa-hot-tub-person::before {
+  content: "\f593"; }
+
+.fa-hot-tub::before {
   content: "\f593"; }
 
-.fa-hotdog:before {
+.fa-hotdog::before {
   content: "\f80f"; }
 
-.fa-hotel:before {
+.fa-hotel::before {
   content: "\f594"; }
 
-.fa-hotjar:before {
-  content: "\f3b1"; }
+.fa-hourglass::before {
+  content: "\f254"; }
 
-.fa-hourglass:before {
+.fa-hourglass-2::before {
   content: "\f254"; }
 
-.fa-hourglass-end:before {
-  content: "\f253"; }
+.fa-hourglass-half::before {
+  content: "\f254"; }
 
-.fa-hourglass-half:before {
+.fa-hourglass-empty::before {
   content: "\f252"; }
 
-.fa-hourglass-start:before {
-  content: "\f251"; }
+.fa-hourglass-end::before {
+  content: "\f253"; }
 
-.fa-house-damage:before {
-  content: "\f6f1"; }
+.fa-hourglass-3::before {
+  content: "\f253"; }
 
-.fa-house-user:before {
-  content: "\e065"; }
+.fa-hourglass-start::before {
+  content: "\f251"; }
 
-.fa-houzz:before {
-  content: "\f27c"; }
+.fa-hourglass-1::before {
+  content: "\f251"; }
 
-.fa-hryvnia:before {
-  content: "\f6f2"; }
+.fa-house::before {
+  content: "\f015"; }
 
-.fa-html5:before {
-  content: "\f13b"; }
+.fa-home::before {
+  content: "\f015"; }
 
-.fa-hubspot:before {
-  content: "\f3b2"; }
+.fa-home-alt::before {
+  content: "\f015"; }
 
-.fa-i-cursor:before {
-  content: "\f246"; }
+.fa-home-lg-alt::before {
+  content: "\f015"; }
 
-.fa-ice-cream:before {
-  content: "\f810"; }
+.fa-house-chimney::before {
+  content: "\e3af"; }
 
-.fa-icicles:before {
-  content: "\f7ad"; }
+.fa-home-lg::before {
+  content: "\e3af"; }
 
-.fa-icons:before {
-  content: "\f86d"; }
+.fa-house-chimney-crack::before {
+  content: "\f6f1"; }
 
-.fa-id-badge:before {
-  content: "\f2c1"; }
+.fa-house-damage::before {
+  content: "\f6f1"; }
 
-.fa-id-card:before {
-  content: "\f2c2"; }
+.fa-house-chimney-medical::before {
+  content: "\f7f2"; }
 
-.fa-id-card-alt:before {
-  content: "\f47f"; }
+.fa-clinic-medical::before {
+  content: "\f7f2"; }
 
-.fa-ideal:before {
-  content: "\e013"; }
+.fa-house-chimney-user::before {
+  content: "\e065"; }
 
-.fa-igloo:before {
-  content: "\f7ae"; }
+.fa-house-chimney-window::before {
+  content: "\e00d"; }
 
-.fa-image:before {
-  content: "\f03e"; }
+.fa-house-crack::before {
+  content: "\e3b1"; }
 
-.fa-images:before {
-  content: "\f302"; }
+.fa-house-laptop::before {
+  content: "\e066"; }
 
-.fa-imdb:before {
-  content: "\f2d8"; }
+.fa-laptop-house::before {
+  content: "\e066"; }
 
-.fa-inbox:before {
-  content: "\f01c"; }
+.fa-house-medical::before {
+  content: "\e3b2"; }
 
-.fa-indent:before {
-  content: "\f03c"; }
+.fa-house-user::before {
+  content: "\e1b0"; }
 
-.fa-industry:before {
-  content: "\f275"; }
+.fa-home-user::before {
+  content: "\e1b0"; }
 
-.fa-infinity:before {
-  content: "\f534"; }
+.fa-hryvnia-sign::before {
+  content: "\f6f2"; }
 
-.fa-info:before {
-  content: "\f129"; }
+.fa-hryvnia::before {
+  content: "\f6f2"; }
 
-.fa-info-circle:before {
-  content: "\f05a"; }
+.fa-i::before {
+  content: "\49"; }
 
-.fa-innosoft:before {
-  content: "\e080"; }
+.fa-i-cursor::before {
+  content: "\f246"; }
 
-.fa-instagram:before {
-  content: "\f16d"; }
+.fa-ice-cream::before {
+  content: "\f810"; }
 
-.fa-instagram-square:before {
-  content: "\e055"; }
+.fa-icicles::before {
+  content: "\f7ad"; }
 
-.fa-instalod:before {
-  content: "\e081"; }
+.fa-icons::before {
+  content: "\f86d"; }
 
-.fa-intercom:before {
-  content: "\f7af"; }
+.fa-heart-music-camera-bolt::before {
+  content: "\f86d"; }
 
-.fa-internet-explorer:before {
-  content: "\f26b"; }
+.fa-id-badge::before {
+  content: "\f2c1"; }
 
-.fa-invision:before {
-  content: "\f7b0"; }
+.fa-id-card::before {
+  content: "\f2c2"; }
 
-.fa-ioxhost:before {
-  content: "\f208"; }
+.fa-drivers-license::before {
+  content: "\f2c2"; }
 
-.fa-italic:before {
-  content: "\f033"; }
+.fa-id-card-clip::before {
+  content: "\f47f"; }
 
-.fa-itch-io:before {
-  content: "\f83a"; }
+.fa-id-card-alt::before {
+  content: "\f47f"; }
 
-.fa-itunes:before {
-  content: "\f3b4"; }
+.fa-igloo::before {
+  content: "\f7ae"; }
 
-.fa-itunes-note:before {
-  content: "\f3b5"; }
+.fa-image::before {
+  content: "\f03e"; }
 
-.fa-java:before {
-  content: "\f4e4"; }
+.fa-image-portrait::before {
+  content: "\f3e0"; }
 
-.fa-jedi:before {
-  content: "\f669"; }
+.fa-portrait::before {
+  content: "\f3e0"; }
 
-.fa-jedi-order:before {
-  content: "\f50e"; }
+.fa-images::before {
+  content: "\f302"; }
 
-.fa-jenkins:before {
-  content: "\f3b6"; }
+.fa-inbox::before {
+  content: "\f01c"; }
 
-.fa-jira:before {
-  content: "\f7b1"; }
+.fa-indent::before {
+  content: "\f03c"; }
 
-.fa-joget:before {
-  content: "\f3b7"; }
+.fa-indian-rupee-sign::before {
+  content: "\e1bc"; }
 
-.fa-joint:before {
-  content: "\f595"; }
+.fa-indian-rupee::before {
+  content: "\e1bc"; }
 
-.fa-joomla:before {
-  content: "\f1aa"; }
+.fa-inr::before {
+  content: "\e1bc"; }
 
-.fa-journal-whills:before {
-  content: "\f66a"; }
+.fa-industry::before {
+  content: "\f275"; }
 
-.fa-js:before {
-  content: "\f3b8"; }
+.fa-infinity::before {
+  content: "\f534"; }
 
-.fa-js-square:before {
-  content: "\f3b9"; }
+.fa-info::before {
+  content: "\f129"; }
 
-.fa-jsfiddle:before {
-  content: "\f1cc"; }
+.fa-italic::before {
+  content: "\f033"; }
 
-.fa-kaaba:before {
-  content: "\f66b"; }
+.fa-j::before {
+  content: "\4a"; }
 
-.fa-kaggle:before {
-  content: "\f5fa"; }
+.fa-jedi::before {
+  content: "\f669"; }
 
-.fa-key:before {
-  content: "\f084"; }
+.fa-jet-fighter::before {
+  content: "\f0fb"; }
 
-.fa-keybase:before {
-  content: "\f4f5"; }
+.fa-fighter-jet::before {
+  content: "\f0fb"; }
 
-.fa-keyboard:before {
-  content: "\f11c"; }
+.fa-joint::before {
+  content: "\f595"; }
 
-.fa-keycdn:before {
-  content: "\f3ba"; }
+.fa-k::before {
+  content: "\4b"; }
 
-.fa-khanda:before {
-  content: "\f66d"; }
+.fa-kaaba::before {
+  content: "\f66b"; }
 
-.fa-kickstarter:before {
-  content: "\f3bb"; }
+.fa-key::before {
+  content: "\f084"; }
 
-.fa-kickstarter-k:before {
-  content: "\f3bc"; }
+.fa-keyboard::before {
+  content: "\f11c"; }
 
-.fa-kiss:before {
-  content: "\f596"; }
+.fa-khanda::before {
+  content: "\f66d"; }
 
-.fa-kiss-beam:before {
-  content: "\f597"; }
+.fa-kip-sign::before {
+  content: "\e1c4"; }
 
-.fa-kiss-wink-heart:before {
-  content: "\f598"; }
+.fa-kit-medical::before {
+  content: "\f479"; }
+
+.fa-first-aid::before {
+  content: "\f479"; }
 
-.fa-kiwi-bird:before {
+.fa-kiwi-bird::before {
   content: "\f535"; }
 
-.fa-korvue:before {
-  content: "\f42f"; }
+.fa-l::before {
+  content: "\4c"; }
 
-.fa-landmark:before {
+.fa-landmark::before {
   content: "\f66f"; }
 
-.fa-language:before {
+.fa-language::before {
   content: "\f1ab"; }
 
-.fa-laptop:before {
+.fa-laptop::before {
   content: "\f109"; }
 
-.fa-laptop-code:before {
+.fa-laptop-code::before {
   content: "\f5fc"; }
 
-.fa-laptop-house:before {
-  content: "\e066"; }
-
-.fa-laptop-medical:before {
+.fa-laptop-medical::before {
   content: "\f812"; }
 
-.fa-laravel:before {
-  content: "\f3bd"; }
-
-.fa-lastfm:before {
-  content: "\f202"; }
-
-.fa-lastfm-square:before {
-  content: "\f203"; }
-
-.fa-laugh:before {
-  content: "\f599"; }
-
-.fa-laugh-beam:before {
-  content: "\f59a"; }
-
-.fa-laugh-squint:before {
-  content: "\f59b"; }
-
-.fa-laugh-wink:before {
-  content: "\f59c"; }
+.fa-lari-sign::before {
+  content: "\e1c8"; }
 
-.fa-layer-group:before {
+.fa-layer-group::before {
   content: "\f5fd"; }
 
-.fa-leaf:before {
+.fa-leaf::before {
   content: "\f06c"; }
 
-.fa-leanpub:before {
-  content: "\f212"; }
+.fa-left-long::before {
+  content: "\f30a"; }
 
-.fa-lemon:before {
-  content: "\f094"; }
+.fa-long-arrow-alt-left::before {
+  content: "\f30a"; }
 
-.fa-less:before {
-  content: "\f41d"; }
+.fa-left-right::before {
+  content: "\f337"; }
 
-.fa-less-than:before {
-  content: "\f536"; }
+.fa-arrows-alt-h::before {
+  content: "\f337"; }
 
-.fa-less-than-equal:before {
-  content: "\f537"; }
+.fa-lemon::before {
+  content: "\f094"; }
 
-.fa-level-down-alt:before {
-  content: "\f3be"; }
+.fa-less-than::before {
+  content: "\3c"; }
 
-.fa-level-up-alt:before {
-  content: "\f3bf"; }
+.fa-less-than-equal::before {
+  content: "\f537"; }
 
-.fa-life-ring:before {
+.fa-life-ring::before {
   content: "\f1cd"; }
 
-.fa-lightbulb:before {
+.fa-lightbulb::before {
   content: "\f0eb"; }
 
-.fa-line:before {
-  content: "\f3c0"; }
+.fa-link::before {
+  content: "\f0c1"; }
 
-.fa-link:before {
+.fa-chain::before {
   content: "\f0c1"; }
 
-.fa-linkedin:before {
-  content: "\f08c"; }
+.fa-link-slash::before {
+  content: "\f127"; }
 
-.fa-linkedin-in:before {
-  content: "\f0e1"; }
+.fa-chain-broken::before {
+  content: "\f127"; }
 
-.fa-linode:before {
-  content: "\f2b8"; }
+.fa-chain-slash::before {
+  content: "\f127"; }
 
-.fa-linux:before {
-  content: "\f17c"; }
+.fa-unlink::before {
+  content: "\f127"; }
 
-.fa-lira-sign:before {
+.fa-lira-sign::before {
   content: "\f195"; }
 
-.fa-list:before {
+.fa-list::before {
   content: "\f03a"; }
 
-.fa-list-alt:before {
-  content: "\f022"; }
+.fa-list-squares::before {
+  content: "\f03a"; }
+
+.fa-list-check::before {
+  content: "\f0ae"; }
+
+.fa-tasks::before {
+  content: "\f0ae"; }
+
+.fa-list-ol::before {
+  content: "\f0cb"; }
+
+.fa-list-1-2::before {
+  content: "\f0cb"; }
 
-.fa-list-ol:before {
+.fa-list-numeric::before {
   content: "\f0cb"; }
 
-.fa-list-ul:before {
+.fa-list-ul::before {
+  content: "\f0ca"; }
+
+.fa-list-dots::before {
   content: "\f0ca"; }
 
-.fa-location-arrow:before {
+.fa-litecoin-sign::before {
+  content: "\e1d3"; }
+
+.fa-location-arrow::before {
   content: "\f124"; }
 
-.fa-lock:before {
-  content: "\f023"; }
+.fa-location-crosshairs::before {
+  content: "\f601"; }
 
-.fa-lock-open:before {
-  content: "\f3c1"; }
+.fa-location::before {
+  content: "\f601"; }
 
-.fa-long-arrow-alt-down:before {
-  content: "\f309"; }
+.fa-location-dot::before {
+  content: "\f3c5"; }
 
-.fa-long-arrow-alt-left:before {
-  content: "\f30a"; }
+.fa-map-marker-alt::before {
+  content: "\f3c5"; }
 
-.fa-long-arrow-alt-right:before {
-  content: "\f30b"; }
+.fa-location-pin::before {
+  content: "\f041"; }
 
-.fa-long-arrow-alt-up:before {
-  content: "\f30c"; }
+.fa-map-marker::before {
+  content: "\f041"; }
 
-.fa-low-vision:before {
-  content: "\f2a8"; }
+.fa-lock::before {
+  content: "\f023"; }
 
-.fa-luggage-cart:before {
-  content: "\f59d"; }
+.fa-lock-open::before {
+  content: "\f3c1"; }
 
-.fa-lungs:before {
+.fa-lungs::before {
   content: "\f604"; }
 
-.fa-lungs-virus:before {
+.fa-lungs-virus::before {
   content: "\e067"; }
 
-.fa-lyft:before {
-  content: "\f3c3"; }
+.fa-m::before {
+  content: "\4d"; }
 
-.fa-magento:before {
-  content: "\f3c4"; }
+.fa-magnet::before {
+  content: "\f076"; }
 
-.fa-magic:before {
-  content: "\f0d0"; }
+.fa-magnifying-glass::before {
+  content: "\f002"; }
 
-.fa-magnet:before {
-  content: "\f076"; }
+.fa-search::before {
+  content: "\f002"; }
 
-.fa-mail-bulk:before {
-  content: "\f674"; }
+.fa-magnifying-glass-dollar::before {
+  content: "\f688"; }
 
-.fa-mailchimp:before {
-  content: "\f59e"; }
+.fa-search-dollar::before {
+  content: "\f688"; }
 
-.fa-male:before {
-  content: "\f183"; }
+.fa-magnifying-glass-location::before {
+  content: "\f689"; }
 
-.fa-mandalorian:before {
-  content: "\f50f"; }
+.fa-search-location::before {
+  content: "\f689"; }
+
+.fa-magnifying-glass-minus::before {
+  content: "\f010"; }
+
+.fa-search-minus::before {
+  content: "\f010"; }
+
+.fa-magnifying-glass-plus::before {
+  content: "\f00e"; }
+
+.fa-search-plus::before {
+  content: "\f00e"; }
+
+.fa-manat-sign::before {
+  content: "\e1d5"; }
 
-.fa-map:before {
+.fa-map::before {
   content: "\f279"; }
 
-.fa-map-marked:before {
+.fa-map-location::before {
   content: "\f59f"; }
 
-.fa-map-marked-alt:before {
-  content: "\f5a0"; }
+.fa-map-marked::before {
+  content: "\f59f"; }
 
-.fa-map-marker:before {
-  content: "\f041"; }
+.fa-map-location-dot::before {
+  content: "\f5a0"; }
 
-.fa-map-marker-alt:before {
-  content: "\f3c5"; }
+.fa-map-marked-alt::before {
+  content: "\f5a0"; }
 
-.fa-map-pin:before {
+.fa-map-pin::before {
   content: "\f276"; }
 
-.fa-map-signs:before {
-  content: "\f277"; }
-
-.fa-markdown:before {
-  content: "\f60f"; }
-
-.fa-marker:before {
+.fa-marker::before {
   content: "\f5a1"; }
 
-.fa-mars:before {
+.fa-mars::before {
   content: "\f222"; }
 
-.fa-mars-double:before {
+.fa-mars-and-venus::before {
+  content: "\f224"; }
+
+.fa-mars-double::before {
   content: "\f227"; }
 
-.fa-mars-stroke:before {
+.fa-mars-stroke::before {
   content: "\f229"; }
 
-.fa-mars-stroke-h:before {
+.fa-mars-stroke-right::before {
+  content: "\f22b"; }
+
+.fa-mars-stroke-h::before {
   content: "\f22b"; }
 
-.fa-mars-stroke-v:before {
+.fa-mars-stroke-up::before {
   content: "\f22a"; }
 
-.fa-mask:before {
-  content: "\f6fa"; }
-
-.fa-mastodon:before {
-  content: "\f4f6"; }
+.fa-mars-stroke-v::before {
+  content: "\f22a"; }
 
-.fa-maxcdn:before {
-  content: "\f136"; }
+.fa-martini-glass::before {
+  content: "\f57b"; }
 
-.fa-mdb:before {
-  content: "\f8ca"; }
+.fa-glass-martini-alt::before {
+  content: "\f57b"; }
 
-.fa-medal:before {
-  content: "\f5a2"; }
+.fa-martini-glass-citrus::before {
+  content: "\f561"; }
 
-.fa-medapps:before {
-  content: "\f3c6"; }
+.fa-cocktail::before {
+  content: "\f561"; }
 
-.fa-medium:before {
-  content: "\f23a"; }
+.fa-martini-glass-empty::before {
+  content: "\f000"; }
 
-.fa-medium-m:before {
-  content: "\f3c7"; }
+.fa-glass-martini::before {
+  content: "\f000"; }
 
-.fa-medkit:before {
-  content: "\f0fa"; }
+.fa-mask::before {
+  content: "\f6fa"; }
 
-.fa-medrt:before {
-  content: "\f3c8"; }
+.fa-mask-face::before {
+  content: "\e1d7"; }
 
-.fa-meetup:before {
-  content: "\f2e0"; }
+.fa-masks-theater::before {
+  content: "\f630"; }
 
-.fa-megaport:before {
-  content: "\f5a3"; }
+.fa-theater-masks::before {
+  content: "\f630"; }
 
-.fa-meh:before {
-  content: "\f11a"; }
+.fa-maximize::before {
+  content: "\f31e"; }
 
-.fa-meh-blank:before {
-  content: "\f5a4"; }
+.fa-expand-arrows-alt::before {
+  content: "\f31e"; }
 
-.fa-meh-rolling-eyes:before {
-  content: "\f5a5"; }
+.fa-medal::before {
+  content: "\f5a2"; }
 
-.fa-memory:before {
+.fa-memory::before {
   content: "\f538"; }
 
-.fa-mendeley:before {
-  content: "\f7b3"; }
-
-.fa-menorah:before {
+.fa-menorah::before {
   content: "\f676"; }
 
-.fa-mercury:before {
+.fa-mercury::before {
   content: "\f223"; }
 
-.fa-meteor:before {
-  content: "\f753"; }
+.fa-message::before {
+  content: "\f27a"; }
 
-.fa-microblog:before {
-  content: "\e01a"; }
+.fa-comment-alt::before {
+  content: "\f27a"; }
 
-.fa-microchip:before {
+.fa-meteor::before {
+  content: "\f753"; }
+
+.fa-microchip::before {
   content: "\f2db"; }
 
-.fa-microphone:before {
+.fa-microphone::before {
   content: "\f130"; }
 
-.fa-microphone-alt:before {
+.fa-microphone-lines::before {
+  content: "\f3c9"; }
+
+.fa-microphone-alt::before {
   content: "\f3c9"; }
 
-.fa-microphone-alt-slash:before {
+.fa-microphone-lines-slash::before {
   content: "\f539"; }
 
-.fa-microphone-slash:before {
+.fa-microphone-alt-slash::before {
+  content: "\f539"; }
+
+.fa-microphone-slash::before {
   content: "\f131"; }
 
-.fa-microscope:before {
+.fa-microscope::before {
   content: "\f610"; }
 
-.fa-microsoft:before {
-  content: "\f3ca"; }
+.fa-mill-sign::before {
+  content: "\e1ed"; }
 
-.fa-minus:before {
-  content: "\f068"; }
+.fa-minimize::before {
+  content: "\f78c"; }
 
-.fa-minus-circle:before {
-  content: "\f056"; }
+.fa-compress-arrows-alt::before {
+  content: "\f78c"; }
 
-.fa-minus-square:before {
-  content: "\f146"; }
+.fa-minus::before {
+  content: "\f068"; }
 
-.fa-mitten:before {
-  content: "\f7b5"; }
+.fa-subtract::before {
+  content: "\f068"; }
 
-.fa-mix:before {
-  content: "\f3cb"; }
+.fa-mitten::before {
+  content: "\f7b5"; }
 
-.fa-mixcloud:before {
-  content: "\f289"; }
+.fa-mobile::before {
+  content: "\f3ce"; }
 
-.fa-mixer:before {
-  content: "\e056"; }
+.fa-mobile-android::before {
+  content: "\f3ce"; }
 
-.fa-mizuni:before {
-  content: "\f3cc"; }
+.fa-mobile-phone::before {
+  content: "\f3ce"; }
 
-.fa-mobile:before {
+.fa-mobile-button::before {
   content: "\f10b"; }
 
-.fa-mobile-alt:before {
+.fa-mobile-screen-button::before {
   content: "\f3cd"; }
 
-.fa-modx:before {
-  content: "\f285"; }
-
-.fa-monero:before {
-  content: "\f3d0"; }
+.fa-mobile-alt::before {
+  content: "\f3cd"; }
 
-.fa-money-bill:before {
+.fa-money-bill::before {
   content: "\f0d6"; }
 
-.fa-money-bill-alt:before {
+.fa-money-bill-1::before {
   content: "\f3d1"; }
 
-.fa-money-bill-wave:before {
-  content: "\f53a"; }
+.fa-money-bill-alt::before {
+  content: "\f3d1"; }
+
+.fa-money-bill-1-wave::before {
+  content: "\f53b"; }
 
-.fa-money-bill-wave-alt:before {
+.fa-money-bill-wave-alt::before {
   content: "\f53b"; }
 
-.fa-money-check:before {
+.fa-money-bill-wave::before {
+  content: "\f53a"; }
+
+.fa-money-check::before {
   content: "\f53c"; }
 
-.fa-money-check-alt:before {
+.fa-money-check-dollar::before {
+  content: "\f53d"; }
+
+.fa-money-check-alt::before {
   content: "\f53d"; }
 
-.fa-monument:before {
+.fa-monument::before {
   content: "\f5a6"; }
 
-.fa-moon:before {
+.fa-moon::before {
   content: "\f186"; }
 
-.fa-mortar-pestle:before {
+.fa-mortar-pestle::before {
   content: "\f5a7"; }
 
-.fa-mosque:before {
+.fa-mosque::before {
   content: "\f678"; }
 
-.fa-motorcycle:before {
+.fa-motorcycle::before {
   content: "\f21c"; }
 
-.fa-mountain:before {
+.fa-mountain::before {
   content: "\f6fc"; }
 
-.fa-mouse:before {
-  content: "\f8cc"; }
+.fa-mug-hot::before {
+  content: "\f7b6"; }
 
-.fa-mouse-pointer:before {
-  content: "\f245"; }
+.fa-mug-saucer::before {
+  content: "\f0f4"; }
 
-.fa-mug-hot:before {
-  content: "\f7b6"; }
+.fa-coffee::before {
+  content: "\f0f4"; }
 
-.fa-music:before {
+.fa-music::before {
   content: "\f001"; }
 
-.fa-napster:before {
-  content: "\f3d2"; }
+.fa-n::before {
+  content: "\4e"; }
 
-.fa-neos:before {
-  content: "\f612"; }
+.fa-naira-sign::before {
+  content: "\e1f6"; }
 
-.fa-network-wired:before {
+.fa-network-wired::before {
   content: "\f6ff"; }
 
-.fa-neuter:before {
+.fa-neuter::before {
   content: "\f22c"; }
 
-.fa-newspaper:before {
+.fa-newspaper::before {
   content: "\f1ea"; }
 
-.fa-nimblr:before {
-  content: "\f5a8"; }
-
-.fa-node:before {
-  content: "\f419"; }
-
-.fa-node-js:before {
-  content: "\f3d3"; }
-
-.fa-not-equal:before {
+.fa-not-equal::before {
   content: "\f53e"; }
 
-.fa-notes-medical:before {
-  content: "\f481"; }
+.fa-note-sticky::before {
+  content: "\f249"; }
 
-.fa-npm:before {
-  content: "\f3d4"; }
+.fa-sticky-note::before {
+  content: "\f249"; }
 
-.fa-ns8:before {
-  content: "\f3d5"; }
+.fa-notes-medical::before {
+  content: "\f481"; }
 
-.fa-nutritionix:before {
-  content: "\f3d6"; }
+.fa-o::before {
+  content: "\4f"; }
 
-.fa-object-group:before {
+.fa-object-group::before {
   content: "\f247"; }
 
-.fa-object-ungroup:before {
+.fa-object-ungroup::before {
   content: "\f248"; }
 
-.fa-octopus-deploy:before {
-  content: "\e082"; }
-
-.fa-odnoklassniki:before {
-  content: "\f263"; }
-
-.fa-odnoklassniki-square:before {
-  content: "\f264"; }
-
-.fa-oil-can:before {
+.fa-oil-can::before {
   content: "\f613"; }
 
-.fa-old-republic:before {
-  content: "\f510"; }
-
-.fa-om:before {
+.fa-om::before {
   content: "\f679"; }
 
-.fa-opencart:before {
-  content: "\f23d"; }
-
-.fa-openid:before {
-  content: "\f19b"; }
-
-.fa-opera:before {
-  content: "\f26a"; }
-
-.fa-optin-monster:before {
-  content: "\f23c"; }
-
-.fa-orcid:before {
-  content: "\f8d2"; }
-
-.fa-osi:before {
-  content: "\f41a"; }
-
-.fa-otter:before {
+.fa-otter::before {
   content: "\f700"; }
 
-.fa-outdent:before {
+.fa-outdent::before {
   content: "\f03b"; }
 
-.fa-page4:before {
-  content: "\f3d7"; }
+.fa-dedent::before {
+  content: "\f03b"; }
 
-.fa-pagelines:before {
-  content: "\f18c"; }
+.fa-p::before {
+  content: "\50"; }
 
-.fa-pager:before {
+.fa-pager::before {
   content: "\f815"; }
 
-.fa-paint-brush:before {
+.fa-paint-roller::before {
+  content: "\f5aa"; }
+
+.fa-paintbrush::before {
   content: "\f1fc"; }
 
-.fa-paint-roller:before {
-  content: "\f5aa"; }
+.fa-paint-brush::before {
+  content: "\f1fc"; }
 
-.fa-palette:before {
+.fa-palette::before {
   content: "\f53f"; }
 
-.fa-palfed:before {
-  content: "\f3d8"; }
-
-.fa-pallet:before {
+.fa-pallet::before {
   content: "\f482"; }
 
-.fa-paper-plane:before {
+.fa-panorama::before {
+  content: "\e209"; }
+
+.fa-paper-plane::before {
   content: "\f1d8"; }
 
-.fa-paperclip:before {
+.fa-paperclip::before {
   content: "\f0c6"; }
 
-.fa-parachute-box:before {
+.fa-parachute-box::before {
   content: "\f4cd"; }
 
-.fa-paragraph:before {
+.fa-paragraph::before {
   content: "\f1dd"; }
 
-.fa-parking:before {
-  content: "\f540"; }
-
-.fa-passport:before {
+.fa-passport::before {
   content: "\f5ab"; }
 
-.fa-pastafarianism:before {
-  content: "\f67b"; }
-
-.fa-paste:before {
+.fa-paste::before {
   content: "\f0ea"; }
 
-.fa-patreon:before {
-  content: "\f3d9"; }
+.fa-file-clipboard::before {
+  content: "\f0ea"; }
 
-.fa-pause:before {
+.fa-pause::before {
   content: "\f04c"; }
 
-.fa-pause-circle:before {
-  content: "\f28b"; }
-
-.fa-paw:before {
+.fa-paw::before {
   content: "\f1b0"; }
 
-.fa-paypal:before {
-  content: "\f1ed"; }
-
-.fa-peace:before {
+.fa-peace::before {
   content: "\f67c"; }
 
-.fa-pen:before {
+.fa-pen::before {
   content: "\f304"; }
 
-.fa-pen-alt:before {
+.fa-pen-clip::before {
+  content: "\f305"; }
+
+.fa-pen-alt::before {
   content: "\f305"; }
 
-.fa-pen-fancy:before {
+.fa-pen-fancy::before {
   content: "\f5ac"; }
 
-.fa-pen-nib:before {
+.fa-pen-nib::before {
   content: "\f5ad"; }
 
-.fa-pen-square:before {
-  content: "\f14b"; }
+.fa-pen-ruler::before {
+  content: "\f5ae"; }
+
+.fa-pencil-ruler::before {
+  content: "\f5ae"; }
+
+.fa-pen-to-square::before {
+  content: "\f044"; }
+
+.fa-edit::before {
+  content: "\f044"; }
 
-.fa-pencil-alt:before {
+.fa-pencil::before {
   content: "\f303"; }
 
-.fa-pencil-ruler:before {
-  content: "\f5ae"; }
+.fa-pencil-alt::before {
+  content: "\f303"; }
 
-.fa-penny-arcade:before {
-  content: "\f704"; }
+.fa-people-arrows-left-right::before {
+  content: "\e068"; }
 
-.fa-people-arrows:before {
+.fa-people-arrows::before {
   content: "\e068"; }
 
-.fa-people-carry:before {
+.fa-people-carry-box::before {
   content: "\f4ce"; }
 
-.fa-pepper-hot:before {
+.fa-people-carry::before {
+  content: "\f4ce"; }
+
+.fa-pepper-hot::before {
   content: "\f816"; }
 
-.fa-perbyte:before {
-  content: "\e083"; }
+.fa-percent::before {
+  content: "\25"; }
 
-.fa-percent:before {
-  content: "\f295"; }
+.fa-percentage::before {
+  content: "\25"; }
 
-.fa-percentage:before {
-  content: "\f541"; }
+.fa-person::before {
+  content: "\f183"; }
 
-.fa-periscope:before {
-  content: "\f3da"; }
+.fa-male::before {
+  content: "\f183"; }
 
-.fa-person-booth:before {
-  content: "\f756"; }
+.fa-person-biking::before {
+  content: "\f84a"; }
 
-.fa-phabricator:before {
-  content: "\f3db"; }
+.fa-biking::before {
+  content: "\f84a"; }
 
-.fa-phoenix-framework:before {
-  content: "\f3dc"; }
+.fa-person-booth::before {
+  content: "\f756"; }
 
-.fa-phoenix-squadron:before {
-  content: "\f511"; }
+.fa-person-dots-from-line::before {
+  content: "\f470"; }
 
-.fa-phone:before {
-  content: "\f095"; }
+.fa-diagnoses::before {
+  content: "\f470"; }
 
-.fa-phone-alt:before {
-  content: "\f879"; }
+.fa-person-dress::before {
+  content: "\f182"; }
 
-.fa-phone-slash:before {
-  content: "\f3dd"; }
+.fa-female::before {
+  content: "\f182"; }
 
-.fa-phone-square:before {
-  content: "\f098"; }
+.fa-person-hiking::before {
+  content: "\f6ec"; }
 
-.fa-phone-square-alt:before {
-  content: "\f87b"; }
+.fa-hiking::before {
+  content: "\f6ec"; }
 
-.fa-phone-volume:before {
-  content: "\f2a0"; }
+.fa-person-praying::before {
+  content: "\f683"; }
 
-.fa-photo-video:before {
-  content: "\f87c"; }
+.fa-pray::before {
+  content: "\f683"; }
 
-.fa-php:before {
-  content: "\f457"; }
+.fa-person-running::before {
+  content: "\f70c"; }
 
-.fa-pied-piper:before {
-  content: "\f2ae"; }
+.fa-running::before {
+  content: "\f70c"; }
 
-.fa-pied-piper-alt:before {
-  content: "\f1a8"; }
+.fa-person-skating::before {
+  content: "\f7c5"; }
 
-.fa-pied-piper-hat:before {
-  content: "\f4e5"; }
+.fa-skating::before {
+  content: "\f7c5"; }
 
-.fa-pied-piper-pp:before {
-  content: "\f1a7"; }
+.fa-person-skiing::before {
+  content: "\f7c9"; }
 
-.fa-pied-piper-square:before {
-  content: "\e01e"; }
+.fa-skiing::before {
+  content: "\f7c9"; }
 
-.fa-piggy-bank:before {
-  content: "\f4d3"; }
+.fa-person-skiing-nordic::before {
+  content: "\f7ca"; }
 
-.fa-pills:before {
-  content: "\f484"; }
+.fa-skiing-nordic::before {
+  content: "\f7ca"; }
 
-.fa-pinterest:before {
-  content: "\f0d2"; }
+.fa-person-snowboarding::before {
+  content: "\f7ce"; }
 
-.fa-pinterest-p:before {
-  content: "\f231"; }
+.fa-snowboarding::before {
+  content: "\f7ce"; }
 
-.fa-pinterest-square:before {
-  content: "\f0d3"; }
+.fa-person-swimming::before {
+  content: "\f5c4"; }
 
-.fa-pizza-slice:before {
-  content: "\f818"; }
+.fa-swimmer::before {
+  content: "\f5c4"; }
 
-.fa-place-of-worship:before {
-  content: "\f67f"; }
+.fa-person-walking::before {
+  content: "\f554"; }
 
-.fa-plane:before {
-  content: "\f072"; }
+.fa-walking::before {
+  content: "\f554"; }
 
-.fa-plane-arrival:before {
-  content: "\f5af"; }
+.fa-person-walking-with-cane::before {
+  content: "\f29d"; }
 
-.fa-plane-departure:before {
-  content: "\f5b0"; }
+.fa-blind::before {
+  content: "\f29d"; }
 
-.fa-plane-slash:before {
-  content: "\e069"; }
+.fa-peseta-sign::before {
+  content: "\e221"; }
 
-.fa-play:before {
-  content: "\f04b"; }
+.fa-peso-sign::before {
+  content: "\e222"; }
 
-.fa-play-circle:before {
-  content: "\f144"; }
+.fa-phone::before {
+  content: "\f095"; }
 
-.fa-playstation:before {
-  content: "\f3df"; }
+.fa-phone-flip::before {
+  content: "\f879"; }
 
-.fa-plug:before {
-  content: "\f1e6"; }
+.fa-phone-alt::before {
+  content: "\f879"; }
 
-.fa-plus:before {
-  content: "\f067"; }
+.fa-phone-slash::before {
+  content: "\f3dd"; }
 
-.fa-plus-circle:before {
-  content: "\f055"; }
+.fa-phone-volume::before {
+  content: "\f2a0"; }
 
-.fa-plus-square:before {
-  content: "\f0fe"; }
+.fa-volume-control-phone::before {
+  content: "\f2a0"; }
 
-.fa-podcast:before {
-  content: "\f2ce"; }
+.fa-photo-film::before {
+  content: "\f87c"; }
 
-.fa-poll:before {
-  content: "\f681"; }
+.fa-photo-video::before {
+  content: "\f87c"; }
 
-.fa-poll-h:before {
-  content: "\f682"; }
+.fa-piggy-bank::before {
+  content: "\f4d3"; }
 
-.fa-poo:before {
-  content: "\f2fe"; }
+.fa-pills::before {
+  content: "\f484"; }
 
-.fa-poo-storm:before {
-  content: "\f75a"; }
+.fa-pizza-slice::before {
+  content: "\f818"; }
 
-.fa-poop:before {
-  content: "\f619"; }
+.fa-place-of-worship::before {
+  content: "\f67f"; }
 
-.fa-portrait:before {
-  content: "\f3e0"; }
+.fa-plane::before {
+  content: "\f072"; }
 
-.fa-pound-sign:before {
-  content: "\f154"; }
+.fa-plane-arrival::before {
+  content: "\f5af"; }
 
-.fa-power-off:before {
-  content: "\f011"; }
+.fa-plane-departure::before {
+  content: "\f5b0"; }
 
-.fa-pray:before {
-  content: "\f683"; }
+.fa-plane-slash::before {
+  content: "\e069"; }
 
-.fa-praying-hands:before {
-  content: "\f684"; }
+.fa-play::before {
+  content: "\f04b"; }
 
-.fa-prescription:before {
-  content: "\f5b1"; }
+.fa-plug::before {
+  content: "\f1e6"; }
 
-.fa-prescription-bottle:before {
-  content: "\f485"; }
+.fa-plus::before {
+  content: "\2b"; }
 
-.fa-prescription-bottle-alt:before {
-  content: "\f486"; }
+.fa-add::before {
+  content: "\2b"; }
 
-.fa-print:before {
-  content: "\f02f"; }
+.fa-plus-minus::before {
+  content: "\e43c"; }
 
-.fa-procedures:before {
-  content: "\f487"; }
+.fa-podcast::before {
+  content: "\f2ce"; }
 
-.fa-product-hunt:before {
-  content: "\f288"; }
+.fa-poo::before {
+  content: "\f2fe"; }
 
-.fa-project-diagram:before {
-  content: "\f542"; }
+.fa-poo-storm::before {
+  content: "\f75a"; }
 
-.fa-pump-medical:before {
-  content: "\e06a"; }
+.fa-poo-bolt::before {
+  content: "\f75a"; }
 
-.fa-pump-soap:before {
-  content: "\e06b"; }
+.fa-poop::before {
+  content: "\f619"; }
 
-.fa-pushed:before {
-  content: "\f3e1"; }
+.fa-power-off::before {
+  content: "\f011"; }
 
-.fa-puzzle-piece:before {
-  content: "\f12e"; }
+.fa-prescription::before {
+  content: "\f5b1"; }
 
-.fa-python:before {
-  content: "\f3e2"; }
+.fa-prescription-bottle::before {
+  content: "\f485"; }
 
-.fa-qq:before {
-  content: "\f1d6"; }
+.fa-prescription-bottle-medical::before {
+  content: "\f486"; }
 
-.fa-qrcode:before {
-  content: "\f029"; }
+.fa-prescription-bottle-alt::before {
+  content: "\f486"; }
+
+.fa-print::before {
+  content: "\f02f"; }
 
-.fa-question:before {
-  content: "\f128"; }
+.fa-pump-medical::before {
+  content: "\e06a"; }
 
-.fa-question-circle:before {
-  content: "\f059"; }
+.fa-pump-soap::before {
+  content: "\e06b"; }
 
-.fa-quidditch:before {
-  content: "\f458"; }
+.fa-puzzle-piece::before {
+  content: "\f12e"; }
 
-.fa-quinscape:before {
-  content: "\f459"; }
+.fa-q::before {
+  content: "\51"; }
 
-.fa-quora:before {
-  content: "\f2c4"; }
+.fa-qrcode::before {
+  content: "\f029"; }
+
+.fa-question::before {
+  content: "\3f"; }
 
-.fa-quote-left:before {
+.fa-quote-left::before {
   content: "\f10d"; }
 
-.fa-quote-right:before {
+.fa-quote-left-alt::before {
+  content: "\f10d"; }
+
+.fa-quote-right::before {
   content: "\f10e"; }
 
-.fa-quran:before {
-  content: "\f687"; }
+.fa-quote-right-alt::before {
+  content: "\f10e"; }
 
-.fa-r-project:before {
-  content: "\f4f7"; }
+.fa-r::before {
+  content: "\52"; }
 
-.fa-radiation:before {
+.fa-radiation::before {
   content: "\f7b9"; }
 
-.fa-radiation-alt:before {
-  content: "\f7ba"; }
-
-.fa-rainbow:before {
+.fa-rainbow::before {
   content: "\f75b"; }
 
-.fa-random:before {
-  content: "\f074"; }
-
-.fa-raspberry-pi:before {
-  content: "\f7bb"; }
-
-.fa-ravelry:before {
-  content: "\f2d9"; }
-
-.fa-react:before {
-  content: "\f41b"; }
-
-.fa-reacteurope:before {
-  content: "\f75d"; }
-
-.fa-readme:before {
-  content: "\f4d5"; }
-
-.fa-rebel:before {
-  content: "\f1d0"; }
-
-.fa-receipt:before {
+.fa-receipt::before {
   content: "\f543"; }
 
-.fa-record-vinyl:before {
+.fa-record-vinyl::before {
   content: "\f8d9"; }
 
-.fa-recycle:before {
-  content: "\f1b8"; }
+.fa-rectangle-ad::before {
+  content: "\f641"; }
 
-.fa-red-river:before {
-  content: "\f3e3"; }
+.fa-ad::before {
+  content: "\f641"; }
 
-.fa-reddit:before {
-  content: "\f1a1"; }
+.fa-rectangle-list::before {
+  content: "\f022"; }
 
-.fa-reddit-alien:before {
-  content: "\f281"; }
+.fa-list-alt::before {
+  content: "\f022"; }
 
-.fa-reddit-square:before {
-  content: "\f1a2"; }
+.fa-rectangle-xmark::before {
+  content: "\f410"; }
 
-.fa-redhat:before {
-  content: "\f7bc"; }
+.fa-rectangle-times::before {
+  content: "\f410"; }
 
-.fa-redo:before {
-  content: "\f01e"; }
+.fa-times-rectangle::before {
+  content: "\f410"; }
 
-.fa-redo-alt:before {
-  content: "\f2f9"; }
+.fa-window-close::before {
+  content: "\f410"; }
+
+.fa-recycle::before {
+  content: "\f1b8"; }
 
-.fa-registered:before {
+.fa-registered::before {
   content: "\f25d"; }
 
-.fa-remove-format:before {
-  content: "\f87d"; }
+.fa-repeat::before {
+  content: "\f363"; }
 
-.fa-renren:before {
-  content: "\f18b"; }
+.fa-reply::before {
+  content: "\f3e5"; }
 
-.fa-reply:before {
+.fa-mail-reply::before {
   content: "\f3e5"; }
 
-.fa-reply-all:before {
+.fa-reply-all::before {
   content: "\f122"; }
 
-.fa-replyd:before {
-  content: "\f3e6"; }
+.fa-mail-reply-all::before {
+  content: "\f122"; }
 
-.fa-republican:before {
+.fa-republican::before {
   content: "\f75e"; }
 
-.fa-researchgate:before {
-  content: "\f4f8"; }
-
-.fa-resolving:before {
-  content: "\f3e7"; }
-
-.fa-restroom:before {
+.fa-restroom::before {
   content: "\f7bd"; }
 
-.fa-retweet:before {
+.fa-retweet::before {
   content: "\f079"; }
 
-.fa-rev:before {
-  content: "\f5b2"; }
-
-.fa-ribbon:before {
+.fa-ribbon::before {
   content: "\f4d6"; }
 
-.fa-ring:before {
+.fa-right-from-bracket::before {
+  content: "\f2f5"; }
+
+.fa-sign-out-alt::before {
+  content: "\f2f5"; }
+
+.fa-right-left::before {
+  content: "\f362"; }
+
+.fa-exchange-alt::before {
+  content: "\f362"; }
+
+.fa-right-long::before {
+  content: "\f30b"; }
+
+.fa-long-arrow-alt-right::before {
+  content: "\f30b"; }
+
+.fa-right-to-bracket::before {
+  content: "\f2f6"; }
+
+.fa-sign-in-alt::before {
+  content: "\f2f6"; }
+
+.fa-ring::before {
   content: "\f70b"; }
 
-.fa-road:before {
+.fa-road::before {
   content: "\f018"; }
 
-.fa-robot:before {
+.fa-robot::before {
   content: "\f544"; }
 
-.fa-rocket:before {
+.fa-rocket::before {
   content: "\f135"; }
 
-.fa-rocketchat:before {
-  content: "\f3e8"; }
+.fa-rotate::before {
+  content: "\f2f1"; }
 
-.fa-rockrms:before {
-  content: "\f3e9"; }
+.fa-sync-alt::before {
+  content: "\f2f1"; }
+
+.fa-rotate-left::before {
+  content: "\f2ea"; }
+
+.fa-rotate-back::before {
+  content: "\f2ea"; }
+
+.fa-rotate-backward::before {
+  content: "\f2ea"; }
+
+.fa-undo-alt::before {
+  content: "\f2ea"; }
+
+.fa-rotate-right::before {
+  content: "\f2f9"; }
+
+.fa-redo-alt::before {
+  content: "\f2f9"; }
+
+.fa-rotate-forward::before {
+  content: "\f2f9"; }
 
-.fa-route:before {
+.fa-route::before {
   content: "\f4d7"; }
 
-.fa-rss:before {
+.fa-rss::before {
   content: "\f09e"; }
 
-.fa-rss-square:before {
-  content: "\f143"; }
+.fa-feed::before {
+  content: "\f09e"; }
+
+.fa-ruble-sign::before {
+  content: "\f158"; }
+
+.fa-rouble::before {
+  content: "\f158"; }
+
+.fa-rub::before {
+  content: "\f158"; }
 
-.fa-ruble-sign:before {
+.fa-ruble::before {
   content: "\f158"; }
 
-.fa-ruler:before {
+.fa-ruler::before {
   content: "\f545"; }
 
-.fa-ruler-combined:before {
+.fa-ruler-combined::before {
   content: "\f546"; }
 
-.fa-ruler-horizontal:before {
+.fa-ruler-horizontal::before {
   content: "\f547"; }
 
-.fa-ruler-vertical:before {
+.fa-ruler-vertical::before {
   content: "\f548"; }
 
-.fa-running:before {
-  content: "\f70c"; }
+.fa-rupee-sign::before {
+  content: "\f156"; }
 
-.fa-rupee-sign:before {
+.fa-rupee::before {
   content: "\f156"; }
 
-.fa-rust:before {
-  content: "\e07a"; }
+.fa-rupiah-sign::before {
+  content: "\e23d"; }
 
-.fa-sad-cry:before {
-  content: "\f5b3"; }
+.fa-s::before {
+  content: "\53"; }
 
-.fa-sad-tear:before {
-  content: "\f5b4"; }
+.fa-sailboat::before {
+  content: "\e445"; }
 
-.fa-safari:before {
-  content: "\f267"; }
+.fa-satellite::before {
+  content: "\f7bf"; }
 
-.fa-salesforce:before {
-  content: "\f83b"; }
+.fa-satellite-dish::before {
+  content: "\f7c0"; }
 
-.fa-sass:before {
-  content: "\f41e"; }
+.fa-scale-balanced::before {
+  content: "\f24e"; }
 
-.fa-satellite:before {
-  content: "\f7bf"; }
+.fa-balance-scale::before {
+  content: "\f24e"; }
 
-.fa-satellite-dish:before {
-  content: "\f7c0"; }
+.fa-scale-unbalanced::before {
+  content: "\f515"; }
 
-.fa-save:before {
-  content: "\f0c7"; }
+.fa-balance-scale-left::before {
+  content: "\f515"; }
 
-.fa-schlix:before {
-  content: "\f3ea"; }
+.fa-scale-unbalanced-flip::before {
+  content: "\f516"; }
+
+.fa-balance-scale-right::before {
+  content: "\f516"; }
 
-.fa-school:before {
+.fa-school::before {
   content: "\f549"; }
 
-.fa-screwdriver:before {
-  content: "\f54a"; }
+.fa-scissors::before {
+  content: "\f0c4"; }
 
-.fa-scribd:before {
-  content: "\f28a"; }
+.fa-cut::before {
+  content: "\f0c4"; }
 
-.fa-scroll:before {
-  content: "\f70e"; }
+.fa-screwdriver::before {
+  content: "\f54a"; }
 
-.fa-sd-card:before {
-  content: "\f7c2"; }
+.fa-screwdriver-wrench::before {
+  content: "\f7d9"; }
 
-.fa-search:before {
-  content: "\f002"; }
+.fa-tools::before {
+  content: "\f7d9"; }
 
-.fa-search-dollar:before {
-  content: "\f688"; }
+.fa-scroll::before {
+  content: "\f70e"; }
 
-.fa-search-location:before {
-  content: "\f689"; }
+.fa-scroll-torah::before {
+  content: "\f6a0"; }
 
-.fa-search-minus:before {
-  content: "\f010"; }
+.fa-torah::before {
+  content: "\f6a0"; }
 
-.fa-search-plus:before {
-  content: "\f00e"; }
+.fa-sd-card::before {
+  content: "\f7c2"; }
 
-.fa-searchengin:before {
-  content: "\f3eb"; }
+.fa-section::before {
+  content: "\e447"; }
 
-.fa-seedling:before {
+.fa-seedling::before {
   content: "\f4d8"; }
 
-.fa-sellcast:before {
-  content: "\f2da"; }
-
-.fa-sellsy:before {
-  content: "\f213"; }
+.fa-sprout::before {
+  content: "\f4d8"; }
 
-.fa-server:before {
+.fa-server::before {
   content: "\f233"; }
 
-.fa-servicestack:before {
-  content: "\f3ec"; }
+.fa-shapes::before {
+  content: "\f61f"; }
 
-.fa-shapes:before {
+.fa-triangle-circle-square::before {
   content: "\f61f"; }
 
-.fa-share:before {
+.fa-share::before {
   content: "\f064"; }
 
-.fa-share-alt:before {
-  content: "\f1e0"; }
+.fa-arrow-turn-right::before {
+  content: "\f064"; }
 
-.fa-share-alt-square:before {
-  content: "\f1e1"; }
+.fa-mail-forward::before {
+  content: "\f064"; }
 
-.fa-share-square:before {
+.fa-share-from-square::before {
   content: "\f14d"; }
 
-.fa-shekel-sign:before {
-  content: "\f20b"; }
+.fa-share-square::before {
+  content: "\f14d"; }
 
-.fa-shield-alt:before {
-  content: "\f3ed"; }
+.fa-share-nodes::before {
+  content: "\f1e0"; }
 
-.fa-shield-virus:before {
-  content: "\e06c"; }
+.fa-share-alt::before {
+  content: "\f1e0"; }
 
-.fa-ship:before {
-  content: "\f21a"; }
+.fa-shekel-sign::before {
+  content: "\f20b"; }
 
-.fa-shipping-fast:before {
-  content: "\f48b"; }
+.fa-ils::before {
+  content: "\f20b"; }
 
-.fa-shirtsinbulk:before {
-  content: "\f214"; }
+.fa-shekel::before {
+  content: "\f20b"; }
 
-.fa-shoe-prints:before {
-  content: "\f54b"; }
+.fa-sheqel::before {
+  content: "\f20b"; }
 
-.fa-shopify:before {
-  content: "\e057"; }
+.fa-sheqel-sign::before {
+  content: "\f20b"; }
 
-.fa-shopping-bag:before {
-  content: "\f290"; }
+.fa-shield::before {
+  content: "\f132"; }
 
-.fa-shopping-basket:before {
-  content: "\f291"; }
+.fa-shield-blank::before {
+  content: "\f3ed"; }
 
-.fa-shopping-cart:before {
-  content: "\f07a"; }
+.fa-shield-alt::before {
+  content: "\f3ed"; }
 
-.fa-shopware:before {
-  content: "\f5b5"; }
+.fa-shield-virus::before {
+  content: "\e06c"; }
 
-.fa-shower:before {
-  content: "\f2cc"; }
+.fa-ship::before {
+  content: "\f21a"; }
 
-.fa-shuttle-van:before {
-  content: "\f5b6"; }
+.fa-shirt::before {
+  content: "\f553"; }
 
-.fa-sign:before {
-  content: "\f4d9"; }
+.fa-t-shirt::before {
+  content: "\f553"; }
 
-.fa-sign-in-alt:before {
-  content: "\f2f6"; }
+.fa-tshirt::before {
+  content: "\f553"; }
 
-.fa-sign-language:before {
-  content: "\f2a7"; }
+.fa-shoe-prints::before {
+  content: "\f54b"; }
 
-.fa-sign-out-alt:before {
-  content: "\f2f5"; }
+.fa-shop::before {
+  content: "\f54f"; }
 
-.fa-signal:before {
-  content: "\f012"; }
+.fa-store-alt::before {
+  content: "\f54f"; }
 
-.fa-signature:before {
-  content: "\f5b7"; }
+.fa-shop-slash::before {
+  content: "\e070"; }
 
-.fa-sim-card:before {
-  content: "\f7c4"; }
+.fa-store-alt-slash::before {
+  content: "\e070"; }
 
-.fa-simplybuilt:before {
-  content: "\f215"; }
+.fa-shower::before {
+  content: "\f2cc"; }
 
-.fa-sink:before {
-  content: "\e06d"; }
+.fa-shrimp::before {
+  content: "\e448"; }
 
-.fa-sistrix:before {
-  content: "\f3ee"; }
+.fa-shuffle::before {
+  content: "\f074"; }
 
-.fa-sitemap:before {
-  content: "\f0e8"; }
+.fa-random::before {
+  content: "\f074"; }
 
-.fa-sith:before {
-  content: "\f512"; }
+.fa-shuttle-space::before {
+  content: "\f197"; }
 
-.fa-skating:before {
-  content: "\f7c5"; }
+.fa-space-shuttle::before {
+  content: "\f197"; }
 
-.fa-sketch:before {
-  content: "\f7c6"; }
+.fa-sign-hanging::before {
+  content: "\f4d9"; }
 
-.fa-skiing:before {
-  content: "\f7c9"; }
+.fa-sign::before {
+  content: "\f4d9"; }
 
-.fa-skiing-nordic:before {
-  content: "\f7ca"; }
+.fa-signal::before {
+  content: "\f012"; }
 
-.fa-skull:before {
-  content: "\f54c"; }
+.fa-signal-5::before {
+  content: "\f012"; }
 
-.fa-skull-crossbones:before {
-  content: "\f714"; }
+.fa-signal-perfect::before {
+  content: "\f012"; }
 
-.fa-skyatlas:before {
-  content: "\f216"; }
+.fa-signature::before {
+  content: "\f5b7"; }
 
-.fa-skype:before {
-  content: "\f17e"; }
+.fa-signs-post::before {
+  content: "\f277"; }
 
-.fa-slack:before {
-  content: "\f198"; }
+.fa-map-signs::before {
+  content: "\f277"; }
 
-.fa-slack-hash:before {
-  content: "\f3ef"; }
+.fa-sim-card::before {
+  content: "\f7c4"; }
 
-.fa-slash:before {
-  content: "\f715"; }
+.fa-sink::before {
+  content: "\e06d"; }
 
-.fa-sleigh:before {
-  content: "\f7cc"; }
+.fa-sitemap::before {
+  content: "\f0e8"; }
 
-.fa-sliders-h:before {
-  content: "\f1de"; }
+.fa-skull::before {
+  content: "\f54c"; }
 
-.fa-slideshare:before {
-  content: "\f1e7"; }
+.fa-skull-crossbones::before {
+  content: "\f714"; }
 
-.fa-smile:before {
-  content: "\f118"; }
+.fa-slash::before {
+  content: "\f715"; }
 
-.fa-smile-beam:before {
-  content: "\f5b8"; }
+.fa-sleigh::before {
+  content: "\f7cc"; }
 
-.fa-smile-wink:before {
-  content: "\f4da"; }
+.fa-sliders::before {
+  content: "\f1de"; }
+
+.fa-sliders-h::before {
+  content: "\f1de"; }
 
-.fa-smog:before {
+.fa-smog::before {
   content: "\f75f"; }
 
-.fa-smoking:before {
+.fa-smoking::before {
   content: "\f48d"; }
 
-.fa-smoking-ban:before {
-  content: "\f54d"; }
-
-.fa-sms:before {
-  content: "\f7cd"; }
-
-.fa-snapchat:before {
-  content: "\f2ab"; }
-
-.fa-snapchat-ghost:before {
-  content: "\f2ac"; }
-
-.fa-snapchat-square:before {
-  content: "\f2ad"; }
-
-.fa-snowboarding:before {
-  content: "\f7ce"; }
-
-.fa-snowflake:before {
+.fa-snowflake::before {
   content: "\f2dc"; }
 
-.fa-snowman:before {
+.fa-snowman::before {
   content: "\f7d0"; }
 
-.fa-snowplow:before {
+.fa-snowplow::before {
   content: "\f7d2"; }
 
-.fa-soap:before {
+.fa-soap::before {
   content: "\e06e"; }
 
-.fa-socks:before {
+.fa-socks::before {
   content: "\f696"; }
 
-.fa-solar-panel:before {
+.fa-solar-panel::before {
   content: "\f5ba"; }
 
-.fa-sort:before {
+.fa-sort::before {
   content: "\f0dc"; }
 
-.fa-sort-alpha-down:before {
-  content: "\f15d"; }
-
-.fa-sort-alpha-down-alt:before {
-  content: "\f881"; }
-
-.fa-sort-alpha-up:before {
-  content: "\f15e"; }
-
-.fa-sort-alpha-up-alt:before {
-  content: "\f882"; }
-
-.fa-sort-amount-down:before {
-  content: "\f160"; }
-
-.fa-sort-amount-down-alt:before {
-  content: "\f884"; }
-
-.fa-sort-amount-up:before {
-  content: "\f161"; }
-
-.fa-sort-amount-up-alt:before {
-  content: "\f885"; }
+.fa-unsorted::before {
+  content: "\f0dc"; }
 
-.fa-sort-down:before {
+.fa-sort-down::before {
   content: "\f0dd"; }
 
-.fa-sort-numeric-down:before {
-  content: "\f162"; }
-
-.fa-sort-numeric-down-alt:before {
-  content: "\f886"; }
-
-.fa-sort-numeric-up:before {
-  content: "\f163"; }
-
-.fa-sort-numeric-up-alt:before {
-  content: "\f887"; }
+.fa-sort-desc::before {
+  content: "\f0dd"; }
 
-.fa-sort-up:before {
+.fa-sort-up::before {
   content: "\f0de"; }
 
-.fa-soundcloud:before {
-  content: "\f1be"; }
-
-.fa-sourcetree:before {
-  content: "\f7d3"; }
+.fa-sort-asc::before {
+  content: "\f0de"; }
 
-.fa-spa:before {
+.fa-spa::before {
   content: "\f5bb"; }
 
-.fa-space-shuttle:before {
-  content: "\f197"; }
-
-.fa-speakap:before {
-  content: "\f3f3"; }
+.fa-spaghetti-monster-flying::before {
+  content: "\f67b"; }
 
-.fa-speaker-deck:before {
-  content: "\f83c"; }
+.fa-pastafarianism::before {
+  content: "\f67b"; }
 
-.fa-spell-check:before {
+.fa-spell-check::before {
   content: "\f891"; }
 
-.fa-spider:before {
+.fa-spider::before {
   content: "\f717"; }
 
-.fa-spinner:before {
+.fa-spinner::before {
   content: "\f110"; }
 
-.fa-splotch:before {
+.fa-splotch::before {
   content: "\f5bc"; }
 
-.fa-spotify:before {
-  content: "\f1bc"; }
+.fa-spoon::before {
+  content: "\f2e5"; }
+
+.fa-utensil-spoon::before {
+  content: "\f2e5"; }
 
-.fa-spray-can:before {
+.fa-spray-can::before {
   content: "\f5bd"; }
 
-.fa-square:before {
-  content: "\f0c8"; }
+.fa-spray-can-sparkles::before {
+  content: "\f5d0"; }
 
-.fa-square-full:before {
-  content: "\f45c"; }
+.fa-air-freshener::before {
+  content: "\f5d0"; }
 
-.fa-square-root-alt:before {
-  content: "\f698"; }
+.fa-square::before {
+  content: "\f0c8"; }
 
-.fa-squarespace:before {
-  content: "\f5be"; }
+.fa-square-arrow-up-right::before {
+  content: "\f14c"; }
 
-.fa-stack-exchange:before {
-  content: "\f18d"; }
+.fa-external-link-square::before {
+  content: "\f14c"; }
 
-.fa-stack-overflow:before {
-  content: "\f16c"; }
+.fa-square-caret-down::before {
+  content: "\f150"; }
 
-.fa-stackpath:before {
-  content: "\f842"; }
+.fa-caret-square-down::before {
+  content: "\f150"; }
 
-.fa-stamp:before {
-  content: "\f5bf"; }
+.fa-square-caret-left::before {
+  content: "\f191"; }
 
-.fa-star:before {
-  content: "\f005"; }
+.fa-caret-square-left::before {
+  content: "\f191"; }
 
-.fa-star-and-crescent:before {
-  content: "\f699"; }
+.fa-square-caret-right::before {
+  content: "\f152"; }
 
-.fa-star-half:before {
-  content: "\f089"; }
+.fa-caret-square-right::before {
+  content: "\f152"; }
 
-.fa-star-half-alt:before {
-  content: "\f5c0"; }
+.fa-square-caret-up::before {
+  content: "\f151"; }
 
-.fa-star-of-david:before {
-  content: "\f69a"; }
+.fa-caret-square-up::before {
+  content: "\f151"; }
 
-.fa-star-of-life:before {
-  content: "\f621"; }
+.fa-square-check::before {
+  content: "\f14a"; }
 
-.fa-staylinked:before {
-  content: "\f3f5"; }
+.fa-check-square::before {
+  content: "\f14a"; }
 
-.fa-steam:before {
-  content: "\f1b6"; }
+.fa-square-envelope::before {
+  content: "\f199"; }
 
-.fa-steam-square:before {
-  content: "\f1b7"; }
+.fa-envelope-square::before {
+  content: "\f199"; }
 
-.fa-steam-symbol:before {
-  content: "\f3f6"; }
+.fa-square-full::before {
+  content: "\f45c"; }
 
-.fa-step-backward:before {
-  content: "\f048"; }
+.fa-square-h::before {
+  content: "\f0fd"; }
 
-.fa-step-forward:before {
-  content: "\f051"; }
+.fa-h-square::before {
+  content: "\f0fd"; }
 
-.fa-stethoscope:before {
-  content: "\f0f1"; }
+.fa-square-minus::before {
+  content: "\f146"; }
 
-.fa-sticker-mule:before {
-  content: "\f3f7"; }
+.fa-minus-square::before {
+  content: "\f146"; }
 
-.fa-sticky-note:before {
-  content: "\f249"; }
+.fa-square-parking::before {
+  content: "\f540"; }
 
-.fa-stop:before {
-  content: "\f04d"; }
+.fa-parking::before {
+  content: "\f540"; }
 
-.fa-stop-circle:before {
-  content: "\f28d"; }
+.fa-square-pen::before {
+  content: "\f14b"; }
 
-.fa-stopwatch:before {
-  content: "\f2f2"; }
+.fa-pen-square::before {
+  content: "\f14b"; }
 
-.fa-stopwatch-20:before {
-  content: "\e06f"; }
+.fa-pencil-square::before {
+  content: "\f14b"; }
 
-.fa-store:before {
-  content: "\f54e"; }
+.fa-square-phone::before {
+  content: "\f098"; }
 
-.fa-store-alt:before {
-  content: "\f54f"; }
+.fa-phone-square::before {
+  content: "\f098"; }
 
-.fa-store-alt-slash:before {
-  content: "\e070"; }
+.fa-square-phone-flip::before {
+  content: "\f87b"; }
 
-.fa-store-slash:before {
-  content: "\e071"; }
+.fa-phone-square-alt::before {
+  content: "\f87b"; }
 
-.fa-strava:before {
-  content: "\f428"; }
+.fa-square-plus::before {
+  content: "\f0fe"; }
 
-.fa-stream:before {
-  content: "\f550"; }
+.fa-plus-square::before {
+  content: "\f0fe"; }
 
-.fa-street-view:before {
-  content: "\f21d"; }
+.fa-square-poll-horizontal::before {
+  content: "\f682"; }
 
-.fa-strikethrough:before {
-  content: "\f0cc"; }
+.fa-poll-h::before {
+  content: "\f682"; }
 
-.fa-stripe:before {
-  content: "\f429"; }
+.fa-square-poll-vertical::before {
+  content: "\f681"; }
 
-.fa-stripe-s:before {
-  content: "\f42a"; }
+.fa-poll::before {
+  content: "\f681"; }
 
-.fa-stroopwafel:before {
-  content: "\f551"; }
+.fa-square-root-variable::before {
+  content: "\f698"; }
 
-.fa-studiovinari:before {
-  content: "\f3f8"; }
+.fa-square-root-alt::before {
+  content: "\f698"; }
 
-.fa-stumbleupon:before {
-  content: "\f1a4"; }
+.fa-square-rss::before {
+  content: "\f143"; }
 
-.fa-stumbleupon-circle:before {
-  content: "\f1a3"; }
+.fa-rss-square::before {
+  content: "\f143"; }
 
-.fa-subscript:before {
-  content: "\f12c"; }
+.fa-square-share-nodes::before {
+  content: "\f1e1"; }
 
-.fa-subway:before {
-  content: "\f239"; }
+.fa-share-alt-square::before {
+  content: "\f1e1"; }
 
-.fa-suitcase:before {
-  content: "\f0f2"; }
+.fa-square-up-right::before {
+  content: "\f360"; }
 
-.fa-suitcase-rolling:before {
-  content: "\f5c1"; }
+.fa-external-link-square-alt::before {
+  content: "\f360"; }
 
-.fa-sun:before {
-  content: "\f185"; }
+.fa-square-xmark::before {
+  content: "\f2d3"; }
 
-.fa-superpowers:before {
-  content: "\f2dd"; }
+.fa-times-square::before {
+  content: "\f2d3"; }
 
-.fa-superscript:before {
-  content: "\f12b"; }
+.fa-xmark-square::before {
+  content: "\f2d3"; }
 
-.fa-supple:before {
-  content: "\f3f9"; }
+.fa-stairs::before {
+  content: "\e289"; }
 
-.fa-surprise:before {
-  content: "\f5c2"; }
+.fa-stamp::before {
+  content: "\f5bf"; }
 
-.fa-suse:before {
-  content: "\f7d6"; }
+.fa-star::before {
+  content: "\f005"; }
 
-.fa-swatchbook:before {
-  content: "\f5c3"; }
+.fa-star-and-crescent::before {
+  content: "\f699"; }
 
-.fa-swift:before {
-  content: "\f8e1"; }
+.fa-star-half::before {
+  content: "\f089"; }
 
-.fa-swimmer:before {
-  content: "\f5c4"; }
+.fa-star-half-stroke::before {
+  content: "\f5c0"; }
 
-.fa-swimming-pool:before {
-  content: "\f5c5"; }
+.fa-star-half-alt::before {
+  content: "\f5c0"; }
 
-.fa-symfony:before {
-  content: "\f83d"; }
+.fa-star-of-david::before {
+  content: "\f69a"; }
 
-.fa-synagogue:before {
-  content: "\f69b"; }
+.fa-star-of-life::before {
+  content: "\f621"; }
 
-.fa-sync:before {
-  content: "\f021"; }
+.fa-sterling-sign::before {
+  content: "\f154"; }
 
-.fa-sync-alt:before {
-  content: "\f2f1"; }
+.fa-gbp::before {
+  content: "\f154"; }
+
+.fa-pound-sign::before {
+  content: "\f154"; }
+
+.fa-stethoscope::before {
+  content: "\f0f1"; }
+
+.fa-stop::before {
+  content: "\f04d"; }
+
+.fa-stopwatch::before {
+  content: "\f2f2"; }
+
+.fa-stopwatch-20::before {
+  content: "\e06f"; }
+
+.fa-store::before {
+  content: "\f54e"; }
+
+.fa-store-slash::before {
+  content: "\e071"; }
+
+.fa-street-view::before {
+  content: "\f21d"; }
+
+.fa-strikethrough::before {
+  content: "\f0cc"; }
+
+.fa-stroopwafel::before {
+  content: "\f551"; }
+
+.fa-subscript::before {
+  content: "\f12c"; }
+
+.fa-suitcase::before {
+  content: "\f0f2"; }
+
+.fa-suitcase-medical::before {
+  content: "\f0fa"; }
+
+.fa-medkit::before {
+  content: "\f0fa"; }
+
+.fa-suitcase-rolling::before {
+  content: "\f5c1"; }
+
+.fa-sun::before {
+  content: "\f185"; }
+
+.fa-superscript::before {
+  content: "\f12b"; }
+
+.fa-swatchbook::before {
+  content: "\f5c3"; }
+
+.fa-synagogue::before {
+  content: "\f69b"; }
 
-.fa-syringe:before {
+.fa-syringe::before {
   content: "\f48e"; }
 
-.fa-table:before {
+.fa-t::before {
+  content: "\54"; }
+
+.fa-table::before {
   content: "\f0ce"; }
 
-.fa-table-tennis:before {
+.fa-table-cells::before {
+  content: "\f00a"; }
+
+.fa-th::before {
+  content: "\f00a"; }
+
+.fa-table-cells-large::before {
+  content: "\f009"; }
+
+.fa-th-large::before {
+  content: "\f009"; }
+
+.fa-table-columns::before {
+  content: "\f0db"; }
+
+.fa-columns::before {
+  content: "\f0db"; }
+
+.fa-table-list::before {
+  content: "\f00b"; }
+
+.fa-th-list::before {
+  content: "\f00b"; }
+
+.fa-table-tennis-paddle-ball::before {
+  content: "\f45d"; }
+
+.fa-ping-pong-paddle-ball::before {
+  content: "\f45d"; }
+
+.fa-table-tennis::before {
   content: "\f45d"; }
 
-.fa-tablet:before {
+.fa-tablet::before {
+  content: "\f3fb"; }
+
+.fa-tablet-android::before {
+  content: "\f3fb"; }
+
+.fa-tablet-button::before {
   content: "\f10a"; }
 
-.fa-tablet-alt:before {
+.fa-tablet-screen-button::before {
+  content: "\f3fa"; }
+
+.fa-tablet-alt::before {
   content: "\f3fa"; }
 
-.fa-tablets:before {
+.fa-tablets::before {
   content: "\f490"; }
 
-.fa-tachometer-alt:before {
-  content: "\f3fd"; }
+.fa-tachograph-digital::before {
+  content: "\f566"; }
+
+.fa-digital-tachograph::before {
+  content: "\f566"; }
 
-.fa-tag:before {
+.fa-tag::before {
   content: "\f02b"; }
 
-.fa-tags:before {
+.fa-tags::before {
   content: "\f02c"; }
 
-.fa-tape:before {
+.fa-tape::before {
   content: "\f4db"; }
 
-.fa-tasks:before {
-  content: "\f0ae"; }
-
-.fa-taxi:before {
+.fa-taxi::before {
   content: "\f1ba"; }
 
-.fa-teamspeak:before {
-  content: "\f4f9"; }
+.fa-cab::before {
+  content: "\f1ba"; }
 
-.fa-teeth:before {
+.fa-teeth::before {
   content: "\f62e"; }
 
-.fa-teeth-open:before {
+.fa-teeth-open::before {
   content: "\f62f"; }
 
-.fa-telegram:before {
-  content: "\f2c6"; }
+.fa-temperature-empty::before {
+  content: "\f2cb"; }
 
-.fa-telegram-plane:before {
-  content: "\f3fe"; }
+.fa-temperature-0::before {
+  content: "\f2cb"; }
 
-.fa-temperature-high:before {
-  content: "\f769"; }
+.fa-thermometer-0::before {
+  content: "\f2cb"; }
 
-.fa-temperature-low:before {
-  content: "\f76b"; }
+.fa-thermometer-empty::before {
+  content: "\f2cb"; }
 
-.fa-tencent-weibo:before {
-  content: "\f1d5"; }
+.fa-temperature-full::before {
+  content: "\f2c7"; }
 
-.fa-tenge:before {
-  content: "\f7d7"; }
+.fa-temperature-4::before {
+  content: "\f2c7"; }
 
-.fa-terminal:before {
-  content: "\f120"; }
+.fa-thermometer-4::before {
+  content: "\f2c7"; }
 
-.fa-text-height:before {
-  content: "\f034"; }
+.fa-thermometer-full::before {
+  content: "\f2c7"; }
 
-.fa-text-width:before {
-  content: "\f035"; }
+.fa-temperature-half::before {
+  content: "\f2c9"; }
 
-.fa-th:before {
-  content: "\f00a"; }
+.fa-temperature-2::before {
+  content: "\f2c9"; }
 
-.fa-th-large:before {
-  content: "\f009"; }
+.fa-thermometer-2::before {
+  content: "\f2c9"; }
 
-.fa-th-list:before {
-  content: "\f00b"; }
+.fa-thermometer-half::before {
+  content: "\f2c9"; }
 
-.fa-the-red-yeti:before {
-  content: "\f69d"; }
+.fa-temperature-high::before {
+  content: "\f769"; }
 
-.fa-theater-masks:before {
-  content: "\f630"; }
+.fa-temperature-low::before {
+  content: "\f76b"; }
 
-.fa-themeco:before {
-  content: "\f5c6"; }
+.fa-temperature-quarter::before {
+  content: "\f2ca"; }
 
-.fa-themeisle:before {
-  content: "\f2b2"; }
+.fa-temperature-1::before {
+  content: "\f2ca"; }
 
-.fa-thermometer:before {
-  content: "\f491"; }
+.fa-thermometer-1::before {
+  content: "\f2ca"; }
 
-.fa-thermometer-empty:before {
-  content: "\f2cb"; }
+.fa-thermometer-quarter::before {
+  content: "\f2ca"; }
 
-.fa-thermometer-full:before {
-  content: "\f2c7"; }
+.fa-temperature-three-quarters::before {
+  content: "\f2c8"; }
 
-.fa-thermometer-half:before {
-  content: "\f2c9"; }
+.fa-temperature-3::before {
+  content: "\f2c8"; }
 
-.fa-thermometer-quarter:before {
-  content: "\f2ca"; }
+.fa-thermometer-3::before {
+  content: "\f2c8"; }
 
-.fa-thermometer-three-quarters:before {
+.fa-thermometer-three-quarters::before {
   content: "\f2c8"; }
 
-.fa-think-peaks:before {
-  content: "\f731"; }
+.fa-tenge-sign::before {
+  content: "\f7d7"; }
+
+.fa-tenge::before {
+  content: "\f7d7"; }
 
-.fa-thumbs-down:before {
+.fa-terminal::before {
+  content: "\f120"; }
+
+.fa-text-height::before {
+  content: "\f034"; }
+
+.fa-text-slash::before {
+  content: "\f87d"; }
+
+.fa-remove-format::before {
+  content: "\f87d"; }
+
+.fa-text-width::before {
+  content: "\f035"; }
+
+.fa-thermometer::before {
+  content: "\f491"; }
+
+.fa-thumbs-down::before {
   content: "\f165"; }
 
-.fa-thumbs-up:before {
+.fa-thumbs-up::before {
   content: "\f164"; }
 
-.fa-thumbtack:before {
+.fa-thumbtack::before {
   content: "\f08d"; }
 
-.fa-ticket-alt:before {
-  content: "\f3ff"; }
-
-.fa-tiktok:before {
-  content: "\e07b"; }
-
-.fa-times:before {
-  content: "\f00d"; }
+.fa-thumb-tack::before {
+  content: "\f08d"; }
 
-.fa-times-circle:before {
-  content: "\f057"; }
+.fa-ticket::before {
+  content: "\f145"; }
 
-.fa-tint:before {
-  content: "\f043"; }
+.fa-ticket-simple::before {
+  content: "\f3ff"; }
 
-.fa-tint-slash:before {
-  content: "\f5c7"; }
+.fa-ticket-alt::before {
+  content: "\f3ff"; }
 
-.fa-tired:before {
-  content: "\f5c8"; }
+.fa-timeline::before {
+  content: "\e29c"; }
 
-.fa-toggle-off:before {
+.fa-toggle-off::before {
   content: "\f204"; }
 
-.fa-toggle-on:before {
+.fa-toggle-on::before {
   content: "\f205"; }
 
-.fa-toilet:before {
+.fa-toilet::before {
   content: "\f7d8"; }
 
-.fa-toilet-paper:before {
+.fa-toilet-paper::before {
   content: "\f71e"; }
 
-.fa-toilet-paper-slash:before {
+.fa-toilet-paper-slash::before {
   content: "\e072"; }
 
-.fa-toolbox:before {
+.fa-toolbox::before {
   content: "\f552"; }
 
-.fa-tools:before {
-  content: "\f7d9"; }
-
-.fa-tooth:before {
+.fa-tooth::before {
   content: "\f5c9"; }
 
-.fa-torah:before {
-  content: "\f6a0"; }
-
-.fa-torii-gate:before {
+.fa-torii-gate::before {
   content: "\f6a1"; }
 
-.fa-tractor:before {
-  content: "\f722"; }
+.fa-tower-broadcast::before {
+  content: "\f519"; }
 
-.fa-trade-federation:before {
-  content: "\f513"; }
+.fa-broadcast-tower::before {
+  content: "\f519"; }
+
+.fa-tractor::before {
+  content: "\f722"; }
 
-.fa-trademark:before {
+.fa-trademark::before {
   content: "\f25c"; }
 
-.fa-traffic-light:before {
+.fa-traffic-light::before {
   content: "\f637"; }
 
-.fa-trailer:before {
+.fa-trailer::before {
   content: "\e041"; }
 
-.fa-train:before {
+.fa-train::before {
   content: "\f238"; }
 
-.fa-tram:before {
-  content: "\f7da"; }
+.fa-train-subway::before {
+  content: "\f239"; }
+
+.fa-subway::before {
+  content: "\f239"; }
+
+.fa-train-tram::before {
+  content: "\f7da"; }
+
+.fa-tram::before {
+  content: "\f7da"; }
+
+.fa-transgender::before {
+  content: "\f225"; }
+
+.fa-transgender-alt::before {
+  content: "\f225"; }
+
+.fa-trash::before {
+  content: "\f1f8"; }
+
+.fa-trash-arrow-up::before {
+  content: "\f829"; }
+
+.fa-trash-restore::before {
+  content: "\f829"; }
+
+.fa-trash-can::before {
+  content: "\f2ed"; }
+
+.fa-trash-alt::before {
+  content: "\f2ed"; }
+
+.fa-trash-can-arrow-up::before {
+  content: "\f82a"; }
+
+.fa-trash-restore-alt::before {
+  content: "\f82a"; }
+
+.fa-tree::before {
+  content: "\f1bb"; }
+
+.fa-triangle-exclamation::before {
+  content: "\f071"; }
+
+.fa-exclamation-triangle::before {
+  content: "\f071"; }
+
+.fa-warning::before {
+  content: "\f071"; }
+
+.fa-trophy::before {
+  content: "\f091"; }
+
+.fa-truck::before {
+  content: "\f0d1"; }
+
+.fa-truck-fast::before {
+  content: "\f48b"; }
+
+.fa-shipping-fast::before {
+  content: "\f48b"; }
+
+.fa-truck-medical::before {
+  content: "\f0f9"; }
+
+.fa-ambulance::before {
+  content: "\f0f9"; }
+
+.fa-truck-monster::before {
+  content: "\f63b"; }
+
+.fa-truck-moving::before {
+  content: "\f4df"; }
+
+.fa-truck-pickup::before {
+  content: "\f63c"; }
+
+.fa-truck-ramp-box::before {
+  content: "\f4de"; }
+
+.fa-truck-loading::before {
+  content: "\f4de"; }
+
+.fa-tty::before {
+  content: "\f1e4"; }
+
+.fa-teletype::before {
+  content: "\f1e4"; }
+
+.fa-turkish-lira-sign::before {
+  content: "\e2bb"; }
+
+.fa-try::before {
+  content: "\e2bb"; }
+
+.fa-turkish-lira::before {
+  content: "\e2bb"; }
+
+.fa-turn-down::before {
+  content: "\f3be"; }
+
+.fa-level-down-alt::before {
+  content: "\f3be"; }
+
+.fa-turn-up::before {
+  content: "\f3bf"; }
+
+.fa-level-up-alt::before {
+  content: "\f3bf"; }
+
+.fa-tv::before {
+  content: "\f26c"; }
+
+.fa-television::before {
+  content: "\f26c"; }
+
+.fa-tv-alt::before {
+  content: "\f26c"; }
+
+.fa-u::before {
+  content: "\55"; }
+
+.fa-umbrella::before {
+  content: "\f0e9"; }
+
+.fa-umbrella-beach::before {
+  content: "\f5ca"; }
+
+.fa-underline::before {
+  content: "\f0cd"; }
+
+.fa-universal-access::before {
+  content: "\f29a"; }
+
+.fa-unlock::before {
+  content: "\f09c"; }
+
+.fa-unlock-keyhole::before {
+  content: "\f13e"; }
+
+.fa-unlock-alt::before {
+  content: "\f13e"; }
+
+.fa-up-down::before {
+  content: "\f338"; }
+
+.fa-arrows-alt-v::before {
+  content: "\f338"; }
+
+.fa-up-down-left-right::before {
+  content: "\f0b2"; }
+
+.fa-arrows-alt::before {
+  content: "\f0b2"; }
+
+.fa-up-long::before {
+  content: "\f30c"; }
+
+.fa-long-arrow-alt-up::before {
+  content: "\f30c"; }
+
+.fa-up-right-and-down-left-from-center::before {
+  content: "\f424"; }
+
+.fa-expand-alt::before {
+  content: "\f424"; }
+
+.fa-up-right-from-square::before {
+  content: "\f35d"; }
+
+.fa-external-link-alt::before {
+  content: "\f35d"; }
+
+.fa-upload::before {
+  content: "\f093"; }
+
+.fa-user::before {
+  content: "\f007"; }
+
+.fa-user-astronaut::before {
+  content: "\f4fb"; }
+
+.fa-user-check::before {
+  content: "\f4fc"; }
+
+.fa-user-clock::before {
+  content: "\f4fd"; }
+
+.fa-user-doctor::before {
+  content: "\f0f0"; }
+
+.fa-user-md::before {
+  content: "\f0f0"; }
+
+.fa-user-gear::before {
+  content: "\f4fe"; }
+
+.fa-user-cog::before {
+  content: "\f4fe"; }
+
+.fa-user-graduate::before {
+  content: "\f501"; }
+
+.fa-user-group::before {
+  content: "\f500"; }
+
+.fa-user-friends::before {
+  content: "\f500"; }
+
+.fa-user-injured::before {
+  content: "\f728"; }
+
+.fa-user-large::before {
+  content: "\f406"; }
+
+.fa-user-alt::before {
+  content: "\f406"; }
+
+.fa-user-large-slash::before {
+  content: "\f4fa"; }
+
+.fa-user-alt-slash::before {
+  content: "\f4fa"; }
+
+.fa-user-lock::before {
+  content: "\f502"; }
+
+.fa-user-minus::before {
+  content: "\f503"; }
+
+.fa-user-ninja::before {
+  content: "\f504"; }
+
+.fa-user-nurse::before {
+  content: "\f82f"; }
+
+.fa-user-pen::before {
+  content: "\f4ff"; }
+
+.fa-user-edit::before {
+  content: "\f4ff"; }
+
+.fa-user-plus::before {
+  content: "\f234"; }
+
+.fa-user-secret::before {
+  content: "\f21b"; }
+
+.fa-user-shield::before {
+  content: "\f505"; }
+
+.fa-user-slash::before {
+  content: "\f506"; }
+
+.fa-user-tag::before {
+  content: "\f507"; }
+
+.fa-user-tie::before {
+  content: "\f508"; }
+
+.fa-user-xmark::before {
+  content: "\f235"; }
+
+.fa-user-times::before {
+  content: "\f235"; }
+
+.fa-users::before {
+  content: "\f0c0"; }
+
+.fa-users-gear::before {
+  content: "\f509"; }
+
+.fa-users-cog::before {
+  content: "\f509"; }
+
+.fa-users-slash::before {
+  content: "\e073"; }
+
+.fa-utensils::before {
+  content: "\f2e7"; }
+
+.fa-cutlery::before {
+  content: "\f2e7"; }
+
+.fa-v::before {
+  content: "\56"; }
+
+.fa-van-shuttle::before {
+  content: "\f5b6"; }
+
+.fa-shuttle-van::before {
+  content: "\f5b6"; }
+
+.fa-vault::before {
+  content: "\e2c5"; }
+
+.fa-vector-square::before {
+  content: "\f5cb"; }
+
+.fa-venus::before {
+  content: "\f221"; }
+
+.fa-venus-double::before {
+  content: "\f226"; }
+
+.fa-venus-mars::before {
+  content: "\f228"; }
+
+.fa-vest::before {
+  content: "\e085"; }
+
+.fa-vest-patches::before {
+  content: "\e086"; }
+
+.fa-vial::before {
+  content: "\f492"; }
+
+.fa-vials::before {
+  content: "\f493"; }
+
+.fa-video::before {
+  content: "\f03d"; }
+
+.fa-video-camera::before {
+  content: "\f03d"; }
+
+.fa-video-slash::before {
+  content: "\f4e2"; }
+
+.fa-vihara::before {
+  content: "\f6a7"; }
+
+.fa-virus::before {
+  content: "\e074"; }
+
+.fa-virus-covid::before {
+  content: "\e4a8"; }
+
+.fa-virus-covid-slash::before {
+  content: "\e4a9"; }
+
+.fa-virus-slash::before {
+  content: "\e075"; }
+
+.fa-viruses::before {
+  content: "\e076"; }
+
+.fa-voicemail::before {
+  content: "\f897"; }
+
+.fa-volleyball::before {
+  content: "\f45f"; }
+
+.fa-volleyball-ball::before {
+  content: "\f45f"; }
+
+.fa-volume-high::before {
+  content: "\f028"; }
+
+.fa-volume-up::before {
+  content: "\f028"; }
+
+.fa-volume-low::before {
+  content: "\f027"; }
+
+.fa-volume-down::before {
+  content: "\f027"; }
+
+.fa-volume-off::before {
+  content: "\f026"; }
+
+.fa-volume-xmark::before {
+  content: "\f6a9"; }
+
+.fa-volume-mute::before {
+  content: "\f6a9"; }
+
+.fa-volume-times::before {
+  content: "\f6a9"; }
+
+.fa-vr-cardboard::before {
+  content: "\f729"; }
+
+.fa-w::before {
+  content: "\57"; }
+
+.fa-wallet::before {
+  content: "\f555"; }
+
+.fa-wand-magic::before {
+  content: "\f0d0"; }
+
+.fa-magic::before {
+  content: "\f0d0"; }
+
+.fa-wand-magic-sparkles::before {
+  content: "\e2ca"; }
+
+.fa-magic-wand-sparkles::before {
+  content: "\e2ca"; }
+
+.fa-wand-sparkles::before {
+  content: "\f72b"; }
+
+.fa-warehouse::before {
+  content: "\f494"; }
+
+.fa-water::before {
+  content: "\f773"; }
+
+.fa-water-ladder::before {
+  content: "\f5c5"; }
+
+.fa-ladder-water::before {
+  content: "\f5c5"; }
+
+.fa-swimming-pool::before {
+  content: "\f5c5"; }
+
+.fa-wave-square::before {
+  content: "\f83e"; }
+
+.fa-weight-hanging::before {
+  content: "\f5cd"; }
+
+.fa-weight-scale::before {
+  content: "\f496"; }
+
+.fa-weight::before {
+  content: "\f496"; }
+
+.fa-wheelchair::before {
+  content: "\f193"; }
+
+.fa-whiskey-glass::before {
+  content: "\f7a0"; }
+
+.fa-glass-whiskey::before {
+  content: "\f7a0"; }
+
+.fa-wifi::before {
+  content: "\f1eb"; }
+
+.fa-wifi-3::before {
+  content: "\f1eb"; }
+
+.fa-wifi-strong::before {
+  content: "\f1eb"; }
+
+.fa-wind::before {
+  content: "\f72e"; }
+
+.fa-window-maximize::before {
+  content: "\f2d0"; }
+
+.fa-window-minimize::before {
+  content: "\f2d1"; }
+
+.fa-window-restore::before {
+  content: "\f2d2"; }
+
+.fa-wine-bottle::before {
+  content: "\f72f"; }
+
+.fa-wine-glass::before {
+  content: "\f4e3"; }
+
+.fa-wine-glass-empty::before {
+  content: "\f5ce"; }
+
+.fa-wine-glass-alt::before {
+  content: "\f5ce"; }
+
+.fa-won-sign::before {
+  content: "\f159"; }
+
+.fa-krw::before {
+  content: "\f159"; }
+
+.fa-won::before {
+  content: "\f159"; }
+
+.fa-wrench::before {
+  content: "\f0ad"; }
+
+.fa-x::before {
+  content: "\58"; }
+
+.fa-x-ray::before {
+  content: "\f497"; }
+
+.fa-xmark::before {
+  content: "\f00d"; }
+
+.fa-close::before {
+  content: "\f00d"; }
+
+.fa-multiply::before {
+  content: "\f00d"; }
+
+.fa-remove::before {
+  content: "\f00d"; }
+
+.fa-times::before {
+  content: "\f00d"; }
+
+.fa-y::before {
+  content: "\59"; }
+
+.fa-yen-sign::before {
+  content: "\f157"; }
+
+.fa-cny::before {
+  content: "\f157"; }
+
+.fa-jpy::before {
+  content: "\f157"; }
+
+.fa-rmb::before {
+  content: "\f157"; }
+
+.fa-yen::before {
+  content: "\f157"; }
+
+.fa-yin-yang::before {
+  content: "\f6ad"; }
+
+.fa-z::before {
+  content: "\5a"; }
+
+.sr-only,
+.fa-sr-only {
+  position: absolute;
+  width: 1px;
+  height: 1px;
+  padding: 0;
+  margin: -1px;
+  overflow: hidden;
+  clip: rect(0, 0, 0, 0);
+  white-space: nowrap;
+  border-width: 0; }
+
+.sr-only-focusable:not(:focus),
+.fa-sr-only-focusable:not(:focus) {
+  position: absolute;
+  width: 1px;
+  height: 1px;
+  padding: 0;
+  margin: -1px;
+  overflow: hidden;
+  clip: rect(0, 0, 0, 0);
+  white-space: nowrap;
+  border-width: 0; }
+:root, :host {
+  --fa-font-brands: normal 400 1em/1 "Font Awesome 6 Brands"; }
+
+@font-face {
+  font-family: 'Font Awesome 6 Brands';
+  font-style: normal;
+  font-weight: 400;
+  font-display: block;
+  src: url("../webfonts/fa-brands-400.woff2") format("woff2"), url("../webfonts/fa-brands-400.ttf") format("truetype"); }
+
+.fab,
+.fa-brands {
+  font-family: 'Font Awesome 6 Brands';
+  font-weight: 400; }
+
+.fa-42-group:before {
+  content: "\e080"; }
+
+.fa-innosoft:before {
+  content: "\e080"; }
+
+.fa-500px:before {
+  content: "\f26e"; }
+
+.fa-accessible-icon:before {
+  content: "\f368"; }
+
+.fa-accusoft:before {
+  content: "\f369"; }
+
+.fa-adn:before {
+  content: "\f170"; }
+
+.fa-adversal:before {
+  content: "\f36a"; }
+
+.fa-affiliatetheme:before {
+  content: "\f36b"; }
+
+.fa-airbnb:before {
+  content: "\f834"; }
+
+.fa-algolia:before {
+  content: "\f36c"; }
+
+.fa-alipay:before {
+  content: "\f642"; }
+
+.fa-amazon:before {
+  content: "\f270"; }
+
+.fa-amazon-pay:before {
+  content: "\f42c"; }
+
+.fa-amilia:before {
+  content: "\f36d"; }
+
+.fa-android:before {
+  content: "\f17b"; }
+
+.fa-angellist:before {
+  content: "\f209"; }
+
+.fa-angrycreative:before {
+  content: "\f36e"; }
+
+.fa-angular:before {
+  content: "\f420"; }
+
+.fa-app-store:before {
+  content: "\f36f"; }
+
+.fa-app-store-ios:before {
+  content: "\f370"; }
+
+.fa-apper:before {
+  content: "\f371"; }
+
+.fa-apple:before {
+  content: "\f179"; }
+
+.fa-apple-pay:before {
+  content: "\f415"; }
+
+.fa-artstation:before {
+  content: "\f77a"; }
+
+.fa-asymmetrik:before {
+  content: "\f372"; }
+
+.fa-atlassian:before {
+  content: "\f77b"; }
+
+.fa-audible:before {
+  content: "\f373"; }
+
+.fa-autoprefixer:before {
+  content: "\f41c"; }
+
+.fa-avianex:before {
+  content: "\f374"; }
+
+.fa-aviato:before {
+  content: "\f421"; }
+
+.fa-aws:before {
+  content: "\f375"; }
+
+.fa-bandcamp:before {
+  content: "\f2d5"; }
+
+.fa-battle-net:before {
+  content: "\f835"; }
+
+.fa-behance:before {
+  content: "\f1b4"; }
+
+.fa-behance-square:before {
+  content: "\f1b5"; }
+
+.fa-bilibili:before {
+  content: "\e3d9"; }
+
+.fa-bimobject:before {
+  content: "\f378"; }
+
+.fa-bitbucket:before {
+  content: "\f171"; }
+
+.fa-bitcoin:before {
+  content: "\f379"; }
+
+.fa-bity:before {
+  content: "\f37a"; }
+
+.fa-black-tie:before {
+  content: "\f27e"; }
+
+.fa-blackberry:before {
+  content: "\f37b"; }
+
+.fa-blogger:before {
+  content: "\f37c"; }
+
+.fa-blogger-b:before {
+  content: "\f37d"; }
+
+.fa-bluetooth:before {
+  content: "\f293"; }
+
+.fa-bluetooth-b:before {
+  content: "\f294"; }
+
+.fa-bootstrap:before {
+  content: "\f836"; }
+
+.fa-bots:before {
+  content: "\e340"; }
+
+.fa-btc:before {
+  content: "\f15a"; }
+
+.fa-buffer:before {
+  content: "\f837"; }
+
+.fa-buromobelexperte:before {
+  content: "\f37f"; }
+
+.fa-buy-n-large:before {
+  content: "\f8a6"; }
+
+.fa-buysellads:before {
+  content: "\f20d"; }
+
+.fa-canadian-maple-leaf:before {
+  content: "\f785"; }
+
+.fa-cc-amazon-pay:before {
+  content: "\f42d"; }
+
+.fa-cc-amex:before {
+  content: "\f1f3"; }
+
+.fa-cc-apple-pay:before {
+  content: "\f416"; }
+
+.fa-cc-diners-club:before {
+  content: "\f24c"; }
+
+.fa-cc-discover:before {
+  content: "\f1f2"; }
+
+.fa-cc-jcb:before {
+  content: "\f24b"; }
+
+.fa-cc-mastercard:before {
+  content: "\f1f1"; }
+
+.fa-cc-paypal:before {
+  content: "\f1f4"; }
+
+.fa-cc-stripe:before {
+  content: "\f1f5"; }
+
+.fa-cc-visa:before {
+  content: "\f1f0"; }
+
+.fa-centercode:before {
+  content: "\f380"; }
+
+.fa-centos:before {
+  content: "\f789"; }
+
+.fa-chrome:before {
+  content: "\f268"; }
+
+.fa-chromecast:before {
+  content: "\f838"; }
+
+.fa-cloudflare:before {
+  content: "\e07d"; }
+
+.fa-cloudscale:before {
+  content: "\f383"; }
+
+.fa-cloudsmith:before {
+  content: "\f384"; }
+
+.fa-cloudversify:before {
+  content: "\f385"; }
+
+.fa-cmplid:before {
+  content: "\e360"; }
+
+.fa-codepen:before {
+  content: "\f1cb"; }
+
+.fa-codiepie:before {
+  content: "\f284"; }
+
+.fa-confluence:before {
+  content: "\f78d"; }
+
+.fa-connectdevelop:before {
+  content: "\f20e"; }
+
+.fa-contao:before {
+  content: "\f26d"; }
+
+.fa-cotton-bureau:before {
+  content: "\f89e"; }
+
+.fa-cpanel:before {
+  content: "\f388"; }
+
+.fa-creative-commons:before {
+  content: "\f25e"; }
+
+.fa-creative-commons-by:before {
+  content: "\f4e7"; }
+
+.fa-creative-commons-nc:before {
+  content: "\f4e8"; }
+
+.fa-creative-commons-nc-eu:before {
+  content: "\f4e9"; }
+
+.fa-creative-commons-nc-jp:before {
+  content: "\f4ea"; }
+
+.fa-creative-commons-nd:before {
+  content: "\f4eb"; }
+
+.fa-creative-commons-pd:before {
+  content: "\f4ec"; }
+
+.fa-creative-commons-pd-alt:before {
+  content: "\f4ed"; }
+
+.fa-creative-commons-remix:before {
+  content: "\f4ee"; }
+
+.fa-creative-commons-sa:before {
+  content: "\f4ef"; }
+
+.fa-creative-commons-sampling:before {
+  content: "\f4f0"; }
+
+.fa-creative-commons-sampling-plus:before {
+  content: "\f4f1"; }
+
+.fa-creative-commons-share:before {
+  content: "\f4f2"; }
+
+.fa-creative-commons-zero:before {
+  content: "\f4f3"; }
+
+.fa-critical-role:before {
+  content: "\f6c9"; }
+
+.fa-css3:before {
+  content: "\f13c"; }
+
+.fa-css3-alt:before {
+  content: "\f38b"; }
+
+.fa-cuttlefish:before {
+  content: "\f38c"; }
+
+.fa-d-and-d:before {
+  content: "\f38d"; }
+
+.fa-d-and-d-beyond:before {
+  content: "\f6ca"; }
+
+.fa-dailymotion:before {
+  content: "\e052"; }
+
+.fa-dashcube:before {
+  content: "\f210"; }
+
+.fa-deezer:before {
+  content: "\e077"; }
+
+.fa-delicious:before {
+  content: "\f1a5"; }
+
+.fa-deploydog:before {
+  content: "\f38e"; }
+
+.fa-deskpro:before {
+  content: "\f38f"; }
+
+.fa-dev:before {
+  content: "\f6cc"; }
+
+.fa-deviantart:before {
+  content: "\f1bd"; }
+
+.fa-dhl:before {
+  content: "\f790"; }
+
+.fa-diaspora:before {
+  content: "\f791"; }
+
+.fa-digg:before {
+  content: "\f1a6"; }
+
+.fa-digital-ocean:before {
+  content: "\f391"; }
+
+.fa-discord:before {
+  content: "\f392"; }
+
+.fa-discourse:before {
+  content: "\f393"; }
+
+.fa-dochub:before {
+  content: "\f394"; }
+
+.fa-docker:before {
+  content: "\f395"; }
+
+.fa-draft2digital:before {
+  content: "\f396"; }
+
+.fa-dribbble:before {
+  content: "\f17d"; }
+
+.fa-dribbble-square:before {
+  content: "\f397"; }
+
+.fa-dropbox:before {
+  content: "\f16b"; }
+
+.fa-drupal:before {
+  content: "\f1a9"; }
+
+.fa-dyalog:before {
+  content: "\f399"; }
+
+.fa-earlybirds:before {
+  content: "\f39a"; }
+
+.fa-ebay:before {
+  content: "\f4f4"; }
+
+.fa-edge:before {
+  content: "\f282"; }
+
+.fa-edge-legacy:before {
+  content: "\e078"; }
+
+.fa-elementor:before {
+  content: "\f430"; }
+
+.fa-ello:before {
+  content: "\f5f1"; }
+
+.fa-ember:before {
+  content: "\f423"; }
+
+.fa-empire:before {
+  content: "\f1d1"; }
+
+.fa-envira:before {
+  content: "\f299"; }
+
+.fa-erlang:before {
+  content: "\f39d"; }
+
+.fa-ethereum:before {
+  content: "\f42e"; }
+
+.fa-etsy:before {
+  content: "\f2d7"; }
+
+.fa-evernote:before {
+  content: "\f839"; }
+
+.fa-expeditedssl:before {
+  content: "\f23e"; }
+
+.fa-facebook:before {
+  content: "\f09a"; }
+
+.fa-facebook-f:before {
+  content: "\f39e"; }
+
+.fa-facebook-messenger:before {
+  content: "\f39f"; }
+
+.fa-facebook-square:before {
+  content: "\f082"; }
+
+.fa-fantasy-flight-games:before {
+  content: "\f6dc"; }
+
+.fa-fedex:before {
+  content: "\f797"; }
+
+.fa-fedora:before {
+  content: "\f798"; }
+
+.fa-figma:before {
+  content: "\f799"; }
+
+.fa-firefox:before {
+  content: "\f269"; }
+
+.fa-firefox-browser:before {
+  content: "\e007"; }
+
+.fa-first-order:before {
+  content: "\f2b0"; }
+
+.fa-first-order-alt:before {
+  content: "\f50a"; }
+
+.fa-firstdraft:before {
+  content: "\f3a1"; }
+
+.fa-flickr:before {
+  content: "\f16e"; }
+
+.fa-flipboard:before {
+  content: "\f44d"; }
+
+.fa-fly:before {
+  content: "\f417"; }
+
+.fa-font-awesome:before {
+  content: "\f2b4"; }
+
+.fa-font-awesome-flag:before {
+  content: "\f2b4"; }
+
+.fa-font-awesome-logo-full:before {
+  content: "\f2b4"; }
+
+.fa-fonticons:before {
+  content: "\f280"; }
+
+.fa-fonticons-fi:before {
+  content: "\f3a2"; }
+
+.fa-fort-awesome:before {
+  content: "\f286"; }
+
+.fa-fort-awesome-alt:before {
+  content: "\f3a3"; }
+
+.fa-forumbee:before {
+  content: "\f211"; }
+
+.fa-foursquare:before {
+  content: "\f180"; }
+
+.fa-free-code-camp:before {
+  content: "\f2c5"; }
+
+.fa-freebsd:before {
+  content: "\f3a4"; }
+
+.fa-fulcrum:before {
+  content: "\f50b"; }
+
+.fa-galactic-republic:before {
+  content: "\f50c"; }
+
+.fa-galactic-senate:before {
+  content: "\f50d"; }
+
+.fa-get-pocket:before {
+  content: "\f265"; }
+
+.fa-gg:before {
+  content: "\f260"; }
+
+.fa-gg-circle:before {
+  content: "\f261"; }
+
+.fa-git:before {
+  content: "\f1d3"; }
+
+.fa-git-alt:before {
+  content: "\f841"; }
+
+.fa-git-square:before {
+  content: "\f1d2"; }
+
+.fa-github:before {
+  content: "\f09b"; }
+
+.fa-github-alt:before {
+  content: "\f113"; }
+
+.fa-github-square:before {
+  content: "\f092"; }
+
+.fa-gitkraken:before {
+  content: "\f3a6"; }
+
+.fa-gitlab:before {
+  content: "\f296"; }
+
+.fa-gitter:before {
+  content: "\f426"; }
+
+.fa-glide:before {
+  content: "\f2a5"; }
+
+.fa-glide-g:before {
+  content: "\f2a6"; }
+
+.fa-gofore:before {
+  content: "\f3a7"; }
+
+.fa-golang:before {
+  content: "\e40f"; }
+
+.fa-goodreads:before {
+  content: "\f3a8"; }
+
+.fa-goodreads-g:before {
+  content: "\f3a9"; }
+
+.fa-google:before {
+  content: "\f1a0"; }
+
+.fa-google-drive:before {
+  content: "\f3aa"; }
+
+.fa-google-pay:before {
+  content: "\e079"; }
+
+.fa-google-play:before {
+  content: "\f3ab"; }
+
+.fa-google-plus:before {
+  content: "\f2b3"; }
+
+.fa-google-plus-g:before {
+  content: "\f0d5"; }
+
+.fa-google-plus-square:before {
+  content: "\f0d4"; }
+
+.fa-google-wallet:before {
+  content: "\f1ee"; }
+
+.fa-gratipay:before {
+  content: "\f184"; }
+
+.fa-grav:before {
+  content: "\f2d6"; }
+
+.fa-gripfire:before {
+  content: "\f3ac"; }
+
+.fa-grunt:before {
+  content: "\f3ad"; }
+
+.fa-guilded:before {
+  content: "\e07e"; }
+
+.fa-gulp:before {
+  content: "\f3ae"; }
+
+.fa-hacker-news:before {
+  content: "\f1d4"; }
+
+.fa-hacker-news-square:before {
+  content: "\f3af"; }
+
+.fa-hackerrank:before {
+  content: "\f5f7"; }
+
+.fa-hashnode:before {
+  content: "\e499"; }
+
+.fa-hips:before {
+  content: "\f452"; }
+
+.fa-hire-a-helper:before {
+  content: "\f3b0"; }
+
+.fa-hive:before {
+  content: "\e07f"; }
+
+.fa-hooli:before {
+  content: "\f427"; }
+
+.fa-hornbill:before {
+  content: "\f592"; }
+
+.fa-hotjar:before {
+  content: "\f3b1"; }
+
+.fa-houzz:before {
+  content: "\f27c"; }
+
+.fa-html5:before {
+  content: "\f13b"; }
+
+.fa-hubspot:before {
+  content: "\f3b2"; }
+
+.fa-ideal:before {
+  content: "\e013"; }
+
+.fa-imdb:before {
+  content: "\f2d8"; }
+
+.fa-instagram:before {
+  content: "\f16d"; }
+
+.fa-instagram-square:before {
+  content: "\e055"; }
+
+.fa-instalod:before {
+  content: "\e081"; }
+
+.fa-intercom:before {
+  content: "\f7af"; }
+
+.fa-internet-explorer:before {
+  content: "\f26b"; }
+
+.fa-invision:before {
+  content: "\f7b0"; }
+
+.fa-ioxhost:before {
+  content: "\f208"; }
+
+.fa-itch-io:before {
+  content: "\f83a"; }
+
+.fa-itunes:before {
+  content: "\f3b4"; }
+
+.fa-itunes-note:before {
+  content: "\f3b5"; }
+
+.fa-java:before {
+  content: "\f4e4"; }
+
+.fa-jedi-order:before {
+  content: "\f50e"; }
+
+.fa-jenkins:before {
+  content: "\f3b6"; }
+
+.fa-jira:before {
+  content: "\f7b1"; }
+
+.fa-joget:before {
+  content: "\f3b7"; }
+
+.fa-joomla:before {
+  content: "\f1aa"; }
+
+.fa-js:before {
+  content: "\f3b8"; }
+
+.fa-js-square:before {
+  content: "\f3b9"; }
+
+.fa-jsfiddle:before {
+  content: "\f1cc"; }
+
+.fa-kaggle:before {
+  content: "\f5fa"; }
+
+.fa-keybase:before {
+  content: "\f4f5"; }
+
+.fa-keycdn:before {
+  content: "\f3ba"; }
+
+.fa-kickstarter:before {
+  content: "\f3bb"; }
+
+.fa-kickstarter-k:before {
+  content: "\f3bc"; }
+
+.fa-korvue:before {
+  content: "\f42f"; }
+
+.fa-laravel:before {
+  content: "\f3bd"; }
+
+.fa-lastfm:before {
+  content: "\f202"; }
+
+.fa-lastfm-square:before {
+  content: "\f203"; }
+
+.fa-leanpub:before {
+  content: "\f212"; }
+
+.fa-less:before {
+  content: "\f41d"; }
+
+.fa-line:before {
+  content: "\f3c0"; }
+
+.fa-linkedin:before {
+  content: "\f08c"; }
+
+.fa-linkedin-in:before {
+  content: "\f0e1"; }
+
+.fa-linode:before {
+  content: "\f2b8"; }
+
+.fa-linux:before {
+  content: "\f17c"; }
+
+.fa-lyft:before {
+  content: "\f3c3"; }
+
+.fa-magento:before {
+  content: "\f3c4"; }
+
+.fa-mailchimp:before {
+  content: "\f59e"; }
+
+.fa-mandalorian:before {
+  content: "\f50f"; }
+
+.fa-markdown:before {
+  content: "\f60f"; }
+
+.fa-mastodon:before {
+  content: "\f4f6"; }
+
+.fa-maxcdn:before {
+  content: "\f136"; }
+
+.fa-mdb:before {
+  content: "\f8ca"; }
+
+.fa-medapps:before {
+  content: "\f3c6"; }
+
+.fa-medium:before {
+  content: "\f23a"; }
+
+.fa-medium-m:before {
+  content: "\f23a"; }
+
+.fa-medrt:before {
+  content: "\f3c8"; }
+
+.fa-meetup:before {
+  content: "\f2e0"; }
+
+.fa-megaport:before {
+  content: "\f5a3"; }
+
+.fa-mendeley:before {
+  content: "\f7b3"; }
+
+.fa-microblog:before {
+  content: "\e01a"; }
+
+.fa-microsoft:before {
+  content: "\f3ca"; }
+
+.fa-mix:before {
+  content: "\f3cb"; }
+
+.fa-mixcloud:before {
+  content: "\f289"; }
+
+.fa-mixer:before {
+  content: "\e056"; }
+
+.fa-mizuni:before {
+  content: "\f3cc"; }
+
+.fa-modx:before {
+  content: "\f285"; }
+
+.fa-monero:before {
+  content: "\f3d0"; }
+
+.fa-napster:before {
+  content: "\f3d2"; }
+
+.fa-neos:before {
+  content: "\f612"; }
+
+.fa-nimblr:before {
+  content: "\f5a8"; }
+
+.fa-node:before {
+  content: "\f419"; }
+
+.fa-node-js:before {
+  content: "\f3d3"; }
+
+.fa-npm:before {
+  content: "\f3d4"; }
+
+.fa-ns8:before {
+  content: "\f3d5"; }
+
+.fa-nutritionix:before {
+  content: "\f3d6"; }
+
+.fa-octopus-deploy:before {
+  content: "\e082"; }
+
+.fa-odnoklassniki:before {
+  content: "\f263"; }
+
+.fa-odnoklassniki-square:before {
+  content: "\f264"; }
+
+.fa-old-republic:before {
+  content: "\f510"; }
+
+.fa-opencart:before {
+  content: "\f23d"; }
+
+.fa-openid:before {
+  content: "\f19b"; }
+
+.fa-opera:before {
+  content: "\f26a"; }
+
+.fa-optin-monster:before {
+  content: "\f23c"; }
+
+.fa-orcid:before {
+  content: "\f8d2"; }
+
+.fa-osi:before {
+  content: "\f41a"; }
+
+.fa-padlet:before {
+  content: "\e4a0"; }
+
+.fa-page4:before {
+  content: "\f3d7"; }
+
+.fa-pagelines:before {
+  content: "\f18c"; }
+
+.fa-palfed:before {
+  content: "\f3d8"; }
+
+.fa-patreon:before {
+  content: "\f3d9"; }
+
+.fa-paypal:before {
+  content: "\f1ed"; }
+
+.fa-perbyte:before {
+  content: "\e083"; }
+
+.fa-periscope:before {
+  content: "\f3da"; }
+
+.fa-phabricator:before {
+  content: "\f3db"; }
+
+.fa-phoenix-framework:before {
+  content: "\f3dc"; }
+
+.fa-phoenix-squadron:before {
+  content: "\f511"; }
+
+.fa-php:before {
+  content: "\f457"; }
+
+.fa-pied-piper:before {
+  content: "\f2ae"; }
+
+.fa-pied-piper-alt:before {
+  content: "\f1a8"; }
+
+.fa-pied-piper-hat:before {
+  content: "\f4e5"; }
+
+.fa-pied-piper-pp:before {
+  content: "\f1a7"; }
+
+.fa-pied-piper-square:before {
+  content: "\e01e"; }
+
+.fa-pinterest:before {
+  content: "\f0d2"; }
+
+.fa-pinterest-p:before {
+  content: "\f231"; }
+
+.fa-pinterest-square:before {
+  content: "\f0d3"; }
+
+.fa-pix:before {
+  content: "\e43a"; }
+
+.fa-playstation:before {
+  content: "\f3df"; }
+
+.fa-product-hunt:before {
+  content: "\f288"; }
+
+.fa-pushed:before {
+  content: "\f3e1"; }
+
+.fa-python:before {
+  content: "\f3e2"; }
+
+.fa-qq:before {
+  content: "\f1d6"; }
+
+.fa-quinscape:before {
+  content: "\f459"; }
+
+.fa-quora:before {
+  content: "\f2c4"; }
+
+.fa-r-project:before {
+  content: "\f4f7"; }
+
+.fa-raspberry-pi:before {
+  content: "\f7bb"; }
+
+.fa-ravelry:before {
+  content: "\f2d9"; }
+
+.fa-react:before {
+  content: "\f41b"; }
+
+.fa-reacteurope:before {
+  content: "\f75d"; }
+
+.fa-readme:before {
+  content: "\f4d5"; }
+
+.fa-rebel:before {
+  content: "\f1d0"; }
+
+.fa-red-river:before {
+  content: "\f3e3"; }
+
+.fa-reddit:before {
+  content: "\f1a1"; }
+
+.fa-reddit-alien:before {
+  content: "\f281"; }
+
+.fa-reddit-square:before {
+  content: "\f1a2"; }
+
+.fa-redhat:before {
+  content: "\f7bc"; }
+
+.fa-renren:before {
+  content: "\f18b"; }
+
+.fa-replyd:before {
+  content: "\f3e6"; }
+
+.fa-researchgate:before {
+  content: "\f4f8"; }
+
+.fa-resolving:before {
+  content: "\f3e7"; }
+
+.fa-rev:before {
+  content: "\f5b2"; }
+
+.fa-rocketchat:before {
+  content: "\f3e8"; }
+
+.fa-rockrms:before {
+  content: "\f3e9"; }
+
+.fa-rust:before {
+  content: "\e07a"; }
+
+.fa-safari:before {
+  content: "\f267"; }
+
+.fa-salesforce:before {
+  content: "\f83b"; }
+
+.fa-sass:before {
+  content: "\f41e"; }
+
+.fa-schlix:before {
+  content: "\f3ea"; }
+
+.fa-scribd:before {
+  content: "\f28a"; }
+
+.fa-searchengin:before {
+  content: "\f3eb"; }
+
+.fa-sellcast:before {
+  content: "\f2da"; }
+
+.fa-sellsy:before {
+  content: "\f213"; }
+
+.fa-servicestack:before {
+  content: "\f3ec"; }
+
+.fa-shirtsinbulk:before {
+  content: "\f214"; }
+
+.fa-shopify:before {
+  content: "\e057"; }
+
+.fa-shopware:before {
+  content: "\f5b5"; }
+
+.fa-simplybuilt:before {
+  content: "\f215"; }
+
+.fa-sistrix:before {
+  content: "\f3ee"; }
+
+.fa-sith:before {
+  content: "\f512"; }
+
+.fa-sitrox:before {
+  content: "\e44a"; }
+
+.fa-sketch:before {
+  content: "\f7c6"; }
+
+.fa-skyatlas:before {
+  content: "\f216"; }
+
+.fa-skype:before {
+  content: "\f17e"; }
+
+.fa-slack:before {
+  content: "\f198"; }
+
+.fa-slack-hash:before {
+  content: "\f198"; }
+
+.fa-slideshare:before {
+  content: "\f1e7"; }
+
+.fa-snapchat:before {
+  content: "\f2ab"; }
+
+.fa-snapchat-ghost:before {
+  content: "\f2ab"; }
+
+.fa-snapchat-square:before {
+  content: "\f2ad"; }
+
+.fa-soundcloud:before {
+  content: "\f1be"; }
+
+.fa-sourcetree:before {
+  content: "\f7d3"; }
+
+.fa-speakap:before {
+  content: "\f3f3"; }
+
+.fa-speaker-deck:before {
+  content: "\f83c"; }
+
+.fa-spotify:before {
+  content: "\f1bc"; }
+
+.fa-square-font-awesome:before {
+  content: "\f425"; }
+
+.fa-square-font-awesome-stroke:before {
+  content: "\f35c"; }
+
+.fa-font-awesome-alt:before {
+  content: "\f35c"; }
+
+.fa-squarespace:before {
+  content: "\f5be"; }
+
+.fa-stack-exchange:before {
+  content: "\f18d"; }
+
+.fa-stack-overflow:before {
+  content: "\f16c"; }
+
+.fa-stackpath:before {
+  content: "\f842"; }
+
+.fa-staylinked:before {
+  content: "\f3f5"; }
+
+.fa-steam:before {
+  content: "\f1b6"; }
+
+.fa-steam-square:before {
+  content: "\f1b7"; }
+
+.fa-steam-symbol:before {
+  content: "\f3f6"; }
+
+.fa-sticker-mule:before {
+  content: "\f3f7"; }
+
+.fa-strava:before {
+  content: "\f428"; }
+
+.fa-stripe:before {
+  content: "\f429"; }
+
+.fa-stripe-s:before {
+  content: "\f42a"; }
+
+.fa-studiovinari:before {
+  content: "\f3f8"; }
+
+.fa-stumbleupon:before {
+  content: "\f1a4"; }
 
-.fa-transgender:before {
-  content: "\f224"; }
+.fa-stumbleupon-circle:before {
+  content: "\f1a3"; }
 
-.fa-transgender-alt:before {
-  content: "\f225"; }
+.fa-superpowers:before {
+  content: "\f2dd"; }
 
-.fa-trash:before {
-  content: "\f1f8"; }
+.fa-supple:before {
+  content: "\f3f9"; }
 
-.fa-trash-alt:before {
-  content: "\f2ed"; }
+.fa-suse:before {
+  content: "\f7d6"; }
 
-.fa-trash-restore:before {
-  content: "\f829"; }
+.fa-swift:before {
+  content: "\f8e1"; }
 
-.fa-trash-restore-alt:before {
-  content: "\f82a"; }
+.fa-symfony:before {
+  content: "\f83d"; }
 
-.fa-tree:before {
-  content: "\f1bb"; }
+.fa-teamspeak:before {
+  content: "\f4f9"; }
 
-.fa-trello:before {
-  content: "\f181"; }
+.fa-telegram:before {
+  content: "\f2c6"; }
 
-.fa-tripadvisor:before {
-  content: "\f262"; }
+.fa-telegram-plane:before {
+  content: "\f2c6"; }
 
-.fa-trophy:before {
-  content: "\f091"; }
+.fa-tencent-weibo:before {
+  content: "\f1d5"; }
 
-.fa-truck:before {
-  content: "\f0d1"; }
+.fa-the-red-yeti:before {
+  content: "\f69d"; }
 
-.fa-truck-loading:before {
-  content: "\f4de"; }
+.fa-themeco:before {
+  content: "\f5c6"; }
 
-.fa-truck-monster:before {
-  content: "\f63b"; }
+.fa-themeisle:before {
+  content: "\f2b2"; }
 
-.fa-truck-moving:before {
-  content: "\f4df"; }
+.fa-think-peaks:before {
+  content: "\f731"; }
 
-.fa-truck-pickup:before {
-  content: "\f63c"; }
+.fa-tiktok:before {
+  content: "\e07b"; }
 
-.fa-tshirt:before {
-  content: "\f553"; }
+.fa-trade-federation:before {
+  content: "\f513"; }
 
-.fa-tty:before {
-  content: "\f1e4"; }
+.fa-trello:before {
+  content: "\f181"; }
 
 .fa-tumblr:before {
   content: "\f173"; }
@@ -4122,9 +6741,6 @@ readers do not read off random characters that represent icons */
 .fa-tumblr-square:before {
   content: "\f174"; }
 
-.fa-tv:before {
-  content: "\f26c"; }
-
 .fa-twitch:before {
   content: "\f1e8"; }
 
@@ -4149,174 +6765,36 @@ readers do not read off random characters that represent icons */
 .fa-umbraco:before {
   content: "\f8e8"; }
 
-.fa-umbrella:before {
-  content: "\f0e9"; }
-
-.fa-umbrella-beach:before {
-  content: "\f5ca"; }
-
 .fa-uncharted:before {
   content: "\e084"; }
 
-.fa-underline:before {
-  content: "\f0cd"; }
-
-.fa-undo:before {
-  content: "\f0e2"; }
-
-.fa-undo-alt:before {
-  content: "\f2ea"; }
-
 .fa-uniregistry:before {
   content: "\f404"; }
 
 .fa-unity:before {
   content: "\e049"; }
 
-.fa-universal-access:before {
-  content: "\f29a"; }
-
-.fa-university:before {
-  content: "\f19c"; }
-
-.fa-unlink:before {
-  content: "\f127"; }
-
-.fa-unlock:before {
-  content: "\f09c"; }
-
-.fa-unlock-alt:before {
-  content: "\f13e"; }
-
 .fa-unsplash:before {
   content: "\e07c"; }
 
 .fa-untappd:before {
   content: "\f405"; }
 
-.fa-upload:before {
-  content: "\f093"; }
-
 .fa-ups:before {
   content: "\f7e0"; }
 
 .fa-usb:before {
   content: "\f287"; }
 
-.fa-user:before {
-  content: "\f007"; }
-
-.fa-user-alt:before {
-  content: "\f406"; }
-
-.fa-user-alt-slash:before {
-  content: "\f4fa"; }
-
-.fa-user-astronaut:before {
-  content: "\f4fb"; }
-
-.fa-user-check:before {
-  content: "\f4fc"; }
-
-.fa-user-circle:before {
-  content: "\f2bd"; }
-
-.fa-user-clock:before {
-  content: "\f4fd"; }
-
-.fa-user-cog:before {
-  content: "\f4fe"; }
-
-.fa-user-edit:before {
-  content: "\f4ff"; }
-
-.fa-user-friends:before {
-  content: "\f500"; }
-
-.fa-user-graduate:before {
-  content: "\f501"; }
-
-.fa-user-injured:before {
-  content: "\f728"; }
-
-.fa-user-lock:before {
-  content: "\f502"; }
-
-.fa-user-md:before {
-  content: "\f0f0"; }
-
-.fa-user-minus:before {
-  content: "\f503"; }
-
-.fa-user-ninja:before {
-  content: "\f504"; }
-
-.fa-user-nurse:before {
-  content: "\f82f"; }
-
-.fa-user-plus:before {
-  content: "\f234"; }
-
-.fa-user-secret:before {
-  content: "\f21b"; }
-
-.fa-user-shield:before {
-  content: "\f505"; }
-
-.fa-user-slash:before {
-  content: "\f506"; }
-
-.fa-user-tag:before {
-  content: "\f507"; }
-
-.fa-user-tie:before {
-  content: "\f508"; }
-
-.fa-user-times:before {
-  content: "\f235"; }
-
-.fa-users:before {
-  content: "\f0c0"; }
-
-.fa-users-cog:before {
-  content: "\f509"; }
-
-.fa-users-slash:before {
-  content: "\e073"; }
-
 .fa-usps:before {
   content: "\f7e1"; }
 
 .fa-ussunnah:before {
   content: "\f407"; }
 
-.fa-utensil-spoon:before {
-  content: "\f2e5"; }
-
-.fa-utensils:before {
-  content: "\f2e7"; }
-
 .fa-vaadin:before {
   content: "\f408"; }
 
-.fa-vector-square:before {
-  content: "\f5cb"; }
-
-.fa-venus:before {
-  content: "\f221"; }
-
-.fa-venus-double:before {
-  content: "\f226"; }
-
-.fa-venus-mars:before {
-  content: "\f228"; }
-
-.fa-vest:before {
-  content: "\e085"; }
-
-.fa-vest-patches:before {
-  content: "\e086"; }
-
 .fa-viacoin:before {
   content: "\f237"; }
 
@@ -4326,24 +6804,9 @@ readers do not read off random characters that represent icons */
 .fa-viadeo-square:before {
   content: "\f2aa"; }
 
-.fa-vial:before {
-  content: "\f492"; }
-
-.fa-vials:before {
-  content: "\f493"; }
-
 .fa-viber:before {
   content: "\f409"; }
 
-.fa-video:before {
-  content: "\f03d"; }
-
-.fa-video-slash:before {
-  content: "\f4e2"; }
-
-.fa-vihara:before {
-  content: "\f6a7"; }
-
 .fa-vimeo:before {
   content: "\f40a"; }
 
@@ -4356,66 +6819,18 @@ readers do not read off random characters that represent icons */
 .fa-vine:before {
   content: "\f1ca"; }
 
-.fa-virus:before {
-  content: "\e074"; }
-
-.fa-virus-slash:before {
-  content: "\e075"; }
-
-.fa-viruses:before {
-  content: "\e076"; }
-
 .fa-vk:before {
   content: "\f189"; }
 
 .fa-vnv:before {
   content: "\f40b"; }
 
-.fa-voicemail:before {
-  content: "\f897"; }
-
-.fa-volleyball-ball:before {
-  content: "\f45f"; }
-
-.fa-volume-down:before {
-  content: "\f027"; }
-
-.fa-volume-mute:before {
-  content: "\f6a9"; }
-
-.fa-volume-off:before {
-  content: "\f026"; }
-
-.fa-volume-up:before {
-  content: "\f028"; }
-
-.fa-vote-yea:before {
-  content: "\f772"; }
-
-.fa-vr-cardboard:before {
-  content: "\f729"; }
-
 .fa-vuejs:before {
   content: "\f41f"; }
 
-.fa-walking:before {
-  content: "\f554"; }
-
-.fa-wallet:before {
-  content: "\f555"; }
-
-.fa-warehouse:before {
-  content: "\f494"; }
-
 .fa-watchman-monitoring:before {
   content: "\e087"; }
 
-.fa-water:before {
-  content: "\f773"; }
-
-.fa-wave-square:before {
-  content: "\f83e"; }
-
 .fa-waze:before {
   content: "\f83f"; }
 
@@ -4425,12 +6840,6 @@ readers do not read off random characters that represent icons */
 .fa-weibo:before {
   content: "\f18a"; }
 
-.fa-weight:before {
-  content: "\f496"; }
-
-.fa-weight-hanging:before {
-  content: "\f5cd"; }
-
 .fa-weixin:before {
   content: "\f1d7"; }
 
@@ -4440,44 +6849,20 @@ readers do not read off random characters that represent icons */
 .fa-whatsapp-square:before {
   content: "\f40c"; }
 
-.fa-wheelchair:before {
-  content: "\f193"; }
-
 .fa-whmcs:before {
   content: "\f40d"; }
 
-.fa-wifi:before {
-  content: "\f1eb"; }
-
 .fa-wikipedia-w:before {
   content: "\f266"; }
 
-.fa-wind:before {
-  content: "\f72e"; }
-
-.fa-window-close:before {
-  content: "\f410"; }
-
-.fa-window-maximize:before {
-  content: "\f2d0"; }
-
-.fa-window-minimize:before {
-  content: "\f2d1"; }
-
-.fa-window-restore:before {
-  content: "\f2d2"; }
-
 .fa-windows:before {
   content: "\f17a"; }
 
-.fa-wine-bottle:before {
-  content: "\f72f"; }
-
-.fa-wine-glass:before {
-  content: "\f4e3"; }
+.fa-wirsindhandwerk:before {
+  content: "\e2d0"; }
 
-.fa-wine-glass-alt:before {
-  content: "\f5ce"; }
+.fa-wsh:before {
+  content: "\e2d0"; }
 
 .fa-wix:before {
   content: "\f5cf"; }
@@ -4491,9 +6876,6 @@ readers do not read off random characters that represent icons */
 .fa-wolf-pack-battalion:before {
   content: "\f514"; }
 
-.fa-won-sign:before {
-  content: "\f159"; }
-
 .fa-wordpress:before {
   content: "\f19a"; }
 
@@ -4512,12 +6894,6 @@ readers do not read off random characters that represent icons */
 .fa-wpressr:before {
   content: "\f3e4"; }
 
-.fa-wrench:before {
-  content: "\f0ad"; }
-
-.fa-x-ray:before {
-  content: "\f497"; }
-
 .fa-xbox:before {
   content: "\f412"; }
 
@@ -4548,12 +6924,6 @@ readers do not read off random characters that represent icons */
 .fa-yelp:before {
   content: "\f1e9"; }
 
-.fa-yen-sign:before {
-  content: "\f157"; }
-
-.fa-yin-yang:before {
-  content: "\f6ad"; }
-
 .fa-yoast:before {
   content: "\f2b1"; }
 
@@ -4565,55 +6935,69 @@ readers do not read off random characters that represent icons */
 
 .fa-zhihu:before {
   content: "\f63f"; }
+:root, :host {
+  --fa-font-regular: normal 400 1em/1 "Font Awesome 6 Free"; }
 
-.sr-only {
-  border: 0;
-  clip: rect(0, 0, 0, 0);
-  height: 1px;
-  margin: -1px;
-  overflow: hidden;
-  padding: 0;
-  position: absolute;
-  width: 1px; }
-
-.sr-only-focusable:active, .sr-only-focusable:focus {
-  clip: auto;
-  height: auto;
-  margin: 0;
-  overflow: visible;
-  position: static;
-  width: auto; }
 @font-face {
-  font-family: 'Font Awesome 5 Brands';
+  font-family: 'Font Awesome 6 Free';
   font-style: normal;
   font-weight: 400;
   font-display: block;
-  src: url("../webfonts/fa-brands-400.eot");
-  src: url("../webfonts/fa-brands-400.eot?#iefix") format("embedded-opentype"), url("../webfonts/fa-brands-400.woff2") format("woff2"), url("../webfonts/fa-brands-400.woff") format("woff"), url("../webfonts/fa-brands-400.ttf") format("truetype"), url("../webfonts/fa-brands-400.svg#fontawesome") format("svg"); }
+  src: url("../webfonts/fa-regular-400.woff2") format("woff2"), url("../webfonts/fa-regular-400.ttf") format("truetype"); }
 
-.fab {
-  font-family: 'Font Awesome 5 Brands';
+.far,
+.fa-regular {
+  font-family: 'Font Awesome 6 Free';
   font-weight: 400; }
+:root, :host {
+  --fa-font-solid: normal 900 1em/1 "Font Awesome 6 Free"; }
+
 @font-face {
-  font-family: 'Font Awesome 5 Free';
+  font-family: 'Font Awesome 6 Free';
   font-style: normal;
-  font-weight: 400;
+  font-weight: 900;
   font-display: block;
-  src: url("../webfonts/fa-regular-400.eot");
-  src: url("../webfonts/fa-regular-400.eot?#iefix") format("embedded-opentype"), url("../webfonts/fa-regular-400.woff2") format("woff2"), url("../webfonts/fa-regular-400.woff") format("woff"), url("../webfonts/fa-regular-400.ttf") format("truetype"), url("../webfonts/fa-regular-400.svg#fontawesome") format("svg"); }
+  src: url("../webfonts/fa-solid-900.woff2") format("woff2"), url("../webfonts/fa-solid-900.ttf") format("truetype"); }
 
-.far {
-  font-family: 'Font Awesome 5 Free';
-  font-weight: 400; }
+.fas,
+.fa-solid {
+  font-family: 'Font Awesome 6 Free';
+  font-weight: 900; }
 @font-face {
-  font-family: 'Font Awesome 5 Free';
-  font-style: normal;
+  font-family: "Font Awesome 5 Brands";
+  font-display: block;
+  font-weight: 400;
+  src: url("../webfonts/fa-brands-400.woff2") format("woff2"), url("../webfonts/fa-brands-400.ttf") format("truetype"); }
+
+@font-face {
+  font-family: "Font Awesome 5 Free";
+  font-display: block;
   font-weight: 900;
+  src: url("../webfonts/fa-solid-900.woff2") format("woff2"), url("../webfonts/fa-solid-900.ttf") format("truetype"); }
+
+@font-face {
+  font-family: "Font Awesome 5 Free";
+  font-display: block;
+  font-weight: 400;
+  src: url("../webfonts/fa-regular-400.woff2") format("woff2"), url("../webfonts/fa-regular-400.ttf") format("truetype"); }
+@font-face {
+  font-family: "FontAwesome";
   font-display: block;
-  src: url("../webfonts/fa-solid-900.eot");
-  src: url("../webfonts/fa-solid-900.eot?#iefix") format("embedded-opentype"), url("../webfonts/fa-solid-900.woff2") format("woff2"), url("../webfonts/fa-solid-900.woff") format("woff"), url("../webfonts/fa-solid-900.ttf") format("truetype"), url("../webfonts/fa-solid-900.svg#fontawesome") format("svg"); }
+  src: url("../webfonts/fa-solid-900.woff2") format("woff2"), url("../webfonts/fa-solid-900.ttf") format("truetype"); }
 
-.fa,
-.fas {
-  font-family: 'Font Awesome 5 Free';
-  font-weight: 900; }
+@font-face {
+  font-family: "FontAwesome";
+  font-display: block;
+  src: url("../webfonts/fa-brands-400.woff2") format("woff2"), url("../webfonts/fa-brands-400.ttf") format("truetype"); }
+
+@font-face {
+  font-family: "FontAwesome";
+  font-display: block;
+  src: url("../webfonts/fa-regular-400.woff2") format("woff2"), url("../webfonts/fa-regular-400.ttf") format("truetype");
+  unicode-range: U+F003,U+F006,U+F014,U+F016-F017,U+F01A-F01B,U+F01D,U+F022,U+F03E,U+F044,U+F046,U+F05C-F05D,U+F06E,U+F070,U+F087-F088,U+F08A,U+F094,U+F096-F097,U+F09D,U+F0A0,U+F0A2,U+F0A4-F0A7,U+F0C5,U+F0C7,U+F0E5-F0E6,U+F0EB,U+F0F6-F0F8,U+F10C,U+F114-F115,U+F118-F11A,U+F11C-F11D,U+F133,U+F147,U+F14E,U+F150-F152,U+F185-F186,U+F18E,U+F190-F192,U+F196,U+F1C1-F1C9,U+F1D9,U+F1DB,U+F1E3,U+F1EA,U+F1F7,U+F1F9,U+F20A,U+F247-F248,U+F24A,U+F24D,U+F255-F25B,U+F25D,U+F271-F274,U+F278,U+F27B,U+F28C,U+F28E,U+F29C,U+F2B5,U+F2B7,U+F2BA,U+F2BC,U+F2BE,U+F2C0-F2C1,U+F2C3,U+F2D0,U+F2D2,U+F2D4,U+F2DC; }
+
+@font-face {
+  font-family: "FontAwesome";
+  font-display: block;
+  src: url("../webfonts/fa-v4compatibility.woff2") format("woff2"), url("../webfonts/fa-v4compatibility.ttf") format("truetype");
+  unicode-range: U+F041,U+F047,U+F065-F066,U+F07D-F07E,U+F080,U+F08B,U+F08E,U+F090,U+F09A,U+F0AC,U+F0AE,U+F0B2,U+F0D0,U+F0D6,U+F0E4,U+F0EC,U+F10A-F10B,U+F123,U+F13E,U+F148-F149,U+F14C,U+F156,U+F15E,U+F160-F161,U+F163,U+F175-F178,U+F195,U+F1F8,U+F219,U+F250,U+F252,U+F27A; }
diff --git a/web/static/css/guac-main.css b/web/static/css/guac-main.css
new file mode 100644
index 00000000000..4b7a016ce11
--- /dev/null
+++ b/web/static/css/guac-main.css
@@ -0,0 +1,46 @@
+#container {
+    position: relative;
+    width: 100%;
+    height: 20em;
+}
+
+#terminal {
+    height: 100%;
+    width: 100%
+}
+
+.dialog,
+.error {
+    max-width: 640px;
+    background: #fff;
+    padding: 5px;
+    border-radius: 8px;
+    box-shadow: 0 0 10px #000;
+    text-align: left;
+}
+
+.dialog {
+    position: absolute;
+    top: 50%;
+    left: 50%;
+    transform: translate(-50%, -50%);
+    z-index: 1002;
+}
+
+.inner {
+    background: rgb(245, 245, 245);
+    border-radius: 8px;
+    border: 1px solid rgba(0, 0, 0, 0.9);
+    box-shadow: inset 0 1px 0 0 rgba(255, 255, 255, 0.7);
+    overflow: hidden;
+    padding: 10px;
+    position: relative;
+}
+
+.dialog {
+    display: none;
+}
+
+.no-close .ui-dialog-titlebar-close {
+    display: none 
+}
\ No newline at end of file
diff --git a/web/static/css/guac-playback.css b/web/static/css/guac-playback.css
new file mode 100644
index 00000000000..b9b2d641b2b
--- /dev/null
+++ b/web/static/css/guac-playback.css
@@ -0,0 +1,114 @@
+/*
+ * Licensed to the Apache Software Foundation (ASF) under one
+ * or more contributor license agreements.  See the NOTICE file
+ * distributed with this work for additional information
+ * regarding copyright ownership.  The ASF licenses this file
+ * to you under the Apache License, Version 2.0 (the
+ * "License"); you may not use this file except in compliance
+ * with the License.  You may obtain a copy of the License at
+ *
+ *   http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing,
+ * software distributed under the License is distributed on an
+ * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+ * KIND, either express or implied.  See the License for the
+ * specific language governing permissions and limitations
+ * under the License.
+ */
+
+ #player {
+    width: 640px;
+}
+
+#display {
+    position: relative;
+}
+
+#player .notification-container {
+    position: absolute;
+    z-index: 1;
+    top: 0;
+    right: 0;
+    left: 0;
+    bottom: 0;
+}
+
+#player .seek-notification {
+
+    color: white;
+    background: rgba(0, 0, 0, 0.75);
+
+    display: none; /* Initially hidden */
+    width: 100%;
+    height: 100%;
+
+}
+
+#player.seeking .seek-notification {
+    display: table;
+}
+
+#player .seek-notification p {
+    display: table-cell;
+    text-align: center;
+    vertical-align: middle;
+    font-family: sans-serif;
+}
+
+#player .controls {
+
+    width: 100%;
+
+    /* IE10 */
+    display: -ms-flexbox;
+    -ms-flex-align: center;
+    -ms-flex-direction: row;
+
+    /* Ancient Mozilla */
+    display: -moz-box;
+    -moz-box-align: center;
+    -moz-box-orient: horizontal;
+
+    /* Ancient WebKit */
+    display: -webkit-box;
+    -webkit-box-align: center;
+    -webkit-box-orient: horizontal;
+
+    /* Old WebKit */
+    display: -webkit-flex;
+    -webkit-align-items: center;
+    -webkit-flex-direction: row;
+
+    /* W3C */
+    display: flex;
+    align-items: center;
+    flex-direction: row;
+
+}
+
+#player .controls > * {
+    margin: 0.25em;
+}
+
+#player .controls #position-slider {
+    -ms-flex: 1 1 auto;
+    -moz-box-flex: 1;
+    -webkit-box-flex: 1;
+    -webkit-flex: 1 1 auto;
+    flex: 1 1 auto;
+}
+
+#player .controls #play-pause {
+    margin-left: 0;
+    min-width: 5em;
+}
+
+#player .controls #position,
+#player .controls #duration {
+    font-family: monospace;
+}
+
+#player .controls #duration {
+    margin-right: 0;
+}
\ No newline at end of file
diff --git a/web/static/css/style.css b/web/static/css/style.css
index 6dfa4e2dd42..0f0f609ce06 100644
--- a/web/static/css/style.css
+++ b/web/static/css/style.css
@@ -155,6 +155,9 @@ img.opaque:hover {
     margin: 0 auto !important;
     float: none !important;
 }
+.table-bordered tfoot th, .table-bordered tfoot td {
+    border-top: 4px solid #444;
+}
 a.tag-label {
     color: white;
 }
@@ -163,6 +166,7 @@ h4, .h4 {
     font-size: 18px;
 }
 
+/* Windows API categories */
 .filesystem {
     background-color: #ffe3c5;
     color: black;
@@ -207,6 +211,52 @@ h4, .h4 {
     background-color: #f0f2c5;
     color: black;
 }
+/* Linux Syscall Categories */
+.kernel {
+    background-color: #ffc5c5;
+    color: black;
+}
+
+.fs {
+    color: black;
+    background-color: #ffe3c5;
+}
+
+.mm {
+    background-color: #d3ffc5;
+    color: black;
+}
+
+.net {
+    background-color: #c5e0ff;
+    color: black;
+}
+
+.ipc {
+    background-color: #d3e0ff;
+    color: black;
+}
+
+.security {
+    background-color: #ccc5ff;
+    color: black;
+}
+
+.drivers {
+    background-color: #d3c5cc;
+    color: black;
+}
+
+.io_uring {
+    background-color: #f9c5ff;
+    color: black;
+}
+
+.block {
+    background-color: #dfffdf;
+    color: black;
+}
+
 .system {
     background-color: #fffcc5;
     color: black;
@@ -246,6 +296,11 @@ pre {
     word-wrap: break-word;
 }
 
+.extracted-config > table > tbody > tr > td {
+    font-family: monospace;
+    font-size: 87.5%;
+}
+
 .tcp-flow {
     list-style-type: none;
 }
@@ -257,7 +312,7 @@ pre {
 .tcp-out pre {
     padding: 0;
     border: 0;
-    background-color: white;
+    /*background-color: white;*/
     color: #d9534f;
 }
 .tcp-in {
@@ -266,10 +321,10 @@ pre {
 .tcp-in pre {
     padding: 0;
     border: 0;
-    background-color: white;
+    /*background-color: white;*/
     color: #5bc0de;
 }
-#filter-toggle {
+.filter-toggle {
     display: inline-block;
     cursor: pointer;
 }
diff --git a/web/static/django_extensions/css/jquery.autocomplete.css b/web/static/django_extensions/css/jquery.autocomplete.css
new file mode 100644
index 00000000000..0363616ebc9
--- /dev/null
+++ b/web/static/django_extensions/css/jquery.autocomplete.css
@@ -0,0 +1,38 @@
+/**
+ * @fileOverview CSS for jquery-autocomplete, the jQuery Autocompleter
+ * @author <a href="mailto:dylan@dyve.net">Dylan Verheul</a>
+ * @license MIT | GPL | Apache 2.0, see LICENSE.txt
+ * @see https://github.com/dyve/jquery-autocomplete
+ */
+.acResults {
+	padding: 0px;
+	border: 1px solid WindowFrame;
+	background-color: Window;
+	overflow: hidden;
+}
+
+.acResults ul {
+	margin: 0px;
+	padding: 0px;
+	list-style-position: outside;
+	list-style: none;
+}
+
+.acResults ul li {
+	margin: 0px;
+	padding: 2px 5px;
+	cursor: pointer;
+	display: block;
+	font: menu;
+	font-size: 12px;
+	overflow: hidden;
+}
+
+.acLoading {
+	background : url('../img/indicator.gif') right center no-repeat;
+}
+
+.acSelect {
+	background-color: Highlight;
+	color: HighlightText;
+}
diff --git a/web/static/django_extensions/img/indicator.gif b/web/static/django_extensions/img/indicator.gif
new file mode 100644
index 00000000000..085ccaecaf5
Binary files /dev/null and b/web/static/django_extensions/img/indicator.gif differ
diff --git a/web/static/django_extensions/js/jquery.ajaxQueue.js b/web/static/django_extensions/js/jquery.ajaxQueue.js
new file mode 100644
index 00000000000..cd4492c13c4
--- /dev/null
+++ b/web/static/django_extensions/js/jquery.ajaxQueue.js
@@ -0,0 +1,119 @@
+/**
+ * Ajax Queue Plugin
+ *
+ * Homepage: http://jquery.com/plugins/project/ajaxqueue
+ * Documentation: http://docs.jquery.com/AjaxQueue
+ */
+
+/**
+
+<script>
+$(function(){
+	jQuery.ajaxQueue({
+		url: "test.php",
+		success: function(html){ jQuery("ul").append(html); }
+	});
+	jQuery.ajaxQueue({
+		url: "test.php",
+		success: function(html){ jQuery("ul").append(html); }
+	});
+	jQuery.ajaxSync({
+		url: "test.php",
+		success: function(html){ jQuery("ul").append("<b>"+html+"</b>"); }
+	});
+	jQuery.ajaxSync({
+		url: "test.php",
+		success: function(html){ jQuery("ul").append("<b>"+html+"</b>"); }
+	});
+});
+</script>
+<ul style="position: absolute; top: 5px; right: 5px;"></ul>
+
+ */
+/*
+ * Queued Ajax requests.
+ * A new Ajax request won't be started until the previous queued
+ * request has finished.
+ */
+
+/*
+ * Synced Ajax requests.
+ * The Ajax request will happen as soon as you call this method, but
+ * the callbacks (success/error/complete) won't fire until all previous
+ * synced requests have been completed.
+ */
+
+
+(function(jQuery) {
+
+	var ajax = jQuery.ajax;
+
+	var pendingRequests = {};
+
+	var synced = [];
+	var syncedData = [];
+
+	jQuery.ajax = function(settings) {
+		// create settings for compatibility with ajaxSetup
+		settings = jQuery.extend(settings, jQuery.extend({}, jQuery.ajaxSettings, settings));
+
+		var port = settings.port;
+
+		switch(settings.mode) {
+		case "abort":
+			if ( pendingRequests[port] ) {
+				pendingRequests[port].abort();
+			}
+			return pendingRequests[port] = ajax.apply(this, arguments);
+		case "queue":
+			var _old = settings.complete;
+			settings.complete = function(){
+				if ( _old )
+					_old.apply( this, arguments );
+				jQuery([ajax]).dequeue("ajax" + port );;
+			};
+
+			jQuery([ ajax ]).queue("ajax" + port, function(){
+				ajax( settings );
+			});
+			return;
+		case "sync":
+			var pos = synced.length;
+
+			synced[ pos ] = {
+				error: settings.error,
+				success: settings.success,
+				complete: settings.complete,
+				done: false
+			};
+
+			syncedData[ pos ] = {
+				error: [],
+				success: [],
+				complete: []
+			};
+
+			settings.error = function(){ syncedData[ pos ].error = arguments; };
+			settings.success = function(){ syncedData[ pos ].success = arguments; };
+			settings.complete = function(){
+				syncedData[ pos ].complete = arguments;
+				synced[ pos ].done = true;
+
+				if ( pos == 0 || !synced[ pos-1 ] )
+					for ( var i = pos; i < synced.length && synced[i].done; i++ ) {
+						if ( synced[i].error ) synced[i].error.apply( jQuery, syncedData[i].error );
+						if ( synced[i].success ) synced[i].success.apply( jQuery, syncedData[i].success );
+						if ( synced[i].complete ) synced[i].complete.apply( jQuery, syncedData[i].complete );
+
+						synced[i] = null;
+						syncedData[i] = null;
+					}
+			};
+		}
+		return ajax.apply(this, arguments);
+	};
+
+})((typeof window.jQuery == 'undefined' && typeof window.django != 'undefined')
+  ? django.jQuery
+  : jQuery
+);
diff --git a/web/static/django_extensions/js/jquery.autocomplete.js b/web/static/django_extensions/js/jquery.autocomplete.js
new file mode 100644
index 00000000000..77c1db60a8f
--- /dev/null
+++ b/web/static/django_extensions/js/jquery.autocomplete.js
@@ -0,0 +1,1152 @@
+/**
+ * @fileOverview jquery-autocomplete, the jQuery Autocompleter
+ * @author <a href="mailto:dylan@dyve.net">Dylan Verheul</a>
+ * @version 2.4.4
+ * @requires jQuery 1.6+
+ * @license MIT | GPL | Apache 2.0, see LICENSE.txt
+ * @see https://github.com/dyve/jquery-autocomplete
+ */
+(function($) {
+    "use strict";
+
+    /**
+     * jQuery autocomplete plugin
+     * @param {object|string} options
+     * @returns (object} jQuery object
+     */
+    $.fn.autocomplete = function(options) {
+        var url;
+        if (arguments.length > 1) {
+            url = options;
+            options = arguments[1];
+            options.url = url;
+        } else if (typeof options === 'string') {
+            url = options;
+            options = { url: url };
+        }
+        var opts = $.extend({}, $.fn.autocomplete.defaults, options);
+        return this.each(function() {
+            var $this = $(this);
+            $this.data('autocompleter', new $.Autocompleter(
+                $this,
+                $.meta ? $.extend({}, opts, $this.data()) : opts
+            ));
+        });
+    };
+
+    /**
+     * Store default options
+     * @type {object}
+     */
+    $.fn.autocomplete.defaults = {
+        inputClass: 'acInput',
+        loadingClass: 'acLoading',
+        resultsClass: 'acResults',
+        selectClass: 'acSelect',
+        queryParamName: 'q',
+        extraParams: {},
+        remoteDataType: false,
+        lineSeparator: '\n',
+        cellSeparator: '|',
+        minChars: 2,
+        maxItemsToShow: 10,
+        delay: 400,
+        useCache: true,
+        maxCacheLength: 10,
+        matchSubset: true,
+        matchCase: false,
+        matchInside: true,
+        mustMatch: false,
+        selectFirst: false,
+        selectOnly: false,
+        showResult: null,
+        preventDefaultReturn: 1,
+        preventDefaultTab: 0,
+        autoFill: false,
+        filterResults: true,
+        filter: true,
+        sortResults: true,
+        sortFunction: null,
+        onItemSelect: null,
+        onNoMatch: null,
+        onFinish: null,
+        matchStringConverter: null,
+        beforeUseConverter: null,
+        autoWidth: 'min-width',
+        useDelimiter: false,
+        delimiterChar: ',',
+        delimiterKeyCode: 188,
+        processData: null,
+        onError: null,
+        enabled: true
+    };
+
+    /**
+     * Sanitize result
+     * @param {Object} result
+     * @returns {Object} object with members value (String) and data (Object)
+     * @private
+     */
+    var sanitizeResult = function(result) {
+        var value, data;
+        var type = typeof result;
+        if (type === 'string') {
+            value = result;
+            data = {};
+        } else if ($.isArray(result)) {
+            value = result[0];
+            data = result.slice(1);
+        } else if (type === 'object') {
+            value = result.value;
+            data = result.data;
+        }
+        value = String(value);
+        if (typeof data !== 'object') {
+            data = {};
+        }
+        return {
+            value: value,
+            data: data
+        };
+    };
+
+    /**
+     * Sanitize integer
+     * @param {mixed} value
+     * @param {Object} options
+     * @returns {Number} integer
+     * @private
+     */
+    var sanitizeInteger = function(value, stdValue, options) {
+        var num = parseInt(value, 10);
+        options = options || {};
+        if (isNaN(num) || (options.min && num < options.min)) {
+            num = stdValue;
+        }
+        return num;
+    };
+
+    /**
+     * Create partial url for a name/value pair
+     */
+    var makeUrlParam = function(name, value) {
+        return [name, encodeURIComponent(value)].join('=');
+    };
+
+    /**
+     * Build an url
+     * @param {string} url Base url
+     * @param {object} [params] Dictionary of parameters
+     */
+    var makeUrl = function(url, params) {
+        var urlAppend = [];
+        $.each(params, function(index, value) {
+            urlAppend.push(makeUrlParam(index, value));
+        });
+        if (urlAppend.length) {
+            url += url.indexOf('?') === -1 ? '?' : '&';
+            url += urlAppend.join('&');
+        }
+        return url;
+    };
+
+    /**
+     * Default sort filter
+     * @param {object} a
+     * @param {object} b
+     * @param {boolean} matchCase
+     * @returns {number}
+     */
+    var sortValueAlpha = function(a, b, matchCase) {
+        a = String(a.value);
+        b = String(b.value);
+        if (!matchCase) {
+            a = a.toLowerCase();
+            b = b.toLowerCase();
+        }
+        if (a > b) {
+            return 1;
+        }
+        if (a < b) {
+            return -1;
+        }
+        return 0;
+    };
+
+    /**
+     * Parse data received in text format
+     * @param {string} text Plain text input
+     * @param {string} lineSeparator String that separates lines
+     * @param {string} cellSeparator String that separates cells
+     * @returns {array} Array of autocomplete data objects
+     */
+    var plainTextParser = function(text, lineSeparator, cellSeparator) {
+        var results = [];
+        var i, j, data, line, value, lines;
+        // Be nice, fix linebreaks before splitting on lineSeparator
+        lines = String(text).replace('\r\n', '\n').split(lineSeparator);
+        for (i = 0; i < lines.length; i++) {
+            line = lines[i].split(cellSeparator);
+            data = [];
+            for (j = 0; j < line.length; j++) {
+                data.push(decodeURIComponent(line[j]));
+            }
+            value = data.shift();
+            results.push({ value: value, data: data });
+        }
+        return results;
+    };
+
+    /**
+     * Autocompleter class
+     * @param {object} $elem jQuery object with one input tag
+     * @param {object} options Settings
+     * @constructor
+     */
+    $.Autocompleter = function($elem, options) {
+
+        /**
+         * Assert parameters
+         */
+        if (!$elem || !($elem instanceof $) || $elem.length !== 1 || $elem.get(0).tagName.toUpperCase() !== 'INPUT') {
+            throw new Error('Invalid parameter for jquery.Autocompleter, jQuery object with one element with INPUT tag expected.');
+        }
+
+        /**
+         * @constant Link to this instance
+         * @type object
+         * @private
+         */
+        var self = this;
+
+        /**
+         * @property {object} Options for this instance
+         * @public
+         */
+        this.options = options;
+
+        /**
+         * @property object Cached data for this instance
+         * @private
+         */
+        this.cacheData_ = {};
+
+        /**
+         * @property {number} Number of cached data items
+         * @private
+         */
+        this.cacheLength_ = 0;
+
+        /**
+         * @property {string} Class name to mark selected item
+         * @private
+         */
+        this.selectClass_ = 'jquery-autocomplete-selected-item';
+
+        /**
+         * @property {number} Handler to activation timeout
+         * @private
+         */
+        this.keyTimeout_ = null;
+
+        /**
+         * @property {number} Handler to finish timeout
+         * @private
+         */
+        this.finishTimeout_ = null;
+
+        /**
+         * @property {number} Last key pressed in the input field (store for behavior)
+         * @private
+         */
+        this.lastKeyPressed_ = null;
+
+        /**
+         * @property {string} Last value processed by the autocompleter
+         * @private
+         */
+        this.lastProcessedValue_ = null;
+
+        /**
+         * @property {string} Last value selected by the user
+         * @private
+         */
+        this.lastSelectedValue_ = null;
+
+        /**
+         * @property {boolean} Is this autocompleter active (showing results)?
+         * @see showResults
+         * @private
+         */
+        this.active_ = false;
+
+        /**
+         * @property {boolean} Is this autocompleter allowed to finish on blur?
+         * @private
+         */
+        this.finishOnBlur_ = true;
+
+        /**
+         * Sanitize options
+         */
+        this.options.minChars = sanitizeInteger(this.options.minChars, $.fn.autocomplete.defaults.minChars, { min: 0 });
+        this.options.maxItemsToShow = sanitizeInteger(this.options.maxItemsToShow, $.fn.autocomplete.defaults.maxItemsToShow, { min: 0 });
+        this.options.maxCacheLength = sanitizeInteger(this.options.maxCacheLength, $.fn.autocomplete.defaults.maxCacheLength, { min: 1 });
+        this.options.delay = sanitizeInteger(this.options.delay, $.fn.autocomplete.defaults.delay, { min: 0 });
+        if (this.options.preventDefaultReturn != 2) {
+            this.options.preventDefaultReturn = this.options.preventDefaultReturn ? 1 : 0;
+        }
+        if (this.options.preventDefaultTab != 2) {
+            this.options.preventDefaultTab = this.options.preventDefaultTab ? 1 : 0;
+        }
+
+        /**
+         * Init DOM elements repository
+         */
+        this.dom = {};
+
+        /**
+         * Store the input element we're attached to in the repository
+         */
+        this.dom.$elem = $elem;
+
+        /**
+         * Switch off the native autocomplete and add the input class
+         */
+        this.dom.$elem.attr('autocomplete', 'off').addClass(this.options.inputClass);
+
+        /**
+         * Create DOM element to hold results, and force absolute position
+         */
+        this.dom.$results = $('<div></div>').hide().addClass(this.options.resultsClass).css({
+            position: 'absolute'
+        });
+        $('body').append(this.dom.$results);
+
+        /**
+         * Attach keyboard monitoring to $elem
+         */
+        $elem.keydown(function(e) {
+            self.lastKeyPressed_ = e.keyCode;
+            switch(self.lastKeyPressed_) {
+
+                case self.options.delimiterKeyCode: // comma = 188
+                    if (self.options.useDelimiter && self.active_) {
+                        self.selectCurrent();
+                    }
+                    break;
+
+                // ignore navigational & special keys
+                case 35: // end
+                case 36: // home
+                case 16: // shift
+                case 17: // ctrl
+                case 18: // alt
+                case 37: // left
+                case 39: // right
+                    break;
+
+                case 38: // up
+                    e.preventDefault();
+                    if (self.active_) {
+                        self.focusPrev();
+                    } else {
+                        self.activate();
+                    }
+                    return false;
+
+                case 40: // down
+                    e.preventDefault();
+                    if (self.active_) {
+                        self.focusNext();
+                    } else {
+                        self.activate();
+                    }
+                    return false;
+
+                case 9: // tab
+                    if (self.active_) {
+                        self.selectCurrent();
+                        if (self.options.preventDefaultTab) {
+                            e.preventDefault();
+                            return false;
+                        }
+                    }
+                    if (self.options.preventDefaultTab === 2) {
+                        e.preventDefault();
+                        return false;
+                    }
+                break;
+
+                case 13: // return
+                    if (self.active_) {
+                        self.selectCurrent();
+                        if (self.options.preventDefaultReturn) {
+                            e.preventDefault();
+                            return false;
+                        }
+                    }
+                    if (self.options.preventDefaultReturn === 2) {
+                        e.preventDefault();
+                        return false;
+                    }
+                break;
+
+                case 27: // escape
+                    if (self.active_) {
+                        e.preventDefault();
+                        self.deactivate(true);
+                        return false;
+                    }
+                break;
+
+                default:
+                    self.activate();
+
+            }
+        });
+
+        /**
+         * Attach paste event listener because paste may occur much later then keydown or even without a keydown at all
+         */
+        $elem.on('paste', function() {
+            self.activate();
+        });
+
+        /**
+         * Finish on blur event
+         * Use a timeout because instant blur gives race conditions
+         */
+        var onBlurFunction = function() {
+            self.deactivate(true);
+        }
+        $elem.blur(function() {
+            if (self.finishOnBlur_) {
+                self.finishTimeout_ = setTimeout(onBlurFunction, 200);
+            }
+        });
+        /**
+         * Catch a race condition on form submit
+         */
+        $elem.parents('form').on('submit', onBlurFunction);
+
+    };
+
+    /**
+     * Position output DOM elements
+     * @private
+     */
+    $.Autocompleter.prototype.position = function() {
+        var offset = this.dom.$elem.offset();
+        var height = this.dom.$results.outerHeight();
+        var totalHeight = $(window).outerHeight();
+        var inputBottom = offset.top + this.dom.$elem.outerHeight();
+        var bottomIfDown = inputBottom + height;
+        // Set autocomplete results at the bottom of input
+        var position = {top: inputBottom, left: offset.left};
+        if (bottomIfDown > totalHeight) {
+            // Try to set autocomplete results at the top of input
+            var topIfUp = offset.top - height;
+            if (topIfUp >= 0) {
+                position.top = topIfUp;
+            }
+        }
+        this.dom.$results.css(position);
+    };
+
+    /**
+     * Read from cache
+     * @private
+     */
+    $.Autocompleter.prototype.cacheRead = function(filter) {
+        var filterLength, searchLength, search, maxPos, pos;
+        if (this.options.useCache) {
+            filter = String(filter);
+            filterLength = filter.length;
+            if (this.options.matchSubset) {
+                searchLength = 1;
+            } else {
+                searchLength = filterLength;
+            }
+            while (searchLength <= filterLength) {
+                if (this.options.matchInside) {
+                    maxPos = filterLength - searchLength;
+                } else {
+                    maxPos = 0;
+                }
+                pos = 0;
+                while (pos <= maxPos) {
+                    search = filter.substr(0, searchLength);
+                    if (this.cacheData_[search] !== undefined) {
+                        return this.cacheData_[search];
+                    }
+                    pos++;
+                }
+                searchLength++;
+            }
+        }
+        return false;
+    };
+
+    /**
+     * Write to cache
+     * @private
+     */
+    $.Autocompleter.prototype.cacheWrite = function(filter, data) {
+        if (this.options.useCache) {
+            if (this.cacheLength_ >= this.options.maxCacheLength) {
+                this.cacheFlush();
+            }
+            filter = String(filter);
+            if (this.cacheData_[filter] !== undefined) {
+                this.cacheLength_++;
+            }
+            this.cacheData_[filter] = data;
+            return this.cacheData_[filter];
+        }
+        return false;
+    };
+
+    /**
+     * Flush cache
+     * @public
+     */
+    $.Autocompleter.prototype.cacheFlush = function() {
+        this.cacheData_ = {};
+        this.cacheLength_ = 0;
+    };
+
+    /**
+     * Call hook
+     * Note that all called hooks are passed the autocompleter object
+     * @param {string} hook
+     * @param data
+     * @returns Result of called hook, false if hook is undefined
+     */
+    $.Autocompleter.prototype.callHook = function(hook, data) {
+        var f = this.options[hook];
+        if (f && $.isFunction(f)) {
+            return f(data, this);
+        }
+        return false;
+    };
+
+    /**
+     * Set timeout to activate autocompleter
+     */
+    $.Autocompleter.prototype.activate = function() {
+        if (!this.options.enabled) return;
+        var self = this;
+        if (this.keyTimeout_) {
+            clearTimeout(this.keyTimeout_);
+        }
+        this.keyTimeout_ = setTimeout(function() {
+            self.activateNow();
+        }, this.options.delay);
+    };
+
+    /**
+     * Activate autocompleter immediately
+     */
+    $.Autocompleter.prototype.activateNow = function() {
+        var value = this.beforeUseConverter(this.dom.$elem.val());
+        if (value !== this.lastProcessedValue_ && value !== this.lastSelectedValue_) {
+            this.fetchData(value);
+        }
+    };
+
+    /**
+     * Get autocomplete data for a given value
+     * @param {string} value Value to base autocompletion on
+     * @private
+     */
+    $.Autocompleter.prototype.fetchData = function(value) {
+        var self = this;
+        var processResults = function(results, filter) {
+            if (self.options.processData) {
+                results = self.options.processData(results);
+            }
+            self.showResults(self.filterResults(results, filter), filter);
+        };
+        this.lastProcessedValue_ = value;
+        if (value.length < this.options.minChars) {
+            processResults([], value);
+        } else if (this.options.data) {
+            processResults(this.options.data, value);
+        } else {
+            this.fetchRemoteData(value, function(remoteData) {
+                processResults(remoteData, value);
+            });
+        }
+    };
+
+    /**
+     * Get remote autocomplete data for a given value
+     * @param {string} filter The filter to base remote data on
+     * @param {function} callback The function to call after data retrieval
+     * @private
+     */
+    $.Autocompleter.prototype.fetchRemoteData = function(filter, callback) {
+        var data = this.cacheRead(filter);
+        if (data) {
+            callback(data);
+        } else {
+            var self = this;
+            var dataType = self.options.remoteDataType === 'json' ? 'json' : 'text';
+            var ajaxCallback = function(data) {
+                var parsed = false;
+                if (data !== false) {
+                    parsed = self.parseRemoteData(data);
+                    self.cacheWrite(filter, parsed);
+                }
+                self.dom.$elem.removeClass(self.options.loadingClass);
+                callback(parsed);
+            };
+            this.dom.$elem.addClass(this.options.loadingClass);
+            $.ajax({
+                url: this.makeUrl(filter),
+                success: ajaxCallback,
+                error: function(jqXHR, textStatus, errorThrown) {
+                    if($.isFunction(self.options.onError)) {
+                        self.options.onError(jqXHR, textStatus, errorThrown);
+                    } else {
+                      ajaxCallback(false);
+                    }
+                },
+                dataType: dataType
+            });
+        }
+    };
+
+    /**
+     * Create or update an extra parameter for the remote request
+     * @param {string} name Parameter name
+     * @param {string} value Parameter value
+     * @public
+     */
+    $.Autocompleter.prototype.setExtraParam = function(name, value) {
+        var index = $.trim(String(name));
+        if (index) {
+            if (!this.options.extraParams) {
+                this.options.extraParams = {};
+            }
+            if (this.options.extraParams[index] !== value) {
+                this.options.extraParams[index] = value;
+                this.cacheFlush();
+            }
+        }
+
+        return this;
+    };
+
+    /**
+     * Build the url for a remote request
+     * If options.queryParamName === false, append query to url instead of using a GET parameter
+     * @param {string} param The value parameter to pass to the backend
+     * @returns {string} The finished url with parameters
+     */
+    $.Autocompleter.prototype.makeUrl = function(param) {
+        var self = this;
+        var url = this.options.url;
+        var params = $.extend({}, this.options.extraParams);
+
+        if (this.options.queryParamName === false) {
+            url += encodeURIComponent(param);
+        } else {
+            params[this.options.queryParamName] = param;
+        }
+
+        return makeUrl(url, params);
+    };
+
+    /**
+     * Parse data received from server
+     * @param remoteData Data received from remote server
+     * @returns {array} Parsed data
+     */
+    $.Autocompleter.prototype.parseRemoteData = function(remoteData) {
+        var remoteDataType;
+        var data = remoteData;
+        if (this.options.remoteDataType === 'json') {
+            remoteDataType = typeof(remoteData);
+            switch (remoteDataType) {
+                case 'object':
+                    data = remoteData;
+                    break;
+                case 'string':
+                    data = $.parseJSON(remoteData);
+                    break;
+                default:
+                    throw new Error("Unexpected remote data type: " + remoteDataType);
+            }
+            return data;
+        }
+        return plainTextParser(data, this.options.lineSeparator, this.options.cellSeparator);
+    };
+
+    /**
+     * Default filter for results
+     * @param {Object} result
+     * @param {String} filter
+     * @returns {boolean} Include this result
+     * @private
+     */
+    $.Autocompleter.prototype.defaultFilter = function(result, filter) {
+        if (!result.value) {
+            return false;
+        }
+        if (this.options.filterResults) {
+            var pattern = this.matchStringConverter(filter);
+            var testValue = this.matchStringConverter(result.value);
+            if (!this.options.matchCase) {
+                pattern = pattern.toLowerCase();
+                testValue = testValue.toLowerCase();
+            }
+            var patternIndex = testValue.indexOf(pattern);
+            if (this.options.matchInside) {
+                return patternIndex > -1;
+            } else {
+                return patternIndex === 0;
+            }
+        }
+        return true;
+    };
+
+    /**
+     * Filter result
+     * @param {Object} result
+     * @param {String} filter
+     * @returns {boolean} Include this result
+     * @private
+     */
+    $.Autocompleter.prototype.filterResult = function(result, filter) {
+        // No filter
+        if (this.options.filter === false) {
+            return true;
+        }
+        // Custom filter
+        if ($.isFunction(this.options.filter)) {
+            return this.options.filter(result, filter);
+        }
+        // Default filter
+        return this.defaultFilter(result, filter);
+    };
+
+    /**
+     * Filter results
+     * @param results
+     * @param filter
+     */
+    $.Autocompleter.prototype.filterResults = function(results, filter) {
+        var filtered = [];
+        var i, result;
+
+        for (i = 0; i < results.length; i++) {
+            result = sanitizeResult(results[i]);
+            if (this.filterResult(result, filter)) {
+                filtered.push(result);
+            }
+        }
+        if (this.options.sortResults) {
+            filtered = this.sortResults(filtered, filter);
+        }
+        if (this.options.maxItemsToShow > 0 && this.options.maxItemsToShow < filtered.length) {
+            filtered.length = this.options.maxItemsToShow;
+        }
+        return filtered;
+    };
+
+    /**
+     * Sort results
+     * @param results
+     * @param filter
+     */
+    $.Autocompleter.prototype.sortResults = function(results, filter) {
+        var self = this;
+        var sortFunction = this.options.sortFunction;
+        if (!$.isFunction(sortFunction)) {
+            sortFunction = function(a, b, f) {
+                return sortValueAlpha(a, b, self.options.matchCase);
+            };
+        }
+        results.sort(function(a, b) {
+            return sortFunction(a, b, filter, self.options);
+        });
+        return results;
+    };
+
+    /**
+     * Convert string before matching
+     * @param s
+     * @param a
+     * @param b
+     */
+    $.Autocompleter.prototype.matchStringConverter = function(s, a, b) {
+        var converter = this.options.matchStringConverter;
+        if ($.isFunction(converter)) {
+            s = converter(s, a, b);
+        }
+        return s;
+    };
+
+    /**
+     * Convert string before use
+     * @param {String} s
+     */
+    $.Autocompleter.prototype.beforeUseConverter = function(s) {
+        s = this.getValue(s);
+        var converter = this.options.beforeUseConverter;
+        if ($.isFunction(converter)) {
+            s = converter(s);
+        }
+        return s;
+    };
+
+    /**
+     * Enable finish on blur event
+     */
+    $.Autocompleter.prototype.enableFinishOnBlur = function() {
+        this.finishOnBlur_ = true;
+    };
+
+    /**
+     * Disable finish on blur event
+     */
+    $.Autocompleter.prototype.disableFinishOnBlur = function() {
+        this.finishOnBlur_ = false;
+    };
+
+    /**
+     * Create a results item (LI element) from a result
+     * @param result
+     */
+    $.Autocompleter.prototype.createItemFromResult = function(result) {
+        var self = this;
+        var $li = $('<li/>');
+        $li.html(this.showResult(result.value, result.data));
+        $li.data({value: result.value, data: result.data})
+            .click(function() {
+                self.selectItem($li);
+            })
+            .mousedown(self.disableFinishOnBlur)
+            .mouseup(self.enableFinishOnBlur)
+        ;
+        return $li;
+    };
+
+    /**
+     * Get all items from the results list
+     * @param result
+     */
+    $.Autocompleter.prototype.getItems = function() {
+        return $('>ul>li', this.dom.$results);
+    };
+
+    /**
+     * Show all results
+     * @param results
+     * @param filter
+     */
+    $.Autocompleter.prototype.showResults = function(results, filter) {
+        var numResults = results.length;
+        var self = this;
+        var $ul = $('<ul></ul>');
+        var i, result, $li, autoWidth, first = false, $first = false;
+
+        if (numResults) {
+            for (i = 0; i < numResults; i++) {
+                result = results[i];
+                $li = this.createItemFromResult(result);
+                $ul.append($li);
+                if (first === false) {
+                    first = String(result.value);
+                    $first = $li;
+                    $li.addClass(this.options.firstItemClass);
+                }
+                if (i === numResults - 1) {
+                    $li.addClass(this.options.lastItemClass);
+                }
+            }
+
+            this.dom.$results.html($ul).show();
+
+            // Always recalculate position since window size or
+            // input element location may have changed.
+            this.position();
+            if (this.options.autoWidth) {
+                autoWidth = this.dom.$elem.outerWidth() - this.dom.$results.outerWidth() + this.dom.$results.width();
+                this.dom.$results.css(this.options.autoWidth, autoWidth);
+            }
+            this.getItems().hover(
+                function() { self.focusItem(this); },
+                function() { /* void */ }
+            );
+            if (this.autoFill(first, filter) || this.options.selectFirst || (this.options.selectOnly && numResults === 1)) {
+                this.focusItem($first);
+            }
+            this.active_ = true;
+        } else {
+            this.hideResults();
+            this.active_ = false;
+        }
+    };
+
+    $.Autocompleter.prototype.showResult = function(value, data) {
+        if ($.isFunction(this.options.showResult)) {
+            return this.options.showResult(value, data);
+        } else {
+            return $('<p></p>').text(value).html();
+        }
+    };
+
+    $.Autocompleter.prototype.autoFill = function(value, filter) {
+        var lcValue, lcFilter, valueLength, filterLength;
+        if (this.options.autoFill && this.lastKeyPressed_ !== 8) {
+            lcValue = String(value).toLowerCase();
+            lcFilter = String(filter).toLowerCase();
+            valueLength = value.length;
+            filterLength = filter.length;
+            if (lcValue.substr(0, filterLength) === lcFilter) {
+                var d = this.getDelimiterOffsets();
+                var pad = d.start ? ' ' : ''; // if there is a preceding delimiter
+                this.setValue( pad + value );
+                var start = filterLength + d.start + pad.length;
+                var end = valueLength + d.start + pad.length;
+                this.selectRange(start, end);
+                return true;
+            }
+        }
+        return false;
+    };
+
+    $.Autocompleter.prototype.focusNext = function() {
+        this.focusMove(+1);
+    };
+
+    $.Autocompleter.prototype.focusPrev = function() {
+        this.focusMove(-1);
+    };
+
+    $.Autocompleter.prototype.focusMove = function(modifier) {
+        var $items = this.getItems();
+        modifier = sanitizeInteger(modifier, 0);
+        if (modifier) {
+            for (var i = 0; i < $items.length; i++) {
+                if ($($items[i]).hasClass(this.selectClass_)) {
+                    this.focusItem(i + modifier);
+                    return;
+                }
+            }
+        }
+        this.focusItem(0);
+    };
+
+    $.Autocompleter.prototype.focusItem = function(item) {
+        var $item, $items = this.getItems();
+        if ($items.length) {
+            $items.removeClass(this.selectClass_).removeClass(this.options.selectClass);
+            if (typeof item === 'number') {
+                if (item < 0) {
+                    item = 0;
+                } else if (item >= $items.length) {
+                    item = $items.length - 1;
+                }
+                $item = $($items[item]);
+            } else {
+                $item = $(item);
+            }
+            if ($item) {
+                $item.addClass(this.selectClass_).addClass(this.options.selectClass);
+            }
+        }
+    };
+
+    $.Autocompleter.prototype.selectCurrent = function() {
+        var $item = $('li.' + this.selectClass_, this.dom.$results);
+        if ($item.length === 1) {
+            this.selectItem($item);
+        } else {
+            this.deactivate(false);
+        }
+    };
+
+    $.Autocompleter.prototype.selectItem = function($li) {
+        var value = $li.data('value');
+        var data = $li.data('data');
+        var displayValue = this.displayValue(value, data);
+        var processedDisplayValue = this.beforeUseConverter(displayValue);
+        this.lastProcessedValue_ = processedDisplayValue;
+        this.lastSelectedValue_ = processedDisplayValue;
+        var d = this.getDelimiterOffsets();
+        var delimiter = this.options.delimiterChar;
+        var elem = this.dom.$elem;
+        var extraCaretPos = 0;
+        if ( this.options.useDelimiter ) {
+            // if there is a preceding delimiter, add a space after the delimiter
+            if ( elem.val().substring(d.start-1, d.start) == delimiter && delimiter != ' ' ) {
+                displayValue = ' ' + displayValue;
+            }
+            // if there is not already a delimiter trailing this value, add it
+            if ( elem.val().substring(d.end, d.end+1) != delimiter && this.lastKeyPressed_ != this.options.delimiterKeyCode ) {
+                displayValue = displayValue + delimiter;
+            } else {
+                // move the cursor after the existing trailing delimiter
+                extraCaretPos = 1;
+            }
+        }
+        this.setValue(displayValue);
+        this.setCaret(d.start + displayValue.length + extraCaretPos);
+        this.callHook('onItemSelect', { value: value, data: data });
+        this.deactivate(true);
+        elem.focus();
+    };
+
+    $.Autocompleter.prototype.displayValue = function(value, data) {
+        if ($.isFunction(this.options.displayValue)) {
+            return this.options.displayValue(value, data);
+        }
+        return value;
+    };
+
+    $.Autocompleter.prototype.hideResults = function() {
+        this.dom.$results.hide();
+    };
+
+    $.Autocompleter.prototype.deactivate = function(finish) {
+        if (this.finishTimeout_) {
+            clearTimeout(this.finishTimeout_);
+        }
+        if (this.keyTimeout_) {
+            clearTimeout(this.keyTimeout_);
+        }
+        if (finish) {
+            if (this.lastProcessedValue_ !== this.lastSelectedValue_) {
+                if (this.options.mustMatch) {
+                    this.setValue('');
+                }
+                this.callHook('onNoMatch');
+            }
+            if (this.active_) {
+                this.callHook('onFinish');
+            }
+            this.lastKeyPressed_ = null;
+            this.lastProcessedValue_ = null;
+            this.lastSelectedValue_ = null;
+            this.active_ = false;
+        }
+        this.hideResults();
+    };
+
+    $.Autocompleter.prototype.selectRange = function(start, end) {
+        var input = this.dom.$elem.get(0);
+        if (input.setSelectionRange) {
+            input.focus();
+            input.setSelectionRange(start, end);
+        } else if (input.createTextRange) {
+            var range = input.createTextRange();
+            range.collapse(true);
+            range.moveEnd('character', end);
+            range.moveStart('character', start);
+            range.select();
+        }
+    };
+
+    /**
+     * Move caret to position
+     * @param {Number} pos
+     */
+    $.Autocompleter.prototype.setCaret = function(pos) {
+        this.selectRange(pos, pos);
+    };
+
+    /**
+     * Get caret position
+     */
+    $.Autocompleter.prototype.getCaret = function() {
+        var $elem = this.dom.$elem;
+        var elem = $elem[0];
+        var val, selection, range, start, end, stored_range;
+        if (elem.createTextRange) { // IE
+            selection = document.selection;
+            if (elem.tagName.toLowerCase() != 'textarea') {
+                val = $elem.val();
+                range = selection.createRange().duplicate();
+                range.moveEnd('character', val.length);
+                if (range.text === '') {
+                    start = val.length;
+                } else {
+                    start = val.lastIndexOf(range.text);
+                }
+                range = selection.createRange().duplicate();
+                range.moveStart('character', -val.length);
+                end = range.text.length;
+            } else {
+                range = selection.createRange();
+                stored_range = range.duplicate();
+                stored_range.moveToElementText(elem);
+                stored_range.setEndPoint('EndToEnd', range);
+                start = stored_range.text.length - range.text.length;
+                end = start + range.text.length;
+            }
+        } else {
+            start = $elem[0].selectionStart;
+            end = $elem[0].selectionEnd;
+        }
+        return {
+            start: start,
+            end: end
+        };
+    };
+
+    /**
+     * Set the value that is currently being autocompleted
+     * @param {String} value
+     */
+    $.Autocompleter.prototype.setValue = function(value) {
+        if ( this.options.useDelimiter ) {
+            // set the substring between the current delimiters
+            var val = this.dom.$elem.val();
+            var d = this.getDelimiterOffsets();
+            var preVal = val.substring(0, d.start);
+            var postVal = val.substring(d.end);
+            value = preVal + value + postVal;
+        }
+        this.dom.$elem.val(value);
+    };
+
+    /**
+     * Get the value currently being autocompleted
+     * @param {String} value
+     */
+    $.Autocompleter.prototype.getValue = function(value) {
+        if ( this.options.useDelimiter ) {
+            var d = this.getDelimiterOffsets();
+            return value.substring(d.start, d.end).trim();
+        } else {
+            return value;
+        }
+    };
+
+    /**
+     * Get the offsets of the value currently being autocompleted
+     */
+    $.Autocompleter.prototype.getDelimiterOffsets = function() {
+        var val = this.dom.$elem.val();
+        if ( this.options.useDelimiter ) {
+            var preCaretVal = val.substring(0, this.getCaret().start);
+            var start = preCaretVal.lastIndexOf(this.options.delimiterChar) + 1;
+            var postCaretVal = val.substring(this.getCaret().start);
+            var end = postCaretVal.indexOf(this.options.delimiterChar);
+            if ( end == -1 ) end = val.length;
+            end += this.getCaret().start;
+        } else {
+            start = 0;
+            end = val.length;
+        }
+        return {
+            start: start,
+            end: end
+        };
+    };
+
+})((typeof window.jQuery == 'undefined' && typeof window.django != 'undefined')? django.jQuery : jQuery);
diff --git a/web/static/django_extensions/js/jquery.bgiframe.js b/web/static/django_extensions/js/jquery.bgiframe.js
new file mode 100644
index 00000000000..5c3735d6859
--- /dev/null
+++ b/web/static/django_extensions/js/jquery.bgiframe.js
@@ -0,0 +1,39 @@
+/*! Copyright (c) 2010 Brandon Aaron (http://brandonaaron.net)
+ * Licensed under the MIT License (LICENSE.txt).
+ *
+ * Version 2.1.2
+ */
+
+(function($){
+
+$.fn.bgiframe = ($.browser.msie && /msie 6\.0/i.test(navigator.userAgent) ? function(s) {
+    s = $.extend({
+        top     : 'auto', // auto == .currentStyle.borderTopWidth
+        left    : 'auto', // auto == .currentStyle.borderLeftWidth
+        width   : 'auto', // auto == offsetWidth
+        height  : 'auto', // auto == offsetHeight
+        opacity : true,
+        src     : 'javascript:false;'
+    }, s);
+    var html = '<iframe class="bgiframe"frameborder="0"tabindex="-1"src="'+s.src+'"'+
+                   'style="display:block;position:absolute;z-index:-1;'+
+                       (s.opacity !== false?'filter:Alpha(Opacity=\'0\');':'')+
+                       'top:'+(s.top=='auto'?'expression(((parseInt(this.parentNode.currentStyle.borderTopWidth)||0)*-1)+\'px\')':prop(s.top))+';'+
+                       'left:'+(s.left=='auto'?'expression(((parseInt(this.parentNode.currentStyle.borderLeftWidth)||0)*-1)+\'px\')':prop(s.left))+';'+
+                       'width:'+(s.width=='auto'?'expression(this.parentNode.offsetWidth+\'px\')':prop(s.width))+';'+
+                       'height:'+(s.height=='auto'?'expression(this.parentNode.offsetHeight+\'px\')':prop(s.height))+';'+
+                '"/>';
+    return this.each(function() {
+        if ( $(this).children('iframe.bgiframe').length === 0 )
+            this.insertBefore( document.createElement(html), this.firstChild );
+    });
+} : function() { return this; });
+
+// old alias
+$.fn.bgIframe = $.fn.bgiframe;
+
+function prop(n) {
+    return n && n.constructor === Number ? n + 'px' : n;
+}
+
+})((typeof window.jQuery == 'undefined' && typeof window.django != 'undefined') ? django.jQuery : jQuery);
diff --git a/web/static/generated/README b/web/static/generated/README
index 29f5eec76d6..9f1cb2a1715 100644
--- a/web/static/generated/README
+++ b/web/static/generated/README
@@ -1 +1 @@
-Statistics images generated by server are stored here
\ No newline at end of file
+Statistics images generated by server are stored here
diff --git a/web/static/js/bootstrap-fileupload.js b/web/static/js/bootstrap-fileupload.js
index abb9fc69353..83abe95d39d 100644
--- a/web/static/js/bootstrap-fileupload.js
+++ b/web/static/js/bootstrap-fileupload.js
@@ -27,7 +27,7 @@
   var Fileupload = function (element, options) {
     this.$element = $(element)
     this.type = this.$element.data('uploadtype') || (this.$element.find('.thumbnail').length > 0 ? "image" : "file")
-      
+
     this.$input = this.$element.find(':file')
     if (this.$input.length === 0) return
 
@@ -49,23 +49,23 @@
 
     this.listen()
   }
-  
+
   Fileupload.prototype = {
-    
+
     listen: function() {
       this.$input.on('change.fileupload', $.proxy(this.change, this))
       if (this.$remove) this.$remove.on('click.fileupload', $.proxy(this.clear, this))
     },
-    
+
     change: function(e, invoked) {
       var file = e.target.files !== undefined ? e.target.files[0] : (e.target.value ? { name: e.target.value.replace(/^.+\\/, '') } : null)
       if (invoked === 'clear') return
-      
+
       if (!file) {
         this.clear()
         return
       }
-      
+
       this.$hidden.val('')
       this.$hidden.attr('name', '')
       this.$input.attr('name', this.name)
@@ -101,14 +101,14 @@
         e.preventDefault()
       }
     },
-    
+
     trigger: function(e) {
       this.$input.trigger('click')
       e.preventDefault()
     }
   }
 
-  
+
  /* INPUTMASK PLUGIN DEFINITION
   * =========================== */
 
@@ -131,7 +131,7 @@
       var $this = $(this)
       if ($this.data('fileupload')) return
       $this.fileupload($this.data())
-      
+
       var $target = $(e.target).parents('[data-dismiss=fileupload],[data-trigger=fileupload]').first()
       if ($target.length > 0) {
           $target.trigger('click.fileupload')
diff --git a/web/static/js/crypto-js.min.js b/web/static/js/crypto-js.min.js
new file mode 100644
index 00000000000..20b3099ddfc
--- /dev/null
+++ b/web/static/js/crypto-js.min.js
@@ -0,0 +1 @@
+!function(t,e){"object"==typeof exports?module.exports=exports=e():"function"==typeof define&&define.amd?define([],e):t.CryptoJS=e()}(this,function(){var n,o,s,a,h,t,e,l,r,i,c,f,d,u,p,S,x,b,A,H,z,_,v,g,y,B,w,k,m,C,D,E,R,M,F,P,W,O,I,U=U||function(h){var i;if("undefined"!=typeof window&&window.crypto&&(i=window.crypto),"undefined"!=typeof self&&self.crypto&&(i=self.crypto),!(i=!(i=!(i="undefined"!=typeof globalThis&&globalThis.crypto?globalThis.crypto:i)&&"undefined"!=typeof window&&window.msCrypto?window.msCrypto:i)&&"undefined"!=typeof global&&global.crypto?global.crypto:i)&&"function"==typeof require)try{i=require("crypto")}catch(t){}var r=Object.create||function(t){return e.prototype=t,t=new e,e.prototype=null,t};function e(){}var t={},n=t.lib={},o=n.Base={extend:function(t){var e=r(this);return t&&e.mixIn(t),e.hasOwnProperty("init")&&this.init!==e.init||(e.init=function(){e.$super.init.apply(this,arguments)}),(e.init.prototype=e).$super=this,e},create:function(){var t=this.extend();return t.init.apply(t,arguments),t},init:function(){},mixIn:function(t){for(var e in t)t.hasOwnProperty(e)&&(this[e]=t[e]);t.hasOwnProperty("toString")&&(this.toString=t.toString)},clone:function(){return this.init.prototype.extend(this)}},l=n.WordArray=o.extend({init:function(t,e){t=this.words=t||[],this.sigBytes=null!=e?e:4*t.length},toString:function(t){return(t||c).stringify(this)},concat:function(t){var e=this.words,r=t.words,i=this.sigBytes,n=t.sigBytes;if(this.clamp(),i%4)for(var o=0;o<n;o++){var s=r[o>>>2]>>>24-o%4*8&255;e[i+o>>>2]|=s<<24-(i+o)%4*8}else for(var c=0;c<n;c+=4)e[i+c>>>2]=r[c>>>2];return this.sigBytes+=n,this},clamp:function(){var t=this.words,e=this.sigBytes;t[e>>>2]&=4294967295<<32-e%4*8,t.length=h.ceil(e/4)},clone:function(){var t=o.clone.call(this);return t.words=this.words.slice(0),t},random:function(t){for(var e=[],r=0;r<t;r+=4)e.push(function(){if(i){if("function"==typeof i.getRandomValues)try{return i.getRandomValues(new Uint32Array(1))[0]}catch(t){}if("function"==typeof i.randomBytes)try{return i.randomBytes(4).readInt32LE()}catch(t){}}throw new Error("Native crypto module could not be used to get secure random number.")}());return new l.init(e,t)}}),s=t.enc={},c=s.Hex={stringify:function(t){for(var e=t.words,r=t.sigBytes,i=[],n=0;n<r;n++){var o=e[n>>>2]>>>24-n%4*8&255;i.push((o>>>4).toString(16)),i.push((15&o).toString(16))}return i.join("")},parse:function(t){for(var e=t.length,r=[],i=0;i<e;i+=2)r[i>>>3]|=parseInt(t.substr(i,2),16)<<24-i%8*4;return new l.init(r,e/2)}},a=s.Latin1={stringify:function(t){for(var e=t.words,r=t.sigBytes,i=[],n=0;n<r;n++){var o=e[n>>>2]>>>24-n%4*8&255;i.push(String.fromCharCode(o))}return i.join("")},parse:function(t){for(var e=t.length,r=[],i=0;i<e;i++)r[i>>>2]|=(255&t.charCodeAt(i))<<24-i%4*8;return new l.init(r,e)}},f=s.Utf8={stringify:function(t){try{return decodeURIComponent(escape(a.stringify(t)))}catch(t){throw new Error("Malformed UTF-8 data")}},parse:function(t){return a.parse(unescape(encodeURIComponent(t)))}},d=n.BufferedBlockAlgorithm=o.extend({reset:function(){this._data=new l.init,this._nDataBytes=0},_append:function(t){"string"==typeof t&&(t=f.parse(t)),this._data.concat(t),this._nDataBytes+=t.sigBytes},_process:function(t){var e,r=this._data,i=r.words,n=r.sigBytes,o=this.blockSize,s=n/(4*o),c=(s=t?h.ceil(s):h.max((0|s)-this._minBufferSize,0))*o,n=h.min(4*c,n);if(c){for(var a=0;a<c;a+=o)this._doProcessBlock(i,a);e=i.splice(0,c),r.sigBytes-=n}return new l.init(e,n)},clone:function(){var t=o.clone.call(this);return t._data=this._data.clone(),t},_minBufferSize:0}),u=(n.Hasher=d.extend({cfg:o.extend(),init:function(t){this.cfg=this.cfg.extend(t),this.reset()},reset:function(){d.reset.call(this),this._doReset()},update:function(t){return this._append(t),this._process(),this},finalize:function(t){return t&&this._append(t),this._doFinalize()},blockSize:16,_createHelper:function(r){return function(t,e){return new r.init(e).finalize(t)}},_createHmacHelper:function(r){return function(t,e){return new u.HMAC.init(r,e).finalize(t)}}}),t.algo={});return t}(Math);function K(t,e,r){return t&e|~t&r}function X(t,e,r){return t&r|e&~r}function L(t,e){return t<<e|t>>>32-e}function j(t,e,r,i){var n,o=this._iv;o?(n=o.slice(0),this._iv=void 0):n=this._prevBlock,i.encryptBlock(n,0);for(var s=0;s<r;s++)t[e+s]^=n[s]}function T(t){var e,r,i;return 255==(t>>24&255)?(r=t>>8&255,i=255&t,255===(e=t>>16&255)?(e=0,255===r?(r=0,255===i?i=0:++i):++r):++e,t=0,t+=e<<16,t+=r<<8,t+=i):t+=1<<24,t}function N(){for(var t=this._X,e=this._C,r=0;r<8;r++)E[r]=e[r];e[0]=e[0]+1295307597+this._b|0,e[1]=e[1]+3545052371+(e[0]>>>0<E[0]>>>0?1:0)|0,e[2]=e[2]+886263092+(e[1]>>>0<E[1]>>>0?1:0)|0,e[3]=e[3]+1295307597+(e[2]>>>0<E[2]>>>0?1:0)|0,e[4]=e[4]+3545052371+(e[3]>>>0<E[3]>>>0?1:0)|0,e[5]=e[5]+886263092+(e[4]>>>0<E[4]>>>0?1:0)|0,e[6]=e[6]+1295307597+(e[5]>>>0<E[5]>>>0?1:0)|0,e[7]=e[7]+3545052371+(e[6]>>>0<E[6]>>>0?1:0)|0,this._b=e[7]>>>0<E[7]>>>0?1:0;for(r=0;r<8;r++){var i=t[r]+e[r],n=65535&i,o=i>>>16;R[r]=((n*n>>>17)+n*o>>>15)+o*o^((4294901760&i)*i|0)+((65535&i)*i|0)}t[0]=R[0]+(R[7]<<16|R[7]>>>16)+(R[6]<<16|R[6]>>>16)|0,t[1]=R[1]+(R[0]<<8|R[0]>>>24)+R[7]|0,t[2]=R[2]+(R[1]<<16|R[1]>>>16)+(R[0]<<16|R[0]>>>16)|0,t[3]=R[3]+(R[2]<<8|R[2]>>>24)+R[1]|0,t[4]=R[4]+(R[3]<<16|R[3]>>>16)+(R[2]<<16|R[2]>>>16)|0,t[5]=R[5]+(R[4]<<8|R[4]>>>24)+R[3]|0,t[6]=R[6]+(R[5]<<16|R[5]>>>16)+(R[4]<<16|R[4]>>>16)|0,t[7]=R[7]+(R[6]<<8|R[6]>>>24)+R[5]|0}function q(){for(var t=this._X,e=this._C,r=0;r<8;r++)O[r]=e[r];e[0]=e[0]+1295307597+this._b|0,e[1]=e[1]+3545052371+(e[0]>>>0<O[0]>>>0?1:0)|0,e[2]=e[2]+886263092+(e[1]>>>0<O[1]>>>0?1:0)|0,e[3]=e[3]+1295307597+(e[2]>>>0<O[2]>>>0?1:0)|0,e[4]=e[4]+3545052371+(e[3]>>>0<O[3]>>>0?1:0)|0,e[5]=e[5]+886263092+(e[4]>>>0<O[4]>>>0?1:0)|0,e[6]=e[6]+1295307597+(e[5]>>>0<O[5]>>>0?1:0)|0,e[7]=e[7]+3545052371+(e[6]>>>0<O[6]>>>0?1:0)|0,this._b=e[7]>>>0<O[7]>>>0?1:0;for(r=0;r<8;r++){var i=t[r]+e[r],n=65535&i,o=i>>>16;I[r]=((n*n>>>17)+n*o>>>15)+o*o^((4294901760&i)*i|0)+((65535&i)*i|0)}t[0]=I[0]+(I[7]<<16|I[7]>>>16)+(I[6]<<16|I[6]>>>16)|0,t[1]=I[1]+(I[0]<<8|I[0]>>>24)+I[7]|0,t[2]=I[2]+(I[1]<<16|I[1]>>>16)+(I[0]<<16|I[0]>>>16)|0,t[3]=I[3]+(I[2]<<8|I[2]>>>24)+I[1]|0,t[4]=I[4]+(I[3]<<16|I[3]>>>16)+(I[2]<<16|I[2]>>>16)|0,t[5]=I[5]+(I[4]<<8|I[4]>>>24)+I[3]|0,t[6]=I[6]+(I[5]<<16|I[5]>>>16)+(I[4]<<16|I[4]>>>16)|0,t[7]=I[7]+(I[6]<<8|I[6]>>>24)+I[5]|0}return F=(M=U).lib,n=F.Base,o=F.WordArray,(M=M.x64={}).Word=n.extend({init:function(t,e){this.high=t,this.low=e}}),M.WordArray=n.extend({init:function(t,e){t=this.words=t||[],this.sigBytes=null!=e?e:8*t.length},toX32:function(){for(var t=this.words,e=t.length,r=[],i=0;i<e;i++){var n=t[i];r.push(n.high),r.push(n.low)}return o.create(r,this.sigBytes)},clone:function(){for(var t=n.clone.call(this),e=t.words=this.words.slice(0),r=e.length,i=0;i<r;i++)e[i]=e[i].clone();return t}}),"function"==typeof ArrayBuffer&&(P=U.lib.WordArray,s=P.init,(P.init=function(t){if((t=(t=t instanceof ArrayBuffer?new Uint8Array(t):t)instanceof Int8Array||"undefined"!=typeof Uint8ClampedArray&&t instanceof Uint8ClampedArray||t instanceof Int16Array||t instanceof Uint16Array||t instanceof Int32Array||t instanceof Uint32Array||t instanceof Float32Array||t instanceof Float64Array?new Uint8Array(t.buffer,t.byteOffset,t.byteLength):t)instanceof Uint8Array){for(var e=t.byteLength,r=[],i=0;i<e;i++)r[i>>>2]|=t[i]<<24-i%4*8;s.call(this,r,e)}else s.apply(this,arguments)}).prototype=P),function(){var t=U,n=t.lib.WordArray,t=t.enc;t.Utf16=t.Utf16BE={stringify:function(t){for(var e=t.words,r=t.sigBytes,i=[],n=0;n<r;n+=2){var o=e[n>>>2]>>>16-n%4*8&65535;i.push(String.fromCharCode(o))}return i.join("")},parse:function(t){for(var e=t.length,r=[],i=0;i<e;i++)r[i>>>1]|=t.charCodeAt(i)<<16-i%2*16;return n.create(r,2*e)}};function s(t){return t<<8&4278255360|t>>>8&16711935}t.Utf16LE={stringify:function(t){for(var e=t.words,r=t.sigBytes,i=[],n=0;n<r;n+=2){var o=s(e[n>>>2]>>>16-n%4*8&65535);i.push(String.fromCharCode(o))}return i.join("")},parse:function(t){for(var e=t.length,r=[],i=0;i<e;i++)r[i>>>1]|=s(t.charCodeAt(i)<<16-i%2*16);return n.create(r,2*e)}}}(),a=(w=U).lib.WordArray,w.enc.Base64={stringify:function(t){var e=t.words,r=t.sigBytes,i=this._map;t.clamp();for(var n=[],o=0;o<r;o+=3)for(var s=(e[o>>>2]>>>24-o%4*8&255)<<16|(e[o+1>>>2]>>>24-(o+1)%4*8&255)<<8|e[o+2>>>2]>>>24-(o+2)%4*8&255,c=0;c<4&&o+.75*c<r;c++)n.push(i.charAt(s>>>6*(3-c)&63));var a=i.charAt(64);if(a)for(;n.length%4;)n.push(a);return n.join("")},parse:function(t){var e=t.length,r=this._map;if(!(i=this._reverseMap))for(var i=this._reverseMap=[],n=0;n<r.length;n++)i[r.charCodeAt(n)]=n;var o=r.charAt(64);return!o||-1!==(o=t.indexOf(o))&&(e=o),function(t,e,r){for(var i=[],n=0,o=0;o<e;o++){var s,c;o%4&&(s=r[t.charCodeAt(o-1)]<<o%4*2,c=r[t.charCodeAt(o)]>>>6-o%4*2,c=s|c,i[n>>>2]|=c<<24-n%4*8,n++)}return a.create(i,n)}(t,e,i)},_map:"ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/="},h=(F=U).lib.WordArray,F.enc.Base64url={stringify:function(t,e=!0){var r=t.words,i=t.sigBytes,n=e?this._safe_map:this._map;t.clamp();for(var o=[],s=0;s<i;s+=3)for(var c=(r[s>>>2]>>>24-s%4*8&255)<<16|(r[s+1>>>2]>>>24-(s+1)%4*8&255)<<8|r[s+2>>>2]>>>24-(s+2)%4*8&255,a=0;a<4&&s+.75*a<i;a++)o.push(n.charAt(c>>>6*(3-a)&63));var h=n.charAt(64);if(h)for(;o.length%4;)o.push(h);return o.join("")},parse:function(t,e=!0){var r=t.length,i=e?this._safe_map:this._map;if(!(n=this._reverseMap))for(var n=this._reverseMap=[],o=0;o<i.length;o++)n[i.charCodeAt(o)]=o;e=i.charAt(64);return!e||-1!==(e=t.indexOf(e))&&(r=e),function(t,e,r){for(var i=[],n=0,o=0;o<e;o++){var s,c;o%4&&(s=r[t.charCodeAt(o-1)]<<o%4*2,c=r[t.charCodeAt(o)]>>>6-o%4*2,c=s|c,i[n>>>2]|=c<<24-n%4*8,n++)}return h.create(i,n)}(t,r,n)},_map:"ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=",_safe_map:"ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-_"},function(a){var t=U,e=t.lib,r=e.WordArray,i=e.Hasher,e=t.algo,A=[];!function(){for(var t=0;t<64;t++)A[t]=4294967296*a.abs(a.sin(t+1))|0}();e=e.MD5=i.extend({_doReset:function(){this._hash=new r.init([1732584193,4023233417,2562383102,271733878])},_doProcessBlock:function(t,e){for(var r=0;r<16;r++){var i=e+r,n=t[i];t[i]=16711935&(n<<8|n>>>24)|4278255360&(n<<24|n>>>8)}var o=this._hash.words,s=t[e+0],c=t[e+1],a=t[e+2],h=t[e+3],l=t[e+4],f=t[e+5],d=t[e+6],u=t[e+7],p=t[e+8],_=t[e+9],y=t[e+10],v=t[e+11],g=t[e+12],B=t[e+13],w=t[e+14],k=t[e+15],m=H(m=o[0],b=o[1],x=o[2],S=o[3],s,7,A[0]),S=H(S,m,b,x,c,12,A[1]),x=H(x,S,m,b,a,17,A[2]),b=H(b,x,S,m,h,22,A[3]);m=H(m,b,x,S,l,7,A[4]),S=H(S,m,b,x,f,12,A[5]),x=H(x,S,m,b,d,17,A[6]),b=H(b,x,S,m,u,22,A[7]),m=H(m,b,x,S,p,7,A[8]),S=H(S,m,b,x,_,12,A[9]),x=H(x,S,m,b,y,17,A[10]),b=H(b,x,S,m,v,22,A[11]),m=H(m,b,x,S,g,7,A[12]),S=H(S,m,b,x,B,12,A[13]),x=H(x,S,m,b,w,17,A[14]),m=z(m,b=H(b,x,S,m,k,22,A[15]),x,S,c,5,A[16]),S=z(S,m,b,x,d,9,A[17]),x=z(x,S,m,b,v,14,A[18]),b=z(b,x,S,m,s,20,A[19]),m=z(m,b,x,S,f,5,A[20]),S=z(S,m,b,x,y,9,A[21]),x=z(x,S,m,b,k,14,A[22]),b=z(b,x,S,m,l,20,A[23]),m=z(m,b,x,S,_,5,A[24]),S=z(S,m,b,x,w,9,A[25]),x=z(x,S,m,b,h,14,A[26]),b=z(b,x,S,m,p,20,A[27]),m=z(m,b,x,S,B,5,A[28]),S=z(S,m,b,x,a,9,A[29]),x=z(x,S,m,b,u,14,A[30]),m=C(m,b=z(b,x,S,m,g,20,A[31]),x,S,f,4,A[32]),S=C(S,m,b,x,p,11,A[33]),x=C(x,S,m,b,v,16,A[34]),b=C(b,x,S,m,w,23,A[35]),m=C(m,b,x,S,c,4,A[36]),S=C(S,m,b,x,l,11,A[37]),x=C(x,S,m,b,u,16,A[38]),b=C(b,x,S,m,y,23,A[39]),m=C(m,b,x,S,B,4,A[40]),S=C(S,m,b,x,s,11,A[41]),x=C(x,S,m,b,h,16,A[42]),b=C(b,x,S,m,d,23,A[43]),m=C(m,b,x,S,_,4,A[44]),S=C(S,m,b,x,g,11,A[45]),x=C(x,S,m,b,k,16,A[46]),m=D(m,b=C(b,x,S,m,a,23,A[47]),x,S,s,6,A[48]),S=D(S,m,b,x,u,10,A[49]),x=D(x,S,m,b,w,15,A[50]),b=D(b,x,S,m,f,21,A[51]),m=D(m,b,x,S,g,6,A[52]),S=D(S,m,b,x,h,10,A[53]),x=D(x,S,m,b,y,15,A[54]),b=D(b,x,S,m,c,21,A[55]),m=D(m,b,x,S,p,6,A[56]),S=D(S,m,b,x,k,10,A[57]),x=D(x,S,m,b,d,15,A[58]),b=D(b,x,S,m,B,21,A[59]),m=D(m,b,x,S,l,6,A[60]),S=D(S,m,b,x,v,10,A[61]),x=D(x,S,m,b,a,15,A[62]),b=D(b,x,S,m,_,21,A[63]),o[0]=o[0]+m|0,o[1]=o[1]+b|0,o[2]=o[2]+x|0,o[3]=o[3]+S|0},_doFinalize:function(){var t=this._data,e=t.words,r=8*this._nDataBytes,i=8*t.sigBytes;e[i>>>5]|=128<<24-i%32;var n=a.floor(r/4294967296),r=r;e[15+(64+i>>>9<<4)]=16711935&(n<<8|n>>>24)|4278255360&(n<<24|n>>>8),e[14+(64+i>>>9<<4)]=16711935&(r<<8|r>>>24)|4278255360&(r<<24|r>>>8),t.sigBytes=4*(e.length+1),this._process();for(var e=this._hash,o=e.words,s=0;s<4;s++){var c=o[s];o[s]=16711935&(c<<8|c>>>24)|4278255360&(c<<24|c>>>8)}return e},clone:function(){var t=i.clone.call(this);return t._hash=this._hash.clone(),t}});function H(t,e,r,i,n,o,s){s=t+(e&r|~e&i)+n+s;return(s<<o|s>>>32-o)+e}function z(t,e,r,i,n,o,s){s=t+(e&i|r&~i)+n+s;return(s<<o|s>>>32-o)+e}function C(t,e,r,i,n,o,s){s=t+(e^r^i)+n+s;return(s<<o|s>>>32-o)+e}function D(t,e,r,i,n,o,s){s=t+(r^(e|~i))+n+s;return(s<<o|s>>>32-o)+e}t.MD5=i._createHelper(e),t.HmacMD5=i._createHmacHelper(e)}(Math),P=(M=U).lib,t=P.WordArray,e=P.Hasher,P=M.algo,l=[],P=P.SHA1=e.extend({_doReset:function(){this._hash=new t.init([1732584193,4023233417,2562383102,271733878,3285377520])},_doProcessBlock:function(t,e){for(var r=this._hash.words,i=r[0],n=r[1],o=r[2],s=r[3],c=r[4],a=0;a<80;a++){a<16?l[a]=0|t[e+a]:(h=l[a-3]^l[a-8]^l[a-14]^l[a-16],l[a]=h<<1|h>>>31);var h=(i<<5|i>>>27)+c+l[a];h+=a<20?1518500249+(n&o|~n&s):a<40?1859775393+(n^o^s):a<60?(n&o|n&s|o&s)-1894007588:(n^o^s)-899497514,c=s,s=o,o=n<<30|n>>>2,n=i,i=h}r[0]=r[0]+i|0,r[1]=r[1]+n|0,r[2]=r[2]+o|0,r[3]=r[3]+s|0,r[4]=r[4]+c|0},_doFinalize:function(){var t=this._data,e=t.words,r=8*this._nDataBytes,i=8*t.sigBytes;return e[i>>>5]|=128<<24-i%32,e[14+(64+i>>>9<<4)]=Math.floor(r/4294967296),e[15+(64+i>>>9<<4)]=r,t.sigBytes=4*e.length,this._process(),this._hash},clone:function(){var t=e.clone.call(this);return t._hash=this._hash.clone(),t}}),M.SHA1=e._createHelper(P),M.HmacSHA1=e._createHmacHelper(P),function(n){var t=U,e=t.lib,r=e.WordArray,i=e.Hasher,e=t.algo,o=[],p=[];!function(){function t(t){return 4294967296*(t-(0|t))|0}for(var e=2,r=0;r<64;)!function(t){for(var e=n.sqrt(t),r=2;r<=e;r++)if(!(t%r))return;return 1}(e)||(r<8&&(o[r]=t(n.pow(e,.5))),p[r]=t(n.pow(e,1/3)),r++),e++}();var _=[],e=e.SHA256=i.extend({_doReset:function(){this._hash=new r.init(o.slice(0))},_doProcessBlock:function(t,e){for(var r=this._hash.words,i=r[0],n=r[1],o=r[2],s=r[3],c=r[4],a=r[5],h=r[6],l=r[7],f=0;f<64;f++){f<16?_[f]=0|t[e+f]:(d=_[f-15],u=_[f-2],_[f]=((d<<25|d>>>7)^(d<<14|d>>>18)^d>>>3)+_[f-7]+((u<<15|u>>>17)^(u<<13|u>>>19)^u>>>10)+_[f-16]);var d=i&n^i&o^n&o,u=l+((c<<26|c>>>6)^(c<<21|c>>>11)^(c<<7|c>>>25))+(c&a^~c&h)+p[f]+_[f],l=h,h=a,a=c,c=s+u|0,s=o,o=n,n=i,i=u+(((i<<30|i>>>2)^(i<<19|i>>>13)^(i<<10|i>>>22))+d)|0}r[0]=r[0]+i|0,r[1]=r[1]+n|0,r[2]=r[2]+o|0,r[3]=r[3]+s|0,r[4]=r[4]+c|0,r[5]=r[5]+a|0,r[6]=r[6]+h|0,r[7]=r[7]+l|0},_doFinalize:function(){var t=this._data,e=t.words,r=8*this._nDataBytes,i=8*t.sigBytes;return e[i>>>5]|=128<<24-i%32,e[14+(64+i>>>9<<4)]=n.floor(r/4294967296),e[15+(64+i>>>9<<4)]=r,t.sigBytes=4*e.length,this._process(),this._hash},clone:function(){var t=i.clone.call(this);return t._hash=this._hash.clone(),t}});t.SHA256=i._createHelper(e),t.HmacSHA256=i._createHmacHelper(e)}(Math),r=(w=U).lib.WordArray,F=w.algo,i=F.SHA256,F=F.SHA224=i.extend({_doReset:function(){this._hash=new r.init([3238371032,914150663,812702999,4144912697,4290775857,1750603025,1694076839,3204075428])},_doFinalize:function(){var t=i._doFinalize.call(this);return t.sigBytes-=4,t}}),w.SHA224=i._createHelper(F),w.HmacSHA224=i._createHmacHelper(F),function(){var t=U,e=t.lib.Hasher,r=t.x64,i=r.Word,n=r.WordArray,r=t.algo;function o(){return i.create.apply(i,arguments)}var t1=[o(1116352408,3609767458),o(1899447441,602891725),o(3049323471,3964484399),o(3921009573,2173295548),o(961987163,4081628472),o(1508970993,3053834265),o(2453635748,2937671579),o(2870763221,3664609560),o(3624381080,2734883394),o(310598401,1164996542),o(607225278,1323610764),o(1426881987,3590304994),o(1925078388,4068182383),o(2162078206,991336113),o(2614888103,633803317),o(3248222580,3479774868),o(3835390401,2666613458),o(4022224774,944711139),o(264347078,2341262773),o(604807628,2007800933),o(770255983,1495990901),o(1249150122,1856431235),o(1555081692,3175218132),o(1996064986,2198950837),o(2554220882,3999719339),o(2821834349,766784016),o(2952996808,2566594879),o(3210313671,3203337956),o(3336571891,1034457026),o(3584528711,2466948901),o(113926993,3758326383),o(338241895,168717936),o(666307205,1188179964),o(773529912,1546045734),o(1294757372,1522805485),o(1396182291,2643833823),o(1695183700,2343527390),o(1986661051,1014477480),o(2177026350,1206759142),o(2456956037,344077627),o(2730485921,1290863460),o(2820302411,3158454273),o(3259730800,3505952657),o(3345764771,106217008),o(3516065817,3606008344),o(3600352804,1432725776),o(4094571909,1467031594),o(275423344,851169720),o(430227734,3100823752),o(506948616,1363258195),o(659060556,3750685593),o(883997877,3785050280),o(958139571,3318307427),o(1322822218,3812723403),o(1537002063,2003034995),o(1747873779,3602036899),o(1955562222,1575990012),o(2024104815,1125592928),o(2227730452,2716904306),o(2361852424,442776044),o(2428436474,593698344),o(2756734187,3733110249),o(3204031479,2999351573),o(3329325298,3815920427),o(3391569614,3928383900),o(3515267271,566280711),o(3940187606,3454069534),o(4118630271,4000239992),o(116418474,1914138554),o(174292421,2731055270),o(289380356,3203993006),o(460393269,320620315),o(685471733,587496836),o(852142971,1086792851),o(1017036298,365543100),o(1126000580,2618297676),o(1288033470,3409855158),o(1501505948,4234509866),o(1607167915,987167468),o(1816402316,1246189591)],e1=[];!function(){for(var t=0;t<80;t++)e1[t]=o()}();r=r.SHA512=e.extend({_doReset:function(){this._hash=new n.init([new i.init(1779033703,4089235720),new i.init(3144134277,2227873595),new i.init(1013904242,4271175723),new i.init(2773480762,1595750129),new i.init(1359893119,2917565137),new i.init(2600822924,725511199),new i.init(528734635,4215389547),new i.init(1541459225,327033209)])},_doProcessBlock:function(t,e){for(var r=this._hash.words,i=r[0],n=r[1],o=r[2],s=r[3],c=r[4],a=r[5],h=r[6],l=r[7],f=i.high,d=i.low,u=n.high,p=n.low,_=o.high,y=o.low,v=s.high,g=s.low,B=c.high,w=c.low,k=a.high,m=a.low,S=h.high,x=h.low,b=l.high,r=l.low,A=f,H=d,z=u,C=p,D=_,E=y,R=v,M=g,F=B,P=w,W=k,O=m,I=S,U=x,K=b,X=r,L=0;L<80;L++){var j,T,N=e1[L];L<16?(T=N.high=0|t[e+2*L],j=N.low=0|t[e+2*L+1]):($=(q=e1[L-15]).high,J=q.low,G=(Q=e1[L-2]).high,V=Q.low,Z=(Y=e1[L-7]).high,q=Y.low,Y=(Q=e1[L-16]).high,T=(T=(($>>>1|J<<31)^($>>>8|J<<24)^$>>>7)+Z+((j=(Z=(J>>>1|$<<31)^(J>>>8|$<<24)^(J>>>7|$<<25))+q)>>>0<Z>>>0?1:0))+((G>>>19|V<<13)^(G<<3|V>>>29)^G>>>6)+((j+=J=(V>>>19|G<<13)^(V<<3|G>>>29)^(V>>>6|G<<26))>>>0<J>>>0?1:0),j+=$=Q.low,N.high=T=T+Y+(j>>>0<$>>>0?1:0),N.low=j);var q=F&W^~F&I,Z=P&O^~P&U,V=A&z^A&D^z&D,G=(H>>>28|A<<4)^(H<<30|A>>>2)^(H<<25|A>>>7),J=t1[L],Q=J.high,Y=J.low,$=X+((P>>>14|F<<18)^(P>>>18|F<<14)^(P<<23|F>>>9)),N=K+((F>>>14|P<<18)^(F>>>18|P<<14)^(F<<23|P>>>9))+($>>>0<X>>>0?1:0),J=G+(H&C^H&E^C&E),K=I,X=U,I=W,U=O,W=F,O=P,F=R+(N=(N=(N=N+q+(($=$+Z)>>>0<Z>>>0?1:0))+Q+(($=$+Y)>>>0<Y>>>0?1:0))+T+(($=$+j)>>>0<j>>>0?1:0))+((P=M+$|0)>>>0<M>>>0?1:0)|0,R=D,M=E,D=z,E=C,z=A,C=H,A=N+(((A>>>28|H<<4)^(A<<30|H>>>2)^(A<<25|H>>>7))+V+(J>>>0<G>>>0?1:0))+((H=$+J|0)>>>0<$>>>0?1:0)|0}d=i.low=d+H,i.high=f+A+(d>>>0<H>>>0?1:0),p=n.low=p+C,n.high=u+z+(p>>>0<C>>>0?1:0),y=o.low=y+E,o.high=_+D+(y>>>0<E>>>0?1:0),g=s.low=g+M,s.high=v+R+(g>>>0<M>>>0?1:0),w=c.low=w+P,c.high=B+F+(w>>>0<P>>>0?1:0),m=a.low=m+O,a.high=k+W+(m>>>0<O>>>0?1:0),x=h.low=x+U,h.high=S+I+(x>>>0<U>>>0?1:0),r=l.low=r+X,l.high=b+K+(r>>>0<X>>>0?1:0)},_doFinalize:function(){var t=this._data,e=t.words,r=8*this._nDataBytes,i=8*t.sigBytes;return e[i>>>5]|=128<<24-i%32,e[30+(128+i>>>10<<5)]=Math.floor(r/4294967296),e[31+(128+i>>>10<<5)]=r,t.sigBytes=4*e.length,this._process(),this._hash.toX32()},clone:function(){var t=e.clone.call(this);return t._hash=this._hash.clone(),t},blockSize:32});t.SHA512=e._createHelper(r),t.HmacSHA512=e._createHmacHelper(r)}(),P=(M=U).x64,c=P.Word,f=P.WordArray,P=M.algo,d=P.SHA512,P=P.SHA384=d.extend({_doReset:function(){this._hash=new f.init([new c.init(3418070365,3238371032),new c.init(1654270250,914150663),new c.init(2438529370,812702999),new c.init(355462360,4144912697),new c.init(1731405415,4290775857),new c.init(2394180231,1750603025),new c.init(3675008525,1694076839),new c.init(1203062813,3204075428)])},_doFinalize:function(){var t=d._doFinalize.call(this);return t.sigBytes-=16,t}}),M.SHA384=d._createHelper(P),M.HmacSHA384=d._createHmacHelper(P),function(l){var t=U,e=t.lib,f=e.WordArray,i=e.Hasher,d=t.x64.Word,e=t.algo,A=[],H=[],z=[];!function(){for(var t=1,e=0,r=0;r<24;r++){A[t+5*e]=(r+1)*(r+2)/2%64;var i=(2*t+3*e)%5;t=e%5,e=i}for(t=0;t<5;t++)for(e=0;e<5;e++)H[t+5*e]=e+(2*t+3*e)%5*5;for(var n=1,o=0;o<24;o++){for(var s,c=0,a=0,h=0;h<7;h++)1&n&&((s=(1<<h)-1)<32?a^=1<<s:c^=1<<s-32),128&n?n=n<<1^113:n<<=1;z[o]=d.create(c,a)}}();var C=[];!function(){for(var t=0;t<25;t++)C[t]=d.create()}();e=e.SHA3=i.extend({cfg:i.cfg.extend({outputLength:512}),_doReset:function(){for(var t=this._state=[],e=0;e<25;e++)t[e]=new d.init;this.blockSize=(1600-2*this.cfg.outputLength)/32},_doProcessBlock:function(t,e){for(var r=this._state,i=this.blockSize/2,n=0;n<i;n++){var o=t[e+2*n],s=t[e+2*n+1],o=16711935&(o<<8|o>>>24)|4278255360&(o<<24|o>>>8);(m=r[n]).high^=s=16711935&(s<<8|s>>>24)|4278255360&(s<<24|s>>>8),m.low^=o}for(var c=0;c<24;c++){for(var a=0;a<5;a++){for(var h=0,l=0,f=0;f<5;f++)h^=(m=r[a+5*f]).high,l^=m.low;var d=C[a];d.high=h,d.low=l}for(a=0;a<5;a++)for(var u=C[(a+4)%5],p=C[(a+1)%5],_=p.high,p=p.low,h=u.high^(_<<1|p>>>31),l=u.low^(p<<1|_>>>31),f=0;f<5;f++)(m=r[a+5*f]).high^=h,m.low^=l;for(var y=1;y<25;y++){var v=(m=r[y]).high,g=m.low,B=A[y];l=B<32?(h=v<<B|g>>>32-B,g<<B|v>>>32-B):(h=g<<B-32|v>>>64-B,v<<B-32|g>>>64-B);B=C[H[y]];B.high=h,B.low=l}var w=C[0],k=r[0];w.high=k.high,w.low=k.low;for(a=0;a<5;a++)for(f=0;f<5;f++){var m=r[y=a+5*f],S=C[y],x=C[(a+1)%5+5*f],b=C[(a+2)%5+5*f];m.high=S.high^~x.high&b.high,m.low=S.low^~x.low&b.low}m=r[0],k=z[c];m.high^=k.high,m.low^=k.low}},_doFinalize:function(){var t=this._data,e=t.words,r=(this._nDataBytes,8*t.sigBytes),i=32*this.blockSize;e[r>>>5]|=1<<24-r%32,e[(l.ceil((1+r)/i)*i>>>5)-1]|=128,t.sigBytes=4*e.length,this._process();for(var n=this._state,e=this.cfg.outputLength/8,o=e/8,s=[],c=0;c<o;c++){var a=n[c],h=a.high,a=a.low,h=16711935&(h<<8|h>>>24)|4278255360&(h<<24|h>>>8);s.push(a=16711935&(a<<8|a>>>24)|4278255360&(a<<24|a>>>8)),s.push(h)}return new f.init(s,e)},clone:function(){for(var t=i.clone.call(this),e=t._state=this._state.slice(0),r=0;r<25;r++)e[r]=e[r].clone();return t}});t.SHA3=i._createHelper(e),t.HmacSHA3=i._createHmacHelper(e)}(Math),Math,F=(w=U).lib,u=F.WordArray,p=F.Hasher,F=w.algo,S=u.create([0,1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,7,4,13,1,10,6,15,3,12,0,9,5,2,14,11,8,3,10,14,4,9,15,8,1,2,7,0,6,13,11,5,12,1,9,11,10,0,8,12,4,13,3,7,15,14,5,6,2,4,0,5,9,7,12,2,10,14,1,3,8,11,6,15,13]),x=u.create([5,14,7,0,9,2,11,4,13,6,15,8,1,10,3,12,6,11,3,7,0,13,5,10,14,15,8,12,4,9,1,2,15,5,1,3,7,14,6,9,11,8,12,2,10,0,4,13,8,6,4,1,3,11,15,0,5,12,2,13,9,7,10,14,12,15,10,4,1,5,8,7,6,2,13,14,0,3,9,11]),b=u.create([11,14,15,12,5,8,7,9,11,13,14,15,6,7,9,8,7,6,8,13,11,9,7,15,7,12,15,9,11,7,13,12,11,13,6,7,14,9,13,15,14,8,13,6,5,12,7,5,11,12,14,15,14,15,9,8,9,14,5,6,8,6,5,12,9,15,5,11,6,8,13,12,5,12,13,14,11,8,5,6]),A=u.create([8,9,9,11,13,15,15,5,7,7,8,11,14,14,12,6,9,13,15,7,12,8,9,11,7,7,12,7,6,15,13,11,9,7,15,11,8,6,6,14,12,13,5,14,13,13,7,5,15,5,8,11,14,14,6,14,6,9,12,9,12,5,15,8,8,5,12,9,12,5,14,6,8,13,6,5,15,13,11,11]),H=u.create([0,1518500249,1859775393,2400959708,2840853838]),z=u.create([1352829926,1548603684,1836072691,2053994217,0]),F=F.RIPEMD160=p.extend({_doReset:function(){this._hash=u.create([1732584193,4023233417,2562383102,271733878,3285377520])},_doProcessBlock:function(t,e){for(var r=0;r<16;r++){var i=e+r,n=t[i];t[i]=16711935&(n<<8|n>>>24)|4278255360&(n<<24|n>>>8)}for(var o,s,c,a,h,l,f=this._hash.words,d=H.words,u=z.words,p=S.words,_=x.words,y=b.words,v=A.words,g=o=f[0],B=s=f[1],w=c=f[2],k=a=f[3],m=h=f[4],r=0;r<80;r+=1)l=o+t[e+p[r]]|0,l+=r<16?(s^c^a)+d[0]:r<32?K(s,c,a)+d[1]:r<48?((s|~c)^a)+d[2]:r<64?X(s,c,a)+d[3]:(s^(c|~a))+d[4],l=(l=L(l|=0,y[r]))+h|0,o=h,h=a,a=L(c,10),c=s,s=l,l=g+t[e+_[r]]|0,l+=r<16?(B^(w|~k))+u[0]:r<32?X(B,w,k)+u[1]:r<48?((B|~w)^k)+u[2]:r<64?K(B,w,k)+u[3]:(B^w^k)+u[4],l=(l=L(l|=0,v[r]))+m|0,g=m,m=k,k=L(w,10),w=B,B=l;l=f[1]+c+k|0,f[1]=f[2]+a+m|0,f[2]=f[3]+h+g|0,f[3]=f[4]+o+B|0,f[4]=f[0]+s+w|0,f[0]=l},_doFinalize:function(){var t=this._data,e=t.words,r=8*this._nDataBytes,i=8*t.sigBytes;e[i>>>5]|=128<<24-i%32,e[14+(64+i>>>9<<4)]=16711935&(r<<8|r>>>24)|4278255360&(r<<24|r>>>8),t.sigBytes=4*(e.length+1),this._process();for(var e=this._hash,n=e.words,o=0;o<5;o++){var s=n[o];n[o]=16711935&(s<<8|s>>>24)|4278255360&(s<<24|s>>>8)}return e},clone:function(){var t=p.clone.call(this);return t._hash=this._hash.clone(),t}}),w.RIPEMD160=p._createHelper(F),w.HmacRIPEMD160=p._createHmacHelper(F),P=(M=U).lib.Base,_=M.enc.Utf8,M.algo.HMAC=P.extend({init:function(t,e){t=this._hasher=new t.init,"string"==typeof e&&(e=_.parse(e));var r=t.blockSize,i=4*r;(e=e.sigBytes>i?t.finalize(e):e).clamp();for(var t=this._oKey=e.clone(),e=this._iKey=e.clone(),n=t.words,o=e.words,s=0;s<r;s++)n[s]^=1549556828,o[s]^=909522486;t.sigBytes=e.sigBytes=i,this.reset()},reset:function(){var t=this._hasher;t.reset(),t.update(this._iKey)},update:function(t){return this._hasher.update(t),this},finalize:function(t){var e=this._hasher,t=e.finalize(t);return e.reset(),e.finalize(this._oKey.clone().concat(t))}}),F=(w=U).lib,M=F.Base,v=F.WordArray,P=w.algo,F=P.SHA1,g=P.HMAC,y=P.PBKDF2=M.extend({cfg:M.extend({keySize:4,hasher:F,iterations:1}),init:function(t){this.cfg=this.cfg.extend(t)},compute:function(t,e){for(var r=this.cfg,i=g.create(r.hasher,t),n=v.create(),o=v.create([1]),s=n.words,c=o.words,a=r.keySize,h=r.iterations;s.length<a;){var l=i.update(e).finalize(o);i.reset();for(var f=l.words,d=f.length,u=l,p=1;p<h;p++){u=i.finalize(u),i.reset();for(var _=u.words,y=0;y<d;y++)f[y]^=_[y]}n.concat(l),c[0]++}return n.sigBytes=4*a,n}}),w.PBKDF2=function(t,e,r){return y.create(r).compute(t,e)},M=(P=U).lib,F=M.Base,B=M.WordArray,w=P.algo,M=w.MD5,k=w.EvpKDF=F.extend({cfg:F.extend({keySize:4,hasher:M,iterations:1}),init:function(t){this.cfg=this.cfg.extend(t)},compute:function(t,e){for(var r,i=this.cfg,n=i.hasher.create(),o=B.create(),s=o.words,c=i.keySize,a=i.iterations;s.length<c;){r&&n.update(r),r=n.update(t).finalize(e),n.reset();for(var h=1;h<a;h++)r=n.finalize(r),n.reset();o.concat(r)}return o.sigBytes=4*c,o}}),P.EvpKDF=function(t,e,r){return k.create(r).compute(t,e)},U.lib.Cipher||function(){var t=U,e=t.lib,r=e.Base,s=e.WordArray,i=e.BufferedBlockAlgorithm,n=t.enc,o=(n.Utf8,n.Base64),c=t.algo.EvpKDF,a=e.Cipher=i.extend({cfg:r.extend(),createEncryptor:function(t,e){return this.create(this._ENC_XFORM_MODE,t,e)},createDecryptor:function(t,e){return this.create(this._DEC_XFORM_MODE,t,e)},init:function(t,e,r){this.cfg=this.cfg.extend(r),this._xformMode=t,this._key=e,this.reset()},reset:function(){i.reset.call(this),this._doReset()},process:function(t){return this._append(t),this._process()},finalize:function(t){return t&&this._append(t),this._doFinalize()},keySize:4,ivSize:4,_ENC_XFORM_MODE:1,_DEC_XFORM_MODE:2,_createHelper:function(i){return{encrypt:function(t,e,r){return h(e).encrypt(i,t,e,r)},decrypt:function(t,e,r){return h(e).decrypt(i,t,e,r)}}}});function h(t){return"string"==typeof t?p:u}e.StreamCipher=a.extend({_doFinalize:function(){return this._process(!0)},blockSize:1});var l=t.mode={},n=e.BlockCipherMode=r.extend({createEncryptor:function(t,e){return this.Encryptor.create(t,e)},createDecryptor:function(t,e){return this.Decryptor.create(t,e)},init:function(t,e){this._cipher=t,this._iv=e}}),n=l.CBC=((l=n.extend()).Encryptor=l.extend({processBlock:function(t,e){var r=this._cipher,i=r.blockSize;f.call(this,t,e,i),r.encryptBlock(t,e),this._prevBlock=t.slice(e,e+i)}}),l.Decryptor=l.extend({processBlock:function(t,e){var r=this._cipher,i=r.blockSize,n=t.slice(e,e+i);r.decryptBlock(t,e),f.call(this,t,e,i),this._prevBlock=n}}),l);function f(t,e,r){var i,n=this._iv;n?(i=n,this._iv=void 0):i=this._prevBlock;for(var o=0;o<r;o++)t[e+o]^=i[o]}var l=(t.pad={}).Pkcs7={pad:function(t,e){for(var e=4*e,r=e-t.sigBytes%e,i=r<<24|r<<16|r<<8|r,n=[],o=0;o<r;o+=4)n.push(i);e=s.create(n,r);t.concat(e)},unpad:function(t){var e=255&t.words[t.sigBytes-1>>>2];t.sigBytes-=e}},d=(e.BlockCipher=a.extend({cfg:a.cfg.extend({mode:n,padding:l}),reset:function(){var t;a.reset.call(this);var e=this.cfg,r=e.iv,e=e.mode;this._xformMode==this._ENC_XFORM_MODE?t=e.createEncryptor:(t=e.createDecryptor,this._minBufferSize=1),this._mode&&this._mode.__creator==t?this._mode.init(this,r&&r.words):(this._mode=t.call(e,this,r&&r.words),this._mode.__creator=t)},_doProcessBlock:function(t,e){this._mode.processBlock(t,e)},_doFinalize:function(){var t,e=this.cfg.padding;return this._xformMode==this._ENC_XFORM_MODE?(e.pad(this._data,this.blockSize),t=this._process(!0)):(t=this._process(!0),e.unpad(t)),t},blockSize:4}),e.CipherParams=r.extend({init:function(t){this.mixIn(t)},toString:function(t){return(t||this.formatter).stringify(this)}})),l=(t.format={}).OpenSSL={stringify:function(t){var e=t.ciphertext,t=t.salt,e=t?s.create([1398893684,1701076831]).concat(t).concat(e):e;return e.toString(o)},parse:function(t){var e,r=o.parse(t),t=r.words;return 1398893684==t[0]&&1701076831==t[1]&&(e=s.create(t.slice(2,4)),t.splice(0,4),r.sigBytes-=16),d.create({ciphertext:r,salt:e})}},u=e.SerializableCipher=r.extend({cfg:r.extend({format:l}),encrypt:function(t,e,r,i){i=this.cfg.extend(i);var n=t.createEncryptor(r,i),e=n.finalize(e),n=n.cfg;return d.create({ciphertext:e,key:r,iv:n.iv,algorithm:t,mode:n.mode,padding:n.padding,blockSize:t.blockSize,formatter:i.format})},decrypt:function(t,e,r,i){return i=this.cfg.extend(i),e=this._parse(e,i.format),t.createDecryptor(r,i).finalize(e.ciphertext)},_parse:function(t,e){return"string"==typeof t?e.parse(t,this):t}}),t=(t.kdf={}).OpenSSL={execute:function(t,e,r,i){i=i||s.random(8);t=c.create({keySize:e+r}).compute(t,i),r=s.create(t.words.slice(e),4*r);return t.sigBytes=4*e,d.create({key:t,iv:r,salt:i})}},p=e.PasswordBasedCipher=u.extend({cfg:u.cfg.extend({kdf:t}),encrypt:function(t,e,r,i){r=(i=this.cfg.extend(i)).kdf.execute(r,t.keySize,t.ivSize);i.iv=r.iv;i=u.encrypt.call(this,t,e,r.key,i);return i.mixIn(r),i},decrypt:function(t,e,r,i){i=this.cfg.extend(i),e=this._parse(e,i.format);r=i.kdf.execute(r,t.keySize,t.ivSize,e.salt);return i.iv=r.iv,u.decrypt.call(this,t,e,r.key,i)}})}(),U.mode.CFB=((F=U.lib.BlockCipherMode.extend()).Encryptor=F.extend({processBlock:function(t,e){var r=this._cipher,i=r.blockSize;j.call(this,t,e,i,r),this._prevBlock=t.slice(e,e+i)}}),F.Decryptor=F.extend({processBlock:function(t,e){var r=this._cipher,i=r.blockSize,n=t.slice(e,e+i);j.call(this,t,e,i,r),this._prevBlock=n}}),F),U.mode.CTR=(M=U.lib.BlockCipherMode.extend(),P=M.Encryptor=M.extend({processBlock:function(t,e){var r=this._cipher,i=r.blockSize,n=this._iv,o=this._counter;n&&(o=this._counter=n.slice(0),this._iv=void 0);var s=o.slice(0);r.encryptBlock(s,0),o[i-1]=o[i-1]+1|0;for(var c=0;c<i;c++)t[e+c]^=s[c]}}),M.Decryptor=P,M),U.mode.CTRGladman=(F=U.lib.BlockCipherMode.extend(),P=F.Encryptor=F.extend({processBlock:function(t,e){var r=this._cipher,i=r.blockSize,n=this._iv,o=this._counter;n&&(o=this._counter=n.slice(0),this._iv=void 0),0===((n=o)[0]=T(n[0]))&&(n[1]=T(n[1]));var s=o.slice(0);r.encryptBlock(s,0);for(var c=0;c<i;c++)t[e+c]^=s[c]}}),F.Decryptor=P,F),U.mode.OFB=(M=U.lib.BlockCipherMode.extend(),P=M.Encryptor=M.extend({processBlock:function(t,e){var r=this._cipher,i=r.blockSize,n=this._iv,o=this._keystream;n&&(o=this._keystream=n.slice(0),this._iv=void 0),r.encryptBlock(o,0);for(var s=0;s<i;s++)t[e+s]^=o[s]}}),M.Decryptor=P,M),U.mode.ECB=((F=U.lib.BlockCipherMode.extend()).Encryptor=F.extend({processBlock:function(t,e){this._cipher.encryptBlock(t,e)}}),F.Decryptor=F.extend({processBlock:function(t,e){this._cipher.decryptBlock(t,e)}}),F),U.pad.AnsiX923={pad:function(t,e){var r=t.sigBytes,e=4*e,e=e-r%e,r=r+e-1;t.clamp(),t.words[r>>>2]|=e<<24-r%4*8,t.sigBytes+=e},unpad:function(t){var e=255&t.words[t.sigBytes-1>>>2];t.sigBytes-=e}},U.pad.Iso10126={pad:function(t,e){e*=4,e-=t.sigBytes%e;t.concat(U.lib.WordArray.random(e-1)).concat(U.lib.WordArray.create([e<<24],1))},unpad:function(t){var e=255&t.words[t.sigBytes-1>>>2];t.sigBytes-=e}},U.pad.Iso97971={pad:function(t,e){t.concat(U.lib.WordArray.create([2147483648],1)),U.pad.ZeroPadding.pad(t,e)},unpad:function(t){U.pad.ZeroPadding.unpad(t),t.sigBytes--}},U.pad.ZeroPadding={pad:function(t,e){e*=4;t.clamp(),t.sigBytes+=e-(t.sigBytes%e||e)},unpad:function(t){for(var e=t.words,r=t.sigBytes-1,r=t.sigBytes-1;0<=r;r--)if(e[r>>>2]>>>24-r%4*8&255){t.sigBytes=r+1;break}}},U.pad.NoPadding={pad:function(){},unpad:function(){}},m=(P=U).lib.CipherParams,C=P.enc.Hex,P.format.Hex={stringify:function(t){return t.ciphertext.toString(C)},parse:function(t){t=C.parse(t);return m.create({ciphertext:t})}},function(){var t=U,e=t.lib.BlockCipher,r=t.algo,h=[],l=[],f=[],d=[],u=[],p=[],_=[],y=[],v=[],g=[];!function(){for(var t=[],e=0;e<256;e++)t[e]=e<128?e<<1:e<<1^283;for(var r=0,i=0,e=0;e<256;e++){var n=i^i<<1^i<<2^i<<3^i<<4;h[r]=n=n>>>8^255&n^99;var o=t[l[n]=r],s=t[o],c=t[s],a=257*t[n]^16843008*n;f[r]=a<<24|a>>>8,d[r]=a<<16|a>>>16,u[r]=a<<8|a>>>24,p[r]=a,_[n]=(a=16843009*c^65537*s^257*o^16843008*r)<<24|a>>>8,y[n]=a<<16|a>>>16,v[n]=a<<8|a>>>24,g[n]=a,r?(r=o^t[t[t[c^o]]],i^=t[t[i]]):r=i=1}}();var B=[0,1,2,4,8,16,32,64,128,27,54],r=r.AES=e.extend({_doReset:function(){if(!this._nRounds||this._keyPriorReset!==this._key){for(var t=this._keyPriorReset=this._key,e=t.words,r=t.sigBytes/4,i=4*(1+(this._nRounds=6+r)),n=this._keySchedule=[],o=0;o<i;o++)o<r?n[o]=e[o]:(a=n[o-1],o%r?6<r&&o%r==4&&(a=h[a>>>24]<<24|h[a>>>16&255]<<16|h[a>>>8&255]<<8|h[255&a]):(a=h[(a=a<<8|a>>>24)>>>24]<<24|h[a>>>16&255]<<16|h[a>>>8&255]<<8|h[255&a],a^=B[o/r|0]<<24),n[o]=n[o-r]^a);for(var s=this._invKeySchedule=[],c=0;c<i;c++){var a,o=i-c;a=c%4?n[o]:n[o-4],s[c]=c<4||o<=4?a:_[h[a>>>24]]^y[h[a>>>16&255]]^v[h[a>>>8&255]]^g[h[255&a]]}}},encryptBlock:function(t,e){this._doCryptBlock(t,e,this._keySchedule,f,d,u,p,h)},decryptBlock:function(t,e){var r=t[e+1];t[e+1]=t[e+3],t[e+3]=r,this._doCryptBlock(t,e,this._invKeySchedule,_,y,v,g,l);r=t[e+1];t[e+1]=t[e+3],t[e+3]=r},_doCryptBlock:function(t,e,r,i,n,o,s,c){for(var a=this._nRounds,h=t[e]^r[0],l=t[e+1]^r[1],f=t[e+2]^r[2],d=t[e+3]^r[3],u=4,p=1;p<a;p++)var _=i[h>>>24]^n[l>>>16&255]^o[f>>>8&255]^s[255&d]^r[u++],y=i[l>>>24]^n[f>>>16&255]^o[d>>>8&255]^s[255&h]^r[u++],v=i[f>>>24]^n[d>>>16&255]^o[h>>>8&255]^s[255&l]^r[u++],g=i[d>>>24]^n[h>>>16&255]^o[l>>>8&255]^s[255&f]^r[u++],h=_,l=y,f=v,d=g;_=(c[h>>>24]<<24|c[l>>>16&255]<<16|c[f>>>8&255]<<8|c[255&d])^r[u++],y=(c[l>>>24]<<24|c[f>>>16&255]<<16|c[d>>>8&255]<<8|c[255&h])^r[u++],v=(c[f>>>24]<<24|c[d>>>16&255]<<16|c[h>>>8&255]<<8|c[255&l])^r[u++],g=(c[d>>>24]<<24|c[h>>>16&255]<<16|c[l>>>8&255]<<8|c[255&f])^r[u++];t[e]=_,t[e+1]=y,t[e+2]=v,t[e+3]=g},keySize:8});t.AES=e._createHelper(r)}(),function(){var t=U,e=t.lib,i=e.WordArray,r=e.BlockCipher,e=t.algo,h=[57,49,41,33,25,17,9,1,58,50,42,34,26,18,10,2,59,51,43,35,27,19,11,3,60,52,44,36,63,55,47,39,31,23,15,7,62,54,46,38,30,22,14,6,61,53,45,37,29,21,13,5,28,20,12,4],l=[14,17,11,24,1,5,3,28,15,6,21,10,23,19,12,4,26,8,16,7,27,20,13,2,41,52,31,37,47,55,30,40,51,45,33,48,44,49,39,56,34,53,46,42,50,36,29,32],f=[1,2,4,6,8,10,12,14,15,17,19,21,23,25,27,28],d=[{0:8421888,268435456:32768,536870912:8421378,805306368:2,1073741824:512,1342177280:8421890,1610612736:8389122,1879048192:8388608,2147483648:514,2415919104:8389120,2684354560:33280,2952790016:8421376,3221225472:32770,3489660928:8388610,3758096384:0,4026531840:33282,134217728:0,402653184:8421890,671088640:33282,939524096:32768,1207959552:8421888,1476395008:512,1744830464:8421378,2013265920:2,2281701376:8389120,2550136832:33280,2818572288:8421376,3087007744:8389122,3355443200:8388610,3623878656:32770,3892314112:514,4160749568:8388608,1:32768,268435457:2,536870913:8421888,805306369:8388608,1073741825:8421378,1342177281:33280,1610612737:512,1879048193:8389122,2147483649:8421890,2415919105:8421376,2684354561:8388610,2952790017:33282,3221225473:514,3489660929:8389120,3758096385:32770,4026531841:0,134217729:8421890,402653185:8421376,671088641:8388608,939524097:512,1207959553:32768,1476395009:8388610,1744830465:2,2013265921:33282,2281701377:32770,2550136833:8389122,2818572289:514,3087007745:8421888,3355443201:8389120,3623878657:0,3892314113:33280,4160749569:8421378},{0:1074282512,16777216:16384,33554432:524288,50331648:1074266128,67108864:1073741840,83886080:1074282496,100663296:1073758208,117440512:16,134217728:540672,150994944:1073758224,167772160:1073741824,184549376:540688,201326592:524304,218103808:0,234881024:16400,251658240:1074266112,8388608:1073758208,25165824:540688,41943040:16,58720256:1073758224,75497472:1074282512,92274688:1073741824,109051904:524288,125829120:1074266128,142606336:524304,159383552:0,176160768:16384,192937984:1074266112,209715200:1073741840,226492416:540672,243269632:1074282496,260046848:16400,268435456:0,285212672:1074266128,301989888:1073758224,318767104:1074282496,335544320:1074266112,352321536:16,369098752:540688,385875968:16384,402653184:16400,419430400:524288,436207616:524304,452984832:1073741840,469762048:540672,486539264:1073758208,503316480:1073741824,520093696:1074282512,276824064:540688,293601280:524288,310378496:1074266112,327155712:16384,343932928:1073758208,360710144:1074282512,377487360:16,394264576:1073741824,411041792:1074282496,427819008:1073741840,444596224:1073758224,461373440:524304,478150656:0,494927872:16400,511705088:1074266128,528482304:540672},{0:260,1048576:0,2097152:67109120,3145728:65796,4194304:65540,5242880:67108868,6291456:67174660,7340032:67174400,8388608:67108864,9437184:67174656,10485760:65792,11534336:67174404,12582912:67109124,13631488:65536,14680064:4,15728640:256,524288:67174656,1572864:67174404,2621440:0,3670016:67109120,4718592:67108868,5767168:65536,6815744:65540,7864320:260,8912896:4,9961472:256,11010048:67174400,12058624:65796,13107200:65792,14155776:67109124,15204352:67174660,16252928:67108864,16777216:67174656,17825792:65540,18874368:65536,19922944:67109120,20971520:256,22020096:67174660,23068672:67108868,24117248:0,25165824:67109124,26214400:67108864,27262976:4,28311552:65792,29360128:67174400,30408704:260,31457280:65796,32505856:67174404,17301504:67108864,18350080:260,19398656:67174656,20447232:0,21495808:65540,22544384:67109120,23592960:256,24641536:67174404,25690112:65536,26738688:67174660,27787264:65796,28835840:67108868,29884416:67109124,30932992:67174400,31981568:4,33030144:65792},{0:2151682048,65536:2147487808,131072:4198464,196608:2151677952,262144:0,327680:4198400,393216:2147483712,458752:4194368,524288:2147483648,589824:4194304,655360:64,720896:2147487744,786432:2151678016,851968:4160,917504:4096,983040:2151682112,32768:2147487808,98304:64,163840:2151678016,229376:2147487744,294912:4198400,360448:2151682112,425984:0,491520:2151677952,557056:4096,622592:2151682048,688128:4194304,753664:4160,819200:2147483648,884736:4194368,950272:4198464,1015808:2147483712,1048576:4194368,1114112:4198400,1179648:2147483712,1245184:0,1310720:4160,1376256:2151678016,1441792:2151682048,1507328:2147487808,1572864:2151682112,1638400:2147483648,1703936:2151677952,1769472:4198464,1835008:2147487744,1900544:4194304,1966080:64,2031616:4096,1081344:2151677952,1146880:2151682112,1212416:0,1277952:4198400,1343488:4194368,1409024:2147483648,1474560:2147487808,1540096:64,1605632:2147483712,1671168:4096,1736704:2147487744,1802240:2151678016,1867776:4160,1933312:2151682048,1998848:4194304,2064384:4198464},{0:128,4096:17039360,8192:262144,12288:536870912,16384:537133184,20480:16777344,24576:553648256,28672:262272,32768:16777216,36864:537133056,40960:536871040,45056:553910400,49152:553910272,53248:0,57344:17039488,61440:553648128,2048:17039488,6144:553648256,10240:128,14336:17039360,18432:262144,22528:537133184,26624:553910272,30720:536870912,34816:537133056,38912:0,43008:553910400,47104:16777344,51200:536871040,55296:553648128,59392:16777216,63488:262272,65536:262144,69632:128,73728:536870912,77824:553648256,81920:16777344,86016:553910272,90112:537133184,94208:16777216,98304:553910400,102400:553648128,106496:17039360,110592:537133056,114688:262272,118784:536871040,122880:0,126976:17039488,67584:553648256,71680:16777216,75776:17039360,79872:537133184,83968:536870912,88064:17039488,92160:128,96256:553910272,100352:262272,104448:553910400,108544:0,112640:553648128,116736:16777344,120832:262144,124928:537133056,129024:536871040},{0:268435464,256:8192,512:270532608,768:270540808,1024:268443648,1280:2097152,1536:2097160,1792:268435456,2048:0,2304:268443656,2560:2105344,2816:8,3072:270532616,3328:2105352,3584:8200,3840:270540800,128:270532608,384:270540808,640:8,896:2097152,1152:2105352,1408:268435464,1664:268443648,1920:8200,2176:2097160,2432:8192,2688:268443656,2944:270532616,3200:0,3456:270540800,3712:2105344,3968:268435456,4096:268443648,4352:270532616,4608:270540808,4864:8200,5120:2097152,5376:268435456,5632:268435464,5888:2105344,6144:2105352,6400:0,6656:8,6912:270532608,7168:8192,7424:268443656,7680:270540800,7936:2097160,4224:8,4480:2105344,4736:2097152,4992:268435464,5248:268443648,5504:8200,5760:270540808,6016:270532608,6272:270540800,6528:270532616,6784:8192,7040:2105352,7296:2097160,7552:0,7808:268435456,8064:268443656},{0:1048576,16:33555457,32:1024,48:1049601,64:34604033,80:0,96:1,112:34603009,128:33555456,144:1048577,160:33554433,176:34604032,192:34603008,208:1025,224:1049600,240:33554432,8:34603009,24:0,40:33555457,56:34604032,72:1048576,88:33554433,104:33554432,120:1025,136:1049601,152:33555456,168:34603008,184:1048577,200:1024,216:34604033,232:1,248:1049600,256:33554432,272:1048576,288:33555457,304:34603009,320:1048577,336:33555456,352:34604032,368:1049601,384:1025,400:34604033,416:1049600,432:1,448:0,464:34603008,480:33554433,496:1024,264:1049600,280:33555457,296:34603009,312:1,328:33554432,344:1048576,360:1025,376:34604032,392:33554433,408:34603008,424:0,440:34604033,456:1049601,472:1024,488:33555456,504:1048577},{0:134219808,1:131072,2:134217728,3:32,4:131104,5:134350880,6:134350848,7:2048,8:134348800,9:134219776,10:133120,11:134348832,12:2080,13:0,14:134217760,15:133152,2147483648:2048,2147483649:134350880,2147483650:134219808,2147483651:134217728,2147483652:134348800,2147483653:133120,2147483654:133152,2147483655:32,2147483656:134217760,2147483657:2080,2147483658:131104,2147483659:134350848,2147483660:0,2147483661:134348832,2147483662:134219776,2147483663:131072,16:133152,17:134350848,18:32,19:2048,20:134219776,21:134217760,22:134348832,23:131072,24:0,25:131104,26:134348800,27:134219808,28:134350880,29:133120,30:2080,31:134217728,2147483664:131072,2147483665:2048,2147483666:134348832,2147483667:133152,2147483668:32,2147483669:134348800,2147483670:134217728,2147483671:134219808,2147483672:134350880,2147483673:134217760,2147483674:134219776,2147483675:0,2147483676:133120,2147483677:2080,2147483678:131104,2147483679:134350848}],u=[4160749569,528482304,33030144,2064384,129024,8064,504,2147483679],n=e.DES=r.extend({_doReset:function(){for(var t=this._key.words,e=[],r=0;r<56;r++){var i=h[r]-1;e[r]=t[i>>>5]>>>31-i%32&1}for(var n=this._subKeys=[],o=0;o<16;o++){for(var s=n[o]=[],c=f[o],r=0;r<24;r++)s[r/6|0]|=e[(l[r]-1+c)%28]<<31-r%6,s[4+(r/6|0)]|=e[28+(l[r+24]-1+c)%28]<<31-r%6;s[0]=s[0]<<1|s[0]>>>31;for(r=1;r<7;r++)s[r]=s[r]>>>4*(r-1)+3;s[7]=s[7]<<5|s[7]>>>27}for(var a=this._invSubKeys=[],r=0;r<16;r++)a[r]=n[15-r]},encryptBlock:function(t,e){this._doCryptBlock(t,e,this._subKeys)},decryptBlock:function(t,e){this._doCryptBlock(t,e,this._invSubKeys)},_doCryptBlock:function(t,e,r){this._lBlock=t[e],this._rBlock=t[e+1],p.call(this,4,252645135),p.call(this,16,65535),_.call(this,2,858993459),_.call(this,8,16711935),p.call(this,1,1431655765);for(var i=0;i<16;i++){for(var n=r[i],o=this._lBlock,s=this._rBlock,c=0,a=0;a<8;a++)c|=d[a][((s^n[a])&u[a])>>>0];this._lBlock=s,this._rBlock=o^c}var h=this._lBlock;this._lBlock=this._rBlock,this._rBlock=h,p.call(this,1,1431655765),_.call(this,8,16711935),_.call(this,2,858993459),p.call(this,16,65535),p.call(this,4,252645135),t[e]=this._lBlock,t[e+1]=this._rBlock},keySize:2,ivSize:2,blockSize:2});function p(t,e){e=(this._lBlock>>>t^this._rBlock)&e;this._rBlock^=e,this._lBlock^=e<<t}function _(t,e){e=(this._rBlock>>>t^this._lBlock)&e;this._lBlock^=e,this._rBlock^=e<<t}t.DES=r._createHelper(n);e=e.TripleDES=r.extend({_doReset:function(){var t=this._key.words;if(2!==t.length&&4!==t.length&&t.length<6)throw new Error("Invalid key length - 3DES requires the key length to be 64, 128, 192 or >192.");var e=t.slice(0,2),r=t.length<4?t.slice(0,2):t.slice(2,4),t=t.length<6?t.slice(0,2):t.slice(4,6);this._des1=n.createEncryptor(i.create(e)),this._des2=n.createEncryptor(i.create(r)),this._des3=n.createEncryptor(i.create(t))},encryptBlock:function(t,e){this._des1.encryptBlock(t,e),this._des2.decryptBlock(t,e),this._des3.encryptBlock(t,e)},decryptBlock:function(t,e){this._des3.decryptBlock(t,e),this._des2.encryptBlock(t,e),this._des1.decryptBlock(t,e)},keySize:6,ivSize:2,blockSize:2});t.TripleDES=r._createHelper(e)}(),function(){var t=U,e=t.lib.StreamCipher,r=t.algo,i=r.RC4=e.extend({_doReset:function(){for(var t=this._key,e=t.words,r=t.sigBytes,i=this._S=[],n=0;n<256;n++)i[n]=n;for(var n=0,o=0;n<256;n++){var s=n%r,s=e[s>>>2]>>>24-s%4*8&255,o=(o+i[n]+s)%256,s=i[n];i[n]=i[o],i[o]=s}this._i=this._j=0},_doProcessBlock:function(t,e){t[e]^=n.call(this)},keySize:8,ivSize:0});function n(){for(var t=this._S,e=this._i,r=this._j,i=0,n=0;n<4;n++){var r=(r+t[e=(e+1)%256])%256,o=t[e];t[e]=t[r],t[r]=o,i|=t[(t[e]+t[r])%256]<<24-8*n}return this._i=e,this._j=r,i}t.RC4=e._createHelper(i);r=r.RC4Drop=i.extend({cfg:i.cfg.extend({drop:192}),_doReset:function(){i._doReset.call(this);for(var t=this.cfg.drop;0<t;t--)n.call(this)}});t.RC4Drop=e._createHelper(r)}(),F=(M=U).lib.StreamCipher,P=M.algo,D=[],E=[],R=[],P=P.Rabbit=F.extend({_doReset:function(){for(var t=this._key.words,e=this.cfg.iv,r=0;r<4;r++)t[r]=16711935&(t[r]<<8|t[r]>>>24)|4278255360&(t[r]<<24|t[r]>>>8);for(var i=this._X=[t[0],t[3]<<16|t[2]>>>16,t[1],t[0]<<16|t[3]>>>16,t[2],t[1]<<16|t[0]>>>16,t[3],t[2]<<16|t[1]>>>16],n=this._C=[t[2]<<16|t[2]>>>16,4294901760&t[0]|65535&t[1],t[3]<<16|t[3]>>>16,4294901760&t[1]|65535&t[2],t[0]<<16|t[0]>>>16,4294901760&t[2]|65535&t[3],t[1]<<16|t[1]>>>16,4294901760&t[3]|65535&t[0]],r=this._b=0;r<4;r++)N.call(this);for(r=0;r<8;r++)n[r]^=i[r+4&7];if(e){var o=e.words,s=o[0],c=o[1],e=16711935&(s<<8|s>>>24)|4278255360&(s<<24|s>>>8),o=16711935&(c<<8|c>>>24)|4278255360&(c<<24|c>>>8),s=e>>>16|4294901760&o,c=o<<16|65535&e;n[0]^=e,n[1]^=s,n[2]^=o,n[3]^=c,n[4]^=e,n[5]^=s,n[6]^=o,n[7]^=c;for(r=0;r<4;r++)N.call(this)}},_doProcessBlock:function(t,e){var r=this._X;N.call(this),D[0]=r[0]^r[5]>>>16^r[3]<<16,D[1]=r[2]^r[7]>>>16^r[5]<<16,D[2]=r[4]^r[1]>>>16^r[7]<<16,D[3]=r[6]^r[3]>>>16^r[1]<<16;for(var i=0;i<4;i++)D[i]=16711935&(D[i]<<8|D[i]>>>24)|4278255360&(D[i]<<24|D[i]>>>8),t[e+i]^=D[i]},blockSize:4,ivSize:2}),M.Rabbit=F._createHelper(P),F=(M=U).lib.StreamCipher,P=M.algo,W=[],O=[],I=[],P=P.RabbitLegacy=F.extend({_doReset:function(){for(var t=this._key.words,e=this.cfg.iv,r=this._X=[t[0],t[3]<<16|t[2]>>>16,t[1],t[0]<<16|t[3]>>>16,t[2],t[1]<<16|t[0]>>>16,t[3],t[2]<<16|t[1]>>>16],i=this._C=[t[2]<<16|t[2]>>>16,4294901760&t[0]|65535&t[1],t[3]<<16|t[3]>>>16,4294901760&t[1]|65535&t[2],t[0]<<16|t[0]>>>16,4294901760&t[2]|65535&t[3],t[1]<<16|t[1]>>>16,4294901760&t[3]|65535&t[0]],n=this._b=0;n<4;n++)q.call(this);for(n=0;n<8;n++)i[n]^=r[n+4&7];if(e){var o=e.words,s=o[0],t=o[1],e=16711935&(s<<8|s>>>24)|4278255360&(s<<24|s>>>8),o=16711935&(t<<8|t>>>24)|4278255360&(t<<24|t>>>8),s=e>>>16|4294901760&o,t=o<<16|65535&e;i[0]^=e,i[1]^=s,i[2]^=o,i[3]^=t,i[4]^=e,i[5]^=s,i[6]^=o,i[7]^=t;for(n=0;n<4;n++)q.call(this)}},_doProcessBlock:function(t,e){var r=this._X;q.call(this),W[0]=r[0]^r[5]>>>16^r[3]<<16,W[1]=r[2]^r[7]>>>16^r[5]<<16,W[2]=r[4]^r[1]>>>16^r[7]<<16,W[3]=r[6]^r[3]>>>16^r[1]<<16;for(var i=0;i<4;i++)W[i]=16711935&(W[i]<<8|W[i]>>>24)|4278255360&(W[i]<<24|W[i]>>>8),t[e+i]^=W[i]},blockSize:4,ivSize:2}),M.RabbitLegacy=F._createHelper(P),U});
\ No newline at end of file
diff --git a/web/static/js/datatables.min.js b/web/static/js/datatables.min.js
new file mode 100644
index 00000000000..1ca02cf8e88
--- /dev/null
+++ b/web/static/js/datatables.min.js
@@ -0,0 +1,233 @@
+/*
+ * This combined file was created by the DataTables downloader builder:
+ *   https://datatables.net/download
+ *
+ * To rebuild or modify this file with the latest versions of the included
+ * software please visit:
+ *   https://datatables.net/download/#dt/jszip-3.10.1/pdfmake-0.2.7/dt-2.0.8/af-2.7.0/b-3.0.2/b-colvis-3.0.2/b-html5-3.0.2/b-print-3.0.2/cr-2.0.3/date-1.5.2/fc-5.0.1/fh-4.0.1/kt-2.12.1/r-3.0.2/rg-1.5.0/rr-1.5.0/sc-2.4.3/sb-1.7.1/sp-2.3.1/sl-2.0.3/sr-1.4.1
+ *
+ * Included libraries:
+ *   JSZip 3.10.1, pdfmake 0.2.7, DataTables 2.0.8, AutoFill 2.7.0, Buttons 3.0.2, Column visibility 3.0.2, HTML5 export 3.0.2, Print view 3.0.2, ColReorder 2.0.3, DateTime 1.5.2, FixedColumns 5.0.1, FixedHeader 4.0.1, KeyTable 2.12.1, Responsive 3.0.2, RowGroup 1.5.0, RowReorder 1.5.0, Scroller 2.4.3, SearchBuilder 1.7.1, SearchPanes 2.3.1, Select 2.0.3, StateRestore 1.4.1
+ */
+
+/*!
+
+JSZip v3.10.1 - A JavaScript class for generating and reading zip files
+<http://stuartk.com/jszip>
+
+(c) 2009-2016 Stuart Knightley <stuart [at] stuartk.com>
+Dual licenced under the MIT license or GPLv3. See https://raw.github.com/Stuk/jszip/main/LICENSE.markdown.
+
+JSZip uses the library pako released under the MIT license :
+https://github.com/nodeca/pako/blob/main/LICENSE
+*/
+
+!function(e){if("object"==typeof exports&&"undefined"!=typeof module)module.exports=e();else if("function"==typeof define&&define.amd)define([],e);else{("undefined"!=typeof window?window:"undefined"!=typeof global?global:"undefined"!=typeof self?self:this).JSZip=e()}}(function(){return function s(a,o,h){function u(r,e){if(!o[r]){if(!a[r]){var t="function"==typeof require&&require;if(!e&&t)return t(r,!0);if(l)return l(r,!0);var n=new Error("Cannot find module '"+r+"'");throw n.code="MODULE_NOT_FOUND",n}var i=o[r]={exports:{}};a[r][0].call(i.exports,function(e){var t=a[r][1][e];return u(t||e)},i,i.exports,s,a,o,h)}return o[r].exports}for(var l="function"==typeof require&&require,e=0;e<h.length;e++)u(h[e]);return u}({1:[function(e,t,r){"use strict";var d=e("./utils"),c=e("./support"),p="ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=";r.encode=function(e){for(var t,r,n,i,s,a,o,h=[],u=0,l=e.length,f=l,c="string"!==d.getTypeOf(e);u<e.length;)f=l-u,n=c?(t=e[u++],r=u<l?e[u++]:0,u<l?e[u++]:0):(t=e.charCodeAt(u++),r=u<l?e.charCodeAt(u++):0,u<l?e.charCodeAt(u++):0),i=t>>2,s=(3&t)<<4|r>>4,a=1<f?(15&r)<<2|n>>6:64,o=2<f?63&n:64,h.push(p.charAt(i)+p.charAt(s)+p.charAt(a)+p.charAt(o));return h.join("")},r.decode=function(e){var t,r,n,i,s,a,o=0,h=0,u="data:";if(e.substr(0,u.length)===u)throw new Error("Invalid base64 input, it looks like a data url.");var l,f=3*(e=e.replace(/[^A-Za-z0-9+/=]/g,"")).length/4;if(e.charAt(e.length-1)===p.charAt(64)&&f--,e.charAt(e.length-2)===p.charAt(64)&&f--,f%1!=0)throw new Error("Invalid base64 input, bad content length.");for(l=c.uint8array?new Uint8Array(0|f):new Array(0|f);o<e.length;)t=p.indexOf(e.charAt(o++))<<2|(i=p.indexOf(e.charAt(o++)))>>4,r=(15&i)<<4|(s=p.indexOf(e.charAt(o++)))>>2,n=(3&s)<<6|(a=p.indexOf(e.charAt(o++))),l[h++]=t,64!==s&&(l[h++]=r),64!==a&&(l[h++]=n);return l}},{"./support":30,"./utils":32}],2:[function(e,t,r){"use strict";var n=e("./external"),i=e("./stream/DataWorker"),s=e("./stream/Crc32Probe"),a=e("./stream/DataLengthProbe");function o(e,t,r,n,i){this.compressedSize=e,this.uncompressedSize=t,this.crc32=r,this.compression=n,this.compressedContent=i}o.prototype={getContentWorker:function(){var e=new i(n.Promise.resolve(this.compressedContent)).pipe(this.compression.uncompressWorker()).pipe(new a("data_length")),t=this;return e.on("end",function(){if(this.streamInfo.data_length!==t.uncompressedSize)throw new Error("Bug : uncompressed data size mismatch")}),e},getCompressedWorker:function(){return new i(n.Promise.resolve(this.compressedContent)).withStreamInfo("compressedSize",this.compressedSize).withStreamInfo("uncompressedSize",this.uncompressedSize).withStreamInfo("crc32",this.crc32).withStreamInfo("compression",this.compression)}},o.createWorkerFrom=function(e,t,r){return e.pipe(new s).pipe(new a("uncompressedSize")).pipe(t.compressWorker(r)).pipe(new a("compressedSize")).withStreamInfo("compression",t)},t.exports=o},{"./external":6,"./stream/Crc32Probe":25,"./stream/DataLengthProbe":26,"./stream/DataWorker":27}],3:[function(e,t,r){"use strict";var n=e("./stream/GenericWorker");r.STORE={magic:"\0\0",compressWorker:function(){return new n("STORE compression")},uncompressWorker:function(){return new n("STORE decompression")}},r.DEFLATE=e("./flate")},{"./flate":7,"./stream/GenericWorker":28}],4:[function(e,t,r){"use strict";var n=e("./utils");var o=function(){for(var e,t=[],r=0;r<256;r++){e=r;for(var n=0;n<8;n++)e=1&e?3988292384^e>>>1:e>>>1;t[r]=e}return t}();t.exports=function(e,t){return void 0!==e&&e.length?"string"!==n.getTypeOf(e)?function(e,t,r,n){var i=o,s=n+r;e^=-1;for(var a=n;a<s;a++)e=e>>>8^i[255&(e^t[a])];return-1^e}(0|t,e,e.length,0):function(e,t,r,n){var i=o,s=n+r;e^=-1;for(var a=n;a<s;a++)e=e>>>8^i[255&(e^t.charCodeAt(a))];return-1^e}(0|t,e,e.length,0):0}},{"./utils":32}],5:[function(e,t,r){"use strict";r.base64=!1,r.binary=!1,r.dir=!1,r.createFolders=!0,r.date=null,r.compression=null,r.compressionOptions=null,r.comment=null,r.unixPermissions=null,r.dosPermissions=null},{}],6:[function(e,t,r){"use strict";var n=null;n="undefined"!=typeof Promise?Promise:e("lie"),t.exports={Promise:n}},{lie:37}],7:[function(e,t,r){"use strict";var n="undefined"!=typeof Uint8Array&&"undefined"!=typeof Uint16Array&&"undefined"!=typeof Uint32Array,i=e("pako"),s=e("./utils"),a=e("./stream/GenericWorker"),o=n?"uint8array":"array";function h(e,t){a.call(this,"FlateWorker/"+e),this._pako=null,this._pakoAction=e,this._pakoOptions=t,this.meta={}}r.magic="\b\0",s.inherits(h,a),h.prototype.processChunk=function(e){this.meta=e.meta,null===this._pako&&this._createPako(),this._pako.push(s.transformTo(o,e.data),!1)},h.prototype.flush=function(){a.prototype.flush.call(this),null===this._pako&&this._createPako(),this._pako.push([],!0)},h.prototype.cleanUp=function(){a.prototype.cleanUp.call(this),this._pako=null},h.prototype._createPako=function(){this._pako=new i[this._pakoAction]({raw:!0,level:this._pakoOptions.level||-1});var t=this;this._pako.onData=function(e){t.push({data:e,meta:t.meta})}},r.compressWorker=function(e){return new h("Deflate",e)},r.uncompressWorker=function(){return new h("Inflate",{})}},{"./stream/GenericWorker":28,"./utils":32,pako:38}],8:[function(e,t,r){"use strict";function A(e,t){var r,n="";for(r=0;r<t;r++)n+=String.fromCharCode(255&e),e>>>=8;return n}function n(e,t,r,n,i,s){var a,o,h=e.file,u=e.compression,l=s!==O.utf8encode,f=I.transformTo("string",s(h.name)),c=I.transformTo("string",O.utf8encode(h.name)),d=h.comment,p=I.transformTo("string",s(d)),m=I.transformTo("string",O.utf8encode(d)),_=c.length!==h.name.length,g=m.length!==d.length,b="",v="",y="",w=h.dir,k=h.date,x={crc32:0,compressedSize:0,uncompressedSize:0};t&&!r||(x.crc32=e.crc32,x.compressedSize=e.compressedSize,x.uncompressedSize=e.uncompressedSize);var S=0;t&&(S|=8),l||!_&&!g||(S|=2048);var z=0,C=0;w&&(z|=16),"UNIX"===i?(C=798,z|=function(e,t){var r=e;return e||(r=t?16893:33204),(65535&r)<<16}(h.unixPermissions,w)):(C=20,z|=function(e){return 63&(e||0)}(h.dosPermissions)),a=k.getUTCHours(),a<<=6,a|=k.getUTCMinutes(),a<<=5,a|=k.getUTCSeconds()/2,o=k.getUTCFullYear()-1980,o<<=4,o|=k.getUTCMonth()+1,o<<=5,o|=k.getUTCDate(),_&&(v=A(1,1)+A(B(f),4)+c,b+="up"+A(v.length,2)+v),g&&(y=A(1,1)+A(B(p),4)+m,b+="uc"+A(y.length,2)+y);var E="";return E+="\n\0",E+=A(S,2),E+=u.magic,E+=A(a,2),E+=A(o,2),E+=A(x.crc32,4),E+=A(x.compressedSize,4),E+=A(x.uncompressedSize,4),E+=A(f.length,2),E+=A(b.length,2),{fileRecord:R.LOCAL_FILE_HEADER+E+f+b,dirRecord:R.CENTRAL_FILE_HEADER+A(C,2)+E+A(p.length,2)+"\0\0\0\0"+A(z,4)+A(n,4)+f+b+p}}var I=e("../utils"),i=e("../stream/GenericWorker"),O=e("../utf8"),B=e("../crc32"),R=e("../signature");function s(e,t,r,n){i.call(this,"ZipFileWorker"),this.bytesWritten=0,this.zipComment=t,this.zipPlatform=r,this.encodeFileName=n,this.streamFiles=e,this.accumulate=!1,this.contentBuffer=[],this.dirRecords=[],this.currentSourceOffset=0,this.entriesCount=0,this.currentFile=null,this._sources=[]}I.inherits(s,i),s.prototype.push=function(e){var t=e.meta.percent||0,r=this.entriesCount,n=this._sources.length;this.accumulate?this.contentBuffer.push(e):(this.bytesWritten+=e.data.length,i.prototype.push.call(this,{data:e.data,meta:{currentFile:this.currentFile,percent:r?(t+100*(r-n-1))/r:100}}))},s.prototype.openedSource=function(e){this.currentSourceOffset=this.bytesWritten,this.currentFile=e.file.name;var t=this.streamFiles&&!e.file.dir;if(t){var r=n(e,t,!1,this.currentSourceOffset,this.zipPlatform,this.encodeFileName);this.push({data:r.fileRecord,meta:{percent:0}})}else this.accumulate=!0},s.prototype.closedSource=function(e){this.accumulate=!1;var t=this.streamFiles&&!e.file.dir,r=n(e,t,!0,this.currentSourceOffset,this.zipPlatform,this.encodeFileName);if(this.dirRecords.push(r.dirRecord),t)this.push({data:function(e){return R.DATA_DESCRIPTOR+A(e.crc32,4)+A(e.compressedSize,4)+A(e.uncompressedSize,4)}(e),meta:{percent:100}});else for(this.push({data:r.fileRecord,meta:{percent:0}});this.contentBuffer.length;)this.push(this.contentBuffer.shift());this.currentFile=null},s.prototype.flush=function(){for(var e=this.bytesWritten,t=0;t<this.dirRecords.length;t++)this.push({data:this.dirRecords[t],meta:{percent:100}});var r=this.bytesWritten-e,n=function(e,t,r,n,i){var s=I.transformTo("string",i(n));return R.CENTRAL_DIRECTORY_END+"\0\0\0\0"+A(e,2)+A(e,2)+A(t,4)+A(r,4)+A(s.length,2)+s}(this.dirRecords.length,r,e,this.zipComment,this.encodeFileName);this.push({data:n,meta:{percent:100}})},s.prototype.prepareNextSource=function(){this.previous=this._sources.shift(),this.openedSource(this.previous.streamInfo),this.isPaused?this.previous.pause():this.previous.resume()},s.prototype.registerPrevious=function(e){this._sources.push(e);var t=this;return e.on("data",function(e){t.processChunk(e)}),e.on("end",function(){t.closedSource(t.previous.streamInfo),t._sources.length?t.prepareNextSource():t.end()}),e.on("error",function(e){t.error(e)}),this},s.prototype.resume=function(){return!!i.prototype.resume.call(this)&&(!this.previous&&this._sources.length?(this.prepareNextSource(),!0):this.previous||this._sources.length||this.generatedError?void 0:(this.end(),!0))},s.prototype.error=function(e){var t=this._sources;if(!i.prototype.error.call(this,e))return!1;for(var r=0;r<t.length;r++)try{t[r].error(e)}catch(e){}return!0},s.prototype.lock=function(){i.prototype.lock.call(this);for(var e=this._sources,t=0;t<e.length;t++)e[t].lock()},t.exports=s},{"../crc32":4,"../signature":23,"../stream/GenericWorker":28,"../utf8":31,"../utils":32}],9:[function(e,t,r){"use strict";var u=e("../compressions"),n=e("./ZipFileWorker");r.generateWorker=function(e,a,t){var o=new n(a.streamFiles,t,a.platform,a.encodeFileName),h=0;try{e.forEach(function(e,t){h++;var r=function(e,t){var r=e||t,n=u[r];if(!n)throw new Error(r+" is not a valid compression method !");return n}(t.options.compression,a.compression),n=t.options.compressionOptions||a.compressionOptions||{},i=t.dir,s=t.date;t._compressWorker(r,n).withStreamInfo("file",{name:e,dir:i,date:s,comment:t.comment||"",unixPermissions:t.unixPermissions,dosPermissions:t.dosPermissions}).pipe(o)}),o.entriesCount=h}catch(e){o.error(e)}return o}},{"../compressions":3,"./ZipFileWorker":8}],10:[function(e,t,r){"use strict";function n(){if(!(this instanceof n))return new n;if(arguments.length)throw new Error("The constructor with parameters has been removed in JSZip 3.0, please check the upgrade guide.");this.files=Object.create(null),this.comment=null,this.root="",this.clone=function(){var e=new n;for(var t in this)"function"!=typeof this[t]&&(e[t]=this[t]);return e}}(n.prototype=e("./object")).loadAsync=e("./load"),n.support=e("./support"),n.defaults=e("./defaults"),n.version="3.10.1",n.loadAsync=function(e,t){return(new n).loadAsync(e,t)},n.external=e("./external"),t.exports=n},{"./defaults":5,"./external":6,"./load":11,"./object":15,"./support":30}],11:[function(e,t,r){"use strict";var u=e("./utils"),i=e("./external"),n=e("./utf8"),s=e("./zipEntries"),a=e("./stream/Crc32Probe"),l=e("./nodejsUtils");function f(n){return new i.Promise(function(e,t){var r=n.decompressed.getContentWorker().pipe(new a);r.on("error",function(e){t(e)}).on("end",function(){r.streamInfo.crc32!==n.decompressed.crc32?t(new Error("Corrupted zip : CRC32 mismatch")):e()}).resume()})}t.exports=function(e,o){var h=this;return o=u.extend(o||{},{base64:!1,checkCRC32:!1,optimizedBinaryString:!1,createFolders:!1,decodeFileName:n.utf8decode}),l.isNode&&l.isStream(e)?i.Promise.reject(new Error("JSZip can't accept a stream when loading a zip file.")):u.prepareContent("the loaded zip file",e,!0,o.optimizedBinaryString,o.base64).then(function(e){var t=new s(o);return t.load(e),t}).then(function(e){var t=[i.Promise.resolve(e)],r=e.files;if(o.checkCRC32)for(var n=0;n<r.length;n++)t.push(f(r[n]));return i.Promise.all(t)}).then(function(e){for(var t=e.shift(),r=t.files,n=0;n<r.length;n++){var i=r[n],s=i.fileNameStr,a=u.resolve(i.fileNameStr);h.file(a,i.decompressed,{binary:!0,optimizedBinaryString:!0,date:i.date,dir:i.dir,comment:i.fileCommentStr.length?i.fileCommentStr:null,unixPermissions:i.unixPermissions,dosPermissions:i.dosPermissions,createFolders:o.createFolders}),i.dir||(h.file(a).unsafeOriginalName=s)}return t.zipComment.length&&(h.comment=t.zipComment),h})}},{"./external":6,"./nodejsUtils":14,"./stream/Crc32Probe":25,"./utf8":31,"./utils":32,"./zipEntries":33}],12:[function(e,t,r){"use strict";var n=e("../utils"),i=e("../stream/GenericWorker");function s(e,t){i.call(this,"Nodejs stream input adapter for "+e),this._upstreamEnded=!1,this._bindStream(t)}n.inherits(s,i),s.prototype._bindStream=function(e){var t=this;(this._stream=e).pause(),e.on("data",function(e){t.push({data:e,meta:{percent:0}})}).on("error",function(e){t.isPaused?this.generatedError=e:t.error(e)}).on("end",function(){t.isPaused?t._upstreamEnded=!0:t.end()})},s.prototype.pause=function(){return!!i.prototype.pause.call(this)&&(this._stream.pause(),!0)},s.prototype.resume=function(){return!!i.prototype.resume.call(this)&&(this._upstreamEnded?this.end():this._stream.resume(),!0)},t.exports=s},{"../stream/GenericWorker":28,"../utils":32}],13:[function(e,t,r){"use strict";var i=e("readable-stream").Readable;function n(e,t,r){i.call(this,t),this._helper=e;var n=this;e.on("data",function(e,t){n.push(e)||n._helper.pause(),r&&r(t)}).on("error",function(e){n.emit("error",e)}).on("end",function(){n.push(null)})}e("../utils").inherits(n,i),n.prototype._read=function(){this._helper.resume()},t.exports=n},{"../utils":32,"readable-stream":16}],14:[function(e,t,r){"use strict";t.exports={isNode:"undefined"!=typeof Buffer,newBufferFrom:function(e,t){if(Buffer.from&&Buffer.from!==Uint8Array.from)return Buffer.from(e,t);if("number"==typeof e)throw new Error('The "data" argument must not be a number');return new Buffer(e,t)},allocBuffer:function(e){if(Buffer.alloc)return Buffer.alloc(e);var t=new Buffer(e);return t.fill(0),t},isBuffer:function(e){return Buffer.isBuffer(e)},isStream:function(e){return e&&"function"==typeof e.on&&"function"==typeof e.pause&&"function"==typeof e.resume}}},{}],15:[function(e,t,r){"use strict";function s(e,t,r){var n,i=u.getTypeOf(t),s=u.extend(r||{},f);s.date=s.date||new Date,null!==s.compression&&(s.compression=s.compression.toUpperCase()),"string"==typeof s.unixPermissions&&(s.unixPermissions=parseInt(s.unixPermissions,8)),s.unixPermissions&&16384&s.unixPermissions&&(s.dir=!0),s.dosPermissions&&16&s.dosPermissions&&(s.dir=!0),s.dir&&(e=g(e)),s.createFolders&&(n=_(e))&&b.call(this,n,!0);var a="string"===i&&!1===s.binary&&!1===s.base64;r&&void 0!==r.binary||(s.binary=!a),(t instanceof c&&0===t.uncompressedSize||s.dir||!t||0===t.length)&&(s.base64=!1,s.binary=!0,t="",s.compression="STORE",i="string");var o=null;o=t instanceof c||t instanceof l?t:p.isNode&&p.isStream(t)?new m(e,t):u.prepareContent(e,t,s.binary,s.optimizedBinaryString,s.base64);var h=new d(e,o,s);this.files[e]=h}var i=e("./utf8"),u=e("./utils"),l=e("./stream/GenericWorker"),a=e("./stream/StreamHelper"),f=e("./defaults"),c=e("./compressedObject"),d=e("./zipObject"),o=e("./generate"),p=e("./nodejsUtils"),m=e("./nodejs/NodejsStreamInputAdapter"),_=function(e){"/"===e.slice(-1)&&(e=e.substring(0,e.length-1));var t=e.lastIndexOf("/");return 0<t?e.substring(0,t):""},g=function(e){return"/"!==e.slice(-1)&&(e+="/"),e},b=function(e,t){return t=void 0!==t?t:f.createFolders,e=g(e),this.files[e]||s.call(this,e,null,{dir:!0,createFolders:t}),this.files[e]};function h(e){return"[object RegExp]"===Object.prototype.toString.call(e)}var n={load:function(){throw new Error("This method has been removed in JSZip 3.0, please check the upgrade guide.")},forEach:function(e){var t,r,n;for(t in this.files)n=this.files[t],(r=t.slice(this.root.length,t.length))&&t.slice(0,this.root.length)===this.root&&e(r,n)},filter:function(r){var n=[];return this.forEach(function(e,t){r(e,t)&&n.push(t)}),n},file:function(e,t,r){if(1!==arguments.length)return e=this.root+e,s.call(this,e,t,r),this;if(h(e)){var n=e;return this.filter(function(e,t){return!t.dir&&n.test(e)})}var i=this.files[this.root+e];return i&&!i.dir?i:null},folder:function(r){if(!r)return this;if(h(r))return this.filter(function(e,t){return t.dir&&r.test(e)});var e=this.root+r,t=b.call(this,e),n=this.clone();return n.root=t.name,n},remove:function(r){r=this.root+r;var e=this.files[r];if(e||("/"!==r.slice(-1)&&(r+="/"),e=this.files[r]),e&&!e.dir)delete this.files[r];else for(var t=this.filter(function(e,t){return t.name.slice(0,r.length)===r}),n=0;n<t.length;n++)delete this.files[t[n].name];return this},generate:function(){throw new Error("This method has been removed in JSZip 3.0, please check the upgrade guide.")},generateInternalStream:function(e){var t,r={};try{if((r=u.extend(e||{},{streamFiles:!1,compression:"STORE",compressionOptions:null,type:"",platform:"DOS",comment:null,mimeType:"application/zip",encodeFileName:i.utf8encode})).type=r.type.toLowerCase(),r.compression=r.compression.toUpperCase(),"binarystring"===r.type&&(r.type="string"),!r.type)throw new Error("No output type specified.");u.checkSupport(r.type),"darwin"!==r.platform&&"freebsd"!==r.platform&&"linux"!==r.platform&&"sunos"!==r.platform||(r.platform="UNIX"),"win32"===r.platform&&(r.platform="DOS");var n=r.comment||this.comment||"";t=o.generateWorker(this,r,n)}catch(e){(t=new l("error")).error(e)}return new a(t,r.type||"string",r.mimeType)},generateAsync:function(e,t){return this.generateInternalStream(e).accumulate(t)},generateNodeStream:function(e,t){return(e=e||{}).type||(e.type="nodebuffer"),this.generateInternalStream(e).toNodejsStream(t)}};t.exports=n},{"./compressedObject":2,"./defaults":5,"./generate":9,"./nodejs/NodejsStreamInputAdapter":12,"./nodejsUtils":14,"./stream/GenericWorker":28,"./stream/StreamHelper":29,"./utf8":31,"./utils":32,"./zipObject":35}],16:[function(e,t,r){"use strict";t.exports=e("stream")},{stream:void 0}],17:[function(e,t,r){"use strict";var n=e("./DataReader");function i(e){n.call(this,e);for(var t=0;t<this.data.length;t++)e[t]=255&e[t]}e("../utils").inherits(i,n),i.prototype.byteAt=function(e){return this.data[this.zero+e]},i.prototype.lastIndexOfSignature=function(e){for(var t=e.charCodeAt(0),r=e.charCodeAt(1),n=e.charCodeAt(2),i=e.charCodeAt(3),s=this.length-4;0<=s;--s)if(this.data[s]===t&&this.data[s+1]===r&&this.data[s+2]===n&&this.data[s+3]===i)return s-this.zero;return-1},i.prototype.readAndCheckSignature=function(e){var t=e.charCodeAt(0),r=e.charCodeAt(1),n=e.charCodeAt(2),i=e.charCodeAt(3),s=this.readData(4);return t===s[0]&&r===s[1]&&n===s[2]&&i===s[3]},i.prototype.readData=function(e){if(this.checkOffset(e),0===e)return[];var t=this.data.slice(this.zero+this.index,this.zero+this.index+e);return this.index+=e,t},t.exports=i},{"../utils":32,"./DataReader":18}],18:[function(e,t,r){"use strict";var n=e("../utils");function i(e){this.data=e,this.length=e.length,this.index=0,this.zero=0}i.prototype={checkOffset:function(e){this.checkIndex(this.index+e)},checkIndex:function(e){if(this.length<this.zero+e||e<0)throw new Error("End of data reached (data length = "+this.length+", asked index = "+e+"). Corrupted zip ?")},setIndex:function(e){this.checkIndex(e),this.index=e},skip:function(e){this.setIndex(this.index+e)},byteAt:function(){},readInt:function(e){var t,r=0;for(this.checkOffset(e),t=this.index+e-1;t>=this.index;t--)r=(r<<8)+this.byteAt(t);return this.index+=e,r},readString:function(e){return n.transformTo("string",this.readData(e))},readData:function(){},lastIndexOfSignature:function(){},readAndCheckSignature:function(){},readDate:function(){var e=this.readInt(4);return new Date(Date.UTC(1980+(e>>25&127),(e>>21&15)-1,e>>16&31,e>>11&31,e>>5&63,(31&e)<<1))}},t.exports=i},{"../utils":32}],19:[function(e,t,r){"use strict";var n=e("./Uint8ArrayReader");function i(e){n.call(this,e)}e("../utils").inherits(i,n),i.prototype.readData=function(e){this.checkOffset(e);var t=this.data.slice(this.zero+this.index,this.zero+this.index+e);return this.index+=e,t},t.exports=i},{"../utils":32,"./Uint8ArrayReader":21}],20:[function(e,t,r){"use strict";var n=e("./DataReader");function i(e){n.call(this,e)}e("../utils").inherits(i,n),i.prototype.byteAt=function(e){return this.data.charCodeAt(this.zero+e)},i.prototype.lastIndexOfSignature=function(e){return this.data.lastIndexOf(e)-this.zero},i.prototype.readAndCheckSignature=function(e){return e===this.readData(4)},i.prototype.readData=function(e){this.checkOffset(e);var t=this.data.slice(this.zero+this.index,this.zero+this.index+e);return this.index+=e,t},t.exports=i},{"../utils":32,"./DataReader":18}],21:[function(e,t,r){"use strict";var n=e("./ArrayReader");function i(e){n.call(this,e)}e("../utils").inherits(i,n),i.prototype.readData=function(e){if(this.checkOffset(e),0===e)return new Uint8Array(0);var t=this.data.subarray(this.zero+this.index,this.zero+this.index+e);return this.index+=e,t},t.exports=i},{"../utils":32,"./ArrayReader":17}],22:[function(e,t,r){"use strict";var n=e("../utils"),i=e("../support"),s=e("./ArrayReader"),a=e("./StringReader"),o=e("./NodeBufferReader"),h=e("./Uint8ArrayReader");t.exports=function(e){var t=n.getTypeOf(e);return n.checkSupport(t),"string"!==t||i.uint8array?"nodebuffer"===t?new o(e):i.uint8array?new h(n.transformTo("uint8array",e)):new s(n.transformTo("array",e)):new a(e)}},{"../support":30,"../utils":32,"./ArrayReader":17,"./NodeBufferReader":19,"./StringReader":20,"./Uint8ArrayReader":21}],23:[function(e,t,r){"use strict";r.LOCAL_FILE_HEADER="PK",r.CENTRAL_FILE_HEADER="PK
",r.CENTRAL_DIRECTORY_END="PK",r.ZIP64_CENTRAL_DIRECTORY_LOCATOR="PK",r.ZIP64_CENTRAL_DIRECTORY_END="PK",r.DATA_DESCRIPTOR="PK\b"},{}],24:[function(e,t,r){"use strict";var n=e("./GenericWorker"),i=e("../utils");function s(e){n.call(this,"ConvertWorker to "+e),this.destType=e}i.inherits(s,n),s.prototype.processChunk=function(e){this.push({data:i.transformTo(this.destType,e.data),meta:e.meta})},t.exports=s},{"../utils":32,"./GenericWorker":28}],25:[function(e,t,r){"use strict";var n=e("./GenericWorker"),i=e("../crc32");function s(){n.call(this,"Crc32Probe"),this.withStreamInfo("crc32",0)}e("../utils").inherits(s,n),s.prototype.processChunk=function(e){this.streamInfo.crc32=i(e.data,this.streamInfo.crc32||0),this.push(e)},t.exports=s},{"../crc32":4,"../utils":32,"./GenericWorker":28}],26:[function(e,t,r){"use strict";var n=e("../utils"),i=e("./GenericWorker");function s(e){i.call(this,"DataLengthProbe for "+e),this.propName=e,this.withStreamInfo(e,0)}n.inherits(s,i),s.prototype.processChunk=function(e){if(e){var t=this.streamInfo[this.propName]||0;this.streamInfo[this.propName]=t+e.data.length}i.prototype.processChunk.call(this,e)},t.exports=s},{"../utils":32,"./GenericWorker":28}],27:[function(e,t,r){"use strict";var n=e("../utils"),i=e("./GenericWorker");function s(e){i.call(this,"DataWorker");var t=this;this.dataIsReady=!1,this.index=0,this.max=0,this.data=null,this.type="",this._tickScheduled=!1,e.then(function(e){t.dataIsReady=!0,t.data=e,t.max=e&&e.length||0,t.type=n.getTypeOf(e),t.isPaused||t._tickAndRepeat()},function(e){t.error(e)})}n.inherits(s,i),s.prototype.cleanUp=function(){i.prototype.cleanUp.call(this),this.data=null},s.prototype.resume=function(){return!!i.prototype.resume.call(this)&&(!this._tickScheduled&&this.dataIsReady&&(this._tickScheduled=!0,n.delay(this._tickAndRepeat,[],this)),!0)},s.prototype._tickAndRepeat=function(){this._tickScheduled=!1,this.isPaused||this.isFinished||(this._tick(),this.isFinished||(n.delay(this._tickAndRepeat,[],this),this._tickScheduled=!0))},s.prototype._tick=function(){if(this.isPaused||this.isFinished)return!1;var e=null,t=Math.min(this.max,this.index+16384);if(this.index>=this.max)return this.end();switch(this.type){case"string":e=this.data.substring(this.index,t);break;case"uint8array":e=this.data.subarray(this.index,t);break;case"array":case"nodebuffer":e=this.data.slice(this.index,t)}return this.index=t,this.push({data:e,meta:{percent:this.max?this.index/this.max*100:0}})},t.exports=s},{"../utils":32,"./GenericWorker":28}],28:[function(e,t,r){"use strict";function n(e){this.name=e||"default",this.streamInfo={},this.generatedError=null,this.extraStreamInfo={},this.isPaused=!0,this.isFinished=!1,this.isLocked=!1,this._listeners={data:[],end:[],error:[]},this.previous=null}n.prototype={push:function(e){this.emit("data",e)},end:function(){if(this.isFinished)return!1;this.flush();try{this.emit("end"),this.cleanUp(),this.isFinished=!0}catch(e){this.emit("error",e)}return!0},error:function(e){return!this.isFinished&&(this.isPaused?this.generatedError=e:(this.isFinished=!0,this.emit("error",e),this.previous&&this.previous.error(e),this.cleanUp()),!0)},on:function(e,t){return this._listeners[e].push(t),this},cleanUp:function(){this.streamInfo=this.generatedError=this.extraStreamInfo=null,this._listeners=[]},emit:function(e,t){if(this._listeners[e])for(var r=0;r<this._listeners[e].length;r++)this._listeners[e][r].call(this,t)},pipe:function(e){return e.registerPrevious(this)},registerPrevious:function(e){if(this.isLocked)throw new Error("The stream '"+this+"' has already been used.");this.streamInfo=e.streamInfo,this.mergeStreamInfo(),this.previous=e;var t=this;return e.on("data",function(e){t.processChunk(e)}),e.on("end",function(){t.end()}),e.on("error",function(e){t.error(e)}),this},pause:function(){return!this.isPaused&&!this.isFinished&&(this.isPaused=!0,this.previous&&this.previous.pause(),!0)},resume:function(){if(!this.isPaused||this.isFinished)return!1;var e=this.isPaused=!1;return this.generatedError&&(this.error(this.generatedError),e=!0),this.previous&&this.previous.resume(),!e},flush:function(){},processChunk:function(e){this.push(e)},withStreamInfo:function(e,t){return this.extraStreamInfo[e]=t,this.mergeStreamInfo(),this},mergeStreamInfo:function(){for(var e in this.extraStreamInfo)Object.prototype.hasOwnProperty.call(this.extraStreamInfo,e)&&(this.streamInfo[e]=this.extraStreamInfo[e])},lock:function(){if(this.isLocked)throw new Error("The stream '"+this+"' has already been used.");this.isLocked=!0,this.previous&&this.previous.lock()},toString:function(){var e="Worker "+this.name;return this.previous?this.previous+" -> "+e:e}},t.exports=n},{}],29:[function(e,t,r){"use strict";var h=e("../utils"),i=e("./ConvertWorker"),s=e("./GenericWorker"),u=e("../base64"),n=e("../support"),a=e("../external"),o=null;if(n.nodestream)try{o=e("../nodejs/NodejsStreamOutputAdapter")}catch(e){}function l(e,o){return new a.Promise(function(t,r){var n=[],i=e._internalType,s=e._outputType,a=e._mimeType;e.on("data",function(e,t){n.push(e),o&&o(t)}).on("error",function(e){n=[],r(e)}).on("end",function(){try{var e=function(e,t,r){switch(e){case"blob":return h.newBlob(h.transformTo("arraybuffer",t),r);case"base64":return u.encode(t);default:return h.transformTo(e,t)}}(s,function(e,t){var r,n=0,i=null,s=0;for(r=0;r<t.length;r++)s+=t[r].length;switch(e){case"string":return t.join("");case"array":return Array.prototype.concat.apply([],t);case"uint8array":for(i=new Uint8Array(s),r=0;r<t.length;r++)i.set(t[r],n),n+=t[r].length;return i;case"nodebuffer":return Buffer.concat(t);default:throw new Error("concat : unsupported type '"+e+"'")}}(i,n),a);t(e)}catch(e){r(e)}n=[]}).resume()})}function f(e,t,r){var n=t;switch(t){case"blob":case"arraybuffer":n="uint8array";break;case"base64":n="string"}try{this._internalType=n,this._outputType=t,this._mimeType=r,h.checkSupport(n),this._worker=e.pipe(new i(n)),e.lock()}catch(e){this._worker=new s("error"),this._worker.error(e)}}f.prototype={accumulate:function(e){return l(this,e)},on:function(e,t){var r=this;return"data"===e?this._worker.on(e,function(e){t.call(r,e.data,e.meta)}):this._worker.on(e,function(){h.delay(t,arguments,r)}),this},resume:function(){return h.delay(this._worker.resume,[],this._worker),this},pause:function(){return this._worker.pause(),this},toNodejsStream:function(e){if(h.checkSupport("nodestream"),"nodebuffer"!==this._outputType)throw new Error(this._outputType+" is not supported by this method");return new o(this,{objectMode:"nodebuffer"!==this._outputType},e)}},t.exports=f},{"../base64":1,"../external":6,"../nodejs/NodejsStreamOutputAdapter":13,"../support":30,"../utils":32,"./ConvertWorker":24,"./GenericWorker":28}],30:[function(e,t,r){"use strict";if(r.base64=!0,r.array=!0,r.string=!0,r.arraybuffer="undefined"!=typeof ArrayBuffer&&"undefined"!=typeof Uint8Array,r.nodebuffer="undefined"!=typeof Buffer,r.uint8array="undefined"!=typeof Uint8Array,"undefined"==typeof ArrayBuffer)r.blob=!1;else{var n=new ArrayBuffer(0);try{r.blob=0===new Blob([n],{type:"application/zip"}).size}catch(e){try{var i=new(self.BlobBuilder||self.WebKitBlobBuilder||self.MozBlobBuilder||self.MSBlobBuilder);i.append(n),r.blob=0===i.getBlob("application/zip").size}catch(e){r.blob=!1}}}try{r.nodestream=!!e("readable-stream").Readable}catch(e){r.nodestream=!1}},{"readable-stream":16}],31:[function(e,t,s){"use strict";for(var o=e("./utils"),h=e("./support"),r=e("./nodejsUtils"),n=e("./stream/GenericWorker"),u=new Array(256),i=0;i<256;i++)u[i]=252<=i?6:248<=i?5:240<=i?4:224<=i?3:192<=i?2:1;u[254]=u[254]=1;function a(){n.call(this,"utf-8 decode"),this.leftOver=null}function l(){n.call(this,"utf-8 encode")}s.utf8encode=function(e){return h.nodebuffer?r.newBufferFrom(e,"utf-8"):function(e){var t,r,n,i,s,a=e.length,o=0;for(i=0;i<a;i++)55296==(64512&(r=e.charCodeAt(i)))&&i+1<a&&56320==(64512&(n=e.charCodeAt(i+1)))&&(r=65536+(r-55296<<10)+(n-56320),i++),o+=r<128?1:r<2048?2:r<65536?3:4;for(t=h.uint8array?new Uint8Array(o):new Array(o),i=s=0;s<o;i++)55296==(64512&(r=e.charCodeAt(i)))&&i+1<a&&56320==(64512&(n=e.charCodeAt(i+1)))&&(r=65536+(r-55296<<10)+(n-56320),i++),r<128?t[s++]=r:(r<2048?t[s++]=192|r>>>6:(r<65536?t[s++]=224|r>>>12:(t[s++]=240|r>>>18,t[s++]=128|r>>>12&63),t[s++]=128|r>>>6&63),t[s++]=128|63&r);return t}(e)},s.utf8decode=function(e){return h.nodebuffer?o.transformTo("nodebuffer",e).toString("utf-8"):function(e){var t,r,n,i,s=e.length,a=new Array(2*s);for(t=r=0;t<s;)if((n=e[t++])<128)a[r++]=n;else if(4<(i=u[n]))a[r++]=65533,t+=i-1;else{for(n&=2===i?31:3===i?15:7;1<i&&t<s;)n=n<<6|63&e[t++],i--;1<i?a[r++]=65533:n<65536?a[r++]=n:(n-=65536,a[r++]=55296|n>>10&1023,a[r++]=56320|1023&n)}return a.length!==r&&(a.subarray?a=a.subarray(0,r):a.length=r),o.applyFromCharCode(a)}(e=o.transformTo(h.uint8array?"uint8array":"array",e))},o.inherits(a,n),a.prototype.processChunk=function(e){var t=o.transformTo(h.uint8array?"uint8array":"array",e.data);if(this.leftOver&&this.leftOver.length){if(h.uint8array){var r=t;(t=new Uint8Array(r.length+this.leftOver.length)).set(this.leftOver,0),t.set(r,this.leftOver.length)}else t=this.leftOver.concat(t);this.leftOver=null}var n=function(e,t){var r;for((t=t||e.length)>e.length&&(t=e.length),r=t-1;0<=r&&128==(192&e[r]);)r--;return r<0?t:0===r?t:r+u[e[r]]>t?r:t}(t),i=t;n!==t.length&&(h.uint8array?(i=t.subarray(0,n),this.leftOver=t.subarray(n,t.length)):(i=t.slice(0,n),this.leftOver=t.slice(n,t.length))),this.push({data:s.utf8decode(i),meta:e.meta})},a.prototype.flush=function(){this.leftOver&&this.leftOver.length&&(this.push({data:s.utf8decode(this.leftOver),meta:{}}),this.leftOver=null)},s.Utf8DecodeWorker=a,o.inherits(l,n),l.prototype.processChunk=function(e){this.push({data:s.utf8encode(e.data),meta:e.meta})},s.Utf8EncodeWorker=l},{"./nodejsUtils":14,"./stream/GenericWorker":28,"./support":30,"./utils":32}],32:[function(e,t,a){"use strict";var o=e("./support"),h=e("./base64"),r=e("./nodejsUtils"),u=e("./external");function n(e){return e}function l(e,t){for(var r=0;r<e.length;++r)t[r]=255&e.charCodeAt(r);return t}e("setimmediate"),a.newBlob=function(t,r){a.checkSupport("blob");try{return new Blob([t],{type:r})}catch(e){try{var n=new(self.BlobBuilder||self.WebKitBlobBuilder||self.MozBlobBuilder||self.MSBlobBuilder);return n.append(t),n.getBlob(r)}catch(e){throw new Error("Bug : can't construct the Blob.")}}};var i={stringifyByChunk:function(e,t,r){var n=[],i=0,s=e.length;if(s<=r)return String.fromCharCode.apply(null,e);for(;i<s;)"array"===t||"nodebuffer"===t?n.push(String.fromCharCode.apply(null,e.slice(i,Math.min(i+r,s)))):n.push(String.fromCharCode.apply(null,e.subarray(i,Math.min(i+r,s)))),i+=r;return n.join("")},stringifyByChar:function(e){for(var t="",r=0;r<e.length;r++)t+=String.fromCharCode(e[r]);return t},applyCanBeUsed:{uint8array:function(){try{return o.uint8array&&1===String.fromCharCode.apply(null,new Uint8Array(1)).length}catch(e){return!1}}(),nodebuffer:function(){try{return o.nodebuffer&&1===String.fromCharCode.apply(null,r.allocBuffer(1)).length}catch(e){return!1}}()}};function s(e){var t=65536,r=a.getTypeOf(e),n=!0;if("uint8array"===r?n=i.applyCanBeUsed.uint8array:"nodebuffer"===r&&(n=i.applyCanBeUsed.nodebuffer),n)for(;1<t;)try{return i.stringifyByChunk(e,r,t)}catch(e){t=Math.floor(t/2)}return i.stringifyByChar(e)}function f(e,t){for(var r=0;r<e.length;r++)t[r]=e[r];return t}a.applyFromCharCode=s;var c={};c.string={string:n,array:function(e){return l(e,new Array(e.length))},arraybuffer:function(e){return c.string.uint8array(e).buffer},uint8array:function(e){return l(e,new Uint8Array(e.length))},nodebuffer:function(e){return l(e,r.allocBuffer(e.length))}},c.array={string:s,array:n,arraybuffer:function(e){return new Uint8Array(e).buffer},uint8array:function(e){return new Uint8Array(e)},nodebuffer:function(e){return r.newBufferFrom(e)}},c.arraybuffer={string:function(e){return s(new Uint8Array(e))},array:function(e){return f(new Uint8Array(e),new Array(e.byteLength))},arraybuffer:n,uint8array:function(e){return new Uint8Array(e)},nodebuffer:function(e){return r.newBufferFrom(new Uint8Array(e))}},c.uint8array={string:s,array:function(e){return f(e,new Array(e.length))},arraybuffer:function(e){return e.buffer},uint8array:n,nodebuffer:function(e){return r.newBufferFrom(e)}},c.nodebuffer={string:s,array:function(e){return f(e,new Array(e.length))},arraybuffer:function(e){return c.nodebuffer.uint8array(e).buffer},uint8array:function(e){return f(e,new Uint8Array(e.length))},nodebuffer:n},a.transformTo=function(e,t){if(t=t||"",!e)return t;a.checkSupport(e);var r=a.getTypeOf(t);return c[r][e](t)},a.resolve=function(e){for(var t=e.split("/"),r=[],n=0;n<t.length;n++){var i=t[n];"."===i||""===i&&0!==n&&n!==t.length-1||(".."===i?r.pop():r.push(i))}return r.join("/")},a.getTypeOf=function(e){return"string"==typeof e?"string":"[object Array]"===Object.prototype.toString.call(e)?"array":o.nodebuffer&&r.isBuffer(e)?"nodebuffer":o.uint8array&&e instanceof Uint8Array?"uint8array":o.arraybuffer&&e instanceof ArrayBuffer?"arraybuffer":void 0},a.checkSupport=function(e){if(!o[e.toLowerCase()])throw new Error(e+" is not supported by this platform")},a.MAX_VALUE_16BITS=65535,a.MAX_VALUE_32BITS=-1,a.pretty=function(e){var t,r,n="";for(r=0;r<(e||"").length;r++)n+="\\x"+((t=e.charCodeAt(r))<16?"0":"")+t.toString(16).toUpperCase();return n},a.delay=function(e,t,r){setImmediate(function(){e.apply(r||null,t||[])})},a.inherits=function(e,t){function r(){}r.prototype=t.prototype,e.prototype=new r},a.extend=function(){var e,t,r={};for(e=0;e<arguments.length;e++)for(t in arguments[e])Object.prototype.hasOwnProperty.call(arguments[e],t)&&void 0===r[t]&&(r[t]=arguments[e][t]);return r},a.prepareContent=function(r,e,n,i,s){return u.Promise.resolve(e).then(function(n){return o.blob&&(n instanceof Blob||-1!==["[object File]","[object Blob]"].indexOf(Object.prototype.toString.call(n)))&&"undefined"!=typeof FileReader?new u.Promise(function(t,r){var e=new FileReader;e.onload=function(e){t(e.target.result)},e.onerror=function(e){r(e.target.error)},e.readAsArrayBuffer(n)}):n}).then(function(e){var t=a.getTypeOf(e);return t?("arraybuffer"===t?e=a.transformTo("uint8array",e):"string"===t&&(s?e=h.decode(e):n&&!0!==i&&(e=function(e){return l(e,o.uint8array?new Uint8Array(e.length):new Array(e.length))}(e))),e):u.Promise.reject(new Error("Can't read the data of '"+r+"'. Is it in a supported JavaScript type (String, Blob, ArrayBuffer, etc) ?"))})}},{"./base64":1,"./external":6,"./nodejsUtils":14,"./support":30,setimmediate:54}],33:[function(e,t,r){"use strict";var n=e("./reader/readerFor"),i=e("./utils"),s=e("./signature"),a=e("./zipEntry"),o=e("./support");function h(e){this.files=[],this.loadOptions=e}h.prototype={checkSignature:function(e){if(!this.reader.readAndCheckSignature(e)){this.reader.index-=4;var t=this.reader.readString(4);throw new Error("Corrupted zip or bug: unexpected signature ("+i.pretty(t)+", expected "+i.pretty(e)+")")}},isSignature:function(e,t){var r=this.reader.index;this.reader.setIndex(e);var n=this.reader.readString(4)===t;return this.reader.setIndex(r),n},readBlockEndOfCentral:function(){this.diskNumber=this.reader.readInt(2),this.diskWithCentralDirStart=this.reader.readInt(2),this.centralDirRecordsOnThisDisk=this.reader.readInt(2),this.centralDirRecords=this.reader.readInt(2),this.centralDirSize=this.reader.readInt(4),this.centralDirOffset=this.reader.readInt(4),this.zipCommentLength=this.reader.readInt(2);var e=this.reader.readData(this.zipCommentLength),t=o.uint8array?"uint8array":"array",r=i.transformTo(t,e);this.zipComment=this.loadOptions.decodeFileName(r)},readBlockZip64EndOfCentral:function(){this.zip64EndOfCentralSize=this.reader.readInt(8),this.reader.skip(4),this.diskNumber=this.reader.readInt(4),this.diskWithCentralDirStart=this.reader.readInt(4),this.centralDirRecordsOnThisDisk=this.reader.readInt(8),this.centralDirRecords=this.reader.readInt(8),this.centralDirSize=this.reader.readInt(8),this.centralDirOffset=this.reader.readInt(8),this.zip64ExtensibleData={};for(var e,t,r,n=this.zip64EndOfCentralSize-44;0<n;)e=this.reader.readInt(2),t=this.reader.readInt(4),r=this.reader.readData(t),this.zip64ExtensibleData[e]={id:e,length:t,value:r}},readBlockZip64EndOfCentralLocator:function(){if(this.diskWithZip64CentralDirStart=this.reader.readInt(4),this.relativeOffsetEndOfZip64CentralDir=this.reader.readInt(8),this.disksCount=this.reader.readInt(4),1<this.disksCount)throw new Error("Multi-volumes zip are not supported")},readLocalFiles:function(){var e,t;for(e=0;e<this.files.length;e++)t=this.files[e],this.reader.setIndex(t.localHeaderOffset),this.checkSignature(s.LOCAL_FILE_HEADER),t.readLocalPart(this.reader),t.handleUTF8(),t.processAttributes()},readCentralDir:function(){var e;for(this.reader.setIndex(this.centralDirOffset);this.reader.readAndCheckSignature(s.CENTRAL_FILE_HEADER);)(e=new a({zip64:this.zip64},this.loadOptions)).readCentralPart(this.reader),this.files.push(e);if(this.centralDirRecords!==this.files.length&&0!==this.centralDirRecords&&0===this.files.length)throw new Error("Corrupted zip or bug: expected "+this.centralDirRecords+" records in central dir, got "+this.files.length)},readEndOfCentral:function(){var e=this.reader.lastIndexOfSignature(s.CENTRAL_DIRECTORY_END);if(e<0)throw!this.isSignature(0,s.LOCAL_FILE_HEADER)?new Error("Can't find end of central directory : is this a zip file ? If it is, see https://stuk.github.io/jszip/documentation/howto/read_zip.html"):new Error("Corrupted zip: can't find end of central directory");this.reader.setIndex(e);var t=e;if(this.checkSignature(s.CENTRAL_DIRECTORY_END),this.readBlockEndOfCentral(),this.diskNumber===i.MAX_VALUE_16BITS||this.diskWithCentralDirStart===i.MAX_VALUE_16BITS||this.centralDirRecordsOnThisDisk===i.MAX_VALUE_16BITS||this.centralDirRecords===i.MAX_VALUE_16BITS||this.centralDirSize===i.MAX_VALUE_32BITS||this.centralDirOffset===i.MAX_VALUE_32BITS){if(this.zip64=!0,(e=this.reader.lastIndexOfSignature(s.ZIP64_CENTRAL_DIRECTORY_LOCATOR))<0)throw new Error("Corrupted zip: can't find the ZIP64 end of central directory locator");if(this.reader.setIndex(e),this.checkSignature(s.ZIP64_CENTRAL_DIRECTORY_LOCATOR),this.readBlockZip64EndOfCentralLocator(),!this.isSignature(this.relativeOffsetEndOfZip64CentralDir,s.ZIP64_CENTRAL_DIRECTORY_END)&&(this.relativeOffsetEndOfZip64CentralDir=this.reader.lastIndexOfSignature(s.ZIP64_CENTRAL_DIRECTORY_END),this.relativeOffsetEndOfZip64CentralDir<0))throw new Error("Corrupted zip: can't find the ZIP64 end of central directory");this.reader.setIndex(this.relativeOffsetEndOfZip64CentralDir),this.checkSignature(s.ZIP64_CENTRAL_DIRECTORY_END),this.readBlockZip64EndOfCentral()}var r=this.centralDirOffset+this.centralDirSize;this.zip64&&(r+=20,r+=12+this.zip64EndOfCentralSize);var n=t-r;if(0<n)this.isSignature(t,s.CENTRAL_FILE_HEADER)||(this.reader.zero=n);else if(n<0)throw new Error("Corrupted zip: missing "+Math.abs(n)+" bytes.")},prepareReader:function(e){this.reader=n(e)},load:function(e){this.prepareReader(e),this.readEndOfCentral(),this.readCentralDir(),this.readLocalFiles()}},t.exports=h},{"./reader/readerFor":22,"./signature":23,"./support":30,"./utils":32,"./zipEntry":34}],34:[function(e,t,r){"use strict";var n=e("./reader/readerFor"),s=e("./utils"),i=e("./compressedObject"),a=e("./crc32"),o=e("./utf8"),h=e("./compressions"),u=e("./support");function l(e,t){this.options=e,this.loadOptions=t}l.prototype={isEncrypted:function(){return 1==(1&this.bitFlag)},useUTF8:function(){return 2048==(2048&this.bitFlag)},readLocalPart:function(e){var t,r;if(e.skip(22),this.fileNameLength=e.readInt(2),r=e.readInt(2),this.fileName=e.readData(this.fileNameLength),e.skip(r),-1===this.compressedSize||-1===this.uncompressedSize)throw new Error("Bug or corrupted zip : didn't get enough information from the central directory (compressedSize === -1 || uncompressedSize === -1)");if(null===(t=function(e){for(var t in h)if(Object.prototype.hasOwnProperty.call(h,t)&&h[t].magic===e)return h[t];return null}(this.compressionMethod)))throw new Error("Corrupted zip : compression "+s.pretty(this.compressionMethod)+" unknown (inner file : "+s.transformTo("string",this.fileName)+")");this.decompressed=new i(this.compressedSize,this.uncompressedSize,this.crc32,t,e.readData(this.compressedSize))},readCentralPart:function(e){this.versionMadeBy=e.readInt(2),e.skip(2),this.bitFlag=e.readInt(2),this.compressionMethod=e.readString(2),this.date=e.readDate(),this.crc32=e.readInt(4),this.compressedSize=e.readInt(4),this.uncompressedSize=e.readInt(4);var t=e.readInt(2);if(this.extraFieldsLength=e.readInt(2),this.fileCommentLength=e.readInt(2),this.diskNumberStart=e.readInt(2),this.internalFileAttributes=e.readInt(2),this.externalFileAttributes=e.readInt(4),this.localHeaderOffset=e.readInt(4),this.isEncrypted())throw new Error("Encrypted zip are not supported");e.skip(t),this.readExtraFields(e),this.parseZIP64ExtraField(e),this.fileComment=e.readData(this.fileCommentLength)},processAttributes:function(){this.unixPermissions=null,this.dosPermissions=null;var e=this.versionMadeBy>>8;this.dir=!!(16&this.externalFileAttributes),0==e&&(this.dosPermissions=63&this.externalFileAttributes),3==e&&(this.unixPermissions=this.externalFileAttributes>>16&65535),this.dir||"/"!==this.fileNameStr.slice(-1)||(this.dir=!0)},parseZIP64ExtraField:function(){if(this.extraFields[1]){var e=n(this.extraFields[1].value);this.uncompressedSize===s.MAX_VALUE_32BITS&&(this.uncompressedSize=e.readInt(8)),this.compressedSize===s.MAX_VALUE_32BITS&&(this.compressedSize=e.readInt(8)),this.localHeaderOffset===s.MAX_VALUE_32BITS&&(this.localHeaderOffset=e.readInt(8)),this.diskNumberStart===s.MAX_VALUE_32BITS&&(this.diskNumberStart=e.readInt(4))}},readExtraFields:function(e){var t,r,n,i=e.index+this.extraFieldsLength;for(this.extraFields||(this.extraFields={});e.index+4<i;)t=e.readInt(2),r=e.readInt(2),n=e.readData(r),this.extraFields[t]={id:t,length:r,value:n};e.setIndex(i)},handleUTF8:function(){var e=u.uint8array?"uint8array":"array";if(this.useUTF8())this.fileNameStr=o.utf8decode(this.fileName),this.fileCommentStr=o.utf8decode(this.fileComment);else{var t=this.findExtraFieldUnicodePath();if(null!==t)this.fileNameStr=t;else{var r=s.transformTo(e,this.fileName);this.fileNameStr=this.loadOptions.decodeFileName(r)}var n=this.findExtraFieldUnicodeComment();if(null!==n)this.fileCommentStr=n;else{var i=s.transformTo(e,this.fileComment);this.fileCommentStr=this.loadOptions.decodeFileName(i)}}},findExtraFieldUnicodePath:function(){var e=this.extraFields[28789];if(e){var t=n(e.value);return 1!==t.readInt(1)?null:a(this.fileName)!==t.readInt(4)?null:o.utf8decode(t.readData(e.length-5))}return null},findExtraFieldUnicodeComment:function(){var e=this.extraFields[25461];if(e){var t=n(e.value);return 1!==t.readInt(1)?null:a(this.fileComment)!==t.readInt(4)?null:o.utf8decode(t.readData(e.length-5))}return null}},t.exports=l},{"./compressedObject":2,"./compressions":3,"./crc32":4,"./reader/readerFor":22,"./support":30,"./utf8":31,"./utils":32}],35:[function(e,t,r){"use strict";function n(e,t,r){this.name=e,this.dir=r.dir,this.date=r.date,this.comment=r.comment,this.unixPermissions=r.unixPermissions,this.dosPermissions=r.dosPermissions,this._data=t,this._dataBinary=r.binary,this.options={compression:r.compression,compressionOptions:r.compressionOptions}}var s=e("./stream/StreamHelper"),i=e("./stream/DataWorker"),a=e("./utf8"),o=e("./compressedObject"),h=e("./stream/GenericWorker");n.prototype={internalStream:function(e){var t=null,r="string";try{if(!e)throw new Error("No output type specified.");var n="string"===(r=e.toLowerCase())||"text"===r;"binarystring"!==r&&"text"!==r||(r="string"),t=this._decompressWorker();var i=!this._dataBinary;i&&!n&&(t=t.pipe(new a.Utf8EncodeWorker)),!i&&n&&(t=t.pipe(new a.Utf8DecodeWorker))}catch(e){(t=new h("error")).error(e)}return new s(t,r,"")},async:function(e,t){return this.internalStream(e).accumulate(t)},nodeStream:function(e,t){return this.internalStream(e||"nodebuffer").toNodejsStream(t)},_compressWorker:function(e,t){if(this._data instanceof o&&this._data.compression.magic===e.magic)return this._data.getCompressedWorker();var r=this._decompressWorker();return this._dataBinary||(r=r.pipe(new a.Utf8EncodeWorker)),o.createWorkerFrom(r,e,t)},_decompressWorker:function(){return this._data instanceof o?this._data.getContentWorker():this._data instanceof h?this._data:new i(this._data)}};for(var u=["asText","asBinary","asNodeBuffer","asUint8Array","asArrayBuffer"],l=function(){throw new Error("This method has been removed in JSZip 3.0, please check the upgrade guide.")},f=0;f<u.length;f++)n.prototype[u[f]]=l;t.exports=n},{"./compressedObject":2,"./stream/DataWorker":27,"./stream/GenericWorker":28,"./stream/StreamHelper":29,"./utf8":31}],36:[function(e,l,t){(function(t){"use strict";var r,n,e=t.MutationObserver||t.WebKitMutationObserver;if(e){var i=0,s=new e(u),a=t.document.createTextNode("");s.observe(a,{characterData:!0}),r=function(){a.data=i=++i%2}}else if(t.setImmediate||void 0===t.MessageChannel)r="document"in t&&"onreadystatechange"in t.document.createElement("script")?function(){var e=t.document.createElement("script");e.onreadystatechange=function(){u(),e.onreadystatechange=null,e.parentNode.removeChild(e),e=null},t.document.documentElement.appendChild(e)}:function(){setTimeout(u,0)};else{var o=new t.MessageChannel;o.port1.onmessage=u,r=function(){o.port2.postMessage(0)}}var h=[];function u(){var e,t;n=!0;for(var r=h.length;r;){for(t=h,h=[],e=-1;++e<r;)t[e]();r=h.length}n=!1}l.exports=function(e){1!==h.push(e)||n||r()}}).call(this,"undefined"!=typeof global?global:"undefined"!=typeof self?self:"undefined"!=typeof window?window:{})},{}],37:[function(e,t,r){"use strict";var i=e("immediate");function u(){}var l={},s=["REJECTED"],a=["FULFILLED"],n=["PENDING"];function o(e){if("function"!=typeof e)throw new TypeError("resolver must be a function");this.state=n,this.queue=[],this.outcome=void 0,e!==u&&d(this,e)}function h(e,t,r){this.promise=e,"function"==typeof t&&(this.onFulfilled=t,this.callFulfilled=this.otherCallFulfilled),"function"==typeof r&&(this.onRejected=r,this.callRejected=this.otherCallRejected)}function f(t,r,n){i(function(){var e;try{e=r(n)}catch(e){return l.reject(t,e)}e===t?l.reject(t,new TypeError("Cannot resolve promise with itself")):l.resolve(t,e)})}function c(e){var t=e&&e.then;if(e&&("object"==typeof e||"function"==typeof e)&&"function"==typeof t)return function(){t.apply(e,arguments)}}function d(t,e){var r=!1;function n(e){r||(r=!0,l.reject(t,e))}function i(e){r||(r=!0,l.resolve(t,e))}var s=p(function(){e(i,n)});"error"===s.status&&n(s.value)}function p(e,t){var r={};try{r.value=e(t),r.status="success"}catch(e){r.status="error",r.value=e}return r}(t.exports=o).prototype.finally=function(t){if("function"!=typeof t)return this;var r=this.constructor;return this.then(function(e){return r.resolve(t()).then(function(){return e})},function(e){return r.resolve(t()).then(function(){throw e})})},o.prototype.catch=function(e){return this.then(null,e)},o.prototype.then=function(e,t){if("function"!=typeof e&&this.state===a||"function"!=typeof t&&this.state===s)return this;var r=new this.constructor(u);this.state!==n?f(r,this.state===a?e:t,this.outcome):this.queue.push(new h(r,e,t));return r},h.prototype.callFulfilled=function(e){l.resolve(this.promise,e)},h.prototype.otherCallFulfilled=function(e){f(this.promise,this.onFulfilled,e)},h.prototype.callRejected=function(e){l.reject(this.promise,e)},h.prototype.otherCallRejected=function(e){f(this.promise,this.onRejected,e)},l.resolve=function(e,t){var r=p(c,t);if("error"===r.status)return l.reject(e,r.value);var n=r.value;if(n)d(e,n);else{e.state=a,e.outcome=t;for(var i=-1,s=e.queue.length;++i<s;)e.queue[i].callFulfilled(t)}return e},l.reject=function(e,t){e.state=s,e.outcome=t;for(var r=-1,n=e.queue.length;++r<n;)e.queue[r].callRejected(t);return e},o.resolve=function(e){if(e instanceof this)return e;return l.resolve(new this(u),e)},o.reject=function(e){var t=new this(u);return l.reject(t,e)},o.all=function(e){var r=this;if("[object Array]"!==Object.prototype.toString.call(e))return this.reject(new TypeError("must be an array"));var n=e.length,i=!1;if(!n)return this.resolve([]);var s=new Array(n),a=0,t=-1,o=new this(u);for(;++t<n;)h(e[t],t);return o;function h(e,t){r.resolve(e).then(function(e){s[t]=e,++a!==n||i||(i=!0,l.resolve(o,s))},function(e){i||(i=!0,l.reject(o,e))})}},o.race=function(e){var t=this;if("[object Array]"!==Object.prototype.toString.call(e))return this.reject(new TypeError("must be an array"));var r=e.length,n=!1;if(!r)return this.resolve([]);var i=-1,s=new this(u);for(;++i<r;)a=e[i],t.resolve(a).then(function(e){n||(n=!0,l.resolve(s,e))},function(e){n||(n=!0,l.reject(s,e))});var a;return s}},{immediate:36}],38:[function(e,t,r){"use strict";var n={};(0,e("./lib/utils/common").assign)(n,e("./lib/deflate"),e("./lib/inflate"),e("./lib/zlib/constants")),t.exports=n},{"./lib/deflate":39,"./lib/inflate":40,"./lib/utils/common":41,"./lib/zlib/constants":44}],39:[function(e,t,r){"use strict";var a=e("./zlib/deflate"),o=e("./utils/common"),h=e("./utils/strings"),i=e("./zlib/messages"),s=e("./zlib/zstream"),u=Object.prototype.toString,l=0,f=-1,c=0,d=8;function p(e){if(!(this instanceof p))return new p(e);this.options=o.assign({level:f,method:d,chunkSize:16384,windowBits:15,memLevel:8,strategy:c,to:""},e||{});var t=this.options;t.raw&&0<t.windowBits?t.windowBits=-t.windowBits:t.gzip&&0<t.windowBits&&t.windowBits<16&&(t.windowBits+=16),this.err=0,this.msg="",this.ended=!1,this.chunks=[],this.strm=new s,this.strm.avail_out=0;var r=a.deflateInit2(this.strm,t.level,t.method,t.windowBits,t.memLevel,t.strategy);if(r!==l)throw new Error(i[r]);if(t.header&&a.deflateSetHeader(this.strm,t.header),t.dictionary){var n;if(n="string"==typeof t.dictionary?h.string2buf(t.dictionary):"[object ArrayBuffer]"===u.call(t.dictionary)?new Uint8Array(t.dictionary):t.dictionary,(r=a.deflateSetDictionary(this.strm,n))!==l)throw new Error(i[r]);this._dict_set=!0}}function n(e,t){var r=new p(t);if(r.push(e,!0),r.err)throw r.msg||i[r.err];return r.result}p.prototype.push=function(e,t){var r,n,i=this.strm,s=this.options.chunkSize;if(this.ended)return!1;n=t===~~t?t:!0===t?4:0,"string"==typeof e?i.input=h.string2buf(e):"[object ArrayBuffer]"===u.call(e)?i.input=new Uint8Array(e):i.input=e,i.next_in=0,i.avail_in=i.input.length;do{if(0===i.avail_out&&(i.output=new o.Buf8(s),i.next_out=0,i.avail_out=s),1!==(r=a.deflate(i,n))&&r!==l)return this.onEnd(r),!(this.ended=!0);0!==i.avail_out&&(0!==i.avail_in||4!==n&&2!==n)||("string"===this.options.to?this.onData(h.buf2binstring(o.shrinkBuf(i.output,i.next_out))):this.onData(o.shrinkBuf(i.output,i.next_out)))}while((0<i.avail_in||0===i.avail_out)&&1!==r);return 4===n?(r=a.deflateEnd(this.strm),this.onEnd(r),this.ended=!0,r===l):2!==n||(this.onEnd(l),!(i.avail_out=0))},p.prototype.onData=function(e){this.chunks.push(e)},p.prototype.onEnd=function(e){e===l&&("string"===this.options.to?this.result=this.chunks.join(""):this.result=o.flattenChunks(this.chunks)),this.chunks=[],this.err=e,this.msg=this.strm.msg},r.Deflate=p,r.deflate=n,r.deflateRaw=function(e,t){return(t=t||{}).raw=!0,n(e,t)},r.gzip=function(e,t){return(t=t||{}).gzip=!0,n(e,t)}},{"./utils/common":41,"./utils/strings":42,"./zlib/deflate":46,"./zlib/messages":51,"./zlib/zstream":53}],40:[function(e,t,r){"use strict";var c=e("./zlib/inflate"),d=e("./utils/common"),p=e("./utils/strings"),m=e("./zlib/constants"),n=e("./zlib/messages"),i=e("./zlib/zstream"),s=e("./zlib/gzheader"),_=Object.prototype.toString;function a(e){if(!(this instanceof a))return new a(e);this.options=d.assign({chunkSize:16384,windowBits:0,to:""},e||{});var t=this.options;t.raw&&0<=t.windowBits&&t.windowBits<16&&(t.windowBits=-t.windowBits,0===t.windowBits&&(t.windowBits=-15)),!(0<=t.windowBits&&t.windowBits<16)||e&&e.windowBits||(t.windowBits+=32),15<t.windowBits&&t.windowBits<48&&0==(15&t.windowBits)&&(t.windowBits|=15),this.err=0,this.msg="",this.ended=!1,this.chunks=[],this.strm=new i,this.strm.avail_out=0;var r=c.inflateInit2(this.strm,t.windowBits);if(r!==m.Z_OK)throw new Error(n[r]);this.header=new s,c.inflateGetHeader(this.strm,this.header)}function o(e,t){var r=new a(t);if(r.push(e,!0),r.err)throw r.msg||n[r.err];return r.result}a.prototype.push=function(e,t){var r,n,i,s,a,o,h=this.strm,u=this.options.chunkSize,l=this.options.dictionary,f=!1;if(this.ended)return!1;n=t===~~t?t:!0===t?m.Z_FINISH:m.Z_NO_FLUSH,"string"==typeof e?h.input=p.binstring2buf(e):"[object ArrayBuffer]"===_.call(e)?h.input=new Uint8Array(e):h.input=e,h.next_in=0,h.avail_in=h.input.length;do{if(0===h.avail_out&&(h.output=new d.Buf8(u),h.next_out=0,h.avail_out=u),(r=c.inflate(h,m.Z_NO_FLUSH))===m.Z_NEED_DICT&&l&&(o="string"==typeof l?p.string2buf(l):"[object ArrayBuffer]"===_.call(l)?new Uint8Array(l):l,r=c.inflateSetDictionary(this.strm,o)),r===m.Z_BUF_ERROR&&!0===f&&(r=m.Z_OK,f=!1),r!==m.Z_STREAM_END&&r!==m.Z_OK)return this.onEnd(r),!(this.ended=!0);h.next_out&&(0!==h.avail_out&&r!==m.Z_STREAM_END&&(0!==h.avail_in||n!==m.Z_FINISH&&n!==m.Z_SYNC_FLUSH)||("string"===this.options.to?(i=p.utf8border(h.output,h.next_out),s=h.next_out-i,a=p.buf2string(h.output,i),h.next_out=s,h.avail_out=u-s,s&&d.arraySet(h.output,h.output,i,s,0),this.onData(a)):this.onData(d.shrinkBuf(h.output,h.next_out)))),0===h.avail_in&&0===h.avail_out&&(f=!0)}while((0<h.avail_in||0===h.avail_out)&&r!==m.Z_STREAM_END);return r===m.Z_STREAM_END&&(n=m.Z_FINISH),n===m.Z_FINISH?(r=c.inflateEnd(this.strm),this.onEnd(r),this.ended=!0,r===m.Z_OK):n!==m.Z_SYNC_FLUSH||(this.onEnd(m.Z_OK),!(h.avail_out=0))},a.prototype.onData=function(e){this.chunks.push(e)},a.prototype.onEnd=function(e){e===m.Z_OK&&("string"===this.options.to?this.result=this.chunks.join(""):this.result=d.flattenChunks(this.chunks)),this.chunks=[],this.err=e,this.msg=this.strm.msg},r.Inflate=a,r.inflate=o,r.inflateRaw=function(e,t){return(t=t||{}).raw=!0,o(e,t)},r.ungzip=o},{"./utils/common":41,"./utils/strings":42,"./zlib/constants":44,"./zlib/gzheader":47,"./zlib/inflate":49,"./zlib/messages":51,"./zlib/zstream":53}],41:[function(e,t,r){"use strict";var n="undefined"!=typeof Uint8Array&&"undefined"!=typeof Uint16Array&&"undefined"!=typeof Int32Array;r.assign=function(e){for(var t=Array.prototype.slice.call(arguments,1);t.length;){var r=t.shift();if(r){if("object"!=typeof r)throw new TypeError(r+"must be non-object");for(var n in r)r.hasOwnProperty(n)&&(e[n]=r[n])}}return e},r.shrinkBuf=function(e,t){return e.length===t?e:e.subarray?e.subarray(0,t):(e.length=t,e)};var i={arraySet:function(e,t,r,n,i){if(t.subarray&&e.subarray)e.set(t.subarray(r,r+n),i);else for(var s=0;s<n;s++)e[i+s]=t[r+s]},flattenChunks:function(e){var t,r,n,i,s,a;for(t=n=0,r=e.length;t<r;t++)n+=e[t].length;for(a=new Uint8Array(n),t=i=0,r=e.length;t<r;t++)s=e[t],a.set(s,i),i+=s.length;return a}},s={arraySet:function(e,t,r,n,i){for(var s=0;s<n;s++)e[i+s]=t[r+s]},flattenChunks:function(e){return[].concat.apply([],e)}};r.setTyped=function(e){e?(r.Buf8=Uint8Array,r.Buf16=Uint16Array,r.Buf32=Int32Array,r.assign(r,i)):(r.Buf8=Array,r.Buf16=Array,r.Buf32=Array,r.assign(r,s))},r.setTyped(n)},{}],42:[function(e,t,r){"use strict";var h=e("./common"),i=!0,s=!0;try{String.fromCharCode.apply(null,[0])}catch(e){i=!1}try{String.fromCharCode.apply(null,new Uint8Array(1))}catch(e){s=!1}for(var u=new h.Buf8(256),n=0;n<256;n++)u[n]=252<=n?6:248<=n?5:240<=n?4:224<=n?3:192<=n?2:1;function l(e,t){if(t<65537&&(e.subarray&&s||!e.subarray&&i))return String.fromCharCode.apply(null,h.shrinkBuf(e,t));for(var r="",n=0;n<t;n++)r+=String.fromCharCode(e[n]);return r}u[254]=u[254]=1,r.string2buf=function(e){var t,r,n,i,s,a=e.length,o=0;for(i=0;i<a;i++)55296==(64512&(r=e.charCodeAt(i)))&&i+1<a&&56320==(64512&(n=e.charCodeAt(i+1)))&&(r=65536+(r-55296<<10)+(n-56320),i++),o+=r<128?1:r<2048?2:r<65536?3:4;for(t=new h.Buf8(o),i=s=0;s<o;i++)55296==(64512&(r=e.charCodeAt(i)))&&i+1<a&&56320==(64512&(n=e.charCodeAt(i+1)))&&(r=65536+(r-55296<<10)+(n-56320),i++),r<128?t[s++]=r:(r<2048?t[s++]=192|r>>>6:(r<65536?t[s++]=224|r>>>12:(t[s++]=240|r>>>18,t[s++]=128|r>>>12&63),t[s++]=128|r>>>6&63),t[s++]=128|63&r);return t},r.buf2binstring=function(e){return l(e,e.length)},r.binstring2buf=function(e){for(var t=new h.Buf8(e.length),r=0,n=t.length;r<n;r++)t[r]=e.charCodeAt(r);return t},r.buf2string=function(e,t){var r,n,i,s,a=t||e.length,o=new Array(2*a);for(r=n=0;r<a;)if((i=e[r++])<128)o[n++]=i;else if(4<(s=u[i]))o[n++]=65533,r+=s-1;else{for(i&=2===s?31:3===s?15:7;1<s&&r<a;)i=i<<6|63&e[r++],s--;1<s?o[n++]=65533:i<65536?o[n++]=i:(i-=65536,o[n++]=55296|i>>10&1023,o[n++]=56320|1023&i)}return l(o,n)},r.utf8border=function(e,t){var r;for((t=t||e.length)>e.length&&(t=e.length),r=t-1;0<=r&&128==(192&e[r]);)r--;return r<0?t:0===r?t:r+u[e[r]]>t?r:t}},{"./common":41}],43:[function(e,t,r){"use strict";t.exports=function(e,t,r,n){for(var i=65535&e|0,s=e>>>16&65535|0,a=0;0!==r;){for(r-=a=2e3<r?2e3:r;s=s+(i=i+t[n++]|0)|0,--a;);i%=65521,s%=65521}return i|s<<16|0}},{}],44:[function(e,t,r){"use strict";t.exports={Z_NO_FLUSH:0,Z_PARTIAL_FLUSH:1,Z_SYNC_FLUSH:2,Z_FULL_FLUSH:3,Z_FINISH:4,Z_BLOCK:5,Z_TREES:6,Z_OK:0,Z_STREAM_END:1,Z_NEED_DICT:2,Z_ERRNO:-1,Z_STREAM_ERROR:-2,Z_DATA_ERROR:-3,Z_BUF_ERROR:-5,Z_NO_COMPRESSION:0,Z_BEST_SPEED:1,Z_BEST_COMPRESSION:9,Z_DEFAULT_COMPRESSION:-1,Z_FILTERED:1,Z_HUFFMAN_ONLY:2,Z_RLE:3,Z_FIXED:4,Z_DEFAULT_STRATEGY:0,Z_BINARY:0,Z_TEXT:1,Z_UNKNOWN:2,Z_DEFLATED:8}},{}],45:[function(e,t,r){"use strict";var o=function(){for(var e,t=[],r=0;r<256;r++){e=r;for(var n=0;n<8;n++)e=1&e?3988292384^e>>>1:e>>>1;t[r]=e}return t}();t.exports=function(e,t,r,n){var i=o,s=n+r;e^=-1;for(var a=n;a<s;a++)e=e>>>8^i[255&(e^t[a])];return-1^e}},{}],46:[function(e,t,r){"use strict";var h,c=e("../utils/common"),u=e("./trees"),d=e("./adler32"),p=e("./crc32"),n=e("./messages"),l=0,f=4,m=0,_=-2,g=-1,b=4,i=2,v=8,y=9,s=286,a=30,o=19,w=2*s+1,k=15,x=3,S=258,z=S+x+1,C=42,E=113,A=1,I=2,O=3,B=4;function R(e,t){return e.msg=n[t],t}function T(e){return(e<<1)-(4<e?9:0)}function D(e){for(var t=e.length;0<=--t;)e[t]=0}function F(e){var t=e.state,r=t.pending;r>e.avail_out&&(r=e.avail_out),0!==r&&(c.arraySet(e.output,t.pending_buf,t.pending_out,r,e.next_out),e.next_out+=r,t.pending_out+=r,e.total_out+=r,e.avail_out-=r,t.pending-=r,0===t.pending&&(t.pending_out=0))}function N(e,t){u._tr_flush_block(e,0<=e.block_start?e.block_start:-1,e.strstart-e.block_start,t),e.block_start=e.strstart,F(e.strm)}function U(e,t){e.pending_buf[e.pending++]=t}function P(e,t){e.pending_buf[e.pending++]=t>>>8&255,e.pending_buf[e.pending++]=255&t}function L(e,t){var r,n,i=e.max_chain_length,s=e.strstart,a=e.prev_length,o=e.nice_match,h=e.strstart>e.w_size-z?e.strstart-(e.w_size-z):0,u=e.window,l=e.w_mask,f=e.prev,c=e.strstart+S,d=u[s+a-1],p=u[s+a];e.prev_length>=e.good_match&&(i>>=2),o>e.lookahead&&(o=e.lookahead);do{if(u[(r=t)+a]===p&&u[r+a-1]===d&&u[r]===u[s]&&u[++r]===u[s+1]){s+=2,r++;do{}while(u[++s]===u[++r]&&u[++s]===u[++r]&&u[++s]===u[++r]&&u[++s]===u[++r]&&u[++s]===u[++r]&&u[++s]===u[++r]&&u[++s]===u[++r]&&u[++s]===u[++r]&&s<c);if(n=S-(c-s),s=c-S,a<n){if(e.match_start=t,o<=(a=n))break;d=u[s+a-1],p=u[s+a]}}}while((t=f[t&l])>h&&0!=--i);return a<=e.lookahead?a:e.lookahead}function j(e){var t,r,n,i,s,a,o,h,u,l,f=e.w_size;do{if(i=e.window_size-e.lookahead-e.strstart,e.strstart>=f+(f-z)){for(c.arraySet(e.window,e.window,f,f,0),e.match_start-=f,e.strstart-=f,e.block_start-=f,t=r=e.hash_size;n=e.head[--t],e.head[t]=f<=n?n-f:0,--r;);for(t=r=f;n=e.prev[--t],e.prev[t]=f<=n?n-f:0,--r;);i+=f}if(0===e.strm.avail_in)break;if(a=e.strm,o=e.window,h=e.strstart+e.lookahead,u=i,l=void 0,l=a.avail_in,u<l&&(l=u),r=0===l?0:(a.avail_in-=l,c.arraySet(o,a.input,a.next_in,l,h),1===a.state.wrap?a.adler=d(a.adler,o,l,h):2===a.state.wrap&&(a.adler=p(a.adler,o,l,h)),a.next_in+=l,a.total_in+=l,l),e.lookahead+=r,e.lookahead+e.insert>=x)for(s=e.strstart-e.insert,e.ins_h=e.window[s],e.ins_h=(e.ins_h<<e.hash_shift^e.window[s+1])&e.hash_mask;e.insert&&(e.ins_h=(e.ins_h<<e.hash_shift^e.window[s+x-1])&e.hash_mask,e.prev[s&e.w_mask]=e.head[e.ins_h],e.head[e.ins_h]=s,s++,e.insert--,!(e.lookahead+e.insert<x)););}while(e.lookahead<z&&0!==e.strm.avail_in)}function Z(e,t){for(var r,n;;){if(e.lookahead<z){if(j(e),e.lookahead<z&&t===l)return A;if(0===e.lookahead)break}if(r=0,e.lookahead>=x&&(e.ins_h=(e.ins_h<<e.hash_shift^e.window[e.strstart+x-1])&e.hash_mask,r=e.prev[e.strstart&e.w_mask]=e.head[e.ins_h],e.head[e.ins_h]=e.strstart),0!==r&&e.strstart-r<=e.w_size-z&&(e.match_length=L(e,r)),e.match_length>=x)if(n=u._tr_tally(e,e.strstart-e.match_start,e.match_length-x),e.lookahead-=e.match_length,e.match_length<=e.max_lazy_match&&e.lookahead>=x){for(e.match_length--;e.strstart++,e.ins_h=(e.ins_h<<e.hash_shift^e.window[e.strstart+x-1])&e.hash_mask,r=e.prev[e.strstart&e.w_mask]=e.head[e.ins_h],e.head[e.ins_h]=e.strstart,0!=--e.match_length;);e.strstart++}else e.strstart+=e.match_length,e.match_length=0,e.ins_h=e.window[e.strstart],e.ins_h=(e.ins_h<<e.hash_shift^e.window[e.strstart+1])&e.hash_mask;else n=u._tr_tally(e,0,e.window[e.strstart]),e.lookahead--,e.strstart++;if(n&&(N(e,!1),0===e.strm.avail_out))return A}return e.insert=e.strstart<x-1?e.strstart:x-1,t===f?(N(e,!0),0===e.strm.avail_out?O:B):e.last_lit&&(N(e,!1),0===e.strm.avail_out)?A:I}function W(e,t){for(var r,n,i;;){if(e.lookahead<z){if(j(e),e.lookahead<z&&t===l)return A;if(0===e.lookahead)break}if(r=0,e.lookahead>=x&&(e.ins_h=(e.ins_h<<e.hash_shift^e.window[e.strstart+x-1])&e.hash_mask,r=e.prev[e.strstart&e.w_mask]=e.head[e.ins_h],e.head[e.ins_h]=e.strstart),e.prev_length=e.match_length,e.prev_match=e.match_start,e.match_length=x-1,0!==r&&e.prev_length<e.max_lazy_match&&e.strstart-r<=e.w_size-z&&(e.match_length=L(e,r),e.match_length<=5&&(1===e.strategy||e.match_length===x&&4096<e.strstart-e.match_start)&&(e.match_length=x-1)),e.prev_length>=x&&e.match_length<=e.prev_length){for(i=e.strstart+e.lookahead-x,n=u._tr_tally(e,e.strstart-1-e.prev_match,e.prev_length-x),e.lookahead-=e.prev_length-1,e.prev_length-=2;++e.strstart<=i&&(e.ins_h=(e.ins_h<<e.hash_shift^e.window[e.strstart+x-1])&e.hash_mask,r=e.prev[e.strstart&e.w_mask]=e.head[e.ins_h],e.head[e.ins_h]=e.strstart),0!=--e.prev_length;);if(e.match_available=0,e.match_length=x-1,e.strstart++,n&&(N(e,!1),0===e.strm.avail_out))return A}else if(e.match_available){if((n=u._tr_tally(e,0,e.window[e.strstart-1]))&&N(e,!1),e.strstart++,e.lookahead--,0===e.strm.avail_out)return A}else e.match_available=1,e.strstart++,e.lookahead--}return e.match_available&&(n=u._tr_tally(e,0,e.window[e.strstart-1]),e.match_available=0),e.insert=e.strstart<x-1?e.strstart:x-1,t===f?(N(e,!0),0===e.strm.avail_out?O:B):e.last_lit&&(N(e,!1),0===e.strm.avail_out)?A:I}function M(e,t,r,n,i){this.good_length=e,this.max_lazy=t,this.nice_length=r,this.max_chain=n,this.func=i}function H(){this.strm=null,this.status=0,this.pending_buf=null,this.pending_buf_size=0,this.pending_out=0,this.pending=0,this.wrap=0,this.gzhead=null,this.gzindex=0,this.method=v,this.last_flush=-1,this.w_size=0,this.w_bits=0,this.w_mask=0,this.window=null,this.window_size=0,this.prev=null,this.head=null,this.ins_h=0,this.hash_size=0,this.hash_bits=0,this.hash_mask=0,this.hash_shift=0,this.block_start=0,this.match_length=0,this.prev_match=0,this.match_available=0,this.strstart=0,this.match_start=0,this.lookahead=0,this.prev_length=0,this.max_chain_length=0,this.max_lazy_match=0,this.level=0,this.strategy=0,this.good_match=0,this.nice_match=0,this.dyn_ltree=new c.Buf16(2*w),this.dyn_dtree=new c.Buf16(2*(2*a+1)),this.bl_tree=new c.Buf16(2*(2*o+1)),D(this.dyn_ltree),D(this.dyn_dtree),D(this.bl_tree),this.l_desc=null,this.d_desc=null,this.bl_desc=null,this.bl_count=new c.Buf16(k+1),this.heap=new c.Buf16(2*s+1),D(this.heap),this.heap_len=0,this.heap_max=0,this.depth=new c.Buf16(2*s+1),D(this.depth),this.l_buf=0,this.lit_bufsize=0,this.last_lit=0,this.d_buf=0,this.opt_len=0,this.static_len=0,this.matches=0,this.insert=0,this.bi_buf=0,this.bi_valid=0}function G(e){var t;return e&&e.state?(e.total_in=e.total_out=0,e.data_type=i,(t=e.state).pending=0,t.pending_out=0,t.wrap<0&&(t.wrap=-t.wrap),t.status=t.wrap?C:E,e.adler=2===t.wrap?0:1,t.last_flush=l,u._tr_init(t),m):R(e,_)}function K(e){var t=G(e);return t===m&&function(e){e.window_size=2*e.w_size,D(e.head),e.max_lazy_match=h[e.level].max_lazy,e.good_match=h[e.level].good_length,e.nice_match=h[e.level].nice_length,e.max_chain_length=h[e.level].max_chain,e.strstart=0,e.block_start=0,e.lookahead=0,e.insert=0,e.match_length=e.prev_length=x-1,e.match_available=0,e.ins_h=0}(e.state),t}function Y(e,t,r,n,i,s){if(!e)return _;var a=1;if(t===g&&(t=6),n<0?(a=0,n=-n):15<n&&(a=2,n-=16),i<1||y<i||r!==v||n<8||15<n||t<0||9<t||s<0||b<s)return R(e,_);8===n&&(n=9);var o=new H;return(e.state=o).strm=e,o.wrap=a,o.gzhead=null,o.w_bits=n,o.w_size=1<<o.w_bits,o.w_mask=o.w_size-1,o.hash_bits=i+7,o.hash_size=1<<o.hash_bits,o.hash_mask=o.hash_size-1,o.hash_shift=~~((o.hash_bits+x-1)/x),o.window=new c.Buf8(2*o.w_size),o.head=new c.Buf16(o.hash_size),o.prev=new c.Buf16(o.w_size),o.lit_bufsize=1<<i+6,o.pending_buf_size=4*o.lit_bufsize,o.pending_buf=new c.Buf8(o.pending_buf_size),o.d_buf=1*o.lit_bufsize,o.l_buf=3*o.lit_bufsize,o.level=t,o.strategy=s,o.method=r,K(e)}h=[new M(0,0,0,0,function(e,t){var r=65535;for(r>e.pending_buf_size-5&&(r=e.pending_buf_size-5);;){if(e.lookahead<=1){if(j(e),0===e.lookahead&&t===l)return A;if(0===e.lookahead)break}e.strstart+=e.lookahead,e.lookahead=0;var n=e.block_start+r;if((0===e.strstart||e.strstart>=n)&&(e.lookahead=e.strstart-n,e.strstart=n,N(e,!1),0===e.strm.avail_out))return A;if(e.strstart-e.block_start>=e.w_size-z&&(N(e,!1),0===e.strm.avail_out))return A}return e.insert=0,t===f?(N(e,!0),0===e.strm.avail_out?O:B):(e.strstart>e.block_start&&(N(e,!1),e.strm.avail_out),A)}),new M(4,4,8,4,Z),new M(4,5,16,8,Z),new M(4,6,32,32,Z),new M(4,4,16,16,W),new M(8,16,32,32,W),new M(8,16,128,128,W),new M(8,32,128,256,W),new M(32,128,258,1024,W),new M(32,258,258,4096,W)],r.deflateInit=function(e,t){return Y(e,t,v,15,8,0)},r.deflateInit2=Y,r.deflateReset=K,r.deflateResetKeep=G,r.deflateSetHeader=function(e,t){return e&&e.state?2!==e.state.wrap?_:(e.state.gzhead=t,m):_},r.deflate=function(e,t){var r,n,i,s;if(!e||!e.state||5<t||t<0)return e?R(e,_):_;if(n=e.state,!e.output||!e.input&&0!==e.avail_in||666===n.status&&t!==f)return R(e,0===e.avail_out?-5:_);if(n.strm=e,r=n.last_flush,n.last_flush=t,n.status===C)if(2===n.wrap)e.adler=0,U(n,31),U(n,139),U(n,8),n.gzhead?(U(n,(n.gzhead.text?1:0)+(n.gzhead.hcrc?2:0)+(n.gzhead.extra?4:0)+(n.gzhead.name?8:0)+(n.gzhead.comment?16:0)),U(n,255&n.gzhead.time),U(n,n.gzhead.time>>8&255),U(n,n.gzhead.time>>16&255),U(n,n.gzhead.time>>24&255),U(n,9===n.level?2:2<=n.strategy||n.level<2?4:0),U(n,255&n.gzhead.os),n.gzhead.extra&&n.gzhead.extra.length&&(U(n,255&n.gzhead.extra.length),U(n,n.gzhead.extra.length>>8&255)),n.gzhead.hcrc&&(e.adler=p(e.adler,n.pending_buf,n.pending,0)),n.gzindex=0,n.status=69):(U(n,0),U(n,0),U(n,0),U(n,0),U(n,0),U(n,9===n.level?2:2<=n.strategy||n.level<2?4:0),U(n,3),n.status=E);else{var a=v+(n.w_bits-8<<4)<<8;a|=(2<=n.strategy||n.level<2?0:n.level<6?1:6===n.level?2:3)<<6,0!==n.strstart&&(a|=32),a+=31-a%31,n.status=E,P(n,a),0!==n.strstart&&(P(n,e.adler>>>16),P(n,65535&e.adler)),e.adler=1}if(69===n.status)if(n.gzhead.extra){for(i=n.pending;n.gzindex<(65535&n.gzhead.extra.length)&&(n.pending!==n.pending_buf_size||(n.gzhead.hcrc&&n.pending>i&&(e.adler=p(e.adler,n.pending_buf,n.pending-i,i)),F(e),i=n.pending,n.pending!==n.pending_buf_size));)U(n,255&n.gzhead.extra[n.gzindex]),n.gzindex++;n.gzhead.hcrc&&n.pending>i&&(e.adler=p(e.adler,n.pending_buf,n.pending-i,i)),n.gzindex===n.gzhead.extra.length&&(n.gzindex=0,n.status=73)}else n.status=73;if(73===n.status)if(n.gzhead.name){i=n.pending;do{if(n.pending===n.pending_buf_size&&(n.gzhead.hcrc&&n.pending>i&&(e.adler=p(e.adler,n.pending_buf,n.pending-i,i)),F(e),i=n.pending,n.pending===n.pending_buf_size)){s=1;break}s=n.gzindex<n.gzhead.name.length?255&n.gzhead.name.charCodeAt(n.gzindex++):0,U(n,s)}while(0!==s);n.gzhead.hcrc&&n.pending>i&&(e.adler=p(e.adler,n.pending_buf,n.pending-i,i)),0===s&&(n.gzindex=0,n.status=91)}else n.status=91;if(91===n.status)if(n.gzhead.comment){i=n.pending;do{if(n.pending===n.pending_buf_size&&(n.gzhead.hcrc&&n.pending>i&&(e.adler=p(e.adler,n.pending_buf,n.pending-i,i)),F(e),i=n.pending,n.pending===n.pending_buf_size)){s=1;break}s=n.gzindex<n.gzhead.comment.length?255&n.gzhead.comment.charCodeAt(n.gzindex++):0,U(n,s)}while(0!==s);n.gzhead.hcrc&&n.pending>i&&(e.adler=p(e.adler,n.pending_buf,n.pending-i,i)),0===s&&(n.status=103)}else n.status=103;if(103===n.status&&(n.gzhead.hcrc?(n.pending+2>n.pending_buf_size&&F(e),n.pending+2<=n.pending_buf_size&&(U(n,255&e.adler),U(n,e.adler>>8&255),e.adler=0,n.status=E)):n.status=E),0!==n.pending){if(F(e),0===e.avail_out)return n.last_flush=-1,m}else if(0===e.avail_in&&T(t)<=T(r)&&t!==f)return R(e,-5);if(666===n.status&&0!==e.avail_in)return R(e,-5);if(0!==e.avail_in||0!==n.lookahead||t!==l&&666!==n.status){var o=2===n.strategy?function(e,t){for(var r;;){if(0===e.lookahead&&(j(e),0===e.lookahead)){if(t===l)return A;break}if(e.match_length=0,r=u._tr_tally(e,0,e.window[e.strstart]),e.lookahead--,e.strstart++,r&&(N(e,!1),0===e.strm.avail_out))return A}return e.insert=0,t===f?(N(e,!0),0===e.strm.avail_out?O:B):e.last_lit&&(N(e,!1),0===e.strm.avail_out)?A:I}(n,t):3===n.strategy?function(e,t){for(var r,n,i,s,a=e.window;;){if(e.lookahead<=S){if(j(e),e.lookahead<=S&&t===l)return A;if(0===e.lookahead)break}if(e.match_length=0,e.lookahead>=x&&0<e.strstart&&(n=a[i=e.strstart-1])===a[++i]&&n===a[++i]&&n===a[++i]){s=e.strstart+S;do{}while(n===a[++i]&&n===a[++i]&&n===a[++i]&&n===a[++i]&&n===a[++i]&&n===a[++i]&&n===a[++i]&&n===a[++i]&&i<s);e.match_length=S-(s-i),e.match_length>e.lookahead&&(e.match_length=e.lookahead)}if(e.match_length>=x?(r=u._tr_tally(e,1,e.match_length-x),e.lookahead-=e.match_length,e.strstart+=e.match_length,e.match_length=0):(r=u._tr_tally(e,0,e.window[e.strstart]),e.lookahead--,e.strstart++),r&&(N(e,!1),0===e.strm.avail_out))return A}return e.insert=0,t===f?(N(e,!0),0===e.strm.avail_out?O:B):e.last_lit&&(N(e,!1),0===e.strm.avail_out)?A:I}(n,t):h[n.level].func(n,t);if(o!==O&&o!==B||(n.status=666),o===A||o===O)return 0===e.avail_out&&(n.last_flush=-1),m;if(o===I&&(1===t?u._tr_align(n):5!==t&&(u._tr_stored_block(n,0,0,!1),3===t&&(D(n.head),0===n.lookahead&&(n.strstart=0,n.block_start=0,n.insert=0))),F(e),0===e.avail_out))return n.last_flush=-1,m}return t!==f?m:n.wrap<=0?1:(2===n.wrap?(U(n,255&e.adler),U(n,e.adler>>8&255),U(n,e.adler>>16&255),U(n,e.adler>>24&255),U(n,255&e.total_in),U(n,e.total_in>>8&255),U(n,e.total_in>>16&255),U(n,e.total_in>>24&255)):(P(n,e.adler>>>16),P(n,65535&e.adler)),F(e),0<n.wrap&&(n.wrap=-n.wrap),0!==n.pending?m:1)},r.deflateEnd=function(e){var t;return e&&e.state?(t=e.state.status)!==C&&69!==t&&73!==t&&91!==t&&103!==t&&t!==E&&666!==t?R(e,_):(e.state=null,t===E?R(e,-3):m):_},r.deflateSetDictionary=function(e,t){var r,n,i,s,a,o,h,u,l=t.length;if(!e||!e.state)return _;if(2===(s=(r=e.state).wrap)||1===s&&r.status!==C||r.lookahead)return _;for(1===s&&(e.adler=d(e.adler,t,l,0)),r.wrap=0,l>=r.w_size&&(0===s&&(D(r.head),r.strstart=0,r.block_start=0,r.insert=0),u=new c.Buf8(r.w_size),c.arraySet(u,t,l-r.w_size,r.w_size,0),t=u,l=r.w_size),a=e.avail_in,o=e.next_in,h=e.input,e.avail_in=l,e.next_in=0,e.input=t,j(r);r.lookahead>=x;){for(n=r.strstart,i=r.lookahead-(x-1);r.ins_h=(r.ins_h<<r.hash_shift^r.window[n+x-1])&r.hash_mask,r.prev[n&r.w_mask]=r.head[r.ins_h],r.head[r.ins_h]=n,n++,--i;);r.strstart=n,r.lookahead=x-1,j(r)}return r.strstart+=r.lookahead,r.block_start=r.strstart,r.insert=r.lookahead,r.lookahead=0,r.match_length=r.prev_length=x-1,r.match_available=0,e.next_in=o,e.input=h,e.avail_in=a,r.wrap=s,m},r.deflateInfo="pako deflate (from Nodeca project)"},{"../utils/common":41,"./adler32":43,"./crc32":45,"./messages":51,"./trees":52}],47:[function(e,t,r){"use strict";t.exports=function(){this.text=0,this.time=0,this.xflags=0,this.os=0,this.extra=null,this.extra_len=0,this.name="",this.comment="",this.hcrc=0,this.done=!1}},{}],48:[function(e,t,r){"use strict";t.exports=function(e,t){var r,n,i,s,a,o,h,u,l,f,c,d,p,m,_,g,b,v,y,w,k,x,S,z,C;r=e.state,n=e.next_in,z=e.input,i=n+(e.avail_in-5),s=e.next_out,C=e.output,a=s-(t-e.avail_out),o=s+(e.avail_out-257),h=r.dmax,u=r.wsize,l=r.whave,f=r.wnext,c=r.window,d=r.hold,p=r.bits,m=r.lencode,_=r.distcode,g=(1<<r.lenbits)-1,b=(1<<r.distbits)-1;e:do{p<15&&(d+=z[n++]<<p,p+=8,d+=z[n++]<<p,p+=8),v=m[d&g];t:for(;;){if(d>>>=y=v>>>24,p-=y,0===(y=v>>>16&255))C[s++]=65535&v;else{if(!(16&y)){if(0==(64&y)){v=m[(65535&v)+(d&(1<<y)-1)];continue t}if(32&y){r.mode=12;break e}e.msg="invalid literal/length code",r.mode=30;break e}w=65535&v,(y&=15)&&(p<y&&(d+=z[n++]<<p,p+=8),w+=d&(1<<y)-1,d>>>=y,p-=y),p<15&&(d+=z[n++]<<p,p+=8,d+=z[n++]<<p,p+=8),v=_[d&b];r:for(;;){if(d>>>=y=v>>>24,p-=y,!(16&(y=v>>>16&255))){if(0==(64&y)){v=_[(65535&v)+(d&(1<<y)-1)];continue r}e.msg="invalid distance code",r.mode=30;break e}if(k=65535&v,p<(y&=15)&&(d+=z[n++]<<p,(p+=8)<y&&(d+=z[n++]<<p,p+=8)),h<(k+=d&(1<<y)-1)){e.msg="invalid distance too far back",r.mode=30;break e}if(d>>>=y,p-=y,(y=s-a)<k){if(l<(y=k-y)&&r.sane){e.msg="invalid distance too far back",r.mode=30;break e}if(S=c,(x=0)===f){if(x+=u-y,y<w){for(w-=y;C[s++]=c[x++],--y;);x=s-k,S=C}}else if(f<y){if(x+=u+f-y,(y-=f)<w){for(w-=y;C[s++]=c[x++],--y;);if(x=0,f<w){for(w-=y=f;C[s++]=c[x++],--y;);x=s-k,S=C}}}else if(x+=f-y,y<w){for(w-=y;C[s++]=c[x++],--y;);x=s-k,S=C}for(;2<w;)C[s++]=S[x++],C[s++]=S[x++],C[s++]=S[x++],w-=3;w&&(C[s++]=S[x++],1<w&&(C[s++]=S[x++]))}else{for(x=s-k;C[s++]=C[x++],C[s++]=C[x++],C[s++]=C[x++],2<(w-=3););w&&(C[s++]=C[x++],1<w&&(C[s++]=C[x++]))}break}}break}}while(n<i&&s<o);n-=w=p>>3,d&=(1<<(p-=w<<3))-1,e.next_in=n,e.next_out=s,e.avail_in=n<i?i-n+5:5-(n-i),e.avail_out=s<o?o-s+257:257-(s-o),r.hold=d,r.bits=p}},{}],49:[function(e,t,r){"use strict";var I=e("../utils/common"),O=e("./adler32"),B=e("./crc32"),R=e("./inffast"),T=e("./inftrees"),D=1,F=2,N=0,U=-2,P=1,n=852,i=592;function L(e){return(e>>>24&255)+(e>>>8&65280)+((65280&e)<<8)+((255&e)<<24)}function s(){this.mode=0,this.last=!1,this.wrap=0,this.havedict=!1,this.flags=0,this.dmax=0,this.check=0,this.total=0,this.head=null,this.wbits=0,this.wsize=0,this.whave=0,this.wnext=0,this.window=null,this.hold=0,this.bits=0,this.length=0,this.offset=0,this.extra=0,this.lencode=null,this.distcode=null,this.lenbits=0,this.distbits=0,this.ncode=0,this.nlen=0,this.ndist=0,this.have=0,this.next=null,this.lens=new I.Buf16(320),this.work=new I.Buf16(288),this.lendyn=null,this.distdyn=null,this.sane=0,this.back=0,this.was=0}function a(e){var t;return e&&e.state?(t=e.state,e.total_in=e.total_out=t.total=0,e.msg="",t.wrap&&(e.adler=1&t.wrap),t.mode=P,t.last=0,t.havedict=0,t.dmax=32768,t.head=null,t.hold=0,t.bits=0,t.lencode=t.lendyn=new I.Buf32(n),t.distcode=t.distdyn=new I.Buf32(i),t.sane=1,t.back=-1,N):U}function o(e){var t;return e&&e.state?((t=e.state).wsize=0,t.whave=0,t.wnext=0,a(e)):U}function h(e,t){var r,n;return e&&e.state?(n=e.state,t<0?(r=0,t=-t):(r=1+(t>>4),t<48&&(t&=15)),t&&(t<8||15<t)?U:(null!==n.window&&n.wbits!==t&&(n.window=null),n.wrap=r,n.wbits=t,o(e))):U}function u(e,t){var r,n;return e?(n=new s,(e.state=n).window=null,(r=h(e,t))!==N&&(e.state=null),r):U}var l,f,c=!0;function j(e){if(c){var t;for(l=new I.Buf32(512),f=new I.Buf32(32),t=0;t<144;)e.lens[t++]=8;for(;t<256;)e.lens[t++]=9;for(;t<280;)e.lens[t++]=7;for(;t<288;)e.lens[t++]=8;for(T(D,e.lens,0,288,l,0,e.work,{bits:9}),t=0;t<32;)e.lens[t++]=5;T(F,e.lens,0,32,f,0,e.work,{bits:5}),c=!1}e.lencode=l,e.lenbits=9,e.distcode=f,e.distbits=5}function Z(e,t,r,n){var i,s=e.state;return null===s.window&&(s.wsize=1<<s.wbits,s.wnext=0,s.whave=0,s.window=new I.Buf8(s.wsize)),n>=s.wsize?(I.arraySet(s.window,t,r-s.wsize,s.wsize,0),s.wnext=0,s.whave=s.wsize):(n<(i=s.wsize-s.wnext)&&(i=n),I.arraySet(s.window,t,r-n,i,s.wnext),(n-=i)?(I.arraySet(s.window,t,r-n,n,0),s.wnext=n,s.whave=s.wsize):(s.wnext+=i,s.wnext===s.wsize&&(s.wnext=0),s.whave<s.wsize&&(s.whave+=i))),0}r.inflateReset=o,r.inflateReset2=h,r.inflateResetKeep=a,r.inflateInit=function(e){return u(e,15)},r.inflateInit2=u,r.inflate=function(e,t){var r,n,i,s,a,o,h,u,l,f,c,d,p,m,_,g,b,v,y,w,k,x,S,z,C=0,E=new I.Buf8(4),A=[16,17,18,0,8,7,9,6,10,5,11,4,12,3,13,2,14,1,15];if(!e||!e.state||!e.output||!e.input&&0!==e.avail_in)return U;12===(r=e.state).mode&&(r.mode=13),a=e.next_out,i=e.output,h=e.avail_out,s=e.next_in,n=e.input,o=e.avail_in,u=r.hold,l=r.bits,f=o,c=h,x=N;e:for(;;)switch(r.mode){case P:if(0===r.wrap){r.mode=13;break}for(;l<16;){if(0===o)break e;o--,u+=n[s++]<<l,l+=8}if(2&r.wrap&&35615===u){E[r.check=0]=255&u,E[1]=u>>>8&255,r.check=B(r.check,E,2,0),l=u=0,r.mode=2;break}if(r.flags=0,r.head&&(r.head.done=!1),!(1&r.wrap)||(((255&u)<<8)+(u>>8))%31){e.msg="incorrect header check",r.mode=30;break}if(8!=(15&u)){e.msg="unknown compression method",r.mode=30;break}if(l-=4,k=8+(15&(u>>>=4)),0===r.wbits)r.wbits=k;else if(k>r.wbits){e.msg="invalid window size",r.mode=30;break}r.dmax=1<<k,e.adler=r.check=1,r.mode=512&u?10:12,l=u=0;break;case 2:for(;l<16;){if(0===o)break e;o--,u+=n[s++]<<l,l+=8}if(r.flags=u,8!=(255&r.flags)){e.msg="unknown compression method",r.mode=30;break}if(57344&r.flags){e.msg="unknown header flags set",r.mode=30;break}r.head&&(r.head.text=u>>8&1),512&r.flags&&(E[0]=255&u,E[1]=u>>>8&255,r.check=B(r.check,E,2,0)),l=u=0,r.mode=3;case 3:for(;l<32;){if(0===o)break e;o--,u+=n[s++]<<l,l+=8}r.head&&(r.head.time=u),512&r.flags&&(E[0]=255&u,E[1]=u>>>8&255,E[2]=u>>>16&255,E[3]=u>>>24&255,r.check=B(r.check,E,4,0)),l=u=0,r.mode=4;case 4:for(;l<16;){if(0===o)break e;o--,u+=n[s++]<<l,l+=8}r.head&&(r.head.xflags=255&u,r.head.os=u>>8),512&r.flags&&(E[0]=255&u,E[1]=u>>>8&255,r.check=B(r.check,E,2,0)),l=u=0,r.mode=5;case 5:if(1024&r.flags){for(;l<16;){if(0===o)break e;o--,u+=n[s++]<<l,l+=8}r.length=u,r.head&&(r.head.extra_len=u),512&r.flags&&(E[0]=255&u,E[1]=u>>>8&255,r.check=B(r.check,E,2,0)),l=u=0}else r.head&&(r.head.extra=null);r.mode=6;case 6:if(1024&r.flags&&(o<(d=r.length)&&(d=o),d&&(r.head&&(k=r.head.extra_len-r.length,r.head.extra||(r.head.extra=new Array(r.head.extra_len)),I.arraySet(r.head.extra,n,s,d,k)),512&r.flags&&(r.check=B(r.check,n,d,s)),o-=d,s+=d,r.length-=d),r.length))break e;r.length=0,r.mode=7;case 7:if(2048&r.flags){if(0===o)break e;for(d=0;k=n[s+d++],r.head&&k&&r.length<65536&&(r.head.name+=String.fromCharCode(k)),k&&d<o;);if(512&r.flags&&(r.check=B(r.check,n,d,s)),o-=d,s+=d,k)break e}else r.head&&(r.head.name=null);r.length=0,r.mode=8;case 8:if(4096&r.flags){if(0===o)break e;for(d=0;k=n[s+d++],r.head&&k&&r.length<65536&&(r.head.comment+=String.fromCharCode(k)),k&&d<o;);if(512&r.flags&&(r.check=B(r.check,n,d,s)),o-=d,s+=d,k)break e}else r.head&&(r.head.comment=null);r.mode=9;case 9:if(512&r.flags){for(;l<16;){if(0===o)break e;o--,u+=n[s++]<<l,l+=8}if(u!==(65535&r.check)){e.msg="header crc mismatch",r.mode=30;break}l=u=0}r.head&&(r.head.hcrc=r.flags>>9&1,r.head.done=!0),e.adler=r.check=0,r.mode=12;break;case 10:for(;l<32;){if(0===o)break e;o--,u+=n[s++]<<l,l+=8}e.adler=r.check=L(u),l=u=0,r.mode=11;case 11:if(0===r.havedict)return e.next_out=a,e.avail_out=h,e.next_in=s,e.avail_in=o,r.hold=u,r.bits=l,2;e.adler=r.check=1,r.mode=12;case 12:if(5===t||6===t)break e;case 13:if(r.last){u>>>=7&l,l-=7&l,r.mode=27;break}for(;l<3;){if(0===o)break e;o--,u+=n[s++]<<l,l+=8}switch(r.last=1&u,l-=1,3&(u>>>=1)){case 0:r.mode=14;break;case 1:if(j(r),r.mode=20,6!==t)break;u>>>=2,l-=2;break e;case 2:r.mode=17;break;case 3:e.msg="invalid block type",r.mode=30}u>>>=2,l-=2;break;case 14:for(u>>>=7&l,l-=7&l;l<32;){if(0===o)break e;o--,u+=n[s++]<<l,l+=8}if((65535&u)!=(u>>>16^65535)){e.msg="invalid stored block lengths",r.mode=30;break}if(r.length=65535&u,l=u=0,r.mode=15,6===t)break e;case 15:r.mode=16;case 16:if(d=r.length){if(o<d&&(d=o),h<d&&(d=h),0===d)break e;I.arraySet(i,n,s,d,a),o-=d,s+=d,h-=d,a+=d,r.length-=d;break}r.mode=12;break;case 17:for(;l<14;){if(0===o)break e;o--,u+=n[s++]<<l,l+=8}if(r.nlen=257+(31&u),u>>>=5,l-=5,r.ndist=1+(31&u),u>>>=5,l-=5,r.ncode=4+(15&u),u>>>=4,l-=4,286<r.nlen||30<r.ndist){e.msg="too many length or distance symbols",r.mode=30;break}r.have=0,r.mode=18;case 18:for(;r.have<r.ncode;){for(;l<3;){if(0===o)break e;o--,u+=n[s++]<<l,l+=8}r.lens[A[r.have++]]=7&u,u>>>=3,l-=3}for(;r.have<19;)r.lens[A[r.have++]]=0;if(r.lencode=r.lendyn,r.lenbits=7,S={bits:r.lenbits},x=T(0,r.lens,0,19,r.lencode,0,r.work,S),r.lenbits=S.bits,x){e.msg="invalid code lengths set",r.mode=30;break}r.have=0,r.mode=19;case 19:for(;r.have<r.nlen+r.ndist;){for(;g=(C=r.lencode[u&(1<<r.lenbits)-1])>>>16&255,b=65535&C,!((_=C>>>24)<=l);){if(0===o)break e;o--,u+=n[s++]<<l,l+=8}if(b<16)u>>>=_,l-=_,r.lens[r.have++]=b;else{if(16===b){for(z=_+2;l<z;){if(0===o)break e;o--,u+=n[s++]<<l,l+=8}if(u>>>=_,l-=_,0===r.have){e.msg="invalid bit length repeat",r.mode=30;break}k=r.lens[r.have-1],d=3+(3&u),u>>>=2,l-=2}else if(17===b){for(z=_+3;l<z;){if(0===o)break e;o--,u+=n[s++]<<l,l+=8}l-=_,k=0,d=3+(7&(u>>>=_)),u>>>=3,l-=3}else{for(z=_+7;l<z;){if(0===o)break e;o--,u+=n[s++]<<l,l+=8}l-=_,k=0,d=11+(127&(u>>>=_)),u>>>=7,l-=7}if(r.have+d>r.nlen+r.ndist){e.msg="invalid bit length repeat",r.mode=30;break}for(;d--;)r.lens[r.have++]=k}}if(30===r.mode)break;if(0===r.lens[256]){e.msg="invalid code -- missing end-of-block",r.mode=30;break}if(r.lenbits=9,S={bits:r.lenbits},x=T(D,r.lens,0,r.nlen,r.lencode,0,r.work,S),r.lenbits=S.bits,x){e.msg="invalid literal/lengths set",r.mode=30;break}if(r.distbits=6,r.distcode=r.distdyn,S={bits:r.distbits},x=T(F,r.lens,r.nlen,r.ndist,r.distcode,0,r.work,S),r.distbits=S.bits,x){e.msg="invalid distances set",r.mode=30;break}if(r.mode=20,6===t)break e;case 20:r.mode=21;case 21:if(6<=o&&258<=h){e.next_out=a,e.avail_out=h,e.next_in=s,e.avail_in=o,r.hold=u,r.bits=l,R(e,c),a=e.next_out,i=e.output,h=e.avail_out,s=e.next_in,n=e.input,o=e.avail_in,u=r.hold,l=r.bits,12===r.mode&&(r.back=-1);break}for(r.back=0;g=(C=r.lencode[u&(1<<r.lenbits)-1])>>>16&255,b=65535&C,!((_=C>>>24)<=l);){if(0===o)break e;o--,u+=n[s++]<<l,l+=8}if(g&&0==(240&g)){for(v=_,y=g,w=b;g=(C=r.lencode[w+((u&(1<<v+y)-1)>>v)])>>>16&255,b=65535&C,!(v+(_=C>>>24)<=l);){if(0===o)break e;o--,u+=n[s++]<<l,l+=8}u>>>=v,l-=v,r.back+=v}if(u>>>=_,l-=_,r.back+=_,r.length=b,0===g){r.mode=26;break}if(32&g){r.back=-1,r.mode=12;break}if(64&g){e.msg="invalid literal/length code",r.mode=30;break}r.extra=15&g,r.mode=22;case 22:if(r.extra){for(z=r.extra;l<z;){if(0===o)break e;o--,u+=n[s++]<<l,l+=8}r.length+=u&(1<<r.extra)-1,u>>>=r.extra,l-=r.extra,r.back+=r.extra}r.was=r.length,r.mode=23;case 23:for(;g=(C=r.distcode[u&(1<<r.distbits)-1])>>>16&255,b=65535&C,!((_=C>>>24)<=l);){if(0===o)break e;o--,u+=n[s++]<<l,l+=8}if(0==(240&g)){for(v=_,y=g,w=b;g=(C=r.distcode[w+((u&(1<<v+y)-1)>>v)])>>>16&255,b=65535&C,!(v+(_=C>>>24)<=l);){if(0===o)break e;o--,u+=n[s++]<<l,l+=8}u>>>=v,l-=v,r.back+=v}if(u>>>=_,l-=_,r.back+=_,64&g){e.msg="invalid distance code",r.mode=30;break}r.offset=b,r.extra=15&g,r.mode=24;case 24:if(r.extra){for(z=r.extra;l<z;){if(0===o)break e;o--,u+=n[s++]<<l,l+=8}r.offset+=u&(1<<r.extra)-1,u>>>=r.extra,l-=r.extra,r.back+=r.extra}if(r.offset>r.dmax){e.msg="invalid distance too far back",r.mode=30;break}r.mode=25;case 25:if(0===h)break e;if(d=c-h,r.offset>d){if((d=r.offset-d)>r.whave&&r.sane){e.msg="invalid distance too far back",r.mode=30;break}p=d>r.wnext?(d-=r.wnext,r.wsize-d):r.wnext-d,d>r.length&&(d=r.length),m=r.window}else m=i,p=a-r.offset,d=r.length;for(h<d&&(d=h),h-=d,r.length-=d;i[a++]=m[p++],--d;);0===r.length&&(r.mode=21);break;case 26:if(0===h)break e;i[a++]=r.length,h--,r.mode=21;break;case 27:if(r.wrap){for(;l<32;){if(0===o)break e;o--,u|=n[s++]<<l,l+=8}if(c-=h,e.total_out+=c,r.total+=c,c&&(e.adler=r.check=r.flags?B(r.check,i,c,a-c):O(r.check,i,c,a-c)),c=h,(r.flags?u:L(u))!==r.check){e.msg="incorrect data check",r.mode=30;break}l=u=0}r.mode=28;case 28:if(r.wrap&&r.flags){for(;l<32;){if(0===o)break e;o--,u+=n[s++]<<l,l+=8}if(u!==(4294967295&r.total)){e.msg="incorrect length check",r.mode=30;break}l=u=0}r.mode=29;case 29:x=1;break e;case 30:x=-3;break e;case 31:return-4;case 32:default:return U}return e.next_out=a,e.avail_out=h,e.next_in=s,e.avail_in=o,r.hold=u,r.bits=l,(r.wsize||c!==e.avail_out&&r.mode<30&&(r.mode<27||4!==t))&&Z(e,e.output,e.next_out,c-e.avail_out)?(r.mode=31,-4):(f-=e.avail_in,c-=e.avail_out,e.total_in+=f,e.total_out+=c,r.total+=c,r.wrap&&c&&(e.adler=r.check=r.flags?B(r.check,i,c,e.next_out-c):O(r.check,i,c,e.next_out-c)),e.data_type=r.bits+(r.last?64:0)+(12===r.mode?128:0)+(20===r.mode||15===r.mode?256:0),(0==f&&0===c||4===t)&&x===N&&(x=-5),x)},r.inflateEnd=function(e){if(!e||!e.state)return U;var t=e.state;return t.window&&(t.window=null),e.state=null,N},r.inflateGetHeader=function(e,t){var r;return e&&e.state?0==(2&(r=e.state).wrap)?U:((r.head=t).done=!1,N):U},r.inflateSetDictionary=function(e,t){var r,n=t.length;return e&&e.state?0!==(r=e.state).wrap&&11!==r.mode?U:11===r.mode&&O(1,t,n,0)!==r.check?-3:Z(e,t,n,n)?(r.mode=31,-4):(r.havedict=1,N):U},r.inflateInfo="pako inflate (from Nodeca project)"},{"../utils/common":41,"./adler32":43,"./crc32":45,"./inffast":48,"./inftrees":50}],50:[function(e,t,r){"use strict";var D=e("../utils/common"),F=[3,4,5,6,7,8,9,10,11,13,15,17,19,23,27,31,35,43,51,59,67,83,99,115,131,163,195,227,258,0,0],N=[16,16,16,16,16,16,16,16,17,17,17,17,18,18,18,18,19,19,19,19,20,20,20,20,21,21,21,21,16,72,78],U=[1,2,3,4,5,7,9,13,17,25,33,49,65,97,129,193,257,385,513,769,1025,1537,2049,3073,4097,6145,8193,12289,16385,24577,0,0],P=[16,16,16,16,17,17,18,18,19,19,20,20,21,21,22,22,23,23,24,24,25,25,26,26,27,27,28,28,29,29,64,64];t.exports=function(e,t,r,n,i,s,a,o){var h,u,l,f,c,d,p,m,_,g=o.bits,b=0,v=0,y=0,w=0,k=0,x=0,S=0,z=0,C=0,E=0,A=null,I=0,O=new D.Buf16(16),B=new D.Buf16(16),R=null,T=0;for(b=0;b<=15;b++)O[b]=0;for(v=0;v<n;v++)O[t[r+v]]++;for(k=g,w=15;1<=w&&0===O[w];w--);if(w<k&&(k=w),0===w)return i[s++]=20971520,i[s++]=20971520,o.bits=1,0;for(y=1;y<w&&0===O[y];y++);for(k<y&&(k=y),b=z=1;b<=15;b++)if(z<<=1,(z-=O[b])<0)return-1;if(0<z&&(0===e||1!==w))return-1;for(B[1]=0,b=1;b<15;b++)B[b+1]=B[b]+O[b];for(v=0;v<n;v++)0!==t[r+v]&&(a[B[t[r+v]]++]=v);if(d=0===e?(A=R=a,19):1===e?(A=F,I-=257,R=N,T-=257,256):(A=U,R=P,-1),b=y,c=s,S=v=E=0,l=-1,f=(C=1<<(x=k))-1,1===e&&852<C||2===e&&592<C)return 1;for(;;){for(p=b-S,_=a[v]<d?(m=0,a[v]):a[v]>d?(m=R[T+a[v]],A[I+a[v]]):(m=96,0),h=1<<b-S,y=u=1<<x;i[c+(E>>S)+(u-=h)]=p<<24|m<<16|_|0,0!==u;);for(h=1<<b-1;E&h;)h>>=1;if(0!==h?(E&=h-1,E+=h):E=0,v++,0==--O[b]){if(b===w)break;b=t[r+a[v]]}if(k<b&&(E&f)!==l){for(0===S&&(S=k),c+=y,z=1<<(x=b-S);x+S<w&&!((z-=O[x+S])<=0);)x++,z<<=1;if(C+=1<<x,1===e&&852<C||2===e&&592<C)return 1;i[l=E&f]=k<<24|x<<16|c-s|0}}return 0!==E&&(i[c+E]=b-S<<24|64<<16|0),o.bits=k,0}},{"../utils/common":41}],51:[function(e,t,r){"use strict";t.exports={2:"need dictionary",1:"stream end",0:"","-1":"file error","-2":"stream error","-3":"data error","-4":"insufficient memory","-5":"buffer error","-6":"incompatible version"}},{}],52:[function(e,t,r){"use strict";var i=e("../utils/common"),o=0,h=1;function n(e){for(var t=e.length;0<=--t;)e[t]=0}var s=0,a=29,u=256,l=u+1+a,f=30,c=19,_=2*l+1,g=15,d=16,p=7,m=256,b=16,v=17,y=18,w=[0,0,0,0,0,0,0,0,1,1,1,1,2,2,2,2,3,3,3,3,4,4,4,4,5,5,5,5,0],k=[0,0,0,0,1,1,2,2,3,3,4,4,5,5,6,6,7,7,8,8,9,9,10,10,11,11,12,12,13,13],x=[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,2,3,7],S=[16,17,18,0,8,7,9,6,10,5,11,4,12,3,13,2,14,1,15],z=new Array(2*(l+2));n(z);var C=new Array(2*f);n(C);var E=new Array(512);n(E);var A=new Array(256);n(A);var I=new Array(a);n(I);var O,B,R,T=new Array(f);function D(e,t,r,n,i){this.static_tree=e,this.extra_bits=t,this.extra_base=r,this.elems=n,this.max_length=i,this.has_stree=e&&e.length}function F(e,t){this.dyn_tree=e,this.max_code=0,this.stat_desc=t}function N(e){return e<256?E[e]:E[256+(e>>>7)]}function U(e,t){e.pending_buf[e.pending++]=255&t,e.pending_buf[e.pending++]=t>>>8&255}function P(e,t,r){e.bi_valid>d-r?(e.bi_buf|=t<<e.bi_valid&65535,U(e,e.bi_buf),e.bi_buf=t>>d-e.bi_valid,e.bi_valid+=r-d):(e.bi_buf|=t<<e.bi_valid&65535,e.bi_valid+=r)}function L(e,t,r){P(e,r[2*t],r[2*t+1])}function j(e,t){for(var r=0;r|=1&e,e>>>=1,r<<=1,0<--t;);return r>>>1}function Z(e,t,r){var n,i,s=new Array(g+1),a=0;for(n=1;n<=g;n++)s[n]=a=a+r[n-1]<<1;for(i=0;i<=t;i++){var o=e[2*i+1];0!==o&&(e[2*i]=j(s[o]++,o))}}function W(e){var t;for(t=0;t<l;t++)e.dyn_ltree[2*t]=0;for(t=0;t<f;t++)e.dyn_dtree[2*t]=0;for(t=0;t<c;t++)e.bl_tree[2*t]=0;e.dyn_ltree[2*m]=1,e.opt_len=e.static_len=0,e.last_lit=e.matches=0}function M(e){8<e.bi_valid?U(e,e.bi_buf):0<e.bi_valid&&(e.pending_buf[e.pending++]=e.bi_buf),e.bi_buf=0,e.bi_valid=0}function H(e,t,r,n){var i=2*t,s=2*r;return e[i]<e[s]||e[i]===e[s]&&n[t]<=n[r]}function G(e,t,r){for(var n=e.heap[r],i=r<<1;i<=e.heap_len&&(i<e.heap_len&&H(t,e.heap[i+1],e.heap[i],e.depth)&&i++,!H(t,n,e.heap[i],e.depth));)e.heap[r]=e.heap[i],r=i,i<<=1;e.heap[r]=n}function K(e,t,r){var n,i,s,a,o=0;if(0!==e.last_lit)for(;n=e.pending_buf[e.d_buf+2*o]<<8|e.pending_buf[e.d_buf+2*o+1],i=e.pending_buf[e.l_buf+o],o++,0===n?L(e,i,t):(L(e,(s=A[i])+u+1,t),0!==(a=w[s])&&P(e,i-=I[s],a),L(e,s=N(--n),r),0!==(a=k[s])&&P(e,n-=T[s],a)),o<e.last_lit;);L(e,m,t)}function Y(e,t){var r,n,i,s=t.dyn_tree,a=t.stat_desc.static_tree,o=t.stat_desc.has_stree,h=t.stat_desc.elems,u=-1;for(e.heap_len=0,e.heap_max=_,r=0;r<h;r++)0!==s[2*r]?(e.heap[++e.heap_len]=u=r,e.depth[r]=0):s[2*r+1]=0;for(;e.heap_len<2;)s[2*(i=e.heap[++e.heap_len]=u<2?++u:0)]=1,e.depth[i]=0,e.opt_len--,o&&(e.static_len-=a[2*i+1]);for(t.max_code=u,r=e.heap_len>>1;1<=r;r--)G(e,s,r);for(i=h;r=e.heap[1],e.heap[1]=e.heap[e.heap_len--],G(e,s,1),n=e.heap[1],e.heap[--e.heap_max]=r,e.heap[--e.heap_max]=n,s[2*i]=s[2*r]+s[2*n],e.depth[i]=(e.depth[r]>=e.depth[n]?e.depth[r]:e.depth[n])+1,s[2*r+1]=s[2*n+1]=i,e.heap[1]=i++,G(e,s,1),2<=e.heap_len;);e.heap[--e.heap_max]=e.heap[1],function(e,t){var r,n,i,s,a,o,h=t.dyn_tree,u=t.max_code,l=t.stat_desc.static_tree,f=t.stat_desc.has_stree,c=t.stat_desc.extra_bits,d=t.stat_desc.extra_base,p=t.stat_desc.max_length,m=0;for(s=0;s<=g;s++)e.bl_count[s]=0;for(h[2*e.heap[e.heap_max]+1]=0,r=e.heap_max+1;r<_;r++)p<(s=h[2*h[2*(n=e.heap[r])+1]+1]+1)&&(s=p,m++),h[2*n+1]=s,u<n||(e.bl_count[s]++,a=0,d<=n&&(a=c[n-d]),o=h[2*n],e.opt_len+=o*(s+a),f&&(e.static_len+=o*(l[2*n+1]+a)));if(0!==m){do{for(s=p-1;0===e.bl_count[s];)s--;e.bl_count[s]--,e.bl_count[s+1]+=2,e.bl_count[p]--,m-=2}while(0<m);for(s=p;0!==s;s--)for(n=e.bl_count[s];0!==n;)u<(i=e.heap[--r])||(h[2*i+1]!==s&&(e.opt_len+=(s-h[2*i+1])*h[2*i],h[2*i+1]=s),n--)}}(e,t),Z(s,u,e.bl_count)}function X(e,t,r){var n,i,s=-1,a=t[1],o=0,h=7,u=4;for(0===a&&(h=138,u=3),t[2*(r+1)+1]=65535,n=0;n<=r;n++)i=a,a=t[2*(n+1)+1],++o<h&&i===a||(o<u?e.bl_tree[2*i]+=o:0!==i?(i!==s&&e.bl_tree[2*i]++,e.bl_tree[2*b]++):o<=10?e.bl_tree[2*v]++:e.bl_tree[2*y]++,s=i,u=(o=0)===a?(h=138,3):i===a?(h=6,3):(h=7,4))}function V(e,t,r){var n,i,s=-1,a=t[1],o=0,h=7,u=4;for(0===a&&(h=138,u=3),n=0;n<=r;n++)if(i=a,a=t[2*(n+1)+1],!(++o<h&&i===a)){if(o<u)for(;L(e,i,e.bl_tree),0!=--o;);else 0!==i?(i!==s&&(L(e,i,e.bl_tree),o--),L(e,b,e.bl_tree),P(e,o-3,2)):o<=10?(L(e,v,e.bl_tree),P(e,o-3,3)):(L(e,y,e.bl_tree),P(e,o-11,7));s=i,u=(o=0)===a?(h=138,3):i===a?(h=6,3):(h=7,4)}}n(T);var q=!1;function J(e,t,r,n){P(e,(s<<1)+(n?1:0),3),function(e,t,r,n){M(e),n&&(U(e,r),U(e,~r)),i.arraySet(e.pending_buf,e.window,t,r,e.pending),e.pending+=r}(e,t,r,!0)}r._tr_init=function(e){q||(function(){var e,t,r,n,i,s=new Array(g+1);for(n=r=0;n<a-1;n++)for(I[n]=r,e=0;e<1<<w[n];e++)A[r++]=n;for(A[r-1]=n,n=i=0;n<16;n++)for(T[n]=i,e=0;e<1<<k[n];e++)E[i++]=n;for(i>>=7;n<f;n++)for(T[n]=i<<7,e=0;e<1<<k[n]-7;e++)E[256+i++]=n;for(t=0;t<=g;t++)s[t]=0;for(e=0;e<=143;)z[2*e+1]=8,e++,s[8]++;for(;e<=255;)z[2*e+1]=9,e++,s[9]++;for(;e<=279;)z[2*e+1]=7,e++,s[7]++;for(;e<=287;)z[2*e+1]=8,e++,s[8]++;for(Z(z,l+1,s),e=0;e<f;e++)C[2*e+1]=5,C[2*e]=j(e,5);O=new D(z,w,u+1,l,g),B=new D(C,k,0,f,g),R=new D(new Array(0),x,0,c,p)}(),q=!0),e.l_desc=new F(e.dyn_ltree,O),e.d_desc=new F(e.dyn_dtree,B),e.bl_desc=new F(e.bl_tree,R),e.bi_buf=0,e.bi_valid=0,W(e)},r._tr_stored_block=J,r._tr_flush_block=function(e,t,r,n){var i,s,a=0;0<e.level?(2===e.strm.data_type&&(e.strm.data_type=function(e){var t,r=4093624447;for(t=0;t<=31;t++,r>>>=1)if(1&r&&0!==e.dyn_ltree[2*t])return o;if(0!==e.dyn_ltree[18]||0!==e.dyn_ltree[20]||0!==e.dyn_ltree[26])return h;for(t=32;t<u;t++)if(0!==e.dyn_ltree[2*t])return h;return o}(e)),Y(e,e.l_desc),Y(e,e.d_desc),a=function(e){var t;for(X(e,e.dyn_ltree,e.l_desc.max_code),X(e,e.dyn_dtree,e.d_desc.max_code),Y(e,e.bl_desc),t=c-1;3<=t&&0===e.bl_tree[2*S[t]+1];t--);return e.opt_len+=3*(t+1)+5+5+4,t}(e),i=e.opt_len+3+7>>>3,(s=e.static_len+3+7>>>3)<=i&&(i=s)):i=s=r+5,r+4<=i&&-1!==t?J(e,t,r,n):4===e.strategy||s===i?(P(e,2+(n?1:0),3),K(e,z,C)):(P(e,4+(n?1:0),3),function(e,t,r,n){var i;for(P(e,t-257,5),P(e,r-1,5),P(e,n-4,4),i=0;i<n;i++)P(e,e.bl_tree[2*S[i]+1],3);V(e,e.dyn_ltree,t-1),V(e,e.dyn_dtree,r-1)}(e,e.l_desc.max_code+1,e.d_desc.max_code+1,a+1),K(e,e.dyn_ltree,e.dyn_dtree)),W(e),n&&M(e)},r._tr_tally=function(e,t,r){return e.pending_buf[e.d_buf+2*e.last_lit]=t>>>8&255,e.pending_buf[e.d_buf+2*e.last_lit+1]=255&t,e.pending_buf[e.l_buf+e.last_lit]=255&r,e.last_lit++,0===t?e.dyn_ltree[2*r]++:(e.matches++,t--,e.dyn_ltree[2*(A[r]+u+1)]++,e.dyn_dtree[2*N(t)]++),e.last_lit===e.lit_bufsize-1},r._tr_align=function(e){P(e,2,3),L(e,m,z),function(e){16===e.bi_valid?(U(e,e.bi_buf),e.bi_buf=0,e.bi_valid=0):8<=e.bi_valid&&(e.pending_buf[e.pending++]=255&e.bi_buf,e.bi_buf>>=8,e.bi_valid-=8)}(e)}},{"../utils/common":41}],53:[function(e,t,r){"use strict";t.exports=function(){this.input=null,this.next_in=0,this.avail_in=0,this.total_in=0,this.output=null,this.next_out=0,this.avail_out=0,this.total_out=0,this.msg="",this.state=null,this.data_type=2,this.adler=0}},{}],54:[function(e,t,r){(function(e){!function(r,n){"use strict";if(!r.setImmediate){var i,s,t,a,o=1,h={},u=!1,l=r.document,e=Object.getPrototypeOf&&Object.getPrototypeOf(r);e=e&&e.setTimeout?e:r,i="[object process]"==={}.toString.call(r.process)?function(e){process.nextTick(function(){c(e)})}:function(){if(r.postMessage&&!r.importScripts){var e=!0,t=r.onmessage;return r.onmessage=function(){e=!1},r.postMessage("","*"),r.onmessage=t,e}}()?(a="setImmediate$"+Math.random()+"$",r.addEventListener?r.addEventListener("message",d,!1):r.attachEvent("onmessage",d),function(e){r.postMessage(a+e,"*")}):r.MessageChannel?((t=new MessageChannel).port1.onmessage=function(e){c(e.data)},function(e){t.port2.postMessage(e)}):l&&"onreadystatechange"in l.createElement("script")?(s=l.documentElement,function(e){var t=l.createElement("script");t.onreadystatechange=function(){c(e),t.onreadystatechange=null,s.removeChild(t),t=null},s.appendChild(t)}):function(e){setTimeout(c,0,e)},e.setImmediate=function(e){"function"!=typeof e&&(e=new Function(""+e));for(var t=new Array(arguments.length-1),r=0;r<t.length;r++)t[r]=arguments[r+1];var n={callback:e,args:t};return h[o]=n,i(o),o++},e.clearImmediate=f}function f(e){delete h[e]}function c(e){if(u)setTimeout(c,0,e);else{var t=h[e];if(t){u=!0;try{!function(e){var t=e.callback,r=e.args;switch(r.length){case 0:t();break;case 1:t(r[0]);break;case 2:t(r[0],r[1]);break;case 3:t(r[0],r[1],r[2]);break;default:t.apply(n,r)}}(t)}finally{f(e),u=!1}}}}function d(e){e.source===r&&"string"==typeof e.data&&0===e.data.indexOf(a)&&c(+e.data.slice(a.length))}}("undefined"==typeof self?void 0===e?this:e:self)}).call(this,"undefined"!=typeof global?global:"undefined"!=typeof self?self:"undefined"!=typeof window?window:{})},{}]},{},[10])(10)});
+
+/*! pdfmake v0.2.7, @license MIT, @link http://pdfmake.org */
+!function webpackUniversalModuleDefinition(r,i){if("object"==typeof exports&&"object"==typeof module)module.exports=i();else if("function"==typeof define&&define.amd)define([],i);else{var o=i();for(var u in o)("object"==typeof exports?exports:r)[u]=o[u]}}("undefined"!=typeof self?self:this,(function(){return function(){var r={9282:function(r,i,o){"use strict";var u=o(4155);function _typeof(r){return _typeof="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function _typeof(r){return typeof r}:function _typeof(r){return r&&"function"==typeof Symbol&&r.constructor===Symbol&&r!==Symbol.prototype?"symbol":typeof r},_typeof(r)}var p,g,y=o(2136).codes,w=y.ERR_AMBIGUOUS_ARGUMENT,_=y.ERR_INVALID_ARG_TYPE,x=y.ERR_INVALID_ARG_VALUE,k=y.ERR_INVALID_RETURN_VALUE,P=y.ERR_MISSING_ARGS,O=o(5961),I=o(9539).inspect,B=o(9539).types,R=B.isPromise,D=B.isRegExp,N=Object.assign?Object.assign:o(8091).assign,W=Object.is?Object.is:o(609);new Map;function lazyLoadComparison(){var r=o(9158);p=r.isDeepEqual,g=r.isDeepStrictEqual}var U=!1,j=r.exports=ok,G={};function innerFail(r){if(r.message instanceof Error)throw r.message;throw new O(r)}function innerOk(r,i,o,u){if(!o){var p=!1;if(0===i)p=!0,u="No value argument passed to `assert.ok()`";else if(u instanceof Error)throw u;var g=new O({actual:o,expected:!0,message:u,operator:"==",stackStartFn:r});throw g.generatedMessage=p,g}}function ok(){for(var r=arguments.length,i=new Array(r),o=0;o<r;o++)i[o]=arguments[o];innerOk.apply(void 0,[ok,i.length].concat(i))}j.fail=function fail(r,i,o,p,g){var y,w=arguments.length;if(0===w)y="Failed";else if(1===w)o=r,r=void 0;else{if(!1===U){U=!0;var _=u.emitWarning?u.emitWarning:void 0;_("assert.fail() with more than one argument is deprecated. Please use assert.strictEqual() instead or only pass a message.","DeprecationWarning","DEP0094")}2===w&&(p="!=")}if(o instanceof Error)throw o;var x={actual:r,expected:i,operator:void 0===p?"fail":p,stackStartFn:g||fail};void 0!==o&&(x.message=o);var k=new O(x);throw y&&(k.message=y,k.generatedMessage=!0),k},j.AssertionError=O,j.ok=ok,j.equal=function equal(r,i,o){if(arguments.length<2)throw new P("actual","expected");r!=i&&innerFail({actual:r,expected:i,message:o,operator:"==",stackStartFn:equal})},j.notEqual=function notEqual(r,i,o){if(arguments.length<2)throw new P("actual","expected");r==i&&innerFail({actual:r,expected:i,message:o,operator:"!=",stackStartFn:notEqual})},j.deepEqual=function deepEqual(r,i,o){if(arguments.length<2)throw new P("actual","expected");void 0===p&&lazyLoadComparison(),p(r,i)||innerFail({actual:r,expected:i,message:o,operator:"deepEqual",stackStartFn:deepEqual})},j.notDeepEqual=function notDeepEqual(r,i,o){if(arguments.length<2)throw new P("actual","expected");void 0===p&&lazyLoadComparison(),p(r,i)&&innerFail({actual:r,expected:i,message:o,operator:"notDeepEqual",stackStartFn:notDeepEqual})},j.deepStrictEqual=function deepStrictEqual(r,i,o){if(arguments.length<2)throw new P("actual","expected");void 0===p&&lazyLoadComparison(),g(r,i)||innerFail({actual:r,expected:i,message:o,operator:"deepStrictEqual",stackStartFn:deepStrictEqual})},j.notDeepStrictEqual=function notDeepStrictEqual(r,i,o){if(arguments.length<2)throw new P("actual","expected");void 0===p&&lazyLoadComparison();g(r,i)&&innerFail({actual:r,expected:i,message:o,operator:"notDeepStrictEqual",stackStartFn:notDeepStrictEqual})},j.strictEqual=function strictEqual(r,i,o){if(arguments.length<2)throw new P("actual","expected");W(r,i)||innerFail({actual:r,expected:i,message:o,operator:"strictEqual",stackStartFn:strictEqual})},j.notStrictEqual=function notStrictEqual(r,i,o){if(arguments.length<2)throw new P("actual","expected");W(r,i)&&innerFail({actual:r,expected:i,message:o,operator:"notStrictEqual",stackStartFn:notStrictEqual})};var X=function Comparison(r,i,o){var u=this;!function _classCallCheck(r,i){if(!(r instanceof i))throw new TypeError("Cannot call a class as a function")}(this,Comparison),i.forEach((function(i){i in r&&(void 0!==o&&"string"==typeof o[i]&&D(r[i])&&r[i].test(o[i])?u[i]=o[i]:u[i]=r[i])}))};function compareExceptionKey(r,i,o,u,p,y){if(!(o in r)||!g(r[o],i[o])){if(!u){var w=new X(r,p),_=new X(i,p,r),x=new O({actual:w,expected:_,operator:"deepStrictEqual",stackStartFn:y});throw x.actual=r,x.expected=i,x.operator=y.name,x}innerFail({actual:r,expected:i,message:u,operator:y.name,stackStartFn:y})}}function expectedException(r,i,o,u){if("function"!=typeof i){if(D(i))return i.test(r);if(2===arguments.length)throw new _("expected",["Function","RegExp"],i);if("object"!==_typeof(r)||null===r){var g=new O({actual:r,expected:i,message:o,operator:"deepStrictEqual",stackStartFn:u});throw g.operator=u.name,g}var y=Object.keys(i);if(i instanceof Error)y.push("name","message");else if(0===y.length)throw new x("error",i,"may not be an empty object");return void 0===p&&lazyLoadComparison(),y.forEach((function(p){"string"==typeof r[p]&&D(i[p])&&i[p].test(r[p])||compareExceptionKey(r,i,p,o,y,u)})),!0}return void 0!==i.prototype&&r instanceof i||!Error.isPrototypeOf(i)&&!0===i.call({},r)}function getActual(r){if("function"!=typeof r)throw new _("fn","Function",r);try{r()}catch(r){return r}return G}function checkIsPromise(r){return R(r)||null!==r&&"object"===_typeof(r)&&"function"==typeof r.then&&"function"==typeof r.catch}function waitForActual(r){return Promise.resolve().then((function(){var i;if("function"==typeof r){if(!checkIsPromise(i=r()))throw new k("instance of Promise","promiseFn",i)}else{if(!checkIsPromise(r))throw new _("promiseFn",["Function","Promise"],r);i=r}return Promise.resolve().then((function(){return i})).then((function(){return G})).catch((function(r){return r}))}))}function expectsError(r,i,o,u){if("string"==typeof o){if(4===arguments.length)throw new _("error",["Object","Error","Function","RegExp"],o);if("object"===_typeof(i)&&null!==i){if(i.message===o)throw new w("error/message",'The error message "'.concat(i.message,'" is identical to the message.'))}else if(i===o)throw new w("error/message",'The error "'.concat(i,'" is identical to the message.'));u=o,o=void 0}else if(null!=o&&"object"!==_typeof(o)&&"function"!=typeof o)throw new _("error",["Object","Error","Function","RegExp"],o);if(i===G){var p="";o&&o.name&&(p+=" (".concat(o.name,")")),p+=u?": ".concat(u):".";var g="rejects"===r.name?"rejection":"exception";innerFail({actual:void 0,expected:o,operator:r.name,message:"Missing expected ".concat(g).concat(p),stackStartFn:r})}if(o&&!expectedException(i,o,u,r))throw i}function expectsNoError(r,i,o,u){if(i!==G){if("string"==typeof o&&(u=o,o=void 0),!o||expectedException(i,o)){var p=u?": ".concat(u):".",g="doesNotReject"===r.name?"rejection":"exception";innerFail({actual:i,expected:o,operator:r.name,message:"Got unwanted ".concat(g).concat(p,"\n")+'Actual message: "'.concat(i&&i.message,'"'),stackStartFn:r})}throw i}}function strict(){for(var r=arguments.length,i=new Array(r),o=0;o<r;o++)i[o]=arguments[o];innerOk.apply(void 0,[strict,i.length].concat(i))}j.throws=function throws(r){for(var i=arguments.length,o=new Array(i>1?i-1:0),u=1;u<i;u++)o[u-1]=arguments[u];expectsError.apply(void 0,[throws,getActual(r)].concat(o))},j.rejects=function rejects(r){for(var i=arguments.length,o=new Array(i>1?i-1:0),u=1;u<i;u++)o[u-1]=arguments[u];return waitForActual(r).then((function(r){return expectsError.apply(void 0,[rejects,r].concat(o))}))},j.doesNotThrow=function doesNotThrow(r){for(var i=arguments.length,o=new Array(i>1?i-1:0),u=1;u<i;u++)o[u-1]=arguments[u];expectsNoError.apply(void 0,[doesNotThrow,getActual(r)].concat(o))},j.doesNotReject=function doesNotReject(r){for(var i=arguments.length,o=new Array(i>1?i-1:0),u=1;u<i;u++)o[u-1]=arguments[u];return waitForActual(r).then((function(r){return expectsNoError.apply(void 0,[doesNotReject,r].concat(o))}))},j.ifError=function ifError(r){if(null!=r){var i="ifError got unwanted exception: ";"object"===_typeof(r)&&"string"==typeof r.message?0===r.message.length&&r.constructor?i+=r.constructor.name:i+=r.message:i+=I(r);var o=new O({actual:r,expected:null,operator:"ifError",message:i,stackStartFn:ifError}),u=r.stack;if("string"==typeof u){var p=u.split("\n");p.shift();for(var g=o.stack.split("\n"),y=0;y<p.length;y++){var w=g.indexOf(p[y]);if(-1!==w){g=g.slice(0,w);break}}o.stack="".concat(g.join("\n"),"\n").concat(p.join("\n"))}throw o}},j.strict=N(strict,j,{equal:j.strictEqual,deepEqual:j.deepStrictEqual,notEqual:j.notStrictEqual,notDeepEqual:j.notDeepStrictEqual}),j.strict.strict=j.strict},5961:function(r,i,o){"use strict";var u=o(4155);function _defineProperty(r,i,o){return i in r?Object.defineProperty(r,i,{value:o,enumerable:!0,configurable:!0,writable:!0}):r[i]=o,r}function _defineProperties(r,i){for(var o=0;o<i.length;o++){var u=i[o];u.enumerable=u.enumerable||!1,u.configurable=!0,"value"in u&&(u.writable=!0),Object.defineProperty(r,u.key,u)}}function _possibleConstructorReturn(r,i){return!i||"object"!==_typeof(i)&&"function"!=typeof i?_assertThisInitialized(r):i}function _assertThisInitialized(r){if(void 0===r)throw new ReferenceError("this hasn't been initialised - super() hasn't been called");return r}function _wrapNativeSuper(r){var i="function"==typeof Map?new Map:void 0;return _wrapNativeSuper=function _wrapNativeSuper(r){if(null===r||!function _isNativeFunction(r){return-1!==Function.toString.call(r).indexOf("[native code]")}(r))return r;if("function"!=typeof r)throw new TypeError("Super expression must either be null or a function");if(void 0!==i){if(i.has(r))return i.get(r);i.set(r,Wrapper)}function Wrapper(){return _construct(r,arguments,_getPrototypeOf(this).constructor)}return Wrapper.prototype=Object.create(r.prototype,{constructor:{value:Wrapper,enumerable:!1,writable:!0,configurable:!0}}),_setPrototypeOf(Wrapper,r)},_wrapNativeSuper(r)}function isNativeReflectConstruct(){if("undefined"==typeof Reflect||!Reflect.construct)return!1;if(Reflect.construct.sham)return!1;if("function"==typeof Proxy)return!0;try{return Date.prototype.toString.call(Reflect.construct(Date,[],(function(){}))),!0}catch(r){return!1}}function _construct(r,i,o){return _construct=isNativeReflectConstruct()?Reflect.construct:function _construct(r,i,o){var u=[null];u.push.apply(u,i);var p=new(Function.bind.apply(r,u));return o&&_setPrototypeOf(p,o.prototype),p},_construct.apply(null,arguments)}function _setPrototypeOf(r,i){return _setPrototypeOf=Object.setPrototypeOf||function _setPrototypeOf(r,i){return r.__proto__=i,r},_setPrototypeOf(r,i)}function _getPrototypeOf(r){return _getPrototypeOf=Object.setPrototypeOf?Object.getPrototypeOf:function _getPrototypeOf(r){return r.__proto__||Object.getPrototypeOf(r)},_getPrototypeOf(r)}function _typeof(r){return _typeof="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function _typeof(r){return typeof r}:function _typeof(r){return r&&"function"==typeof Symbol&&r.constructor===Symbol&&r!==Symbol.prototype?"symbol":typeof r},_typeof(r)}var p=o(9539).inspect,g=o(2136).codes.ERR_INVALID_ARG_TYPE;function endsWith(r,i,o){return(void 0===o||o>r.length)&&(o=r.length),r.substring(o-i.length,o)===i}var y="",w="",_="",x="",k={deepStrictEqual:"Expected values to be strictly deep-equal:",strictEqual:"Expected values to be strictly equal:",strictEqualObject:'Expected "actual" to be reference-equal to "expected":',deepEqual:"Expected values to be loosely deep-equal:",equal:"Expected values to be loosely equal:",notDeepStrictEqual:'Expected "actual" not to be strictly deep-equal to:',notStrictEqual:'Expected "actual" to be strictly unequal to:',notStrictEqualObject:'Expected "actual" not to be reference-equal to "expected":',notDeepEqual:'Expected "actual" not to be loosely deep-equal to:',notEqual:'Expected "actual" to be loosely unequal to:',notIdentical:"Values identical but not reference-equal:"};function copyError(r){var i=Object.keys(r),o=Object.create(Object.getPrototypeOf(r));return i.forEach((function(i){o[i]=r[i]})),Object.defineProperty(o,"message",{value:r.message}),o}function inspectValue(r){return p(r,{compact:!1,customInspect:!1,depth:1e3,maxArrayLength:1/0,showHidden:!1,breakLength:1/0,showProxy:!1,sorted:!0,getters:!0})}function createErrDiff(r,i,o){var p="",g="",P=0,O="",I=!1,B=inspectValue(r),R=B.split("\n"),D=inspectValue(i).split("\n"),N=0,W="";if("strictEqual"===o&&"object"===_typeof(r)&&"object"===_typeof(i)&&null!==r&&null!==i&&(o="strictEqualObject"),1===R.length&&1===D.length&&R[0]!==D[0]){var U=R[0].length+D[0].length;if(U<=10){if(!("object"===_typeof(r)&&null!==r||"object"===_typeof(i)&&null!==i||0===r&&0===i))return"".concat(k[o],"\n\n")+"".concat(R[0]," !== ").concat(D[0],"\n")}else if("strictEqualObject"!==o){if(U<(u.stderr&&u.stderr.isTTY?u.stderr.columns:80)){for(;R[0][N]===D[0][N];)N++;N>2&&(W="\n  ".concat(function repeat(r,i){if(i=Math.floor(i),0==r.length||0==i)return"";var o=r.length*i;for(i=Math.floor(Math.log(i)/Math.log(2));i;)r+=r,i--;return r+r.substring(0,o-r.length)}(" ",N),"^"),N=0)}}}for(var j=R[R.length-1],G=D[D.length-1];j===G&&(N++<2?O="\n  ".concat(j).concat(O):p=j,R.pop(),D.pop(),0!==R.length&&0!==D.length);)j=R[R.length-1],G=D[D.length-1];var X=Math.max(R.length,D.length);if(0===X){var K=B.split("\n");if(K.length>30)for(K[26]="".concat(y,"...").concat(x);K.length>27;)K.pop();return"".concat(k.notIdentical,"\n\n").concat(K.join("\n"),"\n")}N>3&&(O="\n".concat(y,"...").concat(x).concat(O),I=!0),""!==p&&(O="\n  ".concat(p).concat(O),p="");var Y=0,J=k[o]+"\n".concat(w,"+ actual").concat(x," ").concat(_,"- expected").concat(x),$=" ".concat(y,"...").concat(x," Lines skipped");for(N=0;N<X;N++){var ee=N-P;if(R.length<N+1)ee>1&&N>2&&(ee>4?(g+="\n".concat(y,"...").concat(x),I=!0):ee>3&&(g+="\n  ".concat(D[N-2]),Y++),g+="\n  ".concat(D[N-1]),Y++),P=N,p+="\n".concat(_,"-").concat(x," ").concat(D[N]),Y++;else if(D.length<N+1)ee>1&&N>2&&(ee>4?(g+="\n".concat(y,"...").concat(x),I=!0):ee>3&&(g+="\n  ".concat(R[N-2]),Y++),g+="\n  ".concat(R[N-1]),Y++),P=N,g+="\n".concat(w,"+").concat(x," ").concat(R[N]),Y++;else{var te=D[N],re=R[N],ne=re!==te&&(!endsWith(re,",")||re.slice(0,-1)!==te);ne&&endsWith(te,",")&&te.slice(0,-1)===re&&(ne=!1,re+=","),ne?(ee>1&&N>2&&(ee>4?(g+="\n".concat(y,"...").concat(x),I=!0):ee>3&&(g+="\n  ".concat(R[N-2]),Y++),g+="\n  ".concat(R[N-1]),Y++),P=N,g+="\n".concat(w,"+").concat(x," ").concat(re),p+="\n".concat(_,"-").concat(x," ").concat(te),Y+=2):(g+=p,p="",1!==ee&&0!==N||(g+="\n  ".concat(re),Y++))}if(Y>20&&N<X-2)return"".concat(J).concat($,"\n").concat(g,"\n").concat(y,"...").concat(x).concat(p,"\n")+"".concat(y,"...").concat(x)}return"".concat(J).concat(I?$:"","\n").concat(g).concat(p).concat(O).concat(W)}var P=function(r){function AssertionError(r){var i;if(function _classCallCheck(r,i){if(!(r instanceof i))throw new TypeError("Cannot call a class as a function")}(this,AssertionError),"object"!==_typeof(r)||null===r)throw new g("options","Object",r);var o=r.message,p=r.operator,P=r.stackStartFn,O=r.actual,I=r.expected,B=Error.stackTraceLimit;if(Error.stackTraceLimit=0,null!=o)i=_possibleConstructorReturn(this,_getPrototypeOf(AssertionError).call(this,String(o)));else if(u.stderr&&u.stderr.isTTY&&(u.stderr&&u.stderr.getColorDepth&&1!==u.stderr.getColorDepth()?(y="",w="",x="",_=""):(y="",w="",x="",_="")),"object"===_typeof(O)&&null!==O&&"object"===_typeof(I)&&null!==I&&"stack"in O&&O instanceof Error&&"stack"in I&&I instanceof Error&&(O=copyError(O),I=copyError(I)),"deepStrictEqual"===p||"strictEqual"===p)i=_possibleConstructorReturn(this,_getPrototypeOf(AssertionError).call(this,createErrDiff(O,I,p)));else if("notDeepStrictEqual"===p||"notStrictEqual"===p){var R=k[p],D=inspectValue(O).split("\n");if("notStrictEqual"===p&&"object"===_typeof(O)&&null!==O&&(R=k.notStrictEqualObject),D.length>30)for(D[26]="".concat(y,"...").concat(x);D.length>27;)D.pop();i=1===D.length?_possibleConstructorReturn(this,_getPrototypeOf(AssertionError).call(this,"".concat(R," ").concat(D[0]))):_possibleConstructorReturn(this,_getPrototypeOf(AssertionError).call(this,"".concat(R,"\n\n").concat(D.join("\n"),"\n")))}else{var N=inspectValue(O),W="",U=k[p];"notDeepEqual"===p||"notEqual"===p?(N="".concat(k[p],"\n\n").concat(N)).length>1024&&(N="".concat(N.slice(0,1021),"...")):(W="".concat(inspectValue(I)),N.length>512&&(N="".concat(N.slice(0,509),"...")),W.length>512&&(W="".concat(W.slice(0,509),"...")),"deepEqual"===p||"equal"===p?N="".concat(U,"\n\n").concat(N,"\n\nshould equal\n\n"):W=" ".concat(p," ").concat(W)),i=_possibleConstructorReturn(this,_getPrototypeOf(AssertionError).call(this,"".concat(N).concat(W)))}return Error.stackTraceLimit=B,i.generatedMessage=!o,Object.defineProperty(_assertThisInitialized(i),"name",{value:"AssertionError [ERR_ASSERTION]",enumerable:!1,writable:!0,configurable:!0}),i.code="ERR_ASSERTION",i.actual=O,i.expected=I,i.operator=p,Error.captureStackTrace&&Error.captureStackTrace(_assertThisInitialized(i),P),i.stack,i.name="AssertionError",_possibleConstructorReturn(i)}return function _inherits(r,i){if("function"!=typeof i&&null!==i)throw new TypeError("Super expression must either be null or a function");r.prototype=Object.create(i&&i.prototype,{constructor:{value:r,writable:!0,configurable:!0}}),i&&_setPrototypeOf(r,i)}(AssertionError,r),function _createClass(r,i,o){return i&&_defineProperties(r.prototype,i),o&&_defineProperties(r,o),r}(AssertionError,[{key:"toString",value:function toString(){return"".concat(this.name," [").concat(this.code,"]: ").concat(this.message)}},{key:p.custom,value:function value(r,i){return p(this,function _objectSpread(r){for(var i=1;i<arguments.length;i++){var o=null!=arguments[i]?arguments[i]:{},u=Object.keys(o);"function"==typeof Object.getOwnPropertySymbols&&(u=u.concat(Object.getOwnPropertySymbols(o).filter((function(r){return Object.getOwnPropertyDescriptor(o,r).enumerable})))),u.forEach((function(i){_defineProperty(r,i,o[i])}))}return r}({},i,{customInspect:!1,depth:0}))}}]),AssertionError}(_wrapNativeSuper(Error));r.exports=P},2136:function(r,i,o){"use strict";function _typeof(r){return _typeof="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function _typeof(r){return typeof r}:function _typeof(r){return r&&"function"==typeof Symbol&&r.constructor===Symbol&&r!==Symbol.prototype?"symbol":typeof r},_typeof(r)}function _possibleConstructorReturn(r,i){return!i||"object"!==_typeof(i)&&"function"!=typeof i?function _assertThisInitialized(r){if(void 0===r)throw new ReferenceError("this hasn't been initialised - super() hasn't been called");return r}(r):i}function _getPrototypeOf(r){return _getPrototypeOf=Object.setPrototypeOf?Object.getPrototypeOf:function _getPrototypeOf(r){return r.__proto__||Object.getPrototypeOf(r)},_getPrototypeOf(r)}function _setPrototypeOf(r,i){return _setPrototypeOf=Object.setPrototypeOf||function _setPrototypeOf(r,i){return r.__proto__=i,r},_setPrototypeOf(r,i)}var u,p,g={};function createErrorType(r,i,o){o||(o=Error);var u=function(o){function NodeError(o,u,p){var g;return function _classCallCheck(r,i){if(!(r instanceof i))throw new TypeError("Cannot call a class as a function")}(this,NodeError),g=_possibleConstructorReturn(this,_getPrototypeOf(NodeError).call(this,function getMessage(r,o,u){return"string"==typeof i?i:i(r,o,u)}(o,u,p))),g.code=r,g}return function _inherits(r,i){if("function"!=typeof i&&null!==i)throw new TypeError("Super expression must either be null or a function");r.prototype=Object.create(i&&i.prototype,{constructor:{value:r,writable:!0,configurable:!0}}),i&&_setPrototypeOf(r,i)}(NodeError,o),NodeError}(o);g[r]=u}function oneOf(r,i){if(Array.isArray(r)){var o=r.length;return r=r.map((function(r){return String(r)})),o>2?"one of ".concat(i," ").concat(r.slice(0,o-1).join(", "),", or ")+r[o-1]:2===o?"one of ".concat(i," ").concat(r[0]," or ").concat(r[1]):"of ".concat(i," ").concat(r[0])}return"of ".concat(i," ").concat(String(r))}createErrorType("ERR_AMBIGUOUS_ARGUMENT",'The "%s" argument is ambiguous. %s',TypeError),createErrorType("ERR_INVALID_ARG_TYPE",(function(r,i,p){var g,y;if(void 0===u&&(u=o(9282)),u("string"==typeof r,"'name' must be a string"),"string"==typeof i&&function startsWith(r,i,o){return r.substr(!o||o<0?0:+o,i.length)===i}(i,"not ")?(g="must not be",i=i.replace(/^not /,"")):g="must be",function endsWith(r,i,o){return(void 0===o||o>r.length)&&(o=r.length),r.substring(o-i.length,o)===i}(r," argument"))y="The ".concat(r," ").concat(g," ").concat(oneOf(i,"type"));else{var w=function includes(r,i,o){return"number"!=typeof o&&(o=0),!(o+i.length>r.length)&&-1!==r.indexOf(i,o)}(r,".")?"property":"argument";y='The "'.concat(r,'" ').concat(w," ").concat(g," ").concat(oneOf(i,"type"))}return y+=". Received type ".concat(_typeof(p))}),TypeError),createErrorType("ERR_INVALID_ARG_VALUE",(function(r,i){var u=arguments.length>2&&void 0!==arguments[2]?arguments[2]:"is invalid";void 0===p&&(p=o(9539));var g=p.inspect(i);return g.length>128&&(g="".concat(g.slice(0,128),"...")),"The argument '".concat(r,"' ").concat(u,". Received ").concat(g)}),TypeError,RangeError),createErrorType("ERR_INVALID_RETURN_VALUE",(function(r,i,o){var u;return u=o&&o.constructor&&o.constructor.name?"instance of ".concat(o.constructor.name):"type ".concat(_typeof(o)),"Expected ".concat(r,' to be returned from the "').concat(i,'"')+" function but got ".concat(u,".")}),TypeError),createErrorType("ERR_MISSING_ARGS",(function(){for(var r=arguments.length,i=new Array(r),p=0;p<r;p++)i[p]=arguments[p];void 0===u&&(u=o(9282)),u(i.length>0,"At least one arg needs to be specified");var g="The ",y=i.length;switch(i=i.map((function(r){return'"'.concat(r,'"')})),y){case 1:g+="".concat(i[0]," argument");break;case 2:g+="".concat(i[0]," and ").concat(i[1]," arguments");break;default:g+=i.slice(0,y-1).join(", "),g+=", and ".concat(i[y-1]," arguments")}return"".concat(g," must be specified")}),TypeError),r.exports.codes=g},9158:function(r,i,o){"use strict";function _slicedToArray(r,i){return function _arrayWithHoles(r){if(Array.isArray(r))return r}(r)||function _iterableToArrayLimit(r,i){var o=[],u=!0,p=!1,g=void 0;try{for(var y,w=r[Symbol.iterator]();!(u=(y=w.next()).done)&&(o.push(y.value),!i||o.length!==i);u=!0);}catch(r){p=!0,g=r}finally{try{u||null==w.return||w.return()}finally{if(p)throw g}}return o}(r,i)||function _nonIterableRest(){throw new TypeError("Invalid attempt to destructure non-iterable instance")}()}function _typeof(r){return _typeof="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function _typeof(r){return typeof r}:function _typeof(r){return r&&"function"==typeof Symbol&&r.constructor===Symbol&&r!==Symbol.prototype?"symbol":typeof r},_typeof(r)}var u=void 0!==/a/g.flags,p=function arrayFromSet(r){var i=[];return r.forEach((function(r){return i.push(r)})),i},g=function arrayFromMap(r){var i=[];return r.forEach((function(r,o){return i.push([o,r])})),i},y=Object.is?Object.is:o(609),w=Object.getOwnPropertySymbols?Object.getOwnPropertySymbols:function(){return[]},_=Number.isNaN?Number.isNaN:o(360);function uncurryThis(r){return r.call.bind(r)}var x=uncurryThis(Object.prototype.hasOwnProperty),k=uncurryThis(Object.prototype.propertyIsEnumerable),P=uncurryThis(Object.prototype.toString),O=o(9539).types,I=O.isAnyArrayBuffer,B=O.isArrayBufferView,R=O.isDate,D=O.isMap,N=O.isRegExp,W=O.isSet,U=O.isNativeError,j=O.isBoxedPrimitive,G=O.isNumberObject,X=O.isStringObject,K=O.isBooleanObject,Y=O.isBigIntObject,J=O.isSymbolObject,$=O.isFloat32Array,ee=O.isFloat64Array;function isNonIndex(r){if(0===r.length||r.length>10)return!0;for(var i=0;i<r.length;i++){var o=r.charCodeAt(i);if(o<48||o>57)return!0}return 10===r.length&&r>=Math.pow(2,32)}function getOwnNonIndexProperties(r){return Object.keys(r).filter(isNonIndex).concat(w(r).filter(Object.prototype.propertyIsEnumerable.bind(r)))}function compare(r,i){if(r===i)return 0;for(var o=r.length,u=i.length,p=0,g=Math.min(o,u);p<g;++p)if(r[p]!==i[p]){o=r[p],u=i[p];break}return o<u?-1:u<o?1:0}function innerDeepEqual(r,i,o,p){if(r===i)return 0!==r||(!o||y(r,i));if(o){if("object"!==_typeof(r))return"number"==typeof r&&_(r)&&_(i);if("object"!==_typeof(i)||null===r||null===i)return!1;if(Object.getPrototypeOf(r)!==Object.getPrototypeOf(i))return!1}else{if(null===r||"object"!==_typeof(r))return(null===i||"object"!==_typeof(i))&&r==i;if(null===i||"object"!==_typeof(i))return!1}var g=P(r);if(g!==P(i))return!1;if(Array.isArray(r)){if(r.length!==i.length)return!1;var w=getOwnNonIndexProperties(r),x=getOwnNonIndexProperties(i);return w.length===x.length&&keyCheck(r,i,o,p,1,w)}if("[object Object]"===g&&(!D(r)&&D(i)||!W(r)&&W(i)))return!1;if(R(r)){if(!R(i)||Date.prototype.getTime.call(r)!==Date.prototype.getTime.call(i))return!1}else if(N(r)){if(!N(i)||!function areSimilarRegExps(r,i){return u?r.source===i.source&&r.flags===i.flags:RegExp.prototype.toString.call(r)===RegExp.prototype.toString.call(i)}(r,i))return!1}else if(U(r)||r instanceof Error){if(r.message!==i.message||r.name!==i.name)return!1}else{if(B(r)){if(o||!$(r)&&!ee(r)){if(!function areSimilarTypedArrays(r,i){return r.byteLength===i.byteLength&&0===compare(new Uint8Array(r.buffer,r.byteOffset,r.byteLength),new Uint8Array(i.buffer,i.byteOffset,i.byteLength))}(r,i))return!1}else if(!function areSimilarFloatArrays(r,i){if(r.byteLength!==i.byteLength)return!1;for(var o=0;o<r.byteLength;o++)if(r[o]!==i[o])return!1;return!0}(r,i))return!1;var k=getOwnNonIndexProperties(r),O=getOwnNonIndexProperties(i);return k.length===O.length&&keyCheck(r,i,o,p,0,k)}if(W(r))return!(!W(i)||r.size!==i.size)&&keyCheck(r,i,o,p,2);if(D(r))return!(!D(i)||r.size!==i.size)&&keyCheck(r,i,o,p,3);if(I(r)){if(!function areEqualArrayBuffers(r,i){return r.byteLength===i.byteLength&&0===compare(new Uint8Array(r),new Uint8Array(i))}(r,i))return!1}else if(j(r)&&!function isEqualBoxedPrimitive(r,i){return G(r)?G(i)&&y(Number.prototype.valueOf.call(r),Number.prototype.valueOf.call(i)):X(r)?X(i)&&String.prototype.valueOf.call(r)===String.prototype.valueOf.call(i):K(r)?K(i)&&Boolean.prototype.valueOf.call(r)===Boolean.prototype.valueOf.call(i):Y(r)?Y(i)&&BigInt.prototype.valueOf.call(r)===BigInt.prototype.valueOf.call(i):J(i)&&Symbol.prototype.valueOf.call(r)===Symbol.prototype.valueOf.call(i)}(r,i))return!1}return keyCheck(r,i,o,p,0)}function getEnumerables(r,i){return i.filter((function(i){return k(r,i)}))}function keyCheck(r,i,o,u,p,g){if(5===arguments.length){g=Object.keys(r);var y=Object.keys(i);if(g.length!==y.length)return!1}for(var _=0;_<g.length;_++)if(!x(i,g[_]))return!1;if(o&&5===arguments.length){var P=w(r);if(0!==P.length){var O=0;for(_=0;_<P.length;_++){var I=P[_];if(k(r,I)){if(!k(i,I))return!1;g.push(I),O++}else if(k(i,I))return!1}var B=w(i);if(P.length!==B.length&&getEnumerables(i,B).length!==O)return!1}else{var R=w(i);if(0!==R.length&&0!==getEnumerables(i,R).length)return!1}}if(0===g.length&&(0===p||1===p&&0===r.length||0===r.size))return!0;if(void 0===u)u={val1:new Map,val2:new Map,position:0};else{var D=u.val1.get(r);if(void 0!==D){var N=u.val2.get(i);if(void 0!==N)return D===N}u.position++}u.val1.set(r,u.position),u.val2.set(i,u.position);var W=objEquiv(r,i,o,g,u,p);return u.val1.delete(r),u.val2.delete(i),W}function setHasEqualElement(r,i,o,u){for(var g=p(r),y=0;y<g.length;y++){var w=g[y];if(innerDeepEqual(i,w,o,u))return r.delete(w),!0}return!1}function findLooseMatchingPrimitives(r){switch(_typeof(r)){case"undefined":return null;case"object":return;case"symbol":return!1;case"string":r=+r;case"number":if(_(r))return!1}return!0}function setMightHaveLoosePrim(r,i,o){var u=findLooseMatchingPrimitives(o);return null!=u?u:i.has(u)&&!r.has(u)}function mapMightHaveLoosePrim(r,i,o,u,p){var g=findLooseMatchingPrimitives(o);if(null!=g)return g;var y=i.get(g);return!(void 0===y&&!i.has(g)||!innerDeepEqual(u,y,!1,p))&&(!r.has(g)&&innerDeepEqual(u,y,!1,p))}function mapHasEqualEntry(r,i,o,u,g,y){for(var w=p(r),_=0;_<w.length;_++){var x=w[_];if(innerDeepEqual(o,x,g,y)&&innerDeepEqual(u,i.get(x),g,y))return r.delete(x),!0}return!1}function objEquiv(r,i,o,u,y,w){var _=0;if(2===w){if(!function setEquiv(r,i,o,u){for(var g=null,y=p(r),w=0;w<y.length;w++){var _=y[w];if("object"===_typeof(_)&&null!==_)null===g&&(g=new Set),g.add(_);else if(!i.has(_)){if(o)return!1;if(!setMightHaveLoosePrim(r,i,_))return!1;null===g&&(g=new Set),g.add(_)}}if(null!==g){for(var x=p(i),k=0;k<x.length;k++){var P=x[k];if("object"===_typeof(P)&&null!==P){if(!setHasEqualElement(g,P,o,u))return!1}else if(!o&&!r.has(P)&&!setHasEqualElement(g,P,o,u))return!1}return 0===g.size}return!0}(r,i,o,y))return!1}else if(3===w){if(!function mapEquiv(r,i,o,u){for(var p=null,y=g(r),w=0;w<y.length;w++){var _=_slicedToArray(y[w],2),x=_[0],k=_[1];if("object"===_typeof(x)&&null!==x)null===p&&(p=new Set),p.add(x);else{var P=i.get(x);if(void 0===P&&!i.has(x)||!innerDeepEqual(k,P,o,u)){if(o)return!1;if(!mapMightHaveLoosePrim(r,i,x,k,u))return!1;null===p&&(p=new Set),p.add(x)}}}if(null!==p){for(var O=g(i),I=0;I<O.length;I++){var B=_slicedToArray(O[I],2),R=(x=B[0],B[1]);if("object"===_typeof(x)&&null!==x){if(!mapHasEqualEntry(p,r,x,R,o,u))return!1}else if(!(o||r.has(x)&&innerDeepEqual(r.get(x),R,!1,u)||mapHasEqualEntry(p,r,x,R,!1,u)))return!1}return 0===p.size}return!0}(r,i,o,y))return!1}else if(1===w)for(;_<r.length;_++){if(!x(r,_)){if(x(i,_))return!1;for(var k=Object.keys(r);_<k.length;_++){var P=k[_];if(!x(i,P)||!innerDeepEqual(r[P],i[P],o,y))return!1}return k.length===Object.keys(i).length}if(!x(i,_)||!innerDeepEqual(r[_],i[_],o,y))return!1}for(_=0;_<u.length;_++){var O=u[_];if(!innerDeepEqual(r[O],i[O],o,y))return!1}return!0}r.exports={isDeepEqual:function isDeepEqual(r,i){return innerDeepEqual(r,i,false)},isDeepStrictEqual:function isDeepStrictEqual(r,i){return innerDeepEqual(r,i,true)}}},2055:function(r,i){"use strict";i.OP=0,i.CL=1,i.CP=2,i.QU=3,i.GL=4,i.NS=5,i.EX=6,i.SY=7,i.IS=8,i.PR=9,i.PO=10,i.NU=11,i.AL=12,i.HL=13,i.ID=14,i.IN=15,i.HY=16,i.BA=17,i.BB=18,i.B2=19,i.ZW=20,i.CM=21,i.WJ=22,i.H2=23,i.H3=24,i.JL=25,i.JV=26,i.JT=27,i.RI=28,i.EB=29,i.EM=30,i.ZWJ=31,i.CB=32,i.AI=33,i.BK=34,i.CJ=35,i.CR=36,i.LF=37,i.NL=38,i.SA=39,i.SG=40,i.SP=41,i.XX=42},8383:function(r,i){"use strict";i.DI_BRK=0,i.IN_BRK=1,i.CI_BRK=2,i.CP_BRK=3,i.PR_BRK=4,i.pairTable=[[4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,3,4,4,4,4,4,4,4,4,4,4,4],[0,4,4,1,1,4,4,4,4,1,1,0,0,0,0,1,1,1,0,0,4,2,4,0,0,0,0,0,0,0,0,1,0],[0,4,4,1,1,4,4,4,4,1,1,1,1,1,0,1,1,1,0,0,4,2,4,0,0,0,0,0,0,0,0,1,0],[4,4,4,1,1,1,4,4,4,1,1,1,1,1,1,1,1,1,1,1,4,2,4,1,1,1,1,1,1,1,1,1,1],[1,4,4,1,1,1,4,4,4,1,1,1,1,1,1,1,1,1,1,1,4,2,4,1,1,1,1,1,1,1,1,1,1],[0,4,4,1,1,1,4,4,4,0,0,0,0,0,0,1,1,1,0,0,4,2,4,0,0,0,0,0,0,0,0,1,0],[0,4,4,1,1,1,4,4,4,0,0,0,0,0,0,1,1,1,0,0,4,2,4,0,0,0,0,0,0,0,0,1,0],[0,4,4,1,1,1,4,4,4,0,0,1,0,1,0,1,1,1,0,0,4,2,4,0,0,0,0,0,0,0,0,1,0],[0,4,4,1,1,1,4,4,4,0,0,1,1,1,0,1,1,1,0,0,4,2,4,0,0,0,0,0,0,0,0,1,0],[1,4,4,1,1,1,4,4,4,0,0,1,1,1,1,1,1,1,0,0,4,2,4,1,1,1,1,1,0,1,1,1,0],[1,4,4,1,1,1,4,4,4,0,0,1,1,1,0,1,1,1,0,0,4,2,4,0,0,0,0,0,0,0,0,1,0],[1,4,4,1,1,1,4,4,4,1,1,1,1,1,0,1,1,1,0,0,4,2,4,0,0,0,0,0,0,0,0,1,0],[1,4,4,1,1,1,4,4,4,1,1,1,1,1,0,1,1,1,0,0,4,2,4,0,0,0,0,0,0,0,0,1,0],[1,4,4,1,1,1,4,4,4,1,1,1,1,1,0,1,1,1,0,0,4,2,4,0,0,0,0,0,0,0,0,1,0],[0,4,4,1,1,1,4,4,4,0,1,0,0,0,0,1,1,1,0,0,4,2,4,0,0,0,0,0,0,0,0,1,0],[0,4,4,1,1,1,4,4,4,0,0,0,0,0,0,1,1,1,0,0,4,2,4,0,0,0,0,0,0,0,0,1,0],[0,4,4,1,0,1,4,4,4,0,0,1,0,0,0,1,1,1,0,0,4,2,4,0,0,0,0,0,0,0,0,1,0],[0,4,4,1,0,1,4,4,4,0,0,0,0,0,0,1,1,1,0,0,4,2,4,0,0,0,0,0,0,0,0,1,0],[1,4,4,1,1,1,4,4,4,1,1,1,1,1,1,1,1,1,1,1,4,2,4,1,1,1,1,1,1,1,1,1,0],[0,4,4,1,1,1,4,4,4,0,0,0,0,0,0,1,1,1,0,4,4,2,4,0,0,0,0,0,0,0,0,1,0],[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,4,0,0,0,0,0,0,0,0,0,0,0,0],[1,4,4,1,1,1,4,4,4,1,1,1,1,1,0,1,1,1,0,0,4,2,4,0,0,0,0,0,0,0,0,1,0],[1,4,4,1,1,1,4,4,4,1,1,1,1,1,1,1,1,1,1,1,4,2,4,1,1,1,1,1,1,1,1,1,1],[0,4,4,1,1,1,4,4,4,0,1,0,0,0,0,1,1,1,0,0,4,2,4,0,0,0,1,1,0,0,0,1,0],[0,4,4,1,1,1,4,4,4,0,1,0,0,0,0,1,1,1,0,0,4,2,4,0,0,0,0,1,0,0,0,1,0],[0,4,4,1,1,1,4,4,4,0,1,0,0,0,0,1,1,1,0,0,4,2,4,1,1,1,1,0,0,0,0,1,0],[0,4,4,1,1,1,4,4,4,0,1,0,0,0,0,1,1,1,0,0,4,2,4,0,0,0,1,1,0,0,0,1,0],[0,4,4,1,1,1,4,4,4,0,1,0,0,0,0,1,1,1,0,0,4,2,4,0,0,0,0,1,0,0,0,1,0],[0,4,4,1,1,1,4,4,4,0,0,0,0,0,0,1,1,1,0,0,4,2,4,0,0,0,0,0,1,0,0,1,0],[0,4,4,1,1,1,4,4,4,0,1,0,0,0,0,1,1,1,0,0,4,2,4,0,0,0,0,0,0,0,1,1,0],[0,4,4,1,1,1,4,4,4,0,1,0,0,0,0,1,1,1,0,0,4,2,4,0,0,0,0,0,0,0,0,1,0],[1,4,4,1,1,1,4,4,4,1,1,1,1,1,0,1,1,1,0,0,4,2,4,0,0,0,0,0,0,0,0,1,0],[0,4,4,1,1,0,4,4,4,0,0,0,0,0,0,0,0,0,0,0,4,2,4,0,0,0,0,0,0,0,0,1,0]]},5106:function(r,i,o){"use strict";o(9601),i.EncodeStream=o(9126),i.DecodeStream=o(3030),i.Array=o(1988),i.LazyArray=o(6768),i.Bitfield=o(3425),i.Boolean=o(9024),i.Buffer=o(5250),i.Enum=o(3100),i.Optional=o(9541),i.Reserved=o(7468),i.String=o(1466),i.Struct=o(1219),i.VersionedStruct=o(3585);var u=o(6610),p=o(6462),g=o(8011);Object.assign(i,u,p,g)},1988:function(r,i,o){"use strict";function _createForOfIteratorHelperLoose(r,i){var o="undefined"!=typeof Symbol&&r[Symbol.iterator]||r["@@iterator"];if(o)return(o=o.call(r)).next.bind(o);if(Array.isArray(r)||(o=function _unsupportedIterableToArray(r,i){if(!r)return;if("string"==typeof r)return _arrayLikeToArray(r,i);var o=Object.prototype.toString.call(r).slice(8,-1);"Object"===o&&r.constructor&&(o=r.constructor.name);if("Map"===o||"Set"===o)return Array.from(r);if("Arguments"===o||/^(?:Ui|I)nt(?:8|16|32)(?:Clamped)?Array$/.test(o))return _arrayLikeToArray(r,i)}(r))||i&&r&&"number"==typeof r.length){o&&(r=o);var u=0;return function(){return u>=r.length?{done:!0}:{done:!1,value:r[u++]}}}throw new TypeError("Invalid attempt to iterate non-iterable instance.\nIn order to be iterable, non-array objects must have a [Symbol.iterator]() method.")}function _arrayLikeToArray(r,i){(null==i||i>r.length)&&(i=r.length);for(var o=0,u=new Array(i);o<i;o++)u[o]=r[o];return u}o(7042),o(1539),o(8309),o(1038),o(8783),o(4916),o(2526),o(1817),o(2165),o(6992),o(3948);var u=o(6462).Number,p=o(6610),g=function(){function ArrayT(r,i,o){void 0===o&&(o="count"),this.type=r,this.length=i,this.lengthType=o}var r=ArrayT.prototype;return r.decode=function decode(r,i){var o,g=r.pos,y=[],w=i;if(null!=this.length&&(o=p.resolveLength(this.length,r,i)),this.length instanceof u&&(Object.defineProperties(y,{parent:{value:i},_startOffset:{value:g},_currentOffset:{value:0,writable:!0},_length:{value:o}}),w=y),null==o||"bytes"===this.lengthType)for(var _=null!=o?r.pos+o:(null!=i?i._length:void 0)?i._startOffset+i._length:r.length;r.pos<_;)y.push(this.type.decode(r,w));else for(var x=0,k=o;x<k;x++)y.push(this.type.decode(r,w));return y},r.size=function size(r,i){if(!r)return this.type.size(null,i)*p.resolveLength(this.length,null,i);var size=0;this.length instanceof u&&(size+=this.length.size(),i={parent:i});for(var o,g=_createForOfIteratorHelperLoose(r);!(o=g()).done;){var y=o.value;size+=this.type.size(y,i)}return size},r.encode=function encode(r,i,o){var p=o;this.length instanceof u&&((p={pointers:[],startOffset:r.pos,parent:o}).pointerOffset=r.pos+this.size(i,p),this.length.encode(r,i.length));for(var g,y=_createForOfIteratorHelperLoose(i);!(g=y()).done;){var w=g.value;this.type.encode(r,w,p)}if(this.length instanceof u)for(var _=0;_<p.pointers.length;){var x=p.pointers[_++];x.type.encode(r,x.val)}},ArrayT}();r.exports=g},3425:function(r,i,o){"use strict";o(2087);var u=function(){function Bitfield(r,i){void 0===i&&(i=[]),this.type=r,this.flags=i}var r=Bitfield.prototype;return r.decode=function decode(r){for(var i=this.type.decode(r),o={},u=0;u<this.flags.length;u++){var p=this.flags[u];null!=p&&(o[p]=!!(i&1<<u))}return o},r.size=function size(){return this.type.size()},r.encode=function encode(r,i){for(var o=0,u=0;u<this.flags.length;u++){var p=this.flags[u];null!=p&&i[p]&&(o|=1<<u)}return this.type.encode(r,o)},Bitfield}();r.exports=u},9024:function(r){"use strict";var i=function(){function BooleanT(r){this.type=r}var r=BooleanT.prototype;return r.decode=function decode(r,i){return!!this.type.decode(r,i)},r.size=function size(r,i){return this.type.size(r,i)},r.encode=function encode(r,i,o){return this.type.encode(r,+i,o)},BooleanT}();r.exports=i},5250:function(r,i,o){"use strict";var u=o(6610),p=o(6462).Number,g=function(){function BufferT(r){this.length=r}var r=BufferT.prototype;return r.decode=function decode(r,i){var o=u.resolveLength(this.length,r,i);return r.readBuffer(o)},r.size=function size(r,i){return r?r.length:u.resolveLength(this.length,null,i)},r.encode=function encode(r,i,o){return this.length instanceof p&&this.length.encode(r,i.length),r.writeBuffer(i)},BufferT}();r.exports=g},3030:function(r,i,o){"use strict";var u,p=o(8823).Buffer;o(1539),o(9714),o(7042),o(4916),o(5306);try{u=o(4914)}catch(r){}var g=function(){function DecodeStream(r){this.buffer=r,this.pos=0,this.length=this.buffer.length}var r=DecodeStream.prototype;return r.readString=function readString(r,i){switch(void 0===i&&(i="ascii"),i){case"utf16le":case"ucs2":case"utf8":case"ascii":return this.buffer.toString(i,this.pos,this.pos+=r);case"utf16be":for(var o=p.from(this.readBuffer(r)),g=0,y=o.length-1;g<y;g+=2){var w=o[g];o[g]=o[g+1],o[g+1]=w}return o.toString("utf16le");default:if(o=this.readBuffer(r),u)try{return u.decode(o,i)}catch(r){}return o}},r.readBuffer=function readBuffer(r){return this.buffer.slice(this.pos,this.pos+=r)},r.readUInt24BE=function readUInt24BE(){return(this.readUInt16BE()<<8)+this.readUInt8()},r.readUInt24LE=function readUInt24LE(){return this.readUInt16LE()+(this.readUInt8()<<16)},r.readInt24BE=function readInt24BE(){return(this.readInt16BE()<<8)+this.readUInt8()},r.readInt24LE=function readInt24LE(){return this.readUInt16LE()+(this.readInt8()<<16)},DecodeStream}();g.TYPES={UInt8:1,UInt16:2,UInt24:3,UInt32:4,Int8:1,Int16:2,Int24:3,Int32:4,Float:4,Double:8};var y=function _loop(r){if("read"===r.slice(0,4)){var i=g.TYPES[r.replace(/read|[BL]E/g,"")];g.prototype[r]=function(){var o=this.buffer[r](this.pos);return this.pos+=i,o}}};for(var w in p.prototype)y(w);r.exports=g},9126:function(r,i,o){"use strict";var u,p=o(8823).Buffer;function _setPrototypeOf(r,i){return _setPrototypeOf=Object.setPrototypeOf?Object.setPrototypeOf.bind():function _setPrototypeOf(r,i){return r.__proto__=i,r},_setPrototypeOf(r,i)}o(7042),o(3290),o(4916),o(5306);var g=o(2830),y=o(3030);try{u=o(4914)}catch(r){}var w=function(r){function EncodeStream(i){var o;return void 0===i&&(i=65536),(o=r.apply(this,arguments)||this).buffer=p.alloc(i),o.bufferOffset=0,o.pos=0,o}!function _inheritsLoose(r,i){r.prototype=Object.create(i.prototype),r.prototype.constructor=r,_setPrototypeOf(r,i)}(EncodeStream,r);var i=EncodeStream.prototype;return i._read=function _read(){},i.ensure=function ensure(r){if(this.bufferOffset+r>this.buffer.length)return this.flush()},i.flush=function flush(){if(this.bufferOffset>0)return this.push(p.from(this.buffer.slice(0,this.bufferOffset))),this.bufferOffset=0},i.writeBuffer=function writeBuffer(r){return this.flush(),this.push(r),this.pos+=r.length},i.writeString=function writeString(r,i){switch(void 0===i&&(i="ascii"),i){case"utf16le":case"ucs2":case"utf8":case"ascii":return this.writeBuffer(p.from(r,i));case"utf16be":for(var o=p.from(r,"utf16le"),g=0,y=o.length-1;g<y;g+=2){var w=o[g];o[g]=o[g+1],o[g+1]=w}return this.writeBuffer(o);default:if(u)return this.writeBuffer(u.encode(r,i));throw new Error("Install iconv-lite to enable additional string encodings.")}},i.writeUInt24BE=function writeUInt24BE(r){return this.ensure(3),this.buffer[this.bufferOffset++]=r>>>16&255,this.buffer[this.bufferOffset++]=r>>>8&255,this.buffer[this.bufferOffset++]=255&r,this.pos+=3},i.writeUInt24LE=function writeUInt24LE(r){return this.ensure(3),this.buffer[this.bufferOffset++]=255&r,this.buffer[this.bufferOffset++]=r>>>8&255,this.buffer[this.bufferOffset++]=r>>>16&255,this.pos+=3},i.writeInt24BE=function writeInt24BE(r){return r>=0?this.writeUInt24BE(r):this.writeUInt24BE(r+16777215+1)},i.writeInt24LE=function writeInt24LE(r){return r>=0?this.writeUInt24LE(r):this.writeUInt24LE(r+16777215+1)},i.fill=function fill(r,i){if(i<this.buffer.length)return this.ensure(i),this.buffer.fill(r,this.bufferOffset,this.bufferOffset+i),this.bufferOffset+=i,this.pos+=i;var o=p.alloc(i);return o.fill(r),this.writeBuffer(o)},i.end=function end(){return this.flush(),this.push(null)},EncodeStream}(g.Readable),_=function _loop(r){if("write"===r.slice(0,5)){var i=+y.TYPES[r.replace(/write|[BL]E/g,"")];w.prototype[r]=function(o){return this.ensure(i),this.buffer[r](o,this.bufferOffset),this.bufferOffset+=i,this.pos+=i}}};for(var x in p.prototype)_(x);r.exports=w},3100:function(r){"use strict";var i=function(){function Enum(r,i){void 0===i&&(i=[]),this.type=r,this.options=i}var r=Enum.prototype;return r.decode=function decode(r){var i=this.type.decode(r);return this.options[i]||i},r.size=function size(){return this.type.size()},r.encode=function encode(r,i){var o=this.options.indexOf(i);if(-1===o)throw new Error("Unknown option in enum: "+i);return this.type.encode(r,o)},Enum}();r.exports=i},6768:function(r,i,o){"use strict";function _setPrototypeOf(r,i){return _setPrototypeOf=Object.setPrototypeOf?Object.setPrototypeOf.bind():function _setPrototypeOf(r,i){return r.__proto__=i,r},_setPrototypeOf(r,i)}o(1539),o(8674);var u=o(1988),p=o(6462).Number,g=o(6610),y=o(9539).inspect,w=function(r){function LazyArrayT(){return r.apply(this,arguments)||this}!function _inheritsLoose(r,i){r.prototype=Object.create(i.prototype),r.prototype.constructor=r,_setPrototypeOf(r,i)}(LazyArrayT,r);var i=LazyArrayT.prototype;return i.decode=function decode(r,i){var o=r.pos,u=g.resolveLength(this.length,r,i);this.length instanceof p&&(i={parent:i,_startOffset:o,_currentOffset:0,_length:u});var y=new _(this.type,u,r,i);return r.pos+=u*this.type.size(null,i),y},i.size=function size(i,o){return i instanceof _&&(i=i.toArray()),r.prototype.size.call(this,i,o)},i.encode=function encode(i,o,u){return o instanceof _&&(o=o.toArray()),r.prototype.encode.call(this,i,o,u)},LazyArrayT}(u),_=function(){function LazyArray(r,i,o,u){this.type=r,this.length=i,this.stream=o,this.ctx=u,this.base=this.stream.pos,this.items=[]}var r=LazyArray.prototype;return r.get=function get(r){if(!(r<0||r>=this.length)){if(null==this.items[r]){var i=this.stream.pos;this.stream.pos=this.base+this.type.size(null,this.ctx)*r,this.items[r]=this.type.decode(this.stream,this.ctx),this.stream.pos=i}return this.items[r]}},r.toArray=function toArray(){for(var r=[],i=0,o=this.length;i<o;i++)r.push(this.get(i));return r},r.inspect=function inspect(){return y(this.toArray())},LazyArray}();r.exports=w},6462:function(r,i,o){"use strict";function _setPrototypeOf(r,i){return _setPrototypeOf=Object.setPrototypeOf?Object.setPrototypeOf.bind():function _setPrototypeOf(r,i){return r.__proto__=i,r},_setPrototypeOf(r,i)}var u=o(3030),p=function(){function NumberT(r,i){void 0===i&&(i="BE"),this.type=r,this.endian=i,this.fn=this.type,"8"!==this.type[this.type.length-1]&&(this.fn+=this.endian)}var r=NumberT.prototype;return r.size=function size(){return u.TYPES[this.type]},r.decode=function decode(r){return r["read"+this.fn]()},r.encode=function encode(r,i){return r["write"+this.fn](i)},NumberT}();i.Number=p,i.uint8=new p("UInt8"),i.uint16be=i.uint16=new p("UInt16","BE"),i.uint16le=new p("UInt16","LE"),i.uint24be=i.uint24=new p("UInt24","BE"),i.uint24le=new p("UInt24","LE"),i.uint32be=i.uint32=new p("UInt32","BE"),i.uint32le=new p("UInt32","LE"),i.int8=new p("Int8"),i.int16be=i.int16=new p("Int16","BE"),i.int16le=new p("Int16","LE"),i.int24be=i.int24=new p("Int24","BE"),i.int24le=new p("Int24","LE"),i.int32be=i.int32=new p("Int32","BE"),i.int32le=new p("Int32","LE"),i.floatbe=i.float=new p("Float","BE"),i.floatle=new p("Float","LE"),i.doublebe=i.double=new p("Double","BE"),i.doublele=new p("Double","LE");var g=function(r){function Fixed(i,o,u){var p;return void 0===u&&(u=i>>1),(p=r.call(this,"Int"+i,o)||this)._point=1<<u,p}!function _inheritsLoose(r,i){r.prototype=Object.create(i.prototype),r.prototype.constructor=r,_setPrototypeOf(r,i)}(Fixed,r);var i=Fixed.prototype;return i.decode=function decode(i){return r.prototype.decode.call(this,i)/this._point},i.encode=function encode(i,o){return r.prototype.encode.call(this,i,o*this._point|0)},Fixed}(p);i.Fixed=g,i.fixed16be=i.fixed16=new g(16,"BE"),i.fixed16le=new g(16,"LE"),i.fixed32be=i.fixed32=new g(32,"BE"),i.fixed32le=new g(32,"LE")},9541:function(r){"use strict";var i=function(){function Optional(r,i){void 0===i&&(i=!0),this.type=r,this.condition=i}var r=Optional.prototype;return r.decode=function decode(r,i){var o=this.condition;if("function"==typeof o&&(o=o.call(i,i)),o)return this.type.decode(r,i)},r.size=function size(r,i){var o=this.condition;return"function"==typeof o&&(o=o.call(i,i)),o?this.type.size(r,i):0},r.encode=function encode(r,i,o){var u=this.condition;if("function"==typeof u&&(u=u.call(o,o)),u)return this.type.encode(r,i,o)},Optional}();r.exports=i},8011:function(r,i,o){"use strict";var u=o(6610),p=function(){function Pointer(r,i,o){if(void 0===o&&(o={}),this.offsetType=r,this.type=i,this.options=o,"void"===this.type&&(this.type=null),null==this.options.type&&(this.options.type="local"),null==this.options.allowNull&&(this.options.allowNull=!0),null==this.options.nullValue&&(this.options.nullValue=0),null==this.options.lazy&&(this.options.lazy=!1),this.options.relativeTo){if("function"!=typeof this.options.relativeTo)throw new Error("relativeTo option must be a function");this.relativeToGetter=o.relativeTo}}var r=Pointer.prototype;return r.decode=function decode(r,i){var o,p=this,g=this.offsetType.decode(r,i);if(g===this.options.nullValue&&this.options.allowNull)return null;switch(this.options.type){case"local":o=i._startOffset;break;case"immediate":o=r.pos-this.offsetType.size();break;case"parent":o=i.parent._startOffset;break;default:for(var y=i;y.parent;)y=y.parent;o=y._startOffset||0}this.options.relativeTo&&(o+=this.relativeToGetter(i));var w=g+o;if(null!=this.type){var _=null,x=function decodeValue(){if(null!=_)return _;var o=r.pos;return r.pos=w,_=p.type.decode(r,i),r.pos=o,_};return this.options.lazy?new u.PropertyDescriptor({get:x}):x()}return w},r.size=function size(r,i){var o=i;switch(this.options.type){case"local":case"immediate":break;case"parent":i=i.parent;break;default:for(;i.parent;)i=i.parent}var u=this.type;if(null==u){if(!(r instanceof g))throw new Error("Must be a VoidPointer");u=r.type,r=r.value}return r&&i&&(i.pointerSize+=u.size(r,o)),this.offsetType.size()},r.encode=function encode(r,i,o){var u,p=o;if(null!=i){switch(this.options.type){case"local":u=o.startOffset;break;case"immediate":u=r.pos+this.offsetType.size(i,p);break;case"parent":u=(o=o.parent).startOffset;break;default:for(u=0;o.parent;)o=o.parent}this.options.relativeTo&&(u+=this.relativeToGetter(p.val)),this.offsetType.encode(r,o.pointerOffset-u);var y=this.type;if(null==y){if(!(i instanceof g))throw new Error("Must be a VoidPointer");y=i.type,i=i.value}return o.pointers.push({type:y,val:i,parent:p}),o.pointerOffset+=y.size(i,p)}this.offsetType.encode(r,this.options.nullValue)},Pointer}(),g=function VoidPointer(r,i){this.type=r,this.value=i};i.Pointer=p,i.VoidPointer=g},7468:function(r,i,o){"use strict";o(3290);var u=o(6610),p=function(){function Reserved(r,i){void 0===i&&(i=1),this.type=r,this.count=i}var r=Reserved.prototype;return r.decode=function decode(r,i){r.pos+=this.size(null,i)},r.size=function size(r,i){var o=u.resolveLength(this.count,null,i);return this.type.size()*o},r.encode=function encode(r,i,o){return r.fill(0,this.size(i,o))},Reserved}();r.exports=p},1466:function(r,i,o){"use strict";var u=o(8823).Buffer,p=o(6462).Number,g=o(6610),y=function(){function StringT(r,i){void 0===i&&(i="ascii"),this.length=r,this.encoding=i}var r=StringT.prototype;return r.decode=function decode(r,i){var o,u;if(null!=this.length)o=g.resolveLength(this.length,r,i);else{var p;for(p=r.buffer,o=r.length,u=r.pos;u<o&&0!==p[u];)++u;o=u-r.pos}var y=this.encoding;"function"==typeof y&&(y=y.call(i,i)||"ascii");var w=r.readString(o,y);return null==this.length&&r.pos<r.length&&r.pos++,w},r.size=function size(r,i){if(!r)return g.resolveLength(this.length,null,i);var o=this.encoding;"function"==typeof o&&(o=o.call(null!=i?i.val:void 0,null!=i?i.val:void 0)||"ascii"),"utf16be"===o&&(o="utf16le");var size=u.byteLength(r,o);return this.length instanceof p&&(size+=this.length.size()),null==this.length&&size++,size},r.encode=function encode(r,i,o){var g=this.encoding;if("function"==typeof g&&(g=g.call(null!=o?o.val:void 0,null!=o?o.val:void 0)||"ascii"),this.length instanceof p&&this.length.encode(r,u.byteLength(i,g)),r.writeString(i,g),null==this.length)return r.writeUInt8(0)},StringT}();r.exports=y},1219:function(r,i,o){"use strict";var u=o(6610),p=function(){function Struct(r){void 0===r&&(r={}),this.fields=r}var r=Struct.prototype;return r.decode=function decode(r,i,o){void 0===o&&(o=0);var u=this._setup(r,i,o);return this._parseFields(r,u,this.fields),null!=this.process&&this.process.call(u,r),u},r._setup=function _setup(r,i,o){var u={};return Object.defineProperties(u,{parent:{value:i},_startOffset:{value:r.pos},_currentOffset:{value:0,writable:!0},_length:{value:o}}),u},r._parseFields=function _parseFields(r,i,o){for(var p in o){var g,y=o[p];void 0!==(g="function"==typeof y?y.call(i,i):y.decode(r,i))&&(g instanceof u.PropertyDescriptor?Object.defineProperty(i,p,g):i[p]=g),i._currentOffset=r.pos-i._startOffset}},r.size=function size(r,i,o){null==r&&(r={}),null==o&&(o=!0);var u={parent:i,val:r,pointerSize:0},size=0;for(var p in this.fields){var g=this.fields[p];null!=g.size&&(size+=g.size(r[p],u))}return o&&(size+=u.pointerSize),size},r.encode=function encode(r,i,o){var u;null!=this.preEncode&&this.preEncode.call(i,r);var p={pointers:[],startOffset:r.pos,parent:o,val:i,pointerSize:0};for(var g in p.pointerOffset=r.pos+this.size(i,p,!1),this.fields)null!=(u=this.fields[g]).encode&&u.encode(r,i[g],p);for(var y=0;y<p.pointers.length;){var w=p.pointers[y++];w.type.encode(r,w.val,w.parent)}},Struct}();r.exports=p},3585:function(r,i,o){"use strict";function _setPrototypeOf(r,i){return _setPrototypeOf=Object.setPrototypeOf?Object.setPrototypeOf.bind():function _setPrototypeOf(r,i){return r.__proto__=i,r},_setPrototypeOf(r,i)}o(1539);var u=o(1219),p=function(r){function VersionedStruct(i,o){var u;return void 0===o&&(o={}),(u=r.call(this)||this).type=i,u.versions=o,"string"==typeof i&&(u.versionPath=i.split(".")),u}!function _inheritsLoose(r,i){r.prototype=Object.create(i.prototype),r.prototype.constructor=r,_setPrototypeOf(r,i)}(VersionedStruct,r);var i=VersionedStruct.prototype;return i.decode=function decode(r,i,o){void 0===o&&(o=0);var u=this._setup(r,i,o);"string"==typeof this.type?u.version=function getPath(r,i){return i.reduce((function(r,i){return r&&r[i]}),r)}(i,this.versionPath):u.version=this.type.decode(r),this.versions.header&&this._parseFields(r,u,this.versions.header);var p=this.versions[u.version];if(null==p)throw new Error("Unknown version "+u.version);return p instanceof VersionedStruct?p.decode(r,i):(this._parseFields(r,u,p),null!=this.process&&this.process.call(u,r),u)},i.size=function size(r,i,o){var u,p;if(void 0===o&&(o=!0),!r)throw new Error("Not a fixed size");var g={parent:i,val:r,pointerSize:0},size=0;if("string"!=typeof this.type&&(size+=this.type.size(r.version,g)),this.versions.header)for(u in this.versions.header)null!=(p=this.versions.header[u]).size&&(size+=p.size(r[u],g));var y=this.versions[r.version];if(null==y)throw new Error("Unknown version "+r.version);for(u in y)null!=(p=y[u]).size&&(size+=p.size(r[u],g));return o&&(size+=g.pointerSize),size},i.encode=function encode(r,i,o){var u,p;null!=this.preEncode&&this.preEncode.call(i,r);var g={pointers:[],startOffset:r.pos,parent:o,val:i,pointerSize:0};if(g.pointerOffset=r.pos+this.size(i,g,!1),"string"!=typeof this.type&&this.type.encode(r,i.version),this.versions.header)for(u in this.versions.header)null!=(p=this.versions.header[u]).encode&&p.encode(r,i[u],g);var y=this.versions[i.version];for(u in y)null!=(p=y[u]).encode&&p.encode(r,i[u],g);for(var w=0;w<g.pointers.length;){var _=g.pointers[w++];_.type.encode(r,_.val,_.parent)}},VersionedStruct}(u);r.exports=p},6610:function(r,i,o){"use strict";var u=o(6462).Number;i.resolveLength=function(r,i,o){var p;if("number"==typeof r?p=r:"function"==typeof r?p=r.call(o,o):o&&"string"==typeof r?p=o[r]:i&&r instanceof u&&(p=r.decode(i)),isNaN(p))throw new Error("Not a fixed size");return p};i.PropertyDescriptor=function PropertyDescriptor(r){for(var i in void 0===r&&(r={}),this.enumerable=!0,this.configurable=!0,r){var o=r[i];this[i]=o}}},8823:function(r,i,o){"use strict";function _defineProperties(r,i){for(var o=0;o<i.length;o++){var u=i[o];u.enumerable=u.enumerable||!1,u.configurable=!0,"value"in u&&(u.writable=!0),Object.defineProperty(r,(p=u.key,g=void 0,"symbol"==typeof(g=function _toPrimitive(r,i){if("object"!=typeof r||null===r)return r;var o=r[Symbol.toPrimitive];if(void 0!==o){var u=o.call(r,i||"default");if("object"!=typeof u)return u;throw new TypeError("@@toPrimitive must return a primitive value.")}return("string"===i?String:Number)(r)}(p,"string"))?g:String(g)),u)}var p,g}function _assertThisInitialized(r){if(void 0===r)throw new ReferenceError("this hasn't been initialised - super() hasn't been called");return r}function _setPrototypeOf(r,i){return _setPrototypeOf=Object.setPrototypeOf?Object.setPrototypeOf.bind():function _setPrototypeOf(r,i){return r.__proto__=i,r},_setPrototypeOf(r,i)}o(2526),o(1817),o(1539),o(6992),o(2472),o(2990),o(8927),o(3105),o(5035),o(4345),o(7174),o(2846),o(4731),o(7209),o(6319),o(8867),o(7789),o(3739),o(9368),o(4483),o(2056),o(3462),o(678),o(7462),o(3824),o(5021),o(2974),o(5016),o(7803),o(6649),o(6078),o(3290),o(7042),o(2222),o(9714),o(3210),o(4916),o(5306),o(6699),o(2023),o(9653),o(3753),o(545),o(8309),o(3161);var u=o(9742),p=o(645),g="function"==typeof Symbol&&"function"==typeof Symbol.for?Symbol.for("nodejs.util.inspect.custom"):null;i.Buffer=Buffer,i.SlowBuffer=function SlowBuffer(r){+r!=r&&(r=0);return Buffer.alloc(+r)},i.INSPECT_MAX_BYTES=50;var y=2147483647;function createBuffer(r){if(r>y)throw new RangeError('The value "'+r+'" is invalid for option "size"');var i=new Uint8Array(r);return Object.setPrototypeOf(i,Buffer.prototype),i}function Buffer(r,i,o){if("number"==typeof r){if("string"==typeof i)throw new TypeError('The "string" argument must be of type string. Received type number');return allocUnsafe(r)}return from(r,i,o)}function from(r,i,o){if("string"==typeof r)return function fromString(r,i){"string"==typeof i&&""!==i||(i="utf8");if(!Buffer.isEncoding(i))throw new TypeError("Unknown encoding: "+i);var o=0|byteLength(r,i),u=createBuffer(o),p=u.write(r,i);p!==o&&(u=u.slice(0,p));return u}(r,i);if(ArrayBuffer.isView(r))return function fromArrayView(r){if(isInstance(r,Uint8Array)){var i=new Uint8Array(r);return fromArrayBuffer(i.buffer,i.byteOffset,i.byteLength)}return fromArrayLike(r)}(r);if(null==r)throw new TypeError("The first argument must be one of type string, Buffer, ArrayBuffer, Array, or Array-like Object. Received type "+typeof r);if(isInstance(r,ArrayBuffer)||r&&isInstance(r.buffer,ArrayBuffer))return fromArrayBuffer(r,i,o);if("undefined"!=typeof SharedArrayBuffer&&(isInstance(r,SharedArrayBuffer)||r&&isInstance(r.buffer,SharedArrayBuffer)))return fromArrayBuffer(r,i,o);if("number"==typeof r)throw new TypeError('The "value" argument must not be of type number. Received type number');var u=r.valueOf&&r.valueOf();if(null!=u&&u!==r)return Buffer.from(u,i,o);var p=function fromObject(r){if(Buffer.isBuffer(r)){var i=0|checked(r.length),o=createBuffer(i);return 0===o.length||r.copy(o,0,0,i),o}if(void 0!==r.length)return"number"!=typeof r.length||numberIsNaN(r.length)?createBuffer(0):fromArrayLike(r);if("Buffer"===r.type&&Array.isArray(r.data))return fromArrayLike(r.data)}(r);if(p)return p;if("undefined"!=typeof Symbol&&null!=Symbol.toPrimitive&&"function"==typeof r[Symbol.toPrimitive])return Buffer.from(r[Symbol.toPrimitive]("string"),i,o);throw new TypeError("The first argument must be one of type string, Buffer, ArrayBuffer, Array, or Array-like Object. Received type "+typeof r)}function assertSize(r){if("number"!=typeof r)throw new TypeError('"size" argument must be of type number');if(r<0)throw new RangeError('The value "'+r+'" is invalid for option "size"')}function allocUnsafe(r){return assertSize(r),createBuffer(r<0?0:0|checked(r))}function fromArrayLike(r){for(var i=r.length<0?0:0|checked(r.length),o=createBuffer(i),u=0;u<i;u+=1)o[u]=255&r[u];return o}function fromArrayBuffer(r,i,o){if(i<0||r.byteLength<i)throw new RangeError('"offset" is outside of buffer bounds');if(r.byteLength<i+(o||0))throw new RangeError('"length" is outside of buffer bounds');var u;return u=void 0===i&&void 0===o?new Uint8Array(r):void 0===o?new Uint8Array(r,i):new Uint8Array(r,i,o),Object.setPrototypeOf(u,Buffer.prototype),u}function checked(r){if(r>=y)throw new RangeError("Attempt to allocate Buffer larger than maximum size: 0x"+y.toString(16)+" bytes");return 0|r}function byteLength(r,i){if(Buffer.isBuffer(r))return r.length;if(ArrayBuffer.isView(r)||isInstance(r,ArrayBuffer))return r.byteLength;if("string"!=typeof r)throw new TypeError('The "string" argument must be one of type string, Buffer, or ArrayBuffer. Received type '+typeof r);var o=r.length,u=arguments.length>2&&!0===arguments[2];if(!u&&0===o)return 0;for(var p=!1;;)switch(i){case"ascii":case"latin1":case"binary":return o;case"utf8":case"utf-8":return utf8ToBytes(r).length;case"ucs2":case"ucs-2":case"utf16le":case"utf-16le":return 2*o;case"hex":return o>>>1;case"base64":return base64ToBytes(r).length;default:if(p)return u?-1:utf8ToBytes(r).length;i=(""+i).toLowerCase(),p=!0}}function slowToString(r,i,o){var u=!1;if((void 0===i||i<0)&&(i=0),i>this.length)return"";if((void 0===o||o>this.length)&&(o=this.length),o<=0)return"";if((o>>>=0)<=(i>>>=0))return"";for(r||(r="utf8");;)switch(r){case"hex":return hexSlice(this,i,o);case"utf8":case"utf-8":return utf8Slice(this,i,o);case"ascii":return asciiSlice(this,i,o);case"latin1":case"binary":return latin1Slice(this,i,o);case"base64":return base64Slice(this,i,o);case"ucs2":case"ucs-2":case"utf16le":case"utf-16le":return utf16leSlice(this,i,o);default:if(u)throw new TypeError("Unknown encoding: "+r);r=(r+"").toLowerCase(),u=!0}}function swap(r,i,o){var u=r[i];r[i]=r[o],r[o]=u}function bidirectionalIndexOf(r,i,o,u,p){if(0===r.length)return-1;if("string"==typeof o?(u=o,o=0):o>2147483647?o=2147483647:o<-2147483648&&(o=-2147483648),numberIsNaN(o=+o)&&(o=p?0:r.length-1),o<0&&(o=r.length+o),o>=r.length){if(p)return-1;o=r.length-1}else if(o<0){if(!p)return-1;o=0}if("string"==typeof i&&(i=Buffer.from(i,u)),Buffer.isBuffer(i))return 0===i.length?-1:arrayIndexOf(r,i,o,u,p);if("number"==typeof i)return i&=255,"function"==typeof Uint8Array.prototype.indexOf?p?Uint8Array.prototype.indexOf.call(r,i,o):Uint8Array.prototype.lastIndexOf.call(r,i,o):arrayIndexOf(r,[i],o,u,p);throw new TypeError("val must be string, number or Buffer")}function arrayIndexOf(r,i,o,u,p){var g,y=1,w=r.length,_=i.length;if(void 0!==u&&("ucs2"===(u=String(u).toLowerCase())||"ucs-2"===u||"utf16le"===u||"utf-16le"===u)){if(r.length<2||i.length<2)return-1;y=2,w/=2,_/=2,o/=2}function read(r,i){return 1===y?r[i]:r.readUInt16BE(i*y)}if(p){var x=-1;for(g=o;g<w;g++)if(read(r,g)===read(i,-1===x?0:g-x)){if(-1===x&&(x=g),g-x+1===_)return x*y}else-1!==x&&(g-=g-x),x=-1}else for(o+_>w&&(o=w-_),g=o;g>=0;g--){for(var k=!0,P=0;P<_;P++)if(read(r,g+P)!==read(i,P)){k=!1;break}if(k)return g}return-1}function hexWrite(r,i,o,u){o=Number(o)||0;var p=r.length-o;u?(u=Number(u))>p&&(u=p):u=p;var g,y=i.length;for(u>y/2&&(u=y/2),g=0;g<u;++g){var w=parseInt(i.substr(2*g,2),16);if(numberIsNaN(w))return g;r[o+g]=w}return g}function utf8Write(r,i,o,u){return blitBuffer(utf8ToBytes(i,r.length-o),r,o,u)}function asciiWrite(r,i,o,u){return blitBuffer(function asciiToBytes(r){for(var i=[],o=0;o<r.length;++o)i.push(255&r.charCodeAt(o));return i}(i),r,o,u)}function base64Write(r,i,o,u){return blitBuffer(base64ToBytes(i),r,o,u)}function ucs2Write(r,i,o,u){return blitBuffer(function utf16leToBytes(r,i){for(var o,u,p,g=[],y=0;y<r.length&&!((i-=2)<0);++y)u=(o=r.charCodeAt(y))>>8,p=o%256,g.push(p),g.push(u);return g}(i,r.length-o),r,o,u)}function base64Slice(r,i,o){return 0===i&&o===r.length?u.fromByteArray(r):u.fromByteArray(r.slice(i,o))}function utf8Slice(r,i,o){o=Math.min(r.length,o);for(var u=[],p=i;p<o;){var g=r[p],y=null,_=g>239?4:g>223?3:g>191?2:1;if(p+_<=o){var x=void 0,k=void 0,P=void 0,O=void 0;switch(_){case 1:g<128&&(y=g);break;case 2:128==(192&(x=r[p+1]))&&(O=(31&g)<<6|63&x)>127&&(y=O);break;case 3:x=r[p+1],k=r[p+2],128==(192&x)&&128==(192&k)&&(O=(15&g)<<12|(63&x)<<6|63&k)>2047&&(O<55296||O>57343)&&(y=O);break;case 4:x=r[p+1],k=r[p+2],P=r[p+3],128==(192&x)&&128==(192&k)&&128==(192&P)&&(O=(15&g)<<18|(63&x)<<12|(63&k)<<6|63&P)>65535&&O<1114112&&(y=O)}}null===y?(y=65533,_=1):y>65535&&(y-=65536,u.push(y>>>10&1023|55296),y=56320|1023&y),u.push(y),p+=_}return function decodeCodePointsArray(r){var i=r.length;if(i<=w)return String.fromCharCode.apply(String,r);var o="",u=0;for(;u<i;)o+=String.fromCharCode.apply(String,r.slice(u,u+=w));return o}(u)}i.kMaxLength=y,Buffer.TYPED_ARRAY_SUPPORT=function typedArraySupport(){try{var r=new Uint8Array(1),i={foo:function foo(){return 42}};return Object.setPrototypeOf(i,Uint8Array.prototype),Object.setPrototypeOf(r,i),42===r.foo()}catch(r){return!1}}(),!Buffer.TYPED_ARRAY_SUPPORT&&"undefined"!=typeof console&&console.error,Object.defineProperty(Buffer.prototype,"parent",{enumerable:!0,get:function get(){if(Buffer.isBuffer(this))return this.buffer}}),Object.defineProperty(Buffer.prototype,"offset",{enumerable:!0,get:function get(){if(Buffer.isBuffer(this))return this.byteOffset}}),Buffer.poolSize=8192,Buffer.from=function(r,i,o){return from(r,i,o)},Object.setPrototypeOf(Buffer.prototype,Uint8Array.prototype),Object.setPrototypeOf(Buffer,Uint8Array),Buffer.alloc=function(r,i,o){return function alloc(r,i,o){return assertSize(r),r<=0?createBuffer(r):void 0!==i?"string"==typeof o?createBuffer(r).fill(i,o):createBuffer(r).fill(i):createBuffer(r)}(r,i,o)},Buffer.allocUnsafe=function(r){return allocUnsafe(r)},Buffer.allocUnsafeSlow=function(r){return allocUnsafe(r)},Buffer.isBuffer=function isBuffer(r){return null!=r&&!0===r._isBuffer&&r!==Buffer.prototype},Buffer.compare=function compare(r,i){if(isInstance(r,Uint8Array)&&(r=Buffer.from(r,r.offset,r.byteLength)),isInstance(i,Uint8Array)&&(i=Buffer.from(i,i.offset,i.byteLength)),!Buffer.isBuffer(r)||!Buffer.isBuffer(i))throw new TypeError('The "buf1", "buf2" arguments must be one of type Buffer or Uint8Array');if(r===i)return 0;for(var o=r.length,u=i.length,p=0,g=Math.min(o,u);p<g;++p)if(r[p]!==i[p]){o=r[p],u=i[p];break}return o<u?-1:u<o?1:0},Buffer.isEncoding=function isEncoding(r){switch(String(r).toLowerCase()){case"hex":case"utf8":case"utf-8":case"ascii":case"latin1":case"binary":case"base64":case"ucs2":case"ucs-2":case"utf16le":case"utf-16le":return!0;default:return!1}},Buffer.concat=function concat(r,i){if(!Array.isArray(r))throw new TypeError('"list" argument must be an Array of Buffers');if(0===r.length)return Buffer.alloc(0);var o;if(void 0===i)for(i=0,o=0;o<r.length;++o)i+=r[o].length;var u=Buffer.allocUnsafe(i),p=0;for(o=0;o<r.length;++o){var g=r[o];if(isInstance(g,Uint8Array))p+g.length>u.length?(Buffer.isBuffer(g)||(g=Buffer.from(g)),g.copy(u,p)):Uint8Array.prototype.set.call(u,g,p);else{if(!Buffer.isBuffer(g))throw new TypeError('"list" argument must be an Array of Buffers');g.copy(u,p)}p+=g.length}return u},Buffer.byteLength=byteLength,Buffer.prototype._isBuffer=!0,Buffer.prototype.swap16=function swap16(){var r=this.length;if(r%2!=0)throw new RangeError("Buffer size must be a multiple of 16-bits");for(var i=0;i<r;i+=2)swap(this,i,i+1);return this},Buffer.prototype.swap32=function swap32(){var r=this.length;if(r%4!=0)throw new RangeError("Buffer size must be a multiple of 32-bits");for(var i=0;i<r;i+=4)swap(this,i,i+3),swap(this,i+1,i+2);return this},Buffer.prototype.swap64=function swap64(){var r=this.length;if(r%8!=0)throw new RangeError("Buffer size must be a multiple of 64-bits");for(var i=0;i<r;i+=8)swap(this,i,i+7),swap(this,i+1,i+6),swap(this,i+2,i+5),swap(this,i+3,i+4);return this},Buffer.prototype.toString=function toString(){var r=this.length;return 0===r?"":0===arguments.length?utf8Slice(this,0,r):slowToString.apply(this,arguments)},Buffer.prototype.toLocaleString=Buffer.prototype.toString,Buffer.prototype.equals=function equals(r){if(!Buffer.isBuffer(r))throw new TypeError("Argument must be a Buffer");return this===r||0===Buffer.compare(this,r)},Buffer.prototype.inspect=function inspect(){var r="",o=i.INSPECT_MAX_BYTES;return r=this.toString("hex",0,o).replace(/(.{2})/g,"$1 ").trim(),this.length>o&&(r+=" ... "),"<Buffer "+r+">"},g&&(Buffer.prototype[g]=Buffer.prototype.inspect),Buffer.prototype.compare=function compare(r,i,o,u,p){if(isInstance(r,Uint8Array)&&(r=Buffer.from(r,r.offset,r.byteLength)),!Buffer.isBuffer(r))throw new TypeError('The "target" argument must be one of type Buffer or Uint8Array. Received type '+typeof r);if(void 0===i&&(i=0),void 0===o&&(o=r?r.length:0),void 0===u&&(u=0),void 0===p&&(p=this.length),i<0||o>r.length||u<0||p>this.length)throw new RangeError("out of range index");if(u>=p&&i>=o)return 0;if(u>=p)return-1;if(i>=o)return 1;if(this===r)return 0;for(var g=(p>>>=0)-(u>>>=0),y=(o>>>=0)-(i>>>=0),w=Math.min(g,y),_=this.slice(u,p),x=r.slice(i,o),k=0;k<w;++k)if(_[k]!==x[k]){g=_[k],y=x[k];break}return g<y?-1:y<g?1:0},Buffer.prototype.includes=function includes(r,i,o){return-1!==this.indexOf(r,i,o)},Buffer.prototype.indexOf=function indexOf(r,i,o){return bidirectionalIndexOf(this,r,i,o,!0)},Buffer.prototype.lastIndexOf=function lastIndexOf(r,i,o){return bidirectionalIndexOf(this,r,i,o,!1)},Buffer.prototype.write=function write(r,i,o,u){if(void 0===i)u="utf8",o=this.length,i=0;else if(void 0===o&&"string"==typeof i)u=i,o=this.length,i=0;else{if(!isFinite(i))throw new Error("Buffer.write(string, encoding, offset[, length]) is no longer supported");i>>>=0,isFinite(o)?(o>>>=0,void 0===u&&(u="utf8")):(u=o,o=void 0)}var p=this.length-i;if((void 0===o||o>p)&&(o=p),r.length>0&&(o<0||i<0)||i>this.length)throw new RangeError("Attempt to write outside buffer bounds");u||(u="utf8");for(var g=!1;;)switch(u){case"hex":return hexWrite(this,r,i,o);case"utf8":case"utf-8":return utf8Write(this,r,i,o);case"ascii":case"latin1":case"binary":return asciiWrite(this,r,i,o);case"base64":return base64Write(this,r,i,o);case"ucs2":case"ucs-2":case"utf16le":case"utf-16le":return ucs2Write(this,r,i,o);default:if(g)throw new TypeError("Unknown encoding: "+u);u=(""+u).toLowerCase(),g=!0}},Buffer.prototype.toJSON=function toJSON(){return{type:"Buffer",data:Array.prototype.slice.call(this._arr||this,0)}};var w=4096;function asciiSlice(r,i,o){var u="";o=Math.min(r.length,o);for(var p=i;p<o;++p)u+=String.fromCharCode(127&r[p]);return u}function latin1Slice(r,i,o){var u="";o=Math.min(r.length,o);for(var p=i;p<o;++p)u+=String.fromCharCode(r[p]);return u}function hexSlice(r,i,o){var u=r.length;(!i||i<0)&&(i=0),(!o||o<0||o>u)&&(o=u);for(var p="",g=i;g<o;++g)p+=k[r[g]];return p}function utf16leSlice(r,i,o){for(var u=r.slice(i,o),p="",g=0;g<u.length-1;g+=2)p+=String.fromCharCode(u[g]+256*u[g+1]);return p}function checkOffset(r,i,o){if(r%1!=0||r<0)throw new RangeError("offset is not uint");if(r+i>o)throw new RangeError("Trying to access beyond buffer length")}function checkInt(r,i,o,u,p,g){if(!Buffer.isBuffer(r))throw new TypeError('"buffer" argument must be a Buffer instance');if(i>p||i<g)throw new RangeError('"value" argument is out of bounds');if(o+u>r.length)throw new RangeError("Index out of range")}function wrtBigUInt64LE(r,i,o,u,p){checkIntBI(i,u,p,r,o,7);var g=Number(i&BigInt(4294967295));r[o++]=g,g>>=8,r[o++]=g,g>>=8,r[o++]=g,g>>=8,r[o++]=g;var y=Number(i>>BigInt(32)&BigInt(4294967295));return r[o++]=y,y>>=8,r[o++]=y,y>>=8,r[o++]=y,y>>=8,r[o++]=y,o}function wrtBigUInt64BE(r,i,o,u,p){checkIntBI(i,u,p,r,o,7);var g=Number(i&BigInt(4294967295));r[o+7]=g,g>>=8,r[o+6]=g,g>>=8,r[o+5]=g,g>>=8,r[o+4]=g;var y=Number(i>>BigInt(32)&BigInt(4294967295));return r[o+3]=y,y>>=8,r[o+2]=y,y>>=8,r[o+1]=y,y>>=8,r[o]=y,o+8}function checkIEEE754(r,i,o,u,p,g){if(o+u>r.length)throw new RangeError("Index out of range");if(o<0)throw new RangeError("Index out of range")}function writeFloat(r,i,o,u,g){return i=+i,o>>>=0,g||checkIEEE754(r,0,o,4),p.write(r,i,o,u,23,4),o+4}function writeDouble(r,i,o,u,g){return i=+i,o>>>=0,g||checkIEEE754(r,0,o,8),p.write(r,i,o,u,52,8),o+8}Buffer.prototype.slice=function slice(r,i){var o=this.length;(r=~~r)<0?(r+=o)<0&&(r=0):r>o&&(r=o),(i=void 0===i?o:~~i)<0?(i+=o)<0&&(i=0):i>o&&(i=o),i<r&&(i=r);var u=this.subarray(r,i);return Object.setPrototypeOf(u,Buffer.prototype),u},Buffer.prototype.readUintLE=Buffer.prototype.readUIntLE=function readUIntLE(r,i,o){r>>>=0,i>>>=0,o||checkOffset(r,i,this.length);for(var u=this[r],p=1,g=0;++g<i&&(p*=256);)u+=this[r+g]*p;return u},Buffer.prototype.readUintBE=Buffer.prototype.readUIntBE=function readUIntBE(r,i,o){r>>>=0,i>>>=0,o||checkOffset(r,i,this.length);for(var u=this[r+--i],p=1;i>0&&(p*=256);)u+=this[r+--i]*p;return u},Buffer.prototype.readUint8=Buffer.prototype.readUInt8=function readUInt8(r,i){return r>>>=0,i||checkOffset(r,1,this.length),this[r]},Buffer.prototype.readUint16LE=Buffer.prototype.readUInt16LE=function readUInt16LE(r,i){return r>>>=0,i||checkOffset(r,2,this.length),this[r]|this[r+1]<<8},Buffer.prototype.readUint16BE=Buffer.prototype.readUInt16BE=function readUInt16BE(r,i){return r>>>=0,i||checkOffset(r,2,this.length),this[r]<<8|this[r+1]},Buffer.prototype.readUint32LE=Buffer.prototype.readUInt32LE=function readUInt32LE(r,i){return r>>>=0,i||checkOffset(r,4,this.length),(this[r]|this[r+1]<<8|this[r+2]<<16)+16777216*this[r+3]},Buffer.prototype.readUint32BE=Buffer.prototype.readUInt32BE=function readUInt32BE(r,i){return r>>>=0,i||checkOffset(r,4,this.length),16777216*this[r]+(this[r+1]<<16|this[r+2]<<8|this[r+3])},Buffer.prototype.readBigUInt64LE=defineBigIntMethod((function readBigUInt64LE(r){validateNumber(r>>>=0,"offset");var i=this[r],o=this[r+7];void 0!==i&&void 0!==o||boundsError(r,this.length-8);var u=i+this[++r]*Math.pow(2,8)+this[++r]*Math.pow(2,16)+this[++r]*Math.pow(2,24),p=this[++r]+this[++r]*Math.pow(2,8)+this[++r]*Math.pow(2,16)+o*Math.pow(2,24);return BigInt(u)+(BigInt(p)<<BigInt(32))})),Buffer.prototype.readBigUInt64BE=defineBigIntMethod((function readBigUInt64BE(r){validateNumber(r>>>=0,"offset");var i=this[r],o=this[r+7];void 0!==i&&void 0!==o||boundsError(r,this.length-8);var u=i*Math.pow(2,24)+this[++r]*Math.pow(2,16)+this[++r]*Math.pow(2,8)+this[++r],p=this[++r]*Math.pow(2,24)+this[++r]*Math.pow(2,16)+this[++r]*Math.pow(2,8)+o;return(BigInt(u)<<BigInt(32))+BigInt(p)})),Buffer.prototype.readIntLE=function readIntLE(r,i,o){r>>>=0,i>>>=0,o||checkOffset(r,i,this.length);for(var u=this[r],p=1,g=0;++g<i&&(p*=256);)u+=this[r+g]*p;return u>=(p*=128)&&(u-=Math.pow(2,8*i)),u},Buffer.prototype.readIntBE=function readIntBE(r,i,o){r>>>=0,i>>>=0,o||checkOffset(r,i,this.length);for(var u=i,p=1,g=this[r+--u];u>0&&(p*=256);)g+=this[r+--u]*p;return g>=(p*=128)&&(g-=Math.pow(2,8*i)),g},Buffer.prototype.readInt8=function readInt8(r,i){return r>>>=0,i||checkOffset(r,1,this.length),128&this[r]?-1*(255-this[r]+1):this[r]},Buffer.prototype.readInt16LE=function readInt16LE(r,i){r>>>=0,i||checkOffset(r,2,this.length);var o=this[r]|this[r+1]<<8;return 32768&o?4294901760|o:o},Buffer.prototype.readInt16BE=function readInt16BE(r,i){r>>>=0,i||checkOffset(r,2,this.length);var o=this[r+1]|this[r]<<8;return 32768&o?4294901760|o:o},Buffer.prototype.readInt32LE=function readInt32LE(r,i){return r>>>=0,i||checkOffset(r,4,this.length),this[r]|this[r+1]<<8|this[r+2]<<16|this[r+3]<<24},Buffer.prototype.readInt32BE=function readInt32BE(r,i){return r>>>=0,i||checkOffset(r,4,this.length),this[r]<<24|this[r+1]<<16|this[r+2]<<8|this[r+3]},Buffer.prototype.readBigInt64LE=defineBigIntMethod((function readBigInt64LE(r){validateNumber(r>>>=0,"offset");var i=this[r],o=this[r+7];void 0!==i&&void 0!==o||boundsError(r,this.length-8);var u=this[r+4]+this[r+5]*Math.pow(2,8)+this[r+6]*Math.pow(2,16)+(o<<24);return(BigInt(u)<<BigInt(32))+BigInt(i+this[++r]*Math.pow(2,8)+this[++r]*Math.pow(2,16)+this[++r]*Math.pow(2,24))})),Buffer.prototype.readBigInt64BE=defineBigIntMethod((function readBigInt64BE(r){validateNumber(r>>>=0,"offset");var i=this[r],o=this[r+7];void 0!==i&&void 0!==o||boundsError(r,this.length-8);var u=(i<<24)+this[++r]*Math.pow(2,16)+this[++r]*Math.pow(2,8)+this[++r];return(BigInt(u)<<BigInt(32))+BigInt(this[++r]*Math.pow(2,24)+this[++r]*Math.pow(2,16)+this[++r]*Math.pow(2,8)+o)})),Buffer.prototype.readFloatLE=function readFloatLE(r,i){return r>>>=0,i||checkOffset(r,4,this.length),p.read(this,r,!0,23,4)},Buffer.prototype.readFloatBE=function readFloatBE(r,i){return r>>>=0,i||checkOffset(r,4,this.length),p.read(this,r,!1,23,4)},Buffer.prototype.readDoubleLE=function readDoubleLE(r,i){return r>>>=0,i||checkOffset(r,8,this.length),p.read(this,r,!0,52,8)},Buffer.prototype.readDoubleBE=function readDoubleBE(r,i){return r>>>=0,i||checkOffset(r,8,this.length),p.read(this,r,!1,52,8)},Buffer.prototype.writeUintLE=Buffer.prototype.writeUIntLE=function writeUIntLE(r,i,o,u){(r=+r,i>>>=0,o>>>=0,u)||checkInt(this,r,i,o,Math.pow(2,8*o)-1,0);var p=1,g=0;for(this[i]=255&r;++g<o&&(p*=256);)this[i+g]=r/p&255;return i+o},Buffer.prototype.writeUintBE=Buffer.prototype.writeUIntBE=function writeUIntBE(r,i,o,u){(r=+r,i>>>=0,o>>>=0,u)||checkInt(this,r,i,o,Math.pow(2,8*o)-1,0);var p=o-1,g=1;for(this[i+p]=255&r;--p>=0&&(g*=256);)this[i+p]=r/g&255;return i+o},Buffer.prototype.writeUint8=Buffer.prototype.writeUInt8=function writeUInt8(r,i,o){return r=+r,i>>>=0,o||checkInt(this,r,i,1,255,0),this[i]=255&r,i+1},Buffer.prototype.writeUint16LE=Buffer.prototype.writeUInt16LE=function writeUInt16LE(r,i,o){return r=+r,i>>>=0,o||checkInt(this,r,i,2,65535,0),this[i]=255&r,this[i+1]=r>>>8,i+2},Buffer.prototype.writeUint16BE=Buffer.prototype.writeUInt16BE=function writeUInt16BE(r,i,o){return r=+r,i>>>=0,o||checkInt(this,r,i,2,65535,0),this[i]=r>>>8,this[i+1]=255&r,i+2},Buffer.prototype.writeUint32LE=Buffer.prototype.writeUInt32LE=function writeUInt32LE(r,i,o){return r=+r,i>>>=0,o||checkInt(this,r,i,4,4294967295,0),this[i+3]=r>>>24,this[i+2]=r>>>16,this[i+1]=r>>>8,this[i]=255&r,i+4},Buffer.prototype.writeUint32BE=Buffer.prototype.writeUInt32BE=function writeUInt32BE(r,i,o){return r=+r,i>>>=0,o||checkInt(this,r,i,4,4294967295,0),this[i]=r>>>24,this[i+1]=r>>>16,this[i+2]=r>>>8,this[i+3]=255&r,i+4},Buffer.prototype.writeBigUInt64LE=defineBigIntMethod((function writeBigUInt64LE(r,i){return void 0===i&&(i=0),wrtBigUInt64LE(this,r,i,BigInt(0),BigInt("0xffffffffffffffff"))})),Buffer.prototype.writeBigUInt64BE=defineBigIntMethod((function writeBigUInt64BE(r,i){return void 0===i&&(i=0),wrtBigUInt64BE(this,r,i,BigInt(0),BigInt("0xffffffffffffffff"))})),Buffer.prototype.writeIntLE=function writeIntLE(r,i,o,u){if(r=+r,i>>>=0,!u){var p=Math.pow(2,8*o-1);checkInt(this,r,i,o,p-1,-p)}var g=0,y=1,w=0;for(this[i]=255&r;++g<o&&(y*=256);)r<0&&0===w&&0!==this[i+g-1]&&(w=1),this[i+g]=(r/y>>0)-w&255;return i+o},Buffer.prototype.writeIntBE=function writeIntBE(r,i,o,u){if(r=+r,i>>>=0,!u){var p=Math.pow(2,8*o-1);checkInt(this,r,i,o,p-1,-p)}var g=o-1,y=1,w=0;for(this[i+g]=255&r;--g>=0&&(y*=256);)r<0&&0===w&&0!==this[i+g+1]&&(w=1),this[i+g]=(r/y>>0)-w&255;return i+o},Buffer.prototype.writeInt8=function writeInt8(r,i,o){return r=+r,i>>>=0,o||checkInt(this,r,i,1,127,-128),r<0&&(r=255+r+1),this[i]=255&r,i+1},Buffer.prototype.writeInt16LE=function writeInt16LE(r,i,o){return r=+r,i>>>=0,o||checkInt(this,r,i,2,32767,-32768),this[i]=255&r,this[i+1]=r>>>8,i+2},Buffer.prototype.writeInt16BE=function writeInt16BE(r,i,o){return r=+r,i>>>=0,o||checkInt(this,r,i,2,32767,-32768),this[i]=r>>>8,this[i+1]=255&r,i+2},Buffer.prototype.writeInt32LE=function writeInt32LE(r,i,o){return r=+r,i>>>=0,o||checkInt(this,r,i,4,2147483647,-2147483648),this[i]=255&r,this[i+1]=r>>>8,this[i+2]=r>>>16,this[i+3]=r>>>24,i+4},Buffer.prototype.writeInt32BE=function writeInt32BE(r,i,o){return r=+r,i>>>=0,o||checkInt(this,r,i,4,2147483647,-2147483648),r<0&&(r=4294967295+r+1),this[i]=r>>>24,this[i+1]=r>>>16,this[i+2]=r>>>8,this[i+3]=255&r,i+4},Buffer.prototype.writeBigInt64LE=defineBigIntMethod((function writeBigInt64LE(r,i){return void 0===i&&(i=0),wrtBigUInt64LE(this,r,i,-BigInt("0x8000000000000000"),BigInt("0x7fffffffffffffff"))})),Buffer.prototype.writeBigInt64BE=defineBigIntMethod((function writeBigInt64BE(r,i){return void 0===i&&(i=0),wrtBigUInt64BE(this,r,i,-BigInt("0x8000000000000000"),BigInt("0x7fffffffffffffff"))})),Buffer.prototype.writeFloatLE=function writeFloatLE(r,i,o){return writeFloat(this,r,i,!0,o)},Buffer.prototype.writeFloatBE=function writeFloatBE(r,i,o){return writeFloat(this,r,i,!1,o)},Buffer.prototype.writeDoubleLE=function writeDoubleLE(r,i,o){return writeDouble(this,r,i,!0,o)},Buffer.prototype.writeDoubleBE=function writeDoubleBE(r,i,o){return writeDouble(this,r,i,!1,o)},Buffer.prototype.copy=function copy(r,i,o,u){if(!Buffer.isBuffer(r))throw new TypeError("argument should be a Buffer");if(o||(o=0),u||0===u||(u=this.length),i>=r.length&&(i=r.length),i||(i=0),u>0&&u<o&&(u=o),u===o)return 0;if(0===r.length||0===this.length)return 0;if(i<0)throw new RangeError("targetStart out of bounds");if(o<0||o>=this.length)throw new RangeError("Index out of range");if(u<0)throw new RangeError("sourceEnd out of bounds");u>this.length&&(u=this.length),r.length-i<u-o&&(u=r.length-i+o);var p=u-o;return this===r&&"function"==typeof Uint8Array.prototype.copyWithin?this.copyWithin(i,o,u):Uint8Array.prototype.set.call(r,this.subarray(o,u),i),p},Buffer.prototype.fill=function fill(r,i,o,u){if("string"==typeof r){if("string"==typeof i?(u=i,i=0,o=this.length):"string"==typeof o&&(u=o,o=this.length),void 0!==u&&"string"!=typeof u)throw new TypeError("encoding must be a string");if("string"==typeof u&&!Buffer.isEncoding(u))throw new TypeError("Unknown encoding: "+u);if(1===r.length){var p=r.charCodeAt(0);("utf8"===u&&p<128||"latin1"===u)&&(r=p)}}else"number"==typeof r?r&=255:"boolean"==typeof r&&(r=Number(r));if(i<0||this.length<i||this.length<o)throw new RangeError("Out of range index");if(o<=i)return this;var g;if(i>>>=0,o=void 0===o?this.length:o>>>0,r||(r=0),"number"==typeof r)for(g=i;g<o;++g)this[g]=r;else{var y=Buffer.isBuffer(r)?r:Buffer.from(r,u),w=y.length;if(0===w)throw new TypeError('The value "'+r+'" is invalid for argument "value"');for(g=0;g<o-i;++g)this[g+i]=y[g%w]}return this};var _={};function E(r,i,o){_[r]=function(o){function NodeError(){var u;return u=o.call(this)||this,Object.defineProperty(_assertThisInitialized(u),"message",{value:i.apply(_assertThisInitialized(u),arguments),writable:!0,configurable:!0}),u.name=u.name+" ["+r+"]",u.stack,delete u.name,u}return function _inheritsLoose(r,i){r.prototype=Object.create(i.prototype),r.prototype.constructor=r,_setPrototypeOf(r,i)}(NodeError,o),NodeError.prototype.toString=function toString(){return this.name+" ["+r+"]: "+this.message},function _createClass(r,i,o){return i&&_defineProperties(r.prototype,i),o&&_defineProperties(r,o),Object.defineProperty(r,"prototype",{writable:!1}),r}(NodeError,[{key:"code",get:function get(){return r},set:function set(r){Object.defineProperty(this,"code",{configurable:!0,enumerable:!0,value:r,writable:!0})}}]),NodeError}(o)}function addNumericalSeparator(r){for(var i="",o=r.length,u="-"===r[0]?1:0;o>=u+4;o-=3)i="_"+r.slice(o-3,o)+i;return""+r.slice(0,o)+i}function checkIntBI(r,i,o,u,p,g){if(r>o||r<i){var y,w="bigint"==typeof i?"n":"";throw y=g>3?0===i||i===BigInt(0)?">= 0"+w+" and < 2"+w+" ** "+8*(g+1)+w:">= -(2"+w+" ** "+(8*(g+1)-1)+w+") and < 2 ** "+(8*(g+1)-1)+w:">= "+i+w+" and <= "+o+w,new _.ERR_OUT_OF_RANGE("value",y,r)}!function checkBounds(r,i,o){validateNumber(i,"offset"),void 0!==r[i]&&void 0!==r[i+o]||boundsError(i,r.length-(o+1))}(u,p,g)}function validateNumber(r,i){if("number"!=typeof r)throw new _.ERR_INVALID_ARG_TYPE(i,"number",r)}function boundsError(r,i,o){if(Math.floor(r)!==r)throw validateNumber(r,o),new _.ERR_OUT_OF_RANGE(o||"offset","an integer",r);if(i<0)throw new _.ERR_BUFFER_OUT_OF_BOUNDS;throw new _.ERR_OUT_OF_RANGE(o||"offset",">= "+(o?1:0)+" and <= "+i,r)}E("ERR_BUFFER_OUT_OF_BOUNDS",(function(r){return r?r+" is outside of buffer bounds":"Attempt to access memory outside buffer bounds"}),RangeError),E("ERR_INVALID_ARG_TYPE",(function(r,i){return'The "'+r+'" argument must be of type number. Received type '+typeof i}),TypeError),E("ERR_OUT_OF_RANGE",(function(r,i,o){var u='The value of "'+r+'" is out of range.',p=o;return Number.isInteger(o)&&Math.abs(o)>Math.pow(2,32)?p=addNumericalSeparator(String(o)):"bigint"==typeof o&&(p=String(o),(o>Math.pow(BigInt(2),BigInt(32))||o<-Math.pow(BigInt(2),BigInt(32)))&&(p=addNumericalSeparator(p)),p+="n"),u+=" It must be "+i+". Received "+p}),RangeError);var x=/[^+/0-9A-Za-z-_]/g;function utf8ToBytes(r,i){var o;i=i||1/0;for(var u=r.length,p=null,g=[],y=0;y<u;++y){if((o=r.charCodeAt(y))>55295&&o<57344){if(!p){if(o>56319){(i-=3)>-1&&g.push(239,191,189);continue}if(y+1===u){(i-=3)>-1&&g.push(239,191,189);continue}p=o;continue}if(o<56320){(i-=3)>-1&&g.push(239,191,189),p=o;continue}o=65536+(p-55296<<10|o-56320)}else p&&(i-=3)>-1&&g.push(239,191,189);if(p=null,o<128){if((i-=1)<0)break;g.push(o)}else if(o<2048){if((i-=2)<0)break;g.push(o>>6|192,63&o|128)}else if(o<65536){if((i-=3)<0)break;g.push(o>>12|224,o>>6&63|128,63&o|128)}else{if(!(o<1114112))throw new Error("Invalid code point");if((i-=4)<0)break;g.push(o>>18|240,o>>12&63|128,o>>6&63|128,63&o|128)}}return g}function base64ToBytes(r){return u.toByteArray(function base64clean(r){if((r=(r=r.split("=")[0]).trim().replace(x,"")).length<2)return"";for(;r.length%4!=0;)r+="=";return r}(r))}function blitBuffer(r,i,o,u){var p;for(p=0;p<u&&!(p+o>=i.length||p>=r.length);++p)i[p+o]=r[p];return p}function isInstance(r,i){return r instanceof i||null!=r&&null!=r.constructor&&null!=r.constructor.name&&r.constructor.name===i.name}function numberIsNaN(r){return r!=r}var k=function(){for(var r="0123456789abcdef",i=new Array(256),o=0;o<16;++o)for(var u=16*o,p=0;p<16;++p)i[u+p]=r[o]+r[p];return i}();function defineBigIntMethod(r){return"undefined"==typeof BigInt?BufferBigIntNotDefined:r}function BufferBigIntNotDefined(){throw new Error("BigInt not supported")}},477:function(r,i,o){"use strict";o(7803),o(1539),r.exports="undefined"!=typeof ArrayBuffer&&"undefined"!=typeof DataView},2094:function(r,i,o){"use strict";var u,p,g,y=o(477),w=o(9781),_=o(7854),x=o(614),k=o(111),P=o(2597),O=o(648),I=o(6330),B=o(8880),R=o(1320),D=o(3070).f,N=o(7976),W=o(9518),U=o(7674),j=o(5112),G=o(9711),X=_.Int8Array,K=X&&X.prototype,Y=_.Uint8ClampedArray,J=Y&&Y.prototype,$=X&&W(X),ee=K&&W(K),te=Object.prototype,re=_.TypeError,ne=j("toStringTag"),ie=G("TYPED_ARRAY_TAG"),oe=G("TYPED_ARRAY_CONSTRUCTOR"),ae=y&&!!U&&"Opera"!==O(_.opera),se=!1,ce={Int8Array:1,Uint8Array:1,Uint8ClampedArray:1,Int16Array:2,Uint16Array:2,Int32Array:4,Uint32Array:4,Float32Array:4,Float64Array:8},le={BigInt64Array:8,BigUint64Array:8},ue=function isTypedArray(r){if(!k(r))return!1;var i=O(r);return P(ce,i)||P(le,i)};for(u in ce)(g=(p=_[u])&&p.prototype)?B(g,oe,p):ae=!1;for(u in le)(g=(p=_[u])&&p.prototype)&&B(g,oe,p);if((!ae||!x($)||$===Function.prototype)&&($=function TypedArray(){throw re("Incorrect invocation")},ae))for(u in ce)_[u]&&U(_[u],$);if((!ae||!ee||ee===te)&&(ee=$.prototype,ae))for(u in ce)_[u]&&U(_[u].prototype,ee);if(ae&&W(J)!==ee&&U(J,ee),w&&!P(ee,ne))for(u in se=!0,D(ee,ne,{get:function get(){return k(this)?this[ie]:void 0}}),ce)_[u]&&B(_[u],ie,u);r.exports={NATIVE_ARRAY_BUFFER_VIEWS:ae,TYPED_ARRAY_CONSTRUCTOR:oe,TYPED_ARRAY_TAG:se&&ie,aTypedArray:function aTypedArray(r){if(ue(r))return r;throw re("Target is not a typed array")},aTypedArrayConstructor:function aTypedArrayConstructor(r){if(x(r)&&(!U||N($,r)))return r;throw re(I(r)+" is not a typed array constructor")},exportTypedArrayMethod:function exportTypedArrayMethod(r,i,o){if(w){if(o)for(var u in ce){var p=_[u];if(p&&P(p.prototype,r))try{delete p.prototype[r]}catch(r){}}ee[r]&&!o||R(ee,r,o?i:ae&&K[r]||i)}},exportTypedArrayStaticMethod:function exportTypedArrayStaticMethod(r,i,o){var u,p;if(w){if(U){if(o)for(u in ce)if((p=_[u])&&P(p,r))try{delete p[r]}catch(r){}if($[r]&&!o)return;try{return R($,r,o?i:ae&&$[r]||i)}catch(r){}}for(u in ce)!(p=_[u])||p[r]&&!o||R(p,r,i)}},isView:function isView(r){if(!k(r))return!1;var i=O(r);return"DataView"===i||P(ce,i)||P(le,i)},isTypedArray:ue,TypedArray:$,TypedArrayPrototype:ee}},2091:function(r,i,o){"use strict";o(8309);var u=o(7854),p=o(1702),g=o(9781),y=o(477),w=o(6530),_=o(8880),x=o(2248),k=o(7293),P=o(5787),O=o(9303),I=o(7466),B=o(7067),R=o(1179),D=o(9518),N=o(7674),W=o(8006).f,U=o(3070).f,j=o(1285),G=o(206),X=o(8003),K=o(9909),Y=w.PROPER,J=w.CONFIGURABLE,$=K.get,ee=K.set,te="ArrayBuffer",re="DataView",ne="prototype",ie="Wrong index",oe=u[te],ae=oe,se=ae&&ae[ne],ce=u[re],le=ce&&ce[ne],ue=Object.prototype,fe=u.Array,he=u.RangeError,de=p(j),pe=p([].reverse),ge=R.pack,ye=R.unpack,ve=function packInt8(r){return[255&r]},me=function packInt16(r){return[255&r,r>>8&255]},be=function packInt32(r){return[255&r,r>>8&255,r>>16&255,r>>24&255]},we=function unpackInt32(r){return r[3]<<24|r[2]<<16|r[1]<<8|r[0]},_e=function packFloat32(r){return ge(r,23,4)},Se=function packFloat64(r){return ge(r,52,8)},xe=function addGetter(r,i){U(r[ne],i,{get:function get(){return $(this)[i]}})},Ce=function get(r,i,o,u){var p=B(o),g=$(r);if(p+i>g.byteLength)throw he(ie);var y=$(g.buffer).bytes,w=p+g.byteOffset,_=G(y,w,w+i);return u?_:pe(_)},ke=function set(r,i,o,u,p,g){var y=B(o),w=$(r);if(y+i>w.byteLength)throw he(ie);for(var _=$(w.buffer).bytes,x=y+w.byteOffset,k=u(+p),P=0;P<i;P++)_[x+P]=k[g?P:i-P-1]};if(y){var Pe=Y&&oe.name!==te;if(k((function(){oe(1)}))&&k((function(){new oe(-1)}))&&!k((function(){return new oe,new oe(1.5),new oe(NaN),Pe&&!J})))Pe&&J&&_(oe,"name",te);else{(ae=function ArrayBuffer(r){return P(this,se),new oe(B(r))})[ne]=se;for(var Ae,Ee=W(oe),Te=0;Ee.length>Te;)(Ae=Ee[Te++])in ae||_(ae,Ae,oe[Ae]);se.constructor=ae}N&&D(le)!==ue&&N(le,ue);var Oe=new ce(new ae(2)),Ie=p(le.setInt8);Oe.setInt8(0,2147483648),Oe.setInt8(1,2147483649),!Oe.getInt8(0)&&Oe.getInt8(1)||x(le,{setInt8:function setInt8(r,i){Ie(this,r,i<<24>>24)},setUint8:function setUint8(r,i){Ie(this,r,i<<24>>24)}},{unsafe:!0})}else se=(ae=function ArrayBuffer(r){P(this,se);var i=B(r);ee(this,{bytes:de(fe(i),0),byteLength:i}),g||(this.byteLength=i)})[ne],le=(ce=function DataView(r,i,o){P(this,le),P(r,se);var u=$(r).byteLength,p=O(i);if(p<0||p>u)throw he("Wrong offset");if(p+(o=void 0===o?u-p:I(o))>u)throw he("Wrong length");ee(this,{buffer:r,byteLength:o,byteOffset:p}),g||(this.buffer=r,this.byteLength=o,this.byteOffset=p)})[ne],g&&(xe(ae,"byteLength"),xe(ce,"buffer"),xe(ce,"byteLength"),xe(ce,"byteOffset")),x(le,{getInt8:function getInt8(r){return Ce(this,1,r)[0]<<24>>24},getUint8:function getUint8(r){return Ce(this,1,r)[0]},getInt16:function getInt16(r){var i=Ce(this,2,r,arguments.length>1?arguments[1]:void 0);return(i[1]<<8|i[0])<<16>>16},getUint16:function getUint16(r){var i=Ce(this,2,r,arguments.length>1?arguments[1]:void 0);return i[1]<<8|i[0]},getInt32:function getInt32(r){return we(Ce(this,4,r,arguments.length>1?arguments[1]:void 0))},getUint32:function getUint32(r){return we(Ce(this,4,r,arguments.length>1?arguments[1]:void 0))>>>0},getFloat32:function getFloat32(r){return ye(Ce(this,4,r,arguments.length>1?arguments[1]:void 0),23)},getFloat64:function getFloat64(r){return ye(Ce(this,8,r,arguments.length>1?arguments[1]:void 0),52)},setInt8:function setInt8(r,i){ke(this,1,r,ve,i)},setUint8:function setUint8(r,i){ke(this,1,r,ve,i)},setInt16:function setInt16(r,i){ke(this,2,r,me,i,arguments.length>2?arguments[2]:void 0)},setUint16:function setUint16(r,i){ke(this,2,r,me,i,arguments.length>2?arguments[2]:void 0)},setInt32:function setInt32(r,i){ke(this,4,r,be,i,arguments.length>2?arguments[2]:void 0)},setUint32:function setUint32(r,i){ke(this,4,r,be,i,arguments.length>2?arguments[2]:void 0)},setFloat32:function setFloat32(r,i){ke(this,4,r,_e,i,arguments.length>2?arguments[2]:void 0)},setFloat64:function setFloat64(r,i){ke(this,8,r,Se,i,arguments.length>2?arguments[2]:void 0)}});X(ae,te),X(ce,re),r.exports={ArrayBuffer:ae,DataView:ce}},7803:function(r,i,o){"use strict";var u=o(2109),p=o(7854),g=o(2091),y=o(6340),w="ArrayBuffer",_=g[w];u({global:!0,forced:p[w]!==_},{ArrayBuffer:_}),y(w)},194:function(r,i,o){"use strict";var u;r.exports=(u=o(757),o(7508),o(3440),o(3839),o(1582),function(){var r=u,i=r.lib.BlockCipher,o=r.algo,p=[],g=[],y=[],w=[],_=[],x=[],k=[],P=[],O=[],I=[];!function(){for(var r=[],i=0;i<256;i++)r[i]=i<128?i<<1:i<<1^283;var o=0,u=0;for(i=0;i<256;i++){var B=u^u<<1^u<<2^u<<3^u<<4;B=B>>>8^255&B^99,p[o]=B,g[B]=o;var R=r[o],D=r[R],N=r[D],W=257*r[B]^16843008*B;y[o]=W<<24|W>>>8,w[o]=W<<16|W>>>16,_[o]=W<<8|W>>>24,x[o]=W,W=16843009*N^65537*D^257*R^16843008*o,k[B]=W<<24|W>>>8,P[B]=W<<16|W>>>16,O[B]=W<<8|W>>>24,I[B]=W,o?(o=R^r[r[r[N^R]]],u^=r[r[u]]):o=u=1}}();var B=[0,1,2,4,8,16,32,64,128,27,54],R=o.AES=i.extend({_doReset:function _doReset(){if(!this._nRounds||this._keyPriorReset!==this._key){for(var r=this._keyPriorReset=this._key,i=r.words,o=r.sigBytes/4,u=4*((this._nRounds=o+6)+1),g=this._keySchedule=[],y=0;y<u;y++)y<o?g[y]=i[y]:(x=g[y-1],y%o?o>6&&y%o==4&&(x=p[x>>>24]<<24|p[x>>>16&255]<<16|p[x>>>8&255]<<8|p[255&x]):(x=p[(x=x<<8|x>>>24)>>>24]<<24|p[x>>>16&255]<<16|p[x>>>8&255]<<8|p[255&x],x^=B[y/o|0]<<24),g[y]=g[y-o]^x);for(var w=this._invKeySchedule=[],_=0;_<u;_++){if(y=u-_,_%4)var x=g[y];else x=g[y-4];w[_]=_<4||y<=4?x:k[p[x>>>24]]^P[p[x>>>16&255]]^O[p[x>>>8&255]]^I[p[255&x]]}}},encryptBlock:function encryptBlock(r,i){this._doCryptBlock(r,i,this._keySchedule,y,w,_,x,p)},decryptBlock:function decryptBlock(r,i){var o=r[i+1];r[i+1]=r[i+3],r[i+3]=o,this._doCryptBlock(r,i,this._invKeySchedule,k,P,O,I,g),o=r[i+1],r[i+1]=r[i+3],r[i+3]=o},_doCryptBlock:function _doCryptBlock(r,i,o,u,p,g,y,w){for(var _=this._nRounds,x=r[i]^o[0],k=r[i+1]^o[1],P=r[i+2]^o[2],O=r[i+3]^o[3],I=4,B=1;B<_;B++){var R=u[x>>>24]^p[k>>>16&255]^g[P>>>8&255]^y[255&O]^o[I++],D=u[k>>>24]^p[P>>>16&255]^g[O>>>8&255]^y[255&x]^o[I++],N=u[P>>>24]^p[O>>>16&255]^g[x>>>8&255]^y[255&k]^o[I++],W=u[O>>>24]^p[x>>>16&255]^g[k>>>8&255]^y[255&P]^o[I++];x=R,k=D,P=N,O=W}R=(w[x>>>24]<<24|w[k>>>16&255]<<16|w[P>>>8&255]<<8|w[255&O])^o[I++],D=(w[k>>>24]<<24|w[P>>>16&255]<<16|w[O>>>8&255]<<8|w[255&x])^o[I++],N=(w[P>>>24]<<24|w[O>>>16&255]<<16|w[x>>>8&255]<<8|w[255&k])^o[I++],W=(w[O>>>24]<<24|w[x>>>16&255]<<16|w[k>>>8&255]<<8|w[255&P])^o[I++],r[i]=R,r[i+1]=D,r[i+2]=N,r[i+3]=W},keySize:8});r.AES=i._createHelper(R)}(),u.AES)},1582:function(r,i,o){"use strict";var u;o(7042),o(2222),o(1539),o(9714),o(561),r.exports=(u=o(757),o(3839),void(u.lib.Cipher||function(r){var i=u,o=i.lib,p=o.Base,g=o.WordArray,y=o.BufferedBlockAlgorithm,w=i.enc,_=(w.Utf8,w.Base64),x=i.algo.EvpKDF,k=o.Cipher=y.extend({cfg:p.extend(),createEncryptor:function createEncryptor(r,i){return this.create(this._ENC_XFORM_MODE,r,i)},createDecryptor:function createDecryptor(r,i){return this.create(this._DEC_XFORM_MODE,r,i)},init:function init(r,i,o){this.cfg=this.cfg.extend(o),this._xformMode=r,this._key=i,this.reset()},reset:function reset(){y.reset.call(this),this._doReset()},process:function process(r){return this._append(r),this._process()},finalize:function finalize(r){return r&&this._append(r),this._doFinalize()},keySize:4,ivSize:4,_ENC_XFORM_MODE:1,_DEC_XFORM_MODE:2,_createHelper:function(){function selectCipherStrategy(r){return"string"==typeof r?U:N}return function(r){return{encrypt:function encrypt(i,o,u){return selectCipherStrategy(o).encrypt(r,i,o,u)},decrypt:function decrypt(i,o,u){return selectCipherStrategy(o).decrypt(r,i,o,u)}}}}()}),P=(o.StreamCipher=k.extend({_doFinalize:function _doFinalize(){return this._process(!0)},blockSize:1}),i.mode={}),O=o.BlockCipherMode=p.extend({createEncryptor:function createEncryptor(r,i){return this.Encryptor.create(r,i)},createDecryptor:function createDecryptor(r,i){return this.Decryptor.create(r,i)},init:function init(r,i){this._cipher=r,this._iv=i}}),I=P.CBC=function(){var i=O.extend();function xorBlock(i,o,u){var p,g=this._iv;g?(p=g,this._iv=r):p=this._prevBlock;for(var y=0;y<u;y++)i[o+y]^=p[y]}return i.Encryptor=i.extend({processBlock:function processBlock(r,i){var o=this._cipher,u=o.blockSize;xorBlock.call(this,r,i,u),o.encryptBlock(r,i),this._prevBlock=r.slice(i,i+u)}}),i.Decryptor=i.extend({processBlock:function processBlock(r,i){var o=this._cipher,u=o.blockSize,p=r.slice(i,i+u);o.decryptBlock(r,i),xorBlock.call(this,r,i,u),this._prevBlock=p}}),i}(),B=(i.pad={}).Pkcs7={pad:function pad(r,i){for(var o=4*i,u=o-r.sigBytes%o,p=u<<24|u<<16|u<<8|u,y=[],w=0;w<u;w+=4)y.push(p);var _=g.create(y,u);r.concat(_)},unpad:function unpad(r){var i=255&r.words[r.sigBytes-1>>>2];r.sigBytes-=i}},R=(o.BlockCipher=k.extend({cfg:k.cfg.extend({mode:I,padding:B}),reset:function reset(){var r;k.reset.call(this);var i=this.cfg,o=i.iv,u=i.mode;this._xformMode==this._ENC_XFORM_MODE?r=u.createEncryptor:(r=u.createDecryptor,this._minBufferSize=1),this._mode&&this._mode.__creator==r?this._mode.init(this,o&&o.words):(this._mode=r.call(u,this,o&&o.words),this._mode.__creator=r)},_doProcessBlock:function _doProcessBlock(r,i){this._mode.processBlock(r,i)},_doFinalize:function _doFinalize(){var r,i=this.cfg.padding;return this._xformMode==this._ENC_XFORM_MODE?(i.pad(this._data,this.blockSize),r=this._process(!0)):(r=this._process(!0),i.unpad(r)),r},blockSize:4}),o.CipherParams=p.extend({init:function init(r){this.mixIn(r)},toString:function toString(r){return(r||this.formatter).stringify(this)}})),D=(i.format={}).OpenSSL={stringify:function stringify(r){var i=r.ciphertext,o=r.salt;return(o?g.create([1398893684,1701076831]).concat(o).concat(i):i).toString(_)},parse:function parse(r){var i,o=_.parse(r),u=o.words;return 1398893684==u[0]&&1701076831==u[1]&&(i=g.create(u.slice(2,4)),u.splice(0,4),o.sigBytes-=16),R.create({ciphertext:o,salt:i})}},N=o.SerializableCipher=p.extend({cfg:p.extend({format:D}),encrypt:function encrypt(r,i,o,u){u=this.cfg.extend(u);var p=r.createEncryptor(o,u),g=p.finalize(i),y=p.cfg;return R.create({ciphertext:g,key:o,iv:y.iv,algorithm:r,mode:y.mode,padding:y.padding,blockSize:r.blockSize,formatter:u.format})},decrypt:function decrypt(r,i,o,u){return u=this.cfg.extend(u),i=this._parse(i,u.format),r.createDecryptor(o,u).finalize(i.ciphertext)},_parse:function _parse(r,i){return"string"==typeof r?i.parse(r,this):r}}),W=(i.kdf={}).OpenSSL={execute:function execute(r,i,o,u){u||(u=g.random(8));var p=x.create({keySize:i+o}).compute(r,u),y=g.create(p.words.slice(i),4*o);return p.sigBytes=4*i,R.create({key:p,iv:y,salt:u})}},U=o.PasswordBasedCipher=N.extend({cfg:N.cfg.extend({kdf:W}),encrypt:function encrypt(r,i,o,u){var p=(u=this.cfg.extend(u)).kdf.execute(o,r.keySize,r.ivSize);u.iv=p.iv;var g=N.encrypt.call(this,r,i,p.key,u);return g.mixIn(p),g},decrypt:function decrypt(r,i,o,u){u=this.cfg.extend(u),i=this._parse(i,u.format);var p=u.kdf.execute(o,r.keySize,r.ivSize,i.salt);return u.iv=p.iv,N.decrypt.call(this,r,i,p.key,u)}})}()))},757:function(r,i,o){"use strict";var u;o(5743),o(6992),o(1539),o(9135),o(2990),o(8927),o(3105),o(5035),o(4345),o(7174),o(2846),o(4731),o(7209),o(6319),o(8867),o(7789),o(3739),o(9368),o(4483),o(2056),o(3462),o(678),o(7462),o(3824),o(5021),o(2974),o(5016),o(9714),o(7042),o(9600),o(2222),o(561),r.exports=(u=u||function(r,i){var u;if("undefined"!=typeof window&&window.crypto&&(u=window.crypto),"undefined"!=typeof self&&self.crypto&&(u=self.crypto),"undefined"!=typeof globalThis&&globalThis.crypto&&(u=globalThis.crypto),!u&&"undefined"!=typeof window&&window.msCrypto&&(u=window.msCrypto),!u&&void 0!==o.g&&o.g.crypto&&(u=o.g.crypto),!u)try{u=o(2480)}catch(r){}var p=function cryptoSecureRandomInt(){if(u){if("function"==typeof u.getRandomValues)try{return u.getRandomValues(new Uint32Array(1))[0]}catch(r){}if("function"==typeof u.randomBytes)try{return u.randomBytes(4).readInt32LE()}catch(r){}}throw new Error("Native crypto module could not be used to get secure random number.")},g=Object.create||function(){function F(){}return function(r){var i;return F.prototype=r,i=new F,F.prototype=null,i}}(),y={},w=y.lib={},_=w.Base={extend:function extend(r){var i=g(this);return r&&i.mixIn(r),i.hasOwnProperty("init")&&this.init!==i.init||(i.init=function(){i.$super.init.apply(this,arguments)}),i.init.prototype=i,i.$super=this,i},create:function create(){var r=this.extend();return r.init.apply(r,arguments),r},init:function init(){},mixIn:function mixIn(r){for(var i in r)r.hasOwnProperty(i)&&(this[i]=r[i]);r.hasOwnProperty("toString")&&(this.toString=r.toString)},clone:function clone(){return this.init.prototype.extend(this)}},x=w.WordArray=_.extend({init:function init(r,o){r=this.words=r||[],this.sigBytes=o!=i?o:4*r.length},toString:function toString(r){return(r||P).stringify(this)},concat:function concat(r){var i=this.words,o=r.words,u=this.sigBytes,p=r.sigBytes;if(this.clamp(),u%4)for(var g=0;g<p;g++){var y=o[g>>>2]>>>24-g%4*8&255;i[u+g>>>2]|=y<<24-(u+g)%4*8}else for(var w=0;w<p;w+=4)i[u+w>>>2]=o[w>>>2];return this.sigBytes+=p,this},clamp:function clamp(){var i=this.words,o=this.sigBytes;i[o>>>2]&=4294967295<<32-o%4*8,i.length=r.ceil(o/4)},clone:function clone(){var clone=_.clone.call(this);return clone.words=this.words.slice(0),clone},random:function random(r){for(var i=[],o=0;o<r;o+=4)i.push(p());return new x.init(i,r)}}),k=y.enc={},P=k.Hex={stringify:function stringify(r){for(var i=r.words,o=r.sigBytes,u=[],p=0;p<o;p++){var g=i[p>>>2]>>>24-p%4*8&255;u.push((g>>>4).toString(16)),u.push((15&g).toString(16))}return u.join("")},parse:function parse(r){for(var i=r.length,o=[],u=0;u<i;u+=2)o[u>>>3]|=parseInt(r.substr(u,2),16)<<24-u%8*4;return new x.init(o,i/2)}},O=k.Latin1={stringify:function stringify(r){for(var i=r.words,o=r.sigBytes,u=[],p=0;p<o;p++){var g=i[p>>>2]>>>24-p%4*8&255;u.push(String.fromCharCode(g))}return u.join("")},parse:function parse(r){for(var i=r.length,o=[],u=0;u<i;u++)o[u>>>2]|=(255&r.charCodeAt(u))<<24-u%4*8;return new x.init(o,i)}},I=k.Utf8={stringify:function stringify(r){try{return decodeURIComponent(escape(O.stringify(r)))}catch(r){throw new Error("Malformed UTF-8 data")}},parse:function parse(r){return O.parse(unescape(encodeURIComponent(r)))}},B=w.BufferedBlockAlgorithm=_.extend({reset:function reset(){this._data=new x.init,this._nDataBytes=0},_append:function _append(r){"string"==typeof r&&(r=I.parse(r)),this._data.concat(r),this._nDataBytes+=r.sigBytes},_process:function _process(i){var o,u=this._data,p=u.words,g=u.sigBytes,y=this.blockSize,w=g/(4*y),_=(w=i?r.ceil(w):r.max((0|w)-this._minBufferSize,0))*y,k=r.min(4*_,g);if(_){for(var P=0;P<_;P+=y)this._doProcessBlock(p,P);o=p.splice(0,_),u.sigBytes-=k}return new x.init(o,k)},clone:function clone(){var clone=_.clone.call(this);return clone._data=this._data.clone(),clone},_minBufferSize:0}),R=(w.Hasher=B.extend({cfg:_.extend(),init:function init(r){this.cfg=this.cfg.extend(r),this.reset()},reset:function reset(){B.reset.call(this),this._doReset()},update:function update(r){return this._append(r),this._process(),this},finalize:function finalize(r){return r&&this._append(r),this._doFinalize()},blockSize:16,_createHelper:function _createHelper(r){return function(i,o){return new r.init(o).finalize(i)}},_createHmacHelper:function _createHmacHelper(r){return function(i,o){return new R.HMAC.init(r,o).finalize(i)}}}),y.algo={});return y}(Math),u)},7508:function(r,i,o){"use strict";var u;o(9600),r.exports=(u=o(757),function(){var r=u,i=r.lib.WordArray;function parseLoop(r,o,u){for(var p=[],g=0,y=0;y<o;y++)if(y%4){var w=u[r.charCodeAt(y-1)]<<y%4*2|u[r.charCodeAt(y)]>>>6-y%4*2;p[g>>>2]|=w<<24-g%4*8,g++}return i.create(p,g)}r.enc.Base64={stringify:function stringify(r){var i=r.words,o=r.sigBytes,u=this._map;r.clamp();for(var p=[],g=0;g<o;g+=3)for(var y=(i[g>>>2]>>>24-g%4*8&255)<<16|(i[g+1>>>2]>>>24-(g+1)%4*8&255)<<8|i[g+2>>>2]>>>24-(g+2)%4*8&255,w=0;w<4&&g+.75*w<o;w++)p.push(u.charAt(y>>>6*(3-w)&63));var _=u.charAt(64);if(_)for(;p.length%4;)p.push(_);return p.join("")},parse:function parse(r){var i=r.length,o=this._map,u=this._reverseMap;if(!u){u=this._reverseMap=[];for(var p=0;p<o.length;p++)u[o.charCodeAt(p)]=p}var g=o.charAt(64);if(g){var y=r.indexOf(g);-1!==y&&(i=y)}return parseLoop(r,i,u)},_map:"ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/="}}(),u.enc.Base64)},7590:function(r,i,o){"use strict";var u;o(9600),r.exports=(u=o(757),function(){var r=u,i=r.lib.WordArray;function parseLoop(r,o,u){for(var p=[],g=0,y=0;y<o;y++)if(y%4){var w=u[r.charCodeAt(y-1)]<<y%4*2|u[r.charCodeAt(y)]>>>6-y%4*2;p[g>>>2]|=w<<24-g%4*8,g++}return i.create(p,g)}r.enc.Base64url={stringify:function stringify(r,i){void 0===i&&(i=!0);var o=r.words,u=r.sigBytes,p=i?this._safe_map:this._map;r.clamp();for(var g=[],y=0;y<u;y+=3)for(var w=(o[y>>>2]>>>24-y%4*8&255)<<16|(o[y+1>>>2]>>>24-(y+1)%4*8&255)<<8|o[y+2>>>2]>>>24-(y+2)%4*8&255,_=0;_<4&&y+.75*_<u;_++)g.push(p.charAt(w>>>6*(3-_)&63));var x=p.charAt(64);if(x)for(;g.length%4;)g.push(x);return g.join("")},parse:function parse(r,i){void 0===i&&(i=!0);var o=r.length,u=i?this._safe_map:this._map,p=this._reverseMap;if(!p){p=this._reverseMap=[];for(var g=0;g<u.length;g++)p[u.charCodeAt(g)]=g}var y=u.charAt(64);if(y){var w=r.indexOf(y);-1!==w&&(o=w)}return parseLoop(r,o,p)},_map:"ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=",_safe_map:"ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-_"}}(),u.enc.Base64url)},4978:function(r,i,o){"use strict";var u;o(9600),r.exports=(u=o(757),function(){var r=u,i=r.lib.WordArray,o=r.enc;function swapEndian(r){return r<<8&4278255360|r>>>8&16711935}o.Utf16=o.Utf16BE={stringify:function stringify(r){for(var i=r.words,o=r.sigBytes,u=[],p=0;p<o;p+=2){var g=i[p>>>2]>>>16-p%4*8&65535;u.push(String.fromCharCode(g))}return u.join("")},parse:function parse(r){for(var o=r.length,u=[],p=0;p<o;p++)u[p>>>1]|=r.charCodeAt(p)<<16-p%2*16;return i.create(u,2*o)}},o.Utf16LE={stringify:function stringify(r){for(var i=r.words,o=r.sigBytes,u=[],p=0;p<o;p+=2){var g=swapEndian(i[p>>>2]>>>16-p%4*8&65535);u.push(String.fromCharCode(g))}return u.join("")},parse:function parse(r){for(var o=r.length,u=[],p=0;p<o;p++)u[p>>>1]|=swapEndian(r.charCodeAt(p)<<16-p%2*16);return i.create(u,2*o)}}}(),u.enc.Utf16)},3839:function(r,i,o){"use strict";var u,p,g,y,w,_,x,k;o(2222),r.exports=(k=o(757),o(9865),o(6727),p=(u=k).lib,g=p.Base,y=p.WordArray,w=u.algo,_=w.MD5,x=w.EvpKDF=g.extend({cfg:g.extend({keySize:4,hasher:_,iterations:1}),init:function init(r){this.cfg=this.cfg.extend(r)},compute:function compute(r,i){for(var o,u=this.cfg,p=u.hasher.create(),g=y.create(),w=g.words,_=u.keySize,x=u.iterations;w.length<_;){o&&p.update(o),o=p.update(r).finalize(i),p.reset();for(var k=1;k<x;k++)o=p.finalize(o),p.reset();g.concat(o)}return g.sigBytes=4*_,g}}),u.EvpKDF=function(r,i,o){return x.create(o).compute(r,i)},k.EvpKDF)},8942:function(r,i,o){"use strict";var u,p,g,y;o(1539),o(9714),r.exports=(y=o(757),o(1582),p=(u=y).lib.CipherParams,g=u.enc.Hex,u.format.Hex={stringify:function stringify(r){return r.ciphertext.toString(g)},parse:function parse(r){var i=g.parse(r);return p.create({ciphertext:i})}},y.format.Hex)},6727:function(r,i,o){"use strict";var u,p,g,y;o(2222),r.exports=(u=o(757),g=(p=u).lib.Base,y=p.enc.Utf8,void(p.algo.HMAC=g.extend({init:function init(r,i){r=this._hasher=new r.init,"string"==typeof i&&(i=y.parse(i));var o=r.blockSize,u=4*o;i.sigBytes>u&&(i=r.finalize(i)),i.clamp();for(var p=this._oKey=i.clone(),g=this._iKey=i.clone(),w=p.words,_=g.words,x=0;x<o;x++)w[x]^=1549556828,_[x]^=909522486;p.sigBytes=g.sigBytes=u,this.reset()},reset:function reset(){var r=this._hasher;r.reset(),r.update(this._iKey)},update:function update(r){return this._hasher.update(r),this},finalize:function finalize(r){var i=this._hasher,o=i.finalize(r);return i.reset(),i.finalize(this._oKey.clone().concat(o))}})))},5153:function(r,i,o){"use strict";var u;r.exports=(u=o(757),o(2601),o(1947),o(4978),o(7508),o(7590),o(3440),o(9865),o(8921),o(6876),o(7991),o(8122),o(8342),o(8714),o(6727),o(3486),o(3839),o(1582),o(702),o(2362),o(4412),o(5720),o(3518),o(6362),o(4431),o(8800),o(3992),o(649),o(8942),o(194),o(8437),o(4640),o(5323),o(4363),u)},1947:function(r,i,o){"use strict";var u;o(7803),o(1539),o(6992),o(2472),o(2990),o(8927),o(3105),o(5035),o(4345),o(7174),o(2846),o(4731),o(7209),o(6319),o(8867),o(7789),o(3739),o(9368),o(4483),o(2056),o(3462),o(678),o(7462),o(3824),o(5021),o(2974),o(5016),o(7145),o(9743),o(5109),o(8255),o(5125),o(9135),o(4197),o(6495),r.exports=(u=o(757),function(){if("function"==typeof ArrayBuffer){var r=u.lib.WordArray,i=r.init,o=r.init=function(r){if(r instanceof ArrayBuffer&&(r=new Uint8Array(r)),(r instanceof Int8Array||"undefined"!=typeof Uint8ClampedArray&&r instanceof Uint8ClampedArray||r instanceof Int16Array||r instanceof Uint16Array||r instanceof Int32Array||r instanceof Uint32Array||r instanceof Float32Array||r instanceof Float64Array)&&(r=new Uint8Array(r.buffer,r.byteOffset,r.byteLength)),r instanceof Uint8Array){for(var o=r.byteLength,u=[],p=0;p<o;p++)u[p>>>2]|=r[p]<<24-p%4*8;i.call(this,u,o)}else i.apply(this,arguments)};o.prototype=r}}(),u.lib.WordArray)},3440:function(r,i,o){"use strict";var u;r.exports=(u=o(757),function(r){var i=u,o=i.lib,p=o.WordArray,g=o.Hasher,y=i.algo,w=[];!function(){for(var i=0;i<64;i++)w[i]=4294967296*r.abs(r.sin(i+1))|0}();var _=y.MD5=g.extend({_doReset:function _doReset(){this._hash=new p.init([1732584193,4023233417,2562383102,271733878])},_doProcessBlock:function _doProcessBlock(r,i){for(var o=0;o<16;o++){var u=i+o,p=r[u];r[u]=16711935&(p<<8|p>>>24)|4278255360&(p<<24|p>>>8)}var g=this._hash.words,y=r[i+0],_=r[i+1],x=r[i+2],k=r[i+3],P=r[i+4],O=r[i+5],I=r[i+6],B=r[i+7],R=r[i+8],D=r[i+9],N=r[i+10],W=r[i+11],U=r[i+12],j=r[i+13],G=r[i+14],X=r[i+15],K=g[0],Y=g[1],J=g[2],$=g[3];K=FF(K,Y,J,$,y,7,w[0]),$=FF($,K,Y,J,_,12,w[1]),J=FF(J,$,K,Y,x,17,w[2]),Y=FF(Y,J,$,K,k,22,w[3]),K=FF(K,Y,J,$,P,7,w[4]),$=FF($,K,Y,J,O,12,w[5]),J=FF(J,$,K,Y,I,17,w[6]),Y=FF(Y,J,$,K,B,22,w[7]),K=FF(K,Y,J,$,R,7,w[8]),$=FF($,K,Y,J,D,12,w[9]),J=FF(J,$,K,Y,N,17,w[10]),Y=FF(Y,J,$,K,W,22,w[11]),K=FF(K,Y,J,$,U,7,w[12]),$=FF($,K,Y,J,j,12,w[13]),J=FF(J,$,K,Y,G,17,w[14]),K=GG(K,Y=FF(Y,J,$,K,X,22,w[15]),J,$,_,5,w[16]),$=GG($,K,Y,J,I,9,w[17]),J=GG(J,$,K,Y,W,14,w[18]),Y=GG(Y,J,$,K,y,20,w[19]),K=GG(K,Y,J,$,O,5,w[20]),$=GG($,K,Y,J,N,9,w[21]),J=GG(J,$,K,Y,X,14,w[22]),Y=GG(Y,J,$,K,P,20,w[23]),K=GG(K,Y,J,$,D,5,w[24]),$=GG($,K,Y,J,G,9,w[25]),J=GG(J,$,K,Y,k,14,w[26]),Y=GG(Y,J,$,K,R,20,w[27]),K=GG(K,Y,J,$,j,5,w[28]),$=GG($,K,Y,J,x,9,w[29]),J=GG(J,$,K,Y,B,14,w[30]),K=HH(K,Y=GG(Y,J,$,K,U,20,w[31]),J,$,O,4,w[32]),$=HH($,K,Y,J,R,11,w[33]),J=HH(J,$,K,Y,W,16,w[34]),Y=HH(Y,J,$,K,G,23,w[35]),K=HH(K,Y,J,$,_,4,w[36]),$=HH($,K,Y,J,P,11,w[37]),J=HH(J,$,K,Y,B,16,w[38]),Y=HH(Y,J,$,K,N,23,w[39]),K=HH(K,Y,J,$,j,4,w[40]),$=HH($,K,Y,J,y,11,w[41]),J=HH(J,$,K,Y,k,16,w[42]),Y=HH(Y,J,$,K,I,23,w[43]),K=HH(K,Y,J,$,D,4,w[44]),$=HH($,K,Y,J,U,11,w[45]),J=HH(J,$,K,Y,X,16,w[46]),K=II(K,Y=HH(Y,J,$,K,x,23,w[47]),J,$,y,6,w[48]),$=II($,K,Y,J,B,10,w[49]),J=II(J,$,K,Y,G,15,w[50]),Y=II(Y,J,$,K,O,21,w[51]),K=II(K,Y,J,$,U,6,w[52]),$=II($,K,Y,J,k,10,w[53]),J=II(J,$,K,Y,N,15,w[54]),Y=II(Y,J,$,K,_,21,w[55]),K=II(K,Y,J,$,R,6,w[56]),$=II($,K,Y,J,X,10,w[57]),J=II(J,$,K,Y,I,15,w[58]),Y=II(Y,J,$,K,j,21,w[59]),K=II(K,Y,J,$,P,6,w[60]),$=II($,K,Y,J,W,10,w[61]),J=II(J,$,K,Y,x,15,w[62]),Y=II(Y,J,$,K,D,21,w[63]),g[0]=g[0]+K|0,g[1]=g[1]+Y|0,g[2]=g[2]+J|0,g[3]=g[3]+$|0},_doFinalize:function _doFinalize(){var i=this._data,o=i.words,u=8*this._nDataBytes,p=8*i.sigBytes;o[p>>>5]|=128<<24-p%32;var g=r.floor(u/4294967296),y=u;o[15+(p+64>>>9<<4)]=16711935&(g<<8|g>>>24)|4278255360&(g<<24|g>>>8),o[14+(p+64>>>9<<4)]=16711935&(y<<8|y>>>24)|4278255360&(y<<24|y>>>8),i.sigBytes=4*(o.length+1),this._process();for(var w=this._hash,_=w.words,x=0;x<4;x++){var k=_[x];_[x]=16711935&(k<<8|k>>>24)|4278255360&(k<<24|k>>>8)}return w},clone:function clone(){var clone=g.clone.call(this);return clone._hash=this._hash.clone(),clone}});function FF(r,i,o,u,p,g,y){var w=r+(i&o|~i&u)+p+y;return(w<<g|w>>>32-g)+i}function GG(r,i,o,u,p,g,y){var w=r+(i&u|o&~u)+p+y;return(w<<g|w>>>32-g)+i}function HH(r,i,o,u,p,g,y){var w=r+(i^o^u)+p+y;return(w<<g|w>>>32-g)+i}function II(r,i,o,u,p,g,y){var w=r+(o^(i|~u))+p+y;return(w<<g|w>>>32-g)+i}i.MD5=g._createHelper(_),i.HmacMD5=g._createHmacHelper(_)}(Math),u.MD5)},702:function(r,i,o){"use strict";var u;o(7042),r.exports=(u=o(757),o(1582),u.mode.CFB=function(){var r=u.lib.BlockCipherMode.extend();function generateKeystreamAndEncrypt(r,i,o,u){var p,g=this._iv;g?(p=g.slice(0),this._iv=void 0):p=this._prevBlock,u.encryptBlock(p,0);for(var y=0;y<o;y++)r[i+y]^=p[y]}return r.Encryptor=r.extend({processBlock:function processBlock(r,i){var o=this._cipher,u=o.blockSize;generateKeystreamAndEncrypt.call(this,r,i,u,o),this._prevBlock=r.slice(i,i+u)}}),r.Decryptor=r.extend({processBlock:function processBlock(r,i){var o=this._cipher,u=o.blockSize,p=r.slice(i,i+u);generateKeystreamAndEncrypt.call(this,r,i,u,o),this._prevBlock=p}}),r}(),u.mode.CFB)},4412:function(r,i,o){"use strict";var u;o(7042),r.exports=(u=o(757),o(1582),u.mode.CTRGladman=function(){var r=u.lib.BlockCipherMode.extend();function incWord(r){if(255==(r>>24&255)){var i=r>>16&255,o=r>>8&255,u=255&r;255===i?(i=0,255===o?(o=0,255===u?u=0:++u):++o):++i,r=0,r+=i<<16,r+=o<<8,r+=u}else r+=1<<24;return r}function incCounter(r){return 0===(r[0]=incWord(r[0]))&&(r[1]=incWord(r[1])),r}var i=r.Encryptor=r.extend({processBlock:function processBlock(r,i){var o=this._cipher,u=o.blockSize,p=this._iv,g=this._counter;p&&(g=this._counter=p.slice(0),this._iv=void 0),incCounter(g);var y=g.slice(0);o.encryptBlock(y,0);for(var w=0;w<u;w++)r[i+w]^=y[w]}});return r.Decryptor=i,r}(),u.mode.CTRGladman)},2362:function(r,i,o){"use strict";var u,p,g;o(7042),r.exports=(g=o(757),o(1582),g.mode.CTR=(u=g.lib.BlockCipherMode.extend(),p=u.Encryptor=u.extend({processBlock:function processBlock(r,i){var o=this._cipher,u=o.blockSize,p=this._iv,g=this._counter;p&&(g=this._counter=p.slice(0),this._iv=void 0);var y=g.slice(0);o.encryptBlock(y,0),g[u-1]=g[u-1]+1|0;for(var w=0;w<u;w++)r[i+w]^=y[w]}}),u.Decryptor=p,u),g.mode.CTR)},3518:function(r,i,o){"use strict";var u,p;r.exports=(p=o(757),o(1582),p.mode.ECB=((u=p.lib.BlockCipherMode.extend()).Encryptor=u.extend({processBlock:function processBlock(r,i){this._cipher.encryptBlock(r,i)}}),u.Decryptor=u.extend({processBlock:function processBlock(r,i){this._cipher.decryptBlock(r,i)}}),u),p.mode.ECB)},5720:function(r,i,o){"use strict";var u,p,g;o(7042),r.exports=(g=o(757),o(1582),g.mode.OFB=(u=g.lib.BlockCipherMode.extend(),p=u.Encryptor=u.extend({processBlock:function processBlock(r,i){var o=this._cipher,u=o.blockSize,p=this._iv,g=this._keystream;p&&(g=this._keystream=p.slice(0),this._iv=void 0),o.encryptBlock(g,0);for(var y=0;y<u;y++)r[i+y]^=g[y]}}),u.Decryptor=p,u),g.mode.OFB)},6362:function(r,i,o){"use strict";var u;r.exports=(u=o(757),o(1582),u.pad.AnsiX923={pad:function pad(r,i){var o=r.sigBytes,u=4*i,p=u-o%u,g=o+p-1;r.clamp(),r.words[g>>>2]|=p<<24-g%4*8,r.sigBytes+=p},unpad:function unpad(r){var i=255&r.words[r.sigBytes-1>>>2];r.sigBytes-=i}},u.pad.Ansix923)},4431:function(r,i,o){"use strict";var u;o(2222),r.exports=(u=o(757),o(1582),u.pad.Iso10126={pad:function pad(r,i){var o=4*i,p=o-r.sigBytes%o;r.concat(u.lib.WordArray.random(p-1)).concat(u.lib.WordArray.create([p<<24],1))},unpad:function unpad(r){var i=255&r.words[r.sigBytes-1>>>2];r.sigBytes-=i}},u.pad.Iso10126)},8800:function(r,i,o){"use strict";var u;o(2222),r.exports=(u=o(757),o(1582),u.pad.Iso97971={pad:function pad(r,i){r.concat(u.lib.WordArray.create([2147483648],1)),u.pad.ZeroPadding.pad(r,i)},unpad:function unpad(r){u.pad.ZeroPadding.unpad(r),r.sigBytes--}},u.pad.Iso97971)},649:function(r,i,o){"use strict";var u;r.exports=(u=o(757),o(1582),u.pad.NoPadding={pad:function pad(){},unpad:function unpad(){}},u.pad.NoPadding)},3992:function(r,i,o){"use strict";var u;r.exports=(u=o(757),o(1582),u.pad.ZeroPadding={pad:function pad(r,i){var o=4*i;r.clamp(),r.sigBytes+=o-(r.sigBytes%o||o)},unpad:function unpad(r){var i=r.words,o=r.sigBytes-1;for(o=r.sigBytes-1;o>=0;o--)if(i[o>>>2]>>>24-o%4*8&255){r.sigBytes=o+1;break}}},u.pad.ZeroPadding)},3486:function(r,i,o){"use strict";var u,p,g,y,w,_,x,k,P;o(2222),r.exports=(P=o(757),o(9865),o(6727),p=(u=P).lib,g=p.Base,y=p.WordArray,w=u.algo,_=w.SHA1,x=w.HMAC,k=w.PBKDF2=g.extend({cfg:g.extend({keySize:4,hasher:_,iterations:1}),init:function init(r){this.cfg=this.cfg.extend(r)},compute:function compute(r,i){for(var o=this.cfg,u=x.create(o.hasher,r),p=y.create(),g=y.create([1]),w=p.words,_=g.words,k=o.keySize,P=o.iterations;w.length<k;){var O=u.update(i).finalize(g);u.reset();for(var I=O.words,B=I.length,R=O,D=1;D<P;D++){R=u.finalize(R),u.reset();for(var N=R.words,W=0;W<B;W++)I[W]^=N[W]}p.concat(O),_[0]++}return p.sigBytes=4*k,p}}),u.PBKDF2=function(r,i,o){return k.create(o).compute(r,i)},P.PBKDF2)},4363:function(r,i,o){"use strict";var u;r.exports=(u=o(757),o(7508),o(3440),o(3839),o(1582),function(){var r=u,i=r.lib.StreamCipher,o=r.algo,p=[],g=[],y=[],w=o.RabbitLegacy=i.extend({_doReset:function _doReset(){var r=this._key.words,i=this.cfg.iv,o=this._X=[r[0],r[3]<<16|r[2]>>>16,r[1],r[0]<<16|r[3]>>>16,r[2],r[1]<<16|r[0]>>>16,r[3],r[2]<<16|r[1]>>>16],u=this._C=[r[2]<<16|r[2]>>>16,4294901760&r[0]|65535&r[1],r[3]<<16|r[3]>>>16,4294901760&r[1]|65535&r[2],r[0]<<16|r[0]>>>16,4294901760&r[2]|65535&r[3],r[1]<<16|r[1]>>>16,4294901760&r[3]|65535&r[0]];this._b=0;for(var p=0;p<4;p++)nextState.call(this);for(p=0;p<8;p++)u[p]^=o[p+4&7];if(i){var g=i.words,y=g[0],w=g[1],_=16711935&(y<<8|y>>>24)|4278255360&(y<<24|y>>>8),x=16711935&(w<<8|w>>>24)|4278255360&(w<<24|w>>>8),k=_>>>16|4294901760&x,P=x<<16|65535&_;for(u[0]^=_,u[1]^=k,u[2]^=x,u[3]^=P,u[4]^=_,u[5]^=k,u[6]^=x,u[7]^=P,p=0;p<4;p++)nextState.call(this)}},_doProcessBlock:function _doProcessBlock(r,i){var o=this._X;nextState.call(this),p[0]=o[0]^o[5]>>>16^o[3]<<16,p[1]=o[2]^o[7]>>>16^o[5]<<16,p[2]=o[4]^o[1]>>>16^o[7]<<16,p[3]=o[6]^o[3]>>>16^o[1]<<16;for(var u=0;u<4;u++)p[u]=16711935&(p[u]<<8|p[u]>>>24)|4278255360&(p[u]<<24|p[u]>>>8),r[i+u]^=p[u]},blockSize:4,ivSize:2});function nextState(){for(var r=this._X,i=this._C,o=0;o<8;o++)g[o]=i[o];for(i[0]=i[0]+1295307597+this._b|0,i[1]=i[1]+3545052371+(i[0]>>>0<g[0]>>>0?1:0)|0,i[2]=i[2]+886263092+(i[1]>>>0<g[1]>>>0?1:0)|0,i[3]=i[3]+1295307597+(i[2]>>>0<g[2]>>>0?1:0)|0,i[4]=i[4]+3545052371+(i[3]>>>0<g[3]>>>0?1:0)|0,i[5]=i[5]+886263092+(i[4]>>>0<g[4]>>>0?1:0)|0,i[6]=i[6]+1295307597+(i[5]>>>0<g[5]>>>0?1:0)|0,i[7]=i[7]+3545052371+(i[6]>>>0<g[6]>>>0?1:0)|0,this._b=i[7]>>>0<g[7]>>>0?1:0,o=0;o<8;o++){var u=r[o]+i[o],p=65535&u,w=u>>>16,_=((p*p>>>17)+p*w>>>15)+w*w,x=((4294901760&u)*u|0)+((65535&u)*u|0);y[o]=_^x}r[0]=y[0]+(y[7]<<16|y[7]>>>16)+(y[6]<<16|y[6]>>>16)|0,r[1]=y[1]+(y[0]<<8|y[0]>>>24)+y[7]|0,r[2]=y[2]+(y[1]<<16|y[1]>>>16)+(y[0]<<16|y[0]>>>16)|0,r[3]=y[3]+(y[2]<<8|y[2]>>>24)+y[1]|0,r[4]=y[4]+(y[3]<<16|y[3]>>>16)+(y[2]<<16|y[2]>>>16)|0,r[5]=y[5]+(y[4]<<8|y[4]>>>24)+y[3]|0,r[6]=y[6]+(y[5]<<16|y[5]>>>16)+(y[4]<<16|y[4]>>>16)|0,r[7]=y[7]+(y[6]<<8|y[6]>>>24)+y[5]|0}r.RabbitLegacy=i._createHelper(w)}(),u.RabbitLegacy)},5323:function(r,i,o){"use strict";var u;r.exports=(u=o(757),o(7508),o(3440),o(3839),o(1582),function(){var r=u,i=r.lib.StreamCipher,o=r.algo,p=[],g=[],y=[],w=o.Rabbit=i.extend({_doReset:function _doReset(){for(var r=this._key.words,i=this.cfg.iv,o=0;o<4;o++)r[o]=16711935&(r[o]<<8|r[o]>>>24)|4278255360&(r[o]<<24|r[o]>>>8);var u=this._X=[r[0],r[3]<<16|r[2]>>>16,r[1],r[0]<<16|r[3]>>>16,r[2],r[1]<<16|r[0]>>>16,r[3],r[2]<<16|r[1]>>>16],p=this._C=[r[2]<<16|r[2]>>>16,4294901760&r[0]|65535&r[1],r[3]<<16|r[3]>>>16,4294901760&r[1]|65535&r[2],r[0]<<16|r[0]>>>16,4294901760&r[2]|65535&r[3],r[1]<<16|r[1]>>>16,4294901760&r[3]|65535&r[0]];for(this._b=0,o=0;o<4;o++)nextState.call(this);for(o=0;o<8;o++)p[o]^=u[o+4&7];if(i){var g=i.words,y=g[0],w=g[1],_=16711935&(y<<8|y>>>24)|4278255360&(y<<24|y>>>8),x=16711935&(w<<8|w>>>24)|4278255360&(w<<24|w>>>8),k=_>>>16|4294901760&x,P=x<<16|65535&_;for(p[0]^=_,p[1]^=k,p[2]^=x,p[3]^=P,p[4]^=_,p[5]^=k,p[6]^=x,p[7]^=P,o=0;o<4;o++)nextState.call(this)}},_doProcessBlock:function _doProcessBlock(r,i){var o=this._X;nextState.call(this),p[0]=o[0]^o[5]>>>16^o[3]<<16,p[1]=o[2]^o[7]>>>16^o[5]<<16,p[2]=o[4]^o[1]>>>16^o[7]<<16,p[3]=o[6]^o[3]>>>16^o[1]<<16;for(var u=0;u<4;u++)p[u]=16711935&(p[u]<<8|p[u]>>>24)|4278255360&(p[u]<<24|p[u]>>>8),r[i+u]^=p[u]},blockSize:4,ivSize:2});function nextState(){for(var r=this._X,i=this._C,o=0;o<8;o++)g[o]=i[o];for(i[0]=i[0]+1295307597+this._b|0,i[1]=i[1]+3545052371+(i[0]>>>0<g[0]>>>0?1:0)|0,i[2]=i[2]+886263092+(i[1]>>>0<g[1]>>>0?1:0)|0,i[3]=i[3]+1295307597+(i[2]>>>0<g[2]>>>0?1:0)|0,i[4]=i[4]+3545052371+(i[3]>>>0<g[3]>>>0?1:0)|0,i[5]=i[5]+886263092+(i[4]>>>0<g[4]>>>0?1:0)|0,i[6]=i[6]+1295307597+(i[5]>>>0<g[5]>>>0?1:0)|0,i[7]=i[7]+3545052371+(i[6]>>>0<g[6]>>>0?1:0)|0,this._b=i[7]>>>0<g[7]>>>0?1:0,o=0;o<8;o++){var u=r[o]+i[o],p=65535&u,w=u>>>16,_=((p*p>>>17)+p*w>>>15)+w*w,x=((4294901760&u)*u|0)+((65535&u)*u|0);y[o]=_^x}r[0]=y[0]+(y[7]<<16|y[7]>>>16)+(y[6]<<16|y[6]>>>16)|0,r[1]=y[1]+(y[0]<<8|y[0]>>>24)+y[7]|0,r[2]=y[2]+(y[1]<<16|y[1]>>>16)+(y[0]<<16|y[0]>>>16)|0,r[3]=y[3]+(y[2]<<8|y[2]>>>24)+y[1]|0,r[4]=y[4]+(y[3]<<16|y[3]>>>16)+(y[2]<<16|y[2]>>>16)|0,r[5]=y[5]+(y[4]<<8|y[4]>>>24)+y[3]|0,r[6]=y[6]+(y[5]<<16|y[5]>>>16)+(y[4]<<16|y[4]>>>16)|0,r[7]=y[7]+(y[6]<<8|y[6]>>>24)+y[5]|0}r.Rabbit=i._createHelper(w)}(),u.Rabbit)},4640:function(r,i,o){"use strict";var u;o(1539),o(8674),r.exports=(u=o(757),o(7508),o(3440),o(3839),o(1582),function(){var r=u,i=r.lib.StreamCipher,o=r.algo,p=o.RC4=i.extend({_doReset:function _doReset(){for(var r=this._key,i=r.words,o=r.sigBytes,u=this._S=[],p=0;p<256;p++)u[p]=p;p=0;for(var g=0;p<256;p++){var y=p%o,w=i[y>>>2]>>>24-y%4*8&255;g=(g+u[p]+w)%256;var _=u[p];u[p]=u[g],u[g]=_}this._i=this._j=0},_doProcessBlock:function _doProcessBlock(r,i){r[i]^=generateKeystreamWord.call(this)},keySize:8,ivSize:0});function generateKeystreamWord(){for(var r=this._S,i=this._i,o=this._j,u=0,p=0;p<4;p++){o=(o+r[i=(i+1)%256])%256;var g=r[i];r[i]=r[o],r[o]=g,u|=r[(r[i]+r[o])%256]<<24-8*p}return this._i=i,this._j=o,u}r.RC4=i._createHelper(p);var g=o.RC4Drop=p.extend({cfg:p.cfg.extend({drop:192}),_doReset:function _doReset(){p._doReset.call(this);for(var r=this.cfg.drop;r>0;r--)generateKeystreamWord.call(this)}});r.RC4Drop=i._createHelper(g)}(),u.RC4)},8714:function(r,i,o){"use strict";var u;r.exports=(u=o(757),function(r){var i=u,o=i.lib,p=o.WordArray,g=o.Hasher,y=i.algo,w=p.create([0,1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,7,4,13,1,10,6,15,3,12,0,9,5,2,14,11,8,3,10,14,4,9,15,8,1,2,7,0,6,13,11,5,12,1,9,11,10,0,8,12,4,13,3,7,15,14,5,6,2,4,0,5,9,7,12,2,10,14,1,3,8,11,6,15,13]),_=p.create([5,14,7,0,9,2,11,4,13,6,15,8,1,10,3,12,6,11,3,7,0,13,5,10,14,15,8,12,4,9,1,2,15,5,1,3,7,14,6,9,11,8,12,2,10,0,4,13,8,6,4,1,3,11,15,0,5,12,2,13,9,7,10,14,12,15,10,4,1,5,8,7,6,2,13,14,0,3,9,11]),x=p.create([11,14,15,12,5,8,7,9,11,13,14,15,6,7,9,8,7,6,8,13,11,9,7,15,7,12,15,9,11,7,13,12,11,13,6,7,14,9,13,15,14,8,13,6,5,12,7,5,11,12,14,15,14,15,9,8,9,14,5,6,8,6,5,12,9,15,5,11,6,8,13,12,5,12,13,14,11,8,5,6]),k=p.create([8,9,9,11,13,15,15,5,7,7,8,11,14,14,12,6,9,13,15,7,12,8,9,11,7,7,12,7,6,15,13,11,9,7,15,11,8,6,6,14,12,13,5,14,13,13,7,5,15,5,8,11,14,14,6,14,6,9,12,9,12,5,15,8,8,5,12,9,12,5,14,6,8,13,6,5,15,13,11,11]),P=p.create([0,1518500249,1859775393,2400959708,2840853838]),O=p.create([1352829926,1548603684,1836072691,2053994217,0]),I=y.RIPEMD160=g.extend({_doReset:function _doReset(){this._hash=p.create([1732584193,4023233417,2562383102,271733878,3285377520])},_doProcessBlock:function _doProcessBlock(r,i){for(var o=0;o<16;o++){var u=i+o,p=r[u];r[u]=16711935&(p<<8|p>>>24)|4278255360&(p<<24|p>>>8)}var g,y,I,B,R,D,N,W,U,j,G,X=this._hash.words,K=P.words,Y=O.words,J=w.words,$=_.words,ee=x.words,te=k.words;for(D=g=X[0],N=y=X[1],W=I=X[2],U=B=X[3],j=R=X[4],o=0;o<80;o+=1)G=g+r[i+J[o]]|0,G+=o<16?f1(y,I,B)+K[0]:o<32?f2(y,I,B)+K[1]:o<48?f3(y,I,B)+K[2]:o<64?f4(y,I,B)+K[3]:f5(y,I,B)+K[4],G=(G=rotl(G|=0,ee[o]))+R|0,g=R,R=B,B=rotl(I,10),I=y,y=G,G=D+r[i+$[o]]|0,G+=o<16?f5(N,W,U)+Y[0]:o<32?f4(N,W,U)+Y[1]:o<48?f3(N,W,U)+Y[2]:o<64?f2(N,W,U)+Y[3]:f1(N,W,U)+Y[4],G=(G=rotl(G|=0,te[o]))+j|0,D=j,j=U,U=rotl(W,10),W=N,N=G;G=X[1]+I+U|0,X[1]=X[2]+B+j|0,X[2]=X[3]+R+D|0,X[3]=X[4]+g+N|0,X[4]=X[0]+y+W|0,X[0]=G},_doFinalize:function _doFinalize(){var r=this._data,i=r.words,o=8*this._nDataBytes,u=8*r.sigBytes;i[u>>>5]|=128<<24-u%32,i[14+(u+64>>>9<<4)]=16711935&(o<<8|o>>>24)|4278255360&(o<<24|o>>>8),r.sigBytes=4*(i.length+1),this._process();for(var p=this._hash,g=p.words,y=0;y<5;y++){var w=g[y];g[y]=16711935&(w<<8|w>>>24)|4278255360&(w<<24|w>>>8)}return p},clone:function clone(){var clone=g.clone.call(this);return clone._hash=this._hash.clone(),clone}});function f1(r,i,o){return r^i^o}function f2(r,i,o){return r&i|~r&o}function f3(r,i,o){return(r|~i)^o}function f4(r,i,o){return r&o|i&~o}function f5(r,i,o){return r^(i|~o)}function rotl(r,i){return r<<i|r>>>32-i}i.RIPEMD160=g._createHelper(I),i.HmacRIPEMD160=g._createHmacHelper(I)}(Math),u.RIPEMD160)},9865:function(r,i,o){"use strict";var u,p,g,y,w,_,x,k;r.exports=(k=o(757),p=(u=k).lib,g=p.WordArray,y=p.Hasher,w=u.algo,_=[],x=w.SHA1=y.extend({_doReset:function _doReset(){this._hash=new g.init([1732584193,4023233417,2562383102,271733878,3285377520])},_doProcessBlock:function _doProcessBlock(r,i){for(var o=this._hash.words,u=o[0],p=o[1],g=o[2],y=o[3],w=o[4],x=0;x<80;x++){if(x<16)_[x]=0|r[i+x];else{var k=_[x-3]^_[x-8]^_[x-14]^_[x-16];_[x]=k<<1|k>>>31}var P=(u<<5|u>>>27)+w+_[x];P+=x<20?1518500249+(p&g|~p&y):x<40?1859775393+(p^g^y):x<60?(p&g|p&y|g&y)-1894007588:(p^g^y)-899497514,w=y,y=g,g=p<<30|p>>>2,p=u,u=P}o[0]=o[0]+u|0,o[1]=o[1]+p|0,o[2]=o[2]+g|0,o[3]=o[3]+y|0,o[4]=o[4]+w|0},_doFinalize:function _doFinalize(){var r=this._data,i=r.words,o=8*this._nDataBytes,u=8*r.sigBytes;return i[u>>>5]|=128<<24-u%32,i[14+(u+64>>>9<<4)]=Math.floor(o/4294967296),i[15+(u+64>>>9<<4)]=o,r.sigBytes=4*i.length,this._process(),this._hash},clone:function clone(){var clone=y.clone.call(this);return clone._hash=this._hash.clone(),clone}}),u.SHA1=y._createHelper(x),u.HmacSHA1=y._createHmacHelper(x),k.SHA1)},6876:function(r,i,o){"use strict";var u,p,g,y,w,_;r.exports=(_=o(757),o(8921),p=(u=_).lib.WordArray,g=u.algo,y=g.SHA256,w=g.SHA224=y.extend({_doReset:function _doReset(){this._hash=new p.init([3238371032,914150663,812702999,4144912697,4290775857,1750603025,1694076839,3204075428])},_doFinalize:function _doFinalize(){var r=y._doFinalize.call(this);return r.sigBytes-=4,r}}),u.SHA224=y._createHelper(w),u.HmacSHA224=y._createHmacHelper(w),_.SHA224)},8921:function(r,i,o){"use strict";var u;o(7042),r.exports=(u=o(757),function(r){var i=u,o=i.lib,p=o.WordArray,g=o.Hasher,y=i.algo,w=[],_=[];!function(){function isPrime(i){for(var o=r.sqrt(i),u=2;u<=o;u++)if(!(i%u))return!1;return!0}function getFractionalBits(r){return 4294967296*(r-(0|r))|0}for(var i=2,o=0;o<64;)isPrime(i)&&(o<8&&(w[o]=getFractionalBits(r.pow(i,.5))),_[o]=getFractionalBits(r.pow(i,1/3)),o++),i++}();var x=[],k=y.SHA256=g.extend({_doReset:function _doReset(){this._hash=new p.init(w.slice(0))},_doProcessBlock:function _doProcessBlock(r,i){for(var o=this._hash.words,u=o[0],p=o[1],g=o[2],y=o[3],w=o[4],k=o[5],P=o[6],O=o[7],I=0;I<64;I++){if(I<16)x[I]=0|r[i+I];else{var B=x[I-15],R=(B<<25|B>>>7)^(B<<14|B>>>18)^B>>>3,D=x[I-2],N=(D<<15|D>>>17)^(D<<13|D>>>19)^D>>>10;x[I]=R+x[I-7]+N+x[I-16]}var W=u&p^u&g^p&g,U=(u<<30|u>>>2)^(u<<19|u>>>13)^(u<<10|u>>>22),j=O+((w<<26|w>>>6)^(w<<21|w>>>11)^(w<<7|w>>>25))+(w&k^~w&P)+_[I]+x[I];O=P,P=k,k=w,w=y+j|0,y=g,g=p,p=u,u=j+(U+W)|0}o[0]=o[0]+u|0,o[1]=o[1]+p|0,o[2]=o[2]+g|0,o[3]=o[3]+y|0,o[4]=o[4]+w|0,o[5]=o[5]+k|0,o[6]=o[6]+P|0,o[7]=o[7]+O|0},_doFinalize:function _doFinalize(){var i=this._data,o=i.words,u=8*this._nDataBytes,p=8*i.sigBytes;return o[p>>>5]|=128<<24-p%32,o[14+(p+64>>>9<<4)]=r.floor(u/4294967296),o[15+(p+64>>>9<<4)]=u,i.sigBytes=4*o.length,this._process(),this._hash},clone:function clone(){var clone=g.clone.call(this);return clone._hash=this._hash.clone(),clone}});i.SHA256=g._createHelper(k),i.HmacSHA256=g._createHmacHelper(k)}(Math),u.SHA256)},8342:function(r,i,o){"use strict";var u;o(7042),r.exports=(u=o(757),o(2601),function(r){var i=u,o=i.lib,p=o.WordArray,g=o.Hasher,y=i.x64.Word,w=i.algo,_=[],x=[],k=[];!function(){for(var r=1,i=0,o=0;o<24;o++){_[r+5*i]=(o+1)*(o+2)/2%64;var u=(2*r+3*i)%5;r=i%5,i=u}for(r=0;r<5;r++)for(i=0;i<5;i++)x[r+5*i]=i+(2*r+3*i)%5*5;for(var p=1,g=0;g<24;g++){for(var w=0,P=0,O=0;O<7;O++){if(1&p){var I=(1<<O)-1;I<32?P^=1<<I:w^=1<<I-32}128&p?p=p<<1^113:p<<=1}k[g]=y.create(w,P)}}();var P=[];!function(){for(var r=0;r<25;r++)P[r]=y.create()}();var O=w.SHA3=g.extend({cfg:g.cfg.extend({outputLength:512}),_doReset:function _doReset(){for(var r=this._state=[],i=0;i<25;i++)r[i]=new y.init;this.blockSize=(1600-2*this.cfg.outputLength)/32},_doProcessBlock:function _doProcessBlock(r,i){for(var o=this._state,u=this.blockSize/2,p=0;p<u;p++){var g=r[i+2*p],y=r[i+2*p+1];g=16711935&(g<<8|g>>>24)|4278255360&(g<<24|g>>>8),y=16711935&(y<<8|y>>>24)|4278255360&(y<<24|y>>>8),(te=o[p]).high^=y,te.low^=g}for(var w=0;w<24;w++){for(var O=0;O<5;O++){for(var I=0,B=0,R=0;R<5;R++)I^=(te=o[O+5*R]).high,B^=te.low;var D=P[O];D.high=I,D.low=B}for(O=0;O<5;O++){var N=P[(O+4)%5],W=P[(O+1)%5],U=W.high,j=W.low;for(I=N.high^(U<<1|j>>>31),B=N.low^(j<<1|U>>>31),R=0;R<5;R++)(te=o[O+5*R]).high^=I,te.low^=B}for(var G=1;G<25;G++){var X=(te=o[G]).high,K=te.low,Y=_[G];Y<32?(I=X<<Y|K>>>32-Y,B=K<<Y|X>>>32-Y):(I=K<<Y-32|X>>>64-Y,B=X<<Y-32|K>>>64-Y);var J=P[x[G]];J.high=I,J.low=B}var $=P[0],ee=o[0];for($.high=ee.high,$.low=ee.low,O=0;O<5;O++)for(R=0;R<5;R++){var te=o[G=O+5*R],re=P[G],ne=P[(O+1)%5+5*R],ie=P[(O+2)%5+5*R];te.high=re.high^~ne.high&ie.high,te.low=re.low^~ne.low&ie.low}te=o[0];var oe=k[w];te.high^=oe.high,te.low^=oe.low}},_doFinalize:function _doFinalize(){var i=this._data,o=i.words,u=(this._nDataBytes,8*i.sigBytes),g=32*this.blockSize;o[u>>>5]|=1<<24-u%32,o[(r.ceil((u+1)/g)*g>>>5)-1]|=128,i.sigBytes=4*o.length,this._process();for(var y=this._state,w=this.cfg.outputLength/8,_=w/8,x=[],k=0;k<_;k++){var P=y[k],O=P.high,I=P.low;O=16711935&(O<<8|O>>>24)|4278255360&(O<<24|O>>>8),I=16711935&(I<<8|I>>>24)|4278255360&(I<<24|I>>>8),x.push(I),x.push(O)}return new p.init(x,w)},clone:function clone(){for(var clone=g.clone.call(this),r=clone._state=this._state.slice(0),i=0;i<25;i++)r[i]=r[i].clone();return clone}});i.SHA3=g._createHelper(O),i.HmacSHA3=g._createHmacHelper(O)}(Math),u.SHA3)},8122:function(r,i,o){"use strict";var u,p,g,y,w,_,x,k;r.exports=(k=o(757),o(2601),o(7991),p=(u=k).x64,g=p.Word,y=p.WordArray,w=u.algo,_=w.SHA512,x=w.SHA384=_.extend({_doReset:function _doReset(){this._hash=new y.init([new g.init(3418070365,3238371032),new g.init(1654270250,914150663),new g.init(2438529370,812702999),new g.init(355462360,4144912697),new g.init(1731405415,4290775857),new g.init(2394180231,1750603025),new g.init(3675008525,1694076839),new g.init(1203062813,3204075428)])},_doFinalize:function _doFinalize(){var r=_._doFinalize.call(this);return r.sigBytes-=16,r}}),u.SHA384=_._createHelper(x),u.HmacSHA384=_._createHmacHelper(x),k.SHA384)},7991:function(r,i,o){"use strict";var u;r.exports=(u=o(757),o(2601),function(){var r=u,i=r.lib.Hasher,o=r.x64,p=o.Word,g=o.WordArray,y=r.algo;function X64Word_create(){return p.create.apply(p,arguments)}var w=[X64Word_create(1116352408,3609767458),X64Word_create(1899447441,602891725),X64Word_create(3049323471,3964484399),X64Word_create(3921009573,2173295548),X64Word_create(961987163,4081628472),X64Word_create(1508970993,3053834265),X64Word_create(2453635748,2937671579),X64Word_create(2870763221,3664609560),X64Word_create(3624381080,2734883394),X64Word_create(310598401,1164996542),X64Word_create(607225278,1323610764),X64Word_create(1426881987,3590304994),X64Word_create(1925078388,4068182383),X64Word_create(2162078206,991336113),X64Word_create(2614888103,633803317),X64Word_create(3248222580,3479774868),X64Word_create(3835390401,2666613458),X64Word_create(4022224774,944711139),X64Word_create(264347078,2341262773),X64Word_create(604807628,2007800933),X64Word_create(770255983,1495990901),X64Word_create(1249150122,1856431235),X64Word_create(1555081692,3175218132),X64Word_create(1996064986,2198950837),X64Word_create(2554220882,3999719339),X64Word_create(2821834349,766784016),X64Word_create(2952996808,2566594879),X64Word_create(3210313671,3203337956),X64Word_create(3336571891,1034457026),X64Word_create(3584528711,2466948901),X64Word_create(113926993,3758326383),X64Word_create(338241895,168717936),X64Word_create(666307205,1188179964),X64Word_create(773529912,1546045734),X64Word_create(1294757372,1522805485),X64Word_create(1396182291,2643833823),X64Word_create(1695183700,2343527390),X64Word_create(1986661051,1014477480),X64Word_create(2177026350,1206759142),X64Word_create(2456956037,344077627),X64Word_create(2730485921,1290863460),X64Word_create(2820302411,3158454273),X64Word_create(3259730800,3505952657),X64Word_create(3345764771,106217008),X64Word_create(3516065817,3606008344),X64Word_create(3600352804,1432725776),X64Word_create(4094571909,1467031594),X64Word_create(275423344,851169720),X64Word_create(430227734,3100823752),X64Word_create(506948616,1363258195),X64Word_create(659060556,3750685593),X64Word_create(883997877,3785050280),X64Word_create(958139571,3318307427),X64Word_create(1322822218,3812723403),X64Word_create(1537002063,2003034995),X64Word_create(1747873779,3602036899),X64Word_create(1955562222,1575990012),X64Word_create(2024104815,1125592928),X64Word_create(2227730452,2716904306),X64Word_create(2361852424,442776044),X64Word_create(2428436474,593698344),X64Word_create(2756734187,3733110249),X64Word_create(3204031479,2999351573),X64Word_create(3329325298,3815920427),X64Word_create(3391569614,3928383900),X64Word_create(3515267271,566280711),X64Word_create(3940187606,3454069534),X64Word_create(4118630271,4000239992),X64Word_create(116418474,1914138554),X64Word_create(174292421,2731055270),X64Word_create(289380356,3203993006),X64Word_create(460393269,320620315),X64Word_create(685471733,587496836),X64Word_create(852142971,1086792851),X64Word_create(1017036298,365543100),X64Word_create(1126000580,2618297676),X64Word_create(1288033470,3409855158),X64Word_create(1501505948,4234509866),X64Word_create(1607167915,987167468),X64Word_create(1816402316,1246189591)],_=[];!function(){for(var r=0;r<80;r++)_[r]=X64Word_create()}();var x=y.SHA512=i.extend({_doReset:function _doReset(){this._hash=new g.init([new p.init(1779033703,4089235720),new p.init(3144134277,2227873595),new p.init(1013904242,4271175723),new p.init(2773480762,1595750129),new p.init(1359893119,2917565137),new p.init(2600822924,725511199),new p.init(528734635,4215389547),new p.init(1541459225,327033209)])},_doProcessBlock:function _doProcessBlock(r,i){for(var o=this._hash.words,u=o[0],p=o[1],g=o[2],y=o[3],x=o[4],k=o[5],P=o[6],O=o[7],I=u.high,B=u.low,R=p.high,D=p.low,N=g.high,W=g.low,U=y.high,j=y.low,G=x.high,X=x.low,K=k.high,Y=k.low,J=P.high,$=P.low,ee=O.high,te=O.low,re=I,ne=B,ie=R,oe=D,ae=N,se=W,ce=U,le=j,ue=G,fe=X,he=K,de=Y,pe=J,ge=$,ye=ee,ve=te,me=0;me<80;me++){var be,we,_e=_[me];if(me<16)we=_e.high=0|r[i+2*me],be=_e.low=0|r[i+2*me+1];else{var Se=_[me-15],xe=Se.high,Ce=Se.low,ke=(xe>>>1|Ce<<31)^(xe>>>8|Ce<<24)^xe>>>7,Pe=(Ce>>>1|xe<<31)^(Ce>>>8|xe<<24)^(Ce>>>7|xe<<25),Ae=_[me-2],Ee=Ae.high,Te=Ae.low,Oe=(Ee>>>19|Te<<13)^(Ee<<3|Te>>>29)^Ee>>>6,Ie=(Te>>>19|Ee<<13)^(Te<<3|Ee>>>29)^(Te>>>6|Ee<<26),Be=_[me-7],Fe=Be.high,Le=Be.low,Re=_[me-16],De=Re.high,Me=Re.low;we=(we=(we=ke+Fe+((be=Pe+Le)>>>0<Pe>>>0?1:0))+Oe+((be+=Ie)>>>0<Ie>>>0?1:0))+De+((be+=Me)>>>0<Me>>>0?1:0),_e.high=we,_e.low=be}var Ne,We=ue&he^~ue&pe,ze=fe&de^~fe&ge,Ue=re&ie^re&ae^ie&ae,je=ne&oe^ne&se^oe&se,Ge=(re>>>28|ne<<4)^(re<<30|ne>>>2)^(re<<25|ne>>>7),Ve=(ne>>>28|re<<4)^(ne<<30|re>>>2)^(ne<<25|re>>>7),He=(ue>>>14|fe<<18)^(ue>>>18|fe<<14)^(ue<<23|fe>>>9),qe=(fe>>>14|ue<<18)^(fe>>>18|ue<<14)^(fe<<23|ue>>>9),Xe=w[me],Ze=Xe.high,Ke=Xe.low,Ye=ye+He+((Ne=ve+qe)>>>0<ve>>>0?1:0),Je=Ve+je;ye=pe,ve=ge,pe=he,ge=de,he=ue,de=fe,ue=ce+(Ye=(Ye=(Ye=Ye+We+((Ne+=ze)>>>0<ze>>>0?1:0))+Ze+((Ne+=Ke)>>>0<Ke>>>0?1:0))+we+((Ne+=be)>>>0<be>>>0?1:0))+((fe=le+Ne|0)>>>0<le>>>0?1:0)|0,ce=ae,le=se,ae=ie,se=oe,ie=re,oe=ne,re=Ye+(Ge+Ue+(Je>>>0<Ve>>>0?1:0))+((ne=Ne+Je|0)>>>0<Ne>>>0?1:0)|0}B=u.low=B+ne,u.high=I+re+(B>>>0<ne>>>0?1:0),D=p.low=D+oe,p.high=R+ie+(D>>>0<oe>>>0?1:0),W=g.low=W+se,g.high=N+ae+(W>>>0<se>>>0?1:0),j=y.low=j+le,y.high=U+ce+(j>>>0<le>>>0?1:0),X=x.low=X+fe,x.high=G+ue+(X>>>0<fe>>>0?1:0),Y=k.low=Y+de,k.high=K+he+(Y>>>0<de>>>0?1:0),$=P.low=$+ge,P.high=J+pe+($>>>0<ge>>>0?1:0),te=O.low=te+ve,O.high=ee+ye+(te>>>0<ve>>>0?1:0)},_doFinalize:function _doFinalize(){var r=this._data,i=r.words,o=8*this._nDataBytes,u=8*r.sigBytes;return i[u>>>5]|=128<<24-u%32,i[30+(u+128>>>10<<5)]=Math.floor(o/4294967296),i[31+(u+128>>>10<<5)]=o,r.sigBytes=4*i.length,this._process(),this._hash.toX32()},clone:function clone(){var clone=i.clone.call(this);return clone._hash=this._hash.clone(),clone},blockSize:32});r.SHA512=i._createHelper(x),r.HmacSHA512=i._createHmacHelper(x)}(),u.SHA512)},8437:function(r,i,o){"use strict";var u;o(7042),r.exports=(u=o(757),o(7508),o(3440),o(3839),o(1582),function(){var r=u,i=r.lib,o=i.WordArray,p=i.BlockCipher,g=r.algo,y=[57,49,41,33,25,17,9,1,58,50,42,34,26,18,10,2,59,51,43,35,27,19,11,3,60,52,44,36,63,55,47,39,31,23,15,7,62,54,46,38,30,22,14,6,61,53,45,37,29,21,13,5,28,20,12,4],w=[14,17,11,24,1,5,3,28,15,6,21,10,23,19,12,4,26,8,16,7,27,20,13,2,41,52,31,37,47,55,30,40,51,45,33,48,44,49,39,56,34,53,46,42,50,36,29,32],_=[1,2,4,6,8,10,12,14,15,17,19,21,23,25,27,28],x=[{0:8421888,268435456:32768,536870912:8421378,805306368:2,1073741824:512,1342177280:8421890,1610612736:8389122,1879048192:8388608,2147483648:514,2415919104:8389120,2684354560:33280,2952790016:8421376,3221225472:32770,3489660928:8388610,3758096384:0,4026531840:33282,134217728:0,402653184:8421890,671088640:33282,939524096:32768,1207959552:8421888,1476395008:512,1744830464:8421378,2013265920:2,2281701376:8389120,2550136832:33280,2818572288:8421376,3087007744:8389122,3355443200:8388610,3623878656:32770,3892314112:514,4160749568:8388608,1:32768,268435457:2,536870913:8421888,805306369:8388608,1073741825:8421378,1342177281:33280,1610612737:512,1879048193:8389122,2147483649:8421890,2415919105:8421376,2684354561:8388610,2952790017:33282,3221225473:514,3489660929:8389120,3758096385:32770,4026531841:0,134217729:8421890,402653185:8421376,671088641:8388608,939524097:512,1207959553:32768,1476395009:8388610,1744830465:2,2013265921:33282,2281701377:32770,2550136833:8389122,2818572289:514,3087007745:8421888,3355443201:8389120,3623878657:0,3892314113:33280,4160749569:8421378},{0:1074282512,16777216:16384,33554432:524288,50331648:1074266128,67108864:1073741840,83886080:1074282496,100663296:1073758208,117440512:16,134217728:540672,150994944:1073758224,167772160:1073741824,184549376:540688,201326592:524304,218103808:0,234881024:16400,251658240:1074266112,8388608:1073758208,25165824:540688,41943040:16,58720256:1073758224,75497472:1074282512,92274688:1073741824,109051904:524288,125829120:1074266128,142606336:524304,159383552:0,176160768:16384,192937984:1074266112,209715200:1073741840,226492416:540672,243269632:1074282496,260046848:16400,268435456:0,285212672:1074266128,301989888:1073758224,318767104:1074282496,335544320:1074266112,352321536:16,369098752:540688,385875968:16384,402653184:16400,419430400:524288,436207616:524304,452984832:1073741840,469762048:540672,486539264:1073758208,503316480:1073741824,520093696:1074282512,276824064:540688,293601280:524288,310378496:1074266112,327155712:16384,343932928:1073758208,360710144:1074282512,377487360:16,394264576:1073741824,411041792:1074282496,427819008:1073741840,444596224:1073758224,461373440:524304,478150656:0,494927872:16400,511705088:1074266128,528482304:540672},{0:260,1048576:0,2097152:67109120,3145728:65796,4194304:65540,5242880:67108868,6291456:67174660,7340032:67174400,8388608:67108864,9437184:67174656,10485760:65792,11534336:67174404,12582912:67109124,13631488:65536,14680064:4,15728640:256,524288:67174656,1572864:67174404,2621440:0,3670016:67109120,4718592:67108868,5767168:65536,6815744:65540,7864320:260,8912896:4,9961472:256,11010048:67174400,12058624:65796,13107200:65792,14155776:67109124,15204352:67174660,16252928:67108864,16777216:67174656,17825792:65540,18874368:65536,19922944:67109120,20971520:256,22020096:67174660,23068672:67108868,24117248:0,25165824:67109124,26214400:67108864,27262976:4,28311552:65792,29360128:67174400,30408704:260,31457280:65796,32505856:67174404,17301504:67108864,18350080:260,19398656:67174656,20447232:0,21495808:65540,22544384:67109120,23592960:256,24641536:67174404,25690112:65536,26738688:67174660,27787264:65796,28835840:67108868,29884416:67109124,30932992:67174400,31981568:4,33030144:65792},{0:2151682048,65536:2147487808,131072:4198464,196608:2151677952,262144:0,327680:4198400,393216:2147483712,458752:4194368,524288:2147483648,589824:4194304,655360:64,720896:2147487744,786432:2151678016,851968:4160,917504:4096,983040:2151682112,32768:2147487808,98304:64,163840:2151678016,229376:2147487744,294912:4198400,360448:2151682112,425984:0,491520:2151677952,557056:4096,622592:2151682048,688128:4194304,753664:4160,819200:2147483648,884736:4194368,950272:4198464,1015808:2147483712,1048576:4194368,1114112:4198400,1179648:2147483712,1245184:0,1310720:4160,1376256:2151678016,1441792:2151682048,1507328:2147487808,1572864:2151682112,1638400:2147483648,1703936:2151677952,1769472:4198464,1835008:2147487744,1900544:4194304,1966080:64,2031616:4096,1081344:2151677952,1146880:2151682112,1212416:0,1277952:4198400,1343488:4194368,1409024:2147483648,1474560:2147487808,1540096:64,1605632:2147483712,1671168:4096,1736704:2147487744,1802240:2151678016,1867776:4160,1933312:2151682048,1998848:4194304,2064384:4198464},{0:128,4096:17039360,8192:262144,12288:536870912,16384:537133184,20480:16777344,24576:553648256,28672:262272,32768:16777216,36864:537133056,40960:536871040,45056:553910400,49152:553910272,53248:0,57344:17039488,61440:553648128,2048:17039488,6144:553648256,10240:128,14336:17039360,18432:262144,22528:537133184,26624:553910272,30720:536870912,34816:537133056,38912:0,43008:553910400,47104:16777344,51200:536871040,55296:553648128,59392:16777216,63488:262272,65536:262144,69632:128,73728:536870912,77824:553648256,81920:16777344,86016:553910272,90112:537133184,94208:16777216,98304:553910400,102400:553648128,106496:17039360,110592:537133056,114688:262272,118784:536871040,122880:0,126976:17039488,67584:553648256,71680:16777216,75776:17039360,79872:537133184,83968:536870912,88064:17039488,92160:128,96256:553910272,100352:262272,104448:553910400,108544:0,112640:553648128,116736:16777344,120832:262144,124928:537133056,129024:536871040},{0:268435464,256:8192,512:270532608,768:270540808,1024:268443648,1280:2097152,1536:2097160,1792:268435456,2048:0,2304:268443656,2560:2105344,2816:8,3072:270532616,3328:2105352,3584:8200,3840:270540800,128:270532608,384:270540808,640:8,896:2097152,1152:2105352,1408:268435464,1664:268443648,1920:8200,2176:2097160,2432:8192,2688:268443656,2944:270532616,3200:0,3456:270540800,3712:2105344,3968:268435456,4096:268443648,4352:270532616,4608:270540808,4864:8200,5120:2097152,5376:268435456,5632:268435464,5888:2105344,6144:2105352,6400:0,6656:8,6912:270532608,7168:8192,7424:268443656,7680:270540800,7936:2097160,4224:8,4480:2105344,4736:2097152,4992:268435464,5248:268443648,5504:8200,5760:270540808,6016:270532608,6272:270540800,6528:270532616,6784:8192,7040:2105352,7296:2097160,7552:0,7808:268435456,8064:268443656},{0:1048576,16:33555457,32:1024,48:1049601,64:34604033,80:0,96:1,112:34603009,128:33555456,144:1048577,160:33554433,176:34604032,192:34603008,208:1025,224:1049600,240:33554432,8:34603009,24:0,40:33555457,56:34604032,72:1048576,88:33554433,104:33554432,120:1025,136:1049601,152:33555456,168:34603008,184:1048577,200:1024,216:34604033,232:1,248:1049600,256:33554432,272:1048576,288:33555457,304:34603009,320:1048577,336:33555456,352:34604032,368:1049601,384:1025,400:34604033,416:1049600,432:1,448:0,464:34603008,480:33554433,496:1024,264:1049600,280:33555457,296:34603009,312:1,328:33554432,344:1048576,360:1025,376:34604032,392:33554433,408:34603008,424:0,440:34604033,456:1049601,472:1024,488:33555456,504:1048577},{0:134219808,1:131072,2:134217728,3:32,4:131104,5:134350880,6:134350848,7:2048,8:134348800,9:134219776,10:133120,11:134348832,12:2080,13:0,14:134217760,15:133152,2147483648:2048,2147483649:134350880,2147483650:134219808,2147483651:134217728,2147483652:134348800,2147483653:133120,2147483654:133152,2147483655:32,2147483656:134217760,2147483657:2080,2147483658:131104,2147483659:134350848,2147483660:0,2147483661:134348832,2147483662:134219776,2147483663:131072,16:133152,17:134350848,18:32,19:2048,20:134219776,21:134217760,22:134348832,23:131072,24:0,25:131104,26:134348800,27:134219808,28:134350880,29:133120,30:2080,31:134217728,2147483664:131072,2147483665:2048,2147483666:134348832,2147483667:133152,2147483668:32,2147483669:134348800,2147483670:134217728,2147483671:134219808,2147483672:134350880,2147483673:134217760,2147483674:134219776,2147483675:0,2147483676:133120,2147483677:2080,2147483678:131104,2147483679:134350848}],k=[4160749569,528482304,33030144,2064384,129024,8064,504,2147483679],P=g.DES=p.extend({_doReset:function _doReset(){for(var r=this._key.words,i=[],o=0;o<56;o++){var u=y[o]-1;i[o]=r[u>>>5]>>>31-u%32&1}for(var p=this._subKeys=[],g=0;g<16;g++){var x=p[g]=[],k=_[g];for(o=0;o<24;o++)x[o/6|0]|=i[(w[o]-1+k)%28]<<31-o%6,x[4+(o/6|0)]|=i[28+(w[o+24]-1+k)%28]<<31-o%6;for(x[0]=x[0]<<1|x[0]>>>31,o=1;o<7;o++)x[o]=x[o]>>>4*(o-1)+3;x[7]=x[7]<<5|x[7]>>>27}var P=this._invSubKeys=[];for(o=0;o<16;o++)P[o]=p[15-o]},encryptBlock:function encryptBlock(r,i){this._doCryptBlock(r,i,this._subKeys)},decryptBlock:function decryptBlock(r,i){this._doCryptBlock(r,i,this._invSubKeys)},_doCryptBlock:function _doCryptBlock(r,i,o){this._lBlock=r[i],this._rBlock=r[i+1],exchangeLR.call(this,4,252645135),exchangeLR.call(this,16,65535),exchangeRL.call(this,2,858993459),exchangeRL.call(this,8,16711935),exchangeLR.call(this,1,1431655765);for(var u=0;u<16;u++){for(var p=o[u],g=this._lBlock,y=this._rBlock,w=0,_=0;_<8;_++)w|=x[_][((y^p[_])&k[_])>>>0];this._lBlock=y,this._rBlock=g^w}var P=this._lBlock;this._lBlock=this._rBlock,this._rBlock=P,exchangeLR.call(this,1,1431655765),exchangeRL.call(this,8,16711935),exchangeRL.call(this,2,858993459),exchangeLR.call(this,16,65535),exchangeLR.call(this,4,252645135),r[i]=this._lBlock,r[i+1]=this._rBlock},keySize:2,ivSize:2,blockSize:2});function exchangeLR(r,i){var o=(this._lBlock>>>r^this._rBlock)&i;this._rBlock^=o,this._lBlock^=o<<r}function exchangeRL(r,i){var o=(this._rBlock>>>r^this._lBlock)&i;this._lBlock^=o,this._rBlock^=o<<r}r.DES=p._createHelper(P);var O=g.TripleDES=p.extend({_doReset:function _doReset(){var r=this._key.words;if(2!==r.length&&4!==r.length&&r.length<6)throw new Error("Invalid key length - 3DES requires the key length to be 64, 128, 192 or >192.");var i=r.slice(0,2),u=r.length<4?r.slice(0,2):r.slice(2,4),p=r.length<6?r.slice(0,2):r.slice(4,6);this._des1=P.createEncryptor(o.create(i)),this._des2=P.createEncryptor(o.create(u)),this._des3=P.createEncryptor(o.create(p))},encryptBlock:function encryptBlock(r,i){this._des1.encryptBlock(r,i),this._des2.decryptBlock(r,i),this._des3.encryptBlock(r,i)},decryptBlock:function decryptBlock(r,i){this._des3.decryptBlock(r,i),this._des2.encryptBlock(r,i),this._des1.decryptBlock(r,i)},keySize:6,ivSize:2,blockSize:2});r.TripleDES=p._createHelper(O)}(),u.TripleDES)},2601:function(r,i,o){"use strict";var u;o(7042),r.exports=(u=o(757),function(r){var i=u,o=i.lib,p=o.Base,g=o.WordArray,y=i.x64={};y.Word=p.extend({init:function init(r,i){this.high=r,this.low=i}}),y.WordArray=p.extend({init:function init(i,o){i=this.words=i||[],this.sigBytes=o!=r?o:8*i.length},toX32:function toX32(){for(var r=this.words,i=r.length,o=[],u=0;u<i;u++){var p=r[u];o.push(p.high),o.push(p.low)}return g.create(o,this.sigBytes)},clone:function clone(){for(var clone=p.clone.call(this),r=clone.words=this.words.slice(0),i=r.length,o=0;o<i;o++)r[o]=r[o].clone();return clone}})}(),u)},9811:function(r,i,o){"use strict";function _createForOfIteratorHelperLoose(r,i){var o="undefined"!=typeof Symbol&&r[Symbol.iterator]||r["@@iterator"];if(o)return(o=o.call(r)).next.bind(o);if(Array.isArray(r)||(o=function _unsupportedIterableToArray(r,i){if(!r)return;if("string"==typeof r)return _arrayLikeToArray(r,i);var o=Object.prototype.toString.call(r).slice(8,-1);"Object"===o&&r.constructor&&(o=r.constructor.name);if("Map"===o||"Set"===o)return Array.from(r);if("Arguments"===o||/^(?:Ui|I)nt(?:8|16|32)(?:Clamped)?Array$/.test(o))return _arrayLikeToArray(r,i)}(r))||i&&r&&"number"==typeof r.length){o&&(r=o);var u=0;return function(){return u>=r.length?{done:!0}:{done:!1,value:r[u++]}}}throw new TypeError("Invalid attempt to iterate non-iterable instance.\nIn order to be iterable, non-array objects must have a [Symbol.iterator]() method.")}function _arrayLikeToArray(r,i){(null==i||i>r.length)&&(i=r.length);for(var o=0,u=new Array(i);o<i;o++)u[o]=r[o];return u}function _regeneratorRuntime(){_regeneratorRuntime=function _regeneratorRuntime(){return r};var r={},i=Object.prototype,o=i.hasOwnProperty,u=Object.defineProperty||function(r,i,o){r[i]=o.value},p="function"==typeof Symbol?Symbol:{},g=p.iterator||"@@iterator",y=p.asyncIterator||"@@asyncIterator",w=p.toStringTag||"@@toStringTag";function define(r,i,o){return Object.defineProperty(r,i,{value:o,enumerable:!0,configurable:!0,writable:!0}),r[i]}try{define({},"")}catch(r){define=function define(r,i,o){return r[i]=o}}function wrap(r,i,o,p){var g=i&&i.prototype instanceof Generator?i:Generator,y=Object.create(g.prototype),w=new Context(p||[]);return u(y,"_invoke",{value:makeInvokeMethod(r,o,w)}),y}function tryCatch(r,i,o){try{return{type:"normal",arg:r.call(i,o)}}catch(r){return{type:"throw",arg:r}}}r.wrap=wrap;var _={};function Generator(){}function GeneratorFunction(){}function GeneratorFunctionPrototype(){}var x={};define(x,g,(function(){return this}));var k=Object.getPrototypeOf,P=k&&k(k(values([])));P&&P!==i&&o.call(P,g)&&(x=P);var O=GeneratorFunctionPrototype.prototype=Generator.prototype=Object.create(x);function defineIteratorMethods(r){["next","throw","return"].forEach((function(i){define(r,i,(function(r){return this._invoke(i,r)}))}))}function AsyncIterator(r,i){function invoke(u,p,g,y){var w=tryCatch(r[u],r,p);if("throw"!==w.type){var _=w.arg,x=_.value;return x&&"object"==typeof x&&o.call(x,"__await")?i.resolve(x.__await).then((function(r){invoke("next",r,g,y)}),(function(r){invoke("throw",r,g,y)})):i.resolve(x).then((function(r){_.value=r,g(_)}),(function(r){return invoke("throw",r,g,y)}))}y(w.arg)}var p;u(this,"_invoke",{value:function value(r,o){function callInvokeWithMethodAndArg(){return new i((function(i,u){invoke(r,o,i,u)}))}return p=p?p.then(callInvokeWithMethodAndArg,callInvokeWithMethodAndArg):callInvokeWithMethodAndArg()}})}function makeInvokeMethod(r,i,o){var u="suspendedStart";return function(p,g){if("executing"===u)throw new Error("Generator is already running");if("completed"===u){if("throw"===p)throw g;return doneResult()}for(o.method=p,o.arg=g;;){var y=o.delegate;if(y){var w=maybeInvokeDelegate(y,o);if(w){if(w===_)continue;return w}}if("next"===o.method)o.sent=o._sent=o.arg;else if("throw"===o.method){if("suspendedStart"===u)throw u="completed",o.arg;o.dispatchException(o.arg)}else"return"===o.method&&o.abrupt("return",o.arg);u="executing";var x=tryCatch(r,i,o);if("normal"===x.type){if(u=o.done?"completed":"suspendedYield",x.arg===_)continue;return{value:x.arg,done:o.done}}"throw"===x.type&&(u="completed",o.method="throw",o.arg=x.arg)}}}function maybeInvokeDelegate(r,i){var o=i.method,u=r.iterator[o];if(void 0===u)return i.delegate=null,"throw"===o&&r.iterator.return&&(i.method="return",i.arg=void 0,maybeInvokeDelegate(r,i),"throw"===i.method)||"return"!==o&&(i.method="throw",i.arg=new TypeError("The iterator does not provide a '"+o+"' method")),_;var p=tryCatch(u,r.iterator,i.arg);if("throw"===p.type)return i.method="throw",i.arg=p.arg,i.delegate=null,_;var g=p.arg;return g?g.done?(i[r.resultName]=g.value,i.next=r.nextLoc,"return"!==i.method&&(i.method="next",i.arg=void 0),i.delegate=null,_):g:(i.method="throw",i.arg=new TypeError("iterator result is not an object"),i.delegate=null,_)}function pushTryEntry(r){var i={tryLoc:r[0]};1 in r&&(i.catchLoc=r[1]),2 in r&&(i.finallyLoc=r[2],i.afterLoc=r[3]),this.tryEntries.push(i)}function resetTryEntry(r){var i=r.completion||{};i.type="normal",delete i.arg,r.completion=i}function Context(r){this.tryEntries=[{tryLoc:"root"}],r.forEach(pushTryEntry,this),this.reset(!0)}function values(r){if(r){var i=r[g];if(i)return i.call(r);if("function"==typeof r.next)return r;if(!isNaN(r.length)){var u=-1,p=function next(){for(;++u<r.length;)if(o.call(r,u))return next.value=r[u],next.done=!1,next;return next.value=void 0,next.done=!0,next};return p.next=p}}return{next:doneResult}}function doneResult(){return{value:void 0,done:!0}}return GeneratorFunction.prototype=GeneratorFunctionPrototype,u(O,"constructor",{value:GeneratorFunctionPrototype,configurable:!0}),u(GeneratorFunctionPrototype,"constructor",{value:GeneratorFunction,configurable:!0}),GeneratorFunction.displayName=define(GeneratorFunctionPrototype,w,"GeneratorFunction"),r.isGeneratorFunction=function(r){var i="function"==typeof r&&r.constructor;return!!i&&(i===GeneratorFunction||"GeneratorFunction"===(i.displayName||i.name))},r.mark=function(r){return Object.setPrototypeOf?Object.setPrototypeOf(r,GeneratorFunctionPrototype):(r.__proto__=GeneratorFunctionPrototype,define(r,w,"GeneratorFunction")),r.prototype=Object.create(O),r},r.awrap=function(r){return{__await:r}},defineIteratorMethods(AsyncIterator.prototype),define(AsyncIterator.prototype,y,(function(){return this})),r.AsyncIterator=AsyncIterator,r.async=function(i,o,u,p,g){void 0===g&&(g=Promise);var y=new AsyncIterator(wrap(i,o,u,p),g);return r.isGeneratorFunction(o)?y:y.next().then((function(r){return r.done?r.value:y.next()}))},defineIteratorMethods(O),define(O,w,"Generator"),define(O,g,(function(){return this})),define(O,"toString",(function(){return"[object Generator]"})),r.keys=function(r){var i=Object(r),o=[];for(var u in i)o.push(u);return o.reverse(),function next(){for(;o.length;){var r=o.pop();if(r in i)return next.value=r,next.done=!1,next}return next.done=!0,next}},r.values=values,Context.prototype={constructor:Context,reset:function reset(r){if(this.prev=0,this.next=0,this.sent=this._sent=void 0,this.done=!1,this.delegate=null,this.method="next",this.arg=void 0,this.tryEntries.forEach(resetTryEntry),!r)for(var i in this)"t"===i.charAt(0)&&o.call(this,i)&&!isNaN(+i.slice(1))&&(this[i]=void 0)},stop:function stop(){this.done=!0;var r=this.tryEntries[0].completion;if("throw"===r.type)throw r.arg;return this.rval},dispatchException:function dispatchException(r){if(this.done)throw r;var i=this;function handle(o,u){return g.type="throw",g.arg=r,i.next=o,u&&(i.method="next",i.arg=void 0),!!u}for(var u=this.tryEntries.length-1;u>=0;--u){var p=this.tryEntries[u],g=p.completion;if("root"===p.tryLoc)return handle("end");if(p.tryLoc<=this.prev){var y=o.call(p,"catchLoc"),w=o.call(p,"finallyLoc");if(y&&w){if(this.prev<p.catchLoc)return handle(p.catchLoc,!0);if(this.prev<p.finallyLoc)return handle(p.finallyLoc)}else if(y){if(this.prev<p.catchLoc)return handle(p.catchLoc,!0)}else{if(!w)throw new Error("try statement without catch or finally");if(this.prev<p.finallyLoc)return handle(p.finallyLoc)}}}},abrupt:function abrupt(r,i){for(var u=this.tryEntries.length-1;u>=0;--u){var p=this.tryEntries[u];if(p.tryLoc<=this.prev&&o.call(p,"finallyLoc")&&this.prev<p.finallyLoc){var g=p;break}}g&&("break"===r||"continue"===r)&&g.tryLoc<=i&&i<=g.finallyLoc&&(g=null);var y=g?g.completion:{};return y.type=r,y.arg=i,g?(this.method="next",this.next=g.finallyLoc,_):this.complete(y)},complete:function complete(r,i){if("throw"===r.type)throw r.arg;return"break"===r.type||"continue"===r.type?this.next=r.arg:"return"===r.type?(this.rval=this.arg=r.arg,this.method="return",this.next="end"):"normal"===r.type&&i&&(this.next=i),_},finish:function finish(r){for(var i=this.tryEntries.length-1;i>=0;--i){var o=this.tryEntries[i];if(o.finallyLoc===r)return this.complete(o.completion,o.afterLoc),resetTryEntry(o),_}},catch:function _catch(r){for(var i=this.tryEntries.length-1;i>=0;--i){var o=this.tryEntries[i];if(o.tryLoc===r){var u=o.completion;if("throw"===u.type){var p=u.arg;resetTryEntry(o)}return p}}throw new Error("illegal catch attempt")},delegateYield:function delegateYield(r,i,o){return this.delegate={iterator:values(r),resultName:i,nextLoc:o},"next"===this.method&&(this.arg=void 0),_}},r}o(2443),o(3680),o(3706),o(2703),o(489),o(4747),o(8309),o(8674),o(1038),o(4916),o(4723),o(2165),o(6992),o(1539),o(8783),o(3948),o(2526),o(1817),o(7042);var u=function(){function StateMachine(r){this.stateTable=r.stateTable,this.accepting=r.accepting,this.tags=r.tags}var r=StateMachine.prototype;return r.match=function match(r){var i,o=this;return(i={})[Symbol.iterator]=_regeneratorRuntime().mark((function _callee(){var i,u,p,g,y,w;return _regeneratorRuntime().wrap((function _callee$(_){for(;;)switch(_.prev=_.next){case 0:i=1,u=null,p=null,g=null,y=0;case 5:if(!(y<r.length)){_.next=21;break}if(w=r[y],g=i,0!==(i=o.stateTable[i][w])){_.next=15;break}if(!(null!=u&&null!=p&&p>=u)){_.next=13;break}return _.next=13,[u,p,o.tags[g]];case 13:i=o.stateTable[1][w],u=null;case 15:0!==i&&null==u&&(u=y),o.accepting[i]&&(p=y),0===i&&(i=1);case 18:y++,_.next=5;break;case 21:if(!(null!=u&&null!=p&&p>=u)){_.next=24;break}return _.next=24,[u,p,o.tags[i]];case 24:case"end":return _.stop()}}),_callee)})),i},r.apply=function apply(r,i){for(var o,u=_createForOfIteratorHelperLoose(this.match(r));!(o=u()).done;)for(var p,g=o.value,y=g[0],w=g[1],_=_createForOfIteratorHelperLoose(g[2]);!(p=_()).done;){var x=p.value;"function"==typeof i[x]&&i[x](y,w,r.slice(y,w+1))}},StateMachine}();r.exports=u},8478:function(r,i,o){"use strict";var u=o(8823).Buffer;o(1539),o(8674),o(7042),o(6699);var p=o(3857),g=o(2635);r.exports=function(){function PNG(r){var i;for(this.data=r,this.pos=8,this.palette=[],this.imgData=[],this.transparency={},this.text={};;){var o=this.readUInt32(),p="";for(i=0;i<4;i++)p+=String.fromCharCode(this.data[this.pos++]);switch(p){case"IHDR":this.width=this.readUInt32(),this.height=this.readUInt32(),this.bits=this.data[this.pos++],this.colorType=this.data[this.pos++],this.compressionMethod=this.data[this.pos++],this.filterMethod=this.data[this.pos++],this.interlaceMethod=this.data[this.pos++];break;case"PLTE":this.palette=this.read(o);break;case"IDAT":for(i=0;i<o;i++)this.imgData.push(this.data[this.pos++]);break;case"tRNS":switch(this.transparency={},this.colorType){case 3:this.transparency.indexed=this.read(o);var g=255-this.transparency.indexed.length;if(g>0)for(i=0;i<g;i++)this.transparency.indexed.push(255);break;case 0:this.transparency.grayscale=this.read(o)[0];break;case 2:this.transparency.rgb=this.read(o)}break;case"tEXt":var y=this.read(o),w=y.indexOf(0),_=String.fromCharCode.apply(String,y.slice(0,w));this.text[_]=String.fromCharCode.apply(String,y.slice(w+1));break;case"IEND":switch(this.colorType){case 0:case 3:case 4:this.colors=1;break;case 2:case 6:this.colors=3}this.hasAlphaChannel=[4,6].includes(this.colorType);var x=this.colors+(this.hasAlphaChannel?1:0);switch(this.pixelBitlength=this.bits*x,this.colors){case 1:this.colorSpace="DeviceGray";break;case 3:this.colorSpace="DeviceRGB"}return void(this.imgData=new u(this.imgData));default:this.pos+=o}if(this.pos+=4,this.pos>this.data.length)throw new Error("Incomplete or corrupt PNG file")}}PNG.decode=function decode(r,i){return p.readFile(r,(function(r,o){return new PNG(o).decode((function(r){return i(r)}))}))},PNG.load=function load(r){return new PNG(p.readFileSync(r))};var r=PNG.prototype;return r.read=function read(r){for(var i=new Array(r),o=0;o<r;o++)i[o]=this.data[this.pos++];return i},r.readUInt32=function readUInt32(){return this.data[this.pos++]<<24|this.data[this.pos++]<<16|this.data[this.pos++]<<8|this.data[this.pos++]},r.readUInt16=function readUInt16(){return this.data[this.pos++]<<8|this.data[this.pos++]},r.decodePixels=function decodePixels(r){var i=this;return g.inflate(this.imgData,(function(o,p){if(o)throw o;var g=i.width,y=i.height,w=i.pixelBitlength/8,_=new u(g*y*w),x=p.length,k=0;function pass(r,i,o,P,O){void 0===O&&(O=!1);for(var I=Math.ceil((g-r)/o),B=Math.ceil((y-i)/P),R=w*I,D=O?_:new u(R*B),N=0,W=0;N<B&&k<x;){var U,j,G,X,K;switch(p[k++]){case 0:for(G=0;G<R;G++)D[W++]=p[k++];break;case 1:for(G=0;G<R;G++)U=p[k++],X=G<w?0:D[W-w],D[W++]=(U+X)%256;break;case 2:for(G=0;G<R;G++)U=p[k++],j=(G-G%w)/w,K=N&&D[(N-1)*R+j*w+G%w],D[W++]=(K+U)%256;break;case 3:for(G=0;G<R;G++)U=p[k++],j=(G-G%w)/w,X=G<w?0:D[W-w],K=N&&D[(N-1)*R+j*w+G%w],D[W++]=(U+Math.floor((X+K)/2))%256;break;case 4:for(G=0;G<R;G++){var Y,J;U=p[k++],j=(G-G%w)/w,X=G<w?0:D[W-w],0===N?K=J=0:(K=D[(N-1)*R+j*w+G%w],J=j&&D[(N-1)*R+(j-1)*w+G%w]);var $=X+K-J,ee=Math.abs($-X),te=Math.abs($-K),re=Math.abs($-J);Y=ee<=te&&ee<=re?X:te<=re?K:J,D[W++]=(U+Y)%256}break;default:throw new Error("Invalid filter algorithm: "+p[k-1])}if(!O){var ne=((i+N*P)*g+r)*w,ie=N*R;for(G=0;G<I;G++){for(var oe=0;oe<w;oe++)_[ne++]=D[ie++];ne+=(o-1)*w}}N++}}return 1===i.interlaceMethod?(pass(0,0,8,8),pass(4,0,8,8),pass(0,4,4,8),pass(2,0,4,4),pass(0,2,2,4),pass(1,0,2,2),pass(0,1,1,2)):pass(0,0,1,1,!0),r(_)}))},r.decodePalette=function decodePalette(){for(var r=this.palette,i=r.length,o=this.transparency.indexed||[],p=new u(o.length+i),g=0,y=0,w=0;w<i;w+=3){var _;p[g++]=r[w],p[g++]=r[w+1],p[g++]=r[w+2],p[g++]=null!=(_=o[y++])?_:255}return p},r.copyToImageData=function copyToImageData(r,i){var o,u,p=this.colors,g=null,y=this.hasAlphaChannel;this.palette.length&&(g=this._decodedPalette||(this._decodedPalette=this.decodePalette()),p=4,y=!0);var w=r.data||r,_=w.length,x=g||i,k=o=0;if(1===p)for(;k<_;){u=g?4*i[k/4]:o;var P=x[u++];w[k++]=P,w[k++]=P,w[k++]=P,w[k++]=y?x[u++]:255,o=u}else for(;k<_;)u=g?4*i[k/4]:o,w[k++]=x[u++],w[k++]=x[u++],w[k++]=x[u++],w[k++]=y?x[u++]:255,o=u},r.decode=function decode(r){var i=this,o=new u(this.width*this.height*4);return this.decodePixels((function(u){return i.copyToImageData(o,u),r(o)}))},PNG}()},7103:function(r,i,o){"use strict";var u=o(4155);o(8145),o(6992),o(1539),o(2472),o(2990),o(8927),o(3105),o(5035),o(4345),o(7174),o(2846),o(4731),o(7209),o(6319),o(8867),o(7789),o(3739),o(9368),o(4483),o(2056),o(3462),o(678),o(7462),o(3824),o(5021),o(2974),o(5016),o(3290);var p,g=o(8823),y=g.Buffer,w={};for(p in g)g.hasOwnProperty(p)&&"SlowBuffer"!==p&&"Buffer"!==p&&(w[p]=g[p]);var _=w.Buffer={};for(p in y)y.hasOwnProperty(p)&&"allocUnsafe"!==p&&"allocUnsafeSlow"!==p&&(_[p]=y[p]);if(w.Buffer.prototype=y.prototype,_.from&&_.from!==Uint8Array.from||(_.from=function(r,i,o){if("number"==typeof r)throw new TypeError('The "value" argument must not be of type number. Received type '+typeof r);if(r&&void 0===r.length)throw new TypeError("The first argument must be one of type string, Buffer, ArrayBuffer, Array, or Array-like Object. Received type "+typeof r);return y(r,i,o)}),_.alloc||(_.alloc=function(r,i,o){if("number"!=typeof r)throw new TypeError('The "size" argument must be of type number. Received type '+typeof r);if(r<0||r>=2*(1<<30))throw new RangeError('The value "'+r+'" is invalid for option "size"');var u=y(r);return i&&0!==i.length?"string"==typeof o?u.fill(i,o):u.fill(i):u.fill(0),u}),!w.kStringMaxLength)try{w.kStringMaxLength=u.binding("buffer").kStringMaxLength}catch(r){}w.constants||(w.constants={MAX_LENGTH:w.kMaxLength},w.kStringMaxLength&&(w.constants.MAX_STRING_LENGTH=w.kStringMaxLength)),r.exports=w},3361:function(r,i,o){"use strict";function ownKeys(r,i){var o=Object.keys(r);if(Object.getOwnPropertySymbols){var u=Object.getOwnPropertySymbols(r);i&&(u=u.filter((function(i){return Object.getOwnPropertyDescriptor(r,i).enumerable}))),o.push.apply(o,u)}return o}function _defineProperty(r,i,o){return i in r?Object.defineProperty(r,i,{value:o,enumerable:!0,configurable:!0,writable:!0}):r[i]=o,r}function _defineProperties(r,i){for(var o=0;o<i.length;o++){var u=i[o];u.enumerable=u.enumerable||!1,u.configurable=!0,"value"in u&&(u.writable=!0),Object.defineProperty(r,u.key,u)}}o(7941),o(2526),o(7327),o(1539),o(5003),o(4747),o(9337),o(7042);var u=o(8823).Buffer,p=o(9862).inspect,g=p&&p.custom||"inspect";r.exports=function(){function BufferList(){!function _classCallCheck(r,i){if(!(r instanceof i))throw new TypeError("Cannot call a class as a function")}(this,BufferList),this.head=null,this.tail=null,this.length=0}return function _createClass(r,i,o){return i&&_defineProperties(r.prototype,i),o&&_defineProperties(r,o),r}(BufferList,[{key:"push",value:function push(r){var i={data:r,next:null};this.length>0?this.tail.next=i:this.head=i,this.tail=i,++this.length}},{key:"unshift",value:function unshift(r){var i={data:r,next:this.head};0===this.length&&(this.tail=i),this.head=i,++this.length}},{key:"shift",value:function shift(){if(0!==this.length){var r=this.head.data;return 1===this.length?this.head=this.tail=null:this.head=this.head.next,--this.length,r}}},{key:"clear",value:function clear(){this.head=this.tail=null,this.length=0}},{key:"join",value:function join(r){if(0===this.length)return"";for(var i=this.head,o=""+i.data;i=i.next;)o+=r+i.data;return o}},{key:"concat",value:function concat(r){if(0===this.length)return u.alloc(0);for(var i,o,p,g=u.allocUnsafe(r>>>0),y=this.head,w=0;y;)i=y.data,o=g,p=w,u.prototype.copy.call(i,o,p),w+=y.data.length,y=y.next;return g}},{key:"consume",value:function consume(r,i){var o;return r<this.head.data.length?(o=this.head.data.slice(0,r),this.head.data=this.head.data.slice(r)):o=r===this.head.data.length?this.shift():i?this._getString(r):this._getBuffer(r),o}},{key:"first",value:function first(){return this.head.data}},{key:"_getString",value:function _getString(r){var i=this.head,o=1,u=i.data;for(r-=u.length;i=i.next;){var p=i.data,g=r>p.length?p.length:r;if(g===p.length?u+=p:u+=p.slice(0,r),0===(r-=g)){g===p.length?(++o,i.next?this.head=i.next:this.head=this.tail=null):(this.head=i,i.data=p.slice(g));break}++o}return this.length-=o,u}},{key:"_getBuffer",value:function _getBuffer(r){var i=u.allocUnsafe(r),o=this.head,p=1;for(o.data.copy(i),r-=o.data.length;o=o.next;){var g=o.data,y=r>g.length?g.length:r;if(g.copy(i,i.length-r,0,y),0===(r-=y)){y===g.length?(++p,o.next?this.head=o.next:this.head=this.tail=null):(this.head=o,o.data=g.slice(y));break}++p}return this.length-=p,i}},{key:g,value:function value(r,i){return p(this,function _objectSpread(r){for(var i=1;i<arguments.length;i++){var o=null!=arguments[i]?arguments[i]:{};i%2?ownKeys(Object(o),!0).forEach((function(i){_defineProperty(r,i,o[i])})):Object.getOwnPropertyDescriptors?Object.defineProperties(r,Object.getOwnPropertyDescriptors(o)):ownKeys(Object(o)).forEach((function(i){Object.defineProperty(r,i,Object.getOwnPropertyDescriptor(o,i))}))}return r}({},i,{depth:0,customInspect:!1}))}}]),BufferList}()},5219:function(r,i,o){"use strict";var u=o(8823).Buffer;Object.defineProperty(i,"__esModule",{value:!0}),i.default=void 0,o(7941),o(2526),o(7327),o(1539),o(5003),o(4747),o(9337),o(489),o(2419),o(1817),o(2165),o(6992),o(8783),o(3948),o(1038),o(7042),o(8309),o(4916),o(2707),o(2222),o(9600),o(9714),o(5306),o(1249),o(9841),o(4953),o(6977),o(6699),o(5192),o(9653),o(3123),o(4723),o(8734),o(2472),o(2990),o(8927),o(3105),o(5035),o(4345),o(7174),o(2846),o(4731),o(7209),o(6319),o(8867),o(7789),o(3739),o(9368),o(4483),o(2056),o(3462),o(678),o(7462),o(3824),o(5021),o(2974),o(5016),o(7803),o(3290),o(9601),o(3210),o(9254),o(7397),o(8674);var p=_interopRequireDefault(o(2830)),g=_interopRequireDefault(o(2635)),y=_interopRequireDefault(o(5153)),w=_interopRequireDefault(o(1917)),_=o(7187),x=_interopRequireDefault(o(7337)),k=_interopRequireDefault(o(8478));function _interopRequireDefault(r){return r&&r.__esModule?r:{default:r}}var P=o(3857);function _classCallCheck(r,i){if(!(r instanceof i))throw new TypeError("Cannot call a class as a function")}function _defineProperties(r,i){for(var o=0;o<i.length;o++){var u=i[o];u.enumerable=u.enumerable||!1,u.configurable=!0,"value"in u&&(u.writable=!0),Object.defineProperty(r,u.key,u)}}function _createClass(r,i,o){return i&&_defineProperties(r.prototype,i),o&&_defineProperties(r,o),r}function _defineProperty(r,i,o){return i in r?Object.defineProperty(r,i,{value:o,enumerable:!0,configurable:!0,writable:!0}):r[i]=o,r}function ownKeys(r,i){var o=Object.keys(r);if(Object.getOwnPropertySymbols){var u=Object.getOwnPropertySymbols(r);i&&(u=u.filter((function(i){return Object.getOwnPropertyDescriptor(r,i).enumerable}))),o.push.apply(o,u)}return o}function _objectSpread2(r){for(var i=1;i<arguments.length;i++){var o=null!=arguments[i]?arguments[i]:{};i%2?ownKeys(Object(o),!0).forEach((function(i){_defineProperty(r,i,o[i])})):Object.getOwnPropertyDescriptors?Object.defineProperties(r,Object.getOwnPropertyDescriptors(o)):ownKeys(Object(o)).forEach((function(i){Object.defineProperty(r,i,Object.getOwnPropertyDescriptor(o,i))}))}return r}function _inherits(r,i){if("function"!=typeof i&&null!==i)throw new TypeError("Super expression must either be null or a function");r.prototype=Object.create(i&&i.prototype,{constructor:{value:r,writable:!0,configurable:!0}}),i&&_setPrototypeOf(r,i)}function _getPrototypeOf(r){return _getPrototypeOf=Object.setPrototypeOf?Object.getPrototypeOf:function _getPrototypeOf(r){return r.__proto__||Object.getPrototypeOf(r)},_getPrototypeOf(r)}function _setPrototypeOf(r,i){return _setPrototypeOf=Object.setPrototypeOf||function _setPrototypeOf(r,i){return r.__proto__=i,r},_setPrototypeOf(r,i)}function _assertThisInitialized(r){if(void 0===r)throw new ReferenceError("this hasn't been initialised - super() hasn't been called");return r}function _possibleConstructorReturn(r,i){return!i||"object"!=typeof i&&"function"!=typeof i?_assertThisInitialized(r):i}function _createSuper(r){var i=function _isNativeReflectConstruct(){if("undefined"==typeof Reflect||!Reflect.construct)return!1;if(Reflect.construct.sham)return!1;if("function"==typeof Proxy)return!0;try{return Date.prototype.toString.call(Reflect.construct(Date,[],(function(){}))),!0}catch(r){return!1}}();return function _createSuperInternal(){var o,u=_getPrototypeOf(r);if(i){var p=_getPrototypeOf(this).constructor;o=Reflect.construct(u,arguments,p)}else o=u.apply(this,arguments);return _possibleConstructorReturn(this,o)}}function _slicedToArray(r,i){return function _arrayWithHoles(r){if(Array.isArray(r))return r}(r)||function _iterableToArrayLimit(r,i){if("undefined"==typeof Symbol||!(Symbol.iterator in Object(r)))return;var o=[],u=!0,p=!1,g=void 0;try{for(var y,w=r[Symbol.iterator]();!(u=(y=w.next()).done)&&(o.push(y.value),!i||o.length!==i);u=!0);}catch(r){p=!0,g=r}finally{try{u||null==w.return||w.return()}finally{if(p)throw g}}return o}(r,i)||_unsupportedIterableToArray(r,i)||function _nonIterableRest(){throw new TypeError("Invalid attempt to destructure non-iterable instance.\nIn order to be iterable, non-array objects must have a [Symbol.iterator]() method.")}()}function _toConsumableArray(r){return function _arrayWithoutHoles(r){if(Array.isArray(r))return _arrayLikeToArray(r)}(r)||function _iterableToArray(r){if("undefined"!=typeof Symbol&&Symbol.iterator in Object(r))return Array.from(r)}(r)||_unsupportedIterableToArray(r)||function _nonIterableSpread(){throw new TypeError("Invalid attempt to spread non-iterable instance.\nIn order to be iterable, non-array objects must have a [Symbol.iterator]() method.")}()}function _unsupportedIterableToArray(r,i){if(r){if("string"==typeof r)return _arrayLikeToArray(r,i);var o=Object.prototype.toString.call(r).slice(8,-1);return"Object"===o&&r.constructor&&(o=r.constructor.name),"Map"===o||"Set"===o?Array.from(r):"Arguments"===o||/^(?:Ui|I)nt(?:8|16|32)(?:Clamped)?Array$/.test(o)?_arrayLikeToArray(r,i):void 0}}function _arrayLikeToArray(r,i){(null==i||i>r.length)&&(i=r.length);for(var o=0,u=new Array(i);o<i;o++)u[o]=r[o];return u}function _createForOfIteratorHelper(r,i){var o;if("undefined"==typeof Symbol||null==r[Symbol.iterator]){if(Array.isArray(r)||(o=_unsupportedIterableToArray(r))||i&&r&&"number"==typeof r.length){o&&(r=o);var u=0,p=function F(){};return{s:p,n:function n(){return u>=r.length?{done:!0}:{done:!1,value:r[u++]}},e:function e(r){throw r},f:p}}throw new TypeError("Invalid attempt to iterate non-iterable instance.\nIn order to be iterable, non-array objects must have a [Symbol.iterator]() method.")}var g,y=!0,w=!1;return{s:function s(){o=r[Symbol.iterator]()},n:function n(){var r=o.next();return y=r.done,r},e:function e(r){w=!0,g=r},f:function f(){try{y||null==o.return||o.return()}finally{if(w)throw g}}}}var O=function(){function PDFAbstractReference(){_classCallCheck(this,PDFAbstractReference)}return _createClass(PDFAbstractReference,[{key:"toString",value:function toString(){throw new Error("Must be implemented by subclasses")}}]),PDFAbstractReference}(),I=function(){function PDFTree(){var r=arguments.length>0&&void 0!==arguments[0]?arguments[0]:{};_classCallCheck(this,PDFTree),this._items={},this.limits="boolean"!=typeof r.limits||r.limits}return _createClass(PDFTree,[{key:"add",value:function add(r,i){return this._items[r]=i}},{key:"get",value:function get(r){return this._items[r]}},{key:"toString",value:function toString(){var r=this,i=Object.keys(this._items).sort((function(i,o){return r._compareKeys(i,o)})),o=["<<"];if(this.limits&&i.length>1){var u=i[0],p=i[i.length-1];o.push("  /Limits ".concat(W.convert([this._dataForKey(u),this._dataForKey(p)])))}o.push("  /".concat(this._keysName()," ["));var g,y=_createForOfIteratorHelper(i);try{for(y.s();!(g=y.n()).done;){var w=g.value;o.push("    ".concat(W.convert(this._dataForKey(w))," ").concat(W.convert(this._items[w])))}}catch(r){y.e(r)}finally{y.f()}return o.push("]"),o.push(">>"),o.join("\n")}},{key:"_compareKeys",value:function _compareKeys(){throw new Error("Must be implemented by subclasses")}},{key:"_keysName",value:function _keysName(){throw new Error("Must be implemented by subclasses")}},{key:"_dataForKey",value:function _dataForKey(){throw new Error("Must be implemented by subclasses")}}]),PDFTree}(),B=function pad(r,i){return(Array(i+1).join("0")+r).slice(-i)},R=/[\n\r\t\b\f()\\]/g,D={"\n":"\\n","\r":"\\r","\t":"\\t","\b":"\\b","\f":"\\f","\\":"\\\\","(":"\\(",")":"\\)"},N=function swapBytes(r){var i=r.length;if(1&i)throw new Error("Buffer length must be even");for(var o=0,u=i-1;o<u;o+=2){var p=r[o];r[o]=r[o+1],r[o+1]=p}return r},W=function(){function PDFObject(){_classCallCheck(this,PDFObject)}return _createClass(PDFObject,null,[{key:"convert",value:function convert(r){var i=arguments.length>1&&void 0!==arguments[1]?arguments[1]:null;if("string"==typeof r)return"/".concat(r);if(r instanceof String){for(var o,p=r,g=!1,y=0,w=p.length;y<w;y++)if(p.charCodeAt(y)>127){g=!0;break}return o=g?N(u.from("\ufeff".concat(p),"utf16le")):u.from(p.valueOf(),"ascii"),p=(p=i?i(o).toString("binary"):o.toString("binary")).replace(R,(function(r){return D[r]})),"(".concat(p,")")}if(u.isBuffer(r))return"<".concat(r.toString("hex"),">");if(r instanceof O||r instanceof I)return r.toString();if(r instanceof Date){var _="D:".concat(B(r.getUTCFullYear(),4))+B(r.getUTCMonth()+1,2)+B(r.getUTCDate(),2)+B(r.getUTCHours(),2)+B(r.getUTCMinutes(),2)+B(r.getUTCSeconds(),2)+"Z";return i&&(_=(_=i(u.from(_,"ascii")).toString("binary")).replace(R,(function(r){return D[r]}))),"(".concat(_,")")}if(Array.isArray(r)){var x=r.map((function(r){return PDFObject.convert(r,i)})).join(" ");return"[".concat(x,"]")}if("[object Object]"==={}.toString.call(r)){var k=["<<"];for(var P in r){var W=r[P];k.push("/".concat(P," ").concat(PDFObject.convert(W,i)))}return k.push(">>"),k.join("\n")}return"number"==typeof r?PDFObject.number(r):"".concat(r)}},{key:"number",value:function number(r){if(r>-1e21&&r<1e21)return Math.round(1e6*r)/1e6;throw new Error("unsupported number: ".concat(r))}}]),PDFObject}(),U=function(r){_inherits(PDFReference,r);var i=_createSuper(PDFReference);function PDFReference(r,o){var u,p=arguments.length>2&&void 0!==arguments[2]?arguments[2]:{};return _classCallCheck(this,PDFReference),(u=i.call(this)).document=r,u.id=o,u.data=p,u.gen=0,u.compress=u.document.compress&&!u.data.Filter,u.uncompressedLength=0,u.buffer=[],u}return _createClass(PDFReference,[{key:"write",value:function write(r){if(u.isBuffer(r)||(r=u.from(r+"\n","binary")),this.uncompressedLength+=r.length,null==this.data.Length&&(this.data.Length=0),this.buffer.push(r),this.data.Length+=r.length,this.compress)return this.data.Filter="FlateDecode"}},{key:"end",value:function end(r){return r&&this.write(r),this.finalize()}},{key:"finalize",value:function finalize(){this.offset=this.document._offset;var r=this.document._security?this.document._security.getEncryptFn(this.id,this.gen):null;this.buffer.length&&(this.buffer=u.concat(this.buffer),this.compress&&(this.buffer=g.default.deflateSync(this.buffer)),r&&(this.buffer=r(this.buffer)),this.data.Length=this.buffer.length),this.document._write("".concat(this.id," ").concat(this.gen," obj")),this.document._write(W.convert(this.data,r)),this.buffer.length&&(this.document._write("stream"),this.document._write(this.buffer),this.buffer=[],this.document._write("\nendstream")),this.document._write("endobj"),this.document._refEnd(this)}},{key:"toString",value:function toString(){return"".concat(this.id," ").concat(this.gen," R")}}]),PDFReference}(O),j={top:72,left:72,bottom:72,right:72},G={"4A0":[4767.87,6740.79],"2A0":[3370.39,4767.87],A0:[2383.94,3370.39],A1:[1683.78,2383.94],A2:[1190.55,1683.78],A3:[841.89,1190.55],A4:[595.28,841.89],A5:[419.53,595.28],A6:[297.64,419.53],A7:[209.76,297.64],A8:[147.4,209.76],A9:[104.88,147.4],A10:[73.7,104.88],B0:[2834.65,4008.19],B1:[2004.09,2834.65],B2:[1417.32,2004.09],B3:[1000.63,1417.32],B4:[708.66,1000.63],B5:[498.9,708.66],B6:[354.33,498.9],B7:[249.45,354.33],B8:[175.75,249.45],B9:[124.72,175.75],B10:[87.87,124.72],C0:[2599.37,3676.54],C1:[1836.85,2599.37],C2:[1298.27,1836.85],C3:[918.43,1298.27],C4:[649.13,918.43],C5:[459.21,649.13],C6:[323.15,459.21],C7:[229.61,323.15],C8:[161.57,229.61],C9:[113.39,161.57],C10:[79.37,113.39],RA0:[2437.8,3458.27],RA1:[1729.13,2437.8],RA2:[1218.9,1729.13],RA3:[864.57,1218.9],RA4:[609.45,864.57],SRA0:[2551.18,3628.35],SRA1:[1814.17,2551.18],SRA2:[1275.59,1814.17],SRA3:[907.09,1275.59],SRA4:[637.8,907.09],EXECUTIVE:[521.86,756],FOLIO:[612,936],LEGAL:[612,1008],LETTER:[612,792],TABLOID:[792,1224]},X=function(){function PDFPage(r){var i=arguments.length>1&&void 0!==arguments[1]?arguments[1]:{};_classCallCheck(this,PDFPage),this.document=r,this.size=i.size||"letter",this.layout=i.layout||"portrait","number"==typeof i.margin?this.margins={top:i.margin,left:i.margin,bottom:i.margin,right:i.margin}:this.margins=i.margins||j;var o=Array.isArray(this.size)?this.size:G[this.size.toUpperCase()];this.width=o["portrait"===this.layout?0:1],this.height=o["portrait"===this.layout?1:0],this.content=this.document.ref(),this.resources=this.document.ref({ProcSet:["PDF","Text","ImageB","ImageC","ImageI"]}),this.dictionary=this.document.ref({Type:"Page",Parent:this.document._root.data.Pages,MediaBox:[0,0,this.width,this.height],Contents:this.content,Resources:this.resources}),this.markings=[]}return _createClass(PDFPage,[{key:"maxY",value:function maxY(){return this.height-this.margins.bottom}},{key:"write",value:function write(r){return this.content.write(r)}},{key:"end",value:function end(){return this.dictionary.end(),this.resources.end(),this.content.end()}},{key:"fonts",get:function get(){var r=this.resources.data;return null!=r.Font?r.Font:r.Font={}}},{key:"xobjects",get:function get(){var r=this.resources.data;return null!=r.XObject?r.XObject:r.XObject={}}},{key:"ext_gstates",get:function get(){var r=this.resources.data;return null!=r.ExtGState?r.ExtGState:r.ExtGState={}}},{key:"patterns",get:function get(){var r=this.resources.data;return null!=r.Pattern?r.Pattern:r.Pattern={}}},{key:"colorSpaces",get:function get(){var r=this.resources.data;return r.ColorSpace||(r.ColorSpace={})}},{key:"annotations",get:function get(){var r=this.dictionary.data;return null!=r.Annots?r.Annots:r.Annots=[]}},{key:"structParentTreeKey",get:function get(){var r=this.dictionary.data;return null!=r.StructParents?r.StructParents:r.StructParents=this.document.createStructParentTreeNextKey()}}]),PDFPage}(),K=function(r){_inherits(PDFNameTree,r);var i=_createSuper(PDFNameTree);function PDFNameTree(){return _classCallCheck(this,PDFNameTree),i.apply(this,arguments)}return _createClass(PDFNameTree,[{key:"_compareKeys",value:function _compareKeys(r,i){return r.localeCompare(i)}},{key:"_keysName",value:function _keysName(){return"Names"}},{key:"_dataForKey",value:function _dataForKey(r){return new String(r)}}]),PDFNameTree}(I);function inRange(r,i){if(r<i[0])return!1;for(var o=0,u=i.length/2;o<=u;){var p=Math.floor((o+u)/2),g=2*p;if(r>=i[g]&&r<=i[g+1])return!0;r>i[g+1]?o=p+1:u=p-1}return!1}var Y=[545,545,564,591,686,687,751,767,848,863,880,883,886,889,891,893,895,899,907,907,909,909,930,930,975,975,1015,1023,1159,1159,1231,1231,1270,1271,1274,1279,1296,1328,1367,1368,1376,1376,1416,1416,1419,1424,1442,1442,1466,1466,1477,1487,1515,1519,1525,1547,1549,1562,1564,1566,1568,1568,1595,1599,1622,1631,1774,1775,1791,1791,1806,1806,1837,1839,1867,1919,1970,2304,2308,2308,2362,2363,2382,2383,2389,2391,2417,2432,2436,2436,2445,2446,2449,2450,2473,2473,2481,2481,2483,2485,2490,2491,2493,2493,2501,2502,2505,2506,2510,2518,2520,2523,2526,2526,2532,2533,2555,2561,2563,2564,2571,2574,2577,2578,2601,2601,2609,2609,2612,2612,2615,2615,2618,2619,2621,2621,2627,2630,2633,2634,2638,2648,2653,2653,2655,2661,2677,2688,2692,2692,2700,2700,2702,2702,2706,2706,2729,2729,2737,2737,2740,2740,2746,2747,2758,2758,2762,2762,2766,2767,2769,2783,2785,2789,2800,2816,2820,2820,2829,2830,2833,2834,2857,2857,2865,2865,2868,2869,2874,2875,2884,2886,2889,2890,2894,2901,2904,2907,2910,2910,2914,2917,2929,2945,2948,2948,2955,2957,2961,2961,2966,2968,2971,2971,2973,2973,2976,2978,2981,2983,2987,2989,2998,2998,3002,3005,3011,3013,3017,3017,3022,3030,3032,3046,3059,3072,3076,3076,3085,3085,3089,3089,3113,3113,3124,3124,3130,3133,3141,3141,3145,3145,3150,3156,3159,3167,3170,3173,3184,3201,3204,3204,3213,3213,3217,3217,3241,3241,3252,3252,3258,3261,3269,3269,3273,3273,3278,3284,3287,3293,3295,3295,3298,3301,3312,3329,3332,3332,3341,3341,3345,3345,3369,3369,3386,3389,3396,3397,3401,3401,3406,3414,3416,3423,3426,3429,3440,3457,3460,3460,3479,3481,3506,3506,3516,3516,3518,3519,3527,3529,3531,3534,3541,3541,3543,3543,3552,3569,3573,3584,3643,3646,3676,3712,3715,3715,3717,3718,3721,3721,3723,3724,3726,3731,3736,3736,3744,3744,3748,3748,3750,3750,3752,3753,3756,3756,3770,3770,3774,3775,3781,3781,3783,3783,3790,3791,3802,3803,3806,3839,3912,3912,3947,3952,3980,3983,3992,3992,4029,4029,4045,4046,4048,4095,4130,4130,4136,4136,4139,4139,4147,4149,4154,4159,4186,4255,4294,4303,4345,4346,4348,4351,4442,4446,4515,4519,4602,4607,4615,4615,4679,4679,4681,4681,4686,4687,4695,4695,4697,4697,4702,4703,4743,4743,4745,4745,4750,4751,4783,4783,4785,4785,4790,4791,4799,4799,4801,4801,4806,4807,4815,4815,4823,4823,4847,4847,4879,4879,4881,4881,4886,4887,4895,4895,4935,4935,4955,4960,4989,5023,5109,5120,5751,5759,5789,5791,5873,5887,5901,5901,5909,5919,5943,5951,5972,5983,5997,5997,6001,6001,6004,6015,6109,6111,6122,6143,6159,6159,6170,6175,6264,6271,6314,7679,7836,7839,7930,7935,7958,7959,7966,7967,8006,8007,8014,8015,8024,8024,8026,8026,8028,8028,8030,8030,8062,8063,8117,8117,8133,8133,8148,8149,8156,8156,8176,8177,8181,8181,8191,8191,8275,8278,8280,8286,8292,8297,8306,8307,8335,8351,8370,8399,8427,8447,8507,8508,8524,8530,8580,8591,9167,9215,9255,9279,9291,9311,9471,9471,9748,9749,9752,9752,9854,9855,9866,9984,9989,9989,9994,9995,10024,10024,10060,10060,10062,10062,10067,10069,10071,10071,10079,10080,10133,10135,10160,10160,10175,10191,10220,10223,11008,11903,11930,11930,12020,12031,12246,12271,12284,12287,12352,12352,12439,12440,12544,12548,12589,12592,12687,12687,12728,12783,12829,12831,12868,12880,12924,12926,13004,13007,13055,13055,13175,13178,13278,13279,13311,13311,19894,19967,40870,40959,42125,42127,42183,44031,55204,55295,64046,64047,64107,64255,64263,64274,64280,64284,64311,64311,64317,64317,64319,64319,64322,64322,64325,64325,64434,64466,64832,64847,64912,64913,64968,64975,65021,65023,65040,65055,65060,65071,65095,65096,65107,65107,65127,65127,65132,65135,65141,65141,65277,65278,65280,65280,65471,65473,65480,65481,65488,65489,65496,65497,65501,65503,65511,65511,65519,65528,65536,66303,66335,66335,66340,66351,66379,66559,66598,66599,66638,118783,119030,119039,119079,119081,119262,119807,119893,119893,119965,119965,119968,119969,119971,119972,119975,119976,119981,119981,119994,119994,119996,119996,120001,120001,120004,120004,120070,120070,120075,120076,120085,120085,120093,120093,120122,120122,120127,120127,120133,120133,120135,120137,120145,120145,120484,120487,120778,120781,120832,131069,173783,194559,195102,196605,196608,262141,262144,327677,327680,393213,393216,458749,458752,524285,524288,589821,589824,655357,655360,720893,720896,786429,786432,851965,851968,917501,917504,917504,917506,917535,917632,983037],J=function isUnassignedCodePoint(r){return inRange(r,Y)},$=[173,173,847,847,6150,6150,6155,6155,6156,6156,6157,6157,8203,8203,8204,8204,8205,8205,8288,8288,65024,65024,65025,65025,65026,65026,65027,65027,65028,65028,65029,65029,65030,65030,65031,65031,65032,65032,65033,65033,65034,65034,65035,65035,65036,65036,65037,65037,65038,65038,65039,65039,65279,65279],ee=[160,160,5760,5760,8192,8192,8193,8193,8194,8194,8195,8195,8196,8196,8197,8197,8198,8198,8199,8199,8200,8200,8201,8201,8202,8202,8203,8203,8239,8239,8287,8287,12288,12288],te=[128,159,1757,1757,1807,1807,6158,6158,8204,8204,8205,8205,8232,8232,8233,8233,8288,8288,8289,8289,8290,8290,8291,8291,8298,8303,65279,65279,65529,65532,119155,119162],re=[64976,65007,65534,65535,131070,131071,196606,196607,262142,262143,327678,327679,393214,393215,458750,458751,524286,524287,589822,589823,655358,655359,720894,720895,786430,786431,851966,851967,917502,917503,983038,983039,1114110,1114111],ne=[0,31,127,127,832,832,833,833,8206,8206,8207,8207,8234,8234,8235,8235,8236,8236,8237,8237,8238,8238,8298,8298,8299,8299,8300,8300,8301,8301,8302,8302,8303,8303,12272,12283,55296,57343,57344,63743,65529,65529,65530,65530,65531,65531,65532,65532,65533,65533,917505,917505,917536,917631,983040,1048573,1048576,1114109],ie=function isProhibitedCharacter(r){return inRange(r,ee)||inRange(r,ne)||inRange(r,te)||inRange(r,re)},oe=[1470,1470,1472,1472,1475,1475,1488,1514,1520,1524,1563,1563,1567,1567,1569,1594,1600,1610,1645,1647,1649,1749,1757,1757,1765,1766,1786,1790,1792,1805,1808,1808,1810,1836,1920,1957,1969,1969,8207,8207,64285,64285,64287,64296,64298,64310,64312,64316,64318,64318,64320,64321,64323,64324,64326,64433,64467,64829,64848,64911,64914,64967,65008,65020,65136,65140,65142,65276],ae=function isBidirectionalRAL(r){return inRange(r,oe)},se=[65,90,97,122,170,170,181,181,186,186,192,214,216,246,248,544,546,563,592,685,688,696,699,705,720,721,736,740,750,750,890,890,902,902,904,906,908,908,910,929,931,974,976,1013,1024,1154,1162,1230,1232,1269,1272,1273,1280,1295,1329,1366,1369,1375,1377,1415,1417,1417,2307,2307,2309,2361,2365,2368,2377,2380,2384,2384,2392,2401,2404,2416,2434,2435,2437,2444,2447,2448,2451,2472,2474,2480,2482,2482,2486,2489,2494,2496,2503,2504,2507,2508,2519,2519,2524,2525,2527,2529,2534,2545,2548,2554,2565,2570,2575,2576,2579,2600,2602,2608,2610,2611,2613,2614,2616,2617,2622,2624,2649,2652,2654,2654,2662,2671,2674,2676,2691,2691,2693,2699,2701,2701,2703,2705,2707,2728,2730,2736,2738,2739,2741,2745,2749,2752,2761,2761,2763,2764,2768,2768,2784,2784,2790,2799,2818,2819,2821,2828,2831,2832,2835,2856,2858,2864,2866,2867,2870,2873,2877,2878,2880,2880,2887,2888,2891,2892,2903,2903,2908,2909,2911,2913,2918,2928,2947,2947,2949,2954,2958,2960,2962,2965,2969,2970,2972,2972,2974,2975,2979,2980,2984,2986,2990,2997,2999,3001,3006,3007,3009,3010,3014,3016,3018,3020,3031,3031,3047,3058,3073,3075,3077,3084,3086,3088,3090,3112,3114,3123,3125,3129,3137,3140,3168,3169,3174,3183,3202,3203,3205,3212,3214,3216,3218,3240,3242,3251,3253,3257,3262,3262,3264,3268,3271,3272,3274,3275,3285,3286,3294,3294,3296,3297,3302,3311,3330,3331,3333,3340,3342,3344,3346,3368,3370,3385,3390,3392,3398,3400,3402,3404,3415,3415,3424,3425,3430,3439,3458,3459,3461,3478,3482,3505,3507,3515,3517,3517,3520,3526,3535,3537,3544,3551,3570,3572,3585,3632,3634,3635,3648,3654,3663,3675,3713,3714,3716,3716,3719,3720,3722,3722,3725,3725,3732,3735,3737,3743,3745,3747,3749,3749,3751,3751,3754,3755,3757,3760,3762,3763,3773,3773,3776,3780,3782,3782,3792,3801,3804,3805,3840,3863,3866,3892,3894,3894,3896,3896,3902,3911,3913,3946,3967,3967,3973,3973,3976,3979,4030,4037,4039,4044,4047,4047,4096,4129,4131,4135,4137,4138,4140,4140,4145,4145,4152,4152,4160,4183,4256,4293,4304,4344,4347,4347,4352,4441,4447,4514,4520,4601,4608,4614,4616,4678,4680,4680,4682,4685,4688,4694,4696,4696,4698,4701,4704,4742,4744,4744,4746,4749,4752,4782,4784,4784,4786,4789,4792,4798,4800,4800,4802,4805,4808,4814,4816,4822,4824,4846,4848,4878,4880,4880,4882,4885,4888,4894,4896,4934,4936,4954,4961,4988,5024,5108,5121,5750,5761,5786,5792,5872,5888,5900,5902,5905,5920,5937,5941,5942,5952,5969,5984,5996,5998,6e3,6016,6070,6078,6085,6087,6088,6100,6106,6108,6108,6112,6121,6160,6169,6176,6263,6272,6312,7680,7835,7840,7929,7936,7957,7960,7965,7968,8005,8008,8013,8016,8023,8025,8025,8027,8027,8029,8029,8031,8061,8064,8116,8118,8124,8126,8126,8130,8132,8134,8140,8144,8147,8150,8155,8160,8172,8178,8180,8182,8188,8206,8206,8305,8305,8319,8319,8450,8450,8455,8455,8458,8467,8469,8469,8473,8477,8484,8484,8486,8486,8488,8488,8490,8493,8495,8497,8499,8505,8509,8511,8517,8521,8544,8579,9014,9082,9109,9109,9372,9449,12293,12295,12321,12329,12337,12341,12344,12348,12353,12438,12445,12447,12449,12538,12540,12543,12549,12588,12593,12686,12688,12727,12784,12828,12832,12867,12896,12923,12927,12976,12992,13003,13008,13054,13056,13174,13179,13277,13280,13310,13312,19893,19968,40869,40960,42124,44032,55203,55296,64045,64048,64106,64256,64262,64275,64279,65313,65338,65345,65370,65382,65470,65474,65479,65482,65487,65490,65495,65498,65500,66304,66334,66336,66339,66352,66378,66560,66597,66600,66637,118784,119029,119040,119078,119082,119142,119146,119154,119171,119172,119180,119209,119214,119261,119808,119892,119894,119964,119966,119967,119970,119970,119973,119974,119977,119980,119982,119993,119995,119995,119997,12e4,120002,120003,120005,120069,120071,120074,120077,120084,120086,120092,120094,120121,120123,120126,120128,120132,120134,120134,120138,120144,120146,120483,120488,120777,131072,173782,194560,195101,983040,1048573,1048576,1114109],ce=function isBidirectionalL(r){return inRange(r,se)},le=function isNonASCIISpaceCharacter(r){return inRange(r,ee)},ue=function isCommonlyMappedToNothing(r){return inRange(r,$)},fe=function getCodePoint(r){return r.codePointAt(0)},he=function first(r){return r[0]},de=function last(r){return r[r.length-1]};function toCodePoints(r){for(var i=[],o=r.length,u=0;u<o;u+=1){var p=r.charCodeAt(u);if(p>=55296&&p<=56319&&o>u+1){var g=r.charCodeAt(u+1);if(g>=56320&&g<=57343){i.push(1024*(p-55296)+g-56320+65536),u+=1;continue}}i.push(p)}return i}function saslprep(r){var i=arguments.length>1&&void 0!==arguments[1]?arguments[1]:{};if("string"!=typeof r)throw new TypeError("Expected string.");if(0===r.length)return"";var o=toCodePoints(r).map((function(r){return le(r)?32:r})).filter((function(r){return!ue(r)})),u=String.fromCodePoint.apply(null,o).normalize("NFKC"),p=toCodePoints(u),g=p.some(ie);if(g)throw new Error("Prohibited character, see https://tools.ietf.org/html/rfc4013#section-2.3");if(!0!==i.allowUnassigned){var y=p.some(J);if(y)throw new Error("Unassigned code point, see https://tools.ietf.org/html/rfc4013#section-2.5")}var w=p.some(ae),_=p.some(ce);if(w&&_)throw new Error("String must not contain RandALCat and LCat at the same time, see https://tools.ietf.org/html/rfc3454#section-6");var x=ae(fe(he(u))),k=ae(fe(de(u)));if(w&&(!x||!k))throw new Error("Bidirectional RandALCat character must be the first and the last character of the string, see https://tools.ietf.org/html/rfc3454#section-6");return u}var pe=function(){function PDFSecurity(r){var i=arguments.length>1&&void 0!==arguments[1]?arguments[1]:{};if(_classCallCheck(this,PDFSecurity),!i.ownerPassword&&!i.userPassword)throw new Error("None of owner password and user password is defined.");this.document=r,this._setupEncryption(i)}return _createClass(PDFSecurity,null,[{key:"generateFileID",value:function generateFileID(){var r=arguments.length>0&&void 0!==arguments[0]?arguments[0]:{},i="".concat(r.CreationDate.getTime(),"\n");for(var o in r)r.hasOwnProperty(o)&&(i+="".concat(o,": ").concat(r[o].valueOf(),"\n"));return wordArrayToBuffer(y.default.MD5(i))}},{key:"generateRandomWordArray",value:function generateRandomWordArray(r){return y.default.lib.WordArray.random(r)}},{key:"create",value:function create(r){var i=arguments.length>1&&void 0!==arguments[1]?arguments[1]:{};return i.ownerPassword||i.userPassword?new PDFSecurity(r,i):null}}]),_createClass(PDFSecurity,[{key:"_setupEncryption",value:function _setupEncryption(r){switch(r.pdfVersion){case"1.4":case"1.5":this.version=2;break;case"1.6":case"1.7":this.version=4;break;case"1.7ext3":this.version=5;break;default:this.version=1}var i={Filter:"Standard"};switch(this.version){case 1:case 2:case 4:this._setupEncryptionV1V2V4(this.version,i,r);break;case 5:this._setupEncryptionV5(i,r)}this.dictionary=this.document.ref(i)}},{key:"_setupEncryptionV1V2V4",value:function _setupEncryptionV1V2V4(r,i,o){var u,p;switch(r){case 1:u=2,this.keyBits=40,p=function getPermissionsR2(){var r=arguments.length>0&&void 0!==arguments[0]?arguments[0]:{},i=-64;r.printing&&(i|=4);r.modifying&&(i|=8);r.copying&&(i|=16);r.annotating&&(i|=32);return i}(o.permissions);break;case 2:u=3,this.keyBits=128,p=getPermissionsR3(o.permissions);break;case 4:u=4,this.keyBits=128,p=getPermissionsR3(o.permissions)}var g,w=processPasswordR2R3R4(o.userPassword),_=o.ownerPassword?processPasswordR2R3R4(o.ownerPassword):w,x=function getOwnerPasswordR2R3R4(r,i,o,u){for(var p=u,g=r>=3?51:1,w=0;w<g;w++)p=y.default.MD5(p);var _=p.clone();_.sigBytes=i/8;var x=o;g=r>=3?20:1;for(var k=0;k<g;k++){for(var P=Math.ceil(_.sigBytes/4),O=0;O<P;O++)_.words[O]=p.words[O]^(k|k<<8|k<<16|k<<24);x=y.default.RC4.encrypt(x,_).ciphertext}return x}(u,this.keyBits,w,_);this.encryptionKey=function getEncryptionKeyR2R3R4(r,i,o,u,p,g){for(var w=u.clone().concat(p).concat(y.default.lib.WordArray.create([lsbFirstWord(g)],4)).concat(y.default.lib.WordArray.create(o)),_=r>=3?51:1,x=0;x<_;x++)(w=y.default.MD5(w)).sigBytes=i/8;return w}(u,this.keyBits,this.document._id,w,x,p),g=2===u?function getUserPasswordR2(r){return y.default.RC4.encrypt(processPasswordR2R3R4(),r).ciphertext}(this.encryptionKey):function getUserPasswordR3R4(r,i){for(var o=i.clone(),u=y.default.MD5(processPasswordR2R3R4().concat(y.default.lib.WordArray.create(r))),p=0;p<20;p++){for(var g=Math.ceil(o.sigBytes/4),w=0;w<g;w++)o.words[w]=i.words[w]^(p|p<<8|p<<16|p<<24);u=y.default.RC4.encrypt(u,o).ciphertext}return u.concat(y.default.lib.WordArray.create(null,16))}(this.document._id,this.encryptionKey),i.V=r,r>=2&&(i.Length=this.keyBits),4===r&&(i.CF={StdCF:{AuthEvent:"DocOpen",CFM:"AESV2",Length:this.keyBits/8}},i.StmF="StdCF",i.StrF="StdCF"),i.R=u,i.O=wordArrayToBuffer(x),i.U=wordArrayToBuffer(g),i.P=p}},{key:"_setupEncryptionV5",value:function _setupEncryptionV5(r,i){this.keyBits=256;var o=getPermissionsR3(i.permissions),u=processPasswordR5(i.userPassword),p=i.ownerPassword?processPasswordR5(i.ownerPassword):u;this.encryptionKey=function getEncryptionKeyR5(r){return r(32)}(PDFSecurity.generateRandomWordArray);var g=function getUserPasswordR5(r,i){var o=i(8),u=i(8);return y.default.SHA256(r.clone().concat(o)).concat(o).concat(u)}(u,PDFSecurity.generateRandomWordArray),w=function getUserEncryptionKeyR5(r,i,o){var u=y.default.SHA256(r.clone().concat(i)),p={mode:y.default.mode.CBC,padding:y.default.pad.NoPadding,iv:y.default.lib.WordArray.create(null,16)};return y.default.AES.encrypt(o,u,p).ciphertext}(u,y.default.lib.WordArray.create(g.words.slice(10,12),8),this.encryptionKey),_=function getOwnerPasswordR5(r,i,o){var u=o(8),p=o(8);return y.default.SHA256(r.clone().concat(u).concat(i)).concat(u).concat(p)}(p,g,PDFSecurity.generateRandomWordArray),x=function getOwnerEncryptionKeyR5(r,i,o,u){var p=y.default.SHA256(r.clone().concat(i).concat(o)),g={mode:y.default.mode.CBC,padding:y.default.pad.NoPadding,iv:y.default.lib.WordArray.create(null,16)};return y.default.AES.encrypt(u,p,g).ciphertext}(p,y.default.lib.WordArray.create(_.words.slice(10,12),8),g,this.encryptionKey),k=function getEncryptedPermissionsR5(r,i,o){var u=y.default.lib.WordArray.create([lsbFirstWord(r),4294967295,1415668834],12).concat(o(4)),p={mode:y.default.mode.ECB,padding:y.default.pad.NoPadding};return y.default.AES.encrypt(u,i,p).ciphertext}(o,this.encryptionKey,PDFSecurity.generateRandomWordArray);r.V=5,r.Length=this.keyBits,r.CF={StdCF:{AuthEvent:"DocOpen",CFM:"AESV3",Length:this.keyBits/8}},r.StmF="StdCF",r.StrF="StdCF",r.R=5,r.O=wordArrayToBuffer(_),r.OE=wordArrayToBuffer(x),r.U=wordArrayToBuffer(g),r.UE=wordArrayToBuffer(w),r.P=o,r.Perms=wordArrayToBuffer(k)}},{key:"getEncryptFn",value:function getEncryptFn(r,i){var o,u;if(this.version<5&&(o=this.encryptionKey.clone().concat(y.default.lib.WordArray.create([(255&r)<<24|(65280&r)<<8|r>>8&65280|255&i,(65280&i)<<16],5))),1===this.version||2===this.version){var p=y.default.MD5(o);return p.sigBytes=Math.min(16,this.keyBits/8+5),function(r){return wordArrayToBuffer(y.default.RC4.encrypt(y.default.lib.WordArray.create(r),p).ciphertext)}}u=4===this.version?y.default.MD5(o.concat(y.default.lib.WordArray.create([1933667412],4))):this.encryptionKey;var g=PDFSecurity.generateRandomWordArray(16),w={mode:y.default.mode.CBC,padding:y.default.pad.Pkcs7,iv:g};return function(r){return wordArrayToBuffer(g.clone().concat(y.default.AES.encrypt(y.default.lib.WordArray.create(r),u,w).ciphertext))}}},{key:"end",value:function end(){this.dictionary.end()}}]),PDFSecurity}();function getPermissionsR3(){var r=arguments.length>0&&void 0!==arguments[0]?arguments[0]:{},i=-3904;return"lowResolution"===r.printing&&(i|=4),"highResolution"===r.printing&&(i|=2052),r.modifying&&(i|=8),r.copying&&(i|=16),r.annotating&&(i|=32),r.fillingForms&&(i|=256),r.contentAccessibility&&(i|=512),r.documentAssembly&&(i|=1024),i}function processPasswordR2R3R4(){for(var r=arguments.length>0&&void 0!==arguments[0]?arguments[0]:"",i=u.alloc(32),o=r.length,p=0;p<o&&p<32;){var g=r.charCodeAt(p);if(g>255)throw new Error("Password contains one or more invalid characters.");i[p]=g,p++}for(;p<32;)i[p]=_e[p-o],p++;return y.default.lib.WordArray.create(i)}function processPasswordR5(){var r=arguments.length>0&&void 0!==arguments[0]?arguments[0]:"";r=unescape(encodeURIComponent(saslprep(r)));for(var i=Math.min(127,r.length),o=u.alloc(i),p=0;p<i;p++)o[p]=r.charCodeAt(p);return y.default.lib.WordArray.create(o)}function lsbFirstWord(r){return(255&r)<<24|(65280&r)<<8|r>>8&65280|r>>24&255}function wordArrayToBuffer(r){for(var i=[],o=0;o<r.sigBytes;o++)i.push(r.words[Math.floor(o/4)]>>8*(3-o%4)&255);return u.from(i)}var ge,ye,ve,me,be,we,_e=[40,191,78,94,78,117,138,65,100,0,78,86,255,250,1,8,46,46,0,182,208,104,62,128,47,12,169,254,100,83,105,122],Se=W.number,xe=function(){function PDFGradient(r){_classCallCheck(this,PDFGradient),this.doc=r,this.stops=[],this.embedded=!1,this.transform=[1,0,0,1,0,0]}return _createClass(PDFGradient,[{key:"stop",value:function stop(r,i,o){if(null==o&&(o=1),i=this.doc._normalizeColor(i),0===this.stops.length)if(3===i.length)this._colorSpace="DeviceRGB";else if(4===i.length)this._colorSpace="DeviceCMYK";else{if(1!==i.length)throw new Error("Unknown color space");this._colorSpace="DeviceGray"}else if("DeviceRGB"===this._colorSpace&&3!==i.length||"DeviceCMYK"===this._colorSpace&&4!==i.length||"DeviceGray"===this._colorSpace&&1!==i.length)throw new Error("All gradient stops must use the same color space");return o=Math.max(0,Math.min(1,o)),this.stops.push([r,i,o]),this}},{key:"setTransform",value:function setTransform(r,i,o,u,p,g){return this.transform=[r,i,o,u,p,g],this}},{key:"embed",value:function embed(r){var i,o=this.stops.length;if(0!==o){this.embedded=!0,this.matrix=r;var u=this.stops[o-1];u[0]<1&&this.stops.push([1,u[1],u[2]]);for(var p=[],g=[],y=[],w=0;w<o-1;w++)g.push(0,1),w+2!==o&&p.push(this.stops[w+1][0]),i=this.doc.ref({FunctionType:2,Domain:[0,1],C0:this.stops[w+0][1],C1:this.stops[w+1][1],N:1}),y.push(i),i.end();1===o?i=y[0]:(i=this.doc.ref({FunctionType:3,Domain:[0,1],Functions:y,Bounds:p,Encode:g})).end(),this.id="Sh".concat(++this.doc._gradCount);var _=this.shader(i);_.end();var x=this.doc.ref({Type:"Pattern",PatternType:2,Shading:_,Matrix:this.matrix.map(Se)});if(x.end(),this.stops.some((function(r){return r[2]<1}))){var k=this.opacityGradient();k._colorSpace="DeviceGray";var P,O=_createForOfIteratorHelper(this.stops);try{for(O.s();!(P=O.n()).done;){var I=P.value;k.stop(I[0],[I[2]])}}catch(r){O.e(r)}finally{O.f()}k=k.embed(this.matrix);var B=[0,0,this.doc.page.width,this.doc.page.height],R=this.doc.ref({Type:"XObject",Subtype:"Form",FormType:1,BBox:B,Group:{Type:"Group",S:"Transparency",CS:"DeviceGray"},Resources:{ProcSet:["PDF","Text","ImageB","ImageC","ImageI"],Pattern:{Sh1:k}}});R.write("/Pattern cs /Sh1 scn"),R.end("".concat(B.join(" ")," re f"));var D=this.doc.ref({Type:"ExtGState",SMask:{Type:"Mask",S:"Luminosity",G:R}});D.end();var N=this.doc.ref({Type:"Pattern",PatternType:1,PaintType:1,TilingType:2,BBox:B,XStep:B[2],YStep:B[3],Resources:{ProcSet:["PDF","Text","ImageB","ImageC","ImageI"],Pattern:{Sh1:x},ExtGState:{Gs1:D}}});N.write("/Gs1 gs /Pattern cs /Sh1 scn"),N.end("".concat(B.join(" ")," re f")),this.doc.page.patterns[this.id]=N}else this.doc.page.patterns[this.id]=x;return x}}},{key:"apply",value:function apply(r){var i=_slicedToArray(this.doc._ctm,6),o=i[0],u=i[1],p=i[2],g=i[3],y=i[4],w=i[5],_=_slicedToArray(this.transform,6),x=_[0],k=_[1],P=_[2],O=_[3],I=_[4],B=_[5],R=[o*x+p*k,u*x+g*k,o*P+p*O,u*P+g*O,o*I+p*B+y,u*I+g*B+w];this.embedded&&R.join(" ")===this.matrix.join(" ")||this.embed(R),this.doc._setColorSpace("Pattern",r);var D=r?"SCN":"scn";return this.doc.addContent("/".concat(this.id," ").concat(D))}}]),PDFGradient}(),Ce={PDFGradient:xe,PDFLinearGradient:function(r){_inherits(PDFLinearGradient,r);var i=_createSuper(PDFLinearGradient);function PDFLinearGradient(r,o,u,p,g){var y;return _classCallCheck(this,PDFLinearGradient),(y=i.call(this,r)).x1=o,y.y1=u,y.x2=p,y.y2=g,y}return _createClass(PDFLinearGradient,[{key:"shader",value:function shader(r){return this.doc.ref({ShadingType:2,ColorSpace:this._colorSpace,Coords:[this.x1,this.y1,this.x2,this.y2],Function:r,Extend:[!0,!0]})}},{key:"opacityGradient",value:function opacityGradient(){return new PDFLinearGradient(this.doc,this.x1,this.y1,this.x2,this.y2)}}]),PDFLinearGradient}(xe),PDFRadialGradient:function(r){_inherits(PDFRadialGradient,r);var i=_createSuper(PDFRadialGradient);function PDFRadialGradient(r,o,u,p,g,y,w){var _;return _classCallCheck(this,PDFRadialGradient),(_=i.call(this,r)).doc=r,_.x1=o,_.y1=u,_.r1=p,_.x2=g,_.y2=y,_.r2=w,_}return _createClass(PDFRadialGradient,[{key:"shader",value:function shader(r){return this.doc.ref({ShadingType:3,ColorSpace:this._colorSpace,Coords:[this.x1,this.y1,this.r1,this.x2,this.y2,this.r2],Function:r,Extend:[!0,!0]})}},{key:"opacityGradient",value:function opacityGradient(){return new PDFRadialGradient(this.doc,this.x1,this.y1,this.r1,this.x2,this.y2,this.r2)}}]),PDFRadialGradient}(xe)},ke=["DeviceCMYK","DeviceRGB"],Pe=function(){function PDFTilingPattern(r,i,o,u,p){_classCallCheck(this,PDFTilingPattern),this.doc=r,this.bBox=i,this.xStep=o,this.yStep=u,this.stream=p}return _createClass(PDFTilingPattern,[{key:"createPattern",value:function createPattern(){var r=this.doc.ref();r.end();var i=_slicedToArray(this.doc._ctm,6),o=i[0],u=i[1],p=i[2],g=i[3],y=[1*o+0*p,1*u+0*g,0*o+1*p,0*u+1*g,0*o+0*p+i[4],0*u+0*g+i[5]],w=this.doc.ref({Type:"Pattern",PatternType:1,PaintType:2,TilingType:2,BBox:this.bBox,XStep:this.xStep,YStep:this.yStep,Matrix:y.map((function(r){return+r.toFixed(5)})),Resources:r});return w.end(this.stream),w}},{key:"embedPatternColorSpaces",value:function embedPatternColorSpaces(){var r=this;ke.forEach((function(i){var o=r.getPatternColorSpaceId(i);if(!r.doc.page.colorSpaces[o]){var u=r.doc.ref(["Pattern",i]);u.end(),r.doc.page.colorSpaces[o]=u}}))}},{key:"getPatternColorSpaceId",value:function getPatternColorSpaceId(r){return"CsP".concat(r)}},{key:"embed",value:function embed(){this.id||(this.doc._patternCount=this.doc._patternCount+1,this.id="P"+this.doc._patternCount,this.pattern=this.createPattern()),this.doc.page.patterns[this.id]||(this.doc.page.patterns[this.id]=this.pattern)}},{key:"apply",value:function apply(r,i){this.embedPatternColorSpaces(),this.embed();var o=this.doc._normalizeColor(i);if(!o)throw Error("invalid pattern color. (value: ".concat(i,")"));var u=this.getPatternColorSpaceId(this.doc._getColorSpace(o));this.doc._setColorSpace(u,r);var p=r?"SCN":"scn";return this.doc.addContent("".concat(o.join(" ")," /").concat(this.id," ").concat(p))}}]),PDFTilingPattern}(),Ae=Ce.PDFGradient,Ee=Ce.PDFLinearGradient,Te=Ce.PDFRadialGradient,Oe={PDFTilingPattern:Pe}.PDFTilingPattern,Ie={initColor:function initColor(){return this._opacityRegistry={},this._opacityCount=0,this._patternCount=0,this._gradCount=0},_normalizeColor:function _normalizeColor(r){if("string"==typeof r)if("#"===r.charAt(0)){4===r.length&&(r=r.replace(/#([0-9A-F])([0-9A-F])([0-9A-F])/i,"#$1$1$2$2$3$3"));var i=parseInt(r.slice(1),16);r=[i>>16,i>>8&255,255&i]}else Be[r]&&(r=Be[r]);return Array.isArray(r)?(3===r.length?r=r.map((function(r){return r/255})):4===r.length&&(r=r.map((function(r){return r/100}))),r):null},_setColor:function _setColor(r,i){return r instanceof Ae?(r.apply(i),!0):Array.isArray(r)&&r[0]instanceof Oe?(r[0].apply(i,r[1]),!0):this._setColorCore(r,i)},_setColorCore:function _setColorCore(r,i){if(!(r=this._normalizeColor(r)))return!1;var o=i?"SCN":"scn",u=this._getColorSpace(r);return this._setColorSpace(u,i),r=r.join(" "),this.addContent("".concat(r," ").concat(o)),!0},_setColorSpace:function _setColorSpace(r,i){var o=i?"CS":"cs";return this.addContent("/".concat(r," ").concat(o))},_getColorSpace:function _getColorSpace(r){return 4===r.length?"DeviceCMYK":"DeviceRGB"},fillColor:function fillColor(r,i){return this._setColor(r,!1)&&this.fillOpacity(i),this._fillColor=[r,i],this},strokeColor:function strokeColor(r,i){return this._setColor(r,!0)&&this.strokeOpacity(i),this},opacity:function opacity(r){return this._doOpacity(r,r),this},fillOpacity:function fillOpacity(r){return this._doOpacity(r,null),this},strokeOpacity:function strokeOpacity(r){return this._doOpacity(null,r),this},_doOpacity:function _doOpacity(r,i){var o,u;if(null!=r||null!=i){null!=r&&(r=Math.max(0,Math.min(1,r))),null!=i&&(i=Math.max(0,Math.min(1,i)));var p="".concat(r,"_").concat(i);if(this._opacityRegistry[p]){var g=_slicedToArray(this._opacityRegistry[p],2);o=g[0],u=g[1]}else{o={Type:"ExtGState"},null!=r&&(o.ca=r),null!=i&&(o.CA=i),(o=this.ref(o)).end();var y=++this._opacityCount;u="Gs".concat(y),this._opacityRegistry[p]=[o,u]}return this.page.ext_gstates[u]=o,this.addContent("/".concat(u," gs"))}},linearGradient:function linearGradient(r,i,o,u){return new Ee(this,r,i,o,u)},radialGradient:function radialGradient(r,i,o,u,p,g){return new Te(this,r,i,o,u,p,g)},pattern:function pattern(r,i,o,u){return new Oe(this,r,i,o,u)}},Be={aliceblue:[240,248,255],antiquewhite:[250,235,215],aqua:[0,255,255],aquamarine:[127,255,212],azure:[240,255,255],beige:[245,245,220],bisque:[255,228,196],black:[0,0,0],blanchedalmond:[255,235,205],blue:[0,0,255],blueviolet:[138,43,226],brown:[165,42,42],burlywood:[222,184,135],cadetblue:[95,158,160],chartreuse:[127,255,0],chocolate:[210,105,30],coral:[255,127,80],cornflowerblue:[100,149,237],cornsilk:[255,248,220],crimson:[220,20,60],cyan:[0,255,255],darkblue:[0,0,139],darkcyan:[0,139,139],darkgoldenrod:[184,134,11],darkgray:[169,169,169],darkgreen:[0,100,0],darkgrey:[169,169,169],darkkhaki:[189,183,107],darkmagenta:[139,0,139],darkolivegreen:[85,107,47],darkorange:[255,140,0],darkorchid:[153,50,204],darkred:[139,0,0],darksalmon:[233,150,122],darkseagreen:[143,188,143],darkslateblue:[72,61,139],darkslategray:[47,79,79],darkslategrey:[47,79,79],darkturquoise:[0,206,209],darkviolet:[148,0,211],deeppink:[255,20,147],deepskyblue:[0,191,255],dimgray:[105,105,105],dimgrey:[105,105,105],dodgerblue:[30,144,255],firebrick:[178,34,34],floralwhite:[255,250,240],forestgreen:[34,139,34],fuchsia:[255,0,255],gainsboro:[220,220,220],ghostwhite:[248,248,255],gold:[255,215,0],goldenrod:[218,165,32],gray:[128,128,128],grey:[128,128,128],green:[0,128,0],greenyellow:[173,255,47],honeydew:[240,255,240],hotpink:[255,105,180],indianred:[205,92,92],indigo:[75,0,130],ivory:[255,255,240],khaki:[240,230,140],lavender:[230,230,250],lavenderblush:[255,240,245],lawngreen:[124,252,0],lemonchiffon:[255,250,205],lightblue:[173,216,230],lightcoral:[240,128,128],lightcyan:[224,255,255],lightgoldenrodyellow:[250,250,210],lightgray:[211,211,211],lightgreen:[144,238,144],lightgrey:[211,211,211],lightpink:[255,182,193],lightsalmon:[255,160,122],lightseagreen:[32,178,170],lightskyblue:[135,206,250],lightslategray:[119,136,153],lightslategrey:[119,136,153],lightsteelblue:[176,196,222],lightyellow:[255,255,224],lime:[0,255,0],limegreen:[50,205,50],linen:[250,240,230],magenta:[255,0,255],maroon:[128,0,0],mediumaquamarine:[102,205,170],mediumblue:[0,0,205],mediumorchid:[186,85,211],mediumpurple:[147,112,219],mediumseagreen:[60,179,113],mediumslateblue:[123,104,238],mediumspringgreen:[0,250,154],mediumturquoise:[72,209,204],mediumvioletred:[199,21,133],midnightblue:[25,25,112],mintcream:[245,255,250],mistyrose:[255,228,225],moccasin:[255,228,181],navajowhite:[255,222,173],navy:[0,0,128],oldlace:[253,245,230],olive:[128,128,0],olivedrab:[107,142,35],orange:[255,165,0],orangered:[255,69,0],orchid:[218,112,214],palegoldenrod:[238,232,170],palegreen:[152,251,152],paleturquoise:[175,238,238],palevioletred:[219,112,147],papayawhip:[255,239,213],peachpuff:[255,218,185],peru:[205,133,63],pink:[255,192,203],plum:[221,160,221],powderblue:[176,224,230],purple:[128,0,128],red:[255,0,0],rosybrown:[188,143,143],royalblue:[65,105,225],saddlebrown:[139,69,19],salmon:[250,128,114],sandybrown:[244,164,96],seagreen:[46,139,87],seashell:[255,245,238],sienna:[160,82,45],silver:[192,192,192],skyblue:[135,206,235],slateblue:[106,90,205],slategray:[112,128,144],slategrey:[112,128,144],snow:[255,250,250],springgreen:[0,255,127],steelblue:[70,130,180],tan:[210,180,140],teal:[0,128,128],thistle:[216,191,216],tomato:[255,99,71],turquoise:[64,224,208],violet:[238,130,238],wheat:[245,222,179],white:[255,255,255],whitesmoke:[245,245,245],yellow:[255,255,0],yellowgreen:[154,205,50]};ge=ye=ve=me=be=we=0;var Fe={A:7,a:7,C:6,c:6,H:1,h:1,L:2,l:2,M:2,m:2,Q:4,q:4,S:4,s:4,T:2,t:2,V:1,v:1,Z:0,z:0},Le={M:function M(r,i){return ge=i[0],ye=i[1],ve=me=null,be=ge,we=ye,r.moveTo(ge,ye)},m:function m(r,i){return ge+=i[0],ye+=i[1],ve=me=null,be=ge,we=ye,r.moveTo(ge,ye)},C:function C(r,i){return ge=i[4],ye=i[5],ve=i[2],me=i[3],r.bezierCurveTo.apply(r,_toConsumableArray(i))},c:function c(r,i){return r.bezierCurveTo(i[0]+ge,i[1]+ye,i[2]+ge,i[3]+ye,i[4]+ge,i[5]+ye),ve=ge+i[2],me=ye+i[3],ge+=i[4],ye+=i[5]},S:function S(r,i){return null===ve&&(ve=ge,me=ye),r.bezierCurveTo(ge-(ve-ge),ye-(me-ye),i[0],i[1],i[2],i[3]),ve=i[0],me=i[1],ge=i[2],ye=i[3]},s:function s(r,i){return null===ve&&(ve=ge,me=ye),r.bezierCurveTo(ge-(ve-ge),ye-(me-ye),ge+i[0],ye+i[1],ge+i[2],ye+i[3]),ve=ge+i[0],me=ye+i[1],ge+=i[2],ye+=i[3]},Q:function Q(r,i){return ve=i[0],me=i[1],ge=i[2],ye=i[3],r.quadraticCurveTo(i[0],i[1],ge,ye)},q:function q(r,i){return r.quadraticCurveTo(i[0]+ge,i[1]+ye,i[2]+ge,i[3]+ye),ve=ge+i[0],me=ye+i[1],ge+=i[2],ye+=i[3]},T:function T(r,i){return null===ve?(ve=ge,me=ye):(ve=ge-(ve-ge),me=ye-(me-ye)),r.quadraticCurveTo(ve,me,i[0],i[1]),ve=ge-(ve-ge),me=ye-(me-ye),ge=i[0],ye=i[1]},t:function t(r,i){return null===ve?(ve=ge,me=ye):(ve=ge-(ve-ge),me=ye-(me-ye)),r.quadraticCurveTo(ve,me,ge+i[0],ye+i[1]),ge+=i[0],ye+=i[1]},A:function A(r,i){return Re(r,ge,ye,i),ge=i[5],ye=i[6]},a:function a(r,i){return i[5]+=ge,i[6]+=ye,Re(r,ge,ye,i),ge=i[5],ye=i[6]},L:function L(r,i){return ge=i[0],ye=i[1],ve=me=null,r.lineTo(ge,ye)},l:function l(r,i){return ge+=i[0],ye+=i[1],ve=me=null,r.lineTo(ge,ye)},H:function H(r,i){return ge=i[0],ve=me=null,r.lineTo(ge,ye)},h:function h(r,i){return ge+=i[0],ve=me=null,r.lineTo(ge,ye)},V:function V(r,i){return ye=i[0],ve=me=null,r.lineTo(ge,ye)},v:function v(r,i){return ye+=i[0],ve=me=null,r.lineTo(ge,ye)},Z:function Z(r){return r.closePath(),ge=be,ye=we},z:function z(r){return r.closePath(),ge=be,ye=we}},Re=function solveArc(r,i,o,u){var p,g=_slicedToArray(u,7),y=g[0],w=g[1],_=g[2],x=g[3],k=g[4],P=g[5],O=g[6],I=_createForOfIteratorHelper(De(P,O,y,w,x,k,_,i,o));try{for(I.s();!(p=I.n()).done;){var B=p.value,R=Me.apply(void 0,_toConsumableArray(B));r.bezierCurveTo.apply(r,_toConsumableArray(R))}}catch(r){I.e(r)}finally{I.f()}},De=function arcToSegments(r,i,o,u,p,g,y,w,_){var x=y*(Math.PI/180),k=Math.sin(x),P=Math.cos(x);o=Math.abs(o),u=Math.abs(u);var O=(ve=P*(w-r)*.5+k*(_-i)*.5)*ve/(o*o)+(me=P*(_-i)*.5-k*(w-r)*.5)*me/(u*u);O>1&&(o*=O=Math.sqrt(O),u*=O);var I=P/o,B=k/o,R=-k/u,D=P/u,N=I*w+B*_,W=R*w+D*_,U=I*r+B*i,j=R*r+D*i,G=1/((U-N)*(U-N)+(j-W)*(j-W))-.25;G<0&&(G=0);var X=Math.sqrt(G);g===p&&(X=-X);var K=.5*(N+U)-X*(j-W),Y=.5*(W+j)+X*(U-N),J=Math.atan2(W-Y,N-K),$=Math.atan2(j-Y,U-K)-J;$<0&&1===g?$+=2*Math.PI:$>0&&0===g&&($-=2*Math.PI);for(var ee=Math.ceil(Math.abs($/(.5*Math.PI+.001))),te=[],re=0;re<ee;re++){var ne=J+re*$/ee,ie=J+(re+1)*$/ee;te[re]=[K,Y,ne,ie,o,u,k,P]}return te},Me=function segmentToBezier(r,i,o,u,p,g,y,w){var _=w*p,x=-y*g,k=y*p,P=w*g,O=.5*(u-o),I=8/3*Math.sin(.5*O)*Math.sin(.5*O)/Math.sin(O),B=r+Math.cos(o)-I*Math.sin(o),R=i+Math.sin(o)+I*Math.cos(o),D=r+Math.cos(u),N=i+Math.sin(u),W=D+I*Math.sin(u),U=N-I*Math.cos(u);return[_*B+x*R,k*B+P*R,_*W+x*U,k*W+P*U,_*D+x*N,k*D+P*N]},Ne=function(){function SVGPath(){_classCallCheck(this,SVGPath)}return _createClass(SVGPath,null,[{key:"apply",value:function apply(r,i){var o=function parse(r){var i,o,u=[],p=[],g="",y=!1,w=0,_=_createForOfIteratorHelper(r);try{for(_.s();!(o=_.n()).done;){var x=o.value;if(null!=Fe[x])w=Fe[x],i&&(g.length>0&&(p[p.length]=+g),u[u.length]={cmd:i,args:p},p=[],g="",y=!1),i=x;else if([" ",","].includes(x)||"-"===x&&g.length>0&&"e"!==g[g.length-1]||"."===x&&y){if(0===g.length)continue;p.length===w?(u[u.length]={cmd:i,args:p},p=[+g],"M"===i&&(i="L"),"m"===i&&(i="l")):p[p.length]=+g,y="."===x,g=["-","."].includes(x)?x:""}else g+=x,"."===x&&(y=!0)}}catch(r){_.e(r)}finally{_.f()}return g.length>0&&(p.length===w?(u[u.length]={cmd:i,args:p},p=[+g],"M"===i&&(i="L"),"m"===i&&(i="l")):p[p.length]=+g),u[u.length]={cmd:i,args:p},u}(i);!function apply(r,i){ge=ye=ve=me=be=we=0;for(var o=0;o<r.length;o++){var u=r[o];"function"==typeof Le[u.cmd]&&Le[u.cmd](i,u.args)}}(o,r)}}]),SVGPath}(),We=W.number,ze=(Math.sqrt(2)-1)/3*4,Ue={initVector:function initVector(){return this._ctm=[1,0,0,1,0,0],this._ctmStack=[]},save:function save(){return this._ctmStack.push(this._ctm.slice()),this.addContent("q")},restore:function restore(){return this._ctm=this._ctmStack.pop()||[1,0,0,1,0,0],this.addContent("Q")},closePath:function closePath(){return this.addContent("h")},lineWidth:function lineWidth(r){return this.addContent("".concat(We(r)," w"))},_CAP_STYLES:{BUTT:0,ROUND:1,SQUARE:2},lineCap:function lineCap(r){return"string"==typeof r&&(r=this._CAP_STYLES[r.toUpperCase()]),this.addContent("".concat(r," J"))},_JOIN_STYLES:{MITER:0,ROUND:1,BEVEL:2},lineJoin:function lineJoin(r){return"string"==typeof r&&(r=this._JOIN_STYLES[r.toUpperCase()]),this.addContent("".concat(r," j"))},miterLimit:function miterLimit(r){return this.addContent("".concat(We(r)," M"))},dash:function dash(r){var i=arguments.length>1&&void 0!==arguments[1]?arguments[1]:{},o=r;Array.isArray(r)||(r=[r,i.space||r]);var u=r.every((function(r){return Number.isFinite(r)&&r>0}));if(!u)throw new Error("dash(".concat(JSON.stringify(o),", ").concat(JSON.stringify(i),") invalid, lengths must be numeric and greater than zero"));return r=r.map(We).join(" "),this.addContent("[".concat(r,"] ").concat(We(i.phase||0)," d"))},undash:function undash(){return this.addContent("[] 0 d")},moveTo:function moveTo(r,i){return this.addContent("".concat(We(r)," ").concat(We(i)," m"))},lineTo:function lineTo(r,i){return this.addContent("".concat(We(r)," ").concat(We(i)," l"))},bezierCurveTo:function bezierCurveTo(r,i,o,u,p,g){return this.addContent("".concat(We(r)," ").concat(We(i)," ").concat(We(o)," ").concat(We(u)," ").concat(We(p)," ").concat(We(g)," c"))},quadraticCurveTo:function quadraticCurveTo(r,i,o,u){return this.addContent("".concat(We(r)," ").concat(We(i)," ").concat(We(o)," ").concat(We(u)," v"))},rect:function rect(r,i,o,u){return this.addContent("".concat(We(r)," ").concat(We(i)," ").concat(We(o)," ").concat(We(u)," re"))},roundedRect:function roundedRect(r,i,o,u,p){null==p&&(p=0);var g=(p=Math.min(p,.5*o,.5*u))*(1-ze);return this.moveTo(r+p,i),this.lineTo(r+o-p,i),this.bezierCurveTo(r+o-g,i,r+o,i+g,r+o,i+p),this.lineTo(r+o,i+u-p),this.bezierCurveTo(r+o,i+u-g,r+o-g,i+u,r+o-p,i+u),this.lineTo(r+p,i+u),this.bezierCurveTo(r+g,i+u,r,i+u-g,r,i+u-p),this.lineTo(r,i+p),this.bezierCurveTo(r,i+g,r+g,i,r+p,i),this.closePath()},ellipse:function ellipse(r,i,o,u){null==u&&(u=o);var p=o*ze,g=u*ze,y=(r-=o)+2*o,w=(i-=u)+2*u,_=r+o,x=i+u;return this.moveTo(r,x),this.bezierCurveTo(r,x-g,_-p,i,_,i),this.bezierCurveTo(_+p,i,y,x-g,y,x),this.bezierCurveTo(y,x+g,_+p,w,_,w),this.bezierCurveTo(_-p,w,r,x+g,r,x),this.closePath()},circle:function circle(r,i,o){return this.ellipse(r,i,o)},arc:function arc(r,i,o,u,p,g){null==g&&(g=!1);var y=2*Math.PI,w=.5*Math.PI,_=p-u;if(Math.abs(_)>y)_=y;else if(0!==_&&g!==_<0){_=(g?-1:1)*y+_}var x=Math.ceil(Math.abs(_)/w),k=_/x,P=k/w*ze*o,O=u,I=-Math.sin(O)*P,B=Math.cos(O)*P,R=r+Math.cos(O)*o,D=i+Math.sin(O)*o;this.moveTo(R,D);for(var N=0;N<x;N++){var W=R+I,U=D+B;O+=k,R=r+Math.cos(O)*o,D=i+Math.sin(O)*o;var j=R-(I=-Math.sin(O)*P),G=D-(B=Math.cos(O)*P);this.bezierCurveTo(W,U,j,G,R,D)}return this},polygon:function polygon(){for(var r=arguments.length,i=new Array(r),o=0;o<r;o++)i[o]=arguments[o];this.moveTo.apply(this,_toConsumableArray(i.shift()||[]));for(var u=0,p=i;u<p.length;u++){var g=p[u];this.lineTo.apply(this,_toConsumableArray(g||[]))}return this.closePath()},path:function path(r){return Ne.apply(this,r),this},_windingRule:function _windingRule(r){return/even-?odd/.test(r)?"*":""},fill:function fill(r,i){return/(even-?odd)|(non-?zero)/.test(r)&&(i=r,r=null),r&&this.fillColor(r),this.addContent("f".concat(this._windingRule(i)))},stroke:function stroke(r){return r&&this.strokeColor(r),this.addContent("S")},fillAndStroke:function fillAndStroke(r,i,o){null==i&&(i=r);var u=/(even-?odd)|(non-?zero)/;return u.test(r)&&(o=r,r=null),u.test(i)&&(o=i,i=r),r&&(this.fillColor(r),this.strokeColor(i)),this.addContent("B".concat(this._windingRule(o)))},clip:function clip(r){return this.addContent("W".concat(this._windingRule(r)," n"))},transform:function transform(r,i,o,u,p,g){var y=this._ctm,w=_slicedToArray(y,6),_=w[0],x=w[1],k=w[2],P=w[3],O=w[4],I=w[5];y[0]=_*r+k*i,y[1]=x*r+P*i,y[2]=_*o+k*u,y[3]=x*o+P*u,y[4]=_*p+k*g+O,y[5]=x*p+P*g+I;var B=[r,i,o,u,p,g].map((function(r){return We(r)})).join(" ");return this.addContent("".concat(B," cm"))},translate:function translate(r,i){return this.transform(1,0,0,1,r,i)},rotate:function rotate(r){var i,o=arguments.length>1&&void 0!==arguments[1]?arguments[1]:{},u=r*Math.PI/180,p=Math.cos(u),g=Math.sin(u),y=i=0;if(null!=o.origin){var w=_slicedToArray(o.origin,2),_=(y=w[0])*p-(i=w[1])*g,x=y*g+i*p;y-=_,i-=x}return this.transform(p,g,-g,p,y,i)},scale:function scale(r,i){var o,u=arguments.length>2&&void 0!==arguments[2]?arguments[2]:{};null==i&&(i=r),"object"==typeof i&&(u=i,i=r);var p=o=0;if(null!=u.origin){var g=_slicedToArray(u.origin,2);p=g[0],o=g[1],p-=r*p,o-=i*o}return this.transform(r,0,0,i,p,o)}},je={402:131,8211:150,8212:151,8216:145,8217:146,8218:130,8220:147,8221:148,8222:132,8224:134,8225:135,8226:149,8230:133,8364:128,8240:137,8249:139,8250:155,710:136,8482:153,338:140,339:156,732:152,352:138,353:154,376:159,381:142,382:158},Ge=".notdef       .notdef        .notdef        .notdef\n.notdef       .notdef        .notdef        .notdef\n.notdef       .notdef        .notdef        .notdef\n.notdef       .notdef        .notdef        .notdef\n.notdef       .notdef        .notdef        .notdef\n.notdef       .notdef        .notdef        .notdef\n.notdef       .notdef        .notdef        .notdef\n.notdef       .notdef        .notdef        .notdef\n  \nspace         exclam         quotedbl       numbersign\ndollar        percent        ampersand      quotesingle\nparenleft     parenright     asterisk       plus\ncomma         hyphen         period         slash\nzero          one            two            three\nfour          five           six            seven\neight         nine           colon          semicolon\nless          equal          greater        question\n  \nat            A              B              C\nD             E              F              G\nH             I              J              K\nL             M              N              O\nP             Q              R              S\nT             U              V              W\nX             Y              Z              bracketleft\nbackslash     bracketright   asciicircum    underscore\n  \ngrave         a              b              c\nd             e              f              g\nh             i              j              k\nl             m              n              o\np             q              r              s\nt             u              v              w\nx             y              z              braceleft\nbar           braceright     asciitilde     .notdef\n  \nEuro          .notdef        quotesinglbase florin\nquotedblbase  ellipsis       dagger         daggerdbl\ncircumflex    perthousand    Scaron         guilsinglleft\nOE            .notdef        Zcaron         .notdef\n.notdef       quoteleft      quoteright     quotedblleft\nquotedblright bullet         endash         emdash\ntilde         trademark      scaron         guilsinglright\noe            .notdef        zcaron         ydieresis\n  \nspace         exclamdown     cent           sterling\ncurrency      yen            brokenbar      section\ndieresis      copyright      ordfeminine    guillemotleft\nlogicalnot    hyphen         registered     macron\ndegree        plusminus      twosuperior    threesuperior\nacute         mu             paragraph      periodcentered\ncedilla       onesuperior    ordmasculine   guillemotright\nonequarter    onehalf        threequarters  questiondown\n  \nAgrave        Aacute         Acircumflex    Atilde\nAdieresis     Aring          AE             Ccedilla\nEgrave        Eacute         Ecircumflex    Edieresis\nIgrave        Iacute         Icircumflex    Idieresis\nEth           Ntilde         Ograve         Oacute\nOcircumflex   Otilde         Odieresis      multiply\nOslash        Ugrave         Uacute         Ucircumflex\nUdieresis     Yacute         Thorn          germandbls\n  \nagrave        aacute         acircumflex    atilde\nadieresis     aring          ae             ccedilla\negrave        eacute         ecircumflex    edieresis\nigrave        iacute         icircumflex    idieresis\neth           ntilde         ograve         oacute\nocircumflex   otilde         odieresis      divide\noslash        ugrave         uacute         ucircumflex\nudieresis     yacute         thorn          ydieresis".split(/\s+/),Ve=function(){function AFMFont(r){_classCallCheck(this,AFMFont),this.contents=r,this.attributes={},this.glyphWidths={},this.boundingBoxes={},this.kernPairs={},this.parse(),this.charWidths=new Array(256);for(var i=0;i<=255;i++)this.charWidths[i]=this.glyphWidths[Ge[i]];this.bbox=this.attributes.FontBBox.split(/\s+/).map((function(r){return+r})),this.ascender=+(this.attributes.Ascender||0),this.descender=+(this.attributes.Descender||0),this.xHeight=+(this.attributes.XHeight||0),this.capHeight=+(this.attributes.CapHeight||0),this.lineGap=this.bbox[3]-this.bbox[1]-(this.ascender-this.descender)}return _createClass(AFMFont,null,[{key:"open",value:function open(r){return new AFMFont(P.readFileSync(r,"utf8"))}}]),_createClass(AFMFont,[{key:"parse",value:function parse(){var r,i="",o=_createForOfIteratorHelper(this.contents.split("\n"));try{for(o.s();!(r=o.n()).done;){var u,p,g=r.value;if(u=g.match(/^Start(\w+)/))i=u[1];else if(u=g.match(/^End(\w+)/))i="";else switch(i){case"FontMetrics":var y=(u=g.match(/(^\w+)\s+(.*)/))[1],w=u[2];(p=this.attributes[y])?(Array.isArray(p)||(p=this.attributes[y]=[p]),p.push(w)):this.attributes[y]=w;break;case"CharMetrics":if(!/^CH?\s/.test(g))continue;var _=g.match(/\bN\s+(\.?\w+)\s*;/)[1];this.glyphWidths[_]=+g.match(/\bWX\s+(\d+)\s*;/)[1];break;case"KernPairs":(u=g.match(/^KPX\s+(\.?\w+)\s+(\.?\w+)\s+(-?\d+)/))&&(this.kernPairs[u[1]+"\0"+u[2]]=parseInt(u[3]))}}}catch(r){o.e(r)}finally{o.f()}}},{key:"encodeText",value:function encodeText(r){for(var i=[],o=0,u=r.length;o<u;o++){var p=r.charCodeAt(o);p=je[p]||p,i.push(p.toString(16))}return i}},{key:"glyphsForString",value:function glyphsForString(r){for(var i=[],o=0,u=r.length;o<u;o++){var p=r.charCodeAt(o);i.push(this.characterToGlyph(p))}return i}},{key:"characterToGlyph",value:function characterToGlyph(r){return Ge[je[r]||r]||".notdef"}},{key:"widthOfGlyph",value:function widthOfGlyph(r){return this.glyphWidths[r]||0}},{key:"getKernPair",value:function getKernPair(r,i){return this.kernPairs[r+"\0"+i]||0}},{key:"advancesForGlyphs",value:function advancesForGlyphs(r){for(var i=[],o=0;o<r.length;o++){var u=r[o],p=r[o+1];i.push(this.widthOfGlyph(u)+this.getKernPair(u,p))}return i}}]),AFMFont}(),He=function(){function PDFFont(){_classCallCheck(this,PDFFont)}return _createClass(PDFFont,[{key:"encode",value:function encode(){throw new Error("Must be implemented by subclasses")}},{key:"widthOfString",value:function widthOfString(){throw new Error("Must be implemented by subclasses")}},{key:"ref",value:function ref(){return null!=this.dictionary?this.dictionary:this.dictionary=this.document.ref()}},{key:"finalize",value:function finalize(){if(!this.embedded&&null!=this.dictionary)return this.embed(),this.embedded=!0}},{key:"embed",value:function embed(){throw new Error("Must be implemented by subclasses")}},{key:"lineHeight",value:function lineHeight(r,i){null==i&&(i=!1);var o=i?this.lineGap:0;return(this.ascender+o-this.descender)/1e3*r}}]),PDFFont}(),qe={Courier:function Courier(){return P.readFileSync("//data/Courier.afm","utf8")},"Courier-Bold":function CourierBold(){return P.readFileSync("//data/Courier-Bold.afm","utf8")},"Courier-Oblique":function CourierOblique(){return P.readFileSync("//data/Courier-Oblique.afm","utf8")},"Courier-BoldOblique":function CourierBoldOblique(){return P.readFileSync("//data/Courier-BoldOblique.afm","utf8")},Helvetica:function Helvetica(){return P.readFileSync("//data/Helvetica.afm","utf8")},"Helvetica-Bold":function HelveticaBold(){return P.readFileSync("//data/Helvetica-Bold.afm","utf8")},"Helvetica-Oblique":function HelveticaOblique(){return P.readFileSync("//data/Helvetica-Oblique.afm","utf8")},"Helvetica-BoldOblique":function HelveticaBoldOblique(){return P.readFileSync("//data/Helvetica-BoldOblique.afm","utf8")},"Times-Roman":function TimesRoman(){return P.readFileSync("//data/Times-Roman.afm","utf8")},"Times-Bold":function TimesBold(){return P.readFileSync("//data/Times-Bold.afm","utf8")},"Times-Italic":function TimesItalic(){return P.readFileSync("//data/Times-Italic.afm","utf8")},"Times-BoldItalic":function TimesBoldItalic(){return P.readFileSync("//data/Times-BoldItalic.afm","utf8")},Symbol:function Symbol(){return P.readFileSync("//data/Symbol.afm","utf8")},ZapfDingbats:function ZapfDingbats(){return P.readFileSync("//data/ZapfDingbats.afm","utf8")}},Xe=function(r){_inherits(StandardFont,r);var i=_createSuper(StandardFont);function StandardFont(r,o,u){var p;_classCallCheck(this,StandardFont),(p=i.call(this)).document=r,p.name=o,p.id=u,p.font=new Ve(qe[p.name]());var g=p.font;return p.ascender=g.ascender,p.descender=g.descender,p.bbox=g.bbox,p.lineGap=g.lineGap,p.xHeight=g.xHeight,p.capHeight=g.capHeight,p}return _createClass(StandardFont,[{key:"embed",value:function embed(){return this.dictionary.data={Type:"Font",BaseFont:this.name,Subtype:"Type1",Encoding:"WinAnsiEncoding"},this.dictionary.end()}},{key:"encode",value:function encode(r){for(var i=this.font.encodeText(r),o=this.font.glyphsForString("".concat(r)),u=this.font.advancesForGlyphs(o),p=[],g=0;g<o.length;g++){var y=o[g];p.push({xAdvance:u[g],yAdvance:0,xOffset:0,yOffset:0,advanceWidth:this.font.widthOfGlyph(y)})}return[i,p]}},{key:"widthOfString",value:function widthOfString(r,i){var o,u=this.font.glyphsForString("".concat(r)),p=0,g=_createForOfIteratorHelper(this.font.advancesForGlyphs(u));try{for(g.s();!(o=g.n()).done;){p+=o.value}}catch(r){g.e(r)}finally{g.f()}return p*(i/1e3)}}],[{key:"isStandardFont",value:function isStandardFont(r){return r in qe}}]),StandardFont}(He),Ze=function toHex(r){return"0000".concat(r.toString(16)).slice(-4)},Ke=function(r){_inherits(EmbeddedFont,r);var i=_createSuper(EmbeddedFont);function EmbeddedFont(r,o,u){var p;return _classCallCheck(this,EmbeddedFont),(p=i.call(this)).document=r,p.font=o,p.id=u,p.subset=p.font.createSubset(),p.unicode=[[0]],p.widths=[p.font.getGlyph(0).advanceWidth],p.name=p.font.postscriptName,p.scale=1e3/p.font.unitsPerEm,p.ascender=p.font.ascent*p.scale,p.descender=p.font.descent*p.scale,p.xHeight=p.font.xHeight*p.scale,p.capHeight=p.font.capHeight*p.scale,p.lineGap=p.font.lineGap*p.scale,p.bbox=p.font.bbox,!1!==r.options.fontLayoutCache&&(p.layoutCache=Object.create(null)),p}return _createClass(EmbeddedFont,[{key:"layoutRun",value:function layoutRun(r,i){for(var o=this.font.layout(r,i),u=0;u<o.positions.length;u++){var p=o.positions[u];for(var g in p)p[g]*=this.scale;p.advanceWidth=o.glyphs[u].advanceWidth*this.scale}return o}},{key:"layoutCached",value:function layoutCached(r){if(!this.layoutCache)return this.layoutRun(r);var i;if(i=this.layoutCache[r])return i;var o=this.layoutRun(r);return this.layoutCache[r]=o,o}},{key:"layout",value:function layout(r,i,o){if(i)return this.layoutRun(r,i);for(var u=o?null:[],p=o?null:[],g=0,y=0,w=0;w<=r.length;){var _;if(w===r.length&&y<w||(_=r.charAt(w),[" ","\t"].includes(_))){var x=this.layoutCached(r.slice(y,++w));o||(u=u.concat(x.glyphs),p=p.concat(x.positions)),g+=x.advanceWidth,y=w}else w++}return{glyphs:u,positions:p,advanceWidth:g}}},{key:"encode",value:function encode(r,i){for(var o=this.layout(r,i),u=o.glyphs,p=o.positions,g=[],y=0;y<u.length;y++){var w=u[y],_=this.subset.includeGlyph(w.id);g.push("0000".concat(_.toString(16)).slice(-4)),null==this.widths[_]&&(this.widths[_]=w.advanceWidth*this.scale),null==this.unicode[_]&&(this.unicode[_]=w.codePoints)}return[g,p]}},{key:"widthOfString",value:function widthOfString(r,i,o){return this.layout(r,o,!0).advanceWidth*(i/1e3)}},{key:"embed",value:function embed(){var r=this,i=null!=this.subset.cff,o=this.document.ref();i&&(o.data.Subtype="CIDFontType0C"),this.subset.encodeStream().on("data",(function(r){return o.write(r)})).on("end",(function(){return o.end()}));var u=((null!=this.font["OS/2"]?this.font["OS/2"].sFamilyClass:void 0)||0)>>8,p=0;this.font.post.isFixedPitch&&(p|=1),1<=u&&u<=7&&(p|=2),p|=4,10===u&&(p|=8),this.font.head.macStyle.italic&&(p|=64);var g=[1,2,3,4,5,6].map((function(i){return String.fromCharCode((r.id.charCodeAt(i)||73)+17)})).join("")+"+"+this.font.postscriptName,y=this.font.bbox,w=this.document.ref({Type:"FontDescriptor",FontName:g,Flags:p,FontBBox:[y.minX*this.scale,y.minY*this.scale,y.maxX*this.scale,y.maxY*this.scale],ItalicAngle:this.font.italicAngle,Ascent:this.ascender,Descent:this.descender,CapHeight:(this.font.capHeight||this.font.ascent)*this.scale,XHeight:(this.font.xHeight||0)*this.scale,StemV:0});i?w.data.FontFile3=o:w.data.FontFile2=o,w.end();var _={Type:"Font",Subtype:"CIDFontType0",BaseFont:g,CIDSystemInfo:{Registry:new String("Adobe"),Ordering:new String("Identity"),Supplement:0},FontDescriptor:w,W:[0,this.widths]};i||(_.Subtype="CIDFontType2",_.CIDToGIDMap="Identity");var x=this.document.ref(_);return x.end(),this.dictionary.data={Type:"Font",Subtype:"Type0",BaseFont:g,Encoding:"Identity-H",DescendantFonts:[x],ToUnicode:this.toUnicodeCmap()},this.dictionary.end()}},{key:"toUnicodeCmap",value:function toUnicodeCmap(){var r,i=this.document.ref(),o=[],u=_createForOfIteratorHelper(this.unicode);try{for(u.s();!(r=u.n()).done;){var p,g=r.value,y=[],w=_createForOfIteratorHelper(g);try{for(w.s();!(p=w.n()).done;){var _=p.value;_>65535&&(_-=65536,y.push(Ze(_>>>10&1023|55296)),_=56320|1023&_),y.push(Ze(_))}}catch(r){w.e(r)}finally{w.f()}o.push("<".concat(y.join(" "),">"))}}catch(r){u.e(r)}finally{u.f()}return i.end("/CIDInit /ProcSet findresource begin\n12 dict begin\nbegincmap\n/CIDSystemInfo <<\n  /Registry (Adobe)\n  /Ordering (UCS)\n  /Supplement 0\n>> def\n/CMapName /Adobe-Identity-UCS def\n/CMapType 2 def\n1 begincodespacerange\n<0000><ffff>\nendcodespacerange\n1 beginbfrange\n<0000> <".concat(Ze(o.length-1),"> [").concat(o.join(" "),"]\nendbfrange\nendcmap\nCMapName currentdict /CMap defineresource pop\nend\nend")),i}}]),EmbeddedFont}(He),Ye=function(){function PDFFontFactory(){_classCallCheck(this,PDFFontFactory)}return _createClass(PDFFontFactory,null,[{key:"open",value:function open(r,i,o,p){var g;if("string"==typeof i){if(Xe.isStandardFont(i))return new Xe(r,i,p);i=P.readFileSync(i)}if(u.isBuffer(i)?g=w.default.create(i,o):i instanceof Uint8Array?g=w.default.create(u.from(i),o):i instanceof ArrayBuffer&&(g=w.default.create(u.from(new Uint8Array(i)),o)),null==g)throw new Error("Not a supported font format or standard PDF font.");return new Ke(r,g,p)}}]),PDFFontFactory}(),Je={initFonts:function initFonts(){var r=arguments.length>0&&void 0!==arguments[0]?arguments[0]:"Helvetica";this._fontFamilies={},this._fontCount=0,this._fontSize=12,this._font=null,this._registeredFonts={},r&&this.font(r)},font:function font(r,i,o){var u,font;if("number"==typeof i&&(o=i,i=null),"string"==typeof r&&this._registeredFonts[r]){u=r;var p=this._registeredFonts[r];r=p.src,i=p.family}else"string"!=typeof(u=i||r)&&(u=null);if(null!=o&&this.fontSize(o),font=this._fontFamilies[u])return this._font=font,this;var g="F".concat(++this._fontCount);return this._font=Ye.open(this,r,i,g),(font=this._fontFamilies[this._font.name])?(this._font=font,this):(u&&(this._fontFamilies[u]=this._font),this._font.name&&(this._fontFamilies[this._font.name]=this._font),this)},fontSize:function fontSize(r){return this._fontSize=r,this},currentLineHeight:function currentLineHeight(r){return null==r&&(r=!1),this._font.lineHeight(this._fontSize,r)},registerFont:function registerFont(r,i,o){return this._registeredFonts[r]={src:i,family:o},this}},Qe=function(r){_inherits(LineWrapper,r);var i=_createSuper(LineWrapper);function LineWrapper(r,o){var u;return _classCallCheck(this,LineWrapper),(u=i.call(this)).document=r,u.indent=o.indent||0,u.characterSpacing=o.characterSpacing||0,u.wordSpacing=0===o.wordSpacing,u.columns=o.columns||1,u.columnGap=null!=o.columnGap?o.columnGap:18,u.lineWidth=(o.width-u.columnGap*(u.columns-1))/u.columns,u.spaceLeft=u.lineWidth,u.startX=u.document.x,u.startY=u.document.y,u.column=1,u.ellipsis=o.ellipsis,u.continuedX=0,u.features=o.features,null!=o.height?(u.height=o.height,u.maxY=u.startY+o.height):u.maxY=u.document.page.maxY(),u.on("firstLine",(function(r){var i=u.continuedX||u.indent;return u.document.x+=i,u.lineWidth-=i,u.once("line",(function(){if(u.document.x-=i,u.lineWidth+=i,r.continued&&!u.continuedX&&(u.continuedX=u.indent),!r.continued)return u.continuedX=0}))})),u.on("lastLine",(function(r){var i=r.align;return"justify"===i&&(r.align="left"),u.lastLine=!0,u.once("line",(function(){return u.document.y+=r.paragraphGap||0,r.align=i,u.lastLine=!1}))})),u}return _createClass(LineWrapper,[{key:"wordWidth",value:function wordWidth(r){return this.document.widthOfString(r,this)+this.characterSpacing+this.wordSpacing}},{key:"eachWord",value:function eachWord(r,i){for(var o,u=new x.default(r),p=null,g=Object.create(null);o=u.nextBreak();){var y,w=r.slice((null!=p?p.position:void 0)||0,o.position),_=null!=g[w]?g[w]:g[w]=this.wordWidth(w);if(_>this.lineWidth+this.continuedX)for(var k=p,P={};w.length;){var O,I;_>this.spaceLeft?(O=Math.ceil(this.spaceLeft/(_/w.length)),I=(_=this.wordWidth(w.slice(0,O)))<=this.spaceLeft&&O<w.length):O=w.length;for(var B=_>this.spaceLeft&&O>0;B||I;)B?B=(_=this.wordWidth(w.slice(0,--O)))>this.spaceLeft&&O>0:(B=(_=this.wordWidth(w.slice(0,++O)))>this.spaceLeft&&O>0,I=_<=this.spaceLeft&&O<w.length);if(0===O&&this.spaceLeft===this.lineWidth&&(O=1),P.required=o.required||O<w.length,y=i(w.slice(0,O),_,P,k),k={required:!1},w=w.slice(O),_=this.wordWidth(w),!1===y)break}else y=i(w,_,o,p);if(!1===y)break;p=o}}},{key:"wrap",value:function wrap(r,i){var o=this;null!=i.indent&&(this.indent=i.indent),null!=i.characterSpacing&&(this.characterSpacing=i.characterSpacing),null!=i.wordSpacing&&(this.wordSpacing=i.wordSpacing),null!=i.ellipsis&&(this.ellipsis=i.ellipsis);var u=this.document.y+this.document.currentLineHeight(!0);(this.document.y>this.maxY||u>this.maxY)&&this.nextSection();var p="",g=0,y=0,w=0,_=this.document.y,x=function emitLine(){return i.textWidth=g+o.wordSpacing*(y-1),i.wordCount=y,i.lineWidth=o.lineWidth,_=o.document.y,o.emit("line",p,i,o),w++};return this.emit("sectionStart",i,this),this.eachWord(r,(function(r,u,w,_){if((null==_||_.required)&&(o.emit("firstLine",i,o),o.spaceLeft=o.lineWidth),u<=o.spaceLeft&&(p+=r,g+=u,y++),w.required||u>o.spaceLeft){var k=o.document.currentLineHeight(!0);if(null!=o.height&&o.ellipsis&&o.document.y+2*k>o.maxY&&o.column>=o.columns){for(!0===o.ellipsis&&(o.ellipsis="…"),p=p.replace(/\s+$/,""),g=o.wordWidth(p+o.ellipsis);p&&g>o.lineWidth;)p=p.slice(0,-1).replace(/\s+$/,""),g=o.wordWidth(p+o.ellipsis);g<=o.lineWidth&&(p+=o.ellipsis),g=o.wordWidth(p)}if(w.required&&(u>o.spaceLeft&&(x(),p=r,g=u,y=1),o.emit("lastLine",i,o)),x(),o.document.y+k>o.maxY)if(!o.nextSection())return y=0,p="",!1;return w.required?(o.spaceLeft=o.lineWidth,p="",g=0,y=0):(o.spaceLeft=o.lineWidth-u,p=r,g=u,y=1)}return o.spaceLeft-=u})),y>0&&(this.emit("lastLine",i,this),x()),this.emit("sectionEnd",i,this),!0===i.continued?(w>1&&(this.continuedX=0),this.continuedX+=i.textWidth||0,this.document.y=_):this.document.x=this.startX}},{key:"nextSection",value:function nextSection(r){if(this.emit("sectionEnd",r,this),++this.column>this.columns){if(null!=this.height)return!1;var i;if(this.document.continueOnNewPage(),this.column=1,this.startY=this.document.page.margins.top,this.maxY=this.document.page.maxY(),this.document.x=this.startX,this.document._fillColor)(i=this.document).fillColor.apply(i,_toConsumableArray(this.document._fillColor));this.emit("pageBreak",r,this)}else this.document.x+=this.lineWidth+this.columnGap,this.document.y=this.startY,this.emit("columnBreak",r,this);return this.emit("sectionStart",r,this),!0}}]),LineWrapper}(_.EventEmitter),$e=W.number,et={initText:function initText(){return this._line=this._line.bind(this),this.x=0,this.y=0,this._lineGap=0},lineGap:function lineGap(r){return this._lineGap=r,this},moveDown:function moveDown(r){return null==r&&(r=1),this.y+=this.currentLineHeight(!0)*r+this._lineGap,this},moveUp:function moveUp(r){return null==r&&(r=1),this.y-=this.currentLineHeight(!0)*r+this._lineGap,this},_text:function _text(r,i,o,u,p){var g=this;u=this._initOptions(i,o,u),r=null==r?"":"".concat(r),u.wordSpacing&&(r=r.replace(/\s{2,}/g," "));var y=function addStructure(){u.structParent&&u.structParent.add(g.struct(u.structType||"P",[g.markStructureContent(u.structType||"P")]))};if(u.width){var w=this._wrapper;w||((w=new Qe(this,u)).on("line",p),w.on("firstLine",y)),this._wrapper=u.continued?w:null,this._textOptions=u.continued?u:null,w.wrap(r,u)}else{var _,x=_createForOfIteratorHelper(r.split("\n"));try{for(x.s();!(_=x.n()).done;){var k=_.value;y(),p(k,u)}}catch(r){x.e(r)}finally{x.f()}}return this},text:function text(r,i,o,u){return this._text(r,i,o,u,this._line)},widthOfString:function widthOfString(r){var i=arguments.length>1&&void 0!==arguments[1]?arguments[1]:{};return this._font.widthOfString(r,this._fontSize,i.features)+(i.characterSpacing||0)*(r.length-1)},heightOfString:function heightOfString(r,i){var o=this,u=this.x,p=this.y;(i=this._initOptions(i)).height=1/0;var g=i.lineGap||this._lineGap||0;this._text(r,this.x,this.y,i,(function(){return o.y+=o.currentLineHeight(!0)+g}));var y=this.y-p;return this.x=u,this.y=p,y},list:function list(r,i,o,u,p){var g=this,y=(u=this._initOptions(i,o,u)).listType||"bullet",w=Math.round(this._font.ascender/1e3*this._fontSize),_=w/2,x=u.bulletRadius||w/3,k=u.textIndent||("bullet"===y?5*x:2*w),P=u.bulletIndent||("bullet"===y?8*x:2*w),O=1,I=[],B=[],R=[];!function flatten(r){for(var i=1,o=0;o<r.length;o++){var u=r[o];Array.isArray(u)?(O++,flatten(u),O--):(I.push(u),B.push(O),"bullet"!==y&&R.push(i++))}}(r);(p=new Qe(this,u)).on("line",this._line),O=1;var D=0;return p.on("firstLine",(function(){var r,i,o,w,I;if(u.structParent)if(u.structTypes){var N=_slicedToArray(u.structTypes,3);i=N[0],o=N[1],w=N[2]}else i="LI",o="Lbl",w="LBody";if(i?(r=g.struct(i),u.structParent.add(r)):u.structParent&&(r=u.structParent),(I=B[D++])!==O){var W=P*(I-O);g.x+=W,p.lineWidth-=W,O=I}switch(r&&(o||w)&&r.add(g.struct(o||w,[g.markStructureContent(o||w)])),y){case"bullet":g.circle(g.x-k+x,g.y+_,x),g.fill();break;case"numbered":case"lettered":var U=function label(r){switch(y){case"numbered":return"".concat(r,".");case"lettered":var i=String.fromCharCode((r-1)%26+65),o=Math.floor((r-1)/26+1),u=Array(o+1).join(i);return"".concat(u,".")}}(R[D-1]);g._fragment(U,g.x-k,g.y,u)}r&&o&&w&&r.add(g.struct(w,[g.markStructureContent(w)])),r&&r!==u.structParent&&r.end()})),p.on("sectionStart",(function(){var r=k+P*(O-1);return g.x+=r,p.lineWidth-=r})),p.on("sectionEnd",(function(){var r=k+P*(O-1);return g.x-=r,p.lineWidth+=r})),p.wrap(I.join("\n"),u),this},_initOptions:function _initOptions(){var r=arguments.length>0&&void 0!==arguments[0]?arguments[0]:{},i=arguments.length>1?arguments[1]:void 0,o=arguments.length>2&&void 0!==arguments[2]?arguments[2]:{};"object"==typeof r&&(o=r,r=null);var u=Object.assign({},o);if(this._textOptions)for(var p in this._textOptions){var g=this._textOptions[p];"continued"!==p&&void 0===u[p]&&(u[p]=g)}return null!=r&&(this.x=r),null!=i&&(this.y=i),!1!==u.lineBreak&&(null==u.width&&(u.width=this.page.width-this.x-this.page.margins.right),u.width=Math.max(u.width,0)),u.columns||(u.columns=0),null==u.columnGap&&(u.columnGap=18),u},_line:function _line(r){var i=arguments.length>1&&void 0!==arguments[1]?arguments[1]:{},o=arguments.length>2?arguments[2]:void 0;this._fragment(r,this.x,this.y,i);var u=i.lineGap||this._lineGap||0;return o?this.y+=this.currentLineHeight(!0)+u:this.x+=this.widthOfString(r)},_fragment:function _fragment(r,i,o,u){var p,g,y,w,_,x,k=this;if(0!==(r="".concat(r).replace(/\n/g,"")).length){var P=u.align||"left",O=u.wordSpacing||0,I=u.characterSpacing||0;if(u.width)switch(P){case"right":_=this.widthOfString(r.replace(/\s+$/,""),u),i+=u.lineWidth-_;break;case"center":i+=u.lineWidth/2-u.textWidth/2;break;case"justify":x=r.trim().split(/\s+/),_=this.widthOfString(r.replace(/\s+/g,""),u);var B=this.widthOfString(" ")+I;O=Math.max(0,(u.lineWidth-_)/Math.max(1,x.length-1)-B)}if("number"==typeof u.baseline)p=-u.baseline;else{switch(u.baseline){case"svg-middle":p=.5*this._font.xHeight;break;case"middle":case"svg-central":p=.5*(this._font.descender+this._font.ascender);break;case"bottom":case"ideographic":p=this._font.descender;break;case"alphabetic":p=0;break;case"mathematical":p=.5*this._font.ascender;break;case"hanging":p=.8*this._font.ascender;break;default:p=this._font.ascender}p=p/1e3*this._fontSize}var R,D=u.textWidth+O*(u.wordCount-1)+I*(r.length-1);if(null!=u.link&&this.link(i,o,D,this.currentLineHeight(),u.link),null!=u.goTo&&this.goTo(i,o,D,this.currentLineHeight(),u.goTo),null!=u.destination&&this.addNamedDestination(u.destination,"XYZ",i,o,null),u.underline){this.save(),u.stroke||this.strokeColor.apply(this,_toConsumableArray(this._fillColor||[]));var N=this._fontSize<10?.5:Math.floor(this._fontSize/10);this.lineWidth(N);var W=o+this.currentLineHeight()-N;this.moveTo(i,W),this.lineTo(i+D,W),this.stroke(),this.restore()}if(u.strike){this.save(),u.stroke||this.strokeColor.apply(this,_toConsumableArray(this._fillColor||[]));var U=this._fontSize<10?.5:Math.floor(this._fontSize/10);this.lineWidth(U);var j=o+this.currentLineHeight()/2;this.moveTo(i,j),this.lineTo(i+D,j),this.stroke(),this.restore()}if(this.save(),u.oblique)R="number"==typeof u.oblique?-Math.tan(u.oblique*Math.PI/180):-.25,this.transform(1,0,0,1,i,o),this.transform(1,0,R,1,-R*p,0),this.transform(1,0,0,1,-i,-o);this.transform(1,0,0,-1,0,this.page.height),o=this.page.height-o-p,null==this.page.fonts[this._font.id]&&(this.page.fonts[this._font.id]=this._font.ref()),this.addContent("BT"),this.addContent("1 0 0 1 ".concat($e(i)," ").concat($e(o)," Tm")),this.addContent("/".concat(this._font.id," ").concat($e(this._fontSize)," Tf"));var G=u.fill&&u.stroke?2:u.stroke?1:0;if(G&&this.addContent("".concat(G," Tr")),I&&this.addContent("".concat($e(I)," Tc")),O){x=r.trim().split(/\s+/),O+=this.widthOfString(" ")+I,O*=1e3/this._fontSize,g=[],w=[];var X,K=_createForOfIteratorHelper(x);try{for(K.s();!(X=K.n()).done;){var Y=X.value,J=_slicedToArray(this._font.encode(Y,u.features),2),$=J[0],ee=J[1];g=g.concat($),w=w.concat(ee);var te={},re=w[w.length-1];for(var ne in re){var ie=re[ne];te[ne]=ie}te.xAdvance+=O,w[w.length-1]=te}}catch(r){K.e(r)}finally{K.f()}}else{var oe=_slicedToArray(this._font.encode(r,u.features),2);g=oe[0],w=oe[1]}var ae=this._fontSize/1e3,se=[],ce=0,le=!1,ue=function addSegment(r){if(ce<r){var i=g.slice(ce,r).join(""),o=w[r-1].xAdvance-w[r-1].advanceWidth;se.push("<".concat(i,"> ").concat($e(-o)))}return ce=r},fe=function flush(r){if(ue(r),se.length>0)return k.addContent("[".concat(se.join(" "),"] TJ")),se.length=0};for(y=0;y<w.length;y++){var he=w[y];he.xOffset||he.yOffset?(fe(y),this.addContent("1 0 0 1 ".concat($e(i+he.xOffset*ae)," ").concat($e(o+he.yOffset*ae)," Tm")),fe(y+1),le=!0):(le&&(this.addContent("1 0 0 1 ".concat($e(i)," ").concat($e(o)," Tm")),le=!1),he.xAdvance-he.advanceWidth!=0&&ue(y+1)),i+=he.xAdvance*ae}return fe(y),this.addContent("ET"),this.restore()}}},tt=[65472,65473,65474,65475,65477,65478,65479,65480,65481,65482,65483,65484,65485,65486,65487],rt={1:"DeviceGray",3:"DeviceRGB",4:"DeviceCMYK"},nt=function(){function JPEG(r,i){var o;if(_classCallCheck(this,JPEG),this.data=r,this.label=i,65496!==this.data.readUInt16BE(0))throw"SOI not found in JPEG";for(var u=2;u<this.data.length&&(o=this.data.readUInt16BE(u),u+=2,!tt.includes(o));)u+=this.data.readUInt16BE(u);if(!tt.includes(o))throw"Invalid JPEG.";u+=2,this.bits=this.data[u++],this.height=this.data.readUInt16BE(u),u+=2,this.width=this.data.readUInt16BE(u),u+=2;var p=this.data[u++];this.colorSpace=rt[p],this.obj=null}return _createClass(JPEG,[{key:"embed",value:function embed(r){if(!this.obj)return this.obj=r.ref({Type:"XObject",Subtype:"Image",BitsPerComponent:this.bits,Width:this.width,Height:this.height,ColorSpace:this.colorSpace,Filter:"DCTDecode"}),"DeviceCMYK"===this.colorSpace&&(this.obj.data.Decode=[1,0,1,0,1,0,1,0]),this.obj.end(this.data),this.data=null}}]),JPEG}(),it=function(){function PNGImage(r,i){_classCallCheck(this,PNGImage),this.label=i,this.image=new k.default(r),this.width=this.image.width,this.height=this.image.height,this.imgData=this.image.imgData,this.obj=null}return _createClass(PNGImage,[{key:"embed",value:function embed(r){var i=!1;if(this.document=r,!this.obj){var o=this.image.hasAlphaChannel,p=1===this.image.interlaceMethod;if(this.obj=this.document.ref({Type:"XObject",Subtype:"Image",BitsPerComponent:o?8:this.image.bits,Width:this.width,Height:this.height,Filter:"FlateDecode"}),!o){var g=this.document.ref({Predictor:p?1:15,Colors:this.image.colors,BitsPerComponent:this.image.bits,Columns:this.width});this.obj.data.DecodeParms=g,g.end()}if(0===this.image.palette.length)this.obj.data.ColorSpace=this.image.colorSpace;else{var y=this.document.ref();y.end(u.from(this.image.palette)),this.obj.data.ColorSpace=["Indexed","DeviceRGB",this.image.palette.length/3-1,y]}if(null!=this.image.transparency.grayscale){var w=this.image.transparency.grayscale;this.obj.data.Mask=[w,w]}else if(this.image.transparency.rgb){var _,x=[],k=_createForOfIteratorHelper(this.image.transparency.rgb);try{for(k.s();!(_=k.n()).done;){var P=_.value;x.push(P,P)}}catch(r){k.e(r)}finally{k.f()}this.obj.data.Mask=x}else{if(this.image.transparency.indexed)return i=!0,this.loadIndexedAlphaChannel();if(o)return i=!0,this.splitAlphaChannel()}if(p&&!i)return this.decodeData();this.finalize()}}},{key:"finalize",value:function finalize(){if(this.alphaChannel){var r=this.document.ref({Type:"XObject",Subtype:"Image",Height:this.height,Width:this.width,BitsPerComponent:8,Filter:"FlateDecode",ColorSpace:"DeviceGray",Decode:[0,1]});r.end(this.alphaChannel),this.obj.data.SMask=r}return this.obj.end(this.imgData),this.image=null,this.imgData=null}},{key:"splitAlphaChannel",value:function splitAlphaChannel(){var r=this;return this.image.decodePixels((function(i){for(var o,p,y=r.image.colors,w=r.width*r.height,_=u.alloc(w*y),x=u.alloc(w),k=p=o=0,P=i.length,O=16===r.image.bits?1:0;k<P;){for(var I=0;I<y;I++)_[p++]=i[k++],k+=O;x[o++]=i[k++],k+=O}return r.imgData=g.default.deflateSync(_),r.alphaChannel=g.default.deflateSync(x),r.finalize()}))}},{key:"loadIndexedAlphaChannel",value:function loadIndexedAlphaChannel(){var r=this,i=this.image.transparency.indexed;return this.image.decodePixels((function(o){for(var p=u.alloc(r.width*r.height),y=0,w=0,_=o.length;w<_;w++)p[y++]=i[o[w]];return r.alphaChannel=g.default.deflateSync(p),r.finalize()}))}},{key:"decodeData",value:function decodeData(){var r=this;this.image.decodePixels((function(i){r.imgData=g.default.deflateSync(i),r.finalize()}))}}]),PNGImage}(),ot=function(){function PDFImage(){_classCallCheck(this,PDFImage)}return _createClass(PDFImage,null,[{key:"open",value:function open(r,i){var o;if(u.isBuffer(r))o=r;else if(r instanceof ArrayBuffer)o=u.from(new Uint8Array(r));else{var p;if(p=/^data:.+;base64,(.*)$/.exec(r))o=u.from(p[1],"base64");else if(!(o=P.readFileSync(r)))return}if(255===o[0]&&216===o[1])return new nt(o,i);if(137===o[0]&&"PNG"===o.toString("ascii",1,4))return new it(o,i);throw new Error("Unknown image format.")}}]),PDFImage}(),at={initImages:function initImages(){return this._imageRegistry={},this._imageCount=0},image:function image(r,i,o){var u,p,g,image,y,w,_,x=arguments.length>3&&void 0!==arguments[3]?arguments[3]:{};"object"==typeof i&&(x=i,i=null),i=null!=(w=null!=i?i:x.x)?w:this.x,o=null!=(_=null!=o?o:x.y)?_:this.y,"string"==typeof r&&(image=this._imageRegistry[r]),image||(image=r.width&&r.height?r:this.openImage(r)),image.obj||image.embed(this),null==this.page.xobjects[image.label]&&(this.page.xobjects[image.label]=image.obj);var k=x.width||image.width,P=x.height||image.height;if(x.width&&!x.height){var O=k/image.width;k=image.width*O,P=image.height*O}else if(x.height&&!x.width){var I=P/image.height;k=image.width*I,P=image.height*I}else if(x.scale)k=image.width*x.scale,P=image.height*x.scale;else if(x.fit){var B=_slicedToArray(x.fit,2);p=(g=B[0])/(u=B[1]),(y=image.width/image.height)>p?(k=g,P=g/y):(P=u,k=u*y)}else if(x.cover){var R=_slicedToArray(x.cover,2);p=(g=R[0])/(u=R[1]),(y=image.width/image.height)>p?(P=u,k=u*y):(k=g,P=g/y)}return(x.fit||x.cover)&&("center"===x.align?i=i+g/2-k/2:"right"===x.align&&(i=i+g-k),"center"===x.valign?o=o+u/2-P/2:"bottom"===x.valign&&(o=o+u-P)),null!=x.link&&this.link(i,o,k,P,x.link),null!=x.goTo&&this.goTo(i,o,k,P,x.goTo),null!=x.destination&&this.addNamedDestination(x.destination,"XYZ",i,o,null),this.y===o&&(this.y+=P),this.save(),this.transform(k,0,0,-P,i,o+P),this.addContent("/".concat(image.label," Do")),this.restore(),this},openImage:function openImage(r){var i;return"string"==typeof r&&(i=this._imageRegistry[r]),i||(i=ot.open(r,"I".concat(++this._imageCount)),"string"==typeof r&&(this._imageRegistry[r]=i)),i}},st={annotate:function annotate(r,i,o,u,p){for(var g in p.Type="Annot",p.Rect=this._convertRect(r,i,o,u),p.Border=[0,0,0],"Link"===p.Subtype&&void 0===p.F&&(p.F=4),"Link"!==p.Subtype&&null==p.C&&(p.C=this._normalizeColor(p.color||[0,0,0])),delete p.color,"string"==typeof p.Dest&&(p.Dest=new String(p.Dest)),p){var y=p[g];p[g[0].toUpperCase()+g.slice(1)]=y}var w=this.ref(p);return this.page.annotations.push(w),w.end(),this},note:function note(r,i,o,u,p){var g=arguments.length>5&&void 0!==arguments[5]?arguments[5]:{};return g.Subtype="Text",g.Contents=new String(p),g.Name="Comment",null==g.color&&(g.color=[243,223,92]),this.annotate(r,i,o,u,g)},goTo:function goTo(r,i,o,u,p){var g=arguments.length>5&&void 0!==arguments[5]?arguments[5]:{};return g.Subtype="Link",g.A=this.ref({S:"GoTo",D:new String(p)}),g.A.end(),this.annotate(r,i,o,u,g)},link:function link(r,i,o,u,p){var g=arguments.length>5&&void 0!==arguments[5]?arguments[5]:{};if(g.Subtype="Link","number"==typeof p){var y=this._root.data.Pages.data;if(!(p>=0&&p<y.Kids.length))throw new Error("The document has no page ".concat(p));g.A=this.ref({S:"GoTo",D:[y.Kids[p],"XYZ",null,null,null]}),g.A.end()}else g.A=this.ref({S:"URI",URI:new String(p)}),g.A.end();return this.annotate(r,i,o,u,g)},_markup:function _markup(r,i,o,u){var p=arguments.length>4&&void 0!==arguments[4]?arguments[4]:{},g=this._convertRect(r,i,o,u),y=_slicedToArray(g,4),w=y[0],_=y[1],x=y[2],k=y[3];return p.QuadPoints=[w,k,x,k,w,_,x,_],p.Contents=new String,this.annotate(r,i,o,u,p)},highlight:function highlight(r,i,o,u){var p=arguments.length>4&&void 0!==arguments[4]?arguments[4]:{};return p.Subtype="Highlight",null==p.color&&(p.color=[241,238,148]),this._markup(r,i,o,u,p)},underline:function underline(r,i,o,u){var p=arguments.length>4&&void 0!==arguments[4]?arguments[4]:{};return p.Subtype="Underline",this._markup(r,i,o,u,p)},strike:function strike(r,i,o,u){var p=arguments.length>4&&void 0!==arguments[4]?arguments[4]:{};return p.Subtype="StrikeOut",this._markup(r,i,o,u,p)},lineAnnotation:function lineAnnotation(r,i,o,u){var p=arguments.length>4&&void 0!==arguments[4]?arguments[4]:{};return p.Subtype="Line",p.Contents=new String,p.L=[r,this.page.height-i,o,this.page.height-u],this.annotate(r,i,o,u,p)},rectAnnotation:function rectAnnotation(r,i,o,u){var p=arguments.length>4&&void 0!==arguments[4]?arguments[4]:{};return p.Subtype="Square",p.Contents=new String,this.annotate(r,i,o,u,p)},ellipseAnnotation:function ellipseAnnotation(r,i,o,u){var p=arguments.length>4&&void 0!==arguments[4]?arguments[4]:{};return p.Subtype="Circle",p.Contents=new String,this.annotate(r,i,o,u,p)},textAnnotation:function textAnnotation(r,i,o,u,p){var g=arguments.length>5&&void 0!==arguments[5]?arguments[5]:{};return g.Subtype="FreeText",g.Contents=new String(p),g.DA=new String,this.annotate(r,i,o,u,g)},fileAnnotation:function fileAnnotation(r,i,o,u){var p=arguments.length>4&&void 0!==arguments[4]?arguments[4]:{},g=arguments.length>5&&void 0!==arguments[5]?arguments[5]:{},y=this.file(p.src,Object.assign({hidden:!0},p));return g.Subtype="FileAttachment",g.FS=y,g.Contents?g.Contents=new String(g.Contents):y.data.Desc&&(g.Contents=y.data.Desc),this.annotate(r,i,o,u,g)},_convertRect:function _convertRect(r,i,o,u){var p=i;i+=u;var g=r+o,y=_slicedToArray(this._ctm,6),w=y[0],_=y[1],x=y[2],k=y[3],P=y[4],O=y[5];return[r=w*r+x*i+P,i=_*r+k*i+O,g=w*g+x*p+P,p=_*g+k*p+O]}},ct=function(){function PDFOutline(r,i,o,u){var p=arguments.length>4&&void 0!==arguments[4]?arguments[4]:{expanded:!1};_classCallCheck(this,PDFOutline),this.document=r,this.options=p,this.outlineData={},null!==u&&(this.outlineData.Dest=[u.dictionary,"Fit"]),null!==i&&(this.outlineData.Parent=i),null!==o&&(this.outlineData.Title=new String(o)),this.dictionary=this.document.ref(this.outlineData),this.children=[]}return _createClass(PDFOutline,[{key:"addItem",value:function addItem(r){var i=arguments.length>1&&void 0!==arguments[1]?arguments[1]:{expanded:!1},o=new PDFOutline(this.document,this.dictionary,r,this.document.page,i);return this.children.push(o),o}},{key:"endOutline",value:function endOutline(){if(this.children.length>0){this.options.expanded&&(this.outlineData.Count=this.children.length);var r=this.children[0],i=this.children[this.children.length-1];this.outlineData.First=r.dictionary,this.outlineData.Last=i.dictionary;for(var o=0,u=this.children.length;o<u;o++){var p=this.children[o];o>0&&(p.outlineData.Prev=this.children[o-1].dictionary),o<this.children.length-1&&(p.outlineData.Next=this.children[o+1].dictionary),p.endOutline()}}return this.dictionary.end()}}]),PDFOutline}(),lt={initOutline:function initOutline(){return this.outline=new ct(this,null,null,null)},endOutline:function endOutline(){if(this.outline.endOutline(),this.outline.children.length>0)return this._root.data.Outlines=this.outline.dictionary,this._root.data.PageMode="UseOutlines"}},ut=function(){function PDFStructureContent(r,i){_classCallCheck(this,PDFStructureContent),this.refs=[{pageRef:r,mcid:i}]}return _createClass(PDFStructureContent,[{key:"push",value:function push(r){var i=this;r.refs.forEach((function(r){return i.refs.push(r)}))}}]),PDFStructureContent}(),ft=function(){function PDFStructureElement(r,i){var o=this,u=arguments.length>2&&void 0!==arguments[2]?arguments[2]:{},p=arguments.length>3&&void 0!==arguments[3]?arguments[3]:null;_classCallCheck(this,PDFStructureElement),this.document=r,this._attached=!1,this._ended=!1,this._flushed=!1,this.dictionary=r.ref({S:i});var g=this.dictionary.data;(Array.isArray(u)||this._isValidChild(u))&&(p=u,u={}),void 0!==u.title&&(g.T=new String(u.title)),void 0!==u.lang&&(g.Lang=new String(u.lang)),void 0!==u.alt&&(g.Alt=new String(u.alt)),void 0!==u.expanded&&(g.E=new String(u.expanded)),void 0!==u.actual&&(g.ActualText=new String(u.actual)),this._children=[],p&&(Array.isArray(p)||(p=[p]),p.forEach((function(r){return o.add(r)})),this.end())}return _createClass(PDFStructureElement,[{key:"add",value:function add(r){if(this._ended)throw new Error("Cannot add child to already-ended structure element");if(!this._isValidChild(r))throw new Error("Invalid structure element child");return r instanceof PDFStructureElement&&(r.setParent(this.dictionary),this._attached&&r.setAttached()),r instanceof ut&&this._addContentToParentTree(r),"function"==typeof r&&this._attached&&(r=this._contentForClosure(r)),this._children.push(r),this}},{key:"_addContentToParentTree",value:function _addContentToParentTree(r){var i=this;r.refs.forEach((function(r){var o=r.pageRef,u=r.mcid;i.document.getStructParentTree().get(o.data.StructParents)[u]=i.dictionary}))}},{key:"setParent",value:function setParent(r){if(this.dictionary.data.P)throw new Error("Structure element added to more than one parent");this.dictionary.data.P=r,this._flush()}},{key:"setAttached",value:function setAttached(){var r=this;this._attached||(this._children.forEach((function(i,o){i instanceof PDFStructureElement&&i.setAttached(),"function"==typeof i&&(r._children[o]=r._contentForClosure(i))})),this._attached=!0,this._flush())}},{key:"end",value:function end(){this._ended||(this._children.filter((function(r){return r instanceof PDFStructureElement})).forEach((function(r){return r.end()})),this._ended=!0,this._flush())}},{key:"_isValidChild",value:function _isValidChild(r){return r instanceof PDFStructureElement||r instanceof ut||"function"==typeof r}},{key:"_contentForClosure",value:function _contentForClosure(r){var i=this.document.markStructureContent(this.dictionary.data.S);return r(),this.document.endMarkedContent(),this._addContentToParentTree(i),i}},{key:"_isFlushable",value:function _isFlushable(){return!(!this.dictionary.data.P||!this._ended)&&this._children.every((function(r){return"function"!=typeof r&&(!(r instanceof PDFStructureElement)||r._isFlushable())}))}},{key:"_flush",value:function _flush(){var r=this;!this._flushed&&this._isFlushable()&&(this.dictionary.data.K=[],this._children.forEach((function(i){return r._flushChild(i)})),this.dictionary.end(),this._children=[],this.dictionary.data.K=null,this._flushed=!0)}},{key:"_flushChild",value:function _flushChild(r){var i=this;r instanceof PDFStructureElement&&this.dictionary.data.K.push(r.dictionary),r instanceof ut&&r.refs.forEach((function(r){var o=r.pageRef,u=r.mcid;i.dictionary.data.Pg||(i.dictionary.data.Pg=o),i.dictionary.data.Pg===o?i.dictionary.data.K.push(u):i.dictionary.data.K.push({Type:"MCR",Pg:o,MCID:u})}))}}]),PDFStructureElement}(),ht=function(r){_inherits(PDFNumberTree,r);var i=_createSuper(PDFNumberTree);function PDFNumberTree(){return _classCallCheck(this,PDFNumberTree),i.apply(this,arguments)}return _createClass(PDFNumberTree,[{key:"_compareKeys",value:function _compareKeys(r,i){return parseInt(r)-parseInt(i)}},{key:"_keysName",value:function _keysName(){return"Nums"}},{key:"_dataForKey",value:function _dataForKey(r){return parseInt(r)}}]),PDFNumberTree}(I),dt={initMarkings:function initMarkings(r){this.structChildren=[],r.tagged&&(this.getMarkInfoDictionary().data.Marked=!0,this.getStructTreeRoot())},markContent:function markContent(r){var i=arguments.length>1&&void 0!==arguments[1]?arguments[1]:null;if("Artifact"===r||i&&i.mcid){var o=0;for(this.page.markings.forEach((function(r){(o||r.structContent||"Artifact"===r.tag)&&o++}));o--;)this.endMarkedContent()}if(!i)return this.page.markings.push({tag:r}),this.addContent("/".concat(r," BMC")),this;this.page.markings.push({tag:r,options:i});var u={};return void 0!==i.mcid&&(u.MCID=i.mcid),"Artifact"===r&&("string"==typeof i.type&&(u.Type=i.type),Array.isArray(i.bbox)&&(u.BBox=[i.bbox[0],this.page.height-i.bbox[3],i.bbox[2],this.page.height-i.bbox[1]]),Array.isArray(i.attached)&&i.attached.every((function(r){return"string"==typeof r}))&&(u.Attached=i.attached)),"Span"===r&&(i.lang&&(u.Lang=new String(i.lang)),i.alt&&(u.Alt=new String(i.alt)),i.expanded&&(u.E=new String(i.expanded)),i.actual&&(u.ActualText=new String(i.actual))),this.addContent("/".concat(r," ").concat(W.convert(u)," BDC")),this},markStructureContent:function markStructureContent(r){var i=arguments.length>1&&void 0!==arguments[1]?arguments[1]:{},o=this.getStructParentTree().get(this.page.structParentTreeKey),u=o.length;o.push(null),this.markContent(r,_objectSpread2(_objectSpread2({},i),{},{mcid:u}));var p=new ut(this.page.dictionary,u);return this.page.markings.slice(-1)[0].structContent=p,p},endMarkedContent:function endMarkedContent(){return this.page.markings.pop(),this.addContent("EMC"),this},struct:function struct(r){var i=arguments.length>1&&void 0!==arguments[1]?arguments[1]:{},o=arguments.length>2&&void 0!==arguments[2]?arguments[2]:null;return new ft(this,r,i,o)},addStructure:function addStructure(r){var i=this.getStructTreeRoot();return r.setParent(i),r.setAttached(),this.structChildren.push(r),i.data.K||(i.data.K=[]),i.data.K.push(r.dictionary),this},initPageMarkings:function initPageMarkings(r){var i=this;r.forEach((function(r){if(r.structContent){var o=r.structContent,u=i.markStructureContent(r.tag,r.options);o.push(u),i.page.markings.slice(-1)[0].structContent=o}else i.markContent(r.tag,r.options)}))},endPageMarkings:function endPageMarkings(r){var i=r.markings;return i.forEach((function(){return r.write("EMC")})),r.markings=[],i},getMarkInfoDictionary:function getMarkInfoDictionary(){return this._root.data.MarkInfo||(this._root.data.MarkInfo=this.ref({})),this._root.data.MarkInfo},getStructTreeRoot:function getStructTreeRoot(){return this._root.data.StructTreeRoot||(this._root.data.StructTreeRoot=this.ref({Type:"StructTreeRoot",ParentTree:new ht,ParentTreeNextKey:0})),this._root.data.StructTreeRoot},getStructParentTree:function getStructParentTree(){return this.getStructTreeRoot().data.ParentTree},createStructParentTreeNextKey:function createStructParentTreeNextKey(){this.getMarkInfoDictionary();var r=this.getStructTreeRoot(),i=r.data.ParentTreeNextKey++;return r.data.ParentTree.add(i,[]),i},endMarkings:function endMarkings(){var r=this._root.data.StructTreeRoot;r&&(r.end(),this.structChildren.forEach((function(r){return r.end()}))),this._root.data.MarkInfo&&this._root.data.MarkInfo.end()}},pt={readOnly:1,required:2,noExport:4,multiline:4096,password:8192,toggleToOffButton:16384,radioButton:32768,pushButton:65536,combo:131072,edit:262144,sort:524288,multiSelect:2097152,noSpell:4194304},gt={left:0,center:1,right:2},yt={value:"V",defaultValue:"DV"},vt={zip:"0",zipPlus4:"1",zip4:"1",phone:"2",ssn:"3"},mt={nDec:0,sepComma:!1,negStyle:"MinusBlack",currency:"",currencyPrepend:!0},bt={nDec:0,sepComma:!1},wt={initForm:function initForm(){if(!this._font)throw new Error("Must set a font before calling initForm method");this._acroform={fonts:{},defaultFont:this._font.name},this._acroform.fonts[this._font.id]=this._font.ref();var r={Fields:[],NeedAppearances:!0,DA:new String("/".concat(this._font.id," 0 Tf 0 g")),DR:{Font:{}}};r.DR.Font[this._font.id]=this._font.ref();var i=this.ref(r);return this._root.data.AcroForm=i,this},endAcroForm:function endAcroForm(){var r=this;if(this._root.data.AcroForm){if(!Object.keys(this._acroform.fonts).length&&!this._acroform.defaultFont)throw new Error("No fonts specified for PDF form");var i=this._root.data.AcroForm.data.DR.Font;Object.keys(this._acroform.fonts).forEach((function(o){i[o]=r._acroform.fonts[o]})),this._root.data.AcroForm.data.Fields.forEach((function(i){r._endChild(i)})),this._root.data.AcroForm.end()}return this},_endChild:function _endChild(r){var i=this;return Array.isArray(r.data.Kids)&&(r.data.Kids.forEach((function(r){i._endChild(r)})),r.end()),this},formField:function formField(r){var i=arguments.length>1&&void 0!==arguments[1]?arguments[1]:{},o=this._fieldDict(r,null,i),u=this.ref(o);return this._addToParent(u),u},formAnnotation:function formAnnotation(r,i,o,u,p,g){var y=arguments.length>6&&void 0!==arguments[6]?arguments[6]:{},w=this._fieldDict(r,i,y);w.Subtype="Widget",void 0===w.F&&(w.F=4),this.annotate(o,u,p,g,w);var _=this.page.annotations[this.page.annotations.length-1];return this._addToParent(_)},formText:function formText(r,i,o,u,p){var g=arguments.length>5&&void 0!==arguments[5]?arguments[5]:{};return this.formAnnotation(r,"text",i,o,u,p,g)},formPushButton:function formPushButton(r,i,o,u,p){var g=arguments.length>5&&void 0!==arguments[5]?arguments[5]:{};return this.formAnnotation(r,"pushButton",i,o,u,p,g)},formCombo:function formCombo(r,i,o,u,p){var g=arguments.length>5&&void 0!==arguments[5]?arguments[5]:{};return this.formAnnotation(r,"combo",i,o,u,p,g)},formList:function formList(r,i,o,u,p){var g=arguments.length>5&&void 0!==arguments[5]?arguments[5]:{};return this.formAnnotation(r,"list",i,o,u,p,g)},formRadioButton:function formRadioButton(r,i,o,u,p){var g=arguments.length>5&&void 0!==arguments[5]?arguments[5]:{};return this.formAnnotation(r,"radioButton",i,o,u,p,g)},formCheckbox:function formCheckbox(r,i,o,u,p){var g=arguments.length>5&&void 0!==arguments[5]?arguments[5]:{};return this.formAnnotation(r,"checkbox",i,o,u,p,g)},_addToParent:function _addToParent(r){var i=r.data.Parent;return i?(i.data.Kids||(i.data.Kids=[]),i.data.Kids.push(r)):this._root.data.AcroForm.data.Fields.push(r),this},_fieldDict:function _fieldDict(r,i){var o=arguments.length>2&&void 0!==arguments[2]?arguments[2]:{};if(!this._acroform)throw new Error("Call document.initForms() method before adding form elements to document");var u=Object.assign({},o);return null!==i&&(u=this._resolveType(i,o)),u=this._resolveFlags(u),u=this._resolveJustify(u),u=this._resolveFont(u),u=this._resolveStrings(u),u=this._resolveColors(u),(u=this._resolveFormat(u)).T=new String(r),u.parent&&(u.Parent=u.parent,delete u.parent),u},_resolveType:function _resolveType(r,i){if("text"===r)i.FT="Tx";else if("pushButton"===r)i.FT="Btn",i.pushButton=!0;else if("radioButton"===r)i.FT="Btn",i.radioButton=!0;else if("checkbox"===r)i.FT="Btn";else if("combo"===r)i.FT="Ch",i.combo=!0;else{if("list"!==r)throw new Error("Invalid form annotation type '".concat(r,"'"));i.FT="Ch"}return i},_resolveFormat:function _resolveFormat(r){var i=r.format;if(i&&i.type){var o,u,p="";if(void 0!==vt[i.type])o="AFSpecial_Keystroke",u="AFSpecial_Format",p=vt[i.type];else{var g=i.type.charAt(0).toUpperCase()+i.type.slice(1);if(o="AF".concat(g,"_Keystroke"),u="AF".concat(g,"_Format"),"date"===i.type)o+="Ex",p=String(i.param);else if("time"===i.type)p=String(i.param);else if("number"===i.type){var y=Object.assign({},mt,i);p=String([String(y.nDec),y.sepComma?"0":"1",'"'+y.negStyle+'"',"null",'"'+y.currency+'"',String(y.currencyPrepend)].join(","))}else if("percent"===i.type){var w=Object.assign({},bt,i);p=String([String(w.nDec),w.sepComma?"0":"1"].join(","))}}r.AA=r.AA?r.AA:{},r.AA.K={S:"JavaScript",JS:new String("".concat(o,"(").concat(p,");"))},r.AA.F={S:"JavaScript",JS:new String("".concat(u,"(").concat(p,");"))}}return delete r.format,r},_resolveColors:function _resolveColors(r){var i=this._normalizeColor(r.backgroundColor);return i&&(r.MK||(r.MK={}),r.MK.BG=i),(i=this._normalizeColor(r.borderColor))&&(r.MK||(r.MK={}),r.MK.BC=i),delete r.backgroundColor,delete r.borderColor,r},_resolveFlags:function _resolveFlags(r){var i=0;return Object.keys(r).forEach((function(o){pt[o]&&(i|=pt[o],delete r[o])})),0!==i&&(r.Ff=r.Ff?r.Ff:0,r.Ff|=i),r},_resolveJustify:function _resolveJustify(r){var i=0;return void 0!==r.align&&("number"==typeof gt[r.align]&&(i=gt[r.align]),delete r.align),0!==i&&(r.Q=i),r},_resolveFont:function _resolveFont(r){if(null===this._acroform.fonts[this._font.id]&&(this._acroform.fonts[this._font.id]=this._font.ref()),this._acroform.defaultFont!==this._font.name){r.DR={Font:{}};var i=r.fontSize||0;r.DR.Font[this._font.id]=this._font.ref(),r.DA=new String("/".concat(this._font.id," ").concat(i," Tf 0 g"))}return r},_resolveStrings:function _resolveStrings(r){var i=[];function appendChoices(r){if(Array.isArray(r))for(var o=0;o<r.length;o++)"string"==typeof r[o]?i.push(new String(r[o])):i.push(r[o])}return appendChoices(r.Opt),r.select&&(appendChoices(r.select),delete r.select),i.length&&(r.Opt=i),Object.keys(yt).forEach((function(i){void 0!==r[i]&&(r[yt[i]]=r[i],delete r[i])})),["V","DV"].forEach((function(i){"string"==typeof r[i]&&(r[i]=new String(r[i]))})),r.MK&&r.MK.CA&&(r.MK.CA=new String(r.MK.CA)),r.label&&(r.MK=r.MK?r.MK:{},r.MK.CA=new String(r.label),delete r.label),r}},_t={file:function file(r){var i=arguments.length>1&&void 0!==arguments[1]?arguments[1]:{};i.name=i.name||r;var o,p={Type:"EmbeddedFile",Params:{}};if(!r)throw new Error("No src specified");if(u.isBuffer(r))o=r;else if(r instanceof ArrayBuffer)o=u.from(new Uint8Array(r));else{var g;if(g=/^data:(.*);base64,(.*)$/.exec(r))g[1]&&(p.Subtype=g[1].replace("/","#2F")),o=u.from(g[2],"base64");else{if(!(o=P.readFileSync(r)))throw new Error("Could not read contents of file at filepath ".concat(r));var w=P.statSync(r),_=w.birthtime,x=w.ctime;p.Params.CreationDate=_,p.Params.ModDate=x}}i.creationDate instanceof Date&&(p.Params.CreationDate=i.creationDate),i.modifiedDate instanceof Date&&(p.Params.ModDate=i.modifiedDate),i.type&&(p.Subtype=i.type.replace("/","#2F"));var k,O=y.default.MD5(y.default.lib.WordArray.create(new Uint8Array(o)));p.Params.CheckSum=new String(O),p.Params.Size=o.byteLength,this._fileRegistry||(this._fileRegistry={});var file=this._fileRegistry[i.name];file&&isEqual(p,file)?k=file.ref:((k=this.ref(p)).end(o),this._fileRegistry[i.name]=_objectSpread2(_objectSpread2({},p),{},{ref:k}));var I={Type:"Filespec",F:new String(i.name),EF:{F:k},UF:new String(i.name)};i.description&&(I.Desc=new String(i.description));var B=this.ref(I);return B.end(),i.hidden||this.addNamedEmbeddedFile(i.name,B),B}};function isEqual(r,i){return r.Subtype===i.Subtype&&r.Params.CheckSum.toString()===i.Params.CheckSum.toString()&&r.Params.Size===i.Params.Size&&r.Params.CreationDate===i.Params.CreationDate&&r.Params.ModDate===i.Params.ModDate}var St=function(r){_inherits(PDFDocument,r);var i=_createSuper(PDFDocument);function PDFDocument(){var r,o=arguments.length>0&&void 0!==arguments[0]?arguments[0]:{};switch(_classCallCheck(this,PDFDocument),(r=i.call(this,o)).options=o,o.pdfVersion){case"1.4":r.version=1.4;break;case"1.5":r.version=1.5;break;case"1.6":r.version=1.6;break;case"1.7":case"1.7ext3":r.version=1.7;break;default:r.version=1.3}r.compress=null==r.options.compress||r.options.compress,r._pageBuffer=[],r._pageBufferStart=0,r._offsets=[],r._waiting=0,r._ended=!1,r._offset=0;var u=r.ref({Type:"Pages",Count:0,Kids:[]}),p=r.ref({Dests:new K});if(r._root=r.ref({Type:"Catalog",Pages:u,Names:p}),r.options.lang&&(r._root.data.Lang=new String(r.options.lang)),r.page=null,r.initColor(),r.initVector(),r.initFonts(o.font),r.initText(),r.initImages(),r.initOutline(),r.initMarkings(o),r.info={Producer:"PDFKit",Creator:"PDFKit",CreationDate:new Date},r.options.info)for(var g in r.options.info){var y=r.options.info[g];r.info[g]=y}return r.options.displayTitle&&(r._root.data.ViewerPreferences=r.ref({DisplayDocTitle:!0})),r._id=pe.generateFileID(r.info),r._security=pe.create(_assertThisInitialized(r),o),r._write("%PDF-".concat(r.version)),r._write("%ÿÿÿÿ"),!1!==r.options.autoFirstPage&&r.addPage(),r}return _createClass(PDFDocument,[{key:"addPage",value:function addPage(r){null==r&&(r=this.options),this.options.bufferPages||this.flushPages(),this.page=new X(this,r),this._pageBuffer.push(this.page);var i=this._root.data.Pages.data;return i.Kids.push(this.page.dictionary),i.Count++,this.x=this.page.margins.left,this.y=this.page.margins.top,this._ctm=[1,0,0,1,0,0],this.transform(1,0,0,-1,0,this.page.height),this.emit("pageAdded"),this}},{key:"continueOnNewPage",value:function continueOnNewPage(r){var i=this.endPageMarkings(this.page);return this.addPage(r),this.initPageMarkings(i),this}},{key:"bufferedPageRange",value:function bufferedPageRange(){return{start:this._pageBufferStart,count:this._pageBuffer.length}}},{key:"switchToPage",value:function switchToPage(r){var i;if(!(i=this._pageBuffer[r-this._pageBufferStart]))throw new Error("switchToPage(".concat(r,") out of bounds, current buffer covers pages ").concat(this._pageBufferStart," to ").concat(this._pageBufferStart+this._pageBuffer.length-1));return this.page=i}},{key:"flushPages",value:function flushPages(){var r=this._pageBuffer;this._pageBuffer=[],this._pageBufferStart+=r.length;var i,o=_createForOfIteratorHelper(r);try{for(o.s();!(i=o.n()).done;){var u=i.value;this.endPageMarkings(u),u.end()}}catch(r){o.e(r)}finally{o.f()}}},{key:"addNamedDestination",value:function addNamedDestination(r){for(var i=arguments.length,o=new Array(i>1?i-1:0),u=1;u<i;u++)o[u-1]=arguments[u];0===o.length&&(o=["XYZ",null,null,null]),"XYZ"===o[0]&&null!==o[2]&&(o[2]=this.page.height-o[2]),o.unshift(this.page.dictionary),this._root.data.Names.data.Dests.add(r,o)}},{key:"addNamedEmbeddedFile",value:function addNamedEmbeddedFile(r,i){this._root.data.Names.data.EmbeddedFiles||(this._root.data.Names.data.EmbeddedFiles=new K({limits:!1})),this._root.data.Names.data.EmbeddedFiles.add(r,i)}},{key:"addNamedJavaScript",value:function addNamedJavaScript(r,i){this._root.data.Names.data.JavaScript||(this._root.data.Names.data.JavaScript=new K);var o={JS:new String(i),S:"JavaScript"};this._root.data.Names.data.JavaScript.add(r,o)}},{key:"ref",value:function ref(r){var ref=new U(this,this._offsets.length+1,r);return this._offsets.push(null),this._waiting++,ref}},{key:"_read",value:function _read(){}},{key:"_write",value:function _write(r){return u.isBuffer(r)||(r=u.from(r+"\n","binary")),this.push(r),this._offset+=r.length}},{key:"addContent",value:function addContent(r){return this.page.write(r),this}},{key:"_refEnd",value:function _refEnd(r){if(this._offsets[r.id-1]=r.offset,0==--this._waiting&&this._ended)return this._finalize(),this._ended=!1}},{key:"write",value:function write(r,i){new Error("PDFDocument#write is deprecated, and will be removed in a future version of PDFKit. Please pipe the document into a Node stream.");return this.pipe(P.createWriteStream(r)),this.end(),this.once("end",i)}},{key:"end",value:function end(){for(var r in this.flushPages(),this._info=this.ref(),this.info){var i=this.info[r];"string"==typeof i&&(i=new String(i));var o=this.ref(i);o.end(),this._info.data[r]=o}for(var u in this._info.end(),this._fontFamilies){this._fontFamilies[u].finalize()}return this.endOutline(),this.endMarkings(),this._root.end(),this._root.data.Pages.end(),this._root.data.Names.end(),this.endAcroForm(),this._root.data.ViewerPreferences&&this._root.data.ViewerPreferences.end(),this._security&&this._security.end(),0===this._waiting?this._finalize():this._ended=!0}},{key:"_finalize",value:function _finalize(){var r=this._offset;this._write("xref"),this._write("0 ".concat(this._offsets.length+1)),this._write("0000000000 65535 f ");var i,o=_createForOfIteratorHelper(this._offsets);try{for(o.s();!(i=o.n()).done;){var u=i.value;u="0000000000".concat(u).slice(-10),this._write(u+" 00000 n ")}}catch(r){o.e(r)}finally{o.f()}var p={Size:this._offsets.length+1,Root:this._root,Info:this._info,ID:[this._id,this._id]};return this._security&&(p.Encrypt=this._security.dictionary),this._write("trailer"),this._write(W.convert(p)),this._write("startxref"),this._write("".concat(r)),this._write("%%EOF"),this.push(null)}},{key:"toString",value:function toString(){return"[object PDFDocument]"}}]),PDFDocument}(p.default.Readable),xt=function mixin(r){Object.assign(St.prototype,r)};xt(Ie),xt(Ue),xt(Je),xt(et),xt(at),xt(st),xt(lt),xt(dt),xt(wt),xt(_t),St.LineWrapper=Qe;var Ct=St;i.default=Ct},4559:function(r,i,o){"use strict";o(3290);var u=o(8823),p=u.Buffer;function copyProps(r,i){for(var o in r)i[o]=r[o]}function SafeBuffer(r,i,o){return p(r,i,o)}p.from&&p.alloc&&p.allocUnsafe&&p.allocUnsafeSlow?r.exports=u:(copyProps(u,i),i.Buffer=SafeBuffer),copyProps(p,SafeBuffer),SafeBuffer.from=function(r,i,o){if("number"==typeof r)throw new TypeError("Argument must not be a number");return p(r,i,o)},SafeBuffer.alloc=function(r,i,o){if("number"!=typeof r)throw new TypeError("Argument must be a number");var u=p(r);return void 0!==i?"string"==typeof o?u.fill(i,o):u.fill(i):u.fill(0),u},SafeBuffer.allocUnsafe=function(r){if("number"!=typeof r)throw new TypeError("Argument must be a number");return p(r)},SafeBuffer.allocUnsafeSlow=function(r){if("number"!=typeof r)throw new TypeError("Argument must be a number");return u.SlowBuffer(r)}},4781:function(r,i,o){"use strict";o(7042),o(6992),o(1539),o(2472),o(2990),o(8927),o(3105),o(5035),o(4345),o(7174),o(2846),o(4731),o(7209),o(6319),o(8867),o(7789),o(3739),o(9368),o(4483),o(2056),o(3462),o(678),o(7462),o(3824),o(5021),o(2974),o(5016),o(9135);var u=o(311),p=o(1753).swap32LE,g=function(){function UnicodeTrie(r){var i="function"==typeof r.readUInt32BE&&"function"==typeof r.slice;if(i||r instanceof Uint8Array){var o;if(i)this.highStart=r.readUInt32LE(0),this.errorValue=r.readUInt32LE(4),o=r.readUInt32LE(8),r=r.slice(12);else{var g=new DataView(r.buffer);this.highStart=g.getUint32(0,!0),this.errorValue=g.getUint32(4,!0),o=g.getUint32(8,!0),r=r.subarray(12)}r=u(r,new Uint8Array(o)),r=u(r,new Uint8Array(o)),p(r),this.data=new Uint32Array(r.buffer)}else{var y=r;this.data=y.data,this.highStart=y.highStart,this.errorValue=y.errorValue}}return UnicodeTrie.prototype.get=function get(r){var i;return r<0||r>1114111?this.errorValue:r<55296||r>56319&&r<=65535?(i=(this.data[r>>5]<<2)+(31&r),this.data[i]):r<=65535?(i=(this.data[2048+(r-55296>>5)]<<2)+(31&r),this.data[i]):r<this.highStart?(i=this.data[2080+(r>>11)],i=((i=this.data[i+(r>>5&63)])<<2)+(31&r),this.data[i]):this.data[this.data.length-4]},UnicodeTrie}();r.exports=g},1753:function(r,i,o){"use strict";o(6992),o(1539),o(2472),o(2990),o(8927),o(3105),o(5035),o(4345),o(7174),o(2846),o(4731),o(7209),o(6319),o(8867),o(7789),o(3739),o(9368),o(4483),o(2056),o(3462),o(678),o(7462),o(3824),o(5021),o(2974),o(5016),o(9135);var u=18===new Uint8Array(new Uint32Array([305419896]).buffer)[0],p=function swap(r,i,o){var u=r[i];r[i]=r[o],r[o]=u};r.exports={swap32LE:function swap32LE(r){u&&function swap32(r){for(var i=r.length,o=0;o<i;o+=4)p(r,o,o+3),p(r,o+1,o+2)}(r)}}},8071:function(r,i,o){"use strict";var u=o(8519);r.exports=u},8519:function(r,i,o){"use strict";r=o.nmd(r),o(8309),o(7941),o(3210),o(4916),o(4723),o(3728),o(5306),o(7042),o(9653),o(3123),o(2222),o(6992),o(1539),o(3948),o(9254),o(3290);r&&void 0!==r.exports&&(r.exports=function SVGtoPDF(r,i,o,u,p){var g={aliceblue:[240,248,255],antiquewhite:[250,235,215],aqua:[0,255,255],aquamarine:[127,255,212],azure:[240,255,255],beige:[245,245,220],bisque:[255,228,196],black:[0,0,0],blanchedalmond:[255,235,205],blue:[0,0,255],blueviolet:[138,43,226],brown:[165,42,42],burlywood:[222,184,135],cadetblue:[95,158,160],chartreuse:[127,255,0],chocolate:[210,105,30],coral:[255,127,80],cornflowerblue:[100,149,237],cornsilk:[255,248,220],crimson:[220,20,60],cyan:[0,255,255],darkblue:[0,0,139],darkcyan:[0,139,139],darkgoldenrod:[184,134,11],darkgray:[169,169,169],darkgrey:[169,169,169],darkgreen:[0,100,0],darkkhaki:[189,183,107],darkmagenta:[139,0,139],darkolivegreen:[85,107,47],darkorange:[255,140,0],darkorchid:[153,50,204],darkred:[139,0,0],darksalmon:[233,150,122],darkseagreen:[143,188,143],darkslateblue:[72,61,139],darkslategray:[47,79,79],darkslategrey:[47,79,79],darkturquoise:[0,206,209],darkviolet:[148,0,211],deeppink:[255,20,147],deepskyblue:[0,191,255],dimgray:[105,105,105],dimgrey:[105,105,105],dodgerblue:[30,144,255],firebrick:[178,34,34],floralwhite:[255,250,240],forestgreen:[34,139,34],fuchsia:[255,0,255],gainsboro:[220,220,220],ghostwhite:[248,248,255],gold:[255,215,0],goldenrod:[218,165,32],gray:[128,128,128],grey:[128,128,128],green:[0,128,0],greenyellow:[173,255,47],honeydew:[240,255,240],hotpink:[255,105,180],indianred:[205,92,92],indigo:[75,0,130],ivory:[255,255,240],khaki:[240,230,140],lavender:[230,230,250],lavenderblush:[255,240,245],lawngreen:[124,252,0],lemonchiffon:[255,250,205],lightblue:[173,216,230],lightcoral:[240,128,128],lightcyan:[224,255,255],lightgoldenrodyellow:[250,250,210],lightgray:[211,211,211],lightgrey:[211,211,211],lightgreen:[144,238,144],lightpink:[255,182,193],lightsalmon:[255,160,122],lightseagreen:[32,178,170],lightskyblue:[135,206,250],lightslategray:[119,136,153],lightslategrey:[119,136,153],lightsteelblue:[176,196,222],lightyellow:[255,255,224],lime:[0,255,0],limegreen:[50,205,50],linen:[250,240,230],magenta:[255,0,255],maroon:[128,0,0],mediumaquamarine:[102,205,170],mediumblue:[0,0,205],mediumorchid:[186,85,211],mediumpurple:[147,112,219],mediumseagreen:[60,179,113],mediumslateblue:[123,104,238],mediumspringgreen:[0,250,154],mediumturquoise:[72,209,204],mediumvioletred:[199,21,133],midnightblue:[25,25,112],mintcream:[245,255,250],mistyrose:[255,228,225],moccasin:[255,228,181],navajowhite:[255,222,173],navy:[0,0,128],oldlace:[253,245,230],olive:[128,128,0],olivedrab:[107,142,35],orange:[255,165,0],orangered:[255,69,0],orchid:[218,112,214],palegoldenrod:[238,232,170],palegreen:[152,251,152],paleturquoise:[175,238,238],palevioletred:[219,112,147],papayawhip:[255,239,213],peachpuff:[255,218,185],peru:[205,133,63],pink:[255,192,203],plum:[221,160,221],powderblue:[176,224,230],purple:[128,0,128],rebeccapurple:[102,51,153],red:[255,0,0],rosybrown:[188,143,143],royalblue:[65,105,225],saddlebrown:[139,69,19],salmon:[250,128,114],sandybrown:[244,164,96],seagreen:[46,139,87],seashell:[255,245,238],sienna:[160,82,45],silver:[192,192,192],skyblue:[135,206,235],slateblue:[106,90,205],slategray:[112,128,144],slategrey:[112,128,144],snow:[255,250,250],springgreen:[0,255,127],steelblue:[70,130,180],tan:[210,180,140],teal:[0,128,128],thistle:[216,191,216],tomato:[255,99,71],turquoise:[64,224,208],violet:[238,130,238],wheat:[245,222,179],white:[255,255,255],whitesmoke:[245,245,245],yellow:[255,255,0]},y={black:[g.black,1],white:[g.white,1],transparent:[g.black,0]},w={quot:34,amp:38,lt:60,gt:62,apos:39,OElig:338,oelig:339,Scaron:352,scaron:353,Yuml:376,circ:710,tilde:732,ensp:8194,emsp:8195,thinsp:8201,zwnj:8204,zwj:8205,lrm:8206,rlm:8207,ndash:8211,mdash:8212,lsquo:8216,rsquo:8217,sbquo:8218,ldquo:8220,rdquo:8221,bdquo:8222,dagger:8224,Dagger:8225,permil:8240,lsaquo:8249,rsaquo:8250,euro:8364,nbsp:160,iexcl:161,cent:162,pound:163,curren:164,yen:165,brvbar:166,sect:167,uml:168,copy:169,ordf:170,laquo:171,not:172,shy:173,reg:174,macr:175,deg:176,plusmn:177,sup2:178,sup3:179,acute:180,micro:181,para:182,middot:183,cedil:184,sup1:185,ordm:186,raquo:187,frac14:188,frac12:189,frac34:190,iquest:191,Agrave:192,Aacute:193,Acirc:194,Atilde:195,Auml:196,Aring:197,AElig:198,Ccedil:199,Egrave:200,Eacute:201,Ecirc:202,Euml:203,Igrave:204,Iacute:205,Icirc:206,Iuml:207,ETH:208,Ntilde:209,Ograve:210,Oacute:211,Ocirc:212,Otilde:213,Ouml:214,times:215,Oslash:216,Ugrave:217,Uacute:218,Ucirc:219,Uuml:220,Yacute:221,THORN:222,szlig:223,agrave:224,aacute:225,acirc:226,atilde:227,auml:228,aring:229,aelig:230,ccedil:231,egrave:232,eacute:233,ecirc:234,euml:235,igrave:236,iacute:237,icirc:238,iuml:239,eth:240,ntilde:241,ograve:242,oacute:243,ocirc:244,otilde:245,ouml:246,divide:247,oslash:248,ugrave:249,uacute:250,ucirc:251,uuml:252,yacute:253,thorn:254,yuml:255,fnof:402,Alpha:913,Beta:914,Gamma:915,Delta:916,Epsilon:917,Zeta:918,Eta:919,Theta:920,Iota:921,Kappa:922,Lambda:923,Mu:924,Nu:925,Xi:926,Omicron:927,Pi:928,Rho:929,Sigma:931,Tau:932,Upsilon:933,Phi:934,Chi:935,Psi:936,Omega:937,alpha:945,beta:946,gamma:947,delta:948,epsilon:949,zeta:950,eta:951,theta:952,iota:953,kappa:954,lambda:955,mu:956,nu:957,xi:958,omicron:959,pi:960,rho:961,sigmaf:962,sigma:963,tau:964,upsilon:965,phi:966,chi:967,psi:968,omega:969,thetasym:977,upsih:978,piv:982,bull:8226,hellip:8230,prime:8242,Prime:8243,oline:8254,frasl:8260,weierp:8472,image:8465,real:8476,trade:8482,alefsym:8501,larr:8592,uarr:8593,rarr:8594,darr:8595,harr:8596,crarr:8629,lArr:8656,uArr:8657,rArr:8658,dArr:8659,hArr:8660,forall:8704,part:8706,exist:8707,empty:8709,nabla:8711,isin:8712,notin:8713,ni:8715,prod:8719,sum:8721,minus:8722,lowast:8727,radic:8730,prop:8733,infin:8734,ang:8736,and:8743,or:8744,cap:8745,cup:8746,int:8747,there4:8756,sim:8764,cong:8773,asymp:8776,ne:8800,equiv:8801,le:8804,ge:8805,sub:8834,sup:8835,nsub:8836,sube:8838,supe:8839,oplus:8853,otimes:8855,perp:8869,sdot:8901,lceil:8968,rceil:8969,lfloor:8970,rfloor:8971,lang:9001,rang:9002,loz:9674,spades:9824,clubs:9827,hearts:9829,diams:9830},_={A:7,a:7,C:6,c:6,H:1,h:1,L:2,l:2,M:2,m:2,Q:4,q:4,S:4,s:4,T:2,t:2,V:1,v:1,Z:0,z:0},x={A3:!0,A4:!0,a3:!0,a4:!0},k={color:{inherit:!0,initial:void 0},visibility:{inherit:!0,initial:"visible",values:{hidden:"hidden",collapse:"hidden",visible:"visible"}},fill:{inherit:!0,initial:y.black},stroke:{inherit:!0,initial:"none"},"stop-color":{inherit:!1,initial:y.black},"fill-opacity":{inherit:!0,initial:1},"stroke-opacity":{inherit:!0,initial:1},"stop-opacity":{inherit:!1,initial:1},"fill-rule":{inherit:!0,initial:"nonzero",values:{nonzero:"nonzero",evenodd:"evenodd"}},"clip-rule":{inherit:!0,initial:"nonzero",values:{nonzero:"nonzero",evenodd:"evenodd"}},"stroke-width":{inherit:!0,initial:1},"stroke-dasharray":{inherit:!0,initial:[]},"stroke-dashoffset":{inherit:!0,initial:0},"stroke-miterlimit":{inherit:!0,initial:4},"stroke-linejoin":{inherit:!0,initial:"miter",values:{miter:"miter",round:"round",bevel:"bevel"}},"stroke-linecap":{inherit:!0,initial:"butt",values:{butt:"butt",round:"round",square:"square"}},"font-size":{inherit:!0,initial:16,values:{"xx-small":9,"x-small":10,small:13,medium:16,large:18,"x-large":24,"xx-large":32}},"font-family":{inherit:!0,initial:"sans-serif"},"font-weight":{inherit:!0,initial:"normal",values:{600:"bold",700:"bold",800:"bold",900:"bold",bold:"bold",bolder:"bold",500:"normal",400:"normal",300:"normal",200:"normal",100:"normal",normal:"normal",lighter:"normal"}},"font-style":{inherit:!0,initial:"normal",values:{italic:"italic",oblique:"italic",normal:"normal"}},"text-anchor":{inherit:!0,initial:"start",values:{start:"start",middle:"middle",end:"end"}},direction:{inherit:!0,initial:"ltr",values:{ltr:"ltr",rtl:"rtl"}},"dominant-baseline":{inherit:!0,initial:"baseline",values:{auto:"baseline",baseline:"baseline","before-edge":"before-edge","text-before-edge":"before-edge",middle:"middle",central:"central","after-edge":"after-edge","text-after-edge":"after-edge",ideographic:"ideographic",alphabetic:"alphabetic",hanging:"hanging",mathematical:"mathematical"}},"alignment-baseline":{inherit:!1,initial:void 0,values:{auto:"baseline",baseline:"baseline","before-edge":"before-edge","text-before-edge":"before-edge",middle:"middle",central:"central","after-edge":"after-edge","text-after-edge":"after-edge",ideographic:"ideographic",alphabetic:"alphabetic",hanging:"hanging",mathematical:"mathematical"}},"baseline-shift":{inherit:!0,initial:"baseline",values:{baseline:"baseline",sub:"sub",super:"super"}},"word-spacing":{inherit:!0,initial:0,values:{normal:0}},"letter-spacing":{inherit:!0,initial:0,values:{normal:0}},"text-decoration":{inherit:!1,initial:"none",values:{none:"none",underline:"underline",overline:"overline","line-through":"line-through"}},"xml:space":{inherit:!0,initial:"default",css:"white-space",values:{preserve:"preserve",default:"default",pre:"preserve","pre-line":"preserve","pre-wrap":"preserve",nowrap:"default"}},"marker-start":{inherit:!0,initial:"none"},"marker-mid":{inherit:!0,initial:"none"},"marker-end":{inherit:!0,initial:"none"},opacity:{inherit:!1,initial:1},transform:{inherit:!1,initial:[1,0,0,1,0,0]},display:{inherit:!1,initial:"inline",values:{none:"none",inline:"inline",block:"inline"}},"clip-path":{inherit:!1,initial:"none"},mask:{inherit:!1,initial:"none"},overflow:{inherit:!1,initial:"hidden",values:{hidden:"hidden",scroll:"hidden",visible:"visible"}}};function docBeginGroup(i){var o=new function PDFGroup(){};return o.name="G"+(r._groupCount=(r._groupCount||0)+1),o.resources=r.ref(),o.xobj=r.ref({Type:"XObject",Subtype:"Form",FormType:1,BBox:i,Group:{S:"Transparency",CS:"DeviceRGB",I:!0,K:!1},Resources:o.resources}),o.xobj.write(""),o.savedMatrix=r._ctm,o.savedPage=r.page,Ae.push(o),r._ctm=[1,0,0,1,0,0],r.page={width:r.page.width,height:r.page.height,write:function write(r){o.xobj.write(r)},fonts:{},xobjects:{},ext_gstates:{},patterns:{}},o}function docEndGroup(i){if(i!==Ae.pop())throw"Group not matching";Object.keys(r.page.fonts).length&&(i.resources.data.Font=r.page.fonts),Object.keys(r.page.xobjects).length&&(i.resources.data.XObject=r.page.xobjects),Object.keys(r.page.ext_gstates).length&&(i.resources.data.ExtGState=r.page.ext_gstates),Object.keys(r.page.patterns).length&&(i.resources.data.Pattern=r.page.patterns),i.resources.end(),i.xobj.end(),r._ctm=i.savedMatrix,r.page=i.savedPage}function docInsertGroup(i){r.page.xobjects[i.name]=i.xobj,r.addContent("/"+i.name+" Do")}function docApplyMask(i,o){var u="M"+(r._maskCount=(r._maskCount||0)+1),p=r.ref({Type:"ExtGState",CA:1,ca:1,BM:"Normal",SMask:{S:"Luminosity",G:i.xobj,BC:o?[0,0,0]:[1,1,1]}});p.end(),r.page.ext_gstates[u]=p,r.addContent("/"+u+" gs")}function docCreatePattern(r,i,o,u){var p=new function PDFPattern(){};return p.group=r,p.dx=i,p.dy=o,p.matrix=u||[1,0,0,1,0,0],p}function docUsePattern(i,o){var u,p="P"+(r._patternCount=(r._patternCount||0)+1),g=r.ref({Type:"Pattern",PatternType:1,PaintType:1,TilingType:2,BBox:[0,0,i.dx,i.dy],XStep:i.dx,YStep:i.dy,Matrix:multiplyMatrix(r._ctm,i.matrix),Resources:{ProcSet:["PDF","Text","ImageB","ImageC","ImageI"],XObject:(u={},u[i.group.name]=i.group.xobj,u)}});g.write("/"+i.group.name+" Do"),g.end(),r.page.patterns[p]=g,o?(r.addContent("/Pattern CS"),r.addContent("/"+p+" SCN")):(r.addContent("/Pattern cs"),r.addContent("/"+p+" scn"))}function docSetTextMode(i,o){var u=i&&o?2:o?1:i?0:3;r.addContent(u+" Tr")}function docFillColor(i){"PDFPattern"===i[0].constructor.name?(r.fillOpacity(i[1]),docUsePattern(i[0],!1)):r.fillColor(i[0],i[1])}function docStrokeColor(i){"PDFPattern"===i[0].constructor.name?(r.strokeOpacity(i[1]),docUsePattern(i[0],!0)):r.strokeColor(i[0],i[1])}function parseXml(r){var i=function SvgNode(r,i,o,u){this.error=u,this.nodeName=r,this.nodeValue=o,this.nodeType=i,this.attributes=Object.create(null),this.childNodes=[],this.parentNode=null,this.id="",this.textContent="",this.classList=[]};i.prototype.getAttribute=function(r){return null!=this.attributes[r]?this.attributes[r]:null},i.prototype.getElementById=function(r){var i=null;return function recursive(o){if(!i&&1===o.nodeType){o.id===r&&(i=o);for(var u=0;u<o.childNodes.length;u++)recursive(o.childNodes[u])}}(this),i},i.prototype.getElementsByTagName=function(r){var i=[];return function recursive(o){if(1===o.nodeType){o.nodeName===r&&i.push(o);for(var u=0;u<o.childNodes.length;u++)recursive(o.childNodes[u])}}(this),i};for(var o,u,p=new P(r.trim()),g=!1,y=function recursive(){var r,o;if(r=p.match(/^<([\w:.-]+)\s*/,!0)){for(var u=new i(r[1],1,null,g);r=p.match(/^([\w:.-]+)(?:\s*=\s*"([^"]*)"|\s*=\s*'([^']*)')?\s*/,!0);){var y=r[1],w=decodeEntities(r[2]||r[3]||"");u.attributes[y]?(_e('parseXml: duplicate attribute "'+y+'"'),g=!0):(u.attributes[y]=w,"id"===y&&(u.id=w),"class"===y&&(u.classList=w.split(" ")))}if(p.match(/^>/)){for(;o=recursive();)u.childNodes.push(o),o.parentNode=u,u.textContent+=3===o.nodeType||4===o.nodeType?o.nodeValue:o.textContent;return(r=p.match(/^<\/([\w:.-]+)\s*>/,!0))?(r[1]===u.nodeName||(_e('parseXml: tag not matching, opening "'+u.nodeName+'" & closing "'+r[1]+'"'),g=!0),u):(_e('parseXml: tag not matching, opening "'+u.nodeName+'" & not closing'),g=!0,u)}if(p.match(/^\/>/))return u;_e('parseXml: tag could not be parsed "'+u.nodeName+'"'),g=!0}else{if(r=p.match(/^<!--[\s\S]*?-->/))return new i(null,8,r,g);if(r=p.match(/^<\?[\s\S]*?\?>/))return new i(null,7,r,g);if(r=p.match(/^<!DOCTYPE\s*([\s\S]*?)>/))return new i(null,10,r,g);if(r=p.match(/^<!\[CDATA\[([\s\S]*?)\]\]>/,!0))return new i("#cdata-section",4,r[1],g);if(r=p.match(/^([^<]+)/,!0))return new i("#text",3,decodeEntities(r[1]),g)}};u=y();)1!==u.nodeType||o?(1===u.nodeType||3===u.nodeType&&""!==u.nodeValue.trim())&&_e("parseXml: data after document end has been discarded"):o=u;return p.matchAll()&&_e("parseXml: parsing error"),o}function decodeEntities(r){return r.replace(/&(?:#([0-9]+)|#[xX]([0-9A-Fa-f]+)|([0-9A-Za-z]+));/g,(function(r,i,o,u){return i?String.fromCharCode(parseInt(i,10)):o?String.fromCharCode(parseInt(o,16)):u&&w[u]?String.fromCharCode(w[u]):r}))}function parseColor(r){var i,o;return r=(r||"").trim(),(i=g[r])?o=[i.slice(),1]:(i=r.match(/^rgba\(\s*([0-9]+)\s*,\s*([0-9]+)\s*,\s*([0-9]+)\s*,\s*([0-9.]+)\s*\)$/i))?(i[1]=parseInt(i[1]),i[2]=parseInt(i[2]),i[3]=parseInt(i[3]),i[4]=parseFloat(i[4]),i[1]<256&&i[2]<256&&i[3]<256&&i[4]<=1&&(o=[i.slice(1,4),i[4]])):(i=r.match(/^rgb\(\s*([0-9]+)\s*,\s*([0-9]+)\s*,\s*([0-9]+)\s*\)$/i))?(i[1]=parseInt(i[1]),i[2]=parseInt(i[2]),i[3]=parseInt(i[3]),i[1]<256&&i[2]<256&&i[3]<256&&(o=[i.slice(1,4),1])):(i=r.match(/^rgb\(\s*([0-9.]+)%\s*,\s*([0-9.]+)%\s*,\s*([0-9.]+)%\s*\)$/i))?(i[1]=2.55*parseFloat(i[1]),i[2]=2.55*parseFloat(i[2]),i[3]=2.55*parseFloat(i[3]),i[1]<256&&i[2]<256&&i[3]<256&&(o=[i.slice(1,4),1])):(i=r.match(/^#([0-9a-f]{2})([0-9a-f]{2})([0-9a-f]{2})$/i))?o=[[parseInt(i[1],16),parseInt(i[2],16),parseInt(i[3],16)],1]:(i=r.match(/^#([0-9a-f])([0-9a-f])([0-9a-f])$/i))&&(o=[[17*parseInt(i[1],16),17*parseInt(i[2],16),17*parseInt(i[3],16)],1]),Ce?Ce(o,r):o}function opacityToColor(r,i,o){var u=r[0].slice(),p=r[1]*i;if(o){for(var g=0;g<r.length;g++)u[g]*=p;return[u,1]}return[u,p]}function multiplyMatrix(){function multiply(r,i){return[r[0]*i[0]+r[2]*i[1],r[1]*i[0]+r[3]*i[1],r[0]*i[2]+r[2]*i[3],r[1]*i[2]+r[3]*i[3],r[0]*i[4]+r[2]*i[5]+r[4],r[1]*i[4]+r[3]*i[5]+r[5]]}for(var r=arguments[0],i=1;i<arguments.length;i++)r=multiply(r,arguments[i]);return r}function transformPoint(r,i){return[i[0]*r[0]+i[2]*r[1]+i[4],i[1]*r[0]+i[3]*r[1]+i[5]]}function getGlobalMatrix(){for(var i=r._ctm,o=Ae.length-1;o>=0;o--)i=multiplyMatrix(Ae[o].savedMatrix,i);return i}function getPageBBox(){return(new B).M(0,0).L(r.page.width,0).L(r.page.width,r.page.height).L(0,r.page.height).transform(inverseMatrix(getGlobalMatrix())).getBoundingBox()}function inverseMatrix(r){var i=r[0]*r[3]-r[1]*r[2];return[r[3]/i,-r[1]/i,-r[2]/i,r[0]/i,(r[2]*r[5]-r[3]*r[4])/i,(r[1]*r[4]-r[0]*r[5])/i]}function validateMatrix(r){var i=validateNumber(r[0]),o=validateNumber(r[1]),u=validateNumber(r[2]),p=validateNumber(r[3]),g=validateNumber(r[4]),y=validateNumber(r[5]);if(isNotEqual(i*p-o*u,0))return[i,o,u,p,g,y]}function solveEquation(r){var i=r[2]||0,o=r[1]||0,u=r[0]||0;if(isEqual(i,0)&&isEqual(o,0))return[];if(isEqual(i,0))return[-u/o];var p=o*o-4*i*u;return isNotEqual(p,0)&&p>0?[(-o+Math.sqrt(p))/(2*i),(-o-Math.sqrt(p))/(2*i)]:isEqual(p,0)?[-o/(2*i)]:[]}function getCurveValue(r,i){return(i[0]||0)+(i[1]||0)*r+(i[2]||0)*r*r+(i[3]||0)*r*r*r}function isEqual(r,i){return Math.abs(r-i)<1e-10}function isNotEqual(r,i){return Math.abs(r-i)>=1e-10}function validateNumber(r){return r>-1e21&&r<1e21?Math.round(1e6*r)/1e6:0}function parseTranform(r){for(var i,o=new P((r||"").trim()),u=[1,0,0,1,0,0];i=o.match(/^([A-Za-z]+)\s*[(]([^(]+)[)]/,!0);){for(var p=i[1],g=[],y=new P(i[2].trim()),w=void 0;w=y.matchNumber();)g.push(Number(w)),y.matchSeparator();if("matrix"===p&&6===g.length)u=multiplyMatrix(u,[g[0],g[1],g[2],g[3],g[4],g[5]]);else if("translate"===p&&2===g.length)u=multiplyMatrix(u,[1,0,0,1,g[0],g[1]]);else if("translate"===p&&1===g.length)u=multiplyMatrix(u,[1,0,0,1,g[0],0]);else if("scale"===p&&2===g.length)u=multiplyMatrix(u,[g[0],0,0,g[1],0,0]);else if("scale"===p&&1===g.length)u=multiplyMatrix(u,[g[0],0,0,g[0],0,0]);else if("rotate"===p&&3===g.length){var _=g[0]*Math.PI/180;u=multiplyMatrix(u,[1,0,0,1,g[1],g[2]],[Math.cos(_),Math.sin(_),-Math.sin(_),Math.cos(_),0,0],[1,0,0,1,-g[1],-g[2]])}else if("rotate"===p&&1===g.length){var x=g[0]*Math.PI/180;u=multiplyMatrix(u,[Math.cos(x),Math.sin(x),-Math.sin(x),Math.cos(x),0,0])}else if("skewX"===p&&1===g.length){var k=g[0]*Math.PI/180;u=multiplyMatrix(u,[1,0,Math.tan(k),1,0,0])}else{if("skewY"!==p||1!==g.length)return;var O=g[0]*Math.PI/180;u=multiplyMatrix(u,[1,Math.tan(O),0,1,0,0])}o.matchSeparator()}if(!o.matchAll())return u}function parseAspectRatio(r,i,o,u,p,g){var y=(r||"").trim().match(/^(none)$|^x(Min|Mid|Max)Y(Min|Mid|Max)(?:\s+(meet|slice))?$/)||[],w=y[1]||y[4]||"meet",_=y[2]||"Mid",x=y[3]||"Mid",k=i/u,P=o/p,O={Min:0,Mid:.5,Max:1}[_]-(g||0),I={Min:0,Mid:.5,Max:1}[x]-(g||0);return"slice"===w?P=k=Math.max(k,P):"meet"===w&&(P=k=Math.min(k,P)),[k,0,0,P,O*(i-u*k),I*(o-p*P)]}function parseStyleAttr(r){var i=Object.create(null);r=(r||"").trim().split(/;/);for(var o=0;o<r.length;o++){var u=(r[o].split(":")[0]||"").trim(),p=(r[o].split(":")[1]||"").trim();u&&(i[u]=p)}if(i.marker&&(i["marker-start"]||(i["marker-start"]=i.marker),i["marker-mid"]||(i["marker-mid"]=i.marker),i["marker-end"]||(i["marker-end"]=i.marker)),i.font){for(var g=null,y=null,w="normal",_="normal",x="normal",k=i.font.split(/\s+/),P=0;P<k.length;P++)switch(k[P]){case"normal":break;case"italic":case"oblique":w=k[P];break;case"small-caps":x=k[P];break;case"bold":case"bolder":case"lighter":case"100":case"200":case"300":case"400":case"500":case"600":case"700":case"800":case"900":_=k[P];break;default:y?g?g+=" "+k[P]:g=k[P]:y=k[P].split("/")[0]}i["font-style"]||(i["font-style"]=w),i["font-variant"]||(i["font-variant"]=x),i["font-weight"]||(i["font-weight"]=_),i["font-size"]||(i["font-size"]=y),i["font-family"]||(i["font-family"]=g)}return i}function parseSelector(r){for(var i,o=r.split(/(?=[.#])/g),u=[],p=[],g=[],y=0;y<o.length;y++)if(i=o[y].match(/^[#]([_A-Za-z0-9-]+)$/))u.push(i[1]);else if(i=o[y].match(/^[.]([_A-Za-z0-9-]+)$/))p.push(i[1]);else if(i=o[y].match(/^([_A-Za-z0-9-]+)$/))g.push(i[1]);else if("*"!==o[y])return;return{tags:g,ids:u,classes:p,specificity:1e4*u.length+100*p.length+g.length}}function parseStyleSheet(r){for(var i,o=new P(r.trim()),u=[];i=o.match(/^\s*([^\{\}]*?)\s*\{([^\{\}]*?)\}/,!0);)for(var p=i[1].split(/\s*,\s*/g),g=parseStyleAttr(i[2]),y=0;y<p.length;y++){var w=parseSelector(p[y]);w&&u.push({selector:w,css:g})}return u}function matchesSelector(r,i){if(1!==r.nodeType)return!1;for(var o=0;o<i.tags.length;o++)if(i.tags[o]!==r.nodeName)return!1;for(var u=0;u<i.ids.length;u++)if(i.ids[u]!==r.id)return!1;for(var p=0;p<i.classes.length;p++)if(-1===r.classList.indexOf(i.classes[p]))return!1;return!0}function combineArrays(r,i){return r.concat(i.slice(r.length))}function getAscent(r,i){return Math.max(r.ascender,(r.bbox[3]||r.bbox.maxY)*(r.scale||1))*i/1e3}function getDescent(r,i){return Math.min(r.descender,(r.bbox[1]||r.bbox.minY)*(r.scale||1))*i/1e3}function getTextPos(r,i,o){for(var u=r.encode(""+o),p=u[0],g=u[1],y=[],w=0;w<p.length;w++){var _=r.unicode?r.unicode[parseInt(p[w],16)]:[o.charCodeAt(w)];y.push({glyph:p[w],unicode:_,width:g[w].advanceWidth*i/1e3,xOffset:g[w].xOffset*i/1e3,yOffset:g[w].yOffset*i/1e3,xAdvance:g[w].xAdvance*i/1e3,yAdvance:g[w].yAdvance*i/1e3})}return y}function createSVGElement(r,i){switch(r.nodeName){case"use":return new U(r,i);case"symbol":return new j(r,i);case"g":return new G(r,i);case"a":return new X(r,i);case"svg":return new K(r,i);case"image":return new Y(r,i);case"rect":return new te(r,i);case"circle":return new re(r,i);case"ellipse":return new ne(r,i);case"line":return new ie(r,i);case"polyline":return new oe(r,i);case"polygon":return new ae(r,i);case"path":return new se(r,i);case"text":return new ge(r,i);case"tspan":return new de(r,i);case"textPath":return new pe(r,i);case"#text":case"#cdata-section":return new he(r,i);default:return new R(r,i)}}var P=function StringParser(r){this.match=function(i,o){var u=r.match(i);if(u&&0===u.index)return r=r.substring(u[0].length),o?u:u[0]},this.matchSeparator=function(){return this.match(/^(?:\s*,\s*|\s*|)/)},this.matchSpace=function(){return this.match(/^(?:\s*)/)},this.matchLengthUnit=function(){return this.match(/^(?:px|pt|cm|mm|in|pc|em|ex|%|)/)},this.matchNumber=function(){return this.match(/^(?:[-+]?(?:[0-9]+[.][0-9]+|[0-9]+[.]|[.][0-9]+|[0-9]+)(?:[eE][-+]?[0-9]+)?)/)},this.matchAll=function(){return this.match(/^[\s\S]+/)}},O=function BezierSegment(r,i,o,u,p,g,y,w){for(var _=6*Pe,x=[r,-3*r+3*o,3*r-6*o+3*p,3*o-r-3*p+y],k=[i,-3*i+3*u,3*i-6*u+3*g,3*u-i-3*g+w],P=[-3*r+3*o,6*r-12*o+6*p,-3*r+9*o-9*p+3*y],O=[-3*i+3*u,6*i-12*u+6*g,-3*i+9*u-9*g+3*w],I=[0],B=1;B<=_;B++){var R=(B-.5)/_,D=getCurveValue(R,P)/_,N=getCurveValue(R,O)/_,W=Math.sqrt(D*D+N*N);I[B]=I[B-1]+W}this.totalLength=I[_],this.startPoint=[r,i,isEqual(r,o)&&isEqual(i,u)?Math.atan2(g-u,p-o):Math.atan2(u-i,o-r)],this.endPoint=[y,w,isEqual(p,y)&&isEqual(g,w)?Math.atan2(g-u,p-o):Math.atan2(w-g,y-p)],this.getBoundingBox=function(){var r,i=getCurveValue(0,x),o=getCurveValue(0,k),u=getCurveValue(1,x),p=getCurveValue(1,k);i>u&&(r=u,u=i,i=r),o>p&&(r=p,p=o,o=r);for(var g=solveEquation(P),y=0;y<g.length;y++)if(g[y]>=0&&g[y]<=1){var w=getCurveValue(g[y],x);w<i&&(i=w),w>u&&(u=w)}for(var _=solveEquation(O),I=0;I<_.length;I++)if(_[I]>=0&&_[I]<=1){var B=getCurveValue(_[I],k);B<o&&(o=B),B>p&&(p=B)}return[i,o,u,p]},this.getPointAtLength=function(r){if(isEqual(r,0))return this.startPoint;if(isEqual(r,this.totalLength))return this.endPoint;if(!(r<0||r>this.totalLength))for(var i=1;i<=_;i++){var o=I[i-1],u=I[i];if(o<=r&&r<=u){var p=(i-(u-r)/(u-o))/_,g=getCurveValue(p,x),y=getCurveValue(p,k),w=getCurveValue(p,P),B=getCurveValue(p,O);return[g,y,Math.atan2(B,w)]}}}},I=function LineSegment(r,i,o,u){this.totalLength=Math.sqrt((o-r)*(o-r)+(u-i)*(u-i)),this.startPoint=[r,i,Math.atan2(u-i,o-r)],this.endPoint=[o,u,Math.atan2(u-i,o-r)],this.getBoundingBox=function(){return[Math.min(this.startPoint[0],this.endPoint[0]),Math.min(this.startPoint[1],this.endPoint[1]),Math.max(this.startPoint[0],this.endPoint[0]),Math.max(this.startPoint[1],this.endPoint[1])]},this.getPointAtLength=function(r){if(r>=0&&r<=this.totalLength){var i=r/this.totalLength||0;return[this.startPoint[0]+i*(this.endPoint[0]-this.startPoint[0]),this.startPoint[1]+i*(this.endPoint[1]-this.startPoint[1]),this.startPoint[2]]}}},B=function SvgShape(){this.pathCommands=[],this.pathSegments=[],this.startPoint=null,this.endPoint=null,this.totalLength=0;var i,o,u,p=0,g=0,y=0,w=0;this.move=function(r,i){return p=y=r,g=w=i,null},this.line=function(r,i){var o=new I(y,w,r,i);return y=r,w=i,o},this.curve=function(r,i,o,u,p,g){var _=new O(y,w,r,i,o,u,p,g);return y=p,w=g,_},this.close=function(){var r=new I(y,w,p,g);return y=p,w=g,r},this.addCommand=function(r){this.pathCommands.push(r);var i=this[r[0]].apply(this,r.slice(3));i&&(i.hasStart=r[1],i.hasEnd=r[2],this.startPoint=this.startPoint||i.startPoint,this.endPoint=i.endPoint,this.pathSegments.push(i),this.totalLength+=i.totalLength)},this.M=function(r,o){return this.addCommand(["move",!0,!0,r,o]),i="M",this},this.m=function(r,i){return this.M(y+r,w+i)},this.Z=this.z=function(){return this.addCommand(["close",!0,!0]),i="Z",this},this.L=function(r,o){return this.addCommand(["line",!0,!0,r,o]),i="L",this},this.l=function(r,i){return this.L(y+r,w+i)},this.H=function(r){return this.L(r,w)},this.h=function(r){return this.L(y+r,w)},this.V=function(r){return this.L(y,r)},this.v=function(r){return this.L(y,w+r)},this.C=function(r,p,g,y,w,_){return this.addCommand(["curve",!0,!0,r,p,g,y,w,_]),i="C",o=g,u=y,this},this.c=function(r,i,o,u,p,g){return this.C(y+r,w+i,y+o,w+u,y+p,w+g)},this.S=function(r,p,g,_){return this.C(y+("C"===i?y-o:0),w+("C"===i?w-u:0),r,p,g,_)},this.s=function(r,p,g,_){return this.C(y+("C"===i?y-o:0),w+("C"===i?w-u:0),y+r,w+p,y+g,w+_)},this.Q=function(r,p,g,_){var x=y+2/3*(r-y),k=w+2/3*(p-w),P=g+2/3*(r-g),O=_+2/3*(p-_);return this.addCommand(["curve",!0,!0,x,k,P,O,g,_]),i="Q",o=r,u=p,this},this.q=function(r,i,o,u){return this.Q(y+r,w+i,y+o,w+u)},this.T=function(r,p){return this.Q(y+("Q"===i?y-o:0),w+("Q"===i?w-u:0),r,p)},this.t=function(r,p){return this.Q(y+("Q"===i?y-o:0),w+("Q"===i?w-u:0),y+r,w+p)},this.A=function(r,o,u,p,g,_,x){if(isEqual(r,0)||isEqual(o,0))this.addCommand(["line",!0,!0,_,x]);else{u*=Math.PI/180,r=Math.abs(r),o=Math.abs(o),p=1*!!p,g=1*!!g;var k=Math.cos(u)*(y-_)/2+Math.sin(u)*(w-x)/2,P=Math.cos(u)*(w-x)/2-Math.sin(u)*(y-_)/2,O=k*k/(r*r)+P*P/(o*o);O>1&&(r*=Math.sqrt(O),o*=Math.sqrt(O));var I=Math.sqrt(Math.max(0,r*r*o*o-r*r*P*P-o*o*k*k)/(r*r*P*P+o*o*k*k)),B=(p===g?-1:1)*I*r*P/o,R=(p===g?1:-1)*I*o*k/r,D=Math.cos(u)*B-Math.sin(u)*R+(y+_)/2,N=Math.sin(u)*B+Math.cos(u)*R+(w+x)/2,W=Math.atan2((P-R)/o,(k-B)/r),U=Math.atan2((-P-R)/o,(-k-B)/r);0===g&&U-W>0?U-=2*Math.PI:1===g&&U-W<0&&(U+=2*Math.PI);for(var j=Math.ceil(Math.abs(U-W)/(Math.PI/Pe)),G=0;G<j;G++){var X=W+G*(U-W)/j,K=W+(G+1)*(U-W)/j,Y=4/3*Math.tan((K-X)/4),J=D+Math.cos(u)*r*(Math.cos(X)-Y*Math.sin(X))-Math.sin(u)*o*(Math.sin(X)+Y*Math.cos(X)),$=N+Math.sin(u)*r*(Math.cos(X)-Y*Math.sin(X))+Math.cos(u)*o*(Math.sin(X)+Y*Math.cos(X)),ee=D+Math.cos(u)*r*(Math.cos(K)+Y*Math.sin(K))-Math.sin(u)*o*(Math.sin(K)-Y*Math.cos(K)),te=N+Math.sin(u)*r*(Math.cos(K)+Y*Math.sin(K))+Math.cos(u)*o*(Math.sin(K)-Y*Math.cos(K)),re=D+Math.cos(u)*r*Math.cos(K)-Math.sin(u)*o*Math.sin(K),ne=N+Math.sin(u)*r*Math.cos(K)+Math.cos(u)*o*Math.sin(K);this.addCommand(["curve",0===G,G===j-1,J,$,ee,te,re,ne])}}return i="A",this},this.a=function(r,i,o,u,p,g,_){return this.A(r,i,o,u,p,y+g,w+_)},this.path=function(r){for(var i,o,u,p=new P((r||"").trim());i=p.match(/^[astvzqmhlcASTVZQMHLC]/);){p.matchSeparator();for(var g=[];o=x[i+g.length]?p.match(/^[01]/):p.matchNumber();)p.matchSeparator(),g.length===_[i]&&(this[i].apply(this,g),g=[],"M"===i?i="L":"m"===i&&(i="l")),g.push(Number(o));if(g.length!==_[i])return void _e("SvgPath: command "+i+" with "+g.length+" numbers");this[i].apply(this,g)}return(u=p.matchAll())&&_e("SvgPath: unexpected string "+u),this},this.getBoundingBox=function(){for(var r,i=[1/0,1/0,-1/0,-1/0],o=0;o<this.pathSegments.length;o++)(r=this.pathSegments[o].getBoundingBox())[0]<i[0]&&(i[0]=r[0]),r[2]>i[2]&&(i[2]=r[2]),r[1]<i[1]&&(i[1]=r[1]),r[3]>i[3]&&(i[3]=r[3]);return i[0]===1/0&&(i[0]=0),i[1]===1/0&&(i[1]=0),i[2]===-1/0&&(i[2]=0),i[3]===-1/0&&(i[3]=0),i},this.getPointAtLength=function(r){if(r>=0&&r<=this.totalLength){for(var i,o=0;o<this.pathSegments.length;o++){if(i=this.pathSegments[o].getPointAtLength(r))return i;r-=this.pathSegments[o].totalLength}return this.endPoint}},this.transform=function(r){this.pathSegments=[],this.startPoint=null,this.endPoint=null,this.totalLength=0;for(var i=0;i<this.pathCommands.length;i++){for(var o=this.pathCommands.shift(),u=3;u<o.length;u+=2){var p=transformPoint([o[u],o[u+1]],r);o[u]=p[0],o[u+1]=p[1]}this.addCommand(o)}return this},this.mergeShape=function(r){for(var i=0;i<r.pathCommands.length;i++)this.addCommand(r.pathCommands[i].slice());return this},this.clone=function(){return(new SvgShape).mergeShape(this)},this.insertInDocument=function(){for(var i=0;i<this.pathCommands.length;i++){var o=this.pathCommands[i][0],u=this.pathCommands[i].slice(3);switch(o){case"move":r.moveTo(u[0],u[1]);break;case"line":r.lineTo(u[0],u[1]);break;case"curve":r.bezierCurveTo(u[0],u[1],u[2],u[3],u[4],u[5]);break;case"close":r.closePath()}}},this.getSubPaths=function(){for(var r=[],i=new SvgShape,o=0;o<this.pathCommands.length;o++){var u=this.pathCommands[o];"move"===this.pathCommands[o][0]&&0!==o&&(r.push(i),i=new SvgShape),i.addCommand(u)}return r.push(i),r},this.getMarkers=function(){for(var r=[],i=this.getSubPaths(),o=0;o<i.length;o++){for(var u=i[o],p=[],g=0;g<u.pathSegments.length;g++){var y=u.pathSegments[g];if(isNotEqual(y.totalLength,0)||0===g||g===u.pathSegments.length-1){if(y.hasStart){var w=y.getPointAtLength(0),_=p.pop();_&&(w[2]=.5*(_[2]+w[2])),p.push(w)}if(y.hasEnd){var x=y.getPointAtLength(y.totalLength);p.push(x)}}}r=r.concat(p)}return r}},R=function SvgElem(r,o){var u=Object.create(null),p=null;this.name=r.nodeName,this.isOuterElement=r===i||!r.parentNode,this.inherits=o||(this.isOuterElement?null:createSVGElement(r.parentNode,null)),this.stack=this.inherits?this.inherits.stack.concat(r):[r],this.style=parseStyleAttr("function"==typeof r.getAttribute&&r.getAttribute("style")),this.css=we?getComputedStyle(r):function getStyle(r){for(var i=Object.create(null),o=Object.create(null),u=0;u<Oe.length;u++){var p=Oe[u];if(matchesSelector(r,p.selector))for(var g in p.css)o[g]>p.selector.specificity||(i[g]=p.css[g],o[g]=p.selector.specificity)}return i}(r),this.allowedChildren=[],this.attr=function(i){if("function"==typeof r.getAttribute)return r.getAttribute(i)},this.resolveUrl=function(r){var o=(r||"").match(/^\s*(?:url\("(.*)#(.*)"\)|url\('(.*)#(.*)'\)|url\((.*)#(.*)\)|(.*)#(.*))\s*$/)||[],u=o[1]||o[3]||o[5]||o[7],p=o[2]||o[4]||o[6]||o[8];if(p){if(!u){var g=i.getElementById(p);if(g)return-1===this.stack.indexOf(g)?g:void _e('SVGtoPDF: loop of circular references for id "'+p+'"')}if(ke){var y=Ee[u];if(!y){(function isArrayLike(r){return"object"==typeof r&&null!==r&&"number"==typeof r.length})(y=ke(u))||(y=[y]);for(var w=0;w<y.length;w++)"string"==typeof y[w]&&(y[w]=parseXml(y[w]));Ee[u]=y}for(var _=0;_<y.length;_++){var x=y[_].getElementById(p);if(x)return-1===this.stack.indexOf(x)?x:void _e('SVGtoPDF: loop of circular references for id "'+u+"#"+p+'"')}}}},this.computeUnits=function(r,i,o,u){return"%"===i?parseFloat(r)/100*(u||null!=o?o:this.getViewport()):"ex"===i||"em"===i?r*{em:1,ex:.5}[i]*(u?o:this.get("font-size")):r*{"":1,px:1,pt:96/72,cm:96/2.54,mm:96/25.4,in:96,pc:16}[i]},this.computeLength=function(r,i,o,u){var p,g,y=new P((r||"").trim());return"string"!=typeof(p=y.matchNumber())||"string"!=typeof(g=y.matchLengthUnit())||y.matchAll()?o:this.computeUnits(p,g,i,u)},this.computeLengthList=function(r,i,o){for(var u,p,g=new P((r||"").trim()),y=[];"string"==typeof(u=g.matchNumber())&&"string"==typeof(p=g.matchLengthUnit());)y.push(this.computeUnits(u,p,i)),g.matchSeparator();if(!o||!g.matchAll())return y},this.getLength=function(r,i,o){return this.computeLength(this.attr(r),i,o)},this.getLengthList=function(r,i){return this.computeLengthList(this.attr(r),i)},this.getUrl=function(r){return this.resolveUrl(this.attr(r))},this.getNumberList=function(r){for(var i,o=new P((this.attr(r)||"").trim()),u=[];i=o.matchNumber();)u.push(Number(i)),o.matchSeparator();return u.error=o.matchAll(),u},this.getViewbox=function(r,i){var o=this.getNumberList(r);return 4===o.length&&o[2]>=0&&o[3]>=0?o:i},this.getPercent=function(r,i){var o=this.attr(r),u=new P((o||"").trim()),p=u.matchNumber();return p?(u.match("%")&&(p*=.01),u.matchAll()?i:Math.max(0,Math.min(1,p))):i},this.chooseValue=function(r){for(var i=0;i<arguments.length;i++)if(null!=arguments[i]&&arguments[i]==arguments[i])return arguments[i];return arguments[arguments.length-1]},this.get=function(r){if(void 0!==u[r])return u[r];for(var i,o,p=k[r]||{},g=0;g<3;g++){switch(g){case 0:"transform"!==r&&(i=this.css[p.css||r]);break;case 1:i=this.style[r];break;case 2:i=this.attr(r)}if("inherit"===i&&null!=(o=this.inherits?this.inherits.get(r):p.initial))return u[r]=o;if(null!=p.values&&null!=(o=p.values[i]))return u[r]=o;if(null!=i){var y=void 0;switch(r){case"font-size":o=this.computeLength(i,this.inherits?this.inherits.get(r):p.initial,void 0,!0);break;case"baseline-shift":o=this.computeLength(i,this.get("font-size"));break;case"font-family":o=i||void 0;break;case"opacity":case"stroke-opacity":case"fill-opacity":case"stop-opacity":y=parseFloat(i),isNaN(y)||(o=Math.max(0,Math.min(1,y)));break;case"transform":o=parseTranform(i);break;case"stroke-dasharray":if("none"===i)o=[];else if(y=this.computeLengthList(i,this.getViewport(),!0)){for(var w=0,_=!1,x=0;x<y.length;x++)y[x]<0&&(_=!0),w+=y[x];_||(y.length%2==1&&(y=y.concat(y)),o=0===w?[]:y)}break;case"color":o="none"===i||"transparent"===i?"none":parseColor(i);break;case"fill":case"stroke":if("none"===i||"transparent"===i)o="none";else if("currentColor"===i)o=this.get("color");else{if(y=parseColor(i))return y;if(y=(i||"").split(" ")){var P=this.resolveUrl(y[0]),O=parseColor(y[1]);o=null==P?O:"linearGradient"===P.nodeName||"radialGradient"===P.nodeName?new $(P,null,O):"pattern"===P.nodeName?new J(P,null,O):O}}break;case"stop-color":o="none"===i||"transparent"===i?"none":"currentColor"===i?this.get("color"):parseColor(i);break;case"marker-start":case"marker-mid":case"marker-end":case"clip-path":case"mask":o="none"===i?"none":this.resolveUrl(i);break;case"stroke-width":null!=(y=this.computeLength(i,this.getViewport()))&&y>=0&&(o=y);break;case"stroke-miterlimit":null!=(y=parseFloat(i))&&y>=1&&(o=y);break;case"word-spacing":case"letter-spacing":o=this.computeLength(i,this.getViewport());break;case"stroke-dashoffset":if(null!=(o=this.computeLength(i,this.getViewport()))&&o<0)for(var I=this.get("stroke-dasharray"),B=0;B<I.length;B++)o+=I[B]}if(null!=o)return u[r]=o}}return u[r]=p.inherit&&this.inherits?this.inherits.get(r):p.initial},this.getChildren=function(){if(null!=p)return p;for(var i=[],o=0;o<r.childNodes.length;o++){var u=r.childNodes[o];u.error||-1===this.allowedChildren.indexOf(u.nodeName)||i.push(createSVGElement(u,this))}return p=i},this.getParentVWidth=function(){return this.inherits?this.inherits.getVWidth():ve},this.getParentVHeight=function(){return this.inherits?this.inherits.getVHeight():me},this.getParentViewport=function(){return Math.sqrt(.5*this.getParentVWidth()*this.getParentVWidth()+.5*this.getParentVHeight()*this.getParentVHeight())},this.getVWidth=function(){return this.getParentVWidth()},this.getVHeight=function(){return this.getParentVHeight()},this.getViewport=function(){return Math.sqrt(.5*this.getVWidth()*this.getVWidth()+.5*this.getVHeight()*this.getVHeight())},this.getBoundingBox=function(){return this.getBoundingShape().getBoundingBox()}},D=function SvgElemStylable(i,o){R.call(this,i,o),this.transform=function(){r.transform.apply(r,this.getTransformation())},this.clip=function(){if("none"!==this.get("clip-path"))return new le(this.get("clip-path"),null).useMask(this.getBoundingBox()),!0},this.mask=function(){if("none"!==this.get("mask"))return new ue(this.get("mask"),null).useMask(this.getBoundingBox()),!0},this.getFill=function(r,i){var o=this.get("opacity"),u=this.get("fill"),p=this.get("fill-opacity");return r?y.white:"none"!==u&&o&&p?u instanceof $||u instanceof J?u.getPaint(this.getBoundingBox(),p*o,r,i):opacityToColor(u,p*o,i):void 0},this.getStroke=function(r,i){var o=this.get("opacity"),u=this.get("stroke"),p=this.get("stroke-opacity");if(!r&&!isEqual(this.get("stroke-width"),0))return"none"!==u&&o&&p?u instanceof $||u instanceof J?u.getPaint(this.getBoundingBox(),p*o,r,i):opacityToColor(u,p*o,i):void 0}},N=function SvgElemHasChildren(r,i){D.call(this,r,i),this.allowedChildren=["use","g","a","svg","image","rect","circle","ellipse","line","polyline","polygon","path","text"],this.getBoundingShape=function(){for(var r=new B,i=this.getChildren(),o=0;o<i.length;o++)if("none"!==i[o].get("display")&&"function"==typeof i[o].getBoundingShape){var u=i[o].getBoundingShape().clone();"function"==typeof i[o].getTransformation&&u.transform(i[o].getTransformation()),r.mergeShape(u)}return r},this.drawChildren=function(r,i){for(var o=this.getChildren(),u=0;u<o.length;u++)"none"!==o[u].get("display")&&"function"==typeof o[u].drawInDocument&&o[u].drawInDocument(r,i)}},W=function SvgElemContainer(i,o){N.call(this,i,o),this.drawContent=function(i,o){this.transform();var u,p=this.clip(),g=this.mask();(this.get("opacity")<1||p||g)&&!i&&(u=docBeginGroup(getPageBBox())),this.drawChildren(i,o),u&&(docEndGroup(u),r.fillOpacity(this.get("opacity")),docInsertGroup(u))}},U=function SvgElemUse(i,o){W.call(this,i,o);var u=this.getLength("x",this.getVWidth(),0),p=this.getLength("y",this.getVHeight(),0),g=this.getUrl("href")||this.getUrl("xlink:href");g&&(g=createSVGElement(g,this)),this.getChildren=function(){return g?[g]:[]},this.drawInDocument=function(i,o){r.save(),this.drawContent(i,o),r.restore()},this.getTransformation=function(){return multiplyMatrix(this.get("transform"),[1,0,0,1,u,p])}},j=function SvgElemSymbol(i,o){W.call(this,i,o);var u=this.getLength("width",this.getParentVWidth(),this.getParentVWidth()),p=this.getLength("height",this.getParentVHeight(),this.getParentVHeight());o instanceof U&&(u=o.getLength("width",o.getParentVWidth(),u),p=o.getLength("height",o.getParentVHeight(),p));var g=(this.attr("preserveAspectRatio")||"").trim(),y=this.getViewbox("viewBox",[0,0,u,p]);this.getVWidth=function(){return y[2]},this.getVHeight=function(){return y[3]},this.drawInDocument=function(i,o){r.save(),this.drawContent(i,o),r.restore()},this.getTransformation=function(){return multiplyMatrix(parseAspectRatio(g,u,p,y[2],y[3]),[1,0,0,1,-y[0],-y[1]])}},G=function SvgElemGroup(i,o){W.call(this,i,o),this.drawInDocument=function(i,o){r.save(),!this.link||i||o||this.addLink(),this.drawContent(i,o),r.restore()},this.getTransformation=function(){return this.get("transform")}},X=function SvgElemLink(i,o){o&&o.isText?(de.call(this,i,o),this.allowedChildren=["textPath","tspan","#text","#cdata-section","a"]):G.call(this,i,o),this.link=this.attr("href")||this.attr("xlink:href"),this.addLink=function(){if(this.link.match(/^(?:[a-z][a-z0-9+.-]*:|\/\/)?/i)&&this.getChildren().length){var i=this.getBoundingShape().transform(getGlobalMatrix()).getBoundingBox();!function docInsertLink(i,o,u,p,g){var y=r.ref({Type:"Annot",Subtype:"Link",Rect:[i,o,u,p],Border:[0,0,0],A:{S:"URI",URI:new String(g)}});y.end(),Te.push(y)}(i[0],i[1],i[2],i[3],this.link)}}},K=function SvgElemSvg(i,o){W.call(this,i,o);var u=this.getLength("width",this.getParentVWidth(),this.getParentVWidth()),p=this.getLength("height",this.getParentVHeight(),this.getParentVHeight()),g=this.getLength("x",this.getParentVWidth(),0),y=this.getLength("y",this.getParentVHeight(),0);o instanceof U&&(u=o.getLength("width",o.getParentVWidth(),u),p=o.getLength("height",o.getParentVHeight(),p));var w=this.attr("preserveAspectRatio"),_=this.getViewbox("viewBox",[0,0,u,p]);this.isOuterElement&&be&&(g=y=0,u=ve,p=me,w=be),this.getVWidth=function(){return _[2]},this.getVHeight=function(){return _[3]},this.drawInDocument=function(i,o){r.save(),"hidden"===this.get("overflow")&&((new B).M(g,y).L(g+u,y).L(g+u,y+p).L(g,y+p).Z().transform(this.get("transform")).insertInDocument(),r.clip()),this.drawContent(i,o),r.restore()},this.getTransformation=function(){return multiplyMatrix(this.get("transform"),[1,0,0,1,g,y],parseAspectRatio(w,u,p,_[2],_[3]),[1,0,0,1,-_[0],-_[1]])}},Y=function SVGElemImage(i,o){D.call(this,i,o);var u,p=xe(this.attr("href")||this.attr("xlink:href")||""),g=this.getLength("x",this.getVWidth(),0),w=this.getLength("y",this.getVHeight(),0),_=this.getLength("width",this.getVWidth(),"auto"),x=this.getLength("height",this.getVHeight(),"auto");try{u=r.openImage(p)}catch(r){_e('SVGElemImage: failed to open image "'+p+'" in PDFKit')}u&&("auto"===_&&"auto"!==x?_=x*u.width/u.height:"auto"===x&&"auto"!==_?x=_*u.height/u.width:"auto"===_&&"auto"===x&&(_=u.width,x=u.height)),("auto"===_||_<0)&&(_=0),("auto"===x||x<0)&&(x=0),this.getTransformation=function(){return this.get("transform")},this.getBoundingShape=function(){return(new B).M(g,w).L(g+_,w).M(g+_,w+x).L(g,w+x)},this.drawInDocument=function(i,o){"hidden"!==this.get("visibility")&&u&&(r.save(),this.transform(),"hidden"===this.get("overflow")&&r.rect(g,w,_,x).clip(),this.clip(),this.mask(),r.translate(g,w),r.transform.apply(r,parseAspectRatio(this.attr("preserveAspectRatio"),_,x,u?u.width:_,u?u.height:x)),i?(r.rect(0,0,u.width,u.height),docFillColor(y.white).fill()):(r.fillOpacity(this.get("opacity")),r.image(u,0,0)),r.restore())}},J=function SvgElemPattern(i,o,u){N.call(this,i,o),this.ref=function(){var r=this.getUrl("href")||this.getUrl("xlink:href");if(r&&r.nodeName===i.nodeName)return new SvgElemPattern(r,o,u)}.call(this);var p=this.attr;this.attr=function(r){var i=p.call(this,r);return null!=i||"href"===r||"xlink:href"===r?i:this.ref?this.ref.attr(r):null};var g=this.getChildren;this.getChildren=function(){var r=g.call(this);return r.length>0?r:this.ref?this.ref.getChildren():[]},this.getPaint=function(i,o,p,g){var y="userSpaceOnUse"!==this.attr("patternUnits"),w="objectBoundingBox"===this.attr("patternContentUnits"),_=this.getLength("x",y?1:this.getParentVWidth(),0),x=this.getLength("y",y?1:this.getParentVHeight(),0),k=this.getLength("width",y?1:this.getParentVWidth(),0),P=this.getLength("height",y?1:this.getParentVHeight(),0);w&&!y?(_=(_-i[0])/(i[2]-i[0])||0,x=(x-i[1])/(i[3]-i[1])||0,k=k/(i[2]-i[0])||0,P=P/(i[3]-i[1])||0):!w&&y&&(_=i[0]+_*(i[2]-i[0]),x=i[1]+x*(i[3]-i[1]),k*=i[2]-i[0],P*=i[3]-i[1]);var O=this.getViewbox("viewBox",[0,0,k,P]),I=multiplyMatrix(parseAspectRatio((this.attr("preserveAspectRatio")||"").trim(),k,P,O[2],O[3],0),[1,0,0,1,-O[0],-O[1]]),B=parseTranform(this.attr("patternTransform"));if(w&&(B=multiplyMatrix([i[2]-i[0],0,0,i[3]-i[1],i[0],i[1]],B)),(B=validateMatrix(B=multiplyMatrix(B,[1,0,0,1,_,x])))&&(I=validateMatrix(I))&&(k=validateNumber(k))&&(P=validateNumber(P))){var R=docBeginGroup([0,0,k,P]);return r.transform.apply(r,I),this.drawChildren(p,g),docEndGroup(R),[docCreatePattern(R,k,P,B),o]}return u?[u[0],u[1]*o]:void 0},this.getVWidth=function(){var r="userSpaceOnUse"!==this.attr("patternUnits"),i=this.getLength("width",r?1:this.getParentVWidth(),0);return this.getViewbox("viewBox",[0,0,i,0])[2]},this.getVHeight=function(){var r="userSpaceOnUse"!==this.attr("patternUnits"),i=this.getLength("height",r?1:this.getParentVHeight(),0);return this.getViewbox("viewBox",[0,0,0,i])[3]}},$=function SvgElemGradient(i,o,u){R.call(this,i,o),this.allowedChildren=["stop"],this.ref=function(){var r=this.getUrl("href")||this.getUrl("xlink:href");if(r&&r.nodeName===i.nodeName)return new SvgElemGradient(r,o,u)}.call(this);var p=this.attr;this.attr=function(r){var i=p.call(this,r);return null!=i||"href"===r||"xlink:href"===r?i:this.ref?this.ref.attr(r):null};var g=this.getChildren;this.getChildren=function(){var r=g.call(this);return r.length>0?r:this.ref?this.ref.getChildren():[]},this.getPaint=function(i,o,p,g){var w=this.getChildren();if(0!==w.length){if(1===w.length){var _=w[0],x=_.get("stop-color");if("none"===x)return;return opacityToColor(x,_.get("stop-opacity")*o,g)}var k,P,O,I,B,R,D="userSpaceOnUse"!==this.attr("gradientUnits"),N=parseTranform(this.attr("gradientTransform")),W=this.attr("spreadMethod"),U=0,j=0,G=1;if(D&&(N=multiplyMatrix([i[2]-i[0],0,0,i[3]-i[1],i[0],i[1]],N)),N=validateMatrix(N)){if("linearGradient"===this.name)P=this.getLength("x1",D?1:this.getVWidth(),0),O=this.getLength("x2",D?1:this.getVWidth(),D?1:this.getVWidth()),I=this.getLength("y1",D?1:this.getVHeight(),0),B=this.getLength("y2",D?1:this.getVHeight(),0);else{O=this.getLength("cx",D?1:this.getVWidth(),D?.5:.5*this.getVWidth()),B=this.getLength("cy",D?1:this.getVHeight(),D?.5:.5*this.getVHeight()),R=this.getLength("r",D?1:this.getViewport(),D?.5:.5*this.getViewport()),P=this.getLength("fx",D?1:this.getVWidth(),O),I=this.getLength("fy",D?1:this.getVHeight(),B),R<0&&_e("SvgElemGradient: negative r value");var X=Math.sqrt(Math.pow(O-P,2)+Math.pow(B-I,2)),K=1;X>R&&(P=O+(P-O)*(K=R/X),I=B+(I-B)*K),R=Math.max(R,X*K*1.000001)}if("reflect"===W||"repeat"===W){var Y=inverseMatrix(N),J=transformPoint([i[0],i[1]],Y),$=transformPoint([i[2],i[1]],Y),ee=transformPoint([i[2],i[3]],Y),te=transformPoint([i[0],i[3]],Y);"linearGradient"===this.name?(U=Math.max((J[0]-O)*(O-P)+(J[1]-B)*(B-I),($[0]-O)*(O-P)+($[1]-B)*(B-I),(ee[0]-O)*(O-P)+(ee[1]-B)*(B-I),(te[0]-O)*(O-P)+(te[1]-B)*(B-I))/(Math.pow(O-P,2)+Math.pow(B-I,2)),j=Math.max((J[0]-P)*(P-O)+(J[1]-I)*(I-B),($[0]-P)*(P-O)+($[1]-I)*(I-B),(ee[0]-P)*(P-O)+(ee[1]-I)*(I-B),(te[0]-P)*(P-O)+(te[1]-I)*(I-B))/(Math.pow(O-P,2)+Math.pow(B-I,2))):U=Math.sqrt(Math.max(Math.pow(J[0]-O,2)+Math.pow(J[1]-B,2),Math.pow($[0]-O,2)+Math.pow($[1]-B,2),Math.pow(ee[0]-O,2)+Math.pow(ee[1]-B,2),Math.pow(te[0]-O,2)+Math.pow(te[1]-B,2)))/R-1,U=Math.ceil(U+.5),G=(j=Math.ceil(j+.5))+1+U}k="linearGradient"===this.name?r.linearGradient(P-j*(O-P),I-j*(B-I),O+U*(O-P),B+U*(B-I)):r.radialGradient(P,I,0,O,B,R+U*R);for(var re=0;re<G;re++)for(var ne=0,ie="reflect"!==W||(re-j)%2==0,oe=0;oe<w.length;oe++){var ae=w[ie?oe:w.length-1-oe],se=ae.get("stop-color");"none"===se&&(se=y.transparent),se=opacityToColor(se,ae.get("stop-opacity")*o,g),ne=Math.max(ne,ie?ae.getPercent("offset",0):1-ae.getPercent("offset",0)),0===oe&&4===se[0].length&&(k._colorSpace="DeviceCMYK"),0===oe&&ne>0&&k.stop((re+0)/G,se[0],se[1]),k.stop((re+ne)/(U+j+1),se[0],se[1]),oe===w.length-1&&ne<1&&k.stop((re+1)/G,se[0],se[1])}return k.setTransform.apply(k,N),[k,1]}return u?[u[0],u[1]*o]:void 0}}},ee=function SvgElemBasicShape(i,o){D.call(this,i,o),this.dashScale=1,this.getBoundingShape=function(){return this.shape},this.getTransformation=function(){return this.get("transform")},this.drawInDocument=function(i,o){if("hidden"!==this.get("visibility")&&this.shape){if(r.save(),this.transform(),this.clip(),i)this.shape.insertInDocument(),docFillColor(y.white),r.fill(this.get("clip-rule"));else{var u;this.mask()&&(u=docBeginGroup(getPageBBox()));var p=this.shape.getSubPaths(),g=this.getFill(i,o),w=this.getStroke(i,o),_=this.get("stroke-width"),x=this.get("stroke-linecap");if(g||w){if(g&&docFillColor(g),w){for(var k=0;k<p.length;k++)if(isEqual(p[k].totalLength,0)&&("square"===x||"round"===x)&&_>0&&p[k].startPoint&&p[k].startPoint.length>1){var P=p[k].startPoint[0],O=p[k].startPoint[1];docFillColor(w),"square"===x?r.rect(P-.5*_,O-.5*_,_,_):"round"===x&&r.circle(P,O,.5*_),r.fill()}var I=this.get("stroke-dasharray"),B=this.get("stroke-dashoffset");if(isNotEqual(this.dashScale,1)){for(var R=0;R<I.length;R++)I[R]*=this.dashScale;B*=this.dashScale}docStrokeColor(w),r.lineWidth(_).miterLimit(this.get("stroke-miterlimit")).lineJoin(this.get("stroke-linejoin")).lineCap(x).dash(I,{phase:B})}for(var D=0;D<p.length;D++)p[D].totalLength>0&&p[D].insertInDocument();g&&w?r.fillAndStroke(this.get("fill-rule")):g?r.fill(this.get("fill-rule")):w&&r.stroke()}var N=this.get("marker-start"),W=this.get("marker-mid"),U=this.get("marker-end");if("none"!==N||"none"!==W||"none"!==U){var j=this.shape.getMarkers();if("none"!==N&&new ce(N,null).drawMarker(!1,o,j[0],_),"none"!==W)for(var G=1;G<j.length-1;G++)new ce(W,null).drawMarker(!1,o,j[G],_);"none"!==U&&new ce(U,null).drawMarker(!1,o,j[j.length-1],_)}u&&(docEndGroup(u),docInsertGroup(u))}r.restore()}}},te=function SvgElemRect(r,i){ee.call(this,r,i);var o=this.getLength("x",this.getVWidth(),0),u=this.getLength("y",this.getVHeight(),0),p=this.getLength("width",this.getVWidth(),0),g=this.getLength("height",this.getVHeight(),0),y=this.getLength("rx",this.getVWidth()),w=this.getLength("ry",this.getVHeight());void 0===y&&void 0===w?y=w=0:void 0===y&&void 0!==w?y=w:void 0!==y&&void 0===w&&(w=y),p>0&&g>0?y&&w?(y=Math.min(y,.5*p),w=Math.min(w,.5*g),this.shape=(new B).M(o+y,u).L(o+p-y,u).A(y,w,0,0,1,o+p,u+w).L(o+p,u+g-w).A(y,w,0,0,1,o+p-y,u+g).L(o+y,u+g).A(y,w,0,0,1,o,u+g-w).L(o,u+w).A(y,w,0,0,1,o+y,u).Z()):this.shape=(new B).M(o,u).L(o+p,u).L(o+p,u+g).L(o,u+g).Z():this.shape=new B},re=function SvgElemCircle(r,i){ee.call(this,r,i);var o=this.getLength("cx",this.getVWidth(),0),u=this.getLength("cy",this.getVHeight(),0),p=this.getLength("r",this.getViewport(),0);this.shape=p>0?(new B).M(o+p,u).A(p,p,0,0,1,o-p,u).A(p,p,0,0,1,o+p,u).Z():new B},ne=function SvgElemEllipse(r,i){ee.call(this,r,i);var o=this.getLength("cx",this.getVWidth(),0),u=this.getLength("cy",this.getVHeight(),0),p=this.getLength("rx",this.getVWidth(),0),g=this.getLength("ry",this.getVHeight(),0);this.shape=p>0&&g>0?(new B).M(o+p,u).A(p,g,0,0,1,o-p,u).A(p,g,0,0,1,o+p,u).Z():new B},ie=function SvgElemLine(r,i){ee.call(this,r,i);var o=this.getLength("x1",this.getVWidth(),0),u=this.getLength("y1",this.getVHeight(),0),p=this.getLength("x2",this.getVWidth(),0),g=this.getLength("y2",this.getVHeight(),0);this.shape=(new B).M(o,u).L(p,g)},oe=function SvgElemPolyline(r,i){ee.call(this,r,i);var o=this.getNumberList("points");this.shape=new B;for(var u=0;u<o.length-1;u+=2)0===u?this.shape.M(o[u],o[u+1]):this.shape.L(o[u],o[u+1]);o.error&&_e("SvgElemPolygon: unexpected string "+o.error),o.length%2==1&&_e("SvgElemPolyline: uneven number of coordinates")},ae=function SvgElemPolygon(r,i){ee.call(this,r,i);var o=this.getNumberList("points");this.shape=new B;for(var u=0;u<o.length-1;u+=2)0===u?this.shape.M(o[u],o[u+1]):this.shape.L(o[u],o[u+1]);this.shape.Z(),o.error&&_e("SvgElemPolygon: unexpected string "+o.error),o.length%2==1&&_e("SvgElemPolygon: uneven number of coordinates")},se=function SvgElemPath(r,i){ee.call(this,r,i),this.shape=(new B).path(this.attr("d"));var o=this.getLength("pathLength",this.getViewport());this.pathLength=o>0?o:void 0,this.dashScale=void 0!==this.pathLength?this.shape.totalLength/this.pathLength:1},ce=function SvgElemMarker(i,o){N.call(this,i,o);var u=this.getLength("markerWidth",this.getParentVWidth(),3),p=this.getLength("markerHeight",this.getParentVHeight(),3),g=this.getViewbox("viewBox",[0,0,u,p]);this.getVWidth=function(){return g[2]},this.getVHeight=function(){return g[3]},this.drawMarker=function(i,o,y,w){r.save();var _=this.attr("orient"),x=this.attr("markerUnits"),k="auto"===_?y[2]:(parseFloat(_)||0)*Math.PI/180,P="userSpaceOnUse"===x?1:w;r.transform(Math.cos(k)*P,Math.sin(k)*P,-Math.sin(k)*P,Math.cos(k)*P,y[0],y[1]);var O,I=this.getLength("refX",this.getVWidth(),0),B=this.getLength("refY",this.getVHeight(),0),R=parseAspectRatio(this.attr("preserveAspectRatio"),u,p,g[2],g[3],.5);"hidden"===this.get("overflow")&&r.rect(R[0]*(g[0]+g[2]/2-I)-u/2,R[3]*(g[1]+g[3]/2-B)-p/2,u,p).clip(),r.transform.apply(r,R),r.translate(-I,-B),this.get("opacity")<1&&!i&&(O=docBeginGroup(getPageBBox())),this.drawChildren(i,o),O&&(docEndGroup(O),r.fillOpacity(this.get("opacity")),docInsertGroup(O)),r.restore()}},le=function SvgElemClipPath(i,o){N.call(this,i,o),this.useMask=function(i){var o=docBeginGroup(getPageBBox());r.save(),"objectBoundingBox"===this.attr("clipPathUnits")&&r.transform(i[2]-i[0],0,0,i[3]-i[1],i[0],i[1]),this.clip(),this.drawChildren(!0,!1),r.restore(),docEndGroup(o),docApplyMask(o,!0)}},ue=function SvgElemMask(i,o){N.call(this,i,o),this.useMask=function(i){var o,u,p,g,y=docBeginGroup(getPageBBox());r.save(),"userSpaceOnUse"===this.attr("maskUnits")?(o=this.getLength("x",this.getVWidth(),-.1*(i[2]-i[0])+i[0]),u=this.getLength("y",this.getVHeight(),-.1*(i[3]-i[1])+i[1]),p=this.getLength("width",this.getVWidth(),1.2*(i[2]-i[0])),g=this.getLength("height",this.getVHeight(),1.2*(i[3]-i[1]))):(o=this.getLength("x",this.getVWidth(),-.1)*(i[2]-i[0])+i[0],u=this.getLength("y",this.getVHeight(),-.1)*(i[3]-i[1])+i[1],p=this.getLength("width",this.getVWidth(),1.2)*(i[2]-i[0]),g=this.getLength("height",this.getVHeight(),1.2)*(i[3]-i[1])),r.rect(o,u,p,g).clip(),"objectBoundingBox"===this.attr("maskContentUnits")&&r.transform(i[2]-i[0],0,0,i[3]-i[1],i[0],i[1]),this.clip(),this.drawChildren(!1,!0),r.restore(),docEndGroup(y),docApplyMask(y,!0)}},fe=function SvgElemTextContainer(i,o){D.call(this,i,o),this.allowedChildren=["tspan","#text","#cdata-section","a"],this.isText=!0,this.getBoundingShape=function(){for(var r=new B,i=0;i<this._pos.length;i++){var o=this._pos[i];if(!o.hidden){var u=o.ascent*Math.sin(o.rotate),p=-o.ascent*Math.cos(o.rotate),g=o.descent*Math.sin(o.rotate),y=-o.descent*Math.cos(o.rotate),w=o.width*Math.cos(o.rotate),_=o.width*Math.sin(o.rotate);r.M(o.x+u,o.y+p).L(o.x+u+w,o.y+p+_).M(o.x+g+w,o.y+y+_).L(o.x+g,o.y+y)}}return r},this.drawTextInDocument=function(i,o){!this.link||i||o||this.addLink(),"underline"===this.get("text-decoration")&&this.decorate(.05*this._font.size,-.075*this._font.size,i,o),"overline"===this.get("text-decoration")&&this.decorate(.05*this._font.size,getAscent(this._font.font,this._font.size)+.075*this._font.size,i,o);var u=this.getFill(i,o),p=this.getStroke(i,o),g=this.get("stroke-width");this._font.fauxBold&&(p?g+=.03*this._font.size:(p=u,g=.03*this._font.size));for(var y,w,_,x,k,P,O,I,B,R=this.getChildren(),D=0;D<R.length;D++){var N=R[D];switch(N.name){case"tspan":case"textPath":case"a":"none"!==N.get("display")&&N.drawTextInDocument(i,o);break;case"#text":case"#cdata-section":if("hidden"===this.get("visibility"))continue;if(u||p||i){u&&docFillColor(u),p&&g&&(docStrokeColor(p),r.lineWidth(g).miterLimit(this.get("stroke-miterlimit")).lineJoin(this.get("stroke-linejoin")).lineCap(this.get("stroke-linecap")).dash(this.get("stroke-dasharray"),{phase:this.get("stroke-dashoffset")})),I=this._font.font,B=this._font.size,r.page.fonts[I.id]||(r.page.fonts[I.id]=I.ref()),r.addContent("BT").addContent("/"+I.id+" "+B+" Tf"),docSetTextMode(!!u,!!p);for(var W=0,U=N._pos;W<U.length;W++)if(!U[W].hidden&&isNotEqual(U[W].width,0)){var j=Math.cos(U[W].rotate),G=Math.sin(U[W].rotate),X=this._font.fauxItalic?-.25:0;w=j*U[W].scale,_=G*U[W].scale,x=j*X-G,k=G*X+j,P=U[W].x,O=U[W].y,r.addContent(validateNumber(w)+" "+validateNumber(_)+" "+validateNumber(-x)+" "+validateNumber(-k)+" "+validateNumber(P)+" "+validateNumber(O)+" Tm"),y=U[W].glyph,r.addContent("<"+y+"> Tj")}r.addContent("ET")}}}"line-through"===this.get("text-decoration")&&this.decorate(.05*this._font.size,.5*(getAscent(this._font.font,this._font.size)+getDescent(this._font.font,this._font.size)),i,o)},this.decorate=function(i,o,u,p){var g=this.getFill(u,p),y=this.getStroke(u,p);g&&docFillColor(g),y&&(docStrokeColor(y),r.lineWidth(this.get("stroke-width")).miterLimit(this.get("stroke-miterlimit")).lineJoin(this.get("stroke-linejoin")).lineCap(this.get("stroke-linecap")).dash(this.get("stroke-dasharray"),{phase:this.get("stroke-dashoffset")}));for(var w=0,_=this._pos;w<_.length;w++)if(!_[w].hidden&&isNotEqual(_[w].width,0)){var x=(o+i/2)*Math.sin(_[w].rotate),k=-(o+i/2)*Math.cos(_[w].rotate),P=(o-i/2)*Math.sin(_[w].rotate),O=-(o-i/2)*Math.cos(_[w].rotate),I=_[w].width*Math.cos(_[w].rotate),R=_[w].width*Math.sin(_[w].rotate);(new B).M(_[w].x+x,_[w].y+k).L(_[w].x+x+I,_[w].y+k+R).L(_[w].x+P+I,_[w].y+O+R).L(_[w].x+P,_[w].y+O).Z().insertInDocument(),g&&y?r.fillAndStroke():g?r.fill():y&&r.stroke()}}},he=function SvgElemTextNode(r,i){this.name=r.nodeName,this.textContent=r.nodeValue},de=function SvgElemTspan(r,i){fe.call(this,r,i)},pe=function SvgElemTextPath(r,i){var o;if(fe.call(this,r,i),(o=this.attr("path"))&&""!==o.trim()){var u=this.getLength("pathLength",this.getViewport());this.pathObject=(new B).path(o),this.pathLength=u>0?u:this.pathObject.totalLength,this.pathScale=this.pathObject.totalLength/this.pathLength}else if((o=this.getUrl("href")||this.getUrl("xlink:href"))&&"path"===o.nodeName){var p=new se(o,this);this.pathObject=p.shape.clone().transform(p.get("transform")),this.pathLength=this.chooseValue(p.pathLength,this.pathObject.totalLength),this.pathScale=this.pathObject.totalLength/this.pathLength}},ge=function SvgElemText(i,o){fe.call(this,i,o),this.allowedChildren=["textPath","tspan","#text","#cdata-section","a"],function(o){var u,p,g="",y=i.textContent,w=[],_=[],x=0,k=0;function doAnchoring(){if(_.length)for(var r=_[_.length-1],i=_[0],o=r.x+r.width-i.x,g={startltr:0,middleltr:.5,endltr:1,startrtl:1,middlertl:.5,endrtl:0}[u+p]*o||0,y=0;y<_.length;y++)_[y].x-=g;_=[]}function textOnPath(r){var i=r.pathObject,o=r.pathLength,u=r.pathScale;if(i)for(var p=r.getLength("startOffset",o,0),g=0;g<r._pos.length;g++){var y=p+r._pos[g].x+.5*r._pos[g].width;if(y>o||y<0)r._pos[g].hidden=!0;else{var w=i.getPointAtLength(y*u);isNotEqual(u,1)&&(r._pos[g].scale*=u,r._pos[g].width*=u),r._pos[g].x=w[0]-.5*r._pos[g].width*Math.cos(w[2])-r._pos[g].y*Math.sin(w[2]),r._pos[g].y=w[1]-.5*r._pos[g].width*Math.sin(w[2])+r._pos[g].y*Math.cos(w[2]),r._pos[g].rotate=w[2]+r._pos[g].rotate,r._pos[g].continuous=!1}}else for(var _=0;_<r._pos.length;_++)r._pos[_].hidden=!0}!function recursive(i,o){i._x=combineArrays(i.getLengthList("x",i.getVWidth()),o?o._x.slice(o._pos.length):[]),i._y=combineArrays(i.getLengthList("y",i.getVHeight()),o?o._y.slice(o._pos.length):[]),i._dx=combineArrays(i.getLengthList("dx",i.getVWidth()),o?o._dx.slice(o._pos.length):[]),i._dy=combineArrays(i.getLengthList("dy",i.getVHeight()),o?o._dy.slice(o._pos.length):[]),i._rot=combineArrays(i.getNumberList("rotate"),o?o._rot.slice(o._pos.length):[]),i._defRot=i.chooseValue(i._rot[i._rot.length-1],o&&o._defRot,0),"textPath"===i.name&&(i._y=[]);var P={fauxItalic:!1,fauxBold:!1},O=Se(i.get("font-family"),"bold"===i.get("font-weight"),"italic"===i.get("font-style"),P);try{r.font(O)}catch(r){_e('SVGElemText: failed to open font "'+O+'" in PDFKit')}i._pos=[],i._index=0,i._font={font:r._font,size:i.get("font-size"),fauxItalic:P.fauxItalic,fauxBold:P.fauxBold};var I=i.getLength("textLength",i.getVWidth(),void 0),B="spacingAndGlyphs"===i.attr("lengthAdjust"),R=i.get("word-spacing"),D=i.get("letter-spacing"),N=i.get("text-anchor"),W=i.get("direction"),U=function getBaseline(r,i,o,u){var p,g;switch(o){case"middle":p=.5*function getXHeight(r,i){return(r.xHeight||.5*(r.ascender-r.descender))*i/1e3}(r,i);break;case"central":p=.5*(getDescent(r,i)+getAscent(r,i));break;case"after-edge":case"text-after-edge":p=getDescent(r,i);break;case"alphabetic":case"auto":case"baseline":default:p=0;break;case"mathematical":p=.5*getAscent(r,i);break;case"hanging":p=.8*getAscent(r,i);break;case"before-edge":case"text-before-edge":p=getAscent(r,i)}switch(u){case"baseline":g=0;break;case"super":g=.6*i;break;case"sub":g=-.6*i;break;default:g=u}return p-g}(i._font.font,i._font.size,i.get("alignment-baseline")||i.get("dominant-baseline"),i.get("baseline-shift"));"textPath"===i.name&&(doAnchoring(),x=k=0);for(var j=i.getChildren(),G=0;G<j.length;G++){var X=j[G];switch(X.name){case"tspan":case"textPath":case"a":recursive(X,i);break;case"#text":case"#cdata-section":var K=X.textContent,Y=K,J=void 0;X._font=i._font,X._pos=[],y=y.substring(K.length),"preserve"===i.get("xml:space")?Y=Y.replace(/[\s]/g," "):(Y=Y.replace(/[\s]+/g," "),g.match(/[\s]$|^$/)&&(Y=Y.replace(/^[\s]/,"")),y.match(/^[\s]*$/)&&(Y=Y.replace(/[\s]$/,""))),g+=K,J=0===R?[Y]:Y.split(/(\s)/);for(var $=0;$<J.length;$++){for(var ee=getTextPos(i._font.font,i._font.size,J[$]),te=0;te<ee.length;te++){var re=i._index,ne=i._x[re],ie=i._y[re],oe=i._dx[re],ae=i._dy[re],se=i._rot[re],ce=!(0===$&&0===te);void 0!==ne&&(ce=!1,doAnchoring(),x=ne),void 0!==ie&&(ce=!1,doAnchoring(),k=ie),void 0!==oe&&(ce=!1,x+=oe),void 0!==ae&&(ce=!1,k+=ae),void 0===se&&0===i._defRot||(ce=!1);var le={glyph:ee[te].glyph,rotate:Math.PI/180*i.chooseValue(se,i._defRot),x:x+ee[te].xOffset,y:k+U+ee[te].yOffset,width:ee[te].width,ascent:getAscent(i._font.font,i._font.size),descent:getDescent(i._font.font,i._font.size),scale:1,hidden:!1,continuous:ce};_.push(le),X._pos.push(le),i._pos.push(le),i._index+=ee[te].unicode.length,1===_.length&&(u=N,p=W),x+=ee[te].xAdvance+D,k+=ee[te].yAdvance}" "===J[$]&&(x+=R)}break;default:y=y.substring(X.textContent.length)}}if(I&&i._pos.length&&function adjustLength(r,i,o){var u=r[0],p=r[r.length-1],g=u.x,y=p.x+p.width;if(o){var w=i/(y-g);if(w>0&&w<1/0)for(var _=0;_<r.length;_++)r[_].x=g+w*(r[_].x-g),r[_].scale*=w,r[_].width*=w}else if(r.length>=2)for(var k=(i-(y-g))/(r.length-1),P=0;P<r.length;P++)r[P].x+=P*k;x+=i-(y-g)}(i._pos,I,B),"textPath"!==i.name&&"text"!==i.name||doAnchoring(),"textPath"===i.name){w.push(i);var ue=i.pathObject;ue&&(x=ue.endPoint[0],k=ue.endPoint[1])}o&&(o._pos=o._pos.concat(i._pos),o._index+=i._index)}(o,null);for(var P=0;P<w.length;P++)textOnPath(w[P])}(this),this.getTransformation=function(){return this.get("transform")},this.drawInDocument=function(i,o){var u;r.save(),this.transform(),this.clip(),this.mask()&&(u=docBeginGroup(getPageBBox())),this.drawTextInDocument(i,o),u&&(docEndGroup(u),docInsertGroup(u)),r.restore()}},ye=(p=p||{}).assumePt?1:.75,ve=(p.width||r.page.width)/ye,me=(p.height||r.page.height)/ye,be=p.preserveAspectRatio||null,we=p.useCSS&&"undefined"!=typeof SVGElement&&i instanceof SVGElement&&"function"==typeof getComputedStyle,_e=p.warningCallback,Se=p.fontCallback,xe=p.imageCallback,Ce=p.colorCallback,ke=p.documentCallback,Pe=Math.ceil(Math.max(1,p.precision))||3,Ae=[],Ee={},Te=[],Oe=[];if("function"!=typeof _e&&(_e=function warningCallback(r){void 0!==typeof console&&console.warn}),"function"!=typeof Se&&(Se=function fontCallback(i,o,u,p){if(o&&u){if(r._registeredFonts.hasOwnProperty(i+"-BoldItalic"))return i+"-BoldItalic";if(r._registeredFonts.hasOwnProperty(i+"-Italic"))return p.fauxBold=!0,i+"-Italic";if(r._registeredFonts.hasOwnProperty(i+"-Bold"))return p.fauxItalic=!0,i+"-Bold";if(r._registeredFonts.hasOwnProperty(i))return p.fauxBold=!0,p.fauxItalic=!0,i}if(o&&!u){if(r._registeredFonts.hasOwnProperty(i+"-Bold"))return i+"-Bold";if(r._registeredFonts.hasOwnProperty(i))return p.fauxBold=!0,i}if(!o&&u){if(r._registeredFonts.hasOwnProperty(i+"-Italic"))return i+"-Italic";if(r._registeredFonts.hasOwnProperty(i))return p.fauxItalic=!0,i}if(!o&&!u&&r._registeredFonts.hasOwnProperty(i))return i;if(i.match(/(?:^|,)\s*serif\s*$/)){if(o&&u)return"Times-BoldItalic";if(o&&!u)return"Times-Bold";if(!o&&u)return"Times-Italic";if(!o&&!u)return"Times-Roman"}else if(i.match(/(?:^|,)\s*monospace\s*$/)){if(o&&u)return"Courier-BoldOblique";if(o&&!u)return"Courier-Bold";if(!o&&u)return"Courier-Oblique";if(!o&&!u)return"Courier"}else{if(i.match(/(?:^|,)\s*sans-serif\s*$/),o&&u)return"Helvetica-BoldOblique";if(o&&!u)return"Helvetica-Bold";if(!o&&u)return"Helvetica-Oblique";if(!o&&!u)return"Helvetica"}}),"function"!=typeof xe&&(xe=function imageCallback(r){return r.replace(/\s+/g,"")}),"function"!=typeof Ce)Ce=null;else for(var Ie in y){var Be=Ce(y[Ie]);y[Ie][0]=Be[0],y[Ie][1]=Be[1]}if("function"!=typeof ke&&(ke=null),"string"==typeof i&&(i=parseXml(i)),i){for(var Fe=i.getElementsByTagName("style"),Le=0;Le<Fe.length;Le++)Oe=Oe.concat(parseStyleSheet(Fe[Le].textContent));var Re=createSVGElement(i,null);if("function"==typeof Re.drawInDocument){p.useCSS&&!we&&_e("SVGtoPDF: useCSS option can only be used for SVG *elements* in compatible browsers");var De=r._fillColor;r.save().translate(o||0,u||0).scale(ye),Re.drawInDocument();for(var Me=0;Me<Te.length;Me++)r.page.annotations.push(Te[Me]);r.restore(),r._fillColor=De}else _e("SVGtoPDF: this element can't be rendered directly: "+i.nodeName)}else _e("SVGtoPDF: the input does not look like a valid SVG")})},9742:function(r,i){"use strict";i.byteLength=function byteLength(r){var i=getLens(r),o=i[0],u=i[1];return 3*(o+u)/4-u},i.toByteArray=function toByteArray(r){var i,o,g=getLens(r),y=g[0],w=g[1],_=new p(function _byteLength(r,i,o){return 3*(i+o)/4-o}(0,y,w)),x=0,k=w>0?y-4:y;for(o=0;o<k;o+=4)i=u[r.charCodeAt(o)]<<18|u[r.charCodeAt(o+1)]<<12|u[r.charCodeAt(o+2)]<<6|u[r.charCodeAt(o+3)],_[x++]=i>>16&255,_[x++]=i>>8&255,_[x++]=255&i;2===w&&(i=u[r.charCodeAt(o)]<<2|u[r.charCodeAt(o+1)]>>4,_[x++]=255&i);1===w&&(i=u[r.charCodeAt(o)]<<10|u[r.charCodeAt(o+1)]<<4|u[r.charCodeAt(o+2)]>>2,_[x++]=i>>8&255,_[x++]=255&i);return _},i.fromByteArray=function fromByteArray(r){for(var i,u=r.length,p=u%3,g=[],y=16383,w=0,_=u-p;w<_;w+=y)g.push(encodeChunk(r,w,w+y>_?_:w+y));1===p?(i=r[u-1],g.push(o[i>>2]+o[i<<4&63]+"==")):2===p&&(i=(r[u-2]<<8)+r[u-1],g.push(o[i>>10]+o[i>>4&63]+o[i<<2&63]+"="));return g.join("")};for(var o=[],u=[],p="undefined"!=typeof Uint8Array?Uint8Array:Array,g="ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/",y=0,w=g.length;y<w;++y)o[y]=g[y],u[g.charCodeAt(y)]=y;function getLens(r){var i=r.length;if(i%4>0)throw new Error("Invalid string. Length must be a multiple of 4");var o=r.indexOf("=");return-1===o&&(o=i),[o,o===i?0:4-o%4]}function encodeChunk(r,i,u){for(var p,g,y=[],w=i;w<u;w+=3)p=(r[w]<<16&16711680)+(r[w+1]<<8&65280)+(255&r[w+2]),y.push(o[(g=p)>>18&63]+o[g>>12&63]+o[g>>6&63]+o[63&g]);return y.join("")}u["-".charCodeAt(0)]=62,u["_".charCodeAt(0)]=63},4181:function(r){var i=4096,o=new Uint32Array([0,1,3,7,15,31,63,127,255,511,1023,2047,4095,8191,16383,32767,65535,131071,262143,524287,1048575,2097151,4194303,8388607,16777215]);function BrotliBitReader(r){this.buf_=new Uint8Array(8224),this.input_=r,this.reset()}BrotliBitReader.READ_SIZE=i,BrotliBitReader.IBUF_MASK=8191,BrotliBitReader.prototype.reset=function(){this.buf_ptr_=0,this.val_=0,this.pos_=0,this.bit_pos_=0,this.bit_end_pos_=0,this.eos_=0,this.readMoreInput();for(var r=0;r<4;r++)this.val_|=this.buf_[this.pos_]<<8*r,++this.pos_;return this.bit_end_pos_>0},BrotliBitReader.prototype.readMoreInput=function(){if(!(this.bit_end_pos_>256))if(this.eos_){if(this.bit_pos_>this.bit_end_pos_)throw new Error("Unexpected end of input "+this.bit_pos_+" "+this.bit_end_pos_)}else{var r=this.buf_ptr_,o=this.input_.read(this.buf_,r,i);if(o<0)throw new Error("Unexpected end of input");if(o<i){this.eos_=1;for(var u=0;u<32;u++)this.buf_[r+o+u]=0}if(0===r){for(u=0;u<32;u++)this.buf_[8192+u]=this.buf_[u];this.buf_ptr_=i}else this.buf_ptr_=0;this.bit_end_pos_+=o<<3}},BrotliBitReader.prototype.fillBitWindow=function(){for(;this.bit_pos_>=8;)this.val_>>>=8,this.val_|=this.buf_[8191&this.pos_]<<24,++this.pos_,this.bit_pos_=this.bit_pos_-8>>>0,this.bit_end_pos_=this.bit_end_pos_-8>>>0},BrotliBitReader.prototype.readBits=function(r){32-this.bit_pos_<r&&this.fillBitWindow();var i=this.val_>>>this.bit_pos_&o[r];return this.bit_pos_+=r,i},r.exports=BrotliBitReader},7080:function(r,i){i.lookup=new Uint8Array([0,0,0,0,0,0,0,0,0,4,4,0,0,4,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,8,12,16,12,12,20,12,16,24,28,12,12,32,12,36,12,44,44,44,44,44,44,44,44,44,44,32,32,24,40,28,12,12,48,52,52,52,48,52,52,52,48,52,52,52,52,52,48,52,52,52,52,52,48,52,52,52,52,52,24,12,28,12,12,12,56,60,60,60,56,60,60,60,56,60,60,60,60,60,56,60,60,60,60,60,56,60,60,60,60,60,24,12,28,12,0,0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1,0,1,2,3,2,3,2,3,2,3,2,3,2,3,2,3,2,3,2,3,2,3,2,3,2,3,2,3,2,3,2,3,2,3,2,3,2,3,2,3,2,3,2,3,2,3,2,3,2,3,2,3,2,3,2,3,2,3,2,3,2,3,2,3,2,3,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,2,2,2,2,2,2,2,2,2,2,1,1,1,1,1,1,1,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,1,1,1,1,1,1,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,1,1,1,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,0,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,2,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,3,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,4,5,5,5,5,5,5,5,5,5,5,5,5,5,5,5,5,5,5,5,5,5,5,5,5,5,5,5,5,5,5,5,5,5,5,5,5,5,5,5,5,5,5,5,5,5,5,5,5,6,6,6,6,6,6,6,6,6,6,6,6,6,6,6,7,0,8,8,8,8,8,8,8,8,8,8,8,8,8,8,8,16,16,16,16,16,16,16,16,16,16,16,16,16,16,16,16,16,16,16,16,16,16,16,16,16,16,16,16,16,16,16,16,16,16,16,16,16,16,16,16,16,16,16,16,16,16,16,16,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,24,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,32,40,40,40,40,40,40,40,40,40,40,40,40,40,40,40,40,40,40,40,40,40,40,40,40,40,40,40,40,40,40,40,40,40,40,40,40,40,40,40,40,40,40,40,40,40,40,40,40,48,48,48,48,48,48,48,48,48,48,48,48,48,48,48,56,0,1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52,53,54,55,56,57,58,59,60,61,62,63,0,1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52,53,54,55,56,57,58,59,60,61,62,63,0,1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52,53,54,55,56,57,58,59,60,61,62,63,0,1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52,53,54,55,56,57,58,59,60,61,62,63,0,0,0,0,1,1,1,1,2,2,2,2,3,3,3,3,4,4,4,4,5,5,5,5,6,6,6,6,7,7,7,7,8,8,8,8,9,9,9,9,10,10,10,10,11,11,11,11,12,12,12,12,13,13,13,13,14,14,14,14,15,15,15,15,16,16,16,16,17,17,17,17,18,18,18,18,19,19,19,19,20,20,20,20,21,21,21,21,22,22,22,22,23,23,23,23,24,24,24,24,25,25,25,25,26,26,26,26,27,27,27,27,28,28,28,28,29,29,29,29,30,30,30,30,31,31,31,31,32,32,32,32,33,33,33,33,34,34,34,34,35,35,35,35,36,36,36,36,37,37,37,37,38,38,38,38,39,39,39,39,40,40,40,40,41,41,41,41,42,42,42,42,43,43,43,43,44,44,44,44,45,45,45,45,46,46,46,46,47,47,47,47,48,48,48,48,49,49,49,49,50,50,50,50,51,51,51,51,52,52,52,52,53,53,53,53,54,54,54,54,55,55,55,55,56,56,56,56,57,57,57,57,58,58,58,58,59,59,59,59,60,60,60,60,61,61,61,61,62,62,62,62,63,63,63,63,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]),i.lookupOffsets=new Uint16Array([1024,1536,1280,1536,0,256,768,512])},6450:function(r,i,o){var u=o(6154).g,p=o(6154).j,g=o(4181),y=o(5139),w=o(966).h,_=o(966).g,x=o(7080),k=o(8435),P=o(2973),O=1080,I=new Uint8Array([1,2,3,4,0,5,17,6,16,7,8,9,10,11,12,13,14,15]),B=new Uint8Array([3,2,1,0,3,3,3,3,3,3,2,2,2,2,2,2]),R=new Int8Array([0,0,0,0,-1,1,-2,2,-3,3,-1,1,-2,2,-3,3]),D=new Uint16Array([256,402,436,468,500,534,566,598,630,662,694,726,758,790,822,854,886,920,952,984,1016,1048,1080]);function DecodeWindowBits(r){var i;return 0===r.readBits(1)?16:(i=r.readBits(3))>0?17+i:(i=r.readBits(3))>0?8+i:17}function DecodeVarLenUint8(r){if(r.readBits(1)){var i=r.readBits(3);return 0===i?1:r.readBits(i)+(1<<i)}return 0}function MetaBlockLength(){this.meta_block_length=0,this.input_end=0,this.is_uncompressed=0,this.is_metadata=!1}function DecodeMetaBlockLength(r){var i,o,u,p=new MetaBlockLength;if(p.input_end=r.readBits(1),p.input_end&&r.readBits(1))return p;if(7===(i=r.readBits(2)+4)){if(p.is_metadata=!0,0!==r.readBits(1))throw new Error("Invalid reserved bit");if(0===(o=r.readBits(2)))return p;for(u=0;u<o;u++){var g=r.readBits(8);if(u+1===o&&o>1&&0===g)throw new Error("Invalid size byte");p.meta_block_length|=g<<8*u}}else for(u=0;u<i;++u){var y=r.readBits(4);if(u+1===i&&i>4&&0===y)throw new Error("Invalid size nibble");p.meta_block_length|=y<<4*u}return++p.meta_block_length,p.input_end||p.is_metadata||(p.is_uncompressed=r.readBits(1)),p}function ReadSymbol(r,i,o){var u;return o.fillBitWindow(),(u=r[i+=o.val_>>>o.bit_pos_&255].bits-8)>0&&(o.bit_pos_+=8,i+=r[i].value,i+=o.val_>>>o.bit_pos_&(1<<u)-1),o.bit_pos_+=r[i].bits,r[i].value}function ReadHuffmanCode(r,i,o,u){var p,g,y=new Uint8Array(r);if(u.readMoreInput(),1===(g=u.readBits(2))){for(var x=r-1,k=0,P=new Int32Array(4),O=u.readBits(2)+1;x;)x>>=1,++k;for(B=0;B<O;++B)P[B]=u.readBits(k)%r,y[P[B]]=2;switch(y[P[0]]=1,O){case 1:break;case 3:if(P[0]===P[1]||P[0]===P[2]||P[1]===P[2])throw new Error("[ReadHuffmanCode] invalid symbols");break;case 2:if(P[0]===P[1])throw new Error("[ReadHuffmanCode] invalid symbols");y[P[1]]=1;break;case 4:if(P[0]===P[1]||P[0]===P[2]||P[0]===P[3]||P[1]===P[2]||P[1]===P[3]||P[2]===P[3])throw new Error("[ReadHuffmanCode] invalid symbols");u.readBits(1)?(y[P[2]]=3,y[P[3]]=3):y[P[0]]=2}}else{var B,R=new Uint8Array(18),D=32,N=0,W=[new w(2,0),new w(2,4),new w(2,3),new w(3,2),new w(2,0),new w(2,4),new w(2,3),new w(4,1),new w(2,0),new w(2,4),new w(2,3),new w(3,2),new w(2,0),new w(2,4),new w(2,3),new w(4,5)];for(B=g;B<18&&D>0;++B){var U,j=I[B],G=0;u.fillBitWindow(),G+=u.val_>>>u.bit_pos_&15,u.bit_pos_+=W[G].bits,U=W[G].value,R[j]=U,0!==U&&(D-=32>>U,++N)}if(1!==N&&0!==D)throw new Error("[ReadHuffmanCode] invalid num_codes or space");!function ReadHuffmanCodeLengths(r,i,o,u){for(var p=0,g=8,y=0,x=0,k=32768,P=[],O=0;O<32;O++)P.push(new w(0,0));for(_(P,0,5,r,18);p<i&&k>0;){var I,B=0;if(u.readMoreInput(),u.fillBitWindow(),B+=u.val_>>>u.bit_pos_&31,u.bit_pos_+=P[B].bits,(I=255&P[B].value)<16)y=0,o[p++]=I,0!==I&&(g=I,k-=32768>>I);else{var R,D,N=I-14,W=0;if(16===I&&(W=g),x!==W&&(y=0,x=W),R=y,y>0&&(y-=2,y<<=N),p+(D=(y+=u.readBits(N)+3)-R)>i)throw new Error("[ReadHuffmanCodeLengths] symbol + repeat_delta > num_symbols");for(var U=0;U<D;U++)o[p+U]=x;p+=D,0!==x&&(k-=D<<15-x)}}if(0!==k)throw new Error("[ReadHuffmanCodeLengths] space = "+k);for(;p<i;p++)o[p]=0}(R,r,y,u)}if(0===(p=_(i,o,8,y,r)))throw new Error("[ReadHuffmanCode] BuildHuffmanTable failed: ");return p}function ReadBlockLength(r,i,o){var u,p;return u=ReadSymbol(r,i,o),p=k.kBlockLengthPrefixCode[u].nbits,k.kBlockLengthPrefixCode[u].offset+o.readBits(p)}function TranslateShortCodes(r,i,o){var u;return r<16?(o+=B[r],u=i[o&=3]+R[r]):u=r-16+1,u}function MoveToFront(r,i){for(var o=r[i],u=i;u;--u)r[u]=r[u-1];r[0]=o}function HuffmanTreeGroup(r,i){this.alphabet_size=r,this.num_htrees=i,this.codes=new Array(i+i*D[r+31>>>5]),this.htrees=new Uint32Array(i)}function DecodeContextMap(r,i){var o,u,p={num_htrees:null,context_map:null},g=0;i.readMoreInput();var y=p.num_htrees=DecodeVarLenUint8(i)+1,_=p.context_map=new Uint8Array(r);if(y<=1)return p;for(i.readBits(1)&&(g=i.readBits(4)+1),o=[],u=0;u<O;u++)o[u]=new w(0,0);for(ReadHuffmanCode(y+g,o,0,i),u=0;u<r;){var x;if(i.readMoreInput(),0===(x=ReadSymbol(o,0,i)))_[u]=0,++u;else if(x<=g)for(var k=1+(1<<x)+i.readBits(x);--k;){if(u>=r)throw new Error("[DecodeContextMap] i >= context_map_size");_[u]=0,++u}else _[u]=x-g,++u}return i.readBits(1)&&function InverseMoveToFrontTransform(r,i){var o,u=new Uint8Array(256);for(o=0;o<256;++o)u[o]=o;for(o=0;o<i;++o){var p=r[o];r[o]=u[p],p&&MoveToFront(u,p)}}(_,r),p}function DecodeBlockType(r,i,o,u,p,g,y){var w,_=2*o,x=o,k=ReadSymbol(i,o*O,y);(w=0===k?p[_+(1&g[x])]:1===k?p[_+(g[x]-1&1)]+1:k-2)>=r&&(w-=r),u[o]=w,p[_+(1&g[x])]=w,++g[x]}function CopyUncompressedBlockToOutput(r,i,o,u,p,y){var w,_=p+1,x=o&p,k=y.pos_&g.IBUF_MASK;if(i<8||y.bit_pos_+(i<<3)<y.bit_end_pos_)for(;i-- >0;)y.readMoreInput(),u[x++]=y.readBits(8),x===_&&(r.write(u,_),x=0);else{if(y.bit_end_pos_<32)throw new Error("[CopyUncompressedBlockToOutput] br.bit_end_pos_ < 32");for(;y.bit_pos_<32;)u[x]=y.val_>>>y.bit_pos_,y.bit_pos_+=8,++x,--i;if(k+(w=y.bit_end_pos_-y.bit_pos_>>3)>g.IBUF_MASK){for(var P=g.IBUF_MASK+1-k,O=0;O<P;O++)u[x+O]=y.buf_[k+O];w-=P,x+=P,i-=P,k=0}for(O=0;O<w;O++)u[x+O]=y.buf_[k+O];if(i-=w,(x+=w)>=_){r.write(u,_),x-=_;for(O=0;O<x;O++)u[O]=u[_+O]}for(;x+i>=_;){if(w=_-x,y.input_.read(u,x,w)<w)throw new Error("[CopyUncompressedBlockToOutput] not enough bytes");r.write(u,_),i-=w,x=0}if(y.input_.read(u,x,i)<i)throw new Error("[CopyUncompressedBlockToOutput] not enough bytes");y.reset()}}function JumpToByteBoundary(r){var i=r.bit_pos_+7&-8;return 0==r.readBits(i-r.bit_pos_)}function BrotliDecompressedSize(r){var i=new u(r),o=new g(i);return DecodeWindowBits(o),DecodeMetaBlockLength(o).meta_block_length}function BrotliDecompress(r,i){var o,u,p,_,I,B,R,D,N,W,U=0,j=0,G=0,X=[16,15,11,4],K=0,Y=0,J=0,$=[new HuffmanTreeGroup(0,0),new HuffmanTreeGroup(0,0),new HuffmanTreeGroup(0,0)],ee=128+g.READ_SIZE;p=(1<<(u=DecodeWindowBits(W=new g(r))))-16,I=(_=1<<u)-1,B=new Uint8Array(_+ee+y.maxDictionaryWordLength),R=_,D=[],N=[];for(var te=0;te<3240;te++)D[te]=new w(0,0),N[te]=new w(0,0);for(;!j;){var re,ne,ie,oe,ae,se,ce,le,ue,fe,he,de=0,pe=[1<<28,1<<28,1<<28],ge=[0],ye=[1,1,1],ve=[0,1,0,1,0,1],me=[0],be=null,we=null,_e=0,Se=null,xe=0,Ce=0,ke=0;for(o=0;o<3;++o)$[o].codes=null,$[o].htrees=null;W.readMoreInput();var Pe=DecodeMetaBlockLength(W);if(U+(de=Pe.meta_block_length)>i.buffer.length){var Ae=new Uint8Array(U+de);Ae.set(i.buffer),i.buffer=Ae}if(j=Pe.input_end,re=Pe.is_uncompressed,Pe.is_metadata)for(JumpToByteBoundary(W);de>0;--de)W.readMoreInput(),W.readBits(8);else if(0!==de)if(re)W.bit_pos_=W.bit_pos_+7&-8,CopyUncompressedBlockToOutput(i,de,U,B,I,W),U+=de;else{for(o=0;o<3;++o)ye[o]=DecodeVarLenUint8(W)+1,ye[o]>=2&&(ReadHuffmanCode(ye[o]+2,D,o*O,W),ReadHuffmanCode(26,N,o*O,W),pe[o]=ReadBlockLength(N,o*O,W),me[o]=1);for(W.readMoreInput(),oe=(1<<(ne=W.readBits(2)))-1,ae=(ie=16+(W.readBits(4)<<ne))+(48<<ne),be=new Uint8Array(ye[0]),o=0;o<ye[0];++o)W.readMoreInput(),be[o]=W.readBits(2)<<1;var Ee=DecodeContextMap(ye[0]<<6,W);ce=Ee.num_htrees,se=Ee.context_map;var Te=DecodeContextMap(ye[2]<<2,W);for(ue=Te.num_htrees,le=Te.context_map,$[0]=new HuffmanTreeGroup(256,ce),$[1]=new HuffmanTreeGroup(704,ye[1]),$[2]=new HuffmanTreeGroup(ae,ue),o=0;o<3;++o)$[o].decode(W);for(we=0,Se=0,fe=be[ge[0]],Ce=x.lookupOffsets[fe],ke=x.lookupOffsets[fe+1],he=$[1].htrees[0];de>0;){var Oe,Ie,Be,Fe,Le,Re,De,Me,Ne,We,ze,Ue;for(W.readMoreInput(),0===pe[1]&&(DecodeBlockType(ye[1],D,1,ge,ve,me,W),pe[1]=ReadBlockLength(N,O,W),he=$[1].htrees[ge[1]]),--pe[1],(Ie=(Oe=ReadSymbol($[1].codes,he,W))>>6)>=2?(Ie-=2,De=-1):De=0,Be=k.kInsertRangeLut[Ie]+(Oe>>3&7),Fe=k.kCopyRangeLut[Ie]+(7&Oe),Le=k.kInsertLengthPrefixCode[Be].offset+W.readBits(k.kInsertLengthPrefixCode[Be].nbits),Re=k.kCopyLengthPrefixCode[Fe].offset+W.readBits(k.kCopyLengthPrefixCode[Fe].nbits),Y=B[U-1&I],J=B[U-2&I],Ne=0;Ne<Le;++Ne)W.readMoreInput(),0===pe[0]&&(DecodeBlockType(ye[0],D,0,ge,ve,me,W),pe[0]=ReadBlockLength(N,0,W),we=ge[0]<<6,fe=be[ge[0]],Ce=x.lookupOffsets[fe],ke=x.lookupOffsets[fe+1]),_e=se[we+(x.lookup[Ce+Y]|x.lookup[ke+J])],--pe[0],J=Y,Y=ReadSymbol($[0].codes,$[0].htrees[_e],W),B[U&I]=Y,(U&I)===I&&i.write(B,_),++U;if((de-=Le)<=0)break;if(De<0)if(W.readMoreInput(),0===pe[2]&&(DecodeBlockType(ye[2],D,2,ge,ve,me,W),pe[2]=ReadBlockLength(N,2160,W),Se=ge[2]<<2),--pe[2],xe=le[Se+(255&(Re>4?3:Re-2))],(De=ReadSymbol($[2].codes,$[2].htrees[xe],W))>=ie)Ue=(De-=ie)&oe,De=ie+((je=(2+(1&(De>>=ne))<<(ze=1+(De>>1)))-4)+W.readBits(ze)<<ne)+Ue;if((Me=TranslateShortCodes(De,X,K))<0)throw new Error("[BrotliDecompress] invalid distance");if(We=U&I,Me>(G=U<p&&G!==p?U:p)){if(!(Re>=y.minDictionaryWordLength&&Re<=y.maxDictionaryWordLength))throw new Error("Invalid backward reference. pos: "+U+" distance: "+Me+" len: "+Re+" bytes left: "+de);var je=y.offsetsByLength[Re],Ge=Me-G-1,Ve=y.sizeBitsByLength[Re],He=Ge>>Ve;if(je+=(Ge&(1<<Ve)-1)*Re,!(He<P.kNumTransforms))throw new Error("Invalid backward reference. pos: "+U+" distance: "+Me+" len: "+Re+" bytes left: "+de);var qe=P.transformDictionaryWord(B,We,je,Re,He);if(U+=qe,de-=qe,(We+=qe)>=R){i.write(B,_);for(var Xe=0;Xe<We-R;Xe++)B[Xe]=B[R+Xe]}}else{if(De>0&&(X[3&K]=Me,++K),Re>de)throw new Error("Invalid backward reference. pos: "+U+" distance: "+Me+" len: "+Re+" bytes left: "+de);for(Ne=0;Ne<Re;++Ne)B[U&I]=B[U-Me&I],(U&I)===I&&i.write(B,_),++U,--de}Y=B[U-1&I],J=B[U-2&I]}U&=1073741823}}i.write(B,U&I)}HuffmanTreeGroup.prototype.decode=function(r){var i,o=0;for(i=0;i<this.num_htrees;++i)this.htrees[i]=o,o+=ReadHuffmanCode(this.alphabet_size,this.codes,o,r)},i.BrotliDecompressBuffer=function BrotliDecompressBuffer(r,i){var o=new u(r);null==i&&(i=BrotliDecompressedSize(r));var g=new Uint8Array(i),y=new p(g);return BrotliDecompress(o,y),y.pos<y.buffer.length&&(y.buffer=y.buffer.subarray(0,y.pos)),y.buffer},y.init()},5340:function(r,i,o){var u=o(9742);i.init=function(){return(0,o(6450).BrotliDecompressBuffer)(u.toByteArray(o(2722)))}},2722:function(r){r.exports="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"},5139:function(r,i,o){var u=o(5340);i.init=function(){i.dictionary=u.init()},i.offsetsByLength=new Uint32Array([0,0,0,0,0,4096,9216,21504,35840,44032,53248,63488,74752,87040,93696,100864,104704,106752,108928,113536,115968,118528,119872,121280,122016]),i.sizeBitsByLength=new Uint8Array([0,0,0,0,10,10,11,11,10,10,10,10,10,9,9,8,7,7,8,7,7,6,6,5,5]),i.minDictionaryWordLength=4,i.maxDictionaryWordLength=24},966:function(r,i){function HuffmanCode(r,i){this.bits=r,this.value=i}i.h=HuffmanCode;var o=15;function GetNextKey(r,i){for(var o=1<<i-1;r&o;)o>>=1;return(r&o-1)+o}function ReplicateValue(r,i,o,u,p){do{r[i+(u-=o)]=new HuffmanCode(p.bits,p.value)}while(u>0)}function NextTableBitSize(r,i,u){for(var p=1<<i-u;i<o&&!((p-=r[i])<=0);)++i,p<<=1;return i-u}i.g=function(r,i,u,p,g){var y,w,_,x,k,P,O,I,B,R,D=i,N=new Int32Array(16),W=new Int32Array(16);for(R=new Int32Array(g),w=0;w<g;w++)N[p[w]]++;for(W[1]=0,y=1;y<o;y++)W[y+1]=W[y]+N[y];for(w=0;w<g;w++)0!==p[w]&&(R[W[p[w]]++]=w);if(B=I=1<<(O=u),1===W[15]){for(_=0;_<B;++_)r[i+_]=new HuffmanCode(0,65535&R[0]);return B}for(_=0,w=0,y=1,x=2;y<=u;++y,x<<=1)for(;N[y]>0;--N[y])ReplicateValue(r,i+_,x,I,new HuffmanCode(255&y,65535&R[w++])),_=GetNextKey(_,y);for(P=B-1,k=-1,y=u+1,x=2;y<=o;++y,x<<=1)for(;N[y]>0;--N[y])(_&P)!==k&&(i+=I,B+=I=1<<(O=NextTableBitSize(N,y,u)),r[D+(k=_&P)]=new HuffmanCode(O+u&255,i-D-k&65535)),ReplicateValue(r,i+(_>>u),x,I,new HuffmanCode(y-u&255,65535&R[w++])),_=GetNextKey(_,y);return B}},8435:function(r,i){function PrefixCodeRange(r,i){this.offset=r,this.nbits=i}i.kBlockLengthPrefixCode=[new PrefixCodeRange(1,2),new PrefixCodeRange(5,2),new PrefixCodeRange(9,2),new PrefixCodeRange(13,2),new PrefixCodeRange(17,3),new PrefixCodeRange(25,3),new PrefixCodeRange(33,3),new PrefixCodeRange(41,3),new PrefixCodeRange(49,4),new PrefixCodeRange(65,4),new PrefixCodeRange(81,4),new PrefixCodeRange(97,4),new PrefixCodeRange(113,5),new PrefixCodeRange(145,5),new PrefixCodeRange(177,5),new PrefixCodeRange(209,5),new PrefixCodeRange(241,6),new PrefixCodeRange(305,6),new PrefixCodeRange(369,7),new PrefixCodeRange(497,8),new PrefixCodeRange(753,9),new PrefixCodeRange(1265,10),new PrefixCodeRange(2289,11),new PrefixCodeRange(4337,12),new PrefixCodeRange(8433,13),new PrefixCodeRange(16625,24)],i.kInsertLengthPrefixCode=[new PrefixCodeRange(0,0),new PrefixCodeRange(1,0),new PrefixCodeRange(2,0),new PrefixCodeRange(3,0),new PrefixCodeRange(4,0),new PrefixCodeRange(5,0),new PrefixCodeRange(6,1),new PrefixCodeRange(8,1),new PrefixCodeRange(10,2),new PrefixCodeRange(14,2),new PrefixCodeRange(18,3),new PrefixCodeRange(26,3),new PrefixCodeRange(34,4),new PrefixCodeRange(50,4),new PrefixCodeRange(66,5),new PrefixCodeRange(98,5),new PrefixCodeRange(130,6),new PrefixCodeRange(194,7),new PrefixCodeRange(322,8),new PrefixCodeRange(578,9),new PrefixCodeRange(1090,10),new PrefixCodeRange(2114,12),new PrefixCodeRange(6210,14),new PrefixCodeRange(22594,24)],i.kCopyLengthPrefixCode=[new PrefixCodeRange(2,0),new PrefixCodeRange(3,0),new PrefixCodeRange(4,0),new PrefixCodeRange(5,0),new PrefixCodeRange(6,0),new PrefixCodeRange(7,0),new PrefixCodeRange(8,0),new PrefixCodeRange(9,0),new PrefixCodeRange(10,1),new PrefixCodeRange(12,1),new PrefixCodeRange(14,2),new PrefixCodeRange(18,2),new PrefixCodeRange(22,3),new PrefixCodeRange(30,3),new PrefixCodeRange(38,4),new PrefixCodeRange(54,4),new PrefixCodeRange(70,5),new PrefixCodeRange(102,5),new PrefixCodeRange(134,6),new PrefixCodeRange(198,7),new PrefixCodeRange(326,8),new PrefixCodeRange(582,9),new PrefixCodeRange(1094,10),new PrefixCodeRange(2118,24)],i.kInsertRangeLut=[0,0,8,8,0,16,8,16,16],i.kCopyRangeLut=[0,8,0,8,16,0,16,8,16]},6154:function(r,i){function BrotliInput(r){this.buffer=r,this.pos=0}function BrotliOutput(r){this.buffer=r,this.pos=0}BrotliInput.prototype.read=function(r,i,o){this.pos+o>this.buffer.length&&(o=this.buffer.length-this.pos);for(var u=0;u<o;u++)r[i+u]=this.buffer[this.pos+u];return this.pos+=o,o},i.g=BrotliInput,BrotliOutput.prototype.write=function(r,i){if(this.pos+i>this.buffer.length)throw new Error("Output buffer is not large enough");return this.buffer.set(r.subarray(0,i),this.pos),this.pos+=i,i},i.j=BrotliOutput},2973:function(r,i,o){var u=o(5139),p=10,g=11;function Transform(r,i,o){this.prefix=new Uint8Array(r.length),this.transform=i,this.suffix=new Uint8Array(o.length);for(var u=0;u<r.length;u++)this.prefix[u]=r.charCodeAt(u);for(u=0;u<o.length;u++)this.suffix[u]=o.charCodeAt(u)}var y=[new Transform("",0,""),new Transform("",0," "),new Transform(" ",0," "),new Transform("",12,""),new Transform("",p," "),new Transform("",0," the "),new Transform(" ",0,""),new Transform("s ",0," "),new Transform("",0," of "),new Transform("",p,""),new Transform("",0," and "),new Transform("",13,""),new Transform("",1,""),new Transform(", ",0," "),new Transform("",0,", "),new Transform(" ",p," "),new Transform("",0," in "),new Transform("",0," to "),new Transform("e ",0," "),new Transform("",0,'"'),new Transform("",0,"."),new Transform("",0,'">'),new Transform("",0,"\n"),new Transform("",3,""),new Transform("",0,"]"),new Transform("",0," for "),new Transform("",14,""),new Transform("",2,""),new Transform("",0," a "),new Transform("",0," that "),new Transform(" ",p,""),new Transform("",0,". "),new Transform(".",0,""),new Transform(" ",0,", "),new Transform("",15,""),new Transform("",0," with "),new Transform("",0,"'"),new Transform("",0," from "),new Transform("",0," by "),new Transform("",16,""),new Transform("",17,""),new Transform(" the ",0,""),new Transform("",4,""),new Transform("",0,". The "),new Transform("",g,""),new Transform("",0," on "),new Transform("",0," as "),new Transform("",0," is "),new Transform("",7,""),new Transform("",1,"ing "),new Transform("",0,"\n\t"),new Transform("",0,":"),new Transform(" ",0,". "),new Transform("",0,"ed "),new Transform("",20,""),new Transform("",18,""),new Transform("",6,""),new Transform("",0,"("),new Transform("",p,", "),new Transform("",8,""),new Transform("",0," at "),new Transform("",0,"ly "),new Transform(" the ",0," of "),new Transform("",5,""),new Transform("",9,""),new Transform(" ",p,", "),new Transform("",p,'"'),new Transform(".",0,"("),new Transform("",g," "),new Transform("",p,'">'),new Transform("",0,'="'),new Transform(" ",0,"."),new Transform(".com/",0,""),new Transform(" the ",0," of the "),new Transform("",p,"'"),new Transform("",0,". This "),new Transform("",0,","),new Transform(".",0," "),new Transform("",p,"("),new Transform("",p,"."),new Transform("",0," not "),new Transform(" ",0,'="'),new Transform("",0,"er "),new Transform(" ",g," "),new Transform("",0,"al "),new Transform(" ",g,""),new Transform("",0,"='"),new Transform("",g,'"'),new Transform("",p,". "),new Transform(" ",0,"("),new Transform("",0,"ful "),new Transform(" ",p,". "),new Transform("",0,"ive "),new Transform("",0,"less "),new Transform("",g,"'"),new Transform("",0,"est "),new Transform(" ",p,"."),new Transform("",g,'">'),new Transform(" ",0,"='"),new Transform("",p,","),new Transform("",0,"ize "),new Transform("",g,"."),new Transform(" ",0,""),new Transform(" ",0,","),new Transform("",p,'="'),new Transform("",g,'="'),new Transform("",0,"ous "),new Transform("",g,", "),new Transform("",p,"='"),new Transform(" ",p,","),new Transform(" ",g,'="'),new Transform(" ",g,", "),new Transform("",g,","),new Transform("",g,"("),new Transform("",g,". "),new Transform(" ",g,"."),new Transform("",g,"='"),new Transform(" ",g,". "),new Transform(" ",p,'="'),new Transform(" ",g,"='"),new Transform(" ",p,"='")];function ToUpperCase(r,i){return r[i]<192?(r[i]>=97&&r[i]<=122&&(r[i]^=32),1):r[i]<224?(r[i+1]^=32,2):(r[i+2]^=5,3)}i.kTransforms=y,i.kNumTransforms=y.length,i.transformDictionaryWord=function(r,i,o,w,_){var x,k=y[_].prefix,P=y[_].suffix,O=y[_].transform,I=O<12?0:O-11,B=0,R=i;I>w&&(I=w);for(var D=0;D<k.length;)r[i++]=k[D++];for(o+=I,w-=I,O<=9&&(w-=O),B=0;B<w;B++)r[i++]=u.dictionary[o+B];if(x=i-w,O===p)ToUpperCase(r,x);else if(O===g)for(;w>0;){var N=ToUpperCase(r,x);x+=N,w-=N}for(var W=0;W<P.length;)r[i++]=P[W++];return i-R}},7709:function(r,i,o){r.exports=o(6450).BrotliDecompressBuffer},4505:function(r,i,o){"use strict";var u=o(8823).Buffer,p=o(4155),g=o(9282),y=o(2292),w=o(405),_=o(7948),x=o(1619);for(var k in x)i[k]=x[k];i.NONE=0,i.DEFLATE=1,i.INFLATE=2,i.GZIP=3,i.GUNZIP=4,i.DEFLATERAW=5,i.INFLATERAW=6,i.UNZIP=7;function Zlib(r){if("number"!=typeof r||r<i.DEFLATE||r>i.UNZIP)throw new TypeError("Bad argument");this.dictionary=null,this.err=0,this.flush=0,this.init_done=!1,this.level=0,this.memLevel=0,this.mode=r,this.strategy=0,this.windowBits=0,this.write_in_progress=!1,this.pending_close=!1,this.gzip_id_bytes_read=0}Zlib.prototype.close=function(){this.write_in_progress?this.pending_close=!0:(this.pending_close=!1,g(this.init_done,"close before init"),g(this.mode<=i.UNZIP),this.mode===i.DEFLATE||this.mode===i.GZIP||this.mode===i.DEFLATERAW?w.deflateEnd(this.strm):this.mode!==i.INFLATE&&this.mode!==i.GUNZIP&&this.mode!==i.INFLATERAW&&this.mode!==i.UNZIP||_.inflateEnd(this.strm),this.mode=i.NONE,this.dictionary=null)},Zlib.prototype.write=function(r,i,o,u,p,g,y){return this._write(!0,r,i,o,u,p,g,y)},Zlib.prototype.writeSync=function(r,i,o,u,p,g,y){return this._write(!1,r,i,o,u,p,g,y)},Zlib.prototype._write=function(r,o,y,w,_,x,k,P){if(g.equal(arguments.length,8),g(this.init_done,"write before init"),g(this.mode!==i.NONE,"already finalized"),g.equal(!1,this.write_in_progress,"write already in progress"),g.equal(!1,this.pending_close,"close is pending"),this.write_in_progress=!0,g.equal(!1,void 0===o,"must provide flush value"),this.write_in_progress=!0,o!==i.Z_NO_FLUSH&&o!==i.Z_PARTIAL_FLUSH&&o!==i.Z_SYNC_FLUSH&&o!==i.Z_FULL_FLUSH&&o!==i.Z_FINISH&&o!==i.Z_BLOCK)throw new Error("Invalid flush value");if(null==y&&(y=u.alloc(0),_=0,w=0),this.strm.avail_in=_,this.strm.input=y,this.strm.next_in=w,this.strm.avail_out=P,this.strm.output=x,this.strm.next_out=k,this.flush=o,!r)return this._process(),this._checkError()?this._afterSync():void 0;var O=this;return p.nextTick((function(){O._process(),O._after()})),this},Zlib.prototype._afterSync=function(){var r=this.strm.avail_out,i=this.strm.avail_in;return this.write_in_progress=!1,[i,r]},Zlib.prototype._process=function(){var r=null;switch(this.mode){case i.DEFLATE:case i.GZIP:case i.DEFLATERAW:this.err=w.deflate(this.strm,this.flush);break;case i.UNZIP:switch(this.strm.avail_in>0&&(r=this.strm.next_in),this.gzip_id_bytes_read){case 0:if(null===r)break;if(31!==this.strm.input[r]){this.mode=i.INFLATE;break}if(this.gzip_id_bytes_read=1,r++,1===this.strm.avail_in)break;case 1:if(null===r)break;139===this.strm.input[r]?(this.gzip_id_bytes_read=2,this.mode=i.GUNZIP):this.mode=i.INFLATE;break;default:throw new Error("invalid number of gzip magic number bytes read")}case i.INFLATE:case i.GUNZIP:case i.INFLATERAW:for(this.err=_.inflate(this.strm,this.flush),this.err===i.Z_NEED_DICT&&this.dictionary&&(this.err=_.inflateSetDictionary(this.strm,this.dictionary),this.err===i.Z_OK?this.err=_.inflate(this.strm,this.flush):this.err===i.Z_DATA_ERROR&&(this.err=i.Z_NEED_DICT));this.strm.avail_in>0&&this.mode===i.GUNZIP&&this.err===i.Z_STREAM_END&&0!==this.strm.next_in[0];)this.reset(),this.err=_.inflate(this.strm,this.flush);break;default:throw new Error("Unknown mode "+this.mode)}},Zlib.prototype._checkError=function(){switch(this.err){case i.Z_OK:case i.Z_BUF_ERROR:if(0!==this.strm.avail_out&&this.flush===i.Z_FINISH)return this._error("unexpected end of file"),!1;break;case i.Z_STREAM_END:break;case i.Z_NEED_DICT:return null==this.dictionary?this._error("Missing dictionary"):this._error("Bad dictionary"),!1;default:return this._error("Zlib error"),!1}return!0},Zlib.prototype._after=function(){if(this._checkError()){var r=this.strm.avail_out,i=this.strm.avail_in;this.write_in_progress=!1,this.callback(i,r),this.pending_close&&this.close()}},Zlib.prototype._error=function(r){this.strm.msg&&(r=this.strm.msg),this.onerror(r,this.err),this.write_in_progress=!1,this.pending_close&&this.close()},Zlib.prototype.init=function(r,o,u,p,y){g(4===arguments.length||5===arguments.length,"init(windowBits, level, memLevel, strategy, [dictionary])"),g(r>=8&&r<=15,"invalid windowBits"),g(o>=-1&&o<=9,"invalid compression level"),g(u>=1&&u<=9,"invalid memlevel"),g(p===i.Z_FILTERED||p===i.Z_HUFFMAN_ONLY||p===i.Z_RLE||p===i.Z_FIXED||p===i.Z_DEFAULT_STRATEGY,"invalid strategy"),this._init(o,r,u,p,y),this._setDictionary()},Zlib.prototype.params=function(){throw new Error("deflateParams Not supported")},Zlib.prototype.reset=function(){this._reset(),this._setDictionary()},Zlib.prototype._init=function(r,o,u,p,g){switch(this.level=r,this.windowBits=o,this.memLevel=u,this.strategy=p,this.flush=i.Z_NO_FLUSH,this.err=i.Z_OK,this.mode!==i.GZIP&&this.mode!==i.GUNZIP||(this.windowBits+=16),this.mode===i.UNZIP&&(this.windowBits+=32),this.mode!==i.DEFLATERAW&&this.mode!==i.INFLATERAW||(this.windowBits=-1*this.windowBits),this.strm=new y,this.mode){case i.DEFLATE:case i.GZIP:case i.DEFLATERAW:this.err=w.deflateInit2(this.strm,this.level,i.Z_DEFLATED,this.windowBits,this.memLevel,this.strategy);break;case i.INFLATE:case i.GUNZIP:case i.INFLATERAW:case i.UNZIP:this.err=_.inflateInit2(this.strm,this.windowBits);break;default:throw new Error("Unknown mode "+this.mode)}this.err!==i.Z_OK&&this._error("Init error"),this.dictionary=g,this.write_in_progress=!1,this.init_done=!0},Zlib.prototype._setDictionary=function(){if(null!=this.dictionary){switch(this.err=i.Z_OK,this.mode){case i.DEFLATE:case i.DEFLATERAW:this.err=w.deflateSetDictionary(this.strm,this.dictionary)}this.err!==i.Z_OK&&this._error("Failed to set dictionary")}},Zlib.prototype._reset=function(){switch(this.err=i.Z_OK,this.mode){case i.DEFLATE:case i.DEFLATERAW:case i.GZIP:this.err=w.deflateReset(this.strm);break;case i.INFLATE:case i.INFLATERAW:case i.GUNZIP:this.err=_.inflateReset(this.strm)}this.err!==i.Z_OK&&this._error("Failed to reset stream")},i.Zlib=Zlib},2635:function(r,i,o){"use strict";var u=o(4155),p=o(8823).Buffer,g=o(2830).Transform,y=o(4505),w=o(9539),_=o(9282).ok,x=o(8823).kMaxLength,k="Cannot create final Buffer. It would be larger than 0x"+x.toString(16)+" bytes";y.Z_MIN_WINDOWBITS=8,y.Z_MAX_WINDOWBITS=15,y.Z_DEFAULT_WINDOWBITS=15,y.Z_MIN_CHUNK=64,y.Z_MAX_CHUNK=1/0,y.Z_DEFAULT_CHUNK=16384,y.Z_MIN_MEMLEVEL=1,y.Z_MAX_MEMLEVEL=9,y.Z_DEFAULT_MEMLEVEL=8,y.Z_MIN_LEVEL=-1,y.Z_MAX_LEVEL=9,y.Z_DEFAULT_LEVEL=y.Z_DEFAULT_COMPRESSION;for(var P=Object.keys(y),O=0;O<P.length;O++){var I=P[O];I.match(/^Z/)&&Object.defineProperty(i,I,{enumerable:!0,value:y[I],writable:!1})}for(var B={Z_OK:y.Z_OK,Z_STREAM_END:y.Z_STREAM_END,Z_NEED_DICT:y.Z_NEED_DICT,Z_ERRNO:y.Z_ERRNO,Z_STREAM_ERROR:y.Z_STREAM_ERROR,Z_DATA_ERROR:y.Z_DATA_ERROR,Z_MEM_ERROR:y.Z_MEM_ERROR,Z_BUF_ERROR:y.Z_BUF_ERROR,Z_VERSION_ERROR:y.Z_VERSION_ERROR},R=Object.keys(B),D=0;D<R.length;D++){var N=R[D];B[B[N]]=N}function zlibBuffer(r,i,o){var u=[],g=0;function flow(){for(var i;null!==(i=r.read());)u.push(i),g+=i.length;r.once("readable",flow)}function onEnd(){var i,y=null;g>=x?y=new RangeError(k):i=p.concat(u,g),u=[],r.close(),o(y,i)}r.on("error",(function onError(i){r.removeListener("end",onEnd),r.removeListener("readable",flow),o(i)})),r.on("end",onEnd),r.end(i),flow()}function zlibBufferSync(r,i){if("string"==typeof i&&(i=p.from(i)),!p.isBuffer(i))throw new TypeError("Not a string or buffer");var o=r._finishFlushFlag;return r._processChunk(i,o)}function Deflate(r){if(!(this instanceof Deflate))return new Deflate(r);Zlib.call(this,r,y.DEFLATE)}function Inflate(r){if(!(this instanceof Inflate))return new Inflate(r);Zlib.call(this,r,y.INFLATE)}function Gzip(r){if(!(this instanceof Gzip))return new Gzip(r);Zlib.call(this,r,y.GZIP)}function Gunzip(r){if(!(this instanceof Gunzip))return new Gunzip(r);Zlib.call(this,r,y.GUNZIP)}function DeflateRaw(r){if(!(this instanceof DeflateRaw))return new DeflateRaw(r);Zlib.call(this,r,y.DEFLATERAW)}function InflateRaw(r){if(!(this instanceof InflateRaw))return new InflateRaw(r);Zlib.call(this,r,y.INFLATERAW)}function Unzip(r){if(!(this instanceof Unzip))return new Unzip(r);Zlib.call(this,r,y.UNZIP)}function isValidFlushFlag(r){return r===y.Z_NO_FLUSH||r===y.Z_PARTIAL_FLUSH||r===y.Z_SYNC_FLUSH||r===y.Z_FULL_FLUSH||r===y.Z_FINISH||r===y.Z_BLOCK}function Zlib(r,o){var u=this;if(this._opts=r=r||{},this._chunkSize=r.chunkSize||i.Z_DEFAULT_CHUNK,g.call(this,r),r.flush&&!isValidFlushFlag(r.flush))throw new Error("Invalid flush flag: "+r.flush);if(r.finishFlush&&!isValidFlushFlag(r.finishFlush))throw new Error("Invalid flush flag: "+r.finishFlush);if(this._flushFlag=r.flush||y.Z_NO_FLUSH,this._finishFlushFlag=void 0!==r.finishFlush?r.finishFlush:y.Z_FINISH,r.chunkSize&&(r.chunkSize<i.Z_MIN_CHUNK||r.chunkSize>i.Z_MAX_CHUNK))throw new Error("Invalid chunk size: "+r.chunkSize);if(r.windowBits&&(r.windowBits<i.Z_MIN_WINDOWBITS||r.windowBits>i.Z_MAX_WINDOWBITS))throw new Error("Invalid windowBits: "+r.windowBits);if(r.level&&(r.level<i.Z_MIN_LEVEL||r.level>i.Z_MAX_LEVEL))throw new Error("Invalid compression level: "+r.level);if(r.memLevel&&(r.memLevel<i.Z_MIN_MEMLEVEL||r.memLevel>i.Z_MAX_MEMLEVEL))throw new Error("Invalid memLevel: "+r.memLevel);if(r.strategy&&r.strategy!=i.Z_FILTERED&&r.strategy!=i.Z_HUFFMAN_ONLY&&r.strategy!=i.Z_RLE&&r.strategy!=i.Z_FIXED&&r.strategy!=i.Z_DEFAULT_STRATEGY)throw new Error("Invalid strategy: "+r.strategy);if(r.dictionary&&!p.isBuffer(r.dictionary))throw new Error("Invalid dictionary: it should be a Buffer instance");this._handle=new y.Zlib(o);var w=this;this._hadError=!1,this._handle.onerror=function(r,o){_close(w),w._hadError=!0;var u=new Error(r);u.errno=o,u.code=i.codes[o],w.emit("error",u)};var _=i.Z_DEFAULT_COMPRESSION;"number"==typeof r.level&&(_=r.level);var x=i.Z_DEFAULT_STRATEGY;"number"==typeof r.strategy&&(x=r.strategy),this._handle.init(r.windowBits||i.Z_DEFAULT_WINDOWBITS,_,r.memLevel||i.Z_DEFAULT_MEMLEVEL,x,r.dictionary),this._buffer=p.allocUnsafe(this._chunkSize),this._offset=0,this._level=_,this._strategy=x,this.once("end",this.close),Object.defineProperty(this,"_closed",{get:function(){return!u._handle},configurable:!0,enumerable:!0})}function _close(r,i){i&&u.nextTick(i),r._handle&&(r._handle.close(),r._handle=null)}function emitCloseNT(r){r.emit("close")}Object.defineProperty(i,"codes",{enumerable:!0,value:Object.freeze(B),writable:!1}),i.Deflate=Deflate,i.Inflate=Inflate,i.Gzip=Gzip,i.Gunzip=Gunzip,i.DeflateRaw=DeflateRaw,i.InflateRaw=InflateRaw,i.Unzip=Unzip,i.createDeflate=function(r){return new Deflate(r)},i.createInflate=function(r){return new Inflate(r)},i.createDeflateRaw=function(r){return new DeflateRaw(r)},i.createInflateRaw=function(r){return new InflateRaw(r)},i.createGzip=function(r){return new Gzip(r)},i.createGunzip=function(r){return new Gunzip(r)},i.createUnzip=function(r){return new Unzip(r)},i.deflate=function(r,i,o){return"function"==typeof i&&(o=i,i={}),zlibBuffer(new Deflate(i),r,o)},i.deflateSync=function(r,i){return zlibBufferSync(new Deflate(i),r)},i.gzip=function(r,i,o){return"function"==typeof i&&(o=i,i={}),zlibBuffer(new Gzip(i),r,o)},i.gzipSync=function(r,i){return zlibBufferSync(new Gzip(i),r)},i.deflateRaw=function(r,i,o){return"function"==typeof i&&(o=i,i={}),zlibBuffer(new DeflateRaw(i),r,o)},i.deflateRawSync=function(r,i){return zlibBufferSync(new DeflateRaw(i),r)},i.unzip=function(r,i,o){return"function"==typeof i&&(o=i,i={}),zlibBuffer(new Unzip(i),r,o)},i.unzipSync=function(r,i){return zlibBufferSync(new Unzip(i),r)},i.inflate=function(r,i,o){return"function"==typeof i&&(o=i,i={}),zlibBuffer(new Inflate(i),r,o)},i.inflateSync=function(r,i){return zlibBufferSync(new Inflate(i),r)},i.gunzip=function(r,i,o){return"function"==typeof i&&(o=i,i={}),zlibBuffer(new Gunzip(i),r,o)},i.gunzipSync=function(r,i){return zlibBufferSync(new Gunzip(i),r)},i.inflateRaw=function(r,i,o){return"function"==typeof i&&(o=i,i={}),zlibBuffer(new InflateRaw(i),r,o)},i.inflateRawSync=function(r,i){return zlibBufferSync(new InflateRaw(i),r)},w.inherits(Zlib,g),Zlib.prototype.params=function(r,o,p){if(r<i.Z_MIN_LEVEL||r>i.Z_MAX_LEVEL)throw new RangeError("Invalid compression level: "+r);if(o!=i.Z_FILTERED&&o!=i.Z_HUFFMAN_ONLY&&o!=i.Z_RLE&&o!=i.Z_FIXED&&o!=i.Z_DEFAULT_STRATEGY)throw new TypeError("Invalid strategy: "+o);if(this._level!==r||this._strategy!==o){var g=this;this.flush(y.Z_SYNC_FLUSH,(function(){_(g._handle,"zlib binding closed"),g._handle.params(r,o),g._hadError||(g._level=r,g._strategy=o,p&&p())}))}else u.nextTick(p)},Zlib.prototype.reset=function(){return _(this._handle,"zlib binding closed"),this._handle.reset()},Zlib.prototype._flush=function(r){this._transform(p.alloc(0),"",r)},Zlib.prototype.flush=function(r,i){var o=this,g=this._writableState;("function"==typeof r||void 0===r&&!i)&&(i=r,r=y.Z_FULL_FLUSH),g.ended?i&&u.nextTick(i):g.ending?i&&this.once("end",i):g.needDrain?i&&this.once("drain",(function(){return o.flush(r,i)})):(this._flushFlag=r,this.write(p.alloc(0),"",i))},Zlib.prototype.close=function(r){_close(this,r),u.nextTick(emitCloseNT,this)},Zlib.prototype._transform=function(r,i,o){var u,g=this._writableState,w=(g.ending||g.ended)&&(!r||g.length===r.length);return null===r||p.isBuffer(r)?this._handle?(w?u=this._finishFlushFlag:(u=this._flushFlag,r.length>=g.length&&(this._flushFlag=this._opts.flush||y.Z_NO_FLUSH)),void this._processChunk(r,u,o)):o(new Error("zlib binding closed")):o(new Error("invalid input"))},Zlib.prototype._processChunk=function(r,i,o){var u=r&&r.length,g=this._chunkSize-this._offset,y=0,w=this,P="function"==typeof o;if(!P){var O,I=[],B=0;this.on("error",(function(r){O=r})),_(this._handle,"zlib binding closed");do{var R=this._handle.writeSync(i,r,y,u,this._buffer,this._offset,g)}while(!this._hadError&&callback(R[0],R[1]));if(this._hadError)throw O;if(B>=x)throw _close(this),new RangeError(k);var D=p.concat(I,B);return _close(this),D}_(this._handle,"zlib binding closed");var N=this._handle.write(i,r,y,u,this._buffer,this._offset,g);function callback(x,k){if(this&&(this.buffer=null,this.callback=null),!w._hadError){var O=g-k;if(_(O>=0,"have should not go down"),O>0){var R=w._buffer.slice(w._offset,w._offset+O);w._offset+=O,P?w.push(R):(I.push(R),B+=R.length)}if((0===k||w._offset>=w._chunkSize)&&(g=w._chunkSize,w._offset=0,w._buffer=p.allocUnsafe(w._chunkSize)),0===k){if(y+=u-x,u=x,!P)return!0;var D=w._handle.write(i,r,y,u,w._buffer,w._offset,w._chunkSize);return D.callback=callback,void(D.buffer=r)}if(!P)return!1;o()}}N.buffer=r,N.callback=callback},w.inherits(Deflate,Zlib),w.inherits(Inflate,Zlib),w.inherits(Gzip,Zlib),w.inherits(Gunzip,Zlib),w.inherits(DeflateRaw,Zlib),w.inherits(InflateRaw,Zlib),w.inherits(Unzip,Zlib)},1924:function(r,i,o){"use strict";var u=o(210),p=o(5559),g=p(u("String.prototype.indexOf"));r.exports=function callBoundIntrinsic(r,i){var o=u(r,!!i);return"function"==typeof o&&g(r,".prototype.")>-1?p(o):o}},5559:function(r,i,o){"use strict";var u=o(8612),p=o(210),g=p("%Function.prototype.apply%"),y=p("%Function.prototype.call%"),w=p("%Reflect.apply%",!0)||u.call(y,g),_=p("%Object.getOwnPropertyDescriptor%",!0),x=p("%Object.defineProperty%",!0),k=p("%Math.max%");if(x)try{x({},"a",{value:1})}catch(r){x=null}r.exports=function callBind(r){var i=w(u,y,arguments);if(_&&x){var o=_(i,"length");o.configurable&&x(i,"length",{value:1+k(0,r.length-(arguments.length-1))})}return i};var P=function applyBind(){return w(u,g,arguments)};x?x(r.exports,"apply",{value:P}):r.exports.apply=P},6313:function(r,i,o){var u=o(8823).Buffer,p=function(){"use strict";function clone(r,i,o,p){"object"==typeof i&&(o=i.depth,p=i.prototype,i.filter,i=i.circular);var g=[],y=[],w=void 0!==u;return void 0===i&&(i=!0),void 0===o&&(o=1/0),function _clone(r,o){if(null===r)return null;if(0==o)return r;var _,x;if("object"!=typeof r)return r;if(clone.__isArray(r))_=[];else if(clone.__isRegExp(r))_=new RegExp(r.source,__getRegExpFlags(r)),r.lastIndex&&(_.lastIndex=r.lastIndex);else if(clone.__isDate(r))_=new Date(r.getTime());else{if(w&&u.isBuffer(r))return _=u.allocUnsafe?u.allocUnsafe(r.length):new u(r.length),r.copy(_),_;void 0===p?(x=Object.getPrototypeOf(r),_=Object.create(x)):(_=Object.create(p),x=p)}if(i){var k=g.indexOf(r);if(-1!=k)return y[k];g.push(r),y.push(_)}for(var P in r){var O;x&&(O=Object.getOwnPropertyDescriptor(x,P)),O&&null==O.set||(_[P]=_clone(r[P],o-1))}return _}(r,o)}function __objToStr(r){return Object.prototype.toString.call(r)}function __getRegExpFlags(r){var i="";return r.global&&(i+="g"),r.ignoreCase&&(i+="i"),r.multiline&&(i+="m"),i}return clone.clonePrototype=function clonePrototype(r){if(null===r)return null;var c=function(){};return c.prototype=r,new c},clone.__objToStr=__objToStr,clone.__isDate=function __isDate(r){return"object"==typeof r&&"[object Date]"===__objToStr(r)},clone.__isArray=function __isArray(r){return"object"==typeof r&&"[object Array]"===__objToStr(r)},clone.__isRegExp=function __isRegExp(r){return"object"==typeof r&&"[object RegExp]"===__objToStr(r)},clone.__getRegExpFlags=__getRegExpFlags,clone}();r.exports&&(r.exports=p)},4667:function(r,i,o){o(2479);var u=o(857);r.exports=u.Object.values},7633:function(r,i,o){o(9170),o(6992),o(1539),o(8674),o(7922),o(4668),o(7727),o(8783);var u=o(857);r.exports=u.Promise},3867:function(r,i,o){var u=o(1150);o(8628),o(7314),o(7479),o(6290),r.exports=u},9662:function(r,i,o){var u=o(7854),p=o(614),g=o(6330),y=u.TypeError;r.exports=function(r){if(p(r))return r;throw y(g(r)+" is not a function")}},9483:function(r,i,o){var u=o(7854),p=o(4411),g=o(6330),y=u.TypeError;r.exports=function(r){if(p(r))return r;throw y(g(r)+" is not a constructor")}},6077:function(r,i,o){var u=o(7854),p=o(614),g=u.String,y=u.TypeError;r.exports=function(r){if("object"==typeof r||p(r))return r;throw y("Can't set "+g(r)+" as a prototype")}},1223:function(r,i,o){var u=o(5112),p=o(30),g=o(3070),y=u("unscopables"),w=Array.prototype;null==w[y]&&g.f(w,y,{configurable:!0,value:p(null)}),r.exports=function(r){w[y][r]=!0}},1530:function(r,i,o){"use strict";var u=o(8710).charAt;r.exports=function(r,i,o){return i+(o?u(r,i).length:1)}},5787:function(r,i,o){var u=o(7854),p=o(7976),g=u.TypeError;r.exports=function(r,i){if(p(i,r))return r;throw g("Incorrect invocation")}},9670:function(r,i,o){var u=o(7854),p=o(111),g=u.String,y=u.TypeError;r.exports=function(r){if(p(r))return r;throw y(g(r)+" is not an object")}},1048:function(r,i,o){"use strict";var u=o(7908),p=o(1400),g=o(6244),y=Math.min;r.exports=[].copyWithin||function copyWithin(r,i){var o=u(this),w=g(o),_=p(r,w),x=p(i,w),k=arguments.length>2?arguments[2]:void 0,P=y((void 0===k?w:p(k,w))-x,w-_),O=1;for(x<_&&_<x+P&&(O=-1,x+=P-1,_+=P-1);P-- >0;)x in o?o[_]=o[x]:delete o[_],_+=O,x+=O;return o}},1285:function(r,i,o){"use strict";var u=o(7908),p=o(1400),g=o(6244);r.exports=function fill(r){for(var i=u(this),o=g(i),y=arguments.length,w=p(y>1?arguments[1]:void 0,o),_=y>2?arguments[2]:void 0,x=void 0===_?o:p(_,o);x>w;)i[w++]=r;return i}},8533:function(r,i,o){"use strict";var u=o(2092).forEach,p=o(9341)("forEach");r.exports=p?[].forEach:function forEach(r){return u(this,r,arguments.length>1?arguments[1]:void 0)}},7745:function(r){r.exports=function(r,i){for(var o=0,u=i.length,p=new r(u);u>o;)p[o]=i[o++];return p}},8457:function(r,i,o){"use strict";var u=o(7854),p=o(9974),g=o(6916),y=o(7908),w=o(3411),_=o(7659),x=o(4411),k=o(6244),P=o(6135),O=o(8554),I=o(1246),B=u.Array;r.exports=function from(r){var i=y(r),o=x(this),u=arguments.length,R=u>1?arguments[1]:void 0,D=void 0!==R;D&&(R=p(R,u>2?arguments[2]:void 0));var N,W,U,j,G,X,K=I(i),Y=0;if(!K||this==B&&_(K))for(N=k(i),W=o?new this(N):B(N);N>Y;Y++)X=D?R(i[Y],Y):i[Y],P(W,Y,X);else for(G=(j=O(i,K)).next,W=o?new this:[];!(U=g(G,j)).done;Y++)X=D?w(j,R,[U.value,Y],!0):U.value,P(W,Y,X);return W.length=Y,W}},1318:function(r,i,o){var u=o(5656),p=o(1400),g=o(6244),createMethod=function(r){return function(i,o,y){var w,_=u(i),x=g(_),k=p(y,x);if(r&&o!=o){for(;x>k;)if((w=_[k++])!=w)return!0}else for(;x>k;k++)if((r||k in _)&&_[k]===o)return r||k||0;return!r&&-1}};r.exports={includes:createMethod(!0),indexOf:createMethod(!1)}},2092:function(r,i,o){var u=o(9974),p=o(1702),g=o(8361),y=o(7908),w=o(6244),_=o(5417),x=p([].push),createMethod=function(r){var i=1==r,o=2==r,p=3==r,k=4==r,P=6==r,O=7==r,I=5==r||P;return function(B,R,D,N){for(var W,U,j=y(B),G=g(j),X=u(R,D),K=w(G),Y=0,J=N||_,$=i?J(B,K):o||O?J(B,0):void 0;K>Y;Y++)if((I||Y in G)&&(U=X(W=G[Y],Y,j),r))if(i)$[Y]=U;else if(U)switch(r){case 3:return!0;case 5:return W;case 6:return Y;case 2:x($,W)}else switch(r){case 4:return!1;case 7:x($,W)}return P?-1:p||k?k:$}};r.exports={forEach:createMethod(0),map:createMethod(1),filter:createMethod(2),some:createMethod(3),every:createMethod(4),find:createMethod(5),findIndex:createMethod(6),filterReject:createMethod(7)}},6583:function(r,i,o){"use strict";var u=o(2104),p=o(5656),g=o(9303),y=o(6244),w=o(9341),_=Math.min,x=[].lastIndexOf,k=!!x&&1/[1].lastIndexOf(1,-0)<0,P=w("lastIndexOf"),O=k||!P;r.exports=O?function lastIndexOf(r){if(k)return u(x,this,arguments)||0;var i=p(this),o=y(i),w=o-1;for(arguments.length>1&&(w=_(w,g(arguments[1]))),w<0&&(w=o+w);w>=0;w--)if(w in i&&i[w]===r)return w||0;return-1}:x},1194:function(r,i,o){var u=o(7293),p=o(5112),g=o(7392),y=p("species");r.exports=function(r){return g>=51||!u((function(){var i=[];return(i.constructor={})[y]=function(){return{foo:1}},1!==i[r](Boolean).foo}))}},9341:function(r,i,o){"use strict";var u=o(7293);r.exports=function(r,i){var o=[][r];return!!o&&u((function(){o.call(null,i||function(){throw 1},1)}))}},3671:function(r,i,o){var u=o(7854),p=o(9662),g=o(7908),y=o(8361),w=o(6244),_=u.TypeError,createMethod=function(r){return function(i,o,u,x){p(o);var k=g(i),P=y(k),O=w(k),I=r?O-1:0,B=r?-1:1;if(u<2)for(;;){if(I in P){x=P[I],I+=B;break}if(I+=B,r?I<0:O<=I)throw _("Reduce of empty array with no initial value")}for(;r?I>=0:O>I;I+=B)I in P&&(x=o(x,P[I],I,k));return x}};r.exports={left:createMethod(!1),right:createMethod(!0)}},206:function(r,i,o){var u=o(1702);r.exports=u([].slice)},4362:function(r,i,o){var u=o(206),p=Math.floor,mergeSort=function(r,i){var o=r.length,g=p(o/2);return o<8?insertionSort(r,i):merge(r,mergeSort(u(r,0,g),i),mergeSort(u(r,g),i),i)},insertionSort=function(r,i){for(var o,u,p=r.length,g=1;g<p;){for(u=g,o=r[g];u&&i(r[u-1],o)>0;)r[u]=r[--u];u!==g++&&(r[u]=o)}return r},merge=function(r,i,o,u){for(var p=i.length,g=o.length,y=0,w=0;y<p||w<g;)r[y+w]=y<p&&w<g?u(i[y],o[w])<=0?i[y++]:o[w++]:y<p?i[y++]:o[w++];return r};r.exports=mergeSort},7475:function(r,i,o){var u=o(7854),p=o(3157),g=o(4411),y=o(111),w=o(5112)("species"),_=u.Array;r.exports=function(r){var i;return p(r)&&(i=r.constructor,(g(i)&&(i===_||p(i.prototype))||y(i)&&null===(i=i[w]))&&(i=void 0)),void 0===i?_:i}},5417:function(r,i,o){var u=o(7475);r.exports=function(r,i){return new(u(r))(0===i?0:i)}},3411:function(r,i,o){var u=o(9670),p=o(9212);r.exports=function(r,i,o,g){try{return g?i(u(o)[0],o[1]):i(o)}catch(i){p(r,"throw",i)}}},7072:function(r,i,o){var u=o(5112)("iterator"),p=!1;try{var g=0,y={next:function(){return{done:!!g++}},return:function(){p=!0}};y[u]=function(){return this},Array.from(y,(function(){throw 2}))}catch(r){}r.exports=function(r,i){if(!i&&!p)return!1;var o=!1;try{var g={};g[u]=function(){return{next:function(){return{done:o=!0}}}},r(g)}catch(r){}return o}},4326:function(r,i,o){var u=o(1702),p=u({}.toString),g=u("".slice);r.exports=function(r){return g(p(r),8,-1)}},648:function(r,i,o){var u=o(7854),p=o(1694),g=o(614),y=o(4326),w=o(5112)("toStringTag"),_=u.Object,x="Arguments"==y(function(){return arguments}());r.exports=p?y:function(r){var i,o,u;return void 0===r?"Undefined":null===r?"Null":"string"==typeof(o=function(r,i){try{return r[i]}catch(r){}}(i=_(r),w))?o:x?y(i):"Object"==(u=y(i))&&g(i.callee)?"Arguments":u}},7741:function(r,i,o){var u=o(1702),p=o(206),g=u("".replace),y=u("".split),w=u([].join),_=String(Error("zxcasd").stack),x=/\n\s*at [^:]*:[^\n]*/,k=x.test(_),P=/@[^\n]*\n/.test(_)&&!/zxcasd/.test(_);r.exports=function(r,i){if("string"!=typeof r)return r;if(k)for(;i--;)r=g(r,x,"");else if(P)return w(p(y(r,"\n"),i),"\n");return r}},5631:function(r,i,o){"use strict";var u=o(3070).f,p=o(30),g=o(2248),y=o(9974),w=o(5787),_=o(408),x=o(654),k=o(6340),P=o(9781),O=o(2423).fastKey,I=o(9909),B=I.set,R=I.getterFor;r.exports={getConstructor:function(r,i,o,x){var k=r((function(r,u){w(r,I),B(r,{type:i,index:p(null),first:void 0,last:void 0,size:0}),P||(r.size=0),null!=u&&_(u,r[x],{that:r,AS_ENTRIES:o})})),I=k.prototype,D=R(i),define=function(r,i,o){var u,p,g=D(r),y=getEntry(r,i);return y?y.value=o:(g.last=y={index:p=O(i,!0),key:i,value:o,previous:u=g.last,next:void 0,removed:!1},g.first||(g.first=y),u&&(u.next=y),P?g.size++:r.size++,"F"!==p&&(g.index[p]=y)),r},getEntry=function(r,i){var o,u=D(r),p=O(i);if("F"!==p)return u.index[p];for(o=u.first;o;o=o.next)if(o.key==i)return o};return g(I,{clear:function clear(){for(var r=D(this),i=r.index,o=r.first;o;)o.removed=!0,o.previous&&(o.previous=o.previous.next=void 0),delete i[o.index],o=o.next;r.first=r.last=void 0,P?r.size=0:this.size=0},delete:function(r){var i=this,o=D(i),u=getEntry(i,r);if(u){var p=u.next,g=u.previous;delete o.index[u.index],u.removed=!0,g&&(g.next=p),p&&(p.previous=g),o.first==u&&(o.first=p),o.last==u&&(o.last=g),P?o.size--:i.size--}return!!u},forEach:function forEach(r){for(var i,o=D(this),u=y(r,arguments.length>1?arguments[1]:void 0);i=i?i.next:o.first;)for(u(i.value,i.key,this);i&&i.removed;)i=i.previous},has:function has(r){return!!getEntry(this,r)}}),g(I,o?{get:function get(r){var i=getEntry(this,r);return i&&i.value},set:function set(r,i){return define(this,0===r?0:r,i)}}:{add:function add(r){return define(this,r=0===r?0:r,r)}}),P&&u(I,"size",{get:function(){return D(this).size}}),k},setStrong:function(r,i,o){var u=i+" Iterator",p=R(i),g=R(u);x(r,i,(function(r,i){B(this,{type:u,target:r,state:p(r),kind:i,last:void 0})}),(function(){for(var r=g(this),i=r.kind,o=r.last;o&&o.removed;)o=o.previous;return r.target&&(r.last=o=o?o.next:r.state.first)?"keys"==i?{value:o.key,done:!1}:"values"==i?{value:o.value,done:!1}:{value:[o.key,o.value],done:!1}:(r.target=void 0,{value:void 0,done:!0})}),o?"entries":"values",!o,!0),k(i)}}},7710:function(r,i,o){"use strict";var u=o(2109),p=o(7854),g=o(1702),y=o(4705),w=o(1320),_=o(2423),x=o(408),k=o(5787),P=o(614),O=o(111),I=o(7293),B=o(7072),R=o(8003),D=o(9587);r.exports=function(r,i,o){var N=-1!==r.indexOf("Map"),W=-1!==r.indexOf("Weak"),U=N?"set":"add",j=p[r],G=j&&j.prototype,X=j,K={},fixMethod=function(r){var i=g(G[r]);w(G,r,"add"==r?function add(r){return i(this,0===r?0:r),this}:"delete"==r?function(r){return!(W&&!O(r))&&i(this,0===r?0:r)}:"get"==r?function get(r){return W&&!O(r)?void 0:i(this,0===r?0:r)}:"has"==r?function has(r){return!(W&&!O(r))&&i(this,0===r?0:r)}:function set(r,o){return i(this,0===r?0:r,o),this})};if(y(r,!P(j)||!(W||G.forEach&&!I((function(){(new j).entries().next()})))))X=o.getConstructor(i,r,N,U),_.enable();else if(y(r,!0)){var Y=new X,J=Y[U](W?{}:-0,1)!=Y,$=I((function(){Y.has(1)})),ee=B((function(r){new j(r)})),te=!W&&I((function(){for(var r=new j,i=5;i--;)r[U](i,i);return!r.has(-0)}));ee||((X=i((function(r,i){k(r,G);var o=D(new j,r,X);return null!=i&&x(i,o[U],{that:o,AS_ENTRIES:N}),o}))).prototype=G,G.constructor=X),($||te)&&(fixMethod("delete"),fixMethod("has"),N&&fixMethod("get")),(te||J)&&fixMethod(U),W&&G.clear&&delete G.clear}return K[r]=X,u({global:!0,forced:X!=j},K),R(X,r),W||o.setStrong(X,r,N),X}},9920:function(r,i,o){var u=o(2597),p=o(3887),g=o(1236),y=o(3070);r.exports=function(r,i){for(var o=p(i),w=y.f,_=g.f,x=0;x<o.length;x++){var k=o[x];u(r,k)||w(r,k,_(i,k))}}},4964:function(r,i,o){var u=o(5112)("match");r.exports=function(r){var i=/./;try{"/./"[r](i)}catch(o){try{return i[u]=!1,"/./"[r](i)}catch(r){}}return!1}},8544:function(r,i,o){var u=o(7293);r.exports=!u((function(){function F(){}return F.prototype.constructor=null,Object.getPrototypeOf(new F)!==F.prototype}))},4230:function(r,i,o){var u=o(1702),p=o(4488),g=o(1340),y=/"/g,w=u("".replace);r.exports=function(r,i,o,u){var _=g(p(r)),x="<"+i;return""!==o&&(x+=" "+o+'="'+w(g(u),y,"&quot;")+'"'),x+">"+_+"</"+i+">"}},4994:function(r,i,o){"use strict";var u=o(3383).IteratorPrototype,p=o(30),g=o(9114),y=o(8003),w=o(7497),returnThis=function(){return this};r.exports=function(r,i,o){var _=i+" Iterator";return r.prototype=p(u,{next:g(1,o)}),y(r,_,!1,!0),w[_]=returnThis,r}},8880:function(r,i,o){var u=o(9781),p=o(3070),g=o(9114);r.exports=u?function(r,i,o){return p.f(r,i,g(1,o))}:function(r,i,o){return r[i]=o,r}},9114:function(r){r.exports=function(r,i){return{enumerable:!(1&r),configurable:!(2&r),writable:!(4&r),value:i}}},6135:function(r,i,o){"use strict";var u=o(4948),p=o(3070),g=o(9114);r.exports=function(r,i,o){var y=u(i);y in r?p.f(r,y,g(0,o)):r[y]=o}},8709:function(r,i,o){"use strict";var u=o(7854),p=o(9670),g=o(2140),y=u.TypeError;r.exports=function(r){if(p(this),"string"===r||"default"===r)r="string";else if("number"!==r)throw y("Incorrect hint");return g(this,r)}},654:function(r,i,o){"use strict";var u=o(2109),p=o(6916),g=o(1913),y=o(6530),w=o(614),_=o(4994),x=o(9518),k=o(7674),P=o(8003),O=o(8880),I=o(1320),B=o(5112),R=o(7497),D=o(3383),N=y.PROPER,W=y.CONFIGURABLE,U=D.IteratorPrototype,j=D.BUGGY_SAFARI_ITERATORS,G=B("iterator"),X="keys",K="values",Y="entries",returnThis=function(){return this};r.exports=function(r,i,o,y,B,D,J){_(o,i,y);var $,ee,te,getIterationMethod=function(r){if(r===B&&ae)return ae;if(!j&&r in ie)return ie[r];switch(r){case X:return function keys(){return new o(this,r)};case K:return function values(){return new o(this,r)};case Y:return function entries(){return new o(this,r)}}return function(){return new o(this)}},re=i+" Iterator",ne=!1,ie=r.prototype,oe=ie[G]||ie["@@iterator"]||B&&ie[B],ae=!j&&oe||getIterationMethod(B),se="Array"==i&&ie.entries||oe;if(se&&($=x(se.call(new r)))!==Object.prototype&&$.next&&(g||x($)===U||(k?k($,U):w($[G])||I($,G,returnThis)),P($,re,!0,!0),g&&(R[re]=returnThis)),N&&B==K&&oe&&oe.name!==K&&(!g&&W?O(ie,"name",K):(ne=!0,ae=function values(){return p(oe,this)})),B)if(ee={values:getIterationMethod(K),keys:D?ae:getIterationMethod(X),entries:getIterationMethod(Y)},J)for(te in ee)(j||ne||!(te in ie))&&I(ie,te,ee[te]);else u({target:i,proto:!0,forced:j||ne},ee);return g&&!J||ie[G]===ae||I(ie,G,ae,{name:B}),R[i]=ae,ee}},7235:function(r,i,o){var u=o(857),p=o(2597),g=o(6061),y=o(3070).f;r.exports=function(r){var i=u.Symbol||(u.Symbol={});p(i,r)||y(i,r,{value:g.f(r)})}},9781:function(r,i,o){var u=o(7293);r.exports=!u((function(){return 7!=Object.defineProperty({},1,{get:function(){return 7}})[1]}))},317:function(r,i,o){var u=o(7854),p=o(111),g=u.document,y=p(g)&&p(g.createElement);r.exports=function(r){return y?g.createElement(r):{}}},8324:function(r){r.exports={CSSRuleList:0,CSSStyleDeclaration:0,CSSValueList:0,ClientRectList:0,DOMRectList:0,DOMStringList:0,DOMTokenList:1,DataTransferItemList:0,FileList:0,HTMLAllCollection:0,HTMLCollection:0,HTMLFormElement:0,HTMLSelectElement:0,MediaList:0,MimeTypeArray:0,NamedNodeMap:0,NodeList:1,PaintRequestList:0,Plugin:0,PluginArray:0,SVGLengthList:0,SVGNumberList:0,SVGPathSegList:0,SVGPointList:0,SVGStringList:0,SVGTransformList:0,SourceBufferList:0,StyleSheetList:0,TextTrackCueList:0,TextTrackList:0,TouchList:0}},8509:function(r,i,o){var u=o(317)("span").classList,p=u&&u.constructor&&u.constructor.prototype;r.exports=p===Object.prototype?void 0:p},8886:function(r,i,o){var u=o(8113).match(/firefox\/(\d+)/i);r.exports=!!u&&+u[1]},7871:function(r){r.exports="object"==typeof window},256:function(r,i,o){var u=o(8113);r.exports=/MSIE|Trident/.test(u)},1528:function(r,i,o){var u=o(8113),p=o(7854);r.exports=/ipad|iphone|ipod/i.test(u)&&void 0!==p.Pebble},6833:function(r,i,o){var u=o(8113);r.exports=/(?:ipad|iphone|ipod).*applewebkit/i.test(u)},5268:function(r,i,o){var u=o(4326),p=o(7854);r.exports="process"==u(p.process)},1036:function(r,i,o){var u=o(8113);r.exports=/web0s(?!.*chrome)/i.test(u)},8113:function(r,i,o){var u=o(5005);r.exports=u("navigator","userAgent")||""},7392:function(r,i,o){var u,p,g=o(7854),y=o(8113),w=g.process,_=g.Deno,x=w&&w.versions||_&&_.version,k=x&&x.v8;k&&(p=(u=k.split("."))[0]>0&&u[0]<4?1:+(u[0]+u[1])),!p&&y&&(!(u=y.match(/Edge\/(\d+)/))||u[1]>=74)&&(u=y.match(/Chrome\/(\d+)/))&&(p=+u[1]),r.exports=p},8008:function(r,i,o){var u=o(8113).match(/AppleWebKit\/(\d+)\./);r.exports=!!u&&+u[1]},748:function(r){r.exports=["constructor","hasOwnProperty","isPrototypeOf","propertyIsEnumerable","toLocaleString","toString","valueOf"]},2914:function(r,i,o){var u=o(7293),p=o(9114);r.exports=!u((function(){var r=Error("a");return!("stack"in r)||(Object.defineProperty(r,"stack",p(1,7)),7!==r.stack)}))},2109:function(r,i,o){var u=o(7854),p=o(1236).f,g=o(8880),y=o(1320),w=o(3505),_=o(9920),x=o(4705);r.exports=function(r,i){var o,k,P,O,I,B=r.target,R=r.global,D=r.stat;if(o=R?u:D?u[B]||w(B,{}):(u[B]||{}).prototype)for(k in i){if(O=i[k],P=r.noTargetGet?(I=p(o,k))&&I.value:o[k],!x(R?k:B+(D?".":"#")+k,r.forced)&&void 0!==P){if(typeof O==typeof P)continue;_(O,P)}(r.sham||P&&P.sham)&&g(O,"sham",!0),y(o,k,O,r)}}},7293:function(r){r.exports=function(r){try{return!!r()}catch(r){return!0}}},7007:function(r,i,o){"use strict";o(4916);var u=o(1702),p=o(1320),g=o(2261),y=o(7293),w=o(5112),_=o(8880),x=w("species"),k=RegExp.prototype;r.exports=function(r,i,o,P){var O=w(r),I=!y((function(){var i={};return i[O]=function(){return 7},7!=""[r](i)})),B=I&&!y((function(){var i=!1,o=/a/;return"split"===r&&((o={}).constructor={},o.constructor[x]=function(){return o},o.flags="",o[O]=/./[O]),o.exec=function(){return i=!0,null},o[O](""),!i}));if(!I||!B||o){var R=u(/./[O]),D=i(O,""[r],(function(r,i,o,p,y){var w=u(r),_=i.exec;return _===g||_===k.exec?I&&!y?{done:!0,value:R(i,o,p)}:{done:!0,value:w(o,i,p)}:{done:!1}}));p(String.prototype,r,D[0]),p(k,O,D[1])}P&&_(k[O],"sham",!0)}},6677:function(r,i,o){var u=o(7293);r.exports=!u((function(){return Object.isExtensible(Object.preventExtensions({}))}))},2104:function(r){var i=Function.prototype,o=i.apply,u=i.bind,p=i.call;r.exports="object"==typeof Reflect&&Reflect.apply||(u?p.bind(o):function(){return p.apply(o,arguments)})},9974:function(r,i,o){var u=o(1702),p=o(9662),g=u(u.bind);r.exports=function(r,i){return p(r),void 0===i?r:g?g(r,i):function(){return r.apply(i,arguments)}}},7065:function(r,i,o){"use strict";var u=o(7854),p=o(1702),g=o(9662),y=o(111),w=o(2597),_=o(206),x=u.Function,k=p([].concat),P=p([].join),O={},construct=function(r,i,o){if(!w(O,i)){for(var u=[],p=0;p<i;p++)u[p]="a["+p+"]";O[i]=x("C,a","return new C("+P(u,",")+")")}return O[i](r,o)};r.exports=x.bind||function bind(r){var i=g(this),o=i.prototype,u=_(arguments,1),p=function bound(){var o=k(u,_(arguments));return this instanceof p?construct(i,o.length,o):i.apply(r,o)};return y(o)&&(p.prototype=o),p}},6916:function(r){var i=Function.prototype.call;r.exports=i.bind?i.bind(i):function(){return i.apply(i,arguments)}},6530:function(r,i,o){var u=o(9781),p=o(2597),g=Function.prototype,y=u&&Object.getOwnPropertyDescriptor,w=p(g,"name"),_=w&&"something"===function something(){}.name,x=w&&(!u||u&&y(g,"name").configurable);r.exports={EXISTS:w,PROPER:_,CONFIGURABLE:x}},1702:function(r){var i=Function.prototype,o=i.bind,u=i.call,p=o&&o.bind(u);r.exports=o?function(r){return r&&p(u,r)}:function(r){return r&&function(){return u.apply(r,arguments)}}},5005:function(r,i,o){var u=o(7854),p=o(614),aFunction=function(r){return p(r)?r:void 0};r.exports=function(r,i){return arguments.length<2?aFunction(u[r]):u[r]&&u[r][i]}},1246:function(r,i,o){var u=o(648),p=o(8173),g=o(7497),y=o(5112)("iterator");r.exports=function(r){if(null!=r)return p(r,y)||p(r,"@@iterator")||g[u(r)]}},8554:function(r,i,o){var u=o(7854),p=o(6916),g=o(9662),y=o(9670),w=o(6330),_=o(1246),x=u.TypeError;r.exports=function(r,i){var o=arguments.length<2?_(r):i;if(g(o))return y(p(o,r));throw x(w(r)+" is not iterable")}},8173:function(r,i,o){var u=o(9662);r.exports=function(r,i){var o=r[i];return null==o?void 0:u(o)}},647:function(r,i,o){var u=o(1702),p=o(7908),g=Math.floor,y=u("".charAt),w=u("".replace),_=u("".slice),x=/\$([$&'`]|\d{1,2}|<[^>]*>)/g,k=/\$([$&'`]|\d{1,2})/g;r.exports=function(r,i,o,u,P,O){var I=o+r.length,B=u.length,R=k;return void 0!==P&&(P=p(P),R=x),w(O,R,(function(p,w){var x;switch(y(w,0)){case"$":return"$";case"&":return r;case"`":return _(i,0,o);case"'":return _(i,I);case"<":x=P[_(w,1,-1)];break;default:var k=+w;if(0===k)return p;if(k>B){var O=g(k/10);return 0===O?p:O<=B?void 0===u[O-1]?y(w,1):u[O-1]+y(w,1):p}x=u[k-1]}return void 0===x?"":x}))}},7854:function(r,i,o){var check=function(r){return r&&r.Math==Math&&r};r.exports=check("object"==typeof globalThis&&globalThis)||check("object"==typeof window&&window)||check("object"==typeof self&&self)||check("object"==typeof o.g&&o.g)||function(){return this}()||Function("return this")()},2597:function(r,i,o){var u=o(1702),p=o(7908),g=u({}.hasOwnProperty);r.exports=Object.hasOwn||function hasOwn(r,i){return g(p(r),i)}},3501:function(r){r.exports={}},842:function(r,i,o){var u=o(7854);r.exports=function(r,i){var o=u.console;o&&o.error&&(1==arguments.length?o.error(r):o.error(r,i))}},490:function(r,i,o){var u=o(5005);r.exports=u("document","documentElement")},4664:function(r,i,o){var u=o(9781),p=o(7293),g=o(317);r.exports=!u&&!p((function(){return 7!=Object.defineProperty(g("div"),"a",{get:function(){return 7}}).a}))},1179:function(r,i,o){var u=o(7854).Array,p=Math.abs,g=Math.pow,y=Math.floor,w=Math.log,_=Math.LN2;r.exports={pack:function(r,i,o){var x,k,P,O=u(o),I=8*o-i-1,B=(1<<I)-1,R=B>>1,D=23===i?g(2,-24)-g(2,-77):0,N=r<0||0===r&&1/r<0?1:0,W=0;for((r=p(r))!=r||r===1/0?(k=r!=r?1:0,x=B):(x=y(w(r)/_),r*(P=g(2,-x))<1&&(x--,P*=2),(r+=x+R>=1?D/P:D*g(2,1-R))*P>=2&&(x++,P/=2),x+R>=B?(k=0,x=B):x+R>=1?(k=(r*P-1)*g(2,i),x+=R):(k=r*g(2,R-1)*g(2,i),x=0));i>=8;O[W++]=255&k,k/=256,i-=8);for(x=x<<i|k,I+=i;I>0;O[W++]=255&x,x/=256,I-=8);return O[--W]|=128*N,O},unpack:function(r,i){var o,u=r.length,p=8*u-i-1,y=(1<<p)-1,w=y>>1,_=p-7,x=u-1,k=r[x--],P=127&k;for(k>>=7;_>0;P=256*P+r[x],x--,_-=8);for(o=P&(1<<-_)-1,P>>=-_,_+=i;_>0;o=256*o+r[x],x--,_-=8);if(0===P)P=1-w;else{if(P===y)return o?NaN:k?-1/0:1/0;o+=g(2,i),P-=w}return(k?-1:1)*o*g(2,P-i)}}},8361:function(r,i,o){var u=o(7854),p=o(1702),g=o(7293),y=o(4326),w=u.Object,_=p("".split);r.exports=g((function(){return!w("z").propertyIsEnumerable(0)}))?function(r){return"String"==y(r)?_(r,""):w(r)}:w},9587:function(r,i,o){var u=o(614),p=o(111),g=o(7674);r.exports=function(r,i,o){var y,w;return g&&u(y=i.constructor)&&y!==o&&p(w=y.prototype)&&w!==o.prototype&&g(r,w),r}},2788:function(r,i,o){var u=o(1702),p=o(614),g=o(5465),y=u(Function.toString);p(g.inspectSource)||(g.inspectSource=function(r){return y(r)}),r.exports=g.inspectSource},8340:function(r,i,o){var u=o(111),p=o(8880);r.exports=function(r,i){u(i)&&"cause"in i&&p(r,"cause",i.cause)}},2423:function(r,i,o){var u=o(2109),p=o(1702),g=o(3501),y=o(111),w=o(2597),_=o(3070).f,x=o(8006),k=o(1156),P=o(9711),O=o(6677),I=!1,B=P("meta"),R=0,D=Object.isExtensible||function(){return!0},setMetadata=function(r){_(r,B,{value:{objectID:"O"+R++,weakData:{}}})},N=r.exports={enable:function(){N.enable=function(){},I=!0;var r=x.f,i=p([].splice),o={};o[B]=1,r(o).length&&(x.f=function(o){for(var u=r(o),p=0,g=u.length;p<g;p++)if(u[p]===B){i(u,p,1);break}return u},u({target:"Object",stat:!0,forced:!0},{getOwnPropertyNames:k.f}))},fastKey:function(r,i){if(!y(r))return"symbol"==typeof r?r:("string"==typeof r?"S":"P")+r;if(!w(r,B)){if(!D(r))return"F";if(!i)return"E";setMetadata(r)}return r[B].objectID},getWeakData:function(r,i){if(!w(r,B)){if(!D(r))return!0;if(!i)return!1;setMetadata(r)}return r[B].weakData},onFreeze:function(r){return O&&I&&D(r)&&!w(r,B)&&setMetadata(r),r}};g[B]=!0},9909:function(r,i,o){var u,p,g,y=o(8536),w=o(7854),_=o(1702),x=o(111),k=o(8880),P=o(2597),O=o(5465),I=o(6200),B=o(3501),R="Object already initialized",D=w.TypeError,N=w.WeakMap;if(y||O.state){var W=O.state||(O.state=new N),U=_(W.get),j=_(W.has),G=_(W.set);u=function(r,i){if(j(W,r))throw new D(R);return i.facade=r,G(W,r,i),i},p=function(r){return U(W,r)||{}},g=function(r){return j(W,r)}}else{var X=I("state");B[X]=!0,u=function(r,i){if(P(r,X))throw new D(R);return i.facade=r,k(r,X,i),i},p=function(r){return P(r,X)?r[X]:{}},g=function(r){return P(r,X)}}r.exports={set:u,get:p,has:g,enforce:function(r){return g(r)?p(r):u(r,{})},getterFor:function(r){return function(i){var o;if(!x(i)||(o=p(i)).type!==r)throw D("Incompatible receiver, "+r+" required");return o}}}},7659:function(r,i,o){var u=o(5112),p=o(7497),g=u("iterator"),y=Array.prototype;r.exports=function(r){return void 0!==r&&(p.Array===r||y[g]===r)}},3157:function(r,i,o){var u=o(4326);r.exports=Array.isArray||function isArray(r){return"Array"==u(r)}},614:function(r){r.exports=function(r){return"function"==typeof r}},4411:function(r,i,o){var u=o(1702),p=o(7293),g=o(614),y=o(648),w=o(5005),_=o(2788),noop=function(){},x=[],k=w("Reflect","construct"),P=/^\s*(?:class|function)\b/,O=u(P.exec),I=!P.exec(noop),isConstructorModern=function(r){if(!g(r))return!1;try{return k(noop,x,r),!0}catch(r){return!1}};r.exports=!k||p((function(){var r;return isConstructorModern(isConstructorModern.call)||!isConstructorModern(Object)||!isConstructorModern((function(){r=!0}))||r}))?function(r){if(!g(r))return!1;switch(y(r)){case"AsyncFunction":case"GeneratorFunction":case"AsyncGeneratorFunction":return!1}return I||!!O(P,_(r))}:isConstructorModern},4705:function(r,i,o){var u=o(7293),p=o(614),g=/#|\.prototype\./,isForced=function(r,i){var o=w[y(r)];return o==x||o!=_&&(p(i)?u(i):!!i)},y=isForced.normalize=function(r){return String(r).replace(g,".").toLowerCase()},w=isForced.data={},_=isForced.NATIVE="N",x=isForced.POLYFILL="P";r.exports=isForced},5988:function(r,i,o){var u=o(111),p=Math.floor;r.exports=Number.isInteger||function isInteger(r){return!u(r)&&isFinite(r)&&p(r)===r}},111:function(r,i,o){var u=o(614);r.exports=function(r){return"object"==typeof r?null!==r:u(r)}},1913:function(r){r.exports=!1},7850:function(r,i,o){var u=o(111),p=o(4326),g=o(5112)("match");r.exports=function(r){var i;return u(r)&&(void 0!==(i=r[g])?!!i:"RegExp"==p(r))}},2190:function(r,i,o){var u=o(7854),p=o(5005),g=o(614),y=o(7976),w=o(3307),_=u.Object;r.exports=w?function(r){return"symbol"==typeof r}:function(r){var i=p("Symbol");return g(i)&&y(i.prototype,_(r))}},408:function(r,i,o){var u=o(7854),p=o(9974),g=o(6916),y=o(9670),w=o(6330),_=o(7659),x=o(6244),k=o(7976),P=o(8554),O=o(1246),I=o(9212),B=u.TypeError,Result=function(r,i){this.stopped=r,this.result=i},R=Result.prototype;r.exports=function(r,i,o){var u,D,N,W,U,j,G,X=o&&o.that,K=!(!o||!o.AS_ENTRIES),Y=!(!o||!o.IS_ITERATOR),J=!(!o||!o.INTERRUPTED),$=p(i,X),stop=function(r){return u&&I(u,"normal",r),new Result(!0,r)},callFn=function(r){return K?(y(r),J?$(r[0],r[1],stop):$(r[0],r[1])):J?$(r,stop):$(r)};if(Y)u=r;else{if(!(D=O(r)))throw B(w(r)+" is not iterable");if(_(D)){for(N=0,W=x(r);W>N;N++)if((U=callFn(r[N]))&&k(R,U))return U;return new Result(!1)}u=P(r,D)}for(j=u.next;!(G=g(j,u)).done;){try{U=callFn(G.value)}catch(r){I(u,"throw",r)}if("object"==typeof U&&U&&k(R,U))return U}return new Result(!1)}},9212:function(r,i,o){var u=o(6916),p=o(9670),g=o(8173);r.exports=function(r,i,o){var y,w;p(r);try{if(!(y=g(r,"return"))){if("throw"===i)throw o;return o}y=u(y,r)}catch(r){w=!0,y=r}if("throw"===i)throw o;if(w)throw y;return p(y),o}},3383:function(r,i,o){"use strict";var u,p,g,y=o(7293),w=o(614),_=o(30),x=o(9518),k=o(1320),P=o(5112),O=o(1913),I=P("iterator"),B=!1;[].keys&&("next"in(g=[].keys())?(p=x(x(g)))!==Object.prototype&&(u=p):B=!0),null==u||y((function(){var r={};return u[I].call(r)!==r}))?u={}:O&&(u=_(u)),w(u[I])||k(u,I,(function(){return this})),r.exports={IteratorPrototype:u,BUGGY_SAFARI_ITERATORS:B}},7497:function(r){r.exports={}},6244:function(r,i,o){var u=o(7466);r.exports=function(r){return u(r.length)}},5948:function(r,i,o){var u,p,g,y,w,_,x,k,P=o(7854),O=o(9974),I=o(1236).f,B=o(261).set,R=o(6833),D=o(1528),N=o(1036),W=o(5268),U=P.MutationObserver||P.WebKitMutationObserver,j=P.document,G=P.process,X=P.Promise,K=I(P,"queueMicrotask"),Y=K&&K.value;Y||(u=function(){var r,i;for(W&&(r=G.domain)&&r.exit();p;){i=p.fn,p=p.next;try{i()}catch(r){throw p?y():g=void 0,r}}g=void 0,r&&r.enter()},R||W||N||!U||!j?!D&&X&&X.resolve?((x=X.resolve(void 0)).constructor=X,k=O(x.then,x),y=function(){k(u)}):W?y=function(){G.nextTick(u)}:(B=O(B,P),y=function(){B(u)}):(w=!0,_=j.createTextNode(""),new U(u).observe(_,{characterData:!0}),y=function(){_.data=w=!w})),r.exports=Y||function(r){var i={fn:r,next:void 0};g&&(g.next=i),p||(p=i,y()),g=i}},3366:function(r,i,o){var u=o(7854);r.exports=u.Promise},133:function(r,i,o){var u=o(7392),p=o(7293);r.exports=!!Object.getOwnPropertySymbols&&!p((function(){var r=Symbol();return!String(r)||!(Object(r)instanceof Symbol)||!Symbol.sham&&u&&u<41}))},8536:function(r,i,o){var u=o(7854),p=o(614),g=o(2788),y=u.WeakMap;r.exports=p(y)&&/native code/.test(g(y))},8523:function(r,i,o){"use strict";var u=o(9662),PromiseCapability=function(r){var i,o;this.promise=new r((function(r,u){if(void 0!==i||void 0!==o)throw TypeError("Bad Promise constructor");i=r,o=u})),this.resolve=u(i),this.reject=u(o)};r.exports.f=function(r){return new PromiseCapability(r)}},6277:function(r,i,o){var u=o(1340);r.exports=function(r,i){return void 0===r?arguments.length<2?"":i:u(r)}},3929:function(r,i,o){var u=o(7854),p=o(7850),g=u.TypeError;r.exports=function(r){if(p(r))throw g("The method doesn't accept regular expressions");return r}},7023:function(r,i,o){var u=o(7854).isFinite;r.exports=Number.isFinite||function isFinite(r){return"number"==typeof r&&u(r)}},1574:function(r,i,o){"use strict";var u=o(9781),p=o(1702),g=o(6916),y=o(7293),w=o(1956),_=o(5181),x=o(5296),k=o(7908),P=o(8361),O=Object.assign,I=Object.defineProperty,B=p([].concat);r.exports=!O||y((function(){if(u&&1!==O({b:1},O(I({},"a",{enumerable:!0,get:function(){I(this,"b",{value:3,enumerable:!1})}}),{b:2})).b)return!0;var r={},i={},o=Symbol(),p="abcdefghijklmnopqrst";return r[o]=7,p.split("").forEach((function(r){i[r]=r})),7!=O({},r)[o]||w(O({},i)).join("")!=p}))?function assign(r,i){for(var o=k(r),p=arguments.length,y=1,O=_.f,I=x.f;p>y;)for(var R,D=P(arguments[y++]),N=O?B(w(D),O(D)):w(D),W=N.length,U=0;W>U;)R=N[U++],u&&!g(I,D,R)||(o[R]=D[R]);return o}:O},30:function(r,i,o){var u,p=o(9670),g=o(6048),y=o(748),w=o(3501),_=o(490),x=o(317),k=o(6200),P="prototype",O="script",I=k("IE_PROTO"),EmptyConstructor=function(){},scriptTag=function(r){return"<"+O+">"+r+"</"+O+">"},NullProtoObjectViaActiveX=function(r){r.write(scriptTag("")),r.close();var i=r.parentWindow.Object;return r=null,i},NullProtoObject=function(){try{u=new ActiveXObject("htmlfile")}catch(r){}var r,i,o;NullProtoObject="undefined"!=typeof document?document.domain&&u?NullProtoObjectViaActiveX(u):(i=x("iframe"),o="java"+O+":",i.style.display="none",_.appendChild(i),i.src=String(o),(r=i.contentWindow.document).open(),r.write(scriptTag("document.F=Object")),r.close(),r.F):NullProtoObjectViaActiveX(u);for(var p=y.length;p--;)delete NullProtoObject[P][y[p]];return NullProtoObject()};w[I]=!0,r.exports=Object.create||function create(r,i){var o;return null!==r?(EmptyConstructor[P]=p(r),o=new EmptyConstructor,EmptyConstructor[P]=null,o[I]=r):o=NullProtoObject(),void 0===i?o:g(o,i)}},6048:function(r,i,o){var u=o(9781),p=o(3070),g=o(9670),y=o(5656),w=o(1956);r.exports=u?Object.defineProperties:function defineProperties(r,i){g(r);for(var o,u=y(i),_=w(i),x=_.length,k=0;x>k;)p.f(r,o=_[k++],u[o]);return r}},3070:function(r,i,o){var u=o(7854),p=o(9781),g=o(4664),y=o(9670),w=o(4948),_=u.TypeError,x=Object.defineProperty;i.f=p?x:function defineProperty(r,i,o){if(y(r),i=w(i),y(o),g)try{return x(r,i,o)}catch(r){}if("get"in o||"set"in o)throw _("Accessors not supported");return"value"in o&&(r[i]=o.value),r}},1236:function(r,i,o){var u=o(9781),p=o(6916),g=o(5296),y=o(9114),w=o(5656),_=o(4948),x=o(2597),k=o(4664),P=Object.getOwnPropertyDescriptor;i.f=u?P:function getOwnPropertyDescriptor(r,i){if(r=w(r),i=_(i),k)try{return P(r,i)}catch(r){}if(x(r,i))return y(!p(g.f,r,i),r[i])}},1156:function(r,i,o){var u=o(4326),p=o(5656),g=o(8006).f,y=o(206),w="object"==typeof window&&window&&Object.getOwnPropertyNames?Object.getOwnPropertyNames(window):[];r.exports.f=function getOwnPropertyNames(r){return w&&"Window"==u(r)?function(r){try{return g(r)}catch(r){return y(w)}}(r):g(p(r))}},8006:function(r,i,o){var u=o(6324),p=o(748).concat("length","prototype");i.f=Object.getOwnPropertyNames||function getOwnPropertyNames(r){return u(r,p)}},5181:function(r,i){i.f=Object.getOwnPropertySymbols},9518:function(r,i,o){var u=o(7854),p=o(2597),g=o(614),y=o(7908),w=o(6200),_=o(8544),x=w("IE_PROTO"),k=u.Object,P=k.prototype;r.exports=_?k.getPrototypeOf:function(r){var i=y(r);if(p(i,x))return i[x];var o=i.constructor;return g(o)&&i instanceof o?o.prototype:i instanceof k?P:null}},7976:function(r,i,o){var u=o(1702);r.exports=u({}.isPrototypeOf)},6324:function(r,i,o){var u=o(1702),p=o(2597),g=o(5656),y=o(1318).indexOf,w=o(3501),_=u([].push);r.exports=function(r,i){var o,u=g(r),x=0,k=[];for(o in u)!p(w,o)&&p(u,o)&&_(k,o);for(;i.length>x;)p(u,o=i[x++])&&(~y(k,o)||_(k,o));return k}},1956:function(r,i,o){var u=o(6324),p=o(748);r.exports=Object.keys||function keys(r){return u(r,p)}},5296:function(r,i){"use strict";var o={}.propertyIsEnumerable,u=Object.getOwnPropertyDescriptor,p=u&&!o.call({1:2},1);i.f=p?function propertyIsEnumerable(r){var i=u(this,r);return!!i&&i.enumerable}:o},7674:function(r,i,o){var u=o(1702),p=o(9670),g=o(6077);r.exports=Object.setPrototypeOf||("__proto__"in{}?function(){var r,i=!1,o={};try{(r=u(Object.getOwnPropertyDescriptor(Object.prototype,"__proto__").set))(o,[]),i=o instanceof Array}catch(r){}return function setPrototypeOf(o,u){return p(o),g(u),i?r(o,u):o.__proto__=u,o}}():void 0)},4699:function(r,i,o){var u=o(9781),p=o(1702),g=o(1956),y=o(5656),w=p(o(5296).f),_=p([].push),createMethod=function(r){return function(i){for(var o,p=y(i),x=g(p),k=x.length,P=0,O=[];k>P;)o=x[P++],u&&!w(p,o)||_(O,r?[o,p[o]]:p[o]);return O}};r.exports={entries:createMethod(!0),values:createMethod(!1)}},288:function(r,i,o){"use strict";var u=o(1694),p=o(648);r.exports=u?{}.toString:function toString(){return"[object "+p(this)+"]"}},2140:function(r,i,o){var u=o(7854),p=o(6916),g=o(614),y=o(111),w=u.TypeError;r.exports=function(r,i){var o,u;if("string"===i&&g(o=r.toString)&&!y(u=p(o,r)))return u;if(g(o=r.valueOf)&&!y(u=p(o,r)))return u;if("string"!==i&&g(o=r.toString)&&!y(u=p(o,r)))return u;throw w("Can't convert object to primitive value")}},3887:function(r,i,o){var u=o(5005),p=o(1702),g=o(8006),y=o(5181),w=o(9670),_=p([].concat);r.exports=u("Reflect","ownKeys")||function ownKeys(r){var i=g.f(w(r)),o=y.f;return o?_(i,o(r)):i}},857:function(r,i,o){var u=o(7854);r.exports=u},2534:function(r){r.exports=function(r){try{return{error:!1,value:r()}}catch(r){return{error:!0,value:r}}}},9478:function(r,i,o){var u=o(9670),p=o(111),g=o(8523);r.exports=function(r,i){if(u(r),p(i)&&i.constructor===r)return i;var o=g.f(r);return(0,o.resolve)(i),o.promise}},2248:function(r,i,o){var u=o(1320);r.exports=function(r,i,o){for(var p in i)u(r,p,i[p],o);return r}},1320:function(r,i,o){var u=o(7854),p=o(614),g=o(2597),y=o(8880),w=o(3505),_=o(2788),x=o(9909),k=o(6530).CONFIGURABLE,P=x.get,O=x.enforce,I=String(String).split("String");(r.exports=function(r,i,o,_){var x,P=!!_&&!!_.unsafe,B=!!_&&!!_.enumerable,R=!!_&&!!_.noTargetGet,D=_&&void 0!==_.name?_.name:i;p(o)&&("Symbol("===String(D).slice(0,7)&&(D="["+String(D).replace(/^Symbol\(([^)]*)\)/,"$1")+"]"),(!g(o,"name")||k&&o.name!==D)&&y(o,"name",D),(x=O(o)).source||(x.source=I.join("string"==typeof D?D:""))),r!==u?(P?!R&&r[i]&&(B=!0):delete r[i],B?r[i]=o:y(r,i,o)):B?r[i]=o:w(i,o)})(Function.prototype,"toString",(function toString(){return p(this)&&P(this).source||_(this)}))},7651:function(r,i,o){var u=o(7854),p=o(6916),g=o(9670),y=o(614),w=o(4326),_=o(2261),x=u.TypeError;r.exports=function(r,i){var o=r.exec;if(y(o)){var u=p(o,r,i);return null!==u&&g(u),u}if("RegExp"===w(r))return p(_,r,i);throw x("RegExp#exec called on incompatible receiver")}},2261:function(r,i,o){"use strict";var u,p,g=o(6916),y=o(1702),w=o(1340),_=o(7066),x=o(2999),k=o(2309),P=o(30),O=o(9909).get,I=o(9441),B=o(7168),R=k("native-string-replace",String.prototype.replace),D=RegExp.prototype.exec,N=D,W=y("".charAt),U=y("".indexOf),j=y("".replace),G=y("".slice),X=(p=/b*/g,g(D,u=/a/,"a"),g(D,p,"a"),0!==u.lastIndex||0!==p.lastIndex),K=x.UNSUPPORTED_Y||x.BROKEN_CARET,Y=void 0!==/()??/.exec("")[1];(X||Y||K||I||B)&&(N=function exec(r){var i,o,u,p,y,x,k,I=this,B=O(I),J=w(r),$=B.raw;if($)return $.lastIndex=I.lastIndex,i=g(N,$,J),I.lastIndex=$.lastIndex,i;var ee=B.groups,te=K&&I.sticky,re=g(_,I),ne=I.source,ie=0,oe=J;if(te&&(re=j(re,"y",""),-1===U(re,"g")&&(re+="g"),oe=G(J,I.lastIndex),I.lastIndex>0&&(!I.multiline||I.multiline&&"\n"!==W(J,I.lastIndex-1))&&(ne="(?: "+ne+")",oe=" "+oe,ie++),o=new RegExp("^(?:"+ne+")",re)),Y&&(o=new RegExp("^"+ne+"$(?!\\s)",re)),X&&(u=I.lastIndex),p=g(D,te?o:I,oe),te?p?(p.input=G(p.input,ie),p[0]=G(p[0],ie),p.index=I.lastIndex,I.lastIndex+=p[0].length):I.lastIndex=0:X&&p&&(I.lastIndex=I.global?p.index+p[0].length:u),Y&&p&&p.length>1&&g(R,p[0],o,(function(){for(y=1;y<arguments.length-2;y++)void 0===arguments[y]&&(p[y]=void 0)})),p&&ee)for(p.groups=x=P(null),y=0;y<ee.length;y++)x[(k=ee[y])[0]]=p[k[1]];return p}),r.exports=N},7066:function(r,i,o){"use strict";var u=o(9670);r.exports=function(){var r=u(this),i="";return r.global&&(i+="g"),r.ignoreCase&&(i+="i"),r.multiline&&(i+="m"),r.dotAll&&(i+="s"),r.unicode&&(i+="u"),r.sticky&&(i+="y"),i}},2999:function(r,i,o){var u=o(7293),p=o(7854).RegExp;i.UNSUPPORTED_Y=u((function(){var r=p("a","y");return r.lastIndex=2,null!=r.exec("abcd")})),i.BROKEN_CARET=u((function(){var r=p("^r","gy");return r.lastIndex=2,null!=r.exec("str")}))},9441:function(r,i,o){var u=o(7293),p=o(7854).RegExp;r.exports=u((function(){var r=p(".","s");return!(r.dotAll&&r.exec("\n")&&"s"===r.flags)}))},7168:function(r,i,o){var u=o(7293),p=o(7854).RegExp;r.exports=u((function(){var r=p("(?<a>b)","g");return"b"!==r.exec("b").groups.a||"bc"!=="b".replace(r,"$<a>c")}))},4488:function(r,i,o){var u=o(7854).TypeError;r.exports=function(r){if(null==r)throw u("Can't call method on "+r);return r}},3505:function(r,i,o){var u=o(7854),p=Object.defineProperty;r.exports=function(r,i){try{p(u,r,{value:i,configurable:!0,writable:!0})}catch(o){u[r]=i}return i}},6340:function(r,i,o){"use strict";var u=o(5005),p=o(3070),g=o(5112),y=o(9781),w=g("species");r.exports=function(r){var i=u(r),o=p.f;y&&i&&!i[w]&&o(i,w,{configurable:!0,get:function(){return this}})}},8003:function(r,i,o){var u=o(3070).f,p=o(2597),g=o(5112)("toStringTag");r.exports=function(r,i,o){r&&!p(r=o?r:r.prototype,g)&&u(r,g,{configurable:!0,value:i})}},6200:function(r,i,o){var u=o(2309),p=o(9711),g=u("keys");r.exports=function(r){return g[r]||(g[r]=p(r))}},5465:function(r,i,o){var u=o(7854),p=o(3505),g="__core-js_shared__",y=u[g]||p(g,{});r.exports=y},2309:function(r,i,o){var u=o(1913),p=o(5465);(r.exports=function(r,i){return p[r]||(p[r]=void 0!==i?i:{})})("versions",[]).push({version:"3.19.0",mode:u?"pure":"global",copyright:"© 2021 Denis Pushkarev (zloirock.ru)"})},6707:function(r,i,o){var u=o(9670),p=o(9483),g=o(5112)("species");r.exports=function(r,i){var o,y=u(r).constructor;return void 0===y||null==(o=u(y)[g])?i:p(o)}},3429:function(r,i,o){var u=o(7293);r.exports=function(r){return u((function(){var i=""[r]('"');return i!==i.toLowerCase()||i.split('"').length>3}))}},8710:function(r,i,o){var u=o(1702),p=o(9303),g=o(1340),y=o(4488),w=u("".charAt),_=u("".charCodeAt),x=u("".slice),createMethod=function(r){return function(i,o){var u,k,P=g(y(i)),O=p(o),I=P.length;return O<0||O>=I?r?"":void 0:(u=_(P,O))<55296||u>56319||O+1===I||(k=_(P,O+1))<56320||k>57343?r?w(P,O):u:r?x(P,O,O+2):k-56320+(u-55296<<10)+65536}};r.exports={codeAt:createMethod(!1),charAt:createMethod(!0)}},8415:function(r,i,o){"use strict";var u=o(7854),p=o(9303),g=o(1340),y=o(4488),w=u.RangeError;r.exports=function repeat(r){var i=g(y(this)),o="",u=p(r);if(u<0||u==1/0)throw w("Wrong number of repetitions");for(;u>0;(u>>>=1)&&(i+=i))1&u&&(o+=i);return o}},6091:function(r,i,o){var u=o(6530).PROPER,p=o(7293),g=o(1361);r.exports=function(r){return p((function(){return!!g[r]()||"​…᠎"!=="​…᠎"[r]()||u&&g[r].name!==r}))}},3111:function(r,i,o){var u=o(1702),p=o(4488),g=o(1340),y=o(1361),w=u("".replace),_="["+y+"]",x=RegExp("^"+_+_+"*"),k=RegExp(_+_+"*$"),createMethod=function(r){return function(i){var o=g(p(i));return 1&r&&(o=w(o,x,"")),2&r&&(o=w(o,k,"")),o}};r.exports={start:createMethod(1),end:createMethod(2),trim:createMethod(3)}},261:function(r,i,o){var u,p,g,y,w=o(7854),_=o(2104),x=o(9974),k=o(614),P=o(2597),O=o(7293),I=o(490),B=o(206),R=o(317),D=o(6833),N=o(5268),W=w.setImmediate,U=w.clearImmediate,j=w.process,G=w.Dispatch,X=w.Function,K=w.MessageChannel,Y=w.String,J=0,$={},ee="onreadystatechange";try{u=w.location}catch(r){}var run=function(r){if(P($,r)){var i=$[r];delete $[r],i()}},runner=function(r){return function(){run(r)}},listener=function(r){run(r.data)},post=function(r){w.postMessage(Y(r),u.protocol+"//"+u.host)};W&&U||(W=function setImmediate(r){var i=B(arguments,1);return $[++J]=function(){_(k(r)?r:X(r),void 0,i)},p(J),J},U=function clearImmediate(r){delete $[r]},N?p=function(r){j.nextTick(runner(r))}:G&&G.now?p=function(r){G.now(runner(r))}:K&&!D?(y=(g=new K).port2,g.port1.onmessage=listener,p=x(y.postMessage,y)):w.addEventListener&&k(w.postMessage)&&!w.importScripts&&u&&"file:"!==u.protocol&&!O(post)?(p=post,w.addEventListener("message",listener,!1)):p=ee in R("script")?function(r){I.appendChild(R("script"))[ee]=function(){I.removeChild(this),run(r)}}:function(r){setTimeout(runner(r),0)}),r.exports={set:W,clear:U}},863:function(r,i,o){var u=o(1702);r.exports=u(1..valueOf)},1400:function(r,i,o){var u=o(9303),p=Math.max,g=Math.min;r.exports=function(r,i){var o=u(r);return o<0?p(o+i,0):g(o,i)}},7067:function(r,i,o){var u=o(7854),p=o(9303),g=o(7466),y=u.RangeError;r.exports=function(r){if(void 0===r)return 0;var i=p(r),o=g(i);if(i!==o)throw y("Wrong length or index");return o}},5656:function(r,i,o){var u=o(8361),p=o(4488);r.exports=function(r){return u(p(r))}},9303:function(r){var i=Math.ceil,o=Math.floor;r.exports=function(r){var u=+r;return u!=u||0===u?0:(u>0?o:i)(u)}},7466:function(r,i,o){var u=o(9303),p=Math.min;r.exports=function(r){return r>0?p(u(r),9007199254740991):0}},7908:function(r,i,o){var u=o(7854),p=o(4488),g=u.Object;r.exports=function(r){return g(p(r))}},4590:function(r,i,o){var u=o(7854),p=o(3002),g=u.RangeError;r.exports=function(r,i){var o=p(r);if(o%i)throw g("Wrong offset");return o}},3002:function(r,i,o){var u=o(7854),p=o(9303),g=u.RangeError;r.exports=function(r){var i=p(r);if(i<0)throw g("The argument can't be less than 0");return i}},7593:function(r,i,o){var u=o(7854),p=o(6916),g=o(111),y=o(2190),w=o(8173),_=o(2140),x=o(5112),k=u.TypeError,P=x("toPrimitive");r.exports=function(r,i){if(!g(r)||y(r))return r;var o,u=w(r,P);if(u){if(void 0===i&&(i="default"),o=p(u,r,i),!g(o)||y(o))return o;throw k("Can't convert object to primitive value")}return void 0===i&&(i="number"),_(r,i)}},4948:function(r,i,o){var u=o(7593),p=o(2190);r.exports=function(r){var i=u(r,"string");return p(i)?i:i+""}},1694:function(r,i,o){var u={};u[o(5112)("toStringTag")]="z",r.exports="[object z]"===String(u)},1340:function(r,i,o){var u=o(7854),p=o(648),g=u.String;r.exports=function(r){if("Symbol"===p(r))throw TypeError("Cannot convert a Symbol value to a string");return g(r)}},6330:function(r,i,o){var u=o(7854).String;r.exports=function(r){try{return u(r)}catch(r){return"Object"}}},9843:function(r,i,o){"use strict";var u=o(2109),p=o(7854),g=o(6916),y=o(9781),w=o(3832),_=o(2094),x=o(2091),k=o(5787),P=o(9114),O=o(8880),I=o(5988),B=o(7466),R=o(7067),D=o(4590),N=o(4948),W=o(2597),U=o(648),j=o(111),G=o(2190),X=o(30),K=o(7976),Y=o(7674),J=o(8006).f,$=o(7321),ee=o(2092).forEach,te=o(6340),re=o(3070),ne=o(1236),ie=o(9909),oe=o(9587),ae=ie.get,se=ie.set,ce=re.f,le=ne.f,ue=Math.round,fe=p.RangeError,he=x.ArrayBuffer,de=he.prototype,pe=x.DataView,ge=_.NATIVE_ARRAY_BUFFER_VIEWS,ye=_.TYPED_ARRAY_CONSTRUCTOR,ve=_.TYPED_ARRAY_TAG,me=_.TypedArray,be=_.TypedArrayPrototype,we=_.aTypedArrayConstructor,_e=_.isTypedArray,Se="BYTES_PER_ELEMENT",xe="Wrong length",fromList=function(r,i){we(r);for(var o=0,u=i.length,p=new r(u);u>o;)p[o]=i[o++];return p},addGetter=function(r,i){ce(r,i,{get:function(){return ae(this)[i]}})},isArrayBuffer=function(r){var i;return K(de,r)||"ArrayBuffer"==(i=U(r))||"SharedArrayBuffer"==i},isTypedArrayIndex=function(r,i){return _e(r)&&!G(i)&&i in r&&I(+i)&&i>=0},Ce=function getOwnPropertyDescriptor(r,i){return i=N(i),isTypedArrayIndex(r,i)?P(2,r[i]):le(r,i)},ke=function defineProperty(r,i,o){return i=N(i),!(isTypedArrayIndex(r,i)&&j(o)&&W(o,"value"))||W(o,"get")||W(o,"set")||o.configurable||W(o,"writable")&&!o.writable||W(o,"enumerable")&&!o.enumerable?ce(r,i,o):(r[i]=o.value,r)};y?(ge||(ne.f=Ce,re.f=ke,addGetter(be,"buffer"),addGetter(be,"byteOffset"),addGetter(be,"byteLength"),addGetter(be,"length")),u({target:"Object",stat:!0,forced:!ge},{getOwnPropertyDescriptor:Ce,defineProperty:ke}),r.exports=function(r,i,o){var y=r.match(/\d+$/)[0]/8,_=r+(o?"Clamped":"")+"Array",x="get"+r,P="set"+r,I=p[_],N=I,W=N&&N.prototype,U={},addElement=function(r,i){ce(r,i,{get:function(){return function(r,i){var o=ae(r);return o.view[x](i*y+o.byteOffset,!0)}(this,i)},set:function(r){return function(r,i,u){var p=ae(r);o&&(u=(u=ue(u))<0?0:u>255?255:255&u),p.view[P](i*y+p.byteOffset,u,!0)}(this,i,r)},enumerable:!0})};ge?w&&(N=i((function(r,i,o,u){return k(r,W),oe(j(i)?isArrayBuffer(i)?void 0!==u?new I(i,D(o,y),u):void 0!==o?new I(i,D(o,y)):new I(i):_e(i)?fromList(N,i):g($,N,i):new I(R(i)),r,N)})),Y&&Y(N,me),ee(J(I),(function(r){r in N||O(N,r,I[r])})),N.prototype=W):(N=i((function(r,i,o,u){k(r,W);var p,w,_,x=0,P=0;if(j(i)){if(!isArrayBuffer(i))return _e(i)?fromList(N,i):g($,N,i);p=i,P=D(o,y);var O=i.byteLength;if(void 0===u){if(O%y)throw fe(xe);if((w=O-P)<0)throw fe(xe)}else if((w=B(u)*y)+P>O)throw fe(xe);_=w/y}else _=R(i),p=new he(w=_*y);for(se(r,{buffer:p,byteOffset:P,byteLength:w,length:_,view:new pe(p)});x<_;)addElement(r,x++)})),Y&&Y(N,me),W=N.prototype=X(be)),W.constructor!==N&&O(W,"constructor",N),O(W,ye,N),ve&&O(W,ve,_),U[_]=N,u({global:!0,forced:N!=I,sham:!ge},U),Se in N||O(N,Se,y),Se in W||O(W,Se,y),te(_)}):r.exports=function(){}},3832:function(r,i,o){var u=o(7854),p=o(7293),g=o(7072),y=o(2094).NATIVE_ARRAY_BUFFER_VIEWS,w=u.ArrayBuffer,_=u.Int8Array;r.exports=!y||!p((function(){_(1)}))||!p((function(){new _(-1)}))||!g((function(r){new _,new _(null),new _(1.5),new _(r)}),!0)||p((function(){return 1!==new _(new w(2),1,void 0).length}))},3074:function(r,i,o){var u=o(7745),p=o(6304);r.exports=function(r,i){return u(p(r),i)}},7321:function(r,i,o){var u=o(9974),p=o(6916),g=o(9483),y=o(7908),w=o(6244),_=o(8554),x=o(1246),k=o(7659),P=o(2094).aTypedArrayConstructor;r.exports=function from(r){var i,o,O,I,B,R,D=g(this),N=y(r),W=arguments.length,U=W>1?arguments[1]:void 0,j=void 0!==U,G=x(N);if(G&&!k(G))for(R=(B=_(N,G)).next,N=[];!(I=p(R,B)).done;)N.push(I.value);for(j&&W>2&&(U=u(U,arguments[2])),o=w(N),O=new(P(D))(o),i=0;o>i;i++)O[i]=j?U(N[i],i):N[i];return O}},6304:function(r,i,o){var u=o(2094),p=o(6707),g=u.TYPED_ARRAY_CONSTRUCTOR,y=u.aTypedArrayConstructor;r.exports=function(r){return y(p(r,r[g]))}},9711:function(r,i,o){var u=o(1702),p=0,g=Math.random(),y=u(1..toString);r.exports=function(r){return"Symbol("+(void 0===r?"":r)+")_"+y(++p+g,36)}},3307:function(r,i,o){var u=o(133);r.exports=u&&!Symbol.sham&&"symbol"==typeof Symbol.iterator},6061:function(r,i,o){var u=o(5112);i.f=u},5112:function(r,i,o){var u=o(7854),p=o(2309),g=o(2597),y=o(9711),w=o(133),_=o(3307),x=p("wks"),k=u.Symbol,P=k&&k.for,O=_?k:k&&k.withoutSetter||y;r.exports=function(r){if(!g(x,r)||!w&&"string"!=typeof x[r]){var i="Symbol."+r;w&&g(k,r)?x[r]=k[r]:x[r]=_&&P?P(i):O(i)}return x[r]}},1361:function(r){r.exports="\t\n\v\f\r                　\u2028\u2029\ufeff"},9170:function(r,i,o){"use strict";var u=o(2109),p=o(7854),g=o(7976),y=o(9518),w=o(7674),_=o(9920),x=o(30),k=o(8880),P=o(9114),O=o(7741),I=o(8340),B=o(408),R=o(6277),D=o(2914),N=p.Error,W=[].push,U=function AggregateError(r,i){var o=g(j,this)?this:x(j),u=arguments.length>2?arguments[2]:void 0;w&&(o=w(new N(void 0),y(o))),k(o,"message",R(i,"")),D&&k(o,"stack",O(o.stack,1)),I(o,u);var p=[];return B(r,W,{that:p}),k(o,"errors",p),o};w?w(U,N):_(U,N);var j=U.prototype=x(N.prototype,{constructor:P(1,U),message:P(1,""),name:P(1,"AggregateError")});u({global:!0},{AggregateError:U})},2222:function(r,i,o){"use strict";var u=o(2109),p=o(7854),g=o(7293),y=o(3157),w=o(111),_=o(7908),x=o(6244),k=o(6135),P=o(5417),O=o(1194),I=o(5112),B=o(7392),R=I("isConcatSpreadable"),D=9007199254740991,N="Maximum allowed index exceeded",W=p.TypeError,U=B>=51||!g((function(){var r=[];return r[R]=!1,r.concat()[0]!==r})),j=O("concat"),isConcatSpreadable=function(r){if(!w(r))return!1;var i=r[R];return void 0!==i?!!i:y(r)};u({target:"Array",proto:!0,forced:!U||!j},{concat:function concat(r){var i,o,u,p,g,y=_(this),w=P(y,0),O=0;for(i=-1,u=arguments.length;i<u;i++)if(isConcatSpreadable(g=-1===i?y:arguments[i])){if(O+(p=x(g))>D)throw W(N);for(o=0;o<p;o++,O++)o in g&&k(w,O,g[o])}else{if(O>=D)throw W(N);k(w,O++,g)}return w.length=O,w}})},545:function(r,i,o){var u=o(2109),p=o(1048),g=o(1223);u({target:"Array",proto:!0},{copyWithin:p}),g("copyWithin")},3290:function(r,i,o){var u=o(2109),p=o(1285),g=o(1223);u({target:"Array",proto:!0},{fill:p}),g("fill")},7327:function(r,i,o){"use strict";var u=o(2109),p=o(2092).filter;u({target:"Array",proto:!0,forced:!o(1194)("filter")},{filter:function filter(r){return p(this,r,arguments.length>1?arguments[1]:void 0)}})},1038:function(r,i,o){var u=o(2109),p=o(8457);u({target:"Array",stat:!0,forced:!o(7072)((function(r){Array.from(r)}))},{from:p})},6699:function(r,i,o){"use strict";var u=o(2109),p=o(1318).includes,g=o(1223);u({target:"Array",proto:!0},{includes:function includes(r){return p(this,r,arguments.length>1?arguments[1]:void 0)}}),g("includes")},6992:function(r,i,o){"use strict";var u=o(5656),p=o(1223),g=o(7497),y=o(9909),w=o(654),_="Array Iterator",x=y.set,k=y.getterFor(_);r.exports=w(Array,"Array",(function(r,i){x(this,{type:_,target:u(r),index:0,kind:i})}),(function(){var r=k(this),i=r.target,o=r.kind,u=r.index++;return!i||u>=i.length?(r.target=void 0,{value:void 0,done:!0}):"keys"==o?{value:u,done:!1}:"values"==o?{value:i[u],done:!1}:{value:[u,i[u]],done:!1}}),"values"),g.Arguments=g.Array,p("keys"),p("values"),p("entries")},9600:function(r,i,o){"use strict";var u=o(2109),p=o(1702),g=o(8361),y=o(5656),w=o(9341),_=p([].join),x=g!=Object,k=w("join",",");u({target:"Array",proto:!0,forced:x||!k},{join:function join(r){return _(y(this),void 0===r?",":r)}})},1249:function(r,i,o){"use strict";var u=o(2109),p=o(2092).map;u({target:"Array",proto:!0,forced:!o(1194)("map")},{map:function map(r){return p(this,r,arguments.length>1?arguments[1]:void 0)}})},7042:function(r,i,o){"use strict";var u=o(2109),p=o(7854),g=o(3157),y=o(4411),w=o(111),_=o(1400),x=o(6244),k=o(5656),P=o(6135),O=o(5112),I=o(1194),B=o(206),R=I("slice"),D=O("species"),N=p.Array,W=Math.max;u({target:"Array",proto:!0,forced:!R},{slice:function slice(r,i){var o,u,p,O=k(this),I=x(O),R=_(r,I),U=_(void 0===i?I:i,I);if(g(O)&&(o=O.constructor,(y(o)&&(o===N||g(o.prototype))||w(o)&&null===(o=o[D]))&&(o=void 0),o===N||void 0===o))return B(O,R,U);for(u=new(void 0===o?N:o)(W(U-R,0)),p=0;R<U;R++,p++)R in O&&P(u,p,O[R]);return u.length=p,u}})},2707:function(r,i,o){"use strict";var u=o(2109),p=o(1702),g=o(9662),y=o(7908),w=o(6244),_=o(1340),x=o(7293),k=o(4362),P=o(9341),O=o(8886),I=o(256),B=o(7392),R=o(8008),D=[],N=p(D.sort),W=p(D.push),U=x((function(){D.sort(void 0)})),j=x((function(){D.sort(null)})),G=P("sort"),X=!x((function(){if(B)return B<70;if(!(O&&O>3)){if(I)return!0;if(R)return R<603;var r,i,o,u,p="";for(r=65;r<76;r++){switch(i=String.fromCharCode(r),r){case 66:case 69:case 70:case 72:o=3;break;case 68:case 71:o=4;break;default:o=2}for(u=0;u<47;u++)D.push({k:i+u,v:o})}for(D.sort((function(r,i){return i.v-r.v})),u=0;u<D.length;u++)i=D[u].k.charAt(0),p.charAt(p.length-1)!==i&&(p+=i);return"DGBEFHACIJK"!==p}}));u({target:"Array",proto:!0,forced:U||!j||!G||!X},{sort:function sort(r){void 0!==r&&g(r);var i=y(this);if(X)return void 0===r?N(i):N(i,r);var o,u,p=[],x=w(i);for(u=0;u<x;u++)u in i&&W(p,i[u]);for(k(p,function(r){return function(i,o){return void 0===o?-1:void 0===i?1:void 0!==r?+r(i,o)||0:_(i)>_(o)?1:-1}}(r)),o=p.length,u=0;u<o;)i[u]=p[u++];for(;u<x;)delete i[u++];return i}})},561:function(r,i,o){"use strict";var u=o(2109),p=o(7854),g=o(1400),y=o(9303),w=o(6244),_=o(7908),x=o(5417),k=o(6135),P=o(1194)("splice"),O=p.TypeError,I=Math.max,B=Math.min,R=9007199254740991,D="Maximum allowed length exceeded";u({target:"Array",proto:!0,forced:!P},{splice:function splice(r,i){var o,u,p,P,N,W,U=_(this),j=w(U),G=g(r,j),X=arguments.length;if(0===X?o=u=0:1===X?(o=0,u=j-G):(o=X-2,u=B(I(y(i),0),j-G)),j+o-u>R)throw O(D);for(p=x(U,u),P=0;P<u;P++)(N=G+P)in U&&k(p,P,U[N]);if(p.length=u,o<u){for(P=G;P<j-u;P++)W=P+o,(N=P+u)in U?U[W]=U[N]:delete U[W];for(P=j;P>j-u+o;P--)delete U[P-1]}else if(o>u)for(P=j-u;P>G;P--)W=P+o-1,(N=P+u-1)in U?U[W]=U[N]:delete U[W];for(P=0;P<o;P++)U[P+G]=arguments[P+2];return U.length=j-u+o,p}})},6078:function(r,i,o){var u=o(2597),p=o(1320),g=o(8709),y=o(5112)("toPrimitive"),w=Date.prototype;u(w,y)||p(w,y,g)},8309:function(r,i,o){var u=o(9781),p=o(6530).EXISTS,g=o(1702),y=o(3070).f,w=Function.prototype,_=g(w.toString),x=/^\s*function ([^ (]*)/,k=g(x.exec);u&&!p&&y(w,"name",{configurable:!0,get:function(){try{return k(x,_(this))[1]}catch(r){return""}}})},5837:function(r,i,o){o(2109)({global:!0},{globalThis:o(7854)})},3706:function(r,i,o){var u=o(7854);o(8003)(u.JSON,"JSON",!0)},1532:function(r,i,o){"use strict";o(7710)("Map",(function(r){return function Map(){return r(this,arguments.length?arguments[0]:void 0)}}),o(5631))},2703:function(r,i,o){o(8003)(Math,"Math",!0)},9653:function(r,i,o){"use strict";var u=o(9781),p=o(7854),g=o(1702),y=o(4705),w=o(1320),_=o(2597),x=o(9587),k=o(7976),P=o(2190),O=o(7593),I=o(7293),B=o(8006).f,R=o(1236).f,D=o(3070).f,N=o(863),W=o(3111).trim,U="Number",j=p[U],G=j.prototype,X=p.TypeError,K=g("".slice),Y=g("".charCodeAt),toNumeric=function(r){var i=O(r,"number");return"bigint"==typeof i?i:toNumber(i)},toNumber=function(r){var i,o,u,p,g,y,w,_,x=O(r,"number");if(P(x))throw X("Cannot convert a Symbol value to a number");if("string"==typeof x&&x.length>2)if(x=W(x),43===(i=Y(x,0))||45===i){if(88===(o=Y(x,2))||120===o)return NaN}else if(48===i){switch(Y(x,1)){case 66:case 98:u=2,p=49;break;case 79:case 111:u=8,p=55;break;default:return+x}for(y=(g=K(x,2)).length,w=0;w<y;w++)if((_=Y(g,w))<48||_>p)return NaN;return parseInt(g,u)}return+x};if(y(U,!j(" 0o1")||!j("0b1")||j("+0x1"))){for(var J,$=function Number(r){var i=arguments.length<1?0:j(toNumeric(r)),o=this;return k(G,o)&&I((function(){N(o)}))?x(Object(i),o,$):i},ee=u?B(j):"MAX_VALUE,MIN_VALUE,NaN,NEGATIVE_INFINITY,POSITIVE_INFINITY,EPSILON,MAX_SAFE_INTEGER,MIN_SAFE_INTEGER,isFinite,isInteger,isNaN,isSafeInteger,parseFloat,parseInt,fromString,range".split(","),te=0;ee.length>te;te++)_(j,J=ee[te])&&!_($,J)&&D($,J,R(j,J));$.prototype=G,G.constructor=$,w(p,U,$)}},3299:function(r,i,o){o(2109)({target:"Number",stat:!0},{EPSILON:Math.pow(2,-52)})},5192:function(r,i,o){o(2109)({target:"Number",stat:!0},{isFinite:o(7023)})},3161:function(r,i,o){o(2109)({target:"Number",stat:!0},{isInteger:o(5988)})},6977:function(r,i,o){"use strict";var u=o(2109),p=o(7854),g=o(1702),y=o(9303),w=o(863),_=o(8415),x=o(7293),k=p.RangeError,P=p.String,O=Math.floor,I=g(_),B=g("".slice),R=g(1..toFixed),pow=function(r,i,o){return 0===i?o:i%2==1?pow(r,i-1,o*r):pow(r*r,i/2,o)},multiply=function(r,i,o){for(var u=-1,p=o;++u<6;)p+=i*r[u],r[u]=p%1e7,p=O(p/1e7)},divide=function(r,i){for(var o=6,u=0;--o>=0;)u+=r[o],r[o]=O(u/i),u=u%i*1e7},dataToString=function(r){for(var i=6,o="";--i>=0;)if(""!==o||0===i||0!==r[i]){var u=P(r[i]);o=""===o?u:o+I("0",7-u.length)+u}return o};u({target:"Number",proto:!0,forced:x((function(){return"0.000"!==R(8e-5,3)||"1"!==R(.9,0)||"1.25"!==R(1.255,2)||"1000000000000000128"!==R(0xde0b6b3a7640080,0)}))||!x((function(){R({})}))},{toFixed:function toFixed(r){var i,o,u,p,g=w(this),_=y(r),x=[0,0,0,0,0,0],O="",R="0";if(_<0||_>20)throw k("Incorrect fraction digits");if(g!=g)return"NaN";if(g<=-1e21||g>=1e21)return P(g);if(g<0&&(O="-",g=-g),g>1e-21)if(o=(i=function(r){for(var i=0,o=r;o>=4096;)i+=12,o/=4096;for(;o>=2;)i+=1,o/=2;return i}(g*pow(2,69,1))-69)<0?g*pow(2,-i,1):g/pow(2,i,1),o*=4503599627370496,(i=52-i)>0){for(multiply(x,0,o),u=_;u>=7;)multiply(x,1e7,0),u-=7;for(multiply(x,pow(10,u,1),0),u=i-1;u>=23;)divide(x,1<<23),u-=23;divide(x,1<<u),multiply(x,1,1),divide(x,2),R=dataToString(x)}else multiply(x,0,o),multiply(x,1<<-i,0),R=dataToString(x)+I("0",_);return R=_>0?O+((p=R.length)<=_?"0."+I("0",_-p)+R:B(R,0,p-_)+"."+B(R,p-_)):O+R}})},9601:function(r,i,o){var u=o(2109),p=o(1574);u({target:"Object",stat:!0,forced:Object.assign!==p},{assign:p})},3371:function(r,i,o){var u=o(2109),p=o(6677),g=o(7293),y=o(111),w=o(2423).onFreeze,_=Object.freeze;u({target:"Object",stat:!0,forced:g((function(){_(1)})),sham:!p},{freeze:function freeze(r){return _&&y(r)?_(w(r)):r}})},5003:function(r,i,o){var u=o(2109),p=o(7293),g=o(5656),y=o(1236).f,w=o(9781),_=p((function(){y(1)}));u({target:"Object",stat:!0,forced:!w||_,sham:!w},{getOwnPropertyDescriptor:function getOwnPropertyDescriptor(r,i){return y(g(r),i)}})},9337:function(r,i,o){var u=o(2109),p=o(9781),g=o(3887),y=o(5656),w=o(1236),_=o(6135);u({target:"Object",stat:!0,sham:!p},{getOwnPropertyDescriptors:function getOwnPropertyDescriptors(r){for(var i,o,u=y(r),p=w.f,x=g(u),k={},P=0;x.length>P;)void 0!==(o=p(u,i=x[P++]))&&_(k,i,o);return k}})},489:function(r,i,o){var u=o(2109),p=o(7293),g=o(7908),y=o(9518),w=o(8544);u({target:"Object",stat:!0,forced:p((function(){y(1)})),sham:!w},{getPrototypeOf:function getPrototypeOf(r){return y(g(r))}})},7941:function(r,i,o){var u=o(2109),p=o(7908),g=o(1956);u({target:"Object",stat:!0,forced:o(7293)((function(){g(1)}))},{keys:function keys(r){return g(p(r))}})},1539:function(r,i,o){var u=o(1694),p=o(1320),g=o(288);u||p(Object.prototype,"toString",g,{unsafe:!0})},2479:function(r,i,o){var u=o(2109),p=o(4699).values;u({target:"Object",stat:!0},{values:function values(r){return p(r)}})},7922:function(r,i,o){"use strict";var u=o(2109),p=o(6916),g=o(9662),y=o(8523),w=o(2534),_=o(408);u({target:"Promise",stat:!0},{allSettled:function allSettled(r){var i=this,o=y.f(i),u=o.resolve,x=o.reject,k=w((function(){var o=g(i.resolve),y=[],w=0,x=1;_(r,(function(r){var g=w++,_=!1;x++,p(o,i,r).then((function(r){_||(_=!0,y[g]={status:"fulfilled",value:r},--x||u(y))}),(function(r){_||(_=!0,y[g]={status:"rejected",reason:r},--x||u(y))}))})),--x||u(y)}));return k.error&&x(k.value),o.promise}})},4668:function(r,i,o){"use strict";var u=o(2109),p=o(9662),g=o(5005),y=o(6916),w=o(8523),_=o(2534),x=o(408),k="No one promise resolved";u({target:"Promise",stat:!0},{any:function any(r){var i=this,o=g("AggregateError"),u=w.f(i),P=u.resolve,O=u.reject,I=_((function(){var u=p(i.resolve),g=[],w=0,_=1,I=!1;x(r,(function(r){var p=w++,x=!1;_++,y(u,i,r).then((function(r){x||I||(I=!0,P(r))}),(function(r){x||I||(x=!0,g[p]=r,--_||O(new o(g,k)))}))})),--_||O(new o(g,k))}));return I.error&&O(I.value),u.promise}})},7727:function(r,i,o){"use strict";var u=o(2109),p=o(1913),g=o(3366),y=o(7293),w=o(5005),_=o(614),x=o(6707),k=o(9478),P=o(1320);if(u({target:"Promise",proto:!0,real:!0,forced:!!g&&y((function(){g.prototype.finally.call({then:function(){}},(function(){}))}))},{finally:function(r){var i=x(this,w("Promise")),o=_(r);return this.then(o?function(o){return k(i,r()).then((function(){return o}))}:r,o?function(o){return k(i,r()).then((function(){throw o}))}:r)}}),!p&&_(g)){var O=w("Promise").prototype.finally;g.prototype.finally!==O&&P(g.prototype,"finally",O,{unsafe:!0})}},8674:function(r,i,o){"use strict";var u,p,g,y,w=o(2109),_=o(1913),x=o(7854),k=o(5005),P=o(6916),O=o(3366),I=o(1320),B=o(2248),R=o(7674),D=o(8003),N=o(6340),W=o(9662),U=o(614),j=o(111),G=o(5787),X=o(2788),K=o(408),Y=o(7072),J=o(6707),$=o(261).set,ee=o(5948),te=o(9478),re=o(842),ne=o(8523),ie=o(2534),oe=o(9909),ae=o(4705),se=o(5112),ce=o(7871),le=o(5268),ue=o(7392),fe=se("species"),he="Promise",de=oe.get,pe=oe.set,ge=oe.getterFor(he),ye=O&&O.prototype,ve=O,me=ye,be=x.TypeError,we=x.document,_e=x.process,Se=ne.f,xe=Se,Ce=!!(we&&we.createEvent&&x.dispatchEvent),ke=U(x.PromiseRejectionEvent),Pe="unhandledrejection",Ae=!1,Ee=ae(he,(function(){var r=X(ve),i=r!==String(ve);if(!i&&66===ue)return!0;if(_&&!me.finally)return!0;if(ue>=51&&/native code/.test(r))return!1;var o=new ve((function(r){r(1)})),FakePromise=function(r){r((function(){}),(function(){}))};return(o.constructor={})[fe]=FakePromise,!(Ae=o.then((function(){}))instanceof FakePromise)||!i&&ce&&!ke})),Te=Ee||!Y((function(r){ve.all(r).catch((function(){}))})),isThenable=function(r){var i;return!(!j(r)||!U(i=r.then))&&i},notify=function(r,i){if(!r.notified){r.notified=!0;var o=r.reactions;ee((function(){for(var u=r.value,p=1==r.state,g=0;o.length>g;){var y,w,_,x=o[g++],k=p?x.ok:x.fail,O=x.resolve,I=x.reject,B=x.domain;try{k?(p||(2===r.rejection&&onHandleUnhandled(r),r.rejection=1),!0===k?y=u:(B&&B.enter(),y=k(u),B&&(B.exit(),_=!0)),y===x.promise?I(be("Promise-chain cycle")):(w=isThenable(y))?P(w,y,O,I):O(y)):I(u)}catch(r){B&&!_&&B.exit(),I(r)}}r.reactions=[],r.notified=!1,i&&!r.rejection&&onUnhandled(r)}))}},dispatchEvent=function(r,i,o){var u,p;Ce?((u=we.createEvent("Event")).promise=i,u.reason=o,u.initEvent(r,!1,!0),x.dispatchEvent(u)):u={promise:i,reason:o},!ke&&(p=x["on"+r])?p(u):r===Pe&&re("Unhandled promise rejection",o)},onUnhandled=function(r){P($,x,(function(){var i,o=r.facade,u=r.value;if(isUnhandled(r)&&(i=ie((function(){le?_e.emit("unhandledRejection",u,o):dispatchEvent(Pe,o,u)})),r.rejection=le||isUnhandled(r)?2:1,i.error))throw i.value}))},isUnhandled=function(r){return 1!==r.rejection&&!r.parent},onHandleUnhandled=function(r){P($,x,(function(){var i=r.facade;le?_e.emit("rejectionHandled",i):dispatchEvent("rejectionhandled",i,r.value)}))},bind=function(r,i,o){return function(u){r(i,u,o)}},internalReject=function(r,i,o){r.done||(r.done=!0,o&&(r=o),r.value=i,r.state=2,notify(r,!0))},internalResolve=function(r,i,o){if(!r.done){r.done=!0,o&&(r=o);try{if(r.facade===i)throw be("Promise can't be resolved itself");var u=isThenable(i);u?ee((function(){var o={done:!1};try{P(u,i,bind(internalResolve,o,r),bind(internalReject,o,r))}catch(i){internalReject(o,i,r)}})):(r.value=i,r.state=1,notify(r,!1))}catch(i){internalReject({done:!1},i,r)}}};if(Ee&&(me=(ve=function Promise(r){G(this,me),W(r),P(u,this);var i=de(this);try{r(bind(internalResolve,i),bind(internalReject,i))}catch(r){internalReject(i,r)}}).prototype,(u=function Promise(r){pe(this,{type:he,done:!1,notified:!1,parent:!1,reactions:[],rejection:!1,state:0,value:void 0})}).prototype=B(me,{then:function then(r,i){var o=ge(this),u=o.reactions,p=Se(J(this,ve));return p.ok=!U(r)||r,p.fail=U(i)&&i,p.domain=le?_e.domain:void 0,o.parent=!0,u[u.length]=p,0!=o.state&&notify(o,!1),p.promise},catch:function(r){return this.then(void 0,r)}}),p=function(){var r=new u,i=de(r);this.promise=r,this.resolve=bind(internalResolve,i),this.reject=bind(internalReject,i)},ne.f=Se=function(r){return r===ve||r===g?new p(r):xe(r)},!_&&U(O)&&ye!==Object.prototype)){y=ye.then,Ae||(I(ye,"then",(function then(r,i){var o=this;return new ve((function(r,i){P(y,o,r,i)})).then(r,i)}),{unsafe:!0}),I(ye,"catch",me.catch,{unsafe:!0}));try{delete ye.constructor}catch(r){}R&&R(ye,me)}w({global:!0,wrap:!0,forced:Ee},{Promise:ve}),D(ve,he,!1,!0),N(he),g=k(he),w({target:he,stat:!0,forced:Ee},{reject:function reject(r){var i=Se(this);return P(i.reject,void 0,r),i.promise}}),w({target:he,stat:!0,forced:_||Ee},{resolve:function resolve(r){return te(_&&this===g?ve:this,r)}}),w({target:he,stat:!0,forced:Te},{all:function all(r){var i=this,o=Se(i),u=o.resolve,p=o.reject,g=ie((function(){var o=W(i.resolve),g=[],y=0,w=1;K(r,(function(r){var _=y++,x=!1;w++,P(o,i,r).then((function(r){x||(x=!0,g[_]=r,--w||u(g))}),p)})),--w||u(g)}));return g.error&&p(g.value),o.promise},race:function race(r){var i=this,o=Se(i),u=o.reject,p=ie((function(){var p=W(i.resolve);K(r,(function(r){P(p,i,r).then(o.resolve,u)}))}));return p.error&&u(p.value),o.promise}})},2419:function(r,i,o){var u=o(2109),p=o(5005),g=o(2104),y=o(7065),w=o(9483),_=o(9670),x=o(111),k=o(30),P=o(7293),O=p("Reflect","construct"),I=Object.prototype,B=[].push,R=P((function(){function F(){}return!(O((function(){}),[],F)instanceof F)})),D=!P((function(){O((function(){}))})),N=R||D;u({target:"Reflect",stat:!0,forced:N,sham:N},{construct:function construct(r,i){w(r),_(i);var o=arguments.length<3?r:w(arguments[2]);if(D&&!R)return O(r,i,o);if(r==o){switch(i.length){case 0:return new r;case 1:return new r(i[0]);case 2:return new r(i[0],i[1]);case 3:return new r(i[0],i[1],i[2]);case 4:return new r(i[0],i[1],i[2],i[3])}var u=[null];return g(B,u,i),new(g(y,r,u))}var p=o.prototype,P=k(x(p)?p:I),N=g(r,P,i);return x(N)?N:P}})},4916:function(r,i,o){"use strict";var u=o(2109),p=o(2261);u({target:"RegExp",proto:!0,forced:/./.exec!==p},{exec:p})},2087:function(r,i,o){var u=o(9781),p=o(3070),g=o(7066),y=o(7293),w=RegExp.prototype;u&&y((function(){return"sy"!==Object.getOwnPropertyDescriptor(w,"flags").get.call({dotAll:!0,sticky:!0})}))&&p.f(w,"flags",{configurable:!0,get:g})},9714:function(r,i,o){"use strict";var u=o(1702),p=o(6530).PROPER,g=o(1320),y=o(9670),w=o(7976),_=o(1340),x=o(7293),k=o(7066),P="toString",O=RegExp.prototype,I=O[P],B=u(k),R=x((function(){return"/a/b"!=I.call({source:"a",flags:"b"})})),D=p&&I.name!=P;(R||D)&&g(RegExp.prototype,P,(function toString(){var r=y(this),i=_(r.source),o=r.flags;return"/"+i+"/"+_(void 0===o&&w(O,r)&&!("flags"in O)?B(r):o)}),{unsafe:!0})},189:function(r,i,o){"use strict";o(7710)("Set",(function(r){return function Set(){return r(this,arguments.length?arguments[0]:void 0)}}),o(5631))},9841:function(r,i,o){"use strict";var u=o(2109),p=o(8710).codeAt;u({target:"String",proto:!0},{codePointAt:function codePointAt(r){return p(this,r)}})},4953:function(r,i,o){var u=o(2109),p=o(7854),g=o(1702),y=o(1400),w=p.RangeError,_=String.fromCharCode,x=String.fromCodePoint,k=g([].join);u({target:"String",stat:!0,forced:!!x&&1!=x.length},{fromCodePoint:function fromCodePoint(r){for(var i,o=[],u=arguments.length,p=0;u>p;){if(i=+arguments[p++],y(i,1114111)!==i)throw w(i+" is not a valid code point");o[p]=i<65536?_(i):_(55296+((i-=65536)>>10),i%1024+56320)}return k(o,"")}})},2023:function(r,i,o){"use strict";var u=o(2109),p=o(1702),g=o(3929),y=o(4488),w=o(1340),_=o(4964),x=p("".indexOf);u({target:"String",proto:!0,forced:!_("includes")},{includes:function includes(r){return!!~x(w(y(this)),w(g(r)),arguments.length>1?arguments[1]:void 0)}})},8734:function(r,i,o){"use strict";var u=o(2109),p=o(4230);u({target:"String",proto:!0,forced:o(3429)("italics")},{italics:function italics(){return p(this,"i","","")}})},8783:function(r,i,o){"use strict";var u=o(8710).charAt,p=o(1340),g=o(9909),y=o(654),w="String Iterator",_=g.set,x=g.getterFor(w);y(String,"String",(function(r){_(this,{type:w,string:p(r),index:0})}),(function next(){var r,i=x(this),o=i.string,p=i.index;return p>=o.length?{value:void 0,done:!0}:(r=u(o,p),i.index+=r.length,{value:r,done:!1})}))},9254:function(r,i,o){"use strict";var u=o(2109),p=o(4230);u({target:"String",proto:!0,forced:o(3429)("link")},{link:function link(r){return p(this,"a","href",r)}})},6373:function(r,i,o){"use strict";var u=o(2109),p=o(7854),g=o(6916),y=o(1702),w=o(4994),_=o(4488),x=o(7466),k=o(1340),P=o(9670),O=o(4326),I=o(7976),B=o(7850),R=o(7066),D=o(8173),N=o(1320),W=o(7293),U=o(5112),j=o(6707),G=o(1530),X=o(7651),K=o(9909),Y=o(1913),J=U("matchAll"),$="RegExp String",ee=$+" Iterator",te=K.set,re=K.getterFor(ee),ne=RegExp.prototype,ie=p.TypeError,oe=y(R),ae=y("".indexOf),se=y("".matchAll),ce=!!se&&!W((function(){se("a",/./)})),le=w((function RegExpStringIterator(r,i,o,u){te(this,{type:ee,regexp:r,string:i,global:o,unicode:u,done:!1})}),$,(function next(){var r=re(this);if(r.done)return{value:void 0,done:!0};var i=r.regexp,o=r.string,u=X(i,o);return null===u?{value:void 0,done:r.done=!0}:r.global?(""===k(u[0])&&(i.lastIndex=G(o,x(i.lastIndex),r.unicode)),{value:u,done:!1}):(r.done=!0,{value:u,done:!1})})),$matchAll=function(r){var i,o,u,p,g,y,w=P(this),_=k(r);return i=j(w,RegExp),void 0===(o=w.flags)&&I(ne,w)&&!("flags"in ne)&&(o=oe(w)),u=void 0===o?"":k(o),p=new i(i===RegExp?w.source:w,u),g=!!~ae(u,"g"),y=!!~ae(u,"u"),p.lastIndex=x(w.lastIndex),new le(p,_,g,y)};u({target:"String",proto:!0,forced:ce},{matchAll:function matchAll(r){var i,o,u,p,y=_(this);if(null!=r){if(B(r)&&(i=k(_("flags"in ne?r.flags:oe(r))),!~ae(i,"g")))throw ie("`.matchAll` does not allow non-global regexes");if(ce)return se(y,r);if(void 0===(u=D(r,J))&&Y&&"RegExp"==O(r)&&(u=$matchAll),u)return g(u,r,y)}else if(ce)return se(y,r);return o=k(y),p=new RegExp(r,"g"),Y?g($matchAll,p,o):p[J](o)}}),Y||J in ne||N(ne,J,$matchAll)},4723:function(r,i,o){"use strict";var u=o(6916),p=o(7007),g=o(9670),y=o(7466),w=o(1340),_=o(4488),x=o(8173),k=o(1530),P=o(7651);p("match",(function(r,i,o){return[function match(i){var o=_(this),p=null==i?void 0:x(i,r);return p?u(p,i,o):new RegExp(i)[r](w(o))},function(r){var u=g(this),p=w(r),_=o(i,u,p);if(_.done)return _.value;if(!u.global)return P(u,p);var x=u.unicode;u.lastIndex=0;for(var O,I=[],B=0;null!==(O=P(u,p));){var R=w(O[0]);I[B]=R,""===R&&(u.lastIndex=k(p,y(u.lastIndex),x)),B++}return 0===B?null:I}]}))},2481:function(r,i,o){o(2109)({target:"String",proto:!0},{repeat:o(8415)})},5306:function(r,i,o){"use strict";var u=o(2104),p=o(6916),g=o(1702),y=o(7007),w=o(7293),_=o(9670),x=o(614),k=o(9303),P=o(7466),O=o(1340),I=o(4488),B=o(1530),R=o(8173),D=o(647),N=o(7651),W=o(5112)("replace"),U=Math.max,j=Math.min,G=g([].concat),X=g([].push),K=g("".indexOf),Y=g("".slice),J="$0"==="a".replace(/./,"$0"),$=!!/./[W]&&""===/./[W]("a","$0");y("replace",(function(r,i,o){var g=$?"$":"$0";return[function replace(r,o){var u=I(this),g=null==r?void 0:R(r,W);return g?p(g,r,u,o):p(i,O(u),r,o)},function(r,p){var y=_(this),w=O(r);if("string"==typeof p&&-1===K(p,g)&&-1===K(p,"$<")){var I=o(i,y,w,p);if(I.done)return I.value}var R=x(p);R||(p=O(p));var W=y.global;if(W){var J=y.unicode;y.lastIndex=0}for(var $=[];;){var ee=N(y,w);if(null===ee)break;if(X($,ee),!W)break;""===O(ee[0])&&(y.lastIndex=B(w,P(y.lastIndex),J))}for(var te,re="",ne=0,ie=0;ie<$.length;ie++){for(var oe=O((ee=$[ie])[0]),ae=U(j(k(ee.index),w.length),0),se=[],ce=1;ce<ee.length;ce++)X(se,void 0===(te=ee[ce])?te:String(te));var le=ee.groups;if(R){var ue=G([oe],se,ae,w);void 0!==le&&X(ue,le);var fe=O(u(p,void 0,ue))}else fe=D(oe,w,ae,se,le,p);ae>=ne&&(re+=Y(w,ne,ae)+fe,ne=ae+oe.length)}return re+Y(w,ne)}]}),!!w((function(){var r=/./;return r.exec=function(){var r=[];return r.groups={a:"7"},r},"7"!=="".replace(r,"$<a>")}))||!J||$)},3123:function(r,i,o){"use strict";var u=o(2104),p=o(6916),g=o(1702),y=o(7007),w=o(7850),_=o(9670),x=o(4488),k=o(6707),P=o(1530),O=o(7466),I=o(1340),B=o(8173),R=o(206),D=o(7651),N=o(2261),W=o(2999),U=o(7293),j=W.UNSUPPORTED_Y,G=4294967295,X=Math.min,K=[].push,Y=g(/./.exec),J=g(K),$=g("".slice),ee=!U((function(){var r=/(?:)/,i=r.exec;r.exec=function(){return i.apply(this,arguments)};var o="ab".split(r);return 2!==o.length||"a"!==o[0]||"b"!==o[1]}));y("split",(function(r,i,o){var g;return g="c"=="abbc".split(/(b)*/)[1]||4!="test".split(/(?:)/,-1).length||2!="ab".split(/(?:ab)*/).length||4!=".".split(/(.?)(.?)/).length||".".split(/()()/).length>1||"".split(/.?/).length?function(r,o){var g=I(x(this)),y=void 0===o?G:o>>>0;if(0===y)return[];if(void 0===r)return[g];if(!w(r))return p(i,g,r,y);for(var _,k,P,O=[],B=(r.ignoreCase?"i":"")+(r.multiline?"m":"")+(r.unicode?"u":"")+(r.sticky?"y":""),D=0,W=new RegExp(r.source,B+"g");(_=p(N,W,g))&&!((k=W.lastIndex)>D&&(J(O,$(g,D,_.index)),_.length>1&&_.index<g.length&&u(K,O,R(_,1)),P=_[0].length,D=k,O.length>=y));)W.lastIndex===_.index&&W.lastIndex++;return D===g.length?!P&&Y(W,"")||J(O,""):J(O,$(g,D)),O.length>y?R(O,0,y):O}:"0".split(void 0,0).length?function(r,o){return void 0===r&&0===o?[]:p(i,this,r,o)}:i,[function split(i,o){var u=x(this),y=null==i?void 0:B(i,r);return y?p(y,i,u,o):p(g,I(u),i,o)},function(r,u){var p=_(this),y=I(r),w=o(g,p,y,u,g!==i);if(w.done)return w.value;var x=k(p,RegExp),B=p.unicode,R=(p.ignoreCase?"i":"")+(p.multiline?"m":"")+(p.unicode?"u":"")+(j?"g":"y"),N=new x(j?"^(?:"+p.source+")":p,R),W=void 0===u?G:u>>>0;if(0===W)return[];if(0===y.length)return null===D(N,y)?[y]:[];for(var U=0,K=0,Y=[];K<y.length;){N.lastIndex=j?0:K;var ee,te=D(N,j?$(y,K):y);if(null===te||(ee=X(O(N.lastIndex+(j?K:0)),y.length))===U)K=P(y,K,B);else{if(J(Y,$(y,U,K)),Y.length===W)return Y;for(var re=1;re<=te.length-1;re++)if(J(Y,te[re]),Y.length===W)return Y;K=U=ee}}return J(Y,$(y,U)),Y}]}),!ee,j)},7397:function(r,i,o){"use strict";var u=o(2109),p=o(4230);u({target:"String",proto:!0,forced:o(3429)("strike")},{strike:function strike(){return p(this,"strike","","")}})},3210:function(r,i,o){"use strict";var u=o(2109),p=o(3111).trim;u({target:"String",proto:!0,forced:o(6091)("trim")},{trim:function trim(){return p(this)}})},2443:function(r,i,o){o(7235)("asyncIterator")},1817:function(r,i,o){"use strict";var u=o(2109),p=o(9781),g=o(7854),y=o(1702),w=o(2597),_=o(614),x=o(7976),k=o(1340),P=o(3070).f,O=o(9920),I=g.Symbol,B=I&&I.prototype;if(p&&_(I)&&(!("description"in B)||void 0!==I().description)){var R={},D=function Symbol(){var r=arguments.length<1||void 0===arguments[0]?void 0:k(arguments[0]),i=x(B,this)?new I(r):void 0===r?I():I(r);return""===r&&(R[i]=!0),i};O(D,I),D.prototype=B,B.constructor=D;var N="Symbol(test)"==String(I("test")),W=y(B.toString),U=y(B.valueOf),j=/^Symbol\((.*)\)[^)]+$/,G=y("".replace),X=y("".slice);P(B,"description",{configurable:!0,get:function description(){var r=U(this),i=W(r);if(w(R,r))return"";var o=N?X(i,7,-1):G(i,j,"$1");return""===o?void 0:o}}),u({global:!0,forced:!0},{Symbol:D})}},2165:function(r,i,o){o(7235)("iterator")},2526:function(r,i,o){"use strict";var u=o(2109),p=o(7854),g=o(5005),y=o(2104),w=o(6916),_=o(1702),x=o(1913),k=o(9781),P=o(133),O=o(7293),I=o(2597),B=o(3157),R=o(614),D=o(111),N=o(7976),W=o(2190),U=o(9670),j=o(7908),G=o(5656),X=o(4948),K=o(1340),Y=o(9114),J=o(30),$=o(1956),ee=o(8006),te=o(1156),re=o(5181),ne=o(1236),ie=o(3070),oe=o(5296),ae=o(206),se=o(1320),ce=o(2309),le=o(6200),ue=o(3501),fe=o(9711),he=o(5112),de=o(6061),pe=o(7235),ge=o(8003),ye=o(9909),ve=o(2092).forEach,me=le("hidden"),be="Symbol",we="prototype",_e=he("toPrimitive"),Se=ye.set,xe=ye.getterFor(be),Ce=Object[we],ke=p.Symbol,Pe=ke&&ke[we],Ae=p.TypeError,Ee=p.QObject,Te=g("JSON","stringify"),Oe=ne.f,Ie=ie.f,Be=te.f,Fe=oe.f,Le=_([].push),Re=ce("symbols"),De=ce("op-symbols"),Me=ce("string-to-symbol-registry"),Ne=ce("symbol-to-string-registry"),We=ce("wks"),ze=!Ee||!Ee[we]||!Ee[we].findChild,Ue=k&&O((function(){return 7!=J(Ie({},"a",{get:function(){return Ie(this,"a",{value:7}).a}})).a}))?function(r,i,o){var u=Oe(Ce,i);u&&delete Ce[i],Ie(r,i,o),u&&r!==Ce&&Ie(Ce,i,u)}:Ie,wrap=function(r,i){var o=Re[r]=J(Pe);return Se(o,{type:be,tag:r,description:i}),k||(o.description=i),o},je=function defineProperty(r,i,o){r===Ce&&je(De,i,o),U(r);var u=X(i);return U(o),I(Re,u)?(o.enumerable?(I(r,me)&&r[me][u]&&(r[me][u]=!1),o=J(o,{enumerable:Y(0,!1)})):(I(r,me)||Ie(r,me,Y(1,{})),r[me][u]=!0),Ue(r,u,o)):Ie(r,u,o)},Ge=function defineProperties(r,i){U(r);var o=G(i),u=$(o).concat(Xe(o));return ve(u,(function(i){k&&!w(Ve,o,i)||je(r,i,o[i])})),r},Ve=function propertyIsEnumerable(r){var i=X(r),o=w(Fe,this,i);return!(this===Ce&&I(Re,i)&&!I(De,i))&&(!(o||!I(this,i)||!I(Re,i)||I(this,me)&&this[me][i])||o)},He=function getOwnPropertyDescriptor(r,i){var o=G(r),u=X(i);if(o!==Ce||!I(Re,u)||I(De,u)){var p=Oe(o,u);return!p||!I(Re,u)||I(o,me)&&o[me][u]||(p.enumerable=!0),p}},qe=function getOwnPropertyNames(r){var i=Be(G(r)),o=[];return ve(i,(function(r){I(Re,r)||I(ue,r)||Le(o,r)})),o},Xe=function getOwnPropertySymbols(r){var i=r===Ce,o=Be(i?De:G(r)),u=[];return ve(o,(function(r){!I(Re,r)||i&&!I(Ce,r)||Le(u,Re[r])})),u};(P||(ke=function Symbol(){if(N(Pe,this))throw Ae("Symbol is not a constructor");var r=arguments.length&&void 0!==arguments[0]?K(arguments[0]):void 0,i=fe(r),setter=function(r){this===Ce&&w(setter,De,r),I(this,me)&&I(this[me],i)&&(this[me][i]=!1),Ue(this,i,Y(1,r))};return k&&ze&&Ue(Ce,i,{configurable:!0,set:setter}),wrap(i,r)},se(Pe=ke[we],"toString",(function toString(){return xe(this).tag})),se(ke,"withoutSetter",(function(r){return wrap(fe(r),r)})),oe.f=Ve,ie.f=je,ne.f=He,ee.f=te.f=qe,re.f=Xe,de.f=function(r){return wrap(he(r),r)},k&&(Ie(Pe,"description",{configurable:!0,get:function description(){return xe(this).description}}),x||se(Ce,"propertyIsEnumerable",Ve,{unsafe:!0}))),u({global:!0,wrap:!0,forced:!P,sham:!P},{Symbol:ke}),ve($(We),(function(r){pe(r)})),u({target:be,stat:!0,forced:!P},{for:function(r){var i=K(r);if(I(Me,i))return Me[i];var o=ke(i);return Me[i]=o,Ne[o]=i,o},keyFor:function keyFor(r){if(!W(r))throw Ae(r+" is not a symbol");if(I(Ne,r))return Ne[r]},useSetter:function(){ze=!0},useSimple:function(){ze=!1}}),u({target:"Object",stat:!0,forced:!P,sham:!k},{create:function create(r,i){return void 0===i?J(r):Ge(J(r),i)},defineProperty:je,defineProperties:Ge,getOwnPropertyDescriptor:He}),u({target:"Object",stat:!0,forced:!P},{getOwnPropertyNames:qe,getOwnPropertySymbols:Xe}),u({target:"Object",stat:!0,forced:O((function(){re.f(1)}))},{getOwnPropertySymbols:function getOwnPropertySymbols(r){return re.f(j(r))}}),Te)&&u({target:"JSON",stat:!0,forced:!P||O((function(){var r=ke();return"[null]"!=Te([r])||"{}"!=Te({a:r})||"{}"!=Te(Object(r))}))},{stringify:function stringify(r,i,o){var u=ae(arguments),p=i;if((D(i)||void 0!==r)&&!W(r))return B(i)||(i=function(r,i){if(R(p)&&(i=w(p,this,r,i)),!W(i))return i}),u[1]=i,y(Te,null,u)}});if(!Pe[_e]){var Ze=Pe.valueOf;se(Pe,_e,(function(r){return w(Ze,this)}))}ge(ke,be),ue[me]=!0},6649:function(r,i,o){o(7235)("toPrimitive")},3680:function(r,i,o){o(7235)("toStringTag")},2990:function(r,i,o){"use strict";var u=o(1702),p=o(2094),g=u(o(1048)),y=p.aTypedArray;(0,p.exportTypedArrayMethod)("copyWithin",(function copyWithin(r,i){return g(y(this),r,i,arguments.length>2?arguments[2]:void 0)}))},8927:function(r,i,o){"use strict";var u=o(2094),p=o(2092).every,g=u.aTypedArray;(0,u.exportTypedArrayMethod)("every",(function every(r){return p(g(this),r,arguments.length>1?arguments[1]:void 0)}))},3105:function(r,i,o){"use strict";var u=o(2094),p=o(6916),g=o(1285),y=u.aTypedArray;(0,u.exportTypedArrayMethod)("fill",(function fill(r){var i=arguments.length;return p(g,y(this),r,i>1?arguments[1]:void 0,i>2?arguments[2]:void 0)}))},5035:function(r,i,o){"use strict";var u=o(2094),p=o(2092).filter,g=o(3074),y=u.aTypedArray;(0,u.exportTypedArrayMethod)("filter",(function filter(r){var i=p(y(this),r,arguments.length>1?arguments[1]:void 0);return g(this,i)}))},7174:function(r,i,o){"use strict";var u=o(2094),p=o(2092).findIndex,g=u.aTypedArray;(0,u.exportTypedArrayMethod)("findIndex",(function findIndex(r){return p(g(this),r,arguments.length>1?arguments[1]:void 0)}))},4345:function(r,i,o){"use strict";var u=o(2094),p=o(2092).find,g=u.aTypedArray;(0,u.exportTypedArrayMethod)("find",(function find(r){return p(g(this),r,arguments.length>1?arguments[1]:void 0)}))},4197:function(r,i,o){o(9843)("Float32",(function(r){return function Float32Array(i,o,u){return r(this,i,o,u)}}))},6495:function(r,i,o){o(9843)("Float64",(function(r){return function Float64Array(i,o,u){return r(this,i,o,u)}}))},2846:function(r,i,o){"use strict";var u=o(2094),p=o(2092).forEach,g=u.aTypedArray;(0,u.exportTypedArrayMethod)("forEach",(function forEach(r){p(g(this),r,arguments.length>1?arguments[1]:void 0)}))},8145:function(r,i,o){"use strict";var u=o(3832);(0,o(2094).exportTypedArrayStaticMethod)("from",o(7321),u)},4731:function(r,i,o){"use strict";var u=o(2094),p=o(1318).includes,g=u.aTypedArray;(0,u.exportTypedArrayMethod)("includes",(function includes(r){return p(g(this),r,arguments.length>1?arguments[1]:void 0)}))},7209:function(r,i,o){"use strict";var u=o(2094),p=o(1318).indexOf,g=u.aTypedArray;(0,u.exportTypedArrayMethod)("indexOf",(function indexOf(r){return p(g(this),r,arguments.length>1?arguments[1]:void 0)}))},5109:function(r,i,o){o(9843)("Int16",(function(r){return function Int16Array(i,o,u){return r(this,i,o,u)}}))},5125:function(r,i,o){o(9843)("Int32",(function(r){return function Int32Array(i,o,u){return r(this,i,o,u)}}))},7145:function(r,i,o){o(9843)("Int8",(function(r){return function Int8Array(i,o,u){return r(this,i,o,u)}}))},6319:function(r,i,o){"use strict";var u=o(7854),p=o(1702),g=o(6530).PROPER,y=o(2094),w=o(6992),_=o(5112)("iterator"),x=u.Uint8Array,k=p(w.values),P=p(w.keys),O=p(w.entries),I=y.aTypedArray,B=y.exportTypedArrayMethod,R=x&&x.prototype[_],D=!!R&&"values"===R.name,N=function values(){return k(I(this))};B("entries",(function entries(){return O(I(this))})),B("keys",(function keys(){return P(I(this))})),B("values",N,g&&!D),B(_,N,g&&!D)},8867:function(r,i,o){"use strict";var u=o(2094),p=o(1702),g=u.aTypedArray,y=u.exportTypedArrayMethod,w=p([].join);y("join",(function join(r){return w(g(this),r)}))},7789:function(r,i,o){"use strict";var u=o(2094),p=o(2104),g=o(6583),y=u.aTypedArray;(0,u.exportTypedArrayMethod)("lastIndexOf",(function lastIndexOf(r){var i=arguments.length;return p(g,y(this),i>1?[r,arguments[1]]:[r])}))},3739:function(r,i,o){"use strict";var u=o(2094),p=o(2092).map,g=o(6304),y=u.aTypedArray;(0,u.exportTypedArrayMethod)("map",(function map(r){return p(y(this),r,arguments.length>1?arguments[1]:void 0,(function(r,i){return new(g(r))(i)}))}))},4483:function(r,i,o){"use strict";var u=o(2094),p=o(3671).right,g=u.aTypedArray;(0,u.exportTypedArrayMethod)("reduceRight",(function reduceRight(r){var i=arguments.length;return p(g(this),r,i,i>1?arguments[1]:void 0)}))},9368:function(r,i,o){"use strict";var u=o(2094),p=o(3671).left,g=u.aTypedArray;(0,u.exportTypedArrayMethod)("reduce",(function reduce(r){var i=arguments.length;return p(g(this),r,i,i>1?arguments[1]:void 0)}))},2056:function(r,i,o){"use strict";var u=o(2094),p=u.aTypedArray,g=u.exportTypedArrayMethod,y=Math.floor;g("reverse",(function reverse(){for(var r,i=this,o=p(i).length,u=y(o/2),g=0;g<u;)r=i[g],i[g++]=i[--o],i[o]=r;return i}))},3462:function(r,i,o){"use strict";var u=o(7854),p=o(2094),g=o(6244),y=o(4590),w=o(7908),_=o(7293),x=u.RangeError,k=p.aTypedArray;(0,p.exportTypedArrayMethod)("set",(function set(r){k(this);var i=y(arguments.length>1?arguments[1]:void 0,1),o=this.length,u=w(r),p=g(u),_=0;if(p+i>o)throw x("Wrong length");for(;_<p;)this[i+_]=u[_++]}),_((function(){new Int8Array(1).set({})})))},678:function(r,i,o){"use strict";var u=o(2094),p=o(6304),g=o(7293),y=o(206),w=u.aTypedArray;(0,u.exportTypedArrayMethod)("slice",(function slice(r,i){for(var o=y(w(this),r,i),u=p(this),g=0,_=o.length,x=new u(_);_>g;)x[g]=o[g++];return x}),g((function(){new Int8Array(1).slice()})))},7462:function(r,i,o){"use strict";var u=o(2094),p=o(2092).some,g=u.aTypedArray;(0,u.exportTypedArrayMethod)("some",(function some(r){return p(g(this),r,arguments.length>1?arguments[1]:void 0)}))},3824:function(r,i,o){"use strict";var u=o(7854),p=o(1702),g=o(7293),y=o(9662),w=o(4362),_=o(2094),x=o(8886),k=o(256),P=o(7392),O=o(8008),I=u.Array,B=_.aTypedArray,R=_.exportTypedArrayMethod,D=u.Uint16Array,N=D&&p(D.prototype.sort),W=!(!N||g((function(){N(new D(2),null)}))&&g((function(){N(new D(2),{})}))),U=!!N&&!g((function(){if(P)return P<74;if(x)return x<67;if(k)return!0;if(O)return O<602;var r,i,o=new D(516),u=I(516);for(r=0;r<516;r++)i=r%4,o[r]=515-r,u[r]=r-2*i+3;for(N(o,(function(r,i){return(r/4|0)-(i/4|0)})),r=0;r<516;r++)if(o[r]!==u[r])return!0}));R("sort",(function sort(r){return void 0!==r&&y(r),U?N(this,r):w(B(this),function(r){return function(i,o){return void 0!==r?+r(i,o)||0:o!=o?-1:i!=i?1:0===i&&0===o?1/i>0&&1/o<0?1:-1:i>o}}(r))}),!U||W)},5021:function(r,i,o){"use strict";var u=o(2094),p=o(7466),g=o(1400),y=o(6304),w=u.aTypedArray;(0,u.exportTypedArrayMethod)("subarray",(function subarray(r,i){var o=w(this),u=o.length,_=g(r,u);return new(y(o))(o.buffer,o.byteOffset+_*o.BYTES_PER_ELEMENT,p((void 0===i?u:g(i,u))-_))}))},2974:function(r,i,o){"use strict";var u=o(7854),p=o(2104),g=o(2094),y=o(7293),w=o(206),_=u.Int8Array,x=g.aTypedArray,k=g.exportTypedArrayMethod,P=[].toLocaleString,O=!!_&&y((function(){P.call(new _(1))}));k("toLocaleString",(function toLocaleString(){return p(P,O?w(x(this)):x(this),w(arguments))}),y((function(){return[1,2].toLocaleString()!=new _([1,2]).toLocaleString()}))||!y((function(){_.prototype.toLocaleString.call([1,2])})))},5016:function(r,i,o){"use strict";var u=o(2094).exportTypedArrayMethod,p=o(7293),g=o(7854),y=o(1702),w=g.Uint8Array,_=w&&w.prototype||{},x=[].toString,k=y([].join);p((function(){x.call({})}))&&(x=function toString(){return k(this)});var P=_.toString!=x;u("toString",x,P)},8255:function(r,i,o){o(9843)("Uint16",(function(r){return function Uint16Array(i,o,u){return r(this,i,o,u)}}))},9135:function(r,i,o){o(9843)("Uint32",(function(r){return function Uint32Array(i,o,u){return r(this,i,o,u)}}))},2472:function(r,i,o){o(9843)("Uint8",(function(r){return function Uint8Array(i,o,u){return r(this,i,o,u)}}))},9743:function(r,i,o){o(9843)("Uint8",(function(r){return function Uint8ClampedArray(i,o,u){return r(this,i,o,u)}}),!0)},8628:function(r,i,o){o(9170)},5743:function(r,i,o){o(5837)},7314:function(r,i,o){o(7922)},6290:function(r,i,o){o(4668)},7479:function(r,i,o){"use strict";var u=o(2109),p=o(8523),g=o(2534);u({target:"Promise",stat:!0},{try:function(r){var i=p.f(this),o=g(r);return(o.error?i.reject:i.resolve)(o.value),i.promise}})},3728:function(r,i,o){o(6373)},4747:function(r,i,o){var u=o(7854),p=o(8324),g=o(8509),y=o(8533),w=o(8880),handlePrototype=function(r){if(r&&r.forEach!==y)try{w(r,"forEach",y)}catch(i){r.forEach=y}};for(var _ in p)p[_]&&handlePrototype(u[_]&&u[_].prototype);handlePrototype(g)},3948:function(r,i,o){var u=o(7854),p=o(8324),g=o(8509),y=o(6992),w=o(8880),_=o(5112),x=_("iterator"),k=_("toStringTag"),P=y.values,handlePrototype=function(r,i){if(r){if(r[x]!==P)try{w(r,x,P)}catch(i){r[x]=P}if(r[k]||w(r,k,i),p[i])for(var o in y)if(r[o]!==y[o])try{w(r,o,y[o])}catch(i){r[o]=y[o]}}};for(var O in p)handlePrototype(u[O]&&u[O].prototype,O);handlePrototype(g,"DOMTokenList")},3753:function(r,i,o){"use strict";var u=o(2109),p=o(6916);u({target:"URL",proto:!0,enumerable:!0},{toJSON:function toJSON(){return p(URL.prototype.toString,this)}})},1150:function(r,i,o){var u=o(7633);o(3948),r.exports=u},251:function(r,i,o){var u=o(2215),p=o(2584),g=o(609),y=o(8420),w=o(2847),_=o(8923),x=Date.prototype.getTime;function deepEqual(r,i,o){var k=o||{};return!!(k.strict?g(r,i):r===i)||(!r||!i||"object"!=typeof r&&"object"!=typeof i?k.strict?g(r,i):r==i:function objEquiv(r,i,o){var g,k;if(typeof r!=typeof i)return!1;if(isUndefinedOrNull(r)||isUndefinedOrNull(i))return!1;if(r.prototype!==i.prototype)return!1;if(p(r)!==p(i))return!1;var P=y(r),O=y(i);if(P!==O)return!1;if(P||O)return r.source===i.source&&w(r)===w(i);if(_(r)&&_(i))return x.call(r)===x.call(i);var I=isBuffer(r),B=isBuffer(i);if(I!==B)return!1;if(I||B){if(r.length!==i.length)return!1;for(g=0;g<r.length;g++)if(r[g]!==i[g])return!1;return!0}if(typeof r!=typeof i)return!1;try{var R=u(r),D=u(i)}catch(r){return!1}if(R.length!==D.length)return!1;for(R.sort(),D.sort(),g=R.length-1;g>=0;g--)if(R[g]!=D[g])return!1;for(g=R.length-1;g>=0;g--)if(!deepEqual(r[k=R[g]],i[k],o))return!1;return!0}(r,i,k))}function isUndefinedOrNull(r){return null==r}function isBuffer(r){return!(!r||"object"!=typeof r||"number"!=typeof r.length)&&("function"==typeof r.copy&&"function"==typeof r.slice&&!(r.length>0&&"number"!=typeof r[0]))}r.exports=deepEqual},4289:function(r,i,o){"use strict";var u=o(2215),p="function"==typeof Symbol&&"symbol"==typeof Symbol("foo"),g=Object.prototype.toString,y=Array.prototype.concat,w=Object.defineProperty,_=o(1044)(),x=w&&_,defineProperty=function(r,i,o,u){var p;(!(i in r)||"function"==typeof(p=u)&&"[object Function]"===g.call(p)&&u())&&(x?w(r,i,{configurable:!0,enumerable:!1,value:o,writable:!0}):r[i]=o)},defineProperties=function(r,i){var o=arguments.length>2?arguments[2]:{},g=u(i);p&&(g=y.call(g,Object.getOwnPropertySymbols(i)));for(var w=0;w<g.length;w+=1)defineProperty(r,g[w],i[g[w]],o[g[w]])};defineProperties.supportsDescriptors=!!x,r.exports=defineProperties},8091:function(r){"use strict";function assign(r,i){if(null==r)throw new TypeError("Cannot convert first argument to object");for(var o=Object(r),u=1;u<arguments.length;u++){var p=arguments[u];if(null!=p)for(var g=Object.keys(Object(p)),y=0,w=g.length;y<w;y++){var _=g[y],x=Object.getOwnPropertyDescriptor(p,_);void 0!==x&&x.enumerable&&(o[_]=p[_])}}return o}r.exports={assign:assign,polyfill:function polyfill(){Object.assign||Object.defineProperty(Object,"assign",{enumerable:!1,configurable:!0,writable:!0,value:assign})}}},7187:function(r){"use strict";var i,o="object"==typeof Reflect?Reflect:null,u=o&&"function"==typeof o.apply?o.apply:function ReflectApply(r,i,o){return Function.prototype.apply.call(r,i,o)};i=o&&"function"==typeof o.ownKeys?o.ownKeys:Object.getOwnPropertySymbols?function ReflectOwnKeys(r){return Object.getOwnPropertyNames(r).concat(Object.getOwnPropertySymbols(r))}:function ReflectOwnKeys(r){return Object.getOwnPropertyNames(r)};var p=Number.isNaN||function NumberIsNaN(r){return r!=r};function EventEmitter(){EventEmitter.init.call(this)}r.exports=EventEmitter,r.exports.once=function once(r,i){return new Promise((function(o,u){function errorListener(o){r.removeListener(i,resolver),u(o)}function resolver(){"function"==typeof r.removeListener&&r.removeListener("error",errorListener),o([].slice.call(arguments))}eventTargetAgnosticAddListener(r,i,resolver,{once:!0}),"error"!==i&&function addErrorHandlerIfEventEmitter(r,i,o){"function"==typeof r.on&&eventTargetAgnosticAddListener(r,"error",i,o)}(r,errorListener,{once:!0})}))},EventEmitter.EventEmitter=EventEmitter,EventEmitter.prototype._events=void 0,EventEmitter.prototype._eventsCount=0,EventEmitter.prototype._maxListeners=void 0;var g=10;function checkListener(r){if("function"!=typeof r)throw new TypeError('The "listener" argument must be of type Function. Received type '+typeof r)}function _getMaxListeners(r){return void 0===r._maxListeners?EventEmitter.defaultMaxListeners:r._maxListeners}function _addListener(r,i,o,u){var p,g,y;if(checkListener(o),void 0===(g=r._events)?(g=r._events=Object.create(null),r._eventsCount=0):(void 0!==g.newListener&&(r.emit("newListener",i,o.listener?o.listener:o),g=r._events),y=g[i]),void 0===y)y=g[i]=o,++r._eventsCount;else if("function"==typeof y?y=g[i]=u?[o,y]:[y,o]:u?y.unshift(o):y.push(o),(p=_getMaxListeners(r))>0&&y.length>p&&!y.warned){y.warned=!0;var w=new Error("Possible EventEmitter memory leak detected. "+y.length+" "+String(i)+" listeners added. Use emitter.setMaxListeners() to increase limit");w.name="MaxListenersExceededWarning",w.emitter=r,w.type=i,w.count=y.length,function ProcessEmitWarning(r){console&&console.warn}()}return r}function onceWrapper(){if(!this.fired)return this.target.removeListener(this.type,this.wrapFn),this.fired=!0,0===arguments.length?this.listener.call(this.target):this.listener.apply(this.target,arguments)}function _onceWrap(r,i,o){var u={fired:!1,wrapFn:void 0,target:r,type:i,listener:o},p=onceWrapper.bind(u);return p.listener=o,u.wrapFn=p,p}function _listeners(r,i,o){var u=r._events;if(void 0===u)return[];var p=u[i];return void 0===p?[]:"function"==typeof p?o?[p.listener||p]:[p]:o?function unwrapListeners(r){for(var i=new Array(r.length),o=0;o<i.length;++o)i[o]=r[o].listener||r[o];return i}(p):arrayClone(p,p.length)}function listenerCount(r){var i=this._events;if(void 0!==i){var o=i[r];if("function"==typeof o)return 1;if(void 0!==o)return o.length}return 0}function arrayClone(r,i){for(var o=new Array(i),u=0;u<i;++u)o[u]=r[u];return o}function eventTargetAgnosticAddListener(r,i,o,u){if("function"==typeof r.on)u.once?r.once(i,o):r.on(i,o);else{if("function"!=typeof r.addEventListener)throw new TypeError('The "emitter" argument must be of type EventEmitter. Received type '+typeof r);r.addEventListener(i,(function wrapListener(p){u.once&&r.removeEventListener(i,wrapListener),o(p)}))}}Object.defineProperty(EventEmitter,"defaultMaxListeners",{enumerable:!0,get:function(){return g},set:function(r){if("number"!=typeof r||r<0||p(r))throw new RangeError('The value of "defaultMaxListeners" is out of range. It must be a non-negative number. Received '+r+".");g=r}}),EventEmitter.init=function(){void 0!==this._events&&this._events!==Object.getPrototypeOf(this)._events||(this._events=Object.create(null),this._eventsCount=0),this._maxListeners=this._maxListeners||void 0},EventEmitter.prototype.setMaxListeners=function setMaxListeners(r){if("number"!=typeof r||r<0||p(r))throw new RangeError('The value of "n" is out of range. It must be a non-negative number. Received '+r+".");return this._maxListeners=r,this},EventEmitter.prototype.getMaxListeners=function getMaxListeners(){return _getMaxListeners(this)},EventEmitter.prototype.emit=function emit(r){for(var i=[],o=1;o<arguments.length;o++)i.push(arguments[o]);var p="error"===r,g=this._events;if(void 0!==g)p=p&&void 0===g.error;else if(!p)return!1;if(p){var y;if(i.length>0&&(y=i[0]),y instanceof Error)throw y;var w=new Error("Unhandled error."+(y?" ("+y.message+")":""));throw w.context=y,w}var _=g[r];if(void 0===_)return!1;if("function"==typeof _)u(_,this,i);else{var x=_.length,k=arrayClone(_,x);for(o=0;o<x;++o)u(k[o],this,i)}return!0},EventEmitter.prototype.addListener=function addListener(r,i){return _addListener(this,r,i,!1)},EventEmitter.prototype.on=EventEmitter.prototype.addListener,EventEmitter.prototype.prependListener=function prependListener(r,i){return _addListener(this,r,i,!0)},EventEmitter.prototype.once=function once(r,i){return checkListener(i),this.on(r,_onceWrap(this,r,i)),this},EventEmitter.prototype.prependOnceListener=function prependOnceListener(r,i){return checkListener(i),this.prependListener(r,_onceWrap(this,r,i)),this},EventEmitter.prototype.removeListener=function removeListener(r,i){var o,u,p,g,y;if(checkListener(i),void 0===(u=this._events))return this;if(void 0===(o=u[r]))return this;if(o===i||o.listener===i)0==--this._eventsCount?this._events=Object.create(null):(delete u[r],u.removeListener&&this.emit("removeListener",r,o.listener||i));else if("function"!=typeof o){for(p=-1,g=o.length-1;g>=0;g--)if(o[g]===i||o[g].listener===i){y=o[g].listener,p=g;break}if(p<0)return this;0===p?o.shift():function spliceOne(r,i){for(;i+1<r.length;i++)r[i]=r[i+1];r.pop()}(o,p),1===o.length&&(u[r]=o[0]),void 0!==u.removeListener&&this.emit("removeListener",r,y||i)}return this},EventEmitter.prototype.off=EventEmitter.prototype.removeListener,EventEmitter.prototype.removeAllListeners=function removeAllListeners(r){var i,o,u;if(void 0===(o=this._events))return this;if(void 0===o.removeListener)return 0===arguments.length?(this._events=Object.create(null),this._eventsCount=0):void 0!==o[r]&&(0==--this._eventsCount?this._events=Object.create(null):delete o[r]),this;if(0===arguments.length){var p,g=Object.keys(o);for(u=0;u<g.length;++u)"removeListener"!==(p=g[u])&&this.removeAllListeners(p);return this.removeAllListeners("removeListener"),this._events=Object.create(null),this._eventsCount=0,this}if("function"==typeof(i=o[r]))this.removeListener(r,i);else if(void 0!==i)for(u=i.length-1;u>=0;u--)this.removeListener(r,i[u]);return this},EventEmitter.prototype.listeners=function listeners(r){return _listeners(this,r,!0)},EventEmitter.prototype.rawListeners=function rawListeners(r){return _listeners(this,r,!1)},EventEmitter.listenerCount=function(r,i){return"function"==typeof r.listenerCount?r.listenerCount(i):listenerCount.call(r,i)},EventEmitter.prototype.listenerCount=listenerCount,EventEmitter.prototype.eventNames=function eventNames(){return this._eventsCount>0?i(this._events):[]}},2536:function(r,i,o){var u=o(4275),p=o(7672);void 0===p.pdfMake&&(p.pdfMake=u),r.exports=u},7672:function(r,i,o){"use strict";r.exports=function(){if("object"==typeof globalThis)return globalThis;var r;try{r=this||new Function("return this")()}catch(r){if("object"==typeof window)return window;if("object"==typeof self)return self;if(void 0!==o.g)return o.g}return r}()},4029:function(r,i,o){"use strict";var u=o(5320),p=Object.prototype.toString,g=Object.prototype.hasOwnProperty,y=function forEachArray(r,i,o){for(var u=0,p=r.length;u<p;u++)g.call(r,u)&&(null==o?i(r[u],u,r):i.call(o,r[u],u,r))},w=function forEachString(r,i,o){for(var u=0,p=r.length;u<p;u++)null==o?i(r.charAt(u),u,r):i.call(o,r.charAt(u),u,r)},_=function forEachObject(r,i,o){for(var u in r)g.call(r,u)&&(null==o?i(r[u],u,r):i.call(o,r[u],u,r))};r.exports=function forEach(r,i,o){if(!u(i))throw new TypeError("iterator must be a function");var g;arguments.length>=3&&(g=o),"[object Array]"===p.call(r)?y(r,i,g):"string"==typeof r?w(r,i,g):_(r,i,g)}},7648:function(r){"use strict";var i="Function.prototype.bind called on incompatible ",o=Array.prototype.slice,u=Object.prototype.toString,p="[object Function]";r.exports=function bind(r){var g=this;if("function"!=typeof g||u.call(g)!==p)throw new TypeError(i+g);for(var y,w=o.call(arguments,1),binder=function(){if(this instanceof y){var i=g.apply(this,w.concat(o.call(arguments)));return Object(i)===i?i:this}return g.apply(r,w.concat(o.call(arguments)))},_=Math.max(0,g.length-w.length),x=[],k=0;k<_;k++)x.push("$"+k);if(y=Function("binder","return function ("+x.join(",")+"){ return binder.apply(this,arguments); }")(binder),g.prototype){var P=function Empty(){};P.prototype=g.prototype,y.prototype=new P,P.prototype=null}return y}},8612:function(r,i,o){"use strict";var u=o(7648);r.exports=Function.prototype.bind||u},5972:function(r){"use strict";var i=function functionsHaveNames(){return"string"==typeof function f(){}.name},o=Object.getOwnPropertyDescriptor;if(o)try{o([],"length")}catch(r){o=null}i.functionsHaveConfigurableNames=function functionsHaveConfigurableNames(){if(!i()||!o)return!1;var r=o((function(){}),"name");return!!r&&!!r.configurable};var u=Function.prototype.bind;i.boundFunctionsHaveNames=function boundFunctionsHaveNames(){return i()&&"function"==typeof u&&""!==function f(){}.bind().name},r.exports=i},210:function(r,i,o){"use strict";var u,p=SyntaxError,g=Function,y=TypeError,getEvalledConstructor=function(r){try{return g('"use strict"; return ('+r+").constructor;")()}catch(r){}},w=Object.getOwnPropertyDescriptor;if(w)try{w({},"")}catch(r){w=null}var throwTypeError=function(){throw new y},_=w?function(){try{return throwTypeError}catch(r){try{return w(arguments,"callee").get}catch(r){return throwTypeError}}}():throwTypeError,x=o(1405)(),k=Object.getPrototypeOf||function(r){return r.__proto__},P={},O="undefined"==typeof Uint8Array?u:k(Uint8Array),I={"%AggregateError%":"undefined"==typeof AggregateError?u:AggregateError,"%Array%":Array,"%ArrayBuffer%":"undefined"==typeof ArrayBuffer?u:ArrayBuffer,"%ArrayIteratorPrototype%":x?k([][Symbol.iterator]()):u,"%AsyncFromSyncIteratorPrototype%":u,"%AsyncFunction%":P,"%AsyncGenerator%":P,"%AsyncGeneratorFunction%":P,"%AsyncIteratorPrototype%":P,"%Atomics%":"undefined"==typeof Atomics?u:Atomics,"%BigInt%":"undefined"==typeof BigInt?u:BigInt,"%Boolean%":Boolean,"%DataView%":"undefined"==typeof DataView?u:DataView,"%Date%":Date,"%decodeURI%":decodeURI,"%decodeURIComponent%":decodeURIComponent,"%encodeURI%":encodeURI,"%encodeURIComponent%":encodeURIComponent,"%Error%":Error,"%eval%":eval,"%EvalError%":EvalError,"%Float32Array%":"undefined"==typeof Float32Array?u:Float32Array,"%Float64Array%":"undefined"==typeof Float64Array?u:Float64Array,"%FinalizationRegistry%":"undefined"==typeof FinalizationRegistry?u:FinalizationRegistry,"%Function%":g,"%GeneratorFunction%":P,"%Int8Array%":"undefined"==typeof Int8Array?u:Int8Array,"%Int16Array%":"undefined"==typeof Int16Array?u:Int16Array,"%Int32Array%":"undefined"==typeof Int32Array?u:Int32Array,"%isFinite%":isFinite,"%isNaN%":isNaN,"%IteratorPrototype%":x?k(k([][Symbol.iterator]())):u,"%JSON%":"object"==typeof JSON?JSON:u,"%Map%":"undefined"==typeof Map?u:Map,"%MapIteratorPrototype%":"undefined"!=typeof Map&&x?k((new Map)[Symbol.iterator]()):u,"%Math%":Math,"%Number%":Number,"%Object%":Object,"%parseFloat%":parseFloat,"%parseInt%":parseInt,"%Promise%":"undefined"==typeof Promise?u:Promise,"%Proxy%":"undefined"==typeof Proxy?u:Proxy,"%RangeError%":RangeError,"%ReferenceError%":ReferenceError,"%Reflect%":"undefined"==typeof Reflect?u:Reflect,"%RegExp%":RegExp,"%Set%":"undefined"==typeof Set?u:Set,"%SetIteratorPrototype%":"undefined"!=typeof Set&&x?k((new Set)[Symbol.iterator]()):u,"%SharedArrayBuffer%":"undefined"==typeof SharedArrayBuffer?u:SharedArrayBuffer,"%String%":String,"%StringIteratorPrototype%":x?k(""[Symbol.iterator]()):u,"%Symbol%":x?Symbol:u,"%SyntaxError%":p,"%ThrowTypeError%":_,"%TypedArray%":O,"%TypeError%":y,"%Uint8Array%":"undefined"==typeof Uint8Array?u:Uint8Array,"%Uint8ClampedArray%":"undefined"==typeof Uint8ClampedArray?u:Uint8ClampedArray,"%Uint16Array%":"undefined"==typeof Uint16Array?u:Uint16Array,"%Uint32Array%":"undefined"==typeof Uint32Array?u:Uint32Array,"%URIError%":URIError,"%WeakMap%":"undefined"==typeof WeakMap?u:WeakMap,"%WeakRef%":"undefined"==typeof WeakRef?u:WeakRef,"%WeakSet%":"undefined"==typeof WeakSet?u:WeakSet},B=function doEval(r){var i;if("%AsyncFunction%"===r)i=getEvalledConstructor("async function () {}");else if("%GeneratorFunction%"===r)i=getEvalledConstructor("function* () {}");else if("%AsyncGeneratorFunction%"===r)i=getEvalledConstructor("async function* () {}");else if("%AsyncGenerator%"===r){var o=doEval("%AsyncGeneratorFunction%");o&&(i=o.prototype)}else if("%AsyncIteratorPrototype%"===r){var u=doEval("%AsyncGenerator%");u&&(i=k(u.prototype))}return I[r]=i,i},R={"%ArrayBufferPrototype%":["ArrayBuffer","prototype"],"%ArrayPrototype%":["Array","prototype"],"%ArrayProto_entries%":["Array","prototype","entries"],"%ArrayProto_forEach%":["Array","prototype","forEach"],"%ArrayProto_keys%":["Array","prototype","keys"],"%ArrayProto_values%":["Array","prototype","values"],"%AsyncFunctionPrototype%":["AsyncFunction","prototype"],"%AsyncGenerator%":["AsyncGeneratorFunction","prototype"],"%AsyncGeneratorPrototype%":["AsyncGeneratorFunction","prototype","prototype"],"%BooleanPrototype%":["Boolean","prototype"],"%DataViewPrototype%":["DataView","prototype"],"%DatePrototype%":["Date","prototype"],"%ErrorPrototype%":["Error","prototype"],"%EvalErrorPrototype%":["EvalError","prototype"],"%Float32ArrayPrototype%":["Float32Array","prototype"],"%Float64ArrayPrototype%":["Float64Array","prototype"],"%FunctionPrototype%":["Function","prototype"],"%Generator%":["GeneratorFunction","prototype"],"%GeneratorPrototype%":["GeneratorFunction","prototype","prototype"],"%Int8ArrayPrototype%":["Int8Array","prototype"],"%Int16ArrayPrototype%":["Int16Array","prototype"],"%Int32ArrayPrototype%":["Int32Array","prototype"],"%JSONParse%":["JSON","parse"],"%JSONStringify%":["JSON","stringify"],"%MapPrototype%":["Map","prototype"],"%NumberPrototype%":["Number","prototype"],"%ObjectPrototype%":["Object","prototype"],"%ObjProto_toString%":["Object","prototype","toString"],"%ObjProto_valueOf%":["Object","prototype","valueOf"],"%PromisePrototype%":["Promise","prototype"],"%PromiseProto_then%":["Promise","prototype","then"],"%Promise_all%":["Promise","all"],"%Promise_reject%":["Promise","reject"],"%Promise_resolve%":["Promise","resolve"],"%RangeErrorPrototype%":["RangeError","prototype"],"%ReferenceErrorPrototype%":["ReferenceError","prototype"],"%RegExpPrototype%":["RegExp","prototype"],"%SetPrototype%":["Set","prototype"],"%SharedArrayBufferPrototype%":["SharedArrayBuffer","prototype"],"%StringPrototype%":["String","prototype"],"%SymbolPrototype%":["Symbol","prototype"],"%SyntaxErrorPrototype%":["SyntaxError","prototype"],"%TypedArrayPrototype%":["TypedArray","prototype"],"%TypeErrorPrototype%":["TypeError","prototype"],"%Uint8ArrayPrototype%":["Uint8Array","prototype"],"%Uint8ClampedArrayPrototype%":["Uint8ClampedArray","prototype"],"%Uint16ArrayPrototype%":["Uint16Array","prototype"],"%Uint32ArrayPrototype%":["Uint32Array","prototype"],"%URIErrorPrototype%":["URIError","prototype"],"%WeakMapPrototype%":["WeakMap","prototype"],"%WeakSetPrototype%":["WeakSet","prototype"]},D=o(8612),N=o(7642),W=D.call(Function.call,Array.prototype.concat),U=D.call(Function.apply,Array.prototype.splice),j=D.call(Function.call,String.prototype.replace),G=D.call(Function.call,String.prototype.slice),X=D.call(Function.call,RegExp.prototype.exec),K=/[^%.[\]]+|\[(?:(-?\d+(?:\.\d+)?)|(["'])((?:(?!\2)[^\\]|\\.)*?)\2)\]|(?=(?:\.|\[\])(?:\.|\[\]|%$))/g,Y=/\\(\\)?/g,J=function stringToPath(r){var i=G(r,0,1),o=G(r,-1);if("%"===i&&"%"!==o)throw new p("invalid intrinsic syntax, expected closing `%`");if("%"===o&&"%"!==i)throw new p("invalid intrinsic syntax, expected opening `%`");var u=[];return j(r,K,(function(r,i,o,p){u[u.length]=o?j(p,Y,"$1"):i||r})),u},$=function getBaseIntrinsic(r,i){var o,u=r;if(N(R,u)&&(u="%"+(o=R[u])[0]+"%"),N(I,u)){var g=I[u];if(g===P&&(g=B(u)),void 0===g&&!i)throw new y("intrinsic "+r+" exists, but is not available. Please file an issue!");return{alias:o,name:u,value:g}}throw new p("intrinsic "+r+" does not exist!")};r.exports=function GetIntrinsic(r,i){if("string"!=typeof r||0===r.length)throw new y("intrinsic name must be a non-empty string");if(arguments.length>1&&"boolean"!=typeof i)throw new y('"allowMissing" argument must be a boolean');if(null===X(/^%?[^%]*%?$/,r))throw new p("`%` may not be present anywhere but at the beginning and end of the intrinsic name");var o=J(r),u=o.length>0?o[0]:"",g=$("%"+u+"%",i),_=g.name,x=g.value,k=!1,P=g.alias;P&&(u=P[0],U(o,W([0,1],P)));for(var O=1,B=!0;O<o.length;O+=1){var R=o[O],D=G(R,0,1),j=G(R,-1);if(('"'===D||"'"===D||"`"===D||'"'===j||"'"===j||"`"===j)&&D!==j)throw new p("property names with quotes must have matching quotes");if("constructor"!==R&&B||(k=!0),N(I,_="%"+(u+="."+R)+"%"))x=I[_];else if(null!=x){if(!(R in x)){if(!i)throw new y("base intrinsic for "+r+" exists, but the property is not available.");return}if(w&&O+1>=o.length){var K=w(x,R);x=(B=!!K)&&"get"in K&&!("originalValue"in K.get)?K.get:x[R]}else B=N(x,R),x=x[R];B&&!k&&(I[_]=x)}}return x}},7296:function(r,i,o){"use strict";var u=o(210)("%Object.getOwnPropertyDescriptor%",!0);if(u)try{u([],"length")}catch(r){u=null}r.exports=u},1044:function(r,i,o){"use strict";var u=o(210)("%Object.defineProperty%",!0),p=function hasPropertyDescriptors(){if(u)try{return u({},"a",{value:1}),!0}catch(r){return!1}return!1};p.hasArrayLengthDefineBug=function hasArrayLengthDefineBug(){if(!p())return null;try{return 1!==u([],"length",{value:1}).length}catch(r){return!0}},r.exports=p},1405:function(r,i,o){"use strict";var u="undefined"!=typeof Symbol&&Symbol,p=o(5419);r.exports=function hasNativeSymbols(){return"function"==typeof u&&("function"==typeof Symbol&&("symbol"==typeof u("foo")&&("symbol"==typeof Symbol("bar")&&p())))}},5419:function(r){"use strict";r.exports=function hasSymbols(){if("function"!=typeof Symbol||"function"!=typeof Object.getOwnPropertySymbols)return!1;if("symbol"==typeof Symbol.iterator)return!0;var r={},i=Symbol("test"),o=Object(i);if("string"==typeof i)return!1;if("[object Symbol]"!==Object.prototype.toString.call(i))return!1;if("[object Symbol]"!==Object.prototype.toString.call(o))return!1;for(i in r[i]=42,r)return!1;if("function"==typeof Object.keys&&0!==Object.keys(r).length)return!1;if("function"==typeof Object.getOwnPropertyNames&&0!==Object.getOwnPropertyNames(r).length)return!1;var u=Object.getOwnPropertySymbols(r);if(1!==u.length||u[0]!==i)return!1;if(!Object.prototype.propertyIsEnumerable.call(r,i))return!1;if("function"==typeof Object.getOwnPropertyDescriptor){var p=Object.getOwnPropertyDescriptor(r,i);if(42!==p.value||!0!==p.enumerable)return!1}return!0}},6410:function(r,i,o){"use strict";var u=o(5419);r.exports=function hasToStringTagShams(){return u()&&!!Symbol.toStringTag}},7642:function(r,i,o){"use strict";var u=o(8612);r.exports=u.call(Function.call,Object.prototype.hasOwnProperty)},688:function(r,i,o){"use strict";var u=o(7103).Buffer;i._dbcs=DBCSCodec;for(var p=-1,g=-10,y=-1e3,w=new Array(256),_=0;_<256;_++)w[_]=p;function DBCSCodec(r,i){if(this.encodingName=r.encodingName,!r)throw new Error("DBCS codec is called without the data.");if(!r.table)throw new Error("Encoding '"+this.encodingName+"' has no data.");var o=r.table();this.decodeTables=[],this.decodeTables[0]=w.slice(0),this.decodeTableSeq=[];for(var u=0;u<o.length;u++)this._addDecodeChunk(o[u]);if("function"==typeof r.gb18030){this.gb18030=r.gb18030();var g=this.decodeTables.length;this.decodeTables.push(w.slice(0));var _=this.decodeTables.length;this.decodeTables.push(w.slice(0));var x=this.decodeTables[0];for(u=129;u<=254;u++)for(var k=this.decodeTables[y-x[u]],P=48;P<=57;P++){if(k[P]===p)k[P]=y-g;else if(k[P]>y)throw new Error("gb18030 decode tables conflict at byte 2");for(var O=this.decodeTables[y-k[P]],I=129;I<=254;I++){if(O[I]===p)O[I]=y-_;else{if(O[I]===y-_)continue;if(O[I]>y)throw new Error("gb18030 decode tables conflict at byte 3")}for(var B=this.decodeTables[y-O[I]],R=48;R<=57;R++)B[R]===p&&(B[R]=-2)}}}this.defaultCharUnicode=i.defaultCharUnicode,this.encodeTable=[],this.encodeTableSeq=[];var D={};if(r.encodeSkipVals)for(u=0;u<r.encodeSkipVals.length;u++){var N=r.encodeSkipVals[u];if("number"==typeof N)D[N]=!0;else for(P=N.from;P<=N.to;P++)D[P]=!0}if(this._fillEncodeTable(0,0,D),r.encodeAdd)for(var W in r.encodeAdd)Object.prototype.hasOwnProperty.call(r.encodeAdd,W)&&this._setEncodeChar(W.charCodeAt(0),r.encodeAdd[W]);this.defCharSB=this.encodeTable[0][i.defaultCharSingleByte.charCodeAt(0)],this.defCharSB===p&&(this.defCharSB=this.encodeTable[0]["?"]),this.defCharSB===p&&(this.defCharSB="?".charCodeAt(0))}function DBCSEncoder(r,i){this.leadSurrogate=-1,this.seqObj=void 0,this.encodeTable=i.encodeTable,this.encodeTableSeq=i.encodeTableSeq,this.defaultCharSingleByte=i.defCharSB,this.gb18030=i.gb18030}function DBCSDecoder(r,i){this.nodeIdx=0,this.prevBytes=[],this.decodeTables=i.decodeTables,this.decodeTableSeq=i.decodeTableSeq,this.defaultCharUnicode=i.defaultCharUnicode,this.gb18030=i.gb18030}function findIdx(r,i){if(r[0]>i)return-1;for(var o=0,u=r.length;o<u-1;){var p=o+(u-o+1>>1);r[p]<=i?o=p:u=p}return o}DBCSCodec.prototype.encoder=DBCSEncoder,DBCSCodec.prototype.decoder=DBCSDecoder,DBCSCodec.prototype._getDecodeTrieNode=function(r){for(var i=[];r>0;r>>>=8)i.push(255&r);0==i.length&&i.push(0);for(var o=this.decodeTables[0],u=i.length-1;u>0;u--){var g=o[i[u]];if(g==p)o[i[u]]=y-this.decodeTables.length,this.decodeTables.push(o=w.slice(0));else{if(!(g<=y))throw new Error("Overwrite byte in "+this.encodingName+", addr: "+r.toString(16));o=this.decodeTables[y-g]}}return o},DBCSCodec.prototype._addDecodeChunk=function(r){var i=parseInt(r[0],16),o=this._getDecodeTrieNode(i);i&=255;for(var u=1;u<r.length;u++){var p=r[u];if("string"==typeof p)for(var y=0;y<p.length;){var w=p.charCodeAt(y++);if(55296<=w&&w<56320){var _=p.charCodeAt(y++);if(!(56320<=_&&_<57344))throw new Error("Incorrect surrogate pair in "+this.encodingName+" at chunk "+r[0]);o[i++]=65536+1024*(w-55296)+(_-56320)}else if(4080<w&&w<=4095){for(var x=4095-w+2,k=[],P=0;P<x;P++)k.push(p.charCodeAt(y++));o[i++]=g-this.decodeTableSeq.length,this.decodeTableSeq.push(k)}else o[i++]=w}else{if("number"!=typeof p)throw new Error("Incorrect type '"+typeof p+"' given in "+this.encodingName+" at chunk "+r[0]);var O=o[i-1]+1;for(y=0;y<p;y++)o[i++]=O++}}if(i>255)throw new Error("Incorrect chunk in "+this.encodingName+" at addr "+r[0]+": too long"+i)},DBCSCodec.prototype._getEncodeBucket=function(r){var i=r>>8;return void 0===this.encodeTable[i]&&(this.encodeTable[i]=w.slice(0)),this.encodeTable[i]},DBCSCodec.prototype._setEncodeChar=function(r,i){var o=this._getEncodeBucket(r),u=255&r;o[u]<=g?this.encodeTableSeq[g-o[u]][-1]=i:o[u]==p&&(o[u]=i)},DBCSCodec.prototype._setEncodeSequence=function(r,i){var o,u=r[0],y=this._getEncodeBucket(u),w=255&u;y[w]<=g?o=this.encodeTableSeq[g-y[w]]:(o={},y[w]!==p&&(o[-1]=y[w]),y[w]=g-this.encodeTableSeq.length,this.encodeTableSeq.push(o));for(var _=1;_<r.length-1;_++){var x=o[u];"object"==typeof x?o=x:(o=o[u]={},void 0!==x&&(o[-1]=x))}o[u=r[r.length-1]]=i},DBCSCodec.prototype._fillEncodeTable=function(r,i,o){for(var u=this.decodeTables[r],p=!1,w={},_=0;_<256;_++){var x=u[_],k=i+_;if(!o[k])if(x>=0)this._setEncodeChar(x,k),p=!0;else if(x<=y){var P=y-x;if(!w[P]){var O=k<<8>>>0;this._fillEncodeTable(P,O,o)?p=!0:w[P]=!0}}else x<=g&&(this._setEncodeSequence(this.decodeTableSeq[g-x],k),p=!0)}return p},DBCSEncoder.prototype.write=function(r){for(var i=u.alloc(r.length*(this.gb18030?4:3)),o=this.leadSurrogate,y=this.seqObj,w=-1,_=0,x=0;;){if(-1===w){if(_==r.length)break;var k=r.charCodeAt(_++)}else{k=w;w=-1}if(55296<=k&&k<57344)if(k<56320){if(-1===o){o=k;continue}o=k,k=p}else-1!==o?(k=65536+1024*(o-55296)+(k-56320),o=-1):k=p;else-1!==o&&(w=k,k=p,o=-1);var P=p;if(void 0!==y&&k!=p){var O=y[k];if("object"==typeof O){y=O;continue}"number"==typeof O?P=O:null==O&&void 0!==(O=y[-1])&&(P=O,w=k),y=void 0}else if(k>=0){var I=this.encodeTable[k>>8];if(void 0!==I&&(P=I[255&k]),P<=g){y=this.encodeTableSeq[g-P];continue}if(P==p&&this.gb18030){var B=findIdx(this.gb18030.uChars,k);if(-1!=B){P=this.gb18030.gbChars[B]+(k-this.gb18030.uChars[B]);i[x++]=129+Math.floor(P/12600),P%=12600,i[x++]=48+Math.floor(P/1260),P%=1260,i[x++]=129+Math.floor(P/10),P%=10,i[x++]=48+P;continue}}}P===p&&(P=this.defaultCharSingleByte),P<256?i[x++]=P:P<65536?(i[x++]=P>>8,i[x++]=255&P):P<16777216?(i[x++]=P>>16,i[x++]=P>>8&255,i[x++]=255&P):(i[x++]=P>>>24,i[x++]=P>>>16&255,i[x++]=P>>>8&255,i[x++]=255&P)}return this.seqObj=y,this.leadSurrogate=o,i.slice(0,x)},DBCSEncoder.prototype.end=function(){if(-1!==this.leadSurrogate||void 0!==this.seqObj){var r=u.alloc(10),i=0;if(this.seqObj){var o=this.seqObj[-1];void 0!==o&&(o<256?r[i++]=o:(r[i++]=o>>8,r[i++]=255&o)),this.seqObj=void 0}return-1!==this.leadSurrogate&&(r[i++]=this.defaultCharSingleByte,this.leadSurrogate=-1),r.slice(0,i)}},DBCSEncoder.prototype.findIdx=findIdx,DBCSDecoder.prototype.write=function(r){for(var i=u.alloc(2*r.length),o=this.nodeIdx,w=this.prevBytes,_=this.prevBytes.length,x=-this.prevBytes.length,k=0,P=0;k<r.length;k++){var O,I=k>=0?r[k]:w[k+_];if((O=this.decodeTables[o][I])>=0);else if(O===p)O=this.defaultCharUnicode.charCodeAt(0),k=x;else if(-2===O){if(k>=3)var B=12600*(r[k-3]-129)+1260*(r[k-2]-48)+10*(r[k-1]-129)+(I-48);else B=12600*(w[k-3+_]-129)+1260*((k-2>=0?r[k-2]:w[k-2+_])-48)+10*((k-1>=0?r[k-1]:w[k-1+_])-129)+(I-48);var R=findIdx(this.gb18030.gbChars,B);O=this.gb18030.uChars[R]+B-this.gb18030.gbChars[R]}else{if(O<=y){o=y-O;continue}if(!(O<=g))throw new Error("iconv-lite internal error: invalid decoding table value "+O+" at "+o+"/"+I);for(var D=this.decodeTableSeq[g-O],N=0;N<D.length-1;N++)O=D[N],i[P++]=255&O,i[P++]=O>>8;O=D[D.length-1]}if(O>=65536){var W=55296|(O-=65536)>>10;i[P++]=255&W,i[P++]=W>>8,O=56320|1023&O}i[P++]=255&O,i[P++]=O>>8,o=0,x=k+1}return this.nodeIdx=o,this.prevBytes=x>=0?Array.prototype.slice.call(r,x):w.slice(x+_).concat(Array.prototype.slice.call(r)),i.slice(0,P).toString("ucs2")},DBCSDecoder.prototype.end=function(){for(var r="";this.prevBytes.length>0;){r+=this.defaultCharUnicode;var i=this.prevBytes.slice(1);this.prevBytes=[],this.nodeIdx=0,i.length>0&&(r+=this.write(i))}return this.prevBytes=[],this.nodeIdx=0,r}},5990:function(r,i,o){"use strict";r.exports={shiftjis:{type:"_dbcs",table:function(){return o(7014)},encodeAdd:{"¥":92,"‾":126},encodeSkipVals:[{from:60736,to:63808}]},csshiftjis:"shiftjis",mskanji:"shiftjis",sjis:"shiftjis",windows31j:"shiftjis",ms31j:"shiftjis",xsjis:"shiftjis",windows932:"shiftjis",ms932:"shiftjis",932:"shiftjis",cp932:"shiftjis",eucjp:{type:"_dbcs",table:function(){return o(5633)},encodeAdd:{"¥":92,"‾":126}},gb2312:"cp936",gb231280:"cp936",gb23121980:"cp936",csgb2312:"cp936",csiso58gb231280:"cp936",euccn:"cp936",windows936:"cp936",ms936:"cp936",936:"cp936",cp936:{type:"_dbcs",table:function(){return o(3336)}},gbk:{type:"_dbcs",table:function(){return o(3336).concat(o(4346))}},xgbk:"gbk",isoir58:"gbk",gb18030:{type:"_dbcs",table:function(){return o(3336).concat(o(4346))},gb18030:function(){return o(6258)},encodeSkipVals:[128],encodeAdd:{"€":41699}},chinese:"gb18030",windows949:"cp949",ms949:"cp949",949:"cp949",cp949:{type:"_dbcs",table:function(){return o(7348)}},cseuckr:"cp949",csksc56011987:"cp949",euckr:"cp949",isoir149:"cp949",korean:"cp949",ksc56011987:"cp949",ksc56011989:"cp949",ksc5601:"cp949",windows950:"cp950",ms950:"cp950",950:"cp950",cp950:{type:"_dbcs",table:function(){return o(4284)}},big5:"big5hkscs",big5hkscs:{type:"_dbcs",table:function(){return o(4284).concat(o(3480))},encodeSkipVals:[36457,36463,36478,36523,36532,36557,36560,36695,36713,36718,36811,36862,36973,36986,37060,37084,37105,37311,37551,37552,37553,37554,37585,37959,38090,38361,38652,39285,39798,39800,39803,39878,39902,39916,39926,40002,40019,40034,40040,40043,40055,40124,40125,40144,40279,40282,40388,40431,40443,40617,40687,40701,40800,40907,41079,41180,41183,36812,37576,38468,38637,41636,41637,41639,41638,41676,41678]},cnbig5:"big5hkscs",csbig5:"big5hkscs",xxbig5:"big5hkscs"}},6934:function(r,i,o){"use strict";for(var u=[o(1025),o(7688),o(1279),o(758),o(9068),o(3769),o(7018),o(688),o(5990)],p=0;p<u.length;p++){var g=u[p];for(var y in g)Object.prototype.hasOwnProperty.call(g,y)&&(i[y]=g[y])}},1025:function(r,i,o){"use strict";var u=o(7103).Buffer;function InternalCodec(r,i){this.enc=r.encodingName,this.bomAware=r.bomAware,"base64"===this.enc?this.encoder=InternalEncoderBase64:"cesu8"===this.enc&&(this.enc="utf8",this.encoder=InternalEncoderCesu8,"💩"!==u.from("eda0bdedb2a9","hex").toString()&&(this.decoder=InternalDecoderCesu8,this.defaultCharUnicode=i.defaultCharUnicode))}r.exports={utf8:{type:"_internal",bomAware:!0},cesu8:{type:"_internal",bomAware:!0},unicode11utf8:"utf8",ucs2:{type:"_internal",bomAware:!0},utf16le:"ucs2",binary:{type:"_internal"},base64:{type:"_internal"},hex:{type:"_internal"},_internal:InternalCodec},InternalCodec.prototype.encoder=InternalEncoder,InternalCodec.prototype.decoder=InternalDecoder;var p=o(2553).s;function InternalDecoder(r,i){this.decoder=new p(i.enc)}function InternalEncoder(r,i){this.enc=i.enc}function InternalEncoderBase64(r,i){this.prevStr=""}function InternalEncoderCesu8(r,i){}function InternalDecoderCesu8(r,i){this.acc=0,this.contBytes=0,this.accBytes=0,this.defaultCharUnicode=i.defaultCharUnicode}p.prototype.end||(p.prototype.end=function(){}),InternalDecoder.prototype.write=function(r){return u.isBuffer(r)||(r=u.from(r)),this.decoder.write(r)},InternalDecoder.prototype.end=function(){return this.decoder.end()},InternalEncoder.prototype.write=function(r){return u.from(r,this.enc)},InternalEncoder.prototype.end=function(){},InternalEncoderBase64.prototype.write=function(r){var i=(r=this.prevStr+r).length-r.length%4;return this.prevStr=r.slice(i),r=r.slice(0,i),u.from(r,"base64")},InternalEncoderBase64.prototype.end=function(){return u.from(this.prevStr,"base64")},InternalEncoderCesu8.prototype.write=function(r){for(var i=u.alloc(3*r.length),o=0,p=0;p<r.length;p++){var g=r.charCodeAt(p);g<128?i[o++]=g:g<2048?(i[o++]=192+(g>>>6),i[o++]=128+(63&g)):(i[o++]=224+(g>>>12),i[o++]=128+(g>>>6&63),i[o++]=128+(63&g))}return i.slice(0,o)},InternalEncoderCesu8.prototype.end=function(){},InternalDecoderCesu8.prototype.write=function(r){for(var i=this.acc,o=this.contBytes,u=this.accBytes,p="",g=0;g<r.length;g++){var y=r[g];128!=(192&y)?(o>0&&(p+=this.defaultCharUnicode,o=0),y<128?p+=String.fromCharCode(y):y<224?(i=31&y,o=1,u=1):y<240?(i=15&y,o=2,u=1):p+=this.defaultCharUnicode):o>0?(i=i<<6|63&y,u++,0===--o&&(p+=2===u&&i<128&&i>0||3===u&&i<2048?this.defaultCharUnicode:String.fromCharCode(i))):p+=this.defaultCharUnicode}return this.acc=i,this.contBytes=o,this.accBytes=u,p},InternalDecoderCesu8.prototype.end=function(){var r=0;return this.contBytes>0&&(r+=this.defaultCharUnicode),r}},9068:function(r,i,o){"use strict";var u=o(7103).Buffer;function SBCSCodec(r,i){if(!r)throw new Error("SBCS codec is called without the data.");if(!r.chars||128!==r.chars.length&&256!==r.chars.length)throw new Error("Encoding '"+r.type+"' has incorrect 'chars' (must be of len 128 or 256)");if(128===r.chars.length){for(var o="",p=0;p<128;p++)o+=String.fromCharCode(p);r.chars=o+r.chars}this.decodeBuf=u.from(r.chars,"ucs2");var g=u.alloc(65536,i.defaultCharSingleByte.charCodeAt(0));for(p=0;p<r.chars.length;p++)g[r.chars.charCodeAt(p)]=p;this.encodeBuf=g}function SBCSEncoder(r,i){this.encodeBuf=i.encodeBuf}function SBCSDecoder(r,i){this.decodeBuf=i.decodeBuf}i._sbcs=SBCSCodec,SBCSCodec.prototype.encoder=SBCSEncoder,SBCSCodec.prototype.decoder=SBCSDecoder,SBCSEncoder.prototype.write=function(r){for(var i=u.alloc(r.length),o=0;o<r.length;o++)i[o]=this.encodeBuf[r.charCodeAt(o)];return i},SBCSEncoder.prototype.end=function(){},SBCSDecoder.prototype.write=function(r){for(var i=this.decodeBuf,o=u.alloc(2*r.length),p=0,g=0,y=0;y<r.length;y++)p=2*r[y],o[g=2*y]=i[p],o[g+1]=i[p+1];return o.toString("ucs2")},SBCSDecoder.prototype.end=function(){}},7018:function(r){"use strict";r.exports={437:"cp437",737:"cp737",775:"cp775",850:"cp850",852:"cp852",855:"cp855",856:"cp856",857:"cp857",858:"cp858",860:"cp860",861:"cp861",862:"cp862",863:"cp863",864:"cp864",865:"cp865",866:"cp866",869:"cp869",874:"windows874",922:"cp922",1046:"cp1046",1124:"cp1124",1125:"cp1125",1129:"cp1129",1133:"cp1133",1161:"cp1161",1162:"cp1162",1163:"cp1163",1250:"windows1250",1251:"windows1251",1252:"windows1252",1253:"windows1253",1254:"windows1254",1255:"windows1255",1256:"windows1256",1257:"windows1257",1258:"windows1258",28591:"iso88591",28592:"iso88592",28593:"iso88593",28594:"iso88594",28595:"iso88595",28596:"iso88596",28597:"iso88597",28598:"iso88598",28599:"iso88599",28600:"iso885910",28601:"iso885911",28603:"iso885913",28604:"iso885914",28605:"iso885915",28606:"iso885916",windows874:{type:"_sbcs",chars:"€����…�����������‘’“”•–—�������� กขฃคฅฆงจฉชซฌญฎฏฐฑฒณดตถทธนบปผฝพฟภมยรฤลฦวศษสหฬอฮฯะัาำิีึืฺุู����฿เแโใไๅๆ็่้๊๋์ํ๎๏๐๑๒๓๔๕๖๗๘๙๚๛����"},win874:"windows874",cp874:"windows874",windows1250:{type:"_sbcs",chars:"€�‚�„…†‡�‰Š‹ŚŤŽŹ�‘’“”•–—�™š›śťžź ˇ˘Ł¤Ą¦§¨©Ş«¬­®Ż°±˛ł´µ¶·¸ąş»Ľ˝ľżŔÁÂĂÄĹĆÇČÉĘËĚÍÎĎĐŃŇÓÔŐÖ×ŘŮÚŰÜÝŢßŕáâăäĺćçčéęëěíîďđńňóôőö÷řůúűüýţ˙"},win1250:"windows1250",cp1250:"windows1250",windows1251:{type:"_sbcs",chars:"ЂЃ‚ѓ„…†‡€‰Љ‹ЊЌЋЏђ‘’“”•–—�™љ›њќћџ ЎўЈ¤Ґ¦§Ё©Є«¬­®Ї°±Ііґµ¶·ё№є»јЅѕїАБВГДЕЖЗИЙКЛМНОПРСТУФХЦЧШЩЪЫЬЭЮЯабвгдежзийклмнопрстуфхцчшщъыьэюя"},win1251:"windows1251",cp1251:"windows1251",windows1252:{type:"_sbcs",chars:"€�‚ƒ„…†‡ˆ‰Š‹Œ�Ž��‘’“”•–—˜™š›œ�žŸ ¡¢£¤¥¦§¨©ª«¬­®¯°±²³´µ¶·¸¹º»¼½¾¿ÀÁÂÃÄÅÆÇÈÉÊËÌÍÎÏÐÑÒÓÔÕÖ×ØÙÚÛÜÝÞßàáâãäåæçèéêëìíîïðñòóôõö÷øùúûüýþÿ"},win1252:"windows1252",cp1252:"windows1252",windows1253:{type:"_sbcs",chars:"€�‚ƒ„…†‡�‰�‹�����‘’“”•–—�™�›���� ΅Ά£¤¥¦§¨©�«¬­®―°±²³΄µ¶·ΈΉΊ»Ό½ΎΏΐΑΒΓΔΕΖΗΘΙΚΛΜΝΞΟΠΡ�ΣΤΥΦΧΨΩΪΫάέήίΰαβγδεζηθικλμνξοπρςστυφχψωϊϋόύώ�"},win1253:"windows1253",cp1253:"windows1253",windows1254:{type:"_sbcs",chars:"€�‚ƒ„…†‡ˆ‰Š‹Œ����‘’“”•–—˜™š›œ��Ÿ ¡¢£¤¥¦§¨©ª«¬­®¯°±²³´µ¶·¸¹º»¼½¾¿ÀÁÂÃÄÅÆÇÈÉÊËÌÍÎÏĞÑÒÓÔÕÖ×ØÙÚÛÜİŞßàáâãäåæçèéêëìíîïğñòóôõö÷øùúûüışÿ"},win1254:"windows1254",cp1254:"windows1254",windows1255:{type:"_sbcs",chars:"€�‚ƒ„…†‡ˆ‰�‹�����‘’“”•–—˜™�›���� ¡¢£₪¥¦§¨©×«¬­®¯°±²³´µ¶·¸¹÷»¼½¾¿ְֱֲֳִֵֶַָֹֺֻּֽ־ֿ׀ׁׂ׃װױײ׳״�������אבגדהוזחטיךכלםמןנסעףפץצקרשת��‎‏�"},win1255:"windows1255",cp1255:"windows1255",windows1256:{type:"_sbcs",chars:"€پ‚ƒ„…†‡ˆ‰ٹ‹Œچژڈگ‘’“”•–—ک™ڑ›œ‌‍ں ،¢£¤¥¦§¨©ھ«¬­®¯°±²³´µ¶·¸¹؛»¼½¾؟ہءآأؤإئابةتثجحخدذرزسشصض×طظعغـفقكàلâمنهوçèéêëىيîïًٌٍَôُِ÷ّùْûü‎‏ے"},win1256:"windows1256",cp1256:"windows1256",windows1257:{type:"_sbcs",chars:"€�‚�„…†‡�‰�‹�¨ˇ¸�‘’“”•–—�™�›�¯˛� �¢£¤�¦§Ø©Ŗ«¬­®Æ°±²³´µ¶·ø¹ŗ»¼½¾æĄĮĀĆÄÅĘĒČÉŹĖĢĶĪĻŠŃŅÓŌÕÖ×ŲŁŚŪÜŻŽßąįāćäåęēčéźėģķīļšńņóōõö÷ųłśūüżž˙"},win1257:"windows1257",cp1257:"windows1257",windows1258:{type:"_sbcs",chars:"€�‚ƒ„…†‡ˆ‰�‹Œ����‘’“”•–—˜™�›œ��Ÿ ¡¢£¤¥¦§¨©ª«¬­®¯°±²³´µ¶·¸¹º»¼½¾¿ÀÁÂĂÄÅÆÇÈÉÊË̀ÍÎÏĐÑ̉ÓÔƠÖ×ØÙÚÛÜỮßàáâăäåæçèéêë́íîïđṇ̃óôơö÷øùúûüư₫ÿ"},win1258:"windows1258",cp1258:"windows1258",iso88591:{type:"_sbcs",chars:"€‚ƒ„…†‡ˆ‰Š‹ŒŽ‘’“”•–—˜™š›œžŸ ¡¢£¤¥¦§¨©ª«¬­®¯°±²³´µ¶·¸¹º»¼½¾¿ÀÁÂÃÄÅÆÇÈÉÊËÌÍÎÏÐÑÒÓÔÕÖ×ØÙÚÛÜÝÞßàáâãäåæçèéêëìíîïðñòóôõö÷øùúûüýþÿ"},cp28591:"iso88591",iso88592:{type:"_sbcs",chars:"€‚ƒ„…†‡ˆ‰Š‹ŒŽ‘’“”•–—˜™š›œžŸ Ą˘Ł¤ĽŚ§¨ŠŞŤŹ­ŽŻ°ą˛ł´ľśˇ¸šşťź˝žżŔÁÂĂÄĹĆÇČÉĘËĚÍÎĎĐŃŇÓÔŐÖ×ŘŮÚŰÜÝŢßŕáâăäĺćçčéęëěíîďđńňóôőö÷řůúűüýţ˙"},cp28592:"iso88592",iso88593:{type:"_sbcs",chars:"€‚ƒ„…†‡ˆ‰Š‹ŒŽ‘’“”•–—˜™š›œžŸ Ħ˘£¤�Ĥ§¨İŞĞĴ­�Ż°ħ²³´µĥ·¸ışğĵ½�żÀÁÂ�ÄĊĈÇÈÉÊËÌÍÎÏ�ÑÒÓÔĠÖ×ĜÙÚÛÜŬŜßàáâ�äċĉçèéêëìíîï�ñòóôġö÷ĝùúûüŭŝ˙"},cp28593:"iso88593",iso88594:{type:"_sbcs",chars:"€‚ƒ„…†‡ˆ‰Š‹ŒŽ‘’“”•–—˜™š›œžŸ ĄĸŖ¤ĨĻ§¨ŠĒĢŦ­Ž¯°ą˛ŗ´ĩļˇ¸šēģŧŊžŋĀÁÂÃÄÅÆĮČÉĘËĖÍÎĪĐŅŌĶÔÕÖ×ØŲÚÛÜŨŪßāáâãäåæįčéęëėíîīđņōķôõö÷øųúûüũū˙"},cp28594:"iso88594",iso88595:{type:"_sbcs",chars:"€‚ƒ„…†‡ˆ‰Š‹ŒŽ‘’“”•–—˜™š›œžŸ ЁЂЃЄЅІЇЈЉЊЋЌ­ЎЏАБВГДЕЖЗИЙКЛМНОПРСТУФХЦЧШЩЪЫЬЭЮЯабвгдежзийклмнопрстуфхцчшщъыьэюя№ёђѓєѕіїјљњћќ§ўџ"},cp28595:"iso88595",iso88596:{type:"_sbcs",chars:"€‚ƒ„…†‡ˆ‰Š‹ŒŽ‘’“”•–—˜™š›œžŸ ���¤�������،­�������������؛���؟�ءآأؤإئابةتثجحخدذرزسشصضطظعغ�����ـفقكلمنهوىيًٌٍَُِّْ�������������"},cp28596:"iso88596",iso88597:{type:"_sbcs",chars:"€‚ƒ„…†‡ˆ‰Š‹ŒŽ‘’“”•–—˜™š›œžŸ ‘’£€₯¦§¨©ͺ«¬­�―°±²³΄΅Ά·ΈΉΊ»Ό½ΎΏΐΑΒΓΔΕΖΗΘΙΚΛΜΝΞΟΠΡ�ΣΤΥΦΧΨΩΪΫάέήίΰαβγδεζηθικλμνξοπρςστυφχψωϊϋόύώ�"},cp28597:"iso88597",iso88598:{type:"_sbcs",chars:"€‚ƒ„…†‡ˆ‰Š‹ŒŽ‘’“”•–—˜™š›œžŸ �¢£¤¥¦§¨©×«¬­®¯°±²³´µ¶·¸¹÷»¼½¾��������������������������������‗אבגדהוזחטיךכלםמןנסעףפץצקרשת��‎‏�"},cp28598:"iso88598",iso88599:{type:"_sbcs",chars:"€‚ƒ„…†‡ˆ‰Š‹ŒŽ‘’“”•–—˜™š›œžŸ ¡¢£¤¥¦§¨©ª«¬­®¯°±²³´µ¶·¸¹º»¼½¾¿ÀÁÂÃÄÅÆÇÈÉÊËÌÍÎÏĞÑÒÓÔÕÖ×ØÙÚÛÜİŞßàáâãäåæçèéêëìíîïğñòóôõö÷øùúûüışÿ"},cp28599:"iso88599",iso885910:{type:"_sbcs",chars:"€‚ƒ„…†‡ˆ‰Š‹ŒŽ‘’“”•–—˜™š›œžŸ ĄĒĢĪĨĶ§ĻĐŠŦŽ­ŪŊ°ąēģīĩķ·ļđšŧž―ūŋĀÁÂÃÄÅÆĮČÉĘËĖÍÎÏÐŅŌÓÔÕÖŨØŲÚÛÜÝÞßāáâãäåæįčéęëėíîïðņōóôõöũøųúûüýþĸ"},cp28600:"iso885910",iso885911:{type:"_sbcs",chars:"€‚ƒ„…†‡ˆ‰Š‹ŒŽ‘’“”•–—˜™š›œžŸ กขฃคฅฆงจฉชซฌญฎฏฐฑฒณดตถทธนบปผฝพฟภมยรฤลฦวศษสหฬอฮฯะัาำิีึืฺุู����฿เแโใไๅๆ็่้๊๋์ํ๎๏๐๑๒๓๔๕๖๗๘๙๚๛����"},cp28601:"iso885911",iso885913:{type:"_sbcs",chars:"€‚ƒ„…†‡ˆ‰Š‹ŒŽ‘’“”•–—˜™š›œžŸ ”¢£¤„¦§Ø©Ŗ«¬­®Æ°±²³“µ¶·ø¹ŗ»¼½¾æĄĮĀĆÄÅĘĒČÉŹĖĢĶĪĻŠŃŅÓŌÕÖ×ŲŁŚŪÜŻŽßąįāćäåęēčéźėģķīļšńņóōõö÷ųłśūüżž’"},cp28603:"iso885913",iso885914:{type:"_sbcs",chars:"€‚ƒ„…†‡ˆ‰Š‹ŒŽ‘’“”•–—˜™š›œžŸ Ḃḃ£ĊċḊ§Ẁ©ẂḋỲ­®ŸḞḟĠġṀṁ¶ṖẁṗẃṠỳẄẅṡÀÁÂÃÄÅÆÇÈÉÊËÌÍÎÏŴÑÒÓÔÕÖṪØÙÚÛÜÝŶßàáâãäåæçèéêëìíîïŵñòóôõöṫøùúûüýŷÿ"},cp28604:"iso885914",iso885915:{type:"_sbcs",chars:"€‚ƒ„…†‡ˆ‰Š‹ŒŽ‘’“”•–—˜™š›œžŸ ¡¢£€¥Š§š©ª«¬­®¯°±²³Žµ¶·ž¹º»ŒœŸ¿ÀÁÂÃÄÅÆÇÈÉÊËÌÍÎÏÐÑÒÓÔÕÖ×ØÙÚÛÜÝÞßàáâãäåæçèéêëìíîïðñòóôõö÷øùúûüýþÿ"},cp28605:"iso885915",iso885916:{type:"_sbcs",chars:"€‚ƒ„…†‡ˆ‰Š‹ŒŽ‘’“”•–—˜™š›œžŸ ĄąŁ€„Š§š©Ș«Ź­źŻ°±ČłŽ”¶·žčș»ŒœŸżÀÁÂĂÄĆÆÇÈÉÊËÌÍÎÏĐŃÒÓÔŐÖŚŰÙÚÛÜĘȚßàáâăäćæçèéêëìíîïđńòóôőöśűùúûüęțÿ"},cp28606:"iso885916",cp437:{type:"_sbcs",chars:"ÇüéâäàåçêëèïîìÄÅÉæÆôöòûùÿÖÜ¢£¥₧ƒáíóúñѪº¿⌐¬½¼¡«»░▒▓│┤╡╢╖╕╣║╗╝╜╛┐└┴┬├─┼╞╟╚╔╩╦╠═╬╧╨╤╥╙╘╒╓╫╪┘┌█▄▌▐▀αßΓπΣσµτΦΘΩδ∞φε∩≡±≥≤⌠⌡÷≈°∙·√ⁿ²■ "},ibm437:"cp437",csibm437:"cp437",cp737:{type:"_sbcs",chars:"ΑΒΓΔΕΖΗΘΙΚΛΜΝΞΟΠΡΣΤΥΦΧΨΩαβγδεζηθικλμνξοπρσςτυφχψ░▒▓│┤╡╢╖╕╣║╗╝╜╛┐└┴┬├─┼╞╟╚╔╩╦╠═╬╧╨╤╥╙╘╒╓╫╪┘┌█▄▌▐▀ωάέήϊίόύϋώΆΈΉΊΌΎΏ±≥≤ΪΫ÷≈°∙·√ⁿ²■ "},ibm737:"cp737",csibm737:"cp737",cp775:{type:"_sbcs",chars:"ĆüéāäģåćłēŖŗīŹÄÅÉæÆōöĢ¢ŚśÖÜø£ØפĀĪóŻżź”¦©®¬½¼Ł«»░▒▓│┤ĄČĘĖ╣║╗╝ĮŠ┐└┴┬├─┼ŲŪ╚╔╩╦╠═╬Žąčęėįšųūž┘┌█▄▌▐▀ÓßŌŃõÕµńĶķĻļņĒŅ’­±“¾¶§÷„°∙·¹³²■ "},ibm775:"cp775",csibm775:"cp775",cp850:{type:"_sbcs",chars:"ÇüéâäàåçêëèïîìÄÅÉæÆôöòûùÿÖÜø£Ø׃áíóúñѪº¿®¬½¼¡«»░▒▓│┤ÁÂÀ©╣║╗╝¢¥┐└┴┬├─┼ãÃ╚╔╩╦╠═╬¤ðÐÊËÈıÍÎÏ┘┌█▄¦Ì▀ÓßÔÒõÕµþÞÚÛÙýݯ´­±‗¾¶§÷¸°¨·¹³²■ "},ibm850:"cp850",csibm850:"cp850",cp852:{type:"_sbcs",chars:"ÇüéâäůćçłëŐőîŹÄĆÉĹĺôöĽľŚśÖÜŤťŁ×čáíóúĄąŽžĘ꬟Ⱥ«»░▒▓│┤ÁÂĚŞ╣║╗╝Żż┐└┴┬├─┼Ăă╚╔╩╦╠═╬¤đĐĎËďŇÍÎě┘┌█▄ŢŮ▀ÓßÔŃńňŠšŔÚŕŰýÝţ´­˝˛ˇ˘§÷¸°¨˙űŘř■ "},ibm852:"cp852",csibm852:"cp852",cp855:{type:"_sbcs",chars:"ђЂѓЃёЁєЄѕЅіІїЇјЈљЉњЊћЋќЌўЎџЏюЮъЪаАбБцЦдДеЕфФгГ«»░▒▓│┤хХиИ╣║╗╝йЙ┐└┴┬├─┼кК╚╔╩╦╠═╬¤лЛмМнНоОп┘┌█▄Пя▀ЯрРсСтТуУжЖвВьЬ№­ыЫзЗшШэЭщЩчЧ§■ "},ibm855:"cp855",csibm855:"cp855",cp856:{type:"_sbcs",chars:"אבגדהוזחטיךכלםמןנסעףפץצקרשת�£�×����������®¬½¼�«»░▒▓│┤���©╣║╗╝¢¥┐└┴┬├─┼��╚╔╩╦╠═╬¤���������┘┌█▄¦�▀������µ�������¯´­±‗¾¶§÷¸°¨·¹³²■ "},ibm856:"cp856",csibm856:"cp856",cp857:{type:"_sbcs",chars:"ÇüéâäàåçêëèïîıÄÅÉæÆôöòûùİÖÜø£ØŞşáíóúñÑĞ𿮬½¼¡«»░▒▓│┤ÁÂÀ©╣║╗╝¢¥┐└┴┬├─┼ãÃ╚╔╩╦╠═╬¤ºªÊËÈ�ÍÎÏ┘┌█▄¦Ì▀ÓßÔÒõÕµ�×ÚÛÙìÿ¯´­±�¾¶§÷¸°¨·¹³²■ "},ibm857:"cp857",csibm857:"cp857",cp858:{type:"_sbcs",chars:"ÇüéâäàåçêëèïîìÄÅÉæÆôöòûùÿÖÜø£Ø׃áíóúñѪº¿®¬½¼¡«»░▒▓│┤ÁÂÀ©╣║╗╝¢¥┐└┴┬├─┼ãÃ╚╔╩╦╠═╬¤ðÐÊËÈ€ÍÎÏ┘┌█▄¦Ì▀ÓßÔÒõÕµþÞÚÛÙýݯ´­±‗¾¶§÷¸°¨·¹³²■ "},ibm858:"cp858",csibm858:"cp858",cp860:{type:"_sbcs",chars:"ÇüéâãàÁçêÊèÍÔìÃÂÉÀÈôõòÚùÌÕÜ¢£Ù₧ÓáíóúñѪº¿Ò¬½¼¡«»░▒▓│┤╡╢╖╕╣║╗╝╜╛┐└┴┬├─┼╞╟╚╔╩╦╠═╬╧╨╤╥╙╘╒╓╫╪┘┌█▄▌▐▀αßΓπΣσµτΦΘΩδ∞φε∩≡±≥≤⌠⌡÷≈°∙·√ⁿ²■ "},ibm860:"cp860",csibm860:"cp860",cp861:{type:"_sbcs",chars:"ÇüéâäàåçêëèÐðÞÄÅÉæÆôöþûÝýÖÜø£Ø₧ƒáíóúÁÍÓÚ¿⌐¬½¼¡«»░▒▓│┤╡╢╖╕╣║╗╝╜╛┐└┴┬├─┼╞╟╚╔╩╦╠═╬╧╨╤╥╙╘╒╓╫╪┘┌█▄▌▐▀αßΓπΣσµτΦΘΩδ∞φε∩≡±≥≤⌠⌡÷≈°∙·√ⁿ²■ "},ibm861:"cp861",csibm861:"cp861",cp862:{type:"_sbcs",chars:"אבגדהוזחטיךכלםמןנסעףפץצקרשת¢£¥₧ƒáíóúñѪº¿⌐¬½¼¡«»░▒▓│┤╡╢╖╕╣║╗╝╜╛┐└┴┬├─┼╞╟╚╔╩╦╠═╬╧╨╤╥╙╘╒╓╫╪┘┌█▄▌▐▀αßΓπΣσµτΦΘΩδ∞φε∩≡±≥≤⌠⌡÷≈°∙·√ⁿ²■ "},ibm862:"cp862",csibm862:"cp862",cp863:{type:"_sbcs",chars:"ÇüéâÂà¶çêëèïî‗À§ÉÈÊôËÏûù¤ÔÜ¢£ÙÛƒ¦´óú¨¸³¯Î⌐¬½¼¾«»░▒▓│┤╡╢╖╕╣║╗╝╜╛┐└┴┬├─┼╞╟╚╔╩╦╠═╬╧╨╤╥╙╘╒╓╫╪┘┌█▄▌▐▀αßΓπΣσµτΦΘΩδ∞φε∩≡±≥≤⌠⌡÷≈°∙·√ⁿ²■ "},ibm863:"cp863",csibm863:"cp863",cp864:{type:"_sbcs",chars:"\0
\b\t\n\v\f\r !\"#$٪&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\\]^_`abcdefghijklmnopqrstuvwxyz{|}~°·∙√▒─│┼┤┬├┴┐┌└┘β∞φ±½¼≈«»ﻷﻸ��ﻻﻼ� ­ﺂ£¤ﺄ��ﺎﺏﺕﺙ،ﺝﺡﺥ٠١٢٣٤٥٦٧٨٩ﻑ؛ﺱﺵﺹ؟¢ﺀﺁﺃﺅﻊﺋﺍﺑﺓﺗﺛﺟﺣﺧﺩﺫﺭﺯﺳﺷﺻﺿﻁﻅﻋﻏ¦¬÷×ﻉـﻓﻗﻛﻟﻣﻧﻫﻭﻯﻳﺽﻌﻎﻍﻡﹽّﻥﻩﻬﻰﻲﻐﻕﻵﻶﻝﻙﻱ■�"},ibm864:"cp864",csibm864:"cp864",cp865:{type:"_sbcs",chars:"ÇüéâäàåçêëèïîìÄÅÉæÆôöòûùÿÖÜø£Ø₧ƒáíóúñѪº¿⌐¬½¼¡«¤░▒▓│┤╡╢╖╕╣║╗╝╜╛┐└┴┬├─┼╞╟╚╔╩╦╠═╬╧╨╤╥╙╘╒╓╫╪┘┌█▄▌▐▀αßΓπΣσµτΦΘΩδ∞φε∩≡±≥≤⌠⌡÷≈°∙·√ⁿ²■ "},ibm865:"cp865",csibm865:"cp865",cp866:{type:"_sbcs",chars:"АБВГДЕЖЗИЙКЛМНОПРСТУФХЦЧШЩЪЫЬЭЮЯабвгдежзийклмноп░▒▓│┤╡╢╖╕╣║╗╝╜╛┐└┴┬├─┼╞╟╚╔╩╦╠═╬╧╨╤╥╙╘╒╓╫╪┘┌█▄▌▐▀рстуфхцчшщъыьэюяЁёЄєЇїЎў°∙·√№¤■ "},ibm866:"cp866",csibm866:"cp866",cp869:{type:"_sbcs",chars:"������Ά�·¬¦‘’Έ―ΉΊΪΌ��ΎΫ©Ώ²³ά£έήίϊΐόύΑΒΓΔΕΖΗ½ΘΙ«»░▒▓│┤ΚΛΜΝ╣║╗╝ΞΟ┐└┴┬├─┼ΠΡ╚╔╩╦╠═╬ΣΤΥΦΧΨΩαβγ┘┌█▄δε▀ζηθικλμνξοπρσςτ΄­±υφχ§ψ΅°¨ωϋΰώ■ "},ibm869:"cp869",csibm869:"cp869",cp922:{type:"_sbcs",chars:"€‚ƒ„…†‡ˆ‰Š‹ŒŽ‘’“”•–—˜™š›œžŸ ¡¢£¤¥¦§¨©ª«¬­®‾°±²³´µ¶·¸¹º»¼½¾¿ÀÁÂÃÄÅÆÇÈÉÊËÌÍÎÏŠÑÒÓÔÕÖ×ØÙÚÛÜÝŽßàáâãäåæçèéêëìíîïšñòóôõö÷øùúûüýžÿ"},ibm922:"cp922",csibm922:"cp922",cp1046:{type:"_sbcs",chars:"ﺈ×÷ﹱˆ■│─┐┌└┘ﹹﹻﹽﹿﹷﺊﻰﻳﻲﻎﻏﻐﻶﻸﻺﻼ ¤ﺋﺑﺗﺛﺟﺣ،­ﺧﺳ٠١٢٣٤٥٦٧٨٩ﺷ؛ﺻﺿﻊ؟ﻋءآأؤإئابةتثجحخدذرزسشصضطﻇعغﻌﺂﺄﺎﻓـفقكلمنهوىيًٌٍَُِّْﻗﻛﻟﻵﻷﻹﻻﻣﻧﻬﻩ�"},ibm1046:"cp1046",csibm1046:"cp1046",cp1124:{type:"_sbcs",chars:"€‚ƒ„…†‡ˆ‰Š‹ŒŽ‘’“”•–—˜™š›œžŸ ЁЂҐЄЅІЇЈЉЊЋЌ­ЎЏАБВГДЕЖЗИЙКЛМНОПРСТУФХЦЧШЩЪЫЬЭЮЯабвгдежзийклмнопрстуфхцчшщъыьэюя№ёђґєѕіїјљњћќ§ўџ"},ibm1124:"cp1124",csibm1124:"cp1124",cp1125:{type:"_sbcs",chars:"АБВГДЕЖЗИЙКЛМНОПРСТУФХЦЧШЩЪЫЬЭЮЯабвгдежзийклмноп░▒▓│┤╡╢╖╕╣║╗╝╜╛┐└┴┬├─┼╞╟╚╔╩╦╠═╬╧╨╤╥╙╘╒╓╫╪┘┌█▄▌▐▀рстуфхцчшщъыьэюяЁёҐґЄєІіЇї·√№¤■ "},ibm1125:"cp1125",csibm1125:"cp1125",cp1129:{type:"_sbcs",chars:"€‚ƒ„…†‡ˆ‰Š‹ŒŽ‘’“”•–—˜™š›œžŸ ¡¢£¤¥¦§œ©ª«¬­®¯°±²³Ÿµ¶·Œ¹º»¼½¾¿ÀÁÂĂÄÅÆÇÈÉÊË̀ÍÎÏĐÑ̉ÓÔƠÖ×ØÙÚÛÜỮßàáâăäåæçèéêë́íîïđṇ̃óôơö÷øùúûüư₫ÿ"},ibm1129:"cp1129",csibm1129:"cp1129",cp1133:{type:"_sbcs",chars:"€‚ƒ„…†‡ˆ‰Š‹ŒŽ‘’“”•–—˜™š›œžŸ ກຂຄງຈສຊຍດຕຖທນບປຜຝພຟມຢຣລວຫອຮ���ຯະາຳິີຶືຸູຼັົຽ���ເແໂໃໄ່້໊໋໌ໍໆ�ໜໝ₭����������������໐໑໒໓໔໕໖໗໘໙��¢¬¦�"},ibm1133:"cp1133",csibm1133:"cp1133",cp1161:{type:"_sbcs",chars:"��������������������������������่กขฃคฅฆงจฉชซฌญฎฏฐฑฒณดตถทธนบปผฝพฟภมยรฤลฦวศษสหฬอฮฯะัาำิีึืฺุู้๊๋€฿เแโใไๅๆ็่้๊๋์ํ๎๏๐๑๒๓๔๕๖๗๘๙๚๛¢¬¦ "},ibm1161:"cp1161",csibm1161:"cp1161",cp1162:{type:"_sbcs",chars:"€‚ƒ„…†‡ˆ‰Š‹ŒŽ‘’“”•–—˜™š›œžŸ กขฃคฅฆงจฉชซฌญฎฏฐฑฒณดตถทธนบปผฝพฟภมยรฤลฦวศษสหฬอฮฯะัาำิีึืฺุู����฿เแโใไๅๆ็่้๊๋์ํ๎๏๐๑๒๓๔๕๖๗๘๙๚๛����"},ibm1162:"cp1162",csibm1162:"cp1162",cp1163:{type:"_sbcs",chars:"€‚ƒ„…†‡ˆ‰Š‹ŒŽ‘’“”•–—˜™š›œžŸ ¡¢£€¥¦§œ©ª«¬­®¯°±²³Ÿµ¶·Œ¹º»¼½¾¿ÀÁÂĂÄÅÆÇÈÉÊË̀ÍÎÏĐÑ̉ÓÔƠÖ×ØÙÚÛÜỮßàáâăäåæçèéêë́íîïđṇ̃óôơö÷øùúûüư₫ÿ"},ibm1163:"cp1163",csibm1163:"cp1163",maccroatian:{type:"_sbcs",chars:"ÄÅÇÉÑÖÜáàâäãåçéèêëíìîïñóòôöõúùûü†°¢£§•¶ß®Š™´¨≠ŽØ∞±≤≥∆µ∂∑∏š∫ªºΩžø¿¡¬√ƒ≈Ć«Č… ÀÃÕŒœĐ—“”‘’÷◊�©⁄¤‹›Æ»–·‚„‰ÂćÁčÈÍÎÏÌÓÔđÒÚÛÙıˆ˜¯πË˚¸Êæˇ"},maccyrillic:{type:"_sbcs",chars:"АБВГДЕЖЗИЙКЛМНОПРСТУФХЦЧШЩЪЫЬЭЮЯ†°¢£§•¶І®©™Ђђ≠Ѓѓ∞±≤≥іµ∂ЈЄєЇїЉљЊњјЅ¬√ƒ≈∆«»… ЋћЌќѕ–—“”‘’÷„ЎўЏџ№Ёёяабвгдежзийклмнопрстуфхцчшщъыьэю¤"},macgreek:{type:"_sbcs",chars:"Ĺ²É³ÖÜ΅àâä΄¨çéèê룙î‰ôö¦­ùûü†ΓΔΘΛΞΠß®©ΣΪ§≠°·Α±≤≥¥ΒΕΖΗΙΚΜΦΫΨΩάΝ¬ΟΡ≈Τ«»… ΥΧΆΈœ–―“”‘’÷ΉΊΌΎέήίόΏύαβψδεφγηιξκλμνοπώρστθωςχυζϊϋΐΰ�"},maciceland:{type:"_sbcs",chars:"ÄÅÇÉÑÖÜáàâäãåçéèêëíìîïñóòôöõúùûüÝ°¢£§•¶ß®©™´¨≠ÆØ∞±≤≥¥µ∂∑∏π∫ªºΩæø¿¡¬√ƒ≈∆«»… ÀÃÕŒœ–—“”‘’÷◊ÿŸ⁄¤ÐðÞþý·‚„‰ÂÊÁËÈÍÎÏÌÓÔ�ÒÚÛÙıˆ˜¯˘˙˚¸˝˛ˇ"},macroman:{type:"_sbcs",chars:"ÄÅÇÉÑÖÜáàâäãåçéèêëíìîïñóòôöõúùûü†°¢£§•¶ß®©™´¨≠ÆØ∞±≤≥¥µ∂∑∏π∫ªºΩæø¿¡¬√ƒ≈∆«»… ÀÃÕŒœ–—“”‘’÷◊ÿŸ⁄¤‹›fifl‡·‚„‰ÂÊÁËÈÍÎÏÌÓÔ�ÒÚÛÙıˆ˜¯˘˙˚¸˝˛ˇ"},macromania:{type:"_sbcs",chars:"ÄÅÇÉÑÖÜáàâäãåçéèêëíìîïñóòôöõúùûü†°¢£§•¶ß®©™´¨≠ĂŞ∞±≤≥¥µ∂∑∏π∫ªºΩăş¿¡¬√ƒ≈∆«»… ÀÃÕŒœ–—“”‘’÷◊ÿŸ⁄¤‹›Ţţ‡·‚„‰ÂÊÁËÈÍÎÏÌÓÔ�ÒÚÛÙıˆ˜¯˘˙˚¸˝˛ˇ"},macthai:{type:"_sbcs",chars:"«»…“”�•‘’� กขฃคฅฆงจฉชซฌญฎฏฐฑฒณดตถทธนบปผฝพฟภมยรฤลฦวศษสหฬอฮฯะัาำิีึืฺุู\ufeff​–—฿เแโใไๅๆ็่้๊๋์ํ™๏๐๑๒๓๔๕๖๗๘๙®©����"},macturkish:{type:"_sbcs",chars:"ÄÅÇÉÑÖÜáàâäãåçéèêëíìîïñóòôöõúùûü†°¢£§•¶ß®©™´¨≠ÆØ∞±≤≥¥µ∂∑∏π∫ªºΩæø¿¡¬√ƒ≈∆«»… ÀÃÕŒœ–—“”‘’÷◊ÿŸĞğİıŞş‡·‚„‰ÂÊÁËÈÍÎÏÌÓÔ�ÒÚÛÙ�ˆ˜¯˘˙˚¸˝˛ˇ"},macukraine:{type:"_sbcs",chars:"АБВГДЕЖЗИЙКЛМНОПРСТУФХЦЧШЩЪЫЬЭЮЯ†°Ґ£§•¶І®©™Ђђ≠Ѓѓ∞±≤≥іµґЈЄєЇїЉљЊњјЅ¬√ƒ≈∆«»… ЋћЌќѕ–—“”‘’÷„ЎўЏџ№Ёёяабвгдежзийклмнопрстуфхцчшщъыьэю¤"},koi8r:{type:"_sbcs",chars:"─│┌┐└┘├┤┬┴┼▀▄█▌▐░▒▓⌠■∙√≈≤≥ ⌡°²·÷═║╒ё╓╔╕╖╗╘╙╚╛╜╝╞╟╠╡Ё╢╣╤╥╦╧╨╩╪╫╬©юабцдефгхийклмнопярстужвьызшэщчъЮАБЦДЕФГХИЙКЛМНОПЯРСТУЖВЬЫЗШЭЩЧЪ"},koi8u:{type:"_sbcs",chars:"─│┌┐└┘├┤┬┴┼▀▄█▌▐░▒▓⌠■∙√≈≤≥ ⌡°²·÷═║╒ёє╔ії╗╘╙╚╛ґ╝╞╟╠╡ЁЄ╣ІЇ╦╧╨╩╪Ґ╬©юабцдефгхийклмнопярстужвьызшэщчъЮАБЦДЕФГХИЙКЛМНОПЯРСТУЖВЬЫЗШЭЩЧЪ"},koi8ru:{type:"_sbcs",chars:"─│┌┐└┘├┤┬┴┼▀▄█▌▐░▒▓⌠■∙√≈≤≥ ⌡°²·÷═║╒ёє╔ії╗╘╙╚╛ґў╞╟╠╡ЁЄ╣ІЇ╦╧╨╩╪ҐЎ©юабцдефгхийклмнопярстужвьызшэщчъЮАБЦДЕФГХИЙКЛМНОПЯРСТУЖВЬЫЗШЭЩЧЪ"},koi8t:{type:"_sbcs",chars:"қғ‚Ғ„…†‡�‰ҳ‹ҲҷҶ�Қ‘’“”•–—�™�›�����ӯӮё¤ӣ¦§���«¬­®�°±²Ё�Ӣ¶·�№�»���©юабцдефгхийклмнопярстужвьызшэщчъЮАБЦДЕФГХИЙКЛМНОПЯРСТУЖВЬЫЗШЭЩЧЪ"},armscii8:{type:"_sbcs",chars:"€‚ƒ„…†‡ˆ‰Š‹ŒŽ‘’“”•–—˜™š›œžŸ �և։)(»«—.՝,-֊…՜՛՞ԱաԲբԳգԴդԵեԶզԷէԸըԹթԺժԻիԼլԽխԾծԿկՀհՁձՂղՃճՄմՅյՆնՇշՈոՉչՊպՋջՌռՍսՎվՏտՐրՑցՒւՓփՔքՕօՖֆ՚�"},rk1048:{type:"_sbcs",chars:"ЂЃ‚ѓ„…†‡€‰Љ‹ЊҚҺЏђ‘’“”•–—�™љ›њқһџ ҰұӘ¤Ө¦§Ё©Ғ«¬­®Ү°±Ііөµ¶·ё№ғ»әҢңүАБВГДЕЖЗИЙКЛМНОПРСТУФХЦЧШЩЪЫЬЭЮЯабвгдежзийклмнопрстуфхцчшщъыьэюя"},tcvn:{type:"_sbcs",chars:"\0ÚỤỪỬỮ\b\t\n\v\f\rỨỰỲỶỸÝỴ !\"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\\]^_`abcdefghijklmnopqrstuvwxyz{|}~ÀẢÃÁẠẶẬÈẺẼÉẸỆÌỈĨÍỊÒỎÕÓỌỘỜỞỠỚỢÙỦŨ ĂÂÊÔƠƯĐăâêôơưđẶ̀̀̉̃́àảãáạẲằẳẵắẴẮẦẨẪẤỀặầẩẫấậèỂẻẽéẹềểễếệìỉỄẾỒĩíịòỔỏõóọồổỗốộờởỡớợùỖủũúụừửữứựỳỷỹýỵỐ"},georgianacademy:{type:"_sbcs",chars:"€‚ƒ„…†‡ˆ‰Š‹ŒŽ‘’“”•–—˜™š›œžŸ ¡¢£¤¥¦§¨©ª«¬­®¯°±²³´µ¶·¸¹º»¼½¾¿აბგდევზთიკლმნოპჟრსტუფქღყშჩცძწჭხჯჰჱჲჳჴჵჶçèéêëìíîïðñòóôõö÷øùúûüýþÿ"},georgianps:{type:"_sbcs",chars:"€‚ƒ„…†‡ˆ‰Š‹ŒŽ‘’“”•–—˜™š›œžŸ ¡¢£¤¥¦§¨©ª«¬­®¯°±²³´µ¶·¸¹º»¼½¾¿აბგდევზჱთიკლმნჲოპჟრსტჳუფქღყშჩცძწჭხჴჯჰჵæçèéêëìíîïðñòóôõö÷øùúûüýþÿ"},pt154:{type:"_sbcs",chars:"ҖҒӮғ„…ҶҮҲүҠӢҢҚҺҸҗ‘’“”•–—ҳҷҡӣңқһҹ ЎўЈӨҘҰ§Ё©Ә«¬ӯ®Ҝ°ұІіҙө¶·ё№ә»јҪҫҝАБВГДЕЖЗИЙКЛМНОПРСТУФХЦЧШЩЪЫЬЭЮЯабвгдежзийклмнопрстуфхцчшщъыьэюя"},viscii:{type:"_sbcs",chars:"\0
ẲẴẪ\b\t\n\v\f\rỶỸỴ !\"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\\]^_`abcdefghijklmnopqrstuvwxyz{|}~ẠẮẰẶẤẦẨẬẼẸẾỀỂỄỆỐỒỔỖỘỢỚỜỞỊỎỌỈỦŨỤỲÕắằặấầẩậẽẹếềểễệốồổỗỠƠộờởịỰỨỪỬơớƯÀÁÂÃẢĂẳẵÈÉÊẺÌÍĨỳĐứÒÓÔạỷừửÙÚỹỵÝỡưàáâãảăữẫèéêẻìíĩỉđựòóôõỏọụùúũủýợỮ"},iso646cn:{type:"_sbcs",chars:"\0
\b\t\n\v\f\r !\"#¥%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\\]^_`abcdefghijklmnopqrstuvwxyz{|}‾��������������������������������������������������������������������������������������������������������������������������������"},iso646jp:{type:"_sbcs",chars:"\0
\b\t\n\v\f\r !\"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[¥]^_`abcdefghijklmnopqrstuvwxyz{|}‾��������������������������������������������������������������������������������������������������������������������������������"},hproman8:{type:"_sbcs",chars:"€‚ƒ„…†‡ˆ‰Š‹ŒŽ‘’“”•–—˜™š›œžŸ ÀÂÈÊËÎÏ´ˋˆ¨˜ÙÛ₤¯Ýý°ÇçÑñ¡¿¤£¥§ƒ¢âêôûáéóúàèòùäëöüÅîØÆåíøæÄìÖÜÉïßÔÁÃãÐðÍÌÓÒÕõŠšÚŸÿÞþ·µ¶¾—¼½ªº«■»±�"},macintosh:{type:"_sbcs",chars:"ÄÅÇÉÑÖÜáàâäãåçéèêëíìîïñóòôöõúùûü†°¢£§•¶ß®©™´¨≠ÆØ∞±≤≥¥µ∂∑∏π∫ªºΩæø¿¡¬√ƒ≈∆«»… ÀÃÕŒœ–—“”‘’÷◊ÿŸ⁄¤‹›fifl‡·‚„‰ÂÊÁËÈÍÎÏÌÓÔ�ÒÚÛÙıˆ˜¯˘˙˚¸˝˛ˇ"},ascii:{type:"_sbcs",chars:"��������������������������������������������������������������������������������������������������������������������������������"},tis620:{type:"_sbcs",chars:"���������������������������������กขฃคฅฆงจฉชซฌญฎฏฐฑฒณดตถทธนบปผฝพฟภมยรฤลฦวศษสหฬอฮฯะัาำิีึืฺุู����฿เแโใไๅๆ็่้๊๋์ํ๎๏๐๑๒๓๔๕๖๗๘๙๚๛����"}}},3769:function(r){"use strict";r.exports={10029:"maccenteuro",maccenteuro:{type:"_sbcs",chars:"ÄĀāÉĄÖÜáąČäčĆć鏟ĎíďĒēĖóėôöõúĚěü†°Ę£§•¶ß®©™ę¨≠ģĮįĪ≤≥īĶ∂∑łĻļĽľĹĺŅņѬ√ńŇ∆«»… ňŐÕőŌ–—“”‘’÷◊ōŔŕŘ‹›řŖŗŠ‚„šŚśÁŤťÍŽžŪÓÔūŮÚůŰűŲųÝýķŻŁżĢˇ"},808:"cp808",ibm808:"cp808",cp808:{type:"_sbcs",chars:"АБВГДЕЖЗИЙКЛМНОПРСТУФХЦЧШЩЪЫЬЭЮЯабвгдежзийклмноп░▒▓│┤╡╢╖╕╣║╗╝╜╛┐└┴┬├─┼╞╟╚╔╩╦╠═╬╧╨╤╥╙╘╒╓╫╪┘┌█▄▌▐▀рстуфхцчшщъыьэюяЁёЄєЇїЎў°∙·√№€■ "},mik:{type:"_sbcs",chars:"АБВГДЕЖЗИЙКЛМНОПРСТУФХЦЧШЩЪЫЬЭЮЯабвгдежзийклмнопрстуфхцчшщъыьэюя└┴┬├─┼╣║╚╔╩╦╠═╬┐░▒▓│┤№§╗╝┘┌█▄▌▐▀αßΓπΣσµτΦΘΩδ∞φε∩≡±≥≤⌠⌡÷≈°∙·√ⁿ²■ "},cp720:{type:"_sbcs",chars:"€éâ„à†çêëèïّْô¤ـûùءآأؤ£إئابةتثجحخدذرزسشص«»░▒▓│┤╡╢╖╕╣║╗╝╜╛┐└┴┬├─┼╞╟╚╔╩╦╠═╬╧╨╤╥╙╘╒╓╫╪┘┌█▄▌▐▀ضطظعغفµقكلمنهوىي≡ًٌٍَُِ≈°∙·√ⁿ²■ "},ascii8bit:"ascii",usascii:"ascii",ansix34:"ascii",ansix341968:"ascii",ansix341986:"ascii",csascii:"ascii",cp367:"ascii",ibm367:"ascii",isoir6:"ascii",iso646us:"ascii",iso646irv:"ascii",us:"ascii",latin1:"iso88591",latin2:"iso88592",latin3:"iso88593",latin4:"iso88594",latin5:"iso88599",latin6:"iso885910",latin7:"iso885913",latin8:"iso885914",latin9:"iso885915",latin10:"iso885916",csisolatin1:"iso88591",csisolatin2:"iso88592",csisolatin3:"iso88593",csisolatin4:"iso88594",csisolatincyrillic:"iso88595",csisolatinarabic:"iso88596",csisolatingreek:"iso88597",csisolatinhebrew:"iso88598",csisolatin5:"iso88599",csisolatin6:"iso885910",l1:"iso88591",l2:"iso88592",l3:"iso88593",l4:"iso88594",l5:"iso88599",l6:"iso885910",l7:"iso885913",l8:"iso885914",l9:"iso885915",l10:"iso885916",isoir14:"iso646jp",isoir57:"iso646cn",isoir100:"iso88591",isoir101:"iso88592",isoir109:"iso88593",isoir110:"iso88594",isoir144:"iso88595",isoir127:"iso88596",isoir126:"iso88597",isoir138:"iso88598",isoir148:"iso88599",isoir157:"iso885910",isoir166:"tis620",isoir179:"iso885913",isoir199:"iso885914",isoir203:"iso885915",isoir226:"iso885916",cp819:"iso88591",ibm819:"iso88591",cyrillic:"iso88595",arabic:"iso88596",arabic8:"iso88596",ecma114:"iso88596",asmo708:"iso88596",greek:"iso88597",greek8:"iso88597",ecma118:"iso88597",elot928:"iso88597",hebrew:"iso88598",hebrew8:"iso88598",turkish:"iso88599",turkish8:"iso88599",thai:"iso885911",thai8:"iso885911",celtic:"iso885914",celtic8:"iso885914",isoceltic:"iso885914",tis6200:"tis620",tis62025291:"tis620",tis62025330:"tis620",1e4:"macroman",10006:"macgreek",10007:"maccyrillic",10079:"maciceland",10081:"macturkish",cspc8codepage437:"cp437",cspc775baltic:"cp775",cspc850multilingual:"cp850",cspcp852:"cp852",cspc862latinhebrew:"cp862",cpgr:"cp869",msee:"cp1250",mscyrl:"cp1251",msansi:"cp1252",msgreek:"cp1253",msturk:"cp1254",mshebr:"cp1255",msarab:"cp1256",winbaltrim:"cp1257",cp20866:"koi8r",20866:"koi8r",ibm878:"koi8r",cskoi8r:"koi8r",cp21866:"koi8u",21866:"koi8u",ibm1168:"koi8u",strk10482002:"rk1048",tcvn5712:"tcvn",tcvn57121:"tcvn",gb198880:"iso646cn",cn:"iso646cn",csiso14jisc6220ro:"iso646jp",jisc62201969ro:"iso646jp",jp:"iso646jp",cshproman8:"hproman8",r8:"hproman8",roman8:"hproman8",xroman8:"hproman8",ibm1051:"hproman8",mac:"macintosh",csmacintosh:"macintosh"}},1279:function(r,i,o){"use strict";var u=o(7103).Buffer;function Utf16BECodec(){}function Utf16BEEncoder(){}function Utf16BEDecoder(){this.overflowByte=-1}function Utf16Codec(r,i){this.iconv=i}function Utf16Encoder(r,i){void 0===(r=r||{}).addBOM&&(r.addBOM=!0),this.encoder=i.iconv.getEncoder("utf-16le",r)}function Utf16Decoder(r,i){this.decoder=null,this.initialBufs=[],this.initialBufsLen=0,this.options=r||{},this.iconv=i.iconv}function detectEncoding(r,i){var o=[],u=0,p=0,g=0;e:for(var y=0;y<r.length;y++)for(var w=r[y],_=0;_<w.length;_++)if(o.push(w[_]),2===o.length){if(0===u){if(255===o[0]&&254===o[1])return"utf-16le";if(254===o[0]&&255===o[1])return"utf-16be"}if(0===o[0]&&0!==o[1]&&g++,0!==o[0]&&0===o[1]&&p++,o.length=0,++u>=100)break e}return g>p?"utf-16be":g<p?"utf-16le":i||"utf-16le"}i.utf16be=Utf16BECodec,Utf16BECodec.prototype.encoder=Utf16BEEncoder,Utf16BECodec.prototype.decoder=Utf16BEDecoder,Utf16BECodec.prototype.bomAware=!0,Utf16BEEncoder.prototype.write=function(r){for(var i=u.from(r,"ucs2"),o=0;o<i.length;o+=2){var p=i[o];i[o]=i[o+1],i[o+1]=p}return i},Utf16BEEncoder.prototype.end=function(){},Utf16BEDecoder.prototype.write=function(r){if(0==r.length)return"";var i=u.alloc(r.length+1),o=0,p=0;for(-1!==this.overflowByte&&(i[0]=r[0],i[1]=this.overflowByte,o=1,p=2);o<r.length-1;o+=2,p+=2)i[p]=r[o+1],i[p+1]=r[o];return this.overflowByte=o==r.length-1?r[r.length-1]:-1,i.slice(0,p).toString("ucs2")},Utf16BEDecoder.prototype.end=function(){this.overflowByte=-1},i.utf16=Utf16Codec,Utf16Codec.prototype.encoder=Utf16Encoder,Utf16Codec.prototype.decoder=Utf16Decoder,Utf16Encoder.prototype.write=function(r){return this.encoder.write(r)},Utf16Encoder.prototype.end=function(){return this.encoder.end()},Utf16Decoder.prototype.write=function(r){if(!this.decoder){if(this.initialBufs.push(r),this.initialBufsLen+=r.length,this.initialBufsLen<16)return"";var i=detectEncoding(this.initialBufs,this.options.defaultEncoding);this.decoder=this.iconv.getDecoder(i,this.options);for(var o="",u=0;u<this.initialBufs.length;u++)o+=this.decoder.write(this.initialBufs[u]);return this.initialBufs.length=this.initialBufsLen=0,o}return this.decoder.write(r)},Utf16Decoder.prototype.end=function(){if(!this.decoder){var r=detectEncoding(this.initialBufs,this.options.defaultEncoding);this.decoder=this.iconv.getDecoder(r,this.options);for(var i="",o=0;o<this.initialBufs.length;o++)i+=this.decoder.write(this.initialBufs[o]);var u=this.decoder.end();return u&&(i+=u),this.initialBufs.length=this.initialBufsLen=0,i}return this.decoder.end()}},7688:function(r,i,o){"use strict";var u=o(7103).Buffer;function Utf32Codec(r,i){this.iconv=i,this.bomAware=!0,this.isLE=r.isLE}function Utf32Encoder(r,i){this.isLE=i.isLE,this.highSurrogate=0}function Utf32Decoder(r,i){this.isLE=i.isLE,this.badChar=i.iconv.defaultCharUnicode.charCodeAt(0),this.overflow=[]}function _writeCodepoint(r,i,o,u){if((o<0||o>1114111)&&(o=u),o>=65536){var p=55296|(o-=65536)>>10;r[i++]=255&p,r[i++]=p>>8;o=56320|1023&o}return r[i++]=255&o,r[i++]=o>>8,i}function Utf32AutoCodec(r,i){this.iconv=i}function Utf32AutoEncoder(r,i){void 0===(r=r||{}).addBOM&&(r.addBOM=!0),this.encoder=i.iconv.getEncoder(r.defaultEncoding||"utf-32le",r)}function Utf32AutoDecoder(r,i){this.decoder=null,this.initialBufs=[],this.initialBufsLen=0,this.options=r||{},this.iconv=i.iconv}function detectEncoding(r,i){var o=[],u=0,p=0,g=0,y=0,w=0;e:for(var _=0;_<r.length;_++)for(var x=r[_],k=0;k<x.length;k++)if(o.push(x[k]),4===o.length){if(0===u){if(255===o[0]&&254===o[1]&&0===o[2]&&0===o[3])return"utf-32le";if(0===o[0]&&0===o[1]&&254===o[2]&&255===o[3])return"utf-32be"}if((0!==o[0]||o[1]>16)&&g++,(0!==o[3]||o[2]>16)&&p++,0!==o[0]||0!==o[1]||0===o[2]&&0===o[3]||w++,0===o[0]&&0===o[1]||0!==o[2]||0!==o[3]||y++,o.length=0,++u>=100)break e}return w-g>y-p?"utf-32be":w-g<y-p?"utf-32le":i||"utf-32le"}i._utf32=Utf32Codec,i.utf32le={type:"_utf32",isLE:!0},i.utf32be={type:"_utf32",isLE:!1},i.ucs4le="utf32le",i.ucs4be="utf32be",Utf32Codec.prototype.encoder=Utf32Encoder,Utf32Codec.prototype.decoder=Utf32Decoder,Utf32Encoder.prototype.write=function(r){for(var i=u.from(r,"ucs2"),o=u.alloc(2*i.length),p=this.isLE?o.writeUInt32LE:o.writeUInt32BE,g=0,y=0;y<i.length;y+=2){var w=i.readUInt16LE(y),_=55296<=w&&w<56320,x=56320<=w&&w<57344;if(this.highSurrogate){if(!_&&x){var k=65536+(this.highSurrogate-55296<<10|w-56320);p.call(o,k,g),g+=4,this.highSurrogate=0;continue}p.call(o,this.highSurrogate,g),g+=4}_?this.highSurrogate=w:(p.call(o,w,g),g+=4,this.highSurrogate=0)}return g<o.length&&(o=o.slice(0,g)),o},Utf32Encoder.prototype.end=function(){if(this.highSurrogate){var r=u.alloc(4);return this.isLE?r.writeUInt32LE(this.highSurrogate,0):r.writeUInt32BE(this.highSurrogate,0),this.highSurrogate=0,r}},Utf32Decoder.prototype.write=function(r){if(0===r.length)return"";var i=0,o=0,p=u.alloc(r.length+4),g=0,y=this.isLE,w=this.overflow,_=this.badChar;if(w.length>0){for(;i<r.length&&w.length<4;i++)w.push(r[i]);4===w.length&&(o=y?w[i]|w[i+1]<<8|w[i+2]<<16|w[i+3]<<24:w[i+3]|w[i+2]<<8|w[i+1]<<16|w[i]<<24,w.length=0,g=_writeCodepoint(p,g,o,_))}for(;i<r.length-3;i+=4)g=_writeCodepoint(p,g,o=y?r[i]|r[i+1]<<8|r[i+2]<<16|r[i+3]<<24:r[i+3]|r[i+2]<<8|r[i+1]<<16|r[i]<<24,_);for(;i<r.length;i++)w.push(r[i]);return p.slice(0,g).toString("ucs2")},Utf32Decoder.prototype.end=function(){this.overflow.length=0},i.utf32=Utf32AutoCodec,i.ucs4="utf32",Utf32AutoCodec.prototype.encoder=Utf32AutoEncoder,Utf32AutoCodec.prototype.decoder=Utf32AutoDecoder,Utf32AutoEncoder.prototype.write=function(r){return this.encoder.write(r)},Utf32AutoEncoder.prototype.end=function(){return this.encoder.end()},Utf32AutoDecoder.prototype.write=function(r){if(!this.decoder){if(this.initialBufs.push(r),this.initialBufsLen+=r.length,this.initialBufsLen<32)return"";var i=detectEncoding(this.initialBufs,this.options.defaultEncoding);this.decoder=this.iconv.getDecoder(i,this.options);for(var o="",u=0;u<this.initialBufs.length;u++)o+=this.decoder.write(this.initialBufs[u]);return this.initialBufs.length=this.initialBufsLen=0,o}return this.decoder.write(r)},Utf32AutoDecoder.prototype.end=function(){if(!this.decoder){var r=detectEncoding(this.initialBufs,this.options.defaultEncoding);this.decoder=this.iconv.getDecoder(r,this.options);for(var i="",o=0;o<this.initialBufs.length;o++)i+=this.decoder.write(this.initialBufs[o]);var u=this.decoder.end();return u&&(i+=u),this.initialBufs.length=this.initialBufsLen=0,i}return this.decoder.end()}},758:function(r,i,o){"use strict";var u=o(7103).Buffer;function Utf7Codec(r,i){this.iconv=i}i.utf7=Utf7Codec,i.unicode11utf7="utf7",Utf7Codec.prototype.encoder=Utf7Encoder,Utf7Codec.prototype.decoder=Utf7Decoder,Utf7Codec.prototype.bomAware=!0;var p=/[^A-Za-z0-9'\(\),-\.\/:\? \n\r\t]+/g;function Utf7Encoder(r,i){this.iconv=i.iconv}function Utf7Decoder(r,i){this.iconv=i.iconv,this.inBase64=!1,this.base64Accum=""}Utf7Encoder.prototype.write=function(r){return u.from(r.replace(p,function(r){return"+"+("+"===r?"":this.iconv.encode(r,"utf16-be").toString("base64").replace(/=+$/,""))+"-"}.bind(this)))},Utf7Encoder.prototype.end=function(){};for(var g=/[A-Za-z0-9\/+]/,y=[],w=0;w<256;w++)y[w]=g.test(String.fromCharCode(w));var _="+".charCodeAt(0),x="-".charCodeAt(0),k="&".charCodeAt(0);function Utf7IMAPCodec(r,i){this.iconv=i}function Utf7IMAPEncoder(r,i){this.iconv=i.iconv,this.inBase64=!1,this.base64Accum=u.alloc(6),this.base64AccumIdx=0}function Utf7IMAPDecoder(r,i){this.iconv=i.iconv,this.inBase64=!1,this.base64Accum=""}Utf7Decoder.prototype.write=function(r){for(var i="",o=0,p=this.inBase64,g=this.base64Accum,w=0;w<r.length;w++)if(p){if(!y[r[w]]){if(w==o&&r[w]==x)i+="+";else{var k=g+this.iconv.decode(r.slice(o,w),"ascii");i+=this.iconv.decode(u.from(k,"base64"),"utf16-be")}r[w]!=x&&w--,o=w+1,p=!1,g=""}}else r[w]==_&&(i+=this.iconv.decode(r.slice(o,w),"ascii"),o=w+1,p=!0);if(p){var P=(k=g+this.iconv.decode(r.slice(o),"ascii")).length-k.length%8;g=k.slice(P),k=k.slice(0,P),i+=this.iconv.decode(u.from(k,"base64"),"utf16-be")}else i+=this.iconv.decode(r.slice(o),"ascii");return this.inBase64=p,this.base64Accum=g,i},Utf7Decoder.prototype.end=function(){var r="";return this.inBase64&&this.base64Accum.length>0&&(r=this.iconv.decode(u.from(this.base64Accum,"base64"),"utf16-be")),this.inBase64=!1,this.base64Accum="",r},i.utf7imap=Utf7IMAPCodec,Utf7IMAPCodec.prototype.encoder=Utf7IMAPEncoder,Utf7IMAPCodec.prototype.decoder=Utf7IMAPDecoder,Utf7IMAPCodec.prototype.bomAware=!0,Utf7IMAPEncoder.prototype.write=function(r){for(var i=this.inBase64,o=this.base64Accum,p=this.base64AccumIdx,g=u.alloc(5*r.length+10),y=0,w=0;w<r.length;w++){var _=r.charCodeAt(w);32<=_&&_<=126?(i&&(p>0&&(y+=g.write(o.slice(0,p).toString("base64").replace(/\//g,",").replace(/=+$/,""),y),p=0),g[y++]=x,i=!1),i||(g[y++]=_,_===k&&(g[y++]=x))):(i||(g[y++]=k,i=!0),i&&(o[p++]=_>>8,o[p++]=255&_,p==o.length&&(y+=g.write(o.toString("base64").replace(/\//g,","),y),p=0)))}return this.inBase64=i,this.base64AccumIdx=p,g.slice(0,y)},Utf7IMAPEncoder.prototype.end=function(){var r=u.alloc(10),i=0;return this.inBase64&&(this.base64AccumIdx>0&&(i+=r.write(this.base64Accum.slice(0,this.base64AccumIdx).toString("base64").replace(/\//g,",").replace(/=+$/,""),i),this.base64AccumIdx=0),r[i++]=x,this.inBase64=!1),r.slice(0,i)};var P=y.slice();P[",".charCodeAt(0)]=!0,Utf7IMAPDecoder.prototype.write=function(r){for(var i="",o=0,p=this.inBase64,g=this.base64Accum,y=0;y<r.length;y++)if(p){if(!P[r[y]]){if(y==o&&r[y]==x)i+="&";else{var w=g+this.iconv.decode(r.slice(o,y),"ascii").replace(/,/g,"/");i+=this.iconv.decode(u.from(w,"base64"),"utf16-be")}r[y]!=x&&y--,o=y+1,p=!1,g=""}}else r[y]==k&&(i+=this.iconv.decode(r.slice(o,y),"ascii"),o=y+1,p=!0);if(p){var _=(w=g+this.iconv.decode(r.slice(o),"ascii").replace(/,/g,"/")).length-w.length%8;g=w.slice(_),w=w.slice(0,_),i+=this.iconv.decode(u.from(w,"base64"),"utf16-be")}else i+=this.iconv.decode(r.slice(o),"ascii");return this.inBase64=p,this.base64Accum=g,i},Utf7IMAPDecoder.prototype.end=function(){var r="";return this.inBase64&&this.base64Accum.length>0&&(r=this.iconv.decode(u.from(this.base64Accum,"base64"),"utf16-be")),this.inBase64=!1,this.base64Accum="",r}},5395:function(r,i){"use strict";function PrependBOMWrapper(r,i){this.encoder=r,this.addBOM=!0}function StripBOMWrapper(r,i){this.decoder=r,this.pass=!1,this.options=i||{}}i.PrependBOM=PrependBOMWrapper,PrependBOMWrapper.prototype.write=function(r){return this.addBOM&&(r="\ufeff"+r,this.addBOM=!1),this.encoder.write(r)},PrependBOMWrapper.prototype.end=function(){return this.encoder.end()},i.StripBOM=StripBOMWrapper,StripBOMWrapper.prototype.write=function(r){var i=this.decoder.write(r);return this.pass||!i||("\ufeff"===i[0]&&(i=i.slice(1),"function"==typeof this.options.stripBOM&&this.options.stripBOM()),this.pass=!0),i},StripBOMWrapper.prototype.end=function(){return this.decoder.end()}},4914:function(r,i,o){"use strict";var u,p=o(7103).Buffer,g=o(5395),y=r.exports;y.encodings=null,y.defaultCharUnicode="�",y.defaultCharSingleByte="?",y.encode=function encode(r,i,o){r=""+(r||"");var u=y.getEncoder(i,o),g=u.write(r),w=u.end();return w&&w.length>0?p.concat([g,w]):g},y.decode=function decode(r,i,o){"string"==typeof r&&(y.skipDecodeWarning||(y.skipDecodeWarning=!0),r=p.from(""+(r||""),"binary"));var u=y.getDecoder(i,o),g=u.write(r),w=u.end();return w?g+w:g},y.encodingExists=function encodingExists(r){try{return y.getCodec(r),!0}catch(r){return!1}},y.toEncoding=y.encode,y.fromEncoding=y.decode,y._codecDataCache={},y.getCodec=function getCodec(r){y.encodings||(y.encodings=o(6934));for(var i=y._canonicalizeEncoding(r),u={};;){var p=y._codecDataCache[i];if(p)return p;var g=y.encodings[i];switch(typeof g){case"string":i=g;break;case"object":for(var w in g)u[w]=g[w];u.encodingName||(u.encodingName=i),i=g.type;break;case"function":return u.encodingName||(u.encodingName=i),p=new g(u,y),y._codecDataCache[u.encodingName]=p,p;default:throw new Error("Encoding not recognized: '"+r+"' (searched as: '"+i+"')")}}},y._canonicalizeEncoding=function(r){return(""+r).toLowerCase().replace(/:\d{4}$|[^0-9a-z]/g,"")},y.getEncoder=function getEncoder(r,i){var o=y.getCodec(r),u=new o.encoder(i,o);return o.bomAware&&i&&i.addBOM&&(u=new g.PrependBOM(u,i)),u},y.getDecoder=function getDecoder(r,i){var o=y.getCodec(r),u=new o.decoder(i,o);return!o.bomAware||i&&!1===i.stripBOM||(u=new g.StripBOM(u,i)),u},y.enableStreamingAPI=function enableStreamingAPI(r){if(!y.supportsStreams){var i=o(8044)(r);y.IconvLiteEncoderStream=i.IconvLiteEncoderStream,y.IconvLiteDecoderStream=i.IconvLiteDecoderStream,y.encodeStream=function encodeStream(r,i){return new y.IconvLiteEncoderStream(y.getEncoder(r,i),i)},y.decodeStream=function decodeStream(r,i){return new y.IconvLiteDecoderStream(y.getDecoder(r,i),i)},y.supportsStreams=!0}};try{u=o(5832)}catch(r){}u&&u.Transform?y.enableStreamingAPI(u):y.encodeStream=y.decodeStream=function(){throw new Error("iconv-lite Streaming API is not enabled. Use iconv.enableStreamingAPI(require('stream')); to enable it.")}},8044:function(r,i,o){"use strict";var u=o(7103).Buffer;r.exports=function(r){var i=r.Transform;function IconvLiteEncoderStream(r,o){this.conv=r,(o=o||{}).decodeStrings=!1,i.call(this,o)}function IconvLiteDecoderStream(r,o){this.conv=r,(o=o||{}).encoding=this.encoding="utf8",i.call(this,o)}return IconvLiteEncoderStream.prototype=Object.create(i.prototype,{constructor:{value:IconvLiteEncoderStream}}),IconvLiteEncoderStream.prototype._transform=function(r,i,o){if("string"!=typeof r)return o(new Error("Iconv encoding stream needs strings as its input."));try{var u=this.conv.write(r);u&&u.length&&this.push(u),o()}catch(r){o(r)}},IconvLiteEncoderStream.prototype._flush=function(r){try{var i=this.conv.end();i&&i.length&&this.push(i),r()}catch(i){r(i)}},IconvLiteEncoderStream.prototype.collect=function(r){var i=[];return this.on("error",r),this.on("data",(function(r){i.push(r)})),this.on("end",(function(){r(null,u.concat(i))})),this},IconvLiteDecoderStream.prototype=Object.create(i.prototype,{constructor:{value:IconvLiteDecoderStream}}),IconvLiteDecoderStream.prototype._transform=function(r,i,o){if(!(u.isBuffer(r)||r instanceof Uint8Array))return o(new Error("Iconv decoding stream needs buffers as its input."));try{var p=this.conv.write(r);p&&p.length&&this.push(p,this.encoding),o()}catch(r){o(r)}},IconvLiteDecoderStream.prototype._flush=function(r){try{var i=this.conv.end();i&&i.length&&this.push(i,this.encoding),r()}catch(i){r(i)}},IconvLiteDecoderStream.prototype.collect=function(r){var i="";return this.on("error",r),this.on("data",(function(r){i+=r})),this.on("end",(function(){r(null,i)})),this},{IconvLiteEncoderStream:IconvLiteEncoderStream,IconvLiteDecoderStream:IconvLiteDecoderStream}}},645:function(r,i){i.read=function(r,i,o,u,p){var g,y,w=8*p-u-1,_=(1<<w)-1,x=_>>1,k=-7,P=o?p-1:0,O=o?-1:1,I=r[i+P];for(P+=O,g=I&(1<<-k)-1,I>>=-k,k+=w;k>0;g=256*g+r[i+P],P+=O,k-=8);for(y=g&(1<<-k)-1,g>>=-k,k+=u;k>0;y=256*y+r[i+P],P+=O,k-=8);if(0===g)g=1-x;else{if(g===_)return y?NaN:1/0*(I?-1:1);y+=Math.pow(2,u),g-=x}return(I?-1:1)*y*Math.pow(2,g-u)},i.write=function(r,i,o,u,p,g){var y,w,_,x=8*g-p-1,k=(1<<x)-1,P=k>>1,O=23===p?Math.pow(2,-24)-Math.pow(2,-77):0,I=u?0:g-1,B=u?1:-1,R=i<0||0===i&&1/i<0?1:0;for(i=Math.abs(i),isNaN(i)||i===1/0?(w=isNaN(i)?1:0,y=k):(y=Math.floor(Math.log(i)/Math.LN2),i*(_=Math.pow(2,-y))<1&&(y--,_*=2),(i+=y+P>=1?O/_:O*Math.pow(2,1-P))*_>=2&&(y++,_/=2),y+P>=k?(w=0,y=k):y+P>=1?(w=(i*_-1)*Math.pow(2,p),y+=P):(w=i*Math.pow(2,P-1)*Math.pow(2,p),y=0));p>=8;r[o+I]=255&w,I+=B,w/=256,p-=8);for(y=y<<p|w,x+=p;x>0;r[o+I]=255&y,I+=B,y/=256,x-=8);r[o+I-B]|=128*R}},5717:function(r){"function"==typeof Object.create?r.exports=function inherits(r,i){i&&(r.super_=i,r.prototype=Object.create(i.prototype,{constructor:{value:r,enumerable:!1,writable:!0,configurable:!0}}))}:r.exports=function inherits(r,i){if(i){r.super_=i;var TempCtor=function(){};TempCtor.prototype=i.prototype,r.prototype=new TempCtor,r.prototype.constructor=r}}},2584:function(r,i,o){"use strict";var u=o(6410)(),p=o(1924)("Object.prototype.toString"),g=function isArguments(r){return!(u&&r&&"object"==typeof r&&Symbol.toStringTag in r)&&"[object Arguments]"===p(r)},y=function isArguments(r){return!!g(r)||null!==r&&"object"==typeof r&&"number"==typeof r.length&&r.length>=0&&"[object Array]"!==p(r)&&"[object Function]"===p(r.callee)},w=function(){return g(arguments)}();g.isLegacyArguments=y,r.exports=w?g:y},5320:function(r){"use strict";var i,o,u=Function.prototype.toString,p="object"==typeof Reflect&&null!==Reflect&&Reflect.apply;if("function"==typeof p&&"function"==typeof Object.defineProperty)try{i=Object.defineProperty({},"length",{get:function(){throw o}}),o={},p((function(){throw 42}),null,i)}catch(r){r!==o&&(p=null)}else p=null;var g=/^\s*class\b/,y=function isES6ClassFunction(r){try{var i=u.call(r);return g.test(i)}catch(r){return!1}},w=function tryFunctionToStr(r){try{return!y(r)&&(u.call(r),!0)}catch(r){return!1}},_=Object.prototype.toString,x="function"==typeof Symbol&&!!Symbol.toStringTag,k=!(0 in[,]),P=function isDocumentDotAll(){return!1};if("object"==typeof document){var O=document.all;_.call(O)===_.call(document.all)&&(P=function isDocumentDotAll(r){if((k||!r)&&(void 0===r||"object"==typeof r))try{var i=_.call(r);return("[object HTMLAllCollection]"===i||"[object HTML document.all class]"===i||"[object HTMLCollection]"===i||"[object Object]"===i)&&null==r("")}catch(r){}return!1})}r.exports=p?function isCallable(r){if(P(r))return!0;if(!r)return!1;if("function"!=typeof r&&"object"!=typeof r)return!1;try{p(r,null,i)}catch(r){if(r!==o)return!1}return!y(r)&&w(r)}:function isCallable(r){if(P(r))return!0;if(!r)return!1;if("function"!=typeof r&&"object"!=typeof r)return!1;if(x)return w(r);if(y(r))return!1;var i=_.call(r);return!("[object Function]"!==i&&"[object GeneratorFunction]"!==i&&!/^\[object HTML/.test(i))&&w(r)}},8923:function(r,i,o){"use strict";var u=Date.prototype.getDay,p=Object.prototype.toString,g=o(6410)();r.exports=function isDateObject(r){return"object"==typeof r&&null!==r&&(g?function tryDateGetDayCall(r){try{return u.call(r),!0}catch(r){return!1}}(r):"[object Date]"===p.call(r))}},8662:function(r,i,o){"use strict";var u,p=Object.prototype.toString,g=Function.prototype.toString,y=/^\s*(?:function)?\*/,w=o(6410)(),_=Object.getPrototypeOf;r.exports=function isGeneratorFunction(r){if("function"!=typeof r)return!1;if(y.test(g.call(r)))return!0;if(!w)return"[object GeneratorFunction]"===p.call(r);if(!_)return!1;if(void 0===u){var i=function(){if(!w)return!1;try{return Function("return function*() {}")()}catch(r){}}();u=!!i&&_(i)}return _(r)===u}},8611:function(r){"use strict";r.exports=function isNaN(r){return r!=r}},360:function(r,i,o){"use strict";var u=o(5559),p=o(4289),g=o(8611),y=o(9415),w=o(6743),_=u(y(),Number);p(_,{getPolyfill:y,implementation:g,shim:w}),r.exports=_},9415:function(r,i,o){"use strict";var u=o(8611);r.exports=function getPolyfill(){return Number.isNaN&&Number.isNaN(NaN)&&!Number.isNaN("a")?Number.isNaN:u}},6743:function(r,i,o){"use strict";var u=o(4289),p=o(9415);r.exports=function shimNumberIsNaN(){var r=p();return u(Number,{isNaN:r},{isNaN:function testIsNaN(){return Number.isNaN!==r}}),r}},8420:function(r,i,o){"use strict";var u,p,g,y,w=o(1924),_=o(6410)();if(_){u=w("Object.prototype.hasOwnProperty"),p=w("RegExp.prototype.exec"),g={};var throwRegexMarker=function(){throw g};y={toString:throwRegexMarker,valueOf:throwRegexMarker},"symbol"==typeof Symbol.toPrimitive&&(y[Symbol.toPrimitive]=throwRegexMarker)}var x=w("Object.prototype.toString"),k=Object.getOwnPropertyDescriptor;r.exports=_?function isRegex(r){if(!r||"object"!=typeof r)return!1;var i=k(r,"lastIndex");if(!(i&&u(i,"value")))return!1;try{p(r,y)}catch(r){return r===g}}:function isRegex(r){return!(!r||"object"!=typeof r&&"function"!=typeof r)&&"[object RegExp]"===x(r)}},5692:function(r,i,o){"use strict";var u=o(4029),p=o(3083),g=o(1924),y=g("Object.prototype.toString"),w=o(6410)(),_=o(7296),x="undefined"==typeof globalThis?o.g:globalThis,k=p(),P=g("Array.prototype.indexOf",!0)||function indexOf(r,i){for(var o=0;o<r.length;o+=1)if(r[o]===i)return o;return-1},O=g("String.prototype.slice"),I={},B=Object.getPrototypeOf;w&&_&&B&&u(k,(function(r){var i=new x[r];if(Symbol.toStringTag in i){var o=B(i),u=_(o,Symbol.toStringTag);if(!u){var p=B(o);u=_(p,Symbol.toStringTag)}I[r]=u.get}}));r.exports=function isTypedArray(r){if(!r||"object"!=typeof r)return!1;if(!w||!(Symbol.toStringTag in r)){var i=O(y(r),8,-1);return P(k,i)>-1}return!!_&&function tryAllTypedArrays(r){var i=!1;return u(I,(function(o,u){if(!i)try{i=o.call(r)===u}catch(r){}})),i}(r)}},4244:function(r){"use strict";var numberIsNaN=function(r){return r!=r};r.exports=function is(r,i){return 0===r&&0===i?1/r==1/i:r===i||!(!numberIsNaN(r)||!numberIsNaN(i))}},609:function(r,i,o){"use strict";var u=o(4289),p=o(5559),g=o(4244),y=o(5624),w=o(2281),_=p(y(),Object);u(_,{getPolyfill:y,implementation:g,shim:w}),r.exports=_},5624:function(r,i,o){"use strict";var u=o(4244);r.exports=function getPolyfill(){return"function"==typeof Object.is?Object.is:u}},2281:function(r,i,o){"use strict";var u=o(5624),p=o(4289);r.exports=function shimObjectIs(){var r=u();return p(Object,{is:r},{is:function testObjectIs(){return Object.is!==r}}),r}},8987:function(r,i,o){"use strict";var u;if(!Object.keys){var p=Object.prototype.hasOwnProperty,g=Object.prototype.toString,y=o(1414),w=Object.prototype.propertyIsEnumerable,_=!w.call({toString:null},"toString"),x=w.call((function(){}),"prototype"),k=["toString","toLocaleString","valueOf","hasOwnProperty","isPrototypeOf","propertyIsEnumerable","constructor"],equalsConstructorPrototype=function(r){var i=r.constructor;return i&&i.prototype===r},P={$applicationCache:!0,$console:!0,$external:!0,$frame:!0,$frameElement:!0,$frames:!0,$innerHeight:!0,$innerWidth:!0,$onmozfullscreenchange:!0,$onmozfullscreenerror:!0,$outerHeight:!0,$outerWidth:!0,$pageXOffset:!0,$pageYOffset:!0,$parent:!0,$scrollLeft:!0,$scrollTop:!0,$scrollX:!0,$scrollY:!0,$self:!0,$webkitIndexedDB:!0,$webkitStorageInfo:!0,$window:!0},O=function(){if("undefined"==typeof window)return!1;for(var r in window)try{if(!P["$"+r]&&p.call(window,r)&&null!==window[r]&&"object"==typeof window[r])try{equalsConstructorPrototype(window[r])}catch(r){return!0}}catch(r){return!0}return!1}();u=function keys(r){var i=null!==r&&"object"==typeof r,o="[object Function]"===g.call(r),u=y(r),w=i&&"[object String]"===g.call(r),P=[];if(!i&&!o&&!u)throw new TypeError("Object.keys called on a non-object");var I=x&&o;if(w&&r.length>0&&!p.call(r,0))for(var B=0;B<r.length;++B)P.push(String(B));if(u&&r.length>0)for(var R=0;R<r.length;++R)P.push(String(R));else for(var D in r)I&&"prototype"===D||!p.call(r,D)||P.push(String(D));if(_)for(var N=function(r){if("undefined"==typeof window||!O)return equalsConstructorPrototype(r);try{return equalsConstructorPrototype(r)}catch(r){return!1}}(r),W=0;W<k.length;++W)N&&"constructor"===k[W]||!p.call(r,k[W])||P.push(k[W]);return P}}r.exports=u},2215:function(r,i,o){"use strict";var u=Array.prototype.slice,p=o(1414),g=Object.keys,y=g?function keys(r){return g(r)}:o(8987),w=Object.keys;y.shim=function shimObjectKeys(){if(Object.keys){var r=function(){var r=Object.keys(arguments);return r&&r.length===arguments.length}(1,2);r||(Object.keys=function keys(r){return p(r)?w(u.call(r)):w(r)})}else Object.keys=y;return Object.keys||y},r.exports=y},1414:function(r){"use strict";var i=Object.prototype.toString;r.exports=function isArguments(r){var o=i.call(r),u="[object Arguments]"===o;return u||(u="[object Array]"!==o&&null!==r&&"object"==typeof r&&"number"==typeof r.length&&r.length>=0&&"[object Function]"===i.call(r.callee)),u}},4236:function(r,i){"use strict";var o="undefined"!=typeof Uint8Array&&"undefined"!=typeof Uint16Array&&"undefined"!=typeof Int32Array;function _has(r,i){return Object.prototype.hasOwnProperty.call(r,i)}i.assign=function(r){for(var i=Array.prototype.slice.call(arguments,1);i.length;){var o=i.shift();if(o){if("object"!=typeof o)throw new TypeError(o+"must be non-object");for(var u in o)_has(o,u)&&(r[u]=o[u])}}return r},i.shrinkBuf=function(r,i){return r.length===i?r:r.subarray?r.subarray(0,i):(r.length=i,r)};var u={arraySet:function(r,i,o,u,p){if(i.subarray&&r.subarray)r.set(i.subarray(o,o+u),p);else for(var g=0;g<u;g++)r[p+g]=i[o+g]},flattenChunks:function(r){var i,o,u,p,g,y;for(u=0,i=0,o=r.length;i<o;i++)u+=r[i].length;for(y=new Uint8Array(u),p=0,i=0,o=r.length;i<o;i++)g=r[i],y.set(g,p),p+=g.length;return y}},p={arraySet:function(r,i,o,u,p){for(var g=0;g<u;g++)r[p+g]=i[o+g]},flattenChunks:function(r){return[].concat.apply([],r)}};i.setTyped=function(r){r?(i.Buf8=Uint8Array,i.Buf16=Uint16Array,i.Buf32=Int32Array,i.assign(i,u)):(i.Buf8=Array,i.Buf16=Array,i.Buf32=Array,i.assign(i,p))},i.setTyped(o)},6069:function(r){"use strict";r.exports=function adler32(r,i,o,u){for(var p=65535&r|0,g=r>>>16&65535|0,y=0;0!==o;){o-=y=o>2e3?2e3:o;do{g=g+(p=p+i[u++]|0)|0}while(--y);p%=65521,g%=65521}return p|g<<16|0}},1619:function(r){"use strict";r.exports={Z_NO_FLUSH:0,Z_PARTIAL_FLUSH:1,Z_SYNC_FLUSH:2,Z_FULL_FLUSH:3,Z_FINISH:4,Z_BLOCK:5,Z_TREES:6,Z_OK:0,Z_STREAM_END:1,Z_NEED_DICT:2,Z_ERRNO:-1,Z_STREAM_ERROR:-2,Z_DATA_ERROR:-3,Z_BUF_ERROR:-5,Z_NO_COMPRESSION:0,Z_BEST_SPEED:1,Z_BEST_COMPRESSION:9,Z_DEFAULT_COMPRESSION:-1,Z_FILTERED:1,Z_HUFFMAN_ONLY:2,Z_RLE:3,Z_FIXED:4,Z_DEFAULT_STRATEGY:0,Z_BINARY:0,Z_TEXT:1,Z_UNKNOWN:2,Z_DEFLATED:8}},2869:function(r){"use strict";var i=function makeTable(){for(var r,i=[],o=0;o<256;o++){r=o;for(var u=0;u<8;u++)r=1&r?3988292384^r>>>1:r>>>1;i[o]=r}return i}();r.exports=function crc32(r,o,u,p){var g=i,y=p+u;r^=-1;for(var w=p;w<y;w++)r=r>>>8^g[255&(r^o[w])];return-1^r}},405:function(r,i,o){"use strict";var u,p=o(4236),g=o(342),y=o(6069),w=o(2869),_=o(8898),x=-2,k=258,P=262,O=103,I=113,B=666;function err(r,i){return r.msg=_[i],i}function rank(r){return(r<<1)-(r>4?9:0)}function zero(r){for(var i=r.length;--i>=0;)r[i]=0}function flush_pending(r){var i=r.state,o=i.pending;o>r.avail_out&&(o=r.avail_out),0!==o&&(p.arraySet(r.output,i.pending_buf,i.pending_out,o,r.next_out),r.next_out+=o,i.pending_out+=o,r.total_out+=o,r.avail_out-=o,i.pending-=o,0===i.pending&&(i.pending_out=0))}function flush_block_only(r,i){g._tr_flush_block(r,r.block_start>=0?r.block_start:-1,r.strstart-r.block_start,i),r.block_start=r.strstart,flush_pending(r.strm)}function put_byte(r,i){r.pending_buf[r.pending++]=i}function putShortMSB(r,i){r.pending_buf[r.pending++]=i>>>8&255,r.pending_buf[r.pending++]=255&i}function longest_match(r,i){var o,u,p=r.max_chain_length,g=r.strstart,y=r.prev_length,w=r.nice_match,_=r.strstart>r.w_size-P?r.strstart-(r.w_size-P):0,x=r.window,O=r.w_mask,I=r.prev,B=r.strstart+k,R=x[g+y-1],D=x[g+y];r.prev_length>=r.good_match&&(p>>=2),w>r.lookahead&&(w=r.lookahead);do{if(x[(o=i)+y]===D&&x[o+y-1]===R&&x[o]===x[g]&&x[++o]===x[g+1]){g+=2,o++;do{}while(x[++g]===x[++o]&&x[++g]===x[++o]&&x[++g]===x[++o]&&x[++g]===x[++o]&&x[++g]===x[++o]&&x[++g]===x[++o]&&x[++g]===x[++o]&&x[++g]===x[++o]&&g<B);if(u=k-(B-g),g=B-k,u>y){if(r.match_start=i,y=u,u>=w)break;R=x[g+y-1],D=x[g+y]}}}while((i=I[i&O])>_&&0!=--p);return y<=r.lookahead?y:r.lookahead}function fill_window(r){var i,o,u,g,_,x,k,O,I,B,R=r.w_size;do{if(g=r.window_size-r.lookahead-r.strstart,r.strstart>=R+(R-P)){p.arraySet(r.window,r.window,R,R,0),r.match_start-=R,r.strstart-=R,r.block_start-=R,i=o=r.hash_size;do{u=r.head[--i],r.head[i]=u>=R?u-R:0}while(--o);i=o=R;do{u=r.prev[--i],r.prev[i]=u>=R?u-R:0}while(--o);g+=R}if(0===r.strm.avail_in)break;if(x=r.strm,k=r.window,O=r.strstart+r.lookahead,I=g,B=void 0,(B=x.avail_in)>I&&(B=I),o=0===B?0:(x.avail_in-=B,p.arraySet(k,x.input,x.next_in,B,O),1===x.state.wrap?x.adler=y(x.adler,k,B,O):2===x.state.wrap&&(x.adler=w(x.adler,k,B,O)),x.next_in+=B,x.total_in+=B,B),r.lookahead+=o,r.lookahead+r.insert>=3)for(_=r.strstart-r.insert,r.ins_h=r.window[_],r.ins_h=(r.ins_h<<r.hash_shift^r.window[_+1])&r.hash_mask;r.insert&&(r.ins_h=(r.ins_h<<r.hash_shift^r.window[_+3-1])&r.hash_mask,r.prev[_&r.w_mask]=r.head[r.ins_h],r.head[r.ins_h]=_,_++,r.insert--,!(r.lookahead+r.insert<3)););}while(r.lookahead<P&&0!==r.strm.avail_in)}function deflate_fast(r,i){for(var o,u;;){if(r.lookahead<P){if(fill_window(r),r.lookahead<P&&0===i)return 1;if(0===r.lookahead)break}if(o=0,r.lookahead>=3&&(r.ins_h=(r.ins_h<<r.hash_shift^r.window[r.strstart+3-1])&r.hash_mask,o=r.prev[r.strstart&r.w_mask]=r.head[r.ins_h],r.head[r.ins_h]=r.strstart),0!==o&&r.strstart-o<=r.w_size-P&&(r.match_length=longest_match(r,o)),r.match_length>=3)if(u=g._tr_tally(r,r.strstart-r.match_start,r.match_length-3),r.lookahead-=r.match_length,r.match_length<=r.max_lazy_match&&r.lookahead>=3){r.match_length--;do{r.strstart++,r.ins_h=(r.ins_h<<r.hash_shift^r.window[r.strstart+3-1])&r.hash_mask,o=r.prev[r.strstart&r.w_mask]=r.head[r.ins_h],r.head[r.ins_h]=r.strstart}while(0!=--r.match_length);r.strstart++}else r.strstart+=r.match_length,r.match_length=0,r.ins_h=r.window[r.strstart],r.ins_h=(r.ins_h<<r.hash_shift^r.window[r.strstart+1])&r.hash_mask;else u=g._tr_tally(r,0,r.window[r.strstart]),r.lookahead--,r.strstart++;if(u&&(flush_block_only(r,!1),0===r.strm.avail_out))return 1}return r.insert=r.strstart<2?r.strstart:2,4===i?(flush_block_only(r,!0),0===r.strm.avail_out?3:4):r.last_lit&&(flush_block_only(r,!1),0===r.strm.avail_out)?1:2}function deflate_slow(r,i){for(var o,u,p;;){if(r.lookahead<P){if(fill_window(r),r.lookahead<P&&0===i)return 1;if(0===r.lookahead)break}if(o=0,r.lookahead>=3&&(r.ins_h=(r.ins_h<<r.hash_shift^r.window[r.strstart+3-1])&r.hash_mask,o=r.prev[r.strstart&r.w_mask]=r.head[r.ins_h],r.head[r.ins_h]=r.strstart),r.prev_length=r.match_length,r.prev_match=r.match_start,r.match_length=2,0!==o&&r.prev_length<r.max_lazy_match&&r.strstart-o<=r.w_size-P&&(r.match_length=longest_match(r,o),r.match_length<=5&&(1===r.strategy||3===r.match_length&&r.strstart-r.match_start>4096)&&(r.match_length=2)),r.prev_length>=3&&r.match_length<=r.prev_length){p=r.strstart+r.lookahead-3,u=g._tr_tally(r,r.strstart-1-r.prev_match,r.prev_length-3),r.lookahead-=r.prev_length-1,r.prev_length-=2;do{++r.strstart<=p&&(r.ins_h=(r.ins_h<<r.hash_shift^r.window[r.strstart+3-1])&r.hash_mask,o=r.prev[r.strstart&r.w_mask]=r.head[r.ins_h],r.head[r.ins_h]=r.strstart)}while(0!=--r.prev_length);if(r.match_available=0,r.match_length=2,r.strstart++,u&&(flush_block_only(r,!1),0===r.strm.avail_out))return 1}else if(r.match_available){if((u=g._tr_tally(r,0,r.window[r.strstart-1]))&&flush_block_only(r,!1),r.strstart++,r.lookahead--,0===r.strm.avail_out)return 1}else r.match_available=1,r.strstart++,r.lookahead--}return r.match_available&&(u=g._tr_tally(r,0,r.window[r.strstart-1]),r.match_available=0),r.insert=r.strstart<2?r.strstart:2,4===i?(flush_block_only(r,!0),0===r.strm.avail_out?3:4):r.last_lit&&(flush_block_only(r,!1),0===r.strm.avail_out)?1:2}function Config(r,i,o,u,p){this.good_length=r,this.max_lazy=i,this.nice_length=o,this.max_chain=u,this.func=p}function DeflateState(){this.strm=null,this.status=0,this.pending_buf=null,this.pending_buf_size=0,this.pending_out=0,this.pending=0,this.wrap=0,this.gzhead=null,this.gzindex=0,this.method=8,this.last_flush=-1,this.w_size=0,this.w_bits=0,this.w_mask=0,this.window=null,this.window_size=0,this.prev=null,this.head=null,this.ins_h=0,this.hash_size=0,this.hash_bits=0,this.hash_mask=0,this.hash_shift=0,this.block_start=0,this.match_length=0,this.prev_match=0,this.match_available=0,this.strstart=0,this.match_start=0,this.lookahead=0,this.prev_length=0,this.max_chain_length=0,this.max_lazy_match=0,this.level=0,this.strategy=0,this.good_match=0,this.nice_match=0,this.dyn_ltree=new p.Buf16(1146),this.dyn_dtree=new p.Buf16(122),this.bl_tree=new p.Buf16(78),zero(this.dyn_ltree),zero(this.dyn_dtree),zero(this.bl_tree),this.l_desc=null,this.d_desc=null,this.bl_desc=null,this.bl_count=new p.Buf16(16),this.heap=new p.Buf16(573),zero(this.heap),this.heap_len=0,this.heap_max=0,this.depth=new p.Buf16(573),zero(this.depth),this.l_buf=0,this.lit_bufsize=0,this.last_lit=0,this.d_buf=0,this.opt_len=0,this.static_len=0,this.matches=0,this.insert=0,this.bi_buf=0,this.bi_valid=0}function deflateResetKeep(r){var i;return r&&r.state?(r.total_in=r.total_out=0,r.data_type=2,(i=r.state).pending=0,i.pending_out=0,i.wrap<0&&(i.wrap=-i.wrap),i.status=i.wrap?42:I,r.adler=2===i.wrap?0:1,i.last_flush=0,g._tr_init(i),0):err(r,x)}function deflateReset(r){var i=deflateResetKeep(r);return 0===i&&function lm_init(r){r.window_size=2*r.w_size,zero(r.head),r.max_lazy_match=u[r.level].max_lazy,r.good_match=u[r.level].good_length,r.nice_match=u[r.level].nice_length,r.max_chain_length=u[r.level].max_chain,r.strstart=0,r.block_start=0,r.lookahead=0,r.insert=0,r.match_length=r.prev_length=2,r.match_available=0,r.ins_h=0}(r.state),i}function deflateInit2(r,i,o,u,g,y){if(!r)return x;var w=1;if(-1===i&&(i=6),u<0?(w=0,u=-u):u>15&&(w=2,u-=16),g<1||g>9||8!==o||u<8||u>15||i<0||i>9||y<0||y>4)return err(r,x);8===u&&(u=9);var _=new DeflateState;return r.state=_,_.strm=r,_.wrap=w,_.gzhead=null,_.w_bits=u,_.w_size=1<<_.w_bits,_.w_mask=_.w_size-1,_.hash_bits=g+7,_.hash_size=1<<_.hash_bits,_.hash_mask=_.hash_size-1,_.hash_shift=~~((_.hash_bits+3-1)/3),_.window=new p.Buf8(2*_.w_size),_.head=new p.Buf16(_.hash_size),_.prev=new p.Buf16(_.w_size),_.lit_bufsize=1<<g+6,_.pending_buf_size=4*_.lit_bufsize,_.pending_buf=new p.Buf8(_.pending_buf_size),_.d_buf=1*_.lit_bufsize,_.l_buf=3*_.lit_bufsize,_.level=i,_.strategy=y,_.method=o,deflateReset(r)}u=[new Config(0,0,0,0,(function deflate_stored(r,i){var o=65535;for(o>r.pending_buf_size-5&&(o=r.pending_buf_size-5);;){if(r.lookahead<=1){if(fill_window(r),0===r.lookahead&&0===i)return 1;if(0===r.lookahead)break}r.strstart+=r.lookahead,r.lookahead=0;var u=r.block_start+o;if((0===r.strstart||r.strstart>=u)&&(r.lookahead=r.strstart-u,r.strstart=u,flush_block_only(r,!1),0===r.strm.avail_out))return 1;if(r.strstart-r.block_start>=r.w_size-P&&(flush_block_only(r,!1),0===r.strm.avail_out))return 1}return r.insert=0,4===i?(flush_block_only(r,!0),0===r.strm.avail_out?3:4):(r.strstart>r.block_start&&(flush_block_only(r,!1),r.strm.avail_out),1)})),new Config(4,4,8,4,deflate_fast),new Config(4,5,16,8,deflate_fast),new Config(4,6,32,32,deflate_fast),new Config(4,4,16,16,deflate_slow),new Config(8,16,32,32,deflate_slow),new Config(8,16,128,128,deflate_slow),new Config(8,32,128,256,deflate_slow),new Config(32,128,258,1024,deflate_slow),new Config(32,258,258,4096,deflate_slow)],i.deflateInit=function deflateInit(r,i){return deflateInit2(r,i,8,15,8,0)},i.deflateInit2=deflateInit2,i.deflateReset=deflateReset,i.deflateResetKeep=deflateResetKeep,i.deflateSetHeader=function deflateSetHeader(r,i){return r&&r.state?2!==r.state.wrap?x:(r.state.gzhead=i,0):x},i.deflate=function deflate(r,i){var o,p,y,_;if(!r||!r.state||i>5||i<0)return r?err(r,x):x;if(p=r.state,!r.output||!r.input&&0!==r.avail_in||p.status===B&&4!==i)return err(r,0===r.avail_out?-5:x);if(p.strm=r,o=p.last_flush,p.last_flush=i,42===p.status)if(2===p.wrap)r.adler=0,put_byte(p,31),put_byte(p,139),put_byte(p,8),p.gzhead?(put_byte(p,(p.gzhead.text?1:0)+(p.gzhead.hcrc?2:0)+(p.gzhead.extra?4:0)+(p.gzhead.name?8:0)+(p.gzhead.comment?16:0)),put_byte(p,255&p.gzhead.time),put_byte(p,p.gzhead.time>>8&255),put_byte(p,p.gzhead.time>>16&255),put_byte(p,p.gzhead.time>>24&255),put_byte(p,9===p.level?2:p.strategy>=2||p.level<2?4:0),put_byte(p,255&p.gzhead.os),p.gzhead.extra&&p.gzhead.extra.length&&(put_byte(p,255&p.gzhead.extra.length),put_byte(p,p.gzhead.extra.length>>8&255)),p.gzhead.hcrc&&(r.adler=w(r.adler,p.pending_buf,p.pending,0)),p.gzindex=0,p.status=69):(put_byte(p,0),put_byte(p,0),put_byte(p,0),put_byte(p,0),put_byte(p,0),put_byte(p,9===p.level?2:p.strategy>=2||p.level<2?4:0),put_byte(p,3),p.status=I);else{var P=8+(p.w_bits-8<<4)<<8;P|=(p.strategy>=2||p.level<2?0:p.level<6?1:6===p.level?2:3)<<6,0!==p.strstart&&(P|=32),P+=31-P%31,p.status=I,putShortMSB(p,P),0!==p.strstart&&(putShortMSB(p,r.adler>>>16),putShortMSB(p,65535&r.adler)),r.adler=1}if(69===p.status)if(p.gzhead.extra){for(y=p.pending;p.gzindex<(65535&p.gzhead.extra.length)&&(p.pending!==p.pending_buf_size||(p.gzhead.hcrc&&p.pending>y&&(r.adler=w(r.adler,p.pending_buf,p.pending-y,y)),flush_pending(r),y=p.pending,p.pending!==p.pending_buf_size));)put_byte(p,255&p.gzhead.extra[p.gzindex]),p.gzindex++;p.gzhead.hcrc&&p.pending>y&&(r.adler=w(r.adler,p.pending_buf,p.pending-y,y)),p.gzindex===p.gzhead.extra.length&&(p.gzindex=0,p.status=73)}else p.status=73;if(73===p.status)if(p.gzhead.name){y=p.pending;do{if(p.pending===p.pending_buf_size&&(p.gzhead.hcrc&&p.pending>y&&(r.adler=w(r.adler,p.pending_buf,p.pending-y,y)),flush_pending(r),y=p.pending,p.pending===p.pending_buf_size)){_=1;break}_=p.gzindex<p.gzhead.name.length?255&p.gzhead.name.charCodeAt(p.gzindex++):0,put_byte(p,_)}while(0!==_);p.gzhead.hcrc&&p.pending>y&&(r.adler=w(r.adler,p.pending_buf,p.pending-y,y)),0===_&&(p.gzindex=0,p.status=91)}else p.status=91;if(91===p.status)if(p.gzhead.comment){y=p.pending;do{if(p.pending===p.pending_buf_size&&(p.gzhead.hcrc&&p.pending>y&&(r.adler=w(r.adler,p.pending_buf,p.pending-y,y)),flush_pending(r),y=p.pending,p.pending===p.pending_buf_size)){_=1;break}_=p.gzindex<p.gzhead.comment.length?255&p.gzhead.comment.charCodeAt(p.gzindex++):0,put_byte(p,_)}while(0!==_);p.gzhead.hcrc&&p.pending>y&&(r.adler=w(r.adler,p.pending_buf,p.pending-y,y)),0===_&&(p.status=O)}else p.status=O;if(p.status===O&&(p.gzhead.hcrc?(p.pending+2>p.pending_buf_size&&flush_pending(r),p.pending+2<=p.pending_buf_size&&(put_byte(p,255&r.adler),put_byte(p,r.adler>>8&255),r.adler=0,p.status=I)):p.status=I),0!==p.pending){if(flush_pending(r),0===r.avail_out)return p.last_flush=-1,0}else if(0===r.avail_in&&rank(i)<=rank(o)&&4!==i)return err(r,-5);if(p.status===B&&0!==r.avail_in)return err(r,-5);if(0!==r.avail_in||0!==p.lookahead||0!==i&&p.status!==B){var R=2===p.strategy?function deflate_huff(r,i){for(var o;;){if(0===r.lookahead&&(fill_window(r),0===r.lookahead)){if(0===i)return 1;break}if(r.match_length=0,o=g._tr_tally(r,0,r.window[r.strstart]),r.lookahead--,r.strstart++,o&&(flush_block_only(r,!1),0===r.strm.avail_out))return 1}return r.insert=0,4===i?(flush_block_only(r,!0),0===r.strm.avail_out?3:4):r.last_lit&&(flush_block_only(r,!1),0===r.strm.avail_out)?1:2}(p,i):3===p.strategy?function deflate_rle(r,i){for(var o,u,p,y,w=r.window;;){if(r.lookahead<=k){if(fill_window(r),r.lookahead<=k&&0===i)return 1;if(0===r.lookahead)break}if(r.match_length=0,r.lookahead>=3&&r.strstart>0&&(u=w[p=r.strstart-1])===w[++p]&&u===w[++p]&&u===w[++p]){y=r.strstart+k;do{}while(u===w[++p]&&u===w[++p]&&u===w[++p]&&u===w[++p]&&u===w[++p]&&u===w[++p]&&u===w[++p]&&u===w[++p]&&p<y);r.match_length=k-(y-p),r.match_length>r.lookahead&&(r.match_length=r.lookahead)}if(r.match_length>=3?(o=g._tr_tally(r,1,r.match_length-3),r.lookahead-=r.match_length,r.strstart+=r.match_length,r.match_length=0):(o=g._tr_tally(r,0,r.window[r.strstart]),r.lookahead--,r.strstart++),o&&(flush_block_only(r,!1),0===r.strm.avail_out))return 1}return r.insert=0,4===i?(flush_block_only(r,!0),0===r.strm.avail_out?3:4):r.last_lit&&(flush_block_only(r,!1),0===r.strm.avail_out)?1:2}(p,i):u[p.level].func(p,i);if(3!==R&&4!==R||(p.status=B),1===R||3===R)return 0===r.avail_out&&(p.last_flush=-1),0;if(2===R&&(1===i?g._tr_align(p):5!==i&&(g._tr_stored_block(p,0,0,!1),3===i&&(zero(p.head),0===p.lookahead&&(p.strstart=0,p.block_start=0,p.insert=0))),flush_pending(r),0===r.avail_out))return p.last_flush=-1,0}return 4!==i?0:p.wrap<=0?1:(2===p.wrap?(put_byte(p,255&r.adler),put_byte(p,r.adler>>8&255),put_byte(p,r.adler>>16&255),put_byte(p,r.adler>>24&255),put_byte(p,255&r.total_in),put_byte(p,r.total_in>>8&255),put_byte(p,r.total_in>>16&255),put_byte(p,r.total_in>>24&255)):(putShortMSB(p,r.adler>>>16),putShortMSB(p,65535&r.adler)),flush_pending(r),p.wrap>0&&(p.wrap=-p.wrap),0!==p.pending?0:1)},i.deflateEnd=function deflateEnd(r){var i;return r&&r.state?42!==(i=r.state.status)&&69!==i&&73!==i&&91!==i&&i!==O&&i!==I&&i!==B?err(r,x):(r.state=null,i===I?err(r,-3):0):x},i.deflateSetDictionary=function deflateSetDictionary(r,i){var o,u,g,w,_,k,P,O,I=i.length;if(!r||!r.state)return x;if(2===(w=(o=r.state).wrap)||1===w&&42!==o.status||o.lookahead)return x;for(1===w&&(r.adler=y(r.adler,i,I,0)),o.wrap=0,I>=o.w_size&&(0===w&&(zero(o.head),o.strstart=0,o.block_start=0,o.insert=0),O=new p.Buf8(o.w_size),p.arraySet(O,i,I-o.w_size,o.w_size,0),i=O,I=o.w_size),_=r.avail_in,k=r.next_in,P=r.input,r.avail_in=I,r.next_in=0,r.input=i,fill_window(o);o.lookahead>=3;){u=o.strstart,g=o.lookahead-2;do{o.ins_h=(o.ins_h<<o.hash_shift^o.window[u+3-1])&o.hash_mask,o.prev[u&o.w_mask]=o.head[o.ins_h],o.head[o.ins_h]=u,u++}while(--g);o.strstart=u,o.lookahead=2,fill_window(o)}return o.strstart+=o.lookahead,o.block_start=o.strstart,o.insert=o.lookahead,o.lookahead=0,o.match_length=o.prev_length=2,o.match_available=0,r.next_in=k,r.input=P,r.avail_in=_,o.wrap=w,0},i.deflateInfo="pako deflate (from Nodeca project)"},4264:function(r){"use strict";r.exports=function inflate_fast(r,i){var o,u,p,g,y,w,_,x,k,P,O,I,B,R,D,N,W,U,j,G,X,K,Y,J,$;o=r.state,u=r.next_in,J=r.input,p=u+(r.avail_in-5),g=r.next_out,$=r.output,y=g-(i-r.avail_out),w=g+(r.avail_out-257),_=o.dmax,x=o.wsize,k=o.whave,P=o.wnext,O=o.window,I=o.hold,B=o.bits,R=o.lencode,D=o.distcode,N=(1<<o.lenbits)-1,W=(1<<o.distbits)-1;e:do{B<15&&(I+=J[u++]<<B,B+=8,I+=J[u++]<<B,B+=8),U=R[I&N];t:for(;;){if(I>>>=j=U>>>24,B-=j,0===(j=U>>>16&255))$[g++]=65535&U;else{if(!(16&j)){if(0==(64&j)){U=R[(65535&U)+(I&(1<<j)-1)];continue t}if(32&j){o.mode=12;break e}r.msg="invalid literal/length code",o.mode=30;break e}G=65535&U,(j&=15)&&(B<j&&(I+=J[u++]<<B,B+=8),G+=I&(1<<j)-1,I>>>=j,B-=j),B<15&&(I+=J[u++]<<B,B+=8,I+=J[u++]<<B,B+=8),U=D[I&W];r:for(;;){if(I>>>=j=U>>>24,B-=j,!(16&(j=U>>>16&255))){if(0==(64&j)){U=D[(65535&U)+(I&(1<<j)-1)];continue r}r.msg="invalid distance code",o.mode=30;break e}if(X=65535&U,B<(j&=15)&&(I+=J[u++]<<B,(B+=8)<j&&(I+=J[u++]<<B,B+=8)),(X+=I&(1<<j)-1)>_){r.msg="invalid distance too far back",o.mode=30;break e}if(I>>>=j,B-=j,X>(j=g-y)){if((j=X-j)>k&&o.sane){r.msg="invalid distance too far back",o.mode=30;break e}if(K=0,Y=O,0===P){if(K+=x-j,j<G){G-=j;do{$[g++]=O[K++]}while(--j);K=g-X,Y=$}}else if(P<j){if(K+=x+P-j,(j-=P)<G){G-=j;do{$[g++]=O[K++]}while(--j);if(K=0,P<G){G-=j=P;do{$[g++]=O[K++]}while(--j);K=g-X,Y=$}}}else if(K+=P-j,j<G){G-=j;do{$[g++]=O[K++]}while(--j);K=g-X,Y=$}for(;G>2;)$[g++]=Y[K++],$[g++]=Y[K++],$[g++]=Y[K++],G-=3;G&&($[g++]=Y[K++],G>1&&($[g++]=Y[K++]))}else{K=g-X;do{$[g++]=$[K++],$[g++]=$[K++],$[g++]=$[K++],G-=3}while(G>2);G&&($[g++]=$[K++],G>1&&($[g++]=$[K++]))}break}}break}}while(u<p&&g<w);u-=G=B>>3,I&=(1<<(B-=G<<3))-1,r.next_in=u,r.next_out=g,r.avail_in=u<p?p-u+5:5-(u-p),r.avail_out=g<w?w-g+257:257-(g-w),o.hold=I,o.bits=B}},7948:function(r,i,o){"use strict";var u=o(4236),p=o(6069),g=o(2869),y=o(4264),w=o(9241),_=-2,x=12,k=30;function zswap32(r){return(r>>>24&255)+(r>>>8&65280)+((65280&r)<<8)+((255&r)<<24)}function InflateState(){this.mode=0,this.last=!1,this.wrap=0,this.havedict=!1,this.flags=0,this.dmax=0,this.check=0,this.total=0,this.head=null,this.wbits=0,this.wsize=0,this.whave=0,this.wnext=0,this.window=null,this.hold=0,this.bits=0,this.length=0,this.offset=0,this.extra=0,this.lencode=null,this.distcode=null,this.lenbits=0,this.distbits=0,this.ncode=0,this.nlen=0,this.ndist=0,this.have=0,this.next=null,this.lens=new u.Buf16(320),this.work=new u.Buf16(288),this.lendyn=null,this.distdyn=null,this.sane=0,this.back=0,this.was=0}function inflateResetKeep(r){var i;return r&&r.state?(i=r.state,r.total_in=r.total_out=i.total=0,r.msg="",i.wrap&&(r.adler=1&i.wrap),i.mode=1,i.last=0,i.havedict=0,i.dmax=32768,i.head=null,i.hold=0,i.bits=0,i.lencode=i.lendyn=new u.Buf32(852),i.distcode=i.distdyn=new u.Buf32(592),i.sane=1,i.back=-1,0):_}function inflateReset(r){var i;return r&&r.state?((i=r.state).wsize=0,i.whave=0,i.wnext=0,inflateResetKeep(r)):_}function inflateReset2(r,i){var o,u;return r&&r.state?(u=r.state,i<0?(o=0,i=-i):(o=1+(i>>4),i<48&&(i&=15)),i&&(i<8||i>15)?_:(null!==u.window&&u.wbits!==i&&(u.window=null),u.wrap=o,u.wbits=i,inflateReset(r))):_}function inflateInit2(r,i){var o,u;return r?(u=new InflateState,r.state=u,u.window=null,0!==(o=inflateReset2(r,i))&&(r.state=null),o):_}var P,O,I=!0;function fixedtables(r){if(I){var i;for(P=new u.Buf32(512),O=new u.Buf32(32),i=0;i<144;)r.lens[i++]=8;for(;i<256;)r.lens[i++]=9;for(;i<280;)r.lens[i++]=7;for(;i<288;)r.lens[i++]=8;for(w(1,r.lens,0,288,P,0,r.work,{bits:9}),i=0;i<32;)r.lens[i++]=5;w(2,r.lens,0,32,O,0,r.work,{bits:5}),I=!1}r.lencode=P,r.lenbits=9,r.distcode=O,r.distbits=5}function updatewindow(r,i,o,p){var g,y=r.state;return null===y.window&&(y.wsize=1<<y.wbits,y.wnext=0,y.whave=0,y.window=new u.Buf8(y.wsize)),p>=y.wsize?(u.arraySet(y.window,i,o-y.wsize,y.wsize,0),y.wnext=0,y.whave=y.wsize):((g=y.wsize-y.wnext)>p&&(g=p),u.arraySet(y.window,i,o-p,g,y.wnext),(p-=g)?(u.arraySet(y.window,i,o-p,p,0),y.wnext=p,y.whave=y.wsize):(y.wnext+=g,y.wnext===y.wsize&&(y.wnext=0),y.whave<y.wsize&&(y.whave+=g))),0}i.inflateReset=inflateReset,i.inflateReset2=inflateReset2,i.inflateResetKeep=inflateResetKeep,i.inflateInit=function inflateInit(r){return inflateInit2(r,15)},i.inflateInit2=inflateInit2,i.inflate=function inflate(r,i){var o,P,O,I,B,R,D,N,W,U,j,G,X,K,Y,J,$,ee,te,re,ne,ie,oe,ae,se=0,ce=new u.Buf8(4),le=[16,17,18,0,8,7,9,6,10,5,11,4,12,3,13,2,14,1,15];if(!r||!r.state||!r.output||!r.input&&0!==r.avail_in)return _;(o=r.state).mode===x&&(o.mode=13),B=r.next_out,O=r.output,D=r.avail_out,I=r.next_in,P=r.input,R=r.avail_in,N=o.hold,W=o.bits,U=R,j=D,ie=0;e:for(;;)switch(o.mode){case 1:if(0===o.wrap){o.mode=13;break}for(;W<16;){if(0===R)break e;R--,N+=P[I++]<<W,W+=8}if(2&o.wrap&&35615===N){o.check=0,ce[0]=255&N,ce[1]=N>>>8&255,o.check=g(o.check,ce,2,0),N=0,W=0,o.mode=2;break}if(o.flags=0,o.head&&(o.head.done=!1),!(1&o.wrap)||(((255&N)<<8)+(N>>8))%31){r.msg="incorrect header check",o.mode=k;break}if(8!=(15&N)){r.msg="unknown compression method",o.mode=k;break}if(W-=4,ne=8+(15&(N>>>=4)),0===o.wbits)o.wbits=ne;else if(ne>o.wbits){r.msg="invalid window size",o.mode=k;break}o.dmax=1<<ne,r.adler=o.check=1,o.mode=512&N?10:x,N=0,W=0;break;case 2:for(;W<16;){if(0===R)break e;R--,N+=P[I++]<<W,W+=8}if(o.flags=N,8!=(255&o.flags)){r.msg="unknown compression method",o.mode=k;break}if(57344&o.flags){r.msg="unknown header flags set",o.mode=k;break}o.head&&(o.head.text=N>>8&1),512&o.flags&&(ce[0]=255&N,ce[1]=N>>>8&255,o.check=g(o.check,ce,2,0)),N=0,W=0,o.mode=3;case 3:for(;W<32;){if(0===R)break e;R--,N+=P[I++]<<W,W+=8}o.head&&(o.head.time=N),512&o.flags&&(ce[0]=255&N,ce[1]=N>>>8&255,ce[2]=N>>>16&255,ce[3]=N>>>24&255,o.check=g(o.check,ce,4,0)),N=0,W=0,o.mode=4;case 4:for(;W<16;){if(0===R)break e;R--,N+=P[I++]<<W,W+=8}o.head&&(o.head.xflags=255&N,o.head.os=N>>8),512&o.flags&&(ce[0]=255&N,ce[1]=N>>>8&255,o.check=g(o.check,ce,2,0)),N=0,W=0,o.mode=5;case 5:if(1024&o.flags){for(;W<16;){if(0===R)break e;R--,N+=P[I++]<<W,W+=8}o.length=N,o.head&&(o.head.extra_len=N),512&o.flags&&(ce[0]=255&N,ce[1]=N>>>8&255,o.check=g(o.check,ce,2,0)),N=0,W=0}else o.head&&(o.head.extra=null);o.mode=6;case 6:if(1024&o.flags&&((G=o.length)>R&&(G=R),G&&(o.head&&(ne=o.head.extra_len-o.length,o.head.extra||(o.head.extra=new Array(o.head.extra_len)),u.arraySet(o.head.extra,P,I,G,ne)),512&o.flags&&(o.check=g(o.check,P,G,I)),R-=G,I+=G,o.length-=G),o.length))break e;o.length=0,o.mode=7;case 7:if(2048&o.flags){if(0===R)break e;G=0;do{ne=P[I+G++],o.head&&ne&&o.length<65536&&(o.head.name+=String.fromCharCode(ne))}while(ne&&G<R);if(512&o.flags&&(o.check=g(o.check,P,G,I)),R-=G,I+=G,ne)break e}else o.head&&(o.head.name=null);o.length=0,o.mode=8;case 8:if(4096&o.flags){if(0===R)break e;G=0;do{ne=P[I+G++],o.head&&ne&&o.length<65536&&(o.head.comment+=String.fromCharCode(ne))}while(ne&&G<R);if(512&o.flags&&(o.check=g(o.check,P,G,I)),R-=G,I+=G,ne)break e}else o.head&&(o.head.comment=null);o.mode=9;case 9:if(512&o.flags){for(;W<16;){if(0===R)break e;R--,N+=P[I++]<<W,W+=8}if(N!==(65535&o.check)){r.msg="header crc mismatch",o.mode=k;break}N=0,W=0}o.head&&(o.head.hcrc=o.flags>>9&1,o.head.done=!0),r.adler=o.check=0,o.mode=x;break;case 10:for(;W<32;){if(0===R)break e;R--,N+=P[I++]<<W,W+=8}r.adler=o.check=zswap32(N),N=0,W=0,o.mode=11;case 11:if(0===o.havedict)return r.next_out=B,r.avail_out=D,r.next_in=I,r.avail_in=R,o.hold=N,o.bits=W,2;r.adler=o.check=1,o.mode=x;case x:if(5===i||6===i)break e;case 13:if(o.last){N>>>=7&W,W-=7&W,o.mode=27;break}for(;W<3;){if(0===R)break e;R--,N+=P[I++]<<W,W+=8}switch(o.last=1&N,W-=1,3&(N>>>=1)){case 0:o.mode=14;break;case 1:if(fixedtables(o),o.mode=20,6===i){N>>>=2,W-=2;break e}break;case 2:o.mode=17;break;case 3:r.msg="invalid block type",o.mode=k}N>>>=2,W-=2;break;case 14:for(N>>>=7&W,W-=7&W;W<32;){if(0===R)break e;R--,N+=P[I++]<<W,W+=8}if((65535&N)!=(N>>>16^65535)){r.msg="invalid stored block lengths",o.mode=k;break}if(o.length=65535&N,N=0,W=0,o.mode=15,6===i)break e;case 15:o.mode=16;case 16:if(G=o.length){if(G>R&&(G=R),G>D&&(G=D),0===G)break e;u.arraySet(O,P,I,G,B),R-=G,I+=G,D-=G,B+=G,o.length-=G;break}o.mode=x;break;case 17:for(;W<14;){if(0===R)break e;R--,N+=P[I++]<<W,W+=8}if(o.nlen=257+(31&N),N>>>=5,W-=5,o.ndist=1+(31&N),N>>>=5,W-=5,o.ncode=4+(15&N),N>>>=4,W-=4,o.nlen>286||o.ndist>30){r.msg="too many length or distance symbols",o.mode=k;break}o.have=0,o.mode=18;case 18:for(;o.have<o.ncode;){for(;W<3;){if(0===R)break e;R--,N+=P[I++]<<W,W+=8}o.lens[le[o.have++]]=7&N,N>>>=3,W-=3}for(;o.have<19;)o.lens[le[o.have++]]=0;if(o.lencode=o.lendyn,o.lenbits=7,oe={bits:o.lenbits},ie=w(0,o.lens,0,19,o.lencode,0,o.work,oe),o.lenbits=oe.bits,ie){r.msg="invalid code lengths set",o.mode=k;break}o.have=0,o.mode=19;case 19:for(;o.have<o.nlen+o.ndist;){for(;J=(se=o.lencode[N&(1<<o.lenbits)-1])>>>16&255,$=65535&se,!((Y=se>>>24)<=W);){if(0===R)break e;R--,N+=P[I++]<<W,W+=8}if($<16)N>>>=Y,W-=Y,o.lens[o.have++]=$;else{if(16===$){for(ae=Y+2;W<ae;){if(0===R)break e;R--,N+=P[I++]<<W,W+=8}if(N>>>=Y,W-=Y,0===o.have){r.msg="invalid bit length repeat",o.mode=k;break}ne=o.lens[o.have-1],G=3+(3&N),N>>>=2,W-=2}else if(17===$){for(ae=Y+3;W<ae;){if(0===R)break e;R--,N+=P[I++]<<W,W+=8}W-=Y,ne=0,G=3+(7&(N>>>=Y)),N>>>=3,W-=3}else{for(ae=Y+7;W<ae;){if(0===R)break e;R--,N+=P[I++]<<W,W+=8}W-=Y,ne=0,G=11+(127&(N>>>=Y)),N>>>=7,W-=7}if(o.have+G>o.nlen+o.ndist){r.msg="invalid bit length repeat",o.mode=k;break}for(;G--;)o.lens[o.have++]=ne}}if(o.mode===k)break;if(0===o.lens[256]){r.msg="invalid code -- missing end-of-block",o.mode=k;break}if(o.lenbits=9,oe={bits:o.lenbits},ie=w(1,o.lens,0,o.nlen,o.lencode,0,o.work,oe),o.lenbits=oe.bits,ie){r.msg="invalid literal/lengths set",o.mode=k;break}if(o.distbits=6,o.distcode=o.distdyn,oe={bits:o.distbits},ie=w(2,o.lens,o.nlen,o.ndist,o.distcode,0,o.work,oe),o.distbits=oe.bits,ie){r.msg="invalid distances set",o.mode=k;break}if(o.mode=20,6===i)break e;case 20:o.mode=21;case 21:if(R>=6&&D>=258){r.next_out=B,r.avail_out=D,r.next_in=I,r.avail_in=R,o.hold=N,o.bits=W,y(r,j),B=r.next_out,O=r.output,D=r.avail_out,I=r.next_in,P=r.input,R=r.avail_in,N=o.hold,W=o.bits,o.mode===x&&(o.back=-1);break}for(o.back=0;J=(se=o.lencode[N&(1<<o.lenbits)-1])>>>16&255,$=65535&se,!((Y=se>>>24)<=W);){if(0===R)break e;R--,N+=P[I++]<<W,W+=8}if(J&&0==(240&J)){for(ee=Y,te=J,re=$;J=(se=o.lencode[re+((N&(1<<ee+te)-1)>>ee)])>>>16&255,$=65535&se,!(ee+(Y=se>>>24)<=W);){if(0===R)break e;R--,N+=P[I++]<<W,W+=8}N>>>=ee,W-=ee,o.back+=ee}if(N>>>=Y,W-=Y,o.back+=Y,o.length=$,0===J){o.mode=26;break}if(32&J){o.back=-1,o.mode=x;break}if(64&J){r.msg="invalid literal/length code",o.mode=k;break}o.extra=15&J,o.mode=22;case 22:if(o.extra){for(ae=o.extra;W<ae;){if(0===R)break e;R--,N+=P[I++]<<W,W+=8}o.length+=N&(1<<o.extra)-1,N>>>=o.extra,W-=o.extra,o.back+=o.extra}o.was=o.length,o.mode=23;case 23:for(;J=(se=o.distcode[N&(1<<o.distbits)-1])>>>16&255,$=65535&se,!((Y=se>>>24)<=W);){if(0===R)break e;R--,N+=P[I++]<<W,W+=8}if(0==(240&J)){for(ee=Y,te=J,re=$;J=(se=o.distcode[re+((N&(1<<ee+te)-1)>>ee)])>>>16&255,$=65535&se,!(ee+(Y=se>>>24)<=W);){if(0===R)break e;R--,N+=P[I++]<<W,W+=8}N>>>=ee,W-=ee,o.back+=ee}if(N>>>=Y,W-=Y,o.back+=Y,64&J){r.msg="invalid distance code",o.mode=k;break}o.offset=$,o.extra=15&J,o.mode=24;case 24:if(o.extra){for(ae=o.extra;W<ae;){if(0===R)break e;R--,N+=P[I++]<<W,W+=8}o.offset+=N&(1<<o.extra)-1,N>>>=o.extra,W-=o.extra,o.back+=o.extra}if(o.offset>o.dmax){r.msg="invalid distance too far back",o.mode=k;break}o.mode=25;case 25:if(0===D)break e;if(G=j-D,o.offset>G){if((G=o.offset-G)>o.whave&&o.sane){r.msg="invalid distance too far back",o.mode=k;break}G>o.wnext?(G-=o.wnext,X=o.wsize-G):X=o.wnext-G,G>o.length&&(G=o.length),K=o.window}else K=O,X=B-o.offset,G=o.length;G>D&&(G=D),D-=G,o.length-=G;do{O[B++]=K[X++]}while(--G);0===o.length&&(o.mode=21);break;case 26:if(0===D)break e;O[B++]=o.length,D--,o.mode=21;break;case 27:if(o.wrap){for(;W<32;){if(0===R)break e;R--,N|=P[I++]<<W,W+=8}if(j-=D,r.total_out+=j,o.total+=j,j&&(r.adler=o.check=o.flags?g(o.check,O,j,B-j):p(o.check,O,j,B-j)),j=D,(o.flags?N:zswap32(N))!==o.check){r.msg="incorrect data check",o.mode=k;break}N=0,W=0}o.mode=28;case 28:if(o.wrap&&o.flags){for(;W<32;){if(0===R)break e;R--,N+=P[I++]<<W,W+=8}if(N!==(4294967295&o.total)){r.msg="incorrect length check",o.mode=k;break}N=0,W=0}o.mode=29;case 29:ie=1;break e;case k:ie=-3;break e;case 31:return-4;default:return _}return r.next_out=B,r.avail_out=D,r.next_in=I,r.avail_in=R,o.hold=N,o.bits=W,(o.wsize||j!==r.avail_out&&o.mode<k&&(o.mode<27||4!==i))&&updatewindow(r,r.output,r.next_out,j-r.avail_out)?(o.mode=31,-4):(U-=r.avail_in,j-=r.avail_out,r.total_in+=U,r.total_out+=j,o.total+=j,o.wrap&&j&&(r.adler=o.check=o.flags?g(o.check,O,j,r.next_out-j):p(o.check,O,j,r.next_out-j)),r.data_type=o.bits+(o.last?64:0)+(o.mode===x?128:0)+(20===o.mode||15===o.mode?256:0),(0===U&&0===j||4===i)&&0===ie&&(ie=-5),ie)},i.inflateEnd=function inflateEnd(r){if(!r||!r.state)return _;var i=r.state;return i.window&&(i.window=null),r.state=null,0},i.inflateGetHeader=function inflateGetHeader(r,i){var o;return r&&r.state?0==(2&(o=r.state).wrap)?_:(o.head=i,i.done=!1,0):_},i.inflateSetDictionary=function inflateSetDictionary(r,i){var o,u=i.length;return r&&r.state?0!==(o=r.state).wrap&&11!==o.mode?_:11===o.mode&&p(1,i,u,0)!==o.check?-3:updatewindow(r,i,u,u)?(o.mode=31,-4):(o.havedict=1,0):_},i.inflateInfo="pako inflate (from Nodeca project)"},9241:function(r,i,o){"use strict";var u=o(4236),p=15,g=[3,4,5,6,7,8,9,10,11,13,15,17,19,23,27,31,35,43,51,59,67,83,99,115,131,163,195,227,258,0,0],y=[16,16,16,16,16,16,16,16,17,17,17,17,18,18,18,18,19,19,19,19,20,20,20,20,21,21,21,21,16,72,78],w=[1,2,3,4,5,7,9,13,17,25,33,49,65,97,129,193,257,385,513,769,1025,1537,2049,3073,4097,6145,8193,12289,16385,24577,0,0],_=[16,16,16,16,17,17,18,18,19,19,20,20,21,21,22,22,23,23,24,24,25,25,26,26,27,27,28,28,29,29,64,64];r.exports=function inflate_table(r,i,o,x,k,P,O,I){var B,R,D,N,W,U,j,G,X,K=I.bits,Y=0,J=0,$=0,ee=0,te=0,re=0,ne=0,ie=0,oe=0,ae=0,se=null,ce=0,le=new u.Buf16(16),ue=new u.Buf16(16),fe=null,he=0;for(Y=0;Y<=p;Y++)le[Y]=0;for(J=0;J<x;J++)le[i[o+J]]++;for(te=K,ee=p;ee>=1&&0===le[ee];ee--);if(te>ee&&(te=ee),0===ee)return k[P++]=20971520,k[P++]=20971520,I.bits=1,0;for($=1;$<ee&&0===le[$];$++);for(te<$&&(te=$),ie=1,Y=1;Y<=p;Y++)if(ie<<=1,(ie-=le[Y])<0)return-1;if(ie>0&&(0===r||1!==ee))return-1;for(ue[1]=0,Y=1;Y<p;Y++)ue[Y+1]=ue[Y]+le[Y];for(J=0;J<x;J++)0!==i[o+J]&&(O[ue[i[o+J]]++]=J);if(0===r?(se=fe=O,U=19):1===r?(se=g,ce-=257,fe=y,he-=257,U=256):(se=w,fe=_,U=-1),ae=0,J=0,Y=$,W=P,re=te,ne=0,D=-1,N=(oe=1<<te)-1,1===r&&oe>852||2===r&&oe>592)return 1;for(;;){j=Y-ne,O[J]<U?(G=0,X=O[J]):O[J]>U?(G=fe[he+O[J]],X=se[ce+O[J]]):(G=96,X=0),B=1<<Y-ne,$=R=1<<re;do{k[W+(ae>>ne)+(R-=B)]=j<<24|G<<16|X|0}while(0!==R);for(B=1<<Y-1;ae&B;)B>>=1;if(0!==B?(ae&=B-1,ae+=B):ae=0,J++,0==--le[Y]){if(Y===ee)break;Y=i[o+O[J]]}if(Y>te&&(ae&N)!==D){for(0===ne&&(ne=te),W+=$,ie=1<<(re=Y-ne);re+ne<ee&&!((ie-=le[re+ne])<=0);)re++,ie<<=1;if(oe+=1<<re,1===r&&oe>852||2===r&&oe>592)return 1;k[D=ae&N]=te<<24|re<<16|W-P|0}}return 0!==ae&&(k[W+ae]=Y-ne<<24|64<<16|0),I.bits=te,0}},8898:function(r){"use strict";r.exports={2:"need dictionary",1:"stream end",0:"","-1":"file error","-2":"stream error","-3":"data error","-4":"insufficient memory","-5":"buffer error","-6":"incompatible version"}},342:function(r,i,o){"use strict";var u=o(4236);function zero(r){for(var i=r.length;--i>=0;)r[i]=0}var p=256,g=286,y=30,w=15,_=[0,0,0,0,0,0,0,0,1,1,1,1,2,2,2,2,3,3,3,3,4,4,4,4,5,5,5,5,0],x=[0,0,0,0,1,1,2,2,3,3,4,4,5,5,6,6,7,7,8,8,9,9,10,10,11,11,12,12,13,13],k=[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,2,3,7],P=[16,17,18,0,8,7,9,6,10,5,11,4,12,3,13,2,14,1,15],O=new Array(576);zero(O);var I=new Array(60);zero(I);var B=new Array(512);zero(B);var R=new Array(256);zero(R);var D=new Array(29);zero(D);var N,W,U,j=new Array(y);function StaticTreeDesc(r,i,o,u,p){this.static_tree=r,this.extra_bits=i,this.extra_base=o,this.elems=u,this.max_length=p,this.has_stree=r&&r.length}function TreeDesc(r,i){this.dyn_tree=r,this.max_code=0,this.stat_desc=i}function d_code(r){return r<256?B[r]:B[256+(r>>>7)]}function put_short(r,i){r.pending_buf[r.pending++]=255&i,r.pending_buf[r.pending++]=i>>>8&255}function send_bits(r,i,o){r.bi_valid>16-o?(r.bi_buf|=i<<r.bi_valid&65535,put_short(r,r.bi_buf),r.bi_buf=i>>16-r.bi_valid,r.bi_valid+=o-16):(r.bi_buf|=i<<r.bi_valid&65535,r.bi_valid+=o)}function send_code(r,i,o){send_bits(r,o[2*i],o[2*i+1])}function bi_reverse(r,i){var o=0;do{o|=1&r,r>>>=1,o<<=1}while(--i>0);return o>>>1}function gen_codes(r,i,o){var u,p,g=new Array(16),y=0;for(u=1;u<=w;u++)g[u]=y=y+o[u-1]<<1;for(p=0;p<=i;p++){var _=r[2*p+1];0!==_&&(r[2*p]=bi_reverse(g[_]++,_))}}function init_block(r){var i;for(i=0;i<g;i++)r.dyn_ltree[2*i]=0;for(i=0;i<y;i++)r.dyn_dtree[2*i]=0;for(i=0;i<19;i++)r.bl_tree[2*i]=0;r.dyn_ltree[512]=1,r.opt_len=r.static_len=0,r.last_lit=r.matches=0}function bi_windup(r){r.bi_valid>8?put_short(r,r.bi_buf):r.bi_valid>0&&(r.pending_buf[r.pending++]=r.bi_buf),r.bi_buf=0,r.bi_valid=0}function smaller(r,i,o,u){var p=2*i,g=2*o;return r[p]<r[g]||r[p]===r[g]&&u[i]<=u[o]}function pqdownheap(r,i,o){for(var u=r.heap[o],p=o<<1;p<=r.heap_len&&(p<r.heap_len&&smaller(i,r.heap[p+1],r.heap[p],r.depth)&&p++,!smaller(i,u,r.heap[p],r.depth));)r.heap[o]=r.heap[p],o=p,p<<=1;r.heap[o]=u}function compress_block(r,i,o){var u,g,y,w,k=0;if(0!==r.last_lit)do{u=r.pending_buf[r.d_buf+2*k]<<8|r.pending_buf[r.d_buf+2*k+1],g=r.pending_buf[r.l_buf+k],k++,0===u?send_code(r,g,i):(send_code(r,(y=R[g])+p+1,i),0!==(w=_[y])&&send_bits(r,g-=D[y],w),send_code(r,y=d_code(--u),o),0!==(w=x[y])&&send_bits(r,u-=j[y],w))}while(k<r.last_lit);send_code(r,256,i)}function build_tree(r,i){var o,u,p,g=i.dyn_tree,y=i.stat_desc.static_tree,_=i.stat_desc.has_stree,x=i.stat_desc.elems,k=-1;for(r.heap_len=0,r.heap_max=573,o=0;o<x;o++)0!==g[2*o]?(r.heap[++r.heap_len]=k=o,r.depth[o]=0):g[2*o+1]=0;for(;r.heap_len<2;)g[2*(p=r.heap[++r.heap_len]=k<2?++k:0)]=1,r.depth[p]=0,r.opt_len--,_&&(r.static_len-=y[2*p+1]);for(i.max_code=k,o=r.heap_len>>1;o>=1;o--)pqdownheap(r,g,o);p=x;do{o=r.heap[1],r.heap[1]=r.heap[r.heap_len--],pqdownheap(r,g,1),u=r.heap[1],r.heap[--r.heap_max]=o,r.heap[--r.heap_max]=u,g[2*p]=g[2*o]+g[2*u],r.depth[p]=(r.depth[o]>=r.depth[u]?r.depth[o]:r.depth[u])+1,g[2*o+1]=g[2*u+1]=p,r.heap[1]=p++,pqdownheap(r,g,1)}while(r.heap_len>=2);r.heap[--r.heap_max]=r.heap[1],function gen_bitlen(r,i){var o,u,p,g,y,_,x=i.dyn_tree,k=i.max_code,P=i.stat_desc.static_tree,O=i.stat_desc.has_stree,I=i.stat_desc.extra_bits,B=i.stat_desc.extra_base,R=i.stat_desc.max_length,D=0;for(g=0;g<=w;g++)r.bl_count[g]=0;for(x[2*r.heap[r.heap_max]+1]=0,o=r.heap_max+1;o<573;o++)(g=x[2*x[2*(u=r.heap[o])+1]+1]+1)>R&&(g=R,D++),x[2*u+1]=g,u>k||(r.bl_count[g]++,y=0,u>=B&&(y=I[u-B]),_=x[2*u],r.opt_len+=_*(g+y),O&&(r.static_len+=_*(P[2*u+1]+y)));if(0!==D){do{for(g=R-1;0===r.bl_count[g];)g--;r.bl_count[g]--,r.bl_count[g+1]+=2,r.bl_count[R]--,D-=2}while(D>0);for(g=R;0!==g;g--)for(u=r.bl_count[g];0!==u;)(p=r.heap[--o])>k||(x[2*p+1]!==g&&(r.opt_len+=(g-x[2*p+1])*x[2*p],x[2*p+1]=g),u--)}}(r,i),gen_codes(g,k,r.bl_count)}function scan_tree(r,i,o){var u,p,g=-1,y=i[1],w=0,_=7,x=4;for(0===y&&(_=138,x=3),i[2*(o+1)+1]=65535,u=0;u<=o;u++)p=y,y=i[2*(u+1)+1],++w<_&&p===y||(w<x?r.bl_tree[2*p]+=w:0!==p?(p!==g&&r.bl_tree[2*p]++,r.bl_tree[32]++):w<=10?r.bl_tree[34]++:r.bl_tree[36]++,w=0,g=p,0===y?(_=138,x=3):p===y?(_=6,x=3):(_=7,x=4))}function send_tree(r,i,o){var u,p,g=-1,y=i[1],w=0,_=7,x=4;for(0===y&&(_=138,x=3),u=0;u<=o;u++)if(p=y,y=i[2*(u+1)+1],!(++w<_&&p===y)){if(w<x)do{send_code(r,p,r.bl_tree)}while(0!=--w);else 0!==p?(p!==g&&(send_code(r,p,r.bl_tree),w--),send_code(r,16,r.bl_tree),send_bits(r,w-3,2)):w<=10?(send_code(r,17,r.bl_tree),send_bits(r,w-3,3)):(send_code(r,18,r.bl_tree),send_bits(r,w-11,7));w=0,g=p,0===y?(_=138,x=3):p===y?(_=6,x=3):(_=7,x=4)}}zero(j);var G=!1;function _tr_stored_block(r,i,o,p){send_bits(r,0+(p?1:0),3),function copy_block(r,i,o,p){bi_windup(r),p&&(put_short(r,o),put_short(r,~o)),u.arraySet(r.pending_buf,r.window,i,o,r.pending),r.pending+=o}(r,i,o,!0)}i._tr_init=function _tr_init(r){G||(!function tr_static_init(){var r,i,o,u,p,P=new Array(16);for(o=0,u=0;u<28;u++)for(D[u]=o,r=0;r<1<<_[u];r++)R[o++]=u;for(R[o-1]=u,p=0,u=0;u<16;u++)for(j[u]=p,r=0;r<1<<x[u];r++)B[p++]=u;for(p>>=7;u<y;u++)for(j[u]=p<<7,r=0;r<1<<x[u]-7;r++)B[256+p++]=u;for(i=0;i<=w;i++)P[i]=0;for(r=0;r<=143;)O[2*r+1]=8,r++,P[8]++;for(;r<=255;)O[2*r+1]=9,r++,P[9]++;for(;r<=279;)O[2*r+1]=7,r++,P[7]++;for(;r<=287;)O[2*r+1]=8,r++,P[8]++;for(gen_codes(O,287,P),r=0;r<y;r++)I[2*r+1]=5,I[2*r]=bi_reverse(r,5);N=new StaticTreeDesc(O,_,257,g,w),W=new StaticTreeDesc(I,x,0,y,w),U=new StaticTreeDesc(new Array(0),k,0,19,7)}(),G=!0),r.l_desc=new TreeDesc(r.dyn_ltree,N),r.d_desc=new TreeDesc(r.dyn_dtree,W),r.bl_desc=new TreeDesc(r.bl_tree,U),r.bi_buf=0,r.bi_valid=0,init_block(r)},i._tr_stored_block=_tr_stored_block,i._tr_flush_block=function _tr_flush_block(r,i,o,u){var g,y,w=0;r.level>0?(2===r.strm.data_type&&(r.strm.data_type=function detect_data_type(r){var i,o=4093624447;for(i=0;i<=31;i++,o>>>=1)if(1&o&&0!==r.dyn_ltree[2*i])return 0;if(0!==r.dyn_ltree[18]||0!==r.dyn_ltree[20]||0!==r.dyn_ltree[26])return 1;for(i=32;i<p;i++)if(0!==r.dyn_ltree[2*i])return 1;return 0}(r)),build_tree(r,r.l_desc),build_tree(r,r.d_desc),w=function build_bl_tree(r){var i;for(scan_tree(r,r.dyn_ltree,r.l_desc.max_code),scan_tree(r,r.dyn_dtree,r.d_desc.max_code),build_tree(r,r.bl_desc),i=18;i>=3&&0===r.bl_tree[2*P[i]+1];i--);return r.opt_len+=3*(i+1)+5+5+4,i}(r),g=r.opt_len+3+7>>>3,(y=r.static_len+3+7>>>3)<=g&&(g=y)):g=y=o+5,o+4<=g&&-1!==i?_tr_stored_block(r,i,o,u):4===r.strategy||y===g?(send_bits(r,2+(u?1:0),3),compress_block(r,O,I)):(send_bits(r,4+(u?1:0),3),function send_all_trees(r,i,o,u){var p;for(send_bits(r,i-257,5),send_bits(r,o-1,5),send_bits(r,u-4,4),p=0;p<u;p++)send_bits(r,r.bl_tree[2*P[p]+1],3);send_tree(r,r.dyn_ltree,i-1),send_tree(r,r.dyn_dtree,o-1)}(r,r.l_desc.max_code+1,r.d_desc.max_code+1,w+1),compress_block(r,r.dyn_ltree,r.dyn_dtree)),init_block(r),u&&bi_windup(r)},i._tr_tally=function _tr_tally(r,i,o){return r.pending_buf[r.d_buf+2*r.last_lit]=i>>>8&255,r.pending_buf[r.d_buf+2*r.last_lit+1]=255&i,r.pending_buf[r.l_buf+r.last_lit]=255&o,r.last_lit++,0===i?r.dyn_ltree[2*o]++:(r.matches++,i--,r.dyn_ltree[2*(R[o]+p+1)]++,r.dyn_dtree[2*d_code(i)]++),r.last_lit===r.lit_bufsize-1},i._tr_align=function _tr_align(r){send_bits(r,2,3),send_code(r,256,O),function bi_flush(r){16===r.bi_valid?(put_short(r,r.bi_buf),r.bi_buf=0,r.bi_valid=0):r.bi_valid>=8&&(r.pending_buf[r.pending++]=255&r.bi_buf,r.bi_buf>>=8,r.bi_valid-=8)}(r)}},2292:function(r){"use strict";r.exports=function ZStream(){this.input=null,this.next_in=0,this.avail_in=0,this.total_in=0,this.output=null,this.next_out=0,this.avail_out=0,this.total_out=0,this.msg="",this.state=null,this.data_type=2,this.adler=0}},4155:function(r){var i,o,u=r.exports={};function defaultSetTimout(){throw new Error("setTimeout has not been defined")}function defaultClearTimeout(){throw new Error("clearTimeout has not been defined")}function runTimeout(r){if(i===setTimeout)return setTimeout(r,0);if((i===defaultSetTimout||!i)&&setTimeout)return i=setTimeout,setTimeout(r,0);try{return i(r,0)}catch(o){try{return i.call(null,r,0)}catch(o){return i.call(this,r,0)}}}!function(){try{i="function"==typeof setTimeout?setTimeout:defaultSetTimout}catch(r){i=defaultSetTimout}try{o="function"==typeof clearTimeout?clearTimeout:defaultClearTimeout}catch(r){o=defaultClearTimeout}}();var p,g=[],y=!1,w=-1;function cleanUpNextTick(){y&&p&&(y=!1,p.length?g=p.concat(g):w=-1,g.length&&drainQueue())}function drainQueue(){if(!y){var r=runTimeout(cleanUpNextTick);y=!0;for(var i=g.length;i;){for(p=g,g=[];++w<i;)p&&p[w].run();w=-1,i=g.length}p=null,y=!1,function runClearTimeout(r){if(o===clearTimeout)return clearTimeout(r);if((o===defaultClearTimeout||!o)&&clearTimeout)return o=clearTimeout,clearTimeout(r);try{return o(r)}catch(i){try{return o.call(null,r)}catch(i){return o.call(this,r)}}}(r)}}function Item(r,i){this.fun=r,this.array=i}function noop(){}u.nextTick=function(r){var i=new Array(arguments.length-1);if(arguments.length>1)for(var o=1;o<arguments.length;o++)i[o-1]=arguments[o];g.push(new Item(r,i)),1!==g.length||y||runTimeout(drainQueue)},Item.prototype.run=function(){this.fun.apply(null,this.array)},u.title="browser",u.browser=!0,u.env={},u.argv=[],u.version="",u.versions={},u.on=noop,u.addListener=noop,u.once=noop,u.off=noop,u.removeListener=noop,u.removeAllListeners=noop,u.emit=noop,u.prependListener=noop,u.prependOnceListener=noop,u.listeners=function(r){return[]},u.binding=function(r){throw new Error("process.binding is not supported")},u.cwd=function(){return"/"},u.chdir=function(r){throw new Error("process.chdir is not supported")},u.umask=function(){return 0}},3697:function(r,i,o){"use strict";var u=o(5972).functionsHaveConfigurableNames(),p=Object,g=TypeError;r.exports=function flags(){if(null!=this&&this!==p(this))throw new g("RegExp.prototype.flags getter called on non-object");var r="";return this.hasIndices&&(r+="d"),this.global&&(r+="g"),this.ignoreCase&&(r+="i"),this.multiline&&(r+="m"),this.dotAll&&(r+="s"),this.unicode&&(r+="u"),this.sticky&&(r+="y"),r},u&&Object.defineProperty&&Object.defineProperty(r.exports,"name",{value:"get flags"})},2847:function(r,i,o){"use strict";var u=o(4289),p=o(5559),g=o(3697),y=o(1721),w=o(2753),_=p(y());u(_,{getPolyfill:y,implementation:g,shim:w}),r.exports=_},1721:function(r,i,o){"use strict";var u=o(3697),p=o(4289).supportsDescriptors,g=Object.getOwnPropertyDescriptor;r.exports=function getPolyfill(){if(p&&"gim"===/a/gim.flags){var r=g(RegExp.prototype,"flags");if(r&&"function"==typeof r.get&&"boolean"==typeof RegExp.prototype.dotAll&&"boolean"==typeof RegExp.prototype.hasIndices){var i="",o={};if(Object.defineProperty(o,"hasIndices",{get:function(){i+="d"}}),Object.defineProperty(o,"sticky",{get:function(){i+="y"}}),"dy"===i)return r.get}}return u}},2753:function(r,i,o){"use strict";var u=o(4289).supportsDescriptors,p=o(1721),g=Object.getOwnPropertyDescriptor,y=Object.defineProperty,w=TypeError,_=Object.getPrototypeOf,x=/a/;r.exports=function shimFlags(){if(!u||!_)throw new w("RegExp.prototype.flags requires a true ES5 environment that supports property descriptors");var r=p(),i=_(x),o=g(i,"flags");return o&&o.get===r||y(i,"flags",{configurable:!0,enumerable:!1,get:r}),r}},6099:function(r,i,o){var u=o(8823).Buffer;!function(r){r.parser=function(r,i){return new SAXParser(r,i)},r.SAXParser=SAXParser,r.SAXStream=SAXStream,r.createStream=function createStream(r,i){return new SAXStream(r,i)},r.MAX_BUFFER_LENGTH=65536;var i,p=["comment","sgmlDecl","textNode","tagName","doctype","procInstName","procInstBody","entity","attribName","attribValue","cdata","script"];function SAXParser(i,o){if(!(this instanceof SAXParser))return new SAXParser(i,o);var u=this;!function clearBuffers(r){for(var i=0,o=p.length;i<o;i++)r[p[i]]=""}(u),u.q=u.c="",u.bufferCheckPosition=r.MAX_BUFFER_LENGTH,u.opt=o||{},u.opt.lowercase=u.opt.lowercase||u.opt.lowercasetags,u.looseCase=u.opt.lowercase?"toLowerCase":"toUpperCase",u.tags=[],u.closed=u.closedRoot=u.sawRoot=!1,u.tag=u.error=null,u.strict=!!i,u.noscript=!(!i&&!u.opt.noscript),u.state=D.BEGIN,u.strictEntities=u.opt.strictEntities,u.ENTITIES=u.strictEntities?Object.create(r.XML_ENTITIES):Object.create(r.ENTITIES),u.attribList=[],u.opt.xmlns&&(u.ns=Object.create(_)),u.trackPosition=!1!==u.opt.position,u.trackPosition&&(u.position=u.line=u.column=0),emit(u,"onready")}r.EVENTS=["text","processinginstruction","sgmldeclaration","doctype","comment","opentagstart","attribute","opentag","closetag","opencdata","cdata","closecdata","error","end","ready","script","opennamespace","closenamespace"],Object.create||(Object.create=function(r){function F(){}return F.prototype=r,new F}),Object.keys||(Object.keys=function(r){var i=[];for(var o in r)r.hasOwnProperty(o)&&i.push(o);return i}),SAXParser.prototype={end:function(){end(this)},write:function write(i){var o=this;if(this.error)throw this.error;if(o.closed)return error(o,"Cannot write after close. Assign an onready handler.");if(null===i)return end(o);"object"==typeof i&&(i=i.toString());var u=0,g="";for(;g=charAt(i,u++),o.c=g,g;)switch(o.trackPosition&&(o.position++,"\n"===g?(o.line++,o.column=0):o.column++),o.state){case D.BEGIN:if(o.state=D.BEGIN_WHITESPACE,"\ufeff"===g)continue;beginWhiteSpace(o,g);continue;case D.BEGIN_WHITESPACE:beginWhiteSpace(o,g);continue;case D.TEXT:if(o.sawRoot&&!o.closedRoot){for(var y=u-1;g&&"<"!==g&&"&"!==g;)(g=charAt(i,u++))&&o.trackPosition&&(o.position++,"\n"===g?(o.line++,o.column=0):o.column++);o.textNode+=i.substring(y,u-1)}"<"!==g||o.sawRoot&&o.closedRoot&&!o.strict?(isWhitespace(g)||o.sawRoot&&!o.closedRoot||strictFail(o,"Text data outside of root node."),"&"===g?o.state=D.TEXT_ENTITY:o.textNode+=g):(o.state=D.OPEN_WAKA,o.startTagPosition=o.position);continue;case D.SCRIPT:"<"===g?o.state=D.SCRIPT_ENDING:o.script+=g;continue;case D.SCRIPT_ENDING:"/"===g?o.state=D.CLOSE_TAG:(o.script+="<"+g,o.state=D.SCRIPT);continue;case D.OPEN_WAKA:if("!"===g)o.state=D.SGML_DECL,o.sgmlDecl="";else if(isWhitespace(g));else if(isMatch(x,g))o.state=D.OPEN_TAG,o.tagName=g;else if("/"===g)o.state=D.CLOSE_TAG,o.tagName="";else if("?"===g)o.state=D.PROC_INST,o.procInstName=o.procInstBody="";else{if(strictFail(o,"Unencoded <"),o.startTagPosition+1<o.position){var w=o.position-o.startTagPosition;g=new Array(w).join(" ")+g}o.textNode+="<"+g,o.state=D.TEXT}continue;case D.SGML_DECL:"[CDATA["===(o.sgmlDecl+g).toUpperCase()?(emitNode(o,"onopencdata"),o.state=D.CDATA,o.sgmlDecl="",o.cdata=""):o.sgmlDecl+g==="--"?(o.state=D.COMMENT,o.comment="",o.sgmlDecl=""):"DOCTYPE"===(o.sgmlDecl+g).toUpperCase()?(o.state=D.DOCTYPE,(o.doctype||o.sawRoot)&&strictFail(o,"Inappropriately located doctype declaration"),o.doctype="",o.sgmlDecl=""):">"===g?(emitNode(o,"onsgmldeclaration",o.sgmlDecl),o.sgmlDecl="",o.state=D.TEXT):isQuote(g)?(o.state=D.SGML_DECL_QUOTED,o.sgmlDecl+=g):o.sgmlDecl+=g;continue;case D.SGML_DECL_QUOTED:g===o.q&&(o.state=D.SGML_DECL,o.q=""),o.sgmlDecl+=g;continue;case D.DOCTYPE:">"===g?(o.state=D.TEXT,emitNode(o,"ondoctype",o.doctype),o.doctype=!0):(o.doctype+=g,"["===g?o.state=D.DOCTYPE_DTD:isQuote(g)&&(o.state=D.DOCTYPE_QUOTED,o.q=g));continue;case D.DOCTYPE_QUOTED:o.doctype+=g,g===o.q&&(o.q="",o.state=D.DOCTYPE);continue;case D.DOCTYPE_DTD:o.doctype+=g,"]"===g?o.state=D.DOCTYPE:isQuote(g)&&(o.state=D.DOCTYPE_DTD_QUOTED,o.q=g);continue;case D.DOCTYPE_DTD_QUOTED:o.doctype+=g,g===o.q&&(o.state=D.DOCTYPE_DTD,o.q="");continue;case D.COMMENT:"-"===g?o.state=D.COMMENT_ENDING:o.comment+=g;continue;case D.COMMENT_ENDING:"-"===g?(o.state=D.COMMENT_ENDED,o.comment=textopts(o.opt,o.comment),o.comment&&emitNode(o,"oncomment",o.comment),o.comment=""):(o.comment+="-"+g,o.state=D.COMMENT);continue;case D.COMMENT_ENDED:">"!==g?(strictFail(o,"Malformed comment"),o.comment+="--"+g,o.state=D.COMMENT):o.state=D.TEXT;continue;case D.CDATA:"]"===g?o.state=D.CDATA_ENDING:o.cdata+=g;continue;case D.CDATA_ENDING:"]"===g?o.state=D.CDATA_ENDING_2:(o.cdata+="]"+g,o.state=D.CDATA);continue;case D.CDATA_ENDING_2:">"===g?(o.cdata&&emitNode(o,"oncdata",o.cdata),emitNode(o,"onclosecdata"),o.cdata="",o.state=D.TEXT):"]"===g?o.cdata+="]":(o.cdata+="]]"+g,o.state=D.CDATA);continue;case D.PROC_INST:"?"===g?o.state=D.PROC_INST_ENDING:isWhitespace(g)?o.state=D.PROC_INST_BODY:o.procInstName+=g;continue;case D.PROC_INST_BODY:if(!o.procInstBody&&isWhitespace(g))continue;"?"===g?o.state=D.PROC_INST_ENDING:o.procInstBody+=g;continue;case D.PROC_INST_ENDING:">"===g?(emitNode(o,"onprocessinginstruction",{name:o.procInstName,body:o.procInstBody}),o.procInstName=o.procInstBody="",o.state=D.TEXT):(o.procInstBody+="?"+g,o.state=D.PROC_INST_BODY);continue;case D.OPEN_TAG:isMatch(k,g)?o.tagName+=g:(newTag(o),">"===g?openTag(o):"/"===g?o.state=D.OPEN_TAG_SLASH:(isWhitespace(g)||strictFail(o,"Invalid character in tag name"),o.state=D.ATTRIB));continue;case D.OPEN_TAG_SLASH:">"===g?(openTag(o,!0),closeTag(o)):(strictFail(o,"Forward-slash in opening tag not followed by >"),o.state=D.ATTRIB);continue;case D.ATTRIB:if(isWhitespace(g))continue;">"===g?openTag(o):"/"===g?o.state=D.OPEN_TAG_SLASH:isMatch(x,g)?(o.attribName=g,o.attribValue="",o.state=D.ATTRIB_NAME):strictFail(o,"Invalid attribute name");continue;case D.ATTRIB_NAME:"="===g?o.state=D.ATTRIB_VALUE:">"===g?(strictFail(o,"Attribute without value"),o.attribValue=o.attribName,attrib(o),openTag(o)):isWhitespace(g)?o.state=D.ATTRIB_NAME_SAW_WHITE:isMatch(k,g)?o.attribName+=g:strictFail(o,"Invalid attribute name");continue;case D.ATTRIB_NAME_SAW_WHITE:if("="===g)o.state=D.ATTRIB_VALUE;else{if(isWhitespace(g))continue;strictFail(o,"Attribute without value"),o.tag.attributes[o.attribName]="",o.attribValue="",emitNode(o,"onattribute",{name:o.attribName,value:""}),o.attribName="",">"===g?openTag(o):isMatch(x,g)?(o.attribName=g,o.state=D.ATTRIB_NAME):(strictFail(o,"Invalid attribute name"),o.state=D.ATTRIB)}continue;case D.ATTRIB_VALUE:if(isWhitespace(g))continue;isQuote(g)?(o.q=g,o.state=D.ATTRIB_VALUE_QUOTED):(strictFail(o,"Unquoted attribute value"),o.state=D.ATTRIB_VALUE_UNQUOTED,o.attribValue=g);continue;case D.ATTRIB_VALUE_QUOTED:if(g!==o.q){"&"===g?o.state=D.ATTRIB_VALUE_ENTITY_Q:o.attribValue+=g;continue}attrib(o),o.q="",o.state=D.ATTRIB_VALUE_CLOSED;continue;case D.ATTRIB_VALUE_CLOSED:isWhitespace(g)?o.state=D.ATTRIB:">"===g?openTag(o):"/"===g?o.state=D.OPEN_TAG_SLASH:isMatch(x,g)?(strictFail(o,"No whitespace between attributes"),o.attribName=g,o.attribValue="",o.state=D.ATTRIB_NAME):strictFail(o,"Invalid attribute name");continue;case D.ATTRIB_VALUE_UNQUOTED:if(!isAttribEnd(g)){"&"===g?o.state=D.ATTRIB_VALUE_ENTITY_U:o.attribValue+=g;continue}attrib(o),">"===g?openTag(o):o.state=D.ATTRIB;continue;case D.CLOSE_TAG:if(o.tagName)">"===g?closeTag(o):isMatch(k,g)?o.tagName+=g:o.script?(o.script+="</"+o.tagName,o.tagName="",o.state=D.SCRIPT):(isWhitespace(g)||strictFail(o,"Invalid tagname in closing tag"),o.state=D.CLOSE_TAG_SAW_WHITE);else{if(isWhitespace(g))continue;notMatch(x,g)?o.script?(o.script+="</"+g,o.state=D.SCRIPT):strictFail(o,"Invalid tagname in closing tag."):o.tagName=g}continue;case D.CLOSE_TAG_SAW_WHITE:if(isWhitespace(g))continue;">"===g?closeTag(o):strictFail(o,"Invalid characters in closing tag");continue;case D.TEXT_ENTITY:case D.ATTRIB_VALUE_ENTITY_Q:case D.ATTRIB_VALUE_ENTITY_U:var _,I;switch(o.state){case D.TEXT_ENTITY:_=D.TEXT,I="textNode";break;case D.ATTRIB_VALUE_ENTITY_Q:_=D.ATTRIB_VALUE_QUOTED,I="attribValue";break;case D.ATTRIB_VALUE_ENTITY_U:_=D.ATTRIB_VALUE_UNQUOTED,I="attribValue"}";"===g?(o[I]+=parseEntity(o),o.entity="",o.state=_):isMatch(o.entity.length?O:P,g)?o.entity+=g:(strictFail(o,"Invalid character in entity name"),o[I]+="&"+o.entity+g,o.entity="",o.state=_);continue;default:throw new Error(o,"Unknown state: "+o.state)}o.position>=o.bufferCheckPosition&&function checkBufferLength(i){for(var o=Math.max(r.MAX_BUFFER_LENGTH,10),u=0,g=0,y=p.length;g<y;g++){var w=i[p[g]].length;if(w>o)switch(p[g]){case"textNode":closeText(i);break;case"cdata":emitNode(i,"oncdata",i.cdata),i.cdata="";break;case"script":emitNode(i,"onscript",i.script),i.script="";break;default:error(i,"Max buffer length exceeded: "+p[g])}u=Math.max(u,w)}var _=r.MAX_BUFFER_LENGTH-u;i.bufferCheckPosition=_+i.position}(o);return o},resume:function(){return this.error=null,this},close:function(){return this.write(null)},flush:function(){!function flushBuffers(r){closeText(r),""!==r.cdata&&(emitNode(r,"oncdata",r.cdata),r.cdata=""),""!==r.script&&(emitNode(r,"onscript",r.script),r.script="")}(this)}};try{i=o(2830).Stream}catch(r){i=function(){}}var g=r.EVENTS.filter((function(r){return"error"!==r&&"end"!==r}));function SAXStream(r,o){if(!(this instanceof SAXStream))return new SAXStream(r,o);i.apply(this),this._parser=new SAXParser(r,o),this.writable=!0,this.readable=!0;var u=this;this._parser.onend=function(){u.emit("end")},this._parser.onerror=function(r){u.emit("error",r),u._parser.error=null},this._decoder=null,g.forEach((function(r){Object.defineProperty(u,"on"+r,{get:function(){return u._parser["on"+r]},set:function(i){if(!i)return u.removeAllListeners(r),u._parser["on"+r]=i,i;u.on(r,i)},enumerable:!0,configurable:!1})}))}SAXStream.prototype=Object.create(i.prototype,{constructor:{value:SAXStream}}),SAXStream.prototype.write=function(r){if("function"==typeof u&&"function"==typeof u.isBuffer&&u.isBuffer(r)){if(!this._decoder){var i=o(2553).s;this._decoder=new i("utf8")}r=this._decoder.write(r)}return this._parser.write(r.toString()),this.emit("data",r),!0},SAXStream.prototype.end=function(r){return r&&r.length&&this.write(r),this._parser.end(),!0},SAXStream.prototype.on=function(r,o){var u=this;return u._parser["on"+r]||-1===g.indexOf(r)||(u._parser["on"+r]=function(){var i=1===arguments.length?[arguments[0]]:Array.apply(null,arguments);i.splice(0,0,r),u.emit.apply(u,i)}),i.prototype.on.call(u,r,o)};var y="http://www.w3.org/XML/1998/namespace",w="http://www.w3.org/2000/xmlns/",_={xml:y,xmlns:w},x=/[:_A-Za-z\u00C0-\u00D6\u00D8-\u00F6\u00F8-\u02FF\u0370-\u037D\u037F-\u1FFF\u200C-\u200D\u2070-\u218F\u2C00-\u2FEF\u3001-\uD7FF\uF900-\uFDCF\uFDF0-\uFFFD]/,k=/[:_A-Za-z\u00C0-\u00D6\u00D8-\u00F6\u00F8-\u02FF\u0370-\u037D\u037F-\u1FFF\u200C-\u200D\u2070-\u218F\u2C00-\u2FEF\u3001-\uD7FF\uF900-\uFDCF\uFDF0-\uFFFD\u00B7\u0300-\u036F\u203F-\u2040.\d-]/,P=/[#:_A-Za-z\u00C0-\u00D6\u00D8-\u00F6\u00F8-\u02FF\u0370-\u037D\u037F-\u1FFF\u200C-\u200D\u2070-\u218F\u2C00-\u2FEF\u3001-\uD7FF\uF900-\uFDCF\uFDF0-\uFFFD]/,O=/[#:_A-Za-z\u00C0-\u00D6\u00D8-\u00F6\u00F8-\u02FF\u0370-\u037D\u037F-\u1FFF\u200C-\u200D\u2070-\u218F\u2C00-\u2FEF\u3001-\uD7FF\uF900-\uFDCF\uFDF0-\uFFFD\u00B7\u0300-\u036F\u203F-\u2040.\d-]/;function isWhitespace(r){return" "===r||"\n"===r||"\r"===r||"\t"===r}function isQuote(r){return'"'===r||"'"===r}function isAttribEnd(r){return">"===r||isWhitespace(r)}function isMatch(r,i){return r.test(i)}function notMatch(r,i){return!isMatch(r,i)}var I,B,R,D=0;for(var N in r.STATE={BEGIN:D++,BEGIN_WHITESPACE:D++,TEXT:D++,TEXT_ENTITY:D++,OPEN_WAKA:D++,SGML_DECL:D++,SGML_DECL_QUOTED:D++,DOCTYPE:D++,DOCTYPE_QUOTED:D++,DOCTYPE_DTD:D++,DOCTYPE_DTD_QUOTED:D++,COMMENT_STARTING:D++,COMMENT:D++,COMMENT_ENDING:D++,COMMENT_ENDED:D++,CDATA:D++,CDATA_ENDING:D++,CDATA_ENDING_2:D++,PROC_INST:D++,PROC_INST_BODY:D++,PROC_INST_ENDING:D++,OPEN_TAG:D++,OPEN_TAG_SLASH:D++,ATTRIB:D++,ATTRIB_NAME:D++,ATTRIB_NAME_SAW_WHITE:D++,ATTRIB_VALUE:D++,ATTRIB_VALUE_QUOTED:D++,ATTRIB_VALUE_CLOSED:D++,ATTRIB_VALUE_UNQUOTED:D++,ATTRIB_VALUE_ENTITY_Q:D++,ATTRIB_VALUE_ENTITY_U:D++,CLOSE_TAG:D++,CLOSE_TAG_SAW_WHITE:D++,SCRIPT:D++,SCRIPT_ENDING:D++},r.XML_ENTITIES={amp:"&",gt:">",lt:"<",quot:'"',apos:"'"},r.ENTITIES={amp:"&",gt:">",lt:"<",quot:'"',apos:"'",AElig:198,Aacute:193,Acirc:194,Agrave:192,Aring:197,Atilde:195,Auml:196,Ccedil:199,ETH:208,Eacute:201,Ecirc:202,Egrave:200,Euml:203,Iacute:205,Icirc:206,Igrave:204,Iuml:207,Ntilde:209,Oacute:211,Ocirc:212,Ograve:210,Oslash:216,Otilde:213,Ouml:214,THORN:222,Uacute:218,Ucirc:219,Ugrave:217,Uuml:220,Yacute:221,aacute:225,acirc:226,aelig:230,agrave:224,aring:229,atilde:227,auml:228,ccedil:231,eacute:233,ecirc:234,egrave:232,eth:240,euml:235,iacute:237,icirc:238,igrave:236,iuml:239,ntilde:241,oacute:243,ocirc:244,ograve:242,oslash:248,otilde:245,ouml:246,szlig:223,thorn:254,uacute:250,ucirc:251,ugrave:249,uuml:252,yacute:253,yuml:255,copy:169,reg:174,nbsp:160,iexcl:161,cent:162,pound:163,curren:164,yen:165,brvbar:166,sect:167,uml:168,ordf:170,laquo:171,not:172,shy:173,macr:175,deg:176,plusmn:177,sup1:185,sup2:178,sup3:179,acute:180,micro:181,para:182,middot:183,cedil:184,ordm:186,raquo:187,frac14:188,frac12:189,frac34:190,iquest:191,times:215,divide:247,OElig:338,oelig:339,Scaron:352,scaron:353,Yuml:376,fnof:402,circ:710,tilde:732,Alpha:913,Beta:914,Gamma:915,Delta:916,Epsilon:917,Zeta:918,Eta:919,Theta:920,Iota:921,Kappa:922,Lambda:923,Mu:924,Nu:925,Xi:926,Omicron:927,Pi:928,Rho:929,Sigma:931,Tau:932,Upsilon:933,Phi:934,Chi:935,Psi:936,Omega:937,alpha:945,beta:946,gamma:947,delta:948,epsilon:949,zeta:950,eta:951,theta:952,iota:953,kappa:954,lambda:955,mu:956,nu:957,xi:958,omicron:959,pi:960,rho:961,sigmaf:962,sigma:963,tau:964,upsilon:965,phi:966,chi:967,psi:968,omega:969,thetasym:977,upsih:978,piv:982,ensp:8194,emsp:8195,thinsp:8201,zwnj:8204,zwj:8205,lrm:8206,rlm:8207,ndash:8211,mdash:8212,lsquo:8216,rsquo:8217,sbquo:8218,ldquo:8220,rdquo:8221,bdquo:8222,dagger:8224,Dagger:8225,bull:8226,hellip:8230,permil:8240,prime:8242,Prime:8243,lsaquo:8249,rsaquo:8250,oline:8254,frasl:8260,euro:8364,image:8465,weierp:8472,real:8476,trade:8482,alefsym:8501,larr:8592,uarr:8593,rarr:8594,darr:8595,harr:8596,crarr:8629,lArr:8656,uArr:8657,rArr:8658,dArr:8659,hArr:8660,forall:8704,part:8706,exist:8707,empty:8709,nabla:8711,isin:8712,notin:8713,ni:8715,prod:8719,sum:8721,minus:8722,lowast:8727,radic:8730,prop:8733,infin:8734,ang:8736,and:8743,or:8744,cap:8745,cup:8746,int:8747,there4:8756,sim:8764,cong:8773,asymp:8776,ne:8800,equiv:8801,le:8804,ge:8805,sub:8834,sup:8835,nsub:8836,sube:8838,supe:8839,oplus:8853,otimes:8855,perp:8869,sdot:8901,lceil:8968,rceil:8969,lfloor:8970,rfloor:8971,lang:9001,rang:9002,loz:9674,spades:9824,clubs:9827,hearts:9829,diams:9830},Object.keys(r.ENTITIES).forEach((function(i){var o=r.ENTITIES[i],u="number"==typeof o?String.fromCharCode(o):o;r.ENTITIES[i]=u})),r.STATE)r.STATE[r.STATE[N]]=N;function emit(r,i,o){r[i]&&r[i](o)}function emitNode(r,i,o){r.textNode&&closeText(r),emit(r,i,o)}function closeText(r){r.textNode=textopts(r.opt,r.textNode),r.textNode&&emit(r,"ontext",r.textNode),r.textNode=""}function textopts(r,i){return r.trim&&(i=i.trim()),r.normalize&&(i=i.replace(/\s+/g," ")),i}function error(r,i){return closeText(r),r.trackPosition&&(i+="\nLine: "+r.line+"\nColumn: "+r.column+"\nChar: "+r.c),i=new Error(i),r.error=i,emit(r,"onerror",i),r}function end(r){return r.sawRoot&&!r.closedRoot&&strictFail(r,"Unclosed root tag"),r.state!==D.BEGIN&&r.state!==D.BEGIN_WHITESPACE&&r.state!==D.TEXT&&error(r,"Unexpected end"),closeText(r),r.c="",r.closed=!0,emit(r,"onend"),SAXParser.call(r,r.strict,r.opt),r}function strictFail(r,i){if("object"!=typeof r||!(r instanceof SAXParser))throw new Error("bad call to strictFail");r.strict&&error(r,i)}function newTag(r){r.strict||(r.tagName=r.tagName[r.looseCase]());var i=r.tags[r.tags.length-1]||r,o=r.tag={name:r.tagName,attributes:{}};r.opt.xmlns&&(o.ns=i.ns),r.attribList.length=0,emitNode(r,"onopentagstart",o)}function qname(r,i){var o=r.indexOf(":")<0?["",r]:r.split(":"),u=o[0],p=o[1];return i&&"xmlns"===r&&(u="xmlns",p=""),{prefix:u,local:p}}function attrib(r){if(r.strict||(r.attribName=r.attribName[r.looseCase]()),-1!==r.attribList.indexOf(r.attribName)||r.tag.attributes.hasOwnProperty(r.attribName))r.attribName=r.attribValue="";else{if(r.opt.xmlns){var i=qname(r.attribName,!0),o=i.prefix,u=i.local;if("xmlns"===o)if("xml"===u&&r.attribValue!==y)strictFail(r,"xml: prefix must be bound to "+y+"\nActual: "+r.attribValue);else if("xmlns"===u&&r.attribValue!==w)strictFail(r,"xmlns: prefix must be bound to "+w+"\nActual: "+r.attribValue);else{var p=r.tag,g=r.tags[r.tags.length-1]||r;p.ns===g.ns&&(p.ns=Object.create(g.ns)),p.ns[u]=r.attribValue}r.attribList.push([r.attribName,r.attribValue])}else r.tag.attributes[r.attribName]=r.attribValue,emitNode(r,"onattribute",{name:r.attribName,value:r.attribValue});r.attribName=r.attribValue=""}}function openTag(r,i){if(r.opt.xmlns){var o=r.tag,u=qname(r.tagName);o.prefix=u.prefix,o.local=u.local,o.uri=o.ns[u.prefix]||"",o.prefix&&!o.uri&&(strictFail(r,"Unbound namespace prefix: "+JSON.stringify(r.tagName)),o.uri=u.prefix);var p=r.tags[r.tags.length-1]||r;o.ns&&p.ns!==o.ns&&Object.keys(o.ns).forEach((function(i){emitNode(r,"onopennamespace",{prefix:i,uri:o.ns[i]})}));for(var g=0,y=r.attribList.length;g<y;g++){var w=r.attribList[g],_=w[0],x=w[1],k=qname(_,!0),P=k.prefix,O=k.local,I=""===P?"":o.ns[P]||"",B={name:_,value:x,prefix:P,local:O,uri:I};P&&"xmlns"!==P&&!I&&(strictFail(r,"Unbound namespace prefix: "+JSON.stringify(P)),B.uri=P),r.tag.attributes[_]=B,emitNode(r,"onattribute",B)}r.attribList.length=0}r.tag.isSelfClosing=!!i,r.sawRoot=!0,r.tags.push(r.tag),emitNode(r,"onopentag",r.tag),i||(r.noscript||"script"!==r.tagName.toLowerCase()?r.state=D.TEXT:r.state=D.SCRIPT,r.tag=null,r.tagName=""),r.attribName=r.attribValue="",r.attribList.length=0}function closeTag(r){if(!r.tagName)return strictFail(r,"Weird empty close tag."),r.textNode+="</>",void(r.state=D.TEXT);if(r.script){if("script"!==r.tagName)return r.script+="</"+r.tagName+">",r.tagName="",void(r.state=D.SCRIPT);emitNode(r,"onscript",r.script),r.script=""}var i=r.tags.length,o=r.tagName;r.strict||(o=o[r.looseCase]());for(var u=o;i--;){if(r.tags[i].name===u)break;strictFail(r,"Unexpected close tag")}if(i<0)return strictFail(r,"Unmatched closing tag: "+r.tagName),r.textNode+="</"+r.tagName+">",void(r.state=D.TEXT);r.tagName=o;for(var p=r.tags.length;p-- >i;){var g=r.tag=r.tags.pop();r.tagName=r.tag.name,emitNode(r,"onclosetag",r.tagName);var y={};for(var w in g.ns)y[w]=g.ns[w];var _=r.tags[r.tags.length-1]||r;r.opt.xmlns&&g.ns!==_.ns&&Object.keys(g.ns).forEach((function(i){var o=g.ns[i];emitNode(r,"onclosenamespace",{prefix:i,uri:o})}))}0===i&&(r.closedRoot=!0),r.tagName=r.attribValue=r.attribName="",r.attribList.length=0,r.state=D.TEXT}function parseEntity(r){var i,o=r.entity,u=o.toLowerCase(),p="";return r.ENTITIES[o]?r.ENTITIES[o]:r.ENTITIES[u]?r.ENTITIES[u]:("#"===(o=u).charAt(0)&&("x"===o.charAt(1)?(o=o.slice(2),p=(i=parseInt(o,16)).toString(16)):(o=o.slice(1),p=(i=parseInt(o,10)).toString(10))),o=o.replace(/^0+/,""),isNaN(i)||p.toLowerCase()!==o?(strictFail(r,"Invalid character entity"),"&"+r.entity+";"):String.fromCodePoint(i))}function beginWhiteSpace(r,i){"<"===i?(r.state=D.OPEN_WAKA,r.startTagPosition=r.position):isWhitespace(i)||(strictFail(r,"Non-whitespace before first tag."),r.textNode=i,r.state=D.TEXT)}function charAt(r,i){var o="";return i<r.length&&(o=r.charAt(i)),o}D=r.STATE,String.fromCodePoint||(I=String.fromCharCode,B=Math.floor,R=function(){var r,i,o=16384,u=[],p=-1,g=arguments.length;if(!g)return"";for(var y="";++p<g;){var w=Number(arguments[p]);if(!isFinite(w)||w<0||w>1114111||B(w)!==w)throw RangeError("Invalid code point: "+w);w<=65535?u.push(w):(r=55296+((w-=65536)>>10),i=w%1024+56320,u.push(r,i)),(p+1===g||u.length>o)&&(y+=I.apply(null,u),u.length=0)}return y},Object.defineProperty?Object.defineProperty(String,"fromCodePoint",{value:R,configurable:!0,writable:!0}):String.fromCodePoint=R)}(i)},2830:function(r,i,o){r.exports=Stream;var u=o(7187).EventEmitter;function Stream(){u.call(this)}o(5717)(Stream,u),Stream.Readable=o(6577),Stream.Writable=o(323),Stream.Duplex=o(8656),Stream.Transform=o(4473),Stream.PassThrough=o(2366),Stream.finished=o(1086),Stream.pipeline=o(6472),Stream.Stream=Stream,Stream.prototype.pipe=function(r,i){var o=this;function ondata(i){r.writable&&!1===r.write(i)&&o.pause&&o.pause()}function ondrain(){o.readable&&o.resume&&o.resume()}o.on("data",ondata),r.on("drain",ondrain),r._isStdio||i&&!1===i.end||(o.on("end",onend),o.on("close",onclose));var p=!1;function onend(){p||(p=!0,r.end())}function onclose(){p||(p=!0,"function"==typeof r.destroy&&r.destroy())}function onerror(r){if(cleanup(),0===u.listenerCount(this,"error"))throw r}function cleanup(){o.removeListener("data",ondata),r.removeListener("drain",ondrain),o.removeListener("end",onend),o.removeListener("close",onclose),o.removeListener("error",onerror),r.removeListener("error",onerror),o.removeListener("end",cleanup),o.removeListener("close",cleanup),r.removeListener("close",cleanup)}return o.on("error",onerror),r.on("error",onerror),o.on("end",cleanup),o.on("close",cleanup),r.on("close",cleanup),r.emit("pipe",o),r}},8106:function(r){"use strict";var i={};function createErrorType(r,o,u){u||(u=Error);var p=function(r){function NodeError(i,u,p){return r.call(this,function getMessage(r,i,u){return"string"==typeof o?o:o(r,i,u)}(i,u,p))||this}return function _inheritsLoose(r,i){r.prototype=Object.create(i.prototype),r.prototype.constructor=r,r.__proto__=i}(NodeError,r),NodeError}(u);p.prototype.name=u.name,p.prototype.code=r,i[r]=p}function oneOf(r,i){if(Array.isArray(r)){var o=r.length;return r=r.map((function(r){return String(r)})),o>2?"one of ".concat(i," ").concat(r.slice(0,o-1).join(", "),", or ")+r[o-1]:2===o?"one of ".concat(i," ").concat(r[0]," or ").concat(r[1]):"of ".concat(i," ").concat(r[0])}return"of ".concat(i," ").concat(String(r))}createErrorType("ERR_INVALID_OPT_VALUE",(function(r,i){return'The value "'+i+'" is invalid for option "'+r+'"'}),TypeError),createErrorType("ERR_INVALID_ARG_TYPE",(function(r,i,o){var u,p;if("string"==typeof i&&function startsWith(r,i,o){return r.substr(!o||o<0?0:+o,i.length)===i}(i,"not ")?(u="must not be",i=i.replace(/^not /,"")):u="must be",function endsWith(r,i,o){return(void 0===o||o>r.length)&&(o=r.length),r.substring(o-i.length,o)===i}(r," argument"))p="The ".concat(r," ").concat(u," ").concat(oneOf(i,"type"));else{var g=function includes(r,i,o){return"number"!=typeof o&&(o=0),!(o+i.length>r.length)&&-1!==r.indexOf(i,o)}(r,".")?"property":"argument";p='The "'.concat(r,'" ').concat(g," ").concat(u," ").concat(oneOf(i,"type"))}return p+=". Received type ".concat(typeof o)}),TypeError),createErrorType("ERR_STREAM_PUSH_AFTER_EOF","stream.push() after EOF"),createErrorType("ERR_METHOD_NOT_IMPLEMENTED",(function(r){return"The "+r+" method is not implemented"})),createErrorType("ERR_STREAM_PREMATURE_CLOSE","Premature close"),createErrorType("ERR_STREAM_DESTROYED",(function(r){return"Cannot call "+r+" after a stream was destroyed"})),createErrorType("ERR_MULTIPLE_CALLBACK","Callback called multiple times"),createErrorType("ERR_STREAM_CANNOT_PIPE","Cannot pipe, not readable"),createErrorType("ERR_STREAM_WRITE_AFTER_END","write after end"),createErrorType("ERR_STREAM_NULL_VALUES","May not write null values to stream",TypeError),createErrorType("ERR_UNKNOWN_ENCODING",(function(r){return"Unknown encoding: "+r}),TypeError),createErrorType("ERR_STREAM_UNSHIFT_AFTER_END_EVENT","stream.unshift() after end event"),r.exports.q=i},8656:function(r,i,o){"use strict";var u=o(4155),p=Object.keys||function(r){var i=[];for(var o in r)i.push(o);return i};r.exports=Duplex;var g=o(6577),y=o(323);o(5717)(Duplex,g);for(var w=p(y.prototype),_=0;_<w.length;_++){var x=w[_];Duplex.prototype[x]||(Duplex.prototype[x]=y.prototype[x])}function Duplex(r){if(!(this instanceof Duplex))return new Duplex(r);g.call(this,r),y.call(this,r),this.allowHalfOpen=!0,r&&(!1===r.readable&&(this.readable=!1),!1===r.writable&&(this.writable=!1),!1===r.allowHalfOpen&&(this.allowHalfOpen=!1,this.once("end",onend)))}function onend(){this._writableState.ended||u.nextTick(onEndNT,this)}function onEndNT(r){r.end()}Object.defineProperty(Duplex.prototype,"writableHighWaterMark",{enumerable:!1,get:function get(){return this._writableState.highWaterMark}}),Object.defineProperty(Duplex.prototype,"writableBuffer",{enumerable:!1,get:function get(){return this._writableState&&this._writableState.getBuffer()}}),Object.defineProperty(Duplex.prototype,"writableLength",{enumerable:!1,get:function get(){return this._writableState.length}}),Object.defineProperty(Duplex.prototype,"destroyed",{enumerable:!1,get:function get(){return void 0!==this._readableState&&void 0!==this._writableState&&(this._readableState.destroyed&&this._writableState.destroyed)},set:function set(r){void 0!==this._readableState&&void 0!==this._writableState&&(this._readableState.destroyed=r,this._writableState.destroyed=r)}})},2366:function(r,i,o){"use strict";r.exports=PassThrough;var u=o(4473);function PassThrough(r){if(!(this instanceof PassThrough))return new PassThrough(r);u.call(this,r)}o(5717)(PassThrough,u),PassThrough.prototype._transform=function(r,i,o){o(null,r)}},6577:function(r,i,o){"use strict";var u,p=o(4155);r.exports=Readable,Readable.ReadableState=ReadableState;o(7187).EventEmitter;var g=function EElistenerCount(r,i){return r.listeners(i).length},y=o(3194),w=o(8823).Buffer,_=o.g.Uint8Array||function(){};var x,k=o(964);x=k&&k.debuglog?k.debuglog("stream"):function debug(){};var P,O,I,B=o(3361),R=o(1029),D=o(94).getHighWaterMark,N=o(8106).q,W=N.ERR_INVALID_ARG_TYPE,U=N.ERR_STREAM_PUSH_AFTER_EOF,j=N.ERR_METHOD_NOT_IMPLEMENTED,G=N.ERR_STREAM_UNSHIFT_AFTER_END_EVENT;o(5717)(Readable,y);var X=R.errorOrDestroy,K=["error","close","destroy","pause","resume"];function ReadableState(r,i,p){u=u||o(8656),r=r||{},"boolean"!=typeof p&&(p=i instanceof u),this.objectMode=!!r.objectMode,p&&(this.objectMode=this.objectMode||!!r.readableObjectMode),this.highWaterMark=D(this,r,"readableHighWaterMark",p),this.buffer=new B,this.length=0,this.pipes=null,this.pipesCount=0,this.flowing=null,this.ended=!1,this.endEmitted=!1,this.reading=!1,this.sync=!0,this.needReadable=!1,this.emittedReadable=!1,this.readableListening=!1,this.resumeScheduled=!1,this.paused=!0,this.emitClose=!1!==r.emitClose,this.autoDestroy=!!r.autoDestroy,this.destroyed=!1,this.defaultEncoding=r.defaultEncoding||"utf8",this.awaitDrain=0,this.readingMore=!1,this.decoder=null,this.encoding=null,r.encoding&&(P||(P=o(2553).s),this.decoder=new P(r.encoding),this.encoding=r.encoding)}function Readable(r){if(u=u||o(8656),!(this instanceof Readable))return new Readable(r);var i=this instanceof u;this._readableState=new ReadableState(r,this,i),this.readable=!0,r&&("function"==typeof r.read&&(this._read=r.read),"function"==typeof r.destroy&&(this._destroy=r.destroy)),y.call(this)}function readableAddChunk(r,i,o,u,p){x("readableAddChunk",i);var g,y=r._readableState;if(null===i)y.reading=!1,function onEofChunk(r,i){if(x("onEofChunk"),i.ended)return;if(i.decoder){var o=i.decoder.end();o&&o.length&&(i.buffer.push(o),i.length+=i.objectMode?1:o.length)}i.ended=!0,i.sync?emitReadable(r):(i.needReadable=!1,i.emittedReadable||(i.emittedReadable=!0,emitReadable_(r)))}(r,y);else if(p||(g=function chunkInvalid(r,i){var o;(function _isUint8Array(r){return w.isBuffer(r)||r instanceof _})(i)||"string"==typeof i||void 0===i||r.objectMode||(o=new W("chunk",["string","Buffer","Uint8Array"],i));return o}(y,i)),g)X(r,g);else if(y.objectMode||i&&i.length>0)if("string"==typeof i||y.objectMode||Object.getPrototypeOf(i)===w.prototype||(i=function _uint8ArrayToBuffer(r){return w.from(r)}(i)),u)y.endEmitted?X(r,new G):addChunk(r,y,i,!0);else if(y.ended)X(r,new U);else{if(y.destroyed)return!1;y.reading=!1,y.decoder&&!o?(i=y.decoder.write(i),y.objectMode||0!==i.length?addChunk(r,y,i,!1):maybeReadMore(r,y)):addChunk(r,y,i,!1)}else u||(y.reading=!1,maybeReadMore(r,y));return!y.ended&&(y.length<y.highWaterMark||0===y.length)}function addChunk(r,i,o,u){i.flowing&&0===i.length&&!i.sync?(i.awaitDrain=0,r.emit("data",o)):(i.length+=i.objectMode?1:o.length,u?i.buffer.unshift(o):i.buffer.push(o),i.needReadable&&emitReadable(r)),maybeReadMore(r,i)}Object.defineProperty(Readable.prototype,"destroyed",{enumerable:!1,get:function get(){return void 0!==this._readableState&&this._readableState.destroyed},set:function set(r){this._readableState&&(this._readableState.destroyed=r)}}),Readable.prototype.destroy=R.destroy,Readable.prototype._undestroy=R.undestroy,Readable.prototype._destroy=function(r,i){i(r)},Readable.prototype.push=function(r,i){var o,u=this._readableState;return u.objectMode?o=!0:"string"==typeof r&&((i=i||u.defaultEncoding)!==u.encoding&&(r=w.from(r,i),i=""),o=!0),readableAddChunk(this,r,i,!1,o)},Readable.prototype.unshift=function(r){return readableAddChunk(this,r,null,!0,!1)},Readable.prototype.isPaused=function(){return!1===this._readableState.flowing},Readable.prototype.setEncoding=function(r){P||(P=o(2553).s);var i=new P(r);this._readableState.decoder=i,this._readableState.encoding=this._readableState.decoder.encoding;for(var u=this._readableState.buffer.head,p="";null!==u;)p+=i.write(u.data),u=u.next;return this._readableState.buffer.clear(),""!==p&&this._readableState.buffer.push(p),this._readableState.length=p.length,this};var Y=1073741824;function howMuchToRead(r,i){return r<=0||0===i.length&&i.ended?0:i.objectMode?1:r!=r?i.flowing&&i.length?i.buffer.head.data.length:i.length:(r>i.highWaterMark&&(i.highWaterMark=function computeNewHighWaterMark(r){return r>=Y?r=Y:(r--,r|=r>>>1,r|=r>>>2,r|=r>>>4,r|=r>>>8,r|=r>>>16,r++),r}(r)),r<=i.length?r:i.ended?i.length:(i.needReadable=!0,0))}function emitReadable(r){var i=r._readableState;x("emitReadable",i.needReadable,i.emittedReadable),i.needReadable=!1,i.emittedReadable||(x("emitReadable",i.flowing),i.emittedReadable=!0,p.nextTick(emitReadable_,r))}function emitReadable_(r){var i=r._readableState;x("emitReadable_",i.destroyed,i.length,i.ended),i.destroyed||!i.length&&!i.ended||(r.emit("readable"),i.emittedReadable=!1),i.needReadable=!i.flowing&&!i.ended&&i.length<=i.highWaterMark,flow(r)}function maybeReadMore(r,i){i.readingMore||(i.readingMore=!0,p.nextTick(maybeReadMore_,r,i))}function maybeReadMore_(r,i){for(;!i.reading&&!i.ended&&(i.length<i.highWaterMark||i.flowing&&0===i.length);){var o=i.length;if(x("maybeReadMore read 0"),r.read(0),o===i.length)break}i.readingMore=!1}function updateReadableListening(r){var i=r._readableState;i.readableListening=r.listenerCount("readable")>0,i.resumeScheduled&&!i.paused?i.flowing=!0:r.listenerCount("data")>0&&r.resume()}function nReadingNextTick(r){x("readable nexttick read 0"),r.read(0)}function resume_(r,i){x("resume",i.reading),i.reading||r.read(0),i.resumeScheduled=!1,r.emit("resume"),flow(r),i.flowing&&!i.reading&&r.read(0)}function flow(r){var i=r._readableState;for(x("flow",i.flowing);i.flowing&&null!==r.read(););}function fromList(r,i){return 0===i.length?null:(i.objectMode?o=i.buffer.shift():!r||r>=i.length?(o=i.decoder?i.buffer.join(""):1===i.buffer.length?i.buffer.first():i.buffer.concat(i.length),i.buffer.clear()):o=i.buffer.consume(r,i.decoder),o);var o}function endReadable(r){var i=r._readableState;x("endReadable",i.endEmitted),i.endEmitted||(i.ended=!0,p.nextTick(endReadableNT,i,r))}function endReadableNT(r,i){if(x("endReadableNT",r.endEmitted,r.length),!r.endEmitted&&0===r.length&&(r.endEmitted=!0,i.readable=!1,i.emit("end"),r.autoDestroy)){var o=i._writableState;(!o||o.autoDestroy&&o.finished)&&i.destroy()}}function indexOf(r,i){for(var o=0,u=r.length;o<u;o++)if(r[o]===i)return o;return-1}Readable.prototype.read=function(r){x("read",r),r=parseInt(r,10);var i=this._readableState,o=r;if(0!==r&&(i.emittedReadable=!1),0===r&&i.needReadable&&((0!==i.highWaterMark?i.length>=i.highWaterMark:i.length>0)||i.ended))return x("read: emitReadable",i.length,i.ended),0===i.length&&i.ended?endReadable(this):emitReadable(this),null;if(0===(r=howMuchToRead(r,i))&&i.ended)return 0===i.length&&endReadable(this),null;var u,p=i.needReadable;return x("need readable",p),(0===i.length||i.length-r<i.highWaterMark)&&x("length less than watermark",p=!0),i.ended||i.reading?x("reading or ended",p=!1):p&&(x("do read"),i.reading=!0,i.sync=!0,0===i.length&&(i.needReadable=!0),this._read(i.highWaterMark),i.sync=!1,i.reading||(r=howMuchToRead(o,i))),null===(u=r>0?fromList(r,i):null)?(i.needReadable=i.length<=i.highWaterMark,r=0):(i.length-=r,i.awaitDrain=0),0===i.length&&(i.ended||(i.needReadable=!0),o!==r&&i.ended&&endReadable(this)),null!==u&&this.emit("data",u),u},Readable.prototype._read=function(r){X(this,new j("_read()"))},Readable.prototype.pipe=function(r,i){var o=this,u=this._readableState;switch(u.pipesCount){case 0:u.pipes=r;break;case 1:u.pipes=[u.pipes,r];break;default:u.pipes.push(r)}u.pipesCount+=1,x("pipe count=%d opts=%j",u.pipesCount,i);var y=(!i||!1!==i.end)&&r!==p.stdout&&r!==p.stderr?onend:unpipe;function onunpipe(i,p){x("onunpipe"),i===o&&p&&!1===p.hasUnpiped&&(p.hasUnpiped=!0,function cleanup(){x("cleanup"),r.removeListener("close",onclose),r.removeListener("finish",onfinish),r.removeListener("drain",w),r.removeListener("error",onerror),r.removeListener("unpipe",onunpipe),o.removeListener("end",onend),o.removeListener("end",unpipe),o.removeListener("data",ondata),_=!0,!u.awaitDrain||r._writableState&&!r._writableState.needDrain||w()}())}function onend(){x("onend"),r.end()}u.endEmitted?p.nextTick(y):o.once("end",y),r.on("unpipe",onunpipe);var w=function pipeOnDrain(r){return function pipeOnDrainFunctionResult(){var i=r._readableState;x("pipeOnDrain",i.awaitDrain),i.awaitDrain&&i.awaitDrain--,0===i.awaitDrain&&g(r,"data")&&(i.flowing=!0,flow(r))}}(o);r.on("drain",w);var _=!1;function ondata(i){x("ondata");var p=r.write(i);x("dest.write",p),!1===p&&((1===u.pipesCount&&u.pipes===r||u.pipesCount>1&&-1!==indexOf(u.pipes,r))&&!_&&(x("false write response, pause",u.awaitDrain),u.awaitDrain++),o.pause())}function onerror(i){x("onerror",i),unpipe(),r.removeListener("error",onerror),0===g(r,"error")&&X(r,i)}function onclose(){r.removeListener("finish",onfinish),unpipe()}function onfinish(){x("onfinish"),r.removeListener("close",onclose),unpipe()}function unpipe(){x("unpipe"),o.unpipe(r)}return o.on("data",ondata),function prependListener(r,i,o){if("function"==typeof r.prependListener)return r.prependListener(i,o);r._events&&r._events[i]?Array.isArray(r._events[i])?r._events[i].unshift(o):r._events[i]=[o,r._events[i]]:r.on(i,o)}(r,"error",onerror),r.once("close",onclose),r.once("finish",onfinish),r.emit("pipe",o),u.flowing||(x("pipe resume"),o.resume()),r},Readable.prototype.unpipe=function(r){var i=this._readableState,o={hasUnpiped:!1};if(0===i.pipesCount)return this;if(1===i.pipesCount)return r&&r!==i.pipes||(r||(r=i.pipes),i.pipes=null,i.pipesCount=0,i.flowing=!1,r&&r.emit("unpipe",this,o)),this;if(!r){var u=i.pipes,p=i.pipesCount;i.pipes=null,i.pipesCount=0,i.flowing=!1;for(var g=0;g<p;g++)u[g].emit("unpipe",this,{hasUnpiped:!1});return this}var y=indexOf(i.pipes,r);return-1===y||(i.pipes.splice(y,1),i.pipesCount-=1,1===i.pipesCount&&(i.pipes=i.pipes[0]),r.emit("unpipe",this,o)),this},Readable.prototype.on=function(r,i){var o=y.prototype.on.call(this,r,i),u=this._readableState;return"data"===r?(u.readableListening=this.listenerCount("readable")>0,!1!==u.flowing&&this.resume()):"readable"===r&&(u.endEmitted||u.readableListening||(u.readableListening=u.needReadable=!0,u.flowing=!1,u.emittedReadable=!1,x("on readable",u.length,u.reading),u.length?emitReadable(this):u.reading||p.nextTick(nReadingNextTick,this))),o},Readable.prototype.addListener=Readable.prototype.on,Readable.prototype.removeListener=function(r,i){var o=y.prototype.removeListener.call(this,r,i);return"readable"===r&&p.nextTick(updateReadableListening,this),o},Readable.prototype.removeAllListeners=function(r){var i=y.prototype.removeAllListeners.apply(this,arguments);return"readable"!==r&&void 0!==r||p.nextTick(updateReadableListening,this),i},Readable.prototype.resume=function(){var r=this._readableState;return r.flowing||(x("resume"),r.flowing=!r.readableListening,function resume(r,i){i.resumeScheduled||(i.resumeScheduled=!0,p.nextTick(resume_,r,i))}(this,r)),r.paused=!1,this},Readable.prototype.pause=function(){return x("call pause flowing=%j",this._readableState.flowing),!1!==this._readableState.flowing&&(x("pause"),this._readableState.flowing=!1,this.emit("pause")),this._readableState.paused=!0,this},Readable.prototype.wrap=function(r){var i=this,o=this._readableState,u=!1;for(var p in r.on("end",(function(){if(x("wrapped end"),o.decoder&&!o.ended){var r=o.decoder.end();r&&r.length&&i.push(r)}i.push(null)})),r.on("data",(function(p){(x("wrapped data"),o.decoder&&(p=o.decoder.write(p)),o.objectMode&&null==p)||(o.objectMode||p&&p.length)&&(i.push(p)||(u=!0,r.pause()))})),r)void 0===this[p]&&"function"==typeof r[p]&&(this[p]=function methodWrap(i){return function methodWrapReturnFunction(){return r[i].apply(r,arguments)}}(p));for(var g=0;g<K.length;g++)r.on(K[g],this.emit.bind(this,K[g]));return this._read=function(i){x("wrapped _read",i),u&&(u=!1,r.resume())},this},"function"==typeof Symbol&&(Readable.prototype[Symbol.asyncIterator]=function(){return void 0===O&&(O=o(828)),O(this)}),Object.defineProperty(Readable.prototype,"readableHighWaterMark",{enumerable:!1,get:function get(){return this._readableState.highWaterMark}}),Object.defineProperty(Readable.prototype,"readableBuffer",{enumerable:!1,get:function get(){return this._readableState&&this._readableState.buffer}}),Object.defineProperty(Readable.prototype,"readableFlowing",{enumerable:!1,get:function get(){return this._readableState.flowing},set:function set(r){this._readableState&&(this._readableState.flowing=r)}}),Readable._fromList=fromList,Object.defineProperty(Readable.prototype,"readableLength",{enumerable:!1,get:function get(){return this._readableState.length}}),"function"==typeof Symbol&&(Readable.from=function(r,i){return void 0===I&&(I=o(1265)),I(Readable,r,i)})},4473:function(r,i,o){"use strict";r.exports=Transform;var u=o(8106).q,p=u.ERR_METHOD_NOT_IMPLEMENTED,g=u.ERR_MULTIPLE_CALLBACK,y=u.ERR_TRANSFORM_ALREADY_TRANSFORMING,w=u.ERR_TRANSFORM_WITH_LENGTH_0,_=o(8656);function afterTransform(r,i){var o=this._transformState;o.transforming=!1;var u=o.writecb;if(null===u)return this.emit("error",new g);o.writechunk=null,o.writecb=null,null!=i&&this.push(i),u(r);var p=this._readableState;p.reading=!1,(p.needReadable||p.length<p.highWaterMark)&&this._read(p.highWaterMark)}function Transform(r){if(!(this instanceof Transform))return new Transform(r);_.call(this,r),this._transformState={afterTransform:afterTransform.bind(this),needTransform:!1,transforming:!1,writecb:null,writechunk:null,writeencoding:null},this._readableState.needReadable=!0,this._readableState.sync=!1,r&&("function"==typeof r.transform&&(this._transform=r.transform),"function"==typeof r.flush&&(this._flush=r.flush)),this.on("prefinish",prefinish)}function prefinish(){var r=this;"function"!=typeof this._flush||this._readableState.destroyed?done(this,null,null):this._flush((function(i,o){done(r,i,o)}))}function done(r,i,o){if(i)return r.emit("error",i);if(null!=o&&r.push(o),r._writableState.length)throw new w;if(r._transformState.transforming)throw new y;return r.push(null)}o(5717)(Transform,_),Transform.prototype.push=function(r,i){return this._transformState.needTransform=!1,_.prototype.push.call(this,r,i)},Transform.prototype._transform=function(r,i,o){o(new p("_transform()"))},Transform.prototype._write=function(r,i,o){var u=this._transformState;if(u.writecb=o,u.writechunk=r,u.writeencoding=i,!u.transforming){var p=this._readableState;(u.needTransform||p.needReadable||p.length<p.highWaterMark)&&this._read(p.highWaterMark)}},Transform.prototype._read=function(r){var i=this._transformState;null===i.writechunk||i.transforming?i.needTransform=!0:(i.transforming=!0,this._transform(i.writechunk,i.writeencoding,i.afterTransform))},Transform.prototype._destroy=function(r,i){_.prototype._destroy.call(this,r,(function(r){i(r)}))}},323:function(r,i,o){"use strict";var u,p=o(4155);function CorkedRequest(r){var i=this;this.next=null,this.entry=null,this.finish=function(){!function onCorkedFinish(r,i,o){var u=r.entry;r.entry=null;for(;u;){var p=u.callback;i.pendingcb--,p(o),u=u.next}i.corkedRequestsFree.next=r}(i,r)}}r.exports=Writable,Writable.WritableState=WritableState;var g={deprecate:o(4927)},y=o(3194),w=o(8823).Buffer,_=o.g.Uint8Array||function(){};var x,k=o(1029),P=o(94).getHighWaterMark,O=o(8106).q,I=O.ERR_INVALID_ARG_TYPE,B=O.ERR_METHOD_NOT_IMPLEMENTED,R=O.ERR_MULTIPLE_CALLBACK,D=O.ERR_STREAM_CANNOT_PIPE,N=O.ERR_STREAM_DESTROYED,W=O.ERR_STREAM_NULL_VALUES,U=O.ERR_STREAM_WRITE_AFTER_END,j=O.ERR_UNKNOWN_ENCODING,G=k.errorOrDestroy;function nop(){}function WritableState(r,i,g){u=u||o(8656),r=r||{},"boolean"!=typeof g&&(g=i instanceof u),this.objectMode=!!r.objectMode,g&&(this.objectMode=this.objectMode||!!r.writableObjectMode),this.highWaterMark=P(this,r,"writableHighWaterMark",g),this.finalCalled=!1,this.needDrain=!1,this.ending=!1,this.ended=!1,this.finished=!1,this.destroyed=!1;var y=!1===r.decodeStrings;this.decodeStrings=!y,this.defaultEncoding=r.defaultEncoding||"utf8",this.length=0,this.writing=!1,this.corked=0,this.sync=!0,this.bufferProcessing=!1,this.onwrite=function(r){!function onwrite(r,i){var o=r._writableState,u=o.sync,g=o.writecb;if("function"!=typeof g)throw new R;if(function onwriteStateUpdate(r){r.writing=!1,r.writecb=null,r.length-=r.writelen,r.writelen=0}(o),i)!function onwriteError(r,i,o,u,g){--i.pendingcb,o?(p.nextTick(g,u),p.nextTick(finishMaybe,r,i),r._writableState.errorEmitted=!0,G(r,u)):(g(u),r._writableState.errorEmitted=!0,G(r,u),finishMaybe(r,i))}(r,o,u,i,g);else{var y=needFinish(o)||r.destroyed;y||o.corked||o.bufferProcessing||!o.bufferedRequest||clearBuffer(r,o),u?p.nextTick(afterWrite,r,o,y,g):afterWrite(r,o,y,g)}}(i,r)},this.writecb=null,this.writelen=0,this.bufferedRequest=null,this.lastBufferedRequest=null,this.pendingcb=0,this.prefinished=!1,this.errorEmitted=!1,this.emitClose=!1!==r.emitClose,this.autoDestroy=!!r.autoDestroy,this.bufferedRequestCount=0,this.corkedRequestsFree=new CorkedRequest(this)}function Writable(r){var i=this instanceof(u=u||o(8656));if(!i&&!x.call(Writable,this))return new Writable(r);this._writableState=new WritableState(r,this,i),this.writable=!0,r&&("function"==typeof r.write&&(this._write=r.write),"function"==typeof r.writev&&(this._writev=r.writev),"function"==typeof r.destroy&&(this._destroy=r.destroy),"function"==typeof r.final&&(this._final=r.final)),y.call(this)}function doWrite(r,i,o,u,p,g,y){i.writelen=u,i.writecb=y,i.writing=!0,i.sync=!0,i.destroyed?i.onwrite(new N("write")):o?r._writev(p,i.onwrite):r._write(p,g,i.onwrite),i.sync=!1}function afterWrite(r,i,o,u){o||function onwriteDrain(r,i){0===i.length&&i.needDrain&&(i.needDrain=!1,r.emit("drain"))}(r,i),i.pendingcb--,u(),finishMaybe(r,i)}function clearBuffer(r,i){i.bufferProcessing=!0;var o=i.bufferedRequest;if(r._writev&&o&&o.next){var u=i.bufferedRequestCount,p=new Array(u),g=i.corkedRequestsFree;g.entry=o;for(var y=0,w=!0;o;)p[y]=o,o.isBuf||(w=!1),o=o.next,y+=1;p.allBuffers=w,doWrite(r,i,!0,i.length,p,"",g.finish),i.pendingcb++,i.lastBufferedRequest=null,g.next?(i.corkedRequestsFree=g.next,g.next=null):i.corkedRequestsFree=new CorkedRequest(i),i.bufferedRequestCount=0}else{for(;o;){var _=o.chunk,x=o.encoding,k=o.callback;if(doWrite(r,i,!1,i.objectMode?1:_.length,_,x,k),o=o.next,i.bufferedRequestCount--,i.writing)break}null===o&&(i.lastBufferedRequest=null)}i.bufferedRequest=o,i.bufferProcessing=!1}function needFinish(r){return r.ending&&0===r.length&&null===r.bufferedRequest&&!r.finished&&!r.writing}function callFinal(r,i){r._final((function(o){i.pendingcb--,o&&G(r,o),i.prefinished=!0,r.emit("prefinish"),finishMaybe(r,i)}))}function finishMaybe(r,i){var o=needFinish(i);if(o&&(function prefinish(r,i){i.prefinished||i.finalCalled||("function"!=typeof r._final||i.destroyed?(i.prefinished=!0,r.emit("prefinish")):(i.pendingcb++,i.finalCalled=!0,p.nextTick(callFinal,r,i)))}(r,i),0===i.pendingcb&&(i.finished=!0,r.emit("finish"),i.autoDestroy))){var u=r._readableState;(!u||u.autoDestroy&&u.endEmitted)&&r.destroy()}return o}o(5717)(Writable,y),WritableState.prototype.getBuffer=function getBuffer(){for(var r=this.bufferedRequest,i=[];r;)i.push(r),r=r.next;return i},function(){try{Object.defineProperty(WritableState.prototype,"buffer",{get:g.deprecate((function writableStateBufferGetter(){return this.getBuffer()}),"_writableState.buffer is deprecated. Use _writableState.getBuffer instead.","DEP0003")})}catch(r){}}(),"function"==typeof Symbol&&Symbol.hasInstance&&"function"==typeof Function.prototype[Symbol.hasInstance]?(x=Function.prototype[Symbol.hasInstance],Object.defineProperty(Writable,Symbol.hasInstance,{value:function value(r){return!!x.call(this,r)||this===Writable&&(r&&r._writableState instanceof WritableState)}})):x=function realHasInstance(r){return r instanceof this},Writable.prototype.pipe=function(){G(this,new D)},Writable.prototype.write=function(r,i,o){var u=this._writableState,g=!1,y=!u.objectMode&&function _isUint8Array(r){return w.isBuffer(r)||r instanceof _}(r);return y&&!w.isBuffer(r)&&(r=function _uint8ArrayToBuffer(r){return w.from(r)}(r)),"function"==typeof i&&(o=i,i=null),y?i="buffer":i||(i=u.defaultEncoding),"function"!=typeof o&&(o=nop),u.ending?function writeAfterEnd(r,i){var o=new U;G(r,o),p.nextTick(i,o)}(this,o):(y||function validChunk(r,i,o,u){var g;return null===o?g=new W:"string"==typeof o||i.objectMode||(g=new I("chunk",["string","Buffer"],o)),!g||(G(r,g),p.nextTick(u,g),!1)}(this,u,r,o))&&(u.pendingcb++,g=function writeOrBuffer(r,i,o,u,p,g){if(!o){var y=function decodeChunk(r,i,o){r.objectMode||!1===r.decodeStrings||"string"!=typeof i||(i=w.from(i,o));return i}(i,u,p);u!==y&&(o=!0,p="buffer",u=y)}var _=i.objectMode?1:u.length;i.length+=_;var x=i.length<i.highWaterMark;x||(i.needDrain=!0);if(i.writing||i.corked){var k=i.lastBufferedRequest;i.lastBufferedRequest={chunk:u,encoding:p,isBuf:o,callback:g,next:null},k?k.next=i.lastBufferedRequest:i.bufferedRequest=i.lastBufferedRequest,i.bufferedRequestCount+=1}else doWrite(r,i,!1,_,u,p,g);return x}(this,u,y,r,i,o)),g},Writable.prototype.cork=function(){this._writableState.corked++},Writable.prototype.uncork=function(){var r=this._writableState;r.corked&&(r.corked--,r.writing||r.corked||r.bufferProcessing||!r.bufferedRequest||clearBuffer(this,r))},Writable.prototype.setDefaultEncoding=function setDefaultEncoding(r){if("string"==typeof r&&(r=r.toLowerCase()),!(["hex","utf8","utf-8","ascii","binary","base64","ucs2","ucs-2","utf16le","utf-16le","raw"].indexOf((r+"").toLowerCase())>-1))throw new j(r);return this._writableState.defaultEncoding=r,this},Object.defineProperty(Writable.prototype,"writableBuffer",{enumerable:!1,get:function get(){return this._writableState&&this._writableState.getBuffer()}}),Object.defineProperty(Writable.prototype,"writableHighWaterMark",{enumerable:!1,get:function get(){return this._writableState.highWaterMark}}),Writable.prototype._write=function(r,i,o){o(new B("_write()"))},Writable.prototype._writev=null,Writable.prototype.end=function(r,i,o){var u=this._writableState;return"function"==typeof r?(o=r,r=null,i=null):"function"==typeof i&&(o=i,i=null),null!=r&&this.write(r,i),u.corked&&(u.corked=1,this.uncork()),u.ending||function endWritable(r,i,o){i.ending=!0,finishMaybe(r,i),o&&(i.finished?p.nextTick(o):r.once("finish",o));i.ended=!0,r.writable=!1}(this,u,o),this},Object.defineProperty(Writable.prototype,"writableLength",{enumerable:!1,get:function get(){return this._writableState.length}}),Object.defineProperty(Writable.prototype,"destroyed",{enumerable:!1,get:function get(){return void 0!==this._writableState&&this._writableState.destroyed},set:function set(r){this._writableState&&(this._writableState.destroyed=r)}}),Writable.prototype.destroy=k.destroy,Writable.prototype._undestroy=k.undestroy,Writable.prototype._destroy=function(r,i){i(r)}},828:function(r,i,o){"use strict";var u,p=o(4155);function _defineProperty(r,i,o){return i in r?Object.defineProperty(r,i,{value:o,enumerable:!0,configurable:!0,writable:!0}):r[i]=o,r}var g=o(1086),y=Symbol("lastResolve"),w=Symbol("lastReject"),_=Symbol("error"),x=Symbol("ended"),k=Symbol("lastPromise"),P=Symbol("handlePromise"),O=Symbol("stream");function createIterResult(r,i){return{value:r,done:i}}function readAndResolve(r){var i=r[y];if(null!==i){var o=r[O].read();null!==o&&(r[k]=null,r[y]=null,r[w]=null,i(createIterResult(o,!1)))}}function onReadable(r){p.nextTick(readAndResolve,r)}var I=Object.getPrototypeOf((function(){})),B=Object.setPrototypeOf((_defineProperty(u={get stream(){return this[O]},next:function next(){var r=this,i=this[_];if(null!==i)return Promise.reject(i);if(this[x])return Promise.resolve(createIterResult(void 0,!0));if(this[O].destroyed)return new Promise((function(i,o){p.nextTick((function(){r[_]?o(r[_]):i(createIterResult(void 0,!0))}))}));var o,u=this[k];if(u)o=new Promise(function wrapForNext(r,i){return function(o,u){r.then((function(){i[x]?o(createIterResult(void 0,!0)):i[P](o,u)}),u)}}(u,this));else{var g=this[O].read();if(null!==g)return Promise.resolve(createIterResult(g,!1));o=new Promise(this[P])}return this[k]=o,o}},Symbol.asyncIterator,(function(){return this})),_defineProperty(u,"return",(function _return(){var r=this;return new Promise((function(i,o){r[O].destroy(null,(function(r){r?o(r):i(createIterResult(void 0,!0))}))}))})),u),I);r.exports=function createReadableStreamAsyncIterator(r){var i,o=Object.create(B,(_defineProperty(i={},O,{value:r,writable:!0}),_defineProperty(i,y,{value:null,writable:!0}),_defineProperty(i,w,{value:null,writable:!0}),_defineProperty(i,_,{value:null,writable:!0}),_defineProperty(i,x,{value:r._readableState.endEmitted,writable:!0}),_defineProperty(i,P,{value:function value(r,i){var u=o[O].read();u?(o[k]=null,o[y]=null,o[w]=null,r(createIterResult(u,!1))):(o[y]=r,o[w]=i)},writable:!0}),i));return o[k]=null,g(r,(function(r){if(r&&"ERR_STREAM_PREMATURE_CLOSE"!==r.code){var i=o[w];return null!==i&&(o[k]=null,o[y]=null,o[w]=null,i(r)),void(o[_]=r)}var u=o[y];null!==u&&(o[k]=null,o[y]=null,o[w]=null,u(createIterResult(void 0,!0))),o[x]=!0})),r.on("readable",onReadable.bind(null,o)),o}},1029:function(r,i,o){"use strict";var u=o(4155);function emitErrorAndCloseNT(r,i){emitErrorNT(r,i),emitCloseNT(r)}function emitCloseNT(r){r._writableState&&!r._writableState.emitClose||r._readableState&&!r._readableState.emitClose||r.emit("close")}function emitErrorNT(r,i){r.emit("error",i)}r.exports={destroy:function destroy(r,i){var o=this,p=this._readableState&&this._readableState.destroyed,g=this._writableState&&this._writableState.destroyed;return p||g?(i?i(r):r&&(this._writableState?this._writableState.errorEmitted||(this._writableState.errorEmitted=!0,u.nextTick(emitErrorNT,this,r)):u.nextTick(emitErrorNT,this,r)),this):(this._readableState&&(this._readableState.destroyed=!0),this._writableState&&(this._writableState.destroyed=!0),this._destroy(r||null,(function(r){!i&&r?o._writableState?o._writableState.errorEmitted?u.nextTick(emitCloseNT,o):(o._writableState.errorEmitted=!0,u.nextTick(emitErrorAndCloseNT,o,r)):u.nextTick(emitErrorAndCloseNT,o,r):i?(u.nextTick(emitCloseNT,o),i(r)):u.nextTick(emitCloseNT,o)})),this)},undestroy:function undestroy(){this._readableState&&(this._readableState.destroyed=!1,this._readableState.reading=!1,this._readableState.ended=!1,this._readableState.endEmitted=!1),this._writableState&&(this._writableState.destroyed=!1,this._writableState.ended=!1,this._writableState.ending=!1,this._writableState.finalCalled=!1,this._writableState.prefinished=!1,this._writableState.finished=!1,this._writableState.errorEmitted=!1)},errorOrDestroy:function errorOrDestroy(r,i){var o=r._readableState,u=r._writableState;o&&o.autoDestroy||u&&u.autoDestroy?r.destroy(i):r.emit("error",i)}}},1086:function(r,i,o){"use strict";var u=o(8106).q.ERR_STREAM_PREMATURE_CLOSE;function noop(){}r.exports=function eos(r,i,o){if("function"==typeof i)return eos(r,null,i);i||(i={}),o=function once(r){var i=!1;return function(){if(!i){i=!0;for(var o=arguments.length,u=new Array(o),p=0;p<o;p++)u[p]=arguments[p];r.apply(this,u)}}}(o||noop);var p=i.readable||!1!==i.readable&&r.readable,g=i.writable||!1!==i.writable&&r.writable,y=function onlegacyfinish(){r.writable||_()},w=r._writableState&&r._writableState.finished,_=function onfinish(){g=!1,w=!0,p||o.call(r)},x=r._readableState&&r._readableState.endEmitted,k=function onend(){p=!1,x=!0,g||o.call(r)},P=function onerror(i){o.call(r,i)},O=function onclose(){var i;return p&&!x?(r._readableState&&r._readableState.ended||(i=new u),o.call(r,i)):g&&!w?(r._writableState&&r._writableState.ended||(i=new u),o.call(r,i)):void 0},I=function onrequest(){r.req.on("finish",_)};return!function isRequest(r){return r.setHeader&&"function"==typeof r.abort}(r)?g&&!r._writableState&&(r.on("end",y),r.on("close",y)):(r.on("complete",_),r.on("abort",O),r.req?I():r.on("request",I)),r.on("end",k),r.on("finish",_),!1!==i.error&&r.on("error",P),r.on("close",O),function(){r.removeListener("complete",_),r.removeListener("abort",O),r.removeListener("request",I),r.req&&r.req.removeListener("finish",_),r.removeListener("end",y),r.removeListener("close",y),r.removeListener("finish",_),r.removeListener("end",k),r.removeListener("error",P),r.removeListener("close",O)}}},1265:function(r){r.exports=function(){throw new Error("Readable.from is not available in the browser")}},6472:function(r,i,o){"use strict";var u;var p=o(8106).q,g=p.ERR_MISSING_ARGS,y=p.ERR_STREAM_DESTROYED;function noop(r){if(r)throw r}function destroyer(r,i,p,g){g=function once(r){var i=!1;return function(){i||(i=!0,r.apply(void 0,arguments))}}(g);var w=!1;r.on("close",(function(){w=!0})),void 0===u&&(u=o(1086)),u(r,{readable:i,writable:p},(function(r){if(r)return g(r);w=!0,g()}));var _=!1;return function(i){if(!w&&!_)return _=!0,function isRequest(r){return r.setHeader&&"function"==typeof r.abort}(r)?r.abort():"function"==typeof r.destroy?r.destroy():void g(i||new y("pipe"))}}function call(r){r()}function pipe(r,i){return r.pipe(i)}function popCallback(r){return r.length?"function"!=typeof r[r.length-1]?noop:r.pop():noop}r.exports=function pipeline(){for(var r=arguments.length,i=new Array(r),o=0;o<r;o++)i[o]=arguments[o];var u,p=popCallback(i);if(Array.isArray(i[0])&&(i=i[0]),i.length<2)throw new g("streams");var y=i.map((function(r,o){var g=o<i.length-1;return destroyer(r,g,o>0,(function(r){u||(u=r),r&&y.forEach(call),g||(y.forEach(call),p(u))}))}));return i.reduce(pipe)}},94:function(r,i,o){"use strict";var u=o(8106).q.ERR_INVALID_OPT_VALUE;r.exports={getHighWaterMark:function getHighWaterMark(r,i,o,p){var g=function highWaterMarkFrom(r,i,o){return null!=r.highWaterMark?r.highWaterMark:i?r[o]:null}(i,p,o);if(null!=g){if(!isFinite(g)||Math.floor(g)!==g||g<0)throw new u(p?o:"highWaterMark",g);return Math.floor(g)}return r.objectMode?16:16384}}},3194:function(r,i,o){r.exports=o(7187).EventEmitter},2984:function(r,i,o){var u,p,g;p=[],void 0===(g="function"==typeof(u=function(){"use strict";function b(r,i){return void 0===i?i={autoBom:!1}:"object"!=typeof i&&(i={autoBom:!i}),i.autoBom&&/^\s*(?:text\/\S*|application\/xml|\S*\/\S*\+xml)\s*;.*charset\s*=\s*utf-8/i.test(r.type)?new Blob(["\ufeff",r],{type:r.type}):r}function c(r,i,o){var u=new XMLHttpRequest;u.open("GET",r),u.responseType="blob",u.onload=function(){p(u.response,i,o)},u.onerror=function(){},u.send()}function d(r){var i=new XMLHttpRequest;i.open("HEAD",r,!1);try{i.send()}catch(r){}return 200<=i.status&&299>=i.status}function e(r){try{r.dispatchEvent(new MouseEvent("click"))}catch(o){var i=document.createEvent("MouseEvents");i.initMouseEvent("click",!0,!0,window,0,0,0,80,20,!1,!1,!1,!1,0,null),r.dispatchEvent(i)}}var i="object"==typeof window&&window.window===window?window:"object"==typeof self&&self.self===self?self:"object"==typeof o.g&&o.g.global===o.g?o.g:void 0,u=i.navigator&&/Macintosh/.test(navigator.userAgent)&&/AppleWebKit/.test(navigator.userAgent)&&!/Safari/.test(navigator.userAgent),p=i.saveAs||("object"!=typeof window||window!==i?function(){}:"undefined"!=typeof HTMLAnchorElement&&"download"in HTMLAnchorElement.prototype&&!u?function(r,o,u){var p=i.URL||i.webkitURL,g=document.createElement("a");o=o||r.name||"download",g.download=o,g.rel="noopener","string"==typeof r?(g.href=r,g.origin===location.origin?e(g):d(g.href)?c(r,o,u):e(g,g.target="_blank")):(g.href=p.createObjectURL(r),setTimeout((function(){p.revokeObjectURL(g.href)}),4e4),setTimeout((function(){e(g)}),0))}:"msSaveOrOpenBlob"in navigator?function(r,i,o){if(i=i||r.name||"download","string"!=typeof r)navigator.msSaveOrOpenBlob(b(r,o),i);else if(d(r))c(r,i,o);else{var u=document.createElement("a");u.href=r,u.target="_blank",setTimeout((function(){e(u)}))}}:function(r,o,p,g){if((g=g||open("","_blank"))&&(g.document.title=g.document.body.innerText="downloading..."),"string"==typeof r)return c(r,o,p);var y="application/octet-stream"===r.type,w=/constructor/i.test(i.HTMLElement)||i.safari,_=/CriOS\/[\d]+/.test(navigator.userAgent);if((_||y&&w||u)&&"undefined"!=typeof FileReader){var x=new FileReader;x.onloadend=function(){var r=x.result;r=_?r:r.replace(/^data:[^;]*;/,"data:attachment/file;"),g?g.location.href=r:location=r,g=null},x.readAsDataURL(r)}else{var k=i.URL||i.webkitURL,P=k.createObjectURL(r);g?g.location=P:location.href=P,g=null,setTimeout((function(){k.revokeObjectURL(P)}),4e4)}});i.saveAs=p.saveAs=p,r.exports=p})?u.apply(i,p):u)||(r.exports=g)},2553:function(r,i,o){"use strict";var u=o(4559).Buffer,p=u.isEncoding||function(r){switch((r=""+r)&&r.toLowerCase()){case"hex":case"utf8":case"utf-8":case"ascii":case"binary":case"base64":case"ucs2":case"ucs-2":case"utf16le":case"utf-16le":case"raw":return!0;default:return!1}};function StringDecoder(r){var i;switch(this.encoding=function normalizeEncoding(r){var i=function _normalizeEncoding(r){if(!r)return"utf8";for(var i;;)switch(r){case"utf8":case"utf-8":return"utf8";case"ucs2":case"ucs-2":case"utf16le":case"utf-16le":return"utf16le";case"latin1":case"binary":return"latin1";case"base64":case"ascii":case"hex":return r;default:if(i)return;r=(""+r).toLowerCase(),i=!0}}(r);if("string"!=typeof i&&(u.isEncoding===p||!p(r)))throw new Error("Unknown encoding: "+r);return i||r}(r),this.encoding){case"utf16le":this.text=utf16Text,this.end=utf16End,i=4;break;case"utf8":this.fillLast=utf8FillLast,i=4;break;case"base64":this.text=base64Text,this.end=base64End,i=3;break;default:return this.write=simpleWrite,void(this.end=simpleEnd)}this.lastNeed=0,this.lastTotal=0,this.lastChar=u.allocUnsafe(i)}function utf8CheckByte(r){return r<=127?0:r>>5==6?2:r>>4==14?3:r>>3==30?4:r>>6==2?-1:-2}function utf8FillLast(r){var i=this.lastTotal-this.lastNeed,o=function utf8CheckExtraBytes(r,i,o){if(128!=(192&i[0]))return r.lastNeed=0,"�";if(r.lastNeed>1&&i.length>1){if(128!=(192&i[1]))return r.lastNeed=1,"�";if(r.lastNeed>2&&i.length>2&&128!=(192&i[2]))return r.lastNeed=2,"�"}}(this,r);return void 0!==o?o:this.lastNeed<=r.length?(r.copy(this.lastChar,i,0,this.lastNeed),this.lastChar.toString(this.encoding,0,this.lastTotal)):(r.copy(this.lastChar,i,0,r.length),void(this.lastNeed-=r.length))}function utf16Text(r,i){if((r.length-i)%2==0){var o=r.toString("utf16le",i);if(o){var u=o.charCodeAt(o.length-1);if(u>=55296&&u<=56319)return this.lastNeed=2,this.lastTotal=4,this.lastChar[0]=r[r.length-2],this.lastChar[1]=r[r.length-1],o.slice(0,-1)}return o}return this.lastNeed=1,this.lastTotal=2,this.lastChar[0]=r[r.length-1],r.toString("utf16le",i,r.length-1)}function utf16End(r){var i=r&&r.length?this.write(r):"";if(this.lastNeed){var o=this.lastTotal-this.lastNeed;return i+this.lastChar.toString("utf16le",0,o)}return i}function base64Text(r,i){var o=(r.length-i)%3;return 0===o?r.toString("base64",i):(this.lastNeed=3-o,this.lastTotal=3,1===o?this.lastChar[0]=r[r.length-1]:(this.lastChar[0]=r[r.length-2],this.lastChar[1]=r[r.length-1]),r.toString("base64",i,r.length-o))}function base64End(r){var i=r&&r.length?this.write(r):"";return this.lastNeed?i+this.lastChar.toString("base64",0,3-this.lastNeed):i}function simpleWrite(r){return r.toString(this.encoding)}function simpleEnd(r){return r&&r.length?this.write(r):""}i.s=StringDecoder,StringDecoder.prototype.write=function(r){if(0===r.length)return"";var i,o;if(this.lastNeed){if(void 0===(i=this.fillLast(r)))return"";o=this.lastNeed,this.lastNeed=0}else o=0;return o<r.length?i?i+this.text(r,o):this.text(r,o):i||""},StringDecoder.prototype.end=function utf8End(r){var i=r&&r.length?this.write(r):"";return this.lastNeed?i+"�":i},StringDecoder.prototype.text=function utf8Text(r,i){var o=function utf8CheckIncomplete(r,i,o){var u=i.length-1;if(u<o)return 0;var p=utf8CheckByte(i[u]);if(p>=0)return p>0&&(r.lastNeed=p-1),p;if(--u<o||-2===p)return 0;if(p=utf8CheckByte(i[u]),p>=0)return p>0&&(r.lastNeed=p-2),p;if(--u<o||-2===p)return 0;if(p=utf8CheckByte(i[u]),p>=0)return p>0&&(2===p?p=0:r.lastNeed=p-3),p;return 0}(this,r,i);if(!this.lastNeed)return r.toString("utf8",i);this.lastTotal=o;var u=r.length-(o-this.lastNeed);return r.copy(this.lastChar,0,u),r.toString("utf8",i,u)},StringDecoder.prototype.fillLast=function(r){if(this.lastNeed<=r.length)return r.copy(this.lastChar,this.lastTotal-this.lastNeed,0,this.lastNeed),this.lastChar.toString(this.encoding,0,this.lastTotal);r.copy(this.lastChar,this.lastTotal-this.lastNeed,0,r.length),this.lastNeed-=r.length}},311:function(r){function Tree(){this.table=new Uint16Array(16),this.trans=new Uint16Array(288)}function Data(r,i){this.source=r,this.sourceIndex=0,this.tag=0,this.bitcount=0,this.dest=i,this.destLen=0,this.ltree=new Tree,this.dtree=new Tree}var i=new Tree,o=new Tree,u=new Uint8Array(30),p=new Uint16Array(30),g=new Uint8Array(30),y=new Uint16Array(30),w=new Uint8Array([16,17,18,0,8,7,9,6,10,5,11,4,12,3,13,2,14,1,15]),_=new Tree,x=new Uint8Array(320);function tinf_build_bits_base(r,i,o,u){var p,g;for(p=0;p<o;++p)r[p]=0;for(p=0;p<30-o;++p)r[p+o]=p/o|0;for(g=u,p=0;p<30;++p)i[p]=g,g+=1<<r[p]}var k=new Uint16Array(16);function tinf_build_tree(r,i,o,u){var p,g;for(p=0;p<16;++p)r.table[p]=0;for(p=0;p<u;++p)r.table[i[o+p]]++;for(r.table[0]=0,g=0,p=0;p<16;++p)k[p]=g,g+=r.table[p];for(p=0;p<u;++p)i[o+p]&&(r.trans[k[i[o+p]]++]=p)}function tinf_getbit(r){r.bitcount--||(r.tag=r.source[r.sourceIndex++],r.bitcount=7);var i=1&r.tag;return r.tag>>>=1,i}function tinf_read_bits(r,i,o){if(!i)return o;for(;r.bitcount<24;)r.tag|=r.source[r.sourceIndex++]<<r.bitcount,r.bitcount+=8;var u=r.tag&65535>>>16-i;return r.tag>>>=i,r.bitcount-=i,u+o}function tinf_decode_symbol(r,i){for(;r.bitcount<24;)r.tag|=r.source[r.sourceIndex++]<<r.bitcount,r.bitcount+=8;var o=0,u=0,p=0,g=r.tag;do{u=2*u+(1&g),g>>>=1,++p,o+=i.table[p],u-=i.table[p]}while(u>=0);return r.tag=g,r.bitcount-=p,i.trans[o+u]}function tinf_decode_trees(r,i,o){var u,p,g,y,k,P;for(u=tinf_read_bits(r,5,257),p=tinf_read_bits(r,5,1),g=tinf_read_bits(r,4,4),y=0;y<19;++y)x[y]=0;for(y=0;y<g;++y){var O=tinf_read_bits(r,3,0);x[w[y]]=O}for(tinf_build_tree(_,x,0,19),k=0;k<u+p;){var I=tinf_decode_symbol(r,_);switch(I){case 16:var B=x[k-1];for(P=tinf_read_bits(r,2,3);P;--P)x[k++]=B;break;case 17:for(P=tinf_read_bits(r,3,3);P;--P)x[k++]=0;break;case 18:for(P=tinf_read_bits(r,7,11);P;--P)x[k++]=0;break;default:x[k++]=I}}tinf_build_tree(i,x,0,u),tinf_build_tree(o,x,u,p)}function tinf_inflate_block_data(r,i,o){for(;;){var w,_,x,k,P=tinf_decode_symbol(r,i);if(256===P)return 0;if(P<256)r.dest[r.destLen++]=P;else for(w=tinf_read_bits(r,u[P-=257],p[P]),_=tinf_decode_symbol(r,o),k=x=r.destLen-tinf_read_bits(r,g[_],y[_]);k<x+w;++k)r.dest[r.destLen++]=r.dest[k]}}function tinf_inflate_uncompressed_block(r){for(var i,o;r.bitcount>8;)r.sourceIndex--,r.bitcount-=8;if((i=256*(i=r.source[r.sourceIndex+1])+r.source[r.sourceIndex])!==(65535&~(256*r.source[r.sourceIndex+3]+r.source[r.sourceIndex+2])))return-3;for(r.sourceIndex+=4,o=i;o;--o)r.dest[r.destLen++]=r.source[r.sourceIndex++];return r.bitcount=0,0}!function tinf_build_fixed_trees(r,i){var o;for(o=0;o<7;++o)r.table[o]=0;for(r.table[7]=24,r.table[8]=152,r.table[9]=112,o=0;o<24;++o)r.trans[o]=256+o;for(o=0;o<144;++o)r.trans[24+o]=o;for(o=0;o<8;++o)r.trans[168+o]=280+o;for(o=0;o<112;++o)r.trans[176+o]=144+o;for(o=0;o<5;++o)i.table[o]=0;for(i.table[5]=32,o=0;o<32;++o)i.trans[o]=o}(i,o),tinf_build_bits_base(u,p,4,3),tinf_build_bits_base(g,y,2,1),u[28]=0,p[28]=258,r.exports=function tinf_uncompress(r,u){var p,g,y=new Data(r,u);do{switch(p=tinf_getbit(y),tinf_read_bits(y,2,0)){case 0:g=tinf_inflate_uncompressed_block(y);break;case 1:g=tinf_inflate_block_data(y,i,o);break;case 2:tinf_decode_trees(y,y.ltree,y.dtree),g=tinf_inflate_block_data(y,y.ltree,y.dtree);break;default:g=-3}if(0!==g)throw new Error("Data error")}while(!p);return y.destLen<y.dest.length?"function"==typeof y.dest.slice?y.dest.slice(0,y.destLen):y.dest.subarray(0,y.destLen):y.dest}},1917:function(r,i,o){"use strict";var u,p=o(8823).Buffer;function _defineProperties(r,i){for(var o=0;o<i.length;o++){var u=i[o];u.enumerable=u.enumerable||!1,u.configurable=!0,"value"in u&&(u.writable=!0),Object.defineProperty(r,(p=u.key,g=void 0,"symbol"==typeof(g=function _toPrimitive(r,i){if("object"!=typeof r||null===r)return r;var o=r[Symbol.toPrimitive];if(void 0!==o){var u=o.call(r,i||"default");if("object"!=typeof u)return u;throw new TypeError("@@toPrimitive must return a primitive value.")}return("string"===i?String:Number)(r)}(p,"string"))?g:String(g)),u)}var p,g}function _createClass(r,i,o){return i&&_defineProperties(r.prototype,i),o&&_defineProperties(r,o),Object.defineProperty(r,"prototype",{writable:!1}),r}function _inheritsLoose(r,i){r.prototype=Object.create(i.prototype),r.prototype.constructor=r,_setPrototypeOf(r,i)}function _setPrototypeOf(r,i){return _setPrototypeOf=Object.setPrototypeOf?Object.setPrototypeOf.bind():function _setPrototypeOf(r,i){return r.__proto__=i,r},_setPrototypeOf(r,i)}function _createForOfIteratorHelperLoose(r,i){var o="undefined"!=typeof Symbol&&r[Symbol.iterator]||r["@@iterator"];if(o)return(o=o.call(r)).next.bind(o);if(Array.isArray(r)||(o=function _unsupportedIterableToArray(r,i){if(!r)return;if("string"==typeof r)return _arrayLikeToArray(r,i);var o=Object.prototype.toString.call(r).slice(8,-1);"Object"===o&&r.constructor&&(o=r.constructor.name);if("Map"===o||"Set"===o)return Array.from(r);if("Arguments"===o||/^(?:Ui|I)nt(?:8|16|32)(?:Clamped)?Array$/.test(o))return _arrayLikeToArray(r,i)}(r))||i&&r&&"number"==typeof r.length){o&&(r=o);var u=0;return function(){return u>=r.length?{done:!0}:{done:!1,value:r[u++]}}}throw new TypeError("Invalid attempt to iterate non-iterable instance.\nIn order to be iterable, non-array objects must have a [Symbol.iterator]() method.")}function _arrayLikeToArray(r,i){(null==i||i>r.length)&&(i=r.length);for(var o=0,u=new Array(i);o<i;o++)u[o]=r[o];return u}function _interopDefault(r){return r&&"object"==typeof r&&"default"in r?r.default:r}o(2526),o(1817),o(2165),o(6649),o(6078),o(1539),o(4747),o(7941),o(7042),o(6992),o(1532),o(8783),o(3948),o(2222),o(9653),o(1249),o(2087),o(8309),o(9601),o(4953),o(8674),o(5003),o(189),o(561),o(2481),o(2707),o(4916),o(4723),o(1038),o(9600),o(3371),o(3290),o(3299),o(8255),o(2990),o(8927),o(3105),o(5035),o(4345),o(7174),o(2846),o(4731),o(7209),o(6319),o(8867),o(7789),o(3739),o(9368),o(4483),o(2056),o(3462),o(678),o(7462),o(3824),o(5021),o(2974),o(5016),o(5109),o(9714),o(3210);var g=_interopDefault(o(5106)),y=o(6610),w=_interopDefault(o(251)),_=_interopDefault(o(3631)),x=_interopDefault(o(4781)),k=_interopDefault(o(9811)),P=_interopDefault(o(6313)),O=_interopDefault(o(311)),I=_interopDefault(o(7709)),B=o(3857),R={logErrors:!1},D=[];function _defineProperty(r,i,o){return i in r?Object.defineProperty(r,i,{value:o,enumerable:!0,configurable:!0,writable:!0}):r[i]=o,r}function _applyDecoratedDescriptor(r,i,o,u,p){var g={};return Object.keys(u).forEach((function(r){g[r]=u[r]})),g.enumerable=!!g.enumerable,g.configurable=!!g.configurable,("value"in g||g.initializer)&&(g.writable=!0),g=o.slice().reverse().reduce((function(o,u){return u(r,i,o)||o}),g),p&&void 0!==g.initializer&&(g.value=g.initializer?g.initializer.call(p):void 0,g.initializer=void 0),void 0===g.initializer&&(Object.defineProperty(r,i,g),g=null),g}function cache(r,i,o){if(o.get){var u=o.get;o.get=function(){var r=u.call(this);return Object.defineProperty(this,i,{value:r}),r}}else if("function"==typeof o.value){var p=o.value;return{get:function get(){var r=new Map;function memoized(){for(var i=arguments.length,o=new Array(i),u=0;u<i;u++)o[u]=arguments[u];var g=o.length>0?o[0]:"value";if(r.has(g))return r.get(g);var y=p.apply(this,o);return r.set(g,y),y}return Object.defineProperty(this,i,{value:memoized}),memoized}}}}R.registerFormat=function(r){D.push(r)},R.openSync=function(r,i){var o=B.readFileSync(r);return R.create(o,i)},R.open=function(r,i,o){"function"==typeof i&&(o=i,i=null),B.readFile(r,(function(r,u){if(r)return o(r);try{var p=R.create(u,i)}catch(r){return o(r)}return o(null,p)}))},R.create=function(r,i){for(var o=0;o<D.length;o++){var u=D[o];if(u.probe(r)){var p=new u(new g.DecodeStream(r));return i?p.getFont(i):p}}throw new Error("Unknown font format")},R.defaultLanguage="en",R.setDefaultLanguage=function(r){void 0===r&&(r="en"),R.defaultLanguage=r};var N=new g.Struct({firstCode:g.uint16,entryCount:g.uint16,idDelta:g.int16,idRangeOffset:g.uint16}),W=new g.Struct({startCharCode:g.uint32,endCharCode:g.uint32,glyphID:g.uint32}),U=new g.Struct({startUnicodeValue:g.uint24,additionalCount:g.uint8}),j=new g.Struct({unicodeValue:g.uint24,glyphID:g.uint16}),G=new g.Array(U,g.uint32),X=new g.Array(j,g.uint32),K=new g.Struct({varSelector:g.uint24,defaultUVS:new g.Pointer(g.uint32,G,{type:"parent"}),nonDefaultUVS:new g.Pointer(g.uint32,X,{type:"parent"})}),Y=new g.VersionedStruct(g.uint16,{0:{length:g.uint16,language:g.uint16,codeMap:new g.LazyArray(g.uint8,256)},2:{length:g.uint16,language:g.uint16,subHeaderKeys:new g.Array(g.uint16,256),subHeaderCount:function subHeaderCount(r){return Math.max.apply(Math,r.subHeaderKeys)},subHeaders:new g.LazyArray(N,"subHeaderCount"),glyphIndexArray:new g.LazyArray(g.uint16,"subHeaderCount")},4:{length:g.uint16,language:g.uint16,segCountX2:g.uint16,segCount:function segCount(r){return r.segCountX2>>1},searchRange:g.uint16,entrySelector:g.uint16,rangeShift:g.uint16,endCode:new g.LazyArray(g.uint16,"segCount"),reservedPad:new g.Reserved(g.uint16),startCode:new g.LazyArray(g.uint16,"segCount"),idDelta:new g.LazyArray(g.int16,"segCount"),idRangeOffset:new g.LazyArray(g.uint16,"segCount"),glyphIndexArray:new g.LazyArray(g.uint16,(function(r){return(r.length-r._currentOffset)/2}))},6:{length:g.uint16,language:g.uint16,firstCode:g.uint16,entryCount:g.uint16,glyphIndices:new g.LazyArray(g.uint16,"entryCount")},8:{reserved:new g.Reserved(g.uint16),length:g.uint32,language:g.uint16,is32:new g.LazyArray(g.uint8,8192),nGroups:g.uint32,groups:new g.LazyArray(W,"nGroups")},10:{reserved:new g.Reserved(g.uint16),length:g.uint32,language:g.uint32,firstCode:g.uint32,entryCount:g.uint32,glyphIndices:new g.LazyArray(g.uint16,"numChars")},12:{reserved:new g.Reserved(g.uint16),length:g.uint32,language:g.uint32,nGroups:g.uint32,groups:new g.LazyArray(W,"nGroups")},13:{reserved:new g.Reserved(g.uint16),length:g.uint32,language:g.uint32,nGroups:g.uint32,groups:new g.LazyArray(W,"nGroups")},14:{length:g.uint32,numRecords:g.uint32,varSelectors:new g.LazyArray(K,"numRecords")}}),J=new g.Struct({platformID:g.uint16,encodingID:g.uint16,table:new g.Pointer(g.uint32,Y,{type:"parent",lazy:!0})}),$=new g.Struct({version:g.uint16,numSubtables:g.uint16,tables:new g.Array(J,"numSubtables")}),ee=new g.Struct({version:g.int32,revision:g.int32,checkSumAdjustment:g.uint32,magicNumber:g.uint32,flags:g.uint16,unitsPerEm:g.uint16,created:new g.Array(g.int32,2),modified:new g.Array(g.int32,2),xMin:g.int16,yMin:g.int16,xMax:g.int16,yMax:g.int16,macStyle:new g.Bitfield(g.uint16,["bold","italic","underline","outline","shadow","condensed","extended"]),lowestRecPPEM:g.uint16,fontDirectionHint:g.int16,indexToLocFormat:g.int16,glyphDataFormat:g.int16}),te=new g.Struct({version:g.int32,ascent:g.int16,descent:g.int16,lineGap:g.int16,advanceWidthMax:g.uint16,minLeftSideBearing:g.int16,minRightSideBearing:g.int16,xMaxExtent:g.int16,caretSlopeRise:g.int16,caretSlopeRun:g.int16,caretOffset:g.int16,reserved:new g.Reserved(g.int16,4),metricDataFormat:g.int16,numberOfMetrics:g.uint16}),re=new g.Struct({advance:g.uint16,bearing:g.int16}),ne=new g.Struct({metrics:new g.LazyArray(re,(function(r){return r.parent.hhea.numberOfMetrics})),bearings:new g.LazyArray(g.int16,(function(r){return r.parent.maxp.numGlyphs-r.parent.hhea.numberOfMetrics}))}),ie=new g.Struct({version:g.int32,numGlyphs:g.uint16,maxPoints:g.uint16,maxContours:g.uint16,maxComponentPoints:g.uint16,maxComponentContours:g.uint16,maxZones:g.uint16,maxTwilightPoints:g.uint16,maxStorage:g.uint16,maxFunctionDefs:g.uint16,maxInstructionDefs:g.uint16,maxStackElements:g.uint16,maxSizeOfInstructions:g.uint16,maxComponentElements:g.uint16,maxComponentDepth:g.uint16});function getEncoding(r,i,o){return void 0===o&&(o=0),1===r&&ae[o]?ae[o]:oe[r][i]}var oe=[["utf16be","utf16be","utf16be","utf16be","utf16be","utf16be"],["macroman","shift-jis","big5","euc-kr","iso-8859-6","iso-8859-8","macgreek","maccyrillic","symbol","Devanagari","Gurmukhi","Gujarati","Oriya","Bengali","Tamil","Telugu","Kannada","Malayalam","Sinhalese","Burmese","Khmer","macthai","Laotian","Georgian","Armenian","gb-2312-80","Tibetan","Mongolian","Geez","maccenteuro","Vietnamese","Sindhi"],["ascii"],["symbol","utf16be","shift-jis","gb18030","big5","wansung","johab",null,null,null,"utf16be"]],ae={15:"maciceland",17:"macturkish",18:"maccroatian",24:"maccenteuro",25:"maccenteuro",26:"maccenteuro",27:"maccenteuro",28:"maccenteuro",30:"maciceland",37:"macromania",38:"maccenteuro",39:"maccenteuro",40:"maccenteuro",143:"macinuit",146:"macgaelic"},se=[[],{0:"en",30:"fo",60:"ks",90:"rw",1:"fr",31:"fa",61:"ku",91:"rn",2:"de",32:"ru",62:"sd",92:"ny",3:"it",33:"zh",63:"bo",93:"mg",4:"nl",34:"nl-BE",64:"ne",94:"eo",5:"sv",35:"ga",65:"sa",128:"cy",6:"es",36:"sq",66:"mr",129:"eu",7:"da",37:"ro",67:"bn",130:"ca",8:"pt",38:"cz",68:"as",131:"la",9:"no",39:"sk",69:"gu",132:"qu",10:"he",40:"si",70:"pa",133:"gn",11:"ja",41:"yi",71:"or",134:"ay",12:"ar",42:"sr",72:"ml",135:"tt",13:"fi",43:"mk",73:"kn",136:"ug",14:"el",44:"bg",74:"ta",137:"dz",15:"is",45:"uk",75:"te",138:"jv",16:"mt",46:"be",76:"si",139:"su",17:"tr",47:"uz",77:"my",140:"gl",18:"hr",48:"kk",78:"km",141:"af",19:"zh-Hant",49:"az-Cyrl",79:"lo",142:"br",20:"ur",50:"az-Arab",80:"vi",143:"iu",21:"hi",51:"hy",81:"id",144:"gd",22:"th",52:"ka",82:"tl",145:"gv",23:"ko",53:"mo",83:"ms",146:"ga",24:"lt",54:"ky",84:"ms-Arab",147:"to",25:"pl",55:"tg",85:"am",148:"el-polyton",26:"hu",56:"tk",86:"ti",149:"kl",27:"es",57:"mn-CN",87:"om",150:"az",28:"lv",58:"mn",88:"so",151:"nn",29:"se",59:"ps",89:"sw"},[],{1078:"af",16393:"en-IN",1159:"rw",1074:"tn",1052:"sq",6153:"en-IE",1089:"sw",1115:"si",1156:"gsw",8201:"en-JM",1111:"kok",1051:"sk",1118:"am",17417:"en-MY",1042:"ko",1060:"sl",5121:"ar-DZ",5129:"en-NZ",1088:"ky",11274:"es-AR",15361:"ar-BH",13321:"en-PH",1108:"lo",16394:"es-BO",3073:"ar",18441:"en-SG",1062:"lv",13322:"es-CL",2049:"ar-IQ",7177:"en-ZA",1063:"lt",9226:"es-CO",11265:"ar-JO",11273:"en-TT",2094:"dsb",5130:"es-CR",13313:"ar-KW",2057:"en-GB",1134:"lb",7178:"es-DO",12289:"ar-LB",1033:"en",1071:"mk",12298:"es-EC",4097:"ar-LY",12297:"en-ZW",2110:"ms-BN",17418:"es-SV",6145:"ary",1061:"et",1086:"ms",4106:"es-GT",8193:"ar-OM",1080:"fo",1100:"ml",18442:"es-HN",16385:"ar-QA",1124:"fil",1082:"mt",2058:"es-MX",1025:"ar-SA",1035:"fi",1153:"mi",19466:"es-NI",10241:"ar-SY",2060:"fr-BE",1146:"arn",6154:"es-PA",7169:"aeb",3084:"fr-CA",1102:"mr",15370:"es-PY",14337:"ar-AE",1036:"fr",1148:"moh",10250:"es-PE",9217:"ar-YE",5132:"fr-LU",1104:"mn",20490:"es-PR",1067:"hy",6156:"fr-MC",2128:"mn-CN",3082:"es",1101:"as",4108:"fr-CH",1121:"ne",1034:"es",2092:"az-Cyrl",1122:"fy",1044:"nb",21514:"es-US",1068:"az",1110:"gl",2068:"nn",14346:"es-UY",1133:"ba",1079:"ka",1154:"oc",8202:"es-VE",1069:"eu",3079:"de-AT",1096:"or",2077:"sv-FI",1059:"be",1031:"de",1123:"ps",1053:"sv",2117:"bn",5127:"de-LI",1045:"pl",1114:"syr",1093:"bn-IN",4103:"de-LU",1046:"pt",1064:"tg",8218:"bs-Cyrl",2055:"de-CH",2070:"pt-PT",2143:"tzm",5146:"bs",1032:"el",1094:"pa",1097:"ta",1150:"br",1135:"kl",1131:"qu-BO",1092:"tt",1026:"bg",1095:"gu",2155:"qu-EC",1098:"te",1027:"ca",1128:"ha",3179:"qu",1054:"th",3076:"zh-HK",1037:"he",1048:"ro",1105:"bo",5124:"zh-MO",1081:"hi",1047:"rm",1055:"tr",2052:"zh",1038:"hu",1049:"ru",1090:"tk",4100:"zh-SG",1039:"is",9275:"smn",1152:"ug",1028:"zh-TW",1136:"ig",4155:"smj-NO",1058:"uk",1155:"co",1057:"id",5179:"smj",1070:"hsb",1050:"hr",1117:"iu",3131:"se-FI",1056:"ur",4122:"hr-BA",2141:"iu-Latn",1083:"se",2115:"uz-Cyrl",1029:"cs",2108:"ga",2107:"se-SE",1091:"uz",1030:"da",1076:"xh",8251:"sms",1066:"vi",1164:"prs",1077:"zu",6203:"sma-NO",1106:"cy",1125:"dv",1040:"it",7227:"sms",1160:"wo",2067:"nl-BE",2064:"it-CH",1103:"sa",1157:"sah",1043:"nl",1041:"ja",7194:"sr-Cyrl-BA",1144:"ii",3081:"en-AU",1099:"kn",3098:"sr",1130:"yo",10249:"en-BZ",1087:"kk",6170:"sr-Latn-BA",4105:"en-CA",1107:"km",2074:"sr-Latn",9225:"en-029",1158:"quc",1132:"nso"}],ce=new g.Struct({platformID:g.uint16,encodingID:g.uint16,languageID:g.uint16,nameID:g.uint16,length:g.uint16,string:new g.Pointer(g.uint16,new g.String("length",(function(r){return getEncoding(r.platformID,r.encodingID,r.languageID)})),{type:"parent",relativeTo:function relativeTo(r){return r.parent.stringOffset},allowNull:!1})}),le=new g.Struct({length:g.uint16,tag:new g.Pointer(g.uint16,new g.String("length","utf16be"),{type:"parent",relativeTo:function relativeTo(r){return r.stringOffset}})}),ue=new g.VersionedStruct(g.uint16,{0:{count:g.uint16,stringOffset:g.uint16,records:new g.Array(ce,"count")},1:{count:g.uint16,stringOffset:g.uint16,records:new g.Array(ce,"count"),langTagCount:g.uint16,langTags:new g.Array(le,"langTagCount")}}),fe=["copyright","fontFamily","fontSubfamily","uniqueSubfamily","fullName","version","postscriptName","trademark","manufacturer","designer","description","vendorURL","designerURL","license","licenseURL",null,"preferredFamily","preferredSubfamily","compatibleFull","sampleText","postscriptCIDFontName","wwsFamilyName","wwsSubfamilyName"];ue.process=function(r){for(var i,o={},u=_createForOfIteratorHelperLoose(this.records);!(i=u()).done;){var p=i.value,g=se[p.platformID][p.languageID];null==g&&null!=this.langTags&&p.languageID>=32768&&(g=this.langTags[p.languageID-32768].tag),null==g&&(g=p.platformID+"-"+p.languageID);var y=p.nameID>=256?"fontFeatures":fe[p.nameID]||p.nameID;null==o[y]&&(o[y]={});var w=o[y];p.nameID>=256&&(w=w[p.nameID]||(w[p.nameID]={})),"string"!=typeof p.string&&"string"==typeof w[g]||(w[g]=p.string)}this.records=o},ue.preEncode=function(){if(!Array.isArray(this.records)){this.version=0;var r=[];for(var i in this.records){var o=this.records[i];"fontFeatures"!==i&&(r.push({platformID:3,encodingID:1,languageID:1033,nameID:fe.indexOf(i),length:p.byteLength(o.en,"utf16le"),string:o.en}),"postscriptName"===i&&r.push({platformID:1,encodingID:0,languageID:0,nameID:fe.indexOf(i),length:o.en.length,string:o.en}))}this.records=r,this.count=r.length,this.stringOffset=ue.size(this,null,!1)}};var he=new g.VersionedStruct(g.uint16,{header:{xAvgCharWidth:g.int16,usWeightClass:g.uint16,usWidthClass:g.uint16,fsType:new g.Bitfield(g.uint16,[null,"noEmbedding","viewOnly","editable",null,null,null,null,"noSubsetting","bitmapOnly"]),ySubscriptXSize:g.int16,ySubscriptYSize:g.int16,ySubscriptXOffset:g.int16,ySubscriptYOffset:g.int16,ySuperscriptXSize:g.int16,ySuperscriptYSize:g.int16,ySuperscriptXOffset:g.int16,ySuperscriptYOffset:g.int16,yStrikeoutSize:g.int16,yStrikeoutPosition:g.int16,sFamilyClass:g.int16,panose:new g.Array(g.uint8,10),ulCharRange:new g.Array(g.uint32,4),vendorID:new g.String(4),fsSelection:new g.Bitfield(g.uint16,["italic","underscore","negative","outlined","strikeout","bold","regular","useTypoMetrics","wws","oblique"]),usFirstCharIndex:g.uint16,usLastCharIndex:g.uint16},0:{},1:{typoAscender:g.int16,typoDescender:g.int16,typoLineGap:g.int16,winAscent:g.uint16,winDescent:g.uint16,codePageRange:new g.Array(g.uint32,2)},2:{typoAscender:g.int16,typoDescender:g.int16,typoLineGap:g.int16,winAscent:g.uint16,winDescent:g.uint16,codePageRange:new g.Array(g.uint32,2),xHeight:g.int16,capHeight:g.int16,defaultChar:g.uint16,breakChar:g.uint16,maxContent:g.uint16},5:{typoAscender:g.int16,typoDescender:g.int16,typoLineGap:g.int16,winAscent:g.uint16,winDescent:g.uint16,codePageRange:new g.Array(g.uint32,2),xHeight:g.int16,capHeight:g.int16,defaultChar:g.uint16,breakChar:g.uint16,maxContent:g.uint16,usLowerOpticalPointSize:g.uint16,usUpperOpticalPointSize:g.uint16}}),de=he.versions;de[3]=de[4]=de[2];var pe=new g.VersionedStruct(g.fixed32,{header:{italicAngle:g.fixed32,underlinePosition:g.int16,underlineThickness:g.int16,isFixedPitch:g.uint32,minMemType42:g.uint32,maxMemType42:g.uint32,minMemType1:g.uint32,maxMemType1:g.uint32},1:{},2:{numberOfGlyphs:g.uint16,glyphNameIndex:new g.Array(g.uint16,"numberOfGlyphs"),names:new g.Array(new g.String(g.uint8))},2.5:{numberOfGlyphs:g.uint16,offsets:new g.Array(g.uint8,"numberOfGlyphs")},3:{},4:{map:new g.Array(g.uint32,(function(r){return r.parent.maxp.numGlyphs}))}}),ge=new g.Struct({controlValues:new g.Array(g.int16)}),ye=new g.Struct({instructions:new g.Array(g.uint8)}),ve=new g.VersionedStruct("head.indexToLocFormat",{0:{offsets:new g.Array(g.uint16)},1:{offsets:new g.Array(g.uint32)}});ve.process=function(){if(0===this.version)for(var r=0;r<this.offsets.length;r++)this.offsets[r]<<=1},ve.preEncode=function(){if(0===this.version)for(var r=0;r<this.offsets.length;r++)this.offsets[r]>>>=1};var me=new g.Struct({controlValueProgram:new g.Array(g.uint8)}),be=new g.Array(new g.Buffer),we=function(){function CFFIndex(r){this.type=r}var r=CFFIndex.prototype;return r.getCFFVersion=function getCFFVersion(r){for(;r&&!r.hdrSize;)r=r.parent;return r?r.version:-1},r.decode=function decode(r,i){var o=this.getCFFVersion(i)>=2?r.readUInt32BE():r.readUInt16BE();if(0===o)return[];var u,p=r.readUInt8();if(1===p)u=g.uint8;else if(2===p)u=g.uint16;else if(3===p)u=g.uint24;else{if(4!==p)throw new Error("Bad offset size in CFFIndex: ".concat(p," ").concat(r.pos));u=g.uint32}for(var y=[],w=r.pos+(o+1)*p-1,_=u.decode(r),x=0;x<o;x++){var k=u.decode(r);if(null!=this.type){var P=r.pos;r.pos=w+_,i.length=k-_,y.push(this.type.decode(r,i)),r.pos=P}else y.push({offset:w+_,length:k-_});_=k}return r.pos=w+_,y},r.size=function size(r,i){var size=2;if(0===r.length)return size;for(var o,u=this.type||new g.Buffer,p=1,y=0;y<r.length;y++){var w=r[y];p+=u.size(w,i)}if(p<=255)o=g.uint8;else if(p<=65535)o=g.uint16;else if(p<=16777215)o=g.uint24;else{if(!(p<=4294967295))throw new Error("Bad offset in CFFIndex");o=g.uint32}return size+=1+o.size()*(r.length+1),size+=p-1,size},r.encode=function encode(r,i,o){if(r.writeUInt16BE(i.length),0!==i.length){for(var u,p,y=this.type||new g.Buffer,w=[],_=1,x=_createForOfIteratorHelperLoose(i);!(u=x()).done;){var k=u.value,P=y.size(k,o);w.push(P),_+=P}if(_<=255)p=g.uint8;else if(_<=65535)p=g.uint16;else if(_<=16777215)p=g.uint24;else{if(!(_<=4294967295))throw new Error("Bad offset in CFFIndex");p=g.uint32}r.writeUInt8(p.size()),_=1,p.encode(r,_);for(var O=0,I=w;O<I.length;O++){_+=I[O],p.encode(r,_)}for(var B,R=_createForOfIteratorHelperLoose(i);!(B=R()).done;){var D=B.value;y.encode(r,D,o)}}},CFFIndex}(),_e=["0","1","2","3","4","5","6","7","8","9",".","E","E-",null,"-"],Se={".":10,E:11,"E-":12,"-":14},xe=function(){function CFFOperand(){}return CFFOperand.decode=function decode(r,i){if(32<=i&&i<=246)return i-139;if(247<=i&&i<=250)return 256*(i-247)+r.readUInt8()+108;if(251<=i&&i<=254)return 256*-(i-251)-r.readUInt8()-108;if(28===i)return r.readInt16BE();if(29===i)return r.readInt32BE();if(30===i){for(var o="";;){var u=r.readUInt8(),p=u>>4;if(15===p)break;o+=_e[p];var g=15&u;if(15===g)break;o+=_e[g]}return parseFloat(o)}return null},CFFOperand.size=function size(r){if(r.forceLarge&&(r=32768),(0|r)!==r){var i=""+r;return 1+Math.ceil((i.length+1)/2)}return-107<=r&&r<=107?1:108<=r&&r<=1131||-1131<=r&&r<=-108?2:-32768<=r&&r<=32767?3:5},CFFOperand.encode=function encode(r,i){var o=Number(i);if(i.forceLarge)return r.writeUInt8(29),r.writeInt32BE(o);if((0|o)===o)return-107<=o&&o<=107?r.writeUInt8(o+139):108<=o&&o<=1131?(o-=108,r.writeUInt8(247+(o>>8)),r.writeUInt8(255&o)):-1131<=o&&o<=-108?(o=-o-108,r.writeUInt8(251+(o>>8)),r.writeUInt8(255&o)):-32768<=o&&o<=32767?(r.writeUInt8(28),r.writeInt16BE(o)):(r.writeUInt8(29),r.writeInt32BE(o));r.writeUInt8(30);for(var u=""+o,p=0;p<u.length;p+=2){var g=u[p],y=Se[g]||+g;if(p===u.length-1)var w=15;else{var _=u[p+1];w=Se[_]||+_}r.writeUInt8(y<<4|15&w)}return 15!==w?r.writeUInt8(240):void 0},CFFOperand}(),Ce=function(){function CFFDict(r){void 0===r&&(r=[]),this.ops=r,this.fields={};for(var i,o=_createForOfIteratorHelperLoose(r);!(i=o()).done;){var u=i.value,p=Array.isArray(u[0])?u[0][0]<<8|u[0][1]:u[0];this.fields[p]=u}}var r=CFFDict.prototype;return r.decodeOperands=function decodeOperands(r,i,o,u){var p=this;if(Array.isArray(r))return u.map((function(u,g){return p.decodeOperands(r[g],i,o,[u])}));if(null!=r.decode)return r.decode(i,o,u);switch(r){case"number":case"offset":case"sid":return u[0];case"boolean":return!!u[0];default:return u}},r.encodeOperands=function encodeOperands(r,i,o,u){var p=this;return Array.isArray(r)?u.map((function(u,g){return p.encodeOperands(r[g],i,o,u)[0]})):null!=r.encode?r.encode(i,u,o):"number"==typeof u?[u]:"boolean"==typeof u?[+u]:Array.isArray(u)?u:[u]},r.decode=function decode(r,i){var o=r.pos+i.length,u={},p=[];for(var g in Object.defineProperties(u,{parent:{value:i},_startOffset:{value:r.pos}}),this.fields){var w=this.fields[g];u[w[1]]=w[3]}for(;r.pos<o;){var _=r.readUInt8();if(_<28){12===_&&(_=_<<8|r.readUInt8());var x=this.fields[_];if(!x)throw new Error("Unknown operator ".concat(_));var k=this.decodeOperands(x[2],r,u,p);null!=k&&(k instanceof y.PropertyDescriptor?Object.defineProperty(u,x[1],k):u[x[1]]=k),p=[]}else p.push(xe.decode(r,_))}return u},r.size=function size(r,i,o){void 0===o&&(o=!0);var u={parent:i,val:r,pointerSize:0,startOffset:i.startOffset||0},p=0;for(var g in this.fields){var y=this.fields[g],_=r[y[1]];if(null!=_&&!w(_,y[3])){for(var x,k=_createForOfIteratorHelperLoose(this.encodeOperands(y[2],null,u,_));!(x=k()).done;){var P=x.value;p+=xe.size(P)}p+=(Array.isArray(y[0])?y[0]:[y[0]]).length}}return o&&(p+=u.pointerSize),p},r.encode=function encode(r,i,o){var u={pointers:[],startOffset:r.pos,parent:o,val:i,pointerSize:0};u.pointerOffset=r.pos+this.size(i,u,!1);for(var p,g=_createForOfIteratorHelperLoose(this.ops);!(p=g()).done;){var y=p.value,_=i[y[1]];if(null!=_&&!w(_,y[3])){for(var x,k=_createForOfIteratorHelperLoose(this.encodeOperands(y[2],r,u,_));!(x=k()).done;){var P=x.value;xe.encode(r,P)}for(var O,I=_createForOfIteratorHelperLoose(Array.isArray(y[0])?y[0]:[y[0]]);!(O=I()).done;){var B=O.value;r.writeUInt8(B)}}}for(var R=0;R<u.pointers.length;){var D=u.pointers[R++];D.type.encode(r,D.val,D.parent)}},CFFDict}(),ke=function(r){function CFFPointer(i,o){return void 0===o&&(o={}),null==o.type&&(o.type="global"),r.call(this,null,i,o)||this}_inheritsLoose(CFFPointer,r);var i=CFFPointer.prototype;return i.decode=function decode(i,o,u){return this.offsetType={decode:function decode(){return u[0]}},r.prototype.decode.call(this,i,o,u)},i.encode=function encode(i,o,u){if(!i)return this.offsetType={size:function size(){return 0}},this.size(o,u),[new Pe(0)];var p=null;return this.offsetType={encode:function encode(r,i){return p=i}},r.prototype.encode.call(this,i,o,u),[new Pe(p)]},CFFPointer}(g.Pointer),Pe=function(){function Ptr(r){this.val=r,this.forceLarge=!0}return Ptr.prototype.valueOf=function valueOf(){return this.val},Ptr}(),Ae=new Ce([[6,"BlueValues","delta",null],[7,"OtherBlues","delta",null],[8,"FamilyBlues","delta",null],[9,"FamilyOtherBlues","delta",null],[[12,9],"BlueScale","number",.039625],[[12,10],"BlueShift","number",7],[[12,11],"BlueFuzz","number",1],[10,"StdHW","number",null],[11,"StdVW","number",null],[[12,12],"StemSnapH","delta",null],[[12,13],"StemSnapV","delta",null],[[12,14],"ForceBold","boolean",!1],[[12,17],"LanguageGroup","number",0],[[12,18],"ExpansionFactor","number",.06],[[12,19],"initialRandomSeed","number",0],[20,"defaultWidthX","number",0],[21,"nominalWidthX","number",0],[22,"vsindex","number",0],[23,"blend",function(){function CFFBlendOp(){}return CFFBlendOp.decode=function decode(r,i,o){for(var u=o.pop();o.length>u;)o.pop()},CFFBlendOp}(),null],[19,"Subrs",new ke(new we,{type:"local"}),null]]),Ee=[".notdef","space","exclam","quotedbl","numbersign","dollar","percent","ampersand","quoteright","parenleft","parenright","asterisk","plus","comma","hyphen","period","slash","zero","one","two","three","four","five","six","seven","eight","nine","colon","semicolon","less","equal","greater","question","at","A","B","C","D","E","F","G","H","I","J","K","L","M","N","O","P","Q","R","S","T","U","V","W","X","Y","Z","bracketleft","backslash","bracketright","asciicircum","underscore","quoteleft","a","b","c","d","e","f","g","h","i","j","k","l","m","n","o","p","q","r","s","t","u","v","w","x","y","z","braceleft","bar","braceright","asciitilde","exclamdown","cent","sterling","fraction","yen","florin","section","currency","quotesingle","quotedblleft","guillemotleft","guilsinglleft","guilsinglright","fi","fl","endash","dagger","daggerdbl","periodcentered","paragraph","bullet","quotesinglbase","quotedblbase","quotedblright","guillemotright","ellipsis","perthousand","questiondown","grave","acute","circumflex","tilde","macron","breve","dotaccent","dieresis","ring","cedilla","hungarumlaut","ogonek","caron","emdash","AE","ordfeminine","Lslash","Oslash","OE","ordmasculine","ae","dotlessi","lslash","oslash","oe","germandbls","onesuperior","logicalnot","mu","trademark","Eth","onehalf","plusminus","Thorn","onequarter","divide","brokenbar","degree","thorn","threequarters","twosuperior","registered","minus","eth","multiply","threesuperior","copyright","Aacute","Acircumflex","Adieresis","Agrave","Aring","Atilde","Ccedilla","Eacute","Ecircumflex","Edieresis","Egrave","Iacute","Icircumflex","Idieresis","Igrave","Ntilde","Oacute","Ocircumflex","Odieresis","Ograve","Otilde","Scaron","Uacute","Ucircumflex","Udieresis","Ugrave","Yacute","Ydieresis","Zcaron","aacute","acircumflex","adieresis","agrave","aring","atilde","ccedilla","eacute","ecircumflex","edieresis","egrave","iacute","icircumflex","idieresis","igrave","ntilde","oacute","ocircumflex","odieresis","ograve","otilde","scaron","uacute","ucircumflex","udieresis","ugrave","yacute","ydieresis","zcaron","exclamsmall","Hungarumlautsmall","dollaroldstyle","dollarsuperior","ampersandsmall","Acutesmall","parenleftsuperior","parenrightsuperior","twodotenleader","onedotenleader","zerooldstyle","oneoldstyle","twooldstyle","threeoldstyle","fouroldstyle","fiveoldstyle","sixoldstyle","sevenoldstyle","eightoldstyle","nineoldstyle","commasuperior","threequartersemdash","periodsuperior","questionsmall","asuperior","bsuperior","centsuperior","dsuperior","esuperior","isuperior","lsuperior","msuperior","nsuperior","osuperior","rsuperior","ssuperior","tsuperior","ff","ffi","ffl","parenleftinferior","parenrightinferior","Circumflexsmall","hyphensuperior","Gravesmall","Asmall","Bsmall","Csmall","Dsmall","Esmall","Fsmall","Gsmall","Hsmall","Ismall","Jsmall","Ksmall","Lsmall","Msmall","Nsmall","Osmall","Psmall","Qsmall","Rsmall","Ssmall","Tsmall","Usmall","Vsmall","Wsmall","Xsmall","Ysmall","Zsmall","colonmonetary","onefitted","rupiah","Tildesmall","exclamdownsmall","centoldstyle","Lslashsmall","Scaronsmall","Zcaronsmall","Dieresissmall","Brevesmall","Caronsmall","Dotaccentsmall","Macronsmall","figuredash","hypheninferior","Ogoneksmall","Ringsmall","Cedillasmall","questiondownsmall","oneeighth","threeeighths","fiveeighths","seveneighths","onethird","twothirds","zerosuperior","foursuperior","fivesuperior","sixsuperior","sevensuperior","eightsuperior","ninesuperior","zeroinferior","oneinferior","twoinferior","threeinferior","fourinferior","fiveinferior","sixinferior","seveninferior","eightinferior","nineinferior","centinferior","dollarinferior","periodinferior","commainferior","Agravesmall","Aacutesmall","Acircumflexsmall","Atildesmall","Adieresissmall","Aringsmall","AEsmall","Ccedillasmall","Egravesmall","Eacutesmall","Ecircumflexsmall","Edieresissmall","Igravesmall","Iacutesmall","Icircumflexsmall","Idieresissmall","Ethsmall","Ntildesmall","Ogravesmall","Oacutesmall","Ocircumflexsmall","Otildesmall","Odieresissmall","OEsmall","Oslashsmall","Ugravesmall","Uacutesmall","Ucircumflexsmall","Udieresissmall","Yacutesmall","Thornsmall","Ydieresissmall","001.000","001.001","001.002","001.003","Black","Bold","Book","Light","Medium","Regular","Roman","Semibold"],Te=["","","","","","","","","","","","","","","","","","","","","","","","","","","","","","","","","space","exclam","quotedbl","numbersign","dollar","percent","ampersand","quoteright","parenleft","parenright","asterisk","plus","comma","hyphen","period","slash","zero","one","two","three","four","five","six","seven","eight","nine","colon","semicolon","less","equal","greater","question","at","A","B","C","D","E","F","G","H","I","J","K","L","M","N","O","P","Q","R","S","T","U","V","W","X","Y","Z","bracketleft","backslash","bracketright","asciicircum","underscore","quoteleft","a","b","c","d","e","f","g","h","i","j","k","l","m","n","o","p","q","r","s","t","u","v","w","x","y","z","braceleft","bar","braceright","asciitilde","","","","","","","","","","","","","","","","","","","","","","","","","","","","","","","","","","","exclamdown","cent","sterling","fraction","yen","florin","section","currency","quotesingle","quotedblleft","guillemotleft","guilsinglleft","guilsinglright","fi","fl","","endash","dagger","daggerdbl","periodcentered","","paragraph","bullet","quotesinglbase","quotedblbase","quotedblright","guillemotright","ellipsis","perthousand","","questiondown","","grave","acute","circumflex","tilde","macron","breve","dotaccent","dieresis","","ring","cedilla","","hungarumlaut","ogonek","caron","emdash","","","","","","","","","","","","","","","","","AE","","ordfeminine","","","","","Lslash","Oslash","OE","ordmasculine","","","","","","ae","","","","dotlessi","","","lslash","oslash","oe","germandbls"],Oe=[".notdef","space","exclam","quotedbl","numbersign","dollar","percent","ampersand","quoteright","parenleft","parenright","asterisk","plus","comma","hyphen","period","slash","zero","one","two","three","four","five","six","seven","eight","nine","colon","semicolon","less","equal","greater","question","at","A","B","C","D","E","F","G","H","I","J","K","L","M","N","O","P","Q","R","S","T","U","V","W","X","Y","Z","bracketleft","backslash","bracketright","asciicircum","underscore","quoteleft","a","b","c","d","e","f","g","h","i","j","k","l","m","n","o","p","q","r","s","t","u","v","w","x","y","z","braceleft","bar","braceright","asciitilde","exclamdown","cent","sterling","fraction","yen","florin","section","currency","quotesingle","quotedblleft","guillemotleft","guilsinglleft","guilsinglright","fi","fl","endash","dagger","daggerdbl","periodcentered","paragraph","bullet","quotesinglbase","quotedblbase","quotedblright","guillemotright","ellipsis","perthousand","questiondown","grave","acute","circumflex","tilde","macron","breve","dotaccent","dieresis","ring","cedilla","hungarumlaut","ogonek","caron","emdash","AE","ordfeminine","Lslash","Oslash","OE","ordmasculine","ae","dotlessi","lslash","oslash","oe","germandbls","onesuperior","logicalnot","mu","trademark","Eth","onehalf","plusminus","Thorn","onequarter","divide","brokenbar","degree","thorn","threequarters","twosuperior","registered","minus","eth","multiply","threesuperior","copyright","Aacute","Acircumflex","Adieresis","Agrave","Aring","Atilde","Ccedilla","Eacute","Ecircumflex","Edieresis","Egrave","Iacute","Icircumflex","Idieresis","Igrave","Ntilde","Oacute","Ocircumflex","Odieresis","Ograve","Otilde","Scaron","Uacute","Ucircumflex","Udieresis","Ugrave","Yacute","Ydieresis","Zcaron","aacute","acircumflex","adieresis","agrave","aring","atilde","ccedilla","eacute","ecircumflex","edieresis","egrave","iacute","icircumflex","idieresis","igrave","ntilde","oacute","ocircumflex","odieresis","ograve","otilde","scaron","uacute","ucircumflex","udieresis","ugrave","yacute","ydieresis","zcaron"],Ie=new g.Struct({reserved:new g.Reserved(g.uint16),reqFeatureIndex:g.uint16,featureCount:g.uint16,featureIndexes:new g.Array(g.uint16,"featureCount")}),Be=new g.Struct({tag:new g.String(4),langSys:new g.Pointer(g.uint16,Ie,{type:"parent"})}),Fe=new g.Struct({defaultLangSys:new g.Pointer(g.uint16,Ie),count:g.uint16,langSysRecords:new g.Array(Be,"count")}),Le=new g.Struct({tag:new g.String(4),script:new g.Pointer(g.uint16,Fe,{type:"parent"})}),Re=new g.Array(Le,g.uint16),De=new g.Struct({featureParams:g.uint16,lookupCount:g.uint16,lookupListIndexes:new g.Array(g.uint16,"lookupCount")}),Me=new g.Struct({tag:new g.String(4),feature:new g.Pointer(g.uint16,De,{type:"parent"})}),Ne=new g.Array(Me,g.uint16),We=new g.Struct({markAttachmentType:g.uint8,flags:new g.Bitfield(g.uint8,["rightToLeft","ignoreBaseGlyphs","ignoreLigatures","ignoreMarks","useMarkFilteringSet"])});function LookupList(r){var i=new g.Struct({lookupType:g.uint16,flags:We,subTableCount:g.uint16,subTables:new g.Array(new g.Pointer(g.uint16,r),"subTableCount"),markFilteringSet:new g.Optional(g.uint16,(function(r){return r.flags.flags.useMarkFilteringSet}))});return new g.LazyArray(new g.Pointer(g.uint16,i),g.uint16)}var ze=new g.Struct({start:g.uint16,end:g.uint16,startCoverageIndex:g.uint16}),Ue=new g.VersionedStruct(g.uint16,{1:{glyphCount:g.uint16,glyphs:new g.Array(g.uint16,"glyphCount")},2:{rangeCount:g.uint16,rangeRecords:new g.Array(ze,"rangeCount")}}),je=new g.Struct({start:g.uint16,end:g.uint16,class:g.uint16}),Ge=new g.VersionedStruct(g.uint16,{1:{startGlyph:g.uint16,glyphCount:g.uint16,classValueArray:new g.Array(g.uint16,"glyphCount")},2:{classRangeCount:g.uint16,classRangeRecord:new g.Array(je,"classRangeCount")}}),Ve=new g.Struct({a:g.uint16,b:g.uint16,deltaFormat:g.uint16}),He=new g.Struct({sequenceIndex:g.uint16,lookupListIndex:g.uint16}),qe=new g.Struct({glyphCount:g.uint16,lookupCount:g.uint16,input:new g.Array(g.uint16,(function(r){return r.glyphCount-1})),lookupRecords:new g.Array(He,"lookupCount")}),Xe=new g.Array(new g.Pointer(g.uint16,qe),g.uint16),Ze=new g.Struct({glyphCount:g.uint16,lookupCount:g.uint16,classes:new g.Array(g.uint16,(function(r){return r.glyphCount-1})),lookupRecords:new g.Array(He,"lookupCount")}),Ke=new g.Array(new g.Pointer(g.uint16,Ze),g.uint16),Ye=new g.VersionedStruct(g.uint16,{1:{coverage:new g.Pointer(g.uint16,Ue),ruleSetCount:g.uint16,ruleSets:new g.Array(new g.Pointer(g.uint16,Xe),"ruleSetCount")},2:{coverage:new g.Pointer(g.uint16,Ue),classDef:new g.Pointer(g.uint16,Ge),classSetCnt:g.uint16,classSet:new g.Array(new g.Pointer(g.uint16,Ke),"classSetCnt")},3:{glyphCount:g.uint16,lookupCount:g.uint16,coverages:new g.Array(new g.Pointer(g.uint16,Ue),"glyphCount"),lookupRecords:new g.Array(He,"lookupCount")}}),Je=new g.Struct({backtrackGlyphCount:g.uint16,backtrack:new g.Array(g.uint16,"backtrackGlyphCount"),inputGlyphCount:g.uint16,input:new g.Array(g.uint16,(function(r){return r.inputGlyphCount-1})),lookaheadGlyphCount:g.uint16,lookahead:new g.Array(g.uint16,"lookaheadGlyphCount"),lookupCount:g.uint16,lookupRecords:new g.Array(He,"lookupCount")}),Qe=new g.Array(new g.Pointer(g.uint16,Je),g.uint16),$e=new g.VersionedStruct(g.uint16,{1:{coverage:new g.Pointer(g.uint16,Ue),chainCount:g.uint16,chainRuleSets:new g.Array(new g.Pointer(g.uint16,Qe),"chainCount")},2:{coverage:new g.Pointer(g.uint16,Ue),backtrackClassDef:new g.Pointer(g.uint16,Ge),inputClassDef:new g.Pointer(g.uint16,Ge),lookaheadClassDef:new g.Pointer(g.uint16,Ge),chainCount:g.uint16,chainClassSet:new g.Array(new g.Pointer(g.uint16,Qe),"chainCount")},3:{backtrackGlyphCount:g.uint16,backtrackCoverage:new g.Array(new g.Pointer(g.uint16,Ue),"backtrackGlyphCount"),inputGlyphCount:g.uint16,inputCoverage:new g.Array(new g.Pointer(g.uint16,Ue),"inputGlyphCount"),lookaheadGlyphCount:g.uint16,lookaheadCoverage:new g.Array(new g.Pointer(g.uint16,Ue),"lookaheadGlyphCount"),lookupCount:g.uint16,lookupRecords:new g.Array(He,"lookupCount")}}),et=new g.Fixed(16,"BE",14),tt=new g.Struct({startCoord:et,peakCoord:et,endCoord:et}),rt=new g.Struct({axisCount:g.uint16,regionCount:g.uint16,variationRegions:new g.Array(new g.Array(tt,"axisCount"),"regionCount")}),nt=new g.Struct({shortDeltas:new g.Array(g.int16,(function(r){return r.parent.shortDeltaCount})),regionDeltas:new g.Array(g.int8,(function(r){return r.parent.regionIndexCount-r.parent.shortDeltaCount})),deltas:function deltas(r){return r.shortDeltas.concat(r.regionDeltas)}}),it=new g.Struct({itemCount:g.uint16,shortDeltaCount:g.uint16,regionIndexCount:g.uint16,regionIndexes:new g.Array(g.uint16,"regionIndexCount"),deltaSets:new g.Array(nt,"itemCount")}),ot=new g.Struct({format:g.uint16,variationRegionList:new g.Pointer(g.uint32,rt),variationDataCount:g.uint16,itemVariationData:new g.Array(new g.Pointer(g.uint32,it),"variationDataCount")}),at=new g.VersionedStruct(g.uint16,{1:(u={axisIndex:g.uint16},u.axisIndex=g.uint16,u.filterRangeMinValue=et,u.filterRangeMaxValue=et,u)}),st=new g.Struct({conditionCount:g.uint16,conditionTable:new g.Array(new g.Pointer(g.uint32,at),"conditionCount")}),ct=new g.Struct({featureIndex:g.uint16,alternateFeatureTable:new g.Pointer(g.uint32,De,{type:"parent"})}),lt=new g.Struct({version:g.fixed32,substitutionCount:g.uint16,substitutions:new g.Array(ct,"substitutionCount")}),ut=new g.Struct({conditionSet:new g.Pointer(g.uint32,st,{type:"parent"}),featureTableSubstitution:new g.Pointer(g.uint32,lt,{type:"parent"})}),ft=new g.Struct({majorVersion:g.uint16,minorVersion:g.uint16,featureVariationRecordCount:g.uint32,featureVariationRecords:new g.Array(ut,"featureVariationRecordCount")}),ht=function(){function PredefinedOp(r,i){this.predefinedOps=r,this.type=i}var r=PredefinedOp.prototype;return r.decode=function decode(r,i,o){return this.predefinedOps[o[0]]?this.predefinedOps[o[0]]:this.type.decode(r,i,o)},r.size=function size(r,i){return this.type.size(r,i)},r.encode=function encode(r,i,o){var u=this.predefinedOps.indexOf(i);return-1!==u?u:this.type.encode(r,i,o)},PredefinedOp}(),dt=function(r){function CFFEncodingVersion(){return r.call(this,"UInt8")||this}return _inheritsLoose(CFFEncodingVersion,r),CFFEncodingVersion.prototype.decode=function decode(r){return 127&g.uint8.decode(r)},CFFEncodingVersion}(g.Number),pt=new g.Struct({first:g.uint16,nLeft:g.uint8}),gt=new g.Struct({first:g.uint16,nLeft:g.uint16}),yt=new ht([Te,["","","","","","","","","","","","","","","","","","","","","","","","","","","","","","","","","space","exclamsmall","Hungarumlautsmall","","dollaroldstyle","dollarsuperior","ampersandsmall","Acutesmall","parenleftsuperior","parenrightsuperior","twodotenleader","onedotenleader","comma","hyphen","period","fraction","zerooldstyle","oneoldstyle","twooldstyle","threeoldstyle","fouroldstyle","fiveoldstyle","sixoldstyle","sevenoldstyle","eightoldstyle","nineoldstyle","colon","semicolon","commasuperior","threequartersemdash","periodsuperior","questionsmall","","asuperior","bsuperior","centsuperior","dsuperior","esuperior","","","isuperior","","","lsuperior","msuperior","nsuperior","osuperior","","","rsuperior","ssuperior","tsuperior","","ff","fi","fl","ffi","ffl","parenleftinferior","","parenrightinferior","Circumflexsmall","hyphensuperior","Gravesmall","Asmall","Bsmall","Csmall","Dsmall","Esmall","Fsmall","Gsmall","Hsmall","Ismall","Jsmall","Ksmall","Lsmall","Msmall","Nsmall","Osmall","Psmall","Qsmall","Rsmall","Ssmall","Tsmall","Usmall","Vsmall","Wsmall","Xsmall","Ysmall","Zsmall","colonmonetary","onefitted","rupiah","Tildesmall","","","","","","","","","","","","","","","","","","","","","","","","","","","","","","","","","","","exclamdownsmall","centoldstyle","Lslashsmall","","","Scaronsmall","Zcaronsmall","Dieresissmall","Brevesmall","Caronsmall","","Dotaccentsmall","","","Macronsmall","","","figuredash","hypheninferior","","","Ogoneksmall","Ringsmall","Cedillasmall","","","","onequarter","onehalf","threequarters","questiondownsmall","oneeighth","threeeighths","fiveeighths","seveneighths","onethird","twothirds","","","zerosuperior","onesuperior","twosuperior","threesuperior","foursuperior","fivesuperior","sixsuperior","sevensuperior","eightsuperior","ninesuperior","zeroinferior","oneinferior","twoinferior","threeinferior","fourinferior","fiveinferior","sixinferior","seveninferior","eightinferior","nineinferior","centinferior","dollarinferior","periodinferior","commainferior","Agravesmall","Aacutesmall","Acircumflexsmall","Atildesmall","Adieresissmall","Aringsmall","AEsmall","Ccedillasmall","Egravesmall","Eacutesmall","Ecircumflexsmall","Edieresissmall","Igravesmall","Iacutesmall","Icircumflexsmall","Idieresissmall","Ethsmall","Ntildesmall","Ogravesmall","Oacutesmall","Ocircumflexsmall","Otildesmall","Odieresissmall","OEsmall","Oslashsmall","Ugravesmall","Uacutesmall","Ucircumflexsmall","Udieresissmall","Yacutesmall","Thornsmall","Ydieresissmall"]],new ke(new g.VersionedStruct(new dt,{0:{nCodes:g.uint8,codes:new g.Array(g.uint8,"nCodes")},1:{nRanges:g.uint8,ranges:new g.Array(pt,"nRanges")}}),{lazy:!0})),vt=function(r){function RangeArray(){return r.apply(this,arguments)||this}return _inheritsLoose(RangeArray,r),RangeArray.prototype.decode=function decode(r,i){for(var o=y.resolveLength(this.length,r,i),u=0,p=[];u<o;){var g=this.type.decode(r,i);g.offset=u,u+=g.nLeft+1,p.push(g)}return p},RangeArray}(g.Array),mt=new g.VersionedStruct(g.uint8,{0:{glyphs:new g.Array(g.uint16,(function(r){return r.parent.CharStrings.length-1}))},1:{ranges:new vt(pt,(function(r){return r.parent.CharStrings.length-1}))},2:{ranges:new vt(gt,(function(r){return r.parent.CharStrings.length-1}))}}),bt=new ht([Oe,[".notdef","space","exclamsmall","Hungarumlautsmall","dollaroldstyle","dollarsuperior","ampersandsmall","Acutesmall","parenleftsuperior","parenrightsuperior","twodotenleader","onedotenleader","comma","hyphen","period","fraction","zerooldstyle","oneoldstyle","twooldstyle","threeoldstyle","fouroldstyle","fiveoldstyle","sixoldstyle","sevenoldstyle","eightoldstyle","nineoldstyle","colon","semicolon","commasuperior","threequartersemdash","periodsuperior","questionsmall","asuperior","bsuperior","centsuperior","dsuperior","esuperior","isuperior","lsuperior","msuperior","nsuperior","osuperior","rsuperior","ssuperior","tsuperior","ff","fi","fl","ffi","ffl","parenleftinferior","parenrightinferior","Circumflexsmall","hyphensuperior","Gravesmall","Asmall","Bsmall","Csmall","Dsmall","Esmall","Fsmall","Gsmall","Hsmall","Ismall","Jsmall","Ksmall","Lsmall","Msmall","Nsmall","Osmall","Psmall","Qsmall","Rsmall","Ssmall","Tsmall","Usmall","Vsmall","Wsmall","Xsmall","Ysmall","Zsmall","colonmonetary","onefitted","rupiah","Tildesmall","exclamdownsmall","centoldstyle","Lslashsmall","Scaronsmall","Zcaronsmall","Dieresissmall","Brevesmall","Caronsmall","Dotaccentsmall","Macronsmall","figuredash","hypheninferior","Ogoneksmall","Ringsmall","Cedillasmall","onequarter","onehalf","threequarters","questiondownsmall","oneeighth","threeeighths","fiveeighths","seveneighths","onethird","twothirds","zerosuperior","onesuperior","twosuperior","threesuperior","foursuperior","fivesuperior","sixsuperior","sevensuperior","eightsuperior","ninesuperior","zeroinferior","oneinferior","twoinferior","threeinferior","fourinferior","fiveinferior","sixinferior","seveninferior","eightinferior","nineinferior","centinferior","dollarinferior","periodinferior","commainferior","Agravesmall","Aacutesmall","Acircumflexsmall","Atildesmall","Adieresissmall","Aringsmall","AEsmall","Ccedillasmall","Egravesmall","Eacutesmall","Ecircumflexsmall","Edieresissmall","Igravesmall","Iacutesmall","Icircumflexsmall","Idieresissmall","Ethsmall","Ntildesmall","Ogravesmall","Oacutesmall","Ocircumflexsmall","Otildesmall","Odieresissmall","OEsmall","Oslashsmall","Ugravesmall","Uacutesmall","Ucircumflexsmall","Udieresissmall","Yacutesmall","Thornsmall","Ydieresissmall"],[".notdef","space","dollaroldstyle","dollarsuperior","parenleftsuperior","parenrightsuperior","twodotenleader","onedotenleader","comma","hyphen","period","fraction","zerooldstyle","oneoldstyle","twooldstyle","threeoldstyle","fouroldstyle","fiveoldstyle","sixoldstyle","sevenoldstyle","eightoldstyle","nineoldstyle","colon","semicolon","commasuperior","threequartersemdash","periodsuperior","asuperior","bsuperior","centsuperior","dsuperior","esuperior","isuperior","lsuperior","msuperior","nsuperior","osuperior","rsuperior","ssuperior","tsuperior","ff","fi","fl","ffi","ffl","parenleftinferior","parenrightinferior","hyphensuperior","colonmonetary","onefitted","rupiah","centoldstyle","figuredash","hypheninferior","onequarter","onehalf","threequarters","oneeighth","threeeighths","fiveeighths","seveneighths","onethird","twothirds","zerosuperior","onesuperior","twosuperior","threesuperior","foursuperior","fivesuperior","sixsuperior","sevensuperior","eightsuperior","ninesuperior","zeroinferior","oneinferior","twoinferior","threeinferior","fourinferior","fiveinferior","sixinferior","seveninferior","eightinferior","nineinferior","centinferior","dollarinferior","periodinferior","commainferior"]],new ke(mt,{lazy:!0})),wt=new g.Struct({first:g.uint16,fd:g.uint8}),_t=new g.Struct({first:g.uint32,fd:g.uint16}),St=new g.VersionedStruct(g.uint8,{0:{fds:new g.Array(g.uint8,(function(r){return r.parent.CharStrings.length}))},3:{nRanges:g.uint16,ranges:new g.Array(wt,"nRanges"),sentinel:g.uint16},4:{nRanges:g.uint32,ranges:new g.Array(_t,"nRanges"),sentinel:g.uint32}}),xt=new ke(Ae),Ct=function(){function CFFPrivateOp(){}var r=CFFPrivateOp.prototype;return r.decode=function decode(r,i,o){return i.length=o[0],xt.decode(r,i,[o[1]])},r.size=function size(r,i){return[Ae.size(r,i,!1),xt.size(r,i)[0]]},r.encode=function encode(r,i,o){return[Ae.size(i,o,!1),xt.encode(r,i,o)[0]]},CFFPrivateOp}(),kt=new Ce([[18,"Private",new Ct,null],[[12,38],"FontName","sid",null],[[12,7],"FontMatrix","array",[.001,0,0,.001,0,0]],[[12,5],"PaintType","number",0]]),Pt=new Ce([[[12,30],"ROS",["sid","sid","number"],null],[0,"version","sid",null],[1,"Notice","sid",null],[[12,0],"Copyright","sid",null],[2,"FullName","sid",null],[3,"FamilyName","sid",null],[4,"Weight","sid",null],[[12,1],"isFixedPitch","boolean",!1],[[12,2],"ItalicAngle","number",0],[[12,3],"UnderlinePosition","number",-100],[[12,4],"UnderlineThickness","number",50],[[12,5],"PaintType","number",0],[[12,6],"CharstringType","number",2],[[12,7],"FontMatrix","array",[.001,0,0,.001,0,0]],[13,"UniqueID","number",null],[5,"FontBBox","array",[0,0,0,0]],[[12,8],"StrokeWidth","number",0],[14,"XUID","array",null],[15,"charset",bt,Oe],[16,"Encoding",yt,Te],[17,"CharStrings",new ke(new we),null],[18,"Private",new Ct,null],[[12,20],"SyntheticBase","number",null],[[12,21],"PostScript","sid",null],[[12,22],"BaseFontName","sid",null],[[12,23],"BaseFontBlend","delta",null],[[12,31],"CIDFontVersion","number",0],[[12,32],"CIDFontRevision","number",0],[[12,33],"CIDFontType","number",0],[[12,34],"CIDCount","number",8720],[[12,35],"UIDBase","number",null],[[12,37],"FDSelect",new ke(St),null],[[12,36],"FDArray",new ke(new we(kt)),null],[[12,38],"FontName","sid",null]]),At=new g.Struct({length:g.uint16,itemVariationStore:ot}),Et=new Ce([[[12,7],"FontMatrix","array",[.001,0,0,.001,0,0]],[17,"CharStrings",new ke(new we),null],[[12,37],"FDSelect",new ke(St),null],[[12,36],"FDArray",new ke(new we(kt)),null],[24,"vstore",new ke(At),null],[25,"maxstack","number",193]]),Tt=new g.VersionedStruct(g.fixed16,{1:{hdrSize:g.uint8,offSize:g.uint8,nameIndex:new we(new g.String("length")),topDictIndex:new we(Pt),stringIndex:new we(new g.String("length")),globalSubrIndex:new we},2:{hdrSize:g.uint8,length:g.uint16,topDict:Et,globalSubrIndex:new we}}),Ot=function(){function CFFFont(r){this.stream=r,this.decode()}CFFFont.decode=function decode(r){return new CFFFont(r)};var r=CFFFont.prototype;return r.decode=function decode(){this.stream.pos;var r=Tt.decode(this.stream);for(var i in r){var o=r[i];this[i]=o}if(this.version<2){if(1!==this.topDictIndex.length)throw new Error("Only a single font is allowed in CFF");this.topDict=this.topDictIndex[0]}return this.isCIDFont=null!=this.topDict.ROS,this},r.string=function string(r){return this.version>=2?null:r<Ee.length?Ee[r]:this.stringIndex[r-Ee.length]},r.getCharString=function getCharString(r){return this.stream.pos=this.topDict.CharStrings[r].offset,this.stream.readBuffer(this.topDict.CharStrings[r].length)},r.getGlyphName=function getGlyphName(r){if(this.version>=2)return null;if(this.isCIDFont)return null;var i=this.topDict.charset;if(Array.isArray(i))return i[r];if(0===r)return".notdef";switch(r-=1,i.version){case 0:return this.string(i.glyphs[r]);case 1:case 2:for(var o=0;o<i.ranges.length;o++){var u=i.ranges[o];if(u.offset<=r&&r<=u.offset+u.nLeft)return this.string(u.first+(r-u.offset))}}return null},r.fdForGlyph=function fdForGlyph(r){if(!this.topDict.FDSelect)return null;switch(this.topDict.FDSelect.version){case 0:return this.topDict.FDSelect.fds[r];case 3:case 4:for(var i=this.topDict.FDSelect.ranges,o=0,u=i.length-1;o<=u;){var p=o+u>>1;if(r<i[p].first)u=p-1;else{if(!(p<u&&r>=i[p+1].first))return i[p].fd;o=p+1}}default:throw new Error("Unknown FDSelect version: ".concat(this.topDict.FDSelect.version))}},r.privateDictForGlyph=function privateDictForGlyph(r){if(this.topDict.FDSelect){var i=this.fdForGlyph(r);return this.topDict.FDArray[i]?this.topDict.FDArray[i].Private:null}return this.version<2?this.topDict.Private:this.topDict.FDArray[0].Private},_createClass(CFFFont,[{key:"postscriptName",get:function get(){return this.version<2?this.nameIndex[0]:null}},{key:"fullName",get:function get(){return this.string(this.topDict.FullName)}},{key:"familyName",get:function get(){return this.string(this.topDict.FamilyName)}}]),CFFFont}(),It=new g.Struct({glyphIndex:g.uint16,vertOriginY:g.int16}),Bt=new g.Struct({majorVersion:g.uint16,minorVersion:g.uint16,defaultVertOriginY:g.int16,numVertOriginYMetrics:g.uint16,metrics:new g.Array(It,"numVertOriginYMetrics")}),Ft=new g.Struct({height:g.uint8,width:g.uint8,horiBearingX:g.int8,horiBearingY:g.int8,horiAdvance:g.uint8,vertBearingX:g.int8,vertBearingY:g.int8,vertAdvance:g.uint8}),Lt=new g.Struct({height:g.uint8,width:g.uint8,bearingX:g.int8,bearingY:g.int8,advance:g.uint8}),Rt=new g.Struct({glyph:g.uint16,xOffset:g.int8,yOffset:g.int8}),Dt=function ByteAligned(){},Mt=function BitAligned(){},Nt=(new g.VersionedStruct("version",{1:{metrics:Lt,data:Dt},2:{metrics:Lt,data:Mt},5:{data:Mt},6:{metrics:Ft,data:Dt},7:{metrics:Ft,data:Mt},8:{metrics:Lt,pad:new g.Reserved(g.uint8),numComponents:g.uint16,components:new g.Array(Rt,"numComponents")},9:{metrics:Ft,pad:new g.Reserved(g.uint8),numComponents:g.uint16,components:new g.Array(Rt,"numComponents")},17:{metrics:Lt,dataLen:g.uint32,data:new g.Buffer("dataLen")},18:{metrics:Ft,dataLen:g.uint32,data:new g.Buffer("dataLen")},19:{dataLen:g.uint32,data:new g.Buffer("dataLen")}}),new g.Struct({ascender:g.int8,descender:g.int8,widthMax:g.uint8,caretSlopeNumerator:g.int8,caretSlopeDenominator:g.int8,caretOffset:g.int8,minOriginSB:g.int8,minAdvanceSB:g.int8,maxBeforeBL:g.int8,minAfterBL:g.int8,pad:new g.Reserved(g.int8,2)})),Wt=new g.Struct({glyphCode:g.uint16,offset:g.uint16}),zt=new g.VersionedStruct(g.uint16,{header:{imageFormat:g.uint16,imageDataOffset:g.uint32},1:{offsetArray:new g.Array(g.uint32,(function(r){return r.parent.lastGlyphIndex-r.parent.firstGlyphIndex+1}))},2:{imageSize:g.uint32,bigMetrics:Ft},3:{offsetArray:new g.Array(g.uint16,(function(r){return r.parent.lastGlyphIndex-r.parent.firstGlyphIndex+1}))},4:{numGlyphs:g.uint32,glyphArray:new g.Array(Wt,(function(r){return r.numGlyphs+1}))},5:{imageSize:g.uint32,bigMetrics:Ft,numGlyphs:g.uint32,glyphCodeArray:new g.Array(g.uint16,"numGlyphs")}}),Ut=new g.Struct({firstGlyphIndex:g.uint16,lastGlyphIndex:g.uint16,subtable:new g.Pointer(g.uint32,zt)}),jt=new g.Struct({indexSubTableArray:new g.Pointer(g.uint32,new g.Array(Ut,1),{type:"parent"}),indexTablesSize:g.uint32,numberOfIndexSubTables:g.uint32,colorRef:g.uint32,hori:Nt,vert:Nt,startGlyphIndex:g.uint16,endGlyphIndex:g.uint16,ppemX:g.uint8,ppemY:g.uint8,bitDepth:g.uint8,flags:new g.Bitfield(g.uint8,["horizontal","vertical"])}),Gt=new g.Struct({version:g.uint32,numSizes:g.uint32,sizes:new g.Array(jt,"numSizes")}),Vt=new g.Struct({ppem:g.uint16,resolution:g.uint16,imageOffsets:new g.Array(new g.Pointer(g.uint32,"void"),(function(r){return r.parent.parent.maxp.numGlyphs+1}))}),Ht=new g.Struct({version:g.uint16,flags:new g.Bitfield(g.uint16,["renderOutlines"]),numImgTables:g.uint32,imageTables:new g.Array(new g.Pointer(g.uint32,Vt),"numImgTables")}),qt=new g.Struct({gid:g.uint16,paletteIndex:g.uint16}),Xt=new g.Struct({gid:g.uint16,firstLayerIndex:g.uint16,numLayers:g.uint16}),Zt=new g.Struct({version:g.uint16,numBaseGlyphRecords:g.uint16,baseGlyphRecord:new g.Pointer(g.uint32,new g.Array(Xt,"numBaseGlyphRecords")),layerRecords:new g.Pointer(g.uint32,new g.Array(qt,"numLayerRecords"),{lazy:!0}),numLayerRecords:g.uint16}),Kt=new g.Struct({blue:g.uint8,green:g.uint8,red:g.uint8,alpha:g.uint8}),Yt=new g.VersionedStruct(g.uint16,{header:{numPaletteEntries:g.uint16,numPalettes:g.uint16,numColorRecords:g.uint16,colorRecords:new g.Pointer(g.uint32,new g.Array(Kt,"numColorRecords")),colorRecordIndices:new g.Array(g.uint16,"numPalettes")},0:{},1:{offsetPaletteTypeArray:new g.Pointer(g.uint32,new g.Array(g.uint32,"numPalettes")),offsetPaletteLabelArray:new g.Pointer(g.uint32,new g.Array(g.uint16,"numPalettes")),offsetPaletteEntryLabelArray:new g.Pointer(g.uint32,new g.Array(g.uint16,"numPaletteEntries"))}}),Jt=new g.VersionedStruct(g.uint16,{1:{coordinate:g.int16},2:{coordinate:g.int16,referenceGlyph:g.uint16,baseCoordPoint:g.uint16},3:{coordinate:g.int16,deviceTable:new g.Pointer(g.uint16,Ve)}}),Qt=new g.Struct({defaultIndex:g.uint16,baseCoordCount:g.uint16,baseCoords:new g.Array(new g.Pointer(g.uint16,Jt),"baseCoordCount")}),$t=new g.Struct({tag:new g.String(4),minCoord:new g.Pointer(g.uint16,Jt,{type:"parent"}),maxCoord:new g.Pointer(g.uint16,Jt,{type:"parent"})}),er=new g.Struct({minCoord:new g.Pointer(g.uint16,Jt),maxCoord:new g.Pointer(g.uint16,Jt),featMinMaxCount:g.uint16,featMinMaxRecords:new g.Array($t,"featMinMaxCount")}),tr=new g.Struct({tag:new g.String(4),minMax:new g.Pointer(g.uint16,er,{type:"parent"})}),rr=new g.Struct({baseValues:new g.Pointer(g.uint16,Qt),defaultMinMax:new g.Pointer(g.uint16,er),baseLangSysCount:g.uint16,baseLangSysRecords:new g.Array(tr,"baseLangSysCount")}),nr=new g.Struct({tag:new g.String(4),script:new g.Pointer(g.uint16,rr,{type:"parent"})}),ir=new g.Array(nr,g.uint16),or=new g.Array(new g.String(4),g.uint16),ar=new g.Struct({baseTagList:new g.Pointer(g.uint16,or),baseScriptList:new g.Pointer(g.uint16,ir)}),sr=new g.VersionedStruct(g.uint32,{header:{horizAxis:new g.Pointer(g.uint16,ar),vertAxis:new g.Pointer(g.uint16,ar)},65536:{},65537:{itemVariationStore:new g.Pointer(g.uint32,ot)}}),cr=new g.Array(g.uint16,g.uint16),lr=new g.Struct({coverage:new g.Pointer(g.uint16,Ue),glyphCount:g.uint16,attachPoints:new g.Array(new g.Pointer(g.uint16,cr),"glyphCount")}),ur=new g.VersionedStruct(g.uint16,{1:{coordinate:g.int16},2:{caretValuePoint:g.uint16},3:{coordinate:g.int16,deviceTable:new g.Pointer(g.uint16,Ve)}}),fr=new g.Array(new g.Pointer(g.uint16,ur),g.uint16),hr=new g.Struct({coverage:new g.Pointer(g.uint16,Ue),ligGlyphCount:g.uint16,ligGlyphs:new g.Array(new g.Pointer(g.uint16,fr),"ligGlyphCount")}),dr=new g.Struct({markSetTableFormat:g.uint16,markSetCount:g.uint16,coverage:new g.Array(new g.Pointer(g.uint32,Ue),"markSetCount")}),pr=new g.VersionedStruct(g.uint32,{header:{glyphClassDef:new g.Pointer(g.uint16,Ge),attachList:new g.Pointer(g.uint16,lr),ligCaretList:new g.Pointer(g.uint16,hr),markAttachClassDef:new g.Pointer(g.uint16,Ge)},65536:{},65538:{markGlyphSetsDef:new g.Pointer(g.uint16,dr)},65539:{markGlyphSetsDef:new g.Pointer(g.uint16,dr),itemVariationStore:new g.Pointer(g.uint32,ot)}}),gr=new g.Bitfield(g.uint16,["xPlacement","yPlacement","xAdvance","yAdvance","xPlaDevice","yPlaDevice","xAdvDevice","yAdvDevice"]),yr={xPlacement:g.int16,yPlacement:g.int16,xAdvance:g.int16,yAdvance:g.int16,xPlaDevice:new g.Pointer(g.uint16,Ve,{type:"global",relativeTo:function relativeTo(r){return r.rel}}),yPlaDevice:new g.Pointer(g.uint16,Ve,{type:"global",relativeTo:function relativeTo(r){return r.rel}}),xAdvDevice:new g.Pointer(g.uint16,Ve,{type:"global",relativeTo:function relativeTo(r){return r.rel}}),yAdvDevice:new g.Pointer(g.uint16,Ve,{type:"global",relativeTo:function relativeTo(r){return r.rel}})},vr=function(){function ValueRecord(r){void 0===r&&(r="valueFormat"),this.key=r}var r=ValueRecord.prototype;return r.buildStruct=function buildStruct(r){for(var i=r;!i[this.key]&&i.parent;)i=i.parent;if(i[this.key]){var o={rel:function(){return i._startOffset}},u=i[this.key];for(var p in u)u[p]&&(o[p]=yr[p]);return new g.Struct(o)}},r.size=function size(r,i){return this.buildStruct(i).size(r,i)},r.decode=function decode(r,i){var o=this.buildStruct(i).decode(r,i);return delete o.rel,o},ValueRecord}(),mr=new g.Struct({secondGlyph:g.uint16,value1:new vr("valueFormat1"),value2:new vr("valueFormat2")}),br=new g.Array(mr,g.uint16),wr=new g.Struct({value1:new vr("valueFormat1"),value2:new vr("valueFormat2")}),_r=new g.VersionedStruct(g.uint16,{1:{xCoordinate:g.int16,yCoordinate:g.int16},2:{xCoordinate:g.int16,yCoordinate:g.int16,anchorPoint:g.uint16},3:{xCoordinate:g.int16,yCoordinate:g.int16,xDeviceTable:new g.Pointer(g.uint16,Ve),yDeviceTable:new g.Pointer(g.uint16,Ve)}}),Sr=new g.Struct({entryAnchor:new g.Pointer(g.uint16,_r,{type:"parent"}),exitAnchor:new g.Pointer(g.uint16,_r,{type:"parent"})}),xr=new g.Struct({class:g.uint16,markAnchor:new g.Pointer(g.uint16,_r,{type:"parent"})}),Cr=new g.Array(xr,g.uint16),kr=new g.Array(new g.Pointer(g.uint16,_r),(function(r){return r.parent.classCount})),Pr=new g.Array(kr,g.uint16),Ar=new g.Array(new g.Pointer(g.uint16,_r),(function(r){return r.parent.parent.classCount})),Er=new g.Array(Ar,g.uint16),Tr=new g.Array(new g.Pointer(g.uint16,Er),g.uint16),Or=new g.VersionedStruct("lookupType",{1:new g.VersionedStruct(g.uint16,{1:{coverage:new g.Pointer(g.uint16,Ue),valueFormat:gr,value:new vr},2:{coverage:new g.Pointer(g.uint16,Ue),valueFormat:gr,valueCount:g.uint16,values:new g.LazyArray(new vr,"valueCount")}}),2:new g.VersionedStruct(g.uint16,{1:{coverage:new g.Pointer(g.uint16,Ue),valueFormat1:gr,valueFormat2:gr,pairSetCount:g.uint16,pairSets:new g.LazyArray(new g.Pointer(g.uint16,br),"pairSetCount")},2:{coverage:new g.Pointer(g.uint16,Ue),valueFormat1:gr,valueFormat2:gr,classDef1:new g.Pointer(g.uint16,Ge),classDef2:new g.Pointer(g.uint16,Ge),class1Count:g.uint16,class2Count:g.uint16,classRecords:new g.LazyArray(new g.LazyArray(wr,"class2Count"),"class1Count")}}),3:{format:g.uint16,coverage:new g.Pointer(g.uint16,Ue),entryExitCount:g.uint16,entryExitRecords:new g.Array(Sr,"entryExitCount")},4:{format:g.uint16,markCoverage:new g.Pointer(g.uint16,Ue),baseCoverage:new g.Pointer(g.uint16,Ue),classCount:g.uint16,markArray:new g.Pointer(g.uint16,Cr),baseArray:new g.Pointer(g.uint16,Pr)},5:{format:g.uint16,markCoverage:new g.Pointer(g.uint16,Ue),ligatureCoverage:new g.Pointer(g.uint16,Ue),classCount:g.uint16,markArray:new g.Pointer(g.uint16,Cr),ligatureArray:new g.Pointer(g.uint16,Tr)},6:{format:g.uint16,mark1Coverage:new g.Pointer(g.uint16,Ue),mark2Coverage:new g.Pointer(g.uint16,Ue),classCount:g.uint16,mark1Array:new g.Pointer(g.uint16,Cr),mark2Array:new g.Pointer(g.uint16,Pr)},7:Ye,8:$e,9:{posFormat:g.uint16,lookupType:g.uint16,extension:new g.Pointer(g.uint32,Or)}});Or.versions[9].extension.type=Or;var Ir=new g.VersionedStruct(g.uint32,{header:{scriptList:new g.Pointer(g.uint16,Re),featureList:new g.Pointer(g.uint16,Ne),lookupList:new g.Pointer(g.uint16,new LookupList(Or))},65536:{},65537:{featureVariations:new g.Pointer(g.uint32,ft)}}),Br=new g.Array(g.uint16,g.uint16),Fr=Br,Lr=new g.Struct({glyph:g.uint16,compCount:g.uint16,components:new g.Array(g.uint16,(function(r){return r.compCount-1}))}),Rr=new g.Array(new g.Pointer(g.uint16,Lr),g.uint16),Dr=new g.VersionedStruct("lookupType",{1:new g.VersionedStruct(g.uint16,{1:{coverage:new g.Pointer(g.uint16,Ue),deltaGlyphID:g.int16},2:{coverage:new g.Pointer(g.uint16,Ue),glyphCount:g.uint16,substitute:new g.LazyArray(g.uint16,"glyphCount")}}),2:{substFormat:g.uint16,coverage:new g.Pointer(g.uint16,Ue),count:g.uint16,sequences:new g.LazyArray(new g.Pointer(g.uint16,Br),"count")},3:{substFormat:g.uint16,coverage:new g.Pointer(g.uint16,Ue),count:g.uint16,alternateSet:new g.LazyArray(new g.Pointer(g.uint16,Fr),"count")},4:{substFormat:g.uint16,coverage:new g.Pointer(g.uint16,Ue),count:g.uint16,ligatureSets:new g.LazyArray(new g.Pointer(g.uint16,Rr),"count")},5:Ye,6:$e,7:{substFormat:g.uint16,lookupType:g.uint16,extension:new g.Pointer(g.uint32,Dr)},8:{substFormat:g.uint16,coverage:new g.Pointer(g.uint16,Ue),backtrackCoverage:new g.Array(new g.Pointer(g.uint16,Ue),"backtrackGlyphCount"),lookaheadGlyphCount:g.uint16,lookaheadCoverage:new g.Array(new g.Pointer(g.uint16,Ue),"lookaheadGlyphCount"),glyphCount:g.uint16,substitutes:new g.Array(g.uint16,"glyphCount")}});Dr.versions[7].extension.type=Dr;var Mr=new g.VersionedStruct(g.uint32,{header:{scriptList:new g.Pointer(g.uint16,Re),featureList:new g.Pointer(g.uint16,Ne),lookupList:new g.Pointer(g.uint16,new LookupList(Dr))},65536:{},65537:{featureVariations:new g.Pointer(g.uint32,ft)}}),Nr=new g.Array(g.uint16,g.uint16),Wr=new g.Struct({shrinkageEnableGSUB:new g.Pointer(g.uint16,Nr),shrinkageDisableGSUB:new g.Pointer(g.uint16,Nr),shrinkageEnableGPOS:new g.Pointer(g.uint16,Nr),shrinkageDisableGPOS:new g.Pointer(g.uint16,Nr),shrinkageJstfMax:new g.Pointer(g.uint16,new LookupList(Or)),extensionEnableGSUB:new g.Pointer(g.uint16,Nr),extensionDisableGSUB:new g.Pointer(g.uint16,Nr),extensionEnableGPOS:new g.Pointer(g.uint16,Nr),extensionDisableGPOS:new g.Pointer(g.uint16,Nr),extensionJstfMax:new g.Pointer(g.uint16,new LookupList(Or))}),zr=new g.Array(new g.Pointer(g.uint16,Wr),g.uint16),Ur=new g.Struct({tag:new g.String(4),jstfLangSys:new g.Pointer(g.uint16,zr)}),jr=new g.Struct({extenderGlyphs:new g.Pointer(g.uint16,new g.Array(g.uint16,g.uint16)),defaultLangSys:new g.Pointer(g.uint16,zr),langSysCount:g.uint16,langSysRecords:new g.Array(Ur,"langSysCount")}),Gr=new g.Struct({tag:new g.String(4),script:new g.Pointer(g.uint16,jr,{type:"parent"})}),Vr=new g.Struct({version:g.uint32,scriptCount:g.uint16,scriptList:new g.Array(Gr,"scriptCount")}),Hr=function(){function VariableSizeNumber(r){this._size=r}var r=VariableSizeNumber.prototype;return r.decode=function decode(r,i){switch(this.size(0,i)){case 1:return r.readUInt8();case 2:return r.readUInt16BE();case 3:return r.readUInt24BE();case 4:return r.readUInt32BE()}},r.size=function size(r,i){return y.resolveLength(this._size,null,i)},VariableSizeNumber}(),qr=new g.Struct({entry:new Hr((function(r){return 1+((48&r.parent.entryFormat)>>4)})),outerIndex:function outerIndex(r){return r.entry>>1+(15&r.parent.entryFormat)},innerIndex:function innerIndex(r){return r.entry&(1<<1+(15&r.parent.entryFormat))-1}}),Xr=new g.Struct({entryFormat:g.uint16,mapCount:g.uint16,mapData:new g.Array(qr,"mapCount")}),Zr=new g.Struct({majorVersion:g.uint16,minorVersion:g.uint16,itemVariationStore:new g.Pointer(g.uint32,ot),advanceWidthMapping:new g.Pointer(g.uint32,Xr),LSBMapping:new g.Pointer(g.uint32,Xr),RSBMapping:new g.Pointer(g.uint32,Xr)}),Kr=new g.Struct({format:g.uint32,length:g.uint32,offset:g.uint32}),Yr=new g.Struct({reserved:new g.Reserved(g.uint16,2),cbSignature:g.uint32,signature:new g.Buffer("cbSignature")}),Jr=new g.Struct({ulVersion:g.uint32,usNumSigs:g.uint16,usFlag:g.uint16,signatures:new g.Array(Kr,"usNumSigs"),signatureBlocks:new g.Array(Yr,"usNumSigs")}),Qr=new g.Struct({rangeMaxPPEM:g.uint16,rangeGaspBehavior:new g.Bitfield(g.uint16,["grayscale","gridfit","symmetricSmoothing","symmetricGridfit"])}),$r=new g.Struct({version:g.uint16,numRanges:g.uint16,gaspRanges:new g.Array(Qr,"numRanges")}),en=new g.Struct({pixelSize:g.uint8,maximumWidth:g.uint8,widths:new g.Array(g.uint8,(function(r){return r.parent.parent.maxp.numGlyphs}))}),tn=new g.Struct({version:g.uint16,numRecords:g.int16,sizeDeviceRecord:g.int32,records:new g.Array(en,"numRecords")}),rn=new g.Struct({left:g.uint16,right:g.uint16,value:g.int16}),nn=new g.Struct({firstGlyph:g.uint16,nGlyphs:g.uint16,offsets:new g.Array(g.uint16,"nGlyphs"),max:function max(r){return r.offsets.length&&Math.max.apply(Math,r.offsets)}}),on=new g.Struct({off:function off(r){return r._startOffset-r.parent.parent._startOffset},len:function len(r){return((r.parent.leftTable.max-r.off)/r.parent.rowWidth+1)*(r.parent.rowWidth/2)},values:new g.LazyArray(g.int16,"len")}),an=new g.VersionedStruct("format",{0:{nPairs:g.uint16,searchRange:g.uint16,entrySelector:g.uint16,rangeShift:g.uint16,pairs:new g.Array(rn,"nPairs")},2:{rowWidth:g.uint16,leftTable:new g.Pointer(g.uint16,nn,{type:"parent"}),rightTable:new g.Pointer(g.uint16,nn,{type:"parent"}),array:new g.Pointer(g.uint16,on,{type:"parent"})},3:{glyphCount:g.uint16,kernValueCount:g.uint8,leftClassCount:g.uint8,rightClassCount:g.uint8,flags:g.uint8,kernValue:new g.Array(g.int16,"kernValueCount"),leftClass:new g.Array(g.uint8,"glyphCount"),rightClass:new g.Array(g.uint8,"glyphCount"),kernIndex:new g.Array(g.uint8,(function(r){return r.leftClassCount*r.rightClassCount}))}}),sn=new g.VersionedStruct("version",{0:{subVersion:g.uint16,length:g.uint16,format:g.uint8,coverage:new g.Bitfield(g.uint8,["horizontal","minimum","crossStream","override"]),subtable:an,padding:new g.Reserved(g.uint8,(function(r){return r.length-r._currentOffset}))},1:{length:g.uint32,coverage:new g.Bitfield(g.uint8,[null,null,null,null,null,"variation","crossStream","vertical"]),format:g.uint8,tupleIndex:g.uint16,subtable:an,padding:new g.Reserved(g.uint8,(function(r){return r.length-r._currentOffset}))}}),cn=new g.VersionedStruct(g.uint16,{0:{nTables:g.uint16,tables:new g.Array(sn,"nTables")},1:{reserved:new g.Reserved(g.uint16),nTables:g.uint32,tables:new g.Array(sn,"nTables")}}),ln=new g.Struct({version:g.uint16,numGlyphs:g.uint16,yPels:new g.Array(g.uint8,"numGlyphs")}),un=new g.Struct({version:g.uint16,fontNumber:g.uint32,pitch:g.uint16,xHeight:g.uint16,style:g.uint16,typeFamily:g.uint16,capHeight:g.uint16,symbolSet:g.uint16,typeface:new g.String(16),characterComplement:new g.String(8),fileName:new g.String(6),strokeWeight:new g.String(1),widthType:new g.String(1),serifStyle:g.uint8,reserved:new g.Reserved(g.uint8)}),fn=new g.Struct({bCharSet:g.uint8,xRatio:g.uint8,yStartRatio:g.uint8,yEndRatio:g.uint8}),hn=new g.Struct({yPelHeight:g.uint16,yMax:g.int16,yMin:g.int16}),dn=new g.Struct({recs:g.uint16,startsz:g.uint8,endsz:g.uint8,entries:new g.Array(hn,"recs")}),pn=new g.Struct({version:g.uint16,numRecs:g.uint16,numRatios:g.uint16,ratioRanges:new g.Array(fn,"numRatios"),offsets:new g.Array(g.uint16,"numRatios"),groups:new g.Array(dn,"numRecs")}),gn=new g.Struct({version:g.uint16,ascent:g.int16,descent:g.int16,lineGap:g.int16,advanceHeightMax:g.int16,minTopSideBearing:g.int16,minBottomSideBearing:g.int16,yMaxExtent:g.int16,caretSlopeRise:g.int16,caretSlopeRun:g.int16,caretOffset:g.int16,reserved:new g.Reserved(g.int16,4),metricDataFormat:g.int16,numberOfMetrics:g.uint16}),yn=new g.Struct({advance:g.uint16,bearing:g.int16}),vn=new g.Struct({metrics:new g.LazyArray(yn,(function(r){return r.parent.vhea.numberOfMetrics})),bearings:new g.LazyArray(g.int16,(function(r){return r.parent.maxp.numGlyphs-r.parent.vhea.numberOfMetrics}))}),mn=new g.Fixed(16,"BE",14),bn=new g.Struct({fromCoord:mn,toCoord:mn}),wn=new g.Struct({pairCount:g.uint16,correspondence:new g.Array(bn,"pairCount")}),_n=new g.Struct({version:g.fixed32,axisCount:g.uint32,segment:new g.Array(wn,"axisCount")}),Sn=function(){function UnboundedArrayAccessor(r,i,o){this.type=r,this.stream=i,this.parent=o,this.base=this.stream.pos,this._items=[]}var r=UnboundedArrayAccessor.prototype;return r.getItem=function getItem(r){if(null==this._items[r]){var i=this.stream.pos;this.stream.pos=this.base+this.type.size(null,this.parent)*r,this._items[r]=this.type.decode(this.stream,this.parent),this.stream.pos=i}return this._items[r]},r.inspect=function inspect(){return"[UnboundedArray ".concat(this.type.constructor.name,"]")},UnboundedArrayAccessor}(),xn=function(r){function UnboundedArray(i){return r.call(this,i,0)||this}return _inheritsLoose(UnboundedArray,r),UnboundedArray.prototype.decode=function decode(r,i){return new Sn(this.type,r,i)},UnboundedArray}(g.Array),Cn=function LookupTable(r){void 0===r&&(r=g.uint16),r=new(function(){function Shadow(r){this.type=r}var r=Shadow.prototype;return r.decode=function decode(r,i){return i=i.parent.parent,this.type.decode(r,i)},r.size=function size(r,i){return i=i.parent.parent,this.type.size(r,i)},r.encode=function encode(r,i,o){return o=o.parent.parent,this.type.encode(r,i,o)},Shadow}())(r);var i=new g.Struct({unitSize:g.uint16,nUnits:g.uint16,searchRange:g.uint16,entrySelector:g.uint16,rangeShift:g.uint16}),o=new g.Struct({lastGlyph:g.uint16,firstGlyph:g.uint16,value:r}),u=new g.Struct({lastGlyph:g.uint16,firstGlyph:g.uint16,values:new g.Pointer(g.uint16,new g.Array(r,(function(r){return r.lastGlyph-r.firstGlyph+1})),{type:"parent"})}),p=new g.Struct({glyph:g.uint16,value:r});return new g.VersionedStruct(g.uint16,{0:{values:new xn(r)},2:{binarySearchHeader:i,segments:new g.Array(o,(function(r){return r.binarySearchHeader.nUnits}))},4:{binarySearchHeader:i,segments:new g.Array(u,(function(r){return r.binarySearchHeader.nUnits}))},6:{binarySearchHeader:i,segments:new g.Array(p,(function(r){return r.binarySearchHeader.nUnits}))},8:{firstGlyph:g.uint16,count:g.uint16,values:new g.Array(r,"count")}})};function StateTable(r,i){void 0===r&&(r={}),void 0===i&&(i=g.uint16);var o=Object.assign({newState:g.uint16,flags:g.uint16},r),u=new g.Struct(o),p=new xn(new g.Array(g.uint16,(function(r){return r.nClasses})));return new g.Struct({nClasses:g.uint32,classTable:new g.Pointer(g.uint32,new Cn(i)),stateArray:new g.Pointer(g.uint32,p),entryTable:new g.Pointer(g.uint32,new xn(u))})}var kn=new g.VersionedStruct("format",{0:{deltas:new g.Array(g.int16,32)},1:{deltas:new g.Array(g.int16,32),mappingData:new Cn(g.uint16)},2:{standardGlyph:g.uint16,controlPoints:new g.Array(g.uint16,32)},3:{standardGlyph:g.uint16,controlPoints:new g.Array(g.uint16,32),mappingData:new Cn(g.uint16)}}),Pn=new g.Struct({version:g.fixed32,format:g.uint16,defaultBaseline:g.uint16,subtable:kn}),An=new g.Struct({setting:g.uint16,nameIndex:g.int16,name:function name(r){return r.parent.parent.parent.name.records.fontFeatures[r.nameIndex]}}),En=new g.Struct({feature:g.uint16,nSettings:g.uint16,settingTable:new g.Pointer(g.uint32,new g.Array(An,"nSettings"),{type:"parent"}),featureFlags:new g.Bitfield(g.uint8,[null,null,null,null,null,null,"hasDefault","exclusive"]),defaultSetting:g.uint8,nameIndex:g.int16,name:function name(r){return r.parent.parent.name.records.fontFeatures[r.nameIndex]}}),Tn=new g.Struct({version:g.fixed32,featureNameCount:g.uint16,reserved1:new g.Reserved(g.uint16),reserved2:new g.Reserved(g.uint32),featureNames:new g.Array(En,"featureNameCount")}),On=new g.Struct({axisTag:new g.String(4),minValue:g.fixed32,defaultValue:g.fixed32,maxValue:g.fixed32,flags:g.uint16,nameID:g.uint16,name:function name(r){return r.parent.parent.name.records.fontFeatures[r.nameID]}}),In=new g.Struct({nameID:g.uint16,name:function name(r){return r.parent.parent.name.records.fontFeatures[r.nameID]},flags:g.uint16,coord:new g.Array(g.fixed32,(function(r){return r.parent.axisCount})),postscriptNameID:new g.Optional(g.uint16,(function(r){return r.parent.instanceSize-r._currentOffset>0}))}),Bn=new g.Struct({version:g.fixed32,offsetToData:g.uint16,countSizePairs:g.uint16,axisCount:g.uint16,axisSize:g.uint16,instanceCount:g.uint16,instanceSize:g.uint16,axis:new g.Array(On,"axisCount"),instance:new g.Array(In,"instanceCount")}),Fn=new g.Fixed(16,"BE",14),Ln=function(){function Offset(){}return Offset.decode=function decode(r,i){return i.flags?r.readUInt32BE():2*r.readUInt16BE()},Offset}(),Rn=new g.Struct({version:g.uint16,reserved:new g.Reserved(g.uint16),axisCount:g.uint16,globalCoordCount:g.uint16,globalCoords:new g.Pointer(g.uint32,new g.Array(new g.Array(Fn,"axisCount"),"globalCoordCount")),glyphCount:g.uint16,flags:g.uint16,offsetToData:g.uint32,offsets:new g.Array(new g.Pointer(Ln,"void",{relativeTo:function relativeTo(r){return r.offsetToData},allowNull:!1}),(function(r){return r.glyphCount+1}))}),Dn=new g.Struct({length:g.uint16,coverage:g.uint16,subFeatureFlags:g.uint32,stateTable:new function StateTable1(r,i){void 0===r&&(r={}),void 0===i&&(i=g.uint16);var o=new g.Struct({version:function version(){return 8},firstGlyph:g.uint16,values:new g.Array(g.uint8,g.uint16)}),u=Object.assign({newStateOffset:g.uint16,newState:function newState(r){return(r.newStateOffset-(r.parent.stateArray.base-r.parent._startOffset))/r.parent.nClasses},flags:g.uint16},r),p=new g.Struct(u),y=new xn(new g.Array(g.uint8,(function(r){return r.nClasses})));return new g.Struct({nClasses:g.uint16,classTable:new g.Pointer(g.uint16,o),stateArray:new g.Pointer(g.uint16,y),entryTable:new g.Pointer(g.uint16,new xn(p))})}}),Mn=new g.Struct({justClass:g.uint32,beforeGrowLimit:g.fixed32,beforeShrinkLimit:g.fixed32,afterGrowLimit:g.fixed32,afterShrinkLimit:g.fixed32,growFlags:g.uint16,shrinkFlags:g.uint16}),Nn=new g.Array(Mn,g.uint32),Wn=new g.VersionedStruct("actionType",{0:{lowerLimit:g.fixed32,upperLimit:g.fixed32,order:g.uint16,glyphs:new g.Array(g.uint16,g.uint16)},1:{addGlyph:g.uint16},2:{substThreshold:g.fixed32,addGlyph:g.uint16,substGlyph:g.uint16},3:{},4:{variationAxis:g.uint32,minimumLimit:g.fixed32,noStretchValue:g.fixed32,maximumLimit:g.fixed32},5:{flags:g.uint16,glyph:g.uint16}}),zn=new g.Struct({actionClass:g.uint16,actionType:g.uint16,actionLength:g.uint32,actionData:Wn,padding:new g.Reserved(g.uint8,(function(r){return r.actionLength-r._currentOffset}))}),Un=new g.Array(zn,g.uint32),jn=new g.Struct({lookupTable:new Cn(new g.Pointer(g.uint16,Un))}),Gn=new g.Struct({classTable:new g.Pointer(g.uint16,Dn,{type:"parent"}),wdcOffset:g.uint16,postCompensationTable:new g.Pointer(g.uint16,jn,{type:"parent"}),widthDeltaClusters:new Cn(new g.Pointer(g.uint16,Nn,{type:"parent",relativeTo:function relativeTo(r){return r.wdcOffset}}))}),Vn=new g.Struct({version:g.uint32,format:g.uint16,horizontal:new g.Pointer(g.uint16,Gn),vertical:new g.Pointer(g.uint16,Gn)}),Hn={action:g.uint16},qn={markIndex:g.uint16,currentIndex:g.uint16},Xn={currentInsertIndex:g.uint16,markedInsertIndex:g.uint16},Zn=new g.Struct({items:new xn(new g.Pointer(g.uint32,new Cn))}),Kn=new g.VersionedStruct("type",{0:{stateTable:new StateTable},1:{stateTable:new StateTable(qn),substitutionTable:new g.Pointer(g.uint32,Zn)},2:{stateTable:new StateTable(Hn),ligatureActions:new g.Pointer(g.uint32,new xn(g.uint32)),components:new g.Pointer(g.uint32,new xn(g.uint16)),ligatureList:new g.Pointer(g.uint32,new xn(g.uint16))},4:{lookupTable:new Cn},5:{stateTable:new StateTable(Xn),insertionActions:new g.Pointer(g.uint32,new xn(g.uint16))}}),Yn=new g.Struct({length:g.uint32,coverage:g.uint24,type:g.uint8,subFeatureFlags:g.uint32,table:Kn,padding:new g.Reserved(g.uint8,(function(r){return r.length-r._currentOffset}))}),Jn=new g.Struct({featureType:g.uint16,featureSetting:g.uint16,enableFlags:g.uint32,disableFlags:g.uint32}),Qn=new g.Struct({defaultFlags:g.uint32,chainLength:g.uint32,nFeatureEntries:g.uint32,nSubtables:g.uint32,features:new g.Array(Jn,"nFeatureEntries"),subtables:new g.Array(Yn,"nSubtables")}),$n=new g.Struct({version:g.uint16,unused:new g.Reserved(g.uint16),nChains:g.uint32,chains:new g.Array(Qn,"nChains")}),ei=new g.Struct({left:g.int16,top:g.int16,right:g.int16,bottom:g.int16}),ti=new g.Struct({version:g.fixed32,format:g.uint16,lookupTable:new Cn(ei)}),ri={};ri.cmap=$,ri.head=ee,ri.hhea=te,ri.hmtx=ne,ri.maxp=ie,ri.name=ue,ri["OS/2"]=he,ri.post=pe,ri.fpgm=ye,ri.loca=ve,ri.prep=me,ri["cvt "]=ge,ri.glyf=be,ri["CFF "]=Ot,ri.CFF2=Ot,ri.VORG=Bt,ri.EBLC=Gt,ri.CBLC=ri.EBLC,ri.sbix=Ht,ri.COLR=Zt,ri.CPAL=Yt,ri.BASE=sr,ri.GDEF=pr,ri.GPOS=Ir,ri.GSUB=Mr,ri.JSTF=Vr,ri.HVAR=Zr,ri.DSIG=Jr,ri.gasp=$r,ri.hdmx=tn,ri.kern=cn,ri.LTSH=ln,ri.PCLT=un,ri.VDMX=pn,ri.vhea=gn,ri.vmtx=vn,ri.avar=_n,ri.bsln=Pn,ri.feat=Tn,ri.fvar=Bn,ri.gvar=Rn,ri.just=Vn,ri.morx=$n,ri.opbd=ti;var ni,ii=new g.Struct({tag:new g.String(4),checkSum:g.uint32,offset:new g.Pointer(g.uint32,"void",{type:"global"}),length:g.uint32}),oi=new g.Struct({tag:new g.String(4),numTables:g.uint16,searchRange:g.uint16,entrySelector:g.uint16,rangeShift:g.uint16,tables:new g.Array(ii,"numTables")});function binarySearch(r,i){for(var o=0,u=r.length-1;o<=u;){var p=o+u>>1,g=i(r[p]);if(g<0)u=p-1;else{if(!(g>0))return p;o=p+1}}return-1}function range(r,i){for(var o=[];r<i;)o.push(r++);return o}oi.process=function(){for(var r,i={},o=_createForOfIteratorHelperLoose(this.tables);!(r=o()).done;){var u=r.value;i[u.tag]=u}this.tables=i},oi.preEncode=function(r){var i=[];for(var o in this.tables){var u=this.tables[o];u&&i.push({tag:o,checkSum:0,offset:new g.VoidPointer(ri[o],u),length:ri[o].size(u)})}this.tag="true",this.numTables=i.length,this.tables=i;var p=Math.floor(Math.log(this.numTables)/Math.LN2),y=Math.pow(2,p);this.searchRange=16*y,this.entrySelector=Math.log(y)/Math.LN2,this.rangeShift=16*this.numTables-this.searchRange};try{var ai=o(4914)}catch(r){}var si=(ni=function(){function CmapProcessor(r){if(this.encoding=null,this.cmap=this.findSubtable(r,[[3,10],[0,6],[0,4],[3,1],[0,3],[0,2],[0,1],[0,0]]),!this.cmap&&ai)for(var i,o=_createForOfIteratorHelperLoose(r.tables);!(i=o()).done;){var u=i.value,p=getEncoding(u.platformID,u.encodingID,u.table.language-1);ai.encodingExists(p)&&(this.cmap=u.table,this.encoding=p)}if(!this.cmap)throw new Error("Could not find a supported cmap table");this.uvs=this.findSubtable(r,[[0,5]]),this.uvs&&14!==this.uvs.version&&(this.uvs=null)}var r=CmapProcessor.prototype;return r.findSubtable=function findSubtable(r,i){for(var o,u=_createForOfIteratorHelperLoose(i);!(o=u()).done;)for(var p,g=o.value,y=g[0],w=g[1],_=_createForOfIteratorHelperLoose(r.tables);!(p=_()).done;){var x=p.value;if(x.platformID===y&&x.encodingID===w)return x.table}return null},r.lookup=function lookup(r,i){if(this.encoding){var o=ai.encode(String.fromCodePoint(r),this.encoding);r=0;for(var u=0;u<o.length;u++)r=r<<8|o[u]}else if(i){var p=this.getVariationSelector(r,i);if(p)return p}var g=this.cmap;switch(g.version){case 0:return g.codeMap.get(r)||0;case 4:for(var y=0,w=g.segCount-1;y<=w;){var _=y+w>>1;if(r<g.startCode.get(_))w=_-1;else{if(!(r>g.endCode.get(_))){var x=g.idRangeOffset.get(_),k=void 0;if(0===x)k=r+g.idDelta.get(_);else{var P=x/2+(r-g.startCode.get(_))-(g.segCount-_);0!==(k=g.glyphIndexArray.get(P)||0)&&(k+=g.idDelta.get(_))}return 65535&k}y=_+1}}return 0;case 8:throw new Error("TODO: cmap format 8");case 6:case 10:return g.glyphIndices.get(r-g.firstCode)||0;case 12:case 13:for(var O=0,I=g.nGroups-1;O<=I;){var B=O+I>>1,R=g.groups.get(B);if(r<R.startCharCode)I=B-1;else{if(!(r>R.endCharCode))return 12===g.version?R.glyphID+(r-R.startCharCode):R.glyphID;O=B+1}}return 0;case 14:throw new Error("TODO: cmap format 14");default:throw new Error("Unknown cmap format ".concat(g.version))}},r.getVariationSelector=function getVariationSelector(r,i){if(!this.uvs)return 0;var o=this.uvs.varSelectors.toArray(),u=binarySearch(o,(function(r){return i-r.varSelector})),p=o[u];return-1!==u&&p.defaultUVS&&(u=binarySearch(p.defaultUVS,(function(i){return r<i.startUnicodeValue?-1:r>i.startUnicodeValue+i.additionalCount?1:0}))),-1!==u&&p.nonDefaultUVS&&-1!==(u=binarySearch(p.nonDefaultUVS,(function(i){return r-i.unicodeValue})))?p.nonDefaultUVS[u].glyphID:0},r.getCharacterSet=function getCharacterSet(){var r=this.cmap;switch(r.version){case 0:return range(0,r.codeMap.length);case 4:for(var i=[],o=r.endCode.toArray(),u=0;u<o.length;u++){var p=o[u]+1,g=r.startCode.get(u);i.push.apply(i,range(g,p))}return i;case 8:throw new Error("TODO: cmap format 8");case 6:case 10:return range(r.firstCode,r.firstCode+r.glyphIndices.length);case 12:case 13:for(var y,w=[],_=_createForOfIteratorHelperLoose(r.groups.toArray());!(y=_()).done;){var x=y.value;w.push.apply(w,range(x.startCharCode,x.endCharCode+1))}return w;case 14:throw new Error("TODO: cmap format 14");default:throw new Error("Unknown cmap format ".concat(r.version))}},r.codePointsForGlyph=function codePointsForGlyph(r){var i=this.cmap;switch(i.version){case 0:for(var o=[],u=0;u<256;u++)i.codeMap.get(u)===r&&o.push(u);return o;case 4:for(var p=[],g=0;g<i.segCount;g++)for(var y=i.endCode.get(g),w=i.startCode.get(g),_=i.idRangeOffset.get(g),x=i.idDelta.get(g),k=w;k<=y;k++){var P=0;if(0===_)P=k+x;else{var O=_/2+(k-w)-(i.segCount-g);0!==(P=i.glyphIndexArray.get(O)||0)&&(P+=x)}P===r&&p.push(k)}return p;case 12:for(var I,B=[],R=_createForOfIteratorHelperLoose(i.groups.toArray());!(I=R()).done;){var D=I.value;r>=D.glyphID&&r<=D.glyphID+(D.endCharCode-D.startCharCode)&&B.push(D.startCharCode+(r-D.glyphID))}return B;case 13:for(var N,W=[],U=_createForOfIteratorHelperLoose(i.groups.toArray());!(N=U()).done;){var j=N.value;r===j.glyphID&&W.push.apply(W,range(j.startCharCode,j.endCharCode+1))}return W;default:throw new Error("Unknown cmap format ".concat(i.version))}},CmapProcessor}(),_applyDecoratedDescriptor(ni.prototype,"getCharacterSet",[cache],Object.getOwnPropertyDescriptor(ni.prototype,"getCharacterSet"),ni.prototype),_applyDecoratedDescriptor(ni.prototype,"codePointsForGlyph",[cache],Object.getOwnPropertyDescriptor(ni.prototype,"codePointsForGlyph"),ni.prototype),ni),ci=function(){function KernProcessor(r){this.kern=r.kern}var r=KernProcessor.prototype;return r.process=function process(r,i){for(var o=0;o<r.length-1;o++){var u=r[o].id,p=r[o+1].id;i[o].xAdvance+=this.getKerning(u,p)}},r.getKerning=function getKerning(r,i){for(var o,u=0,p=_createForOfIteratorHelperLoose(this.kern.tables);!(o=p()).done;){var g=o.value;if(!g.coverage.crossStream){switch(g.version){case 0:if(!g.coverage.horizontal)continue;break;case 1:if(g.coverage.vertical||g.coverage.variation)continue;break;default:throw new Error("Unsupported kerning table version ".concat(g.version))}var y=0,w=g.subtable;switch(g.format){case 0:var _=binarySearch(w.pairs,(function(o){return r-o.left||i-o.right}));_>=0&&(y=w.pairs[_].value);break;case 2:var x=0,k=0;x=r>=w.leftTable.firstGlyph&&r<w.leftTable.firstGlyph+w.leftTable.nGlyphs?w.leftTable.offsets[r-w.leftTable.firstGlyph]:w.array.off,i>=w.rightTable.firstGlyph&&i<w.rightTable.firstGlyph+w.rightTable.nGlyphs&&(k=w.rightTable.offsets[i-w.rightTable.firstGlyph]);var P=(x+k-w.array.off)/2;y=w.array.values.get(P);break;case 3:if(r>=w.glyphCount||i>=w.glyphCount)return 0;y=w.kernValue[w.kernIndex[w.leftClass[r]*w.rightClassCount+w.rightClass[i]]];break;default:throw new Error("Unsupported kerning sub-table format ".concat(g.format))}g.coverage.override?u=y:u+=y}}return u},KernProcessor}(),li=function(){function UnicodeLayoutEngine(r){this.font=r}var r=UnicodeLayoutEngine.prototype;return r.positionGlyphs=function positionGlyphs(r,i){for(var o=0,u=0,p=0;p<r.length;p++){r[p].isMark?u=p:(o!==u&&this.positionCluster(r,i,o,u),o=u=p)}return o!==u&&this.positionCluster(r,i,o,u),i},r.positionCluster=function positionCluster(r,i,o,u){var p=r[o],g=p.cbox.copy();p.codePoints.length>1&&(g.minX+=(p.codePoints.length-1)*g.width/p.codePoints.length);for(var y=-i[o].xAdvance,w=0,_=this.font.unitsPerEm/16,x=o+1;x<=u;x++){var k=r[x],P=k.cbox,O=i[x],I=this.getCombiningClass(k.codePoints[0]);if("Not_Reordered"!==I){switch(O.xOffset=O.yOffset=0,I){case"Double_Above":case"Double_Below":O.xOffset+=g.minX-P.width/2-P.minX;break;case"Attached_Below_Left":case"Below_Left":case"Above_Left":O.xOffset+=g.minX-P.minX;break;case"Attached_Above_Right":case"Below_Right":case"Above_Right":O.xOffset+=g.maxX-P.width-P.minX;break;default:O.xOffset+=g.minX+(g.width-P.width)/2-P.minX}switch(I){case"Double_Below":case"Below_Left":case"Below":case"Below_Right":case"Attached_Below_Left":case"Attached_Below":"Attached_Below_Left"!==I&&"Attached_Below"!==I||(g.minY+=_),O.yOffset=-g.minY-P.maxY,g.minY+=P.height;break;case"Double_Above":case"Above_Left":case"Above":case"Above_Right":case"Attached_Above":case"Attached_Above_Right":"Attached_Above"!==I&&"Attached_Above_Right"!==I||(g.maxY+=_),O.yOffset=g.maxY-P.minY,g.maxY+=P.height}O.xAdvance=O.yAdvance=0,O.xOffset+=y,O.yOffset+=w}else y-=O.xAdvance,w-=O.yAdvance}},r.getCombiningClass=function getCombiningClass(r){var i=_.getCombiningClass(r);if(3584==(-256&r))if("Not_Reordered"===i)switch(r){case 3633:case 3636:case 3637:case 3638:case 3639:case 3655:case 3660:case 3645:case 3662:return"Above_Right";case 3761:case 3764:case 3765:case 3766:case 3767:case 3771:case 3788:case 3789:return"Above";case 3772:return"Below"}else if(3642===r)return"Below_Right";switch(i){case"CCC10":case"CCC11":case"CCC12":case"CCC13":case"CCC14":case"CCC15":case"CCC16":case"CCC17":case"CCC18":case"CCC20":case"CCC22":case"CCC29":case"CCC32":case"CCC118":case"CCC129":case"CCC132":return"Below";case"CCC23":return"Attached_Above";case"CCC24":case"CCC107":return"Above_Right";case"CCC25":case"CCC19":return"Above_Left";case"CCC26":case"CCC27":case"CCC28":case"CCC30":case"CCC31":case"CCC33":case"CCC34":case"CCC35":case"CCC36":case"CCC122":case"CCC130":return"Above";case"CCC21":break;case"CCC103":return"Below_Right"}return i},UnicodeLayoutEngine}(),ui=function(){function BBox(r,i,o,u){void 0===r&&(r=1/0),void 0===i&&(i=1/0),void 0===o&&(o=-1/0),void 0===u&&(u=-1/0),this.minX=r,this.minY=i,this.maxX=o,this.maxY=u}var r=BBox.prototype;return r.addPoint=function addPoint(r,i){Math.abs(r)!==1/0&&(r<this.minX&&(this.minX=r),r>this.maxX&&(this.maxX=r)),Math.abs(i)!==1/0&&(i<this.minY&&(this.minY=i),i>this.maxY&&(this.maxY=i))},r.copy=function copy(){return new BBox(this.minX,this.minY,this.maxX,this.maxY)},_createClass(BBox,[{key:"width",get:function get(){return this.maxX-this.minX}},{key:"height",get:function get(){return this.maxY-this.minY}}]),BBox}(),fi={Caucasian_Albanian:"aghb",Arabic:"arab",Imperial_Aramaic:"armi",Armenian:"armn",Avestan:"avst",Balinese:"bali",Bamum:"bamu",Bassa_Vah:"bass",Batak:"batk",Bengali:["bng2","beng"],Bopomofo:"bopo",Brahmi:"brah",Braille:"brai",Buginese:"bugi",Buhid:"buhd",Chakma:"cakm",Canadian_Aboriginal:"cans",Carian:"cari",Cham:"cham",Cherokee:"cher",Coptic:"copt",Cypriot:"cprt",Cyrillic:"cyrl",Devanagari:["dev2","deva"],Deseret:"dsrt",Duployan:"dupl",Egyptian_Hieroglyphs:"egyp",Elbasan:"elba",Ethiopic:"ethi",Georgian:"geor",Glagolitic:"glag",Gothic:"goth",Grantha:"gran",Greek:"grek",Gujarati:["gjr2","gujr"],Gurmukhi:["gur2","guru"],Hangul:"hang",Han:"hani",Hanunoo:"hano",Hebrew:"hebr",Hiragana:"hira",Pahawh_Hmong:"hmng",Katakana_Or_Hiragana:"hrkt",Old_Italic:"ital",Javanese:"java",Kayah_Li:"kali",Katakana:"kana",Kharoshthi:"khar",Khmer:"khmr",Khojki:"khoj",Kannada:["knd2","knda"],Kaithi:"kthi",Tai_Tham:"lana",Lao:"lao ",Latin:"latn",Lepcha:"lepc",Limbu:"limb",Linear_A:"lina",Linear_B:"linb",Lisu:"lisu",Lycian:"lyci",Lydian:"lydi",Mahajani:"mahj",Mandaic:"mand",Manichaean:"mani",Mende_Kikakui:"mend",Meroitic_Cursive:"merc",Meroitic_Hieroglyphs:"mero",Malayalam:["mlm2","mlym"],Modi:"modi",Mongolian:"mong",Mro:"mroo",Meetei_Mayek:"mtei",Myanmar:["mym2","mymr"],Old_North_Arabian:"narb",Nabataean:"nbat",Nko:"nko ",Ogham:"ogam",Ol_Chiki:"olck",Old_Turkic:"orkh",Oriya:["ory2","orya"],Osmanya:"osma",Palmyrene:"palm",Pau_Cin_Hau:"pauc",Old_Permic:"perm",Phags_Pa:"phag",Inscriptional_Pahlavi:"phli",Psalter_Pahlavi:"phlp",Phoenician:"phnx",Miao:"plrd",Inscriptional_Parthian:"prti",Rejang:"rjng",Runic:"runr",Samaritan:"samr",Old_South_Arabian:"sarb",Saurashtra:"saur",Shavian:"shaw",Sharada:"shrd",Siddham:"sidd",Khudawadi:"sind",Sinhala:"sinh",Sora_Sompeng:"sora",Sundanese:"sund",Syloti_Nagri:"sylo",Syriac:"syrc",Tagbanwa:"tagb",Takri:"takr",Tai_Le:"tale",New_Tai_Lue:"talu",Tamil:["tml2","taml"],Tai_Viet:"tavt",Telugu:["tel2","telu"],Tifinagh:"tfng",Tagalog:"tglg",Thaana:"thaa",Thai:"thai",Tibetan:"tibt",Tirhuta:"tirh",Ugaritic:"ugar",Vai:"vai ",Warang_Citi:"wara",Old_Persian:"xpeo",Cuneiform:"xsux",Yi:"yi  ",Inherited:"zinh",Common:"zyyy",Unknown:"zzzz"},hi={};for(var di in fi){var pi=fi[di];if(Array.isArray(pi))for(var gi,yi=_createForOfIteratorHelperLoose(pi);!(gi=yi()).done;){var vi=gi.value;hi[vi]=di}else hi[pi]=di}var mi={arab:!0,hebr:!0,syrc:!0,thaa:!0,cprt:!0,khar:!0,phnx:!0,"nko ":!0,lydi:!0,avst:!0,armi:!0,phli:!0,prti:!0,sarb:!0,orkh:!0,samr:!0,mand:!0,merc:!0,mero:!0,mani:!0,mend:!0,nbat:!0,narb:!0,palm:!0,phlp:!0};function direction(r){return mi[r]?"rtl":"ltr"}for(var bi=function(){function GlyphRun(r,i,o,u,p){if(this.glyphs=r,this.positions=null,this.script=o,this.language=u||null,this.direction=p||direction(o),this.features={},Array.isArray(i))for(var g,y=_createForOfIteratorHelperLoose(i);!(g=y()).done;){var w=g.value;this.features[w]=!0}else"object"==typeof i&&(this.features=i)}return _createClass(GlyphRun,[{key:"advanceWidth",get:function get(){for(var r,i=0,o=_createForOfIteratorHelperLoose(this.positions);!(r=o()).done;){i+=r.value.xAdvance}return i}},{key:"advanceHeight",get:function get(){for(var r,i=0,o=_createForOfIteratorHelperLoose(this.positions);!(r=o()).done;){i+=r.value.yAdvance}return i}},{key:"bbox",get:function get(){for(var r=new ui,i=0,o=0,u=0;u<this.glyphs.length;u++){var p=this.glyphs[u],g=this.positions[u],y=p.bbox;r.addPoint(y.minX+i+g.xOffset,y.minY+o+g.yOffset),r.addPoint(y.maxX+i+g.xOffset,y.maxY+o+g.yOffset),i+=g.xAdvance,o+=g.yAdvance}return r}}]),GlyphRun}(),wi=function GlyphPosition(r,i,o,u){void 0===r&&(r=0),void 0===i&&(i=0),void 0===o&&(o=0),void 0===u&&(u=0),this.xAdvance=r,this.yAdvance=i,this.xOffset=o,this.yOffset=u},_i={allTypographicFeatures:{code:0,exclusive:!1,allTypeFeatures:0},ligatures:{code:1,exclusive:!1,requiredLigatures:0,commonLigatures:2,rareLigatures:4,rebusPictures:8,diphthongLigatures:10,squaredLigatures:12,abbrevSquaredLigatures:14,symbolLigatures:16,contextualLigatures:18,historicalLigatures:20},cursiveConnection:{code:2,exclusive:!0,unconnected:0,partiallyConnected:1,cursive:2},letterCase:{code:3,exclusive:!0},verticalSubstitution:{code:4,exclusive:!1,substituteVerticalForms:0},linguisticRearrangement:{code:5,exclusive:!1,linguisticRearrangement:0},numberSpacing:{code:6,exclusive:!0,monospacedNumbers:0,proportionalNumbers:1,thirdWidthNumbers:2,quarterWidthNumbers:3},smartSwash:{code:8,exclusive:!1,wordInitialSwashes:0,wordFinalSwashes:2,nonFinalSwashes:8},diacritics:{code:9,exclusive:!0,showDiacritics:0,hideDiacritics:1,decomposeDiacritics:2},verticalPosition:{code:10,exclusive:!0,normalPosition:0,superiors:1,inferiors:2,ordinals:3,scientificInferiors:4},fractions:{code:11,exclusive:!0,noFractions:0,verticalFractions:1,diagonalFractions:2},overlappingCharacters:{code:13,exclusive:!1,preventOverlap:0},typographicExtras:{code:14,exclusive:!1,slashedZero:4},mathematicalExtras:{code:15,exclusive:!1,mathematicalGreek:10},ornamentSets:{code:16,exclusive:!0,noOrnaments:0,dingbats:1,piCharacters:2,fleurons:3,decorativeBorders:4,internationalSymbols:5,mathSymbols:6},characterAlternatives:{code:17,exclusive:!0,noAlternates:0},designComplexity:{code:18,exclusive:!0,designLevel1:0,designLevel2:1,designLevel3:2,designLevel4:3,designLevel5:4},styleOptions:{code:19,exclusive:!0,noStyleOptions:0,displayText:1,engravedText:2,illuminatedCaps:3,titlingCaps:4,tallCaps:5},characterShape:{code:20,exclusive:!0,traditionalCharacters:0,simplifiedCharacters:1,JIS1978Characters:2,JIS1983Characters:3,JIS1990Characters:4,traditionalAltOne:5,traditionalAltTwo:6,traditionalAltThree:7,traditionalAltFour:8,traditionalAltFive:9,expertCharacters:10,JIS2004Characters:11,hojoCharacters:12,NLCCharacters:13,traditionalNamesCharacters:14},numberCase:{code:21,exclusive:!0,lowerCaseNumbers:0,upperCaseNumbers:1},textSpacing:{code:22,exclusive:!0,proportionalText:0,monospacedText:1,halfWidthText:2,thirdWidthText:3,quarterWidthText:4,altProportionalText:5,altHalfWidthText:6},transliteration:{code:23,exclusive:!0,noTransliteration:0},annotation:{code:24,exclusive:!0,noAnnotation:0,boxAnnotation:1,roundedBoxAnnotation:2,circleAnnotation:3,invertedCircleAnnotation:4,parenthesisAnnotation:5,periodAnnotation:6,romanNumeralAnnotation:7,diamondAnnotation:8,invertedBoxAnnotation:9,invertedRoundedBoxAnnotation:10},kanaSpacing:{code:25,exclusive:!0,fullWidthKana:0,proportionalKana:1},ideographicSpacing:{code:26,exclusive:!0,fullWidthIdeographs:0,proportionalIdeographs:1,halfWidthIdeographs:2},unicodeDecomposition:{code:27,exclusive:!1,canonicalComposition:0,compatibilityComposition:2,transcodingComposition:4},rubyKana:{code:28,exclusive:!1,rubyKana:2},CJKSymbolAlternatives:{code:29,exclusive:!0,noCJKSymbolAlternatives:0,CJKSymbolAltOne:1,CJKSymbolAltTwo:2,CJKSymbolAltThree:3,CJKSymbolAltFour:4,CJKSymbolAltFive:5},ideographicAlternatives:{code:30,exclusive:!0,noIdeographicAlternatives:0,ideographicAltOne:1,ideographicAltTwo:2,ideographicAltThree:3,ideographicAltFour:4,ideographicAltFive:5},CJKVerticalRomanPlacement:{code:31,exclusive:!0,CJKVerticalRomanCentered:0,CJKVerticalRomanHBaseline:1},italicCJKRoman:{code:32,exclusive:!1,CJKItalicRoman:2},caseSensitiveLayout:{code:33,exclusive:!1,caseSensitiveLayout:0,caseSensitiveSpacing:2},alternateKana:{code:34,exclusive:!1,alternateHorizKana:0,alternateVertKana:2},stylisticAlternatives:{code:35,exclusive:!1,noStylisticAlternates:0,stylisticAltOne:2,stylisticAltTwo:4,stylisticAltThree:6,stylisticAltFour:8,stylisticAltFive:10,stylisticAltSix:12,stylisticAltSeven:14,stylisticAltEight:16,stylisticAltNine:18,stylisticAltTen:20,stylisticAltEleven:22,stylisticAltTwelve:24,stylisticAltThirteen:26,stylisticAltFourteen:28,stylisticAltFifteen:30,stylisticAltSixteen:32,stylisticAltSeventeen:34,stylisticAltEighteen:36,stylisticAltNineteen:38,stylisticAltTwenty:40},contextualAlternates:{code:36,exclusive:!1,contextualAlternates:0,swashAlternates:2,contextualSwashAlternates:4},lowerCase:{code:37,exclusive:!0,defaultLowerCase:0,lowerCaseSmallCaps:1,lowerCasePetiteCaps:2},upperCase:{code:38,exclusive:!0,defaultUpperCase:0,upperCaseSmallCaps:1,upperCasePetiteCaps:2},languageTag:{code:39,exclusive:!0},CJKRomanSpacing:{code:103,exclusive:!0,halfWidthCJKRoman:0,proportionalCJKRoman:1,defaultCJKRoman:2,fullWidthCJKRoman:3}},Si=function feature(r,i){return[_i[r].code,_i[r][i]]},xi={rlig:Si("ligatures","requiredLigatures"),clig:Si("ligatures","contextualLigatures"),dlig:Si("ligatures","rareLigatures"),hlig:Si("ligatures","historicalLigatures"),liga:Si("ligatures","commonLigatures"),hist:Si("ligatures","historicalLigatures"),smcp:Si("lowerCase","lowerCaseSmallCaps"),pcap:Si("lowerCase","lowerCasePetiteCaps"),frac:Si("fractions","diagonalFractions"),dnom:Si("fractions","diagonalFractions"),numr:Si("fractions","diagonalFractions"),afrc:Si("fractions","verticalFractions"),case:Si("caseSensitiveLayout","caseSensitiveLayout"),ccmp:Si("unicodeDecomposition","canonicalComposition"),cpct:Si("CJKVerticalRomanPlacement","CJKVerticalRomanCentered"),valt:Si("CJKVerticalRomanPlacement","CJKVerticalRomanCentered"),swsh:Si("contextualAlternates","swashAlternates"),cswh:Si("contextualAlternates","contextualSwashAlternates"),curs:Si("cursiveConnection","cursive"),c2pc:Si("upperCase","upperCasePetiteCaps"),c2sc:Si("upperCase","upperCaseSmallCaps"),init:Si("smartSwash","wordInitialSwashes"),fin2:Si("smartSwash","wordFinalSwashes"),medi:Si("smartSwash","nonFinalSwashes"),med2:Si("smartSwash","nonFinalSwashes"),fin3:Si("smartSwash","wordFinalSwashes"),fina:Si("smartSwash","wordFinalSwashes"),pkna:Si("kanaSpacing","proportionalKana"),half:Si("textSpacing","halfWidthText"),halt:Si("textSpacing","altHalfWidthText"),hkna:Si("alternateKana","alternateHorizKana"),vkna:Si("alternateKana","alternateVertKana"),ital:Si("italicCJKRoman","CJKItalicRoman"),lnum:Si("numberCase","upperCaseNumbers"),onum:Si("numberCase","lowerCaseNumbers"),mgrk:Si("mathematicalExtras","mathematicalGreek"),calt:Si("contextualAlternates","contextualAlternates"),vrt2:Si("verticalSubstitution","substituteVerticalForms"),vert:Si("verticalSubstitution","substituteVerticalForms"),tnum:Si("numberSpacing","monospacedNumbers"),pnum:Si("numberSpacing","proportionalNumbers"),sups:Si("verticalPosition","superiors"),subs:Si("verticalPosition","inferiors"),ordn:Si("verticalPosition","ordinals"),pwid:Si("textSpacing","proportionalText"),hwid:Si("textSpacing","halfWidthText"),qwid:Si("textSpacing","quarterWidthText"),twid:Si("textSpacing","thirdWidthText"),fwid:Si("textSpacing","proportionalText"),palt:Si("textSpacing","altProportionalText"),trad:Si("characterShape","traditionalCharacters"),smpl:Si("characterShape","simplifiedCharacters"),jp78:Si("characterShape","JIS1978Characters"),jp83:Si("characterShape","JIS1983Characters"),jp90:Si("characterShape","JIS1990Characters"),jp04:Si("characterShape","JIS2004Characters"),expt:Si("characterShape","expertCharacters"),hojo:Si("characterShape","hojoCharacters"),nlck:Si("characterShape","NLCCharacters"),tnam:Si("characterShape","traditionalNamesCharacters"),ruby:Si("rubyKana","rubyKana"),titl:Si("styleOptions","titlingCaps"),zero:Si("typographicExtras","slashedZero"),ss01:Si("stylisticAlternatives","stylisticAltOne"),ss02:Si("stylisticAlternatives","stylisticAltTwo"),ss03:Si("stylisticAlternatives","stylisticAltThree"),ss04:Si("stylisticAlternatives","stylisticAltFour"),ss05:Si("stylisticAlternatives","stylisticAltFive"),ss06:Si("stylisticAlternatives","stylisticAltSix"),ss07:Si("stylisticAlternatives","stylisticAltSeven"),ss08:Si("stylisticAlternatives","stylisticAltEight"),ss09:Si("stylisticAlternatives","stylisticAltNine"),ss10:Si("stylisticAlternatives","stylisticAltTen"),ss11:Si("stylisticAlternatives","stylisticAltEleven"),ss12:Si("stylisticAlternatives","stylisticAltTwelve"),ss13:Si("stylisticAlternatives","stylisticAltThirteen"),ss14:Si("stylisticAlternatives","stylisticAltFourteen"),ss15:Si("stylisticAlternatives","stylisticAltFifteen"),ss16:Si("stylisticAlternatives","stylisticAltSixteen"),ss17:Si("stylisticAlternatives","stylisticAltSeventeen"),ss18:Si("stylisticAlternatives","stylisticAltEighteen"),ss19:Si("stylisticAlternatives","stylisticAltNineteen"),ss20:Si("stylisticAlternatives","stylisticAltTwenty")},Ci=1;Ci<=99;Ci++)xi["cv".concat("00".concat(Ci).slice(-2))]=[_i.characterAlternatives.code,Ci];var ki,Pi={};for(var Ai in xi){var Ei=xi[Ai];null==Pi[Ei[0]]&&(Pi[Ei[0]]={}),Pi[Ei[0]][Ei[1]]=Ai}function mapFeatureStrings(r){var i=r[0],o=r[1];if(isNaN(i))var u=_i[i]&&_i[i].code;else u=i;if(isNaN(o))var p=_i[i]&&_i[i][o];else p=o;return[u,p]}var Ti,Oi=(ki=function(){function AATLookupTable(r){this.table=r}var r=AATLookupTable.prototype;return r.lookup=function lookup(r){switch(this.table.version){case 0:return this.table.values.getItem(r);case 2:case 4:for(var i=0,o=this.table.binarySearchHeader.nUnits-1;i<=o;){var u=i+o>>1;if(65535===(y=this.table.segments[u]).firstGlyph)return null;if(r<y.firstGlyph)o=u-1;else{if(!(r>y.lastGlyph))return 2===this.table.version?y.value:y.values[r-y.firstGlyph];i=u+1}}return null;case 6:for(var p=0,g=this.table.binarySearchHeader.nUnits-1;p<=g;){var y;u=p+g>>1;if(65535===(y=this.table.segments[u]).glyph)return null;if(r<y.glyph)g=u-1;else{if(!(r>y.glyph))return y.value;p=u+1}}return null;case 8:return this.table.values[r-this.table.firstGlyph];default:throw new Error("Unknown lookup table format: ".concat(this.table.version))}},r.glyphsForValue=function glyphsForValue(r){var i=[];switch(this.table.version){case 2:case 4:for(var o,u=_createForOfIteratorHelperLoose(this.table.segments);!(o=u()).done;){var p=o.value;if(2===this.table.version&&p.value===r)i.push.apply(i,range(p.firstGlyph,p.lastGlyph+1));else for(var g=0;g<p.values.length;g++)p.values[g]===r&&i.push(p.firstGlyph+g)}break;case 6:for(var y,w=_createForOfIteratorHelperLoose(this.table.segments);!(y=w()).done;){var _=y.value;_.value===r&&i.push(_.glyph)}break;case 8:for(var x=0;x<this.table.values.length;x++)this.table.values[x]===r&&i.push(this.table.firstGlyph+x);break;default:throw new Error("Unknown lookup table format: ".concat(this.table.version))}return i},AATLookupTable}(),_applyDecoratedDescriptor(ki.prototype,"glyphsForValue",[cache],Object.getOwnPropertyDescriptor(ki.prototype,"glyphsForValue"),ki.prototype),ki),Ii=function(){function AATStateMachine(r){this.stateTable=r,this.lookupTable=new Oi(r.classTable)}var r=AATStateMachine.prototype;return r.process=function process(r,i,o){for(var u=0,p=i?r.length-1:0,g=i?-1:1;1===g&&p<=r.length||-1===g&&p>=-1;){var y=null,w=1,_=!0;p===r.length||-1===p?w=0:65535===(y=r[p]).id?w=2:null==(w=this.lookupTable.lookup(y.id))&&(w=1);var x=this.stateTable.stateArray.getItem(u)[w],k=this.stateTable.entryTable.getItem(x);0!==w&&2!==w&&(o(y,k,p),_=!(16384&k.flags)),u=k.newState,_&&(p+=g)}return r},r.traverse=function traverse(r,i,o){if(void 0===i&&(i=0),void 0===o&&(o=new Set),!o.has(i)){o.add(i);for(var u=this.stateTable,p=u.nClasses,g=u.stateArray,y=u.entryTable,w=g.getItem(i),_=4;_<p;_++)for(var x,k=w[_],P=y.getItem(k),O=_createForOfIteratorHelperLoose(this.lookupTable.glyphsForValue(_));!(x=O()).done;){var I=x.value;r.enter&&r.enter(I,P),0!==P.newState&&this.traverse(r,P.newState,o),r.exit&&r.exit(I,P)}}},AATStateMachine}(),Bi=4194304,Fi=(Ti=function(){function AATMorxProcessor(r){this.processIndicRearragement=this.processIndicRearragement.bind(this),this.processContextualSubstitution=this.processContextualSubstitution.bind(this),this.processLigature=this.processLigature.bind(this),this.processNoncontextualSubstitutions=this.processNoncontextualSubstitutions.bind(this),this.processGlyphInsertion=this.processGlyphInsertion.bind(this),this.font=r,this.morx=r.morx,this.inputCache=null}var r=AATMorxProcessor.prototype;return r.process=function process(r,i){void 0===i&&(i={});for(var o,u=_createForOfIteratorHelperLoose(this.morx.chains);!(o=u()).done;){for(var p,g=o.value,y=g.defaultFlags,w=_createForOfIteratorHelperLoose(g.features);!(p=w()).done;){var _,x=p.value;(_=i[x.featureType])&&(_[x.featureSetting]?(y&=x.disableFlags,y|=x.enableFlags):!1===_[x.featureSetting]&&(y|=~x.disableFlags,y&=~x.enableFlags))}for(var k,P=_createForOfIteratorHelperLoose(g.subtables);!(k=P()).done;){var O=k.value;O.subFeatureFlags&y&&this.processSubtable(O,r)}}for(var I=r.length-1;I>=0;)65535===r[I].id&&r.splice(I,1),I--;return r},r.processSubtable=function processSubtable(r,i){if(this.subtable=r,this.glyphs=i,4!==this.subtable.type){this.ligatureStack=[],this.markedGlyph=null,this.firstGlyph=null,this.lastGlyph=null,this.markedIndex=null;var o=this.getStateMachine(r),u=this.getProcessor(),p=!!(this.subtable.coverage&Bi);return o.process(this.glyphs,p,u)}this.processNoncontextualSubstitutions(this.subtable,this.glyphs)},r.getStateMachine=function getStateMachine(r){return new Ii(r.table.stateTable)},r.getProcessor=function getProcessor(){switch(this.subtable.type){case 0:return this.processIndicRearragement;case 1:return this.processContextualSubstitution;case 2:return this.processLigature;case 4:return this.processNoncontextualSubstitutions;case 5:return this.processGlyphInsertion;default:throw new Error("Invalid morx subtable type: ".concat(this.subtable.type))}},r.processIndicRearragement=function processIndicRearragement(r,i,o){32768&i.flags&&(this.firstGlyph=o),8192&i.flags&&(this.lastGlyph=o),function reorderGlyphs(r,i,o,u){switch(i){case 0:return r;case 1:return swap(r,[o,1],[u,0]);case 2:return swap(r,[o,0],[u,1]);case 3:return swap(r,[o,1],[u,1]);case 4:return swap(r,[o,2],[u,0]);case 5:return swap(r,[o,2],[u,0],!0,!1);case 6:return swap(r,[o,0],[u,2]);case 7:return swap(r,[o,0],[u,2],!1,!0);case 8:return swap(r,[o,1],[u,2]);case 9:return swap(r,[o,1],[u,2],!1,!0);case 10:return swap(r,[o,2],[u,1]);case 11:return swap(r,[o,2],[u,1],!0,!1);case 12:return swap(r,[o,2],[u,2]);case 13:return swap(r,[o,2],[u,2],!0,!1);case 14:return swap(r,[o,2],[u,2],!1,!0);case 15:return swap(r,[o,2],[u,2],!0,!0);default:throw new Error("Unknown verb: ".concat(i))}}(this.glyphs,15&i.flags,this.firstGlyph,this.lastGlyph)},r.processContextualSubstitution=function processContextualSubstitution(r,i,o){var u=this.subtable.table.substitutionTable.items;if(65535!==i.markIndex){var p=u.getItem(i.markIndex),g=new Oi(p);r=this.glyphs[this.markedGlyph],(y=g.lookup(r.id))&&(this.glyphs[this.markedGlyph]=this.font.getGlyph(y,r.codePoints))}if(65535!==i.currentIndex){var y,w=u.getItem(i.currentIndex),_=new Oi(w);r=this.glyphs[o],(y=_.lookup(r.id))&&(this.glyphs[o]=this.font.getGlyph(y,r.codePoints))}32768&i.flags&&(this.markedGlyph=o)},r.processLigature=function processLigature(r,i,o){if(32768&i.flags&&this.ligatureStack.push(o),8192&i.flags){for(var u,p=this.subtable.table.ligatureActions,g=this.subtable.table.components,y=this.subtable.table.ligatureList,w=i.action,_=!1,x=0,k=[],P=[];!_;){var O,I=this.ligatureStack.pop();(O=k).unshift.apply(O,this.glyphs[I].codePoints);var B=p.getItem(w++);_=!!(2147483648&B);var R=!!(1073741824&B),D=(1073741823&B)<<2>>2;if(D+=this.glyphs[I].id,x+=g.getItem(D),_||R){var N=y.getItem(x);this.glyphs[I]=this.font.getGlyph(N,k),P.push(I),x=0,k=[]}else this.glyphs[I]=this.font.getGlyph(65535)}(u=this.ligatureStack).push.apply(u,P)}},r.processNoncontextualSubstitutions=function processNoncontextualSubstitutions(r,i,o){var u=new Oi(r.table.lookupTable);for(o=0;o<i.length;o++){var p=i[o];if(65535!==p.id){var g=u.lookup(p.id);g&&(i[o]=this.font.getGlyph(g,p.codePoints))}}},r._insertGlyphs=function _insertGlyphs(r,i,o,u){for(var p,g=[];o--;){var y=this.subtable.table.insertionActions.getItem(i++);g.push(this.font.getGlyph(y))}u||r++,(p=this.glyphs).splice.apply(p,[r,0].concat(g))},r.processGlyphInsertion=function processGlyphInsertion(r,i,o){if(32768&i.flags&&(this.markedIndex=o),65535!==i.markedInsertIndex){var u=(31&i.flags)>>>5,p=!!(1024&i.flags);this._insertGlyphs(this.markedIndex,i.markedInsertIndex,u,p)}if(65535!==i.currentInsertIndex){var g=(992&i.flags)>>>5,y=!!(2048&i.flags);this._insertGlyphs(o,i.currentInsertIndex,g,y)}},r.getSupportedFeatures=function getSupportedFeatures(){for(var r,i=[],o=_createForOfIteratorHelperLoose(this.morx.chains);!(r=o()).done;)for(var u,p=_createForOfIteratorHelperLoose(r.value.features);!(u=p()).done;){var g=u.value;i.push([g.featureType,g.featureSetting])}return i},r.generateInputs=function generateInputs(r){return this.inputCache||this.generateInputCache(),this.inputCache[r]||[]},r.generateInputCache=function generateInputCache(){this.inputCache={};for(var r,i=_createForOfIteratorHelperLoose(this.morx.chains);!(r=i()).done;)for(var o,u=r.value,p=u.defaultFlags,g=_createForOfIteratorHelperLoose(u.subtables);!(o=g()).done;){var y=o.value;y.subFeatureFlags&p&&this.generateInputsForSubtable(y)}},r.generateInputsForSubtable=function generateInputsForSubtable(r){var i=this;if(2===r.type){if(!!(r.coverage&Bi))throw new Error("Reverse subtable, not supported.");this.subtable=r,this.ligatureStack=[];var o=this.getStateMachine(r),u=this.getProcessor(),p=[],g=[];this.glyphs=[],o.traverse({enter:function enter(r,o){var y=i.glyphs;g.push({glyphs:y.slice(),ligatureStack:i.ligatureStack.slice()});var w=i.font.getGlyph(r);p.push(w),y.push(p[p.length-1]),u(y[y.length-1],o,y.length-1);for(var _=0,x=0,k=0;k<y.length&&_<=1;k++)65535!==y[k].id&&(_++,x=y[k].id);if(1===_){var P=p.map((function(r){return r.id})),O=i.inputCache[x];O?O.push(P):i.inputCache[x]=[P]}},exit:function exit(){var r=g.pop();i.glyphs=r.glyphs,i.ligatureStack=r.ligatureStack,p.pop()}})}},AATMorxProcessor}(),_applyDecoratedDescriptor(Ti.prototype,"getStateMachine",[cache],Object.getOwnPropertyDescriptor(Ti.prototype,"getStateMachine"),Ti.prototype),Ti);function swap(r,i,o,u,p){void 0===u&&(u=!1),void 0===p&&(p=!1);var g=r.splice(o[0]-(o[1]-1),o[1]);p&&g.reverse();var y=r.splice.apply(r,[i[0],i[1]].concat(g));return u&&y.reverse(),r.splice.apply(r,[o[0]-(i[1]-1),0].concat(y)),r}var Li=function(){function AATLayoutEngine(r){this.font=r,this.morxProcessor=new Fi(r),this.fallbackPosition=!1}var r=AATLayoutEngine.prototype;return r.substitute=function substitute(r){"rtl"===r.direction&&r.glyphs.reverse(),this.morxProcessor.process(r.glyphs,function mapOTToAAT(r){var i={};for(var o in r){var u;(u=xi[o])&&(null==i[u[0]]&&(i[u[0]]={}),i[u[0]][u[1]]=r[o])}return i}(r.features))},r.getAvailableFeatures=function getAvailableFeatures(r,i){return function mapAATToOT(r){var i={};if(Array.isArray(r))for(var o=0;o<r.length;o++){var u,p=mapFeatureStrings(r[o]);(u=Pi[p[0]]&&Pi[p[0]][p[1]])&&(i[u]=!0)}else if("object"==typeof r)for(var g in r){var y=r[g];for(var w in y){var _=void 0,x=mapFeatureStrings([g,w]);y[w]&&(_=Pi[x[0]]&&Pi[x[0]][x[1]])&&(i[_]=!0)}}return Object.keys(i)}(this.morxProcessor.getSupportedFeatures())},r.stringsForGlyph=function stringsForGlyph(r){for(var i,o=this.morxProcessor.generateInputs(r),u=new Set,p=_createForOfIteratorHelperLoose(o);!(i=p()).done;){var g=i.value;this._addStrings(g,0,u,"")}return u},r._addStrings=function _addStrings(r,i,o,u){for(var p,g=_createForOfIteratorHelperLoose(this.font._cmapProcessor.codePointsForGlyph(r[i]));!(p=g()).done;){var y=p.value,w=u+String.fromCodePoint(y);i<r.length-1?this._addStrings(r,i+1,o,w):o.add(w)}},AATLayoutEngine}(),Ri=function(){function ShapingPlan(r,i,o){this.font=r,this.script=i,this.direction=o,this.stages=[],this.globalFeatures={},this.allFeatures={}}var r=ShapingPlan.prototype;return r._addFeatures=function _addFeatures(r,i){for(var o,u=this.stages.length-1,p=this.stages[u],g=_createForOfIteratorHelperLoose(r);!(o=g()).done;){var y=o.value;null==this.allFeatures[y]&&(p.push(y),this.allFeatures[y]=u,i&&(this.globalFeatures[y]=!0))}},r.add=function add(r,i){if(void 0===i&&(i=!0),0===this.stages.length&&this.stages.push([]),"string"==typeof r&&(r=[r]),Array.isArray(r))this._addFeatures(r,i);else{if("object"!=typeof r)throw new Error("Unsupported argument to ShapingPlan#add");this._addFeatures(r.global||[],!0),this._addFeatures(r.local||[],!1)}},r.addStage=function addStage(r,i){"function"==typeof r?this.stages.push(r,[]):(this.stages.push([]),this.add(r,i))},r.setFeatureOverrides=function setFeatureOverrides(r){if(Array.isArray(r))this.add(r);else if("object"==typeof r)for(var i in r)if(r[i])this.add(i);else if(null!=this.allFeatures[i]){var o=this.stages[this.allFeatures[i]];o.splice(o.indexOf(i),1),delete this.allFeatures[i],delete this.globalFeatures[i]}},r.assignGlobalFeatures=function assignGlobalFeatures(r){for(var i,o=_createForOfIteratorHelperLoose(r);!(i=o()).done;){var u=i.value;for(var p in this.globalFeatures)u.features[p]=!0}},r.process=function process(r,i,o){for(var u,p=_createForOfIteratorHelperLoose(this.stages);!(u=p()).done;){var g=u.value;"function"==typeof g?o||g(this.font,i,this):g.length>0&&r.applyFeatures(g,i,o)}},ShapingPlan}(),Di=["rvrn"],Mi=["ccmp","locl","rlig","mark","mkmk"],Ni=["frac","numr","dnom"],Wi=["calt","clig","liga","rclt","curs","kern"],zi={ltr:["ltra","ltrm"],rtl:["rtla","rtlm"]},Ui=function(){function DefaultShaper(){}return DefaultShaper.plan=function plan(r,i,o){this.planPreprocessing(r),this.planFeatures(r),this.planPostprocessing(r,o),r.assignGlobalFeatures(i),this.assignFeatures(r,i)},DefaultShaper.planPreprocessing=function planPreprocessing(r){r.add({global:[].concat(Di,zi[r.direction]),local:Ni})},DefaultShaper.planFeatures=function planFeatures(r){},DefaultShaper.planPostprocessing=function planPostprocessing(r,i){r.add([].concat(Mi,Wi)),r.setFeatureOverrides(i)},DefaultShaper.assignFeatures=function assignFeatures(r,i){for(var o=0;o<i.length;o++){var u=i[o];if(8260===u.codePoints[0]){for(var p=o,g=o+1;p>0&&_.isDigit(i[p-1].codePoints[0]);)i[p-1].features.numr=!0,i[p-1].features.frac=!0,p--;for(;g<i.length&&_.isDigit(i[g].codePoints[0]);)i[g].features.dnom=!0,i[g].features.frac=!0,g++;u.features.frac=!0,o=g-1}}},DefaultShaper}();_defineProperty(Ui,"zeroMarkWidths","AFTER_GPOS");var ji=new x(p("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","base64")),Gi=["isol","fina","fin2","fin3","medi","med2","init"],Vi=0,Hi=6,qi="isol",Xi="fina",Zi="fin2",Ki="medi",Yi="med2",Ji="init",Qi=null,$i=[[[Qi,Qi,0],[Qi,qi,2],[Qi,qi,1],[Qi,qi,2],[Qi,qi,1],[Qi,qi,6]],[[Qi,Qi,0],[Qi,qi,2],[Qi,qi,1],[Qi,qi,2],[Qi,Zi,5],[Qi,qi,6]],[[Qi,Qi,0],[Qi,qi,2],[Ji,Xi,1],[Ji,Xi,3],[Ji,Xi,4],[Ji,Xi,6]],[[Qi,Qi,0],[Qi,qi,2],[Ki,Xi,1],[Ki,Xi,3],[Ki,Xi,4],[Ki,Xi,6]],[[Qi,Qi,0],[Qi,qi,2],[Yi,qi,1],[Yi,qi,2],[Yi,Zi,5],[Yi,qi,6]],[[Qi,Qi,0],[Qi,qi,2],[qi,qi,1],[qi,qi,2],[qi,Zi,5],[qi,qi,6]],[[Qi,Qi,0],[Qi,qi,2],[Qi,qi,1],[Qi,qi,2],[Qi,"fin3",5],[Qi,qi,6]]],eo=function(r){function ArabicShaper(){return r.apply(this,arguments)||this}return _inheritsLoose(ArabicShaper,r),ArabicShaper.planFeatures=function planFeatures(r){r.add(["ccmp","locl"]);for(var i=0;i<Gi.length;i++){var o=Gi[i];r.addStage(o,!1)}r.addStage("mset")},ArabicShaper.assignFeatures=function assignFeatures(i,o){r.assignFeatures.call(this,i,o);for(var u=-1,p=0,g=[],y=0;y<o.length;y++){var w,_,x=getShapingClass((I=o[y]).codePoints[0]);if(x!==Hi){var k=$i[p][x];_=k[0],w=k[1],p=k[2],_!==Qi&&-1!==u&&(g[u]=_),g[y]=w,u=y}else g[y]=Qi}for(var P=0;P<o.length;P++){var O,I=o[P];(O=g[P])&&(I.features[O]=!0)}},ArabicShaper}(Ui);function getShapingClass(r){var i=ji.get(r);if(i)return i-1;var o=_.getCategory(r);return"Mn"===o||"Me"===o||"Cf"===o?Hi:Vi}var to=function(){function GlyphIterator(r,i){this.glyphs=r,this.reset(i)}var r=GlyphIterator.prototype;return r.reset=function reset(r,i){void 0===r&&(r={}),void 0===i&&(i=0),this.options=r,this.flags=r.flags||{},this.markAttachmentType=r.markAttachmentType||0,this.index=i},r.shouldIgnore=function shouldIgnore(r){return this.flags.ignoreMarks&&r.isMark||this.flags.ignoreBaseGlyphs&&r.isBase||this.flags.ignoreLigatures&&r.isLigature||this.markAttachmentType&&r.isMark&&r.markAttachmentType!==this.markAttachmentType},r.move=function move(r){for(this.index+=r;0<=this.index&&this.index<this.glyphs.length&&this.shouldIgnore(this.glyphs[this.index]);)this.index+=r;return 0>this.index||this.index>=this.glyphs.length?null:this.glyphs[this.index]},r.next=function next(){return this.move(1)},r.prev=function prev(){return this.move(-1)},r.peek=function peek(r){void 0===r&&(r=1);var i=this.index,o=this.increment(r);return this.index=i,o},r.peekIndex=function peekIndex(r){void 0===r&&(r=1);var i=this.index;this.increment(r);var o=this.index;return this.index=i,o},r.increment=function increment(r){void 0===r&&(r=1);var i=r<0?-1:1;for(r=Math.abs(r);r--;)this.move(i);return this.glyphs[this.index]},_createClass(GlyphIterator,[{key:"cur",get:function get(){return this.glyphs[this.index]||null}}]),GlyphIterator}(),ro=["DFLT","dflt","latn"],no=function(){function OTProcessor(r,i){this.font=r,this.table=i,this.script=null,this.scriptTag=null,this.language=null,this.languageTag=null,this.features={},this.lookups={},this.variationsIndex=r._variationProcessor?this.findVariationsIndex(r._variationProcessor.normalizedCoords):-1,this.selectScript(),this.glyphs=[],this.positions=[],this.ligatureID=1,this.currentFeature=null}var r=OTProcessor.prototype;return r.findScript=function findScript(r){if(null==this.table.scriptList)return null;Array.isArray(r)||(r=[r]);for(var i,o=_createForOfIteratorHelperLoose(r);!(i=o()).done;)for(var u,p=i.value,g=_createForOfIteratorHelperLoose(this.table.scriptList);!(u=g()).done;){var y=u.value;if(y.tag===p)return y}return null},r.selectScript=function selectScript(r,i,o){var u,p=!1;if(!this.script||r!==this.scriptTag){if((u=this.findScript(r))||(u=this.findScript(ro)),!u)return this.scriptTag;this.scriptTag=u.tag,this.script=u.script,this.language=null,this.languageTag=null,p=!0}if(o&&o===this.direction||(this.direction=o||direction(r)),i&&i.length<4&&(i+=" ".repeat(4-i.length)),!i||i!==this.languageTag){this.language=null;for(var g,y=_createForOfIteratorHelperLoose(this.script.langSysRecords);!(g=y()).done;){var w=g.value;if(w.tag===i){this.language=w.langSys,this.languageTag=w.tag;break}}this.language||(this.language=this.script.defaultLangSys,this.languageTag=null),p=!0}if(p&&(this.features={},this.language))for(var _,x=_createForOfIteratorHelperLoose(this.language.featureIndexes);!(_=x()).done;){var k=_.value,P=this.table.featureList[k],O=this.substituteFeatureForVariations(k);this.features[P.tag]=O||P.feature}return this.scriptTag},r.lookupsForFeatures=function lookupsForFeatures(r,i){void 0===r&&(r=[]);for(var o,u=[],p=_createForOfIteratorHelperLoose(r);!(o=p()).done;){var g=o.value,y=this.features[g];if(y)for(var w,_=_createForOfIteratorHelperLoose(y.lookupListIndexes);!(w=_()).done;){var x=w.value;i&&-1!==i.indexOf(x)||u.push({feature:g,index:x,lookup:this.table.lookupList.get(x)})}}return u.sort((function(r,i){return r.index-i.index})),u},r.substituteFeatureForVariations=function substituteFeatureForVariations(r){if(-1===this.variationsIndex)return null;for(var i,o=_createForOfIteratorHelperLoose(this.table.featureVariations.featureVariationRecords[this.variationsIndex].featureTableSubstitution.substitutions);!(i=o()).done;){var u=i.value;if(u.featureIndex===r)return u.alternateFeatureTable}return null},r.findVariationsIndex=function findVariationsIndex(r){var i=this.table.featureVariations;if(!i)return-1;for(var o=i.featureVariationRecords,u=0;u<o.length;u++){var p=o[u].conditionSet.conditionTable;if(this.variationConditionsMatch(p,r))return u}return-1},r.variationConditionsMatch=function variationConditionsMatch(r,i){return r.every((function(r){var o=r.axisIndex<i.length?i[r.axisIndex]:0;return r.filterRangeMinValue<=o&&o<=r.filterRangeMaxValue}))},r.applyFeatures=function applyFeatures(r,i,o){var u=this.lookupsForFeatures(r);this.applyLookups(u,i,o)},r.applyLookups=function applyLookups(r,i,o){this.glyphs=i,this.positions=o,this.glyphIterator=new to(i);for(var u,p=_createForOfIteratorHelperLoose(r);!(u=p()).done;){var g=u.value,y=g.feature,w=g.lookup;for(this.currentFeature=y,this.glyphIterator.reset(w.flags);this.glyphIterator.index<i.length;)if(y in this.glyphIterator.cur.features){for(var _,x=_createForOfIteratorHelperLoose(w.subTables);!(_=x()).done;){var k=_.value;if(this.applyLookup(w.lookupType,k))break}this.glyphIterator.next()}else this.glyphIterator.next()}},r.applyLookup=function applyLookup(r,i){throw new Error("applyLookup must be implemented by subclasses")},r.applyLookupList=function applyLookupList(r){for(var i,o=this.glyphIterator.options,u=this.glyphIterator.index,p=_createForOfIteratorHelperLoose(r);!(i=p()).done;){var g=i.value;this.glyphIterator.reset(o,u),this.glyphIterator.increment(g.sequenceIndex);var y=this.table.lookupList.get(g.lookupListIndex);this.glyphIterator.reset(y.flags,this.glyphIterator.index);for(var w,_=_createForOfIteratorHelperLoose(y.subTables);!(w=_()).done;){var x=w.value;if(this.applyLookup(y.lookupType,x))break}}return this.glyphIterator.reset(o,u),!0},r.coverageIndex=function coverageIndex(r,i){switch(null==i&&(i=this.glyphIterator.cur.id),r.version){case 1:return r.glyphs.indexOf(i);case 2:for(var o,u=_createForOfIteratorHelperLoose(r.rangeRecords);!(o=u()).done;){var p=o.value;if(p.start<=i&&i<=p.end)return p.startCoverageIndex+i-p.start}}return-1},r.match=function match(r,i,o,u){for(var p=this.glyphIterator.index,g=this.glyphIterator.increment(r),y=0;y<i.length&&g&&o(i[y],g);)u&&u.push(this.glyphIterator.index),y++,g=this.glyphIterator.next();return this.glyphIterator.index=p,!(y<i.length)&&(u||!0)},r.sequenceMatches=function sequenceMatches(r,i){return this.match(r,i,(function(r,i){return r===i.id}))},r.sequenceMatchIndices=function sequenceMatchIndices(r,i){var o=this;return this.match(r,i,(function(r,i){return o.currentFeature in i.features&&r===i.id}),[])},r.coverageSequenceMatches=function coverageSequenceMatches(r,i){var o=this;return this.match(r,i,(function(r,i){return o.coverageIndex(r,i.id)>=0}))},r.getClassID=function getClassID(r,i){switch(i.version){case 1:var o=r-i.startGlyph;if(o>=0&&o<i.classValueArray.length)return i.classValueArray[o];break;case 2:for(var u,p=_createForOfIteratorHelperLoose(i.classRangeRecord);!(u=p()).done;){var g=u.value;if(g.start<=r&&r<=g.end)return g.class}}return 0},r.classSequenceMatches=function classSequenceMatches(r,i,o){var u=this;return this.match(r,i,(function(r,i){return r===u.getClassID(i.id,o)}))},r.applyContext=function applyContext(r){switch(r.version){case 1:var i=this.coverageIndex(r.coverage);if(-1===i)return!1;for(var o,u=r.ruleSets[i],p=_createForOfIteratorHelperLoose(u);!(o=p()).done;){var g=o.value;if(this.sequenceMatches(1,g.input))return this.applyLookupList(g.lookupRecords)}break;case 2:if(-1===this.coverageIndex(r.coverage))return!1;if(-1===(i=this.getClassID(this.glyphIterator.cur.id,r.classDef)))return!1;for(var y,w=_createForOfIteratorHelperLoose(u=r.classSet[i]);!(y=w()).done;){var _=y.value;if(this.classSequenceMatches(1,_.classes,r.classDef))return this.applyLookupList(_.lookupRecords)}break;case 3:if(this.coverageSequenceMatches(0,r.coverages))return this.applyLookupList(r.lookupRecords)}return!1},r.applyChainingContext=function applyChainingContext(r){switch(r.version){case 1:var i=this.coverageIndex(r.coverage);if(-1===i)return!1;for(var o,u=_createForOfIteratorHelperLoose(r.chainRuleSets[i]);!(o=u()).done;){var p=o.value;if(this.sequenceMatches(-p.backtrack.length,p.backtrack)&&this.sequenceMatches(1,p.input)&&this.sequenceMatches(1+p.input.length,p.lookahead))return this.applyLookupList(p.lookupRecords)}break;case 2:if(-1===this.coverageIndex(r.coverage))return!1;i=this.getClassID(this.glyphIterator.cur.id,r.inputClassDef);var g=r.chainClassSet[i];if(!g)return!1;for(var y,w=_createForOfIteratorHelperLoose(g);!(y=w()).done;){var _=y.value;if(this.classSequenceMatches(-_.backtrack.length,_.backtrack,r.backtrackClassDef)&&this.classSequenceMatches(1,_.input,r.inputClassDef)&&this.classSequenceMatches(1+_.input.length,_.lookahead,r.lookaheadClassDef))return this.applyLookupList(_.lookupRecords)}break;case 3:if(this.coverageSequenceMatches(-r.backtrackGlyphCount,r.backtrackCoverage)&&this.coverageSequenceMatches(0,r.inputCoverage)&&this.coverageSequenceMatches(r.inputGlyphCount,r.lookaheadCoverage))return this.applyLookupList(r.lookupRecords)}return!1},OTProcessor}(),io=function(){function GlyphInfo(r,i,o,u){if(void 0===o&&(o=[]),this._font=r,this.codePoints=o,this.id=i,this.features={},Array.isArray(u))for(var p=0;p<u.length;p++){var g=u[p];this.features[g]=!0}else"object"==typeof u&&Object.assign(this.features,u);this.ligatureID=null,this.ligatureComponent=null,this.isLigated=!1,this.cursiveAttachment=null,this.markAttachment=null,this.shaperInfo=null,this.substituted=!1,this.isMultiplied=!1}return GlyphInfo.prototype.copy=function copy(){return new GlyphInfo(this._font,this.id,this.codePoints,this.features)},_createClass(GlyphInfo,[{key:"id",get:function get(){return this._id},set:function set(r){this._id=r,this.substituted=!0;var i=this._font.GDEF;if(i&&i.glyphClassDef){var o=no.prototype.getClassID(r,i.glyphClassDef);this.isBase=1===o,this.isLigature=2===o,this.isMark=3===o,this.markAttachmentType=i.markAttachClassDef?no.prototype.getClassID(r,i.markAttachClassDef):0}else this.isMark=this.codePoints.length>0&&this.codePoints.every(_.isMark),this.isBase=!this.isMark,this.isLigature=this.codePoints.length>1,this.markAttachmentType=0}}]),GlyphInfo}(),oo=function(r){function HangulShaper(){return r.apply(this,arguments)||this}return _inheritsLoose(HangulShaper,r),HangulShaper.planFeatures=function planFeatures(r){r.add(["ljmo","vjmo","tjmo"],!1)},HangulShaper.assignFeatures=function assignFeatures(r,i){for(var o=0,u=0;u<i.length;){var p,g=i[u].codePoints[0],y=getType(g),w=go[o][y];switch(p=w[0],o=w[1],p){case uo:r.font.hasGlyphForCodePoint(g)||(u=decompose(i,u,r.font));break;case fo:u=compose(i,u,r.font);break;case ho:reorderToneMark(i,u,r.font);break;case po:u=insertDottedCircle(i,u,r.font)}u++}},HangulShaper}(Ui);_defineProperty(oo,"zeroMarkWidths","NONE");var ao=44032,so=4352,co=4449,lo=4519;function getType(r){return function isL(r){return 4352<=r&&r<=4447||43360<=r&&r<=43388}(r)?1:function isV(r){return 4448<=r&&r<=4519||55216<=r&&r<=55238}(r)?2:function isT(r){return 4520<=r&&r<=4607||55243<=r&&r<=55291}(r)?3:function isLV(r){return r-ao<11173&&(r-ao)%28==0}(r)?4:function isLVT(r){return ao<=r&&r<=55204}(r)?5:function isTone(r){return 12334<=r&&r<=12335}(r)?6:0}var uo=1,fo=2,ho=4,po=5,go=[[[0,0],[0,1],[0,0],[0,0],[uo,2],[uo,3],[po,0]],[[0,0],[0,1],[fo,2],[0,0],[uo,2],[uo,3],[po,0]],[[0,0],[0,1],[0,0],[fo,3],[uo,2],[uo,3],[ho,0]],[[0,0],[0,1],[0,0],[0,0],[uo,2],[uo,3],[ho,0]]];function getGlyph(r,i,o){return new io(r,r.glyphForCodePoint(i).id,[i],o)}function decompose(r,i,o){var u=r[i],p=u.codePoints[0]-ao,g=lo+p%28,y=so+(p=p/28|0)/21|0,w=co+p%21;if(!o.hasGlyphForCodePoint(y)||!o.hasGlyphForCodePoint(w)||g!==lo&&!o.hasGlyphForCodePoint(g))return i;var _=getGlyph(o,y,u.features);_.features.ljmo=!0;var x=getGlyph(o,w,u.features);x.features.vjmo=!0;var k=[_,x];if(g>lo){var P=getGlyph(o,g,u.features);P.features.tjmo=!0,k.push(P)}return r.splice.apply(r,[i,1].concat(k)),i+k.length-1}function compose(r,i,o){var u,p,g,y,w=r[i],_=getType(r[i].codePoints[0]),x=r[i-1].codePoints[0],k=getType(x);if(4===k&&3===_)u=x,y=w;else{2===_?(p=r[i-1],g=w):(p=r[i-2],g=r[i-1],y=w);var P=p.codePoints[0],O=g.codePoints[0];(function isCombiningL(r){return so<=r&&r<=4370})(P)&&function isCombiningV(r){return co<=r&&r<=4469}(O)&&(u=ao+28*(21*(P-so)+(O-co)))}var I=y&&y.codePoints[0]||lo;if(null!=u&&(I===lo||function isCombiningT(r){return 1<=r&&r<=4546}(I))){var B=u+(I-lo);if(o.hasGlyphForCodePoint(B)){var R=2===k?3:2;return r.splice(i-R+1,R,getGlyph(o,B,w.features)),i-R+1}}return p&&(p.features.ljmo=!0),g&&(g.features.vjmo=!0),y&&(y.features.tjmo=!0),4===k?(decompose(r,i-1,o),i+1):i}function reorderToneMark(r,i,o){var u=r[i],p=r[i].codePoints[0];if(0!==o.glyphForCodePoint(p).advanceWidth){var g=function getLength(r){switch(getType(r)){case 4:case 5:return 1;case 2:return 2;case 3:return 3}}(r[i-1].codePoints[0]);return r.splice(i,1),r.splice(i-g,0,u)}}function insertDottedCircle(r,i,o){var u=r[i],p=r[i].codePoints[0];if(o.hasGlyphForCodePoint(9676)){var g=getGlyph(o,9676,u.features),y=0===o.glyphForCodePoint(p).advanceWidth?i:i+1;r.splice(y,0,g),i++}return i}var yo={stateTable:[[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0],[0,2,3,4,5,6,7,8,9,0,10,11,11,12,13,14,15,16,17],[0,0,0,18,19,20,21,22,23,0,24,0,0,25,26,0,0,27,0],[0,0,0,28,29,30,31,32,33,0,34,0,0,35,36,0,0,37,0],[0,0,0,38,5,7,7,8,9,0,10,0,0,0,13,0,0,16,0],[0,39,0,0,0,40,41,0,9,0,10,0,0,0,42,0,39,0,0],[0,0,0,0,43,44,44,8,9,0,0,0,0,12,43,0,0,0,0],[0,0,0,0,43,44,44,8,9,0,0,0,0,0,43,0,0,0,0],[0,0,0,45,46,47,48,49,9,0,10,0,0,0,42,0,0,0,0],[0,0,0,0,0,50,0,0,51,0,10,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,0,0,0,0,52,0,0,0,0,0,0,0,0],[0,0,0,53,54,55,56,57,58,0,59,0,0,60,61,0,0,62,0],[0,0,0,4,5,7,7,8,9,0,10,0,0,0,13,0,0,16,0],[0,63,64,0,0,40,41,0,9,0,10,0,0,0,42,0,63,0,0],[0,2,3,4,5,6,7,8,9,0,10,11,11,12,13,0,2,16,0],[0,0,0,18,65,20,21,22,23,0,24,0,0,25,26,0,0,27,0],[0,0,0,0,66,67,67,8,9,0,10,0,0,0,68,0,0,0,0],[0,0,0,69,0,70,70,0,71,0,72,0,0,0,0,0,0,0,0],[0,0,0,73,19,74,74,22,23,0,24,0,0,0,26,0,0,27,0],[0,75,0,0,0,76,77,0,23,0,24,0,0,0,78,0,75,0,0],[0,0,0,0,79,80,80,22,23,0,0,0,0,25,79,0,0,0,0],[0,0,0,18,19,20,74,22,23,0,24,0,0,25,26,0,0,27,0],[0,0,0,81,82,83,84,85,23,0,24,0,0,0,78,0,0,0,0],[0,0,0,0,0,86,0,0,87,0,24,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,0,0,0,0,88,0,0,0,0,0,0,0,0],[0,0,0,18,19,74,74,22,23,0,24,0,0,0,26,0,0,27,0],[0,89,90,0,0,76,77,0,23,0,24,0,0,0,78,0,89,0,0],[0,0,0,0,91,92,92,22,23,0,24,0,0,0,93,0,0,0,0],[0,0,0,94,29,95,31,32,33,0,34,0,0,0,36,0,0,37,0],[0,96,0,0,0,97,98,0,33,0,34,0,0,0,99,0,96,0,0],[0,0,0,0,100,101,101,32,33,0,0,0,0,35,100,0,0,0,0],[0,0,0,0,100,101,101,32,33,0,0,0,0,0,100,0,0,0,0],[0,0,0,102,103,104,105,106,33,0,34,0,0,0,99,0,0,0,0],[0,0,0,0,0,107,0,0,108,0,34,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,0,0,0,0,109,0,0,0,0,0,0,0,0],[0,0,0,28,29,95,31,32,33,0,34,0,0,0,36,0,0,37,0],[0,110,111,0,0,97,98,0,33,0,34,0,0,0,99,0,110,0,0],[0,0,0,0,112,113,113,32,33,0,34,0,0,0,114,0,0,0,0],[0,0,0,0,5,7,7,8,9,0,10,0,0,0,13,0,0,16,0],[0,0,0,115,116,117,118,8,9,0,10,0,0,119,120,0,0,16,0],[0,0,0,0,0,121,121,0,9,0,10,0,0,0,42,0,0,0,0],[0,39,0,122,0,123,123,8,9,0,10,0,0,0,42,0,39,0,0],[0,124,64,0,0,0,0,0,0,0,0,0,0,0,0,0,124,0,0],[0,39,0,0,0,121,125,0,9,0,10,0,0,0,42,0,39,0,0],[0,0,0,0,0,126,126,8,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,46,47,48,49,9,0,10,0,0,0,42,0,0,0,0],[0,0,0,0,0,47,47,49,9,0,10,0,0,0,42,0,0,0,0],[0,0,0,0,0,127,127,49,9,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,128,127,127,49,9,0,0,0,0,0,0,0,0,0,0],[0,0,0,129,130,131,132,133,9,0,10,0,0,0,42,0,0,0,0],[0,0,0,0,0,0,0,0,0,0,10,0,0,0,0,0,0,0,0],[0,0,0,0,0,50,0,0,0,0,10,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,0,0,0,0,134,0,0,0,0,0,0,0,0],[0,0,0,135,54,56,56,57,58,0,59,0,0,0,61,0,0,62,0],[0,136,0,0,0,137,138,0,58,0,59,0,0,0,139,0,136,0,0],[0,0,0,0,140,141,141,57,58,0,0,0,0,60,140,0,0,0,0],[0,0,0,0,140,141,141,57,58,0,0,0,0,0,140,0,0,0,0],[0,0,0,142,143,144,145,146,58,0,59,0,0,0,139,0,0,0,0],[0,0,0,0,0,147,0,0,148,0,59,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,0,0,0,0,149,0,0,0,0,0,0,0,0],[0,0,0,53,54,56,56,57,58,0,59,0,0,0,61,0,0,62,0],[0,150,151,0,0,137,138,0,58,0,59,0,0,0,139,0,150,0,0],[0,0,0,0,152,153,153,57,58,0,59,0,0,0,154,0,0,0,0],[0,0,0,155,116,156,157,8,9,0,10,0,0,158,120,0,0,16,0],[0,0,0,0,0,121,121,0,9,0,10,0,0,0,0,0,0,0,0],[0,75,3,4,5,159,160,8,161,0,162,0,11,12,163,0,75,16,0],[0,0,0,0,0,40,164,0,9,0,10,0,0,0,42,0,0,0,0],[0,0,0,0,165,44,44,8,9,0,0,0,0,0,165,0,0,0,0],[0,124,64,0,0,40,164,0,9,0,10,0,0,0,42,0,124,0,0],[0,0,0,0,0,70,70,0,71,0,72,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,0,0,71,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,166,0,0,167,0,72,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,0,0,0,0,168,0,0,0,0,0,0,0,0],[0,0,0,0,19,74,74,22,23,0,24,0,0,0,26,0,0,27,0],[0,0,0,0,79,80,80,22,23,0,0,0,0,0,79,0,0,0,0],[0,0,0,169,170,171,172,22,23,0,24,0,0,173,174,0,0,27,0],[0,0,0,0,0,175,175,0,23,0,24,0,0,0,78,0,0,0,0],[0,75,0,176,0,177,177,22,23,0,24,0,0,0,78,0,75,0,0],[0,178,90,0,0,0,0,0,0,0,0,0,0,0,0,0,178,0,0],[0,75,0,0,0,175,179,0,23,0,24,0,0,0,78,0,75,0,0],[0,0,0,0,0,180,180,22,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,82,83,84,85,23,0,24,0,0,0,78,0,0,0,0],[0,0,0,0,0,83,83,85,23,0,24,0,0,0,78,0,0,0,0],[0,0,0,0,0,181,181,85,23,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,182,181,181,85,23,0,0,0,0,0,0,0,0,0,0],[0,0,0,183,184,185,186,187,23,0,24,0,0,0,78,0,0,0,0],[0,0,0,0,0,0,0,0,0,0,24,0,0,0,0,0,0,0,0],[0,0,0,0,0,86,0,0,0,0,24,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,0,0,0,0,188,0,0,0,0,0,0,0,0],[0,0,0,189,170,190,191,22,23,0,24,0,0,192,174,0,0,27,0],[0,0,0,0,0,175,175,0,23,0,24,0,0,0,0,0,0,0,0],[0,0,0,0,0,76,193,0,23,0,24,0,0,0,78,0,0,0,0],[0,0,0,0,194,80,80,22,23,0,0,0,0,0,194,0,0,0,0],[0,178,90,0,0,76,193,0,23,0,24,0,0,0,78,0,178,0,0],[0,0,0,0,29,95,31,32,33,0,34,0,0,0,36,0,0,37,0],[0,0,0,0,100,101,101,32,33,0,0,0,0,0,100,0,0,0,0],[0,0,0,195,196,197,198,32,33,0,34,0,0,199,200,0,0,37,0],[0,0,0,0,0,201,201,0,33,0,34,0,0,0,99,0,0,0,0],[0,96,0,202,0,203,203,32,33,0,34,0,0,0,99,0,96,0,0],[0,204,111,0,0,0,0,0,0,0,0,0,0,0,0,0,204,0,0],[0,96,0,0,0,201,205,0,33,0,34,0,0,0,99,0,96,0,0],[0,0,0,0,0,206,206,32,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,103,104,105,106,33,0,34,0,0,0,99,0,0,0,0],[0,0,0,0,0,104,104,106,33,0,34,0,0,0,99,0,0,0,0],[0,0,0,0,0,207,207,106,33,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,208,207,207,106,33,0,0,0,0,0,0,0,0,0,0],[0,0,0,209,210,211,212,213,33,0,34,0,0,0,99,0,0,0,0],[0,0,0,0,0,0,0,0,0,0,34,0,0,0,0,0,0,0,0],[0,0,0,0,0,107,0,0,0,0,34,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,0,0,0,0,214,0,0,0,0,0,0,0,0],[0,0,0,215,196,216,217,32,33,0,34,0,0,218,200,0,0,37,0],[0,0,0,0,0,201,201,0,33,0,34,0,0,0,0,0,0,0,0],[0,0,0,0,0,97,219,0,33,0,34,0,0,0,99,0,0,0,0],[0,0,0,0,220,101,101,32,33,0,0,0,0,0,220,0,0,0,0],[0,204,111,0,0,97,219,0,33,0,34,0,0,0,99,0,204,0,0],[0,0,0,221,116,222,222,8,9,0,10,0,0,0,120,0,0,16,0],[0,223,0,0,0,40,224,0,9,0,10,0,0,0,42,0,223,0,0],[0,0,0,0,225,44,44,8,9,0,0,0,0,119,225,0,0,0,0],[0,0,0,115,116,117,222,8,9,0,10,0,0,119,120,0,0,16,0],[0,0,0,115,116,222,222,8,9,0,10,0,0,0,120,0,0,16,0],[0,226,64,0,0,40,224,0,9,0,10,0,0,0,42,0,226,0,0],[0,0,0,0,0,0,0,0,9,0,0,0,0,0,0,0,0,0,0],[0,39,0,0,0,121,121,0,9,0,10,0,0,0,42,0,39,0,0],[0,0,0,0,0,44,44,8,9,0,0,0,0,0,0,0,0,0,0],[0,0,0,227,0,228,229,0,9,0,10,0,0,230,0,0,0,0,0],[0,39,0,122,0,121,121,0,9,0,10,0,0,0,42,0,39,0,0],[0,0,0,0,0,0,0,8,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,231,231,49,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,232,0,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,130,131,132,133,9,0,10,0,0,0,42,0,0,0,0],[0,0,0,0,0,131,131,133,9,0,10,0,0,0,42,0,0,0,0],[0,0,0,0,0,233,233,133,9,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,234,233,233,133,9,0,0,0,0,0,0,0,0,0,0],[0,0,0,235,236,237,238,239,9,0,10,0,0,0,42,0,0,0,0],[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,54,56,56,57,58,0,59,0,0,0,61,0,0,62,0],[0,0,0,240,241,242,243,57,58,0,59,0,0,244,245,0,0,62,0],[0,0,0,0,0,246,246,0,58,0,59,0,0,0,139,0,0,0,0],[0,136,0,247,0,248,248,57,58,0,59,0,0,0,139,0,136,0,0],[0,249,151,0,0,0,0,0,0,0,0,0,0,0,0,0,249,0,0],[0,136,0,0,0,246,250,0,58,0,59,0,0,0,139,0,136,0,0],[0,0,0,0,0,251,251,57,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,143,144,145,146,58,0,59,0,0,0,139,0,0,0,0],[0,0,0,0,0,144,144,146,58,0,59,0,0,0,139,0,0,0,0],[0,0,0,0,0,252,252,146,58,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,253,252,252,146,58,0,0,0,0,0,0,0,0,0,0],[0,0,0,254,255,256,257,258,58,0,59,0,0,0,139,0,0,0,0],[0,0,0,0,0,0,0,0,0,0,59,0,0,0,0,0,0,0,0],[0,0,0,0,0,147,0,0,0,0,59,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,0,0,0,0,259,0,0,0,0,0,0,0,0],[0,0,0,260,241,261,262,57,58,0,59,0,0,263,245,0,0,62,0],[0,0,0,0,0,246,246,0,58,0,59,0,0,0,0,0,0,0,0],[0,0,0,0,0,137,264,0,58,0,59,0,0,0,139,0,0,0,0],[0,0,0,0,265,141,141,57,58,0,0,0,0,0,265,0,0,0,0],[0,249,151,0,0,137,264,0,58,0,59,0,0,0,139,0,249,0,0],[0,0,0,221,116,222,222,8,9,0,10,0,0,0,120,0,0,16,0],[0,0,0,0,225,44,44,8,9,0,0,0,0,158,225,0,0,0,0],[0,0,0,155,116,156,222,8,9,0,10,0,0,158,120,0,0,16,0],[0,0,0,155,116,222,222,8,9,0,10,0,0,0,120,0,0,16,0],[0,0,0,0,43,266,266,8,161,0,24,0,0,12,267,0,0,0,0],[0,75,0,176,43,268,268,269,161,0,24,0,0,0,267,0,75,0,0],[0,0,0,0,0,270,0,0,271,0,162,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,0,0,0,0,272,0,0,0,0,0,0,0,0],[0,273,274,0,0,40,41,0,9,0,10,0,0,0,42,0,273,0,0],[0,0,0,40,0,123,123,8,9,0,10,0,0,0,42,0,0,0,0],[0,0,0,0,0,121,275,0,9,0,10,0,0,0,42,0,0,0,0],[0,0,0,0,0,0,0,0,0,0,72,0,0,0,0,0,0,0,0],[0,0,0,0,0,166,0,0,0,0,72,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,0,0,0,0,276,0,0,0,0,0,0,0,0],[0,0,0,277,170,278,278,22,23,0,24,0,0,0,174,0,0,27,0],[0,279,0,0,0,76,280,0,23,0,24,0,0,0,78,0,279,0,0],[0,0,0,0,281,80,80,22,23,0,0,0,0,173,281,0,0,0,0],[0,0,0,169,170,171,278,22,23,0,24,0,0,173,174,0,0,27,0],[0,0,0,169,170,278,278,22,23,0,24,0,0,0,174,0,0,27,0],[0,282,90,0,0,76,280,0,23,0,24,0,0,0,78,0,282,0,0],[0,0,0,0,0,0,0,0,23,0,0,0,0,0,0,0,0,0,0],[0,75,0,0,0,175,175,0,23,0,24,0,0,0,78,0,75,0,0],[0,0,0,0,0,80,80,22,23,0,0,0,0,0,0,0,0,0,0],[0,0,0,283,0,284,285,0,23,0,24,0,0,286,0,0,0,0,0],[0,75,0,176,0,175,175,0,23,0,24,0,0,0,78,0,75,0,0],[0,0,0,0,0,0,0,22,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,287,287,85,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,288,0,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,184,185,186,187,23,0,24,0,0,0,78,0,0,0,0],[0,0,0,0,0,185,185,187,23,0,24,0,0,0,78,0,0,0,0],[0,0,0,0,0,289,289,187,23,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,290,289,289,187,23,0,0,0,0,0,0,0,0,0,0],[0,0,0,291,292,293,294,295,23,0,24,0,0,0,78,0,0,0,0],[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,277,170,278,278,22,23,0,24,0,0,0,174,0,0,27,0],[0,0,0,0,281,80,80,22,23,0,0,0,0,192,281,0,0,0,0],[0,0,0,189,170,190,278,22,23,0,24,0,0,192,174,0,0,27,0],[0,0,0,189,170,278,278,22,23,0,24,0,0,0,174,0,0,27,0],[0,0,0,76,0,177,177,22,23,0,24,0,0,0,78,0,0,0,0],[0,0,0,0,0,175,296,0,23,0,24,0,0,0,78,0,0,0,0],[0,0,0,297,196,298,298,32,33,0,34,0,0,0,200,0,0,37,0],[0,299,0,0,0,97,300,0,33,0,34,0,0,0,99,0,299,0,0],[0,0,0,0,301,101,101,32,33,0,0,0,0,199,301,0,0,0,0],[0,0,0,195,196,197,298,32,33,0,34,0,0,199,200,0,0,37,0],[0,0,0,195,196,298,298,32,33,0,34,0,0,0,200,0,0,37,0],[0,302,111,0,0,97,300,0,33,0,34,0,0,0,99,0,302,0,0],[0,0,0,0,0,0,0,0,33,0,0,0,0,0,0,0,0,0,0],[0,96,0,0,0,201,201,0,33,0,34,0,0,0,99,0,96,0,0],[0,0,0,0,0,101,101,32,33,0,0,0,0,0,0,0,0,0,0],[0,0,0,303,0,304,305,0,33,0,34,0,0,306,0,0,0,0,0],[0,96,0,202,0,201,201,0,33,0,34,0,0,0,99,0,96,0,0],[0,0,0,0,0,0,0,32,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,307,307,106,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,308,0,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,210,211,212,213,33,0,34,0,0,0,99,0,0,0,0],[0,0,0,0,0,211,211,213,33,0,34,0,0,0,99,0,0,0,0],[0,0,0,0,0,309,309,213,33,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,310,309,309,213,33,0,0,0,0,0,0,0,0,0,0],[0,0,0,311,312,313,314,315,33,0,34,0,0,0,99,0,0,0,0],[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,297,196,298,298,32,33,0,34,0,0,0,200,0,0,37,0],[0,0,0,0,301,101,101,32,33,0,0,0,0,218,301,0,0,0,0],[0,0,0,215,196,216,298,32,33,0,34,0,0,218,200,0,0,37,0],[0,0,0,215,196,298,298,32,33,0,34,0,0,0,200,0,0,37,0],[0,0,0,97,0,203,203,32,33,0,34,0,0,0,99,0,0,0,0],[0,0,0,0,0,201,316,0,33,0,34,0,0,0,99,0,0,0,0],[0,0,0,0,116,222,222,8,9,0,10,0,0,0,120,0,0,16,0],[0,0,0,0,225,44,44,8,9,0,0,0,0,0,225,0,0,0,0],[0,0,0,317,318,319,320,8,9,0,10,0,0,321,322,0,0,16,0],[0,223,0,323,0,123,123,8,9,0,10,0,0,0,42,0,223,0,0],[0,223,0,0,0,121,324,0,9,0,10,0,0,0,42,0,223,0,0],[0,0,0,325,318,326,327,8,9,0,10,0,0,328,322,0,0,16,0],[0,0,0,64,0,121,121,0,9,0,10,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,0,0,9,0,0,0,0,230,0,0,0,0,0],[0,0,0,227,0,228,121,0,9,0,10,0,0,230,0,0,0,0,0],[0,0,0,227,0,121,121,0,9,0,10,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,0,49,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,46,0,0],[0,0,0,0,0,329,329,133,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,330,0,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,236,237,238,239,9,0,10,0,0,0,42,0,0,0,0],[0,0,0,0,0,237,237,239,9,0,10,0,0,0,42,0,0,0,0],[0,0,0,0,0,331,331,239,9,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,332,331,331,239,9,0,0,0,0,0,0,0,0,0,0],[0,0,0,333,40,121,334,0,9,0,10,0,0,0,42,0,0,0,0],[0,0,0,335,241,336,336,57,58,0,59,0,0,0,245,0,0,62,0],[0,337,0,0,0,137,338,0,58,0,59,0,0,0,139,0,337,0,0],[0,0,0,0,339,141,141,57,58,0,0,0,0,244,339,0,0,0,0],[0,0,0,240,241,242,336,57,58,0,59,0,0,244,245,0,0,62,0],[0,0,0,240,241,336,336,57,58,0,59,0,0,0,245,0,0,62,0],[0,340,151,0,0,137,338,0,58,0,59,0,0,0,139,0,340,0,0],[0,0,0,0,0,0,0,0,58,0,0,0,0,0,0,0,0,0,0],[0,136,0,0,0,246,246,0,58,0,59,0,0,0,139,0,136,0,0],[0,0,0,0,0,141,141,57,58,0,0,0,0,0,0,0,0,0,0],[0,0,0,341,0,342,343,0,58,0,59,0,0,344,0,0,0,0,0],[0,136,0,247,0,246,246,0,58,0,59,0,0,0,139,0,136,0,0],[0,0,0,0,0,0,0,57,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,345,345,146,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,346,0,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,255,256,257,258,58,0,59,0,0,0,139,0,0,0,0],[0,0,0,0,0,256,256,258,58,0,59,0,0,0,139,0,0,0,0],[0,0,0,0,0,347,347,258,58,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,348,347,347,258,58,0,0,0,0,0,0,0,0,0,0],[0,0,0,349,350,351,352,353,58,0,59,0,0,0,139,0,0,0,0],[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,335,241,336,336,57,58,0,59,0,0,0,245,0,0,62,0],[0,0,0,0,339,141,141,57,58,0,0,0,0,263,339,0,0,0,0],[0,0,0,260,241,261,336,57,58,0,59,0,0,263,245,0,0,62,0],[0,0,0,260,241,336,336,57,58,0,59,0,0,0,245,0,0,62,0],[0,0,0,137,0,248,248,57,58,0,59,0,0,0,139,0,0,0,0],[0,0,0,0,0,246,354,0,58,0,59,0,0,0,139,0,0,0,0],[0,0,0,0,0,126,126,8,23,0,0,0,0,0,0,0,0,0,0],[0,355,90,0,0,121,125,0,9,0,10,0,0,0,42,0,355,0,0],[0,0,0,0,0,356,356,269,23,0,0,0,0,0,0,0,0,0,0],[0,0,0,357,358,359,360,361,161,0,162,0,0,0,362,0,0,0,0],[0,0,0,0,0,0,0,0,0,0,162,0,0,0,0,0,0,0,0],[0,0,0,0,0,270,0,0,0,0,162,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,0,0,0,0,363,0,0,0,0,0,0,0,0],[0,0,0,364,116,365,366,8,161,0,162,0,0,367,120,0,0,16,0],[0,0,0,0,0,368,368,0,161,0,162,0,0,0,0,0,0,0,0],[0,0,0,40,0,121,121,0,9,0,10,0,0,0,42,0,0,0,0],[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,170,278,278,22,23,0,24,0,0,0,174,0,0,27,0],[0,0,0,0,281,80,80,22,23,0,0,0,0,0,281,0,0,0,0],[0,0,0,369,370,371,372,22,23,0,24,0,0,373,374,0,0,27,0],[0,279,0,375,0,177,177,22,23,0,24,0,0,0,78,0,279,0,0],[0,279,0,0,0,175,376,0,23,0,24,0,0,0,78,0,279,0,0],[0,0,0,377,370,378,379,22,23,0,24,0,0,380,374,0,0,27,0],[0,0,0,90,0,175,175,0,23,0,24,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,0,0,23,0,0,0,0,286,0,0,0,0,0],[0,0,0,283,0,284,175,0,23,0,24,0,0,286,0,0,0,0,0],[0,0,0,283,0,175,175,0,23,0,24,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,0,85,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,82,0,0],[0,0,0,0,0,381,381,187,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,382,0,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,292,293,294,295,23,0,24,0,0,0,78,0,0,0,0],[0,0,0,0,0,293,293,295,23,0,24,0,0,0,78,0,0,0,0],[0,0,0,0,0,383,383,295,23,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,384,383,383,295,23,0,0,0,0,0,0,0,0,0,0],[0,0,0,385,76,175,386,0,23,0,24,0,0,0,78,0,0,0,0],[0,0,0,76,0,175,175,0,23,0,24,0,0,0,78,0,0,0,0],[0,0,0,0,196,298,298,32,33,0,34,0,0,0,200,0,0,37,0],[0,0,0,0,301,101,101,32,33,0,0,0,0,0,301,0,0,0,0],[0,0,0,387,388,389,390,32,33,0,34,0,0,391,392,0,0,37,0],[0,299,0,393,0,203,203,32,33,0,34,0,0,0,99,0,299,0,0],[0,299,0,0,0,201,394,0,33,0,34,0,0,0,99,0,299,0,0],[0,0,0,395,388,396,397,32,33,0,34,0,0,398,392,0,0,37,0],[0,0,0,111,0,201,201,0,33,0,34,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,0,0,33,0,0,0,0,306,0,0,0,0,0],[0,0,0,303,0,304,201,0,33,0,34,0,0,306,0,0,0,0,0],[0,0,0,303,0,201,201,0,33,0,34,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,0,106,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,103,0,0],[0,0,0,0,0,399,399,213,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,400,0,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,312,313,314,315,33,0,34,0,0,0,99,0,0,0,0],[0,0,0,0,0,313,313,315,33,0,34,0,0,0,99,0,0,0,0],[0,0,0,0,0,401,401,315,33,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,402,401,401,315,33,0,0,0,0,0,0,0,0,0,0],[0,0,0,403,97,201,404,0,33,0,34,0,0,0,99,0,0,0,0],[0,0,0,97,0,201,201,0,33,0,34,0,0,0,99,0,0,0,0],[0,0,0,405,318,406,406,8,9,0,10,0,0,0,322,0,0,16,0],[0,407,0,0,0,40,408,0,9,0,10,0,0,0,42,0,407,0,0],[0,0,0,0,409,44,44,8,9,0,0,0,0,321,409,0,0,0,0],[0,0,0,317,318,319,406,8,9,0,10,0,0,321,322,0,0,16,0],[0,0,0,317,318,406,406,8,9,0,10,0,0,0,322,0,0,16,0],[0,410,64,0,0,40,408,0,9,0,10,0,0,0,42,0,410,0,0],[0,223,0,0,0,121,121,0,9,0,10,0,0,0,42,0,223,0,0],[0,223,0,323,0,121,121,0,9,0,10,0,0,0,42,0,223,0,0],[0,0,0,405,318,406,406,8,9,0,10,0,0,0,322,0,0,16,0],[0,0,0,0,409,44,44,8,9,0,0,0,0,328,409,0,0,0,0],[0,0,0,325,318,326,406,8,9,0,10,0,0,328,322,0,0,16,0],[0,0,0,325,318,406,406,8,9,0,10,0,0,0,322,0,0,16,0],[0,0,0,0,0,0,0,133,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,130,0,0],[0,0,0,0,0,411,411,239,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,412,0,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,40,121,334,0,9,0,10,0,0,0,42,0,0,0,0],[0,0,0,0,413,0,0,0,9,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,241,336,336,57,58,0,59,0,0,0,245,0,0,62,0],[0,0,0,0,339,141,141,57,58,0,0,0,0,0,339,0,0,0,0],[0,0,0,414,415,416,417,57,58,0,59,0,0,418,419,0,0,62,0],[0,337,0,420,0,248,248,57,58,0,59,0,0,0,139,0,337,0,0],[0,337,0,0,0,246,421,0,58,0,59,0,0,0,139,0,337,0,0],[0,0,0,422,415,423,424,57,58,0,59,0,0,425,419,0,0,62,0],[0,0,0,151,0,246,246,0,58,0,59,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,0,0,58,0,0,0,0,344,0,0,0,0,0],[0,0,0,341,0,342,246,0,58,0,59,0,0,344,0,0,0,0,0],[0,0,0,341,0,246,246,0,58,0,59,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,0,146,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,143,0,0],[0,0,0,0,0,426,426,258,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,427,0,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,350,351,352,353,58,0,59,0,0,0,139,0,0,0,0],[0,0,0,0,0,351,351,353,58,0,59,0,0,0,139,0,0,0,0],[0,0,0,0,0,428,428,353,58,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,429,428,428,353,58,0,0,0,0,0,0,0,0,0,0],[0,0,0,430,137,246,431,0,58,0,59,0,0,0,139,0,0,0,0],[0,0,0,137,0,246,246,0,58,0,59,0,0,0,139,0,0,0,0],[0,0,0,432,116,433,434,8,161,0,162,0,0,435,120,0,0,16,0],[0,0,0,0,0,180,180,269,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,358,359,360,361,161,0,162,0,0,0,362,0,0,0,0],[0,0,0,0,0,359,359,361,161,0,162,0,0,0,362,0,0,0,0],[0,0,0,0,0,436,436,361,161,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,437,436,436,361,161,0,0,0,0,0,0,0,0,0,0],[0,0,0,438,439,440,441,442,161,0,162,0,0,0,362,0,0,0,0],[0,443,274,0,0,0,0,0,0,0,0,0,0,0,0,0,443,0,0],[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,444,116,445,445,8,161,0,162,0,0,0,120,0,0,16,0],[0,0,0,0,225,44,44,8,161,0,0,0,0,367,225,0,0,0,0],[0,0,0,364,116,365,445,8,161,0,162,0,0,367,120,0,0,16,0],[0,0,0,364,116,445,445,8,161,0,162,0,0,0,120,0,0,16,0],[0,0,0,0,0,0,0,0,161,0,0,0,0,0,0,0,0,0,0],[0,0,0,446,370,447,447,22,23,0,24,0,0,0,374,0,0,27,0],[0,448,0,0,0,76,449,0,23,0,24,0,0,0,78,0,448,0,0],[0,0,0,0,450,80,80,22,23,0,0,0,0,373,450,0,0,0,0],[0,0,0,369,370,371,447,22,23,0,24,0,0,373,374,0,0,27,0],[0,0,0,369,370,447,447,22,23,0,24,0,0,0,374,0,0,27,0],[0,451,90,0,0,76,449,0,23,0,24,0,0,0,78,0,451,0,0],[0,279,0,0,0,175,175,0,23,0,24,0,0,0,78,0,279,0,0],[0,279,0,375,0,175,175,0,23,0,24,0,0,0,78,0,279,0,0],[0,0,0,446,370,447,447,22,23,0,24,0,0,0,374,0,0,27,0],[0,0,0,0,450,80,80,22,23,0,0,0,0,380,450,0,0,0,0],[0,0,0,377,370,378,447,22,23,0,24,0,0,380,374,0,0,27,0],[0,0,0,377,370,447,447,22,23,0,24,0,0,0,374,0,0,27,0],[0,0,0,0,0,0,0,187,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,184,0,0],[0,0,0,0,0,452,452,295,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,453,0,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,76,175,386,0,23,0,24,0,0,0,78,0,0,0,0],[0,0,0,0,454,0,0,0,23,0,0,0,0,0,0,0,0,0,0],[0,0,0,455,388,456,456,32,33,0,34,0,0,0,392,0,0,37,0],[0,457,0,0,0,97,458,0,33,0,34,0,0,0,99,0,457,0,0],[0,0,0,0,459,101,101,32,33,0,0,0,0,391,459,0,0,0,0],[0,0,0,387,388,389,456,32,33,0,34,0,0,391,392,0,0,37,0],[0,0,0,387,388,456,456,32,33,0,34,0,0,0,392,0,0,37,0],[0,460,111,0,0,97,458,0,33,0,34,0,0,0,99,0,460,0,0],[0,299,0,0,0,201,201,0,33,0,34,0,0,0,99,0,299,0,0],[0,299,0,393,0,201,201,0,33,0,34,0,0,0,99,0,299,0,0],[0,0,0,455,388,456,456,32,33,0,34,0,0,0,392,0,0,37,0],[0,0,0,0,459,101,101,32,33,0,0,0,0,398,459,0,0,0,0],[0,0,0,395,388,396,456,32,33,0,34,0,0,398,392,0,0,37,0],[0,0,0,395,388,456,456,32,33,0,34,0,0,0,392,0,0,37,0],[0,0,0,0,0,0,0,213,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,210,0,0],[0,0,0,0,0,461,461,315,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,462,0,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,97,201,404,0,33,0,34,0,0,0,99,0,0,0,0],[0,0,0,0,463,0,0,0,33,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,318,406,406,8,9,0,10,0,0,0,322,0,0,16,0],[0,0,0,0,409,44,44,8,9,0,0,0,0,0,409,0,0,0,0],[0,0,0,464,465,466,467,8,9,0,10,0,0,468,469,0,0,16,0],[0,407,0,470,0,123,123,8,9,0,10,0,0,0,42,0,407,0,0],[0,407,0,0,0,121,471,0,9,0,10,0,0,0,42,0,407,0,0],[0,0,0,472,465,473,474,8,9,0,10,0,0,475,469,0,0,16,0],[0,0,0,0,0,0,0,239,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,236,0,0],[0,0,0,0,0,0,476,0,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,477,415,478,478,57,58,0,59,0,0,0,419,0,0,62,0],[0,479,0,0,0,137,480,0,58,0,59,0,0,0,139,0,479,0,0],[0,0,0,0,481,141,141,57,58,0,0,0,0,418,481,0,0,0,0],[0,0,0,414,415,416,478,57,58,0,59,0,0,418,419,0,0,62,0],[0,0,0,414,415,478,478,57,58,0,59,0,0,0,419,0,0,62,0],[0,482,151,0,0,137,480,0,58,0,59,0,0,0,139,0,482,0,0],[0,337,0,0,0,246,246,0,58,0,59,0,0,0,139,0,337,0,0],[0,337,0,420,0,246,246,0,58,0,59,0,0,0,139,0,337,0,0],[0,0,0,477,415,478,478,57,58,0,59,0,0,0,419,0,0,62,0],[0,0,0,0,481,141,141,57,58,0,0,0,0,425,481,0,0,0,0],[0,0,0,422,415,423,478,57,58,0,59,0,0,425,419,0,0,62,0],[0,0,0,422,415,478,478,57,58,0,59,0,0,0,419,0,0,62,0],[0,0,0,0,0,0,0,258,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,255,0,0],[0,0,0,0,0,483,483,353,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,484,0,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,137,246,431,0,58,0,59,0,0,0,139,0,0,0,0],[0,0,0,0,485,0,0,0,58,0,0,0,0,0,0,0,0,0,0],[0,0,0,444,116,445,445,8,161,0,162,0,0,0,120,0,0,16,0],[0,0,0,0,225,44,44,8,161,0,0,0,0,435,225,0,0,0,0],[0,0,0,432,116,433,445,8,161,0,162,0,0,435,120,0,0,16,0],[0,0,0,432,116,445,445,8,161,0,162,0,0,0,120,0,0,16,0],[0,0,0,0,0,486,486,361,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,487,0,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,439,440,441,442,161,0,162,0,0,0,362,0,0,0,0],[0,0,0,0,0,440,440,442,161,0,162,0,0,0,362,0,0,0,0],[0,0,0,0,0,488,488,442,161,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,489,488,488,442,161,0,0,0,0,0,0,0,0,0,0],[0,0,0,490,491,492,493,494,161,0,162,0,0,0,362,0,0,0,0],[0,0,0,495,0,496,497,0,161,0,162,0,0,498,0,0,0,0,0],[0,0,0,0,116,445,445,8,161,0,162,0,0,0,120,0,0,16,0],[0,0,0,0,225,44,44,8,161,0,0,0,0,0,225,0,0,0,0],[0,0,0,0,370,447,447,22,23,0,24,0,0,0,374,0,0,27,0],[0,0,0,0,450,80,80,22,23,0,0,0,0,0,450,0,0,0,0],[0,0,0,499,500,501,502,22,23,0,24,0,0,503,504,0,0,27,0],[0,448,0,505,0,177,177,22,23,0,24,0,0,0,78,0,448,0,0],[0,448,0,0,0,175,506,0,23,0,24,0,0,0,78,0,448,0,0],[0,0,0,507,500,508,509,22,23,0,24,0,0,510,504,0,0,27,0],[0,0,0,0,0,0,0,295,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,292,0,0],[0,0,0,0,0,0,511,0,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,388,456,456,32,33,0,34,0,0,0,392,0,0,37,0],[0,0,0,0,459,101,101,32,33,0,0,0,0,0,459,0,0,0,0],[0,0,0,512,513,514,515,32,33,0,34,0,0,516,517,0,0,37,0],[0,457,0,518,0,203,203,32,33,0,34,0,0,0,99,0,457,0,0],[0,457,0,0,0,201,519,0,33,0,34,0,0,0,99,0,457,0,0],[0,0,0,520,513,521,522,32,33,0,34,0,0,523,517,0,0,37,0],[0,0,0,0,0,0,0,315,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,312,0,0],[0,0,0,0,0,0,524,0,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,525,465,526,526,8,9,0,10,0,0,0,469,0,0,16,0],[0,527,0,0,0,40,528,0,9,0,10,0,0,0,42,0,527,0,0],[0,0,0,0,529,44,44,8,9,0,0,0,0,468,529,0,0,0,0],[0,0,0,464,465,466,526,8,9,0,10,0,0,468,469,0,0,16,0],[0,0,0,464,465,526,526,8,9,0,10,0,0,0,469,0,0,16,0],[0,530,64,0,0,40,528,0,9,0,10,0,0,0,42,0,530,0,0],[0,407,0,0,0,121,121,0,9,0,10,0,0,0,42,0,407,0,0],[0,407,0,470,0,121,121,0,9,0,10,0,0,0,42,0,407,0,0],[0,0,0,525,465,526,526,8,9,0,10,0,0,0,469,0,0,16,0],[0,0,0,0,529,44,44,8,9,0,0,0,0,475,529,0,0,0,0],[0,0,0,472,465,473,526,8,9,0,10,0,0,475,469,0,0,16,0],[0,0,0,472,465,526,526,8,9,0,10,0,0,0,469,0,0,16,0],[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,40,0,0],[0,0,0,0,415,478,478,57,58,0,59,0,0,0,419,0,0,62,0],[0,0,0,0,481,141,141,57,58,0,0,0,0,0,481,0,0,0,0],[0,0,0,531,532,533,534,57,58,0,59,0,0,535,536,0,0,62,0],[0,479,0,537,0,248,248,57,58,0,59,0,0,0,139,0,479,0,0],[0,479,0,0,0,246,538,0,58,0,59,0,0,0,139,0,479,0,0],[0,0,0,539,532,540,541,57,58,0,59,0,0,542,536,0,0,62,0],[0,0,0,0,0,0,0,353,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,350,0,0],[0,0,0,0,0,0,543,0,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,0,361,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,358,0,0],[0,0,0,0,0,544,544,442,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,545,0,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,491,492,493,494,161,0,162,0,0,0,362,0,0,0,0],[0,0,0,0,0,492,492,494,161,0,162,0,0,0,362,0,0,0,0],[0,0,0,0,0,546,546,494,161,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,547,546,546,494,161,0,0,0,0,0,0,0,0,0,0],[0,0,0,548,549,368,550,0,161,0,162,0,0,0,362,0,0,0,0],[0,0,0,274,0,368,368,0,161,0,162,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,0,0,161,0,0,0,0,498,0,0,0,0,0],[0,0,0,495,0,496,368,0,161,0,162,0,0,498,0,0,0,0,0],[0,0,0,495,0,368,368,0,161,0,162,0,0,0,0,0,0,0,0],[0,0,0,551,500,552,552,22,23,0,24,0,0,0,504,0,0,27,0],[0,553,0,0,0,76,554,0,23,0,24,0,0,0,78,0,553,0,0],[0,0,0,0,555,80,80,22,23,0,0,0,0,503,555,0,0,0,0],[0,0,0,499,500,501,552,22,23,0,24,0,0,503,504,0,0,27,0],[0,0,0,499,500,552,552,22,23,0,24,0,0,0,504,0,0,27,0],[0,556,90,0,0,76,554,0,23,0,24,0,0,0,78,0,556,0,0],[0,448,0,0,0,175,175,0,23,0,24,0,0,0,78,0,448,0,0],[0,448,0,505,0,175,175,0,23,0,24,0,0,0,78,0,448,0,0],[0,0,0,551,500,552,552,22,23,0,24,0,0,0,504,0,0,27,0],[0,0,0,0,555,80,80,22,23,0,0,0,0,510,555,0,0,0,0],[0,0,0,507,500,508,552,22,23,0,24,0,0,510,504,0,0,27,0],[0,0,0,507,500,552,552,22,23,0,24,0,0,0,504,0,0,27,0],[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,76,0,0],[0,0,0,557,513,558,558,32,33,0,34,0,0,0,517,0,0,37,0],[0,559,0,0,0,97,560,0,33,0,34,0,0,0,99,0,559,0,0],[0,0,0,0,561,101,101,32,33,0,0,0,0,516,561,0,0,0,0],[0,0,0,512,513,514,558,32,33,0,34,0,0,516,517,0,0,37,0],[0,0,0,512,513,558,558,32,33,0,34,0,0,0,517,0,0,37,0],[0,562,111,0,0,97,560,0,33,0,34,0,0,0,99,0,562,0,0],[0,457,0,0,0,201,201,0,33,0,34,0,0,0,99,0,457,0,0],[0,457,0,518,0,201,201,0,33,0,34,0,0,0,99,0,457,0,0],[0,0,0,557,513,558,558,32,33,0,34,0,0,0,517,0,0,37,0],[0,0,0,0,561,101,101,32,33,0,0,0,0,523,561,0,0,0,0],[0,0,0,520,513,521,558,32,33,0,34,0,0,523,517,0,0,37,0],[0,0,0,520,513,558,558,32,33,0,34,0,0,0,517,0,0,37,0],[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,97,0,0],[0,0,0,0,465,526,526,8,9,0,10,0,0,0,469,0,0,16,0],[0,0,0,0,529,44,44,8,9,0,0,0,0,0,529,0,0,0,0],[0,0,0,563,66,564,565,8,9,0,10,0,0,566,68,0,0,16,0],[0,527,0,567,0,123,123,8,9,0,10,0,0,0,42,0,527,0,0],[0,527,0,0,0,121,568,0,9,0,10,0,0,0,42,0,527,0,0],[0,0,0,569,66,570,571,8,9,0,10,0,0,572,68,0,0,16,0],[0,0,0,573,532,574,574,57,58,0,59,0,0,0,536,0,0,62,0],[0,575,0,0,0,137,576,0,58,0,59,0,0,0,139,0,575,0,0],[0,0,0,0,577,141,141,57,58,0,0,0,0,535,577,0,0,0,0],[0,0,0,531,532,533,574,57,58,0,59,0,0,535,536,0,0,62,0],[0,0,0,531,532,574,574,57,58,0,59,0,0,0,536,0,0,62,0],[0,578,151,0,0,137,576,0,58,0,59,0,0,0,139,0,578,0,0],[0,479,0,0,0,246,246,0,58,0,59,0,0,0,139,0,479,0,0],[0,479,0,537,0,246,246,0,58,0,59,0,0,0,139,0,479,0,0],[0,0,0,573,532,574,574,57,58,0,59,0,0,0,536,0,0,62,0],[0,0,0,0,577,141,141,57,58,0,0,0,0,542,577,0,0,0,0],[0,0,0,539,532,540,574,57,58,0,59,0,0,542,536,0,0,62,0],[0,0,0,539,532,574,574,57,58,0,59,0,0,0,536,0,0,62,0],[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,137,0,0],[0,0,0,0,0,0,0,442,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,439,0,0],[0,0,0,0,0,579,579,494,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,580,0,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,549,368,550,0,161,0,162,0,0,0,362,0,0,0,0],[0,0,0,0,0,368,368,0,161,0,162,0,0,0,362,0,0,0,0],[0,0,0,0,581,0,0,0,161,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,500,552,552,22,23,0,24,0,0,0,504,0,0,27,0],[0,0,0,0,555,80,80,22,23,0,0,0,0,0,555,0,0,0,0],[0,0,0,582,91,583,584,22,23,0,24,0,0,585,93,0,0,27,0],[0,553,0,586,0,177,177,22,23,0,24,0,0,0,78,0,553,0,0],[0,553,0,0,0,175,587,0,23,0,24,0,0,0,78,0,553,0,0],[0,0,0,588,91,589,590,22,23,0,24,0,0,591,93,0,0,27,0],[0,0,0,0,513,558,558,32,33,0,34,0,0,0,517,0,0,37,0],[0,0,0,0,561,101,101,32,33,0,0,0,0,0,561,0,0,0,0],[0,0,0,592,112,593,594,32,33,0,34,0,0,595,114,0,0,37,0],[0,559,0,596,0,203,203,32,33,0,34,0,0,0,99,0,559,0,0],[0,559,0,0,0,201,597,0,33,0,34,0,0,0,99,0,559,0,0],[0,0,0,598,112,599,600,32,33,0,34,0,0,601,114,0,0,37,0],[0,0,0,602,66,67,67,8,9,0,10,0,0,0,68,0,0,16,0],[0,0,0,0,165,44,44,8,9,0,0,0,0,566,165,0,0,0,0],[0,0,0,563,66,564,67,8,9,0,10,0,0,566,68,0,0,16,0],[0,0,0,563,66,67,67,8,9,0,10,0,0,0,68,0,0,16,0],[0,527,0,0,0,121,121,0,9,0,10,0,0,0,42,0,527,0,0],[0,527,0,567,0,121,121,0,9,0,10,0,0,0,42,0,527,0,0],[0,0,0,602,66,67,67,8,9,0,10,0,0,0,68,0,0,16,0],[0,0,0,0,165,44,44,8,9,0,0,0,0,572,165,0,0,0,0],[0,0,0,569,66,570,67,8,9,0,10,0,0,572,68,0,0,16,0],[0,0,0,569,66,67,67,8,9,0,10,0,0,0,68,0,0,16,0],[0,0,0,0,532,574,574,57,58,0,59,0,0,0,536,0,0,62,0],[0,0,0,0,577,141,141,57,58,0,0,0,0,0,577,0,0,0,0],[0,0,0,603,152,604,605,57,58,0,59,0,0,606,154,0,0,62,0],[0,575,0,607,0,248,248,57,58,0,59,0,0,0,139,0,575,0,0],[0,575,0,0,0,246,608,0,58,0,59,0,0,0,139,0,575,0,0],[0,0,0,609,152,610,611,57,58,0,59,0,0,612,154,0,0,62,0],[0,0,0,0,0,0,0,494,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,491,0,0],[0,0,0,0,0,0,613,0,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,614,91,92,92,22,23,0,24,0,0,0,93,0,0,27,0],[0,0,0,0,194,80,80,22,23,0,0,0,0,585,194,0,0,0,0],[0,0,0,582,91,583,92,22,23,0,24,0,0,585,93,0,0,27,0],[0,0,0,582,91,92,92,22,23,0,24,0,0,0,93,0,0,27,0],[0,553,0,0,0,175,175,0,23,0,24,0,0,0,78,0,553,0,0],[0,553,0,586,0,175,175,0,23,0,24,0,0,0,78,0,553,0,0],[0,0,0,614,91,92,92,22,23,0,24,0,0,0,93,0,0,27,0],[0,0,0,0,194,80,80,22,23,0,0,0,0,591,194,0,0,0,0],[0,0,0,588,91,589,92,22,23,0,24,0,0,591,93,0,0,27,0],[0,0,0,588,91,92,92,22,23,0,24,0,0,0,93,0,0,27,0],[0,0,0,615,112,113,113,32,33,0,34,0,0,0,114,0,0,37,0],[0,0,0,0,220,101,101,32,33,0,0,0,0,595,220,0,0,0,0],[0,0,0,592,112,593,113,32,33,0,34,0,0,595,114,0,0,37,0],[0,0,0,592,112,113,113,32,33,0,34,0,0,0,114,0,0,37,0],[0,559,0,0,0,201,201,0,33,0,34,0,0,0,99,0,559,0,0],[0,559,0,596,0,201,201,0,33,0,34,0,0,0,99,0,559,0,0],[0,0,0,615,112,113,113,32,33,0,34,0,0,0,114,0,0,37,0],[0,0,0,0,220,101,101,32,33,0,0,0,0,601,220,0,0,0,0],[0,0,0,598,112,599,113,32,33,0,34,0,0,601,114,0,0,37,0],[0,0,0,598,112,113,113,32,33,0,34,0,0,0,114,0,0,37,0],[0,0,0,0,66,67,67,8,9,0,10,0,0,0,68,0,0,16,0],[0,0,0,616,152,153,153,57,58,0,59,0,0,0,154,0,0,62,0],[0,0,0,0,265,141,141,57,58,0,0,0,0,606,265,0,0,0,0],[0,0,0,603,152,604,153,57,58,0,59,0,0,606,154,0,0,62,0],[0,0,0,603,152,153,153,57,58,0,59,0,0,0,154,0,0,62,0],[0,575,0,0,0,246,246,0,58,0,59,0,0,0,139,0,575,0,0],[0,575,0,607,0,246,246,0,58,0,59,0,0,0,139,0,575,0,0],[0,0,0,616,152,153,153,57,58,0,59,0,0,0,154,0,0,62,0],[0,0,0,0,265,141,141,57,58,0,0,0,0,612,265,0,0,0,0],[0,0,0,609,152,610,153,57,58,0,59,0,0,612,154,0,0,62,0],[0,0,0,609,152,153,153,57,58,0,59,0,0,0,154,0,0,62,0],[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,549,0,0],[0,0,0,0,91,92,92,22,23,0,24,0,0,0,93,0,0,27,0],[0,0,0,0,112,113,113,32,33,0,34,0,0,0,114,0,0,37,0],[0,0,0,0,152,153,153,57,58,0,59,0,0,0,154,0,0,62,0]],accepting:[!1,!0,!0,!0,!0,!0,!1,!1,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!1,!0,!0,!0,!0,!0,!0,!0,!0,!0,!1,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!1,!0,!1,!0,!0,!1,!1,!0,!0,!0,!0,!0,!0,!1,!1,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!1,!0,!0,!1,!0,!0,!0,!1,!0,!0,!0,!1,!0,!1,!0,!0,!1,!1,!0,!0,!0,!0,!0,!0,!0,!1,!0,!0,!1,!0,!0,!0,!1,!0,!1,!0,!0,!1,!1,!0,!0,!0,!0,!0,!0,!0,!1,!0,!0,!0,!1,!0,!0,!0,!1,!0,!1,!0,!0,!1,!1,!1,!0,!0,!1,!1,!0,!0,!0,!0,!0,!0,!1,!0,!1,!0,!0,!1,!1,!0,!0,!0,!0,!0,!0,!0,!1,!0,!0,!1,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!1,!0,!0,!0,!1,!0,!1,!0,!0,!1,!1,!1,!0,!0,!1,!1,!0,!0,!0,!1,!0,!0,!0,!0,!0,!0,!1,!0,!0,!0,!1,!0,!1,!0,!0,!1,!1,!1,!0,!0,!1,!1,!0,!0,!0,!1,!0,!0,!0,!0,!0,!1,!0,!0,!0,!0,!0,!1,!0,!0,!1,!1,!1,!1,!0,!0,!1,!1,!0,!0,!0,!1,!0,!0,!0,!1,!0,!1,!0,!0,!1,!1,!1,!0,!0,!1,!1,!0,!0,!0,!1,!0,!0,!0,!0,!1,!0,!1,!0,!0,!0,!0,!0,!0,!0,!0,!0,!1,!0,!0,!0,!0,!0,!1,!0,!0,!1,!1,!1,!1,!0,!0,!1,!1,!0,!0,!0,!1,!0,!0,!0,!0,!0,!1,!0,!0,!1,!1,!1,!1,!0,!0,!1,!1,!0,!0,!0,!0,!1,!0,!0,!0,!0,!0,!0,!1,!0,!0,!1,!1,!1,!1,!0,!1,!0,!1,!0,!0,!0,!0,!0,!1,!0,!0,!1,!1,!1,!1,!0,!0,!1,!1,!0,!0,!0,!1,!0,!0,!1,!1,!0,!1,!0,!0,!1,!0,!0,!1,!0,!0,!1,!0,!0,!0,!0,!0,!0,!1,!0,!0,!1,!1,!1,!1,!0,!1,!0,!0,!1,!0,!0,!0,!0,!0,!0,!1,!0,!0,!1,!1,!1,!1,!0,!1,!0,!1,!0,!0,!0,!0,!1,!1,!1,!0,!0,!1,!0,!0,!0,!0,!0,!0,!1,!0,!0,!1,!1,!1,!1,!0,!1,!0,!1,!0,!0,!1,!1,!0,!0,!1,!1,!0,!0,!0,!1,!0,!1,!0,!0,!0,!0,!1,!1,!1,!0,!1,!0,!0,!0,!0,!1,!1,!1,!0,!0,!1,!0,!0,!0,!0,!0,!0,!1,!0,!0,!1,!0,!1,!0,!0,!0,!0,!1,!1,!1,!1,!1,!1,!1,!0,!0,!1,!1,!0,!0,!1,!0,!0,!0,!0,!1,!0,!0,!0,!0,!0,!0,!1,!0,!0,!1,!0,!0,!1,!0,!0,!0,!0,!0,!0,!1,!0,!0,!1,!0,!1,!0,!0,!0,!0,!0,!0,!1,!0,!0,!0,!0,!0,!0,!1,!0,!0,!1,!1,!1,!1,!1,!0,!0,!1,!0,!1,!0,!0,!0,!0,!0,!1,!0,!0,!0,!0,!0,!1,!0,!0,!0,!0,!0,!1,!0,!0,!0,!1,!0,!0,!0,!0,!1,!1,!1,!0,!1,!0,!0,!0,!0,!0,!1,!0,!0,!0,!1,!0,!0,!0,!0,!0,!1,!0,!0,!0,!0,!1,!0,!0,!0,!0,!0,!1,!0,!0,!1,!0,!0,!0],tags:[[],["broken_cluster"],["consonant_syllable"],["vowel_syllable"],["broken_cluster"],["broken_cluster"],[],[],["broken_cluster"],["broken_cluster"],["broken_cluster"],["standalone_cluster"],["broken_cluster"],["broken_cluster"],["broken_cluster"],["consonant_syllable"],["broken_cluster"],["symbol_cluster"],["consonant_syllable"],["consonant_syllable"],[],["consonant_syllable"],["consonant_syllable"],["consonant_syllable"],["consonant_syllable"],["consonant_syllable"],["consonant_syllable"],["consonant_syllable"],["vowel_syllable"],["vowel_syllable"],[],["vowel_syllable"],["vowel_syllable"],["vowel_syllable"],["vowel_syllable"],["vowel_syllable"],["vowel_syllable"],["vowel_syllable"],["broken_cluster"],["broken_cluster"],["broken_cluster"],["broken_cluster"],[],["broken_cluster"],[],["broken_cluster"],["broken_cluster"],[],[],["broken_cluster"],["broken_cluster"],["broken_cluster"],["broken_cluster"],["standalone_cluster"],["standalone_cluster"],[],[],["standalone_cluster"],["standalone_cluster"],["standalone_cluster"],["standalone_cluster"],["standalone_cluster"],["standalone_cluster"],["broken_cluster"],["broken_cluster"],["consonant_syllable","broken_cluster"],["broken_cluster"],[],["broken_cluster"],["symbol_cluster"],[],["symbol_cluster"],["symbol_cluster"],["consonant_syllable"],[],["consonant_syllable"],["consonant_syllable"],["consonant_syllable"],[],["consonant_syllable"],[],["consonant_syllable"],["consonant_syllable"],[],[],["consonant_syllable"],["consonant_syllable"],["consonant_syllable"],["consonant_syllable"],["consonant_syllable"],["consonant_syllable"],["consonant_syllable"],[],["consonant_syllable"],["vowel_syllable"],[],["vowel_syllable"],["vowel_syllable"],["vowel_syllable"],[],["vowel_syllable"],[],["vowel_syllable"],["vowel_syllable"],[],[],["vowel_syllable"],["vowel_syllable"],["vowel_syllable"],["vowel_syllable"],["vowel_syllable"],["vowel_syllable"],["vowel_syllable"],[],["vowel_syllable"],["broken_cluster"],["broken_cluster"],[],["broken_cluster"],["broken_cluster"],["broken_cluster"],[],["broken_cluster"],[],["broken_cluster"],["broken_cluster"],[],[],[],["broken_cluster"],["broken_cluster"],[],[],["broken_cluster"],["broken_cluster"],["standalone_cluster"],["standalone_cluster"],["standalone_cluster"],["standalone_cluster"],[],["standalone_cluster"],[],["standalone_cluster"],["standalone_cluster"],[],[],["standalone_cluster"],["standalone_cluster"],["standalone_cluster"],["standalone_cluster"],["standalone_cluster"],["standalone_cluster"],["standalone_cluster"],[],["standalone_cluster"],["broken_cluster"],[],["broken_cluster"],["broken_cluster"],["consonant_syllable"],["consonant_syllable"],["consonant_syllable","broken_cluster"],["consonant_syllable","broken_cluster"],["broken_cluster"],["broken_cluster"],["broken_cluster"],["symbol_cluster"],["symbol_cluster"],["symbol_cluster"],["consonant_syllable"],["consonant_syllable"],[],["consonant_syllable"],["consonant_syllable"],["consonant_syllable"],[],["consonant_syllable"],[],["consonant_syllable"],["consonant_syllable"],[],[],[],["consonant_syllable"],["consonant_syllable"],[],[],["consonant_syllable"],["consonant_syllable"],["consonant_syllable"],[],["consonant_syllable"],["consonant_syllable"],["consonant_syllable"],["consonant_syllable"],["vowel_syllable"],["vowel_syllable"],[],["vowel_syllable"],["vowel_syllable"],["vowel_syllable"],[],["vowel_syllable"],[],["vowel_syllable"],["vowel_syllable"],[],[],[],["vowel_syllable"],["vowel_syllable"],[],[],["vowel_syllable"],["vowel_syllable"],["vowel_syllable"],[],["vowel_syllable"],["vowel_syllable"],["vowel_syllable"],["vowel_syllable"],["broken_cluster"],[],["broken_cluster"],["broken_cluster"],["broken_cluster"],["broken_cluster"],["broken_cluster"],[],["broken_cluster"],["broken_cluster"],[],[],[],[],["broken_cluster"],["broken_cluster"],[],[],["broken_cluster"],["standalone_cluster"],["standalone_cluster"],[],["standalone_cluster"],["standalone_cluster"],["standalone_cluster"],[],["standalone_cluster"],[],["standalone_cluster"],["standalone_cluster"],[],[],[],["standalone_cluster"],["standalone_cluster"],[],[],["standalone_cluster"],["standalone_cluster"],["standalone_cluster"],[],["standalone_cluster"],["standalone_cluster"],["standalone_cluster"],["standalone_cluster"],[],["broken_cluster"],[],["consonant_syllable","broken_cluster"],["consonant_syllable","broken_cluster"],["consonant_syllable","broken_cluster"],["consonant_syllable","broken_cluster"],["consonant_syllable","broken_cluster"],["consonant_syllable","broken_cluster"],["broken_cluster"],["symbol_cluster"],["consonant_syllable"],[],["consonant_syllable"],["consonant_syllable"],["consonant_syllable"],["consonant_syllable"],["consonant_syllable"],[],["consonant_syllable"],["consonant_syllable"],[],[],[],[],["consonant_syllable"],["consonant_syllable"],[],[],["consonant_syllable"],["consonant_syllable"],["vowel_syllable"],[],["vowel_syllable"],["vowel_syllable"],["vowel_syllable"],["vowel_syllable"],["vowel_syllable"],[],["vowel_syllable"],["vowel_syllable"],[],[],[],[],["vowel_syllable"],["vowel_syllable"],[],[],["vowel_syllable"],["vowel_syllable"],["broken_cluster"],["broken_cluster"],[],["broken_cluster"],["broken_cluster"],["broken_cluster"],["broken_cluster"],["broken_cluster"],["broken_cluster"],[],["broken_cluster"],["broken_cluster"],[],[],[],[],["broken_cluster"],[],["standalone_cluster"],[],["standalone_cluster"],["standalone_cluster"],["standalone_cluster"],["standalone_cluster"],["standalone_cluster"],[],["standalone_cluster"],["standalone_cluster"],[],[],[],[],["standalone_cluster"],["standalone_cluster"],[],[],["standalone_cluster"],["standalone_cluster"],["consonant_syllable","broken_cluster"],[],["consonant_syllable","broken_cluster"],["consonant_syllable","broken_cluster"],[],[],["consonant_syllable","broken_cluster"],[],["consonant_syllable","broken_cluster"],["consonant_syllable","broken_cluster"],[],["consonant_syllable","broken_cluster"],["consonant_syllable","broken_cluster"],[],["consonant_syllable"],["consonant_syllable"],[],["consonant_syllable"],["consonant_syllable"],["consonant_syllable"],["consonant_syllable"],["consonant_syllable"],["consonant_syllable"],[],["consonant_syllable"],["consonant_syllable"],[],[],[],[],["consonant_syllable"],[],["vowel_syllable"],["vowel_syllable"],[],["vowel_syllable"],["vowel_syllable"],["vowel_syllable"],["vowel_syllable"],["vowel_syllable"],["vowel_syllable"],[],["vowel_syllable"],["vowel_syllable"],[],[],[],[],["vowel_syllable"],[],["broken_cluster"],[],["broken_cluster"],["broken_cluster"],["broken_cluster"],["broken_cluster"],[],[],[],["standalone_cluster"],["standalone_cluster"],[],["standalone_cluster"],["standalone_cluster"],["standalone_cluster"],["standalone_cluster"],["standalone_cluster"],["standalone_cluster"],[],["standalone_cluster"],["standalone_cluster"],[],[],[],[],["standalone_cluster"],[],["consonant_syllable","broken_cluster"],[],["consonant_syllable","broken_cluster"],["consonant_syllable","broken_cluster"],[],[],["consonant_syllable","broken_cluster"],["consonant_syllable","broken_cluster"],[],[],["consonant_syllable","broken_cluster"],["consonant_syllable","broken_cluster"],["consonant_syllable","broken_cluster"],[],["consonant_syllable"],[],["consonant_syllable"],["consonant_syllable"],["consonant_syllable"],["consonant_syllable"],[],[],[],["vowel_syllable"],[],["vowel_syllable"],["vowel_syllable"],["vowel_syllable"],["vowel_syllable"],[],[],[],["broken_cluster"],["broken_cluster"],[],["broken_cluster"],["broken_cluster"],["broken_cluster"],["broken_cluster"],["broken_cluster"],["broken_cluster"],[],["broken_cluster"],["broken_cluster"],[],["standalone_cluster"],[],["standalone_cluster"],["standalone_cluster"],["standalone_cluster"],["standalone_cluster"],[],[],[],[],[],[],[],["consonant_syllable","broken_cluster"],["consonant_syllable","broken_cluster"],[],[],["consonant_syllable","broken_cluster"],["consonant_syllable","broken_cluster"],[],["consonant_syllable","broken_cluster"],["consonant_syllable","broken_cluster"],["consonant_syllable"],["consonant_syllable"],[],["consonant_syllable"],["consonant_syllable"],["consonant_syllable"],["consonant_syllable"],["consonant_syllable"],["consonant_syllable"],[],["consonant_syllable"],["consonant_syllable"],[],["vowel_syllable"],["vowel_syllable"],[],["vowel_syllable"],["vowel_syllable"],["vowel_syllable"],["vowel_syllable"],["vowel_syllable"],["vowel_syllable"],[],["vowel_syllable"],["vowel_syllable"],[],["broken_cluster"],[],["broken_cluster"],["broken_cluster"],["broken_cluster"],["broken_cluster"],["standalone_cluster"],["standalone_cluster"],[],["standalone_cluster"],["standalone_cluster"],["standalone_cluster"],["standalone_cluster"],["standalone_cluster"],["standalone_cluster"],[],["standalone_cluster"],["standalone_cluster"],[],[],[],[],[],["consonant_syllable","broken_cluster"],["consonant_syllable","broken_cluster"],[],["consonant_syllable"],[],["consonant_syllable"],["consonant_syllable"],["consonant_syllable"],["consonant_syllable"],["vowel_syllable"],[],["vowel_syllable"],["vowel_syllable"],["vowel_syllable"],["vowel_syllable"],["broken_cluster"],[],["broken_cluster"],["broken_cluster"],["broken_cluster"],["broken_cluster"],["broken_cluster"],[],["broken_cluster"],["broken_cluster"],["standalone_cluster"],[],["standalone_cluster"],["standalone_cluster"],["standalone_cluster"],["standalone_cluster"],[],[],[],["consonant_syllable"],[],["consonant_syllable"],["consonant_syllable"],["consonant_syllable"],["consonant_syllable"],["consonant_syllable"],[],["consonant_syllable"],["consonant_syllable"],["vowel_syllable"],[],["vowel_syllable"],["vowel_syllable"],["vowel_syllable"],["vowel_syllable"],["vowel_syllable"],[],["vowel_syllable"],["vowel_syllable"],["broken_cluster"],["standalone_cluster"],[],["standalone_cluster"],["standalone_cluster"],["standalone_cluster"],["standalone_cluster"],["standalone_cluster"],[],["standalone_cluster"],["standalone_cluster"],[],["consonant_syllable"],["vowel_syllable"],["standalone_cluster"]]},vo={categories:["O","IND","S","GB","B","FM","CGJ","VMAbv","VMPst","VAbv","VPst","CMBlw","VPre","VBlw","H","VMBlw","CMAbv","MBlw","CS","R","SUB","MPst","MPre","FAbv","FPst","FBlw","null","SMAbv","SMBlw","VMPre","ZWNJ","ZWJ","WJ","M","VS","N","HN","MAbv"],decompositions:{2507:[2503,2494],2508:[2503,2519],2888:[2887,2902],2891:[2887,2878],2892:[2887,2903],3018:[3014,3006],3019:[3015,3006],3020:[3014,3031],3144:[3142,3158],3264:[3263,3285],3271:[3270,3285],3272:[3270,3286],3274:[3270,3266],3275:[3270,3266,3285],3402:[3398,3390],3403:[3399,3390],3404:[3398,3415],3546:[3545,3530],3548:[3545,3535],3549:[3545,3535,3530],3550:[3545,3551],3635:[3661,3634],3763:[3789,3762],3955:[3953,3954],3957:[3953,3956],3958:[4018,3968],3959:[4018,3953,3968],3960:[4019,3968],3961:[4019,3953,3968],3969:[3953,3968],6971:[6970,6965],6973:[6972,6965],6976:[6974,6965],6977:[6975,6965],6979:[6978,6965],69934:[69937,69927],69935:[69938,69927],70475:[70471,70462],70476:[70471,70487],70843:[70841,70842],70844:[70841,70832],70846:[70841,70845],71098:[71096,71087],71099:[71097,71087]},stateTable:[[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0],[2,2,3,4,4,5,0,6,7,8,9,10,11,12,13,14,15,16,0,17,18,11,19,20,21,22,0,0,0,23,0,0,2,0,0,24,0,25],[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,26,0,0,0],[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,27,28,0,0,0,0,0,27,0,0,0],[0,0,0,0,0,29,0,30,31,32,33,34,35,36,37,38,39,40,0,0,41,35,42,43,44,45,0,0,0,46,0,0,0,0,39,0,0,47],[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,5,0,6,7,0,0,0,0,0,0,14,0,0,0,0,0,0,0,20,21,22,0,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,5,0,0,7,0,0,0,0,0,0,0,0,0,0,0,0,0,0,20,21,22,0,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,5,0,6,7,8,9,0,0,12,0,14,0,0,0,0,0,0,0,20,21,22,0,0,0,23,0,0,0,0,0,0,0,0],[0,0,0,0,0,5,0,6,7,0,9,0,0,0,0,14,0,0,0,0,0,0,0,20,21,22,0,0,0,23,0,0,0,0,0,0,0,0],[0,0,0,0,0,5,0,6,7,8,9,10,11,12,13,14,0,16,0,0,18,11,19,20,21,22,0,0,0,23,0,0,0,0,0,0,0,25],[0,0,0,0,0,5,0,6,7,8,9,0,11,12,0,14,0,0,0,0,0,0,0,20,21,22,0,0,0,23,0,0,0,0,0,0,0,0],[0,0,0,0,0,5,0,6,7,0,9,0,0,12,0,14,0,0,0,0,0,0,0,20,21,22,0,0,0,23,0,0,0,0,0,0,0,0],[0,0,0,0,18,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,5,0,0,7,0,0,0,0,0,0,14,0,0,0,0,0,0,0,20,21,22,0,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,5,0,6,7,8,9,10,11,12,13,14,15,16,0,0,18,11,19,20,21,22,0,0,0,23,0,0,0,0,0,0,0,25],[0,0,0,0,0,5,0,6,7,8,9,0,11,12,0,14,0,0,0,0,0,11,0,20,21,22,0,0,0,23,0,0,0,0,0,0,0,0],[0,0,0,4,4,5,0,6,7,8,9,10,11,12,13,14,15,16,0,0,18,11,19,20,21,22,0,0,0,23,0,0,0,0,0,0,0,25],[0,0,0,0,0,5,0,6,7,8,9,48,11,12,13,14,48,16,0,0,18,11,19,20,21,22,0,0,0,23,0,0,0,0,49,0,0,25],[0,0,0,0,0,5,0,6,7,8,9,0,11,12,0,14,0,16,0,0,0,11,0,20,21,22,0,0,0,23,0,0,0,0,0,0,0,25],[0,0,0,0,0,5,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,20,21,22,0,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,5,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,21,0,0,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,5,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,21,22,0,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,5,0,6,7,0,0,0,0,0,0,14,0,0,0,0,0,0,0,20,21,22,0,0,0,23,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,51,0],[0,0,0,0,0,5,0,6,7,8,9,0,11,12,0,14,0,16,0,0,0,11,0,20,21,22,0,0,0,23,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,27,28,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,28,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,29,0,30,31,0,0,0,0,0,0,38,0,0,0,0,0,0,0,43,44,45,0,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,29,0,0,31,0,0,0,0,0,0,0,0,0,0,0,0,0,0,43,44,45,0,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,29,0,30,31,32,33,0,0,36,0,38,0,0,0,0,0,0,0,43,44,45,0,0,0,46,0,0,0,0,0,0,0,0],[0,0,0,0,0,29,0,30,31,0,33,0,0,0,0,38,0,0,0,0,0,0,0,43,44,45,0,0,0,46,0,0,0,0,0,0,0,0],[0,0,0,0,0,29,0,30,31,32,33,34,35,36,37,38,0,40,0,0,41,35,42,43,44,45,0,0,0,46,0,0,0,0,0,0,0,47],[0,0,0,0,0,29,0,30,31,32,33,0,35,36,0,38,0,0,0,0,0,0,0,43,44,45,0,0,0,46,0,0,0,0,0,0,0,0],[0,0,0,0,0,29,0,30,31,0,33,0,0,36,0,38,0,0,0,0,0,0,0,43,44,45,0,0,0,46,0,0,0,0,0,0,0,0],[0,0,0,0,41,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,29,0,0,31,0,0,0,0,0,0,38,0,0,0,0,0,0,0,43,44,45,0,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,29,0,30,31,32,33,34,35,36,37,38,39,40,0,0,41,35,42,43,44,45,0,0,0,46,0,0,0,0,0,0,0,47],[0,0,0,0,0,29,0,30,31,32,33,0,35,36,0,38,0,0,0,0,0,35,0,43,44,45,0,0,0,46,0,0,0,0,0,0,0,0],[0,0,0,0,0,29,0,30,31,32,33,52,35,36,37,38,52,40,0,0,41,35,42,43,44,45,0,0,0,46,0,0,0,0,53,0,0,47],[0,0,0,0,0,29,0,30,31,32,33,0,35,36,0,38,0,40,0,0,0,35,0,43,44,45,0,0,0,46,0,0,0,0,0,0,0,47],[0,0,0,0,0,29,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,43,44,45,0,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,29,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,44,0,0,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,29,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,44,45,0,0,0,0,0,0,0,0,0,0,0,0],[0,0,0,0,0,29,0,30,31,0,0,0,0,0,0,38,0,0,0,0,0,0,0,43,44,45,0,0,0,46,0,0,0,0,0,0,0,0],[0,0,0,0,0,29,0,30,31,32,33,0,35,36,0,38,0,40,0,0,0,35,0,43,44,45,0,0,0,46,0,0,0,0,0,0,0,0],[0,0,0,0,0,5,0,6,7,8,9,48,11,12,13,14,0,16,0,0,18,11,19,20,21,22,0,0,0,23,0,0,0,0,0,0,0,25],[0,0,0,0,0,5,0,6,7,8,9,48,11,12,13,14,48,16,0,0,18,11,19,20,21,22,0,0,0,23,0,0,0,0,0,0,0,25],[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,51,0],[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,54,0,0],[0,0,0,0,0,29,0,30,31,32,33,52,35,36,37,38,0,40,0,0,41,35,42,43,44,45,0,0,0,46,0,0,0,0,0,0,0,47],[0,0,0,0,0,29,0,30,31,32,33,52,35,36,37,38,52,40,0,0,41,35,42,43,44,45,0,0,0,46,0,0,0,0,0,0,0,47],[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,51,0]],accepting:[!1,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!1,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0,!0],tags:[[],["broken_cluster"],["independent_cluster"],["symbol_cluster"],["standard_cluster"],["broken_cluster"],["broken_cluster"],["broken_cluster"],["broken_cluster"],["broken_cluster"],["broken_cluster"],["broken_cluster"],["broken_cluster"],[],["broken_cluster"],["broken_cluster"],["broken_cluster"],["broken_cluster"],["broken_cluster"],["broken_cluster"],["broken_cluster"],["broken_cluster"],["broken_cluster"],["broken_cluster"],["numeral_cluster"],["broken_cluster"],["independent_cluster"],["symbol_cluster"],["symbol_cluster"],["standard_cluster"],["standard_cluster"],["standard_cluster"],["standard_cluster"],["standard_cluster"],["standard_cluster"],["standard_cluster"],["standard_cluster"],["virama_terminated_cluster"],["standard_cluster"],["standard_cluster"],["standard_cluster"],["standard_cluster"],["standard_cluster"],["standard_cluster"],["standard_cluster"],["standard_cluster"],["standard_cluster"],["standard_cluster"],["broken_cluster"],["broken_cluster"],["numeral_cluster"],["number_joiner_terminated_cluster"],["standard_cluster"],["standard_cluster"],["numeral_cluster"]]},mo=1,bo=8,wo=16,_o=32,So=64,xo=128,Co=8192,ko=32768,Po=65536,Ao=1<<17,Eo={Start:1,Ra_To_Become_Reph:2,Pre_M:4,Pre_C:8,Base_C:16,After_Main:32,Above_C:64,Before_Sub:128,Below_C:256,After_Sub:512,Before_Post:1024,Post_C:2048,After_Post:4096,Final_C:8192,SMVD:16384,End:32768},To=2|Po|Ao|4|2048|4096,Oo=So|_o,Io=wo|16384,Bo={Default:{hasOldSpec:!1,virama:0,basePos:"Last",rephPos:Eo.Before_Post,rephMode:"Implicit",blwfMode:"Pre_And_Post"},Devanagari:{hasOldSpec:!0,virama:2381,basePos:"Last",rephPos:Eo.Before_Post,rephMode:"Implicit",blwfMode:"Pre_And_Post"},Bengali:{hasOldSpec:!0,virama:2509,basePos:"Last",rephPos:Eo.After_Sub,rephMode:"Implicit",blwfMode:"Pre_And_Post"},Gurmukhi:{hasOldSpec:!0,virama:2637,basePos:"Last",rephPos:Eo.Before_Sub,rephMode:"Implicit",blwfMode:"Pre_And_Post"},Gujarati:{hasOldSpec:!0,virama:2765,basePos:"Last",rephPos:Eo.Before_Post,rephMode:"Implicit",blwfMode:"Pre_And_Post"},Oriya:{hasOldSpec:!0,virama:2893,basePos:"Last",rephPos:Eo.After_Main,rephMode:"Implicit",blwfMode:"Pre_And_Post"},Tamil:{hasOldSpec:!0,virama:3021,basePos:"Last",rephPos:Eo.After_Post,rephMode:"Implicit",blwfMode:"Pre_And_Post"},Telugu:{hasOldSpec:!0,virama:3149,basePos:"Last",rephPos:Eo.After_Post,rephMode:"Explicit",blwfMode:"Post_Only"},Kannada:{hasOldSpec:!0,virama:3277,basePos:"Last",rephPos:Eo.After_Post,rephMode:"Implicit",blwfMode:"Post_Only"},Malayalam:{hasOldSpec:!0,virama:3405,basePos:"Last",rephPos:Eo.After_Main,rephMode:"Log_Repha",blwfMode:"Pre_And_Post"},Khmer:{hasOldSpec:!1,virama:6098,basePos:"First",rephPos:Eo.Ra_To_Become_Reph,rephMode:"Vis_Repha",blwfMode:"Pre_And_Post"}},Fo={6078:[6081,6078],6079:[6081,6079],6080:[6081,6080],6084:[6081,6084],6085:[6081,6085]},Lo=vo.decompositions,Ro=new x(p("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","base64")),Do=new k(yo),Mo=function(r){function IndicShaper(){return r.apply(this,arguments)||this}return _inheritsLoose(IndicShaper,r),IndicShaper.planFeatures=function planFeatures(r){r.addStage(setupSyllables),r.addStage(["locl","ccmp"]),r.addStage(initialReordering),r.addStage("nukt"),r.addStage("akhn"),r.addStage("rphf",!1),r.addStage("rkrf"),r.addStage("pref",!1),r.addStage("blwf",!1),r.addStage("abvf",!1),r.addStage("half",!1),r.addStage("pstf",!1),r.addStage("vatu"),r.addStage("cjct"),r.addStage("cfar",!1),r.addStage(finalReordering),r.addStage({local:["init"],global:["pres","abvs","blws","psts","haln","dist","abvm","blwm","calt","clig"]}),r.unicodeScript=function fromOpenType(r){return hi[r]}(r.script),r.indicConfig=Bo[r.unicodeScript]||Bo.Default,r.isOldSpec=r.indicConfig.hasOldSpec&&"2"!==r.script[r.script.length-1]},IndicShaper.assignFeatures=function assignFeatures(r,i){for(var o=function _loop(o){var u=i[o].codePoints[0],p=Fo[u]||Lo[u];if(p){var g=p.map((function(u){var p=r.font.glyphForCodePoint(u);return new io(r.font,p.id,[u],i[o].features)}));i.splice.apply(i,[o,1].concat(g))}},u=i.length-1;u>=0;u--)o(u)},IndicShaper}(Ui);function indicCategory(r){return Ro.get(r.codePoints[0])>>8}function indicPosition(r){return 1<<(255&Ro.get(r.codePoints[0]))}_defineProperty(Mo,"zeroMarkWidths","NONE");var No=function IndicInfo(r,i,o,u){this.category=r,this.position=i,this.syllableType=o,this.syllable=u};function setupSyllables(r,i){for(var o,u=0,p=0,g=_createForOfIteratorHelperLoose(Do.match(i.map(indicCategory)));!(o=g()).done;){var y=o.value,w=y[0],_=y[1],x=y[2];if(w>p){++u;for(var k=p;k<w;k++)i[k].shaperInfo=new No(mo,Eo.End,"non_indic_cluster",u)}++u;for(var P=w;P<=_;P++)i[P].shaperInfo=new No(1<<indicCategory(i[P]),indicPosition(i[P]),x[0],u);p=_+1}if(p<i.length){++u;for(var O=p;O<i.length;O++)i[O].shaperInfo=new No(mo,Eo.End,"non_indic_cluster",u)}}function isConsonant(r){return r.shaperInfo.category&To}function isJoiner(r){return r.shaperInfo.category&Oo}function isHalantOrCoeng(r){return r.shaperInfo.category&Io}function wouldSubstitute(r,i){for(var o,u=_createForOfIteratorHelperLoose(r);!(o=u()).done;){var p;o.value.features=((p={})[i]=!0,p)}return r[0]._font._layoutEngine.engine.GSUBProcessor.applyFeatures([i],r),1===r.length}function consonantPosition(r,i,o){var u=[o,i,o];return wouldSubstitute(u.slice(0,2),"blwf")||wouldSubstitute(u.slice(1,3),"blwf")?Eo.Below_C:wouldSubstitute(u.slice(0,2),"pstf")||wouldSubstitute(u.slice(1,3),"pstf")||wouldSubstitute(u.slice(0,2),"pref")||wouldSubstitute(u.slice(1,3),"pref")?Eo.Post_C:Eo.Base_C}function initialReordering(r,i,o){var u=o.indicConfig,p=r._layoutEngine.engine.GSUBProcessor.features,g=r.glyphForCodePoint(9676).id,y=r.glyphForCodePoint(u.virama).id;if(y)for(var w=new io(r,y,[u.virama]),_=0;_<i.length;_++)i[_].shaperInfo.position===Eo.Base_C&&(i[_].shaperInfo.position=consonantPosition(0,i[_].copy(),w));for(var x=0,k=nextSyllable(i,0);x<i.length;k=nextSyllable(i,x=k)){var P=i[x].shaperInfo,O=(P.category,P.syllableType);if("symbol_cluster"!==O&&"non_indic_cluster"!==O){if("broken_cluster"===O&&g){var I=new io(r,g,[9676]);I.shaperInfo=new No(1<<indicCategory(I),indicPosition(I),i[x].shaperInfo.syllableType,i[x].shaperInfo.syllable);for(var B=x;B<k&&i[B].shaperInfo.category===ko;)B++;i.splice(B++,0,I),k++}var R=k,D=x,N=!1;if(u.rephPos!==Eo.Ra_To_Become_Reph&&p.rphf&&x+3<=k&&("Implicit"===u.rephMode&&!isJoiner(i[x+2])||"Explicit"===u.rephMode&&i[x+2].shaperInfo.category===So)){var W=[i[x].copy(),i[x+1].copy(),i[x+2].copy()];if(wouldSubstitute(W.slice(0,2),"rphf")||"Explicit"===u.rephMode&&wouldSubstitute(W,"rphf")){for(D+=2;D<k&&isJoiner(i[D]);)D++;R=x,N=!0}}else if("Log_Repha"===u.rephMode&&i[x].shaperInfo.category===ko){for(D++;D<k&&isJoiner(i[D]);)D++;R=x,N=!0}switch(u.basePos){case"Last":var U=k,j=!1;do{var G=i[--U].shaperInfo;if(isConsonant(i[U])){if(G.position!==Eo.Below_C&&(G.position!==Eo.Post_C||j)){R=U;break}G.position===Eo.Below_C&&(j=!0),R=U}else if(x<U&&G.category===So&&i[U-1].shaperInfo.category===wo)break}while(U>D);break;case"First":for(var X=(R=x)+1;X<k;X++)isConsonant(i[X])&&(i[X].shaperInfo.position=Eo.Below_C)}N&&R===x&&D-R<=2&&(N=!1);for(var K=x;K<R;K++){var Y=i[K].shaperInfo;Y.position=Math.min(Eo.Pre_C,Y.position)}R<k&&(i[R].shaperInfo.position=Eo.Base_C);for(var J=R+1;J<k;J++)if(i[J].shaperInfo.category===xo){for(var $=J+1;$<k;$++)if(isConsonant(i[$])){i[$].shaperInfo.position=Eo.Final_C;break}break}if(N&&(i[x].shaperInfo.position=Eo.Ra_To_Become_Reph),o.isOldSpec)for(var ee="Malayalam"!==o.unicodeScript,te=R+1;te<k;te++)if(i[te].shaperInfo.category===wo){var re=void 0;for(re=k-1;re>te&&!(isConsonant(i[re])||ee&&i[re].shaperInfo.category===wo);re--);if(i[re].shaperInfo.category!==wo&&re>te){var ne=i[te];i.splice.apply(i,[te,0].concat(i.splice(te+1,re-te))),i[re]=ne}break}for(var ie=Eo.Start,oe=x;oe<k;oe++){var ae=i[oe].shaperInfo;if(ae.category&(Oo|bo|Co|Ao|Io&ae.category)){if(ae.position=ie,ae.category===wo&&ae.position===Eo.Pre_M)for(var se=oe;se>x;se--)if(i[se-1].shaperInfo.position!==Eo.Pre_M){ae.position=i[se-1].shaperInfo.position;break}}else ae.position!==Eo.SMVD&&(ie=ae.position)}for(var ce=R,le=R+1;le<k;le++)if(isConsonant(i[le])){for(var ue=ce+1;ue<le;ue++)i[ue].shaperInfo.position<Eo.SMVD&&(i[ue].shaperInfo.position=i[le].shaperInfo.position);ce=le}else i[le].shaperInfo.category===xo&&(ce=le);var fe=i.slice(x,k);fe.sort((function(r,i){return r.shaperInfo.position-i.shaperInfo.position})),i.splice.apply(i,[x,fe.length].concat(fe));for(var he=x;he<k;he++)if(i[he].shaperInfo.position===Eo.Base_C){R=he;break}for(var de=x;de<k&&i[de].shaperInfo.position===Eo.Ra_To_Become_Reph;de++)i[de].features.rphf=!0;for(var pe=!o.isOldSpec&&"Pre_And_Post"===u.blwfMode,ge=x;ge<R;ge++)i[ge].features.half=!0,pe&&(i[ge].features.blwf=!0);for(var ye=R+1;ye<k;ye++)i[ye].features.abvf=!0,i[ye].features.pstf=!0,i[ye].features.blwf=!0;if(o.isOldSpec&&"Devanagari"===o.unicodeScript)for(var ve=x;ve+1<R;ve++)i[ve].shaperInfo.category!==Po||i[ve+1].shaperInfo.category!==wo||ve+1!==R&&i[ve+2].shaperInfo.category!==So||(i[ve].features.blwf=!0,i[ve+1].features.blwf=!0);if(p.pref&&R+2<k)for(var me=R+1;me+2-1<k;me++){if(wouldSubstitute([i[me].copy(),i[me+1].copy()],"pref")){for(var be=0;be<2;be++)i[me++].features.pref=!0;if(p.cfar)for(;me<k;me++)i[me].features.cfar=!0;break}}for(var we=x+1;we<k;we++)if(isJoiner(i[we])){var _e=i[we].shaperInfo.category===_o,Se=we;do{Se--,_e&&delete i[Se].features.half}while(Se>x&&!isConsonant(i[Se]))}}}}function finalReordering(r,i,o){for(var u=o.indicConfig,p=r._layoutEngine.engine.GSUBProcessor.features,g=0,y=nextSyllable(i,0);g<i.length;y=nextSyllable(i,g=y)){for(var w=!!p.pref,x=g;x<y;x++)if(i[x].shaperInfo.position>=Eo.Base_C){if(w&&x+1<y)for(var k=x+1;k<y;k++)if(i[k].features.pref){if(!i[k].substituted||!i[k].isLigated||i[k].isMultiplied){for(x=k;x<y&&isHalantOrCoeng(i[x]);)x++;i[x].shaperInfo.position=Eo.BASE_C,w=!1}break}if("Malayalam"===o.unicodeScript)for(var P=x+1;P<y;P++){for(;P<y&&isJoiner(i[P]);)P++;if(P===y||!isHalantOrCoeng(i[P]))break;for(P++;P<y&&isJoiner(i[P]);)P++;P<y&&isConsonant(i[P])&&i[P].shaperInfo.position===Eo.Below_C&&(i[x=P].shaperInfo.position=Eo.Base_C)}g<x&&i[x].shaperInfo.position>Eo.Base_C&&x--;break}if(x===y&&g<x&&i[x-1].shaperInfo.category===So&&x--,x<y)for(;g<x&&i[x].shaperInfo.category&(bo|Io);)x--;if(g+1<y&&g<x){var O=x===y?x-2:x-1;if("Malayalam"!==o.unicodeScript&&"Tamil"!==o.unicodeScript){for(;O>g&&!(i[O].shaperInfo.category&(xo|Io));)O--;isHalantOrCoeng(i[O])&&i[O].shaperInfo.position!==Eo.Pre_M?O+1<y&&isJoiner(i[O+1])&&O++:O=g}if(g<O&&i[O].shaperInfo.position!==Eo.Pre_M)for(var I=O;I>g;I--)if(i[I-1].shaperInfo.position===Eo.Pre_M){var B=I-1;B<x&&x<=O&&x--;var R=i[B];i.splice.apply(i,[B,0].concat(i.splice(B+1,O-B))),i[O]=R,O--}}if(g+1<y&&i[g].shaperInfo.position===Eo.Ra_To_Become_Reph&&i[g].shaperInfo.category===ko!==(i[g].isLigated&&!i[g].isMultiplied)){var D=void 0,N=u.rephPos,W=!1;if(N!==Eo.After_Post){for(D=g+1;D<x&&!isHalantOrCoeng(i[D]);)D++;if(D<x&&isHalantOrCoeng(i[D])&&(D+1<x&&isJoiner(i[D+1])&&D++,W=!0),!W&&N===Eo.After_Main){for(D=x;D+1<y&&i[D+1].shaperInfo.position<=Eo.After_Main;)D++;W=D<y}if(!W&&N===Eo.After_Sub){for(D=x;D+1<y&&!(i[D+1].shaperInfo.position&(Eo.Post_C|Eo.After_Post|Eo.SMVD));)D++;W=D<y}}if(!W){for(D=g+1;D<x&&!isHalantOrCoeng(i[D]);)D++;D<x&&isHalantOrCoeng(i[D])&&(D+1<x&&isJoiner(i[D+1])&&D++,W=!0)}if(!W){for(D=y-1;D>g&&i[D].shaperInfo.position===Eo.SMVD;)D--;if(isHalantOrCoeng(i[D]))for(var U=x+1;U<D;U++)i[U].shaperInfo.category===xo&&D--}var j=i[g];i.splice.apply(i,[g,0].concat(i.splice(g+1,D-g))),i[D]=j,g<x&&x<=D&&x--}if(w&&x+1<y)for(var G=x+1;G<y;G++)if(i[G].features.pref){if(i[G].isLigated&&!i[G].isMultiplied){var X=x;if("Malayalam"!==o.unicodeScript&&"Tamil"!==o.unicodeScript){for(;X>g&&!(i[X-1].shaperInfo.category&(xo|Io));)X--;if(X>g&&i[X-1].shaperInfo.category===xo)for(var K=G,Y=x+1;Y<K;Y++)if(i[Y].shaperInfo.category===xo){X--;break}}X>g&&isHalantOrCoeng(i[X-1])&&X<y&&isJoiner(i[X])&&X++;var J=G,$=i[J];i.splice.apply(i,[X+1,0].concat(i.splice(X,J-X))),i[X]=$,X<=x&&x<J&&x++}break}i[g].shaperInfo.position!==Eo.Pre_M||g&&/Cf|Mn/.test(_.getCategory(i[g-1].codePoints[0]))||(i[g].features.init=!0)}}function nextSyllable(r,i){if(i>=r.length)return i;for(var o=r[i].shaperInfo.syllable;++i<r.length&&r[i].shaperInfo.syllable===o;);return i}var Wo=vo.categories,zo=vo.decompositions,Uo=new x(p("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","base64")),jo=new k(vo),Go=function(r){function UniversalShaper(){return r.apply(this,arguments)||this}return _inheritsLoose(UniversalShaper,r),UniversalShaper.planFeatures=function planFeatures(r){r.addStage(setupSyllables$1),r.addStage(["locl","ccmp","nukt","akhn"]),r.addStage(clearSubstitutionFlags),r.addStage(["rphf"],!1),r.addStage(recordRphf),r.addStage(clearSubstitutionFlags),r.addStage(["pref"]),r.addStage(recordPref),r.addStage(["rkrf","abvf","blwf","half","pstf","vatu","cjct"]),r.addStage(reorder),r.addStage(["abvs","blws","pres","psts","dist","abvm","blwm"])},UniversalShaper.assignFeatures=function assignFeatures(r,i){for(var o=function _loop(o){var u=i[o].codePoints[0];if(zo[u]){var p=zo[u].map((function(u){var p=r.font.glyphForCodePoint(u);return new io(r.font,p.id,[u],i[o].features)}));i.splice.apply(i,[o,1].concat(p))}},u=i.length-1;u>=0;u--)o(u)},UniversalShaper}(Ui);function useCategory(r){return Uo.get(r.codePoints[0])}_defineProperty(Go,"zeroMarkWidths","BEFORE_GPOS");var Vo=function USEInfo(r,i,o){this.category=r,this.syllableType=i,this.syllable=o};function setupSyllables$1(r,i){for(var o,u=0,p=_createForOfIteratorHelperLoose(jo.match(i.map(useCategory)));!(o=p()).done;){var g=o.value,y=g[0],w=g[1],_=g[2];++u;for(var x=y;x<=w;x++)i[x].shaperInfo=new Vo(Wo[useCategory(i[x])],_[0],u);for(var k="R"===i[y].shaperInfo.category?1:Math.min(3,w-y),P=y;P<y+k;P++)i[P].features.rphf=!0}}function clearSubstitutionFlags(r,i){for(var o,u=_createForOfIteratorHelperLoose(i);!(o=u()).done;){o.value.substituted=!1}}function recordRphf(r,i){for(var o,u=_createForOfIteratorHelperLoose(i);!(o=u()).done;){var p=o.value;p.substituted&&p.features.rphf&&(p.shaperInfo.category="R")}}function recordPref(r,i){for(var o,u=_createForOfIteratorHelperLoose(i);!(o=u()).done;){var p=o.value;p.substituted&&(p.shaperInfo.category="VPre")}}function reorder(r,i){for(var o=r.glyphForCodePoint(9676).id,u=0,p=nextSyllable$1(i,0);u<i.length;p=nextSyllable$1(i,u=p)){var g=void 0,y=void 0,w=i[u].shaperInfo,_=w.syllableType;if("virama_terminated_cluster"===_||"standard_cluster"===_||"broken_cluster"===_){if("broken_cluster"===_&&o){var x=new io(r,o,[9676]);for(x.shaperInfo=w,g=u;g<p&&"R"===i[g].shaperInfo.category;g++);i.splice(++g,0,x),p++}if("R"===w.category&&p-u>1)for(g=u+1;g<p;g++)if(isBase(w=i[g].shaperInfo)||isHalant(i[g])){isHalant(i[g])&&g--,i.splice.apply(i,[u,0].concat(i.splice(u+1,g-u),[i[g]]));break}for(g=u,y=p;g<p;g++)isBase(w=i[g].shaperInfo)||isHalant(i[g])?y=isHalant(i[g])?g+1:g:("VPre"===w.category||"VMPre"===w.category)&&y<g&&i.splice.apply(i,[y,1,i[g]].concat(i.splice(y,g-y)))}}}function nextSyllable$1(r,i){if(i>=r.length)return i;for(var o=r[i].shaperInfo.syllable;++i<r.length&&r[i].shaperInfo.syllable===o;);return i}function isHalant(r){return"H"===r.shaperInfo.category&&!r.isLigated}function isBase(r){return"B"===r.category||"GB"===r.category}var Ho={arab:eo,mong:eo,syrc:eo,"nko ":eo,phag:eo,mand:eo,mani:eo,phlp:eo,hang:oo,bng2:Mo,beng:Mo,dev2:Mo,deva:Mo,gjr2:Mo,gujr:Mo,guru:Mo,gur2:Mo,knda:Mo,knd2:Mo,mlm2:Mo,mlym:Mo,ory2:Mo,orya:Mo,taml:Mo,tml2:Mo,telu:Mo,tel2:Mo,khmr:Mo,bali:Go,batk:Go,brah:Go,bugi:Go,buhd:Go,cakm:Go,cham:Go,dupl:Go,egyp:Go,gran:Go,hano:Go,java:Go,kthi:Go,kali:Go,khar:Go,khoj:Go,sind:Go,lepc:Go,limb:Go,mahj:Go,mtei:Go,modi:Go,hmng:Go,rjng:Go,saur:Go,shrd:Go,sidd:Go,sinh:Go,sund:Go,sylo:Go,tglg:Go,tagb:Go,tale:Go,lana:Go,tavt:Go,takr:Go,tibt:Go,tfng:Go,tirh:Go,latn:Ui,DFLT:Ui};for(var qo=function(r){function GSUBProcessor(){return r.apply(this,arguments)||this}return _inheritsLoose(GSUBProcessor,r),GSUBProcessor.prototype.applyLookup=function applyLookup(r,i){var o=this;switch(r){case 1:var u=this.coverageIndex(i.coverage);if(-1===u)return!1;var p=this.glyphIterator.cur;switch(i.version){case 1:p.id=p.id+i.deltaGlyphID&65535;break;case 2:p.id=i.substitute.get(u)}return!0;case 2:var g=this.coverageIndex(i.coverage);if(-1!==g){var y,w=i.sequences.get(g);if(0===w.length)return this.glyphs.splice(this.glyphIterator.index,1),!0;this.glyphIterator.cur.id=w[0],this.glyphIterator.cur.ligatureComponent=0;var _=this.glyphIterator.cur.features,x=this.glyphIterator.cur,k=w.slice(1).map((function(r,i){var u=new io(o.font,r,void 0,_);return u.shaperInfo=x.shaperInfo,u.isLigated=x.isLigated,u.ligatureComponent=i+1,u.substituted=!0,u.isMultiplied=!0,u}));return(y=this.glyphs).splice.apply(y,[this.glyphIterator.index+1,0].concat(k)),!0}return!1;case 3:var P=this.coverageIndex(i.coverage);if(-1!==P){return this.glyphIterator.cur.id=i.alternateSet.get(P)[0],!0}return!1;case 4:var O=this.coverageIndex(i.coverage);if(-1===O)return!1;for(var I,B=_createForOfIteratorHelperLoose(i.ligatureSets.get(O));!(I=B()).done;){var R=I.value,D=this.sequenceMatchIndices(1,R.components);if(D){for(var N,W=this.glyphIterator.cur,U=W.codePoints.slice(),j=_createForOfIteratorHelperLoose(D);!(N=j()).done;){var G,X=N.value;(G=U).push.apply(G,this.glyphs[X].codePoints)}var K=new io(this.font,R.glyph,U,W.features);K.shaperInfo=W.shaperInfo,K.isLigated=!0,K.substituted=!0;for(var Y=W.isMark,J=0;J<D.length&&Y;J++)Y=this.glyphs[D[J]].isMark;K.ligatureID=Y?null:this.ligatureID++;for(var $,ee=W.ligatureID,te=W.codePoints.length,re=te,ne=this.glyphIterator.index+1,ie=_createForOfIteratorHelperLoose(D);!($=ie()).done;){var oe=$.value;if(Y)ne=oe;else for(;ne<oe;){var ae=re-te+Math.min(this.glyphs[ne].ligatureComponent||1,te);this.glyphs[ne].ligatureID=K.ligatureID,this.glyphs[ne].ligatureComponent=ae,ne++}ee=this.glyphs[ne].ligatureID,re+=te=this.glyphs[ne].codePoints.length,ne++}if(ee&&!Y)for(var se=ne;se<this.glyphs.length&&this.glyphs[se].ligatureID===ee;se++){ae=re-te+Math.min(this.glyphs[se].ligatureComponent||1,te);this.glyphs[se].ligatureComponent=ae}for(var ce=D.length-1;ce>=0;ce--)this.glyphs.splice(D[ce],1);return this.glyphs[this.glyphIterator.index]=K,!0}}return!1;case 5:return this.applyContext(i);case 6:return this.applyChainingContext(i);case 7:return this.applyLookup(i.lookupType,i.extension);default:throw new Error("GSUB lookupType ".concat(r," is not supported"))}},GSUBProcessor}(no),Xo=function(r){function GPOSProcessor(){return r.apply(this,arguments)||this}_inheritsLoose(GPOSProcessor,r);var i=GPOSProcessor.prototype;return i.applyPositionValue=function applyPositionValue(r,i){var o=this.positions[this.glyphIterator.peekIndex(r)];null!=i.xAdvance&&(o.xAdvance+=i.xAdvance),null!=i.yAdvance&&(o.yAdvance+=i.yAdvance),null!=i.xPlacement&&(o.xOffset+=i.xPlacement),null!=i.yPlacement&&(o.yOffset+=i.yPlacement);var u=this.font._variationProcessor,p=this.font.GDEF&&this.font.GDEF.itemVariationStore;u&&p&&(i.xPlaDevice&&(o.xOffset+=u.getDelta(p,i.xPlaDevice.a,i.xPlaDevice.b)),i.yPlaDevice&&(o.yOffset+=u.getDelta(p,i.yPlaDevice.a,i.yPlaDevice.b)),i.xAdvDevice&&(o.xAdvance+=u.getDelta(p,i.xAdvDevice.a,i.xAdvDevice.b)),i.yAdvDevice&&(o.yAdvance+=u.getDelta(p,i.yAdvDevice.a,i.yAdvDevice.b)))},i.applyLookup=function applyLookup(r,i){switch(r){case 1:var o=this.coverageIndex(i.coverage);if(-1===o)return!1;switch(i.version){case 1:this.applyPositionValue(0,i.value);break;case 2:this.applyPositionValue(0,i.values.get(o))}return!0;case 2:var u=this.glyphIterator.peek();if(!u)return!1;var p=this.coverageIndex(i.coverage);if(-1===p)return!1;switch(i.version){case 1:for(var g,y=_createForOfIteratorHelperLoose(i.pairSets.get(p));!(g=y()).done;){var w=g.value;if(w.secondGlyph===u.id)return this.applyPositionValue(0,w.value1),this.applyPositionValue(1,w.value2),!0}return!1;case 2:var _=this.getClassID(this.glyphIterator.cur.id,i.classDef1),x=this.getClassID(u.id,i.classDef2);if(-1===_||-1===x)return!1;var k=i.classRecords.get(_).get(x);return this.applyPositionValue(0,k.value1),this.applyPositionValue(1,k.value2),!0}case 3:var P=this.glyphIterator.peekIndex(),O=this.glyphs[P];if(!O)return!1;var I=i.entryExitRecords[this.coverageIndex(i.coverage)];if(!I||!I.exitAnchor)return!1;var B=i.entryExitRecords[this.coverageIndex(i.coverage,O.id)];if(!B||!B.entryAnchor)return!1;var R=this.getAnchor(B.entryAnchor),D=this.getAnchor(I.exitAnchor),N=this.positions[this.glyphIterator.index],W=this.positions[P];switch(this.direction){case"ltr":N.xAdvance=D.x+N.xOffset;var U=R.x+W.xOffset;W.xAdvance-=U,W.xOffset-=U;break;case"rtl":U=D.x+N.xOffset,N.xAdvance-=U,N.xOffset-=U,W.xAdvance=R.x+W.xOffset}return this.glyphIterator.flags.rightToLeft?(this.glyphIterator.cur.cursiveAttachment=P,N.yOffset=R.y-D.y):(O.cursiveAttachment=this.glyphIterator.index,N.yOffset=D.y-R.y),!0;case 4:var j=this.coverageIndex(i.markCoverage);if(-1===j)return!1;for(var G=this.glyphIterator.index;--G>=0&&(this.glyphs[G].isMark||this.glyphs[G].ligatureComponent>0););if(G<0)return!1;var X=this.coverageIndex(i.baseCoverage,this.glyphs[G].id);if(-1===X)return!1;var K=i.markArray[j],Y=i.baseArray[X][K.class];return this.applyAnchor(K,Y,G),!0;case 5:var J=this.coverageIndex(i.markCoverage);if(-1===J)return!1;for(var $=this.glyphIterator.index;--$>=0&&this.glyphs[$].isMark;);if($<0)return!1;var ee=this.coverageIndex(i.ligatureCoverage,this.glyphs[$].id);if(-1===ee)return!1;var te=i.ligatureArray[ee],re=this.glyphIterator.cur,ne=this.glyphs[$],ie=ne.ligatureID&&ne.ligatureID===re.ligatureID&&re.ligatureComponent>0?Math.min(re.ligatureComponent,ne.codePoints.length)-1:ne.codePoints.length-1,oe=i.markArray[J],ae=te[ie][oe.class];return this.applyAnchor(oe,ae,$),!0;case 6:var se=this.coverageIndex(i.mark1Coverage);if(-1===se)return!1;var ce=this.glyphIterator.peekIndex(-1),le=this.glyphs[ce];if(!le||!le.isMark)return!1;var ue=this.glyphIterator.cur,fe=!1;if(ue.ligatureID===le.ligatureID?ue.ligatureID?ue.ligatureComponent===le.ligatureComponent&&(fe=!0):fe=!0:(ue.ligatureID&&!ue.ligatureComponent||le.ligatureID&&!le.ligatureComponent)&&(fe=!0),!fe)return!1;var he=this.coverageIndex(i.mark2Coverage,le.id);if(-1===he)return!1;var de=i.mark1Array[se],pe=i.mark2Array[he][de.class];return this.applyAnchor(de,pe,ce),!0;case 7:return this.applyContext(i);case 8:return this.applyChainingContext(i);case 9:return this.applyLookup(i.lookupType,i.extension);default:throw new Error("Unsupported GPOS table: ".concat(r))}},i.applyAnchor=function applyAnchor(r,i,o){var u=this.getAnchor(i),p=this.getAnchor(r.markAnchor),g=(this.positions[o],this.positions[this.glyphIterator.index]);g.xOffset=u.x-p.x,g.yOffset=u.y-p.y,this.glyphIterator.cur.markAttachment=o},i.getAnchor=function getAnchor(r){var i=r.xCoordinate,o=r.yCoordinate,u=this.font._variationProcessor,p=this.font.GDEF&&this.font.GDEF.itemVariationStore;return u&&p&&(r.xDeviceTable&&(i+=u.getDelta(p,r.xDeviceTable.a,r.xDeviceTable.b)),r.yDeviceTable&&(o+=u.getDelta(p,r.yDeviceTable.a,r.yDeviceTable.b))),{x:i,y:o}},i.applyFeatures=function applyFeatures(i,o,u){r.prototype.applyFeatures.call(this,i,o,u);for(var p=0;p<this.glyphs.length;p++)this.fixCursiveAttachment(p);this.fixMarkAttachment()},i.fixCursiveAttachment=function fixCursiveAttachment(r){var i=this.glyphs[r];if(null!=i.cursiveAttachment){var o=i.cursiveAttachment;i.cursiveAttachment=null,this.fixCursiveAttachment(o),this.positions[r].yOffset+=this.positions[o].yOffset}},i.fixMarkAttachment=function fixMarkAttachment(){for(var r=0;r<this.glyphs.length;r++){var i=this.glyphs[r];if(null!=i.markAttachment){var o=i.markAttachment;if(this.positions[r].xOffset+=this.positions[o].xOffset,this.positions[r].yOffset+=this.positions[o].yOffset,"ltr"===this.direction)for(var u=o;u<r;u++)this.positions[r].xOffset-=this.positions[u].xAdvance,this.positions[r].yOffset-=this.positions[u].yAdvance;else for(var p=o+1;p<r+1;p++)this.positions[r].xOffset+=this.positions[p].xAdvance,this.positions[r].yOffset+=this.positions[p].yAdvance}}},GPOSProcessor}(no),Zo=function(){function OTLayoutEngine(r){this.font=r,this.glyphInfos=null,this.plan=null,this.GSUBProcessor=null,this.GPOSProcessor=null,this.fallbackPosition=!0,r.GSUB&&(this.GSUBProcessor=new qo(r,r.GSUB)),r.GPOS&&(this.GPOSProcessor=new Xo(r,r.GPOS))}var r=OTLayoutEngine.prototype;return r.setup=function setup(r){var i=this;this.glyphInfos=r.glyphs.map((function(r){return new io(i.font,r.id,[].concat(r.codePoints))}));var o=null;for(var u in this.GPOSProcessor&&(o=this.GPOSProcessor.selectScript(r.script,r.language,r.direction)),this.GSUBProcessor&&(o=this.GSUBProcessor.selectScript(r.script,r.language,r.direction)),this.shaper=function choose(r){Array.isArray(r)||(r=[r]);for(var i,o=_createForOfIteratorHelperLoose(r);!(i=o()).done;){var u=i.value,p=Ho[u];if(p)return p}return Ui}(o),this.plan=new Ri(this.font,o,r.direction),this.shaper.plan(this.plan,this.glyphInfos,r.features),this.plan.allFeatures)r.features[u]=!0},r.substitute=function substitute(r){var i=this;this.GSUBProcessor&&(this.plan.process(this.GSUBProcessor,this.glyphInfos),r.glyphs=this.glyphInfos.map((function(r){return i.font.getGlyph(r.id,r.codePoints)})))},r.position=function position(r){return"BEFORE_GPOS"===this.shaper.zeroMarkWidths&&this.zeroMarkAdvances(r.positions),this.GPOSProcessor&&this.plan.process(this.GPOSProcessor,this.glyphInfos,r.positions),"AFTER_GPOS"===this.shaper.zeroMarkWidths&&this.zeroMarkAdvances(r.positions),"rtl"===r.direction&&(r.glyphs.reverse(),r.positions.reverse()),this.GPOSProcessor&&this.GPOSProcessor.features},r.zeroMarkAdvances=function zeroMarkAdvances(r){for(var i=0;i<this.glyphInfos.length;i++)this.glyphInfos[i].isMark&&(r[i].xAdvance=0,r[i].yAdvance=0)},r.cleanup=function cleanup(){this.glyphInfos=null,this.plan=null,this.shaper=null},r.getAvailableFeatures=function getAvailableFeatures(r,i){var o=[];return this.GSUBProcessor&&(this.GSUBProcessor.selectScript(r,i),o.push.apply(o,Object.keys(this.GSUBProcessor.features))),this.GPOSProcessor&&(this.GPOSProcessor.selectScript(r,i),o.push.apply(o,Object.keys(this.GPOSProcessor.features))),o},OTLayoutEngine}(),Ko=function(){function LayoutEngine(r){this.font=r,this.unicodeLayoutEngine=null,this.kernProcessor=null,this.font.morx?this.engine=new Li(this.font):(this.font.GSUB||this.font.GPOS)&&(this.engine=new Zo(this.font))}var r=LayoutEngine.prototype;return r.layout=function layout(r,i,o,u,p){if("string"==typeof i&&(p=u,u=o,o=i,i=[]),"string"==typeof r){null==o&&(o=function forString(r){for(var i=r.length,o=0;o<i;){var u=r.charCodeAt(o++);if(55296<=u&&u<=56319&&o<i){var p=r.charCodeAt(o);56320<=p&&p<=57343&&(o++,u=((1023&u)<<10)+(1023&p)+65536)}var g=_.getScript(u);if("Common"!==g&&"Inherited"!==g&&"Unknown"!==g)return fi[g]}return fi.Unknown}(r));var g=this.font.glyphsForString(r)}else{if(null==o){for(var y,w=[],x=_createForOfIteratorHelperLoose(r);!(y=x()).done;){var k=y.value;w.push.apply(w,k.codePoints)}o=function forCodePoints(r){for(var i=0;i<r.length;i++){var o=r[i],u=_.getScript(o);if("Common"!==u&&"Inherited"!==u&&"Unknown"!==u)return fi[u]}return fi.Unknown}(w)}g=r}var P=new bi(g,i,o,u,p);return 0===g.length?(P.positions=[],P):(this.engine&&this.engine.setup&&this.engine.setup(P),this.substitute(P),this.position(P),this.hideDefaultIgnorables(P.glyphs,P.positions),this.engine&&this.engine.cleanup&&this.engine.cleanup(),P)},r.substitute=function substitute(r){this.engine&&this.engine.substitute&&this.engine.substitute(r)},r.position=function position(r){r.positions=r.glyphs.map((function(r){return new wi(r.advanceWidth)}));var i=null;this.engine&&this.engine.position&&(i=this.engine.position(r)),i||this.engine&&!this.engine.fallbackPosition||(this.unicodeLayoutEngine||(this.unicodeLayoutEngine=new li(this.font)),this.unicodeLayoutEngine.positionGlyphs(r.glyphs,r.positions)),i&&i.kern||!1===r.features.kern||!this.font.kern||(this.kernProcessor||(this.kernProcessor=new ci(this.font)),this.kernProcessor.process(r.glyphs,r.positions),r.features.kern=!0)},r.hideDefaultIgnorables=function hideDefaultIgnorables(r,i){for(var o=this.font.glyphForCodePoint(32),u=0;u<r.length;u++)this.isDefaultIgnorable(r[u].codePoints[0])&&(r[u]=o,i[u].xAdvance=0,i[u].yAdvance=0)},r.isDefaultIgnorable=function isDefaultIgnorable(r){var i=r>>16;if(0===i)switch(r>>8){case 0:return 173===r;case 3:return 847===r;case 6:return 1564===r;case 23:return 6068<=r&&r<=6069;case 24:return 6155<=r&&r<=6158;case 32:return 8203<=r&&r<=8207||8234<=r&&r<=8238||8288<=r&&r<=8303;case 254:return 65024<=r&&r<=65039||65279===r;case 255:return 65520<=r&&r<=65528;default:return!1}else switch(i){case 1:return 113824<=r&&r<=113827||119155<=r&&r<=119162;case 14:return 917504<=r&&r<=921599;default:return!1}},r.getAvailableFeatures=function getAvailableFeatures(r,i){var o=[];return this.engine&&o.push.apply(o,this.engine.getAvailableFeatures(r,i)),this.font.kern&&-1===o.indexOf("kern")&&o.push("kern"),o},r.stringsForGlyph=function stringsForGlyph(r){for(var i,o=new Set,u=_createForOfIteratorHelperLoose(this.font._cmapProcessor.codePointsForGlyph(r));!(i=u()).done;){var p=i.value;o.add(String.fromCodePoint(p))}if(this.engine&&this.engine.stringsForGlyph)for(var g,y=_createForOfIteratorHelperLoose(this.engine.stringsForGlyph(r));!(g=y()).done;){var w=g.value;o.add(w)}return Array.from(o)},LayoutEngine}(),Yo={moveTo:"M",lineTo:"L",quadraticCurveTo:"Q",bezierCurveTo:"C",closePath:"Z"},Jo=function(){function Path(){this.commands=[],this._bbox=null,this._cbox=null}var r=Path.prototype;return r.toFunction=function toFunction(){var r=this;return function(i){r.commands.forEach((function(r){return i[r.command].apply(i,r.args)}))}},r.toSVG=function toSVG(){return this.commands.map((function(r){var i=r.args.map((function(r){return Math.round(100*r)/100}));return"".concat(Yo[r.command]).concat(i.join(" "))})).join("")},r.mapPoints=function mapPoints(r){for(var i,o=new Path,u=_createForOfIteratorHelperLoose(this.commands);!(i=u()).done;){for(var p=i.value,g=[],y=0;y<p.args.length;y+=2){var w=r(p.args[y],p.args[y+1]),_=w[0],x=w[1];g.push(_,x)}o[p.command].apply(o,g)}return o},r.transform=function transform(r,i,o,u,p,g){return this.mapPoints((function(y,w){return[y=r*y+o*w+p,w=i*y+u*w+g]}))},r.translate=function translate(r,i){return this.transform(1,0,0,1,r,i)},r.rotate=function rotate(r){var i=Math.cos(r),o=Math.sin(r);return this.transform(i,o,-o,i,0,0)},r.scale=function scale(r,i){return void 0===i&&(i=r),this.transform(r,0,0,i,0,0)},_createClass(Path,[{key:"cbox",get:function get(){if(!this._cbox){for(var r,i=new ui,o=_createForOfIteratorHelperLoose(this.commands);!(r=o()).done;)for(var u=r.value,p=0;p<u.args.length;p+=2)i.addPoint(u.args[p],u.args[p+1]);this._cbox=Object.freeze(i)}return this._cbox}},{key:"bbox",get:function get(){if(this._bbox)return this._bbox;for(var r,i=new ui,o=0,u=0,p=function f(r){return Math.pow(1-r,3)*j[Y]+3*Math.pow(1-r,2)*r*G[Y]+3*(1-r)*Math.pow(r,2)*X[Y]+Math.pow(r,3)*K[Y]},g=_createForOfIteratorHelperLoose(this.commands);!(r=g()).done;){var y=r.value;switch(y.command){case"moveTo":case"lineTo":var w=y.args,_=w[0],x=w[1];i.addPoint(_,x),o=_,u=x;break;case"quadraticCurveTo":case"bezierCurveTo":if("quadraticCurveTo"===y.command)var k=y.args,P=k[0],O=k[1],I=o+2/3*(P-o),B=u+2/3*(O-u),R=(W=k[2])+2/3*(P-W),D=(U=k[3])+2/3*(O-U);else var N=y.args,W=(I=N[0],B=N[1],R=N[2],D=N[3],N[4]),U=N[5];i.addPoint(W,U);for(var j=[o,u],G=[I,B],X=[R,D],K=[W,U],Y=0;Y<=1;Y++){var J=6*j[Y]-12*G[Y]+6*X[Y],$=-3*j[Y]+9*G[Y]-9*X[Y]+3*K[Y];if(y=3*G[Y]-3*j[Y],0!==$){var ee=Math.pow(J,2)-4*y*$;if(!(ee<0)){var te=(-J+Math.sqrt(ee))/(2*$);0<te&&te<1&&(0===Y?i.addPoint(p(te),i.maxY):1===Y&&i.addPoint(i.maxX,p(te)));var re=(-J-Math.sqrt(ee))/(2*$);0<re&&re<1&&(0===Y?i.addPoint(p(re),i.maxY):1===Y&&i.addPoint(i.maxX,p(re)))}}else{if(0===J)continue;var ne=-y/J;0<ne&&ne<1&&(0===Y?i.addPoint(p(ne),i.maxY):1===Y&&i.addPoint(i.maxX,p(ne)))}}o=W,u=U}}return this._bbox=Object.freeze(i)}}]),Path}(),Qo=function _loop(r){Jo.prototype[r]=function(){this._bbox=this._cbox=null;for(var i=arguments.length,o=new Array(i),u=0;u<i;u++)o[u]=arguments[u];return this.commands.push({command:r,args:o}),this}},$o=0,ea=["moveTo","lineTo","quadraticCurveTo","bezierCurveTo","closePath"];$o<ea.length;$o++){Qo(ea[$o])}var ta,ra,na=[".notdef",".null","nonmarkingreturn","space","exclam","quotedbl","numbersign","dollar","percent","ampersand","quotesingle","parenleft","parenright","asterisk","plus","comma","hyphen","period","slash","zero","one","two","three","four","five","six","seven","eight","nine","colon","semicolon","less","equal","greater","question","at","A","B","C","D","E","F","G","H","I","J","K","L","M","N","O","P","Q","R","S","T","U","V","W","X","Y","Z","bracketleft","backslash","bracketright","asciicircum","underscore","grave","a","b","c","d","e","f","g","h","i","j","k","l","m","n","o","p","q","r","s","t","u","v","w","x","y","z","braceleft","bar","braceright","asciitilde","Adieresis","Aring","Ccedilla","Eacute","Ntilde","Odieresis","Udieresis","aacute","agrave","acircumflex","adieresis","atilde","aring","ccedilla","eacute","egrave","ecircumflex","edieresis","iacute","igrave","icircumflex","idieresis","ntilde","oacute","ograve","ocircumflex","odieresis","otilde","uacute","ugrave","ucircumflex","udieresis","dagger","degree","cent","sterling","section","bullet","paragraph","germandbls","registered","copyright","trademark","acute","dieresis","notequal","AE","Oslash","infinity","plusminus","lessequal","greaterequal","yen","mu","partialdiff","summation","product","pi","integral","ordfeminine","ordmasculine","Omega","ae","oslash","questiondown","exclamdown","logicalnot","radical","florin","approxequal","Delta","guillemotleft","guillemotright","ellipsis","nonbreakingspace","Agrave","Atilde","Otilde","OE","oe","endash","emdash","quotedblleft","quotedblright","quoteleft","quoteright","divide","lozenge","ydieresis","Ydieresis","fraction","currency","guilsinglleft","guilsinglright","fi","fl","daggerdbl","periodcentered","quotesinglbase","quotedblbase","perthousand","Acircumflex","Ecircumflex","Aacute","Edieresis","Egrave","Iacute","Icircumflex","Idieresis","Igrave","Oacute","Ocircumflex","apple","Ograve","Uacute","Ucircumflex","Ugrave","dotlessi","circumflex","tilde","macron","breve","dotaccent","ring","cedilla","hungarumlaut","ogonek","caron","Lslash","lslash","Scaron","scaron","Zcaron","zcaron","brokenbar","Eth","eth","Yacute","yacute","Thorn","thorn","minus","multiply","onesuperior","twosuperior","threesuperior","onehalf","onequarter","threequarters","franc","Gbreve","gbreve","Idotaccent","Scedilla","scedilla","Cacute","cacute","Ccaron","ccaron","dcroat"],ia=(ta=function(){function Glyph(r,i,o){this.id=r,this.codePoints=i,this._font=o,this.isMark=this.codePoints.length>0&&this.codePoints.every(_.isMark),this.isLigature=this.codePoints.length>1}var r=Glyph.prototype;return r._getPath=function _getPath(){return new Jo},r._getCBox=function _getCBox(){return this.path.cbox},r._getBBox=function _getBBox(){return this.path.bbox},r._getTableMetrics=function _getTableMetrics(r){if(this.id<r.metrics.length)return r.metrics.get(this.id);var i=r.metrics.get(r.metrics.length-1);return{advance:i?i.advance:0,bearing:r.bearings.get(this.id-r.metrics.length)||0}},r._getMetrics=function _getMetrics(r){if(this._metrics)return this._metrics;var i,o=this._getTableMetrics(this._font.hmtx),u=o.advance,p=o.bearing;if(this._font.vmtx)var g=this._getTableMetrics(this._font.vmtx),y=g.advance,w=g.bearing;else if(null==r&&(r=this.cbox),(i=this._font["OS/2"])&&i.version>0)y=Math.abs(i.typoAscender-i.typoDescender),w=i.typoAscender-r.maxY;else{var _=this._font.hhea;y=Math.abs(_.ascent-_.descent),w=_.ascent-r.maxY}return this._font._variationProcessor&&this._font.HVAR&&(u+=this._font._variationProcessor.getAdvanceAdjustment(this.id,this._font.HVAR)),this._metrics={advanceWidth:u,advanceHeight:y,leftBearing:p,topBearing:w}},r.getScaledPath=function getScaledPath(r){var i=1/this._font.unitsPerEm*r;return this.path.scale(i)},r._getName=function _getName(){var r=this._font.post;if(!r)return null;switch(r.version){case 1:return na[this.id];case 2:var i=r.glyphNameIndex[this.id];return i<na.length?na[i]:r.names[i-na.length];case 2.5:return na[this.id+r.offsets[this.id]];case 4:return String.fromCharCode(r.map[this.id])}},r.render=function render(r,i){r.save();var o=1/this._font.head.unitsPerEm*i;r.scale(o,o),this.path.toFunction()(r),r.fill(),r.restore()},_createClass(Glyph,[{key:"cbox",get:function get(){return this._getCBox()}},{key:"bbox",get:function get(){return this._getBBox()}},{key:"path",get:function get(){return this._getPath()}},{key:"advanceWidth",get:function get(){return this._getMetrics().advanceWidth}},{key:"advanceHeight",get:function get(){return this._getMetrics().advanceHeight}},{key:"ligatureCaretPositions",get:function get(){}},{key:"name",get:function get(){return this._getName()}}]),Glyph}(),_applyDecoratedDescriptor(ta.prototype,"cbox",[cache],Object.getOwnPropertyDescriptor(ta.prototype,"cbox"),ta.prototype),_applyDecoratedDescriptor(ta.prototype,"bbox",[cache],Object.getOwnPropertyDescriptor(ta.prototype,"bbox"),ta.prototype),_applyDecoratedDescriptor(ta.prototype,"path",[cache],Object.getOwnPropertyDescriptor(ta.prototype,"path"),ta.prototype),_applyDecoratedDescriptor(ta.prototype,"advanceWidth",[cache],Object.getOwnPropertyDescriptor(ta.prototype,"advanceWidth"),ta.prototype),_applyDecoratedDescriptor(ta.prototype,"advanceHeight",[cache],Object.getOwnPropertyDescriptor(ta.prototype,"advanceHeight"),ta.prototype),_applyDecoratedDescriptor(ta.prototype,"name",[cache],Object.getOwnPropertyDescriptor(ta.prototype,"name"),ta.prototype),ta),oa=new g.Struct({numberOfContours:g.int16,xMin:g.int16,yMin:g.int16,xMax:g.int16,yMax:g.int16}),aa=function(){function Point(r,i,o,u){void 0===o&&(o=0),void 0===u&&(u=0),this.onCurve=r,this.endContour=i,this.x=o,this.y=u}return Point.prototype.copy=function copy(){return new Point(this.onCurve,this.endContour,this.x,this.y)},Point}(),sa=function Component(r,i,o){this.glyphID=r,this.dx=i,this.dy=o,this.pos=0,this.scaleX=this.scaleY=1,this.scale01=this.scale10=0},ca=function(r){function TTFGlyph(){return r.apply(this,arguments)||this}_inheritsLoose(TTFGlyph,r);var i=TTFGlyph.prototype;return i._getCBox=function _getCBox(r){if(this._font._variationProcessor&&!r)return this.path.cbox;var i=this._font._getTableStream("glyf");i.pos+=this._font.loca.offsets[this.id];var o=oa.decode(i),u=new ui(o.xMin,o.yMin,o.xMax,o.yMax);return Object.freeze(u)},i._parseGlyphCoord=function _parseGlyphCoord(r,i,o,u){if(o){var p=r.readUInt8();u||(p=-p),p+=i}else if(u)p=i;else p=i+r.readInt16BE();return p},i._decode=function _decode(){var r=this._font.loca.offsets[this.id];if(r===this._font.loca.offsets[this.id+1])return null;var i=this._font._getTableStream("glyf");i.pos+=r;var o=i.pos,u=oa.decode(i);return u.numberOfContours>0?this._decodeSimple(u,i):u.numberOfContours<0&&this._decodeComposite(u,i,o),u},i._decodeSimple=function _decodeSimple(r,i){r.points=[];var o=new g.Array(g.uint16,r.numberOfContours).decode(i);r.instructions=new g.Array(g.uint8,g.uint16).decode(i);for(var u=[],p=o[o.length-1]+1;u.length<p;){var y=i.readUInt8();if(u.push(y),8&y)for(var w=i.readUInt8(),_=0;_<w;_++)u.push(y)}for(var x=0;x<u.length;x++){y=u[x];var k=new aa(!!(1&y),o.indexOf(x)>=0,0,0);r.points.push(k)}var P=0;for(x=0;x<u.length;x++){y=u[x];r.points[x].x=P=this._parseGlyphCoord(i,P,2&y,16&y)}var O=0;for(x=0;x<u.length;x++){y=u[x];r.points[x].y=O=this._parseGlyphCoord(i,O,4&y,32&y)}if(this._font._variationProcessor){var I=r.points.slice();I.push.apply(I,this._getPhantomPoints(r)),this._font._variationProcessor.transformPoints(this.id,I),r.phantomPoints=I.slice(-4)}},i._decodeComposite=function _decodeComposite(r,i,o){void 0===o&&(o=0),r.components=[];for(var u=!1,p=32;32&p;){p=i.readUInt16BE();var g=i.pos-o,y=i.readUInt16BE();if(u||(u=0!=(256&p)),1&p)var w=i.readInt16BE(),_=i.readInt16BE();else w=i.readInt8(),_=i.readInt8();(P=new sa(y,w,_)).pos=g,8&p?P.scaleX=P.scaleY=(i.readUInt8()<<24|i.readUInt8()<<16)/1073741824:64&p?(P.scaleX=(i.readUInt8()<<24|i.readUInt8()<<16)/1073741824,P.scaleY=(i.readUInt8()<<24|i.readUInt8()<<16)/1073741824):128&p&&(P.scaleX=(i.readUInt8()<<24|i.readUInt8()<<16)/1073741824,P.scale01=(i.readUInt8()<<24|i.readUInt8()<<16)/1073741824,P.scale10=(i.readUInt8()<<24|i.readUInt8()<<16)/1073741824,P.scaleY=(i.readUInt8()<<24|i.readUInt8()<<16)/1073741824),r.components.push(P)}if(this._font._variationProcessor){for(var x=[],k=0;k<r.components.length;k++){var P=r.components[k];x.push(new aa(!0,!0,P.dx,P.dy))}x.push.apply(x,this._getPhantomPoints(r)),this._font._variationProcessor.transformPoints(this.id,x),r.phantomPoints=x.splice(-4,4);for(var O=0;O<x.length;O++){var I=x[O];r.components[O].dx=I.x,r.components[O].dy=I.y}}return u},i._getPhantomPoints=function _getPhantomPoints(r){var i=this._getCBox(!0);null==this._metrics&&(this._metrics=ia.prototype._getMetrics.call(this,i));var o=this._metrics,u=o.advanceWidth,p=o.advanceHeight,g=o.leftBearing,y=o.topBearing;return[new aa(!1,!0,r.xMin-g,0),new aa(!1,!0,r.xMin-g+u,0),new aa(!1,!0,0,r.yMax+y),new aa(!1,!0,0,r.yMax+y+p)]},i._getContours=function _getContours(){var r=this._decode();if(!r)return[];var i=[];if(r.numberOfContours<0)for(var o,u=_createForOfIteratorHelperLoose(r.components);!(o=u()).done;)for(var p=o.value,g=this._font.getGlyph(p.glyphID)._getContours(),y=0;y<g.length;y++)for(var w=g[y],_=0;_<w.length;_++){var x=w[_],k=x.x*p.scaleX+x.y*p.scale01+p.dx,P=x.y*p.scaleY+x.x*p.scale10+p.dy;i.push(new aa(x.onCurve,x.endContour,k,P))}else i=r.points||[];r.phantomPoints&&!this._font.directory.tables.HVAR&&(this._metrics.advanceWidth=r.phantomPoints[1].x-r.phantomPoints[0].x,this._metrics.advanceHeight=r.phantomPoints[3].y-r.phantomPoints[2].y,this._metrics.leftBearing=r.xMin-r.phantomPoints[0].x,this._metrics.topBearing=r.phantomPoints[2].y-r.yMax);for(var O=[],I=[],B=0;B<i.length;B++){var R=i[B];I.push(R),R.endContour&&(O.push(I),I=[])}return O},i._getMetrics=function _getMetrics(){if(this._metrics)return this._metrics;var i=this._getCBox(!0);return r.prototype._getMetrics.call(this,i),this._font._variationProcessor&&!this._font.HVAR&&this.path,this._metrics},i._getPath=function _getPath(){for(var r=this._getContours(),i=new Jo,o=0;o<r.length;o++){var u=r[o],p=u[0],g=u[u.length-1],y=0;if(p.onCurve){var w=null;y=1}else w=p=g.onCurve?g:new aa(!1,!1,(p.x+g.x)/2,(p.y+g.y)/2);i.moveTo(p.x,p.y);for(var _=y;_<u.length;_++){var x=u[_],k=0===_?p:u[_-1];if(k.onCurve&&x.onCurve)i.lineTo(x.x,x.y);else if(k.onCurve&&!x.onCurve)w=x;else if(k.onCurve||x.onCurve){if(k.onCurve||!x.onCurve)throw new Error("Unknown TTF path state");i.quadraticCurveTo(w.x,w.y,x.x,x.y);w=null}else{var P=(k.x+x.x)/2,O=(k.y+x.y)/2;i.quadraticCurveTo(k.x,k.y,P,O);var w=x}}w&&i.quadraticCurveTo(w.x,w.y,p.x,p.y),i.closePath()}return i},TTFGlyph}(ia),la=function(r){function CFFGlyph(){return r.apply(this,arguments)||this}_inheritsLoose(CFFGlyph,r);var i=CFFGlyph.prototype;return i._getName=function _getName(){return this._font.CFF2?r.prototype._getName.call(this):this._font["CFF "].getGlyphName(this.id)},i.bias=function bias(r){return r.length<1240?107:r.length<33900?1131:32768},i._getPath=function _getPath(){var r=this._font.CFF2||this._font["CFF "],i=r.stream,o=r.topDict.CharStrings[this.id],u=o.offset+o.length;i.pos=o.offset;var p,g,y=new Jo,w=[],_=[],x=null,k=0,P=0,O=0,I=!1;this._usedGsubrs=p={},this._usedSubrs=g={};var B=r.globalSubrIndex||[],R=this.bias(B),D=r.privateDictForGlyph(this.id)||{},N=D.Subrs||[],W=this.bias(N),U=r.topDict.vstore&&r.topDict.vstore.itemVariationStore,j=D.vsindex,G=this._font._variationProcessor;function checkWidth(){null==x&&(x=w.shift()+D.nominalWidthX)}function parseStems(){return w.length%2!=0&&checkWidth(),k+=w.length>>1,w.length=0}function moveTo(r,i){I&&y.closePath(),y.moveTo(r,i),I=!0}return function parse(){for(;i.pos<u;){var o=i.readUInt8();if(o<32)switch(o){case 1:case 3:case 18:case 23:parseStems();break;case 4:w.length>1&&checkWidth(),O+=w.shift(),moveTo(P,O);break;case 5:for(;w.length>=2;)P+=w.shift(),O+=w.shift(),y.lineTo(P,O);break;case 6:case 7:for(var x=6===o;w.length>=1;)x?P+=w.shift():O+=w.shift(),y.lineTo(P,O),x=!x;break;case 8:for(;w.length>0;){var D=P+w.shift(),X=O+w.shift(),K=D+w.shift(),Y=X+w.shift();P=K+w.shift(),O=Y+w.shift(),y.bezierCurveTo(D,X,K,Y,P,O)}break;case 10:var J=w.pop()+W,$=N[J];if($){g[J]=!0;var ee=i.pos,te=u;i.pos=$.offset,u=$.offset+$.length,parse(),i.pos=ee,u=te}break;case 11:if(r.version>=2)break;return;case 14:if(r.version>=2)break;w.length>0&&checkWidth(),I&&(y.closePath(),I=!1);break;case 15:if(r.version<2)throw new Error("vsindex operator not supported in CFF v1");j=w.pop();break;case 16:if(r.version<2)throw new Error("blend operator not supported in CFF v1");if(!G)throw new Error("blend operator in non-variation font");for(var re=G.getBlendVector(U,j),ne=w.pop(),ie=ne*re.length,oe=w.length-ie,ae=oe-ne,se=0;se<ne;se++){for(var ce=w[ae+se],le=0;le<re.length;le++)ce+=re[le]*w[oe++];w[ae+se]=ce}for(;ie--;)w.pop();break;case 19:case 20:parseStems(),i.pos+=k+7>>3;break;case 21:w.length>2&&checkWidth(),P+=w.shift(),O+=w.shift(),moveTo(P,O);break;case 22:w.length>1&&checkWidth(),moveTo(P+=w.shift(),O);break;case 24:for(;w.length>=8;){D=P+w.shift(),X=O+w.shift(),K=D+w.shift(),Y=X+w.shift();P=K+w.shift(),O=Y+w.shift(),y.bezierCurveTo(D,X,K,Y,P,O)}P+=w.shift(),O+=w.shift(),y.lineTo(P,O);break;case 25:for(;w.length>=8;)P+=w.shift(),O+=w.shift(),y.lineTo(P,O);D=P+w.shift(),X=O+w.shift(),K=D+w.shift(),Y=X+w.shift();P=K+w.shift(),O=Y+w.shift(),y.bezierCurveTo(D,X,K,Y,P,O);break;case 26:for(w.length%2&&(P+=w.shift());w.length>=4;)D=P,X=O+w.shift(),K=D+w.shift(),Y=X+w.shift(),P=K,O=Y+w.shift(),y.bezierCurveTo(D,X,K,Y,P,O);break;case 27:for(w.length%2&&(O+=w.shift());w.length>=4;)D=P+w.shift(),X=O,K=D+w.shift(),Y=X+w.shift(),P=K+w.shift(),O=Y,y.bezierCurveTo(D,X,K,Y,P,O);break;case 28:w.push(i.readInt16BE());break;case 29:if(J=w.pop()+R,$=B[J]){p[J]=!0;ee=i.pos,te=u;i.pos=$.offset,u=$.offset+$.length,parse(),i.pos=ee,u=te}break;case 30:case 31:for(x=31===o;w.length>=4;)x?(D=P+w.shift(),X=O,K=D+w.shift(),Y=X+w.shift(),O=Y+w.shift(),P=K+(1===w.length?w.shift():0)):(D=P,X=O+w.shift(),K=D+w.shift(),Y=X+w.shift(),P=K+w.shift(),O=Y+(1===w.length?w.shift():0)),y.bezierCurveTo(D,X,K,Y,P,O),x=!x;break;case 12:switch(o=i.readUInt8()){case 3:var ue=w.pop(),fe=w.pop();w.push(ue&&fe?1:0);break;case 4:ue=w.pop(),fe=w.pop(),w.push(ue||fe?1:0);break;case 5:ue=w.pop(),w.push(ue?0:1);break;case 9:ue=w.pop(),w.push(Math.abs(ue));break;case 10:ue=w.pop(),fe=w.pop(),w.push(ue+fe);break;case 11:ue=w.pop(),fe=w.pop(),w.push(ue-fe);break;case 12:ue=w.pop(),fe=w.pop(),w.push(ue/fe);break;case 14:ue=w.pop(),w.push(-ue);break;case 15:ue=w.pop(),fe=w.pop(),w.push(ue===fe?1:0);break;case 18:w.pop();break;case 20:var he=w.pop(),de=w.pop();_[de]=he;break;case 21:de=w.pop(),w.push(_[de]||0);break;case 22:var pe=w.pop(),ge=w.pop(),ye=w.pop(),ve=w.pop();w.push(ye<=ve?pe:ge);break;case 23:w.push(Math.random());break;case 24:ue=w.pop(),fe=w.pop(),w.push(ue*fe);break;case 26:ue=w.pop(),w.push(Math.sqrt(ue));break;case 27:ue=w.pop(),w.push(ue,ue);break;case 28:ue=w.pop(),fe=w.pop(),w.push(fe,ue);break;case 29:(de=w.pop())<0?de=0:de>w.length-1&&(de=w.length-1),w.push(w[de]);break;case 30:var me=w.pop(),be=w.pop();if(be>=0)for(;be>0;){for(var we=w[me-1],_e=me-2;_e>=0;_e--)w[_e+1]=w[_e];w[0]=we,be--}else for(;be<0;){we=w[0];for(var Se=0;Se<=me;Se++)w[Se]=w[Se+1];w[me-1]=we,be++}break;case 34:D=P+w.shift(),X=O,K=D+w.shift(),Y=X+w.shift();var xe=K+w.shift(),Ce=Y,ke=xe+w.shift(),Pe=Ce,Ae=ke+w.shift(),Ee=Pe,Te=Ae+w.shift(),Oe=Ee;P=Te,O=Oe,y.bezierCurveTo(D,X,K,Y,xe,Ce),y.bezierCurveTo(ke,Pe,Ae,Ee,Te,Oe);break;case 35:for(var Ie=[],Be=0;Be<=5;Be++)P+=w.shift(),O+=w.shift(),Ie.push(P,O);y.bezierCurveTo.apply(y,Ie.slice(0,6)),y.bezierCurveTo.apply(y,Ie.slice(6)),w.shift();break;case 36:D=P+w.shift(),X=O+w.shift(),K=D+w.shift(),Pe=Ce=Y=X+w.shift(),Ae=(ke=(xe=K+w.shift())+w.shift())+w.shift(),Ee=Pe+w.shift(),Te=Ae+w.shift(),P=Te,O=Oe=Ee,y.bezierCurveTo(D,X,K,Y,xe,Ce),y.bezierCurveTo(ke,Pe,Ae,Ee,Te,Oe);break;case 37:var Fe=P,Le=O;Ie=[];for(var Re=0;Re<=4;Re++)P+=w.shift(),O+=w.shift(),Ie.push(P,O);Math.abs(P-Fe)>Math.abs(O-Le)?(P+=w.shift(),O=Le):(P=Fe,O+=w.shift()),Ie.push(P,O),y.bezierCurveTo.apply(y,Ie.slice(0,6)),y.bezierCurveTo.apply(y,Ie.slice(6));break;default:throw new Error("Unknown op: 12 ".concat(o))}break;default:throw new Error("Unknown op: ".concat(o))}else if(o<247)w.push(o-139);else if(o<251){var De=i.readUInt8();w.push(256*(o-247)+De+108)}else if(o<255){De=i.readUInt8();w.push(256*-(o-251)-De-108)}else w.push(i.readInt32BE()/65536)}}(),I&&y.closePath(),y},CFFGlyph}(ia),ua=new g.Struct({originX:g.uint16,originY:g.uint16,type:new g.String(4),data:new g.Buffer((function(r){return r.parent.buflen-r._currentOffset}))}),fa=function(r){function SBIXGlyph(){return r.apply(this,arguments)||this}_inheritsLoose(SBIXGlyph,r);var i=SBIXGlyph.prototype;return i.getImageForSize=function getImageForSize(r){for(var i=0;i<this._font.sbix.imageTables.length;i++){var o=this._font.sbix.imageTables[i];if(o.ppem>=r)break}var u=o.imageOffsets,p=u[this.id],g=u[this.id+1];return p===g?null:(this._font.stream.pos=p,ua.decode(this._font.stream,{buflen:g-p}))},i.render=function render(i,o){var u=this.getImageForSize(o);if(null!=u){var p=o/this._font.unitsPerEm;i.image(u.data,{height:o,x:u.originX,y:(this.bbox.minY-u.originY)*p})}this._font.sbix.flags.renderOutlines&&r.prototype.render.call(this,i,o)},SBIXGlyph}(ca),ha=function COLRLayer(r,i){this.glyph=r,this.color=i},da=function(r){function COLRGlyph(){return r.apply(this,arguments)||this}_inheritsLoose(COLRGlyph,r);var i=COLRGlyph.prototype;return i._getBBox=function _getBBox(){for(var r=new ui,i=0;i<this.layers.length;i++){var o=this.layers[i].glyph.bbox;r.addPoint(o.minX,o.minY),r.addPoint(o.maxX,o.maxY)}return r},i.render=function render(r,i){for(var o,u=_createForOfIteratorHelperLoose(this.layers);!(o=u()).done;){var p=o.value,g=p.glyph,y=p.color;r.fillColor([y.red,y.green,y.blue],y.alpha/255*100),g.render(r,i)}},_createClass(COLRGlyph,[{key:"layers",get:function get(){for(var r=this._font.CPAL,i=this._font.COLR,o=0,u=i.baseGlyphRecord.length-1;o<=u;){var p=o+u>>1,g=i.baseGlyphRecord[p];if(this.id<g.gid)u=p-1;else{if(!(this.id>g.gid)){var y=g;break}o=p+1}}if(null==y){var w=this._font._getBaseGlyph(this.id);return[new ha(w,k={red:0,green:0,blue:0,alpha:255})]}for(var _=[],x=y.firstLayerIndex;x<y.firstLayerIndex+y.numLayers;x++){g=i.layerRecords[x];var k=r.colorRecords[g.paletteIndex];w=this._font._getBaseGlyph(g.gid);_.push(new ha(w,k))}return _}}]),COLRGlyph}(ia),pa=function(){function GlyphVariationProcessor(r,i){this.font=r,this.normalizedCoords=this.normalizeCoords(i),this.blendVectors=new Map}var r=GlyphVariationProcessor.prototype;return r.normalizeCoords=function normalizeCoords(r){for(var i=[],o=0;o<this.font.fvar.axis.length;o++){var u=this.font.fvar.axis[o];r[o]<u.defaultValue?i.push((r[o]-u.defaultValue+Number.EPSILON)/(u.defaultValue-u.minValue+Number.EPSILON)):i.push((r[o]-u.defaultValue+Number.EPSILON)/(u.maxValue-u.defaultValue+Number.EPSILON))}if(this.font.avar)for(o=0;o<this.font.avar.segment.length;o++)for(var p=this.font.avar.segment[o],g=0;g<p.correspondence.length;g++){var y=p.correspondence[g];if(g>=1&&i[o]<y.fromCoord){var w=p.correspondence[g-1];i[o]=((i[o]-w.fromCoord)*(y.toCoord-w.toCoord)+Number.EPSILON)/(y.fromCoord-w.fromCoord+Number.EPSILON)+w.toCoord;break}}return i},r.transformPoints=function transformPoints(r,i){if(this.font.fvar&&this.font.gvar){var o=this.font.gvar;if(!(r>=o.glyphCount)){var u=o.offsets[r];if(u!==o.offsets[r+1]){var p=this.font.stream;if(p.pos=u,!(p.pos>=p.length)){var g=p.readUInt16BE(),y=u+p.readUInt16BE();if(32768&g){var w=p.pos;p.pos=y;var _=this.decodePoints();y=p.pos,p.pos=w}var x=i.map((function(r){return r.copy()}));g&=4095;for(var k=0;k<g;k++){var P=p.readUInt16BE(),O=p.readUInt16BE();if(32768&O)for(var I=[],B=0;B<o.axisCount;B++)I.push(p.readInt16BE()/16384);else{if((4095&O)>=o.globalCoordCount)throw new Error("Invalid gvar table");I=o.globalCoords[4095&O]}if(16384&O){for(var R=[],D=0;D<o.axisCount;D++)R.push(p.readInt16BE()/16384);for(var N=[],W=0;W<o.axisCount;W++)N.push(p.readInt16BE()/16384)}var U=this.tupleFactor(O,I,R,N);if(0!==U){w=p.pos;if(p.pos=y,8192&O)var j=this.decodePoints();else j=_;var G=0===j.length?i.length:j.length,X=this.decodeDeltas(G),K=this.decodeDeltas(G);if(0===j.length)for(var Y=0;Y<i.length;Y++){var J=i[Y];J.x+=Math.round(X[Y]*U),J.y+=Math.round(K[Y]*U)}else{for(var $=x.map((function(r){return r.copy()})),ee=i.map((function(){return!1})),te=0;te<j.length;te++){var re=j[te];if(re<i.length){var ne=$[re];ee[re]=!0,ne.x+=Math.round(X[te]*U),ne.y+=Math.round(K[te]*U)}}this.interpolateMissingDeltas($,x,ee);for(var ie=0;ie<i.length;ie++){var oe=$[ie].x-x[ie].x,ae=$[ie].y-x[ie].y;i[ie].x+=oe,i[ie].y+=ae}}y+=P,p.pos=w}else y+=P}}}}}},r.decodePoints=function decodePoints(){var r=this.font.stream,i=r.readUInt8();128&i&&(i=(127&i)<<8|r.readUInt8());for(var o=new Uint16Array(i),u=0,p=0;u<i;)for(var g=r.readUInt8(),y=1+(127&g),w=128&g?r.readUInt16:r.readUInt8,_=0;_<y&&u<i;_++)p+=w.call(r),o[u++]=p;return o},r.decodeDeltas=function decodeDeltas(r){for(var i=this.font.stream,o=0,u=new Int16Array(r);o<r;){var p=i.readUInt8(),g=1+(63&p);if(128&p)o+=g;else for(var y=64&p?i.readInt16BE:i.readInt8,w=0;w<g&&o<r;w++)u[o++]=y.call(i)}return u},r.tupleFactor=function tupleFactor(r,i,o,u){for(var p=this.normalizedCoords,g=this.font.gvar,y=1,w=0;w<g.axisCount;w++)if(0!==i[w]){if(0===p[w])return 0;if(0==(16384&r)){if(p[w]<Math.min(0,i[w])||p[w]>Math.max(0,i[w]))return 0;y=(y*p[w]+Number.EPSILON)/(i[w]+Number.EPSILON)}else{if(p[w]<o[w]||p[w]>u[w])return 0;y=p[w]<i[w]?y*(p[w]-o[w]+Number.EPSILON)/(i[w]-o[w]+Number.EPSILON):y*(u[w]-p[w]+Number.EPSILON)/(u[w]-i[w]+Number.EPSILON)}}return y},r.interpolateMissingDeltas=function interpolateMissingDeltas(r,i,o){if(0!==r.length)for(var u=0;u<r.length;){for(var p=u,g=u,y=r[g];!y.endContour;)y=r[++g];for(;u<=g&&!o[u];)u++;if(!(u>g)){var w=u,_=u;for(u++;u<=g;)o[u]&&(this.deltaInterpolate(_+1,u-1,_,u,i,r),_=u),u++;_===w?this.deltaShift(p,g,_,i,r):(this.deltaInterpolate(_+1,g,_,w,i,r),w>0&&this.deltaInterpolate(p,w-1,_,w,i,r)),u=g+1}}},r.deltaInterpolate=function deltaInterpolate(r,i,o,u,p,g){if(!(r>i))for(var y=["x","y"],w=0;w<y.length;w++){var _=y[w];if(p[o][_]>p[u][_]){var x=o;o=u,u=x}var k=p[o][_],P=p[u][_],O=g[o][_],I=g[u][_];if(k!==P||O===I)for(var B=k===P?0:(I-O)/(P-k),R=r;R<=i;R++){var D=p[R][_];D<=k?D+=O-k:D>=P?D+=I-P:D=O+(D-k)*B,g[R][_]=D}}},r.deltaShift=function deltaShift(r,i,o,u,p){var g=p[o].x-u[o].x,y=p[o].y-u[o].y;if(0!==g||0!==y)for(var w=r;w<=i;w++)w!==o&&(p[w].x+=g,p[w].y+=y)},r.getAdvanceAdjustment=function getAdvanceAdjustment(r,i){var o,u;if(i.advanceWidthMapping){var p=r;p>=i.advanceWidthMapping.mapCount&&(p=i.advanceWidthMapping.mapCount-1);i.advanceWidthMapping.entryFormat;var g=i.advanceWidthMapping.mapData[p];o=g.outerIndex,u=g.innerIndex}else o=0,u=r;return this.getDelta(i.itemVariationStore,o,u)},r.getDelta=function getDelta(r,i,o){if(i>=r.itemVariationData.length)return 0;var u=r.itemVariationData[i];if(o>=u.deltaSets.length)return 0;for(var p=u.deltaSets[o],g=this.getBlendVector(r,i),y=0,w=0;w<u.regionIndexCount;w++)y+=p.deltas[w]*g[w];return y},r.getBlendVector=function getBlendVector(r,i){var o=r.itemVariationData[i];if(this.blendVectors.has(o))return this.blendVectors.get(o);for(var u=this.normalizedCoords,p=[],g=0;g<o.regionIndexCount;g++){for(var y=1,w=o.regionIndexes[g],_=r.variationRegionList.variationRegions[w],x=0;x<_.length;x++){var k=_[x];y*=k.startCoord>k.peakCoord||k.peakCoord>k.endCoord||k.startCoord<0&&k.endCoord>0&&0!==k.peakCoord||0===k.peakCoord?1:u[x]<k.startCoord||u[x]>k.endCoord?0:u[x]===k.peakCoord?1:u[x]<k.peakCoord?(u[x]-k.startCoord+Number.EPSILON)/(k.peakCoord-k.startCoord+Number.EPSILON):(k.endCoord-u[x]+Number.EPSILON)/(k.endCoord-k.peakCoord+Number.EPSILON)}p[g]=y}return this.blendVectors.set(o,p),p},GlyphVariationProcessor}(),ga=Promise.resolve(),ya=function(){function Subset(r){this.font=r,this.glyphs=[],this.mapping={},this.includeGlyph(0)}var r=Subset.prototype;return r.includeGlyph=function includeGlyph(r){return"object"==typeof r&&(r=r.id),null==this.mapping[r]&&(this.glyphs.push(r),this.mapping[r]=this.glyphs.length-1),this.mapping[r]},r.encodeStream=function encodeStream(){var r=this,i=new g.EncodeStream;return ga.then((function(){return r.encode(i),i.end()})),i},Subset}(),va=function(){function Point$1(){}return Point$1.size=function size(r){return r>=0&&r<=255?1:2},Point$1.encode=function encode(r,i){i>=0&&i<=255?r.writeUInt8(i):r.writeInt16BE(i)},Point$1}(),ma=new g.Struct({numberOfContours:g.int16,xMin:g.int16,yMin:g.int16,xMax:g.int16,yMax:g.int16,endPtsOfContours:new g.Array(g.uint16,"numberOfContours"),instructions:new g.Array(g.uint8,g.uint16),flags:new g.Array(g.uint8,0),xPoints:new g.Array(va,0),yPoints:new g.Array(va,0)}),ba=function(){function TTFGlyphEncoder(){}var r=TTFGlyphEncoder.prototype;return r.encodeSimple=function encodeSimple(r,i){void 0===i&&(i=[]);for(var o=[],u=[],p=[],y=[],w=0,_=0,x=0,k=0,P=0,O=0;O<r.commands.length;O++){for(var I=r.commands[O],B=0;B<I.args.length;B+=2){var R=I.args[B],D=I.args[B+1],N=0;if("quadraticCurveTo"===I.command&&2===B){var W=r.commands[O+1];if(W&&"quadraticCurveTo"===W.command){var U=(_+W.args[0])/2,j=(x+W.args[1])/2;if(R===U&&D===j)continue}}"quadraticCurveTo"===I.command&&0===B||(N|=1),N=this._encodePoint(R,_,u,N,2,16),(N=this._encodePoint(D,x,p,N,4,32))===k&&w<255?(y[y.length-1]|=8,w++):(w>0&&(y.push(w),w=0),y.push(N),k=N),_=R,x=D,P++}"closePath"===I.command&&o.push(P-1)}r.commands.length>1&&"closePath"!==r.commands[r.commands.length-1].command&&o.push(P-1);var G=r.bbox,X={numberOfContours:o.length,xMin:G.minX,yMin:G.minY,xMax:G.maxX,yMax:G.maxY,endPtsOfContours:o,instructions:i,flags:y,xPoints:u,yPoints:p},K=ma.size(X),Y=4-K%4,J=new g.EncodeStream(K+Y);return ma.encode(J,X),0!==Y&&J.fill(0,Y),J.buffer},r._encodePoint=function _encodePoint(r,i,o,u,p,g){var y=r-i;return r===i?u|=g:(-255<=y&&y<=255&&(u|=p,y<0?y=-y:u|=g),o.push(y)),u},TTFGlyphEncoder}(),wa=function(r){function TTFSubset(i){var o;return(o=r.call(this,i)||this).glyphEncoder=new ba,o}_inheritsLoose(TTFSubset,r);var i=TTFSubset.prototype;return i._addGlyph=function _addGlyph(r){var i=this.font.getGlyph(r),o=i._decode(),u=this.font.loca.offsets[r],g=this.font.loca.offsets[r+1],y=this.font._getTableStream("glyf");y.pos+=u;var w=y.readBuffer(g-u);if(o&&o.numberOfContours<0){w=p.from(w);for(var _,x=_createForOfIteratorHelperLoose(o.components);!(_=x()).done;){var k=_.value;r=this.includeGlyph(k.glyphID),w.writeUInt16BE(r,k.pos)}}else o&&this.font._variationProcessor&&(w=this.glyphEncoder.encodeSimple(i.path,o.instructions));return this.glyf.push(w),this.loca.offsets.push(this.offset),this.hmtx.metrics.push({advance:i.advanceWidth,bearing:i._getMetrics().leftBearing}),this.offset+=w.length,this.glyf.length-1},i.encode=function encode(r){this.glyf=[],this.offset=0,this.loca={offsets:[],version:this.font.loca.version},this.hmtx={metrics:[],bearings:[]};for(var i=0;i<this.glyphs.length;)this._addGlyph(this.glyphs[i++]);var o=P(this.font.maxp);o.numGlyphs=this.glyf.length,this.loca.offsets.push(this.offset);var u=P(this.font.head);u.indexToLocFormat=this.loca.version;var p=P(this.font.hhea);p.numberOfMetrics=this.hmtx.metrics.length,oi.encode(r,{tables:{head:u,hhea:p,loca:this.loca,maxp:o,"cvt ":this.font["cvt "],prep:this.font.prep,glyf:this.glyf,hmtx:this.hmtx,fpgm:this.font.fpgm}})},TTFSubset}(ya),_a=function(r){function CFFSubset(i){var o;if((o=r.call(this,i)||this).cff=o.font["CFF "],!o.cff)throw new Error("Not a CFF Font");return o}_inheritsLoose(CFFSubset,r);var i=CFFSubset.prototype;return i.subsetCharstrings=function subsetCharstrings(){this.charstrings=[];for(var r,i={},o=_createForOfIteratorHelperLoose(this.glyphs);!(r=o()).done;){var u=r.value;this.charstrings.push(this.cff.getCharString(u));var p=this.font.getGlyph(u);p.path;for(var g in p._usedGsubrs)i[g]=!0}this.gsubrs=this.subsetSubrs(this.cff.globalSubrIndex,i)},i.subsetSubrs=function subsetSubrs(r,i){for(var o=[],u=0;u<r.length;u++){var g=r[u];i[u]?(this.cff.stream.pos=g.offset,o.push(this.cff.stream.readBuffer(g.length))):o.push(p.from([11]))}return o},i.subsetFontdict=function subsetFontdict(r){r.FDArray=[],r.FDSelect={version:0,fds:[]};for(var i,o={},u=[],p={},g=_createForOfIteratorHelperLoose(this.glyphs);!(i=g()).done;){var y=i.value,w=this.cff.fdForGlyph(y);if(null!=w){o[w]||(r.FDArray.push(Object.assign({},this.cff.topDict.FDArray[w])),u.push({}),p[w]=r.FDArray.length-1),o[w]=!0,r.FDSelect.fds.push(p[w]);var _=this.font.getGlyph(y);_.path;for(var x in _._usedSubrs)u[p[w]][x]=!0}}for(var k=0;k<r.FDArray.length;k++){var P=r.FDArray[k];delete P.FontName,P.Private&&P.Private.Subrs&&(P.Private=Object.assign({},P.Private),P.Private.Subrs=this.subsetSubrs(P.Private.Subrs,u[k]))}},i.createCIDFontdict=function createCIDFontdict(r){for(var i,o={},u=_createForOfIteratorHelperLoose(this.glyphs);!(i=u()).done;){var p=i.value,g=this.font.getGlyph(p);g.path;for(var y in g._usedSubrs)o[y]=!0}var w=Object.assign({},this.cff.topDict.Private);return this.cff.topDict.Private&&this.cff.topDict.Private.Subrs&&(w.Subrs=this.subsetSubrs(this.cff.topDict.Private.Subrs,o)),r.FDArray=[{Private:w}],r.FDSelect={version:3,nRanges:1,ranges:[{first:0,fd:0}],sentinel:this.charstrings.length}},i.addString=function addString(r){return r?(this.strings||(this.strings=[]),this.strings.push(r),Ee.length+this.strings.length-1):null},i.encode=function encode(r){this.subsetCharstrings();var i={version:this.charstrings.length>255?2:1,ranges:[{first:1,nLeft:this.charstrings.length-2}]},o=Object.assign({},this.cff.topDict);o.Private=null,o.charset=i,o.Encoding=null,o.CharStrings=this.charstrings;for(var u=0,p=["version","Notice","Copyright","FullName","FamilyName","Weight","PostScript","BaseFontName","FontName"];u<p.length;u++){var g=p[u];o[g]=this.addString(this.cff.string(o[g]))}o.ROS=[this.addString("Adobe"),this.addString("Identity"),0],o.CIDCount=this.charstrings.length,this.cff.isCIDFont?this.subsetFontdict(o):this.createCIDFontdict(o);var y={version:1,hdrSize:this.cff.hdrSize,offSize:4,header:this.cff.header,nameIndex:[this.cff.postscriptName],topDictIndex:[o],stringIndex:this.strings,globalSubrIndex:this.gsubrs};Tt.encode(r,y)},CFFSubset}(ya),Sa=(ra=function(){function TTFFont(r,i){for(var o in void 0===i&&(i=null),this.defaultLanguage=null,this.stream=r,this.variationCoords=i,this._directoryPos=this.stream.pos,this._tables={},this._glyphs={},this._decodeDirectory(),this.directory.tables){var u=this.directory.tables[o];ri[o]&&u.length>0&&Object.defineProperty(this,o,{get:this._getTable.bind(this,u)})}}TTFFont.probe=function probe(r){var i=r.toString("ascii",0,4);return"true"===i||"OTTO"===i||i===String.fromCharCode(0,1,0,0)};var r=TTFFont.prototype;return r.setDefaultLanguage=function setDefaultLanguage(r){void 0===r&&(r=null),this.defaultLanguage=r},r._getTable=function _getTable(r){if(!(r.tag in this._tables))try{this._tables[r.tag]=this._decodeTable(r)}catch(r){R.logErrors}return this._tables[r.tag]},r._getTableStream=function _getTableStream(r){var i=this.directory.tables[r];return i?(this.stream.pos=i.offset,this.stream):null},r._decodeDirectory=function _decodeDirectory(){return this.directory=oi.decode(this.stream,{_startOffset:0})},r._decodeTable=function _decodeTable(r){var i=this.stream.pos,o=this._getTableStream(r.tag),u=ri[r.tag].decode(o,this,r.length);return this.stream.pos=i,u},r.getName=function getName(r,i){void 0===i&&(i=this.defaultLanguage||R.defaultLanguage);var o=this.name&&this.name.records[r];return o&&(o[i]||o[this.defaultLanguage]||o[R.defaultLanguage]||o.en||o[Object.keys(o)[0]])||null},r.hasGlyphForCodePoint=function hasGlyphForCodePoint(r){return!!this._cmapProcessor.lookup(r)},r.glyphForCodePoint=function glyphForCodePoint(r){return this.getGlyph(this._cmapProcessor.lookup(r),[r])},r.glyphsForString=function glyphsForString(r){for(var i=[],o=r.length,u=0,p=-1,g=-1;u<=o;){var y=0,w=0;if(u<o){if(55296<=(y=r.charCodeAt(u++))&&y<=56319&&u<o){var _=r.charCodeAt(u);56320<=_&&_<=57343&&(u++,y=((1023&y)<<10)+(1023&_)+65536)}w=65024<=y&&y<=65039||917760<=y&&y<=917999?1:0}else u++;0===g&&1===w?i.push(this.getGlyph(this._cmapProcessor.lookup(p,y),[p,y])):0===g&&0===w&&i.push(this.glyphForCodePoint(p)),p=y,g=w}return i},r.layout=function layout(r,i,o,u,p){return this._layoutEngine.layout(r,i,o,u,p)},r.stringsForGlyph=function stringsForGlyph(r){return this._layoutEngine.stringsForGlyph(r)},r.getAvailableFeatures=function getAvailableFeatures(r,i){return this._layoutEngine.getAvailableFeatures(r,i)},r._getBaseGlyph=function _getBaseGlyph(r,i){return void 0===i&&(i=[]),this._glyphs[r]||(this.directory.tables.glyf?this._glyphs[r]=new ca(r,i,this):(this.directory.tables["CFF "]||this.directory.tables.CFF2)&&(this._glyphs[r]=new la(r,i,this))),this._glyphs[r]||null},r.getGlyph=function getGlyph(r,i){return void 0===i&&(i=[]),this._glyphs[r]||(this.directory.tables.sbix?this._glyphs[r]=new fa(r,i,this):this.directory.tables.COLR&&this.directory.tables.CPAL?this._glyphs[r]=new da(r,i,this):this._getBaseGlyph(r,i)),this._glyphs[r]||null},r.createSubset=function createSubset(){return this.directory.tables["CFF "]?new _a(this):new wa(this)},r.getVariation=function getVariation(r){if(!this.directory.tables.fvar||!(this.directory.tables.gvar&&this.directory.tables.glyf||this.directory.tables.CFF2))throw new Error("Variations require a font with the fvar, gvar and glyf, or CFF2 tables.");if("string"==typeof r&&(r=this.namedVariations[r]),"object"!=typeof r)throw new Error("Variation settings must be either a variation name or settings object.");var i=this.fvar.axis.map((function(i,o){var u=i.axisTag.trim();return u in r?Math.max(i.minValue,Math.min(i.maxValue,r[u])):i.defaultValue})),o=new g.DecodeStream(this.stream.buffer);o.pos=this._directoryPos;var u=new TTFFont(o,i);return u._tables=this._tables,u},r.getFont=function getFont(r){return this.getVariation(r)},_createClass(TTFFont,[{key:"postscriptName",get:function get(){return this.getName("postscriptName")}},{key:"fullName",get:function get(){return this.getName("fullName")}},{key:"familyName",get:function get(){return this.getName("fontFamily")}},{key:"subfamilyName",get:function get(){return this.getName("fontSubfamily")}},{key:"copyright",get:function get(){return this.getName("copyright")}},{key:"version",get:function get(){return this.getName("version")}},{key:"ascent",get:function get(){return this.hhea.ascent}},{key:"descent",get:function get(){return this.hhea.descent}},{key:"lineGap",get:function get(){return this.hhea.lineGap}},{key:"underlinePosition",get:function get(){return this.post.underlinePosition}},{key:"underlineThickness",get:function get(){return this.post.underlineThickness}},{key:"italicAngle",get:function get(){return this.post.italicAngle}},{key:"capHeight",get:function get(){var r=this["OS/2"];return r?r.capHeight:this.ascent}},{key:"xHeight",get:function get(){var r=this["OS/2"];return r?r.xHeight:0}},{key:"numGlyphs",get:function get(){return this.maxp.numGlyphs}},{key:"unitsPerEm",get:function get(){return this.head.unitsPerEm}},{key:"bbox",get:function get(){return Object.freeze(new ui(this.head.xMin,this.head.yMin,this.head.xMax,this.head.yMax))}},{key:"_cmapProcessor",get:function get(){return new si(this.cmap)}},{key:"characterSet",get:function get(){return this._cmapProcessor.getCharacterSet()}},{key:"_layoutEngine",get:function get(){return new Ko(this)}},{key:"availableFeatures",get:function get(){return this._layoutEngine.getAvailableFeatures()}},{key:"variationAxes",get:function get(){var r={};if(!this.fvar)return r;for(var i,o=_createForOfIteratorHelperLoose(this.fvar.axis);!(i=o()).done;){var u=i.value;r[u.axisTag.trim()]={name:u.name.en,min:u.minValue,default:u.defaultValue,max:u.maxValue}}return r}},{key:"namedVariations",get:function get(){var r={};if(!this.fvar)return r;for(var i,o=_createForOfIteratorHelperLoose(this.fvar.instance);!(i=o()).done;){for(var u=i.value,p={},g=0;g<this.fvar.axis.length;g++){p[this.fvar.axis[g].axisTag.trim()]=u.coord[g]}r[u.name.en]=p}return r}},{key:"_variationProcessor",get:function get(){if(!this.fvar)return null;var r=this.variationCoords;return r||this.CFF2?(r||(r=this.fvar.axis.map((function(r){return r.defaultValue}))),new pa(this,r)):null}}]),TTFFont}(),_applyDecoratedDescriptor(ra.prototype,"bbox",[cache],Object.getOwnPropertyDescriptor(ra.prototype,"bbox"),ra.prototype),_applyDecoratedDescriptor(ra.prototype,"_cmapProcessor",[cache],Object.getOwnPropertyDescriptor(ra.prototype,"_cmapProcessor"),ra.prototype),_applyDecoratedDescriptor(ra.prototype,"characterSet",[cache],Object.getOwnPropertyDescriptor(ra.prototype,"characterSet"),ra.prototype),_applyDecoratedDescriptor(ra.prototype,"_layoutEngine",[cache],Object.getOwnPropertyDescriptor(ra.prototype,"_layoutEngine"),ra.prototype),_applyDecoratedDescriptor(ra.prototype,"variationAxes",[cache],Object.getOwnPropertyDescriptor(ra.prototype,"variationAxes"),ra.prototype),_applyDecoratedDescriptor(ra.prototype,"namedVariations",[cache],Object.getOwnPropertyDescriptor(ra.prototype,"namedVariations"),ra.prototype),_applyDecoratedDescriptor(ra.prototype,"_variationProcessor",[cache],Object.getOwnPropertyDescriptor(ra.prototype,"_variationProcessor"),ra.prototype),ra),xa=new g.Struct({tag:new g.String(4),offset:new g.Pointer(g.uint32,"void",{type:"global"}),compLength:g.uint32,length:g.uint32,origChecksum:g.uint32}),Ca=new g.Struct({tag:new g.String(4),flavor:g.uint32,length:g.uint32,numTables:g.uint16,reserved:new g.Reserved(g.uint16),totalSfntSize:g.uint32,majorVersion:g.uint16,minorVersion:g.uint16,metaOffset:g.uint32,metaLength:g.uint32,metaOrigLength:g.uint32,privOffset:g.uint32,privLength:g.uint32,tables:new g.Array(xa,"numTables")});Ca.process=function(){for(var r,i={},o=_createForOfIteratorHelperLoose(this.tables);!(r=o()).done;){var u=r.value;i[u.tag]=u}this.tables=i};var ka=function(r){function WOFFFont(){return r.apply(this,arguments)||this}_inheritsLoose(WOFFFont,r),WOFFFont.probe=function probe(r){return"wOFF"===r.toString("ascii",0,4)};var i=WOFFFont.prototype;return i._decodeDirectory=function _decodeDirectory(){this.directory=Ca.decode(this.stream,{_startOffset:0})},i._getTableStream=function _getTableStream(r){var i=this.directory.tables[r];if(i){if(this.stream.pos=i.offset,i.compLength<i.length){this.stream.pos+=2;var o=p.alloc(i.length),u=O(this.stream.readBuffer(i.compLength-2),o);return new g.DecodeStream(u)}return this.stream}return null},WOFFFont}(Sa),Pa=function(r){function WOFF2Glyph(){return r.apply(this,arguments)||this}_inheritsLoose(WOFF2Glyph,r);var i=WOFF2Glyph.prototype;return i._decode=function _decode(){return this._font._transformedGlyphs[this.id]},i._getCBox=function _getCBox(){return this.path.bbox},WOFF2Glyph}(ca),Aa={decode:function decode(r){for(var i=0,o=[0,1,2,3,4],u=0;u<o.length;u++){var p=r.readUInt8();if(3758096384&i)throw new Error("Overflow");if(i=i<<7|127&p,0==(128&p))return i}throw new Error("Bad base 128 number")}},Ea=["cmap","head","hhea","hmtx","maxp","name","OS/2","post","cvt ","fpgm","glyf","loca","prep","CFF ","VORG","EBDT","EBLC","gasp","hdmx","kern","LTSH","PCLT","VDMX","vhea","vmtx","BASE","GDEF","GPOS","GSUB","EBSC","JSTF","MATH","CBDT","CBLC","COLR","CPAL","SVG ","sbix","acnt","avar","bdat","bloc","bsln","cvar","fdsc","feat","fmtx","fvar","gvar","hsty","just","lcar","mort","morx","opbd","prop","trak","Zapf","Silf","Glat","Gloc","Feat","Sill"],Ta=new g.Struct({flags:g.uint8,customTag:new g.Optional(new g.String(4),(function(r){return 63==(63&r.flags)})),tag:function tag(r){return r.customTag||Ea[63&r.flags]},length:Aa,transformVersion:function transformVersion(r){return r.flags>>>6&3},transformed:function transformed(r){return"glyf"===r.tag||"loca"===r.tag?0===r.transformVersion:0!==r.transformVersion},transformLength:new g.Optional(Aa,(function(r){return r.transformed}))}),Oa=new g.Struct({tag:new g.String(4),flavor:g.uint32,length:g.uint32,numTables:g.uint16,reserved:new g.Reserved(g.uint16),totalSfntSize:g.uint32,totalCompressedSize:g.uint32,majorVersion:g.uint16,minorVersion:g.uint16,metaOffset:g.uint32,metaLength:g.uint32,metaOrigLength:g.uint32,privOffset:g.uint32,privLength:g.uint32,tables:new g.Array(Ta,"numTables")});Oa.process=function(){for(var r={},i=0;i<this.tables.length;i++){var o=this.tables[i];r[o.tag]=o}return this.tables=r};var Ia=function(r){function WOFF2Font(){return r.apply(this,arguments)||this}_inheritsLoose(WOFF2Font,r),WOFF2Font.probe=function probe(r){return"wOF2"===r.toString("ascii",0,4)};var i=WOFF2Font.prototype;return i._decodeDirectory=function _decodeDirectory(){this.directory=Oa.decode(this.stream),this._dataPos=this.stream.pos},i._decompress=function _decompress(){if(!this._decompressed){this.stream.pos=this._dataPos;var r=this.stream.readBuffer(this.directory.totalCompressedSize),i=0;for(var o in this.directory.tables){var u=this.directory.tables[o];u.offset=i,i+=null!=u.transformLength?u.transformLength:u.length}var y=I(r,i);if(!y)throw new Error("Error decoding compressed data in WOFF2");this.stream=new g.DecodeStream(p.from(y)),this._decompressed=!0}},i._decodeTable=function _decodeTable(i){return this._decompress(),r.prototype._decodeTable.call(this,i)},i._getBaseGlyph=function _getBaseGlyph(i,o){if(void 0===o&&(o=[]),!this._glyphs[i])return this.directory.tables.glyf&&this.directory.tables.glyf.transformed?(this._transformedGlyphs||this._transformGlyfTable(),this._glyphs[i]=new Pa(i,o,this)):r.prototype._getBaseGlyph.call(this,i,o)},i._transformGlyfTable=function _transformGlyfTable(){this._decompress(),this.stream.pos=this.directory.tables.glyf.offset;for(var r=Fa.decode(this.stream),i=[],o=0;o<r.numGlyphs;o++){var u={},p=r.nContours.readInt16BE();if(u.numberOfContours=p,p>0){for(var g=[],y=0,w=0;w<p;w++){y+=read255UInt16(r.nPoints),g.push(y)}u.points=decodeTriplet(r.flags,r.glyphs,y);for(var _=0;_<p;_++)u.points[g[_]-1].endContour=!0;read255UInt16(r.glyphs)}else if(p<0){if(ca.prototype._decodeComposite.call({_font:this},u,r.composites))read255UInt16(r.glyphs)}i.push(u)}this._transformedGlyphs=i},WOFF2Font}(Sa),Ba=function(){function Substream(r){this.length=r,this._buf=new g.Buffer(r)}return Substream.prototype.decode=function decode(r,i){return new g.DecodeStream(this._buf.decode(r,i))},Substream}(),Fa=new g.Struct({version:g.uint32,numGlyphs:g.uint16,indexFormat:g.uint16,nContourStreamSize:g.uint32,nPointsStreamSize:g.uint32,flagStreamSize:g.uint32,glyphStreamSize:g.uint32,compositeStreamSize:g.uint32,bboxStreamSize:g.uint32,instructionStreamSize:g.uint32,nContours:new Ba("nContourStreamSize"),nPoints:new Ba("nPointsStreamSize"),flags:new Ba("flagStreamSize"),glyphs:new Ba("glyphStreamSize"),composites:new Ba("compositeStreamSize"),bboxes:new Ba("bboxStreamSize"),instructions:new Ba("instructionStreamSize")});function read255UInt16(r){var i=r.readUInt8();return 253===i?r.readUInt16BE():255===i?r.readUInt8()+253:254===i?r.readUInt8()+506:i}function withSign(r,i){return 1&r?i:-i}function decodeTriplet(r,i,o){for(var u,p=u=0,g=[],y=0;y<o;y++){var w=0,_=0,x=r.readUInt8(),k=!(x>>7);if((x&=127)<10)w=0,_=withSign(x,((14&x)<<7)+i.readUInt8());else if(x<20)w=withSign(x,((x-10&14)<<7)+i.readUInt8()),_=0;else if(x<84){w=withSign(x,1+(48&(P=x-20))+((O=i.readUInt8())>>4)),_=withSign(x>>1,1+((12&P)<<2)+(15&O))}else if(x<120){var P;w=withSign(x,1+((P=x-84)/12<<8)+i.readUInt8()),_=withSign(x>>1,1+(P%12>>2<<8)+i.readUInt8())}else if(x<124){var O=i.readUInt8(),I=i.readUInt8();w=withSign(x,(O<<4)+(I>>4)),_=withSign(x>>1,((15&I)<<8)+i.readUInt8())}else w=withSign(x,i.readUInt16BE()),_=withSign(x>>1,i.readUInt16BE());p+=w,u+=_,g.push(new aa(k,!1,p,u))}return g}var La=new g.VersionedStruct(g.uint32,{65536:{numFonts:g.uint32,offsets:new g.Array(g.uint32,"numFonts")},131072:{numFonts:g.uint32,offsets:new g.Array(g.uint32,"numFonts"),dsigTag:g.uint32,dsigLength:g.uint32,dsigOffset:g.uint32}}),Ra=function(){function TrueTypeCollection(r){if(this.stream=r,"ttcf"!==r.readString(4))throw new Error("Not a TrueType collection");this.header=La.decode(r)}return TrueTypeCollection.probe=function probe(r){return"ttcf"===r.toString("ascii",0,4)},TrueTypeCollection.prototype.getFont=function getFont(r){for(var i,o=_createForOfIteratorHelperLoose(this.header.offsets);!(i=o()).done;){var u=i.value,p=new g.DecodeStream(this.stream.buffer);p.pos=u;var y=new Sa(p);if(y.postscriptName===r)return y}return null},_createClass(TrueTypeCollection,[{key:"fonts",get:function get(){for(var r,i=[],o=_createForOfIteratorHelperLoose(this.header.offsets);!(r=o()).done;){var u=r.value,p=new g.DecodeStream(this.stream.buffer);p.pos=u,i.push(new Sa(p))}return i}}]),TrueTypeCollection}(),Da=new g.String(g.uint8),Ma=(new g.Struct({len:g.uint32,buf:new g.Buffer("len")}),new g.Struct({id:g.uint16,nameOffset:g.int16,attr:g.uint8,dataOffset:g.uint24,handle:g.uint32})),Na=new g.Struct({name:new g.String(4),maxTypeIndex:g.uint16,refList:new g.Pointer(g.uint16,new g.Array(Ma,(function(r){return r.maxTypeIndex+1})),{type:"parent"})}),Wa=new g.Struct({length:g.uint16,types:new g.Array(Na,(function(r){return r.length+1}))}),za=new g.Struct({reserved:new g.Reserved(g.uint8,24),typeList:new g.Pointer(g.uint16,Wa),nameListOffset:new g.Pointer(g.uint16,"void")}),Ua=new g.Struct({dataOffset:g.uint32,map:new g.Pointer(g.uint32,za),dataLength:g.uint32,mapLength:g.uint32}),ja=function(){function DFont(r){this.stream=r,this.header=Ua.decode(this.stream);for(var i,o=_createForOfIteratorHelperLoose(this.header.map.typeList.types);!(i=o()).done;){for(var u,p=i.value,g=_createForOfIteratorHelperLoose(p.refList);!(u=g()).done;){var y=u.value;y.nameOffset>=0?(this.stream.pos=y.nameOffset+this.header.map.nameListOffset,y.name=Da.decode(this.stream)):y.name=null}"sfnt"===p.name&&(this.sfnt=p)}}return DFont.probe=function probe(r){var i=new g.DecodeStream(r);try{var o=Ua.decode(i)}catch(r){return!1}for(var u,p=_createForOfIteratorHelperLoose(o.map.typeList.types);!(u=p()).done;){if("sfnt"===u.value.name)return!0}return!1},DFont.prototype.getFont=function getFont(r){if(!this.sfnt)return null;for(var i,o=_createForOfIteratorHelperLoose(this.sfnt.refList);!(i=o()).done;){var u=i.value,p=this.header.dataOffset+u.dataOffset+4,y=new g.DecodeStream(this.stream.buffer.slice(p)),w=new Sa(y);if(w.postscriptName===r)return w}return null},_createClass(DFont,[{key:"fonts",get:function get(){for(var r,i=[],o=_createForOfIteratorHelperLoose(this.sfnt.refList);!(r=o()).done;){var u=r.value,p=this.header.dataOffset+u.dataOffset+4,y=new g.DecodeStream(this.stream.buffer.slice(p));i.push(new Sa(y))}return i}}]),DFont}();R.registerFormat(Sa),R.registerFormat(ka),R.registerFormat(Ia),R.registerFormat(Ra),R.registerFormat(ja),r.exports=R},7337:function(r,i,o){"use strict";var u=o(4781),p=o(9742),g=o(2055),y=g.BK,w=g.CR,_=g.LF,x=g.NL,k=g.SG,P=g.WJ,O=g.SP,I=g.ZWJ,B=g.BA,R=g.HY,D=g.NS,N=g.AI,W=g.AL,U=g.CJ,j=g.HL,G=g.RI,X=g.SA,K=g.XX,Y=o(8383),J=Y.DI_BRK,$=Y.IN_BRK,ee=Y.CI_BRK,te=Y.CP_BRK,re=(Y.PR_BRK,Y.pairTable),ne=new u(p.toByteArray("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")),ie=function mapClass(r){switch(r){case N:case X:case k:case K:return W;case U:return D;default:return r}},oe=function mapFirst(r){switch(r){case _:case x:return y;case O:return P;default:return r}},ae=function Break(r,i){void 0===i&&(i=!1),this.position=r,this.required=i},se=function(){function LineBreaker(r){this.string=r,this.pos=0,this.lastPos=0,this.curClass=null,this.nextClass=null,this.LB8a=!1,this.LB21a=!1,this.LB30a=0}var r=LineBreaker.prototype;return r.nextCodePoint=function nextCodePoint(){var r=this.string.charCodeAt(this.pos++),i=this.string.charCodeAt(this.pos);return 55296<=r&&r<=56319&&56320<=i&&i<=57343?(this.pos++,1024*(r-55296)+(i-56320)+65536):r},r.nextCharClass=function nextCharClass(){return ie(ne.get(this.nextCodePoint()))},r.getSimpleBreak=function getSimpleBreak(){switch(this.nextClass){case O:return!1;case y:case _:case x:return this.curClass=y,!1;case w:return this.curClass=w,!1}return null},r.getPairTableBreak=function getPairTableBreak(r){var i=!1;switch(re[this.curClass][this.nextClass]){case J:i=!0;break;case $:i=r===O;break;case ee:if(!(i=r===O))return i=!1;break;case te:if(r!==O)return i}return this.LB8a&&(i=!1),!this.LB21a||this.curClass!==R&&this.curClass!==B?this.LB21a=this.curClass===j:(i=!1,this.LB21a=!1),this.curClass===G?(this.LB30a++,2==this.LB30a&&this.nextClass===G&&(i=!0,this.LB30a=0)):this.LB30a=0,this.curClass=this.nextClass,i},r.nextBreak=function nextBreak(){if(null==this.curClass){var r=this.nextCharClass();this.curClass=oe(r),this.nextClass=r,this.LB8a=r===I,this.LB30a=0}for(;this.pos<this.string.length;){this.lastPos=this.pos;var i=this.nextClass;if(this.nextClass=this.nextCharClass(),this.curClass===y||this.curClass===w&&this.nextClass!==_)return this.curClass=oe(ie(this.nextClass)),new ae(this.lastPos,!0);var o=this.getSimpleBreak();if(null===o&&(o=this.getPairTableBreak(i)),this.LB8a=this.nextClass===I,o)return new ae(this.lastPos)}return this.lastPos<this.string.length?(this.lastPos=this.string.length,new ae(this.string.length)):null},LineBreaker}();r.exports=se},4927:function(r,i,o){function config(r){try{if(!o.g.localStorage)return!1}catch(r){return!1}var i=o.g.localStorage[r];return null!=i&&"true"===String(i).toLowerCase()}r.exports=function deprecate(r,i){if(config("noDeprecation"))return r;var o=!1;return function deprecated(){if(!o){if(config("throwDeprecation"))throw new Error(i);config("traceDeprecation"),o=!0}return r.apply(this,arguments)}}},384:function(r){r.exports=function isBuffer(r){return r&&"object"==typeof r&&"function"==typeof r.copy&&"function"==typeof r.fill&&"function"==typeof r.readUInt8}},5955:function(r,i,o){"use strict";var u=o(2584),p=o(8662),g=o(6430),y=o(5692);function uncurryThis(r){return r.call.bind(r)}var w="undefined"!=typeof BigInt,_="undefined"!=typeof Symbol,x=uncurryThis(Object.prototype.toString),k=uncurryThis(Number.prototype.valueOf),P=uncurryThis(String.prototype.valueOf),O=uncurryThis(Boolean.prototype.valueOf);if(w)var I=uncurryThis(BigInt.prototype.valueOf);if(_)var B=uncurryThis(Symbol.prototype.valueOf);function checkBoxedPrimitive(r,i){if("object"!=typeof r)return!1;try{return i(r),!0}catch(r){return!1}}function isMapToString(r){return"[object Map]"===x(r)}function isSetToString(r){return"[object Set]"===x(r)}function isWeakMapToString(r){return"[object WeakMap]"===x(r)}function isWeakSetToString(r){return"[object WeakSet]"===x(r)}function isArrayBufferToString(r){return"[object ArrayBuffer]"===x(r)}function isArrayBuffer(r){return"undefined"!=typeof ArrayBuffer&&(isArrayBufferToString.working?isArrayBufferToString(r):r instanceof ArrayBuffer)}function isDataViewToString(r){return"[object DataView]"===x(r)}function isDataView(r){return"undefined"!=typeof DataView&&(isDataViewToString.working?isDataViewToString(r):r instanceof DataView)}i.isArgumentsObject=u,i.isGeneratorFunction=p,i.isTypedArray=y,i.isPromise=function isPromise(r){return"undefined"!=typeof Promise&&r instanceof Promise||null!==r&&"object"==typeof r&&"function"==typeof r.then&&"function"==typeof r.catch},i.isArrayBufferView=function isArrayBufferView(r){return"undefined"!=typeof ArrayBuffer&&ArrayBuffer.isView?ArrayBuffer.isView(r):y(r)||isDataView(r)},i.isUint8Array=function isUint8Array(r){return"Uint8Array"===g(r)},i.isUint8ClampedArray=function isUint8ClampedArray(r){return"Uint8ClampedArray"===g(r)},i.isUint16Array=function isUint16Array(r){return"Uint16Array"===g(r)},i.isUint32Array=function isUint32Array(r){return"Uint32Array"===g(r)},i.isInt8Array=function isInt8Array(r){return"Int8Array"===g(r)},i.isInt16Array=function isInt16Array(r){return"Int16Array"===g(r)},i.isInt32Array=function isInt32Array(r){return"Int32Array"===g(r)},i.isFloat32Array=function isFloat32Array(r){return"Float32Array"===g(r)},i.isFloat64Array=function isFloat64Array(r){return"Float64Array"===g(r)},i.isBigInt64Array=function isBigInt64Array(r){return"BigInt64Array"===g(r)},i.isBigUint64Array=function isBigUint64Array(r){return"BigUint64Array"===g(r)},isMapToString.working="undefined"!=typeof Map&&isMapToString(new Map),i.isMap=function isMap(r){return"undefined"!=typeof Map&&(isMapToString.working?isMapToString(r):r instanceof Map)},isSetToString.working="undefined"!=typeof Set&&isSetToString(new Set),i.isSet=function isSet(r){return"undefined"!=typeof Set&&(isSetToString.working?isSetToString(r):r instanceof Set)},isWeakMapToString.working="undefined"!=typeof WeakMap&&isWeakMapToString(new WeakMap),i.isWeakMap=function isWeakMap(r){return"undefined"!=typeof WeakMap&&(isWeakMapToString.working?isWeakMapToString(r):r instanceof WeakMap)},isWeakSetToString.working="undefined"!=typeof WeakSet&&isWeakSetToString(new WeakSet),i.isWeakSet=function isWeakSet(r){return isWeakSetToString(r)},isArrayBufferToString.working="undefined"!=typeof ArrayBuffer&&isArrayBufferToString(new ArrayBuffer),i.isArrayBuffer=isArrayBuffer,isDataViewToString.working="undefined"!=typeof ArrayBuffer&&"undefined"!=typeof DataView&&isDataViewToString(new DataView(new ArrayBuffer(1),0,1)),i.isDataView=isDataView;var R="undefined"!=typeof SharedArrayBuffer?SharedArrayBuffer:void 0;function isSharedArrayBufferToString(r){return"[object SharedArrayBuffer]"===x(r)}function isSharedArrayBuffer(r){return void 0!==R&&(void 0===isSharedArrayBufferToString.working&&(isSharedArrayBufferToString.working=isSharedArrayBufferToString(new R)),isSharedArrayBufferToString.working?isSharedArrayBufferToString(r):r instanceof R)}function isNumberObject(r){return checkBoxedPrimitive(r,k)}function isStringObject(r){return checkBoxedPrimitive(r,P)}function isBooleanObject(r){return checkBoxedPrimitive(r,O)}function isBigIntObject(r){return w&&checkBoxedPrimitive(r,I)}function isSymbolObject(r){return _&&checkBoxedPrimitive(r,B)}i.isSharedArrayBuffer=isSharedArrayBuffer,i.isAsyncFunction=function isAsyncFunction(r){return"[object AsyncFunction]"===x(r)},i.isMapIterator=function isMapIterator(r){return"[object Map Iterator]"===x(r)},i.isSetIterator=function isSetIterator(r){return"[object Set Iterator]"===x(r)},i.isGeneratorObject=function isGeneratorObject(r){return"[object Generator]"===x(r)},i.isWebAssemblyCompiledModule=function isWebAssemblyCompiledModule(r){return"[object WebAssembly.Module]"===x(r)},i.isNumberObject=isNumberObject,i.isStringObject=isStringObject,i.isBooleanObject=isBooleanObject,i.isBigIntObject=isBigIntObject,i.isSymbolObject=isSymbolObject,i.isBoxedPrimitive=function isBoxedPrimitive(r){return isNumberObject(r)||isStringObject(r)||isBooleanObject(r)||isBigIntObject(r)||isSymbolObject(r)},i.isAnyArrayBuffer=function isAnyArrayBuffer(r){return"undefined"!=typeof Uint8Array&&(isArrayBuffer(r)||isSharedArrayBuffer(r))},["isProxy","isExternal","isModuleNamespaceObject"].forEach((function(r){Object.defineProperty(i,r,{enumerable:!1,value:function(){throw new Error(r+" is not supported in userland")}})}))},9539:function(r,i,o){var u=o(4155),p=Object.getOwnPropertyDescriptors||function getOwnPropertyDescriptors(r){for(var i=Object.keys(r),o={},u=0;u<i.length;u++)o[i[u]]=Object.getOwnPropertyDescriptor(r,i[u]);return o},g=/%[sdj%]/g;i.format=function(r){if(!isString(r)){for(var i=[],o=0;o<arguments.length;o++)i.push(inspect(arguments[o]));return i.join(" ")}o=1;for(var u=arguments,p=u.length,y=String(r).replace(g,(function(r){if("%%"===r)return"%";if(o>=p)return r;switch(r){case"%s":return String(u[o++]);case"%d":return Number(u[o++]);case"%j":try{return JSON.stringify(u[o++])}catch(r){return"[Circular]"}default:return r}})),w=u[o];o<p;w=u[++o])isNull(w)||!isObject(w)?y+=" "+w:y+=" "+inspect(w);return y},i.deprecate=function(r,o){if(void 0!==u&&!0===u.noDeprecation)return r;if(void 0===u)return function(){return i.deprecate(r,o).apply(this,arguments)};var p=!1;return function deprecated(){if(!p){if(u.throwDeprecation)throw new Error(o);u.traceDeprecation,p=!0}return r.apply(this,arguments)}};var y={},w=/^$/;if(u.env.NODE_DEBUG){var _=u.env.NODE_DEBUG;_=_.replace(/[|\\{}()[\]^$+?.]/g,"\\$&").replace(/\*/g,".*").replace(/,/g,"$|^").toUpperCase(),w=new RegExp("^"+_+"$","i")}function inspect(r,o){var u={seen:[],stylize:stylizeNoColor};return arguments.length>=3&&(u.depth=arguments[2]),arguments.length>=4&&(u.colors=arguments[3]),isBoolean(o)?u.showHidden=o:o&&i._extend(u,o),isUndefined(u.showHidden)&&(u.showHidden=!1),isUndefined(u.depth)&&(u.depth=2),isUndefined(u.colors)&&(u.colors=!1),isUndefined(u.customInspect)&&(u.customInspect=!0),u.colors&&(u.stylize=stylizeWithColor),formatValue(u,r,u.depth)}function stylizeWithColor(r,i){var o=inspect.styles[i];return o?"["+inspect.colors[o][0]+"m"+r+"["+inspect.colors[o][1]+"m":r}function stylizeNoColor(r,i){return r}function formatValue(r,o,u){if(r.customInspect&&o&&isFunction(o.inspect)&&o.inspect!==i.inspect&&(!o.constructor||o.constructor.prototype!==o)){var p=o.inspect(u,r);return isString(p)||(p=formatValue(r,p,u)),p}var g=function formatPrimitive(r,i){if(isUndefined(i))return r.stylize("undefined","undefined");if(isString(i)){var o="'"+JSON.stringify(i).replace(/^"|"$/g,"").replace(/'/g,"\\'").replace(/\\"/g,'"')+"'";return r.stylize(o,"string")}if(isNumber(i))return r.stylize(""+i,"number");if(isBoolean(i))return r.stylize(""+i,"boolean");if(isNull(i))return r.stylize("null","null")}(r,o);if(g)return g;var y=Object.keys(o),w=function arrayToHash(r){var i={};return r.forEach((function(r,o){i[r]=!0})),i}(y);if(r.showHidden&&(y=Object.getOwnPropertyNames(o)),isError(o)&&(y.indexOf("message")>=0||y.indexOf("description")>=0))return formatError(o);if(0===y.length){if(isFunction(o)){var _=o.name?": "+o.name:"";return r.stylize("[Function"+_+"]","special")}if(isRegExp(o))return r.stylize(RegExp.prototype.toString.call(o),"regexp");if(isDate(o))return r.stylize(Date.prototype.toString.call(o),"date");if(isError(o))return formatError(o)}var x,k="",P=!1,O=["{","}"];(isArray(o)&&(P=!0,O=["[","]"]),isFunction(o))&&(k=" [Function"+(o.name?": "+o.name:"")+"]");return isRegExp(o)&&(k=" "+RegExp.prototype.toString.call(o)),isDate(o)&&(k=" "+Date.prototype.toUTCString.call(o)),isError(o)&&(k=" "+formatError(o)),0!==y.length||P&&0!=o.length?u<0?isRegExp(o)?r.stylize(RegExp.prototype.toString.call(o),"regexp"):r.stylize("[Object]","special"):(r.seen.push(o),x=P?function formatArray(r,i,o,u,p){for(var g=[],y=0,w=i.length;y<w;++y)hasOwnProperty(i,String(y))?g.push(formatProperty(r,i,o,u,String(y),!0)):g.push("");return p.forEach((function(p){p.match(/^\d+$/)||g.push(formatProperty(r,i,o,u,p,!0))})),g}(r,o,u,w,y):y.map((function(i){return formatProperty(r,o,u,w,i,P)})),r.seen.pop(),function reduceToSingleString(r,i,o){var u=r.reduce((function(r,i){return i.indexOf("\n")>=0&&0,r+i.replace(/\u001b\[\d\d?m/g,"").length+1}),0);if(u>60)return o[0]+(""===i?"":i+"\n ")+" "+r.join(",\n  ")+" "+o[1];return o[0]+i+" "+r.join(", ")+" "+o[1]}(x,k,O)):O[0]+k+O[1]}function formatError(r){return"["+Error.prototype.toString.call(r)+"]"}function formatProperty(r,i,o,u,p,g){var y,w,_;if((_=Object.getOwnPropertyDescriptor(i,p)||{value:i[p]}).get?w=_.set?r.stylize("[Getter/Setter]","special"):r.stylize("[Getter]","special"):_.set&&(w=r.stylize("[Setter]","special")),hasOwnProperty(u,p)||(y="["+p+"]"),w||(r.seen.indexOf(_.value)<0?(w=isNull(o)?formatValue(r,_.value,null):formatValue(r,_.value,o-1)).indexOf("\n")>-1&&(w=g?w.split("\n").map((function(r){return"  "+r})).join("\n").slice(2):"\n"+w.split("\n").map((function(r){return"   "+r})).join("\n")):w=r.stylize("[Circular]","special")),isUndefined(y)){if(g&&p.match(/^\d+$/))return w;(y=JSON.stringify(""+p)).match(/^"([a-zA-Z_][a-zA-Z_0-9]*)"$/)?(y=y.slice(1,-1),y=r.stylize(y,"name")):(y=y.replace(/'/g,"\\'").replace(/\\"/g,'"').replace(/(^"|"$)/g,"'"),y=r.stylize(y,"string"))}return y+": "+w}function isArray(r){return Array.isArray(r)}function isBoolean(r){return"boolean"==typeof r}function isNull(r){return null===r}function isNumber(r){return"number"==typeof r}function isString(r){return"string"==typeof r}function isUndefined(r){return void 0===r}function isRegExp(r){return isObject(r)&&"[object RegExp]"===objectToString(r)}function isObject(r){return"object"==typeof r&&null!==r}function isDate(r){return isObject(r)&&"[object Date]"===objectToString(r)}function isError(r){return isObject(r)&&("[object Error]"===objectToString(r)||r instanceof Error)}function isFunction(r){return"function"==typeof r}function objectToString(r){return Object.prototype.toString.call(r)}i.debuglog=function(r){if(r=r.toUpperCase(),!y[r])if(w.test(r)){u.pid;y[r]=function(){i.format.apply(i,arguments)}}else y[r]=function(){};return y[r]},i.inspect=inspect,inspect.colors={bold:[1,22],italic:[3,23],underline:[4,24],inverse:[7,27],white:[37,39],grey:[90,39],black:[30,39],blue:[34,39],cyan:[36,39],green:[32,39],magenta:[35,39],red:[31,39],yellow:[33,39]},inspect.styles={special:"cyan",number:"yellow",boolean:"yellow",undefined:"grey",null:"bold",string:"green",date:"magenta",regexp:"red"},i.types=o(5955),i.isArray=isArray,i.isBoolean=isBoolean,i.isNull=isNull,i.isNullOrUndefined=function isNullOrUndefined(r){return null==r},i.isNumber=isNumber,i.isString=isString,i.isSymbol=function isSymbol(r){return"symbol"==typeof r},i.isUndefined=isUndefined,i.isRegExp=isRegExp,i.types.isRegExp=isRegExp,i.isObject=isObject,i.isDate=isDate,i.types.isDate=isDate,i.isError=isError,i.types.isNativeError=isError,i.isFunction=isFunction,i.isPrimitive=function isPrimitive(r){return null===r||"boolean"==typeof r||"number"==typeof r||"string"==typeof r||"symbol"==typeof r||void 0===r},i.isBuffer=o(384);function hasOwnProperty(r,i){return Object.prototype.hasOwnProperty.call(r,i)}i.log=function(){},i.inherits=o(5717),i._extend=function(r,i){if(!i||!isObject(i))return r;for(var o=Object.keys(i),u=o.length;u--;)r[o[u]]=i[o[u]];return r};var x="undefined"!=typeof Symbol?Symbol("util.promisify.custom"):void 0;function callbackifyOnRejected(r,i){if(!r){var o=new Error("Promise was rejected with a falsy value");o.reason=r,r=o}return i(r)}i.promisify=function promisify(r){if("function"!=typeof r)throw new TypeError('The "original" argument must be of type Function');if(x&&r[x]){var i;if("function"!=typeof(i=r[x]))throw new TypeError('The "util.promisify.custom" argument must be of type Function');return Object.defineProperty(i,x,{value:i,enumerable:!1,writable:!1,configurable:!0}),i}function i(){for(var i,o,u=new Promise((function(r,u){i=r,o=u})),p=[],g=0;g<arguments.length;g++)p.push(arguments[g]);p.push((function(r,u){r?o(r):i(u)}));try{r.apply(this,p)}catch(r){o(r)}return u}return Object.setPrototypeOf(i,Object.getPrototypeOf(r)),x&&Object.defineProperty(i,x,{value:i,enumerable:!1,writable:!1,configurable:!0}),Object.defineProperties(i,p(r))},i.promisify.custom=x,i.callbackify=function callbackify(r){if("function"!=typeof r)throw new TypeError('The "original" argument must be of type Function');function callbackified(){for(var i=[],o=0;o<arguments.length;o++)i.push(arguments[o]);var p=i.pop();if("function"!=typeof p)throw new TypeError("The last argument must be of type Function");var g=this,cb=function(){return p.apply(g,arguments)};r.apply(this,i).then((function(r){u.nextTick(cb.bind(null,null,r))}),(function(r){u.nextTick(callbackifyOnRejected.bind(null,r,cb))}))}return Object.setPrototypeOf(callbackified,Object.getPrototypeOf(r)),Object.defineProperties(callbackified,p(r)),callbackified}},6430:function(r,i,o){"use strict";var u=o(4029),p=o(3083),g=o(1924),y=o(7296),w=g("Object.prototype.toString"),_=o(6410)(),x="undefined"==typeof globalThis?o.g:globalThis,k=p(),P=g("String.prototype.slice"),O={},I=Object.getPrototypeOf;_&&y&&I&&u(k,(function(r){if("function"==typeof x[r]){var i=new x[r];if(Symbol.toStringTag in i){var o=I(i),u=y(o,Symbol.toStringTag);if(!u){var p=I(o);u=y(p,Symbol.toStringTag)}O[r]=u.get}}}));var B=o(5692);r.exports=function whichTypedArray(r){return!!B(r)&&(_&&Symbol.toStringTag in r?function tryAllTypedArrays(r){var i=!1;return u(O,(function(o,u){if(!i)try{var p=o.call(r);p===u&&(i=p)}catch(r){}})),i}(r):P(w(r),8,-1))}},6513:function(r,i,o){r.exports=o(5011)},5011:function(r,i,o){!function(){var i;if(r.exports&&!o.g.xmldocAssumeBrowser)i=o(6099);else if(!(i=this.sax))throw new Error("Expected sax to be defined. Make sure you're including sax.js before this file.");function XmlElement(r){var i=u[u.length-1].parser;this.name=r.name,this.attr=r.attributes,this.val="",this.children=[],this.firstChild=null,this.lastChild=null,this.line=i.line,this.column=i.column,this.position=i.position,this.startTagPosition=i.startTagPosition}function XmlTextNode(r){this.text=r}function XmlCDataNode(r){this.cdata=r}function XmlCommentNode(r){this.comment=r}function XmlDocument(r){if(r&&(r=r.toString().trim()),!r)throw new Error("No XML to parse!");this.doctype="",this.parser=i.parser(!0),function addParserEvents(r){r.onopentag=parser_opentag,r.onclosetag=parser_closetag,r.ontext=parser_text,r.oncdata=parser_cdata,r.oncomment=parser_comment,r.ondoctype=parser_doctype,r.onerror=parser_error}(this.parser),u=[this],this.parser.write(r),delete this.parser}XmlElement.prototype._addChild=function(r){this.children.push(r),this.firstChild||(this.firstChild=r),this.lastChild=r},XmlElement.prototype._opentag=function(r){var i=new XmlElement(r);this._addChild(i),u.unshift(i)},XmlElement.prototype._closetag=function(){u.shift()},XmlElement.prototype._text=function(r){void 0!==this.children&&(this.val+=r,this._addChild(new XmlTextNode(r)))},XmlElement.prototype._cdata=function(r){this.val+=r,this._addChild(new XmlCDataNode(r))},XmlElement.prototype._comment=function(r){void 0!==this.children&&this._addChild(new XmlCommentNode(r))},XmlElement.prototype._error=function(r){throw r},XmlElement.prototype.eachChild=function(r,i){for(var o=0,u=this.children.length;o<u;o++)if("element"===this.children[o].type&&!1===r.call(i,this.children[o],o,this.children))return},XmlElement.prototype.childNamed=function(r){for(var i=0,o=this.children.length;i<o;i++){var u=this.children[i];if(u.name===r)return u}},XmlElement.prototype.childrenNamed=function(r){for(var i=[],o=0,u=this.children.length;o<u;o++)this.children[o].name===r&&i.push(this.children[o]);return i},XmlElement.prototype.childWithAttribute=function(r,i){for(var o=0,u=this.children.length;o<u;o++){var p=this.children[o];if("element"===p.type&&(i&&p.attr[r]===i||!i&&p.attr[r]))return p}},XmlElement.prototype.descendantsNamed=function(r){for(var i=[],o=0,u=this.children.length;o<u;o++){var p=this.children[o];"element"===p.type&&(p.name===r&&i.push(p),i=i.concat(p.descendantsNamed(r)))}return i},XmlElement.prototype.descendantWithPath=function(r){for(var i=this,o=r.split("."),u=0,p=o.length;u<p;u++){if(!i||"element"!==i.type)return;i=i.childNamed(o[u])}return i},XmlElement.prototype.valueWithPath=function(r){var i=r.split("@"),o=this.descendantWithPath(i[0]);return o?i.length>1?o.attr[i[1]]:o.val:void 0},XmlElement.prototype.toString=function(r){return this.toStringWithIndent("",r)},XmlElement.prototype.toStringWithIndent=function(r,i){var o=r+"<"+this.name,u=i&&i.compressed?"":"\n";i&&i.preserveWhitespace;for(var p in this.attr)Object.prototype.hasOwnProperty.call(this.attr,p)&&(o+=" "+p+'="'+escapeXML(this.attr[p])+'"');if(1===this.children.length&&"element"!==this.children[0].type)o+=">"+this.children[0].toString(i)+"</"+this.name+">";else if(this.children.length){o+=">"+u;for(var g=r+(i&&i.compressed?"":"  "),y=0,w=this.children.length;y<w;y++)o+=this.children[y].toStringWithIndent(g,i)+u;o+=r+"</"+this.name+">"}else if(i&&i.html){-1!==["area","base","br","col","embed","frame","hr","img","input","keygen","link","menuitem","meta","param","source","track","wbr"].indexOf(this.name)?o+="/>":o+="></"+this.name+">"}else o+="/>";return o},XmlTextNode.prototype.toString=function(r){return formatText(escapeXML(this.text),r)},XmlTextNode.prototype.toStringWithIndent=function(r,i){return r+this.toString(i)},XmlCDataNode.prototype.toString=function(r){return"<![CDATA["+formatText(this.cdata,r)+"]]>"},XmlCDataNode.prototype.toStringWithIndent=function(r,i){return r+this.toString(i)},XmlCommentNode.prototype.toString=function(r){return"\x3c!--"+formatText(escapeXML(this.comment),r)+"--\x3e"},XmlCommentNode.prototype.toStringWithIndent=function(r,i){return r+this.toString(i)},XmlElement.prototype.type="element",XmlTextNode.prototype.type="text",XmlCDataNode.prototype.type="cdata",XmlCommentNode.prototype.type="comment",function extend(r,i){for(var o in i)i.hasOwnProperty(o)&&(r[o]=i[o])}(XmlDocument.prototype,XmlElement.prototype),XmlDocument.prototype._opentag=function(r){void 0===this.children?XmlElement.call(this,r):XmlElement.prototype._opentag.apply(this,arguments)},XmlDocument.prototype._doctype=function(r){this.doctype+=r};var u=null;function parser_opentag(){u[0]&&u[0]._opentag.apply(u[0],arguments)}function parser_closetag(){u[0]&&u[0]._closetag.apply(u[0],arguments)}function parser_text(){u[0]&&u[0]._text.apply(u[0],arguments)}function parser_cdata(){u[0]&&u[0]._cdata.apply(u[0],arguments)}function parser_comment(){u[0]&&u[0]._comment.apply(u[0],arguments)}function parser_doctype(){u[0]&&u[0]._doctype.apply(u[0],arguments)}function parser_error(){u[0]&&u[0]._error.apply(u[0],arguments)}function escapeXML(r){return r.toString().replace(/&/g,"&amp;").replace(/</g,"&lt;").replace(/>/g,"&gt;").replace(/'/g,"&apos;").replace(/"/g,"&quot;")}function formatText(r,i){var o=r;return i&&i.trimmed&&r.length>25&&(o=o.substring(0,25).trim()+"…"),i&&i.preserveWhitespace||(o=o.trim()),o}r.exports&&!o.g.xmldocAssumeBrowser?(r.exports.XmlDocument=XmlDocument,r.exports.XmlElement=XmlElement,r.exports.XmlTextNode=XmlTextNode,r.exports.XmlCDataNode=XmlCDataNode,r.exports.XmlCommentNode=XmlCommentNode):(this.XmlDocument=XmlDocument,this.XmlElement=XmlElement,this.XmlTextNode=XmlTextNode,this.XmlCDataNode=XmlCDataNode,this.XmlCommentNode=XmlCommentNode)}()},6255:function(r,i,o){"use strict";"undefined"==typeof window||window.Promise||o(3867),o(4667);function URLBrowserResolver(r){this.fs=r,this.resolving={}}URLBrowserResolver.prototype.resolve=function(r,i){if(!this.resolving[r]){var o=this;this.resolving[r]=new Promise((function(u,p){0===r.toLowerCase().indexOf("https://")||0===r.toLowerCase().indexOf("http://")?o.fs.existsSync(r)?u():function(r,i){return new Promise((function(o,u){var p=new XMLHttpRequest;for(var g in p.open("GET",r,!0),i)p.setRequestHeader(g,i[g]);p.responseType="arraybuffer",p.onreadystatechange=function(){4===p.readyState&&(p.status>=200&&p.status<300||setTimeout((function(){u(new TypeError('Failed to fetch (url: "'+r+'")'))}),0))},p.onload=function(){p.status>=200&&p.status<300&&o(p.response)},p.onerror=function(){setTimeout((function(){u(new TypeError('Network request failed (url: "'+r+'")'))}),0)},p.ontimeout=function(){setTimeout((function(){u(new TypeError('Network request failed (url: "'+r+'")'))}),0)},p.send()}))}(r,i).then((function(i){o.fs.writeFileSync(r,i),u()}),(function(r){p(r)})):u()}))}return this.resolving[r]},URLBrowserResolver.prototype.resolved=function(){var r=this;return new Promise((function(i,o){Promise.all(Object.values(r.resolving)).then((function(){i()}),(function(r){o(r)}))}))},r.exports=URLBrowserResolver},4275:function(r,i,o){"use strict";var u=o(8823).Buffer,p=o(6225).isFunction,g=o(6225).isUndefined,y=(o(6225).isNull,o(2984).saveAs),w={Roboto:{normal:"Roboto-Regular.ttf",bold:"Roboto-Medium.ttf",italics:"Roboto-Italic.ttf",bolditalics:"Roboto-MediumItalic.ttf"}};function Document(r,i,o,u){this.docDefinition=r,this.tableLayouts=i||null,this.fonts=o||w,this.vfs=u}Document.prototype._createDoc=function(r,i){var getExtendedUrl=function(r){return"object"==typeof r?{url:r.url,headers:r.headers}:{url:r,headers:{}}};r=r||{},this.tableLayouts&&(r.tableLayouts=this.tableLayouts);var u=new(o(8617))(this.fonts);if(o(3857).bindFS(this.vfs),!p(i))return u.createPdfKitDocument(this.docDefinition,r);var g=new(o(6255))(o(3857));for(var y in this.fonts)if(this.fonts.hasOwnProperty(y)){if(this.fonts[y].normal)if(Array.isArray(this.fonts[y].normal)){var w=getExtendedUrl(this.fonts[y].normal[0]);g.resolve(w.url,w.headers),this.fonts[y].normal[0]=w.url}else{w=getExtendedUrl(this.fonts[y].normal);g.resolve(w.url,w.headers),this.fonts[y].normal=w.url}if(this.fonts[y].bold)if(Array.isArray(this.fonts[y].bold)){w=getExtendedUrl(this.fonts[y].bold[0]);g.resolve(w.url,w.headers),this.fonts[y].bold[0]=w.url}else{w=getExtendedUrl(this.fonts[y].bold);g.resolve(w.url,w.headers),this.fonts[y].bold=w.url}if(this.fonts[y].italics)if(Array.isArray(this.fonts[y].italics)){w=getExtendedUrl(this.fonts[y].italics[0]);g.resolve(w.url,w.headers),this.fonts[y].italics[0]=w.url}else{w=getExtendedUrl(this.fonts[y].italics);g.resolve(w.url,w.headers),this.fonts[y].italics=w.url}if(this.fonts[y].bolditalics)if(Array.isArray(this.fonts[y].bolditalics)){w=getExtendedUrl(this.fonts[y].bolditalics[0]);g.resolve(w.url,w.headers),this.fonts[y].bolditalics[0]=w.url}else{w=getExtendedUrl(this.fonts[y].bolditalics);g.resolve(w.url,w.headers),this.fonts[y].bolditalics=w.url}}if(this.docDefinition.images)for(var _ in this.docDefinition.images)if(this.docDefinition.images.hasOwnProperty(_)){w=getExtendedUrl(this.docDefinition.images[_]);g.resolve(w.url,w.headers),this.docDefinition.images[_]=w.url}var x=this;g.resolved().then((function(){var o=u.createPdfKitDocument(x.docDefinition,r);i(o)}),(function(r){throw r}))},Document.prototype._flushDoc=function(r,i){var o,p=[];r.on("readable",(function(){for(var i;null!==(i=r.read(9007199254740991));)p.push(i)})),r.on("end",(function(){o=u.concat(p),i(o,r._pdfMakePages)})),r.end()},Document.prototype._getPages=function(r,i){if(!i)throw"_getPages is an async method and needs a callback argument";var o=this;this._createDoc(r,(function(r){o._flushDoc(r,(function(r,o){i(o)}))}))},Document.prototype._bufferToBlob=function(r){var i;try{i=new Blob([r],{type:"application/pdf"})}catch(u){if("InvalidStateError"===u.name){var o=new Uint8Array(r);i=new Blob([o.buffer],{type:"application/pdf"})}}if(!i)throw"Could not generate blob";return i},Document.prototype._openWindow=function(){var r=window.open("","_blank");if(null===r)throw"Open PDF in new window blocked by browser";return r},Document.prototype._openPdf=function(r,i){i||(i=this._openWindow());try{this.getBlob((function(r){var o=(window.URL||window.webkitURL).createObjectURL(r);i.location.href=o}),r)}catch(r){throw i.close(),r}},Document.prototype.open=function(r,i){(r=r||{}).autoPrint=!1,i=i||null,this._openPdf(r,i)},Document.prototype.print=function(r,i){(r=r||{}).autoPrint=!0,i=i||null,this._openPdf(r,i)},Document.prototype.download=function(r,i,o){p(r)&&(g(i)||(o=i),i=r,r=null),r=r||"file.pdf",this.getBlob((function(o){y(o,r),p(i)&&i()}),o)},Document.prototype.getBase64=function(r,i){if(!r)throw"getBase64 is an async method and needs a callback argument";this.getBuffer((function(i){r(i.toString("base64"))}),i)},Document.prototype.getDataUrl=function(r,i){if(!r)throw"getDataUrl is an async method and needs a callback argument";this.getBuffer((function(i){r("data:application/pdf;base64,"+i.toString("base64"))}),i)},Document.prototype.getBlob=function(r,i){if(!r)throw"getBlob is an async method and needs a callback argument";var o=this;this.getBuffer((function(i){var u=o._bufferToBlob(i);r(u)}),i)},Document.prototype.getBuffer=function(r,i){if(!r)throw"getBuffer is an async method and needs a callback argument";var o=this;this._createDoc(i,(function(i){o._flushDoc(i,(function(i){r(i)}))}))},Document.prototype.getStream=function(r,i){if(!p(i))return this._createDoc(r);this._createDoc(r,(function(r){i(r)}))},r.exports={createPdf:function(r,i,u,p){if(!function canCreatePdf(){try{var r=new Uint8Array(1),i={foo:function(){return 42}};return Object.setPrototypeOf(i,Uint8Array.prototype),Object.setPrototypeOf(r,i),42===r.foo()}catch(r){return!1}}())throw"Your browser does not provide the level of support needed";return new Document(r,i||o.g.pdfMake.tableLayouts,u||o.g.pdfMake.fonts,p||o.g.pdfMake.vfs)}}},3857:function(r,i,o){"use strict";var u=o(8823).Buffer;function VirtualFileSystem(){this.fileSystem={},this.dataSystem={}}function fixFilename(r){return 0===r.indexOf("/")&&(r=r.substring("/".length)),0===r.indexOf("/")&&(r=r.substring(1)),r}VirtualFileSystem.prototype.existsSync=function(r){return r=fixFilename(r),void 0!==this.fileSystem[r]||void 0!==this.dataSystem[r]},VirtualFileSystem.prototype.readFileSync=function(r,i){r=fixFilename(r);var o=this.dataSystem[r];if("string"==typeof o&&"utf8"===i)return o;if(o)return new u(o,"string"==typeof o?"base64":void 0);var p=this.fileSystem[r];if(p)return p;throw"File '"+r+"' not found in virtual file system"},VirtualFileSystem.prototype.writeFileSync=function(r,i){this.fileSystem[fixFilename(r)]=i},VirtualFileSystem.prototype.bindFS=function(r){this.dataSystem=r||{}},r.exports=new VirtualFileSystem},4498:function(r,i,o){"use strict";var u=o(6225).isString;function isAutoColumn(r){return"auto"===r.width}function isStarColumn(r){return null===r.width||void 0===r.width||"*"===r.width||"star"===r.width}r.exports={buildColumnWidths:function buildColumnWidths(r,i){var o=[],p=0,g=0,y=[],w=0,_=0,x=[],k=i;r.forEach((function(r){isAutoColumn(r)?(o.push(r),p+=r._minWidth,g+=r._maxWidth):isStarColumn(r)?(y.push(r),w=Math.max(w,r._minWidth),_=Math.max(_,r._maxWidth)):x.push(r)})),x.forEach((function(r){u(r.width)&&/\d+%/.test(r.width)&&(r.width=parseFloat(r.width)*k/100),r.width<r._minWidth&&r.elasticWidth?r._calcWidth=r._minWidth:r._calcWidth=r.width,i-=r._calcWidth}));var P=p+w*y.length,O=g+_*y.length;if(P>=i)o.forEach((function(r){r._calcWidth=r._minWidth})),y.forEach((function(r){r._calcWidth=w}));else{if(O<i)o.forEach((function(r){r._calcWidth=r._maxWidth,i-=r._calcWidth}));else{var I=i-P,B=O-P;o.forEach((function(r){var o=r._maxWidth-r._minWidth;r._calcWidth=r._minWidth+o*I/B,i-=r._calcWidth}))}if(y.length>0){var R=i/y.length;y.forEach((function(r){r._calcWidth=R}))}}},measureMinMax:function measureMinMax(r){for(var i={min:0,max:0},o={min:0,max:0},u=0,p=0,g=r.length;p<g;p++){var y=r[p];isStarColumn(y)?(o.min=Math.max(o.min,y._minWidth),o.max=Math.max(o.max,y._maxWidth),u++):isAutoColumn(y)?(i.min+=y._minWidth,i.max+=y._maxWidth):(i.min+=void 0!==y.width&&y.width||y._minWidth,i.max+=void 0!==y.width&&y.width||y._maxWidth)}return u&&(i.min+=u*o.min,i.max+=u*o.max),i},isAutoColumn:isAutoColumn,isStarColumn:isStarColumn}},1728:function(r,i,o){"use strict";var u=o(1350),p=o(7597),g=o(4498),y=o(6225).isString,w=o(6225).isNumber,_=o(6225).isObject,x=o(6225).isArray,k=o(6225).fontStringify,P=o(6225).getNodeId,O=o(6225).pack,I=o(145);function DocMeasure(r,i,o,g,y,w,_){this.textTools=new u(r),this.styleStack=new p(i,o),this.imageMeasure=g,this.svgMeasure=y,this.tableLayouts=w,this.images=_,this.autoImageIndex=1}DocMeasure.prototype.measureDocument=function(r){return this.measureNode(r)},DocMeasure.prototype.measureNode=function(r){var i=this;return this.styleStack.auto(r,(function(){if(r._margin=function getNodeMargin(){function processSingleMargins(r,i){return r.marginLeft||r.marginTop||r.marginRight||r.marginBottom?[r.marginLeft||i[0]||0,r.marginTop||i[1]||0,r.marginRight||i[2]||0,r.marginBottom||i[3]||0]:i}function flattenStyleArray(r){for(var o={},u=r.length-1;u>=0;u--){var p=r[u],g=i.styleStack.styleDictionary[p];for(var y in g)g.hasOwnProperty(y)&&(o[y]=g[y])}return o}function convertMargin(r){return w(r)?r=[r,r,r,r]:x(r)&&2===r.length&&(r=[r[0],r[1],r[0],r[1]]),r}var o=[void 0,void 0,void 0,void 0];if(r.style){var u=flattenStyleArray(x(r.style)?r.style:[r.style]);u&&(o=processSingleMargins(u,o)),u.margin&&(o=convertMargin(u.margin))}o=processSingleMargins(r,o),r.margin&&(o=convertMargin(r.margin));return void 0===o[0]&&void 0===o[1]&&void 0===o[2]&&void 0===o[3]?null:o}(),r.columns)return extendMargins(i.measureColumns(r));if(r.stack)return extendMargins(i.measureVerticalContainer(r));if(r.ul)return extendMargins(i.measureUnorderedList(r));if(r.ol)return extendMargins(i.measureOrderedList(r));if(r.table)return extendMargins(i.measureTable(r));if(void 0!==r.text)return extendMargins(i.measureLeaf(r));if(r.toc)return extendMargins(i.measureToc(r));if(r.image)return extendMargins(i.measureImage(r));if(r.svg)return extendMargins(i.measureSVG(r));if(r.canvas)return extendMargins(i.measureCanvas(r));if(r.qr)return extendMargins(i.measureQr(r));throw"Unrecognized document structure: "+JSON.stringify(r,k)}));function extendMargins(r){var i=r._margin;return i&&(r._minWidth+=i[0]+i[2],r._maxWidth+=i[0]+i[2]),r}},DocMeasure.prototype.convertIfBase64Image=function(r){if(/^data:image\/(jpeg|jpg|png);base64,/.test(r.image)){var i="$$pdfmake$$"+this.autoImageIndex++;this.images[i]=r.image,r.image=i}},DocMeasure.prototype.measureImageWithDimensions=function(r,i){if(r.fit){var o=i.width/i.height>r.fit[0]/r.fit[1]?r.fit[0]/i.width:r.fit[1]/i.height;r._width=r._minWidth=r._maxWidth=i.width*o,r._height=i.height*o}else r._width=r._minWidth=r._maxWidth=r.width||i.width,r._height=r.height||i.height*r._width/i.width,w(r.maxWidth)&&r.maxWidth<r._width&&(r._width=r._minWidth=r._maxWidth=r.maxWidth,r._height=r._width*i.height/i.width),w(r.maxHeight)&&r.maxHeight<r._height&&(r._height=r.maxHeight,r._width=r._minWidth=r._maxWidth=r._height*i.width/i.height),w(r.minWidth)&&r.minWidth>r._width&&(r._width=r._minWidth=r._maxWidth=r.minWidth,r._height=r._width*i.height/i.width),w(r.minHeight)&&r.minHeight>r._height&&(r._height=r.minHeight,r._width=r._minWidth=r._maxWidth=r._height*i.width/i.height);r._alignment=this.styleStack.getProperty("alignment")},DocMeasure.prototype.measureImage=function(r){this.images&&this.convertIfBase64Image(r);var i=this.imageMeasure.measureImage(r.image);return this.measureImageWithDimensions(r,i),r},DocMeasure.prototype.measureSVG=function(r){var i=this.svgMeasure.measureSVG(r.svg);return this.measureImageWithDimensions(r,i),r.font=this.styleStack.getProperty("font"),r.svg=this.svgMeasure.writeDimensions(r.svg,{width:r._width,height:r._height}),r},DocMeasure.prototype.measureLeaf=function(r){r._textRef&&r._textRef._textNodeRef.text&&(r.text=r._textRef._textNodeRef.text);var i=this.styleStack.clone();i.push(r);var o=this.textTools.buildInlines(r.text,i);return r._inlines=o.items,r._minWidth=o.minWidth,r._maxWidth=o.maxWidth,r},DocMeasure.prototype.measureToc=function(r){if(r.toc.title&&(r.toc.title=this.measureNode(r.toc.title)),r.toc._items.length>0){for(var i=[],o=r.toc.textStyle||{},u=r.toc.numberStyle||o,p=r.toc.textMargin||[0,0,0,0],g=0,y=r.toc._items.length;g<y;g++){var w=r.toc._items[g],_=w._textNodeRef.tocStyle||o,x=w._textNodeRef.tocMargin||p,k=w._textNodeRef.tocNumberStyle||u,O=P(w._nodeRef);i.push([{text:w._textNodeRef.text,linkToDestination:O,alignment:"left",style:_,margin:x},{text:"00000",linkToDestination:O,alignment:"right",_tocItemRef:w._nodeRef,style:k,margin:[0,x[1],0,x[3]]}])}r.toc._table={table:{dontBreakRows:!0,widths:["*","auto"],body:i},layout:"noBorders"},r.toc._table=this.measureNode(r.toc._table)}return r},DocMeasure.prototype.measureVerticalContainer=function(r){var i=r.stack;r._minWidth=0,r._maxWidth=0;for(var o=0,u=i.length;o<u;o++)i[o]=this.measureNode(i[o]),r._minWidth=Math.max(r._minWidth,i[o]._minWidth),r._maxWidth=Math.max(r._maxWidth,i[o]._maxWidth);return r},DocMeasure.prototype.gapSizeForList=function(){return this.textTools.sizeOfString("9. ",this.styleStack)},DocMeasure.prototype.buildUnorderedMarker=function(r,i,o){var u,p=r.getProperty("markerColor")||r.getProperty("color")||"black";switch(o){case"circle":u=function buildCircle(r,i){var o=r.fontSize/6;return{canvas:[{x:o,y:r.height/r.lineHeight+r.descender-r.fontSize/3,r1:o,r2:o,type:"ellipse",lineColor:i}]}}(i,p);break;case"square":u=function buildSquare(r,i){var o=r.fontSize/3;return{canvas:[{x:0,y:r.height/r.lineHeight+r.descender-r.fontSize/3-o/2,h:o,w:o,type:"rect",color:i}]}}(i,p);break;case"none":u={};break;default:u=function buildDisc(r,i){var o=r.fontSize/6;return{canvas:[{x:o,y:r.height/r.lineHeight+r.descender-r.fontSize/3,r1:o,r2:o,type:"ellipse",color:i}]}}(i,p)}return u._minWidth=u._maxWidth=i.width,u._minHeight=u._maxHeight=i.height,u},DocMeasure.prototype.buildOrderedMarker=function(r,i,o,u){function prepareAlpha(r){return r<1?r.toString():function toAlpha(r){return(r>=26?toAlpha((r/26>>0)-1):"")+"abcdefghijklmnopqrstuvwxyz"[r%26>>0]}(r-1)}function prepareRoman(r){if(r<1||r>4999)return r.toString();var i,o=r,u={M:1e3,CM:900,D:500,CD:400,C:100,XC:90,L:50,XL:40,X:10,IX:9,V:5,IV:4,I:1},p="";for(i in u)for(;o>=u[i];)p+=i,o-=u[i];return p}var p;switch(o){case"none":p=null;break;case"upper-alpha":p=prepareAlpha(r).toUpperCase();break;case"lower-alpha":p=prepareAlpha(r);break;case"upper-roman":p=prepareRoman(r);break;case"lower-roman":p=prepareRoman(r).toLowerCase();break;default:p=function prepareDecimal(r){return r.toString()}(r)}if(null===p)return{};u&&(x(u)?(u[0]&&(p=u[0]+p),u[1]&&(p+=u[1]),p+=" "):p+=u+" ");var g={text:p},y=i.getProperty("markerColor");return y&&(g.color=y),{_inlines:this.textTools.buildInlines(g,i).items}},DocMeasure.prototype.measureUnorderedList=function(r){var i=this.styleStack.clone(),o=r.ul;r.type=r.type||"disc",r._gapSize=this.gapSizeForList(),r._minWidth=0,r._maxWidth=0;for(var u=0,p=o.length;u<p;u++){var g=o[u]=this.measureNode(o[u]);g.ol||g.ul||(g.listMarker=this.buildUnorderedMarker(i,r._gapSize,g.listType||r.type)),r._minWidth=Math.max(r._minWidth,o[u]._minWidth+r._gapSize.width),r._maxWidth=Math.max(r._maxWidth,o[u]._maxWidth+r._gapSize.width)}return r},DocMeasure.prototype.measureOrderedList=function(r){var i=this.styleStack.clone(),o=r.ol;r.type=r.type||"decimal",r.separator=r.separator||".",r.reversed=r.reversed||!1,w(r.start)||(r.start=r.reversed?o.length:1),r._gapSize=this.gapSizeForList(),r._minWidth=0,r._maxWidth=0;for(var u=r.start,p=0,g=o.length;p<g;p++){if(!(_=o[p]=this.measureNode(o[p])).ol&&!_.ul){var y=w(_.counter)?_.counter:u;_.listMarker=this.buildOrderedMarker(y,i,_.listType||r.type,r.separator),_.listMarker._inlines&&(r._gapSize.width=Math.max(r._gapSize.width,_.listMarker._inlines[0].width))}r._minWidth=Math.max(r._minWidth,o[p]._minWidth),r._maxWidth=Math.max(r._maxWidth,o[p]._maxWidth),r.reversed?u--:u++}r._minWidth+=r._gapSize.width,r._maxWidth+=r._gapSize.width;for(p=0,g=o.length;p<g;p++){var _;(_=o[p]).ol||_.ul||(_.listMarker._minWidth=_.listMarker._maxWidth=r._gapSize.width)}return r},DocMeasure.prototype.measureColumns=function(r){var i=r.columns;r._gap=this.styleStack.getProperty("columnGap")||0;for(var o=0,u=i.length;o<u;o++)i[o]=this.measureNode(i[o]);var p=g.measureMinMax(i),y=i.length>0?i.length-1:0;return r._minWidth=p.min+r._gap*y,r._maxWidth=p.max+r._gap*y,r},DocMeasure.prototype.measureTable=function(r){!function extendTableWidths(r){r.table.widths||(r.table.widths="auto");if(y(r.table.widths))for(r.table.widths=[r.table.widths];r.table.widths.length<r.table.body[0].length;)r.table.widths.push(r.table.widths[r.table.widths.length-1]);for(var i=0,o=r.table.widths.length;i<o;i++){var u=r.table.widths[i];(w(u)||y(u))&&(r.table.widths[i]={width:u})}}(r),r._layout=function getLayout(i){var o=r.layout;y(o)&&(o=i[o]);return O({hLineWidth:function(r,i){return 1},vLineWidth:function(r,i){return 1},hLineColor:function(r,i){return"black"},vLineColor:function(r,i){return"black"},hLineStyle:function(r,i){return null},vLineStyle:function(r,i){return null},paddingLeft:function(r,i){return 4},paddingRight:function(r,i){return 4},paddingTop:function(r,i){return 2},paddingBottom:function(r,i){return 2},fillColor:function(r,i){return null},fillOpacity:function(r,i){return 1},defaultBorder:!0},o)}(this.tableLayouts),r._offsets=function getOffsets(i){for(var o=[],u=0,p=0,g=0,y=r.table.widths.length;g<y;g++){var w=p+i.vLineWidth(g,r)+i.paddingLeft(g,r);o.push(w),u+=w,p=i.paddingRight(g,r)}return{total:u+=p+i.vLineWidth(r.table.widths.length,r),offsets:o}}(r._layout);var i,o,u,p,x=[];for(i=0,u=r.table.body[0].length;i<u;i++){var k=r.table.widths[i];for(k._minWidth=0,k._maxWidth=0,o=0,p=r.table.body.length;o<p;o++){var P=r.table.body[o],I=P[i];if(void 0===I)throw"Malformed table row, a cell is undefined.";null===I&&(I=""),I._span||((I=P[i]=this.styleStack.auto(I,measureCb(this,I))).colSpan&&I.colSpan>1?(markSpans(P,i,I.colSpan),x.push({col:i,span:I.colSpan,minWidth:I._minWidth,maxWidth:I._maxWidth})):(k._minWidth=Math.max(k._minWidth,I._minWidth),k._maxWidth=Math.max(k._maxWidth,I._maxWidth))),I.rowSpan&&I.rowSpan>1&&markVSpans(r.table,o,i,I.rowSpan)}}!function extendWidthsForColSpans(){for(var i,o,u=0,p=x.length;u<p;u++){var g=x[u],y=getMinMax(g.col,g.span,r._offsets),w=g.minWidth-y.minWidth,_=g.maxWidth-y.maxWidth;if(w>0)for(i=w/g.span,o=0;o<g.span;o++)r.table.widths[g.col+o]._minWidth+=i;if(_>0)for(i=_/g.span,o=0;o<g.span;o++)r.table.widths[g.col+o]._maxWidth+=i}}();var B=g.measureMinMax(r.table.widths);return r._minWidth=B.min+r._offsets.total,r._maxWidth=B.max+r._offsets.total,r;function measureCb(r,i){return function(){return _(i)&&(i.fillColor=r.styleStack.getProperty("fillColor"),i.fillOpacity=r.styleStack.getProperty("fillOpacity")),r.measureNode(i)}}function getMinMax(i,o,u){for(var p={minWidth:0,maxWidth:0},g=0;g<o;g++)p.minWidth+=r.table.widths[i+g]._minWidth+(g?u.offsets[i+g]:0),p.maxWidth+=r.table.widths[i+g]._maxWidth+(g?u.offsets[i+g]:0);return p}function markSpans(r,i,o){for(var u=1;u<o;u++)r[i+u]={_span:!0,_minWidth:0,_maxWidth:0,rowSpan:r[i].rowSpan}}function markVSpans(r,i,o,u){for(var p=1;p<u;p++)r.body[i+p][o]={_span:!0,_minWidth:0,_maxWidth:0,fillColor:r.body[i][o].fillColor,fillOpacity:r.body[i][o].fillOpacity}}},DocMeasure.prototype.measureCanvas=function(r){for(var i=0,o=0,u=0,p=r.canvas.length;u<p;u++){var g=r.canvas[u];switch(g.type){case"ellipse":i=Math.max(i,g.x+g.r1),o=Math.max(o,g.y+g.r2);break;case"rect":i=Math.max(i,g.x+g.w),o=Math.max(o,g.y+g.h);break;case"line":i=Math.max(i,g.x1,g.x2),o=Math.max(o,g.y1,g.y2);break;case"polyline":for(var y=0,w=g.points.length;y<w;y++)i=Math.max(i,g.points[y].x),o=Math.max(o,g.points[y].y)}}return r._minWidth=r._maxWidth=i,r._minHeight=r._maxHeight=o,r._alignment=this.styleStack.getProperty("alignment"),r},DocMeasure.prototype.measureQr=function(r){return(r=I.measure(r))._alignment=this.styleStack.getProperty("alignment"),r},r.exports=DocMeasure},4889:function(r,i,o){"use strict";var u=o(8823).Buffer,p=o(6225).isString,g=o(6225).isNumber,y=o(6225).isBoolean,w=o(6225).isArray,_=o(6225).isUndefined,x=o(6225).fontStringify;function DocPreprocessor(){}DocPreprocessor.prototype.preprocessDocument=function(r){return this.parentNode=null,this.tocs=[],this.nodeReferences=[],this.preprocessNode(r)},DocPreprocessor.prototype.preprocessNode=function(r){if(w(r)?r={stack:r}:p(r)?r={text:r}:g(r)||y(r)?r={text:r.toString()}:null==r||0===Object.keys(r).length?r={text:""}:!("text"in r)||void 0!==r.text&&null!==r.text||(r.text=""),r.columns)return this.preprocessColumns(r);if(r.stack)return this.preprocessVerticalContainer(r);if(r.ul)return this.preprocessList(r);if(r.ol)return this.preprocessList(r);if(r.table)return this.preprocessTable(r);if(void 0!==r.text)return this.preprocessText(r);if(r.toc)return this.preprocessToc(r);if(r.image)return this.preprocessImage(r);if(r.svg)return this.preprocessSVG(r);if(r.canvas)return this.preprocessCanvas(r);if(r.qr)return this.preprocessQr(r);if(r.pageReference||r.textReference)return this.preprocessText(r);throw"Unrecognized document structure: "+JSON.stringify(r,x)},DocPreprocessor.prototype.preprocessColumns=function(r){for(var i=r.columns,o=0,u=i.length;o<u;o++)i[o]=this.preprocessNode(i[o]);return r},DocPreprocessor.prototype.preprocessVerticalContainer=function(r){for(var i=r.stack,o=0,u=i.length;o<u;o++)i[o]=this.preprocessNode(i[o]);return r},DocPreprocessor.prototype.preprocessList=function(r){for(var i=r.ul||r.ol,o=0,u=i.length;o<u;o++)i[o]=this.preprocessNode(i[o]);return r},DocPreprocessor.prototype.preprocessTable=function(r){var i,o,u,p;for(i=0,u=r.table.body[0].length;i<u;i++)for(o=0,p=r.table.body.length;o<p;o++){var g=r.table.body[o],y=g[i];void 0!==y&&(null===y&&(y=""),y._span||(g[i]=this.preprocessNode(y)))}return r},DocPreprocessor.prototype.preprocessText=function(r){if(r.tocItem){w(r.tocItem)||(r.tocItem=[r.tocItem]);for(var i=0,o=r.tocItem.length;i<o;i++){p(r.tocItem[i])||(r.tocItem[i]="_default_");var u=r.tocItem[i];this.tocs[u]||(this.tocs[u]={toc:{_items:[],_pseudo:!0}}),r.id||(r.id="toc-"+u+"-"+this.tocs[u].toc._items.length);var g={_nodeRef:this._getNodeForNodeRef(r),_textNodeRef:r};this.tocs[u].toc._items.push(g)}}if(r.id)if(this.nodeReferences[r.id]){if(!this.nodeReferences[r.id]._pseudo)throw"Node id '"+r.id+"' already exists";this.nodeReferences[r.id]._nodeRef=this._getNodeForNodeRef(r),this.nodeReferences[r.id]._textNodeRef=r,this.nodeReferences[r.id]._pseudo=!1}else this.nodeReferences[r.id]={_nodeRef:this._getNodeForNodeRef(r),_textNodeRef:r};if(r.pageReference&&(this.nodeReferences[r.pageReference]||(this.nodeReferences[r.pageReference]={_nodeRef:{},_textNodeRef:{},_pseudo:!0}),r.text="00000",r.linkToDestination=r.pageReference,r._pageRef=this.nodeReferences[r.pageReference]),r.textReference&&(this.nodeReferences[r.textReference]||(this.nodeReferences[r.textReference]={_nodeRef:{},_pseudo:!0}),r.text="",r.linkToDestination=r.textReference,r._textRef=this.nodeReferences[r.textReference]),r.text&&r.text.text)r.text=[this.preprocessNode(r.text)];else if(w(r.text)){var y=!1;null===this.parentNode&&(this.parentNode=r,y=!0);for(i=0,o=r.text.length;i<o;i++)r.text[i]=this.preprocessNode(r.text[i]);y&&(this.parentNode=null)}return r},DocPreprocessor.prototype.preprocessToc=function(r){if(r.toc.id||(r.toc.id="_default_"),r.toc.title=r.toc.title?this.preprocessNode(r.toc.title):null,r.toc._items=[],this.tocs[r.toc.id]){if(!this.tocs[r.toc.id].toc._pseudo)throw"TOC '"+r.toc.id+"' already exists";r.toc._items=this.tocs[r.toc.id].toc._items}return this.tocs[r.toc.id]=r,r},DocPreprocessor.prototype.preprocessImage=function(r){return _(r.image.type)||_(r.image.data)||"Buffer"!==r.image.type||!w(r.image.data)||(r.image=u.from(r.image.data)),r},DocPreprocessor.prototype.preprocessSVG=function(r){return r},DocPreprocessor.prototype.preprocessCanvas=function(r){return r},DocPreprocessor.prototype.preprocessQr=function(r){return r},DocPreprocessor.prototype._getNodeForNodeRef=function(r){return this.parentNode?this.parentNode:r},r.exports=DocPreprocessor},3858:function(r,i,o){"use strict";var u=o(8537),p=o(6225).isString;function DocumentContext(r,i){this.pages=[],this.pageMargins=i,this.x=i.left,this.availableWidth=r.width-i.left-i.right,this.availableHeight=0,this.page=-1,this.snapshots=[],this.endingCell=null,this.tracker=new u,this.backgroundLength=[],this.addPage(r)}DocumentContext.prototype.beginColumnGroup=function(){this.snapshots.push({x:this.x,y:this.y,availableHeight:this.availableHeight,availableWidth:this.availableWidth,page:this.page,bottomMost:{x:this.x,y:this.y,availableHeight:this.availableHeight,availableWidth:this.availableWidth,page:this.page},endingCell:this.endingCell,lastColumnWidth:this.lastColumnWidth}),this.lastColumnWidth=0},DocumentContext.prototype.beginColumn=function(r,i,o){var u=this.snapshots[this.snapshots.length-1];this.calculateBottomMost(u),this.endingCell=o,this.page=u.page,this.x=this.x+this.lastColumnWidth+(i||0),this.y=u.y,this.availableWidth=r,this.availableHeight=u.availableHeight,this.lastColumnWidth=r},DocumentContext.prototype.calculateBottomMost=function(r){this.endingCell?(this.saveContextInEndingCell(this.endingCell),this.endingCell=null):r.bottomMost=function bottomMostContext(r,i){var o;o=r.page>i.page?r:i.page>r.page?i:r.y>i.y?r:i;return{page:o.page,x:o.x,y:o.y,availableHeight:o.availableHeight,availableWidth:o.availableWidth}}(this,r.bottomMost)},DocumentContext.prototype.markEnding=function(r){this.page=r._columnEndingContext.page,this.x=r._columnEndingContext.x,this.y=r._columnEndingContext.y,this.availableWidth=r._columnEndingContext.availableWidth,this.availableHeight=r._columnEndingContext.availableHeight,this.lastColumnWidth=r._columnEndingContext.lastColumnWidth},DocumentContext.prototype.saveContextInEndingCell=function(r){r._columnEndingContext={page:this.page,x:this.x,y:this.y,availableHeight:this.availableHeight,availableWidth:this.availableWidth,lastColumnWidth:this.lastColumnWidth}},DocumentContext.prototype.completeColumnGroup=function(r){var i=this.snapshots.pop();this.calculateBottomMost(i),this.endingCell=null,this.x=i.x;var o=i.bottomMost.y;r&&(i.page===i.bottomMost.page?i.y+r>o&&(o=i.y+r):o+=r),this.y=o,this.page=i.bottomMost.page,this.availableWidth=i.availableWidth,this.availableHeight=i.bottomMost.availableHeight,r&&(this.availableHeight-=o-i.bottomMost.y),this.lastColumnWidth=i.lastColumnWidth},DocumentContext.prototype.addMargin=function(r,i){this.x+=r,this.availableWidth-=r+(i||0)},DocumentContext.prototype.moveDown=function(r){return this.y+=r,this.availableHeight-=r,this.availableHeight>0},DocumentContext.prototype.initializePage=function(){this.y=this.pageMargins.top,this.availableHeight=this.getCurrentPage().pageSize.height-this.pageMargins.top-this.pageMargins.bottom,this.pageSnapshot().availableWidth=this.getCurrentPage().pageSize.width-this.pageMargins.left-this.pageMargins.right},DocumentContext.prototype.pageSnapshot=function(){return this.snapshots[0]?this.snapshots[0]:this},DocumentContext.prototype.moveTo=function(r,i){null!=r&&(this.x=r,this.availableWidth=this.getCurrentPage().pageSize.width-this.x-this.pageMargins.right),null!=i&&(this.y=i,this.availableHeight=this.getCurrentPage().pageSize.height-this.y-this.pageMargins.bottom)},DocumentContext.prototype.moveToRelative=function(r,i){null!=r&&(this.x=this.x+r),null!=i&&(this.y=this.y+i)},DocumentContext.prototype.beginDetachedBlock=function(){this.snapshots.push({x:this.x,y:this.y,availableHeight:this.availableHeight,availableWidth:this.availableWidth,page:this.page,endingCell:this.endingCell,lastColumnWidth:this.lastColumnWidth})},DocumentContext.prototype.endDetachedBlock=function(){var r=this.snapshots.pop();this.x=r.x,this.y=r.y,this.availableWidth=r.availableWidth,this.availableHeight=r.availableHeight,this.page=r.page,this.endingCell=r.endingCell,this.lastColumnWidth=r.lastColumnWidth};var getPageSize=function(r,i){return(i=function pageOrientation(r,i){return void 0===r?i:p(r)&&"landscape"===r.toLowerCase()?"landscape":"portrait"}(i,r.pageSize.orientation))!==r.pageSize.orientation?{orientation:i,width:r.pageSize.height,height:r.pageSize.width}:{orientation:r.pageSize.orientation,width:r.pageSize.width,height:r.pageSize.height}};DocumentContext.prototype.moveToNextPage=function(r){var i=this.page+1,o=this.page,u=this.y,p=i>=this.pages.length;if(p){var g=this.availableWidth,y=this.getCurrentPage().pageSize.orientation,w=getPageSize(this.getCurrentPage(),r);this.addPage(w),y===w.orientation&&(this.availableWidth=g)}else this.page=i,this.initializePage();return{newPageCreated:p,prevPage:o,prevY:u,y:this.y}},DocumentContext.prototype.addPage=function(r){var i={items:[],pageSize:r};return this.pages.push(i),this.backgroundLength.push(0),this.page=this.pages.length-1,this.initializePage(),this.tracker.emit("pageAdded"),i},DocumentContext.prototype.getCurrentPage=function(){return this.page<0||this.page>=this.pages.length?null:this.pages[this.page]},DocumentContext.prototype.getCurrentPosition=function(){var r=this.getCurrentPage().pageSize,i=r.height-this.pageMargins.top-this.pageMargins.bottom,o=r.width-this.pageMargins.left-this.pageMargins.right;return{pageNumber:this.page+1,pageOrientation:r.orientation,pageInnerHeight:i,pageInnerWidth:o,left:this.x,top:this.y,verticalRatio:(this.y-this.pageMargins.top)/i,horizontalRatio:(this.x-this.pageMargins.left)/o}},r.exports=DocumentContext},1196:function(r,i,o){"use strict";var u=o(4775),p=o(6225).isNumber,g=o(6225).pack,y=o(6225).offsetVector,w=o(3858);function ElementWriter(r,i){this.context=r,this.contextStack=[],this.tracker=i}function addPageItem(r,i,o){null==o||o<0||o>r.items.length?r.items.push(i):r.items.splice(o,0,i)}ElementWriter.prototype.addLine=function(r,i,o){var u=r.getHeight(),p=this.context,g=p.getCurrentPage(),y=this.getCurrentPositionOnPage();return!(p.availableHeight<u||!g)&&(r.x=p.x+(r.x||0),r.y=p.y+(r.y||0),this.alignLine(r),addPageItem(g,{type:"line",item:r},o),this.tracker.emit("lineAdded",r),i||p.moveDown(u),y)},ElementWriter.prototype.alignLine=function(r){var i=this.context.availableWidth,o=r.getWidth(),u=r.inlines&&r.inlines.length>0&&r.inlines[0].alignment,p=0;switch(u){case"right":p=i-o;break;case"center":p=(i-o)/2}if(p&&(r.x=(r.x||0)+p),"justify"===u&&!r.newLineForced&&!r.lastLineInParagraph&&r.inlines.length>1)for(var g=(i-o)/(r.inlines.length-1),y=1,w=r.inlines.length;y<w;y++)p=y*g,r.inlines[y].x+=p,r.inlines[y].justifyShift=g},ElementWriter.prototype.addImage=function(r,i,o){var u=this.context,p=u.getCurrentPage(),g=this.getCurrentPositionOnPage();return!(!p||void 0===r.absolutePosition&&u.availableHeight<r._height&&p.items.length>0)&&(void 0===r._x&&(r._x=r.x||0),r.x=u.x+r._x,r.y=u.y,this.alignImage(r),addPageItem(p,{type:o||"image",item:r},i),u.moveDown(r._height),g)},ElementWriter.prototype.addSVG=function(r,i){return this.addImage(r,i,"svg")},ElementWriter.prototype.addQr=function(r,i){var o=this.context,u=o.getCurrentPage(),p=this.getCurrentPositionOnPage();if(!u||void 0===r.absolutePosition&&o.availableHeight<r._height)return!1;void 0===r._x&&(r._x=r.x||0),r.x=o.x+r._x,r.y=o.y,this.alignImage(r);for(var g=0,y=r._canvas.length;g<y;g++){var w=r._canvas[g];w.x+=r.x,w.y+=r.y,this.addVector(w,!0,!0,i)}return o.moveDown(r._height),p},ElementWriter.prototype.alignImage=function(r){var i=this.context.availableWidth,o=r._minWidth,u=0;switch(r._alignment){case"right":u=i-o;break;case"center":u=(i-o)/2}u&&(r.x=(r.x||0)+u)},ElementWriter.prototype.alignCanvas=function(r){var i=this.context.availableWidth,o=r._minWidth,u=0;switch(r._alignment){case"right":u=i-o;break;case"center":u=(i-o)/2}u&&r.canvas.forEach((function(r){y(r,u,0)}))},ElementWriter.prototype.addVector=function(r,i,o,u){var p=this.context,g=p.getCurrentPage(),w=this.getCurrentPositionOnPage();if(g)return y(r,i?0:p.x,o?0:p.y),addPageItem(g,{type:"vector",item:r},u),w},ElementWriter.prototype.beginClip=function(r,i){var o=this.context;return o.getCurrentPage().items.push({type:"beginClip",item:{x:o.x,y:o.y,width:r,height:i}}),!0},ElementWriter.prototype.endClip=function(){return this.context.getCurrentPage().items.push({type:"endClip"}),!0},ElementWriter.prototype.addFragment=function(r,i,o,p){var w=this.context,_=w.getCurrentPage();return!(!i&&r.height>w.availableHeight)&&(r.items.forEach((function(p){switch(p.type){case"line":var x=function cloneLine(r){var i=new u(r.maxWidth);for(var o in r)r.hasOwnProperty(o)&&(i[o]=r[o]);return i}(p.item);x._node&&(x._node.positions[0].pageNumber=w.page+1),x.x=(x.x||0)+(i?r.xOffset||0:w.x),x.y=(x.y||0)+(o?r.yOffset||0:w.y),_.items.push({type:"line",item:x});break;case"vector":var k=g(p.item);y(k,i?r.xOffset||0:w.x,o?r.yOffset||0:w.y),_.items.push({type:"vector",item:k});break;case"image":case"svg":var P=g(p.item);P.x=(P.x||0)+(i?r.xOffset||0:w.x),P.y=(P.y||0)+(o?r.yOffset||0:w.y),_.items.push({type:p.type,item:P})}})),p||w.moveDown(r.height),!0)},ElementWriter.prototype.pushContext=function(r,i){void 0===r&&(i=this.context.getCurrentPage().height-this.context.pageMargins.top-this.context.pageMargins.bottom,r=this.context.availableWidth),p(r)&&(r=new w({width:r,height:i},{left:0,right:0,top:0,bottom:0})),this.contextStack.push(this.context),this.context=r},ElementWriter.prototype.popContext=function(){this.context=this.contextStack.pop()},ElementWriter.prototype.getCurrentPositionOnPage=function(){return(this.contextStack[0]||this.context).getCurrentPosition()},r.exports=ElementWriter},2249:function(r,i,o){"use strict";var u=o(6225).isArray;function FontProvider(r,i){for(var o in this.fonts={},this.pdfKitDoc=i,this.fontCache={},r)if(r.hasOwnProperty(o)){var u=r[o];this.fonts[o]={normal:u.normal,bold:u.bold,italics:u.italics,bolditalics:u.bolditalics}}}FontProvider.prototype.getFontType=function(r,i){return function typeName(r,i){var o="normal";return r&&i?o="bolditalics":r?o="bold":i&&(o="italics"),o}(r,i)},FontProvider.prototype.getFontFile=function(r,i,o){var u=this.getFontType(i,o);return this.fonts[r]&&this.fonts[r][u]?this.fonts[r][u]:null},FontProvider.prototype.provideFont=function(r,i,o){var p=this.getFontType(i,o);if(null===this.getFontFile(r,i,o))throw new Error("Font '"+r+"' in style '"+p+"' is not defined in the font section of the document definition.");if(this.fontCache[r]=this.fontCache[r]||{},!this.fontCache[r][p]){var g=this.fonts[r][p];u(g)||(g=[g]),this.fontCache[r][p]=this.pdfKitDoc.font.apply(this.pdfKitDoc,g)._font}return this.fontCache[r][p]},r.exports=FontProvider},6225:function(r){"use strict";function isArray(r){return Array.isArray(r)}r.exports={isString:function isString(r){return"string"==typeof r||r instanceof String},isNumber:function isNumber(r){return"number"==typeof r||r instanceof Number},isBoolean:function isBoolean(r){return"boolean"==typeof r},isArray:isArray,isFunction:function isFunction(r){return"function"==typeof r},isObject:function isObject(r){return null!==r&&"object"==typeof r},isNull:function isNull(r){return null===r},isUndefined:function isUndefined(r){return void 0===r},pack:function pack(){for(var r={},i=0,o=arguments.length;i<o;i++){var u=arguments[i];if(u)for(var p in u)u.hasOwnProperty(p)&&(r[p]=u[p])}return r},fontStringify:function fontStringify(r,i){return"font"===r?"font":i},offsetVector:function offsetVector(r,i,o){switch(r.type){case"ellipse":case"rect":r.x+=i,r.y+=o;break;case"line":r.x1+=i,r.x2+=i,r.y1+=o,r.y2+=o;break;case"polyline":for(var u=0,p=r.points.length;u<p;u++)r.points[u].x+=i,r.points[u].y+=o}},getNodeId:function getNodeId(r){if(r.id)return r.id;if(isArray(r.text))for(var i=0,o=r.text.length;i<o;i++){var u=getNodeId(r.text[i]);if(u)return u}return null},isPattern:function isPattern(r){return isArray(r)&&2===r.length},getPattern:function getPattern(r,i){return[i[r[0]],r[1]]}}},3090:function(r,i,o){"use strict";var u=o(8823).Buffer,p=o(3857);function ImageMeasure(r,i){this.pdfKitDoc=r,this.imageDictionary=i||{}}ImageMeasure.prototype.measureImage=function(r){var i,o=this;if(this.pdfKitDoc._imageRegistry[r])i=this.pdfKitDoc._imageRegistry[r];else{try{if(i=this.pdfKitDoc.openImage(function realImageSrc(r){var i=o.imageDictionary[r];if(!i)return r;if(p.existsSync(i))return p.readFileSync(i);var g=i.indexOf("base64,");if(g<0)return o.imageDictionary[r];return u.from(i.substring(g+7),"base64")}(r)),!i)throw"No image"}catch(r){throw"Invalid image: "+r.toString()+"\nImages dictionary should contain dataURL entries (or local file paths in node.js)"}i.embed(this.pdfKitDoc),this.pdfKitDoc._imageRegistry[r]=i}return{width:i.width,height:i.height}},r.exports=ImageMeasure},2678:function(r,i,o){"use strict";var u=o(8537),p=o(4889),g=o(1728),y=o(3858),w=o(2912),_=o(4498),x=o(9342),k=o(4775),P=o(6225).isString,O=o(6225).isArray,I=o(6225).isUndefined,B=o(6225).isNull,R=o(6225).pack,D=o(6225).offsetVector,N=o(6225).fontStringify,W=o(6225).getNodeId,U=o(6225).isFunction,j=o(1350),G=o(7597),X=o(6225).isNumber;function addAll(r,i){i.forEach((function(i){r.push(i)}))}function LayoutBuilder(r,i,o,p){this.pageSize=r,this.pageMargins=i,this.tracker=new u,this.imageMeasure=o,this.svgMeasure=p,this.tableLayouts={}}LayoutBuilder.prototype.registerTableLayouts=function(r){this.tableLayouts=R(this.tableLayouts,r)},LayoutBuilder.prototype.layoutDocument=function(r,i,o,u,y,w,_,x,k,P){function addPageBreaksIfNecessary(r,i){if(!U(P))return!1;r=r.filter((function(r){return r.positions.length>0})),r.forEach((function(r){var o={};["id","text","ul","ol","table","image","qr","canvas","svg","columns","headlineLevel","style","pageBreak","pageOrientation","width","height"].forEach((function(i){void 0!==r[i]&&(o[i]=r[i])})),o.startPosition=r.positions[0],o.pageNumbers=Array.from(new Set(r.positions.map((function(r){return r.pageNumber})))),o.pages=i.length,o.stack=O(r.stack),r.nodeInfo=o}));for(var o=0;o<r.length;o++){var u=r[o];if("before"!==u.pageBreak&&!u.pageBreakCalculated){u.pageBreakCalculated=!0;var p=u.nodeInfo.pageNumbers[0],g=[],y=[],w=[];if(P.length>1)for(var _=o+1,x=r.length;_<x;_++)r[_].nodeInfo.pageNumbers.indexOf(p)>-1&&g.push(r[_].nodeInfo),P.length>2&&r[_].nodeInfo.pageNumbers.indexOf(p+1)>-1&&y.push(r[_].nodeInfo);if(P.length>3)for(_=0;_<o;_++)r[_].nodeInfo.pageNumbers.indexOf(p)>-1&&w.push(r[_].nodeInfo);if(P(u.nodeInfo,g,y,w))return u.pageBreak="before",!0}}return!1}function resetXYs(r){r.linearNodeList.forEach((function(r){r.resetXY()}))}this.docPreprocessor=new p,this.docMeasure=new g(i,o,u,this.imageMeasure,this.svgMeasure,this.tableLayouts,x);for(var I=this.tryLayoutDocument(r,i,o,u,y,w,_,x,k);addPageBreaksIfNecessary(I.linearNodeList,I.pages);)resetXYs(I),I=this.tryLayoutDocument(r,i,o,u,y,w,_,x,k);return I.pages},LayoutBuilder.prototype.tryLayoutDocument=function(r,i,o,u,p,g,_,x,k,P){this.linearNodeList=[],r=this.docPreprocessor.preprocessDocument(r),r=this.docMeasure.measureDocument(r),this.writer=new w(new y(this.pageSize,this.pageMargins),this.tracker);var O=this;return this.writer.context().tracker.startTracking("pageAdded",(function(){O.addBackground(p)})),this.addBackground(p),this.processNode(r),this.addHeadersAndFooters(g,_),null!=k&&this.addWatermark(k,i,u),{pages:this.writer.context().pages,linearNodeList:this.linearNodeList}},LayoutBuilder.prototype.addBackground=function(r){var i=U(r)?r:function(){return r},o=this.writer.context(),u=o.getCurrentPage().pageSize,p=i(o.page+1,u);p&&(this.writer.beginUnbreakableBlock(u.width,u.height),p=this.docPreprocessor.preprocessDocument(p),this.processNode(this.docMeasure.measureDocument(p)),this.writer.commitUnbreakableBlock(0,0),o.backgroundLength[o.page]+=p.positions.length)},LayoutBuilder.prototype.addStaticRepeatable=function(r,i){this.addDynamicRepeatable((function(){return JSON.parse(JSON.stringify(r))}),i)},LayoutBuilder.prototype.addDynamicRepeatable=function(r,i){for(var o=0,u=this.writer.context().pages.length;o<u;o++){this.writer.context().page=o;var p=r(o+1,u,this.writer.context().pages[o].pageSize);if(p){var g=i(this.writer.context().getCurrentPage().pageSize,this.pageMargins);this.writer.beginUnbreakableBlock(g.width,g.height),p=this.docPreprocessor.preprocessDocument(p),this.processNode(this.docMeasure.measureDocument(p)),this.writer.commitUnbreakableBlock(g.x,g.y)}}},LayoutBuilder.prototype.addHeadersAndFooters=function(r,i){var headerSizeFct=function(r,i){return{x:0,y:0,width:r.width,height:i.top}},footerSizeFct=function(r,i){return{x:0,y:r.height-i.bottom,width:r.width,height:i.bottom}};U(r)?this.addDynamicRepeatable(r,headerSizeFct):r&&this.addStaticRepeatable(r,headerSizeFct),U(i)?this.addDynamicRepeatable(i,footerSizeFct):i&&this.addStaticRepeatable(i,footerSizeFct)},LayoutBuilder.prototype.addWatermark=function(r,i,o){if(P(r)&&(r={text:r}),r.text){r.font=r.font||o.font||"Roboto",r.fontSize=r.fontSize||"auto",r.color=r.color||"black",r.opacity=X(r.opacity)?r.opacity:.6,r.bold=r.bold||!1,r.italics=r.italics||!1,r.angle=I(r.angle)||B(r.angle)?null:r.angle,null===r.angle&&(r.angle=-180*Math.atan2(this.pageSize.height,this.pageSize.width)/Math.PI),"auto"===r.fontSize&&(r.fontSize=function getWatermarkFontSize(r,i,o){var u,p=new j(o),g=new G(null,{font:i.font,bold:i.bold,italics:i.italics}),y=0,w=1e3,_=(y+w)/2;for(;Math.abs(y-w)>1;)g.push({fontSize:_}),(u=p.sizeOfRotatedText(i.text,i.angle,g)).width>r.width?_=(y+(w=_))/2:u.width<r.width&&(_=u.height>r.height?(y+(w=_))/2:((y=_)+w)/2),g.pop();return _}(this.pageSize,r,i));var u={text:r.text,font:i.provideFont(r.font,r.bold,r.italics),fontSize:r.fontSize,color:r.color,opacity:r.opacity,angle:r.angle};u._size=function getWatermarkSize(r,i){var o=new j(i),u=new G(null,{font:r.font,bold:r.bold,italics:r.italics});u.push({fontSize:r.fontSize});var p=o.sizeOfString(r.text,u),g=o.sizeOfRotatedText(r.text,r.angle,u);return{size:p,rotatedSize:g}}(r,i);for(var p=this.writer.context().pages,g=0,y=p.length;g<y;g++)p[g].watermark=u}},LayoutBuilder.prototype.processNode=function(r){var i=this;this.linearNodeList.push(r),function decorateNode(r){var i=r.x,o=r.y;r.positions=[],O(r.canvas)&&r.canvas.forEach((function(r){var i=r.x,o=r.y,u=r.x1,p=r.y1,g=r.x2,y=r.y2;r.resetXY=function(){r.x=i,r.y=o,r.x1=u,r.y1=p,r.x2=g,r.y2=y}})),r.resetXY=function(){r.x=i,r.y=o,O(r.canvas)&&r.canvas.forEach((function(r){r.resetXY()}))}}(r),function applyMargins(o){var u=r._margin;"before"===r.pageBreak?i.writer.moveToNextPage(r.pageOrientation):"beforeOdd"===r.pageBreak?(i.writer.moveToNextPage(r.pageOrientation),(i.writer.context().page+1)%2==1&&i.writer.moveToNextPage(r.pageOrientation)):"beforeEven"===r.pageBreak&&(i.writer.moveToNextPage(r.pageOrientation),(i.writer.context().page+1)%2==0&&i.writer.moveToNextPage(r.pageOrientation));u&&(i.writer.context().moveDown(u[1]),i.writer.context().addMargin(u[0],u[2]));o(),u&&(i.writer.context().addMargin(-u[0],-u[2]),i.writer.context().moveDown(u[3]));"after"===r.pageBreak?i.writer.moveToNextPage(r.pageOrientation):"afterOdd"===r.pageBreak?(i.writer.moveToNextPage(r.pageOrientation),(i.writer.context().page+1)%2==1&&i.writer.moveToNextPage(r.pageOrientation)):"afterEven"===r.pageBreak&&(i.writer.moveToNextPage(r.pageOrientation),(i.writer.context().page+1)%2==0&&i.writer.moveToNextPage(r.pageOrientation))}((function(){var o=r.unbreakable;o&&i.writer.beginUnbreakableBlock();var u=r.absolutePosition;u&&(i.writer.context().beginDetachedBlock(),i.writer.context().moveTo(u.x||0,u.y||0));var p=r.relativePosition;if(p&&(i.writer.context().beginDetachedBlock(),i.writer.context().moveToRelative(p.x||0,p.y||0)),r.stack)i.processVerticalContainer(r);else if(r.columns)i.processColumns(r);else if(r.ul)i.processList(!1,r);else if(r.ol)i.processList(!0,r);else if(r.table)i.processTable(r);else if(void 0!==r.text)i.processLeaf(r);else if(r.toc)i.processToc(r);else if(r.image)i.processImage(r);else if(r.svg)i.processSVG(r);else if(r.canvas)i.processCanvas(r);else if(r.qr)i.processQr(r);else if(!r._span)throw"Unrecognized document structure: "+JSON.stringify(r,N);(u||p)&&i.writer.context().endDetachedBlock(),o&&i.writer.commitUnbreakableBlock()}))},LayoutBuilder.prototype.processVerticalContainer=function(r){var i=this;r.stack.forEach((function(o){i.processNode(o),addAll(r.positions,o.positions)}))},LayoutBuilder.prototype.processColumns=function(r){var i=r.columns,o=this.writer.context().availableWidth,u=function gapArray(r){if(!r)return null;var o=[];o.push(0);for(var u=i.length-1;u>0;u--)o.push(r);return o}(r._gap);u&&(o-=(u.length-1)*r._gap),_.buildColumnWidths(i,o);var p=this.processRow(i,i,u);addAll(r.positions,p.positions)},LayoutBuilder.prototype.processRow=function(r,i,o,u,p,g){var y=this,w=[],_=[];return this.tracker.auto("pageChanged",(function storePageBreakData(r){for(var i,o=0,u=w.length;o<u;o++){var p=w[o];if(p.prevPage===r.prevPage){i=p;break}}i||(i=r,w.push(i));i.prevY=Math.max(i.prevY,r.prevY),i.y=Math.min(i.y,r.y)}),(function(){i=i||r,y.writer.context().beginColumnGroup();for(var u=0,p=r.length;u<p;u++){var w=r[u],x=i[u]._calcWidth,k=colLeftOffset(u);if(w.colSpan&&w.colSpan>1)for(var P=1;P<w.colSpan;P++)x+=i[++u]._calcWidth+o[u];y.writer.context().beginColumn(x,k,getEndingCell(w,u)),w._span?w._columnEndingContext&&y.writer.context().markEnding(w):(y.processNode(w),addAll(_,w.positions))}y.writer.context().completeColumnGroup(g)})),{pageBreaks:w,positions:_};function colLeftOffset(r){return o&&o.length>r?o[r]:0}function getEndingCell(r,i){if(r.rowSpan&&r.rowSpan>1){var o=p+r.rowSpan-1;if(o>=u.length)throw"Row span for column "+i+" (with indexes starting from 0) exceeded row count";return u[o][i]}return null}},LayoutBuilder.prototype.processList=function(r,i){var o,u=this,p=r?i.ol:i.ul,g=i._gapSize;this.writer.context().addMargin(g.width),this.tracker.auto("lineAdded",(function addMarkerToFirstLeaf(r){if(o){var i=o;if(o=null,i.canvas){var p=i.canvas[0];D(p,-i._minWidth,0),u.writer.addVector(p)}else if(i._inlines){var g=new k(u.pageSize.width);g.addInline(i._inlines[0]),g.x=-i._minWidth,g.y=r.getAscenderHeight()-g.getAscenderHeight(),u.writer.addLine(g,!0)}}}),(function(){p.forEach((function(r){o=r.listMarker,u.processNode(r),addAll(i.positions,r.positions)}))})),this.writer.context().addMargin(-g.width)},LayoutBuilder.prototype.processTable=function(r){var i=new x(r);i.beginTable(this.writer);for(var o=r.table.heights,u=0,p=r.table.body.length;u<p;u++){var g;i.beginRow(u,this.writer),"auto"===(g=U(o)?o(u):O(o)?o[u]:o)&&(g=void 0);var y=this.processRow(r.table.body[u],r.table.widths,r._offsets.offsets,r.table.body,u,g);addAll(r.positions,y.positions),i.endRow(u,this.writer,y.pageBreaks)}i.endTable(this.writer)},LayoutBuilder.prototype.processLeaf=function(r){var i=this.buildNextLine(r);i&&(r.tocItem||r.id)&&(i._node=r);var o=i?i.getHeight():0,u=r.maxHeight||-1;if(i){var p=W(r);p&&(i.id=p)}if(r._tocItemRef&&(i._pageNodeRef=r._tocItemRef),r._pageRef&&(i._pageNodeRef=r._pageRef._nodeRef),i&&i.inlines&&O(i.inlines))for(var g=0,y=i.inlines.length;g<y;g++)i.inlines[g]._tocItemRef&&(i.inlines[g]._pageNodeRef=i.inlines[g]._tocItemRef),i.inlines[g]._pageRef&&(i.inlines[g]._pageNodeRef=i.inlines[g]._pageRef._nodeRef);for(;i&&(-1===u||o<u);){var w=this.writer.addLine(i);r.positions.push(w),(i=this.buildNextLine(r))&&(o+=i.getHeight())}},LayoutBuilder.prototype.processToc=function(r){r.toc.title&&this.processNode(r.toc.title),r.toc._table&&this.processNode(r.toc._table)},LayoutBuilder.prototype.buildNextLine=function(r){function cloneInline(r){var i=r.constructor();for(var o in r)i[o]=r[o];return i}if(!r._inlines||0===r._inlines.length)return null;for(var i=new k(this.writer.context().availableWidth),o=new j(null),u=!1;r._inlines&&r._inlines.length>0&&(i.hasEnoughSpaceForInline(r._inlines[0],r._inlines.slice(1))||u);){var p=!1,g=r._inlines.shift();if(u=!1,!g.noWrap&&g.text.length>1&&g.width>i.getAvailableWidth()){var y=g.width/g.text.length,w=Math.floor(i.getAvailableWidth()/y);if(w<1&&(w=1),w<g.text.length){var _=cloneInline(g);_.text=g.text.substr(w),g.text=g.text.substr(0,w),_.width=o.widthOfString(_.text,_.font,_.fontSize,_.characterSpacing,_.fontFeatures),g.width=o.widthOfString(g.text,g.font,g.fontSize,g.characterSpacing,g.fontFeatures),r._inlines.unshift(_),p=!0}}i.addInline(g),u=g.noNewLine&&!p}return i.lastLineInParagraph=0===r._inlines.length,i},LayoutBuilder.prototype.processImage=function(r){var i=this.writer.addImage(r);r.positions.push(i)},LayoutBuilder.prototype.processSVG=function(r){var i=this.writer.addSVG(r);r.positions.push(i)},LayoutBuilder.prototype.processCanvas=function(r){var i=r._minHeight;void 0===r.absolutePosition&&this.writer.context().availableHeight<i&&this.writer.moveToNextPage(),this.writer.alignCanvas(r),r.canvas.forEach((function(i){var o=this.writer.addVector(i);r.positions.push(o)}),this),this.writer.context().moveDown(i)},LayoutBuilder.prototype.processQr=function(r){var i=this.writer.addQr(r);r.positions.push(i)},r.exports=LayoutBuilder},4775:function(r){"use strict";function Line(r){this.maxWidth=r,this.leadingCut=0,this.trailingCut=0,this.inlineWidths=0,this.inlines=[]}Line.prototype.getAscenderHeight=function(){var r=0;return this.inlines.forEach((function(i){r=Math.max(r,i.font.ascender/1e3*i.fontSize)})),r},Line.prototype.hasEnoughSpaceForInline=function(r,i){if(i=i||[],0===this.inlines.length)return!0;if(this.newLineForced)return!1;var o=r.width,u=r.trailingCut||0;if(r.noNewLine)for(var p=0,g=i.length;p<g;p++){var y=i[p];if(o+=y.width,u+=y.trailingCut||0,!y.noNewLine)break}return this.inlineWidths+o-this.leadingCut-u<=this.maxWidth},Line.prototype.addInline=function(r){0===this.inlines.length&&(this.leadingCut=r.leadingCut||0),this.trailingCut=r.trailingCut||0,r.x=this.inlineWidths-this.leadingCut,this.inlines.push(r),this.inlineWidths+=r.width,r.lineEnd&&(this.newLineForced=!0)},Line.prototype.getWidth=function(){return this.inlineWidths-this.leadingCut-this.trailingCut},Line.prototype.getAvailableWidth=function(){return this.maxWidth-this.getWidth()},Line.prototype.getHeight=function(){var r=0;return this.inlines.forEach((function(i){r=Math.max(r,i.height||0)})),r},r.exports=Line},2912:function(r,i,o){"use strict";var u=o(6225).isUndefined,p=o(1196);function PageElementWriter(r,i){this.transactionLevel=0,this.repeatables=[],this.tracker=i,this.writer=new p(r,i)}function fitOnPage(r,i){var o=i(r);return o||(r.moveToNextPage(),o=i(r)),o}PageElementWriter.prototype.addLine=function(r,i,o){return fitOnPage(this,(function(u){return u.writer.addLine(r,i,o)}))},PageElementWriter.prototype.addImage=function(r,i){return fitOnPage(this,(function(o){return o.writer.addImage(r,i)}))},PageElementWriter.prototype.addSVG=function(r,i){return fitOnPage(this,(function(o){return o.writer.addSVG(r,i)}))},PageElementWriter.prototype.addQr=function(r,i){return fitOnPage(this,(function(o){return o.writer.addQr(r,i)}))},PageElementWriter.prototype.addVector=function(r,i,o,u){return this.writer.addVector(r,i,o,u)},PageElementWriter.prototype.beginClip=function(r,i){return this.writer.beginClip(r,i)},PageElementWriter.prototype.endClip=function(){return this.writer.endClip()},PageElementWriter.prototype.alignCanvas=function(r){this.writer.alignCanvas(r)},PageElementWriter.prototype.addFragment=function(r,i,o,u){this.writer.addFragment(r,i,o,u)||(this.moveToNextPage(),this.writer.addFragment(r,i,o,u))},PageElementWriter.prototype.moveToNextPage=function(r){var i=this.writer.context.moveToNextPage(r);this.repeatables.forEach((function(r){u(r.insertedOnPages[this.writer.context.page])?(r.insertedOnPages[this.writer.context.page]=!0,this.writer.addFragment(r,!0)):this.writer.context.moveDown(r.height)}),this),this.writer.tracker.emit("pageChanged",{prevPage:i.prevPage,prevY:i.prevY,y:this.writer.context.y})},PageElementWriter.prototype.beginUnbreakableBlock=function(r,i){0==this.transactionLevel++&&(this.originalX=this.writer.context.x,this.writer.pushContext(r,i))},PageElementWriter.prototype.commitUnbreakableBlock=function(r,i){if(0==--this.transactionLevel){var o=this.writer.context;this.writer.popContext();var u=o.pages.length;if(u>0){var p=o.pages[0];if(p.xOffset=r,p.yOffset=i,u>1)if(void 0!==r||void 0!==i)p.height=o.getCurrentPage().pageSize.height-o.pageMargins.top-o.pageMargins.bottom;else{p.height=this.writer.context.getCurrentPage().pageSize.height-this.writer.context.pageMargins.top-this.writer.context.pageMargins.bottom;for(var g=0,y=this.repeatables.length;g<y;g++)p.height-=this.repeatables[g].height}else p.height=o.y;void 0!==r||void 0!==i?this.writer.addFragment(p,!0,!0,!0):this.addFragment(p)}}},PageElementWriter.prototype.currentBlockToRepeatable=function(){var r=this.writer.context,i={items:[]};return r.pages[0].items.forEach((function(r){i.items.push(r)})),i.xOffset=this.originalX,i.height=r.y,i.insertedOnPages=[],i},PageElementWriter.prototype.pushToRepeatables=function(r){this.repeatables.push(r)},PageElementWriter.prototype.popFromRepeatables=function(){this.repeatables.pop()},PageElementWriter.prototype.context=function(){return this.writer.context},r.exports=PageElementWriter},6079:function(r,i,o){"use strict";var u=function _interopDefault(r){return r&&"object"==typeof r&&"default"in r?r.default:r}(o(5219));r.exports={getEngineInstance:function getEngineInstance(){return u},createPdfDocument:function createPdfDocument(r){return new u(r=r||{})}}},8617:function(r,i,o){"use strict";var u=o(6079),p=o(2249),g=o(2678),y=o(4762),w=o(3090),_=o(7601),x=o(3497),k=o(1350),P=o(6225).isFunction,O=o(6225).isString,I=o(6225).isNumber,B=o(6225).isBoolean,R=o(6225).isArray,D=o(6225).isUndefined,N=o(6225).isPattern,W=o(6225).getPattern,U=o(8071);function PdfPrinter(r){this.fontDescriptors=r}function createMetadata(r){function standardizePropertyKey(r){var i=r.charAt(0).toUpperCase()+r.slice(1);return-1!==["Title","Author","Subject","Keywords","Creator","Producer","CreationDate","ModDate","Trapped"].indexOf(i)?i:r.replace(/\s+/g,"")}var i={Producer:"pdfmake",Creator:"pdfmake"};if(r.info)for(var o in r.info){var u=r.info[o];u&&(i[o=standardizePropertyKey(o)]=u)}return i}function fixPageMargins(r){if(I(r))r={left:r,right:r,top:r,bottom:r};else if(R(r))if(2===r.length)r={left:r[0],top:r[1],right:r[0],bottom:r[1]};else{if(4!==r.length)throw"Invalid pageMargins definition";r={left:r[0],top:r[1],right:r[2],bottom:r[3]}}return r}function updatePageOrientationInOptions(r,i){var o=i.options.size[0]>i.options.size[1]?"landscape":"portrait";if(r.pageSize.orientation!==o){var u=i.options.size[0],p=i.options.size[1];i.options.size=[p,u]}}function offsetText(r,i){var o=r;return i.sup&&(o-=.75*i.fontSize),i.sub&&(o+=.35*i.fontSize),o}function renderLine(r,i,o,u,p){function preparePageNodeRefLine(r,i){var o,u,p=new k(null);if(D(r.positions))throw"Page reference id not found";var g=r.positions[0].pageNumber.toString();switch(i.text=g,o=p.widthOfString(i.text,i.font,i.fontSize,i.characterSpacing,i.fontFeatures),u=i.width-o,i.width=o,i.alignment){case"right":i.x+=u;break;case"center":i.x+=u/2}}r._pageNodeRef&&preparePageNodeRefLine(r._pageNodeRef,r.inlines[0]),i=i||0,o=o||0;var g=r.getHeight(),y=g-r.getAscenderHeight();x.drawBackground(r,i,o,u,p);for(var w=0,_=r.inlines.length;w<_;w++){var P=r.inlines[w],O=g-P.font.ascender/1e3*P.fontSize-y;P._pageNodeRef&&preparePageNodeRefLine(P._pageNodeRef,P);var B={lineBreak:!1,textWidth:P.width,characterSpacing:P.characterSpacing,wordCount:1,link:P.link};P.linkToDestination&&(B.goTo=P.linkToDestination),r.id&&0===w&&(B.destination=r.id),P.fontFeatures&&(B.features=P.fontFeatures);var R=I(P.opacity)?P.opacity:1;p.opacity(R),p.fill(P.color||"black"),p._font=P.font,p.fontSize(P.fontSize);var N=offsetText(o+O,P);if(p.text(P.text,i+P.x,N,B),P.linkToPage){p.ref({Type:"Action",S:"GoTo",D:[P.linkToPage,0,0]}).end();p.annotate(i+P.x,N,P.width,P.height,{Subtype:"Link",Dest:[P.linkToPage-1,"XYZ",null,null,null]})}}x.drawDecorations(r,i,o,p)}function renderWatermark(r,i){var o=r.watermark;i.fill(o.color),i.opacity(o.opacity),i.save(),i.rotate(o.angle,{origin:[i.page.width/2,i.page.height/2]});var u=i.page.width/2-o._size.size.width/2,p=i.page.height/2-o._size.size.height/2;i._font=o.font,i.fontSize(o.fontSize),i.text(o.text,u,p,{lineBreak:!1}),i.restore()}function renderVector(r,i,o){o.lineWidth(r.lineWidth||1),r.dash?o.dash(r.dash.length,{space:r.dash.space||r.dash.length,phase:r.dash.phase||0}):o.undash(),o.lineJoin(r.lineJoin||"miter"),o.lineCap(r.lineCap||"butt");var u=null;switch(r.type){case"ellipse":o.ellipse(r.x,r.y,r.r1,r.r2),r.linearGradient&&(u=o.linearGradient(r.x-r.r1,r.y,r.x+r.r1,r.y));break;case"rect":r.r?o.roundedRect(r.x,r.y,r.w,r.h,r.r):o.rect(r.x,r.y,r.w,r.h),r.linearGradient&&(u=o.linearGradient(r.x,r.y,r.x+r.w,r.y));break;case"line":o.moveTo(r.x1,r.y1),o.lineTo(r.x2,r.y2);break;case"polyline":if(0===r.points.length)break;o.moveTo(r.points[0].x,r.points[0].y);for(var p=1,g=r.points.length;p<g;p++)o.lineTo(r.points[p].x,r.points[p].y);if(r.points.length>1){var y=r.points[0],w=r.points[r.points.length-1];(r.closePath||y.x===w.x&&y.y===w.y)&&o.closePath()}break;case"path":o.path(r.d)}if(r.linearGradient&&u){var _=1/(r.linearGradient.length-1);for(p=0;p<r.linearGradient.length;p++)u.stop(p*_,r.linearGradient[p]);r.color=u}N(r.color)&&(r.color=W(r.color,i));var x=I(r.fillOpacity)?r.fillOpacity:1,k=I(r.strokeOpacity)?r.strokeOpacity:1;r.color&&r.lineColor?(o.fillColor(r.color,x),o.strokeColor(r.lineColor,k),o.fillAndStroke()):r.color?(o.fillColor(r.color,x),o.fill()):(o.strokeColor(r.lineColor||"black",k),o.stroke())}function renderImage(r,i,o,u){var p=I(r.opacity)?r.opacity:1;if(u.opacity(p),r.cover){var g=r.cover.align||"center",y=r.cover.valign||"center",w=r.cover.width?r.cover.width:r.width,_=r.cover.height?r.cover.height:r.height;u.save(),u.rect(r.x,r.y,w,_).clip(),u.image(r.image,r.x,r.y,{cover:[w,_],align:g,valign:y}),u.restore()}else u.image(r.image,r.x,r.y,{width:r._width,height:r._height});r.link&&u.link(r.x,r.y,r._width,r._height,r.link),r.linkToPage&&(u.ref({Type:"Action",S:"GoTo",D:[r.linkToPage,0,0]}).end(),u.annotate(r.x,r.y,r._width,r._height,{Subtype:"Link",Dest:[r.linkToPage-1,"XYZ",null,null,null]})),r.linkToDestination&&u.goTo(r.x,r.y,r._width,r._height,r.linkToDestination)}function renderSVG(r,i,o,u,p){var g=Object.assign({width:r._width,height:r._height,assumePt:!0},r.options);g.fontCallback=function(i,o,u){var g=i.split(",").map((function(r){return r.trim().replace(/('|")/g,"")})),y=function(r,i,o){for(var u=0;u<i.length;u++){var p=i[u].toLowerCase();for(var g in r)if(g.toLowerCase()===p)return g}return o}(p.fonts,g,r.font||"Roboto"),w=p.getFontFile(y,o,u);if(null===w){var _=p.getFontType(o,u);throw new Error("Font '"+y+"' in style '"+_+"' is not defined in the font section of the document definition.")}return w},U(u,r.svg,r.x,r.y,g)}function beginClip(r,i){i.save(),i.addContent(r.x+" "+r.y+" "+r.width+" "+r.height+" re"),i.clip()}function endClip(r){r.restore()}PdfPrinter.prototype.createPdfKitDocument=function(r,i){i=i||{},r.version=r.version||"1.3",r.compress=!B(r.compress)||r.compress,r.images=r.images||{},r.pageMargins=void 0!==r.pageMargins&&null!==r.pageMargins?r.pageMargins:40;var o=function fixPageSize(r,i){function isNeedSwapPageSizes(r){return!!O(r)&&("portrait"===(r=r.toLowerCase())&&o.width>o.height||"landscape"===r&&o.width<o.height)}r&&"auto"===r.height&&(r.height=1/0);var o=function pageSize2widthAndHeight(r){if(O(r)){var i=y[r.toUpperCase()];if(!i)throw"Page size "+r+" not recognized";return{width:i[0],height:i[1]}}return r}(r||"A4");isNeedSwapPageSizes(i)&&(o={width:o.height,height:o.width});return o.orientation=o.width>o.height?"landscape":"portrait",o}(r.pageSize,r.pageOrientation),x={size:[o.width,o.height],pdfVersion:r.version,compress:r.compress,userPassword:r.userPassword,ownerPassword:r.ownerPassword,permissions:r.permissions,fontLayoutCache:!B(i.fontLayoutCache)||i.fontLayoutCache,bufferPages:i.bufferPages||!1,autoFirstPage:!1,info:createMetadata(r),font:null};this.pdfKitDoc=u.createPdfDocument(x),this.fontProvider=new p(this.fontDescriptors,this.pdfKitDoc);var k=new g(o,fixPageMargins(r.pageMargins),new w(this.pdfKitDoc,r.images),new _);!function registerDefaultTableLayouts(r){r.registerTableLayouts({noBorders:{hLineWidth:function(r){return 0},vLineWidth:function(r){return 0},paddingLeft:function(r){return r?4:0},paddingRight:function(r,i){return r<i.table.widths.length-1?4:0}},headerLineOnly:{hLineWidth:function(r,i){return 0===r||r===i.table.body.length?0:r===i.table.headerRows?2:0},vLineWidth:function(r){return 0},paddingLeft:function(r){return 0===r?0:8},paddingRight:function(r,i){return r===i.table.widths.length-1?0:8}},lightHorizontalLines:{hLineWidth:function(r,i){return 0===r||r===i.table.body.length?0:r===i.table.headerRows?2:1},vLineWidth:function(r){return 0},hLineColor:function(r){return 1===r?"black":"#aaa"},paddingLeft:function(r){return 0===r?0:8},paddingRight:function(r,i){return r===i.table.widths.length-1?0:8}}})}(k),i.tableLayouts&&k.registerTableLayouts(i.tableLayouts);var R=k.layoutDocument(r.content,this.fontProvider,r.styles||{},r.defaultStyle||{fontSize:12,font:"Roboto"},r.background,r.header,r.footer,r.images,r.watermark,r.pageBreakBefore),D=r.maxPagesNumber||-1;if(I(D)&&D>-1&&(R=R.slice(0,D)),o.height===1/0){var N=function calculatePageHeight(r,i){function getItemHeight(r){return P(r.item.getHeight)?r.item.getHeight():r.item._height?r.item._height:"vector"===r.type?void 0!==r.item.y1?r.item.y1>r.item.y2?r.item.y1:r.item.y2:r.item.h:0}function getBottomPosition(r){return(r.item.y||0)+getItemHeight(r)}var o=fixPageMargins(i||40),u=o.top;return r.forEach((function(r){r.items.forEach((function(r){var i=getBottomPosition(r);i>u&&(u=i)}))})),u+=o.bottom}(R,r.pageMargins);this.pdfKitDoc.options.size=[o.width,N]}var W=function createPatterns(r,i){var o={};return Object.keys(r).forEach((function(u){var p=r[u];o[u]=i.pattern(p.boundingBox,p.xStep,p.yStep,p.pattern,p.colored)})),o}(r.patterns||{},this.pdfKitDoc);if(function renderPages(r,i,o,u,p){o._pdfMakePages=r,o.addPage();var g=0;p&&r.forEach((function(r){g+=r.items.length}));var y=0;p=p||function(){};for(var w=0;w<r.length;w++){w>0&&(updatePageOrientationInOptions(r[w],o),o.addPage(o.options));for(var _=r[w],x=0,k=_.items.length;x<k;x++){var P=_.items[x];switch(P.type){case"vector":renderVector(P.item,u,o);break;case"line":renderLine(P.item,P.item.x,P.item.y,u,o);break;case"image":renderImage(P.item,P.item.x,P.item.y,o);break;case"svg":renderSVG(P.item,P.item.x,P.item.y,o,i);break;case"beginClip":beginClip(P.item,o);break;case"endClip":endClip(o)}p(++y/g)}_.watermark&&renderWatermark(_,o)}}(R,this.fontProvider,this.pdfKitDoc,W,i.progressCallback),i.autoPrint){var U=this.pdfKitDoc.ref({Type:"Action",S:"Named",N:"Print"});this.pdfKitDoc._root.data.OpenAction=U,U.end()}return this.pdfKitDoc},r.exports=PdfPrinter},145:function(r){"use strict";for(var i=[null,[[10,7,17,13],[1,1,1,1],[]],[[16,10,28,22],[1,1,1,1],[4,16]],[[26,15,22,18],[1,1,2,2],[4,20]],[[18,20,16,26],[2,1,4,2],[4,24]],[[24,26,22,18],[2,1,4,4],[4,28]],[[16,18,28,24],[4,2,4,4],[4,32]],[[18,20,26,18],[4,2,5,6],[4,20,36]],[[22,24,26,22],[4,2,6,6],[4,22,40]],[[22,30,24,20],[5,2,8,8],[4,24,44]],[[26,18,28,24],[5,4,8,8],[4,26,48]],[[30,20,24,28],[5,4,11,8],[4,28,52]],[[22,24,28,26],[8,4,11,10],[4,30,56]],[[22,26,22,24],[9,4,16,12],[4,32,60]],[[24,30,24,20],[9,4,16,16],[4,24,44,64]],[[24,22,24,30],[10,6,18,12],[4,24,46,68]],[[28,24,30,24],[10,6,16,17],[4,24,48,72]],[[28,28,28,28],[11,6,19,16],[4,28,52,76]],[[26,30,28,28],[13,6,21,18],[4,28,54,80]],[[26,28,26,26],[14,7,25,21],[4,28,56,84]],[[26,28,28,30],[16,8,25,20],[4,32,60,88]],[[26,28,30,28],[17,8,25,23],[4,26,48,70,92]],[[28,28,24,30],[17,9,34,23],[4,24,48,72,96]],[[28,30,30,30],[18,9,30,25],[4,28,52,76,100]],[[28,30,30,30],[20,10,32,27],[4,26,52,78,104]],[[28,26,30,30],[21,12,35,29],[4,30,56,82,108]],[[28,28,30,28],[23,12,37,34],[4,28,56,84,112]],[[28,30,30,30],[25,12,40,34],[4,32,60,88,116]],[[28,30,30,30],[26,13,42,35],[4,24,48,72,96,120]],[[28,30,30,30],[28,14,45,38],[4,28,52,76,100,124]],[[28,30,30,30],[29,15,48,40],[4,24,50,76,102,128]],[[28,30,30,30],[31,16,51,43],[4,28,54,80,106,132]],[[28,30,30,30],[33,17,54,45],[4,32,58,84,110,136]],[[28,30,30,30],[35,18,57,48],[4,28,56,84,112,140]],[[28,30,30,30],[37,19,60,51],[4,32,60,88,116,144]],[[28,30,30,30],[38,19,63,53],[4,28,52,76,100,124,148]],[[28,30,30,30],[40,20,66,56],[4,22,48,74,100,126,152]],[[28,30,30,30],[43,21,70,59],[4,26,52,78,104,130,156]],[[28,30,30,30],[45,22,74,62],[4,30,56,82,108,134,160]],[[28,30,30,30],[47,24,77,65],[4,24,52,80,108,136,164]],[[28,30,30,30],[49,25,81,68],[4,28,56,84,112,140,168]]],o=/^\d*$/,u=/^[A-Za-z0-9 $%*+\-./:]*$/,p=/^[A-Z0-9 $%*+\-./:]*$/,g=[],y=[-1],w=0,_=1;w<255;++w)g.push(_),y[_]=w,_=2*_^(_>=128?285:0);var x=[[]];for(w=0;w<30;++w){for(var k=x[w],P=[],O=0;O<=w;++O){var I=O<w?g[k[O]]:0,B=g[(w+(k[O-1]||0))%255];P.push(y[I^B])}x.push(P)}var R={};for(w=0;w<45;++w)R["0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZ $%*+-./:".charAt(w)]=w;var D=[function(r,i){return(r+i)%2==0},function(r,i){return r%2==0},function(r,i){return i%3==0},function(r,i){return(r+i)%3==0},function(r,i){return((r/2|0)+(i/3|0))%2==0},function(r,i){return r*i%2+r*i%3==0},function(r,i){return(r*i%2+r*i%3)%2==0},function(r,i){return((r+i)%2+r*i%3)%2==0}],needsverinfo=function(r){return r>6},ndatabits=function(r,o){var u=-8&function(r){var o=i[r],u=16*r*r+128*r+64;return needsverinfo(r)&&(u-=36),o[2].length&&(u-=25*o[2].length*o[2].length-10*o[2].length-55),u}(r),p=i[r];return u-=8*p[0][o]*p[1][o]},ndatalenbits=function(r,i){switch(i){case 1:return r<10?10:r<27?12:14;case 2:return r<10?9:r<27?11:13;case 4:return r<10?8:16;case 8:return r<10?8:r<27?10:12}},getmaxdatalen=function(r,i,o){var u=ndatabits(r,o)-4-ndatalenbits(r,i);switch(i){case 1:return 3*(u/10|0)+(u%10<4?0:u%10<7?1:2);case 2:return 2*(u/11|0)+(u%11<6?0:1);case 4:return u/8|0;case 8:return u/13|0}},calculateecc=function(r,i){for(var o=r.slice(0),u=r.length,p=i.length,w=0;w<p;++w)o.push(0);for(w=0;w<u;){var _=y[o[w++]];if(_>=0)for(var x=0;x<p;++x)o[w+x]^=g[(_+i[x])%255]}return o.slice(u)},augumentbch=function(r,i,o,u){for(var p=r<<u,g=i-1;g>=0;--g)p>>u+g&1&&(p^=o<<g);return r<<u|p},maskdata=function(r,i,o){for(var u=D[o],p=r.length,g=0;g<p;++g)for(var y=0;y<p;++y)i[g][y]||(r[g][y]^=u(g,y));return r},putformatinfo=function(r,i,o,u){for(var p=r.length,g=21522^augumentbch(o<<3|u,5,1335,10),y=0;y<15;++y){var w=[p-1,p-2,p-3,p-4,p-5,p-6,p-7,p-8,7,5,4,3,2,1,0][y];r[[0,1,2,3,4,5,7,8,p-7,p-6,p-5,p-4,p-3,p-2,p-1][y]][8]=r[8][w]=g>>y&1}return r},evaluatematrix=function(r){for(var evaluategroup=function(r){for(var i=0,o=0;o<r.length;++o)r[o]>=5&&(i+=r[o]-5+3);for(o=5;o<r.length;o+=2){var u=r[o];r[o-1]==u&&r[o-2]==3*u&&r[o-3]==u&&r[o-4]==u&&(r[o-5]>=4*u||r[o+1]>=4*u)&&(i+=40)}return i},i=r.length,o=0,u=0,p=0;p<i;++p){var g,y=r[p];g=[0];for(var w=0;w<i;){for(_=0;w<i&&y[w];++_)++w;for(g.push(_),_=0;w<i&&!y[w];++_)++w;g.push(_)}o+=evaluategroup(g),g=[0];for(w=0;w<i;){var _;for(_=0;w<i&&r[w][p];++_)++w;for(g.push(_),_=0;w<i&&!r[w][p];++_)++w;g.push(_)}o+=evaluategroup(g);var x=r[p+1]||[];u+=y[0];for(w=1;w<i;++w){var k=y[w];u+=k,y[w-1]==k&&x[w]===k&&x[w-1]===k&&(o+=3)}}return o+=10*(Math.abs(u/i/i-.5)/.05|0)},generate=function(r,o,u,p,g){var y=i[o],w=function(r,i,o,u){var p=[],g=0,y=8,w=o.length,pack=function(r,i){if(i>=y){for(p.push(g|r>>(i-=y));i>=8;)p.push(r>>(i-=8)&255);g=0,y=8}i>0&&(g|=(r&(1<<i)-1)<<(y-=i))},_=ndatalenbits(r,i);switch(pack(i,4),pack(w,_),i){case 1:for(var x=2;x<w;x+=3)pack(parseInt(o.substring(x-2,x+1),10),10);pack(parseInt(o.substring(x-2),10),[0,4,7][w%3]);break;case 2:for(x=1;x<w;x+=2)pack(45*R[o.charAt(x-1)]+R[o.charAt(x)],11);w%2==1&&pack(R[o.charAt(x-1)],6);break;case 4:for(x=0;x<w;++x)pack(o[x],8)}for(pack(0,4),y<8&&p.push(g);p.length+1<u;)p.push(236,17);return p.length<u&&p.push(236),p}(o,u,r,ndatabits(o,p)>>3);w=function(r,i,o){for(var u=[],p=r.length/i|0,g=0,y=i-r.length%i,w=0;w<y;++w)u.push(g),g+=p;for(w=y;w<i;++w)u.push(g),g+=p+1;u.push(g);var _=[];for(w=0;w<i;++w)_.push(calculateecc(r.slice(u[w],u[w+1]),o));var x=[],k=r.length/i|0;for(w=0;w<k;++w)for(var P=0;P<i;++P)x.push(r[u[P]+w]);for(P=y;P<i;++P)x.push(r[u[P+1]-1]);for(w=0;w<o.length;++w)for(P=0;P<i;++P)x.push(_[P][w]);return x}(w,y[1][p],x[y[0][p]]);var _=function(r){for(var o=i[r],u=function(r){return 4*r+17}(r),p=[],g=[],y=0;y<u;++y)p.push([]),g.push([]);var blit=function(r,i,o,u,y){for(var w=0;w<o;++w)for(var _=0;_<u;++_)p[r+w][i+_]=y[w]>>_&1,g[r+w][i+_]=1};for(blit(0,0,9,9,[127,65,93,93,93,65,383,0,64]),blit(u-8,0,8,9,[256,127,65,93,93,93,65,127]),blit(0,u-8,9,8,[254,130,186,186,186,130,254,0,0]),y=9;y<u-8;++y)p[6][y]=p[y][6]=1&~y,g[6][y]=g[y][6]=1;var w=o[2],_=w.length;for(y=0;y<_;++y)for(var x=0===y?_-1:_,k=0===y||y===_-1?1:0;k<x;++k)blit(w[y],w[k],5,5,[31,17,21,17,31]);if(needsverinfo(r)){var P=augumentbch(r,6,7973,12),O=0;for(y=0;y<6;++y)for(k=0;k<3;++k)p[y][u-11+k]=p[u-11+k][y]=P>>O++&1,g[y][u-11+k]=g[u-11+k][y]=1}return{matrix:p,reserved:g}}(o),k=_.matrix,P=_.reserved;if(function(r,i,o){for(var u=r.length,p=0,g=-1,y=u-1;y>=0;y-=2){6==y&&--y;for(var w=g<0?u-1:0,_=0;_<u;++_){for(var x=y;x>y-2;--x)i[w][x]||(r[w][x]=o[p>>3]>>(7&~p)&1,++p);w+=g}g=-g}}(k,P,w),g<0){maskdata(k,P,0),putformatinfo(k,0,p,0);var O=0,I=evaluatematrix(k);for(maskdata(k,P,0),g=1;g<8;++g){maskdata(k,P,g),putformatinfo(k,0,p,g);var B=evaluatematrix(k);I>B&&(I=B,O=g),maskdata(k,P,g)}g=O}return maskdata(k,P,g),putformatinfo(k,0,p,g),k};function generateFrame(r,i){var g={numeric:1,alphanumeric:2,octet:4},y={L:1,M:0,Q:3,H:2},w=(i=i||{}).version||-1,_=y[(i.eccLevel||"L").toUpperCase()],x=i.mode?g[i.mode.toLowerCase()]:-1,k="mask"in i?i.mask:-1;if(x<0)x="string"==typeof r?r.match(o)?1:r.match(p)?2:4:4;else if(1!=x&&2!=x&&4!=x)throw"invalid or unsupported mode";if(r=function(r,i){switch(r){case 1:return i.match(o)?i:null;case 2:return i.match(u)?i.toUpperCase():null;case 4:if("string"==typeof i){for(var p=[],g=0;g<i.length;++g){var y=i.charCodeAt(g);y<128?p.push(y):y<2048?p.push(192|y>>6,128|63&y):y<65536?p.push(224|y>>12,128|y>>6&63,128|63&y):p.push(240|y>>18,128|y>>12&63,128|y>>6&63,128|63&y)}return p}return i}}(x,r),null===r)throw"invalid data format";if(_<0||_>3)throw"invalid ECC level";if(w<0){for(w=1;w<=40&&!(r.length<=getmaxdatalen(w,x,_));++w);if(w>40)throw"too large data for the Qr format"}else if(w<1||w>40)throw"invalid Qr version! should be between 1 and 40";if(-1!=k&&(k<0||k>8))throw"invalid mask";return generate(r,w,x,_,k)}r.exports={measure:function measure(r){var i=function buildCanvas(r,i){var o=[],u=i.background||"#fff",p=i.foreground||"#000",g=generateFrame(r,i),y=g.length,w=Math.floor(i.fit?i.fit/y:5),_=y*w;o.push({type:"rect",x:0,y:0,w:_,h:_,lineWidth:0,color:u});for(var x=0;x<y;++x)for(var k=0;k<y;++k)g[x][k]&&o.push({type:"rect",x:w*k,y:w*x,w:w,h:w,lineWidth:0,color:p});return{canvas:o,size:_}}(r.qr,r);return r._canvas=i.canvas,r._width=r._height=r._minWidth=r._maxWidth=r._minHeight=r._maxHeight=i.size,r}}},4762:function(r){"use strict";r.exports={"4A0":[4767.87,6740.79],"2A0":[3370.39,4767.87],A0:[2383.94,3370.39],A1:[1683.78,2383.94],A2:[1190.55,1683.78],A3:[841.89,1190.55],A4:[595.28,841.89],A5:[419.53,595.28],A6:[297.64,419.53],A7:[209.76,297.64],A8:[147.4,209.76],A9:[104.88,147.4],A10:[73.7,104.88],B0:[2834.65,4008.19],B1:[2004.09,2834.65],B2:[1417.32,2004.09],B3:[1000.63,1417.32],B4:[708.66,1000.63],B5:[498.9,708.66],B6:[354.33,498.9],B7:[249.45,354.33],B8:[175.75,249.45],B9:[124.72,175.75],B10:[87.87,124.72],C0:[2599.37,3676.54],C1:[1836.85,2599.37],C2:[1298.27,1836.85],C3:[918.43,1298.27],C4:[649.13,918.43],C5:[459.21,649.13],C6:[323.15,459.21],C7:[229.61,323.15],C8:[161.57,229.61],C9:[113.39,161.57],C10:[79.37,113.39],RA0:[2437.8,3458.27],RA1:[1729.13,2437.8],RA2:[1218.9,1729.13],RA3:[864.57,1218.9],RA4:[609.45,864.57],SRA0:[2551.18,3628.35],SRA1:[1814.17,2551.18],SRA2:[1275.59,1814.17],SRA3:[907.09,1275.59],SRA4:[637.8,907.09],EXECUTIVE:[521.86,756],FOLIO:[612,936],LEGAL:[612,1008],LETTER:[612,792],TABLOID:[792,1224]}},7597:function(r,i,o){"use strict";var u=o(6225).isString,p=o(6225).isArray,g=o(6225).isUndefined,y=o(6225).isNull;function StyleContextStack(r,i){this.defaultStyle=i||{},this.styleDictionary=r,this.styleOverrides=[]}StyleContextStack.prototype.clone=function(){var r=new StyleContextStack(this.styleDictionary,this.defaultStyle);return this.styleOverrides.forEach((function(i){r.styleOverrides.push(i)})),r},StyleContextStack.prototype.push=function(r){this.styleOverrides.push(r)},StyleContextStack.prototype.pop=function(r){for(r=r||1;r-- >0;)this.styleOverrides.pop()},StyleContextStack.prototype.autopush=function(r){if(u(r))return 0;var i=[];r.style&&(i=p(r.style)?r.style:[r.style]);for(var o=0,w=i.length;o<w;o++)this.push(i[o]);var _={},x=!1;return["font","fontSize","fontFeatures","bold","italics","alignment","color","columnGap","fillColor","fillOpacity","decoration","decorationStyle","decorationColor","background","lineHeight","characterSpacing","noWrap","markerColor","leadingIndent","sup","sub"].forEach((function(i){g(r[i])||y(r[i])||(_[i]=r[i],x=!0)})),x&&this.push(_),i.length+(x?1:0)},StyleContextStack.prototype.auto=function(r,i){var o=this.autopush(r),u=i();return o>0&&this.pop(o),u},StyleContextStack.prototype.getProperty=function(r){if(this.styleOverrides)for(var i=this.styleOverrides.length-1;i>=0;i--){var o=this.styleOverrides[i];if(u(o)){var p=this.styleDictionary[o];if(p&&!g(p[r])&&!y(p[r]))return p[r]}else if(!g(o[r])&&!y(o[r]))return o[r]}return this.defaultStyle&&this.defaultStyle[r]},r.exports=StyleContextStack},7601:function(r,i,o){"use strict";var u=o(6513);function stripUnits(r){var i=parseFloat(r);if("number"==typeof i&&!isNaN(i))return i}function parseSVG(r){var i;try{i=new u.XmlDocument(r)}catch(r){throw new Error("SVGMeasure: "+r)}if("svg"!==i.name)throw new Error("SVGMeasure: expected <svg> document");return i}function SVGMeasure(){}SVGMeasure.prototype.measureSVG=function(r){var i=parseSVG(r),o=stripUnits(i.attr.width),u=stripUnits(i.attr.height);if((null==o||null==u)&&"string"==typeof i.attr.viewBox){var p=i.attr.viewBox.split(/[,\s]+/);if(4!==p.length)throw new Error("Unexpected svg viewbox format, should have 4 entries but found: '"+i.attr.viewBox+"'");null==o&&(o=stripUnits(p[2])),null==u&&(u=stripUnits(p[3]))}return{width:o,height:u}},SVGMeasure.prototype.writeDimensions=function(r,i){var o=parseSVG(r);return o.attr.width=""+i.width,o.attr.height=""+i.height,o.toString()},r.exports=SVGMeasure},9342:function(r,i,o){"use strict";var u=o(4498),p=o(6225).isFunction,g=o(6225).isNumber;function TableProcessor(r){this.tableNode=r}TableProcessor.prototype.beginTable=function(r){var i,o,p=this;i=this.tableNode,this.offsets=i._offsets,this.layout=i._layout,o=r.context().availableWidth-this.offsets.total,u.buildColumnWidths(i.table.widths,o),this.tableWidth=i._offsets.total+function getTableInnerContentWidth(){var r=0;return i.table.widths.forEach((function(i){r+=i._calcWidth})),r}(),this.rowSpanData=function prepareRowSpanData(){var r=[],i=0,o=0;r.push({left:0,rowSpan:0});for(var u=0,g=p.tableNode.table.body[0].length;u<g;u++){o=p.layout.paddingLeft(u,p.tableNode)+p.layout.paddingRight(u,p.tableNode)+p.layout.vLineWidth(u,p.tableNode)+p.tableNode.table.widths[u]._calcWidth,r[r.length-1].width=o,i+=o,r.push({left:i,rowSpan:0,width:0})}return r}(),this.cleanUpRepeatables=!1,this.headerRows=i.table.headerRows||0,this.rowsWithoutPageBreak=this.headerRows+(i.table.keepWithHeaderRows||0),this.dontBreakRows=i.table.dontBreakRows||!1,this.rowsWithoutPageBreak&&r.beginUnbreakableBlock(),function prepareCellBorders(r){for(var i=0;i<r.length;i++)for(var o=r[i],u=0;u<o.length;u++){var p=o[u];if(p.border){for(var g=p.rowSpan||1,y=p.colSpan||1,w=0;w<g;w++)void 0!==p.border[0]&&w>0&&setBorder(i+w,u,0,p.border[0]),void 0!==p.border[2]&&setBorder(i+w,u+y-1,2,p.border[2]);for(var _=0;_<y;_++)void 0!==p.border[1]&&_>0&&setBorder(i,u+_,1,p.border[1]),void 0!==p.border[3]&&setBorder(i+g-1,u+_,3,p.border[3])}}function setBorder(i,o,u,p){var g=r[i][o];g.border=g.border||{},g.border[u]=p}}(this.tableNode.table.body),this.drawHorizontalLine(0,r)},TableProcessor.prototype.onRowBreak=function(r,i){var o=this;return function(){var r=o.rowPaddingTop+(o.headerRows?0:o.topLineWidth);i.context().availableHeight-=o.reservedAtBottom,i.context().moveDown(r)}},TableProcessor.prototype.beginRow=function(r,i){this.topLineWidth=this.layout.hLineWidth(r,this.tableNode),this.rowPaddingTop=this.layout.paddingTop(r,this.tableNode),this.bottomLineWidth=this.layout.hLineWidth(r+1,this.tableNode),this.rowPaddingBottom=this.layout.paddingBottom(r,this.tableNode),this.rowCallback=this.onRowBreak(r,i),i.tracker.startTracking("pageChanged",this.rowCallback),this.dontBreakRows&&i.beginUnbreakableBlock(),this.rowTopY=i.context().y,this.reservedAtBottom=this.bottomLineWidth+this.rowPaddingBottom,i.context().availableHeight-=this.reservedAtBottom,i.context().moveDown(this.rowPaddingTop)},TableProcessor.prototype.drawHorizontalLine=function(r,i,o){var u=this.layout.hLineWidth(r,this.tableNode);if(u){var g,y=this.layout.hLineStyle(r,this.tableNode);y&&y.dash&&(g=y.dash);for(var w,_,x,k=u/2,P=null,O=this.tableNode.table.body,I=0,B=this.rowSpanData.length;I<B;I++){var R=this.rowSpanData[I],D=!R.rowSpan,N=null;if(D&&I<B-1){var W=!1,U=!1,j=!1;r>0&&(U=(w=O[r-1][I]).border?w.border[3]:this.layout.defaultBorder)&&w.borderColor&&(N=w.borderColor[3]),r<O.length&&(W=(_=O[r][I]).border?_.border[1]:this.layout.defaultBorder)&&null==N&&_.borderColor&&(N=_.borderColor[1]),D=W||U}if(w&&w._rowSpanCurrentOffset&&(j=(x=O[r-1-w._rowSpanCurrentOffset][I])&&x.border?x.border[3]:this.layout.defaultBorder)&&x&&x.borderColor&&(N=x.borderColor[3]),null==N&&(N=p(this.layout.hLineColor)?this.layout.hLineColor(r,this.tableNode,I):this.layout.hLineColor),!P&&D&&(P={left:R.left,width:0}),D){var G=0;if(x&&x.colSpan&&j){for(;x.colSpan>G;)P.width+=this.rowSpanData[I+G++].width||0;I+=G-1}else if(w&&w.colSpan&&U){for(;w.colSpan>G;)P.width+=this.rowSpanData[I+G++].width||0;I+=G-1}else if(_&&_.colSpan&&W){for(;_.colSpan>G;)P.width+=this.rowSpanData[I+G++].width||0;I+=G-1}else P.width+=this.rowSpanData[I].width||0}var X=(o||0)+k;D&&P&&P.width&&(i.addVector({type:"line",x1:P.left,x2:P.left+P.width,y1:X,y2:X,lineWidth:u,dash:g,lineColor:N},!1,o),P=null,N=null,w=null,_=null,x=null)}i.context().moveDown(u)}},TableProcessor.prototype.drawVerticalLine=function(r,i,o,u,g,y,w){var _=this.layout.vLineWidth(u,this.tableNode);if(0!==_){var x,k=this.layout.vLineStyle(u,this.tableNode);k&&k.dash&&(x=k.dash);var P,O,I,B=this.tableNode.table.body;if(u>0&&(P=B[y][w])&&P.borderColor&&(P.border?P.border[2]:this.layout.defaultBorder)&&(I=P.borderColor[2]),null==I&&u<B.length&&(O=B[y][u])&&O.borderColor&&(O.border?O.border[0]:this.layout.defaultBorder)&&(I=O.borderColor[0]),null==I&&P&&P._rowSpanCurrentOffset){var R=B[y-P._rowSpanCurrentOffset][w];R.borderColor&&(R.border?R.border[2]:this.layout.defaultBorder)&&(I=R.borderColor[2])}if(null==I&&O&&O._rowSpanCurrentOffset){var D=B[y-O._rowSpanCurrentOffset][u];D.borderColor&&(D.border?D.border[2]:this.layout.defaultBorder)&&(I=D.borderColor[2])}null==I&&(I=p(this.layout.vLineColor)?this.layout.vLineColor(u,this.tableNode,y):this.layout.vLineColor),g.addVector({type:"line",x1:r+_/2,x2:r+_/2,y1:i,y2:o,lineWidth:_,dash:x,lineColor:I},!1,!0),P=null,O=null,I=null}},TableProcessor.prototype.endTable=function(r){this.cleanUpRepeatables&&r.popFromRepeatables()},TableProcessor.prototype.endRow=function(r,i,o){var u,y,w=this;i.tracker.stopTracking("pageChanged",this.rowCallback),i.context().moveDown(this.layout.paddingBottom(r,this.tableNode)),i.context().availableHeight+=this.reservedAtBottom;var _=i.context().page,x=i.context().y,k=function getLineXs(){for(var i=[],o=0,u=0,p=w.tableNode.table.body[r].length;u<p;u++){if(!o){i.push({x:w.rowSpanData[u].left,index:u});var g=w.tableNode.table.body[r][u];o=g._colSpan||g.colSpan||0}o>0&&o--}return i.push({x:w.rowSpanData[w.rowSpanData.length-1].left,index:w.rowSpanData.length-1}),i}(),P=[],O=o&&o.length>0,I=this.tableNode.table.body;if(P.push({y0:this.rowTopY,page:O?o[0].prevPage:_}),O)for(y=0,u=o.length;y<u;y++){var B=o[y];P[P.length-1].y1=B.prevY,P.push({y0:B.y,page:B.prevPage+1})}P[P.length-1].y1=x;for(var R=P[0].y1-P[0].y0===this.rowPaddingTop?1:0,D=P.length;R<D;R++){var N=R<P.length-1,W=R>0&&!this.headerRows,U=W?0:this.topLineWidth,j=P[R].y0,G=P[R].y1;for(N&&(G+=this.rowPaddingBottom),i.context().page!=P[R].page&&(i.context().page=P[R].page,this.reservedAtBottom=0),y=0,u=k.length;y<u;y++){var X,K=!1,Y=!1,J=k[y].index;if(J<I[r].length)K=(X=I[r][J]).border?X.border[0]:this.layout.defaultBorder,Y=X.border?X.border[2]:this.layout.defaultBorder;if(J>0&&!K)K=(X=I[r][J-1]).border?X.border[2]:this.layout.defaultBorder;if(J+1<I[r].length&&!Y)Y=(X=I[r][J+1]).border?X.border[0]:this.layout.defaultBorder;if(K&&this.drawVerticalLine(k[y].x,j-U,G+this.bottomLineWidth,k[y].index,i,r,k[y-1]?k[y-1].index:null),y<u-1){var $=I[r][J].fillColor,ee=I[r][J].fillOpacity;$||($=p(this.layout.fillColor)?this.layout.fillColor(r,this.tableNode,J):this.layout.fillColor),g(ee)||(ee=p(this.layout.fillOpacity)?this.layout.fillOpacity(r,this.tableNode,J):this.layout.fillOpacity);var te=I[r][J].overlayPattern,re=I[r][J].overlayOpacity;if($||te){var ne,ie=K?this.layout.vLineWidth(J,this.tableNode):0;ne=0!==J&&J+1!=I[r].length||Y?Y?this.layout.vLineWidth(J+1,this.tableNode)/2:0:this.layout.vLineWidth(J+1,this.tableNode);var oe=this.dontBreakRows?k[y].x+ie:k[y].x+ie/2,ae=this.dontBreakRows?j:j-U/2,se=k[y+1].x+ne-oe,ce=(this.dontBreakRows?G+this.bottomLineWidth:G+this.bottomLineWidth/2)-ae;$&&i.addVector({type:"rect",x:oe,y:ae,w:se,h:ce,lineWidth:0,color:$,fillOpacity:ee},!1,!0,i.context().backgroundLength[i.context().page]),te&&i.addVector({type:"rect",x:oe,y:ae,w:se,h:ce,lineWidth:0,color:te,fillOpacity:re},!1,!0)}}}N&&!1!==this.layout.hLineWhenBroken&&this.drawHorizontalLine(r+1,i,G),W&&!1!==this.layout.hLineWhenBroken&&this.drawHorizontalLine(r,i,j)}i.context().page=_,i.context().y=x;var le=this.tableNode.table.body[r];for(y=0,u=le.length;y<u;y++){if(le[y].rowSpan){if(this.rowSpanData[y].rowSpan=le[y].rowSpan,le[y].colSpan&&le[y].colSpan>1)for(var ue=1;ue<le[y].rowSpan;ue++)this.tableNode.table.body[r+ue][y]._colSpan=le[y].colSpan;if(le[y].rowSpan&&le[y].rowSpan>1)for(ue=1;ue<le[y].rowSpan;ue++)this.tableNode.table.body[r+ue][y]._rowSpanCurrentOffset=ue}this.rowSpanData[y].rowSpan>0&&this.rowSpanData[y].rowSpan--}this.drawHorizontalLine(r+1,i),this.headerRows&&r===this.headerRows-1&&(this.headerRepeatable=i.currentBlockToRepeatable()),this.dontBreakRows&&i.tracker.auto("pageChanged",(function(){w.headerRows||!1===w.layout.hLineWhenBroken||w.drawHorizontalLine(r,i)}),(function(){i.commitUnbreakableBlock()})),!this.headerRepeatable||r!==this.rowsWithoutPageBreak-1&&r!==this.tableNode.table.body.length-1||(i.commitUnbreakableBlock(),i.pushToRepeatables(this.headerRepeatable),this.cleanUpRepeatables=!0,this.headerRepeatable=null)},r.exports=TableProcessor},3497:function(r,i,o){"use strict";var u=o(6225).isArray,p=o(6225).isPattern,g=o(6225).getPattern;function drawDecoration(r,i,o,u){var p=r.inlines[0],g=function maxInline(){for(var i=0,o=0,u=r.inlines.length;o<u;o++){i=r.inlines[o].fontSize>i?o:i}return r.inlines[i]}(),y=function width(){for(var i=0,o=0,u=r.inlines.length;o<u;o++){var p=r.inlines[o].justifyShift||0;i+=r.inlines[o].width+p}return i}(),w=r.line.getAscenderHeight(),_=g.font.ascender/1e3*g.fontSize,x=g.height-_,k=.5+.12*Math.floor(Math.max(g.fontSize-8,0)/2);switch(r.decoration){case"underline":o+=w+.45*x;break;case"overline":o+=w-.85*_;break;case"lineThrough":o+=w-.25*_;break;default:throw"Unkown decoration : "+r.decoration}if(u.save(),"double"===r.decorationStyle){var P=Math.max(.5,2*k);u.fillColor(r.decorationColor).rect(i+p.x,o-k/2,y,k/2).fill().rect(i+p.x,o+P-k/2,y,k/2).fill()}else if("dashed"===r.decorationStyle){var O=Math.ceil(y/6.8),I=i+p.x;u.rect(I,o,y,k).clip(),u.fillColor(r.decorationColor);for(var B=0;B<O;B++)u.rect(I,o-k/2,3.96,k).fill(),I+=6.8}else if("dotted"===r.decorationStyle){var R=Math.ceil(y/(3*k)),D=i+p.x;u.rect(D,o,y,k).clip(),u.fillColor(r.decorationColor);for(var N=0;N<R;N++)u.rect(D,o-k/2,k,k).fill(),D+=3*k}else if("wavy"===r.decorationStyle){var W=.7,U=Math.ceil(y/1.4)+1,j=i+p.x-1;u.rect(i+p.x,o-1,y,o+1).clip(),u.lineWidth(.24),u.moveTo(j,o);for(var G=0;G<U;G++)u.bezierCurveTo(j+W,o-1,j+1.4,o-1,j+3*W,o).bezierCurveTo(j+2.8,o+1,j+3.5,o+1,j+6*W,o),j+=6*W;u.stroke(r.decorationColor)}else u.fillColor(r.decorationColor).rect(i+p.x,o-k/2,y,k).fill();u.restore()}r.exports={drawBackground:function drawBackground(r,i,o,u,y){for(var w=r.getHeight(),_=0,x=r.inlines.length;_<x;_++){var k=r.inlines[_];if(k.background){var P=k.background;p(k.background)&&(P=g(k.background,u));var O=k.justifyShift||0;y.fillColor(P).rect(i+k.x-O,o,k.width+O,w).fill()}}},drawDecorations:function drawDecorations(r,i,o,p){for(var g=function groupDecorations(r){for(var i=[],o=null,p=0,g=r.inlines.length;p<g;p++){var y=r.inlines[p],w=y.decoration;if(w){u(w)||(w=[w]);for(var _=y.decorationColor||y.color||"black",x=y.decorationStyle||"solid",k=0,P=w.length;k<P;k++){var O=w[k];o&&O===o.decoration&&x===o.decorationStyle&&_===o.decorationColor?o.inlines.push(y):(o={line:r,decoration:O,decorationColor:_,decorationStyle:x,inlines:[y]},i.push(o))}}else o=null}return i}(r),y=0,w=g.length;y<w;y++)drawDecoration(g[y],i,o,p)}}},1350:function(r,i,o){"use strict";var u=o(6225).isString,p=o(6225).isNumber,g=o(6225).isObject,y=o(6225).isArray,w=o(6225).isUndefined,_=o(7337),x=/^(\s)+/g,k=/(\s)+$/g;function TextTools(r){this.fontProvider=r}function splitWords(r,i){var o=[];if(r=r.replace(/\t/g,"    "),i)return o.push({text:r}),o;for(var u,p=new _(r),g=0;u=p.nextBreak();){var y=r.slice(g,u.position);u.required||y.match(/\r?\n$|\r$/)?(y=y.replace(/\r?\n$|\r$/,""),o.push({text:y,lineEnd:!0})):o.push({text:y}),g=u.position}return o}function copyStyle(r,i){for(var o in i=i||{},r=r||{})"text"!=o&&r.hasOwnProperty(o)&&(i[o]=r[o]);return i}function normalizeString(r){return null==r?"":p(r)?r.toString():u(r)?r:r.toString()}function getStyleProperty(r,i,o,u){var p;return void 0!==r[o]&&null!==r[o]?r[o]:i?(i.auto(r,(function(){p=i.getProperty(o)})),null!=p?p:u):u}function widthOfString(r,i,o,u,p){return i.widthOfString(r,o,p)+(u||0)*(r.length-1)}TextTools.prototype.buildInlines=function(r,i){var o,u=function measure(r,i,o){var u=function normalizeTextArray(r,i){function flatten(r){return r.reduce((function(r,i){var o=y(i.text)?flatten(i.text):i,u=[].concat(o).some(Array.isArray);return r.concat(u?flatten(o):o)}),[])}function getOneWord(r,i,o){if(w(i[r]))return null;if(i[r].lineEnd)return null;var u=i[r].text;if(o){var p=splitWords(normalizeString(u),!1);if(w(p[p.length-1]))return null;u=p[p.length-1].text}return u}var o=[];y(r)||(r=[r]);r=flatten(r);for(var u=null,p=0,_=r.length;p<_;p++){var x,k=r[p],P=null,O=getStyleProperty(k||{},i,"noWrap",!1);if(g(k)?(k._textRef&&k._textRef._textNodeRef.text&&(k.text=k._textRef._textNodeRef.text),x=splitWords(normalizeString(k.text),O),P=copyStyle(k)):x=splitWords(normalizeString(k),O),u&&x.length)1===splitWords(normalizeString(u+getOneWord(0,x,O)),!1).length&&(o[o.length-1].noNewLine=!0);for(var I=0,B=x.length;I<B;I++){var R={text:x[I].text};x[I].lineEnd&&(R.lineEnd=!0),copyStyle(P,R),o.push(R)}u=null,p+1<_&&(u=getOneWord(x.length-1,x,O))}return o}(i,o);if(u.length){var p=getStyleProperty(u[0],o,"leadingIndent",0);p&&(u[0].leadingCut=-p,u[0].leadingIndent=p)}return u.forEach((function(i){var u=getStyleProperty(i,o,"font","Roboto"),p=getStyleProperty(i,o,"fontSize",12),g=getStyleProperty(i,o,"fontFeatures",null),y=getStyleProperty(i,o,"bold",!1),w=getStyleProperty(i,o,"italics",!1),_=getStyleProperty(i,o,"color","black"),P=getStyleProperty(i,o,"decoration",null),O=getStyleProperty(i,o,"decorationColor",null),I=getStyleProperty(i,o,"decorationStyle",null),B=getStyleProperty(i,o,"background",null),R=getStyleProperty(i,o,"lineHeight",1),D=getStyleProperty(i,o,"characterSpacing",0),N=getStyleProperty(i,o,"link",null),W=getStyleProperty(i,o,"linkToPage",null),U=getStyleProperty(i,o,"linkToDestination",null),j=getStyleProperty(i,o,"noWrap",null),G=getStyleProperty(i,o,"preserveLeadingSpaces",!1),X=getStyleProperty(i,o,"preserveTrailingSpaces",!1),K=getStyleProperty(i,o,"opacity",1),Y=getStyleProperty(i,o,"sup",!1),J=getStyleProperty(i,o,"sub",!1);(Y||J)&&void 0===i.fontSize&&(p*=.58);var $,ee,te=r.provideFont(u,y,w);i.width=widthOfString(i.text,te,p,D,g),i.height=te.lineHeight(p)*R,i.leadingCut||(i.leadingCut=0),!G&&($=i.text.match(x))&&(i.leadingCut+=widthOfString($[0],te,p,D,g)),!X&&(ee=i.text.match(k))?i.trailingCut=widthOfString(ee[0],te,p,D,g):i.trailingCut=0,i.alignment=getStyleProperty(i,o,"alignment","left"),i.font=te,i.fontSize=p,i.fontFeatures=g,i.characterSpacing=D,i.color=_,i.decoration=P,i.decorationColor=O,i.decorationStyle=I,i.background=B,i.link=N,i.linkToPage=W,i.linkToDestination=U,i.noWrap=j,i.opacity=K,i.sup=Y,i.sub=J})),u}(this.fontProvider,r,i),p=0,_=0;return u.forEach((function(r){p=Math.max(p,r.width-r.leadingCut-r.trailingCut),o||(o={width:0,leadingCut:r.leadingCut,trailingCut:0}),o.width+=r.width,o.trailingCut=r.trailingCut,_=Math.max(_,function getTrimmedWidth(r){return Math.max(0,r.width-r.leadingCut-r.trailingCut)}(o)),r.lineEnd&&(o=null)})),getStyleProperty({},i,"noWrap",!1)&&(p=_),{items:u,minWidth:p,maxWidth:_}},TextTools.prototype.sizeOfString=function(r,i){r=r?r.toString().replace(/\t/g,"    "):"";var o=getStyleProperty({},i,"font","Roboto"),u=getStyleProperty({},i,"fontSize",12),p=getStyleProperty({},i,"fontFeatures",null),g=getStyleProperty({},i,"bold",!1),y=getStyleProperty({},i,"italics",!1),w=getStyleProperty({},i,"lineHeight",1),_=getStyleProperty({},i,"characterSpacing",0),x=this.fontProvider.provideFont(o,g,y);return{width:widthOfString(r,x,u,_,p),height:x.lineHeight(u)*w,fontSize:u,lineHeight:w,ascender:x.ascender/1e3*u,descender:x.descender/1e3*u}},TextTools.prototype.sizeOfRotatedText=function(r,i,o){var u=i*Math.PI/-180,p=this.sizeOfString(r,o);return{width:Math.abs(p.height*Math.sin(u))+Math.abs(p.width*Math.cos(u)),height:Math.abs(p.width*Math.sin(u))+Math.abs(p.height*Math.cos(u))}},TextTools.prototype.widthOfString=function(r,i,o,u,p){return widthOfString(r,i,o,u,p)},r.exports=TextTools},8537:function(r){"use strict";function TraversalTracker(){this.events={}}TraversalTracker.prototype.startTracking=function(r,i){var o=this.events[r]||(this.events[r]=[]);o.indexOf(i)<0&&o.push(i)},TraversalTracker.prototype.stopTracking=function(r,i){var o=this.events[r];if(o){var u=o.indexOf(i);u>=0&&o.splice(u,1)}},TraversalTracker.prototype.emit=function(r){var i=Array.prototype.slice.call(arguments,1),o=this.events[r];o&&o.forEach((function(r){r.apply(this,i)}))},TraversalTracker.prototype.auto=function(r,i,o){this.startTracking(r,i),o(),this.stopTracking(r,i)},r.exports=TraversalTracker},2480:function(){},5832:function(){},9862:function(){},964:function(){},3083:function(r,i,o){"use strict";var u=["BigInt64Array","BigUint64Array","Float32Array","Float64Array","Int16Array","Int32Array","Int8Array","Uint16Array","Uint32Array","Uint8Array","Uint8ClampedArray"],p="undefined"==typeof globalThis?o.g:globalThis;r.exports=function availableTypedArrays(){for(var r=[],i=0;i<u.length;i++)"function"==typeof p[u[i]]&&(r[r.length]=u[i]);return r}},3631:function(r,i,o){var u=o(9742),p=o(4781);function $parcel$interopDefault(r){return r&&r.__esModule?r.default:r}function $parcel$export(r,i,o,u){Object.defineProperty(r,i,{get:o,set:u,enumerable:!0,configurable:!0})}!function $parcel$defineInteropFlag(r){Object.defineProperty(r,"__esModule",{value:!0,configurable:!0})}(r.exports),$parcel$export(r.exports,"getCategory",(()=>$43d7963e56408b24$export$410364bbb673ddbc)),$parcel$export(r.exports,"getCombiningClass",(()=>$43d7963e56408b24$export$c03b919c6651ed55)),$parcel$export(r.exports,"getScript",(()=>$43d7963e56408b24$export$941569448d136665)),$parcel$export(r.exports,"getEastAsianWidth",(()=>$43d7963e56408b24$export$92f6187db8ca6d26)),$parcel$export(r.exports,"getNumericValue",(()=>$43d7963e56408b24$export$7d1258ebb7625a0d)),$parcel$export(r.exports,"isAlphabetic",(()=>$43d7963e56408b24$export$52c8ea63abd07594)),$parcel$export(r.exports,"isDigit",(()=>$43d7963e56408b24$export$727d9dbc4fbb948f)),$parcel$export(r.exports,"isPunctuation",(()=>$43d7963e56408b24$export$a5b49f4dc6a07d2c)),$parcel$export(r.exports,"isLowerCase",(()=>$43d7963e56408b24$export$7b6804e8df61fcf5)),$parcel$export(r.exports,"isUpperCase",(()=>$43d7963e56408b24$export$aebd617640818cda)),$parcel$export(r.exports,"isTitleCase",(()=>$43d7963e56408b24$export$de8b4ee23b2cf823)),$parcel$export(r.exports,"isWhiteSpace",(()=>$43d7963e56408b24$export$3c52dd84024ae72c)),$parcel$export(r.exports,"isBaseForm",(()=>$43d7963e56408b24$export$a11bdcffe109e74b)),$parcel$export(r.exports,"isMark",(()=>$43d7963e56408b24$export$e33ad6871e762338)),$parcel$export(r.exports,"default",(()=>U));var g;g=JSON.parse('{"categories":["Cc","Zs","Po","Sc","Ps","Pe","Sm","Pd","Nd","Lu","Sk","Pc","Ll","So","Lo","Pi","Cf","No","Pf","Lt","Lm","Mn","Me","Mc","Nl","Zl","Zp","Cs","Co"],"combiningClasses":["Not_Reordered","Above","Above_Right","Below","Attached_Above_Right","Attached_Below","Overlay","Iota_Subscript","Double_Below","Double_Above","Below_Right","Above_Left","CCC10","CCC11","CCC12","CCC13","CCC14","CCC15","CCC16","CCC17","CCC18","CCC19","CCC20","CCC21","CCC22","CCC23","CCC24","CCC25","CCC30","CCC31","CCC32","CCC27","CCC28","CCC29","CCC33","CCC34","CCC35","CCC36","Nukta","Virama","CCC84","CCC91","CCC103","CCC107","CCC118","CCC122","CCC129","CCC130","CCC132","Attached_Above","Below_Left","Left","Kana_Voicing","CCC26","Right"],"scripts":["Common","Latin","Bopomofo","Inherited","Greek","Coptic","Cyrillic","Armenian","Hebrew","Arabic","Syriac","Thaana","Nko","Samaritan","Mandaic","Devanagari","Bengali","Gurmukhi","Gujarati","Oriya","Tamil","Telugu","Kannada","Malayalam","Sinhala","Thai","Lao","Tibetan","Myanmar","Georgian","Hangul","Ethiopic","Cherokee","Canadian_Aboriginal","Ogham","Runic","Tagalog","Hanunoo","Buhid","Tagbanwa","Khmer","Mongolian","Limbu","Tai_Le","New_Tai_Lue","Buginese","Tai_Tham","Balinese","Sundanese","Batak","Lepcha","Ol_Chiki","Braille","Glagolitic","Tifinagh","Han","Hiragana","Katakana","Yi","Lisu","Vai","Bamum","Syloti_Nagri","Phags_Pa","Saurashtra","Kayah_Li","Rejang","Javanese","Cham","Tai_Viet","Meetei_Mayek","null","Linear_B","Lycian","Carian","Old_Italic","Gothic","Old_Permic","Ugaritic","Old_Persian","Deseret","Shavian","Osmanya","Osage","Elbasan","Caucasian_Albanian","Linear_A","Cypriot","Imperial_Aramaic","Palmyrene","Nabataean","Hatran","Phoenician","Lydian","Meroitic_Hieroglyphs","Meroitic_Cursive","Kharoshthi","Old_South_Arabian","Old_North_Arabian","Manichaean","Avestan","Inscriptional_Parthian","Inscriptional_Pahlavi","Psalter_Pahlavi","Old_Turkic","Old_Hungarian","Hanifi_Rohingya","Old_Sogdian","Sogdian","Elymaic","Brahmi","Kaithi","Sora_Sompeng","Chakma","Mahajani","Sharada","Khojki","Multani","Khudawadi","Grantha","Newa","Tirhuta","Siddham","Modi","Takri","Ahom","Dogra","Warang_Citi","Nandinagari","Zanabazar_Square","Soyombo","Pau_Cin_Hau","Bhaiksuki","Marchen","Masaram_Gondi","Gunjala_Gondi","Makasar","Cuneiform","Egyptian_Hieroglyphs","Anatolian_Hieroglyphs","Mro","Bassa_Vah","Pahawh_Hmong","Medefaidrin","Miao","Tangut","Nushu","Duployan","SignWriting","Nyiakeng_Puachue_Hmong","Wancho","Mende_Kikakui","Adlam"],"eaw":["N","Na","A","W","H","F"]}');const y=new($parcel$interopDefault(p))($parcel$interopDefault(u).toByteArray("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")),w=Math.log2||(r=>Math.log(r)/Math.LN2),$43d7963e56408b24$var$bits=r=>w(r)+1|0,_=$43d7963e56408b24$var$bits($parcel$interopDefault(g).categories.length-1),x=$43d7963e56408b24$var$bits($parcel$interopDefault(g).combiningClasses.length-1),k=$43d7963e56408b24$var$bits($parcel$interopDefault(g).scripts.length-1),P=$43d7963e56408b24$var$bits($parcel$interopDefault(g).eaw.length-1),O=x+k+P+10,I=k+P+10,B=P+10,R=(1<<_)-1,D=(1<<x)-1,N=(1<<k)-1,W=(1<<P)-1;function $43d7963e56408b24$export$410364bbb673ddbc(r){const i=y.get(r);return $parcel$interopDefault(g).categories[i>>O&R]}function $43d7963e56408b24$export$c03b919c6651ed55(r){const i=y.get(r);return $parcel$interopDefault(g).combiningClasses[i>>I&D]}function $43d7963e56408b24$export$941569448d136665(r){const i=y.get(r);return $parcel$interopDefault(g).scripts[i>>B&N]}function $43d7963e56408b24$export$92f6187db8ca6d26(r){const i=y.get(r);return $parcel$interopDefault(g).eaw[i>>10&W]}function $43d7963e56408b24$export$7d1258ebb7625a0d(r){let i=y.get(r),o=1023&i;if(0===o)return null;if(o<=50)return o-1;if(o<480){return((o>>4)-12)/(1+(15&o))}if(o<768){i=(o>>5)-14;let r=2+(31&o);for(;r>0;)i*=10,r--;return i}{i=(o>>2)-191;let r=1+(3&o);for(;r>0;)i*=60,r--;return i}}function $43d7963e56408b24$export$52c8ea63abd07594(r){const i=$43d7963e56408b24$export$410364bbb673ddbc(r);return"Lu"===i||"Ll"===i||"Lt"===i||"Lm"===i||"Lo"===i||"Nl"===i}function $43d7963e56408b24$export$727d9dbc4fbb948f(r){return"Nd"===$43d7963e56408b24$export$410364bbb673ddbc(r)}function $43d7963e56408b24$export$a5b49f4dc6a07d2c(r){const i=$43d7963e56408b24$export$410364bbb673ddbc(r);return"Pc"===i||"Pd"===i||"Pe"===i||"Pf"===i||"Pi"===i||"Po"===i||"Ps"===i}function $43d7963e56408b24$export$7b6804e8df61fcf5(r){return"Ll"===$43d7963e56408b24$export$410364bbb673ddbc(r)}function $43d7963e56408b24$export$aebd617640818cda(r){return"Lu"===$43d7963e56408b24$export$410364bbb673ddbc(r)}function $43d7963e56408b24$export$de8b4ee23b2cf823(r){return"Lt"===$43d7963e56408b24$export$410364bbb673ddbc(r)}function $43d7963e56408b24$export$3c52dd84024ae72c(r){const i=$43d7963e56408b24$export$410364bbb673ddbc(r);return"Zs"===i||"Zl"===i||"Zp"===i}function $43d7963e56408b24$export$a11bdcffe109e74b(r){const i=$43d7963e56408b24$export$410364bbb673ddbc(r);return"Nd"===i||"No"===i||"Nl"===i||"Lu"===i||"Ll"===i||"Lt"===i||"Lm"===i||"Lo"===i||"Me"===i||"Mc"===i}function $43d7963e56408b24$export$e33ad6871e762338(r){const i=$43d7963e56408b24$export$410364bbb673ddbc(r);return"Mn"===i||"Me"===i||"Mc"===i}var U={getCategory:$43d7963e56408b24$export$410364bbb673ddbc,getCombiningClass:$43d7963e56408b24$export$c03b919c6651ed55,getScript:$43d7963e56408b24$export$941569448d136665,getEastAsianWidth:$43d7963e56408b24$export$92f6187db8ca6d26,getNumericValue:$43d7963e56408b24$export$7d1258ebb7625a0d,isAlphabetic:$43d7963e56408b24$export$52c8ea63abd07594,isDigit:$43d7963e56408b24$export$727d9dbc4fbb948f,isPunctuation:$43d7963e56408b24$export$a5b49f4dc6a07d2c,isLowerCase:$43d7963e56408b24$export$7b6804e8df61fcf5,isUpperCase:$43d7963e56408b24$export$aebd617640818cda,isTitleCase:$43d7963e56408b24$export$de8b4ee23b2cf823,isWhiteSpace:$43d7963e56408b24$export$3c52dd84024ae72c,isBaseForm:$43d7963e56408b24$export$a11bdcffe109e74b,isMark:$43d7963e56408b24$export$e33ad6871e762338}},3480:function(r){"use strict";r.exports=JSON.parse('[["8740","䏰䰲䘃䖦䕸𧉧䵷䖳𧲱䳢𧳅㮕䜶䝄䱇䱀𤊿𣘗𧍒𦺋𧃒䱗𪍑䝏䗚䲅𧱬䴇䪤䚡𦬣爥𥩔𡩣𣸆𣽡晍囻"],["8767","綕夝𨮹㷴霴𧯯寛𡵞媤㘥𩺰嫑宷峼杮薓𩥅瑡璝㡵𡵓𣚞𦀡㻬"],["87a1","𥣞㫵竼龗𤅡𨤍𣇪𠪊𣉞䌊蒄龖鐯䤰蘓墖靊鈘秐稲晠権袝瑌篅枂稬剏遆㓦珄𥶹瓆鿇垳䤯呌䄱𣚎堘穲𧭥讏䚮𦺈䆁𥶙箮𢒼鿈𢓁𢓉𢓌鿉蔄𣖻䂴鿊䓡𪷿拁灮鿋"],["8840","㇀",4,"𠄌㇅𠃑𠃍㇆㇇𠃋𡿨㇈𠃊㇉㇊㇋㇌𠄎㇍㇎ĀÁǍÀĒÉĚÈŌÓǑÒ࿿Ê̄Ế࿿Ê̌ỀÊāáǎàɑēéěèīíǐìōóǒòūúǔùǖǘǚ"],["88a1","ǜü࿿ê̄ế࿿ê̌ềêɡ⏚⏛"],["8940","𪎩𡅅"],["8943","攊"],["8946","丽滝鵎釟"],["894c","𧜵撑会伨侨兖兴农凤务动医华发变团声处备夲头学实実岚庆总斉柾栄桥济炼电纤纬纺织经统缆缷艺苏药视设询车轧轮"],["89a1","琑糼緍楆竉刧"],["89ab","醌碸酞肼"],["89b0","贋胶𠧧"],["89b5","肟黇䳍鷉鸌䰾𩷶𧀎鸊𪄳㗁"],["89c1","溚舾甙"],["89c5","䤑马骏龙禇𨑬𡷊𠗐𢫦两亁亀亇亿仫伷㑌侽㹈倃傈㑽㒓㒥円夅凛凼刅争剹劐匧㗇厩㕑厰㕓参吣㕭㕲㚁咓咣咴咹哐哯唘唣唨㖘唿㖥㖿嗗㗅"],["8a40","𧶄唥"],["8a43","𠱂𠴕𥄫喐𢳆㧬𠍁蹆𤶸𩓥䁓𨂾睺𢰸㨴䟕𨅝𦧲𤷪擝𠵼𠾴𠳕𡃴撍蹾𠺖𠰋𠽤𢲩𨉖𤓓"],["8a64","𠵆𩩍𨃩䟴𤺧𢳂骲㩧𩗴㿭㔆𥋇𩟔𧣈𢵄鵮頕"],["8a76","䏙𦂥撴哣𢵌𢯊𡁷㧻𡁯"],["8aa1","𦛚𦜖𧦠擪𥁒𠱃蹨𢆡𨭌𠜱"],["8aac","䠋𠆩㿺塳𢶍"],["8ab2","𤗈𠓼𦂗𠽌𠶖啹䂻䎺"],["8abb","䪴𢩦𡂝膪飵𠶜捹㧾𢝵跀嚡摼㹃"],["8ac9","𪘁𠸉𢫏𢳉"],["8ace","𡃈𣧂㦒㨆𨊛㕸𥹉𢃇噒𠼱𢲲𩜠㒼氽𤸻"],["8adf","𧕴𢺋𢈈𪙛𨳍𠹺𠰴𦠜羓𡃏𢠃𢤹㗻𥇣𠺌𠾍𠺪㾓𠼰𠵇𡅏𠹌"],["8af6","𠺫𠮩𠵈𡃀𡄽㿹𢚖搲𠾭"],["8b40","𣏴𧘹𢯎𠵾𠵿𢱑𢱕㨘𠺘𡃇𠼮𪘲𦭐𨳒𨶙𨳊閪哌苄喹"],["8b55","𩻃鰦骶𧝞𢷮煀腭胬尜𦕲脴㞗卟𨂽醶𠻺𠸏𠹷𠻻㗝𤷫㘉𠳖嚯𢞵𡃉𠸐𠹸𡁸𡅈𨈇𡑕𠹹𤹐𢶤婔𡀝𡀞𡃵𡃶垜𠸑"],["8ba1","𧚔𨋍𠾵𠹻𥅾㜃𠾶𡆀𥋘𪊽𤧚𡠺𤅷𨉼墙剨㘚𥜽箲孨䠀䬬鼧䧧鰟鮍𥭴𣄽嗻㗲嚉丨夂𡯁屮靑𠂆乛亻㔾尣彑忄㣺扌攵歺氵氺灬爫丬犭𤣩罒礻糹罓𦉪㓁"],["8bde","𦍋耂肀𦘒𦥑卝衤见𧢲讠贝钅镸长门𨸏韦页风飞饣𩠐鱼鸟黄歯龜丷𠂇阝户钢"],["8c40","倻淾𩱳龦㷉袏𤅎灷峵䬠𥇍㕙𥴰愢𨨲辧釶熑朙玺𣊁𪄇㲋𡦀䬐磤琂冮𨜏䀉橣𪊺䈣蘏𠩯稪𩥇𨫪靕灍匤𢁾鏴盙𨧣龧矝亣俰傼丯众龨吴綋墒壐𡶶庒庙忂𢜒斋"],["8ca1","𣏹椙橃𣱣泿"],["8ca7","爀𤔅玌㻛𤨓嬕璹讃𥲤𥚕窓篬糃繬苸薗龩袐龪躹龫迏蕟駠鈡龬𨶹𡐿䁱䊢娚"],["8cc9","顨杫䉶圽"],["8cce","藖𤥻芿𧄍䲁𦵴嵻𦬕𦾾龭龮宖龯曧繛湗秊㶈䓃𣉖𢞖䎚䔶"],["8ce6","峕𣬚諹屸㴒𣕑嵸龲煗䕘𤃬𡸣䱷㥸㑊𠆤𦱁諌侴𠈹妿腬顖𩣺弻"],["8d40","𠮟"],["8d42","𢇁𨥭䄂䚻𩁹㼇龳𪆵䃸㟖䛷𦱆䅼𨚲𧏿䕭㣔𥒚䕡䔛䶉䱻䵶䗪㿈𤬏㙡䓞䒽䇭崾嵈嵖㷼㠏嶤嶹㠠㠸幂庽弥徃㤈㤔㤿㥍惗愽峥㦉憷憹懏㦸戬抐拥挘㧸嚱"],["8da1","㨃揢揻搇摚㩋擀崕嘡龟㪗斆㪽旿晓㫲暒㬢朖㭂枤栀㭘桊梄㭲㭱㭻椉楃牜楤榟榅㮼槖㯝橥橴橱檂㯬檙㯲檫檵櫔櫶殁毁毪汵沪㳋洂洆洦涁㳯涤涱渕渘温溆𨧀溻滢滚齿滨滩漤漴㵆𣽁澁澾㵪㵵熷岙㶊瀬㶑灐灔灯灿炉𠌥䏁㗱𠻘"],["8e40","𣻗垾𦻓焾𥟠㙎榢𨯩孴穉𥣡𩓙穥穽𥦬窻窰竂竃燑𦒍䇊竚竝竪䇯咲𥰁笋筕笩𥌎𥳾箢筯莜𥮴𦱿篐萡箒箸𥴠㶭𥱥蒒篺簆簵𥳁籄粃𤢂粦晽𤕸糉糇糦籴糳糵糎"],["8ea1","繧䔝𦹄絝𦻖璍綉綫焵綳緒𤁗𦀩緤㴓緵𡟹緥𨍭縝𦄡𦅚繮纒䌫鑬縧罀罁罇礶𦋐駡羗𦍑羣𡙡𠁨䕜𣝦䔃𨌺翺𦒉者耈耝耨耯𪂇𦳃耻耼聡𢜔䦉𦘦𣷣𦛨朥肧𨩈脇脚墰𢛶汿𦒘𤾸擧𡒊舘𡡞橓𤩥𤪕䑺舩𠬍𦩒𣵾俹𡓽蓢荢𦬊𤦧𣔰𡝳𣷸芪椛芳䇛"],["8f40","蕋苐茚𠸖𡞴㛁𣅽𣕚艻苢茘𣺋𦶣𦬅𦮗𣗎㶿茝嗬莅䔋𦶥莬菁菓㑾𦻔橗蕚㒖𦹂𢻯葘𥯤葱㷓䓤檧葊𣲵祘蒨𦮖𦹷𦹃蓞萏莑䒠蒓蓤𥲑䉀𥳀䕃蔴嫲𦺙䔧蕳䔖枿蘖"],["8fa1","𨘥𨘻藁𧂈蘂𡖂𧃍䕫䕪蘨㙈𡢢号𧎚虾蝱𪃸蟮𢰧螱蟚蠏噡虬桖䘏衅衆𧗠𣶹𧗤衞袜䙛袴袵揁装睷𧜏覇覊覦覩覧覼𨨥觧𧤤𧪽誜瞓釾誐𧩙竩𧬺𣾏䜓𧬸煼謌謟𥐰𥕥謿譌譍誩𤩺讐讛誯𡛟䘕衏貛𧵔𧶏貫㜥𧵓賖𧶘𧶽贒贃𡤐賛灜贑𤳉㻐起"],["9040","趩𨀂𡀔𤦊㭼𨆼𧄌竧躭躶軃鋔輙輭𨍥𨐒辥錃𪊟𠩐辳䤪𨧞𨔽𣶻廸𣉢迹𪀔𨚼𨔁𢌥㦀𦻗逷𨔼𧪾遡𨕬𨘋邨𨜓郄𨛦邮都酧㫰醩釄粬𨤳𡺉鈎沟鉁鉢𥖹銹𨫆𣲛𨬌𥗛"],["90a1","𠴱錬鍫𨫡𨯫炏嫃𨫢𨫥䥥鉄𨯬𨰹𨯿鍳鑛躼閅閦鐦閠濶䊹𢙺𨛘𡉼𣸮䧟氜陻隖䅬隣𦻕懚隶磵𨫠隽双䦡𦲸𠉴𦐐𩂯𩃥𤫑𡤕𣌊霱虂霶䨏䔽䖅𤫩灵孁霛靜𩇕靗孊𩇫靟鐥僐𣂷𣂼鞉鞟鞱鞾韀韒韠𥑬韮琜𩐳響韵𩐝𧥺䫑頴頳顋顦㬎𧅵㵑𠘰𤅜"],["9140","𥜆飊颷飈飇䫿𦴧𡛓喰飡飦飬鍸餹𤨩䭲𩡗𩤅駵騌騻騐驘𥜥㛄𩂱𩯕髠髢𩬅髴䰎鬔鬭𨘀倴鬴𦦨㣃𣁽魐魀𩴾婅𡡣鮎𤉋鰂鯿鰌𩹨鷔𩾷𪆒𪆫𪃡𪄣𪇟鵾鶃𪄴鸎梈"],["91a1","鷄𢅛𪆓𪈠𡤻𪈳鴹𪂹𪊴麐麕麞麢䴴麪麯𤍤黁㭠㧥㴝伲㞾𨰫鼂鼈䮖鐤𦶢鼗鼖鼹嚟嚊齅馸𩂋韲葿齢齩竜龎爖䮾𤥵𤦻煷𤧸𤍈𤩑玞𨯚𡣺禟𨥾𨸶鍩鏳𨩄鋬鎁鏋𨥬𤒹爗㻫睲穃烐𤑳𤏸煾𡟯炣𡢾𣖙㻇𡢅𥐯𡟸㜢𡛻𡠹㛡𡝴𡣑𥽋㜣𡛀坛𤨥𡏾𡊨"],["9240","𡏆𡒶蔃𣚦蔃葕𤦔𧅥𣸱𥕜𣻻𧁒䓴𣛮𩦝𦼦柹㜳㰕㷧塬𡤢栐䁗𣜿𤃡𤂋𤄏𦰡哋嚞𦚱嚒𠿟𠮨𠸍鏆𨬓鎜仸儫㠙𤐶亼𠑥𠍿佋侊𥙑婨𠆫𠏋㦙𠌊𠐔㐵伩𠋀𨺳𠉵諚𠈌亘"],["92a1","働儍侢伃𤨎𣺊佂倮偬傁俌俥偘僼兙兛兝兞湶𣖕𣸹𣺿浲𡢄𣺉冨凃𠗠䓝𠒣𠒒𠒑赺𨪜𠜎剙劤𠡳勡鍮䙺熌𤎌𠰠𤦬𡃤槑𠸝瑹㻞璙琔瑖玘䮎𤪼𤂍叐㖄爏𤃉喴𠍅响𠯆圝鉝雴鍦埝垍坿㘾壋媙𨩆𡛺𡝯𡜐娬妸銏婾嫏娒𥥆𡧳𡡡𤊕㛵洅瑃娡𥺃"],["9340","媁𨯗𠐓鏠璌𡌃焅䥲鐈𨧻鎽㞠尞岞幞幈𡦖𡥼𣫮廍孏𡤃𡤄㜁𡢠㛝𡛾㛓脪𨩇𡶺𣑲𨦨弌弎𡤧𡞫婫𡜻孄蘔𧗽衠恾𢡠𢘫忛㺸𢖯𢖾𩂈𦽳懀𠀾𠁆𢘛憙憘恵𢲛𢴇𤛔𩅍"],["93a1","摱𤙥𢭪㨩𢬢𣑐𩣪𢹸挷𪑛撶挱揑𤧣𢵧护𢲡搻敫楲㯴𣂎𣊭𤦉𣊫唍𣋠𡣙𩐿曎𣊉𣆳㫠䆐𥖄𨬢𥖏𡛼𥕛𥐥磮𣄃𡠪𣈴㑤𣈏𣆂𤋉暎𦴤晫䮓昰𧡰𡷫晣𣋒𣋡昞𥡲㣑𣠺𣞼㮙𣞢𣏾瓐㮖枏𤘪梶栞㯄檾㡣𣟕𤒇樳橒櫉欅𡤒攑梘橌㯗橺歗𣿀𣲚鎠鋲𨯪𨫋"],["9440","銉𨀞𨧜鑧涥漋𤧬浧𣽿㶏渄𤀼娽渊塇洤硂焻𤌚𤉶烱牐犇犔𤞏𤜥兹𤪤𠗫瑺𣻸𣙟𤩊𤤗𥿡㼆㺱𤫟𨰣𣼵悧㻳瓌琼鎇琷䒟𦷪䕑疃㽣𤳙𤴆㽘畕癳𪗆㬙瑨𨫌𤦫𤦎㫻"],["94a1","㷍𤩎㻿𤧅𤣳釺圲鍂𨫣𡡤僟𥈡𥇧睸𣈲眎眏睻𤚗𣞁㩞𤣰琸璛㺿𤪺𤫇䃈𤪖𦆮錇𥖁砞碍碈磒珐祙𧝁𥛣䄎禛蒖禥樭𣻺稺秴䅮𡛦䄲鈵秱𠵌𤦌𠊙𣶺𡝮㖗啫㕰㚪𠇔𠰍竢婙𢛵𥪯𥪜娍𠉛磰娪𥯆竾䇹籝籭䈑𥮳𥺼𥺦糍𤧹𡞰粎籼粮檲緜縇緓罎𦉡"],["9540","𦅜𧭈綗𥺂䉪𦭵𠤖柖𠁎𣗏埄𦐒𦏸𤥢翝笧𠠬𥫩𥵃笌𥸎駦虅驣樜𣐿㧢𤧷𦖭騟𦖠蒀𧄧𦳑䓪脷䐂胆脉腂𦞴飃𦩂艢艥𦩑葓𦶧蘐𧈛媆䅿𡡀嬫𡢡嫤𡣘蚠蜨𣶏蠭𧐢娂"],["95a1","衮佅袇袿裦襥襍𥚃襔𧞅𧞄𨯵𨯙𨮜𨧹㺭蒣䛵䛏㟲訽訜𩑈彍鈫𤊄旔焩烄𡡅鵭貟賩𧷜妚矃姰䍮㛔踪躧𤰉輰轊䋴汘澻𢌡䢛潹溋𡟚鯩㚵𤤯邻邗啱䤆醻鐄𨩋䁢𨫼鐧𨰝𨰻蓥訫閙閧閗閖𨴴瑅㻂𤣿𤩂𤏪㻧𣈥随𨻧𨹦𨹥㻌𤧭𤩸𣿮琒瑫㻼靁𩂰"],["9640","桇䨝𩂓𥟟靝鍨𨦉𨰦𨬯𦎾銺嬑譩䤼珹𤈛鞛靱餸𠼦巁𨯅𤪲頟𩓚鋶𩗗釥䓀𨭐𤩧𨭤飜𨩅㼀鈪䤥萔餻饍𧬆㷽馛䭯馪驜𨭥𥣈檏騡嫾騯𩣱䮐𩥈馼䮽䮗鍽塲𡌂堢𤦸"],["96a1","𡓨硄𢜟𣶸棅㵽鑘㤧慐𢞁𢥫愇鱏鱓鱻鰵鰐魿鯏𩸭鮟𪇵𪃾鴡䲮𤄄鸘䲰鴌𪆴𪃭𪃳𩤯鶥蒽𦸒𦿟𦮂藼䔳𦶤𦺄𦷰萠藮𦸀𣟗𦁤秢𣖜𣙀䤭𤧞㵢鏛銾鍈𠊿碹鉷鑍俤㑀遤𥕝砽硔碶硋𡝗𣇉𤥁㚚佲濚濙瀞瀞吔𤆵垻壳垊鴖埗焴㒯𤆬燫𦱀𤾗嬨𡞵𨩉"],["9740","愌嫎娋䊼𤒈㜬䭻𨧼鎻鎸𡣖𠼝葲𦳀𡐓𤋺𢰦𤏁妔𣶷𦝁綨𦅛𦂤𤦹𤦋𨧺鋥珢㻩璴𨭣𡢟㻡𤪳櫘珳珻㻖𤨾𤪔𡟙𤩦𠎧𡐤𤧥瑈𤤖炥𤥶銄珦鍟𠓾錱𨫎𨨖鎆𨯧𥗕䤵𨪂煫"],["97a1","𤥃𠳿嚤𠘚𠯫𠲸唂秄𡟺緾𡛂𤩐𡡒䔮鐁㜊𨫀𤦭妰𡢿𡢃𧒄媡㛢𣵛㚰鉟婹𨪁𡡢鍴㳍𠪴䪖㦊僴㵩㵌𡎜煵䋻𨈘渏𩃤䓫浗𧹏灧沯㳖𣿭𣸭渂漌㵯𠏵畑㚼㓈䚀㻚䡱姄鉮䤾轁𨰜𦯀堒埈㛖𡑒烾𤍢𤩱𢿣𡊰𢎽梹楧𡎘𣓥𧯴𣛟𨪃𣟖𣏺𤲟樚𣚭𦲷萾䓟䓎"],["9840","𦴦𦵑𦲂𦿞漗𧄉茽𡜺菭𦲀𧁓𡟛妉媂𡞳婡婱𡤅𤇼㜭姯𡜼㛇熎鎐暚𤊥婮娫𤊓樫𣻹𧜶𤑛𤋊焝𤉙𨧡侰𦴨峂𤓎𧹍𤎽樌𤉖𡌄炦焳𤏩㶥泟勇𤩏繥姫崯㷳彜𤩝𡟟綤萦"],["98a1","咅𣫺𣌀𠈔坾𠣕𠘙㿥𡾞𪊶瀃𩅛嵰玏糓𨩙𩐠俈翧狍猐𧫴猸猹𥛶獁獈㺩𧬘遬燵𤣲珡臶㻊県㻑沢国琙琞琟㻢㻰㻴㻺瓓㼎㽓畂畭畲疍㽼痈痜㿀癍㿗癴㿜発𤽜熈嘣覀塩䀝睃䀹条䁅㗛瞘䁪䁯属瞾矋売砘点砜䂨砹硇硑硦葈𥔵礳栃礲䄃"],["9940","䄉禑禙辻稆込䅧窑䆲窼艹䇄竏竛䇏両筢筬筻簒簛䉠䉺类粜䊌粸䊔糭输烀𠳏総緔緐緽羮羴犟䎗耠耥笹耮耱联㷌垴炠肷胩䏭脌猪脎脒畠脔䐁㬹腖腙腚"],["99a1","䐓堺腼膄䐥膓䐭膥埯臁臤艔䒏芦艶苊苘苿䒰荗险榊萅烵葤惣蒈䔄蒾蓡蓸蔐蔸蕒䔻蕯蕰藠䕷虲蚒蚲蛯际螋䘆䘗袮裿褤襇覑𧥧訩訸誔誴豑賔賲贜䞘塟跃䟭仮踺嗘坔蹱嗵躰䠷軎転軤軭軲辷迁迊迌逳駄䢭飠鈓䤞鈨鉘鉫銱銮銿"],["9a40","鋣鋫鋳鋴鋽鍃鎄鎭䥅䥑麿鐗匁鐝鐭鐾䥪鑔鑹锭関䦧间阳䧥枠䨤靀䨵鞲韂噔䫤惨颹䬙飱塄餎餙冴餜餷饂饝饢䭰駅䮝騼鬏窃魩鮁鯝鯱鯴䱭鰠㝯𡯂鵉鰺"],["9aa1","黾噐鶓鶽鷀鷼银辶鹻麬麱麽黆铜黢黱黸竈齄𠂔𠊷𠎠椚铃妬𠓗塀铁㞹𠗕𠘕𠙶𡚺块煳𠫂𠫍𠮿呪吆𠯋咞𠯻𠰻𠱓𠱥𠱼惧𠲍噺𠲵𠳝𠳭𠵯𠶲𠷈楕鰯螥𠸄𠸎𠻗𠾐𠼭𠹳尠𠾼帋𡁜𡁏𡁶朞𡁻𡂈𡂖㙇𡂿𡃓𡄯𡄻卤蒭𡋣𡍵𡌶讁𡕷𡘙𡟃𡟇乸炻𡠭𡥪"],["9b40","𡨭𡩅𡰪𡱰𡲬𡻈拃𡻕𡼕熘桕𢁅槩㛈𢉼𢏗𢏺𢜪𢡱𢥏苽𢥧𢦓𢫕覥𢫨辠𢬎鞸𢬿顇骽𢱌"],["9b62","𢲈𢲷𥯨𢴈𢴒𢶷𢶕𢹂𢽴𢿌𣀳𣁦𣌟𣏞徱晈暿𧩹𣕧𣗳爁𤦺矗𣘚𣜖纇𠍆墵朎"],["9ba1","椘𣪧𧙗𥿢𣸑𣺹𧗾𢂚䣐䪸𤄙𨪚𤋮𤌍𤀻𤌴𤎖𤩅𠗊凒𠘑妟𡺨㮾𣳿𤐄𤓖垈𤙴㦛𤜯𨗨𩧉㝢𢇃譞𨭎駖𤠒𤣻𤨕爉𤫀𠱸奥𤺥𤾆𠝹軚𥀬劏圿煱𥊙𥐙𣽊𤪧喼𥑆𥑮𦭒釔㑳𥔿𧘲𥕞䜘𥕢𥕦𥟇𤤿𥡝偦㓻𣏌惞𥤃䝼𨥈𥪮𥮉𥰆𡶐垡煑澶𦄂𧰒遖𦆲𤾚譢𦐂𦑊"],["9c40","嵛𦯷輶𦒄𡤜諪𤧶𦒈𣿯𦔒䯀𦖿𦚵𢜛鑥𥟡憕娧晉侻嚹𤔡𦛼乪𤤴陖涏𦲽㘘襷𦞙𦡮𦐑𦡞營𦣇筂𩃀𠨑𦤦鄄𦤹穅鷰𦧺騦𦨭㙟𦑩𠀡禃𦨴𦭛崬𣔙菏𦮝䛐𦲤画补𦶮墶"],["9ca1","㜜𢖍𧁋𧇍㱔𧊀𧊅銁𢅺𧊋錰𧋦𤧐氹钟𧑐𠻸蠧裵𢤦𨑳𡞱溸𤨪𡠠㦤㚹尐秣䔿暶𩲭𩢤襃𧟌𧡘囖䃟𡘊㦡𣜯𨃨𡏅熭荦𧧝𩆨婧䲷𧂯𨦫𧧽𧨊𧬋𧵦𤅺筃祾𨀉澵𪋟樃𨌘厢𦸇鎿栶靝𨅯𨀣𦦵𡏭𣈯𨁈嶅𨰰𨂃圕頣𨥉嶫𤦈斾槕叒𤪥𣾁㰑朶𨂐𨃴𨄮𡾡𨅏"],["9d40","𨆉𨆯𨈚𨌆𨌯𨎊㗊𨑨𨚪䣺揦𨥖砈鉕𨦸䏲𨧧䏟𨧨𨭆𨯔姸𨰉輋𨿅𩃬筑𩄐𩄼㷷𩅞𤫊运犏嚋𩓧𩗩𩖰𩖸𩜲𩣑𩥉𩥪𩧃𩨨𩬎𩵚𩶛纟𩻸𩼣䲤镇𪊓熢𪋿䶑递𪗋䶜𠲜达嗁"],["9da1","辺𢒰边𤪓䔉繿潖檱仪㓤𨬬𧢝㜺躀𡟵𨀤𨭬𨮙𧨾𦚯㷫𧙕𣲷𥘵𥥖亚𥺁𦉘嚿𠹭踎孭𣺈𤲞揞拐𡟶𡡻攰嘭𥱊吚𥌑㷆𩶘䱽嘢嘞罉𥻘奵𣵀蝰东𠿪𠵉𣚺脗鵞贘瘻鱅癎瞹鍅吲腈苷嘥脲萘肽嗪祢噃吖𠺝㗎嘅嗱曱𨋢㘭甴嗰喺咗啲𠱁𠲖廐𥅈𠹶𢱢"],["9e40","𠺢麫絚嗞𡁵抝靭咔賍燶酶揼掹揾啩𢭃鱲𢺳冚㓟𠶧冧呍唞唓癦踭𦢊疱肶蠄螆裇膶萜𡃁䓬猄𤜆宐茋𦢓噻𢛴𧴯𤆣𧵳𦻐𧊶酰𡇙鈈𣳼𪚩𠺬𠻹牦𡲢䝎𤿂𧿹𠿫䃺"],["9ea1","鱝攟𢶠䣳𤟠𩵼𠿬𠸊恢𧖣𠿭"],["9ead","𦁈𡆇熣纎鵐业丄㕷嬍沲卧㚬㧜卽㚥𤘘墚𤭮舭呋垪𥪕𠥹"],["9ec5","㩒𢑥獴𩺬䴉鯭𣳾𩼰䱛𤾩𩖞𩿞葜𣶶𧊲𦞳𣜠挮紥𣻷𣸬㨪逈勌㹴㙺䗩𠒎癀嫰𠺶硺𧼮墧䂿噼鮋嵴癔𪐴麅䳡痹㟻愙𣃚𤏲"],["9ef5","噝𡊩垧𤥣𩸆刴𧂮㖭汊鵼"],["9f40","籖鬹埞𡝬屓擓𩓐𦌵𧅤蚭𠴨𦴢𤫢𠵱"],["9f4f","凾𡼏嶎霃𡷑麁遌笟鬂峑箣扨挵髿篏鬪籾鬮籂粆鰕篼鬉鼗鰛𤤾齚啳寃俽麘俲剠㸆勑坧偖妷帒韈鶫轜呩鞴饀鞺匬愰"],["9fa1","椬叚鰊鴂䰻陁榀傦畆𡝭駚剳"],["9fae","酙隁酜"],["9fb2","酑𨺗捿𦴣櫊嘑醎畺抅𠏼獏籰𥰡𣳽"],["9fc1","𤤙盖鮝个𠳔莾衂"],["9fc9","届槀僭坺刟巵从氱𠇲伹咜哚劚趂㗾弌㗳"],["9fdb","歒酼龥鮗頮颴骺麨麄煺笔"],["9fe7","毺蠘罸"],["9feb","嘠𪙊蹷齓"],["9ff0","跔蹏鸜踁抂𨍽踨蹵竓𤩷稾磘泪詧瘇"],["a040","𨩚鼦泎蟖痃𪊲硓咢贌狢獱謭猂瓱賫𤪻蘯徺袠䒷"],["a055","𡠻𦸅"],["a058","詾𢔛"],["a05b","惽癧髗鵄鍮鮏蟵"],["a063","蠏賷猬霡鮰㗖犲䰇籑饊𦅙慙䰄麖慽"],["a073","坟慯抦戹拎㩜懢厪𣏵捤栂㗒"],["a0a1","嵗𨯂迚𨸹"],["a0a6","僙𡵆礆匲阸𠼻䁥"],["a0ae","矾"],["a0b0","糂𥼚糚稭聦聣絍甅瓲覔舚朌聢𧒆聛瓰脃眤覉𦟌畓𦻑螩蟎臈螌詉貭譃眫瓸蓚㘵榲趦"],["a0d4","覩瑨涹蟁𤀑瓧㷛煶悤憜㳑煢恷"],["a0e2","罱𨬭牐惩䭾删㰘𣳇𥻗𧙖𥔱𡥄𡋾𩤃𦷜𧂭峁𦆭𨨏𣙷𠃮𦡆𤼎䕢嬟𦍌齐麦𦉫"],["a3c0","␀",31,"␡"],["c6a1","①",9,"⑴",9,"ⅰ",9,"丶丿亅亠冂冖冫勹匸卩厶夊宀巛⼳广廴彐彡攴无疒癶辵隶¨ˆヽヾゝゞ〃仝々〆〇ー［］✽ぁ",23],["c740","す",58,"ァアィイ"],["c7a1","ゥ",81,"А",5,"ЁЖ",4],["c840","Л",26,"ёж",25,"⇧↸↹㇏𠃌乚𠂊刂䒑"],["c8a1","龰冈龱𧘇"],["c8cd","￢￤＇＂㈱№℡゛゜⺀⺄⺆⺇⺈⺊⺌⺍⺕⺜⺝⺥⺧⺪⺬⺮⺶⺼⺾⻆⻊⻌⻍⻏⻖⻗⻞⻣"],["c8f5","ʃɐɛɔɵœøŋʊɪ"],["f9fe","￭"],["fa40","𠕇鋛𠗟𣿅蕌䊵珯况㙉𤥂𨧤鍄𡧛苮𣳈砼杄拟𤤳𨦪𠊠𦮳𡌅侫𢓭倈𦴩𧪄𣘀𤪱𢔓倩𠍾徤𠎀𠍇滛𠐟偽儁㑺儎顬㝃萖𤦤𠒇兠𣎴兪𠯿𢃼𠋥𢔰𠖎𣈳𡦃宂蝽𠖳𣲙冲冸"],["faa1","鴴凉减凑㳜凓𤪦决凢卂凭菍椾𣜭彻刋刦刼劵剗劔効勅簕蕂勠蘍𦬓包𨫞啉滙𣾀𠥔𣿬匳卄𠯢泋𡜦栛珕恊㺪㣌𡛨燝䒢卭却𨚫卾卿𡖖𡘓矦厓𨪛厠厫厮玧𥝲㽙玜叁叅汉义埾叙㪫𠮏叠𣿫𢶣叶𠱷吓灹唫晗浛呭𦭓𠵴啝咏咤䞦𡜍𠻝㶴𠵍"],["fb40","𨦼𢚘啇䳭启琗喆喩嘅𡣗𤀺䕒𤐵暳𡂴嘷曍𣊊暤暭噍噏磱囱鞇叾圀囯园𨭦㘣𡉏坆𤆥汮炋坂㚱𦱾埦𡐖堃𡑔𤍣堦𤯵塜墪㕡壠壜𡈼壻寿坃𪅐𤉸鏓㖡够梦㛃湙"],["fba1","𡘾娤啓𡚒蔅姉𠵎𦲁𦴪𡟜姙𡟻𡞲𦶦浱𡠨𡛕姹𦹅媫婣㛦𤦩婷㜈媖瑥嫓𦾡𢕔㶅𡤑㜲𡚸広勐孶斈孼𧨎䀄䡝𠈄寕慠𡨴𥧌𠖥寳宝䴐尅𡭄尓珎尔𡲥𦬨屉䣝岅峩峯嶋𡷹𡸷崐崘嵆𡺤岺巗苼㠭𤤁𢁉𢅳芇㠶㯂帮檊幵幺𤒼𠳓厦亷廐厨𡝱帉廴𨒂"],["fc40","廹廻㢠廼栾鐛弍𠇁弢㫞䢮𡌺强𦢈𢏐彘𢑱彣鞽𦹮彲鍀𨨶徧嶶㵟𥉐𡽪𧃸𢙨釖𠊞𨨩怱暅𡡷㥣㷇㘹垐𢞴祱㹀悞悤悳𤦂𤦏𧩓璤僡媠慤萤慂慈𦻒憁凴𠙖憇宪𣾷"],["fca1","𢡟懓𨮝𩥝懐㤲𢦀𢣁怣慜攞掋𠄘担𡝰拕𢸍捬𤧟㨗搸揸𡎎𡟼撐澊𢸶頔𤂌𥜝擡擥鑻㩦携㩗敍漖𤨨𤨣斅敭敟𣁾斵𤥀䬷旑䃘𡠩无旣忟𣐀昘𣇷𣇸晄𣆤𣆥晋𠹵晧𥇦晳晴𡸽𣈱𨗴𣇈𥌓矅𢣷馤朂𤎜𤨡㬫槺𣟂杞杧杢𤇍𩃭柗䓩栢湐鈼栁𣏦𦶠桝"],["fd40","𣑯槡樋𨫟楳棃𣗍椁椀㴲㨁𣘼㮀枬楡𨩊䋼椶榘㮡𠏉荣傐槹𣙙𢄪橅𣜃檝㯳枱櫈𩆜㰍欝𠤣惞欵歴𢟍溵𣫛𠎵𡥘㝀吡𣭚毡𣻼毜氷𢒋𤣱𦭑汚舦汹𣶼䓅𣶽𤆤𤤌𤤀"],["fda1","𣳉㛥㳫𠴲鮃𣇹𢒑羏样𦴥𦶡𦷫涖浜湼漄𤥿𤂅𦹲蔳𦽴凇沜渝萮𨬡港𣸯瑓𣾂秌湏媑𣁋濸㜍澝𣸰滺𡒗𤀽䕕鏰潄潜㵎潴𩅰㴻澟𤅄濓𤂑𤅕𤀹𣿰𣾴𤄿凟𤅖𤅗𤅀𦇝灋灾炧炁烌烕烖烟䄄㷨熴熖𤉷焫煅媈煊煮岜𤍥煏鍢𤋁焬𤑚𤨧𤨢熺𨯨炽爎"],["fe40","鑂爕夑鑃爤鍁𥘅爮牀𤥴梽牕牗㹕𣁄栍漽犂猪猫𤠣𨠫䣭𨠄猨献珏玪𠰺𦨮珉瑉𤇢𡛧𤨤昣㛅𤦷𤦍𤧻珷琕椃𤨦琹𠗃㻗瑜𢢭瑠𨺲瑇珤瑶莹瑬㜰瑴鏱樬璂䥓𤪌"],["fea1","𤅟𤩹𨮏孆𨰃𡢞瓈𡦈甎瓩甞𨻙𡩋寗𨺬鎅畍畊畧畮𤾂㼄𤴓疎瑝疞疴瘂瘬癑癏癯癶𦏵皐臯㟸𦤑𦤎皡皥皷盌𦾟葢𥂝𥅽𡸜眞眦着撯𥈠睘𣊬瞯𨥤𨥨𡛁矴砉𡍶𤨒棊碯磇磓隥礮𥗠磗礴碱𧘌辸袄𨬫𦂃𢘜禆褀椂禀𥡗禝𧬹礼禩渪𧄦㺨秆𩄍秔"]]')},3336:function(r){"use strict";r.exports=JSON.parse('[["0","\\u0000",127,"€"],["8140","丂丄丅丆丏丒丗丟丠両丣並丩丮丯丱丳丵丷丼乀乁乂乄乆乊乑乕乗乚乛乢乣乤乥乧乨乪",5,"乲乴",9,"乿",6,"亇亊"],["8180","亐亖亗亙亜亝亞亣亪亯亰亱亴亶亷亸亹亼亽亾仈仌仏仐仒仚仛仜仠仢仦仧仩仭仮仯仱仴仸仹仺仼仾伀伂",6,"伋伌伒",4,"伜伝伡伣伨伩伬伭伮伱伳伵伷伹伻伾",4,"佄佅佇",5,"佒佔佖佡佢佦佨佪佫佭佮佱佲併佷佸佹佺佽侀侁侂侅來侇侊侌侎侐侒侓侕侖侘侙侚侜侞侟価侢"],["8240","侤侫侭侰",4,"侶",8,"俀俁係俆俇俈俉俋俌俍俒",4,"俙俛俠俢俤俥俧俫俬俰俲俴俵俶俷俹俻俼俽俿",11],["8280","個倎倐們倓倕倖倗倛倝倞倠倢倣値倧倫倯",10,"倻倽倿偀偁偂偄偅偆偉偊偋偍偐",4,"偖偗偘偙偛偝",7,"偦",5,"偭",8,"偸偹偺偼偽傁傂傃傄傆傇傉傊傋傌傎",20,"傤傦傪傫傭",4,"傳",6,"傼"],["8340","傽",17,"僐",5,"僗僘僙僛",10,"僨僩僪僫僯僰僱僲僴僶",4,"僼",9,"儈"],["8380","儉儊儌",5,"儓",13,"儢",28,"兂兇兊兌兎兏児兒兓兗兘兙兛兝",4,"兣兤兦內兩兪兯兲兺兾兿冃冄円冇冊冋冎冏冐冑冓冔冘冚冝冞冟冡冣冦",4,"冭冮冴冸冹冺冾冿凁凂凃凅凈凊凍凎凐凒",5],["8440","凘凙凚凜凞凟凢凣凥",5,"凬凮凱凲凴凷凾刄刅刉刋刌刏刐刓刔刕刜刞刟刡刢刣別刦刧刪刬刯刱刲刴刵刼刾剄",5,"剋剎剏剒剓剕剗剘"],["8480","剙剚剛剝剟剠剢剣剤剦剨剫剬剭剮剰剱剳",9,"剾劀劃",4,"劉",6,"劑劒劔",6,"劜劤劥劦劧劮劯劰労",9,"勀勁勂勄勅勆勈勊勌勍勎勏勑勓勔動勗務",5,"勠勡勢勣勥",10,"勱",7,"勻勼勽匁匂匃匄匇匉匊匋匌匎"],["8540","匑匒匓匔匘匛匜匞匟匢匤匥匧匨匩匫匬匭匯",9,"匼匽區卂卄卆卋卌卍卐協単卙卛卝卥卨卪卬卭卲卶卹卻卼卽卾厀厁厃厇厈厊厎厏"],["8580","厐",4,"厖厗厙厛厜厞厠厡厤厧厪厫厬厭厯",6,"厷厸厹厺厼厽厾叀參",4,"収叏叐叒叓叕叚叜叝叞叡叢叧叴叺叾叿吀吂吅吇吋吔吘吙吚吜吢吤吥吪吰吳吶吷吺吽吿呁呂呄呅呇呉呌呍呎呏呑呚呝",4,"呣呥呧呩",7,"呴呹呺呾呿咁咃咅咇咈咉咊咍咑咓咗咘咜咞咟咠咡"],["8640","咢咥咮咰咲咵咶咷咹咺咼咾哃哅哊哋哖哘哛哠",4,"哫哬哯哰哱哴",5,"哻哾唀唂唃唄唅唈唊",4,"唒唓唕",5,"唜唝唞唟唡唥唦"],["8680","唨唩唫唭唲唴唵唶唸唹唺唻唽啀啂啅啇啈啋",4,"啑啒啓啔啗",4,"啝啞啟啠啢啣啨啩啫啯",5,"啹啺啽啿喅喆喌喍喎喐喒喓喕喖喗喚喛喞喠",6,"喨",8,"喲喴営喸喺喼喿",4,"嗆嗇嗈嗊嗋嗎嗏嗐嗕嗗",4,"嗞嗠嗢嗧嗩嗭嗮嗰嗱嗴嗶嗸",4,"嗿嘂嘃嘄嘅"],["8740","嘆嘇嘊嘋嘍嘐",7,"嘙嘚嘜嘝嘠嘡嘢嘥嘦嘨嘩嘪嘫嘮嘯嘰嘳嘵嘷嘸嘺嘼嘽嘾噀",11,"噏",4,"噕噖噚噛噝",4],["8780","噣噥噦噧噭噮噯噰噲噳噴噵噷噸噹噺噽",7,"嚇",6,"嚐嚑嚒嚔",14,"嚤",10,"嚰",6,"嚸嚹嚺嚻嚽",12,"囋",8,"囕囖囘囙囜団囥",5,"囬囮囯囲図囶囷囸囻囼圀圁圂圅圇國",6],["8840","園",9,"圝圞圠圡圢圤圥圦圧圫圱圲圴",4,"圼圽圿坁坃坄坅坆坈坉坋坒",4,"坘坙坢坣坥坧坬坮坰坱坲坴坵坸坹坺坽坾坿垀"],["8880","垁垇垈垉垊垍",4,"垔",6,"垜垝垞垟垥垨垪垬垯垰垱垳垵垶垷垹",8,"埄",6,"埌埍埐埑埓埖埗埛埜埞埡埢埣埥",7,"埮埰埱埲埳埵埶執埻埼埾埿堁堃堄堅堈堉堊堌堎堏堐堒堓堔堖堗堘堚堛堜堝堟堢堣堥",4,"堫",4,"報堲堳場堶",7],["8940","堾",5,"塅",6,"塎塏塐塒塓塕塖塗塙",4,"塟",5,"塦",4,"塭",16,"塿墂墄墆墇墈墊墋墌"],["8980","墍",4,"墔",4,"墛墜墝墠",7,"墪",17,"墽墾墿壀壂壃壄壆",10,"壒壓壔壖",13,"壥",5,"壭壯壱売壴壵壷壸壺",7,"夃夅夆夈",4,"夎夐夑夒夓夗夘夛夝夞夠夡夢夣夦夨夬夰夲夳夵夶夻"],["8a40","夽夾夿奀奃奅奆奊奌奍奐奒奓奙奛",4,"奡奣奤奦",12,"奵奷奺奻奼奾奿妀妅妉妋妌妎妏妐妑妔妕妘妚妛妜妝妟妠妡妢妦"],["8a80","妧妬妭妰妱妳",5,"妺妼妽妿",6,"姇姈姉姌姍姎姏姕姖姙姛姞",4,"姤姦姧姩姪姫姭",11,"姺姼姽姾娀娂娊娋娍娎娏娐娒娔娕娖娗娙娚娛娝娞娡娢娤娦娧娨娪",6,"娳娵娷",4,"娽娾娿婁",4,"婇婈婋",9,"婖婗婘婙婛",5],["8b40","婡婣婤婥婦婨婩婫",8,"婸婹婻婼婽婾媀",17,"媓",6,"媜",13,"媫媬"],["8b80","媭",4,"媴媶媷媹",4,"媿嫀嫃",5,"嫊嫋嫍",4,"嫓嫕嫗嫙嫚嫛嫝嫞嫟嫢嫤嫥嫧嫨嫪嫬",4,"嫲",22,"嬊",11,"嬘",25,"嬳嬵嬶嬸",7,"孁",6],["8c40","孈",7,"孒孖孞孠孡孧孨孫孭孮孯孲孴孶孷學孹孻孼孾孿宂宆宊宍宎宐宑宒宔宖実宧宨宩宬宭宮宯宱宲宷宺宻宼寀寁寃寈寉寊寋寍寎寏"],["8c80","寑寔",8,"寠寢寣實寧審",4,"寯寱",6,"寽対尀専尃尅將專尋尌對導尐尒尓尗尙尛尞尟尠尡尣尦尨尩尪尫尭尮尯尰尲尳尵尶尷屃屄屆屇屌屍屒屓屔屖屗屘屚屛屜屝屟屢層屧",6,"屰屲",6,"屻屼屽屾岀岃",4,"岉岊岋岎岏岒岓岕岝",4,"岤",4],["8d40","岪岮岯岰岲岴岶岹岺岻岼岾峀峂峃峅",5,"峌",5,"峓",5,"峚",6,"峢峣峧峩峫峬峮峯峱",9,"峼",4],["8d80","崁崄崅崈",5,"崏",4,"崕崗崘崙崚崜崝崟",4,"崥崨崪崫崬崯",4,"崵",7,"崿",7,"嵈嵉嵍",10,"嵙嵚嵜嵞",10,"嵪嵭嵮嵰嵱嵲嵳嵵",12,"嶃",21,"嶚嶛嶜嶞嶟嶠"],["8e40","嶡",21,"嶸",12,"巆",6,"巎",12,"巜巟巠巣巤巪巬巭"],["8e80","巰巵巶巸",4,"巿帀帄帇帉帊帋帍帎帒帓帗帞",7,"帨",4,"帯帰帲",4,"帹帺帾帿幀幁幃幆",5,"幍",6,"幖",4,"幜幝幟幠幣",14,"幵幷幹幾庁庂広庅庈庉庌庍庎庒庘庛庝庡庢庣庤庨",4,"庮",4,"庴庺庻庼庽庿",6],["8f40","廆廇廈廋",5,"廔廕廗廘廙廚廜",11,"廩廫",8,"廵廸廹廻廼廽弅弆弇弉弌弍弎弐弒弔弖弙弚弜弝弞弡弢弣弤"],["8f80","弨弫弬弮弰弲",6,"弻弽弾弿彁",14,"彑彔彙彚彛彜彞彟彠彣彥彧彨彫彮彯彲彴彵彶彸彺彽彾彿徃徆徍徎徏徑従徔徖徚徛徝從徟徠徢",5,"復徫徬徯",5,"徶徸徹徺徻徾",4,"忇忈忊忋忎忓忔忕忚忛応忞忟忢忣忥忦忨忩忬忯忰忲忳忴忶忷忹忺忼怇"],["9040","怈怉怋怌怐怑怓怗怘怚怞怟怢怣怤怬怭怮怰",4,"怶",4,"怽怾恀恄",6,"恌恎恏恑恓恔恖恗恘恛恜恞恟恠恡恥恦恮恱恲恴恵恷恾悀"],["9080","悁悂悅悆悇悈悊悋悎悏悐悑悓悕悗悘悙悜悞悡悢悤悥悧悩悪悮悰悳悵悶悷悹悺悽",7,"惇惈惉惌",4,"惒惓惔惖惗惙惛惞惡",4,"惪惱惲惵惷惸惻",4,"愂愃愄愅愇愊愋愌愐",4,"愖愗愘愙愛愜愝愞愡愢愥愨愩愪愬",18,"慀",6],["9140","慇慉態慍慏慐慒慓慔慖",6,"慞慟慠慡慣慤慥慦慩",6,"慱慲慳慴慶慸",18,"憌憍憏",4,"憕"],["9180","憖",6,"憞",8,"憪憫憭",9,"憸",5,"憿懀懁懃",4,"應懌",4,"懓懕",16,"懧",13,"懶",8,"戀",5,"戇戉戓戔戙戜戝戞戠戣戦戧戨戩戫戭戯戰戱戲戵戶戸",4,"扂扄扅扆扊"],["9240","扏扐払扖扗扙扚扜",6,"扤扥扨扱扲扴扵扷扸扺扻扽抁抂抃抅抆抇抈抋",5,"抔抙抜抝択抣抦抧抩抪抭抮抯抰抲抳抴抶抷抸抺抾拀拁"],["9280","拃拋拏拑拕拝拞拠拡拤拪拫拰拲拵拸拹拺拻挀挃挄挅挆挊挋挌挍挏挐挒挓挔挕挗挘挙挜挦挧挩挬挭挮挰挱挳",5,"挻挼挾挿捀捁捄捇捈捊捑捒捓捔捖",7,"捠捤捥捦捨捪捫捬捯捰捲捳捴捵捸捹捼捽捾捿掁掃掄掅掆掋掍掑掓掔掕掗掙",6,"採掤掦掫掯掱掲掵掶掹掻掽掿揀"],["9340","揁揂揃揅揇揈揊揋揌揑揓揔揕揗",6,"揟揢揤",4,"揫揬揮揯揰揱揳揵揷揹揺揻揼揾搃搄搆",4,"損搎搑搒搕",5,"搝搟搢搣搤"],["9380","搥搧搨搩搫搮",5,"搵",4,"搻搼搾摀摂摃摉摋",6,"摓摕摖摗摙",4,"摟",7,"摨摪摫摬摮",9,"摻",6,"撃撆撈",8,"撓撔撗撘撚撛撜撝撟",4,"撥撦撧撨撪撫撯撱撲撳撴撶撹撻撽撾撿擁擃擄擆",6,"擏擑擓擔擕擖擙據"],["9440","擛擜擝擟擠擡擣擥擧",24,"攁",7,"攊",7,"攓",4,"攙",8],["9480","攢攣攤攦",4,"攬攭攰攱攲攳攷攺攼攽敀",4,"敆敇敊敋敍敎敐敒敓敔敗敘敚敜敟敠敡敤敥敧敨敩敪敭敮敯敱敳敵敶數",14,"斈斉斊斍斎斏斒斔斕斖斘斚斝斞斠斢斣斦斨斪斬斮斱",7,"斺斻斾斿旀旂旇旈旉旊旍旐旑旓旔旕旘",7,"旡旣旤旪旫"],["9540","旲旳旴旵旸旹旻",4,"昁昄昅昇昈昉昋昍昐昑昒昖昗昘昚昛昜昞昡昢昣昤昦昩昪昫昬昮昰昲昳昷",4,"昽昿晀時晄",6,"晍晎晐晑晘"],["9580","晙晛晜晝晞晠晢晣晥晧晩",4,"晱晲晳晵晸晹晻晼晽晿暀暁暃暅暆暈暉暊暋暍暎暏暐暒暓暔暕暘",4,"暞",8,"暩",4,"暯",4,"暵暶暷暸暺暻暼暽暿",25,"曚曞",7,"曧曨曪",5,"曱曵曶書曺曻曽朁朂會"],["9640","朄朅朆朇朌朎朏朑朒朓朖朘朙朚朜朞朠",5,"朧朩朮朰朲朳朶朷朸朹朻朼朾朿杁杄杅杇杊杋杍杒杔杕杗",4,"杝杢杣杤杦杧杫杬杮東杴杶"],["9680","杸杹杺杻杽枀枂枃枅枆枈枊枌枍枎枏枑枒枓枔枖枙枛枟枠枡枤枦枩枬枮枱枲枴枹",7,"柂柅",9,"柕柖柗柛柟柡柣柤柦柧柨柪柫柭柮柲柵",7,"柾栁栂栃栄栆栍栐栒栔栕栘",4,"栞栟栠栢",6,"栫",6,"栴栵栶栺栻栿桇桋桍桏桒桖",5],["9740","桜桝桞桟桪桬",7,"桵桸",8,"梂梄梇",7,"梐梑梒梔梕梖梘",9,"梣梤梥梩梪梫梬梮梱梲梴梶梷梸"],["9780","梹",6,"棁棃",5,"棊棌棎棏棐棑棓棔棖棗棙棛",4,"棡棢棤",9,"棯棲棳棴棶棷棸棻棽棾棿椀椂椃椄椆",4,"椌椏椑椓",11,"椡椢椣椥",7,"椮椯椱椲椳椵椶椷椸椺椻椼椾楀楁楃",16,"楕楖楘楙楛楜楟"],["9840","楡楢楤楥楧楨楩楪楬業楯楰楲",4,"楺楻楽楾楿榁榃榅榊榋榌榎",5,"榖榗榙榚榝",9,"榩榪榬榮榯榰榲榳榵榶榸榹榺榼榽"],["9880","榾榿槀槂",7,"構槍槏槑槒槓槕",5,"槜槝槞槡",11,"槮槯槰槱槳",9,"槾樀",9,"樋",11,"標",5,"樠樢",5,"権樫樬樭樮樰樲樳樴樶",6,"樿",4,"橅橆橈",7,"橑",6,"橚"],["9940","橜",4,"橢橣橤橦",10,"橲",6,"橺橻橽橾橿檁檂檃檅",8,"檏檒",4,"檘",7,"檡",5],["9980","檧檨檪檭",114,"欥欦欨",6],["9a40","欯欰欱欳欴欵欶欸欻欼欽欿歀歁歂歄歅歈歊歋歍",11,"歚",7,"歨歩歫",13,"歺歽歾歿殀殅殈"],["9a80","殌殎殏殐殑殔殕殗殘殙殜",4,"殢",7,"殫",7,"殶殸",6,"毀毃毄毆",4,"毌毎毐毑毘毚毜",4,"毢",7,"毬毭毮毰毱毲毴毶毷毸毺毻毼毾",6,"氈",4,"氎氒気氜氝氞氠氣氥氫氬氭氱氳氶氷氹氺氻氼氾氿汃汄汅汈汋",4,"汑汒汓汖汘"],["9b40","汙汚汢汣汥汦汧汫",4,"汱汳汵汷汸決汻汼汿沀沄沇沊沋沍沎沑沒沕沖沗沘沚沜沝沞沠沢沨沬沯沰沴沵沶沷沺泀況泂泃泆泇泈泋泍泎泏泑泒泘"],["9b80","泙泚泜泝泟泤泦泧泩泬泭泲泴泹泿洀洂洃洅洆洈洉洊洍洏洐洑洓洔洕洖洘洜洝洟",5,"洦洨洩洬洭洯洰洴洶洷洸洺洿浀浂浄浉浌浐浕浖浗浘浛浝浟浡浢浤浥浧浨浫浬浭浰浱浲浳浵浶浹浺浻浽",4,"涃涄涆涇涊涋涍涏涐涒涖",4,"涜涢涥涬涭涰涱涳涴涶涷涹",5,"淁淂淃淈淉淊"],["9c40","淍淎淏淐淒淓淔淕淗淚淛淜淟淢淣淥淧淨淩淪淭淯淰淲淴淵淶淸淺淽",7,"渆渇済渉渋渏渒渓渕渘渙減渜渞渟渢渦渧渨渪測渮渰渱渳渵"],["9c80","渶渷渹渻",7,"湅",7,"湏湐湑湒湕湗湙湚湜湝湞湠",10,"湬湭湯",14,"満溁溂溄溇溈溊",4,"溑",6,"溙溚溛溝溞溠溡溣溤溦溨溩溫溬溭溮溰溳溵溸溹溼溾溿滀滃滄滅滆滈滉滊滌滍滎滐滒滖滘滙滛滜滝滣滧滪",5],["9d40","滰滱滲滳滵滶滷滸滺",7,"漃漄漅漇漈漊",4,"漐漑漒漖",9,"漡漢漣漥漦漧漨漬漮漰漲漴漵漷",6,"漿潀潁潂"],["9d80","潃潄潅潈潉潊潌潎",9,"潙潚潛潝潟潠潡潣潤潥潧",5,"潯潰潱潳潵潶潷潹潻潽",6,"澅澆澇澊澋澏",12,"澝澞澟澠澢",4,"澨",10,"澴澵澷澸澺",5,"濁濃",5,"濊",6,"濓",10,"濟濢濣濤濥"],["9e40","濦",7,"濰",32,"瀒",7,"瀜",6,"瀤",6],["9e80","瀫",9,"瀶瀷瀸瀺",17,"灍灎灐",13,"灟",11,"灮灱灲灳灴灷灹灺灻災炁炂炃炄炆炇炈炋炌炍炏炐炑炓炗炘炚炛炞",12,"炰炲炴炵炶為炾炿烄烅烆烇烉烋",12,"烚"],["9f40","烜烝烞烠烡烢烣烥烪烮烰",6,"烸烺烻烼烾",10,"焋",4,"焑焒焔焗焛",10,"焧",7,"焲焳焴"],["9f80","焵焷",13,"煆煇煈煉煋煍煏",12,"煝煟",4,"煥煩",4,"煯煰煱煴煵煶煷煹煻煼煾",5,"熅",4,"熋熌熍熎熐熑熒熓熕熖熗熚",4,"熡",6,"熩熪熫熭",5,"熴熶熷熸熺",8,"燄",9,"燏",4],["a040","燖",9,"燡燢燣燤燦燨",5,"燯",9,"燺",11,"爇",19],["a080","爛爜爞",9,"爩爫爭爮爯爲爳爴爺爼爾牀",6,"牉牊牋牎牏牐牑牓牔牕牗牘牚牜牞牠牣牤牥牨牪牫牬牭牰牱牳牴牶牷牸牻牼牽犂犃犅",4,"犌犎犐犑犓",11,"犠",11,"犮犱犲犳犵犺",6,"狅狆狇狉狊狋狌狏狑狓狔狕狖狘狚狛"],["a1a1","　、。·ˉˇ¨〃々—～‖…‘’“”〔〕〈",7,"〖〗【】±×÷∶∧∨∑∏∪∩∈∷√⊥∥∠⌒⊙∫∮≡≌≈∽∝≠≮≯≤≥∞∵∴♂♀°′″℃＄¤￠￡‰§№☆★○●◎◇◆□■△▲※→←↑↓〓"],["a2a1","ⅰ",9],["a2b1","⒈",19,"⑴",19,"①",9],["a2e5","㈠",9],["a2f1","Ⅰ",11],["a3a1","！＂＃￥％",88,"￣"],["a4a1","ぁ",82],["a5a1","ァ",85],["a6a1","Α",16,"Σ",6],["a6c1","α",16,"σ",6],["a6e0","︵︶︹︺︿﹀︽︾﹁﹂﹃﹄"],["a6ee","︻︼︷︸︱"],["a6f4","︳︴"],["a7a1","А",5,"ЁЖ",25],["a7d1","а",5,"ёж",25],["a840","ˊˋ˙–―‥‵℅℉↖↗↘↙∕∟∣≒≦≧⊿═",35,"▁",6],["a880","█",7,"▓▔▕▼▽◢◣◤◥☉⊕〒〝〞"],["a8a1","āáǎàēéěèīíǐìōóǒòūúǔùǖǘǚǜüêɑ"],["a8bd","ńň"],["a8c0","ɡ"],["a8c5","ㄅ",36],["a940","〡",8,"㊣㎎㎏㎜㎝㎞㎡㏄㏎㏑㏒㏕︰￢￤"],["a959","℡㈱"],["a95c","‐"],["a960","ー゛゜ヽヾ〆ゝゞ﹉",9,"﹔﹕﹖﹗﹙",8],["a980","﹢",4,"﹨﹩﹪﹫"],["a996","〇"],["a9a4","─",75],["aa40","狜狝狟狢",5,"狪狫狵狶狹狽狾狿猀猂猄",5,"猋猌猍猏猐猑猒猔猘猙猚猟猠猣猤猦猧猨猭猯猰猲猳猵猶猺猻猼猽獀",8],["aa80","獉獊獋獌獎獏獑獓獔獕獖獘",7,"獡",10,"獮獰獱"],["ab40","獲",11,"獿",4,"玅玆玈玊玌玍玏玐玒玓玔玕玗玘玙玚玜玝玞玠玡玣",5,"玪玬玭玱玴玵玶玸玹玼玽玾玿珁珃",4],["ab80","珋珌珎珒",6,"珚珛珜珝珟珡珢珣珤珦珨珪珫珬珮珯珰珱珳",4],["ac40","珸",10,"琄琇琈琋琌琍琎琑",8,"琜",5,"琣琤琧琩琫琭琯琱琲琷",4,"琽琾琿瑀瑂",11],["ac80","瑎",6,"瑖瑘瑝瑠",12,"瑮瑯瑱",4,"瑸瑹瑺"],["ad40","瑻瑼瑽瑿璂璄璅璆璈璉璊璌璍璏璑",10,"璝璟",7,"璪",15,"璻",12],["ad80","瓈",9,"瓓",8,"瓝瓟瓡瓥瓧",6,"瓰瓱瓲"],["ae40","瓳瓵瓸",6,"甀甁甂甃甅",7,"甎甐甒甔甕甖甗甛甝甞甠",4,"甦甧甪甮甴甶甹甼甽甿畁畂畃畄畆畇畉畊畍畐畑畒畓畕畖畗畘"],["ae80","畝",7,"畧畨畩畫",6,"畳畵當畷畺",4,"疀疁疂疄疅疇"],["af40","疈疉疊疌疍疎疐疓疕疘疛疜疞疢疦",4,"疭疶疷疺疻疿痀痁痆痋痌痎痏痐痑痓痗痙痚痜痝痟痠痡痥痩痬痭痮痯痲痳痵痶痷痸痺痻痽痾瘂瘄瘆瘇"],["af80","瘈瘉瘋瘍瘎瘏瘑瘒瘓瘔瘖瘚瘜瘝瘞瘡瘣瘧瘨瘬瘮瘯瘱瘲瘶瘷瘹瘺瘻瘽癁療癄"],["b040","癅",6,"癎",5,"癕癗",4,"癝癟癠癡癢癤",6,"癬癭癮癰",7,"癹発發癿皀皁皃皅皉皊皌皍皏皐皒皔皕皗皘皚皛"],["b080","皜",7,"皥",8,"皯皰皳皵",9,"盀盁盃啊阿埃挨哎唉哀皑癌蔼矮艾碍爱隘鞍氨安俺按暗岸胺案肮昂盎凹敖熬翱袄傲奥懊澳芭捌扒叭吧笆八疤巴拔跋靶把耙坝霸罢爸白柏百摆佰败拜稗斑班搬扳般颁板版扮拌伴瓣半办绊邦帮梆榜膀绑棒磅蚌镑傍谤苞胞包褒剥"],["b140","盄盇盉盋盌盓盕盙盚盜盝盞盠",4,"盦",7,"盰盳盵盶盷盺盻盽盿眀眂眃眅眆眊県眎",10,"眛眜眝眞眡眣眤眥眧眪眫"],["b180","眬眮眰",4,"眹眻眽眾眿睂睄睅睆睈",7,"睒",7,"睜薄雹保堡饱宝抱报暴豹鲍爆杯碑悲卑北辈背贝钡倍狈备惫焙被奔苯本笨崩绷甭泵蹦迸逼鼻比鄙笔彼碧蓖蔽毕毙毖币庇痹闭敝弊必辟壁臂避陛鞭边编贬扁便变卞辨辩辫遍标彪膘表鳖憋别瘪彬斌濒滨宾摈兵冰柄丙秉饼炳"],["b240","睝睞睟睠睤睧睩睪睭",11,"睺睻睼瞁瞂瞃瞆",5,"瞏瞐瞓",11,"瞡瞣瞤瞦瞨瞫瞭瞮瞯瞱瞲瞴瞶",4],["b280","瞼瞾矀",12,"矎",8,"矘矙矚矝",4,"矤病并玻菠播拨钵波博勃搏铂箔伯帛舶脖膊渤泊驳捕卜哺补埠不布步簿部怖擦猜裁材才财睬踩采彩菜蔡餐参蚕残惭惨灿苍舱仓沧藏操糙槽曹草厕策侧册测层蹭插叉茬茶查碴搽察岔差诧拆柴豺搀掺蝉馋谗缠铲产阐颤昌猖"],["b340","矦矨矪矯矰矱矲矴矵矷矹矺矻矼砃",5,"砊砋砎砏砐砓砕砙砛砞砠砡砢砤砨砪砫砮砯砱砲砳砵砶砽砿硁硂硃硄硆硈硉硊硋硍硏硑硓硔硘硙硚"],["b380","硛硜硞",11,"硯",7,"硸硹硺硻硽",6,"场尝常长偿肠厂敞畅唱倡超抄钞朝嘲潮巢吵炒车扯撤掣彻澈郴臣辰尘晨忱沉陈趁衬撑称城橙成呈乘程惩澄诚承逞骋秤吃痴持匙池迟弛驰耻齿侈尺赤翅斥炽充冲虫崇宠抽酬畴踌稠愁筹仇绸瞅丑臭初出橱厨躇锄雏滁除楚"],["b440","碄碅碆碈碊碋碏碐碒碔碕碖碙碝碞碠碢碤碦碨",7,"碵碶碷碸確碻碼碽碿磀磂磃磄磆磇磈磌磍磎磏磑磒磓磖磗磘磚",9],["b480","磤磥磦磧磩磪磫磭",4,"磳磵磶磸磹磻",5,"礂礃礄礆",6,"础储矗搐触处揣川穿椽传船喘串疮窗幢床闯创吹炊捶锤垂春椿醇唇淳纯蠢戳绰疵茨磁雌辞慈瓷词此刺赐次聪葱囱匆从丛凑粗醋簇促蹿篡窜摧崔催脆瘁粹淬翠村存寸磋撮搓措挫错搭达答瘩打大呆歹傣戴带殆代贷袋待逮"],["b540","礍",5,"礔",9,"礟",4,"礥",14,"礵",4,"礽礿祂祃祄祅祇祊",8,"祔祕祘祙祡祣"],["b580","祤祦祩祪祫祬祮祰",6,"祹祻",4,"禂禃禆禇禈禉禋禌禍禎禐禑禒怠耽担丹单郸掸胆旦氮但惮淡诞弹蛋当挡党荡档刀捣蹈倒岛祷导到稻悼道盗德得的蹬灯登等瞪凳邓堤低滴迪敌笛狄涤翟嫡抵底地蒂第帝弟递缔颠掂滇碘点典靛垫电佃甸店惦奠淀殿碉叼雕凋刁掉吊钓调跌爹碟蝶迭谍叠"],["b640","禓",6,"禛",11,"禨",10,"禴",4,"禼禿秂秄秅秇秈秊秌秎秏秐秓秔秖秗秙",5,"秠秡秢秥秨秪"],["b680","秬秮秱",6,"秹秺秼秾秿稁稄稅稇稈稉稊稌稏",4,"稕稖稘稙稛稜丁盯叮钉顶鼎锭定订丢东冬董懂动栋侗恫冻洞兜抖斗陡豆逗痘都督毒犊独读堵睹赌杜镀肚度渡妒端短锻段断缎堆兑队对墩吨蹲敦顿囤钝盾遁掇哆多夺垛躲朵跺舵剁惰堕蛾峨鹅俄额讹娥恶厄扼遏鄂饿恩而儿耳尔饵洱二"],["b740","稝稟稡稢稤",14,"稴稵稶稸稺稾穀",5,"穇",9,"穒",4,"穘",16],["b780","穩",6,"穱穲穳穵穻穼穽穾窂窅窇窉窊窋窌窎窏窐窓窔窙窚窛窞窡窢贰发罚筏伐乏阀法珐藩帆番翻樊矾钒繁凡烦反返范贩犯饭泛坊芳方肪房防妨仿访纺放菲非啡飞肥匪诽吠肺废沸费芬酚吩氛分纷坟焚汾粉奋份忿愤粪丰封枫蜂峰锋风疯烽逢冯缝讽奉凤佛否夫敷肤孵扶拂辐幅氟符伏俘服"],["b840","窣窤窧窩窪窫窮",4,"窴",10,"竀",10,"竌",9,"竗竘竚竛竜竝竡竢竤竧",5,"竮竰竱竲竳"],["b880","竴",4,"竻竼竾笀笁笂笅笇笉笌笍笎笐笒笓笖笗笘笚笜笝笟笡笢笣笧笩笭浮涪福袱弗甫抚辅俯釜斧脯腑府腐赴副覆赋复傅付阜父腹负富讣附妇缚咐噶嘎该改概钙盖溉干甘杆柑竿肝赶感秆敢赣冈刚钢缸肛纲岗港杠篙皋高膏羔糕搞镐稿告哥歌搁戈鸽胳疙割革葛格蛤阁隔铬个各给根跟耕更庚羹"],["b940","笯笰笲笴笵笶笷笹笻笽笿",5,"筆筈筊筍筎筓筕筗筙筜筞筟筡筣",10,"筯筰筳筴筶筸筺筼筽筿箁箂箃箄箆",6,"箎箏"],["b980","箑箒箓箖箘箙箚箛箞箟箠箣箤箥箮箯箰箲箳箵箶箷箹",7,"篂篃範埂耿梗工攻功恭龚供躬公宫弓巩汞拱贡共钩勾沟苟狗垢构购够辜菇咕箍估沽孤姑鼓古蛊骨谷股故顾固雇刮瓜剐寡挂褂乖拐怪棺关官冠观管馆罐惯灌贯光广逛瑰规圭硅归龟闺轨鬼诡癸桂柜跪贵刽辊滚棍锅郭国果裹过哈"],["ba40","篅篈築篊篋篍篎篏篐篒篔",4,"篛篜篞篟篠篢篣篤篧篨篩篫篬篭篯篰篲",4,"篸篹篺篻篽篿",7,"簈簉簊簍簎簐",5,"簗簘簙"],["ba80","簚",4,"簠",5,"簨簩簫",12,"簹",5,"籂骸孩海氦亥害骇酣憨邯韩含涵寒函喊罕翰撼捍旱憾悍焊汗汉夯杭航壕嚎豪毫郝好耗号浩呵喝荷菏核禾和何合盒貉阂河涸赫褐鹤贺嘿黑痕很狠恨哼亨横衡恒轰哄烘虹鸿洪宏弘红喉侯猴吼厚候后呼乎忽瑚壶葫胡蝴狐糊湖"],["bb40","籃",9,"籎",36,"籵",5,"籾",9],["bb80","粈粊",6,"粓粔粖粙粚粛粠粡粣粦粧粨粩粫粬粭粯粰粴",4,"粺粻弧虎唬护互沪户花哗华猾滑画划化话槐徊怀淮坏欢环桓还缓换患唤痪豢焕涣宦幻荒慌黄磺蝗簧皇凰惶煌晃幌恍谎灰挥辉徽恢蛔回毁悔慧卉惠晦贿秽会烩汇讳诲绘荤昏婚魂浑混豁活伙火获或惑霍货祸击圾基机畸稽积箕"],["bc40","粿糀糂糃糄糆糉糋糎",6,"糘糚糛糝糞糡",6,"糩",5,"糰",7,"糹糺糼",13,"紋",5],["bc80","紑",14,"紡紣紤紥紦紨紩紪紬紭紮細",6,"肌饥迹激讥鸡姬绩缉吉极棘辑籍集及急疾汲即嫉级挤几脊己蓟技冀季伎祭剂悸济寄寂计记既忌际妓继纪嘉枷夹佳家加荚颊贾甲钾假稼价架驾嫁歼监坚尖笺间煎兼肩艰奸缄茧检柬碱硷拣捡简俭剪减荐槛鉴践贱见键箭件"],["bd40","紷",54,"絯",7],["bd80","絸",32,"健舰剑饯渐溅涧建僵姜将浆江疆蒋桨奖讲匠酱降蕉椒礁焦胶交郊浇骄娇嚼搅铰矫侥脚狡角饺缴绞剿教酵轿较叫窖揭接皆秸街阶截劫节桔杰捷睫竭洁结解姐戒藉芥界借介疥诫届巾筋斤金今津襟紧锦仅谨进靳晋禁近烬浸"],["be40","継",12,"綧",6,"綯",42],["be80","線",32,"尽劲荆兢茎睛晶鲸京惊精粳经井警景颈静境敬镜径痉靖竟竞净炯窘揪究纠玖韭久灸九酒厩救旧臼舅咎就疚鞠拘狙疽居驹菊局咀矩举沮聚拒据巨具距踞锯俱句惧炬剧捐鹃娟倦眷卷绢撅攫抉掘倔爵觉决诀绝均菌钧军君峻"],["bf40","緻",62],["bf80","縺縼",4,"繂",4,"繈",21,"俊竣浚郡骏喀咖卡咯开揩楷凯慨刊堪勘坎砍看康慷糠扛抗亢炕考拷烤靠坷苛柯棵磕颗科壳咳可渴克刻客课肯啃垦恳坑吭空恐孔控抠口扣寇枯哭窟苦酷库裤夸垮挎跨胯块筷侩快宽款匡筐狂框矿眶旷况亏盔岿窥葵奎魁傀"],["c040","繞",35,"纃",23,"纜纝纞"],["c080","纮纴纻纼绖绤绬绹缊缐缞缷缹缻",6,"罃罆",9,"罒罓馈愧溃坤昆捆困括扩廓阔垃拉喇蜡腊辣啦莱来赖蓝婪栏拦篮阑兰澜谰揽览懒缆烂滥琅榔狼廊郎朗浪捞劳牢老佬姥酪烙涝勒乐雷镭蕾磊累儡垒擂肋类泪棱楞冷厘梨犁黎篱狸离漓理李里鲤礼莉荔吏栗丽厉励砾历利傈例俐"],["c140","罖罙罛罜罝罞罠罣",4,"罫罬罭罯罰罳罵罶罷罸罺罻罼罽罿羀羂",7,"羋羍羏",4,"羕",4,"羛羜羠羢羣羥羦羨",6,"羱"],["c180","羳",4,"羺羻羾翀翂翃翄翆翇翈翉翋翍翏",4,"翖翗翙",5,"翢翣痢立粒沥隶力璃哩俩联莲连镰廉怜涟帘敛脸链恋炼练粮凉梁粱良两辆量晾亮谅撩聊僚疗燎寥辽潦了撂镣廖料列裂烈劣猎琳林磷霖临邻鳞淋凛赁吝拎玲菱零龄铃伶羚凌灵陵岭领另令溜琉榴硫馏留刘瘤流柳六龙聋咙笼窿"],["c240","翤翧翨翪翫翬翭翯翲翴",6,"翽翾翿耂耇耈耉耊耎耏耑耓耚耛耝耞耟耡耣耤耫",5,"耲耴耹耺耼耾聀聁聄聅聇聈聉聎聏聐聑聓聕聖聗"],["c280","聙聛",13,"聫",5,"聲",11,"隆垄拢陇楼娄搂篓漏陋芦卢颅庐炉掳卤虏鲁麓碌露路赂鹿潞禄录陆戮驴吕铝侣旅履屡缕虑氯律率滤绿峦挛孪滦卵乱掠略抡轮伦仑沦纶论萝螺罗逻锣箩骡裸落洛骆络妈麻玛码蚂马骂嘛吗埋买麦卖迈脉瞒馒蛮满蔓曼慢漫"],["c340","聾肁肂肅肈肊肍",5,"肔肕肗肙肞肣肦肧肨肬肰肳肵肶肸肹肻胅胇",4,"胏",6,"胘胟胠胢胣胦胮胵胷胹胻胾胿脀脁脃脄脅脇脈脋"],["c380","脌脕脗脙脛脜脝脟",12,"脭脮脰脳脴脵脷脹",4,"脿谩芒茫盲氓忙莽猫茅锚毛矛铆卯茂冒帽貌贸么玫枚梅酶霉煤没眉媒镁每美昧寐妹媚门闷们萌蒙檬盟锰猛梦孟眯醚靡糜迷谜弥米秘觅泌蜜密幂棉眠绵冕免勉娩缅面苗描瞄藐秒渺庙妙蔑灭民抿皿敏悯闽明螟鸣铭名命谬摸"],["c440","腀",5,"腇腉腍腎腏腒腖腗腘腛",4,"腡腢腣腤腦腨腪腫腬腯腲腳腵腶腷腸膁膃",4,"膉膋膌膍膎膐膒",5,"膙膚膞",4,"膤膥"],["c480","膧膩膫",7,"膴",5,"膼膽膾膿臄臅臇臈臉臋臍",6,"摹蘑模膜磨摩魔抹末莫墨默沫漠寞陌谋牟某拇牡亩姆母墓暮幕募慕木目睦牧穆拿哪呐钠那娜纳氖乃奶耐奈南男难囊挠脑恼闹淖呢馁内嫩能妮霓倪泥尼拟你匿腻逆溺蔫拈年碾撵捻念娘酿鸟尿捏聂孽啮镊镍涅您柠狞凝宁"],["c540","臔",14,"臤臥臦臨臩臫臮",4,"臵",5,"臽臿舃與",4,"舎舏舑舓舕",5,"舝舠舤舥舦舧舩舮舲舺舼舽舿"],["c580","艀艁艂艃艅艆艈艊艌艍艎艐",7,"艙艛艜艝艞艠",7,"艩拧泞牛扭钮纽脓浓农弄奴努怒女暖虐疟挪懦糯诺哦欧鸥殴藕呕偶沤啪趴爬帕怕琶拍排牌徘湃派攀潘盘磐盼畔判叛乓庞旁耪胖抛咆刨炮袍跑泡呸胚培裴赔陪配佩沛喷盆砰抨烹澎彭蓬棚硼篷膨朋鹏捧碰坯砒霹批披劈琵毗"],["c640","艪艫艬艭艱艵艶艷艸艻艼芀芁芃芅芆芇芉芌芐芓芔芕芖芚芛芞芠芢芣芧芲芵芶芺芻芼芿苀苂苃苅苆苉苐苖苙苚苝苢苧苨苩苪苬苭苮苰苲苳苵苶苸"],["c680","苺苼",4,"茊茋茍茐茒茓茖茘茙茝",9,"茩茪茮茰茲茷茻茽啤脾疲皮匹痞僻屁譬篇偏片骗飘漂瓢票撇瞥拼频贫品聘乒坪苹萍平凭瓶评屏坡泼颇婆破魄迫粕剖扑铺仆莆葡菩蒲埔朴圃普浦谱曝瀑期欺栖戚妻七凄漆柒沏其棋奇歧畦崎脐齐旗祈祁骑起岂乞企启契砌器气迄弃汽泣讫掐"],["c740","茾茿荁荂荄荅荈荊",4,"荓荕",4,"荝荢荰",6,"荹荺荾",6,"莇莈莊莋莌莍莏莐莑莔莕莖莗莙莚莝莟莡",6,"莬莭莮"],["c780","莯莵莻莾莿菂菃菄菆菈菉菋菍菎菐菑菒菓菕菗菙菚菛菞菢菣菤菦菧菨菫菬菭恰洽牵扦钎铅千迁签仟谦乾黔钱钳前潜遣浅谴堑嵌欠歉枪呛腔羌墙蔷强抢橇锹敲悄桥瞧乔侨巧鞘撬翘峭俏窍切茄且怯窃钦侵亲秦琴勤芹擒禽寝沁青轻氢倾卿清擎晴氰情顷请庆琼穷秋丘邱球求囚酋泅趋区蛆曲躯屈驱渠"],["c840","菮華菳",4,"菺菻菼菾菿萀萂萅萇萈萉萊萐萒",5,"萙萚萛萞",5,"萩",7,"萲",5,"萹萺萻萾",7,"葇葈葉"],["c880","葊",6,"葒",4,"葘葝葞葟葠葢葤",4,"葪葮葯葰葲葴葷葹葻葼取娶龋趣去圈颧权醛泉全痊拳犬券劝缺炔瘸却鹊榷确雀裙群然燃冉染瓤壤攘嚷让饶扰绕惹热壬仁人忍韧任认刃妊纫扔仍日戎茸蓉荣融熔溶容绒冗揉柔肉茹蠕儒孺如辱乳汝入褥软阮蕊瑞锐闰润若弱撒洒萨腮鳃塞赛三叁"],["c940","葽",4,"蒃蒄蒅蒆蒊蒍蒏",7,"蒘蒚蒛蒝蒞蒟蒠蒢",12,"蒰蒱蒳蒵蒶蒷蒻蒼蒾蓀蓂蓃蓅蓆蓇蓈蓋蓌蓎蓏蓒蓔蓕蓗"],["c980","蓘",4,"蓞蓡蓢蓤蓧",4,"蓭蓮蓯蓱",10,"蓽蓾蔀蔁蔂伞散桑嗓丧搔骚扫嫂瑟色涩森僧莎砂杀刹沙纱傻啥煞筛晒珊苫杉山删煽衫闪陕擅赡膳善汕扇缮墒伤商赏晌上尚裳梢捎稍烧芍勺韶少哨邵绍奢赊蛇舌舍赦摄射慑涉社设砷申呻伸身深娠绅神沈审婶甚肾慎渗声生甥牲升绳"],["ca40","蔃",8,"蔍蔎蔏蔐蔒蔔蔕蔖蔘蔙蔛蔜蔝蔞蔠蔢",8,"蔭",9,"蔾",4,"蕄蕅蕆蕇蕋",10],["ca80","蕗蕘蕚蕛蕜蕝蕟",4,"蕥蕦蕧蕩",8,"蕳蕵蕶蕷蕸蕼蕽蕿薀薁省盛剩胜圣师失狮施湿诗尸虱十石拾时什食蚀实识史矢使屎驶始式示士世柿事拭誓逝势是嗜噬适仕侍释饰氏市恃室视试收手首守寿授售受瘦兽蔬枢梳殊抒输叔舒淑疏书赎孰熟薯暑曙署蜀黍鼠属术述树束戍竖墅庶数漱"],["cb40","薂薃薆薈",6,"薐",10,"薝",6,"薥薦薧薩薫薬薭薱",5,"薸薺",6,"藂",6,"藊",4,"藑藒"],["cb80","藔藖",5,"藝",6,"藥藦藧藨藪",14,"恕刷耍摔衰甩帅栓拴霜双爽谁水睡税吮瞬顺舜说硕朔烁斯撕嘶思私司丝死肆寺嗣四伺似饲巳松耸怂颂送宋讼诵搜艘擞嗽苏酥俗素速粟僳塑溯宿诉肃酸蒜算虽隋随绥髓碎岁穗遂隧祟孙损笋蓑梭唆缩琐索锁所塌他它她塔"],["cc40","藹藺藼藽藾蘀",4,"蘆",10,"蘒蘓蘔蘕蘗",15,"蘨蘪",13,"蘹蘺蘻蘽蘾蘿虀"],["cc80","虁",11,"虒虓處",4,"虛虜虝號虠虡虣",7,"獭挞蹋踏胎苔抬台泰酞太态汰坍摊贪瘫滩坛檀痰潭谭谈坦毯袒碳探叹炭汤塘搪堂棠膛唐糖倘躺淌趟烫掏涛滔绦萄桃逃淘陶讨套特藤腾疼誊梯剔踢锑提题蹄啼体替嚏惕涕剃屉天添填田甜恬舔腆挑条迢眺跳贴铁帖厅听烃"],["cd40","虭虯虰虲",6,"蚃",6,"蚎",4,"蚔蚖",5,"蚞",4,"蚥蚦蚫蚭蚮蚲蚳蚷蚸蚹蚻",4,"蛁蛂蛃蛅蛈蛌蛍蛒蛓蛕蛖蛗蛚蛜"],["cd80","蛝蛠蛡蛢蛣蛥蛦蛧蛨蛪蛫蛬蛯蛵蛶蛷蛺蛻蛼蛽蛿蜁蜄蜅蜆蜋蜌蜎蜏蜐蜑蜔蜖汀廷停亭庭挺艇通桐酮瞳同铜彤童桶捅筒统痛偷投头透凸秃突图徒途涂屠土吐兔湍团推颓腿蜕褪退吞屯臀拖托脱鸵陀驮驼椭妥拓唾挖哇蛙洼娃瓦袜歪外豌弯湾玩顽丸烷完碗挽晚皖惋宛婉万腕汪王亡枉网往旺望忘妄威"],["ce40","蜙蜛蜝蜟蜠蜤蜦蜧蜨蜪蜫蜬蜭蜯蜰蜲蜳蜵蜶蜸蜹蜺蜼蜽蝀",6,"蝊蝋蝍蝏蝐蝑蝒蝔蝕蝖蝘蝚",5,"蝡蝢蝦",7,"蝯蝱蝲蝳蝵"],["ce80","蝷蝸蝹蝺蝿螀螁螄螆螇螉螊螌螎",4,"螔螕螖螘",6,"螠",4,"巍微危韦违桅围唯惟为潍维苇萎委伟伪尾纬未蔚味畏胃喂魏位渭谓尉慰卫瘟温蚊文闻纹吻稳紊问嗡翁瓮挝蜗涡窝我斡卧握沃巫呜钨乌污诬屋无芜梧吾吴毋武五捂午舞伍侮坞戊雾晤物勿务悟误昔熙析西硒矽晰嘻吸锡牺"],["cf40","螥螦螧螩螪螮螰螱螲螴螶螷螸螹螻螼螾螿蟁",4,"蟇蟈蟉蟌",4,"蟔",6,"蟜蟝蟞蟟蟡蟢蟣蟤蟦蟧蟨蟩蟫蟬蟭蟯",9],["cf80","蟺蟻蟼蟽蟿蠀蠁蠂蠄",5,"蠋",7,"蠔蠗蠘蠙蠚蠜",4,"蠣稀息希悉膝夕惜熄烯溪汐犀檄袭席习媳喜铣洗系隙戏细瞎虾匣霞辖暇峡侠狭下厦夏吓掀锨先仙鲜纤咸贤衔舷闲涎弦嫌显险现献县腺馅羡宪陷限线相厢镶香箱襄湘乡翔祥详想响享项巷橡像向象萧硝霄削哮嚣销消宵淆晓"],["d040","蠤",13,"蠳",5,"蠺蠻蠽蠾蠿衁衂衃衆",5,"衎",5,"衕衖衘衚",6,"衦衧衪衭衯衱衳衴衵衶衸衹衺"],["d080","衻衼袀袃袆袇袉袊袌袎袏袐袑袓袔袕袗",4,"袝",4,"袣袥",5,"小孝校肖啸笑效楔些歇蝎鞋协挟携邪斜胁谐写械卸蟹懈泄泻谢屑薪芯锌欣辛新忻心信衅星腥猩惺兴刑型形邢行醒幸杏性姓兄凶胸匈汹雄熊休修羞朽嗅锈秀袖绣墟戌需虚嘘须徐许蓄酗叙旭序畜恤絮婿绪续轩喧宣悬旋玄"],["d140","袬袮袯袰袲",4,"袸袹袺袻袽袾袿裀裃裄裇裈裊裋裌裍裏裐裑裓裖裗裚",4,"裠裡裦裧裩",6,"裲裵裶裷裺裻製裿褀褁褃",5],["d180","褉褋",4,"褑褔",4,"褜",4,"褢褣褤褦褧褨褩褬褭褮褯褱褲褳褵褷选癣眩绚靴薛学穴雪血勋熏循旬询寻驯巡殉汛训讯逊迅压押鸦鸭呀丫芽牙蚜崖衙涯雅哑亚讶焉咽阉烟淹盐严研蜒岩延言颜阎炎沿奄掩眼衍演艳堰燕厌砚雁唁彦焰宴谚验殃央鸯秧杨扬佯疡羊洋阳氧仰痒养样漾邀腰妖瑶"],["d240","褸",8,"襂襃襅",24,"襠",5,"襧",19,"襼"],["d280","襽襾覀覂覄覅覇",26,"摇尧遥窑谣姚咬舀药要耀椰噎耶爷野冶也页掖业叶曳腋夜液一壹医揖铱依伊衣颐夷遗移仪胰疑沂宜姨彝椅蚁倚已乙矣以艺抑易邑屹亿役臆逸肄疫亦裔意毅忆义益溢诣议谊译异翼翌绎茵荫因殷音阴姻吟银淫寅饮尹引隐"],["d340","覢",30,"觃觍觓觔觕觗觘觙觛觝觟觠觡觢觤觧觨觩觪觬觭觮觰觱觲觴",6],["d380","觻",4,"訁",5,"計",21,"印英樱婴鹰应缨莹萤营荧蝇迎赢盈影颖硬映哟拥佣臃痈庸雍踊蛹咏泳涌永恿勇用幽优悠忧尤由邮铀犹油游酉有友右佑釉诱又幼迂淤于盂榆虞愚舆余俞逾鱼愉渝渔隅予娱雨与屿禹宇语羽玉域芋郁吁遇喻峪御愈欲狱育誉"],["d440","訞",31,"訿",8,"詉",21],["d480","詟",25,"詺",6,"浴寓裕预豫驭鸳渊冤元垣袁原援辕园员圆猿源缘远苑愿怨院曰约越跃钥岳粤月悦阅耘云郧匀陨允运蕴酝晕韵孕匝砸杂栽哉灾宰载再在咱攒暂赞赃脏葬遭糟凿藻枣早澡蚤躁噪造皂灶燥责择则泽贼怎增憎曾赠扎喳渣札轧"],["d540","誁",7,"誋",7,"誔",46],["d580","諃",32,"铡闸眨栅榨咋乍炸诈摘斋宅窄债寨瞻毡詹粘沾盏斩辗崭展蘸栈占战站湛绽樟章彰漳张掌涨杖丈帐账仗胀瘴障招昭找沼赵照罩兆肇召遮折哲蛰辙者锗蔗这浙珍斟真甄砧臻贞针侦枕疹诊震振镇阵蒸挣睁征狰争怔整拯正政"],["d640","諤",34,"謈",27],["d680","謤謥謧",30,"帧症郑证芝枝支吱蜘知肢脂汁之织职直植殖执值侄址指止趾只旨纸志挚掷至致置帜峙制智秩稚质炙痔滞治窒中盅忠钟衷终种肿重仲众舟周州洲诌粥轴肘帚咒皱宙昼骤珠株蛛朱猪诸诛逐竹烛煮拄瞩嘱主著柱助蛀贮铸筑"],["d740","譆",31,"譧",4,"譭",25],["d780","讇",24,"讬讱讻诇诐诪谉谞住注祝驻抓爪拽专砖转撰赚篆桩庄装妆撞壮状椎锥追赘坠缀谆准捉拙卓桌琢茁酌啄着灼浊兹咨资姿滋淄孜紫仔籽滓子自渍字鬃棕踪宗综总纵邹走奏揍租足卒族祖诅阻组钻纂嘴醉最罪尊遵昨左佐柞做作坐座"],["d840","谸",8,"豂豃豄豅豈豊豋豍",7,"豖豗豘豙豛",5,"豣",6,"豬",6,"豴豵豶豷豻",6,"貃貄貆貇"],["d880","貈貋貍",6,"貕貖貗貙",20,"亍丌兀丐廿卅丕亘丞鬲孬噩丨禺丿匕乇夭爻卮氐囟胤馗毓睾鼗丶亟鼐乜乩亓芈孛啬嘏仄厍厝厣厥厮靥赝匚叵匦匮匾赜卦卣刂刈刎刭刳刿剀剌剞剡剜蒯剽劂劁劐劓冂罔亻仃仉仂仨仡仫仞伛仳伢佤仵伥伧伉伫佞佧攸佚佝"],["d940","貮",62],["d980","賭",32,"佟佗伲伽佶佴侑侉侃侏佾佻侪佼侬侔俦俨俪俅俚俣俜俑俟俸倩偌俳倬倏倮倭俾倜倌倥倨偾偃偕偈偎偬偻傥傧傩傺僖儆僭僬僦僮儇儋仝氽佘佥俎龠汆籴兮巽黉馘冁夔勹匍訇匐凫夙兕亠兖亳衮袤亵脔裒禀嬴蠃羸冫冱冽冼"],["da40","贎",14,"贠赑赒赗赟赥赨赩赪赬赮赯赱赲赸",8,"趂趃趆趇趈趉趌",4,"趒趓趕",9,"趠趡"],["da80","趢趤",12,"趲趶趷趹趻趽跀跁跂跅跇跈跉跊跍跐跒跓跔凇冖冢冥讠讦讧讪讴讵讷诂诃诋诏诎诒诓诔诖诘诙诜诟诠诤诨诩诮诰诳诶诹诼诿谀谂谄谇谌谏谑谒谔谕谖谙谛谘谝谟谠谡谥谧谪谫谮谯谲谳谵谶卩卺阝阢阡阱阪阽阼陂陉陔陟陧陬陲陴隈隍隗隰邗邛邝邙邬邡邴邳邶邺"],["db40","跕跘跙跜跠跡跢跥跦跧跩跭跮跰跱跲跴跶跼跾",6,"踆踇踈踋踍踎踐踑踒踓踕",7,"踠踡踤",4,"踫踭踰踲踳踴踶踷踸踻踼踾"],["db80","踿蹃蹅蹆蹌",4,"蹓",5,"蹚",11,"蹧蹨蹪蹫蹮蹱邸邰郏郅邾郐郄郇郓郦郢郜郗郛郫郯郾鄄鄢鄞鄣鄱鄯鄹酃酆刍奂劢劬劭劾哿勐勖勰叟燮矍廴凵凼鬯厶弁畚巯坌垩垡塾墼壅壑圩圬圪圳圹圮圯坜圻坂坩垅坫垆坼坻坨坭坶坳垭垤垌垲埏垧垴垓垠埕埘埚埙埒垸埴埯埸埤埝"],["dc40","蹳蹵蹷",4,"蹽蹾躀躂躃躄躆躈",6,"躑躒躓躕",6,"躝躟",11,"躭躮躰躱躳",6,"躻",7],["dc80","軃",10,"軏",21,"堋堍埽埭堀堞堙塄堠塥塬墁墉墚墀馨鼙懿艹艽艿芏芊芨芄芎芑芗芙芫芸芾芰苈苊苣芘芷芮苋苌苁芩芴芡芪芟苄苎芤苡茉苷苤茏茇苜苴苒苘茌苻苓茑茚茆茔茕苠苕茜荑荛荜茈莒茼茴茱莛荞茯荏荇荃荟荀茗荠茭茺茳荦荥"],["dd40","軥",62],["dd80","輤",32,"荨茛荩荬荪荭荮莰荸莳莴莠莪莓莜莅荼莶莩荽莸荻莘莞莨莺莼菁萁菥菘堇萘萋菝菽菖萜萸萑萆菔菟萏萃菸菹菪菅菀萦菰菡葜葑葚葙葳蒇蒈葺蒉葸萼葆葩葶蒌蒎萱葭蓁蓍蓐蓦蒽蓓蓊蒿蒺蓠蒡蒹蒴蒗蓥蓣蔌甍蔸蓰蔹蔟蔺"],["de40","轅",32,"轪辀辌辒辝辠辡辢辤辥辦辧辪辬辭辮辯農辳辴辵辷辸辺辻込辿迀迃迆"],["de80","迉",4,"迏迒迖迗迚迠迡迣迧迬迯迱迲迴迵迶迺迻迼迾迿逇逈逌逎逓逕逘蕖蔻蓿蓼蕙蕈蕨蕤蕞蕺瞢蕃蕲蕻薤薨薇薏蕹薮薜薅薹薷薰藓藁藜藿蘧蘅蘩蘖蘼廾弈夼奁耷奕奚奘匏尢尥尬尴扌扪抟抻拊拚拗拮挢拶挹捋捃掭揶捱捺掎掴捭掬掊捩掮掼揲揸揠揿揄揞揎摒揆掾摅摁搋搛搠搌搦搡摞撄摭撖"],["df40","這逜連逤逥逧",5,"逰",4,"逷逹逺逽逿遀遃遅遆遈",4,"過達違遖遙遚遜",5,"遤遦遧適遪遫遬遯",4,"遶",6,"遾邁"],["df80","還邅邆邇邉邊邌",4,"邒邔邖邘邚邜邞邟邠邤邥邧邨邩邫邭邲邷邼邽邿郀摺撷撸撙撺擀擐擗擤擢攉攥攮弋忒甙弑卟叱叽叩叨叻吒吖吆呋呒呓呔呖呃吡呗呙吣吲咂咔呷呱呤咚咛咄呶呦咝哐咭哂咴哒咧咦哓哔呲咣哕咻咿哌哙哚哜咩咪咤哝哏哞唛哧唠哽唔哳唢唣唏唑唧唪啧喏喵啉啭啁啕唿啐唼"],["e040","郂郃郆郈郉郋郌郍郒郔郕郖郘郙郚郞郟郠郣郤郥郩郪郬郮郰郱郲郳郵郶郷郹郺郻郼郿鄀鄁鄃鄅",19,"鄚鄛鄜"],["e080","鄝鄟鄠鄡鄤",10,"鄰鄲",6,"鄺",8,"酄唷啖啵啶啷唳唰啜喋嗒喃喱喹喈喁喟啾嗖喑啻嗟喽喾喔喙嗪嗷嗉嘟嗑嗫嗬嗔嗦嗝嗄嗯嗥嗲嗳嗌嗍嗨嗵嗤辔嘞嘈嘌嘁嘤嘣嗾嘀嘧嘭噘嘹噗嘬噍噢噙噜噌噔嚆噤噱噫噻噼嚅嚓嚯囔囗囝囡囵囫囹囿圄圊圉圜帏帙帔帑帱帻帼"],["e140","酅酇酈酑酓酔酕酖酘酙酛酜酟酠酦酧酨酫酭酳酺酻酼醀",4,"醆醈醊醎醏醓",6,"醜",5,"醤",5,"醫醬醰醱醲醳醶醷醸醹醻"],["e180","醼",10,"釈釋釐釒",9,"針",8,"帷幄幔幛幞幡岌屺岍岐岖岈岘岙岑岚岜岵岢岽岬岫岱岣峁岷峄峒峤峋峥崂崃崧崦崮崤崞崆崛嵘崾崴崽嵬嵛嵯嵝嵫嵋嵊嵩嵴嶂嶙嶝豳嶷巅彳彷徂徇徉後徕徙徜徨徭徵徼衢彡犭犰犴犷犸狃狁狎狍狒狨狯狩狲狴狷猁狳猃狺"],["e240","釦",62],["e280","鈥",32,"狻猗猓猡猊猞猝猕猢猹猥猬猸猱獐獍獗獠獬獯獾舛夥飧夤夂饣饧",5,"饴饷饽馀馄馇馊馍馐馑馓馔馕庀庑庋庖庥庠庹庵庾庳赓廒廑廛廨廪膺忄忉忖忏怃忮怄忡忤忾怅怆忪忭忸怙怵怦怛怏怍怩怫怊怿怡恸恹恻恺恂"],["e340","鉆",45,"鉵",16],["e380","銆",7,"銏",24,"恪恽悖悚悭悝悃悒悌悛惬悻悱惝惘惆惚悴愠愦愕愣惴愀愎愫慊慵憬憔憧憷懔懵忝隳闩闫闱闳闵闶闼闾阃阄阆阈阊阋阌阍阏阒阕阖阗阙阚丬爿戕氵汔汜汊沣沅沐沔沌汨汩汴汶沆沩泐泔沭泷泸泱泗沲泠泖泺泫泮沱泓泯泾"],["e440","銨",5,"銯",24,"鋉",31],["e480","鋩",32,"洹洧洌浃浈洇洄洙洎洫浍洮洵洚浏浒浔洳涑浯涞涠浞涓涔浜浠浼浣渚淇淅淞渎涿淠渑淦淝淙渖涫渌涮渫湮湎湫溲湟溆湓湔渲渥湄滟溱溘滠漭滢溥溧溽溻溷滗溴滏溏滂溟潢潆潇漤漕滹漯漶潋潴漪漉漩澉澍澌潸潲潼潺濑"],["e540","錊",51,"錿",10],["e580","鍊",31,"鍫濉澧澹澶濂濡濮濞濠濯瀚瀣瀛瀹瀵灏灞宀宄宕宓宥宸甯骞搴寤寮褰寰蹇謇辶迓迕迥迮迤迩迦迳迨逅逄逋逦逑逍逖逡逵逶逭逯遄遑遒遐遨遘遢遛暹遴遽邂邈邃邋彐彗彖彘尻咫屐屙孱屣屦羼弪弩弭艴弼鬻屮妁妃妍妩妪妣"],["e640","鍬",34,"鎐",27],["e680","鎬",29,"鏋鏌鏍妗姊妫妞妤姒妲妯姗妾娅娆姝娈姣姘姹娌娉娲娴娑娣娓婀婧婊婕娼婢婵胬媪媛婷婺媾嫫媲嫒嫔媸嫠嫣嫱嫖嫦嫘嫜嬉嬗嬖嬲嬷孀尕尜孚孥孳孑孓孢驵驷驸驺驿驽骀骁骅骈骊骐骒骓骖骘骛骜骝骟骠骢骣骥骧纟纡纣纥纨纩"],["e740","鏎",7,"鏗",54],["e780","鐎",32,"纭纰纾绀绁绂绉绋绌绐绔绗绛绠绡绨绫绮绯绱绲缍绶绺绻绾缁缂缃缇缈缋缌缏缑缒缗缙缜缛缟缡",6,"缪缫缬缭缯",4,"缵幺畿巛甾邕玎玑玮玢玟珏珂珑玷玳珀珉珈珥珙顼琊珩珧珞玺珲琏琪瑛琦琥琨琰琮琬"],["e840","鐯",14,"鐿",43,"鑬鑭鑮鑯"],["e880","鑰",20,"钑钖钘铇铏铓铔铚铦铻锜锠琛琚瑁瑜瑗瑕瑙瑷瑭瑾璜璎璀璁璇璋璞璨璩璐璧瓒璺韪韫韬杌杓杞杈杩枥枇杪杳枘枧杵枨枞枭枋杷杼柰栉柘栊柩枰栌柙枵柚枳柝栀柃枸柢栎柁柽栲栳桠桡桎桢桄桤梃栝桕桦桁桧桀栾桊桉栩梵梏桴桷梓桫棂楮棼椟椠棹"],["e940","锧锳锽镃镈镋镕镚镠镮镴镵長",7,"門",42],["e980","閫",32,"椤棰椋椁楗棣椐楱椹楠楂楝榄楫榀榘楸椴槌榇榈槎榉楦楣楹榛榧榻榫榭槔榱槁槊槟榕槠榍槿樯槭樗樘橥槲橄樾檠橐橛樵檎橹樽樨橘橼檑檐檩檗檫猷獒殁殂殇殄殒殓殍殚殛殡殪轫轭轱轲轳轵轶轸轷轹轺轼轾辁辂辄辇辋"],["ea40","闌",27,"闬闿阇阓阘阛阞阠阣",6,"阫阬阭阯阰阷阸阹阺阾陁陃陊陎陏陑陒陓陖陗"],["ea80","陘陙陚陜陝陞陠陣陥陦陫陭",4,"陳陸",12,"隇隉隊辍辎辏辘辚軎戋戗戛戟戢戡戥戤戬臧瓯瓴瓿甏甑甓攴旮旯旰昊昙杲昃昕昀炅曷昝昴昱昶昵耆晟晔晁晏晖晡晗晷暄暌暧暝暾曛曜曦曩贲贳贶贻贽赀赅赆赈赉赇赍赕赙觇觊觋觌觎觏觐觑牮犟牝牦牯牾牿犄犋犍犏犒挈挲掰"],["eb40","隌階隑隒隓隕隖隚際隝",9,"隨",7,"隱隲隴隵隷隸隺隻隿雂雃雈雊雋雐雑雓雔雖",9,"雡",6,"雫"],["eb80","雬雭雮雰雱雲雴雵雸雺電雼雽雿霂霃霅霊霋霌霐霑霒霔霕霗",4,"霝霟霠搿擘耄毪毳毽毵毹氅氇氆氍氕氘氙氚氡氩氤氪氲攵敕敫牍牒牖爰虢刖肟肜肓肼朊肽肱肫肭肴肷胧胨胩胪胛胂胄胙胍胗朐胝胫胱胴胭脍脎胲胼朕脒豚脶脞脬脘脲腈腌腓腴腙腚腱腠腩腼腽腭腧塍媵膈膂膑滕膣膪臌朦臊膻"],["ec40","霡",8,"霫霬霮霯霱霳",4,"霺霻霼霽霿",18,"靔靕靗靘靚靜靝靟靣靤靦靧靨靪",7],["ec80","靲靵靷",4,"靽",7,"鞆",4,"鞌鞎鞏鞐鞓鞕鞖鞗鞙",4,"臁膦欤欷欹歃歆歙飑飒飓飕飙飚殳彀毂觳斐齑斓於旆旄旃旌旎旒旖炀炜炖炝炻烀炷炫炱烨烊焐焓焖焯焱煳煜煨煅煲煊煸煺熘熳熵熨熠燠燔燧燹爝爨灬焘煦熹戾戽扃扈扉礻祀祆祉祛祜祓祚祢祗祠祯祧祺禅禊禚禧禳忑忐"],["ed40","鞞鞟鞡鞢鞤",6,"鞬鞮鞰鞱鞳鞵",46],["ed80","韤韥韨韮",4,"韴韷",23,"怼恝恚恧恁恙恣悫愆愍慝憩憝懋懑戆肀聿沓泶淼矶矸砀砉砗砘砑斫砭砜砝砹砺砻砟砼砥砬砣砩硎硭硖硗砦硐硇硌硪碛碓碚碇碜碡碣碲碹碥磔磙磉磬磲礅磴礓礤礞礴龛黹黻黼盱眄眍盹眇眈眚眢眙眭眦眵眸睐睑睇睃睚睨"],["ee40","頏",62],["ee80","顎",32,"睢睥睿瞍睽瞀瞌瞑瞟瞠瞰瞵瞽町畀畎畋畈畛畲畹疃罘罡罟詈罨罴罱罹羁罾盍盥蠲钅钆钇钋钊钌钍钏钐钔钗钕钚钛钜钣钤钫钪钭钬钯钰钲钴钶",4,"钼钽钿铄铈",6,"铐铑铒铕铖铗铙铘铛铞铟铠铢铤铥铧铨铪"],["ef40","顯",5,"颋颎颒颕颙颣風",37,"飏飐飔飖飗飛飜飝飠",4],["ef80","飥飦飩",30,"铩铫铮铯铳铴铵铷铹铼铽铿锃锂锆锇锉锊锍锎锏锒",4,"锘锛锝锞锟锢锪锫锩锬锱锲锴锶锷锸锼锾锿镂锵镄镅镆镉镌镎镏镒镓镔镖镗镘镙镛镞镟镝镡镢镤",8,"镯镱镲镳锺矧矬雉秕秭秣秫稆嵇稃稂稞稔"],["f040","餈",4,"餎餏餑",28,"餯",26],["f080","饊",9,"饖",12,"饤饦饳饸饹饻饾馂馃馉稹稷穑黏馥穰皈皎皓皙皤瓞瓠甬鸠鸢鸨",4,"鸲鸱鸶鸸鸷鸹鸺鸾鹁鹂鹄鹆鹇鹈鹉鹋鹌鹎鹑鹕鹗鹚鹛鹜鹞鹣鹦",6,"鹱鹭鹳疒疔疖疠疝疬疣疳疴疸痄疱疰痃痂痖痍痣痨痦痤痫痧瘃痱痼痿瘐瘀瘅瘌瘗瘊瘥瘘瘕瘙"],["f140","馌馎馚",10,"馦馧馩",47],["f180","駙",32,"瘛瘼瘢瘠癀瘭瘰瘿瘵癃瘾瘳癍癞癔癜癖癫癯翊竦穸穹窀窆窈窕窦窠窬窨窭窳衤衩衲衽衿袂袢裆袷袼裉裢裎裣裥裱褚裼裨裾裰褡褙褓褛褊褴褫褶襁襦襻疋胥皲皴矜耒耔耖耜耠耢耥耦耧耩耨耱耋耵聃聆聍聒聩聱覃顸颀颃"],["f240","駺",62],["f280","騹",32,"颉颌颍颏颔颚颛颞颟颡颢颥颦虍虔虬虮虿虺虼虻蚨蚍蚋蚬蚝蚧蚣蚪蚓蚩蚶蛄蚵蛎蚰蚺蚱蚯蛉蛏蚴蛩蛱蛲蛭蛳蛐蜓蛞蛴蛟蛘蛑蜃蜇蛸蜈蜊蜍蜉蜣蜻蜞蜥蜮蜚蜾蝈蜴蜱蜩蜷蜿螂蜢蝽蝾蝻蝠蝰蝌蝮螋蝓蝣蝼蝤蝙蝥螓螯螨蟒"],["f340","驚",17,"驲骃骉骍骎骔骕骙骦骩",6,"骲骳骴骵骹骻骽骾骿髃髄髆",4,"髍髎髏髐髒體髕髖髗髙髚髛髜"],["f380","髝髞髠髢髣髤髥髧髨髩髪髬髮髰",8,"髺髼",6,"鬄鬅鬆蟆螈螅螭螗螃螫蟥螬螵螳蟋蟓螽蟑蟀蟊蟛蟪蟠蟮蠖蠓蟾蠊蠛蠡蠹蠼缶罂罄罅舐竺竽笈笃笄笕笊笫笏筇笸笪笙笮笱笠笥笤笳笾笞筘筚筅筵筌筝筠筮筻筢筲筱箐箦箧箸箬箝箨箅箪箜箢箫箴篑篁篌篝篚篥篦篪簌篾篼簏簖簋"],["f440","鬇鬉",5,"鬐鬑鬒鬔",10,"鬠鬡鬢鬤",10,"鬰鬱鬳",7,"鬽鬾鬿魀魆魊魋魌魎魐魒魓魕",5],["f480","魛",32,"簟簪簦簸籁籀臾舁舂舄臬衄舡舢舣舭舯舨舫舸舻舳舴舾艄艉艋艏艚艟艨衾袅袈裘裟襞羝羟羧羯羰羲籼敉粑粝粜粞粢粲粼粽糁糇糌糍糈糅糗糨艮暨羿翎翕翥翡翦翩翮翳糸絷綦綮繇纛麸麴赳趄趔趑趱赧赭豇豉酊酐酎酏酤"],["f540","魼",62],["f580","鮻",32,"酢酡酰酩酯酽酾酲酴酹醌醅醐醍醑醢醣醪醭醮醯醵醴醺豕鹾趸跫踅蹙蹩趵趿趼趺跄跖跗跚跞跎跏跛跆跬跷跸跣跹跻跤踉跽踔踝踟踬踮踣踯踺蹀踹踵踽踱蹉蹁蹂蹑蹒蹊蹰蹶蹼蹯蹴躅躏躔躐躜躞豸貂貊貅貘貔斛觖觞觚觜"],["f640","鯜",62],["f680","鰛",32,"觥觫觯訾謦靓雩雳雯霆霁霈霏霎霪霭霰霾龀龃龅",5,"龌黾鼋鼍隹隼隽雎雒瞿雠銎銮鋈錾鍪鏊鎏鐾鑫鱿鲂鲅鲆鲇鲈稣鲋鲎鲐鲑鲒鲔鲕鲚鲛鲞",5,"鲥",4,"鲫鲭鲮鲰",7,"鲺鲻鲼鲽鳄鳅鳆鳇鳊鳋"],["f740","鰼",62],["f780","鱻鱽鱾鲀鲃鲄鲉鲊鲌鲏鲓鲖鲗鲘鲙鲝鲪鲬鲯鲹鲾",4,"鳈鳉鳑鳒鳚鳛鳠鳡鳌",4,"鳓鳔鳕鳗鳘鳙鳜鳝鳟鳢靼鞅鞑鞒鞔鞯鞫鞣鞲鞴骱骰骷鹘骶骺骼髁髀髅髂髋髌髑魅魃魇魉魈魍魑飨餍餮饕饔髟髡髦髯髫髻髭髹鬈鬏鬓鬟鬣麽麾縻麂麇麈麋麒鏖麝麟黛黜黝黠黟黢黩黧黥黪黯鼢鼬鼯鼹鼷鼽鼾齄"],["f840","鳣",62],["f880","鴢",32],["f940","鵃",62],["f980","鶂",32],["fa40","鶣",62],["fa80","鷢",32],["fb40","鸃",27,"鸤鸧鸮鸰鸴鸻鸼鹀鹍鹐鹒鹓鹔鹖鹙鹝鹟鹠鹡鹢鹥鹮鹯鹲鹴",9,"麀"],["fb80","麁麃麄麅麆麉麊麌",5,"麔",8,"麞麠",5,"麧麨麩麪"],["fc40","麫",8,"麵麶麷麹麺麼麿",4,"黅黆黇黈黊黋黌黐黒黓黕黖黗黙黚點黡黣黤黦黨黫黬黭黮黰",8,"黺黽黿",6],["fc80","鼆",4,"鼌鼏鼑鼒鼔鼕鼖鼘鼚",5,"鼡鼣",8,"鼭鼮鼰鼱"],["fd40","鼲",4,"鼸鼺鼼鼿",4,"齅",10,"齒",38],["fd80","齹",5,"龁龂龍",11,"龜龝龞龡",4,"郎凉秊裏隣"],["fe40","兀嗀﨎﨏﨑﨓﨔礼﨟蘒﨡﨣﨤﨧﨨﨩"]]')},7348:function(r){"use strict";r.exports=JSON.parse('[["0","\\u0000",127],["8141","갂갃갅갆갋",4,"갘갞갟갡갢갣갥",6,"갮갲갳갴"],["8161","갵갶갷갺갻갽갾갿걁",9,"걌걎",5,"걕"],["8181","걖걗걙걚걛걝",18,"걲걳걵걶걹걻",4,"겂겇겈겍겎겏겑겒겓겕",6,"겞겢",5,"겫겭겮겱",6,"겺겾겿곀곂곃곅곆곇곉곊곋곍",7,"곖곘",7,"곢곣곥곦곩곫곭곮곲곴곷",4,"곾곿괁괂괃괅괇",4,"괎괐괒괓"],["8241","괔괕괖괗괙괚괛괝괞괟괡",7,"괪괫괮",5],["8261","괶괷괹괺괻괽",6,"굆굈굊",5,"굑굒굓굕굖굗"],["8281","굙",7,"굢굤",7,"굮굯굱굲굷굸굹굺굾궀궃",4,"궊궋궍궎궏궑",10,"궞",5,"궥",17,"궸",7,"귂귃귅귆귇귉",6,"귒귔",7,"귝귞귟귡귢귣귥",18],["8341","귺귻귽귾긂",5,"긊긌긎",5,"긕",7],["8361","긝",18,"긲긳긵긶긹긻긼"],["8381","긽긾긿깂깄깇깈깉깋깏깑깒깓깕깗",4,"깞깢깣깤깦깧깪깫깭깮깯깱",6,"깺깾",5,"꺆",5,"꺍",46,"꺿껁껂껃껅",6,"껎껒",5,"껚껛껝",8],["8441","껦껧껩껪껬껮",5,"껵껶껷껹껺껻껽",8],["8461","꼆꼉꼊꼋꼌꼎꼏꼑",18],["8481","꼤",7,"꼮꼯꼱꼳꼵",6,"꼾꽀꽄꽅꽆꽇꽊",5,"꽑",10,"꽞",5,"꽦",18,"꽺",5,"꾁꾂꾃꾅꾆꾇꾉",6,"꾒꾓꾔꾖",5,"꾝",26,"꾺꾻꾽꾾"],["8541","꾿꿁",5,"꿊꿌꿏",4,"꿕",6,"꿝",4],["8561","꿢",5,"꿪",5,"꿲꿳꿵꿶꿷꿹",6,"뀂뀃"],["8581","뀅",6,"뀍뀎뀏뀑뀒뀓뀕",6,"뀞",9,"뀩",26,"끆끇끉끋끍끏끐끑끒끖끘끚끛끜끞",29,"끾끿낁낂낃낅",6,"낎낐낒",5,"낛낝낞낣낤"],["8641","낥낦낧낪낰낲낶낷낹낺낻낽",6,"냆냊",5,"냒"],["8661","냓냕냖냗냙",6,"냡냢냣냤냦",10],["8681","냱",22,"넊넍넎넏넑넔넕넖넗넚넞",4,"넦넧넩넪넫넭",6,"넶넺",5,"녂녃녅녆녇녉",6,"녒녓녖녗녙녚녛녝녞녟녡",22,"녺녻녽녾녿놁놃",4,"놊놌놎놏놐놑놕놖놗놙놚놛놝"],["8741","놞",9,"놩",15],["8761","놹",18,"뇍뇎뇏뇑뇒뇓뇕"],["8781","뇖",5,"뇞뇠",7,"뇪뇫뇭뇮뇯뇱",7,"뇺뇼뇾",5,"눆눇눉눊눍",6,"눖눘눚",5,"눡",18,"눵",6,"눽",26,"뉙뉚뉛뉝뉞뉟뉡",6,"뉪",4],["8841","뉯",4,"뉶",5,"뉽",6,"늆늇늈늊",4],["8861","늏늒늓늕늖늗늛",4,"늢늤늧늨늩늫늭늮늯늱늲늳늵늶늷"],["8881","늸",15,"닊닋닍닎닏닑닓",4,"닚닜닞닟닠닡닣닧닩닪닰닱닲닶닼닽닾댂댃댅댆댇댉",6,"댒댖",5,"댝",54,"덗덙덚덝덠덡덢덣"],["8941","덦덨덪덬덭덯덲덳덵덶덷덹",6,"뎂뎆",5,"뎍"],["8961","뎎뎏뎑뎒뎓뎕",10,"뎢",5,"뎩뎪뎫뎭"],["8981","뎮",21,"돆돇돉돊돍돏돑돒돓돖돘돚돜돞돟돡돢돣돥돦돧돩",18,"돽",18,"됑",6,"됙됚됛됝됞됟됡",6,"됪됬",7,"됵",15],["8a41","둅",10,"둒둓둕둖둗둙",6,"둢둤둦"],["8a61","둧",4,"둭",18,"뒁뒂"],["8a81","뒃",4,"뒉",19,"뒞",5,"뒥뒦뒧뒩뒪뒫뒭",7,"뒶뒸뒺",5,"듁듂듃듅듆듇듉",6,"듑듒듓듔듖",5,"듞듟듡듢듥듧",4,"듮듰듲",5,"듹",26,"딖딗딙딚딝"],["8b41","딞",5,"딦딫",4,"딲딳딵딶딷딹",6,"땂땆"],["8b61","땇땈땉땊땎땏땑땒땓땕",6,"땞땢",8],["8b81","땫",52,"떢떣떥떦떧떩떬떭떮떯떲떶",4,"떾떿뗁뗂뗃뗅",6,"뗎뗒",5,"뗙",18,"뗭",18],["8c41","똀",15,"똒똓똕똖똗똙",4],["8c61","똞",6,"똦",5,"똭",6,"똵",5],["8c81","똻",12,"뙉",26,"뙥뙦뙧뙩",50,"뚞뚟뚡뚢뚣뚥",5,"뚭뚮뚯뚰뚲",16],["8d41","뛃",16,"뛕",8],["8d61","뛞",17,"뛱뛲뛳뛵뛶뛷뛹뛺"],["8d81","뛻",4,"뜂뜃뜄뜆",33,"뜪뜫뜭뜮뜱",6,"뜺뜼",7,"띅띆띇띉띊띋띍",6,"띖",9,"띡띢띣띥띦띧띩",6,"띲띴띶",5,"띾띿랁랂랃랅",6,"랎랓랔랕랚랛랝랞"],["8e41","랟랡",6,"랪랮",5,"랶랷랹",8],["8e61","럂",4,"럈럊",19],["8e81","럞",13,"럮럯럱럲럳럵",6,"럾렂",4,"렊렋렍렎렏렑",6,"렚렜렞",5,"렦렧렩렪렫렭",6,"렶렺",5,"롁롂롃롅",11,"롒롔",7,"롞롟롡롢롣롥",6,"롮롰롲",5,"롹롺롻롽",7],["8f41","뢅",7,"뢎",17],["8f61","뢠",7,"뢩",6,"뢱뢲뢳뢵뢶뢷뢹",4],["8f81","뢾뢿룂룄룆",5,"룍룎룏룑룒룓룕",7,"룞룠룢",5,"룪룫룭룮룯룱",6,"룺룼룾",5,"뤅",18,"뤙",6,"뤡",26,"뤾뤿륁륂륃륅",6,"륍륎륐륒",5],["9041","륚륛륝륞륟륡",6,"륪륬륮",5,"륶륷륹륺륻륽"],["9061","륾",5,"릆릈릋릌릏",15],["9081","릟",12,"릮릯릱릲릳릵",6,"릾맀맂",5,"맊맋맍맓",4,"맚맜맟맠맢맦맧맩맪맫맭",6,"맶맻",4,"먂",5,"먉",11,"먖",33,"먺먻먽먾먿멁멃멄멅멆"],["9141","멇멊멌멏멐멑멒멖멗멙멚멛멝",6,"멦멪",5],["9161","멲멳멵멶멷멹",9,"몆몈몉몊몋몍",5],["9181","몓",20,"몪몭몮몯몱몳",4,"몺몼몾",5,"뫅뫆뫇뫉",14,"뫚",33,"뫽뫾뫿묁묂묃묅",7,"묎묐묒",5,"묙묚묛묝묞묟묡",6],["9241","묨묪묬",7,"묷묹묺묿",4,"뭆뭈뭊뭋뭌뭎뭑뭒"],["9261","뭓뭕뭖뭗뭙",7,"뭢뭤",7,"뭭",4],["9281","뭲",21,"뮉뮊뮋뮍뮎뮏뮑",18,"뮥뮦뮧뮩뮪뮫뮭",6,"뮵뮶뮸",7,"믁믂믃믅믆믇믉",6,"믑믒믔",35,"믺믻믽믾밁"],["9341","밃",4,"밊밎밐밒밓밙밚밠밡밢밣밦밨밪밫밬밮밯밲밳밵"],["9361","밶밷밹",6,"뱂뱆뱇뱈뱊뱋뱎뱏뱑",8],["9381","뱚뱛뱜뱞",37,"벆벇벉벊벍벏",4,"벖벘벛",4,"벢벣벥벦벩",6,"벲벶",5,"벾벿볁볂볃볅",7,"볎볒볓볔볖볗볙볚볛볝",22,"볷볹볺볻볽"],["9441","볾",5,"봆봈봊",5,"봑봒봓봕",8],["9461","봞",5,"봥",6,"봭",12],["9481","봺",5,"뵁",6,"뵊뵋뵍뵎뵏뵑",6,"뵚",9,"뵥뵦뵧뵩",22,"붂붃붅붆붋",4,"붒붔붖붗붘붛붝",6,"붥",10,"붱",6,"붹",24],["9541","뷒뷓뷖뷗뷙뷚뷛뷝",11,"뷪",5,"뷱"],["9561","뷲뷳뷵뷶뷷뷹",6,"븁븂븄븆",5,"븎븏븑븒븓"],["9581","븕",6,"븞븠",35,"빆빇빉빊빋빍빏",4,"빖빘빜빝빞빟빢빣빥빦빧빩빫",4,"빲빶",4,"빾빿뺁뺂뺃뺅",6,"뺎뺒",5,"뺚",13,"뺩",14],["9641","뺸",23,"뻒뻓"],["9661","뻕뻖뻙",6,"뻡뻢뻦",5,"뻭",8],["9681","뻶",10,"뼂",5,"뼊",13,"뼚뼞",33,"뽂뽃뽅뽆뽇뽉",6,"뽒뽓뽔뽖",44],["9741","뾃",16,"뾕",8],["9761","뾞",17,"뾱",7],["9781","뾹",11,"뿆",5,"뿎뿏뿑뿒뿓뿕",6,"뿝뿞뿠뿢",89,"쀽쀾쀿"],["9841","쁀",16,"쁒",5,"쁙쁚쁛"],["9861","쁝쁞쁟쁡",6,"쁪",15],["9881","쁺",21,"삒삓삕삖삗삙",6,"삢삤삦",5,"삮삱삲삷",4,"삾샂샃샄샆샇샊샋샍샎샏샑",6,"샚샞",5,"샦샧샩샪샫샭",6,"샶샸샺",5,"섁섂섃섅섆섇섉",6,"섑섒섓섔섖",5,"섡섢섥섨섩섪섫섮"],["9941","섲섳섴섵섷섺섻섽섾섿셁",6,"셊셎",5,"셖셗"],["9961","셙셚셛셝",6,"셦셪",5,"셱셲셳셵셶셷셹셺셻"],["9981","셼",8,"솆",5,"솏솑솒솓솕솗",4,"솞솠솢솣솤솦솧솪솫솭솮솯솱",11,"솾",5,"쇅쇆쇇쇉쇊쇋쇍",6,"쇕쇖쇙",6,"쇡쇢쇣쇥쇦쇧쇩",6,"쇲쇴",7,"쇾쇿숁숂숃숅",6,"숎숐숒",5,"숚숛숝숞숡숢숣"],["9a41","숤숥숦숧숪숬숮숰숳숵",16],["9a61","쉆쉇쉉",6,"쉒쉓쉕쉖쉗쉙",6,"쉡쉢쉣쉤쉦"],["9a81","쉧",4,"쉮쉯쉱쉲쉳쉵",6,"쉾슀슂",5,"슊",5,"슑",6,"슙슚슜슞",5,"슦슧슩슪슫슮",5,"슶슸슺",33,"싞싟싡싢싥",5,"싮싰싲싳싴싵싷싺싽싾싿쌁",6,"쌊쌋쌎쌏"],["9b41","쌐쌑쌒쌖쌗쌙쌚쌛쌝",6,"쌦쌧쌪",8],["9b61","쌳",17,"썆",7],["9b81","썎",25,"썪썫썭썮썯썱썳",4,"썺썻썾",5,"쎅쎆쎇쎉쎊쎋쎍",50,"쏁",22,"쏚"],["9c41","쏛쏝쏞쏡쏣",4,"쏪쏫쏬쏮",5,"쏶쏷쏹",5],["9c61","쏿",8,"쐉",6,"쐑",9],["9c81","쐛",8,"쐥",6,"쐭쐮쐯쐱쐲쐳쐵",6,"쐾",9,"쑉",26,"쑦쑧쑩쑪쑫쑭",6,"쑶쑷쑸쑺",5,"쒁",18,"쒕",6,"쒝",12],["9d41","쒪",13,"쒹쒺쒻쒽",8],["9d61","쓆",25],["9d81","쓠",8,"쓪",5,"쓲쓳쓵쓶쓷쓹쓻쓼쓽쓾씂",9,"씍씎씏씑씒씓씕",6,"씝",10,"씪씫씭씮씯씱",6,"씺씼씾",5,"앆앇앋앏앐앑앒앖앚앛앜앟앢앣앥앦앧앩",6,"앲앶",5,"앾앿얁얂얃얅얆얈얉얊얋얎얐얒얓얔"],["9e41","얖얙얚얛얝얞얟얡",7,"얪",9,"얶"],["9e61","얷얺얿",4,"엋엍엏엒엓엕엖엗엙",6,"엢엤엦엧"],["9e81","엨엩엪엫엯엱엲엳엵엸엹엺엻옂옃옄옉옊옋옍옎옏옑",6,"옚옝",6,"옦옧옩옪옫옯옱옲옶옸옺옼옽옾옿왂왃왅왆왇왉",6,"왒왖",5,"왞왟왡",10,"왭왮왰왲",5,"왺왻왽왾왿욁",6,"욊욌욎",5,"욖욗욙욚욛욝",6,"욦"],["9f41","욨욪",5,"욲욳욵욶욷욻",4,"웂웄웆",5,"웎"],["9f61","웏웑웒웓웕",6,"웞웟웢",5,"웪웫웭웮웯웱웲"],["9f81","웳",4,"웺웻웼웾",5,"윆윇윉윊윋윍",6,"윖윘윚",5,"윢윣윥윦윧윩",6,"윲윴윶윸윹윺윻윾윿읁읂읃읅",4,"읋읎읐읙읚읛읝읞읟읡",6,"읩읪읬",7,"읶읷읹읺읻읿잀잁잂잆잋잌잍잏잒잓잕잙잛",4,"잢잧",4,"잮잯잱잲잳잵잶잷"],["a041","잸잹잺잻잾쟂",5,"쟊쟋쟍쟏쟑",6,"쟙쟚쟛쟜"],["a061","쟞",5,"쟥쟦쟧쟩쟪쟫쟭",13],["a081","쟻",4,"젂젃젅젆젇젉젋",4,"젒젔젗",4,"젞젟젡젢젣젥",6,"젮젰젲",5,"젹젺젻젽젾젿졁",6,"졊졋졎",5,"졕",26,"졲졳졵졶졷졹졻",4,"좂좄좈좉좊좎",5,"좕",7,"좞좠좢좣좤"],["a141","좥좦좧좩",18,"좾좿죀죁"],["a161","죂죃죅죆죇죉죊죋죍",6,"죖죘죚",5,"죢죣죥"],["a181","죦",14,"죶",5,"죾죿줁줂줃줇",4,"줎　、。·‥…¨〃­―∥＼∼‘’“”〔〕〈",9,"±×÷≠≤≥∞∴°′″℃Å￠￡￥♂♀∠⊥⌒∂∇≡≒§※☆★○●◎◇◆□■△▲▽▼→←↑↓↔〓≪≫√∽∝∵∫∬∈∋⊆⊇⊂⊃∪∩∧∨￢"],["a241","줐줒",5,"줙",18],["a261","줭",6,"줵",18],["a281","쥈",7,"쥒쥓쥕쥖쥗쥙",6,"쥢쥤",7,"쥭쥮쥯⇒⇔∀∃´～ˇ˘˝˚˙¸˛¡¿ː∮∑∏¤℉‰◁◀▷▶♤♠♡♥♧♣⊙◈▣◐◑▒▤▥▨▧▦▩♨☏☎☜☞¶†‡↕↗↙↖↘♭♩♪♬㉿㈜№㏇™㏂㏘℡€®"],["a341","쥱쥲쥳쥵",6,"쥽",10,"즊즋즍즎즏"],["a361","즑",6,"즚즜즞",16],["a381","즯",16,"짂짃짅짆짉짋",4,"짒짔짗짘짛！",58,"￦］",32,"￣"],["a441","짞짟짡짣짥짦짨짩짪짫짮짲",5,"짺짻짽짾짿쨁쨂쨃쨄"],["a461","쨅쨆쨇쨊쨎",5,"쨕쨖쨗쨙",12],["a481","쨦쨧쨨쨪",28,"ㄱ",93],["a541","쩇",4,"쩎쩏쩑쩒쩓쩕",6,"쩞쩢",5,"쩩쩪"],["a561","쩫",17,"쩾",5,"쪅쪆"],["a581","쪇",16,"쪙",14,"ⅰ",9],["a5b0","Ⅰ",9],["a5c1","Α",16,"Σ",6],["a5e1","α",16,"σ",6],["a641","쪨",19,"쪾쪿쫁쫂쫃쫅"],["a661","쫆",5,"쫎쫐쫒쫔쫕쫖쫗쫚",5,"쫡",6],["a681","쫨쫩쫪쫫쫭",6,"쫵",18,"쬉쬊─│┌┐┘└├┬┤┴┼━┃┏┓┛┗┣┳┫┻╋┠┯┨┷┿┝┰┥┸╂┒┑┚┙┖┕┎┍┞┟┡┢┦┧┩┪┭┮┱┲┵┶┹┺┽┾╀╁╃",7],["a741","쬋",4,"쬑쬒쬓쬕쬖쬗쬙",6,"쬢",7],["a761","쬪",22,"쭂쭃쭄"],["a781","쭅쭆쭇쭊쭋쭍쭎쭏쭑",6,"쭚쭛쭜쭞",5,"쭥",7,"㎕㎖㎗ℓ㎘㏄㎣㎤㎥㎦㎙",9,"㏊㎍㎎㎏㏏㎈㎉㏈㎧㎨㎰",9,"㎀",4,"㎺",5,"㎐",4,"Ω㏀㏁㎊㎋㎌㏖㏅㎭㎮㎯㏛㎩㎪㎫㎬㏝㏐㏓㏃㏉㏜㏆"],["a841","쭭",10,"쭺",14],["a861","쮉",18,"쮝",6],["a881","쮤",19,"쮹",11,"ÆЪĦ"],["a8a6","IJ"],["a8a8","ĿŁØŒºÞŦŊ"],["a8b1","㉠",27,"ⓐ",25,"①",14,"½⅓⅔¼¾⅛⅜⅝⅞"],["a941","쯅",14,"쯕",10],["a961","쯠쯡쯢쯣쯥쯦쯨쯪",18],["a981","쯽",14,"찎찏찑찒찓찕",6,"찞찟찠찣찤æđðħıijĸŀłøœßþŧŋʼn㈀",27,"⒜",25,"⑴",14,"¹²³⁴ⁿ₁₂₃₄"],["aa41","찥찦찪찫찭찯찱",6,"찺찿",4,"챆챇챉챊챋챍챎"],["aa61","챏",4,"챖챚",5,"챡챢챣챥챧챩",6,"챱챲"],["aa81","챳챴챶",29,"ぁ",82],["ab41","첔첕첖첗첚첛첝첞첟첡",6,"첪첮",5,"첶첷첹"],["ab61","첺첻첽",6,"쳆쳈쳊",5,"쳑쳒쳓쳕",5],["ab81","쳛",8,"쳥",6,"쳭쳮쳯쳱",12,"ァ",85],["ac41","쳾쳿촀촂",5,"촊촋촍촎촏촑",6,"촚촜촞촟촠"],["ac61","촡촢촣촥촦촧촩촪촫촭",11,"촺",4],["ac81","촿",28,"쵝쵞쵟А",5,"ЁЖ",25],["acd1","а",5,"ёж",25],["ad41","쵡쵢쵣쵥",6,"쵮쵰쵲",5,"쵹",7],["ad61","춁",6,"춉",10,"춖춗춙춚춛춝춞춟"],["ad81","춠춡춢춣춦춨춪",5,"춱",18,"췅"],["ae41","췆",5,"췍췎췏췑",16],["ae61","췢",5,"췩췪췫췭췮췯췱",6,"췺췼췾",4],["ae81","츃츅츆츇츉츊츋츍",6,"츕츖츗츘츚",5,"츢츣츥츦츧츩츪츫"],["af41","츬츭츮츯츲츴츶",19],["af61","칊",13,"칚칛칝칞칢",5,"칪칬"],["af81","칮",5,"칶칷칹칺칻칽",6,"캆캈캊",5,"캒캓캕캖캗캙"],["b041","캚",5,"캢캦",5,"캮",12],["b061","캻",5,"컂",19],["b081","컖",13,"컦컧컩컪컭",6,"컶컺",5,"가각간갇갈갉갊감",7,"같",4,"갠갤갬갭갯갰갱갸갹갼걀걋걍걔걘걜거걱건걷걸걺검겁것겄겅겆겉겊겋게겐겔겜겝겟겠겡겨격겪견겯결겸겹겻겼경곁계곈곌곕곗고곡곤곧골곪곬곯곰곱곳공곶과곽관괄괆"],["b141","켂켃켅켆켇켉",6,"켒켔켖",5,"켝켞켟켡켢켣"],["b161","켥",6,"켮켲",5,"켹",11],["b181","콅",14,"콖콗콙콚콛콝",6,"콦콨콪콫콬괌괍괏광괘괜괠괩괬괭괴괵괸괼굄굅굇굉교굔굘굡굣구국군굳굴굵굶굻굼굽굿궁궂궈궉권궐궜궝궤궷귀귁귄귈귐귑귓규균귤그극근귿글긁금급긋긍긔기긱긴긷길긺김깁깃깅깆깊까깍깎깐깔깖깜깝깟깠깡깥깨깩깬깰깸"],["b241","콭콮콯콲콳콵콶콷콹",6,"쾁쾂쾃쾄쾆",5,"쾍"],["b261","쾎",18,"쾢",5,"쾩"],["b281","쾪",5,"쾱",18,"쿅",6,"깹깻깼깽꺄꺅꺌꺼꺽꺾껀껄껌껍껏껐껑께껙껜껨껫껭껴껸껼꼇꼈꼍꼐꼬꼭꼰꼲꼴꼼꼽꼿꽁꽂꽃꽈꽉꽐꽜꽝꽤꽥꽹꾀꾄꾈꾐꾑꾕꾜꾸꾹꾼꿀꿇꿈꿉꿋꿍꿎꿔꿜꿨꿩꿰꿱꿴꿸뀀뀁뀄뀌뀐뀔뀜뀝뀨끄끅끈끊끌끎끓끔끕끗끙"],["b341","쿌",19,"쿢쿣쿥쿦쿧쿩"],["b361","쿪",5,"쿲쿴쿶",5,"쿽쿾쿿퀁퀂퀃퀅",5],["b381","퀋",5,"퀒",5,"퀙",19,"끝끼끽낀낄낌낍낏낑나낙낚난낟날낡낢남납낫",4,"낱낳내낵낸낼냄냅냇냈냉냐냑냔냘냠냥너넉넋넌널넒넓넘넙넛넜넝넣네넥넨넬넴넵넷넸넹녀녁년녈념녑녔녕녘녜녠노녹논놀놂놈놉놋농높놓놔놘놜놨뇌뇐뇔뇜뇝"],["b441","퀮",5,"퀶퀷퀹퀺퀻퀽",6,"큆큈큊",5],["b461","큑큒큓큕큖큗큙",6,"큡",10,"큮큯"],["b481","큱큲큳큵",6,"큾큿킀킂",18,"뇟뇨뇩뇬뇰뇹뇻뇽누눅눈눋눌눔눕눗눙눠눴눼뉘뉜뉠뉨뉩뉴뉵뉼늄늅늉느늑는늘늙늚늠늡늣능늦늪늬늰늴니닉닌닐닒님닙닛닝닢다닥닦단닫",4,"닳담답닷",4,"닿대댁댄댈댐댑댓댔댕댜더덕덖던덛덜덞덟덤덥"],["b541","킕",14,"킦킧킩킪킫킭",5],["b561","킳킶킸킺",5,"탂탃탅탆탇탊",5,"탒탖",4],["b581","탛탞탟탡탢탣탥",6,"탮탲",5,"탹",11,"덧덩덫덮데덱덴델뎀뎁뎃뎄뎅뎌뎐뎔뎠뎡뎨뎬도독돈돋돌돎돐돔돕돗동돛돝돠돤돨돼됐되된될됨됩됫됴두둑둔둘둠둡둣둥둬뒀뒈뒝뒤뒨뒬뒵뒷뒹듀듄듈듐듕드득든듣들듦듬듭듯등듸디딕딘딛딜딤딥딧딨딩딪따딱딴딸"],["b641","턅",7,"턎",17],["b661","턠",15,"턲턳턵턶턷턹턻턼턽턾"],["b681","턿텂텆",5,"텎텏텑텒텓텕",6,"텞텠텢",5,"텩텪텫텭땀땁땃땄땅땋때땍땐땔땜땝땟땠땡떠떡떤떨떪떫떰떱떳떴떵떻떼떽뗀뗄뗌뗍뗏뗐뗑뗘뗬또똑똔똘똥똬똴뙈뙤뙨뚜뚝뚠뚤뚫뚬뚱뛔뛰뛴뛸뜀뜁뜅뜨뜩뜬뜯뜰뜸뜹뜻띄띈띌띔띕띠띤띨띰띱띳띵라락란랄람랍랏랐랑랒랖랗"],["b741","텮",13,"텽",6,"톅톆톇톉톊"],["b761","톋",20,"톢톣톥톦톧"],["b781","톩",6,"톲톴톶톷톸톹톻톽톾톿퇁",14,"래랙랜랠램랩랫랬랭랴략랸럇량러럭런럴럼럽럿렀렁렇레렉렌렐렘렙렛렝려력련렬렴렵렷렸령례롄롑롓로록론롤롬롭롯롱롸롼뢍뢨뢰뢴뢸룀룁룃룅료룐룔룝룟룡루룩룬룰룸룹룻룽뤄뤘뤠뤼뤽륀륄륌륏륑류륙륜률륨륩"],["b841","퇐",7,"퇙",17],["b861","퇫",8,"퇵퇶퇷퇹",13],["b881","툈툊",5,"툑",24,"륫륭르륵른를름릅릇릉릊릍릎리릭린릴림립릿링마막만많",4,"맘맙맛망맞맡맣매맥맨맬맴맵맷맸맹맺먀먁먈먕머먹먼멀멂멈멉멋멍멎멓메멕멘멜멤멥멧멨멩며멱면멸몃몄명몇몌모목몫몬몰몲몸몹못몽뫄뫈뫘뫙뫼"],["b941","툪툫툮툯툱툲툳툵",6,"툾퉀퉂",5,"퉉퉊퉋퉌"],["b961","퉍",14,"퉝",6,"퉥퉦퉧퉨"],["b981","퉩",22,"튂튃튅튆튇튉튊튋튌묀묄묍묏묑묘묜묠묩묫무묵묶문묻물묽묾뭄뭅뭇뭉뭍뭏뭐뭔뭘뭡뭣뭬뮈뮌뮐뮤뮨뮬뮴뮷므믄믈믐믓미믹민믿밀밂밈밉밋밌밍및밑바",4,"받",4,"밤밥밧방밭배백밴밸뱀뱁뱃뱄뱅뱉뱌뱍뱐뱝버벅번벋벌벎범법벗"],["ba41","튍튎튏튒튓튔튖",5,"튝튞튟튡튢튣튥",6,"튭"],["ba61","튮튯튰튲",5,"튺튻튽튾틁틃",4,"틊틌",5],["ba81","틒틓틕틖틗틙틚틛틝",6,"틦",9,"틲틳틵틶틷틹틺벙벚베벡벤벧벨벰벱벳벴벵벼벽변별볍볏볐병볕볘볜보복볶본볼봄봅봇봉봐봔봤봬뵀뵈뵉뵌뵐뵘뵙뵤뵨부북분붇불붉붊붐붑붓붕붙붚붜붤붰붸뷔뷕뷘뷜뷩뷰뷴뷸븀븃븅브븍븐블븜븝븟비빅빈빌빎빔빕빗빙빚빛빠빡빤"],["bb41","틻",4,"팂팄팆",5,"팏팑팒팓팕팗",4,"팞팢팣"],["bb61","팤팦팧팪팫팭팮팯팱",6,"팺팾",5,"퍆퍇퍈퍉"],["bb81","퍊",31,"빨빪빰빱빳빴빵빻빼빽뺀뺄뺌뺍뺏뺐뺑뺘뺙뺨뻐뻑뻔뻗뻘뻠뻣뻤뻥뻬뼁뼈뼉뼘뼙뼛뼜뼝뽀뽁뽄뽈뽐뽑뽕뾔뾰뿅뿌뿍뿐뿔뿜뿟뿡쀼쁑쁘쁜쁠쁨쁩삐삑삔삘삠삡삣삥사삭삯산삳살삵삶삼삽삿샀상샅새색샌샐샘샙샛샜생샤"],["bc41","퍪",17,"퍾퍿펁펂펃펅펆펇"],["bc61","펈펉펊펋펎펒",5,"펚펛펝펞펟펡",6,"펪펬펮"],["bc81","펯",4,"펵펶펷펹펺펻펽",6,"폆폇폊",5,"폑",5,"샥샨샬샴샵샷샹섀섄섈섐섕서",4,"섣설섦섧섬섭섯섰성섶세섹센셀셈셉셋셌셍셔셕션셜셤셥셧셨셩셰셴셸솅소속솎손솔솖솜솝솟송솥솨솩솬솰솽쇄쇈쇌쇔쇗쇘쇠쇤쇨쇰쇱쇳쇼쇽숀숄숌숍숏숑수숙순숟술숨숩숫숭"],["bd41","폗폙",7,"폢폤",7,"폮폯폱폲폳폵폶폷"],["bd61","폸폹폺폻폾퐀퐂",5,"퐉",13],["bd81","퐗",5,"퐞",25,"숯숱숲숴쉈쉐쉑쉔쉘쉠쉥쉬쉭쉰쉴쉼쉽쉿슁슈슉슐슘슛슝스슥슨슬슭슴습슷승시식신싣실싫심십싯싱싶싸싹싻싼쌀쌈쌉쌌쌍쌓쌔쌕쌘쌜쌤쌥쌨쌩썅써썩썬썰썲썸썹썼썽쎄쎈쎌쏀쏘쏙쏜쏟쏠쏢쏨쏩쏭쏴쏵쏸쐈쐐쐤쐬쐰"],["be41","퐸",7,"푁푂푃푅",14],["be61","푔",7,"푝푞푟푡푢푣푥",7,"푮푰푱푲"],["be81","푳",4,"푺푻푽푾풁풃",4,"풊풌풎",5,"풕",8,"쐴쐼쐽쑈쑤쑥쑨쑬쑴쑵쑹쒀쒔쒜쒸쒼쓩쓰쓱쓴쓸쓺쓿씀씁씌씐씔씜씨씩씬씰씸씹씻씽아악안앉않알앍앎앓암압앗았앙앝앞애액앤앨앰앱앳앴앵야약얀얄얇얌얍얏양얕얗얘얜얠얩어억언얹얻얼얽얾엄",6,"엌엎"],["bf41","풞",10,"풪",14],["bf61","풹",18,"퓍퓎퓏퓑퓒퓓퓕"],["bf81","퓖",5,"퓝퓞퓠",7,"퓩퓪퓫퓭퓮퓯퓱",6,"퓹퓺퓼에엑엔엘엠엡엣엥여역엮연열엶엷염",5,"옅옆옇예옌옐옘옙옛옜오옥온올옭옮옰옳옴옵옷옹옻와왁완왈왐왑왓왔왕왜왝왠왬왯왱외왹왼욀욈욉욋욍요욕욘욜욤욥욧용우욱운울욹욺움웁웃웅워웍원월웜웝웠웡웨"],["c041","퓾",5,"픅픆픇픉픊픋픍",6,"픖픘",5],["c061","픞",25],["c081","픸픹픺픻픾픿핁핂핃핅",6,"핎핐핒",5,"핚핛핝핞핟핡핢핣웩웬웰웸웹웽위윅윈윌윔윕윗윙유육윤율윰윱윳융윷으윽은을읊음읍읏응",7,"읜읠읨읫이익인일읽읾잃임입잇있잉잊잎자작잔잖잗잘잚잠잡잣잤장잦재잭잰잴잼잽잿쟀쟁쟈쟉쟌쟎쟐쟘쟝쟤쟨쟬저적전절젊"],["c141","핤핦핧핪핬핮",5,"핶핷핹핺핻핽",6,"햆햊햋"],["c161","햌햍햎햏햑",19,"햦햧"],["c181","햨",31,"점접젓정젖제젝젠젤젬젭젯젱져젼졀졈졉졌졍졔조족존졸졺좀좁좃종좆좇좋좌좍좔좝좟좡좨좼좽죄죈죌죔죕죗죙죠죡죤죵주죽준줄줅줆줌줍줏중줘줬줴쥐쥑쥔쥘쥠쥡쥣쥬쥰쥴쥼즈즉즌즐즘즙즛증지직진짇질짊짐집짓"],["c241","헊헋헍헎헏헑헓",4,"헚헜헞",5,"헦헧헩헪헫헭헮"],["c261","헯",4,"헶헸헺",5,"혂혃혅혆혇혉",6,"혒"],["c281","혖",5,"혝혞혟혡혢혣혥",7,"혮",9,"혺혻징짖짙짚짜짝짠짢짤짧짬짭짯짰짱째짹짼쨀쨈쨉쨋쨌쨍쨔쨘쨩쩌쩍쩐쩔쩜쩝쩟쩠쩡쩨쩽쪄쪘쪼쪽쫀쫄쫌쫍쫏쫑쫓쫘쫙쫠쫬쫴쬈쬐쬔쬘쬠쬡쭁쭈쭉쭌쭐쭘쭙쭝쭤쭸쭹쮜쮸쯔쯤쯧쯩찌찍찐찔찜찝찡찢찧차착찬찮찰참찹찻"],["c341","혽혾혿홁홂홃홄홆홇홊홌홎홏홐홒홓홖홗홙홚홛홝",4],["c361","홢",4,"홨홪",5,"홲홳홵",11],["c381","횁횂횄횆",5,"횎횏횑횒횓횕",7,"횞횠횢",5,"횩횪찼창찾채책챈챌챔챕챗챘챙챠챤챦챨챰챵처척천철첨첩첫첬청체첵첸첼쳄쳅쳇쳉쳐쳔쳤쳬쳰촁초촉촌촐촘촙촛총촤촨촬촹최쵠쵤쵬쵭쵯쵱쵸춈추축춘출춤춥춧충춰췄췌췐취췬췰췸췹췻췽츄츈츌츔츙츠측츤츨츰츱츳층"],["c441","횫횭횮횯횱",7,"횺횼",7,"훆훇훉훊훋"],["c461","훍훎훏훐훒훓훕훖훘훚",5,"훡훢훣훥훦훧훩",4],["c481","훮훯훱훲훳훴훶",5,"훾훿휁휂휃휅",11,"휒휓휔치칙친칟칠칡침칩칫칭카칵칸칼캄캅캇캉캐캑캔캘캠캡캣캤캥캬캭컁커컥컨컫컬컴컵컷컸컹케켁켄켈켐켑켓켕켜켠켤켬켭켯켰켱켸코콕콘콜콤콥콧콩콰콱콴콸쾀쾅쾌쾡쾨쾰쿄쿠쿡쿤쿨쿰쿱쿳쿵쿼퀀퀄퀑퀘퀭퀴퀵퀸퀼"],["c541","휕휖휗휚휛휝휞휟휡",6,"휪휬휮",5,"휶휷휹"],["c561","휺휻휽",6,"흅흆흈흊",5,"흒흓흕흚",4],["c581","흟흢흤흦흧흨흪흫흭흮흯흱흲흳흵",6,"흾흿힀힂",5,"힊힋큄큅큇큉큐큔큘큠크큭큰클큼큽킁키킥킨킬킴킵킷킹타탁탄탈탉탐탑탓탔탕태택탠탤탬탭탯탰탱탸턍터턱턴털턺텀텁텃텄텅테텍텐텔템텝텟텡텨텬텼톄톈토톡톤톨톰톱톳통톺톼퇀퇘퇴퇸툇툉툐투툭툰툴툼툽툿퉁퉈퉜"],["c641","힍힎힏힑",6,"힚힜힞",5],["c6a1","퉤튀튁튄튈튐튑튕튜튠튤튬튱트특튼튿틀틂틈틉틋틔틘틜틤틥티틱틴틸팀팁팃팅파팍팎판팔팖팜팝팟팠팡팥패팩팬팰팸팹팻팼팽퍄퍅퍼퍽펀펄펌펍펏펐펑페펙펜펠펨펩펫펭펴편펼폄폅폈평폐폘폡폣포폭폰폴폼폽폿퐁"],["c7a1","퐈퐝푀푄표푠푤푭푯푸푹푼푿풀풂품풉풋풍풔풩퓌퓐퓔퓜퓟퓨퓬퓰퓸퓻퓽프픈플픔픕픗피픽핀필핌핍핏핑하학한할핥함합핫항해핵핸핼햄햅햇했행햐향허헉헌헐헒험헙헛헝헤헥헨헬헴헵헷헹혀혁현혈혐협혓혔형혜혠"],["c8a1","혤혭호혹혼홀홅홈홉홋홍홑화확환활홧황홰홱홴횃횅회획횐횔횝횟횡효횬횰횹횻후훅훈훌훑훔훗훙훠훤훨훰훵훼훽휀휄휑휘휙휜휠휨휩휫휭휴휵휸휼흄흇흉흐흑흔흖흗흘흙흠흡흣흥흩희흰흴흼흽힁히힉힌힐힘힙힛힝"],["caa1","伽佳假價加可呵哥嘉嫁家暇架枷柯歌珂痂稼苛茄街袈訶賈跏軻迦駕刻却各恪慤殼珏脚覺角閣侃刊墾奸姦干幹懇揀杆柬桿澗癎看磵稈竿簡肝艮艱諫間乫喝曷渴碣竭葛褐蝎鞨勘坎堪嵌感憾戡敢柑橄減甘疳監瞰紺邯鑑鑒龕"],["cba1","匣岬甲胛鉀閘剛堈姜岡崗康强彊慷江畺疆糠絳綱羌腔舡薑襁講鋼降鱇介价個凱塏愷愾慨改槪漑疥皆盖箇芥蓋豈鎧開喀客坑更粳羹醵倨去居巨拒据據擧渠炬祛距踞車遽鉅鋸乾件健巾建愆楗腱虔蹇鍵騫乞傑杰桀儉劍劒檢"],["cca1","瞼鈐黔劫怯迲偈憩揭擊格檄激膈覡隔堅牽犬甄絹繭肩見譴遣鵑抉決潔結缺訣兼慊箝謙鉗鎌京俓倞傾儆勁勍卿坰境庚徑慶憬擎敬景暻更梗涇炅烱璟璥瓊痙硬磬竟競絅經耕耿脛莖警輕逕鏡頃頸驚鯨係啓堺契季屆悸戒桂械"],["cda1","棨溪界癸磎稽系繫繼計誡谿階鷄古叩告呱固姑孤尻庫拷攷故敲暠枯槁沽痼皐睾稿羔考股膏苦苽菰藁蠱袴誥賈辜錮雇顧高鼓哭斛曲梏穀谷鵠困坤崑昆梱棍滾琨袞鯤汨滑骨供公共功孔工恐恭拱控攻珙空蚣貢鞏串寡戈果瓜"],["cea1","科菓誇課跨過鍋顆廓槨藿郭串冠官寬慣棺款灌琯瓘管罐菅觀貫關館刮恝括适侊光匡壙廣曠洸炚狂珖筐胱鑛卦掛罫乖傀塊壞怪愧拐槐魁宏紘肱轟交僑咬喬嬌嶠巧攪敎校橋狡皎矯絞翹膠蕎蛟較轎郊餃驕鮫丘久九仇俱具勾"],["cfa1","區口句咎嘔坵垢寇嶇廐懼拘救枸柩構歐毆毬求溝灸狗玖球瞿矩究絿耉臼舅舊苟衢謳購軀逑邱鉤銶駒驅鳩鷗龜國局菊鞠鞫麴君窘群裙軍郡堀屈掘窟宮弓穹窮芎躬倦券勸卷圈拳捲權淃眷厥獗蕨蹶闕机櫃潰詭軌饋句晷歸貴"],["d0a1","鬼龜叫圭奎揆槻珪硅窺竅糾葵規赳逵閨勻均畇筠菌鈞龜橘克剋劇戟棘極隙僅劤勤懃斤根槿瑾筋芹菫覲謹近饉契今妗擒昑檎琴禁禽芩衾衿襟金錦伋及急扱汲級給亘兢矜肯企伎其冀嗜器圻基埼夔奇妓寄岐崎己幾忌技旗旣"],["d1a1","朞期杞棋棄機欺氣汽沂淇玘琦琪璂璣畸畿碁磯祁祇祈祺箕紀綺羈耆耭肌記譏豈起錡錤飢饑騎騏驥麒緊佶吉拮桔金喫儺喇奈娜懦懶拏拿癩",5,"那樂",4,"諾酪駱亂卵暖欄煖爛蘭難鸞捏捺南嵐枏楠湳濫男藍襤拉"],["d2a1","納臘蠟衲囊娘廊",4,"乃來內奈柰耐冷女年撚秊念恬拈捻寧寗努勞奴弩怒擄櫓爐瑙盧",5,"駑魯",10,"濃籠聾膿農惱牢磊腦賂雷尿壘",7,"嫩訥杻紐勒",5,"能菱陵尼泥匿溺多茶"],["d3a1","丹亶但單團壇彖斷旦檀段湍短端簞緞蛋袒鄲鍛撻澾獺疸達啖坍憺擔曇淡湛潭澹痰聃膽蕁覃談譚錟沓畓答踏遝唐堂塘幢戇撞棠當糖螳黨代垈坮大對岱帶待戴擡玳臺袋貸隊黛宅德悳倒刀到圖堵塗導屠島嶋度徒悼挑掉搗桃"],["d4a1","棹櫂淘渡滔濤燾盜睹禱稻萄覩賭跳蹈逃途道都鍍陶韜毒瀆牘犢獨督禿篤纛讀墩惇敦旽暾沌焞燉豚頓乭突仝冬凍動同憧東桐棟洞潼疼瞳童胴董銅兜斗杜枓痘竇荳讀豆逗頭屯臀芚遁遯鈍得嶝橙燈登等藤謄鄧騰喇懶拏癩羅"],["d5a1","蘿螺裸邏樂洛烙珞絡落諾酪駱丹亂卵欄欒瀾爛蘭鸞剌辣嵐擥攬欖濫籃纜藍襤覽拉臘蠟廊朗浪狼琅瑯螂郞來崍徠萊冷掠略亮倆兩凉梁樑粮粱糧良諒輛量侶儷勵呂廬慮戾旅櫚濾礪藜蠣閭驢驪麗黎力曆歷瀝礫轢靂憐戀攣漣"],["d6a1","煉璉練聯蓮輦連鍊冽列劣洌烈裂廉斂殮濂簾獵令伶囹寧岺嶺怜玲笭羚翎聆逞鈴零靈領齡例澧禮醴隷勞怒撈擄櫓潞瀘爐盧老蘆虜路輅露魯鷺鹵碌祿綠菉錄鹿麓論壟弄朧瀧瓏籠聾儡瀨牢磊賂賚賴雷了僚寮廖料燎療瞭聊蓼"],["d7a1","遼鬧龍壘婁屢樓淚漏瘻累縷蔞褸鏤陋劉旒柳榴流溜瀏琉瑠留瘤硫謬類六戮陸侖倫崙淪綸輪律慄栗率隆勒肋凜凌楞稜綾菱陵俚利厘吏唎履悧李梨浬犁狸理璃異痢籬罹羸莉裏裡里釐離鯉吝潾燐璘藺躪隣鱗麟林淋琳臨霖砬"],["d8a1","立笠粒摩瑪痲碼磨馬魔麻寞幕漠膜莫邈万卍娩巒彎慢挽晩曼滿漫灣瞞萬蔓蠻輓饅鰻唜抹末沫茉襪靺亡妄忘忙望網罔芒茫莽輞邙埋妹媒寐昧枚梅每煤罵買賣邁魅脈貊陌驀麥孟氓猛盲盟萌冪覓免冕勉棉沔眄眠綿緬面麵滅"],["d9a1","蔑冥名命明暝椧溟皿瞑茗蓂螟酩銘鳴袂侮冒募姆帽慕摸摹暮某模母毛牟牡瑁眸矛耗芼茅謀謨貌木沐牧目睦穆鶩歿沒夢朦蒙卯墓妙廟描昴杳渺猫竗苗錨務巫憮懋戊拇撫无楙武毋無珷畝繆舞茂蕪誣貿霧鵡墨默們刎吻問文"],["daa1","汶紊紋聞蚊門雯勿沕物味媚尾嵋彌微未梶楣渼湄眉米美薇謎迷靡黴岷悶愍憫敏旻旼民泯玟珉緡閔密蜜謐剝博拍搏撲朴樸泊珀璞箔粕縛膊舶薄迫雹駁伴半反叛拌搬攀斑槃泮潘班畔瘢盤盼磐磻礬絆般蟠返頒飯勃拔撥渤潑"],["dba1","發跋醱鉢髮魃倣傍坊妨尨幇彷房放方旁昉枋榜滂磅紡肪膀舫芳蒡蚌訪謗邦防龐倍俳北培徘拜排杯湃焙盃背胚裴裵褙賠輩配陪伯佰帛柏栢白百魄幡樊煩燔番磻繁蕃藩飜伐筏罰閥凡帆梵氾汎泛犯範范法琺僻劈壁擘檗璧癖"],["dca1","碧蘗闢霹便卞弁變辨辯邊別瞥鱉鼈丙倂兵屛幷昞昺柄棅炳甁病秉竝輧餠騈保堡報寶普步洑湺潽珤甫菩補褓譜輔伏僕匐卜宓復服福腹茯蔔複覆輹輻馥鰒本乶俸奉封峯峰捧棒烽熢琫縫蓬蜂逢鋒鳳不付俯傅剖副否咐埠夫婦"],["dda1","孚孵富府復扶敷斧浮溥父符簿缶腐腑膚艀芙莩訃負賦賻赴趺部釜阜附駙鳧北分吩噴墳奔奮忿憤扮昐汾焚盆粉糞紛芬賁雰不佛弗彿拂崩朋棚硼繃鵬丕備匕匪卑妃婢庇悲憊扉批斐枇榧比毖毗毘沸泌琵痺砒碑秕秘粃緋翡肥"],["dea1","脾臂菲蜚裨誹譬費鄙非飛鼻嚬嬪彬斌檳殯浜濱瀕牝玭貧賓頻憑氷聘騁乍事些仕伺似使俟僿史司唆嗣四士奢娑寫寺射巳師徙思捨斜斯柶査梭死沙泗渣瀉獅砂社祀祠私篩紗絲肆舍莎蓑蛇裟詐詞謝賜赦辭邪飼駟麝削數朔索"],["dfa1","傘刪山散汕珊産疝算蒜酸霰乷撒殺煞薩三參杉森渗芟蔘衫揷澁鈒颯上傷像償商喪嘗孀尙峠常床庠廂想桑橡湘爽牀狀相祥箱翔裳觴詳象賞霜塞璽賽嗇塞穡索色牲生甥省笙墅壻嶼序庶徐恕抒捿敍暑曙書栖棲犀瑞筮絮緖署"],["e0a1","胥舒薯西誓逝鋤黍鼠夕奭席惜昔晳析汐淅潟石碩蓆釋錫仙僊先善嬋宣扇敾旋渲煽琁瑄璇璿癬禪線繕羨腺膳船蘚蟬詵跣選銑鐥饍鮮卨屑楔泄洩渫舌薛褻設說雪齧剡暹殲纖蟾贍閃陝攝涉燮葉城姓宬性惺成星晟猩珹盛省筬"],["e1a1","聖聲腥誠醒世勢歲洗稅笹細說貰召嘯塑宵小少巢所掃搔昭梳沼消溯瀟炤燒甦疏疎瘙笑篠簫素紹蔬蕭蘇訴逍遡邵銷韶騷俗屬束涑粟續謖贖速孫巽損蓀遜飡率宋悚松淞訟誦送頌刷殺灑碎鎖衰釗修受嗽囚垂壽嫂守岫峀帥愁"],["e2a1","戍手授搜收數樹殊水洙漱燧狩獸琇璲瘦睡秀穗竪粹綏綬繡羞脩茱蒐蓚藪袖誰讐輸遂邃酬銖銹隋隧隨雖需須首髓鬚叔塾夙孰宿淑潚熟琡璹肅菽巡徇循恂旬栒楯橓殉洵淳珣盾瞬筍純脣舜荀蓴蕣詢諄醇錞順馴戌術述鉥崇崧"],["e3a1","嵩瑟膝蝨濕拾習褶襲丞乘僧勝升承昇繩蠅陞侍匙嘶始媤尸屎屍市弑恃施是時枾柴猜矢示翅蒔蓍視試詩諡豕豺埴寔式息拭植殖湜熄篒蝕識軾食飾伸侁信呻娠宸愼新晨燼申神紳腎臣莘薪藎蜃訊身辛辰迅失室實悉審尋心沁"],["e4a1","沈深瀋甚芯諶什十拾雙氏亞俄兒啞娥峨我牙芽莪蛾衙訝阿雅餓鴉鵝堊岳嶽幄惡愕握樂渥鄂鍔顎鰐齷安岸按晏案眼雁鞍顔鮟斡謁軋閼唵岩巖庵暗癌菴闇壓押狎鴨仰央怏昻殃秧鴦厓哀埃崖愛曖涯碍艾隘靄厄扼掖液縊腋額"],["e5a1","櫻罌鶯鸚也倻冶夜惹揶椰爺耶若野弱掠略約若葯蒻藥躍亮佯兩凉壤孃恙揚攘敭暘梁楊樣洋瀁煬痒瘍禳穰糧羊良襄諒讓釀陽量養圄御於漁瘀禦語馭魚齬億憶抑檍臆偃堰彦焉言諺孼蘖俺儼嚴奄掩淹嶪業円予余勵呂女如廬"],["e6a1","旅歟汝濾璵礖礪與艅茹輿轝閭餘驪麗黎亦力域役易曆歷疫繹譯轢逆驛嚥堧姸娟宴年延憐戀捐挻撚椽沇沿涎涓淵演漣烟然煙煉燃燕璉硏硯秊筵緣練縯聯衍軟輦蓮連鉛鍊鳶列劣咽悅涅烈熱裂說閱厭廉念捻染殮炎焰琰艶苒"],["e7a1","簾閻髥鹽曄獵燁葉令囹塋寧嶺嶸影怜映暎楹榮永泳渶潁濚瀛瀯煐營獰玲瑛瑩瓔盈穎纓羚聆英詠迎鈴鍈零霙靈領乂倪例刈叡曳汭濊猊睿穢芮藝蘂禮裔詣譽豫醴銳隸霓預五伍俉傲午吾吳嗚塢墺奧娛寤悟惡懊敖旿晤梧汚澳"],["e8a1","烏熬獒筽蜈誤鰲鼇屋沃獄玉鈺溫瑥瘟穩縕蘊兀壅擁瓮甕癰翁邕雍饔渦瓦窩窪臥蛙蝸訛婉完宛梡椀浣玩琓琬碗緩翫脘腕莞豌阮頑曰往旺枉汪王倭娃歪矮外嵬巍猥畏了僚僥凹堯夭妖姚寥寮尿嶢拗搖撓擾料曜樂橈燎燿瑤療"],["e9a1","窈窯繇繞耀腰蓼蟯要謠遙遼邀饒慾欲浴縟褥辱俑傭冗勇埇墉容庸慂榕涌湧溶熔瑢用甬聳茸蓉踊鎔鏞龍于佑偶優又友右宇寓尤愚憂旴牛玗瑀盂祐禑禹紆羽芋藕虞迂遇郵釪隅雨雩勖彧旭昱栯煜稶郁頊云暈橒殞澐熉耘芸蕓"],["eaa1","運隕雲韻蔚鬱亐熊雄元原員圓園垣媛嫄寃怨愿援沅洹湲源爰猿瑗苑袁轅遠阮院願鴛月越鉞位偉僞危圍委威尉慰暐渭爲瑋緯胃萎葦蔿蝟衛褘謂違韋魏乳侑儒兪劉唯喩孺宥幼幽庾悠惟愈愉揄攸有杻柔柚柳楡楢油洧流游溜"],["eba1","濡猶猷琉瑜由留癒硫紐維臾萸裕誘諛諭踰蹂遊逾遺酉釉鍮類六堉戮毓肉育陸倫允奫尹崙淪潤玧胤贇輪鈗閏律慄栗率聿戎瀜絨融隆垠恩慇殷誾銀隱乙吟淫蔭陰音飮揖泣邑凝應膺鷹依倚儀宜意懿擬椅毅疑矣義艤薏蟻衣誼"],["eca1","議醫二以伊利吏夷姨履已弛彛怡易李梨泥爾珥理異痍痢移罹而耳肄苡荑裏裡貽貳邇里離飴餌匿溺瀷益翊翌翼謚人仁刃印吝咽因姻寅引忍湮燐璘絪茵藺蚓認隣靭靷鱗麟一佚佾壹日溢逸鎰馹任壬妊姙恁林淋稔臨荏賃入卄"],["eda1","立笠粒仍剩孕芿仔刺咨姉姿子字孜恣慈滋炙煮玆瓷疵磁紫者自茨蔗藉諮資雌作勺嚼斫昨灼炸爵綽芍酌雀鵲孱棧殘潺盞岑暫潛箴簪蠶雜丈仗匠場墻壯奬將帳庄張掌暲杖樟檣欌漿牆狀獐璋章粧腸臟臧莊葬蔣薔藏裝贓醬長"],["eea1","障再哉在宰才材栽梓渽滓災縡裁財載齋齎爭箏諍錚佇低儲咀姐底抵杵楮樗沮渚狙猪疽箸紵苧菹著藷詛貯躇這邸雎齟勣吊嫡寂摘敵滴狄炙的積笛籍績翟荻謫賊赤跡蹟迪迹適鏑佃佺傳全典前剪塡塼奠專展廛悛戰栓殿氈澱"],["efa1","煎琠田甸畑癲筌箋箭篆纏詮輾轉鈿銓錢鐫電顚顫餞切截折浙癤竊節絶占岾店漸点粘霑鮎點接摺蝶丁井亭停偵呈姃定幀庭廷征情挺政整旌晶晸柾楨檉正汀淀淨渟湞瀞炡玎珽町睛碇禎程穽精綎艇訂諪貞鄭酊釘鉦鋌錠霆靖"],["f0a1","靜頂鼎制劑啼堤帝弟悌提梯濟祭第臍薺製諸蹄醍除際霽題齊俎兆凋助嘲弔彫措操早晁曺曹朝條棗槽漕潮照燥爪璪眺祖祚租稠窕粗糟組繰肇藻蚤詔調趙躁造遭釣阻雕鳥族簇足鏃存尊卒拙猝倧宗從悰慫棕淙琮種終綜縱腫"],["f1a1","踪踵鍾鐘佐坐左座挫罪主住侏做姝胄呪周嗾奏宙州廚晝朱柱株注洲湊澍炷珠疇籌紂紬綢舟蛛註誅走躊輳週酎酒鑄駐竹粥俊儁准埈寯峻晙樽浚準濬焌畯竣蠢逡遵雋駿茁中仲衆重卽櫛楫汁葺增憎曾拯烝甑症繒蒸證贈之只"],["f2a1","咫地址志持指摯支旨智枝枳止池沚漬知砥祉祗紙肢脂至芝芷蜘誌識贄趾遲直稙稷織職唇嗔塵振搢晉晋桭榛殄津溱珍瑨璡畛疹盡眞瞋秦縉縝臻蔯袗診賑軫辰進鎭陣陳震侄叱姪嫉帙桎瓆疾秩窒膣蛭質跌迭斟朕什執潗緝輯"],["f3a1","鏶集徵懲澄且侘借叉嗟嵯差次此磋箚茶蹉車遮捉搾着窄錯鑿齪撰澯燦璨瓚竄簒纂粲纘讚贊鑽餐饌刹察擦札紮僭參塹慘慙懺斬站讒讖倉倡創唱娼廠彰愴敞昌昶暢槍滄漲猖瘡窓脹艙菖蒼債埰寀寨彩採砦綵菜蔡采釵冊柵策"],["f4a1","責凄妻悽處倜刺剔尺慽戚拓擲斥滌瘠脊蹠陟隻仟千喘天川擅泉淺玔穿舛薦賤踐遷釧闡阡韆凸哲喆徹撤澈綴輟轍鐵僉尖沾添甛瞻簽籤詹諂堞妾帖捷牒疊睫諜貼輒廳晴淸聽菁請靑鯖切剃替涕滯締諦逮遞體初剿哨憔抄招梢"],["f5a1","椒楚樵炒焦硝礁礎秒稍肖艸苕草蕉貂超酢醋醮促囑燭矗蜀觸寸忖村邨叢塚寵悤憁摠總聰蔥銃撮催崔最墜抽推椎楸樞湫皺秋芻萩諏趨追鄒酋醜錐錘鎚雛騶鰍丑畜祝竺筑築縮蓄蹙蹴軸逐春椿瑃出朮黜充忠沖蟲衝衷悴膵萃"],["f6a1","贅取吹嘴娶就炊翠聚脆臭趣醉驟鷲側仄厠惻測層侈値嗤峙幟恥梔治淄熾痔痴癡稚穉緇緻置致蚩輜雉馳齒則勅飭親七柒漆侵寢枕沈浸琛砧針鍼蟄秤稱快他咤唾墮妥惰打拖朶楕舵陀馱駝倬卓啄坼度托拓擢晫柝濁濯琢琸託"],["f7a1","鐸呑嘆坦彈憚歎灘炭綻誕奪脫探眈耽貪塔搭榻宕帑湯糖蕩兌台太怠態殆汰泰笞胎苔跆邰颱宅擇澤撑攄兎吐土討慟桶洞痛筒統通堆槌腿褪退頹偸套妬投透鬪慝特闖坡婆巴把播擺杷波派爬琶破罷芭跛頗判坂板版瓣販辦鈑"],["f8a1","阪八叭捌佩唄悖敗沛浿牌狽稗覇貝彭澎烹膨愎便偏扁片篇編翩遍鞭騙貶坪平枰萍評吠嬖幣廢弊斃肺蔽閉陛佈包匍匏咆哺圃布怖抛抱捕暴泡浦疱砲胞脯苞葡蒲袍褒逋鋪飽鮑幅暴曝瀑爆輻俵剽彪慓杓標漂瓢票表豹飇飄驃"],["f9a1","品稟楓諷豊風馮彼披疲皮被避陂匹弼必泌珌畢疋筆苾馝乏逼下何厦夏廈昰河瑕荷蝦賀遐霞鰕壑學虐謔鶴寒恨悍旱汗漢澣瀚罕翰閑閒限韓割轄函含咸啣喊檻涵緘艦銜陷鹹合哈盒蛤閤闔陜亢伉姮嫦巷恒抗杭桁沆港缸肛航"],["faa1","行降項亥偕咳垓奚孩害懈楷海瀣蟹解該諧邂駭骸劾核倖幸杏荇行享向嚮珦鄕響餉饗香噓墟虛許憲櫶獻軒歇險驗奕爀赫革俔峴弦懸晛泫炫玄玹現眩睍絃絢縣舷衒見賢鉉顯孑穴血頁嫌俠協夾峽挾浹狹脅脇莢鋏頰亨兄刑型"],["fba1","形泂滎瀅灐炯熒珩瑩荊螢衡逈邢鎣馨兮彗惠慧暳蕙蹊醯鞋乎互呼壕壺好岵弧戶扈昊晧毫浩淏湖滸澔濠濩灝狐琥瑚瓠皓祜糊縞胡芦葫蒿虎號蝴護豪鎬頀顥惑或酷婚昏混渾琿魂忽惚笏哄弘汞泓洪烘紅虹訌鴻化和嬅樺火畵"],["fca1","禍禾花華話譁貨靴廓擴攫確碻穫丸喚奐宦幻患換歡晥桓渙煥環紈還驩鰥活滑猾豁闊凰幌徨恍惶愰慌晃晄榥況湟滉潢煌璜皇篁簧荒蝗遑隍黃匯回廻徊恢悔懷晦會檜淮澮灰獪繪膾茴蛔誨賄劃獲宖橫鐄哮嚆孝效斅曉梟涍淆"],["fda1","爻肴酵驍侯候厚后吼喉嗅帿後朽煦珝逅勛勳塤壎焄熏燻薰訓暈薨喧暄煊萱卉喙毁彙徽揮暉煇諱輝麾休携烋畦虧恤譎鷸兇凶匈洶胸黑昕欣炘痕吃屹紇訖欠欽歆吸恰洽翕興僖凞喜噫囍姬嬉希憙憘戱晞曦熙熹熺犧禧稀羲詰"]]')},4284:function(r){"use strict";r.exports=JSON.parse('[["0","\\u0000",127],["a140","　，、。．‧；：？！︰…‥﹐﹑﹒·﹔﹕﹖﹗｜–︱—︳╴︴﹏（）︵︶｛｝︷︸〔〕︹︺【】︻︼《》︽︾〈〉︿﹀「」﹁﹂『』﹃﹄﹙﹚"],["a1a1","﹛﹜﹝﹞‘’“”〝〞‵′＃＆＊※§〃○●△▲◎☆★◇◆□■▽▼㊣℅¯￣＿ˍ﹉﹊﹍﹎﹋﹌﹟﹠﹡＋－×÷±√＜＞＝≦≧≠∞≒≡﹢",4,"～∩∪⊥∠∟⊿㏒㏑∫∮∵∴♀♂⊕⊙↑↓←→↖↗↙↘∥∣／"],["a240","＼∕﹨＄￥〒￠￡％＠℃℉﹩﹪﹫㏕㎜㎝㎞㏎㎡㎎㎏㏄°兙兛兞兝兡兣嗧瓩糎▁",7,"▏▎▍▌▋▊▉┼┴┬┤├▔─│▕┌┐└┘╭"],["a2a1","╮╰╯═╞╪╡◢◣◥◤╱╲╳０",9,"Ⅰ",9,"〡",8,"十卄卅Ａ",25,"ａ",21],["a340","ｗｘｙｚΑ",16,"Σ",6,"α",16,"σ",6,"ㄅ",10],["a3a1","ㄐ",25,"˙ˉˊˇˋ"],["a3e1","€"],["a440","一乙丁七乃九了二人儿入八几刀刁力匕十卜又三下丈上丫丸凡久么也乞于亡兀刃勺千叉口土士夕大女子孑孓寸小尢尸山川工己已巳巾干廾弋弓才"],["a4a1","丑丐不中丰丹之尹予云井互五亢仁什仃仆仇仍今介仄元允內六兮公冗凶分切刈勻勾勿化匹午升卅卞厄友及反壬天夫太夭孔少尤尺屯巴幻廿弔引心戈戶手扎支文斗斤方日曰月木欠止歹毋比毛氏水火爪父爻片牙牛犬王丙"],["a540","世丕且丘主乍乏乎以付仔仕他仗代令仙仞充兄冉冊冬凹出凸刊加功包匆北匝仟半卉卡占卯卮去可古右召叮叩叨叼司叵叫另只史叱台句叭叻四囚外"],["a5a1","央失奴奶孕它尼巨巧左市布平幼弁弘弗必戊打扔扒扑斥旦朮本未末札正母民氐永汁汀氾犯玄玉瓜瓦甘生用甩田由甲申疋白皮皿目矛矢石示禾穴立丞丟乒乓乩亙交亦亥仿伉伙伊伕伍伐休伏仲件任仰仳份企伋光兇兆先全"],["a640","共再冰列刑划刎刖劣匈匡匠印危吉吏同吊吐吁吋各向名合吃后吆吒因回囝圳地在圭圬圯圩夙多夷夸妄奸妃好她如妁字存宇守宅安寺尖屹州帆并年"],["a6a1","式弛忙忖戎戌戍成扣扛托收早旨旬旭曲曳有朽朴朱朵次此死氖汝汗汙江池汐汕污汛汍汎灰牟牝百竹米糸缶羊羽老考而耒耳聿肉肋肌臣自至臼舌舛舟艮色艾虫血行衣西阡串亨位住佇佗佞伴佛何估佐佑伽伺伸佃佔似但佣"],["a740","作你伯低伶余佝佈佚兌克免兵冶冷別判利刪刨劫助努劬匣即卵吝吭吞吾否呎吧呆呃吳呈呂君吩告吹吻吸吮吵吶吠吼呀吱含吟听囪困囤囫坊坑址坍"],["a7a1","均坎圾坐坏圻壯夾妝妒妨妞妣妙妖妍妤妓妊妥孝孜孚孛完宋宏尬局屁尿尾岐岑岔岌巫希序庇床廷弄弟彤形彷役忘忌志忍忱快忸忪戒我抄抗抖技扶抉扭把扼找批扳抒扯折扮投抓抑抆改攻攸旱更束李杏材村杜杖杞杉杆杠"],["a840","杓杗步每求汞沙沁沈沉沅沛汪決沐汰沌汨沖沒汽沃汲汾汴沆汶沍沔沘沂灶灼災灸牢牡牠狄狂玖甬甫男甸皂盯矣私秀禿究系罕肖肓肝肘肛肚育良芒"],["a8a1","芋芍見角言谷豆豕貝赤走足身車辛辰迂迆迅迄巡邑邢邪邦那酉釆里防阮阱阪阬並乖乳事些亞享京佯依侍佳使佬供例來侃佰併侈佩佻侖佾侏侑佺兔兒兕兩具其典冽函刻券刷刺到刮制剁劾劻卒協卓卑卦卷卸卹取叔受味呵"],["a940","咖呸咕咀呻呷咄咒咆呼咐呱呶和咚呢周咋命咎固垃坷坪坩坡坦坤坼夜奉奇奈奄奔妾妻委妹妮姑姆姐姍始姓姊妯妳姒姅孟孤季宗定官宜宙宛尚屈居"],["a9a1","屆岷岡岸岩岫岱岳帘帚帖帕帛帑幸庚店府底庖延弦弧弩往征彿彼忝忠忽念忿怏怔怯怵怖怪怕怡性怩怫怛或戕房戾所承拉拌拄抿拂抹拒招披拓拔拋拈抨抽押拐拙拇拍抵拚抱拘拖拗拆抬拎放斧於旺昔易昌昆昂明昀昏昕昊"],["aa40","昇服朋杭枋枕東果杳杷枇枝林杯杰板枉松析杵枚枓杼杪杲欣武歧歿氓氛泣注泳沱泌泥河沽沾沼波沫法泓沸泄油況沮泗泅泱沿治泡泛泊沬泯泜泖泠"],["aaa1","炕炎炒炊炙爬爭爸版牧物狀狎狙狗狐玩玨玟玫玥甽疝疙疚的盂盲直知矽社祀祁秉秈空穹竺糾罔羌羋者肺肥肢肱股肫肩肴肪肯臥臾舍芳芝芙芭芽芟芹花芬芥芯芸芣芰芾芷虎虱初表軋迎返近邵邸邱邶采金長門阜陀阿阻附"],["ab40","陂隹雨青非亟亭亮信侵侯便俠俑俏保促侶俘俟俊俗侮俐俄係俚俎俞侷兗冒冑冠剎剃削前剌剋則勇勉勃勁匍南卻厚叛咬哀咨哎哉咸咦咳哇哂咽咪品"],["aba1","哄哈咯咫咱咻咩咧咿囿垂型垠垣垢城垮垓奕契奏奎奐姜姘姿姣姨娃姥姪姚姦威姻孩宣宦室客宥封屎屏屍屋峙峒巷帝帥帟幽庠度建弈弭彥很待徊律徇後徉怒思怠急怎怨恍恰恨恢恆恃恬恫恪恤扁拜挖按拼拭持拮拽指拱拷"],["ac40","拯括拾拴挑挂政故斫施既春昭映昧是星昨昱昤曷柿染柱柔某柬架枯柵柩柯柄柑枴柚查枸柏柞柳枰柙柢柝柒歪殃殆段毒毗氟泉洋洲洪流津洌洱洞洗"],["aca1","活洽派洶洛泵洹洧洸洩洮洵洎洫炫為炳炬炯炭炸炮炤爰牲牯牴狩狠狡玷珊玻玲珍珀玳甚甭畏界畎畋疫疤疥疢疣癸皆皇皈盈盆盃盅省盹相眉看盾盼眇矜砂研砌砍祆祉祈祇禹禺科秒秋穿突竿竽籽紂紅紀紉紇約紆缸美羿耄"],["ad40","耐耍耑耶胖胥胚胃胄背胡胛胎胞胤胝致舢苧范茅苣苛苦茄若茂茉苒苗英茁苜苔苑苞苓苟苯茆虐虹虻虺衍衫要觔計訂訃貞負赴赳趴軍軌述迦迢迪迥"],["ada1","迭迫迤迨郊郎郁郃酋酊重閂限陋陌降面革韋韭音頁風飛食首香乘亳倌倍倣俯倦倥俸倩倖倆值借倚倒們俺倀倔倨俱倡個候倘俳修倭倪俾倫倉兼冤冥冢凍凌准凋剖剜剔剛剝匪卿原厝叟哨唐唁唷哼哥哲唆哺唔哩哭員唉哮哪"],["ae40","哦唧唇哽唏圃圄埂埔埋埃堉夏套奘奚娑娘娜娟娛娓姬娠娣娩娥娌娉孫屘宰害家宴宮宵容宸射屑展屐峭峽峻峪峨峰島崁峴差席師庫庭座弱徒徑徐恙"],["aea1","恣恥恐恕恭恩息悄悟悚悍悔悌悅悖扇拳挈拿捎挾振捕捂捆捏捉挺捐挽挪挫挨捍捌效敉料旁旅時晉晏晃晒晌晅晁書朔朕朗校核案框桓根桂桔栩梳栗桌桑栽柴桐桀格桃株桅栓栘桁殊殉殷氣氧氨氦氤泰浪涕消涇浦浸海浙涓"],["af40","浬涉浮浚浴浩涌涊浹涅浥涔烊烘烤烙烈烏爹特狼狹狽狸狷玆班琉珮珠珪珞畔畝畜畚留疾病症疲疳疽疼疹痂疸皋皰益盍盎眩真眠眨矩砰砧砸砝破砷"],["afa1","砥砭砠砟砲祕祐祠祟祖神祝祗祚秤秣秧租秦秩秘窄窈站笆笑粉紡紗紋紊素索純紐紕級紜納紙紛缺罟羔翅翁耆耘耕耙耗耽耿胱脂胰脅胭胴脆胸胳脈能脊胼胯臭臬舀舐航舫舨般芻茫荒荔荊茸荐草茵茴荏茲茹茶茗荀茱茨荃"],["b040","虔蚊蚪蚓蚤蚩蚌蚣蚜衰衷袁袂衽衹記訐討訌訕訊託訓訖訏訑豈豺豹財貢起躬軒軔軏辱送逆迷退迺迴逃追逅迸邕郡郝郢酒配酌釘針釗釜釙閃院陣陡"],["b0a1","陛陝除陘陞隻飢馬骨高鬥鬲鬼乾偺偽停假偃偌做偉健偶偎偕偵側偷偏倏偯偭兜冕凰剪副勒務勘動匐匏匙匿區匾參曼商啪啦啄啞啡啃啊唱啖問啕唯啤唸售啜唬啣唳啁啗圈國圉域堅堊堆埠埤基堂堵執培夠奢娶婁婉婦婪婀"],["b140","娼婢婚婆婊孰寇寅寄寂宿密尉專將屠屜屝崇崆崎崛崖崢崑崩崔崙崤崧崗巢常帶帳帷康庸庶庵庾張強彗彬彩彫得徙從徘御徠徜恿患悉悠您惋悴惦悽"],["b1a1","情悻悵惜悼惘惕惆惟悸惚惇戚戛扈掠控捲掖探接捷捧掘措捱掩掉掃掛捫推掄授掙採掬排掏掀捻捩捨捺敝敖救教敗啟敏敘敕敔斜斛斬族旋旌旎晝晚晤晨晦晞曹勗望梁梯梢梓梵桿桶梱梧梗械梃棄梭梆梅梔條梨梟梡梂欲殺"],["b240","毫毬氫涎涼淳淙液淡淌淤添淺清淇淋涯淑涮淞淹涸混淵淅淒渚涵淚淫淘淪深淮淨淆淄涪淬涿淦烹焉焊烽烯爽牽犁猜猛猖猓猙率琅琊球理現琍瓠瓶"],["b2a1","瓷甜產略畦畢異疏痔痕疵痊痍皎盔盒盛眷眾眼眶眸眺硫硃硎祥票祭移窒窕笠笨笛第符笙笞笮粒粗粕絆絃統紮紹紼絀細紳組累終紲紱缽羞羚翌翎習耜聊聆脯脖脣脫脩脰脤舂舵舷舶船莎莞莘荸莢莖莽莫莒莊莓莉莠荷荻荼"],["b340","莆莧處彪蛇蛀蚶蛄蚵蛆蛋蚱蚯蛉術袞袈被袒袖袍袋覓規訪訝訣訥許設訟訛訢豉豚販責貫貨貪貧赧赦趾趺軛軟這逍通逗連速逝逐逕逞造透逢逖逛途"],["b3a1","部郭都酗野釵釦釣釧釭釩閉陪陵陳陸陰陴陶陷陬雀雪雩章竟頂頃魚鳥鹵鹿麥麻傢傍傅備傑傀傖傘傚最凱割剴創剩勞勝勛博厥啻喀喧啼喊喝喘喂喜喪喔喇喋喃喳單喟唾喲喚喻喬喱啾喉喫喙圍堯堪場堤堰報堡堝堠壹壺奠"],["b440","婷媚婿媒媛媧孳孱寒富寓寐尊尋就嵌嵐崴嵇巽幅帽幀幃幾廊廁廂廄弼彭復循徨惑惡悲悶惠愜愣惺愕惰惻惴慨惱愎惶愉愀愒戟扉掣掌描揀揩揉揆揍"],["b4a1","插揣提握揖揭揮捶援揪換摒揚揹敞敦敢散斑斐斯普晰晴晶景暑智晾晷曾替期朝棺棕棠棘棗椅棟棵森棧棹棒棲棣棋棍植椒椎棉棚楮棻款欺欽殘殖殼毯氮氯氬港游湔渡渲湧湊渠渥渣減湛湘渤湖湮渭渦湯渴湍渺測湃渝渾滋"],["b540","溉渙湎湣湄湲湩湟焙焚焦焰無然煮焜牌犄犀猶猥猴猩琺琪琳琢琥琵琶琴琯琛琦琨甥甦畫番痢痛痣痙痘痞痠登發皖皓皴盜睏短硝硬硯稍稈程稅稀窘"],["b5a1","窗窖童竣等策筆筐筒答筍筋筏筑粟粥絞結絨絕紫絮絲絡給絢絰絳善翔翕耋聒肅腕腔腋腑腎脹腆脾腌腓腴舒舜菩萃菸萍菠菅萋菁華菱菴著萊菰萌菌菽菲菊萸萎萄菜萇菔菟虛蛟蛙蛭蛔蛛蛤蛐蛞街裁裂袱覃視註詠評詞証詁"],["b640","詔詛詐詆訴診訶詖象貂貯貼貳貽賁費賀貴買貶貿貸越超趁跎距跋跚跑跌跛跆軻軸軼辜逮逵週逸進逶鄂郵鄉郾酣酥量鈔鈕鈣鈉鈞鈍鈐鈇鈑閔閏開閑"],["b6a1","間閒閎隊階隋陽隅隆隍陲隄雁雅雄集雇雯雲韌項順須飧飪飯飩飲飭馮馭黃黍黑亂傭債傲傳僅傾催傷傻傯僇剿剷剽募勦勤勢勣匯嗟嗨嗓嗦嗎嗜嗇嗑嗣嗤嗯嗚嗡嗅嗆嗥嗉園圓塞塑塘塗塚塔填塌塭塊塢塒塋奧嫁嫉嫌媾媽媼"],["b740","媳嫂媲嵩嵯幌幹廉廈弒彙徬微愚意慈感想愛惹愁愈慎慌慄慍愾愴愧愍愆愷戡戢搓搾搞搪搭搽搬搏搜搔損搶搖搗搆敬斟新暗暉暇暈暖暄暘暍會榔業"],["b7a1","楚楷楠楔極椰概楊楨楫楞楓楹榆楝楣楛歇歲毀殿毓毽溢溯滓溶滂源溝滇滅溥溘溼溺溫滑準溜滄滔溪溧溴煎煙煩煤煉照煜煬煦煌煥煞煆煨煖爺牒猷獅猿猾瑯瑚瑕瑟瑞瑁琿瑙瑛瑜當畸瘀痰瘁痲痱痺痿痴痳盞盟睛睫睦睞督"],["b840","睹睪睬睜睥睨睢矮碎碰碗碘碌碉硼碑碓硿祺祿禁萬禽稜稚稠稔稟稞窟窠筷節筠筮筧粱粳粵經絹綑綁綏絛置罩罪署義羨群聖聘肆肄腱腰腸腥腮腳腫"],["b8a1","腹腺腦舅艇蒂葷落萱葵葦葫葉葬葛萼萵葡董葩葭葆虞虜號蛹蜓蜈蜇蜀蛾蛻蜂蜃蜆蜊衙裟裔裙補裘裝裡裊裕裒覜解詫該詳試詩詰誇詼詣誠話誅詭詢詮詬詹詻訾詨豢貊貉賊資賈賄貲賃賂賅跡跟跨路跳跺跪跤跦躲較載軾輊"],["b940","辟農運遊道遂達逼違遐遇遏過遍遑逾遁鄒鄗酬酪酩釉鈷鉗鈸鈽鉀鈾鉛鉋鉤鉑鈴鉉鉍鉅鈹鈿鉚閘隘隔隕雍雋雉雊雷電雹零靖靴靶預頑頓頊頒頌飼飴"],["b9a1","飽飾馳馱馴髡鳩麂鼎鼓鼠僧僮僥僖僭僚僕像僑僱僎僩兢凳劃劂匱厭嗾嘀嘛嘗嗽嘔嘆嘉嘍嘎嗷嘖嘟嘈嘐嗶團圖塵塾境墓墊塹墅塽壽夥夢夤奪奩嫡嫦嫩嫗嫖嫘嫣孵寞寧寡寥實寨寢寤察對屢嶄嶇幛幣幕幗幔廓廖弊彆彰徹慇"],["ba40","愿態慷慢慣慟慚慘慵截撇摘摔撤摸摟摺摑摧搴摭摻敲斡旗旖暢暨暝榜榨榕槁榮槓構榛榷榻榫榴槐槍榭槌榦槃榣歉歌氳漳演滾漓滴漩漾漠漬漏漂漢"],["baa1","滿滯漆漱漸漲漣漕漫漯澈漪滬漁滲滌滷熔熙煽熊熄熒爾犒犖獄獐瑤瑣瑪瑰瑭甄疑瘧瘍瘋瘉瘓盡監瞄睽睿睡磁碟碧碳碩碣禎福禍種稱窪窩竭端管箕箋筵算箝箔箏箸箇箄粹粽精綻綰綜綽綾綠緊綴網綱綺綢綿綵綸維緒緇綬"],["bb40","罰翠翡翟聞聚肇腐膀膏膈膊腿膂臧臺與舔舞艋蓉蒿蓆蓄蒙蒞蒲蒜蓋蒸蓀蓓蒐蒼蓑蓊蜿蜜蜻蜢蜥蜴蜘蝕蜷蜩裳褂裴裹裸製裨褚裯誦誌語誣認誡誓誤"],["bba1","說誥誨誘誑誚誧豪貍貌賓賑賒赫趙趕跼輔輒輕輓辣遠遘遜遣遙遞遢遝遛鄙鄘鄞酵酸酷酴鉸銀銅銘銖鉻銓銜銨鉼銑閡閨閩閣閥閤隙障際雌雒需靼鞅韶頗領颯颱餃餅餌餉駁骯骰髦魁魂鳴鳶鳳麼鼻齊億儀僻僵價儂儈儉儅凜"],["bc40","劇劈劉劍劊勰厲嘮嘻嘹嘲嘿嘴嘩噓噎噗噴嘶嘯嘰墀墟增墳墜墮墩墦奭嬉嫻嬋嫵嬌嬈寮寬審寫層履嶝嶔幢幟幡廢廚廟廝廣廠彈影德徵慶慧慮慝慕憂"],["bca1","慼慰慫慾憧憐憫憎憬憚憤憔憮戮摩摯摹撞撲撈撐撰撥撓撕撩撒撮播撫撚撬撙撢撳敵敷數暮暫暴暱樣樟槨樁樞標槽模樓樊槳樂樅槭樑歐歎殤毅毆漿潼澄潑潦潔澆潭潛潸潮澎潺潰潤澗潘滕潯潠潟熟熬熱熨牖犛獎獗瑩璋璃"],["bd40","瑾璀畿瘠瘩瘟瘤瘦瘡瘢皚皺盤瞎瞇瞌瞑瞋磋磅確磊碾磕碼磐稿稼穀稽稷稻窯窮箭箱範箴篆篇篁箠篌糊締練緯緻緘緬緝編緣線緞緩綞緙緲緹罵罷羯"],["bda1","翩耦膛膜膝膠膚膘蔗蔽蔚蓮蔬蔭蔓蔑蔣蔡蔔蓬蔥蓿蔆螂蝴蝶蝠蝦蝸蝨蝙蝗蝌蝓衛衝褐複褒褓褕褊誼諒談諄誕請諸課諉諂調誰論諍誶誹諛豌豎豬賠賞賦賤賬賭賢賣賜質賡赭趟趣踫踐踝踢踏踩踟踡踞躺輝輛輟輩輦輪輜輞"],["be40","輥適遮遨遭遷鄰鄭鄧鄱醇醉醋醃鋅銻銷鋪銬鋤鋁銳銼鋒鋇鋰銲閭閱霄霆震霉靠鞍鞋鞏頡頫頜颳養餓餒餘駝駐駟駛駑駕駒駙骷髮髯鬧魅魄魷魯鴆鴉"],["bea1","鴃麩麾黎墨齒儒儘儔儐儕冀冪凝劑劓勳噙噫噹噩噤噸噪器噥噱噯噬噢噶壁墾壇壅奮嬝嬴學寰導彊憲憑憩憊懍憶憾懊懈戰擅擁擋撻撼據擄擇擂操撿擒擔撾整曆曉暹曄曇暸樽樸樺橙橫橘樹橄橢橡橋橇樵機橈歙歷氅濂澱澡"],["bf40","濃澤濁澧澳激澹澶澦澠澴熾燉燐燒燈燕熹燎燙燜燃燄獨璜璣璘璟璞瓢甌甍瘴瘸瘺盧盥瞠瞞瞟瞥磨磚磬磧禦積穎穆穌穋窺篙簑築篤篛篡篩篦糕糖縊"],["bfa1","縑縈縛縣縞縝縉縐罹羲翰翱翮耨膳膩膨臻興艘艙蕊蕙蕈蕨蕩蕃蕉蕭蕪蕞螃螟螞螢融衡褪褲褥褫褡親覦諦諺諫諱謀諜諧諮諾謁謂諷諭諳諶諼豫豭貓賴蹄踱踴蹂踹踵輻輯輸輳辨辦遵遴選遲遼遺鄴醒錠錶鋸錳錯錢鋼錫錄錚"],["c040","錐錦錡錕錮錙閻隧隨險雕霎霑霖霍霓霏靛靜靦鞘頰頸頻頷頭頹頤餐館餞餛餡餚駭駢駱骸骼髻髭鬨鮑鴕鴣鴦鴨鴒鴛默黔龍龜優償儡儲勵嚎嚀嚐嚅嚇"],["c0a1","嚏壕壓壑壎嬰嬪嬤孺尷屨嶼嶺嶽嶸幫彌徽應懂懇懦懋戲戴擎擊擘擠擰擦擬擱擢擭斂斃曙曖檀檔檄檢檜櫛檣橾檗檐檠歜殮毚氈濘濱濟濠濛濤濫濯澀濬濡濩濕濮濰燧營燮燦燥燭燬燴燠爵牆獰獲璩環璦璨癆療癌盪瞳瞪瞰瞬"],["c140","瞧瞭矯磷磺磴磯礁禧禪穗窿簇簍篾篷簌篠糠糜糞糢糟糙糝縮績繆縷縲繃縫總縱繅繁縴縹繈縵縿縯罄翳翼聱聲聰聯聳臆臃膺臂臀膿膽臉膾臨舉艱薪"],["c1a1","薄蕾薜薑薔薯薛薇薨薊虧蟀蟑螳蟒蟆螫螻螺蟈蟋褻褶襄褸褽覬謎謗謙講謊謠謝謄謐豁谿豳賺賽購賸賻趨蹉蹋蹈蹊轄輾轂轅輿避遽還邁邂邀鄹醣醞醜鍍鎂錨鍵鍊鍥鍋錘鍾鍬鍛鍰鍚鍔闊闋闌闈闆隱隸雖霜霞鞠韓顆颶餵騁"],["c240","駿鮮鮫鮪鮭鴻鴿麋黏點黜黝黛鼾齋叢嚕嚮壙壘嬸彝懣戳擴擲擾攆擺擻擷斷曜朦檳檬櫃檻檸櫂檮檯歟歸殯瀉瀋濾瀆濺瀑瀏燻燼燾燸獷獵璧璿甕癖癘"],["c2a1","癒瞽瞿瞻瞼礎禮穡穢穠竄竅簫簧簪簞簣簡糧織繕繞繚繡繒繙罈翹翻職聶臍臏舊藏薩藍藐藉薰薺薹薦蟯蟬蟲蟠覆覲觴謨謹謬謫豐贅蹙蹣蹦蹤蹟蹕軀轉轍邇邃邈醫醬釐鎔鎊鎖鎢鎳鎮鎬鎰鎘鎚鎗闔闖闐闕離雜雙雛雞霤鞣鞦"],["c340","鞭韹額顏題顎顓颺餾餿餽餮馥騎髁鬃鬆魏魎魍鯊鯉鯽鯈鯀鵑鵝鵠黠鼕鼬儳嚥壞壟壢寵龐廬懲懷懶懵攀攏曠曝櫥櫝櫚櫓瀛瀟瀨瀚瀝瀕瀘爆爍牘犢獸"],["c3a1","獺璽瓊瓣疇疆癟癡矇礙禱穫穩簾簿簸簽簷籀繫繭繹繩繪羅繳羶羹羸臘藩藝藪藕藤藥藷蟻蠅蠍蟹蟾襠襟襖襞譁譜識證譚譎譏譆譙贈贊蹼蹲躇蹶蹬蹺蹴轔轎辭邊邋醱醮鏡鏑鏟鏃鏈鏜鏝鏖鏢鏍鏘鏤鏗鏨關隴難霪霧靡韜韻類"],["c440","願顛颼饅饉騖騙鬍鯨鯧鯖鯛鶉鵡鵲鵪鵬麒麗麓麴勸嚨嚷嚶嚴嚼壤孀孃孽寶巉懸懺攘攔攙曦朧櫬瀾瀰瀲爐獻瓏癢癥礦礪礬礫竇競籌籃籍糯糰辮繽繼"],["c4a1","纂罌耀臚艦藻藹蘑藺蘆蘋蘇蘊蠔蠕襤覺觸議譬警譯譟譫贏贍躉躁躅躂醴釋鐘鐃鏽闡霰飄饒饑馨騫騰騷騵鰓鰍鹹麵黨鼯齟齣齡儷儸囁囀囂夔屬巍懼懾攝攜斕曩櫻欄櫺殲灌爛犧瓖瓔癩矓籐纏續羼蘗蘭蘚蠣蠢蠡蠟襪襬覽譴"],["c540","護譽贓躊躍躋轟辯醺鐮鐳鐵鐺鐸鐲鐫闢霸霹露響顧顥饗驅驃驀騾髏魔魑鰭鰥鶯鶴鷂鶸麝黯鼙齜齦齧儼儻囈囊囉孿巔巒彎懿攤權歡灑灘玀瓤疊癮癬"],["c5a1","禳籠籟聾聽臟襲襯觼讀贖贗躑躓轡酈鑄鑑鑒霽霾韃韁顫饕驕驍髒鬚鱉鰱鰾鰻鷓鷗鼴齬齪龔囌巖戀攣攫攪曬欐瓚竊籤籣籥纓纖纔臢蘸蘿蠱變邐邏鑣鑠鑤靨顯饜驚驛驗髓體髑鱔鱗鱖鷥麟黴囑壩攬灞癱癲矗罐羈蠶蠹衢讓讒"],["c640","讖艷贛釀鑪靂靈靄韆顰驟鬢魘鱟鷹鷺鹼鹽鼇齷齲廳欖灣籬籮蠻觀躡釁鑲鑰顱饞髖鬣黌灤矚讚鑷韉驢驥纜讜躪釅鑽鑾鑼鱷鱸黷豔鑿鸚爨驪鬱鸛鸞籲"],["c940","乂乜凵匚厂万丌乇亍囗兀屮彳丏冇与丮亓仂仉仈冘勼卬厹圠夃夬尐巿旡殳毌气爿丱丼仨仜仩仡仝仚刌匜卌圢圣夗夯宁宄尒尻屴屳帄庀庂忉戉扐氕"],["c9a1","氶汃氿氻犮犰玊禸肊阞伎优伬仵伔仱伀价伈伝伂伅伢伓伄仴伒冱刓刉刐劦匢匟卍厊吇囡囟圮圪圴夼妀奼妅奻奾奷奿孖尕尥屼屺屻屾巟幵庄异弚彴忕忔忏扜扞扤扡扦扢扙扠扚扥旯旮朾朹朸朻机朿朼朳氘汆汒汜汏汊汔汋"],["ca40","汌灱牞犴犵玎甪癿穵网艸艼芀艽艿虍襾邙邗邘邛邔阢阤阠阣佖伻佢佉体佤伾佧佒佟佁佘伭伳伿佡冏冹刜刞刡劭劮匉卣卲厎厏吰吷吪呔呅吙吜吥吘"],["caa1","吽呏呁吨吤呇囮囧囥坁坅坌坉坋坒夆奀妦妘妠妗妎妢妐妏妧妡宎宒尨尪岍岏岈岋岉岒岊岆岓岕巠帊帎庋庉庌庈庍弅弝彸彶忒忑忐忭忨忮忳忡忤忣忺忯忷忻怀忴戺抃抌抎抏抔抇扱扻扺扰抁抈扷扽扲扴攷旰旴旳旲旵杅杇"],["cb40","杙杕杌杈杝杍杚杋毐氙氚汸汧汫沄沋沏汱汯汩沚汭沇沕沜汦汳汥汻沎灴灺牣犿犽狃狆狁犺狅玕玗玓玔玒町甹疔疕皁礽耴肕肙肐肒肜芐芏芅芎芑芓"],["cba1","芊芃芄豸迉辿邟邡邥邞邧邠阰阨阯阭丳侘佼侅佽侀侇佶佴侉侄佷佌侗佪侚佹侁佸侐侜侔侞侒侂侕佫佮冞冼冾刵刲刳剆刱劼匊匋匼厒厔咇呿咁咑咂咈呫呺呾呥呬呴呦咍呯呡呠咘呣呧呤囷囹坯坲坭坫坱坰坶垀坵坻坳坴坢"],["cc40","坨坽夌奅妵妺姏姎妲姌姁妶妼姃姖妱妽姀姈妴姇孢孥宓宕屄屇岮岤岠岵岯岨岬岟岣岭岢岪岧岝岥岶岰岦帗帔帙弨弢弣弤彔徂彾彽忞忥怭怦怙怲怋"],["cca1","怴怊怗怳怚怞怬怢怍怐怮怓怑怌怉怜戔戽抭抴拑抾抪抶拊抮抳抯抻抩抰抸攽斨斻昉旼昄昒昈旻昃昋昍昅旽昑昐曶朊枅杬枎枒杶杻枘枆构杴枍枌杺枟枑枙枃杽极杸杹枔欥殀歾毞氝沓泬泫泮泙沶泔沭泧沷泐泂沺泃泆泭泲"],["cd40","泒泝沴沊沝沀泞泀洰泍泇沰泹泏泩泑炔炘炅炓炆炄炑炖炂炚炃牪狖狋狘狉狜狒狔狚狌狑玤玡玭玦玢玠玬玝瓝瓨甿畀甾疌疘皯盳盱盰盵矸矼矹矻矺"],["cda1","矷祂礿秅穸穻竻籵糽耵肏肮肣肸肵肭舠芠苀芫芚芘芛芵芧芮芼芞芺芴芨芡芩苂芤苃芶芢虰虯虭虮豖迒迋迓迍迖迕迗邲邴邯邳邰阹阽阼阺陃俍俅俓侲俉俋俁俔俜俙侻侳俛俇俖侺俀侹俬剄剉勀勂匽卼厗厖厙厘咺咡咭咥哏"],["ce40","哃茍咷咮哖咶哅哆咠呰咼咢咾呲哞咰垵垞垟垤垌垗垝垛垔垘垏垙垥垚垕壴复奓姡姞姮娀姱姝姺姽姼姶姤姲姷姛姩姳姵姠姾姴姭宨屌峐峘峌峗峋峛"],["cea1","峞峚峉峇峊峖峓峔峏峈峆峎峟峸巹帡帢帣帠帤庰庤庢庛庣庥弇弮彖徆怷怹恔恲恞恅恓恇恉恛恌恀恂恟怤恄恘恦恮扂扃拏挍挋拵挎挃拫拹挏挌拸拶挀挓挔拺挕拻拰敁敃斪斿昶昡昲昵昜昦昢昳昫昺昝昴昹昮朏朐柁柲柈枺"],["cf40","柜枻柸柘柀枷柅柫柤柟枵柍枳柷柶柮柣柂枹柎柧柰枲柼柆柭柌枮柦柛柺柉柊柃柪柋欨殂殄殶毖毘毠氠氡洨洴洭洟洼洿洒洊泚洳洄洙洺洚洑洀洝浂"],["cfa1","洁洘洷洃洏浀洇洠洬洈洢洉洐炷炟炾炱炰炡炴炵炩牁牉牊牬牰牳牮狊狤狨狫狟狪狦狣玅珌珂珈珅玹玶玵玴珫玿珇玾珃珆玸珋瓬瓮甮畇畈疧疪癹盄眈眃眄眅眊盷盻盺矧矨砆砑砒砅砐砏砎砉砃砓祊祌祋祅祄秕种秏秖秎窀"],["d040","穾竑笀笁籺籸籹籿粀粁紃紈紁罘羑羍羾耇耎耏耔耷胘胇胠胑胈胂胐胅胣胙胜胊胕胉胏胗胦胍臿舡芔苙苾苹茇苨茀苕茺苫苖苴苬苡苲苵茌苻苶苰苪"],["d0a1","苤苠苺苳苭虷虴虼虳衁衎衧衪衩觓訄訇赲迣迡迮迠郱邽邿郕郅邾郇郋郈釔釓陔陏陑陓陊陎倞倅倇倓倢倰倛俵俴倳倷倬俶俷倗倜倠倧倵倯倱倎党冔冓凊凄凅凈凎剡剚剒剞剟剕剢勍匎厞唦哢唗唒哧哳哤唚哿唄唈哫唑唅哱"],["d140","唊哻哷哸哠唎唃唋圁圂埌堲埕埒垺埆垽垼垸垶垿埇埐垹埁夎奊娙娖娭娮娕娏娗娊娞娳孬宧宭宬尃屖屔峬峿峮峱峷崀峹帩帨庨庮庪庬弳弰彧恝恚恧"],["d1a1","恁悢悈悀悒悁悝悃悕悛悗悇悜悎戙扆拲挐捖挬捄捅挶捃揤挹捋捊挼挩捁挴捘捔捙挭捇挳捚捑挸捗捀捈敊敆旆旃旄旂晊晟晇晑朒朓栟栚桉栲栳栻桋桏栖栱栜栵栫栭栯桎桄栴栝栒栔栦栨栮桍栺栥栠欬欯欭欱欴歭肂殈毦毤"],["d240","毨毣毢毧氥浺浣浤浶洍浡涒浘浢浭浯涑涍淯浿涆浞浧浠涗浰浼浟涂涘洯浨涋浾涀涄洖涃浻浽浵涐烜烓烑烝烋缹烢烗烒烞烠烔烍烅烆烇烚烎烡牂牸"],["d2a1","牷牶猀狺狴狾狶狳狻猁珓珙珥珖玼珧珣珩珜珒珛珔珝珚珗珘珨瓞瓟瓴瓵甡畛畟疰痁疻痄痀疿疶疺皊盉眝眛眐眓眒眣眑眕眙眚眢眧砣砬砢砵砯砨砮砫砡砩砳砪砱祔祛祏祜祓祒祑秫秬秠秮秭秪秜秞秝窆窉窅窋窌窊窇竘笐"],["d340","笄笓笅笏笈笊笎笉笒粄粑粊粌粈粍粅紞紝紑紎紘紖紓紟紒紏紌罜罡罞罠罝罛羖羒翃翂翀耖耾耹胺胲胹胵脁胻脀舁舯舥茳茭荄茙荑茥荖茿荁茦茜茢"],["d3a1","荂荎茛茪茈茼荍茖茤茠茷茯茩荇荅荌荓茞茬荋茧荈虓虒蚢蚨蚖蚍蚑蚞蚇蚗蚆蚋蚚蚅蚥蚙蚡蚧蚕蚘蚎蚝蚐蚔衃衄衭衵衶衲袀衱衿衯袃衾衴衼訒豇豗豻貤貣赶赸趵趷趶軑軓迾迵适迿迻逄迼迶郖郠郙郚郣郟郥郘郛郗郜郤酐"],["d440","酎酏釕釢釚陜陟隼飣髟鬯乿偰偪偡偞偠偓偋偝偲偈偍偁偛偊偢倕偅偟偩偫偣偤偆偀偮偳偗偑凐剫剭剬剮勖勓匭厜啵啶唼啍啐唴唪啑啢唶唵唰啒啅"],["d4a1","唌唲啥啎唹啈唭唻啀啋圊圇埻堔埢埶埜埴堀埭埽堈埸堋埳埏堇埮埣埲埥埬埡堎埼堐埧堁堌埱埩埰堍堄奜婠婘婕婧婞娸娵婭婐婟婥婬婓婤婗婃婝婒婄婛婈媎娾婍娹婌婰婩婇婑婖婂婜孲孮寁寀屙崞崋崝崚崠崌崨崍崦崥崏"],["d540","崰崒崣崟崮帾帴庱庴庹庲庳弶弸徛徖徟悊悐悆悾悰悺惓惔惏惤惙惝惈悱惛悷惊悿惃惍惀挲捥掊掂捽掽掞掭掝掗掫掎捯掇掐据掯捵掜捭掮捼掤挻掟"],["d5a1","捸掅掁掑掍捰敓旍晥晡晛晙晜晢朘桹梇梐梜桭桮梮梫楖桯梣梬梩桵桴梲梏桷梒桼桫桲梪梀桱桾梛梖梋梠梉梤桸桻梑梌梊桽欶欳欷欸殑殏殍殎殌氪淀涫涴涳湴涬淩淢涷淶淔渀淈淠淟淖涾淥淜淝淛淴淊涽淭淰涺淕淂淏淉"],["d640","淐淲淓淽淗淍淣涻烺焍烷焗烴焌烰焄烳焐烼烿焆焓焀烸烶焋焂焎牾牻牼牿猝猗猇猑猘猊猈狿猏猞玈珶珸珵琄琁珽琇琀珺珼珿琌琋珴琈畤畣痎痒痏"],["d6a1","痋痌痑痐皏皉盓眹眯眭眱眲眴眳眽眥眻眵硈硒硉硍硊硌砦硅硐祤祧祩祪祣祫祡离秺秸秶秷窏窔窐笵筇笴笥笰笢笤笳笘笪笝笱笫笭笯笲笸笚笣粔粘粖粣紵紽紸紶紺絅紬紩絁絇紾紿絊紻紨罣羕羜羝羛翊翋翍翐翑翇翏翉耟"],["d740","耞耛聇聃聈脘脥脙脛脭脟脬脞脡脕脧脝脢舑舸舳舺舴舲艴莐莣莨莍荺荳莤荴莏莁莕莙荵莔莩荽莃莌莝莛莪莋荾莥莯莈莗莰荿莦莇莮荶莚虙虖蚿蚷"],["d7a1","蛂蛁蛅蚺蚰蛈蚹蚳蚸蛌蚴蚻蚼蛃蚽蚾衒袉袕袨袢袪袚袑袡袟袘袧袙袛袗袤袬袌袓袎覂觖觙觕訰訧訬訞谹谻豜豝豽貥赽赻赹趼跂趹趿跁軘軞軝軜軗軠軡逤逋逑逜逌逡郯郪郰郴郲郳郔郫郬郩酖酘酚酓酕釬釴釱釳釸釤釹釪"],["d840","釫釷釨釮镺閆閈陼陭陫陱陯隿靪頄飥馗傛傕傔傞傋傣傃傌傎傝偨傜傒傂傇兟凔匒匑厤厧喑喨喥喭啷噅喢喓喈喏喵喁喣喒喤啽喌喦啿喕喡喎圌堩堷"],["d8a1","堙堞堧堣堨埵塈堥堜堛堳堿堶堮堹堸堭堬堻奡媯媔媟婺媢媞婸媦婼媥媬媕媮娷媄媊媗媃媋媩婻婽媌媜媏媓媝寪寍寋寔寑寊寎尌尰崷嵃嵫嵁嵋崿崵嵑嵎嵕崳崺嵒崽崱嵙嵂崹嵉崸崼崲崶嵀嵅幄幁彘徦徥徫惉悹惌惢惎惄愔"],["d940","惲愊愖愅惵愓惸惼惾惁愃愘愝愐惿愄愋扊掔掱掰揎揥揨揯揃撝揳揊揠揶揕揲揵摡揟掾揝揜揄揘揓揂揇揌揋揈揰揗揙攲敧敪敤敜敨敥斌斝斞斮旐旒"],["d9a1","晼晬晻暀晱晹晪晲朁椌棓椄棜椪棬棪棱椏棖棷棫棤棶椓椐棳棡椇棌椈楰梴椑棯棆椔棸棐棽棼棨椋椊椗棎棈棝棞棦棴棑椆棔棩椕椥棇欹欻欿欼殔殗殙殕殽毰毲毳氰淼湆湇渟湉溈渼渽湅湢渫渿湁湝湳渜渳湋湀湑渻渃渮湞"],["da40","湨湜湡渱渨湠湱湫渹渢渰湓湥渧湸湤湷湕湹湒湦渵渶湚焠焞焯烻焮焱焣焥焢焲焟焨焺焛牋牚犈犉犆犅犋猒猋猰猢猱猳猧猲猭猦猣猵猌琮琬琰琫琖"],["daa1","琚琡琭琱琤琣琝琩琠琲瓻甯畯畬痧痚痡痦痝痟痤痗皕皒盚睆睇睄睍睅睊睎睋睌矞矬硠硤硥硜硭硱硪确硰硩硨硞硢祴祳祲祰稂稊稃稌稄窙竦竤筊笻筄筈筌筎筀筘筅粢粞粨粡絘絯絣絓絖絧絪絏絭絜絫絒絔絩絑絟絎缾缿罥"],["db40","罦羢羠羡翗聑聏聐胾胔腃腊腒腏腇脽腍脺臦臮臷臸臹舄舼舽舿艵茻菏菹萣菀菨萒菧菤菼菶萐菆菈菫菣莿萁菝菥菘菿菡菋菎菖菵菉萉萏菞萑萆菂菳"],["dba1","菕菺菇菑菪萓菃菬菮菄菻菗菢萛菛菾蛘蛢蛦蛓蛣蛚蛪蛝蛫蛜蛬蛩蛗蛨蛑衈衖衕袺裗袹袸裀袾袶袼袷袽袲褁裉覕覘覗觝觚觛詎詍訹詙詀詗詘詄詅詒詈詑詊詌詏豟貁貀貺貾貰貹貵趄趀趉跘跓跍跇跖跜跏跕跙跈跗跅軯軷軺"],["dc40","軹軦軮軥軵軧軨軶軫軱軬軴軩逭逴逯鄆鄬鄄郿郼鄈郹郻鄁鄀鄇鄅鄃酡酤酟酢酠鈁鈊鈥鈃鈚鈦鈏鈌鈀鈒釿釽鈆鈄鈧鈂鈜鈤鈙鈗鈅鈖镻閍閌閐隇陾隈"],["dca1","隉隃隀雂雈雃雱雰靬靰靮頇颩飫鳦黹亃亄亶傽傿僆傮僄僊傴僈僂傰僁傺傱僋僉傶傸凗剺剸剻剼嗃嗛嗌嗐嗋嗊嗝嗀嗔嗄嗩喿嗒喍嗏嗕嗢嗖嗈嗲嗍嗙嗂圔塓塨塤塏塍塉塯塕塎塝塙塥塛堽塣塱壼嫇嫄嫋媺媸媱媵媰媿嫈媻嫆"],["dd40","媷嫀嫊媴媶嫍媹媐寖寘寙尟尳嵱嵣嵊嵥嵲嵬嵞嵨嵧嵢巰幏幎幊幍幋廅廌廆廋廇彀徯徭惷慉慊愫慅愶愲愮慆愯慏愩慀戠酨戣戥戤揅揱揫搐搒搉搠搤"],["dda1","搳摃搟搕搘搹搷搢搣搌搦搰搨摁搵搯搊搚摀搥搧搋揧搛搮搡搎敯斒旓暆暌暕暐暋暊暙暔晸朠楦楟椸楎楢楱椿楅楪椹楂楗楙楺楈楉椵楬椳椽楥棰楸椴楩楀楯楄楶楘楁楴楌椻楋椷楜楏楑椲楒椯楻椼歆歅歃歂歈歁殛嗀毻毼"],["de40","毹毷毸溛滖滈溏滀溟溓溔溠溱溹滆滒溽滁溞滉溷溰滍溦滏溲溾滃滜滘溙溒溎溍溤溡溿溳滐滊溗溮溣煇煔煒煣煠煁煝煢煲煸煪煡煂煘煃煋煰煟煐煓"],["dea1","煄煍煚牏犍犌犑犐犎猼獂猻猺獀獊獉瑄瑊瑋瑒瑑瑗瑀瑏瑐瑎瑂瑆瑍瑔瓡瓿瓾瓽甝畹畷榃痯瘏瘃痷痾痼痹痸瘐痻痶痭痵痽皙皵盝睕睟睠睒睖睚睩睧睔睙睭矠碇碚碔碏碄碕碅碆碡碃硹碙碀碖硻祼禂祽祹稑稘稙稒稗稕稢稓"],["df40","稛稐窣窢窞竫筦筤筭筴筩筲筥筳筱筰筡筸筶筣粲粴粯綈綆綀綍絿綅絺綎絻綃絼綌綔綄絽綒罭罫罧罨罬羦羥羧翛翜耡腤腠腷腜腩腛腢腲朡腞腶腧腯"],["dfa1","腄腡舝艉艄艀艂艅蓱萿葖葶葹蒏蒍葥葑葀蒆葧萰葍葽葚葙葴葳葝蔇葞萷萺萴葺葃葸萲葅萩菙葋萯葂萭葟葰萹葎葌葒葯蓅蒎萻葇萶萳葨葾葄萫葠葔葮葐蜋蜄蛷蜌蛺蛖蛵蝍蛸蜎蜉蜁蛶蜍蜅裖裋裍裎裞裛裚裌裐覅覛觟觥觤"],["e040","觡觠觢觜触詶誆詿詡訿詷誂誄詵誃誁詴詺谼豋豊豥豤豦貆貄貅賌赨赩趑趌趎趏趍趓趔趐趒跰跠跬跱跮跐跩跣跢跧跲跫跴輆軿輁輀輅輇輈輂輋遒逿"],["e0a1","遄遉逽鄐鄍鄏鄑鄖鄔鄋鄎酮酯鉈鉒鈰鈺鉦鈳鉥鉞銃鈮鉊鉆鉭鉬鉏鉠鉧鉯鈶鉡鉰鈱鉔鉣鉐鉲鉎鉓鉌鉖鈲閟閜閞閛隒隓隑隗雎雺雽雸雵靳靷靸靲頏頍頎颬飶飹馯馲馰馵骭骫魛鳪鳭鳧麀黽僦僔僗僨僳僛僪僝僤僓僬僰僯僣僠"],["e140","凘劀劁勩勫匰厬嘧嘕嘌嘒嗼嘏嘜嘁嘓嘂嗺嘝嘄嗿嗹墉塼墐墘墆墁塿塴墋塺墇墑墎塶墂墈塻墔墏壾奫嫜嫮嫥嫕嫪嫚嫭嫫嫳嫢嫠嫛嫬嫞嫝嫙嫨嫟孷寠"],["e1a1","寣屣嶂嶀嵽嶆嵺嶁嵷嶊嶉嶈嵾嵼嶍嵹嵿幘幙幓廘廑廗廎廜廕廙廒廔彄彃彯徶愬愨慁慞慱慳慒慓慲慬憀慴慔慺慛慥愻慪慡慖戩戧戫搫摍摛摝摴摶摲摳摽摵摦撦摎撂摞摜摋摓摠摐摿搿摬摫摙摥摷敳斠暡暠暟朅朄朢榱榶槉"],["e240","榠槎榖榰榬榼榑榙榎榧榍榩榾榯榿槄榽榤槔榹槊榚槏榳榓榪榡榞槙榗榐槂榵榥槆歊歍歋殞殟殠毃毄毾滎滵滱漃漥滸漷滻漮漉潎漙漚漧漘漻漒滭漊"],["e2a1","漶潳滹滮漭潀漰漼漵滫漇漎潃漅滽滶漹漜滼漺漟漍漞漈漡熇熐熉熀熅熂熏煻熆熁熗牄牓犗犕犓獃獍獑獌瑢瑳瑱瑵瑲瑧瑮甀甂甃畽疐瘖瘈瘌瘕瘑瘊瘔皸瞁睼瞅瞂睮瞀睯睾瞃碲碪碴碭碨硾碫碞碥碠碬碢碤禘禊禋禖禕禔禓"],["e340","禗禈禒禐稫穊稰稯稨稦窨窫窬竮箈箜箊箑箐箖箍箌箛箎箅箘劄箙箤箂粻粿粼粺綧綷緂綣綪緁緀緅綝緎緄緆緋緌綯綹綖綼綟綦綮綩綡緉罳翢翣翥翞"],["e3a1","耤聝聜膉膆膃膇膍膌膋舕蒗蒤蒡蒟蒺蓎蓂蒬蒮蒫蒹蒴蓁蓍蒪蒚蒱蓐蒝蒧蒻蒢蒔蓇蓌蒛蒩蒯蒨蓖蒘蒶蓏蒠蓗蓔蓒蓛蒰蒑虡蜳蜣蜨蝫蝀蜮蜞蜡蜙蜛蝃蜬蝁蜾蝆蜠蜲蜪蜭蜼蜒蜺蜱蜵蝂蜦蜧蜸蜤蜚蜰蜑裷裧裱裲裺裾裮裼裶裻"],["e440","裰裬裫覝覡覟覞觩觫觨誫誙誋誒誏誖谽豨豩賕賏賗趖踉踂跿踍跽踊踃踇踆踅跾踀踄輐輑輎輍鄣鄜鄠鄢鄟鄝鄚鄤鄡鄛酺酲酹酳銥銤鉶銛鉺銠銔銪銍"],["e4a1","銦銚銫鉹銗鉿銣鋮銎銂銕銢鉽銈銡銊銆銌銙銧鉾銇銩銝銋鈭隞隡雿靘靽靺靾鞃鞀鞂靻鞄鞁靿韎韍頖颭颮餂餀餇馝馜駃馹馻馺駂馽駇骱髣髧鬾鬿魠魡魟鳱鳲鳵麧僿儃儰僸儆儇僶僾儋儌僽儊劋劌勱勯噈噂噌嘵噁噊噉噆噘"],["e540","噚噀嘳嘽嘬嘾嘸嘪嘺圚墫墝墱墠墣墯墬墥墡壿嫿嫴嫽嫷嫶嬃嫸嬂嫹嬁嬇嬅嬏屧嶙嶗嶟嶒嶢嶓嶕嶠嶜嶡嶚嶞幩幝幠幜緳廛廞廡彉徲憋憃慹憱憰憢憉"],["e5a1","憛憓憯憭憟憒憪憡憍慦憳戭摮摰撖撠撅撗撜撏撋撊撌撣撟摨撱撘敶敺敹敻斲斳暵暰暩暲暷暪暯樀樆樗槥槸樕槱槤樠槿槬槢樛樝槾樧槲槮樔槷槧橀樈槦槻樍槼槫樉樄樘樥樏槶樦樇槴樖歑殥殣殢殦氁氀毿氂潁漦潾澇濆澒"],["e640","澍澉澌潢潏澅潚澖潶潬澂潕潲潒潐潗澔澓潝漀潡潫潽潧澐潓澋潩潿澕潣潷潪潻熲熯熛熰熠熚熩熵熝熥熞熤熡熪熜熧熳犘犚獘獒獞獟獠獝獛獡獚獙"],["e6a1","獢璇璉璊璆璁瑽璅璈瑼瑹甈甇畾瘥瘞瘙瘝瘜瘣瘚瘨瘛皜皝皞皛瞍瞏瞉瞈磍碻磏磌磑磎磔磈磃磄磉禚禡禠禜禢禛歶稹窲窴窳箷篋箾箬篎箯箹篊箵糅糈糌糋緷緛緪緧緗緡縃緺緦緶緱緰緮緟罶羬羰羭翭翫翪翬翦翨聤聧膣膟"],["e740","膞膕膢膙膗舖艏艓艒艐艎艑蔤蔻蔏蔀蔩蔎蔉蔍蔟蔊蔧蔜蓻蔫蓺蔈蔌蓴蔪蓲蔕蓷蓫蓳蓼蔒蓪蓩蔖蓾蔨蔝蔮蔂蓽蔞蓶蔱蔦蓧蓨蓰蓯蓹蔘蔠蔰蔋蔙蔯虢"],["e7a1","蝖蝣蝤蝷蟡蝳蝘蝔蝛蝒蝡蝚蝑蝞蝭蝪蝐蝎蝟蝝蝯蝬蝺蝮蝜蝥蝏蝻蝵蝢蝧蝩衚褅褌褔褋褗褘褙褆褖褑褎褉覢覤覣觭觰觬諏諆誸諓諑諔諕誻諗誾諀諅諘諃誺誽諙谾豍貏賥賟賙賨賚賝賧趠趜趡趛踠踣踥踤踮踕踛踖踑踙踦踧"],["e840","踔踒踘踓踜踗踚輬輤輘輚輠輣輖輗遳遰遯遧遫鄯鄫鄩鄪鄲鄦鄮醅醆醊醁醂醄醀鋐鋃鋄鋀鋙銶鋏鋱鋟鋘鋩鋗鋝鋌鋯鋂鋨鋊鋈鋎鋦鋍鋕鋉鋠鋞鋧鋑鋓"],["e8a1","銵鋡鋆銴镼閬閫閮閰隤隢雓霅霈霂靚鞊鞎鞈韐韏頞頝頦頩頨頠頛頧颲餈飺餑餔餖餗餕駜駍駏駓駔駎駉駖駘駋駗駌骳髬髫髳髲髱魆魃魧魴魱魦魶魵魰魨魤魬鳼鳺鳽鳿鳷鴇鴀鳹鳻鴈鴅鴄麃黓鼏鼐儜儓儗儚儑凞匴叡噰噠噮"],["e940","噳噦噣噭噲噞噷圜圛壈墽壉墿墺壂墼壆嬗嬙嬛嬡嬔嬓嬐嬖嬨嬚嬠嬞寯嶬嶱嶩嶧嶵嶰嶮嶪嶨嶲嶭嶯嶴幧幨幦幯廩廧廦廨廥彋徼憝憨憖懅憴懆懁懌憺"],["e9a1","憿憸憌擗擖擐擏擉撽撉擃擛擳擙攳敿敼斢曈暾曀曊曋曏暽暻暺曌朣樴橦橉橧樲橨樾橝橭橶橛橑樨橚樻樿橁橪橤橐橏橔橯橩橠樼橞橖橕橍橎橆歕歔歖殧殪殫毈毇氄氃氆澭濋澣濇澼濎濈潞濄澽澞濊澨瀄澥澮澺澬澪濏澿澸"],["ea40","澢濉澫濍澯澲澰燅燂熿熸燖燀燁燋燔燊燇燏熽燘熼燆燚燛犝犞獩獦獧獬獥獫獪瑿璚璠璔璒璕璡甋疀瘯瘭瘱瘽瘳瘼瘵瘲瘰皻盦瞚瞝瞡瞜瞛瞢瞣瞕瞙"],["eaa1","瞗磝磩磥磪磞磣磛磡磢磭磟磠禤穄穈穇窶窸窵窱窷篞篣篧篝篕篥篚篨篹篔篪篢篜篫篘篟糒糔糗糐糑縒縡縗縌縟縠縓縎縜縕縚縢縋縏縖縍縔縥縤罃罻罼罺羱翯耪耩聬膱膦膮膹膵膫膰膬膴膲膷膧臲艕艖艗蕖蕅蕫蕍蕓蕡蕘"],["eb40","蕀蕆蕤蕁蕢蕄蕑蕇蕣蔾蕛蕱蕎蕮蕵蕕蕧蕠薌蕦蕝蕔蕥蕬虣虥虤螛螏螗螓螒螈螁螖螘蝹螇螣螅螐螑螝螄螔螜螚螉褞褦褰褭褮褧褱褢褩褣褯褬褟觱諠"],["eba1","諢諲諴諵諝謔諤諟諰諈諞諡諨諿諯諻貑貒貐賵賮賱賰賳赬赮趥趧踳踾踸蹀蹅踶踼踽蹁踰踿躽輶輮輵輲輹輷輴遶遹遻邆郺鄳鄵鄶醓醐醑醍醏錧錞錈錟錆錏鍺錸錼錛錣錒錁鍆錭錎錍鋋錝鋺錥錓鋹鋷錴錂錤鋿錩錹錵錪錔錌"],["ec40","錋鋾錉錀鋻錖閼闍閾閹閺閶閿閵閽隩雔霋霒霐鞙鞗鞔韰韸頵頯頲餤餟餧餩馞駮駬駥駤駰駣駪駩駧骹骿骴骻髶髺髹髷鬳鮀鮅鮇魼魾魻鮂鮓鮒鮐魺鮕"],["eca1","魽鮈鴥鴗鴠鴞鴔鴩鴝鴘鴢鴐鴙鴟麈麆麇麮麭黕黖黺鼒鼽儦儥儢儤儠儩勴嚓嚌嚍嚆嚄嚃噾嚂噿嚁壖壔壏壒嬭嬥嬲嬣嬬嬧嬦嬯嬮孻寱寲嶷幬幪徾徻懃憵憼懧懠懥懤懨懞擯擩擣擫擤擨斁斀斶旚曒檍檖檁檥檉檟檛檡檞檇檓檎"],["ed40","檕檃檨檤檑橿檦檚檅檌檒歛殭氉濌澩濴濔濣濜濭濧濦濞濲濝濢濨燡燱燨燲燤燰燢獳獮獯璗璲璫璐璪璭璱璥璯甐甑甒甏疄癃癈癉癇皤盩瞵瞫瞲瞷瞶"],["eda1","瞴瞱瞨矰磳磽礂磻磼磲礅磹磾礄禫禨穜穛穖穘穔穚窾竀竁簅簏篲簀篿篻簎篴簋篳簂簉簃簁篸篽簆篰篱簐簊糨縭縼繂縳顈縸縪繉繀繇縩繌縰縻縶繄縺罅罿罾罽翴翲耬膻臄臌臊臅臇膼臩艛艚艜薃薀薏薧薕薠薋薣蕻薤薚薞"],["ee40","蕷蕼薉薡蕺蕸蕗薎薖薆薍薙薝薁薢薂薈薅蕹蕶薘薐薟虨螾螪螭蟅螰螬螹螵螼螮蟉蟃蟂蟌螷螯蟄蟊螴螶螿螸螽蟞螲褵褳褼褾襁襒褷襂覭覯覮觲觳謞"],["eea1","謘謖謑謅謋謢謏謒謕謇謍謈謆謜謓謚豏豰豲豱豯貕貔賹赯蹎蹍蹓蹐蹌蹇轃轀邅遾鄸醚醢醛醙醟醡醝醠鎡鎃鎯鍤鍖鍇鍼鍘鍜鍶鍉鍐鍑鍠鍭鎏鍌鍪鍹鍗鍕鍒鍏鍱鍷鍻鍡鍞鍣鍧鎀鍎鍙闇闀闉闃闅閷隮隰隬霠霟霘霝霙鞚鞡鞜"],["ef40","鞞鞝韕韔韱顁顄顊顉顅顃餥餫餬餪餳餲餯餭餱餰馘馣馡騂駺駴駷駹駸駶駻駽駾駼騃骾髾髽鬁髼魈鮚鮨鮞鮛鮦鮡鮥鮤鮆鮢鮠鮯鴳鵁鵧鴶鴮鴯鴱鴸鴰"],["efa1","鵅鵂鵃鴾鴷鵀鴽翵鴭麊麉麍麰黈黚黻黿鼤鼣鼢齔龠儱儭儮嚘嚜嚗嚚嚝嚙奰嬼屩屪巀幭幮懘懟懭懮懱懪懰懫懖懩擿攄擽擸攁攃擼斔旛曚曛曘櫅檹檽櫡櫆檺檶檷櫇檴檭歞毉氋瀇瀌瀍瀁瀅瀔瀎濿瀀濻瀦濼濷瀊爁燿燹爃燽獶"],["f040","璸瓀璵瓁璾璶璻瓂甔甓癜癤癙癐癓癗癚皦皽盬矂瞺磿礌礓礔礉礐礒礑禭禬穟簜簩簙簠簟簭簝簦簨簢簥簰繜繐繖繣繘繢繟繑繠繗繓羵羳翷翸聵臑臒"],["f0a1","臐艟艞薴藆藀藃藂薳薵薽藇藄薿藋藎藈藅薱薶藒蘤薸薷薾虩蟧蟦蟢蟛蟫蟪蟥蟟蟳蟤蟔蟜蟓蟭蟘蟣螤蟗蟙蠁蟴蟨蟝襓襋襏襌襆襐襑襉謪謧謣謳謰謵譇謯謼謾謱謥謷謦謶謮謤謻謽謺豂豵貙貘貗賾贄贂贀蹜蹢蹠蹗蹖蹞蹥蹧"],["f140","蹛蹚蹡蹝蹩蹔轆轇轈轋鄨鄺鄻鄾醨醥醧醯醪鎵鎌鎒鎷鎛鎝鎉鎧鎎鎪鎞鎦鎕鎈鎙鎟鎍鎱鎑鎲鎤鎨鎴鎣鎥闒闓闑隳雗雚巂雟雘雝霣霢霥鞬鞮鞨鞫鞤鞪"],["f1a1","鞢鞥韗韙韖韘韺顐顑顒颸饁餼餺騏騋騉騍騄騑騊騅騇騆髀髜鬈鬄鬅鬩鬵魊魌魋鯇鯆鯃鮿鯁鮵鮸鯓鮶鯄鮹鮽鵜鵓鵏鵊鵛鵋鵙鵖鵌鵗鵒鵔鵟鵘鵚麎麌黟鼁鼀鼖鼥鼫鼪鼩鼨齌齕儴儵劖勷厴嚫嚭嚦嚧嚪嚬壚壝壛夒嬽嬾嬿巃幰"],["f240","徿懻攇攐攍攉攌攎斄旞旝曞櫧櫠櫌櫑櫙櫋櫟櫜櫐櫫櫏櫍櫞歠殰氌瀙瀧瀠瀖瀫瀡瀢瀣瀩瀗瀤瀜瀪爌爊爇爂爅犥犦犤犣犡瓋瓅璷瓃甖癠矉矊矄矱礝礛"],["f2a1","礡礜礗礞禰穧穨簳簼簹簬簻糬糪繶繵繸繰繷繯繺繲繴繨罋罊羃羆羷翽翾聸臗臕艤艡艣藫藱藭藙藡藨藚藗藬藲藸藘藟藣藜藑藰藦藯藞藢蠀蟺蠃蟶蟷蠉蠌蠋蠆蟼蠈蟿蠊蠂襢襚襛襗襡襜襘襝襙覈覷覶觶譐譈譊譀譓譖譔譋譕"],["f340","譑譂譒譗豃豷豶貚贆贇贉趬趪趭趫蹭蹸蹳蹪蹯蹻軂轒轑轏轐轓辴酀鄿醰醭鏞鏇鏏鏂鏚鏐鏹鏬鏌鏙鎩鏦鏊鏔鏮鏣鏕鏄鏎鏀鏒鏧镽闚闛雡霩霫霬霨霦"],["f3a1","鞳鞷鞶韝韞韟顜顙顝顗颿颽颻颾饈饇饃馦馧騚騕騥騝騤騛騢騠騧騣騞騜騔髂鬋鬊鬎鬌鬷鯪鯫鯠鯞鯤鯦鯢鯰鯔鯗鯬鯜鯙鯥鯕鯡鯚鵷鶁鶊鶄鶈鵱鶀鵸鶆鶋鶌鵽鵫鵴鵵鵰鵩鶅鵳鵻鶂鵯鵹鵿鶇鵨麔麑黀黼鼭齀齁齍齖齗齘匷嚲"],["f440","嚵嚳壣孅巆巇廮廯忀忁懹攗攖攕攓旟曨曣曤櫳櫰櫪櫨櫹櫱櫮櫯瀼瀵瀯瀷瀴瀱灂瀸瀿瀺瀹灀瀻瀳灁爓爔犨獽獼璺皫皪皾盭矌矎矏矍矲礥礣礧礨礤礩"],["f4a1","禲穮穬穭竷籉籈籊籇籅糮繻繾纁纀羺翿聹臛臙舋艨艩蘢藿蘁藾蘛蘀藶蘄蘉蘅蘌藽蠙蠐蠑蠗蠓蠖襣襦覹觷譠譪譝譨譣譥譧譭趮躆躈躄轙轖轗轕轘轚邍酃酁醷醵醲醳鐋鐓鏻鐠鐏鐔鏾鐕鐐鐨鐙鐍鏵鐀鏷鐇鐎鐖鐒鏺鐉鏸鐊鏿"],["f540","鏼鐌鏶鐑鐆闞闠闟霮霯鞹鞻韽韾顠顢顣顟飁飂饐饎饙饌饋饓騲騴騱騬騪騶騩騮騸騭髇髊髆鬐鬒鬑鰋鰈鯷鰅鰒鯸鱀鰇鰎鰆鰗鰔鰉鶟鶙鶤鶝鶒鶘鶐鶛"],["f5a1","鶠鶔鶜鶪鶗鶡鶚鶢鶨鶞鶣鶿鶩鶖鶦鶧麙麛麚黥黤黧黦鼰鼮齛齠齞齝齙龑儺儹劘劗囃嚽嚾孈孇巋巏廱懽攛欂櫼欃櫸欀灃灄灊灈灉灅灆爝爚爙獾甗癪矐礭礱礯籔籓糲纊纇纈纋纆纍罍羻耰臝蘘蘪蘦蘟蘣蘜蘙蘧蘮蘡蘠蘩蘞蘥"],["f640","蠩蠝蠛蠠蠤蠜蠫衊襭襩襮襫觺譹譸譅譺譻贐贔趯躎躌轞轛轝酆酄酅醹鐿鐻鐶鐩鐽鐼鐰鐹鐪鐷鐬鑀鐱闥闤闣霵霺鞿韡顤飉飆飀饘饖騹騽驆驄驂驁騺"],["f6a1","騿髍鬕鬗鬘鬖鬺魒鰫鰝鰜鰬鰣鰨鰩鰤鰡鶷鶶鶼鷁鷇鷊鷏鶾鷅鷃鶻鶵鷎鶹鶺鶬鷈鶱鶭鷌鶳鷍鶲鹺麜黫黮黭鼛鼘鼚鼱齎齥齤龒亹囆囅囋奱孋孌巕巑廲攡攠攦攢欋欈欉氍灕灖灗灒爞爟犩獿瓘瓕瓙瓗癭皭礵禴穰穱籗籜籙籛籚"],["f740","糴糱纑罏羇臞艫蘴蘵蘳蘬蘲蘶蠬蠨蠦蠪蠥襱覿覾觻譾讄讂讆讅譿贕躕躔躚躒躐躖躗轠轢酇鑌鑐鑊鑋鑏鑇鑅鑈鑉鑆霿韣顪顩飋饔饛驎驓驔驌驏驈驊"],["f7a1","驉驒驐髐鬙鬫鬻魖魕鱆鱈鰿鱄鰹鰳鱁鰼鰷鰴鰲鰽鰶鷛鷒鷞鷚鷋鷐鷜鷑鷟鷩鷙鷘鷖鷵鷕鷝麶黰鼵鼳鼲齂齫龕龢儽劙壨壧奲孍巘蠯彏戁戃戄攩攥斖曫欑欒欏毊灛灚爢玂玁玃癰矔籧籦纕艬蘺虀蘹蘼蘱蘻蘾蠰蠲蠮蠳襶襴襳觾"],["f840","讌讎讋讈豅贙躘轤轣醼鑢鑕鑝鑗鑞韄韅頀驖驙鬞鬟鬠鱒鱘鱐鱊鱍鱋鱕鱙鱌鱎鷻鷷鷯鷣鷫鷸鷤鷶鷡鷮鷦鷲鷰鷢鷬鷴鷳鷨鷭黂黐黲黳鼆鼜鼸鼷鼶齃齏"],["f8a1","齱齰齮齯囓囍孎屭攭曭曮欓灟灡灝灠爣瓛瓥矕礸禷禶籪纗羉艭虃蠸蠷蠵衋讔讕躞躟躠躝醾醽釂鑫鑨鑩雥靆靃靇韇韥驞髕魙鱣鱧鱦鱢鱞鱠鸂鷾鸇鸃鸆鸅鸀鸁鸉鷿鷽鸄麠鼞齆齴齵齶囔攮斸欘欙欗欚灢爦犪矘矙礹籩籫糶纚"],["f940","纘纛纙臠臡虆虇虈襹襺襼襻觿讘讙躥躤躣鑮鑭鑯鑱鑳靉顲饟鱨鱮鱭鸋鸍鸐鸏鸒鸑麡黵鼉齇齸齻齺齹圞灦籯蠼趲躦釃鑴鑸鑶鑵驠鱴鱳鱱鱵鸔鸓黶鼊"],["f9a1","龤灨灥糷虪蠾蠽蠿讞貜躩軉靋顳顴飌饡馫驤驦驧鬤鸕鸗齈戇欞爧虌躨钂钀钁驩驨鬮鸙爩虋讟钃鱹麷癵驫鱺鸝灩灪麤齾齉龘碁銹裏墻恒粧嫺╔╦╗╠╬╣╚╩╝╒╤╕╞╪╡╘╧╛╓╥╖╟╫╢╙╨╜║═╭╮╰╯▓"]]')},5633:function(r){"use strict";r.exports=JSON.parse('[["0","\\u0000",127],["8ea1","｡",62],["a1a1","　、。，．・：；？！゛゜´｀¨＾￣＿ヽヾゝゞ〃仝々〆〇ー―‐／＼～∥｜…‥‘’“”（）〔〕［］｛｝〈",9,"＋－±×÷＝≠＜＞≦≧∞∴♂♀°′″℃￥＄￠￡％＃＆＊＠§☆★○●◎◇"],["a2a1","◆□■△▲▽▼※〒→←↑↓〓"],["a2ba","∈∋⊆⊇⊂⊃∪∩"],["a2ca","∧∨￢⇒⇔∀∃"],["a2dc","∠⊥⌒∂∇≡≒≪≫√∽∝∵∫∬"],["a2f2","ʼn♯♭♪†‡¶"],["a2fe","◯"],["a3b0","０",9],["a3c1","Ａ",25],["a3e1","ａ",25],["a4a1","ぁ",82],["a5a1","ァ",85],["a6a1","Α",16,"Σ",6],["a6c1","α",16,"σ",6],["a7a1","А",5,"ЁЖ",25],["a7d1","а",5,"ёж",25],["a8a1","─│┌┐┘└├┬┤┴┼━┃┏┓┛┗┣┳┫┻╋┠┯┨┷┿┝┰┥┸╂"],["ada1","①",19,"Ⅰ",9],["adc0","㍉㌔㌢㍍㌘㌧㌃㌶㍑㍗㌍㌦㌣㌫㍊㌻㎜㎝㎞㎎㎏㏄㎡"],["addf","㍻〝〟№㏍℡㊤",4,"㈱㈲㈹㍾㍽㍼≒≡∫∮∑√⊥∠∟⊿∵∩∪"],["b0a1","亜唖娃阿哀愛挨姶逢葵茜穐悪握渥旭葦芦鯵梓圧斡扱宛姐虻飴絢綾鮎或粟袷安庵按暗案闇鞍杏以伊位依偉囲夷委威尉惟意慰易椅為畏異移維緯胃萎衣謂違遺医井亥域育郁磯一壱溢逸稲茨芋鰯允印咽員因姻引飲淫胤蔭"],["b1a1","院陰隠韻吋右宇烏羽迂雨卯鵜窺丑碓臼渦嘘唄欝蔚鰻姥厩浦瓜閏噂云運雲荏餌叡営嬰影映曳栄永泳洩瑛盈穎頴英衛詠鋭液疫益駅悦謁越閲榎厭円園堰奄宴延怨掩援沿演炎焔煙燕猿縁艶苑薗遠鉛鴛塩於汚甥凹央奥往応"],["b2a1","押旺横欧殴王翁襖鴬鴎黄岡沖荻億屋憶臆桶牡乙俺卸恩温穏音下化仮何伽価佳加可嘉夏嫁家寡科暇果架歌河火珂禍禾稼箇花苛茄荷華菓蝦課嘩貨迦過霞蚊俄峨我牙画臥芽蛾賀雅餓駕介会解回塊壊廻快怪悔恢懐戒拐改"],["b3a1","魁晦械海灰界皆絵芥蟹開階貝凱劾外咳害崖慨概涯碍蓋街該鎧骸浬馨蛙垣柿蛎鈎劃嚇各廓拡撹格核殻獲確穫覚角赫較郭閣隔革学岳楽額顎掛笠樫橿梶鰍潟割喝恰括活渇滑葛褐轄且鰹叶椛樺鞄株兜竃蒲釜鎌噛鴨栢茅萱"],["b4a1","粥刈苅瓦乾侃冠寒刊勘勧巻喚堪姦完官寛干幹患感慣憾換敢柑桓棺款歓汗漢澗潅環甘監看竿管簡緩缶翰肝艦莞観諌貫還鑑間閑関陥韓館舘丸含岸巌玩癌眼岩翫贋雁頑顔願企伎危喜器基奇嬉寄岐希幾忌揮机旗既期棋棄"],["b5a1","機帰毅気汽畿祈季稀紀徽規記貴起軌輝飢騎鬼亀偽儀妓宜戯技擬欺犠疑祇義蟻誼議掬菊鞠吉吃喫桔橘詰砧杵黍却客脚虐逆丘久仇休及吸宮弓急救朽求汲泣灸球究窮笈級糾給旧牛去居巨拒拠挙渠虚許距鋸漁禦魚亨享京"],["b6a1","供侠僑兇競共凶協匡卿叫喬境峡強彊怯恐恭挟教橋況狂狭矯胸脅興蕎郷鏡響饗驚仰凝尭暁業局曲極玉桐粁僅勤均巾錦斤欣欽琴禁禽筋緊芹菌衿襟謹近金吟銀九倶句区狗玖矩苦躯駆駈駒具愚虞喰空偶寓遇隅串櫛釧屑屈"],["b7a1","掘窟沓靴轡窪熊隈粂栗繰桑鍬勲君薫訓群軍郡卦袈祁係傾刑兄啓圭珪型契形径恵慶慧憩掲携敬景桂渓畦稽系経継繋罫茎荊蛍計詣警軽頚鶏芸迎鯨劇戟撃激隙桁傑欠決潔穴結血訣月件倹倦健兼券剣喧圏堅嫌建憲懸拳捲"],["b8a1","検権牽犬献研硯絹県肩見謙賢軒遣鍵険顕験鹸元原厳幻弦減源玄現絃舷言諺限乎個古呼固姑孤己庫弧戸故枯湖狐糊袴股胡菰虎誇跨鈷雇顧鼓五互伍午呉吾娯後御悟梧檎瑚碁語誤護醐乞鯉交佼侯候倖光公功効勾厚口向"],["b9a1","后喉坑垢好孔孝宏工巧巷幸広庚康弘恒慌抗拘控攻昂晃更杭校梗構江洪浩港溝甲皇硬稿糠紅紘絞綱耕考肯肱腔膏航荒行衡講貢購郊酵鉱砿鋼閤降項香高鴻剛劫号合壕拷濠豪轟麹克刻告国穀酷鵠黒獄漉腰甑忽惚骨狛込"],["baa1","此頃今困坤墾婚恨懇昏昆根梱混痕紺艮魂些佐叉唆嵯左差査沙瑳砂詐鎖裟坐座挫債催再最哉塞妻宰彩才採栽歳済災采犀砕砦祭斎細菜裁載際剤在材罪財冴坂阪堺榊肴咲崎埼碕鷺作削咋搾昨朔柵窄策索錯桜鮭笹匙冊刷"],["bba1","察拶撮擦札殺薩雑皐鯖捌錆鮫皿晒三傘参山惨撒散桟燦珊産算纂蚕讃賛酸餐斬暫残仕仔伺使刺司史嗣四士始姉姿子屍市師志思指支孜斯施旨枝止死氏獅祉私糸紙紫肢脂至視詞詩試誌諮資賜雌飼歯事似侍児字寺慈持時"],["bca1","次滋治爾璽痔磁示而耳自蒔辞汐鹿式識鴫竺軸宍雫七叱執失嫉室悉湿漆疾質実蔀篠偲柴芝屡蕊縞舎写射捨赦斜煮社紗者謝車遮蛇邪借勺尺杓灼爵酌釈錫若寂弱惹主取守手朱殊狩珠種腫趣酒首儒受呪寿授樹綬需囚収周"],["bda1","宗就州修愁拾洲秀秋終繍習臭舟蒐衆襲讐蹴輯週酋酬集醜什住充十従戎柔汁渋獣縦重銃叔夙宿淑祝縮粛塾熟出術述俊峻春瞬竣舜駿准循旬楯殉淳準潤盾純巡遵醇順処初所暑曙渚庶緒署書薯藷諸助叙女序徐恕鋤除傷償"],["bea1","勝匠升召哨商唱嘗奨妾娼宵将小少尚庄床廠彰承抄招掌捷昇昌昭晶松梢樟樵沼消渉湘焼焦照症省硝礁祥称章笑粧紹肖菖蒋蕉衝裳訟証詔詳象賞醤鉦鍾鐘障鞘上丈丞乗冗剰城場壌嬢常情擾条杖浄状畳穣蒸譲醸錠嘱埴飾"],["bfa1","拭植殖燭織職色触食蝕辱尻伸信侵唇娠寝審心慎振新晋森榛浸深申疹真神秦紳臣芯薪親診身辛進針震人仁刃塵壬尋甚尽腎訊迅陣靭笥諏須酢図厨逗吹垂帥推水炊睡粋翠衰遂酔錐錘随瑞髄崇嵩数枢趨雛据杉椙菅頗雀裾"],["c0a1","澄摺寸世瀬畝是凄制勢姓征性成政整星晴棲栖正清牲生盛精聖声製西誠誓請逝醒青静斉税脆隻席惜戚斥昔析石積籍績脊責赤跡蹟碩切拙接摂折設窃節説雪絶舌蝉仙先千占宣専尖川戦扇撰栓栴泉浅洗染潜煎煽旋穿箭線"],["c1a1","繊羨腺舛船薦詮賎践選遷銭銑閃鮮前善漸然全禅繕膳糎噌塑岨措曾曽楚狙疏疎礎祖租粗素組蘇訴阻遡鼠僧創双叢倉喪壮奏爽宋層匝惣想捜掃挿掻操早曹巣槍槽漕燥争痩相窓糟総綜聡草荘葬蒼藻装走送遭鎗霜騒像増憎"],["c2a1","臓蔵贈造促側則即息捉束測足速俗属賊族続卒袖其揃存孫尊損村遜他多太汰詑唾堕妥惰打柁舵楕陀駄騨体堆対耐岱帯待怠態戴替泰滞胎腿苔袋貸退逮隊黛鯛代台大第醍題鷹滝瀧卓啄宅托択拓沢濯琢託鐸濁諾茸凧蛸只"],["c3a1","叩但達辰奪脱巽竪辿棚谷狸鱈樽誰丹単嘆坦担探旦歎淡湛炭短端箪綻耽胆蛋誕鍛団壇弾断暖檀段男談値知地弛恥智池痴稚置致蜘遅馳築畜竹筑蓄逐秩窒茶嫡着中仲宙忠抽昼柱注虫衷註酎鋳駐樗瀦猪苧著貯丁兆凋喋寵"],["c4a1","帖帳庁弔張彫徴懲挑暢朝潮牒町眺聴脹腸蝶調諜超跳銚長頂鳥勅捗直朕沈珍賃鎮陳津墜椎槌追鎚痛通塚栂掴槻佃漬柘辻蔦綴鍔椿潰坪壷嬬紬爪吊釣鶴亭低停偵剃貞呈堤定帝底庭廷弟悌抵挺提梯汀碇禎程締艇訂諦蹄逓"],["c5a1","邸鄭釘鼎泥摘擢敵滴的笛適鏑溺哲徹撤轍迭鉄典填天展店添纏甜貼転顛点伝殿澱田電兎吐堵塗妬屠徒斗杜渡登菟賭途都鍍砥砺努度土奴怒倒党冬凍刀唐塔塘套宕島嶋悼投搭東桃梼棟盗淘湯涛灯燈当痘祷等答筒糖統到"],["c6a1","董蕩藤討謄豆踏逃透鐙陶頭騰闘働動同堂導憧撞洞瞳童胴萄道銅峠鴇匿得徳涜特督禿篤毒独読栃橡凸突椴届鳶苫寅酉瀞噸屯惇敦沌豚遁頓呑曇鈍奈那内乍凪薙謎灘捺鍋楢馴縄畷南楠軟難汝二尼弐迩匂賑肉虹廿日乳入"],["c7a1","如尿韮任妊忍認濡禰祢寧葱猫熱年念捻撚燃粘乃廼之埜嚢悩濃納能脳膿農覗蚤巴把播覇杷波派琶破婆罵芭馬俳廃拝排敗杯盃牌背肺輩配倍培媒梅楳煤狽買売賠陪這蝿秤矧萩伯剥博拍柏泊白箔粕舶薄迫曝漠爆縛莫駁麦"],["c8a1","函箱硲箸肇筈櫨幡肌畑畠八鉢溌発醗髪伐罰抜筏閥鳩噺塙蛤隼伴判半反叛帆搬斑板氾汎版犯班畔繁般藩販範釆煩頒飯挽晩番盤磐蕃蛮匪卑否妃庇彼悲扉批披斐比泌疲皮碑秘緋罷肥被誹費避非飛樋簸備尾微枇毘琵眉美"],["c9a1","鼻柊稗匹疋髭彦膝菱肘弼必畢筆逼桧姫媛紐百謬俵彪標氷漂瓢票表評豹廟描病秒苗錨鋲蒜蛭鰭品彬斌浜瀕貧賓頻敏瓶不付埠夫婦富冨布府怖扶敷斧普浮父符腐膚芙譜負賦赴阜附侮撫武舞葡蕪部封楓風葺蕗伏副復幅服"],["caa1","福腹複覆淵弗払沸仏物鮒分吻噴墳憤扮焚奮粉糞紛雰文聞丙併兵塀幣平弊柄並蔽閉陛米頁僻壁癖碧別瞥蔑箆偏変片篇編辺返遍便勉娩弁鞭保舗鋪圃捕歩甫補輔穂募墓慕戊暮母簿菩倣俸包呆報奉宝峰峯崩庖抱捧放方朋"],["cba1","法泡烹砲縫胞芳萌蓬蜂褒訪豊邦鋒飽鳳鵬乏亡傍剖坊妨帽忘忙房暴望某棒冒紡肪膨謀貌貿鉾防吠頬北僕卜墨撲朴牧睦穆釦勃没殆堀幌奔本翻凡盆摩磨魔麻埋妹昧枚毎哩槙幕膜枕鮪柾鱒桝亦俣又抹末沫迄侭繭麿万慢満"],["cca1","漫蔓味未魅巳箕岬密蜜湊蓑稔脈妙粍民眠務夢無牟矛霧鵡椋婿娘冥名命明盟迷銘鳴姪牝滅免棉綿緬面麺摸模茂妄孟毛猛盲網耗蒙儲木黙目杢勿餅尤戻籾貰問悶紋門匁也冶夜爺耶野弥矢厄役約薬訳躍靖柳薮鑓愉愈油癒"],["cda1","諭輸唯佑優勇友宥幽悠憂揖有柚湧涌猶猷由祐裕誘遊邑郵雄融夕予余与誉輿預傭幼妖容庸揚揺擁曜楊様洋溶熔用窯羊耀葉蓉要謡踊遥陽養慾抑欲沃浴翌翼淀羅螺裸来莱頼雷洛絡落酪乱卵嵐欄濫藍蘭覧利吏履李梨理璃"],["cea1","痢裏裡里離陸律率立葎掠略劉流溜琉留硫粒隆竜龍侶慮旅虜了亮僚両凌寮料梁涼猟療瞭稜糧良諒遼量陵領力緑倫厘林淋燐琳臨輪隣鱗麟瑠塁涙累類令伶例冷励嶺怜玲礼苓鈴隷零霊麗齢暦歴列劣烈裂廉恋憐漣煉簾練聯"],["cfa1","蓮連錬呂魯櫓炉賂路露労婁廊弄朗楼榔浪漏牢狼篭老聾蝋郎六麓禄肋録論倭和話歪賄脇惑枠鷲亙亘鰐詫藁蕨椀湾碗腕"],["d0a1","弌丐丕个丱丶丼丿乂乖乘亂亅豫亊舒弍于亞亟亠亢亰亳亶从仍仄仆仂仗仞仭仟价伉佚估佛佝佗佇佶侈侏侘佻佩佰侑佯來侖儘俔俟俎俘俛俑俚俐俤俥倚倨倔倪倥倅伜俶倡倩倬俾俯們倆偃假會偕偐偈做偖偬偸傀傚傅傴傲"],["d1a1","僉僊傳僂僖僞僥僭僣僮價僵儉儁儂儖儕儔儚儡儺儷儼儻儿兀兒兌兔兢竸兩兪兮冀冂囘册冉冏冑冓冕冖冤冦冢冩冪冫决冱冲冰况冽凅凉凛几處凩凭凰凵凾刄刋刔刎刧刪刮刳刹剏剄剋剌剞剔剪剴剩剳剿剽劍劔劒剱劈劑辨"],["d2a1","辧劬劭劼劵勁勍勗勞勣勦飭勠勳勵勸勹匆匈甸匍匐匏匕匚匣匯匱匳匸區卆卅丗卉卍凖卞卩卮夘卻卷厂厖厠厦厥厮厰厶參簒雙叟曼燮叮叨叭叺吁吽呀听吭吼吮吶吩吝呎咏呵咎呟呱呷呰咒呻咀呶咄咐咆哇咢咸咥咬哄哈咨"],["d3a1","咫哂咤咾咼哘哥哦唏唔哽哮哭哺哢唹啀啣啌售啜啅啖啗唸唳啝喙喀咯喊喟啻啾喘喞單啼喃喩喇喨嗚嗅嗟嗄嗜嗤嗔嘔嗷嘖嗾嗽嘛嗹噎噐營嘴嘶嘲嘸噫噤嘯噬噪嚆嚀嚊嚠嚔嚏嚥嚮嚶嚴囂嚼囁囃囀囈囎囑囓囗囮囹圀囿圄圉"],["d4a1","圈國圍圓團圖嗇圜圦圷圸坎圻址坏坩埀垈坡坿垉垓垠垳垤垪垰埃埆埔埒埓堊埖埣堋堙堝塲堡塢塋塰毀塒堽塹墅墹墟墫墺壞墻墸墮壅壓壑壗壙壘壥壜壤壟壯壺壹壻壼壽夂夊夐夛梦夥夬夭夲夸夾竒奕奐奎奚奘奢奠奧奬奩"],["d5a1","奸妁妝佞侫妣妲姆姨姜妍姙姚娥娟娑娜娉娚婀婬婉娵娶婢婪媚媼媾嫋嫂媽嫣嫗嫦嫩嫖嫺嫻嬌嬋嬖嬲嫐嬪嬶嬾孃孅孀孑孕孚孛孥孩孰孳孵學斈孺宀它宦宸寃寇寉寔寐寤實寢寞寥寫寰寶寳尅將專對尓尠尢尨尸尹屁屆屎屓"],["d6a1","屐屏孱屬屮乢屶屹岌岑岔妛岫岻岶岼岷峅岾峇峙峩峽峺峭嶌峪崋崕崗嵜崟崛崑崔崢崚崙崘嵌嵒嵎嵋嵬嵳嵶嶇嶄嶂嶢嶝嶬嶮嶽嶐嶷嶼巉巍巓巒巖巛巫已巵帋帚帙帑帛帶帷幄幃幀幎幗幔幟幢幤幇幵并幺麼广庠廁廂廈廐廏"],["d7a1","廖廣廝廚廛廢廡廨廩廬廱廳廰廴廸廾弃弉彝彜弋弑弖弩弭弸彁彈彌彎弯彑彖彗彙彡彭彳彷徃徂彿徊很徑徇從徙徘徠徨徭徼忖忻忤忸忱忝悳忿怡恠怙怐怩怎怱怛怕怫怦怏怺恚恁恪恷恟恊恆恍恣恃恤恂恬恫恙悁悍惧悃悚"],["d8a1","悄悛悖悗悒悧悋惡悸惠惓悴忰悽惆悵惘慍愕愆惶惷愀惴惺愃愡惻惱愍愎慇愾愨愧慊愿愼愬愴愽慂慄慳慷慘慙慚慫慴慯慥慱慟慝慓慵憙憖憇憬憔憚憊憑憫憮懌懊應懷懈懃懆憺懋罹懍懦懣懶懺懴懿懽懼懾戀戈戉戍戌戔戛"],["d9a1","戞戡截戮戰戲戳扁扎扞扣扛扠扨扼抂抉找抒抓抖拔抃抔拗拑抻拏拿拆擔拈拜拌拊拂拇抛拉挌拮拱挧挂挈拯拵捐挾捍搜捏掖掎掀掫捶掣掏掉掟掵捫捩掾揩揀揆揣揉插揶揄搖搴搆搓搦搶攝搗搨搏摧摯摶摎攪撕撓撥撩撈撼"],["daa1","據擒擅擇撻擘擂擱擧舉擠擡抬擣擯攬擶擴擲擺攀擽攘攜攅攤攣攫攴攵攷收攸畋效敖敕敍敘敞敝敲數斂斃變斛斟斫斷旃旆旁旄旌旒旛旙无旡旱杲昊昃旻杳昵昶昴昜晏晄晉晁晞晝晤晧晨晟晢晰暃暈暎暉暄暘暝曁暹曉暾暼"],["dba1","曄暸曖曚曠昿曦曩曰曵曷朏朖朞朦朧霸朮朿朶杁朸朷杆杞杠杙杣杤枉杰枩杼杪枌枋枦枡枅枷柯枴柬枳柩枸柤柞柝柢柮枹柎柆柧檜栞框栩桀桍栲桎梳栫桙档桷桿梟梏梭梔條梛梃檮梹桴梵梠梺椏梍桾椁棊椈棘椢椦棡椌棍"],["dca1","棔棧棕椶椒椄棗棣椥棹棠棯椨椪椚椣椡棆楹楷楜楸楫楔楾楮椹楴椽楙椰楡楞楝榁楪榲榮槐榿槁槓榾槎寨槊槝榻槃榧樮榑榠榜榕榴槞槨樂樛槿權槹槲槧樅榱樞槭樔槫樊樒櫁樣樓橄樌橲樶橸橇橢橙橦橈樸樢檐檍檠檄檢檣"],["dda1","檗蘗檻櫃櫂檸檳檬櫞櫑櫟檪櫚櫪櫻欅蘖櫺欒欖鬱欟欸欷盜欹飮歇歃歉歐歙歔歛歟歡歸歹歿殀殄殃殍殘殕殞殤殪殫殯殲殱殳殷殼毆毋毓毟毬毫毳毯麾氈氓气氛氤氣汞汕汢汪沂沍沚沁沛汾汨汳沒沐泄泱泓沽泗泅泝沮沱沾"],["dea1","沺泛泯泙泪洟衍洶洫洽洸洙洵洳洒洌浣涓浤浚浹浙涎涕濤涅淹渕渊涵淇淦涸淆淬淞淌淨淒淅淺淙淤淕淪淮渭湮渮渙湲湟渾渣湫渫湶湍渟湃渺湎渤滿渝游溂溪溘滉溷滓溽溯滄溲滔滕溏溥滂溟潁漑灌滬滸滾漿滲漱滯漲滌"],["dfa1","漾漓滷澆潺潸澁澀潯潛濳潭澂潼潘澎澑濂潦澳澣澡澤澹濆澪濟濕濬濔濘濱濮濛瀉瀋濺瀑瀁瀏濾瀛瀚潴瀝瀘瀟瀰瀾瀲灑灣炙炒炯烱炬炸炳炮烟烋烝烙焉烽焜焙煥煕熈煦煢煌煖煬熏燻熄熕熨熬燗熹熾燒燉燔燎燠燬燧燵燼"],["e0a1","燹燿爍爐爛爨爭爬爰爲爻爼爿牀牆牋牘牴牾犂犁犇犒犖犢犧犹犲狃狆狄狎狒狢狠狡狹狷倏猗猊猜猖猝猴猯猩猥猾獎獏默獗獪獨獰獸獵獻獺珈玳珎玻珀珥珮珞璢琅瑯琥珸琲琺瑕琿瑟瑙瑁瑜瑩瑰瑣瑪瑶瑾璋璞璧瓊瓏瓔珱"],["e1a1","瓠瓣瓧瓩瓮瓲瓰瓱瓸瓷甄甃甅甌甎甍甕甓甞甦甬甼畄畍畊畉畛畆畚畩畤畧畫畭畸當疆疇畴疊疉疂疔疚疝疥疣痂疳痃疵疽疸疼疱痍痊痒痙痣痞痾痿痼瘁痰痺痲痳瘋瘍瘉瘟瘧瘠瘡瘢瘤瘴瘰瘻癇癈癆癜癘癡癢癨癩癪癧癬癰"],["e2a1","癲癶癸發皀皃皈皋皎皖皓皙皚皰皴皸皹皺盂盍盖盒盞盡盥盧盪蘯盻眈眇眄眩眤眞眥眦眛眷眸睇睚睨睫睛睥睿睾睹瞎瞋瞑瞠瞞瞰瞶瞹瞿瞼瞽瞻矇矍矗矚矜矣矮矼砌砒礦砠礪硅碎硴碆硼碚碌碣碵碪碯磑磆磋磔碾碼磅磊磬"],["e3a1","磧磚磽磴礇礒礑礙礬礫祀祠祗祟祚祕祓祺祿禊禝禧齋禪禮禳禹禺秉秕秧秬秡秣稈稍稘稙稠稟禀稱稻稾稷穃穗穉穡穢穩龝穰穹穽窈窗窕窘窖窩竈窰窶竅竄窿邃竇竊竍竏竕竓站竚竝竡竢竦竭竰笂笏笊笆笳笘笙笞笵笨笶筐"],["e4a1","筺笄筍笋筌筅筵筥筴筧筰筱筬筮箝箘箟箍箜箚箋箒箏筝箙篋篁篌篏箴篆篝篩簑簔篦篥籠簀簇簓篳篷簗簍篶簣簧簪簟簷簫簽籌籃籔籏籀籐籘籟籤籖籥籬籵粃粐粤粭粢粫粡粨粳粲粱粮粹粽糀糅糂糘糒糜糢鬻糯糲糴糶糺紆"],["e5a1","紂紜紕紊絅絋紮紲紿紵絆絳絖絎絲絨絮絏絣經綉絛綏絽綛綺綮綣綵緇綽綫總綢綯緜綸綟綰緘緝緤緞緻緲緡縅縊縣縡縒縱縟縉縋縢繆繦縻縵縹繃縷縲縺繧繝繖繞繙繚繹繪繩繼繻纃緕繽辮繿纈纉續纒纐纓纔纖纎纛纜缸缺"],["e6a1","罅罌罍罎罐网罕罔罘罟罠罨罩罧罸羂羆羃羈羇羌羔羞羝羚羣羯羲羹羮羶羸譱翅翆翊翕翔翡翦翩翳翹飜耆耄耋耒耘耙耜耡耨耿耻聊聆聒聘聚聟聢聨聳聲聰聶聹聽聿肄肆肅肛肓肚肭冐肬胛胥胙胝胄胚胖脉胯胱脛脩脣脯腋"],["e7a1","隋腆脾腓腑胼腱腮腥腦腴膃膈膊膀膂膠膕膤膣腟膓膩膰膵膾膸膽臀臂膺臉臍臑臙臘臈臚臟臠臧臺臻臾舁舂舅與舊舍舐舖舩舫舸舳艀艙艘艝艚艟艤艢艨艪艫舮艱艷艸艾芍芒芫芟芻芬苡苣苟苒苴苳苺莓范苻苹苞茆苜茉苙"],["e8a1","茵茴茖茲茱荀茹荐荅茯茫茗茘莅莚莪莟莢莖茣莎莇莊荼莵荳荵莠莉莨菴萓菫菎菽萃菘萋菁菷萇菠菲萍萢萠莽萸蔆菻葭萪萼蕚蒄葷葫蒭葮蒂葩葆萬葯葹萵蓊葢蒹蒿蒟蓙蓍蒻蓚蓐蓁蓆蓖蒡蔡蓿蓴蔗蔘蔬蔟蔕蔔蓼蕀蕣蕘蕈"],["e9a1","蕁蘂蕋蕕薀薤薈薑薊薨蕭薔薛藪薇薜蕷蕾薐藉薺藏薹藐藕藝藥藜藹蘊蘓蘋藾藺蘆蘢蘚蘰蘿虍乕虔號虧虱蚓蚣蚩蚪蚋蚌蚶蚯蛄蛆蚰蛉蠣蚫蛔蛞蛩蛬蛟蛛蛯蜒蜆蜈蜀蜃蛻蜑蜉蜍蛹蜊蜴蜿蜷蜻蜥蜩蜚蝠蝟蝸蝌蝎蝴蝗蝨蝮蝙"],["eaa1","蝓蝣蝪蠅螢螟螂螯蟋螽蟀蟐雖螫蟄螳蟇蟆螻蟯蟲蟠蠏蠍蟾蟶蟷蠎蟒蠑蠖蠕蠢蠡蠱蠶蠹蠧蠻衄衂衒衙衞衢衫袁衾袞衵衽袵衲袂袗袒袮袙袢袍袤袰袿袱裃裄裔裘裙裝裹褂裼裴裨裲褄褌褊褓襃褞褥褪褫襁襄褻褶褸襌褝襠襞"],["eba1","襦襤襭襪襯襴襷襾覃覈覊覓覘覡覩覦覬覯覲覺覽覿觀觚觜觝觧觴觸訃訖訐訌訛訝訥訶詁詛詒詆詈詼詭詬詢誅誂誄誨誡誑誥誦誚誣諄諍諂諚諫諳諧諤諱謔諠諢諷諞諛謌謇謚諡謖謐謗謠謳鞫謦謫謾謨譁譌譏譎證譖譛譚譫"],["eca1","譟譬譯譴譽讀讌讎讒讓讖讙讚谺豁谿豈豌豎豐豕豢豬豸豺貂貉貅貊貍貎貔豼貘戝貭貪貽貲貳貮貶賈賁賤賣賚賽賺賻贄贅贊贇贏贍贐齎贓賍贔贖赧赭赱赳趁趙跂趾趺跏跚跖跌跛跋跪跫跟跣跼踈踉跿踝踞踐踟蹂踵踰踴蹊"],["eda1","蹇蹉蹌蹐蹈蹙蹤蹠踪蹣蹕蹶蹲蹼躁躇躅躄躋躊躓躑躔躙躪躡躬躰軆躱躾軅軈軋軛軣軼軻軫軾輊輅輕輒輙輓輜輟輛輌輦輳輻輹轅轂輾轌轉轆轎轗轜轢轣轤辜辟辣辭辯辷迚迥迢迪迯邇迴逅迹迺逑逕逡逍逞逖逋逧逶逵逹迸"],["eea1","遏遐遑遒逎遉逾遖遘遞遨遯遶隨遲邂遽邁邀邊邉邏邨邯邱邵郢郤扈郛鄂鄒鄙鄲鄰酊酖酘酣酥酩酳酲醋醉醂醢醫醯醪醵醴醺釀釁釉釋釐釖釟釡釛釼釵釶鈞釿鈔鈬鈕鈑鉞鉗鉅鉉鉤鉈銕鈿鉋鉐銜銖銓銛鉚鋏銹銷鋩錏鋺鍄錮"],["efa1","錙錢錚錣錺錵錻鍜鍠鍼鍮鍖鎰鎬鎭鎔鎹鏖鏗鏨鏥鏘鏃鏝鏐鏈鏤鐚鐔鐓鐃鐇鐐鐶鐫鐵鐡鐺鑁鑒鑄鑛鑠鑢鑞鑪鈩鑰鑵鑷鑽鑚鑼鑾钁鑿閂閇閊閔閖閘閙閠閨閧閭閼閻閹閾闊濶闃闍闌闕闔闖關闡闥闢阡阨阮阯陂陌陏陋陷陜陞"],["f0a1","陝陟陦陲陬隍隘隕隗險隧隱隲隰隴隶隸隹雎雋雉雍襍雜霍雕雹霄霆霈霓霎霑霏霖霙霤霪霰霹霽霾靄靆靈靂靉靜靠靤靦靨勒靫靱靹鞅靼鞁靺鞆鞋鞏鞐鞜鞨鞦鞣鞳鞴韃韆韈韋韜韭齏韲竟韶韵頏頌頸頤頡頷頽顆顏顋顫顯顰"],["f1a1","顱顴顳颪颯颱颶飄飃飆飩飫餃餉餒餔餘餡餝餞餤餠餬餮餽餾饂饉饅饐饋饑饒饌饕馗馘馥馭馮馼駟駛駝駘駑駭駮駱駲駻駸騁騏騅駢騙騫騷驅驂驀驃騾驕驍驛驗驟驢驥驤驩驫驪骭骰骼髀髏髑髓體髞髟髢髣髦髯髫髮髴髱髷"],["f2a1","髻鬆鬘鬚鬟鬢鬣鬥鬧鬨鬩鬪鬮鬯鬲魄魃魏魍魎魑魘魴鮓鮃鮑鮖鮗鮟鮠鮨鮴鯀鯊鮹鯆鯏鯑鯒鯣鯢鯤鯔鯡鰺鯲鯱鯰鰕鰔鰉鰓鰌鰆鰈鰒鰊鰄鰮鰛鰥鰤鰡鰰鱇鰲鱆鰾鱚鱠鱧鱶鱸鳧鳬鳰鴉鴈鳫鴃鴆鴪鴦鶯鴣鴟鵄鴕鴒鵁鴿鴾鵆鵈"],["f3a1","鵝鵞鵤鵑鵐鵙鵲鶉鶇鶫鵯鵺鶚鶤鶩鶲鷄鷁鶻鶸鶺鷆鷏鷂鷙鷓鷸鷦鷭鷯鷽鸚鸛鸞鹵鹹鹽麁麈麋麌麒麕麑麝麥麩麸麪麭靡黌黎黏黐黔黜點黝黠黥黨黯黴黶黷黹黻黼黽鼇鼈皷鼕鼡鼬鼾齊齒齔齣齟齠齡齦齧齬齪齷齲齶龕龜龠"],["f4a1","堯槇遙瑤凜熙"],["f9a1","纊褜鍈銈蓜俉炻昱棈鋹曻彅丨仡仼伀伃伹佖侒侊侚侔俍偀倢俿倞偆偰偂傔僴僘兊兤冝冾凬刕劜劦勀勛匀匇匤卲厓厲叝﨎咜咊咩哿喆坙坥垬埈埇﨏塚增墲夋奓奛奝奣妤妺孖寀甯寘寬尞岦岺峵崧嵓﨑嵂嵭嶸嶹巐弡弴彧德"],["faa1","忞恝悅悊惞惕愠惲愑愷愰憘戓抦揵摠撝擎敎昀昕昻昉昮昞昤晥晗晙晴晳暙暠暲暿曺朎朗杦枻桒柀栁桄棏﨓楨﨔榘槢樰橫橆橳橾櫢櫤毖氿汜沆汯泚洄涇浯涖涬淏淸淲淼渹湜渧渼溿澈澵濵瀅瀇瀨炅炫焏焄煜煆煇凞燁燾犱"],["fba1","犾猤猪獷玽珉珖珣珒琇珵琦琪琩琮瑢璉璟甁畯皂皜皞皛皦益睆劯砡硎硤硺礰礼神祥禔福禛竑竧靖竫箞精絈絜綷綠緖繒罇羡羽茁荢荿菇菶葈蒴蕓蕙蕫﨟薰蘒﨡蠇裵訒訷詹誧誾諟諸諶譓譿賰賴贒赶﨣軏﨤逸遧郞都鄕鄧釚"],["fca1","釗釞釭釮釤釥鈆鈐鈊鈺鉀鈼鉎鉙鉑鈹鉧銧鉷鉸鋧鋗鋙鋐﨧鋕鋠鋓錥錡鋻﨨錞鋿錝錂鍰鍗鎤鏆鏞鏸鐱鑅鑈閒隆﨩隝隯霳霻靃靍靏靑靕顗顥飯飼餧館馞驎髙髜魵魲鮏鮱鮻鰀鵰鵫鶴鸙黑"],["fcf1","ⅰ",9,"￢￤＇＂"],["8fa2af","˘ˇ¸˙˝¯˛˚～΄΅"],["8fa2c2","¡¦¿"],["8fa2eb","ºª©®™¤№"],["8fa6e1","ΆΈΉΊΪ"],["8fa6e7","Ό"],["8fa6e9","ΎΫ"],["8fa6ec","Ώ"],["8fa6f1","άέήίϊΐόςύϋΰώ"],["8fa7c2","Ђ",10,"ЎЏ"],["8fa7f2","ђ",10,"ўџ"],["8fa9a1","ÆĐ"],["8fa9a4","Ħ"],["8fa9a6","IJ"],["8fa9a8","ŁĿ"],["8fa9ab","ŊØŒ"],["8fa9af","ŦÞ"],["8fa9c1","æđðħıijĸłŀʼnŋøœßŧþ"],["8faaa1","ÁÀÄÂĂǍĀĄÅÃĆĈČÇĊĎÉÈËÊĚĖĒĘ"],["8faaba","ĜĞĢĠĤÍÌÏÎǏİĪĮĨĴĶĹĽĻŃŇŅÑÓÒÖÔǑŐŌÕŔŘŖŚŜŠŞŤŢÚÙÜÛŬǓŰŪŲŮŨǗǛǙǕŴÝŸŶŹŽŻ"],["8faba1","áàäâăǎāąåãćĉčçċďéèëêěėēęǵĝğ"],["8fabbd","ġĥíìïîǐ"],["8fabc5","īįĩĵķĺľļńňņñóòöôǒőōõŕřŗśŝšşťţúùüûŭǔűūųůũǘǜǚǖŵýÿŷźžż"],["8fb0a1","丂丄丅丌丒丟丣两丨丫丮丯丰丵乀乁乄乇乑乚乜乣乨乩乴乵乹乿亍亖亗亝亯亹仃仐仚仛仠仡仢仨仯仱仳仵份仾仿伀伂伃伈伋伌伒伕伖众伙伮伱你伳伵伷伹伻伾佀佂佈佉佋佌佒佔佖佘佟佣佪佬佮佱佷佸佹佺佽佾侁侂侄"],["8fb1a1","侅侉侊侌侎侐侒侓侔侗侙侚侞侟侲侷侹侻侼侽侾俀俁俅俆俈俉俋俌俍俏俒俜俠俢俰俲俼俽俿倀倁倄倇倊倌倎倐倓倗倘倛倜倝倞倢倧倮倰倲倳倵偀偁偂偅偆偊偌偎偑偒偓偗偙偟偠偢偣偦偧偪偭偰偱倻傁傃傄傆傊傎傏傐"],["8fb2a1","傒傓傔傖傛傜傞",4,"傪傯傰傹傺傽僀僃僄僇僌僎僐僓僔僘僜僝僟僢僤僦僨僩僯僱僶僺僾儃儆儇儈儋儌儍儎僲儐儗儙儛儜儝儞儣儧儨儬儭儯儱儳儴儵儸儹兂兊兏兓兕兗兘兟兤兦兾冃冄冋冎冘冝冡冣冭冸冺冼冾冿凂"],["8fb3a1","凈减凑凒凓凕凘凞凢凥凮凲凳凴凷刁刂刅划刓刕刖刘刢刨刱刲刵刼剅剉剕剗剘剚剜剟剠剡剦剮剷剸剹劀劂劅劊劌劓劕劖劗劘劚劜劤劥劦劧劯劰劶劷劸劺劻劽勀勄勆勈勌勏勑勔勖勛勜勡勥勨勩勪勬勰勱勴勶勷匀匃匊匋"],["8fb4a1","匌匑匓匘匛匜匞匟匥匧匨匩匫匬匭匰匲匵匼匽匾卂卌卋卙卛卡卣卥卬卭卲卹卾厃厇厈厎厓厔厙厝厡厤厪厫厯厲厴厵厷厸厺厽叀叅叏叒叓叕叚叝叞叠另叧叵吂吓吚吡吧吨吪启吱吴吵呃呄呇呍呏呞呢呤呦呧呩呫呭呮呴呿"],["8fb5a1","咁咃咅咈咉咍咑咕咖咜咟咡咦咧咩咪咭咮咱咷咹咺咻咿哆哊响哎哠哪哬哯哶哼哾哿唀唁唅唈唉唌唍唎唕唪唫唲唵唶唻唼唽啁啇啉啊啍啐啑啘啚啛啞啠啡啤啦啿喁喂喆喈喎喏喑喒喓喔喗喣喤喭喲喿嗁嗃嗆嗉嗋嗌嗎嗑嗒"],["8fb6a1","嗓嗗嗘嗛嗞嗢嗩嗶嗿嘅嘈嘊嘍",5,"嘙嘬嘰嘳嘵嘷嘹嘻嘼嘽嘿噀噁噃噄噆噉噋噍噏噔噞噠噡噢噣噦噩噭噯噱噲噵嚄嚅嚈嚋嚌嚕嚙嚚嚝嚞嚟嚦嚧嚨嚩嚫嚬嚭嚱嚳嚷嚾囅囉囊囋囏囐囌囍囙囜囝囟囡囤",4,"囱囫园"],["8fb7a1","囶囷圁圂圇圊圌圑圕圚圛圝圠圢圣圤圥圩圪圬圮圯圳圴圽圾圿坅坆坌坍坒坢坥坧坨坫坭",4,"坳坴坵坷坹坺坻坼坾垁垃垌垔垗垙垚垜垝垞垟垡垕垧垨垩垬垸垽埇埈埌埏埕埝埞埤埦埧埩埭埰埵埶埸埽埾埿堃堄堈堉埡"],["8fb8a1","堌堍堛堞堟堠堦堧堭堲堹堿塉塌塍塏塐塕塟塡塤塧塨塸塼塿墀墁墇墈墉墊墌墍墏墐墔墖墝墠墡墢墦墩墱墲壄墼壂壈壍壎壐壒壔壖壚壝壡壢壩壳夅夆夋夌夒夓夔虁夝夡夣夤夨夯夰夳夵夶夿奃奆奒奓奙奛奝奞奟奡奣奫奭"],["8fb9a1","奯奲奵奶她奻奼妋妌妎妒妕妗妟妤妧妭妮妯妰妳妷妺妼姁姃姄姈姊姍姒姝姞姟姣姤姧姮姯姱姲姴姷娀娄娌娍娎娒娓娞娣娤娧娨娪娭娰婄婅婇婈婌婐婕婞婣婥婧婭婷婺婻婾媋媐媓媖媙媜媞媟媠媢媧媬媱媲媳媵媸媺媻媿"],["8fbaa1","嫄嫆嫈嫏嫚嫜嫠嫥嫪嫮嫵嫶嫽嬀嬁嬈嬗嬴嬙嬛嬝嬡嬥嬭嬸孁孋孌孒孖孞孨孮孯孼孽孾孿宁宄宆宊宎宐宑宓宔宖宨宩宬宭宯宱宲宷宺宼寀寁寍寏寖",4,"寠寯寱寴寽尌尗尞尟尣尦尩尫尬尮尰尲尵尶屙屚屜屢屣屧屨屩"],["8fbba1","屭屰屴屵屺屻屼屽岇岈岊岏岒岝岟岠岢岣岦岪岲岴岵岺峉峋峒峝峗峮峱峲峴崁崆崍崒崫崣崤崦崧崱崴崹崽崿嵂嵃嵆嵈嵕嵑嵙嵊嵟嵠嵡嵢嵤嵪嵭嵰嵹嵺嵾嵿嶁嶃嶈嶊嶒嶓嶔嶕嶙嶛嶟嶠嶧嶫嶰嶴嶸嶹巃巇巋巐巎巘巙巠巤"],["8fbca1","巩巸巹帀帇帍帒帔帕帘帟帠帮帨帲帵帾幋幐幉幑幖幘幛幜幞幨幪",4,"幰庀庋庎庢庤庥庨庪庬庱庳庽庾庿廆廌廋廎廑廒廔廕廜廞廥廫异弆弇弈弎弙弜弝弡弢弣弤弨弫弬弮弰弴弶弻弽弿彀彄彅彇彍彐彔彘彛彠彣彤彧"],["8fbda1","彯彲彴彵彸彺彽彾徉徍徏徖徜徝徢徧徫徤徬徯徰徱徸忄忇忈忉忋忐",4,"忞忡忢忨忩忪忬忭忮忯忲忳忶忺忼怇怊怍怓怔怗怘怚怟怤怭怳怵恀恇恈恉恌恑恔恖恗恝恡恧恱恾恿悂悆悈悊悎悑悓悕悘悝悞悢悤悥您悰悱悷"],["8fbea1","悻悾惂惄惈惉惊惋惎惏惔惕惙惛惝惞惢惥惲惵惸惼惽愂愇愊愌愐",4,"愖愗愙愜愞愢愪愫愰愱愵愶愷愹慁慅慆慉慞慠慬慲慸慻慼慿憀憁憃憄憋憍憒憓憗憘憜憝憟憠憥憨憪憭憸憹憼懀懁懂懎懏懕懜懝懞懟懡懢懧懩懥"],["8fbfa1","懬懭懯戁戃戄戇戓戕戜戠戢戣戧戩戫戹戽扂扃扄扆扌扐扑扒扔扖扚扜扤扭扯扳扺扽抍抎抏抐抦抨抳抶抷抺抾抿拄拎拕拖拚拪拲拴拼拽挃挄挊挋挍挐挓挖挘挩挪挭挵挶挹挼捁捂捃捄捆捊捋捎捒捓捔捘捛捥捦捬捭捱捴捵"],["8fc0a1","捸捼捽捿掂掄掇掊掐掔掕掙掚掞掤掦掭掮掯掽揁揅揈揎揑揓揔揕揜揠揥揪揬揲揳揵揸揹搉搊搐搒搔搘搞搠搢搤搥搩搪搯搰搵搽搿摋摏摑摒摓摔摚摛摜摝摟摠摡摣摭摳摴摻摽撅撇撏撐撑撘撙撛撝撟撡撣撦撨撬撳撽撾撿"],["8fc1a1","擄擉擊擋擌擎擐擑擕擗擤擥擩擪擭擰擵擷擻擿攁攄攈攉攊攏攓攔攖攙攛攞攟攢攦攩攮攱攺攼攽敃敇敉敐敒敔敟敠敧敫敺敽斁斅斊斒斕斘斝斠斣斦斮斲斳斴斿旂旈旉旎旐旔旖旘旟旰旲旴旵旹旾旿昀昄昈昉昍昑昒昕昖昝"],["8fc2a1","昞昡昢昣昤昦昩昪昫昬昮昰昱昳昹昷晀晅晆晊晌晑晎晗晘晙晛晜晠晡曻晪晫晬晾晳晵晿晷晸晹晻暀晼暋暌暍暐暒暙暚暛暜暟暠暤暭暱暲暵暻暿曀曂曃曈曌曎曏曔曛曟曨曫曬曮曺朅朇朎朓朙朜朠朢朳朾杅杇杈杌杔杕杝"],["8fc3a1","杦杬杮杴杶杻极构枎枏枑枓枖枘枙枛枰枱枲枵枻枼枽柹柀柂柃柅柈柉柒柗柙柜柡柦柰柲柶柷桒栔栙栝栟栨栧栬栭栯栰栱栳栻栿桄桅桊桌桕桗桘桛桫桮",4,"桵桹桺桻桼梂梄梆梈梖梘梚梜梡梣梥梩梪梮梲梻棅棈棌棏"],["8fc4a1","棐棑棓棖棙棜棝棥棨棪棫棬棭棰棱棵棶棻棼棽椆椉椊椐椑椓椖椗椱椳椵椸椻楂楅楉楎楗楛楣楤楥楦楨楩楬楰楱楲楺楻楿榀榍榒榖榘榡榥榦榨榫榭榯榷榸榺榼槅槈槑槖槗槢槥槮槯槱槳槵槾樀樁樃樏樑樕樚樝樠樤樨樰樲"],["8fc5a1","樴樷樻樾樿橅橆橉橊橎橐橑橒橕橖橛橤橧橪橱橳橾檁檃檆檇檉檋檑檛檝檞檟檥檫檯檰檱檴檽檾檿櫆櫉櫈櫌櫐櫔櫕櫖櫜櫝櫤櫧櫬櫰櫱櫲櫼櫽欂欃欆欇欉欏欐欑欗欛欞欤欨欫欬欯欵欶欻欿歆歊歍歒歖歘歝歠歧歫歮歰歵歽"],["8fc6a1","歾殂殅殗殛殟殠殢殣殨殩殬殭殮殰殸殹殽殾毃毄毉毌毖毚毡毣毦毧毮毱毷毹毿氂氄氅氉氍氎氐氒氙氟氦氧氨氬氮氳氵氶氺氻氿汊汋汍汏汒汔汙汛汜汫汭汯汴汶汸汹汻沅沆沇沉沔沕沗沘沜沟沰沲沴泂泆泍泏泐泑泒泔泖"],["8fc7a1","泚泜泠泧泩泫泬泮泲泴洄洇洊洎洏洑洓洚洦洧洨汧洮洯洱洹洼洿浗浞浟浡浥浧浯浰浼涂涇涑涒涔涖涗涘涪涬涴涷涹涽涿淄淈淊淎淏淖淛淝淟淠淢淥淩淯淰淴淶淼渀渄渞渢渧渲渶渹渻渼湄湅湈湉湋湏湑湒湓湔湗湜湝湞"],["8fc8a1","湢湣湨湳湻湽溍溓溙溠溧溭溮溱溳溻溿滀滁滃滇滈滊滍滎滏滫滭滮滹滻滽漄漈漊漌漍漖漘漚漛漦漩漪漯漰漳漶漻漼漭潏潑潒潓潗潙潚潝潞潡潢潨潬潽潾澃澇澈澋澌澍澐澒澓澔澖澚澟澠澥澦澧澨澮澯澰澵澶澼濅濇濈濊"],["8fc9a1","濚濞濨濩濰濵濹濼濽瀀瀅瀆瀇瀍瀗瀠瀣瀯瀴瀷瀹瀼灃灄灈灉灊灋灔灕灝灞灎灤灥灬灮灵灶灾炁炅炆炔",4,"炛炤炫炰炱炴炷烊烑烓烔烕烖烘烜烤烺焃",4,"焋焌焏焞焠焫焭焯焰焱焸煁煅煆煇煊煋煐煒煗煚煜煞煠"],["8fcaa1","煨煹熀熅熇熌熒熚熛熠熢熯熰熲熳熺熿燀燁燄燋燌燓燖燙燚燜燸燾爀爇爈爉爓爗爚爝爟爤爫爯爴爸爹牁牂牃牅牎牏牐牓牕牖牚牜牞牠牣牨牫牮牯牱牷牸牻牼牿犄犉犍犎犓犛犨犭犮犱犴犾狁狇狉狌狕狖狘狟狥狳狴狺狻"],["8fcba1","狾猂猄猅猇猋猍猒猓猘猙猞猢猤猧猨猬猱猲猵猺猻猽獃獍獐獒獖獘獝獞獟獠獦獧獩獫獬獮獯獱獷獹獼玀玁玃玅玆玎玐玓玕玗玘玜玞玟玠玢玥玦玪玫玭玵玷玹玼玽玿珅珆珉珋珌珏珒珓珖珙珝珡珣珦珧珩珴珵珷珹珺珻珽"],["8fcca1","珿琀琁琄琇琊琑琚琛琤琦琨",9,"琹瑀瑃瑄瑆瑇瑋瑍瑑瑒瑗瑝瑢瑦瑧瑨瑫瑭瑮瑱瑲璀璁璅璆璇璉璏璐璑璒璘璙璚璜璟璠璡璣璦璨璩璪璫璮璯璱璲璵璹璻璿瓈瓉瓌瓐瓓瓘瓚瓛瓞瓟瓤瓨瓪瓫瓯瓴瓺瓻瓼瓿甆"],["8fcda1","甒甖甗甠甡甤甧甩甪甯甶甹甽甾甿畀畃畇畈畎畐畒畗畞畟畡畯畱畹",5,"疁疅疐疒疓疕疙疜疢疤疴疺疿痀痁痄痆痌痎痏痗痜痟痠痡痤痧痬痮痯痱痹瘀瘂瘃瘄瘇瘈瘊瘌瘏瘒瘓瘕瘖瘙瘛瘜瘝瘞瘣瘥瘦瘩瘭瘲瘳瘵瘸瘹"],["8fcea1","瘺瘼癊癀癁癃癄癅癉癋癕癙癟癤癥癭癮癯癱癴皁皅皌皍皕皛皜皝皟皠皢",6,"皪皭皽盁盅盉盋盌盎盔盙盠盦盨盬盰盱盶盹盼眀眆眊眎眒眔眕眗眙眚眜眢眨眭眮眯眴眵眶眹眽眾睂睅睆睊睍睎睏睒睖睗睜睞睟睠睢"],["8fcfa1","睤睧睪睬睰睲睳睴睺睽瞀瞄瞌瞍瞔瞕瞖瞚瞟瞢瞧瞪瞮瞯瞱瞵瞾矃矉矑矒矕矙矞矟矠矤矦矪矬矰矱矴矸矻砅砆砉砍砎砑砝砡砢砣砭砮砰砵砷硃硄硇硈硌硎硒硜硞硠硡硣硤硨硪确硺硾碊碏碔碘碡碝碞碟碤碨碬碭碰碱碲碳"],["8fd0a1","碻碽碿磇磈磉磌磎磒磓磕磖磤磛磟磠磡磦磪磲磳礀磶磷磺磻磿礆礌礐礚礜礞礟礠礥礧礩礭礱礴礵礻礽礿祄祅祆祊祋祏祑祔祘祛祜祧祩祫祲祹祻祼祾禋禌禑禓禔禕禖禘禛禜禡禨禩禫禯禱禴禸离秂秄秇秈秊秏秔秖秚秝秞"],["8fd1a1","秠秢秥秪秫秭秱秸秼稂稃稇稉稊稌稑稕稛稞稡稧稫稭稯稰稴稵稸稹稺穄穅穇穈穌穕穖穙穜穝穟穠穥穧穪穭穵穸穾窀窂窅窆窊窋窐窑窔窞窠窣窬窳窵窹窻窼竆竉竌竎竑竛竨竩竫竬竱竴竻竽竾笇笔笟笣笧笩笪笫笭笮笯笰"],["8fd2a1","笱笴笽笿筀筁筇筎筕筠筤筦筩筪筭筯筲筳筷箄箉箎箐箑箖箛箞箠箥箬箯箰箲箵箶箺箻箼箽篂篅篈篊篔篖篗篙篚篛篨篪篲篴篵篸篹篺篼篾簁簂簃簄簆簉簋簌簎簏簙簛簠簥簦簨簬簱簳簴簶簹簺籆籊籕籑籒籓籙",5],["8fd3a1","籡籣籧籩籭籮籰籲籹籼籽粆粇粏粔粞粠粦粰粶粷粺粻粼粿糄糇糈糉糍糏糓糔糕糗糙糚糝糦糩糫糵紃紇紈紉紏紑紒紓紖紝紞紣紦紪紭紱紼紽紾絀絁絇絈絍絑絓絗絙絚絜絝絥絧絪絰絸絺絻絿綁綂綃綅綆綈綋綌綍綑綖綗綝"],["8fd4a1","綞綦綧綪綳綶綷綹緂",4,"緌緍緎緗緙縀緢緥緦緪緫緭緱緵緶緹緺縈縐縑縕縗縜縝縠縧縨縬縭縯縳縶縿繄繅繇繎繐繒繘繟繡繢繥繫繮繯繳繸繾纁纆纇纊纍纑纕纘纚纝纞缼缻缽缾缿罃罄罇罏罒罓罛罜罝罡罣罤罥罦罭"],["8fd5a1","罱罽罾罿羀羋羍羏羐羑羖羗羜羡羢羦羪羭羴羼羿翀翃翈翎翏翛翟翣翥翨翬翮翯翲翺翽翾翿耇耈耊耍耎耏耑耓耔耖耝耞耟耠耤耦耬耮耰耴耵耷耹耺耼耾聀聄聠聤聦聭聱聵肁肈肎肜肞肦肧肫肸肹胈胍胏胒胔胕胗胘胠胭胮"],["8fd6a1","胰胲胳胶胹胺胾脃脋脖脗脘脜脞脠脤脧脬脰脵脺脼腅腇腊腌腒腗腠腡腧腨腩腭腯腷膁膐膄膅膆膋膎膖膘膛膞膢膮膲膴膻臋臃臅臊臎臏臕臗臛臝臞臡臤臫臬臰臱臲臵臶臸臹臽臿舀舃舏舓舔舙舚舝舡舢舨舲舴舺艃艄艅艆"],["8fd7a1","艋艎艏艑艖艜艠艣艧艭艴艻艽艿芀芁芃芄芇芉芊芎芑芔芖芘芚芛芠芡芣芤芧芨芩芪芮芰芲芴芷芺芼芾芿苆苐苕苚苠苢苤苨苪苭苯苶苷苽苾茀茁茇茈茊茋荔茛茝茞茟茡茢茬茭茮茰茳茷茺茼茽荂荃荄荇荍荎荑荕荖荗荰荸"],["8fd8a1","荽荿莀莂莄莆莍莒莔莕莘莙莛莜莝莦莧莩莬莾莿菀菇菉菏菐菑菔菝荓菨菪菶菸菹菼萁萆萊萏萑萕萙莭萯萹葅葇葈葊葍葏葑葒葖葘葙葚葜葠葤葥葧葪葰葳葴葶葸葼葽蒁蒅蒒蒓蒕蒞蒦蒨蒩蒪蒯蒱蒴蒺蒽蒾蓀蓂蓇蓈蓌蓏蓓"],["8fd9a1","蓜蓧蓪蓯蓰蓱蓲蓷蔲蓺蓻蓽蔂蔃蔇蔌蔎蔐蔜蔞蔢蔣蔤蔥蔧蔪蔫蔯蔳蔴蔶蔿蕆蕏",4,"蕖蕙蕜",6,"蕤蕫蕯蕹蕺蕻蕽蕿薁薅薆薉薋薌薏薓薘薝薟薠薢薥薧薴薶薷薸薼薽薾薿藂藇藊藋藎薭藘藚藟藠藦藨藭藳藶藼"],["8fdaa1","藿蘀蘄蘅蘍蘎蘐蘑蘒蘘蘙蘛蘞蘡蘧蘩蘶蘸蘺蘼蘽虀虂虆虒虓虖虗虘虙虝虠",4,"虩虬虯虵虶虷虺蚍蚑蚖蚘蚚蚜蚡蚦蚧蚨蚭蚱蚳蚴蚵蚷蚸蚹蚿蛀蛁蛃蛅蛑蛒蛕蛗蛚蛜蛠蛣蛥蛧蚈蛺蛼蛽蜄蜅蜇蜋蜎蜏蜐蜓蜔蜙蜞蜟蜡蜣"],["8fdba1","蜨蜮蜯蜱蜲蜹蜺蜼蜽蜾蝀蝃蝅蝍蝘蝝蝡蝤蝥蝯蝱蝲蝻螃",6,"螋螌螐螓螕螗螘螙螞螠螣螧螬螭螮螱螵螾螿蟁蟈蟉蟊蟎蟕蟖蟙蟚蟜蟟蟢蟣蟤蟪蟫蟭蟱蟳蟸蟺蟿蠁蠃蠆蠉蠊蠋蠐蠙蠒蠓蠔蠘蠚蠛蠜蠞蠟蠨蠭蠮蠰蠲蠵"],["8fdca1","蠺蠼衁衃衅衈衉衊衋衎衑衕衖衘衚衜衟衠衤衩衱衹衻袀袘袚袛袜袟袠袨袪袺袽袾裀裊",4,"裑裒裓裛裞裧裯裰裱裵裷褁褆褍褎褏褕褖褘褙褚褜褠褦褧褨褰褱褲褵褹褺褾襀襂襅襆襉襏襒襗襚襛襜襡襢襣襫襮襰襳襵襺"],["8fdda1","襻襼襽覉覍覐覔覕覛覜覟覠覥覰覴覵覶覷覼觔",4,"觥觩觫觭觱觳觶觹觽觿訄訅訇訏訑訒訔訕訞訠訢訤訦訫訬訯訵訷訽訾詀詃詅詇詉詍詎詓詖詗詘詜詝詡詥詧詵詶詷詹詺詻詾詿誀誃誆誋誏誐誒誖誗誙誟誧誩誮誯誳"],["8fdea1","誶誷誻誾諃諆諈諉諊諑諓諔諕諗諝諟諬諰諴諵諶諼諿謅謆謋謑謜謞謟謊謭謰謷謼譂",4,"譈譒譓譔譙譍譞譣譭譶譸譹譼譾讁讄讅讋讍讏讔讕讜讞讟谸谹谽谾豅豇豉豋豏豑豓豔豗豘豛豝豙豣豤豦豨豩豭豳豵豶豻豾貆"],["8fdfa1","貇貋貐貒貓貙貛貜貤貹貺賅賆賉賋賏賖賕賙賝賡賨賬賯賰賲賵賷賸賾賿贁贃贉贒贗贛赥赩赬赮赿趂趄趈趍趐趑趕趞趟趠趦趫趬趯趲趵趷趹趻跀跅跆跇跈跊跎跑跔跕跗跙跤跥跧跬跰趼跱跲跴跽踁踄踅踆踋踑踔踖踠踡踢"],["8fe0a1","踣踦踧踱踳踶踷踸踹踽蹀蹁蹋蹍蹎蹏蹔蹛蹜蹝蹞蹡蹢蹩蹬蹭蹯蹰蹱蹹蹺蹻躂躃躉躐躒躕躚躛躝躞躢躧躩躭躮躳躵躺躻軀軁軃軄軇軏軑軔軜軨軮軰軱軷軹軺軭輀輂輇輈輏輐輖輗輘輞輠輡輣輥輧輨輬輭輮輴輵輶輷輺轀轁"],["8fe1a1","轃轇轏轑",4,"轘轝轞轥辝辠辡辤辥辦辵辶辸达迀迁迆迊迋迍运迒迓迕迠迣迤迨迮迱迵迶迻迾适逄逈逌逘逛逨逩逯逪逬逭逳逴逷逿遃遄遌遛遝遢遦遧遬遰遴遹邅邈邋邌邎邐邕邗邘邙邛邠邡邢邥邰邲邳邴邶邽郌邾郃"],["8fe2a1","郄郅郇郈郕郗郘郙郜郝郟郥郒郶郫郯郰郴郾郿鄀鄄鄅鄆鄈鄍鄐鄔鄖鄗鄘鄚鄜鄞鄠鄥鄢鄣鄧鄩鄮鄯鄱鄴鄶鄷鄹鄺鄼鄽酃酇酈酏酓酗酙酚酛酡酤酧酭酴酹酺酻醁醃醅醆醊醎醑醓醔醕醘醞醡醦醨醬醭醮醰醱醲醳醶醻醼醽醿"],["8fe3a1","釂釃釅釓釔釗釙釚釞釤釥釩釪釬",5,"釷釹釻釽鈀鈁鈄鈅鈆鈇鈉鈊鈌鈐鈒鈓鈖鈘鈜鈝鈣鈤鈥鈦鈨鈮鈯鈰鈳鈵鈶鈸鈹鈺鈼鈾鉀鉂鉃鉆鉇鉊鉍鉎鉏鉑鉘鉙鉜鉝鉠鉡鉥鉧鉨鉩鉮鉯鉰鉵",4,"鉻鉼鉽鉿銈銉銊銍銎銒銗"],["8fe4a1","銙銟銠銤銥銧銨銫銯銲銶銸銺銻銼銽銿",4,"鋅鋆鋇鋈鋋鋌鋍鋎鋐鋓鋕鋗鋘鋙鋜鋝鋟鋠鋡鋣鋥鋧鋨鋬鋮鋰鋹鋻鋿錀錂錈錍錑錔錕錜錝錞錟錡錤錥錧錩錪錳錴錶錷鍇鍈鍉鍐鍑鍒鍕鍗鍘鍚鍞鍤鍥鍧鍩鍪鍭鍯鍰鍱鍳鍴鍶"],["8fe5a1","鍺鍽鍿鎀鎁鎂鎈鎊鎋鎍鎏鎒鎕鎘鎛鎞鎡鎣鎤鎦鎨鎫鎴鎵鎶鎺鎩鏁鏄鏅鏆鏇鏉",4,"鏓鏙鏜鏞鏟鏢鏦鏧鏹鏷鏸鏺鏻鏽鐁鐂鐄鐈鐉鐍鐎鐏鐕鐖鐗鐟鐮鐯鐱鐲鐳鐴鐻鐿鐽鑃鑅鑈鑊鑌鑕鑙鑜鑟鑡鑣鑨鑫鑭鑮鑯鑱鑲钄钃镸镹"],["8fe6a1","镾閄閈閌閍閎閝閞閟閡閦閩閫閬閴閶閺閽閿闆闈闉闋闐闑闒闓闙闚闝闞闟闠闤闦阝阞阢阤阥阦阬阱阳阷阸阹阺阼阽陁陒陔陖陗陘陡陮陴陻陼陾陿隁隂隃隄隉隑隖隚隝隟隤隥隦隩隮隯隳隺雊雒嶲雘雚雝雞雟雩雯雱雺霂"],["8fe7a1","霃霅霉霚霛霝霡霢霣霨霱霳靁靃靊靎靏靕靗靘靚靛靣靧靪靮靳靶靷靸靻靽靿鞀鞉鞕鞖鞗鞙鞚鞞鞟鞢鞬鞮鞱鞲鞵鞶鞸鞹鞺鞼鞾鞿韁韄韅韇韉韊韌韍韎韐韑韔韗韘韙韝韞韠韛韡韤韯韱韴韷韸韺頇頊頙頍頎頔頖頜頞頠頣頦"],["8fe8a1","頫頮頯頰頲頳頵頥頾顄顇顊顑顒顓顖顗顙顚顢顣顥顦顪顬颫颭颮颰颴颷颸颺颻颿飂飅飈飌飡飣飥飦飧飪飳飶餂餇餈餑餕餖餗餚餛餜餟餢餦餧餫餱",4,"餹餺餻餼饀饁饆饇饈饍饎饔饘饙饛饜饞饟饠馛馝馟馦馰馱馲馵"],["8fe9a1","馹馺馽馿駃駉駓駔駙駚駜駞駧駪駫駬駰駴駵駹駽駾騂騃騄騋騌騐騑騖騞騠騢騣騤騧騭騮騳騵騶騸驇驁驄驊驋驌驎驑驔驖驝骪骬骮骯骲骴骵骶骹骻骾骿髁髃髆髈髎髐髒髕髖髗髛髜髠髤髥髧髩髬髲髳髵髹髺髽髿",4],["8feaa1","鬄鬅鬈鬉鬋鬌鬍鬎鬐鬒鬖鬙鬛鬜鬠鬦鬫鬭鬳鬴鬵鬷鬹鬺鬽魈魋魌魕魖魗魛魞魡魣魥魦魨魪",4,"魳魵魷魸魹魿鮀鮄鮅鮆鮇鮉鮊鮋鮍鮏鮐鮔鮚鮝鮞鮦鮧鮩鮬鮰鮱鮲鮷鮸鮻鮼鮾鮿鯁鯇鯈鯎鯐鯗鯘鯝鯟鯥鯧鯪鯫鯯鯳鯷鯸"],["8feba1","鯹鯺鯽鯿鰀鰂鰋鰏鰑鰖鰘鰙鰚鰜鰞鰢鰣鰦",4,"鰱鰵鰶鰷鰽鱁鱃鱄鱅鱉鱊鱎鱏鱐鱓鱔鱖鱘鱛鱝鱞鱟鱣鱩鱪鱜鱫鱨鱮鱰鱲鱵鱷鱻鳦鳲鳷鳹鴋鴂鴑鴗鴘鴜鴝鴞鴯鴰鴲鴳鴴鴺鴼鵅鴽鵂鵃鵇鵊鵓鵔鵟鵣鵢鵥鵩鵪鵫鵰鵶鵷鵻"],["8feca1","鵼鵾鶃鶄鶆鶊鶍鶎鶒鶓鶕鶖鶗鶘鶡鶪鶬鶮鶱鶵鶹鶼鶿鷃鷇鷉鷊鷔鷕鷖鷗鷚鷞鷟鷠鷥鷧鷩鷫鷮鷰鷳鷴鷾鸊鸂鸇鸎鸐鸑鸒鸕鸖鸙鸜鸝鹺鹻鹼麀麂麃麄麅麇麎麏麖麘麛麞麤麨麬麮麯麰麳麴麵黆黈黋黕黟黤黧黬黭黮黰黱黲黵"],["8feda1","黸黿鼂鼃鼉鼏鼐鼑鼒鼔鼖鼗鼙鼚鼛鼟鼢鼦鼪鼫鼯鼱鼲鼴鼷鼹鼺鼼鼽鼿齁齃",4,"齓齕齖齗齘齚齝齞齨齩齭",4,"齳齵齺齽龏龐龑龒龔龖龗龞龡龢龣龥"]]')},6258:function(r){"use strict";r.exports=JSON.parse('{"uChars":[128,165,169,178,184,216,226,235,238,244,248,251,253,258,276,284,300,325,329,334,364,463,465,467,469,471,473,475,477,506,594,610,712,716,730,930,938,962,970,1026,1104,1106,8209,8215,8218,8222,8231,8241,8244,8246,8252,8365,8452,8454,8458,8471,8482,8556,8570,8596,8602,8713,8720,8722,8726,8731,8737,8740,8742,8748,8751,8760,8766,8777,8781,8787,8802,8808,8816,8854,8858,8870,8896,8979,9322,9372,9548,9588,9616,9622,9634,9652,9662,9672,9676,9680,9702,9735,9738,9793,9795,11906,11909,11913,11917,11928,11944,11947,11951,11956,11960,11964,11979,12284,12292,12312,12319,12330,12351,12436,12447,12535,12543,12586,12842,12850,12964,13200,13215,13218,13253,13263,13267,13270,13384,13428,13727,13839,13851,14617,14703,14801,14816,14964,15183,15471,15585,16471,16736,17208,17325,17330,17374,17623,17997,18018,18212,18218,18301,18318,18760,18811,18814,18820,18823,18844,18848,18872,19576,19620,19738,19887,40870,59244,59336,59367,59413,59417,59423,59431,59437,59443,59452,59460,59478,59493,63789,63866,63894,63976,63986,64016,64018,64021,64025,64034,64037,64042,65074,65093,65107,65112,65127,65132,65375,65510,65536],"gbChars":[0,36,38,45,50,81,89,95,96,100,103,104,105,109,126,133,148,172,175,179,208,306,307,308,309,310,311,312,313,341,428,443,544,545,558,741,742,749,750,805,819,820,7922,7924,7925,7927,7934,7943,7944,7945,7950,8062,8148,8149,8152,8164,8174,8236,8240,8262,8264,8374,8380,8381,8384,8388,8390,8392,8393,8394,8396,8401,8406,8416,8419,8424,8437,8439,8445,8482,8485,8496,8521,8603,8936,8946,9046,9050,9063,9066,9076,9092,9100,9108,9111,9113,9131,9162,9164,9218,9219,11329,11331,11334,11336,11346,11361,11363,11366,11370,11372,11375,11389,11682,11686,11687,11692,11694,11714,11716,11723,11725,11730,11736,11982,11989,12102,12336,12348,12350,12384,12393,12395,12397,12510,12553,12851,12962,12973,13738,13823,13919,13933,14080,14298,14585,14698,15583,15847,16318,16434,16438,16481,16729,17102,17122,17315,17320,17402,17418,17859,17909,17911,17915,17916,17936,17939,17961,18664,18703,18814,18962,19043,33469,33470,33471,33484,33485,33490,33497,33501,33505,33513,33520,33536,33550,37845,37921,37948,38029,38038,38064,38065,38066,38069,38075,38076,38078,39108,39109,39113,39114,39115,39116,39265,39394,189000]}')},4346:function(r){"use strict";r.exports=JSON.parse('[["a140","",62],["a180","",32],["a240","",62],["a280","",32],["a2ab","",5],["a2e3","€"],["a2ef",""],["a2fd",""],["a340","",62],["a380","",31,"　"],["a440","",62],["a480","",32],["a4f4","",10],["a540","",62],["a580","",32],["a5f7","",7],["a640","",62],["a680","",32],["a6b9","",7],["a6d9","",6],["a6ec",""],["a6f3",""],["a6f6","",8],["a740","",62],["a780","",32],["a7c2","",14],["a7f2","",12],["a896","",10],["a8bc","ḿ"],["a8bf","ǹ"],["a8c1",""],["a8ea","",20],["a958",""],["a95b",""],["a95d",""],["a989","〾⿰",11],["a997","",12],["a9f0","",14],["aaa1","",93],["aba1","",93],["aca1","",93],["ada1","",93],["aea1","",93],["afa1","",93],["d7fa","",4],["f8a1","",93],["f9a1","",93],["faa1","",93],["fba1","",93],["fca1","",93],["fda1","",93],["fe50","⺁⺄㑳㑇⺈⺋㖞㘚㘎⺌⺗㥮㤘㧏㧟㩳㧐㭎㱮㳠⺧⺪䁖䅟⺮䌷⺳⺶⺷䎱䎬⺻䏝䓖䙡䙌"],["fe80","䜣䜩䝼䞍⻊䥇䥺䥽䦂䦃䦅䦆䦟䦛䦷䦶䲣䲟䲠䲡䱷䲢䴓",6,"䶮",93],["8135f437",""]]')},7014:function(r){"use strict";r.exports=JSON.parse('[["0","\\u0000",128],["a1","｡",62],["8140","　、。，．・：；？！゛゜´｀¨＾￣＿ヽヾゝゞ〃仝々〆〇ー―‐／＼～∥｜…‥‘’“”（）〔〕［］｛｝〈",9,"＋－±×"],["8180","÷＝≠＜＞≦≧∞∴♂♀°′″℃￥＄￠￡％＃＆＊＠§☆★○●◎◇◆□■△▲▽▼※〒→←↑↓〓"],["81b8","∈∋⊆⊇⊂⊃∪∩"],["81c8","∧∨￢⇒⇔∀∃"],["81da","∠⊥⌒∂∇≡≒≪≫√∽∝∵∫∬"],["81f0","ʼn♯♭♪†‡¶"],["81fc","◯"],["824f","０",9],["8260","Ａ",25],["8281","ａ",25],["829f","ぁ",82],["8340","ァ",62],["8380","ム",22],["839f","Α",16,"Σ",6],["83bf","α",16,"σ",6],["8440","А",5,"ЁЖ",25],["8470","а",5,"ёж",7],["8480","о",17],["849f","─│┌┐┘└├┬┤┴┼━┃┏┓┛┗┣┳┫┻╋┠┯┨┷┿┝┰┥┸╂"],["8740","①",19,"Ⅰ",9],["875f","㍉㌔㌢㍍㌘㌧㌃㌶㍑㍗㌍㌦㌣㌫㍊㌻㎜㎝㎞㎎㎏㏄㎡"],["877e","㍻"],["8780","〝〟№㏍℡㊤",4,"㈱㈲㈹㍾㍽㍼≒≡∫∮∑√⊥∠∟⊿∵∩∪"],["889f","亜唖娃阿哀愛挨姶逢葵茜穐悪握渥旭葦芦鯵梓圧斡扱宛姐虻飴絢綾鮎或粟袷安庵按暗案闇鞍杏以伊位依偉囲夷委威尉惟意慰易椅為畏異移維緯胃萎衣謂違遺医井亥域育郁磯一壱溢逸稲茨芋鰯允印咽員因姻引飲淫胤蔭"],["8940","院陰隠韻吋右宇烏羽迂雨卯鵜窺丑碓臼渦嘘唄欝蔚鰻姥厩浦瓜閏噂云運雲荏餌叡営嬰影映曳栄永泳洩瑛盈穎頴英衛詠鋭液疫益駅悦謁越閲榎厭円"],["8980","園堰奄宴延怨掩援沿演炎焔煙燕猿縁艶苑薗遠鉛鴛塩於汚甥凹央奥往応押旺横欧殴王翁襖鴬鴎黄岡沖荻億屋憶臆桶牡乙俺卸恩温穏音下化仮何伽価佳加可嘉夏嫁家寡科暇果架歌河火珂禍禾稼箇花苛茄荷華菓蝦課嘩貨迦過霞蚊俄峨我牙画臥芽蛾賀雅餓駕介会解回塊壊廻快怪悔恢懐戒拐改"],["8a40","魁晦械海灰界皆絵芥蟹開階貝凱劾外咳害崖慨概涯碍蓋街該鎧骸浬馨蛙垣柿蛎鈎劃嚇各廓拡撹格核殻獲確穫覚角赫較郭閣隔革学岳楽額顎掛笠樫"],["8a80","橿梶鰍潟割喝恰括活渇滑葛褐轄且鰹叶椛樺鞄株兜竃蒲釜鎌噛鴨栢茅萱粥刈苅瓦乾侃冠寒刊勘勧巻喚堪姦完官寛干幹患感慣憾換敢柑桓棺款歓汗漢澗潅環甘監看竿管簡緩缶翰肝艦莞観諌貫還鑑間閑関陥韓館舘丸含岸巌玩癌眼岩翫贋雁頑顔願企伎危喜器基奇嬉寄岐希幾忌揮机旗既期棋棄"],["8b40","機帰毅気汽畿祈季稀紀徽規記貴起軌輝飢騎鬼亀偽儀妓宜戯技擬欺犠疑祇義蟻誼議掬菊鞠吉吃喫桔橘詰砧杵黍却客脚虐逆丘久仇休及吸宮弓急救"],["8b80","朽求汲泣灸球究窮笈級糾給旧牛去居巨拒拠挙渠虚許距鋸漁禦魚亨享京供侠僑兇競共凶協匡卿叫喬境峡強彊怯恐恭挟教橋況狂狭矯胸脅興蕎郷鏡響饗驚仰凝尭暁業局曲極玉桐粁僅勤均巾錦斤欣欽琴禁禽筋緊芹菌衿襟謹近金吟銀九倶句区狗玖矩苦躯駆駈駒具愚虞喰空偶寓遇隅串櫛釧屑屈"],["8c40","掘窟沓靴轡窪熊隈粂栗繰桑鍬勲君薫訓群軍郡卦袈祁係傾刑兄啓圭珪型契形径恵慶慧憩掲携敬景桂渓畦稽系経継繋罫茎荊蛍計詣警軽頚鶏芸迎鯨"],["8c80","劇戟撃激隙桁傑欠決潔穴結血訣月件倹倦健兼券剣喧圏堅嫌建憲懸拳捲検権牽犬献研硯絹県肩見謙賢軒遣鍵険顕験鹸元原厳幻弦減源玄現絃舷言諺限乎個古呼固姑孤己庫弧戸故枯湖狐糊袴股胡菰虎誇跨鈷雇顧鼓五互伍午呉吾娯後御悟梧檎瑚碁語誤護醐乞鯉交佼侯候倖光公功効勾厚口向"],["8d40","后喉坑垢好孔孝宏工巧巷幸広庚康弘恒慌抗拘控攻昂晃更杭校梗構江洪浩港溝甲皇硬稿糠紅紘絞綱耕考肯肱腔膏航荒行衡講貢購郊酵鉱砿鋼閤降"],["8d80","項香高鴻剛劫号合壕拷濠豪轟麹克刻告国穀酷鵠黒獄漉腰甑忽惚骨狛込此頃今困坤墾婚恨懇昏昆根梱混痕紺艮魂些佐叉唆嵯左差査沙瑳砂詐鎖裟坐座挫債催再最哉塞妻宰彩才採栽歳済災采犀砕砦祭斎細菜裁載際剤在材罪財冴坂阪堺榊肴咲崎埼碕鷺作削咋搾昨朔柵窄策索錯桜鮭笹匙冊刷"],["8e40","察拶撮擦札殺薩雑皐鯖捌錆鮫皿晒三傘参山惨撒散桟燦珊産算纂蚕讃賛酸餐斬暫残仕仔伺使刺司史嗣四士始姉姿子屍市師志思指支孜斯施旨枝止"],["8e80","死氏獅祉私糸紙紫肢脂至視詞詩試誌諮資賜雌飼歯事似侍児字寺慈持時次滋治爾璽痔磁示而耳自蒔辞汐鹿式識鴫竺軸宍雫七叱執失嫉室悉湿漆疾質実蔀篠偲柴芝屡蕊縞舎写射捨赦斜煮社紗者謝車遮蛇邪借勺尺杓灼爵酌釈錫若寂弱惹主取守手朱殊狩珠種腫趣酒首儒受呪寿授樹綬需囚収周"],["8f40","宗就州修愁拾洲秀秋終繍習臭舟蒐衆襲讐蹴輯週酋酬集醜什住充十従戎柔汁渋獣縦重銃叔夙宿淑祝縮粛塾熟出術述俊峻春瞬竣舜駿准循旬楯殉淳"],["8f80","準潤盾純巡遵醇順処初所暑曙渚庶緒署書薯藷諸助叙女序徐恕鋤除傷償勝匠升召哨商唱嘗奨妾娼宵将小少尚庄床廠彰承抄招掌捷昇昌昭晶松梢樟樵沼消渉湘焼焦照症省硝礁祥称章笑粧紹肖菖蒋蕉衝裳訟証詔詳象賞醤鉦鍾鐘障鞘上丈丞乗冗剰城場壌嬢常情擾条杖浄状畳穣蒸譲醸錠嘱埴飾"],["9040","拭植殖燭織職色触食蝕辱尻伸信侵唇娠寝審心慎振新晋森榛浸深申疹真神秦紳臣芯薪親診身辛進針震人仁刃塵壬尋甚尽腎訊迅陣靭笥諏須酢図厨"],["9080","逗吹垂帥推水炊睡粋翠衰遂酔錐錘随瑞髄崇嵩数枢趨雛据杉椙菅頗雀裾澄摺寸世瀬畝是凄制勢姓征性成政整星晴棲栖正清牲生盛精聖声製西誠誓請逝醒青静斉税脆隻席惜戚斥昔析石積籍績脊責赤跡蹟碩切拙接摂折設窃節説雪絶舌蝉仙先千占宣専尖川戦扇撰栓栴泉浅洗染潜煎煽旋穿箭線"],["9140","繊羨腺舛船薦詮賎践選遷銭銑閃鮮前善漸然全禅繕膳糎噌塑岨措曾曽楚狙疏疎礎祖租粗素組蘇訴阻遡鼠僧創双叢倉喪壮奏爽宋層匝惣想捜掃挿掻"],["9180","操早曹巣槍槽漕燥争痩相窓糟総綜聡草荘葬蒼藻装走送遭鎗霜騒像増憎臓蔵贈造促側則即息捉束測足速俗属賊族続卒袖其揃存孫尊損村遜他多太汰詑唾堕妥惰打柁舵楕陀駄騨体堆対耐岱帯待怠態戴替泰滞胎腿苔袋貸退逮隊黛鯛代台大第醍題鷹滝瀧卓啄宅托択拓沢濯琢託鐸濁諾茸凧蛸只"],["9240","叩但達辰奪脱巽竪辿棚谷狸鱈樽誰丹単嘆坦担探旦歎淡湛炭短端箪綻耽胆蛋誕鍛団壇弾断暖檀段男談値知地弛恥智池痴稚置致蜘遅馳築畜竹筑蓄"],["9280","逐秩窒茶嫡着中仲宙忠抽昼柱注虫衷註酎鋳駐樗瀦猪苧著貯丁兆凋喋寵帖帳庁弔張彫徴懲挑暢朝潮牒町眺聴脹腸蝶調諜超跳銚長頂鳥勅捗直朕沈珍賃鎮陳津墜椎槌追鎚痛通塚栂掴槻佃漬柘辻蔦綴鍔椿潰坪壷嬬紬爪吊釣鶴亭低停偵剃貞呈堤定帝底庭廷弟悌抵挺提梯汀碇禎程締艇訂諦蹄逓"],["9340","邸鄭釘鼎泥摘擢敵滴的笛適鏑溺哲徹撤轍迭鉄典填天展店添纏甜貼転顛点伝殿澱田電兎吐堵塗妬屠徒斗杜渡登菟賭途都鍍砥砺努度土奴怒倒党冬"],["9380","凍刀唐塔塘套宕島嶋悼投搭東桃梼棟盗淘湯涛灯燈当痘祷等答筒糖統到董蕩藤討謄豆踏逃透鐙陶頭騰闘働動同堂導憧撞洞瞳童胴萄道銅峠鴇匿得徳涜特督禿篤毒独読栃橡凸突椴届鳶苫寅酉瀞噸屯惇敦沌豚遁頓呑曇鈍奈那内乍凪薙謎灘捺鍋楢馴縄畷南楠軟難汝二尼弐迩匂賑肉虹廿日乳入"],["9440","如尿韮任妊忍認濡禰祢寧葱猫熱年念捻撚燃粘乃廼之埜嚢悩濃納能脳膿農覗蚤巴把播覇杷波派琶破婆罵芭馬俳廃拝排敗杯盃牌背肺輩配倍培媒梅"],["9480","楳煤狽買売賠陪這蝿秤矧萩伯剥博拍柏泊白箔粕舶薄迫曝漠爆縛莫駁麦函箱硲箸肇筈櫨幡肌畑畠八鉢溌発醗髪伐罰抜筏閥鳩噺塙蛤隼伴判半反叛帆搬斑板氾汎版犯班畔繁般藩販範釆煩頒飯挽晩番盤磐蕃蛮匪卑否妃庇彼悲扉批披斐比泌疲皮碑秘緋罷肥被誹費避非飛樋簸備尾微枇毘琵眉美"],["9540","鼻柊稗匹疋髭彦膝菱肘弼必畢筆逼桧姫媛紐百謬俵彪標氷漂瓢票表評豹廟描病秒苗錨鋲蒜蛭鰭品彬斌浜瀕貧賓頻敏瓶不付埠夫婦富冨布府怖扶敷"],["9580","斧普浮父符腐膚芙譜負賦赴阜附侮撫武舞葡蕪部封楓風葺蕗伏副復幅服福腹複覆淵弗払沸仏物鮒分吻噴墳憤扮焚奮粉糞紛雰文聞丙併兵塀幣平弊柄並蔽閉陛米頁僻壁癖碧別瞥蔑箆偏変片篇編辺返遍便勉娩弁鞭保舗鋪圃捕歩甫補輔穂募墓慕戊暮母簿菩倣俸包呆報奉宝峰峯崩庖抱捧放方朋"],["9640","法泡烹砲縫胞芳萌蓬蜂褒訪豊邦鋒飽鳳鵬乏亡傍剖坊妨帽忘忙房暴望某棒冒紡肪膨謀貌貿鉾防吠頬北僕卜墨撲朴牧睦穆釦勃没殆堀幌奔本翻凡盆"],["9680","摩磨魔麻埋妹昧枚毎哩槙幕膜枕鮪柾鱒桝亦俣又抹末沫迄侭繭麿万慢満漫蔓味未魅巳箕岬密蜜湊蓑稔脈妙粍民眠務夢無牟矛霧鵡椋婿娘冥名命明盟迷銘鳴姪牝滅免棉綿緬面麺摸模茂妄孟毛猛盲網耗蒙儲木黙目杢勿餅尤戻籾貰問悶紋門匁也冶夜爺耶野弥矢厄役約薬訳躍靖柳薮鑓愉愈油癒"],["9740","諭輸唯佑優勇友宥幽悠憂揖有柚湧涌猶猷由祐裕誘遊邑郵雄融夕予余与誉輿預傭幼妖容庸揚揺擁曜楊様洋溶熔用窯羊耀葉蓉要謡踊遥陽養慾抑欲"],["9780","沃浴翌翼淀羅螺裸来莱頼雷洛絡落酪乱卵嵐欄濫藍蘭覧利吏履李梨理璃痢裏裡里離陸律率立葎掠略劉流溜琉留硫粒隆竜龍侶慮旅虜了亮僚両凌寮料梁涼猟療瞭稜糧良諒遼量陵領力緑倫厘林淋燐琳臨輪隣鱗麟瑠塁涙累類令伶例冷励嶺怜玲礼苓鈴隷零霊麗齢暦歴列劣烈裂廉恋憐漣煉簾練聯"],["9840","蓮連錬呂魯櫓炉賂路露労婁廊弄朗楼榔浪漏牢狼篭老聾蝋郎六麓禄肋録論倭和話歪賄脇惑枠鷲亙亘鰐詫藁蕨椀湾碗腕"],["989f","弌丐丕个丱丶丼丿乂乖乘亂亅豫亊舒弍于亞亟亠亢亰亳亶从仍仄仆仂仗仞仭仟价伉佚估佛佝佗佇佶侈侏侘佻佩佰侑佯來侖儘俔俟俎俘俛俑俚俐俤俥倚倨倔倪倥倅伜俶倡倩倬俾俯們倆偃假會偕偐偈做偖偬偸傀傚傅傴傲"],["9940","僉僊傳僂僖僞僥僭僣僮價僵儉儁儂儖儕儔儚儡儺儷儼儻儿兀兒兌兔兢竸兩兪兮冀冂囘册冉冏冑冓冕冖冤冦冢冩冪冫决冱冲冰况冽凅凉凛几處凩凭"],["9980","凰凵凾刄刋刔刎刧刪刮刳刹剏剄剋剌剞剔剪剴剩剳剿剽劍劔劒剱劈劑辨辧劬劭劼劵勁勍勗勞勣勦飭勠勳勵勸勹匆匈甸匍匐匏匕匚匣匯匱匳匸區卆卅丗卉卍凖卞卩卮夘卻卷厂厖厠厦厥厮厰厶參簒雙叟曼燮叮叨叭叺吁吽呀听吭吼吮吶吩吝呎咏呵咎呟呱呷呰咒呻咀呶咄咐咆哇咢咸咥咬哄哈咨"],["9a40","咫哂咤咾咼哘哥哦唏唔哽哮哭哺哢唹啀啣啌售啜啅啖啗唸唳啝喙喀咯喊喟啻啾喘喞單啼喃喩喇喨嗚嗅嗟嗄嗜嗤嗔嘔嗷嘖嗾嗽嘛嗹噎噐營嘴嘶嘲嘸"],["9a80","噫噤嘯噬噪嚆嚀嚊嚠嚔嚏嚥嚮嚶嚴囂嚼囁囃囀囈囎囑囓囗囮囹圀囿圄圉圈國圍圓團圖嗇圜圦圷圸坎圻址坏坩埀垈坡坿垉垓垠垳垤垪垰埃埆埔埒埓堊埖埣堋堙堝塲堡塢塋塰毀塒堽塹墅墹墟墫墺壞墻墸墮壅壓壑壗壙壘壥壜壤壟壯壺壹壻壼壽夂夊夐夛梦夥夬夭夲夸夾竒奕奐奎奚奘奢奠奧奬奩"],["9b40","奸妁妝佞侫妣妲姆姨姜妍姙姚娥娟娑娜娉娚婀婬婉娵娶婢婪媚媼媾嫋嫂媽嫣嫗嫦嫩嫖嫺嫻嬌嬋嬖嬲嫐嬪嬶嬾孃孅孀孑孕孚孛孥孩孰孳孵學斈孺宀"],["9b80","它宦宸寃寇寉寔寐寤實寢寞寥寫寰寶寳尅將專對尓尠尢尨尸尹屁屆屎屓屐屏孱屬屮乢屶屹岌岑岔妛岫岻岶岼岷峅岾峇峙峩峽峺峭嶌峪崋崕崗嵜崟崛崑崔崢崚崙崘嵌嵒嵎嵋嵬嵳嵶嶇嶄嶂嶢嶝嶬嶮嶽嶐嶷嶼巉巍巓巒巖巛巫已巵帋帚帙帑帛帶帷幄幃幀幎幗幔幟幢幤幇幵并幺麼广庠廁廂廈廐廏"],["9c40","廖廣廝廚廛廢廡廨廩廬廱廳廰廴廸廾弃弉彝彜弋弑弖弩弭弸彁彈彌彎弯彑彖彗彙彡彭彳彷徃徂彿徊很徑徇從徙徘徠徨徭徼忖忻忤忸忱忝悳忿怡恠"],["9c80","怙怐怩怎怱怛怕怫怦怏怺恚恁恪恷恟恊恆恍恣恃恤恂恬恫恙悁悍惧悃悚悄悛悖悗悒悧悋惡悸惠惓悴忰悽惆悵惘慍愕愆惶惷愀惴惺愃愡惻惱愍愎慇愾愨愧慊愿愼愬愴愽慂慄慳慷慘慙慚慫慴慯慥慱慟慝慓慵憙憖憇憬憔憚憊憑憫憮懌懊應懷懈懃懆憺懋罹懍懦懣懶懺懴懿懽懼懾戀戈戉戍戌戔戛"],["9d40","戞戡截戮戰戲戳扁扎扞扣扛扠扨扼抂抉找抒抓抖拔抃抔拗拑抻拏拿拆擔拈拜拌拊拂拇抛拉挌拮拱挧挂挈拯拵捐挾捍搜捏掖掎掀掫捶掣掏掉掟掵捫"],["9d80","捩掾揩揀揆揣揉插揶揄搖搴搆搓搦搶攝搗搨搏摧摯摶摎攪撕撓撥撩撈撼據擒擅擇撻擘擂擱擧舉擠擡抬擣擯攬擶擴擲擺攀擽攘攜攅攤攣攫攴攵攷收攸畋效敖敕敍敘敞敝敲數斂斃變斛斟斫斷旃旆旁旄旌旒旛旙无旡旱杲昊昃旻杳昵昶昴昜晏晄晉晁晞晝晤晧晨晟晢晰暃暈暎暉暄暘暝曁暹曉暾暼"],["9e40","曄暸曖曚曠昿曦曩曰曵曷朏朖朞朦朧霸朮朿朶杁朸朷杆杞杠杙杣杤枉杰枩杼杪枌枋枦枡枅枷柯枴柬枳柩枸柤柞柝柢柮枹柎柆柧檜栞框栩桀桍栲桎"],["9e80","梳栫桙档桷桿梟梏梭梔條梛梃檮梹桴梵梠梺椏梍桾椁棊椈棘椢椦棡椌棍棔棧棕椶椒椄棗棣椥棹棠棯椨椪椚椣椡棆楹楷楜楸楫楔楾楮椹楴椽楙椰楡楞楝榁楪榲榮槐榿槁槓榾槎寨槊槝榻槃榧樮榑榠榜榕榴槞槨樂樛槿權槹槲槧樅榱樞槭樔槫樊樒櫁樣樓橄樌橲樶橸橇橢橙橦橈樸樢檐檍檠檄檢檣"],["9f40","檗蘗檻櫃櫂檸檳檬櫞櫑櫟檪櫚櫪櫻欅蘖櫺欒欖鬱欟欸欷盜欹飮歇歃歉歐歙歔歛歟歡歸歹歿殀殄殃殍殘殕殞殤殪殫殯殲殱殳殷殼毆毋毓毟毬毫毳毯"],["9f80","麾氈氓气氛氤氣汞汕汢汪沂沍沚沁沛汾汨汳沒沐泄泱泓沽泗泅泝沮沱沾沺泛泯泙泪洟衍洶洫洽洸洙洵洳洒洌浣涓浤浚浹浙涎涕濤涅淹渕渊涵淇淦涸淆淬淞淌淨淒淅淺淙淤淕淪淮渭湮渮渙湲湟渾渣湫渫湶湍渟湃渺湎渤滿渝游溂溪溘滉溷滓溽溯滄溲滔滕溏溥滂溟潁漑灌滬滸滾漿滲漱滯漲滌"],["e040","漾漓滷澆潺潸澁澀潯潛濳潭澂潼潘澎澑濂潦澳澣澡澤澹濆澪濟濕濬濔濘濱濮濛瀉瀋濺瀑瀁瀏濾瀛瀚潴瀝瀘瀟瀰瀾瀲灑灣炙炒炯烱炬炸炳炮烟烋烝"],["e080","烙焉烽焜焙煥煕熈煦煢煌煖煬熏燻熄熕熨熬燗熹熾燒燉燔燎燠燬燧燵燼燹燿爍爐爛爨爭爬爰爲爻爼爿牀牆牋牘牴牾犂犁犇犒犖犢犧犹犲狃狆狄狎狒狢狠狡狹狷倏猗猊猜猖猝猴猯猩猥猾獎獏默獗獪獨獰獸獵獻獺珈玳珎玻珀珥珮珞璢琅瑯琥珸琲琺瑕琿瑟瑙瑁瑜瑩瑰瑣瑪瑶瑾璋璞璧瓊瓏瓔珱"],["e140","瓠瓣瓧瓩瓮瓲瓰瓱瓸瓷甄甃甅甌甎甍甕甓甞甦甬甼畄畍畊畉畛畆畚畩畤畧畫畭畸當疆疇畴疊疉疂疔疚疝疥疣痂疳痃疵疽疸疼疱痍痊痒痙痣痞痾痿"],["e180","痼瘁痰痺痲痳瘋瘍瘉瘟瘧瘠瘡瘢瘤瘴瘰瘻癇癈癆癜癘癡癢癨癩癪癧癬癰癲癶癸發皀皃皈皋皎皖皓皙皚皰皴皸皹皺盂盍盖盒盞盡盥盧盪蘯盻眈眇眄眩眤眞眥眦眛眷眸睇睚睨睫睛睥睿睾睹瞎瞋瞑瞠瞞瞰瞶瞹瞿瞼瞽瞻矇矍矗矚矜矣矮矼砌砒礦砠礪硅碎硴碆硼碚碌碣碵碪碯磑磆磋磔碾碼磅磊磬"],["e240","磧磚磽磴礇礒礑礙礬礫祀祠祗祟祚祕祓祺祿禊禝禧齋禪禮禳禹禺秉秕秧秬秡秣稈稍稘稙稠稟禀稱稻稾稷穃穗穉穡穢穩龝穰穹穽窈窗窕窘窖窩竈窰"],["e280","窶竅竄窿邃竇竊竍竏竕竓站竚竝竡竢竦竭竰笂笏笊笆笳笘笙笞笵笨笶筐筺笄筍笋筌筅筵筥筴筧筰筱筬筮箝箘箟箍箜箚箋箒箏筝箙篋篁篌篏箴篆篝篩簑簔篦篥籠簀簇簓篳篷簗簍篶簣簧簪簟簷簫簽籌籃籔籏籀籐籘籟籤籖籥籬籵粃粐粤粭粢粫粡粨粳粲粱粮粹粽糀糅糂糘糒糜糢鬻糯糲糴糶糺紆"],["e340","紂紜紕紊絅絋紮紲紿紵絆絳絖絎絲絨絮絏絣經綉絛綏絽綛綺綮綣綵緇綽綫總綢綯緜綸綟綰緘緝緤緞緻緲緡縅縊縣縡縒縱縟縉縋縢繆繦縻縵縹繃縷"],["e380","縲縺繧繝繖繞繙繚繹繪繩繼繻纃緕繽辮繿纈纉續纒纐纓纔纖纎纛纜缸缺罅罌罍罎罐网罕罔罘罟罠罨罩罧罸羂羆羃羈羇羌羔羞羝羚羣羯羲羹羮羶羸譱翅翆翊翕翔翡翦翩翳翹飜耆耄耋耒耘耙耜耡耨耿耻聊聆聒聘聚聟聢聨聳聲聰聶聹聽聿肄肆肅肛肓肚肭冐肬胛胥胙胝胄胚胖脉胯胱脛脩脣脯腋"],["e440","隋腆脾腓腑胼腱腮腥腦腴膃膈膊膀膂膠膕膤膣腟膓膩膰膵膾膸膽臀臂膺臉臍臑臙臘臈臚臟臠臧臺臻臾舁舂舅與舊舍舐舖舩舫舸舳艀艙艘艝艚艟艤"],["e480","艢艨艪艫舮艱艷艸艾芍芒芫芟芻芬苡苣苟苒苴苳苺莓范苻苹苞茆苜茉苙茵茴茖茲茱荀茹荐荅茯茫茗茘莅莚莪莟莢莖茣莎莇莊荼莵荳荵莠莉莨菴萓菫菎菽萃菘萋菁菷萇菠菲萍萢萠莽萸蔆菻葭萪萼蕚蒄葷葫蒭葮蒂葩葆萬葯葹萵蓊葢蒹蒿蒟蓙蓍蒻蓚蓐蓁蓆蓖蒡蔡蓿蓴蔗蔘蔬蔟蔕蔔蓼蕀蕣蕘蕈"],["e540","蕁蘂蕋蕕薀薤薈薑薊薨蕭薔薛藪薇薜蕷蕾薐藉薺藏薹藐藕藝藥藜藹蘊蘓蘋藾藺蘆蘢蘚蘰蘿虍乕虔號虧虱蚓蚣蚩蚪蚋蚌蚶蚯蛄蛆蚰蛉蠣蚫蛔蛞蛩蛬"],["e580","蛟蛛蛯蜒蜆蜈蜀蜃蛻蜑蜉蜍蛹蜊蜴蜿蜷蜻蜥蜩蜚蝠蝟蝸蝌蝎蝴蝗蝨蝮蝙蝓蝣蝪蠅螢螟螂螯蟋螽蟀蟐雖螫蟄螳蟇蟆螻蟯蟲蟠蠏蠍蟾蟶蟷蠎蟒蠑蠖蠕蠢蠡蠱蠶蠹蠧蠻衄衂衒衙衞衢衫袁衾袞衵衽袵衲袂袗袒袮袙袢袍袤袰袿袱裃裄裔裘裙裝裹褂裼裴裨裲褄褌褊褓襃褞褥褪褫襁襄褻褶褸襌褝襠襞"],["e640","襦襤襭襪襯襴襷襾覃覈覊覓覘覡覩覦覬覯覲覺覽覿觀觚觜觝觧觴觸訃訖訐訌訛訝訥訶詁詛詒詆詈詼詭詬詢誅誂誄誨誡誑誥誦誚誣諄諍諂諚諫諳諧"],["e680","諤諱謔諠諢諷諞諛謌謇謚諡謖謐謗謠謳鞫謦謫謾謨譁譌譏譎證譖譛譚譫譟譬譯譴譽讀讌讎讒讓讖讙讚谺豁谿豈豌豎豐豕豢豬豸豺貂貉貅貊貍貎貔豼貘戝貭貪貽貲貳貮貶賈賁賤賣賚賽賺賻贄贅贊贇贏贍贐齎贓賍贔贖赧赭赱赳趁趙跂趾趺跏跚跖跌跛跋跪跫跟跣跼踈踉跿踝踞踐踟蹂踵踰踴蹊"],["e740","蹇蹉蹌蹐蹈蹙蹤蹠踪蹣蹕蹶蹲蹼躁躇躅躄躋躊躓躑躔躙躪躡躬躰軆躱躾軅軈軋軛軣軼軻軫軾輊輅輕輒輙輓輜輟輛輌輦輳輻輹轅轂輾轌轉轆轎轗轜"],["e780","轢轣轤辜辟辣辭辯辷迚迥迢迪迯邇迴逅迹迺逑逕逡逍逞逖逋逧逶逵逹迸遏遐遑遒逎遉逾遖遘遞遨遯遶隨遲邂遽邁邀邊邉邏邨邯邱邵郢郤扈郛鄂鄒鄙鄲鄰酊酖酘酣酥酩酳酲醋醉醂醢醫醯醪醵醴醺釀釁釉釋釐釖釟釡釛釼釵釶鈞釿鈔鈬鈕鈑鉞鉗鉅鉉鉤鉈銕鈿鉋鉐銜銖銓銛鉚鋏銹銷鋩錏鋺鍄錮"],["e840","錙錢錚錣錺錵錻鍜鍠鍼鍮鍖鎰鎬鎭鎔鎹鏖鏗鏨鏥鏘鏃鏝鏐鏈鏤鐚鐔鐓鐃鐇鐐鐶鐫鐵鐡鐺鑁鑒鑄鑛鑠鑢鑞鑪鈩鑰鑵鑷鑽鑚鑼鑾钁鑿閂閇閊閔閖閘閙"],["e880","閠閨閧閭閼閻閹閾闊濶闃闍闌闕闔闖關闡闥闢阡阨阮阯陂陌陏陋陷陜陞陝陟陦陲陬隍隘隕隗險隧隱隲隰隴隶隸隹雎雋雉雍襍雜霍雕雹霄霆霈霓霎霑霏霖霙霤霪霰霹霽霾靄靆靈靂靉靜靠靤靦靨勒靫靱靹鞅靼鞁靺鞆鞋鞏鞐鞜鞨鞦鞣鞳鞴韃韆韈韋韜韭齏韲竟韶韵頏頌頸頤頡頷頽顆顏顋顫顯顰"],["e940","顱顴顳颪颯颱颶飄飃飆飩飫餃餉餒餔餘餡餝餞餤餠餬餮餽餾饂饉饅饐饋饑饒饌饕馗馘馥馭馮馼駟駛駝駘駑駭駮駱駲駻駸騁騏騅駢騙騫騷驅驂驀驃"],["e980","騾驕驍驛驗驟驢驥驤驩驫驪骭骰骼髀髏髑髓體髞髟髢髣髦髯髫髮髴髱髷髻鬆鬘鬚鬟鬢鬣鬥鬧鬨鬩鬪鬮鬯鬲魄魃魏魍魎魑魘魴鮓鮃鮑鮖鮗鮟鮠鮨鮴鯀鯊鮹鯆鯏鯑鯒鯣鯢鯤鯔鯡鰺鯲鯱鯰鰕鰔鰉鰓鰌鰆鰈鰒鰊鰄鰮鰛鰥鰤鰡鰰鱇鰲鱆鰾鱚鱠鱧鱶鱸鳧鳬鳰鴉鴈鳫鴃鴆鴪鴦鶯鴣鴟鵄鴕鴒鵁鴿鴾鵆鵈"],["ea40","鵝鵞鵤鵑鵐鵙鵲鶉鶇鶫鵯鵺鶚鶤鶩鶲鷄鷁鶻鶸鶺鷆鷏鷂鷙鷓鷸鷦鷭鷯鷽鸚鸛鸞鹵鹹鹽麁麈麋麌麒麕麑麝麥麩麸麪麭靡黌黎黏黐黔黜點黝黠黥黨黯"],["ea80","黴黶黷黹黻黼黽鼇鼈皷鼕鼡鼬鼾齊齒齔齣齟齠齡齦齧齬齪齷齲齶龕龜龠堯槇遙瑤凜熙"],["ed40","纊褜鍈銈蓜俉炻昱棈鋹曻彅丨仡仼伀伃伹佖侒侊侚侔俍偀倢俿倞偆偰偂傔僴僘兊兤冝冾凬刕劜劦勀勛匀匇匤卲厓厲叝﨎咜咊咩哿喆坙坥垬埈埇﨏"],["ed80","塚增墲夋奓奛奝奣妤妺孖寀甯寘寬尞岦岺峵崧嵓﨑嵂嵭嶸嶹巐弡弴彧德忞恝悅悊惞惕愠惲愑愷愰憘戓抦揵摠撝擎敎昀昕昻昉昮昞昤晥晗晙晴晳暙暠暲暿曺朎朗杦枻桒柀栁桄棏﨓楨﨔榘槢樰橫橆橳橾櫢櫤毖氿汜沆汯泚洄涇浯涖涬淏淸淲淼渹湜渧渼溿澈澵濵瀅瀇瀨炅炫焏焄煜煆煇凞燁燾犱"],["ee40","犾猤猪獷玽珉珖珣珒琇珵琦琪琩琮瑢璉璟甁畯皂皜皞皛皦益睆劯砡硎硤硺礰礼神祥禔福禛竑竧靖竫箞精絈絜綷綠緖繒罇羡羽茁荢荿菇菶葈蒴蕓蕙"],["ee80","蕫﨟薰蘒﨡蠇裵訒訷詹誧誾諟諸諶譓譿賰賴贒赶﨣軏﨤逸遧郞都鄕鄧釚釗釞釭釮釤釥鈆鈐鈊鈺鉀鈼鉎鉙鉑鈹鉧銧鉷鉸鋧鋗鋙鋐﨧鋕鋠鋓錥錡鋻﨨錞鋿錝錂鍰鍗鎤鏆鏞鏸鐱鑅鑈閒隆﨩隝隯霳霻靃靍靏靑靕顗顥飯飼餧館馞驎髙髜魵魲鮏鮱鮻鰀鵰鵫鶴鸙黑"],["eeef","ⅰ",9,"￢￤＇＂"],["f040","",62],["f080","",124],["f140","",62],["f180","",124],["f240","",62],["f280","",124],["f340","",62],["f380","",124],["f440","",62],["f480","",124],["f540","",62],["f580","",124],["f640","",62],["f680","",124],["f740","",62],["f780","",124],["f840","",62],["f880","",124],["f940",""],["fa40","ⅰ",9,"Ⅰ",9,"￢￤＇＂㈱№℡∵纊褜鍈銈蓜俉炻昱棈鋹曻彅丨仡仼伀伃伹佖侒侊侚侔俍偀倢俿倞偆偰偂傔僴僘兊"],["fa80","兤冝冾凬刕劜劦勀勛匀匇匤卲厓厲叝﨎咜咊咩哿喆坙坥垬埈埇﨏塚增墲夋奓奛奝奣妤妺孖寀甯寘寬尞岦岺峵崧嵓﨑嵂嵭嶸嶹巐弡弴彧德忞恝悅悊惞惕愠惲愑愷愰憘戓抦揵摠撝擎敎昀昕昻昉昮昞昤晥晗晙晴晳暙暠暲暿曺朎朗杦枻桒柀栁桄棏﨓楨﨔榘槢樰橫橆橳橾櫢櫤毖氿汜沆汯泚洄涇浯"],["fb40","涖涬淏淸淲淼渹湜渧渼溿澈澵濵瀅瀇瀨炅炫焏焄煜煆煇凞燁燾犱犾猤猪獷玽珉珖珣珒琇珵琦琪琩琮瑢璉璟甁畯皂皜皞皛皦益睆劯砡硎硤硺礰礼神"],["fb80","祥禔福禛竑竧靖竫箞精絈絜綷綠緖繒罇羡羽茁荢荿菇菶葈蒴蕓蕙蕫﨟薰蘒﨡蠇裵訒訷詹誧誾諟諸諶譓譿賰賴贒赶﨣軏﨤逸遧郞都鄕鄧釚釗釞釭釮釤釥鈆鈐鈊鈺鉀鈼鉎鉙鉑鈹鉧銧鉷鉸鋧鋗鋙鋐﨧鋕鋠鋓錥錡鋻﨨錞鋿錝錂鍰鍗鎤鏆鏞鏸鐱鑅鑈閒隆﨩隝隯霳霻靃靍靏靑靕顗顥飯飼餧館馞驎髙"],["fc40","髜魵魲鮏鮱鮻鰀鵰鵫鶴鸙黑"]]')}},i={};function __webpack_require__(o){var u=i[o];if(void 0!==u)return u.exports;var p=i[o]={id:o,loaded:!1,exports:{}};return r[o].call(p.exports,p,p.exports,__webpack_require__),p.loaded=!0,p.exports}return __webpack_require__.g=function(){if("object"==typeof globalThis)return globalThis;try{return this||new Function("return this")()}catch(r){if("object"==typeof window)return window}}(),__webpack_require__.nmd=function(r){return r.paths=[],r.children||(r.children=[]),r},__webpack_require__(2536)}()}));
+//# sourceMappingURL=pdfmake.min.js.map
+
+this.pdfMake = this.pdfMake || {}; this.pdfMake.vfs = {
+  "Roboto-Italic.ttf": "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",
+  "Roboto-Medium.ttf": "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",
+  "Roboto-MediumItalic.ttf": "AAEAAAARAQAABAAQR0RFRqWLoiAAAdWAAAACWEdQT1Pk1zcKAAHX2AAAZixHU1VChRYO9AACPgQAABX2T1MvMpfnsUwAAAGYAAAAYGNtYXDOyFo6AAAWdAAABoJjdnQgO/gmfQAAL1AAAAD+ZnBnbagFhDIAABz4AAAPhmdhc3AACAAZAAHVdAAAAAxnbHlmzgJNBAAAOpAAAZeaaGVhZAbdHSkAAAEcAAAANmhoZWEM1xKwAAABVAAAACRobXR4esmaxQAAAfgAABR8bG9jYcquK+cAADBQAAAKQG1heHAIzxDGAAABeAAAACBuYW1lSNF9RQAB0iwAAAMmcG9zdP9hAGQAAdVUAAAAIHByZXB5WM7TAAAsgAAAAs4AAQAAAAMBSJZw01FfDzz1ABkIAAAAAADE8BEuAAAAAN8Gv236Q/3VCXIIcwACAAkAAgAAAAAAAAABAAAHbP4MAAAJJvpD/l8JcggAAbMAAAAAAAAAAAAAAAAFHwABAAAFHwCpABUAdgAHAAIAEAAvAJoAAALmD3UAAwABAAQEiQH0AAUAAAWaBTMAAAEfBZoFMwAAA9EAZgIAAAACAAAAAAAAAAAA4AAC/1AAIFsAAAAgAAAAAEdPT0cAAQAA//0GAP4AAGYHmgIAIAABnwAAAAAEOgWwAAAAIAADA5YAZAAAAAAAAAAAAfgAAAH4AAACDgAzAnoAnQSuADIEaQBBBbYAtQT6ACkBTACRArAAaAK3/5QDcQBoBE8APAG8/48CowBAAigALgMH/34EaQBfBGkA8QRpAA0EaQAmBGkADQRpAFgEaQBdBGkAhgRpADcEaQCMAhYAKAHm/58D8wAzBF0AYAQIAC0DxgCTBvYALgUl/6ME5gAmBREAXwURACYEYwAmBEYAJgVJAGYFgQAmAjIANwRPAAQE5wAmBDEAJgbJACYFgQAmBVkAYgT0ACYFWQBeBOIAJgS0ACYEugCdBRQAWAUDAJoG1QC1BOb/wAS9AKEErv/lAhv/8AM8AKsCG/96A1QARAN5/3kCfADPBC8AHARdABAEDQA3BF8AOAQoADoCvgBeBGb/+QRQAA0B+gAgAfL/AgQMABEB+gAgBsMADwRSAA0EZwA4BF3/yARkADcCvgARA/8AGwKWAD8EUQBKA9oAZAXCAHkD6P+6A83/vAPo/+YClgAtAe0AIQKW/5gFJABcAg//5gRfAE0Ekf/3BXMABgQfAC4B6f/uBNP/4AN3ANcGGQBcA3UAvwPPAEYESQCABhoAXAO8AQQC+ADlBCkAGQLoAFcC6ABoAoEAxwSd/94DzAB+AjMAnwID/80C6ADkA4sAvgPOAAQFqADBBf0AtQY1AJYDx//UB0X/jQQhAB8FVwAWBKoAJwTFAB0GjgAOBIEARgRuAD4EYwAqBG7/zQTGADcFhQAsAgcAIwR3ACEEQwAfAkAAIAVsACMEYwARB3UAUAcHAD8B+AAcBWIASwK6/0QFZgBcBHoANAV3AFgEwABKAhX/BAQZADQDwAD+A44BCQPGAQQDZAD9AfoBAwKVAPoCOv+oA7EA3AMQAK4CYP/0AAD9VgAA/dwAAPz4AAD91QAA/LwAAPyhAlgBNgQbAO8CPQCfBFIAKwWW/6wFUABdBQ3/sgRp//4FggArBGn/3AXLAFQFhQB2BTAACgRhADsEpP/mA+0AdQRjADUEQwAoA/AAZgRjABEEggBuApAAZgRG/6cD+wBCBNYAYQRj/8sEEwA2BGsANwQKAGwEPABXBaQAMQWfAD8GYQBSBJAAUgRkAG4GRwBUBc8AlAUqAGEIQP/GCEoAKwYhAJ0FeQAiBOoAIwXP/4gHbv+kBLYAHwV6ACUFff/FBOQAmQYuAFUFygAhBVoAxAdgACgHvQAoBfIAhwbFACwE2wAkBSAASAczADMEwv+nBF0AQgRpACMDQQAWBMz/hQZV/7AD+AAXBG8AFwRKACIEcP+8BdQAIwRvABcEbwAXA9sAVAWnADkEqwAXBEMAbQZaABcGvAARBPkAUQZIACMERwAjBBkAIAZQACUETf+9BFAADQQZADkGof+4Bq8AFwRtAA0EbwAXByAAXwY5AEcERwAhBvEAKwXUABkE7/+sBEH/nQcTAD4GDgAtBrAAEgWwABUI5AA3B7EAIwQA/6kD1v+0BVAAYQRlADQE8QCoA+4AdQVQAGEEYwA1BxsAYwYlAEwHIABfBjkARwTpAFgEJgBEBNUAOwAA/PAAAP0QAAD+MQAA/j0AAPpDAAD6cwX7ACUE9gAXBEcAIQTpACYEY//IBEkAIwOHABEEzwArBAQAEQfv/6QGtf+wBacAKwTfACIFBgAkBIgAIQZhAKQFdABsBfsAJgTrABcHoAAmBYIAEQgTACoGugARBgcAXwTeAEsFG//ABCr/ugbxAJoFRQBXBc8AxATBAG0FRgC0BFIAggVbABwF7ABVBKD/8gT4ACQEVgAhBfr/xQT3/7wFgQArBGMAEQYFACYE9AAXB0YAJgZMACMFYgBLBIAALwSB//EEqAAnA5j/+QVJ/8AEWP+6BNMAKQa9AEIGpwBEBiEArAUAAGEEYACTBCcAiweB/9sGcf/ZB7gAJwZrAAcE3wBLBA8APQV9AJEE9gBzBSUAUAYf/8UFHf+8AwMA6AP/AAAH9AAAA/8AAAf0AAACrgAAAgQAAAFcAAAEZgAAAikAAAGfAAABAgAAANUAAAAAAAACrABAAqwAQAUGAJsGBAB8A37/WAGyALIBrQCNAcH/pwGWAM0C/gC5AwUAmgLq/6QEOQBpBHb//AK2AJ8D6AA1BYgANQHCAF4HcwCiAmEAWgJX//wDff/gAugAiQLoAGYC6AB+AugAiQLoAJgC6AB4AugApwNCAGsC6P/XAugAMQLo/6YC6P+2Auj/tQLo/8wC6P/YAuj/5gLo/8YC6P/1BJH/9wY8AA8GiwAsCF0AJgYMACAGaQAQBGkASwW9AEQEDQBEBHgAFQU4/+UFU//qBbcAwAPFACsH6wAjBOEA8ATtAH0GEQC6BrMAhAamAIoGgwC6BHAARAVfAB4Euf+mBF4AmgR5ADQIEgBJAiH/DwRuADEEXQBgA/3/1gQSABQD7wA8AkkAYwJ6AGcB2//RBPwAXgSJAE4EmABeBvIAXgbyAF4E6ABeBoMAFQAAAAAH8f+oCDUAXALe/+QC3gBwAt4AFgP+AGED/gAeA/4AWQP9ADwD/gAwA/7//wP+AAgD/v/yA/4AtAP+ADkEC//WBB4AbAQ7/6IF2gCLBFcAbgRmADgEHgBjBBYADwRDAAkEmQA6BEkACQSZADsEtgAJBdcACQObAAkEPAAJA7n/8wHvABoEtwAJBIMAPwOrAAkEFgAPBEYAEQOJAAIDnwAJBFb/pASZADsEVv+kA4H/2wSzAAkD///aBXsAQQUwAG0EuwAABWcAYgReADkHHf/BBx8ACQVuAGMEswAJBFAACwU0/4MGFf+qBCUADgS8AAsEPAAKBKb/wQQrAHYFOQAJBGoAWwZRAAkG2AAJBTgASwXxAAsERgALBF4AFAZcAAkEYf/RBAj/9gZw/6oEfAAKBOYACgVKAGAFygA+BD8AbASf/6IGZQBiBGoAWwRqAAkF0gA7BKkAMgQmAA4EnAA0BEYABwPWAB4H7wAJBM7/2gLe//UC3v/zAt4ACwLeABYC3gAlAt4ABQLeADQDmQCRApoBCAPCAAkEGv+HBJIAOwUZACsFAAArBBAAFAUNACsECQAUBFcACQReADkEPwAJBHb/mgHvAOgDhQEEAAD9JwPZANwD2wAWA+wA3APcANsDnwAJA4EBBAOBAQUC6ACJAugAZgLoAH4C6ACJAugAmALoAHgC6ACnBUoAbAVzAGsFVQArBawAbgWuAG0ECQCrBF8AHAQ3/4EEl//RBEn/2AQOADEDhQEFAa3/uAZmADsEiwBFAfz/AARz/6kEc//ZBHP/yQRzABMEcwBMBHMAIgRzAFcEcwAxBHMANwRzAPgCH/8EAh//BAIRACMCEf98AhEAIwQ/AAkEwQBMBBAAVgRmABAEHgA2BHIANwRuAC0EegAyBG//yAR3ADYEKAA6BGYALgQ4/58DmwCrBOYAJAOn/+8GFf9+A+gACQSZ/9sE5wAiBLYACQH4AAACowBABS8AIAUvACAEbgArBLoAnQKW/+UFJf+jBSX/owUl/6MFJf+jBSX/owUl/6MFJf+jBREAXwRjACYEYwAmBGMAJgRjACYCMgA3AjIANwIyADcCMgA3BYEAJgVZAGIFWQBiBVkAYgVZAGIFWQBiBRQAWAUUAFgFFABYBRQAWAS9AKEELwAcBC8AHAQvABwELwAcBC8AHAQvABwELwAcBA0ANwQoADoEKAA6BCgAOgQoADoCBwAjAgcAIwIHACMCBwAjBFIADQRnADgEZwA4BGcAOARnADgEZwA4BFEASgRRAEoEUQBKBFEASgPN/7wDzf+8BSX/owQvABwFJf+jBC8AHAUl/6MELwAcBREAXwQNADcFEQBfBA0ANwURAF8EDQA3BREAXwQNADcFEQAmBPUAOARjACYEKAA6BGMAJgQoADoEYwAmBCgAOgRjACYEKAA6BGMAJgQoADoFSQBmBGb/+QVJAGYEZv/5BUkAZgRm//kFSQBmBGb/+QWBACYEUAANAjIANwIHABMCMgA3AgcAIwIyADcCBwAjAjL/jgH6/3UCMgA3BoIANwPsACAETwAEAhX/BATnACYEDAARBDEAJgH6ACAEMQAmAfr/pgQxACYCkAAgBDEAJgLWACAFgQAmBFIADQWBACYEUgANBYEAJgRSAA0EUgANBVkAYgRnADgFWQBiBGcAOAVZAGIEZwA4BOIAJgK+ABEE4gAmAr7/nwTiACYCvgARBLQAJgP/ABsEtAAmA/8AGwS0ACYD/wAbBLQAJgP/ABsEtAAmA/8AGwS6AJ0ClgA/BLoAnQKWAD8EugCdAr4APwUUAFgEUQBKBRQAWARRAEoFFABYBFEASgUUAFgEUQBKBRQAWARRAEoFFABYBFEASgbVALUFwgB5BL0AoQPN/7wEvQChBK7/5QPo/+YErv/lA+j/5gSu/+UD6P/mB0X/jQaOAA4FVwAWBGMAKgRX/5YEV/+WBB4AYwR2/5oEdv+aBHb/mgR2/5oEdv+aBHb/mgR2/5oEXgA5A8IACQPCAAkDwgAJA8IACQHvABoB7wAaAe8AGgHvABoEtgAJBJkAOwSZADsEmQA7BJkAOwSZADsEZgA4BGYAOARmADgEZgA4BB4AbAR2/5oEdv+aBHb/mgReADkEXgA5BF4AOQReADkEVwAJA8IACQPCAAkDwgAJA8IACQPCAAkEgwA/BIMAPwSDAD8EgwA/BLcACQHvAA4B7wAaAe8AGgH5/5cB7wAaA7n/8wQ8AAkDmwAJA5sACQObAAkDmwAJBLYACQS2AAkEtgAJBJkAOwSZADsEmQA7BEMACQRDAAkEQwAJBBYADwQWAA8EFgAPBBYADwQeAGMEHgBjBB4AYwRmADgEZgA4BGYAOARmADgEZgA4BGYAOAXaAIsEHgBsBB4AbAQL/9YEC//WBAv/1gUl/6MEx/+6BeX/wgKW/8YFbQAmBSH/uAVEAB4CkAAJBSX/owTmACYEYwAmBK7/5QWBACYCMgA3BOcAJgbJACYFgQAmBVkAYgT0ACYEugCdBL0AoQTm/8ACMgA3BL0AoQRhADsEQwAoBGMAEQKQAGYEPABXBHcAIQRnADgEnf/eA9oAZAQ4/58CkABEBDwAVwRnADgEPABXBmEAUgRjACYEUgArBLQAJgIyADcCMgA3BE8ABAUAACsE5wAmBOQAmQUl/6ME5gAmBFIAKwRjACYFegAlBskAJgWBACYFWQBiBYIAKwT0ACYFEQBfBLoAnQTm/8AELwAcBCgAOgRvABcEZwA4BF3/yAQNADcDzf+8A+j/ugQoADoDQQAWA/8AGwH6ACACBwAjAfL/AgRKACIDzf+8BtUAtQXCAHkG1QC1BcIAeQbVALUFwgB5BL0AoQPN/7wBTACRAnoAnQQbADMCFf8EAa0AjQbJACYGwwAPBSX/owQvABwEYwAmBXoAJQQoADoEbwAXBYUAdgWfAD8E8QCoA+4AdQg0ADgJJgBiBLYAHwP4ABcFEQBfBA0ANwS9AKED7QB1AjIANwdu/6QGVf+wAjIANwUl/6MELwAcBSX/owQvABwHRf+NBo4ADgRjACYEKAA6BWIASwQZADQEGQA0B27/pAZV/7AEtgAfA/gAFwV6ACUEbwAXBXoAJQRvABcFWQBiBGcAOAVQAGEEZQA0BVAAYQRlADQFIABIBBkAIATkAJkDzf+8BOQAmQPN/7wE5ACZA83/vAVaAMQEQwBtBsUALAZIACMEXwA4BSX/owQvABwFJf+jBC8AHAUl/6MELwAcBSX/owQvABwFJf+jBC8AHAUl/6MELwAcBSX/owQvABwFJf+jBC8AHAUl/6MELwAcBSX/owQvABwFJf+jBC8AHAUl/6MELwAcBGMAJgQoADoEYwAmBCgAOgRjACYEKAA6BGMAJgQoADoEYwAmBCgAOgRjACYEKAA6BGMAJgQoADoEYwAmBCgAOgIyADcCBwAjAjL//wH6/+MFWQBiBGcAOAVZAGIEZwA4BVkAYgRnADgFWQBiBGcAOAVZAGIEZwA4BVkAYgRnADgFWQBiBGcAOAVmAFwEegA0BWYAXAR6ADQFZgBcBHoANAVmAFwEegA0BWYAXAR6ADQFFABYBFEASgUUAFgEUQBKBXcAWATAAEoFdwBYBMAASgV3AFgEwABKBXcAWATAAEoFdwBYBMAASgS9AKEDzf+8BL0AoQPN/7wEvQChA83/vAR9//QEugCdA9sAVAVaAMQEQwBtBFIAKwNBABYF7ABVBKD/8gRQAA0E2wAkBNsAJARSAAADQf/HBRQAPwQkACgEvQChA+0AUgTm/8AD6P+6BEMAKARG/8IGBAB8BGkADQRpACYEaQANBGkAWAR9AHEEkQBLBH0AjASRAHMFSQBmBGb/+QWBACYEUgANBSX/owQvABwEYwAmBCgAOgIy/88CB/+ABVkAYgRnADgE4gAmAr4ADAUUAFgEUQBKBMj/hQTmACYEXQAQBREAJgRfADgFEQAmBF8AOAWBACYEUAANBOcAJgQMABEE5wAmBAwAEQQxACYB+v/jBskAJgbDAA8FgQAmBFIADQVZAGIE9AAmBF3/yATiACYCvv/dBLQAJgP/ABsEugCdApYAPwUUAFgFAwCaA9oAZAUDAJoD2gBkBtUAtQXCAHkErv/lA+j/5gWf/wEEdv+aA/7/pgTz/64CK/+xBKP/2ARa/2UExf/qBHb/mgQ/AAkDwgAJBAv/1gS3AAkB7wAaBDwACQXXAAkEtgAJBJkAOwRJAAkEHgBjBB4AbAQ7/6IB7wAaBB4AbAPCAAkDnwAJBBYADwHvABoB7wAaA7n/8wQ8AAkEKwB2BHb/mgQ/AAkDnwAJA8IACQS8AAsF1wAJBLcACQSZADsEswAJBEkACQReADkEHgBjBDv/ogQlAA4EtwAJBF4AOQQeAGwF0gA7BLwACwQrAHYFewBBBagAGgYV/34Emf/bBBYADwXaAIsF2gCLBdoAiwQeAGwFJf+jBC8AHARjACYEKAA6BHb/mgPCAAkCB//jAAAAAgAAAAMAAAAUAAMAAQAAABQABAZuAAAA9ACAAAYAdAAAAAIADQB+AKAArACtAL8AxgDPAOYA7wD+AQ8BEQElAScBMAFTAV8BZwF+AX8BjwGSAaEBsAHwAf8CGwI3AlkCvALHAskC3QLzAwEDAwMJAw8DIwOKA4wDkgOhA7ADuQPJA84D0gPWBCUELwRFBE8EYgRvBHkEhgSfBKkEsQS6BM4E1wThBPUFAQUQBRMeAR4/HoUe8R7zHvkfTSAJIAsgESAVIB4gIiAnIDAgMyA6IDwgRCB0IH8gpCCqIKwgsSC6IL0hBSETIRYhIiEmIS4hXiICIgYiDyISIhoiHiIrIkgiYCJlJcruAvbD+wT+///9//8AAAAAAAIADQAgAKAAoQCtAK4AwADHANAA5wDwAP8BEAESASYBKAExAVQBYAFoAX8BjwGSAaABrwHwAfoCGAI3AlkCvALGAskC2ALzAwADAwMJAw8DIwOEA4wDjgOTA6MDsQO6A8oD0QPWBAAEJgQwBEYEUARjBHAEegSIBKAEqgSyBLsEzwTYBOIE9gUCBREeAB4+HoAeoB7yHvQfTSAAIAogECATIBcgICAlIDAgMiA5IDwgRCB0IH8goyCmIKsgsSC5ILwhBSETIRYhIiEmIS4hWyICIgYiDyIRIhoiHiIrIkgiYCJkJcruAfbD+wH+///8//8AAQAA//b/5AHp/8IB3f/BAAAB0AAAAcsAAAHHAAABxQAAAcMAAAG7AAABvf8W/wf/Bf74/usB/wAAAAD+Zf5EATT92P3X/cn9tP2o/af9ov2d/YoAAAAPAA4AAAAA/QoAAP/v/P78+wAA/LoAAPyyAAD8pwAA/KEAAPyZAAD8kQAA/zkAAP82AAD8XgAA5fPls+Vk5Y/k+OWN5Y7hcuFz4W8AAOFs4WvhaeFh47rhWeOy4VDhIuEdAADhAgAA4P3g9uD14K7goeCf4JTflOCJ4F3fut6s367frd+m36Pfl99732TfYdv9E8cLBwbLAtMB1wABAAAAAAAAAAAAAAAAAAAAAADkAAAA7gAAARgAAAEyAAABMgAAATIAAAF0AAAAAAAAAAAAAAAAAAABdAF+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAWwAAAAAAXQBkAAAAagAAAAAAAABwAAAAggAAAIwAAACUgAAAmIAAAKOAAACmgAAAr4AAALOAAAC4gAAAAAAAAAAAAAAAAAAAAAAAAAAAtIAAAAAAAAAAAAAAAAAAAAAAAAAAALCAAACwgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKQApECkgKTApQClQCBAowCoAKhAqICowKkAqUAggCDAqYCpwKoAqkCqgCEAIUCqwKsAq0CrgKvArAAhgCHArsCvAK9Ar4CvwLAAIgAiQLBAsICwwLEAsUAigKLAIsAjAKNAI0C9AL1AvYC9wL4AvkAjgL6AvsC/AL9Av4C/wMAAwEAjwCQAwIDAwMEAwUDBgMHAwgAkQCSAwkDCgMLAwwDDQMOAJMAlAMdAx4DIQMiAyMDJAKOAo8ClgKxAzwDPQM+Az8DGwMcAx8DIACuAK8DlwCwA5gDmQOaALEAsgOhA6IDowCzA6QDpQC0A6YDpwC1A6gAtgOpALcDqgOrALgDrAC5ALoDrQOuA68DsAOxA7IDswO0AMQDtgO3AMUDtQDGAMcAyADJAMoAywDMA7gAzQDOA/UDvgDSA78A0wPAA8EDwgPDANQA1QDWA8UD9gPGANcDxwDYA8gDyQDZA8oA2gDbANwDywPEAN0DzAPNA84DzwPQA9ED0gDeAN8D0wPUAOoA6wDsAO0D1QDuAO8A8APWAPEA8gDzAPQD1wD1A9gD2QD2A9oA9wPbA/cD3AECA90BAwPeA98D4APhAQQBBQEGA+ID+APjAQcBCAEJBJID+QP6ARcBGAEZARoD+wP8A/4D/QEoASkBKgErBJEBLAEtAS4BLwEwBJMElAExATIBMwE0A/8EAAE1ATYBNwE4BJUElgQBBAIEiASJBAMEBASXBJgEkAFMAU0EjgSPBAUEBgQHAU4BTwFQAVEBUgFTAVQBVQSKBIsBVgFXAVgEEgQRBBMEFAQVBBYEFwFZAVoEjASNBCwELQFbAVwBXQFeBJkEmgFfBC4EmwFvAXABgQGCBJ0EnAGnBIcBrQAAQEqZmJeWh4aFhIOCgYB/fn18e3p5eHd2dXRzcnFwb25tbGtqaWhnZmVkY2JhYF9eXVxbWllYV1ZVVFNRUE9OTUxLSklIR0YoHxAKCSwBsQsKQyNDZQotLACxCgtDI0MLLSwBsAZDsAdDZQotLLBPKyCwQFFYIUtSWEVEGyEhWRsjIbBAsAQlRbAEJUVhZIpjUlhFRBshIVlZLSwAsAdDsAZDCy0sS1MjS1FaWCBFimBEGyEhWS0sS1RYIEWKYEQbISFZLSxLUyNLUVpYOBshIVktLEtUWDgbISFZLSywAkNUWLBGKxshISEhWS0ssAJDVFiwRysbISEhWS0ssAJDVFiwSCsbISEhIVktLLACQ1RYsEkrGyEhIVktLCMgsABQiopksQADJVRYsEAbsQEDJVRYsAVDi1mwTytZI7BiKyMhI1hlWS0ssQgADCFUYEMtLLEMAAwhVGBDLSwBIEewAkMguBAAYrgQAGNXI7gBAGK4EABjV1pYsCBgZllILSyxAAIlsAIlsAIlU7gANSN4sAIlsAIlYLAgYyAgsAYlI2JQWIohsAFgIxsgILAGJSNiUlgjIbABYRuKISMhIFlZuP/BHGCwIGMjIS0ssQIAQrEjAYhRsUABiFNaWLgQALAgiFRYsgIBAkNgQlmxJAGIUVi4IACwQIhUWLICAgJDYEKxJAGIVFiyAiACQ2BCAEsBS1JYsgIIAkNgQlkbuEAAsICIVFiyAgQCQ2BCWbhAALCAY7gBAIhUWLICCAJDYEJZuUAAAQBjuAIAiFRYsgIQAkNgQlmxJgGIUVi5QAACAGO4BACIVFiyAkACQ2BCWblAAAQAY7gIAIhUWLICgAJDYEJZsSgBiFFYuUAACABjuBAAiFRYuQACAQCwAkNgQllZWVlZWVmxAAJDVFhACgVACEAJQAwCDQIbsQECQ1RYsgVACLoBAAAJAQCzDAENARuxgAJDUliyBUAIuAGAsQlAG7gBALACQ1JYsgVACLoBgAAJAUAbuAGAsAJDUliyBUAIuAIAsQlAG7IFQAi6AQAACQEAWVlZuEAAsICIVblAAAIAY7gEAIhVWlizDAANARuzDAANAVlZWUJCQkJCLSxFsQJOKyOwTysgsEBRWCFLUViwAiVFsQFOK2BZGyNLUViwAyVFIGSKY7BAU1ixAk4rYBshWRshWVlELSwgsABQIFgjZRsjWbEUFIpwRbBPKyOxYQYmYCuKWLAFQ4tZI1hlWSMQOi0ssAMlSWMjRmCwTysjsAQlsAQlSbADJWNWIGCwYmArsAMlIBBGikZgsCBjYTotLLAAFrECAyWxAQQlAT4APrEBAgYMsAojZUKwCyNCsQIDJbEBBCUBPwA/sQECBgywBiNlQrAHI0KwARaxAAJDVFhFI0UgGGmKYyNiICCwQFBYZxtmWWGwIGOwQCNhsAQjQhuxBABCISFZGAEtLCBFsQBOK0QtLEtRsUBPK1BbWCBFsQFOKyCKikQgsUAEJmFjYbEBTitEIRsjIYpFsQFOKyCKI0REWS0sS1GxQE8rUFtYRSCKsEBhY2AbIyFFWbEBTitELSwjRSCKRSNhIGSwQFGwBCUgsABTI7BAUVpasUBPK1RaWIoMZCNkI1NYsUBAimEgY2EbIGNZG4pZY7ECTitgRC0sAS0sAC0sBbELCkMjQ2UKLSyxCgtDI0MLAi0ssAIlY2awAiW4IABiYCNiLSywAiVjsCBgZrACJbggAGJgI2ItLLACJWNnsAIluCAAYmAjYi0ssAIlY2awIGCwAiW4IABiYCNiLSwjSrECTistLCNKsQFOKy0sI4pKI0VksAIlZLACJWFksANDUlghIGRZsQJOKyOwAFBYZVktLCOKSiNFZLACJWSwAiVhZLADQ1JYISBkWbEBTisjsABQWGVZLSwgsAMlSrECTiuKEDstLCCwAyVKsQFOK4oQOy0ssAMlsAMlirBnK4oQOy0ssAMlsAMlirBoK4oQOy0ssAMlRrADJUZgsAQlLrAEJbAEJbAEJiCwAFBYIbBqG7BsWSuwAyVGsAMlRmBhsIBiIIogECM6IyAQIzotLLADJUewAyVHYLAFJUewgGNhsAIlsAYlSWMjsAUlSrCAYyBYYhshWbAEJkZgikaKRmCwIGNhLSywBCawBCWwBCWwBCawbisgiiAQIzojIBAjOi0sIyCwAVRYIbACJbECTiuwgFAgYFkgYGAgsAFRWCEhGyCwBVFYISBmYbBAI2GxAAMlULADJbADJVBaWCCwAyVhilNYIbAAWRshWRuwB1RYIGZhZSMhGyEhsABZWVmxAk4rLSywAiWwBCVKsABTWLAAG4qKI4qwAVmwBCVGIGZhILAFJrAGJkmwBSawBSawcCsjYWWwIGAgZmGwIGFlLSywAiVGIIogsABQWCGxAk4rG0UjIVlhZbACJRA7LSywBCYguAIAYiC4AgBjiiNhILBdYCuwBSURihKKIDmKWLkAXRAAsAQmY1ZgKyMhIBAgRiCxAk4rI2EbIyEgiiAQSbECTitZOy0suQBdEACwCSVjVmArsAUlsAUlsAUmsG0rsV0HJWArsAUlsAUlsAUlsAUlsG8ruQBdEACwCCZjVmArILAAUliwUCuwBSWwBSWwByWwByWwBSWwcSuwAhc4sABSsAIlsAFSWliwBCWwBiVJsAMlsAUlSWAgsEBSWCEbsABSWCCwAlRYsAQlsAQlsAclsAclSbACFzgbsAQlsAQlsAQlsAYlSbACFzhZWVlZWSEhISEhLSy5AF0QALALJWNWYCuwByWwByWwBiWwBiWwDCWwDCWwCSWwCCWwbiuwBBc4sAclsAclsAcmsG0rsAQlsAQlsAQmsG0rsFArsAYlsAYlsAMlsHErsAUlsAUlsAMlsAIXOCCwBiWwBiWwBSWwcStgsAYlsAYlsAQlZbACFziwAiWwAiVgILBAU1ghsEBhI7BAYSMbuP/AUFiwQGAjsEBgI1lZsAglsAglsAQmsAIXOLAFJbAFJYqwAhc4ILAAUliwBiWwCCVJsAMlsAUlSWAgsEBSWCEbsABSWLAGJbAGJbAGJbAGJbALJbALJUmwBBc4sAYlsAYlsAYlsAYlsAolsAolsAclsHErsAQXOLAEJbAEJbAFJbAHJbAFJbBxK7ACFzgbsAQlsAQluP/AsAIXOFlZWSEhISEhISEhLSywBCWwAyWHsAMlsAMliiCwAFBYIbBlG7BoWStksAQlsAQlBrAEJbAEJUkgIGOwAyUgY1GxAAMlVFtYISEjIQcbIGOwAiUgY2EgsFMrimOwBSWwBSWHsAQlsAQmSrAAUFhlWbAEJiABRiMARrAFJiABRiMARrAAFgCwACNIAbAAI0gAILABI0iwAiNIASCwASNIsAIjSCOyAgABCCM4sgIAAQkjOLECAQewARZZLSwjEA0MimMjimNgZLlAAAQAY1BYsAA4GzxZLSywBiWwCSWwCSWwByawdisjsABUWAUbBFmwBCWwBiawdyuwBSWwBSawBSWwBSawdiuwAFRYBRsEWbB3Ky0ssAclsAolsAolsAgmsHYrirAAVFgFGwRZsAUlsAcmsHcrsAYlsAYmsAYlsAYmsHYrCLB3Ky0ssAclsAolsAolsAgmsHYriooIsAQlsAYmsHcrsAUlsAUmsAUlsAUmsHYrsABUWAUbBFmwdystLLAIJbALJbALJbAJJrB2K7AEJrAEJgiwBSWwByawdyuwBiWwBiawBiWwBiawdisIsHcrLSwDsAMlsAMlSrAEJbADJUoCsAUlsAUmSrAFJrAFJkqwBCZjiopjYS0ssV0OJWArsAwmEbAFJhKwCiU5sAclObAKJbAKJbAJJbB8K7AAULALJbAIJbAKJbB8K7AAUFRYsAclsAslh7AEJbAEJQuwCiUQsAklwbACJbACJQuwByUQsAYlwRuwByWwCyWwCyW4//+wdiuwBCWwBCULsAclsAolsHcrsAolsAglsAgluP//sHYrsAIlsAIlC7AKJbAHJbB3K1mwCiVGsAolRmCwCCVGsAglRmCwBiWwBiULsAwlsAwlsAwmILAAUFghsGobsGxZK7AEJbAEJQuwCSWwCSWwCSYgsABQWCGwahuwbFkrI7AKJUawCiVGYGGwIGMjsAglRrAIJUZgYbAgY7EBDCVUWAQbBVmwCiYgELADJTqwBiawBiYLsAcmIBCKOrEBByZUWAQbBVmwBSYgELACJTqKigsjIBAjOi0sI7ABVFi5AABAABu4QACwAFmKsAFUWLkAAEAAG7hAALAAWbB9Ky0siooIDYqwAVRYuQAAQAAbuEAAsABZsH0rLSwIsAFUWLkAAEAAG7hAALAAWQ2wfSstLLAEJrAEJggNsAQmsAQmCA2wfSstLCABRiMARrAKQ7ALQ4pjI2JhLSywCSuwBiUusAUlfcWwBiWwBSWwBCUgsABQWCGwahuwbFkrsAUlsAQlsAMlILAAUFghsGobsGxZKxiwCCWwByWwBiWwCiWwbyuwBiWwBSWwBCYgsABQWCGwZhuwaFkrsAUlsAQlsAQmILAAUFghsGYbsGhZK1RYfbAEJRCwAyXFsAIlELABJcWwBSYhsAUmIRuwBiawBCWwAyWwCCawbytZsQACQ1RYfbACJbCCK7AFJbCCKyAgaWGwBEMBI2GwYGAgaWGwIGEgsAgmsAgmirACFziKimEgaWFhsAIXOBshISEhWRgtLEtSsQECQ1NaWCMQIAE8ADwbISFZLSwjsAIlsAIlU1ggsAQlWDwbOVmwAWC4/+kcWSEhIS0ssAIlR7ACJUdUiiAgEBGwAWCKIBKwAWGwhSstLLAEJUewAiVHVCMgErABYSMgsAYmICAQEbABYLAGJrCFK4qKsIUrLSywAkNUWAwCiktTsAQmS1FaWAo4GwohIVkbISEhIVktLLCYK1gMAopLU7AEJktRWlgKOBsKISFZGyEhISFZLSwgsAJDVLABI7gAaCN4IbEAAkO4AF4jeSGwAkMjsCAgXFghISGwALgATRxZioogiiCKI7gQAGNWWLgQAGNWWCEhIbABuAAwHFkbIVmwgGIgXFghISGwALgAHRxZI7CAYiBcWCEhIbAAuAAMHFmKsAFhuP+rHCMhLSwgsAJDVLABI7gAgSN4IbEAAkO4AHcjeSGxAAJDirAgIFxYISEhuABnHFmKiiCKIIojuBAAY1ZYuBAAY1ZYsAQmsAFbsAQmsAQmsAQmGyEhISG4ADiwACMcWRshWbAEJiOwgGIgXFiKXIpaIyEjIbgAHhxZirCAYiBcWCEhIyG4AA4cWbAEJrABYbj/kxwjIS0AAED/fjR9VXw+/x97O/8fej3/H3k7QB94PP8fdzw9H3Y1Bx91Ov8fdDpnH3M5Tx9yOf8fcTb/H3A4zR9vOP8fbjdeH203zR9sN/8fazctH2o3GB9pNP8faDL/H2cyzR9mM/8fZTH/H2Qw/x9jMKsfYjBnH2Eu/x9gLoAfXy//H14vkx9dLf8fXCz/H1sr/x9aKs0fWSr/H1gqDR9XKf8fVij/H1UnJB9UJy0fUyVeH1Il/x9RJasfUCb/H08mgB9OJP8fTSMrH0wjqx9LI/8fSiNWH0kjKx9IIv8fRyD/H0Ygch9FIf8fRCFyH0Mf/x9CHpMfQR7/H0Ad/x8/HP8fPTuTQOofPDs0Hzo1Dh85NnIfODZPHzc2Ih82NZMfMzJAHzEwch8vLkofKypAHycZBB8mJSgfJTMbGVwkGhIfIwUaGVwiGf8fISA9HyA4GBZcHxgtHx4X/x8dFv8fHBYHHxszGRxbGDQWHFsaMxkcWxc0FhxbFRk+FqZaEzESVRExEFUSWRBZDTQMVQU0BFUMWQRZHwRfBAIPBH8E7wQDD14OVQs0ClUHNAZVATEAVQ5ZClkGWX8GAS8GTwZvBgM/Bl8GfwYDAFkvAAEvAG8A7wADCTQIVQM0AlUIWQJZHwJfAgIPAn8C7wIDA0BABQG4AZCwVCtLuAf/UkuwCVBbsAGIsCVTsAGIsEBRWrAGiLAAVVpbWLEBAY5ZhY2NAB1CS7CQU1iyAwAAHUJZsQICQ1FYsQQDjllzdAArACsrK3N0ACtzdHUAKwArACsrKysrc3QAKwArKysAKwArKysBKwErASsBKwErASsrACsrASsrASsAKwArASsrKysrASsrACsrKysrKysBKysAKysrKysrKwErACsrKysrKysrKysrKysBKysAKysrKysrKysrKwErKysrKysrACsrKysrKysrKysrKysrKysrKysrKxgAAAYAABUFsAAUBbAAFAQ6ABQAAP/sAAD/7AAA/+z+YP/1BbAAFQAA/+sAAAC9AMAAnQCdALoAlwCXACcAwACdAIYAvACrALoAmgDTALMAmQHgAJYAugCaAKkBCwCCAK4AoACMAJUAuQCpABcAkwCaAHsAiwChAN4AoACMAJ0AtgAnAMAAnQCkAIYAogCrALYAvwC6AIIAjgCaAKIAsgDTAJEAmQCtALMAvgHJAf0AlgC6AEcAmACdAKkBCwCCAJkAnwCpALAAgQCFAIsAlACpALUAugAXAFAAYwB4AH0AgwCLAJAAmACiAK4A1ADeASYAewCJAJMAnQClALQEjQAQAAAAAAAyADIAMgAyADIAXAB+ALUBNAHDAj8CVQKGArcC5AMDAx8DMQNPA2MDuQPTBBcEiQS2BQcFaQWHBgEGYgZuBnoGoQa+BuUHPQfvCCYIjQjYCR0JUgl+CdIJ/QoSCkEKdgqXCssK8AtCC3sL2gwiDIkMqQzbDQINQw1xDZYNxg3iDfYOEg43DkgOXA7NDycPcw/NECIQVRDGEQMRLRFqEZ8RtRIZElcSpBL/E1oTkBPuFCIUXhSDFMYU8xUvFV0VqhW+Fg0WUBZ2FtgXJxeNF9cX8xiQGMMZSBmmGbIZ0Rp5GosawhrqGyYbjBugG+QcBRwhHE0cZhyrHLccyBzZHOodQR2SHbAeEh5QHrUfYR/IIAUgYCC8ISAhVSFqIZ0hyiHsIiwifyL0I4sjsyQHJFskxyUnJWwlvCXkJjYmVyZ3Jn8mpSbCJvMnICdgJ38nryfDJ9gn4SgPKCwoSShdKJ0opSi+KO4pUSl3KaEpwCn4KlQqmCsBK3Ur4SwPLIIs8y1HLYUt6C4QLmQu3S8aL3AvwDAbME8wjTDlMSoxmzIFMl4y2zMqM4Iz5TQ0NHg0nzToNT81izX+NiI2XTaaNvQ3IDdaN4I3tjf5OD44eDjQOTo5fjn1OmE6ejrCOxI7gTulO9g8EzxEPG88mDy2PVc9gj27PeI+Fj5aPp4+2D8uP5U/20A9QJJA80FDQYlBsEIOQm1CskMVQ3dDs0PsREFEkkT7RWFF30ZdRuZHa0fYSC5IZEicSQxJc0oqSt9LUUvETA9MV0yFTKNM1EzqTP9Ntk4KTiZOQk6ETsxPN09bT39Pv0/9UBBQI1AvUEJQg1DCUP5ROlFNUWBRlVHKUg5SXFLTU0ZTWVNsU6JT2FPrU/5UR1SPVMlVM1WbVehWMlZFVlhWk1bQVuNW9lcJVxxXcFfBWBJYIVgxWD1YSViAWN1ZWlnYWlRay1tAW6FcBFxTXKZc911HXYxd0V5FXlFeXV6JXoleiV6JXoleiV6JXoleiV6JXoleiV6JXolekV6ZXqtevV7aXvZfEl8uX0lfVV9hX5BfsV/fX/9gC2AbYDhhAGEkYURhW2FkYW1hdmF/YYhhkWGaYdNh3GHlYe5h92IAYgliEmIbYiRiLWKFYsBjIWMtY4Zj1GQuZH9k1GUaZVtlnGYnZnlm42chZ29nhWeWZ6xnwmgvaExog2iVaMFpW2mYafdqJmpaao5qwWrOauxrCGsUa1BrkGvzbF1swW13bXdulG7abxRvOW98b9VwUHBscMVxDXE2caNx4XH6ckdydXKmctJzE3M2c2ZzhHPmdCl0hnS9dQp1LHVedXt1rHXYdet2FXZkdpB3C3dbd5t3uHfoeEB4YniLeLF46nk9eYR57Xo6eo166Xs0e3Z7qXvqfDR8hnz0fSB9U32Nfch9/X40fmZ+qH7nfvN/KH97f9+ALIBXgLSA8oExgWyB4IHsgiaCZIKpgt+DP4OQg9+EQYSdhPWFYoWlhgGGKoZshr6G2YdEh5aHqIfliBiIxYkliYOJt4nqihuKUIqRitmLQItwi42Lu4v6jB+MRYyFjM6M+o0pjXqNg42MjZWNno2njbCNuY4Ijl+OoY71j1iPd4+6kACQKpB3kJOQ6ZD7kXWR2ZH+kgaSDpIWkh6SJpIukjaSPpJGkk6SVpJekmaSeJKAkumTNZNTk62T+JRSlMOVEJVrlcaWF5aHltaW3pdSl3+X0JgJmGWYmJjcmNyY5Jk1mYaZzJn0mjWaSJpbmm6agZqVmqmav5rSmuWa+JsLmx+bMptFm1ibbJt/m5KbpZu4m8ub35vynAWcGJwsnD+cUpxlnHeciZycnLCcxpzZnOyc/50RnSSdNp1InVudb52BnZSdp525ncud3p3xngSeFp4pnjyeT55innSeh56anvOfhZ+Yn6ufvp/Qn+Of9qAJoBugLqBBoFSgZqB5oIugnqCxoQyhhKGXoamhvKHOoeGh86IGohmiLaJAolOiZqJ5ooyin6KyosWi2KLqovyjD6MboyejOqNNo2GjdaOIo5ujr6PDo9aj6aP1pAGkFKQnpDukT6RipHSkh6SapKykv6TSpOak+qUNpSClNKVIpVulbaWApZOlpqW4pcul3qXypgamGaYrpj+mU6ZmpnmmjKagprOmxabYpuqm/acQpySnOKdMp2Cnt6gZqCyoP6hSqGSoeKiLqJ6osajEqNeo6aj8qQ+pIqk1qUGpTalYqWupfqmQqaKptqnKqdap4qn1qgiqGqotqj+qUapkqniqi6qeqrGqw6rWquqq/asQqyKrNqtJq1urbqvBq9Sr5qv5rAusHawvrEGsVKyrrL2sz6zirPWtCa0brS6tQa1UrV+tca2ErZCtoq22rcKtzq3hre2uAK4SriWuOa5Mrliuaq59ro+um66trsGu067frvGvA68WryqvPq+Ur6evua/Mr9+v8rAEsBewK7A3sEuwX7BysIawm7CjsKuws7C7sMOwy7DTsNuw47DrsPOw+7EDsQuxH7EzsUaxWbFssX6xkrGasaKxqrGysbqxzrHhsfSyB7Iasi6yQbKmsq6ywrLKstKy5bL4swCzCLMQsxizK7MzszuzQ7NLs1OzW7Njs2uzc7N7s46zlrOes+ez77P3tAq0HbQltC20QbRJtFy0brSBtJS0p7S6tM604rT1tQe1D7UXtSO1NrU+tVG1ZLV5tY61obW0tce12rXiteq1/rYSth62KrY9tlC2Y7Z2tn62hraOtqG2tLa8ts+24rb2twm3EbcZtyy3PrdSt1q3bbeBt5W3qbe8t8+34bf1uAm4HbgwuDi4QLhUuGe4e7iOuKG4s7jHuNq47rkCuRa5Kbk9uVG5WbltuYG5lLmnubu5zrniufW6CbocujC6Q7pguny6kLqjure6yrreuvG7BbsYuzW7Urtmu3q7jbugu7O7xbvZu+y8ALwTvCe8OrxOvGG8fryavK28wLzUvOi8/L0QvSO9Nr1KvV29cb2EvZi9q72/vdK9774Lvh6+Mb5Evle+ar59vpC+or62vsq+3r7yvwW/GL8rvz6/Ub9kv3e/ir+dv6+/w7/Xv+u//8ASwCXAOMBKwGfAesCNwKDAs8DGwNnA7MD/wQfBSsGMwbHB1sIXwlrCisK/wvfDLsM2w0rDUsNaw2LDasNyw3rDgsOKw5LDpcO4w8vD3sPyxAbEGsQuxELEVsRqxH7EksSmxLrEzsTaxO7FAsUWxSrFPsVSxWbFesWNxaDFtMXIxdzF8MYExhjGLMZAxlTGZ8Z6xo7Gosa2xsrG3sbyxwbHGccrxz/HU8dnx3vHj8ejx7fHw8fPx9vH58fzx//IC8gTyBvII8gryDPIO8hDyEvIU8hbyGPIa8hzyHvIj8iiyLXIyMjQyNjI7Mj0yQfJGskiySrJMsk6yU3JVcldyWXJbcl1yX3JhcmNygnKPcqQypjKpMq3ysnK0crdyvDLA8sPyyLLNctJy1XLaMt7y47Locuty7nLzQAGAGQAAAMoBbAAAwAHAAsADwATABcAAEEVITUzESMRIREjERMVITUBASMBEQEzAQMJ/XYbNgLENhf9dgKK/a86AlH9rzoCUQWwNjb6UAWw+lAFsPqGNjYFXPqMBXT6jAV0+owAAgAz//ACHAWwAAMADwATQAkCAgcNC3IAAnIAKyvdzi8wMUEDIxMDNDY3NhYXFAYjBiYCHMnLm/BOOThNAU45OE0FsPv9BAP6vjtLAQFHOTlMAUYAAgCdA/gCvAYAAAUACwAMswkDCwUALzPNMjAxQQcDIxM3IQcDIxM3AZkXW4o7FwHNF1yJPBYGAJX+jQF0lJX+jQF8jAAEADIAAATcBbAAAwAHAAsADwAjQBEEAAUNDg4ACgkJAAICcgAScgArKxE5LzMROS8zMhEzMDFzATMBMwEzAQEhNyEDITchggIApv3/1QIBpP4AAh/8DhsD87f8DRsD8wWw+lAFsPpQA3Wb/YqbAAMAQf8sBEkGmQADAAcAPQA2QBwEBzo6CCsQIwQULzU1Bi8NcgECHx8UGhoDFAVyACvNMy8RMxI5OSvNMy8REhc5MxI5OTAxQQMjEwMDIxMBNiYmJy4CNz4CFx4DByM2LgInJgYGBwYWFhceAgcOAicuAzczBh4CFxY2NgNIMJcweyqWKwFaCDFbNWWnXQgIiNV9aJZfKQXqAgoiRThBYz0HCDFdNmSlXQgKkN+BaaFsNAXsAxEtUDpDcEkGmf7VASv5n/70AQwBSkFaPxYrcKR7gbliAwJKgKpgLV9RMwECNWA/Q1g9GCtypHmIuFwCAkR8qWY0YEsrAQExXwAABQC1/+gFOAXIABEAIwA1AEcASwAjQBFJMksFO0QpMhcOIAUFcjINcgArKzLEMhDEMjMRMxEzMDFTNz4CFx4CBwcOAicuAjcHBhYWFxY2Njc3NiYmJyYGBgE3PgIXHgIHBw4CJy4CNwcGFhYXFjY2Nzc2JiYnJgYGAQEnAboGCVmOW1d8PwYGCViOWlZ9QLIJAxMyLC1DKAcKAxIyLC5EKQFpBghajlpXfD8FBglXj1pWfUCyCAISMisvQygGCgISMiwuRCkBWPyRdwNwBEtMWItOAgJQiFRNWIlNAgJPh6FQJUYuAQEsSSlOJkgvAQEtSfxVTViKTgICUIdUTliJTgICUIeiUSVGLwECLEoqTyZILgEBLEkDSfuYTgRnAAEAKf/qBJ4FxwBCACRAFCMSAA8iAQYaMDArERE7E3IHGgNyACsyKzIvMjIvERc5MDFBJTY2NzYmJyIGBgcGFhYXASEBLgI3PgIXHgIHDgIHBQ4CBwYWFhcWPgI3Mw4CBwYGBwYGJy4CNz4CAXwBEDZUBwZGOTNMMAYHJj4cAh3/AP5GLFY3Bghts3JZk1QFBEFlOf6zJEIuBggqWkBorYNRDckKPm5OCREKVuF0dsBsCAdmkwMZqSNZQzpLATNSLzZoXyr81AKVQI2ZUnCsXgMCT4xdSndgJ94aRFAuP2I6AwNbm7xcaLujRQgTCUxQAgNhs31hlXMAAQCRA/4BlQYAAAUACLEDBQAvxjAxQQcDIxM3AZUXUps9FAYAi/6JAYGBAAABAGj+MQMXBl8AFwAIsQYTAC8vMDFTNzYSEjY3Fw4DBwcGBhYWFwcmJgICeQMVX5rajyRqm2xDEwMPDhlYWDd8k0QHAjsRkgE4ASDoQY1Pzev8fhVm+v3fTINM9AEhASgAAAH/lP4wAksGXQAXAAixEwYALy8wMUEHBgICBgcnPgM3NzY2JiYnNxYWEhICOgIVYZzdkSRpm21DEwQODhtXVzl7lUcJAlURk/7I/t7mQYdQzu3+fhZk+f7gS4NM8v7e/tkAAQBoAk4DqgWxAA4AFEAKDQEHBAQODAYCcgArxDIXOTAxUxMlNwUTMwMlFwUTBwMDjPn+404BGy+rTAE0F/68m5GB4ALFAQ5ZnXgBYP6lcq9b/u9fASP+6QAAAgA8AJIEKwS2AAMABwAQtQcHAwMGAgAvxjMQxi8wMUEHITcBAyMTBCsl/DYmAp645LgDHtnZAZj73AQkAAAB/4/+uAEVAOgACgAIsQQAAC/NMDFlBwYGByc+Ajc3ARUdEn5dfCE8LQsg6Kt1yUdNMF5mOrUAAAEAQAIOAmUCzgADAAixAwIALzMwMUEHITcCZSL9/SECzsDAAAEALv/yAUIA/wALAAqzAwkLcgArMjAxdyY2NzYWFRYGBwYmLwFQOjpPAVA7OFB0O04BAUk6O00BAUgAAAH/fv+DA3kFsAADAAmyAAIBAC8/MDFBASMBA3n8x8IDOQWw+dMGLQACAF//6AQ4BcgAFwAvABNACSsGHxIFcgYNcgArKzIRMzAxQQcOAycuBDc3PgMXHgQBEzY2LgInJg4CBwMGBh4CFxY+AgQtJRJKgcSLao9YKAQLIxJMgcSJapFXKQT+4S4FCQchRjtSbEMjCi0FCQYgRjxSbUEkA1Ltd+S3awQCTIChslfud+K1aAQCSn2gsf6YATYqaGhZOQIES3uOQP7LKWlsWzsDA0x+kQAAAQDxAAADeQW1AAYADLUGBHIBDHIAKyswMUEDIxMFNyUDeffrzP6OJQJBBbX6SwSSedHLAAEADQAABDwFxwAfABlADBAQDBUFcgMfHwIMcgArMhEzKzIyLzAxZQchNwE+Ajc2JiYnJgYGBwc+AhceAgcOAwcBA98e/EwbAhIzcVcLByBRQlF1RQrpC5Hnine8ZgsHSGt6Of6VwMCuAf0xdoZLPGZAAQNKfksBi9N0AgJcsH1Ulod4Nv6lAAACACb/6gQ4BccAHAA7ACpAFhscHh8EAAAdHRIzLy8pDXINDQkSBXIAKzIyLysyLzIROS8zEhc5MDFBFz4CNzYmJicmBgYHBz4CFx4CBw4DIycHNxceAwcOAycuAzczBhYWFxY2Njc2JiYnAaKCSntQCAckVEFCaUQL6wqQ2Xl6wGgJBluNplG+CBaiVZt3PwYHW5K3Y12cczwC6gMvXENKeEsICTBlSQNFAgI1aExAYDcCATRfPwF+tV8CAmC1gFyJXC8BNoQBAixXiWBopHA4AgI6aphfQWI4AgI8bktLZjYCAAACAA0AAAQrBbAABwALAB1ADgMHBwYCAgUJDHILBQRyACsyKxI5LzkzEjkwMUEHITcBMwkCAyMTBCsi/AQUAwLL/vH+QgL7/Ov8AgfAnQPM/pD9yAOo+lAFsAABAFj/6ARzBbAAKQAdQA4nCQkCHRkZEw1yBQIEcgArMisyLzIROS8zMDFBJxMhByEDNjYzMh4CBw4DJy4DJzMeAhcWPgI3Ni4CJyYGAXjAvgL9IP3KZzJzO2aTWiMICVKJuW5cl24+AuUEKlZDQmJFJgYFEC9SPEBpAqYxAtnM/poeHVCHrF1stoZJAwE+b5dbPmQ8AgE0WXA6NWRQLwIBLAABAF3/6QQOBboANgAbQA0OLBgiIiwDAARyLA1yACsrMhE5LzMRMzAxQTMHIyYOAgcHBh4CFxY+Ajc2LgInJgYGByc+AxceAwcOAycuAzc3NhI2JAOpIxQMdsKTXhEfBgUkTkM/YkUoBgULKUs7R3hUEFcPTHOXW2OKVSAICVOIt21zpGQmDA0Yfc0BGwW6xQFKir1x5jN4bUgCAjVbbjcwZ1g3AgFBbkIfVZNuPAMCVIqpV2m4jU4DAmSkyGdkqQEn4X8AAQCGAAAEmwWwAAYAE0AJAQUFBgRyAwxyACsrMhEzMDFBBwEhASE3BJsW/QP+/gL5/SofBbCQ+uAE8MAABAA3/+kEQgXHABAAIAAwAEAAIUAQDT09JS0VFQQ1LQVyHQQNcgArMisyEjkvEjkzEjkwMUEOAicuAjc+AxceAgc2JiYnJgYGBwYWFhcWNjYBDgInLgI3PgIXHgIHNiYmJyYGBgcGFhYXFjY2A+IKk+WDecJrCQdckrJdcsNx8QcnV0NKdUoIBydYREp0SQFJCI/Wc2q2agcIh9Z9dbRg9QUgSzxCZjwHBh5MPUJlPgGVisBiAwJhtYFjm2k1AgJer24/aUIBAkN1RkFnPQECP3EC4HquWwMCWaNygrthAwJgsIE3YD0BAT5qPzdhPQEBP2sAAAEAjP/2BCwFxwA4ABtADQA4FiEhOAwrBXI4DHIAKysyETkvMxEzMDF3MxY+Ajc3Ni4CJyYOAgcGHgIXFj4CNxcOAycuAzc+AxceAwcHDgQHI+EPd7yMWBEjBgQiS0M+YUQnBQUKJ0k7OGFMNAtWCUp3l1VkjFUhBwlTh7hueKFaHQsLElWHvPCUG70BQXy0c/wwe3BMAQM6X3I2MGdbOgIBKUpeMxxRl3ZFAgJUiqpYaL2RUQMCa6zOZleJ9cmSUAH//wAn//IB0ARTBCYAEvkAAAcAEgCOA1T///+f/rgBvQRTBCcAEgB7A1QABgAQEAAAAgAzAK0DxwRSAAQACQAWQAwBAwcGAAQIBQgCCQIALy8SFzkwMVMBBwE3JQUHNwHrAmIo/Q4aA0/9X8QcA3QCkf7+4gF0lKb8JqYBcwAAAgBgAWQEGAPSAAMABwAOtQYHEgMCEAA/Mz8zMDFBByE3AQchNwQYI/y0IwMDJPy1IgPSxsb+WMbGAAIALQCiA9cESAAEAAkAFUALBQgEAAYDAQcCCQIALy8SFzkwMUEBNwEHBSU3BwEDFv2TJwMHG/ycAq7NHvx4AmkBAN/+jJWp+yum/owAAAIAk//yA9oFxwAgACwAG0ANAQEkJCoLchERDRYDcgArMjIvKzIRMy8wMUEHPgI3PgI3NiYmJyYGBgcHPgIXHgIHDgIHBgYBNDY3NhYVFgYHBiYCF9YIL1Q/LVpDCQYWQTg6WTkL6w2Bynlyq1kKB12GRD5B/stNOTlNAU46N00BrQJThnI2JlFiPzJVNAIBMFY3AXyuWQIDW6h1X5V7ODF4/nY6TAEBRzk6SgEBRgAAAgAu/joGqQWRAEEAaAAnQBISBQVHUhNyYWRkC11dHR08KTAALzMvMxEzLzMzETMrMjIRMzAxQQ4DJy4DNxMzAwYGFhYXFj4CNzY0LgInJg4DBwYGHgIXFjY3FwYGJy4DAjc2EjY2JBceAxIFBgYWFhcWPgI3Fw4DJy4DNz4EFxYWFwcmJicmDgIGkhBJd6hvRl0zDQqPro4FBgomJklpRioKFDRyuYaH6b2RYBgVATNxuIVYqlAcUMNdoOyeVA4YG3ax6AEZoJzmmlMR+/8GCwotMi5JOSoPQhdEWXJGVWMrAQwOO1l2lVlViENlI1YzUXZQMQIOX8OjYgMCO2F1PQI5/ccbQj0pAgNSg4w3ctq/klQCA1me0e16b9zDmVgBASYjhzMlAQJkr+cBDI+TARr0uGYCAmKs4/779iFcWT8CAjFOVSJXOnJcNgIDV4WWQUuilnhFAgE9MnUkKAICUYOVAAAD/6MAAASrBbAABAAJAA0AKUAUBAcHCg0NBgALDAwCCAMCcgUCCHIAKzIrMhE5LzM5OTMRMzIRMzAxQQEhATMTAzczAQMHITcDKP2F/vYDEKtUzg+fARmyI/z+IwTh+x8FsPpQBPy0+lACHMfHAAIAJv//BLcFsAAZADAAKUAUGSkmAicnASYmDgwPAnIcGxsOCHIAKzIRMysyETkvMzMRMxI5OTAxQSE3BTI2Njc2JiYnJwMjEwUeAwcOAgcDITcFMjY2NzYmJiclNwUXHgIHDgICt/6MHgEtR4BYCwkvYkL42vb9AdFdpn1DBwh4uWbT/j+QAThLgFULCSJYRv7gIgFaKl6HQwYLnPICkrcBLV9NSFYnAQH7GAWwAQIrWpFpcJVPCv0wxwE0aU1EYzcDAbcBRQlZkl+WwFsAAQBf/+gFCgXHACcAFUAKGRUQA3IkAAUJcgArzDMrzDMwMUE3BgYEJy4DNzc+AxceAhcnNCYmJyYOAgcHBhQWFhcWNjYDtvAYrf78nI/CbiMRERRqq+yVmdFwBfMvbF5mlGU6DRIKKWlgZI9dAdkDnOF3BAN4xfJ9eYb6xG8DA3/glAFWhk4DA1SQr1Z8SKaUYQMERoYAAgAmAAAE2QWwABoAHgAbQA0CAQEdDg8PHgJyHQhyACsrMhEzETMRMzAxYSE3BTI2Njc3Ni4CJyU3BR4DBwcOAgQDAyMTAdD+wyUBH5PPexUKCws+fGf+tSMBL5LVhjMQChV8xP7/UP32/ccChuCHUFWpjVcDAcgBA3G/9odOk/26ZwWw+lAFsAAABAAmAAAEvAWwAAMABwALAA8AHUAOCwoKBg8OBwJyAwIGCHIAKzIyKzIyETkvMzAxZQchNwEDIxMBByE3AQchNwPoI/0RIgEh/fb9AtMi/XIjA1Mj/RYkx8fHBOn6UAWw/aDExAJgyMgAAAMAJgAABKkFsAADAAcACwAbQA0HBgYCCgsLAwJyAghyACsrMhEzETkvMzAxQQMjEwEHITcBByE3Ahn99v0CxyP9gSMDPiP9MCQFsPpQBbD9g8fHAn3IyAABAGb/6wUXBccAKwAbQA0rKioFGRUQA3IkBQlyACsyK8wzEjkvMzAxQQMOAicuAzc3PgMXHgIXIy4CJyYOAgcHBh4CFxY2NjcTITcE5lk+udBflMx4KREPE2mr7pqT0HUK7Qc3bFNpl2Y8DQ8KBjV1ZDVmXio1/tohAuj901BbJQECd8b3hGSL/cVwAwJxzpBPdkMDBFiTslhoT6yWXgIBDycjASG7AAADACYAAAWFBbAAAwAHAAsAG0ANCQYIAwICBgcCcgYIcgArKxE5LzMyETMwMUEHITcTAyMTIQMjEwRhI/0QI6j99v0EYv3z/ANQx8cCYPpQBbD6UAWwAAEANwAAAikFsAADAAy1AAJyAQhyACsrMDFBAyMTAin99f0FsPpQBbAAAAEABP/oBF0FsAATABNACRAMDAcJcgICcgArKzIvMjAxQRMzAw4CJy4CNzMGFhYXFjY2Aruu9K4TjeCNhrtdB/YFHVBJTG9DAbQD/PwFitBzAgNrw4ZCakECAkd3AAADACYAAAVyBbAAAwAJAA0AHEAQBgcLBQwIBgIEAwJyCgIIcgArMisyEhc5MDFBAyMTIQEBEwEBAwE3AQIZ/fb9BE/9R/53AQEYAe7J/qC9AbYFsPpQBbD9P/6ZAQwBIwH5+lACvKL8ogAAAgAmAAADwAWwAAMABwAVQAoDAgIGBwJyBghyACsrETMRMzAxZQchNwEDIxMDwCP9OSMBIP32/cfHxwTp+lAFsAAAAwAmAAAGzgWwAAYACwAQABtADQIHDgULCHIMBAAHAnIAKzIyMisyMhE5MDFBMxMBMwEjATMDAyMBMwMjEwGL0dUCWuT86K7+etCFU/UF1tL99VcFsPufBGH6UAWw/Cv+JQWw+lAB8AABACYAAAWGBbAACQAXQAsDCAUJBwJyAgUIcgArMisyEjk5MDFBAyMBAyMTMwETBYb97v43tvb97gHKtwWw+lAEHfvjBbD74QQfAAIAYv/pBSIFxwAVACsAE0AJJwYcEQNyBglyACsrMhEzMDFBBwYCBgYnLgM3NzYSNjYXHgMFNzYuAicmDgIHBwYeAhcWPgIFEgoUa63wmZLIcSYQCxRsrvCYk8dxJP7wCwkCLm1kZ5loPQwLCgMubmJpmGg9AwJPiv7/y3QDA3zM+YBPiQEAy3QDA3vM+NJTS6uZYgQEWZa0V1NKrJplAwRalrQAAQAmAAAE+gWwABcAF0ALAgEBDgwPAnIOCHIAKysyETkvMzAxQSU3BTI2Njc2JiYnJQMjEwUeAgcOAgKs/oIjAWNTi1sLCyxkTP7P2vb9AguH1HEMDaX+Ah4BxwE5clhKcUEDAfsYBbABA23IjZ3NYgAAAwBe/wMFHgXHAAMAGQAvABlADCAVA3IAKysDCglyAgAvKzIyETMrMjAxZQEHAQEHBgIGBicuAzc3NhI2NhceAwU3Ni4CJyYOAgcHBh4CFxY+AgMqAUqr/rwCiQsTa67wmJPIcSUQChRsrvGXk8dyJP7vCwkBLm5jaJhoPgwLCQIubmNomWc8wv7HhgE2AslPiv7+ynQDA3zM+YBQiAEAy3QDA3vL+dJTS6uZYgQEWZa0V1NKrJplAwRalrQAAAIAJgAABNUFsAAYAB0AI0ASGxoJAwwMCwsAHBkYCHIWAAJyACsyKzIyEjkvMxIXOTAxQQUeAgcOAgcHITcFMjY2NzYmJiclAyMhAzcTFQEjAeeF03MMCWWjZ1H+MSEBRFCIWgsKLGRK/vPa9gMt2/XrBbABA168kHSjcCUkxwE7cVJMajkCAfsYAo4B/X8OAAEAJv/qBL0FxgA5AB9ADwomDzYxMSsJchgUFA8DcgArMi8yKzIvMhE5OTAxQTYuAicuAzc+AxceAgcjNiYmJyYGBgcGHgIXHgMHDgMnLgM3FwYeAjMWNjYDUAkoS14uTJR3QgYIZ6C+XoXQdgX0BjFoTUWAWQsILVBcKFGVdD4HCWaevmFnt4pLBPQEIUZlP0SBWwF+O1E3JhEbSmaLXWmbZjECA2zGiExtPQECLV5KNEw0JA4cTWqRYWubYi4CAT53qm0BQGNCIgIqWwAAAgCdAAAFJQWwAAMABwAVQAoAAwMGBwJyAQhyACsrMjIRMzAxQQMjEyEHITcDavz0/QKuI/ubIwWw+lAFsMjIAAEAWP/oBTEFsAAVABNACQERBgsCcgYJcgArKxEzMjAxQTMDDgInLgI3EzMDBhYWFxY2NjcEPPWmF6X/npXaaxKm9KUKJmpbYY9YDgWw/DWd5noDA33hlwPN/DJUh1ICA0uMXAACAJoAAAV/BbAABAAJABdACwAGCAEJAnIDCAhyACsyKzISOTkwMUEBIQEjAxMXIwECQAIpARb9Ir5EuQiy/uwBFQSb+lAFsPtP/wWwAAAEALUAAAc6BbAABQAKAA8AFQAbQA0QDAEKAnITEg4ECQhyACsyMjIyKzIyMjAxQQEzAwEjExMDIwMBATMBIwMTAyMDEwHIAcWWPf4hnTo2HqNkBAEBjPj91qYPZweYdBoBUgRe/tL7fgWw+5T+vAWw+64EUvpQBbD7iP7IBJgBGAAAAf/AAAAFRgWwAAsAGkAOBwQKAQQJAwsCcgYJCHIAKzIrMhIXOTAxQRMBIQEBIQMBIQEBAcnYAX4BJ/3bAT/+8N7+eP7WAjL+yQWw/e8CEf0j/S0CHP3kAuoCxgABAKEAAAVQBbAACAAXQAwEBwEDBgMIAnIGCHIAKysyEhc5MDFBEwEhAQMjEwEBps4BwAEc/Xxb92D+xwWw/UsCtfxc/fQCJQOLAAP/5QAABOsFsAADAAkADQAfQA8EDAwJDQJyBwMDAgIGCHIAKzIRMxEzKzIyETMwMWUHITcBASM3ATMjByE3BCcj/CojBH37w6weBD6qWyP8VyPHx8cEQ/r2qwUFyMgAAAH/8P66ArQGjwAHAA60AwYCBwYALy8zETMwMUEHIwMzByEBArQen/+gHf51ATkGj7r5oLsH1QAAAQCr/4MCxwWwAAMACbIBAgAALz8wMUUBMwEB5v7F4QE7fQYt+dMAAAH/ev66AkAGjwAHAA60BQQAAQQALy8zETMwMVM3IQEhNzMTlh4BjP7H/nMdof4F1br4K7sGYAAAAgBEAtkDMQWwAAQACQAWQAkIBwcGAAUCAwIAP80yOTkzETMwMUEBIwEzEQMnMxMCIP700AGhkWgCgqMEv/4aAtf9KQH+2f0pAAAB/3n/RAMRAAAAAwAIsQIDAC8zMDFhByE3AxEh/IkhvLwAAQDPBNMCWQYAAAMACrIDgAIALxrNMDFBEyMDAcuOtNYGAP7TASwAAAIAHP/pA9EEUAAbADoAKUAVKyweJx46Og8nMQtyGBkKcgkFDwdyACsyMisyKzISOS8zERI5OTAxZRM2JiYnJgYGBwc+AxceAgcDBgYXBwcmNBMHJyIOAgcGFhYXFjY2NxcOAycuAjc+AzMCiFIGGkU4Mlg9CusGWYmfTG6qWQtPCQcTAukPdRicMGVYPAcFH0AsO3NVED8WT2h7QVqUVgUFYZm2WdkCBzRUMQEBI0QxAVV/UycBAlqkdP4eOXc3EgE1bwHvlQESLEs4LUEmAQEwWTpsPWZKKAECT45daY1TJAADABD/6AQRBgAABAAaAC8AGUAOIRYHcisLC3IECnIAAHIAKysrMisyMDFBMwMHIwEHDgMnLgM3Nz4DFx4DBzc2LgInJg4CBwcGFhYXFj4CARvs5TvXA/cCDUN1q3RniU4cBAgRS3ina3CMSRP4AwYBHktGPmRMMg0cAyhcS0tpQyYGAPrZ2QItFWTHpGEDAmKct1hEXb2dXQMDZaC+cBYzeGxFAgMtT2Y3t0N8UQIDQmyCAAABADf/6gPmBFEAJwAZQAwdGRkUB3IEBAAJC3IAKzIyLysyLzIwMWUWNjY3Nw4CJy4DNzc+AxceAgcnNCYmJyYOAgcHBh4CAeA7YkEN3w2Jy3Fzo2QnCgQMU4u+d3iuXAHdJU8/SmlFJwcEBQMiT6sBLlY4AXSsXQICWpjBaCRvxplWAwJqt3UBOGE9AgI+an8+IzV5akQAAAMAOP/oBIcGAAAEABoALwAZQA0hBAQWC3IrCwdyAQByACsrMisyLzIwMWUTMwEjATc+AxceAwcHDgMnLgM3BwYeAhcWNjY3NzYuAicmDgICueHt/vXU/ZkCDUV3rXVmiE0cBQgQTHmna2uMTBb5AgYCH0tET3tSERwDEzBPOEprRSjuBRL6AAIJFWTIpmIDA2Set1dEXLycXAMEZaG7cBU0dmtGAwNOfke3MmJQMwEDQm6CAAEAOv/rA/AEUQArAB9AEGcTAQYTEhIAGQsHciQAC3IAKzIrMhE5LzNfXTAxRS4DNzc+AxceAwcHITcFNzYmJicmDgIHBwYeAhcWNjcXDgIB9m+rcDIIBAtUjcB2cZxcHwsO/NQcAj0ECR9SRUtrRicIBAYSNFxEVYs5dC6HnRQCU4+7ailty59cAwJalbxlZ60BFT9wSAICQnCDPig7dF87AgJLPHtFWisAAgBeAAADWwYZABEAFQAVQAsUFQZyDQYBcgEKcgArKzIrMjAxYSMTPgIXFhYXByYmJyIGBgcXByE3AU7syg5ssHYkSCMXFi0XOVc3Ccgg/ZwgBKJyqVwBAQoIvAUGASxPOGiwsAAAA//5/lEEQgRRABMAKQA+ABtADzAlC3I6GgdyDgYPcgAGcgArKzIrMisyMDFBMwMOAicuAic3FhYXFjY2NxMBNz4DFx4DBwcOAycuAzcHBh4CFxY2Njc3Ni4CJyYOAgNq2LMUk+iQSIx4K3sufE1UglMNjP0WAwxIea91aolLGgUIEEx5p2xrjk4Z+AIGBCJOQ1F9UxEcBBQxUDlLbUkqBDr75Y/QbwQBK1A7jD5IAgJBeFIDOP64FmTJpWACA2KcuFpEXbybXAMDZaC8cBU1dmpFAgRMfkm3M2NQMQEDQm6CAAIADQAAA/IGAAADABoAF0AMEQIWCgdyAwByAgpyACsrKzIRMzAxQQEjARMjPgMXHgMHAyMTNiYmJyYOAgID/vXrAQsfSg1FdqZtWXdEFgl07XYGFERBRmtLLgYA+gAGAPxFXruZWgMCQnGRUf1JAro7XjkBAjhgdgAAAgAgAAACCgXYAAMADwAQtwcNAwZyAgpyACsrzjIwMUEDIxMTJjY3NhYVFgYHBiYBx7zrvCEBTjk3TwFPODdOBDr7xgQ6ARg6SgEBRTk6SAEBQwAAAv8C/kYCAQXYABEAHQATQAkNBg9yFRsABnIAK84yKzIwMVMzAw4CJyYmJzcWFjMyNjY3EyY2NzYWFRQGBwYm1+3IDVubbSNFIhUWKxYvQigH5wFOODhPTjg3TwQ6+2honVcCAQoIvAQIJkQtBbA6SgEBRTk6SAEBQwADABEAAAROBgAAAwAJAA0AHUARBgcLBQwIBgIJBgMAcgoCCnIAKzIrPxIXOTAxQQEjCQMnNwEDATcBAgj+9ewBCwMy/eH+zRzgAWB5/v6oAV0GAPoABgD+Ov36/u/c6gFR+8YCBqD9WgAAAQAgAAACFgYAAAMADLUDAHICCnIAKyswMUEBIwECFv716wEKBgD6AAYAAAADAA8AAAZhBFEABAAbADIAIUARKRICLiIiFwsDBnILB3ICCnIAKysrETMzETMRMzMwMUEDIxMzAyM+AxceAwcDIxM2JiYnJg4CJQc+AxceAwcDIxM2JiYnJg4CAY6T7LzebE4MRXaqcFNxRBYHeOx2BxZFQEdoRSsCjXILR3ekaFh4RRYJdex2BxVEQTpbQSgDUPywBDr+C2O9llYDAj5qh0z9LwK9Ol04AgI4YHcEGV6viU8CAkFwj1H9RAK+O102AQIrS2AAAAIADQAAA/IEUQAEABsAGUANEgIXCwMGcgsHcgIKcgArKysRMxEzMDFBAyMTMwMHPgMXHgMHAyMTNiYmJyYOAgGKkey83W9IDEd2qW9YdUEUCXTtdgYUREBGakwvA0X8uwQ6/gsBYb2XWAMCQnCQT/1FAr46XTcBAjhhdgACADj/6QQeBFEAFQArABC3HBELcicGB3IAKzIrMjAxUzc+AxceAwcHDgMnLgM3BwYeAhcWPgI3NzYuAicmDgJBAwxWj8N4dKdpKgoCDVePw3dzp2kq9gIFCChURkpuSiwHAgYIKFRGS25KKwILF3DKnVgDAlyZw2oXcMibVwMCW5jBgBc3empEAgJAbIE+FzZ7bUUCAkFuggAAA//I/mAEEARRAAQAGgAvABlADiEWB3IrCwtyAwZyAg5yACsrKzIrMjAxQQMjATMBBw4DJy4DNzc+AxceAwc3Ni4CJyYOAgcHBhYWFxY+AgGS3uwBBNkCYQIMRXWqc2WKUiEEChBNeqhtb4xJE/gDBQMgTUQ+ZEwzCx8DK11ISmpGKQNc+wQF2v3zFWLHpWIDAl2Ws1hQX76dXAMDZKC+cBYzeGtGAgMtUGY3xEJ3TAICQm+DAAADADf+YAQ4BFEABAAaAC8AGUAOIRYLcisLB3IEDnIDBnIAKysrMisyMDFBEzczAQE3PgMXHgMHBw4DJy4DNwcGHgIXFjY2Nzc2LgInJg4CAkfhO9X++/0OAwxFd651aIhPHAQIEU16qGttjEwX+gMGAyBLRFF8UhIcAxQxTzlLakcp/mAFEcn6JgOrFWTJpGACA2Odt1hEXrybXAMEZaC9bxUzeGxHAwNOgUi3M2NQMwECQm+CAAIAEQAAAvIEUwAEABYAGUANBgkJBRQHcgMGcgIKcgArKysyMhEzMDFBAyMTMyUHJiYjJg4CBwc+AxcyFgGSluu83wFGGhcvFz1iSjIOOAoxWIhhFy4DYPygBDoJ4QQGASRDXTkET6qTWwIIAAEAG//rA8EETwA1ABdACxsADjIpC3IXDgdyACsyKzIROTkwMUE2JiYnLgM3PgMXHgIHJzYmJicmBgYHBh4CFx4CBw4DJy4CNRcUFhYXMjY2ApcIQGAoPXlkOgMEUH+YS2mxawHqAidKNC1XPgcGIjxDG1WkaAUDVoafTWq7ceMvVTkvX0UBKzc9IAoPL0hpSVR+VCgBAk6YcAEySSgBASBAMSYxHhMGF0d/Z1h/USYBAlSfcwE6UCkBGz4AAgA//+0CrgVDAAMAFQATQAkKEQtyBAIDBnIAKzIvKzIwMUEHITcTMwMGFhYXFjY3BwYGJy4CNwKuH/2wHtnrswQJJScVKxYRJEsmWm4sCAQ6sLABCfvmIzQdAQEGA7oLCgEBUYhUAAACAEr/6AQvBDoABAAbABVACgERBnIYAwMLC3IAKzIvMisyMDFBEzMDIxM3DgMnLgM3EzMDBh4CFxY2NgK2jey83mNODEBupG9ZeUYXCHXrdgMGHDctYIFLAQsDL/vGAeADYreQUgMDQXCQUAK7/UInSDojAgNRjgACAGQAAAQSBDoABAAJABdACwAGCAEJBnIDCApyACsyKzISOTkwMWUBMwEjAxMHIwMBjgGI/P3pnQ18EJPGyQNx+8YEOvx2sAQ6AAQAeQAABfQEOgAFAAoADwAVACRAFAcLABEDFAYJEAwBCgZyEg4ECQpyACsyMjIrMjIyEhc5MDFlATMDASMTEwcjAwEBMwEjExMHIwM3AVgBf55a/oKNSSsYk2ADTAFD7P4pnAdgDYFpA/sDP/75/M0EOvyk3gQ6/MgDOPvGBDr8suwDS+8AAf+6AAAEEgQ6AAsAGkAOBwQKAQQJAwsGcgYJCnIAKzIrMhIXOTAxQRMBIQETIwMBIQEDAXGOAQQBD/5n7/Wb/vH+8QGo5gQ6/psBZf3h/eUBdf6LAjICCAAAAv+8/kcEGQQ6ABMAGAAZQA0XFhUDCAIYBnIPCA9yACsyKzISFzkwMWUBIQEOAyMmJic3FhYzFjY2NxMTBwcDAVcBvgEE/YYbRVhtRB89HhELFgs5VkEZd24CpL6CA7j7IDhkTCsBCwe5AQMCIUQxBJf8yvYqBFYAA//mAAAD5AQ6AAMACQANABxADQQMDAkNBnIHAwMGAhIAPzMzETMrMjIRMzAxZQchNwEBIzcBMyMHITcDXyL88SIDePy/oR0DPKVaIv0kIsDAwALZ/GemA5TAwAACAC3+lQMDBj8AEQAlABlACh0JCgocHBITAQAALzIvMzkvMxI5OTAxQRcGBgcHDgIHNzY2Nzc+AgMHLgI3NzYmJic3HgIHBwYWFgLfJG5nDxwPgMd3C2dvDxwQaa1tM2yKOQwcBxRFQgttqFoLGwgGOQY/iyiybs5/nUsDiwN6Ys58uH35AYkkhbhwzT1gOwWLBFOedM1BgWgAAQAh/vIBzQWwAAMACbIAAgEALz8wMUEBIwEBzf7yngEOBbD5Qga+AAL/mP6SAm4GPAATACYAG0ALHgsKCh8fARUUAAEALzMvMxI5LzMSOTkwMVM3HgIHBwYWFhcHLgI3NzYmJgEnPgI3Nz4CNwcGBgcHDgKgNWuJOg0bCBRFQgprqloLGwgHOf7ZJEleMwsbEIDGdwtnbhAcEGitBbWHI4a4b889XzoFhQRQmnPPQYFp+PqMG2KCScyAmkgDhAR6Y8x9uH0AAQBcAYMExwMyAB8AG0ALDAAAFgaAHAYQEAYALzMvETMaEM0yLzIwMUE3DgMnJiYnJiYnIgYGBwc+AxcWFhcWFhcyNjYEGK8GMleAU1KBOCBLMTZHJgi3BjJZf1NSgzYgSzI3SCoDEQJKj3RDAQJOOSI6ATlZLQFKjHFBAQJPOSE7ATxcAAAC/+b+kwHOBE8AAwAPAAyzAQcNAAAvL93OMDFDEzMDExQGIwYmJzQ2MzYWGsrJme5NOThOAU46N03+kwQD+/0FPjpMAUY5OksBRQAAAwBN/wsEAgUmAAMABwAvACVAEgIBJSUhAxwHcgcECAgMBhENcgArzcwzEjk5K83MMxI5OTAxQQMjEwMDIxM3FjY2NzcOAicuAzc3PgMXHgIHIzYmJicmDgIHBwYeAgMXNLs0IjO7M3I8YkMN3w6KzXF0oWElCwQNVo3Ad3isWwLeASRNP0prRygJAwcCIE0FJv7fASH7Bf7gASCAAi9WOAF1rF0CA1qYwWckcMeYVgMDarZ1OWE+AQM/aYA+IzR5akYAAAP/9wAABKIFxwADAAcAIgAhQBAGBQUBHxYFcgwNDQICAQxyACsyETMRMysyETkvMzAxYSE3IQMhNyElAwYGByc+AjcTPgIXHgIHJzYmJicmBgYD8PwHIwP59/1AIgLB/utMC1tSticuGAVVEIXUhnqrVwTtAx1JPURhOccBkcP1/ZVglTFIEEdXJgJ0g8duAwNltHgBOFw4AgFFbwAABgAG/+UFfwTxABMAJwArAC8AMwA3AA61DxkFIw1yACsyLzMwMUEGHgIXFj4CNzYuAicmDgIHPgMXHgMHDgMnLgMBByc3AQcnNwEnNxcBJzcXASoLIFGDVl+mg1MNCx9SgVdfpoNUuw5xtOeDfcB/Nw0NcbTng33AfzcFD9103vxK3XPdA1ypkar8jamQqQJXT5t+TQIDSoOmWU+afU0DA0uBplh+5rNmAgNpsNt0fue0ZwMDarHbAnfElsT7ucSVw/6n2IHYAzHZgNgABQAuAAAErgWxAAMABwAMABEAFQAtQBYLEBAGBxIVFQgOAwMCAhEUDHIJEQRyACsyKxI5LzMSOTkyETPOMjMRMzAxQQchNwEHITclASEBIwMTBwcDAQMjEwPHGvy0GgMaGvyzGwGaAbwBD/3Rj1HDLo/+AfyF9IUC45WV/t2UlPgC+PyUA2388V0BA2z9Tv0CAv4AAAL/7v7yAfUFsAADAAcADbQBAgYHAgA/3d7NMDFTIxMzEwMjE8nbituihNyE/vIDGQOl/QoC9gAAAv/g/iQEqwXHAC8AYQAeQBNTPwABBStdNTEwDyEMT0QdFBFyACsyLzMXOTAxZTc+Ajc2LgInLgM3PgMXHgIHIzYmJicmBgYHBh4CFx4DBw4DAwcOAgcGHgIXHgMHDgMnLgM3NwYeAjMWNjY3Ni4CJy4DNz4DAk4LPXNQCwgvU2ApTpRzPQcGZZy4WobLawbqBDBiST5+XAsJLFFfK0+VdUAHBmKXsF0LPmlHCggqUF8tT5VyPgYHY5q4W2WtgUQD7gQgQFw4PX5cCwkwVF8mTpR1QAYGXpKqeoMCKVZCN0szIg4aQ16HYGeSXCsCAmO+i0dpPAEBIlNGOEkuHw0ZQV6HYGWESyAC8YUDKVRBOkwxIA4bQV6HYWmRWSkBAjVon2wBO1c5HgEiUUQ2SDAgDRlCXodgYYNOIQACANcE4wONBc8ACwAXAA60AwkJDxUALzMzLzMwMVM0Njc2FhcUBgcGJiUmNjc2FhUWBgcGJtdHMjJIAUcyMUkBwQFGMzJJAUgyMUgFVjNEAQFAMzNDAQFAMTNEAQFANDNCAQE/AAADAFz/6AXcBccAHwAzAEcAH0AOHQQEJSVDFA0NLy85A3IAKzIRMxEzLzMRMxEzMDFBNwYGJy4CNzc+AhcWFgcnNiYnJgYGBwcGFhYXFjYlBh4CFxY+Ajc2LgInJg4CBzYSNiQXHgISBwYCBgQnLgICA6mQDLiYbIc7CAwLX6JxkZwFkgVDWUlhNwkNBhJERV1g/UUQMHm7fYPot3URDy95u3yE6Ld1hRCG1QERnJXnmkMPEYXV/u+cleeaQwJVAZapBANvr2J1aLJsAgOpkAFUYwIBS3dAdzhzUgIEZNRz3LFrAgNmted8c9qxawIDZrPmfZUBEdV6AwJ+0/76jJT+7tZ7AwJ/1AEHAAIAvwKyA0cFyAAXADEAGrUxGhoNFiq4AQCyCA0DAD8zGtzEEjkvMzAxQRM2JiYnJgYHJz4CFx4CBwMGBhcjJhMHIw4CBwYWFzI2NjcXDgIjJiY3PgIzAmo1AwwoJzhTD6IHXoxLU3Q5BjEHAwifDmIUgidXQQYIPSomUkIQBhdNXTRkfwICcKJQA14BViI6JAECMjYMU2gyAgFHe1L+xi9aLlABbXEBFjUuLyYBHzYkcy5BIQF1ZmFoJwD//wBGAIkDrAOnBCYBkuz+AAcBkgFL//4AAgCAAXcDxgMiAAMABwAStgYHAwYCAgMALzMRMxI5LzAxQQchNwUDIxMDxhz81h4DGz26PgMipaVL/qABYAAEAFz/6AXbBccAHgAvAEMAVwA1QBsfGxggBAICAQEPKQ0NNTVTDA8PSVMTcj9JA3IAKzIrEjkvMxEzETMvMxI5fS8zEhc5MDFBIzcXPgI3NiYmJyMDIxMFHgIHDgIHBgYHDgIHNxYWBwcGFhcHJyY2Nzc2JiUGHgIXFj4CNzYuAicmDgIHNhI2JBceAhIHBgIGBCcuAgIDNd8SsClSPQgJJEUtjXCOhQEBToVPBAJJaTUEBwQKEBIhF3F/CAYDAwIBjgUEBAcGNv15DzB4vH2D6Ld1EA8veLx8g+m3dYURhdUBEZyV55pDDxCF1v7vm5bnmkICjoIBAho2LTM1FAL9MQNQAQI0blZLTC4dAgkDBwgEAmMDdHY3IT0hEgEkSSU1SDxLc9yxawMCZrXnfHPbsGsCA2az5n2VARHVegMCftP++oyU/u7WewIDf9MBCAABAQQFEAOxBaoAAwAIsQMCAC8zMDFBByE3A7EY/WsZBaqamgACAOUDrwLlBccADwAbAA+1EwzAGQQDAD8zGswyMDFTPgIXHgIHDgInLgI3BhYzMjY3NiYnIgboAU18S0VpOgEDSXpLRms9hgY5MjhRBwY0MzhWBLBJgE4BAUt2Qkl+TAEBR3VFMElSNS9MAVQAAAMAGQABBAIE/QADAAcACwAStwsCAwMEChJyACsvOS8zMjAxQQchNwEDIxMBByE3BAIf/IUgAmeX0ZcBVR/8xR8Dg8TEAXr8PAPE+8XBwQAAAQBXApsC7gW+ABwAE7EcArgBALMLEwNyACsyGswyMDFBByE3AT4CNzYmJyIGBwc+AhceAgcOAgcHAsEa/bAXATgaPi8HBiwqOkUMtAhWiVNJfEoDA0xrM58DLJGEAQEWOEAlKTEBSDUCVHpBAQEzZ1BGbVgldQAAAgBoAo4C+QW+ABkAMwAsQAwcGAAAGhoQLCkpJBC4AQC1CwsIEANyACsyMi8aEMwyLzIROS8zEjk5MDFBMz4CNzYmJyIGByM+AhceAgcOAgcjBzcXHgIHDgInLgI1MxYWFzI2NzYmJicBYUkiQS8GBjooK0MOtgdXhElEglQCAl2HPoAID2JBe1ACAWaXSkx+TK4BQDExWggGHTYgBGsCFS4mLCgBJihNZS8BAS1gTktYJgEoUgECIFJNVmoxAgE2a1AyLAE0NiUpEgEAAQDHBNMCzQYAAAMACrIBgAAALxrNMDFTEyEBx+0BGf7IBNMBLf7TAAP/3v5gBFkEOgAEABoAHgAZQAwdBQAWCxNyAxJyHAAALzIrKzIROS8wMUEzAyMTNzcOAycuAicTMwYeAhcWPgIBMwEjA23svNgaRlQKMFuUbD92VAsOgQQBGUA7Tm5HKf3G6/776gQ6+8YBCPICWLyfYgMCMFxDARIvZFY3AgI0XnsChPomAAABAH4AAAPQBbEADAAOtgMLAnIAEnIAKyvNMDFhIxMnLgI3PgIzBQLUxltEh8FfDQ6V7JEBJQIIAQN1zIeU1XQBAAABAJ8CRAGyA1AACwAIsQMJAC8zMDFTNDY3NhYXFAYjBiagTjs6TgFQOjlQAsU7TgEBSTo7TQFHAAH/zf49AS8ABAATABG2CwqAEwIAEgA/MjIazDIwMXc3BxYWBw4DBzc+Ajc2JiYnGawUPkABAURqejgHIEIxBgYsQhgDATwNVj9GWjIVAooCEiklJR8JAwABAOQCmwKABa8ABgAKswYCcgEALyswMUEDIxMHNyUCgIOxZMwbAWoFr/zsAjwxl3IAAAIAvgKwA3AFyAARACMAELYXDiAFA3IOAC8rMhEzMDFTNz4CFx4CBwcOAicuAjcHBhYWFxY2Njc3NiYmJyYGBsUHCmOhamSIQAgHC2GgamSJQLUJBRI+PD1VMggJBRQ9Oj5WMgQTT2SkXgIDYZ9gUGSiXQIDYJ+vUjJfQAECPWI3UTFgPwICPGIA//8ABQCLA3UDqAQmAZMJAAAHAZMBcgAA//8AwQAABSIFrAQnAdYAUQKYACcBlAEVAAgABwIwAqkAAP//ALUAAAV4Ba8EJwGUAOsACAAnAdYARQKbAAcB1QL9AAD//wCWAAAFoQW+BCcBlAGjAAgAJwIwAygAAAAHAi8AoQKbAAL/1P57Ax8EUAAhAC0AGEAKAAAlJSsQERENFgAvMzMvPzMvMy8wMUE3DgIHDgIHBhYWFxY2Njc3DgInLgI3PgI3PgIBFAYjBiYnNDY3NhYBkNUHLlE+LlpCCQcZQzc8WjkL6wyBynpyrloJB16GRSg1HgE1TTk4TgFOOThOApYBUoNwNyhUZUA0UjEBAjJXNwJ9r1sDAlmnd2CYfjghSVUBbjpMAUY5OkoBAUYAAAb/jQAAB28FsAAEAAgADAAQABQAGAAxQBgAFxcIBxQTBxMHEwINAxgCcgwLCw4CCHIAKzIyETMrMjIROTkvLxEzETMyETMwMUEBIQEzAwchNwEHITcTAyMTAQchNwEHITcEM/x//tsEIJsfJf0qJQV9Iv04IvPB68ICpyL9myIDHCL9OSIFC/r1BbD8etLS/pfBwQTv+lAFsP2hwcECX8HBAAIAHwDKBA8EdwADAAcADLMEBgIAAC8vMzIwMXcnARcBATcBnX4Dc33+9f2NnQJyy5wDEJz87wMmh/zbAAMAFv+iBZAF7QADABsAMwAXQAsBAC8KIxYDcgoJcgArKzIRMzIzMDFBASMBEwcGAgYGJy4ENzc2EjY2Fx4EBTc2Ni4CJyYOAgcHBgYeAhcWPgIFkPs3sQTLNQoUaq7wmXWvdkESDAsUbK7wmHWudkIR/vMLBwMVOGZOaJlnPgwLCAIVOWVOaZhnPQXt+bUGS/0VUIn+/8t0AwJSjLPKZ1CIAQDLdAMCUouzyrhTPIiCakMDA1mWtFdTPIeDbEMDBFqWtAACACcAAASBBbAAAwAZAB1ADg8ODgMZBAQDAAJyAwhyACsrETkvMxE5LzMwMUEzAyMBIR4CBw4CIyU3BTI2Njc2JiYnJwEk7P3sATABaoHOcQsMovaM/tghAQ1PiVsMCS1jSPgFsPpQBJcDZL2JlsZiAb8BOnFSSGo7AwEAAQAd/+kEUAYYADkAGUANIxs2CAIKcggBchsLcgArKysRMxEzMDFBAyMTPgMXHgIHDgMHBh4DBw4CJy4CJzcWFjMyNjY3Ni4DNz4DNzYmJicmBgYBw7vrvQ1Ne6hpZ6FYCAYuOzIJCSlHSjEDB3/IdC9hXipBLm44NV9ACQgsSUswBAUvPTMHBho+MUxeMgRS+64EU2OnekEDAlKZbDtiWV43NFpWV2I7e6VQAQENHBfAHiMlSzc2WlRVYz43X1ldOC5MLgIDTnwAAAMADv/qBl8EUQAUADIAXgA3QBxXMzMyF0ZFFCUAAykXRRdFDx8pC3JMPj4FDwdyACsyMhEzKzISOTkvLxIXOREzETMyETMwMWUTNiYmJyYGBgcnPgMXHgIHAwMHJyIGBgcGFhYzFj4CNxcOAicuAjc+AzMBLgM3Nz4DFx4DBwchNyE3NiYmJyYOAgcHBh4CFxY2NxcOAgKCWAUVQTk0XkQK6QdZiKBQdaZQDFJvHNU5dVQJBydHLChfWkIMYSuWsVRimlQFBl6TrlQCWnOnaSsKBw1Vib10aJdbIAsV/OYdAioGCRVLREdrSSoICAYNMV1IVZZJODODjbUCFzNXNwIBI0c1Elh/USUBA2Ktdv4RAaukASVPQTA+HgEaMUQqlk1gKgECTJBnZINNIP1oAlORvGs6a8SZVgMCUIeuYIynHzxrRQIDPWl9PDk/dV46AgI2KKUrNRgAAgBG/+gESAYtADQAOAAZQAs2IBYWASoMC3I4AQAvMysyEjkvMzMwMUE3HgISBwcOAycuAzc+AxceAhUnNi4CJyYOAgcGHgIXFj4CNzc2LgIlAScBAXpWp/aYORUMEFmPw3pkn2wzCQlNgbFuaKBcVwMlQlIpSG5NLgcGEC1POUpsSSwJDhMlb7wCSf21PAJLBW3AKrL6/tGnVW3QpmEDA02DrGFmu5FSAwRlpmYCL0YtFwECNV52QTJkVDUCAkRygz1mhe3Eji3+nXUBYgADAD4AlAQ8BMsAAwAPABsAE7cZEwIHDQMCEgA/3cYyEMYyMDFBByE3ATQ2NzYWFRYGBwYmAzY2NzYWFRQGBwYmBDwk/CYkAZtQOTlQAVA6OFCOAU47OVBQOjlQAxjOzgEpPEwBAUc6PEoBAUb9DDxLAQFHOjtLAQFGAAMAKv91BDAEvQADABkALwAZQAwgAQEVC3IrAAAKB3IAKzIvMisyLzIwMUEBIwEBNz4DFx4DBwcOAycuAzcHBh4CFxY+Ajc3Ni4CJyYOAgQw/JOZA278pwMOWZHEeXOmZigLAg5akcR4c6VnKPkDBQUmU0VLb0wtCQIHBiZTRktvTCwEvfq4BUj9TRdwy51ZAwNcmsJpGHDJm1cDA1uXwYAXNnlrRAICP2yCPhc2em1GAgJAboMAA//N/mAEFQYAAAMAGQAvABtADysKIBUHcgoLcgMAcgIOcgArKysrMhEzMDFBASMBAQcOAycuAzc3PgMXHgMHNzYuAicmDgIHBwYeAhcWPgICDP6t7AFTAusCDUR1qnNmilIhBQoQTXmpbG+MSRT4AwUDIE1EPmRNMgsfAxgyTzdKakYpBgD4YAeg/C0VY8alYgMCXZazWFBfvp1dAwNlob1vFTR3a0YCAy1QZjfEMlxLLQEDRG6DAAQAN//oBRMGAAAEABoALwAzAB1ADyEEBBYLcjMyKwsHcgEAcgArKzLOMisyLzIwMWUTMwEjATc+AxceAwcHDgMnLgM3BwYeAhcWNjY3NzYuAicmDgIBByE3Arnh7f711P2ZAgxGd610Z4hNHAUIEEx5p2trjEwX+gIGAh9LRE97UhEcAxMwTzhKa0UoA9od/XMd7gUS+gACCBZjyaZjAwRknrdXRFy8nFwDBGWgu3EVNHZrRwIDTX9HtzJiUDMBA0JuggMUp6cABAAsAAAF2gWwAAMABwALAA8AH0APAwKABwYGCgwLAnINCghyACsyKzIROS8zGswyMDFBByE3AQchNxMDIxMhAyMTBdoc+qscA+Ej/RAkp/31/QRi/fT8BKuenv6lx8cCYPpQBbD6UAWwAAEAIwAAAcoEOgADAAy1AwZyAgpyACsrMDFBAyMTAcq867wEOvvGBDoAAAMAIQAABJAEOgADAAkADQAfQA8MBwcLBgYCCQMGcgoCCnIAKzIrMhE5LzMzETMwMUEDIxMhASE3MwEDATcBAci867sDtP2c/vUHowGPmf7wxwFmBDr7xgQ6/XXaAbH7xgHhgf2eAAMAHwAAA9IFsAADAAcACwAbQA0CCgAHBgYKCwJyCghyACsrETMRMzIRMzAxQQcFNwEHITcBAyMTArga/YEbA5gk/TojAR/99f0Dspi8mv3Px8cE6fpQBbAAAAIAIAAAAl8GAAADAAcAE0AJAgYABwByBgpyACsrMhEzMDFBBwU3AQEjAQJfG/3cGwH4/vbsAQsDtJi7mAMH+gAGAAAAAwAj/kcFewWzAAMABwAZAB1ADhUOBgcHAwhyCQUEAAJyACsyMjIrMhEzLzMwMUEzAyMBNwEHEzMBDgInIiYnNxYWMzI2NjcBH/b99QE0tQI7tfT1/v4PZKp3I0UjIxgwGTRDJgcFsPpQBURv+rlsBbD6GXCvYwIKCcIHCDdVLQACABH+SAP5BFEABAAqABlADhwVD3ImCwdyAwZyAgpyACsrKzIrMjAxQQMjEzMDBz4DFx4DBwMOAiMmJic3FhYzFjY2NxM2LgInJg4CAY2R67zXfSMMQW+iblx5QRMJdg9ip3UjRCEhGDIYNUMlCHYGBR0+NUpyUTQDRfy7BDr+BgJdvZxdAgJKe5hR/SNvq2ABCQnBBwgBNVMuAtwtVEQoAgM2X3kABQBQ/+wHjQXGACMAJwArAC8AMwAzQBovLi4mMigzAnIpJyYIchUSEhYZCQQHBwMAAwA/MjIRMz8zMxEzKzIyKzIyETkvMzAxQTIWFwcmJiMmDgIHAwYeAhcWNjcHBgYnLgM3Ez4DAQchNwEDIxMBByE3AQchNwMdSZJJFkSLRVuOZUENMAkMNmtVSZFIE0aMRn2+fTMQLxNtqt8EICL9ECMBIPz2/QLTI/1zIwNTI/0WIwXGDgjGDhABP3GUU/7NSI1zRwICDgzHCAsBA2Ck1HgBMH/ao1r7AcfHBOn6UAWw/aDExAJgyMgAAwA//+gGzgRSACoAQABWACdAEyQAAEc8ExISPFIZCwsxB3I8C3IAKysyETMyETkvMxEzMxEzMDFFLgM3Nz4DFx4DBwchNwU3NiYmJyYOAgcHBh4CFxY2NxcGBgE3PgMXHgMHBw4DJy4DNwcGHgIXFj4CNzc2LgInJg4CBMpwo2YqCgQMVYu7c2iXXSMMFvzsHgIlBQoaTURFZkYoCAUGCytVRVWaRz1P1vsZAw1Yj8N5c6VkJgoDDliQwnhzpGUn+wIGBCRQRktuSisJAgYFJVBHS21KKhQCWJa9Zitpxp5bAwNPha1ijq0BHTxqRAICQ25+OSo4dmQ/AgMyLJ5GOgIgF3DLnVgDAlybwmgYcMmbVwIDXJnAfxc2eWpFAgNAbII/FjZ6bUYCAkFuggABABwAAAMaBhkAEQAOtg0GAXIBCnIAKysyMDFhIxM+AhcWFhcHJiYjIgYGBwEH68oOaK12J00nJRcuGDhSMgkEonGpXQEBDQe4BggvUzUAAAEAS//pBS0FxAAsABtADQ8ABgkJABoiA3IACXIAKysyETkvMxEzMDFFLgM3NyEHIQcGHgIXFj4CNzc2LgInJgYHJz4CFx4DBwcOAwJNks55KRIXBAMj/PkIDRVEdlVimG5DDhINE0uKaWO+XB46lppElt+MNhMRE3O18BQCbbrxh4/DI06IZjsDAlOMq1V8XKmFTwICKCPFJScMAQFrvfiOe4T3xXAAAAH/RP5GA0wGGQAnAClAFRQCAhUnBnIfIiIeGwFyCw4OCgcPcgArMjIRMysyMhEzKzIyETMwMUEHIwMOAiciJic3FhYzMjY2NxMjNzM3PgIXMhYXByYmIyIGBgcHAsIbyZUNXaFzI0MhIBYuGDRAIgaWoRuhDQ5nrHUoTiYnGDAYOE8uCQ4EOrD8MW2oYAILCbsHCTVSLQPPsGhyqF0CDgi4BgYuUDVoAAMAXP/pBiEGLQAJACEAOQAdQA4FBgYpKQAAHANyNRAJcgArMisyLzIROREzMDFBNw4CBzc+AgMHBgIGBicuBDc3NhI2NhceBAU3NjYuAicmDgIHBwYGHgIXFj4CBXmoCmCzhw5TYDBlCxNrrvCYdq51QxINCxRrr/CYda52QRL+8gsIAxY4ZFBomGg9DQsIAhY4ZU9pmGc9BisCg75oBJICUH79IE+K/v/LdAMCUoy0ymZQiAEAynUDAlKLs8q4UzyIgmpCAwRZl7NYUjyHg2xEAgRalrQAAAMANP/pBPAEqgAJAB8ANQAVQAomGwtyMQAAEAdyACsyLzIrMjAxQTcOAgc3PgIBNz4DFx4DBwcOAycuAzcHBh4CFxY+Ajc3Ni4CJyYOAgRZlwlXoXoLTVgq+/ACDliSxHl0pWYoCwIOWZLEeHKmZin5AgYFJlNGSm9MLQkCBwYmUkZMb0wsBKgCd6VWBHkCRXD9phdwy51YAwJcmsJpGHDJm1YCA1uYwIAXN3hrRAICP22BPhc2em1GAgJAboMAAAIAWP/pBqQGAwAJAB8AGUAMBQoKAAAVAnIbEAlyACsyKzIvMhEzMDFBNw4CBzc+AiUzAw4CJy4CNxMzAwYWFhcWNjY3Bf+lDG3Ilw5ldz3+SfWmGKT+n5XaaxKm9KUKJmpbYY9YDgYCAZTGZwOSAkuHC/w0neV5AwJ94ZcDzfwyVIhRAwNMjFwAAAMASv/oBVkElgAJAA4AJQAdQA4FCwsAABsGciIODhULcgArMi8yKzIvMhEzMDFBNw4CBzc+AgETMwMjEzcOAycuAzcTMwMGHgIXFjY2BMSVCl6qfgxUXzD9/o3svN5jTQw/bqRwWXhFGAh163YEBxw3LWCCSgSVAX6bSgJ9AjJm/MMDL/vGAeADYriPUgMCQnCQUAK7/UInSDojAgRSjgAB/wT+RwHbBDoAEQAOtg0GD3IBBnIAKysyMDFTMwMOAicmJic3FhYzMjY2N+/sww5ip3UjQyIiGC8ZNEQmBwQ6+4lvrGEBAQoJuwcJN1ctAAEANP/qA9oEUQAqABlADBEUFAAZCwtyJAAHcgArMisyEjkvMzAxQR4DBwcOAycuAzc3IQclBwYWFhcWPgI3NzYuAicmBgcnNjYCOHCjZikKBAxVirxyaZhcIgwVAxUf/dwFCxpNQ0ZmRigIBQYLK1VEVZtHPU/XBE8CWZW9Zitqxp1aAwJPha1ijq4BHDxqRAICQ25+OSo4dWRAAgMyLJ1HOgAAAQD+BN4DoAYAAAgAFLcHBQUEAQOACAAvGs0yOTIRMzAxQRMVJycHBycBArTsuXiwwAEBLwYA/u8RA5ybAxIBDwAAAQEJBOADvQYDAAgAErYBBoAHBAIAAC8yMjIazTkwMUEXNzcXASMDJwHMdK3PAf7LlOoBBgCcmwQQ/u0BExAA//8BBAUQA7EFqgYGAHAAAAABAP0EywNyBegADgAQtQEBCYAMBQAvMxrMMi8wMUE3DgInJiY1FwYWFxY2AsSuB1yTWYCmrwM4Q0RQBeYCW4BCAgKWgwE+TwEBTwAAAQEDBOICAAXXAAsACbIDCRAAPzMwMUE0Njc2FhUUBgcGJgEDSDU1S0g2NUoFWDdGAQFCNjZFAQFAAAIA+gSMAqIGJgANABkADrQXBIARCwAvMxrMMjAxUzQ2NjMyFhUUBgYjIiY3BhYzMjY3NiYjIgb6PWU7VHc+ZTtTd2gFMCwwSgYGMC0wSgVPPGI5c1U8YDZuVyo/Ri8qQUkAAf+o/lUBIAA7ABUADrQID4ABAAAvMhrMMjAxdxcOAgcGFhcyNjcXBgYjIiY3PgKrdSNSPgYDGB0YLBUNIk4pVWkCAU52Oz0ZOkovHSABDgmNFRRpV0pwUAAAAQDcBN8DxAXzABkAJ0ATAAABAQoSQA8aSBIFgA0NDg4XBQAvMzMvMy8aEM0rMjIvMy8wMUEXDgInLgMHBgYHJz4CFx4DNzY2AzaOBTdkSCZAPD4jLzAMkgY4ZEkkPzw/JS4yBfMKQXdLAQEeJhwBAj4oB0B4TAEBHSYcAQE/AAACAK4E0QPrBf8AAwAHAA60AQWAAAQALzMazTIwMUEBMwEhEzMBAeQBEvX+yP375O7+8QTRAS7+0gEu/tIAAAL/9P5sAVH/vgALABcADrQPCYAVAwAvMxrMMjAxRyY2MzIWFRYGBwYmNwYWMzI2NzYmIyIGCwFrSkRjAWhIRWdiBCIeITYFBB4fIjjzS2ZeRkljAQFaSR0tNCAbMTUAAAH9VgTT/tsGAAADAAqyA4ACAC8azTAxQRMjA/5RirTRBgD+0wEsAAAB/dwE0//oBgAAAwAKsgGAAAAvGs0wMUETBQH93PIBGv7DBNMBLQH+1P///PgE3//gBfMEBwCl/BwAAAAB/dUE5f88BnwAFAAQtRQCAIALDAAvMxrMMjIwMUEnNz4CNzYuAic3HgMHBgYH/oy3CxpFNwUEHC4wEBAqa2M/AQJjQATlAZABCh4jGRsLAgF4AQ4mSDpISAsAAAL8vATk/7AF7gADAAcADrQHA4AEAAAvMhrNMjAxQSMDIQEjAzP+idvyAQoB6s/A/wTkAQr+9gEKAAAB/KH+lf2v/4wACwAIsQMJAC8zMDFFJjY3NhYVFgYHBib8ogFQNzVRAVE1NVL0OUUBAUE3OUQBAUAAAQE2BOwCkQZAAAMACrIAgAEALxrNMDFBEzMDATZ64cYE7AFU/qwAAAMA7wTjBCAGsAADAA8AGwAZQAoTGRkNAYAAAAcNAC8zMy8azREzETMwMUETMwMFNDY3NhYVFgYHBiYlJjY3NhYVFAYHBiYCQGDksv4dRjMxSQFHMjJIAj0BRjMySUYyMkkFhwEp/tcyNEQBAUAyNEMBAT8xNEQBAUAzNEIBAT7//wCfAkQBsgNQBgYAeAAAAAEAKwAABKwFsAAFAA62AgUCcgQIcgArKzIwMUEHIQMjEwSsI/1x2vX9BbDI+xgFsAAAA/+sAAAFDwWwAAQACQANABtADQYCBwMCcg0MDAUCEnIAKzIyETMrMhI5MDFBASEBMxMBNzMBJwchNwON/Sj+9wM+jqL++jmOATSxI/w2IwUi+t4FsPpQBUNt+lDHx8cAAwBd/+kFFwXHAAMAGwAzABtADS8KAwICCiMWA3IKCXIAKysyETkvMxEzMDFBByE3BQcGAgYGJy4ENzc2EjY2Fx4EBTc2Ni4CJyYOAgcHBgYeAhcWPgIDqyH+USIDDQsTa67wmHaudkISDQoUbK/wl3WvdUIS/vILCAIVOGVPaJhoPQ0LCAIWOGVPaJlnPAM5v783T4v+/8p0AwJSjLTKZlCIAQDLdAMCUYyzyrhTPIiCakIDBFmWtFdTPIeDbEQCBFqWtAAAAv+yAAAEfQWwAAQACQAXQAsGAAIHAwJyBQIIcgArMisyEjk5MDFBASEBMxMDNzMTAxf9q/7wAumxMrMbqO8Ew/s9BbD6UAThz/pQAAP//gAABIQFsAADAAcACwAbQA0BAAUEBAAICQJyAAhyACsrMhE5LzMRMzAxYzchBwE3IQcBNyEHAiMDqST9LCMC2yL9OCQDeiTHxwKHwsICYcjIAAEAKwAABYMFsAAHABNACQIGBAcCcgYIcgArKzIRMzAxQQMjEyEDIxMFg/302f2P2vX9BbD6UATo+xgFsAAAA//cAAAEnQWwAAMABwAQACFAEA4GBgcHDwJyDAMDAgILCHIAKzIRMxEzKzIRMxEzMDFlByE3AQchNwEHASM3AQE3MwPmI/x2IwRBI/ycIwHjAv17uRwCI/6mGKnHx8cE6cjI/TgV/S2dAkwCQYYAAAMAVAAABawFsAATACcAKwAhQBAUFRUBACkIch8eHgoLKAJyACvNMjIRMyvNMjIRMzAxZScuAzc2EiQzFx4DBwYGBCUXMjY2NzYuAicnJgYGBwYeAgEDIxMDEMR2wIQ+DBG2AR2pyXa/hD0MEbn+4v6dx26saw8IFT9pS8xvrWsNCRdBawHx/fX9qgICT4/Fd6wBAI0CA1KTx3at/IfTA1WebUd6WzUDAgFZom5Id1czBDH6UAWwAAACAHYAAAXRBbAAGQAdABlADBQHBw0cCHIdAQ0CcgArMjIrETkRMzAxQTMDBgIEJycuAzcTMwMGHgIXFxY2NjcDAyMTBNv2VBu7/t64VYDIgzcPU/RTCRNAcVNTerNuErn89f0FsP4Stf72jwEBBFic1IAB7v4RTIlrQAQBAmOxdAHu+lAFsAAAAwAKAAAE7wXHAC0AMQA1ACVAEigSEi8pKTQRETMuMhJyBh0DcgArMisyMjIRMzMRMzIRMzAxQTc2LgInJg4CBwcGBhYWFwcuAzc3PgMXHgMHBw4DBzc+AwE3IQchNyEHA8oOCAMnXVJYgFczCg8IDRFDSQ1yn14gDQ4RaKTdiIC7cywPDhFjnc9+D1NzSiz+oyMB4SP7xyQB6CMC72g/kIBUAwNLf5hJZz2jpYAbjxeNyN1nZHzjsWQDA2ux3XVkdufCghKQHXaYqP1hyMjIyAAAAwA7/+cEMgRSABYALABBABpADS4GNDs7HRILcigGB3IAKzIrMjIRMz8wMVM3PgMXHgQHBw4DJy4DNwcGHgIXFj4CNzc2LgInJg4CATMDBgYWFhcWNjcXBgYnLgM3E0QDDEN1rndRcUgmDAQHD0Vwn2lqjE0X+QIGAyBLQkJoTzMNCQMMKU8/TWtEJgIpzYECBQMUGAYOBwYaOB89UC0PAl4B9BVk0K1oAwNGc4qSQj5Yu55fAwNembZwFjNxZEADAjlhdDlGM3VrRgIDSniJAfP9Bw8tLR8CAQQBtA8MAQE5W2s0Aj4AAAL/5v51BGkFxwAcADoAHkAONQAmJyccHDAdAxMJC3IAKzI/MzkvMxI5OS8wMUEXHgIHDgInLgM3NwYWFhcWNjY3NiYmJycTHgIHDgIjIzczMjY2NzYmJicmBgYHAyMTPgICL3tztWEJCoLXiFeSaTcEXQVKfEZNflAKCB9RRXzCc7VlCQiMz25vFEFGa0IIBiJNOkRuRwv46/cSk9wDLQEDWqp6h8xwAwI5aZBYG01mMwIBQnVLQG5HAwEDIAJcq3h5olOEN2VGN1w3AgJAbD/6VwWofsFrAAMAdf5fBDAEOgADAAgADQAZQA4IDAMECgUBBQ0GcgEOcgArKzISFzkwMWUDIxM3ATMBIxMTByMDAhtc7FyGAX79/dCmB24Jmbht/fICDqEDLPvGBDr8t/EEOgAAAgA1/+kEHAYkACwAQgAZQA0UKD4DBDMeC3ILBAFyACsyKzISFzkwMUE+AhcWFhcHJiYHIgYGBwYeAhceAgcHDgMnLgM3Nz4CNzUuAgMHBh4CFxY+Ajc3Ni4CJyYOAgE6BX29ZUSAQBM3dz4pVT8JBhkxNxd6p0wOAg5ZkcJ1caRoKwkDDGeocDBDIgcDBQYnUUVIbUstCQMFDixMOUhvTS4E5HCOQgEBHRa/FyABGDYtITAmGwo1n9eHFnDEl1MDAlaTu2gXbr+EFQ0bTWD9bhY2d2lDAgI/aoA+FTFvZkkLBkBtgQACACj/6gQEBE8AHwA/AB9ADwAhPj4DAxY1KwdyDBYLcgArMisyEjkvMxI5OTAxQRcHJyIGBgcGHgIXFjY2NzcOAycuAzc+AwUnLgM3PgMXHgMVJzYmJiciBgYHBh4CFxcB7fMWrzhvUQkFIDtGITVqUA3sCFuNpVNImYFNAwRWhpoBLtU5gG9EAgNbkKZNS45zQ+gBNlUtMGdNCAYaMz8eywJMAXcBG0VBKDgiEAEBIEc4AVyDUiUCASNKeVdXcUAaRwECHTxjR119SiACAihQeVMBMz4cAR1CNyYyHA0BAQAAAgBm/nwEPgWwACgALAAVQAkVAiwsKSkAAnIAKzIvMxEzLzAxQTMHAQ4CBwYeAhcXHgIHDgIHJz4CNzYmJicnLgM3PgI3AyEHIQOwjhv+ZUV+WQ8FBhguI1w9b0MEBUprNXYYMiYGBhwvF0hEakgfBwxtnFDoAvYh/QoFsJj+XUWUqWUlPTAlDh8VMFVNRHplJGgZN0AjHSQWBxYVQFd1SnbbwFEB2L4AAgAR/mED+wRRAAQAHAAXQAwYCwMGcgIKcgsHchEALysrKxEzMDFBAyMTMwMHPgMXHgMHAyMTNi4CJyYOAgGOkuu813A+C0N1qG9beUMUCLvsuwYIID4ySm5OMANF/LsEOv4HBGK9m1oCAkNwklP7rARULU08IwEDN2F6AAMAbv/pBEIFxwAZACcANgAdQBANKGowIGowMA0AGmoADQtyACsvKxI5LysrMDFBHgQHBw4EJy4ENzc+BBcmDgIHByE3NjYuAgMWPgM3NyEHBgYeAgLGaY9XKQQLIA42V3ypbWmPVykECyAONld9qGBRbUMlCgcByAgFCAYhRPxBXkMsGgcH/jcGBggHIEUFxANOgqSxVtZcu6eBSAMDT4Wls1TXXbqlf0bBBFCBkT40NihpbV48+6YDNVxxdDEuLyhqb2E+AAEAZv/1AgAEOgARAA62Bg0LcgAGcgArKzIwMVMzAwYWFhcyNjcHBgYjLgI38eyEBAkmJhUsFREkSyZabiwIBDr8+CM0HgIGArkLCgJRiVQAAv+n//AD2gX7AAQAJgAeQBAAGwQDBAIgBQByDxYWAgpyACsyLzMrMhIXOTAxQQEhARcBMh4CFxMeAhcWNjMHBgYjLgInAwMuAicmBgc3NjYCKv6G/vcCT6j+/ixLPCsL4wURHRoJEwkOFSoWRV87EJk+CBgnHg4cDg0ePgLk/RwEUggBsBYsQCv7yhcqHQIBAcAEAwE1XkEDEgEFGykYAQEBAbQHCAAAAgBC/nYEHgXGAB4ARgAZQAsfEQ8PISEzBRsDcgArMi85LzMSOTkwMUEHLgIjIgYGBwYeAhcXBycuAzc+AxcyFhYBFwcnIgYGBwYWFhcXHgIHDgIHJz4CNzYmJicnLgM3PgMEHjYiR0glOn5eCggiQ1QrnBqDSJ+MVAQGXJOwWDFdW/7TnBh9Yq92DAkuXj5ePHBFBQRLazN7GDYoBgUdLxY3V5FmMgcKd7fYBZi6ChIKH0tEM0QnEQEBjAEBHkZ3W2SOWikBCxT9xQGIATuDakVnRRIZETJYSUR5ZCRmGjg/JhwiFAgRG0dkkWN7p2QtAAADAGH/9QTlBDoAAwAHABkAGUANDhULcgYKcgkHAgMGcgArMjIyKysyMDFBByE3IQMjEyEzAwYWFhcyNjcHBgYjLgI3BOUh+50hAZS87LwCLuyEBAolJRYqFQ4lSyVbbiwHBDq6uvvGBDr8+CM0HgEFA7oLCgJRiVQAAAH/y/5gBA8EUQAvABdADB4pBhELcgYHcgAOcgArKysRMzIwMUMTPgMXHgMHBw4DJy4DJx4CFx4CFxY+Ajc3NjYmJicmDgIHAzWqEFSGuHR3nFYbCwIMRXWocGiGSyEBDRwcDwMpWk1HaEYoCQIFAhtLRkNhQScIqP5gA+JpwJNTAwNlpclmFWK+m1oDA12VsVcKFBQJQ3VIAwI7ZHo8FTKBeFADAkJsejb8LAABADb+iQPjBFEALQAOtRsJBQAHcgArzDMvMDFBHgIHIzYmJicmDgIHBwYWFhceAgcOAgcnPgI3NiYmJy4CNzc+AwJreapVBN4EH0pASGlIKggECi1oUD50SgQDS2ozeBgzJgUEGS0XgLBUDQQMVo6+BE4CabZ3OmA9AgNAbH48I1WBWxsWMVhQQnplJGgYOD8mHCQUCCqIyI0jbceaVwAAAwA3/+kErwRCABgALgAyABNACSoGMgZyHxQLcgArMisyMjAxUzc+AxceAhceAgcHDgMnLgM3BwYeAhcWPgI3NzYuAicmDgIBByE3QQMNWZHCdx0zNSFRaS8HAwtaj71vc6RlJvgDBQUkUUdJa0gpCAIGBiNPQ0hsSywDeCL90yICChdsx5pUBg8xMw8njaxWF2u8j04CAluawH8XNnlqRQMCQmyBPRc0c2ZCAgI7Z3wB28DAAAACAGz/7AQkBDoAAwAVABVACgUKEQIDBnIRC3IAKysyETMyMDFBByE3ITMDBhYWFxY2NxcGBicuAjcEJCH8aSEBSuuEAwQeIhkuFxIoVS9fbSkIBDq+vvzwHTYkAQENB7IVEgECWpJXAAEAV//nA+4EPAAeABNACRAHGQAGchkLcgArKxEzMjAxUzMDBgYWFhcWPgI3NgInFxYWBgcOAycuAzfP620EARIyL0lvTS4IEwog4BoVAwsPUorEfmOJUh4JBDr9ZyJTTTQBBE9+jDqAAQZ9AlGsr1Vx1qphAwJGep9bAAABADH+IgVeBEUALwAZQAwrBQUZGAZyIg8LcgAALysyKzIyETMwMUETPgIXHgMHDgMnLgM3PgI3Fw4CBwYeAhcWNjY3Ni4CJwYGBwMBmt0JU4JQbalyMQsQgcr7iondmUMQDU5+V4w1VDoMDyBXi1t71I0PBggoUD4eIQjj/iIFHE92QgECWZa+Z5DbkkkCAlGZ24xqvqA+kjJ2hUhak2k6AgJZr381c2RDBQkWH/rdAAIAP/4lBV8EPAAeACIAFUAKIQcZC3IgEAAGcgArMjIrMi8wMVMzAwYeAhcWPgI3NiYnFx4CBw4DJy4DNwEzASOi7FIMGEqCX2OrhFYQExMj2x8bAgoTfcT9ko3bkDsRAlTr/vLsBDr+EliXcUACAjhtnWJ7/ncCTqaoU5PlnE8CAlWf4o8B6fnrAAIAUv/nBgQEPQAeAD8AGUAMARcKCik2HwZyNgtyACsrETMzETMyMDFBFx4CBw4DJy4DNxMzAwYGFhYXFj4CNzYCJRcGAgcGBh4CFxY+AjcTMwMOAycuBDc+AgTe3SMiBAsMQHGte2d9PQwKM6w0BQMUOjlEWjUcBxEX/CrwQ4IWBQkBFzYwPlU2HgY1qzMNO2WabF1/TSMDCQw7WQQ9A1Grr1Zn07BoAwNjm7NSATf+uidoY0MCA1aCiDGCAQd5AX3+/44eX2ldPgIEO2FvMAFG/slauZpcAwJJeJWgS2G1qQABAFL/6ASOBcoAOAAdQA0dHhc2BAQNIxcLci0NAC8zKzIROS8zEMwyMDFBBwYGJy4CNzc+AhceAwcDDgInLgM3EzcDBhYWFxY2NjcTNjYmJiciBgYHBwYWFhcyNgSOBzh1O5jyhQwBC2eqcFV3SBoIZxOI25Bim2csCy7kLgkgV0xOaDoLZwMBDiQiLjsgBgEIRotiOXQDIMYSFQEBgeeeFGusZAMCQ2+NTf2GidZ4AwJLf6hgASEB/t1EeE4CA059RAKLGzs0IwIvSikWYY1NAhIAAAMAbgAABRcFyAADABYAKQAeQA4QCQkfJgNyGhgWAwMCEgA/MxEzMzMrMjIRMzAxQQMjEzcBPgIXMhYXByYmIyIGBgcBJwMTBwcDLgInJgYHJzY2Mx4CAr559Hh4AR4fUm5LJUYjOA0bDRwqIw7+Y6gQewWbrwYWIBYPHA8QHj8hQ18+Arf9SQK3NQIBPmQ5AhANuwIFFSQV/U8BAvj939cBArEUIBMBAQQDwQwMATdeAAADAFT/5waFBD0AAwAkAEUAIUAQJgUDHA8vPAtyPA8CAwZyDwAvKzIROSsyETMRMzMwMUEHITclFx4CBw4EJy4DNzczBwYGFhYXFj4DNzYCJRcGAgcOAhYWFxY+Ajc3MwcOAycuBDc+AgaFIPn5HwRJ3CQiAwoKKUZnkWBngD8OCiKsIwUCFz06NEkwHxAFERj8RfBDgxYDCwISLyw/VzgfCCKsIg08aJ1sXHlGHwEIDTtZBDqysgMDUKyvVk+nm3tGAwJim7NU1OMpaWNCAQE6X21mJIIBB3kBff7/jhpdaWBAAwY7YnAw49RcuZpaAgNMepedR2G1qQAAAwCU/+4FgAWwABsAHwAjACFAER8jGAUFDiIjHghyIwJyDglyACsrKxEzEjkvMxEzMDFBNz4CFx4CBw4DBzc+Azc2JiYnJgYGEwMjEyEHITcCMhA5en09itZxDAtloMpvEUFuVDYICTBqTj96eLX99PwC1iP7tCMCbswUHxABAmbGknmtbjgCvwEhQWNCT248AQIRHgMu+lAFsMjIAAACAGH/6QUNBccAAwAsAB1ADgMCAgkdGRQDcikECQlyACvMMyvMMxI5LzMwMUEHITcBNwYGBCcuAzc3PgMXHgIXIy4CJyYOAgcHBgYeAhcWNjYDaSP9viMCkPIZrf78m5DCbiMQEhRprOuWmdJwBfMCLmteZ5VkPA0RCAQTNGFNZJBdA0DHx/6ZApvhdgMDd8XzfXeI+cVvAwOA4JNXhk8DBFaRr1Z7OoN/aUICA0aIAAP/xv//B+4FsAARABUALgAnQBMkISEJLhYWAAoJCHIUFRUjAAJyACsyMhEzKzISOS8zETMRMzAxQTMDDgQnIzc3PgQ3AQchNwEFHgIHDgMnIRMzAwU+Ajc2JiYnJQHu9J8UM0x3rnxJGiNTcUgsHAsDXST9YCMCsgFUhtJyDApkoMds/eb99dsBC1OMWwsKLWNK/o8FsP0tY9C9llgBxgIGVoScmj8Ck8jI/e4BA27JjHOweD0BBbD7FwIBQ3xVSHBBAwEAAAMAK///B/QFsAADAAcAIAAjQBEIICADAgIGFQcCchYTEwYIcgArMhEzKzIROS8zMy8zMDFBByE3EwMjEwEFHgIHDgMnIRMzAwU+Ajc2JiYnJQRdI/0WI6r99f0DrgFUgtR0Cwlln8dq/eb89dkBCVGLXQsKMWVH/pADQcbGAm/6UAWw/dQBBGbBi3KudDoBBbD7GwEBPXVTR2g6AwEAAwCdAAAFiwWwABUAGQAdAB1ADhkBGAYRERgcHQJyGAhyACsrMhE5LzMRMzIwMWEjEzYmJicmDgIHNz4DFx4CBwEDIxMhByE3BS/0TAokZ1gyYWNgLxQtXl9hMJHXaxH9pv32/QLVI/vBIwHGVnQ8AgEIDhYOyg4WDAYBAmfNmgPs+lAFsMjIAAIAIv6ZBXoFsAAHAAsAF0ALCQYBAnILAwMACHIAKzISOSsyLzAxcxMzAyETMwMlAyMTIv312gJw2/X9/nhf9V8FsPsXBOn6ULv93gIiAAIAI///BKQFsAAFAB4AIUAQBh4eBAITEwUCchQREQQIcgArMhEzKzIRMxE5LzMwMUEHIQMjExMFHgIHDgMnIRMzAwUyNjY3NiYmJyUEpCP9cNr0/EgBVYPUdQwJZKDGa/3m/PbbAQpSi1sMCTBlR/6OBbDI+xgFsP3RAQNkwIxzrXQ6AQWw+xcBPnZVSWc3AwEABv+I/poFkAWwAAMABwALAA8AEwAlACdAEwsRESADAwceCHIODw8QFAJyCQUALzMrMjIRMysyMhEzMhEzMDFlByE3MwMjEyEDIxMTByE3IQMjEyEzAw4FByM3Fz4DNwSnI/vuIz1h6VYFhm/oYWgj/XMjA0f89P39eviKES9AUmiCTpEdPkxtTDMTx8fH/dMCLf3UAiwE6cjI+lAFsP2zTKmupJBtH8cCO5uwu1wABf+kAAAH6AWwAAUACQANABMAFwAnQBMWEQkDAwAADw8UDAgIcg4KAQJyACsyMisyMjIvMxEzETMzMzAxQQEhEyEHJwEhAQEDIxMhASE3MwEDAzcBAkn+ggEd7gEISNX+Iv7BAnwCsfz0/QQK/Wr+rATxAb3Z/ssBVwJ2Azr9n9kV/XUDPwJx+lAFsPzG2QJh+lACoKL8vgACAB//6gSkBcYAHgA+ACNAEQAgAgI+PhU0MCoJcg8LFQNyACsyzCvMMxI5LzMSOTkwMUEnNxcyNjY3NiYmJyYGBgcHPgMXHgMHDgMlFx4DBw4DJy4DNxcGFhYXFjY2NzYuAicnApPTGZxLg1cKCTttQUR4VQ30CWOauV9fq4RGCAdjmbH+6LZWpH9FBwdsqctmYaqARgPzAzxpREyRaAsHGTxYN7cCuQGPATBlUEdcLgEBMF9FAWebZjMBAjFjmGphjFssWAECKVeLZHKmazICAjhqnmcBRmM2AwEzalE7VTccAgEAAAEAJQAABXwFsAAJABdACwUABgIIAnIEBghyACsyKzISOTkwMUEBMwMjEwEjEzMBYgMe/P31tPzj/P30AagECPpQBAn79wWwAAP/xf/+BX4FsAADAAcAGQAZQAwSBREIcgIDAwQIAnIAKzIyETMrMjIwMUEHITchAyMTITMDDgQnIzc3PgQ3BMMj/VojA2H99f39Y/WfFTJNdq97SRojVHFIKxsNBbDIyPpQBbD9LWLQv5hWAscCBlWEm5pAAAACAJn/6AVWBbAAEwAYABpADhcWABUECAIYAnIPCAlyACsyKzISFzkwMUEBIQEOAyMiJic3FhYzMjY2NwMTFwcBAjgCBgEY/UojUGF5TRs3GxYSKBQ0SzgXAdoYt/7GAgUDq/tXP2lOKQQDxwMEJkMrBG38z/sIBDQAAAMAVf/EBgwF7AAVACkALQAbQAwfDAwrFgAAKyoDcisALysROS8zETkvMzAxQQUeAwcOAyMlLgM3PgMXJgYGBwYeAhcFMjY2NzYuAicTASMBAv8BFXvBgjoNDXG15oP+63zBgjoNDXG053x5t28PCRRAb1EBGHi1cA4KEz9tUyH+7+wBEQUoAgNeoNN3g9ygWQICW5/QeITdpFrIAWu4dkmGakADAmi2c0qIbEIDAY752AYoAAIAIf6hBXkFsAAFAA0AGUAMDAcCcgUEBAkGCHIBAC8rMjIRMysyMDFlAyMTIzcFEzMDIRMzAwVOcuM+fyP8Rv312gJx2vX8yf3YAV/JyQWw+xcE6fpQAAACAMQAAAVdBbAAFQAZABdACxcGEREYAAJyGAhyACsrETkvMzIwMUEzAwYWFhcWPgI3Bw4DJy4CNwEzAyMBIfRKCiRmWDFiYWAvEy5dYWAwktdqEQOT9f31BbD+PFd0PAIBBw8WDckPFg0GAQJozpoBw/pQAAEAKAAAB2UFsAALABlADAUJBgICCwACcgsIcgArKxEzETMyMjAxQTMDIRMzAyETMwMhASX12gGz2vXbAa/a9f35wAWw+xcE6fsXBOn6UAAAAgAo/qEHZQWwAAUAEQAdQA4MBQgIBBEIcg8LBgJyAQAvKzIyKzIyETMzMDFlAyMTIzcBMwMhEzMDIRMzAyEHMXDZPX8h+1712gGz2vXbAa/a9f35wL/94gFfvwTx+xcE6fsXBOn6UAACAIf//wWbBbAAAwAcAB1ADhESDwQcHA8AAQJyDwhyACsrMhE5LzMRMzIwMVM3IQcTBR4CBw4DJyETMwMFPgI3NiYmJyWHIgHeIRQBVIPVdQwJZKDGbP3m/fXbAQpTilsMCS9mRv6OBPDAwP6RAQNkwIxzrXQ6AQWw+xcCAT92VElnNwMBAAIALP//BrkFsAAYABwAHUAOGhkOCwAYGAsMAnILCHIAKysROS8zETMyMzAxQQUeAgcOAychEzMDBTI2Njc2JiYnJQEDIxMBcAFVg9R0Cwpkn8Zs/eb89toBCVOKXAsKMGZH/o8FbP30/AOBAQNkwIxzrXQ6AQWw+xcBPnZVSWc3AwEC9vpQBbAAAAEAJP//BIgFsAAYABlADA4LABgYCwwCcgsIcgArKxE5LzMRMzAxQQUeAgcOAychEzMDBTI2Njc2JiYnJQFnAVWD1HUMCWSgxmv95vz22wEKUotbDAkwZUf+jgOBAQNkwIxzrXQ6AQWw+xcBPnZVSWc3AwEAAgBI/+kE8gXHAAMALAAdQA4DAgIeCQUpCXIZFR4DcgArMswrzDMSOS8zMDFBByE3ATMeAhcWPgI3NzY2LgInJgYGBwc2NiQXHgMHBw4DJy4CBFcj/bAj/kHyAzJvX2aSYjkNEQgDFTdkTWSOWhbzG6oBAJyQxHIkEBITaKjpk5jYdgM7yMj+oFmDSwMDV5KvVXs6hH9oQAMDS4pcAZrkegMCeMbzfniG+MRwAwN63QAEADP/6QcCBccAAwAHAB0AMwAjQBMvBwYGDiQZAwJyAghyGQNyDglyACsrKysRMxI5LzMyMDFBAyMTAQchNwUHBgIGBicuAzc3NhI2NhceAwU3Ni4CJyYOAgcHBh4CFxY+AgIl/fX9AaQY/pUXBYoLE2ut8JmTx3EmEAsUbK7wmJPHcST+8AsJAi5tY2iZaD0MCwoCLm5jaZhnPQWw+lAFsP1xwMAfT4r+/8t0AwN8zPmAT4kBAMt0AwN7zPjSU0urmWIEBFmWtFdTSqyaZQMEWpa0AAL/pwAABMwFsQAWABoAH0APFxYWAAAJDAwZCHIOCQJyACsyKzIREjkvMxI5MDFBIScmJjc+AjMFAyMTJwYGBwYWFhcFBQEhAQOF/oZYiZENDKT8kQHp/Pba2YCzEAknYUwBRP7P/kX+7AG/AiIqOsubnMhhAfpQBOgCAYWDSnBBAwFQ/W4CkgADAEL/6ARWBhUAFgAvAEQAGUAMOiIwFxciAAFyIgtyACsrETkvMxEzMDFBNw4DBw4DDwI3NhI2Njc+AgMeAwcHDgMnLgM3Nz4CNz4CFyYGBgcHBh4CFxY+Ajc3Ni4CA5q8BkBri1F2nWIzCwm9CRBOidGSMWlR92mWXiYIAgxXj79zdKVnKggCBCEoDTeRtzpafUgKAgYLKFNER2pJKwcCBQ0sUwYUAVx2SCoPFnChxW1EEUSHAQfhnRwKGDj+IwNTi69gFm7AkVADAlqZwGkWGi8tFlucXcACWJBQFjdyYT4BAjlheD0WNmxXNwAAAgAj//8EDwQ6ABsAMwAtQBYCARsrKSkoASgBKA8NEAZyHh0dDwpyACsyETMrMhE5OS8vETMSOTkRMzAxQSE3BT4CNzYuAiMnAyMTBR4DBw4DBwMhNwU+Ajc2JiYnJTcFFx4CBw4DAmj+phwBCC9lTAkGGzNAH8yb6rsBm0aReEcEBEJoeTqN/lh+ATAxXkMJByZJKf7mIAE0NUZ6SgIEUoWeAc+qAQITOTgnMRoLAfyEBDoBARxAcFZFXzwhBf3wvgEBGT43MTgYAQGqAUIJOmlOXHtHHwAAAQAWAAADiAQ6AAUADrYCBQZyBApyACsrMjAxQQchAyMTA4gi/jab67wEOsD8hgQ6AAAD/4X+vgRjBDoADwAVAB0AIUAQHRgJFhYbEwgKchUQEAAGcgArMhEzKzIyMhEzLzMwMUEzAw4DByM3Nz4DNxMhAyMTIQEhAyMTIQMjAYrsThRHcaRyUBofOllALA+KApy865n+T/48BHha6zj9YTjvBDr+hG3awpIjvQE3cnuLUAF9+8YDbv1S/f4BQv6+AAAF/7AAAAaBBDoABQAJAA0AEwAXADBAFxUQEAAWEREJAwMGAAAUBwwSEw0NAgZyACsyETM/MzM5LzMzETMzETMRMxEzMDFBASETMwcnASEBAQMjEyEBITczAQMDNwEBv/7MAROr1kSl/qf+0wHlAl+867wDeP3u/tkHwwFAnMDDARQBtQKF/lbbGv4xAl8B2/vGBDr9e9sBqvvGAeGB/Z4AAgAX/+oDvQRQAB0AOwAjQBEAHwICOzsUMi4pC3IPCxQHcgArMswrzDMSOS8zEjk5MDFBJzcXPgI3NiYmJyYGBgcHPgIXHgMHDgMlFx4DBw4DJy4CNxcGFhYXMjY2NzYmJicnAirYFpYxVzwHBiRFKjBXPwvsCYjFaEeLbz8EBEx1if70u0J/ZToDBVeKo05ps20C6AEvUTIzYEMIByNKL7ECBAF6AQEcPjUvPB4BASBAMAFxkUYCASNJdFNLakIfRwEBHT5oTVuAUCQCAk2WcAE0RSMBIkg2NT4bAQEAAQAXAAAERQQ6AAkAF0ALBQAGAggGcgQGCnIAKzIrMhI5OTAxQQEzAyMTASMTMwFCAhDzvOx9/e/yvOsBbwLL+8YCy/01BDoAAwAiAAAEfgQ6AAMACQANAB9ADwwHBwsGBgIJAwZyCgIKcgArMisyETkvMzMRMzAxQQMjEyEBITczAQMDNwEByLvrvAOg/bb+7ge6AWaa8MYBUQQ6+8YEOv112gGx+8YB4YH9ngAAA/+8//8ERQQ6AAMABwAZABlADBIFEQpyAgMDBAgGcgArMjIRMysyMjAxQQchNyEDIxMhMwMOBCcjNzc+BDcDjyL9/iICuLzrvP3463cPKT5eh15RFyM7UTQhEwgEOsDA+8YEOv3qTZ2Obz4BxQIEPVxtbS0AAAMAIwAABZsEOgAGAAoADgAbQA0ACQwGAQoGcgsDCQpyACsyMisyMjISOTAxQQEzASMDMyMDIxMBEzMDAq0Bwtb9kaH3wje86rsDFbzsvAEmAxT7xgQ6+8YEOvvGBDr7xgAAAwAXAAAEQwQ6AAMABwALABtADQkGCAMCAgYHBnIGCnIAKysROS8zMhEzMDFBByE3EwMjEyEDIxMDTCH93iKTvOu8A3C87LwCdr6+AcT7xgQ6+8YEOgADABcAAARFBDoAAwAHAAsAGUAMCQYIAgMDBwZyBgpyACsrMhEzMhEzMDFBByE3MwMjEyEDIxMDjSH9+CI4vOu8A3K87bwEOsDA+8YEOvvGBDoAAgBUAAAEDAQ6AAMABwAQtwMGBwZyAgpyACsrMjIwMUEDIxMhByE3ArS87LwCRCH8aSEEOvvGBDq+vgAABQA5/mAFUgYAABYAKwBCAFYAWgAnQBUnBgZJHhERUjM+C3IzB3JYAHJXDnIAKysrKxEzMxEzMjIRMzAxQQcOAycuAzcTPgMXHgQHNzY2LgInJgYGBwMeAjMWPgIlNz4EFx4DBwMOAycuAzcHBgYWFhcWNjY3Ey4CJyYOAhMBMwEFSgIMPm2hb09zSyIDMA1AZYlXWXdHIAT0AgQFCB8/NjpXPRFKBypHMUVhQCT76wIKKkhoj1xRckUdAi4NQGSHVmmDRBH4AgUCGEE/OFY+E0cFJEQ2SmM+IHEBU+z+rQIWFV6/nl8DA0NwiUgBO02XekcCAkp6lJpaFiRgZVY3AgMsUDH+VC4+IwJAZ3ksFUykmXlGAwJMepFI/tNMk3VFAwNim7VrFixwZ0QCAiVHMAGgMEwuAQFMeoj8HQeg+GAAAAIAF/6/BEUEOgAHAA0AG0ANBgEDDQwMAApyAQZyCQAvKysyETMyETMwMXMTMwMhEzMDNwMjEyM3F7zrmgGamu28sGzYOH4hBDr8hgN6+8a//gABQb8AAgBtAAAEGAQ7AAMAFwAXQAsPFAkJAQAGcgEKcgArKxE5LzMyMDFBAyMTEwcOAicuAjcTMwMGFhYXFjY2BBi77LwuEjJucTh+ulsONes1CRtNRjpxbgQ6+8YEOv4hwRcdDgEBYLaDAUj+t0JfNQIBESAAAQAXAAAGLQQ6AAsAGUAMBQkGAgILAAZyCwpyACsrETMRMzIyMDFTMwMhEzMDIRMzAyHT65oBTJrsmgFLm+u8+qYEOvyGA3r8hgN6+8YAAgAR/r8GQgQ6AAUAEQAdQA4MBQgIBBEKcg8LBgZyAQAvKzIyKzIyETMzMDFlAyMTIzcBMwMhEzMDIRMzAyEGQmvZOH4h+/TrmwFMm+yaAUua7Lz6pr/+AAFBvwN7/IYDevyGA3r7xgACAFH//wSrBDoAAwAcAB1ADhESDxwEBA8CAwZyDwpyACsrMhE5LzMRMzIwMUEHITcBBR4CBw4DJyETMwMXPgI3NiYmJyUCbiL+BSIBkQEna7FkCAZThqVX/iC87ZvYOmNECQcgRzL+vAQ6wMD+qAEEUp10YI5fLgEEOvyFAQEpUT00SyoCAQAAAgAj//8F+AQ6ABgAHAAdQA4aGQ4LGAAACwwGcgsKcgArKxE5LzMRMzIzMDFBBR4CBw4DJyETMwMXPgI3NiYmJyUBAyMTAT0BJ2yxZAgGU4alV/4hu+ua2TpjRAkHH0gy/rwE3LzsvALiAQNTnXRfj18uAQQ6/IUBASlRPTRLKgIBAhj7xgQ6AAEAI///A+UEOgAYABlADA4LGAAACwwGcgsKcgArKxE5LzMRMzAxQQUeAgcOAychEzMDFz4CNzYmJiclAT0BJ2yxZAgGU4alV/4hu+ua2TpjRAkHH0gy/rwC4gEDU510X49fLgEEOvyFAQEpUT00SyoCAQAAAgAg/+gDzARRACcAKwAdQA4rKioJHRkUC3IEAAkHcgArMswrzDMSOS8zMDFBJgYGBwc+AhceAwcHDgMnLgI3FwYWFhcWPgI3NzYuAhMHITcCKDpePwveCofMcHGgYSUKBA5Vjb92datZBd8EIUs8SGpIKQgEBgMhTdMd/lUdA48CMFU4AXSsXgMCXJq/ZiRtx5lYAwJst3QBN2E+AwJAa387IzR3bEf+6KOjAAQAJf/oBgkEUgADAAcAHQAzACNAEyQDAgIZLw4HBnIGCnIOB3IZC3IAKysrKxEzEjkvMzIwMUEHITcBAyMTATc+AxceAwcHDgMnLgM3BwYeAhcWPgI3NzYuAicmDgIC7CL9zCEBFbzrvAFJAw5YkcR5dKZmKAsDDVqSxHhypWco+QIGBSZSRkpwTC0JAwYGJ1JHS25MLAKFwMABtfvGBDr90Bdwy51ZAwNcmsJpGHDJm1cDA1uYwIAXNnlqRQICP2yBPxc2e2xGAgJAboMAAv+9AAAEGAQ7AAMAHQAdQA4BEhITEwMJBAZyBwMKcgArMisyEjkvMxI5MDFBIQEhAQUDIxMnDgIHBhYWFwUHJS4DNz4DAUIBAv56/v8CiQHSvOubzDVjRwkHIkQrAUMf/tlJiWk6BQVVh6QCEf3vBDsB+8YDfAEBJks4L0AjAgGwAQErUXtRXYZXKQAEAA3+RwPxBgAAEQAVACwAMAAdQBAwLygcB3IVAHIUCnINBg9yACsyKysrMswyMDFBMwMOAiciJic3FhYzMjY2NwMBIwETIz4DFx4DBwMjEzYmJicmDgIBByE3AtjtVw5hp3YjQyIgGDMZNUMkB37+9esBCx9KDUV2pmxad0QVCHTtdQcUQ0FHa0suAakd/XMdAc799W6sYgEKCbwICThXLQY++gAGAPxFXruZWgMCQnGRUf1JAro7XjkCATdgdwLVpqYAAgA5/+kD7ARRAAMAKwAbQA0EDQMCAg0hGAdyDQtyACsrMhE5LzMRMzAxQQchNwEWNjY3Nw4CJy4DNzc+AxceAgcjNCYmJyYOAgcHBh4CApQc/jUcARQ7YkMO3QyKznFzomEkCgQOVY3Ad3mrWgHdI08+SmtHKAkDBgEgTgJoo6P+QwIvVjgBdK1dAgNamMFnJHDGmVYDAmu2dTlhPQIDP2mAPiM0eWpGAAAD/7j//wZJBDoAEQAVAC4AJUASFi4uACQhIQoJCnIUFRUjAAZyACsyMhEzKzIyETMROS8zMDFBMwMOBCcjNzc+BDcBByE3AQUeAgcOAychEzMDFz4CNzYmJiclAVDqdw8oPl6HXlMZIjtRNCEUCAKKIv4NIgIZASZns2kHBVWGpFX+Ibzsm9g3ZEQJCCZKLv69BDr96k2djm8+AcUCBDxdbW0tAc/AwP6HAQNLlXJeilkrAQQ6/IQBASdNOzJBHwIBAAMAF///BloEOgADAAcAIAAlQBIVFhMTBggDIAMCAgYHBnIGCnIAKysROS8zMxEzETMRMzIwMUEHITcTAyMTAQUeAgcOAychEzMDFz4CNzYmJiclA1Mi/d8hjbzrvALeASdnsmkHBlSGpFT+ILzsm9g4Y0UICCZJL/69Apy+vgGe+8YEOv6HAQNKlXNdilorAQQ6/IQBASdNOzJBHwIBAAADAA0AAAPyBgAAAwAaAB4AGUANHh0WCgdyAwByEQIKcgArMisrMswyMDFBASMBEyM+AxceAwcDIxM2JiYnJg4CAQchNwID/vXrAQsfSg1FdqZtWXdEFgl07XYGFERBRmtLLgG7Hv1zHgYA+gAGAPxFXruZWgMCQnGRUf1JAro7XjkBAjhgdgLep6cAAAIAF/6bBEUEOgADAAsAF0ALAAYGCwpyCQQGcgIALysyKzISOTAxZTMDIwMzAyETMwMhAX3sYOtL65oBmprtvPyOwP3bBZ/8hgN6+8YAAAIAX//mBzAFsAAYADAAG0AOLB8JchQHCXImGg4AAnIAKzIyMisyKzIwMUEzAw4DJy4DNxMzAwYeAhcWNjY3ATMDDgInLgM3EzMDBh4CFxY2NjcDqMivDUp3pWhimGMqC671rQUGID81TW1ACwNB9a4ThtmNYYtWIAqux60GCSNENUxoPQoFsPwBYad+RAICRnukYAQA+/8sV0ouAgNFdkYEAPwBiNBzAwNLfqFaBAD7/y1ZSC0CA0Z3RAAAAgBH/+cGKgQ6ABgAMQAbQA4sHwtyFAcLciYaDgAGcgArMjIyKzIrMjAxQTMDDgMnLgM3EzMDBh4CFxY2NjcBMwMOAicuAzcTMwMGHgIXFj4CNwMBwHIMQmyVYVuGVSIJcuxyBAIWMi1EXTYJAq/scxB1wYNafUkbCXLAcQQDGzgvMkgxHQYEOv1YWZt2QAIDQ3OXVwKp/VYiT0UuAwNCbDwCqv1YfMJtBAJHd5VRAqn9ViZQRCsCAihEUyoAAAIAIf/+A+cGFwAXABsAIUAQDQoAFxcKGhsbCgsBcgoKcgArKxE5LzMROS8zETMwMUEFHgIHDgInIQEzAxc+Ajc2JiYnJQEHITcBQgEnbrBgCAqI03n+IAEP7O7YPmZBCAgdRTb+vQHaHf1YHQMAAQRYo3WBsVsCBhf6qAEBMFk/NVEwAwECoKenAAMAK//qBuQFyQADACwAMAAgQBEDAgIvMAJyLwgdFANyKQkJcgArMisyPysSOS8zMDFBByE3ATcGBgQnLgM3Nz4DFx4CFycuAicmDgIHBwYGHgIXFjY2AQMjEwUsIfwvIgQz8Bit/vydjsJuIxASFGqr7JWY0nAG9AEtbF5mlWQ7DBIHBRI0YUxkkF38pP30/QNOwMD+jAKc4HYDA3jE8315hvrEcAMDgd+UAVaGTwMDVZCvVnw5g35pQQIER4UEM/pQBbAAAAMAGf/pBaQEUQADACsALwAkQBMDAgIuLwZyLgohHRgHcggEDQtyACsyzCvMMz8rEjkvMzAxQQchNwEWNjY3Nw4CJy4DNzc+AxceAgcjNCYmJyYOAgcHBh4CAQMjEwRkHfywHQKAO2JDDt0Mis5wdKJhJAsDDVeMwXd4rFoC3CNPPkprRykIBAYCIE3+c7zsvAJxp6f+OgIvVjgBdaxdAgNamcBnJHDGmVYDA2q2dTlhPgEDP2mAPiM0eWpGA477xgQ6AAAE/6wAAASJBbAABAAJAA0AEQAkQBERDQwMAgAGBgcDAnIPBQUCCAA/MxEzKzIyETMROS8zMzAxQQEhATMTAzczEwMHITcFAyMTA0H9c/74AvSPZMo6kPagIP0rIAHQXtheBRb66gWw+lAFOHj6UAJmuLhK/eQCHAAE/50AAAO6BDoABAAJAA0AEQAeQA4RDQwMAQcDBnIQBQUBCgA/MxEzKzISOS8zMzAxQQEjATMTAwMzEwMHITcFAyMTAg/+ifsCWLoljBiq4HEe/XUeAY9EtUQCwv0+BDr7xgLYAWL7xgHFqalA/nsBhQAGAD4AAAaTBbAAAwAIAA0AEQAVABkANEAaCRQUBgYYFREREBADAgIYCBYCcgQKCgsHAnIAKzIyETMrPzkvMzMRMxEzETMRMxEzMDFBByE3AQEhATMTAzczEwMHITcFAyMTAQMjEwNwIf3PIAQN/XP+9wL1j2PJOpD2oCH9KyEBz17YXv4b/fX9Ama3twKx+ukFsPpQBTh4+lACZri4Sv3kAhwDlPpQBbAAAAYALQAABYIEOgADAAgADQARABUAGQAuQBcVEREQEAMCAhgZBnIJFBQGBhgKCwcGcgArMj8zETMRMysSOS8zMxEzETMwMUEHITclASMBMxMDAzMTAwchNwUDIxMBAyMTAvQe/dIeAxL+iPsCWLoljBiq4HEe/XYeAY5DtUP+dbzsvAHFqKj9/T4EOvvGAtkBYfvGAcWpqUD+ewGFArX7xgQ6AAUAEgAABl8FsQAWABoAHwAkACgANEAZGRoaJBsfHyMjEygGBhMTARwkAnINJycBCAA/MxEzKzISOS8zETMRMxEzETMRMxEzMDFhIxM+AjMFHgIHAyMTNiYmJyUiBgcBByE3EwEhASMDAQcjAQEDIxMBB/U6FpbwmwHWkM1jEDr1OgoeXVL+K4efFQQ6I/0FI7cCCwEd/XeSogEYMoz+pQJXhfSGAWGgx10BAmPGmP6fAWJRbTkCBHWJBE/Jyf0XAun8lwNq/PtlA2n9Ufz/AwEAAAUAFQAABScEOwAXABsAIAAlACkAMEAXGhsbJSAkJBMpBgYTEwEdJQZyDSgoAQoAPzMRMysyEjkvMxEzETMRMxEzETMwMWEjNz4CMwUeAgcHIzc2JiYnJSIGBgcBByE3EwEhASMDEwcjAQEDIxMBAOsaFIPYkwE1iLZSDxrsGwgOSEz+ylVwQAwDhh79RB20AYABD/4FiGXJK4H+7wH+X+xgrZPDXwIDZcCKrq9EbUMDBDpxUQONq6v9xwI4/VoCp/2vVgKm/ez92gImAAcANwAACJMFsQADAAcAHgAiACcALAAwADxAHiEiIiQsAnInKysbMA4OGxsDAgIFBwJyFS8vCQkFCAA/MxEzETMrEjkvMzMRMxEzETMRMysyMhEzMDFBByE3EwMjEwEjEz4CMwUeAgcDIxM2JiYnJSIGBwEHITcTASEBIwMBByMBAQMjEwUBIvxrIr399f0CB/U5FJfymwHVkc5iETn1OgoeXFP+KoafFQQ6I/0FI7cCDAEc/XaRogEYMoz+pQJYhfaGAyfAwAKJ+lAFsPpQAWChyFwBAmLGmf6fAWJRbTkCBHWJBE/Jyf0XAun8lwNq/PxmA2n9Ufz/AwEAAAcAIwAABygEOwADAAcAHwAjACgALQAxAD5AHiUiIyMtLQcoLCwbMQ4OGxsDAgIGBwZyFTAwCQkGCgA/MxEzETMrEjkvMzMRMxEzETMRMxEzETMRMzMwMUEHITcTAyMTASM3PgIzBR4CBwcjNzYmJiclIgYGBwEHITcTASEBIwMTByMBAQMjEwStIPw9IOC867wCIuwbFIPYkwE1ibZRDxrtHAgOR03+ylVwQAwDhh79Qx60AYABD/4GiGbJKoH+7gH/YOtfAmG1tQHZ+8YEOvvGrZTCXwIDZcCKrq9EbUMDBDpxUQONq6v9xwI4/VoCp/2tVAKm/ez92gImAAP/qf5FBDIHigAXAEAASQArQBQYDQxAQAArLAlFQ0NCSEGARxcAAgA/Mt4azTI5MhEzPzMSOS8zMzMwMUEFHgMHDgMjJzcXMjY2NzYmJiclExceAwcOAyMnBgYHBhYWFwcuAjc+AjMXPgM3Ni4CJycBFzc3FwEjAzUBDwEDWKF9QwYHZZy4WaEYgkmEWQsJNGI9/uEtf1eujE4HCF2VumY4N14IByE7IVZKcT4EBWqlXTg2Z1Q4CQgdQl85mAE/da3PAf7Kk+sFsAECLFuOYmiPWCgBjAEuYk9DVCkCAf4kAQEnVI1obaRtNgEBMzwrPSwQkxtfg1NnfDgCAR48WDo+WDkdAQEE/pybBBD+7QETEAAD/7T+TQPEBh4AGABBAEoAJkARDRkMQUEALUNJRkRCgEgYAAYAPzLeGs0yMjI5LxI5LzMzMzAxUxceAwcOAyMnNxc+Ajc2LgIjJRMXHgMHDgMjJwYGBwYWFhcHLgI3PgIzMzI+Ajc2LgInJxMXNzcVASMDJ83/RZSATAQDYpSjRqkWiTRvUQkGIDpDHv7jRIhAnI5aAwRajqRPMThkCgYdOCBVQms8AwRlnlYyJldPNwgIJ0VQIaH4dazQ/suU6wEEOgEBHUJxVlhyPxkBfQEBGUM9JzEbCgH+vQEBEzdpVV2ATSMBAjA+KjwtEoodYH5MYnY0DyI8Li44HQoBAQRRnJsEEf7uARMQAAMAYf/pBRsFxwAXACgAOQAfQBIMKWoyIGoyMgwAGGoAA3IMCXIAKysrEjkvKyswMUEeBAcHBgIGBicuBDc3NhI2NhcmDgIHBgYHITY2NTYuAgEWPgI3NjY3IQYUBwYeAgMvda52QhENCxNrru+Zda53QhINCxRrr/CLXpBmQhABAwICpgEBBww0a/7iX49lQRECAgH9WQEBBQ01awXEAlKLs8lnT4r+/8t0AwJSi7TJZ1CJAQDLdM8DSX+fUQcMBwYLBkqYgVL7wgNIf59RBgwFBQsGSJaCUgAAAwA0/+gEHQRSABUAIAArAB9AEgshaicbaicnCwAWagAHcgsLcgArKysSOS8rKzAxQR4DBwcOAycuAzc3PgMXJg4CByE2LgIDFj4CNyEGHgICd3OmZSgLAg5ZksR4cqZmKQsCDliSxGxAY0kyDwHvARAsTLs/ZUoyDv4PAhArTgRPA1yawmkYcMmaWAMDW5jAaRdwy51ZwwIvUmg3MmRTNP0cAi9TajcyZVQ0AAIAqAAABWEFxgAOABMAGUANDhIIBRMCcgUDchIIcgArKysRMxEzMDFBAT4CFxcHJw4CBwEjAxMTIwMCWgFdJGKPZi8ZEyg7KxD95b8YghSw4wGGAvxVlVoBAdIBASY8IvuSBbD7xP6MBbAAAAIAdQAABEoEUgASABcAFUALFwZyEhYKcgwFB3IAKzIrMiswMUETPgIXMhYXByYmIw4CBwEjGwIjAwHPvh1af1cfNhsqCxcMHjEmDP55pRxEC5ekAW4BwUqFVAEMDLoDBQEeLxj83wQ6/Sf+nwQ6AAAEAGH/dgUbBi4AAwAHAB8ANwAkQBACAicnAxoDcgcHMzMGDglyACvNMxEzfC8rGM0zETN9LzAxQQMjEwMDIxMBBwYCBgYnLgQ3NzYSNjYXHgQFNzY2LgInJg4CBwcGBh4CFxY+AgOvSrhJJUu4SwL1CxNqrvGYda53QhINCxNsr/CYda52QRL+8gsIAxY3ZU9omGg9DQwHAhU5ZE9pmGc9Bi7+WQGn+vj+UAGwAdxQif7+ynQDA1GLtMlmUYkBAMt0AwJSi7PKuFM8h4JrQwMDWZezWFI8h4NsQwMEWpe0AAQANf+GBB4EtQADAAcAHQAzACRAEAcHJCQGGQtyAgIvLwMOB3IAK80zETN9LysYzTMRM3wvMDFBAyMTEwMjEyU3PgMXHgMHBw4DJy4DNwcGHgIXFj4CNzc2LgInJg4CAvFHqUcISKlI/pkCDlmRxHlzpmYoCwIOWpHEeHOlZin5AwUFJlJGS29MLQkCBwYmU0ZLb0wsBLX+aAGY/HD+YQGf5Rdwy51ZAwNcmsJpGHDJm1cDA1uXwYAXNnlrRAICP2yCPhc2em1GAgJAboMABABj/+cG2QdAABUAIABBAGUAM0AZW04JclQxMSw4CXJCQ0MRCAgbGxYWIiECcgArMjJ8LzMYLzMRMzIRMysyMi8zKzIwMUEzBycuAyMiBgcHJzc2NhceAwEnNjY3NxcHDgIlBw4CBwMGHgIXFjY2NxMzAw4DJy4DNxM+AgU3HgMHAw4DJy4DNxMzAwYeAhcWPgI3EzYuAgXcIAgZPHBvbjgzRAoCfgIJgms9cG5y/k5RHTMKEp4NBzVK/roWT2g7DFQFAx0/OE1tPwtBxkANSnmkZ2WYYCYKVRSH3AMSEGSVXyYLVQ9Qgq9sYoxYIgpBxj8GCiZGNjtWPCMIVQYDG0AGwIQBAycwJTozEwEmanMCASYxJf5TPSFGLF8BZS1MO4nIAU99R/3tLF1SNQIERndGAYb+emCnfUUDAkyCqmACEpHUdMnLBU2AqWD97maugkcDAkp+oVsBhv55L1pILAICLlJjMwITL1xOMgAABABM/+cFwwXnABUAIABCAGYAM0AZXE8LclUyMiw5C3JDREQRCAgbGxYWIiEGcgArMjJ8LzMYLzMRMzIRMysyMi8zKzIwMUE3BycuAyMiBgcHJzc2NhceAwEnNjY3NxcHDgIlBw4CBwcGBhYWFxY+Ajc3MwcOAycuAzc3PgIFNx4DBwcOAycuAzc3MwcGHgIXFj4CNzc2NCYmBTciCB07cWxuODRFCAJ/AgiEaz1wbXL+T04dMwkSnw4HN0r+5xVGWjIKIgQBFDAuMUk0Hwceth4LPWWQXV2FUSAJIhJ6ygKLEFyIVSIJIgxEcZtjWHlIGQgfth0FBxw3LTJGLRoFIwQWNgVnAYUBAicxJTozEgEla3ICASYxJf5SPSBHLF4BZS5KO3vAAUhxPvIhU000AgMoRFQqxsVUmnlDAwJJepxW8YbDbMDBBEh3mlnxW6F6RAMDSXiVTsXGJU9GLAEDL0tYKPQoUkYvAAADAF//5gcwBxAABwAgADgAK0AVNCcJcgUCAQEHBy0hCAgVAnIcDwlyACsyKzIRMzMzfC8zGC8zMysyMDFBITchByEHIwczAw4DJy4DNxMzAwYeAhcWNjY3ATMDDgInLgM3EzMDBh4CFxY2NjcD8v7AFQM6FP6vF6k0yK8NSnelZ2OYYyoLrvWtBQYgQDRNbUALA0H1rhOG2Y1hi1YgCq7HrQYJI0Q1TGg9CgaYeHh+avwBYad+RAIBR3ukYAQA+/8sWEkuAgNFdkYEAPwBiNBzAwJLfqJaBAD7/y1ZSC0CA0d2RAADAEf/5wYqBbEABwAgADkAK0AVNCcLcgUCAQEHBy0hCAgVBnIcDwtyACsyKzIRMzMzfC8zGC8zMysyMDFBITchByEHIwczAw4DJy4DNxMzAwYeAhcWNjY3ATMDDgInLgM3EzMDBh4CFxY+AjcDSf7QFQMYEf69F6kxwHIMQWyWYFyHVSEIc+xyBAIWMi1EXTYJAq/scxB1wYNafUoaCXLAcQQDGzcwMUkxHQYFOXh4f4D9WFmcdUEDAkRzl1cCqf1WIk9FLgIDQWw8Aqr9WHzCbQMCR3eWUQKp/VYmUEMrAgInQ1QqAAIAWP6OBNwFyAAhACUAGUAMFhINA3IlAAAkAQlyACvNMxEzK8wzMDFlBy4ENxM+AxceAgcjNiYmJyYOAgcDBh4DFwMjEwI0EGWccUMXDCoTZ6LahZjUZwj0BidoXFWCXDkLLAgBFzRX4F/0YLPJBUZ2mLBdARB736xiAwJ73ZdUhVACAkh6lEn+7TVxaFU1Bf3cAiQAAAIARP6LA+8EUQAfACMAGUAMFREMB3IgAAAiAQtyACvNMxEzK8wzMDFlBy4DNzc+AxceAgcnNiYmJyYOAgcHBh4CFwMjEwHlEm+eXyMLAw1Wjb91d6pYBd0DIEs8SGpIKwgFBgIgTtpf7GCtwwddmL1mI23HmlcDA2u3cwE2YT8CA0BrfzwjN3ZmRAf94AIgAAEAOwAABLgFPgATAAixDwUALy8wMUEBFwcnAyMBJzcXASc3FxMzARcHAzz+8fxT/em1ASb7Uv4BDf1U/PCy/tX/VgMs/ouscqn+vgGWq3KqAXWrdKoBS/5hq3EAAfzwBKX/4AX8AAcAFbcGBgQEAQICAQAvMy8RMxEzfC8wMUMhByc3ITcXRv3zF6YqAg4SpgUjfgHqbAEAAf0QBRb/8gYUABUAErYBFBQPBoALAC8azDIzETMwMUEXFj4CFxYWBwcnNzYmJyYOAgcj/RoZQXp1eEBkcwUDfQIDJjE9d3h7PyUFmgEBJjElAQFvZicBFC42AgIjMScBAAAB/jEFGP8CBmIABQAKsgCAAgAvGs0wMUEnNzMHF/62hRa0HyYFGM97pG0AAAH+PQUa/1cGYgAFAAqyAYAEAC8azTAxQwcnNzczw7VLThi0BdG3THGLAAj6Q/7CAaEFsQANABsAKQA3AEUAUwBhAG8AAEEHNjYXFhYXJzYmIyYGAQc2NhcWFhcnNiYjJgYTBzY2FxYWFyc2JiMiBgEHNjYXFhYXJzYmIyIGAQc2NhcWFhcnNiYjJgYBBzY2FxYWFyc2JiMmBgEHNjYXFhYXJzYmIyIGEwc2NhcWFhcnNiYjIgb+D3AIcVpYawFsAx4wMDQCAnEIcllYbAFsAh0xLzRRbghwWlhqAWsCHTAwNf7bbghwWldrAWsCHTAwNf2VcQlxWldrAWsCHTAwNf6ncQhyWlhrAWwDHTEwNP7xbghwWldrAWsCHTEvNTxvCHBaV2wBbAIdMDA0BPQBWGYBAWdXASo8ATv+wQFYZgEBZ1cBKjwBPP3gAVdmAQFmVwEqPDv90AFXZgEBZlcBKjw7/rsBWGYBAWdXASo8ATsE8AFYZgEBZ1cBKjwBO/3fAVdmAQFmVwEqPDv90AFXZgEBZlcBKjw7AAj6c/5jAXgFxgAEAAkADgATABgAHQAiACcAAEU3FwMjAQcnEzMBNzcFByUHByU3ASc3JRcBFwcFJwEHJwM3ATcXEwf9Y4UOq2YBpYQOqmYBIA0LATgQ+lsOCf7HEQVoWwMBTD762loC/rZAAgZnEV9CAt9nE15DPQMT/rAGBAMRAVH8JowKgFqUjAqAWgEIYhKYTvwxYhOYTwQCXwIBUTv7V2AC/q88//8AJf6ABXwHJgQmANwAAAAnAKEBRwE+AQcAEARN/8gAFUAOAiMEAACYVgEPAQEBXlYAKzQrNAD//wAX/oAEbQXbBCYA8AAAACcAoQCL//MBBwAQA1j/yAAVQA4CIwQBAJhWAQ8BAQF9VgArNCs0AAACACH//gPnBmAAFwAbABpADBoLGwJyABcXDQ0KEgA/MxEzLzMrzjMwMUEFHgIHDgInIQEzAxc+Ajc2JiYnJQEHITcBQgEnbrBgCAqI03n+IAEb7PrYPmZBCAgdRTb+vQH/Hv1XHgMAAQRYo3WCsVoCBmD6XwEBMFo+NVEwAwEDb6amAAACACYAAAT6BbAAAwAbACNAEQECBQADBgYFBRIQEwJyEghyACsrMhE5LzMRMzMRMzMwMUEBBwEDJTcFMjY2NzYmJiclAyMTBR4CBw4CA1kBRGv+vUP+giMBY1OLWwsLLGRM/s7a9f0CC4fTcgwNpf4D3/42VgHJ/pYBxwE5c1dKcUEDAfsYBbABA23JjJ3NYgAE/8j+YAQQBFIAAwAIAB4ANAAlQBQAAzABAjAlGg8LcgcGchoHcgYOcgArKysrETMyMjIRMzMwMUEBBwEDAyMBMwEHDgMnLgM3Nz4DFx4DBzc2LgInJg4CBwcGHgIXFj4CAoIBHGz+5YXe7AEE2QJhAgxFdapzZolTIAQKEE16qG1vjEkT9wIFAyBNRD5kTDMLHwIXM082SmpHKAGr/lNWAa4CBvsEBdr98xVix6ViAwJdlrNYUF++nV0EA2ShvXAWM3hrRgIDLVBmN8QyXEssAgJCb4MAAgAjAAAE6gcTAAMACQAVQAoCBgYDCQJyCAhyACsrzjMRMzAxQQMjExMHIQMjEwTqX+xfpiP9cNr0/AcT/d4CIv6dyPsYBbAAAgARAAAD0gV3AAMACQAVQAoCBgYDCQZyCApyACsrzjMRMzAxQQMjExMHIQMjEwPSWexZnSL+NpvrvAV3/gMB/f7DwPyGBDoAAgAr/sMErAWwAAUAHQAZQAwGBwcTEgIFAnIECHIAKysyLzM5LzMwMUEHIQMjExM3Fx4DBw4DBzc+Azc2LgInBKwj/XHa9f0YI+iBxYE2Dg1alc+CE1N2TywJCRE8b1UFsMj7GAWw/M3GAQJVl9F/f9GaVQK3AkFtiUpMiWk/AgACABH+4AOFBDoAFAAaABtADQABAQsXGgZyGQpyDAsALzMrKzIROS8zMDFTNxceAgcOAwcnPgI3NiYmJwEHIQMjE64j3YzZcg4ITHeWUUhGckoKCy9sUgHcIv42m+u8AcrGAQNy0pNYmHhWF60ZUXNNUXlFAwJxwPyGBDr///+k/poH6AWwBCYA2gAAAQcCYQaFAAAAC7YFGwwAAJpWACs0AP///7D+mgaBBDoEJgDuAAABBwJhBUgAAAALtgUbDAAAmlYAKzQA//8AK/6YBXYFsAQmAjwAAAAHAmEEDP/+//8AIv6aBH4EOgQmAPEAAAEHAmEDVAAAAAu2AxECAQCaVgArNAAABAAkAAAFgwWwAAMABwANABEAL0AXDw4OCwwEBAwMCwcHCwsAEAMIcggAAnIAKzIrMhI5LzMvETMRMy8REjkRMzAxQTMDIwEzAyMBIQEhNyEHNwEhASD2/fUCDJt8mwKYATf9nP4hBgGFHsYBMf7VBbD6UARL/TgELfzA2ami/L4AAAQAIQAABMoEOgADAAcADQARAC1AFg8ODgsEBAwMCwcHCwsAEAMKcgkABnIAKzIrMhI5LzMvETMRMy8RMxEzMDFTMwMjATMDIwEhASE3IQc3EyHc7LzrAdWSapICDAEy/g7+SQcBYSW/9/7gBDr7xgNT/aUDQv112qeA/Z4AAAQApAAABuEFsAADAAcADQARACNAERAPDwsKCgMOBghyDQcCAwJyACsyMjIrMhI5LzMzETMwMUEHITchAyMTIQEhNzMBAwE3AQLjIf3iIgLB/PX9BE79Mf6hBegCBrz+pLYBvgWwwMD6UAWw/MLaAmT6UAKkt/ylAAQAbAAABbQEOgADAAcADQARACNAERAPDwsKCgMOBgpyDQcCAwZyACsyMjIrMhI5LzMzETMwMUEHITchAyMTIQEhNzMBAwM3AQKTIv37IgJxvOy8A6H9tv7uB7kBZ5rvxgFPBDrAwPvGBDr9ddoBsfvGAeGB/Z4A//8AJv6aBYUFsAQmACwAAAEHAmEEYAAAAAu2Aw8KAACaVgArNAD//wAX/poEYQQ6BCYA9AAAAQcCYQNgAAAAC7YDDwoAAJpWACs0AAAEACYAAAfqBbAAAwAHAAsADwAfQA8HBgYKAgMDDAsCcg0KCHIAKzIrMjIRMxE5LzMwMUEHJScDByE3EwMjEyEDIxMH6iH9m5ZuI/0RI6j99v0EYv30/AWwwAG+/aHHxwJg+lAFsPpQBbAABAARAAAFlgQ6AAMABwALAA8AH0APBwYGCgIDAwwLBnINCgpyACsyKzIyETMROS8zMDFBByE3AwchNxMDIxMhAyMTBZYi/lAjoCL93iGUvOu8A3C87LwEOsDA/jy+vgHE+8YEOvvGBDoAAAIAKv7CB4kFsAAHAB8AGUAMCAkJFAQHAnIGCHICAC8rKzIvOS8zMDFBAyMTIQMjEwE3Fx4DBw4DBzc+Azc2LgInBYH989n9j9r1/QNaI+mBxIE2Dg1Zls6DE1N2TywJChI8b1UFsPpQBOj7GAWw/MzGAQJVl9F/f9GaVQK3AkFtiUpMiGo/AgAEABH+4wZHBDoAFAAYABwAIAAjQBEeFxgYAAEBCx0cBnIbCnIMCwAvMysrMhE5LzMyETMvMDFBNwUeAgcOAwcnPgI3NiYmJwMHITczAyMTIQMjEwMyIwEKjuF5DQdLd5RRS0ZySgoLN3ZT0SL9+CI5vOu8A3K87LwBzcYBA27Rl1mXeVYXrhlQdE1VeUECAm7AwPvGBDr7xgQ6AAABAF//6AXmBccAQwAdQA45DAwjIgNyAAEBLhcJcgArMjIRMysyMhEzMDFlByYkJgI3Nz4DFx4DBwcGAgYEJy4DNzc+AzcHDgMHBwYeAhcWPgI3NzY2JiYnJg4CBwcGHgIFZBGg/uXQZBggDkd4qG9xkU0XDCAXjNj+7Z2P2o06Eh0SWpLKgRhMakgoCh4LEUN+YnC7kF4RIgUHEDo7PlQzHAYhEj2Oy7DGBWa7AQ6u017DpGMEA22tx1vOmP76xWsDA3HB9YbBdtuvaAPPAlJ9iz7EUaiNWAMDT4+6aOMnc3JPAwNHbXcu2ILGiEcAAQBL/+gElgRTAEMAHUAOOQwMIyIHcgABAS4XC3IAKzIyLzMrMjIRMzAxZQcuAzc3PgMXHgMHBw4DJy4DNzc+AzcHDgMHBwYeAhcWPgI3NzY2JiYnIg4CBwcGHgIEUwp+5KpVEBEKNlyEV1dwPRIHERBtqdV5dK5wLQsKDEd1oWUXMUUsGgcKBwksWEdNgWM/ChICBQoiJCc0IBIDEg44daCOowVLj9KMgUqYfUsDA1iKnEd/dsiUTwMDYKDKbE5fq4RNA8YFOVNdKU86fm9IAwM3Y4FHghhOUzsEMEpOHYdllWMxAP///8D+mgVGBbAEJgA8AAABBwJhA7IAAAALtgEPBgAAmlYAKzQA////uv6aBBIEOgQmAFwAAAEHAmECvQAAAAu2AQ8GAACaVgArNAAAAwCa/qEGbQWwAAMACQARAB1ADgkNDQgKCHIFEAwCAwJyACsyMjIvKzIyETMwMUEHITcBAyMTIzcFEzMDIRMzAwReIvxeIgWFcuI9fyT8Rvz22wJy2vX9BbDAwPsZ/dgBX8nJBbD7FwTp+lAAAwBX/r8E2QQ7AAMACwARAB9ADwIDAw0KBQZyCAcHEAQKcgArMjIRMysyLzkvMzAxQQchNxMTMwMhEzMDNwMjEyM3Ayki/VAiMbzsmwGbmu28sGvaOH4iBDvAwPvFBDr8hgN6+8a//gABQb///wDE/poFXQWwBCYA4QAAAQcCYQQ0AAAAC7YCHRkAAJpWACs0AP//AG3+mgQ3BDsEJgD5AAABBwJhAzYAAAALtgIbAgAAmlYAKzQAAAMAtAAABU4FsAADABkAHQAjQBEDAwoKFQICFRUEHAhyGwQCcgArMisROS8zLxEzETMvMDFBAyMTATMDBhYWFxY+AjcHDgMnLgI3ATMDIwNDf5p//mj1SgokZVkxYmFgLhIuXmBhL5LYahIDk/X99QQQ/SQC3AGg/jxXdDwCAQcPFg3JDxYNBgECaM6aAcP6UAAAAwCCAAAELgQ7AAMABwAbACNAEAAAGBgNAQENDQUKchIEBnIAKzIrMi8zfS8RMxEzGC8wMUEDIxMBAyMTEwcOAicuAjcTMwMGFhYXFjY2AqBqmmoCKLzsvC0RMm5xN3+5XA416zUIGk1GOnFuAyz9oAJgAQ77xgQ6/iHCFh4NAQFgtoMBSP63Ql81AgERIAAAAgAcAAAEtQWwABUAGQAZQAwBFwYRERcYAnIXCHIAKysROS8zETMwMWEjEzYmJicmDgIHNz4DFx4CBwEjEzMEWfVKCiNlWTFiYWEvFC1eX2AwkthqEfxu9v31AcVWdTsCAQcPFQ7JDxUNBgECZ86a/j0FsAACAFX/6QW7BcYACQA2ACVAEgUdAQEdHQYcHAokFQNyLwoJcgArMisyETkvMzMRMy8RMzAxUxcGFhYXBy4CAS4DNzc+AxceAwcHITchNzYuAicmDgIHAwYeAhcWNjcXDgJbrAYfUUcPeJhEAwGK1Ys6EicTa6rchY26ZRsRFfxdIgKnBgwIL2JQVYVhPA0pCxRGfV5etFcdNYuSBDoBRGU7Ba8FbbX8IgFeqeSG/3rhrmIDA3bC7XuJviJChG5EAgNFd5JL/wBTlHNCAgIoIsMmJwwAAAL/8v/qBHMEUQAIADUAJUASBBwBARwcBRsbCSMUB3IuCQtyACsyKzISOS8zMxEzLxEzMDFDFwYWFwcuAgEuAzc3PgMXHgMHByE3BTc2LgInJg4CBwcGHgIXFjY3Fw4CCKAIS2UOcI9BAnxvqG8vCQUMV47CdnGaWh4MEPzTHgI+BQcMKUg0S2xJKQgFBhAyWkRWjDpzL4eeA10BYnAGogVkp/z6AlOQumopbcyfWwMDWZa7ZWetARYuWEYqAwJCcIQ+KDtzYDsCAks8fERaLAADACT+uQVUBbAAAwAJACEAIUAQCgYGCwgHBxcWCQMCcgIIcgArKzIvMzkvMzMzETMwMUEDIxMhASE3MwEBNxceAwcOAwc3PgM3Ni4CJwIW/fX8BDT9Ff7YBs4CBv1tJPGAxoA3Dg1bmNCCElF2TS0JCRA6bFQFsPpQBbD8w98CXvzCzQECVZnQgH/Sm1YDwAFBa4dJSoZpQAIAAwAh/uQEfgQ6AAMACQAeACFAEBYVCQZyBgoKBwsLAQMGcgEALysSOS8zMxEzKy8zMDFBAyMTIQEjNzMBATcFHgIHDgMHJz4CNzYmJicByLzruwOi/aH+B6MBff15IwEMi+R9DQhMeZRQR0RxTAkMO3hQBDr7xgQ6/XXaAbH9dsUBA2XHmFiUdFMWrRhMb0tWbzkC////xf6ABX4FsAQmAN0AAAEHABAETP/IAAu2AyQGAACYVgArNAD///+8/oAEbQQ6BCYA8gAAAQcAEANY/8gAC7YDJAYBAJhWACs0AAABACv+SAWCBbAAGQAZQAwZCHIXAgIRCgUAAnIAKzIvMzkvMyswMUEzAyETMwEOAiciJic3FhYzMjY2NxMhAyMBKPVvAnBv9f7+D2SpeCNFIiMXMRg1QyUIcf2RbPUFsP2CAn76GHCvYQELCMIHCDdVLQKj/ZUAAQAR/kgEPQQ6ABkAHUAPGQpyFwICABEKD3IFAAZyACsyKzISOS8zKzAxUzMDIRMzAw4CJyImJzcWFjMWNjY3EyEDI83rTwGZT+zDDmKmdSNDIiIXMBk0RCUHVP5nTOsEOv48AcT7iG+rYAEJCbwHCQE4Vi4B9v5IAP//ACb+gAWFBbAEJgAsAAABBwAQBFb/yAALtgMWCgEAmFYAKzQA//8AF/6ABGsEOgQmAPQAAAEHABADVv/IAAu2AxYKAQCYVgArNAD//wAm/oAGzgWwBCYAMQAAAQcAEAWY/8gAC7YDGw8AAJhWACs0AP//ACP+gAXDBDoEJgDzAAABBwAQBK7/yAALtgMZCwEAmFYAKzQAAAEAS//pBS0FxAAsABtADRoLERQUCyUAA3ILCXIAKysyETkvMxEzMDFBHgMHBw4DJy4DNzchByEHBh4CFxY+Ajc3Ni4CJyYGByc+AgLtl+KQNxMRE3O18JGSznkpEhcEAyP8+QgNFUR2VWKYbkMOEg0TS4ppY75cHjqRlwXDAWq8+JB7hPjEcAMDbLrxh4/DI06IZjsDAlOMq1V8XKmFTwICKCPFJScMAAIAL//oBJ4FsAAHACUAH0APBQgIBCUlABwSCXIHAAJyACsyKzIROREzMxEzMDFBIQcBIzcBIRM3NhYWBw4DJy4DNzMGFhYXFjY2NzYmJicnASEDfR79164XAZr9pMCUis9rCwljncBmYJ9yPAXzBCtbQkmCWAoLLG1WkwWwrP3igQGB/nMHAWzKjm6lbjYCAjxvnGE/ZDwCAzlrS1Z6QgMBAAL/8f5zBFYEOgAHACUAH0AOCAUFBCUlABwYEgcABnIAKzIvzDMSOS8zMxEzMDFTIQcBIzcBJRM3MhYWBw4DJy4DNzMGFhYXFjY2NzYmJicn3QN5G/3arhcBlf2owY+J0GwLCWGcv2VgnnI6BOoELVxES4RaCgstb1iTBDqk/diCAYkB/mcGaceObaVuNgICPG6cYEBoPQIDOm5NV3pCAwEA//8AJ/5HBPgFsAQmALFMAAAmAjapKAAHAmQBJwAA////+v5DA9QEOgQmAOxMAAAnAjb/gv92AAcCZAD6//z////A/kcFRgWwBCYAPAAAAAcCZAOrAAD///+6/kcEEgQ6BCYAXAAAAAcCZAK2AAAAAQApAAAE7AWwABgAErcDAAALEA0CcgArLzM5LzMwMUEFByUOAgcGFhYXBRMzAyUuAjc+AwJ1AXIj/qpSilwKCytjSgEk2vX8/gKG0nEMCmSgxgOaAccBAT92VEhyRAMBBOn6UAEEbceOc652PAACAEL//wZtBbAAGAAtAB9ADhsLCxAlJQMAABoQDQJyACsvMzkvMzMvETMRMzAxQQUHJQ4CBwYWFhcFEzMDJS4CNz4DASM3Fz4CNzY2NCYnFxYWBgcOAgKOAXIk/qpSilwLCitjSgEl2vX9/gKG0nALCmWfxwI/liR7Tm1ADQgKCgvmDAwBCBSF2QOaAccBAT92VEhyRAMBBOn6UAEEbMiOc652PPxmxgEBT3xILFxeXSwCO3t7PIvXeAADAET/5wZKBhgAFgArAEcAHUAQM0QLcjstAXIdEgtyJwYHcgArMisyKy8rMjAxUzc+AxceBAcHDgMnLgM3BwYeAhcWNjY3NzYuAicmDgIFEzMDBhYWFxY+Ajc2NicXFhYHDgMnLgJOAg1Cda53UXNKKQ4ECA9IdKFoa4tMGPkCBgMgSkNOfVUQHAQUMlA4TWpFJwGPy+zMBQ0vMkhqRyoKEAQR3g4HDhBUi795c5VDAfQVZM+uaAMDRXGJkkNDWrucXQMDXpm2cBYzcGNAAgNMfEi3M2JTMwICSXaI4ASw+08oVDwDBENwgTpkyWMBZMdjb8qbWgIBYasAAgCs/+kFtwWwACAARgAhQBAoJycCAQEOMkMJcjoNDgJyACsyLysyETkvMzMRMzAxQSM3FzI2Njc2LgInJTcFHgMHDgQHDgIHBgYTJzc2JiYnNx4DBwcGFhYXFj4CNzY2JxcWFgcOAycuAgHC5SOXUo5fCwccO1Mx/p8jAUVgqn9CCAY4V2tyNQcGBgcMOIsBCAcgUEQaVZVtOAkHAg0nIkVhQCYJEAQS6A0HDg9Tib14bYI7AmfJASxoWjZLMBYCAckBAi9hmGpUaEAsLSIFEREFCAj+0QJDQWU8BXgCKFOEXkcgOSgDAkVtfTZjymMBZMdjbcmeWgECUpYAAgBh/+MExQQ6AB0AQgAlQBI+PT0bAgEBDSoqIjMLcgwNBnIAKzIrMjIvETkvMzMzETMwMUElNxc+Ajc2JiYnJTcXHgIHDgMHDgIHBgYFNwYWFxY+Ajc2JicXFhYHDgMnIi4CNzc2JiYnNx4CBwFt/vQfqDFhRQgIJ0os/vMc9mK1cAYEPVpkLAkEBAgJMwExBAMTLThSNyIHDAYU3g8SCgtKd6JkPGxULgMJAyA+KC9Tl1kJAaABuAEBGj45Mj4eAgG/AQI+h3JOTyclJQcaGwYHCL0TKjYHAjNVZC9OoE0BTp1OX6V9RgIZOF1DTi00GAODASxtYgADAJP+twPfBbAAHwA0AD8AH0AOOjk/LAwNAnIhICABAQIALzMRMxEzKzIvMy8zMDFBITcXMjY2NzYmJiclNwUeAgcOBAcOAgcOAgc3HgIHBwYGFhcHIyYmNjc3NiYmAQcGBgcnPgI3NwGq/ukhvFGNXQsKL2NH/tcfAQ+BznIKBzJQYmw1BgcHBgkfHzMxd7RdDxEGAhEZA+gaEQUFEQolXAITHBKAXHwhPC4KIQJdwAEvaVdJZTQCAcABA1q2i1BmQTAvIQUPDgUGCQYBgAJQon95JU1IHhkhU1kndkloPf6PrHTJR0wwX2Y5tgAAAwCL/qgDvAQ6AB4AMwA+AB5ADjggHx8CAQE+KwoMDQZyACsyPzM5LzMzETMvMDFBITcXPgI3NiYmJyU3BR4DBw4DBwYGBw4CIzceAgcHBgYWFwcHJiY2Nzc2JiYFBwYGByc+Ajc3Abv+0B7YNGdKCgcrTi7+1h0BEkyPc0AFBEFhbjMIBgcIGhtFPV2gWgoLBAENEALsDwsDBAsGJUwCBhwTfVt/ITwtCyABna8BARxCPDRBHwEBvgECJU17VlFXLygiBhcGBgcFeQE2fGpWGzIvFhIBGDg6HVU5RSDArHTJSE0wXmY6tgAAA//b/+YHQwWwABEAFQAyAB1ADiYmHi8JchcUABUCcgsIAC8zKzIyMisyMi8wMUEzAw4EIyM3Nz4ENwEHITcBEzMDBh4CFxY+Ajc2NicXFhYHDgMnLgICAvSfFDJNdq58SRojU3BJLBsMA0Uj/ZYjAXS59bkDBRUrJUZnRCkJEAQS6Q0GDRBVjL96dZpDBbD9LWTPvZZXxwIFVoWbmj8Ck8nJ+7sERfu6HT43IwIEQm5/OGPKYwFjyGNvy51aAwNgqwAD/9n/5gYfBDoAEQAVADMAH0AQJyceLwtyFxQAFQZyCwgKcgArMisyMjIrMjIvMDFBMwMOBCcjNzc+BDcBByE3ARMzAwYeAhcWPgI3NjYnMxYWBw4DJy4DAXDreA8oPl6HXlIZIztQNCEUCAKDIv4iIwEjeet5AwYZLyY9VzghCA4CEd0OCg0NS3usbleEViQEOv3qTJ2Pbz4BxQIEPF1tbS0Bz8LC/S4C0v0tIEA3IwECPWRwL16/XV69XmK7k1UDAjdkiwADACf/5wdCBbAAAwAHACMAIEARFhYOHwlyCAJyAAMDBggEAnIAKz85LzMrKzIyLzAxQSEHIQMzAyMBMwMGFhYXFj4CNzY2JxcWFgcOAycuAjcBbALiI/0eJfX99QRY9LcEDC4vRmdFKQkQAxLpDAcNEFaKwHpzl0QJAzLHA0X6UAWw+7knUzoDA0JvfjhjymMBY8hjcMmeWQICYqxyAAMAB//oBh4EOgADAAcAJQAiQBIZGRAhC3IJBnIDAgIFBwZyBQoAPysSOS8zKysyMi8wMUEHITcTAyMTARMzAwYeAhcWPgI3NjYnMxYWBw4DJy4DAzAi/fIhj7ztvAIVeex5AwYYMCY9VzkgCA8BEd0OCg0NS3usb1aCVSQCfL+/Ab77xgQ6/S4C0v0tIEA3IgICPWRwL16/XV69XmO6klQBAThljAABAEv/6ASLBcgAKwAVQAoSCwNyJSUdAAlyACsyMi8rMjAxRS4DNxM+AxcyFhcHJiYnJg4CBwMGHgIXFjY2NzYmJxcWFgcOAgJMgceDNhApFHSy54lbrU5KQIxJWZJsRw0qChI+cFRRglQODwIM6gkICxOf8hUDY6zdewEGguKqXwIpL7YkIgEBRHeWUv73R5J7TAICQnZPVrFWAVeuVpLRbQABAD3/6AOnBFEAKwAVQAohGgdyBwcADwtyACsyMi8rMjAxZRY2Njc2NiczFhYHDgInLgM3Nz4DFxYWFwcmJiMmDgIHBwYeAgICMU4xCAkBBd4FBQYNertucqlsLQoFDVqTwXRJjT9AMXQ6R25OLwkFBw0tWKwBIUIxNm82Nm02c5pMAgNYlsBqK27Gl1YBAR0nuCAdAT5ofT4qOXhoQQAAAgCR/+YFLQWwAAMAIAAXQAsUFAwdCXIFAgMCcgArMjIrMjIvMDFBByE3ExMzAwYeAhcWPgI3NjYnFxYWBw4DJy4CBRMj+6Ej/bn0uQIEFSskR2ZFKQoQAxHnDgYOD1WLv3p0l0UFsMnJ+7sERfu6HT82JAIDQm9+OGPKYwFkx2Nvy51aAwJirAAAAgBz/+gEkgQ6AAMAIAAXQAsTEwscC3IFAgMGcgArMjIrMjIvMDFBByE3ExMzAwYWFhcWPgI3NiYnFxYWBw4DJy4DBAYh/I4iwnnreQQPNTI2UjsjCA0JFNwQFAoMTX6nZleDVCUEOr+//S4C0v0tKlQ6AgIsTV4uTZlKAUqYTGGnfEUBATdljAAAAgBQ/+kFGQXHACAAPwAjQBEAIj8/AgIXNTEsA3IRDRcJcgArMswrzDMSOS8zEjk5MDFBFwcnIg4CBwYeAhcWNjY3Nw4DJy4DNz4DBScuAzc+AxceAgcnNiYmJyYGBgcGHgIXFwKe5RivQHpnRAgIL1VoM0qRag/zCW6qy2ZgvZlVBwhuq8YBNchNpYtTBgdwr89ne9uGA/ICQ3FBSZlwCwkiRl0zygMSAYwBGDdgSD1VNBgBATBmTgFxomgwAgExZJ5wcpVXJVgBAilVhV51pGQsAgNctYcBR1wtAgIrY1M7UTAXAQEA////xf5HBYsFsAQmAN0AAAAHAmQEUAAA////vP5HBJcEOgQmAPIAAAAHAmQDXAAAAAIA6ARyA0kF2AAFAA8AErYFBQ0HAgIHAC8zLxDNMi8wMUE3EzcHASU3MwcGFhcHJiYB5AGgxAH+9P60DKUPChAnTEdEBIMWAT4BF/7D+VpVO2QuQyuNAP//AEACDgJlAs4EBgARAAD//wBAAg4CZQLOBAYAEQAAAAEAmwJwBKUDMQADAAixAwIALzMwMUEHITcEpSn8HykDMcHBAAEAfAJwBd4DMQADAAixAwIALzMwMUEHITcF3jb61DcDMcHBAAL/WP5mAxUAAAADAAcADrQCA4AGBwAvMxrOMjAxQQchNwEHITcC6Bv8ixsDohv8ixv+/piYAQKYmAABALIEJgIcBhwACgAIsQUAAC/NMDFTNz4CNxcGBgcHshQLP1w5dzBKDxgEJodJhXMuTkKLUokAAAEAjQQEAfoGAAAKAAixBQAAL80wMUEHDgIHJzY2NzcB+hYLPlw4ejFKDxkGAIxKhXMuT0KLUY8AAf+n/toBEwDPAAoACLEFAAAvzTAxZQcOAgcnNjY3NwETFQw+Wzl5MUUPGM+FSoVzLk5CjFGIAAABAM0EBgHGBgAACgAIsQYAAC/NMDFTMwcGFhcHLgI368sZDBIjdi09GQcGAJBNkEZHL3iEQv//ALoEJgNhBhwEJgGECAAABwGEAUUAAP//AJoEBANEBgAEJgGFDQAABwGFAUoAAAAC/6T+yAJSAP4ACgAVAAyzEAULAAAvMs0yMDFlBw4CByc2Njc3IQcOAgcnNjY3NwEbHgw9XDt5MkcPIAIGHgw/Xzp5MkoQIP60TIt6MU1HlVa3tE2LeTFNR5VWtwAAAgBpAAAESgWwAAMABwAVQAoGBwcCAwJyAhJyACsrETkvMzAxQQMjEwEHITcDF+Ts5AIfIPw/HwWw+lAFsP6KxMQAA//8/mAEZgWwAAMABwALAB1ADgsKBgcHAQMKEnIDAnIBAC8rKxESOS8zETMwMUEBIwEBByE3AQchNwMz/tvsASUCHx78Px4DNh78Px4FsPiwB1D+isDA/IbAwAABAJ8CAwJPA9gADQAIsQQLAC/NMDFTNzY2MxYWBwcGBicmJp8CBXtjXm0BAQZ8YltuAtIoYX0Bd1wpYHgBAXL//wA1//IDAwD/BCYAEgcAAAcAEgHBAAD//wA1//IErwD/BCYAEgcAACcAEgHBAAAABwASA20AAAABAF4B7gFrAvEACwAIsQMJAC/NMDFTJjY3NhYVFAYHBiZfAU45N09OODdPAms6SgEBRTk7SAEBRAAABwCi/+gHAwXHABEAIwA1AEcAWQBrAG8AKUATX1ZWMmhNTUQpKTsyDRcODiAFBQA/MzMvMz8zMy8zMy8zETMvMzAxUzc+AhceAgcHDgInLgI3BwYWFhcWNjY3NzYmJicmBgYBNz4CFx4CBwcOAicuAjcHBhYWFxY2Njc3NiYmJyYGBgU3PgIXHgIHBw4CJy4CNwcGFhYXFjY2Nzc2JiYnJgYGAwEnAacGCVaLWVV9QAYGCVmPWFV5PaoJAxIyLC5DKQYJBBIyLS1EKQGTBghaj1lUcjYFBglPg1dWfUGzCgITMisvRCcGCQQTMiwuRCgBHgYIUIRYVnxABQcIWI9YVXI3mwkDEzMrL0MoBgoDEzIsLkMqePyRdwNwBEtMVYtQAgJRh1NNV4lOAgJSh55PJkYuAQEsSCpOJkgvAQEtSfxVTVeKTwICVYdPTlKLUgICUYehUCVHLgICLEoqTyZILgEBLEl4TlOJUwICUYdTTlaKTwICVYedUCVHLgICLUkqTyZILgEBLEkDSfuYTgRnAAIAWgCLAmEDqQAEAAkAEkAJAQUDCQIIBgYAAC8vFzkwMUEBBzUBAxMHAzUCYf7HxwFQlK6U3QOo/m8DEgGD/nb+bQEBhBIAAAL//ACLAgMDqAAEAAkADrQCCAgFAAAvLzkvMzAxZwE3FwEDMxMVJwQBOccB/q8Zk93CjAGRAxL+fQMd/n0SAgAB/+AAcAPGBSUAAwAOswADAgEAfC8zGC8zMDFBAScBA8b8kHYDcATY+5hOBGf//wCJAowC9AW/BgcB1wBzApv//wBmApsC7AWwBgcCMABzApv//wB+Ao4DBQWwBgcCMQBzApv//wCJAo4C3wW/BgcCMgBzApv//wCYApsDLQWwBgcCMwBzApv//wB4Ao4C9QW9BgcCNABzApv//wCnAo8C7wW9BgcCNQBzApsAAgBrAowDTAW9AAQAGQATtxYLBAQLAhECAC8zPzMvETMwMUEDIxMzAwc+AxceAgcDIxM2JiYnJgYGAZJqvYyPLikIKUhwT1pmJQdSu0oFBis1QVEsBPP9mQMh/okBQYp2RwICV4tQ/gUBzClZPgIBRWv////X/oQCQgG3BgcB1//B/pP//wAx/pQBzQGoBgcB1v/B/pT///+l/pQCPAG3BgcB1f/B/pT///+2/ocCRgG3BgcCL//B/pT///+0/pQCOgGpBgcCMP/B/pT////M/ocCUwGpBgcCMf/B/pT////X/ocCLQG4BgcCMv/B/pT////m/pQCewGpBgcCM//B/pT////G/ocCQwG2BgcCNP/B/pT////1/ogCPQG2BgcCNf/B/pQABP/3AAAEogXHAAMAHgAiACYAIkAQIiElJiYBGxcSBXIJAgIBDAA/MxEzK8wzEjkvM84yMDFhITchAQMGBgcnPgI3Ez4CFx4CByc2JiYnJgYGBQchNwEHITcD8PwHIwP5/hdMC1tSticuGAVVEIXUhnqrVwTtAx1JPkRgOQEXGP1DGgKOGv1EGccDSf2WYJYxSQ9HVyYCdIPHbgMDZbN5AThcOAIBRW/gjY3+946OAAADAA8AAAZbBbAAAwAHABEAIkAQAwIGCw4QBwcNEQ4EcgoNDAA/MysyEjkvORI5M84yMDFBByE3AQchNwEDIwEDIxMzARMGWxv6BRsFxRv6BRwFtvzt/je39f3tAcq3A8Sbm/7Jm5sDI/pQBB374wWw++EEHwAAAwAs/+0GXQWwABcAGwAtACNAEiIpDRwZGAZyAgEBDgwPBHIODAA/KzISOS8zKzLMPzMwMUEnNxcyNjY3NiYmJycDIxMFHgIHDgIBByE3EzMDBhYWFxY2NwcGBicuAjcCF+QkyFV+TAsKHlhMld3z/QFvh8ZkDA6W7wOzH/2wH9jqsgQJJSYVKxUQJEslWm4sCAIcAckBQXdTR21AAwH7GAWwAQRrxIqY0m0CH7CwAQn75iM0HQEBBgO6CwoBAVGJU///ACb/6wgVBbAEJgA2AAAABwBXBFQAAAAGACAAAAZFBbAAAwAHAA0AEgAXAB0AKkAUHRUKChIGBwMCAhESBHITGxsIEQwAPzMzETMrEjkvM84yETMRMzMwMUEHITcBByE3ARMBMwMBCwIjAwETATMBCwIjExMGPRz6NhwFkhv6NhwBM1IBao9B/oslESOaIQKfVgFn+f3mJxEllw0wBC2amv7Cmpr9EQFmBEr+ofuvBbD7nf6zBbD6UAFpBEf6UAWw+53+swReAVIAAgAQ//4GRQQ6ABEAIgAgQA8WExMRFAgUCBEKHA8ABnIAKzIyPzk5Ly8RMxEzMDFTBR4DBwMjEzYuAiclAyMhIRMzAwUWNjY3EzMDDgPMAnRde0UUCTPtNQUFHT0x/qWb7AO8/dZ/610BQUplPAxy7HENXI2wBDoCAj9sklb+wgFALUw5IAIB/IYC1/3pAgExYEgCpP1dZJpnNAAAAwBL/+0EnwXGACMAJwArAB1ADiorJyYmBxkSBXIABw1yACsyKzISOS8zzjIwMWUWNjcXBgYnLgM3Ez4DFxYWFwcmJicmDgIHAwYeAhMHITcBByE3AuA0ZjIJO3g8fLl1Lw41FGek3Ig8dTsvLl4wWYljPQw2CQ00Z/wZ/QgZAskY/QcatAERD8oODgECV5vMeAFTgdmeVQEBEgzKEBMBATprjlP+qkeDZz4C8YmJ/vSJiQAAAwBEAAAGAwWwAAMABwAfAClAEwYHAwICFAoUFwkKChYXBHIWDHIAKysSOX0vMxEzERI5GC8zzjIwMUEHITcFByE3ASU3BTI2Njc2JiYnJQMjEwUeAgcOAgYDHPqFHAVTHPqFGwKQ/oEkAWNTi1sMCStkTP7O2vT8AguG1HMMDab9BKabm+qbm/5iAccBOXJYSnFBAwH7GAWwAQNtyI6dzGMAAwBEAAAEfgWwAAMAHAAgAC1AFR8gIBEDAgUGBhoCGgIaBBARBHIEDAA/KzISOTl9Ly8RMxEzETMRMxEzMDFBByE3AQE3FzI2Njc2JiYnJTcXHgIHDgIHAQcBByE3BD9P/GtPASP+dxnbUolcCwoqZU3+71fAjNNtDA2F2IoBYgEBo0/9EFAER7Gx+7kCW4sBPnVUTW4+AgHIAQNiw5OTv2cP/eMPBbCxsQAEABX/5wQ+BbAAAwAUABgAHAAVQAkEBAMPAQsNAwQAPz8zMxI5LzAxQQMjEwE3BwYCBgYnJiYnJT4DNwMHATcFBwE3Anf99P0ByfIJD2yw8pc/fD4BAGucaj0MDCX9PiMCiiT9PSQFsPpQBbD9TwFOi/7/ynUCARAGtwNVj7NfAoDM/vXMQMz+9csAAAL/5QAABK4EOgAbAB8AGEALCBUVHh8Gcg4BHgoAPzMzKxI5LzMwMWEjNzY2LgInJg4CBwcjNz4DFx4EBwEDIxMEhOweCQEYPWlRaZ1tQg4d7B0Vbq/wmXWvd0QSDv7GvOy8tT+Jg2tCAgRalrZas7GJ/8t0AwJSi7TKZwOJ+8YEOgAC/+oAAAVaBbAAFwAbABpADBkYAwAADgwPBHIODAA/KzISOS8zzjIwMUElNwUyNjY3NiYmJyUDIxMFHgIHDgIHByE3Awz9EyMCzVaNWwsKLWRK/s7Z9f0CCobTcwsOpP6bI/0JIwIeAccBOXRZSXBAAwH7GAWwAQNrxo6dzmRqx8cABADA/+gFOAXJACEAMwBFAEkAJUASQicwR0c5MA1yHwUOSUkWDgVyACsyMi8QzDIrMjIvEMwyMDFBNw4CJy4CNzc+AhceAhUnNiYnJgYGBwcGFhYXMjYTNz4CFx4CBwcOAicuAjcHBhYWFxY2Njc3NiYmJyYGBgEBJwECQqIGToFQVHM4BQYIUYdYT3VAowIsOCw8JAUKAwopKDZBoAYIWo9ZV3w/BQYJWI5aVn4/sggDEzIrL0MoBgkDEjIsLkQpAVD8kXcDcAQiAlB3QAICU4hPTVSLUgICQ3ZOATFHAQExSiZOIEgzAUX9JE1ZiU4DAVCHVE5YiU4CAlCHolElRy0CAixKKk8mSC8BAS1JA0n7mE4EZwABACv/6gPaBfoALgAUtxkYGAEkDAABAC8zLzMSOS8zMDFlBy4DNxM+AxceAwcHDgQHNz4DNzc2NCYmJyIOAgcDBh4CAnsTY5lmKgtvCjZchlpEZ0EcBAUNe7/q/XgSdujFhBEGAQkYGCIrGg0DbAcDH0XE2gVDd6NjAqZPlnpGAwI3W3VAKoXgsn5EAbQCTY/KfSoRLCgcAyk/Qhr9XzRcSSwAAAQAIwAAB+AFwwADABUAJwAxACVAESswLioCAxsSJAkJMS4EKi0MAD8zPzMzLzPcMs4yERI5OTAxQQchNxM3PgIXHgIHBw4CJy4CNwcGFhYXFjY2Nzc2JiYnJgYGAwMjAQMjEzMBEwdSGv20Gi4HC2KiamSHQQgICmKhaWSIQbUJBBM+Oz5VMQgJBRQ+Oj5WMvb9/P7NuOz8/gEzuAIvj48B21Rko14CA2GdYFNloV0DA16ds1UyXT4BAjxiN1QxXz8BAjxjARv6UAQc++QFsPviBB4AAgDwA5QE0QWwAAwAFAAkQBEJBAEDBgoHBxMUAgADAwYGEQAvMxEzETM/MzMRMxIXOTAxQRMDBwMDIxMzExMzAwEHIwMjEyM3BAY/r0A5Q25egzrEhl7+ERGFTnVNiBADlQFj/p0BAX/+ggIb/oMBff3lAhte/kQBvF4AAAIAff/rBG4EUQAdACYAF0AKIhcXBB4OBxsECwA/Mz8zEjkvMzAxZQcGBicuAzc+AxceAwcGBgchAxYWFxY2AyYGBwMhEyYmA6kBU79jbahwMQoKZaHLcW+fYisEAQIB/RE8LnlFacByU5I+NAIKNSx3xWg1PQICYJ7CZWvNpl8DA16bv2IMFwz+tjI3AgNIA14CSTL+6gEfNDsA//8Auv/zBYwFmgQnAdYASgKGACcBlAD4AAABBwI0AwoAAAAHsQYEAD8wMQD//wCF//MGJgW3BCcCLwCQApQAJwGUAZsAAAAHAjQDpAAA//8Ai//zBhYFqAQnAjEAgAKTACcBlAGCAAABBwI0A5QAAAAHsQIEAD8wMQD//wC6//MF2AWkBCcCMwCVAo8AJwGUAS0AAAEHAjQDVgAAAAexBgQAPzAxAAACAET/6ARGBfcAKQA/ABlADCoAABI1HwtyCRIAcgArMisyETkvMzAxQRYWFzYuAycmBgYHJz4CFx4DBgcHDgQnLgM3Nz4DFyYOAgcHBh4CFxY+Ajc3LgMCYVGONAQJIDtbQC9YViwPL2ZpNoKqXyYCDQgNPV+FrWxwpGcpCgMMVYm3fUVrTC8IAwUHJ1BDUXNKLAoPBCg+SQQGAkM/NHRvXTgDAQ0aD7MYIQ8BAmyy2d9iO1y9rYZNAwJXkrxoFmq4i0vBAjRbdD0WNnJiPQMCS3yQQVwoPiwYAAEAHv8WBUkFsAAHAA61BAcCcgIGAC8zKzIwMUEBIxMhAyMBBUn++O3r/bfr7QEIBbD5ZgXd+iMGmgAD/6b+8wUBBbAAAwAHABAAH0AODgYGBwcPAnIMAwMKAgsALzMzMxEzKzIRMxEzMDFFByE3AQchNwEHASM3AQE3MwQqIvv3IgTgIvwnIgJGA/zkqRsCtf5DGJhOv78F/r+//LIf/LCbAtACzIYAAAEAmgJwA/gDMQADAAixAwIALzMwMUEHITcD+CL8xCIDMcHBAAMANP//BPMFsAAEAAkADQAWQAoJCwsKBAgIAQJyACs/My8zETMwMWUBMwEjExMHIwMHNyEHAdwCQtX9OaAdUgiIjaojAUoi9QS7+k8DA/3U1wMDwsLCAAAEAEn/6AeuBFEAFwAvAEcAXwAdQA5bNjYeEwtyTkNDKwYHcgArMjIRMysyMhEzMDFTNz4DFx4EFwcOBCcuAzcHBh4CFxY+Azc3Ni4DJyYOAgUHDgMnLgQnNz4EFx4DBzc2LgInJg4DBwcGHgMXFj4CUwMNWpLCdleIZkcuCwUTUXSOoFRwomgq9AMFCSpVRTVkWUk2DgYEFy5DUi9JclExBl8DDVqSxHZXiGVHLQoEE1J1jqBUb6NnKfQDBQkqU0U1ZFhKNg8HAxUuQlIuS3JRMQIKF23Kn1oDA0BriJdLJE+fjm8+AQJem8B7Fzd4aUMBAStKXmQvIyxeWEYsAgI/bIIxF23Kn1oDA0Jti5hLJE+djGw+AgJenL97FzZ4aUQCASpIW2MwIitgWkktAgM/bIEAAAH/D/5GAx4GGQAfABC3GxQBcgsED3IAKzIrMjAxRQ4CJyYmJzcWFjMWNjY3Ez4CFzIWFwcmJiMiBgYHAR0NYKRzJEQiIxMpFTVIKAi/DmasdShMJiQXLRc4UTEITW+kWgIBCwm6BwgCLk8wBPFxqFwBDQi3BgcuUzQAAgAxAQQEOAP5ABkAMwAbQAsXBIAKEUAxHoAkKwAvMxrdMhreMhrNMjAxUzc2NjM2FhcWFjMyNjcHBgYjIiYnJiYjBgYDNzY2MzYWFxYWMzI2NwcGBiciJicmJiMGBnoTMoFIQWs3MmM8S300Fi90RDxmMjdpQE+HgBMyfUdBazgyZDtMfzUWMHdFPGUzNmlAToQCudMyOgErIBwqTTHTMDwpHh8rAUv+K9MxOwEsHx0pTDLTMD0BKR0fLAFLAAMAYACBBBgEvQADAAcACwAfQA0CAQEKCgsAAwMHBwYLAC/OMhEzETMRMxEzETMwMUEBJwEXByE3AQchNwPZ/ShpAtmnI/y0IwMDJPy1IgR6/AdCA/rrxsb+WMbGAAAD/9YAAQPfBFEABAAJAA0AIkAQAwcGAAQIBgUJCQECAg0NDAAvM3wQzi8yMhgvMxc5MDFBBQcBNyUFBzcBAwchNwEDAmIo/Q0bA079YMUeA3OsIvzFIgLK48MBRn6T3R+NAUX8aLi4AAMAFAAAA/EEVAAEAAkADQAiQBADBwYABAgGAQICBQkJDQ0MAC8zfBDOLzIyGC8zFzkwMUElNwEHBSU3BwEFByE3AzH9kicDBxr8nAKtzR38eAMpIvzFIgKz4cD+u3+X3SSO/rxvubkAAgA8AAAD4wWwAAcADwAdQA4FCAgOBxJyAwoKCwECcgArMjIRMysyMhEzMDFTATMHARMHIzcBAzczEwEjPAHptEr+lbEEmVYBbK8Dmfz+FqsC5ALMv/3Z/dymvAIoAiSo/Rr9NgD//wBjAKgCCgUIBCcAEgA1ALYABwASAMgECQACAGcChAJ2BDoAAwAHABC2BgICBwMGcgArMjIRMzAxQQMjEyEDIxMBSEyVTQHCTZRNBDr+SgG2/koBtgAB/9H/ZAEMAQAACQAKsgSACQAvGs0wMUEHBgYHJzY2NzcBDAoNYkt3KTwNDwEASmOuQU07eUdU//8AXgAABZAGGQQmAEoAAAAHAEoCNQAAAAMATgAABFMGGQAQABQAGAAbQA8YBhcKchMUBnINBgFyAQoAPysyKzIrPzAxYSMTPgIXFhYXByYmIyYGBxcHITchAyMTAT3sxRGAzYNOlko3Onk+ZoQQyiD9oR8D5rzsvAR/g7dgAgIlFsUXHAJlZUawsPvGBDoAAAMAXgAABK0GGQASABYAGgAbQA8ZGgZyFAByDgYBchMBCnIAKzIrMisrMjAxYSMTPgIXHgIXByYmIyIGBgcTATMBAwchNwFO7MgQeMB8SpaTSXhLmk09YUAKowEH6/76xSD9nCAEmXysWAIBDxcLtg4ZK1M8+2QF5/oZBDqwsAAABQBeAAAGvAYaABEAFQAmACoALgAlQBQjHAFyLioUFQZyDQYBci0XFwEKcgArMhEzKzIrMjIyKzIwMWEjEz4CFxYWFwcmJiMiBgYHFwchNwEjEz4CFxYWFwcmJiMmBgcXByE3IQMjEwFO7MoObLB3JEcjFxYtFzlXNwnOH/2VIAMp7MQRgM2DTpVKNjp5P2SEEcof/aAfA+a87LwEonKqXAEBCwi8BgYrUDhosLD7xgR+hLZgAQElF8UWHAFjZUawsPvGBDoABQBeAAAHBgYaABEAFQAoACwAMAApQBcrAHIkHAFyLhQULRUGcg0GAXIpFwEKcgArMjIrMisyMhEzKzIrMDFhIxM+AhcWFhcHJiYjIgYGBxcHITcBIxM+AhceAhcHJiYjJgYGBxMBMwEDByE3AU7syg5ssXYkRyMXFi4XOFc3Cc8g/ZUgAynsyRB4v3tKlpVId0yaTD1iQAqjAQbs/vrFH/2bHwSicqpcAQELCLwGBitQOGiwsPvGBJp8qlgBARAWC7YNGAEqUzz7ZAXn+hkEOrCwAAAEAF7/7QT7BhkAAwAXABsALQAlQBQiKQtyEwpyCRwcDQ0EAXIYAgMGcgArMjIrMhEzETMrKzIwMUEHITcBFhYXByc3JiYjIgYGBwMjEz4CAQchNxMzAwYWFhcWNjcHBgYnLgI3AdUf/qggAkhy2mgf5xAmWCk4UjEKy+vKDmmuAqog/a8f2euzBAolJhUrFBAkSSZabS4IBDqwsAHeAj4rzwFYEw8vUjX7XQSicqlc/iGwsAEJ++YiNB0BAQUDugsKAQFRiFQAAAQAFf/qBpsGFgAbAB8AMQBnADFAGzsyQGRgWwtyAUVJQAdyJi0Lch4QHwZyFAoBcgArMisyMisyKzLMMivMMxI5OTAxQSMuAjc+AxceAwcjNiYmJyYGBwYeAgEHITc3MwMGFhYXFjY3BwYGJy4CNwU2JiYnLgM3PgMXHgIHJzYmJiciBgYHBh4CFx4CBw4DJy4CNxcUFhYXMjY2A8VyEDooBwdNdY1GW4xfLQTsAxdCPkptDAgGEAwC0R79tR607JEEByQnFSsUECRLJmBqJQn+HAk+Xyg8eWM5BARRgJlMaLFpAuoCJUoyL1dABwchO0IcVaJlBgRWh6BNa7lvAeMtVDovX0cC9lCnqVNOckojAQI3ZI5ZNV06AQFXSjhycnIBCrCwWfyoIT0nAgEGA7oLCgECYZhUETY9IAoPL0hnSlR/VCgBAk+XcQEzSSgBH0EwJjEeEwcWR39mWX9SJgICVJ9zATpQKQEbPgAV/6j+cghEBa4ABQALABEAFwAbAB8AIwAnACsALwAzADcAOwA/AEMARwBXAHMAjACaAKgAAEEjEyEHIyEjNyEDIwEhEzMHMwUhNzM3MwEhNyEFITchASE3IQEHIzcTByM3ASE3IQEHIzcBITchBSE3IQEHIzcTByM3AQcjNwUTMwMGBiMiJicXBhY3MjYlIzcXNjY3NiYnJwMjExceAgcOAgcGBgcGIgcnNzM2Njc2JicnNzcyFhcWBhceAhUGBgEHBgYnJiY3NzY2FxYWBzc2JicmBgcHBhYXFjYBJ28yAS0UvgZ+whUBLjJt+TH+0jhvJL8GGf7SFMAkbf4n/vEUAQ/85P7yFQENARj+8xUBDQPhLG4t8C1tLPxN/vEVAQ78ny1vLQTo/vIVAQ4Bb/7xFQEP+i8tby2wLG8sBxksbi3+9jpjOwloUFFpAlkCJTAsOv3zmgRsLFYJCUAiZlFeYKguWToBAjJGHwQCBAQPLr40fytKCQYsJHwGiwUTBAMDBBg1IwGA/sMHCYZkYHMDCAqFY190ag4FMEBDUQoPBjFBRFAEkQEddHT+4/nhATvKcXHK/sVxcXEGV3T7dPn5AvL6+vpecQI/+fkEGHR0dPzu/PwBePr6/oj8/PQBe/6FTlxSVQIrMwE6cEYBAiIyLBQBAf4vAiUBARk+NzgnERgDDwME9QNIAygvKSMDAUYBAgUDDwMYEiIyV0kBR3BhfgICfF9wYnwCAnzOcjpXAgFYPXI7VwIBWAAFAFz91QfXCHMAAwAeACIAJgAqAABTCQIDMzQ2NzY2NTQmIyIGBzM2NjMyFhUUBgcOAhM1IxUTNTMVAzUzFVwDvAO//EF3yhkpRGKnlX+xAssCPic4OTUoLz0dycp/BAYEAoMDz/wx/DEC3jM+GyWBUoCXfY03MEA0NE0aITpO/ruqqv1IBAQKmgQEAAH/5AAAAnsDIwAcABC1AxwcCxMCAC/MMjMRMzAxZQchNwE+Ajc2JiciBgcHPgIXHgIHDgIHBwJOGv2wFwE4Gj4vBwYsKjpFDLQHV4lTSH1KAwNMbDOekZGEAQEWOEAlKTEBSDUCVHpBAQEzZ1BGbVgldQAAAQBwAAACDAMUAAYAI0AVBAUFAwMvAH8AAg8AXwCvAP8ABAABAC/NXXEyETMRMzAxQQMjEwc3JQIMgrFjzBsBawMU/OwCPDGXcgACABb/8QKBAyQAEQAjAAyzFw4gBQAvM8QyMDFBBw4CJy4CNzc+AhceAgc3NiYmJyYGBgcHBhYWFxY2NgJ6EApQjGVgdjMHEQtPjGZfdzHNFAQFJy4xOx4FFQQGJy8xOx0B1phdmFgDA1qTWphemFgDA1uV+7EjTzkBAjZSKLAkTzkBAjVTAAEAYf/zA7QEoAAyABdAChQeHiYBMQoMJn4APzM/MxI5LzMwMXczFj4CNzc2LgInJgYGBwYWFhcWPgI3Fw4CJy4CNz4CFx4DBwcOAwcjwQ9dn3xRDyAEByA+MUFgOggFHEc7J0s/Lgo/DmuZU3GWRwgKhdB8ZpJYIAkJE3S8/JwbswInVohg2SlURSsBAUJqPDVbOQEBFy0+JkRVfkUBAmasa3zBbAICToOqXkua8KVVAQAEAB7/7gO/BKAAEgAiADQARAAdQA0oFxdBDg4FOTF+HwULAD8zPzMSOS8zMxEzMDFBDgMnLgI3PgMXHgMHNiYmJyYGBgcGFhYXFjY2AQ4DJy4DNz4CFx4CBzYmJiMmBgYHBhYWFzI2NgN4BVOGolFjtnAFBVaIn05HjHND7AcrTi41YUEHBilOMDVgQgEwBFB+lUhChGs+AgWAxGhhqWbzBiNCKjBRNgYFIUErMFI3AUdbhFMnAgFGj3FZf1EmAgEmTXZAMkUjAQEnTDkzRSMBAShNAj1Sd0wkAQIkSG5MdJVIAgJGi3ksPyEBJUYwLUEiASZJAAABAFkAAAQUBI0ABgAOtQUBBn0DCgA/PzMzMDFBBwEhASU3BBQZ/WP++wKe/YAhBI2R/AQDzAHAAAEAPP/sA54EnAAxABVACRYfHw4nCwMAfgA/Mj8zOS8zMDFBMwcjJg4CBwcGHgIXFjY2NzYmJicmBgYHJz4CFx4CBw4CJy4DNzc+AiQDNicVDGKphVgPGQUJIkE0P2I+BwYfSTo1ZkwPOA5yoVdtkkQICYXPemSWYSgKCRR5wAEABJzEAi1hk2WsK1dJLQEBO2Q6N1c0AQEpTDVIV4JGAQJprGd8u2YDA0h+pmBRmfGpWgABADD/6wPdBI0AIwAXQAohCQkCGRELBQJ9AD8zPzMSOS8zMDFBJxMhByEHNjYXNhYWBw4CJy4CJzMWFhcyNjY3NiYmJyYGATzBrgK0Iv4TVy1lM3CcTQgJg9F8Za9tA+YEXEpCYToGBiRPOzZdAg8xAk3D/BcWAQFgqG5+uWMDAlCWa0xFAThjPzlYMgEBIAAC//8AAAO1BI0ABwALABVACQABAQoEC30KEgA/PzMSOS8zMDFBByE3ATMJAgMjEwO1IvxsEgKTyf73/qMClMrrygG7wKMC7/6o/ocC0ftzBI0AAgAI/+4DwASgAB0APQAdQA0fAAAdHh4SNCoLCRJ+AD8zPzMSOS8zMxEzMDFBFz4CNzYmJiMmBgYHBz4CFx4DBw4DIycHNxceAwcOAycuAzcXBhYWFxY2Njc2LgInAW1wNmhJCAcnSS0vVT0L7gmHx2dLjXA+BARTgpNFsgoVlEeKcD8FBFmNplJQj2w+AukBMFExN2RFCAYZM0YoAqcBASFLPDFAHwEcPC8BcpFFAgEmT3pVUnFFHwE3cwEBHEBvVF2GVicCASxXgFYBM0QhAQIlTTotPSURAQAB//IAAAO8BKAAHgAStwsUfgMeHgISAD8zETM/MzAxZQchNwE+Ajc2JicmBgYHBz4CFx4CBw4DBwUDdCL8oB4B1SlhTAkKT0U/YD4J7AqI0XZnr2UIBUNkcjX+5b+/rAGGI1VlOUZSAQEwWjwBe69bAgFNlnBJfWtcKdQAAQC0AAADDASNAAYACrMGfQIKAD8/MDFBAyMTBTclAwzD7Jn+viQCFQSN+3MDcVLGqAACADn/7QO9BKAAFQArAA61HBF+JwYLAD8zPzMwMUEHDgMnLgM3Nz4DFx4DATc2NCYmJyYOAgcHBhQWFhcWPgIDshwOSXqtcGqTVR0LHQ5Jeq1wa5JVHP7rIgUZPzg8VjcfCCIFGT45PVU3IAKtzGe2i0wDAlOKsGHNZ7WLTAMCU4qw/r74K2FVOAICMVVmM/YsYlY5AgIyVmcAA//WAAAEKgSNAAMACQANABxADAQMDA0NCH0HAwMGAgAvMzMRMz8zLzMRMzAxZQchNwEBIzcBMyMHITcDkSL8piID2fx0rhoDk6dSIfzKIr+/vwM9/ASUA/nAwAADAGwAAASCBI4ABAAJAA0AG0AQCAcDBAYACg0IAQwKcgUBfQA/MysRFzkwMUEBIQEjAxMHIwEBAyMTAcgBqwEP/deJcNoxgP7jAgxf618CDgJ//PcDCv1ocgMJ/ZX93gIiAAH/ogAABH0EjQALABVACgcKBAEECQUDAH0APzIvMxc5MDFBEwEhAQEhAwEhAQEBh6MBMgEh/iYBF/73sv7E/t8B5v77BI3+awGV/bH9wgGc/mQCVwI2AAAEAIsAAAYeBI0ABQAKAA8AFQAgQA4SBBABDgQMAQgEBgF9BAAvPzMRMxEzETMRMxEzMDFlATMHASMTEwcjAwEBMwEjExMHIwM3AVoBjYkd/maMOiAflUgDSQFf6/4kkwVKFY1OItMDutD8QwSN/D/MBI38UwOt+3MEjfwzwAPVuAAAAgBuAAAEtwSNAAQACQAPtQcDBQF9AwAvPzMRMzAxQQEhASMDExMjAwIJAawBAv2LtyyFEqjgAToDU/tzBI38l/7cBI0AAAEAOP/sBGQEjQAVAA+1DBEGAH0GAC8/ETMyMDFBMwMOAicuAjcTMwMGFhYXFjY2NwN37YISkt6Fe8JmDoHrgggkWEVJcEgLBI39AIa8XwMCYriCAwD8/0NiNwICNGRIAAIAYwAABF4EjQADAAcAEbYGBwcBAH0BAC8/ETkvMzAxQQMjEyEHITcC5MrsywJlI/woIwSN+3MEjcDAAAEAD//uA/4EngA5ABhACgomDzYxKxgUD34AP8wzL8wzEjk5MDFBNi4CJy4DNz4DFx4CByc2JiYjIgYGBwYeAhceAwcOAycuAzcXBh4CMzI2NgK9CCI9SiFEhWs8BQVXh6FOb7xxAuoDLlY4MWRKCAcnQkodRoRoOQUGWYqkUFeee0UC6wMdO1IxMmVJATgsOycYChQ2UHVTWIJUJgECUJ93ATpOKB1CNik3JRcJFDlUeVRcgFAkAgEwXY1eATRKLhccQAACAAkAAAQWBI0AGQAeABhAChsNDQwMGhgXAH0APzIvMzkvMxI5MDFTBR4DBw4CBwchNwUyNjY3NiYmJycDIyEDNxMV0wGvUJRyPgYGVYlVUv5pIAEbO2tLCQcoUDXfqewCs7/tzgSNAQIoUYFaZYRXIynAASdRQThLJQIB/DMCBAL+Bw0AAAMAOv8vBFYEoAADABkALwAcQAwAAwMrKwoKAiAVfgIALz8zEjkvMxI5ETMwMWUBBwEBBw4DJy4DNzc+AxceAwc3Ni4CJyYOAgcHBh4CFxY+AgKrASSi/uMCOwYPXpnOfnmsaykLBg5fmc99ea1qKfwHBggqWkxReVQyCQgGBypaTVF7UzKu/vx7AQUCMTh30p9YAwJenspuOnfRoFgDAl+fyqI6PYBuRQMDQG+JRjs9gXFIAwNCcosAAAEACQAABDAEjQAYABO3AgEBDQwPfQ0ALz8zEjkvMzAxQSU3BT4CNzYmJicnAyMTBR4CBw4DAjT+uCIBLDxwTgoIKFM296nsywHGcLtrCAdZjqwBmgHAAQElUEI5UiwDAfwzBI0BA1ameWSQWysAAgA7/+0EWASgABUAKwAQticGHBF+BgsAPz8zETMwMUEHDgMnLgM3Nz4DFx4DBzc2LgInJg4CBwcGHgIXFj4CBEwGDl6Yz355rWspCwcOX5nOfnitair9BwYIKllMUXlUMgkHBwcrWkxSeVQwAmk5dtSgWQMCXp7Kbjp30aBYAwJdnsmmOj2AbUYDA0BviUY7PYFxSAMDQ3GLAAEACQAABKgEjQAJABG2AwgFAQcAfQA/Mi8zOTkwMUEDIwEDIxMzARMEqMrk/omO7MvjAXiNBI37cwMt/NMEjfzTAy0AAwAJAAAFyASNAAYACwAQABZACQIOCgUMBwQAfQA/MjIyLzMzOTAxQTMTATMBIwEzAwMjATMDIxMBQMKzAdjW/Xai/p3HcDbsBPXKy+w6BI38sQNP+3MEjfyo/ssEjftzAUoAAAIACQAAAzEEjQADAAcAD7UGAwIEfQIALz8RMzMwMWUHITcTAyMTAzEi/Zsi88rsy7+/vwPO+3MEjQADAAkAAASdBI0AAwAJAA0AF0AMBgcLBQwIBgoBBAB9AD8yLzMXOTAxQQMjEyEBASc3AQMBNwEBv8rsywPJ/bX+vxHjAYSZ/uG8AW0EjftzBI39uf7u8+kBfftzAiON/VAAAAH/8//tA68EjQATAA20EAwHAX0APy/MMzAxQRMzAw4CJy4CNxcGFhYXFjY2AjyG7YcQeb52c6taBesDHUQ5OVEvAW4DH/zidK5gAgNWoncBNVAtAQI3WAABABoAAAHPBI0AAwAJsgB9AQAvPzAxQQMjEwHPyuvKBI37cwSNAAMACQAABKkEjQADAAcACwAYQAoCAwMECQUIBH0FAC8/MxEzEjkvMzAxQQchNxMDIxMhAyMTA6ch/X4imcrsywPVy+rKAp3AwAHw+3MEjftzBI0AAAEAP//vBE4EoAAqABZACSkqKgUZEH4kBQAvMz8zEjkvMzAxQQMOAicuAzc3PgMXHgIXJy4CJyYOAgcHBh4CFxY2NzcjNwQsRziktVB6sG8sDQkPXJbLf326bQriBjJZQVF4VDEKCggKMGBOPXMzKPUfAmL+L0FGGwIBWpvJckl3zptVAwJYq38BQFYsAwI9aoVITEGCa0ECARkhzK0AAwAJAAAD6ASNAAMABwALABpACwcGBgEKCwsBAH0BAC8/ETkvMxE5LzMwMUEDIxMBByE3AQchNwG/yuzLAn8i/dciAr4i/ZciBI37cwSN/hHAwAHvwMAAAAMAD/8TA/4FcwADAAcAQQApQBMHPj4kCBczBgYzCwIgIBcAABd+AD8zLxEzETM/My8REjk5MxEzMDFBAyMTAwMjEyU2LgInLgM3PgMXHgIHJzYmJiMmBgYHBh4CFx4DBw4DJy4DNxcGHgIzPgIC8zWWNlA2ljYBRQgiPUkiRIVrPAUFVoigT2+8cQLqAy5WODFkSQkHJ0JKHUaEaDkFBlmKpFBXnntFAusDHTtSMjFlSgVz/swBNPrU/swBNPEsOycYChQ1UHZSWYJTJwECUJ93ATpOKAEeQzYoNyUXCRQ5VHlTXIFQJAECL16NXgE0Si4XARtAAAMAEQAABAgEoAADAAcAJgAdQA0EBQUBIhl+DgICDQEKAD8zMxEzPzMSOS8zMDFhITchAwchNyUHDgIHJz4DNxM+AxceAgcnNiYmJyYOAgOU/H0hA4R/Gf0GGQGQHAg6Y0WKJjAdDwUfCkNxnmV5oEsE7gQQOjwzSS0ZwAG5kJBp+VOPdCtZDkJWVyIBAV6jekQDAmezdgExYEACAS1MWwAFAAIAAAPnBI4AAwAHAAwAEQAVABtACwYHAwICERQKCRF9AD8zPxI5fC8zGM4yMDFBByE3BQchNyUBIQEjAxMHIwMBAyMTAzsa/QcZAtQa/QcZAWkBYgEB/iaJJ40sgcwBvWDrYAJEkZHYj4+iAn/89wMK/WhyAwn9lf3eAiIAAAIACQAAA+AEjQADAAcADrUHBgN9AgoAPz8zMzAxQQMjEyEHITcBv8rsywMMIv2cIgSN+3MEjcDAAAAD/6QAAAPrBI0AAwAIAA0AG0AMCAx9AAUFCQIDAwkKAD8zETMRMxEzPzMwMWE3IQcBEzMDIwEBEyMBAysi/TMiAgqE/+Gz/jwBtXem/YvAwANR/K8EjftzA2oBI/tzAAADADv/7QRYBKAAAwAZAC8AF0AKAwICCiAVfisKCwA/Mz8zEjkvMzAxQQchNwUHDgMnLgM3Nz4DFx4DBzc2LgInJg4CBwcGHgIXFj4CAy0i/mYhAroGDl6Yz355rWspCwcOX5nOfnitair9BwYIKllMUXlUMgkHBwcrWkxSelMxAqHAwDg5d9OgWQMCXp7Kbjp30aBYAgNdnsmmOzyAbkUDA0BviUY7PYFxSAMCQnGLAAL/pAAAA+sEjQAEAAkADrUBCQoECH0APzM/MzAxQRMzAyMBARMjAQJohP/hs/48AbV3pv2LA1H8rwSN+3MDagEj+3MAA//bAAADoQSNAAMABwALABdACgcGBgIKC30DAgoAPzM/MxI5LzMwMWUHITcBByE3AQchNwL4Iv0FIQMMI/2XIQMEIf0DIsDAwAH+wcEBz8DAAAMACQAABKQEjQADAAcACwATtwoFCwcCAAN9AD8zMzMzLzMwMUEHITczAyMTIQMjEwP7Iv1/IkXK7MsD0MrtywSNwMD7cwSN+3MEjQAD/9oAAQQMBI0AAwAHABAAJUASDQgJAwoGEBAOB30KAgwDAwIKAD8zETMRMz8zMxEzEhc5MDFlByE3AQchNwEHASM3AQM3MwOHIvzPIgO2IvzwIgF/Av4MqxsBhu8YmsC/vwPNwMD90Bf9u50BvgGrhgADAEEAAAU0BI0AFQAnACsAFUAJFgAAK30eDCoKAD/NMj8zLzMwMUEXHgMHDgMjJy4DNz4DFyYGBgcGFhYXFxY2Njc2JiYnEwMjEwLBeGi7jkoJCnGy2XN4aruMSAkKcbLZZGGkbA4MOXtZi2SkawwLOnxXWcvsywQZAQI5cKpzfbd4OgICO3Stc3y1dDi7ATuAZ115PwMBAT+EaVx1OgMBL/tzBI0AAgBtAAAFRQSNABkAHQAfQA4VFBQGBwcNHA4AHR0NfQA/MxEzPxI5ETMzETMwMUEzAwYCBCcnLgM3EzMDBh4CFxcWNjY3AwMjEwRa6zIapf7yuEmBunIrEDLrMgkHMGZVSn2jWxK4y+vKBI3+07H++JMBAQNbntJ7AS7+0UmKbkQEAQNntHMBLvtzBI0AAAMAAAAABHEEoAAsADAANAAnQBMtNAouMwooEhIpEREyMjEKBh1+AD8zPzMRMxEzMxEzPzM/MzAxQTc2LgInJg4CBwcGBhYWFwcuAzc3PgMXHgMHBw4DBzc+AgE3IQchNyEHA3MFBwwvW0dMdlU0CQUHAhpGQApnlFwlCQQMZJ3Jcm2sdDUJAw1ZjrxxC2B4P/7JIwHAIvwQIgHAIwJrKz5zXTgCAjRefEUrOn1zWRh1EmaXtWIjcr2LSwMCTou3aiRwwJJdD3Ugf6j99cHBwcEAAAMAYv/rBQsEjQADAAcAIwAcQA0XFgsgDQ0DBAoFAgN9AD8zMz8SOS8zPzMwMUEHITcTEzMDEzc+AhceAgcOAwc3Mj4CNzYmJicmBgYEGyL8aSKHyu3LBw81fH47fLhgCQdaj7RgEzJZRiwICCZZQzx2dASNwMD7cwSN+3MB+78aHgwBAV2xgG2UWSgBuhcvTDVFWzABAhMfAAACADn/7QREBKAAAwArABdACgABAQkdFH4oCQsAPzM/MxI5LzMwMUEHITcBNw4CJy4DNzc+AxceAhcjLgInJg4CBwcGHgIXFjY2Ar0i/kQhAgzqFJjjgnipZiUMCg5clcl7gb1sCOoCLV1HUHZPMAkKBwMlVUxLckwCp8DA/twBhbdbAwJcnMdtT3POnFYDAmO4f0ZhNAMCPWuHRFE7f21GAgMvYQAAA//B//8GwwSNABEAKQAtACBADygpKRwsHQEtfR8cCgsICgA/Mz8zPzMzMxI5LzMwMUEzAw4EJyM3Nz4ENyUeAgcOAychEzMDFzY2NzYmJiclNwMHITcBc+9uEixEbJ5xNhYiQ1o5IhUIBCBuu2wIB1iOrVv+G8rtqd1emQ4IKlM0/rYiICL90iIEjf34XLqmgUkByAEEQWV4eTRfA1OheWSTYi8BBI38MwEBZ2M4SygCAcABlcDAAAMACf//BsYEjQAXABsAHwAhQA8XFhYbGhoeCx99DQoKHgoAPzMRMz8zEjkvMzMvMzAxQR4CBw4DJyETMwMXNjY3NiYmJyU3BwchNxMDIxMFL268bQgGWo2uWv4ay+up316YDggqUjX+tyJrIf2NIpnK7MsC9wNToXljlGIvAQSN/DMBAWdiOUsoAgHAW8DAAfD7cwSNAAMAYwAABQoEjQADAAcAGwAZQAsYDQ0DEwQKBQIDfQA/MzM/MxI5LzMwMUEHITcTEzMDEzc+AhceAgcDIxM2JiYnJgYGBBwi/Gkjh8rsywcNNnt+O4O5WA437DgJHlVLO3ZzBI3AwPtzBI37cwH7vxoeDAEBZLuH/qoBV0hlNwICEx8AAAQACf6hBKMEjQADAAcACwAPABtADA8LfQMHBw4KAgIKCgA/My8RMzMRMz8zMDFlAyMTJQchNxMDIxMhAyMTAo5c7FwBsCL9fyLuyuzLA8/K7Muz/e4CEg3AwAPN+3MEjftzBI0AAAIAC//8A/gEjQAXABsAG0AMAgEBDQsOChsaGg19AD8zETM/MxI5LzMwMUEhBwUeAgcGBgcnEyMDBRY+Ajc2JiY3NyEHAm/+uSIBLDRcNwECjVr7qunKAchcsJNiDRBftfoh/YciAunAAQEiSTxjXQEBA837cwICL2CTYnmeT+m+vgAD/4P+rwS/BI0AEAAWAB4AI0AQGh0dCRcKChwUCQoWEREAfQA/MhEzPzMzMxEzETMvMzAxQTMDDgQHIzcXPgM3EyEDIxMhASEDIxMhAyMBmutTEDJMbJJgUBogQF5BLA+MAunK66n+Af4sBMhc7Dv9DzvsBI3+Y1q7sphzHr8BPH+KmVcBmvtzA8388/3vAVH+sAAABf+qAAAGRQSNAAMACQANABMAFwA1QBkUFxcRDAsLBwcREQYODg8KAgIVCgkDAw99AD8zETM/MxEzEjkvMzMRMxEzETMRMxEzMDFBAyMTIQEhNzMBAwM3CQIhEzMHJwEhAQPjyuzKA07+B/7XFacBQ6q7zAEE/Bf+/gEJnbY1jf6f/s8B7QSN+3MEjf1L1QHg+3MCC5D9ZQHYArX+INUf/gkClwACAA7/7gPrBJ8AHgA+AB1ADR8CAgE+PhU0KgsLFX4APzM/MxI5LzMzETMwMUEnNxc+Ajc2JiYjJgYGBwc+AxceAwcOAycXHgMHDgMnLgM3Fx4CFxY2Njc2LgInJwIuwhaBN2pKCAg0WC4xV0EM7QdVhJ1QSZN6RgQDVIKX/qVEinFCBAVfk61VUJNxQALoATFSNDlyUgkGGjZJKJcCKwF9AQEdRz82QRsBGzwxAVh+TyQBASFGd1dUeEwlRwEBIERvUmGGUiQCASpUgVkBN0MdAQEgSkAvPyQRAQEAAwALAAAErQSOAAMABwALABtADAADCgcLCgECBQUIfQA/MxEzMz8zMzMzMDF3ARcBATMDIwEzAyNaA3KP/JAC2enK6f3b6crpVgQ4V/vJBI37cwSN+3MAAAMACgAABGoEjQADAAkADQAfQA4MCwsHBwYGAgkDfQoCCgA/Mz8zEjkvMxEzETMwMUEDIxMhASE3MwEDAzcBAcDK7MsDlf26/u4GtAF9rfq2AVsEjftzBI39S9UB4PtzAguQ/WUAAAP/wf/+BJgEjQADAAcAGQAYQAsTEAoHAgMDCH0GCgA/PzMRMzM/MzAxQQchNyEDIxMhMwMOBCcjNzc+BDcD4CL90iIC5svsyv3I7m8SLUVqnXA2FyJCWTkiFQkEjcDA+3MEjf33W7ingkoCyAIHQWN2eDQAAgB2/+gEiQSNABIAFwAXQAoBF30VFhYODgcLAD8zETMRMz8zMDFBASEBDgIHIiYnNxYWMzI2NjcDExMHAQIIAXUBDP3cLWiLYxw2GhEUKRQyRzYXIJ8orP7rAecCpvx4UIFLAQMCwQMEKUMoA1L9p/7zRQOrAAQACf6vBLgEjQAFAAkADQARAB1ADRENfQUJCRALCAICCAoAPzMvETMzMxEzPzMwMWUDIxMjNzMHITcTAyMTIQMjEwS4btk6gCIFIv1/Iu7K7MsD0Mrty8D97wFRwMDAA837cwSN+3MEjQACAFsAAARbBI0AAwAXABO3FAkJAgMOfQIALz8zEjkvMzAxQQMjEwMHDgInLgI3EzMDBhYWFxY2NgRbyuzKCA41dHY6hcFfDznsOggdVks7dnMEjftzBI39/78YHw4CAV+7jAFc/qNIZDcDARIfAAQACQAABkMEjQADAAcACwAPABlACwsHBw8QCgYGAw59AD8zMxEzPzMRMzAxZQchNwEDIxMhAyMTIQMjEwTxIvvGIgNKyuzKAy7K7Mr8aMrsy8DAwAPN+3MEjftzBI37cwSNAAAFAAn+rwZXBI0ABQAJAA0AEQAVACdAEhENDRV9BBACAhAQDAwTEwkICgA/MzMRMxEzETMvETM/MxEzMDFlAyMTIzczByE3AQMjEyEDIxMhAyMTBldu2DqAIgQi+8YiA0rK7MoDL8vsyvxoyuzLwP3vAVHAwMADzftzBI37cwSN+3MEjQACAEv//ATlBI0AAwAaABdACgYFBQ8SChEBAH0APzIyPzM5LzMwMVMHITcBJQcFHgIHBgYHJxMjAwUWNjY3NiYmbCEBuyIBPf65IgEqNls3AQKPWvuq6coByHvknhIQX7MEjcDA/moBwAECJkw7YmYBAQPN+3MCAlmxgXiiU///AAv//AXZBI0EJgIYAAAABwHzBAoAAAABAAv//APzBI0AFgAVQAkVFhYKDAkKCn0APz8zEjkvMzAxQR4CBw4CJyUTMwMXNjY3NCYmJyU3AnFvs2AREp7lev44yumq+1uNAzZbNf7VIQL3A1OieIGxWQMBBI38MwEBZmI7TCYCAcAAAgAU/+0EHwSgAAMAKwAXQAoCAQEcCCcLExx+AD8zPzMSOS8zMDFBITchAR4CFxY+Ajc3Ni4CJyYGBgcHPgIXHgMHBw4DJy4CJwNY/kUhAbz9hAIvXkhRdE4tCgoHBSZXSktzTBDsFpjghHeqZycMCg9ak8d9fsFwBgHnwP7eR14wAgM+a4ZFUTp+bkYDAjNkRwGFul8DAlydxm5PdM2bVgMDX7OAAAQACf/tBhoEoAADAAcAHQAzAB1ADiQZfi8OCwMCAgYHfQYKAD8/EjkvMz8zPzMwMUEHITcTAyMTAQcOAycuAzc3PgMXHgMHNzYuAicmDgIHBwYeAhcWPgIClSL+kyKXyuzLBTwHDl2Zzn55rmspDAYPXprOfXitain8BwYHKlpLUXpVMgkHBwgrWkxRelMxAqTAwAHp+3MEjf3cOXfToFkDAl+ey284dtGgWAIDXZ7Jqjs9gW5HAwNAb4pGOj2CcEgDA0FxigAAAv/RAAAEUgSOAAMAIwAZQAsjAAQEGRsWfRkBCgA/Mz8zEjkvMzMwMUEBIQEFJSImJicuAicuAjc+AzMFAyMTJwYGBwYWFhcFAmf+dP72AZIB3v6jDRUVCgQGBgNIbTsFBVaKpVYBzcrsqcdXjQ4HJkwyATUCS/21AkuNAQcJBQUNDAYdTnNUYIhVJwH7cwPNAQFUXDdEIgIBAAP/9gAABEkEjQADAAcACwAbQAwLCgoDAgYHBwN9AgoAPz8zETMREjkvMzAxQQMjEyEHITcTByE3AijK7MoDDSH9myK7Hf1zHgSN+3MEjcDA/gGmpgAABv+q/q8GRQSNAAMABwANABEAFwAbADtAHAIOAQEODgYbGBgVEhIQDwwJCRMGBhkKDQcHE30APzMRMz8zERI5LzMzMzMRMzMRMxEzETMvETMwMUEjEzMBAyMTIQEhNzMBAwM3CQIhEzMHJwEhAQWlyVzJ/eLK7MoDTv4H/tcVpwFDqrvMAQT8F/7+AQmdtjWN/p/+zwHt/q8CEAPO+3MEjf1L1QHg+3MCC5H9ZAHYArX+INUf/gkClwAABAAK/q8EagSNAAMABwANABEAJ0ASEA8PCwoKBg0HfQIOAQEODgYKAD8zETMvETM/MxI5LzMzETMwMUEjEzMBAyMTIQEhNzMBAwM3AQO7yVzI/arK7MsDlf26/u4GtAF9rfq2AVv+rwIQA877cwSN/UvVAeD7cwILkP1lAAQACgAABRUEjQADAAcADQARAClAExAPDwoACwsKAwMKCgYNB30OBgoAPzM/MxI5LzMvETMRMxEzETMwMUEzAyMTAyMTIQEhNyEBAwM3AQHXmnCaWcrsywRA/br+QwYBXgF+rPy3AVsDjf1+A4L7cwSN/UvVAeD7cwILkP1lAAQAYAAABXQEjQADAAcADQARACFADxAPDwsKCg4GCg0HBwMAfQA/MjIRMz8zOS8zMxEzMDFTIQchJQMjEyEBITczAQMDNwGCAb8i/kECasrsywOV/br+7ga0AX2s+rUBXASNwMD7cwSN/UvVAeD7cwILkP1lAAABAD7/6AV3BKgARAAbQAwAAQEvGAskIyM6DX4APzMzETM/MzMvMzAxZQcuBDc3PgMXHgMHBw4CBCcuAzc3PgM3Bw4DBwcGHgIXFj4CNzc2NiYmJyYOAgcHBh4CBSYQfOS/h0ANBQtEdKZsaoxQGgkJE4nT/vuPidOLPQ4FDliRxHoWS21JKwkFCRlJgFxos4xZDQYFBRA4OD1UMxwGBQ5EkMqvwQM0ZJrViilht5FTAgNWjq9dRpDuqlwDAlmg3oYwdcqXVQPIAUBqgEElVpRwQAIDP3qnZjUnZ2JCAwI6XmwwLYWyay7//wBsAAAEggSOBCYB4wAAAAcCNgAJ/tMAAv+i/q8EfQSNAAMADwAiQBELDggFBAoGD30CCgEBCgoNCgA/MxEzLxEzPzMSFzkwMUEjEzMBEwEhAQEhAwEhAQEDwshcyP1powEyASH+JgEX/vey/sT+3wHm/vv+rwIQA87+awGV/bH9wgGc/mQCVwI2AAAFAGL+rwW8BI0ABQAJAA0AEQAVACJAEBENDRQVfRASDAkECAICCBIAPzMvETMzMz8/MzMRMzAxZQMjEyM3MwchNxMDIxMhAyMTIwchNwW8btk7gCEFIf1+Iu7K7MoD0cvryq0i/HUiwP3vAVHAwMADzftzBI37cwSNwMAAAwBbAAAEWwSNAAMABwAbAB9ADgAYGA0DAw0NBgcSfQYKAD8/MxI5LzMvETMRMzAxQTMDIwEDIxMDBw4CJy4CNxMzAwYWFhcWNjYB/ZlvmgLOyuzKCA41dHc5hcJeDznsOQkeVUs7dnMDQv1+A837cwSN/f+/GB4PAgFfu4wBXP6jSGU2AwESHwAAAgAJAAAECQSNAAMAFwAUQAkPEhQJCQF9ABIAPz85LzM/MDFzEzMDEzc+AhceAgcDIxM2JiYnJgYGCcvrygkPM3R3OIbCXg456zkJHlVLPHVzBI37cwICvxgfDgECX7uL/qIBXkhlNwICEiAAAQA7//AFlASnADQAG0AMGBgdHRERIgt+LQALAD8yPzM5LzMRMy8wMUUuAzc3PgMXHgMHByUuAzcXBhYWFwU3NiYmJyYOAgcHBh4CFxY2NxcOAgNWecOGPQ4PD2agz3d4snArDhf8I12FUiMFugQZR0EDBwUOK21VTHpZOQsTChhDcU5QmEkxNHuBDwFOkMd7dHPIlFICA1OSw3SYAQNBcZVYATtkPwQDG1J/SwICNmJ9RoVLelcxAQIjHLcgIgwAAQAy/+0EbwSkACsAFUAJERQUGQsLJAB+AD8yPzM5LzMwMUEeAwcHDgMnLgM3NyEHJQcGFhYXFj4CNzc2LgInJgYHJz4CAnt4wII6DRAPZ5/OeHiybywOGANmIv2NBQ4sbFVMelo4CxMJF0NxTlGXSTA1foQEowFQkcd4dHPHlVIDAlKSxHSZwAEaUYBKAwI3YX1Hg0t7WDEBASIduB8iDAAAAgAO/+gEBgSNAAcAJgAbQAwIBQUEJiYdEwsHAH0APzI/MzkvMzMRMzAxUyEHASM3ASETFx4DBw4DJy4DNxcUFhYXMjY2NzYmJicnygM8G/4ypBcBK/3t5J1Mi2o6BQZdkbBZUZNxPwLoM1U1PHBNCAgwWjaQBI2j/mV9AQH+6AICLVV/VGOPWSkCAitWgloBOEUfASRRQj5JIQIBAAADADT/7QRQBKEAFQAkADQAG0AOCyVqLR1qLS0LABZqAAsALy8rEjkvKyswMUEeAwcHDgMnLgM3Nz4DFyYGBgcGBgchNjQnNiYmAxY2Njc2NjchFAYXBh4CApd5rGoqCwYOXpnNf3mtaykLBw5fmc5wWoNUFQEDAgIgAQECJF3kWoJUFAIDAf3hAQEBEzBUBJ4DXZ7Jbjl21KBZAwJenspuOnfRoFnDBFGGTwYLBgYLBkeCVvzTAk+GTwYKBgUJBDZnUzQABAAHAAAECgSgAAMABwALACoAIUAPBgcDAgIJJh1+EgoKEQkSAD8zMxEzPzMSOS8zzjIwMUEHITcFByE3ASE3IQEHDgIHJz4DNxM+AxceAgcnNiYmJyYOAgNDGf0GGQLRGf0GGgNz/H0hA4T+FxwIOmNEiyYwHQ8FHwpDcZ5ld6FOBewDEjo7NEguGQK8kZHrj4/+L8ACIvlTj3QrWQ5CVlciAQFeo3pEAwJjrXUBMlo6AgEtTFsAAAMAHv/xA+4EoQAjACcAKwAdQA0nJiYqKysHGRJ+AAcLAD8zPzMSOS8zMy8zMDFlFjY3FwYGJy4DNzc+AxcWFhcHJiYnIg4CBwcGHgIBByE3BQchNwJlM2QyBjVsN26laSsMGxBYjsB3OnI5KTBiM0ltSy4JHAcGJ1ABMBn9DRoCyRn9DhmxARAMvg4PAQJLhLNrwHK8iUkBARQNuxAPATFYdEPDOWpWNAJQkZHukJAABAAJAAAHtgShAAMAFQAnADEAKUASKzAuLSQJCTEufSotChsSEgIDAC8zM3wvMxg/Mz8zMy8zERI5OTAxQQchNxM3PgIXHgIHBw4CJy4CNwcGFhYXFjY2Nzc2JiYnJgYGAQMjAQMjEzMBEwcjGv3WGhMGCmSiZWGJRQcHCmOhZWCJRrIIBBc/ODtVNAcIBBg/NzpWM/7oyuT+iY7sy+MBeI0BYZCQAaJJZJtWAgJZll9JY5lVAgJXlapLMlY3AQI1WjZKMVY3AgI1WQEI+3MDLfzTBI380wMtAAAC/9oAAAS0BI0AGAAcABtACxscAgEBDgwPfQ4KAD8/MxI5fC8zGM4yMDFBJTcFPgI3NiYmJyUDIxMFHgIHDgMHByE3Ar/9Rx8Cnj5tSggIJU41/wCp68oBz224aggGWIuqWx/9Ox8BnQGyAQEvWEA4TywCAfwzBI0BA1SidmKRXy5NsrIAAAL/9f/zAoUDIwAZADMAGUAKGwAAGRoaCBAsJAAvM8wyOS8zMxEzMDFTMz4CNzYmJyIGByM+AhceAgcOAgcjBzcXHgIHDgInLgI1MxYWFzI2NzYmJifuSSJBLgYHOikqQw+2B1iESEWBVAECXYc+gQcPYkF7TwECZpZLS35MrQFBMTFZCQYdNx8B0AIVLiYsKAEmKE1lLwEBLWBOS1gmAShSAQIgUk1WajECATZrUDIsATQ2JSkSAQAC//MAAAJ5AxUABwALABdACQMHBwEBBgUICgAvzDIyOS8zETMwMUEHITcBMwMHAQMjEwJ5Gv2UDAGynMnOAbaJsooBOZSCAe7+/9oB2/zrAxUAAQAL//MCkgMVACEAErYfCQkEAxkRAC8zzDI5LzMwMVMnEyEHIQc2NjM2FhYHDgInLgInFxYWNzI2NzYmJyIGz5Z4AeEa/rY6HkAgS2w4AwNYjVVHfFADrQQ1Lz1KCAY2NyI7AV4nAZCRnA0PAT5wSld/RAIBNmdLAi4nAUw7NUEBFQAAAQAW//MCbAMkAC0AE7YTHBwDAAwkAC8zzDI5fS8zMDFBMwcnJgYGBwcGFhY3PgI3NiYHIgYGByc+AjMyFhYHDgInLgI3Nz4DAh4iDgdZjl4ODwMOLislPScEBzUzIT0wDS4ISWs9SmcyAwNYjlNdfjwGBAxSh7ADJJYBAzR0W3ckQyoBASU8JDM+ARcrHyM+XTRGdUdVf0YBAlSPWjVrpHI6AAABACUAAAK6AxUABgAMswUBBgIAL8wyMjAxQQcBIwElNwK6FP5HyAG8/lsaAxVy/V0CggGSAAAEAAX/8wKCAyIADwAfAC8APQAXQAoMJDsDFBQ0LBwEAC8zzDI5LxczMDFlDgInLgI3PgIXHgIHNiYmIyIGBgcGFhYzMjY2Ew4CIy4CNTQ2NhceAgc2JiYjIgYHBhYWMzI2AlMCXY5KRIFSAQJgjkdCgFStBBoxGyA7KQUEGi8cIDsq4AJZhUI9eVBWhkZDeEy2BBQnGipEBwQUKBkrROFVaTABAS1iTVJmMAEBLV49HygUFy4iHykUFzABe0xfLAEqWEZPZzEBAS5fVxomEzIsGyYUNAAAAQA0//QCfAMiAC4AE7YSGxsKIwEtAC8zzDI5fC8zMDF3FxY2Njc3NiYmIyIGBgcGFhYzMjY2NxcOAiMuAjc+AhceAgcHDgMHJ3gKUoFVDRQDDCkpJzslBAMTLSMgOCsKNwlDZDpNaTUDA1iPVF12NAYFCk6BrmoWhgECK2VWmiFAKStDJCE3HxYqHSE5WTMBQ3RJVoVLAQJYkVc2baNtNwEBAAABAJECiwM8AzEAAwAIsQMCAC8zMDFBByE3Azwe/XMdAzGmpgADAQgETANaBpoAAwAPABsAGUAJEw0NBwEDAxkHAC8zM3wvGM0RMxEzMDFBNxcFBSY2NzIWFRQGIyImNxQWMzI2NzYmJyIGAaLH8f7v/sABb01HZ2xMSGpgICQlOgUGIiMpNQXYwgHB5E1qAWJJTGleSyAxNyUgMwE6AAQACQAAA/sEjQADAAcACwAPABtADAsKCgYPDgd9AwIGCgA/MzM/MzMSOS8zMDFlByE3EwMjEwEHITcBByE3A1Qi/Xgi88rsywKEIv3LIgLYIv15Ir+/vwPO+3MEjf4tv78B08DAAAT/h/5JBEsEUQASACQAWwBfADNAGl1fBnIlJhgYD0BBQS5TUw8PBUo3D3IhBQdyACsyKzIROS85ETMzETMRMxI5OSsyMDFTNz4CFx4CBwcOAycuAjcHBhYWFxY2Njc3NiYmJyIGBgMXBgYHBhYWFxceAgcOAycuAzc+AjcXDgIHBh4CMxY+Ajc2JiYnJy4CNz4CAQchN1oCCpDVc2u3bAYBCFmJpFNouG/xAwMsUTI3ZUcJAwQrUDQ4ZkYtXCQ/BwUcLxitW6ViBgV3s8FOPJeLWAMDZpdOMyU/KgcGJ0NMIChpZ0oJCClHJsE5cEkBAj5eA1wZ/owQAsYWe6dTAwJTnnQXWotdLgICVJyIFjVNKgEBLVM4FjVOLAEsVP61OBM6LB4eCgEBAjl9amKKVSYBARg7aFBafEsRWwouQigrNh0MAQ8mQTMuMBICAgEiTkNAXUMCiZWVAAAEADv/5wSJBFIAFQArAC8AMwAXQAwwCi0GHBELcicGB3IAKzIrMj8/MDFTNz4DFx4DBwcOAycuAzcHBh4CFxY+Ajc3Ni4CJyYOAgUTMwMDEzMTRAMMRXixeGmJTRsEBxFMeqhta45PGfkCBQMfS0NBY0gtCwcECCJIPUxrRCYByqnaxsUMtBAB9BVm0K1mAwNlobtYOF++m1wDA12Xt3IWMnJlQQECQGl3NjQudW9JAwNJeYkrAh794v3kAhz95AACACsAAATqBbAAGQAuAB9ADyYIGxoaAgEBDgwPAnIOCAA/KzISOS8zMxEzPzAxQSE3BTI2Njc2JiYnJQMjEwUeAgcOAg8CNx4CBwcGBhYXByMmJjY3NzYmJgLa/mIhAUxPilsLCStgRf7Z2vX9AgqAy20KCXi1YyB7OXazWg8RBQMRGgPxGxAEBhAJIlcCWMYBL2dVR2I0AgH7GAWwAQNatYpxlFkYMRSEAlKif3UkTUceHCFUWSdySGg7AAMAKwAABXYFsAADAAkADQAgQBAKCAkCDAsLBwYGAgMCcgIIAD8rEjkvMzMRMz8/MDFBAyMTIQEhNzMBAwE3AQId/fX9BE79Mv6gBekCBrz+pLYBvQWw+lAFsPzC2gJk+lACpLf8pQAAAwAUAAAERgYAAAMACQANABxADgsHBgYCCQZyAwByCgIKAD8zKysSOS8zMzAxQQEjCQIhJzMBAwM3AQIK/vXrAQsDJ/3p/uAj3wFYgfauAUwGAPoABgD+Ov2hvwGg+8YCBaD9WwAAAwArAAAFYAWwAAMACQANABpADgYLBwgMBQIJAwJyCgIIAD8zKzISFzkwMUEDIxMhASE3MwEDATcBAh399f0EOP0N/s4KYwJ3yP4Z4QImBbD6UAWw/QZ2AoT6UALfYPzBAAADABQAAAQzBhgAAwAJAA0AIEAQDAsLBwYGAgkGcgMBcgoCCgA/MysrEjkvMzMRMzAxQQEjCQIhNTMBAwE3AQIO/vHrAQ8DEP28/vx+AZt+/rS8AZsGGPnoBhj+Iv3BngGh+8YCH3n9aAAAAgAJ//8EFgSNABkAHQAWQAkbGg8CAQ4PfQEALz8zETMRMzIwMWEhNxcWNjY3NzYuAiclNwUeAwcHBgYEAwMjEwGG/uoj+nSlZA8ICA00ZVH+4SIBAne3ezYMBhSw/u5vyuzLvwEBW6RvOkd/YzsDAcABA1aVxnM5p/uLBI77cwSNAAEAOf/tBEQEoAAnABG2GRUQfiQABQAvzDM/zDMwMUE3DgInLgM3Nz4DFx4CFyMuAicmDgIHBwYeAhcWNjYDDOoUmOOCd6pmJQwKDlyVyXyAvWwI6gItXUdQdk8wCQoHAyVVTEtyTAGDAYW3WwMCXJzHbU9zzpxWAwJjuH9GYTQDAj1shUVRO39tRgIDL2EAAAIACf//BAAEjQAZADEAKEATHBspGQICARsmAQEmGwMNDA99DQAvPzMSFzkvLy8RMxI5OREzMDFBITcFPgI3NiYmJycDIxMFHgMHDgIHAyE3BT4CNzYmJicnNwUXHgIHDgMCQv67HAEJNGVICAgpTi/PqezLAZJLlHdEBQVqoVaz/nqBAQw1ZkkKCCJIMf0fASQpTnxFBAVViKUB/aYBARxDOjc9GwEB/DMEjQECH0Z3WWJ4OwX9xb8BAh9GOzVDIgIBpgFBBEB0U2KETyIAA/+aAAAEAQSNAAQACQANABxADA0ABgMMDAEHA30FAQAvMz8zEjkvEjk5MzAxQQEjATMTAzczEwMHITcCgP4T+QKSpky3BJv7qyD9eSADk/xtBI37cwOr4vtzAbC1tQAAAQDoBG0CLAYqAAoACrIFgAAALxrNMDFTNz4CNxcGBgcH6BQILkkyfyM2DBcEbYQ9c2MmUjp0Q3oAAAIBBATSA30GfAAPABMAErUSEwoADQUALzN83DLWGM0wMUE3DgInLgInFwYWFzI2JyczFwLTqgdmlEpHiVsDpgJIOz1dpIeiUQWwAlRjKQIBLGFRAj01ATZHwcEAAv0nBL7/dgaJABcAGwAdQAwAFRUFGRsbCRERDAUALzMzETMzLzMRMxEzMDFDFw4CBwYmJgcGBgcnPgIzMhYWNzY2JzcXB/piBidHMypERCcmKgtmBSpINClERicmKfOkytUFnhwuUzYBASgnAwI1IBouVTUnJwMCNzrRAdAAAgDcBOcFHQaKAAYACgAUtwgHBwUBgAQGAC8zGs05My/NMDFTJRcXBycHJRMzAdwBQZjvtYK0Ab/D4v8ABOf2AfQBjY2bAQj++AACABYE2wOhBn8ABgAKABdACQdACAgDBoACBAAvMxrNOTMvGs0wMUEXIycHIyUlEyMDArPutYKz3gFB/r9qiaQF0faOjvau/vgBBwAAAgDcBOgEjwbHAAYAGgAfQA0REghAGgkICAMGgAIEAC8zGs05MxEzMxoQzDIwMUEXBycHByUFJzc+Ajc2JiYjNx4DBwYGBwK/5KWPxc4BNwHmjQoWOi8FBCs6EhAjVk4xAgJTNgXe9QGfngH3dAF7AggZHR0XBWcBDSI8MD47CwACANsE6AOjBswABgAeACVAEAgHBxAYDEAUExMcDAwGgAQALxrNMhEzMxEzGhDNMjIRMzAxQRcHJwcHJSUXDgIHBiYmBwYGByc+AjMyFhY3NjYCrfalksLPAUUBGlkGJD8sJUA9JR8mC1sGJD8tJEA/JCAmBdLpAY6NAer6HChILgEBJiUDAi0aGCdJMCYjAwMtAAMACQAABBYFxAADAAcACwAbQAwCCgoLCwcDAwd9BgoAPz8zLxEzETMRMzAxQQMjEwEDIxMhByE3BBZY61j+lMrsywMMIv2cIgXE/gkB9/7J+3MEjcDAAAACAQQE0QN8BnwADwATABK1ERMACg0FAC8zfNwyGNbNMDFBNw4CJy4CJxcGFhcyNic3FwcC06kGZpRKR4pbAqUBSDs9XcyWwMgFrwJVYikCASxhUQI9NQE2ScABvwAAAgEFBNMDdQcHAA8AJQAoQBEbHBwRJRISEREJDQUACQkFEAA/M3wvMxEzETMYLzMRMxEzLzMwMUE3DgInLgInFwYWFzI2JyM3PgI3NiYmIiM3HgMVDgIHAs+mBmWRSkeIWgGjAkg6O10logcVQzgEBCAwLgsNIGJhQAExSCIFrwJTYikCAStgUQI8MwE0U3UBBRcdFRUIXwEIHDgxKjEXBgD//wCJAokC9AW8BgcB1wBzApj//wBmApgC7AWtBgcCMABzApj//wB+AosDBQWtBgcCMQBzApj//wCJAosC3wW8BgcCMgBzApj//wCYApgDLQWtBgcCMwBzApj//wB4AosC9QW6BgcCNABzApj//wCnAowC7wW6BgcCNQBzApgAAQBs/+gFPwXIACkAFUAKGhYRA3ImAAUJcgArzDMrzDMwMUE3BgYEJy4ENzc2EjY2Fx4CFycuAicmDgIHBwYeAxcWNjYD6fIbrv77nXezfUcWDQcScrj4mZvadwb0BDZxXmqhcUUNBwgBG0BqUWORYAHZAp3gdgMCUo62zWk4jQEFzncDA33glwFXhk8DA12cu1k5Po2Ib0YCA0mIAAABAGv/6gVGBcgALQAbQA0tLCwFGhYRA3ImBQlyACsyK8wzEjkvMzAxQQMOAicuBDc3NhI2NhceAhcjLgInJg4CBwcGHgMXFjY2NxMhNwUTVzu70F15vohSHQ4FE3K5+5uU2H0L7gc/c1RrpXRGDQYJBSVJdVQ0aWIpNv7jIQLh/dpQWyYBAlCLt9JuKI4BCNJ5AwNuz5JRdkEDA1+gvVwoRZKHbUECAQ4lIgEfuwACACsAAAUVBbAAGwAfABK3HA8QAnICHQAALzIyKzIyMDFhITcFMj4CNzc2LgInJTcFHgMHBwYCBgQDAyMTAeD+tyUBInO+klsQBg0YUJFt/rIjATuW5JQ+EAUUiNb+72D99f3HAUuKunAsYLOMVAMByAEDcML8ji2b/v2+ZwWw+lAFsAACAG7/6AVpBcgAGQAxABC3IRQDci0HCXIAKzIrMjAxQQcOBCcuBDc3PgQXHgQFNzYuAycmDgIHBwYeAxcWPgIFXQUPUYKt03t2tH5MGQwFD1ODrdJ4drV/Sxn++wYIBB9CbVFopnlJDQYIBB9CbVFrpndIAvUtcNe9jU8DAlWQuM5nLW/Wu41PAwJUjrfOky4/jIVuQwMDXp28WS4+jYhwRgIEXqC/AAADAG3/BAVpBcgAAwAdADUAG0ANJRgDcgADAzELCXIBAgAvMysyMhEzKzIwMWUBBwEBBw4EJy4ENzc+BBceBAU3Ni4DJyYOAgcHBh4DFxY+AgNjAT6s/skCngQPUoCs1Xt3tX9KGQ0ED1OBrdN6d7V/Sxj+/AUIAx5CbVJqp3dJDgQIAx9BblFtpnZIwv7IhgE2ArUjcdm9jk8DAlWRuNBpInHYvI5PAwJVjrnQiiRAjYdvRAMDX5+9XCM/jolxRgIEX6HAAAABAKsAAAMwBI0ABgAVQAkDBAQFBQZ9AgoAPz8zLzMRMzAxQQMjEwU3JQMwxOqX/pIlAj0EjftzA2p60M0AAAEAHAAABAkEogAgABdAChAQDBV+AyAgAhIAPzMRMz8zMy8wMWUHITcBPgI3NiYmJyYGBgcHPgIXHgMHDgMHBQPJIfx0HQIaKlI8CAcnTDFFa0UM6QuS3nxMjm89BwQ7Wmky/sa/v6UBnyJMWjk0RSQBAjllQQGBumICAihQfVZFdWJWKPkAAf+B/qEEEgSNAB8AGkALBgAeHgMWDwUCA30APzMzLzMSOS8zMzAxQQEhNyEHAR4CBw4DJyYmJzcWFhcWNjY3NiYmJycBRAF//dIiA1sa/mNpkEQIC3Gz431mv1tGRZxSabR4Dg1AiF5TAl8BbsCX/oITgbhogsuNSQIBOiyzKy8BAlWcamR+PQEBAAAC/9H+xAQfBI0ABwALABZACQYEC30KAwcHAgAvMxEzLz8zMzAxZQchNwEzCQMjAQQfIvvUFAM7yP7x/hEDMP7/6wEBv8CeA/D+iP2rA836NwXJAAAB/9j+nQRNBIwAJwAWQAkkCQkCGhMFAn0APzMvMxI5LzMwMUEnEyEHIQM2NhcyHgIHDgMnJiYnNxYWFxY+Ajc2LgInJgYGASvO3AMUJP2vdDZ4PWeSWCIJC2Wj0Hhqw1lYPJtQTIBjPQoGDi5RPTBSQwFqEgMQzP6fHxkBT4esXnjFkEwBAj03rzQxAQE0Xn1KNWdTNAEBFjIAAQAx/sQEWgSNAAYAD7UBBQUGfQMALz8zETMwMUEHASMBJTcEWhn86PgDDP1DIgSNkfrIBQgBwAACAQUEzAODBtkADwAnAClAEREQEBkhIRUdHBwlFRUACQ0FAC8zzTIyfC8zMxEzETMYLzMzETMwMUE3DgInLgInFwYWFzI2ExcOAiMGJiYHBgYHJz4CMzIWFjc2NgLNpwZkkktHh1gCpQNFOzxcY2EEKUg0KURFJyYpC2cGKUk0KEVGJyYrBa4CVWMsAgEuY1ECPDUBNQFnGy9UNQEoJwIDNSEcLlQ2KCYCAzUAAf+4/poBAQCzAAMACLEBAAAvzTAxZQMjEwEBXexes/3nAhkABQA7//AGnwSfACkALQAxADUAOQAxQBg4OTkxfRYtLRcwCjU0NCYbAQYGJn4RGwsAPzM/MxEzERI5LzM/MzMRMz8zETMwMUEHLgMnJg4CBwcGHgIXFj4CNxcOAicuAzc3PgMzHgIBByE3EwMjEwEHITcBByE3BCYnLFpaWi1Se1YzCgcHBihYSy1aW1kuBT5+fT55rGkpCwcPXprOfkGCggISIf14IfTK7MsChCL9yyIC2CL9eSIEjcMCBggGAQFAbYpIOzyAb0cEAgMFBgG/AwcGAgNdncluOnjQn1gBCAn8Mr+/A877cwSN/i2/vwHTwMAAAAEARf6xBD0EpAA7ABS3ABUfHzULKTUALy8zEjkvMzIwMUUWPgI3NzYuAicmDgIHBh4CFxY+Ajc3DgInLgM3PgMXHgMHBw4EJyYmJzcWFgFRcaNuQQ8kBwQmVEZEaUkqBwUJKUw8OWtbPwxkDoDNhGiUWiMIClWMu3B5rGclDh8QSHCdyn1LkERAMWWQAmChwV/2OHhpQgMBO2R4OzFrXDwCAh8+WTkKgMVtAwNTi69fasCTVAIDXp/Lb89u17+SUgIBIR2wFRwAAf8A/kcBOwDOABEACrINBgAAL8wyMDF3MwMOAiciJic3FhYzMjY2N0/sKQ9hpnUjQyEgFzEZNEImB87+9W6sYgEKCMIGCTRULf///6n+oQQ6BI0EBgJcKAD////a/p0ETwSMBAYCXgIA////yf7EBBcEjQQGAl34AP//ABMAAAQABKIEBgJb9wD//wBN/sQEdgSNBAYCXxwA//8AIv/oBD8EowQGAnXWAP//AFb/6QQHBboEBgAa+QD//wAx/rEEKQSkBAYCY+wA//8AN//pBEIFxwYGABwAAP//APgAAAN9BI0EBgJaTQD///8E/kcB2wQ6BAYAnAAA////BP5HAdsEOgYGAJwAAP//ACMAAAHKBDoGBgCNAAD///98/l8BygQ6BiYAjQAAAQYApNQKAAu2AQQCAABDVgArNAD//wAjAAABygQ6BgYAjQAAAAMACf/mA+cEoQADABYAMQApQBQPJiYNIyMJGy8LcgQAAAITCX4CCgA/PzMSOS8zKzIROS8zMxEzMDFBAyMTFwc+AhcWFhcBJzc3JiYnJgYGAzcWFjMyNjY3NiYmJyc3NzYeAgcOAicmJgFzg+eC6+AKbcKLfr9Q/nSLFfEcRShHWC9CVR5EJjlXNgcINl41XhxfS5BzQAQIcbxzPnMC7f0TAu0CAoXHbAMDeFv+ZgN7/BwgAQFLdPz8thgcNlg2P0IYAQGeBQIjTHpVda9hAgEeAAIATP/oBGkEowAVACsADrUcEX4nBgsAPzM/MzAxQQcOAycuAzc3PgMXHgMHNzYuAicmDgIHBwYeAhcWPgIEXgIPW5fRhH6uaCYMAg9dmNGDfa5nJfoGBggpWUxRe1YzCQUGBypZTVJ7VTECVRF626leAwNjp9FxE3nZp10DAmOl0JEyPIJxSQMDQ3OMRjE8hHRLAwNEdY4AAQBWAAAEYQWwAAYAE0AJAQUFBgRyAwxyACsrMhEzMDFBBwEjASE3BGEZ/Qb4Avr9WiEFsJH64QTwwAAAAwAQ/+gEJQYAAAQAGgAvABlADiEWB3IrCwtyBApyAAByACsrKzIrMjAxQTMDByMBBw4DJy4DNzc+AxceAwc3Ni4CJyYOAgcHBhYWFxY+AgEb7OVEzgQLAwxKfbB0Z4lOHQUIEEt4qGtxklAZ+AIGBiVRRz1mTjQLHQQrXkpLb0ssBgD62dkCLRZkyKNgAwNhmrZYRF2/nV4DA2Ofv3IWN3hpRAICLFBnOLdDe08CA0BtgQAAAQA2/+kD9gRRACcAGUAMHRkZFAdyBAQACQtyACsyMi8rMi8yMDFlFjY2NzcOAicuAzc3PgMXHgIHIzQmJicmDgIHBwYeAgHjPGJGD90OjM5xc6VkKAsFDViQw3h4rFwB2yZQP0ptSywIBAYEI1CqAi9WOAJ1rF0CA1qXwWgkcMiYVQMDarZ1OWE9AgM+aYA/IzZ5akQAAwA3/+gEmQYAAAQAGgAvABlADSEEBBYLcisLB3IBAHIAKysyKzIvMjAxZRMzASMBNz4DFx4DBwcOAycuAzcHBh4CFxY2Njc3Ni4CJyYOAgLM4ez+9cr9fAMMS3+zc2iHTRwECBBNeadrbJFTHPkDBgcnUURPflQRHAMUMVA4S3BNLu4FEvoAAgkWZcqkYAMDZJ23V0RdvJxcAwRjoLxyFTZ3akQDA01/SLcyYlAyAQNAbYIAAwAt/lIESgRRABMAKQA+ABtADzAlC3I6GgdyDgYPcgAGcgArKzIrMisyMDFBMwMOAycmJic3FhYXFjY2NxMBNz4DFx4DBwcOAycuAzcHBh4CFxY2Njc3Ni4CJyYOAgN9zasRWI7AeFWkSkA4f0JkiVEOhP0LAgxLfbN1aolLGwUIEUx5qGtskVIc+QMGBydRRFF8VBAdAxMyUDlLb00uBDr8FnK8iEgCATAprCIoAQNSj14DCP63FmbJomADAmKbuFpDXr2bXAMDZaC8cRY1d2pEAgRNfkm3M2NPMQICQG2CAAIAMv/pBDQEUQAVACsAELccEQtyJwYHcgArMisyMDFTNz4DFx4DBwcOAycuAzcHBh4CFxY+Ajc3Ni4CJyYOAjwDDV2WyHlzqWwsCgMOXpfIeHGpbCz4AwYKKldGSnNSMQkDBQgsVkZLc1ExAgoXccycVwMCW5rCahhxyplWAwJamMGAFzh6aUMCAz9rgkEWOHtrRQICQG2DAAAD/8j+YAQkBFIABAAaAC8AGUAOIRYHcisLC3IDBnICDnIAKysrMisyMDFBAyMBMwEHDgMnLgM3Nz4DFx4DBzc2LgInJg4CBwcGFhYXFj4CAZLe7AEE0gJ8AwxKfbFzZYlTIAQKEE16qWxvklAa+QMGCCdTRT1nTTQMHwMtXkhKcE4uA1z7BAXa/fMVZMijYQMDXZWyWFFevp5dAwNjoL5xFTZ4akQCAy1QZjjEQndLAwJCboIAAAMANv5gBEoEUgAEABoALwAZQA4hFgtyKwsHcgQOcgMGcgArKysyKzIwMUETNzMBATc+AxceAwcHDgMnLgM3BwYeAhcWNjY3NzYuAicmDgICWeFBz/78/PoDDEp/tHVoiU4cBAgQTXuoa22SVBz6AwYHJ1JFUH9UER0DFDJROUtxTi7+YAURyfomA6kWZsqjYAMDY524V0RevZtbAwNjn71yFTZ4akYDAk2ASrczY1ExAgJBboMAAQA6/+wD9QRRACoAGUAMExISABkLB3IkAAtyACsyKzIROS8zMDFFLgM3Nz4DFx4DBwchNwU3NiYmJyYOAgcHBh4CFxY2NxcGBgIEcrB1MwkEDVePwHVtm10hDBT81B8CPQULHFFGSmxJKggFCBU8ZkpMkkIpSsMTAVORwG0rbcebWAMCU4y0ZX+tAR1AbEMDAj9rgD4qQnlfOAIBLCanOy8AAwAu/lIEOQRRABIAKAA9ABtADy8kC3I5GQdyDQYPcgAGcgArKzIrMisyMDFBMwMOAicmJic3FhYXFjY2NxMBNz4DFx4DBwcOAycuAzcHBh4CFxY2Njc3Ni4CJyYOAgNrzq0WkOqdT5xGQDV1PWGJUg6G/R0DDEV2rXRriUsaBQgQTHmna2yMSxb4AgYCH0tDUXtQER0DEy9POUtqRicEOvwLl+J6AgEpJK0eIQECTIpcAxT+thZkyKVhAgNhnLhaRF28nFwDBGWhvG4VM3ZrRgIETX9ItzNiUDECAkJugQAC/5/+TwRnBEgAAwAlABlADA4VAQEVHwQHcgMGcgArKzIvMy8RMzAxQQEjASUeAxcTHgIXFjY3BwYGJy4DJwMuAicmBgc3NjYEZ/wz+wPN/Yw/WD4rEO4HFyUfEygTNBgvGDpRNiMO4QoiNykQIhAMHj0EOvomBdoNASxKYDT8Zho6LAYDAQHBBgUCAjpZZy8DdSNCKwEBAwG5BwkA//8AqwAAAzMFtQQGABW6AAABACT/7QRJBJ8AQQAXQAs4OBAifhkKMwALcgArMj8/MzkvMDFFLgM3PgI3JTY2NzYmByIGBwYWFhcBIwEuAjc+AhceAgcOAgcFDgIHBhYWFxY+Ajc3BgYHBgYHBgYBmEKFbj8EBEJlOgEfI0gHBTsrM1AIBiAzFAIX8v5BJkUrBAZpoFZPjVUFAzVSL/7GGS0gBQcpSCldn3pODcsNa1kOHhBW4BEBI0duTUpuVySzGEIvLTQBQzIlQzwa/U8CRDBibEFdf0ABAj95WDtgTh7HESkzIC86GgEEPXCXWQF+zFcOHAtGPgAAA//vAAADPQSNAAMABwALAB1ADQgJCQsKCgYHfQMCBgoAPzMzPxI5LzMzLzMwMWUHITcTAyMTAQcFNwM9Iv2bIvPK68oBqBv9ghu/v78DzvtzBI3+pZm6mAAABv9+AAAGDwSNAAMABwALABAAFAAYADNAGAoLCxgYDwcGFBMGEwYTDQ99AwICFxcNCgA/MxEzETM/Ejk5Ly8RMxEzETMRMxEzMDFlByE3AQchNwEHITcHASEBMxMHITcBAyMTBZAi/ZYhAl0h/eAiAqwh/ZUicf1V/vUDJKMuIv2aIQL4oemhvr6+AgC+vgHPvr5/+/IEjf03vLwCyftzBI0AAgAJAAADvASNAAMAGQAXQAoPEBABfQUEBAAKAD8yLzM/My8zMDFzEzMDJzcXMjY2NzYmJicnNxceAgcOAiMJy+vKKSLZPXBNCQgqUzXyI9Rvu20ICZPeewSN+3PkwQEoU0M6TikCAcABA1OieYarUAAAA//b/8cEuwS7ABUAKwAvABtACy8vHBF+LS0nBgtyACsyMnwvGD8zM3wvMDFBBw4DJy4DNzc+AxceAwc3Ni4CJyYOAgcHBh4CFxY+AgEBIwEETAYOXpjPfnmtaykLBw5fmc5+eK1qKv0HBgcrWUxReVQyCQcHBytaTFJ6VDABafvLqwQ1Amk5d9OgWQMCXp7Kbjp30aBYAgNdn8imOz2AbUUDA0BviUY7PYFxSAMCQnGLAtH7DAT0AAQAIgAABP4EjQADAAcACwAPABtADAIDgA4PDwsHfQoGCgA/Mz8zMy8zGswyMDFBByE3EwMjEyEDIxMFByE3A8Ai/X4imsrsywPUy+rKASge+30eAp3AwAHw+3MEjftzBI2Wp6cAAAIACf5HBKgEjQAJABsAH0APFxAPcgkDBn0ICgoCAgUKAD8zETMRMz8zMysyMDFBAyMBAyMTMwETAzMHDgInJiYnNxYWMzI2NjcEqMrk/omO7MvjAXiNvesSDmOmdiNDIiMYMBg0QyYIBI37cwMt/NMEjfzTAy37uIFwrGEBAQoJwAYJNFMuAP//AEACDgJlAs4GBgARAAAAAwAgAAAE9wWwABoAHgAiACNAEQIBAR0iISEdDg8PHgJyHQhyACsrMhEzETkvMxEzETMwMWEhNwUyNjY3NzYuAiclNwUeAwcHDgIEAwMjEwEHITcB7v7DJQEfk897FQoLCz58Z/61IwEvktWGMxAKFXzE/v9Q/fb9AYoe/XMdxwKG4IdQVamNVwMByAEDcb/2h06T/bpnBbD6UAWw/YSmpgAAAwAgAAAE9wWwABoAHgAiACNAEQIBAR0iISEdDg8PHgJyHQhyACsrMhEzETkvMxEzETMwMWEhNwUyNjY3NzYuAiclNwUeAwcHDgIEAwMjEwEHITcB7v7DJQEfk897FQoLCz58Z/61IwEvktWGMxAKFXzE/v9Q/fb9AYoe/XMdxwKG4IdQVamNVwMByAEDcb/2h06T/bpnBbD6UAWw/YSmpgAAAwArAAAEEAYAAAMAGgAeABlADR4dFgoHcgMAchECCnIAKzIrKzLEMjAxQQEjARMjPgMXHgMHAyMTNiYmJyYOAgEHITcCIf716wELH0oNRXambVl3RBYJdO12BhREQUZrSy4BrR39cx0GAPoABgD8RV67mVoDAkJxkVH9SQK6O145AQI4YHYC7qamAAADAJ0AAAUlBbAAAwAHAAsAFUAKAwoLBgcCcgEIcgArKzIvMzIwMUEDIxMhByE3AQchNwNq/PT9Aq4j+5sjAxse/XMeBbD6UAWwyMj+CKamAAP/5f/tAq4FQwADABUAGQAdQA4KEQtyGBkZAgIEBAMGcgArMi8yETMvMysyMDFBByE3EzMDBhYWFxY2NwcGBicuAjcBByE3Aq4f/bAe2euzBAklJxUrFhEkSyZabiwIAg0e/XMeBDqwsAEJ++YjNB0BAQYDugsKAQFRiFQBwaamAP///6MAAASrBzcGJgAlAAABBwBEAVQBNwALtgMQBwEBYVYAKzQA////owAABMMHNwYmACUAAAEHAHUB9gE3AAu2Aw4DAQFhVgArNAD///+jAAAEqwc3BiYAJQAAAQcAngDyATcAC7YDEQcBAWxWACs0AP///6MAAATFByoGJgAlAAABBwClAQEBNwALtgMcAwEBa1YAKzQA////owAABKsHBgYmACUAAAEHAGoBHgE3AA23BAMjBwEBeFYAKzQ0AP///6MAAASrB5IGJgAlAAABBwCjAY0BbAANtwQDGQcBAUdWACs0NAD///+jAAAE2AexBiYAJQAAAQcCNwF+ARcAErYFBAMbBwEAuP+ysFYAKzQ0NP//AF/+NwUKBccGJgAnAAABBwB5Abz/+gALtgEoBQAAClYAKzQA//8AJgAABLwHPgYmACkAAAEHAEQBIQE+AAu2BBIHAQFsVgArNAD//wAmAAAEvAc+BiYAKQAAAQcAdQHDAT4AC7YEEAcBAWxWACs0AP//ACYAAAS8Bz4GJgApAAABBwCeAL8BPgALtgQTBwEBd1YAKzQA//8AJgAABLwHDQYmACkAAAEHAGoA6wE+AA23BQQlBwEBg1YAKzQ0AP//ADcAAAIyBz4GJgAtAAABBwBE/9kBPgALtgEGAwEBbFYAKzQA//8ANwAAA0gHPgYmAC0AAAEHAHUAewE+AAu2AQQDAQFsVgArNAD//wA3AAADFwc+BiYALQAAAQcAnv93AT4AC7YBBwMBAXdWACs0AP//ADcAAAMwBw0GJgAtAAABBwBq/6MBPgANtwIBGQMBAYNWACs0NAD//wAmAAAFhgcqBiYAMgAAAQcApQEsATcAC7YBGAYBAWtWACs0AP//AGL/6QUiBzgGJgAzAAABBwBEAWwBOAALtgIuEQEBT1YAKzQA//8AYv/pBSIHOAYmADMAAAEHAHUCDQE4AAu2AiwRAQFPVgArNAD//wBi/+kFIgc4BiYAMwAAAQcAngEKATgAC7YCLxEBAVpWACs0AP//AGL/6QUiBywGJgAzAAABBwClARgBOQALtgI6EQEBWVYAKzQA//8AYv/pBSIHBwYmADMAAAEHAGoBNQE4AA23AwJBEQEBZlYAKzQ0AP//AFj/6AUxBzcGJgA5AAABBwBEAUkBNwALtgEYAAEBYVYAKzQA//8AWP/oBTEHNwYmADkAAAEHAHUB6gE3AAu2ARYLAQFhVgArNAD//wBY/+gFMQc3BiYAOQAAAQcAngDmATcAC7YBGQABAWxWACs0AP//AFj/6AUxBwYGJgA5AAABBwBqARIBNwANtwIBKwABAXhWACs0NAD//wChAAAFUAc2BiYAPQAAAQcAdQHBATYAC7YBCQIBAWBWACs0AP//ABz/6QPRBgAGJgBFAAABBwBEAKwAAAALtgI9DwEBjFYAKzQA//8AHP/pBBsGAAYmAEUAAAEHAHUBTgAAAAu2AjsPAQGMVgArNAD//wAc/+kD6wYABiYARQAAAQYAnksAAAu2Aj4PAQGXVgArNAD//wAc/+kEHQX0BiYARQAAAQYApVkBAAu2AkkPAQGWVgArNAD//wAc/+kEBAXPBiYARQAAAQYAancAAA23AwJQDwEBo1YAKzQ0AP//ABz/6QPRBlsGJgBFAAABBwCjAOYANQANtwMCRg8BAXJWACs0NAD//wAc/+kEMAZ6BiYARQAAAQcCNwDW/+AAErYEAwJIDwAAuP/dsFYAKzQ0NP//ADf+NwPmBFEGJgBHAAABBwB5AUH/+gALtgEoCQAAClYAKzQA//8AOv/rA/AGAAYmAEkAAAEHAEQAlgAAAAu2AS4LAQGMVgArNAD//wA6/+sEBQYABiYASQAAAQcAdQE4AAAAC7YBLAsBAYxWACs0AP//ADr/6wPwBgAGJgBJAAABBgCeNAAAC7YBLwsBAZdWACs0AP//ADr/6wPwBc8GJgBJAAABBgBqYAAADbcCAUELAQGjVgArNDQA//8AIwAAAeQF9wYmAI0AAAEGAESL9wALtgEGAwEBnlYAKzQA//8AIwAAAvoF9wYmAI0AAAEGAHUt9wALtgEEAwEBnlYAKzQA//8AIwAAAsgF9wYmAI0AAAEHAJ7/KP/3AAu2AQcDAQGpVgArNAD//wAjAAAC4gXGBiYAjQAAAQcAav9V//cADbcCARkDAQG1VgArNDQA//8ADQAABCcF9AYmAFIAAAEGAKVjAQALtgIqAwEBqlYAKzQA//8AOP/pBB4GAAYmAFMAAAEHAEQAqwAAAAu2Ai4GAQGMVgArNAD//wA4/+kEHgYABiYAUwAAAQcAdQFNAAAAC7YCLAYBAYxWACs0AP//ADj/6QQeBgAGJgBTAAABBgCeSQAAC7YCLwYBAZdWACs0AP//ADj/6QQeBfQGJgBTAAABBgClWAEAC7YCOgYBAZZWACs0AP//ADj/6QQeBc8GJgBTAAABBgBqdQAADbcDAkEGAQGjVgArNDQA//8ASv/oBC8GAAYmAFkAAAEHAEQAsgAAAAu2Ah4RAQGgVgArNAD//wBK/+gELwYABiYAWQAAAQcAdQFUAAAAC7YCHBEBAaBWACs0AP//AEr/6AQvBgAGJgBZAAABBgCeUAAAC7YCHxEBAatWACs0AP//AEr/6AQvBc8GJgBZAAABBgBqfAAADbcDAjERAQG3VgArNDQA////vP5HBBkGAAYmAF0AAAEHAHUBHgAAAAu2AhkBAQGgVgArNAD///+8/kcEGQXPBiYAXQAAAQYAakcAAA23AwIuAQEBt1YAKzQ0AP///6MAAASrBuMGJgAlAAABBwBwAPkBOQALtgMQAwEBplYAKzQA//8AHP/pBAMFrQYmAEUAAAEGAHBSAwALtgI9DwEB0VYAKzQA////owAABKsHHwYmACUAAAEHAKEBKgE3AAu2AxMHAQFTVgArNAD//wAc/+kD9QXoBiYARQAAAQcAoQCDAAAAC7YCQA8BAX5WACs0AAAE/6P+VQSrBbAABAAJAA0AIwArQBUNDAwDFh0GAAIHAwJyDg8PBQUCCHIAKzIRMxEzKzISOTkvMxI5LzMwMUEBIQEzEwM3MwEDByE3ARcOAgcGFhcyNjcXBgYjIiY3PgIDKP2F/vYDEKtUzg+fARmyI/z+IwMFdSNSPgYDGB4XLRUMIk4oVmkCAU52BOH7HwWw+lAE/LT6UAIcx8f+Hz0ZOkovHSABDgmNFRRpV0pwUAAAAwAc/lUD0QRQABsAOgBQACtAFx46Og9DSg9yJzELcjs8PBkKcgkFDwdyACsyMisyETMrMisyEjkvMzAxZRM2JiYnJgYGBwc+AxceAgcDBgYXBwcmNBMHJyIOAgcGFhYXFjY2NxcOAycuAjc+AzMTFw4CBwYWFzI2NxcGBiMiJjc+AgKIUgYaRTgyWD0K6wZZiZ9MbqpZC08JBxMC6Q91GJwwZVg8BwUfQCw7c1UQPxZPaHtBWpRWBQVhmbZZp3UjUj4GAxgeFy0UDSJOKVVpAQJOddkCBzRUMQEBI0QxAVV/UycBAlqkdP4eOXc3EgE1bwHvlQESLEs4LUEmAQEwWTpsPWZKKAECT45daY1TJP2oPRk6Si8dIAEOCY0VFGlXSnBQ//8AX//oBQoHSwYmACcAAAEHAHUB/AFLAAu2ASgQAQFtVgArNAD//wA3/+oD8gYABiYARwAAAQcAdQElAAAAC7YBKBQBAYxWACs0AP//AF//6AUKB0sGJgAnAAABBwCeAPgBSwALtgErEAEBeFYAKzQA//8AN//qA+YGAAYmAEcAAAEGAJ4iAAALtgErFAEBl1YAKzQA//8AX//oBQoHKgYmACcAAAEHAKIB1wFTAAu2ATEQAQGCVgArNAD//wA3/+oD5gXfBiYARwAAAQcAogEAAAgAC7YBMRQBAaFWACs0AP//AF//6AUKB04GJgAnAAABBwCfAQ4BSwALtgEuEAEBdlYAKzQA//8AN//qA/QGAwYmAEcAAAEGAJ83AAALtgEuFAEBlVYAKzQA//8AJgAABNkHQQYmACgAAAEHAJ8AlQE+AAu2AiUeAQF1VgArNAD//wA4/+gFzwYCBCYASAAAAQcBygTDBQIAC7YDOQEBAABWACs0AP//ACYAAAS8BuoGJgApAAABBwBwAMYBQAALtgQSBwEBsVYAKzQA//8AOv/rA/AFrQYmAEkAAAEGAHA7AwALtgEuCwEB0VYAKzQA//8AJgAABLwHJgYmACkAAAEHAKEA+AE+AAu2BBUHAQFeVgArNAD//wA6/+sD8AXoBiYASQAAAQYAoWwAAAu2ATELAQF+VgArNAD//wAmAAAEvAcdBiYAKQAAAQcAogGeAUYAC7YEGQcBAYFWACs0AP//ADr/6wPwBeAGJgBJAAABBwCiARMACQALtgE1CwEBoVYAKzQAAAUAJv5VBLwFsAADAAcACwAPACUAKUAUCgsLGB8ODw8HAnIQEREDAgIGCHIAKzIRMzIRMysyETMvMzkvMzAxZQchNwEDIxMBByE3AQchNwEXDgIHBhYXMjY3FwYGIyImNz4CA+gj/REiASH99v0C0yL9ciMDUyP9FiQBC3UkUT4GAxgeFy0UDCJNKFZpAgFOdcfHxwTp+lAFsP2gxMQCYMjI+os9GTpKLx0gAQ4JjRUUaVdKcFAAAgA6/nID8ARRACsAQQAlQBMSExMLNDsOchkLB3IsLSQkAAtyACsyETk5KzIrMhI5LzMwMUUuAzc3PgMXHgMHByE3BTc2JiYnJg4CBwcGHgIXFjY3Fw4CNxcOAgcGFhcyNjcXBgYjJiY3PgIB9m+rcDIIBAtUjcB2cZxcHwsO/NQcAj0ECR9SRUtrRicIBAYSNFxEVYs5dC6HnRh0I1I+BgMYHhctFQwiTihWaQIBTnYUAlOPu2opbcufXAMCWpW8ZWetARU/cEgCAkJwgz4oO3RfOwICSzx7RVorbT0YOkowHSABDwiMFhQBaVZKcFD//wAmAAAEvAdBBiYAKQAAAQcAnwDVAT4AC7YEFgcBAXVWACs0AP//ADr/6wQHBgMGJgBJAAABBgCfSgAAC7YBMgsBAZVWACs0AP//AGb/6wUXB0sGJgArAAABBwCeAPoBSwALtgEvEAEBeFYAKzQA////+f5RBEIGAAYmAEsAAAEGAJ5BAAALtgNCGgEBl1YAKzQA//8AZv/rBRcHMwYmACsAAAEHAKEBMgFLAAu2ATEQAQFfVgArNAD////5/lEEQgXoBiYASwAAAQYAoXoAAAu2A0QaAQF+VgArNAD//wBm/+sFFwcqBiYAKwAAAQcAogHYAVMAC7YBNRABAYJWACs0AP////n+UQRCBd8EJgBLAAABBwCiASEACAALtgNIGgEBoVYAKzQA//8AZv32BRcFxwYmACsAAAEHAcoBmP6SAA60ATUFAQG4/5iwVgArNP////n+UQRCBqYEJgBLAAABBwJEATwAfAALtgM/GgEBmFYAKzQA//8AJgAABYUHPgYmACwAAAEHAJ4BFgE+AAu2Aw8LAQF3VgArNAD//wANAAAD9gdfBiYATAAAAQcAngBWAV8AC7YCHgMBASZWACs0AP//ADcAAANJBzEGJgAtAAABBwCl/4UBPgALtgESAwEBdlYAKzQA//8AEwAAAvsF6wYmAI0AAAEHAKX/N//4AAu2ARIDAQGoVgArNAD//wA3AAADLgbqBiYALQAAAQcAcP99AUAAC7YBBgMBAbFWACs0AP//ACMAAALgBaQGJgCNAAABBwBw/y//+gALtgEGAwEB41YAKzQA//8ANwAAAyEHJgYmAC0AAAEHAKH/rwE+AAu2AQkDAQFeVgArNAD//wAjAAAC0wXfBiYAjQAAAQcAof9h//cAC7YBCQMBAZBWACs0AP///47+WwIpBbAGJgAtAAABBgCk5gYAC7YBBQIAAABWACs0AP///3X+VQIKBdgGJgBNAAABBgCkzQAAC7YCEQIAAABWACs0AP//ADcAAAJWBx0GJgAtAAABBwCiAFYBRgALtgENAwEBgVYAKzQA//8AN//oBo8FsAQmAC0AAAAHAC4CMgAA//8AIP5GA/sF2AQmAE0AAAAHAE4B+gAA//8ABP/oBToHNQYmAC4AAAEHAJ4BmgE1AAu2ARcBAQFqVgArNAD///8E/kcCxwXeBiYAnAAAAQcAnv8n/94AC7YBFQABAYJWACs0AP//ACb+SQVyBbAEJgAvAAABBwHKAV7+5QAOtAMXAgEAuP/nsFYAKzT//wAR/jQETgYABiYATwAAAQcBygD0/tAADrQDFwIBAbj/1LBWACs0//8AJgAAA8AHMwYmADAAAAEHAHUAbAEzAAu2AggHAQFcVgArNAD//wAgAAADOQeQBiYAUAAAAQcAdQBsAZAAC7YBBAMBAXFWACs0AP//ACb+BgPABbAEJgAwAAABBwHKASj+ogAOtAIRAgEBuP+XsFYAKzT///+m/gYCFgYABCYAUAAAAQcByv/V/qIADrQBDQIBAbj/l7BWACs0//8AJgAAA9cFsQYmADAAAAEHAcoCywSxAAu2AhEHAAABVgArNAD//wAgAAADagYCBCYAUAAAAQcBygJeBQIAC7YBDQMAAAJWACs0AP//ACYAAAPABbAGJgAwAAAABwCiAV790P//ACAAAAL0BgAEJgBQAAAABwCiAPT9rf//ACYAAAWGBzcGJgAyAAABBwB1AiABNwALtgEKBgEBYVYAKzQA//8ADQAABCUGAAYmAFIAAAEHAHUBWAAAAAu2AhwDAQGgVgArNAD//wAm/gIFhgWwBCYAMgAAAQcBygGV/p4ADrQBEwUBAbj/l7BWACs0//8ADf4GA/IEUQQmAFIAAAEHAcoBAP6iAA60AiUCAQG4/5ewVgArNP//ACYAAAWGBzoGJgAyAAABBwCfATIBNwALtgEQCQEBalYAKzQA//8ADQAABCcGAwYmAFIAAAEGAJ9qAAALtgIiAwEBqVYAKzQA//8ADQAAA/IGAwYmAFIAAAEHAcoAPwUDAAu2AiADAQE6VgArNAD//wBi/+kFIgblBiYAMwAAAQcAcAEQATsAC7YCLhEBAZRWACs0AP//ADj/6QQeBa0GJgBTAAABBgBwUAMAC7YCLgYBAdFWACs0AP//AGL/6QUiByAGJgAzAAABBwChAUEBOAALtgIxEQEBQVYAKzQA//8AOP/pBB4F6AYmAFMAAAEHAKEAggAAAAu2AjEGAQF+VgArNAD//wBi/+kFdgc3BiYAMwAAAQcApgGLATgADbcDAiwRAQFFVgArNDQA//8AOP/pBLUF/wYmAFMAAAEHAKYAygAAAA23AwIsBgEBglYAKzQ0AP//ACYAAATVBzcGJgA2AAABBwB1AaoBNwALtgIeAAEBYVYAKzQA//8AEQAAA4UGAAYmAFYAAAEHAHUAuAAAAAu2AhcDAQGgVgArNAD//wAm/gYE1QWwBCYANgAAAQcBygEp/qIADrQCJxgBAbj/l7BWACs0////n/4HAvIEUwQmAFYAAAEHAcr/zv6jAA60AiACAQG4/5iwVgArNP//ACYAAATVBzoGJgA2AAABBwCfALwBNwALtgIkAAEBalYAKzQA//8AEQAAA4cGAwYmAFYAAAEGAJ/KAAALtgIdAwEBqVYAKzQA//8AJv/qBL0HOAYmADcAAAEHAHUBywE4AAu2AToPAQFPVgArNAD//wAb/+sD+gYABiYAVwAAAQcAdQEtAAAAC7YBNg4BAYxWACs0AP//ACb/6gS9BzgGJgA3AAABBwCeAMcBOAALtgE9DwEBWlYAKzQA//8AG//rA8oGAAYmAFcAAAEGAJ4qAAALtgE5DgEBl1YAKzQA//8AJv48BL0FxgYmADcAAAEHAHkBk///AAu2ATorAAATVgArNAD//wAb/jMDwQRPBiYAVwAAAQcAeQE9//YAC7YBNikAAApWACs0AP//ACb9+wS9BcYGJgA3AAABBwHKAUT+lwAOtAFDKwEBuP+gsFYAKzT//wAb/fIDwQRPBiYAVwAAAQcBygDt/o4ADrQBPykBAbj/l7BWACs0//8AJv/qBL0HOwYmADcAAAEHAJ8A3AE4AAu2AUAPAQFYVgArNAD//wAb/+sD/AYDBiYAVwAAAQYAnz8AAAu2ATwOAQGVVgArNAD//wCd/gAFJQWwBiYAOAAAAQcBygEz/pwADrQCEQIBAbj/jbBWACs0//8AP/38Aq4FQwYmAFgAAAEHAcoAgv6YAA60Ah8RAQG4/6GwVgArNP//AJ3+QQUlBbAGJgA4AAABBwB5AYMABAALtgIIAgEAAFYAKzQA//8AP/49Aq4FQwYmAFgAAAEHAHkA0wAAAAu2AhYRAAAUVgArNAD//wCdAAAFJQc5BiYAOAAAAQcAnwDNATYAC7YCDgMBAWlWACs0AP//AD//7QO/Bn4EJgBYAAABBwHKArMFfgAOtAIaBAEAuP+osFYAKzT//wBY/+gFMQcqBiYAOQAAAQcApQD0ATcAC7YBJAsBAWtWACs0AP//AEr/6AQvBfQGJgBZAAABBgClXwEAC7YCKhEBAapWACs0AP//AFj/6AUxBuMGJgA5AAABBwBwAO0BOQALtgEYCwEBplYAKzQA//8ASv/oBC8FrQYmAFkAAAEGAHBXAwALtgIeEQEB5VYAKzQA//8AWP/oBTEHHwYmADkAAAEHAKEBHgE3AAu2ARsAAQFTVgArNAD//wBK/+gELwXoBiYAWQAAAQcAoQCIAAAAC7YCIREBAZJWACs0AP//AFj/6AUxB5IGJgA5AAABBwCjAYEBbAANtwIBIQABAUdWACs0NAD//wBK/+gELwZbBiYAWQAAAQcAowDrADUADbcDAicRAQGGVgArNDQA//8AWP/oBVMHNgYmADkAAAEHAKYBaAE3AA23AgEWAAEBV1YAKzQ0AP//AEr/6AS8Bf8GJgBZAAABBwCmANEAAAANtwMCHBEBAZZWACs0NAAAAgBY/owFMQWwABUAKwAbQA0eJQELAnIXFhERBglyACsyEjk5KzIvMzAxQTMDDgInLgI3EzMDBhYWFxY2NjcDFw4CBwYWFzI2NxcGBiMmJjc+AgQ89aYXpf+eldprEqb0pQomalthj1gOsXUjUz0FBBgeFywVDSNNKFZpAgFOdQWw/DWd5noDA33hlwPN/DJUh1ICA0uMXP6QPRk6Si8dIAEOCY0VFQFpVktvUQAAAwBK/lUELwQ6AAQAGwAxACFAESQrD3IBEQZyHB0dBAQYCwtyACsyMhEzETMrMisyMDFBEzMDIxM3DgMnLgM3EzMDBh4CFxY2NgMXDgIHBhYXMjY3FwYGIyImNz4CAraN7LzeY04MQG6kb1l5RhcIdet2AwYcNy1ggUsCdSNSPwUEGR0XLRUNI00pVmgBAU91AQsDL/vGAeADYreQUgMDQXCQUAK7/UInSDojAgNRjv6xPRk6Si8dIAEOCY0VFGlXSnBQ//8AtQAABzoHNwYmADsAAAEHAJ4BwQE3AAu2BBkVAQFsVgArNAD//wB5AAAF9AYABiYAWwAAAQcAngEEAAAAC7YEGRUBAatWACs0AP//AKEAAAVQBzYGJgA9AAABBwCeAL0BNgALtgEMAgEBa1YAKzQA////vP5HBBkGAAYmAF0AAAEGAJ4bAAALtgIcAQEBq1YAKzQA//8AoQAABVAHBQYmAD0AAAEHAGoA6QE2AA23AgEeAgEBd1YAKzQ0AP///+UAAATrBzcGJgA+AAABBwB1Ab0BNwALtgMODQEBYVYAKzQA////5gAAA+8GAAYmAF4AAAEHAHUBIgAAAAu2Aw4NAQGgVgArNAD////lAAAE6wcWBiYAPgAAAQcAogGYAT8AC7YDFwgBAXZWACs0AP///+YAAAPkBd8GJgBeAAABBwCiAP0ACAALtgMXCAEBtVYAKzQA////5QAABOsHOgYmAD4AAAEHAJ8AzwE3AAu2AxQIAQFqVgArNAD////mAAAD8QYDBiYAXgAAAQYAnzQAAAu2AxQIAQGpVgArNAD///+NAAAHbwdCBiYAgQAAAQcAdQLwAUIAC7YGGQMBAWxWACs0AP//AA7/6gZfBgEGJgCGAAABBwB1Am4AAQALtgNfDwEBjVYAKzQA//8AFv+iBZAHgAYmAIMAAAEHAHUCIwGAAAu2AzQWAQGWVgArNAD//wAq/3UEMAX9BiYAiQAAAQcAdQE0//0AC7YDMAoBAYtWACs0AP///5b//wQWBI0GJgJAAAAABwI2/wX/a////5b//wQWBI0GJgJAAAAABwI2/wX/a///AGMAAAReBI0GJgHoAAAABgI2Jbr///+aAAAEAQYeBiYCQwAAAQcARADLAB4AC7YDEAcBAWtWACs0AP///5oAAAQ6Bh4GJgJDAAABBwB1AW0AHgALtgMOAwEBa1YAKzQA////mgAABAkGHgYmAkMAAAEGAJ5pHgALtgMTAwEBa1YAKzQA////mgAABDsGEgYmAkMAAAEGAKV3HwALtgMbAwEBa1YAKzQA////mgAABCIF7QYmAkMAAAEHAGoAlQAeAA23BAMXAwEBa1YAKzQ0AP///5oAAAQBBnkGJgJDAAABBwCjAQQAUwANtwQDGQMBAVFWACs0NAD///+aAAAETgaYBiYCQwAAAAcCNwD0//7//wA5/jwERASgBiYCQQAAAAcAeQFi/////wAJAAAD+wYeBiYCOAAAAQcARACgAB4AC7YEEgcBAWxWACs0AP//AAkAAAQPBh4GJgI4AAABBwB1AUIAHgALtgQQBwEBbFYAKzQA//8ACQAAA/sGHgYmAjgAAAEGAJ4+HgALtgQWBwEBbFYAKzQA//8ACQAAA/sF7QYmAjgAAAEGAGpqHgANtwUEGQcBAYRWACs0NAD//wAaAAAB3wYeBiYB8wAAAQYARIYeAAu2AQYDAQFrVgArNAD//wAaAAAC9AYeBiYB8wAAAQYAdSceAAu2AQQDAQFrVgArNAD//wAaAAACwwYeBiYB8wAAAQcAnv8jAB4AC7YBCQMBAXZWACs0AP//ABoAAALdBe0GJgHzAAABBwBq/1AAHgANtwIBDQMBAYRWACs0NAD//wAJAAAEqAYSBiYB7gAAAQcApQCYAB8AC7YBGAYBAXZWACs0AP//ADv/7QRYBh4GJgHtAAABBwBEANkAHgALtgIuEQEBW1YAKzQA//8AO//tBFgGHgYmAe0AAAEHAHUBegAeAAu2AiwRAQFbVgArNAD//wA7/+0EWAYeBiYB7QAAAQYAnnceAAu2AjERAQFbVgArNAD//wA7/+0EWAYSBiYB7QAAAQcApQCGAB8AC7YCMREBAW9WACs0AP//ADv/7QRYBe0GJgHtAAABBwBqAKMAHgANtwMCNREBAXRWACs0NAD//wA4/+wEZAYeBiYB5wAAAQcARAC/AB4AC7YBGAsBAWtWACs0AP//ADj/7ARkBh4GJgHnAAABBwB1AWEAHgALtgEWCwEBa1YAKzQA//8AOP/sBGQGHgYmAecAAAEGAJ5dHgALtgEbCwEBa1YAKzQA//8AOP/sBGQF7QYmAecAAAEHAGoAiQAeAA23AgEfCwEBhFYAKzQ0AP//AGwAAASCBh4GJgHjAAABBwB1ATkAHgALtgMOCQEBa1YAKzQA////mgAABCEFywYmAkMAAAEGAHBwIQALtgMQAwEBsFYAKzQA////mgAABBMGBgYmAkMAAAEHAKEAoQAeAAu2AxMDAQFdVgArNAAABP+a/lUEAQSNAAQACQANACMAIUAPDQwMAxYdCAN9Dw4FBQESAD8zETMzPzMvMxI5LzMwMUEBIwEzEwM3MxMDByE3ARcOAgcGFhcyNjcXBgYjIiY3PgICgP4T+QKSpky3BJv7qyD9eSACj3YkUj4GAxkdFy0UDSJOKFZpAQJOdgOT/G0EjftzA6vi+3MBsLW1/os9GTpKLx0gAQ4JjRUUaVdKcFAA//8AOf/tBEQGHgYmAkEAAAEHAHUBbQAeAAu2ASgQAQFbVgArNAD//wA5/+0ERAYeBiYCQQAAAQYAnmoeAAu2AS0QAQFbVgArNAD//wA5/+0ERAX9BiYCQQAAAQcAogFIACYAC7YBMRABAXBWACs0AP//ADn/7QREBiEGJgJBAAABBgCffx4AC7YBLhABAWRWACs0AP//AAn//wQWBiEGJgJAAAABBgCf+R4AC7YCJB0BAXRWACs0AP//AAkAAAP7BcsGJgI4AAABBgBwRSEAC7YEEgcBAbBWACs0AP//AAkAAAP7BgYGJgI4AAABBgChdh4AC7YEFQcBAV5WACs0AP//AAkAAAP7Bf0GJgI4AAABBwCiAR0AJgALtgQZBwEBgFYAKzQAAAUACf5VA/sEjQADAAcACwAPACUAI0AQGB8LCgoGDw4HfREQEAUGEgA/MzMRMz8zMxI5LzMvMzAxZQchNxMDIxMBByE3AQchNxMXDgIHBhYXMjY3FwYGIyImNz4CA1Qi/Xgi88rsywKEIv3LIgLYIv15Iul1I1I/BQMYHhcsFgwjTSlVaQIBTna/v78DzvtzBI3+Lb+/AdPAwPuuPRk6Si8dIAEOCY0VFGlXSnBQ//8ACQAABBEGIQYmAjgAAAEGAJ9UHgALtgQWBwEBdFYAKzQA//8AP//vBE4GHgYmAfUAAAEGAJ5xHgALtgEwEAEBZlYAKzQA//8AP//vBE4GBgYmAfUAAAEHAKEAqQAeAAu2ATAQAQFNVgArNAD//wA//+8ETgX9BiYB9QAAAQcAogFQACYAC7YBNBABAXBWACs0AP//AD/9+wROBKAGJgH1AAABBwHKASn+lwAOtAE0BQEBuP+ZsFYAKzT//wAJAAAEqQYeBiYB9AAAAQYAnn8eAAu2AxEHAQF2VgArNAD//wAOAAAC9gYSBiYB8wAAAQcApf8yAB8AC7YBCQMBAX9WACs0AP//ABoAAALbBcsGJgHzAAABBwBw/yoAIQALtgEGAwEBsFYAKzQA//8AGgAAAs4GBgYmAfMAAAEHAKH/XAAeAAu2AQkDAQFdVgArNAD///+W/lUBzwSNBiYB8wAAAAYApO4A//8AGgAAAgIF/QYmAfMAAAEGAKICJgALtgENAwEBgFYAKzQA////8//tBJgGHgYmAfIAAAEHAJ4A+AAeAAu2ARkBAQF2VgArNAD//wAJ/gMEnQSNBiYB8QAAAAcBygDP/p///wAJAAADMQYeBiYB8AAAAQYAdR0eAAu2AggHAQFrVgArNAD//wAJ/gQDMQSNBiYB8AAAAQcBygDN/qAADrQCEQYBAbj/lbBWACs0//8ACQAAAzEEkAYmAfAAAAAHAcoCJAOQ//8ACQAAAzEEjQYmAfAAAAAHAKIA8P1B//8ACQAABKgGHgYmAe4AAAEHAHUBjQAeAAu2AQoGAQFrVgArNAD//wAJ/f0EqASNBiYB7gAAAAcBygEy/pn//wAJAAAEqAYhBiYB7gAAAQcAnwCfAB4AC7YBEAYBAXRWACs0AP//ADv/7QRYBcsGJgHtAAABBgBwfiEAC7YCLhEBAaBWACs0AP//ADv/7QRYBgYGJgHtAAABBwChAK8AHgALtgIxEQEBTVYAKzQA//8AO//tBOMGHQYmAe0AAAEHAKYA+AAeAA23AwIwEQEBUVYAKzQ0AP//AAkAAAQWBh4GJgHqAAABBwB1ASIAHgALtgIfAAEBa1YAKzQA//8ACf4EBBYEjQYmAeoAAAAHAcoA1f6g//8ACQAABBYGIQYmAeoAAAEGAJ80HgALtgIlAAEBdFYAKzQA//8AD//uBBsGHgYmAekAAAEHAHUBTgAeAAu2AToPAQFbVgArNAD//wAP/+4D/gYeBiYB6QAAAQYAnkoeAAu2AT8PAQFmVgArNAD//wAP/j0D/gSeBiYB6QAAAAcAeQFIAAD//wAP/+4EHAYhBiYB6QAAAQYAn18eAAu2AUAPAQFmVgArNAD//wBj/gMEXgSNBiYB6AAAAQcBygDj/p8ADrQCEQIBAbj/kLBWACs0//8AYwAABF4GIQYmAegAAAEGAJ9NHgALtgIOBwEBdFYAKzQA//8AY/5EBF4EjQYmAegAAAAHAHkBNAAH//8AOP/sBGQGEgYmAecAAAEGAKVsHwALtgEbCwEBf1YAKzQA//8AOP/sBGQFywYmAecAAAEGAHBkIQALtgEYCwEBsFYAKzQA//8AOP/sBGQGBgYmAecAAAEHAKEAlQAeAAu2ARsLAQFdVgArNAD//wA4/+wEZAZ5BiYB5wAAAQcAowD4AFMADbcCASELAQFRVgArNDQA//8AOP/sBMkGHQYmAecAAAEHAKYA3gAeAA23AgEaCwEBYVYAKzQ0AAACADj+hQRkBI0AFQArABpADB4lFxYWEQYLcgwAfQA/MisyMhEzLzMwMUEzAw4CJy4CNxMzAwYWFhcWNjY3AxcOAgcGFhcyNjcXBgYjIiY3PgIDd+2CEpLehXvCZg6B64IIJFhFSXBIC5V1I1I+BgMYHhctFA0iTihWaQIBTnUEjf0AhrxfAwJiuIIDAPz/Q2I3AgI0ZEj+3z0ZOkovHSABDgmNFRRpV0pwUAD//wCLAAAGHgYeBiYB5QAAAQcAngEXAB4AC7YEGwoBAXZWACs0AP//AGwAAASCBh4GJgHjAAABBgCeNR4AC7YDEwkBAXZWACs0AP//AGwAAASCBe0GJgHjAAABBgBqYR4ADbcEAxcJAQGEVgArNDQA////1gAABCoGHgYmAeIAAAEHAHUBPAAeAAu2Aw4NAQFrVgArNAD////WAAAEKgX9BiYB4gAAAQcAogEXACYAC7YDFw0BAYBWACs0AP///9YAAAQqBiEGJgHiAAABBgCfTh4AC7YDFA0BAXRWACs0AP///6MAAASrBj8GJgAlAAABBgCusP8ADrQDDgMAALj/PrBWACs0////ugAABSAGQQQmAClkAAEHAK7+hAABAA60BBAHAAC4/z+wVgArNP///8IAAAXpBkAEJgAsZAAABwCu/owAAP///8YAAAKNBkIEJgAtZAABBwCu/pAAAgAOtAEEAwAAuP9BsFYAKzT//wAn/+kFNgY/BCYAMxQAAQcArv7x//8ADrQCLBEAALj/KrBWACs0////uQAABbQGPwQmAD1kAAEHAK7+g///AAu2AQoIAACOVgArNAD//wAeAAAFAwY/BCYAuhQAAQcArv7+//8ADrQDNh0AALj/KrBWACs0//8ACf/1AzoGmwYmAMMAAAEHAK//Gv/rABBACQMCASsAAQGiVgArNDQ0////owAABKsFsAYGACUAAP//ACb//wS3BbAGBgAmAAD//wAmAAAEvAWwBgYAKQAA////5QAABOsFsAYGAD4AAP//ACYAAAWFBbAGBgAsAAD//wA3AAACKQWwBgYALQAA//8AJgAABXIFsAYGAC8AAP//ACYAAAbOBbAGBgAxAAD//wAmAAAFhgWwBgYAMgAA//8AYv/pBSIFxwYGADMAAP//ACYAAAT6BbAGBgA0AAD//wCdAAAFJQWwBgYAOAAA//8AoQAABVAFsAYGAD0AAP///8AAAAVGBbAGBgA8AAD//wA3AAADMAcNBiYALQAAAQcAav+jAT4ADbcCARkDAQGDVgArNDQA//8AoQAABVAHBQYmAD0AAAEHAGoA6QE2AA23AgEeAgEBd1YAKzQ0AP//ADv/5wQyBjwGJgC7AAABBwCuAT///AALtgNCBgEBmlYAKzQA//8AKP/qBAQGOwYmAL8AAAEHAK4BDP/7AAu2AkArAQGaVgArNAD//wAR/mED+wY8BiYAwQAAAQcArgEU//wAC7YCHQMBAa5WACs0AP//AGb/9QKOBiYGJgDDAAABBgCu/eYAC7YBEgABAZlWACs0AP//AFf/5wQ4BqMGJgDLAAABBgCvGPMAEEAJAwIBOA8BAaJWACs0NDT//wAhAAAEkAQ6BgYAjgAA//8AOP/pBB4EUQYGAFMAAP///97+YARZBDoGBgB2AAD//wBkAAAEEgQ6BgYAWgAA////n/5PBGcESAYGAoAAAP//AET/9QL6BboGJgDDAAABBwBq/23/6wANtwIBJwABAaJWACs0NAD//wBX/+cD+AXCBiYAywAAAQYAamvzAA23AgE0DwEBolYAKzQ0AP//ADj/6QQeBjwGJgBTAAABBwCuAQX//AALtgIsBgEBmlYAKzQA//8AV//nA+4GLgYmAMsAAAEHAK4A+//uAAu2AR8PAQGZVgArNAD//wBS/+cGBAYsBiYAzgAAAQcArgIT/+wAC7YCQB8BAZZWACs0AP//ACYAAAS8Bw0GJgApAAABBwBqAOsBPgANtwUEJQcBAYNWACs0NAD//wArAAAErAc+BiYAsQAAAQcAdQG6AT4AC7YBBgUBAWxWACs0AAABACb/6gS9BcYAOQAbQA0KJg82MSsJchgUDwNyACvMMyvMMxI5OTAxQTYuAicuAzc+AxceAgcjNiYmJyYGBgcGHgIXHgMHDgMnLgM3FwYeAjMWNjYDUAkoS14uTJR3QgYIZ6C+XoXQdgX0BjFoTUWAWQsILVBcKFGVdD4HCWaevmFnt4pLBPQEIUZlP0SBWwF+O1E3JhEbSmaLXWmbZjECA2zGiExtPQECLV5KNEw0JA4cTWqRYWubYi4CAT53qm0BQGNCIgIqWwD//wA3AAACKQWwBgYALQAA//8ANwAAAzAHDQYmAC0AAAEHAGr/owE+AA23AgEZAwEBg1YAKzQ0AP//AAT/6ARdBbAGBgAuAAD//wArAAAFdgWwBgYCPAAA//8AJgAABXIHMwYmAC8AAAEHAHUBpgEzAAu2Aw4DAQFbVgArNAD//wCZ/+gFVgcmBiYA3gAAAQcAoQEVAT4AC7YCHgEBAV5WACs0AP///6MAAASrBbAGBgAlAAD//wAm//8EtwWwBgYAJgAA//8AKwAABKwFsAYGALEAAP//ACYAAAS8BbAGBgApAAD//wAlAAAFfAcmBiYA3AAAAQcAoQFTAT4AC7YBDwEBAV5WACs0AP//ACYAAAbOBbAGBgAxAAD//wAmAAAFhQWwBgYALAAA//8AYv/pBSIFxwYGADMAAP//ACsAAAWDBbAGBgC2AAD//wAmAAAE+gWwBgYANAAA//8AX//oBQoFxwYGACcAAP//AJ0AAAUlBbAGBgA4AAD////AAAAFRgWwBgYAPAAA//8AHP/pA9EEUAYGAEUAAP//ADr/6wPwBFEGBgBJAAD//wAXAAAERQXbBiYA8AAAAQcAoQCW//MAC7YBDwEBAX1WACs0AP//ADj/6QQeBFEGBgBTAAD////I/mAEEARRBgYAVAAAAAEAN//qA+YEUQAnABNACQAJHRQHcgkLcgArKzIRMzAxZRY2Njc3DgInLgM3Nz4DFx4CByc0JiYnJg4CBwcGHgIB4DtiQQ3fDYnLcXOjZCcKBAxTi753eK5cAd0lTz9KaUUnBwQFAyJPqwEuVjgBdKxdAgJamMFoJG/GmVYDAmq3dQE4YT0CAj5qfz4jNXlqRAD///+8/kcEGQQ6BgYAXQAA////ugAABBIEOgYGAFwAAP//ADr/6wPwBc8GJgBJAAABBgBqYAAADbcCAUELAQGjVgArNDQA//8AFgAAA5UF8wYmAOwAAAEHAHUAyP/zAAu2AQYFAQGLVgArNAD//wAb/+sDwQRPBgYAVwAA//8AIAAAAgoF2AYGAE0AAP//ACMAAALiBcYGJgCNAAABBwBq/1X/9wANtwIBGQMBAbVWACs0NAD///8C/kYCAQXYBgYATgAA//8AIgAABH4F8gYmAPEAAAEHAHUBSv/yAAu2Aw4DAQGKVgArNAD///+8/kcEGQXoBiYAXQAAAQYAoVMAAAu2Ah4BAQGSVgArNAD//wC1AAAHOgc3BiYAOwAAAQcARAIjATcAC7YEGBUBAWFWACs0AP//AHkAAAX0BgAGJgBbAAABBwBEAWYAAAALtgQYFQEBoFYAKzQA//8AtQAABzoHNwYmADsAAAEHAHUCxAE3AAu2BBYBAQFhVgArNAD//wB5AAAF9AYABiYAWwAAAQcAdQIIAAAAC7YEFgEBAaBWACs0AP//ALUAAAc6BwYGJgA7AAABBwBqAe0BNwANtwUEKxUBAXhWACs0NAD//wB5AAAF9AXPBiYAWwAAAQcAagExAAAADbcFBCsVAQG3VgArNDQA//8AoQAABVAHNgYmAD0AAAEHAEQBHwE2AAu2AQsCAQFgVgArNAD///+8/kcEGQYABiYAXQAAAQYARH0AAAu2AhsBAQGgVgArNAD//wCRA/4BlQYABgYACwAA//8AnQP4ArwGAAYGAAYAAP//ADP/8AQqBbAEJgAFAAAABwAFAg4AAP///wT+RwL5BeEGJgCcAAABBwCf/zz/3gALtgEYAAEBgFYAKzQA//8AjQQEAfoGAAYGAYUAAP//ACYAAAbOBzcGJgAxAAABBwB1AsEBNwALtgMRAAEBYVYAKzQA//8ADwAABmEGAAYmAFEAAAEHAHUCmwAAAAu2AzMDAQGgVgArNAD///+j/nAEqwWwBiYAJQAAAQcApwFpAAQAELUEAxEFAQG4/7WwVgArNDT//wAc/nUD0QRQBiYARQAAAQcApwCkAAkAELUDAj4xAQG4/8mwVgArNDT//wAmAAAEvAc+BiYAKQAAAQcARAEhAT4AC7YEEgcBAWxWACs0AP//ACUAAAV8Bz4GJgDcAAABBwBEAX0BPgALtgEMAQEBbFYAKzQA//8AOv/rA/AGAAYmAEkAAAEHAEQAlgAAAAu2AS4LAQGMVgArNAD//wAXAAAERQXzBiYA8AAAAQcARADA//MAC7YBDAEBAYtWACs0AP//AHYAAAXRBbAGBgC5AAD//wA//iUFXwQ8BgYAzQAA//8AqAAABWEG/QYmARkAAAEHAKwEXAEPAA23AwIVEwEBLVYAKzQ0AP//AHUAAARKBdAGJgEaAAABBwCsA8f/4gANtwMCGRcBAXtWACs0NAD//wA4/kcIgARRBCYAUwAAAAcAXQRnAAD//wBi/kcJcgXHBCYAMwAAAAcAXQVZAAD//wAf/jcEpAXGBiYA2wAAAQcCYQFz/50AC7YCQioAAGRWACs0AP//ABf+OAO9BFAGJgDvAAABBwJhARr/ngALtgI/KQAAZVYAKzQA//8AX/46BQoFxwYmACcAAAEHAmEBs/+gAAu2ASsFAABkVgArNAD//wA3/joD5gRRBiYARwAAAQcCYQE3/6AAC7YBKwkAAGRWACs0AP//AKEAAAVQBbAGBgA9AAD//wB1/l8EMAQ6BgYAvQAA//8ANwAAAikFsAYGAC0AAP///6QAAAfoByYGJgDaAAABBwChAlABPgALtgUdDQEBXlYAKzQA////sAAABoEF2wYmAO4AAAEHAKEBi//zAAu2BR0NAQF9VgArNAD//wA3AAACKQWwBgYALQAA////owAABKsHHwYmACUAAAEHAKEBKgE3AAu2AxMHAQFTVgArNAD//wAc/+kD9QXoBiYARQAAAQcAoQCDAAAAC7YCQA8BAX5WACs0AP///6MAAASrBwYGJgAlAAABBwBqAR4BNwANtwQDIwcBAXhWACs0NAD//wAc/+kEBAXPBiYARQAAAQYAancAAA23AwJQDwEBo1YAKzQ0AP///40AAAdvBbAGBgCBAAD//wAO/+oGXwRRBgYAhgAA//8AJgAABLwHJgYmACkAAAEHAKEA+AE+AAu2BBUHAQFeVgArNAD//wA6/+sD8AXoBiYASQAAAQYAoWwAAAu2ATELAQF+VgArNAD//wBL/+kFLQbeBiYBWAAAAQcAagD3AQ8ADbcCAUIAAQFBVgArNDQA//8ANP/qA9oEUQYGAJ0AAP//ADT/6gP4BdAGJgCdAAABBgBqawEADbcCAUAAAQGiVgArNDQA////pAAAB+gHDQYmANoAAAEHAGoCRAE+AA23BgUtDQEBg1YAKzQ0AP///7AAAAaBBcIGJgDuAAABBwBqAX//8wANtwYFLQ0BAaJWACs0NAD//wAf/+oEpAcaBiYA2wAAAQcAagDfAUsADbcDAlQVAQGEVgArNDQA//8AF//qA98FzgYmAO8AAAEGAGpS/wANtwMCURQBAaNWACs0NAD//wAlAAAFfAbqBiYA3AAAAQcAcAEiAUAAC7YBDAgBAbFWACs0AP//ABcAAARFBaAGJgDwAAABBgBwZfYAC7YBDAgBAdBWACs0AP//ACUAAAV8Bw0GJgDcAAABBwBqAUcBPgANtwIBHwEBAYNWACs0NAD//wAXAAAERQXCBiYA8AAAAQcAagCK//MADbcCAR8BAQGiVgArNDQA//8AYv/pBSIHBwYmADMAAAEHAGoBNQE4AA23AwJBEQEBZlYAKzQ0AP//ADj/6QQeBc8GJgBTAAABBgBqdQAADbcDAkEGAQGjVgArNDQA//8AYf/pBRsFxwYGARcAAP//ADT/6AQdBFIGBgEYAAD//wBh/+kFGwcJBiYBFwAAAQcAagFGAToADbcEA08AAQFqVgArNDQA//8ANP/oBB0F0AYmARgAAAEGAGp2AQANtwQDQQABAaVWACs0NAD//wBI/+kE8gcbBiYA5wAAAQcAagEXAUwADbcDAkIeAQGFVgArNDQA//8AIP/oA+YFzwYmAP8AAAEGAGpZAAANtwMCQQkBAaNWACs0NAD//wCZ/+gFVgbqBiYA3gAAAQcAcADkAUAAC7YCGxgBAbFWACs0AP///7z+RwQZBa0GJgBdAAABBgBwIgMAC7YCGxgBAeVWACs0AP//AJn/6AVWBw0GJgDeAAABBwBqAQkBPgANtwMCLgEBAYNWACs0NAD///+8/kcEGQXPBiYAXQAAAQYAakcAAA23AwIuAQEBt1YAKzQ0AP//AJn/6AVWBz0GJgDeAAABBwCmAV4BPgANtwMCGQEBAWJWACs0NAD///+8/kcEhwX/BiYAXQAAAQcApgCcAAAADbcDAhkBAQGWVgArNDQA//8AxAAABV0HDQYmAOEAAAEHAGoBSAE+AA23AwIvFgEBg1YAKzQ0AP//AG0AAAQYBcIGJgD5AAABBgBqafMADbcDAi0DAQGiVgArNDQA//8ALP//BrkHDQYmAOUAAAEHAGoB7wE+AA23AwIyHAEBg1YAKzQ0AP//ACP//wX4BcIGJgD9AAABBwBqAXL/8wANtwMCMhwBAaJWACs0NAD//wA4/+gEhwYABgYASAAA////o/6YBKsFsAYmACUAAAEHAK0E5AADAA60AxEFAQG4/3WwVgArNP//ABz+nQPRBFAGJgBFAAABBwCtBB4ACAAOtAI+MQEBuP+JsFYAKzT///+jAAAEqwe5BiYAJQAAAQcAqwUTAT0AC7YDDwcBAXFWACs0AP//ABz/6QPRBoMGJgBFAAABBwCrBGwABwALtgI8DwEBnFYAKzQA////owAABgsHqwYmACUAAAEHAkcA7gEhAA23BAMSBwEBYVYAKzQ0AP//ABz/6QVjBnQGJgBFAAABBgJHRuoADbcDAkEPAQGMVgArNDQA////owAABKsHqQYmACUAAAEHAkgA8QEqAA23BAMQBwEBXFYAKzQ0AP//ABz/6QPqBnIGJgBFAAABBgJISfMADbcDAj0PAQGHVgArNDQA////owAABXsH3AYmACUAAAEHAkkA7AEVAA23BAMTAwEBUFYAKzQ0AP//ABz/6QTUBqUGJgBFAAABBgJJRd4ADbcDAkAPAQF7VgArNDQA////owAABKsH0wYmACUAAAEHAkoA6wEHAA23BAMQBwEBOlYAKzQ0AP//ABz/6QPnBpwGJgBFAAABBgJKRNAADbcDAj0PAQFlVgArNDQA////o/6YBKsHNwYmACUAAAAnAJ4A8gE3AQcArQTkAAMAF7QEGgUBAbj/dbdWAxEHAQFsVgArNCs0AP//ABz+nQPrBgAGJgBFAAAAJgCeSwABBwCtBB4ACAAXtANHMQEBuP+Jt1YCPg8BAZdWACs0KzQA////owAABKsHrgYmACUAAAEHAkwBGAEyAA23BAMTBwEBXFYAKzQ0AP//ABz/6QPtBngGJgBFAAABBgJMcfwADbcDAkAPAQGHVgArNDQA////owAABKsHrgYmACUAAAEHAkUBGAEyAA23BAMTBwEBXFYAKzQ0AP//ABz/6QPuBngGJgBFAAABBgJFcfwADbcDAkAPAQGHVgArNDQA////owAABKsIPQYmACUAAAEHAk0BFwE2AA23BAMTBwEBblYAKzQ0AP//ABz/6QPlBwYGJgBFAAABBgJNcP8ADbcDAkAPAQGZVgArNDQA////owAABKsIFQYmACUAAAEHAmABGwE8AA23BAMTBwEBb1YAKzQ0AP//ABz/6QP3Bt4GJgBFAAABBgJgdAUADbcDAkAPAQGaVgArNDQA////o/6YBKsHHwYmACUAAAAnAKEBKgE3AQcArQTkAAMAF7QEIAUBAbj/dbdWAxMHAQFTVgArNCs0AP//ABz+nQP1BegGJgBFAAAAJwChAIMAAAEHAK0EHgAIABe0A00xAQG4/4m3VgJADwEBflYAKzQrNAD//wAm/p8EvAWwBiYAKQAAAQcArQSoAAoADrQEEwIBAbj/f7BWACs0//8AOv6VA/AEUQYmAEkAAAEHAK0EdQAAAA60AS8AAQG4/4mwVgArNP//ACYAAAS8B8AGJgApAAABBwCrBOABRAALtgQRBwEBfFYAKzQA//8AOv/rA/AGgwYmAEkAAAEHAKsEVQAHAAu2AS0LAQGcVgArNAD//wAmAAAEvAcxBiYAKQAAAQcApQDOAT4AC7YEHgcBAXZWACs0AP//ADr/6wQHBfQGJgBJAAABBgClQwEAC7YBOgsBAZZWACs0AP//ACYAAAXYB7IGJgApAAABBwJHALsBKAANtwUEFAcBAWxWACs0NAD//wA6/+sFTQZ1BiYASQAAAQYCRzDrAA23AgEwCwEBjFYAKzQ0AP//ACYAAAS8B7AGJgApAAABBwJIAL4BMQANtwUEEgcBAWdWACs0NAD//wA6/+sD8AZzBiYASQAAAQYCSDP0AA23AgEuCwEBh1YAKzQ0AP//ACYAAAVJB+MGJgApAAABBwJJALoBHAANtwUEFQcBAVtWACs0NAD//wA6/+sEvgamBiYASQAAAQYCSS/fAA23AgExCwEBe1YAKzQ0AP//ACYAAAS8B9oGJgApAAABBwJKALkBDgANtwUEEgcBAUVWACs0NAD//wA6/+sD8AadBiYASQAAAQYCSi3RAA23AgEuCwEBZVYAKzQ0AP//ACb+nwS8Bz4GJgApAAAAJwCeAL8BPgEHAK0EqAAKABe0BRwCAQG4/3+3VgQTBwEBd1YAKzQrNAD//wA6/pUD8AYABiYASQAAACYAnjQAAQcArQR1AAAAF7QCOAABAbj/ibdWAS8LAQGXVgArNCs0AP//ADcAAALTB8AGJgAtAAABBwCrA5cBRAALtgEFAwEBfFYAKzQA//8AIwAAAoUGegYmAI0AAAEHAKsDSf/+AAu2AQUDAQGuVgArNAD//////psCKQWwBiYALQAAAQcArQNeAAYADrQBBwIBAbj/frBWACs0////4/6fAgoF2AYmAE0AAAEHAK0DQgAKAA60AhMCAQG4/3+wVgArNP//AGL+lQUiBccGJgAzAAABBwCtBPQAAAAOtAIvBgEBuP+JsFYAKzT//wA4/pEEHgRRBiYAUwAAAQcArQSB//wADrQCLxEBAbj/iLBWACs0//8AYv/pBSIHuwYmADMAAAEHAKsFKgE/AAu2Ai0RAQFfVgArNAD//wA4/+kEHgaDBiYAUwAAAQcAqwRqAAcAC7YCLQYBAZxWACs0AP//AGL/6QYjB6wGJgAzAAABBwJHAQYBIgANtwMCMBEBAU9WACs0NAD//wA4/+kFYgZ0BiYAUwAAAQYCR0XqAA23AwIwBgEBjFYAKzQ0AP//AGL/6QUiB6oGJgAzAAABBwJIAQgBKwANtwMCLhEBAUpWACs0NAD//wA4/+kEHgZyBiYAUwAAAQYCSEjzAA23AwIuBgEBh1YAKzQ0AP//AGL/6QWSB90GJgAzAAABBwJJAQMBFgANtwMCMREBAT5WACs0NAD//wA4/+kE0walBiYAUwAAAQYCSUTeAA23AwIxBgEBe1YAKzQ0AP//AGL/6QUiB9QGJgAzAAABBwJKAQMBCAANtwMCLhEBAShWACs0NAD//wA4/+kEHgacBiYAUwAAAQYCSkPQAA23AwIuBgEBZVYAKzQ0AP//AGL+lQUiBzgGJgAzAAAAJwCeAQoBOAEHAK0E9AAAABe0AzgGAQG4/4m3VgIvEQEBWlYAKzQrNAD//wA4/pEEHgYABiYAUwAAACYAnkkAAQcArQSB//wAF7QDOBEBAbj/iLdWAi8GAQGXVgArNCs0AP//AFz/6QYhBzUGJgCYAAABBwB1AgwBNQALtgM6HAEBR1YAKzQA//8ANP/pBPAGAAYmAJkAAAEHAHUBXQAAAAu2AzYQAQGMVgArNAD//wBc/+kGIQc1BiYAmAAAAQcARAFqATUAC7YDPBwBAUdWACs0AP//ADT/6QTwBgAGJgCZAAABBwBEALsAAAALtgM4EAEBjFYAKzQA//8AXP/pBiEHuAYmAJgAAAEHAKsFKQE8AAu2AzscAQFXVgArNAD//wA0/+kE8AaDBiYAmQAAAQcAqwR6AAcAC7YDNxABAZxWACs0AP//AFz/6QYhBykGJgCYAAABBwClARcBNgALtgNIHAEBUVYAKzQA//8ANP/pBPAF9AYmAJkAAAEGAKVoAQALtgNEEAEBllYAKzQA//8AXP6VBiEGLQYmAJgAAAEHAK0E3gAAAA60Az0QAQG4/4mwVgArNP//ADT+iwTwBKoGJgCZAAABBwCtBHT/9gAOtAM5GwEBuP9/sFYAKzT//wBY/pUFMQWwBiYAOQAAAQcArQTNAAAADrQBGQYBAbj/ibBWACs0//8ASv6VBC8EOgYmAFkAAAEHAK0EHgAAAA60Ah8LAQG4/4mwVgArNP//AFj/6AUxB7kGJgA5AAABBwCrBQcBPQALtgEXAAEBcVYAKzQA//8ASv/oBC8GgwYmAFkAAAEHAKsEcQAHAAu2Ah0RAQGwVgArNAD//wBY/+kGpAdCBiYAmgAAAQcAdQIPAUIAC7YCIAoBAWxWACs0AP//AEr/6AVZBesGJgCbAAABBwB1AVf/6wALtgMmGwEBi1YAKzQA//8AWP/pBqQHQgYmAJoAAAEHAEQBbQFCAAu2AiIKAQFsVgArNAD//wBK/+gFWQXrBiYAmwAAAQcARAC2/+sAC7YDKBsBAYtWACs0AP//AFj/6QakB8UGJgCaAAABBwCrBSwBSQALtgIhCgEBfFYAKzQA//8ASv/oBVkGbgYmAJsAAAEHAKsEdf/yAAu2AycbAQGbVgArNAD//wBY/+kGpAc2BiYAmgAAAQcApQEaAUMAC7YCLhUBAXZWACs0AP//AEr/6AVZBd8GJgCbAAABBgClY+wAC7YDNBsBAZVWACs0AP//AFj+jAakBgMGJgCaAAABBwCtBO7/9wAOtAIjEAEBuP+AsFYAKzT//wBK/pUFWQSWBiYAmwAAAQcArQRrAAAADrQDKRUBAbj/ibBWACs0//8Aof6nBVAFsAYmAD0AAAEHAK0EpQASAA60AQwGAQG4/3awVgArNP///7z+DwQZBDoGJgBdAAABBwCtBQ3/egAOtAIiCAAAuP+5sFYAKzT//wChAAAFUAe5BiYAPQAAAQcAqwTeAT0AC7YBCgIBAXBWACs0AP///7z+RwQZBoMGJgBdAAABBwCrBDwABwALtgIaAQEBsFYAKzQA//8AoQAABVAHKgYmAD0AAAEHAKUAzAE3AAu2ARcIAQFqVgArNAD///+8/kcEGQX0BiYAXQAAAQYApSkBAAu2AicYAQGqVgArNAD////0/rAFFAYABCYASAAAACcCNgHYAj8BBwBDAHv/bAAXtAQ3FgEBuP93t1YDMgsBAYNWACs0KzQA//8Anf6aBSUFsAYmADgAAAEHAmECNAAAAAu2AgsCAACaVgArNAD//wBU/poEDAQ6BiYA9gAAAQcCYQHRAAAAC7YCCwIAAJpWACs0AP//AMT+mgVdBbAGJgDhAAABBwJhArgAAAALtgIdGQEAmlYAKzQA//8Abf6aBBgEOwYmAPkAAAEHAmEBuQAAAAu2AhsCAQCaVgArNAD//wAr/poErAWwBiYAsQAAAQcCYQD1AAAAC7YBCQQAAJpWACs0AP//ABb+mgOIBDoGJgDsAAABBwJhANsAAAALtgEJBAAAmlYAKzQA//8AVf49BbsFxgYmAUwAAAEHAmECuf+jAAu2AjoKAABrVgArNAD////y/kQEcwRRBiYBTQAAAQcCYQHR/6oAC7YCOQkAAGtWACs0AP//AA0AAAPyBgAGBgBMAAAAAgAk//8EiAWwABgAHAAaQAwcGxgAAAsMAnIOCwgAPzMrEjkvM8wyMDFBBR4CBw4DJyETMwMFMjY2NzYmJiclAQchNwFnAVWD1HUMCWSgxmv95vz22wEKUotbDAkwZUf+jgGUHv1zHgOBAQNkwIxzrXQ6AQWw+xcBPnZVSWc3AwECNaenAAACACT//wSIBbAAGAAcABlACxwbGAAACwwCDgsIAD8zPxI5LzPMMjAxQQUeAgcOAychEzMDBTI2Njc2JiYnJQEHITcBZwFVg9R1DAlkoMZr/eb89tsBClKLWwwJMGVH/o4BlB79cx4DgQEDZMCMc610OgEFsPsXAT52VUlnNwMBAjWnpwACAAAAAASsBbAABQAJABZACgYHBwQCBQJyBAgAPysyEjkvMzAxQQchAyMTAQchNwSsI/1x2vX9AYMe/XMeBbDI+xgFsP2XpqYAAAL/xwAAA4gEOgAFAAkAFkAKCQgIBAIFBnIECgA/KzISOS8zMDFBByEDIxMBByE3A4gi/jab67wBoB39ch4EOsD8hgQ6/j+npwAABAA/AAAFigWwAAMACQANABEAK0AVDAsLBwcGEBEGEQYRAgkDAnIKAghyACsyKzIROTkvLxEzETMSOREzMDFBAyMTIQEhNzMBAwE3AQEHITcCMf31/QRO/TL+oAXpAga8/qS2Ab3+Rx79cx4FsPpQBbD8wtoCZPpQAqS3/KUE56enAAQAKAAABFoGAAADAAkADQARAC1AFwQGcgwLCwcHBhARBhEGEQIDAHIKAgpyACsyKxE5OS8vETMRMxI5ETMrMDFBASMJAiEnMwEDAzcBAwchNwIe/vXrAQsDJ/3p/uAj3wFYgfauAUzbHv1zHgYA+gAGAP46/aG/AaD7xgIFoP1bBWOmpgAAAgChAAAFUAWwAAgADAAdQA8MAQQHAwsLBgMIAnIGCHIAKysyETkvFzkzMDFBEwEhAQMjEwEBByE3AabOAcABHP18W/dg/scDGR79dB0FsP1LArX8XP30AiUDi/z8p6cABABS/l8EMAQ6AAMACAANABEAF0ALERAQAgUNBnICDnIAKysyEjkvMzAxZQMjEzcBMwEjExMHIwMBByE3Ahtc7FyGAX79/dCmB24JmbgCiB79cx1t/fICDqEDLPvGBDr8t/EEOvxspqYAAAL/wAAABUYFsAALAA8AH0APDwcFAQQKAw4OCQUDAAJyACsyLzM5Lxc5EjkzMDFBEwEhAQEhAwEhCQIHITcBydgBfgEn/dsBP/7w3v54/tYCMv7JAyke/XMeBbD97wIR/SP9LQIc/eQC6gLG/Y2npwAC/7oAAAQSBDoACwAPAB9ADw8HBQEKBAMODgkFAwAGcgArMi8zOS8XORI5MzAxQRMBIQETIwMBIQEDAQchNwFxjgEEAQ/+Z+/1m/7x/vEBqOYCzR79cx4EOv6bAWX94f3lAXX+iwIyAgj+Raam//8AKP/qBAQETwYGAL8AAP///8IAAASpBbAGJgAqAAABBwI2/zH+ZQAOtAMOAgIAuAEIsFYAKzT//wB8AnAF3gMxBgYBggAA//8ADQAABDwFxwYGABYAAP//ACb/6gQ4BccGBgAXAAD//wANAAAEKwWwBgYAGAAA//8AWP/oBHMFsAYGABkAAP//AHH/6QQiBboEBgAaFAD//wBL/+kEVgXHBAYAHBQA//8AjP/2BCwFxwQGAB0AAP//AHP/6ARMBcgEBgAUFAD//wBm/+sFFwdLBiYAKwAAAQcAdQH9AUsAC7YBLBABAW1WACs0AP////n+UQRCBgAGJgBLAAABBwB1AUUAAAALtgM/GgEBjFYAKzQA//8AJgAABYYHNwYmADIAAAEHAEQBfwE3AAu2AQwJAQFhVgArNAD//wANAAAD8gYABiYAUgAAAQcARAC3AAAAC7YCHgMBAaBWACs0AP///6MAAASrByEGJgAlAAABBwCsBI4BMwANtwQDDgMBAWZWACs0NAD//wAc/+kD0QXrBiYARQAAAQcArAPn//0ADbcDAjwPAQGRVgArNDQA//8AJgAABLwHKAYmACkAAAEHAKwEWwE6AA23BQQRBwEBcVYAKzQ0AP//ADr/6wPwBesGJgBJAAABBwCsA9D//QANtwIBLQsBAZFWACs0NAD////PAAACwwcoBiYALQAAAQcArAMTAToADbcCAQUDAQFxVgArNDQA////gAAAAnQF4gYmAI0AAAEHAKwCxP/0AA23AgEFAwEBo1YAKzQ0AP//AGL/6QUiByMGJgAzAAABBwCsBKUBNQANtwMCLREBAVRWACs0NAD//wA4/+kEHgXrBiYAUwAAAQcArAPl//0ADbcDAi0GAQGRVgArNDQA//8AJgAABNUHIQYmADYAAAEHAKwEQgEzAA23AwIfAAEBZlYAKzQ0AP//AAwAAAMABesGJgBWAAABBwCsA1D//QANtwMCGAMBAaVWACs0NAD//wBY/+gFMQchBiYAOQAAAQcArASCATMADbcCARcLAQFmVgArNDQA//8ASv/oBC8F6wYmAFkAAAEHAKwD7P/9AA23AwIdEQEBpVYAKzQ0AP///4UAAAV7Bj8EJgDQZAAABwCu/k//////ACb+nwS3BbAGJgAmAAABBwCtBJAACgAOtAI0GwEBuP9/sFYAKzT//wAQ/osEEQYABiYARgAAAQcArQSn//YADrQDMwQBAbj/a7BWACs0//8AJv6fBNkFsAYmACgAAAEHAK0EaQAKAA60AiIdAQG4/3+wVgArNP//ADj+lQSHBgAGJgBIAAABBwCtBIsAAAAOtAMzFgEBuP+JsFYAKzT//wAm/gYE2QWwBiYAKAAAAQcBygD8/qIADrQCKB0BAbj/l7BWACs0//8AOP38BIcGAAYmAEgAAAEHAcoBHf6YAA60AzkWAQG4/6GwVgArNP//ACb+nwWFBbAGJgAsAAABBwCtBQAACgAOtAMPCgEBuP9/sFYAKzT//wAN/p8D8gYABiYATAAAAQcArQR9AAoADrQCHgIBAbj/f7BWACs0//8AJgAABXIHMwYmAC8AAAEHAHUBpgEzAAu2Aw4DAQFbVgArNAD//wARAAAEegc9BiYATwAAAQcAdQGtAT0AC7YDDgMBABtWACs0AP//ACb+4QVyBbAGJgAvAAABBwCtBMwATAAOtAMRAgEBuP/PsFYAKzT//wAR/s0ETgYABiYATwAAAQcArQRhADgADrQDEQIBAbj/vLBWACs0//8AJv6fA8AFsAYmADAAAAEHAK0ElQAKAA60AgsCAQG4/3+wVgArNP///+P+nwIWBgAGJgBQAAABBwCtA0IACgAOtAEHAgEBuP9/sFYAKzT//wAm/p8GzgWwBiYAMQAAAQcArQWpAAoADrQDFAYBAbj/f7BWACs0//8AD/6fBmEEUQYmAFEAAAEHAK0FrwAKAA60AzYCAQG4/3+wVgArNP//ACb+mwWGBbAGJgAyAAABBwCtBQIABgAOtAENAgEBuP9/sFYAKzT//wAN/p8D8gRRBiYAUgAAAQcArQRtAAoADrQCHwIBAbj/f7BWACs0//8AYv/pBSIH3gYmADMAAAEHAkYFFAFVAA23AwIxEQEBWlYAKzQ0AP//ACYAAAT6B0IGJgA0AAABBwB1AaoBQgALtgEYDwEBbFYAKzQA////yP5gBGoF9gYmAFQAAAEHAHUBnf/2AAu2AzADAQGWVgArNAD//wAm/p8E1QWwBiYANgAAAQcArQSWAAoADrQCIRgBAbj/f7BWACs0////3f6gAvIEUwYmAFYAAAEHAK0DPAALAA60AhoCAQG4/4CwVgArNP//ACb+lAS9BcYGJgA3AAABBwCtBLH//wAOtAE9KwEBuP+IsFYAKzT//wAb/osDwQRPBiYAVwAAAQcArQRa//YADrQBOSkBAbj/f7BWACs0//8Anf6ZBSUFsAYmADgAAAEHAK0EoQAEAA60AgsCAQG4/3WwVgArNP//AD/+lQKuBUMGJgBYAAABBwCtA/AAAAAOtAIZEQEBuP+JsFYAKzT//wBY/+gFMQfcBiYAOQAAAQcCRgTxAVMADbcCARsAAQFsVgArNDQA//8AmgAABX8HNgYmADoAAAEHAKUA3gFDAAu2AhgJAQF2VgArNAD//wBkAAAEEgXqBiYAWgAAAQYApRv3AAu2AhgJAQGgVgArNAD//wCa/p8FfwWwBiYAOgAAAQcArQTSAAoADrQCDQQBAbj/f7BWACs0//8AZP6fBBIEOgYmAFoAAAEHAK0EQQAKAA60Ag0EAQG4/3+wVgArNP//ALX+nwc6BbAGJgA7AAABBwCtBcEACgAOtAQZEwEBuP9/sFYAKzT//wB5/p8F9AQ6BiYAWwAAAQcArQUlAAoADrQEGRMBAbj/f7BWACs0////5f6fBOsFsAYmAD4AAAEHAK0EoQAKAA60AxECAQG4/3+wVgArNP///+b+nwPkBDoGJgBeAAABBwCtBEQACgAOtAMRAgEBuP9/sFYAKzT///8B/+kFaAXXBCYAM0YAAQcBcf4Z//8ADbcDAi4RAAASVgArNDQA////mgAABAEFHAYmAkMAAAAHAK7/Mv7c////pgAABDcFHwQmAjg8AAAHAK7+cP7f////rgAABOUFGgQmAfQ8AAAHAK7+eP7a////sQAAAgsFHwQmAfM8AAAHAK7+e/7f////2P/tBGIFHAQmAe0KAAAHAK7+ov7c////ZQAABL4FHAQmAeM8AAAHAK7+L/7c////6gAABHsFHAQmAgMKAAAHAK7+tP7c////mgAABAEEjQYGAkMAAP//AAn//wQABI0GBgJCAAD//wAJAAAD+wSNBgYCOAAA////1gAABCoEjQYGAeIAAP//AAkAAASpBI0GBgH0AAD//wAaAAABzwSNBgYB8wAA//8ACQAABJ0EjQYGAfEAAP//AAkAAAXIBI0GBgHvAAD//wAJAAAEqASNBgYB7gAA//8AO//tBFgEoAYGAe0AAP//AAkAAAQwBI0GBgHsAAD//wBjAAAEXgSNBgYB6AAA//8AbAAABIIEjgYGAeMAAP///6IAAAR9BI0GBgHkAAD//wAaAAAC3QXtBiYB8wAAAQcAav9QAB4ADbcCAQ0DAQGEVgArNDQA//8AbAAABIIF7QYmAeMAAAEGAGphHgANtwQDFwkBAYNWACs0NAD//wAJAAAD+wXtBiYCOAAAAQYAamoeAA23BQQZBwEBg1YAKzQ0AP//AAkAAAP4Bh4GJgH6AAABBwB1ASsAHgALtgIIAwEBg1YAKzQA//8AD//uA/4EngYGAekAAP//ABoAAAHPBI0GBgHzAAD//wAaAAAC3QXtBiYB8wAAAQcAav9QAB4ADbcCAQ0DAQGEVgArNDQA////8//tA68EjQYGAfIAAP//AAkAAASdBh4GJgHxAAABBwB1ASIAHgALtgMOAwEBhFYAKzQA//8Adv/oBIkGBgYmAhEAAAEHAKEAiwAeAAu2Ah0XAQGEVgArNAD///+aAAAEAQSNBgYCQwAA//8ACf//BAAEjQYGAkIAAP//AAkAAAPgBI0GBgH6AAD//wAJAAAD+wSNBgYCOAAA//8ACwAABK0GBgYmAg4AAAEHAKEAwQAeAAu2AxEIAQGEVgArNAD//wAJAAAFyASNBgYB7wAA//8ACQAABKkEjQYGAfQAAP//ADv/7QRYBKAGBgHtAAD//wAJAAAEpASNBgYB/wAA//8ACQAABDAEjQYGAewAAP//ADn/7QREBKAGBgJBAAD//wBjAAAEXgSNBgYB6AAA////ogAABH0EjQYGAeQAAAADAA7+NwPrBJ8AHgA+AEIAKEATHwECAj4+FT80NEAwKgtyDwsVfgA/M8wrzM0zEjkSOS8zEjk5MDFBJzcXPgI3NiYmIyYGBgcHPgMXHgMHDgMnFx4DBw4DJy4DNxceAhcWNjY3Ni4CJycTAyMTAi7CFoE3akoICDRYLjFXQQztB1WEnVBJk3pGBANUgpf+pUSKcUIEBV+TrVVQk3FAAugBMVI0OXJSCQYaNkkol7Jd7F4CKwF9AQEdRz82QRsBGzwxAVh+TyQBASFGd1dUeEwlRwEBIERvUmGGUiQCASpUgVkBN0MdAQEgSkAvPyQRAQH+Uv3nAhkAAAQACf6aBLkEjQADAAcACwAPAB1ADQMCAgYLB30PDgoKBhIAPzMQzjM/MxI5LzMwMUEHITcTAyMTIQMjExMDIxMDpyH9fiKZyuzLA9XL6sr7XuxeAp3AwAHw+3MEjftzBI38Jv3nAhkAAgA5/kAERASgACcAKwAYQAsZEH4oJCQqKgULcgArMi8yETM/MzAxQTcOAicuAzc3PgMXHgIXIy4CJyYOAgcHBh4CFxY2NgcDIxMDDOoUmOOCd6pmJQwKDlyVyXyAvWwI6gItXUdQdk8wCQoHAyVVTEtyTKBe610BgwGFt1sDAlycx21Pc86cVgMCY7h/RmE0AwI9bIVFUTt/bUYCAy9h4v3nAhkA//8AbAAABIIEjgYGAeMAAP//ADv+NwWUBKcGJgInAAAABwJhAr//nf//AAsAAAStBcsGJgIOAAABBwBwAI8AIQALtgMOCAEBsFYAKzQA//8Adv/oBIkFywYmAhEAAAEGAHBZIQALtgIaFwEBsFYAKzQA//8AQQAABTQEjQYGAgEAAP//ABr/7QWeBI0EJgHzAAAABwHyAe8AAP///34AAAYPBgAGJgKEAAABBwB1AnkAAAALtgYZDwEBTVYAKzQA////2//HBLsGHgYmAoYAAAEHAHUBegAeAAu2AzARAQFbVgArNAD//wAP/fwD/gSeBiYB6QAAAAcBygD3/pj//wCLAAAGHgYeBiYB5QAAAQcARAF4AB4AC7YEGAoBAWtWACs0AP//AIsAAAYeBh4GJgHlAAABBwB1AhoAHgALtgQWCgEBa1YAKzQA//8AiwAABh4F7QYmAeUAAAEHAGoBQwAeAA23BQQfCgEBhFYAKzQ0AP//AGwAAASCBh4GJgHjAAAABwBEAJcAHv///6P+WASrBbAGJgAlAAABBwCkAWsAAwALtgMOBQEBOVYAKzQA//8AHP5dA9EEUAYmAEUAAAEHAKQApgAIAAu2AjsxAABNVgArNAD//wAm/l8EvAWwBiYAKQAAAQcApAEwAAoAC7YEEAIAAENWACs0AP//ADr+VQPwBFEGJgBJAAABBwCkAP0AAAALtgEsAAAATVYAKzQA////mv5VBAEEjQYmAkMAAAAHAKQBDwAA//8ACf5dA/sEjQYmAjgAAAAHAKQA4AAI////4/6fAcoEOgYmAI0AAAEHAK0DQgAKAA60AQcCAQG4/3+wVgArNAAAAAAAEQDSAAMAAQQJAAAAXgAAAAMAAQQJAAEAGgBeAAMAAQQJAAIADAB4AAMAAQQJAAMAKACEAAMAAQQJAAQAKACEAAMAAQQJAAUAJgCsAAMAAQQJAAYAJgDSAAMAAQQJAAcAQAD4AAMAAQQJAAgADAE4AAMAAQQJAAkAJgFEAAMAAQQJAAsAFAFqAAMAAQQJAAwAFAFqAAMAAQQJAA0AXAF+AAMAAQQJAA4AVAHaAAMAAQQJABAADAIuAAMAAQQJABEAGgI6AAMAAQQJABkADAIuAEMAbwBwAHkAcgBpAGcAaAB0ACAAMgAwADEAMQAgAEcAbwBvAGcAbABlACAASQBuAGMALgAgAEEAbABsACAAUgBpAGcAaAB0AHMAIABSAGUAcwBlAHIAdgBlAGQALgBSAG8AYgBvAHQAbwAgAE0AZQBkAGkAdQBtAEkAdABhAGwAaQBjAFIAbwBiAG8AdABvACAATQBlAGQAaQB1AG0AIABJAHQAYQBsAGkAYwBWAGUAcgBzAGkAbwBuACAAMwAuADAAMAA1ADsAIAAyADAAMgAyAFIAbwBiAG8AdABvAC0ATQBlAGQAaQB1AG0ASQB0AGEAbABpAGMAUgBvAGIAbwB0AG8AIABpAHMAIABhACAAdAByAGEAZABlAG0AYQByAGsAIABvAGYAIABHAG8AbwBnAGwAZQAuAEcAbwBvAGcAbABlAEMAaAByAGkAcwB0AGkAYQBuACAAUgBvAGIAZQByAHQAcwBvAG4ARwBvAG8AZwBsAGUALgBjAG8AbQBMAGkAYwBlAG4AcwBlAGQAIAB1AG4AZABlAHIAIAB0AGgAZQAgAEEAcABhAGMAaABlACAATABpAGMAZQBuAHMAZQAsACAAVgBlAHIAcwBpAG8AbgAgADIALgAwAGgAdAB0AHAAOgAvAC8AdwB3AHcALgBhAHAAYQBjAGgAZQAuAG8AcgBnAC8AbABpAGMAZQBuAHMAZQBzAC8ATABJAEMARQBOAFMARQAtADIALgAwAFIAbwBiAG8AdABvAE0AZQBkAGkAdQBtACAASQB0AGEAbABpAGMAAAADAAD/9AAA/2oAZAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEAAgAIAAj//wAPAAEAAgAOAAAAAAAAAigAAgBZACUAPgABAEQAXgABAGoAagABAHAAcAABAHUAdQABAIEAgQABAIMAgwABAIYAhgABAIkAiQABAIsAlgABAJgAnwABAKEAowABAKUApgABAKgArQADALEAsQABALoAuwABAL8AvwABAMEAwQABAMMAxAABAMcAxwABAMsAywABAM0AzgABANAA0QABANMA0wABANoA3gABAOEA4QABAOUA5QABAOcA6QABAOsA+wABAP0A/QABAP8BAQABAQMBAwABAQgBCQABARYBGgABARwBHAABASABIgABASQBJwADASoBKwABATMBNAABATYBNgABATsBPAABAUEBRAABAUcBSAABAUsBTQABAVEBUQABAVQBWAABAV0BXgABAWIBYgABAWQBZAABAWgBaAABAWoBbAABAW4BbgABAXABcAABAcsB0QACAeIB9gABAfoB+gABAgMCAwABAgUCBQABAgwCDgABAhACEQABAhMCEwABAhcCFwABAhkCGwABAiECIQABAiYCKAABAioCKgABAjgCOAABAjsCOwABAj0CPQABAkACQwABAm8CcwABAoMCiAABAosC8wABAvYDtQABA7cDtwABA7kDwwABA8UDzgABA9AD6wABA+8D7wABA/ED+AABA/oD/AABA/8EAwABBAUEkAABBJMElAABBJYElwABBJkEnAABBKYFAgABBQQFDgABBREFHgABAAEAAwAAABAAAAAWAAAAIAABAAEArQACAAEAqACsAAAAAgACAKgArAAAASQBJwAFAAEAAAAeABAACgACAC4ANgACY3BzcAA6a2VybgBAAARERkxUADhjeXJsADhncmVrADhsYXRuADgAAQAAAAEAIgACAAgAAgAuBBAAAAABAAAAAAABAAEADgAAAAEPAgAFACQASAAA//8AAgAAAAEAAUuMAAQAAAHsE9wRBBEEF7QQ5hdaEVQRkhJkEXZH7hKkEqQVxBG2EqQSpBJkEsYgkBlQH8YRpBHMFwAY3hHiFO4SghIsEUAp5BEiJsIRXhFeEw4SLBGEGHgSRhH4EQoSRhU0EiwSZBnGHwAXWhJkF1olxCfEIwodmBDsEkYRLD54EV438iTSKMYSEhDyEPhBYhD+FHYUChpIOeQtpjRCLFgSpDDqPBYXACFeEqQSpBV6EqQSpBKkMpQa0hKkE7IeOhx0GBYj7B0GEUoiNBEKEzQ2GERgEiwUsCsaG1wS6BIsG+YTXhaqFEAS6BdaEw4RpBJGE4gSLB8AEUoXABEKFcQVxBXEEqQXABEKEqQSpBJkEUoXABEKEQQvSBEEEQQRBBEcFg4WXBEWETYREBEWERARaBEQEZISZBJkEmQSZB/GF1oXWhdaF1oXWhdaF1oRkhF2EXYRdhF2EqQSpBKkEqQSpBJkEmQSZBJkEmQY3hKCEoISghKCEoISghKCEUARQBFAEUARXhMOEw4TDhMOEw4SRhJGF1oSghdaEoIXWhKCEZIRkhGSEZISZBF2EUARdhFAEXYRQBF2EUARdhFAEqQRXhKkEqQSpBKkEqQVxBG2EbYRthG2EqQRXhKkEV4SpBFeEV4SZBMOEmQTDhJkEw4RhBGEEYQfxh/GH8YRzBjeEkYY3hHiEeIR4hEWERYRHBEQERAREBEQERAREBEQERYRFhEWERYRFhEQERAREBEWETYRNhE2ETYRFhEWERYRHBdaEXYSpBKkEmQY3hdaEVQRdhHiEqQSpBXEEqQSpBJkEsYfxhjeFwASpBjeEV4TDhJGEw4Rdh8AEqQSpBXEFcQVehdaEVQfABF2EqQSpBJkEsYRkh/GFwASghFAEw4SLBJGEQoRQBFKEkYRzBHMEcwY3hJGEQQRBBEEEqQRXhdaEoIRdhFAEaQSRhGSGN4SRhKkFwARChKkF1oSghdaEoIRdhFAEUARQBcAEQoSZBMOEw4SLBV6EkYVehJGFXoSRhdaEoIXWhKCF1oSghdaEoIXWhKCF1oSghdaEoIXWhKCF1oSghdaEoIXWhKCF1oSghF2EUARdhFAEXYRQBF2EUARdhFAEXYRQBF2EUARdhFAEqQSpBJkEw4SZBMOEmQTDhJkEw4SZBMOEmQTDhJkEw4TDhjeEkYY3hJGGN4SRh/GHwARShFeE7IfABXEGN4SpBFeF1oSghF2EqQSZBMOEYQRVBIsEmQSZBKkEV4VxBXEEbYSpBFeEqQRXhJkEsYSLBGEH8YRpBJGEaQSRhHMEeISZBEQERYREBEcERARFhEcAAJLbgAEAABPDlfKACYAJQAAAAAAAAAAABIAAAAAAAAAAAAAAAAAAP/k/+MAAAAAABEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAARAAD/5AAR/+UAAAAAAAAAAAAAAAD/6wAAAAAAAAAAAAD/7QAA/9X/0AAAAAD/6gAAAAAAAAAAAAAAAP/p/5P/9f/qAAAAAAAA/+EAAAAAAAAAAAAAAAAAAAAA//H/7gAA//UAAP/0//X/zgAA/+//jf+C//H/iAAAAAD/xAAAAAD/x//GAAAAAAAA/60AAAAAAAwAEQAA/8kAEv+sAAD/3QAAAAAAAAAAAAAAAAAAAAAAAP/xAAAAAAAAAAAAAP/PAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD/7QAAAAAAAAAAAAD/7f/v/+YAAAAAAAAAFAAAAAAAAAAA//AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/+0AAAAAAAAAAAAAAAAAAAAAAAD/8wAAAAAAAAAAAAD/8gAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP/xAAAAAAAAAAAAAP+KAAAAAAAA/+sAAAAAAAAAAAAAAAAAAAAAAAD/8AAAAAAAAP/wAAAAAAAAAAD/8wAAAAAAAAAA//H/8QAAAAAAAAAAAAAAAAAAAA8AAAAAAAAAAAAAAAAAAAAA/38AAAAAAAAAAAAAAAAAAAAA/9cAAAAAAAAAAAAAAAAAAP/qAAAAAAAAAAAAAP/rAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP+hAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/+oAAAAA/+4AAAAAAAD/7AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA//IAAAAAAAAAAAAAAAAAAAAA/+wAAAAAAAD/vwAAAAD/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD/2AAA/7//4//Y/43/y/+7/7//2f/s/6v/oAASABEAAAAAAA3/xgAA/+n/8P/zABEAAP8m/+8AEv+nAAD/4gAAAAAAAAAAAAD/oP/zAAD/5v/h//EAAP/nAAD/5f/p/9gAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/5sAAAAAAAAAAAAAAAD/owAAAAAAAAAAAAAAAAAAAAAAAAAAAAD/9QAAAAAAAAAAAAD/4wAAAAAAAP/xAAAAAAAAAAAAAAAAAAAAAAAA//EAAAAAAAD/8gAAAAAAAAAA/8UAAP/s/4gAAP/O/7gAAAAAAAAAAAAAAAAAAP+vAAD/rAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD/4wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP/m/+cAAAAA/+cAAP/r/+v/4QAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA7/qgAAAAAAEQAAAAAAEf/RAAAAAAAA/6H/5P+a/6L/uf97/3X/rP+0/68AAAAQABAAAAAAAAD/mwAA/7P/8P/xAA8AAP8X/+0AEP8J/7z/xP/LAAAAAP9+/3z/Gf/xAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA//UAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/+sAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/+wAAAAAAAAAAAAA/+UAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD/Sv+9/z//OgAA/z//UP9e/2wAAAAAAAcABwAAAAAAAP9AAAD/av/RAAAABQAA/mEAAAAH/kkAAP+G/5IAAAAA/w//DAAAAAAAAAAA/78AAAAT//IAAAAA/9//fwAT/9X/Av8H/+EAAAAAAAD/awAAAAD/a/+DAAAAAAAA/0YAAAAAAAAAAAAAAAAAAAAAAAD/qwAA/+EAAAAA/9X/5//f/+H/7QAA/8sAAAAAAA4AAAAAAAAAAAAAAAAAAAAAAAAAAP9+AAAAAP/EAAAAAAAAAAAAAAAAAAAAAAAAAAD/6//mAAAADf/sAAD/6//t/+UADQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD/LAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/+0AAAAAAAAAAP/c/+YAAAASAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAP9zAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD/1P/zAAD/tf/Z/9L/0v/k//X/tAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/yMAAAAA/68AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD/7wAAAAAAAAAAAAAAAAAAAAD/7AAAAAAAAP+0AAAAAP+7AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP/VAAD/8AAAAAAAAAAAAAD/8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD/rf8zAAD/wP/2AAAAAP/JAAAAAAAAAAAAAAAA/8gAAAAAAAD/+f/r/+cAAAAAAAAAAAAA/73/6f+h/6UAAP+c/70AAAAAAAAAAAASABIAAAAAAAD/0gAAAAAAAAAAAAAAAP5xAAAAAP9sAAAAAP/KAAAAAP+7/+kAAAAAAAD/7AAAAAAAAAAAAAD/7AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/9gAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD/zgAAAAAAAAAAAAD/eQAAAAAAAP/xAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP/dAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP/J/+UAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD/6AAAAAAAAAAA//MAAAAAAAAAAAAAAAD/8wAAAAD/ZwAA//X/8wAAAA//rAAAAAAAAAAAAAD/2gAAAAAAAAAAAAAAAP/i/p8AAAAAAAAAAAAA/6gAAAAA/8cAAP8+AAAAAQD6AAgACgAUABUAFgAXABgAGQAaABsAHAAdACUAJgAnACgAKQAqACsALAAtAC4ALwAwADEAMgAzADQANQA2ADcAOAA5ADoAOwA8AD0APgBlAGcAgQCDAIQAjACPAJEAkwCxALIAswC0ALUAtgC3ALgAuQC6ANIA0wDUANUA1gDXANgA2QDaANsA3ADdAN4A3wDgAOEA4gDjAOQA5QDmAOcA6ADpAS8BMwE1ATcBOQE7AUEBQwFFAUkBSwFMAVgBWQGnAa0BsgG1AosCjAKOApACkQKSApMClAKVApYClwKYApkCmgKbApwCnQKeAp8CoAKhAqICowKkAqUCpgKnAqgCqQKqAscCyQLLAs0CzwLRAtMC1QLXAtkC2wLdAt8C4QLjAuUC5wLpAusC7QLvAvEC8wL0AvYC+AL6AvwC/gMAAwIDBAMGAwkDCwMNAw8DEQMTAxUDFwMZAxsDHQMfAyEDIwMlAycDKQMrAy0DLwMxAzMDNQM2AzgDOgM8Az4DlwOYA5kDmgObA5wDnQOfA6ADoQOiA6MDpAOlA6YDpwOoA6kDqgOrA6wDrQOuA74DvwPAA8EDwgPDA8QDxQPGA8cDyAPJA8oDywPMA80DzgPPA9AD0QPSA9MD5APmA+gD6gP/BAEEAwQYBB4EJASOBJMElwUYBRoAAQAT/xcAAQDEAA4AAQD2/80AAQDKABMAAQD2/9wAAQBbAAsAAQEc//EAAQHm/8cAAQHm//EAAQHmAA0AAgD2/8gBhf+nAAIAyv/0APb/2AACAeb/twHr//AAAgD2//UBhf+2AAIA7f+lARz/7gACAREACwFs/+YAAgD2/8gBhf+hAAMB5f/1Aeb/7gOR//UAAwBK/+4AW//qAeb/8AADAEoAEQBYADIAWwARAAQADf/mAEH/9ABh/+8BTf/tAAQADQAUAEEAEQBW/+IAYQATAAUAW/+zAeb/eQHr//EB9f/xAkH/8wAFAA0ADwBBAAwAVv/rAGEADgJB/+kABQBb/+UAuP/LAM3/5AH1/+sCQf/tAAYAEP+EABL/hAGG/4QBiv+EAY7/hAGP/4QABgDK/+oA7f/uAPb/ugD+//kBOv/sAW3/7AAGAMr/6gDt/+4A9v++AP7/+QE6/+wBbf/sAAcASgANAL7/+QDGAAsAx//qAMoADADt/8gBHP/xAAcAgf/fALX/8wC3//AAxP/qANn/3wDm/+ABbP/gAAgA9v/wAP7/+gEJ//EBIP/zATr/8QFj//MBZf/tAW3/3gAIANkAFQDtABUBSf/kAUr/5QFM/+QBYv/jAWT/4gFs/+QACABYAA4Agf9WAL7/+QDE/8QAx//aANn/cQDt/54BX//cAAkA9v+dAP7/6wEJ/9MBIP/bATr/PgFK/7oBY//wAWX/8gFt/1AACQDK/+oA7f+4APb/5wEJ//ABIP/xATr/6wFj//UBbf/sAYX/pAAKAAb/9QAL//UBhP/1AYX/9QGH//UBiP/1AYn/9QPs//UD7f/1A/D/9QAKAAb/1gAL/9YBhP/WAYX/1gGH/9YBiP/WAYn/1gPs/9YD7f/WA/D/1gAKAAb/6gAL/+oBhP/qAYX/6gGH/+oBiP/qAYn/6gPs/+oD7f/qA/D/6gAKAOb/wwD2/88A/v/wATr/zgFJ/+cBTP/fAWL/0QFk/+wBbP+gAW3/0QALADj/0QDS/9EA1v/RATn/0QFF/9EDH//RAyH/0QMj/9ED0v/RBIj/0QTQ/9EADQBc//IAXv/yAO7/8gE0//IBRP/yAV7/8gM3//IDOf/yAzv/8gPb//IEB//yBBX/8gTa//IADQD2/5oA+f/WAP7/8gEJ/9MBIP/bATr/PgFI/9YBSv+6AWP/8AFl//IBbf9QBCv/1gSL/9YADgBc/+0AXv/tAO7/7QD2/7IBNP/tAUT/7QFe/+0DN//tAzn/7QM7/+0D2//tBAf/7QQV/+0E2v/tAA8A7QAUAPIAEAD2//AA+f/wAP7/+gEBABABBAAQATr/7AFI//ABSv/iAVEAEAFt//ABcAAQBCv/8ASL//AAEQAu/+4AOf/uAqb/7gKn/+4CqP/uAqn/7gL2/+4DJf/uAyf/7gMp/+4DK//uAy3/7gMv/+4Dw//uBHP/7gR1/+4E0v/uABEALv/sADn/7AKm/+wCp//sAqj/7AKp/+wC9v/sAyX/7AMn/+wDKf/sAyv/7AMt/+wDL//sA8P/7ARz/+wEdf/sBNL/7AASANn/rgDmABIA6//gAO3/rQDv/9YA/f/fAQH/0gEH/+ABHP/OAS7/3QEw/+IBOP/gAUD/4AFK/+kBTf/aAV//vQFp/98BbAARABIAW//BALj/xQDK/7QA6v/XAPb/uQD+/+kBCf+yARz/0gEg/8gBOv+gAUr/xQFY/+QBY//MAWX/zAFt/8sBbv/vAfX/5gJB/+gAEwHj/+4B5f/1Aeb/8QHo//ICBP/yAgj/8gIg//ICIv/uAiT/8gNd/+4Dif/yA5H/9QOS/+4Dk//uBOH/7gTv/+4E8v/uBQb/8gUL/+4AEwHj/+UB5f/xAeb/6wHo/+kCBP/pAgj/6QIg/+kCIv/lAiT/6QNd/+UDif/pA5H/8QOS/+UDk//lBOH/5QTv/+UE8v/lBQb/6QUL/+UAFQBc/+0A7v/tAPb/oQD5/9EA/v/vAQn/0wEg/9sBNP/tATr/PgFE/+0BSP/RAUr/ugFe/+0BY//wAWX/8gFt/1AD2//tBAf/7QQV/+0EK//RBIv/0QAWALj/1AC+//YAwv/tAMQAEQDK/+AAzP/nAM3/5QDO/+4A2QASAOr/6QD2/9cBOv/XAUr/0wFM/9YBTf/FAVj/5wFiAA0BZAAMAW3/1gFu//IB6//pAkH/6QAWACP/vABY/+8AW//fAJr/7gC4/+UAuf/RAMQAEQDK/8gA2QATAOb/xQD2/8oBOv+UAUn/WAFK/38BTP+lAU3/3QFY//IBYv+LAWT/ygFs/3ABbf+iAeb/zQAYADoAFAA7ABkAPQAWARkAFAKqABYDMQAZAzMAFgM1ABYDnAAWA6sAFgOuABYD5AAZA+YAGQPoABkD6gAWA/sAFAQDABYEgQAWBIMAFgSFABYElwAWBNMAFATVABQE1wAZABgAOP/rAD3/8wDS/+sA1v/rATn/6wFF/+sCqv/zAx//6wMh/+sDI//rAzP/8wM1//MDnP/zA6v/8wOu//MD0v/rA+r/8wQD//MEgf/zBIP/8wSF//MEiP/rBJf/8wTQ/+sAGQBT/+gBGP/oAYUACQK8/+gCvf/oAr7/6AK//+gCwP/oAwr/6AMM/+gDDv/oA7X/6AO7/+gD1//oBB3/6AQh/+gEXP/oBF7/6ARg/+gEYv/oBGT/6ARm/+gEaP/oBHD/6ASx/+gAHAAK/+IADQAUAA7/zwBBABIASv/qAFb/2ABY/+oAYQATAG3/rgB8/80Agf+gAIb/wQCJ/8AAuP/QALz/6gC+//UAv//GAMAADQDC/+kAw//WAMb/6ADH/7oAyv/pAMz/ywDN/9oAzv/HAY3/0wJB/80AHQA4/7sAOv/tAD3/0ADS/7sA1v+7ARn/7QE5/7sBRf+7Aqr/0AMf/7sDIf+7AyP/uwMz/9ADNf/QA5z/0AOr/9ADrv/QA9L/uwPq/9AD+//tBAP/0ASB/9AEg//QBIX/0ASI/7sEl//QBND/uwTT/+0E1f/tACAABv/yAAv/8gBa//MAXf/zAL3/8wD2//UBGv/zAYT/8gGF//IBh//yAYj/8gGJ//ICxf/zAsb/8wM0//MDt//zA9r/8wPj//MD6//zA+z/8gPt//ID8P/yA/z/8wQE//MEJf/zBCf/8wQp//MEgv/zBIT/8wSG//ME1P/zBNb/8wAiAFr/9ABc//IAXf/0AF7/8wC9//QA7v/yARr/9AE0//IBRP/yAV7/8gLF//QCxv/0AzT/9AM3//MDOf/zAzv/8wO3//QD2v/0A9v/8gPj//QD6//0A/z/9AQE//QEB//yBBX/8gQl//QEJ//0BCn/9ASC//QEhP/0BIb/9ATU//QE1v/0BNr/8wAiAAb/wAAL/8AAOv/IAN7/6wDh/+cA5v/DAPb/zgD+//ABGf/IATr/zQFH/+cBSf/nAUz/3wFi/9EBZP/sAWz/oAFt/9ABhP/AAYX/wAGH/8ABiP/AAYn/wAPG/+sD7P/AA+3/wAPw/8AD+//IBCT/6wQm/+sEKP/rBCr/5wSK/+cE0//IBNX/yAAiAFr/0gBd/9IAvf/SAPb/pQD5/+EA/v/6AQn/0wEa/9IBIP/bATr/TQFI/+EBSv+7AWP/+AFl//MBbf9fAsX/0gLG/9IDNP/SA7f/0gPa/9ID4//SA+v/0gP8/9IEBP/SBCX/0gQn/9IEKf/SBCv/4QSC/9IEhP/SBIb/0gSL/+EE1P/SBNb/0gAjAFr/9ABc//AAXf/0AL3/9ADt/+8A7v/wAPL/8wD+//kBBP/zARr/9AE0//ABRP/wAVH/8wFe//ABcP/zAsX/9ALG//QDNP/0A7f/9APa//QD2//wA+P/9APr//QD/P/0BAT/9AQH//AEFf/wBCX/9AQn//QEKf/0BIL/9ASE//QEhv/0BNT/9ATW//QAJAA4/+IAPP/kANL/4gDU/+QA1v/iANn/4QDa/+QA3f/kAN7/6QDt/+QA8v/rAQT/6wEz/+QBOf/iAUP/5AFF/+IBUP/kAVH/6wFd/+QBZv/kAW//5AFw/+sDH//iAyH/4gMj/+IDrP/kA8b/6QPS/+ID0//kBAb/5AQU/+QEJP/pBCb/6QQo/+kEiP/iBND/4gAkAAb/8gAL//IAWv/1AF3/9QC9//UA9v/0AP7//AEJ//UBGv/1ATr/9QFt//UBhP/yAYX/8gGH//IBiP/yAYn/8gLF//UCxv/1AzT/9QO3//UD2v/1A+P/9QPr//UD7P/yA+3/8gPw//ID/P/1BAT/9QQl//UEJ//1BCn/9QSC//UEhP/1BIb/9QTU//UE1v/1ACgAEP8tABL/LQAl/80Asv/NALT/zQDH//IBDf/NAYb/LQGK/y0Bjv8tAY//LQKQ/80Ckf/NApL/zQKT/80ClP/NApX/zQKW/80Cx//NAsn/zQLL/80Dl//NA5//zQPH/80D8//NBAn/zQQL/80EL//NBDH/zQQz/80ENf/NBDf/zQQ5/80EO//NBD3/zQQ//80EQf/NBEP/zQRF/80Eqv/NADEAOP/jADz/5QA9/+QA0v/jANT/5QDW/+MA2f/iANr/5QDd/+UA3v/pAPL/6gEE/+oBM//lATn/4wFD/+UBRf/jAVD/5QFR/+oBXf/lAWb/5QFs/+QBb//lAXD/6gKq/+QDH//jAyH/4wMj/+MDM//kAzX/5AOc/+QDq//kA6z/5QOu/+QDxv/pA9L/4wPT/+UD6v/kBAP/5AQG/+UEFP/lBCT/6QQm/+kEKP/pBIH/5ASD/+QEhf/kBIj/4wSX/+QE0P/jADEAVv9zAFv/kgBt/i8AfP6pAIH+tgCG/z4Aif9LALj/ZwC+/7kAv/8PAMP+9ADG/ysAx/7xAMr/UgDM/vkAzf8DAM7+7ADZ/1gA5gAFAOr/vQDr/0kA7f7+AO//EwD2/2gA/f8OAP7/RgD//xMBAf8HAQIAEgEH/w4BCf8RARz/HQEg/6wBLv8VATD/PAE4/w4BOv9qAUD/SQFK/wwBTP8/AU3+8QFY/8ABX/7vAWP/MQFl/18Baf8KAWwABQFt/zABbv/VADIABP/RAFb/uQBb/8sAbf76AHz/QgCB/0kAhv+ZAIn/oQC4/7IAvv/dAL//fgDD/24Axv+OAMf/bADK/6UAzP9xAM3/dwDO/2kA2f+pAOYADwDq/+QA6/+gAO3/dADv/4AA9v+yAP3/fQD+/54A//+AAQH/eQECAA8BB/99AQn/fwEc/4YBIP/aAS7/gQEw/5gBOP99ATr/swFA/6ABSv98AUz/mgFN/2wBWP/mAV//awFj/5IBZf+tAWn/ewFsAA8Bbf+RAW7/8gAzADj/2QA6/+QAO//sAD3/3QDS/9kA1v/ZARn/5AE5/9kBRf/ZAfsADgH9AA4CQwAOAqr/3QMf/9kDIf/ZAyP/2QMx/+wDM//dAzX/3QNDAA4DRAAOA0UADgNGAA4DRwAOA0gADgNJAA4DXgAOA18ADgNgAA4DnP/dA6v/3QOu/90D0v/ZA+T/7APm/+wD6P/sA+r/3QP7/+QEA//dBIH/3QSD/90Ehf/dBIj/2QSX/90E0P/ZBNP/5ATV/+QE1//sBNwADgTjAA4E+wAOADUAG//yADj/8QA6//QAPP/0AD3/8ADS//EA1P/1ANb/8QDa//QA3f/1AN7/8wDm//EBGf/0ATP/9AE5//EBQ//0AUX/8QFQ//UBXf/0AWL/8gFk//IBZv/1AWz/8gFv//UCqv/wAx//8QMh//EDI//xAzP/8AM1//ADnP/wA6v/8AOs//QDrv/wA8b/8wPS//ED0//0A+r/8AP7//QEA//wBAb/9AQU//QEJP/zBCb/8wQo//MEgf/wBIP/8ASF//AEiP/xBJf/8ATQ//EE0//0BNX/9AA1AFH/+QBS//kAVP/5AMH/+QDs//kA7QAUAPD/+QDx//kA8//5APT/+QD1//kA9v/tAPj/+QD5/+0A+v/5APv/+QD8/9sA/v/5AQD/+QEF//kBK//5ATb/+QE6/+0BPP/5AT7/+QFI/+0BSv/tAVP/+QFV//kBV//5AVz/+QFt/+0Cu//5AwP/+QMF//kDB//5Awj/+QOx//kD1v/5A9j/+QPd//kD4v/5A/L/+QP4//kEGf/5BBv/+QQr/+0ELf/5BIv/7QSN//kEqf/5BMb/+QTI//kAOAAl/+QAPP/SAD3/0wCy/+QAtP/kAMT/4gDa/9IBDf/kATP/0gFD/9IBXf/SApD/5AKR/+QCkv/kApP/5AKU/+QClf/kApb/5AKq/9MCx//kAsn/5ALL/+QDM//TAzX/0wOX/+QDnP/TA5//5AOr/9MDrP/SA67/0wPH/+QD0//SA+r/0wPz/+QEA//TBAb/0gQJ/+QEC//kBBT/0gQv/+QEMf/kBDP/5AQ1/+QEN//kBDn/5AQ7/+QEPf/kBD//5ARB/+QEQ//kBEX/5ASB/9MEg//TBIX/0wSX/9MEqv/kADkAUf/vAFL/7wBU/+8AXP/wAMH/7wDs/+8A7f/uAO7/8ADw/+8A8f/vAPP/7wD0/+8A9f/vAPb/7gD4/+8A+v/vAPv/7wD+/+8BAP/vAQX/7wEJ//QBIP/xASv/7wE0//ABNv/vATr/7wE8/+8BPv/vAUT/8AFT/+8BVf/vAVf/7wFc/+8BXv/wAW3/7wK7/+8DA//vAwX/7wMH/+8DCP/vA7H/7wPW/+8D2P/vA9v/8APd/+8D4v/vA/L/7wP4/+8EB//wBBX/8AQZ/+8EG//vBC3/7wSN/+8Eqf/vBMb/7wTI/+8APAAG/8MAC//DAEr/8QBZ//cAWv/bAF3/2wCb//cAvf/bAML/9QDEAAoAxv/zAMr/cgDL//cBGv/bAYT/wwGF/8MBh//DAYj/wwGJ/8MCwf/3AsL/9wLD//cCxP/3AsX/2wLG/9sDJv/3Ayj/9wMq//cDLP/3Ay7/9wMw//cDNP/bA7P/9wO3/9sDuv/3A7z/9wPa/9sD4//bA+v/2wPs/8MD7f/DA/D/wwP8/9sEBP/bBCX/2wQn/9sEKf/bBHT/9wR2//cEeP/3BHr/9wR8//cEfv/3BID/9wSC/9sEhP/bBIb/2wS1//cE1P/bBNb/2wA/ACf/8wAr//MAM//zADX/8wCD//MAk//zAJj/8wCz//MAxAANANP/8wEI//MBF//zARv/8wEd//MBH//zASH/8wFB//MBav/zAlX/8wJW//MCWP/zAln/8wKX//MCof/zAqL/8wKj//MCpP/zAqX/8wLN//MCz//zAtH/8wLT//MC4f/zAuP/8wLl//MC5//zAwn/8wML//MDDf/zAz7/8wOb//MDqP/zA87/8wPR//MD/v/zBAH/8wQc//MEHv/zBCD/8wRb//MEXf/zBF//8wRh//MEY//zBGX/8wRn//MEaf/zBGv/8wRt//MEb//zBHH/8wSw//MEyf/zAEAAR//sAEj/7ABJ/+wAS//sAFX/7ACU/+wAmf/sALv/7ADI/+wAyf/sAPf/7AED/+wBHv/sASL/7AFC/+wBYP/sAWH/7AFr/+wCsv/sArP/7AK0/+wCtf/sArb/7ALO/+wC0P/sAtL/7ALU/+wC1v/sAtj/7ALa/+wC3P/sAt7/7ALg/+wC4v/sAuT/7ALm/+wC6P/sA6//7APV/+wD2f/sA9z/7AP3/+wD/f/sBAL/7AQQ/+wEEv/sBBP/7AQf/+wELv/sBEj/7ARK/+wETP/sBE7/7ARQ/+wEUv/sBFT/7ARW/+wEav/sBGz/7ARu/+wEcv/sBK3/7AS6/+wEvP/sAEAAJ//mACv/5gAz/+YANf/mAIP/5gCT/+YAmP/mALP/5gC4/8IAxAAQANP/5gEI/+YBF//mARv/5gEd/+YBH//mASH/5gFB/+YBav/mAlX/5gJW/+YCWP/mAln/5gKX/+YCof/mAqL/5gKj/+YCpP/mAqX/5gLN/+YCz//mAtH/5gLT/+YC4f/mAuP/5gLl/+YC5//mAwn/5gML/+YDDf/mAz7/5gOb/+YDqP/mA87/5gPR/+YD/v/mBAH/5gQc/+YEHv/mBCD/5gRb/+YEXf/mBF//5gRh/+YEY//mBGX/5gRn/+YEaf/mBGv/5gRt/+YEb//mBHH/5gSw/+YEyf/mAEcAEAAEABIABABH/+cASP/nAEn/5wBL/+cAVf/nAJT/5wCZ/+cAu//nAMQADwDI/+cAyf/nAPf/5wED/+cBHv/nASL/5wFC/+cBYP/nAWH/5wFr/+cBhgAEAYoABAGOAAQBjwAEArL/5wKz/+cCtP/nArX/5wK2/+cCzv/nAtD/5wLS/+cC1P/nAtb/5wLY/+cC2v/nAtz/5wLe/+cC4P/nAuL/5wLk/+cC5v/nAuj/5wOv/+cD1f/nA9n/5wPc/+cD9//nA/3/5wQC/+cEEP/nBBL/5wQT/+cEH//nBC7/5wRI/+cESv/nBEz/5wRO/+cEUP/nBFL/5wRU/+cEVv/nBGr/5wRs/+cEbv/nBHL/5wSt/+cEuv/nBLz/5wBNAAYAEAALABAADQAUAEEAEgBH/+gASP/oAEn/6ABL/+gAVf/oAGEAEwCU/+gAmf/oALv/6ADI/+gAyf/oAPf/6AED/+gBHv/oASL/6AFC/+gBYP/oAWH/6AFr/+gBhAAQAYUAEAGHABABiAAQAYkAEAKy/+gCs//oArT/6AK1/+gCtv/oAs7/6ALQ/+gC0v/oAtT/6ALW/+gC2P/oAtr/6ALc/+gC3v/oAuD/6ALi/+gC5P/oAub/6ALo/+gDr//oA9X/6APZ/+gD3P/oA+wAEAPtABAD8AAQA/f/6AP9/+gEAv/oBBD/6AQS/+gEE//oBB//6AQu/+gESP/oBEr/6ARM/+gETv/oBFD/6ARS/+gEVP/oBFb/6ARq/+gEbP/oBG7/6ARy/+gErf/oBLr/6AS8/+gATwBHAAEASAABAEkAAQBLAAEAVQABAJQAAQCZAAEAuwABAMgAAQDJAAEA7QArAPIAFAD2/+MA9wABAPn/8AD8/+YA/v/1AQMAAQEEABQBHgABASIAAQE6/9MBQgABAUj/8AFK/98BUQAUAWAAAQFhAAEBawABAW3/4wFwABQCsgABArMAAQK0AAECtQABArYAAQLOAAEC0AABAtIAAQLUAAEC1gABAtgAAQLaAAEC3AABAt4AAQLgAAEC4gABAuQAAQLmAAEC6AABA68AAQPVAAED2QABA9wAAQP3AAED/QABBAIAAQQQAAEEEgABBBMAAQQfAAEEK//wBC4AAQRIAAEESgABBEwAAQROAAEEUAABBFIAAQRUAAEEVgABBGoAAQRsAAEEbgABBHIAAQSL//AErQABBLoAAQS8AAEAUwA4/74AUf/1AFL/9QBU//UAWv/vAF3/7wC9/+8Awf/1ANL/vgDW/74A5v/JAOz/9QDw//UA8f/1APP/9QD0//UA9f/1APb/3wD4//UA+v/1APv/9QD+//UBAP/1AQX/9QEJ/+0BGv/vASD/6wEr//UBNv/1ATn/vgE6/98BPP/1AT7/9QFF/74BTP/pAVP/9QFV//UBV//1AVz/9QFj//UBbf/gArv/9QLF/+8Cxv/vAwP/9QMF//UDB//1Awj/9QMf/74DIf++AyP/vgM0/+8Dsf/1A7f/7wPS/74D1v/1A9j/9QPa/+8D3f/1A+L/9QPj/+8D6//vA/L/9QP4//UD/P/vBAT/7wQZ//UEG//1BCX/7wQn/+8EKf/vBC3/9QSC/+8EhP/vBIb/7wSI/74Ejf/1BKn/9QTG//UEyP/1BND/vgTU/+8E1v/vAGgAOP8zADr/yAA8//AAPf+sAFH/7wBS/+8AVP/vAMH/7wDS/zMA1P/1ANb/MwDa//AA3f/1AN7/6wDh/+YA5v/CAOz/7wDw/+8A8f/vAPP/7wD0/+8A9f/vAPb/zgD4/+8A+v/vAPv/7wD+/+8BAP/vAQX/7wEZ/8gBK//vATP/8AE2/+8BOf8zATr/zQE8/+8BPv/vAUP/8AFF/zMBR//mAUn/5gFM/98BUP/1AVP/7wFV/+8BV//vAVz/7wFd//ABYv/QAWT/6wFm//UBbP+fAW3/0AFv//UCqv+sArv/7wMD/+8DBf/vAwf/7wMI/+8DH/8zAyH/MwMj/zMDM/+sAzX/rAOc/6wDq/+sA6z/8AOu/6wDsf/vA8b/6wPS/zMD0//wA9b/7wPY/+8D3f/vA+L/7wPq/6wD8v/vA/j/7wP7/8gEA/+sBAb/8AQU//AEGf/vBBv/7wQk/+sEJv/rBCj/6wQq/+YELf/vBIH/rASD/6wEhf+sBIj/MwSK/+YEjf/vBJf/rASp/+8Exv/vBMj/7wTQ/zME0//IBNX/yABoAEf/tABI/7QASf+0AEv/tABMABQATwAUAFAAFABT/3oAVf+0AFf/ZABbAAsAlP+0AJn/tAC7/7QAyP+0AMn/tAD3/7QBA/+0ARj/egEe/7QBIv+0AUL/tAFg/7QBYf+0AWv/tAHR/2QCsv+0ArP/tAK0/7QCtf+0Arb/tAK8/3oCvf96Ar7/egK//3oCwP96As7/tALQ/7QC0v+0AtT/tALW/7QC2P+0Atr/tALc/7QC3v+0AuD/tALi/7QC5P+0Aub/tALo/7QDCv96Awz/egMO/3oDFv9kAxj/ZAMa/2QDHP9kAx7/ZAOv/7QDtf96A7v/egPV/7QD1/96A9n/tAPc/7QD3v9kA/f/tAP9/7QEAv+0BBD/tAQS/7QEE/+0BB3/egQf/7QEIf96BC7/tARI/7QESv+0BEz/tARO/7QEUP+0BFL/tARU/7QEVv+0BFz/egRe/3oEYP96BGL/egRk/3oEZv96BGj/egRq/7QEbP+0BG7/tARw/3oEcv+0BK3/tASx/3oEuv+0BLz/tAS+ABQEwAAUBMIAFATP/2QAagA4/+YAOv/nADz/8gA9/+cAUf/xAFL/8QBU//EAXP/xAMH/8QDS/+YA1v/mANr/8gDe/+4A4f/oAOb/5gDs//EA7v/xAPD/8QDx//EA8//xAPT/8QD1//EA9v/QAPj/8QD6//EA+//xAP7/8QEA//EBBf/xARn/5wEr//EBM//yATT/8QE2//EBOf/mATr/zgE8//EBPv/xAUP/8gFE//EBRf/mAUf/6AFJ/+gBU//xAVX/8QFX//EBXP/xAV3/8gFe//EBYv/nAWT/7QFs/+YBbf/QAqr/5wK7//EDA//xAwX/8QMH//EDCP/xAx//5gMh/+YDI//mAzP/5wM1/+cDnP/nA6v/5wOs//IDrv/nA7H/8QPG/+4D0v/mA9P/8gPW//ED2P/xA9v/8QPd//ED4v/xA+r/5wPy//ED+P/xA/v/5wQD/+cEBv/yBAf/8QQU//IEFf/xBBn/8QQb//EEJP/uBCb/7gQo/+4EKv/oBC3/8QSB/+cEg//nBIX/5wSI/+YEiv/oBI3/8QSX/+cEqf/xBMb/8QTI//EE0P/mBNP/5wTV/+cAawAlAA8AOP/mADr/5gA8AA4APf/mALIADwC0AA8A0v/mANQADgDW/+YA2QATANoADgDdAA4A3gALAOH/5QDm/+YA5//0AO0AEgDyAA8A9v/nAPn/6AD+//cBBAAPAQ0ADwEZ/+YBMwAOATn/5gE6/+cBQwAOAUX/5gFH/+UBSP/oAUn/5QFK/+gBTP/kAVAADgFRAA8BXQAOAWL/5gFk/+YBZgAOAWz/5gFt/+cBbwAOAXAADwKQAA8CkQAPApIADwKTAA8ClAAPApUADwKWAA8Cqv/mAscADwLJAA8CywAPAx//5gMh/+YDI//mAzP/5gM1/+YDlwAPA5z/5gOfAA8Dq//mA6wADgOu/+YDxgALA8cADwPS/+YD0wAOA+r/5gPzAA8D+//mBAP/5gQGAA4ECQAPBAsADwQUAA4EJAALBCYACwQoAAsEKv/lBCv/6AQvAA8EMQAPBDMADwQ1AA8ENwAPBDkADwQ7AA8EPQAPBD8ADwRBAA8EQwAPBEUADwSB/+YEg//mBIX/5gSI/+YEiv/lBIv/6ASX/+YEqgAPBND/5gTT/+YE1f/mAHUABv+6AAv/ugA4/zMAOv/HADz/8QA9/6sAUf/uAFL/7gBU/+4AXP/XAMH/7gDS/zMA1v8zANr/8QDe/+sA4f/lAOb/wwDs/+4A7v/XAPD/7gDx/+4A8//uAPT/7gD1/+4A9v/MAPj/7gD6/+4A+//uAP7/7gEA/+4BBf/uARn/xwEr/+4BM//xATT/1wE2/+4BOf8zATr/yQE8/+4BPv/uAUP/8QFE/9cBRf8zAUf/5QFJ/+UBTP/fAVP/7gFV/+4BV//uAVz/7gFd//EBXv/XAWL/0AFk/+sBbP+gAW3/zQGE/7oBhf+6AYf/ugGI/7oBif+6Aqr/qwK7/+4DA//uAwX/7gMH/+4DCP/uAx//MwMh/zMDI/8zAzP/qwM1/6sDnP+rA6v/qwOs//EDrv+rA7H/7gPG/+sD0v8zA9P/8QPW/+4D2P/uA9v/1wPd/+4D4v/uA+r/qwPs/7oD7f+6A/D/ugPy/+4D+P/uA/v/xwQD/6sEBv/xBAf/1wQU//EEFf/XBBn/7gQb/+4EJP/rBCb/6wQo/+sEKv/lBC3/7gSB/6sEg/+rBIX/qwSI/zMEiv/lBI3/7gSX/6sEqf/uBMb/7gTI/+4E0P8zBNP/xwTV/8cAdgBH//AASP/wAEn/8ABL//AAU//eAFX/8ACU//AAmf/wALv/8ADI//AAyf/wAPf/8AED//ABGP/eARz/6wEe//ABIv/wAUL/8AFg//ABYf/wAWv/8AHr/+sB7f/rAfX/6QH8/+sCBf/rAiH/6wIq/+sCQf/rArL/8AKz//ACtP/wArX/8AK2//ACvP/eAr3/3gK+/94Cv//eAsD/3gLO//AC0P/wAtL/8ALU//AC1v/wAtj/8ALa//AC3P/wAt7/8ALg//AC4v/wAuT/8ALm//AC6P/wAwr/3gMM/94DDv/eA0r/6wNU/+sDVf/rA1b/6wNX/+sDWP/rA2H/6wNi/+sDY//rA2T/6wNr/+sDbP/rA23/6wNu/+sDfv/rA3//6wOA/+sDr//wA7X/3gO7/94D1f/wA9f/3gPZ//AD3P/wA/f/8AP9//AEAv/wBBD/8AQS//AEE//wBB3/3gQf//AEIf/eBC7/8ARI//AESv/wBEz/8ARO//AEUP/wBFL/8ARU//AEVv/wBFz/3gRe/94EYP/eBGL/3gRk/94EZv/eBGj/3gRq//AEbP/wBG7/8ARw/94Ecv/wBK3/8ASx/94Euv/wBLz/8ATg/+sFAv/rBQX/6wUK/+sAfAAG/9oAC//aAEf/8ABI//AASf/wAEv/8ABV//AAWf/vAFr/3ABd/9wAlP/wAJn/8ACb/+8Au//wAL3/3ADC/+wAxAAPAMb/6gDI//AAyf/wAMr/yADL/+8AzP/nAPf/8AED//ABGv/cAR7/8AEi//ABQv/wAWD/8AFh//ABa//wAYT/2gGF/9oBh//aAYj/2gGJ/9oCsv/wArP/8AK0//ACtf/wArb/8ALB/+8Cwv/vAsP/7wLE/+8Cxf/cAsb/3ALO//AC0P/wAtL/8ALU//AC1v/wAtj/8ALa//AC3P/wAt7/8ALg//AC4v/wAuT/8ALm//AC6P/wAyb/7wMo/+8DKv/vAyz/7wMu/+8DMP/vAzT/3AOv//ADs//vA7f/3AO6/+8DvP/vA9X/8APZ//AD2v/cA9z/8APj/9wD6//cA+z/2gPt/9oD8P/aA/f/8AP8/9wD/f/wBAL/8AQE/9wEEP/wBBL/8AQT//AEH//wBCX/3AQn/9wEKf/cBC7/8ARI//AESv/wBEz/8ARO//AEUP/wBFL/8ARU//AEVv/wBGr/8ARs//AEbv/wBHL/8AR0/+8Edv/vBHj/7wR6/+8EfP/vBH7/7wSA/+8Egv/cBIT/3ASG/9wErf/wBLX/7wS6//AEvP/wBNT/3ATW/9wAjAAG/8oAC//KADj/0gA6/9QAPP/0AD3/0wBR/+IAUv/iAFT/4gBa/+YAXP/vAF3/5gC9/+YAwf/iANL/0gDW/9IA2v/0AN7/7QDh/+EA5v/UAOz/4gDu/+8A8P/iAPH/4gDz/+IA9P/iAPX/4gD2/8kA+P/iAPr/4gD7/+IA/v/RAQD/4gEF/+IBCf/lARn/1AEa/+YBIP/jASv/4gEz//QBNP/vATb/4gE5/9IBOv/EATz/4gE+/+IBQ//0AUT/7wFF/9IBR//hAUn/4QFT/+IBVf/iAVf/4gFc/+IBXf/0AV7/7wFi/9QBY//1AWT/5wFs/6oBbf/JAYT/ygGF/8oBh//KAYj/ygGJ/8oCqv/TArv/4gLF/+YCxv/mAwP/4gMF/+IDB//iAwj/4gMf/9IDIf/SAyP/0gMz/9MDNP/mAzX/0wOc/9MDq//TA6z/9AOu/9MDsf/iA7f/5gPG/+0D0v/SA9P/9APW/+ID2P/iA9r/5gPb/+8D3f/iA+L/4gPj/+YD6v/TA+v/5gPs/8oD7f/KA/D/ygPy/+ID+P/iA/v/1AP8/+YEA//TBAT/5gQG//QEB//vBBT/9AQV/+8EGf/iBBv/4gQk/+0EJf/mBCb/7QQn/+YEKP/tBCn/5gQq/+EELf/iBIH/0wSC/+YEg//TBIT/5gSF/9MEhv/mBIj/0gSK/+EEjf/iBJf/0wSp/+IExv/iBMj/4gTQ/9IE0//UBNT/5gTV/9QE1v/mAJgAJQAQACf/6AAr/+gAM//oADX/6AA4/+AAOv/gAD3/3wCD/+gAk//oAJj/6ACyABAAs//oALQAEADS/+AA0//oANQAEADW/+AA2QAUAN0AEADh/+EA5v/gAO0AEwDyABAA+f/gAQQAEAEI/+gBDQAQARf/6AEZ/+ABG//oAR3/6AEf/+gBIf/oATn/4AFB/+gBRf/gAUf/4QFI/+ABSf/hAUr/4AFN/+EBUAAQAVEAEAFY/+kBYv/fAWT/3gFmABABav/oAWz/3wFu//IBbwAQAXAAEAJV/+gCVv/oAlj/6AJZ/+gCkAAQApEAEAKSABACkwAQApQAEAKVABAClgAQApf/6AKh/+gCov/oAqP/6AKk/+gCpf/oAqr/3wLHABACyQAQAssAEALN/+gCz//oAtH/6ALT/+gC4f/oAuP/6ALl/+gC5//oAwn/6AML/+gDDf/oAx//4AMh/+ADI//gAzP/3wM1/98DPv/oA5cAEAOb/+gDnP/fA58AEAOo/+gDq//fA67/3wPHABADzv/oA9H/6APS/+AD6v/fA/MAEAP7/+AD/v/oBAH/6AQD/98ECQAQBAsAEAQc/+gEHv/oBCD/6AQq/+EEK//gBC8AEAQxABAEMwAQBDUAEAQ3ABAEOQAQBDsAEAQ9ABAEPwAQBEEAEARDABAERQAQBFv/6ARd/+gEX//oBGH/6ARj/+gEZf/oBGf/6ARp/+gEa//oBG3/6ARv/+gEcf/oBIH/3wSD/98Ehf/fBIj/4ASK/+EEi//gBJf/3wSqABAEsP/oBMn/6ATQ/+AE0//gBNX/4AC6AEf/3ABI/9wASf/cAEv/3ABR/+EAUv/hAFP/1gBU/+EAVf/cAFn/3QBa/+EAXf/hAJT/3ACZ/9wAm//dALv/3AC9/+EAvv/1AL//5gDB/+EAwv/rAMP/6QDF//AAxv/nAMj/3ADJ/9wAyv/jAMv/3QDM/84Azf/UAM7/2wDs/+EA8P/hAPH/4QDz/+EA9P/hAPX/4QD3/9wA+P/hAPr/4QD7/+EA/v/hAQD/4QED/9wBBf/hARj/1gEa/+EBHv/cASL/3AEr/+EBNv/hATz/4QE+/+EBQv/cAVP/4QFV/+EBV//hAVz/4QFg/9wBYf/cAWv/3AKy/9wCs//cArT/3AK1/9wCtv/cArv/4QK8/9YCvf/WAr7/1gK//9YCwP/WAsH/3QLC/90Cw//dAsT/3QLF/+ECxv/hAs7/3ALQ/9wC0v/cAtT/3ALW/9wC2P/cAtr/3ALc/9wC3v/cAuD/3ALi/9wC5P/cAub/3ALo/9wDA//hAwX/4QMH/+EDCP/hAwr/1gMM/9YDDv/WAyb/3QMo/90DKv/dAyz/3QMu/90DMP/dAzT/4QOv/9wDsf/hA7P/3QO1/9YDt//hA7r/3QO7/9YDvP/dA9X/3APW/+ED1//WA9j/4QPZ/9wD2v/hA9z/3APd/+ED4v/hA+P/4QPr/+ED8v/hA/f/3AP4/+ED/P/hA/3/3AQC/9wEBP/hBBD/3AQS/9wEE//cBBn/4QQb/+EEHf/WBB//3AQh/9YEJf/hBCf/4QQp/+EELf/hBC7/3ARI/9wESv/cBEz/3ARO/9wEUP/cBFL/3ARU/9wEVv/cBFz/1gRe/9YEYP/WBGL/1gRk/9YEZv/WBGj/1gRq/9wEbP/cBG7/3ARw/9YEcv/cBHT/3QR2/90EeP/dBHr/3QR8/90Efv/dBID/3QSC/+EEhP/hBIb/4QSN/+EEqf/hBK3/3ASx/9YEtf/dBLr/3AS8/9wExv/hBMj/4QTU/+EE1v/hAL8ABgAMAAsADABH/+gASP/oAEn/6ABKAAwAS//oAFP/6gBV/+gAWgALAF0ACwCU/+gAmf/oALv/6AC9AAsAvv/0AMT/1wDGAAsAyP/oAMn/6ADKAAwA9//oAQP/6AEY/+oBGgALAR7/6AEi/+gBQv/oAWD/6AFh/+gBa//oAYQADAGFAAwBhwAMAYgADAGJAAwB4wANAeYADQHoAA4B6f/1Aev/7AHt/+0B9f/sAfv/vwH8/+0B/f+/AgQADgIF/+0CCAAOAiAADgIh/+0CIgANAiQADgIq/+0CQf/uAkP/vwKy/+gCs//oArT/6AK1/+gCtv/oArz/6gK9/+oCvv/qAr//6gLA/+oCxQALAsYACwLO/+gC0P/oAtL/6ALU/+gC1v/oAtj/6ALa/+gC3P/oAt7/6ALg/+gC4v/oAuT/6ALm/+gC6P/oAwr/6gMM/+oDDv/qAzQACwND/78DRP+/A0X/vwNG/78DR/+/A0j/vwNJ/78DSv/tA1T/7QNV/+0DVv/tA1f/7QNY/+0DXQANA17/vwNf/78DYP+/A2H/7QNi/+0DY//tA2T/7QNr/+0DbP/tA23/7QNu/+0Dfv/tA3//7QOA/+0DhP/1A4X/9QOG//UDh//1A4kADgOSAA0DkwANA6//6AO1/+oDtwALA7v/6gPV/+gD1//qA9n/6APaAAsD3P/oA+MACwPrAAsD7AAMA+0ADAPwAAwD9//oA/wACwP9/+gEAv/oBAQACwQQ/+gEEv/oBBP/6AQd/+oEH//oBCH/6gQlAAsEJwALBCkACwQu/+gESP/oBEr/6ARM/+gETv/oBFD/6ARS/+gEVP/oBFb/6ARc/+oEXv/qBGD/6gRi/+oEZP/qBGb/6gRo/+oEav/oBGz/6ARu/+gEcP/qBHL/6ASCAAsEhAALBIYACwSt/+gEsf/qBLr/6AS8/+gE1AALBNYACwTc/78E4P/tBOEADQTj/78E7wANBPIADQT7/78FAv/tBQX/7QUGAA4FCv/tBQsADQDjAAYADQALAA0ARf/wAEf/tgBI/7YASf+2AEoADQBL/7YAU//aAFX/tgBaAAsAXQALAJT/tgCZ/7YAu/+2AL0ACwC+/80Ax/+7AMj/wADJ/7YAzP/VAO3/tQDy/74A9/+2AQP/tgEE/74BGP/aARoACwEc/+YBHv+2ASAADAEi/7YBQv+2AVH/vgFg/7YBYf+2AWMACwFlAAsBa/+2AXD/vgGEAA0BhQANAYcADQGIAA0BiQANAeMADQHmAA0B6AAOAen/9QHr/+wB7f/tAfX/7AH7/78B/P/tAf3/vwIEAA4CBf/tAggADgIgAA4CIf/tAiIADQIkAA4CKv/tAkH/7gJD/78Cq//wAqz/8AKt//ACrv/wAq//8AKw//ACsf/wArL/tgKz/7YCtP+2ArX/tgK2/7YCvP/aAr3/2gK+/9oCv//aAsD/2gLFAAsCxgALAsj/8ALK//ACzP/wAs7/tgLQ/7YC0v+2AtT/tgLW/7YC2P+2Atr/tgLc/7YC3v+2AuD/tgLi/7YC5P+2Aub/tgLo/7YDCv/aAwz/2gMO/9oDNAALA0P/vwNE/78DRf+/A0b/vwNH/78DSP+/A0n/vwNK/+0DVP/tA1X/7QNW/+0DV//tA1j/7QNdAA0DXv+/A1//vwNg/78DYf/tA2L/7QNj/+0DZP/tA2v/7QNs/+0Dbf/tA27/7QN+/+0Df//tA4D/7QOE//UDhf/1A4b/9QOH//UDiQAOA5IADQOTAA0Dr/+2A7X/2gO3AAsDu//aA9T/8APV/7YD1//aA9n/tgPaAAsD3P+2A+MACwPrAAsD7AANA+0ADQPwAA0D9P/wA/f/tgP8AAsD/f+2BAL/tgQEAAsECv/wBAz/8AQQ/7YEEv+2BBP/tgQd/9oEH/+2BCH/2gQlAAsEJwALBCkACwQu/7YEMP/wBDL/8AQ0//AENv/wBDj/8AQ6//AEPP/wBD7/8ARA//AEQv/wBET/8ARG//AESP+2BEr/tgRM/7YETv+2BFD/tgRS/7YEVP+2BFb/tgRc/9oEXv/aBGD/2gRi/9oEZP/aBGb/2gRo/9oEav+2BGz/tgRu/7YEcP/aBHL/tgSCAAsEhAALBIYACwSr//AErf+2BLH/2gS6/7YEvP+2BNQACwTWAAsE3P+/BOD/7QThAA0E4/+/BO8ADQTyAA0E+/+/BQL/7QUF/+0FBgAOBQr/7QULAA0A5wAQ/wcAEv8HACX/TgAu/w0AOAAUAEX/3gBH/+sASP/rAEn/6wBL/+sAU//rAFX/6wBW/+YAWf/qAFr/6ABd/+gAlP/rAJn/6wCb/+oAsv9OALT/TgC7/+sAvf/oAMj/6wDJ/+sAy//qANIAFADWABQA9//rAQP/6wEN/04BGP/rARr/6AEe/+sBIv/rATkAFAFC/+sBRQAUAWD/6wFh/+sBa//rAYb/BwGK/wcBjv8HAY//BwH7/8AB/f/AAkP/wAKQ/04Ckf9OApL/TgKT/04ClP9OApX/TgKW/04Cq//eAqz/3gKt/94Crv/eAq//3gKw/94Csf/eArL/6wKz/+sCtP/rArX/6wK2/+sCvP/rAr3/6wK+/+sCv//rAsD/6wLB/+oCwv/qAsP/6gLE/+oCxf/oAsb/6ALH/04CyP/eAsn/TgLK/94Cy/9OAsz/3gLO/+sC0P/rAtL/6wLU/+sC1v/rAtj/6wLa/+sC3P/rAt7/6wLg/+sC4v/rAuT/6wLm/+sC6P/rAvb/DQMK/+sDDP/rAw7/6wMfABQDIQAUAyMAFAMm/+oDKP/qAyr/6gMs/+oDLv/qAzD/6gM0/+gDQ//AA0T/wANF/8ADRv/AA0f/wANI/8ADSf/AA17/wANf/8ADYP/AA5f/TgOf/04Dr//rA7P/6gO1/+sDt//oA7r/6gO7/+sDvP/qA8P/DQPH/04D0gAUA9T/3gPV/+sD1//rA9n/6wPa/+gD3P/rA+P/6APr/+gD8/9OA/T/3gP3/+sD/P/oA/3/6wQC/+sEBP/oBAn/TgQK/94EC/9OBAz/3gQQ/+sEEv/rBBP/6wQd/+sEH//rBCH/6wQl/+gEJ//oBCn/6AQu/+sEL/9OBDD/3gQx/04EMv/eBDP/TgQ0/94ENf9OBDb/3gQ3/04EOP/eBDn/TgQ6/94EO/9OBDz/3gQ9/04EPv/eBD//TgRA/94EQf9OBEL/3gRD/04ERP/eBEX/TgRG/94ESP/rBEr/6wRM/+sETv/rBFD/6wRS/+sEVP/rBFb/6wRc/+sEXv/rBGD/6wRi/+sEZP/rBGb/6wRo/+sEav/rBGz/6wRu/+sEcP/rBHL/6wR0/+oEdv/qBHj/6gR6/+oEfP/qBH7/6gSA/+oEgv/oBIT/6ASG/+gEiAAUBKr/TgSr/94Erf/rBLH/6wS1/+oEuv/rBLz/6wTQABQE1P/oBNb/6ATc/8AE4//ABPv/wAACAKAABAAEAAAABgAGAAEACwAMAAIAEwATAAQAJQAqAAUALAAtAAsALwA2AA0AOAA4ABUAOgA/ABYARQBGABwASQBKAB4ATABMACAATwBPACEAUQBUACIAVgBWACYAWABYACcAWgBdACgAXwBfACwAigCKAC0AlgCWAC4AnQCdAC8AsQC1ADAAtwC5ADUAuwC7ADgAvQC+ADkAwADBADsAwwDFAD0AxwDOAEAA0gDSAEgA1ADeAEkA4ADvAFQA8QDxAGQA9gD4AGUA+wD8AGgA/gEAAGoBAwEFAG0BCgEKAHABDQENAHEBGAEaAHIBIgEiAHUBLgEwAHYBMwE1AHkBNwE3AHwBOQE5AH0BOwE7AH4BQwFEAH8BVAFUAIEBVgFWAIIBWAFYAIMBXAFeAIQBhAGFAIcBhwGJAIkB6AHoAIwB6gHrAI0B7QHtAI8B8AHwAJAB+wH9AJECQAJAAJQCQwJDAJUCVQJVAJYCVwJYAJcCiwKMAJkCjgKOAJsCkAKlAJwCqgKxALICswK2ALoCuwLAAL4CxQLNAMQCzwLPAM0C0QLRAM4C0wLTAM8C1QLVANAC1wLgANEC6QLrANsC7QLtAN4C7wLvAN8C8QLxAOAC8wLzAOEC+AL4AOIC+gL6AOMC/AL8AOQC/gL+AOUDAAMAAOYDAgMOAOcDEAMQAPQDEgMSAPUDFAMUAPYDHwMfAPcDIQMhAPgDIwMjAPkDMQMxAPoDMwM2APsDOAM4AP8DOgM6AQADQANJAQEDVANYAQsDXgNgARADZQNlARMDdwN6ARQDfgOAARgDiQOJARsDlwOcARwDnwOuASIDsQOxATIDtQO1ATMDtwO3ATQDuwO7ATUDvgO/ATYDwQPCATgDxAPKAToDzAPOAUED0APVAUQD1wPYAUoD2gPdAUwD4wPkAVAD5gPmAVID6APoAVMD6gPtAVQD8AP1AVgD9wP3AV4D+wP8AV8EAQQBAWEEAwQMAWIEDwQQAWwEEgQVAW4EHAQdAXIEIQQhAXQEIwQpAXUELwRXAXwEWQRZAaUEWwRoAaYEcARwAbQEgQSGAbUEiASIAbsEjASNAbwEkASQAb4EkgSTAb8ElQSVAcEElwSXAcIEqASsAcMErgSuAcgEsASxAckEswSzAcsEtwS5AcwEuwS7Ac8EvQS/AdAEwQTBAdMEwwTDAdQExQTLAdUEzQTNAdwE0ATQAd0E0wTXAd4E2QTZAeME2wTcAeQE4ATgAeYE4wTjAecE7gTuAegE+wT7AekFAgUCAeoFBgUGAesAAgCaAAYABgAAAAsACwABABAAEAACABIAEgADACUAKQAEACwANAAJADgAPgASAEUARwAZAEkASQAcAEwATAAdAFEAVAAeAFYAVgAiAFoAWgAjAFwAXgAkAIoAigAnAJYAlgAoALEAtAApAL0AvQAtAMEAwQAuAMcAxwAvANQA1QAwANcA1wAyANoA2gAzANwA3gA0AOAA5gA3AOwA7AA+AO4A7gA/APcA9wBAAPwA/ABBAP4A/wBCAQQBBQBEAQoBCgBGAQ0BDQBHARgBGgBIAS4BMABLATMBNQBOATcBNwBRATkBOQBSATsBOwBTAUMBRABUAVQBVABWAVYBVgBXAVgBWABYAVwBXgBZAYQBigBcAY4BjwBjAegB6ABlAe0B7QBmAfAB8QBnAfsB/QBpAg8CDwBsAh4CIABtAkACQABwAkMCQwBxAlUCVQByAlcCWABzAosCjAB1Ao4CjgB3ApACtgB4ArsCwACfAsUC1QClAtcC4AC2AukC6wDAAu0C7QDDAu8C7wDEAvEC8QDFAvMC8wDGAvYC9gDHAvgC+ADIAvoC+gDJAvwC/ADKAv4C/gDLAwADAADMAwIDDgDNAxADEADaAxIDEgDbAxQDFADcAx8DHwDdAyEDIQDeAyMDIwDfAyUDJQDgAycDJwDhAykDKQDiAysDKwDjAy0DLQDkAy8DLwDlAzEDMQDmAzMDOwDnA0ADSQDwA1QDWAD6A14DYAD/A2UDZQECA3YDegEDA34DgAEIA4kDiQELA5cDnAEMA58DrgESA7EDsQEiA7UDtQEjA7cDtwEkA7sDuwElA74DvwEmA8EDygEoA8wDzgEyA9AD1QE1A9cD3QE7A+MD5AFCA+YD5gFEA+gD6AFFA+oD7QFGA/AD9QFKA/cD9wFQA/sD/AFRBAEEDAFTBA8EEAFfBBIEFQFhBBwEHQFlBCEEIQFnBCMEKQFoBC8EVwFvBFkEWQGYBFsEaAGZBHAEcAGnBHMEcwGoBHUEdQGpBIEEhgGqBIgEiAGwBIwEjQGxBJAEkAGzBJIEkwG0BJUElQG2BJcElwG3BKgErAG4BK4ErgG9BLAEsQG+BLMEswHABLcEuQHBBLsEuwHEBL0EvwHFBMEEwQHIBMMEwwHJBMUEywHKBM0EzQHRBNAE0AHSBNIE1wHTBNkE3AHZBOAE4AHdBOME4wHeBOkE6QHfBO4E7gHgBPkE+QHhBPsE+wHiBQIFAgHjBQYFBgHkAAIBdAAGAAYADwALAAsADwAQABAAGgASABIAGgAlACUAAgAmACYAJAAnACcAEAAoACgAAQApACkABAAuAC4ACAAvAC8ADQAwADAAFwAzADMAAQA0ADQAJQA4ADgAEgA5ADkACAA6ADoAHAA7ADsAGAA8ADwAEQA9AD0ADAA+AD4AGQBFAEUAAwBGAEYADgBHAEcAEwBJAEkABQBMAEwACQBRAFIACQBTAFMABgBUAFQADgBWAFYAGwBaAFoABwBcAFwAFQBdAF0ABwBeAF4AHwCKAIoADgCWAJYAAQCxALEAFgCyALIAAgCzALMAAQC0ALQAAgC9AL0ABwDBAMEACQDHAMcADgDUANUAIADaANoAEQDeAN4AIQDkAOQAIADmAOYAIADsAOwAIgDuAO4AFQD3APcADgD8APwAIwD+AP4AIwD/AP8ADgEEAQUAIwEKAQoAIwENAQ0AAgEYARgABgEZARkAHAEaARoABwEuAS4ADgEvAS8AFgEwATAAIgEzATMAEQE0ATQAFQE1ATUADQE3ATcADQE5ATkADQFDAUMAEQFEAUQAFQFYAVgAAQFcAVwAIgFdAV0AEQFeAV4AFQGEAYUADwGGAYYAGgGHAYkADwGKAYoAGgGOAY8AGgHoAegAHQHtAe0ACgHwAfAAHgHxAfEAFAH7AfsACwH8AfwACgH9Af0ACwIPAg8AFAIeAiAAFAJAAkAACgJDAkMACwJVAlUAEAJXAlgAAQKLAowAAQKOAo4AEgKQApYAAgKXApcAEAKYApsABAKhAqUAAQKmAqkACAKqAqoADAKrArEAAwKyArIAEwKzArYABQK7ArsACQK8AsAABgLFAsYABwLHAscAAgLIAsgAAwLJAskAAgLKAsoAAwLLAssAAgLMAswAAwLNAs0AEALOAs4AEwLPAs8AEALQAtAAEwLRAtEAEALSAtIAEwLTAtMAEALUAtQAEwLVAtUAAQLXAtcABALYAtgABQLZAtkABALaAtoABQLbAtsABALcAtwABQLdAt0ABALeAt4ABQLfAt8ABALgAuAABQLqAuoACQL2AvYACAL4AvgADQL6AvoAFwL8AvwAFwL+Av4AFwMAAwAAFwMDAwMACQMFAwUACQMHAwgACQMJAwkAAQMKAwoABgMLAwsAAQMMAwwABgMNAw0AAQMOAw4ABgMQAxAAGwMSAxIAGwMUAxQAGwMfAx8AEgMhAyEAEgMjAyMAEgMlAyUACAMnAycACAMpAykACAMrAysACAMtAy0ACAMvAy8ACAMxAzEAGAMzAzMADAM0AzQABwM1AzUADAM2AzYAGQM3AzcAHwM4AzgAGQM5AzkAHwM6AzoAGQM7AzsAHwNAA0EACgNCA0IAHQNDA0kACwNUA1gACgNeA2AACwNlA2UACgN2A3YAFAN3A3oAHgN+A4AACgOJA4kAHQOXA5cAAgOYA5gABAObA5sAAQOcA5wADAOfA58AAgOgA6AAJAOhA6EABAOiA6IAGQOlA6UADQOoA6gAAQOpA6kAJQOqA6oAEgOrA6sADAOsA6wAEQOuA64ADAOxA7EACQO1A7UABgO3A7cABwO7A7sABgO+A74ABAO/A78AFgPDA8MACAPEA8UADQPGA8YAIQPHA8cAAgPIA8gAJAPJA8kAFgPKA8oABAPOA84AAQPQA9AAJQPRA9EAEAPSA9IAEgPTA9MAEQPUA9QAAwPVA9UABQPXA9cABgPYA9gADgPZA9kAEwPaA9oABwPbA9sAFQPcA9wABQPdA90AIgPjA+MABwPkA+QAGAPmA+YAGAPoA+gAGAPqA+oADAPrA+sABwPsA+0ADwPwA/AADwPyA/IACQPzA/MAAgP0A/QAAwP1A/UABAP3A/cABQP7A/sAHAP8A/wABwQBBAEAEAQCBAIAEwQDBAMADAQEBAQABwQGBAYAEQQHBAcAFQQJBAkAAgQKBAoAAwQLBAsAAgQMBAwAAwQPBA8ABAQQBBAABQQSBBMABQQUBBQAEQQVBBUAFQQcBBwAAQQdBB0ABgQhBCEABgQjBCMADgQkBCQAIQQlBCUABwQmBCYAIQQnBCcABwQoBCgAIQQpBCkABwQvBC8AAgQwBDAAAwQxBDEAAgQyBDIAAwQzBDMAAgQ0BDQAAwQ1BDUAAgQ2BDYAAwQ3BDcAAgQ4BDgAAwQ5BDkAAgQ6BDoAAwQ7BDsAAgQ8BDwAAwQ9BD0AAgQ+BD4AAwQ/BD8AAgRABEAAAwRBBEEAAgRCBEIAAwRDBEMAAgREBEQAAwRFBEUAAgRGBEYAAwRHBEcABARIBEgABQRJBEkABARKBEoABQRLBEsABARMBEwABQRNBE0ABAROBE4ABQRPBE8ABARQBFAABQRRBFEABARSBFIABQRTBFMABARUBFQABQRVBFUABARWBFYABQRbBFsAAQRcBFwABgRdBF0AAQReBF4ABgRfBF8AAQRgBGAABgRhBGEAAQRiBGIABgRjBGMAAQRkBGQABgRlBGUAAQRmBGYABgRnBGcAAQRoBGgABgRwBHAABgRzBHMACAR1BHUACASBBIEADASCBIIABwSDBIMADASEBIQABwSFBIUADASGBIYABwSIBIgAEgSMBIwAFgSNBI0AIgSQBJAACQSSBJIAIASTBJMAFgSVBJUADQSXBJcADASpBKkACQSqBKoAAgSrBKsAAwSsBKwABASwBLAAAQSxBLEABgSzBLMAGwS3BLcAJAS4BLgADgS5BLkAAQS7BLsAAQS+BL4ACQS/BL8ADQTBBMEADQTDBMMAFwTGBMYACQTIBMgACQTJBMkAAQTKBMoAJQTLBMsADgTNBM0AGwTQBNAAEgTSBNIACATTBNMAHATUBNQABwTVBNUAHATWBNYABwTXBNcAGATZBNkAGQTaBNoAHwTbBNsAAQTcBNwACwTgBOAACgTjBOMACwTpBOkAFATuBO4AHQT5BPkAFAT7BPsACwUCBQIACgUGBQYAHQABAAYFBgAPAAAAAAAAAAAADwAAAAAAAAAAABgAGwAYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQAAAACAAAAAAAAAAIAAAAAACMAAAAAAAAAAAACAAAAAgAAABQADQALABoAFgAQAAwAFwAAAAAAAAAAAAAAAAAGAAAAAQABAAEAAAABAAAAAAAAAAAAAAADAAMABwADAAEAAAARAAAACAAJAAAAEwAJAB0AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAAEAAAAAAAAAAgABAAAACAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQAAgAEAAAAAAAAAAAAAAAAAAEAAAAJAAAAAAAAAAMAAAAAAAAAAAAAAAAAAQABAAAACAAAAAAAAAAAAAAAAAANAAIAHgAAAA0AAAAAAAAAEAAAAAAAHgAfAAAAAAAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwAAABMAAAADAAMAIQADAAMAAwAAAAEAAwAiAAMAAwAAAAAAAwAAAAMAAAAAAAEAIQADAAAAAAACAAAAAAAAAAAABAAAAAAAAAAAAAAAAAAAAAAAAAACAAcAGgAJAAIAAAACAAEAAgAAAAIAAQAAAAAAAAAAAAAAAAAAAAAAAwAAAAAAAAAAAAAAAAAAABAAEwAAAAMAAAAAAA0AAAAAAAMAAAADAAAAAAACAAEAEAATAA0AAAAgACIAAAAAAAAAAAAAAAAAAAAeACEAAAADAAAAAwAAAAMAAAAAAAAAAAADABAAEwAAAAEAAQAAAAAAAAAAAB4AAAAAAAAAAgABAAAAAAAAAB4AIQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABsAGwAAAA8ADwAYAA8ADwAPABgAAAAAAAAAGAAYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAARAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAASABkAJAAAAA4AFQAcAAAABQAAAAUAAAAAAAAAAAAAAAAAAAAFAAAAAAAAAAAAAAAKAAUACgAAAAAAAAAAAAAAAAAVAAUAAAAAABUAAAAAAAAAGQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABkAAAAAABUABQASABkAFQAAAAAAAAAAAAAABQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAUAAAAKAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAAIAAAACAAIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGwAAAAAAAAAAAAAABAAEAAQABAAEAAQABAACAAAAAAAAAAAAAAAAAAAAAAAAAAIAAgACAAIAAgALAAsACwALAAwABgAGAAYABgAGAAYABgABAAEAAQABAAEAAAAAAAAAAAADAAcABwAHAAcABwAIAAgACAAIAAkACQAEAAYABAAGAAQABgACAAEAAgABAAIAAQACAAEAAAABAAAAAQAAAAEAAAABAAAAAQAAAAEAAgABAAIAAQACAAEAAgABAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAAAAAwAAAAMAAwACAAcAAgAHAAIABwAAAAAAAAAAAAAAAAAUABEAFAARABQAEQAUABEAFAARAA0AAAANAAAADQAAAAsACAALAAgACwAIAAsACAALAAgACwAIABYAAAAMAAkADAAXAB0AFwAdABcAHQAAAAAAAgAAAAAAAAAAAAoACgAKAAoACgAKAAoABQAAAAAAAAAAAAAAAAAAAAAAAAAFAAUABQAFAAUADgAOAA4ADgASAAoACgAKAAUABQAFAAUAAAAAAAAAAAAAAAAABQAFAAUABQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFAAUABQAAAAAAAAAcABwAHAAcAAAAFQAAAA4ADgAOAA4ADgAOACQAEgASAAAAAAAAAAQAAAAAAAAAAgAMAAAAAAAEAAAAAAAXAAAAAAAAAAAAAAACAAAAAAAMABAAAAAMAAEAAAADAAAACAAAAAcAAAAJAAAAAAAIAAcACAAAAAAAAAAAAAAAAAAjAAAAAAAfAAQAAAAAAAAAAAAAAAAAAgAAAAAAAgANABAABgABAAMABwADAAEACQATAAEAAwARAAAAAAAAAAMACQAWAAAAFgAAABYAAAAMAAkADwAPAAAAAAAPAAAAAwAEAAYAAAAAAAEAAwAAAAAAGgAJAAEAAgAAAAAAAgABAAwACQAAABAAEwAAAAQABgAEAAYAAAAAAAAAAQAAAAEAAQAQABMAAAAAAAAAAwAAAAMAAgAHAAIAAQACAAcAAAAAAB8ACQAfAAkAHwAJACAAIgAAAAMAAQAEAAYABAAGAAQABgAEAAYABAAGAAQABgAEAAYABAAGAAQABgAEAAYABAAGAAQABgAAAAEAAAABAAAAAQAAAAEAAAABAAAAAQAAAAEAAAABAAAAAAAAAAAAAgAHAAIABwACAAcAAgAHAAIABwACAAcAAgAHAAIAAQACAAEAAgABAAIABwACAAEACwAIAAsACAAAAAgAAAAIAAAACAAAAAgAAAAIAAwACQAMAAkADAAJAAAADQAAACAAIgAAAAMAAAAAAAAAAAAAAAAAAAAAAAAADAAAAAAAAAAAAAAAGwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwAEAAYAAAABAAAAAAACAAcAAAAAAAAACAAAAAAAAAAAAAEAAAABAAAAAAAAAAAAAAAAAAAAAAAAAAMAAAADAAIAAAAAAAAAAAAUABEADQAAAAsAGgAJABoACQAWAAAAFwAdAAAACgAAAAAAAAAFABIAAAAKAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAASABkAAAASAAAAAAAAAAAAAAAAAAAAAAAKAAAAAAAAAAAAAAAAAAUAAAAAAAUAFQAZAAAAAAAFABIAAQAAAAoAZAAkAARERkxUAP5jeXJsAP5ncmVrAP5sYXRuAQIAHwEWAR4BJgEuATYBPgE+AUYBTgFWAV4BZgFuAXYBfgGGAY4BlgGeAaYBrgG2Ab4BxgHOAdYB3gHWAd4B5gHuABtjMnNjAbZjY21wAkBkbGlnAbxkbm9tAcJmcmFjAlBsaWdhAchsaWdhAlpsaWdhAkhsbnVtAc5sb2NsAdRsb2NsAdpsb2NsAeBsb2NsAeZudW1yAexvbnVtAfJwbnVtAfhzbWNwAf5zczAxAgRzczAyAgpzczAzAhBzczA0AhZzczA1AhxzczA2AiJzczA3AihzdWJzAi5zdXBzAjR0bnVtAjoBwgAAA8YAB0FaRSAD9kNSVCAD9kZSQSAEJk1PTCAEWE5BViAEilJPTSAEvFRSSyAD9gABAAAAAQcOAAEAAAABBSoABgAAAAECSgABAAAAAQIMAAQAAAABBKAAAQAAAAEBlgABAAAAAQIGAAEAAAABAYwABAAAAAEBqAAEAAAAAQGoAAQAAAABAbwAAQAAAAEBcgABAAAAAQFwAAEAAAABAW4AAQAAAAEBiAABAAAAAQGKAAEAAAABAkIAAQAAAAEBkAABAAAAAQJQAAEAAAABAnYAAQAAAAECnAABAAAAAQLCAAEAAAABASwABgAAAAEBkAABAAAAAQG0AAEAAAABAcYAAQAAAAEB2AABAAAAAQEKAAAAAQAAAAAAAQALAAAAAQAbAAAAAQAKAAAAAQAWAAAAAQAIAAAAAQAFAAAAAQAHAAAAAQAGAAAAAQAcAAAAAQATAAAAAQAUAAAAAQABAAAAAQAMAAAAAQANAAAAAQAOAAAAAQAPAAAAAQAQAAAAAQARAAAAAQASAAAAAQAeAAAAAQAdAAAAAQAVAAAAAgACAAQAAAACAAkACgAAAAMAFwAYABoAAAAEAAkACgAJAAoAAP//ABQAAAABAAIAAwAEAAgADQAOAA8AEAARABIAEwAUABUAFgAXABgAGQAaAAEHaAACAAEHRAABAAEHRAHuAAEHRAF/AAEHRAIFAAEHRAGBAAEHZAGJAAEOOgABB0YAAQ4yAAEHRAACB1gAAgI8Aj0AAgdOAAICPgI/AAEOLgADBy4HMgc2AAIHQAADAn4CfwJ/AAIHVgAGAnECbwJyAnMCcAUeAAIHNAAGBRgFGQUaBRsFHAUdAAMAAQdCAAEG/gAAAAEAAAAZAAIHIAcIB4IHRgAHAAAHDAcMBwwHDAcMBwwAAgbSAAoB1wHWAdUCLwIwAjECMgIzAjQCNQACBrgACgJOAHoAcwB0Ak8CUAJRAlICUwJUAAIGngAKAZUAegBzAHQBlgGXAZgBmQGaAZsAAgbuAAwCVQJXAlYCWAJZAncCeAJ5AnoCewJ8An0AAgckABQCagJuAmgCZQJnAmYCawJpAm0CbAJfAloCWwJcAl0CXgAaABwCYwJ1AAIGvgAUBKUCgQSeBJ8EoAShBKICdgSjBKQCXAJeAl0CWwJfAnUAGgJjABwCWgACBwwAFAJrAm0CbgJoAmUCZwJmAmkCbAJqABsAFQAWABcAGAAZABoAHAAdABQAAga2ABQEogSjAoEEngSfBKAEoQJ2BKQAFwAZABgAFgAbABQAGgAdABwAFQSlAAD//wAVAAAAAQACAAMABAAHAAgADQAOAA8AEAARABIAEwAUABUAFgAXABgAGQAaAAD//wAVAAAAAQACAAMABAAFAAgADQAOAA8AEAARABIAEwAUABUAFgAXABgAGQAaAAD//wAWAAAAAQACAAMABAAGAAgACQANAA4ADwAQABEAEgATABQAFQAWABcAGAAZABoAAP//ABYAAAABAAIAAwAEAAYACAAKAA0ADgAPABAAEQASABMAFAAVABYAFwAYABkAGgAA//8AFgAAAAEAAgADAAQABgAIAAsADQAOAA8AEAARABIAEwAUABUAFgAXABgAGQAaAAD//wAWAAAAAQACAAMABAAGAAgADAANAA4ADwAQABEAEgATABQAFQAWABcAGAAZABoAAQ+SADYG8gW0BbgF8AcABfYFvAcOBjIGOgX8BoYHVAXABnIGQgYCB2QGCAZKBpIGDgccBcQFyAYUByoFzAXQBdQGUgZaBhoGngc4BdgGfAZiBiAHRgYmBmoGqgYsBdwF4AXkBegGtgbCBs4G2gbmBewAAgcCAOsCggJDAkICQQJAAjgB9gH1AfQB8wHyAfEB8AHvAe4B7QHsAesB6gHpAegB5wHmAeUB5AHjAeICdAKEA0EChgKFA0AB8wKDAogCYgTjBOQB+gH7BOUE5gTnAfwE6AH9Af4B/wTtAgACAATuBO8CAQICAgMCCgT8BP0CCwIMAg0CDgIPAhAFAAUBBQMFBgUPAhICEwIUAhUCFgIXAhgCGQIaAhsCBAIFAgYCBwIIAgkCSwIdAh4CHwIgBQkCIQIjAiQCJQInAikChwNCA0MDRANFA0YDRwNIA0kDSgNLA0wDTQNOA08DUANRA1IDUwNUA1UDVgNXA1gDWQNaA1sDXANdA5MDXgNfA2ADYQNiA2MDZANlA2YDZwNoA2kDagNrA2wDbQNuA28DcANxA3IDcwUQA3UDdgN3A3gDeQN6A3sDfAN9A34DfwOAA4EDggODA4QDhQOGBRMDhwOIA4oDiQOLA4wDjQOOA48DkAORA5IDlAOVA5YFEQUSBNwE3QTeBN8E6QTsBOoE6wTwBPEE8gTgBOEE4gT7BP4E/wUCBQQFBQIRBQcE8wT0BPUE9gT3BPgE+QT6BRQFFQUWBRcFCAUKBQsCKAUNAioFDgUMAiYCHAIiBRwFHQACBwAA+gH3AoIB4QHgAd8B3gHdAdwB2wHaAdkB2AJDAkICQQJAAjgB9gH1AfQB8wHyAfEB8AHvAe4B7QHsAesB6gHpAegB5wHmAeUB5AHjAeIB+AH5AoQChgKFAocCgwKIAmIB+gH7AfwB/QH+Af8CAAIBAgICAwIEAgUCBgIHAggCCQIKAgsCDAINAg4CEAIRBQ8CEgITAhQCFQIWAhcCGAIZAhoCGwJLAh0CHgIfAiAFCQIhAiMCJAIlAiYCJwIoAikCKwIsAi4CLQNAA0EDQgNDA0QDRQNGA0cDSANJA0oDSwNMA00DTgNPA1ADUQNSA1MDVANVA1YDVwNYA1kDWgNbA1wDXQNeA18DYANhA2IDYwNkA2UDZgNnA2gDaQNqA2sDbANtA24DbwNwA3EDcgNzA3QFEAN1A3YDdwN4A3kDegN7A3wDfQN+A38DgAOBA4IDgwOEA4UDhgUTA4cDiAOKA4kDiwOMA40DjgOPA5ADkQOSA5MDlAOVA5YFEQUSBNwE3QTeBN8E4AThBOIE4wTkBOUE5gTnBOgE6QTqBOsE7ATtBO4E7wTwBPEE8gTzBPQE9QT2BPcE+AIPBPkE+gT7BPwE/QT+BP8FAAUBBQIFAwUEBQUFBgUHBRQFFQUWBRcFCAUKBQsFDQIqBQ4FDAIcAiIFHAUdAAEAAQF7AAEAAQBLAAEAAQC7AAEAAQA2AAEAAQATAAEAAgMZAxoAAgbkBtgAAgbmBtgAAQbuAAEG8AABBvIAAgABABQAHQAAAAEAAgAvAE8AAQADAEkASwJ6AAIAAAABBt4AAQAGAssCzALdAt4DYANpAAEABgBNAE4C8gPfA+EEWgACAAMBlAGUAAAB1QHXAAECLwI1AAQAAgACAKgArAABASQBJwABAAEADAAnACgAKwAzADUARgBHAEgASwBTAFQAVQACAAIAFAAdAAACZQJuAAoAAgAGAE0ATQAGAE4ATgAEAvIC8gAFA98D3wADA+ED4QACBFoEWgABAAIABAAUAB0AAAJ2AnYACgKBAoEACwSeBKUADAACAAYAGgAaAAAAHAAcAAECWgJfAAICYwJjAAgCZQJuAAkCdQJ1ABMAAQAUABoAHAJaAlsCXAJdAl4CXwJjAnUCdgKBBJ4EnwSgBKEEogSjBKQEpQABBd4AAQXgAAEF4gABBeQAAQXmAAEF6AABBeoAAQXsAAEF7gABBfAAAQXyAAEF9AABBfYAAQX4AAEF+gACBfwGAgACBgIGCAACBggGDgACBg4GFAACBhQGGgACBhoGIAACBiAGJgACBiYGLAACBiwGMgACBjIGOAACBjgGPgADBj4GRAZKAAMGSAZOBlQAAwZSBlgGXgADBlwGYgZoAAMGZgZsBnIAAwZwBnYGfAADBnoGgAaGAAMGhAaKBpAABAaOBpQGmgagAAQGnAaiBqgGrgAFBqoGsAa2BrwGwgAFBrwGwgbIBs4G1AAFBs4G1AbaBuAG5gAFBuAG5gbsBvIG+AAFBvIG+Ab+BwQHCgAFBwQHCgcQBxYHHAAFBxYHHAciBygHLgAFBygHLgc0BzoHQAAFBzoHQAdGB0wHUgAGB0wHUgdYB14HZAdqAAYHYgdoB24HdAd6B4AABgd4B34HhAeKB5AHlgAGB44HlAeaB6AHpgesAAYHpAeqB7AHtge8B8IABge6B8AHxgfMB9IH2AAGB9AH1gfcB+IH6AfuAAcILgfmB+wH8gf4B/4IBAAHCCYH+ggACAYIDAgSCBgAAQDrAAoARQBGAEcASABJAEoASwBMAE0ATgBPAFAAUQBSAFMAVABVAFYAVwBYAFkAWgBbAFwAXQBeAIUAhgCHAIkAigCLAI0AkACSAJQAuwC8AL0AvgC/AMAAwQDCAMMAxADFAMYAxwDIAMkAygDLAMwAzQDOAOoA6wDsAO0A7gDvAPAA8QDyAPMA9AD1APYA9wD4APkA+gD7APwA/QD+AP8BAAEBAQIBAwEEAQUBBgEHATABNAE2ATgBOgE8AUIBRAFGAUoBTQFaAo0CjwKrAqwCrQKuAq8CsAKxArICswK0ArUCtgK3ArgCuQK6ArsCvAK9Ar4CvwLAAsECwgLDAsQCxQLGAsgCygLMAs4C0ALSAtQC1gLYAtoC3ALeAuAC4gLkAuYC6ALqAuwC7gLwAvIC9QL3AvkC+wL9Av8DAQMDAwUDBwMKAwwDDgMQAxIDFAMWAxgDGgMcAx4DIAMiAyQDJgMoAyoDLAMuAzADMgM0AzcDOQM7Az0DPwOvA7ADsQOyA7QDtQO2A7cDuAO5A7oDuwO8A70D1APVA9YD1wPYA9kD2gPbA9wD3QPeA98D4APhA+ID4wPlA+cD6QPrBAAEAgQEBBIEGQQfBCUEjwSQBJQEmAUZBRsAAQD6AAgACgAUABUAFgAXABgAGQAaABsAHAAdACUAJgAnACgAKQAqACsALAAtAC4ALwAwADEAMgAzADQANQA2ADcAOAA5ADoAOwA8AD0APgBlAGcAgQCDAIQAjACPAJEAkwCxALIAswC0ALUAtgC3ALgAuQC6ANIA0wDUANUA1gDXANgA2QDaANsA3ADdAN4A3wDgAOEA4gDjAOQA5QDmAOcA6ADpAS8BMwE1ATcBOQE7AUEBQwFFAUkBSwFMAVgBWQGnAa0BsgG1AosCjAKOApACkQKSApMClAKVApYClwKYApkCmgKbApwCnQKeAp8CoAKhAqICowKkAqUCpgKnAqgCqQKqAscCyQLLAs0CzwLRAtMC1QLXAtkC2wLdAt8C4QLjAuUC5wLpAusC7QLvAvEC8wL0AvYC+AL6AvwC/gMAAwIDBAMGAwkDCwMNAw8DEQMTAxUDFwMZAxsDHQMfAyEDIwMlAycDKQMrAy0DLwMxAzMDNQM2AzgDOgM8Az4DlwOYA5kDmgObA5wDnQOfA6ADoQOiA6MDpAOlA6YDpwOoA6kDqgOrA6wDrQOuA74DvwPAA8EDwgPDA8QDxQPGA8cDyAPJA8oDywPMA80DzgPPA9AD0QPSA9MD5APmA+gD6gP/BAEEAwQYBB4EJASOBJMElwUYBRoBzAACAE0BzQACAFABzgADAEoATQHPAAMASgBQAAEAAQBKAcsAAgBKAdEAAgBYAdAAAgBYAAEAAwBKAFcAlQAAAAEAAQABAAEAAAADBLcAAgCtAs0AAgCpBL0AAgCtBMoAAgCpBLgAAgCtAs4AAgCpBKcAAgCpBL4AAgCtBFoAAgCtBMsAAgCpAzwAAgCpAz4AAgCpAz0AAgCpAz8AAgCpBLYAAgCpBLsAAgHKBLkAAgCtBKYAAgCpAucAAgHKA/EAAgCpBMUAAgCtAx8AAgHKBNAAAgCtBNUAAgCtBNMAAgCqAzYAAgCpBNkAAgCtBLwAAgHKBLoAAgCtA/IAAgCpBMYAAgCtAyAAAgHKBNEAAgCtBNYAAgCtBNQAAgCqAzcAAgCpBNoAAgCtBL8AAgCpAvgAAgHKBMEAAgCtAvoAAgCpAvwAAgHKBMMAAgCtAxUAAgCpAxsAAgHKBM4AAgCtA+YAAgCpBNcAAgCtA+QAAgCoBMAAAgCpAvkAAgHKBMIAAgCtAvsAAgCpAv0AAgHKBMQAAgCtAxYAAgCpAxwAAgHKBM8AAgCtA+cAAgCpBNgAAgCtA+UAAgCoAw8AAgCpAxEAAgHKBMwAAgCtBLIAAgCsAxAAAgCpAxIAAgHKBM0AAgCtBLMAAgCsAwIAAgCpAwQAAgHKBMcAAgCtBKgAAgCoAqAAAgCqAqoAAgCpBIEAAgCtA+oAAgCoBIMAAgCrBIUAAgCqAwMAAgCpAwUAAgHKBMgAAgCtBKkAAgCoArsAAgCqAsUAAgCpBIIAAgCtA+sAAgCoBIQAAgCrBIYAAgCqArgAAgCpArcAAgCoBFgAAgCrAuwAAgCqBK8AAgCsBGkAAgCpBHEAAgCtBGsAAgCoBG0AAgCrBG8AAgCqBGoAAgCpBHIAAgCtBGwAAgCoBG4AAgCrBHAAAgCqBHcAAgCpBH8AAgCtBHkAAgCoBHsAAgCrBH0AAgCqBHgAAgCpBIAAAgCtBHoAAgCoBHwAAgCrBH4AAgCqApEAAgCpBC8AAgCtApAAAgCoBDEAAgCrApMAAgCqBKoAAgCsApkAAgCpBEcAAgCtApgAAgCoBEkAAgCrBEsAAgCqBKwAAgCsAp0AAgCpBFkAAgCtApwAAgCoBFcAAgCrAusAAgCqBK4AAgCsAqwAAgCpBDAAAgCtAqsAAgCoBDIAAgCrAq4AAgCqBKsAAgCsArQAAgCpBEgAAgCtArMAAgCoBEoAAgCrBEwAAgCqBK0AAgCsAr0AAgCpBFwAAgCtArwAAgCoBF4AAgCrAr8AAgCqBLEAAgCsAsIAAgCpBHQAAgCtAsEAAgCoBHYAAgCrAyYAAgCqBLUAAgCsAqIAAgCpBFsAAgCtAqEAAgCoBF0AAgCrAqQAAgCqBLAAAgCsAqcAAgCpBHMAAgCtAqYAAgCoBHUAAgCrAyUAAgCqBLQAAgCsBMkAAwCqAKkE0gADAKoAqQACABEAJQApAAAAKwAtAAUALwA0AAgANgA7AA4APQA+ABQARQBJABYASwBNABsATwBUAB4AVgBbACQAXQBeACoAgQCBACwAgwCDAC0AhgCGAC4AiQCJAC8AjQCNADAAmACbADEA0ADQADUAAA==",
+  "Roboto-Regular.ttf": "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"
+};
+
+/*! DataTables 2.0.8
+ * © SpryMedia Ltd - datatables.net/license
+ */
+!function(n){"use strict";var a;"function"==typeof define&&define.amd?define(["jquery"],function(t){return n(t,window,document)}):"object"==typeof exports?(a=require("jquery"),"undefined"==typeof window?module.exports=function(t,e){return t=t||window,e=e||a(t),n(e,t,t.document)}:module.exports=n(a,window,window.document)):window.DataTable=n(jQuery,window,document)}(function(V,q,_){"use strict";function g(t){var e=parseInt(t,10);return!isNaN(e)&&isFinite(t)?e:null}function o(t,e,n){var a=typeof t,r="string"==a;return"number"==a||"bigint"==a||!!y(t)||(e&&r&&(t=R(t,e)),n&&r&&(t=t.replace(P,"")),!isNaN(parseFloat(t))&&isFinite(t))}function l(t,e,n){var a;return!!y(t)||("string"!=typeof t||!t.match(/<(input|select)/i))&&(y(a=t)||"string"==typeof a)&&!!o(I(t),e,n)||null}function v(t,e,n,a){var r=[],o=0,i=e.length;if(void 0!==a)for(;o<i;o++)t[e[o]][n]&&r.push(t[e[o]][n][a]);else for(;o<i;o++)t[e[o]]&&r.push(t[e[o]][n]);return r}function h(t,e){var n,a=[];void 0===e?(e=0,n=t):(n=e,e=t);for(var r=e;r<n;r++)a.push(r);return a}function b(t){for(var e=[],n=0,a=t.length;n<a;n++)t[n]&&e.push(t[n]);return e}var C,U,e,t,$=function(t,H){var W,X,B;return $.factory(t,H)?$:this instanceof $?V(t).DataTable(H):(X=void 0===(H=t),B=(W=this).length,X&&(H={}),this.api=function(){return new U(this)},this.each(function(){var n=1<B?Zt({},H,!0):H,a=0,t=this.getAttribute("id"),r=!1,e=$.defaults,o=V(this);if("table"!=this.nodeName.toLowerCase())Z(null,0,"Non-table node initialisation ("+this.nodeName+")",2);else{V(this).trigger("options.dt",n),nt(e),at(e.column),z(e,e,!0),z(e.column,e.column,!0),z(e,V.extend(n,o.data()),!0);for(var i=$.settings,a=0,l=i.length;a<l;a++){var s=i[a];if(s.nTable==this||s.nTHead&&s.nTHead.parentNode==this||s.nTFoot&&s.nTFoot.parentNode==this){var E=(void 0!==n.bRetrieve?n:e).bRetrieve,k=(void 0!==n.bDestroy?n:e).bDestroy;if(X||E)return s.oInstance;if(k){new $.Api(s).destroy();break}return void Z(s,0,"Cannot reinitialise DataTable",3)}if(s.sTableId==this.id){i.splice(a,1);break}}null!==t&&""!==t||(t="DataTables_Table_"+$.ext._unique++,this.id=t);var u=V.extend(!0,{},$.models.oSettings,{sDestroyWidth:o[0].style.width,sInstance:t,sTableId:t,colgroup:V("<colgroup>").prependTo(this),fastData:function(t,e,n){return G(u,t,e,n)}}),t=(u.nTable=this,u.oInit=n,i.push(u),u.api=new U(u),u.oInstance=1===W.length?W:o.dataTable(),nt(n),n.aLengthMenu&&!n.iDisplayLength&&(n.iDisplayLength=Array.isArray(n.aLengthMenu[0])?n.aLengthMenu[0][0]:V.isPlainObject(n.aLengthMenu[0])?n.aLengthMenu[0].value:n.aLengthMenu[0]),n=Zt(V.extend(!0,{},e),n),Q(u.oFeatures,n,["bPaginate","bLengthChange","bFilter","bSort","bSortMulti","bInfo","bProcessing","bAutoWidth","bSortClasses","bServerSide","bDeferRender"]),Q(u,n,["ajax","fnFormatNumber","sServerMethod","aaSorting","aaSortingFixed","aLengthMenu","sPaginationType","iStateDuration","bSortCellsTop","iTabIndex","sDom","fnStateLoadCallback","fnStateSaveCallback","renderer","searchDelay","rowId","caption","layout",["iCookieDuration","iStateDuration"],["oSearch","oPreviousSearch"],["aoSearchCols","aoPreSearchCols"],["iDisplayLength","_iDisplayLength"]]),Q(u.oScroll,n,[["sScrollX","sX"],["sScrollXInner","sXInner"],["sScrollY","sY"],["bScrollCollapse","bCollapse"]]),Q(u.oLanguage,n,"fnInfoCallback"),K(u,"aoDrawCallback",n.fnDrawCallback),K(u,"aoStateSaveParams",n.fnStateSaveParams),K(u,"aoStateLoadParams",n.fnStateLoadParams),K(u,"aoStateLoaded",n.fnStateLoaded),K(u,"aoRowCallback",n.fnRowCallback),K(u,"aoRowCreatedCallback",n.fnCreatedRow),K(u,"aoHeaderCallback",n.fnHeaderCallback),K(u,"aoFooterCallback",n.fnFooterCallback),K(u,"aoInitComplete",n.fnInitComplete),K(u,"aoPreDrawCallback",n.fnPreDrawCallback),u.rowIdFn=J(n.rowId),u),c=($.__browser||(P={},$.__browser=P,j=V("<div/>").css({position:"fixed",top:0,left:-1*q.pageXOffset,height:1,width:1,overflow:"hidden"}).append(V("<div/>").css({position:"absolute",top:1,left:1,width:100,overflow:"scroll"}).append(V("<div/>").css({width:"100%",height:10}))).appendTo("body"),p=j.children(),O=p.children(),P.barWidth=p[0].offsetWidth-p[0].clientWidth,P.bScrollbarLeft=1!==Math.round(O.offset().left),j.remove()),V.extend(t.oBrowser,$.__browser),t.oScroll.iBarWidth=$.__browser.barWidth,u.oClasses),d=(V.extend(c,$.ext.classes,n.oClasses),o.addClass(c.table),u.oFeatures.bPaginate||(n.iDisplayStart=0),void 0===u.iInitDisplayStart&&(u.iInitDisplayStart=n.iDisplayStart,u._iDisplayStart=n.iDisplayStart),u.oLanguage),f=(V.extend(!0,d,n.oLanguage),d.sUrl?(V.ajax({dataType:"json",url:d.sUrl,success:function(t){z(e.oLanguage,t),V.extend(!0,d,t,u.oInit.oLanguage),tt(u,null,"i18n",[u],!0),Et(u)},error:function(){Z(u,0,"i18n file loading error",21),Et(u)}}),r=!0):tt(u,null,"i18n",[u]),[]),h=this.getElementsByTagName("thead"),p=It(u,h[0]);if(n.aoColumns)f=n.aoColumns;else if(p.length)for(l=p[a=0].length;a<l;a++)f.push(null);for(a=0,l=f.length;a<l;a++)rt(u);var g,m,v,b,y,D,x,S=u,T=n.aoColumnDefs,w=f,M=p,_=function(t,e){ot(u,t,e)},C=S.aoColumns;if(w)for(g=0,m=w.length;g<m;g++)w[g]&&w[g].name&&(C[g].sName=w[g].name);if(T)for(g=T.length-1;0<=g;g--){var I=void 0!==(x=T[g]).target?x.target:void 0!==x.targets?x.targets:x.aTargets;for(Array.isArray(I)||(I=[I]),v=0,b=I.length;v<b;v++){var A=I[v];if("number"==typeof A&&0<=A){for(;C.length<=A;)rt(S);_(A,x)}else if("number"==typeof A&&A<0)_(C.length+A,x);else if("string"==typeof A)for(y=0,D=C.length;y<D;y++)"_all"===A?_(y,x):-1!==A.indexOf(":name")?C[y].sName===A.replace(":name","")&&_(y,x):M.forEach(function(t){t[y]&&(t=V(t[y].cell),A.match(/^[a-z][\w-]*$/i)&&(A="."+A),t.is(A))&&_(y,x)})}}if(w)for(g=0,m=w.length;g<m;g++)_(g,w[g]);var L,F,N,j,P=o.children("tbody").find("tr").eq(0),R=(P.length&&(L=function(t,e){return null!==t.getAttribute("data-"+e)?e:null},V(P[0]).children("th, td").each(function(t,e){var n,a=u.aoColumns[t];a||Z(u,0,"Incorrect column count",18),a.mData===t&&(n=L(e,"sort")||L(e,"order"),e=L(e,"filter")||L(e,"search"),null===n&&null===e||(a.mData={_:t+".display",sort:null!==n?t+".@data-"+n:void 0,type:null!==n?t+".@data-"+n:void 0,filter:null!==e?t+".@data-"+e:void 0},a._isArrayHost=!0,ot(u,t)))})),u.oFeatures),O=function(){if(void 0===n.aaSorting){var t=u.aaSorting;for(a=0,l=t.length;a<l;a++)t[a][1]=u.aoColumns[a].asSorting[0]}Yt(u),K(u,"aoDrawCallback",function(){(u.bSorted||"ssp"===et(u)||R.bDeferRender)&&Yt(u)});var e=o.children("caption"),e=(u.caption&&(e=0===e.length?V("<caption/>").appendTo(o):e).html(u.caption),e.length&&(e[0]._captionSide=e.css("caption-side"),u.captionNode=e[0]),0===h.length&&(h=V("<thead/>").appendTo(o)),u.nTHead=h[0],V("tr",h).addClass(c.thead.row),o.children("tbody")),e=(0===e.length&&(e=V("<tbody/>").insertAfter(h)),u.nTBody=e[0],o.children("tfoot"));if(0===e.length&&(e=V("<tfoot/>").appendTo(o)),u.nTFoot=e[0],V("tr",e).addClass(c.tfoot.row),n.aaData)for(a=0;a<n.aaData.length;a++)Y(u,n.aaData[a]);else"dom"==et(u)&&ut(u,V(u.nTBody).children("tr"));u.aiDisplay=u.aiDisplayMaster.slice(),!(u.bInitialised=!0)===r&&Et(u)};K(u,"aoDrawCallback",Gt),n.bStateSave?(R.bStateSave=!0,N=O,(F=u).oFeatures.bStateSave?void 0!==(j=F.fnStateLoadCallback.call(F.oInstance,F,function(t){Jt(F,t,N)}))&&Jt(F,j,N):N()):O()}}),W=null,this)},c=($.ext=C={buttons:{},classes:{},builder:"dt/jszip-3.10.1/pdfmake-0.2.7/dt-2.0.8/af-2.7.0/b-3.0.2/b-colvis-3.0.2/b-html5-3.0.2/b-print-3.0.2/cr-2.0.3/date-1.5.2/fc-5.0.1/fh-4.0.1/kt-2.12.1/r-3.0.2/rg-1.5.0/rr-1.5.0/sc-2.4.3/sb-1.7.1/sp-2.3.1/sl-2.0.3/sr-1.4.1",errMode:"alert",feature:[],features:{},search:[],selector:{cell:[],column:[],row:[]},legacy:{ajax:null},pager:{},renderer:{pageButton:{},header:{}},order:{},type:{className:{},detect:[],render:{},search:{},order:{}},_unique:0,fnVersionCheck:$.fnVersionCheck,iApiIndex:0,sVersion:$.version},V.extend(C,{afnFiltering:C.search,aTypes:C.type.detect,ofnSearch:C.type.search,oSort:C.type.order,afnSortData:C.order,aoFeatures:C.feature,oStdClasses:C.classes,oPagination:C.pager}),V.extend($.ext.classes,{container:"dt-container",empty:{row:"dt-empty"},info:{container:"dt-info"},length:{container:"dt-length",select:"dt-input"},order:{canAsc:"dt-orderable-asc",canDesc:"dt-orderable-desc",isAsc:"dt-ordering-asc",isDesc:"dt-ordering-desc",none:"dt-orderable-none",position:"sorting_"},processing:{container:"dt-processing"},scrolling:{body:"dt-scroll-body",container:"dt-scroll",footer:{self:"dt-scroll-foot",inner:"dt-scroll-footInner"},header:{self:"dt-scroll-head",inner:"dt-scroll-headInner"}},search:{container:"dt-search",input:"dt-input"},table:"dataTable",tbody:{cell:"",row:""},thead:{cell:"",row:""},tfoot:{cell:"",row:""},paging:{active:"current",button:"dt-paging-button",container:"dt-paging",disabled:"disabled"}}),{}),d=/[\r\n\u2028]/g,L=/<([^>]*>)/g,F=Math.pow(2,28),N=/^\d{2,4}[./-]\d{1,2}[./-]\d{1,2}([T ]{1}\d{1,2}[:.]\d{2}([.:]\d{2})?)?$/,j=new RegExp("(\\"+["/",".","*","+","?","|","(",")","[","]","{","}","\\","$","^","-"].join("|\\")+")","g"),P=/['\u00A0,$£€¥%\u2009\u202F\u20BD\u20a9\u20BArfkɃΞ]/gi,y=function(t){return!t||!0===t||"-"===t},R=function(t,e){return c[e]||(c[e]=new RegExp(Pt(e),"g")),"string"==typeof t&&"."!==e?t.replace(/\./g,"").replace(c[e],"."):t},f=function(t,e,n){var a=[],r=0,o=t.length;if(void 0!==n)for(;r<o;r++)t[r]&&t[r][e]&&a.push(t[r][e][n]);else for(;r<o;r++)t[r]&&a.push(t[r][e]);return a},I=function(t){if(t.length>F)throw new Error("Exceeded max str len");var e;for(t=t.replace(L,"");(t=(e=t).replace(/<script/i,""))!==e;);return e},u=function(t){return"string"==typeof(t=Array.isArray(t)?t.join(","):t)?t.replace(/&/g,"&amp;").replace(/</g,"&lt;").replace(/>/g,"&gt;").replace(/"/g,"&quot;"):t},O=function(t,e){var n;return"string"!=typeof t?t:(n=t.normalize("NFD")).length!==t.length?(!0===e?t+" ":"")+n.replace(/[\u0300-\u036f]/g,""):n},x=function(t){if(Array.from&&Set)return Array.from(new Set(t));if(function(t){if(!(t.length<2))for(var e=t.slice().sort(),n=e[0],a=1,r=e.length;a<r;a++){if(e[a]===n)return!1;n=e[a]}return!0}(t))return t.slice();var e,n,a,r=[],o=t.length,i=0;t:for(n=0;n<o;n++){for(e=t[n],a=0;a<i;a++)if(r[a]===e)continue t;r.push(e),i++}return r},E=function(t,e){if(Array.isArray(e))for(var n=0;n<e.length;n++)E(t,e[n]);else t.push(e);return t};function D(e,t){t&&t.split(" ").forEach(function(t){t&&e.classList.add(t)})}function k(e){var n,a,r={};V.each(e,function(t){(n=t.match(/^([^A-Z]+?)([A-Z])/))&&-1!=="a aa ai ao as b fn i m o s ".indexOf(n[1]+" ")&&(a=t.replace(n[0],n[2].toLowerCase()),r[a]=t,"o"===n[1])&&k(e[t])}),e._hungarianMap=r}function z(e,n,a){var r;e._hungarianMap||k(e),V.each(n,function(t){void 0===(r=e._hungarianMap[t])||!a&&void 0!==n[r]||("o"===r.charAt(0)?(n[r]||(n[r]={}),V.extend(!0,n[r],n[t]),z(e[r],n[r],a)):n[r]=n[t])})}$.util={diacritics:function(t,e){if("function"!=typeof t)return O(t,e);O=t},debounce:function(n,a){var r;return function(){var t=this,e=arguments;clearTimeout(r),r=setTimeout(function(){n.apply(t,e)},a||250)}},throttle:function(a,t){var r,o,i=void 0!==t?t:200;return function(){var t=this,e=+new Date,n=arguments;r&&e<r+i?(clearTimeout(o),o=setTimeout(function(){r=void 0,a.apply(t,n)},i)):(r=e,a.apply(t,n))}},escapeRegex:function(t){return t.replace(j,"\\$1")},set:function(a){var f;return V.isPlainObject(a)?$.util.set(a._):null===a?function(){}:"function"==typeof a?function(t,e,n){a(t,"set",e,n)}:"string"!=typeof a||-1===a.indexOf(".")&&-1===a.indexOf("[")&&-1===a.indexOf("(")?function(t,e){t[a]=e}:(f=function(t,e,n){for(var a,r,o,i,l=ft(n),n=l[l.length-1],s=0,u=l.length-1;s<u;s++){if("__proto__"===l[s]||"constructor"===l[s])throw new Error("Cannot set prototype values");if(a=l[s].match(dt),r=l[s].match(p),a){if(l[s]=l[s].replace(dt,""),t[l[s]]=[],(a=l.slice()).splice(0,s+1),i=a.join("."),Array.isArray(e))for(var c=0,d=e.length;c<d;c++)f(o={},e[c],i),t[l[s]].push(o);else t[l[s]]=e;return}r&&(l[s]=l[s].replace(p,""),t=t[l[s]](e)),null!==t[l[s]]&&void 0!==t[l[s]]||(t[l[s]]={}),t=t[l[s]]}n.match(p)?t[n.replace(p,"")](e):t[n.replace(dt,"")]=e},function(t,e){return f(t,e,a)})},get:function(r){var o,f;return V.isPlainObject(r)?(o={},V.each(r,function(t,e){e&&(o[t]=$.util.get(e))}),function(t,e,n,a){var r=o[e]||o._;return void 0!==r?r(t,e,n,a):t}):null===r?function(t){return t}:"function"==typeof r?function(t,e,n,a){return r(t,e,n,a)}:"string"!=typeof r||-1===r.indexOf(".")&&-1===r.indexOf("[")&&-1===r.indexOf("(")?function(t){return t[r]}:(f=function(t,e,n){var a,r,o;if(""!==n)for(var i=ft(n),l=0,s=i.length;l<s;l++){if(d=i[l].match(dt),a=i[l].match(p),d){if(i[l]=i[l].replace(dt,""),""!==i[l]&&(t=t[i[l]]),r=[],i.splice(0,l+1),o=i.join("."),Array.isArray(t))for(var u=0,c=t.length;u<c;u++)r.push(f(t[u],e,o));var d=d[0].substring(1,d[0].length-1);t=""===d?r:r.join(d);break}if(a)i[l]=i[l].replace(p,""),t=t[i[l]]();else{if(null===t||null===t[i[l]])return null;if(void 0===t||void 0===t[i[l]])return;t=t[i[l]]}}return t},function(t,e){return f(t,e,r)})},stripHtml:function(t){var e=typeof t;if("function"!=e)return"string"==e?I(t):t;I=t},escapeHtml:function(t){var e=typeof t;if("function"!=e)return"string"==e||Array.isArray(t)?u(t):t;u=t},unique:x};var r=function(t,e,n){void 0!==t[e]&&(t[n]=t[e])};function nt(t){r(t,"ordering","bSort"),r(t,"orderMulti","bSortMulti"),r(t,"orderClasses","bSortClasses"),r(t,"orderCellsTop","bSortCellsTop"),r(t,"order","aaSorting"),r(t,"orderFixed","aaSortingFixed"),r(t,"paging","bPaginate"),r(t,"pagingType","sPaginationType"),r(t,"pageLength","iDisplayLength"),r(t,"searching","bFilter"),"boolean"==typeof t.sScrollX&&(t.sScrollX=t.sScrollX?"100%":""),"boolean"==typeof t.scrollX&&(t.scrollX=t.scrollX?"100%":"");var e=t.aoSearchCols;if(e)for(var n=0,a=e.length;n<a;n++)e[n]&&z($.models.oSearch,e[n]);t.serverSide&&!t.searchDelay&&(t.searchDelay=400)}function at(t){r(t,"orderable","bSortable"),r(t,"orderData","aDataSort"),r(t,"orderSequence","asSorting"),r(t,"orderDataType","sortDataType");var e=t.aDataSort;"number"!=typeof e||Array.isArray(e)||(t.aDataSort=[e])}function rt(t){var e=$.defaults.column,n=t.aoColumns.length,e=V.extend({},$.models.oColumn,e,{aDataSort:e.aDataSort||[n],mData:e.mData||n,idx:n,searchFixed:{},colEl:V("<col>").attr("data-dt-column",n)}),e=(t.aoColumns.push(e),t.aoPreSearchCols);e[n]=V.extend({},$.models.oSearch,e[n])}function ot(t,e,n){function a(t){return"string"==typeof t&&-1!==t.indexOf("@")}var r=t.aoColumns[e],o=(null!=n&&(at(n),z($.defaults.column,n,!0),void 0===n.mDataProp||n.mData||(n.mData=n.mDataProp),n.sType&&(r._sManualType=n.sType),n.className&&!n.sClass&&(n.sClass=n.className),e=r.sClass,V.extend(r,n),Q(r,n,"sWidth","sWidthOrig"),e!==r.sClass&&(r.sClass=e+" "+r.sClass),void 0!==n.iDataSort&&(r.aDataSort=[n.iDataSort]),Q(r,n,"aDataSort")),r.mData),i=J(o);r.mRender&&Array.isArray(r.mRender)&&(n=(e=r.mRender.slice()).shift(),r.mRender=$.render[n].apply(q,e)),r._render=r.mRender?J(r.mRender):null;r._bAttrSrc=V.isPlainObject(o)&&(a(o.sort)||a(o.type)||a(o.filter)),r._setter=null,r.fnGetData=function(t,e,n){var a=i(t,e,void 0,n);return r._render&&e?r._render(a,e,t,n):a},r.fnSetData=function(t,e,n){return m(o)(t,e,n)},"number"==typeof o||r._isArrayHost||(t._rowReadObject=!0),t.oFeatures.bSort||(r.bSortable=!1)}function M(t){var e=t;if(e.oFeatures.bAutoWidth){var n,a,r=e.nTable,o=e.aoColumns,i=e.oScroll,l=i.sY,s=i.sX,i=i.sXInner,u=X(e,"bVisible"),c=r.getAttribute("width"),d=r.parentNode,f=r.style.width,f=(f&&-1!==f.indexOf("%")&&(c=f),tt(e,null,"column-calc",{visible:u},!1),V(r.cloneNode()).css("visibility","hidden").removeAttr("id")),h=(f.append("<tbody>"),V("<tr/>").appendTo(f.find("tbody")));for(f.append(V(e.nTHead).clone()).append(V(e.nTFoot).clone()),f.find("tfoot th, tfoot td").css("width",""),f.find("thead th, thead td").each(function(){var t=lt(e,this,!0,!1);t?(this.style.width=t,s&&V(this).append(V("<div/>").css({width:t,margin:0,padding:0,border:0,height:1}))):this.style.width=""}),n=0;n<u.length;n++){p=u[n],a=o[p];var p=function(t,e){var n=t.aoColumns[e];if(!n.maxLenString){for(var a,r="",o=-1,i=0,l=t.aiDisplayMaster.length;i<l;i++){var s=t.aiDisplayMaster[i],s=vt(t,s)[e],s=s&&"object"==typeof s&&s.nodeType?s.innerHTML:s+"";s=s.replace(/id=".*?"/g,"").replace(/name=".*?"/g,""),(a=I(s).replace(/&nbsp;/g," ")).length>o&&(r=s,o=a.length)}n.maxLenString=r}return n.maxLenString}(e,p),g=C.type.className[a.sType],m=p+a.sContentPadding,p=-1===p.indexOf("<")?_.createTextNode(m):m;V("<td/>").addClass(g).addClass(a.sClass).append(p).appendTo(h)}V("[name]",f).removeAttr("name");var v=V("<div/>").css(s||l?{position:"absolute",top:0,left:0,height:1,right:0,overflow:"hidden"}:{}).append(f).appendTo(d),b=(s&&i?f.width(i):s?(f.css("width","auto"),f.removeAttr("width"),f.width()<d.clientWidth&&c&&f.width(d.clientWidth)):l?f.width(d.clientWidth):c&&f.width(c),0),y=f.find("tbody tr").eq(0).children();for(n=0;n<u.length;n++){var D=y[n].getBoundingClientRect().width;b+=D,o[u[n]].sWidth=A(D)}r.style.width=A(b),v.remove(),c&&(r.style.width=A(c)),!c&&!s||e._reszEvt||(V(q).on("resize.DT-"+e.sInstance,$.util.throttle(function(){e.bDestroying||M(e)})),e._reszEvt=!0)}for(var x=t,S=x.aoColumns,T=0;T<S.length;T++){var w=lt(x,[T],!1,!1);S[T].colEl.css("width",w)}i=t.oScroll;""===i.sY&&""===i.sX||Xt(t),tt(t,null,"column-sizing",[t])}function H(t,e){t=X(t,"bVisible");return"number"==typeof t[e]?t[e]:null}function T(t,e){t=X(t,"bVisible").indexOf(e);return-1!==t?t:null}function W(t){var e=t.aoHeader,n=t.aoColumns,a=0;if(e.length)for(var r=0,o=e[0].length;r<o;r++)n[r].bVisible&&"none"!==V(e[0][r].cell).css("display")&&a++;return a}function X(t,n){var a=[];return t.aoColumns.map(function(t,e){t[n]&&a.push(e)}),a}function B(t){for(var e,n,a,r,o,i,l,s=t.aoColumns,u=t.aoData,c=$.ext.type.detect,d=0,f=s.length;d<f;d++){if(l=[],!(o=s[d]).sType&&o._sManualType)o.sType=o._sManualType;else if(!o.sType){for(e=0,n=c.length;e<n;e++){for(a=0,r=u.length;a<r;a++)if(u[a]){if(void 0===l[a]&&(l[a]=G(t,a,d,"type")),!(i=c[e](l[a],t))&&e!==c.length-2)break;if("html"===i&&!y(l[a]))break}if(i){o.sType=i;break}}o.sType||(o.sType="string")}var h=C.type.className[o.sType],h=(h&&(it(t.aoHeader,d,h),it(t.aoFooter,d,h)),C.type.render[o.sType]);if(h&&!o._render){o._render=$.util.get(h),p=b=v=m=g=void 0;for(var p,g=t,m=d,v=g.aoData,b=0;b<v.length;b++)v[b].nTr&&(p=G(g,b,m,"display"),v[b].displayData[m]=p,ct(v[b].anCells[m],p))}}}function it(t,e,n){t.forEach(function(t){t[e]&&t[e].unique&&D(t[e].cell,n)})}function lt(t,e,n,a){Array.isArray(e)||(e=st(e));for(var r,o=0,i=t.aoColumns,l=0,s=e.length;l<s;l++){var u=i[e[l]],c=n?u.sWidthOrig:u.sWidth;if(a||!1!==u.bVisible){if(null==c)return null;"number"==typeof c?(r="px",o+=c):(u=c.match(/([\d\.]+)([^\d]*)/))&&(o+=+u[1],r=3===u.length?u[2]:"px")}}return o+r}function st(t){t=V(t).closest("[data-dt-column]").attr("data-dt-column");return t?t.split(",").map(function(t){return+t}):[]}function Y(t,e,n,a){for(var r=t.aoData.length,o=V.extend(!0,{},$.models.oRow,{src:n?"dom":"data",idx:r}),i=(o._aData=e,t.aoData.push(o),t.aoColumns),l=0,s=i.length;l<s;l++)i[l].sType=null;t.aiDisplayMaster.push(r);e=t.rowIdFn(e);return void 0!==e&&(t.aIds[e]=o),!n&&t.oFeatures.bDeferRender||bt(t,r,n,a),r}function ut(n,t){var a;return(t=t instanceof V?t:V(t)).map(function(t,e){return a=mt(n,e),Y(n,a.data,e,a.cells)})}function G(t,e,n,a){"search"===a?a="filter":"order"===a&&(a="sort");var r=t.aoData[e];if(r){var o=t.iDraw,i=t.aoColumns[n],r=r._aData,l=i.sDefaultContent,s=i.fnGetData(r,a,{settings:t,row:e,col:n});if(void 0===(s="display"!==a&&s&&"object"==typeof s&&s.nodeName?s.innerHTML:s))return t.iDrawError!=o&&null===l&&(Z(t,0,"Requested unknown parameter "+("function"==typeof i.mData?"{function}":"'"+i.mData+"'")+" for row "+e+", column "+n,4),t.iDrawError=o),l;if(s!==r&&null!==s||null===l||void 0===a){if("function"==typeof s)return s.call(r)}else s=l;return null===s&&"display"===a?"":s="filter"===a&&(e=$.ext.type.search)[i.sType]?e[i.sType](s):s}}function ct(t,e){e&&"object"==typeof e&&e.nodeName?V(t).empty().append(e):t.innerHTML=e}var dt=/\[.*?\]$/,p=/\(\)$/;function ft(t){return(t.match(/(\\.|[^.])+/g)||[""]).map(function(t){return t.replace(/\\\./g,".")})}var J=$.util.get,m=$.util.set;function ht(t){return f(t.aoData,"_aData")}function pt(t){t.aoData.length=0,t.aiDisplayMaster.length=0,t.aiDisplay.length=0,t.aIds={}}function gt(t,e,n,a){var r,o,i=t.aoData[e];if(i._aSortData=null,i._aFilterData=null,i.displayData=null,"dom"!==n&&(n&&"auto"!==n||"dom"!==i.src)){var l=i.anCells,s=vt(t,e);if(l)if(void 0!==a)ct(l[a],s[a]);else for(r=0,o=l.length;r<o;r++)ct(l[r],s[r])}else i._aData=mt(t,i,a,void 0===a?void 0:i._aData).data;var u=t.aoColumns;if(void 0!==a)u[a].sType=null,u[a].maxLenString=null;else{for(r=0,o=u.length;r<o;r++)u[r].sType=null,u[r].maxLenString=null;yt(t,i)}}function mt(t,e,n,a){function r(t,e){var n;"string"==typeof t&&-1!==(n=t.indexOf("@"))&&(n=t.substring(n+1),m(t)(a,e.getAttribute(n)))}function o(t){void 0!==n&&n!==d||(l=f[d],s=t.innerHTML.trim(),l&&l._bAttrSrc?(m(l.mData._)(a,s),r(l.mData.sort,t),r(l.mData.type,t),r(l.mData.filter,t)):h?(l._setter||(l._setter=m(l.mData)),l._setter(a,s)):a[d]=s),d++}var i,l,s,u=[],c=e.firstChild,d=0,f=t.aoColumns,h=t._rowReadObject;a=void 0!==a?a:h?{}:[];if(c)for(;c;)"TD"!=(i=c.nodeName.toUpperCase())&&"TH"!=i||(o(c),u.push(c)),c=c.nextSibling;else for(var p=0,g=(u=e.anCells).length;p<g;p++)o(u[p]);var e=e.firstChild?e:e.nTr;return e&&(e=e.getAttribute("id"))&&m(t.rowId)(a,e),{data:a,cells:u}}function vt(t,e){var n=t.aoData[e],a=t.aoColumns;if(!n.displayData){n.displayData=[];for(var r=0,o=a.length;r<o;r++)n.displayData.push(G(t,e,r,"display"))}return n.displayData}function bt(t,e,n,a){var r,o,i,l,s,u,c=t.aoData[e],d=c._aData,f=[],h=t.oClasses.tbody.row;if(null===c.nTr){for(r=n||_.createElement("tr"),c.nTr=r,c.anCells=f,D(r,h),r._DT_RowIndex=e,yt(t,c),l=0,s=t.aoColumns.length;l<s;l++){i=t.aoColumns[l],(o=(u=!n||!a[l])?_.createElement(i.sCellType):a[l])||Z(t,0,"Incorrect column count",18),o._DT_CellIndex={row:e,column:l},f.push(o);var p=vt(t,e);!u&&(!i.mRender&&i.mData===l||V.isPlainObject(i.mData)&&i.mData._===l+".display")||ct(o,p[l]),i.bVisible&&u?r.appendChild(o):i.bVisible||u||o.parentNode.removeChild(o),i.fnCreatedCell&&i.fnCreatedCell.call(t.oInstance,o,G(t,e,l),d,e,l)}tt(t,"aoRowCreatedCallback","row-created",[r,d,e,f])}else D(c.nTr,h)}function yt(t,e){var n=e.nTr,a=e._aData;n&&((t=t.rowIdFn(a))&&(n.id=t),a.DT_RowClass&&(t=a.DT_RowClass.split(" "),e.__rowc=e.__rowc?x(e.__rowc.concat(t)):t,V(n).removeClass(e.__rowc.join(" ")).addClass(a.DT_RowClass)),a.DT_RowAttr&&V(n).attr(a.DT_RowAttr),a.DT_RowData)&&V(n).data(a.DT_RowData)}function Dt(t,e){var n,a=t.oClasses,r=t.aoColumns,o="header"===e?t.nTHead:t.nTFoot,i="header"===e?"sTitle":e;if(o){if(("header"===e||f(t.aoColumns,i).join(""))&&1===(n=(n=V("tr",o)).length?n:V("<tr/>").appendTo(o)).length)for(var l=V("td, th",n).length,s=r.length;l<s;l++)V("<th/>").html(r[l][i]||"").appendTo(n);var u=It(t,o,!0);"header"===e?t.aoHeader=u:t.aoFooter=u,V(o).children("tr").attr("role","row"),V(o).children("tr").children("th, td").each(function(){te(t,e)(t,V(this),a)})}}function xt(t,e,n){var a,r,o,i,l,s=[],u=[],c=t.aoColumns,t=c.length;if(e){for(n=n||h(t).filter(function(t){return c[t].bVisible}),a=0;a<e.length;a++)s[a]=e[a].slice().filter(function(t,e){return n.includes(e)}),u.push([]);for(a=0;a<s.length;a++)for(r=0;r<s[a].length;r++)if(l=i=1,void 0===u[a][r]){for(o=s[a][r].cell;void 0!==s[a+i]&&s[a][r].cell==s[a+i][r].cell;)u[a+i][r]=null,i++;for(;void 0!==s[a][r+l]&&s[a][r].cell==s[a][r+l].cell;){for(var d=0;d<i;d++)u[a+d][r+l]=null;l++}var f=V("span.dt-column-title",o);u[a][r]={cell:o,colspan:l,rowspan:i,title:(f.length?f:V(o)).html()}}return u}}function St(t,e){for(var n,a,r=xt(t,e),o=0;o<e.length;o++){if(n=e[o].row)for(;a=n.firstChild;)n.removeChild(a);for(var i=0;i<r[o].length;i++){var l=r[o][i];l&&V(l.cell).appendTo(n).attr("rowspan",l.rowspan).attr("colspan",l.colspan)}}}function S(t,e){if(r="ssp"==et(s=t),void 0!==(i=s.iInitDisplayStart)&&-1!==i&&(s._iDisplayStart=!r&&i>=s.fnRecordsDisplay()?0:i,s.iInitDisplayStart=-1),-1!==tt(t,"aoPreDrawCallback","preDraw",[t]).indexOf(!1))w(t,!1);else{var l,n=[],a=0,r="ssp"==et(t),o=t.aiDisplay,i=t._iDisplayStart,s=t.fnDisplayEnd(),u=t.aoColumns,c=V(t.nTBody);if(t.bDrawing=!0,r){if(!t.bDestroying&&!e)return 0===t.iDraw&&c.empty().append(Tt(t)),(l=t).iDraw++,w(l,!0),void At(l,function(e){function n(t,e){return"function"==typeof a[t][e]?"function":a[t][e]}var a=e.aoColumns,t=e.oFeatures,r=e.oPreviousSearch,o=e.aoPreSearchCols;return{draw:e.iDraw,columns:a.map(function(e,t){return{data:n(t,"mData"),name:e.sName,searchable:e.bSearchable,orderable:e.bSortable,search:{value:o[t].search,regex:o[t].regex,fixed:Object.keys(e.searchFixed).map(function(t){return{name:t,term:e.searchFixed[t].toString()}})}}}),order:$t(e).map(function(t){return{column:t.col,dir:t.dir,name:n(t.col,"sName")}}),start:e._iDisplayStart,length:t.bPaginate?e._iDisplayLength:-1,search:{value:r.search,regex:r.regex,fixed:Object.keys(e.searchFixed).map(function(t){return{name:t,term:e.searchFixed[t].toString()}})}}}(l),function(t){var e=l,n=Lt(e,t=t),a=Ft(e,"draw",t),r=Ft(e,"recordsTotal",t),t=Ft(e,"recordsFiltered",t);if(void 0!==a){if(+a<e.iDraw)return;e.iDraw=+a}n=n||[],pt(e),e._iRecordsTotal=parseInt(r,10),e._iRecordsDisplay=parseInt(t,10);for(var o=0,i=n.length;o<i;o++)Y(e,n[o]);e.aiDisplay=e.aiDisplayMaster.slice(),S(e,!0),kt(e),w(e,!1)})}else t.iDraw++;if(0!==o.length)for(var d=r?t.aoData.length:s,f=r?0:i;f<d;f++){for(var h=o[f],p=t.aoData[h],g=(null===p.nTr&&bt(t,h),p.nTr),m=0;m<u.length;m++){var v=u[m],b=p.anCells[m];D(b,C.type.className[v.sType]),D(b,v.sClass),D(b,t.oClasses.tbody.cell)}tt(t,"aoRowCallback",null,[g,p._aData,a,f,h]),n.push(g),a++}else n[0]=Tt(t);tt(t,"aoHeaderCallback","header",[V(t.nTHead).children("tr")[0],ht(t),i,s,o]),tt(t,"aoFooterCallback","footer",[V(t.nTFoot).children("tr")[0],ht(t),i,s,o]),c[0].replaceChildren?c[0].replaceChildren.apply(c[0],n):(c.children().detach(),c.append(V(n))),V(t.nTableWrapper).toggleClass("dt-empty-footer",0===V("tr",t.nTFoot).length),tt(t,"aoDrawCallback","draw",[t],!0),t.bSorted=!1,t.bFiltered=!1,t.bDrawing=!1}}function s(t,e,n){var a=t.oFeatures,r=a.bSort,a=a.bFilter;void 0!==n&&!0!==n||(r&&zt(t),a?Nt(t,t.oPreviousSearch):t.aiDisplay=t.aiDisplayMaster.slice()),!0!==e&&(t._iDisplayStart=0),t._drawHold=e,S(t),t._drawHold=!1}function Tt(t){var e=t.oLanguage,n=e.sZeroRecords,a=et(t);return t.iDraw<1&&"ssp"===a||t.iDraw<=1&&"ajax"===a?n=e.sLoadingRecords:e.sEmptyTable&&0===t.fnRecordsTotal()&&(n=e.sEmptyTable),V("<tr/>").append(V("<td />",{colSpan:W(t),class:t.oClasses.empty.row}).html(n))[0]}function wt(t,e,n){for(var i={},a=(V.each(e,function(t,e){if(null!==e){var t=t.replace(/([A-Z])/g," $1").split(" "),n=(i[t[0]]||(i[t[0]]={}),1===t.length?"full":t[1].toLowerCase()),a=i[t[0]],r=function(e,n){V.isPlainObject(n)?Object.keys(n).map(function(t){e.push({feature:t,opts:n[t]})}):e.push(n)};if(a[n]&&a[n].contents||(a[n]={contents:[]}),Array.isArray(e))for(var o=0;o<e.length;o++)r(a[n].contents,e[o]);else r(a[n].contents,e);Array.isArray(a[n].contents)||(a[n].contents=[a[n].contents])}}),Object.keys(i).map(function(t){return 0!==t.indexOf(n)?null:{name:t,val:i[t]}}).filter(function(t){return null!==t})),r=(a.sort(function(t,e){t=+t.name.replace(/[^0-9]/g,"");return+e.name.replace(/[^0-9]/g,"")-t}),"bottom"===n&&a.reverse(),[]),o=0,l=a.length;o<l;o++)a[o].val.full&&(r.push({full:a[o].val.full}),_t(t,r[r.length-1]),delete a[o].val.full),Object.keys(a[o].val).length&&(r.push(a[o].val),_t(t,r[r.length-1]));return r}function _t(o,i){function l(t,e){return C.features[t]||Z(o,0,"Unknown feature: "+t),C.features[t].apply(this,[o,e])}V.each(i,function(t){for(var e,n=i[t].contents,a=0,r=n.length;a<r;a++)n[a]&&("string"==typeof n[a]?n[a]=l(n[a],null):V.isPlainObject(n[a])?n[a]=l(n[a].feature,n[a].opts):"function"==typeof n[a].node?n[a]=n[a].node(o):"function"==typeof n[a]&&(e=n[a](o),n[a]="function"==typeof e.node?e.node():e))})}function Ct(e){var a,t=e.oClasses,n=V(e.nTable),r=V("<div/>").attr({id:e.sTableId+"_wrapper",class:t.container}).insertBefore(n);if(e.nTableWrapper=r[0],e.sDom)for(var o,i,l,s,u,c,d=e,t=e.sDom,f=r,h=t.match(/(".*?")|('.*?')|./g),p=0;p<h.length;p++)o=null,"<"==(i=h[p])?(l=V("<div/>"),"'"!=(s=h[p+1])[0]&&'"'!=s[0]||(s=s.replace(/['"]/g,""),u="",-1!=s.indexOf(".")?(c=s.split("."),u=c[0],c=c[1]):"#"==s[0]?u=s:c=s,l.attr("id",u.substring(1)).addClass(c),p++),f.append(l),f=l):">"==i?f=f.parent():"t"==i?o=Wt(d):$.ext.feature.forEach(function(t){i==t.cFeature&&(o=t.fnInit(d))}),o&&f.append(o);else{var n=wt(e,e.layout,"top"),t=wt(e,e.layout,"bottom"),g=te(e,"layout");n.forEach(function(t){g(e,r,t)}),g(e,r,{full:{table:!0,contents:[Wt(e)]}}),t.forEach(function(t){g(e,r,t)})}var n=e,t=n.nTable,m=""!==n.oScroll.sX||""!==n.oScroll.sY;n.oFeatures.bProcessing&&(a=V("<div/>",{id:n.sTableId+"_processing",class:n.oClasses.processing.container,role:"status"}).html(n.oLanguage.sProcessing).append("<div><div></div><div></div><div></div><div></div></div>"),m?a.prependTo(V("div.dt-scroll",n.nTableWrapper)):a.insertBefore(t),V(t).on("processing.dt.DT",function(t,e,n){a.css("display",n?"block":"none")}))}function It(t,e,n){for(var a,r,o,i,l,s,u=t.aoColumns,c=V(e).children("tr"),d=e&&"thead"===e.nodeName.toLowerCase(),f=[],h=0,p=c.length;h<p;h++)f.push([]);for(h=0,p=c.length;h<p;h++)for(r=(a=c[h]).firstChild;r;){if("TD"==r.nodeName.toUpperCase()||"TH"==r.nodeName.toUpperCase()){var g,m,v,b,y,D=[];for(b=(b=+r.getAttribute("colspan"))&&0!=b&&1!=b?b:1,y=(y=+r.getAttribute("rowspan"))&&0!=y&&1!=y?y:1,l=function(t,e,n){for(var a=t[e];a[n];)n++;return n}(f,h,0),s=1==b,n&&(s&&(ot(t,l,V(r).data()),g=u[l],m=r.getAttribute("width")||null,(v=r.style.width.match(/width:\s*(\d+[pxem%]+)/))&&(m=v[1]),g.sWidthOrig=g.sWidth||m,d?(null===g.sTitle||g.autoTitle||(r.innerHTML=g.sTitle),!g.sTitle&&s&&(g.sTitle=I(r.innerHTML),g.autoTitle=!0)):g.footer&&(r.innerHTML=g.footer),g.ariaTitle||(g.ariaTitle=V(r).attr("aria-label")||g.sTitle),g.className)&&V(r).addClass(g.className),0===V("span.dt-column-title",r).length&&V("<span>").addClass("dt-column-title").append(r.childNodes).appendTo(r),d)&&0===V("span.dt-column-order",r).length&&V("<span>").addClass("dt-column-order").appendTo(r),i=0;i<b;i++){for(o=0;o<y;o++)f[h+o][l+i]={cell:r,unique:s},f[h+o].row=a;D.push(l+i)}r.setAttribute("data-dt-column",x(D).join(","))}r=r.nextSibling}return f}function At(n,t,a){function e(t){var e=n.jqXHR?n.jqXHR.status:null;(null===t||"number"==typeof e&&204==e)&&Lt(n,t={},[]),(e=t.error||t.sError)&&Z(n,0,e),n.json=t,tt(n,null,"xhr",[n,t,n.jqXHR],!0),a(t)}var r,o=n.ajax,i=n.oInstance,l=(V.isPlainObject(o)&&o.data&&(l="function"==typeof(r=o.data)?r(t,n):r,t="function"==typeof r&&l?l:V.extend(!0,t,l),delete o.data),{url:"string"==typeof o?o:"",data:t,success:e,dataType:"json",cache:!1,type:n.sServerMethod,error:function(t,e){-1===tt(n,null,"xhr",[n,null,n.jqXHR],!0).indexOf(!0)&&("parsererror"==e?Z(n,0,"Invalid JSON response",1):4===t.readyState&&Z(n,0,"Ajax error",7)),w(n,!1)}});V.isPlainObject(o)&&V.extend(l,o),n.oAjaxData=t,tt(n,null,"preXhr",[n,t,l],!0),"function"==typeof o?n.jqXHR=o.call(i,t,e,n):""===o.url?(i={},$.util.set(o.dataSrc)(i,[]),e(i)):(n.jqXHR=V.ajax(l),r&&(o.data=r))}function Lt(t,e,n){var a="data";if(V.isPlainObject(t.ajax)&&void 0!==t.ajax.dataSrc&&("string"==typeof(t=t.ajax.dataSrc)||"function"==typeof t?a=t:void 0!==t.data&&(a=t.data)),!n)return"data"===a?e.aaData||e[a]:""!==a?J(a)(e):e;m(a)(e,n)}function Ft(t,e,n){var t=V.isPlainObject(t.ajax)?t.ajax.dataSrc:null;return t&&t[e]?J(t[e])(n):(t="","draw"===e?t="sEcho":"recordsTotal"===e?t="iTotalRecords":"recordsFiltered"===e&&(t="iTotalDisplayRecords"),void 0!==n[t]?n[t]:n[e])}function Nt(n,t){var e=n.aoPreSearchCols;if(B(n),"ssp"!=et(n)){for(var a,r,o,i,l,s=n,u=s.aoColumns,c=s.aoData,d=0;d<c.length;d++)if(c[d]&&!(l=c[d])._aFilterData){for(o=[],a=0,r=u.length;a<r;a++)u[a].bSearchable?"string"!=typeof(i=null===(i=G(s,d,a,"filter"))?"":i)&&i.toString&&(i=i.toString()):i="",i.indexOf&&-1!==i.indexOf("&")&&(Rt.innerHTML=i,i=Ot?Rt.textContent:Rt.innerText),i.replace&&(i=i.replace(/[\r\n\u2028]/g,"")),o.push(i);l._aFilterData=o,l._sFilterRow=o.join("  "),0}n.aiDisplay=n.aiDisplayMaster.slice(),jt(n.aiDisplay,n,t.search,t),V.each(n.searchFixed,function(t,e){jt(n.aiDisplay,n,e,{})});for(var f=0;f<e.length;f++){var h=e[f];jt(n.aiDisplay,n,h.search,h,f),V.each(n.aoColumns[f].searchFixed,function(t,e){jt(n.aiDisplay,n,e,{},f)})}for(var p,g,m=n,v=$.ext.search,b=m.aiDisplay,y=0,D=v.length;y<D;y++){for(var x=[],S=0,T=b.length;S<T;S++)g=b[S],p=m.aoData[g],v[y](m,p._aFilterData,g,p._aData,S)&&x.push(g);b.length=0,b.push.apply(b,x)}}n.bFiltered=!0,tt(n,null,"search",[n])}function jt(t,e,n,a,r){if(""!==n){for(var o=0,i=[],l="function"==typeof n?n:null,s=n instanceof RegExp?n:l?null:function(t,e){var a=[],e=V.extend({},{boundary:!1,caseInsensitive:!0,exact:!1,regex:!1,smart:!0},e);"string"!=typeof t&&(t=t.toString());if(t=O(t),e.exact)return new RegExp("^"+Pt(t)+"$",e.caseInsensitive?"i":"");{var n,r,o;t=e.regex?t:Pt(t),e.smart&&(n=(t.match(/!?["\u201C][^"\u201D]+["\u201D]|[^ ]+/g)||[""]).map(function(t){var e,n=!1;return"!"===t.charAt(0)&&(n=!0,t=t.substring(1)),'"'===t.charAt(0)?t=(e=t.match(/^"(.*)"$/))?e[1]:t:"“"===t.charAt(0)&&(t=(e=t.match(/^\u201C(.*)\u201D$/))?e[1]:t),n&&(1<t.length&&a.push("(?!"+t+")"),t=""),t.replace(/"/g,"")}),r=a.length?a.join(""):"",o=e.boundary?"\\b":"",t="^(?=.*?"+o+n.join(")(?=.*?"+o)+")("+r+".)*$")}return new RegExp(t,e.caseInsensitive?"i":"")}(n,a),o=0;o<t.length;o++){var u=e.aoData[t[o]],c=void 0===r?u._sFilterRow:u._aFilterData[r];(l&&l(c,u._aData,t[o],r)||s&&s.test(c))&&i.push(t[o])}for(t.length=i.length,o=0;o<i.length;o++)t[o]=i[o]}}var Pt=$.util.escapeRegex,Rt=V("<div>")[0],Ot=void 0!==Rt.textContent;function Et(n){var a,t,e,r,o,i,l=n.iInitDisplayStart;n.bInitialised?(Dt(n,"header"),Dt(n,"footer"),St(n,n.aoHeader),St(n,n.aoFooter),Ct(n),e=(t=n).nTHead,i=e.querySelectorAll("tr"),r=t.bSortCellsTop,o=':not([data-dt-order="disable"]):not([data-dt-order="icon-only"])',!0===r?e=i[0]:!1===r&&(e=i[i.length-1]),Vt(t,e,e===t.nTHead?"tr"+o+" th"+o+", tr"+o+" td"+o:"th"+o+", td"+o),Ut(t,r=[],t.aaSorting),t.aaSorting=r,Bt(n),w(n,!0),tt(n,null,"preInit",[n],!0),s(n),"ssp"!=(i=et(n))&&("ajax"==i?At(n,{},function(t){var e=Lt(n,t);for(a=0;a<e.length;a++)Y(n,e[a]);n.iInitDisplayStart=l,s(n),w(n,!1),kt(n)}):(kt(n),w(n,!1)))):setTimeout(function(){Et(n)},200)}function kt(t){var e;t._bInitComplete||(e=[t,t.json],t._bInitComplete=!0,M(t),tt(t,null,"plugin-init",e,!0),tt(t,"aoInitComplete","init",e,!0))}function Mt(t,e){e=parseInt(e,10);t._iDisplayLength=e,Kt(t),tt(t,null,"length",[t,e])}function Ht(t,e,n){var a=t._iDisplayStart,r=t._iDisplayLength,o=t.fnRecordsDisplay();if(0===o||-1===r)a=0;else if("number"==typeof e)o<(a=e*r)&&(a=0);else if("first"==e)a=0;else if("previous"==e)(a=0<=r?a-r:0)<0&&(a=0);else if("next"==e)a+r<o&&(a+=r);else if("last"==e)a=Math.floor((o-1)/r)*r;else{if("ellipsis"===e)return;Z(t,0,"Unknown paging action: "+e,5)}o=t._iDisplayStart!==a;t._iDisplayStart=a,tt(t,null,o?"page":"page-nc",[t]),o&&n&&S(t)}function w(t,e){tt(t,null,"processing",[t,e])}function Wt(t){var e,n,a,r,o,i,l,s,u,c,d,f,h,p=V(t.nTable),g=t.oScroll;return""===g.sX&&""===g.sY?t.nTable:(e=g.sX,n=g.sY,a=t.oClasses.scrolling,o=(r=t.captionNode)?r._captionSide:null,u=V(p[0].cloneNode(!1)),i=V(p[0].cloneNode(!1)),c=function(t){return t?A(t):null},(l=p.children("tfoot")).length||(l=null),u=V(s="<div/>",{class:a.container}).append(V(s,{class:a.header.self}).css({overflow:"hidden",position:"relative",border:0,width:e?c(e):"100%"}).append(V(s,{class:a.header.inner}).css({"box-sizing":"content-box",width:g.sXInner||"100%"}).append(u.removeAttr("id").css("margin-left",0).append("top"===o?r:null).append(p.children("thead"))))).append(V(s,{class:a.body}).css({position:"relative",overflow:"auto",width:c(e)}).append(p)),l&&u.append(V(s,{class:a.footer.self}).css({overflow:"hidden",border:0,width:e?c(e):"100%"}).append(V(s,{class:a.footer.inner}).append(i.removeAttr("id").css("margin-left",0).append("bottom"===o?r:null).append(p.children("tfoot"))))),c=u.children(),d=c[0],f=c[1],h=l?c[2]:null,V(f).on("scroll.DT",function(){var t=this.scrollLeft;d.scrollLeft=t,l&&(h.scrollLeft=t)}),V("th, td",d).on("focus",function(){var t=d.scrollLeft;f.scrollLeft=t,l&&(f.scrollLeft=t)}),V(f).css("max-height",n),g.bCollapse||V(f).css("height",n),t.nScrollHead=d,t.nScrollBody=f,t.nScrollFoot=h,t.aoDrawCallback.push(Xt),u[0])}function Xt(e){var t=e.oScroll.iBarWidth,n=V(e.nScrollHead).children("div"),a=n.children("table"),r=e.nScrollBody,o=V(r),i=V(e.nScrollFoot).children("div"),l=i.children("table"),s=V(e.nTHead),u=V(e.nTable),c=e.nTFoot&&V("th, td",e.nTFoot).length?V(e.nTFoot):null,d=e.oBrowser,f=r.scrollHeight>r.clientHeight;if(e.scrollBarVis!==f&&void 0!==e.scrollBarVis)e.scrollBarVis=f,M(e);else{if(e.scrollBarVis=f,u.children("thead, tfoot").remove(),(f=s.clone().prependTo(u)).find("th, td").removeAttr("tabindex"),f.find("[id]").removeAttr("id"),c&&(m=c.clone().prependTo(u)).find("[id]").removeAttr("id"),e.aiDisplay.length)for(var h=u.children("tbody").eq(0).children("tr").eq(0).children("th, td").map(function(t){return{idx:H(e,t),width:V(this).outerWidth()}}),p=0;p<h.length;p++){var g=e.aoColumns[h[p].idx].colEl[0];g.style.width.replace("px","")!==h[p].width&&(g.style.width=h[p].width+"px")}a.find("colgroup").remove(),a.append(e.colgroup.clone()),c&&(l.find("colgroup").remove(),l.append(e.colgroup.clone())),V("th, td",f).each(function(){V(this.childNodes).wrapAll('<div class="dt-scroll-sizing">')}),c&&V("th, td",m).each(function(){V(this.childNodes).wrapAll('<div class="dt-scroll-sizing">')});var s=Math.floor(u.height())>r.clientHeight||"scroll"==o.css("overflow-y"),f="padding"+(d.bScrollbarLeft?"Left":"Right"),m=u.outerWidth();a.css("width",A(m)),n.css("width",A(m)).css(f,s?t+"px":"0px"),c&&(l.css("width",A(m)),i.css("width",A(m)).css(f,s?t+"px":"0px")),u.children("colgroup").prependTo(u),o.trigger("scroll"),!e.bSorted&&!e.bFiltered||e._drawHold||(r.scrollTop=0)}}function A(t){return null===t?"0px":"number"==typeof t?t<0?"0px":t+"px":t.match(/\d$/)?t+"px":t}function Bt(t){var e=t.aoColumns;for(t.colgroup.empty(),a=0;a<e.length;a++)e[a].bVisible&&t.colgroup.append(e[a].colEl)}function Vt(o,t,e,i,l){Qt(t,e,function(t){var e=!1,n=void 0===i?st(t.target):[i];if(n.length){for(var a=0,r=n.length;a<r;a++)if(!1!==function(t,e,n,a){function r(t,e){var n=t._idx;return(n=void 0===n?s.indexOf(t[1]):n)+1<s.length?n+1:e?null:0}var o,i=t.aoColumns[e],l=t.aaSorting,s=i.asSorting;if(!i.bSortable)return!1;"number"==typeof l[0]&&(l=t.aaSorting=[l]);(a||n)&&t.oFeatures.bSortMulti?-1!==(i=f(l,"0").indexOf(e))?null===(o=null===(o=r(l[i],!0))&&1===l.length?0:o)?l.splice(i,1):(l[i][1]=s[o],l[i]._idx=o):(a?l.push([e,s[0],0]):l.push([e,l[0][1],0]),l[l.length-1]._idx=0):l.length&&l[0][0]==e?(o=r(l[0]),l.length=1,l[0][1]=s[o],l[0]._idx=o):(l.length=0,l.push([e,s[0]]),l[0]._idx=0)}(o,n[a],a,t.shiftKey)&&(e=!0),1===o.aaSorting.length&&""===o.aaSorting[0][1])break;e&&(w(o,!0),setTimeout(function(){zt(o),qt(o,o.aiDisplay),w(o,!1),s(o,!1,!1),l&&l()},0))}})}function qt(t,e){if(!(e.length<2)){for(var n=t.aiDisplayMaster,a={},r={},o=0;o<n.length;o++)a[n[o]]=o;for(o=0;o<e.length;o++)r[e[o]]=a[e[o]];e.sort(function(t,e){return r[t]-r[e]})}}function Ut(n,a,t){function e(t){var e;V.isPlainObject(t)?void 0!==t.idx?a.push([t.idx,t.dir]):t.name&&-1!==(e=f(n.aoColumns,"sName").indexOf(t.name))&&a.push([e,t.dir]):a.push(t)}if(V.isPlainObject(t))e(t);else if(t.length&&"number"==typeof t[0])e(t);else if(t.length)for(var r=0;r<t.length;r++)e(t[r])}function $t(t){var e,n,a,r,o,i,l,s=[],u=$.ext.type.order,c=t.aoColumns,d=t.aaSortingFixed,f=V.isPlainObject(d),h=[];if(t.oFeatures.bSort)for(Array.isArray(d)&&Ut(t,h,d),f&&d.pre&&Ut(t,h,d.pre),Ut(t,h,t.aaSorting),f&&d.post&&Ut(t,h,d.post),e=0;e<h.length;e++)if(c[l=h[e][0]])for(n=0,a=(r=c[l].aDataSort).length;n<a;n++)i=c[o=r[n]].sType||"string",void 0===h[e]._idx&&(h[e]._idx=c[o].asSorting.indexOf(h[e][1])),h[e][1]&&s.push({src:l,col:o,dir:h[e][1],index:h[e]._idx,type:i,formatter:u[i+"-pre"],sorter:u[i+"-"+h[e][1]]});return s}function zt(t,e,n){var a,r,o,i,l,c,d=[],s=$.ext.type.order,f=t.aoData,u=t.aiDisplayMaster;for(B(t),void 0!==e?(l=t.aoColumns[e],c=[{src:e,col:e,dir:n,index:0,type:l.sType,formatter:s[l.sType+"-pre"],sorter:s[l.sType+"-"+n]}],u=u.slice()):c=$t(t),a=0,r=c.length;a<r;a++){i=c[a],S=x=D=g=p=h=y=b=v=m=void 0;var h,p,g,m=t,v=i.col,b=m.aoColumns[v],y=$.ext.order[b.sSortDataType];y&&(h=y.call(m.oInstance,m,v,T(m,v)));for(var D=$.ext.type.order[b.sType+"-pre"],x=m.aoData,S=0;S<x.length;S++)x[S]&&((p=x[S])._aSortData||(p._aSortData=[]),p._aSortData[v]&&!y||(g=y?h[S]:G(m,S,v,"sort"),p._aSortData[v]=D?D(g,m):g))}if("ssp"!=et(t)&&0!==c.length){for(a=0,o=u.length;a<o;a++)d[a]=a;c.length&&"desc"===c[0].dir&&d.reverse(),u.sort(function(t,e){for(var n,a,r,o,i=c.length,l=f[t]._aSortData,s=f[e]._aSortData,u=0;u<i;u++)if(n=l[(o=c[u]).col],a=s[o.col],o.sorter){if(0!==(r=o.sorter(n,a)))return r}else if(0!==(r=n<a?-1:a<n?1:0))return"asc"===o.dir?r:-r;return(n=d[t])<(a=d[e])?-1:a<n?1:0})}else 0===c.length&&u.sort(function(t,e){return t<e?-1:e<t?1:0});return void 0===e&&(t.bSorted=!0,tt(t,null,"order",[t,c])),u}function Yt(t){var e,n,a,r=t.aLastSort,o=t.oClasses.order.position,i=$t(t),l=t.oFeatures;if(l.bSort&&l.bSortClasses){for(e=0,n=r.length;e<n;e++)a=r[e].src,V(f(t.aoData,"anCells",a)).removeClass(o+(e<2?e+1:3));for(e=0,n=i.length;e<n;e++)a=i[e].src,V(f(t.aoData,"anCells",a)).addClass(o+(e<2?e+1:3))}t.aLastSort=i}function Gt(n){var t;n._bLoadingState||(t={time:+new Date,start:n._iDisplayStart,length:n._iDisplayLength,order:V.extend(!0,[],n.aaSorting),search:V.extend({},n.oPreviousSearch),columns:n.aoColumns.map(function(t,e){return{visible:t.bVisible,search:V.extend({},n.aoPreSearchCols[e])}})},n.oSavedState=t,tt(n,"aoStateSaveParams","stateSaveParams",[n,t]),n.oFeatures.bStateSave&&!n.bDestroying&&n.fnStateSaveCallback.call(n.oInstance,n,t))}function Jt(n,t,e){var a,r,o=n.aoColumns,i=(n._bLoadingState=!0,n._bInitComplete?new $.Api(n):null);if(t&&t.time){var l=n.iStateDuration;if(0<l&&t.time<+new Date-1e3*l)n._bLoadingState=!1;else if(-1!==tt(n,"aoStateLoadParams","stateLoadParams",[n,t]).indexOf(!1))n._bLoadingState=!1;else if(t.columns&&o.length!==t.columns.length)n._bLoadingState=!1;else{if(n.oLoadedState=V.extend(!0,{},t),tt(n,null,"stateLoadInit",[n,t],!0),void 0!==t.length&&(i?i.page.len(t.length):n._iDisplayLength=t.length),void 0!==t.start&&(null===i?(n._iDisplayStart=t.start,n.iInitDisplayStart=t.start):Ht(n,t.start/n._iDisplayLength)),void 0!==t.order&&(n.aaSorting=[],V.each(t.order,function(t,e){n.aaSorting.push(e[0]>=o.length?[0,e[1]]:e)})),void 0!==t.search&&V.extend(n.oPreviousSearch,t.search),t.columns){for(a=0,r=t.columns.length;a<r;a++){var s=t.columns[a];void 0!==s.visible&&(i?i.column(a).visible(s.visible,!1):o[a].bVisible=s.visible),void 0!==s.search&&V.extend(n.aoPreSearchCols[a],s.search)}i&&i.columns.adjust()}n._bLoadingState=!1,tt(n,"aoStateLoaded","stateLoaded",[n,t])}}else n._bLoadingState=!1;e()}function Z(t,e,n,a){if(n="DataTables warning: "+(t?"table id="+t.sTableId+" - ":"")+n,a&&(n+=". For more information about this error, please see https://datatables.net/tn/"+a),e)q.console&&console.log&&console.log(n);else{e=$.ext,e=e.sErrMode||e.errMode;if(t&&tt(t,null,"dt-error",[t,a,n],!0),"alert"==e)alert(n);else{if("throw"==e)throw new Error(n);"function"==typeof e&&e(t,a,n)}}}function Q(n,a,t,e){Array.isArray(t)?V.each(t,function(t,e){Array.isArray(e)?Q(n,a,e[0],e[1]):Q(n,a,e)}):(void 0===e&&(e=t),void 0!==a[t]&&(n[e]=a[t]))}function Zt(t,e,n){var a,r;for(r in e)Object.prototype.hasOwnProperty.call(e,r)&&(a=e[r],V.isPlainObject(a)?(V.isPlainObject(t[r])||(t[r]={}),V.extend(!0,t[r],a)):n&&"data"!==r&&"aaData"!==r&&Array.isArray(a)?t[r]=a.slice():t[r]=a);return t}function Qt(t,e,n){V(t).on("click.DT",e,function(t){n(t)}).on("keypress.DT",e,function(t){13===t.which&&(t.preventDefault(),n(t))}).on("selectstart.DT",e,function(){return!1})}function K(t,e,n){n&&t[e].push(n)}function tt(e,t,n,a,r){var o=[];return t&&(o=e[t].slice().reverse().map(function(t){return t.apply(e.oInstance,a)})),null!==n&&(t=V.Event(n+".dt"),n=V(e.nTable),t.dt=e.api,n[r?"trigger":"triggerHandler"](t,a),r&&0===n.parents("body").length&&V("body").trigger(t,a),o.push(t.result)),o}function Kt(t){var e=t._iDisplayStart,n=t.fnDisplayEnd(),a=t._iDisplayLength;n<=e&&(e=n-a),e-=e%a,t._iDisplayStart=e=-1===a||e<0?0:e}function te(t,e){var t=t.renderer,n=$.ext.renderer[e];return V.isPlainObject(t)&&t[e]?n[t[e]]||n._:"string"==typeof t&&n[t]||n._}function et(t){return t.oFeatures.bServerSide?"ssp":t.ajax?"ajax":"dom"}function ee(t,e,n){var a=t.fnFormatNumber,r=t._iDisplayStart+1,o=t._iDisplayLength,i=t.fnRecordsDisplay(),l=t.fnRecordsTotal(),s=-1===o;return e.replace(/_START_/g,a.call(t,r)).replace(/_END_/g,a.call(t,t.fnDisplayEnd())).replace(/_MAX_/g,a.call(t,l)).replace(/_TOTAL_/g,a.call(t,i)).replace(/_PAGE_/g,a.call(t,s?1:Math.ceil(r/o))).replace(/_PAGES_/g,a.call(t,s?1:Math.ceil(i/o))).replace(/_ENTRIES_/g,t.api.i18n("entries","",n)).replace(/_ENTRIES-MAX_/g,t.api.i18n("entries","",l)).replace(/_ENTRIES-TOTAL_/g,t.api.i18n("entries","",i))}var ne=[],n=Array.prototype;U=function(t,e){if(!(this instanceof U))return new U(t,e);function n(t){t=t,e=$.settings,a=f(e,"nTable");var n,e,a,r=t?t.nTable&&t.oFeatures?[t]:t.nodeName&&"table"===t.nodeName.toLowerCase()?-1!==(r=a.indexOf(t))?[e[r]]:null:t&&"function"==typeof t.settings?t.settings().toArray():("string"==typeof t?n=V(t).get():t instanceof V&&(n=t.get()),n?e.filter(function(t,e){return n.includes(a[e])}):void 0):[];r&&o.push.apply(o,r)}var o=[];if(Array.isArray(t))for(var a=0,r=t.length;a<r;a++)n(t[a]);else n(t);this.context=1<o.length?x(o):o,e&&this.push.apply(this,e),this.selector={rows:null,cols:null,opts:null},U.extend(this,this,ne)},$.Api=U,V.extend(U.prototype,{any:function(){return 0!==this.count()},context:[],count:function(){return this.flatten().length},each:function(t){for(var e=0,n=this.length;e<n;e++)t.call(this,this[e],e,this);return this},eq:function(t){var e=this.context;return e.length>t?new U(e[t],this[t]):null},filter:function(t){t=n.filter.call(this,t,this);return new U(this.context,t)},flatten:function(){var t=[];return new U(this.context,t.concat.apply(t,this.toArray()))},get:function(t){return this[t]},join:n.join,includes:function(t){return-1!==this.indexOf(t)},indexOf:n.indexOf,iterator:function(t,e,n,a){var r,o,i,l,s,u,c,d,f=[],h=this.context,p=this.selector;for("string"==typeof t&&(a=n,n=e,e=t,t=!1),o=0,i=h.length;o<i;o++){var g=new U(h[o]);if("table"===e)void 0!==(r=n.call(g,h[o],o))&&f.push(r);else if("columns"===e||"rows"===e)void 0!==(r=n.call(g,h[o],this[o],o))&&f.push(r);else if("every"===e||"column"===e||"column-rows"===e||"row"===e||"cell"===e)for(c=this[o],"column-rows"===e&&(u=he(h[o],p.opts)),l=0,s=c.length;l<s;l++)d=c[l],void 0!==(r="cell"===e?n.call(g,h[o],d.row,d.column,o,l):n.call(g,h[o],d,o,l,u))&&f.push(r)}return f.length||a?((t=(a=new U(h,t?f.concat.apply([],f):f)).selector).rows=p.rows,t.cols=p.cols,t.opts=p.opts,a):this},lastIndexOf:n.lastIndexOf,length:0,map:function(t){t=n.map.call(this,t,this);return new U(this.context,t)},pluck:function(t){var e=$.util.get(t);return this.map(function(t){return e(t)})},pop:n.pop,push:n.push,reduce:n.reduce,reduceRight:n.reduceRight,reverse:n.reverse,selector:null,shift:n.shift,slice:function(){return new U(this.context,this)},sort:n.sort,splice:n.splice,toArray:function(){return n.slice.call(this)},to$:function(){return V(this)},toJQuery:function(){return V(this)},unique:function(){return new U(this.context,x(this.toArray()))},unshift:n.unshift}),q.__apiStruct=ne,U.extend=function(t,e,n){if(n.length&&e&&(e instanceof U||e.__dt_wrapper))for(var a,r=0,o=n.length;r<o;r++)"__proto__"!==(a=n[r]).name&&(e[a.name]="function"===a.type?function(e,n,a){return function(){var t=n.apply(e||this,arguments);return U.extend(t,t,a.methodExt),t}}(t,a.val,a):"object"===a.type?{}:a.val,e[a.name].__dt_wrapper=!0,U.extend(t,e[a.name],a.propExt))},U.register=e=function(t,e){if(Array.isArray(t))for(var n=0,a=t.length;n<a;n++)U.register(t[n],e);else for(var r=t.split("."),o=ne,i=0,l=r.length;i<l;i++){var s,u,c=function(t,e){for(var n=0,a=t.length;n<a;n++)if(t[n].name===e)return t[n];return null}(o,u=(s=-1!==r[i].indexOf("()"))?r[i].replace("()",""):r[i]);c||o.push(c={name:u,val:{},methodExt:[],propExt:[],type:"object"}),i===l-1?(c.val=e,c.type="function"==typeof e?"function":V.isPlainObject(e)?"object":"other"):o=s?c.methodExt:c.propExt}},U.registerPlural=t=function(t,e,n){U.register(t,n),U.register(e,function(){var t=n.apply(this,arguments);return t===this?this:t instanceof U?t.length?Array.isArray(t[0])?new U(t.context,t[0]):t[0]:void 0:t})};function ae(t,e){var n,a;return Array.isArray(t)?(n=[],t.forEach(function(t){t=ae(t,e);n.push.apply(n,t)}),n.filter(function(t){return t})):"number"==typeof t?[e[t]]:(a=e.map(function(t){return t.nTable}),V(a).filter(t).map(function(){var t=a.indexOf(this);return e[t]}).toArray())}function re(r,o,t){var e,n;t&&(e=new U(r)).one("draw",function(){t(e.ajax.json())}),"ssp"==et(r)?s(r,o):(w(r,!0),(n=r.jqXHR)&&4!==n.readyState&&n.abort(),At(r,{},function(t){pt(r);for(var e=Lt(r,t),n=0,a=e.length;n<a;n++)Y(r,e[n]);s(r,o),kt(r),w(r,!1)}))}function oe(t,e,n,a,r){for(var o,i,l,s,u=[],c=typeof e,d=0,f=(e=e&&"string"!=c&&"function"!=c&&void 0!==e.length?e:[e]).length;d<f;d++)for(l=0,s=(i=e[d]&&e[d].split&&!e[d].match(/[[(:]/)?e[d].split(","):[e[d]]).length;l<s;l++)(o=(o=n("string"==typeof i[l]?i[l].trim():i[l])).filter(function(t){return null!=t}))&&o.length&&(u=u.concat(o));var h=C.selector[t];if(h.length)for(d=0,f=h.length;d<f;d++)u=h[d](a,r,u);return x(u)}function ie(t){return(t=t||{}).filter&&void 0===t.search&&(t.search=t.filter),V.extend({search:"none",order:"current",page:"all"},t)}function le(t){var e=new U(t.context[0]);return t.length&&e.push(t[0]),e.selector=t.selector,e.length&&1<e[0].length&&e[0].splice(1),e}e("tables()",function(t){return null!=t?new U(ae(t,this.context)):this}),e("table()",function(t){var t=this.tables(t),e=t.context;return e.length?new U(e[0]):t}),[["nodes","node","nTable"],["body","body","nTBody"],["header","header","nTHead"],["footer","footer","nTFoot"]].forEach(function(e){t("tables()."+e[0]+"()","table()."+e[1]+"()",function(){return this.iterator("table",function(t){return t[e[2]]},1)})}),[["header","aoHeader"],["footer","aoFooter"]].forEach(function(n){e("table()."+n[0]+".structure()",function(t){var t=this.columns(t).indexes().flatten(),e=this.context[0];return xt(e,e[n[1]],t)})}),t("tables().containers()","table().container()",function(){return this.iterator("table",function(t){return t.nTableWrapper},1)}),e("tables().every()",function(n){var a=this;return this.iterator("table",function(t,e){n.call(a.table(e),e)})}),e("caption()",function(r,o){var t,e=this.context;return void 0===r?(t=e[0].captionNode)&&e.length?t.innerHTML:null:this.iterator("table",function(t){var e=V(t.nTable),n=V(t.captionNode),a=V(t.nTableWrapper);n.length||(n=V("<caption/>").html(r),t.captionNode=n[0],o)||(e.prepend(n),o=n.css("caption-side")),n.html(r),o&&(n.css("caption-side",o),n[0]._captionSide=o),(a.find("div.dataTables_scroll").length?(t="top"===o?"Head":"Foot",a.find("div.dataTables_scroll"+t+" table")):e).prepend(n)},1)}),e("caption.node()",function(){var t=this.context;return t.length?t[0].captionNode:null}),e("draw()",function(e){return this.iterator("table",function(t){"page"===e?S(t):s(t,!1===(e="string"==typeof e?"full-hold"!==e:e))})}),e("page()",function(e){return void 0===e?this.page.info().page:this.iterator("table",function(t){Ht(t,e)})}),e("page.info()",function(){var t,e,n,a,r;if(0!==this.context.length)return e=(t=this.context[0])._iDisplayStart,n=t.oFeatures.bPaginate?t._iDisplayLength:-1,a=t.fnRecordsDisplay(),{page:(r=-1===n)?0:Math.floor(e/n),pages:r?1:Math.ceil(a/n),start:e,end:t.fnDisplayEnd(),length:n,recordsTotal:t.fnRecordsTotal(),recordsDisplay:a,serverSide:"ssp"===et(t)}}),e("page.len()",function(e){return void 0===e?0!==this.context.length?this.context[0]._iDisplayLength:void 0:this.iterator("table",function(t){Mt(t,e)})}),e("ajax.json()",function(){var t=this.context;if(0<t.length)return t[0].json}),e("ajax.params()",function(){var t=this.context;if(0<t.length)return t[0].oAjaxData}),e("ajax.reload()",function(e,n){return this.iterator("table",function(t){re(t,!1===n,e)})}),e("ajax.url()",function(e){var t=this.context;return void 0===e?0===t.length?void 0:(t=t[0],V.isPlainObject(t.ajax)?t.ajax.url:t.ajax):this.iterator("table",function(t){V.isPlainObject(t.ajax)?t.ajax.url=e:t.ajax=e})}),e("ajax.url().load()",function(e,n){return this.iterator("table",function(t){re(t,!1===n,e)})});function se(o,i,t,e){function l(t,e){var n;if(Array.isArray(t)||t instanceof V)for(var a=0,r=t.length;a<r;a++)l(t[a],e);else t.nodeName&&"tr"===t.nodeName.toLowerCase()?(t.setAttribute("data-dt-row",i.idx),s.push(t)):(n=V("<tr><td></td></tr>").attr("data-dt-row",i.idx).addClass(e),V("td",n).addClass(e).html(t)[0].colSpan=W(o),s.push(n[0]))}var s=[];l(t,e),i._details&&i._details.detach(),i._details=V(s),i._detailsShow&&i._details.insertAfter(i.nTr)}function ue(t,e){var n=t.context;if(n.length&&t.length){var a=n[0].aoData[t[0]];if(a._details){(a._detailsShow=e)?(a._details.insertAfter(a.nTr),V(a.nTr).addClass("dt-hasChild")):(a._details.detach(),V(a.nTr).removeClass("dt-hasChild")),tt(n[0],null,"childRow",[e,t.row(t[0])]);var i=n[0],r=new U(i),a=".dt.DT_details",e="draw"+a,t="column-sizing"+a,a="destroy"+a,l=i.aoData;if(r.off(e+" "+t+" "+a),f(l,"_details").length>0){r.on(e,function(t,e){if(i!==e)return;r.rows({page:"current"}).eq(0).each(function(t){var e=l[t];if(e._detailsShow)e._details.insertAfter(e.nTr)})});r.on(t,function(t,e){if(i!==e)return;var n,a=W(e);for(var r=0,o=l.length;r<o;r++){n=l[r];if(n&&n._details)n._details.each(function(){var t=V(this).children("td");if(t.length==1)t.attr("colspan",a)})}});r.on(a,function(t,e){if(i!==e)return;for(var n=0,a=l.length;n<a;n++)if(l[n]&&l[n]._details)me(r,n)})}ge(n)}}}function ce(t,e,n,a,r,o){for(var i=[],l=0,s=r.length;l<s;l++)i.push(G(t,r[l],e,o));return i}function de(t,e,n){var a=t.aoHeader;return a[void 0!==n?n:t.bSortCellsTop?0:a.length-1][e].cell}function fe(e,n){return function(t){return y(t)||"string"!=typeof t||(t=t.replace(d," "),e&&(t=I(t)),n&&(t=O(t,!1))),t}}var he=function(t,e){var n,a=[],r=t.aiDisplay,o=t.aiDisplayMaster,i=e.search,l=e.order,e=e.page;if("ssp"==et(t))return"removed"===i?[]:h(0,o.length);if("current"==e)for(u=t._iDisplayStart,c=t.fnDisplayEnd();u<c;u++)a.push(r[u]);else if("current"==l||"applied"==l){if("none"==i)a=o.slice();else if("applied"==i)a=r.slice();else if("removed"==i){for(var s={},u=0,c=r.length;u<c;u++)s[r[u]]=null;o.forEach(function(t){Object.prototype.hasOwnProperty.call(s,t)||a.push(t)})}}else if("index"==l||"original"==l)for(u=0,c=t.aoData.length;u<c;u++)t.aoData[u]&&("none"==i||-1===(n=r.indexOf(u))&&"removed"==i||0<=n&&"applied"==i)&&a.push(u);else if("number"==typeof l){var d=zt(t,l,"asc");if("none"===i)a=d;else for(u=0;u<d.length;u++)(-1===(n=r.indexOf(d[u]))&&"removed"==i||0<=n&&"applied"==i)&&a.push(d[u])}return a},pe=(e("rows()",function(n,a){void 0===n?n="":V.isPlainObject(n)&&(a=n,n=""),a=ie(a);var t=this.iterator("table",function(t){return e=oe("row",e=n,function(n){var t=g(n),a=r.aoData;if(null!==t&&!o)return[t];if(i=i||he(r,o),null!==t&&-1!==i.indexOf(t))return[t];if(null==n||""===n)return i;if("function"==typeof n)return i.map(function(t){var e=a[t];return n(t,e._aData,e.nTr)?t:null});if(n.nodeName)return t=n._DT_RowIndex,e=n._DT_CellIndex,void 0!==t?a[t]&&a[t].nTr===n?[t]:[]:e?a[e.row]&&a[e.row].nTr===n.parentNode?[e.row]:[]:(t=V(n).closest("*[data-dt-row]")).length?[t.data("dt-row")]:[];if("string"==typeof n&&"#"===n.charAt(0)){var e=r.aIds[n.replace(/^#/,"")];if(void 0!==e)return[e.idx]}t=b(v(r.aoData,i,"nTr"));return V(t).filter(n).map(function(){return this._DT_RowIndex}).toArray()},r=t,o=a),"current"!==o.order&&"applied"!==o.order||qt(r,e),e;var r,e,o,i},1);return t.selector.rows=n,t.selector.opts=a,t}),e("rows().nodes()",function(){return this.iterator("row",function(t,e){return t.aoData[e].nTr||void 0},1)}),e("rows().data()",function(){return this.iterator(!0,"rows",function(t,e){return v(t.aoData,e,"_aData")},1)}),t("rows().cache()","row().cache()",function(n){return this.iterator("row",function(t,e){t=t.aoData[e];return"search"===n?t._aFilterData:t._aSortData},1)}),t("rows().invalidate()","row().invalidate()",function(n){return this.iterator("row",function(t,e){gt(t,e,n)})}),t("rows().indexes()","row().index()",function(){return this.iterator("row",function(t,e){return e},1)}),t("rows().ids()","row().id()",function(t){for(var e=[],n=this.context,a=0,r=n.length;a<r;a++)for(var o=0,i=this[a].length;o<i;o++){var l=n[a].rowIdFn(n[a].aoData[this[a][o]]._aData);e.push((!0===t?"#":"")+l)}return new U(n,e)}),t("rows().remove()","row().remove()",function(){return this.iterator("row",function(t,e){var n=t.aoData,a=n[e],r=t.aiDisplayMaster.indexOf(e),r=(-1!==r&&t.aiDisplayMaster.splice(r,1),0<t._iRecordsDisplay&&t._iRecordsDisplay--,Kt(t),t.rowIdFn(a._aData));void 0!==r&&delete t.aIds[r],n[e]=null}),this}),e("rows.add()",function(o){var t=this.iterator("table",function(t){for(var e,n=[],a=0,r=o.length;a<r;a++)(e=o[a]).nodeName&&"TR"===e.nodeName.toUpperCase()?n.push(ut(t,e)[0]):n.push(Y(t,e));return n},1),e=this.rows(-1);return e.pop(),e.push.apply(e,t),e}),e("row()",function(t,e){return le(this.rows(t,e))}),e("row().data()",function(t){var e,n=this.context;return void 0===t?n.length&&this.length&&this[0].length?n[0].aoData[this[0]]._aData:void 0:((e=n[0].aoData[this[0]])._aData=t,Array.isArray(t)&&e.nTr&&e.nTr.id&&m(n[0].rowId)(t,e.nTr.id),gt(n[0],this[0],"data"),this)}),e("row().node()",function(){var t=this.context;if(t.length&&this.length&&this[0].length){t=t[0].aoData[this[0]];if(t&&t.nTr)return t.nTr}return null}),e("row.add()",function(e){e instanceof V&&e.length&&(e=e[0]);var t=this.iterator("table",function(t){return e.nodeName&&"TR"===e.nodeName.toUpperCase()?ut(t,e)[0]:Y(t,e)});return this.row(t[0])}),V(_).on("plugin-init.dt",function(t,e){var a=new U(e);a.on("stateSaveParams.DT",function(t,e,n){for(var a=e.rowIdFn,r=e.aiDisplayMaster,o=[],i=0;i<r.length;i++){var l=r[i],l=e.aoData[l];l._detailsShow&&o.push("#"+a(l._aData))}n.childRows=o}),a.on("stateLoaded.DT",function(t,e,n){pe(a,n)}),pe(a,a.state.loaded())}),function(t,e){e&&e.childRows&&t.rows(e.childRows.map(function(t){return t.replace(/([^:\\]*(?:\\.[^:\\]*)*):/g,"$1\\:")})).every(function(){tt(t.settings()[0],null,"requestChild",[this])})}),ge=$.util.throttle(function(t){Gt(t[0])},500),me=function(t,e){var n=t.context;n.length&&(e=n[0].aoData[void 0!==e?e:t[0]])&&e._details&&(e._details.remove(),e._detailsShow=void 0,e._details=void 0,V(e.nTr).removeClass("dt-hasChild"),ge(n))},ve="row().child",be=ve+"()",ye=(e(be,function(t,e){var n=this.context;return void 0===t?n.length&&this.length&&n[0].aoData[this[0]]?n[0].aoData[this[0]]._details:void 0:(!0===t?this.child.show():!1===t?me(this):n.length&&this.length&&se(n[0],n[0].aoData[this[0]],t,e),this)}),e([ve+".show()",be+".show()"],function(){return ue(this,!0),this}),e([ve+".hide()",be+".hide()"],function(){return ue(this,!1),this}),e([ve+".remove()",be+".remove()"],function(){return me(this),this}),e(ve+".isShown()",function(){var t=this.context;return t.length&&this.length&&t[0].aoData[this[0]]&&t[0].aoData[this[0]]._detailsShow||!1}),/^([^:]+)?:(name|title|visIdx|visible)$/),be=(e("columns()",function(n,a){void 0===n?n="":V.isPlainObject(n)&&(a=n,n=""),a=ie(a);var t=this.iterator("table",function(t){return e=n,l=a,s=(i=t).aoColumns,u=f(s,"sName"),c=f(s,"sTitle"),t=$.util.get("[].[].cell")(i.aoHeader),d=x(E([],t)),oe("column",e,function(n){var a,t=g(n);if(""===n)return h(s.length);if(null!==t)return[0<=t?t:s.length+t];if("function"==typeof n)return a=he(i,l),s.map(function(t,e){return n(e,ce(i,e,0,0,a),de(i,e))?e:null});var e,r,o="string"==typeof n?n.match(ye):"";if(o)switch(o[2]){case"visIdx":case"visible":return o[1]?(e=parseInt(o[1],10))<0?[(r=s.map(function(t,e){return t.bVisible?e:null}))[r.length+e]]:[H(i,e)]:s.map(function(t,e){return t.bVisible?e:null});case"name":return u.map(function(t,e){return t===o[1]?e:null});case"title":return c.map(function(t,e){return t===o[1]?e:null});default:return[]}return n.nodeName&&n._DT_CellIndex?[n._DT_CellIndex.column]:(t=V(d).filter(n).map(function(){return st(this)}).toArray()).length||!n.nodeName?t:(t=V(n).closest("*[data-dt-column]")).length?[t.data("dt-column")]:[]},i,l);var i,e,l,s,u,c,d},1);return t.selector.cols=n,t.selector.opts=a,t}),t("columns().header()","column().header()",function(n){return this.iterator("column",function(t,e){return de(t,e,n)},1)}),t("columns().footer()","column().footer()",function(n){return this.iterator("column",function(t,e){return t.aoFooter.length?t.aoFooter[void 0!==n?n:0][e].cell:null},1)}),t("columns().data()","column().data()",function(){return this.iterator("column-rows",ce,1)}),t("columns().render()","column().render()",function(o){return this.iterator("column-rows",function(t,e,n,a,r){return ce(t,e,0,0,r,o)},1)}),t("columns().dataSrc()","column().dataSrc()",function(){return this.iterator("column",function(t,e){return t.aoColumns[e].mData},1)}),t("columns().cache()","column().cache()",function(o){return this.iterator("column-rows",function(t,e,n,a,r){return v(t.aoData,r,"search"===o?"_aFilterData":"_aSortData",e)},1)}),t("columns().init()","column().init()",function(){return this.iterator("column",function(t,e){return t.aoColumns[e]},1)}),t("columns().nodes()","column().nodes()",function(){return this.iterator("column-rows",function(t,e,n,a,r){return v(t.aoData,r,"anCells",e)},1)}),t("columns().titles()","column().title()",function(n,a){return this.iterator("column",function(t,e){"number"==typeof n&&(a=n,n=void 0);e=V("span.dt-column-title",this.column(e).header(a));return void 0!==n?(e.html(n),this):e.html()},1)}),t("columns().types()","column().type()",function(){return this.iterator("column",function(t,e){e=t.aoColumns[e].sType;return e||B(t),e},1)}),t("columns().visible()","column().visible()",function(n,a){var e=this,r=[],t=this.iterator("column",function(t,e){if(void 0===n)return t.aoColumns[e].bVisible;!function(t,e,n){var a,r,o=t.aoColumns,i=o[e],l=t.aoData;if(void 0===n)return i.bVisible;if(i.bVisible===n)return!1;if(n)for(var s=f(o,"bVisible").indexOf(!0,e+1),u=0,c=l.length;u<c;u++)l[u]&&(r=l[u].nTr,a=l[u].anCells,r)&&r.insertBefore(a[e],a[s]||null);else V(f(t.aoData,"anCells",e)).detach();return i.bVisible=n,Bt(t),!0}(t,e,n)||r.push(e)});return void 0!==n&&this.iterator("table",function(t){St(t,t.aoHeader),St(t,t.aoFooter),t.aiDisplay.length||V(t.nTBody).find("td[colspan]").attr("colspan",W(t)),Gt(t),e.iterator("column",function(t,e){r.includes(e)&&tt(t,null,"column-visibility",[t,e,n,a])}),r.length&&(void 0===a||a)&&e.columns.adjust()}),t}),t("columns().widths()","column().width()",function(){var t=this.columns(":visible").count(),t=V("<tr>").html("<td>"+Array(t).join("</td><td>")+"</td>"),n=(V(this.table().body()).append(t),t.children().map(function(){return V(this).outerWidth()}));return t.remove(),this.iterator("column",function(t,e){t=T(t,e);return null!==t?n[t]:0},1)}),t("columns().indexes()","column().index()",function(n){return this.iterator("column",function(t,e){return"visible"===n?T(t,e):e},1)}),e("columns.adjust()",function(){return this.iterator("table",function(t){M(t)},1)}),e("column.index()",function(t,e){var n;if(0!==this.context.length)return n=this.context[0],"fromVisible"===t||"toData"===t?H(n,e):"fromData"===t||"toVisible"===t?T(n,e):void 0}),e("column()",function(t,e){return le(this.columns(t,e))}),e("cells()",function(g,t,m){var a,r,o,i,l,s,e;return V.isPlainObject(g)&&(void 0===g.row?(m=g,g=null):(m=t,t=null)),V.isPlainObject(t)&&(m=t,t=null),null==t?this.iterator("table",function(t){return a=t,t=g,e=ie(m),d=a.aoData,f=he(a,e),n=b(v(d,f,"anCells")),h=V(E([],n)),p=a.aoColumns.length,oe("cell",t,function(t){var e,n="function"==typeof t;if(null==t||n){for(o=[],i=0,l=f.length;i<l;i++)for(r=f[i],s=0;s<p;s++)u={row:r,column:s},(!n||(c=d[r],t(u,G(a,r,s),c.anCells?c.anCells[s]:null)))&&o.push(u);return o}return V.isPlainObject(t)?void 0!==t.column&&void 0!==t.row&&-1!==f.indexOf(t.row)?[t]:[]:(e=h.filter(t).map(function(t,e){return{row:e._DT_CellIndex.row,column:e._DT_CellIndex.column}}).toArray()).length||!t.nodeName?e:(c=V(t).closest("*[data-dt-row]")).length?[{row:c.data("dt-row"),column:c.data("dt-column")}]:[]},a,e);var a,e,r,o,i,l,s,u,c,d,f,n,h,p}):(e=m?{page:m.page,order:m.order,search:m.search}:{},a=this.columns(t,e),r=this.rows(g,e),e=this.iterator("table",function(t,e){var n=[];for(o=0,i=r[e].length;o<i;o++)for(l=0,s=a[e].length;l<s;l++)n.push({row:r[e][o],column:a[e][l]});return n},1),e=m&&m.selected?this.cells(e,m):e,V.extend(e.selector,{cols:t,rows:g,opts:m}),e)}),t("cells().nodes()","cell().node()",function(){return this.iterator("cell",function(t,e,n){t=t.aoData[e];return t&&t.anCells?t.anCells[n]:void 0},1)}),e("cells().data()",function(){return this.iterator("cell",function(t,e,n){return G(t,e,n)},1)}),t("cells().cache()","cell().cache()",function(a){return a="search"===a?"_aFilterData":"_aSortData",this.iterator("cell",function(t,e,n){return t.aoData[e][a][n]},1)}),t("cells().render()","cell().render()",function(a){return this.iterator("cell",function(t,e,n){return G(t,e,n,a)},1)}),t("cells().indexes()","cell().index()",function(){return this.iterator("cell",function(t,e,n){return{row:e,column:n,columnVisible:T(t,n)}},1)}),t("cells().invalidate()","cell().invalidate()",function(a){return this.iterator("cell",function(t,e,n){gt(t,e,a,n)})}),e("cell()",function(t,e,n){return le(this.cells(t,e,n))}),e("cell().data()",function(t){var e,n,a,r,o,i=this.context,l=this[0];return void 0===t?i.length&&l.length?G(i[0],l[0].row,l[0].column):void 0:(e=i[0],n=l[0].row,a=l[0].column,r=e.aoColumns[a],o=e.aoData[n]._aData,r.fnSetData(o,t,{settings:e,row:n,col:a}),gt(i[0],l[0].row,"data",l[0].column),this)}),e("order()",function(e,t){var n=this.context,a=Array.prototype.slice.call(arguments);return void 0===e?0!==n.length?n[0].aaSorting:void 0:("number"==typeof e?e=[[e,t]]:1<a.length&&(e=a),this.iterator("table",function(t){t.aaSorting=Array.isArray(e)?e.slice():e}))}),e("order.listener()",function(e,n,a){return this.iterator("table",function(t){Vt(t,e,{},n,a)})}),e("order.fixed()",function(e){var t;return e?this.iterator("table",function(t){t.aaSortingFixed=V.extend(!0,{},e)}):(t=(t=this.context).length?t[0].aaSortingFixed:void 0,Array.isArray(t)?{pre:t}:t)}),e(["columns().order()","column().order()"],function(n){var a=this;return n?this.iterator("table",function(t,e){t.aaSorting=a[e].map(function(t){return[t,n]})}):this.iterator("column",function(t,e){for(var n=$t(t),a=0,r=n.length;a<r;a++)if(n[a].col===e)return n[a].dir;return null},1)}),t("columns().orderable()","column().orderable()",function(n){return this.iterator("column",function(t,e){t=t.aoColumns[e];return n?t.asSorting:t.bSortable},1)}),e("processing()",function(e){return this.iterator("table",function(t){w(t,e)})}),e("search()",function(e,n,a,r){var t=this.context;return void 0===e?0!==t.length?t[0].oPreviousSearch.search:void 0:this.iterator("table",function(t){t.oFeatures.bFilter&&Nt(t,"object"==typeof n?V.extend(t.oPreviousSearch,n,{search:e}):V.extend(t.oPreviousSearch,{search:e,regex:null!==n&&n,smart:null===a||a,caseInsensitive:null===r||r}))})}),e("search.fixed()",function(e,n){var t=this.iterator(!0,"table",function(t){t=t.searchFixed;return e?void 0===n?t[e]:(null===n?delete t[e]:t[e]=n,this):Object.keys(t)});return void 0!==e&&void 0===n?t[0]:t}),t("columns().search()","column().search()",function(a,r,o,i){return this.iterator("column",function(t,e){var n=t.aoPreSearchCols;if(void 0===a)return n[e].search;t.oFeatures.bFilter&&("object"==typeof r?V.extend(n[e],r,{search:a}):V.extend(n[e],{search:a,regex:null!==r&&r,smart:null===o||o,caseInsensitive:null===i||i}),Nt(t,t.oPreviousSearch))})}),e(["columns().search.fixed()","column().search.fixed()"],function(n,a){var t=this.iterator(!0,"column",function(t,e){t=t.aoColumns[e].searchFixed;return n?void 0===a?t[n]:(null===a?delete t[n]:t[n]=a,this):Object.keys(t)});return void 0!==n&&void 0===a?t[0]:t}),e("state()",function(t,e){var n;return t?(n=V.extend(!0,{},t),this.iterator("table",function(t){!1!==e&&(n.time=+new Date+100),Jt(t,n,function(){})})):this.context.length?this.context[0].oSavedState:null}),e("state.clear()",function(){return this.iterator("table",function(t){t.fnStateSaveCallback.call(t.oInstance,t,{})})}),e("state.loaded()",function(){return this.context.length?this.context[0].oLoadedState:null}),e("state.save()",function(){return this.iterator("table",function(t){Gt(t)})}),$.use=function(t,e){"lib"===e||t.fn?V=t:"win"==e||t.document?_=(q=t).document:"datetime"!==e&&"DateTime"!==t.type||($.DateTime=t)},$.factory=function(t,e){var n=!1;return t&&t.document&&(_=(q=t).document),e&&e.fn&&e.fn.jquery&&(V=e,n=!0),n},$.versionCheck=function(t,e){for(var n,a,r=(e||$.version).split("."),o=t.split("."),i=0,l=o.length;i<l;i++)if((n=parseInt(r[i],10)||0)!==(a=parseInt(o[i],10)||0))return a<n;return!0},$.isDataTable=function(t){var r=V(t).get(0),o=!1;return t instanceof $.Api||(V.each($.settings,function(t,e){var n=e.nScrollHead?V("table",e.nScrollHead)[0]:null,a=e.nScrollFoot?V("table",e.nScrollFoot)[0]:null;e.nTable!==r&&n!==r&&a!==r||(o=!0)}),o)},$.tables=function(e){var t=!1,n=(V.isPlainObject(e)&&(t=e.api,e=e.visible),$.settings.filter(function(t){return!(e&&!V(t.nTable).is(":visible"))}).map(function(t){return t.nTable}));return t?new U(n):n},$.camelToHungarian=z,e("$()",function(t,e){e=this.rows(e).nodes(),e=V(e);return V([].concat(e.filter(t).toArray(),e.find(t).toArray()))}),V.each(["on","one","off"],function(t,n){e(n+"()",function(){var t=Array.prototype.slice.call(arguments),e=(t[0]=t[0].split(/\s/).map(function(t){return t.match(/\.dt\b/)?t:t+".dt"}).join(" "),V(this.tables().nodes()));return e[n].apply(e,t),this})}),e("clear()",function(){return this.iterator("table",function(t){pt(t)})}),e("error()",function(e){return this.iterator("table",function(t){Z(t,0,e)})}),e("settings()",function(){return new U(this.context,this.context)}),e("init()",function(){var t=this.context;return t.length?t[0].oInit:null}),e("data()",function(){return this.iterator("table",function(t){return f(t.aoData,"_aData")}).flatten()}),e("trigger()",function(e,n,a){return this.iterator("table",function(t){return tt(t,null,e,n,a)}).flatten()}),e("ready()",function(t){var e=this.context;return t?this.tables().every(function(){this.context[0]._bInitComplete?t.call(this):this.on("init",function(){t.call(this)})}):e.length?e[0]._bInitComplete||!1:null}),e("destroy()",function(c){return c=c||!1,this.iterator("table",function(t){var e=t.oClasses,n=t.nTable,a=t.nTBody,r=t.nTHead,o=t.nTFoot,i=V(n),a=V(a),l=V(t.nTableWrapper),s=t.aoData.map(function(t){return t?t.nTr:null}),u=e.order,o=(t.bDestroying=!0,tt(t,"aoDestroyCallback","destroy",[t],!0),c||new U(t).columns().visible(!0),l.off(".DT").find(":not(tbody *)").off(".DT"),V(q).off(".DT-"+t.sInstance),n!=r.parentNode&&(i.children("thead").detach(),i.append(r)),o&&n!=o.parentNode&&(i.children("tfoot").detach(),i.append(o)),t.colgroup.remove(),t.aaSorting=[],t.aaSortingFixed=[],Yt(t),V("th, td",r).removeClass(u.canAsc+" "+u.canDesc+" "+u.isAsc+" "+u.isDesc).css("width",""),a.children().detach(),a.append(s),t.nTableWrapper.parentNode),r=t.nTableWrapper.nextSibling,u=c?"remove":"detach",a=(i[u](),l[u](),!c&&o&&(o.insertBefore(n,r),i.css("width",t.sDestroyWidth).removeClass(e.table)),$.settings.indexOf(t));-1!==a&&$.settings.splice(a,1)})}),V.each(["column","row","cell"],function(t,s){e(s+"s().every()",function(a){var r,o=this.selector.opts,i=this,l=0;return this.iterator("every",function(t,e,n){r=i[s](e,o),"cell"===s?a.call(r,r[0][0].row,r[0][0].column,n,l):a.call(r,e,n,l),l++})})}),e("i18n()",function(t,e,n){var a=this.context[0],t=J(t)(a.oLanguage);return"string"==typeof(t=V.isPlainObject(t=void 0===t?e:t)?void 0!==n&&void 0!==t[n]?t[n]:t._:t)?t.replace("%d",n):t}),$.version="2.0.8",$.settings=[],$.models={},$.models.oSearch={caseInsensitive:!0,search:"",regex:!1,smart:!0,return:!1},$.models.oRow={nTr:null,anCells:null,_aData:[],_aSortData:null,_aFilterData:null,_sFilterRow:null,src:null,idx:-1,displayData:null},$.models.oColumn={idx:null,aDataSort:null,asSorting:null,bSearchable:null,bSortable:null,bVisible:null,_sManualType:null,_bAttrSrc:!1,fnCreatedCell:null,fnGetData:null,fnSetData:null,mData:null,mRender:null,sClass:null,sContentPadding:null,sDefaultContent:null,sName:null,sSortDataType:"std",sSortingClass:null,sTitle:null,sType:null,sWidth:null,sWidthOrig:null,maxLenString:null,searchFixed:null},$.defaults={aaData:null,aaSorting:[[0,"asc"]],aaSortingFixed:[],ajax:null,aLengthMenu:[10,25,50,100],aoColumns:null,aoColumnDefs:null,aoSearchCols:[],bAutoWidth:!0,bDeferRender:!0,bDestroy:!1,bFilter:!0,bInfo:!0,bLengthChange:!0,bPaginate:!0,bProcessing:!1,bRetrieve:!1,bScrollCollapse:!1,bServerSide:!1,bSort:!0,bSortMulti:!0,bSortCellsTop:null,bSortClasses:!0,bStateSave:!1,fnCreatedRow:null,fnDrawCallback:null,fnFooterCallback:null,fnFormatNumber:function(t){return t.toString().replace(/\B(?=(\d{3})+(?!\d))/g,this.oLanguage.sThousands)},fnHeaderCallback:null,fnInfoCallback:null,fnInitComplete:null,fnPreDrawCallback:null,fnRowCallback:null,fnStateLoadCallback:function(t){try{return JSON.parse((-1===t.iStateDuration?sessionStorage:localStorage).getItem("DataTables_"+t.sInstance+"_"+location.pathname))}catch(t){return{}}},fnStateLoadParams:null,fnStateLoaded:null,fnStateSaveCallback:function(t,e){try{(-1===t.iStateDuration?sessionStorage:localStorage).setItem("DataTables_"+t.sInstance+"_"+location.pathname,JSON.stringify(e))}catch(t){}},fnStateSaveParams:null,iStateDuration:7200,iDisplayLength:10,iDisplayStart:0,iTabIndex:0,oClasses:{},oLanguage:{oAria:{orderable:": Activate to sort",orderableReverse:": Activate to invert sorting",orderableRemove:": Activate to remove sorting",paginate:{first:"First",last:"Last",next:"Next",previous:"Previous"}},oPaginate:{sFirst:"«",sLast:"»",sNext:"›",sPrevious:"‹"},entries:{_:"entries",1:"entry"},sEmptyTable:"No data available in table",sInfo:"Showing _START_ to _END_ of _TOTAL_ _ENTRIES-TOTAL_",sInfoEmpty:"Showing 0 to 0 of 0 _ENTRIES-TOTAL_",sInfoFiltered:"(filtered from _MAX_ total _ENTRIES-MAX_)",sInfoPostFix:"",sDecimal:"",sThousands:",",sLengthMenu:"_MENU_ _ENTRIES_ per page",sLoadingRecords:"Loading...",sProcessing:"",sSearch:"Search:",sSearchPlaceholder:"",sUrl:"",sZeroRecords:"No matching records found"},oSearch:V.extend({},$.models.oSearch),layout:{topStart:"pageLength",topEnd:"search",bottomStart:"info",bottomEnd:"paging"},sDom:null,searchDelay:null,sPaginationType:"full_numbers",sScrollX:"",sScrollXInner:"",sScrollY:"",sServerMethod:"GET",renderer:null,rowId:"DT_RowId",caption:null},k($.defaults),$.defaults.column={aDataSort:null,iDataSort:-1,ariaTitle:"",asSorting:["asc","desc",""],bSearchable:!0,bSortable:!0,bVisible:!0,fnCreatedCell:null,mData:null,mRender:null,sCellType:"td",sClass:"",sContentPadding:"",sDefaultContent:null,sName:"",sSortDataType:"std",sTitle:null,sType:null,sWidth:null},k($.defaults.column),$.models.oSettings={oFeatures:{bAutoWidth:null,bDeferRender:null,bFilter:null,bInfo:!0,bLengthChange:!0,bPaginate:null,bProcessing:null,bServerSide:null,bSort:null,bSortMulti:null,bSortClasses:null,bStateSave:null},oScroll:{bCollapse:null,iBarWidth:0,sX:null,sXInner:null,sY:null},oLanguage:{fnInfoCallback:null},oBrowser:{bScrollbarLeft:!1,barWidth:0},ajax:null,aanFeatures:[],aoData:[],aiDisplay:[],aiDisplayMaster:[],aIds:{},aoColumns:[],aoHeader:[],aoFooter:[],oPreviousSearch:{},searchFixed:{},aoPreSearchCols:[],aaSorting:null,aaSortingFixed:[],sDestroyWidth:0,aoRowCallback:[],aoHeaderCallback:[],aoFooterCallback:[],aoDrawCallback:[],aoRowCreatedCallback:[],aoPreDrawCallback:[],aoInitComplete:[],aoStateSaveParams:[],aoStateLoadParams:[],aoStateLoaded:[],sTableId:"",nTable:null,nTHead:null,nTFoot:null,nTBody:null,nTableWrapper:null,bInitialised:!1,aoOpenRows:[],sDom:null,searchDelay:null,sPaginationType:"two_button",pagingControls:0,iStateDuration:0,aoStateSave:[],aoStateLoad:[],oSavedState:null,oLoadedState:null,bAjaxDataGet:!0,jqXHR:null,json:void 0,oAjaxData:void 0,sServerMethod:null,fnFormatNumber:null,aLengthMenu:null,iDraw:0,bDrawing:!1,iDrawError:-1,_iDisplayLength:10,_iDisplayStart:0,_iRecordsTotal:0,_iRecordsDisplay:0,oClasses:{},bFiltered:!1,bSorted:!1,bSortCellsTop:null,oInit:null,aoDestroyCallback:[],fnRecordsTotal:function(){return"ssp"==et(this)?+this._iRecordsTotal:this.aiDisplayMaster.length},fnRecordsDisplay:function(){return"ssp"==et(this)?+this._iRecordsDisplay:this.aiDisplay.length},fnDisplayEnd:function(){var t=this._iDisplayLength,e=this._iDisplayStart,n=e+t,a=this.aiDisplay.length,r=this.oFeatures,o=r.bPaginate;return r.bServerSide?!1===o||-1===t?e+a:Math.min(e+t,this._iRecordsDisplay):!o||a<n||-1===t?a:n},oInstance:null,sInstance:null,iTabIndex:0,nScrollHead:null,nScrollFoot:null,aLastSort:[],oPlugins:{},rowIdFn:null,rowId:null,caption:"",captionNode:null,colgroup:null},$.ext.pager);V.extend(be,{simple:function(){return["previous","next"]},full:function(){return["first","previous","next","last"]},numbers:function(){return["numbers"]},simple_numbers:function(){return["previous","numbers","next"]},full_numbers:function(){return["first","previous","numbers","next","last"]},first_last:function(){return["first","last"]},first_last_numbers:function(){return["first","numbers","last"]},_numbers:Ne,numbers_length:7}),V.extend(!0,$.ext.renderer,{pagingButton:{_:function(t,e,n,a,r){var t=t.oClasses.paging,o=[t.button];return a&&o.push(t.active),r&&o.push(t.disabled),{display:a="ellipsis"===e?V('<span class="ellipsis"></span>').html(n)[0]:V("<button>",{class:o.join(" "),role:"link",type:"button"}).html(n),clicker:a}}},pagingContainer:{_:function(t,e){return e}}});function De(t){return t.replace(/[\W]/g,"_")}function xe(t,e,n,a,r){return q.moment?t[e](r):q.luxon?t[n](r):a?t[a](r):t}var Se=!1;function Te(t,e,n){var a;if(q.moment){if(!(a=q.moment.utc(t,e,n,!0)).isValid())return null}else if(q.luxon){if(!(a=e&&"string"==typeof t?q.luxon.DateTime.fromFormat(t,e):q.luxon.DateTime.fromISO(t)).isValid)return null;a.setLocale(n)}else e?(Se||alert("DataTables warning: Formatted date without Moment.js or Luxon - https://datatables.net/tn/17"),Se=!0):a=new Date(t);return a}function we(s){return function(a,r,o,i){0===arguments.length?(o="en",a=r=null):1===arguments.length?(o="en",r=a,a=null):2===arguments.length&&(o=r,r=a,a=null);var l="datetime"+(r?"-"+De(r):"");return $.ext.type.order[l]||$.type(l,{detect:function(t){return t===l&&l},order:{pre:function(t){return t.valueOf()}},className:"dt-right"}),function(t,e){var n;return null==t&&(t="--now"===i?(n=new Date,new Date(Date.UTC(n.getFullYear(),n.getMonth(),n.getDate(),n.getHours(),n.getMinutes(),n.getSeconds()))):""),"type"===e?l:""===t?"sort"!==e?"":Te("0000-01-01 00:00:00",null,o):!(null===r||a!==r||"sort"===e||"type"===e||t instanceof Date)||null===(n=Te(t,a,o))?t:"sort"===e?n:(t=null===r?xe(n,"toDate","toJSDate","")[s]():xe(n,"format","toFormat","toISOString",r),"display"===e?u(t):t)}}}var _e=",",Ce=".";if(void 0!==q.Intl)try{for(var Ie=(new Intl.NumberFormat).formatToParts(100000.1),a=0;a<Ie.length;a++)"group"===Ie[a].type?_e=Ie[a].value:"decimal"===Ie[a].type&&(Ce=Ie[a].value)}catch(t){}$.datetime=function(n,a){var r="datetime-detect-"+De(n);a=a||"en",$.ext.type.order[r]||$.type(r,{detect:function(t){var e=Te(t,n,a);return!(""!==t&&!e)&&r},order:{pre:function(t){return Te(t,n,a)||0}},className:"dt-right"})},$.render={date:we("toLocaleDateString"),datetime:we("toLocaleString"),time:we("toLocaleTimeString"),number:function(r,o,i,l,s){return null==r&&(r=_e),null==o&&(o=Ce),{display:function(t){if("number"!=typeof t&&"string"!=typeof t)return t;if(""===t||null===t)return t;var e=t<0?"-":"",n=parseFloat(t),a=Math.abs(n);if(1e11<=a||a<1e-4&&0!==a)return(a=n.toExponential(i).split(/e\+?/))[0]+" x 10<sup>"+a[1]+"</sup>";if(isNaN(n))return u(t);n=n.toFixed(i),t=Math.abs(n);a=parseInt(t,10),n=i?o+(t-a).toFixed(i).substring(2):"";return(e=0===a&&0===parseFloat(n)?"":e)+(l||"")+a.toString().replace(/\B(?=(\d{3})+(?!\d))/g,r)+n+(s||"")}}},text:function(){return{display:u,filter:u}}};var i=$.ext.type,Ae=($.type=function(a,t,e){if(!t)return{className:i.className[a],detect:i.detect.find(function(t){return t.name===a}),order:{pre:i.order[a+"-pre"],asc:i.order[a+"-asc"],desc:i.order[a+"-desc"]},render:i.render[a],search:i.search[a]};function n(t,e){i[t][a]=e}function r(n){function t(t,e){return!0===(t=n(t,e))?a:t}Object.defineProperty(t,"name",{value:a});var e=i.detect.findIndex(function(t){return t.name===a});-1===e?i.detect.unshift(t):i.detect.splice(e,1,t)}function o(t){i.order[a+"-pre"]=t.pre,i.order[a+"-asc"]=t.asc,i.order[a+"-desc"]=t.desc}void 0===e&&(e=t,t=null),"className"===t?n("className",e):"detect"===t?r(e):"order"===t?o(e):"render"===t?n("render",e):"search"===t?n("search",e):t||(e.className&&n("className",e.className),void 0!==e.detect&&r(e.detect),e.order&&o(e.order),void 0!==e.render&&n("render",e.render),void 0!==e.search&&n("search",e.search))},$.types=function(){return i.detect.map(function(t){return t.name})},$.type("string",{detect:function(){return"string"},order:{pre:function(t){return y(t)?"":"string"==typeof t?t.toLowerCase():t.toString?t.toString():""}},search:fe(!1,!0)}),$.type("html",{detect:function(t){return y(t)||"string"==typeof t&&-1!==t.indexOf("<")?"html":null},order:{pre:function(t){return y(t)?"":t.replace?I(t).trim().toLowerCase():t+""}},search:fe(!0,!0)}),$.type("date",{className:"dt-type-date",detect:function(t){var e;return(!t||t instanceof Date||N.test(t))&&(null!==(e=Date.parse(t))&&!isNaN(e)||y(t))?"date":null},order:{pre:function(t){t=Date.parse(t);return isNaN(t)?-1/0:t}}}),$.type("html-num-fmt",{className:"dt-type-numeric",detect:function(t,e){e=e.oLanguage.sDecimal;return l(t,e,!0)?"html-num-fmt":null},order:{pre:function(t,e){e=e.oLanguage.sDecimal;return Ae(t,e,L,P)}},search:fe(!0,!0)}),$.type("html-num",{className:"dt-type-numeric",detect:function(t,e){e=e.oLanguage.sDecimal;return l(t,e)?"html-num":null},order:{pre:function(t,e){e=e.oLanguage.sDecimal;return Ae(t,e,L)}},search:fe(!0,!0)}),$.type("num-fmt",{className:"dt-type-numeric",detect:function(t,e){e=e.oLanguage.sDecimal;return o(t,e,!0)?"num-fmt":null},order:{pre:function(t,e){e=e.oLanguage.sDecimal;return Ae(t,e,P)}}}),$.type("num",{className:"dt-type-numeric",detect:function(t,e){e=e.oLanguage.sDecimal;return o(t,e)?"num":null},order:{pre:function(t,e){e=e.oLanguage.sDecimal;return Ae(t,e)}}}),function(t,e,n,a){var r;return 0===t||t&&"-"!==t?"number"==(r=typeof t)||"bigint"==r?t:+(t=(t=e?R(t,e):t).replace&&(n&&(t=t.replace(n,"")),a)?t.replace(a,""):t):-1/0});V.extend(!0,$.ext.renderer,{footer:{_:function(t,e,n){e.addClass(n.tfoot.cell)}},header:{_:function(d,f,h){f.addClass(h.thead.cell),d.oFeatures.bSort||f.addClass(h.order.none);var t=d.bSortCellsTop,e=f.closest("thead").find("tr"),n=f.parent().index();"disable"===f.attr("data-dt-order")||"disable"===f.parent().attr("data-dt-order")||!0===t&&0!==n||!1===t&&n!==e.length-1||V(d.nTable).on("order.dt.DT",function(t,e,n){var a,r,o,i,l,s,u,c;d===e&&(a=h.order,c=e.api.columns(f),r=d.aoColumns[c.flatten()[0]],o=c.orderable().includes(!0),i="",u=c.indexes(),l=c.orderable(!0).flatten(),s=","+n.map(function(t){return t.col}).join(",")+",",f.removeClass(a.isAsc+" "+a.isDesc).toggleClass(a.none,!o).toggleClass(a.canAsc,o&&l.includes("asc")).toggleClass(a.canDesc,o&&l.includes("desc")),-1!==(l=s.indexOf(","+u.toArray().join(",")+","))&&(s=c.order(),f.addClass(s.includes("asc")?a.isAsc:""+s.includes("desc")?a.isDesc:"")),0===l?(u=n[0],c=r.asSorting,f.attr("aria-sort","asc"===u.dir?"ascending":"descending"),i=c[u.index+1]?"Reverse":"Remove"):f.removeAttr("aria-sort"),f.attr("aria-label",o?r.ariaTitle+e.api.i18n("oAria.orderable"+i):r.ariaTitle),o)&&(f.find(".dt-column-title").attr("role","button"),f.attr("tabindex",0))})}},layout:{_:function(t,e,n){var a=V("<div/>").addClass("dt-layout-row").appendTo(e);V.each(n,function(t,e){t=e.table?"":"dt-"+t+" ";e.table&&a.addClass("dt-layout-table"),V("<div/>").attr({id:e.id||null,class:"dt-layout-cell "+t+(e.className||"")}).append(e.contents).appendTo(a)})}}}),$.feature={},$.feature.register=function(t,e,n){$.ext.features[t]=e,n&&C.feature.push({cFeature:n,fnInit:e})},$.feature.register("info",function(t,s){var e,n,u;return t.oFeatures.bInfo?(e=t.oLanguage,n=t.sTableId,u=V("<div/>",{class:t.oClasses.info.container}),s=V.extend({callback:e.fnInfoCallback,empty:e.sInfoEmpty,postfix:e.sInfoPostFix,search:e.sInfoFiltered,text:e.sInfo},s),t.aoDrawCallback.push(function(t){var e=s,n=u,a=t._iDisplayStart+1,r=t.fnDisplayEnd(),o=t.fnRecordsTotal(),i=t.fnRecordsDisplay(),l=i?e.text:e.empty;i!==o&&(l+=" "+e.search),l+=e.postfix,l=ee(t,l),e.callback&&(l=e.callback.call(t.oInstance,t,a,r,o,i,l)),n.html(l),tt(t,null,"info",[t,n[0],l])}),t._infoEl||(u.attr({"aria-live":"polite",id:n+"_info",role:"status"}),V(t.nTable).attr("aria-describedby",n+"_info"),t._infoEl=u),u):null},"i");var Le=0;function Fe(t,e,n,a){var r=t.oLanguage.oPaginate,o={display:"",active:!1,disabled:!1};switch(e){case"ellipsis":o.display="&#x2026;",o.disabled=!0;break;case"first":o.display=r.sFirst,0===n&&(o.disabled=!0);break;case"previous":o.display=r.sPrevious,0===n&&(o.disabled=!0);break;case"next":o.display=r.sNext,0!==a&&n!==a-1||(o.disabled=!0);break;case"last":o.display=r.sLast,0!==a&&n!==a-1||(o.disabled=!0);break;default:"number"==typeof e&&(o.display=t.fnFormatNumber(e+1),n===e)&&(o.active=!0)}return o}function Ne(t,e,n,a){var r=[],o=Math.floor(n/2),i=a?2:1,l=a?1:0;return e<=n?r=h(0,e):1===n?r=[t]:3===n?t<=1?r=[0,1,"ellipsis"]:e-2<=t?(r=h(e-2,e)).unshift("ellipsis"):r=["ellipsis",t,"ellipsis"]:t<=o?((r=h(0,n-i)).push("ellipsis"),a&&r.push(e-1)):e-1-o<=t?((r=h(e-(n-i),e)).unshift("ellipsis"),a&&r.unshift(0)):((r=h(t-o+i,t+o-l)).push("ellipsis"),r.unshift("ellipsis"),a&&(r.push(e-1),r.unshift(0))),r}$.feature.register("search",function(n,t){var e,a,r,o,i,l,s,u,c,d;return n.oFeatures.bFilter?(e=n.oClasses.search,a=n.sTableId,c=n.oLanguage,r=n.oPreviousSearch,o='<input type="search" class="'+e.input+'"/>',-1===(t=V.extend({placeholder:c.sSearchPlaceholder,text:c.sSearch},t)).text.indexOf("_INPUT_")&&(t.text+="_INPUT_"),t.text=ee(n,t.text),c=t.text.match(/_INPUT_$/),s=t.text.match(/^_INPUT_/),i=t.text.replace(/_INPUT_/,""),l="<label>"+t.text+"</label>",s?l="_INPUT_<label>"+i+"</label>":c&&(l="<label>"+i+"</label>_INPUT_"),(s=V("<div>").addClass(e.container).append(l.replace(/_INPUT_/,o))).find("label").attr("for","dt-search-"+Le),s.find("input").attr("id","dt-search-"+Le),Le++,u=function(t){var e=this.value;r.return&&"Enter"!==t.key||e!=r.search&&(r.search=e,Nt(n,r),n._iDisplayStart=0,S(n))},c=null!==n.searchDelay?n.searchDelay:0,d=V("input",s).val(r.search).attr("placeholder",t.placeholder).on("keyup.DT search.DT input.DT paste.DT cut.DT",c?$.util.debounce(u,c):u).on("mouseup.DT",function(t){setTimeout(function(){u.call(d[0],t)},10)}).on("keypress.DT",function(t){if(13==t.keyCode)return!1}).attr("aria-controls",a),V(n.nTable).on("search.dt.DT",function(t,e){n===e&&d[0]!==_.activeElement&&d.val("function"!=typeof r.search?r.search:"")}),s):null},"f"),$.feature.register("paging",function(t,e){if(!t.oFeatures.bPaginate)return null;(e=V.extend({buttons:$.ext.pager.numbers_length,type:t.sPaginationType,boundaryNumbers:!0},e)).numbers&&(e.buttons=e.numbers);function n(){!function t(e,n,a){if(!e._bInitComplete)return;var r=$.ext.pager[a.type],o=e.oLanguage.oAria.paginate||{},i=e._iDisplayStart,l=e._iDisplayLength,s=e.fnRecordsDisplay(),u=-1===l,c=u?0:Math.ceil(i/l),d=u?1:Math.ceil(s/l),f=r().map(function(t){return"numbers"===t?Ne(c,d,a.buttons,a.boundaryNumbers):t}).flat();var h=[];for(var p=0;p<f.length;p++){var g=f[p],m=Fe(e,g,c,d),v=te(e,"pagingButton")(e,g,m.display,m.active,m.disabled);V(v.clicker).attr({"aria-controls":e.sTableId,"aria-disabled":m.disabled?"true":null,"aria-current":m.active?"page":null,"aria-label":o[g],"data-dt-idx":g,tabIndex:m.disabled?-1:e.iTabIndex}),"number"!=typeof g&&V(v.clicker).addClass(g),Qt(v.clicker,{action:g},function(t){t.preventDefault(),Ht(e,t.data.action,!0)}),h.push(v.display)}i=te(e,"pagingContainer")(e,h);u=n.find(_.activeElement).data("dt-idx");n.empty().append(i);void 0!==u&&n.find("[data-dt-idx="+u+"]").trigger("focus");h.length&&1<a.numbers&&V(n).height()>=2*V(h[0]).outerHeight()-10&&t(e,n,V.extend({},a,{numbers:a.numbers-2}))}(t,a,e)}var a=V("<div/>").addClass(t.oClasses.paging.container+" paging_"+e.type);return t.aoDrawCallback.push(n),V(t.nTable).on("column-sizing.dt.DT",n),a},"p");var je=0;return $.feature.register("pageLength",function(a,t){var e=a.oFeatures;if(!e.bPaginate||!e.bLengthChange)return null;t=V.extend({menu:a.aLengthMenu,text:a.oLanguage.sLengthMenu},t);var e=a.oClasses.length,n=a.sTableId,r=t.menu,o=[],i=[];if(Array.isArray(r[0]))o=r[0],i=r[1];else for(p=0;p<r.length;p++)V.isPlainObject(r[p])?(o.push(r[p].value),i.push(r[p].label)):(o.push(r[p]),i.push(r[p]));for(var l=t.text.match(/_MENU_$/),s=t.text.match(/^_MENU_/),u=t.text.replace(/_MENU_/,""),t="<label>"+t.text+"</label>",c=(s?t="_MENU_<label>"+u+"</label>":l&&(t="<label>"+u+"</label>_MENU_"),V("<div/>").addClass(e.container).append(t.replace("_MENU_","<span></span>"))),d=[],f=(c.find("label")[0].childNodes.forEach(function(t){t.nodeType===Node.TEXT_NODE&&d.push({el:t,text:t.textContent})}),function(e){d.forEach(function(t){t.el.textContent=ee(a,t.text,e)})}),h=V("<select/>",{name:n+"_length","aria-controls":n,class:e.select}),p=0;p<o.length;p++)h[0][p]=new Option("number"==typeof i[p]?a.fnFormatNumber(i[p]):i[p],o[p]);return c.find("label").attr("for","dt-length-"+je),h.attr("id","dt-length-"+je),je++,c.find("span").replaceWith(h),V("select",c).val(a._iDisplayLength).on("change.DT",function(){Mt(a,V(this).val()),S(a)}),V(a.nTable).on("length.dt.DT",function(t,e,n){a===e&&(V("select",c).val(n),f(n))}),f(a._iDisplayLength),c},"l"),((V.fn.dataTable=$).$=V).fn.dataTableSettings=$.settings,V.fn.dataTableExt=$.ext,V.fn.DataTable=function(t){return V(this).dataTable(t).api()},V.each($,function(t,e){V.fn.DataTable[t]=e}),$});
+
+/*! DataTables styling integration
+ * © SpryMedia Ltd - datatables.net/license
+ */
+!function(t){var o,d;"function"==typeof define&&define.amd?define(["jquery","datatables.net"],function(e){return t(e,window,document)}):"object"==typeof exports?(o=require("jquery"),d=function(e,n){n.fn.dataTable||require("datatables.net")(e,n)},"undefined"==typeof window?module.exports=function(e,n){return e=e||window,n=n||o(e),d(e,n),t(n,0,e.document)}:(d(window,o),module.exports=t(o,window,window.document))):t(jQuery,window,document)}(function(e,n,t){"use strict";return e.fn.dataTable});
+
+/*! AutoFill 2.7.0
+ * © SpryMedia Ltd - datatables.net/license
+ */
+!function(o){var i,n;"function"==typeof define&&define.amd?define(["jquery","datatables.net"],function(t){return o(t,window,document)}):"object"==typeof exports?(i=require("jquery"),n=function(t,e){e.fn.dataTable||require("datatables.net")(t,e)},"undefined"==typeof window?module.exports=function(t,e){return t=t||window,e=e||i(t),n(t,e),o(e,t,t.document)}:(n(window,i),module.exports=o(i,window,window.document))):o(jQuery,window,document)}(function(f,r,m){"use strict";function d(t,e){if(!p.versionCheck||!p.versionCheck("1.11"))throw"Warning: AutoFill requires DataTables 1.11 or greater";this.c=f.extend(!0,{},p.defaults.autoFill,d.defaults,e),this.s={dt:new p.Api(t),namespace:".autoFill"+o++,scroll:{},scrollInterval:null,handle:{height:0,width:0},enabled:!1},this.dom={closeButton:f('<div class="dtaf-popover-close">&times;</div>'),handle:f('<div class="dt-autofill-handle"/>'),select:{top:f('<div class="dt-autofill-select top"/>'),right:f('<div class="dt-autofill-select right"/>'),bottom:f('<div class="dt-autofill-select bottom"/>'),left:f('<div class="dt-autofill-select left"/>')},background:f('<div class="dt-autofill-background"/>'),list:f('<div class="dt-autofill-list">'+this.s.dt.i18n("autoFill.info","")+"</div>").attr("aria-modal",!0).attr("role","dialog").append('<div class="dt-autofill-list-items"></div>'),dtScroll:null,offsetParent:null},this._constructor()}var p=f.fn.dataTable,o=0,t=(f.extend(d.prototype,{enabled:function(){return this.s.enabled},enable:function(t){var e=this;if(!1===t)return this.disable();this.s.enabled=!0,this._focusListener(),this.dom.handle.on("mousedown touchstart",function(t){return e._mousedown(t),!1}),f(r).on("resize",function(){0<f("div.dt-autofill-handle").length&&void 0!==e.dom.attachedTo&&e._attach(e.dom.attachedTo)});function o(){e.s.handle={height:!1,width:!1},f(e.dom.handle).css({height:"",width:""}),void 0!==e.dom.attachedTo&&e._attach(e.dom.attachedTo)}return f(r).on("orientationchange",function(){setTimeout(function(){o(),setTimeout(o,150)},50)}),this},disable:function(){return this.s.enabled=!1,this._focusListenerRemove(),this},_constructor:function(){var t=this,e=this.s.dt,o=f("div.dataTables_scrollBody",this.s.dt.table().container());e.settings()[0].autoFill=this,o.length&&"static"===(this.dom.dtScroll=o).css("position")&&o.css("position","relative"),!1!==this.c.enable&&this.enable(),e.on("destroy.autoFill",function(){t._focusListenerRemove()})},_attach:function(t){var e=this.s.dt,o=e.cell(t).index(),i=this.dom.handle,n=this.s.handle;o&&-1!==e.columns(this.c.columns).indexes().indexOf(o.column)?(this.dom.offsetParent||(this.dom.offsetParent=f(e.table().node()).offsetParent()),n.height&&n.width||(i.appendTo("body"),n.height=i.outerHeight(),n.width=i.outerWidth()),o=this._getPosition(t,this.dom.offsetParent),this.dom.attachedTo=t,i.css({top:o.top+t.offsetHeight-n.height,left:o.left+t.offsetWidth-n.width}).appendTo(this.dom.offsetParent)):this._detach()},_actionSelector:function(o){var t,i,n=this,l=this.s.dt,s=d.actions,a=[];f.each(s,function(t,e){e.available(l,o)&&a.push(t)}),1===a.length&&!1===this.c.alwaysAsk?(t=s[a[0]].execute(l,o),this._update(t,o)):(1<a.length||this.c.alwaysAsk)&&(i=this.dom.list.children("div.dt-autofill-list-items").empty(),a.push("cancel"),f.each(a,function(t,e){i.append(f("<button/>").html(s[e].option(l,o)).append(f('<span class="dt-autofill-button"/>').html(l.i18n("autoFill.button","&gt;"))).on("click",function(t){"button"===t.target.nodeName.toLowerCase()&&(t=s[e].execute(l,o,f(this).closest("button")),n._update(t,o),n.dom.background.remove(),n.dom.list.remove())}))}),this.dom.background.appendTo("body"),this.dom.background.one("click",function(){n.dom.background.remove(),n.dom.list.remove()}),this.dom.list.appendTo("body"),this.c.closeButton&&(this.dom.list.prepend(this.dom.closeButton).addClass(d.classes.closeable),this.dom.closeButton.on("click",function(){return n.dom.background.click()})),this.dom.list.css("margin-top",this.dom.list.outerHeight()/2*-1))},_detach:function(){this.dom.attachedTo=null,this.dom.handle.detach()},_drawSelection:function(t,e){var o,i=this.s.dt,n=this.s.start,l=f(this.dom.start),t={row:this.c.vertical?i.rows({page:"current"}).nodes().indexOf(t.parentNode):n.row,column:this.c.horizontal?f(t).index():n.column},s=i.column.index("toData",t.column),a=i.row(":eq("+t.row+")",{page:"current"}),a=f(i.cell(a.index(),s).node());i.cell(a).any()&&-1!==i.columns(this.c.columns).indexes().indexOf(s)&&-1!==t.row&&(this.s.end=t,i=n.row<t.row?l:a,s=n.row<t.row?a:l,o=n.column<t.column?l:a,n=n.column<t.column?a:l,i=this._getPosition(i.get(0)).top,o=this._getPosition(o.get(0)).left,t=this._getPosition(s.get(0)).top+s.outerHeight()-i,a=this._getPosition(n.get(0)).left+n.outerWidth()-o,(l=this.dom.select).top.css({top:i,left:o,width:a}),l.left.css({top:i,left:o,height:t}),l.bottom.css({top:i+t,left:o,width:a}),l.right.css({top:i,left:o+a,height:t}))},_editor:function(t){var e=this.s.dt,o=this.c.editor;if(o){for(var i={},n=[],l=o.fields(),s=0,a=t.length;s<a;s++)for(var d=0,r=t[s].length;d<r;d++){var c=t[s][d],u=e.settings()[0].aoColumns[c.index.column],h=u.editField;if(void 0===h)for(var f=u.mData,m=0,p=l.length;m<p;m++){var v=o.field(l[m]);if(v.dataSrc()===f){h=v.name();break}}if(!h)throw"Could not automatically determine field data. Please see https://datatables.net/tn/11";i[h]||(i[h]={});u=e.row(c.index.row).id();i[h][u]=c.set,n.push(c.index)}o.bubble(n,!1).multiSet(i).submit(null,function(){o.close()})}},_emitEvent:function(o,i){this.s.dt.iterator("table",function(t,e){f(t.nTable).triggerHandler(o+".dt",i)})},_focusListener:function(){var i=this,e=this.s.dt,t=this.s.namespace,o=null!==this.c.focus?this.c.focus:e.init().keys||e.settings()[0].keytable?"focus":"hover";"focus"===o?e.on("key-focus.autoFill",function(t,e,o){i._attach(o.node())}).on("key-blur.autoFill",function(t,e,o){i._detach()}):"click"===o?(f(e.table().body()).on("click"+t,"td, th",function(t){i._attach(this)}),f(m.body).on("click"+t,function(t){f(t.target).parents().filter(e.table().body()).length||i._detach()})):f(e.table().body()).on("mouseenter"+t+" touchstart"+t,"td, th",function(t){i._attach(this)}).on("mouseleave"+t+"touchend"+t,function(t){f(t.relatedTarget).hasClass("dt-autofill-handle")||i._detach()})},_focusListenerRemove:function(){var t=this.s.dt;t.off(".autoFill"),f(t.table().body()).off(this.s.namespace),f(m.body).off(this.s.namespace)},_getPosition:function(t,e){var o=t,i=0,n=0;e=e||f(f(this.s.dt.table().node())[0].offsetParent);do{var l=o.offsetTop,s=o.offsetLeft,a=f(o.offsetParent)}while((i+=l+ +parseInt(a.css("border-top-width")||0),n+=s+ +parseInt(a.css("border-left-width")||0),"body"!==o.nodeName.toLowerCase())&&(o=a.get(0),a.get(0)!==e.get(0)));return{top:i,left:n}},_mousedown:function(t){var e=this,o=this.s.dt,i=(this.dom.start=this.dom.attachedTo,this.s.start={row:o.rows({page:"current"}).nodes().indexOf(f(this.dom.start).parent()[0]),column:f(this.dom.start).index()},f(m.body).on("mousemove.autoFill touchmove.autoFill",function(t){e._mousemove(t),"touchmove"===t.type&&f(m.body).one("touchend.autoFill",function(){e._detach()})}).on("mouseup.autoFill touchend.autoFill",function(t){e._mouseup(t)}),this.dom.select),o=f(o.table().node()).offsetParent(),i=(i.top.appendTo(o),i.left.appendTo(o),i.right.appendTo(o),i.bottom.appendTo(o),this._drawSelection(this.dom.start,t),this.dom.handle.css("display","none"),this.dom.dtScroll);this.s.scroll={windowHeight:f(r).height(),windowWidth:f(r).width(),dtTop:i?i.offset().top:null,dtLeft:i?i.offset().left:null,dtHeight:i?i.outerHeight():null,dtWidth:i?i.outerWidth():null}},_mousemove:function(t){var e=t.touches&&t.touches.length?m.elementFromPoint(t.touches[0].clientX,t.touches[0].clientY):t.target,o=e.nodeName.toLowerCase();"td"!==o&&"th"!==o||(this._drawSelection(e,t),this._shiftScroll(t))},_mouseup:function(t){f(m.body).off(".autoFill");var e=this,n=this.s.dt,o=this.dom.select,o=(o.top.remove(),o.left.remove(),o.right.remove(),o.bottom.remove(),this.dom.handle.css("display","block"),this.s.start),i=this.s.end;if(o.row!==i.row||o.column!==i.column){var l,s=n.cell(":eq("+o.row+")",o.column+":visible",{page:"current"});if(f("div.DTE",s.node()).length)(l=n.editor()).on("submitSuccess.dtaf close.dtaf",function(){l.off(".dtaf"),setTimeout(function(){e._mouseup(t)},100)}).on("submitComplete.dtaf preSubmitCancelled.dtaf close.dtaf",function(){l.off(".dtaf")}),l.submit();else{for(var a=this._range(o.row,i.row),d=this._range(o.column,i.column),r=[],c=n.settings()[0].aoColumns,u=n.columns(this.c.columns).indexes(),h=0;h<a.length;h++)r.push(f.map(d,function(t){var e=n.row(":eq("+a[h]+")",{page:"current"}),e=n.cell(e.index(),t+":visible"),t=e.data(),o=e.index(),i=c[o.column].editField;if(void 0!==i&&(t=p.util.get(i)(n.row(o.row).data())),-1!==u.indexOf(o.column))return{cell:e,data:t,label:e.data(),index:o}}));this._actionSelector(r),clearInterval(this.s.scrollInterval),this.s.scrollInterval=null}}},_range:function(t,e){var o,i=[];if(t<=e)for(o=t;o<=e;o++)i.push(o);else for(o=t;e<=o;o--)i.push(o);return i},_shiftScroll:function(t){var e,o,i,n,l=this,s=this.s.scroll,a=!1,d=t.type.includes("touch")?t.touches[0].clientX:t.pageX-r.scrollX,t=t.type.includes("touch")?t.touches[0].clientY:t.pageY-r.scrollY;t<65?e=-5:t>s.windowHeight-65&&(e=5),d<65?o=-5:d>s.windowWidth-65&&(o=5),null!==s.dtTop&&t<s.dtTop+65?i=-5:null!==s.dtTop&&t>s.dtTop+s.dtHeight-65&&(i=5),null!==s.dtLeft&&d<s.dtLeft+65?n=-5:null!==s.dtLeft&&d>s.dtLeft+s.dtWidth-65&&(n=5),e||o||i||n?(s.windowVert=e,s.windowHoriz=o,s.dtVert=i,s.dtHoriz=n,a=!0):this.s.scrollInterval&&(clearInterval(this.s.scrollInterval),this.s.scrollInterval=null),!this.s.scrollInterval&&a&&(this.s.scrollInterval=setInterval(function(){var t;r.scrollTo(r.scrollX+(s.windowHoriz||0),r.scrollY+(s.windowVert||0)),(s.dtVert||s.dtHoriz)&&(t=l.dom.dtScroll[0],s.dtVert&&(t.scrollTop+=s.dtVert),s.dtHoriz)&&(t.scrollLeft+=s.dtHoriz)},20))},_update:function(t,e){if(!1!==t){var o,t=this.s.dt,i=t.columns(this.c.columns).indexes();if(this._emitEvent("preAutoFill",[t,e]),this._editor(e),null!==this.c.update?this.c.update:!this.c.editor){for(var n=0,l=e.length;n<l;n++)for(var s=0,a=e[n].length;s<a;s++)o=e[n][s],-1!==i.indexOf(o.index.column)&&o.cell.data(o.set);t.draw(!1)}this._emitEvent("autoFill",[t,e])}}}),d.actions={increment:{available:function(t,e){e=e[0][0].label;return!isNaN(e-parseFloat(e))},option:function(t,e){return t.i18n("autoFill.increment",'Increment / decrement each cell by: <input type="number" value="1">')},execute:function(t,e,o){for(var i=+e[0][0].data,n=+f("input",o).val(),l=0,s=e.length;l<s;l++)for(var a=0,d=e[l].length;a<d;a++)e[l][a].set=i,i+=n}},fill:{available:function(t,e){return!0},option:function(t,e){return t.i18n("autoFill.fill","Fill all cells with <i>%d</i>",e[0][0].label)},execute:function(t,e,o){for(var i=e[0][0].data,n=0,l=e.length;n<l;n++)for(var s=0,a=e[n].length;s<a;s++)e[n][s].set=i}},fillHorizontal:{available:function(t,e){return 1<e.length&&1<e[0].length},option:function(t,e){return t.i18n("autoFill.fillHorizontal","Fill cells horizontally")},execute:function(t,e,o){for(var i=0,n=e.length;i<n;i++)for(var l=0,s=e[i].length;l<s;l++)e[i][l].set=e[i][0].data}},fillVertical:{available:function(t,e){return 1<e.length&&1<e[0].length},option:function(t,e){return t.i18n("autoFill.fillVertical","Fill cells vertically")},execute:function(t,e,o){for(var i=0,n=e.length;i<n;i++)for(var l=0,s=e[i].length;l<s;l++)e[i][l].set=e[0][l].data}},cancel:{available:function(){return!1},option:function(t){return t.i18n("autoFill.cancel","Cancel")},execute:function(){return!1}}},d.version="2.7.0",d.defaults={alwaysAsk:!1,closeButton:!0,focus:null,columns:"",enable:!0,update:null,editor:null,vertical:!0,horizontal:!0},d.classes={btn:"btn",closeable:"dtaf-popover-closeable"},f.fn.dataTable.Api);return t.register("autoFill()",function(){return this}),t.register("autoFill().enabled()",function(){var t=this.context[0];return!!t.autoFill&&t.autoFill.enabled()}),t.register("autoFill().enable()",function(e){return this.iterator("table",function(t){t.autoFill&&t.autoFill.enable(e)})}),t.register("autoFill().disable()",function(){return this.iterator("table",function(t){t.autoFill&&t.autoFill.disable()})}),f(m).on("preInit.dt.autofill",function(t,e,o){var i,n;"dt"===t.namespace&&(t=e.oInit.autoFill,i=p.defaults.autoFill,t||i)&&(n=f.extend({},t,i),!1!==t)&&new d(e,n)}),p.AutoFill=d,f.fn.DataTable.AutoFill=d,p});
+
+/*! DataTables styling wrapper for AutoFill
+ * ©2018 SpryMedia Ltd - datatables.net/license
+ */
+!function(n){var o,d;"function"==typeof define&&define.amd?define(["jquery","datatables.net-dt","datatables.net-autofill"],function(e){return n(e,window,document)}):"object"==typeof exports?(o=require("jquery"),d=function(e,t){t.fn.dataTable||require("datatables.net-dt")(e,t),t.fn.dataTable.AutoFill||require("datatables.net-autofill")(e,t)},"undefined"==typeof window?module.exports=function(e,t){return e=e||window,t=t||o(e),d(e,t),n(t,0,e.document)}:(d(window,o),module.exports=n(o,window,window.document))):n(jQuery,window,document)}(function(e,t,n){"use strict";return e.fn.dataTable});
+
+/*! Buttons for DataTables 3.0.2
+ * © SpryMedia Ltd - datatables.net/license
+ */
+!function(e){var o,i;"function"==typeof define&&define.amd?define(["jquery","datatables.net"],function(t){return e(t,window,document)}):"object"==typeof exports?(o=require("jquery"),i=function(t,n){n.fn.dataTable||require("datatables.net")(t,n)},"undefined"==typeof window?module.exports=function(t,n){return t=t||window,n=n||o(t),i(t,n),e(n,t,t.document)}:(i(window,o),module.exports=e(o,window,window.document))):e(jQuery,window,document)}(function(x,g,m){"use strict";var e=x.fn.dataTable,o=0,C=0,w=e.ext.buttons,i=null;function v(t,n,e){x.fn.animate?t.stop().fadeIn(n,e):(t.css("display","block"),e&&e.call(t))}function y(t,n,e){x.fn.animate?t.stop().fadeOut(n,e):(t.css("display","none"),e&&e.call(t))}function _(n,t){if(!e.versionCheck("2"))throw"Warning: Buttons requires DataTables 2 or newer";if(!(this instanceof _))return function(t){return new _(t,n).container()};!0===(t=void 0===t?{}:t)&&(t={}),Array.isArray(t)&&(t={buttons:t}),this.c=x.extend(!0,{},_.defaults,t),t.buttons&&(this.c.buttons=t.buttons),this.s={dt:new e.Api(n),buttons:[],listenKeys:"",namespace:"dtb"+o++},this.dom={container:x("<"+this.c.dom.container.tag+"/>").addClass(this.c.dom.container.className)},this._constructor()}x.extend(_.prototype,{action:function(t,n){t=this._nodeToButton(t);return void 0===n?t.conf.action:(t.conf.action=n,this)},active:function(t,n){var t=this._nodeToButton(t),e=this.c.dom.button.active,o=x(t.node);return t.inCollection&&this.c.dom.collection.button&&void 0!==this.c.dom.collection.button.active&&(e=this.c.dom.collection.button.active),void 0===n?o.hasClass(e):(o.toggleClass(e,void 0===n||n),this)},add:function(t,n,e){var o=this.s.buttons;if("string"==typeof n){for(var i=n.split("-"),s=this.s,r=0,a=i.length-1;r<a;r++)s=s.buttons[+i[r]];o=s.buttons,n=+i[i.length-1]}return this._expandButton(o,t,void 0!==t?t.split:void 0,(void 0===t||void 0===t.split||0===t.split.length)&&void 0!==s,!1,n),void 0!==e&&!0!==e||this._draw(),this},collectionRebuild:function(t,n){var e=this._nodeToButton(t);if(void 0!==n){for(var o=e.buttons.length-1;0<=o;o--)this.remove(e.buttons[o].node);for(e.conf.prefixButtons&&n.unshift.apply(n,e.conf.prefixButtons),e.conf.postfixButtons&&n.push.apply(n,e.conf.postfixButtons),o=0;o<n.length;o++){var i=n[o];this._expandButton(e.buttons,i,void 0!==i&&void 0!==i.config&&void 0!==i.config.split,!0,void 0!==i.parentConf&&void 0!==i.parentConf.split,null,i.parentConf)}}this._draw(e.collection,e.buttons)},container:function(){return this.dom.container},disable:function(t){t=this._nodeToButton(t);return x(t.node).addClass(this.c.dom.button.disabled).prop("disabled",!0),this},destroy:function(){x("body").off("keyup."+this.s.namespace);for(var t=this.s.buttons.slice(),n=0,e=t.length;n<e;n++)this.remove(t[n].node);this.dom.container.remove();var o=this.s.dt.settings()[0];for(n=0,e=o.length;n<e;n++)if(o.inst===this){o.splice(n,1);break}return this},enable:function(t,n){return!1===n?this.disable(t):(n=this._nodeToButton(t),x(n.node).removeClass(this.c.dom.button.disabled).prop("disabled",!1),this)},index:function(t,n,e){n||(n="",e=this.s.buttons);for(var o=0,i=e.length;o<i;o++){var s=e[o].buttons;if(e[o].node===t)return n+o;if(s&&s.length){s=this.index(t,o+"-",s);if(null!==s)return s}}return null},name:function(){return this.c.name},node:function(t){return t?(t=this._nodeToButton(t),x(t.node)):this.dom.container},processing:function(t,n){var e=this.s.dt,o=this._nodeToButton(t);return void 0===n?x(o.node).hasClass("processing"):(x(o.node).toggleClass("processing",n),x(e.table().node()).triggerHandler("buttons-processing.dt",[n,e.button(t),e,x(t),o.conf]),this)},remove:function(t){var n=this._nodeToButton(t),e=this._nodeToHost(t),o=this.s.dt;if(n.buttons.length)for(var i=n.buttons.length-1;0<=i;i--)this.remove(n.buttons[i].node);n.conf.destroying=!0,n.conf.destroy&&n.conf.destroy.call(o.button(t),o,x(t),n.conf),this._removeKey(n.conf),x(n.node).remove();o=x.inArray(n,e);return e.splice(o,1),this},text:function(t,n){function e(t){return"function"==typeof t?t(i,s,o.conf):t}var o=this._nodeToButton(t),t=o.textNode,i=this.s.dt,s=x(o.node);return void 0===n?e(o.conf.text):(o.conf.text=n,t.html(e(n)),this)},_constructor:function(){var e=this,t=this.s.dt,o=t.settings()[0],n=this.c.buttons;o._buttons||(o._buttons=[]),o._buttons.push({inst:this,name:this.c.name});for(var i=0,s=n.length;i<s;i++)this.add(n[i]);t.on("destroy",function(t,n){n===o&&e.destroy()}),x("body").on("keyup."+this.s.namespace,function(t){var n;m.activeElement&&m.activeElement!==m.body||(n=String.fromCharCode(t.keyCode).toLowerCase(),-1!==e.s.listenKeys.toLowerCase().indexOf(n)&&e._keypress(n,t))})},_addKey:function(t){t.key&&(this.s.listenKeys+=(x.isPlainObject(t.key)?t.key:t).key)},_draw:function(t,n){t||(t=this.dom.container,n=this.s.buttons),t.children().detach();for(var e=0,o=n.length;e<o;e++)t.append(n[e].inserter),t.append(" "),n[e].buttons&&n[e].buttons.length&&this._draw(n[e].collection,n[e].buttons)},_expandButton:function(t,n,e,o,i,s,r){for(var a,l=this.s.dt,c=this.c.dom.collection,u=Array.isArray(n)?n:[n],d=0,f=(u=void 0===n?Array.isArray(e)?e:[e]:u).length;d<f;d++){var p=this._resolveExtends(u[d]);if(p)if(a=!(!p.config||!p.config.split),Array.isArray(p))this._expandButton(t,p,void 0!==h&&void 0!==h.conf?h.conf.split:void 0,o,void 0!==r&&void 0!==r.split,s,r);else{var h=this._buildButton(p,o,void 0!==p.split||void 0!==p.config&&void 0!==p.config.split,i);if(h){if(null!=s?(t.splice(s,0,h),s++):t.push(h),h.conf.buttons&&(h.collection=x("<"+c.container.content.tag+"/>"),h.conf._collection=h.collection,x(h.node).append(c.action.dropHtml),this._expandButton(h.buttons,h.conf.buttons,h.conf.split,!a,a,s,h.conf)),h.conf.split){h.collection=x("<"+c.container.tag+"/>"),h.conf._collection=h.collection;for(var b=0;b<h.conf.split.length;b++){var g=h.conf.split[b];"object"==typeof g&&(g.parent=r,void 0===g.collectionLayout&&(g.collectionLayout=h.conf.collectionLayout),void 0===g.dropup&&(g.dropup=h.conf.dropup),void 0===g.fade)&&(g.fade=h.conf.fade)}this._expandButton(h.buttons,h.conf.buttons,h.conf.split,!a,a,s,h.conf)}h.conf.parent=r,p.init&&p.init.call(l.button(h.node),l,x(h.node),p)}}}},_buildButton:function(n,t,e,o){function i(t){return"function"==typeof t?t(f,c,n):t}var s,r,a,l,c,u=this,d=this.c.dom,f=this.s.dt,p=x.extend(!0,{},d.button);if(t&&e&&d.collection.split?x.extend(!0,p,d.collection.split.action):o||t?x.extend(!0,p,d.collection.button):e&&x.extend(!0,p,d.split.button),n.spacer)return d=x("<"+p.spacer.tag+"/>").addClass("dt-button-spacer "+n.style+" "+p.spacer.className).html(i(n.text)),{conf:n,node:d,inserter:d,buttons:[],inCollection:t,isSplit:e,collection:null,textNode:d};if(n.available&&!n.available(f,n)&&!n.html)return!1;n.html?c=x(n.html):(r=function(t,n,e,o,i){o.action.call(n.button(e),t,n,e,o,i),x(n.table().node()).triggerHandler("buttons-action.dt",[n.button(e),n,e,o])},a=function(t,n,e,o){o.async?(u.processing(e[0],!0),setTimeout(function(){r(t,n,e,o,function(){u.processing(e[0],!1)})},o.async)):r(t,n,e,o,function(){})},d=n.tag||p.tag,l=void 0===n.clickBlurs||n.clickBlurs,c=x("<"+d+"/>").addClass(p.className).attr("tabindex",this.s.dt.settings()[0].iTabIndex).attr("aria-controls",this.s.dt.table().node().id).on("click.dtb",function(t){t.preventDefault(),!c.hasClass(p.disabled)&&n.action&&a(t,f,c,n),l&&c.trigger("blur")}).on("keypress.dtb",function(t){13===t.keyCode&&(t.preventDefault(),!c.hasClass(p.disabled))&&n.action&&a(t,f,c,n)}),"a"===d.toLowerCase()&&c.attr("href","#"),"button"===d.toLowerCase()&&c.attr("type","button"),s=p.liner.tag?(d=x("<"+p.liner.tag+"/>").html(i(n.text)).addClass(p.liner.className),"a"===p.liner.tag.toLowerCase()&&d.attr("href","#"),c.append(d),d):(c.html(i(n.text)),c),!1===n.enabled&&c.addClass(p.disabled),n.className&&c.addClass(n.className),n.titleAttr&&c.attr("title",i(n.titleAttr)),n.attr&&c.attr(n.attr),n.namespace||(n.namespace=".dt-button-"+C++),void 0!==n.config&&n.config.split&&(n.split=n.config.split));var h,b,g,m,v,y,d=this.c.dom.buttonContainer,d=d&&d.tag?x("<"+d.tag+"/>").addClass(d.className).append(c):c;return this._addKey(n),this.c.buttonCreated&&(d=this.c.buttonCreated(n,d)),e&&(b=(h=t?x.extend(!0,this.c.dom.split,this.c.dom.collection.split):this.c.dom.split).wrapper,g=x("<"+b.tag+"/>").addClass(b.className).append(c),m=x.extend(n,{align:h.dropdown.align,attr:{"aria-haspopup":"dialog","aria-expanded":!1},className:h.dropdown.className,closeButton:!1,splitAlignClass:h.dropdown.splitAlignClass,text:h.dropdown.text}),this._addKey(m),v=function(t,n,e,o){w.split.action.call(n.button(g),t,n,e,o),x(n.table().node()).triggerHandler("buttons-action.dt",[n.button(e),n,e,o]),e.attr("aria-expanded",!0)},y=x('<button class="'+h.dropdown.className+' dt-button"></button>').html(h.dropdown.dropHtml).on("click.dtb",function(t){t.preventDefault(),t.stopPropagation(),y.hasClass(p.disabled)||v(t,f,y,m),l&&y.trigger("blur")}).on("keypress.dtb",function(t){13===t.keyCode&&(t.preventDefault(),y.hasClass(p.disabled)||v(t,f,y,m))}),0===n.split.length&&y.addClass("dtb-hide-drop"),g.append(y).attr(m.attr)),{conf:n,node:(e?g:c).get(0),inserter:e?g:d,buttons:[],inCollection:t,isSplit:e,inSplit:o,collection:null,textNode:s}},_nodeToButton:function(t,n){for(var e=0,o=(n=n||this.s.buttons).length;e<o;e++){if(n[e].node===t)return n[e];if(n[e].buttons.length){var i=this._nodeToButton(t,n[e].buttons);if(i)return i}}},_nodeToHost:function(t,n){for(var e=0,o=(n=n||this.s.buttons).length;e<o;e++){if(n[e].node===t)return n;if(n[e].buttons.length){var i=this._nodeToHost(t,n[e].buttons);if(i)return i}}},_keypress:function(s,r){var a;r._buttonsHandled||(a=function(t){for(var n,e,o=0,i=t.length;o<i;o++)n=t[o].conf,e=t[o].node,!n.key||n.key!==s&&(!x.isPlainObject(n.key)||n.key.key!==s||n.key.shiftKey&&!r.shiftKey||n.key.altKey&&!r.altKey||n.key.ctrlKey&&!r.ctrlKey||n.key.metaKey&&!r.metaKey)||(r._buttonsHandled=!0,x(e).click()),t[o].buttons.length&&a(t[o].buttons)})(this.s.buttons)},_removeKey:function(t){var n;t.key&&(t=(x.isPlainObject(t.key)?t.key:t).key,n=this.s.listenKeys.split(""),t=x.inArray(t,n),n.splice(t,1),this.s.listenKeys=n.join(""))},_resolveExtends:function(e){function t(t){for(var n=0;!x.isPlainObject(t)&&!Array.isArray(t);){if(void 0===t)return;if("function"==typeof t){if(!(t=t.call(i,s,e)))return!1}else if("string"==typeof t){if(!w[t])return{html:t};t=w[t]}if(30<++n)throw"Buttons: Too many iterations"}return Array.isArray(t)?t:x.extend({},t)}var n,o,i=this,s=this.s.dt;for(e=t(e);e&&e.extend;){if(!w[e.extend])throw"Cannot extend unknown button type: "+e.extend;var r=t(w[e.extend]);if(Array.isArray(r))return r;if(!r)return!1;var a=r.className;void 0!==e.config&&void 0!==r.config&&(e.config=x.extend({},r.config,e.config)),e=x.extend({},r,e),a&&e.className!==a&&(e.className=a+" "+e.className),e.extend=r.extend}var l=e.postfixButtons;if(l)for(e.buttons||(e.buttons=[]),n=0,o=l.length;n<o;n++)e.buttons.push(l[n]);var c=e.prefixButtons;if(c)for(e.buttons||(e.buttons=[]),n=0,o=c.length;n<o;n++)e.buttons.splice(n,0,c[n]);return e},_popover:function(o,t,n){function i(){f=!0,y(x(h),p.fade,function(){x(this).detach()}),x(u.buttons('[aria-haspopup="dialog"][aria-expanded="true"]').nodes()).attr("aria-expanded","false"),x("div.dt-button-background").off("click.dtb-collection"),_.background(!1,p.backgroundClassName,p.fade,b),x(g).off("resize.resize.dtb-collection"),x("body").off(".dtb-collection"),u.off("buttons-action.b-internal"),u.off("destroy")}var e,s,r,a,l,c,u=t,d=this.c,f=!1,p=x.extend({align:"button-left",autoClose:!1,background:!0,backgroundClassName:"dt-button-background",closeButton:!0,containerClassName:d.dom.collection.container.className,contentClassName:d.dom.collection.container.content.className,collectionLayout:"",collectionTitle:"",dropup:!1,fade:400,popoverTitle:"",rightAlignClassName:"dt-button-right",tag:d.dom.collection.container.tag},n),h=p.tag+"."+p.containerClassName.replace(/ /g,"."),b=t.node();!1===o?i():((d=x(u.buttons('[aria-haspopup="dialog"][aria-expanded="true"]').nodes())).length&&(b.closest(h).length&&(b=d.eq(0)),i()),n=x(".dt-button",o).length,d="",3===n?d="dtb-b3":2===n?d="dtb-b2":1===n&&(d="dtb-b1"),e=x("<"+p.tag+"/>").addClass(p.containerClassName).addClass(p.collectionLayout).addClass(p.splitAlignClass).addClass(d).css("display","none").attr({"aria-modal":!0,role:"dialog"}),o=x(o).addClass(p.contentClassName).attr("role","menu").appendTo(e),b.attr("aria-expanded","true"),b.parents("body")[0]!==m.body&&(b=m.body.lastChild),p.popoverTitle?e.prepend('<div class="dt-button-collection-title">'+p.popoverTitle+"</div>"):p.collectionTitle&&e.prepend('<div class="dt-button-collection-title">'+p.collectionTitle+"</div>"),p.closeButton&&e.prepend('<div class="dtb-popover-close">&times;</div>').addClass("dtb-collection-closeable"),v(e.insertAfter(b),p.fade),n=x(t.table().container()),d=e.css("position"),"container"!==p.span&&"dt-container"!==p.align||(b=b.parent(),e.css("width",n.width())),"absolute"===d?(t=x(b[0].offsetParent),n=b.position(),d=b.offset(),a=t.offset(),s=t.position(),r=g.getComputedStyle(t[0]),a.height=t.outerHeight(),a.width=t.width()+parseFloat(r.paddingLeft),a.right=a.left+a.width,a.bottom=a.top+a.height,t=n.top+b.outerHeight(),a=n.left,e.css({top:t,left:a}),r=g.getComputedStyle(e[0]),(l=e.offset()).height=e.outerHeight(),l.width=e.outerWidth(),l.right=l.left+l.width,l.bottom=l.top+l.height,l.marginTop=parseFloat(r.marginTop),l.marginBottom=parseFloat(r.marginBottom),p.dropup&&(t=n.top-l.height-l.marginTop-l.marginBottom),"button-right"!==p.align&&!e.hasClass(p.rightAlignClassName)||(a=n.left-l.width+b.outerWidth()),"dt-container"!==p.align&&"container"!==p.align||a<n.left&&(a=-n.left),s.left+a+l.width>x(g).width()&&(a=x(g).width()-l.width-s.left),d.left+a<0&&(a=-d.left),s.top+t+l.height>x(g).height()+x(g).scrollTop()&&(t=n.top-l.height-l.marginTop-l.marginBottom),s.top+t<x(g).scrollTop()&&(t=n.top+b.outerHeight()),e.css({top:t,left:a})):((c=function(){var t=x(g).height()/2,n=e.height()/2;e.css("marginTop",-1*(n=t<n?t:n))})(),x(g).on("resize.dtb-collection",function(){c()})),p.background&&_.background(!0,p.backgroundClassName,p.fade,p.backgroundHost||b),x("div.dt-button-background").on("click.dtb-collection",function(){}),p.autoClose&&setTimeout(function(){u.on("buttons-action.b-internal",function(t,n,e,o){o[0]!==b[0]&&i()})},0),x(e).trigger("buttons-popover.dt"),u.on("destroy",i),setTimeout(function(){f=!1,x("body").on("click.dtb-collection",function(t){var n,e;!f&&(n=x.fn.addBack?"addBack":"andSelf",e=x(t.target).parent()[0],!x(t.target).parents()[n]().filter(o).length&&!x(e).hasClass("dt-buttons")||x(t.target).hasClass("dt-button-background"))&&i()}).on("keyup.dtb-collection",function(t){27===t.keyCode&&i()}).on("keydown.dtb-collection",function(t){var n=x("a, button",o),e=m.activeElement;9===t.keyCode&&(-1===n.index(e)?(n.first().focus(),t.preventDefault()):t.shiftKey?e===n[0]&&(n.last().focus(),t.preventDefault()):e===n.last()[0]&&(n.first().focus(),t.preventDefault()))})},0))}}),_.background=function(t,n,e,o){void 0===e&&(e=400),o=o||m.body,t?v(x("<div/>").addClass(n).css("display","none").insertAfter(o),e):y(x("div."+n),e,function(){x(this).removeClass(n).remove()})},_.instanceSelector=function(t,s){var r,a,l;return null==t?x.map(s,function(t){return t.inst}):(r=[],a=x.map(s,function(t){return t.name}),(l=function(t){var n;if(Array.isArray(t))for(var e=0,o=t.length;e<o;e++)l(t[e]);else if("string"==typeof t)-1!==t.indexOf(",")?l(t.split(",")):-1!==(n=x.inArray(t.trim(),a))&&r.push(s[n].inst);else if("number"==typeof t)r.push(s[t].inst);else if("object"==typeof t&&t.nodeName)for(var i=0;i<s.length;i++)s[i].inst.dom.container[0]===t&&r.push(s[i].inst);else"object"==typeof t&&r.push(t)})(t),r)},_.buttonSelector=function(t,n){for(var c=[],u=function(t,n,e){for(var o,i,s=0,r=n.length;s<r;s++)(o=n[s])&&(t.push({node:o.node,name:o.conf.name,idx:i=void 0!==e?e+s:s+""}),o.buttons)&&u(t,o.buttons,i+"-")},d=function(t,n){var e=[],o=(u(e,n.s.buttons),x.map(e,function(t){return t.node}));if(Array.isArray(t)||t instanceof x)for(s=0,r=t.length;s<r;s++)d(t[s],n);else if(null==t||"*"===t)for(s=0,r=e.length;s<r;s++)c.push({inst:n,node:e[s].node});else if("number"==typeof t)n.s.buttons[t]&&c.push({inst:n,node:n.s.buttons[t].node});else if("string"==typeof t)if(-1!==t.indexOf(","))for(var i=t.split(","),s=0,r=i.length;s<r;s++)d(i[s].trim(),n);else if(t.match(/^\d+(\-\d+)*$/)){var a=x.map(e,function(t){return t.idx});c.push({inst:n,node:e[x.inArray(t,a)].node})}else if(-1!==t.indexOf(":name")){var l=t.replace(":name","");for(s=0,r=e.length;s<r;s++)e[s].name===l&&c.push({inst:n,node:e[s].node})}else x(o).filter(t).each(function(){c.push({inst:n,node:this})});else"object"==typeof t&&t.nodeName&&-1!==(a=x.inArray(t,o))&&c.push({inst:n,node:o[a]})},e=0,o=t.length;e<o;e++){var i=t[e];d(n,i)}return c},_.stripData=function(t,n){return t="string"==typeof t&&(t=_.stripHtmlScript(t),t=_.stripHtmlComments(t),n&&!n.stripHtml||(t=e.util.stripHtml(t)),n&&!n.trim||(t=t.trim()),n&&!n.stripNewlines||(t=t.replace(/\n/g," ")),!n||n.decodeEntities)?i?i(t):(c.innerHTML=t,c.value):t},_.entityDecoder=function(t){i=t},_.stripHtmlComments=function(t){for(var n;(t=(n=t).replace(/(<!--.*?--!?>)|(<!--[\S\s]+?--!?>)|(<!--[\S\s]*?$)/g,""))!==n;);return t},_.stripHtmlScript=function(t){for(var n;(t=(n=t).replace(/<script\b[^<]*(?:(?!<\/script[^>]*>)<[^<]*)*<\/script[^>]*>/gi,""))!==n;);return t},_.defaults={buttons:["copy","excel","csv","pdf","print"],name:"main",tabIndex:0,dom:{container:{tag:"div",className:"dt-buttons"},collection:{action:{dropHtml:'<span class="dt-button-down-arrow">&#x25BC;</span>'},container:{className:"dt-button-collection",content:{className:"",tag:"div"},tag:"div"}},button:{tag:"button",className:"dt-button",active:"dt-button-active",disabled:"disabled",spacer:{className:"dt-button-spacer",tag:"span"},liner:{tag:"span",className:""}},split:{action:{className:"dt-button-split-drop-button dt-button",tag:"button"},dropdown:{align:"split-right",className:"dt-button-split-drop",dropHtml:'<span class="dt-button-down-arrow">&#x25BC;</span>',splitAlignClass:"dt-button-split-left",tag:"button"},wrapper:{className:"dt-button-split",tag:"div"}}}},x.extend(w,{collection:{text:function(t){return t.i18n("buttons.collection","Collection")},className:"buttons-collection",closeButton:!(_.version="3.0.2"),init:function(t,n){n.attr("aria-expanded",!1)},action:function(t,n,e,o){o._collection.parents("body").length?this.popover(!1,o):this.popover(o._collection,o),"keypress"===t.type&&x("a, button",o._collection).eq(0).focus()},attr:{"aria-haspopup":"dialog"}},split:{text:function(t){return t.i18n("buttons.split","Split")},className:"buttons-split",closeButton:!1,init:function(t,n){return n.attr("aria-expanded",!1)},action:function(t,n,e,o){this.popover(o._collection,o)},attr:{"aria-haspopup":"dialog"}},copy:function(){if(w.copyHtml5)return"copyHtml5"},csv:function(t,n){if(w.csvHtml5&&w.csvHtml5.available(t,n))return"csvHtml5"},excel:function(t,n){if(w.excelHtml5&&w.excelHtml5.available(t,n))return"excelHtml5"},pdf:function(t,n){if(w.pdfHtml5&&w.pdfHtml5.available(t,n))return"pdfHtml5"},pageLength:function(t){var n=t.settings()[0].aLengthMenu,e=[],o=[];if(Array.isArray(n[0]))e=n[0],o=n[1];else for(var i=0;i<n.length;i++){var s=n[i];x.isPlainObject(s)?(e.push(s.value),o.push(s.label)):(e.push(s),o.push(s))}return{extend:"collection",text:function(t){return t.i18n("buttons.pageLength",{"-1":"Show all rows",_:"Show %d rows"},t.page.len())},className:"buttons-page-length",autoClose:!0,buttons:x.map(e,function(s,t){return{text:o[t],className:"button-page-length",action:function(t,n){n.page.len(s).draw()},init:function(t,n,e){function o(){i.active(t.page.len()===s)}var i=this;t.on("length.dt"+e.namespace,o),o()},destroy:function(t,n,e){t.off("length.dt"+e.namespace)}}}),init:function(t,n,e){var o=this;t.on("length.dt"+e.namespace,function(){o.text(e.text)})},destroy:function(t,n,e){t.off("length.dt"+e.namespace)}}},spacer:{style:"empty",spacer:!0,text:function(t){return t.i18n("buttons.spacer","")}}}),e.Api.register("buttons()",function(n,e){void 0===e&&(e=n,n=void 0),this.selector.buttonGroup=n;var t=this.iterator(!0,"table",function(t){if(t._buttons)return _.buttonSelector(_.instanceSelector(n,t._buttons),e)},!0);return t._groupSelector=n,t}),e.Api.register("button()",function(t,n){t=this.buttons(t,n);return 1<t.length&&t.splice(1,t.length),t}),e.Api.registerPlural("buttons().active()","button().active()",function(n){return void 0===n?this.map(function(t){return t.inst.active(t.node)}):this.each(function(t){t.inst.active(t.node,n)})}),e.Api.registerPlural("buttons().action()","button().action()",function(n){return void 0===n?this.map(function(t){return t.inst.action(t.node)}):this.each(function(t){t.inst.action(t.node,n)})}),e.Api.registerPlural("buttons().collectionRebuild()","button().collectionRebuild()",function(e){return this.each(function(t){for(var n=0;n<e.length;n++)"object"==typeof e[n]&&(e[n].parentConf=t);t.inst.collectionRebuild(t.node,e)})}),e.Api.register(["buttons().enable()","button().enable()"],function(n){return this.each(function(t){t.inst.enable(t.node,n)})}),e.Api.register(["buttons().disable()","button().disable()"],function(){return this.each(function(t){t.inst.disable(t.node)})}),e.Api.register("button().index()",function(){var n=null;return this.each(function(t){t=t.inst.index(t.node);null!==t&&(n=t)}),n}),e.Api.registerPlural("buttons().nodes()","button().node()",function(){var n=x();return x(this.each(function(t){n=n.add(t.inst.node(t.node))})),n}),e.Api.registerPlural("buttons().processing()","button().processing()",function(n){return void 0===n?this.map(function(t){return t.inst.processing(t.node)}):this.each(function(t){t.inst.processing(t.node,n)})}),e.Api.registerPlural("buttons().text()","button().text()",function(n){return void 0===n?this.map(function(t){return t.inst.text(t.node)}):this.each(function(t){t.inst.text(t.node,n)})}),e.Api.registerPlural("buttons().trigger()","button().trigger()",function(){return this.each(function(t){t.inst.node(t.node).trigger("click")})}),e.Api.register("button().popover()",function(n,e){return this.map(function(t){return t.inst._popover(n,this.button(this[0].node),e)})}),e.Api.register("buttons().containers()",function(){var i=x(),s=this._groupSelector;return this.iterator(!0,"table",function(t){if(t._buttons)for(var n=_.instanceSelector(s,t._buttons),e=0,o=n.length;e<o;e++)i=i.add(n[e].container())}),i}),e.Api.register("buttons().container()",function(){return this.containers().eq(0)}),e.Api.register("button().add()",function(t,n,e){var o=this.context;return o.length&&(o=_.instanceSelector(this._groupSelector,o[0]._buttons)).length&&o[0].add(n,t,e),this.button(this._groupSelector,t)}),e.Api.register("buttons().destroy()",function(){return this.pluck("inst").unique().each(function(t){t.destroy()}),this}),e.Api.registerPlural("buttons().remove()","buttons().remove()",function(){return this.each(function(t){t.inst.remove(t.node)}),this}),e.Api.register("buttons.info()",function(t,n,e){var o=this;return!1===t?(this.off("destroy.btn-info"),y(x("#datatables_buttons_info"),400,function(){x(this).remove()}),clearTimeout(s),s=null):(s&&clearTimeout(s),x("#datatables_buttons_info").length&&x("#datatables_buttons_info").remove(),t=t?"<h2>"+t+"</h2>":"",v(x('<div id="datatables_buttons_info" class="dt-button-info"/>').html(t).append(x("<div/>")["string"==typeof n?"html":"append"](n)).css("display","none").appendTo("body")),void 0!==e&&0!==e&&(s=setTimeout(function(){o.buttons.info(!1)},e)),this.on("destroy.btn-info",function(){o.buttons.info(!1)})),this}),e.Api.register("buttons.exportData()",function(t){if(this.context.length)return u(new e.Api(this.context[0]),t)}),e.Api.register("buttons.exportInfo()",function(t){return{filename:n(t=t||{},this),title:a(t,this),messageTop:l(this,t,t.message||t.messageTop,"top"),messageBottom:l(this,t,t.messageBottom,"bottom")}});var s,n=function(t,n){var e;return null==(e="function"==typeof(e="*"===t.filename&&"*"!==t.title&&void 0!==t.title&&null!==t.title&&""!==t.title?t.title:t.filename)?e(t,n):e)?null:(e=(e=-1!==e.indexOf("*")?e.replace(/\*/g,x("head > title").text()).trim():e).replace(/[^a-zA-Z0-9_\u00A1-\uFFFF\.,\-_ !\(\)]/g,""))+(r(t.extension,t,n)||"")},r=function(t,n,e){return null==t?null:"function"==typeof t?t(n,e):t},a=function(t,n){t=r(t.title,t,n);return null===t?null:-1!==t.indexOf("*")?t.replace(/\*/g,x("head > title").text()||"Exported data"):t},l=function(t,n,e,o){e=r(e,n,t);return null===e?null:(n=x("caption",t.table().container()).eq(0),"*"===e?n.css("caption-side")!==o?null:n.length?n.text():"":e)},c=x("<textarea/>")[0],u=function(i,t){for(var s=x.extend(!0,{},{rows:null,columns:"",modifier:{search:"applied",order:"applied"},orthogonal:"display",stripHtml:!0,stripNewlines:!0,decodeEntities:!0,trim:!0,format:{header:function(t){return _.stripData(t,s)},footer:function(t){return _.stripData(t,s)},body:function(t){return _.stripData(t,s)}},customizeData:null,customizeZip:null},t),t=i.columns(s.columns).indexes().map(function(t){var n=i.column(t);return s.format.header(n.title(),t,n.header())}).toArray(),n=i.table().footer()?i.columns(s.columns).indexes().map(function(t){var n,e=i.column(t).footer(),o="";return e&&(o=((n=x(".dt-column-title",e)).length?n:x(e)).html()),s.format.footer(o,t,e)}).toArray():null,e=x.extend({},s.modifier),o=(i.select&&"function"==typeof i.select.info&&void 0===e.selected&&i.rows(s.rows,x.extend({selected:!0},e)).any()&&x.extend(e,{selected:!0}),i.rows(s.rows,e).indexes().toArray()),o=i.cells(o,s.columns,{order:e.order}),r=o.render(s.orthogonal).toArray(),a=o.nodes().toArray(),l=o.indexes().toArray(),c=i.columns(s.columns).count(),u=[],d=0,f=0,p=0<c?r.length/c:0;f<p;f++){for(var h=[c],b=0;b<c;b++)h[b]=s.format.body(r[d],l[d].row,l[d].column,a[d]),d++;u[f]=h}e={header:t,headerStructure:A(s.format.header,i.table().header.structure(s.columns)),footer:n,footerStructure:A(s.format.footer,i.table().footer.structure(s.columns)),body:u};return s.customizeData&&s.customizeData(e),e};function A(t,n){for(var e=0;e<n.length;e++)for(var o=0;o<n[e].length;o++){var i=n[e][o];i&&(i.title=t(i.title,o,i.cell))}return n}function t(t,n){t=new e.Api(t),n=n||t.init().buttons||e.defaults.buttons;return new _(t,n).container()}return x.fn.dataTable.Buttons=_,x.fn.DataTable.Buttons=_,x(m).on("init.dt plugin-init.dt",function(t,n){"dt"===t.namespace&&(t=n.oInit.buttons||e.defaults.buttons)&&!n._buttons&&new _(n,t).container()}),e.ext.feature.push({fnInit:t,cFeature:"B"}),e.feature&&e.feature.register("buttons",t),e});
+
+/*! DataTables styling wrapper for Buttons
+ * © SpryMedia Ltd - datatables.net/license
+ */
+!function(n){var o,d;"function"==typeof define&&define.amd?define(["jquery","datatables.net-dt","datatables.net-buttons"],function(e){return n(e,window,document)}):"object"==typeof exports?(o=require("jquery"),d=function(e,t){t.fn.dataTable||require("datatables.net-dt")(e,t),t.fn.dataTable.Buttons||require("datatables.net-buttons")(e,t)},"undefined"==typeof window?module.exports=function(e,t){return e=e||window,t=t||o(e),d(e,t),n(t,0,e.document)}:(d(window,o),module.exports=n(o,window,window.document))):n(jQuery,window,document)}(function(e,t,n){"use strict";return e.fn.dataTable});
+
+/*!
+ * Column visibility buttons for Buttons and DataTables.
+ * © SpryMedia Ltd - datatables.net/license
+ */
+!function(i){var o,e;"function"==typeof define&&define.amd?define(["jquery","datatables.net","datatables.net-buttons"],function(n){return i(n,window,document)}):"object"==typeof exports?(o=require("jquery"),e=function(n,t){t.fn.dataTable||require("datatables.net")(n,t),t.fn.dataTable.Buttons||require("datatables.net-buttons")(n,t)},"undefined"==typeof window?module.exports=function(n,t){return n=n||window,t=t||o(n),e(n,t),i(t,0,n.document)}:(e(window,o),module.exports=i(o,window,window.document))):i(jQuery,window,document)}(function(n,t,i){"use strict";var e=n.fn.dataTable;return n.extend(e.ext.buttons,{colvis:function(n,t){var i=null,o={extend:"collection",init:function(n,t){i=t},text:function(n){return n.i18n("buttons.colvis","Column visibility")},className:"buttons-colvis",closeButton:!1,buttons:[{extend:"columnsToggle",columns:t.columns,columnText:t.columnText}]};return n.on("column-reorder.dt"+t.namespace,function(){n.button(null,n.button(null,i).node()).collectionRebuild([{extend:"columnsToggle",columns:t.columns,columnText:t.columnText}])}),o},columnsToggle:function(n,t){return n.columns(t.columns).indexes().map(function(n){return{extend:"columnToggle",columns:n,columnText:t.columnText}}).toArray()},columnToggle:function(n,t){return{extend:"columnVisibility",columns:t.columns,columnText:t.columnText}},columnsVisibility:function(n,t){return n.columns(t.columns).indexes().map(function(n){return{extend:"columnVisibility",columns:n,visibility:t.visibility,columnText:t.columnText}}).toArray()},columnVisibility:{columns:void 0,text:function(n,t,i){return i._columnText(n,i)},className:"buttons-columnVisibility",action:function(n,t,i,o){var t=t.columns(o.columns),e=t.visible();t.visible(void 0!==o.visibility?o.visibility:!(e.length&&e[0]))},init:function(i,n,o){var e=this;n.attr("data-cv-idx",o.columns),i.on("column-visibility.dt"+o.namespace,function(n,t){t.bDestroying||t.nTable!=i.settings()[0].nTable||e.active(i.column(o.columns).visible())}).on("column-reorder.dt"+o.namespace,function(){o.destroying||1===i.columns(o.columns).count()&&(e.text(o._columnText(i,o)),e.active(i.column(o.columns).visible()))}),this.active(i.column(o.columns).visible())},destroy:function(n,t,i){n.off("column-visibility.dt"+i.namespace).off("column-reorder.dt"+i.namespace)},_columnText:function(n,t){var i,o;return"string"==typeof t.text?t.text:(o=n.column(t.columns).title(),i=n.column(t.columns).index(),o=o.replace(/\n/g," ").replace(/<br\s*\/?>/gi," ").replace(/<select(.*?)<\/select\s*>/gi,""),o=e.Buttons.stripHtmlComments(o),o=e.util.stripHtml(o).trim(),t.columnText?t.columnText(n,i,o):o)}},colvisRestore:{className:"buttons-colvisRestore",text:function(n){return n.i18n("buttons.colvisRestore","Restore visibility")},init:function(n,t,i){n.columns().every(function(){var n=this.init();void 0===n.__visOriginal&&(n.__visOriginal=this.visible())})},action:function(n,t,i,o){t.columns().every(function(n){var t=this.init();this.visible(t.__visOriginal)})}},colvisGroup:{className:"buttons-colvisGroup",action:function(n,t,i,o){t.columns(o.show).visible(!0,!1),t.columns(o.hide).visible(!1,!1),t.columns.adjust()},show:[],hide:[]}}),e});
+
+/*!
+ * HTML5 export buttons for Buttons and DataTables.
+ * © SpryMedia Ltd - datatables.net/license
+ *
+ * FileSaver.js (1.3.3) - MIT license
+ * Copyright © 2016 Eli Grey - http://eligrey.com
+ */
+!function(o){var l,n;"function"==typeof define&&define.amd?define(["jquery","datatables.net","datatables.net-buttons"],function(t){return o(t,window,document)}):"object"==typeof exports?(l=require("jquery"),n=function(t,e){e.fn.dataTable||require("datatables.net")(t,e),e.fn.dataTable.Buttons||require("datatables.net-buttons")(t,e)},"undefined"==typeof window?module.exports=function(t,e){return t=t||window,e=e||l(t),n(t,e),o(e,t,t.document)}:(n(window,l),module.exports=o(l,window,window.document))):o(jQuery,window,document)}(function(S,C,u){"use strict";var e,o,t=S.fn.dataTable;function T(){return e||C.JSZip}function m(){return o||C.pdfMake}t.Buttons.pdfMake=function(t){if(!t)return m();o=t},t.Buttons.jszip=function(t){if(!t)return T();e=t};function k(t){var e="Sheet1";return e=t.sheetName?t.sheetName.replace(/[\[\]\*\/\\\?\:]/g,""):e}function c(t,e){function o(t){for(var e="",o=0,l=t.length;o<l;o++)0<o&&(e+=a),e+=r?r+(""+t[o]).replace(d,p+r)+r:t[o];return e}var l=y(e),n=t.buttons.exportData(e.exportOptions),r=e.fieldBoundary,a=e.fieldSeparator,d=new RegExp(r,"g"),p=void 0!==e.escapeChar?e.escapeChar:"\\",t="",i="",f=[];e.header&&(t=n.headerStructure.map(function(t){return o(t.map(function(t){return t?t.title:""}))}).join(l)+l),e.footer&&n.footer&&(i=n.footerStructure.map(function(t){return o(t.map(function(t){return t?t.title:""}))}).join(l)+l);for(var m=0,s=n.body.length;m<s;m++)f.push(o(n.body[m]));return{str:t+f.join(l)+l+i,rows:f.length}}function s(){var t;return-1!==navigator.userAgent.indexOf("Safari")&&-1===navigator.userAgent.indexOf("Chrome")&&-1===navigator.userAgent.indexOf("Opera")&&!!((t=navigator.userAgent.match(/AppleWebKit\/(\d+\.\d+)/))&&1<t.length&&+t[1]<603.1)}var N=function(d){var p,i,f,m,s,u,e,c,y,l,t;if(!(void 0===d||"undefined"!=typeof navigator&&/MSIE [1-9]\./.test(navigator.userAgent)))return t=d.document,p=function(){return d.URL||d.webkitURL||d},i=t.createElementNS("http://www.w3.org/1999/xhtml","a"),f="download"in i,m=/constructor/i.test(d.HTMLElement)||d.safari,s=/CriOS\/[\d]+/.test(navigator.userAgent),u=function(t){(d.setImmediate||d.setTimeout)(function(){throw t},0)},e=4e4,c=function(t){setTimeout(function(){"string"==typeof t?p().revokeObjectURL(t):t.remove()},e)},y=function(t){return/^\s*(?:text\/\S*|application\/xml|\S*\/\S*\+xml)\s*;.*charset\s*=\s*utf-8/i.test(t.type)?new Blob([String.fromCharCode(65279),t],{type:t.type}):t},t=(l=function(t,o,e){e||(t=y(t));var l,n,r=this,e="application/octet-stream"===t.type,a=function(){for(var t=r,e="writestart progress write writeend".split(" "),o=void 0,l=(e=[].concat(e)).length;l--;){var n=t["on"+e[l]];if("function"==typeof n)try{n.call(t,o||t)}catch(t){u(t)}}};r.readyState=r.INIT,f?(l=p().createObjectURL(t),setTimeout(function(){var t,e;i.href=l,i.download=o,t=i,e=new MouseEvent("click"),t.dispatchEvent(e),a(),c(l),r.readyState=r.DONE})):(s||e&&m)&&d.FileReader?((n=new FileReader).onloadend=function(){var t=s?n.result:n.result.replace(/^data:[^;]*;/,"data:attachment/file;");d.open(t,"_blank")||(d.location.href=t),r.readyState=r.DONE,a()},n.readAsDataURL(t),r.readyState=r.INIT):(l=l||p().createObjectURL(t),!e&&d.open(l,"_blank")||(d.location.href=l),r.readyState=r.DONE,a(),c(l))}).prototype,"undefined"!=typeof navigator&&navigator.msSaveOrOpenBlob?function(t,e,o){return e=e||t.name||"download",o||(t=y(t)),navigator.msSaveOrOpenBlob(t,e)}:(t.abort=function(){},t.readyState=t.INIT=0,t.WRITING=1,t.DONE=2,t.error=t.onwritestart=t.onprogress=t.onwrite=t.onabort=t.onerror=t.onwriteend=null,function(t,e,o){return new l(t,e||t.name||"download",o)})}("undefined"!=typeof self&&self||void 0!==C&&C||this.content),y=(t.fileSave=N,function(t){return t.newline||(navigator.userAgent.match(/Windows/)?"\r\n":"\n")});function z(t){for(var e="A".charCodeAt(0),o="Z".charCodeAt(0)-e+1,l="";0<=t;)l=String.fromCharCode(t%o+e)+l,t=Math.floor(t/o)-1;return l}try{var O,D=new XMLSerializer}catch(t){}function E(t,e,o){var l=t.createElement(e);return o&&(o.attr&&S(l).attr(o.attr),o.children&&S.each(o.children,function(t,e){l.appendChild(e)}),null!==o.text)&&void 0!==o.text&&l.appendChild(t.createTextNode(o.text)),l}function A(t,e,o,l,n){var r=S("mergeCells",t);r[0].appendChild(E(t,"mergeCell",{attr:{ref:z(o)+e+":"+z(o+n-1)+(e+l-1)}})),r.attr("count",parseFloat(r.attr("count"))+1)}var R={"_rels/.rels":'<?xml version="1.0" encoding="UTF-8" standalone="yes"?><Relationships xmlns="http://schemas.openxmlformats.org/package/2006/relationships"><Relationship Id="rId1" Type="http://schemas.openxmlformats.org/officeDocument/2006/relationships/officeDocument" Target="xl/workbook.xml"/></Relationships>',"xl/_rels/workbook.xml.rels":'<?xml version="1.0" encoding="UTF-8" standalone="yes"?><Relationships xmlns="http://schemas.openxmlformats.org/package/2006/relationships"><Relationship Id="rId1" Type="http://schemas.openxmlformats.org/officeDocument/2006/relationships/worksheet" Target="worksheets/sheet1.xml"/><Relationship Id="rId2" Type="http://schemas.openxmlformats.org/officeDocument/2006/relationships/styles" Target="styles.xml"/></Relationships>',"[Content_Types].xml":'<?xml version="1.0" encoding="UTF-8" standalone="yes"?><Types xmlns="http://schemas.openxmlformats.org/package/2006/content-types"><Default Extension="xml" ContentType="application/xml" /><Default Extension="rels" ContentType="application/vnd.openxmlformats-package.relationships+xml" /><Default Extension="jpeg" ContentType="image/jpeg" /><Override PartName="/xl/workbook.xml" ContentType="application/vnd.openxmlformats-officedocument.spreadsheetml.sheet.main+xml" /><Override PartName="/xl/worksheets/sheet1.xml" ContentType="application/vnd.openxmlformats-officedocument.spreadsheetml.worksheet+xml" /><Override PartName="/xl/styles.xml" ContentType="application/vnd.openxmlformats-officedocument.spreadsheetml.styles+xml" /></Types>',"xl/workbook.xml":'<?xml version="1.0" encoding="UTF-8" standalone="yes"?><workbook xmlns="http://schemas.openxmlformats.org/spreadsheetml/2006/main" xmlns:r="http://schemas.openxmlformats.org/officeDocument/2006/relationships"><fileVersion appName="xl" lastEdited="5" lowestEdited="5" rupBuild="24816"/><workbookPr showInkAnnotation="0" autoCompressPictures="0"/><bookViews><workbookView xWindow="0" yWindow="0" windowWidth="25600" windowHeight="19020" tabRatio="500"/></bookViews><sheets><sheet name="Sheet1" sheetId="1" r:id="rId1"/></sheets><definedNames/></workbook>',"xl/worksheets/sheet1.xml":'<?xml version="1.0" encoding="UTF-8" standalone="yes"?><worksheet xmlns="http://schemas.openxmlformats.org/spreadsheetml/2006/main" xmlns:r="http://schemas.openxmlformats.org/officeDocument/2006/relationships" xmlns:mc="http://schemas.openxmlformats.org/markup-compatibility/2006" mc:Ignorable="x14ac" xmlns:x14ac="http://schemas.microsoft.com/office/spreadsheetml/2009/9/ac"><sheetData/><mergeCells count="0"/></worksheet>',"xl/styles.xml":'<?xml version="1.0" encoding="UTF-8"?><styleSheet xmlns="http://schemas.openxmlformats.org/spreadsheetml/2006/main" xmlns:mc="http://schemas.openxmlformats.org/markup-compatibility/2006" mc:Ignorable="x14ac" xmlns:x14ac="http://schemas.microsoft.com/office/spreadsheetml/2009/9/ac"><numFmts count="6"><numFmt numFmtId="164" formatCode="[$$-409]#,##0.00;-[$$-409]#,##0.00"/><numFmt numFmtId="165" formatCode="&quot;£&quot;#,##0.00"/><numFmt numFmtId="166" formatCode="[$€-2] #,##0.00"/><numFmt numFmtId="167" formatCode="0.0%"/><numFmt numFmtId="168" formatCode="#,##0;(#,##0)"/><numFmt numFmtId="169" formatCode="#,##0.00;(#,##0.00)"/></numFmts><fonts count="5" x14ac:knownFonts="1"><font><sz val="11" /><name val="Calibri" /></font><font><sz val="11" /><name val="Calibri" /><color rgb="FFFFFFFF" /></font><font><sz val="11" /><name val="Calibri" /><b /></font><font><sz val="11" /><name val="Calibri" /><i /></font><font><sz val="11" /><name val="Calibri" /><u /></font></fonts><fills count="6"><fill><patternFill patternType="none" /></fill><fill><patternFill patternType="none" /></fill><fill><patternFill patternType="solid"><fgColor rgb="FFD9D9D9" /><bgColor indexed="64" /></patternFill></fill><fill><patternFill patternType="solid"><fgColor rgb="FFD99795" /><bgColor indexed="64" /></patternFill></fill><fill><patternFill patternType="solid"><fgColor rgb="ffc6efce" /><bgColor indexed="64" /></patternFill></fill><fill><patternFill patternType="solid"><fgColor rgb="ffc6cfef" /><bgColor indexed="64" /></patternFill></fill></fills><borders count="2"><border><left /><right /><top /><bottom /><diagonal /></border><border diagonalUp="false" diagonalDown="false"><left style="thin"><color auto="1" /></left><right style="thin"><color auto="1" /></right><top style="thin"><color auto="1" /></top><bottom style="thin"><color auto="1" /></bottom><diagonal /></border></borders><cellStyleXfs count="1"><xf numFmtId="0" fontId="0" fillId="0" borderId="0" /></cellStyleXfs><cellXfs count="68"><xf numFmtId="0" fontId="0" fillId="0" borderId="0" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="1" fillId="0" borderId="0" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="2" fillId="0" borderId="0" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="3" fillId="0" borderId="0" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="4" fillId="0" borderId="0" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="0" fillId="2" borderId="0" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="1" fillId="2" borderId="0" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="2" fillId="2" borderId="0" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="3" fillId="2" borderId="0" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="4" fillId="2" borderId="0" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="0" fillId="3" borderId="0" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="1" fillId="3" borderId="0" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="2" fillId="3" borderId="0" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="3" fillId="3" borderId="0" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="4" fillId="3" borderId="0" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="0" fillId="4" borderId="0" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="1" fillId="4" borderId="0" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="2" fillId="4" borderId="0" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="3" fillId="4" borderId="0" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="4" fillId="4" borderId="0" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="0" fillId="5" borderId="0" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="1" fillId="5" borderId="0" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="2" fillId="5" borderId="0" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="3" fillId="5" borderId="0" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="4" fillId="5" borderId="0" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="0" fillId="0" borderId="1" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="1" fillId="0" borderId="1" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="2" fillId="0" borderId="1" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="3" fillId="0" borderId="1" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="4" fillId="0" borderId="1" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="0" fillId="2" borderId="1" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="1" fillId="2" borderId="1" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="2" fillId="2" borderId="1" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="3" fillId="2" borderId="1" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="4" fillId="2" borderId="1" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="0" fillId="3" borderId="1" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="1" fillId="3" borderId="1" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="2" fillId="3" borderId="1" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="3" fillId="3" borderId="1" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="4" fillId="3" borderId="1" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="0" fillId="4" borderId="1" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="1" fillId="4" borderId="1" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="2" fillId="4" borderId="1" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="3" fillId="4" borderId="1" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="4" fillId="4" borderId="1" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="0" fillId="5" borderId="1" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="1" fillId="5" borderId="1" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="2" fillId="5" borderId="1" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="3" fillId="5" borderId="1" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="4" fillId="5" borderId="1" applyFont="1" applyFill="1" applyBorder="1"/><xf numFmtId="0" fontId="0" fillId="0" borderId="0" applyFont="1" applyFill="1" applyBorder="1" xfId="0" applyAlignment="1"><alignment horizontal="left"/></xf><xf numFmtId="0" fontId="0" fillId="0" borderId="0" applyFont="1" applyFill="1" applyBorder="1" xfId="0" applyAlignment="1"><alignment horizontal="center"/></xf><xf numFmtId="0" fontId="0" fillId="0" borderId="0" applyFont="1" applyFill="1" applyBorder="1" xfId="0" applyAlignment="1"><alignment horizontal="right"/></xf><xf numFmtId="0" fontId="0" fillId="0" borderId="0" applyFont="1" applyFill="1" applyBorder="1" xfId="0" applyAlignment="1"><alignment horizontal="fill"/></xf><xf numFmtId="0" fontId="0" fillId="0" borderId="0" applyFont="1" applyFill="1" applyBorder="1" xfId="0" applyAlignment="1"><alignment textRotation="90"/></xf><xf numFmtId="0" fontId="0" fillId="0" borderId="0" applyFont="1" applyFill="1" applyBorder="1" xfId="0" applyAlignment="1"><alignment wrapText="1"/></xf><xf numFmtId="9"   fontId="0" fillId="0" borderId="0" applyFont="1" applyFill="1" applyBorder="1" xfId="0" applyNumberFormat="1"/><xf numFmtId="164" fontId="0" fillId="0" borderId="0" applyFont="1" applyFill="1" applyBorder="1" xfId="0" applyNumberFormat="1"/><xf numFmtId="165" fontId="0" fillId="0" borderId="0" applyFont="1" applyFill="1" applyBorder="1" xfId="0" applyNumberFormat="1"/><xf numFmtId="166" fontId="0" fillId="0" borderId="0" applyFont="1" applyFill="1" applyBorder="1" xfId="0" applyNumberFormat="1"/><xf numFmtId="167" fontId="0" fillId="0" borderId="0" applyFont="1" applyFill="1" applyBorder="1" xfId="0" applyNumberFormat="1"/><xf numFmtId="168" fontId="0" fillId="0" borderId="0" applyFont="1" applyFill="1" applyBorder="1" xfId="0" applyNumberFormat="1"/><xf numFmtId="169" fontId="0" fillId="0" borderId="0" applyFont="1" applyFill="1" applyBorder="1" xfId="0" applyNumberFormat="1"/><xf numFmtId="3" fontId="0" fillId="0" borderId="0" applyFont="1" applyFill="1" applyBorder="1" xfId="0" applyNumberFormat="1"/><xf numFmtId="4" fontId="0" fillId="0" borderId="0" applyFont="1" applyFill="1" applyBorder="1" xfId="0" applyNumberFormat="1"/><xf numFmtId="1" fontId="0" fillId="0" borderId="0" applyFont="1" applyFill="1" applyBorder="1" xfId="0" applyNumberFormat="1"/><xf numFmtId="2" fontId="0" fillId="0" borderId="0" applyFont="1" applyFill="1" applyBorder="1" xfId="0" applyNumberFormat="1"/><xf numFmtId="14" fontId="0" fillId="0" borderId="0" applyFont="1" applyFill="1" applyBorder="1" xfId="0" applyNumberFormat="1"/></cellXfs><cellStyles count="1"><cellStyle name="Normal" xfId="0" builtinId="0" /></cellStyles><dxfs count="0" /><tableStyles count="0" defaultTableStyle="TableStyleMedium9" defaultPivotStyle="PivotStyleMedium4" /></styleSheet>'},_=[{match:/^\-?\d+\.\d%$/,style:60,fmt:function(t){return t/100}},{match:/^\-?\d+\.?\d*%$/,style:56,fmt:function(t){return t/100}},{match:/^\-?\$[\d,]+.?\d*$/,style:57},{match:/^\-?£[\d,]+.?\d*$/,style:58},{match:/^\-?€[\d,]+.?\d*$/,style:59},{match:/^\-?\d+$/,style:65},{match:/^\-?\d+\.\d{2}$/,style:66},{match:/^\([\d,]+\)$/,style:61,fmt:function(t){return-1*t.replace(/[\(\)]/g,"")}},{match:/^\([\d,]+\.\d{2}\)$/,style:62,fmt:function(t){return-1*t.replace(/[\(\)]/g,"")}},{match:/^\-?[\d,]+$/,style:63},{match:/^\-?[\d,]+\.\d{2}$/,style:64},{match:/^[\d]{4}\-[01][\d]\-[0123][\d]$/,style:67,fmt:function(t){return Math.round(25569+Date.parse(t)/864e5)}}];return t.ext.buttons.copyHtml5={className:"buttons-copy buttons-html5",text:function(t){return t.i18n("buttons.copy","Copy")},action:function(t,e,o,l,n){var r=c(e,l),a=e.buttons.exportInfo(l),d=y(l),p=r.str,i=S("<div/>").css({height:1,width:1,overflow:"hidden",position:"fixed",top:0,left:0}),d=(a.title&&(p=a.title+d+d+p),a.messageTop&&(p=a.messageTop+d+d+p),a.messageBottom&&(p=p+d+d+a.messageBottom),l.customize&&(p=l.customize(p,l,e)),S("<textarea readonly/>").val(p).appendTo(i));if(u.queryCommandSupported("copy")){i.appendTo(e.table().container()),d[0].focus(),d[0].select();try{var f=u.execCommand("copy");if(i.remove(),f)return e.buttons.info(e.i18n("buttons.copyTitle","Copy to clipboard"),e.i18n("buttons.copySuccess",{1:"Copied one row to clipboard",_:"Copied %d rows to clipboard"},r.rows),2e3),void n()}catch(t){}}function m(){s.off("click.buttons-copy"),S(u).off(".buttons-copy"),e.buttons.info(!1)}var a=S("<span>"+e.i18n("buttons.copyKeys","Press <i>ctrl</i> or <i>⌘</i> + <i>C</i> to copy the table data<br>to your system clipboard.<br><br>To cancel, click this message or press escape.")+"</span>").append(i),s=(e.buttons.info(e.i18n("buttons.copyTitle","Copy to clipboard"),a,0),d[0].focus(),d[0].select(),S(a).closest(".dt-button-info"));s.on("click.buttons-copy",m),S(u).on("keydown.buttons-copy",function(t){27===t.keyCode&&(m(),n())}).on("copy.buttons-copy cut.buttons-copy",function(){m(),n()})},async:100,exportOptions:{},fieldSeparator:"\t",fieldBoundary:"",header:!0,footer:!0,title:"*",messageTop:"*",messageBottom:"*"},t.ext.buttons.csvHtml5={bom:!1,className:"buttons-csv buttons-html5",available:function(){return void 0!==C.FileReader&&C.Blob},text:function(t){return t.i18n("buttons.csv","CSV")},action:function(t,e,o,l,n){var r=c(e,l).str,a=e.buttons.exportInfo(l),d=l.charset;l.customize&&(r=l.customize(r,l,e)),d=!1!==d?(d=d||u.characterSet||u.charset)&&";charset="+d:"",l.bom&&(r=String.fromCharCode(65279)+r),N(new Blob([r],{type:"text/csv"+d}),a.filename,!0),n()},async:100,filename:"*",extension:".csv",exportOptions:{},fieldSeparator:",",fieldBoundary:'"',escapeChar:'"',charset:null,header:!0,footer:!0},t.ext.buttons.excelHtml5={className:"buttons-excel buttons-html5",available:function(){return void 0!==C.FileReader&&void 0!==T()&&!s()&&D},text:function(t){return t.i18n("buttons.excel","Excel")},action:function(t,e,o,f,l){function n(t){return t=R[t],S.parseXML(t)}function r(t){s=E(c,"row",{attr:{r:m=u+1}});for(var e=0,o=t.length;e<o;e++){var l=z(e)+""+m,n=null;if(null===t[e]||void 0===t[e]||""===t[e]){if(!0!==f.createEmptyCells)continue;t[e]=""}var r=t[e];t[e]="function"==typeof t[e].trim?t[e].trim():t[e];for(var a=0,d=_.length;a<d;a++){var p=_[a];if(t[e].match&&!t[e].match(/^0\d+/)&&t[e].match(p.match)){var i=t[e].replace(/[^\d\.\-]/g,"");p.fmt&&(i=p.fmt(i)),n=E(c,"c",{attr:{r:l,s:p.style},children:[E(c,"v",{text:i})]});break}}n=n||("number"==typeof t[e]||t[e].match&&t[e].match(/^-?\d+(\.\d+)?([eE]\-?\d+)?$/)&&!t[e].match(/^0\d+/)?E(c,"c",{attr:{t:"n",r:l},children:[E(c,"v",{text:t[e]})]}):(r=r.replace?r.replace(/[\x00-\x09\x0B\x0C\x0E-\x1F\x7F-\x9F]/g,""):r,E(c,"c",{attr:{t:"inlineStr",r:l},children:{row:E(c,"is",{children:{row:E(c,"t",{text:r,attr:{"xml:space":"preserve"}})}})}}))),s.appendChild(n)}y.appendChild(s),u++}function a(t){t.forEach(function(t){r(t.map(function(t){return t?t.title:""})),S("row:last c",c).attr("s","2"),t.forEach(function(t,e){t&&(1<t.colSpan||1<t.rowSpan)&&A(c,u,e,t.rowSpan,t.colSpan)})})}var d,m,s,u=0,c=n("xl/worksheets/sheet1.xml"),y=c.getElementsByTagName("sheetData")[0],p={_rels:{".rels":n("_rels/.rels")},xl:{_rels:{"workbook.xml.rels":n("xl/_rels/workbook.xml.rels")},"workbook.xml":n("xl/workbook.xml"),"styles.xml":n("xl/styles.xml"),worksheets:{"sheet1.xml":c}},"[Content_Types].xml":n("[Content_Types].xml")},i=e.buttons.exportData(f.exportOptions),I=(f.customizeData&&f.customizeData(i),e.buttons.exportInfo(f));I.title&&(r([I.title]),A(c,u,0,1,i.header.length),S("row:last c",c).attr("s","51")),I.messageTop&&(r([I.messageTop]),A(c,u,0,1,i.header.length)),f.header&&a(i.headerStructure);for(var F=u,x=0,h=i.body.length;x<h;x++)r(i.body[x]);d=u,f.footer&&i.footer&&a(i.footerStructure),I.messageBottom&&(r([I.messageBottom]),A(c,u,0,1,i.header.length));var b=E(c,"cols");S("worksheet",c).prepend(b);for(var g=0,v=i.header.length;g<v;g++)b.appendChild(E(c,"col",{attr:{min:g+1,max:g+1,width:function(t,e){var o=t.header[e].length;t.footer&&t.footer[e]&&t.footer[e].length>o&&(o=t.footer[e].length);for(var l=0,n=t.body.length;l<n;l++){var r,a=t.body[l][e];if(40<(o=o<(r=(-1!==(a=null!=a?a.toString():"").indexOf("\n")?((r=a.split("\n")).sort(function(t,e){return e.length-t.length}),r[0]):a).length)?r:o))return 54}return 6<(o*=1.35)?o:6}(i,g),customWidth:1}}));var w=p.xl["workbook.xml"];S("sheets sheet",w).attr("name",k(f)),f.autoFilter&&(S("mergeCells",c).before(E(c,"autoFilter",{attr:{ref:"A"+F+":"+z(i.header.length-1)+d}})),S("definedNames",w).append(E(w,"definedName",{attr:{name:"_xlnm._FilterDatabase",localSheetId:"0",hidden:1},text:"'"+k(f).replace(/'/g,"''")+"'!$A$"+F+":"+z(i.header.length-1)+d}))),f.customize&&f.customize(p,f,e),0===S("mergeCells",c).children().length&&S("mergeCells",c).remove();var w=new(T()),F={compression:"DEFLATE",type:"blob",mimeType:"application/vnd.openxmlformats-officedocument.spreadsheetml.sheet"},B=(!function f(m,t){void 0===O&&(O=-1===D.serializeToString((new C.DOMParser).parseFromString(R["xl/worksheets/sheet1.xml"],"text/xml")).indexOf("xmlns:r")),S.each(t,function(t,e){if(S.isPlainObject(e))f(m.folder(t),e);else{if(O){for(var o,l=e.childNodes[0],n=[],r=l.attributes.length-1;0<=r;r--){var a=l.attributes[r].nodeName,d=l.attributes[r].nodeValue;-1!==a.indexOf(":")&&(n.push({name:a,value:d}),l.removeAttribute(a))}for(r=0,o=n.length;r<o;r++){var p=e.createAttribute(n[r].name.replace(":","_dt_b_namespace_token_"));p.value=n[r].value,l.setAttributeNode(p)}}var i=D.serializeToString(e),i=(i=O?(i=(i=-1===i.indexOf("<?xml")?'<?xml version="1.0" encoding="UTF-8" standalone="yes"?>'+i:i).replace(/_dt_b_namespace_token_/g,":")).replace(/xmlns:NS[\d]+="" NS[\d]+:/g,""):i).replace(/<([^<>]*?) xmlns=""([^<>]*?)>/g,"<$1 $2>");m.file(t,i)}})}(w,p),I.filename);175<B&&(B=B.substr(0,175)),f.customizeZip&&f.customizeZip(w,i,B),w.generateAsync?w.generateAsync(F).then(function(t){N(t,B),l()}):(N(w.generate(F),B),l())},async:100,filename:"*",extension:".xlsx",exportOptions:{},header:!0,footer:!0,title:"*",messageTop:"*",messageBottom:"*",createEmptyCells:!1,autoFilter:!1,sheetName:""},t.ext.buttons.pdfHtml5={className:"buttons-pdf buttons-html5",available:function(){return void 0!==C.FileReader&&m()},text:function(t){return t.i18n("buttons.pdf","PDF")},action:function(t,e,o,l,n){var r=e.buttons.exportData(l.exportOptions),a=e.buttons.exportInfo(l),d=[];l.header&&r.headerStructure.forEach(function(t){d.push(t.map(function(t){return t?{text:t.title,colSpan:t.colspan,rowSpan:t.rowspan,style:"tableHeader"}:{}}))});for(var p=0,i=r.body.length;p<i;p++)d.push(r.body[p].map(function(t){return{text:null==t?"":"string"==typeof t?t:t.toString()}}));l.footer&&r.footerStructure.forEach(function(t){d.push(t.map(function(t){return t?{text:t.title,colSpan:t.colspan,rowSpan:t.rowspan,style:"tableHeader"}:{}}))});var f={pageSize:l.pageSize,pageOrientation:l.orientation,content:[{style:"table",table:{headerRows:r.headerStructure.length,footerRows:r.footerStructure.length,body:d},layout:{hLineWidth:function(t,e){return 0===t||t===e.table.body.length?0:.5},vLineWidth:function(){return 0},hLineColor:function(t,e){return t===e.table.headerRows||t===e.table.body.length-e.table.footerRows?"#333":"#ddd"},fillColor:function(t){return t<r.headerStructure.length?"#fff":t%2==0?"#f3f3f3":null},paddingTop:function(){return 5},paddingBottom:function(){return 5}}}],styles:{tableHeader:{bold:!0,fontSize:11,alignment:"center"},tableFooter:{bold:!0,fontSize:11},table:{margin:[0,5,0,5]},title:{alignment:"center",fontSize:13},message:{}},defaultStyle:{fontSize:10}},e=(a.messageTop&&f.content.unshift({text:a.messageTop,style:"message",margin:[0,0,0,12]}),a.messageBottom&&f.content.push({text:a.messageBottom,style:"message",margin:[0,0,0,12]}),a.title&&f.content.unshift({text:a.title,style:"title",margin:[0,0,0,12]}),l.customize&&l.customize(f,l,e),m().createPdf(f));"open"!==l.download||s()?e.download(a.filename):e.open(),n()},async:100,title:"*",filename:"*",extension:".pdf",exportOptions:{},orientation:"portrait",pageSize:"en-US"===navigator.language||"en-CA"===navigator.language?"LETTER":"A4",header:!0,footer:!0,messageTop:"*",messageBottom:"*",customize:null,download:"download"},t});
+
+/*!
+ * Print button for Buttons and DataTables.
+ * © SpryMedia Ltd - datatables.net/license
+ */
+!function(n){var o,r;"function"==typeof define&&define.amd?define(["jquery","datatables.net","datatables.net-buttons"],function(t){return n(t,window,document)}):"object"==typeof exports?(o=require("jquery"),r=function(t,e){e.fn.dataTable||require("datatables.net")(t,e),e.fn.dataTable.Buttons||require("datatables.net-buttons")(t,e)},"undefined"==typeof window?module.exports=function(t,e){return t=t||window,e=e||o(t),r(t,e),n(e,t,t.document)}:(r(window,o),module.exports=n(o,window,window.document))):n(jQuery,window,document)}(function(p,m,t){"use strict";function b(t){return n.href=t,-1===(t=n.host).indexOf("/")&&0!==n.pathname.indexOf("/")&&(t+="/"),n.protocol+"//"+t+n.pathname+n.search}var e=p.fn.dataTable,n=t.createElement("a");return e.ext.buttons.print={className:"buttons-print",text:function(t){return t.i18n("buttons.print","Print")},action:function(t,e,n,o,r){var i=e.buttons.exportData(p.extend({decodeEntities:!1},o.exportOptions)),a=e.buttons.exportInfo(o),u=e.columns(o.exportOptions.columns).nodes().map(function(t){return t.className}).toArray(),s='<table class="'+e.table().node().className+'">';o.header&&(s+="<thead>"+i.headerStructure.map(function(t){return"<tr>"+t.map(function(t){return t?'<th colspan="'+t.colspan+'" rowspan="'+t.rowspan+'">'+t.title+"</th>":""}).join("")+"</tr>"}).join("")+"</thead>"),s+="<tbody>";for(var d=0,c=i.body.length;d<c;d++)s+=function(t,e){for(var n="<tr>",o=0,r=t.length;o<r;o++){var i=null===t[o]||void 0===t[o]?"":t[o];n+="<"+e+" "+(u[o]?'class="'+u[o]+'"':"")+">"+i+"</"+e+">"}return n+"</tr>"}(i.body[d],"td");s+="</tbody>",o.footer&&i.footer&&(s+="<tfoot>"+i.footerStructure.map(function(t){return"<tr>"+t.map(function(t){return t?'<th colspan="'+t.colspan+'" rowspan="'+t.rowspan+'">'+t.title+"</th>":""}).join("")+"</tr>"}).join("")+"</tfoot>"),s+="</table>";var l=m.open("","");if(l){l.document.close();var f="<title>"+a.title+"</title>";p("style, link").each(function(){f+=function(t){t=p(t).clone()[0];return"link"===t.nodeName.toLowerCase()&&(t.href=b(t.href)),t.outerHTML}(this)});try{l.document.head.innerHTML=f}catch(t){p(l.document.head).html(f)}l.document.body.innerHTML="<h1>"+a.title+"</h1><div>"+(a.messageTop||"")+"</div>"+s+"<div>"+(a.messageBottom||"")+"</div>",p(l.document.body).addClass("dt-print-view"),p("img",l.document.body).each(function(t,e){e.setAttribute("src",b(e.getAttribute("src")))}),o.customize&&o.customize(l,o,e);l.setTimeout(function(){o.autoPrint&&(l.print(),l.close())},1e3),r()}else e.buttons.info(e.i18n("buttons.printErrorTitle","Unable to open print view"),e.i18n("buttons.printErrorMsg","Please allow popups in your browser for this site to be able to view the print view."),5e3)},async:100,title:"*",messageTop:"*",messageBottom:"*",exportOptions:{},header:!0,footer:!0,autoPrint:!0,customize:null},e});
+
+/*! ColReorder 2.0.3
+ * © SpryMedia Ltd - datatables.net/license
+ */
+!function(r){var o,n;"function"==typeof define&&define.amd?define(["jquery","datatables.net"],function(t){return r(t,window,document)}):"object"==typeof exports?(o=require("jquery"),n=function(t,e){e.fn.dataTable||require("datatables.net")(t,e)},"undefined"==typeof window?module.exports=function(t,e){return t=t||window,e=e||o(t),n(t,e),r(e,0,t.document)}:(n(window,o),module.exports=r(o,window,window.document))):r(jQuery,window,document)}(function(u,t,h){"use strict";var n=u.fn.dataTable;function f(t,e,r,o){var n=t.splice(e,r);n.unshift(0),n.unshift(o<e?o:o-r+1),t.splice.apply(t,n)}function l(t){t.rows().invalidate("data"),t.column(0).visible(t.column(0).visible()),t.columns.adjust();var e=t.colReorder.order();t.trigger("columns-reordered",[{order:e,mapping:g(e)}])}function s(t){return t.settings()[0].aoColumns.map(function(t){return t._crOriginalIdx})}function p(t,e,r,o){for(var n=[],s=0;s<t.length;s++){var i=t[s];f(i,r[0],r.length,o);for(var l=0;l<i.length;l++){var a,d=i[l].cell;n.includes(d)||(a=d.getAttribute("data-dt-column").split(",").map(function(t){return e[t]}).join(","),d.setAttribute("data-dt-column",a),n.push(d))}}}function i(t){t.columns().iterator("column",function(t,e){t=t.aoColumns;void 0===t[e]._crOriginalIdx&&(t[e]._crOriginalIdx=e)})}function g(t){for(var e=[],r=0;r<t.length;r++)e[t[r]]=r;return e}function a(t,e,r){var o,n=t.settings()[0],s=n.aoColumns,i=s.map(function(t,e){return e});if(!e.includes(r)){f(i,e[0],e.length,r);var l=g(i);for(f(s,e[0],e.length,r),o=0;o<n.aoData.length;o++){var a=n.aoData[o];if(a){var d=a.anCells;if(d)for(f(d,e[0],e.length,r),u=0;u<d.length;u++)a.nTr&&d[u]&&s[u].bVisible&&a.nTr.appendChild(d[u]),d[u]&&d[u]._DT_CellIndex&&(d[u]._DT_CellIndex.column=u)}}for(o=0;o<s.length;o++){for(var c=s[o],u=0;u<c.aDataSort.length;u++)c.aDataSort[u]=l[c.aDataSort[u]];c.idx=l[c.idx],c.bVisible&&n.colgroup.append(c.colEl)}p(n.aoHeader,l,e,r),p(n.aoFooter,l,e,r),f(n.aoPreSearchCols,e[0],e.length,r),m(l,n.aaSorting),Array.isArray(n.aaSortingFixed)?m(l,n.aaSortingFixed):(n.aaSortingFixed.pre||n.aaSortingFixed.post)&&m(l,n.aaSortingFixed.pre),n.aLastSort.forEach(function(t){t.src=l[t.src]}),t.trigger("column-reorder",[t.settings()[0],{from:e,to:r,mapping:l}])}}function m(t,e){if(e)for(var r=0;r<e.length;r++){var o=e[r];"number"==typeof o?e[r]=t[o]:u.isPlainObject(o)&&void 0!==o.idx?o.idx=t[o.idx]:Array.isArray(o)&&"number"==typeof o[0]&&(o[0]=t[o[0]])}}function d(t,e,r){var o=!1;if(e.length!==t.columns().count())t.error("ColReorder - column count mismatch");else{for(var n=g(e=r?c(t,e,"toCurrent"):e),s=0;s<n.length;s++){var i=n.indexOf(s);s!==i&&(f(n,i,1,s),a(t,[i],s),o=!0)}o&&l(t)}}function c(t,e,r){var o=t.colReorder.order(),n=t.settings()[0].aoColumns;return"toCurrent"===r||"fromOriginal"===r?Array.isArray(e)?e.map(function(t){return o.indexOf(t)}):o.indexOf(e):Array.isArray(e)?e.map(function(t){return n[t]._crOriginalIdx}):n[e]._crOriginalIdx}function v(t,e,r){var o=t.columns().count();return!(e[0]<r&&r<e[e.length]||e[0]<0&&e[e.length-1]>o||r<0&&o<r||!e.includes(r)&&(!y(t.table().header.structure(),e,r)||!y(t.table().footer.structure(),e,r)))}function y(t,e,r){for(var o=function(t){for(var e=[],r=0;r<t.length;r++){e.push([]);for(var o=0;o<t[r].length;o++){var n=t[r][o];if(n)for(var s=0;s<n.rowspan;s++){e[r+s]||(e[r+s]=[]);for(var i=0;i<n.colspan;i++)e[r+s][o+i]=n.cell}}}return e}(t),n=0;n<o.length;n++)f(o[n],e[0],e.length,r);for(n=0;n<o.length;n++)for(var s=[],i=0;i<o[n].length;i++){var l=o[n][i];if(s.includes(l)){if(s[s.length-1]!==l)return}else s.push(l)}return 1}_.prototype.disable=function(){return this.c.enable=!1,this},_.prototype.enable=function(t){return!1===(t=void 0===t?!0:t)?this.disable():(this.c.enable=!0,this)},_.prototype._addListener=function(t){var e=this;u(t).on("selectstart.colReorder",function(){return!1}).on("mousedown.colReorder touchstart.colReorder",function(t){"mousedown"===t.type&&1!==t.which||e.c.enable&&e._mouseDown(t,this)})},_.prototype._createDragNode=function(){var t=this.s.mouse.target,e=t.parent(),r=e.parent(),o=r.parent(),n=t.clone();this.dom.drag=u(o[0].cloneNode(!1)).addClass("dtcr-cloned").append(u(r[0].cloneNode(!1)).append(u(e[0].cloneNode(!1)).append(n[0]))).css({position:"absolute",top:0,left:0,width:u(t).outerWidth(),height:u(t).outerHeight()}).appendTo("body")},_.prototype._cursorPosition=function(t,e){return(-1!==t.type.indexOf("touch")?t.originalEvent.touches[0]:t)[e]},_.prototype._mouseDown=function(t,e){for(var r=this,o=u(t.target).closest("th, td"),n=o.offset(),s=this.dt.columns(this.c.columns).indexes().toArray(),i=u(e).attr("data-dt-column").split(",").map(function(t){return parseInt(t,10)}),l=0;l<i.length;l++)if(!s.includes(i[l]))return!1;this.s.mouse.start.x=this._cursorPosition(t,"pageX"),this.s.mouse.start.y=this._cursorPosition(t,"pageY"),this.s.mouse.offset.x=this._cursorPosition(t,"pageX")-n.left,this.s.mouse.offset.y=this._cursorPosition(t,"pageY")-n.top,this.s.mouse.target=o,this.s.mouse.targets=i;for(var a=0;a<i.length;a++){var d=this.dt.cells(null,i[a],{page:"current"}).nodes().to$(),c="dtcr-moving";0===a&&(c+=" dtcr-moving-first"),a===i.length-1&&(c+=" dtcr-moving-last"),d.addClass(c)}this._regions(i),this._scrollRegions(),u(h).on("mousemove.colReorder touchmove.colReorder",function(t){r._mouseMove(t)}).on("mouseup.colReorder touchend.colReorder",function(t){r._mouseUp(t)})},_.prototype._mouseMove=function(t){if(null===this.dom.drag){if(Math.pow(Math.pow(this._cursorPosition(t,"pageX")-this.s.mouse.start.x,2)+Math.pow(this._cursorPosition(t,"pageY")-this.s.mouse.start.y,2),.5)<5)return;u(h.body).addClass("dtcr-dragging"),this._createDragNode()}this.dom.drag.css({left:this._cursorPosition(t,"pageX")-this.s.mouse.offset.x,top:this._cursorPosition(t,"pageY")-this.s.mouse.offset.y});var e=u(this.dt.table().node()).offset().left,r=this._cursorPosition(t,"pageX")-e,e=this.s.dropZones.find(function(t){return t.left<=r&&r<=t.left+t.width});this.s.mouse.absLeft=this._cursorPosition(t,"pageX"),e&&!e.self&&this._move(e,r)},_.prototype._mouseUp=function(t){u(h).off(".colReorder"),u(h.body).removeClass("dtcr-dragging"),this.dom.drag&&(this.dom.drag.remove(),this.dom.drag=null),this.s.scrollInterval&&clearInterval(this.s.scrollInterval),this.dt.cells(".dtcr-moving").nodes().to$().removeClass("dtcr-moving dtcr-moving-first dtcr-moving-last")},_.prototype._move=function(t,e){var r,o,n=this,s=(this.dt.colReorder.move(this.s.mouse.targets,t.colIdx),this.s.mouse.targets=u(this.s.mouse.target).attr("data-dt-column").split(",").map(function(t){return parseInt(t,10)}),this._regions(this.s.mouse.targets),this.s.mouse.targets.filter(function(t){return n.dt.column(t).visible()})),t=this.s.dropZones.find(function(t){return t.colIdx===s[0]}),i=this.s.dropZones.indexOf(t);t.left>e&&(o=t.left-e,r=this.s.dropZones[i-1],t.left-=o,t.width+=o,r)&&(r.width-=o),(t=this.s.dropZones.find(function(t){return t.colIdx===s[s.length-1]})).left+t.width<e&&(r=e-(t.left+t.width),o=this.s.dropZones[i+1],t.width+=r,o)&&(o.left+=r,o.width-=r)},_.prototype._regions=function(n){var s=this,i=[],l=0,a=0,d=this.dt.columns(this.c.columns).indexes().toArray(),c=this.dt.columns().widths();this.dt.columns().every(function(t,e,r){var o;this.visible()&&(o=c[t],d.includes(t)&&(v(s.dt,n,t)?i.push({colIdx:t,left:l-a,self:n[0]<=t&&t<=n[n.length-1],width:o+a}):t<n[0]?i.length&&(i[i.length-1].width+=o):t>n[n.length-1]&&(a+=o)),l+=o)}),this.s.dropZones=i},_.prototype._isScrolling=function(){return this.dt.table().body().parentNode!==this.dt.table().header().parentNode},_.prototype._scrollRegions=function(){var e,r,o,n;this._isScrolling()&&(r=u((e=this).dt.table().container()).position().left,o=u(this.dt.table().container()).outerWidth(),n=this.dt.table().body().parentElement.parentElement,this.s.scrollInterval=setInterval(function(){var t=e.s.mouse.absLeft;t<r+75&&n.scrollLeft?n.scrollLeft-=5:r+o-75<t&&n.scrollLeft<n.scrollWidth&&(n.scrollLeft+=5)},25))},_.defaults={columns:"",enable:!0,order:null},_.version="2.0.3";
+/*! ColReorder 2.0.3
+ * © SpryMedia Ltd - datatables.net/license
+ */var b=_;function _(o,t){this.dom={drag:null},this.c={columns:null,enable:null,order:null},this.s={dropZones:[],mouse:{absLeft:-1,offset:{x:-1,y:-1},start:{x:-1,y:-1},target:null,targets:[]},scrollInterval:null};var e,r=this;o.settings()[0]._colReorder||((o.settings()[0]._colReorder=this).dt=o,u.extend(this.c,_.defaults,t),i(o),o.on("stateSaveParams",function(t,e,r){r.colReorder=s(o)}),o.on("destroy",function(){o.off(".colReorder"),o.colReorder.reset()}),t=o.state.loaded(),e=this.c.order,(e=t&&t.colReorder?t.colReorder:e)&&o.ready(function(){d(o,e,!0)}),o.table().header.structure().forEach(function(t){for(var e=0;e<t.length;e++)t[e]&&t[e].cell&&r._addListener(t[e].cell)}))}return n.Api.register("colReorder.enable()",function(e){return this.iterator("table",function(t){t._colReorder&&t._colReorder.enable(e)})}),n.Api.register("colReorder.disable()",function(){return this.iterator("table",function(t){t._colReorder&&t._colReorder.disable()})}),n.Api.register("colReorder.move()",function(t,e){return i(this),v(this,t=Array.isArray(t)?t:[t],e)?this.tables().every(function(){a(this,t,e),l(this)}):(this.error("ColReorder - invalid move"),this)}),n.Api.register("colReorder.order()",function(t,e){return i(this),t?this.tables().every(function(){d(this,t,e)}):this.context.length?s(this):null}),n.Api.register("colReorder.reset()",function(){return i(this),this.tables().every(function(){var t=this.columns().every(function(t){return t}).flatten().toArray();d(this,t,!0)})}),n.Api.register("colReorder.transpose()",function(t,e){return i(this),c(this,t,e=e||"toCurrent")}),n.ColReorder=b,u(h).on("stateLoadInit.dt",function(t,e,r){if("dt"===t.namespace){t=new n.Api(e);if(r.colReorder)if(t.ready())d(t,r.colReorder,!0);else{m(g(r.colReorder),r.order);for(var o=0;o<r.columns.length;o++)r.columns[o]._cr_sort=r.colReorder[o];r.columns.sort(function(t,e){return t._cr_sort-e._cr_sort})}}}),u(h).on("preInit.dt",function(t,e){var r,o;"dt"===t.namespace&&(t=e.oInit.colReorder,o=n.defaults.colReorder,t||o)&&(r=u.extend({},o,t),!1!==t)&&(o=new n.Api(e),new b(o,r))}),n});
+
+/*! DateTime picker for DataTables.net v1.5.2
+ *
+ * © SpryMedia Ltd, all rights reserved.
+ * License: MIT datatables.net/license/mit
+ */
+!function(s){var i;"function"==typeof define&&define.amd?define(["jquery"],function(t){return s(t,window,document)}):"object"==typeof exports?(i=require("jquery"),"undefined"==typeof window?module.exports=function(t,e){return t=t||window,e=e||i(t),s(e,t,t.document)}:module.exports=s(i,window,window.document)):s(jQuery,window,document)}(function(g,o,i){"use strict";function n(t,e){if(n.factory(t,e))return n;if(void 0===a&&(a=o.moment||o.dayjs||o.luxon||null),this.c=g.extend(!0,{},n.defaults,e),e=this.c.classPrefix,!a&&"YYYY-MM-DD"!==this.c.format)throw"DateTime: Without momentjs, dayjs or luxon only the format 'YYYY-MM-DD' can be used";"string"==typeof this.c.minDate&&(this.c.minDate=new Date(this.c.minDate)),"string"==typeof this.c.maxDate&&(this.c.maxDate=new Date(this.c.maxDate));var s=g('<div class="'+e+'"><div class="'+e+'-date"><div class="'+e+'-title"><div class="'+e+'-iconLeft"><button type="button"></button></div><div class="'+e+'-iconRight"><button type="button"></button></div><div class="'+e+'-label"><span></span><select class="'+e+'-month"></select></div><div class="'+e+'-label"><span></span><select class="'+e+'-year"></select></div></div><div class="'+e+'-buttons"><a class="'+e+'-clear"></a><a class="'+e+'-today"></a></div><div class="'+e+'-calendar"></div></div><div class="'+e+'-time"><div class="'+e+'-hours"></div><div class="'+e+'-minutes"></div><div class="'+e+'-seconds"></div></div><div class="'+e+'-error"></div></div>');this.dom={container:s,date:s.find("."+e+"-date"),title:s.find("."+e+"-title"),calendar:s.find("."+e+"-calendar"),time:s.find("."+e+"-time"),error:s.find("."+e+"-error"),buttons:s.find("."+e+"-buttons"),clear:s.find("."+e+"-clear"),today:s.find("."+e+"-today"),previous:s.find("."+e+"-iconLeft"),next:s.find("."+e+"-iconRight"),input:g(t)},this.s={d:null,display:null,minutesRange:null,secondsRange:null,namespace:"dateime-"+n._instance++,parts:{date:null!==this.c.format.match(/[YMD]|L(?!T)|l/),time:null!==this.c.format.match(/[Hhm]|LT|LTS/),seconds:-1!==this.c.format.indexOf("s"),hours12:null!==this.c.format.match(/[haA]/)}},this.dom.container.append(this.dom.date).append(this.dom.time).append(this.dom.error),this.dom.date.append(this.dom.title).append(this.dom.buttons).append(this.dom.calendar),this.dom.input.addClass("dt-datetime"),this._constructor()}var a;return g.extend(n.prototype,{destroy:function(){this._hide(!0),this.dom.container.off().empty(),this.dom.input.removeClass("dt-datetime").removeAttr("autocomplete").off(".datetime")},display:function(t,e){return void 0!==t&&this.s.display.setUTCFullYear(t),void 0!==e&&this.s.display.setUTCMonth(e-1),void 0!==t||void 0!==e?(this._setTitle(),this._setCalander(),this):{month:this.s.display.getUTCMonth()+1,year:this.s.display.getUTCFullYear()}},errorMsg:function(t){var e=this.dom.error;return t?e.html(t):e.empty(),this},hide:function(){return this._hide(),this},max:function(t){return this.c.maxDate="string"==typeof t?new Date(t):t,this._optionsTitle(),this._setCalander(),this},min:function(t){return this.c.minDate="string"==typeof t?new Date(t):t,this._optionsTitle(),this._setCalander(),this},owns:function(t){return 0<g(t).parents().filter(this.dom.container).length},val:function(t,e){return void 0===t?this.s.d:(t instanceof Date?this.s.d=this._dateToUtc(t):null===t||""===t?this.s.d=null:"--now"===t?this.s.d=this._dateToUtc(new Date):"string"==typeof t&&(this.s.d=this._dateToUtc(this._convert(t,this.c.format,null))),!e&&void 0!==e||(this.s.d?this._writeOutput():this.dom.input.val(t)),this.s.display=this.s.d?new Date(this.s.d.toString()):new Date,this.s.display.setUTCDate(1),this._setTitle(),this._setCalander(),this._setTime(),this)},valFormat:function(t,e){return e?(this.val(this._convert(e,t,null)),this):this._convert(this.val(),null,t)},_constructor:function(){function a(){var t=o.dom.input.val();t!==e&&(o.c.onChange.call(o,t,o.s.d,o.dom.input),e=t)}var o=this,r=this.c.classPrefix,e=this.dom.input.val();this.s.parts.date||this.dom.date.css("display","none"),this.s.parts.time||this.dom.time.css("display","none"),this.s.parts.seconds||(this.dom.time.children("div."+r+"-seconds").remove(),this.dom.time.children("span").eq(1).remove()),this.c.buttons.clear||this.dom.clear.css("display","none"),this.c.buttons.today||this.dom.today.css("display","none"),this._optionsTitle(),g(i).on("i18n.dt",function(t,e){e.oLanguage.datetime&&(g.extend(!0,o.c.i18n,e.oLanguage.datetime),o._optionsTitle())}),"hidden"===this.dom.input.attr("type")&&(this.dom.container.addClass("inline"),this.c.attachTo="input",this.val(this.dom.input.val(),!1),this._show()),e&&this.val(e,!1),this.dom.input.attr("autocomplete","off").on("focus.datetime click.datetime",function(){o.dom.container.is(":visible")||o.dom.input.is(":disabled")||(o.val(o.dom.input.val(),!1),o._show())}).on("keyup.datetime",function(){o.dom.container.is(":visible")&&o.val(o.dom.input.val(),!1)}),this.dom.container[0].addEventListener("focusin",function(t){t.stopPropagation()}),this.dom.container.on("change","select",function(){var t,e,s=g(this),i=s.val();s.hasClass(r+"-month")?(o._correctMonth(o.s.display,i),o._setTitle(),o._setCalander()):s.hasClass(r+"-year")?(o.s.display.setUTCFullYear(i),o._setTitle(),o._setCalander()):s.hasClass(r+"-hours")||s.hasClass(r+"-ampm")?(o.s.parts.hours12?(t=+g(o.dom.container).find("."+r+"-hours").val(),e="pm"===g(o.dom.container).find("."+r+"-ampm").val(),o.s.d.setUTCHours(12!=t||e?e&&12!=t?12+t:t:0)):o.s.d.setUTCHours(i),o._setTime(),o._writeOutput(!0),a()):s.hasClass(r+"-minutes")?(o.s.d.setUTCMinutes(i),o._setTime(),o._writeOutput(!0),a()):s.hasClass(r+"-seconds")&&(o.s.d.setSeconds(i),o._setTime(),o._writeOutput(!0),a()),o.dom.input.focus(),o._position()}).on("click",function(t){var e=o.s.d,s="span"===t.target.nodeName.toLowerCase()?t.target.parentNode:t.target,i=s.nodeName.toLowerCase();if("select"!==i)if(t.stopPropagation(),"a"===i&&(t.preventDefault(),g(s).hasClass(r+"-clear")?(o.s.d=null,o.dom.input.val(""),o._writeOutput(),o._setCalander(),o._setTime(),a()):g(s).hasClass(r+"-today")&&(o.s.display=new Date,o._setTitle(),o._setCalander())),"button"===i){t=g(s),i=t.parent();if(i.hasClass("disabled")&&!i.hasClass("range"))t.blur();else if(i.hasClass(r+"-iconLeft"))o.s.display.setUTCMonth(o.s.display.getUTCMonth()-1),o._setTitle(),o._setCalander(),o.dom.input.focus();else if(i.hasClass(r+"-iconRight"))o._correctMonth(o.s.display,o.s.display.getUTCMonth()+1),o._setTitle(),o._setCalander(),o.dom.input.focus();else{if(t.parents("."+r+"-time").length){var s=t.data("value"),n=t.data("unit"),e=o._needValue();if("minutes"===n){if(i.hasClass("disabled")&&i.hasClass("range"))return o.s.minutesRange=s,void o._setTime();o.s.minutesRange=null}if("seconds"===n){if(i.hasClass("disabled")&&i.hasClass("range"))return o.s.secondsRange=s,void o._setTime();o.s.secondsRange=null}if("am"===s){if(!(12<=e.getUTCHours()))return;s=e.getUTCHours()-12}else if("pm"===s){if(!(e.getUTCHours()<12))return;s=e.getUTCHours()+12}e["hours"===n?"setUTCHours":"minutes"===n?"setUTCMinutes":"setSeconds"](s),o._setCalander(),o._setTime(),o._writeOutput(!0)}else(e=o._needValue()).setUTCDate(1),e.setUTCFullYear(t.data("year")),e.setUTCMonth(t.data("month")),e.setUTCDate(t.data("day")),o._writeOutput(!0),o.s.parts.time?(o._setCalander(),o._setTime()):setTimeout(function(){o._hide()},10);a()}}else o.dom.input.focus()})},_compareDates:function(t,e){return this._isLuxon()?a.DateTime.fromJSDate(t).toUTC().toISODate()===a.DateTime.fromJSDate(e).toUTC().toISODate():this._dateToUtcString(t)===this._dateToUtcString(e)},_convert:function(t,e,s){var i;return t&&(a?this._isLuxon()?(i=t instanceof Date?a.DateTime.fromJSDate(t).toUTC():a.DateTime.fromFormat(t,e)).isValid?s?i.toFormat(s):i.toJSDate():null:(i=t instanceof Date?a.utc(t,void 0,this.c.locale,this.c.strict):a(t,e,this.c.locale,this.c.strict)).isValid()?s?i.format(s):i.toDate():null:!e&&!s||e&&s?t:e?(i=t.match(/(\d{4})\-(\d{2})\-(\d{2})/))?new Date(i[1],i[2]-1,i[3]):null:t.getUTCFullYear()+"-"+this._pad(t.getUTCMonth()+1)+"-"+this._pad(t.getUTCDate()))},_correctMonth:function(t,e){var s=this._daysInMonth(t.getUTCFullYear(),e),i=t.getUTCDate()>s;t.setUTCMonth(e),i&&(t.setUTCDate(s),t.setUTCMonth(e))},_daysInMonth:function(t,e){return[31,t%4==0&&(t%100!=0||t%400==0)?29:28,31,30,31,30,31,31,30,31,30,31][e]},_dateToUtc:function(t){return t&&new Date(Date.UTC(t.getFullYear(),t.getMonth(),t.getDate(),t.getHours(),t.getMinutes(),t.getSeconds()))},_dateToUtcString:function(t){return this._isLuxon()?a.DateTime.fromJSDate(t).toUTC().toISODate():t.getUTCFullYear()+"-"+this._pad(t.getUTCMonth()+1)+"-"+this._pad(t.getUTCDate())},_hide:function(t){!t&&"hidden"===this.dom.input.attr("type")||(t=this.s.namespace,this.dom.container.detach(),g(o).off("."+t),g(i).off("keydown."+t),g("div.dataTables_scrollBody").off("scroll."+t),g("div.DTE_Body_Content").off("scroll."+t),g("body").off("click."+t),g(this.dom.input[0].offsetParent).off("."+t))},_hours24To12:function(t){return 0===t?12:12<t?t-12:t},_htmlDay:function(t){var e,s;return t.empty?'<td class="empty"></td>':(e=["selectable"],s=this.c.classPrefix,t.disabled&&e.push("disabled"),t.today&&e.push("now"),t.selected&&e.push("selected"),'<td data-day="'+t.day+'" class="'+e.join(" ")+'"><button class="'+s+"-button "+s+'-day" type="button" data-year="'+t.year+'" data-month="'+t.month+'" data-day="'+t.day+'"><span>'+t.day+"</span></button></td>")},_htmlMonth:function(t,e){for(var s=this._dateToUtc(new Date),i=this._daysInMonth(t,e),n=new Date(Date.UTC(t,e,1)).getUTCDay(),a=[],o=[],r=(0<this.c.firstDay&&(n-=this.c.firstDay)<0&&(n+=7),i+n),d=r;7<d;)d-=7;r+=7-d;var l=this.c.minDate,h=this.c.maxDate;l&&(l.setUTCHours(0),l.setUTCMinutes(0),l.setSeconds(0)),h&&(h.setUTCHours(23),h.setUTCMinutes(59),h.setSeconds(59));for(var u=0,c=0;u<r;u++){var m=new Date(Date.UTC(t,e,u-n+1)),f=!!this.s.d&&this._compareDates(m,this.s.d),p=this._compareDates(m,s),y=u<n||i+n<=u,T=l&&m<l||h&&h<m,v=this.c.disableDays,f={day:u-n+1,month:e,year:t,selected:f,today:p,disabled:T=Array.isArray(v)&&-1!==g.inArray(m.getUTCDay(),v)||"function"==typeof v&&!0===v(m)?!0:T,empty:y};o.push(this._htmlDay(f)),7==++c&&(this.c.showWeekNumber&&o.unshift(this._htmlWeekOfYear(u-n,e,t)),a.push("<tr>"+o.join("")+"</tr>"),o=[],c=0)}var _,D=this.c.classPrefix,C=D+"-table";return this.c.showWeekNumber&&(C+=" weekNumber"),l&&(_=l>=new Date(Date.UTC(t,e,1,0,0,0)),this.dom.title.find("div."+D+"-iconLeft").css("display",_?"none":"block")),h&&(_=h<new Date(Date.UTC(t,e+1,1,0,0,0)),this.dom.title.find("div."+D+"-iconRight").css("display",_?"none":"block")),'<table class="'+C+'"><thead>'+this._htmlMonthHead()+"</thead><tbody>"+a.join("")+"</tbody></table>"},_htmlMonthHead:function(){var t=[],e=this.c.firstDay,s=this.c.i18n;this.c.showWeekNumber&&t.push("<th></th>");for(var i=0;i<7;i++)t.push("<th>"+function(t){for(t+=e;7<=t;)t-=7;return s.weekdays[t]}(i)+"</th>");return t.join("")},_htmlWeekOfYear:function(t,e,s){e=new Date(s,e,t,0,0,0,0),e.setDate(e.getDate()+4-(e.getDay()||7)),t=new Date(s,0,1),s=Math.ceil(((e-t)/864e5+1)/7);return'<td class="'+this.c.classPrefix+'-week">'+s+"</td>"},_isLuxon:function(){return!!(a&&a.DateTime&&a.Duration&&a.Settings)},_needValue:function(){return this.s.d||(this.s.d=this._dateToUtc(new Date),this.s.parts.time)||(this.s.d.setUTCHours(0),this.s.d.setUTCMinutes(0),this.s.d.setSeconds(0),this.s.d.setMilliseconds(0)),this.s.d},_options:function(t,e,s){s=s||e;var i=this.dom.container.find("select."+this.c.classPrefix+"-"+t);i.empty();for(var n=0,a=e.length;n<a;n++)i.append('<option value="'+e[n]+'">'+s[n]+"</option>")},_optionSet:function(t,e){var t=this.dom.container.find("select."+this.c.classPrefix+"-"+t),s=t.parent().children("span"),e=(t.val(e),t.find("option:selected"));s.html(0!==e.length?e.text():this.c.i18n.unknown)},_optionsTime:function(n,a,o,r,t){var e,d=this.c.classPrefix,s=this.dom.container.find("div."+d+"-"+n),i=12===a?function(t){return t}:this._pad,l=d+"-table",h=this.c.i18n;if(s.length){var u="",c=10,m=function(t,e,s){12===a&&"number"==typeof t&&(12<=o&&(t+=12),12==t?t=0:24==t&&(t=12));var i=o===t||"am"===t&&o<12||"pm"===t&&12<=o?"selected":"";return"number"==typeof t&&r&&-1===g.inArray(t,r)&&(i+=" disabled"),s&&(i+=" "+s),'<td class="selectable '+i+'"><button class="'+d+"-button "+d+'-day" type="button" data-unit="'+n+'" data-value="'+t+'"><span>'+e+"</span></button></td>"};if(12===a){for(u+="<tr>",e=1;e<=6;e++)u+=m(e,i(e));for(u=(u+=m("am",h.amPm[0]))+"</tr>"+"<tr>",e=7;e<=12;e++)u+=m(e,i(e));u=u+m("pm",h.amPm[1])+"</tr>",c=7}else{if(24===a)for(var f=0,p=0;p<4;p++){for(u+="<tr>",e=0;e<6;e++)u+=m(f,i(f)),f++;u+="</tr>"}else{for(u+="<tr>",p=0;p<60;p+=10)u+=m(p,i(p),"range");var u=u+"</tr>"+('</tbody></thead><table class="'+l+" "+l+'-nospace"><tbody>'),y=null!==t?t:-1===o?0:10*Math.floor(o/10);for(u+="<tr>",p=y+1;p<y+10;p++)u+=m(p,i(p));u+="</tr>"}c=6}s.empty().append('<table class="'+l+'"><thead><tr><th colspan="'+c+'">'+h[n]+"</th></tr></thead><tbody>"+u+"</tbody></table>")}},_optionsTitle:function(){var t=this.c.i18n,e=this.c.minDate,s=this.c.maxDate,e=e?e.getFullYear():null,s=s?s.getFullYear():null,e=null!==e?e:(new Date).getFullYear()-this.c.yearRange,s=null!==s?s:(new Date).getFullYear()+this.c.yearRange;this._options("month",this._range(0,11),t.months),this._options("year",this._range(e,s)),this.dom.today.text(t.today).text(t.today),this.dom.clear.text(t.clear).text(t.clear),this.dom.previous.attr("title",t.previous).children("button").text(t.previous),this.dom.next.attr("title",t.next).children("button").text(t.next)},_pad:function(t){return t<10?"0"+t:t},_position:function(){var t,e,s,i="input"===this.c.attachTo?this.dom.input.position():this.dom.input.offset(),n=this.dom.container,a=this.dom.input.outerHeight();n.hasClass("inline")?n.insertAfter(this.dom.input):(this.s.parts.date&&this.s.parts.time&&550<g(o).width()?n.addClass("horizontal"):n.removeClass("horizontal"),"input"===this.c.attachTo?n.css({top:i.top+a,left:i.left}).insertAfter(this.dom.input):n.css({top:i.top+a,left:i.left}).appendTo("body"),t=n.outerHeight(),e=n.outerWidth(),s=g(o).scrollTop(),i.top+a+t-s>g(o).height()&&(a=i.top-t,n.css("top",a<0?0:a)),e+i.left>g(o).width()&&(s=g(o).width()-e,"input"===this.c.attachTo&&(s-=g(n).offsetParent().offset().left),n.css("left",s<0?0:s)))},_range:function(t,e,s){var i=[];s=s||1;for(var n=t;n<=e;n+=s)i.push(n);return i},_setCalander:function(){this.s.display&&this.dom.calendar.empty().append(this._htmlMonth(this.s.display.getUTCFullYear(),this.s.display.getUTCMonth()))},_setTitle:function(){this._optionSet("month",this.s.display.getUTCMonth()),this._optionSet("year",this.s.display.getUTCFullYear())},_setTime:function(){function t(t){return e.c[t+"Available"]||e._range(0,59,e.c[t+"Increment"])}var e=this,s=this.s.d,i=null,n=null!=(i=this._isLuxon()?a.DateTime.fromJSDate(s).toUTC():i)?i.hour:s?s.getUTCHours():-1;this._optionsTime("hours",this.s.parts.hours12?12:24,n,this.c.hoursAvailable),this._optionsTime("minutes",60,null!=i?i.minute:s?s.getUTCMinutes():-1,t("minutes"),this.s.minutesRange),this._optionsTime("seconds",60,null!=i?i.second:s?s.getSeconds():-1,t("seconds"),this.s.secondsRange)},_show:function(){var e=this,t=this.s.namespace,s=(this._position(),g(o).on("scroll."+t+" resize."+t,function(){e._position()}),g("div.DTE_Body_Content").on("scroll."+t,function(){e._position()}),g("div.dataTables_scrollBody").on("scroll."+t,function(){e._position()}),this.dom.input[0].offsetParent);s!==i.body&&g(s).on("scroll."+t,function(){e._position()}),g(i).on("keydown."+t,function(t){9!==t.keyCode&&27!==t.keyCode&&13!==t.keyCode||e._hide()}),setTimeout(function(){g("body").on("click."+t,function(t){g(t.target).parents().filter(e.dom.container).length||t.target===e.dom.input[0]||e._hide()})},10)},_writeOutput:function(t){var e=this.s.d,s="",i=this.dom.input,e=(e&&(s=this._convert(e,null,this.c.format)),i.val(s),new Event("change",{bubbles:!0}));i[0].dispatchEvent(e),"hidden"===i.attr("type")&&this.val(s,!1),t&&i.focus()}}),n.use=function(t){a=t},n._instance=0,n.type="DateTime",n.defaults={attachTo:"body",buttons:{clear:!1,today:!1},classPrefix:"dt-datetime",disableDays:null,firstDay:1,format:"YYYY-MM-DD",hoursAvailable:null,i18n:{clear:"Clear",previous:"Previous",next:"Next",months:["January","February","March","April","May","June","July","August","September","October","November","December"],weekdays:["Sun","Mon","Tue","Wed","Thu","Fri","Sat"],amPm:["am","pm"],hours:"Hour",minutes:"Minute",seconds:"Second",unknown:"-",today:"Today"},maxDate:null,minDate:null,minutesAvailable:null,minutesIncrement:1,strict:!0,locale:"en",onChange:function(){},secondsAvailable:null,secondsIncrement:1,showWeekNumber:!1,yearRange:25},n.version="1.5.2",n.factory=function(t,e){var s=!1;return t&&t.document&&(i=(o=t).document),e&&e.fn&&e.fn.jquery&&(g=e,s=!0),s},o.DateTime||(o.DateTime=n),o.DataTable&&(o.DataTable.DateTime=n),g.fn.dtDateTime=function(t){return this.each(function(){new n(this,t)})},g.fn.dataTable&&(g.fn.dataTable.DateTime=n,g.fn.DataTable.DateTime=n,g.fn.dataTable.Editor)&&(g.fn.dataTable.Editor.DateTime=n),n});
+
+/*! FixedColumns 5.0.1
+ * © SpryMedia Ltd - datatables.net/license
+ */
+!function(s){var i,o;"function"==typeof define&&define.amd?define(["jquery","datatables.net"],function(t){return s(t,window,document)}):"object"==typeof exports?(i=require("jquery"),o=function(t,e){e.fn.dataTable||require("datatables.net")(t,e)},"undefined"==typeof window?module.exports=function(t,e){return t=t||window,e=e||i(t),o(t,e),s(e,0,t.document)}:(o(window,i),module.exports=s(i,window,window.document))):s(jQuery,window,document)}(function(o,t,e){"use strict";var h,l,s,i,n=o.fn.dataTable;function d(t,e){var s,i=this;if(l&&l.versionCheck&&l.versionCheck("2"))return t=new l.Api(t),this.classes=h.extend(!0,{},d.classes),this.c=h.extend(!0,{},d.defaults,e),this.s={dt:t,rtl:"rtl"===h(t.table().node()).css("direction")},e&&void 0!==e.leftColumns&&(e.left=e.leftColumns),e&&void 0!==e.left&&(this.c[this.s.rtl?"end":"start"]=e.left),e&&void 0!==e.rightColumns&&(e.right=e.rightColumns),e&&void 0!==e.right&&(this.c[this.s.rtl?"start":"end"]=e.right),this.dom={bottomBlocker:h("<div>").addClass(this.classes.bottomBlocker),topBlocker:h("<div>").addClass(this.classes.topBlocker),scroller:h("div.dt-scroll-body",this.s.dt.table().container())},this.s.dt.settings()[0]._bInitComplete?(this._addStyles(),this._setKeyTableListener()):t.one("init.dt.dtfc",function(){i._addStyles(),i._setKeyTableListener()}),t.on("column-sizing.dt.dtfc column-reorder.dt.dtfc draw.dt.dtfc",function(){return i._addStyles()}),s=l.util.debounce(function(){i._addStyles()},50),t.on("column-visibility.dt.dtfc",function(){s()}),this.dom.scroller.on("scroll.dtfc",function(){return i._scroll()}),this._scroll(),t.settings()[0]._fixedColumns=this,t.on("destroy",function(){return i._destroy()}),this;throw new Error("FixedColumns requires DataTables 2 or newer")}function r(t,e){void 0===e&&(e=null);t=new n.Api(t),e=e||t.init().fixedColumns||n.defaults.fixedColumns;new s(t,e)}return d.prototype.end=function(t){return void 0!==t?(0<=t&&t<=this.s.dt.columns().count()&&(this.c.end=t,this._addStyles()),this):this.c.end},d.prototype.left=function(t){return this.s.rtl?this.end(t):this.start(t)},d.prototype.right=function(t){return this.s.rtl?this.start(t):this.end(t)},d.prototype.start=function(t){return void 0!==t?(0<=t&&t<=this.s.dt.columns().count()&&(this.c.start=t,this._addStyles()),this):this.c.start},d.prototype._addStyles=function(){var s=this.s.dt,i=this,o=this.s.dt.columns(":visible").count(),l=s.table().header.structure(":visible"),n=s.table().footer.structure(":visible"),d=s.columns(":visible").widths().toArray(),t=h(s.table().node()).closest("div.dt-scroll"),e=h(s.table().node()).closest("div.dt-scroll-body")[0],r=this.s.rtl,c=this.c.start,a=this.c.end,f=r?a:c,r=r?c:a,u=s.settings()[0].oBrowser.barWidth;if(0===t.length)return this;e.offsetWidth===e.clientWidth&&(u=0),s.columns().every(function(t){var e,t=s.column.index("toVisible",t);null!==t&&(t<c?(e=i._sum(d,t),i._fixColumn(t,e,"start",l,n,u)):o-a<=t?(e=i._sum(d,o-t-1,!0),i._fixColumn(t,e,"end",l,n,u)):i._fixColumn(t,0,"none",l,n,u))}),h(s.table().node()).toggleClass(i.classes.tableFixedStart,0<c).toggleClass(i.classes.tableFixedEnd,0<a).toggleClass(i.classes.tableFixedLeft,0<f).toggleClass(i.classes.tableFixedRight,0<r);e=s.table().header(),f=s.table().footer(),r=h(e).outerHeight(),e=h(f).outerHeight();this.dom.topBlocker.appendTo(t).css("top",0).css(this.s.rtl?"left":"right",0).css("height",r).css("width",u+1).css("display",u?"block":"none"),f&&this.dom.bottomBlocker.appendTo(t).css("bottom",0).css(this.s.rtl?"left":"right",0).css("height",e).css("width",u+1).css("display",u?"block":"none")},d.prototype._destroy=function(){this.s.dt.off(".dtfc"),this.dom.scroller.off(".dtfc"),h(this.s.dt.table().node()).removeClass(this.classes.tableScrollingEnd+" "+this.classes.tableScrollingLeft+" "+this.classes.tableScrollingStart+" "+this.classes.tableScrollingRight),this.dom.bottomBlocker.remove(),this.dom.topBlocker.remove()},d.prototype._fixColumn=function(e,o,l,t,s,n){function i(t,e){var s,i;"none"===l?t.css("position","").css("left","").css("right","").removeClass(d.classes.fixedEnd+" "+d.classes.fixedLeft+" "+d.classes.fixedRight+" "+d.classes.fixedStart):(s="start"===l?"left":"right",d.s.rtl&&(s="start"===l?"right":"left"),i=o,"end"!==l||"header"!==e&&"footer"!==e||(i+=n),t.css("position","sticky").css(s,i).addClass("start"===l?d.classes.fixedStart:d.classes.fixedEnd).addClass("left"===s?d.classes.fixedLeft:d.classes.fixedRight))}var d=this,r=this.s.dt;t.forEach(function(t){t[e]&&i(h(t[e].cell),"header")}),i(r.column(e+":visible",{page:"current"}).nodes().to$(),"body"),s&&s.forEach(function(t){t[e]&&i(h(t[e].cell),"footer")})},d.prototype._scroll=function(){var t,e,s,i,o=this.dom.scroller[0];o&&(t=h(this.s.dt.table().node()).add(this.s.dt.table().header().parentNode).add(this.s.dt.table().footer().parentNode).add("div.dt-scroll-headInner table",this.s.dt.table().container()).add("div.dt-scroll-footInner table",this.s.dt.table().container()),e=o.scrollLeft,s=!this.s.rtl,i=0!==e,o=o.scrollWidth>o.clientWidth+Math.abs(e)+1,t.toggleClass(this.classes.tableScrollingStart,i),t.toggleClass(this.classes.tableScrollingEnd,o),t.toggleClass(this.classes.tableScrollingLeft,i&&s||o&&!s),t.toggleClass(this.classes.tableScrollingRight,o&&s||i&&!s))},d.prototype._setKeyTableListener=function(){var c=this;this.s.dt.on("key-focus.dt.dtfc",function(t,e,s){var i,o,l,n=h(s.node()).offset(),d=c.dom.scroller[0],r=h(h(c.s.dt.table().node()).closest("div.dt-scroll-body"));0<c.c.start&&(l=(o=h(c.s.dt.column(c.c.start-1).header())).offset(),o=o.outerWidth(),h(s.node()).hasClass(c.classes.fixedLeft)?r.scrollLeft(0):n.left<l.left+o&&(i=r.scrollLeft(),r.scrollLeft(i-(l.left+o-n.left)))),0<c.c.end&&(l=c.s.dt.columns().data().toArray().length,o=h(s.node()).outerWidth(),l=h(c.s.dt.column(l-c.c.end).header()).offset(),h(s.node()).hasClass(c.classes.fixedRight)?r.scrollLeft(d.scrollWidth-d.clientWidth):n.left+o>l.left&&(i=r.scrollLeft(),r.scrollLeft(i-(l.left-(n.left+o)))))})},d.prototype._sum=function(t,e,s){return(t=(s=void 0===s?!1:s)?t.slice().reverse():t).slice(0,e).reduce(function(t,e){return t+e},0)},d.version="5.0.1",d.classes={bottomBlocker:"dtfc-bottom-blocker",fixedEnd:"dtfc-fixed-end",fixedLeft:"dtfc-fixed-left",fixedRight:"dtfc-fixed-right",fixedStart:"dtfc-fixed-start",tableFixedEnd:"dtfc-has-end",tableFixedLeft:"dtfc-has-left",tableFixedRight:"dtfc-has-right",tableFixedStart:"dtfc-has-start",tableScrollingEnd:"dtfc-scrolling-end",tableScrollingLeft:"dtfc-scrolling-left",tableScrollingRight:"dtfc-scrolling-right",tableScrollingStart:"dtfc-scrolling-start",topBlocker:"dtfc-top-blocker"},d.defaults={i18n:{button:"FixedColumns"},start:1,end:0},s=d,l=(h=o).fn.dataTable,o.fn.dataTable.FixedColumns=s,o.fn.DataTable.FixedColumns=s,(i=n.Api.register)("fixedColumns()",function(){return this}),i("fixedColumns().start()",function(t){var e=this.context[0];return void 0!==t?(e._fixedColumns.start(t),this):e._fixedColumns.start()}),i("fixedColumns().end()",function(t){var e=this.context[0];return void 0!==t?(e._fixedColumns.end(t),this):e._fixedColumns.end()}),i("fixedColumns().left()",function(t){var e=this.context[0];return void 0!==t?(e._fixedColumns.left(t),this):e._fixedColumns.left()}),i("fixedColumns().right()",function(t){var e=this.context[0];return void 0!==t?(e._fixedColumns.right(t),this):e._fixedColumns.right()}),n.ext.buttons.fixedColumns={action:function(t,e,s,i){o(s).attr("active")?(o(s).removeAttr("active").removeClass("active"),e.fixedColumns().start(0),e.fixedColumns().end(0)):(o(s).attr("active","true").addClass("active"),e.fixedColumns().start(i.config.start),e.fixedColumns().end(i.config.end))},config:{start:1,end:0},init:function(t,e,s){void 0===t.settings()[0]._fixedColumns&&r(t.settings(),s),o(e).attr("active","true").addClass("active"),t.button(e).text(s.text||t.i18n("buttons.fixedColumns",t.settings()[0]._fixedColumns.c.i18n.button))},text:null},o(e).on("plugin-init.dt",function(t,e){"dt"!==t.namespace||!e.oInit.fixedColumns&&!n.defaults.fixedColumns||e._fixedColumns||r(e,null)}),n});
+
+/*! FixedHeader 4.0.1
+ * © SpryMedia Ltd - datatables.net/license
+ */
+!function(o){var i,s;"function"==typeof define&&define.amd?define(["jquery","datatables.net"],function(t){return o(t,window,document)}):"object"==typeof exports?(i=require("jquery"),s=function(t,e){e.fn.dataTable||require("datatables.net")(t,e)},"undefined"==typeof window?module.exports=function(t,e){return t=t||window,e=e||i(t),s(t,e),o(e,t,t.document)}:(s(window,i),module.exports=o(i,window,window.document))):o(jQuery,window,document)}(function(b,m,v){"use strict";function s(t,e){if(!d.versionCheck("2"))throw"Warning: FixedHeader requires DataTables 2 or newer";if(!(this instanceof s))throw"FixedHeader must be initialised with the 'new' keyword.";if(!0===e&&(e={}),t=new d.Api(t),this.c=b.extend(!0,{},s.defaults,e),this.s={dt:t,position:{theadTop:0,tbodyTop:0,tfootTop:0,tfootBottom:0,width:0,left:0,tfootHeight:0,theadHeight:0,windowHeight:b(m).height(),visible:!0},headerMode:null,footerMode:null,autoWidth:t.settings()[0].oFeatures.bAutoWidth,namespace:".dtfc"+o++,scrollLeft:{header:-1,footer:-1},enable:!0,autoDisable:!1},this.dom={floatingHeader:null,thead:b(t.table().header()),tbody:b(t.table().body()),tfoot:b(t.table().footer()),header:{host:null,floating:null,floatingParent:b('<div class="dtfh-floatingparent"><div></div></div>'),placeholder:null},footer:{host:null,floating:null,floatingParent:b('<div class="dtfh-floatingparent"><div></div></div>'),placeholder:null}},this.dom.header.host=this.dom.thead.parent(),this.dom.footer.host=this.dom.tfoot.parent(),(e=t.settings()[0])._fixedHeader)throw"FixedHeader already initialised on table "+e.nTable.id;(e._fixedHeader=this)._constructor()}var d=b.fn.dataTable,o=0;return b.extend(s.prototype,{destroy:function(){var t=this.dom;this.s.dt.off(".dtfc"),b(m).off(this.s.namespace),t.header.rightBlocker&&t.header.rightBlocker.remove(),t.header.leftBlocker&&t.header.leftBlocker.remove(),t.footer.rightBlocker&&t.footer.rightBlocker.remove(),t.footer.leftBlocker&&t.footer.leftBlocker.remove(),this.c.header&&this._modeChange("in-place","header",!0),this.c.footer&&t.tfoot.length&&this._modeChange("in-place","footer",!0)},enable:function(t,e,o){this.s.enable=t,this.s.enableType=o,!e&&void 0!==e||(this._positions(),this._scroll(!0))},enabled:function(){return this.s.enable},headerOffset:function(t){return void 0!==t&&(this.c.headerOffset=t,this.update()),this.c.headerOffset},footerOffset:function(t){return void 0!==t&&(this.c.footerOffset=t,this.update()),this.c.footerOffset},update:function(t){var e=this.s.dt.table().node();(this.s.enable||this.s.autoDisable)&&(b(e).is(":visible")?(this.s.autoDisable=!1,this.enable(!0,!1)):(this.s.autoDisable=!0,this.enable(!1,!1)),0!==b(e).children("thead").length)&&(this._positions(),this._scroll(void 0===t||t),this._widths(this.dom.header),this._widths(this.dom.footer))},_constructor:function(){var o=this,i=this.s.dt,t=(b(m).on("scroll"+this.s.namespace,function(){o._scroll()}).on("resize"+this.s.namespace,d.util.throttle(function(){o.s.position.windowHeight=b(m).height(),o.update()},50)),b(".fh-fixedHeader")),t=(!this.c.headerOffset&&t.length&&(this.c.headerOffset=t.outerHeight()),b(".fh-fixedFooter"));!this.c.footerOffset&&t.length&&(this.c.footerOffset=t.outerHeight()),i.on("column-reorder.dt.dtfc column-visibility.dt.dtfc column-sizing.dt.dtfc responsive-display.dt.dtfc",function(t,e){o.update()}).on("draw.dt.dtfc",function(t,e){o.update(e!==i.settings()[0])}),i.on("destroy.dtfc",function(){o.destroy()}),this._positions(),this._scroll()},_clone:function(t,e){var o,i,s=this,d=this.s.dt,n=this.dom[t],r="header"===t?this.dom.thead:this.dom.tfoot;"footer"===t&&this._scrollEnabled()||(!e&&n.floating?n.floating.removeClass("fixedHeader-floating fixedHeader-locked"):(n.floating&&(null!==n.placeholder&&n.placeholder.remove(),n.floating.children().detach(),n.floating.remove()),e=b(d.table().node()),o=b(e.parent()),i=this._scrollEnabled(),n.floating=b(d.table().node().cloneNode(!1)).attr("aria-hidden","true").css({top:0,left:0}).removeAttr("id"),n.floatingParent.css({width:o[0].offsetWidth,overflow:"hidden",height:"fit-content",position:"fixed",left:i?e.offset().left+o.scrollLeft():0}).css("header"===t?{top:this.c.headerOffset,bottom:""}:{top:"",bottom:this.c.footerOffset}).addClass("footer"===t?"dtfh-floatingparent-foot":"dtfh-floatingparent-head").appendTo("body").children().eq(0).append(n.floating),this._stickyPosition(n.floating,"-"),(i=function(){var t=o.scrollLeft();s.s.scrollLeft={footer:t,header:t},n.floatingParent.scrollLeft(s.s.scrollLeft.header)})(),o.off("scroll.dtfh").on("scroll.dtfh",i),n.floatingParent.children().css({width:"fit-content",paddingRight:s.s.dt.settings()[0].oBrowser.barWidth}),(e=b("footer"===t?"div.dtfc-bottom-blocker":"div.dtfc-top-blocker",d.table().container())).length&&e.clone().appendTo(n.floatingParent).css({position:"fixed",right:e.width()}),n.placeholder=r.clone(!1),n.placeholder.find("*[id]").removeAttr("id"),n.host.prepend(n.placeholder),n.floating.append(r),this._widths(n)))},_stickyPosition:function(t,e){var i;this._scrollEnabled()&&(i="rtl"===b(this.s.dt.table().node()).css("direction"),t.find("th").each(function(){var t,e,o;"sticky"===b(this).css("position")&&(t=b(this).css("right"),e=b(this).css("left"),"auto"===t||i?"auto"!==e&&i&&(o=+e.replace(/px/g,""),b(this).css("left",0<o?o:0)):(o=+t.replace(/px/g,""),b(this).css("right",0<o?o:0)))}))},_horizontal:function(t,e){var o,i=this.dom[t],s=this.s.scrollLeft;i.floating&&s[t]!==e&&(this._scrollEnabled()&&(o=b(b(this.s.dt.table().node()).parent()).scrollLeft(),i.floating.scrollLeft(o),i.floatingParent.scrollLeft(o)),s[t]=e)},_modeChange:function(t,e,o){var i,s,d,n,r,a,f,h=this.dom[e],l=this.s.position,c=this._scrollEnabled();"footer"===e&&c||(i=function(t){h.floating[0].style.setProperty("width",t+"px","important"),c||h.floatingParent[0].style.setProperty("width",t+"px","important")},n=this.dom["footer"===e?"tfoot":"thead"],s=b.contains(n[0],v.activeElement)?v.activeElement:null,r=b(b(this.s.dt.table().node()).parent()),"in-place"===t?(h.placeholder&&(h.placeholder.remove(),h.placeholder=null),"header"===e?h.host.prepend(n):h.host.append(n),h.floating&&(h.floating.remove(),h.floating=null,this._stickyPosition(h.host,"+")),h.floatingParent&&(h.floatingParent.find("div.dtfc-top-blocker").remove(),h.floatingParent.remove()),b(b(h.host.parent()).parent()).scrollLeft(r.scrollLeft())):"in"===t?(this._clone(e,o),n=r.offset(),f=(d=b(v).scrollTop())+b(m).height(),a=c?n.top:l.tbodyTop,n=c?n.top+r.outerHeight():l.tfootTop,r="footer"===e?f<a?l.tfootHeight:a+l.tfootHeight-f:d+this.c.headerOffset+l.theadHeight-n,a="header"===e?"top":"bottom",f=this.c[e+"Offset"]-(0<r?r:0),h.floating.addClass("fixedHeader-floating"),h.floatingParent.css(a,f).css({left:l.left,"z-index":3}),i(l.width),"footer"===e&&h.floating.css("top","")):"below"===t?(this._clone(e,o),h.floating.addClass("fixedHeader-locked"),h.floatingParent.css({position:"absolute",top:l.tfootTop-l.theadHeight,left:l.left+"px"}),i(l.width)):"above"===t&&(this._clone(e,o),h.floating.addClass("fixedHeader-locked"),h.floatingParent.css({position:"absolute",top:l.tbodyTop,left:l.left+"px"}),i(l.width)),s&&s!==v.activeElement&&setTimeout(function(){s.focus()},10),this.s.scrollLeft.header=-1,this.s.scrollLeft.footer=-1,this.s[e+"Mode"]=t)},_positions:function(){var t=this.s.dt,e=t.table(),o=this.s.position,i=this.dom,e=b(e.node()),s=this._scrollEnabled(),d=b(t.table().header()),t=b(t.table().footer()),i=i.tbody,n=e.parent();o.visible=e.is(":visible"),o.width=e.outerWidth(),o.left=e.offset().left,o.theadTop=d.offset().top,o.tbodyTop=(s?n:i).offset().top,o.tbodyHeight=(s?n:i).outerHeight(),o.theadHeight=d.outerHeight(),o.theadBottom=o.theadTop+o.theadHeight,o.tfootTop=o.tbodyTop+o.tbodyHeight,t.length?(o.tfootBottom=o.tfootTop+t.outerHeight(),o.tfootHeight=t.outerHeight()):(o.tfootBottom=o.tfootTop,o.tfootHeight=0)},_scroll:function(t){var e,o,i,s,d,n,r,a,f,h,l,c,p,g,u;this.s.dt.settings()[0].bDestroying||(e=this._scrollEnabled(),i=(o=b(this.s.dt.table().node()).parent()).offset(),h=o.outerHeight(),s=b(v).scrollLeft(),d=b(v).scrollTop(),n=b(m).height()+d,l=this.s.position,c=e?i.top:l.tbodyTop,a=(e?i:l).left,h=e?i.top+h:l.tfootTop,f=e?o.outerWidth():l.tbodyWidth,this.c.header&&(!this.s.enable||!l.visible||d+this.c.headerOffset+l.theadHeight<=c?r="in-place":d+this.c.headerOffset+l.theadHeight>c&&d+this.c.headerOffset+l.theadHeight<h?(r="in",d+this.c.headerOffset+l.theadHeight>h||void 0===this.dom.header.floatingParent?t=!0:this.dom.header.floatingParent.css({top:this.c.headerOffset,position:"fixed"}).children().eq(0).append(this.dom.header.floating)):r="below",!t&&r===this.s.headerMode||this._modeChange(r,"header",t),this._horizontal("header",s)),p={offset:{top:0,left:0},height:0},g={offset:{top:0,left:0},height:0},this.c.footer&&this.dom.tfoot.length&&this.dom.tfoot.find("th, td").length&&(!this.s.enable||!l.visible||l.tfootBottom+this.c.footerOffset<=n?u="in-place":h+l.tfootHeight+this.c.footerOffset>n&&c+this.c.footerOffset<n?(u="in",t=!0):u="above",!t&&u===this.s.footerMode||this._modeChange(u,"footer",t),this._horizontal("footer",s),h=function(t){return{offset:t.offset(),height:t.outerHeight()}},p=this.dom.header.floating?h(this.dom.header.floating):h(this.dom.thead),g=this.dom.footer.floating?h(this.dom.footer.floating):h(this.dom.tfoot),e)&&g.offset.top>d&&(c=n+((l=d-i.top)>-p.height?l:0)-(p.offset.top+(l<-p.height?p.height:0)+g.height),o.outerHeight(c=c<0?0:c),Math.round(o.outerHeight())>=Math.round(c)?b(this.dom.tfoot.parent()).addClass("fixedHeader-floating"):b(this.dom.tfoot.parent()).removeClass("fixedHeader-floating")),this.dom.header.floating&&this.dom.header.floatingParent.css("left",a-s),this.dom.footer.floating&&this.dom.footer.floatingParent.css("left",a-s),void 0!==this.s.dt.settings()[0]._fixedColumns&&(this.dom.header.rightBlocker=(u=function(t,e,o){var i;return null!==(o=void 0===o?0===(i=b("div.dtfc-"+t+"-"+e+"-blocker")).length?null:i.clone().css("z-index",1):o)&&("in"===r||"below"===r?o.appendTo("body").css({top:("top"===e?p:g).offset.top,left:"right"===t?a+f-o.width():a}):o.detach()),o})("right","top",this.dom.header.rightBlocker),this.dom.header.leftBlocker=u("left","top",this.dom.header.leftBlocker),this.dom.footer.rightBlocker=u("right","bottom",this.dom.footer.rightBlocker),this.dom.footer.leftBlocker=u("left","bottom",this.dom.footer.leftBlocker)))},_scrollEnabled:function(){var t=this.s.dt.settings()[0].oScroll;return""!==t.sY||""!==t.sX},_widths:function(t){if(t&&t.placeholder)for(var e=b(this.s.dt.table().node()),o=b(e.parent()),i=(t.floatingParent.css("width",o[0].offsetWidth),t.floating.css("width",e[0].offsetWidth),b("colgroup",t.floating).remove(),t.placeholder.parent().find("colgroup").clone().appendTo(t.floating).find("col")),s=this.s.dt.columns(":visible").widths(),d=0;d<s.length;d++)i.eq(d).css("width",s[d])}}),s.version="4.0.1",s.defaults={header:!0,footer:!1,headerOffset:0,footerOffset:0},b.fn.dataTable.FixedHeader=s,b.fn.DataTable.FixedHeader=s,b(v).on("init.dt.dtfh",function(t,e,o){var i;"dt"===t.namespace&&(t=e.oInit.fixedHeader,i=d.defaults.fixedHeader,t||i)&&!e._fixedHeader&&(i=b.extend({},i,t),!1!==t)&&new s(e,i)}),d.Api.register("fixedHeader()",function(){}),d.Api.register("fixedHeader.adjust()",function(){return this.iterator("table",function(t){t=t._fixedHeader;t&&t.update()})}),d.Api.register("fixedHeader.enable()",function(e){return this.iterator("table",function(t){t=t._fixedHeader;e=void 0===e||e,t&&e!==t.enabled()&&t.enable(e)})}),d.Api.register("fixedHeader.enabled()",function(){if(this.context.length){var t=this.context[0]._fixedHeader;if(t)return t.enabled()}return!1}),d.Api.register("fixedHeader.disable()",function(){return this.iterator("table",function(t){t=t._fixedHeader;t&&t.enabled()&&t.enable(!1)})}),b.each(["header","footer"],function(t,o){d.Api.register("fixedHeader."+o+"Offset()",function(e){var t=this.context;return void 0===e?t.length&&t[0]._fixedHeader?t[0]._fixedHeader[o+"Offset"]():void 0:this.iterator("table",function(t){t=t._fixedHeader;t&&t[o+"Offset"](e)})})}),d});
+
+/*! KeyTable 2.12.1
+ * © SpryMedia Ltd - datatables.net/license
+ */
+!function(n){var i,s;"function"==typeof define&&define.amd?define(["jquery","datatables.net"],function(e){return n(e,window,document)}):"object"==typeof exports?(i=require("jquery"),s=function(e,t){t.fn.dataTable||require("datatables.net")(e,t)},"undefined"==typeof window?module.exports=function(e,t){return e=e||window,t=t||i(e),s(e,t),n(t,e,e.document)}:(s(window,i),module.exports=n(i,window,window.document))):n(jQuery,window,document)}(function(c,u,d){"use strict";function o(e,t){if(!l.versionCheck||!l.versionCheck("1.10.8"))throw"KeyTable requires DataTables 1.10.8 or newer";if(this.c=c.extend(!0,{},l.defaults.keyTable,o.defaults,t),this.s={dt:new l.Api(e),dtDrawing:!1,enable:!0,focusDraw:!1,waitingForDraw:!1,lastFocus:null,namespace:".keyTable-"+n++,tabInput:null},this.dom={},t=this.s.dt.settings()[0],e=t.keytable)return e;(t.keytable=this)._constructor()}var l=c.fn.dataTable,n=0,f=0;return c.extend(o.prototype,{blur:function(){this._blur()},enable:function(e){this.s.enable=e},enabled:function(){return this.s.enable},focus:function(e,t){this._focus(this.s.dt.cell(e,t))},focused:function(e){var t;return!!this.s.lastFocus&&(t=this.s.lastFocus.cell.index(),e.row===t.row)&&e.column===t.column},_constructor:function(){this._tabInput();var i,o=this,s=this.s.dt,e=c(s.table().node()),l=this.s.namespace,t=!1,n=("static"===e.css("position")&&e.css("position","relative"),c(s.table().body()).on("click"+l,"th, td",function(e){var t;!1!==o.s.enable&&(t=s.cell(this)).any()&&o._focus(t,null,!1,e)}),c(d).on("keydown"+l,function(e){t||o.s.dtDrawing?e.preventDefault():o._key(e)}),this.c.blurable&&c(d).on("mousedown"+l,function(e){c(e.target).parents(".dataTables_filter, .dt-search").length&&o._blur(),c(e.target).parents().filter(s.table().container()).length||c(e.target).parents("div.DTE").length||c(e.target).parents("div.editor-datetime").length||c(e.target).parents("div.dt-datetime").length||c(e.target).parents().filter(".DTFC_Cloned").length||o._blur()}),this.c.editor&&((i=this.c.editor).on("open.keyTableMain",function(e,t,n){"inline"!==t&&o.s.enable&&(o.enable(!1),i.one("close"+l,function(){o.enable(!0)}))}),this.c.editOnFocus&&s.on("key-focus"+l+" key-refocus"+l,function(e,t,n,i){o._editor(null,i,!0)}),s.on("key"+l,function(e,t,n,i,s){o._editor(n,s,!1)}),c(s.table().body()).on("dblclick"+l,"th, td",function(e){!1===o.s.enable||!s.cell(this).any()||o.s.lastFocus&&this!==o.s.lastFocus.cell.node()||o._editor(null,e,!0)}),i.on("preSubmit",function(){t=!0}).on("preSubmitCancelled",function(){t=!1}).on("submitComplete",function(){t=!1})),s.on("stateSaveParams"+l,function(e,t,n){n.keyTable=o.s.lastFocus?o.s.lastFocus.cell.index():null}),s.on("column-visibility"+l,function(e){o._tabInput()}),s.on("column-reorder"+l,function(e,t,n){var i,s=o.s.lastFocus;s&&s.cell&&(i=s.relative.column,s.cell[0][0].column=n.mapping.indexOf(i),s.relative.column=n.mapping.indexOf(i))}),s.on("preDraw"+l+" scroller-will-draw"+l,function(e){o.s.dtDrawing=!0}),s.on("draw"+l,function(e){var t,n,i;o.s.dtDrawing=!1,o._tabInput(),o.s.focusDraw||o.s.lastFocus&&(t=o.s.lastFocus.relative,n=s.page.info(),i=t.row,0===n.recordsDisplay||i<n.start||i>n.start+n.length||(i>=n.recordsDisplay&&(i=n.recordsDisplay-1),o._focus(i,t.column,!0,e)))}),this.c.clipboard&&this._clipboard(),s.on("destroy"+l,function(){o._blur(!0),s.off(l),c(s.table().body()).off("click"+l,"th, td").off("dblclick"+l,"th, td"),c(d).off("mousedown"+l).off("keydown"+l).off("copy"+l).off("paste"+l)}),s.state.loaded());n&&n.keyTable?s.one("init",function(){var e=s.cell(n.keyTable);e.any()&&e.focus()}):this.c.focus&&s.cell(this.c.focus).focus()},_blur:function(e){var t;this.s.enable&&this.s.lastFocus&&(t=this.s.lastFocus.cell,c(t.node()).removeClass(this.c.className),this.s.lastFocus=null,e||(this._updateFixedColumns(t.index().column),this._emitEvent("key-blur",[this.s.dt,t])))},_clipboard:function(){var o=this.s.dt,l=this,e=this.s.namespace,t=this.c.clipboard;u.getSelection&&(!0!==t&&!t.copy||c(d).on("copy"+e,function(e){var e=e.originalEvent,t=u.getSelection().toString(),n=l.s.lastFocus;!t&&n&&(e.clipboardData.setData("text/plain",n.cell.render(l.c.clipboardOrthogonal)),e.preventDefault())}),!0!==t&&!t.paste||c(d).on("paste"+e,function(e){var t,e=e.originalEvent,n=l.s.lastFocus,i=d.activeElement,s=l.c.editor;!n||i&&"body"!==i.nodeName.toLowerCase()||(e.preventDefault(),u.clipboardData&&u.clipboardData.getData?t=u.clipboardData.getData("Text"):e.clipboardData&&e.clipboardData.getData&&(t=e.clipboardData.getData("text/plain")),s?(i=l._inlineOptions(n.cell.index()),s.inline(i.cell,i.field,i.options).set(s.displayed()[0],t).submit()):(n.cell.data(t),o.draw(!1)))}))},_columns:function(){var e=this.s.dt,t=e.columns(this.c.columns).indexes(),n=[];return e.columns(":visible").every(function(e){-1!==t.indexOf(e)&&n.push(e)}),n},_editor:function(e,t,n){var i,s,o,l,a,r;!this.s.lastFocus||t&&"draw"===t.type||(s=(i=this).s.dt,o=this.c.editor,l=this.s.lastFocus.cell,a=this.s.namespace+"e"+f++,c("div.DTE",l.node()).length)||null!==e&&(0<=e&&e<=9||11===e||12===e||14<=e&&e<=31||112<=e&&e<=123||127<=e&&e<=159)||(t&&(t.stopPropagation(),13===e)&&t.preventDefault(),r=function(){var e=i._inlineOptions(l.index());o.one("open"+a,function(){o.off("cancelOpen"+a),n||c("div.DTE_Field_InputControl input, div.DTE_Field_InputControl textarea").select(),s.keys.enable(n?"tab-only":"navigation-only"),s.on("key-blur.editor",function(e,t,n){"submit"!==o.s.editOpts.onBlur&&o.displayed()&&n.node()===l.node()&&o.submit()}),n&&c(s.table().container()).addClass("dtk-focus-alt"),o.on("preSubmitCancelled"+a,function(){setTimeout(function(){i._focus(l,null,!1)},50)}),o.on("submitUnsuccessful"+a,function(){i._focus(l,null,!1)}),o.one("close"+a,function(){s.keys.enable(!0),s.off("key-blur.editor"),o.off(a),c(s.table().container()).removeClass("dtk-focus-alt"),i.s.returnSubmit&&(i.s.returnSubmit=!1,i._emitEvent("key-return-submit",[s,l]))})}).one("cancelOpen"+a,function(){o.off(a)}).inline(e.cell,e.field,e.options)},13===e?(n=!0,c(d).one("keyup",function(){r()})):r())},_inlineOptions:function(e){return this.c.editorOptions?this.c.editorOptions(e):{cell:e,field:void 0,options:void 0}},_emitEvent:function(n,i){return this.s.dt.iterator("table",function(e,t){return c(e.nTable).triggerHandler(n,i)})},_focus:function(e,t,n,i){var s=this,o=this.s.dt,l=o.page.info(),a=this.s.lastFocus;if(i=i||null,this.s.enable){if("number"!=typeof e){if(!e.any())return;var r=e.index();if(t=r.column,(e=o.rows({filter:"applied",order:"applied"}).indexes().indexOf(r.row))<0)return;l.serverSide&&(e+=l.start)}if(-1!==l.length&&(e<l.start||e>=l.start+l.length))this.s.focusDraw=!0,this.s.waitingForDraw=!0,o.one("draw",function(){s.s.focusDraw=!1,s.s.waitingForDraw=!1,s._focus(e,t,void 0,i)}).page(Math.floor(e/l.length)).draw(!1);else if(-1!==c.inArray(t,this._columns())){l.serverSide&&(e-=l.start);r=o.cells(null,t,{search:"applied",order:"applied"}).flatten(),l=o.cell(r[e]),r=this._emitEvent("key-prefocus",[this.s.dt,l,i||null]);if(-1===r.indexOf(!1)){if(a){if(a.node===l.node())return void this._emitEvent("key-refocus",[this.s.dt,l,i||null]);this._blur()}this._removeOtherFocus();r=c(l.node()),a=(r.addClass(this.c.className),this._updateFixedColumns(t),void 0!==n&&!0!==n||(this._scroll(c(u),c(d.body),r,"offset"),(a=o.table().body().parentNode)!==o.table().header().parentNode&&(n=c(a.parentNode),this._scroll(n,n,r,"position"))),o.page.info());this.s.lastFocus={cell:l,node:l.node(),relative:{row:a.start+o.rows({page:"current"}).indexes().indexOf(l.index().row),column:l.index().column}},this._emitEvent("key-focus",[this.s.dt,l,i||null]),o.state.save()}}}},_key:function(n){if(this.s.waitingForDraw)n.preventDefault();else if(!c(n.target).closest(".dte-inlineAdd").length){var e=this.s.enable,t=(this.s.returnSubmit=("navigation-only"===e||"tab-only"===e)&&13===n.keyCode,!0===e||"navigation-only"===e);if(e&&(!(0===n.keyCode||n.ctrlKey||n.metaKey||n.altKey)||n.ctrlKey&&n.altKey)){var i=this.s.lastFocus;if(i)if(this.s.dt.cell(i.node).any()){var s=this,o=this.s.dt,l=!!this.s.dt.settings()[0].oScroll.sY;if(!this.c.keys||-1!==c.inArray(n.keyCode,this.c.keys))switch(n.keyCode){case 9:n.preventDefault(),this._keyAction(function(){s._shift(n,n.shiftKey?"left":"right",!0)});break;case 27:c(i.node).find("div.DTE").length||this.c.blurable&&!0===e&&this._blur();break;case 33:case 34:t&&!l&&(n.preventDefault(),this._keyAction(function(){o.page(33===n.keyCode?"previous":"next").draw(!1)}));break;case 35:case 36:t&&(n.preventDefault(),this._keyAction(function(){var e=o.cells({page:"current"}).indexes(),t=s._columns();s._focus(o.cell(e[35===n.keyCode?e.length-1:t[0]]),null,!0,n)}));break;case 37:t&&this._keyAction(function(){s._shift(n,"left")});break;case 38:t&&this._keyAction(function(){s._shift(n,"up")});break;case 39:t&&this._keyAction(function(){s._shift(n,"right")});break;case 40:t&&this._keyAction(function(){s._shift(n,"down")});break;case 113:if(this.c.editor){this._editor(null,n,!0);break}default:!0===e&&this._emitEvent("key",[o,n.keyCode,this.s.lastFocus.cell,n])}}else this.s.lastFocus=null}}},_keyAction:function(e){var t=this.c.editor;t&&t.mode()&&t.display()?t.submit(e):e()},_removeOtherFocus:function(){var t=this.s.dt.table().node();c.fn.dataTable.tables({api:!0}).iterator("table",function(e){this.table().node()!==t&&this.cell.blur()})},_scroll:function(e,t,n,i){var s=n[i](),o=n.outerHeight(),l=n.outerWidth(),a=t.scrollTop(),r=t.scrollLeft(),c=e.height(),e=e.width();"position"===i&&(s.top+=parseInt(n.closest("table").css("top"),10)),s.top<a&&s.top+o>a-5&&t.scrollTop(s.top),s.left<r&&t.scrollLeft(s.left),s.top+o>a+c&&s.top<a+c+5&&o<c&&t.scrollTop(s.top+o-c),s.left+l>r+e&&l<e&&t.scrollLeft(s.left+l-e)},_shift:function(e,t,n){var i,s=this.s.dt,o=s.page.info(),l=o.recordsDisplay,a=this._columns(),r=this.s.lastFocus;r&&(r=r.cell)&&(i=s.rows({filter:"applied",order:"applied"}).indexes().indexOf(r.index().row),o.serverSide&&(i+=o.start),o=i,r=a[i=s.columns(a).indexes().indexOf(r.index().column)],"rtl"===c(s.table().node()).css("direction")&&("right"===t?t="left":"left"===t&&(t="right")),"right"===t?r=i>=a.length-1?(o++,a[0]):a[i+1]:"left"===t?r=0===i?(o--,a[a.length-1]):a[i-1]:"up"===t?o--:"down"===t&&o++,0<=o&&o<l&&-1!==c.inArray(r,a)?(e&&e.preventDefault(),this._focus(o,r,!0,e)):n&&this.c.blurable?this._blur():e&&e.preventDefault())},_tabInput:function(){var n=this,i=this.s.dt,e=null!==this.c.tabIndex?this.c.tabIndex:i.settings()[0].iTabIndex;-1!=e&&(this.s.tabInput||((e=c('<div><input type="text" tabindex="'+e+'"/></div>').css({position:"absolute",height:1,width:0,overflow:"hidden"})).children().on("focus",function(e){var t=i.cell(":eq(0)",n._columns(),{page:"current"});t.any()&&n._focus(t,null,!0,e)}),this.s.tabInput=e),e=this.s.dt.cell(":eq(0)","0:visible",{page:"current",order:"current"}).node())&&c(e).prepend(this.s.tabInput)},_updateFixedColumns:function(e){var t,n=this.s.dt,i=n.settings()[0];i._oFixedColumns&&(t=i._oFixedColumns.s.iLeftColumns,i=i.aoColumns.length-i._oFixedColumns.s.iRightColumns,e<t||i<=e)&&n.fixedColumns().update()}}),o.defaults={blurable:!0,className:"focus",clipboard:!0,clipboardOrthogonal:"display",columns:"",editor:null,editOnFocus:!1,editorOptions:null,focus:null,keys:null,tabIndex:null},o.version="2.12.1",c.fn.dataTable.KeyTable=o,c.fn.DataTable.KeyTable=o,l.Api.register("cell.blur()",function(){return this.iterator("table",function(e){e.keytable&&e.keytable.blur()})}),l.Api.register("cell().focus()",function(){return this.iterator("cell",function(e,t,n){e.keytable&&e.keytable.focus(t,n)})}),l.Api.register("keys.disable()",function(){return this.iterator("table",function(e){e.keytable&&e.keytable.enable(!1)})}),l.Api.register("keys.enable()",function(t){return this.iterator("table",function(e){e.keytable&&e.keytable.enable(void 0===t||t)})}),l.Api.register("keys.enabled()",function(e){var t=this.context;return!!t.length&&!!t[0].keytable&&t[0].keytable.enabled()}),l.Api.register("keys.move()",function(t){return this.iterator("table",function(e){e.keytable&&e.keytable._shift(null,t,!1)})}),l.ext.selector.cell.push(function(e,t,n){var i=t.focused,s=e.keytable,o=[];if(!s||void 0===i)return n;for(var l=0,a=n.length;l<a;l++)(!0===i&&s.focused(n[l])||!1===i&&!s.focused(n[l]))&&o.push(n[l]);return o}),c(d).on("preInit.dt.dtk",function(e,t,n){var i,s;"dt"===e.namespace&&(e=t.oInit.keys,i=l.defaults.keys,e||i)&&(s=c.extend({},i,e),!1!==e)&&new o(t,s)}),l});
+
+/*! Responsive 3.0.2
+ * © SpryMedia Ltd - datatables.net/license
+ */
+!function(n){var i,r;"function"==typeof define&&define.amd?define(["jquery","datatables.net"],function(e){return n(e,window,document)}):"object"==typeof exports?(i=require("jquery"),r=function(e,t){t.fn.dataTable||require("datatables.net")(e,t)},"undefined"==typeof window?module.exports=function(e,t){return e=e||window,t=t||i(e),r(e,t),n(t,e,e.document)}:(r(window,i),module.exports=n(i,window,window.document))):n(jQuery,window,document)}(function(b,y,d){"use strict";function a(e,t){if(!i.versionCheck||!i.versionCheck("2"))throw"DataTables Responsive requires DataTables 2 or newer";this.s={childNodeStore:{},columns:[],current:[],dt:new i.Api(e)},this.s.dt.settings()[0].responsive||(t&&"string"==typeof t.details?t.details={type:t.details}:t&&!1===t.details?t.details={type:!1}:t&&!0===t.details&&(t.details={type:"inline"}),this.c=b.extend(!0,{},a.defaults,i.defaults.responsive,t),(e.responsive=this)._constructor())}var i=b.fn.dataTable,e=(b.extend(a.prototype,{_constructor:function(){var o=this,r=this.s.dt,t=b(y).innerWidth(),e=(r.settings()[0]._responsive=this,b(y).on("orientationchange.dtr",i.util.throttle(function(){var e=b(y).innerWidth();e!==t&&(o._resize(),t=e)})),r.on("row-created.dtr",function(e,t,n,i){-1!==b.inArray(!1,o.s.current)&&b(">td, >th",t).each(function(e){e=r.column.index("toData",e);!1===o.s.current[e]&&b(this).css("display","none").addClass("dtr-hidden")})}),r.on("destroy.dtr",function(){r.off(".dtr"),b(r.table().body()).off(".dtr"),b(y).off("resize.dtr orientationchange.dtr"),r.cells(".dtr-control").nodes().to$().removeClass("dtr-control"),b(r.table().node()).removeClass("dtr-inline collapsed"),b.each(o.s.current,function(e,t){!1===t&&o._setColumnVis(e,!0)})}),this.c.breakpoints.sort(function(e,t){return e.width<t.width?1:e.width>t.width?-1:0}),this._classLogic(),this._resizeAuto(),this.c.details);!1!==e.type&&(o._detailsInit(),r.on("column-visibility.dtr",function(){o._timer&&clearTimeout(o._timer),o._timer=setTimeout(function(){o._timer=null,o._classLogic(),o._resizeAuto(),o._resize(!0),o._redrawChildren()},100)}),r.on("draw.dtr",function(){o._redrawChildren()}),b(r.table().node()).addClass("dtr-"+e.type)),r.on("column-reorder.dtr",function(e,t,n){o._classLogic(),o._resizeAuto(),o._resize(!0)}),r.on("column-sizing.dtr",function(){o._resizeAuto(),o._resize()}),r.on("column-calc.dt",function(e,t){for(var n=o.s.current,i=0;i<n.length;i++){var r=t.visible.indexOf(i);!1===n[i]&&0<=r&&t.visible.splice(r,1)}}),r.on("preXhr.dtr",function(){var e=[];r.rows().every(function(){this.child.isShown()&&e.push(this.id(!0))}),r.one("draw.dtr",function(){o._resizeAuto(),o._resize(),r.rows(e).every(function(){o._detailsDisplay(this,!1)})})}),r.on("draw.dtr",function(){o._controlClass()}).on("init.dtr",function(e,t,n){"dt"===e.namespace&&(o._resizeAuto(),o._resize())}),this._resize()},_colGroupAttach:function(e,t,n){var i=null;if(t[n].get(0).parentNode!==e[0]){for(var r=n+1;r<t.length;r++)if(e[0]===t[r].get(0).parentNode){i=r;break}null!==i?t[n].insertBefore(t[i][0]):e.append(t[n])}},_childNodes:function(e,t,n){var i=t+"-"+n;if(this.s.childNodeStore[i])return this.s.childNodeStore[i];for(var r=[],o=e.cell(t,n).node().childNodes,s=0,d=o.length;s<d;s++)r.push(o[s]);return this.s.childNodeStore[i]=r},_childNodesRestore:function(e,t,n){var i=t+"-"+n;if(this.s.childNodeStore[i]){var r=e.cell(t,n).node(),e=this.s.childNodeStore[i];if(0<e.length){for(var o=e[0].parentNode.childNodes,s=[],d=0,a=o.length;d<a;d++)s.push(o[d]);for(var l=0,c=s.length;l<c;l++)r.appendChild(s[l])}this.s.childNodeStore[i]=void 0}},_columnsVisiblity:function(n){for(var i=this.s.dt,e=this.s.columns,t=e.map(function(e,t){return{columnIdx:t,priority:e.priority}}).sort(function(e,t){return e.priority!==t.priority?e.priority-t.priority:e.columnIdx-t.columnIdx}),r=b.map(e,function(e,t){return!1===i.column(t).visible()?"not-visible":(!e.auto||null!==e.minWidth)&&(!0===e.auto?"-":-1!==b.inArray(n,e.includeIn))}),o=0,s=0,d=r.length;s<d;s++)!0===r[s]&&(o+=e[s].minWidth);var a=i.settings()[0].oScroll,a=a.sY||a.sX?a.iBarWidth:0,l=i.table().container().offsetWidth-a-o;for(s=0,d=r.length;s<d;s++)e[s].control&&(l-=e[s].minWidth);var c=!1;for(s=0,d=t.length;s<d;s++){var u=t[s].columnIdx;"-"===r[u]&&!e[u].control&&e[u].minWidth&&(c||l-e[u].minWidth<0?r[u]=!(c=!0):r[u]=!0,l-=e[u].minWidth)}var h=!1;for(s=0,d=e.length;s<d;s++)if(!e[s].control&&!e[s].never&&!1===r[s]){h=!0;break}for(s=0,d=e.length;s<d;s++)e[s].control&&(r[s]=h),"not-visible"===r[s]&&(r[s]=!1);return-1===b.inArray(!0,r)&&(r[0]=!0),r},_classLogic:function(){function d(e,t,n,i){var r,o,s;if(n){if("max-"===n)for(r=a._find(t).width,o=0,s=l.length;o<s;o++)l[o].width<=r&&u(e,l[o].name);else if("min-"===n)for(r=a._find(t).width,o=0,s=l.length;o<s;o++)l[o].width>=r&&u(e,l[o].name);else if("not-"===n)for(o=0,s=l.length;o<s;o++)-1===l[o].name.indexOf(i)&&u(e,l[o].name)}else c[e].includeIn.push(t)}var a=this,l=this.c.breakpoints,c=this.s.dt.columns().eq(0).map(function(e){var e=this.column(e),t=e.header().className,n=e.init().responsivePriority,e=e.header().getAttribute("data-priority");return void 0===n&&(n=null==e?1e4:+e),{className:t,includeIn:[],auto:!1,control:!1,never:!!t.match(/\b(dtr\-)?never\b/),priority:n}}),u=function(e,t){e=c[e].includeIn;-1===b.inArray(t,e)&&e.push(t)};c.each(function(e,r){for(var t=e.className.split(" "),o=!1,n=0,i=t.length;n<i;n++){var s=t[n].trim();if("all"===s||"dtr-all"===s)return o=!0,void(e.includeIn=b.map(l,function(e){return e.name}));if("none"===s||"dtr-none"===s||e.never)return void(o=!0);if("control"===s||"dtr-control"===s)return o=!0,void(e.control=!0);b.each(l,function(e,t){var n=t.name.split("-"),i=new RegExp("(min\\-|max\\-|not\\-)?("+n[0]+")(\\-[_a-zA-Z0-9])?"),i=s.match(i);i&&(o=!0,i[2]===n[0]&&i[3]==="-"+n[1]?d(r,t.name,i[1],i[2]+i[3]):i[2]!==n[0]||i[3]||d(r,t.name,i[1],i[2]))})}o||(e.auto=!0)}),this.s.columns=c},_controlClass:function(){var e,t,n;"inline"===this.c.details.type&&(e=this.s.dt,t=this.s.current,n=b.inArray(!0,t),e.cells(null,function(e){return e!==n},{page:"current"}).nodes().to$().filter(".dtr-control").removeClass("dtr-control"),e.cells(null,n,{page:"current"}).nodes().to$().addClass("dtr-control"))},_detailsDisplay:function(t,n){function e(e){b(t.node()).toggleClass("dtr-expanded",!1!==e),b(o.table().node()).triggerHandler("responsive-display.dt",[o,t,e,n])}var i,r=this,o=this.s.dt,s=this.c.details;s&&!1!==s.type&&(i="string"==typeof s.renderer?a.renderer[s.renderer]():s.renderer,"boolean"==typeof(s=s.display(t,n,function(){return i.call(r,o,t[0][0],r._detailsObj(t[0]))},function(){e(!1)})))&&e(s)},_detailsInit:function(){var n=this,i=this.s.dt,e=this.c.details,r=("inline"===e.type&&(e.target="td.dtr-control, th.dtr-control"),i.on("draw.dtr",function(){n._tabIndexes()}),n._tabIndexes(),b(i.table().body()).on("keyup.dtr","td, th",function(e){13===e.keyCode&&b(this).data("dtr-keyboard")&&b(this).click()}),e.target),e="string"==typeof r?r:"td, th";void 0===r&&null===r||b(i.table().body()).on("click.dtr mousedown.dtr mouseup.dtr",e,function(e){if(b(i.table().node()).hasClass("collapsed")&&-1!==b.inArray(b(this).closest("tr").get(0),i.rows().nodes().toArray())){if("number"==typeof r){var t=r<0?i.columns().eq(0).length+r:r;if(i.cell(this).index().column!==t)return}t=i.row(b(this).closest("tr"));"click"===e.type?n._detailsDisplay(t,!1):"mousedown"===e.type?b(this).css("outline","none"):"mouseup"===e.type&&b(this).trigger("blur").css("outline","")}})},_detailsObj:function(n){var i=this,r=this.s.dt;return b.map(this.s.columns,function(e,t){if(!e.never&&!e.control)return{className:r.settings()[0].aoColumns[t].sClass,columnIndex:t,data:r.cell(n,t).render(i.c.orthogonal),hidden:r.column(t).visible()&&!i.s.current[t],rowIndex:n,title:r.column(t).title()}})},_find:function(e){for(var t=this.c.breakpoints,n=0,i=t.length;n<i;n++)if(t[n].name===e)return t[n]},_redrawChildren:function(){var n=this,i=this.s.dt;i.rows({page:"current"}).iterator("row",function(e,t){n._detailsDisplay(i.row(t),!0)})},_resize:function(n){for(var e,i=this,r=this.s.dt,t=b(y).innerWidth(),o=this.c.breakpoints,s=o[0].name,d=this.s.columns,a=this.s.current.slice(),l=o.length-1;0<=l;l--)if(t<=o[l].width){s=o[l].name;break}var c=this._columnsVisiblity(s),u=(this.s.current=c,!1);for(l=0,e=d.length;l<e;l++)if(!1===c[l]&&!d[l].never&&!d[l].control&&!1==!r.column(l).visible()){u=!0;break}b(r.table().node()).toggleClass("collapsed",u);var h=!1,p=0,f=r.settings()[0],m=b(r.table().node()).children("colgroup"),v=f.aoColumns.map(function(e){return e.colEl});r.columns().eq(0).each(function(e,t){r.column(e).visible()&&(!0===c[t]&&p++,!n&&c[t]===a[t]||(h=!0,i._setColumnVis(e,c[t])),c[t]?i._colGroupAttach(m,v,t):v[t].detach())}),h&&(r.columns.adjust(),this._redrawChildren(),b(r.table().node()).trigger("responsive-resize.dt",[r,this._responsiveOnlyHidden()]),0===r.page.info().recordsDisplay)&&b("td",r.table().body()).eq(0).attr("colspan",p),i._controlClass()},_resizeAuto:function(){var t=this.s.dt,n=this.s.columns,r=this,o=t.columns().indexes().filter(function(e){return t.column(e).visible()});if(this.c.auto&&-1!==b.inArray(!0,b.map(n,function(e){return e.auto}))){for(var e=t.table().node().cloneNode(!1),i=b(t.table().header().cloneNode(!1)).appendTo(e),s=b(t.table().footer().cloneNode(!1)).appendTo(e),d=b(t.table().body()).clone(!1,!1).empty().appendTo(e),a=(e.style.width="auto",t.table().header.structure(o).forEach(e=>{e=e.filter(function(e){return!!e}).map(function(e){return b(e.cell).clone(!1).css("display","table-cell").css("width","auto").css("min-width",0)});b("<tr/>").append(e).appendTo(i)}),b("<tr/>").appendTo(d)),l=0;l<o.count();l++)a.append("<td/>");t.rows({page:"current"}).every(function(n){var i,e=this.node();e&&(i=e.cloneNode(!1),t.cells(n,o).every(function(e,t){t=r.s.childNodeStore[n+"-"+t];(t?b(this.node().cloneNode(!1)).append(b(t).clone()):b(this.node()).clone(!1)).appendTo(i)}),d.append(i))}),d.find("th, td").css("display",""),t.table().footer.structure(o).forEach(e=>{e=e.filter(function(e){return!!e}).map(function(e){return b(e.cell).clone(!1).css("display","table-cell").css("width","auto").css("min-width",0)});b("<tr/>").append(e).appendTo(s)}),"inline"===this.c.details.type&&b(e).addClass("dtr-inline collapsed"),b(e).find("[name]").removeAttr("name"),b(e).css("position","relative");e=b("<div/>").css({width:1,height:1,overflow:"hidden",clear:"both"}).append(e);e.insertBefore(t.table().node()),a.children().each(function(e){e=t.column.index("fromVisible",e);n[e].minWidth=this.offsetWidth||0}),e.remove()}},_responsiveOnlyHidden:function(){var n=this.s.dt;return b.map(this.s.current,function(e,t){return!1===n.column(t).visible()||e})},_setColumnVis:function(e,t){var n=this,i=this.s.dt,r=t?"":"none";this._setHeaderVis(e,t,i.table().header.structure()),this._setHeaderVis(e,t,i.table().footer.structure()),i.column(e).nodes().to$().css("display",r).toggleClass("dtr-hidden",!t),b.isEmptyObject(this.s.childNodeStore)||i.cells(null,e).indexes().each(function(e){n._childNodesRestore(i,e.row,e.column)})},_setHeaderVis:function(n,i,e){var r=this,o=i?"":"none";e.forEach(function(e){if(e[n])b(e[n].cell).css("display",o).toggleClass("dtr-hidden",!i);else for(var t=n;0<=t;){if(e[t]){e[t].cell.colSpan=r._colspan(e,t);break}t--}})},_colspan:function(e,t){for(var n=1,i=t+1;i<e.length;i++)if(null===e[i]&&this.s.current[i])n++;else if(e[i])break;return n},_tabIndexes:function(){var e=this.s.dt,t=e.cells({page:"current"}).nodes().to$(),n=e.settings()[0],i=this.c.details.target;t.filter("[data-dtr-keyboard]").removeData("[data-dtr-keyboard]"),("number"==typeof i?e.cells(null,i,{page:"current"}).nodes().to$():b(i="td:first-child, th:first-child"===i?">td:first-child, >th:first-child":i,e.rows({page:"current"}).nodes())).attr("tabIndex",n.iTabIndex).data("dtr-keyboard",1)}}),a.defaults={breakpoints:a.breakpoints=[{name:"desktop",width:1/0},{name:"tablet-l",width:1024},{name:"tablet-p",width:768},{name:"mobile-l",width:480},{name:"mobile-p",width:320}],auto:!0,details:{display:(a.display={childRow:function(e,t,n){var i=b(e.node());return t?i.hasClass("dtr-expanded")?(e.child(n(),"child").show(),!0):void 0:i.hasClass("dtr-expanded")?(e.child(!1),!1):!1!==(t=n())&&(e.child(t,"child").show(),!0)},childRowImmediate:function(e,t,n){var i=b(e.node());return!t&&i.hasClass("dtr-expanded")||!e.responsive.hasHidden()?(e.child(!1),!1):!1!==(t=n())&&(e.child(t,"child").show(),!0)},modal:function(s){return function(e,t,n,i){n=n();if(!1===n)return!1;if(t){if(!(o=b("div.dtr-modal-content")).length||e.index()!==o.data("dtr-row-idx"))return null;o.empty().append(n)}else{var r=function(){o.remove(),b(d).off("keypress.dtr"),b(e.node()).removeClass("dtr-expanded"),i()},o=b('<div class="dtr-modal"/>').append(b('<div class="dtr-modal-display"/>').append(b('<div class="dtr-modal-content"/>').data("dtr-row-idx",e.index()).append(n)).append(b('<div class="dtr-modal-close">&times;</div>').click(function(){r()}))).append(b('<div class="dtr-modal-background"/>').click(function(){r()})).appendTo("body");b(e.node()).addClass("dtr-expanded"),b(d).on("keyup.dtr",function(e){27===e.keyCode&&(e.stopPropagation(),r())})}return s&&s.header&&b("div.dtr-modal-content").prepend("<h2>"+s.header(e)+"</h2>"),!0}}}).childRow,renderer:(a.renderer={listHiddenNodes:function(){return function(i,e,t){var r=this,o=b('<ul data-dtr-index="'+e+'" class="dtr-details"/>'),s=!1;return b.each(t,function(e,t){var n;t.hidden&&(n=t.className?'class="'+t.className+'"':"",b("<li "+n+' data-dtr-index="'+t.columnIndex+'" data-dt-row="'+t.rowIndex+'" data-dt-column="'+t.columnIndex+'"><span class="dtr-title">'+t.title+"</span> </li>").append(b('<span class="dtr-data"/>').append(r._childNodes(i,t.rowIndex,t.columnIndex))).appendTo(o),s=!0)}),!!s&&o}},listHidden:function(){return function(e,t,n){n=b.map(n,function(e){var t=e.className?'class="'+e.className+'"':"";return e.hidden?"<li "+t+' data-dtr-index="'+e.columnIndex+'" data-dt-row="'+e.rowIndex+'" data-dt-column="'+e.columnIndex+'"><span class="dtr-title">'+e.title+'</span> <span class="dtr-data">'+e.data+"</span></li>":""}).join("");return!!n&&b('<ul data-dtr-index="'+t+'" class="dtr-details"/>').append(n)}},tableAll:function(i){return i=b.extend({tableClass:""},i),function(e,t,n){n=b.map(n,function(e){return"<tr "+(e.className?'class="'+e.className+'"':"")+' data-dt-row="'+e.rowIndex+'" data-dt-column="'+e.columnIndex+'"><td>'+e.title+":</td> <td>"+e.data+"</td></tr>"}).join("");return b('<table class="'+i.tableClass+' dtr-details" width="100%"/>').append(n)}}}).listHidden(),target:0,type:"inline"},orthogonal:"display"},b.fn.dataTable.Api);return e.register("responsive()",function(){return this}),e.register("responsive.index()",function(e){return{column:(e=b(e)).data("dtr-index"),row:e.parent().data("dtr-index")}}),e.register("responsive.rebuild()",function(){return this.iterator("table",function(e){e._responsive&&e._responsive._classLogic()})}),e.register("responsive.recalc()",function(){return this.iterator("table",function(e){e._responsive&&(e._responsive._resizeAuto(),e._responsive._resize())})}),e.register("responsive.hasHidden()",function(){var e=this.context[0];return!!e._responsive&&-1!==b.inArray(!1,e._responsive._responsiveOnlyHidden())}),e.registerPlural("columns().responsiveHidden()","column().responsiveHidden()",function(){return this.iterator("column",function(e,t){return!!e._responsive&&e._responsive._responsiveOnlyHidden()[t]},1)}),a.version="3.0.2",b.fn.dataTable.Responsive=a,b.fn.DataTable.Responsive=a,b(d).on("preInit.dt.dtr",function(e,t,n){"dt"===e.namespace&&(b(t.nTable).hasClass("responsive")||b(t.nTable).hasClass("dt-responsive")||t.oInit.responsive||i.defaults.responsive)&&!1!==(e=t.oInit.responsive)&&new a(t,b.isPlainObject(e)?e:{})}),i});
+
+/*! DataTables styling wrapper for Responsive
+ * © SpryMedia Ltd - datatables.net/license
+ */
+
+(function( factory ){
+	if ( typeof define === 'function' && define.amd ) {
+		// AMD
+		define( ['jquery', 'datatables.net-dt', 'datatables.net-responsive'], function ( $ ) {
+			return factory( $, window, document );
+		} );
+	}
+	else if ( typeof exports === 'object' ) {
+		// CommonJS
+		var jq = require('jquery');
+		var cjsRequires = function (root, $) {
+			if ( ! $.fn.dataTable ) {
+				require('datatables.net-dt')(root, $);
+			}
+
+			if ( ! $.fn.dataTable.Responsive ) {
+				require('datatables.net-responsive')(root, $);
+			}
+		};
+
+		if (typeof window === 'undefined') {
+			module.exports = function (root, $) {
+				if ( ! root ) {
+					// CommonJS environments without a window global must pass a
+					// root. This will give an error otherwise
+					root = window;
+				}
+
+				if ( ! $ ) {
+					$ = jq( root );
+				}
+
+				cjsRequires( root, $ );
+				return factory( $, root, root.document );
+			};
+		}
+		else {
+			cjsRequires( window, jq );
+			module.exports = factory( jq, window, window.document );
+		}
+	}
+	else {
+		// Browser
+		factory( jQuery, window, document );
+	}
+}(function( $, window, document ) {
+'use strict';
+var DataTable = $.fn.dataTable;
+
+
+
+
+return DataTable;
+}));
+
+
+/*! RowGroup 1.5.0
+ * © SpryMedia Ltd - datatables.net/license
+ */
+!function(e){var n,o;"function"==typeof define&&define.amd?define(["jquery","datatables.net"],function(t){return e(t,window,document)}):"object"==typeof exports?(n=require("jquery"),o=function(t,r){r.fn.dataTable||require("datatables.net")(t,r)},"undefined"==typeof window?module.exports=function(t,r){return t=t||window,r=r||n(t),o(t,r),e(r,0,t.document)}:(o(window,n),module.exports=e(n,window,window.document))):e(jQuery,window,document)}(function(i,t,r){"use strict";function a(t,r){if(!l.versionCheck||!l.versionCheck("1.11"))throw"RowGroup requires DataTables 1.11 or newer";if(this.c=i.extend(!0,{},l.defaults.rowGroup,a.defaults,r),this.s={dt:new l.Api(t)},this.dom={},r=this.s.dt.settings()[0],t=r.rowGroup)return t;(r.rowGroup=this)._constructor()}var l=i.fn.dataTable;return i.extend(a.prototype,{dataSrc:function(t){var r;return void 0===t?this.c.dataSrc:(r=this.s.dt,this.c.dataSrc=t,i(r.table().node()).triggerHandler("rowgroup-datasrc.dt",[r,t]),this)},disable:function(){return this.c.enable=!1,this},enable:function(t){return!1===t?this.disable():(this.c.enable=!0,this)},enabled:function(){return this.c.enable},_constructor:function(){var e=this,t=this.s.dt,n=t.settings()[0];t.on("draw.dtrg",function(t,r){e.c.enable&&n===r&&e._draw()}),t.on("column-visibility.dt.dtrg responsive-resize.dt.dtrg",function(){e._adjustColspan()}),t.on("destroy",function(){t.off(".dtrg")})},_adjustColspan:function(){i("tr."+this.c.className,this.s.dt.table().body()).find("th:visible, td:visible").attr("colspan",this._colspan())},_colspan:function(){return this.s.dt.columns().visible().reduce(function(t,r){return t+r},0)},_draw:function(){var t=this.s.dt,t=this._group(0,t.rows({page:"current"}).indexes());this._groupDisplay(0,t)},_group:function(t,r){for(var e,n=Array.isArray(this.c.dataSrc)?this.c.dataSrc:[this.c.dataSrc],o=l.util.get(n[t]),i=this.s.dt,a=[],s=0,d=r.length;s<d;s++){var u,c=r[s];null==(u=o(i.row(c).data(),t))&&(u=this.c.emptyDataGroup),void 0!==e&&u===e||(a.push({dataPoint:u,rows:[]}),e=u),a[a.length-1].rows.push(c)}if(void 0!==n[t+1])for(s=0,d=a.length;s<d;s++)a[s].children=this._group(t+1,a[s].rows);return a},_groupDisplay:function(t,r){for(var e,n=this.s.dt,o=0,i=r.length;o<i;o++){var a,s=r[o],d=s.dataPoint,u=s.rows;this.c.startRender&&(e=this.c.startRender.call(this,n.rows(u),d,t),a=this._rowWrap(e,this.c.startClassName,t))&&a.insertBefore(n.row(u[0]).node()),this.c.endRender&&(e=this.c.endRender.call(this,n.rows(u),d,t),a=this._rowWrap(e,this.c.endClassName,t))&&a.insertAfter(n.row(u[u.length-1]).node()),s.children&&this._groupDisplay(t+1,s.children)}},_rowWrap:function(t,r,e){return null==(t=null!==t&&""!==t?t:this.c.emptyDataGroup)?null:("object"==typeof t&&t.nodeName&&"tr"===t.nodeName.toLowerCase()?i(t):t instanceof i&&t.length&&"tr"===t[0].nodeName.toLowerCase()?t:i("<tr/>").append(i("<th/>").attr("colspan",this._colspan()).attr("scope","row").append(t))).addClass(this.c.className).addClass(r).addClass("dtrg-level-"+e)}}),a.defaults={className:"dtrg-group",dataSrc:0,emptyDataGroup:"No group",enable:!0,endClassName:"dtrg-end",endRender:null,startClassName:"dtrg-start",startRender:function(t,r){return r}},a.version="1.5.0",i.fn.dataTable.RowGroup=a,i.fn.DataTable.RowGroup=a,l.Api.register("rowGroup()",function(){return this}),l.Api.register("rowGroup().disable()",function(){return this.iterator("table",function(t){t.rowGroup&&t.rowGroup.enable(!1)})}),l.Api.register("rowGroup().enable()",function(r){return this.iterator("table",function(t){t.rowGroup&&t.rowGroup.enable(void 0===r||r)})}),l.Api.register("rowGroup().enabled()",function(){var t=this.context;return!(!t.length||!t[0].rowGroup)&&t[0].rowGroup.enabled()}),l.Api.register("rowGroup().dataSrc()",function(r){return void 0===r?this.context[0].rowGroup.dataSrc():this.iterator("table",function(t){t.rowGroup&&t.rowGroup.dataSrc(r)})}),i(r).on("preInit.dt.dtrg",function(t,r,e){var n,o;"dt"===t.namespace&&(t=r.oInit.rowGroup,n=l.defaults.rowGroup,t||n)&&(o=i.extend({},n,t),!1!==t)&&new a(r,o)}),l});
+
+/*! RowReorder 1.5.0
+ * © SpryMedia Ltd - datatables.net/license
+ */
+!function(o){var r,n;"function"==typeof define&&define.amd?define(["jquery","datatables.net"],function(t){return o(t,window,document)}):"object"==typeof exports?(r=require("jquery"),n=function(t,e){e.fn.dataTable||require("datatables.net")(t,e)},"undefined"==typeof window?module.exports=function(t,e){return t=t||window,e=e||r(t),n(t,e),o(e,t,t.document)}:(n(window,r),module.exports=o(r,window,window.document))):o(jQuery,window,document)}(function(v,d,l){"use strict";function s(t,e){if(!i.versionCheck||!i.versionCheck("1.11"))throw"DataTables RowReorder requires DataTables 1.11 or newer";if(this.c=v.extend(!0,{},i.defaults.rowReorder,s.defaults,e),this.s={bodyTop:null,dt:new i.Api(t),getDataFn:i.util.get(this.c.dataSrc),middles:null,scroll:{},scrollInterval:null,setDataFn:i.util.set(this.c.dataSrc),start:{top:0,left:0,offsetTop:0,offsetLeft:0,nodes:[],rowIndex:0},windowHeight:0,documentOuterHeight:0,domCloneOuterHeight:0,dropAllowed:!0},this.dom={clone:null,cloneParent:null,dtScroll:v("div.dataTables_scrollBody, div.dt-scroll-body",this.s.dt.table().container())},e=this.s.dt.settings()[0],t=e.rowreorder)return t;this.dom.dtScroll.length||(this.dom.dtScroll=v(this.s.dt.table().container(),"tbody")),(e.rowreorder=this)._constructor()}var i=v.fn.dataTable,t=(v.extend(s.prototype,{_constructor:function(){var r=this,n=this.s.dt,t=v(n.table().node());"static"===t.css("position")&&t.css("position","relative"),v(n.table().container()).on("mousedown.rowReorder touchstart.rowReorder",this.c.selector,function(t){var e,o;if(r.c.enable)return!!v(t.target).is(r.c.excludedChildren)||(e=v(this).closest("tr"),(o=n.row(e)).any()?(r._emitEvent("pre-row-reorder",{node:o.node(),index:o.index()}),r._mouseDown(t,e),!1):void 0)}),n.on("destroy.rowReorder",function(){v(n.table().container()).off(".rowReorder"),n.off(".rowReorder")}),this._keyup=this._keyup.bind(this)},_cachePositions:function(){var t=this.s.dt,r=v(t.table().node()).find("thead").outerHeight(),e=v.unique(t.rows({page:"current"}).nodes().toArray()),e=v.map(e,function(t,e){var o=v(t).position().top-r;return(o+o+v(t).outerHeight())/2});this.s.middles=e,this.s.bodyTop=v(t.table().body()).offset().top,this.s.windowHeight=v(d).height(),this.s.documentOuterHeight=v(l).outerHeight(),this.s.bodyArea=this._calcBodyArea()},_clone:function(t){var e=this.s.dt,e=v(e.table().node().cloneNode(!1)).addClass("dt-rowReorder-float").append("<tbody/>").append(t.clone(!1)),o=t.outerWidth(),r=t.outerHeight(),n=v(v(this.s.dt.table().node()).parent()),s=n.width(),n=n.scrollLeft(),i=t.children().map(function(){return v(this).width()}),t=(e.width(o).height(r).find("tr").children().each(function(t){this.style.width=i[t]+"px"}),v("<div>").addClass("dt-rowReorder-float-parent").width(s).append(e).appendTo("body").scrollLeft(n));this.dom.clone=e,this.dom.cloneParent=t,this.s.domCloneOuterHeight=e.outerHeight()},_clonePosition:function(t){var e=this.s.start,o=this._eventToPage(t,"Y")-e.top,t=this._eventToPage(t,"X")-e.left,r=this.c.snapX,o=o+e.offsetTop,r=!0===r?e.offsetLeft:"number"==typeof r?e.offsetLeft+r:t+e.offsetLeft+this.dom.cloneParent.scrollLeft();o<0?o=0:o+this.s.domCloneOuterHeight>this.s.documentOuterHeight&&(o=this.s.documentOuterHeight-this.s.domCloneOuterHeight),this.dom.cloneParent.css({top:o,left:r})},_emitEvent:function(o,r){var n;return this.s.dt.iterator("table",function(t,e){t=v(t.nTable).triggerHandler(o+".dt",r);void 0!==t&&(n=t)}),n},_eventToPage:function(t,e){return(-1!==t.type.indexOf("touch")?t.originalEvent.touches[0]:t)["page"+e]},_mouseDown:function(t,e){var o=this,r=this.s.dt,n=this.s.start,s=this.c.cancelable,i=e.offset(),i=(n.top=this._eventToPage(t,"Y"),n.left=this._eventToPage(t,"X"),n.offsetTop=i.top,n.offsetLeft=i.left,n.nodes=v.unique(r.rows({page:"current"}).nodes().toArray()),this._cachePositions(),this._clone(e),this._clonePosition(t),this._eventToPage(t,"Y")-this.s.bodyTop),r=(n.rowIndex=this._calcRowIndexByPos(i),(this.dom.target=e).addClass("dt-rowReorder-moving"),v(l).on("mouseup.rowReorder touchend.rowReorder",function(t){o._mouseUp(t)}).on("mousemove.rowReorder touchmove.rowReorder",function(t){o._mouseMove(t)}),v(d).width()===v(l).width()&&v(l.body).addClass("dt-rowReorder-noOverflow"),this.dom.dtScroll);this.s.scroll={windowHeight:v(d).height(),windowWidth:v(d).width(),dtTop:r.length?r.offset().top:null,dtLeft:r.length?r.offset().left:null,dtHeight:r.length?r.outerHeight():null,dtWidth:r.length?r.outerWidth():null},s&&v(l).on("keyup",this._keyup)},_mouseMove:function(t){this._clonePosition(t);for(var e,o,r=this.s.start,n=this.c.cancelable,s=(n&&(e=this.s.bodyArea,o=this._calcCloneParentArea(),this.s.dropAllowed=this._rectanglesIntersect(e,o),this.s.dropAllowed?v(this.dom.cloneParent).removeClass("drop-not-allowed"):v(this.dom.cloneParent).addClass("drop-not-allowed")),this._eventToPage(t,"Y")-this.s.bodyTop),i=this.s.middles,d=null,l=0,a=i.length;l<a;l++)if(s<i[l]){d=l;break}null===d&&(d=i.length),n&&(this.s.dropAllowed||(d=r.rowIndex>this.s.lastInsert?r.rowIndex+1:r.rowIndex),this.dom.target.toggleClass("dt-rowReorder-moving",this.s.dropAllowed)),this._moveTargetIntoPosition(d),this._shiftScroll(t)},_mouseUp:function(t){var e=this,o=this.s.dt,r=this.c.dataSrc;if(this.s.dropAllowed){for(var n,s,i,d=this.s.start.nodes,l=v.unique(o.rows({page:"current"}).nodes().toArray()),a={},c=[],h=[],u=this.s.getDataFn,f=this.s.setDataFn,w=0,p=d.length;w<p;w++)d[w]!==l[w]&&(n=o.row(l[w]).id(),s=o.row(l[w]).data(),i=o.row(d[w]).data(),n&&(a[n]=u(i)),c.push({node:l[w],oldData:u(s),newData:u(i),newPosition:w,oldPosition:v.inArray(l[w],d)}),h.push(l[w]));var g,m=[c,{dataSrc:r,nodes:h,values:a,triggerRow:o.row(this.dom.target),originalEvent:t}];!1===this._emitEvent("row-reorder",m)?e._cancel():(this._cleanupDragging(),g=function(){if(e.c.update){for(w=0,p=c.length;w<p;w++){var t=o.row(c[w].node).data();f(t,c[w].newData),o.columns().every(function(){this.dataSrc()===r&&o.cell(c[w].node,this.index()).invalidate("data")})}e._emitEvent("row-reordered",m),o.draw(!1)}},this.c.editor?(this.c.enable=!1,this.c.editor.edit(h,!1,v.extend({submit:"changed"},this.c.formOptions)).multiSet(r,a).one("preSubmitCancelled.rowReorder",function(){e.c.enable=!0,e.c.editor.off(".rowReorder"),o.draw(!1)}).one("submitUnsuccessful.rowReorder",function(){o.draw(!1)}).one("submitSuccess.rowReorder",function(){g()}).one("submitComplete",function(){e.c.enable=!0,e.c.editor.off(".rowReorder")}).submit()):g())}else e._cancel()},_moveTargetIntoPosition:function(t){var e,o,r=this.s.dt;null!==this.s.lastInsert&&this.s.lastInsert===t||(e=v.unique(r.rows({page:"current"}).nodes().toArray()),o="",o=t>this.s.lastInsert?(this.dom.target.insertAfter(e[t-1]),"after"):(this.dom.target.insertBefore(e[t]),"before"),this._cachePositions(),this.s.lastInsert=t,this._emitEvent("row-reorder-changed",{insertPlacement:o,insertPoint:t,row:r.row(this.dom.target)}))},_cleanupDragging:function(){var t=this.c.cancelable;this.dom.clone.remove(),this.dom.cloneParent.remove(),this.dom.clone=null,this.dom.cloneParent=null,this.dom.target.removeClass("dt-rowReorder-moving"),v(l).off(".rowReorder"),v(l.body).removeClass("dt-rowReorder-noOverflow"),clearInterval(this.s.scrollInterval),this.s.scrollInterval=null,t&&v(l).off("keyup",this._keyup)},_shiftScroll:function(t){var e,o,r=this,n=this.s.scroll,s=!1,i=t.pageY-l.body.scrollTop;i<v(d).scrollTop()+65?e=-5:i>n.windowHeight+v(d).scrollTop()-65&&(e=5),null!==n.dtTop&&t.pageY<n.dtTop+65?o=-5:null!==n.dtTop&&t.pageY>n.dtTop+n.dtHeight-65&&(o=5),e||o?(n.windowVert=e,n.dtVert=o,s=!0):this.s.scrollInterval&&(clearInterval(this.s.scrollInterval),this.s.scrollInterval=null),!this.s.scrollInterval&&s&&(this.s.scrollInterval=setInterval(function(){var t;n.windowVert&&(t=v(l).scrollTop(),v(l).scrollTop(t+n.windowVert),t!==v(l).scrollTop())&&(t=parseFloat(r.dom.cloneParent.css("top")),r.dom.cloneParent.css("top",t+n.windowVert)),n.dtVert&&(t=r.dom.dtScroll[0],n.dtVert)&&(t.scrollTop+=n.dtVert)},20))},_calcBodyArea:function(t){var e=this.s.dt,o=v(e.table().body()).offset();return{left:o.left,top:o.top,right:o.left+v(e.table().body()).width(),bottom:o.top+v(e.table().body()).height()}},_calcCloneParentArea:function(t){var e=v(this.dom.cloneParent).offset();return{left:e.left,top:e.top,right:e.left+v(this.dom.cloneParent).width(),bottom:e.top+v(this.dom.cloneParent).height()}},_rectanglesIntersect:function(t,e){return!(t.left>=e.right||e.left>=t.right||t.top>=e.bottom||e.top>=t.bottom)},_calcRowIndexByPos:function(r){var t=this.s.dt,e=v.unique(t.rows({page:"current"}).nodes().toArray()),n=-1,s=v(t.table().node()).find("thead").outerHeight();return v.each(e,function(t,e){var o=v(e).position().top-s,e=o+v(e).outerHeight();o<=r&&r<=e&&(n=t)}),n},_keyup:function(t){this.c.cancelable&&27===t.which&&(t.preventDefault(),this._cancel())},_cancel:function(){var t=this.s.start,t=t.rowIndex>this.s.lastInsert?t.rowIndex+1:t.rowIndex;this._moveTargetIntoPosition(t),this._cleanupDragging(),this._emitEvent("row-reorder-canceled",[this.s.start.rowIndex])}}),s.defaults={dataSrc:0,editor:null,enable:!0,formOptions:{},selector:"td:first-child",snapX:!1,update:!0,excludedChildren:"a",cancelable:!1},v.fn.dataTable.Api);return t.register("rowReorder()",function(){return this}),t.register("rowReorder.enable()",function(e){return void 0===e&&(e=!0),this.iterator("table",function(t){t.rowreorder&&(t.rowreorder.c.enable=e)})}),t.register("rowReorder.disable()",function(){return this.iterator("table",function(t){t.rowreorder&&(t.rowreorder.c.enable=!1)})}),s.version="1.5.0",v.fn.dataTable.RowReorder=s,v.fn.DataTable.RowReorder=s,v(l).on("init.dt.dtr",function(t,e,o){var r,n;"dt"===t.namespace&&(t=e.oInit.rowReorder,r=i.defaults.rowReorder,t||r)&&(n=v.extend({},t,r),!1!==t)&&new s(e,n)}),i});
+
+/*! Scroller 2.4.3
+ * © SpryMedia Ltd - datatables.net/license
+ */
+!function(o){var e,i;"function"==typeof define&&define.amd?define(["jquery","datatables.net"],function(t){return o(t,window,document)}):"object"==typeof exports?(e=require("jquery"),i=function(t,s){s.fn.dataTable||require("datatables.net")(t,s)},"undefined"==typeof window?module.exports=function(t,s){return t=t||window,s=s||e(t),i(t,s),o(s,t,t.document)}:(i(window,e),module.exports=o(e,window,window.document))):o(jQuery,window,document)}(function(d,l,o){"use strict";function i(t,s){this instanceof i?(void 0===s&&(s={}),t=d.fn.dataTable.Api(t),this.s={dt:t.settings()[0],dtApi:t,tableTop:0,tableBottom:0,redrawTop:0,redrawBottom:0,autoHeight:!0,viewportRows:0,stateTO:null,stateSaveThrottle:function(){},drawTO:null,heights:{jump:null,page:null,virtual:null,scroll:null,row:null,viewport:null,labelHeight:0,xbar:0},topRowFloat:0,scrollDrawDiff:null,loaderVisible:!1,forceReposition:!1,baseRowTop:0,baseScrollTop:0,mousedown:!1,lastScrollTop:0},this.s=d.extend(this.s,i.oDefaults,s),this.s.heights.row=this.s.rowHeight,this.dom={force:o.createElement("div"),label:d('<div class="dts_label">0</div>'),scroller:null,table:null,loader:null},this.s.dt.oScroller||(this.s.dt.oScroller=this).construct()):alert("Scroller warning: Scroller must be initialised with the 'new' keyword.")}var a=d.fn.dataTable,t=(d.extend(i.prototype,{measure:function(t){this.s.autoHeight&&this._calcRowHeight();var s=this.s.heights,o=(s.row&&(s.viewport=this._parseHeight(d(this.dom.scroller).css("max-height")),this.s.viewportRows=parseInt(s.viewport/s.row,10)+1,this.s.dt._iDisplayLength=this.s.viewportRows*this.s.displayBuffer),this.dom.label.outerHeight());s.xbar=this.dom.scroller.offsetHeight-this.dom.scroller.clientHeight,s.labelHeight=o,void 0!==t&&!t||this.s.dtApi.draw(!1)},pageInfo:function(){var t=this.s.dt,s=this.dom.scroller.scrollTop,t=t.fnRecordsDisplay(),o=Math.ceil(this.pixelsToRow(s+this.s.heights.viewport,!1,this.s.ani));return{start:Math.floor(this.pixelsToRow(s,!1,this.s.ani)),end:t<o?t-1:o-1}},pixelsToRow:function(t,s,o){t-=this.s.baseScrollTop,o=o?(this._domain("physicalToVirtual",this.s.baseScrollTop)+t)/this.s.heights.row:t/this.s.heights.row+this.s.baseRowTop;return s||void 0===s?parseInt(o,10):o},rowToPixels:function(t,s,o){t-=this.s.baseRowTop,o=o?this._domain("virtualToPhysical",this.s.baseScrollTop):this.s.baseScrollTop;return o+=t*this.s.heights.row,s||void 0===s?parseInt(o,10):o},scrollToRow:function(t,s){var o=this,e=!1,i=this.rowToPixels(t),r=t-(this.s.displayBuffer-1)/2*this.s.viewportRows;r<0&&(r=0),void 0===(s=(i>this.s.redrawBottom||i<this.s.redrawTop)&&this.s.dt._iDisplayStart!==r&&(e=!0,i=this._domain("virtualToPhysical",t*this.s.heights.row),this.s.redrawTop<i)&&i<this.s.redrawBottom?!(this.s.forceReposition=!0):s)||s?(this.s.ani=e,d(this.dom.scroller).animate({scrollTop:i},function(){setTimeout(function(){o.s.ani=!1},250)})):d(this.dom.scroller).scrollTop(i)},construct:function(){var e=this,t=this.s.dtApi;if(!this.s.dt.oFeatures.bPaginate)throw new Error("Pagination must be enabled for Scroller to operate");this.dom.force.style.position="relative",this.dom.force.style.top="0px",this.dom.force.style.left="0px",this.dom.force.style.width="1px",this.dom.scroller=t.table().node().parentNode,this.dom.scroller.appendChild(this.dom.force),this.dom.scroller.style.position="relative",this.dom.table=d(">table",this.dom.scroller)[0],this.dom.table.style.position="absolute",this.dom.table.style.top="0px",this.dom.table.style.left="0px",d(t.table().container()).addClass("dts DTS"),this.dom.label.appendTo(this.dom.scroller),this.s.heights.row&&"auto"!=this.s.heights.row&&(this.s.autoHeight=!1),this.s.ingnoreScroll=!0,d(this.dom.scroller).on("scroll.dt-scroller",function(t){e._scroll.call(e)}),d(this.dom.scroller).on("touchstart.dt-scroller",function(){e._scroll.call(e)}),d(this.dom.scroller).on("mousedown.dt-scroller",function(){e.s.mousedown=!0}).on("mouseup.dt-scroller",function(){e.s.labelVisible=!1,e.s.mousedown=!1,e.dom.label.css("display","none")}),d(l).on("resize.dt-scroller",function(){e.measure(!1),e._info()});var i=!0,r=t.state.loaded();t.on("stateSaveParams.scroller",function(t,s,o){i&&r?(o.scroller=r.scroller,i=!1,o.scroller&&(e.s.lastScrollTop=o.scroller.scrollTop)):o.scroller={topRow:e.s.topRowFloat,baseRowTop:e.s.baseRowTop}}),t.on("stateLoadParams.scroller",function(t,s,o){void 0!==o.scroller&&e.scrollToRow(o.scroller.topRow)}),this.measure(!1),r&&r.scroller&&(this.s.topRowFloat=r.scroller.topRow,this.s.baseRowTop=r.scroller.baseRowTop,this.s.baseScrollTop=this.s.baseRowTop*this.s.heights.row,r.scroller.scrollTop=this._domain("physicalToVirtual",this.s.topRowFloat*this.s.heights.row)),e.s.stateSaveThrottle=a.util.throttle(function(){e.s.dtApi.state.save()},500),t.on("init.scroller",function(){e.measure(!1),e.s.scrollType="jump",e._draw(),t.on("draw.scroller",function(){e._draw()})}),t.on("preDraw.dt.scroller",function(){e._scrollForce()}),t.on("destroy.scroller",function(){d(l).off("resize.dt-scroller"),d(e.dom.scroller).off(".dt-scroller"),d(e.s.dt.nTable).off(".scroller"),d(e.s.dt.nTableWrapper).removeClass("DTS"),d("div.DTS_Loading",e.dom.scroller.parentNode).remove(),e.dom.table.style.position="",e.dom.table.style.top="",e.dom.table.style.left=""})},_calcRowHeight:function(){var t=this.s.dt,s=t.nTable,o=s.cloneNode(!1),e=d("<tbody/>").appendTo(o),t=t.oClasses,t=a.versionCheck("2")?{container:t.container,scroller:t.scrolling.container,body:t.scrolling.body}:{container:t.sWrapper,scroller:t.sScrollWrapper,body:t.sScrollBody},i=d('<div class="'+t.container+' DTS"><div class="'+t.scroller+'"><div class="'+t.body+'"></div></div></div>'),r=(d("tbody tr:lt(4)",s).clone().appendTo(e),d("tr",e).length);if(1===r)e.prepend("<tr><td>&#160;</td></tr>"),e.append("<tr><td>&#160;</td></tr>");else for(;r<3;r++)e.append("<tr><td>&#160;</td></tr>");d("div."+t.body,i).append(o);t=this.s.dt.nHolding||s.parentNode;d(t).is(":visible")||(t="body"),i.find("input").removeAttr("name"),i.appendTo(t),this.s.heights.row=d("tr",e).eq(1).outerHeight(),i.remove()},_draw:function(){var t=this,s=this.s.heights,o=this.dom.scroller.scrollTop,e=d(this.s.dt.nTable).height(),i=this.s.dt._iDisplayStart,r=this.s.dt._iDisplayLength,l=this.s.dt.fnRecordsDisplay(),a=o+s.viewport,n=(this.s.skip=!0,!this.s.dt.bSorted&&!this.s.dt.bFiltered||0!==i||this.s.dt._drawHold||(this.s.topRowFloat=0),o="jump"===this.s.scrollType?this._domain("virtualToPhysical",this.s.topRowFloat*s.row):o,this.s.baseScrollTop=o,this.s.baseRowTop=this.s.topRowFloat,o-(this.s.topRowFloat-i)*s.row),i=(0===i?n=0:l<=i+r?n=s.scroll-e:n+e<a&&(this.s.baseScrollTop+=1+((l=a-e)-n),n=l),this.dom.table.style.top=n+"px",this.s.tableTop=n,this.s.tableBottom=e+this.s.tableTop,(o-this.s.tableTop)*this.s.boundaryScale);this.s.redrawTop=o-i,this.s.redrawBottom=o+i>s.scroll-s.viewport-s.row?s.scroll-s.viewport-s.row:o+i,this.s.skip=!1,t.s.ingnoreScroll&&(this.s.dt.oFeatures.bStateSave&&null!==this.s.dt.oLoadedState&&void 0!==this.s.dt.oLoadedState.scroller?((r=!(!this.s.dt.sAjaxSource&&!t.s.dt.ajax||this.s.dt.oFeatures.bServerSide))&&2<=this.s.dt.iDraw||!r&&1<=this.s.dt.iDraw)&&setTimeout(function(){d(t.dom.scroller).scrollTop(t.s.dt.oLoadedState.scroller.scrollTop),setTimeout(function(){t.s.ingnoreScroll=!1},0)},0):t.s.ingnoreScroll=!1),this.s.dt.oFeatures.bInfo&&setTimeout(function(){t._info.call(t)},0),d(this.s.dt.nTable).triggerHandler("position.dts.dt",n)},_domain:function(t,s){var o,e=this.s.heights,i=1e4;return e.virtual===e.scroll||s<i?s:"virtualToPhysical"===t&&s>=e.virtual-i?(o=e.virtual-s,e.scroll-o):"physicalToVirtual"===t&&s>=e.scroll-i?(o=e.scroll-s,e.virtual-o):(e=i-(o=(e.virtual-i-i)/(e.scroll-i-i))*i,"virtualToPhysical"===t?(s-e)/o:o*s+e)},_info:function(){if(this.s.dt.oFeatures.bInfo){var t=this.s.dt,s=this.s.dtApi,o=t.oLanguage,e=s.page.info(),i=e.recordsDisplay,e=e.recordsTotal,r=(this.s.lastScrollTop-this.s.baseScrollTop)/this.s.heights.row,r=Math.floor(this.s.baseRowTop+r)+1,l=(r="jump"===this.s.scrollType?Math.floor(this.s.topRowFloat)+1:r)+Math.floor(this.s.heights.viewport/this.s.heights.row),l=i<l?i:l,a=0===i&&i==e?o.sInfoEmpty+o.sInfoPostFix:0===i?o.sInfoEmpty+" "+o.sInfoFiltered+o.sInfoPostFix:i==e?o.sInfo+o.sInfoPostFix:o.sInfo+" "+o.sInfoFiltered+o.sInfoPostFix,o=(a=this._macros(a,r,l,e,i),o.fnInfoCallback),n=(o&&(a=o.call(t.oInstance,t,r,l,e,i,a)),t.aanFeatures.i);if(void 0!==n){for(var h=0,c=n.length;h<c;h++)d(n[h]).html(a);d(t.nTable).triggerHandler("info.dt")}d("div.dt-info",s.table().container()).each(function(){d(this).html(a),s.trigger("info",[s.settings()[0],this,a])})}},_macros:function(t,s,o,e,i){var r=this.s.dtApi,l=this.s.dt,a=l.fnFormatNumber;return t.replace(/_START_/g,a.call(l,s)).replace(/_END_/g,a.call(l,o)).replace(/_MAX_/g,a.call(l,e)).replace(/_TOTAL_/g,a.call(l,i)).replace(/_ENTRIES_/g,r.i18n("entries","")).replace(/_ENTRIES-MAX_/g,r.i18n("entries","",e)).replace(/_ENTRIES-TOTAL_/g,r.i18n("entries","",i))},_parseHeight:function(t){var s,o,t=/^([+-]?(?:\d+(?:\.\d+)?|\.\d+))(px|em|rem|vh)$/.exec(t);return null!==t&&(o=parseFloat(t[1]),"px"===(t=t[2])?s=o:"vh"===t?s=o/100*d(l).height():"rem"===t?s=o*parseFloat(d(":root").css("font-size")):"em"===t&&(s=o*parseFloat(d("body").css("font-size"))),s)||0},_scroll:function(){var t,s=this,o=this.s.heights,e=this.dom.scroller.scrollTop;this.s.skip||this.s.ingnoreScroll||e!==this.s.lastScrollTop&&(this.s.dt.bFiltered||this.s.dt.bSorted?this.s.lastScrollTop=0:(clearTimeout(this.s.stateTO),this.s.stateTO=setTimeout(function(){s.s.dtApi.state.save(),s._info()},250),this.s.scrollType=Math.abs(e-this.s.lastScrollTop)>o.viewport?"jump":"cont",this.s.topRowFloat="cont"===this.s.scrollType?this.pixelsToRow(e,!1,!1):this._domain("physicalToVirtual",e)/o.row,this.s.topRowFloat<0&&(this.s.topRowFloat=0),this.s.forceReposition||e<this.s.redrawTop||e>this.s.redrawBottom?(t=Math.ceil((this.s.displayBuffer-1)/2*this.s.viewportRows),t=parseInt(this.s.topRowFloat,10)-t,this.s.forceReposition=!1,t<=0?t=0:t+this.s.dt._iDisplayLength>this.s.dt.fnRecordsDisplay()?(t=this.s.dt.fnRecordsDisplay()-this.s.dt._iDisplayLength)<0&&(t=0):t%2!=0&&t++,(this.s.targetTop=t)!=this.s.dt._iDisplayStart&&(this.s.tableTop=d(this.s.dt.nTable).offset().top,this.s.tableBottom=d(this.s.dt.nTable).height()+this.s.tableTop,t=function(){s.s.dt._iDisplayStart=s.s.targetTop,s.s.dtApi.draw("page")},this.s.dt.oFeatures.bServerSide?(this.s.forceReposition=!0,d(this.s.dt.nTable).triggerHandler("scroller-will-draw.dt"),a.versionCheck("2")?s.s.dtApi.processing(!0):this.s.dt.oApi._fnProcessingDisplay(this.s.dt,!0),clearTimeout(this.s.drawTO),this.s.drawTO=setTimeout(t,this.s.serverWait)):t())):this.s.topRowFloat=this.pixelsToRow(e,!1,!0),this._info(),this.s.lastScrollTop=e,this.s.stateSaveThrottle(),"jump"===this.s.scrollType&&this.s.mousedown&&(this.s.labelVisible=!0),this.s.labelVisible&&(t=(o.viewport-o.labelHeight-o.xbar)/o.scroll,this.dom.label.html(this.s.dt.fnFormatNumber(parseInt(this.s.topRowFloat,10)+1)).css("top",e+e*t).css("display","block"))))},_scrollForce:function(){var t=this.s.heights;t.virtual=t.row*this.s.dt.fnRecordsDisplay(),t.scroll=t.virtual,1e6<t.scroll&&(t.scroll=1e6),this.dom.force.style.height=t.scroll>this.s.heights.row?t.scroll+"px":this.s.heights.row+"px"}}),i.oDefaults=i.defaults={boundaryScale:.5,displayBuffer:9,rowHeight:"auto",serverWait:200},i.version="2.4.3",d(o).on("preInit.dt.dtscroller",function(t,s){var o,e;"dt"===t.namespace&&(t=s.oInit.scroller,o=a.defaults.scroller,t||o)&&(e=d.extend({},t,o),!1!==t)&&new i(s,e)}),d.fn.dataTable.Scroller=i,d.fn.DataTable.Scroller=i,d.fn.dataTable.Api);return t.register("scroller()",function(){return this}),t.register("scroller().rowToPixels()",function(t,s,o){var e=this.context;if(e.length&&e[0].oScroller)return e[0].oScroller.rowToPixels(t,s,o)}),t.register("scroller().pixelsToRow()",function(t,s,o){var e=this.context;if(e.length&&e[0].oScroller)return e[0].oScroller.pixelsToRow(t,s,o)}),t.register(["scroller().scrollToRow()","scroller.toPosition()"],function(s,o){return this.iterator("table",function(t){t.oScroller&&t.oScroller.scrollToRow(s,o)}),this}),t.register("row().scrollTo()",function(o){var e=this;return this.iterator("row",function(t,s){t.oScroller&&(s=e.rows({order:"applied",search:"applied"}).indexes().indexOf(s),t.oScroller.scrollToRow(s,o))}),this}),t.register("scroller.measure()",function(s){return this.iterator("table",function(t){t.oScroller&&t.oScroller.measure(s)}),this}),t.register("scroller.page()",function(){var t=this.context;if(t.length&&t[0].oScroller)return t[0].oScroller.pageInfo()}),a});
+
+/*! SearchBuilder 1.7.1
+ * ©SpryMedia Ltd - datatables.net/license/mit
+ */
+!function(e){var n,s;"function"==typeof define&&define.amd?define(["jquery","datatables.net"],function(t){return e(t,window,document)}):"object"==typeof exports?(n=require("jquery"),s=function(t,i){i.fn.dataTable||require("datatables.net")(t,i)},"undefined"==typeof window?module.exports=function(t,i){return t=t||window,i=i||n(t),s(t,i),e(i,t,t.document)}:(s(window,n),module.exports=e(n,window,window.document))):e(jQuery,window,document)}(function(s,u,t){"use strict";var I,c,a,d,l,h,p,m,e,i,f=s.fn.dataTable;function o(){return u.moment}function r(){return u.luxon}function w(t,i,e,n,s,o,r){void 0===n&&(n=0),void 0===s&&(s=1),void 0===o&&(o=void 0),void 0===r&&(r=!1);var a=this;if(!c||!c.versionCheck||!c.versionCheck("1.10.0"))throw new Error("SearchPane requires DataTables 1.10 or newer");this.classes=I.extend(!0,{},w.classes),this.c=I.extend(!0,{},w.defaults,I.fn.dataTable.ext.searchBuilder,i);i=this.c.i18n;if(this.s={condition:void 0,conditions:{},data:void 0,dataIdx:-1,dataPoints:[],dateFormat:!1,depth:s,dt:t,filled:!1,index:n,liveSearch:r,origData:void 0,preventRedraw:!1,serverData:o,topGroup:e,type:"",value:[]},this.dom={buttons:I("<div/>").addClass(this.classes.buttonContainer),condition:I("<select disabled/>").addClass(this.classes.condition).addClass(this.classes.dropDown).addClass(this.classes.italic).attr("autocomplete","hacking"),conditionTitle:I('<option value="" disabled selected hidden/>').html(this.s.dt.i18n("searchBuilder.condition",i.condition)),container:I("<div/>").addClass(this.classes.container),data:I("<select/>").addClass(this.classes.data).addClass(this.classes.dropDown).addClass(this.classes.italic),dataTitle:I('<option value="" disabled selected hidden/>').html(this.s.dt.i18n("searchBuilder.data",i.data)),defaultValue:I("<select disabled/>").addClass(this.classes.value).addClass(this.classes.dropDown).addClass(this.classes.select).addClass(this.classes.italic),delete:I("<button/>").html(this.s.dt.i18n("searchBuilder.delete",i.delete)).addClass(this.classes.delete).addClass(this.classes.button).attr("title",this.s.dt.i18n("searchBuilder.deleteTitle",i.deleteTitle)).attr("type","button"),inputCont:I("<div/>").addClass(this.classes.inputCont),left:I("<button/>").html(this.s.dt.i18n("searchBuilder.left",i.left)).addClass(this.classes.left).addClass(this.classes.button).attr("title",this.s.dt.i18n("searchBuilder.leftTitle",i.leftTitle)).attr("type","button"),right:I("<button/>").html(this.s.dt.i18n("searchBuilder.right",i.right)).addClass(this.classes.right).addClass(this.classes.button).attr("title",this.s.dt.i18n("searchBuilder.rightTitle",i.rightTitle)).attr("type","button"),value:[I("<select disabled/>").addClass(this.classes.value).addClass(this.classes.dropDown).addClass(this.classes.italic).addClass(this.classes.select)],valueTitle:I('<option value="--valueTitle--" disabled selected hidden/>').html(this.s.dt.i18n("searchBuilder.value",i.value))},this.c.greyscale){this.dom.data.addClass(this.classes.greyscale),this.dom.condition.addClass(this.classes.greyscale),this.dom.defaultValue.addClass(this.classes.greyscale);for(var d=0,l=this.dom.value;d<l.length;d++)l[d].addClass(this.classes.greyscale)}return I(u).on("resize.dtsb",c.util.throttle(function(){a.s.topGroup.trigger("dtsb-redrawLogic")})),this._buildCriteria(),this}function g(t,i,e,n,s,o,r){if(void 0===n&&(n=0),void 0===s&&(s=!1),void 0===o&&(o=1),void 0===r&&(r=void 0),d&&d.versionCheck&&d.versionCheck("1.10.0"))return this.classes=a.extend(!0,{},g.classes),this.c=a.extend(!0,{},g.defaults,i),this.s={criteria:[],depth:o,dt:t,index:n,isChild:s,logic:void 0,opts:i,preventRedraw:!1,serverData:r,toDrop:void 0,topGroup:e},this.dom={add:a("<button/>").addClass(this.classes.add).addClass(this.classes.button).attr("type","button"),clear:a("<button>&times</button>").addClass(this.classes.button).addClass(this.classes.clearGroup).attr("type","button"),container:a("<div/>").addClass(this.classes.group),logic:a("<button><div/></button>").addClass(this.classes.logic).addClass(this.classes.button).attr("type","button"),logicContainer:a("<div/>").addClass(this.classes.logicContainer),search:a("<button/>").addClass(this.classes.search).addClass(this.classes.button).attr("type","button").css("display","none")},void 0===this.s.topGroup&&(this.s.topGroup=this.dom.container),this._setup(),this;throw new Error("SearchBuilder requires DataTables 1.10 or newer")}function n(t,i){var s=this;if(!p||!p.versionCheck||!p.versionCheck("1.10.0"))throw new Error("SearchBuilder requires DataTables 1.10 or newer");t=new p.Api(t);if(this.classes=h.extend(!0,{},n.classes),this.c=h.extend(!0,{},n.defaults,i),this.dom={clearAll:h('<button type="button">'+t.i18n("searchBuilder.clearAll",this.c.i18n.clearAll)+"</button>").addClass(this.classes.clearAll).addClass(this.classes.button).attr("type","button"),container:h("<div/>").addClass(this.classes.container),title:h("<div/>").addClass(this.classes.title),titleRow:h("<div/>").addClass(this.classes.titleRow),topGroup:void 0},this.s={dt:t,opts:i,search:void 0,serverData:void 0,topGroup:void 0},void 0===t.settings()[0]._searchBuilder)return(t.settings()[0]._searchBuilder=this).s.dt.page.info().serverSide&&(this.s.dt.on("preXhr.dtsb",function(t,i,e){var n=s.s.dt.state.loaded();n&&n.searchBuilder&&(e.searchBuilder=s._collapseArray(n.searchBuilder))}),this.s.dt.on("xhr.dtsb",function(t,i,e){e&&e.searchBuilder&&e.searchBuilder.options&&(s.s.serverData=e.searchBuilder.options)})),this.s.dt.settings()[0]._bInitComplete?this._setUp():t.one("init.dt",function(){s._setUp()}),this}function v(t,i){t=new f.Api(t),i=i||t.init().searchBuilder||f.defaults.searchBuilder;return new e(t,i).getNode()}return w._escapeHTML=function(t){return t.toString().replace(/&lt;/g,"<").replace(/&gt;/g,">").replace(/&quot;/g,'"').replace(/&amp;/g,"&")},w.prototype.doSearch=function(){this.c.liveSearch&&this.s.dt.draw()},w.parseNumFmt=function(t){return+t.replace(/(?!^-)[^0-9.]/g,"")},w.prototype.updateArrows=function(t){void 0===t&&(t=!1),this.dom.container.children().detach(),this.dom.container.append(this.dom.data).append(this.dom.condition).append(this.dom.inputCont),this.setListeners(),void 0!==this.dom.value[0]&&I(this.dom.value[0]).trigger("dtsb-inserted");for(var i=1;i<this.dom.value.length;i++)this.dom.inputCont.append(this.dom.value[i]),I(this.dom.value[i]).trigger("dtsb-inserted");1<this.s.depth&&this.dom.buttons.append(this.dom.left),(!1===this.c.depthLimit||this.s.depth<this.c.depthLimit)&&t?this.dom.buttons.append(this.dom.right):this.dom.right.remove(),this.dom.buttons.append(this.dom.delete),this.dom.container.append(this.dom.buttons)},w.prototype.destroy=function(){this.dom.data.off(".dtsb"),this.dom.condition.off(".dtsb"),this.dom.delete.off(".dtsb");for(var t=0,i=this.dom.value;t<i.length;t++)i[t].off(".dtsb");this.dom.container.remove()},w.prototype.search=function(t,i){var e=this.s.dt.settings()[0],n=this.s.conditions[this.s.condition];if(void 0!==this.s.condition&&void 0!==n){var s=t[this.s.dataIdx];if(this.s.type.includes("num")&&(""!==e.oLanguage.sDecimal||""!==e.oLanguage.sThousands)){var o=[t[this.s.dataIdx]];if(""!==e.oLanguage.sDecimal&&(o=t[this.s.dataIdx].split(e.oLanguage.sDecimal)),""!==e.oLanguage.sThousands)for(var r=0;r<o.length;r++)o[r]=o[r].replace(e.oLanguage.sThousands,",");s=o.join(".")}if("filter"!==this.c.orthogonal.search&&(s=e.fastData(i,this.s.dataIdx,"string"==typeof this.c.orthogonal?this.c.orthogonal:this.c.orthogonal.search)),"array"===this.s.type){(s=Array.isArray(s)?s:[s]).sort();for(var a=0,d=s;a<d.length;a++){var l=d[a];l&&"string"==typeof l&&(l=l.replace(/[\r\n\u2028]/g," "))}}else null!==s&&"string"==typeof s&&(s=s.replace(/[\r\n\u2028]/g," "));return this.s.type.includes("html")&&"string"==typeof s&&(s=s.replace(/(<([^>]+)>)/gi,"")),n.search(s=null===s?"":s,this.s.value,this)}},w.prototype.getDetails=function(t){void 0===t&&(t=!1);var i,e=this.s.dt.settings()[0];if(null===this.s.type||!this.s.type.includes("num")||""===e.oLanguage.sDecimal&&""===e.oLanguage.sThousands){if(null!==this.s.type&&t)if(this.s.type.includes("date")||this.s.type.includes("time"))for(i=0;i<this.s.value.length;i++)null===this.s.value[i].match(/^\d{4}-([0]\d|1[0-2])-([0-2]\d|3[01])$/g)&&(this.s.value[i]="");else if(this.s.type.includes("moment"))for(i=0;i<this.s.value.length;i++)this.s.value[i]&&0<this.s.value[i].length&&o()(this.s.value[i],this.s.dateFormat,!0).isValid()&&(this.s.value[i]=o()(this.s.value[i],this.s.dateFormat).format("YYYY-MM-DD HH:mm:ss"));else if(this.s.type.includes("luxon"))for(i=0;i<this.s.value.length;i++)this.s.value[i]&&0<this.s.value[i].length&&null===r().DateTime.fromFormat(this.s.value[i],this.s.dateFormat).invalid&&(this.s.value[i]=r().DateTime.fromFormat(this.s.value[i],this.s.dateFormat).toFormat("yyyy-MM-dd HH:mm:ss"))}else for(i=0;i<this.s.value.length;i++){var n=[this.s.value[i].toString()];if(""!==e.oLanguage.sDecimal&&(n=this.s.value[i].split(e.oLanguage.sDecimal)),""!==e.oLanguage.sThousands)for(var s=0;s<n.length;s++)n[s]=n[s].replace(e.oLanguage.sThousands,",");this.s.value[i]=n.join(".")}if(this.s.type.includes("num")&&this.s.dt.page.info().serverSide)for(i=0;i<this.s.value.length;i++)this.s.value[i]=this.s.value[i].replace(/[^0-9.\-]/g,"");return{condition:this.s.condition,data:this.s.data,origData:this.s.origData,type:this.s.type,value:this.s.value.map(function(t){return null!=t?t.toString():t})}},w.prototype.getNode=function(){return this.dom.container},w.prototype.parseNumber=function(t){var i=this.s.dt.i18n("decimal");return+(t=i&&"."!==i?t.replace(/\./g,"").replace(i,"."):t).replace(/(?!^-)[^0-9.]/g,"")},w.prototype.populate=function(){this._populateData(),-1!==this.s.dataIdx&&(this._populateCondition(),void 0!==this.s.condition)&&this._populateValue()},w.prototype.rebuild=function(t){var i,e,n,s=!1;if(this._populateData(),void 0!==t.data&&(e=this.classes.italic,n=this.dom.data,this.dom.data.children("option").each(function(){!s&&(I(this).text()===t.data||t.origData&&I(this).prop("origData")===t.origData)?(I(this).prop("selected",!0),n.removeClass(e),s=!0,i=parseInt(I(this).val(),10)):I(this).removeProp("selected")})),s){this.s.data=t.data,this.s.origData=t.origData,this.s.dataIdx=i,this.c.orthogonal=this._getOptions().orthogonal,this.dom.dataTitle.remove(),this._populateCondition(),this.dom.conditionTitle.remove();for(var o=void 0,r=this.dom.condition.children("option"),a=0;a<r.length;a++){var d=I(r[a]);void 0!==t.condition&&d.val()===t.condition&&"string"==typeof t.condition?(d.prop("selected",!0),o=d.val()):d.removeProp("selected")}if(this.s.condition=o,void 0!==this.s.condition){for(this.dom.conditionTitle.removeProp("selected"),this.dom.conditionTitle.remove(),this.dom.condition.removeClass(this.classes.italic),a=0;a<r.length;a++){var l=I(r[a]);l.val()!==this.s.condition&&l.removeProp("selected")}this._populateValue(t)}else this.dom.conditionTitle.prependTo(this.dom.condition).prop("selected",!0)}},w.prototype.setListeners=function(){var l=this;this.dom.data.unbind("change").on("change.dtsb",function(){l.dom.dataTitle.removeProp("selected");for(var t=l.dom.data.children("option."+l.classes.option),i=0;i<t.length;i++){var e=I(t[i]);e.val()===l.dom.data.val()?(l.dom.data.removeClass(l.classes.italic),e.prop("selected",!0),l.s.dataIdx=+e.val(),l.s.data=e.text(),l.s.origData=e.prop("origData"),l.c.orthogonal=l._getOptions().orthogonal,l._clearCondition(),l._clearValue(),l._populateCondition(),l.s.filled&&(l.s.filled=!1,l.doSearch(),l.setListeners()),l.s.dt.state.save()):e.removeProp("selected")}}),this.dom.condition.unbind("change").on("change.dtsb",function(){l.dom.conditionTitle.removeProp("selected");for(var t=l.dom.condition.children("option."+l.classes.option),i=0;i<t.length;i++){var e=I(t[i]);if(e.val()===l.dom.condition.val()){l.dom.condition.removeClass(l.classes.italic),e.prop("selected",!0);for(var n=e.val(),s=0,o=Object.keys(l.s.conditions);s<o.length;s++)if(o[s]===n){l.s.condition=n;break}l._clearValue(),l._populateValue();for(var r=0,a=l.dom.value;r<a.length;r++){var d=a[r];l.s.filled&&void 0!==d&&0!==l.dom.inputCont.has(d[0]).length&&(l.s.filled=!1,l.doSearch(),l.setListeners())}(0===l.dom.value.length||1===l.dom.value.length&&void 0===l.dom.value[0])&&l.doSearch()}else e.removeProp("selected")}})},w.prototype.setupButtons=function(){550<u.innerWidth?(this.dom.container.removeClass(this.classes.vertical),this.dom.buttons.css("left",null),this.dom.buttons.css("top",null)):(this.dom.container.addClass(this.classes.vertical),this.dom.buttons.css("left",this.dom.data.innerWidth()),this.dom.buttons.css("top",this.dom.data.position().top))},w.prototype._buildCriteria=function(){this.dom.data.append(this.dom.dataTitle),this.dom.condition.append(this.dom.conditionTitle),this.dom.container.append(this.dom.data).append(this.dom.condition),this.dom.inputCont.empty();for(var t=0,i=this.dom.value;t<i.length;t++){var e=i[t];e.append(this.dom.valueTitle),this.dom.inputCont.append(e)}this.dom.buttons.append(this.dom.delete).append(this.dom.right),this.dom.container.append(this.dom.inputCont).append(this.dom.buttons),this.setListeners()},w.prototype._clearCondition=function(){this.dom.condition.empty(),this.dom.conditionTitle.prop("selected",!0).attr("disabled","true"),this.dom.condition.prepend(this.dom.conditionTitle).prop("selectedIndex",0),this.s.conditions={},this.s.condition=void 0},w.prototype._clearValue=function(){var t;if(void 0!==this.s.condition){if(0<this.dom.value.length&&void 0!==this.dom.value[0])for(var i=0,e=this.dom.value;i<e.length;i++)void 0!==(t=e[i])&&setTimeout(function(){t.remove()},50);if(this.dom.value=[].concat(this.s.conditions[this.s.condition].init(this,w.updateListener)),0<this.dom.value.length&&void 0!==this.dom.value[0]){this.dom.inputCont.empty().append(this.dom.value[0]).insertAfter(this.dom.condition),I(this.dom.value[0]).trigger("dtsb-inserted");for(var n=1;n<this.dom.value.length;n++)this.dom.inputCont.append(this.dom.value[n]),I(this.dom.value[n]).trigger("dtsb-inserted")}}else{for(var s=0,o=this.dom.value;s<o.length;s++)void 0!==(t=o[s])&&setTimeout(function(){t.remove()},50);this.dom.valueTitle.prop("selected",!0),this.dom.defaultValue.append(this.dom.valueTitle).insertAfter(this.dom.condition)}this.s.value=[],this.dom.value=[I("<select disabled/>").addClass(this.classes.value).addClass(this.classes.dropDown).addClass(this.classes.italic).addClass(this.classes.select).append(this.dom.valueTitle.clone())]},w.prototype._getOptions=function(){var t=this.s.dt;return I.extend(!0,{},w.defaults,t.settings()[0].aoColumns[this.s.dataIdx].searchBuilder)},w.prototype._populateCondition=function(){var t=[],i=Object.keys(this.s.conditions).length,e=this.s.dt.settings()[0].aoColumns,n=+this.dom.data.children("option:selected").val();if(0===i){this.s.type=this.s.dt.column(n).type(),void 0!==e&&(void 0!==(s=e[n]).searchBuilderType&&null!==s.searchBuilderType?this.s.type=s.searchBuilderType:void 0!==this.s.type&&null!==this.s.type||(this.s.type=s.sType)),null!==this.s.type&&void 0!==this.s.type||(I.fn.dataTable.ext.oApi&&I.fn.dataTable.ext.oApi._fnColumnTypes(this.s.dt.settings()[0]),this.s.type=this.s.dt.column(n).type()),this.dom.condition.removeAttr("disabled").empty().append(this.dom.conditionTitle).addClass(this.classes.italic),this.dom.conditionTitle.prop("selected",!0);var s=this.s.dt.settings()[0].oLanguage.sDecimal,o=(""!==s&&this.s.type.indexOf(s)===this.s.type.length-s.length&&(this.s.type.includes("num-fmt")||this.s.type.includes("num"))&&(this.s.type=this.s.type.replace(s,"")),void 0!==this.c.conditions[this.s.type]?this.c.conditions[this.s.type]:this.s.type.includes("moment")?this.c.conditions.moment:this.s.type.includes("luxon")?this.c.conditions.luxon:this.c.conditions.string);this.s.type.includes("moment")?this.s.dateFormat=this.s.type.replace(/moment-/g,""):this.s.type.includes("luxon")&&(this.s.dateFormat=this.s.type.replace(/luxon-/g,""));for(var r,a,d=0,l=Object.keys(o);d<l.length;d++)null!==o[a=l[d]]&&(this.s.dt.page.info().serverSide&&o[a].init===w.initSelect&&(r=e[n],this.s.serverData&&this.s.serverData[r.data]?(o[a].init=w.initSelectSSP,o[a].inputValue=w.inputValueSelect,o[a].isInputValid=w.isInputValidSelect):(o[a].init=w.initInput,o[a].inputValue=w.inputValueInput,o[a].isInputValid=w.isInputValidInput)),this.s.conditions[a]=o[a],"function"==typeof(C=o[a].conditionName)&&(C=C(this.s.dt,this.c.i18n)),t.push(I("<option>",{text:C,value:a}).addClass(this.classes.option).addClass(this.classes.notItalic)))}else{if(!(0<i))return void this.dom.condition.attr("disabled","true").addClass(this.classes.italic);this.dom.condition.empty().removeAttr("disabled").addClass(this.classes.italic);for(var u=0,c=Object.keys(this.s.conditions);u<c.length;u++){a=c[u];var h=this.s.conditions[a].conditionName,p=("function"==typeof h&&(h=h(this.s.dt,this.c.i18n)),I("<option>",{text:h,value:a}).addClass(this.classes.option).addClass(this.classes.notItalic));void 0!==this.s.condition&&this.s.condition===h&&(p.prop("selected",!0),this.dom.condition.removeClass(this.classes.italic)),t.push(p)}}for(var m=0,f=t;m<f.length;m++)this.dom.condition.append(f[m]);if(e[n].searchBuilder&&e[n].searchBuilder.defaultCondition){var g=e[n].searchBuilder.defaultCondition;if("number"==typeof g)this.dom.condition.prop("selectedIndex",g),this.dom.condition.trigger("change");else if("string"==typeof g)for(var v=0;v<t.length;v++)for(var b=0,y=Object.keys(this.s.conditions);b<y.length;b++){var C,V=y[b];if(("string"==typeof(C=this.s.conditions[V].conditionName)?C:C(this.s.dt,this.c.i18n))===t[v].text()&&V===g){this.dom.condition.prop("selectedIndex",this.dom.condition.children().toArray().indexOf(t[v][0])).removeClass(this.classes.italic),this.dom.condition.trigger("change"),v=t.length;break}}}else this.dom.condition.prop("selectedIndex",0)},w.prototype._populateData=function(){var t=this.s.dt.settings()[0].aoColumns,i=this.s.dt.columns(this.c.columns).indexes().toArray();this.dom.data.empty().append(this.dom.dataTitle);for(var e,n,s=0;s<t.length;s++)!0!==this.c.columns&&!i.includes(s)||(n={index:s,origData:(e=t[s]).data,text:(e.searchBuilderTitle||e.sTitle).replace(/(<([^>]+)>)/gi,"")},this.dom.data.append(I("<option>",{text:n.text,value:n.index}).addClass(this.classes.option).addClass(this.classes.notItalic).prop("origData",e.data).prop("selected",this.s.dataIdx===n.index)),this.s.dataIdx!==n.index)||this.dom.dataTitle.removeProp("selected")},w.prototype._populateValue=function(i){for(var t,e=this,n=this.s.filled,s=(this.s.filled=!1,setTimeout(function(){e.dom.defaultValue.remove()},50),0),o=this.dom.value;s<o.length;s++)!function(t){setTimeout(function(){void 0!==t&&t.remove()},50)}(o[s]);var r=this.dom.inputCont.children();if(1<r.length)for(t=0;t<r.length;t++)I(r[t]).remove();for(void 0!==i&&this.s.dt.columns().every(function(t){e.s.dt.settings()[0].aoColumns[t].sTitle===i.data&&(e.s.dataIdx=t)}),this.dom.value=[].concat(this.s.conditions[this.s.condition].init(this,w.updateListener,void 0!==i?i.value:void 0)),void 0!==i&&void 0!==i.value&&(this.s.value=i.value),this.dom.inputCont.empty(),void 0!==this.dom.value[0]&&I(this.dom.value[0]).appendTo(this.dom.inputCont).trigger("dtsb-inserted"),t=1;t<this.dom.value.length;t++)I(this.dom.value[t]).insertAfter(this.dom.value[t-1]).trigger("dtsb-inserted");this.s.filled=this.s.conditions[this.s.condition].isInputValid(this.dom.value,this),this.setListeners(),this.s.preventRedraw||n===this.s.filled||(this.s.dt.page.info().serverSide||this.doSearch(),this.setListeners())},w.prototype._throttle=function(n,s){var o=null,r=null,a=this;return null===(s=void 0===s?200:s)&&(s=200),function(){for(var t=[],i=0;i<arguments.length;i++)t[i]=arguments[i];var e=+new Date;null!==o&&e<o+s?clearTimeout(r):o=e,r=setTimeout(function(){o=null,n.apply(a,t)},s)}},w.version="1.1.0",w.classes={button:"dtsb-button",buttonContainer:"dtsb-buttonContainer",condition:"dtsb-condition",container:"dtsb-criteria",data:"dtsb-data",delete:"dtsb-delete",dropDown:"dtsb-dropDown",greyscale:"dtsb-greyscale",input:"dtsb-input",inputCont:"dtsb-inputCont",italic:"dtsb-italic",joiner:"dtsb-joiner",left:"dtsb-left",notItalic:"dtsb-notItalic",option:"dtsb-option",right:"dtsb-right",select:"dtsb-select",value:"dtsb-value",vertical:"dtsb-vertical"},w.initSelect=function(e,t,n,i){void 0===n&&(n=null),void 0===i&&(i=!1);for(var s=e.dom.data.children("option:selected").val(),o=e.s.dt.rows().indexes().toArray(),r=e.s.dt.settings()[0].fastData,a=(e.dom.valueTitle.prop("selected",!0),I("<select/>").addClass(w.classes.value).addClass(w.classes.dropDown).addClass(w.classes.italic).addClass(w.classes.select).append(e.dom.valueTitle).on("change.dtsb",function(){I(this).removeClass(w.classes.italic),t(e,this)})),d=(e.c.greyscale&&a.addClass(w.classes.greyscale),[]),l=[],u=0,c=o;u<c.length;u++){var h=c[u],p=r(h,s,"string"==typeof e.c.orthogonal?e.c.orthogonal:e.c.orthogonal.search),m={filter:"string"==typeof p?p.replace(/[\r\n\u2028]/g," "):p,index:h,text:r(h,s,"string"==typeof e.c.orthogonal?e.c.orthogonal:e.c.orthogonal.display)},f=("array"===e.s.type&&(m.filter=Array.isArray(m.filter)?m.filter:[m.filter],m.text=Array.isArray(m.text)?m.text:[m.text]),function(t,i){e.s.type.includes("html")&&null!==t&&"string"==typeof t&&t.replace(/(<([^>]+)>)/gi,"");t=I("<option>",{type:Array.isArray(t)?"Array":"String",value:t}).data("sbv",t).addClass(e.classes.option).addClass(e.classes.notItalic).html("string"==typeof i?i.replace(/(<([^>]+)>)/gi,""):i),i=t.val();-1===d.indexOf(i)&&(d.push(i),l.push(t),null!==n&&Array.isArray(n[0])&&(n[0]=n[0].sort().join(",")),null!==n)&&t.val()===n[0]&&(t.prop("selected",!0),a.removeClass(w.classes.italic),e.dom.valueTitle.removeProp("selected"))});if(i)for(var g=0;g<m.filter.length;g++)f(m.filter[g],m.text[g]);else f(m.filter,Array.isArray(m.text)?m.text.join(", "):m.text)}l.sort(function(t,i){return"array"===e.s.type||"string"===e.s.type||"html"===e.s.type?t.val()<i.val()?-1:t.val()>i.val()?1:0:"num"===e.s.type||"html-num"===e.s.type?+t.val().replace(/(<([^>]+)>)/gi,"")<+i.val().replace(/(<([^>]+)>)/gi,"")?-1:+t.val().replace(/(<([^>]+)>)/gi,"")>+i.val().replace(/(<([^>]+)>)/gi,"")?1:0:"num-fmt"===e.s.type||"html-num-fmt"===e.s.type?+t.val().replace(/[^0-9.]/g,"")<+i.val().replace(/[^0-9.]/g,"")?-1:+t.val().replace(/[^0-9.]/g,"")>+i.val().replace(/[^0-9.]/g,"")?1:0:void 0});for(var v=0,b=l;v<b.length;v++)a.append(b[v]);return a},w.initSelectSSP=function(t,i,e){void 0===e&&(e=null),t.dom.valueTitle.prop("selected",!0);for(var n=I("<select/>").addClass(w.classes.value).addClass(w.classes.dropDown).addClass(w.classes.italic).addClass(w.classes.select).append(t.dom.valueTitle).on("change.dtsb",function(){I(this).removeClass(w.classes.italic),i(t,this)}),s=(t.c.greyscale&&n.addClass(w.classes.greyscale),[]),o=0,r=t.s.serverData[t.s.origData];o<r.length;o++){var a=r[o],d=a.value,a=a.label;t.s.type.includes("html")&&null!==d&&"string"==typeof d&&d.replace(/(<([^>]+)>)/gi,""),d=I("<option>",{type:Array.isArray(d)?"Array":"String",value:d}).data("sbv",d).addClass(t.classes.option).addClass(t.classes.notItalic).html("string"==typeof a?a.replace(/(<([^>]+)>)/gi,""):a),s.push(d),null!==e&&d.val()===e[0]&&(d.prop("selected",!0),n.removeClass(w.classes.italic),t.dom.valueTitle.removeProp("selected"))}for(var l=0,u=s;l<u.length;l++)n.append(u[l]);return n},w.initSelectArray=function(t,i,e){return w.initSelect(t,i,e=void 0===e?null:e,!0)},w.initInput=function(i,e,t){void 0===t&&(t=null);var n=i.s.dt.settings()[0].searchDelay,n=I("<input/>").addClass(w.classes.value).addClass(w.classes.input).on("input.dtsb keypress.dtsb",i._throttle(function(t){t=t.keyCode||t.which;return e(i,this,t)},null===n?100:n));return i.c.greyscale&&n.addClass(w.classes.greyscale),null!==t&&n.val(t[0]),i.s.dt.one("draw.dtsb",function(){i.s.topGroup.trigger("dtsb-redrawLogic")}),n},w.init2Input=function(i,e,t){void 0===t&&(t=null);var n=i.s.dt.settings()[0].searchDelay,n=[I("<input/>").addClass(w.classes.value).addClass(w.classes.input).on("input.dtsb keypress.dtsb",i._throttle(function(t){t=t.keyCode||t.which;return e(i,this,t)},null===n?100:n)),I("<span>").addClass(i.classes.joiner).html(i.s.dt.i18n("searchBuilder.valueJoiner",i.c.i18n.valueJoiner)),I("<input/>").addClass(w.classes.value).addClass(w.classes.input).on("input.dtsb keypress.dtsb",i._throttle(function(t){t=t.keyCode||t.which;return e(i,this,t)},null===n?100:n))];return i.c.greyscale&&(n[0].addClass(w.classes.greyscale),n[2].addClass(w.classes.greyscale)),null!==t&&(n[0].val(t[0]),n[2].val(t[1])),i.s.dt.one("draw.dtsb",function(){i.s.topGroup.trigger("dtsb-redrawLogic")}),n},w.initDate=function(e,n,t){void 0===t&&(t=null);var s=e.s.dt.settings()[0].searchDelay,i=e.s.dt.i18n("datetime",{}),i=I("<input/>").addClass(w.classes.value).addClass(w.classes.input).dtDateTime({attachTo:"input",format:e.s.dateFormat||void 0,i18n:i}).on("change.dtsb",e._throttle(function(){return n(e,this)},null===s?100:s)).on("input.dtsb keypress.dtsb",function(i){e._throttle(function(){var t=i.keyCode||i.which;return n(e,this,t)},null===s?100:s)});return e.c.greyscale&&i.addClass(w.classes.greyscale),null!==t&&i.val(t[0]),e.s.dt.one("draw.dtsb",function(){e.s.topGroup.trigger("dtsb-redrawLogic")}),i},w.initNoValue=function(t){return t.s.dt.one("draw.dtsb",function(){t.s.topGroup.trigger("dtsb-redrawLogic")}),[]},w.init2Date=function(e,n,t){var i=this,s=(void 0===t&&(t=null),e.s.dt.settings()[0].searchDelay),o=e.s.dt.i18n("datetime",{}),o=[I("<input/>").addClass(w.classes.value).addClass(w.classes.input).dtDateTime({attachTo:"input",format:e.s.dateFormat||void 0,i18n:o}).on("change.dtsb",null!==s?f.util.throttle(function(){return n(e,this)},s):function(){n(e,i)}).on("input.dtsb keypress.dtsb",function(i){f.util.throttle(function(){var t=i.keyCode||i.which;return n(e,this,t)},null===s?0:s)}),I("<span>").addClass(e.classes.joiner).html(e.s.dt.i18n("searchBuilder.valueJoiner",e.c.i18n.valueJoiner)),I("<input/>").addClass(w.classes.value).addClass(w.classes.input).dtDateTime({attachTo:"input",format:e.s.dateFormat||void 0,i18n:o}).on("change.dtsb",null!==s?f.util.throttle(function(){return n(e,this)},s):function(){n(e,i)}).on("input.dtsb keypress.dtsb",e.c.enterSearch||void 0!==e.s.dt.settings()[0].oInit.search&&e.s.dt.settings()[0].oInit.search.return||null===s?function(t){t=t.keyCode||t.which;n(e,i,t)}:f.util.throttle(function(){return n(e,this)},s))];return e.c.greyscale&&(o[0].addClass(w.classes.greyscale),o[2].addClass(w.classes.greyscale)),null!==t&&0<t.length&&(o[0].val(t[0]),o[2].val(t[1])),e.s.dt.one("draw.dtsb",function(){e.s.topGroup.trigger("dtsb-redrawLogic")}),o},w.isInputValidSelect=function(t){for(var i=!0,e=0,n=t;e<n.length;e++){var s=n[e];s.children("option:selected").length===s.children("option").length-s.children("option."+w.classes.notItalic).length&&1===s.children("option:selected").length&&s.children("option:selected")[0]===s.children("option")[0]&&(i=!1)}return i},w.isInputValidInput=function(t){for(var i=!0,e=0,n=t;e<n.length;e++){var s=n[e];s.is("input")&&0===s.val().length&&(i=!1)}return i},w.inputValueSelect=function(t){for(var i=[],e=0,n=t;e<n.length;e++){var s=n[e];s.is("select")&&i.push(w._escapeHTML(s.children("option:selected").data("sbv")))}return i},w.inputValueInput=function(t){for(var i=[],e=0,n=t;e<n.length;e++){var s=n[e];s.is("input")&&i.push(w._escapeHTML(s.val()))}return i},w.updateListener=function(t,i,e){var n=t.s.conditions[t.s.condition];if(t.s.filled=n.isInputValid(t.dom.value,t),t.s.value=n.inputValue(t.dom.value,t),t.s.filled){for(Array.isArray(t.s.value)||(t.s.value=[t.s.value]),r=0;r<t.s.value.length;r++)Array.isArray(t.s.value[r])&&t.s.value[r].sort();for(var s=null,o=null,r=0;r<t.dom.value.length;r++)i===t.dom.value[r][0]&&(s=r,void 0!==i.selectionStart)&&(o=i.selectionStart);(t.c.enterSearch||void 0!==t.s.dt.settings()[0].oInit.search&&t.s.dt.settings()[0].oInit.search.return)&&13!==e||t.doSearch(),null!==s&&(t.dom.value[s].removeClass(t.classes.italic),t.dom.value[s].focus(),null!==o)&&t.dom.value[s][0].setSelectionRange(o,o)}else(t.c.enterSearch||void 0!==t.s.dt.settings()[0].oInit.search&&t.s.dt.settings()[0].oInit.search.return)&&13!==e||t.doSearch()},w.dateConditions={"=":{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.date.equals",i.conditions.date.equals)},init:w.initDate,inputValue:w.inputValueInput,isInputValid:w.isInputValidInput,search:function(t,i){return(t=t.replace(/(\/|-|,)/g,"-"))===i[0]}},"!=":{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.date.not",i.conditions.date.not)},init:w.initDate,inputValue:w.inputValueInput,isInputValid:w.isInputValidInput,search:function(t,i){return(t=t.replace(/(\/|-|,)/g,"-"))!==i[0]}},"<":{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.date.before",i.conditions.date.before)},init:w.initDate,inputValue:w.inputValueInput,isInputValid:w.isInputValidInput,search:function(t,i){return(t=t.replace(/(\/|-|,)/g,"-"))<i[0]}},">":{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.date.after",i.conditions.date.after)},init:w.initDate,inputValue:w.inputValueInput,isInputValid:w.isInputValidInput,search:function(t,i){return(t=t.replace(/(\/|-|,)/g,"-"))>i[0]}},between:{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.date.between",i.conditions.date.between)},init:w.init2Date,inputValue:w.inputValueInput,isInputValid:w.isInputValidInput,search:function(t,i){return t=t.replace(/(\/|-|,)/g,"-"),i[0]<i[1]?i[0]<=t&&t<=i[1]:i[1]<=t&&t<=i[0]}},"!between":{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.date.notBetween",i.conditions.date.notBetween)},init:w.init2Date,inputValue:w.inputValueInput,isInputValid:w.isInputValidInput,search:function(t,i){return t=t.replace(/(\/|-|,)/g,"-"),i[0]<i[1]?!(i[0]<=t&&t<=i[1]):!(i[1]<=t&&t<=i[0])}},null:{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.date.empty",i.conditions.date.empty)},init:w.initNoValue,inputValue:function(){},isInputValid:function(){return!0},search:function(t){return null==t||0===t.length}},"!null":{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.date.notEmpty",i.conditions.date.notEmpty)},init:w.initNoValue,inputValue:function(){},isInputValid:function(){return!0},search:function(t){return!(null==t||0===t.length)}}},w.momentDateConditions={"=":{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.date.equals",i.conditions.date.equals)},init:w.initDate,inputValue:w.inputValueInput,isInputValid:w.isInputValidInput,search:function(t,i,e){return o()(t,e.s.dateFormat).valueOf()===o()(i[0],e.s.dateFormat).valueOf()}},"!=":{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.date.not",i.conditions.date.not)},init:w.initDate,inputValue:w.inputValueInput,isInputValid:w.isInputValidInput,search:function(t,i,e){return o()(t,e.s.dateFormat).valueOf()!==o()(i[0],e.s.dateFormat).valueOf()}},"<":{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.date.before",i.conditions.date.before)},init:w.initDate,inputValue:w.inputValueInput,isInputValid:w.isInputValidInput,search:function(t,i,e){return o()(t,e.s.dateFormat).valueOf()<o()(i[0],e.s.dateFormat).valueOf()}},">":{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.date.after",i.conditions.date.after)},init:w.initDate,inputValue:w.inputValueInput,isInputValid:w.isInputValidInput,search:function(t,i,e){return o()(t,e.s.dateFormat).valueOf()>o()(i[0],e.s.dateFormat).valueOf()}},between:{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.date.between",i.conditions.date.between)},init:w.init2Date,inputValue:w.inputValueInput,isInputValid:w.isInputValidInput,search:function(t,i,e){var t=o()(t,e.s.dateFormat).valueOf(),n=o()(i[0],e.s.dateFormat).valueOf(),i=o()(i[1],e.s.dateFormat).valueOf();return n<i?n<=t&&t<=i:i<=t&&t<=n}},"!between":{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.date.notBetween",i.conditions.date.notBetween)},init:w.init2Date,inputValue:w.inputValueInput,isInputValid:w.isInputValidInput,search:function(t,i,e){var t=o()(t,e.s.dateFormat).valueOf(),n=o()(i[0],e.s.dateFormat).valueOf(),i=o()(i[1],e.s.dateFormat).valueOf();return n<i?!(+n<=+t&&+t<=+i):!(+i<=+t&&+t<=+n)}},null:{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.date.empty",i.conditions.date.empty)},init:w.initNoValue,inputValue:function(){},isInputValid:function(){return!0},search:function(t){return null==t||0===t.length}},"!null":{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.date.notEmpty",i.conditions.date.notEmpty)},init:w.initNoValue,inputValue:function(){},isInputValid:function(){return!0},search:function(t){return!(null==t||0===t.length)}}},w.luxonDateConditions={"=":{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.date.equals",i.conditions.date.equals)},init:w.initDate,inputValue:w.inputValueInput,isInputValid:w.isInputValidInput,search:function(t,i,e){return r().DateTime.fromFormat(t,e.s.dateFormat).ts===r().DateTime.fromFormat(i[0],e.s.dateFormat).ts}},"!=":{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.date.not",i.conditions.date.not)},init:w.initDate,inputValue:w.inputValueInput,isInputValid:w.isInputValidInput,search:function(t,i,e){return r().DateTime.fromFormat(t,e.s.dateFormat).ts!==r().DateTime.fromFormat(i[0],e.s.dateFormat).ts}},"<":{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.date.before",i.conditions.date.before)},init:w.initDate,inputValue:w.inputValueInput,isInputValid:w.isInputValidInput,search:function(t,i,e){return r().DateTime.fromFormat(t,e.s.dateFormat).ts<r().DateTime.fromFormat(i[0],e.s.dateFormat).ts}},">":{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.date.after",i.conditions.date.after)},init:w.initDate,inputValue:w.inputValueInput,isInputValid:w.isInputValidInput,search:function(t,i,e){return r().DateTime.fromFormat(t,e.s.dateFormat).ts>r().DateTime.fromFormat(i[0],e.s.dateFormat).ts}},between:{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.date.between",i.conditions.date.between)},init:w.init2Date,inputValue:w.inputValueInput,isInputValid:w.isInputValidInput,search:function(t,i,e){var t=r().DateTime.fromFormat(t,e.s.dateFormat).ts,n=r().DateTime.fromFormat(i[0],e.s.dateFormat).ts,i=r().DateTime.fromFormat(i[1],e.s.dateFormat).ts;return n<i?n<=t&&t<=i:i<=t&&t<=n}},"!between":{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.date.notBetween",i.conditions.date.notBetween)},init:w.init2Date,inputValue:w.inputValueInput,isInputValid:w.isInputValidInput,search:function(t,i,e){var t=r().DateTime.fromFormat(t,e.s.dateFormat).ts,n=r().DateTime.fromFormat(i[0],e.s.dateFormat).ts,i=r().DateTime.fromFormat(i[1],e.s.dateFormat).ts;return n<i?!(+n<=+t&&+t<=+i):!(+i<=+t&&+t<=+n)}},null:{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.date.empty",i.conditions.date.empty)},init:w.initNoValue,inputValue:function(){},isInputValid:function(){return!0},search:function(t){return null==t||0===t.length}},"!null":{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.date.notEmpty",i.conditions.date.notEmpty)},init:w.initNoValue,inputValue:function(){},isInputValid:function(){return!0},search:function(t){return!(null==t||0===t.length)}}},w.numConditions={"=":{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.number.equals",i.conditions.number.equals)},init:w.initSelect,inputValue:w.inputValueSelect,isInputValid:w.isInputValidSelect,search:function(t,i){return+t==+i[0]}},"!=":{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.number.not",i.conditions.number.not)},init:w.initSelect,inputValue:w.inputValueSelect,isInputValid:w.isInputValidSelect,search:function(t,i){return+t!=+i[0]}},"<":{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.number.lt",i.conditions.number.lt)},init:w.initInput,inputValue:w.inputValueInput,isInputValid:w.isInputValidInput,search:function(t,i){return+t<+i[0]}},"<=":{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.number.lte",i.conditions.number.lte)},init:w.initInput,inputValue:w.inputValueInput,isInputValid:w.isInputValidInput,search:function(t,i){return+t<=+i[0]}},">=":{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.number.gte",i.conditions.number.gte)},init:w.initInput,inputValue:w.inputValueInput,isInputValid:w.isInputValidInput,search:function(t,i){return+t>=+i[0]}},">":{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.number.gt",i.conditions.number.gt)},init:w.initInput,inputValue:w.inputValueInput,isInputValid:w.isInputValidInput,search:function(t,i){return+t>+i[0]}},between:{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.number.between",i.conditions.number.between)},init:w.init2Input,inputValue:w.inputValueInput,isInputValid:w.isInputValidInput,search:function(t,i){return+i[0]<+i[1]?+i[0]<=+t&&+t<=+i[1]:+i[1]<=+t&&+t<=+i[0]}},"!between":{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.number.notBetween",i.conditions.number.notBetween)},init:w.init2Input,inputValue:w.inputValueInput,isInputValid:w.isInputValidInput,search:function(t,i){return+i[0]<+i[1]?!(+i[0]<=+t&&+t<=+i[1]):!(+i[1]<=+t&&+t<=+i[0])}},null:{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.number.empty",i.conditions.number.empty)},init:w.initNoValue,inputValue:function(){},isInputValid:function(){return!0},search:function(t){return null==t||0===t.length}},"!null":{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.number.notEmpty",i.conditions.number.notEmpty)},init:w.initNoValue,inputValue:function(){},isInputValid:function(){return!0},search:function(t){return!(null==t||0===t.length)}}},w.numFmtConditions={"=":{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.number.equals",i.conditions.number.equals)},init:w.initSelect,inputValue:w.inputValueSelect,isInputValid:w.isInputValidSelect,search:function(t,i,e){return e.parseNumber(t)===e.parseNumber(i[0])}},"!=":{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.number.not",i.conditions.number.not)},init:w.initSelect,inputValue:w.inputValueSelect,isInputValid:w.isInputValidSelect,search:function(t,i,e){return e.parseNumber(t)!==e.parseNumber(i[0])}},"<":{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.number.lt",i.conditions.number.lt)},init:w.initInput,inputValue:w.inputValueInput,isInputValid:w.isInputValidInput,search:function(t,i,e){return e.parseNumber(t)<e.parseNumber(i[0])}},"<=":{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.number.lte",i.conditions.number.lte)},init:w.initInput,inputValue:w.inputValueInput,isInputValid:w.isInputValidInput,search:function(t,i,e){return e.parseNumber(t)<=e.parseNumber(i[0])}},">=":{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.number.gte",i.conditions.number.gte)},init:w.initInput,inputValue:w.inputValueInput,isInputValid:w.isInputValidInput,search:function(t,i,e){return e.parseNumber(t)>=e.parseNumber(i[0])}},">":{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.number.gt",i.conditions.number.gt)},init:w.initInput,inputValue:w.inputValueInput,isInputValid:w.isInputValidInput,search:function(t,i,e){return e.parseNumber(t)>e.parseNumber(i[0])}},between:{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.number.between",i.conditions.number.between)},init:w.init2Input,inputValue:w.inputValueInput,isInputValid:w.isInputValidInput,search:function(t,i,e){var t=e.parseNumber(t),n=e.parseNumber(i[0]),e=e.parseNumber(i[1]);return+n<+e?+n<=+t&&+t<=+e:+e<=+t&&+t<=+n}},"!between":{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.number.notBetween",i.conditions.number.notBetween)},init:w.init2Input,inputValue:w.inputValueInput,isInputValid:w.isInputValidInput,search:function(t,i,e){var t=e.parseNumber(t),n=e.parseNumber(i[0]),e=e.parseNumber(i[1]);return+n<+e?!(+n<=+t&&+t<=+e):!(+e<=+t&&+t<=+n)}},null:{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.number.empty",i.conditions.number.empty)},init:w.initNoValue,inputValue:function(){},isInputValid:function(){return!0},search:function(t){return null==t||0===t.length}},"!null":{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.number.notEmpty",i.conditions.number.notEmpty)},init:w.initNoValue,inputValue:function(){},isInputValid:function(){return!0},search:function(t){return!(null==t||0===t.length)}}},w.stringConditions={"=":{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.string.equals",i.conditions.string.equals)},init:w.initSelect,inputValue:w.inputValueSelect,isInputValid:w.isInputValidSelect,search:function(t,i){return t===i[0]}},"!=":{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.string.not",i.conditions.string.not)},init:w.initSelect,inputValue:w.inputValueSelect,isInputValid:w.isInputValidInput,search:function(t,i){return t!==i[0]}},starts:{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.string.startsWith",i.conditions.string.startsWith)},init:w.initInput,inputValue:w.inputValueInput,isInputValid:w.isInputValidInput,search:function(t,i){return 0===t.toLowerCase().indexOf(i[0].toLowerCase())}},"!starts":{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.string.notStartsWith",i.conditions.string.notStartsWith)},init:w.initInput,inputValue:w.inputValueInput,isInputValid:w.isInputValidInput,search:function(t,i){return 0!==t.toLowerCase().indexOf(i[0].toLowerCase())}},contains:{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.string.contains",i.conditions.string.contains)},init:w.initInput,inputValue:w.inputValueInput,isInputValid:w.isInputValidInput,search:function(t,i){return t.toLowerCase().includes(i[0].toLowerCase())}},"!contains":{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.string.notContains",i.conditions.string.notContains)},init:w.initInput,inputValue:w.inputValueInput,isInputValid:w.isInputValidInput,search:function(t,i){return!t.toLowerCase().includes(i[0].toLowerCase())}},ends:{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.string.endsWith",i.conditions.string.endsWith)},init:w.initInput,inputValue:w.inputValueInput,isInputValid:w.isInputValidInput,search:function(t,i){return t.toLowerCase().endsWith(i[0].toLowerCase())}},"!ends":{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.string.notEndsWith",i.conditions.string.notEndsWith)},init:w.initInput,inputValue:w.inputValueInput,isInputValid:w.isInputValidInput,search:function(t,i){return!t.toLowerCase().endsWith(i[0].toLowerCase())}},null:{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.string.empty",i.conditions.string.empty)},init:w.initNoValue,inputValue:function(){},isInputValid:function(){return!0},search:function(t){return null==t||0===t.length}},"!null":{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.string.notEmpty",i.conditions.string.notEmpty)},init:w.initNoValue,inputValue:function(){},isInputValid:function(){return!0},search:function(t){return!(null==t||0===t.length)}}},w.defaults={columns:!0,conditions:{array:w.arrayConditions={contains:{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.array.contains",i.conditions.array.contains)},init:w.initSelectArray,inputValue:w.inputValueSelect,isInputValid:w.isInputValidSelect,search:function(t,i){return t.includes(i[0])}},without:{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.array.without",i.conditions.array.without)},init:w.initSelectArray,inputValue:w.inputValueSelect,isInputValid:w.isInputValidSelect,search:function(t,i){return-1===t.indexOf(i[0])}},"=":{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.array.equals",i.conditions.array.equals)},init:w.initSelect,inputValue:w.inputValueSelect,isInputValid:w.isInputValidSelect,search:function(t,i){if(t.length!==i[0].length)return!1;for(var e=0;e<t.length;e++)if(t[e]!==i[0][e])return!1;return!0}},"!=":{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.array.not",i.conditions.array.not)},init:w.initSelect,inputValue:w.inputValueSelect,isInputValid:w.isInputValidSelect,search:function(t,i){if(t.length!==i[0].length)return!0;for(var e=0;e<t.length;e++)if(t[e]!==i[0][e])return!0;return!1}},null:{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.array.empty",i.conditions.array.empty)},init:w.initNoValue,inputValue:function(){},isInputValid:function(){return!0},search:function(t){return null==t||0===t.length}},"!null":{conditionName:function(t,i){return t.i18n("searchBuilder.conditions.array.notEmpty",i.conditions.array.notEmpty)},init:w.initNoValue,inputValue:function(){},isInputValid:function(){return!0},search:function(t){return null!=t&&0!==t.length}}},date:w.dateConditions,html:w.stringConditions,"html-num":w.numConditions,"html-num-fmt":w.numFmtConditions,luxon:w.luxonDateConditions,moment:w.momentDateConditions,num:w.numConditions,"num-fmt":w.numFmtConditions,string:w.stringConditions},depthLimit:!1,enterSearch:!1,filterChanged:void 0,greyscale:!1,i18n:{add:"Add Condition",button:{0:"Search Builder",_:"Search Builder (%d)"},clearAll:"Clear All",condition:"Condition",data:"Data",delete:"&times",deleteTitle:"Delete filtering rule",left:"<",leftTitle:"Outdent criteria",logicAnd:"And",logicOr:"Or",right:">",rightTitle:"Indent criteria",search:"Search",title:{0:"Custom Search Builder",_:"Custom Search Builder (%d)"},value:"Value",valueJoiner:"and"},liveSearch:!0,logic:"AND",orthogonal:{display:"display",search:"filter"},preDefined:!1},l=w,g.prototype.destroy=function(){this.dom.add.off(".dtsb"),this.dom.logic.off(".dtsb"),this.dom.search.off(".dtsb"),this.dom.container.trigger("dtsb-destroy").remove(),this.s.criteria=[]},g.prototype.getDetails=function(t){if(void 0===t&&(t=!1),0===this.s.criteria.length)return{};for(var i={criteria:[],logic:this.s.logic},e=0,n=this.s.criteria;e<n.length;e++){var s=n[e];i.criteria.push(s.criteria.getDetails(t))}return i},g.prototype.getNode=function(){return this.dom.container},g.prototype.rebuild=function(t){var i;if(!(void 0===t.criteria||null===t.criteria||Array.isArray(t.criteria)&&0===t.criteria.length)){if(this.s.logic=t.logic,this.dom.logic.children().first().html("OR"===this.s.logic?this.s.dt.i18n("searchBuilder.logicOr",this.c.i18n.logicOr):this.s.dt.i18n("searchBuilder.logicAnd",this.c.i18n.logicAnd)),Array.isArray(t.criteria))for(var e=0,n=t.criteria;e<n.length;e++)void 0!==(i=n[e]).logic?this._addPrevGroup(i):void 0===i.logic&&this._addPrevCriteria(i);for(var s=0,o=this.s.criteria;s<o.length;s++)(i=o[s]).criteria instanceof l&&(i.criteria.updateArrows(1<this.s.criteria.length),this._setCriteriaListeners(i.criteria))}},g.prototype.redrawContents=function(){if(!this.s.preventRedraw){this.dom.container.children().detach(),this.dom.container.append(this.dom.logicContainer).append(this.dom.add),this.c.liveSearch||this.dom.container.append(this.dom.search),this.s.criteria.sort(function(t,i){return t.criteria.s.index<i.criteria.s.index?-1:t.criteria.s.index>i.criteria.s.index?1:0}),this.setListeners();for(var t=0;t<this.s.criteria.length;t++){var i=this.s.criteria[t].criteria;i instanceof l?(this.s.criteria[t].index=t,this.s.criteria[t].criteria.s.index=t,this.s.criteria[t].criteria.dom.container.insertBefore(this.dom.add),this._setCriteriaListeners(i),this.s.criteria[t].criteria.s.preventRedraw=this.s.preventRedraw,this.s.criteria[t].criteria.rebuild(this.s.criteria[t].criteria.getDetails()),this.s.criteria[t].criteria.s.preventRedraw=!1):i instanceof g&&0<i.s.criteria.length?(this.s.criteria[t].index=t,this.s.criteria[t].criteria.s.index=t,this.s.criteria[t].criteria.dom.container.insertBefore(this.dom.add),i.s.preventRedraw=this.s.preventRedraw,i.redrawContents(),i.s.preventRedraw=!1,this._setGroupListeners(i)):(this.s.criteria.splice(t,1),t--)}this.setupLogic()}},g.prototype.redrawLogic=function(){for(var t=0,i=this.s.criteria;t<i.length;t++){var e=i[t];e.criteria instanceof g&&e.criteria.redrawLogic()}this.setupLogic()},g.prototype.search=function(t,i){return"AND"===this.s.logic?this._andSearch(t,i):"OR"!==this.s.logic||this._orSearch(t,i)},g.prototype.setupLogic=function(){if(this.dom.logicContainer.remove(),this.dom.clear.remove(),this.s.criteria.length<1)this.s.isChild||(this.dom.container.trigger("dtsb-destroy"),this.dom.container.css("margin-left",0)),this.dom.search.css("display","none");else{this.dom.clear.height("0px"),this.dom.logicContainer.append(this.dom.clear),this.s.isChild||this.dom.search.css("display","inline-block"),this.dom.container.prepend(this.dom.logicContainer);for(var t=0,i=this.s.criteria;t<i.length;t++){var e=i[t];e.criteria instanceof l&&e.criteria.setupButtons()}var n=this.dom.container.outerHeight()-1,n=(this.dom.logicContainer.width(n),this._setLogicListener(),this.dom.container.css("margin-left",this.dom.logicContainer.outerHeight(!0)),this.dom.logicContainer.offset()),s=n.left,s=s-(s-this.dom.container.offset().left)-this.dom.logicContainer.outerHeight(!0),s=(this.dom.logicContainer.offset({left:s}),this.dom.logicContainer.next()),n=n.top,s=a(s).offset().top;this.dom.logicContainer.offset({top:n-(n-s)}),this.dom.clear.outerHeight(this.dom.logicContainer.height()),this._setClearListener()}},g.prototype.setListeners=function(){var t=this;this.dom.add.unbind("click"),this.dom.add.on("click.dtsb",function(){return t.s.isChild||t.dom.container.prepend(t.dom.logicContainer),t.addCriteria(),t.dom.container.trigger("dtsb-add"),t.s.dt.state.save(),!1}),this.dom.search.off("click.dtsb").on("click.dtsb",function(){t.s.dt.draw()});for(var i=0,e=this.s.criteria;i<e.length;i++)e[i].criteria.setListeners();this._setClearListener(),this._setLogicListener()},g.prototype.addCriteria=function(t){for(var i=null===(t=void 0===t?null:t)?this.s.criteria.length:t.s.index,e=new l(this.s.dt,this.s.opts,this.s.topGroup,i,this.s.depth,this.s.serverData,this.c.liveSearch),n=(null!==t&&(e.c=t.c,e.s=t.s,e.s.depth=this.s.depth,e.classes=t.classes),e.populate(),!1),s=0;s<this.s.criteria.length;s++)0===s&&this.s.criteria[s].criteria.s.index>e.s.index?(e.getNode().insertBefore(this.s.criteria[s].criteria.dom.container),n=!0):s<this.s.criteria.length-1&&this.s.criteria[s].criteria.s.index<e.s.index&&this.s.criteria[s+1].criteria.s.index>e.s.index&&(e.getNode().insertAfter(this.s.criteria[s].criteria.dom.container),n=!0);n||e.getNode().insertBefore(this.dom.add),this.s.criteria.push({criteria:e,index:i}),this.s.criteria=this.s.criteria.sort(function(t,i){return t.criteria.s.index-i.criteria.s.index});for(var o=0,r=this.s.criteria;o<r.length;o++){var a=r[o];a.criteria instanceof l&&a.criteria.updateArrows(1<this.s.criteria.length)}this._setCriteriaListeners(e),e.setListeners(),this.setupLogic()},g.prototype.checkFilled=function(){for(var t=0,i=this.s.criteria;t<i.length;t++){var e=i[t];if(e.criteria instanceof l&&e.criteria.s.filled||e.criteria instanceof g&&e.criteria.checkFilled())return!0}return!1},g.prototype.count=function(){for(var t=0,i=0,e=this.s.criteria;i<e.length;i++){var n=e[i];n.criteria instanceof g?t+=n.criteria.count():t++}return t},g.prototype._addPrevGroup=function(t){var i=this.s.criteria.length,e=new g(this.s.dt,this.c,this.s.topGroup,i,!0,this.s.depth+1,this.s.serverData);this.s.criteria.push({criteria:e,index:i,logic:e.s.logic}),e.rebuild(t),this.s.criteria[i].criteria=e,this.s.topGroup.trigger("dtsb-redrawContents"),this._setGroupListeners(e)},g.prototype._addPrevCriteria=function(t){var i=this.s.criteria.length,e=new l(this.s.dt,this.s.opts,this.s.topGroup,i,this.s.depth,this.s.serverData);e.populate(),this.s.criteria.push({criteria:e,index:i}),e.s.preventRedraw=this.s.preventRedraw,e.rebuild(t),e.s.preventRedraw=!1,this.s.criteria[i].criteria=e,this.s.preventRedraw||this.s.topGroup.trigger("dtsb-redrawContents")},g.prototype._andSearch=function(t,i){if(0!==this.s.criteria.length)for(var e=0,n=this.s.criteria;e<n.length;e++){var s=n[e];if((!(s.criteria instanceof l)||s.criteria.s.filled)&&!s.criteria.search(t,i))return!1}return!0},g.prototype._orSearch=function(t,i){if(0===this.s.criteria.length)return!0;for(var e=!1,n=0,s=this.s.criteria;n<s.length;n++){var o=s[n];if(o.criteria instanceof l&&o.criteria.s.filled){if(e=!0,o.criteria.search(t,i))return!0}else if(o.criteria instanceof g&&o.criteria.checkFilled()&&(e=!0,o.criteria.search(t,i)))return!0}return!e},g.prototype._removeCriteria=function(t,i){if(void 0===i&&(i=!1),this.s.criteria.length<=1&&this.s.isChild)this.destroy();else{for(var e=void 0,n=0;n<this.s.criteria.length;n++)this.s.criteria[n].index===t.s.index&&(!i||this.s.criteria[n].criteria instanceof g)&&(e=n);for(void 0!==e&&this.s.criteria.splice(e,1),n=0;n<this.s.criteria.length;n++)this.s.criteria[n].index=n,this.s.criteria[n].criteria.s.index=n}},g.prototype._setCriteriaListeners=function(n){var s=this;n.dom.delete.unbind("click").on("click.dtsb",function(){s._removeCriteria(n),n.dom.container.remove();for(var t=0,i=s.s.criteria;t<i.length;t++){var e=i[t];e.criteria instanceof l&&e.criteria.updateArrows(1<s.s.criteria.length)}return n.destroy(),s.s.dt.draw(),s.s.topGroup.trigger("dtsb-redrawContents"),!1}),n.dom.right.unbind("click").on("click.dtsb",function(){var t=n.s.index,i=new g(s.s.dt,s.s.opts,s.s.topGroup,n.s.index,!0,s.s.depth+1,s.s.serverData);return i.addCriteria(n),s.s.criteria[t].criteria=i,s.s.criteria[t].logic="AND",s.s.topGroup.trigger("dtsb-redrawContents"),s._setGroupListeners(i),!1}),n.dom.left.unbind("click").on("click.dtsb",function(){s.s.toDrop=new l(s.s.dt,s.s.opts,s.s.topGroup,n.s.index,void 0,s.s.serverData),s.s.toDrop.s=n.s,s.s.toDrop.c=n.c,s.s.toDrop.classes=n.classes,s.s.toDrop.populate();var t=s.s.toDrop.s.index;return s.dom.container.trigger("dtsb-dropCriteria"),n.s.index=t,s._removeCriteria(n),s.s.topGroup.trigger("dtsb-redrawContents"),s.s.dt.draw(),!1})},g.prototype._setClearListener=function(){var t=this;this.dom.clear.unbind("click").on("click.dtsb",function(){return t.s.isChild?(t.destroy(),t.s.topGroup.trigger("dtsb-redrawContents")):t.dom.container.trigger("dtsb-clearContents"),!1})},g.prototype._setGroupListeners=function(i){var e=this;i.dom.add.unbind("click").on("click.dtsb",function(){return e.setupLogic(),e.dom.container.trigger("dtsb-add"),!1}),i.dom.container.unbind("dtsb-add").on("dtsb-add.dtsb",function(){return e.setupLogic(),e.dom.container.trigger("dtsb-add"),!1}),i.dom.container.unbind("dtsb-destroy").on("dtsb-destroy.dtsb",function(){return e._removeCriteria(i,!0),i.dom.container.remove(),e.setupLogic(),!1}),i.dom.container.unbind("dtsb-dropCriteria").on("dtsb-dropCriteria.dtsb",function(){var t=i.s.toDrop;return t.s.index=i.s.index,t.updateArrows(1<e.s.criteria.length),e.addCriteria(t),!1}),i.setListeners()},g.prototype._setup=function(){this.setListeners(),this.dom.add.html(this.s.dt.i18n("searchBuilder.add",this.c.i18n.add)),this.dom.search.html(this.s.dt.i18n("searchBuilder.search",this.c.i18n.search)),this.dom.logic.children().first().html("OR"===this.c.logic?this.s.dt.i18n("searchBuilder.logicOr",this.c.i18n.logicOr):this.s.dt.i18n("searchBuilder.logicAnd",this.c.i18n.logicAnd)),this.s.logic="OR"===this.c.logic?"OR":"AND",this.c.greyscale&&this.dom.logic.addClass(this.classes.greyscale),this.dom.logicContainer.append(this.dom.logic).append(this.dom.clear),this.s.isChild&&this.dom.container.append(this.dom.logicContainer),this.dom.container.append(this.dom.add),this.c.liveSearch||this.dom.container.append(this.dom.search)},g.prototype._setLogicListener=function(){var e=this;this.dom.logic.unbind("click").on("click.dtsb",function(){e._toggleLogic(),e.s.dt.draw();for(var t=0,i=e.s.criteria;t<i.length;t++)i[t].criteria.setListeners()})},g.prototype._toggleLogic=function(){"OR"===this.s.logic?(this.s.logic="AND",this.dom.logic.children().first().html(this.s.dt.i18n("searchBuilder.logicAnd",this.c.i18n.logicAnd))):"AND"===this.s.logic&&(this.s.logic="OR",this.dom.logic.children().first().html(this.s.dt.i18n("searchBuilder.logicOr",this.c.i18n.logicOr)))},g.version="1.1.0",g.classes={add:"dtsb-add",button:"dtsb-button",clearGroup:"dtsb-clearGroup",greyscale:"dtsb-greyscale",group:"dtsb-group",inputButton:"dtsb-iptbtn",logic:"dtsb-logic",logicContainer:"dtsb-logicContainer",search:"dtsb-search"},g.defaults={columns:!0,conditions:{date:l.dateConditions,html:l.stringConditions,"html-num":l.numConditions,"html-num-fmt":l.numFmtConditions,luxon:l.luxonDateConditions,moment:l.momentDateConditions,num:l.numConditions,"num-fmt":l.numFmtConditions,string:l.stringConditions},depthLimit:!1,enterSearch:!1,filterChanged:void 0,greyscale:!1,liveSearch:!0,i18n:{add:"Add Condition",button:{0:"Search Builder",_:"Search Builder (%d)"},clearAll:"Clear All",condition:"Condition",data:"Data",delete:"&times",deleteTitle:"Delete filtering rule",left:"<",leftTitle:"Outdent criteria",logicAnd:"And",logicOr:"Or",right:">",rightTitle:"Indent criteria",search:"Search",title:{0:"Custom Search Builder",_:"Custom Search Builder (%d)"},value:"Value",valueJoiner:"and"},logic:"AND",orthogonal:{display:"display",search:"filter"},preDefined:!1},m=g,n.prototype.getDetails=function(t){return this.s.topGroup.getDetails(t=void 0===t?!1:t)},n.prototype.getNode=function(){return this.dom.container},n.prototype.rebuild=function(t){return this.dom.clearAll.click(),null!=t&&(this.s.topGroup.s.preventRedraw=!0,this.s.topGroup.rebuild(t),this.s.topGroup.s.preventRedraw=!1,this._checkClear(),this._updateTitle(this.s.topGroup.count()),this.s.topGroup.redrawContents(),this.s.dt.draw(!1),this.s.topGroup.setListeners()),this},n.prototype._applyPreDefDefaults=function(t){for(var e=this,n=(void 0!==t.criteria&&void 0===t.logic&&(t.logic="AND"),this),i=0,s=t.criteria;i<s.length;i++)!function(i){void 0!==i.criteria?i=n._applyPreDefDefaults(i):n.s.dt.columns().every(function(t){e.s.dt.settings()[0].aoColumns[t].sTitle===i.data&&(i.dataIdx=t)})}(s[i]);return t},n.prototype._setUp=function(t){var n=this;if(void 0===t&&(t=!0),"function"!=typeof this.s.dt.column().type&&f.Api.registerPlural("columns().types()","column().type()",function(){return this.iterator("column",function(t,i){return t.aoColumns[i].sType},1)}),!p.DateTime){if(void 0===(i=this.s.dt.columns().types().toArray())||i.includes(void 0)||i.includes(null))for(var i=[],e=0,s=this.s.dt.settings()[0].aoColumns;e<s.length;e++){var o=s[e];i.push(void 0!==o.searchBuilderType?o.searchBuilderType:o.sType)}var r=this.s.dt.columns().toArray();(void 0===i||i.includes(void 0)||i.includes(null))&&(h.fn.dataTable.ext.oApi&&h.fn.dataTable.ext.oApi._fnColumnTypes(this.s.dt.settings()[0]),i=this.s.dt.columns().types().toArray());for(var a=0;a<r[0].length;a++){var d=i[r[0][a]];if((!0===this.c.columns||Array.isArray(this.c.columns)&&this.c.columns.includes(a))&&(d.includes("date")||d.includes("moment")||d.includes("luxon")))throw alert("SearchBuilder Requires DateTime when used with dates."),new Error("SearchBuilder requires DateTime")}}this.s.topGroup=new m(this.s.dt,this.c,void 0,void 0,void 0,void 0,this.s.serverData),this._setClearListener(),this.s.dt.on("stateSaveParams.dtsb",function(t,i,e){e.searchBuilder=n.getDetails(),e.scroller?e.start=n.s.dt.state().start:e.page=n.s.dt.page()}),this.s.dt.on("stateLoadParams.dtsb",function(t,i,e){n.rebuild(e.searchBuilder)}),this._build(),this.s.dt.on("preXhr.dtsb",function(t,i,e){n.s.dt.page.info().serverSide&&(e.searchBuilder=n._collapseArray(n.getDetails(!0)))}),this.s.dt.on(p.versionCheck("2")?"columns-reordered":"column-reorder",function(){n.rebuild(n.getDetails())}),t&&(null!==(t=this.s.dt.state.loaded())&&void 0!==t.searchBuilder?(this.s.topGroup.rebuild(t.searchBuilder),this.s.topGroup.dom.container.trigger("dtsb-redrawContents"),this.s.dt.page.info().serverSide||(t.page?this.s.dt.page(t.page).draw("page"):this.s.dt.scroller&&t.scroller&&this.s.dt.scroller().scrollToRow(t.scroller.topRow)),this.s.topGroup.setListeners()):!1!==this.c.preDefined&&(this.c.preDefined=this._applyPreDefDefaults(this.c.preDefined),this.rebuild(this.c.preDefined))),this._setEmptyListener(),this.s.dt.state.save()},n.prototype._collapseArray=function(t){if(void 0===t.logic)void 0!==t.value&&(t.value.sort(function(t,i){return isNaN(+t)||(t=+t,i=+i),t<i?-1:i<t?1:0}),t.value1=t.value[0],t.value2=t.value[1]);else for(var i=0;i<t.criteria.length;i++)t.criteria[i]=this._collapseArray(t.criteria[i]);return t},n.prototype._updateTitle=function(t){this.dom.title.html(this.s.dt.i18n("searchBuilder.title",this.c.i18n.title,t))},n.prototype._build=function(){var n=this,t=(this.dom.clearAll.remove(),this.dom.container.empty(),this.s.topGroup.count()),s=(this._updateTitle(t),this.dom.titleRow.append(this.dom.title),this.dom.container.append(this.dom.titleRow),this.dom.topGroup=this.s.topGroup.getNode(),this.dom.container.append(this.dom.topGroup),this._setRedrawListener(),this.s.dt.table(0).node());h.fn.dataTable.ext.search.includes(this.s.search)||(this.s.search=function(t,i,e){return t.nTable!==s||n.s.topGroup.search(i,e)},h.fn.dataTable.ext.search.push(this.s.search)),this.s.dt.on("destroy.dtsb",function(){n.dom.container.remove(),n.dom.clearAll.remove();for(var t=h.fn.dataTable.ext.search.indexOf(n.s.search);-1!==t;)h.fn.dataTable.ext.search.splice(t,1),t=h.fn.dataTable.ext.search.indexOf(n.s.search);n.s.dt.off(".dtsb"),h(n.s.dt.table().node()).off(".dtsb")})},n.prototype._checkClear=function(){0<this.s.topGroup.s.criteria.length?(this.dom.clearAll.insertAfter(this.dom.title),this._setClearListener()):this.dom.clearAll.remove()},n.prototype._filterChanged=function(t){var i=this.c.filterChanged;"function"==typeof i&&i(t,this.s.dt.i18n("searchBuilder.button",this.c.i18n.button,t))},n.prototype._setClearListener=function(){var t=this;this.dom.clearAll.unbind("click"),this.dom.clearAll.on("click.dtsb",function(){return t.s.topGroup=new m(t.s.dt,t.c,void 0,void 0,void 0,void 0,t.s.serverData),t._build(),t.s.dt.draw(),t.s.topGroup.setListeners(),t.dom.clearAll.remove(),t._setEmptyListener(),t._filterChanged(0),!1})},n.prototype._setRedrawListener=function(){var i=this;this.s.topGroup.dom.container.unbind("dtsb-redrawContents"),this.s.topGroup.dom.container.on("dtsb-redrawContents.dtsb",function(){i._checkClear(),i.s.topGroup.redrawContents(),i.s.topGroup.setupLogic(),i._setEmptyListener();var t=i.s.topGroup.count();i._updateTitle(t),i._filterChanged(t),i.s.dt.page.info().serverSide||i.s.dt.draw(),i.s.dt.state.save()}),this.s.topGroup.dom.container.unbind("dtsb-redrawContents-noDraw"),this.s.topGroup.dom.container.on("dtsb-redrawContents-noDraw.dtsb",function(){i._checkClear(),i.s.topGroup.s.preventRedraw=!0,i.s.topGroup.redrawContents(),i.s.topGroup.s.preventRedraw=!1,i.s.topGroup.setupLogic(),i._setEmptyListener();var t=i.s.topGroup.count();i._updateTitle(t),i._filterChanged(t)}),this.s.topGroup.dom.container.unbind("dtsb-redrawLogic"),this.s.topGroup.dom.container.on("dtsb-redrawLogic.dtsb",function(){i.s.topGroup.redrawLogic();var t=i.s.topGroup.count();i._updateTitle(t),i._filterChanged(t)}),this.s.topGroup.dom.container.unbind("dtsb-add"),this.s.topGroup.dom.container.on("dtsb-add.dtsb",function(){var t=i.s.topGroup.count();i._updateTitle(t),i._filterChanged(t),i._checkClear()}),this.s.dt.on("postEdit.dtsb postCreate.dtsb postRemove.dtsb",function(){i.s.topGroup.redrawContents()}),this.s.topGroup.dom.container.unbind("dtsb-clearContents"),this.s.topGroup.dom.container.on("dtsb-clearContents.dtsb",function(){i._setUp(!1),i._filterChanged(0),i.s.dt.draw()})},n.prototype._setEmptyListener=function(){var t=this;this.s.topGroup.dom.add.on("click.dtsb",function(){t._checkClear()}),this.s.topGroup.dom.container.on("dtsb-destroy.dtsb",function(){t.dom.clearAll.remove()})},n.version="1.7.1",n.classes={button:"dtsb-button",clearAll:"dtsb-clearAll",container:"dtsb-searchBuilder",inputButton:"dtsb-iptbtn",title:"dtsb-title",titleRow:"dtsb-titleRow"},n.defaults={columns:!0,conditions:{date:l.dateConditions,html:l.stringConditions,"html-num":l.numConditions,"html-num-fmt":l.numFmtConditions,luxon:l.luxonDateConditions,moment:l.momentDateConditions,num:l.numConditions,"num-fmt":l.numFmtConditions,string:l.stringConditions},depthLimit:!1,enterSearch:!1,filterChanged:void 0,greyscale:!1,liveSearch:!0,i18n:{add:"Add Condition",button:{0:"Search Builder",_:"Search Builder (%d)"},clearAll:"Clear All",condition:"Condition",conditions:{array:{contains:"Contains",empty:"Empty",equals:"Equals",not:"Not",notEmpty:"Not Empty",without:"Without"},date:{after:"After",before:"Before",between:"Between",empty:"Empty",equals:"Equals",not:"Not",notBetween:"Not Between",notEmpty:"Not Empty"},number:{between:"Between",empty:"Empty",equals:"Equals",gt:"Greater Than",gte:"Greater Than Equal To",lt:"Less Than",lte:"Less Than Equal To",not:"Not",notBetween:"Not Between",notEmpty:"Not Empty"},string:{contains:"Contains",empty:"Empty",endsWith:"Ends With",equals:"Equals",not:"Not",notContains:"Does Not Contain",notEmpty:"Not Empty",notEndsWith:"Does Not End With",notStartsWith:"Does Not Start With",startsWith:"Starts With"}},data:"Data",delete:"&times",deleteTitle:"Delete filtering rule",left:"<",leftTitle:"Outdent criteria",logicAnd:"And",logicOr:"Or",right:">",rightTitle:"Indent criteria",search:"Search",title:{0:"Custom Search Builder",_:"Custom Search Builder (%d)"},value:"Value",valueJoiner:"and"},logic:"AND",orthogonal:{display:"display",search:"filter"},preDefined:!1},e=n,p=(h=s).fn.DataTable,d=(a=s).fn.dataTable,c=(I=s).fn.dataTable,i=s.fn.dataTable,f.SearchBuilder=e,i.SearchBuilder=e,f.Group=m,i.Group=m,f.Criteria=l,i.Criteria=l,i=f.Api.register,f.ext.searchBuilder={conditions:{}},f.ext.buttons.searchBuilder={action:function(t,i,e,n){this.popover(n._searchBuilder.getNode(),{align:"container",span:"container"});n=n._searchBuilder.s.topGroup;void 0!==n&&n.dom.container.trigger("dtsb-redrawContents-noDraw"),0===n.s.criteria.length&&s("."+s.fn.dataTable.Group.classes.add.replace(/ /g,".")).click()},config:{},init:function(e,n,t){var i=new f.SearchBuilder(e,s.extend({filterChanged:function(t,i){e.button(n).text(i)}},t.config));e.button(n).text(t.text||e.i18n("searchBuilder.button",i.c.i18n.button,0)),t._searchBuilder=i},text:null},i("searchBuilder.getDetails()",function(t){void 0===t&&(t=!1);var i=this.context[0];return i._searchBuilder?i._searchBuilder.getDetails(t):null}),i("searchBuilder.rebuild()",function(t){var i=this.context[0];return void 0===i._searchBuilder?null:(i._searchBuilder.rebuild(t),this)}),i("searchBuilder.container()",function(){var t=this.context[0];return t._searchBuilder?t._searchBuilder.getNode():null}),s(t).on("preInit.dt.dtsp",function(t,i){"dt"!==t.namespace||!i.oInit.searchBuilder&&!f.defaults.searchBuilder||i._searchBuilder||v(i)}),f.ext.feature.push({cFeature:"Q",fnInit:v}),f.feature&&f.feature.register("searchBuilder",v),f});
+
+/*! DataTables integration for DataTables' SearchBuilder
+ * © SpryMedia Ltd - datatables.net/license
+ */
+!function(n){var d,a;"function"==typeof define&&define.amd?define(["jquery","datatables.net-dt","datatables.net-searchbuilder"],function(e){return n(e,window,document)}):"object"==typeof exports?(d=require("jquery"),a=function(e,t){t.fn.dataTable||require("datatables.net-dt")(e,t),t.fn.dataTable.SearchBuilder||require("datatables.net-searchbuilder")(e,t)},"undefined"==typeof window?module.exports=function(e,t){return e=e||window,t=t||d(e),a(e,t),n(t,0,e.document)}:(a(window,d),module.exports=n(d,window,window.document))):n(jQuery,window,document)}(function(e,t,n){"use strict";return e.fn.dataTable});
+
+/*! SearchPanes 2.3.1
+ * © SpryMedia Ltd - datatables.net/license
+ */
+!function(e){var a,i;"function"==typeof define&&define.amd?define(["jquery","datatables.net"],function(t){return e(t,window,document)}):"object"==typeof exports?(a=require("jquery"),i=function(t,s){s.fn.dataTable||require("datatables.net")(t,s)},"undefined"==typeof window?module.exports=function(t,s){return t=t||window,s=s||a(t),i(t,s),e(s,t,t.document)}:(i(window,a),module.exports=e(a,window,window.document))):e(jQuery,window,document)}(function(o,r,n){"use strict";var _,l,h,a,d,i,c,t,p,u,f,g,v,m,w,P,y,b,C,S,O,x,j,A,D,T=o.fn.dataTable;function B(t,s,e,a,i){var n,o=this;if(void 0===i&&(i=null),!l||!l.versionCheck||!l.versionCheck("1.10.0"))throw new Error("SearchPane requires DataTables 1.10 or newer");if(l.select)return t=new l.Api(t),this.classes=_.extend(!0,{},B.classes),this.c=_.extend(!0,{},B.defaults,s,i),s&&s.hideCount&&void 0===s.viewCount&&(this.c.viewCount=!this.c.hideCount),s=t.columns().eq(0).toArray().length,this.s={colExists:e<s,colOpts:void 0,customPaneSettings:i,displayed:!1,dt:t,dtPane:void 0,firstSet:!0,index:e,indexes:[],listSet:!1,name:void 0,rowData:{arrayFilter:[],arrayOriginal:[],bins:{},binsOriginal:{},filterMap:new Map,totalOptions:0},scrollTop:0,searchFunction:void 0,selections:[],serverSelect:[],serverSelecting:!1,tableLength:null,updating:!1},this.s.colOpts=this.s.colExists?this._getOptions():this._getBonusOptions(),this.dom={buttonGroup:_("<div/>").addClass(this.classes.buttonGroup),clear:_('<button type="button">&#215;</button>').attr("disabled","true").addClass(this.classes.disabledButton).addClass(this.classes.paneButton).addClass(this.classes.clearButton).html(this.s.dt.i18n("searchPanes.clearPane",this.c.i18n.clearPane)),collapseButton:_('<button type="button"><span class="'+this.classes.caret+'">&#x5e;</span></button>').addClass(this.classes.paneButton).addClass(this.classes.collapseButton),container:_("<div/>").addClass(this.classes.container).addClass(this.s.colOpts.className).addClass(this.classes.layout+(parseInt(this.c.layout.split("-")[1],10)<10?this.c.layout:this.c.layout.split("-")[0]+"-9")).addClass(this.s.customPaneSettings&&this.s.customPaneSettings.className?this.s.customPaneSettings.className:""),countButton:_('<button type="button"><span></span></button>').addClass(this.classes.paneButton).addClass(this.classes.countButton),dtP:_('<table width="100%"><thead><tr><th></th><th></th></tr></thead></table>'),lower:_("<div/>").addClass(this.classes.subRow2).addClass(this.classes.narrowButton),nameButton:_('<button type="button"><span></span></button>').addClass(this.classes.paneButton).addClass(this.classes.nameButton),panesContainer:_(a),searchBox:_("<input/>").addClass(this.classes.paneInputButton).addClass(this.classes.search),searchButton:_('<button type="button"><span></span></button>').addClass(this.classes.searchIcon).addClass(this.classes.paneButton),searchCont:_("<div/>").addClass(this.classes.searchCont),searchLabelCont:_("<div/>").addClass(this.classes.searchLabelCont),topRow:_("<div/>").addClass(this.classes.topRow),upper:_("<div/>").addClass(this.classes.subRow1).addClass(this.classes.narrowSearch)},s="",this.s.colExists?(s=_(this.s.dt.column(this.s.index).header()).text(),this.dom.dtP.find("th").eq(0).text(s)):(s=this.s.customPaneSettings.header||"Custom Pane",this.dom.dtP.find("th").eq(0).html(s)),this.s.colOpts.name?this.s.name=this.s.colOpts.name:this.s.customPaneSettings&&this.s.customPaneSettings.name?this.s.name=this.s.customPaneSettings.name:this.s.name=s,n=this.s.dt.table(0).node(),this.s.searchFunction=function(t,s,e){return 0===o.s.selections.length||t.nTable!==n||(t=null,o.s.colExists&&(t=s[o.s.index],"filter"!==o.s.colOpts.orthogonal.filter)&&(t=o.s.rowData.filterMap.get(e))instanceof _.fn.dataTable.Api&&(t=t.toArray()),o._search(t,e))},_.fn.dataTable.ext.search.push(this.s.searchFunction),this.c.clear&&this.dom.clear.on("click.dtsp",function(){o.dom.container.find("."+o.classes.search.replace(/\s+/g,".")).each(function(){_(this).val("").trigger("input")}),o.clearPane()}),this.s.dt.on("draw.dtsp",function(){return o.adjustTopRow()}),this.s.dt.on("buttons-action.dtsp",function(){return o.adjustTopRow()}),this.s.dt.on("column-reorder.dtsp",function(t,s,e){o.s.index=e.mapping[o.s.index]}),this;throw new Error("SearchPane requires Select")}function s(t,s,e,a,i){return d.call(this,t,s,e,a,i)||this}function e(t,s,e,a,i){return p.call(this,t,c.extend({i18n:{countFiltered:"{shown} ({total})"}},s),e,a,i)||this}function L(t,s,e,a,i){return v.call(this,t,f.extend({i18n:{count:"{shown}"}},s),e,a,i)||this}function R(t,s,e,a,i){return y.call(this,t,w.extend({i18n:{count:"{total}",countFiltered:"{shown} ({total})"}},s),e,a,i)||this}function k(t,s,e,a){var l=this;if(void 0===e&&(e=!1),void 0===a&&(a=h),!C||!C.versionCheck||!C.versionCheck("1.10.0"))throw new Error("SearchPane requires DataTables 1.10 or newer");if(!C.select)throw new Error("SearchPane requires Select");var d,i=new C.Api(t);if(this.classes=b.extend(!0,{},k.classes),this.c=b.extend(!0,{},k.defaults,s),this.dom={clearAll:b('<button type="button"/>').addClass(this.classes.clearAll).html(i.i18n("searchPanes.clearMessage",this.c.i18n.clearMessage)),collapseAll:b('<button type="button"/>').addClass(this.classes.collapseAll).html(i.i18n("searchPanes.collapseMessage",this.c.i18n.collapseMessage)),container:b("<div/>").addClass(this.classes.panes).html(i.i18n("searchPanes.loadMessage",this.c.i18n.loadMessage)),emptyMessage:b("<div/>").addClass(this.classes.emptyMessage),panes:b("<div/>").addClass(this.classes.container),showAll:b('<button type="button"/>').addClass(this.classes.showAll).addClass(this.classes.disabledButton).attr("disabled","true").html(i.i18n("searchPanes.showMessage",this.c.i18n.showMessage)),title:b("<div/>").addClass(this.classes.title),titleRow:b("<div/>").addClass(this.classes.titleRow)},this.s={colOpts:[],dt:i,filterCount:0,minPaneWidth:260,page:0,paging:!1,pagingST:!1,paneClass:a,panes:[],selectionList:[],serverData:{},stateRead:!1,updating:!1},!i.settings()[0]._searchPanes)return b(n).on("draw.dt",function(t){l.dom.container.find(t.target).length&&l._updateFilterCount()}),this._getState(),this.s.dt.page.info().serverSide&&(d=this.s.dt.settings()[0],this.s.dt.on("preXhr.dtsps",function(t,s,e){if(d===s){void 0===e.searchPanes&&(e.searchPanes={}),void 0===e.searchPanes_null&&(e.searchPanes_null={});for(var a=0,i=l.s.selectionList;a<i.length;a++){var n=i[a],o=l.s.dt.column(n.column).dataSrc();void 0===e.searchPanes[o]&&(e.searchPanes[o]={}),void 0===e.searchPanes_null[o]&&(e.searchPanes_null[o]={});for(var r=0;r<n.rows.length;r++)e.searchPanes[o][r]=n.rows[r],null===e.searchPanes[o][r]?e.searchPanes_null[o][r]=!0:e.searchPanes_null[o][r]=!1}0<l.s.selectionList.length&&(e.searchPanesLast=o),e.searchPanes_options={cascade:l.c.cascadePanes,viewCount:l.c.viewCount,viewTotal:l.c.viewTotal}}})),this._setXHR(),(i.settings()[0]._searchPanes=this).s.dt.settings()[0]._bInitComplete||e?this._paneDeclare(i,t,s):i.one("preInit.dtsps",function(){l._paneDeclare(i,t,s)}),this}function M(t,s,e){function a(){return n._initSelectionListeners(!0,o&&o.searchPanes&&o.searchPanes.selectionList?o.searchPanes.selectionList:n.c.preSelect)}var i,n=this,t=(s.cascadePanes&&s.viewTotal?i=S:s.cascadePanes?i=P:s.viewTotal&&(i=g),(n=j.call(this,t,s,e=void 0===e?!1:e,i)||this).s.dt),o=t.state.loaded();return t.settings()[0]._bInitComplete?a():t.off("init.dtsps").on("init.dtsps",a),n}function N(s,e,t){var a=o.extend({filterChanged:function(t){s.button(e).text(s.i18n("searchPanes.collapse",(void 0!==s.context[0].oLanguage.searchPanes?s.context[0].oLanguage.searchPanes:s.context[0]._searchPanes.c.i18n).collapse,t))}},t.config),a=new(a&&(a.cascadePanes||a.viewTotal)?T.SearchPanesST:T.SearchPanes)(s,a);s.button(e).text(t.text||s.i18n("searchPanes.collapse",a.c.i18n.collapse,0)),t._panes=a}function F(t,s,e){void 0===s&&(s=null),void 0===e&&(e=!1);t=new D.Api(t),s=s||t.init().searchPanes||D.defaults.searchPanes;return new(s&&(s.cascadePanes||s.viewTotal)?A:O)(t,s,e).getNode()}return B.prototype.addRow=function(t,s,e,a,i,n,o){var r;n=n||this.s.rowData.bins[s]||0,o=o||this._getShown(s);for(var l=0,d=this.s.indexes;l<d.length;l++){var h=d[l];h.filter===s&&(r=h.index)}return void 0===r&&(r=this.s.indexes.length,this.s.indexes.push({filter:s,index:r})),this.s.dtPane.row.add({className:i,display:""!==t?t:this.emptyMessage(),filter:s,index:r,shown:o,sort:e,total:n,type:a})},B.prototype.adjustTopRow=function(){var t=this.dom.container.find("."+this.classes.subRowsContainer.replace(/\s+/g,".")),s=this.dom.container.find("."+this.classes.subRow1.replace(/\s+/g,".")),e=this.dom.container.find("."+this.classes.subRow2.replace(/\s+/g,".")),a=this.dom.container.find("."+this.classes.topRow.replace(/\s+/g,"."));(_(t[0]).width()<252||_(a[0]).width()<252)&&0!==_(t[0]).width()?(_(t[0]).addClass(this.classes.narrow),_(s[0]).addClass(this.classes.narrowSub).removeClass(this.classes.narrowSearch),_(e[0]).addClass(this.classes.narrowSub).removeClass(this.classes.narrowButton)):(_(t[0]).removeClass(this.classes.narrow),_(s[0]).removeClass(this.classes.narrowSub).addClass(this.classes.narrowSearch),_(e[0]).removeClass(this.classes.narrowSub).addClass(this.classes.narrowButton))},B.prototype.clearData=function(){this.s.rowData={arrayFilter:[],arrayOriginal:[],bins:{},binsOriginal:{},filterMap:new Map,totalOptions:0}},B.prototype.clearPane=function(){return this.s.dtPane.rows({selected:!0}).deselect(),this.updateTable(),this},B.prototype.collapse=function(){var t=this;this.s.displayed&&(this.c.collapse||!0===this.s.colOpts.collapse)&&!1!==this.s.colOpts.collapse&&(_(this.s.dtPane.table().container()).addClass(this.classes.hidden),this.dom.topRow.addClass(this.classes.bordered),this.dom.nameButton.addClass(this.classes.disabledButton),this.dom.countButton.addClass(this.classes.disabledButton),this.dom.searchButton.addClass(this.classes.disabledButton),this.dom.collapseButton.addClass(this.classes.rotated),this.dom.topRow.one("click.dtsp",function(){return t.show()}),this.dom.topRow.trigger("collapse.dtsps"))},B.prototype.destroy=function(){this.s.dtPane&&this.s.dtPane.off(".dtsp"),this.s.dt.off(".dtsp"),this.dom.clear.off(".dtsp"),this.dom.nameButton.off(".dtsp"),this.dom.countButton.off(".dtsp"),this.dom.searchButton.off(".dtsp"),this.dom.collapseButton.off(".dtsp"),_(this.s.dt.table().node()).off(".dtsp"),this.dom.container.detach();for(var t=_.fn.dataTable.ext.search.indexOf(this.s.searchFunction);-1!==t;)_.fn.dataTable.ext.search.splice(t,1),t=_.fn.dataTable.ext.search.indexOf(this.s.searchFunction);this.s.dtPane&&this.s.dtPane.destroy(),this.s.listSet=!1},B.prototype.emptyMessage=function(){var t=this.c.i18n.emptyMessage;return this.c.emptyMessage&&(t=this.c.emptyMessage),!1!==this.s.colOpts.emptyMessage&&null!==this.s.colOpts.emptyMessage&&(t=this.s.colOpts.emptyMessage),this.s.dt.i18n("searchPanes.emptyMessage",t)},B.prototype.getPaneCount=function(){return this.s.dtPane?this.s.dtPane.rows({selected:!0}).data().toArray().length:0},B.prototype.rebuildPane=function(t,s){void 0===t&&(t=null),void 0===s&&(s=!1),this.clearData();var e=[],a=(this.s.serverSelect=[],null);return this.s.dtPane&&(s&&(this.s.dt.page.info().serverSide?this.s.serverSelect=this.s.dtPane.rows({selected:!0}).data().toArray():e=this.s.dtPane.rows({selected:!0}).data().toArray()),this.s.dtPane.clear().destroy(),a=this.dom.container.prev(),this.destroy(),this.s.dtPane=void 0,_.fn.dataTable.ext.search.push(this.s.searchFunction)),this.dom.container.removeClass(this.classes.hidden),this.s.displayed=!1,this._buildPane(this.s.dt.page.info().serverSide?this.s.serverSelect:e,t,a),this},B.prototype.resize=function(t){this.c.layout=t,this.dom.container.removeClass().addClass(this.classes.show).addClass(this.classes.container).addClass(this.s.colOpts.className).addClass(this.classes.layout+(parseInt(t.split("-")[1],10)<10?t:t.split("-")[0]+"-9")).addClass(null!==this.s.customPaneSettings&&this.s.customPaneSettings.className?this.s.customPaneSettings.className:""),this.adjustTopRow()},B.prototype.setListeners=function(){var h=this;this.s.dtPane&&(this.s.dtPane.off("select.dtsp").on("select.dtsp",function(){clearTimeout(h.s.deselectTimeout),h._updateSelection(!h.s.updating),h.dom.clear.removeClass(h.classes.disabledButton).removeAttr("disabled")}),this.s.dtPane.off("deselect.dtsp").on("deselect.dtsp",function(){h.s.deselectTimeout=setTimeout(function(){h._updateSelection(!0),0===h.s.dtPane.rows({selected:!0}).data().toArray().length&&h.dom.clear.addClass(h.classes.disabledButton).attr("disabled","true")},50)}),this.s.firstSet&&(this.s.firstSet=!1,this.s.dt.on("stateSaveParams.dtsp",function(t,s,e){if(_.isEmptyObject(e))h.s.dtPane.state.clear();else{var a,i,n,o,r,l=[];h.s.dtPane&&(l=h.s.dtPane.rows({selected:!0}).data().map(function(t){return null!==t.filter?t.filter.toString():null}).toArray(),o=h.dom.searchBox.val(),i=h.s.dtPane.order(),a=h.s.rowData.binsOriginal,r=h.s.rowData.arrayOriginal,n=h.dom.collapseButton.hasClass(h.classes.rotated)),void 0===e.searchPanes&&(e.searchPanes={}),void 0===e.searchPanes.panes&&(e.searchPanes.panes=[]);for(var d=0;d<e.searchPanes.panes.length;d++)e.searchPanes.panes[d].id===h.s.index&&(e.searchPanes.panes.splice(d,1),d--);e.searchPanes.panes.push({arrayFilter:r,bins:a,collapsed:n,id:h.s.index,order:i,searchTerm:o,selected:l})}})),this.s.dtPane.off("user-select.dtsp").on("user-select.dtsp",function(t,s,e,a,i){i.stopPropagation()}),this.s.dtPane.off("draw.dtsp").on("draw.dtsp",function(){return h.adjustTopRow()}),this.dom.nameButton.off("click.dtsp").on("click.dtsp",function(){var t=h.s.dtPane.order()[0][1];h.s.dtPane.order([0,"asc"===t?"desc":"asc"]).draw(),h.s.dt.state.save()}),this.dom.countButton.off("click.dtsp").on("click.dtsp",function(){var t=h.s.dtPane.order()[0][1];h.s.dtPane.order([1,"asc"===t?"desc":"asc"]).draw(),h.s.dt.state.save()}),this.dom.collapseButton.off("click.dtsp").on("click.dtsp",function(t){t.stopPropagation();t=_(h.s.dtPane.table().container());t.toggleClass(h.classes.hidden),h.dom.topRow.toggleClass(h.classes.bordered),h.dom.nameButton.toggleClass(h.classes.disabledButton),h.dom.countButton.toggleClass(h.classes.disabledButton),h.dom.searchButton.toggleClass(h.classes.disabledButton),h.dom.collapseButton.toggleClass(h.classes.rotated),t.hasClass(h.classes.hidden)?h.dom.topRow.on("click.dtsp",function(){return h.dom.collapseButton.click()}):h.dom.topRow.off("click.dtsp"),h.s.dt.state.save(),h.dom.topRow.trigger("collapse.dtsps")}),this.dom.clear.off("click.dtsp").on("click.dtsp",function(){h.dom.container.find("."+h.classes.search.replace(/ /g,".")).each(function(){_(this).val("").trigger("input")}),h.clearPane()}),this.dom.searchButton.off("click.dtsp").on("click.dtsp",function(){return h.dom.searchBox.focus()}),this.dom.searchBox.off("click.dtsp").on("input.dtsp",function(){var t=h.dom.searchBox.val();h.s.dtPane.search(t).draw(),"string"==typeof t&&(0<t.length||0===t.length&&0<h.s.dtPane.rows({selected:!0}).data().toArray().length)?h.dom.clear.removeClass(h.classes.disabledButton).removeAttr("disabled"):h.dom.clear.addClass(h.classes.disabledButton).attr("disabled","true"),h.s.dt.state.save()}),this.s.dtPane.select.style(this.s.colOpts.dtOpts&&this.s.colOpts.dtOpts.select&&this.s.colOpts.dtOpts.select.style?this.s.colOpts.dtOpts.select.style:this.c.dtOpts&&this.c.dtOpts.select&&this.c.dtOpts.select.style?this.c.dtOpts.select.style:"os"))},B.prototype._serverPopulate=function(t){t.tableLength?(this.s.tableLength=t.tableLength,this.s.rowData.totalOptions=this.s.tableLength):(null===this.s.tableLength||this.s.dt.rows()[0].length>this.s.tableLength)&&(this.s.tableLength=this.s.dt.rows()[0].length,this.s.rowData.totalOptions=this.s.tableLength);var s=this.s.dt.column(this.s.index).dataSrc();if(t.searchPanes.options[s])for(var e=0,a=t.searchPanes.options[s];e<a.length;e++){var i=a[e];this.s.rowData.arrayFilter.push({display:i.label,filter:i.value,sort:i.label,type:i.label}),this.s.rowData.bins[i.value]=i.total}t=Object.keys(this.s.rowData.bins).length,s=this._uniqueRatio(t,this.s.tableLength);!1===this.s.displayed&&((void 0===this.s.colOpts.show&&null===this.s.colOpts.threshold?s>this.c.threshold:s>this.s.colOpts.threshold)||!0!==this.s.colOpts.show&&t<=1)?(this.dom.container.addClass(this.classes.hidden),this.s.displayed=!1):(this.s.rowData.arrayOriginal=this.s.rowData.arrayFilter,this.s.rowData.binsOriginal=this.s.rowData.bins,this.s.displayed=!0)},B.prototype.show=function(){this.s.displayed&&(this.dom.topRow.removeClass(this.classes.bordered),this.dom.nameButton.removeClass(this.classes.disabledButton),this.dom.countButton.removeClass(this.classes.disabledButton),this.dom.searchButton.removeClass(this.classes.disabledButton),this.dom.collapseButton.removeClass(this.classes.rotated),_(this.s.dtPane.table().container()).removeClass(this.classes.hidden),this.dom.topRow.trigger("collapse.dtsps"))},B.prototype._uniqueRatio=function(t,s){return 0<s&&(0<this.s.rowData.totalOptions&&!this.s.dt.page.info().serverSide||this.s.dt.page.info().serverSide&&0<this.s.tableLength)?t/this.s.rowData.totalOptions:1},B.prototype.updateTable=function(){var t=this.s.dtPane.rows({selected:!0}).data().toArray().map(function(t){return t.filter});this.s.selections=t,this._searchExtras()},B.prototype._getComparisonRows=function(){var t=this.s.colOpts.options||(this.s.customPaneSettings&&this.s.customPaneSettings.options?this.s.customPaneSettings.options:void 0);if(void 0!==t){var s=this.s.dt.rows(),e=s.data().toArray(),a=[];this.s.dtPane.clear(),this.s.indexes=[];for(var i=0,n=t;i<n.length;i++){var o=n[i],r=""!==o.label?o.label:this.emptyMessage(),l={className:o.className,display:r,filter:"function"==typeof o.value?o.value:[],sort:void 0!==o.order?o.order:r,total:0,type:r};if("function"==typeof o.value){for(var d=0;d<e.length;d++)o.value.call(this.s.dt,e[d],s[0][d])&&l.total++;"function"!=typeof l.filter&&l.filter.push(o.filter)}a.push(this.addRow(l.display,l.filter,l.sort,l.type,l.className,l.total))}return a}},B.prototype._getMessage=function(t){return this.s.dt.i18n("searchPanes.count",this.c.i18n.count).replace(/{total}/g,t.total)},B.prototype._getShown=function(t){},B.prototype._getPaneConfig=function(){var a=this,t=l.Scroller,s=this.s.dt.settings()[0].oLanguage;return s.url=void 0,s.sUrl=void 0,{columnDefs:[{className:"dtsp-nameColumn",data:"display",render:function(t,s,e){return"sort"===s?e.sort:"type"===s?e.type:(e=a._getMessage(e),e='<span class="'+a.classes.pill+'">'+e+"</span>",a.c.viewCount&&a.s.colOpts.viewCount||(e=""),"filter"===s?"string"==typeof t&&null!==t.match(/<[^>]*>/)?t.replace(/<[^>]*>/g,""):t:'<div class="'+a.classes.nameCont+'"><span title="'+("string"==typeof t&&null!==t.match(/<[^>]*>/)?t.replace(/<[^>]*>/g,""):t)+'" class="'+a.classes.name+'">'+t+"</span>"+e+"</div>")},targets:0,type:this.s.dt.settings()[0].aoColumns[this.s.index]?this.s.dt.settings()[0].aoColumns[this.s.index]._sManualType:null},{className:"dtsp-countColumn "+this.classes.badgePill,data:"total",searchable:!1,targets:1,visible:!1}],deferRender:!0,info:!1,language:s,paging:!!t,scrollX:!1,scrollY:"200px",scroller:!!t,select:!0,stateSave:!!this.s.dt.settings()[0].oFeatures.bStateSave}},B.prototype._makeSelection=function(){this.updateTable(),this.s.updating=!0,this.s.dt.draw(),this.s.updating=!1},B.prototype._populatePaneArray=function(t,s,a,e){void 0===e&&(e=this.s.rowData.bins);var i,n=a.fastData||function(t,s,e){return a.oApi._fnGetCellData(a,t,s,e)};"string"==typeof this.s.colOpts.orthogonal?(i=n(t,this.s.index,this.s.colOpts.orthogonal),this.s.rowData.filterMap.set(t,i),this._addOption(i,i,i,i,s,e)):("string"==typeof(i=null===(i=n(t,this.s.index,this.s.colOpts.orthogonal.search))?"":i)&&(i=i.replace(/<[^>]*>/g,"")),this.s.rowData.filterMap.set(t,i),e[i]?e[i]++:(e[i]=1,this._addOption(i,n(t,this.s.index,this.s.colOpts.orthogonal.display),n(t,this.s.index,this.s.colOpts.orthogonal.sort),n(t,this.s.index,this.s.colOpts.orthogonal.type),s,e))),this.s.rowData.totalOptions++},B.prototype._reloadSelect=function(t){if(void 0!==t){for(var s,e=0;e<t.searchPanes.panes.length;e++)if(t.searchPanes.panes[e].id===this.s.index){s=e;break}if(s)for(var a=this.s.dtPane,i=a.rows({order:"index"}).data().map(function(t){return null!==t.filter?t.filter.toString():null}).toArray(),n=0,o=t.searchPanes.panes[s].selected;n<o.length;n++){var r=o[n],l=-1;-1<(l=null!==r?i.indexOf(r.toString()):l)&&(this.s.serverSelecting=!0,a.row(l).select(),this.s.serverSelecting=!1)}}},B.prototype._updateSelection=function(t){function s(t){T.versionCheck("2")?e.s.dt.processing(t):(t=e.s.dt.settings()[0]).oApi._fnProcessingDisplay(t,!1)}var e=this;s(!0),setTimeout(function(){e.s.scrollTop=_(e.s.dtPane.table().node()).parent()[0].scrollTop,e.s.dt.page.info().serverSide&&!e.s.updating?e.s.serverSelecting||(e.s.serverSelect=e.s.dtPane.rows({selected:!0}).data().toArray(),e.s.dt.draw(!1)):t&&e._makeSelection(),s(!1)},1)},B.prototype._addOption=function(t,s,e,a,i,n){if(Array.isArray(t)||t instanceof l.Api){if(t instanceof l.Api&&(t=t.toArray(),s=s.toArray()),t.length!==s.length)throw new Error("display and filter not the same length");for(var o=0;o<t.length;o++)n[t[o]]?n[t[o]]++:(n[t[o]]=1,i.push({display:s[o],filter:t[o],sort:e[o],type:a[o]})),this.s.rowData.totalOptions++}else"string"==typeof this.s.colOpts.orthogonal?(n[t]?n[t]++:(n[t]=1,i.push({display:s,filter:t,sort:e,type:a})),this.s.rowData.totalOptions++):i.push({display:s,filter:t,sort:e,type:a})},B.prototype._buildPane=function(t,s,e){var i=this,a=(void 0===t&&(t=[]),void 0===s&&(s=null),void 0===e&&(e=null),this.s.selections=[],this.s.dt.state.loaded());if(this.s.listSet&&(a=this.s.dt.state()),this.s.colExists){var n=-1;if(a&&a.searchPanes&&a.searchPanes.panes)for(var o=0;o<a.searchPanes.panes.length;o++)if(a.searchPanes.panes[o].id===this.s.index){n=o;break}if((!1===this.s.colOpts.show||void 0!==this.s.colOpts.show&&!0!==this.s.colOpts.show)&&-1===n)return this.dom.container.addClass(this.classes.hidden),this.s.displayed=!1;if(!0!==this.s.colOpts.show&&-1===n||(this.s.displayed=!0),this.s.dt.page.info().serverSide||s&&s.searchPanes&&s.searchPanes.options)s&&s.searchPanes&&s.searchPanes.options&&this._serverPopulate(s);else{0===this.s.rowData.arrayFilter.length&&(this.s.rowData.totalOptions=0,this._populatePane(),this.s.rowData.arrayOriginal=this.s.rowData.arrayFilter,this.s.rowData.binsOriginal=this.s.rowData.bins);var r=Object.keys(this.s.rowData.binsOriginal).length,l=this._uniqueRatio(r,this.s.dt.rows()[0].length);if(!1===this.s.displayed&&((void 0===this.s.colOpts.show&&null===this.s.colOpts.threshold?l>this.c.threshold:l>this.s.colOpts.threshold)||!0!==this.s.colOpts.show&&r<=1))return this.dom.container.addClass(this.classes.hidden),void(this.s.displayed=!1);this.dom.container.addClass(this.classes.show),this.s.displayed=!0}}else this.s.displayed=!0;this._displayPane(),this.s.listSet||this.dom.dtP.on("stateLoadParams.dtsp",function(t,s,e){_.isEmptyObject(i.s.dt.state.loaded())&&_.each(e,function(t){delete e[t]})}),null!==e&&0<this.dom.panesContainer.has(e).length?this.dom.container.insertAfter(e):this.dom.panesContainer.prepend(this.dom.container);l=_.fn.dataTable.ext.errMode,_.fn.dataTable.ext.errMode="none",this.dom.dtP.on("init.dt",function(t,s){var e=i.dom.dtP.DataTable(),a=e.select.style();e.select.style(a)}),this.s.dtPane=this.dom.dtP.DataTable(_.extend(!0,this._getPaneConfig(),this.c.dtOpts,this.s.colOpts?this.s.colOpts.dtOpts:{},this.s.colOpts.options||!this.s.colExists?{createdRow:function(t,s){_(t).addClass(s.className)}}:void 0,null!==this.s.customPaneSettings&&this.s.customPaneSettings.dtOpts?this.s.customPaneSettings.dtOpts:{},_.fn.dataTable.versionCheck("2")?{layout:{bottomStart:null,bottomEnd:null,topStart:null,topEnd:null}}:{dom:"t"})),this.dom.dtP.addClass(this.classes.table),r="Custom Pane";if(this.s.customPaneSettings&&this.s.customPaneSettings.header?r=this.s.customPaneSettings.header:this.s.colOpts.header?r=this.s.colOpts.header:this.s.colExists&&(r=_.fn.dataTable.versionCheck("2")?this.s.dt.column(this.s.index).title():this.s.dt.settings()[0].aoColumns[this.s.index].sTitle),r=this._escapeHTML(r),this.dom.searchBox.attr("placeholder",r),_.fn.dataTable.ext.errMode=l,this.s.colExists)for(var d=0,h=this.s.rowData.arrayFilter.length;d<h;d++)if(this.s.dt.page.info().serverSide)for(var c=this.addRow(this.s.rowData.arrayFilter[d].display,this.s.rowData.arrayFilter[d].filter,this.s.rowData.arrayFilter[d].sort,this.s.rowData.arrayFilter[d].type),p=0,u=this.s.serverSelect;p<u.length;p++)u[p].filter===this.s.rowData.arrayFilter[d].filter&&(this.s.serverSelecting=!0,c.select(),this.s.serverSelecting=!1);else!this.s.dt.page.info().serverSide&&this.s.rowData.arrayFilter[d]?this.addRow(this.s.rowData.arrayFilter[d].display,this.s.rowData.arrayFilter[d].filter,this.s.rowData.arrayFilter[d].sort,this.s.rowData.arrayFilter[d].type):this.s.dt.page.info().serverSide||this.addRow("","","","");(this.s.colOpts.options||this.s.customPaneSettings&&this.s.customPaneSettings.options)&&this._getComparisonRows(),this.s.dtPane.draw(),this.s.dtPane.table().node().parentNode.scrollTop=this.s.scrollTop,this.adjustTopRow(),this.setListeners(),this.s.listSet=!0;for(var f=0,g=t;f<g.length;f++){var v=g[f];if(v)for(var m=0,w=this.s.dtPane.rows().indexes().toArray();m<w.length;m++)c=w[m],this.s.dtPane.row(c).data()&&v.filter===this.s.dtPane.row(c).data().filter&&(this.s.dt.page.info().serverSide?(this.s.serverSelecting=!0,this.s.dtPane.row(c).select(),this.s.serverSelecting=!1):this.s.dtPane.row(c).select())}if(this.s.dt.page.info().serverSide&&this.s.dtPane.search(this.dom.searchBox.val()).draw(),(this.c.initCollapsed&&!1!==this.s.colOpts.initCollapsed||this.s.colOpts.initCollapsed)&&(this.c.collapse&&!1!==this.s.colOpts.collapse||this.s.colOpts.collapse)&&(this.s.dtPane.settings()[0]._bInitComplete?this.collapse():this.s.dtPane.one("init",function(){return i.collapse()})),a&&a.searchPanes&&a.searchPanes.panes&&(!s||1===s.draw)){this._reloadSelect(a);for(var P=0,y=a.searchPanes.panes;P<y.length;P++){var b=y[P];b.id===this.s.index&&(b.searchTerm&&0<b.searchTerm.length&&this.dom.searchBox.val(b.searchTerm).trigger("input"),b.order&&this.s.dtPane.order(b.order).draw(),b.collapsed?this.collapse():this.show())}}return!0},B.prototype._displayPane=function(){this.dom.dtP.empty(),this.dom.topRow.empty().addClass(this.classes.topRow),3<parseInt(this.c.layout.split("-")[1],10)&&this.dom.container.addClass(this.classes.smallGap),this.dom.topRow.addClass(this.classes.subRowsContainer).append(this.dom.upper.append(this.dom.searchCont)).append(this.dom.lower.append(this.dom.buttonGroup)),(!1===this.c.dtOpts.searching||this.s.colOpts.dtOpts&&!1===this.s.colOpts.dtOpts.searching||!this.c.controls||!this.s.colOpts.controls||this.s.customPaneSettings&&this.s.customPaneSettings.dtOpts&&void 0!==this.s.customPaneSettings.dtOpts.searching&&!this.s.customPaneSettings.dtOpts.searching)&&this.dom.searchBox.removeClass(this.classes.paneInputButton).addClass(this.classes.disabledButton).attr("disabled","true"),this.dom.searchBox.appendTo(this.dom.searchCont),this._searchContSetup(),this.c.clear&&this.c.controls&&this.s.colOpts.controls&&this.dom.clear.appendTo(this.dom.buttonGroup),this.c.orderable&&this.s.colOpts.orderable&&this.c.controls&&this.s.colOpts.controls&&this.dom.nameButton.appendTo(this.dom.buttonGroup),this.c.viewCount&&this.s.colOpts.viewCount&&this.c.orderable&&this.s.colOpts.orderable&&this.c.controls&&this.s.colOpts.controls&&this.dom.countButton.appendTo(this.dom.buttonGroup),(this.c.collapse&&!1!==this.s.colOpts.collapse||this.s.colOpts.collapse)&&this.c.controls&&this.s.colOpts.controls&&this.dom.collapseButton.appendTo(this.dom.buttonGroup),this.dom.container.prepend(this.dom.topRow).append(this.dom.dtP).show()},B.prototype._escapeHTML=function(t){return t.toString().replace(/&lt;/g,"<").replace(/&gt;/g,">").replace(/&quot;/g,'"').replace(/&amp;/g,"&")},B.prototype._getBonusOptions=function(){return _.extend(!0,{},B.defaults,{threshold:null},this.c||{})},B.prototype._getOptions=function(){var t=this.s.dt.settings()[0].aoColumns[this.s.index].searchPanes,s=_.extend(!0,{},B.defaults,{collapse:null,emptyMessage:!1,initCollapsed:null,threshold:null},t);return t&&t.hideCount&&void 0===t.viewCount&&(s.viewCount=!t.hideCount),s},B.prototype._populatePane=function(){this.s.rowData.arrayFilter=[],this.s.rowData.bins={};var t=this.s.dt.context[0];if(!this.s.dt.page.info().serverSide)for(var s=0,e=this.s.dt.rows().indexes().toArray();s<e.length;s++){var a=e[s];this._populatePaneArray(a,this.s.rowData.arrayFilter,t)}},B.prototype._search=function(t,s){for(var e=this.s.colOpts,a=this.s.dt,i=0,n=this.s.selections;i<n.length;i++){var o=n[i];if("string"==typeof o&&"string"==typeof t&&(o=this._escapeHTML(o)),Array.isArray(t)){if("and"===e.combiner){if(!t.includes(o))return!1}else if(t.includes(o))return!0}else if("function"==typeof o){if(o.call(a,a.row(s).data(),s)){if("or"===e.combiner)return!0}else if("and"===e.combiner)return!1}else if(t===o||("string"!=typeof t||0!==t.length)&&t==o||null===o&&"string"==typeof t&&""===t)return!0}return"and"===e.combiner},B.prototype._searchContSetup=function(){this.c.controls&&this.s.colOpts.controls&&this.dom.searchButton.appendTo(this.dom.searchLabelCont),!1===this.c.dtOpts.searching||!1===this.s.colOpts.dtOpts.searching||this.s.customPaneSettings&&this.s.customPaneSettings.dtOpts&&void 0!==this.s.customPaneSettings.dtOpts.searching&&!this.s.customPaneSettings.dtOpts.searching||this.dom.searchLabelCont.appendTo(this.dom.searchCont)},B.prototype._searchExtras=function(){var t=this.s.updating,s=(this.s.updating=!0,this.s.dtPane.rows({selected:!0}).data().pluck("filter").toArray()),e=s.indexOf(this.emptyMessage()),a=_(this.s.dtPane.table().container());-1<e&&(s[e]=""),0<s.length?a.addClass(this.classes.selected):0===s.length&&a.removeClass(this.classes.selected),this.s.updating=t},B.version="2.1.2",B.classes={bordered:"dtsp-bordered",buttonGroup:"dtsp-buttonGroup",buttonSub:"dtsp-buttonSub",caret:"dtsp-caret",clear:"dtsp-clear",clearAll:"dtsp-clearAll",clearButton:"clearButton",collapseAll:"dtsp-collapseAll",collapseButton:"dtsp-collapseButton",container:"dtsp-searchPane",countButton:"dtsp-countButton",disabledButton:"dtsp-disabledButton",hidden:"dtsp-hidden",hide:"dtsp-hide",layout:"dtsp-",name:"dtsp-name",nameButton:"dtsp-nameButton",nameCont:"dtsp-nameCont",narrow:"dtsp-narrow",paneButton:"dtsp-paneButton",paneInputButton:"dtsp-paneInputButton",pill:"dtsp-pill",rotated:"dtsp-rotated",search:"dtsp-search",searchCont:"dtsp-searchCont",searchIcon:"dtsp-searchIcon",searchLabelCont:"dtsp-searchButtonCont",selected:"dtsp-selected",smallGap:"dtsp-smallGap",subRow1:"dtsp-subRow1",subRow2:"dtsp-subRow2",subRowsContainer:"dtsp-subRowsContainer",title:"dtsp-title",topRow:"dtsp-topRow"},B.defaults={clear:!0,collapse:!0,combiner:"or",container:function(t){return t.table().container()},controls:!0,dtOpts:{},emptyMessage:null,hideCount:!1,i18n:{clearPane:"&times;",count:"{total}",emptyMessage:"<em>No data</em>"},initCollapsed:!1,layout:"auto",name:void 0,orderable:!0,orthogonal:{display:"display",filter:"filter",hideCount:!1,search:"filter",show:void 0,sort:"sort",threshold:.6,type:"type",viewCount:!0},preSelect:[],threshold:.6,viewCount:!0},h=B,(r&&r.__extends||(a=function(t,s){return(a=Object.setPrototypeOf||({__proto__:[]}instanceof Array?function(t,s){t.__proto__=s}:function(t,s){for(var e in s)s.hasOwnProperty(e)&&(t[e]=s[e])}))(t,s)},function(t,s){function e(){this.constructor=t}a(t,s),t.prototype=null===s?Object.create(s):(e.prototype=s.prototype,new e)}))(s,d=h),s.prototype._emptyPane=function(){var t,e,s=this.s.dtPane;return T.versionCheck("2")?((t=s.select.last())&&s.row(t.row).any()&&(e=s.row(t.row).data().index),s.rows().remove(),function(){var t;void 0!==e&&(t=s.row(function(t,s){return s.index===e}).index(),s.select.last({row:t,column:0}))}):(s.rows().remove(),function(){})},s.prototype._serverPopulate=function(t){this.s.rowData.binsShown={},this.s.rowData.arrayFilter=[],void 0!==t.tableLength?(this.s.tableLength=t.tableLength,this.s.rowData.totalOptions=this.s.tableLength):(null===this.s.tableLength||this.s.dt.rows()[0].length>this.s.tableLength)&&(this.s.tableLength=this.s.dt.rows()[0].length,this.s.rowData.totalOptions=this.s.tableLength);var s,e=this.s.dt.column(this.s.index).dataSrc();if(void 0!==t.searchPanes.options[e])for(var a=0,i=t.searchPanes.options[e];a<i.length;a++){var n=i[a];this.s.rowData.arrayFilter.push({display:n.label,filter:n.value,shown:+n.count,sort:n.label,total:+n.total,type:n.label}),this.s.rowData.binsShown[n.value]=+n.count,this.s.rowData.bins[n.value]=+n.total}t=Object.keys(this.s.rowData.bins).length,e=this._uniqueRatio(t,this.s.tableLength);if(!this.s.colOpts.show&&!1===this.s.displayed&&((void 0===this.s.colOpts.show&&null===this.s.colOpts.threshold?e>this.c.threshold:e>this.s.colOpts.threshold)||!0!==this.s.colOpts.show&&t<=1))this.dom.container.addClass(this.classes.hidden),this.s.displayed=!1;else if(this.s.rowData.arrayOriginal=this.s.rowData.arrayFilter,this.s.rowData.binsOriginal=this.s.rowData.bins,this.s.displayed=!0,this.s.dtPane){for(var o=this.s.serverSelect,e=this._emptyPane(),r=0,l=this.s.rowData.arrayFilter;r<l.length;r++)if(s=l[r],this._shouldAddRow(s))for(var d=this.addRow(s.display,s.filter,s.sort,s.type),h=0;h<o.length;h++)if((u=o[h]).filter===s.filter){this.s.serverSelecting=!0,d.select(),this.s.serverSelecting=!1,o.splice(h,1),this.s.selections.push(s.filter);break}for(var c=0,p=o;c<p.length;c++)for(var u=p[c],f=0,g=this.s.rowData.arrayOriginal;f<g.length;f++)(s=g[f]).filter===u.filter&&(d=this.addRow(s.display,s.filter,s.sort,s.type),this.s.serverSelecting=!0,d.select(),this.s.serverSelecting=!1,this.s.selections.push(s.filter));this.s.serverSelect=this.s.dtPane.rows({selected:!0}).data().toArray(),this.s.dtPane.draw(),e()}},s.prototype.updateRows=function(){if(!this.s.dt.page.info().serverSide){this.s.rowData.binsShown={};for(var t=0,s=this.s.dt.rows({search:"applied"}).indexes().toArray();t<s.length;t++){var e=s[t];this._updateShown(e,this.s.dt.settings()[0],this.s.rowData.binsShown)}}for(var a=this,i=0,n=this.s.dtPane.rows().data().toArray();i<n.length;i++)!function(e){e.shown="number"==typeof a.s.rowData.binsShown[e.filter]?a.s.rowData.binsShown[e.filter]:0,a.s.dtPane.row(function(t,s){return s&&s.index===e.index}).data(e)}(n[i]);this.s.dtPane.draw(),this.s.dtPane.table().node().parentNode.scrollTop=this.s.scrollTop},s.prototype._makeSelection=function(){},s.prototype._reloadSelect=function(){},s.prototype._shouldAddRow=function(t){return!0},s.prototype._updateSelection=function(){!this.s.dt.page.info().serverSide||this.s.updating||this.s.serverSelecting||(this.s.serverSelect=this.s.dtPane.rows({selected:!0}).data().toArray())},s.prototype._updateShown=function(t,a,s){void 0===s&&(s=this.s.rowData.binsShown);function e(t){s[t]?s[t]++:s[t]=1}var i="string"==typeof this.s.colOpts.orthogonal?this.s.colOpts.orthogonal:this.s.colOpts.orthogonal.search,t=(a.fastData||function(t,s,e){return a.oApi._fnGetCellData(a,t,s,e)})(t,this.s.index,i);if(Array.isArray(t))for(var n=0,o=t;n<o.length;n++)e(o[n]);else e(t)},t=s,(r&&r.__extends||(i=function(t,s){return(i=Object.setPrototypeOf||({__proto__:[]}instanceof Array?function(t,s){t.__proto__=s}:function(t,s){for(var e in s)s.hasOwnProperty(e)&&(t[e]=s[e])}))(t,s)},function(t,s){function e(){this.constructor=t}i(t,s),t.prototype=null===s?Object.create(s):(e.prototype=s.prototype,new e)}))(e,p=t),e.prototype._getMessage=function(t){var s=this.s.dt.i18n("searchPanes.count",this.c.i18n.count),e=this.s.dt.i18n("searchPanes.countFiltered",this.c.i18n.countFiltered);return(this.s.filteringActive?e:s).replace(/{total}/g,t.total).replace(/{shown}/g,t.shown)},e.prototype._getShown=function(t){return this.s.rowData.binsShown&&this.s.rowData.binsShown[t]?this.s.rowData.binsShown[t]:0},g=e,(r&&r.__extends||(u=function(t,s){return(u=Object.setPrototypeOf||({__proto__:[]}instanceof Array?function(t,s){t.__proto__=s}:function(t,s){for(var e in s)s.hasOwnProperty(e)&&(t[e]=s[e])}))(t,s)},function(t,s){function e(){this.constructor=t}u(t,s),t.prototype=null===s?Object.create(s):(e.prototype=s.prototype,new e)}))(L,v=t),L.prototype.updateRows=function(){var t=this.s.dtPane.rows({selected:!0}).data().toArray();if(this.s.colOpts.options||this.s.customPaneSettings&&this.s.customPaneSettings.options){this._getComparisonRows();for(var s=this.s.dtPane.rows().toArray()[0],e=0;e<s.length;e++){var a=this.s.dtPane.row(s[e]),i=a.data();if(void 0!==i)if(0===i.shown)a.remove(),s=this.s.dtPane.rows().toArray()[0],e--;else for(var n=0,o=t;n<o.length;n++)if(m=o[n],i.filter===m.filter){a.select(),t.splice(e,1),this.s.selections.push(i.filter);break}}}else{if(!this.s.dt.page.info().serverSide){this._activePopulatePane(),this.s.rowData.binsShown={};for(var r=0,l=this.s.dt.rows({search:"applied"}).indexes().toArray();r<l.length;r++){var d=l[r];this._updateShown(d,this.s.dt.settings()[0],this.s.rowData.binsShown)}}this.s.dtPane.rows().remove();for(var h=0,c=this.s.rowData.arrayFilter;h<c.length;h++){var p=c[h];if(0!==p.shown)for(var u=this.addRow(p.display,p.filter,p.sort,p.type,void 0),f=0;f<t.length;f++)if(t[f].filter===p.filter){u.select(),t.splice(f,1),this.s.selections.push(p.filter);break}}for(var g=0,v=t;g<v.length;g++)for(var m=v[g],w=0,P=this.s.rowData.arrayOriginal;w<P.length;w++){var y=P[w];y.filter===m.filter&&(this.addRow(y.display,y.filter,y.sort,y.type,void 0).select(),this.s.selections.push(y.filter))}}this.s.dtPane.draw(),this.s.dtPane.table().node().parentNode.scrollTop=this.s.scrollTop,this.s.dt.page.info().serverSide||this.s.dt.draw(!1)},L.prototype._activePopulatePane=function(){this.s.rowData.arrayFilter=[],this.s.rowData.bins={};var t=this.s.dt.settings()[0];if(!this.s.dt.page.info().serverSide)for(var s=0,e=this.s.dt.rows({search:"applied"}).indexes().toArray();s<e.length;s++){var a=e[s];this._populatePaneArray(a,this.s.rowData.arrayFilter,t)}},L.prototype._getComparisonRows=function(){var t=this.s.colOpts.options||(this.s.customPaneSettings&&this.s.customPaneSettings.options?this.s.customPaneSettings.options:void 0);if(void 0!==t){var s=this.s.dt.rows(),e=this.s.dt.rows({search:"applied"}),a=s.data().toArray(),i=e.data().toArray(),n=[];this.s.dtPane.clear(),this.s.indexes=[];for(var o=0,r=t;o<r.length;o++){var l=r[o],d=""!==l.label?l.label:this.emptyMessage(),h={className:l.className,display:d,filter:"function"==typeof l.value?l.value:[],shown:0,sort:d,total:0,type:d};if("function"==typeof l.value){for(var c=0;c<a.length;c++)l.value.call(this.s.dt,a[c],s[0][c])&&h.total++;for(var p=0;p<i.length;p++)l.value.call(this.s.dt,i[p],e[0][p])&&h.shown++;"function"!=typeof h.filter&&h.filter.push(l.filter)}n.push(this.addRow(h.display,h.filter,h.sort,h.type,h.className,h.total,h.shown))}return n}},L.prototype._getMessage=function(t){return this.s.dt.i18n("searchPanes.count",this.c.i18n.count).replace(/{total}/g,t.total).replace(/{shown}/g,t.shown)},L.prototype._getShown=function(t){return this.s.rowData.binsShown&&this.s.rowData.binsShown[t]?this.s.rowData.binsShown[t]:0},L.prototype._shouldAddRow=function(t){return 0<t.shown},P=L,(r&&r.__extends||(m=function(t,s){return(m=Object.setPrototypeOf||({__proto__:[]}instanceof Array?function(t,s){t.__proto__=s}:function(t,s){for(var e in s)s.hasOwnProperty(e)&&(t[e]=s[e])}))(t,s)},function(t,s){function e(){this.constructor=t}m(t,s),t.prototype=null===s?Object.create(s):(e.prototype=s.prototype,new e)}))(R,y=P),R.prototype._activePopulatePane=function(){this.s.rowData.arrayFilter=[],this.s.rowData.binsShown={};var t=this.s.dt.settings()[0];if(!this.s.dt.page.info().serverSide)for(var s=0,e=this.s.dt.rows({search:"applied"}).indexes().toArray();s<e.length;s++){var a=e[s];this._populatePaneArray(a,this.s.rowData.arrayFilter,t,this.s.rowData.binsShown)}},R.prototype._getMessage=function(t){var s=this.s.dt.i18n("searchPanes.count",this.c.i18n.count),e=this.s.dt.i18n("searchPanes.countFiltered",this.c.i18n.countFiltered);return(this.s.filteringActive?e:s).replace(/{total}/g,t.total).replace(/{shown}/g,t.shown)},S=R,k.prototype.clearSelections=function(){for(var t,s=0,e=this.s.panes;s<e.length;s++)(t=e[s]).s.dtPane&&(t.s.scrollTop=t.s.dtPane.table().node().parentNode.scrollTop);this.dom.container.find("."+this.classes.search.replace(/\s+/g,".")).each(function(){b(this).val("").trigger("input")}),this.s.selectionList=[];for(var a=[],i=0,n=this.s.panes;i<n.length;i++)(t=n[i]).s.dtPane&&a.push(t.clearPane());return a},k.prototype.getNode=function(){return this.dom.container},k.prototype.rebuild=function(t,s){void 0===t&&(t=!1),void 0===s&&(s=!1),this.dom.emptyMessage.detach(),!1===t&&this.dom.panes.empty();for(var e=[],a=0,i=this.s.panes;a<i.length;a++){var n=i[a];!1!==t&&n.s.index!==t||(n.clearData(),n.rebuildPane(this.s.dt.page.info().serverSide?this.s.serverData:void 0,s),this.dom.panes.append(n.dom.container),e.push(n))}return this._updateSelection(),this._updateFilterCount(),this._attachPaneContainer(),this._initSelectionListeners(!1),this.s.dt.draw(!s),this.resizePanes(),1===e.length?e[0]:e},k.prototype.resizePanes=function(){var t;if("auto"===this.c.layout){for(var s=b(this.s.dt.searchPanes.container()).width(),s=Math.floor(s/this.s.minPaneWidth),e=1,a=0,i=[],n=0,o=this.s.panes;n<o.length;n++)(t=o[n]).s.displayed&&i.push(t.s.index);var r=i.length;if(s===r)e=s;else for(var l=s;1<l;l--){var d=r%l;if(0==d){e=l,a=0;break}a<d&&(e=l,a=d)}var h=0!==a?i.slice(i.length-a,i.length):[];this.s.panes.forEach(function(t){t.s.displayed&&t.resize("columns-"+(h.includes(t.s.index)?a:e))})}else for(var c=0,p=this.s.panes;c<p.length;c++)(t=p[c]).adjustTopRow();return this},k.prototype._initSelectionListeners=function(t){},k.prototype._serverTotals=function(){},k.prototype._setXHR=function(){function a(t){t&&t.searchPanes&&t.searchPanes.options&&(s.s.serverData=t,s.s.serverData.tableLength=t.recordsTotal,s._serverTotals())}var s=this,i=this.s.dt.settings()[0];this.s.dt.on("xhr.dtsps",function(t,s,e){i===s&&a(e)}),a(this.s.dt.ajax.json())},k.prototype._stateLoadListener=function(){var d=this,h=this.s.dt.settings()[0];this.s.dt.on("stateLoadParams.dtsps",function(t,s,e){if(void 0!==e.searchPanes&&s===h){if(d.clearSelections(),d.s.selectionList=e.searchPanes.selectionList||[],e.searchPanes.panes)for(var a=0,i=e.searchPanes.panes;a<i.length;a++)for(var n=i[a],o=0,r=d.s.panes;o<r.length;o++){var l=r[o];n.id===l.s.index&&l.s.dtPane&&(l.dom.searchBox.val(n.searchTerm),l.s.dtPane.order(n.order))}d._makeSelections(d.s.selectionList)}})},k.prototype._updateSelection=function(){this.s.selectionList=[];for(var t=0,s=this.s.panes;t<s.length;t++){var e,a=s[t];a.s.dtPane&&(e=a.s.dtPane.rows({selected:!0}).data().toArray().map(function(t){return t.filter})).length&&this.s.selectionList.push({column:a.s.index,rows:e})}},k.prototype._attach=function(){var t=this;this.dom.titleRow.removeClass(this.classes.hide).detach().append(this.dom.title),this.c.clear&&this.dom.clearAll.appendTo(this.dom.titleRow).off("click.dtsps").on("click.dtsps",function(){return t.clearSelections()}),this.c.collapse&&(this.dom.showAll.appendTo(this.dom.titleRow),this.dom.collapseAll.appendTo(this.dom.titleRow),this._setCollapseListener());for(var s=0,e=this.s.panes;s<e.length;s++){var a=e[s];this.dom.panes.append(a.dom.container)}this.dom.container.text("").removeClass(this.classes.hide).append(this.dom.titleRow).append(this.dom.panes),this.s.panes.forEach(function(t){return t.setListeners()}),0===b("div."+this.classes.container).length&&this.dom.container.prependTo(this.s.dt)},k.prototype._attachMessage=function(){var s;try{s=this.s.dt.i18n("searchPanes.emptyPanes",this.c.i18n.emptyPanes)}catch(t){s=null}null===s?(this.dom.container.addClass(this.classes.hide),this.dom.titleRow.removeClass(this.classes.hide)):(this.dom.container.removeClass(this.classes.hide),this.dom.titleRow.addClass(this.classes.hide),this.dom.emptyMessage.html(s).appendTo(this.dom.container))},k.prototype._attachPaneContainer=function(){for(var t=0,s=this.s.panes;t<s.length;t++)if(!0===s[t].s.displayed)return void this._attach();this._attachMessage()},k.prototype._checkCollapse=function(){for(var t=!0,s=!0,e=0,a=this.s.panes;e<a.length;e++){var i=a[e];i.s.displayed&&(i.dom.collapseButton.hasClass(i.classes.rotated)?(this.dom.showAll.removeClass(this.classes.disabledButton).removeAttr("disabled"),s=!1):(this.dom.collapseAll.removeClass(this.classes.disabledButton).removeAttr("disabled"),t=!1))}t&&this.dom.collapseAll.addClass(this.classes.disabledButton).attr("disabled","true"),s&&this.dom.showAll.addClass(this.classes.disabledButton).attr("disabled","true")},k.prototype._checkMessage=function(){for(var t=0,s=this.s.panes;t<s.length;t++)if(!0===s[t].s.displayed)return this.dom.emptyMessage.detach(),void this.dom.titleRow.removeClass(this.classes.hide);this._attachMessage()},k.prototype._collapseAll=function(){for(var t=0,s=this.s.panes;t<s.length;t++)s[t].collapse()},k.prototype._findPane=function(t){for(var s=0,e=this.s.panes;s<e.length;s++){var a=e[s];if(t===a.s.name)return a}},k.prototype._getState=function(){var t=this.s.dt.state.loaded();t&&t.searchPanes&&t.searchPanes.selectionList&&(this.s.selectionList=t.searchPanes.selectionList)},k.prototype._makeSelections=function(t){for(var s=0,e=t;s<e.length;s++){for(var a=e[s],i=void 0,n=0,o=this.s.panes;n<o.length;n++){var r=o[n];if(r.s.index===a.column){i=r;break}}if(i&&i.s.dtPane){for(var l=0;l<i.s.dtPane.rows().data().toArray().length;l++)a.rows.includes("function"==typeof i.s.dtPane.row(l).data().filter?i.s.dtPane.cell(l,0).data():i.s.dtPane.row(l).data().filter)&&i.s.dtPane.row(l).select();i.updateTable()}}},k.prototype._paneDeclare=function(t,s,e){for(var a=this,i=(t.columns(0<this.c.columns.length?this.c.columns:void 0).eq(0).each(function(t){a.s.panes.push(new a.s.paneClass(s,e,t,a.dom.panes))}),t.columns().eq(0).toArray().length),n=0;n<this.c.panes.length;n++)this.s.panes.push(new this.s.paneClass(s,e,i+n,this.dom.panes,this.c.panes[n]));0<this.c.order.length&&(this.s.panes=this.c.order.map(function(t){return a._findPane(t)})),this.s.dt.settings()[0]._bInitComplete?this._startup(t):C.versionCheck("2")?this.s.dt.settings()[0].aoInitComplete.push(function(){return a._startup(t)}):this.s.dt.settings()[0].aoInitComplete.push({fn:function(){return a._startup(t)}})},k.prototype._setCollapseListener=function(){var t=this;this.dom.collapseAll.off("click.dtsps").on("click.dtsps",function(){t._collapseAll(),t.dom.collapseAll.addClass(t.classes.disabledButton).attr("disabled","true"),t.dom.showAll.removeClass(t.classes.disabledButton).removeAttr("disabled"),t.s.dt.state.save()}),this.dom.showAll.off("click.dtsps").on("click.dtsps",function(){t._showAll(),t.dom.showAll.addClass(t.classes.disabledButton).attr("disabled","true"),t.dom.collapseAll.removeClass(t.classes.disabledButton).removeAttr("disabled"),t.s.dt.state.save()});for(var s=0,e=this.s.panes;s<e.length;s++)e[s].dom.topRow.off("collapse.dtsps").on("collapse.dtsps",function(){return t._checkCollapse()});this._checkCollapse()},k.prototype._showAll=function(){for(var t=0,s=this.s.panes;t<s.length;t++)s[t].show()},k.prototype._startup=function(i){for(var h=this,c=(this._attach(),this.dom.panes.empty(),this.s.dt.settings()[0]),t=0,s=this.s.panes;t<s.length;t++){var e=s[t];e.rebuildPane(0<Object.keys(this.s.serverData).length?this.s.serverData:void 0),this.dom.panes.append(e.dom.container)}"auto"===this.c.layout&&this.resizePanes();var a=this.s.dt.state.loaded(),n=(!this.s.stateRead&&a&&this.s.dt.page(a.start/this.s.dt.page.len()).draw("page"),this.s.stateRead=!0,this._checkMessage(),i.on("preDraw.dtsps",function(){h.s.updating||h.s.paging||(h._updateFilterCount(),h._updateSelection()),h.s.paging=!1}),b(r).on("resize.dtsps",C.util.throttle(function(){return h.resizePanes()})),this.s.dt.on("stateSaveParams.dtsps",function(t,s,e){s===c&&(void 0===e.searchPanes&&(e.searchPanes={}),e.searchPanes.selectionList=h.s.selectionList)}),this._stateLoadListener(),i.off("page.dtsps page-nc.dtsps").on("page.dtsps page-nc.dtsps",function(t,s){h.s.paging=!0,h.s.pagingST=!0,h.s.page=h.s.dt.page()}),this.s.dt.page.info().serverSide?i.off("preXhr.dtsps").on("preXhr.dtsps",function(t,s,e){if(s===c){e.searchPanes||(e.searchPanes={}),e.searchPanes_null||(e.searchPanes_null={});for(var a=0,i=0,n=h.s.panes;i<n.length;i++){var o=n[i],r=h.s.dt.column(o.s.index).dataSrc();if(e.searchPanes[r]||(e.searchPanes[r]={}),e.searchPanes_null[r]||(e.searchPanes_null[r]={}),o.s.dtPane)for(var l=o.s.dtPane.rows({selected:!0}).data().toArray(),d=0;d<l.length;d++)e.searchPanes[r][d]=l[d].filter,e.searchPanes[r][d]?e.searchPanes_null[r][d]=!1:e.searchPanes_null[r][d]=!0,a++}0<a&&(a!==h.s.filterCount?(e.start=0,h.s.page=0):e.start=h.s.page*h.s.dt.page.len(),h.s.dt.page(h.s.page),h.s.filterCount=a),0<h.s.selectionList.length&&(e.searchPanesLast=h.s.dt.column(h.s.selectionList[h.s.selectionList.length-1].column).dataSrc()),e.searchPanes_options={cascade:h.c.cascadePanes,viewCount:h.c.viewCount,viewTotal:h.c.viewTotal}}}):i.on("preXhr.dtsps",function(){return h.s.panes.forEach(function(t){return t.clearData()})}),this.s.dt.on("xhr.dtsps",function(t,s){var i;s.nTable!==h.s.dt.table().node()||h.s.dt.page.info().serverSide||(i=!1,h.s.dt.one("preDraw.dtsps",function(){if(!i){var t=h.s.dt.page();i=!0,h.s.updating=!0,h.dom.panes.empty();for(var s=0,e=h.s.panes;s<e.length;s++){var a=e[s];a.clearData(),a.rebuildPane(void 0,!0),h.dom.panes.append(a.dom.container)}h.s.dt.page.info().serverSide||h.s.dt.draw(),h.s.updating=!1,h._updateSelection(),h._checkMessage(),h.s.dt.one("draw.dtsps",function(){h.s.updating=!0,h.s.dt.page(t).draw(!1),h.s.updating=!1})}}))}),this.c.preSelect);a&&a.searchPanes&&a.searchPanes.selectionList&&(n=a.searchPanes.selectionList),this._makeSelections(n),this._updateFilterCount(),i.on("destroy.dtsps",function(t,s){if(s===c){for(var e=0,a=h.s.panes;e<a.length;e++)a[e].destroy();i.off(".dtsps"),h.dom.showAll.off(".dtsps"),h.dom.clearAll.off(".dtsps"),h.dom.collapseAll.off(".dtsps"),b(i.table().node()).off(".dtsps"),h.dom.container.detach(),h.clearSelections()}}),this.c.collapse&&this._setCollapseListener(),this.c.clear&&this.dom.clearAll.off("click.dtsps").on("click.dtsps",function(){return h.clearSelections()}),(c._searchPanes=this).s.dt.state.save()},k.prototype._updateFilterCount=function(){for(var t=0,s=0,e=0,a=this.s.panes;e<a.length;e++){var i=a[e];i.s.dtPane&&(t+=i.getPaneCount(),i.s.dtPane.search())&&s++}this.dom.title.html(this.s.dt.i18n("searchPanes.title",this.c.i18n.title,t)),this.c.filterChanged&&"function"==typeof this.c.filterChanged&&this.c.filterChanged.call(this.s.dt,t),0===t&&0===s?this.dom.clearAll.addClass(this.classes.disabledButton).attr("disabled","true"):this.dom.clearAll.removeClass(this.classes.disabledButton).removeAttr("disabled")},k.version="2.3.1",k.classes={clear:"dtsp-clear",clearAll:"dtsp-clearAll",collapseAll:"dtsp-collapseAll",container:"dtsp-searchPanes",disabledButton:"dtsp-disabledButton",emptyMessage:"dtsp-emptyMessage",hide:"dtsp-hidden",panes:"dtsp-panesContainer",search:"dtsp-search",showAll:"dtsp-showAll",title:"dtsp-title",titleRow:"dtsp-titleRow"},k.defaults={cascadePanes:!1,clear:!0,collapse:!0,columns:[],container:function(t){return t.table().container()},filterChanged:void 0,i18n:{clearMessage:"Clear All",clearPane:"&times;",collapse:{0:"SearchPanes",_:"SearchPanes (%d)"},collapseMessage:"Collapse All",count:"{total}",emptyMessage:"<em>No data</em>",emptyPanes:"No SearchPanes",loadMessage:"Loading Search Panes...",showMessage:"Show All",title:"Filters Active - %d"},layout:"auto",order:[],panes:[],preSelect:[],viewCount:!0,viewTotal:!1},O=k,(r&&r.__extends||(x=function(t,s){return(x=Object.setPrototypeOf||({__proto__:[]}instanceof Array?function(t,s){t.__proto__=s}:function(t,s){for(var e in s)s.hasOwnProperty(e)&&(t[e]=s[e])}))(t,s)},function(t,s){function e(){this.constructor=t}x(t,s),t.prototype=null===s?Object.create(s):(e.prototype=s.prototype,new e)}))(M,j=O),M.prototype._initSelectionListeners=function(t,s){void 0===s&&(s=[]),(t=void 0===t?!0:t)&&(this.s.selectionList=s);for(var e=0,a=this.s.panes;e<a.length;e++){var i=a[e];i.s.displayed&&i.s.dtPane.off("select.dtsp").on("select.dtsp",this._update(i)).off("deselect.dtsp").on("deselect.dtsp",this._updateTimeout(i))}this.s.dt.off("draw.dtsps").on("draw.dtsps",this._update()),this._updateSelectionList()},M.prototype._serverTotals=function(){for(var t=0,s=this.s.panes;t<s.length;t++){var e=s[t];if(e.s.colOpts.show){var a=this.s.dt.column(e.s.index).dataSrc(),i=!0;if(this.s.serverData.searchPanes.options[a])for(var n=0,o=this.s.serverData.searchPanes.options[a];n<o.length;n++){var r=o[n];if(r.total!==r.count){i=!1;break}}e.s.filteringActive=!i,e._serverPopulate(this.s.serverData)}}},M.prototype._stateLoadListener=function(){function t(t,s,e){if(void 0!==e.searchPanes){if(d.s.selectionList=e.searchPanes.selectionList||[],e.searchPanes.panes)for(var a=0,i=e.searchPanes.panes;a<i.length;a++)for(var n=i[a],o=0,r=d.s.panes;o<r.length;o++){var l=r[o];n.id===l.s.index&&l.s.dtPane&&(l.dom.searchBox.val(n.searchTerm),l.s.dtPane.order(n.order))}d._updateSelectionList()}}var d=this;this.s.dt.off("stateLoadParams.dtsps",t).on("stateLoadParams.dtsps",t)},M.prototype._updateSelection=function(){},M.prototype._update=function(t){var s=this;return void 0===t&&(t=void 0),function(){t&&clearTimeout(t.s.deselectTimeout),s._updateSelectionList(t)}},M.prototype._updateTimeout=function(t){var s=this;return void 0===t&&(t=void 0),function(){return t?t.s.deselectTimeout=setTimeout(function(){return s._updateSelectionList(t)},50):s._updateSelectionList()}},M.prototype._updateSelectionList=function(s){var t;void 0===s&&(s=void 0),this.s.pagingST?this.s.pagingST=!1:this.s.updating||s&&s.s.serverSelecting||(void 0!==s&&(this.s.dt.page.info().serverSide&&s._updateSelection(),t=s.s.dtPane.rows({selected:!0}).data().toArray().map(function(t){return t.filter}),this.s.selectionList=this.s.selectionList.filter(function(t){return t.column!==s.s.index}),0<t.length?(this.s.selectionList.push({column:s.s.index,rows:t}),s.dom.clear.removeClass(this.classes.disabledButton).removeAttr("disabled")):s.dom.clear.addClass(this.classes.disabledButton).attr("disabled","true"),this.s.dt.page.info().serverSide)&&this.s.dt.draw(!1),this._remakeSelections(),this._updateFilterCount())},M.prototype._remakeSelections=function(){var t;if(this.s.updating=!0,this.s.dt.page.info().serverSide){0<this.s.selectionList.length&&(h=this.s.panes[this.s.selectionList[this.s.selectionList.length-1].column]);for(var s=0,e=this.s.panes;s<e.length;s++)!(t=e[s]).s.displayed||h&&t.s.index===h.s.index||t.updateRows()}else{var a=this.s.selectionList,i=!1;this.clearSelections(),this.s.dt.draw(!1),this.s.dt.rows().toArray()[0].length>this.s.dt.rows({search:"applied"}).toArray()[0].length&&(i=!0),this.s.selectionList=a;for(var n=0,o=this.s.panes;n<o.length;n++)(h=o[n]).s.displayed&&(h.s.filteringActive=i,h.updateRows());for(var r=0,l=this.s.selectionList;r<l.length;r++){for(var d=l[r],h=null,c=0,p=this.s.panes;c<p.length;c++){var u=p[c];if(u.s.index===d.column){h=u;break}}if(h.s.dtPane){for(var f=h.s.dtPane.rows().indexes().toArray(),g=0;g<d.rows.length;g++){for(var v=!1,m=0,w=f;m<w.length;m++){var P=w[m],P=h.s.dtPane.row(P),y=P.data();d.rows[g]===y.filter&&(P.select(),v=!0)}v||(d.rows.splice(g,1),g--)}if(h.s.selections=d.rows,0!==d.rows.length){this.s.dt.draw();for(var b=0,_=0,C=0,S=0,O=this.s.panes;S<O.length;S++)(t=O[S]).s.dtPane&&_<(b+=t.getPaneCount())&&(C++,_=b);for(var x=0<b,A=0,D=this.s.panes;A<D.length;A++)(t=D[A]).s.displayed&&(i||h.s.index!==t.s.index||!x?t.s.filteringActive=x||i:1===C&&(t.s.filteringActive=!1),t.s.index!==h.s.index)&&t.updateRows()}}}this.s.dt.draw(!1)}this.s.updating=!1},A=M,l=(_=o).fn.dataTable,C=(b=o).fn.dataTable,(D=(w=f=c=o).fn.dataTable).SearchPanes=O,T.SearchPanes=O,D.SearchPanesST=A,T.SearchPanesST=A,D.SearchPane=h,T.SearchPane=h,D.SearchPaneViewTotal=g,T.SearchPaneViewTotal=g,D.SearchPaneCascade=P,T.SearchPaneCascade=P,D.SearchPaneCascadeViewTotal=S,T.SearchPaneCascadeViewTotal=S,(t=o.fn.dataTable.Api.register)("searchPanes()",function(){return this}),t("searchPanes.clearSelections()",function(){return this.iterator("table",function(t){t._searchPanes&&t._searchPanes.clearSelections()})}),t("searchPanes.rebuildPane()",function(s,e){return this.iterator("table",function(t){t._searchPanes&&t._searchPanes.rebuild(s,e)})}),t("searchPanes.resizePanes()",function(){var t=this.context[0];return t._searchPanes?t._searchPanes.resizePanes():null}),t("searchPanes.container()",function(){var t=this.context[0];return t._searchPanes?t._searchPanes.getNode():null}),T.ext.buttons.searchPanesClear={action:function(t,s){s.searchPanes.clearSelections()},text:"Clear Panes"},T.ext.buttons.searchPanes={action:function(t,s,e,a){var i=this,n=this;a._panes?(this.popover(a._panes.getNode(),{align:"container",span:"container"}),a._panes.rebuild(void 0,!0)):(this.processing(!0),setTimeout(function(){N(s,e,a),i.popover(a._panes.getNode(),{align:"container",span:"container"}),a._panes.rebuild(void 0,!0),o("table.dataTable",a._panes.getNode()).DataTable().columns.adjust(),n.processing(!1)},10))},init:function(t,s,e){t.button(s).text(e.text||t.i18n("searchPanes.collapse","SearchPanes",0)),!t.init().stateSave&&!1!==e.delayInit||N(t,s,e)},config:{},text:"",delayInit:!0},o(n).on("preInit.dt.dtsp",function(t,s){"dt"!==t.namespace||!s.oInit.searchPanes&&!T.defaults.searchPanes||s._searchPanes||F(s,null,!0)}),T.ext.feature.push({cFeature:"P",fnInit:F}),T.feature&&T.feature.register("searchPanes",F),T});
+
+/*! Bootstrap integration for DataTables' SearchPanes
+ * © SpryMedia Ltd - datatables.net/license
+ */
+!function(t){var a,d;"function"==typeof define&&define.amd?define(["jquery","datatables.net-dt","datatables.net-searchpanes"],function(e){return t(e,window,document)}):"object"==typeof exports?(a=require("jquery"),d=function(e,n){n.fn.dataTable||require("datatables.net-dt")(e,n),n.fn.dataTable.SearchPanes||require("datatables.net-searchpanes")(e,n)},"undefined"==typeof window?module.exports=function(e,n){return e=e||window,n=n||a(e),d(e,n),t(n,0,e.document)}:(d(window,a),module.exports=t(a,window,window.document))):t(jQuery,window,document)}(function(e,n,t){"use strict";return e.fn.dataTable});
+
+/*! Select for DataTables 2.0.3
+ * © SpryMedia Ltd - datatables.net/license/mit
+ */
+!function(l){var s,c;"function"==typeof define&&define.amd?define(["jquery","datatables.net"],function(e){return l(e,window,document)}):"object"==typeof exports?(s=require("jquery"),c=function(e,t){t.fn.dataTable||require("datatables.net")(e,t)},"undefined"==typeof window?module.exports=function(e,t){return e=e||window,t=t||s(e),c(e,t),l(t,e,e.document)}:(c(window,s),module.exports=l(s,window,window.document))):l(jQuery,window,document)}(function(m,i,e){"use strict";var p=m.fn.dataTable;function r(n,e,t){function l(t,l){l<t&&(e=l,l=t,t=e);var e,s=!1;return n.columns(":visible").indexes().filter(function(e){return e===t&&(s=!0),e===l?!(s=!1):s})}function s(t,l){var e,s=n.rows({search:"applied"}).indexes(),c=(s.indexOf(t)>s.indexOf(l)&&(e=l,l=t,t=e),!1);return s.filter(function(e){return e===t&&(c=!0),e===l?!(c=!1):c})}var c,t=n.cells({selected:!0}).any()||t?(c=l(t.column,e.column),s(t.row,e.row)):(c=l(0,e.column),s(0,e.row)),t=n.cells(t,c).flatten();n.cells(e,{selected:!0}).any()?n.cells(t).deselect():n.cells(t).select()}function u(e){var t=p.select.classes.checkbox;return e?t.replace(/ /g,"."):t}function s(e){var t=e.settings()[0]._select.selector;m(e.table().container()).off("mousedown.dtSelect",t).off("mouseup.dtSelect",t).off("click.dtSelect",t),m("body").off("click.dtSelect"+w(e.table().node()))}function n(o){var a,t=m(o.table().container()),l=o.settings()[0],s=l._select.selector;t.on("mousedown.dtSelect",s,function(e){(e.shiftKey||e.metaKey||e.ctrlKey)&&t.css("-moz-user-select","none").one("selectstart.dtSelect",s,function(){return!1}),i.getSelection&&(a=i.getSelection())}).on("mouseup.dtSelect",s,function(){t.css("-moz-user-select","")}).on("click.dtSelect",s,function(e){var t,l=o.select.items();if(a){var s=i.getSelection();if((!s.anchorNode||m(s.anchorNode).closest("table")[0]===o.table().node())&&s!==a)return}var c,s=o.settings()[0],n=o.table().container();m(e.target).closest("div.dt-container")[0]==n&&(n=o.cell(m(e.target).closest("td, th"))).any()&&(c=m.Event("user-select.dt"),d(o,c,[l,n,e]),c.isDefaultPrevented()||(c=n.index(),"row"===l?(t=c.row,v(e,o,s,"row",t)):"column"===l?(t=n.index().column,v(e,o,s,"column",t)):"cell"===l&&(t=n.index(),v(e,o,s,"cell",t)),s._select_lastCell=c))}),m("body").on("click.dtSelect"+w(o.table().node()),function(e){var t;!l._select.blurable||m(e.target).parents().filter(o.table().container()).length||0===m(e.target).parents("html").length||m(e.target).parents("div.DTE").length||(t=m.Event("select-blur.dt"),d(o,t,[e.target,e]),t.isDefaultPrevented())||h(l,!0)})}function d(e,t,l,s){s&&!e.flatten().length||("string"==typeof t&&(t+=".dt"),l.unshift(e),m(e.table().node()).trigger(t,l))}function a(s,e){var t,l,c,n,o;"api"!==s.select.style()&&!1!==s.select.info()&&(o=s.rows({selected:!0}).flatten().length,t=s.columns({selected:!0}).flatten().length,l=s.cells({selected:!0}).flatten().length,c=function(e,t,l){e.append(m('<span class="select-item"/>').append(s.i18n("select."+t+"s",{_:"%d "+t+"s selected",0:"",1:"1 "+t+" selected"},l)))},e=m(e),c(n=m('<span class="select-info"/>'),"row",o),c(n,"column",t),c(n,"cell",l),(o=e.children("span.select-info")).length&&o.remove(),""!==n.text())&&e.append(n)}function _(o,a){o.columns(".dt-select").every(function(){var n,e=this.header();m("input",e).length||(n=m("<input>").attr({class:u(!0),type:"checkbox","aria-label":o.i18n("select.aria.headerCheckbox")||"Select all rows"}).appendTo(e).on("change",function(){this.checked?("select-page"==a?o.rows({page:"current"}):o.rows({search:"applied"})).select():o.rows({selected:!0}).deselect()}).on("click",function(e){e.stopPropagation()}),o.on("draw select deselect",function(e,t,l){var s,c;"row"!==l&&l||(l=o.rows({selected:!0}).count(),s=o.rows({search:"applied",selected:!0}).count(),c=("select-page"==a?o.rows({page:"current"}):o.rows({search:"applied"})).count(),s&&s<=l&&s===c?n.prop("checked",!0).prop("indeterminate",!1):0===s&&0===l?n.prop("checked",!1).prop("indeterminate",!1):n.prop("checked",!1).prop("indeterminate",!0))}))})}function f(e,t,l,s){var c,n=e[t+"s"]({search:"applied"}).indexes(),s=n.indexOf(s),o=n.indexOf(l);e[t+"s"]({selected:!0}).any()||-1!==s?(o<s&&(c=o,o=s,s=c),n.splice(o+1,n.length),n.splice(0,s)):n.splice(n.indexOf(l)+1,n.length),e[t](l,{selected:!0}).any()?(n.splice(n.indexOf(l),1),e[t+"s"](n).deselect()):e[t+"s"](n).select()}function h(e,t){!t&&"single"!==e._select.style||((t=new p.Api(e)).rows({selected:!0}).deselect(),t.columns({selected:!0}).deselect(),t.cells({selected:!0}).deselect())}function v(e,t,l,s,c){var n=t.select.style(),o=t.select.toggleable(),a=t[s](c,{selected:!0}).any();a&&!o||("os"===n?e.ctrlKey||e.metaKey?t[s](c).select(!a):e.shiftKey?"cell"===s?r(t,c,l._select_lastCell||null):f(t,s,c,l._select_lastCell?l._select_lastCell[s]:null):(o=t[s+"s"]({selected:!0}),a&&1===o.flatten().length?t[s](c).deselect():(o.deselect(),t[s](c).select())):"multi+shift"==n&&e.shiftKey?"cell"===s?r(t,c,l._select_lastCell||null):f(t,s,c,l._select_lastCell?l._select_lastCell[s]:null):t[s](c).select(!a))}function w(e){return e.id.replace(/[^a-zA-Z0-9\-\_]/g,"-")}p.select={},p.select.classes={checkbox:"dt-select-checkbox"},p.select.version="2.0.3",p.select.init=function(c){var e,t,l,s,n,o,a,i,r,u,d,f,h=c.settings()[0];if(!p.versionCheck("2"))throw"Warning: Select requires DataTables 2 or newer";!h._select&&(e=c.state.loaded(),t=function(e,t,l){if(null!==l&&void 0!==l.select){if(c.rows({selected:!0}).any()&&c.rows().deselect(),void 0!==l.select.rows&&c.rows(l.select.rows).select(),c.columns({selected:!0}).any()&&c.columns().deselect(),void 0!==l.select.columns&&c.columns(l.select.columns).select(),c.cells({selected:!0}).any()&&c.cells().deselect(),void 0!==l.select.cells)for(var s=0;s<l.select.cells.length;s++)c.cell(l.select.cells[s].row,l.select.cells[s].column).select();c.state.save()}},c.on("stateSaveParams",function(e,t,l){l.select={},l.select.rows=c.rows({selected:!0}).ids(!0).toArray(),l.select.columns=c.columns({selected:!0})[0],l.select.cells=c.cells({selected:!0})[0].map(function(e){return{row:c.row(e.row).id(!0),column:e.column}})}).on("stateLoadParams",t).one("init",function(){t(0,0,e)}),s=h.oInit.select,l=p.defaults.select,l=void 0===s?l:s,s="row",r="td, th",u="selected",f=!(d=i=a=!(o=!(n="api"))),h._select={infoEls:[]},!0===l?(n="os",f=!0):"string"==typeof l?(n=l,f=!0):m.isPlainObject(l)&&(void 0!==l.blurable&&(o=l.blurable),void 0!==l.toggleable&&(a=l.toggleable),void 0!==l.info&&(i=l.info),void 0!==l.items&&(s=l.items),f=(n=void 0!==l.style?l.style:"os",!0),void 0!==l.selector&&(r=l.selector),void 0!==l.className&&(u=l.className),void 0!==l.headerCheckbox)&&(d=l.headerCheckbox),c.select.selector(r),c.select.items(s),c.select.style(n),c.select.blurable(o),c.select.toggleable(a),c.select.info(i),h._select.className=u,!f&&m(c.table().node()).hasClass("selectable")&&c.select.style("os"),d||"select-page"===d||"select-all"===d)&&(_(c,d),c.on("init",function(){_(c,d)}))},m.each([{type:"row",prop:"aoData"},{type:"column",prop:"aoColumns"}],function(e,i){p.ext.selector[i.type].push(function(e,t,l){var s,c=t.selected,n=[];if(!0!==c&&!1!==c)return l;for(var o=0,a=l.length;o<a;o++)(s=e[i.prop][l[o]])&&(!0===c&&!0===s._select_selected||!1===c&&!s._select_selected)&&n.push(l[o]);return n})}),p.ext.selector.cell.push(function(e,t,l){var s,c=t.selected,n=[];if(void 0===c)return l;for(var o=0,a=l.length;o<a;o++)(s=e.aoData[l[o].row])&&(!0===c&&s._selected_cells&&!0===s._selected_cells[l[o].column]||!1===c&&(!s._selected_cells||!s._selected_cells[l[o].column]))&&n.push(l[o]);return n});var t=p.Api.register,l=p.Api.registerPlural;function o(t,l){return function(e){return e.i18n("buttons."+t,l)}}function b(e){e=e._eventNamespace;return"draw.dt.DT"+e+" select.dt.DT"+e+" deselect.dt.DT"+e}t("select()",function(){return this.iterator("table",function(e){p.select.init(new p.Api(e))})}),t("select.blurable()",function(t){return void 0===t?this.context[0]._select.blurable:this.iterator("table",function(e){e._select.blurable=t})}),t("select.toggleable()",function(t){return void 0===t?this.context[0]._select.toggleable:this.iterator("table",function(e){e._select.toggleable=t})}),t("select.info()",function(t){return void 0===t?this.context[0]._select.info:this.iterator("table",function(e){e._select.info=t})}),t("select.items()",function(t){return void 0===t?this.context[0]._select.items:this.iterator("table",function(e){e._select.items=t,d(new p.Api(e),"selectItems",[t])})}),t("select.style()",function(l){return void 0===l?this.context[0]._select.style:this.iterator("table",function(e){e._select||p.select.init(new p.Api(e)),e._select_init||(o=e,c=new p.Api(o),o._select_init=!0,o.aoRowCreatedCallback.push(function(e,t,l){var s,c,n=o.aoData[l];for(n._select_selected&&m(e).addClass(o._select.className).find("input."+u(!0)).prop("checked",!0),s=0,c=o.aoColumns.length;s<c;s++)(o.aoColumns[s]._select_selected||n._selected_cells&&n._selected_cells[s])&&m(n.anCells[s]).addClass(o._select.className)}),c.on("preXhr.dt.dtSelect",function(e,t){var l,s;t===c.settings()[0]&&(l=c.rows({selected:!0}).ids(!0).filter(function(e){return void 0!==e}),s=c.cells({selected:!0}).eq(0).map(function(e){var t=c.row(e.row).id(!0);return t?{row:t,column:e.column}:void 0}).filter(function(e){return void 0!==e}),c.one("draw.dt.dtSelect",function(){c.rows(l).select(),s.any()&&s.each(function(e){c.cells(e.row,e.column).select()})}))}),c.on("info.dt",function(e,t,l){t._select.infoEls.includes(l)||t._select.infoEls.push(l),a(c,l)}),c.on("select.dtSelect.dt deselect.dtSelect.dt",function(){o._select.infoEls.forEach(function(e){a(c,e)}),c.state.save()}),c.on("destroy.dtSelect",function(){m(c.rows({selected:!0}).nodes()).removeClass(c.settings()[0]._select.className),s(c),c.off(".dtSelect"),m("body").off(".dtSelect"+w(c.table().node()))})),e._select.style=l;var o,c,t=new p.Api(e);s(t),"api"!==l&&n(t),d(new p.Api(e),"selectStyle",[l])})}),t("select.selector()",function(t){return void 0===t?this.context[0]._select.selector:this.iterator("table",function(e){s(new p.Api(e)),e._select.selector=t,"api"!==e._select.style&&n(new p.Api(e))})}),t("select.last()",function(e){var t=this.context[0];return e?(t._select_lastCell=e,this):t._select_lastCell}),l("rows().select()","row().select()",function(e){var o=this;return!1===e?this.deselect():(this.iterator("row",function(e,t){h(e);var l=e.aoData[t],s=e.aoColumns;m(l.nTr).addClass(e._select.className),l._select_selected=!0;for(var c=0;c<s.length;c++){var n=s[c];null===n.sType&&o.columns().types(),"select-checkbox"===n.sType&&((n=l.anCells)&&n[c]&&m("input."+u(!0),n[c]).prop("checked",!0),null!==l._aSortData)&&(l._aSortData[c]=null)}}),this.iterator("table",function(e,t){d(o,"select",["row",o[t]],!0)}),this)}),t("row().selected()",function(){var e=this.context[0];return!!(e&&this.length&&e.aoData[this[0]]&&e.aoData[this[0]]._select_selected)}),l("columns().select()","column().select()",function(e){var l=this;return!1===e?this.deselect():(this.iterator("column",function(e,t){h(e),e.aoColumns[t]._select_selected=!0;t=new p.Api(e).column(t);m(t.header()).addClass(e._select.className),m(t.footer()).addClass(e._select.className),t.nodes().to$().addClass(e._select.className)}),this.iterator("table",function(e,t){d(l,"select",["column",l[t]],!0)}),this)}),t("column().selected()",function(){var e=this.context[0];return!!(e&&this.length&&e.aoColumns[this[0]]&&e.aoColumns[this[0]]._select_selected)}),l("cells().select()","cell().select()",function(e){var l=this;return!1===e?this.deselect():(this.iterator("cell",function(e,t,l){h(e);t=e.aoData[t];void 0===t._selected_cells&&(t._selected_cells=[]),t._selected_cells[l]=!0,t.anCells&&m(t.anCells[l]).addClass(e._select.className)}),this.iterator("table",function(e,t){d(l,"select",["cell",l.cells(l[t]).indexes().toArray()],!0)}),this)}),t("cell().selected()",function(){var e=this.context[0];if(e&&this.length){e=e.aoData[this[0][0].row];if(e&&e._selected_cells&&e._selected_cells[this[0][0].column])return!0}return!1}),l("rows().deselect()","row().deselect()",function(){var o=this;return this.iterator("row",function(e,t){var l=e.aoData[t],s=e.aoColumns;m(l.nTr).removeClass(e._select.className),l._select_selected=!1,e._select_lastCell=null;for(var c=0;c<s.length;c++){var n=s[c];null===n.sType&&o.columns().types(),"select-checkbox"===n.sType&&((n=l.anCells)&&n[c]&&m("input."+u(!0),l.anCells[c]).prop("checked",!1),null!==l._aSortData)&&(l._aSortData[c]=null)}}),this.iterator("table",function(e,t){d(o,"deselect",["row",o[t]],!0)}),this}),l("columns().deselect()","column().deselect()",function(){var l=this;return this.iterator("column",function(s,e){s.aoColumns[e]._select_selected=!1;var t=new p.Api(s),l=t.column(e);m(l.header()).removeClass(s._select.className),m(l.footer()).removeClass(s._select.className),t.cells(null,e).indexes().each(function(e){var t=s.aoData[e.row],l=t._selected_cells;!t.anCells||l&&l[e.column]||m(t.anCells[e.column]).removeClass(s._select.className)})}),this.iterator("table",function(e,t){d(l,"deselect",["column",l[t]],!0)}),this}),l("cells().deselect()","cell().deselect()",function(){var l=this;return this.iterator("cell",function(e,t,l){t=e.aoData[t];void 0!==t._selected_cells&&(t._selected_cells[l]=!1),t.anCells&&!e.aoColumns[l]._select_selected&&m(t.anCells[l]).removeClass(e._select.className)}),this.iterator("table",function(e,t){d(l,"deselect",["cell",l[t]],!0)}),this});var g=0;return m.extend(p.ext.buttons,{selected:{text:o("selected","Selected"),className:"buttons-selected",limitTo:["rows","columns","cells"],init:function(l,e,s){var c=this;s._eventNamespace=".select"+g++,l.on(b(s),function(){var e,t;c.enable((e=l,!(-1===(t=s).limitTo.indexOf("rows")||!e.rows({selected:!0}).any())||!(-1===t.limitTo.indexOf("columns")||!e.columns({selected:!0}).any())||!(-1===t.limitTo.indexOf("cells")||!e.cells({selected:!0}).any())))}),this.disable()},destroy:function(e,t,l){e.off(l._eventNamespace)}},selectedSingle:{text:o("selectedSingle","Selected single"),className:"buttons-selected-single",init:function(t,e,l){var s=this;l._eventNamespace=".select"+g++,t.on(b(l),function(){var e=t.rows({selected:!0}).flatten().length+t.columns({selected:!0}).flatten().length+t.cells({selected:!0}).flatten().length;s.enable(1===e)}),this.disable()},destroy:function(e,t,l){e.off(l._eventNamespace)}},selectAll:{text:o("selectAll","Select all"),className:"buttons-select-all",action:function(e,t,l,s){var c=this.select.items(),n=s.selectorModifier;(n?("function"==typeof n&&(n=n.call(t,e,t,l,s)),this[c+"s"](n)):this[c+"s"]()).select()}},selectNone:{text:o("selectNone","Deselect all"),className:"buttons-select-none",action:function(){h(this.settings()[0],!0)},init:function(t,e,l){var s=this;l._eventNamespace=".select"+g++,t.on(b(l),function(){var e=t.rows({selected:!0}).flatten().length+t.columns({selected:!0}).flatten().length+t.cells({selected:!0}).flatten().length;s.enable(0<e)}),this.disable()},destroy:function(e,t,l){e.off(l._eventNamespace)}},showSelected:{text:o("showSelected","Show only selected"),className:"buttons-show-selected",action:function(e,t){var s;t.search.fixed("dt-select")?(t.search.fixed("dt-select",null),this.active(!1)):(s=t.settings()[0].aoData,t.search.fixed("dt-select",function(e,t,l){return s[l]._select_selected}),this.active(!0)),t.draw()}}}),m.each(["Row","Column","Cell"],function(e,t){var c=t.toLowerCase();p.ext.buttons["select"+t+"s"]={text:o("select"+t+"s","Select "+c+"s"),className:"buttons-select-"+c+"s",action:function(){this.select.items(c)},init:function(e){var s=this;e.on("selectItems.dt.DT",function(e,t,l){s.active(l===c)})}}}),p.type("select-checkbox",{className:"dt-select",detect:function(e){return"select-checkbox"===e&&e},order:{pre:function(e){return"X"===e?-1:0}}}),m.extend(!0,p.defaults.oLanguage,{select:{aria:{rowCheckbox:"Select row"}}}),p.render.select=function(e,t){var n=e?p.util.get(e):null,o=t?p.util.get(t):null;return function(e,t,l,s){var c=s.settings.aoData[s.row]._select_selected,s=s.settings.oLanguage.select.aria.rowCheckbox;return"display"===t?m("<input>").attr({"aria-label":s,class:u(),name:o?o(l):null,type:"checkbox",value:n?n(l):null,checked:c}).on("input",function(e){e.preventDefault(),this.checked=m(this).closest("tr").hasClass("selected")})[0]:"type"===t?"select-checkbox":"filter"!==t&&c?"X":""}},p.ext.order["select-checkbox"]=function(t,e){return this.api().column(e,{order:"index"}).nodes().map(function(e){return"row"===t._select.items?m(e).parent().hasClass(t._select.className):"cell"===t._select.items&&m(e).hasClass(t._select.className)})},m.fn.DataTable.select=p.select,m(e).on("preInit.dt.dtSelect",function(e,t){"dt"===e.namespace&&p.select.init(new p.Api(t))}),p});
+
+/*! StateRestore 1.4.1
+ * © SpryMedia Ltd - datatables.net/license
+ */
+!function(s){var o,i;"function"==typeof define&&define.amd?define(["jquery","datatables.net"],function(e){return s(e,window,document)}):"object"==typeof exports?(o=require("jquery"),i=function(e,t){t.fn.dataTable||require("datatables.net")(e,t)},"undefined"==typeof window?module.exports=function(e,t){return e=e||window,t=t||o(e),i(e,t),s(t,0,e.document)}:(i(window,o),module.exports=s(o,window,window.document))):s(jQuery,window,document)}(function(y,e,g){"use strict";var u,m,p,a,k,s,t,c=y.fn.dataTable;function n(e,t,s,o,i,a){if(void 0===o&&(o=void 0),void 0===i&&(i=!1),void 0===a&&(a=function(){return null}),!m||!m.versionCheck||!m.versionCheck("1.10.0"))throw new Error("StateRestore requires DataTables 1.10 or newer");if(!m.Buttons)throw new Error("StateRestore requires Buttons");e=new m.Api(e);this.classes=u.extend(!0,{},n.classes),this.c=u.extend(!0,{},n.defaults,t),this.s={dt:e,identifier:s,isPreDefined:i,savedState:null,tableId:o&&o.stateRestore?o.stateRestore.tableId:void 0},this.dom={background:u('<div class="'+this.classes.background+'"/>'),closeButton:u('<div class="'+this.classes.closeButton+'">&times;</div>'),confirmation:u('<div class="'+this.classes.confirmation+'"/>'),confirmationButton:u('<button class="'+this.classes.confirmationButton+" "+this.classes.dtButton+'">'),confirmationTitleRow:u('<div class="'+this.classes.confirmationTitleRow+'"></div>'),dtContainer:u(this.s.dt.table().container()),duplicateError:u('<span class="'+this.classes.modalError+'">'+this.s.dt.i18n("stateRestore.duplicateError",this.c.i18n.duplicateError)+"</span>"),emptyError:u('<span class="'+this.classes.modalError+'">'+this.s.dt.i18n("stateRestore.emptyError",this.c.i18n.emptyError)+"</span>"),removeContents:u('<div class="'+this.classes.confirmationText+'"><span>'+this.s.dt.i18n("stateRestore.removeConfirm",this.c.i18n.removeConfirm).replace(/%s/g,n.entityEncode(this.s.identifier))+"</span></div>"),removeError:u('<span class="'+this.classes.modalError+'">'+this.s.dt.i18n("stateRestore.removeError",this.c.i18n.removeError)+"</span>"),removeTitle:u('<h2 class="'+this.classes.confirmationTitle+'">'+this.s.dt.i18n("stateRestore.removeTitle",this.c.i18n.removeTitle)+"</h2>"),renameContents:u('<div class="'+this.classes.confirmationText+" "+this.classes.renameModal+'"><label class="'+this.classes.confirmationMessage+'">'+this.s.dt.i18n("stateRestore.renameLabel",this.c.i18n.renameLabel).replace(/%s/g,n.entityEncode(this.s.identifier))+"</label></div>"),renameInput:u('<input class="'+this.classes.input+'" type="text"></input>'),renameTitle:u('<h2 class="'+this.classes.confirmationTitle+'">'+this.s.dt.i18n("stateRestore.renameTitle",this.c.i18n.renameTitle)+"</h2>")},this.save(o,a)}function r(e,t){var o=this;if(!a||!a.versionCheck||!a.versionCheck("1.10.0"))throw new Error("StateRestore requires DataTables 1.10 or newer");if(!a.Buttons)throw new Error("StateRestore requires Buttons");var s,i,e=new a.Api(e);if(this.classes=p.extend(!0,{},r.classes),void 0===e.settings()[0]._stateRestore)return this.c=p.extend(!0,{},r.defaults,t),this.s={dt:e,hasColReorder:void 0!==a.ColReorder,hasScroller:void 0!==a.Scroller,hasSearchBuilder:void 0!==a.SearchBuilder,hasSearchPanes:void 0!==a.SearchPanes,hasSelect:void 0!==a.select,states:[]},this.s.dt.on("xhr",function(e,t,s){s&&s.stateRestore&&o._addPreDefined(s.stateRestore)}),this.dom={background:p('<div class="'+this.classes.background+'"/>'),checkboxInputRow:p('<div class="'+this.classes.formRow+'"><label class="'+this.classes.nameLabel+'">'+this.s.dt.i18n("stateRestore.creationModal.toggleLabel",this.c.i18n.creationModal.toggleLabel)+'</label><div class="dtsr-input"></div></div>'),closeButton:p('<div class="'+this.classes.closeButton+'">x</div>'),colReorderToggle:p('<div class="'+this.classes.checkLabel+'"><input type="checkbox" class="'+this.classes.colReorderToggle+" "+this.classes.checkBox+'" checked>'+this.s.dt.i18n("stateRestore.creationModal.colReorder",this.c.i18n.creationModal.colReorder)+"</div>"),columnsSearchToggle:p('<div class="'+this.classes.checkLabel+'"><input type="checkbox" class="'+this.classes.columnsSearchToggle+" "+this.classes.checkBox+'" checked>'+this.s.dt.i18n("stateRestore.creationModal.columns.search",this.c.i18n.creationModal.columns.search)+"</div>"),columnsVisibleToggle:p('<div class="'+this.classes.checkLabel+'"><input type="checkbox" class="'+this.classes.columnsVisibleToggle+" "+this.classes.checkBox+'" checked>'+this.s.dt.i18n("stateRestore.creationModal.columns.visible",this.c.i18n.creationModal.columns.visible)+"</div>"),confirmation:p('<div class="'+this.classes.confirmation+'"/>'),confirmationTitleRow:p('<div class="'+this.classes.confirmationTitleRow+'"></div>'),createButtonRow:p('<div class="'+this.classes.formRow+" "+this.classes.modalFoot+'"><button class="'+this.classes.creationButton+" "+this.classes.dtButton+'">'+this.s.dt.i18n("stateRestore.creationModal.button",this.c.i18n.creationModal.button)+"</button></div>"),creation:p('<div class="'+this.classes.creation+'"/>'),creationForm:p('<div class="'+this.classes.creationForm+'"/>'),creationTitle:p('<div class="'+this.classes.creationText+'"><h2 class="'+this.classes.creationTitle+'">'+this.s.dt.i18n("stateRestore.creationModal.title",this.c.i18n.creationModal.title)+"</h2></div>"),dtContainer:p(this.s.dt.table().container()),duplicateError:p('<span class="'+this.classes.modalError+'">'+this.s.dt.i18n("stateRestore.duplicateError",this.c.i18n.duplicateError)+"</span>"),emptyError:p('<span class="'+this.classes.modalError+'">'+this.s.dt.i18n("stateRestore.emptyError",this.c.i18n.emptyError)+"</span>"),lengthToggle:p('<div class="'+this.classes.checkLabel+'"><input type="checkbox" class="'+this.classes.lengthToggle+" "+this.classes.checkBox+'" checked>'+this.s.dt.i18n("stateRestore.creationModal.length",this.c.i18n.creationModal.length)+"</div>"),nameInputRow:p('<div class="'+this.classes.formRow+'"><label class="'+this.classes.nameLabel+'">'+this.s.dt.i18n("stateRestore.creationModal.name",this.c.i18n.creationModal.name)+'</label><div class="dtsr-input"><input class="'+this.classes.nameInput+'" type="text"></div></div>'),orderToggle:p('<div class="'+this.classes.checkLabel+'"><input type="checkbox" class="'+this.classes.orderToggle+" "+this.classes.checkBox+'" checked>'+this.s.dt.i18n("stateRestore.creationModal.order",this.c.i18n.creationModal.order)+"</div>"),pagingToggle:p('<div class="'+this.classes.checkLabel+'"><input type="checkbox" class="'+this.classes.pagingToggle+" "+this.classes.checkBox+'" checked>'+this.s.dt.i18n("stateRestore.creationModal.paging",this.c.i18n.creationModal.paging)+"</div>"),removeContents:p('<div class="'+this.classes.confirmationText+'"><span></span></div>'),removeTitle:p('<div class="'+this.classes.creationText+'"><h2 class="'+this.classes.creationTitle+'">'+this.s.dt.i18n("stateRestore.removeTitle",this.c.i18n.removeTitle)+"</h2></div>"),scrollerToggle:p('<div class="'+this.classes.checkLabel+'"><input type="checkbox" class="'+this.classes.scrollerToggle+" "+this.classes.checkBox+'" checked>'+this.s.dt.i18n("stateRestore.creationModal.scroller",this.c.i18n.creationModal.scroller)+"</div>"),searchBuilderToggle:p('<div class="'+this.classes.checkLabel+'"><input type="checkbox" class="'+this.classes.searchBuilderToggle+" "+this.classes.checkBox+'" checked>'+this.s.dt.i18n("stateRestore.creationModal.searchBuilder",this.c.i18n.creationModal.searchBuilder)+"</div>"),searchPanesToggle:p('<div class="'+this.classes.checkLabel+'"><input type="checkbox" class="'+this.classes.searchPanesToggle+" "+this.classes.checkBox+'" checked>'+this.s.dt.i18n("stateRestore.creationModal.searchPanes",this.c.i18n.creationModal.searchPanes)+"</div>"),searchToggle:p('<div class="'+this.classes.checkLabel+'"><input type="checkbox" class="'+this.classes.searchToggle+" "+this.classes.checkBox+'" checked>'+this.s.dt.i18n("stateRestore.creationModal.search",this.c.i18n.creationModal.search)+"</div>"),selectToggle:p('<div class="'+this.classes.checkLabel+'"><input type="checkbox" class="'+this.classes.selectToggle+" "+this.classes.checkBox+'" checked>'+this.s.dt.i18n("stateRestore.creationModal.select",this.c.i18n.creationModal.select)+"</div>")},(e.settings()[0]._stateRestore=this)._searchForStates(),this._addPreDefined(this.c.preDefined),i={action:"load"},"function"==typeof this.c.ajax?s=function(){"function"==typeof o.c.ajax&&o.c.ajax.call(o.s.dt,i,function(e){return o._addPreDefined(e)})}:"string"==typeof this.c.ajax&&(s=function(){p.ajax({data:i,success:function(e){o._addPreDefined(e)},type:"POST",url:o.c.ajax})}),"function"==typeof s&&(this.s.dt.settings()[0]._bInitComplete?s():this.s.dt.one("preInit.dtsr",function(){s()})),this.s.dt.on("destroy.dtsr",function(){o.destroy()}),this.s.dt.on("draw.dtsr buttons-action.dtsr",function(){return o.findActive()}),this}function o(e,t){l(e,new c.StateRestoreCollection(e,t.config))}function l(e,t){var s=e.stateRestore.states(),o=e.button("SaveStateRestore:name"),i=[];if(o[0])for(var a=o.index().split("-"),i=o[0].inst.c.buttons,n=0;n<a.length;n++){if(!i[a[n]].buttons){i=[];break}i=i[a[n]].buttons}var r=e.settings()[0]._stateRestore.c;for(n=0;n<i.length;n++)"stateRestore"===i[n].extend&&(i.splice(n,1),n--);if(r._createInSaved&&i.push("createState"),void 0===s||0===s.length)i.push('<span class="'+t.classes.emptyStates+'">'+e.i18n("stateRestore.emptyStates",t.c.i18n.emptyStates)+"</span>");else for(var c=0,l=s;c<l.length;c++){var d=l[c],h=r.splitSecondaries.slice();h.includes("updateState")&&!r.save&&h.splice(h.indexOf("updateState"),1),!h.includes("renameState")||r.save&&r.rename||h.splice(h.indexOf("renameState"),1),h.includes("removeState")&&!r.remove&&h.splice(h.indexOf("removeState"),1),i.push({_stateRestore:d,attr:{title:d.s.identifier},config:{split:h},extend:"stateRestore",text:k.entityEncode(d.s.identifier),popoverTitle:k.entityEncode(d.s.identifier)})}e.button("SaveStateRestore:name").collectionRebuild(i);for(var u=0,m=e.buttons();u<m.length;u++){var v=m[u];y(v.node).hasClass("dtsr-removeAllStates")&&(0===s.length?e.button(v.node).disable():e.button(v.node).enable())}}return n.prototype.remove=function(e){var t,s,o,i,a=this;return void 0===e&&(e=!1),!!this.c.remove&&(o={action:"remove",stateRestore:((t={})[this.s.identifier]=this.s.savedState,t)},i=function(){a.dom.confirmation.trigger("dtsr-remove"),u(a.s.dt.table().node()).trigger("stateRestore-change"),a.dom.background.click(),a.dom.confirmation.remove(),u(g).unbind("keyup",function(e){return a._keyupFunction(e)}),a.dom.confirmationButton.off("click")},this.c.ajax?"string"==typeof this.c.ajax&&this.s.dt.settings()[0]._bInitComplete?s=function(){return u.ajax({data:o,success:i,type:"POST",url:a.c.ajax}),!0}:"function"==typeof this.c.ajax&&(s=function(){return"function"==typeof a.c.ajax&&a.c.ajax.call(a.s.dt,o,i),!0}):s=function(){try{localStorage.removeItem("DataTables_stateRestore_"+a.s.identifier+"_"+location.pathname+(a.s.tableId?"_"+a.s.tableId:"")),i()}catch(e){return a.dom.confirmation.children("."+a.classes.modalError).remove(),a.dom.confirmation.append(a.dom.removeError),"remove"}return!0},e?(this.dom.confirmation.appendTo(this.dom.dtContainer),u(this.s.dt.table().node()).trigger("dtsr-modal-inserted"),s(),this.dom.confirmation.remove()):this._newModal(this.dom.removeTitle,this.s.dt.i18n("stateRestore.removeSubmit",this.c.i18n.removeSubmit),s,this.dom.removeContents),!0)},n.prototype.compare=function(e){if(this.c.saveState.order||(e.order=void 0),this.c.saveState.search||(e.search=void 0),this.c.saveState.columns&&e.columns)for(var t=0,s=e.columns.length;t<s;t++)"boolean"==typeof this.c.saveState.columns||this.c.saveState.columns.visible||(e.columns[t].visible=void 0),"boolean"==typeof this.c.saveState.columns||this.c.saveState.columns.search||(e.columns[t].search=void 0);else this.c.saveState.columns||(e.columns=void 0);this.c.saveState.paging||(e.page=void 0),this.c.saveState.searchBuilder||(e.searchBuilder=void 0),this.c.saveState.searchPanes||(e.searchPanes=void 0),this.c.saveState.select||(e.select=void 0),this.c.saveState.colReorder||(e.ColReorder=void 0),this.c.saveState.scroller||(e.scroller=void 0)!==m.Scroller&&(e.start=0),this.c.saveState.paging||(e.start=0),this.c.saveState.length||(e.length=void 0),delete e.time;var o=this.s.savedState;return delete o.time,delete o.c,delete o.stateRestore,this._deepCompare(e,o)},n.prototype.destroy=function(){u.each(this.dom,function(e,t){t.off().remove()})},n.prototype.load=function(){function e(){o.s.dt.one("preDraw",function(e,s){setTimeout(function(){var e=s._iDisplayStart/s._iDisplayLength,t=i.start/i.length;0<=e&&0<=t&&e!=t&&o.s.dt.page(t).draw(!1)},50)}),o.s.dt.draw(!1)}var o=this,i=this.s.savedState,t=this.s.dt.settings()[0];i.time=+new Date,t.oLoadedState=u.extend(!0,{},i),u("div.dt-button-background").click();return c.versionCheck("2")?(this.s.dt.state(i),e()):c.ext.oApi._fnImplementState(t,i,e),i},n.prototype.rename=function(s,o){var i=this;if(void 0===s&&(s=null),this.c.rename){var e=function(){if(null===s){var e=u("input."+i.classes.input.replace(/ /g,".")).val();if(0===e.length)return i.dom.confirmation.children("."+i.classes.modalError).remove(),i.dom.confirmation.append(i.dom.emptyError),"empty";if(o.includes(e))return i.dom.confirmation.children("."+i.classes.modalError).remove(),i.dom.confirmation.append(i.dom.duplicateError),"duplicate";s=e}function t(){i.s.identifier=s,i.save(i.s.savedState,function(){return null},!1),i.dom.removeContents=u('<div class="'+i.classes.confirmationText+'"><span>'+i.s.dt.i18n("stateRestore.removeConfirm",i.c.i18n.removeConfirm).replace(/%s/g,i.s.identifier)+"</span></div>"),i.dom.confirmation.trigger("dtsr-rename"),i.dom.background.click(),i.dom.confirmation.remove(),u(g).unbind("keyup",function(e){return i._keyupFunction(e)}),i.dom.confirmationButton.off("click")}e={action:"rename",stateRestore:((e={})[i.s.identifier]=s,e)};if(i.c.ajax)"string"==typeof i.c.ajax&&i.s.dt.settings()[0]._bInitComplete?u.ajax({data:e,success:t,type:"POST",url:i.c.ajax}):"function"==typeof i.c.ajax&&i.c.ajax.call(i.s.dt,e,t);else try{localStorage.removeItem("DataTables_stateRestore_"+i.s.identifier+"_"+location.pathname+(i.s.tableId?"_"+i.s.tableId:"")),t()}catch(e){return i.dom.confirmation.children("."+i.classes.modalError).remove(),i.dom.confirmation.append(i.dom.removeError),!1}return!0};if(null!==s){if(o.includes(s))throw new Error(this.s.dt.i18n("stateRestore.duplicateError",this.c.i18n.duplicateError));if(0===s.length)throw new Error(this.s.dt.i18n("stateRestore.emptyError",this.c.i18n.emptyError));this.dom.confirmation.appendTo(this.dom.dtContainer),u(this.s.dt.table().node()).trigger("dtsr-modal-inserted"),e(),this.dom.confirmation.remove()}else this.dom.renameInput.val(this.s.identifier),this.dom.renameContents.append(this.dom.renameInput),this._newModal(this.dom.renameTitle,this.s.dt.i18n("stateRestore.renameButton",this.c.i18n.renameButton),e,this.dom.renameContents)}},n.prototype.save=function(e,t,s){var o,i,a,n=this;if(void 0===s&&(s=!0),this.c.save){if(this.s.dt.state.save(),void 0===e)o=this.s.dt.state();else{if("object"!=typeof e)return;o=e}if(o.stateRestore?(o.stateRestore.isPreDefined=this.s.isPreDefined,o.stateRestore.state=this.s.identifier,o.stateRestore.tableId=this.s.tableId):o.stateRestore={isPreDefined:this.s.isPreDefined,state:this.s.identifier,tableId:this.s.tableId},this.s.savedState=o,this.c.saveState.order||(this.s.savedState.order=void 0),this.c.saveState.search||(this.s.savedState.search=void 0),this.c.saveState.columns&&this.s.savedState.columns)for(var r=0,c=this.s.savedState.columns.length;r<c;r++)"boolean"==typeof this.c.saveState.columns||this.c.saveState.columns.visible||(this.s.savedState.columns[r].visible=void 0),"boolean"==typeof this.c.saveState.columns||this.c.saveState.columns.search||(this.s.savedState.columns[r].search=void 0);else this.c.saveState.columns||(this.s.savedState.columns=void 0);if(this.c.saveState.searchBuilder||(this.s.savedState.searchBuilder=void 0),this.c.saveState.searchPanes||(this.s.savedState.searchPanes=void 0),this.c.saveState.select||(this.s.savedState.select=void 0),this.c.saveState.colReorder||(this.s.savedState.ColReorder=void 0),this.c.saveState.scroller||(this.s.savedState.scroller=void 0)!==m.Scroller&&(this.s.savedState.start=0),this.c.saveState.paging||(this.s.savedState.start=0),this.c.saveState.length||(this.s.savedState.length=void 0),this.s.savedState.c=this.c,this.s.savedState.c.splitSecondaries.length)for(var l=0,d=this.s.savedState.c.splitSecondaries;l<d.length;l++){var h=d[l];h.parent&&(h.parent=void 0)}this.s.isPreDefined?t&&t.call(this):(i={action:"save",stateRestore:((e={})[this.s.identifier]=this.s.savedState,e)},a=function(){t&&t.call(n),n.dom.confirmation.trigger("dtsr-save"),u(n.s.dt.table().node()).trigger("stateRestore-change")},this.c.ajax?"string"==typeof this.c.ajax&&s?this.s.dt.settings()[0]._bInitComplete?u.ajax({data:i,success:a,type:"POST",url:this.c.ajax}):this.s.dt.one("init",function(){u.ajax({data:i,success:a,type:"POST",url:n.c.ajax})}):"function"==typeof this.c.ajax&&s&&this.c.ajax.call(this.s.dt,i,a):(localStorage.setItem("DataTables_stateRestore_"+this.s.identifier+"_"+location.pathname+(this.s.tableId?"_"+this.s.tableId:""),JSON.stringify(this.s.savedState)),a()))}else t&&t.call(this)},n.entityEncode=function(e){return"string"==typeof e?e.replace(/&/g,"&amp;").replace(/</g,"&lt;").replace(/>/g,"&gt;").replace(/"/g,"&quot;"):e},n.prototype._deepCompare=function(e,t){var s,o,i=[e,t],a=[Object.keys(e).sort(),Object.keys(t).sort()];for(a[0].includes("scroller")&&(s=a[0].indexOf("start"))&&a[0].splice(s,1),a[1].includes("scroller")&&(s=a[1].indexOf("start"))&&a[1].splice(s,1),o=0;o<a[0].length;o++)0!==a[0][o].indexOf("_")&&"baseRowTop"!==a[0][o]&&"baseScrollTop"!==a[0][o]&&"scrollTop"!==a[0][o]&&(this.c.saveState.paging||"page"!==a[0][o])||(a[0].splice(o,1),o--);for(o=0;o<a[1].length;o++)0!==a[1][o].indexOf("_")&&"baseRowTop"!==a[1][o]&&"baseScrollTop"!==a[1][o]&&"scrollTop"!==a[1][o]&&(this.c.saveState.paging||"page"!==a[0][o])||(a[1].splice(o,1),o--);if(0===a[0].length&&0<a[1].length||0===a[1].length&&0<a[0].length)return!1;for(o=0;o<a[0].length;o++)a[1].includes(a[0][o])||(a[0].splice(o,1),o--);for(o=0;o<a[1].length;o++)a[0].includes(a[1][o])||(a[1].splice(o,1),o--);for(o=0;o<a[0].length;o++){if(a[0][o]!==a[1][o]||typeof i[0][a[0][o]]!=typeof i[1][a[1][o]])return!1;if("object"==typeof i[0][a[0][o]]){if(!this._deepCompare(i[0][a[0][o]],i[1][a[1][o]]))return!1}else if("number"==typeof i[0][a[0][o]]&&"number"==typeof i[1][a[1][o]]){if(Math.round(i[0][a[0][o]])!==Math.round(i[1][a[1][o]]))return!1}else if(i[0][a[0][o]]!==i[1][a[1][o]])return!1}return!0},n.prototype._keyupFunction=function(e){"Enter"===e.key?this.dom.confirmationButton.click():"Escape"===e.key&&u("div."+this.classes.background.replace(/ /g,".")).click()},n.prototype._newModal=function(e,t,s,o){var i=this,e=(this.dom.background.appendTo(this.dom.dtContainer),this.dom.confirmationTitleRow.empty().append(e),this.dom.confirmationButton.html(t),this.dom.confirmation.empty().append(this.dom.confirmationTitleRow).append(o).append(u('<div class="'+this.classes.confirmationButtons+'"></div>').append(this.dom.confirmationButton)).appendTo(this.dom.dtContainer),u(this.s.dt.table().node()).trigger("dtsr-modal-inserted"),o.children("input")),a=((0<e.length?u(e[0]):this.dom.confirmationButton).focus(),u("div."+this.classes.background.replace(/ /g,".")));this.c.modalCloseButton&&(this.dom.confirmation.append(this.dom.closeButton),this.dom.closeButton.on("click",function(){return a.click()})),this.dom.confirmationButton.on("click",function(){return s()}),this.dom.confirmation.on("click",function(e){e.stopPropagation()}),a.one("click",function(){i.dom.background.remove(),i.dom.confirmation.remove(),u(g).unbind("keyup",function(e){return i._keyupFunction(e)})}),u(g).on("keyup",function(e){return i._keyupFunction(e)})},n.version="1.4.1",n.classes={background:"dtsr-background",closeButton:"dtsr-popover-close",confirmation:"dtsr-confirmation",confirmationButton:"dtsr-confirmation-button",confirmationButtons:"dtsr-confirmation-buttons",confirmationMessage:"dtsr-confirmation-message dtsr-name-label",confirmationText:"dtsr-confirmation-text",confirmationTitle:"dtsr-confirmation-title",confirmationTitleRow:"dtsr-confirmation-title-row",dtButton:"dt-button",input:"dtsr-input",modalError:"dtsr-modal-error",renameModal:"dtsr-rename-modal"},n.defaults={_createInSaved:!1,ajax:!1,create:!0,creationModal:!1,i18n:{creationModal:{button:"Create",colReorder:"Column Order:",columns:{search:"Column Search:",visible:"Column Visibility:"},length:"Page Length:",name:"Name:",order:"Sorting:",paging:"Paging:",scroller:"Scroll Position:",search:"Search:",searchBuilder:"SearchBuilder:",searchPanes:"SearchPanes:",select:"Select:",title:"Create New State",toggleLabel:"Includes:"},duplicateError:"A state with this name already exists.",emptyError:"Name cannot be empty.",emptyStates:"No saved states",removeConfirm:"Are you sure you want to remove %s?",removeError:"Failed to remove state.",removeJoiner:" and ",removeSubmit:"Remove",removeTitle:"Remove State",renameButton:"Rename",renameLabel:"New Name for %s:",renameTitle:"Rename State"},modalCloseButton:!0,remove:!0,rename:!0,save:!0,saveState:{colReorder:!0,columns:{search:!0,visible:!0},length:!0,order:!0,paging:!0,scroller:!0,search:!0,searchBuilder:!0,searchPanes:!0,select:!0},splitSecondaries:["updateState","renameState","removeState"],toggle:{colReorder:!1,columns:{search:!1,visible:!1},length:!1,order:!1,paging:!1,scroller:!1,search:!1,searchBuilder:!1,searchPanes:!1,select:!1}},k=n,r.prototype.addState=function(e,u,m){var v=this;if(this.c.create&&this.c.save){var t=function(e,t){if(0===e.length)return"empty";if(u.includes(e))return"duplicate";v.s.dt.state.save();var s=v,o=v.s.dt.state();if(o.stateRestore={isPredefined:!1,state:e,tableId:v.s.dt.table().node().id},t.saveState){for(var i=v.c.saveState,a=0,n=Object.keys(t.saveState);a<n.length;a++){var r=n[a];if("object"==typeof t.saveState[r])for(var c=0,l=Object.keys(t.saveState[r]);c<l.length;c++){var d=l[c];t.saveState[r][d]||(i[r][d]=!1)}else t.saveState[r]||(i[r]=!1)}v.c.saveState=i}var h=new k(v.s.dt.settings()[0],p.extend(!0,{},v.c,m),e,o,!1,function(){s.s.states.push(this),s._collectionRebuild()});return p(v.s.dt.table().node()).on("dtsr-modal-inserted",function(){h.dom.confirmation.one("dtsr-remove",function(){return v._removeCallback(h.s.identifier)}),h.dom.confirmation.one("dtsr-rename",function(){return v._collectionRebuild()}),h.dom.confirmation.one("dtsr-save",function(){return v._collectionRebuild()})}),!0};if(null!==this.getState(e))throw new Error(this.s.dt.i18n("stateRestore.duplicateError",this.c.i18n.duplicateError));if(this.c.creationModal||void 0!==m&&m.creationModal)this._creationModal(t,e,m);else{t=t(e,{});if("empty"===t)throw new Error(this.s.dt.i18n("stateRestore.emptyError",this.c.i18n.emptyError));if("duplicate"===t)throw new Error(this.s.dt.i18n("stateRestore.duplicateError",this.c.i18n.duplicateError))}}},r.prototype.removeAll=function(e){var t,s;0!==this.s.states.length&&(s=(t=this.s.states.map(function(e){return e.s.identifier}))[0],1<t.length&&(s=t.slice(0,-1).join(", ")+this.s.dt.i18n("stateRestore.removeJoiner",this.c.i18n.removeJoiner)+t.slice(-1)),p(this.dom.removeContents.children("span")).html(this.s.dt.i18n("stateRestore.removeConfirm",this.c.i18n.removeConfirm).replace(/%s/g,s)),this._newModal(this.dom.removeTitle,this.s.dt.i18n("stateRestore.removeSubmit",this.c.i18n.removeSubmit),e,this.dom.removeContents))},r.prototype.destroy=function(){for(var e=0,t=this.s.states;e<t.length;e++)t[e].destroy();p.each(this.dom,function(e,t){t.off().remove()}),this.s.states=[],this.s.dt.off(".dtsr"),p(this.s.dt.table().node()).off(".dtsr")},r.prototype.findActive=function(){this.s.dt.state.save();for(var e=this.s.dt.state(),t=this.s.dt.buttons().nodes(),s=0,o=t;s<o.length;s++)d=o[s],(p(d).hasClass("dtsr-state")||p(d).children().hasClass("dtsr-state"))&&this.s.dt.button(d).active(!1);for(var i=[],a=0,n=this.s.states;a<n.length;a++){var r=n[a];if(r.compare(e)){i.push({data:r.s.savedState,name:r.s.identifier});for(var c=0,l=t;c<l.length;c++){var d=l[c],h=this.s.dt.button(d);if(h.text()===r.s.identifier){h.active(!0);break}}}}return i},r.prototype.getState=function(e){for(var t=0,s=this.s.states;t<s.length;t++){var o=s[t];if(o.s.identifier===e)return o}return null},r.prototype.getStates=function(e){if(void 0===e)return this.s.states;for(var t=[],s=0,o=e;s<o.length;s++){for(var i=o[s],a=!1,n=0,r=this.s.states;n<r.length;n++){var c=r[n];if(i===c.s.identifier){t.push(c),a=!0;break}}a||t.push(void 0)}return t},r.prototype._addPreDefined=function(a){for(var n=this,e=Object.keys(a).sort(function(e,t){return t<e?1:e<t?-1:0}),r=this,t=0,s=e;t<s.length;t++)!function(e){for(var t=0;t<r.s.states.length;t++)r.s.states[t].s.identifier===e&&r.s.states.splice(t,1);var s=r,o=a[e],i=new k(r.s.dt,p.extend(!0,{},r.c,void 0!==o.c?{saveState:o.c.saveState}:void 0,!0),e,o,!0,function(){s.s.states.push(this),s._collectionRebuild()});i.s.savedState=o,p(r.s.dt.table().node()).on("dtsr-modal-inserted",function(){i.dom.confirmation.one("dtsr-remove",function(){return n._removeCallback(i.s.identifier)}),i.dom.confirmation.one("dtsr-rename",function(){return n._collectionRebuild()}),i.dom.confirmation.one("dtsr-save",function(){return n._collectionRebuild()})})}(s[t])},r.prototype._collectionRebuild=function(){var e=this.s.dt.button("SaveStateRestore:name"),t=[];if(e[0])for(var s=e.index().split("-"),t=e[0].inst.c.buttons,o=0;o<s.length;o++){if(!t[s[o]].buttons){t=[];break}t=t[s[o]].buttons}for(o=0;o<t.length;o++)"stateRestore"===t[o].extend&&(t.splice(o,1),o--);this.c._createInSaved&&t.push("createState");var i='<span class="'+this.classes.emptyStates+'">'+this.s.dt.i18n("stateRestore.emptyStates",this.c.i18n.emptyStates)+"</span>";if(0===this.s.states.length)t.includes(i)||t.push(i);else{for(;t.includes(i);)t.splice(t.indexOf(i),1);this.s.states=this.s.states.sort(function(e,t){e=e.s.identifier,t=t.s.identifier;return t<e?1:e<t?-1:0});for(var a=0,n=this.s.states;a<n.length;a++){var r=n[a],c=this.c.splitSecondaries.slice();!c.includes("updateState")||this.c.save&&r.c.save||c.splice(c.indexOf("updateState"),1),!c.includes("renameState")||this.c.save&&r.c.save&&this.c.rename&&r.c.rename||c.splice(c.indexOf("renameState"),1),!c.includes("removeState")||this.c.remove&&r.c.remove||c.splice(c.indexOf("removeState"),1),t.push({_stateRestore:r,attr:{title:r.s.identifier},config:{split:c},extend:"stateRestore",text:k.entityEncode(r.s.identifier),popoverTitle:k.entityEncode(r.s.identifier)})}}e.collectionRebuild(t);for(var l=0,d=this.s.dt.buttons();l<d.length;l++){var h=d[l];p(h.node).hasClass("dtsr-removeAllStates")&&(0===this.s.states.length?this.s.dt.button(h.node).disable():this.s.dt.button(h.node).enable())}},r.prototype._creationModal=function(t,e,s){for(var o,i=this,e=(this.dom.creation.empty(),this.dom.creationForm.empty(),this.dom.nameInputRow.find("input").val(e),this.dom.creationForm.append(this.dom.nameInputRow),this.s.dt.settings()[0].oInit),a=[],n=void 0!==s&&void 0!==s.toggle,r=(((!n||void 0===s.toggle.order)&&this.c.toggle.order||n&&s.toggle.order)&&this.c.saveState.order&&(void 0===e.ordering||e.ordering)&&a.push(this.dom.orderToggle),((!n||void 0===s.toggle.search)&&this.c.toggle.search||n&&s.toggle.search)&&this.c.saveState.search&&(void 0===e.searching||e.searching)&&a.push(this.dom.searchToggle),((!n||void 0===s.toggle.paging)&&this.c.toggle.paging||n&&s.toggle.paging)&&this.c.saveState.paging&&(void 0===e.paging||e.paging)&&a.push(this.dom.pagingToggle),((!n||void 0===s.toggle.length)&&this.c.toggle.length||n&&s.toggle.length)&&this.c.saveState.length&&(void 0===e.length||e.length)&&a.push(this.dom.lengthToggle),this.s.hasColReorder&&((!n||void 0===s.toggle.colReorder)&&this.c.toggle.colReorder||n&&s.toggle.colReorder)&&this.c.saveState.colReorder&&a.push(this.dom.colReorderToggle),this.s.hasScroller&&((!n||void 0===s.toggle.scroller)&&this.c.toggle.scroller||n&&s.toggle.scroller)&&this.c.saveState.scroller&&a.push(this.dom.scrollerToggle),this.s.hasSearchBuilder&&((!n||void 0===s.toggle.searchBuilder)&&this.c.toggle.searchBuilder||n&&s.toggle.searchBuilder)&&this.c.saveState.searchBuilder&&a.push(this.dom.searchBuilderToggle),this.s.hasSearchPanes&&((!n||void 0===s.toggle.searchPanes)&&this.c.toggle.searchPanes||n&&s.toggle.searchPanes)&&this.c.saveState.searchPanes&&a.push(this.dom.searchPanesToggle),this.s.hasSelect&&((!n||void 0===s.toggle.select)&&this.c.toggle.select||n&&s.toggle.select)&&this.c.saveState.select&&a.push(this.dom.selectToggle),"boolean"==typeof this.c.toggle.columns&&((!n||void 0===s.toggle.order)&&this.c.toggle.columns||n&&s.toggle.order)&&this.c.saveState.columns?(a.push(this.dom.columnsSearchToggle),a.push(this.dom.columnsVisibleToggle)):(n&&void 0!==s.toggle.columns||"boolean"==typeof this.c.toggle.columns)&&"boolean"==typeof s.toggle.order||("boolean"!=typeof this.c.saveState.columns&&this.c.saveState.columns?((n&&void 0!==s.toggle.columns&&"boolean"!=typeof s.toggle.columns&&s.toggle.columns.search||(!n||void 0===s.toggle.columns||"boolean"!=typeof s.toggle.columns&&void 0===s.toggle.columns.search)&&"boolean"!=typeof this.c.toggle.columns&&this.c.toggle.columns.search)&&this.c.saveState.columns.search&&a.push(this.dom.columnsSearchToggle),(n&&void 0!==s.toggle.columns&&"boolean"!=typeof s.toggle.columns&&s.toggle.columns.visible||(!n||void 0===s.toggle.columns||"boolean"!=typeof s.toggle.columns&&void 0===s.toggle.columns.visible)&&"boolean"!=typeof this.c.toggle.columns&&this.c.toggle.columns.visible)&&this.c.saveState.columns.visible&&a.push(this.dom.columnsVisibleToggle)):this.c.saveState.columns&&(a.push(this.dom.columnsSearchToggle),a.push(this.dom.columnsVisibleToggle))),a.sort(function(e,t){e=e.text(),t=t.text();return e<t?-1:t<e?1:0}),this.dom.checkboxInputRow.appendTo(this.dom.creationForm).find("div.dtsr-input").empty()),c=0,l=a;c<l.length;c++)o=l[c],r.append(o);this.dom.background.appendTo(this.dom.dtContainer),this.dom.creation.append(this.dom.creationTitle).append(this.dom.creationForm).append(this.dom.createButtonRow).appendTo(this.dom.dtContainer),p(this.s.dt.table().node()).trigger("dtsr-modal-inserted");for(var d=0,h=a;d<h.length;d++)p((o=h[d]).children("label:last-child")).on("click",function(){o.children("input").prop("checked",!o.children("input").prop("checked"))});function u(e){"Enter"===e.key?m.click():"Escape"===e.key&&v.click()}var m=p("button."+this.classes.creationButton.replace(/ /g,".")),e=this.dom.creationForm.find("input"),v=((0<e.length?p(e[0]):m).focus(),p("div."+this.classes.background.replace(/ /g,".")));this.c.modalCloseButton&&(this.dom.creation.append(this.dom.closeButton),this.dom.closeButton.on("click",function(){return v.click()})),m.on("click",function(){var e={colReorder:i.dom.colReorderToggle.find("input").is(":checked"),columns:{search:i.dom.columnsSearchToggle.find("input").is(":checked"),visible:i.dom.columnsVisibleToggle.find("input").is(":checked")},length:i.dom.lengthToggle.find("input").is(":checked"),order:i.dom.orderToggle.find("input").is(":checked"),paging:i.dom.pagingToggle.find("input").is(":checked"),scroller:i.dom.scrollerToggle.find("input").is(":checked"),search:i.dom.searchToggle.find("input").is(":checked"),searchBuilder:i.dom.searchBuilderToggle.find("input").is(":checked"),searchPanes:i.dom.searchPanesToggle.find("input").is(":checked"),select:i.dom.selectToggle.find("input").is(":checked")},e=t(p("input."+i.classes.nameInput.replace(/ /g,".")).val(),{saveState:e});!0===e?(i.dom.background.remove(),i.dom.creation.remove(),p(g).unbind("keyup",u)):(i.dom.creation.children("."+i.classes.modalError).remove(),i.dom.creation.append(i.dom[e+"Error"]))}),v.one("click",function(){i.dom.background.remove(),i.dom.creation.remove(),p(g).unbind("keyup",u),i._collectionRebuild()}),p(g).on("keyup",u),this.s.dt.state.save()},r.prototype._removeCallback=function(e){for(var t=0;t<this.s.states.length;t++)this.s.states[t].s.identifier===e&&(this.s.states.splice(t,1),t--);return this._collectionRebuild(),!0},r.prototype._newModal=function(e,t,s,o){function i(e){"Enter"===e.key?n.click():"Escape"===e.key&&r.click()}var a=this,n=(this.dom.background.appendTo(this.dom.dtContainer),this.dom.confirmationTitleRow.empty().append(e),p('<button class="'+this.classes.confirmationButton+" "+this.classes.dtButton+'">'+t+"</button>")),e=(this.dom.confirmation.empty().append(this.dom.confirmationTitleRow).append(o).append(p('<div class="'+this.classes.confirmationButtons+'"></div>').append(n)).appendTo(this.dom.dtContainer),p(this.s.dt.table().node()).trigger("dtsr-modal-inserted"),o.children("input")),r=((0<e.length?p(e[0]):n).focus(),p("div."+this.classes.background.replace(/ /g,".")));n.on("click",function(){var e=s(!0);!0===e?(a.dom.background.remove(),a.dom.confirmation.remove(),p(g).unbind("keyup",i),n.off("click")):(a.dom.confirmation.children("."+a.classes.modalError).remove(),a.dom.confirmation.append(a.dom[e+"Error"]))}),this.dom.confirmation.on("click",function(e){e.stopPropagation()}),r.one("click",function(){a.dom.background.remove(),a.dom.confirmation.remove(),p(g).unbind("keyup",i)}),p(g).on("keyup",i)},r.prototype._searchForStates=function(){for(var i=this,e=Object.keys(localStorage),a=this,t=0,s=e;t<s.length;t++)!function(e){if(e.match(new RegExp("^DataTables_stateRestore_.*_"+location.pathname+"$"))||e.match(new RegExp("^DataTables_stateRestore_.*_"+location.pathname+"_"+a.s.dt.table().node().id+"$"))){var t=JSON.parse(localStorage.getItem(e));if(t.stateRestore.isPreDefined||t.stateRestore.tableId&&t.stateRestore.tableId!==a.s.dt.table().node().id)return;var s=a,o=new k(a.s.dt,p.extend(!0,{},a.c,{saveState:t.c.saveState}),t.stateRestore.state,t,!1,function(){this.s.savedState=t,s.s.states.push(this),s._collectionRebuild()});p(a.s.dt.table().node()).on("dtsr-modal-inserted",function(){o.dom.confirmation.one("dtsr-remove",function(){return i._removeCallback(o.s.identifier)}),o.dom.confirmation.one("dtsr-rename",function(){return i._collectionRebuild()}),o.dom.confirmation.one("dtsr-save",function(){return i._collectionRebuild()})})}}(s[t])},r.version="1.0.0",r.classes={background:"dtsr-background",checkBox:"dtsr-check-box",checkLabel:"dtsr-check-label",checkRow:"dtsr-check-row",closeButton:"dtsr-popover-close",colReorderToggle:"dtsr-colReorder-toggle",columnsSearchToggle:"dtsr-columns-search-toggle",columnsVisibleToggle:"dtsr-columns-visible-toggle",confirmation:"dtsr-confirmation",confirmationButton:"dtsr-confirmation-button",confirmationButtons:"dtsr-confirmation-buttons",confirmationMessage:"dtsr-confirmation-message dtsr-name-label",confirmationText:"dtsr-confirmation-text",confirmationTitle:"dtsr-confirmation-title",confirmationTitleRow:"dtsr-confirmation-title-row",creation:"dtsr-creation",creationButton:"dtsr-creation-button",creationForm:"dtsr-creation-form",creationText:"dtsr-creation-text",creationTitle:"dtsr-creation-title",dtButton:"dt-button",emptyStates:"dtsr-emptyStates",formRow:"dtsr-form-row",leftSide:"dtsr-left",lengthToggle:"dtsr-length-toggle",modalError:"dtsr-modal-error",modalFoot:"dtsr-modal-foot",nameInput:"dtsr-name-input",nameLabel:"dtsr-name-label",orderToggle:"dtsr-order-toggle",pagingToggle:"dtsr-paging-toggle",rightSide:"dtsr-right",scrollerToggle:"dtsr-scroller-toggle",searchBuilderToggle:"dtsr-searchBuilder-toggle",searchPanesToggle:"dtsr-searchPanes-toggle",searchToggle:"dtsr-search-toggle",selectToggle:"dtsr-select-toggle",toggleLabel:"dtsr-toggle-title"},r.defaults={_createInSaved:!1,ajax:!1,create:!0,creationModal:!1,i18n:{creationModal:{button:"Create",colReorder:"Column Order",columns:{search:"Column Search",visible:"Column Visibility"},length:"Page Length",name:"Name:",order:"Sorting",paging:"Paging",scroller:"Scroll Position",search:"Search",searchBuilder:"SearchBuilder",searchPanes:"SearchPanes",select:"Select",title:"Create New State",toggleLabel:"Include:"},duplicateError:"A state with this name already exists.",emptyError:"Name cannot be empty.",emptyStates:"No saved states",removeConfirm:"Are you sure you want to remove %s?",removeError:"Failed to remove state.",removeJoiner:" and ",removeSubmit:"Remove",removeTitle:"Remove State",renameButton:"Rename",renameLabel:"New Name for %s:",renameTitle:"Rename State"},modalCloseButton:!0,preDefined:{},remove:!0,rename:!0,save:!0,saveState:{colReorder:!0,columns:{search:!0,visible:!0},length:!0,order:!0,paging:!0,scroller:!0,search:!0,searchBuilder:!0,searchPanes:!0,select:!0},splitSecondaries:["updateState","renameState","removeState"],toggle:{colReorder:!1,columns:{search:!1,visible:!1},length:!1,order:!1,paging:!1,scroller:!1,search:!1,searchBuilder:!1,searchPanes:!1,select:!1}},s=r,m=(u=y).fn.dataTable,a=(p=y).fn.dataTable,y.fn.dataTable.StateRestore=k,y.fn.DataTable.StateRestore=k,y.fn.dataTable.StateRestoreCollection=s,y.fn.DataTable.StateRestoreCollection=s,(t=c.Api.register)("stateRestore()",function(){return this}),t("stateRestore.state()",function(e){var t,s=this.context[0];return s._stateRestore||l(t=c.Api(s),new c.StateRestoreCollection(t,{})),this[0]=s._stateRestore.getState(e),this}),t("stateRestore.state.add()",function(e,t){var s,o=this.context[0];if(o._stateRestore||l(s=c.Api(o),new c.StateRestoreCollection(s,{})),!o._stateRestore.c.create)return this;if(o._stateRestore.addState){for(var i=[],a=0,n=o._stateRestore.s.states;a<n.length;a++){var r=n[a];i.push(r.s.identifier)}return o._stateRestore.addState(e,i,t),this}}),t("stateRestore.states()",function(e){var t,s=this.context[0];return s._stateRestore||l(t=c.Api(s),new c.StateRestoreCollection(t,{})),this.length=0,this.push.apply(this,s._stateRestore.getStates(e)),this}),t("stateRestore.state().save()",function(){var e=this[0];return e.c.save&&e.save(),this}),t("stateRestore.state().rename()",function(e){var t=this.context[0],s=this[0];if(s.c.save){for(var o=[],i=0,a=t._stateRestore.s.states;i<a.length;i++){var n=a[i];o.push(n.s.identifier)}s.rename(e,o)}return this}),t("stateRestore.state().load()",function(){return this[0].load(),this}),t("stateRestore.state().remove()",function(e){var t=this[0];return t.c.remove&&t.remove(e),this}),t("stateRestore.states().remove()",function(e){function t(e){for(var t=!0,s=i.toArray();0<s.length;){var o=s[0];if(void 0===o||!o.c.remove)break;o=o.remove(e);!0!==o?t=o:s.splice(0,1)}return t}var i=this;return this.context[0]._stateRestore&&this.context[0]._stateRestore.c.remove&&(e?t(e):this.context[0]._stateRestore.removeAll(t)),this}),t("stateRestore.activeStates()",function(){var e,t=this.context[0];return this.length=0,t._stateRestore||l(e=c.Api(t),new c.StateRestoreCollection(e,{})),t._stateRestore&&this.push.apply(this,t._stateRestore.findActive()),this}),c.ext.buttons.stateRestore={action:function(e,t,s,o){o._stateRestore.load(),s.blur()},className:"dtsr-state",config:{split:["updateState","renameState","removeState"]},text:function(e){return e.i18n("buttons.stateRestore","State %d",e.stateRestore.states()[0].length+1)}},c.ext.buttons.updateState={action:function(e,t,s,o){y("div.dt-button-background").click(),o.parent._stateRestore.save()},text:function(e){return e.i18n("buttons.updateState","Update")}},c.ext.buttons.savedStates={buttons:[],extend:"collection",init:function(e,t,s){e.on("stateRestore-change",function(){e.button(t).text(e.i18n("buttons.savedStates","Saved States",e.stateRestore.states().length))}),void 0===e.settings()[0]._stateRestore&&o(e,s)},name:"SaveStateRestore",text:function(e){return e.i18n("buttons.savedStates","Saved States",0)}},c.ext.buttons.savedStatesCreate={buttons:[],extend:"collection",init:function(e,t,s){e.on("stateRestore-change",function(){e.button(t).text(e.i18n("buttons.savedStates","Saved States",e.stateRestore.states().length))}),void 0===e.settings()[0]._stateRestore&&(void 0===s.config&&(s.config={}),s.config._createInSaved=!0,o(e,s))},name:"SaveStateRestore",text:function(e){return e.i18n("buttons.savedStates","Saved States",0)}},c.ext.buttons.createState={action:function(e,t,s,o){e.stopPropagation();var i=t.settings()[0]._stateRestore.c,e=t.settings()[0].oLanguage;if(i.create&&i.save){var a=t.stateRestore.states().toArray(),e=void 0!==e.buttons&&void 0!==e.buttons.stateRestore?e.buttons.stateRestore:"State ";if(e.indexOf("%d")===e.length-3)n=new RegExp(e.replace(/%d/g,""));else for(var e=e.split("%d"),n=[],r=0,c=e;r<c.length;r++){var l=c[r];n.push(new RegExp(l))}for(var d=function(e){if(Array.isArray(n)){i=e;for(var t=0,s=n;t<s.length;t++)var o=s[t],i=i.replace(o,"")}else i=e.replace(n,"");return isNaN(+i)||i.length===e?0:+i},e=a.map(function(e){return d(e.s.identifier)}).sort(function(e,t){return+e<+t?1:+t<+e?-1:0})[0],h=(t.stateRestore.state.add(t.i18n("buttons.stateRestore","State %d",void 0!==e?e+1:1),o.config),t.stateRestore.states().sort(function(e,t){e=+d(e.s.identifier),t=+d(t.s.identifier);return t<e?1:e<t?-1:0})),a=t.button("SaveStateRestore:name"),u=void 0!==a[0]&&void 0!==a[0].inst.c.buttons[0].buttons?a[0].inst.c.buttons[0].buttons:[],m=0;m<u.length;m++)"stateRestore"===u[m].extend&&(u.splice(m,1),m--);i._createInSaved&&u.push("createState");for(var v=0,g=h;v<g.length;v++){var p=g[v],f=i.splitSecondaries.slice();f.includes("updateState")&&!i.save&&f.splice(f.indexOf("updateState"),1),!f.includes("renameState")||i.save&&i.rename||f.splice(f.indexOf("renameState"),1),f.includes("removeState")&&!i.remove&&f.splice(f.indexOf("removeState"),1),u.push({_stateRestore:p,attr:{title:p.s.identifier},config:{split:f},extend:"stateRestore",text:k.entityEncode(p.s.identifier),popoverTitle:k.entityEncode(p.s.identifier)})}t.button("SaveStateRestore:name").collectionRebuild(u),s.blur();for(var b=0,S=t.buttons();b<S.length;b++){var R=S[b];y(R.node).hasClass("dtsr-removeAllStates")&&(0===h.length?t.button(R.node).disable():t.button(R.node).enable())}}},init:function(e,t,s){void 0===e.settings()[0]._stateRestore&&1<e.button("SaveStateRestore:name").length&&o(e,s)},text:function(e){return e.i18n("buttons.createState","Create State")}},c.ext.buttons.removeState={action:function(e,t,s,o){o.parent._stateRestore.remove(),s.blur()},text:function(e){return e.i18n("buttons.removeState","Remove")}},c.ext.buttons.removeAllStates={action:function(e,t,s){t.stateRestore.states().remove(!0),s.blur()},className:"dt-button dtsr-removeAllStates",init:function(e,t){e.settings()[0]._stateRestore&&0!==e.stateRestore.states().length||y(t).addClass("disabled")},text:function(e){return e.i18n("buttons.removeAllStates","Remove All States")}},c.ext.buttons.renameState={action:function(e,t,s,o){for(var i=[],a=0,n=t.settings()[0]._stateRestore.s.states;a<n.length;a++){var r=n[a];i.push(r.s.identifier)}o.parent._stateRestore.rename(void 0,i),s.blur()},text:function(e){return e.i18n("buttons.renameState","Rename")}},y(g).on("preInit.dt.dtsr",function(e,t){"dt"!==e.namespace||!t.oInit.stateRestore&&!c.defaults.stateRestore||t._stateRestore||(e=t,void 0===(t=null)&&(t=null),e=new c.Api(e),t=t||e.init().stateRestore||c.defaults.stateRestore,t=new s(e,t),l(e,t))}),c});
+
+/*! Bootstrap integration for DataTables' StateRestore
+ * © SpryMedia Ltd - datatables.net/license
+ */
+!function(n){var o,d;"function"==typeof define&&define.amd?define(["jquery","datatables.net-dt","datatables.net-staterestore"],function(e){return n(e,window,document)}):"object"==typeof exports?(o=require("jquery"),d=function(e,t){t.fn.dataTable||require("datatables.net-dt")(e,t),t.fn.dataTable.StateRestore||require("datatables.net-staterestore")(e,t)},"undefined"==typeof window?module.exports=function(e,t){return e=e||window,t=t||o(e),d(e,t),n(t,0,e.document)}:(d(window,o),module.exports=n(o,window,window.document))):n(jQuery,window,document)}(function(e,t,n){"use strict";return e.fn.dataTable});
+
diff --git a/web/static/js/guac-main.js b/web/static/js/guac-main.js
new file mode 100644
index 00000000000..7a7319c3a5c
--- /dev/null
+++ b/web/static/js/guac-main.js
@@ -0,0 +1,201 @@
+function GuacMe(element, guest_ip, vncport, session_id, recording_name) {
+    "use strict";
+
+    var terminal_connected = false;
+    var terminal_client;
+    var terminal_element;
+    var dialog_container;
+
+    var init = function() {
+        /* Process terminal URL. */
+
+        dialog_container = $(element).find('.guaconsole')[0];
+        
+        /* Build websocket url based on protocol */
+        var terminal_ws_url = location.origin.replace(/^http(s?):/, function(match, p1) {
+            return (p1 ? 'wss:' : 'ws:');
+        });
+
+        /* Initialize Guacamole Client */
+        terminal_client = new Guacamole.Client(
+            new Guacamole.WebSocketTunnel(terminal_ws_url + '/guac/websocket-tunnel/' + session_id)
+        );
+        terminal_connect(guest_ip, vncport, recording_name);
+
+        terminal_element = terminal_client.getDisplay().getElement();
+
+        /* Show the terminal.  */
+        $('#terminal').append(terminal_element);
+
+        /* Disconnect on tab close. */
+        window.onunload = function() {
+            terminal_client.disconnect();
+        };
+
+        /* Mouse handling */
+        var mouse = new Guacamole.Mouse(terminal_element);
+
+        mouse.onmousedown =
+        mouse.onmouseup   =
+        mouse.onmousemove = function(mouseState) {
+            terminal_client.sendMouseState(mouseState);
+        };
+
+        /* Keyboard handling.  */
+        var keyboard = new Guacamole.Keyboard(terminal_element);
+        var ctrl, shift = false;
+
+        keyboard.onkeydown = function (keysym) {
+            var cancel_event = true;
+
+            /* Don't cancel event on paste shortcuts. */
+            if (keysym == 0xFFE1 /* shift */
+                || keysym == 0xFFE3 /* ctrl */
+                || keysym == 0xFF63 /* insert */
+                || keysym == 0x0056 /* V */
+                || keysym == 0x0076 /* v */
+            ) {
+                cancel_event = false;
+            }
+
+            /* Remember when ctrl or shift are down. */
+            if (keysym == 0xFFE1) {
+                shift = true;
+            } else if (keysym == 0xFFE3) {
+                ctrl = true;
+            }
+
+            /* Delay sending final stroke until clipboard is updated. */
+            if ((ctrl && shift && keysym == 0x0056) /* ctrl-shift-V */
+                || (ctrl && keysym == 0x0076) /* ctrl-v */
+                || (shift && keysym == 0xFF63) /* shift-insert */
+            ) {
+                window.setTimeout(function() {
+                    terminal_client.sendKeyEvent(1, keysym);
+                }, 50);
+            } else {
+                terminal_client.sendKeyEvent(1, keysym);
+            }
+
+            return !cancel_event;
+        };
+
+        keyboard.onkeyup = function (keysym) {
+            /* Remember when ctrl or shift are released. */
+            if (keysym == 0xFFE1) {
+                shift = false;
+            } else if (keysym == 0xFFE3) {
+                ctrl = false;
+            }
+
+            /* Delay sending final stroke until clipboard is updated. */
+            if ((ctrl && shift && keysym == 0x0056) /* ctrl-shift-v */
+                || (ctrl && keysym == 0x0076) /* ctrl-v */
+                || (shift && keysym == 0xFF63) /* shift-insert */
+            ) {
+                window.setTimeout(function() {
+                    terminal_client.sendKeyEvent(0, keysym);
+                }, 50);
+            } else {
+                terminal_client.sendKeyEvent(0, keysym);
+            }
+        };
+
+        $(terminal_element)
+            /* Set tabindex so that element can be focused.  Otherwise, no
+            * keyboard events will be registered for it. */
+            .attr('tabindex', 1)
+            /* Focus on the element based on mouse movement.  Simply
+            * letting the user click on it doesn't work. */
+            .hover(
+                function() {
+                var x = window.scrollX, y = window.scrollY;
+                $(this).focus();
+                window.scrollTo(x, y);
+                }, function() {
+                $(this).blur();
+                }
+            )
+            /* Release all keys when the element loses focus. */
+            .blur(function() {
+                keyboard.reset();
+            });
+
+        /* Handle paste events when the element is in focus. */
+        $(document).on('paste', function(e) {
+            var text = e.originalEvent.clipboardData.getData('text/plain');
+            if ($(terminal_element).is(":focus")) {
+                terminal_client.setClipboard(text);
+            }
+        });
+
+        /* Error handling. */
+        terminal_client.onerror = function(guac_error) {
+            /* Reset and disconnect. */
+            terminal_client.disconnect();
+
+            var dialog = $('#launch_error');
+            var dialog_message =
+                "Could not connect to guest vm. " +
+                "The client detected an unexpected error. " +
+                "The server's error message was:";
+            var error_message = guac_error.message;
+
+            if (guac_error.message.toLowerCase().startsWith('aborted')) {
+                dialog_message = "Remote session terminated."
+                error_message = "Close tab.";
+            }
+            dialog.find('.message').html(dialog_message);
+            dialog.find('.error_msg').html(error_message);
+            dialog.dialog({dialogClass: 'no-close'});
+            dialog.dialog(dialog_container);
+        };
+
+
+    };
+
+    var terminal_connect = function(guest_ip, vncport, recording_name) {
+        if (terminal_connected) {
+            terminal_client.disconnect()
+            terminal_connected = false;
+        }
+
+        try {
+            terminal_client.connect($.param({
+                'guest_ip': guest_ip,
+                'vncport': vncport,
+                'recording_name': recording_name,
+            }));
+            terminal_connected = true;
+        } catch (e) {
+            console.warn(e);
+            terminal_connected = false;
+            throw e;
+        }
+    };
+
+    init();
+}
+
+function stopTask(taskId) {
+    var apiUrl = location.origin + "/apiv2/tasks/status/" + taskId + "/";
+
+    var postData = {
+        status: 'finish',
+    };
+
+    fetch(apiUrl, {
+        method: 'POST',
+        headers: {
+            'Content-Type': 'application/json',
+        },
+        body: JSON.stringify(postData),
+    })
+    .then(response => response.json())
+    .then(data => {
+        console.log('Response:', data);
+    })
+    .catch(error => {
+        console.error('Error:', error);
+    });
+}
\ No newline at end of file
diff --git a/web/static/js/guac-playback.js b/web/static/js/guac-playback.js
new file mode 100644
index 00000000000..c1fa871d7b8
--- /dev/null
+++ b/web/static/js/guac-playback.js
@@ -0,0 +1,230 @@
+/*
+ * Licensed to the Apache Software Foundation (ASF) under one
+ * or more contributor license agreements.  See the NOTICE file
+ * distributed with this work for additional information
+ * regarding copyright ownership.  The ASF licenses this file
+ * to you under the Apache License, Version 2.0 (the
+ * "License"); you may not use this file except in compliance
+ * with the License.  You may obtain a copy of the License at
+ *
+ *   http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing,
+ * software distributed under the License is distributed on an
+ * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+ * KIND, either express or implied.  See the License for the
+ * specific language governing permissions and limitations
+ * under the License.
+ */
+
+function initExamplePlayer(playback_url) {
+    "use strict";
+    
+    /**
+     * The URL of the Guacamole session recording which should be played back.
+     *
+     * @constant
+     * @type String
+     */
+
+     var terminal_url = location.origin + "/recordings/playback/recfile/" + playback_url;
+     var RECORDING_URL = terminal_url;
+
+    /**
+     * The element representing the session recording player.
+     *
+     * @type Element
+     */
+    var player = document.getElementById('player');
+
+    /**
+     * The element which will contain the recording display.
+     *
+     * @type Element
+     */
+    var display = document.getElementById('display');
+
+    /**
+     * Play/pause toggle button.
+     *
+     * @type Element
+     */
+    var playPause = document.getElementById('play-pause');
+
+    /**
+     * Button for cancelling in-progress seek operations.
+     *
+     * @type Element
+     */
+    var cancelSeek = document.getElementById('cancel-seek');
+
+    /**
+     * Text status display indicating the current playback position within the
+     * recording.
+     *
+     * @type Element
+     */
+    var position = document.getElementById('position');
+
+    /**
+     * Slider indicating the current playback position within the recording,
+     * and allowing the user to change the playback position.
+     *
+     * @type Element
+     */
+    var positionSlider = document.getElementById('position-slider');
+
+    /**
+     * Text status display indicating the current length of the recording.
+     *
+     * @type Element
+     */
+    var duration = document.getElementById('duration');
+
+    /**
+     * The tunnel which should be used to download the Guacamole session
+     * recording.
+     *
+     * @type Guacamole.Tunnel
+     */
+    var tunnel = new Guacamole.StaticHTTPTunnel(RECORDING_URL);
+
+    /**
+     * Guacamole.SessionRecording instance to be used to playback the session
+     * recording.
+     *
+     * @type Guacamole.SessionRecording
+     */
+    var recording = new Guacamole.SessionRecording(tunnel);
+
+    /**
+     * The Guacamole.Display which displays the recording during playback.
+     *
+     * @type Guacamole.Display
+     */
+    var recordingDisplay = recording.getDisplay();
+
+    /**
+     * Converts the given number to a string, adding leading zeroes as necessary
+     * to reach a specific minimum length.
+     *
+     * @param {Numer} num
+     *     The number to convert to a string.
+     *
+     * @param {Number} minLength
+     *     The minimum length of the resulting string, in characters.
+     *
+     * @returns {String}
+     *     A string representation of the given number, with leading zeroes
+     *     added as necessary to reach the specified minimum length.
+     */
+    var zeroPad = function zeroPad(num, minLength) {
+
+        // Convert provided number to string
+        var str = num.toString();
+
+        // Add leading zeroes until string is long enough
+        while (str.length < minLength)
+            str = '0' + str;
+
+        return str;
+
+    };
+
+    /**
+     * Converts the given millisecond timestamp into a human-readable string in
+     * MM:SS format.
+     *
+     * @param {Number} millis
+     *     An arbitrary timestamp, in milliseconds.
+     *
+     * @returns {String}
+     *     A human-readable string representation of the given timestamp, in
+     *     MM:SS format.
+     */
+    var formatTime = function formatTime(millis) {
+
+        // Calculate total number of whole seconds
+        var totalSeconds = Math.floor(millis / 1000);
+
+        // Split into seconds and minutes
+        var seconds = totalSeconds % 60;
+        var minutes = Math.floor(totalSeconds / 60);
+
+        // Format seconds and minutes as MM:SS
+        return zeroPad(minutes, 2) + ':' + zeroPad(seconds, 2);
+
+    };
+
+    // Add playback display to DOM
+    display.appendChild(recordingDisplay.getElement());
+
+    // Begin downloading the recording
+    recording.connect();
+
+    // If playing, the play/pause button should read "Pause"
+    recording.onplay = function() {
+        playPause.textContent = 'Pause';
+    };
+
+    // If paused, the play/pause button should read "Play"
+    recording.onpause = function() {
+        playPause.textContent = 'Play';
+    };
+
+    // Toggle play/pause when display or button are clicked
+    display.onclick = playPause.onclick = function() {
+        if (!recording.isPlaying())
+            recording.play();
+        else
+            recording.pause();
+    };
+
+    // Resume playback when cancel button is clicked
+    cancelSeek.onclick = function cancelSeekOperation(e) {
+        recording.play();
+        player.className = '';
+        e.stopPropagation();
+    };
+
+    // Fit display within containing div
+    recordingDisplay.onresize = function displayResized(width, height) {
+
+        // Do not scale if display has no width
+        if (!width)
+            return;
+
+        // Scale display to fit width of container
+        recordingDisplay.scale(display.offsetWidth / width);
+
+    };
+
+    // Update slider and status when playback position changes
+    recording.onseek = function positionChanged(millis) {
+        position.textContent = formatTime(millis);
+        positionSlider.value = millis;
+    };
+
+    // Update slider and status when duration changes
+    recording.onprogress = function durationChanged(millis) {
+        duration.textContent = formatTime(millis);
+        positionSlider.max = millis;
+    };
+
+    // Seek within recording if slider is moved
+    positionSlider.onchange = function sliderPositionChanged() {
+
+        // Seek is in progress
+        player.className = 'seeking';
+
+        // Request seek
+        recording.seek(positionSlider.value, function seekComplete() {
+
+            // Seek has completed
+            player.className = '';
+
+        });
+
+    };
+
+}
diff --git a/web/static/js/guacamole-1.4.0-all.min.js b/web/static/js/guacamole-1.4.0-all.min.js
new file mode 100644
index 00000000000..6467f8e2a82
--- /dev/null
+++ b/web/static/js/guacamole-1.4.0-all.min.js
@@ -0,0 +1,155 @@
+'use strict';var Guacamole=Guacamole||{};Guacamole.ArrayBufferReader=function(b){var a=this;b.onblob=function(b){b=window.atob(b);for(var c=new ArrayBuffer(b.length),e=new Uint8Array(c),d=0;d<b.length;d++)e[d]=b.charCodeAt(d);if(a.ondata)a.ondata(c)};b.onend=function(){if(a.onend)a.onend()};this.onend=this.ondata=null};Guacamole=Guacamole||{};
+Guacamole.ArrayBufferWriter=function(b){function a(a){for(var c="",d=0;d<a.byteLength;d++)c+=String.fromCharCode(a[d]);b.sendBlob(window.btoa(c))}var d=this;b.onack=function(a){if(d.onack)d.onack(a)};this.blobLength=Guacamole.ArrayBufferWriter.DEFAULT_BLOB_LENGTH;this.sendData=function(b){b=new Uint8Array(b);if(b.length<=d.blobLength)a(b);else for(var c=0;c<b.length;c+=d.blobLength)a(b.subarray(c,c+d.blobLength))};this.sendEnd=function(){b.sendEnd()};this.onack=null};
+Guacamole.ArrayBufferWriter.DEFAULT_BLOB_LENGTH=6048;Guacamole=Guacamole||{};Guacamole.AudioContextFactory={singleton:null,getAudioContext:function(){var b=window.AudioContext||window.webkitAudioContext;if(b)try{return Guacamole.AudioContextFactory.singleton||(Guacamole.AudioContextFactory.singleton=new b),Guacamole.AudioContextFactory.singleton}catch(a){}return null}};Guacamole=Guacamole||{};Guacamole.AudioPlayer=function(){this.sync=function(){}};Guacamole.AudioPlayer.isSupportedType=function(b){return Guacamole.RawAudioPlayer.isSupportedType(b)};
+Guacamole.AudioPlayer.getSupportedTypes=function(){return Guacamole.RawAudioPlayer.getSupportedTypes()};Guacamole.AudioPlayer.getInstance=function(b,a){return Guacamole.RawAudioPlayer.isSupportedType(a)?new Guacamole.RawAudioPlayer(b,a):null};
+Guacamole.RawAudioPlayer=function(b,a){var d=Guacamole.RawAudioFormat.parse(a),c=Guacamole.AudioContextFactory.getAudioContext(),e=c.currentTime;b=new Guacamole.ArrayBufferReader(b);var f=1===d.bytesPerSample?window.Int8Array:window.Int16Array,k=1===d.bytesPerSample?128:32768,m=[],n=function(a){if(1>=a.length)return a[0];var b=0;a.forEach(function(a){b+=a.length});var c=0,d=new f(b);a.forEach(function(a){d.set(a,c);c+=a.length});return d};b.ondata=function(a){m.push(new f(new f(a)));if(a=n(m)){var b=
+Number.MAX_VALUE,p=a.length,g=Math.floor(.02*d.rate);for(g=Math.max(d.channels*g,d.channels*(Math.floor(a.length/d.channels)-g));g<a.length;g+=d.channels){for(var t=0,q=0;q<d.channels;q++)t+=Math.abs(a[g+q]);t<=b&&(p=g+d.channels,b=t)}m=p===a.length?[a]:[new f(a.buffer.slice(0,p*d.bytesPerSample)),new f(a.buffer.slice(p*d.bytesPerSample))];a=m.shift()}else a=null;if(a){b=c.currentTime;e<b&&(e=b);b=c.createBufferSource();b.connect(c.destination);b.start||(b.start=b.noteOn);p=a;g=p.length/d.channels;
+t=c.currentTime;e<t&&(e=t);t=c.createBuffer(d.channels,g,d.rate);for(q=0;q<d.channels;q++)for(var u=t.getChannelData(q),w=q,r=0;r<g;r++)u[r]=p[w]/k,w+=d.channels;b.buffer=t;b.start(e);e+=a.length/d.channels/d.rate}};this.sync=function(){e=Math.min(e,c.currentTime+.3)}};Guacamole.RawAudioPlayer.prototype=new Guacamole.AudioPlayer;Guacamole.RawAudioPlayer.isSupportedType=function(b){return Guacamole.AudioContextFactory.getAudioContext()?null!==Guacamole.RawAudioFormat.parse(b):!1};
+Guacamole.RawAudioPlayer.getSupportedTypes=function(){return Guacamole.AudioContextFactory.getAudioContext()?["audio/L8","audio/L16"]:[]};Guacamole=Guacamole||{};Guacamole.AudioRecorder=function(){this.onerror=this.onclose=null};Guacamole.AudioRecorder.isSupportedType=function(b){return Guacamole.RawAudioRecorder.isSupportedType(b)};Guacamole.AudioRecorder.getSupportedTypes=function(){return Guacamole.RawAudioRecorder.getSupportedTypes()};
+Guacamole.AudioRecorder.getInstance=function(b,a){return Guacamole.RawAudioRecorder.isSupportedType(a)?new Guacamole.RawAudioRecorder(b,a):null};
+Guacamole.RawAudioRecorder=function(b,a){var d=this,c=Guacamole.RawAudioFormat.parse(a),e=Guacamole.AudioContextFactory.getAudioContext();navigator.mediaDevices||(navigator.mediaDevices={});navigator.mediaDevices.getUserMedia||(navigator.mediaDevices.getUserMedia=(navigator.getUserMedia||navigator.webkitGetUserMedia||navigator.mozGetUserMedia||navigator.msGetUserMedia).bind(navigator));var f=new Guacamole.ArrayBufferWriter(b),k=1===c.bytesPerSample?window.Int8Array:window.Int16Array,m=1===c.bytesPerSample?
+128:32768,n=0,g=0,l=null,p=null,v=null,t=function(a){if(0===a)return 1;a*=Math.PI;return Math.sin(a)/a},q=function(a){n+=a.length;var b=Math.round(n*c.rate/a.sampleRate)-g;g+=b;for(var d=new k(b*c.channels),h=0;h<c.channels;h++)for(var e=a.getChannelData(h),q=h,f=0;f<b;f++){for(var u=q,p=e,l=f/(b-1)*(p.length-1),G=Math.floor(l)+3,r=0,w=Math.floor(l)-3+1;w<=G;w++){var v=p[w]||0;var D=l-w;D=-3<D&&3>D?t(D)*t(D/3):0;r+=v*D}d[u]=r*m;q+=c.channels}return d},u=function(a){v=e.createScriptProcessor(2048,
+c.channels,c.channels);v.connect(e.destination);v.onaudioprocess=function(a){f.sendData(q(a.inputBuffer).buffer)};p=e.createMediaStreamSource(a);p.connect(v);"suspended"===e.state&&e.resume();l=a},w=function(){f.sendEnd();if(d.onerror)d.onerror()};f.onack=function(a){if(a.code!==Guacamole.Status.Code.SUCCESS||l){p&&p.disconnect();v&&v.disconnect();if(l)for(var b=l.getTracks(),c=0;c<b.length;c++)b[c].stop();l=p=v=null;f.sendEnd();f.onack=null;if(a.code===Guacamole.Status.Code.RESOURCE_CLOSED){if(d.onclose)d.onclose()}else if(d.onerror)d.onerror()}else(a=
+navigator.mediaDevices.getUserMedia({audio:!0},u,w))&&a.then&&a.then(u,w)}};Guacamole.RawAudioRecorder.prototype=new Guacamole.AudioRecorder;Guacamole.RawAudioRecorder.isSupportedType=function(b){return Guacamole.AudioContextFactory.getAudioContext()?null!==Guacamole.RawAudioFormat.parse(b):!1};Guacamole.RawAudioRecorder.getSupportedTypes=function(){return Guacamole.AudioContextFactory.getAudioContext()?["audio/L8","audio/L16"]:[]};Guacamole=Guacamole||{};
+Guacamole.BlobReader=function(b,a){var d=this,c=0;var e=window.BlobBuilder?new BlobBuilder:window.WebKitBlobBuilder?new WebKitBlobBuilder:window.MozBlobBuilder?new MozBlobBuilder:new function(){var b=[];this.append=function(c){b.push(new Blob([c],{type:a}))};this.getBlob=function(){return new Blob(b,{type:a})}};b.onblob=function(a){a=window.atob(a);for(var f=new ArrayBuffer(a.length),m=new Uint8Array(f),n=0;n<a.length;n++)m[n]=a.charCodeAt(n);e.append(f);c+=f.byteLength;if(d.onprogress)d.onprogress(f.byteLength);
+b.sendAck("OK",0)};b.onend=function(){if(d.onend)d.onend()};this.getLength=function(){return c};this.getBlob=function(){return e.getBlob()};this.onend=this.onprogress=null};Guacamole=Guacamole||{};
+Guacamole.BlobWriter=function(b){var a=this,d=new Guacamole.ArrayBufferWriter(b);d.onack=function(b){if(a.onack)a.onack(b)};this.sendBlob=function(b){var c=0,f=new FileReader,k=function(){if(c>=b.size){if(a.oncomplete)a.oncomplete(b)}else{a:{var e=c;var n=c+d.blobLength,g=(b.slice||b.webkitSlice||b.mozSlice).bind(b),l=n-e;if(l!==n){var p=g(e,l);if(p.size===l){e=p;break a}}e=g(e,n)}c+=d.blobLength;f.readAsArrayBuffer(e)}};f.onload=function(){d.sendData(f.result);d.onack=function(e){if(a.onack)a.onack(e);
+if(!e.isError()){if(a.onprogress)a.onprogress(b,c-d.blobLength);k()}}};f.onerror=function(){if(a.onerror)a.onerror(b,c,f.error)};k()};this.sendEnd=function(){d.sendEnd()};this.oncomplete=this.onprogress=this.onerror=this.onack=null};Guacamole=Guacamole||{};
+Guacamole.Client=function(b){function a(h){if(h!=e&&(e=h,c.onstatechange))c.onstatechange(e)}function d(){return 3==e||2==e}var c=this,e=0,f=0,k=null,m={0:"butt",1:"round",2:"square"},n={0:"bevel",1:"miter",2:"round"},g=new Guacamole.Display,l={},p={},v=[],t=[],q=[],u=new Guacamole.IntegerPool,w=[];this.exportState=function(h){var a={currentState:e,currentTimestamp:f,layers:{}},b={},c;for(c in l)b[c]=l[c];g.flush(function(){for(var c in b){var d=parseInt(c),e=b[c],x=e.toCanvas(),q={width:e.width,
+height:e.height};e.width&&e.height&&(q.url=x.toDataURL("image/png"));if(0<d){q.x=e.x;q.y=e.y;q.z=e.z;q.alpha=e.alpha;q.matrix=e.matrix;d=q;a:{x=void 0;if(e=e.parent)for(x in l)if(e===l[x]){e=parseInt(x);break a}e=null}d.parent=e}a.layers[c]=q}h(a)})};this.importState=function(h,a){var b;e=h.currentState;f=h.currentTimestamp;for(b in l){var c=parseInt(b);0<c&&g.dispose(l[b])}l={};for(b in h.layers){c=parseInt(b);var d=h.layers[b],x=r(c);g.resize(x,d.width,d.height);d.url&&(g.setChannelMask(x,Guacamole.Layer.SRC),
+g.draw(x,0,0,d.url));0<c&&0<=d.parent&&(c=r(d.parent),g.move(x,c,d.x,d.y,d.z),g.shade(x,d.alpha),d=d.matrix,g.distort(x,d[0],d[1],d[2],d[3],d[4],d[5]))}g.flush(a)};this.getDisplay=function(){return g};this.sendSize=function(h,a){d()&&b.sendMessage("size",h,a)};this.sendKeyEvent=function(h,a){d()&&b.sendMessage("key",a,h)};this.sendMouseState=function(h,a){if(d()){var c=h.x,e=h.y;a&&(c/=g.getScale(),e/=g.getScale());g.moveCursor(Math.floor(c),Math.floor(e));a=0;h.left&&(a|=1);h.middle&&(a|=2);h.right&&
+(a|=4);h.up&&(a|=8);h.down&&(a|=16);b.sendMessage("mouse",Math.floor(c),Math.floor(e),a)}};this.sendTouchState=function(a,c){if(d()){var h=a.x,e=a.y;c&&(h/=g.getScale(),e/=g.getScale());b.sendMessage("touch",a.id,Math.floor(h),Math.floor(e),Math.floor(a.radiusX),Math.floor(a.radiusY),a.angle,a.force)}};this.createOutputStream=function(){var a=u.next();return w[a]=new Guacamole.OutputStream(c,a)};this.createAudioStream=function(a){var h=c.createOutputStream();b.sendMessage("audio",h.index,a);return h};
+this.createFileStream=function(a,d){var h=c.createOutputStream();b.sendMessage("file",h.index,a,d);return h};this.createPipeStream=function(a,d){var h=c.createOutputStream();b.sendMessage("pipe",h.index,a,d);return h};this.createClipboardStream=function(a){var h=c.createOutputStream();b.sendMessage("clipboard",h.index,a);return h};this.createArgumentValueStream=function(a,d){var h=c.createOutputStream();b.sendMessage("argv",h.index,a,d);return h};this.createObjectOutputStream=function(a,d,e){var h=
+c.createOutputStream();b.sendMessage("put",a,h.index,d,e);return h};this.requestObjectInputStream=function(a,c){d()&&b.sendMessage("get",a,c)};this.sendAck=function(a,c,e){d()&&b.sendMessage("ack",a,c,e)};this.sendBlob=function(a,c){d()&&b.sendMessage("blob",a,c)};this.endStream=function(a){d()&&(b.sendMessage("end",a),w[a]&&(u.free(a),delete w[a]))};this.onsync=this.onrequired=this.onpipe=this.onfilesystem=this.onfile=this.onclipboard=this.onargv=this.onmultitouch=this.onvideo=this.onaudio=this.onerror=
+this.onname=this.onstatechange=null;var r=function(a){var h=l[a];h||(h=0===a?g.getDefaultLayer():0<a?g.createLayer():g.createBuffer(),l[a]=h);return h},y={"miter-limit":function(a,b){g.setMiterLimit(a,parseFloat(b))},"multi-touch":function(a,b){if(c.onmultitouch&&a instanceof Guacamole.Display.VisibleLayer)c.onmultitouch(a,parseInt(b))}},z={ack:function(a){var h=parseInt(a[0]),b=a[1];a=parseInt(a[2]);var c=w[h];if(c){if(c.onack)c.onack(new Guacamole.Status(a,b));256<=a&&w[h]===c&&(u.free(h),delete w[h])}},
+arc:function(a){var h=r(parseInt(a[0])),b=parseInt(a[1]),c=parseInt(a[2]),d=parseInt(a[3]),e=parseFloat(a[4]),q=parseFloat(a[5]);a=parseInt(a[6]);g.arc(h,b,c,d,e,q,0!=a)},argv:function(a){var h=parseInt(a[0]),b=a[1];a=a[2];c.onargv?(h=t[h]=new Guacamole.InputStream(c,h),c.onargv(h,b,a)):c.sendAck(h,"Receiving argument values unsupported",256)},audio:function(a){var h=parseInt(a[0]);a=a[1];var b=t[h]=new Guacamole.InputStream(c,h),d=null;c.onaudio&&(d=c.onaudio(b,a));d||(d=Guacamole.AudioPlayer.getInstance(b,
+a));d?(p[h]=d,c.sendAck(h,"OK",0)):c.sendAck(h,"BAD TYPE",783)},blob:function(a){var h=parseInt(a[0]);a=a[1];if((h=t[h])&&h.onblob)h.onblob(a)},body:function(a){var h=parseInt(a[0]);h=q[h];var b=parseInt(a[1]),d=a[2];a=a[3];h&&h.onbody?(b=t[b]=new Guacamole.InputStream(c,b),h.onbody(b,d,a)):c.sendAck(b,"Receipt of body unsupported",256)},cfill:function(a){var b=parseInt(a[0]),h=r(parseInt(a[1])),c=parseInt(a[2]),d=parseInt(a[3]),e=parseInt(a[4]);a=parseInt(a[5]);g.setChannelMask(h,b);g.fillColor(h,
+c,d,e,a)},clip:function(a){a=r(parseInt(a[0]));g.clip(a)},clipboard:function(a){var b=parseInt(a[0]);a=a[1];c.onclipboard?(b=t[b]=new Guacamole.InputStream(c,b),c.onclipboard(b,a)):c.sendAck(b,"Clipboard unsupported",256)},close:function(a){a=r(parseInt(a[0]));g.close(a)},copy:function(a){var b=r(parseInt(a[0])),h=parseInt(a[1]),c=parseInt(a[2]),d=parseInt(a[3]),e=parseInt(a[4]),q=parseInt(a[5]),f=r(parseInt(a[6])),u=parseInt(a[7]);a=parseInt(a[8]);g.setChannelMask(f,q);g.copy(b,h,c,d,e,f,u,a)},cstroke:function(a){var b=
+parseInt(a[0]),h=r(parseInt(a[1])),c=m[parseInt(a[2])],d=n[parseInt(a[3])],e=parseInt(a[4]),q=parseInt(a[5]),f=parseInt(a[6]),u=parseInt(a[7]);a=parseInt(a[8]);g.setChannelMask(h,b);g.strokeColor(h,c,d,e,q,f,u,a)},cursor:function(a){var b=parseInt(a[0]),h=parseInt(a[1]),c=r(parseInt(a[2])),d=parseInt(a[3]),e=parseInt(a[4]),q=parseInt(a[5]);a=parseInt(a[6]);g.setCursor(b,h,c,d,e,q,a)},curve:function(a){var b=r(parseInt(a[0])),h=parseInt(a[1]),c=parseInt(a[2]),d=parseInt(a[3]),e=parseInt(a[4]),q=parseInt(a[5]);
+a=parseInt(a[6]);g.curveTo(b,h,c,d,e,q,a)},disconnect:function(a){c.disconnect()},dispose:function(a){a=parseInt(a[0]);if(0<a){var b=r(a);g.dispose(b);delete l[a]}else 0>a&&delete l[a]},distort:function(a){var b=parseInt(a[0]),c=parseFloat(a[1]),h=parseFloat(a[2]),d=parseFloat(a[3]),e=parseFloat(a[4]),q=parseFloat(a[5]);a=parseFloat(a[6]);0<=b&&(b=r(b),g.distort(b,c,h,d,e,q,a))},error:function(a){var b=a[0];a=parseInt(a[1]);if(c.onerror)c.onerror(new Guacamole.Status(a,b));c.disconnect()},end:function(a){a=
+parseInt(a[0]);var b=t[a];if(b){if(b.onend)b.onend();delete t[a]}},file:function(a){var b=parseInt(a[0]),h=a[1];a=a[2];c.onfile?(b=t[b]=new Guacamole.InputStream(c,b),c.onfile(b,h,a)):c.sendAck(b,"File transfer unsupported",256)},filesystem:function(a){var b=parseInt(a[0]);a=a[1];c.onfilesystem&&(b=q[b]=new Guacamole.Object(c,b),c.onfilesystem(b,a))},identity:function(a){a=r(parseInt(a[0]));g.setTransform(a,1,0,0,1,0,0)},img:function(a){var b=parseInt(a[0]),h=parseInt(a[1]),d=r(parseInt(a[2])),e=
+a[3],q=parseInt(a[4]);a=parseInt(a[5]);b=t[b]=new Guacamole.InputStream(c,b);g.setChannelMask(d,h);g.drawStream(d,q,a,b,e)},jpeg:function(a){var b=parseInt(a[0]),c=r(parseInt(a[1])),d=parseInt(a[2]),h=parseInt(a[3]);a=a[4];g.setChannelMask(c,b);g.draw(c,d,h,"data:image/jpeg;base64,"+a)},lfill:function(a){var b=parseInt(a[0]),c=r(parseInt(a[1]));a=r(parseInt(a[2]));g.setChannelMask(c,b);g.fillLayer(c,a)},line:function(a){var b=r(parseInt(a[0])),c=parseInt(a[1]);a=parseInt(a[2]);g.lineTo(b,c,a)},lstroke:function(a){var b=
+parseInt(a[0]),c=r(parseInt(a[1]));a=r(parseInt(a[2]));g.setChannelMask(c,b);g.strokeLayer(c,a)},mouse:function(a){var b=parseInt(a[0]);a=parseInt(a[1]);g.showCursor(!0);g.moveCursor(b,a)},move:function(a){var b=parseInt(a[0]),c=parseInt(a[1]),d=parseInt(a[2]),e=parseInt(a[3]);a=parseInt(a[4]);0<b&&0<=c&&(b=r(b),c=r(c),g.move(b,c,d,e,a))},name:function(a){if(c.onname)c.onname(a[0])},nest:function(a){var c=parseInt(a[0]),d=v[c];null==d&&(d=v[c]=new Guacamole.Parser,d.oninstruction=b.oninstruction);
+d.receive(a[1])},pipe:function(a){var b=parseInt(a[0]),d=a[1];a=a[2];c.onpipe?(b=t[b]=new Guacamole.InputStream(c,b),c.onpipe(b,d,a)):c.sendAck(b,"Named pipes unsupported",256)},png:function(a){var b=parseInt(a[0]),c=r(parseInt(a[1])),d=parseInt(a[2]),e=parseInt(a[3]);a=a[4];g.setChannelMask(c,b);g.draw(c,d,e,"data:image/png;base64,"+a)},pop:function(a){a=r(parseInt(a[0]));g.pop(a)},push:function(a){a=r(parseInt(a[0]));g.push(a)},rect:function(a){var b=r(parseInt(a[0])),c=parseInt(a[1]),d=parseInt(a[2]),
+e=parseInt(a[3]);a=parseInt(a[4]);g.rect(b,c,d,e,a)},required:function(a){if(c.onrequired)c.onrequired(a)},reset:function(a){a=r(parseInt(a[0]));g.reset(a)},set:function(a){var b=r(parseInt(a[0])),c=a[2];(a=y[a[1]])&&a(b,c)},shade:function(a){var b=parseInt(a[0]);a=parseInt(a[1]);0<=b&&(b=r(b),g.shade(b,a))},size:function(a){var b=parseInt(a[0]);b=r(b);var c=parseInt(a[1]);a=parseInt(a[2]);g.resize(b,c,a)},start:function(a){var b=r(parseInt(a[0])),c=parseInt(a[1]);a=parseInt(a[2]);g.moveTo(b,c,a)},
+sync:function(d){var q=parseInt(d[0]);g.flush(function(){for(var a in p){var c=p[a];c&&c.sync()}q!==f&&(b.sendMessage("sync",q),f=q)});2===e&&a(3);if(c.onsync)c.onsync(q)},transfer:function(a){var b=r(parseInt(a[0])),c=parseInt(a[1]),d=parseInt(a[2]),e=parseInt(a[3]),q=parseInt(a[4]),f=parseInt(a[5]),h=r(parseInt(a[6])),u=parseInt(a[7]);a=parseInt(a[8]);3===f?g.put(b,c,d,e,q,h,u,a):5!==f&&g.transfer(b,c,d,e,q,h,u,a,Guacamole.Client.DefaultTransferFunction[f])},transform:function(a){var b=r(parseInt(a[0])),
+c=parseFloat(a[1]),d=parseFloat(a[2]),e=parseFloat(a[3]),q=parseFloat(a[4]),f=parseFloat(a[5]);a=parseFloat(a[6]);g.transform(b,c,d,e,q,f,a)},undefine:function(a){a=parseInt(a[0]);if((a=q[a])&&a.onundefine)a.onundefine()},video:function(a){var b=parseInt(a[0]),d=r(parseInt(a[1]));a=a[2];var e=t[b]=new Guacamole.InputStream(c,b),q=null;c.onvideo&&(q=c.onvideo(e,d,a));q||(q=Guacamole.VideoPlayer.getInstance(e,d,a));q?c.sendAck(b,"OK",0):c.sendAck(b,"BAD TYPE",783)}};b.oninstruction=function(a,b){(a=
+z[a])&&a(b)};this.disconnect=function(){5!=e&&4!=e&&(a(4),k&&window.clearInterval(k),b.sendMessage("disconnect"),b.disconnect(),a(5))};this.connect=function(c){a(1);try{b.connect(c)}catch(x){throw a(0),x;}k=window.setInterval(function(){b.sendMessage("nop")},5E3);a(2)}};
+Guacamole.Client.DefaultTransferFunction={0:function(b,a){a.red=a.green=a.blue=0},15:function(b,a){a.red=a.green=a.blue=255},3:function(b,a){a.red=b.red;a.green=b.green;a.blue=b.blue;a.alpha=b.alpha},5:function(b,a){},12:function(b,a){a.red=255&~b.red;a.green=255&~b.green;a.blue=255&~b.blue;a.alpha=b.alpha},10:function(b,a){a.red=255&~a.red;a.green=255&~a.green;a.blue=255&~a.blue},1:function(b,a){a.red&=b.red;a.green&=b.green;a.blue&=b.blue},14:function(b,a){a.red=255&~(b.red&a.red);a.green=255&~(b.green&
+a.green);a.blue=255&~(b.blue&a.blue)},7:function(b,a){a.red|=b.red;a.green|=b.green;a.blue|=b.blue},8:function(b,a){a.red=255&~(b.red|a.red);a.green=255&~(b.green|a.green);a.blue=255&~(b.blue|a.blue)},6:function(b,a){a.red^=b.red;a.green^=b.green;a.blue^=b.blue},9:function(b,a){a.red=255&~(b.red^a.red);a.green=255&~(b.green^a.green);a.blue=255&~(b.blue^a.blue)},4:function(b,a){a.red&=255&~b.red;a.green&=255&~b.green;a.blue&=255&~b.blue},13:function(b,a){a.red=255&(~b.red|a.red);a.green=255&(~b.green|
+a.green);a.blue=255&(~b.blue|a.blue)},2:function(b,a){a.red=255&b.red&~a.red;a.green=255&b.green&~a.green;a.blue=255&b.blue&~a.blue},11:function(b,a){a.red=255&(b.red|~a.red);a.green=255&(b.green|~a.green);a.blue=255&(b.blue|~a.blue)}};Guacamole=Guacamole||{};Guacamole.DataURIReader=function(b,a){var d=this,c="data:"+a+";base64,";b.onblob=function(a){c+=a};b.onend=function(){if(d.onend)d.onend()};this.getURI=function(){return c};this.onend=null};Guacamole=Guacamole||{};
+Guacamole.Display=function(){function b(){for(var a=0;a<t.length;){var b=t[a];if(!b.isReady())break;b.flush();a++}t.splice(0,a)}function a(a,b){this.isReady=function(){for(var a=0;a<b.length;a++)if(b[a].blocked)return!1;return!0};this.flush=function(){for(var c=0;c<b.length;c++)b[c].execute();a&&a()}}function d(a,c){var d=this;this.blocked=c;this.unblock=function(){d.blocked&&(d.blocked=!1,b())};this.execute=function(){a&&a()}}function c(a,b){a=new d(a,b);v.push(a);return a}var e=this,f=0,k=0,m=1,
+n=document.createElement("div");n.style.position="relative";n.style.width=f+"px";n.style.height=k+"px";n.style.transformOrigin=n.style.webkitTransformOrigin=n.style.MozTransformOrigin=n.style.OTransformOrigin=n.style.msTransformOrigin="0 0";var g=new Guacamole.Display.VisibleLayer(f,k),l=new Guacamole.Display.VisibleLayer(0,0);l.setChannelMask(Guacamole.Layer.SRC);n.appendChild(g.getElement());n.appendChild(l.getElement());var p=document.createElement("div");p.style.position="relative";p.style.width=
+f*m+"px";p.style.height=k*m+"px";p.appendChild(n);this.cursorY=this.cursorX=this.cursorHotspotY=this.cursorHotspotX=0;this.oncursor=this.onresize=null;var v=[],t=[];this.getElement=function(){return p};this.getWidth=function(){return f};this.getHeight=function(){return k};this.getDefaultLayer=function(){return g};this.getCursorLayer=function(){return l};this.createLayer=function(){var a=new Guacamole.Display.VisibleLayer(f,k);a.move(g,0,0,0);return a};this.createBuffer=function(){var a=new Guacamole.Layer(0,
+0);a.autosize=1;return a};this.flush=function(c){t.push(new a(c,v));v=[];b()};this.setCursor=function(a,b,d,f,p,g,h){c(function(){e.cursorHotspotX=a;e.cursorHotspotY=b;l.resize(g,h);l.copy(d,f,p,g,h,0,0);e.moveCursor(e.cursorX,e.cursorY);if(e.oncursor)e.oncursor(l.toCanvas(),a,b)})};this.showCursor=function(a){var b=l.getElement(),c=b.parentNode;!1===a?c&&c.removeChild(b):c!==n&&n.appendChild(b)};this.moveCursor=function(a,b){l.translate(a-e.cursorHotspotX,b-e.cursorHotspotY);e.cursorX=a;e.cursorY=
+b};this.resize=function(a,b,d){c(function(){a.resize(b,d);if(a===g&&(f=b,k=d,n.style.width=f+"px",n.style.height=k+"px",p.style.width=f*m+"px",p.style.height=k*m+"px",e.onresize))e.onresize(b,d)})};this.drawImage=function(a,b,d,e){c(function(){a.drawImage(b,d,e)})};this.drawBlob=function(a,b,d,e){if(window.createImageBitmap){var f;var q=c(function(){a.drawImage(b,d,f)},!0);window.createImageBitmap(e).then(function(a){f=a;q.unblock()})}else{var p=URL.createObjectURL(e);q=c(function(){u.width&&u.height&&
+a.drawImage(b,d,u);URL.revokeObjectURL(p)},!0);var u=new Image;u.onload=q.unblock;u.onerror=q.unblock;u.src=p}};this.drawStream=function(a,b,c,d,f){if(window.createImageBitmap){var q=new Guacamole.BlobReader(d,f);q.onend=function(){e.drawBlob(a,b,c,q.getBlob())}}else q=new Guacamole.DataURIReader(d,f),q.onend=function(){e.draw(a,b,c,q.getURI())}};this.draw=function(a,b,d,e){var f=c(function(){q.width&&q.height&&a.drawImage(b,d,q)},!0),q=new Image;q.onload=f.unblock;q.onerror=f.unblock;q.src=e};this.play=
+function(a,b,d,e){var f=document.createElement("video");f.type=b;f.src=e;f.addEventListener("play",function(){function b(){a.drawImage(0,0,f);f.ended||window.setTimeout(b,20)}b()},!1);c(f.play)};this.transfer=function(a,b,d,e,f,p,h,g,l){c(function(){p.transfer(a,b,d,e,f,h,g,l)})};this.put=function(a,b,d,e,f,p,h,g){c(function(){p.put(a,b,d,e,f,h,g)})};this.copy=function(a,b,d,e,f,p,h,g){c(function(){p.copy(a,b,d,e,f,h,g)})};this.moveTo=function(a,b,d){c(function(){a.moveTo(b,d)})};this.lineTo=function(a,
+b,d){c(function(){a.lineTo(b,d)})};this.arc=function(a,b,d,e,f,p,g){c(function(){a.arc(b,d,e,f,p,g)})};this.curveTo=function(a,b,d,e,f,p,g){c(function(){a.curveTo(b,d,e,f,p,g)})};this.close=function(a){c(function(){a.close()})};this.rect=function(a,b,d,e,f){c(function(){a.rect(b,d,e,f)})};this.clip=function(a){c(function(){a.clip()})};this.strokeColor=function(a,b,d,e,f,p,g,l){c(function(){a.strokeColor(b,d,e,f,p,g,l)})};this.fillColor=function(a,b,d,e,f){c(function(){a.fillColor(b,d,e,f)})};this.strokeLayer=
+function(a,b,d,e,f){c(function(){a.strokeLayer(b,d,e,f)})};this.fillLayer=function(a,b){c(function(){a.fillLayer(b)})};this.push=function(a){c(function(){a.push()})};this.pop=function(a){c(function(){a.pop()})};this.reset=function(a){c(function(){a.reset()})};this.setTransform=function(a,b,d,e,f,p,g){c(function(){a.setTransform(b,d,e,f,p,g)})};this.transform=function(a,b,d,e,f,p,g){c(function(){a.transform(b,d,e,f,p,g)})};this.setChannelMask=function(a,b){c(function(){a.setChannelMask(b)})};this.setMiterLimit=
+function(a,b){c(function(){a.setMiterLimit(b)})};this.dispose=function(a){c(function(){a.dispose()})};this.distort=function(a,b,d,e,f,p,g){c(function(){a.distort(b,d,e,f,p,g)})};this.move=function(a,b,d,e,f){c(function(){a.move(b,d,e,f)})};this.shade=function(a,b){c(function(){a.shade(b)})};this.scale=function(a){n.style.transform=n.style.WebkitTransform=n.style.MozTransform=n.style.OTransform=n.style.msTransform="scale("+a+","+a+")";m=a;p.style.width=f*m+"px";p.style.height=k*m+"px"};this.getScale=
+function(){return m};this.flatten=function(){function a(a){var b=[],c;for(c in a.children)b.push(a.children[c]);b.sort(function(a,b){var c=a.z-b.z;if(0!==c)return c;a=a.getElement();b=b.getElement().compareDocumentPosition(a);return b&Node.DOCUMENT_POSITION_PRECEDING?-1:b&Node.DOCUMENT_POSITION_FOLLOWING?1:0});return b}function b(c,e,f){if(0<c.width&&0<c.height){var p=d.globalAlpha;d.globalAlpha*=c.alpha/255;d.drawImage(c.getCanvas(),e,f);c=a(c);for(var g=0;g<c.length;g++){var q=c[g];b(q,e+q.x,f+
+q.y)}d.globalAlpha=p}}var c=document.createElement("canvas");c.width=g.width;c.height=g.height;var d=c.getContext("2d");b(g,0,0);return c}};
+Guacamole.Display.VisibleLayer=function(b,a){Guacamole.Layer.apply(this,[b,a]);var d=this;this.__unique_id=Guacamole.Display.VisibleLayer.__next_id++;this.alpha=255;this.z=this.y=this.x=0;this.matrix=[1,0,0,1,0,0];this.parent=null;this.children={};var c=d.getCanvas();c.style.position="absolute";c.style.left="0px";c.style.top="0px";var e=document.createElement("div");e.appendChild(c);e.style.width=b+"px";e.style.height=a+"px";e.style.position="absolute";e.style.left="0px";e.style.top="0px";e.style.overflow=
+"hidden";var f=this.resize;this.resize=function(a,b){e.style.width=a+"px";e.style.height=b+"px";f(a,b)};this.getElement=function(){return e};var k="translate(0px, 0px)",m="matrix(1, 0, 0, 1, 0, 0)";this.translate=function(a,b){d.x=a;d.y=b;k="translate("+a+"px,"+b+"px)";e.style.transform=e.style.WebkitTransform=e.style.MozTransform=e.style.OTransform=e.style.msTransform=k+" "+m};this.move=function(a,b,c,f){d.parent!==a&&(d.parent&&delete d.parent.children[d.__unique_id],d.parent=a,a.children[d.__unique_id]=
+d,a.getElement().appendChild(e));d.translate(b,c);d.z=f;e.style.zIndex=f};this.shade=function(a){d.alpha=a;e.style.opacity=a/255};this.dispose=function(){d.parent&&(delete d.parent.children[d.__unique_id],d.parent=null);e.parentNode&&e.parentNode.removeChild(e)};this.distort=function(a,b,c,f,v,t){d.matrix=[a,b,c,f,v,t];m="matrix("+a+","+b+","+c+","+f+","+v+","+t+")";e.style.transform=e.style.WebkitTransform=e.style.MozTransform=e.style.OTransform=e.style.msTransform=k+" "+m}};
+Guacamole.Display.VisibleLayer.__next_id=0;Guacamole=Guacamole||{};Guacamole.Event=function(b){this.type=b;this.timestamp=(new Date).getTime();this.getAge=function(){return(new Date).getTime()-this.timestamp};this.invokeLegacyHandler=function(a){}};Guacamole.Event.DOMEvent=function(b,a){Guacamole.Event.call(this,b);a=a||[];Array.isArray(a)||(a=[a]);this.preventDefault=function(){a.forEach(function(a){a.preventDefault&&a.preventDefault();a.returnValue=!1})};this.stopPropagation=function(){a.forEach(function(a){a.stopPropagation()})}};
+Guacamole.Event.DOMEvent.cancelEvent=function(b){b.stopPropagation();b.preventDefault&&b.preventDefault();b.returnValue=!1};
+Guacamole.Event.Target=function(){var b={};this.on=function(a,d){var c=b[a];c||(b[a]=c=[]);c.push(d)};this.onEach=function(a,b){a.forEach(function(a){this.on(a,b)},this)};this.dispatch=function(a){a.invokeLegacyHandler(this);var d=b[a.type];if(d)for(var c=0;c<d.length;c++)d[c](a,this)};this.off=function(a,d){a=b[a];if(!a)return!1;for(var c=0;c<a.length;c++)if(a[c]===d)return a.splice(c,1),!0;return!1};this.offEach=function(a,b){var c=!1;a.forEach(function(a){c|=this.off(a,b)},this);return c}};
+Guacamole=Guacamole||{};
+Guacamole.InputSink=function(){var b=this,a=document.createElement("textarea");a.style.position="fixed";a.style.outline="none";a.style.border="none";a.style.margin="0";a.style.padding="0";a.style.height="0";a.style.width="0";a.style.left="0";a.style.bottom="0";a.style.resize="none";a.style.background="transparent";a.style.color="transparent";a.addEventListener("keypress",function(b){a.value=""},!1);a.addEventListener("compositionend",function(b){b.data&&(a.value="")},!1);a.addEventListener("input",function(b){b.data&&
+!b.isComposing&&(a.value="")},!1);a.addEventListener("focus",function(){window.setTimeout(function(){a.click();a.select()},0)},!0);this.focus=function(){window.setTimeout(function(){a.focus()},0)};this.getElement=function(){return a};document.addEventListener("keydown",function(a){if((a=document.activeElement)&&a!==document.body&&(a=a.getBoundingClientRect(),0<a.left+a.width&&0<a.top+a.height))return;b.focus()},!0)};Guacamole=Guacamole||{};
+Guacamole.InputStream=function(b,a){var d=this;this.index=a;this.onend=this.onblob=null;this.sendAck=function(a,e){b.sendAck(d.index,a,e)}};Guacamole=Guacamole||{};Guacamole.IntegerPool=function(){var b=this,a=[];this.next_int=0;this.next=function(){return 0<a.length?a.shift():b.next_int++};this.free=function(b){a.push(b)}};Guacamole=Guacamole||{};
+Guacamole.JSONReader=function(b){var a=this;b=new Guacamole.StringReader(b);var d="";this.getLength=function(){return d.length};this.getJSON=function(){return JSON.parse(d)};b.ontext=function(b){d+=b;if(a.onprogress)a.onprogress(b.length)};b.onend=function(){if(a.onend)a.onend()};this.onend=this.onprogress=null};Guacamole=Guacamole||{};
+Guacamole.Keyboard=function(b){function a(a,b,c){if(!a)return null;var e=a.indexOf("U+");if(0<=e)a=a.substring(e+2),a=String.fromCharCode(parseInt(a,16));else if(1!==a.length||3===b)return A(u[a],b);!0===c?a=a.toUpperCase():!1===c&&(a=a.toLowerCase());c=a.charCodeAt(0);return d(c)}function d(a){return 31>=a||127<=a&&159>=a?65280|a:0<=a&&255>=a?a:256<=a&&1114111>=a?16777216|a:null}function c(){var a=F();if(!a)return!1;do{var b=a;a=F()}while(null!==a);a:{for(var c in e.pressed)if(!r[c]){a=!1;break a}a=
+!0}a&&e.reset();return b.defaultPrevented}var e=this,f="_GUAC_KEYBOARD_HANDLED_BY_"+Guacamole.Keyboard._nextID++;this.onkeyup=this.onkeydown=null;var k=!1,m=!1,n=!1;navigator&&navigator.platform&&(navigator.platform.match(/ipad|iphone|ipod/i)?k=!0:navigator.platform.match(/^mac/i)&&(n=m=!0));var g=function(a){var b=this;this.keyCode=a?a.which||a.keyCode:0;this.keyIdentifier=a&&a.keyIdentifier;this.key=a&&a.key;var c=a?"location"in a?a.location:"keyLocation"in a?a.keyLocation:0:0;this.location=c;this.modifiers=
+a?Guacamole.Keyboard.ModifierState.fromKeyboardEvent(a):new Guacamole.Keyboard.ModifierState;this.timestamp=(new Date).getTime();this.defaultPrevented=!1;this.keysym=null;this.reliable=!1;this.getAge=function(){return(new Date).getTime()-b.timestamp}},l=function(b){g.call(this,b);this.keysym=a(this.key,this.location)||A(q[this.keyCode],this.location);this.keyupReliable=!k;if(b=this.keysym)b=this.keysym,b=!(0<=b&&255>=b||16777216===(b&4294901760));b&&(this.reliable=!0);if(b=!this.keysym){b=this.keyCode;
+var c=this.keyIdentifier;if(c){var d=c.indexOf("U+");-1===d?b=!0:(c=parseInt(c.substring(d+2),16),b=b!==c||65<=b&&90>=b||48<=b&&57>=b?!0:!1)}else b=!1}b&&(this.keysym=a(this.keyIdentifier,this.location,this.modifiers.shift));this.modifiers.meta&&65511!==this.keysym&&65512!==this.keysym?this.keyupReliable=!1:65509===this.keysym&&n&&(this.keyupReliable=!1);b=!this.modifiers.ctrl&&!m;if(!this.modifiers.alt&&this.modifiers.ctrl||b&&this.modifiers.alt||this.modifiers.meta||this.modifiers.hyper)this.reliable=
+!0;z[this.keyCode]=this.keysym};l.prototype=new g;var p=function(a){g.call(this,a);this.keysym=d(this.keyCode);this.reliable=!0};p.prototype=new g;var v=function(b){g.call(this,b);this.keysym=A(q[this.keyCode],this.location)||a(this.key,this.location);e.pressed[this.keysym]||(this.keysym=z[this.keyCode]||this.keysym);this.reliable=!0};v.prototype=new g;var t=[],q={8:[65288],9:[65289],12:[65291,65291,65291,65461],13:[65293],16:[65505,65505,65506],17:[65507,65507,65508],18:[65513,65513,65027],19:[65299],
+20:[65509],27:[65307],32:[32],33:[65365,65365,65365,65465],34:[65366,65366,65366,65459],35:[65367,65367,65367,65457],36:[65360,65360,65360,65463],37:[65361,65361,65361,65460],38:[65362,65362,65362,65464],39:[65363,65363,65363,65462],40:[65364,65364,65364,65458],45:[65379,65379,65379,65456],46:[65535,65535,65535,65454],91:[65511],92:[65512],93:[65383],96:[65456],97:[65457],98:[65458],99:[65459],100:[65460],101:[65461],102:[65462],103:[65463],104:[65464],105:[65465],106:[65450],107:[65451],109:[65453],
+110:[65454],111:[65455],112:[65470],113:[65471],114:[65472],115:[65473],116:[65474],117:[65475],118:[65476],119:[65477],120:[65478],121:[65479],122:[65480],123:[65481],144:[65407],145:[65300],225:[65027]},u={Again:[65382],AllCandidates:[65341],Alphanumeric:[65328],Alt:[65513,65513,65027],Attn:[64782],AltGraph:[65027],ArrowDown:[65364],ArrowLeft:[65361],ArrowRight:[65363],ArrowUp:[65362],Backspace:[65288],CapsLock:[65509],Cancel:[65385],Clear:[65291],Convert:[65313],Copy:[64789],Crsel:[64796],CrSel:[64796],
+CodeInput:[65335],Compose:[65312],Control:[65507,65507,65508],ContextMenu:[65383],Delete:[65535],Down:[65364],End:[65367],Enter:[65293],EraseEof:[64774],Escape:[65307],Execute:[65378],Exsel:[64797],ExSel:[64797],F1:[65470],F2:[65471],F3:[65472],F4:[65473],F5:[65474],F6:[65475],F7:[65476],F8:[65477],F9:[65478],F10:[65479],F11:[65480],F12:[65481],F13:[65482],F14:[65483],F15:[65484],F16:[65485],F17:[65486],F18:[65487],F19:[65488],F20:[65489],F21:[65490],F22:[65491],F23:[65492],F24:[65493],Find:[65384],
+GroupFirst:[65036],GroupLast:[65038],GroupNext:[65032],GroupPrevious:[65034],FullWidth:null,HalfWidth:null,HangulMode:[65329],Hankaku:[65321],HanjaMode:[65332],Help:[65386],Hiragana:[65317],HiraganaKatakana:[65319],Home:[65360],Hyper:[65517,65517,65518],Insert:[65379],JapaneseHiragana:[65317],JapaneseKatakana:[65318],JapaneseRomaji:[65316],JunjaMode:[65336],KanaMode:[65325],KanjiMode:[65313],Katakana:[65318],Left:[65361],Meta:[65511,65511,65512],ModeChange:[65406],NumLock:[65407],PageDown:[65366],
+PageUp:[65365],Pause:[65299],Play:[64790],PreviousCandidate:[65342],PrintScreen:[65377],Redo:[65382],Right:[65363],RomanCharacters:null,Scroll:[65300],Select:[65376],Separator:[65452],Shift:[65505,65505,65506],SingleCandidate:[65340],Super:[65515,65515,65516],Tab:[65289],UIKeyInputDownArrow:[65364],UIKeyInputEscape:[65307],UIKeyInputLeftArrow:[65361],UIKeyInputRightArrow:[65363],UIKeyInputUpArrow:[65362],Up:[65362],Undo:[65381],Win:[65511,65511,65512],Zenkaku:[65320],ZenkakuHankaku:[65322]},w={65027:!0,
+65505:!0,65506:!0,65507:!0,65508:!0,65509:!0,65511:!0,65512:!0,65513:!0,65514:!0,65515:!0,65516:!0};this.modifiers=new Guacamole.Keyboard.ModifierState;this.pressed={};var r={},y={},z={},h=null,x=null,A=function(a,b){return a?a[b]||a[0]:null};this.press=function(a){if(null!==a){if(!e.pressed[a]&&(e.pressed[a]=!0,e.onkeydown)){var b=e.onkeydown(a);y[a]=b;window.clearTimeout(h);window.clearInterval(x);w[a]||(h=window.setTimeout(function(){x=window.setInterval(function(){e.onkeyup(a);e.onkeydown(a)},
+50)},500));return b}return y[a]||!1}};this.release=function(a){if(e.pressed[a]&&(delete e.pressed[a],delete r[a],window.clearTimeout(h),window.clearInterval(x),null!==a&&e.onkeyup))e.onkeyup(a)};this.type=function(a){for(var b=0;b<a.length;b++){var c=a.codePointAt?a.codePointAt(b):a.charCodeAt(b);c=d(c);e.press(c);e.release(c)}};this.reset=function(){for(var a in e.pressed)e.release(parseInt(a));t=[]};var B=function(a,b,c){var d=c.modifiers[a];a=e.modifiers[a];if(-1===b.indexOf(c.keysym))if(a&&!1===
+d)for(d=0;d<b.length;d++)e.release(b[d]);else if(!a&&d){for(d=0;d<b.length;d++)if(e.pressed[b[d]])return;b=b[0];c.keysym&&(r[b]=!0);e.press(b)}},C=function(a){B("alt",[65513,65514,65027],a);B("shift",[65505,65506],a);B("ctrl",[65507,65508],a);B("meta",[65511,65512],a);B("hyper",[65515,65516],a);e.modifiers=a.modifiers},F=function(){var a=t[0];if(!a)return null;if(a instanceof l){var b=null,c=[];if(65511===a.keysym||65512===a.keysym){if(1===t.length)return null;if(t[1].keysym!==a.keysym){if(!t[1].modifiers.meta)return t.shift()}else if(t[1]instanceof
+l)return t.shift()}a.reliable?(b=a.keysym,c=t.splice(0,1)):t[1]instanceof p?(b=t[1].keysym,c=t.splice(0,2)):t[1]&&(b=a.keysym,c=t.splice(0,1));if(0<c.length){C(a);if(b){e.modifiers.ctrl&&e.modifiers.alt&&!(65<=b&&90>=b||97<=b&&122>=b)&&(255>=b||16777216===(b&4278190080))&&(e.release(65507),e.release(65508),e.release(65513),e.release(65514));var d=!e.press(b);z[a.keyCode]=b;a.keyupReliable||e.release(b);for(b=0;b<c.length;b++)c[b].defaultPrevented=d}return a}}else{if(a instanceof v&&!k){if(b=a.keysym)e.release(b),
+delete z[a.keyCode],a.defaultPrevented=!0;else return e.reset(),a;C(a)}return t.shift()}return null},E=function(a){return a[f]?!1:a[f]=!0};this.listenTo=function(a){a.addEventListener("keydown",function(a){if(e.onkeydown&&E(a)){var b=new l(a);229!==b.keyCode&&(t.push(b),c()&&a.preventDefault())}},!0);a.addEventListener("keypress",function(a){(e.onkeydown||e.onkeyup)&&E(a)&&(t.push(new p(a)),c()&&a.preventDefault())},!0);a.addEventListener("keyup",function(a){e.onkeyup&&E(a)&&(a.preventDefault(),t.push(new v(a)),
+c())},!0);var b=function(b){(e.onkeydown||e.onkeyup)&&E(b)&&b.data&&!b.isComposing&&(a.removeEventListener("compositionend",d,!1),e.type(b.data))},d=function(c){(e.onkeydown||e.onkeyup)&&E(c)&&c.data&&(a.removeEventListener("input",b,!1),e.type(c.data))};a.addEventListener("input",b,!1);a.addEventListener("compositionend",d,!1)};b&&e.listenTo(b)};Guacamole.Keyboard._nextID=0;Guacamole.Keyboard.ModifierState=function(){this.hyper=this.meta=this.alt=this.ctrl=this.shift=!1};
+Guacamole.Keyboard.ModifierState.fromKeyboardEvent=function(b){var a=new Guacamole.Keyboard.ModifierState;a.shift=b.shiftKey;a.ctrl=b.ctrlKey;a.alt=b.altKey;a.meta=b.metaKey;b.getModifierState&&(a.hyper=b.getModifierState("OS")||b.getModifierState("Super")||b.getModifierState("Hyper")||b.getModifierState("Win"));return a};Guacamole=Guacamole||{};
+Guacamole.Layer=function(b,a){function d(a,b,d,e){a=d+a;b=e+b;c.resize(a>c.width?a:c.width,b>c.height?b:c.height)}var c=this,e=document.createElement("canvas"),f=e.getContext("2d");f.save();var k=!0,m=!0,n=0,g={1:"destination-in",2:"destination-out",4:"source-in",6:"source-atop",8:"source-out",9:"destination-atop",10:"xor",11:"destination-over",12:"copy",14:"source-over",15:"lighter"},l=function(a,b){a=a||0;b=b||0;var d=64*Math.ceil(a/64),p=64*Math.ceil(b/64);if(e.width!==d||e.height!==p){var g=null;
+k||0===e.width||0===e.height||(g=document.createElement("canvas"),g.width=Math.min(c.width,a),g.height=Math.min(c.height,b),g.getContext("2d").drawImage(e,0,0,g.width,g.height,0,0,g.width,g.height));var l=f.globalCompositeOperation;e.width=d;e.height=p;g&&f.drawImage(g,0,0,g.width,g.height,0,0,g.width,g.height);f.globalCompositeOperation=l;n=0;f.save()}else c.reset();c.width=a;c.height=b};this.autosize=!1;this.width=b;this.height=a;this.getCanvas=function(){return e};this.toCanvas=function(){var a=
+document.createElement("canvas");a.width=c.width;a.height=c.height;a.getContext("2d").drawImage(c.getCanvas(),0,0);return a};this.resize=function(a,b){a===c.width&&b===c.height||l(a,b)};this.drawImage=function(a,b,e){c.autosize&&d(a,b,e.width,e.height);f.drawImage(e,a,b);k=!1};this.transfer=function(a,b,e,g,l,n,m,y){var p=a.getCanvas();if(!(b>=p.width||e>=p.height)&&(b+g>p.width&&(g=p.width-b),e+l>p.height&&(l=p.height-e),0!==g&&0!==l)){c.autosize&&d(n,m,g,l);a=a.getCanvas().getContext("2d").getImageData(b,
+e,g,l);b=f.getImageData(n,m,g,l);for(e=0;e<g*l*4;e+=4){p=new Guacamole.Layer.Pixel(a.data[e],a.data[e+1],a.data[e+2],a.data[e+3]);var q=new Guacamole.Layer.Pixel(b.data[e],b.data[e+1],b.data[e+2],b.data[e+3]);y(p,q);b.data[e]=q.red;b.data[e+1]=q.green;b.data[e+2]=q.blue;b.data[e+3]=q.alpha}f.putImageData(b,n,m);k=!1}};this.put=function(a,b,e,g,l,n,m){var p=a.getCanvas();b>=p.width||e>=p.height||(b+g>p.width&&(g=p.width-b),e+l>p.height&&(l=p.height-e),0!==g&&0!==l&&(c.autosize&&d(n,m,g,l),a=a.getCanvas().getContext("2d").getImageData(b,
+e,g,l),f.putImageData(a,n,m),k=!1))};this.copy=function(a,b,e,g,l,n,m){a=a.getCanvas();b>=a.width||e>=a.height||(b+g>a.width&&(g=a.width-b),e+l>a.height&&(l=a.height-e),0!==g&&0!==l&&(c.autosize&&d(n,m,g,l),f.drawImage(a,b,e,g,l,n,m,g,l),k=!1))};this.moveTo=function(a,b){m&&(f.beginPath(),m=!1);c.autosize&&d(a,b,0,0);f.moveTo(a,b)};this.lineTo=function(a,b){m&&(f.beginPath(),m=!1);c.autosize&&d(a,b,0,0);f.lineTo(a,b)};this.arc=function(a,b,e,g,l,n){m&&(f.beginPath(),m=!1);c.autosize&&d(a,b,0,0);f.arc(a,
+b,e,g,l,n)};this.curveTo=function(a,b,e,g,l,n){m&&(f.beginPath(),m=!1);c.autosize&&d(l,n,0,0);f.bezierCurveTo(a,b,e,g,l,n)};this.close=function(){f.closePath();m=!0};this.rect=function(a,b,e,g){m&&(f.beginPath(),m=!1);c.autosize&&d(a,b,e,g);f.rect(a,b,e,g)};this.clip=function(){f.clip();m=!0};this.strokeColor=function(a,b,c,d,e,g,l){f.lineCap=a;f.lineJoin=b;f.lineWidth=c;f.strokeStyle="rgba("+d+","+e+","+g+","+l/255+")";f.stroke();k=!1;m=!0};this.fillColor=function(a,b,c,d){f.fillStyle="rgba("+a+
+","+b+","+c+","+d/255+")";f.fill();k=!1;m=!0};this.strokeLayer=function(a,b,c,d){f.lineCap=a;f.lineJoin=b;f.lineWidth=c;f.strokeStyle=f.createPattern(d.getCanvas(),"repeat");f.stroke();k=!1;m=!0};this.fillLayer=function(a){f.fillStyle=f.createPattern(a.getCanvas(),"repeat");f.fill();k=!1;m=!0};this.push=function(){f.save();n++};this.pop=function(){0<n&&(f.restore(),n--)};this.reset=function(){for(;0<n;)f.restore(),n--;f.restore();f.save();f.beginPath();m=!1};this.setTransform=function(a,b,c,d,e,g){f.setTransform(a,
+b,c,d,e,g)};this.transform=function(a,b,c,d,e,g){f.transform(a,b,c,d,e,g)};this.setChannelMask=function(a){f.globalCompositeOperation=g[a]};this.setMiterLimit=function(a){f.miterLimit=a};l(b,a);e.style.zIndex=-1};Guacamole.Layer.ROUT=2;Guacamole.Layer.ATOP=6;Guacamole.Layer.XOR=10;Guacamole.Layer.ROVER=11;Guacamole.Layer.OVER=14;Guacamole.Layer.PLUS=15;Guacamole.Layer.RIN=1;Guacamole.Layer.IN=4;Guacamole.Layer.OUT=8;Guacamole.Layer.RATOP=9;Guacamole.Layer.SRC=12;
+Guacamole.Layer.Pixel=function(b,a,d,c){this.red=b;this.green=a;this.blue=d;this.alpha=c};Guacamole=Guacamole||{};
+Guacamole.Mouse=function(b){function a(){f=c.touchMouseThreshold}function d(a){var b=a.deltaY||-a.wheelDeltaY||-a.wheelDelta;b?1===a.deltaMode?b=a.deltaY*c.PIXELS_PER_LINE:2===a.deltaMode&&(b=a.deltaY*c.PIXELS_PER_PAGE):b=a.detail*c.PIXELS_PER_LINE;k+=b;if(k<=-c.scrollThreshold){do c.click(Guacamole.Mouse.State.Buttons.UP),k+=c.scrollThreshold;while(k<=-c.scrollThreshold);k=0}if(k>=c.scrollThreshold){do c.click(Guacamole.Mouse.State.Buttons.DOWN),k-=c.scrollThreshold;while(k>=c.scrollThreshold);k=
+0}Guacamole.Event.DOMEvent.cancelEvent(a)}Guacamole.Mouse.Event.Target.call(this);var c=this;this.touchMouseThreshold=3;this.scrollThreshold=53;this.PIXELS_PER_LINE=18;this.PIXELS_PER_PAGE=16*this.PIXELS_PER_LINE;var e=[Guacamole.Mouse.State.Buttons.LEFT,Guacamole.Mouse.State.Buttons.MIDDLE,Guacamole.Mouse.State.Buttons.RIGHT],f=0,k=0;b.addEventListener("contextmenu",function(a){Guacamole.Event.DOMEvent.cancelEvent(a)},!1);b.addEventListener("mousemove",function(a){f?(Guacamole.Event.DOMEvent.cancelEvent(a),
+f--):c.move(Guacamole.Position.fromClientPosition(b,a.clientX,a.clientY),a)},!1);b.addEventListener("mousedown",function(a){if(f)Guacamole.Event.DOMEvent.cancelEvent(a);else{var b=e[a.button];b&&c.press(b,a)}},!1);b.addEventListener("mouseup",function(a){if(f)Guacamole.Event.DOMEvent.cancelEvent(a);else{var b=e[a.button];b&&c.release(b,a)}},!1);b.addEventListener("mouseout",function(a){a||(a=window.event);for(var d=a.relatedTarget||a.toElement;d;){if(d===b)return;d=d.parentNode}c.reset(a);c.out(a)},
+!1);b.addEventListener("selectstart",function(a){Guacamole.Event.DOMEvent.cancelEvent(a)},!1);b.addEventListener("touchmove",a,!1);b.addEventListener("touchstart",a,!1);b.addEventListener("touchend",a,!1);b.addEventListener("DOMMouseScroll",d,!1);b.addEventListener("mousewheel",d,!1);b.addEventListener("wheel",d,!1);var m=function(){var a=document.createElement("div");if(!("cursor"in a.style))return!1;try{a.style.cursor="url(data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABAQMAAAAl21bKAAAAA1BMVEX///+nxBvIAAAACklEQVQI12NgAAAAAgAB4iG8MwAAAABJRU5ErkJggg\x3d\x3d) 0 0, auto"}catch(g){return!1}return/\burl\([^()]*\)\s+0\s+0\b/.test(a.style.cursor||
+"")}();this.setCursor=function(a,c,d){return m?(a=a.toDataURL("image/png"),b.style.cursor="url("+a+") "+c+" "+d+", auto",!0):!1}};Guacamole.Mouse.State=function(b){var a=function(a,b,e,f,k,m,n){return{x:a,y:b,left:e,middle:f,right:k,up:m,down:n}};b=1<arguments.length?a.apply(this,arguments):b||{};Guacamole.Position.call(this,b);this.left=b.left||!1;this.middle=b.middle||!1;this.right=b.right||!1;this.up=b.up||!1;this.down=b.down||!1};
+Guacamole.Mouse.State.Buttons={LEFT:"left",MIDDLE:"middle",RIGHT:"right",UP:"up",DOWN:"down"};Guacamole.Mouse.Event=function(b,a,d){Guacamole.Event.DOMEvent.call(this,b,d);var c="on"+this.type;this.state=a;this.invokeLegacyHandler=function(a){a[c]&&(this.preventDefault(),this.stopPropagation(),a[c](this.state))}};
+Guacamole.Mouse.Event.Target=function(){Guacamole.Event.Target.call(this);this.currentState=new Guacamole.Mouse.State;this.press=function(b,a){this.currentState[b]||(this.currentState[b]=!0,this.dispatch(new Guacamole.Mouse.Event("mousedown",this.currentState,a)))};this.release=function(b,a){this.currentState[b]&&(this.currentState[b]=!1,this.dispatch(new Guacamole.Mouse.Event("mouseup",this.currentState,a)))};this.click=function(b,a){this.press(b,a);this.release(b,a)};this.move=function(b,a){if(this.currentState.x!==
+b.x||this.currentState.y!==b.y)this.currentState.x=b.x,this.currentState.y=b.y,this.dispatch(new Guacamole.Mouse.Event("mousemove",this.currentState,a))};this.out=function(b){this.dispatch(new Guacamole.Mouse.Event("mouseout",this.currentState,b))};this.reset=function(b){for(var a in Guacamole.Mouse.State.Buttons)this.release(Guacamole.Mouse.State.Buttons[a],b)}};
+Guacamole.Mouse.Touchpad=function(b){Guacamole.Mouse.Event.Target.call(this);var a=this;this.scrollThreshold=20*(window.devicePixelRatio||1);this.clickTimingThreshold=250;this.clickMoveThreshold=10*(window.devicePixelRatio||1);this.currentState=new Guacamole.Mouse.State;var d=0,c=0,e=0,f=0,k=0,m={1:"left",2:"right",3:"middle"},n=!1,g=null;b.addEventListener("touchend",function(b){b.preventDefault();if(n&&0===b.touches.length){var c=(new Date).getTime(),e=m[d];a.currentState[e]&&(a.release(e,b),g&&
+(window.clearTimeout(g),g=null));c-f<=a.clickTimingThreshold&&k<a.clickMoveThreshold&&(a.press(e,b),g=window.setTimeout(function(){a.release(e,b);n=!1},a.clickTimingThreshold));g||(n=!1)}},!1);b.addEventListener("touchstart",function(a){a.preventDefault();d=Math.min(a.touches.length,3);g&&(window.clearTimeout(g),g=null);n||(n=!0,a=a.touches[0],c=a.clientX,e=a.clientY,f=(new Date).getTime(),k=0)},!1);b.addEventListener("touchmove",function(g){g.preventDefault();var l=g.touches[0],m=l.clientX-c,n=l.clientY-
+e;k+=Math.abs(m)+Math.abs(n);if(1===d){var q=1+k/((new Date).getTime()-f),u=new Guacamole.Position(a.currentState);u.x+=m*q;u.y+=n*q;u.x=Math.min(Math.max(0,u.x),b.offsetWidth-1);u.y=Math.min(Math.max(0,u.y),b.offsetHeight-1);a.move(u,g);c=l.clientX;e=l.clientY}else 2===d&&Math.abs(n)>=a.scrollThreshold&&(a.click(0<n?"down":"up",g),c=l.clientX,e=l.clientY)},!1)};
+Guacamole.Mouse.Touchscreen=function(b){function a(a){var b=a.touches[0]||a.changedTouches[0];a=b.clientX-k;b=b.clientY-m;return Math.sqrt(a*a+b*b)>=e.clickMoveThreshold}function d(a){a=a.touches[0];f=!0;k=a.clientX;m=a.clientY}function c(){window.clearTimeout(n);window.clearTimeout(g);f=!1}Guacamole.Mouse.Event.Target.call(this);var e=this,f=!1,k=null,m=null,n=null,g=null;this.scrollThreshold=20*(window.devicePixelRatio||1);this.clickTimingThreshold=250;this.clickMoveThreshold=16*(window.devicePixelRatio||
+1);this.longPressThreshold=500;b.addEventListener("touchend",function(d){if(f)if(0!==d.touches.length||1!==d.changedTouches.length)c();else if(window.clearTimeout(g),e.release(Guacamole.Mouse.State.Buttons.LEFT,d),!a(d)&&(d.preventDefault(),!e.currentState.left)){var l=d.changedTouches[0];e.move(Guacamole.Position.fromClientPosition(b,l.clientX,l.clientY));e.press(Guacamole.Mouse.State.Buttons.LEFT,d);n=window.setTimeout(function(){e.release(Guacamole.Mouse.State.Buttons.LEFT,d);c()},e.clickTimingThreshold)}},
+!1);b.addEventListener("touchstart",function(a){1!==a.touches.length?c():(a.preventDefault(),d(a),window.clearTimeout(n),g=window.setTimeout(function(){var d=a.touches[0];e.move(Guacamole.Position.fromClientPosition(b,d.clientX,d.clientY));e.click(Guacamole.Mouse.State.Buttons.RIGHT,a);c()},e.longPressThreshold))},!1);b.addEventListener("touchmove",function(d){if(f)if(a(d)&&window.clearTimeout(g),1!==d.touches.length)c();else if(e.currentState.left){d.preventDefault();var m=d.touches[0];e.move(Guacamole.Position.fromClientPosition(b,
+m.clientX,m.clientY),d)}},!1)};Guacamole=Guacamole=Guacamole||{};Guacamole.Object=function(b,a){var d=this,c={};this.index=a;this.onbody=function(a,b,d){var e=c[d];if(e){var f=e.shift();0===e.length&&delete c[d];d=f}else d=null;d&&d(a,b)};this.onundefine=null;this.requestInputStream=function(a,f){if(f){var e=c[a];e||(e=[],c[a]=e);e.push(f)}b.requestObjectInputStream(d.index,a)};this.createOutputStream=function(a,c){return b.createObjectOutputStream(d.index,a,c)}};Guacamole.Object.ROOT_STREAM="/";
+Guacamole.Object.STREAM_INDEX_MIMETYPE="application/vnd.glyptodon.guacamole.stream-index+json";Guacamole=Guacamole||{};
+Guacamole.OnScreenKeyboard=function(b){var a=this,d={},c={},e=[],f=function(a,b){a.classList?a.classList.add(b):a.className+=" "+b},k=function(a,b){a.classList?a.classList.remove(b):a.className=a.className.replace(/([^ ]+)[ ]*/g,function(a,c){return c===b?"":a})},m=0,n=function(a,b,c,d){this.width=b;this.height=c;this.scale=function(e){a.style.width=b*e+"px";a.style.height=c*e+"px";d&&(a.style.lineHeight=c*e+"px",a.style.fontSize=e+"px")}},g=function(b){b=a.keys[b];if(!b)return null;for(var c=b.length-
+1;0<=c;c--){var e=b[c];a:{var f=e.requires;for(var g=0;g<f.length;g++)if(!(f[g]in d)){f=!1;break a}f=!0}if(f)return e}return null},l=function(b,e){if(!c[b]){f(e,"guac-keyboard-pressed");e=g(b);if(e.modifier){var m="guac-keyboard-modifier-"+t(e.modifier),l=d[e.modifier];if(void 0===l){if(f(v,m),(d[e.modifier]=e.keysym)&&a.onkeydown)a.onkeydown(e.keysym)}else if(k(v,m),delete d[e.modifier],l&&a.onkeyup)a.onkeyup(l)}else if(a.onkeydown)a.onkeydown(e.keysym);c[b]=!0}},p=function(b,d){if(c[b]){k(d,"guac-keyboard-pressed");
+d=g(b);if(!d.modifier&&a.onkeyup)a.onkeyup(d.keysym);c[b]=!1}},v=document.createElement("div");v.className="guac-keyboard";v.onselectstart=v.onmousemove=v.onmouseup=v.onmousedown=function(a){m&&m--;a.stopPropagation();return!1};this.touchMouseThreshold=3;this.onkeyup=this.onkeydown=null;this.layout=new Guacamole.OnScreenKeyboard.Layout(b);this.getElement=function(){return v};this.resize=function(b){b=Math.floor(10*b/a.layout.width)/10;for(var c=0;c<e.length;c++)e[c].scale(b)};this.keys=function(a){var c=
+{},d;for(d in b.keys){var e=d;var f=d;var g=a[d];if(g instanceof Array){for(var m=[],l=0;l<g.length;l++)m.push(new Guacamole.OnScreenKeyboard.Key(g[l],f));f=m}else f="number"===typeof g?[new Guacamole.OnScreenKeyboard.Key({name:f,keysym:g})]:"string"===typeof g?[new Guacamole.OnScreenKeyboard.Key({name:f,title:g})]:[new Guacamole.OnScreenKeyboard.Key(g,f)];c[e]=f}return c}(b.keys);var t=function(a){return a.replace(/([a-z])([A-Z])/g,"$1-$2").replace(/[^A-Za-z0-9]+/g,"-").toLowerCase()};(function y(b,
+c,d){var g,h=document.createElement("div");d&&f(h,"guac-keyboard-"+t(d));if(c instanceof Array)for(f(h,"guac-keyboard-group"),g=0;g<c.length;g++)y(h,c[g]);else if(c instanceof Object){f(h,"guac-keyboard-group");var k=Object.keys(c).sort();for(g=0;g<k.length;g++)d=k[g],y(h,c[d],d)}else if("number"===typeof c)f(h,"guac-keyboard-gap"),e.push(new n(h,c,c));else if("string"===typeof c){g=c;1===g.length&&(g="0x"+g.charCodeAt(0).toString(16));f(h,"guac-keyboard-key-container");var r=document.createElement("div");
+r.className="guac-keyboard-key guac-keyboard-key-"+t(g);if(d=a.keys[c])for(g=0;g<d.length;g++){k=d[g];var v=document.createElement("div");v.className="guac-keyboard-cap";v.textContent=k.title;for(var C=0;C<k.requires.length;C++){var u=k.requires[C];f(v,"guac-keyboard-requires-"+t(u));f(r,"guac-keyboard-uses-"+t(u))}r.appendChild(v)}h.appendChild(r);e.push(new n(h,a.layout.keyWidths[c]||1,1,!0));g=function(a){a.preventDefault();0===m&&p(c,r)};r.addEventListener("touchstart",function(b){b.preventDefault();
+m=a.touchMouseThreshold;l(c,r)},!0);r.addEventListener("touchend",function(b){b.preventDefault();m=a.touchMouseThreshold;p(c,r)},!0);r.addEventListener("mousedown",function(a){a.preventDefault();0===m&&l(c,r)},!0);r.addEventListener("mouseup",g,!0);r.addEventListener("mouseout",g,!0)}b.appendChild(h)})(v,b.layout)};Guacamole.OnScreenKeyboard.Layout=function(b){this.language=b.language;this.type=b.type;this.keys=b.keys;this.layout=b.layout;this.width=b.width;this.keyWidths=b.keyWidths||{}};
+Guacamole.OnScreenKeyboard.Key=function(b,a){this.name=a||b.name;this.title=b.title||this.name;(a=b.keysym)||((a=this.title)&&1===a.length?(a=a.charCodeAt(0),a=0<=a&&255>=a?a:256<=a&&1114111>=a?16777216|a:null):a=null);this.keysym=a;this.modifier=b.modifier;this.requires=b.requires||[]};Guacamole=Guacamole||{};Guacamole.OutputStream=function(b,a){var d=this;this.index=a;this.onack=null;this.sendBlob=function(a){b.sendBlob(d.index,a)};this.sendEnd=function(){b.endStream(d.index)}};
+Guacamole=Guacamole||{};
+Guacamole.Parser=function(){var b=this,a="",d=[],c=-1,e=0;this.receive=function(f){4096<e&&c>=e&&(a=a.substring(e),c-=e,e=0);for(a+=f;c<a.length;){if(c>=e){f=a.substring(e,c);var k=a.substring(c,c+1);d.push(f);if(";"==k){f=d.shift();if(null!=b.oninstruction)b.oninstruction(f,d);d.length=0}else if(","!=k)throw Error("Illegal terminator.");e=c+1}f=a.indexOf(".",e);if(-1!=f){k=parseInt(a.substring(c+1,f));if(isNaN(k))throw Error("Non-numeric character in element length.");e=f+1;c=e+k}else{e=a.length;
+break}}};this.oninstruction=null};Guacamole=Guacamole||{};
+Guacamole.Position=function(b){b=b||{};this.x=b.x||0;this.y=b.y||0;this.fromClientPosition=function(a,b,c){this.x=b-a.offsetLeft;this.y=c-a.offsetTop;for(a=a.offsetParent;a&&a!==document.body;)this.x-=a.offsetLeft-a.scrollLeft,this.y-=a.offsetTop-a.scrollTop,a=a.offsetParent;a&&(b=document.body.scrollTop||document.documentElement.scrollTop,this.x-=a.offsetLeft-(document.body.scrollLeft||document.documentElement.scrollLeft),this.y-=a.offsetTop-b)}};
+Guacamole.Position.fromClientPosition=function(b,a,d){var c=new Guacamole.Position;c.fromClientPosition(b,a,d);return c};Guacamole=Guacamole||{};Guacamole.RawAudioFormat=function(b){this.bytesPerSample=b.bytesPerSample;this.channels=b.channels;this.rate=b.rate};
+Guacamole.RawAudioFormat.parse=function(b){var a=null,d=1;if("audio/L8;"===b.substring(0,9)){b=b.substring(9);var c=1}else if("audio/L16;"===b.substring(0,10))b=b.substring(10),c=2;else return null;b=b.split(",");for(var e=0;e<b.length;e++){var f=b[e],k=f.indexOf("\x3d");if(-1===k)return null;var m=f.substring(0,k);f=f.substring(k+1);switch(m){case "channels":d=parseInt(f);break;case "rate":a=parseInt(f);break;default:return null}}return null===a?null:new Guacamole.RawAudioFormat({bytesPerSample:c,
+channels:d,rate:a})};Guacamole=Guacamole||{};
+Guacamole.SessionRecording=function(b){var a=this,d=[],c=[],e=0,f=0,k=new Guacamole.SessionRecording._PlaybackTunnel,m=new Guacamole.Client(k),n=-1,g=null,l=null,p=null;m.connect();m.getDisplay().showCursor(!1);b.oninstruction=function(b,g){var l=new Guacamole.SessionRecording._Frame.Instruction(b,g.slice());c.push(l);e+=l.getSize();if("sync"===b){b=parseInt(g[0]);g=new Guacamole.SessionRecording._Frame(b,c);d.push(g);if(1===d.length||16384<=e&&5E3<=b-f)g.keyframe=!0,f=b,e=0;c=[];if(a.onprogress)a.onprogress(a.getDuration())}};
+var v=function(a){return 0===d.length?0:a-d[0].timestamp},t=function x(a,b,c){if(a===b)return a;var e=Math.floor((a+b)/2),f=v(d[e].timestamp);return c<f&&e>a?x(a,e-1,c):c>f&&e<b?x(e+1,b,c):e},q=function(a){var b=d[a];for(a=0;a<b.instructions.length;a++){var c=b.instructions[a];k.receiveInstruction(c.opcode,c.args)}b.keyframe&&!b.clientState&&m.exportState(function(a){b.clientState=a})},u=function A(b,c,e){window.clearTimeout(p);p=window.setTimeout(function(){var f;for(f=b;0<=f;f--){var g=d[f];if(f===
+n)break;if(g.clientState){m.importState(g.clientState);break}}f++;for(g=(new Date).getTime();f<=b&&!(5<=(new Date).getTime()-g);f++)q(f);n=f-1;if(a.onseek)a.onseek(a.getPosition());n!==b?A(b,c,Math.max(e-((new Date).getTime()-g),0)):c()},e||0)},w=function h(){if(n+1<d.length){var b=Math.max(d[n+1].timestamp-g+l-(new Date).getTime(),0);u(n+1,function(){h()},b)}else a.pause()};this.onseek=this.onpause=this.onplay=this.onprogress=null;this.connect=function(a){b.connect(a)};this.disconnect=function(){b.disconnect()};
+this.getDisplay=function(){return m.getDisplay()};this.isPlaying=function(){return!!g};this.getPosition=function(){return-1===n?0:v(d[n].timestamp)};this.getDuration=function(){return 0===d.length?0:v(d[d.length-1].timestamp)};this.play=function(){if(!a.isPlaying()&&n+1<d.length){if(a.onplay)a.onplay();g=d[n+1].timestamp;l=(new Date).getTime();w()}};this.seek=function(b,c){if(0!==d.length){var e=a.isPlaying();a.pause();u(t(0,d.length-1,b),function(){e&&a.play();c&&c()})}};this.pause=function(){window.clearTimeout(p);
+if(a.isPlaying()){if(a.onpause)a.onpause();l=g=null}}};Guacamole.SessionRecording._Frame=function(b,a){this.keyframe=!1;this.timestamp=b;this.instructions=a;this.clientState=null};Guacamole.SessionRecording._Frame.Instruction=function(b,a){var d=this;this.opcode=b;this.args=a;this.getSize=function(){for(var a=d.opcode.length,b=0;b<d.args.length;b++)a+=d.args[b].length;return a}};
+Guacamole.SessionRecording._PlaybackTunnel=function(){var b=this;this.connect=function(a){};this.sendMessage=function(a){};this.disconnect=function(){};this.receiveInstruction=function(a,d){if(b.oninstruction)b.oninstruction(a,d)}};Guacamole=Guacamole||{};Guacamole.Status=function(b,a){var d=this;this.code=b;this.message=a;this.isError=function(){return 0>d.code||255<d.code}};
+Guacamole.Status.Code={SUCCESS:0,UNSUPPORTED:256,SERVER_ERROR:512,SERVER_BUSY:513,UPSTREAM_TIMEOUT:514,UPSTREAM_ERROR:515,RESOURCE_NOT_FOUND:516,RESOURCE_CONFLICT:517,RESOURCE_CLOSED:518,UPSTREAM_NOT_FOUND:519,UPSTREAM_UNAVAILABLE:520,SESSION_CONFLICT:521,SESSION_TIMEOUT:522,SESSION_CLOSED:523,CLIENT_BAD_REQUEST:768,CLIENT_UNAUTHORIZED:769,CLIENT_FORBIDDEN:771,CLIENT_TIMEOUT:776,CLIENT_OVERRUN:781,CLIENT_BAD_TYPE:783,CLIENT_TOO_MANY:797};
+Guacamole.Status.Code.fromHTTPCode=function(b){switch(b){case 400:return Guacamole.Status.Code.CLIENT_BAD_REQUEST;case 403:return Guacamole.Status.Code.CLIENT_FORBIDDEN;case 404:return Guacamole.Status.Code.RESOURCE_NOT_FOUND;case 429:return Guacamole.Status.Code.CLIENT_TOO_MANY;case 503:return Guacamole.Status.Code.SERVER_BUSY}return Guacamole.Status.Code.SERVER_ERROR};
+Guacamole.Status.Code.fromWebSocketCode=function(b){switch(b){case 1E3:return Guacamole.Status.Code.SUCCESS;case 1006:case 1015:return Guacamole.Status.Code.UPSTREAM_NOT_FOUND;case 1001:case 1012:case 1013:case 1014:return Guacamole.Status.Code.UPSTREAM_UNAVAILABLE}return Guacamole.Status.Code.SERVER_ERROR};Guacamole=Guacamole||{};
+Guacamole.StringReader=function(b){var a=this;b=new Guacamole.ArrayBufferReader(b);var d=0,c=0;b.ondata=function(b){var e="";b=new Uint8Array(b);for(var k=0;k<b.length;k++){var m=b[k];0===d?127===(m|127)?e+=String.fromCharCode(m):223===(m|31)?(c=m&31,d=1):239===(m|15)?(c=m&15,d=2):247===(m|7)?(c=m&7,d=3):e+="�":191===(m|63)?(c=c<<6|m&63,d--,0===d&&(e+=String.fromCharCode(c))):(d=0,e+="�")}if(a.ontext)a.ontext(e)};b.onend=function(){if(a.onend)a.onend()};this.onend=this.ontext=null};
+Guacamole=Guacamole||{};
+Guacamole.StringWriter=function(b){function a(b){if(127>=b){var c=0;var d=1}else if(2047>=b)c=192,d=2;else if(65535>=b)c=224,d=3;else if(2097151>=b)c=240,d=4;else{a(65533);return}var e=d;if(k+e>=f.length){var m=new Uint8Array(2*(k+e));m.set(f);f=m}k+=e;e=k-1;for(m=1;m<d;m++)f[e--]=128|b&63,b>>=6;f[e]=c|b}function d(b){for(var c=0;c<b.length;c++){var d=b.charCodeAt(c);a(d)}if(0<k)return b=f.subarray(0,k),k=0,b}var c=this,e=new Guacamole.ArrayBufferWriter(b),f=new Uint8Array(8192),k=0;e.onack=function(a){if(c.onack)c.onack(a)};
+this.sendText=function(a){a.length&&e.sendData(d(a))};this.sendEnd=function(){e.sendEnd()};this.onack=null};Guacamole=Guacamole||{};
+Guacamole.Touch=function(b){Guacamole.Event.Target.call(this);var a=this,d=Math.floor(16*window.devicePixelRatio);this.touches={};this.activeTouches=0;b.addEventListener("touchstart",function(c){for(var e=0;e<c.changedTouches.length;e++){var f=c.changedTouches[e],k=f.identifier;a.touches[k]||(k=a.touches[k]=new Guacamole.Touch.State({id:k,radiusX:f.radiusX||d,radiusY:f.radiusY||d,angle:f.angle||0,force:f.force||1}),a.activeTouches++,k.fromClientPosition(b,f.clientX,f.clientY),a.dispatch(new Guacamole.Touch.Event("touchmove",
+c,k)))}},!1);b.addEventListener("touchmove",function(c){for(var e=0;e<c.changedTouches.length;e++){var f=c.changedTouches[e],k=a.touches[f.identifier];k&&(f.force&&(k.force=f.force),k.angle=f.angle||0,k.radiusX=f.radiusX||d,k.radiusY=f.radiusY||d,k.fromClientPosition(b,f.clientX,f.clientY),a.dispatch(new Guacamole.Touch.Event("touchmove",c,k)))}},!1);b.addEventListener("touchend",function(c){for(var d=0;d<c.changedTouches.length;d++){var f=c.changedTouches[d],k=f.identifier,m=a.touches[k];m&&(delete a.touches[k],
+a.activeTouches--,m.force=0,m.fromClientPosition(b,f.clientX,f.clientY),a.dispatch(new Guacamole.Touch.Event("touchend",c,m)))}},!1)};Guacamole.Touch.State=function(b){b=b||{};Guacamole.Position.call(this,b);this.id=b.id||0;this.radiusX=b.radiusX||0;this.radiusY=b.radiusY||0;this.angle=b.angle||0;this.force=b.force||1};Guacamole.Touch.Event=function(b,a,d){Guacamole.Event.DOMEvent.call(this,b,[a]);this.state=d};Guacamole=Guacamole||{};
+Guacamole.Tunnel=function(){this.connect=function(b){};this.disconnect=function(){};this.sendMessage=function(b){};this.setState=function(b){if(b!==this.state&&(this.state=b,this.onstatechange))this.onstatechange(b)};this.setUUID=function(b){this.uuid=b;if(this.onuuid)this.onuuid(b)};this.isConnected=function(){return this.state===Guacamole.Tunnel.State.OPEN||this.state===Guacamole.Tunnel.State.UNSTABLE};this.state=Guacamole.Tunnel.State.CONNECTING;this.receiveTimeout=15E3;this.unstableThreshold=
+1500;this.oninstruction=this.onstatechange=this.onerror=this.onuuid=this.uuid=null};Guacamole.Tunnel.INTERNAL_DATA_OPCODE="";Guacamole.Tunnel.State={CONNECTING:0,OPEN:1,CLOSED:2,UNSTABLE:3};
+Guacamole.HTTPTunnel=function(b,a,d){function c(a,b){for(var c in b)a.setRequestHeader(c,b[c])}function e(){window.clearTimeout(y);window.clearTimeout(z);l.state===Guacamole.Tunnel.State.UNSTABLE&&l.setState(Guacamole.Tunnel.State.OPEN);y=window.setTimeout(function(){f(new Guacamole.Status(Guacamole.Status.Code.UPSTREAM_TIMEOUT,"Server timeout."))},l.receiveTimeout);z=window.setTimeout(function(){l.setState(Guacamole.Tunnel.State.UNSTABLE)},l.unstableThreshold)}function f(a){window.clearTimeout(y);
+window.clearTimeout(z);window.clearInterval(h);if(l.state!==Guacamole.Tunnel.State.CLOSED){if(a.code!==Guacamole.Status.Code.SUCCESS&&l.onerror&&(l.state===Guacamole.Tunnel.State.CONNECTING||a.code!==Guacamole.Status.Code.RESOURCE_NOT_FOUND))l.onerror(a);u=!1;l.setState(Guacamole.Tunnel.State.CLOSED)}}function k(){if(l.isConnected())if(0<w.length){u=!0;var a=new XMLHttpRequest;a.open("POST",t+l.uuid);a.withCredentials=r;c(a,x);a.setRequestHeader("Content-type","application/octet-stream");a.setRequestHeader("Guacamole-Tunnel-Token",
+A);a.onreadystatechange=function(){4===a.readyState&&(e(),200!==a.status?m(a):k())};a.send(w);w=""}else u=!1}function m(a){var b=parseInt(a.getResponseHeader("Guacamole-Status-Code"));b?(a=a.getResponseHeader("Guacamole-Error-Message"),f(new Guacamole.Status(b,a))):a.status?f(new Guacamole.Status(Guacamole.Status.Code.fromHTTPCode(a.status),a.statusText)):f(new Guacamole.Status(Guacamole.Status.Code.UPSTREAM_NOT_FOUND))}function n(a){function b(){if(!l.isConnected())null!==c&&clearInterval(c);else if(!(2>
+a.readyState)){try{var f=a.status}catch(H){f=200}d||200!==f||(d=g());if(3===a.readyState||4===a.readyState)if(e(),1===q&&(3!==a.readyState||c?4===a.readyState&&c&&clearInterval(c):c=setInterval(b,30)),0===a.status)l.disconnect();else if(200!==a.status)m(a);else{try{var t=a.responseText}catch(H){return}for(;h<t.length;){if(h>=k){f=t.substring(k,h);var r=t.substring(h,h+1);p.push(f);if(";"===r){f=p.shift();if(l.oninstruction)l.oninstruction(f,p);p.length=0}k=h+1}f=t.indexOf(".",k);if(-1!==f){r=parseInt(t.substring(h+
+1,f));if(0===r){c&&clearInterval(c);a.onreadystatechange=null;a.abort();d&&n(d);break}k=f+1;h=k+r}else{k=t.length;break}}}}}var c=null,d=null,f=0,h=-1,k=0,p=[];a.onreadystatechange=1===q?function(){3===a.readyState&&(f++,2<=f&&(q=0,a.onreadystatechange=b));b()}:b;b()}function g(){var a=new XMLHttpRequest;a.open("GET",v+l.uuid+":"+B++);a.setRequestHeader("Guacamole-Tunnel-Token",A);a.withCredentials=r;c(a,x);a.send(null);return a}var l=this,p=b+"?connect",v=b+"?read:",t=b+"?write:",q=1,u=!1,w="",r=
+!!a,y=null,z=null,h=null,x=d||{},A=null;this.sendMessage=function(){function a(a){a=new String(a);return a.length+"."+a}if(l.isConnected()&&0!==arguments.length){for(var b=a(arguments[0]),c=1;c<arguments.length;c++)b+=","+a(arguments[c]);w+=b+";";u||k()}};var B=0;this.connect=function(a){e();l.setState(Guacamole.Tunnel.State.CONNECTING);var b=new XMLHttpRequest;b.onreadystatechange=function(){4===b.readyState&&(200!==b.status?m(b):(e(),l.setUUID(b.responseText),(A=b.getResponseHeader("Guacamole-Tunnel-Token"))?
+(l.setState(Guacamole.Tunnel.State.OPEN),h=setInterval(function(){l.sendMessage("nop")},500),n(g())):f(new Guacamole.Status(Guacamole.Status.Code.UPSTREAM_NOT_FOUND))))};b.open("POST",p,!0);b.withCredentials=r;c(b,x);b.setRequestHeader("Content-type","application/x-www-form-urlencoded; charset\x3dUTF-8");b.send(a)};this.disconnect=function(){f(new Guacamole.Status(Guacamole.Status.Code.SUCCESS,"Manually closed."))}};Guacamole.HTTPTunnel.prototype=new Guacamole.Tunnel;
+Guacamole.WebSocketTunnel=function(b){function a(){window.clearTimeout(f);window.clearTimeout(k);c.state===Guacamole.Tunnel.State.UNSTABLE&&c.setState(Guacamole.Tunnel.State.OPEN);f=window.setTimeout(function(){d(new Guacamole.Status(Guacamole.Status.Code.UPSTREAM_TIMEOUT,"Server timeout."))},c.receiveTimeout);k=window.setTimeout(function(){c.setState(Guacamole.Tunnel.State.UNSTABLE)},c.unstableThreshold)}function d(a){window.clearTimeout(f);window.clearTimeout(k);window.clearInterval(m);if(c.state!==
+Guacamole.Tunnel.State.CLOSED){if(a.code!==Guacamole.Status.Code.SUCCESS&&c.onerror)c.onerror(a);c.setState(Guacamole.Tunnel.State.CLOSED);e.close()}}var c=this,e=null,f=null,k=null,m=null,n={"http:":"ws:","https:":"wss:"};if("ws:"!==b.substring(0,3)&&"wss:"!==b.substring(0,4))if(n=n[window.location.protocol],"/"===b.substring(0,1))b=n+"//"+window.location.host+b;else{var g=window.location.pathname.lastIndexOf("/");g=window.location.pathname.substring(0,g+1);b=n+"//"+window.location.host+g+b}this.sendMessage=
+function(a){function b(a){a=new String(a);return a.length+"."+a}if(c.isConnected()&&0!==arguments.length){for(var d=b(arguments[0]),f=1;f<arguments.length;f++)d+=","+b(arguments[f]);e.send(d+";")}};this.connect=function(f){a();c.setState(Guacamole.Tunnel.State.CONNECTING);e=new WebSocket(b+"?"+f,"guacamole");e.onopen=function(b){a();m=setInterval(function(){c.sendMessage(Guacamole.Tunnel.INTERNAL_DATA_OPCODE,"ping",(new Date).getTime())},500)};e.onclose=function(a){a.reason?d(new Guacamole.Status(parseInt(a.reason),
+a.reason)):a.code?d(new Guacamole.Status(Guacamole.Status.Code.fromWebSocketCode(a.code))):d(new Guacamole.Status(Guacamole.Status.Code.UPSTREAM_NOT_FOUND))};e.onmessage=function(b){a();b=b.data;var e=0,f=[];do{var g=b.indexOf(".",e);if(-1!==g){var l=parseInt(b.substring(l+1,g));e=g+1;l=e+l}else d(new Guacamole.Status(Guacamole.Status.Code.SERVER_ERROR,"Incomplete instruction."));e=b.substring(e,l);g=b.substring(l,l+1);f.push(e);if(";"===g){e=f.shift();null===c.uuid&&(e===Guacamole.Tunnel.INTERNAL_DATA_OPCODE&&
+c.setUUID(f[0]),c.setState(Guacamole.Tunnel.State.OPEN));if(e!==Guacamole.Tunnel.INTERNAL_DATA_OPCODE&&c.oninstruction)c.oninstruction(e,f);f.length=0}e=l+1}while(e<b.length)}};this.disconnect=function(){d(new Guacamole.Status(Guacamole.Status.Code.SUCCESS,"Manually closed."))}};Guacamole.WebSocketTunnel.prototype=new Guacamole.Tunnel;
+Guacamole.ChainedTunnel=function(b){function a(b){function k(){b.onstatechange=d.onstatechange;b.oninstruction=d.oninstruction;b.onerror=d.onerror;b.onuuid=d.onuuid;b.uuid&&d.setUUID(b.uuid);f=b}d.disconnect=b.disconnect;d.sendMessage=b.sendMessage;var g=function(c){if(c&&c.code===Guacamole.Status.Code.UPSTREAM_TIMEOUT)return e=[],null;if(c=e.shift())b.onerror=null,b.oninstruction=null,b.onstatechange=null,a(c);return c};b.onstatechange=function(a){switch(a){case Guacamole.Tunnel.State.OPEN:k();if(d.onstatechange)d.onstatechange(a);
+break;case Guacamole.Tunnel.State.CLOSED:if(!g()&&d.onstatechange)d.onstatechange(a)}};b.oninstruction=function(a,b){k();if(d.oninstruction)d.oninstruction(a,b)};b.onerror=function(a){if(!g(a)&&d.onerror)d.onerror(a)};b.connect(c)}for(var d=this,c,e=[],f=null,k=0;k<arguments.length;k++)e.push(arguments[k]);this.connect=function(b){c=b;if(b=f?f:e.shift())a(b);else if(d.onerror)d.onerror(Guacamole.Status.Code.SERVER_ERROR,"No tunnels to try.")}};Guacamole.ChainedTunnel.prototype=new Guacamole.Tunnel;
+Guacamole.StaticHTTPTunnel=function(b,a,d){function c(a,b){for(var c in b)a.setRequestHeader(c,b[c])}var e=this,f=null,k=d||{};this.sendMessage=function(a){};this.connect=function(d){e.disconnect();e.setState(Guacamole.Tunnel.State.CONNECTING);f=new XMLHttpRequest;f.open("GET",b);f.withCredentials=!!a;c(f,k);f.responseType="text";f.send(null);var m=0,g=new Guacamole.Parser;g.oninstruction=function(a,b){if(e.oninstruction)e.oninstruction(a,b)};f.onreadystatechange=function(){if(3===f.readyState||4===
+f.readyState){e.setState(Guacamole.Tunnel.State.OPEN);var a=f.responseText,b=a.length;m<b&&(g.receive(a.substring(m)),m=b)}4===f.readyState&&e.disconnect()};f.onerror=function(){if(e.onerror)e.onerror(new Guacamole.Status(Guacamole.Status.Code.fromHTTPCode(f.status),f.statusText));e.disconnect()}};this.disconnect=function(){f&&(f.abort(),f=null);e.setState(Guacamole.Tunnel.State.CLOSED)}};Guacamole.StaticHTTPTunnel.prototype=new Guacamole.Tunnel;Guacamole=Guacamole||{};Guacamole.API_VERSION="1.4.0";
+Guacamole=Guacamole||{};Guacamole.VideoPlayer=function(){this.sync=function(){}};Guacamole.VideoPlayer.isSupportedType=function(b){return!1};Guacamole.VideoPlayer.getSupportedTypes=function(){return[]};Guacamole.VideoPlayer.getInstance=function(b,a,d){return null};
\ No newline at end of file
diff --git a/web/static/js/hexdump.js b/web/static/js/hexdump.js
index 9c27532bcc8..6d2ac9f077b 100644
--- a/web/static/js/hexdump.js
+++ b/web/static/js/hexdump.js
@@ -13,11 +13,11 @@ var Hexy = function (buffer, config) {
   var self = this
 
   config = config || {}
- 
+
   self.buffer    = buffer // magic string conversion here?
   self.width     = config.width || 16
   self.numbering = config.numbering == "none"  ? "none" : "hex_bytes"
-   
+
   switch (config.format) {
     case "none":
     case "twos":
@@ -26,7 +26,7 @@ var Hexy = function (buffer, config) {
     default:
       self.format = "fours"
   }
-  
+
   self.caps        = config.caps        == "upper" ? "upper" : "lower"
   self.annotate    = config.annotate    == "none"  ? "none"  : "ascii"
   self.prefix      = config.prefix      || ""
@@ -34,7 +34,7 @@ var Hexy = function (buffer, config) {
   self.html        = config.html        || false
   self.offset      = config.offset      || 0
   self.length      = config.length      || -1
-  
+
   self.display_offset = config.display_offset || 0
 
   if (self.offset) {
@@ -57,11 +57,11 @@ var Hexy = function (buffer, config) {
 
   this.toString = function () {
     var str = ""
-    
+
     if (self.html) { str += "<div class='hexy'>\n"}
     //split up into line of max `self.width`
     var line_arr = lines()
-    
+
     //lines().forEach(function(hex_raw, i)
     for (var i = 0; i!= line_arr.length; ++i) {
       var hex_raw = line_arr[i],
@@ -81,20 +81,20 @@ var Hexy = function (buffer, config) {
       for (var j =0; j< hex.length; j+=howMany) {
         var s = hex.substr(j, howMany)
         hex_formatted += s + " "
-      } 
+      }
 
       var addr = (i*self.width)+self.offset+self.display_offset;
       if (self.html) {
         odd = i%2 == 0 ? " even" : "  odd"
         str += "<div class='"+pad(addr, 8)+odd+"'>"
       }
-      str += self.prefix 
+      str += self.prefix
 
       if (self.numbering === "hex_bytes") {
         str += pad(addr, 8) // padding...
         str += ": "
       }
-      
+
       var padlen = 0
       switch(self.format) {
         case "fours":
@@ -117,7 +117,7 @@ var Hexy = function (buffer, config) {
         str += "</div>\n"
       } else {
       str += "\n"
-      } 
+      }
     }
     if (self.html) { str += "</div>\n"}
     return str
@@ -155,12 +155,12 @@ var Hexy = function (buffer, config) {
 
   var pad = function(b, len) {
     var s = b.toString(16)
-    
+
     while (s.length < len) {
       s = "0" + s
     }
     return s
-  } 
+  }
   var rpad = function(s, len) {
     for (var n = len - s.length; n!=0; --n) {
       if (self.html) {
@@ -168,7 +168,7 @@ var Hexy = function (buffer, config) {
       } else {
         s += " "
       }
-    
+
     }
     return s
   }
@@ -179,7 +179,7 @@ var Hexy = function (buffer, config) {
     str = str.split(">").join("&gt;")
     return str
   }
-  
+
 
 }
 
@@ -194,14 +194,14 @@ var Hexy = function (buffer, config) {
  */
 
 var base64 = new function()
-// 
+//
 {
     var utfLibName  = "utf";
     var b64char     = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/";
     var b64encTable = b64char.split("");
     var b64decTable = [];
     for (var i=0; i<b64char.length; i++) b64decTable[b64char.charAt(i)] = i;
-    
+
     this.decode = function(_b64, _strMode)
     {
         var tmp = decoder( _b64 );
@@ -209,17 +209,17 @@ var base64 = new function()
         for (i in tmp) str += String.fromCharCode(tmp[i]);
         return str;
     }
-    
+
     var decoder = function(_b64)
     {
         _b64    = _b64.replace(/[^A-Za-z0-9\+\/]/g, "");
         var md  = _b64.length % 4;
         var j, i, tmp;
         var dat = [];
-        
+
         // replace 時 = も削っている。その = の代わりに 0x0 を補間
         if (md) for (i=0; i<4-md; i++) _b64 += "A";
-        
+
         for (j=i=0; i<_b64.length; i+=4, j+=3)
         {
             tmp = (b64decTable[_b64.charAt( i )] <<18)
diff --git a/web/static/js/jquery-ui.min.js b/web/static/js/jquery-ui.min.js
new file mode 100644
index 00000000000..25398a16741
--- /dev/null
+++ b/web/static/js/jquery-ui.min.js
@@ -0,0 +1,13 @@
+/*! jQuery UI - v1.12.1 - 2016-09-14
+* http://jqueryui.com
+* Includes: widget.js, position.js, data.js, disable-selection.js, effect.js, effects/effect-blind.js, effects/effect-bounce.js, effects/effect-clip.js, effects/effect-drop.js, effects/effect-explode.js, effects/effect-fade.js, effects/effect-fold.js, effects/effect-highlight.js, effects/effect-puff.js, effects/effect-pulsate.js, effects/effect-scale.js, effects/effect-shake.js, effects/effect-size.js, effects/effect-slide.js, effects/effect-transfer.js, focusable.js, form-reset-mixin.js, jquery-1-7.js, keycode.js, labels.js, scroll-parent.js, tabbable.js, unique-id.js, widgets/accordion.js, widgets/autocomplete.js, widgets/button.js, widgets/checkboxradio.js, widgets/controlgroup.js, widgets/datepicker.js, widgets/dialog.js, widgets/draggable.js, widgets/droppable.js, widgets/menu.js, widgets/mouse.js, widgets/progressbar.js, widgets/resizable.js, widgets/selectable.js, widgets/selectmenu.js, widgets/slider.js, widgets/sortable.js, widgets/spinner.js, widgets/tabs.js, widgets/tooltip.js
+* Copyright jQuery Foundation and other contributors; Licensed MIT */
+
+(function(t){"function"==typeof define&&define.amd?define(["jquery"],t):t(jQuery)})(function(t){function e(t){for(var e=t.css("visibility");"inherit"===e;)t=t.parent(),e=t.css("visibility");return"hidden"!==e}function i(t){for(var e,i;t.length&&t[0]!==document;){if(e=t.css("position"),("absolute"===e||"relative"===e||"fixed"===e)&&(i=parseInt(t.css("zIndex"),10),!isNaN(i)&&0!==i))return i;t=t.parent()}return 0}function s(){this._curInst=null,this._keyEvent=!1,this._disabledInputs=[],this._datepickerShowing=!1,this._inDialog=!1,this._mainDivId="ui-datepicker-div",this._inlineClass="ui-datepicker-inline",this._appendClass="ui-datepicker-append",this._triggerClass="ui-datepicker-trigger",this._dialogClass="ui-datepicker-dialog",this._disableClass="ui-datepicker-disabled",this._unselectableClass="ui-datepicker-unselectable",this._currentClass="ui-datepicker-current-day",this._dayOverClass="ui-datepicker-days-cell-over",this.regional=[],this.regional[""]={closeText:"Done",prevText:"Prev",nextText:"Next",currentText:"Today",monthNames:["January","February","March","April","May","June","July","August","September","October","November","December"],monthNamesShort:["Jan","Feb","Mar","Apr","May","Jun","Jul","Aug","Sep","Oct","Nov","Dec"],dayNames:["Sunday","Monday","Tuesday","Wednesday","Thursday","Friday","Saturday"],dayNamesShort:["Sun","Mon","Tue","Wed","Thu","Fri","Sat"],dayNamesMin:["Su","Mo","Tu","We","Th","Fr","Sa"],weekHeader:"Wk",dateFormat:"mm/dd/yy",firstDay:0,isRTL:!1,showMonthAfterYear:!1,yearSuffix:""},this._defaults={showOn:"focus",showAnim:"fadeIn",showOptions:{},defaultDate:null,appendText:"",buttonText:"...",buttonImage:"",buttonImageOnly:!1,hideIfNoPrevNext:!1,navigationAsDateFormat:!1,gotoCurrent:!1,changeMonth:!1,changeYear:!1,yearRange:"c-10:c+10",showOtherMonths:!1,selectOtherMonths:!1,showWeek:!1,calculateWeek:this.iso8601Week,shortYearCutoff:"+10",minDate:null,maxDate:null,duration:"fast",beforeShowDay:null,beforeShow:null,onSelect:null,onChangeMonthYear:null,onClose:null,numberOfMonths:1,showCurrentAtPos:0,stepMonths:1,stepBigMonths:12,altField:"",altFormat:"",constrainInput:!0,showButtonPanel:!1,autoSize:!1,disabled:!1},t.extend(this._defaults,this.regional[""]),this.regional.en=t.extend(!0,{},this.regional[""]),this.regional["en-US"]=t.extend(!0,{},this.regional.en),this.dpDiv=n(t("<div id='"+this._mainDivId+"' class='ui-datepicker ui-widget ui-widget-content ui-helper-clearfix ui-corner-all'></div>"))}function n(e){var i="button, .ui-datepicker-prev, .ui-datepicker-next, .ui-datepicker-calendar td a";return e.on("mouseout",i,function(){t(this).removeClass("ui-state-hover"),-1!==this.className.indexOf("ui-datepicker-prev")&&t(this).removeClass("ui-datepicker-prev-hover"),-1!==this.className.indexOf("ui-datepicker-next")&&t(this).removeClass("ui-datepicker-next-hover")}).on("mouseover",i,o)}function o(){t.datepicker._isDisabledDatepicker(m.inline?m.dpDiv.parent()[0]:m.input[0])||(t(this).parents(".ui-datepicker-calendar").find("a").removeClass("ui-state-hover"),t(this).addClass("ui-state-hover"),-1!==this.className.indexOf("ui-datepicker-prev")&&t(this).addClass("ui-datepicker-prev-hover"),-1!==this.className.indexOf("ui-datepicker-next")&&t(this).addClass("ui-datepicker-next-hover"))}function a(e,i){t.extend(e,i);for(var s in i)null==i[s]&&(e[s]=i[s]);return e}function r(t){return function(){var e=this.element.val();t.apply(this,arguments),this._refresh(),e!==this.element.val()&&this._trigger("change")}}t.ui=t.ui||{},t.ui.version="1.12.1";var h=0,l=Array.prototype.slice;t.cleanData=function(e){return function(i){var s,n,o;for(o=0;null!=(n=i[o]);o++)try{s=t._data(n,"events"),s&&s.remove&&t(n).triggerHandler("remove")}catch(a){}e(i)}}(t.cleanData),t.widget=function(e,i,s){var n,o,a,r={},h=e.split(".")[0];e=e.split(".")[1];var l=h+"-"+e;return s||(s=i,i=t.Widget),t.isArray(s)&&(s=t.extend.apply(null,[{}].concat(s))),t.expr[":"][l.toLowerCase()]=function(e){return!!t.data(e,l)},t[h]=t[h]||{},n=t[h][e],o=t[h][e]=function(t,e){return this._createWidget?(arguments.length&&this._createWidget(t,e),void 0):new o(t,e)},t.extend(o,n,{version:s.version,_proto:t.extend({},s),_childConstructors:[]}),a=new i,a.options=t.widget.extend({},a.options),t.each(s,function(e,s){return t.isFunction(s)?(r[e]=function(){function t(){return i.prototype[e].apply(this,arguments)}function n(t){return i.prototype[e].apply(this,t)}return function(){var e,i=this._super,o=this._superApply;return this._super=t,this._superApply=n,e=s.apply(this,arguments),this._super=i,this._superApply=o,e}}(),void 0):(r[e]=s,void 0)}),o.prototype=t.widget.extend(a,{widgetEventPrefix:n?a.widgetEventPrefix||e:e},r,{constructor:o,namespace:h,widgetName:e,widgetFullName:l}),n?(t.each(n._childConstructors,function(e,i){var s=i.prototype;t.widget(s.namespace+"."+s.widgetName,o,i._proto)}),delete n._childConstructors):i._childConstructors.push(o),t.widget.bridge(e,o),o},t.widget.extend=function(e){for(var i,s,n=l.call(arguments,1),o=0,a=n.length;a>o;o++)for(i in n[o])s=n[o][i],n[o].hasOwnProperty(i)&&void 0!==s&&(e[i]=t.isPlainObject(s)?t.isPlainObject(e[i])?t.widget.extend({},e[i],s):t.widget.extend({},s):s);return e},t.widget.bridge=function(e,i){var s=i.prototype.widgetFullName||e;t.fn[e]=function(n){var o="string"==typeof n,a=l.call(arguments,1),r=this;return o?this.length||"instance"!==n?this.each(function(){var i,o=t.data(this,s);return"instance"===n?(r=o,!1):o?t.isFunction(o[n])&&"_"!==n.charAt(0)?(i=o[n].apply(o,a),i!==o&&void 0!==i?(r=i&&i.jquery?r.pushStack(i.get()):i,!1):void 0):t.error("no such method '"+n+"' for "+e+" widget instance"):t.error("cannot call methods on "+e+" prior to initialization; "+"attempted to call method '"+n+"'")}):r=void 0:(a.length&&(n=t.widget.extend.apply(null,[n].concat(a))),this.each(function(){var e=t.data(this,s);e?(e.option(n||{}),e._init&&e._init()):t.data(this,s,new i(n,this))})),r}},t.Widget=function(){},t.Widget._childConstructors=[],t.Widget.prototype={widgetName:"widget",widgetEventPrefix:"",defaultElement:"<div>",options:{classes:{},disabled:!1,create:null},_createWidget:function(e,i){i=t(i||this.defaultElement||this)[0],this.element=t(i),this.uuid=h++,this.eventNamespace="."+this.widgetName+this.uuid,this.bindings=t(),this.hoverable=t(),this.focusable=t(),this.classesElementLookup={},i!==this&&(t.data(i,this.widgetFullName,this),this._on(!0,this.element,{remove:function(t){t.target===i&&this.destroy()}}),this.document=t(i.style?i.ownerDocument:i.document||i),this.window=t(this.document[0].defaultView||this.document[0].parentWindow)),this.options=t.widget.extend({},this.options,this._getCreateOptions(),e),this._create(),this.options.disabled&&this._setOptionDisabled(this.options.disabled),this._trigger("create",null,this._getCreateEventData()),this._init()},_getCreateOptions:function(){return{}},_getCreateEventData:t.noop,_create:t.noop,_init:t.noop,destroy:function(){var e=this;this._destroy(),t.each(this.classesElementLookup,function(t,i){e._removeClass(i,t)}),this.element.off(this.eventNamespace).removeData(this.widgetFullName),this.widget().off(this.eventNamespace).removeAttr("aria-disabled"),this.bindings.off(this.eventNamespace)},_destroy:t.noop,widget:function(){return this.element},option:function(e,i){var s,n,o,a=e;if(0===arguments.length)return t.widget.extend({},this.options);if("string"==typeof e)if(a={},s=e.split("."),e=s.shift(),s.length){for(n=a[e]=t.widget.extend({},this.options[e]),o=0;s.length-1>o;o++)n[s[o]]=n[s[o]]||{},n=n[s[o]];if(e=s.pop(),1===arguments.length)return void 0===n[e]?null:n[e];n[e]=i}else{if(1===arguments.length)return void 0===this.options[e]?null:this.options[e];a[e]=i}return this._setOptions(a),this},_setOptions:function(t){var e;for(e in t)this._setOption(e,t[e]);return this},_setOption:function(t,e){return"classes"===t&&this._setOptionClasses(e),this.options[t]=e,"disabled"===t&&this._setOptionDisabled(e),this},_setOptionClasses:function(e){var i,s,n;for(i in e)n=this.classesElementLookup[i],e[i]!==this.options.classes[i]&&n&&n.length&&(s=t(n.get()),this._removeClass(n,i),s.addClass(this._classes({element:s,keys:i,classes:e,add:!0})))},_setOptionDisabled:function(t){this._toggleClass(this.widget(),this.widgetFullName+"-disabled",null,!!t),t&&(this._removeClass(this.hoverable,null,"ui-state-hover"),this._removeClass(this.focusable,null,"ui-state-focus"))},enable:function(){return this._setOptions({disabled:!1})},disable:function(){return this._setOptions({disabled:!0})},_classes:function(e){function i(i,o){var a,r;for(r=0;i.length>r;r++)a=n.classesElementLookup[i[r]]||t(),a=e.add?t(t.unique(a.get().concat(e.element.get()))):t(a.not(e.element).get()),n.classesElementLookup[i[r]]=a,s.push(i[r]),o&&e.classes[i[r]]&&s.push(e.classes[i[r]])}var s=[],n=this;return e=t.extend({element:this.element,classes:this.options.classes||{}},e),this._on(e.element,{remove:"_untrackClassesElement"}),e.keys&&i(e.keys.match(/\S+/g)||[],!0),e.extra&&i(e.extra.match(/\S+/g)||[]),s.join(" ")},_untrackClassesElement:function(e){var i=this;t.each(i.classesElementLookup,function(s,n){-1!==t.inArray(e.target,n)&&(i.classesElementLookup[s]=t(n.not(e.target).get()))})},_removeClass:function(t,e,i){return this._toggleClass(t,e,i,!1)},_addClass:function(t,e,i){return this._toggleClass(t,e,i,!0)},_toggleClass:function(t,e,i,s){s="boolean"==typeof s?s:i;var n="string"==typeof t||null===t,o={extra:n?e:i,keys:n?t:e,element:n?this.element:t,add:s};return o.element.toggleClass(this._classes(o),s),this},_on:function(e,i,s){var n,o=this;"boolean"!=typeof e&&(s=i,i=e,e=!1),s?(i=n=t(i),this.bindings=this.bindings.add(i)):(s=i,i=this.element,n=this.widget()),t.each(s,function(s,a){function r(){return e||o.options.disabled!==!0&&!t(this).hasClass("ui-state-disabled")?("string"==typeof a?o[a]:a).apply(o,arguments):void 0}"string"!=typeof a&&(r.guid=a.guid=a.guid||r.guid||t.guid++);var h=s.match(/^([\w:-]*)\s*(.*)$/),l=h[1]+o.eventNamespace,c=h[2];c?n.on(l,c,r):i.on(l,r)})},_off:function(e,i){i=(i||"").split(" ").join(this.eventNamespace+" ")+this.eventNamespace,e.off(i).off(i),this.bindings=t(this.bindings.not(e).get()),this.focusable=t(this.focusable.not(e).get()),this.hoverable=t(this.hoverable.not(e).get())},_delay:function(t,e){function i(){return("string"==typeof t?s[t]:t).apply(s,arguments)}var s=this;return setTimeout(i,e||0)},_hoverable:function(e){this.hoverable=this.hoverable.add(e),this._on(e,{mouseenter:function(e){this._addClass(t(e.currentTarget),null,"ui-state-hover")},mouseleave:function(e){this._removeClass(t(e.currentTarget),null,"ui-state-hover")}})},_focusable:function(e){this.focusable=this.focusable.add(e),this._on(e,{focusin:function(e){this._addClass(t(e.currentTarget),null,"ui-state-focus")},focusout:function(e){this._removeClass(t(e.currentTarget),null,"ui-state-focus")}})},_trigger:function(e,i,s){var n,o,a=this.options[e];if(s=s||{},i=t.Event(i),i.type=(e===this.widgetEventPrefix?e:this.widgetEventPrefix+e).toLowerCase(),i.target=this.element[0],o=i.originalEvent)for(n in o)n in i||(i[n]=o[n]);return this.element.trigger(i,s),!(t.isFunction(a)&&a.apply(this.element[0],[i].concat(s))===!1||i.isDefaultPrevented())}},t.each({show:"fadeIn",hide:"fadeOut"},function(e,i){t.Widget.prototype["_"+e]=function(s,n,o){"string"==typeof n&&(n={effect:n});var a,r=n?n===!0||"number"==typeof n?i:n.effect||i:e;n=n||{},"number"==typeof n&&(n={duration:n}),a=!t.isEmptyObject(n),n.complete=o,n.delay&&s.delay(n.delay),a&&t.effects&&t.effects.effect[r]?s[e](n):r!==e&&s[r]?s[r](n.duration,n.easing,o):s.queue(function(i){t(this)[e](),o&&o.call(s[0]),i()})}}),t.widget,function(){function e(t,e,i){return[parseFloat(t[0])*(u.test(t[0])?e/100:1),parseFloat(t[1])*(u.test(t[1])?i/100:1)]}function i(e,i){return parseInt(t.css(e,i),10)||0}function s(e){var i=e[0];return 9===i.nodeType?{width:e.width(),height:e.height(),offset:{top:0,left:0}}:t.isWindow(i)?{width:e.width(),height:e.height(),offset:{top:e.scrollTop(),left:e.scrollLeft()}}:i.preventDefault?{width:0,height:0,offset:{top:i.pageY,left:i.pageX}}:{width:e.outerWidth(),height:e.outerHeight(),offset:e.offset()}}var n,o=Math.max,a=Math.abs,r=/left|center|right/,h=/top|center|bottom/,l=/[\+\-]\d+(\.[\d]+)?%?/,c=/^\w+/,u=/%$/,d=t.fn.position;t.position={scrollbarWidth:function(){if(void 0!==n)return n;var e,i,s=t("<div style='display:block;position:absolute;width:50px;height:50px;overflow:hidden;'><div style='height:100px;width:auto;'></div></div>"),o=s.children()[0];return t("body").append(s),e=o.offsetWidth,s.css("overflow","scroll"),i=o.offsetWidth,e===i&&(i=s[0].clientWidth),s.remove(),n=e-i},getScrollInfo:function(e){var i=e.isWindow||e.isDocument?"":e.element.css("overflow-x"),s=e.isWindow||e.isDocument?"":e.element.css("overflow-y"),n="scroll"===i||"auto"===i&&e.width<e.element[0].scrollWidth,o="scroll"===s||"auto"===s&&e.height<e.element[0].scrollHeight;return{width:o?t.position.scrollbarWidth():0,height:n?t.position.scrollbarWidth():0}},getWithinInfo:function(e){var i=t(e||window),s=t.isWindow(i[0]),n=!!i[0]&&9===i[0].nodeType,o=!s&&!n;return{element:i,isWindow:s,isDocument:n,offset:o?t(e).offset():{left:0,top:0},scrollLeft:i.scrollLeft(),scrollTop:i.scrollTop(),width:i.outerWidth(),height:i.outerHeight()}}},t.fn.position=function(n){if(!n||!n.of)return d.apply(this,arguments);n=t.extend({},n);var u,p,f,g,m,_,v=t(n.of),b=t.position.getWithinInfo(n.within),y=t.position.getScrollInfo(b),w=(n.collision||"flip").split(" "),k={};return _=s(v),v[0].preventDefault&&(n.at="left top"),p=_.width,f=_.height,g=_.offset,m=t.extend({},g),t.each(["my","at"],function(){var t,e,i=(n[this]||"").split(" ");1===i.length&&(i=r.test(i[0])?i.concat(["center"]):h.test(i[0])?["center"].concat(i):["center","center"]),i[0]=r.test(i[0])?i[0]:"center",i[1]=h.test(i[1])?i[1]:"center",t=l.exec(i[0]),e=l.exec(i[1]),k[this]=[t?t[0]:0,e?e[0]:0],n[this]=[c.exec(i[0])[0],c.exec(i[1])[0]]}),1===w.length&&(w[1]=w[0]),"right"===n.at[0]?m.left+=p:"center"===n.at[0]&&(m.left+=p/2),"bottom"===n.at[1]?m.top+=f:"center"===n.at[1]&&(m.top+=f/2),u=e(k.at,p,f),m.left+=u[0],m.top+=u[1],this.each(function(){var s,r,h=t(this),l=h.outerWidth(),c=h.outerHeight(),d=i(this,"marginLeft"),_=i(this,"marginTop"),x=l+d+i(this,"marginRight")+y.width,C=c+_+i(this,"marginBottom")+y.height,D=t.extend({},m),I=e(k.my,h.outerWidth(),h.outerHeight());"right"===n.my[0]?D.left-=l:"center"===n.my[0]&&(D.left-=l/2),"bottom"===n.my[1]?D.top-=c:"center"===n.my[1]&&(D.top-=c/2),D.left+=I[0],D.top+=I[1],s={marginLeft:d,marginTop:_},t.each(["left","top"],function(e,i){t.ui.position[w[e]]&&t.ui.position[w[e]][i](D,{targetWidth:p,targetHeight:f,elemWidth:l,elemHeight:c,collisionPosition:s,collisionWidth:x,collisionHeight:C,offset:[u[0]+I[0],u[1]+I[1]],my:n.my,at:n.at,within:b,elem:h})}),n.using&&(r=function(t){var e=g.left-D.left,i=e+p-l,s=g.top-D.top,r=s+f-c,u={target:{element:v,left:g.left,top:g.top,width:p,height:f},element:{element:h,left:D.left,top:D.top,width:l,height:c},horizontal:0>i?"left":e>0?"right":"center",vertical:0>r?"top":s>0?"bottom":"middle"};l>p&&p>a(e+i)&&(u.horizontal="center"),c>f&&f>a(s+r)&&(u.vertical="middle"),u.important=o(a(e),a(i))>o(a(s),a(r))?"horizontal":"vertical",n.using.call(this,t,u)}),h.offset(t.extend(D,{using:r}))})},t.ui.position={fit:{left:function(t,e){var i,s=e.within,n=s.isWindow?s.scrollLeft:s.offset.left,a=s.width,r=t.left-e.collisionPosition.marginLeft,h=n-r,l=r+e.collisionWidth-a-n;e.collisionWidth>a?h>0&&0>=l?(i=t.left+h+e.collisionWidth-a-n,t.left+=h-i):t.left=l>0&&0>=h?n:h>l?n+a-e.collisionWidth:n:h>0?t.left+=h:l>0?t.left-=l:t.left=o(t.left-r,t.left)},top:function(t,e){var i,s=e.within,n=s.isWindow?s.scrollTop:s.offset.top,a=e.within.height,r=t.top-e.collisionPosition.marginTop,h=n-r,l=r+e.collisionHeight-a-n;e.collisionHeight>a?h>0&&0>=l?(i=t.top+h+e.collisionHeight-a-n,t.top+=h-i):t.top=l>0&&0>=h?n:h>l?n+a-e.collisionHeight:n:h>0?t.top+=h:l>0?t.top-=l:t.top=o(t.top-r,t.top)}},flip:{left:function(t,e){var i,s,n=e.within,o=n.offset.left+n.scrollLeft,r=n.width,h=n.isWindow?n.scrollLeft:n.offset.left,l=t.left-e.collisionPosition.marginLeft,c=l-h,u=l+e.collisionWidth-r-h,d="left"===e.my[0]?-e.elemWidth:"right"===e.my[0]?e.elemWidth:0,p="left"===e.at[0]?e.targetWidth:"right"===e.at[0]?-e.targetWidth:0,f=-2*e.offset[0];0>c?(i=t.left+d+p+f+e.collisionWidth-r-o,(0>i||a(c)>i)&&(t.left+=d+p+f)):u>0&&(s=t.left-e.collisionPosition.marginLeft+d+p+f-h,(s>0||u>a(s))&&(t.left+=d+p+f))},top:function(t,e){var i,s,n=e.within,o=n.offset.top+n.scrollTop,r=n.height,h=n.isWindow?n.scrollTop:n.offset.top,l=t.top-e.collisionPosition.marginTop,c=l-h,u=l+e.collisionHeight-r-h,d="top"===e.my[1],p=d?-e.elemHeight:"bottom"===e.my[1]?e.elemHeight:0,f="top"===e.at[1]?e.targetHeight:"bottom"===e.at[1]?-e.targetHeight:0,g=-2*e.offset[1];0>c?(s=t.top+p+f+g+e.collisionHeight-r-o,(0>s||a(c)>s)&&(t.top+=p+f+g)):u>0&&(i=t.top-e.collisionPosition.marginTop+p+f+g-h,(i>0||u>a(i))&&(t.top+=p+f+g))}},flipfit:{left:function(){t.ui.position.flip.left.apply(this,arguments),t.ui.position.fit.left.apply(this,arguments)},top:function(){t.ui.position.flip.top.apply(this,arguments),t.ui.position.fit.top.apply(this,arguments)}}}}(),t.ui.position,t.extend(t.expr[":"],{data:t.expr.createPseudo?t.expr.createPseudo(function(e){return function(i){return!!t.data(i,e)}}):function(e,i,s){return!!t.data(e,s[3])}}),t.fn.extend({disableSelection:function(){var t="onselectstart"in document.createElement("div")?"selectstart":"mousedown";return function(){return this.on(t+".ui-disableSelection",function(t){t.preventDefault()})}}(),enableSelection:function(){return this.off(".ui-disableSelection")}});var c="ui-effects-",u="ui-effects-style",d="ui-effects-animated",p=t;t.effects={effect:{}},function(t,e){function i(t,e,i){var s=u[e.type]||{};return null==t?i||!e.def?null:e.def:(t=s.floor?~~t:parseFloat(t),isNaN(t)?e.def:s.mod?(t+s.mod)%s.mod:0>t?0:t>s.max?s.max:t)}function s(i){var s=l(),n=s._rgba=[];return i=i.toLowerCase(),f(h,function(t,o){var a,r=o.re.exec(i),h=r&&o.parse(r),l=o.space||"rgba";return h?(a=s[l](h),s[c[l].cache]=a[c[l].cache],n=s._rgba=a._rgba,!1):e}),n.length?("0,0,0,0"===n.join()&&t.extend(n,o.transparent),s):o[i]}function n(t,e,i){return i=(i+1)%1,1>6*i?t+6*(e-t)*i:1>2*i?e:2>3*i?t+6*(e-t)*(2/3-i):t}var o,a="backgroundColor borderBottomColor borderLeftColor borderRightColor borderTopColor color columnRuleColor outlineColor textDecorationColor textEmphasisColor",r=/^([\-+])=\s*(\d+\.?\d*)/,h=[{re:/rgba?\(\s*(\d{1,3})\s*,\s*(\d{1,3})\s*,\s*(\d{1,3})\s*(?:,\s*(\d?(?:\.\d+)?)\s*)?\)/,parse:function(t){return[t[1],t[2],t[3],t[4]]}},{re:/rgba?\(\s*(\d+(?:\.\d+)?)\%\s*,\s*(\d+(?:\.\d+)?)\%\s*,\s*(\d+(?:\.\d+)?)\%\s*(?:,\s*(\d?(?:\.\d+)?)\s*)?\)/,parse:function(t){return[2.55*t[1],2.55*t[2],2.55*t[3],t[4]]}},{re:/#([a-f0-9]{2})([a-f0-9]{2})([a-f0-9]{2})/,parse:function(t){return[parseInt(t[1],16),parseInt(t[2],16),parseInt(t[3],16)]}},{re:/#([a-f0-9])([a-f0-9])([a-f0-9])/,parse:function(t){return[parseInt(t[1]+t[1],16),parseInt(t[2]+t[2],16),parseInt(t[3]+t[3],16)]}},{re:/hsla?\(\s*(\d+(?:\.\d+)?)\s*,\s*(\d+(?:\.\d+)?)\%\s*,\s*(\d+(?:\.\d+)?)\%\s*(?:,\s*(\d?(?:\.\d+)?)\s*)?\)/,space:"hsla",parse:function(t){return[t[1],t[2]/100,t[3]/100,t[4]]}}],l=t.Color=function(e,i,s,n){return new t.Color.fn.parse(e,i,s,n)},c={rgba:{props:{red:{idx:0,type:"byte"},green:{idx:1,type:"byte"},blue:{idx:2,type:"byte"}}},hsla:{props:{hue:{idx:0,type:"degrees"},saturation:{idx:1,type:"percent"},lightness:{idx:2,type:"percent"}}}},u={"byte":{floor:!0,max:255},percent:{max:1},degrees:{mod:360,floor:!0}},d=l.support={},p=t("<p>")[0],f=t.each;p.style.cssText="background-color:rgba(1,1,1,.5)",d.rgba=p.style.backgroundColor.indexOf("rgba")>-1,f(c,function(t,e){e.cache="_"+t,e.props.alpha={idx:3,type:"percent",def:1}}),l.fn=t.extend(l.prototype,{parse:function(n,a,r,h){if(n===e)return this._rgba=[null,null,null,null],this;(n.jquery||n.nodeType)&&(n=t(n).css(a),a=e);var u=this,d=t.type(n),p=this._rgba=[];return a!==e&&(n=[n,a,r,h],d="array"),"string"===d?this.parse(s(n)||o._default):"array"===d?(f(c.rgba.props,function(t,e){p[e.idx]=i(n[e.idx],e)}),this):"object"===d?(n instanceof l?f(c,function(t,e){n[e.cache]&&(u[e.cache]=n[e.cache].slice())}):f(c,function(e,s){var o=s.cache;f(s.props,function(t,e){if(!u[o]&&s.to){if("alpha"===t||null==n[t])return;u[o]=s.to(u._rgba)}u[o][e.idx]=i(n[t],e,!0)}),u[o]&&0>t.inArray(null,u[o].slice(0,3))&&(u[o][3]=1,s.from&&(u._rgba=s.from(u[o])))}),this):e},is:function(t){var i=l(t),s=!0,n=this;return f(c,function(t,o){var a,r=i[o.cache];return r&&(a=n[o.cache]||o.to&&o.to(n._rgba)||[],f(o.props,function(t,i){return null!=r[i.idx]?s=r[i.idx]===a[i.idx]:e})),s}),s},_space:function(){var t=[],e=this;return f(c,function(i,s){e[s.cache]&&t.push(i)}),t.pop()},transition:function(t,e){var s=l(t),n=s._space(),o=c[n],a=0===this.alpha()?l("transparent"):this,r=a[o.cache]||o.to(a._rgba),h=r.slice();return s=s[o.cache],f(o.props,function(t,n){var o=n.idx,a=r[o],l=s[o],c=u[n.type]||{};null!==l&&(null===a?h[o]=l:(c.mod&&(l-a>c.mod/2?a+=c.mod:a-l>c.mod/2&&(a-=c.mod)),h[o]=i((l-a)*e+a,n)))}),this[n](h)},blend:function(e){if(1===this._rgba[3])return this;var i=this._rgba.slice(),s=i.pop(),n=l(e)._rgba;return l(t.map(i,function(t,e){return(1-s)*n[e]+s*t}))},toRgbaString:function(){var e="rgba(",i=t.map(this._rgba,function(t,e){return null==t?e>2?1:0:t});return 1===i[3]&&(i.pop(),e="rgb("),e+i.join()+")"},toHslaString:function(){var e="hsla(",i=t.map(this.hsla(),function(t,e){return null==t&&(t=e>2?1:0),e&&3>e&&(t=Math.round(100*t)+"%"),t});return 1===i[3]&&(i.pop(),e="hsl("),e+i.join()+")"},toHexString:function(e){var i=this._rgba.slice(),s=i.pop();return e&&i.push(~~(255*s)),"#"+t.map(i,function(t){return t=(t||0).toString(16),1===t.length?"0"+t:t}).join("")},toString:function(){return 0===this._rgba[3]?"transparent":this.toRgbaString()}}),l.fn.parse.prototype=l.fn,c.hsla.to=function(t){if(null==t[0]||null==t[1]||null==t[2])return[null,null,null,t[3]];var e,i,s=t[0]/255,n=t[1]/255,o=t[2]/255,a=t[3],r=Math.max(s,n,o),h=Math.min(s,n,o),l=r-h,c=r+h,u=.5*c;return e=h===r?0:s===r?60*(n-o)/l+360:n===r?60*(o-s)/l+120:60*(s-n)/l+240,i=0===l?0:.5>=u?l/c:l/(2-c),[Math.round(e)%360,i,u,null==a?1:a]},c.hsla.from=function(t){if(null==t[0]||null==t[1]||null==t[2])return[null,null,null,t[3]];var e=t[0]/360,i=t[1],s=t[2],o=t[3],a=.5>=s?s*(1+i):s+i-s*i,r=2*s-a;return[Math.round(255*n(r,a,e+1/3)),Math.round(255*n(r,a,e)),Math.round(255*n(r,a,e-1/3)),o]},f(c,function(s,n){var o=n.props,a=n.cache,h=n.to,c=n.from;l.fn[s]=function(s){if(h&&!this[a]&&(this[a]=h(this._rgba)),s===e)return this[a].slice();var n,r=t.type(s),u="array"===r||"object"===r?s:arguments,d=this[a].slice();return f(o,function(t,e){var s=u["object"===r?t:e.idx];null==s&&(s=d[e.idx]),d[e.idx]=i(s,e)}),c?(n=l(c(d)),n[a]=d,n):l(d)},f(o,function(e,i){l.fn[e]||(l.fn[e]=function(n){var o,a=t.type(n),h="alpha"===e?this._hsla?"hsla":"rgba":s,l=this[h](),c=l[i.idx];return"undefined"===a?c:("function"===a&&(n=n.call(this,c),a=t.type(n)),null==n&&i.empty?this:("string"===a&&(o=r.exec(n),o&&(n=c+parseFloat(o[2])*("+"===o[1]?1:-1))),l[i.idx]=n,this[h](l)))})})}),l.hook=function(e){var i=e.split(" ");f(i,function(e,i){t.cssHooks[i]={set:function(e,n){var o,a,r="";if("transparent"!==n&&("string"!==t.type(n)||(o=s(n)))){if(n=l(o||n),!d.rgba&&1!==n._rgba[3]){for(a="backgroundColor"===i?e.parentNode:e;(""===r||"transparent"===r)&&a&&a.style;)try{r=t.css(a,"backgroundColor"),a=a.parentNode}catch(h){}n=n.blend(r&&"transparent"!==r?r:"_default")}n=n.toRgbaString()}try{e.style[i]=n}catch(h){}}},t.fx.step[i]=function(e){e.colorInit||(e.start=l(e.elem,i),e.end=l(e.end),e.colorInit=!0),t.cssHooks[i].set(e.elem,e.start.transition(e.end,e.pos))}})},l.hook(a),t.cssHooks.borderColor={expand:function(t){var e={};return f(["Top","Right","Bottom","Left"],function(i,s){e["border"+s+"Color"]=t}),e}},o=t.Color.names={aqua:"#00ffff",black:"#000000",blue:"#0000ff",fuchsia:"#ff00ff",gray:"#808080",green:"#008000",lime:"#00ff00",maroon:"#800000",navy:"#000080",olive:"#808000",purple:"#800080",red:"#ff0000",silver:"#c0c0c0",teal:"#008080",white:"#ffffff",yellow:"#ffff00",transparent:[null,null,null,0],_default:"#ffffff"}}(p),function(){function e(e){var i,s,n=e.ownerDocument.defaultView?e.ownerDocument.defaultView.getComputedStyle(e,null):e.currentStyle,o={};if(n&&n.length&&n[0]&&n[n[0]])for(s=n.length;s--;)i=n[s],"string"==typeof n[i]&&(o[t.camelCase(i)]=n[i]);else for(i in n)"string"==typeof n[i]&&(o[i]=n[i]);return o}function i(e,i){var s,o,a={};for(s in i)o=i[s],e[s]!==o&&(n[s]||(t.fx.step[s]||!isNaN(parseFloat(o)))&&(a[s]=o));return a}var s=["add","remove","toggle"],n={border:1,borderBottom:1,borderColor:1,borderLeft:1,borderRight:1,borderTop:1,borderWidth:1,margin:1,padding:1};t.each(["borderLeftStyle","borderRightStyle","borderBottomStyle","borderTopStyle"],function(e,i){t.fx.step[i]=function(t){("none"!==t.end&&!t.setAttr||1===t.pos&&!t.setAttr)&&(p.style(t.elem,i,t.end),t.setAttr=!0)}}),t.fn.addBack||(t.fn.addBack=function(t){return this.add(null==t?this.prevObject:this.prevObject.filter(t))}),t.effects.animateClass=function(n,o,a,r){var h=t.speed(o,a,r);return this.queue(function(){var o,a=t(this),r=a.attr("class")||"",l=h.children?a.find("*").addBack():a;l=l.map(function(){var i=t(this);return{el:i,start:e(this)}}),o=function(){t.each(s,function(t,e){n[e]&&a[e+"Class"](n[e])})},o(),l=l.map(function(){return this.end=e(this.el[0]),this.diff=i(this.start,this.end),this}),a.attr("class",r),l=l.map(function(){var e=this,i=t.Deferred(),s=t.extend({},h,{queue:!1,complete:function(){i.resolve(e)}});return this.el.animate(this.diff,s),i.promise()}),t.when.apply(t,l.get()).done(function(){o(),t.each(arguments,function(){var e=this.el;t.each(this.diff,function(t){e.css(t,"")})}),h.complete.call(a[0])})})},t.fn.extend({addClass:function(e){return function(i,s,n,o){return s?t.effects.animateClass.call(this,{add:i},s,n,o):e.apply(this,arguments)}}(t.fn.addClass),removeClass:function(e){return function(i,s,n,o){return arguments.length>1?t.effects.animateClass.call(this,{remove:i},s,n,o):e.apply(this,arguments)}}(t.fn.removeClass),toggleClass:function(e){return function(i,s,n,o,a){return"boolean"==typeof s||void 0===s?n?t.effects.animateClass.call(this,s?{add:i}:{remove:i},n,o,a):e.apply(this,arguments):t.effects.animateClass.call(this,{toggle:i},s,n,o)}}(t.fn.toggleClass),switchClass:function(e,i,s,n,o){return t.effects.animateClass.call(this,{add:i,remove:e},s,n,o)}})}(),function(){function e(e,i,s,n){return t.isPlainObject(e)&&(i=e,e=e.effect),e={effect:e},null==i&&(i={}),t.isFunction(i)&&(n=i,s=null,i={}),("number"==typeof i||t.fx.speeds[i])&&(n=s,s=i,i={}),t.isFunction(s)&&(n=s,s=null),i&&t.extend(e,i),s=s||i.duration,e.duration=t.fx.off?0:"number"==typeof s?s:s in t.fx.speeds?t.fx.speeds[s]:t.fx.speeds._default,e.complete=n||i.complete,e}function i(e){return!e||"number"==typeof e||t.fx.speeds[e]?!0:"string"!=typeof e||t.effects.effect[e]?t.isFunction(e)?!0:"object"!=typeof e||e.effect?!1:!0:!0}function s(t,e){var i=e.outerWidth(),s=e.outerHeight(),n=/^rect\((-?\d*\.?\d*px|-?\d+%|auto),?\s*(-?\d*\.?\d*px|-?\d+%|auto),?\s*(-?\d*\.?\d*px|-?\d+%|auto),?\s*(-?\d*\.?\d*px|-?\d+%|auto)\)$/,o=n.exec(t)||["",0,i,s,0];return{top:parseFloat(o[1])||0,right:"auto"===o[2]?i:parseFloat(o[2]),bottom:"auto"===o[3]?s:parseFloat(o[3]),left:parseFloat(o[4])||0}}t.expr&&t.expr.filters&&t.expr.filters.animated&&(t.expr.filters.animated=function(e){return function(i){return!!t(i).data(d)||e(i)}}(t.expr.filters.animated)),t.uiBackCompat!==!1&&t.extend(t.effects,{save:function(t,e){for(var i=0,s=e.length;s>i;i++)null!==e[i]&&t.data(c+e[i],t[0].style[e[i]])},restore:function(t,e){for(var i,s=0,n=e.length;n>s;s++)null!==e[s]&&(i=t.data(c+e[s]),t.css(e[s],i))},setMode:function(t,e){return"toggle"===e&&(e=t.is(":hidden")?"show":"hide"),e},createWrapper:function(e){if(e.parent().is(".ui-effects-wrapper"))return e.parent();var i={width:e.outerWidth(!0),height:e.outerHeight(!0),"float":e.css("float")},s=t("<div></div>").addClass("ui-effects-wrapper").css({fontSize:"100%",background:"transparent",border:"none",margin:0,padding:0}),n={width:e.width(),height:e.height()},o=document.activeElement;try{o.id}catch(a){o=document.body}return e.wrap(s),(e[0]===o||t.contains(e[0],o))&&t(o).trigger("focus"),s=e.parent(),"static"===e.css("position")?(s.css({position:"relative"}),e.css({position:"relative"})):(t.extend(i,{position:e.css("position"),zIndex:e.css("z-index")}),t.each(["top","left","bottom","right"],function(t,s){i[s]=e.css(s),isNaN(parseInt(i[s],10))&&(i[s]="auto")}),e.css({position:"relative",top:0,left:0,right:"auto",bottom:"auto"})),e.css(n),s.css(i).show()},removeWrapper:function(e){var i=document.activeElement;return e.parent().is(".ui-effects-wrapper")&&(e.parent().replaceWith(e),(e[0]===i||t.contains(e[0],i))&&t(i).trigger("focus")),e}}),t.extend(t.effects,{version:"1.12.1",define:function(e,i,s){return s||(s=i,i="effect"),t.effects.effect[e]=s,t.effects.effect[e].mode=i,s},scaledDimensions:function(t,e,i){if(0===e)return{height:0,width:0,outerHeight:0,outerWidth:0};var s="horizontal"!==i?(e||100)/100:1,n="vertical"!==i?(e||100)/100:1;return{height:t.height()*n,width:t.width()*s,outerHeight:t.outerHeight()*n,outerWidth:t.outerWidth()*s}},clipToBox:function(t){return{width:t.clip.right-t.clip.left,height:t.clip.bottom-t.clip.top,left:t.clip.left,top:t.clip.top}},unshift:function(t,e,i){var s=t.queue();e>1&&s.splice.apply(s,[1,0].concat(s.splice(e,i))),t.dequeue()},saveStyle:function(t){t.data(u,t[0].style.cssText)},restoreStyle:function(t){t[0].style.cssText=t.data(u)||"",t.removeData(u)},mode:function(t,e){var i=t.is(":hidden");return"toggle"===e&&(e=i?"show":"hide"),(i?"hide"===e:"show"===e)&&(e="none"),e},getBaseline:function(t,e){var i,s;switch(t[0]){case"top":i=0;break;case"middle":i=.5;break;case"bottom":i=1;break;default:i=t[0]/e.height}switch(t[1]){case"left":s=0;break;case"center":s=.5;break;case"right":s=1;break;default:s=t[1]/e.width}return{x:s,y:i}},createPlaceholder:function(e){var i,s=e.css("position"),n=e.position();return e.css({marginTop:e.css("marginTop"),marginBottom:e.css("marginBottom"),marginLeft:e.css("marginLeft"),marginRight:e.css("marginRight")}).outerWidth(e.outerWidth()).outerHeight(e.outerHeight()),/^(static|relative)/.test(s)&&(s="absolute",i=t("<"+e[0].nodeName+">").insertAfter(e).css({display:/^(inline|ruby)/.test(e.css("display"))?"inline-block":"block",visibility:"hidden",marginTop:e.css("marginTop"),marginBottom:e.css("marginBottom"),marginLeft:e.css("marginLeft"),marginRight:e.css("marginRight"),"float":e.css("float")}).outerWidth(e.outerWidth()).outerHeight(e.outerHeight()).addClass("ui-effects-placeholder"),e.data(c+"placeholder",i)),e.css({position:s,left:n.left,top:n.top}),i},removePlaceholder:function(t){var e=c+"placeholder",i=t.data(e);i&&(i.remove(),t.removeData(e))},cleanUp:function(e){t.effects.restoreStyle(e),t.effects.removePlaceholder(e)},setTransition:function(e,i,s,n){return n=n||{},t.each(i,function(t,i){var o=e.cssUnit(i);o[0]>0&&(n[i]=o[0]*s+o[1])}),n}}),t.fn.extend({effect:function(){function i(e){function i(){r.removeData(d),t.effects.cleanUp(r),"hide"===s.mode&&r.hide(),a()}function a(){t.isFunction(h)&&h.call(r[0]),t.isFunction(e)&&e()}var r=t(this);s.mode=c.shift(),t.uiBackCompat===!1||o?"none"===s.mode?(r[l](),a()):n.call(r[0],s,i):(r.is(":hidden")?"hide"===l:"show"===l)?(r[l](),a()):n.call(r[0],s,a)}var s=e.apply(this,arguments),n=t.effects.effect[s.effect],o=n.mode,a=s.queue,r=a||"fx",h=s.complete,l=s.mode,c=[],u=function(e){var i=t(this),s=t.effects.mode(i,l)||o;i.data(d,!0),c.push(s),o&&("show"===s||s===o&&"hide"===s)&&i.show(),o&&"none"===s||t.effects.saveStyle(i),t.isFunction(e)&&e()};return t.fx.off||!n?l?this[l](s.duration,h):this.each(function(){h&&h.call(this)}):a===!1?this.each(u).each(i):this.queue(r,u).queue(r,i)},show:function(t){return function(s){if(i(s))return t.apply(this,arguments);var n=e.apply(this,arguments);return n.mode="show",this.effect.call(this,n)
+}}(t.fn.show),hide:function(t){return function(s){if(i(s))return t.apply(this,arguments);var n=e.apply(this,arguments);return n.mode="hide",this.effect.call(this,n)}}(t.fn.hide),toggle:function(t){return function(s){if(i(s)||"boolean"==typeof s)return t.apply(this,arguments);var n=e.apply(this,arguments);return n.mode="toggle",this.effect.call(this,n)}}(t.fn.toggle),cssUnit:function(e){var i=this.css(e),s=[];return t.each(["em","px","%","pt"],function(t,e){i.indexOf(e)>0&&(s=[parseFloat(i),e])}),s},cssClip:function(t){return t?this.css("clip","rect("+t.top+"px "+t.right+"px "+t.bottom+"px "+t.left+"px)"):s(this.css("clip"),this)},transfer:function(e,i){var s=t(this),n=t(e.to),o="fixed"===n.css("position"),a=t("body"),r=o?a.scrollTop():0,h=o?a.scrollLeft():0,l=n.offset(),c={top:l.top-r,left:l.left-h,height:n.innerHeight(),width:n.innerWidth()},u=s.offset(),d=t("<div class='ui-effects-transfer'></div>").appendTo("body").addClass(e.className).css({top:u.top-r,left:u.left-h,height:s.innerHeight(),width:s.innerWidth(),position:o?"fixed":"absolute"}).animate(c,e.duration,e.easing,function(){d.remove(),t.isFunction(i)&&i()})}}),t.fx.step.clip=function(e){e.clipInit||(e.start=t(e.elem).cssClip(),"string"==typeof e.end&&(e.end=s(e.end,e.elem)),e.clipInit=!0),t(e.elem).cssClip({top:e.pos*(e.end.top-e.start.top)+e.start.top,right:e.pos*(e.end.right-e.start.right)+e.start.right,bottom:e.pos*(e.end.bottom-e.start.bottom)+e.start.bottom,left:e.pos*(e.end.left-e.start.left)+e.start.left})}}(),function(){var e={};t.each(["Quad","Cubic","Quart","Quint","Expo"],function(t,i){e[i]=function(e){return Math.pow(e,t+2)}}),t.extend(e,{Sine:function(t){return 1-Math.cos(t*Math.PI/2)},Circ:function(t){return 1-Math.sqrt(1-t*t)},Elastic:function(t){return 0===t||1===t?t:-Math.pow(2,8*(t-1))*Math.sin((80*(t-1)-7.5)*Math.PI/15)},Back:function(t){return t*t*(3*t-2)},Bounce:function(t){for(var e,i=4;((e=Math.pow(2,--i))-1)/11>t;);return 1/Math.pow(4,3-i)-7.5625*Math.pow((3*e-2)/22-t,2)}}),t.each(e,function(e,i){t.easing["easeIn"+e]=i,t.easing["easeOut"+e]=function(t){return 1-i(1-t)},t.easing["easeInOut"+e]=function(t){return.5>t?i(2*t)/2:1-i(-2*t+2)/2}})}();var f=t.effects;t.effects.define("blind","hide",function(e,i){var s={up:["bottom","top"],vertical:["bottom","top"],down:["top","bottom"],left:["right","left"],horizontal:["right","left"],right:["left","right"]},n=t(this),o=e.direction||"up",a=n.cssClip(),r={clip:t.extend({},a)},h=t.effects.createPlaceholder(n);r.clip[s[o][0]]=r.clip[s[o][1]],"show"===e.mode&&(n.cssClip(r.clip),h&&h.css(t.effects.clipToBox(r)),r.clip=a),h&&h.animate(t.effects.clipToBox(r),e.duration,e.easing),n.animate(r,{queue:!1,duration:e.duration,easing:e.easing,complete:i})}),t.effects.define("bounce",function(e,i){var s,n,o,a=t(this),r=e.mode,h="hide"===r,l="show"===r,c=e.direction||"up",u=e.distance,d=e.times||5,p=2*d+(l||h?1:0),f=e.duration/p,g=e.easing,m="up"===c||"down"===c?"top":"left",_="up"===c||"left"===c,v=0,b=a.queue().length;for(t.effects.createPlaceholder(a),o=a.css(m),u||(u=a["top"===m?"outerHeight":"outerWidth"]()/3),l&&(n={opacity:1},n[m]=o,a.css("opacity",0).css(m,_?2*-u:2*u).animate(n,f,g)),h&&(u/=Math.pow(2,d-1)),n={},n[m]=o;d>v;v++)s={},s[m]=(_?"-=":"+=")+u,a.animate(s,f,g).animate(n,f,g),u=h?2*u:u/2;h&&(s={opacity:0},s[m]=(_?"-=":"+=")+u,a.animate(s,f,g)),a.queue(i),t.effects.unshift(a,b,p+1)}),t.effects.define("clip","hide",function(e,i){var s,n={},o=t(this),a=e.direction||"vertical",r="both"===a,h=r||"horizontal"===a,l=r||"vertical"===a;s=o.cssClip(),n.clip={top:l?(s.bottom-s.top)/2:s.top,right:h?(s.right-s.left)/2:s.right,bottom:l?(s.bottom-s.top)/2:s.bottom,left:h?(s.right-s.left)/2:s.left},t.effects.createPlaceholder(o),"show"===e.mode&&(o.cssClip(n.clip),n.clip=s),o.animate(n,{queue:!1,duration:e.duration,easing:e.easing,complete:i})}),t.effects.define("drop","hide",function(e,i){var s,n=t(this),o=e.mode,a="show"===o,r=e.direction||"left",h="up"===r||"down"===r?"top":"left",l="up"===r||"left"===r?"-=":"+=",c="+="===l?"-=":"+=",u={opacity:0};t.effects.createPlaceholder(n),s=e.distance||n["top"===h?"outerHeight":"outerWidth"](!0)/2,u[h]=l+s,a&&(n.css(u),u[h]=c+s,u.opacity=1),n.animate(u,{queue:!1,duration:e.duration,easing:e.easing,complete:i})}),t.effects.define("explode","hide",function(e,i){function s(){b.push(this),b.length===u*d&&n()}function n(){p.css({visibility:"visible"}),t(b).remove(),i()}var o,a,r,h,l,c,u=e.pieces?Math.round(Math.sqrt(e.pieces)):3,d=u,p=t(this),f=e.mode,g="show"===f,m=p.show().css("visibility","hidden").offset(),_=Math.ceil(p.outerWidth()/d),v=Math.ceil(p.outerHeight()/u),b=[];for(o=0;u>o;o++)for(h=m.top+o*v,c=o-(u-1)/2,a=0;d>a;a++)r=m.left+a*_,l=a-(d-1)/2,p.clone().appendTo("body").wrap("<div></div>").css({position:"absolute",visibility:"visible",left:-a*_,top:-o*v}).parent().addClass("ui-effects-explode").css({position:"absolute",overflow:"hidden",width:_,height:v,left:r+(g?l*_:0),top:h+(g?c*v:0),opacity:g?0:1}).animate({left:r+(g?0:l*_),top:h+(g?0:c*v),opacity:g?1:0},e.duration||500,e.easing,s)}),t.effects.define("fade","toggle",function(e,i){var s="show"===e.mode;t(this).css("opacity",s?0:1).animate({opacity:s?1:0},{queue:!1,duration:e.duration,easing:e.easing,complete:i})}),t.effects.define("fold","hide",function(e,i){var s=t(this),n=e.mode,o="show"===n,a="hide"===n,r=e.size||15,h=/([0-9]+)%/.exec(r),l=!!e.horizFirst,c=l?["right","bottom"]:["bottom","right"],u=e.duration/2,d=t.effects.createPlaceholder(s),p=s.cssClip(),f={clip:t.extend({},p)},g={clip:t.extend({},p)},m=[p[c[0]],p[c[1]]],_=s.queue().length;h&&(r=parseInt(h[1],10)/100*m[a?0:1]),f.clip[c[0]]=r,g.clip[c[0]]=r,g.clip[c[1]]=0,o&&(s.cssClip(g.clip),d&&d.css(t.effects.clipToBox(g)),g.clip=p),s.queue(function(i){d&&d.animate(t.effects.clipToBox(f),u,e.easing).animate(t.effects.clipToBox(g),u,e.easing),i()}).animate(f,u,e.easing).animate(g,u,e.easing).queue(i),t.effects.unshift(s,_,4)}),t.effects.define("highlight","show",function(e,i){var s=t(this),n={backgroundColor:s.css("backgroundColor")};"hide"===e.mode&&(n.opacity=0),t.effects.saveStyle(s),s.css({backgroundImage:"none",backgroundColor:e.color||"#ffff99"}).animate(n,{queue:!1,duration:e.duration,easing:e.easing,complete:i})}),t.effects.define("size",function(e,i){var s,n,o,a=t(this),r=["fontSize"],h=["borderTopWidth","borderBottomWidth","paddingTop","paddingBottom"],l=["borderLeftWidth","borderRightWidth","paddingLeft","paddingRight"],c=e.mode,u="effect"!==c,d=e.scale||"both",p=e.origin||["middle","center"],f=a.css("position"),g=a.position(),m=t.effects.scaledDimensions(a),_=e.from||m,v=e.to||t.effects.scaledDimensions(a,0);t.effects.createPlaceholder(a),"show"===c&&(o=_,_=v,v=o),n={from:{y:_.height/m.height,x:_.width/m.width},to:{y:v.height/m.height,x:v.width/m.width}},("box"===d||"both"===d)&&(n.from.y!==n.to.y&&(_=t.effects.setTransition(a,h,n.from.y,_),v=t.effects.setTransition(a,h,n.to.y,v)),n.from.x!==n.to.x&&(_=t.effects.setTransition(a,l,n.from.x,_),v=t.effects.setTransition(a,l,n.to.x,v))),("content"===d||"both"===d)&&n.from.y!==n.to.y&&(_=t.effects.setTransition(a,r,n.from.y,_),v=t.effects.setTransition(a,r,n.to.y,v)),p&&(s=t.effects.getBaseline(p,m),_.top=(m.outerHeight-_.outerHeight)*s.y+g.top,_.left=(m.outerWidth-_.outerWidth)*s.x+g.left,v.top=(m.outerHeight-v.outerHeight)*s.y+g.top,v.left=(m.outerWidth-v.outerWidth)*s.x+g.left),a.css(_),("content"===d||"both"===d)&&(h=h.concat(["marginTop","marginBottom"]).concat(r),l=l.concat(["marginLeft","marginRight"]),a.find("*[width]").each(function(){var i=t(this),s=t.effects.scaledDimensions(i),o={height:s.height*n.from.y,width:s.width*n.from.x,outerHeight:s.outerHeight*n.from.y,outerWidth:s.outerWidth*n.from.x},a={height:s.height*n.to.y,width:s.width*n.to.x,outerHeight:s.height*n.to.y,outerWidth:s.width*n.to.x};n.from.y!==n.to.y&&(o=t.effects.setTransition(i,h,n.from.y,o),a=t.effects.setTransition(i,h,n.to.y,a)),n.from.x!==n.to.x&&(o=t.effects.setTransition(i,l,n.from.x,o),a=t.effects.setTransition(i,l,n.to.x,a)),u&&t.effects.saveStyle(i),i.css(o),i.animate(a,e.duration,e.easing,function(){u&&t.effects.restoreStyle(i)})})),a.animate(v,{queue:!1,duration:e.duration,easing:e.easing,complete:function(){var e=a.offset();0===v.opacity&&a.css("opacity",_.opacity),u||(a.css("position","static"===f?"relative":f).offset(e),t.effects.saveStyle(a)),i()}})}),t.effects.define("scale",function(e,i){var s=t(this),n=e.mode,o=parseInt(e.percent,10)||(0===parseInt(e.percent,10)?0:"effect"!==n?0:100),a=t.extend(!0,{from:t.effects.scaledDimensions(s),to:t.effects.scaledDimensions(s,o,e.direction||"both"),origin:e.origin||["middle","center"]},e);e.fade&&(a.from.opacity=1,a.to.opacity=0),t.effects.effect.size.call(this,a,i)}),t.effects.define("puff","hide",function(e,i){var s=t.extend(!0,{},e,{fade:!0,percent:parseInt(e.percent,10)||150});t.effects.effect.scale.call(this,s,i)}),t.effects.define("pulsate","show",function(e,i){var s=t(this),n=e.mode,o="show"===n,a="hide"===n,r=o||a,h=2*(e.times||5)+(r?1:0),l=e.duration/h,c=0,u=1,d=s.queue().length;for((o||!s.is(":visible"))&&(s.css("opacity",0).show(),c=1);h>u;u++)s.animate({opacity:c},l,e.easing),c=1-c;s.animate({opacity:c},l,e.easing),s.queue(i),t.effects.unshift(s,d,h+1)}),t.effects.define("shake",function(e,i){var s=1,n=t(this),o=e.direction||"left",a=e.distance||20,r=e.times||3,h=2*r+1,l=Math.round(e.duration/h),c="up"===o||"down"===o?"top":"left",u="up"===o||"left"===o,d={},p={},f={},g=n.queue().length;for(t.effects.createPlaceholder(n),d[c]=(u?"-=":"+=")+a,p[c]=(u?"+=":"-=")+2*a,f[c]=(u?"-=":"+=")+2*a,n.animate(d,l,e.easing);r>s;s++)n.animate(p,l,e.easing).animate(f,l,e.easing);n.animate(p,l,e.easing).animate(d,l/2,e.easing).queue(i),t.effects.unshift(n,g,h+1)}),t.effects.define("slide","show",function(e,i){var s,n,o=t(this),a={up:["bottom","top"],down:["top","bottom"],left:["right","left"],right:["left","right"]},r=e.mode,h=e.direction||"left",l="up"===h||"down"===h?"top":"left",c="up"===h||"left"===h,u=e.distance||o["top"===l?"outerHeight":"outerWidth"](!0),d={};t.effects.createPlaceholder(o),s=o.cssClip(),n=o.position()[l],d[l]=(c?-1:1)*u+n,d.clip=o.cssClip(),d.clip[a[h][1]]=d.clip[a[h][0]],"show"===r&&(o.cssClip(d.clip),o.css(l,d[l]),d.clip=s,d[l]=n),o.animate(d,{queue:!1,duration:e.duration,easing:e.easing,complete:i})});var f;t.uiBackCompat!==!1&&(f=t.effects.define("transfer",function(e,i){t(this).transfer(e,i)})),t.ui.focusable=function(i,s){var n,o,a,r,h,l=i.nodeName.toLowerCase();return"area"===l?(n=i.parentNode,o=n.name,i.href&&o&&"map"===n.nodeName.toLowerCase()?(a=t("img[usemap='#"+o+"']"),a.length>0&&a.is(":visible")):!1):(/^(input|select|textarea|button|object)$/.test(l)?(r=!i.disabled,r&&(h=t(i).closest("fieldset")[0],h&&(r=!h.disabled))):r="a"===l?i.href||s:s,r&&t(i).is(":visible")&&e(t(i)))},t.extend(t.expr[":"],{focusable:function(e){return t.ui.focusable(e,null!=t.attr(e,"tabindex"))}}),t.ui.focusable,t.fn.form=function(){return"string"==typeof this[0].form?this.closest("form"):t(this[0].form)},t.ui.formResetMixin={_formResetHandler:function(){var e=t(this);setTimeout(function(){var i=e.data("ui-form-reset-instances");t.each(i,function(){this.refresh()})})},_bindFormResetHandler:function(){if(this.form=this.element.form(),this.form.length){var t=this.form.data("ui-form-reset-instances")||[];t.length||this.form.on("reset.ui-form-reset",this._formResetHandler),t.push(this),this.form.data("ui-form-reset-instances",t)}},_unbindFormResetHandler:function(){if(this.form.length){var e=this.form.data("ui-form-reset-instances");e.splice(t.inArray(this,e),1),e.length?this.form.data("ui-form-reset-instances",e):this.form.removeData("ui-form-reset-instances").off("reset.ui-form-reset")}}},"1.7"===t.fn.jquery.substring(0,3)&&(t.each(["Width","Height"],function(e,i){function s(e,i,s,o){return t.each(n,function(){i-=parseFloat(t.css(e,"padding"+this))||0,s&&(i-=parseFloat(t.css(e,"border"+this+"Width"))||0),o&&(i-=parseFloat(t.css(e,"margin"+this))||0)}),i}var n="Width"===i?["Left","Right"]:["Top","Bottom"],o=i.toLowerCase(),a={innerWidth:t.fn.innerWidth,innerHeight:t.fn.innerHeight,outerWidth:t.fn.outerWidth,outerHeight:t.fn.outerHeight};t.fn["inner"+i]=function(e){return void 0===e?a["inner"+i].call(this):this.each(function(){t(this).css(o,s(this,e)+"px")})},t.fn["outer"+i]=function(e,n){return"number"!=typeof e?a["outer"+i].call(this,e):this.each(function(){t(this).css(o,s(this,e,!0,n)+"px")})}}),t.fn.addBack=function(t){return this.add(null==t?this.prevObject:this.prevObject.filter(t))}),t.ui.keyCode={BACKSPACE:8,COMMA:188,DELETE:46,DOWN:40,END:35,ENTER:13,ESCAPE:27,HOME:36,LEFT:37,PAGE_DOWN:34,PAGE_UP:33,PERIOD:190,RIGHT:39,SPACE:32,TAB:9,UP:38},t.ui.escapeSelector=function(){var t=/([!"#$%&'()*+,.\/:;<=>?@[\]^`{|}~])/g;return function(e){return e.replace(t,"\\$1")}}(),t.fn.labels=function(){var e,i,s,n,o;return this[0].labels&&this[0].labels.length?this.pushStack(this[0].labels):(n=this.eq(0).parents("label"),s=this.attr("id"),s&&(e=this.eq(0).parents().last(),o=e.add(e.length?e.siblings():this.siblings()),i="label[for='"+t.ui.escapeSelector(s)+"']",n=n.add(o.find(i).addBack(i))),this.pushStack(n))},t.fn.scrollParent=function(e){var i=this.css("position"),s="absolute"===i,n=e?/(auto|scroll|hidden)/:/(auto|scroll)/,o=this.parents().filter(function(){var e=t(this);return s&&"static"===e.css("position")?!1:n.test(e.css("overflow")+e.css("overflow-y")+e.css("overflow-x"))}).eq(0);return"fixed"!==i&&o.length?o:t(this[0].ownerDocument||document)},t.extend(t.expr[":"],{tabbable:function(e){var i=t.attr(e,"tabindex"),s=null!=i;return(!s||i>=0)&&t.ui.focusable(e,s)}}),t.fn.extend({uniqueId:function(){var t=0;return function(){return this.each(function(){this.id||(this.id="ui-id-"+ ++t)})}}(),removeUniqueId:function(){return this.each(function(){/^ui-id-\d+$/.test(this.id)&&t(this).removeAttr("id")})}}),t.widget("ui.accordion",{version:"1.12.1",options:{active:0,animate:{},classes:{"ui-accordion-header":"ui-corner-top","ui-accordion-header-collapsed":"ui-corner-all","ui-accordion-content":"ui-corner-bottom"},collapsible:!1,event:"click",header:"> li > :first-child, > :not(li):even",heightStyle:"auto",icons:{activeHeader:"ui-icon-triangle-1-s",header:"ui-icon-triangle-1-e"},activate:null,beforeActivate:null},hideProps:{borderTopWidth:"hide",borderBottomWidth:"hide",paddingTop:"hide",paddingBottom:"hide",height:"hide"},showProps:{borderTopWidth:"show",borderBottomWidth:"show",paddingTop:"show",paddingBottom:"show",height:"show"},_create:function(){var e=this.options;this.prevShow=this.prevHide=t(),this._addClass("ui-accordion","ui-widget ui-helper-reset"),this.element.attr("role","tablist"),e.collapsible||e.active!==!1&&null!=e.active||(e.active=0),this._processPanels(),0>e.active&&(e.active+=this.headers.length),this._refresh()},_getCreateEventData:function(){return{header:this.active,panel:this.active.length?this.active.next():t()}},_createIcons:function(){var e,i,s=this.options.icons;s&&(e=t("<span>"),this._addClass(e,"ui-accordion-header-icon","ui-icon "+s.header),e.prependTo(this.headers),i=this.active.children(".ui-accordion-header-icon"),this._removeClass(i,s.header)._addClass(i,null,s.activeHeader)._addClass(this.headers,"ui-accordion-icons"))},_destroyIcons:function(){this._removeClass(this.headers,"ui-accordion-icons"),this.headers.children(".ui-accordion-header-icon").remove()},_destroy:function(){var t;this.element.removeAttr("role"),this.headers.removeAttr("role aria-expanded aria-selected aria-controls tabIndex").removeUniqueId(),this._destroyIcons(),t=this.headers.next().css("display","").removeAttr("role aria-hidden aria-labelledby").removeUniqueId(),"content"!==this.options.heightStyle&&t.css("height","")},_setOption:function(t,e){return"active"===t?(this._activate(e),void 0):("event"===t&&(this.options.event&&this._off(this.headers,this.options.event),this._setupEvents(e)),this._super(t,e),"collapsible"!==t||e||this.options.active!==!1||this._activate(0),"icons"===t&&(this._destroyIcons(),e&&this._createIcons()),void 0)},_setOptionDisabled:function(t){this._super(t),this.element.attr("aria-disabled",t),this._toggleClass(null,"ui-state-disabled",!!t),this._toggleClass(this.headers.add(this.headers.next()),null,"ui-state-disabled",!!t)},_keydown:function(e){if(!e.altKey&&!e.ctrlKey){var i=t.ui.keyCode,s=this.headers.length,n=this.headers.index(e.target),o=!1;switch(e.keyCode){case i.RIGHT:case i.DOWN:o=this.headers[(n+1)%s];break;case i.LEFT:case i.UP:o=this.headers[(n-1+s)%s];break;case i.SPACE:case i.ENTER:this._eventHandler(e);break;case i.HOME:o=this.headers[0];break;case i.END:o=this.headers[s-1]}o&&(t(e.target).attr("tabIndex",-1),t(o).attr("tabIndex",0),t(o).trigger("focus"),e.preventDefault())}},_panelKeyDown:function(e){e.keyCode===t.ui.keyCode.UP&&e.ctrlKey&&t(e.currentTarget).prev().trigger("focus")},refresh:function(){var e=this.options;this._processPanels(),e.active===!1&&e.collapsible===!0||!this.headers.length?(e.active=!1,this.active=t()):e.active===!1?this._activate(0):this.active.length&&!t.contains(this.element[0],this.active[0])?this.headers.length===this.headers.find(".ui-state-disabled").length?(e.active=!1,this.active=t()):this._activate(Math.max(0,e.active-1)):e.active=this.headers.index(this.active),this._destroyIcons(),this._refresh()},_processPanels:function(){var t=this.headers,e=this.panels;this.headers=this.element.find(this.options.header),this._addClass(this.headers,"ui-accordion-header ui-accordion-header-collapsed","ui-state-default"),this.panels=this.headers.next().filter(":not(.ui-accordion-content-active)").hide(),this._addClass(this.panels,"ui-accordion-content","ui-helper-reset ui-widget-content"),e&&(this._off(t.not(this.headers)),this._off(e.not(this.panels)))},_refresh:function(){var e,i=this.options,s=i.heightStyle,n=this.element.parent();this.active=this._findActive(i.active),this._addClass(this.active,"ui-accordion-header-active","ui-state-active")._removeClass(this.active,"ui-accordion-header-collapsed"),this._addClass(this.active.next(),"ui-accordion-content-active"),this.active.next().show(),this.headers.attr("role","tab").each(function(){var e=t(this),i=e.uniqueId().attr("id"),s=e.next(),n=s.uniqueId().attr("id");e.attr("aria-controls",n),s.attr("aria-labelledby",i)}).next().attr("role","tabpanel"),this.headers.not(this.active).attr({"aria-selected":"false","aria-expanded":"false",tabIndex:-1}).next().attr({"aria-hidden":"true"}).hide(),this.active.length?this.active.attr({"aria-selected":"true","aria-expanded":"true",tabIndex:0}).next().attr({"aria-hidden":"false"}):this.headers.eq(0).attr("tabIndex",0),this._createIcons(),this._setupEvents(i.event),"fill"===s?(e=n.height(),this.element.siblings(":visible").each(function(){var i=t(this),s=i.css("position");"absolute"!==s&&"fixed"!==s&&(e-=i.outerHeight(!0))}),this.headers.each(function(){e-=t(this).outerHeight(!0)}),this.headers.next().each(function(){t(this).height(Math.max(0,e-t(this).innerHeight()+t(this).height()))}).css("overflow","auto")):"auto"===s&&(e=0,this.headers.next().each(function(){var i=t(this).is(":visible");i||t(this).show(),e=Math.max(e,t(this).css("height","").height()),i||t(this).hide()}).height(e))},_activate:function(e){var i=this._findActive(e)[0];i!==this.active[0]&&(i=i||this.active[0],this._eventHandler({target:i,currentTarget:i,preventDefault:t.noop}))},_findActive:function(e){return"number"==typeof e?this.headers.eq(e):t()},_setupEvents:function(e){var i={keydown:"_keydown"};e&&t.each(e.split(" "),function(t,e){i[e]="_eventHandler"}),this._off(this.headers.add(this.headers.next())),this._on(this.headers,i),this._on(this.headers.next(),{keydown:"_panelKeyDown"}),this._hoverable(this.headers),this._focusable(this.headers)},_eventHandler:function(e){var i,s,n=this.options,o=this.active,a=t(e.currentTarget),r=a[0]===o[0],h=r&&n.collapsible,l=h?t():a.next(),c=o.next(),u={oldHeader:o,oldPanel:c,newHeader:h?t():a,newPanel:l};e.preventDefault(),r&&!n.collapsible||this._trigger("beforeActivate",e,u)===!1||(n.active=h?!1:this.headers.index(a),this.active=r?t():a,this._toggle(u),this._removeClass(o,"ui-accordion-header-active","ui-state-active"),n.icons&&(i=o.children(".ui-accordion-header-icon"),this._removeClass(i,null,n.icons.activeHeader)._addClass(i,null,n.icons.header)),r||(this._removeClass(a,"ui-accordion-header-collapsed")._addClass(a,"ui-accordion-header-active","ui-state-active"),n.icons&&(s=a.children(".ui-accordion-header-icon"),this._removeClass(s,null,n.icons.header)._addClass(s,null,n.icons.activeHeader)),this._addClass(a.next(),"ui-accordion-content-active")))},_toggle:function(e){var i=e.newPanel,s=this.prevShow.length?this.prevShow:e.oldPanel;this.prevShow.add(this.prevHide).stop(!0,!0),this.prevShow=i,this.prevHide=s,this.options.animate?this._animate(i,s,e):(s.hide(),i.show(),this._toggleComplete(e)),s.attr({"aria-hidden":"true"}),s.prev().attr({"aria-selected":"false","aria-expanded":"false"}),i.length&&s.length?s.prev().attr({tabIndex:-1,"aria-expanded":"false"}):i.length&&this.headers.filter(function(){return 0===parseInt(t(this).attr("tabIndex"),10)}).attr("tabIndex",-1),i.attr("aria-hidden","false").prev().attr({"aria-selected":"true","aria-expanded":"true",tabIndex:0})},_animate:function(t,e,i){var s,n,o,a=this,r=0,h=t.css("box-sizing"),l=t.length&&(!e.length||t.index()<e.index()),c=this.options.animate||{},u=l&&c.down||c,d=function(){a._toggleComplete(i)};return"number"==typeof u&&(o=u),"string"==typeof u&&(n=u),n=n||u.easing||c.easing,o=o||u.duration||c.duration,e.length?t.length?(s=t.show().outerHeight(),e.animate(this.hideProps,{duration:o,easing:n,step:function(t,e){e.now=Math.round(t)}}),t.hide().animate(this.showProps,{duration:o,easing:n,complete:d,step:function(t,i){i.now=Math.round(t),"height"!==i.prop?"content-box"===h&&(r+=i.now):"content"!==a.options.heightStyle&&(i.now=Math.round(s-e.outerHeight()-r),r=0)}}),void 0):e.animate(this.hideProps,o,n,d):t.animate(this.showProps,o,n,d)},_toggleComplete:function(t){var e=t.oldPanel,i=e.prev();this._removeClass(e,"ui-accordion-content-active"),this._removeClass(i,"ui-accordion-header-active")._addClass(i,"ui-accordion-header-collapsed"),e.length&&(e.parent()[0].className=e.parent()[0].className),this._trigger("activate",null,t)}}),t.ui.safeActiveElement=function(t){var e;try{e=t.activeElement}catch(i){e=t.body}return e||(e=t.body),e.nodeName||(e=t.body),e},t.widget("ui.menu",{version:"1.12.1",defaultElement:"<ul>",delay:300,options:{icons:{submenu:"ui-icon-caret-1-e"},items:"> *",menus:"ul",position:{my:"left top",at:"right top"},role:"menu",blur:null,focus:null,select:null},_create:function(){this.activeMenu=this.element,this.mouseHandled=!1,this.element.uniqueId().attr({role:this.options.role,tabIndex:0}),this._addClass("ui-menu","ui-widget ui-widget-content"),this._on({"mousedown .ui-menu-item":function(t){t.preventDefault()},"click .ui-menu-item":function(e){var i=t(e.target),s=t(t.ui.safeActiveElement(this.document[0]));!this.mouseHandled&&i.not(".ui-state-disabled").length&&(this.select(e),e.isPropagationStopped()||(this.mouseHandled=!0),i.has(".ui-menu").length?this.expand(e):!this.element.is(":focus")&&s.closest(".ui-menu").length&&(this.element.trigger("focus",[!0]),this.active&&1===this.active.parents(".ui-menu").length&&clearTimeout(this.timer)))},"mouseenter .ui-menu-item":function(e){if(!this.previousFilter){var i=t(e.target).closest(".ui-menu-item"),s=t(e.currentTarget);i[0]===s[0]&&(this._removeClass(s.siblings().children(".ui-state-active"),null,"ui-state-active"),this.focus(e,s))}},mouseleave:"collapseAll","mouseleave .ui-menu":"collapseAll",focus:function(t,e){var i=this.active||this.element.find(this.options.items).eq(0);e||this.focus(t,i)},blur:function(e){this._delay(function(){var i=!t.contains(this.element[0],t.ui.safeActiveElement(this.document[0]));i&&this.collapseAll(e)})},keydown:"_keydown"}),this.refresh(),this._on(this.document,{click:function(t){this._closeOnDocumentClick(t)&&this.collapseAll(t),this.mouseHandled=!1}})},_destroy:function(){var e=this.element.find(".ui-menu-item").removeAttr("role aria-disabled"),i=e.children(".ui-menu-item-wrapper").removeUniqueId().removeAttr("tabIndex role aria-haspopup");this.element.removeAttr("aria-activedescendant").find(".ui-menu").addBack().removeAttr("role aria-labelledby aria-expanded aria-hidden aria-disabled tabIndex").removeUniqueId().show(),i.children().each(function(){var e=t(this);e.data("ui-menu-submenu-caret")&&e.remove()})},_keydown:function(e){var i,s,n,o,a=!0;switch(e.keyCode){case t.ui.keyCode.PAGE_UP:this.previousPage(e);break;case t.ui.keyCode.PAGE_DOWN:this.nextPage(e);break;case t.ui.keyCode.HOME:this._move("first","first",e);break;case t.ui.keyCode.END:this._move("last","last",e);break;case t.ui.keyCode.UP:this.previous(e);break;case t.ui.keyCode.DOWN:this.next(e);break;case t.ui.keyCode.LEFT:this.collapse(e);break;case t.ui.keyCode.RIGHT:this.active&&!this.active.is(".ui-state-disabled")&&this.expand(e);break;case t.ui.keyCode.ENTER:case t.ui.keyCode.SPACE:this._activate(e);break;case t.ui.keyCode.ESCAPE:this.collapse(e);break;default:a=!1,s=this.previousFilter||"",o=!1,n=e.keyCode>=96&&105>=e.keyCode?""+(e.keyCode-96):String.fromCharCode(e.keyCode),clearTimeout(this.filterTimer),n===s?o=!0:n=s+n,i=this._filterMenuItems(n),i=o&&-1!==i.index(this.active.next())?this.active.nextAll(".ui-menu-item"):i,i.length||(n=String.fromCharCode(e.keyCode),i=this._filterMenuItems(n)),i.length?(this.focus(e,i),this.previousFilter=n,this.filterTimer=this._delay(function(){delete this.previousFilter},1e3)):delete this.previousFilter}a&&e.preventDefault()},_activate:function(t){this.active&&!this.active.is(".ui-state-disabled")&&(this.active.children("[aria-haspopup='true']").length?this.expand(t):this.select(t))},refresh:function(){var e,i,s,n,o,a=this,r=this.options.icons.submenu,h=this.element.find(this.options.menus);this._toggleClass("ui-menu-icons",null,!!this.element.find(".ui-icon").length),s=h.filter(":not(.ui-menu)").hide().attr({role:this.options.role,"aria-hidden":"true","aria-expanded":"false"}).each(function(){var e=t(this),i=e.prev(),s=t("<span>").data("ui-menu-submenu-caret",!0);a._addClass(s,"ui-menu-icon","ui-icon "+r),i.attr("aria-haspopup","true").prepend(s),e.attr("aria-labelledby",i.attr("id"))}),this._addClass(s,"ui-menu","ui-widget ui-widget-content ui-front"),e=h.add(this.element),i=e.find(this.options.items),i.not(".ui-menu-item").each(function(){var e=t(this);a._isDivider(e)&&a._addClass(e,"ui-menu-divider","ui-widget-content")}),n=i.not(".ui-menu-item, .ui-menu-divider"),o=n.children().not(".ui-menu").uniqueId().attr({tabIndex:-1,role:this._itemRole()}),this._addClass(n,"ui-menu-item")._addClass(o,"ui-menu-item-wrapper"),i.filter(".ui-state-disabled").attr("aria-disabled","true"),this.active&&!t.contains(this.element[0],this.active[0])&&this.blur()},_itemRole:function(){return{menu:"menuitem",listbox:"option"}[this.options.role]},_setOption:function(t,e){if("icons"===t){var i=this.element.find(".ui-menu-icon");this._removeClass(i,null,this.options.icons.submenu)._addClass(i,null,e.submenu)}this._super(t,e)},_setOptionDisabled:function(t){this._super(t),this.element.attr("aria-disabled",t+""),this._toggleClass(null,"ui-state-disabled",!!t)},focus:function(t,e){var i,s,n;this.blur(t,t&&"focus"===t.type),this._scrollIntoView(e),this.active=e.first(),s=this.active.children(".ui-menu-item-wrapper"),this._addClass(s,null,"ui-state-active"),this.options.role&&this.element.attr("aria-activedescendant",s.attr("id")),n=this.active.parent().closest(".ui-menu-item").children(".ui-menu-item-wrapper"),this._addClass(n,null,"ui-state-active"),t&&"keydown"===t.type?this._close():this.timer=this._delay(function(){this._close()},this.delay),i=e.children(".ui-menu"),i.length&&t&&/^mouse/.test(t.type)&&this._startOpening(i),this.activeMenu=e.parent(),this._trigger("focus",t,{item:e})},_scrollIntoView:function(e){var i,s,n,o,a,r;this._hasScroll()&&(i=parseFloat(t.css(this.activeMenu[0],"borderTopWidth"))||0,s=parseFloat(t.css(this.activeMenu[0],"paddingTop"))||0,n=e.offset().top-this.activeMenu.offset().top-i-s,o=this.activeMenu.scrollTop(),a=this.activeMenu.height(),r=e.outerHeight(),0>n?this.activeMenu.scrollTop(o+n):n+r>a&&this.activeMenu.scrollTop(o+n-a+r))},blur:function(t,e){e||clearTimeout(this.timer),this.active&&(this._removeClass(this.active.children(".ui-menu-item-wrapper"),null,"ui-state-active"),this._trigger("blur",t,{item:this.active}),this.active=null)},_startOpening:function(t){clearTimeout(this.timer),"true"===t.attr("aria-hidden")&&(this.timer=this._delay(function(){this._close(),this._open(t)},this.delay))},_open:function(e){var i=t.extend({of:this.active},this.options.position);clearTimeout(this.timer),this.element.find(".ui-menu").not(e.parents(".ui-menu")).hide().attr("aria-hidden","true"),e.show().removeAttr("aria-hidden").attr("aria-expanded","true").position(i)},collapseAll:function(e,i){clearTimeout(this.timer),this.timer=this._delay(function(){var s=i?this.element:t(e&&e.target).closest(this.element.find(".ui-menu"));s.length||(s=this.element),this._close(s),this.blur(e),this._removeClass(s.find(".ui-state-active"),null,"ui-state-active"),this.activeMenu=s},this.delay)},_close:function(t){t||(t=this.active?this.active.parent():this.element),t.find(".ui-menu").hide().attr("aria-hidden","true").attr("aria-expanded","false")},_closeOnDocumentClick:function(e){return!t(e.target).closest(".ui-menu").length},_isDivider:function(t){return!/[^\-\u2014\u2013\s]/.test(t.text())},collapse:function(t){var e=this.active&&this.active.parent().closest(".ui-menu-item",this.element);e&&e.length&&(this._close(),this.focus(t,e))},expand:function(t){var e=this.active&&this.active.children(".ui-menu ").find(this.options.items).first();e&&e.length&&(this._open(e.parent()),this._delay(function(){this.focus(t,e)}))},next:function(t){this._move("next","first",t)},previous:function(t){this._move("prev","last",t)},isFirstItem:function(){return this.active&&!this.active.prevAll(".ui-menu-item").length},isLastItem:function(){return this.active&&!this.active.nextAll(".ui-menu-item").length},_move:function(t,e,i){var s;this.active&&(s="first"===t||"last"===t?this.active["first"===t?"prevAll":"nextAll"](".ui-menu-item").eq(-1):this.active[t+"All"](".ui-menu-item").eq(0)),s&&s.length&&this.active||(s=this.activeMenu.find(this.options.items)[e]()),this.focus(i,s)},nextPage:function(e){var i,s,n;return this.active?(this.isLastItem()||(this._hasScroll()?(s=this.active.offset().top,n=this.element.height(),this.active.nextAll(".ui-menu-item").each(function(){return i=t(this),0>i.offset().top-s-n}),this.focus(e,i)):this.focus(e,this.activeMenu.find(this.options.items)[this.active?"last":"first"]())),void 0):(this.next(e),void 0)},previousPage:function(e){var i,s,n;return this.active?(this.isFirstItem()||(this._hasScroll()?(s=this.active.offset().top,n=this.element.height(),this.active.prevAll(".ui-menu-item").each(function(){return i=t(this),i.offset().top-s+n>0}),this.focus(e,i)):this.focus(e,this.activeMenu.find(this.options.items).first())),void 0):(this.next(e),void 0)},_hasScroll:function(){return this.element.outerHeight()<this.element.prop("scrollHeight")},select:function(e){this.active=this.active||t(e.target).closest(".ui-menu-item");var i={item:this.active};this.active.has(".ui-menu").length||this.collapseAll(e,!0),this._trigger("select",e,i)},_filterMenuItems:function(e){var i=e.replace(/[\-\[\]{}()*+?.,\\\^$|#\s]/g,"\\$&"),s=RegExp("^"+i,"i");return this.activeMenu.find(this.options.items).filter(".ui-menu-item").filter(function(){return s.test(t.trim(t(this).children(".ui-menu-item-wrapper").text()))})}}),t.widget("ui.autocomplete",{version:"1.12.1",defaultElement:"<input>",options:{appendTo:null,autoFocus:!1,delay:300,minLength:1,position:{my:"left top",at:"left bottom",collision:"none"},source:null,change:null,close:null,focus:null,open:null,response:null,search:null,select:null},requestIndex:0,pending:0,_create:function(){var e,i,s,n=this.element[0].nodeName.toLowerCase(),o="textarea"===n,a="input"===n;
+this.isMultiLine=o||!a&&this._isContentEditable(this.element),this.valueMethod=this.element[o||a?"val":"text"],this.isNewMenu=!0,this._addClass("ui-autocomplete-input"),this.element.attr("autocomplete","off"),this._on(this.element,{keydown:function(n){if(this.element.prop("readOnly"))return e=!0,s=!0,i=!0,void 0;e=!1,s=!1,i=!1;var o=t.ui.keyCode;switch(n.keyCode){case o.PAGE_UP:e=!0,this._move("previousPage",n);break;case o.PAGE_DOWN:e=!0,this._move("nextPage",n);break;case o.UP:e=!0,this._keyEvent("previous",n);break;case o.DOWN:e=!0,this._keyEvent("next",n);break;case o.ENTER:this.menu.active&&(e=!0,n.preventDefault(),this.menu.select(n));break;case o.TAB:this.menu.active&&this.menu.select(n);break;case o.ESCAPE:this.menu.element.is(":visible")&&(this.isMultiLine||this._value(this.term),this.close(n),n.preventDefault());break;default:i=!0,this._searchTimeout(n)}},keypress:function(s){if(e)return e=!1,(!this.isMultiLine||this.menu.element.is(":visible"))&&s.preventDefault(),void 0;if(!i){var n=t.ui.keyCode;switch(s.keyCode){case n.PAGE_UP:this._move("previousPage",s);break;case n.PAGE_DOWN:this._move("nextPage",s);break;case n.UP:this._keyEvent("previous",s);break;case n.DOWN:this._keyEvent("next",s)}}},input:function(t){return s?(s=!1,t.preventDefault(),void 0):(this._searchTimeout(t),void 0)},focus:function(){this.selectedItem=null,this.previous=this._value()},blur:function(t){return this.cancelBlur?(delete this.cancelBlur,void 0):(clearTimeout(this.searching),this.close(t),this._change(t),void 0)}}),this._initSource(),this.menu=t("<ul>").appendTo(this._appendTo()).menu({role:null}).hide().menu("instance"),this._addClass(this.menu.element,"ui-autocomplete","ui-front"),this._on(this.menu.element,{mousedown:function(e){e.preventDefault(),this.cancelBlur=!0,this._delay(function(){delete this.cancelBlur,this.element[0]!==t.ui.safeActiveElement(this.document[0])&&this.element.trigger("focus")})},menufocus:function(e,i){var s,n;return this.isNewMenu&&(this.isNewMenu=!1,e.originalEvent&&/^mouse/.test(e.originalEvent.type))?(this.menu.blur(),this.document.one("mousemove",function(){t(e.target).trigger(e.originalEvent)}),void 0):(n=i.item.data("ui-autocomplete-item"),!1!==this._trigger("focus",e,{item:n})&&e.originalEvent&&/^key/.test(e.originalEvent.type)&&this._value(n.value),s=i.item.attr("aria-label")||n.value,s&&t.trim(s).length&&(this.liveRegion.children().hide(),t("<div>").text(s).appendTo(this.liveRegion)),void 0)},menuselect:function(e,i){var s=i.item.data("ui-autocomplete-item"),n=this.previous;this.element[0]!==t.ui.safeActiveElement(this.document[0])&&(this.element.trigger("focus"),this.previous=n,this._delay(function(){this.previous=n,this.selectedItem=s})),!1!==this._trigger("select",e,{item:s})&&this._value(s.value),this.term=this._value(),this.close(e),this.selectedItem=s}}),this.liveRegion=t("<div>",{role:"status","aria-live":"assertive","aria-relevant":"additions"}).appendTo(this.document[0].body),this._addClass(this.liveRegion,null,"ui-helper-hidden-accessible"),this._on(this.window,{beforeunload:function(){this.element.removeAttr("autocomplete")}})},_destroy:function(){clearTimeout(this.searching),this.element.removeAttr("autocomplete"),this.menu.element.remove(),this.liveRegion.remove()},_setOption:function(t,e){this._super(t,e),"source"===t&&this._initSource(),"appendTo"===t&&this.menu.element.appendTo(this._appendTo()),"disabled"===t&&e&&this.xhr&&this.xhr.abort()},_isEventTargetInWidget:function(e){var i=this.menu.element[0];return e.target===this.element[0]||e.target===i||t.contains(i,e.target)},_closeOnClickOutside:function(t){this._isEventTargetInWidget(t)||this.close()},_appendTo:function(){var e=this.options.appendTo;return e&&(e=e.jquery||e.nodeType?t(e):this.document.find(e).eq(0)),e&&e[0]||(e=this.element.closest(".ui-front, dialog")),e.length||(e=this.document[0].body),e},_initSource:function(){var e,i,s=this;t.isArray(this.options.source)?(e=this.options.source,this.source=function(i,s){s(t.ui.autocomplete.filter(e,i.term))}):"string"==typeof this.options.source?(i=this.options.source,this.source=function(e,n){s.xhr&&s.xhr.abort(),s.xhr=t.ajax({url:i,data:e,dataType:"json",success:function(t){n(t)},error:function(){n([])}})}):this.source=this.options.source},_searchTimeout:function(t){clearTimeout(this.searching),this.searching=this._delay(function(){var e=this.term===this._value(),i=this.menu.element.is(":visible"),s=t.altKey||t.ctrlKey||t.metaKey||t.shiftKey;(!e||e&&!i&&!s)&&(this.selectedItem=null,this.search(null,t))},this.options.delay)},search:function(t,e){return t=null!=t?t:this._value(),this.term=this._value(),t.length<this.options.minLength?this.close(e):this._trigger("search",e)!==!1?this._search(t):void 0},_search:function(t){this.pending++,this._addClass("ui-autocomplete-loading"),this.cancelSearch=!1,this.source({term:t},this._response())},_response:function(){var e=++this.requestIndex;return t.proxy(function(t){e===this.requestIndex&&this.__response(t),this.pending--,this.pending||this._removeClass("ui-autocomplete-loading")},this)},__response:function(t){t&&(t=this._normalize(t)),this._trigger("response",null,{content:t}),!this.options.disabled&&t&&t.length&&!this.cancelSearch?(this._suggest(t),this._trigger("open")):this._close()},close:function(t){this.cancelSearch=!0,this._close(t)},_close:function(t){this._off(this.document,"mousedown"),this.menu.element.is(":visible")&&(this.menu.element.hide(),this.menu.blur(),this.isNewMenu=!0,this._trigger("close",t))},_change:function(t){this.previous!==this._value()&&this._trigger("change",t,{item:this.selectedItem})},_normalize:function(e){return e.length&&e[0].label&&e[0].value?e:t.map(e,function(e){return"string"==typeof e?{label:e,value:e}:t.extend({},e,{label:e.label||e.value,value:e.value||e.label})})},_suggest:function(e){var i=this.menu.element.empty();this._renderMenu(i,e),this.isNewMenu=!0,this.menu.refresh(),i.show(),this._resizeMenu(),i.position(t.extend({of:this.element},this.options.position)),this.options.autoFocus&&this.menu.next(),this._on(this.document,{mousedown:"_closeOnClickOutside"})},_resizeMenu:function(){var t=this.menu.element;t.outerWidth(Math.max(t.width("").outerWidth()+1,this.element.outerWidth()))},_renderMenu:function(e,i){var s=this;t.each(i,function(t,i){s._renderItemData(e,i)})},_renderItemData:function(t,e){return this._renderItem(t,e).data("ui-autocomplete-item",e)},_renderItem:function(e,i){return t("<li>").append(t("<div>").text(i.label)).appendTo(e)},_move:function(t,e){return this.menu.element.is(":visible")?this.menu.isFirstItem()&&/^previous/.test(t)||this.menu.isLastItem()&&/^next/.test(t)?(this.isMultiLine||this._value(this.term),this.menu.blur(),void 0):(this.menu[t](e),void 0):(this.search(null,e),void 0)},widget:function(){return this.menu.element},_value:function(){return this.valueMethod.apply(this.element,arguments)},_keyEvent:function(t,e){(!this.isMultiLine||this.menu.element.is(":visible"))&&(this._move(t,e),e.preventDefault())},_isContentEditable:function(t){if(!t.length)return!1;var e=t.prop("contentEditable");return"inherit"===e?this._isContentEditable(t.parent()):"true"===e}}),t.extend(t.ui.autocomplete,{escapeRegex:function(t){return t.replace(/[\-\[\]{}()*+?.,\\\^$|#\s]/g,"\\$&")},filter:function(e,i){var s=RegExp(t.ui.autocomplete.escapeRegex(i),"i");return t.grep(e,function(t){return s.test(t.label||t.value||t)})}}),t.widget("ui.autocomplete",t.ui.autocomplete,{options:{messages:{noResults:"No search results.",results:function(t){return t+(t>1?" results are":" result is")+" available, use up and down arrow keys to navigate."}}},__response:function(e){var i;this._superApply(arguments),this.options.disabled||this.cancelSearch||(i=e&&e.length?this.options.messages.results(e.length):this.options.messages.noResults,this.liveRegion.children().hide(),t("<div>").text(i).appendTo(this.liveRegion))}}),t.ui.autocomplete;var g=/ui-corner-([a-z]){2,6}/g;t.widget("ui.controlgroup",{version:"1.12.1",defaultElement:"<div>",options:{direction:"horizontal",disabled:null,onlyVisible:!0,items:{button:"input[type=button], input[type=submit], input[type=reset], button, a",controlgroupLabel:".ui-controlgroup-label",checkboxradio:"input[type='checkbox'], input[type='radio']",selectmenu:"select",spinner:".ui-spinner-input"}},_create:function(){this._enhance()},_enhance:function(){this.element.attr("role","toolbar"),this.refresh()},_destroy:function(){this._callChildMethod("destroy"),this.childWidgets.removeData("ui-controlgroup-data"),this.element.removeAttr("role"),this.options.items.controlgroupLabel&&this.element.find(this.options.items.controlgroupLabel).find(".ui-controlgroup-label-contents").contents().unwrap()},_initWidgets:function(){var e=this,i=[];t.each(this.options.items,function(s,n){var o,a={};return n?"controlgroupLabel"===s?(o=e.element.find(n),o.each(function(){var e=t(this);e.children(".ui-controlgroup-label-contents").length||e.contents().wrapAll("<span class='ui-controlgroup-label-contents'></span>")}),e._addClass(o,null,"ui-widget ui-widget-content ui-state-default"),i=i.concat(o.get()),void 0):(t.fn[s]&&(a=e["_"+s+"Options"]?e["_"+s+"Options"]("middle"):{classes:{}},e.element.find(n).each(function(){var n=t(this),o=n[s]("instance"),r=t.widget.extend({},a);if("button"!==s||!n.parent(".ui-spinner").length){o||(o=n[s]()[s]("instance")),o&&(r.classes=e._resolveClassesValues(r.classes,o)),n[s](r);var h=n[s]("widget");t.data(h[0],"ui-controlgroup-data",o?o:n[s]("instance")),i.push(h[0])}})),void 0):void 0}),this.childWidgets=t(t.unique(i)),this._addClass(this.childWidgets,"ui-controlgroup-item")},_callChildMethod:function(e){this.childWidgets.each(function(){var i=t(this),s=i.data("ui-controlgroup-data");s&&s[e]&&s[e]()})},_updateCornerClass:function(t,e){var i="ui-corner-top ui-corner-bottom ui-corner-left ui-corner-right ui-corner-all",s=this._buildSimpleOptions(e,"label").classes.label;this._removeClass(t,null,i),this._addClass(t,null,s)},_buildSimpleOptions:function(t,e){var i="vertical"===this.options.direction,s={classes:{}};return s.classes[e]={middle:"",first:"ui-corner-"+(i?"top":"left"),last:"ui-corner-"+(i?"bottom":"right"),only:"ui-corner-all"}[t],s},_spinnerOptions:function(t){var e=this._buildSimpleOptions(t,"ui-spinner");return e.classes["ui-spinner-up"]="",e.classes["ui-spinner-down"]="",e},_buttonOptions:function(t){return this._buildSimpleOptions(t,"ui-button")},_checkboxradioOptions:function(t){return this._buildSimpleOptions(t,"ui-checkboxradio-label")},_selectmenuOptions:function(t){var e="vertical"===this.options.direction;return{width:e?"auto":!1,classes:{middle:{"ui-selectmenu-button-open":"","ui-selectmenu-button-closed":""},first:{"ui-selectmenu-button-open":"ui-corner-"+(e?"top":"tl"),"ui-selectmenu-button-closed":"ui-corner-"+(e?"top":"left")},last:{"ui-selectmenu-button-open":e?"":"ui-corner-tr","ui-selectmenu-button-closed":"ui-corner-"+(e?"bottom":"right")},only:{"ui-selectmenu-button-open":"ui-corner-top","ui-selectmenu-button-closed":"ui-corner-all"}}[t]}},_resolveClassesValues:function(e,i){var s={};return t.each(e,function(n){var o=i.options.classes[n]||"";o=t.trim(o.replace(g,"")),s[n]=(o+" "+e[n]).replace(/\s+/g," ")}),s},_setOption:function(t,e){return"direction"===t&&this._removeClass("ui-controlgroup-"+this.options.direction),this._super(t,e),"disabled"===t?(this._callChildMethod(e?"disable":"enable"),void 0):(this.refresh(),void 0)},refresh:function(){var e,i=this;this._addClass("ui-controlgroup ui-controlgroup-"+this.options.direction),"horizontal"===this.options.direction&&this._addClass(null,"ui-helper-clearfix"),this._initWidgets(),e=this.childWidgets,this.options.onlyVisible&&(e=e.filter(":visible")),e.length&&(t.each(["first","last"],function(t,s){var n=e[s]().data("ui-controlgroup-data");if(n&&i["_"+n.widgetName+"Options"]){var o=i["_"+n.widgetName+"Options"](1===e.length?"only":s);o.classes=i._resolveClassesValues(o.classes,n),n.element[n.widgetName](o)}else i._updateCornerClass(e[s](),s)}),this._callChildMethod("refresh"))}}),t.widget("ui.checkboxradio",[t.ui.formResetMixin,{version:"1.12.1",options:{disabled:null,label:null,icon:!0,classes:{"ui-checkboxradio-label":"ui-corner-all","ui-checkboxradio-icon":"ui-corner-all"}},_getCreateOptions:function(){var e,i,s=this,n=this._super()||{};return this._readType(),i=this.element.labels(),this.label=t(i[i.length-1]),this.label.length||t.error("No label found for checkboxradio widget"),this.originalLabel="",this.label.contents().not(this.element[0]).each(function(){s.originalLabel+=3===this.nodeType?t(this).text():this.outerHTML}),this.originalLabel&&(n.label=this.originalLabel),e=this.element[0].disabled,null!=e&&(n.disabled=e),n},_create:function(){var t=this.element[0].checked;this._bindFormResetHandler(),null==this.options.disabled&&(this.options.disabled=this.element[0].disabled),this._setOption("disabled",this.options.disabled),this._addClass("ui-checkboxradio","ui-helper-hidden-accessible"),this._addClass(this.label,"ui-checkboxradio-label","ui-button ui-widget"),"radio"===this.type&&this._addClass(this.label,"ui-checkboxradio-radio-label"),this.options.label&&this.options.label!==this.originalLabel?this._updateLabel():this.originalLabel&&(this.options.label=this.originalLabel),this._enhance(),t&&(this._addClass(this.label,"ui-checkboxradio-checked","ui-state-active"),this.icon&&this._addClass(this.icon,null,"ui-state-hover")),this._on({change:"_toggleClasses",focus:function(){this._addClass(this.label,null,"ui-state-focus ui-visual-focus")},blur:function(){this._removeClass(this.label,null,"ui-state-focus ui-visual-focus")}})},_readType:function(){var e=this.element[0].nodeName.toLowerCase();this.type=this.element[0].type,"input"===e&&/radio|checkbox/.test(this.type)||t.error("Can't create checkboxradio on element.nodeName="+e+" and element.type="+this.type)},_enhance:function(){this._updateIcon(this.element[0].checked)},widget:function(){return this.label},_getRadioGroup:function(){var e,i=this.element[0].name,s="input[name='"+t.ui.escapeSelector(i)+"']";return i?(e=this.form.length?t(this.form[0].elements).filter(s):t(s).filter(function(){return 0===t(this).form().length}),e.not(this.element)):t([])},_toggleClasses:function(){var e=this.element[0].checked;this._toggleClass(this.label,"ui-checkboxradio-checked","ui-state-active",e),this.options.icon&&"checkbox"===this.type&&this._toggleClass(this.icon,null,"ui-icon-check ui-state-checked",e)._toggleClass(this.icon,null,"ui-icon-blank",!e),"radio"===this.type&&this._getRadioGroup().each(function(){var e=t(this).checkboxradio("instance");e&&e._removeClass(e.label,"ui-checkboxradio-checked","ui-state-active")})},_destroy:function(){this._unbindFormResetHandler(),this.icon&&(this.icon.remove(),this.iconSpace.remove())},_setOption:function(t,e){return"label"!==t||e?(this._super(t,e),"disabled"===t?(this._toggleClass(this.label,null,"ui-state-disabled",e),this.element[0].disabled=e,void 0):(this.refresh(),void 0)):void 0},_updateIcon:function(e){var i="ui-icon ui-icon-background ";this.options.icon?(this.icon||(this.icon=t("<span>"),this.iconSpace=t("<span> </span>"),this._addClass(this.iconSpace,"ui-checkboxradio-icon-space")),"checkbox"===this.type?(i+=e?"ui-icon-check ui-state-checked":"ui-icon-blank",this._removeClass(this.icon,null,e?"ui-icon-blank":"ui-icon-check")):i+="ui-icon-blank",this._addClass(this.icon,"ui-checkboxradio-icon",i),e||this._removeClass(this.icon,null,"ui-icon-check ui-state-checked"),this.icon.prependTo(this.label).after(this.iconSpace)):void 0!==this.icon&&(this.icon.remove(),this.iconSpace.remove(),delete this.icon)},_updateLabel:function(){var t=this.label.contents().not(this.element[0]);this.icon&&(t=t.not(this.icon[0])),this.iconSpace&&(t=t.not(this.iconSpace[0])),t.remove(),this.label.append(this.options.label)},refresh:function(){var t=this.element[0].checked,e=this.element[0].disabled;this._updateIcon(t),this._toggleClass(this.label,"ui-checkboxradio-checked","ui-state-active",t),null!==this.options.label&&this._updateLabel(),e!==this.options.disabled&&this._setOptions({disabled:e})}}]),t.ui.checkboxradio,t.widget("ui.button",{version:"1.12.1",defaultElement:"<button>",options:{classes:{"ui-button":"ui-corner-all"},disabled:null,icon:null,iconPosition:"beginning",label:null,showLabel:!0},_getCreateOptions:function(){var t,e=this._super()||{};return this.isInput=this.element.is("input"),t=this.element[0].disabled,null!=t&&(e.disabled=t),this.originalLabel=this.isInput?this.element.val():this.element.html(),this.originalLabel&&(e.label=this.originalLabel),e},_create:function(){!this.option.showLabel&!this.options.icon&&(this.options.showLabel=!0),null==this.options.disabled&&(this.options.disabled=this.element[0].disabled||!1),this.hasTitle=!!this.element.attr("title"),this.options.label&&this.options.label!==this.originalLabel&&(this.isInput?this.element.val(this.options.label):this.element.html(this.options.label)),this._addClass("ui-button","ui-widget"),this._setOption("disabled",this.options.disabled),this._enhance(),this.element.is("a")&&this._on({keyup:function(e){e.keyCode===t.ui.keyCode.SPACE&&(e.preventDefault(),this.element[0].click?this.element[0].click():this.element.trigger("click"))}})},_enhance:function(){this.element.is("button")||this.element.attr("role","button"),this.options.icon&&(this._updateIcon("icon",this.options.icon),this._updateTooltip())},_updateTooltip:function(){this.title=this.element.attr("title"),this.options.showLabel||this.title||this.element.attr("title",this.options.label)},_updateIcon:function(e,i){var s="iconPosition"!==e,n=s?this.options.iconPosition:i,o="top"===n||"bottom"===n;this.icon?s&&this._removeClass(this.icon,null,this.options.icon):(this.icon=t("<span>"),this._addClass(this.icon,"ui-button-icon","ui-icon"),this.options.showLabel||this._addClass("ui-button-icon-only")),s&&this._addClass(this.icon,null,i),this._attachIcon(n),o?(this._addClass(this.icon,null,"ui-widget-icon-block"),this.iconSpace&&this.iconSpace.remove()):(this.iconSpace||(this.iconSpace=t("<span> </span>"),this._addClass(this.iconSpace,"ui-button-icon-space")),this._removeClass(this.icon,null,"ui-wiget-icon-block"),this._attachIconSpace(n))},_destroy:function(){this.element.removeAttr("role"),this.icon&&this.icon.remove(),this.iconSpace&&this.iconSpace.remove(),this.hasTitle||this.element.removeAttr("title")},_attachIconSpace:function(t){this.icon[/^(?:end|bottom)/.test(t)?"before":"after"](this.iconSpace)},_attachIcon:function(t){this.element[/^(?:end|bottom)/.test(t)?"append":"prepend"](this.icon)},_setOptions:function(t){var e=void 0===t.showLabel?this.options.showLabel:t.showLabel,i=void 0===t.icon?this.options.icon:t.icon;e||i||(t.showLabel=!0),this._super(t)},_setOption:function(t,e){"icon"===t&&(e?this._updateIcon(t,e):this.icon&&(this.icon.remove(),this.iconSpace&&this.iconSpace.remove())),"iconPosition"===t&&this._updateIcon(t,e),"showLabel"===t&&(this._toggleClass("ui-button-icon-only",null,!e),this._updateTooltip()),"label"===t&&(this.isInput?this.element.val(e):(this.element.html(e),this.icon&&(this._attachIcon(this.options.iconPosition),this._attachIconSpace(this.options.iconPosition)))),this._super(t,e),"disabled"===t&&(this._toggleClass(null,"ui-state-disabled",e),this.element[0].disabled=e,e&&this.element.blur())},refresh:function(){var t=this.element.is("input, button")?this.element[0].disabled:this.element.hasClass("ui-button-disabled");t!==this.options.disabled&&this._setOptions({disabled:t}),this._updateTooltip()}}),t.uiBackCompat!==!1&&(t.widget("ui.button",t.ui.button,{options:{text:!0,icons:{primary:null,secondary:null}},_create:function(){this.options.showLabel&&!this.options.text&&(this.options.showLabel=this.options.text),!this.options.showLabel&&this.options.text&&(this.options.text=this.options.showLabel),this.options.icon||!this.options.icons.primary&&!this.options.icons.secondary?this.options.icon&&(this.options.icons.primary=this.options.icon):this.options.icons.primary?this.options.icon=this.options.icons.primary:(this.options.icon=this.options.icons.secondary,this.options.iconPosition="end"),this._super()},_setOption:function(t,e){return"text"===t?(this._super("showLabel",e),void 0):("showLabel"===t&&(this.options.text=e),"icon"===t&&(this.options.icons.primary=e),"icons"===t&&(e.primary?(this._super("icon",e.primary),this._super("iconPosition","beginning")):e.secondary&&(this._super("icon",e.secondary),this._super("iconPosition","end"))),this._superApply(arguments),void 0)}}),t.fn.button=function(e){return function(){return!this.length||this.length&&"INPUT"!==this[0].tagName||this.length&&"INPUT"===this[0].tagName&&"checkbox"!==this.attr("type")&&"radio"!==this.attr("type")?e.apply(this,arguments):(t.ui.checkboxradio||t.error("Checkboxradio widget missing"),0===arguments.length?this.checkboxradio({icon:!1}):this.checkboxradio.apply(this,arguments))}}(t.fn.button),t.fn.buttonset=function(){return t.ui.controlgroup||t.error("Controlgroup widget missing"),"option"===arguments[0]&&"items"===arguments[1]&&arguments[2]?this.controlgroup.apply(this,[arguments[0],"items.button",arguments[2]]):"option"===arguments[0]&&"items"===arguments[1]?this.controlgroup.apply(this,[arguments[0],"items.button"]):("object"==typeof arguments[0]&&arguments[0].items&&(arguments[0].items={button:arguments[0].items}),this.controlgroup.apply(this,arguments))}),t.ui.button,t.extend(t.ui,{datepicker:{version:"1.12.1"}});var m;t.extend(s.prototype,{markerClassName:"hasDatepicker",maxRows:4,_widgetDatepicker:function(){return this.dpDiv},setDefaults:function(t){return a(this._defaults,t||{}),this},_attachDatepicker:function(e,i){var s,n,o;s=e.nodeName.toLowerCase(),n="div"===s||"span"===s,e.id||(this.uuid+=1,e.id="dp"+this.uuid),o=this._newInst(t(e),n),o.settings=t.extend({},i||{}),"input"===s?this._connectDatepicker(e,o):n&&this._inlineDatepicker(e,o)},_newInst:function(e,i){var s=e[0].id.replace(/([^A-Za-z0-9_\-])/g,"\\\\$1");return{id:s,input:e,selectedDay:0,selectedMonth:0,selectedYear:0,drawMonth:0,drawYear:0,inline:i,dpDiv:i?n(t("<div class='"+this._inlineClass+" ui-datepicker ui-widget ui-widget-content ui-helper-clearfix ui-corner-all'></div>")):this.dpDiv}},_connectDatepicker:function(e,i){var s=t(e);i.append=t([]),i.trigger=t([]),s.hasClass(this.markerClassName)||(this._attachments(s,i),s.addClass(this.markerClassName).on("keydown",this._doKeyDown).on("keypress",this._doKeyPress).on("keyup",this._doKeyUp),this._autoSize(i),t.data(e,"datepicker",i),i.settings.disabled&&this._disableDatepicker(e))},_attachments:function(e,i){var s,n,o,a=this._get(i,"appendText"),r=this._get(i,"isRTL");i.append&&i.append.remove(),a&&(i.append=t("<span class='"+this._appendClass+"'>"+a+"</span>"),e[r?"before":"after"](i.append)),e.off("focus",this._showDatepicker),i.trigger&&i.trigger.remove(),s=this._get(i,"showOn"),("focus"===s||"both"===s)&&e.on("focus",this._showDatepicker),("button"===s||"both"===s)&&(n=this._get(i,"buttonText"),o=this._get(i,"buttonImage"),i.trigger=t(this._get(i,"buttonImageOnly")?t("<img/>").addClass(this._triggerClass).attr({src:o,alt:n,title:n}):t("<button type='button'></button>").addClass(this._triggerClass).html(o?t("<img/>").attr({src:o,alt:n,title:n}):n)),e[r?"before":"after"](i.trigger),i.trigger.on("click",function(){return t.datepicker._datepickerShowing&&t.datepicker._lastInput===e[0]?t.datepicker._hideDatepicker():t.datepicker._datepickerShowing&&t.datepicker._lastInput!==e[0]?(t.datepicker._hideDatepicker(),t.datepicker._showDatepicker(e[0])):t.datepicker._showDatepicker(e[0]),!1}))},_autoSize:function(t){if(this._get(t,"autoSize")&&!t.inline){var e,i,s,n,o=new Date(2009,11,20),a=this._get(t,"dateFormat");a.match(/[DM]/)&&(e=function(t){for(i=0,s=0,n=0;t.length>n;n++)t[n].length>i&&(i=t[n].length,s=n);return s},o.setMonth(e(this._get(t,a.match(/MM/)?"monthNames":"monthNamesShort"))),o.setDate(e(this._get(t,a.match(/DD/)?"dayNames":"dayNamesShort"))+20-o.getDay())),t.input.attr("size",this._formatDate(t,o).length)}},_inlineDatepicker:function(e,i){var s=t(e);s.hasClass(this.markerClassName)||(s.addClass(this.markerClassName).append(i.dpDiv),t.data(e,"datepicker",i),this._setDate(i,this._getDefaultDate(i),!0),this._updateDatepicker(i),this._updateAlternate(i),i.settings.disabled&&this._disableDatepicker(e),i.dpDiv.css("display","block"))},_dialogDatepicker:function(e,i,s,n,o){var r,h,l,c,u,d=this._dialogInst;return d||(this.uuid+=1,r="dp"+this.uuid,this._dialogInput=t("<input type='text' id='"+r+"' style='position: absolute; top: -100px; width: 0px;'/>"),this._dialogInput.on("keydown",this._doKeyDown),t("body").append(this._dialogInput),d=this._dialogInst=this._newInst(this._dialogInput,!1),d.settings={},t.data(this._dialogInput[0],"datepicker",d)),a(d.settings,n||{}),i=i&&i.constructor===Date?this._formatDate(d,i):i,this._dialogInput.val(i),this._pos=o?o.length?o:[o.pageX,o.pageY]:null,this._pos||(h=document.documentElement.clientWidth,l=document.documentElement.clientHeight,c=document.documentElement.scrollLeft||document.body.scrollLeft,u=document.documentElement.scrollTop||document.body.scrollTop,this._pos=[h/2-100+c,l/2-150+u]),this._dialogInput.css("left",this._pos[0]+20+"px").css("top",this._pos[1]+"px"),d.settings.onSelect=s,this._inDialog=!0,this.dpDiv.addClass(this._dialogClass),this._showDatepicker(this._dialogInput[0]),t.blockUI&&t.blockUI(this.dpDiv),t.data(this._dialogInput[0],"datepicker",d),this},_destroyDatepicker:function(e){var i,s=t(e),n=t.data(e,"datepicker");s.hasClass(this.markerClassName)&&(i=e.nodeName.toLowerCase(),t.removeData(e,"datepicker"),"input"===i?(n.append.remove(),n.trigger.remove(),s.removeClass(this.markerClassName).off("focus",this._showDatepicker).off("keydown",this._doKeyDown).off("keypress",this._doKeyPress).off("keyup",this._doKeyUp)):("div"===i||"span"===i)&&s.removeClass(this.markerClassName).empty(),m===n&&(m=null))},_enableDatepicker:function(e){var i,s,n=t(e),o=t.data(e,"datepicker");n.hasClass(this.markerClassName)&&(i=e.nodeName.toLowerCase(),"input"===i?(e.disabled=!1,o.trigger.filter("button").each(function(){this.disabled=!1}).end().filter("img").css({opacity:"1.0",cursor:""})):("div"===i||"span"===i)&&(s=n.children("."+this._inlineClass),s.children().removeClass("ui-state-disabled"),s.find("select.ui-datepicker-month, select.ui-datepicker-year").prop("disabled",!1)),this._disabledInputs=t.map(this._disabledInputs,function(t){return t===e?null:t}))},_disableDatepicker:function(e){var i,s,n=t(e),o=t.data(e,"datepicker");n.hasClass(this.markerClassName)&&(i=e.nodeName.toLowerCase(),"input"===i?(e.disabled=!0,o.trigger.filter("button").each(function(){this.disabled=!0}).end().filter("img").css({opacity:"0.5",cursor:"default"})):("div"===i||"span"===i)&&(s=n.children("."+this._inlineClass),s.children().addClass("ui-state-disabled"),s.find("select.ui-datepicker-month, select.ui-datepicker-year").prop("disabled",!0)),this._disabledInputs=t.map(this._disabledInputs,function(t){return t===e?null:t}),this._disabledInputs[this._disabledInputs.length]=e)},_isDisabledDatepicker:function(t){if(!t)return!1;for(var e=0;this._disabledInputs.length>e;e++)if(this._disabledInputs[e]===t)return!0;return!1},_getInst:function(e){try{return t.data(e,"datepicker")}catch(i){throw"Missing instance data for this datepicker"}},_optionDatepicker:function(e,i,s){var n,o,r,h,l=this._getInst(e);return 2===arguments.length&&"string"==typeof i?"defaults"===i?t.extend({},t.datepicker._defaults):l?"all"===i?t.extend({},l.settings):this._get(l,i):null:(n=i||{},"string"==typeof i&&(n={},n[i]=s),l&&(this._curInst===l&&this._hideDatepicker(),o=this._getDateDatepicker(e,!0),r=this._getMinMaxDate(l,"min"),h=this._getMinMaxDate(l,"max"),a(l.settings,n),null!==r&&void 0!==n.dateFormat&&void 0===n.minDate&&(l.settings.minDate=this._formatDate(l,r)),null!==h&&void 0!==n.dateFormat&&void 0===n.maxDate&&(l.settings.maxDate=this._formatDate(l,h)),"disabled"in n&&(n.disabled?this._disableDatepicker(e):this._enableDatepicker(e)),this._attachments(t(e),l),this._autoSize(l),this._setDate(l,o),this._updateAlternate(l),this._updateDatepicker(l)),void 0)},_changeDatepicker:function(t,e,i){this._optionDatepicker(t,e,i)},_refreshDatepicker:function(t){var e=this._getInst(t);e&&this._updateDatepicker(e)},_setDateDatepicker:function(t,e){var i=this._getInst(t);i&&(this._setDate(i,e),this._updateDatepicker(i),this._updateAlternate(i))},_getDateDatepicker:function(t,e){var i=this._getInst(t);return i&&!i.inline&&this._setDateFromField(i,e),i?this._getDate(i):null},_doKeyDown:function(e){var i,s,n,o=t.datepicker._getInst(e.target),a=!0,r=o.dpDiv.is(".ui-datepicker-rtl");if(o._keyEvent=!0,t.datepicker._datepickerShowing)switch(e.keyCode){case 9:t.datepicker._hideDatepicker(),a=!1;break;case 13:return n=t("td."+t.datepicker._dayOverClass+":not(."+t.datepicker._currentClass+")",o.dpDiv),n[0]&&t.datepicker._selectDay(e.target,o.selectedMonth,o.selectedYear,n[0]),i=t.datepicker._get(o,"onSelect"),i?(s=t.datepicker._formatDate(o),i.apply(o.input?o.input[0]:null,[s,o])):t.datepicker._hideDatepicker(),!1;case 27:t.datepicker._hideDatepicker();break;case 33:t.datepicker._adjustDate(e.target,e.ctrlKey?-t.datepicker._get(o,"stepBigMonths"):-t.datepicker._get(o,"stepMonths"),"M");break;case 34:t.datepicker._adjustDate(e.target,e.ctrlKey?+t.datepicker._get(o,"stepBigMonths"):+t.datepicker._get(o,"stepMonths"),"M");break;case 35:(e.ctrlKey||e.metaKey)&&t.datepicker._clearDate(e.target),a=e.ctrlKey||e.metaKey;break;case 36:(e.ctrlKey||e.metaKey)&&t.datepicker._gotoToday(e.target),a=e.ctrlKey||e.metaKey;break;case 37:(e.ctrlKey||e.metaKey)&&t.datepicker._adjustDate(e.target,r?1:-1,"D"),a=e.ctrlKey||e.metaKey,e.originalEvent.altKey&&t.datepicker._adjustDate(e.target,e.ctrlKey?-t.datepicker._get(o,"stepBigMonths"):-t.datepicker._get(o,"stepMonths"),"M");break;case 38:(e.ctrlKey||e.metaKey)&&t.datepicker._adjustDate(e.target,-7,"D"),a=e.ctrlKey||e.metaKey;break;case 39:(e.ctrlKey||e.metaKey)&&t.datepicker._adjustDate(e.target,r?-1:1,"D"),a=e.ctrlKey||e.metaKey,e.originalEvent.altKey&&t.datepicker._adjustDate(e.target,e.ctrlKey?+t.datepicker._get(o,"stepBigMonths"):+t.datepicker._get(o,"stepMonths"),"M");break;case 40:(e.ctrlKey||e.metaKey)&&t.datepicker._adjustDate(e.target,7,"D"),a=e.ctrlKey||e.metaKey;break;default:a=!1}else 36===e.keyCode&&e.ctrlKey?t.datepicker._showDatepicker(this):a=!1;a&&(e.preventDefault(),e.stopPropagation())},_doKeyPress:function(e){var i,s,n=t.datepicker._getInst(e.target);return t.datepicker._get(n,"constrainInput")?(i=t.datepicker._possibleChars(t.datepicker._get(n,"dateFormat")),s=String.fromCharCode(null==e.charCode?e.keyCode:e.charCode),e.ctrlKey||e.metaKey||" ">s||!i||i.indexOf(s)>-1):void 0},_doKeyUp:function(e){var i,s=t.datepicker._getInst(e.target);if(s.input.val()!==s.lastVal)try{i=t.datepicker.parseDate(t.datepicker._get(s,"dateFormat"),s.input?s.input.val():null,t.datepicker._getFormatConfig(s)),i&&(t.datepicker._setDateFromField(s),t.datepicker._updateAlternate(s),t.datepicker._updateDatepicker(s))}catch(n){}return!0},_showDatepicker:function(e){if(e=e.target||e,"input"!==e.nodeName.toLowerCase()&&(e=t("input",e.parentNode)[0]),!t.datepicker._isDisabledDatepicker(e)&&t.datepicker._lastInput!==e){var s,n,o,r,h,l,c;s=t.datepicker._getInst(e),t.datepicker._curInst&&t.datepicker._curInst!==s&&(t.datepicker._curInst.dpDiv.stop(!0,!0),s&&t.datepicker._datepickerShowing&&t.datepicker._hideDatepicker(t.datepicker._curInst.input[0])),n=t.datepicker._get(s,"beforeShow"),o=n?n.apply(e,[e,s]):{},o!==!1&&(a(s.settings,o),s.lastVal=null,t.datepicker._lastInput=e,t.datepicker._setDateFromField(s),t.datepicker._inDialog&&(e.value=""),t.datepicker._pos||(t.datepicker._pos=t.datepicker._findPos(e),t.datepicker._pos[1]+=e.offsetHeight),r=!1,t(e).parents().each(function(){return r|="fixed"===t(this).css("position"),!r}),h={left:t.datepicker._pos[0],top:t.datepicker._pos[1]},t.datepicker._pos=null,s.dpDiv.empty(),s.dpDiv.css({position:"absolute",display:"block",top:"-1000px"}),t.datepicker._updateDatepicker(s),h=t.datepicker._checkOffset(s,h,r),s.dpDiv.css({position:t.datepicker._inDialog&&t.blockUI?"static":r?"fixed":"absolute",display:"none",left:h.left+"px",top:h.top+"px"}),s.inline||(l=t.datepicker._get(s,"showAnim"),c=t.datepicker._get(s,"duration"),s.dpDiv.css("z-index",i(t(e))+1),t.datepicker._datepickerShowing=!0,t.effects&&t.effects.effect[l]?s.dpDiv.show(l,t.datepicker._get(s,"showOptions"),c):s.dpDiv[l||"show"](l?c:null),t.datepicker._shouldFocusInput(s)&&s.input.trigger("focus"),t.datepicker._curInst=s))
+}},_updateDatepicker:function(e){this.maxRows=4,m=e,e.dpDiv.empty().append(this._generateHTML(e)),this._attachHandlers(e);var i,s=this._getNumberOfMonths(e),n=s[1],a=17,r=e.dpDiv.find("."+this._dayOverClass+" a");r.length>0&&o.apply(r.get(0)),e.dpDiv.removeClass("ui-datepicker-multi-2 ui-datepicker-multi-3 ui-datepicker-multi-4").width(""),n>1&&e.dpDiv.addClass("ui-datepicker-multi-"+n).css("width",a*n+"em"),e.dpDiv[(1!==s[0]||1!==s[1]?"add":"remove")+"Class"]("ui-datepicker-multi"),e.dpDiv[(this._get(e,"isRTL")?"add":"remove")+"Class"]("ui-datepicker-rtl"),e===t.datepicker._curInst&&t.datepicker._datepickerShowing&&t.datepicker._shouldFocusInput(e)&&e.input.trigger("focus"),e.yearshtml&&(i=e.yearshtml,setTimeout(function(){i===e.yearshtml&&e.yearshtml&&e.dpDiv.find("select.ui-datepicker-year:first").replaceWith(e.yearshtml),i=e.yearshtml=null},0))},_shouldFocusInput:function(t){return t.input&&t.input.is(":visible")&&!t.input.is(":disabled")&&!t.input.is(":focus")},_checkOffset:function(e,i,s){var n=e.dpDiv.outerWidth(),o=e.dpDiv.outerHeight(),a=e.input?e.input.outerWidth():0,r=e.input?e.input.outerHeight():0,h=document.documentElement.clientWidth+(s?0:t(document).scrollLeft()),l=document.documentElement.clientHeight+(s?0:t(document).scrollTop());return i.left-=this._get(e,"isRTL")?n-a:0,i.left-=s&&i.left===e.input.offset().left?t(document).scrollLeft():0,i.top-=s&&i.top===e.input.offset().top+r?t(document).scrollTop():0,i.left-=Math.min(i.left,i.left+n>h&&h>n?Math.abs(i.left+n-h):0),i.top-=Math.min(i.top,i.top+o>l&&l>o?Math.abs(o+r):0),i},_findPos:function(e){for(var i,s=this._getInst(e),n=this._get(s,"isRTL");e&&("hidden"===e.type||1!==e.nodeType||t.expr.filters.hidden(e));)e=e[n?"previousSibling":"nextSibling"];return i=t(e).offset(),[i.left,i.top]},_hideDatepicker:function(e){var i,s,n,o,a=this._curInst;!a||e&&a!==t.data(e,"datepicker")||this._datepickerShowing&&(i=this._get(a,"showAnim"),s=this._get(a,"duration"),n=function(){t.datepicker._tidyDialog(a)},t.effects&&(t.effects.effect[i]||t.effects[i])?a.dpDiv.hide(i,t.datepicker._get(a,"showOptions"),s,n):a.dpDiv["slideDown"===i?"slideUp":"fadeIn"===i?"fadeOut":"hide"](i?s:null,n),i||n(),this._datepickerShowing=!1,o=this._get(a,"onClose"),o&&o.apply(a.input?a.input[0]:null,[a.input?a.input.val():"",a]),this._lastInput=null,this._inDialog&&(this._dialogInput.css({position:"absolute",left:"0",top:"-100px"}),t.blockUI&&(t.unblockUI(),t("body").append(this.dpDiv))),this._inDialog=!1)},_tidyDialog:function(t){t.dpDiv.removeClass(this._dialogClass).off(".ui-datepicker-calendar")},_checkExternalClick:function(e){if(t.datepicker._curInst){var i=t(e.target),s=t.datepicker._getInst(i[0]);(i[0].id!==t.datepicker._mainDivId&&0===i.parents("#"+t.datepicker._mainDivId).length&&!i.hasClass(t.datepicker.markerClassName)&&!i.closest("."+t.datepicker._triggerClass).length&&t.datepicker._datepickerShowing&&(!t.datepicker._inDialog||!t.blockUI)||i.hasClass(t.datepicker.markerClassName)&&t.datepicker._curInst!==s)&&t.datepicker._hideDatepicker()}},_adjustDate:function(e,i,s){var n=t(e),o=this._getInst(n[0]);this._isDisabledDatepicker(n[0])||(this._adjustInstDate(o,i+("M"===s?this._get(o,"showCurrentAtPos"):0),s),this._updateDatepicker(o))},_gotoToday:function(e){var i,s=t(e),n=this._getInst(s[0]);this._get(n,"gotoCurrent")&&n.currentDay?(n.selectedDay=n.currentDay,n.drawMonth=n.selectedMonth=n.currentMonth,n.drawYear=n.selectedYear=n.currentYear):(i=new Date,n.selectedDay=i.getDate(),n.drawMonth=n.selectedMonth=i.getMonth(),n.drawYear=n.selectedYear=i.getFullYear()),this._notifyChange(n),this._adjustDate(s)},_selectMonthYear:function(e,i,s){var n=t(e),o=this._getInst(n[0]);o["selected"+("M"===s?"Month":"Year")]=o["draw"+("M"===s?"Month":"Year")]=parseInt(i.options[i.selectedIndex].value,10),this._notifyChange(o),this._adjustDate(n)},_selectDay:function(e,i,s,n){var o,a=t(e);t(n).hasClass(this._unselectableClass)||this._isDisabledDatepicker(a[0])||(o=this._getInst(a[0]),o.selectedDay=o.currentDay=t("a",n).html(),o.selectedMonth=o.currentMonth=i,o.selectedYear=o.currentYear=s,this._selectDate(e,this._formatDate(o,o.currentDay,o.currentMonth,o.currentYear)))},_clearDate:function(e){var i=t(e);this._selectDate(i,"")},_selectDate:function(e,i){var s,n=t(e),o=this._getInst(n[0]);i=null!=i?i:this._formatDate(o),o.input&&o.input.val(i),this._updateAlternate(o),s=this._get(o,"onSelect"),s?s.apply(o.input?o.input[0]:null,[i,o]):o.input&&o.input.trigger("change"),o.inline?this._updateDatepicker(o):(this._hideDatepicker(),this._lastInput=o.input[0],"object"!=typeof o.input[0]&&o.input.trigger("focus"),this._lastInput=null)},_updateAlternate:function(e){var i,s,n,o=this._get(e,"altField");o&&(i=this._get(e,"altFormat")||this._get(e,"dateFormat"),s=this._getDate(e),n=this.formatDate(i,s,this._getFormatConfig(e)),t(o).val(n))},noWeekends:function(t){var e=t.getDay();return[e>0&&6>e,""]},iso8601Week:function(t){var e,i=new Date(t.getTime());return i.setDate(i.getDate()+4-(i.getDay()||7)),e=i.getTime(),i.setMonth(0),i.setDate(1),Math.floor(Math.round((e-i)/864e5)/7)+1},parseDate:function(e,i,s){if(null==e||null==i)throw"Invalid arguments";if(i="object"==typeof i?""+i:i+"",""===i)return null;var n,o,a,r,h=0,l=(s?s.shortYearCutoff:null)||this._defaults.shortYearCutoff,c="string"!=typeof l?l:(new Date).getFullYear()%100+parseInt(l,10),u=(s?s.dayNamesShort:null)||this._defaults.dayNamesShort,d=(s?s.dayNames:null)||this._defaults.dayNames,p=(s?s.monthNamesShort:null)||this._defaults.monthNamesShort,f=(s?s.monthNames:null)||this._defaults.monthNames,g=-1,m=-1,_=-1,v=-1,b=!1,y=function(t){var i=e.length>n+1&&e.charAt(n+1)===t;return i&&n++,i},w=function(t){var e=y(t),s="@"===t?14:"!"===t?20:"y"===t&&e?4:"o"===t?3:2,n="y"===t?s:1,o=RegExp("^\\d{"+n+","+s+"}"),a=i.substring(h).match(o);if(!a)throw"Missing number at position "+h;return h+=a[0].length,parseInt(a[0],10)},k=function(e,s,n){var o=-1,a=t.map(y(e)?n:s,function(t,e){return[[e,t]]}).sort(function(t,e){return-(t[1].length-e[1].length)});if(t.each(a,function(t,e){var s=e[1];return i.substr(h,s.length).toLowerCase()===s.toLowerCase()?(o=e[0],h+=s.length,!1):void 0}),-1!==o)return o+1;throw"Unknown name at position "+h},x=function(){if(i.charAt(h)!==e.charAt(n))throw"Unexpected literal at position "+h;h++};for(n=0;e.length>n;n++)if(b)"'"!==e.charAt(n)||y("'")?x():b=!1;else switch(e.charAt(n)){case"d":_=w("d");break;case"D":k("D",u,d);break;case"o":v=w("o");break;case"m":m=w("m");break;case"M":m=k("M",p,f);break;case"y":g=w("y");break;case"@":r=new Date(w("@")),g=r.getFullYear(),m=r.getMonth()+1,_=r.getDate();break;case"!":r=new Date((w("!")-this._ticksTo1970)/1e4),g=r.getFullYear(),m=r.getMonth()+1,_=r.getDate();break;case"'":y("'")?x():b=!0;break;default:x()}if(i.length>h&&(a=i.substr(h),!/^\s+/.test(a)))throw"Extra/unparsed characters found in date: "+a;if(-1===g?g=(new Date).getFullYear():100>g&&(g+=(new Date).getFullYear()-(new Date).getFullYear()%100+(c>=g?0:-100)),v>-1)for(m=1,_=v;;){if(o=this._getDaysInMonth(g,m-1),o>=_)break;m++,_-=o}if(r=this._daylightSavingAdjust(new Date(g,m-1,_)),r.getFullYear()!==g||r.getMonth()+1!==m||r.getDate()!==_)throw"Invalid date";return r},ATOM:"yy-mm-dd",COOKIE:"D, dd M yy",ISO_8601:"yy-mm-dd",RFC_822:"D, d M y",RFC_850:"DD, dd-M-y",RFC_1036:"D, d M y",RFC_1123:"D, d M yy",RFC_2822:"D, d M yy",RSS:"D, d M y",TICKS:"!",TIMESTAMP:"@",W3C:"yy-mm-dd",_ticksTo1970:1e7*60*60*24*(718685+Math.floor(492.5)-Math.floor(19.7)+Math.floor(4.925)),formatDate:function(t,e,i){if(!e)return"";var s,n=(i?i.dayNamesShort:null)||this._defaults.dayNamesShort,o=(i?i.dayNames:null)||this._defaults.dayNames,a=(i?i.monthNamesShort:null)||this._defaults.monthNamesShort,r=(i?i.monthNames:null)||this._defaults.monthNames,h=function(e){var i=t.length>s+1&&t.charAt(s+1)===e;return i&&s++,i},l=function(t,e,i){var s=""+e;if(h(t))for(;i>s.length;)s="0"+s;return s},c=function(t,e,i,s){return h(t)?s[e]:i[e]},u="",d=!1;if(e)for(s=0;t.length>s;s++)if(d)"'"!==t.charAt(s)||h("'")?u+=t.charAt(s):d=!1;else switch(t.charAt(s)){case"d":u+=l("d",e.getDate(),2);break;case"D":u+=c("D",e.getDay(),n,o);break;case"o":u+=l("o",Math.round((new Date(e.getFullYear(),e.getMonth(),e.getDate()).getTime()-new Date(e.getFullYear(),0,0).getTime())/864e5),3);break;case"m":u+=l("m",e.getMonth()+1,2);break;case"M":u+=c("M",e.getMonth(),a,r);break;case"y":u+=h("y")?e.getFullYear():(10>e.getFullYear()%100?"0":"")+e.getFullYear()%100;break;case"@":u+=e.getTime();break;case"!":u+=1e4*e.getTime()+this._ticksTo1970;break;case"'":h("'")?u+="'":d=!0;break;default:u+=t.charAt(s)}return u},_possibleChars:function(t){var e,i="",s=!1,n=function(i){var s=t.length>e+1&&t.charAt(e+1)===i;return s&&e++,s};for(e=0;t.length>e;e++)if(s)"'"!==t.charAt(e)||n("'")?i+=t.charAt(e):s=!1;else switch(t.charAt(e)){case"d":case"m":case"y":case"@":i+="0123456789";break;case"D":case"M":return null;case"'":n("'")?i+="'":s=!0;break;default:i+=t.charAt(e)}return i},_get:function(t,e){return void 0!==t.settings[e]?t.settings[e]:this._defaults[e]},_setDateFromField:function(t,e){if(t.input.val()!==t.lastVal){var i=this._get(t,"dateFormat"),s=t.lastVal=t.input?t.input.val():null,n=this._getDefaultDate(t),o=n,a=this._getFormatConfig(t);try{o=this.parseDate(i,s,a)||n}catch(r){s=e?"":s}t.selectedDay=o.getDate(),t.drawMonth=t.selectedMonth=o.getMonth(),t.drawYear=t.selectedYear=o.getFullYear(),t.currentDay=s?o.getDate():0,t.currentMonth=s?o.getMonth():0,t.currentYear=s?o.getFullYear():0,this._adjustInstDate(t)}},_getDefaultDate:function(t){return this._restrictMinMax(t,this._determineDate(t,this._get(t,"defaultDate"),new Date))},_determineDate:function(e,i,s){var n=function(t){var e=new Date;return e.setDate(e.getDate()+t),e},o=function(i){try{return t.datepicker.parseDate(t.datepicker._get(e,"dateFormat"),i,t.datepicker._getFormatConfig(e))}catch(s){}for(var n=(i.toLowerCase().match(/^c/)?t.datepicker._getDate(e):null)||new Date,o=n.getFullYear(),a=n.getMonth(),r=n.getDate(),h=/([+\-]?[0-9]+)\s*(d|D|w|W|m|M|y|Y)?/g,l=h.exec(i);l;){switch(l[2]||"d"){case"d":case"D":r+=parseInt(l[1],10);break;case"w":case"W":r+=7*parseInt(l[1],10);break;case"m":case"M":a+=parseInt(l[1],10),r=Math.min(r,t.datepicker._getDaysInMonth(o,a));break;case"y":case"Y":o+=parseInt(l[1],10),r=Math.min(r,t.datepicker._getDaysInMonth(o,a))}l=h.exec(i)}return new Date(o,a,r)},a=null==i||""===i?s:"string"==typeof i?o(i):"number"==typeof i?isNaN(i)?s:n(i):new Date(i.getTime());return a=a&&"Invalid Date"==""+a?s:a,a&&(a.setHours(0),a.setMinutes(0),a.setSeconds(0),a.setMilliseconds(0)),this._daylightSavingAdjust(a)},_daylightSavingAdjust:function(t){return t?(t.setHours(t.getHours()>12?t.getHours()+2:0),t):null},_setDate:function(t,e,i){var s=!e,n=t.selectedMonth,o=t.selectedYear,a=this._restrictMinMax(t,this._determineDate(t,e,new Date));t.selectedDay=t.currentDay=a.getDate(),t.drawMonth=t.selectedMonth=t.currentMonth=a.getMonth(),t.drawYear=t.selectedYear=t.currentYear=a.getFullYear(),n===t.selectedMonth&&o===t.selectedYear||i||this._notifyChange(t),this._adjustInstDate(t),t.input&&t.input.val(s?"":this._formatDate(t))},_getDate:function(t){var e=!t.currentYear||t.input&&""===t.input.val()?null:this._daylightSavingAdjust(new Date(t.currentYear,t.currentMonth,t.currentDay));return e},_attachHandlers:function(e){var i=this._get(e,"stepMonths"),s="#"+e.id.replace(/\\\\/g,"\\");e.dpDiv.find("[data-handler]").map(function(){var e={prev:function(){t.datepicker._adjustDate(s,-i,"M")},next:function(){t.datepicker._adjustDate(s,+i,"M")},hide:function(){t.datepicker._hideDatepicker()},today:function(){t.datepicker._gotoToday(s)},selectDay:function(){return t.datepicker._selectDay(s,+this.getAttribute("data-month"),+this.getAttribute("data-year"),this),!1},selectMonth:function(){return t.datepicker._selectMonthYear(s,this,"M"),!1},selectYear:function(){return t.datepicker._selectMonthYear(s,this,"Y"),!1}};t(this).on(this.getAttribute("data-event"),e[this.getAttribute("data-handler")])})},_generateHTML:function(t){var e,i,s,n,o,a,r,h,l,c,u,d,p,f,g,m,_,v,b,y,w,k,x,C,D,I,T,P,M,S,H,z,O,A,N,W,E,F,L,R=new Date,B=this._daylightSavingAdjust(new Date(R.getFullYear(),R.getMonth(),R.getDate())),Y=this._get(t,"isRTL"),j=this._get(t,"showButtonPanel"),q=this._get(t,"hideIfNoPrevNext"),K=this._get(t,"navigationAsDateFormat"),U=this._getNumberOfMonths(t),V=this._get(t,"showCurrentAtPos"),$=this._get(t,"stepMonths"),X=1!==U[0]||1!==U[1],G=this._daylightSavingAdjust(t.currentDay?new Date(t.currentYear,t.currentMonth,t.currentDay):new Date(9999,9,9)),Q=this._getMinMaxDate(t,"min"),J=this._getMinMaxDate(t,"max"),Z=t.drawMonth-V,te=t.drawYear;if(0>Z&&(Z+=12,te--),J)for(e=this._daylightSavingAdjust(new Date(J.getFullYear(),J.getMonth()-U[0]*U[1]+1,J.getDate())),e=Q&&Q>e?Q:e;this._daylightSavingAdjust(new Date(te,Z,1))>e;)Z--,0>Z&&(Z=11,te--);for(t.drawMonth=Z,t.drawYear=te,i=this._get(t,"prevText"),i=K?this.formatDate(i,this._daylightSavingAdjust(new Date(te,Z-$,1)),this._getFormatConfig(t)):i,s=this._canAdjustMonth(t,-1,te,Z)?"<a class='ui-datepicker-prev ui-corner-all' data-handler='prev' data-event='click' title='"+i+"'><span class='ui-icon ui-icon-circle-triangle-"+(Y?"e":"w")+"'>"+i+"</span></a>":q?"":"<a class='ui-datepicker-prev ui-corner-all ui-state-disabled' title='"+i+"'><span class='ui-icon ui-icon-circle-triangle-"+(Y?"e":"w")+"'>"+i+"</span></a>",n=this._get(t,"nextText"),n=K?this.formatDate(n,this._daylightSavingAdjust(new Date(te,Z+$,1)),this._getFormatConfig(t)):n,o=this._canAdjustMonth(t,1,te,Z)?"<a class='ui-datepicker-next ui-corner-all' data-handler='next' data-event='click' title='"+n+"'><span class='ui-icon ui-icon-circle-triangle-"+(Y?"w":"e")+"'>"+n+"</span></a>":q?"":"<a class='ui-datepicker-next ui-corner-all ui-state-disabled' title='"+n+"'><span class='ui-icon ui-icon-circle-triangle-"+(Y?"w":"e")+"'>"+n+"</span></a>",a=this._get(t,"currentText"),r=this._get(t,"gotoCurrent")&&t.currentDay?G:B,a=K?this.formatDate(a,r,this._getFormatConfig(t)):a,h=t.inline?"":"<button type='button' class='ui-datepicker-close ui-state-default ui-priority-primary ui-corner-all' data-handler='hide' data-event='click'>"+this._get(t,"closeText")+"</button>",l=j?"<div class='ui-datepicker-buttonpane ui-widget-content'>"+(Y?h:"")+(this._isInRange(t,r)?"<button type='button' class='ui-datepicker-current ui-state-default ui-priority-secondary ui-corner-all' data-handler='today' data-event='click'>"+a+"</button>":"")+(Y?"":h)+"</div>":"",c=parseInt(this._get(t,"firstDay"),10),c=isNaN(c)?0:c,u=this._get(t,"showWeek"),d=this._get(t,"dayNames"),p=this._get(t,"dayNamesMin"),f=this._get(t,"monthNames"),g=this._get(t,"monthNamesShort"),m=this._get(t,"beforeShowDay"),_=this._get(t,"showOtherMonths"),v=this._get(t,"selectOtherMonths"),b=this._getDefaultDate(t),y="",k=0;U[0]>k;k++){for(x="",this.maxRows=4,C=0;U[1]>C;C++){if(D=this._daylightSavingAdjust(new Date(te,Z,t.selectedDay)),I=" ui-corner-all",T="",X){if(T+="<div class='ui-datepicker-group",U[1]>1)switch(C){case 0:T+=" ui-datepicker-group-first",I=" ui-corner-"+(Y?"right":"left");break;case U[1]-1:T+=" ui-datepicker-group-last",I=" ui-corner-"+(Y?"left":"right");break;default:T+=" ui-datepicker-group-middle",I=""}T+="'>"}for(T+="<div class='ui-datepicker-header ui-widget-header ui-helper-clearfix"+I+"'>"+(/all|left/.test(I)&&0===k?Y?o:s:"")+(/all|right/.test(I)&&0===k?Y?s:o:"")+this._generateMonthYearHeader(t,Z,te,Q,J,k>0||C>0,f,g)+"</div><table class='ui-datepicker-calendar'><thead>"+"<tr>",P=u?"<th class='ui-datepicker-week-col'>"+this._get(t,"weekHeader")+"</th>":"",w=0;7>w;w++)M=(w+c)%7,P+="<th scope='col'"+((w+c+6)%7>=5?" class='ui-datepicker-week-end'":"")+">"+"<span title='"+d[M]+"'>"+p[M]+"</span></th>";for(T+=P+"</tr></thead><tbody>",S=this._getDaysInMonth(te,Z),te===t.selectedYear&&Z===t.selectedMonth&&(t.selectedDay=Math.min(t.selectedDay,S)),H=(this._getFirstDayOfMonth(te,Z)-c+7)%7,z=Math.ceil((H+S)/7),O=X?this.maxRows>z?this.maxRows:z:z,this.maxRows=O,A=this._daylightSavingAdjust(new Date(te,Z,1-H)),N=0;O>N;N++){for(T+="<tr>",W=u?"<td class='ui-datepicker-week-col'>"+this._get(t,"calculateWeek")(A)+"</td>":"",w=0;7>w;w++)E=m?m.apply(t.input?t.input[0]:null,[A]):[!0,""],F=A.getMonth()!==Z,L=F&&!v||!E[0]||Q&&Q>A||J&&A>J,W+="<td class='"+((w+c+6)%7>=5?" ui-datepicker-week-end":"")+(F?" ui-datepicker-other-month":"")+(A.getTime()===D.getTime()&&Z===t.selectedMonth&&t._keyEvent||b.getTime()===A.getTime()&&b.getTime()===D.getTime()?" "+this._dayOverClass:"")+(L?" "+this._unselectableClass+" ui-state-disabled":"")+(F&&!_?"":" "+E[1]+(A.getTime()===G.getTime()?" "+this._currentClass:"")+(A.getTime()===B.getTime()?" ui-datepicker-today":""))+"'"+(F&&!_||!E[2]?"":" title='"+E[2].replace(/'/g,"&#39;")+"'")+(L?"":" data-handler='selectDay' data-event='click' data-month='"+A.getMonth()+"' data-year='"+A.getFullYear()+"'")+">"+(F&&!_?"&#xa0;":L?"<span class='ui-state-default'>"+A.getDate()+"</span>":"<a class='ui-state-default"+(A.getTime()===B.getTime()?" ui-state-highlight":"")+(A.getTime()===G.getTime()?" ui-state-active":"")+(F?" ui-priority-secondary":"")+"' href='#'>"+A.getDate()+"</a>")+"</td>",A.setDate(A.getDate()+1),A=this._daylightSavingAdjust(A);T+=W+"</tr>"}Z++,Z>11&&(Z=0,te++),T+="</tbody></table>"+(X?"</div>"+(U[0]>0&&C===U[1]-1?"<div class='ui-datepicker-row-break'></div>":""):""),x+=T}y+=x}return y+=l,t._keyEvent=!1,y},_generateMonthYearHeader:function(t,e,i,s,n,o,a,r){var h,l,c,u,d,p,f,g,m=this._get(t,"changeMonth"),_=this._get(t,"changeYear"),v=this._get(t,"showMonthAfterYear"),b="<div class='ui-datepicker-title'>",y="";if(o||!m)y+="<span class='ui-datepicker-month'>"+a[e]+"</span>";else{for(h=s&&s.getFullYear()===i,l=n&&n.getFullYear()===i,y+="<select class='ui-datepicker-month' data-handler='selectMonth' data-event='change'>",c=0;12>c;c++)(!h||c>=s.getMonth())&&(!l||n.getMonth()>=c)&&(y+="<option value='"+c+"'"+(c===e?" selected='selected'":"")+">"+r[c]+"</option>");y+="</select>"}if(v||(b+=y+(!o&&m&&_?"":"&#xa0;")),!t.yearshtml)if(t.yearshtml="",o||!_)b+="<span class='ui-datepicker-year'>"+i+"</span>";else{for(u=this._get(t,"yearRange").split(":"),d=(new Date).getFullYear(),p=function(t){var e=t.match(/c[+\-].*/)?i+parseInt(t.substring(1),10):t.match(/[+\-].*/)?d+parseInt(t,10):parseInt(t,10);return isNaN(e)?d:e},f=p(u[0]),g=Math.max(f,p(u[1]||"")),f=s?Math.max(f,s.getFullYear()):f,g=n?Math.min(g,n.getFullYear()):g,t.yearshtml+="<select class='ui-datepicker-year' data-handler='selectYear' data-event='change'>";g>=f;f++)t.yearshtml+="<option value='"+f+"'"+(f===i?" selected='selected'":"")+">"+f+"</option>";t.yearshtml+="</select>",b+=t.yearshtml,t.yearshtml=null}return b+=this._get(t,"yearSuffix"),v&&(b+=(!o&&m&&_?"":"&#xa0;")+y),b+="</div>"},_adjustInstDate:function(t,e,i){var s=t.selectedYear+("Y"===i?e:0),n=t.selectedMonth+("M"===i?e:0),o=Math.min(t.selectedDay,this._getDaysInMonth(s,n))+("D"===i?e:0),a=this._restrictMinMax(t,this._daylightSavingAdjust(new Date(s,n,o)));t.selectedDay=a.getDate(),t.drawMonth=t.selectedMonth=a.getMonth(),t.drawYear=t.selectedYear=a.getFullYear(),("M"===i||"Y"===i)&&this._notifyChange(t)},_restrictMinMax:function(t,e){var i=this._getMinMaxDate(t,"min"),s=this._getMinMaxDate(t,"max"),n=i&&i>e?i:e;return s&&n>s?s:n},_notifyChange:function(t){var e=this._get(t,"onChangeMonthYear");e&&e.apply(t.input?t.input[0]:null,[t.selectedYear,t.selectedMonth+1,t])},_getNumberOfMonths:function(t){var e=this._get(t,"numberOfMonths");return null==e?[1,1]:"number"==typeof e?[1,e]:e},_getMinMaxDate:function(t,e){return this._determineDate(t,this._get(t,e+"Date"),null)},_getDaysInMonth:function(t,e){return 32-this._daylightSavingAdjust(new Date(t,e,32)).getDate()},_getFirstDayOfMonth:function(t,e){return new Date(t,e,1).getDay()},_canAdjustMonth:function(t,e,i,s){var n=this._getNumberOfMonths(t),o=this._daylightSavingAdjust(new Date(i,s+(0>e?e:n[0]*n[1]),1));return 0>e&&o.setDate(this._getDaysInMonth(o.getFullYear(),o.getMonth())),this._isInRange(t,o)},_isInRange:function(t,e){var i,s,n=this._getMinMaxDate(t,"min"),o=this._getMinMaxDate(t,"max"),a=null,r=null,h=this._get(t,"yearRange");return h&&(i=h.split(":"),s=(new Date).getFullYear(),a=parseInt(i[0],10),r=parseInt(i[1],10),i[0].match(/[+\-].*/)&&(a+=s),i[1].match(/[+\-].*/)&&(r+=s)),(!n||e.getTime()>=n.getTime())&&(!o||e.getTime()<=o.getTime())&&(!a||e.getFullYear()>=a)&&(!r||r>=e.getFullYear())},_getFormatConfig:function(t){var e=this._get(t,"shortYearCutoff");return e="string"!=typeof e?e:(new Date).getFullYear()%100+parseInt(e,10),{shortYearCutoff:e,dayNamesShort:this._get(t,"dayNamesShort"),dayNames:this._get(t,"dayNames"),monthNamesShort:this._get(t,"monthNamesShort"),monthNames:this._get(t,"monthNames")}},_formatDate:function(t,e,i,s){e||(t.currentDay=t.selectedDay,t.currentMonth=t.selectedMonth,t.currentYear=t.selectedYear);var n=e?"object"==typeof e?e:this._daylightSavingAdjust(new Date(s,i,e)):this._daylightSavingAdjust(new Date(t.currentYear,t.currentMonth,t.currentDay));return this.formatDate(this._get(t,"dateFormat"),n,this._getFormatConfig(t))}}),t.fn.datepicker=function(e){if(!this.length)return this;t.datepicker.initialized||(t(document).on("mousedown",t.datepicker._checkExternalClick),t.datepicker.initialized=!0),0===t("#"+t.datepicker._mainDivId).length&&t("body").append(t.datepicker.dpDiv);var i=Array.prototype.slice.call(arguments,1);return"string"!=typeof e||"isDisabled"!==e&&"getDate"!==e&&"widget"!==e?"option"===e&&2===arguments.length&&"string"==typeof arguments[1]?t.datepicker["_"+e+"Datepicker"].apply(t.datepicker,[this[0]].concat(i)):this.each(function(){"string"==typeof e?t.datepicker["_"+e+"Datepicker"].apply(t.datepicker,[this].concat(i)):t.datepicker._attachDatepicker(this,e)}):t.datepicker["_"+e+"Datepicker"].apply(t.datepicker,[this[0]].concat(i))},t.datepicker=new s,t.datepicker.initialized=!1,t.datepicker.uuid=(new Date).getTime(),t.datepicker.version="1.12.1",t.datepicker,t.ui.ie=!!/msie [\w.]+/.exec(navigator.userAgent.toLowerCase());var _=!1;t(document).on("mouseup",function(){_=!1}),t.widget("ui.mouse",{version:"1.12.1",options:{cancel:"input, textarea, button, select, option",distance:1,delay:0},_mouseInit:function(){var e=this;this.element.on("mousedown."+this.widgetName,function(t){return e._mouseDown(t)}).on("click."+this.widgetName,function(i){return!0===t.data(i.target,e.widgetName+".preventClickEvent")?(t.removeData(i.target,e.widgetName+".preventClickEvent"),i.stopImmediatePropagation(),!1):void 0}),this.started=!1},_mouseDestroy:function(){this.element.off("."+this.widgetName),this._mouseMoveDelegate&&this.document.off("mousemove."+this.widgetName,this._mouseMoveDelegate).off("mouseup."+this.widgetName,this._mouseUpDelegate)},_mouseDown:function(e){if(!_){this._mouseMoved=!1,this._mouseStarted&&this._mouseUp(e),this._mouseDownEvent=e;var i=this,s=1===e.which,n="string"==typeof this.options.cancel&&e.target.nodeName?t(e.target).closest(this.options.cancel).length:!1;return s&&!n&&this._mouseCapture(e)?(this.mouseDelayMet=!this.options.delay,this.mouseDelayMet||(this._mouseDelayTimer=setTimeout(function(){i.mouseDelayMet=!0},this.options.delay)),this._mouseDistanceMet(e)&&this._mouseDelayMet(e)&&(this._mouseStarted=this._mouseStart(e)!==!1,!this._mouseStarted)?(e.preventDefault(),!0):(!0===t.data(e.target,this.widgetName+".preventClickEvent")&&t.removeData(e.target,this.widgetName+".preventClickEvent"),this._mouseMoveDelegate=function(t){return i._mouseMove(t)},this._mouseUpDelegate=function(t){return i._mouseUp(t)},this.document.on("mousemove."+this.widgetName,this._mouseMoveDelegate).on("mouseup."+this.widgetName,this._mouseUpDelegate),e.preventDefault(),_=!0,!0)):!0}},_mouseMove:function(e){if(this._mouseMoved){if(t.ui.ie&&(!document.documentMode||9>document.documentMode)&&!e.button)return this._mouseUp(e);if(!e.which)if(e.originalEvent.altKey||e.originalEvent.ctrlKey||e.originalEvent.metaKey||e.originalEvent.shiftKey)this.ignoreMissingWhich=!0;else if(!this.ignoreMissingWhich)return this._mouseUp(e)}return(e.which||e.button)&&(this._mouseMoved=!0),this._mouseStarted?(this._mouseDrag(e),e.preventDefault()):(this._mouseDistanceMet(e)&&this._mouseDelayMet(e)&&(this._mouseStarted=this._mouseStart(this._mouseDownEvent,e)!==!1,this._mouseStarted?this._mouseDrag(e):this._mouseUp(e)),!this._mouseStarted)},_mouseUp:function(e){this.document.off("mousemove."+this.widgetName,this._mouseMoveDelegate).off("mouseup."+this.widgetName,this._mouseUpDelegate),this._mouseStarted&&(this._mouseStarted=!1,e.target===this._mouseDownEvent.target&&t.data(e.target,this.widgetName+".preventClickEvent",!0),this._mouseStop(e)),this._mouseDelayTimer&&(clearTimeout(this._mouseDelayTimer),delete this._mouseDelayTimer),this.ignoreMissingWhich=!1,_=!1,e.preventDefault()},_mouseDistanceMet:function(t){return Math.max(Math.abs(this._mouseDownEvent.pageX-t.pageX),Math.abs(this._mouseDownEvent.pageY-t.pageY))>=this.options.distance},_mouseDelayMet:function(){return this.mouseDelayMet},_mouseStart:function(){},_mouseDrag:function(){},_mouseStop:function(){},_mouseCapture:function(){return!0}}),t.ui.plugin={add:function(e,i,s){var n,o=t.ui[e].prototype;for(n in s)o.plugins[n]=o.plugins[n]||[],o.plugins[n].push([i,s[n]])},call:function(t,e,i,s){var n,o=t.plugins[e];if(o&&(s||t.element[0].parentNode&&11!==t.element[0].parentNode.nodeType))for(n=0;o.length>n;n++)t.options[o[n][0]]&&o[n][1].apply(t.element,i)}},t.ui.safeBlur=function(e){e&&"body"!==e.nodeName.toLowerCase()&&t(e).trigger("blur")},t.widget("ui.draggable",t.ui.mouse,{version:"1.12.1",widgetEventPrefix:"drag",options:{addClasses:!0,appendTo:"parent",axis:!1,connectToSortable:!1,containment:!1,cursor:"auto",cursorAt:!1,grid:!1,handle:!1,helper:"original",iframeFix:!1,opacity:!1,refreshPositions:!1,revert:!1,revertDuration:500,scope:"default",scroll:!0,scrollSensitivity:20,scrollSpeed:20,snap:!1,snapMode:"both",snapTolerance:20,stack:!1,zIndex:!1,drag:null,start:null,stop:null},_create:function(){"original"===this.options.helper&&this._setPositionRelative(),this.options.addClasses&&this._addClass("ui-draggable"),this._setHandleClassName(),this._mouseInit()},_setOption:function(t,e){this._super(t,e),"handle"===t&&(this._removeHandleClassName(),this._setHandleClassName())},_destroy:function(){return(this.helper||this.element).is(".ui-draggable-dragging")?(this.destroyOnClear=!0,void 0):(this._removeHandleClassName(),this._mouseDestroy(),void 0)},_mouseCapture:function(e){var i=this.options;return this.helper||i.disabled||t(e.target).closest(".ui-resizable-handle").length>0?!1:(this.handle=this._getHandle(e),this.handle?(this._blurActiveElement(e),this._blockFrames(i.iframeFix===!0?"iframe":i.iframeFix),!0):!1)},_blockFrames:function(e){this.iframeBlocks=this.document.find(e).map(function(){var e=t(this);return t("<div>").css("position","absolute").appendTo(e.parent()).outerWidth(e.outerWidth()).outerHeight(e.outerHeight()).offset(e.offset())[0]})},_unblockFrames:function(){this.iframeBlocks&&(this.iframeBlocks.remove(),delete this.iframeBlocks)},_blurActiveElement:function(e){var i=t.ui.safeActiveElement(this.document[0]),s=t(e.target);s.closest(i).length||t.ui.safeBlur(i)},_mouseStart:function(e){var i=this.options;return this.helper=this._createHelper(e),this._addClass(this.helper,"ui-draggable-dragging"),this._cacheHelperProportions(),t.ui.ddmanager&&(t.ui.ddmanager.current=this),this._cacheMargins(),this.cssPosition=this.helper.css("position"),this.scrollParent=this.helper.scrollParent(!0),this.offsetParent=this.helper.offsetParent(),this.hasFixedAncestor=this.helper.parents().filter(function(){return"fixed"===t(this).css("position")}).length>0,this.positionAbs=this.element.offset(),this._refreshOffsets(e),this.originalPosition=this.position=this._generatePosition(e,!1),this.originalPageX=e.pageX,this.originalPageY=e.pageY,i.cursorAt&&this._adjustOffsetFromHelper(i.cursorAt),this._setContainment(),this._trigger("start",e)===!1?(this._clear(),!1):(this._cacheHelperProportions(),t.ui.ddmanager&&!i.dropBehaviour&&t.ui.ddmanager.prepareOffsets(this,e),this._mouseDrag(e,!0),t.ui.ddmanager&&t.ui.ddmanager.dragStart(this,e),!0)},_refreshOffsets:function(t){this.offset={top:this.positionAbs.top-this.margins.top,left:this.positionAbs.left-this.margins.left,scroll:!1,parent:this._getParentOffset(),relative:this._getRelativeOffset()},this.offset.click={left:t.pageX-this.offset.left,top:t.pageY-this.offset.top}},_mouseDrag:function(e,i){if(this.hasFixedAncestor&&(this.offset.parent=this._getParentOffset()),this.position=this._generatePosition(e,!0),this.positionAbs=this._convertPositionTo("absolute"),!i){var s=this._uiHash();if(this._trigger("drag",e,s)===!1)return this._mouseUp(new t.Event("mouseup",e)),!1;this.position=s.position}return this.helper[0].style.left=this.position.left+"px",this.helper[0].style.top=this.position.top+"px",t.ui.ddmanager&&t.ui.ddmanager.drag(this,e),!1},_mouseStop:function(e){var i=this,s=!1;return t.ui.ddmanager&&!this.options.dropBehaviour&&(s=t.ui.ddmanager.drop(this,e)),this.dropped&&(s=this.dropped,this.dropped=!1),"invalid"===this.options.revert&&!s||"valid"===this.options.revert&&s||this.options.revert===!0||t.isFunction(this.options.revert)&&this.options.revert.call(this.element,s)?t(this.helper).animate(this.originalPosition,parseInt(this.options.revertDuration,10),function(){i._trigger("stop",e)!==!1&&i._clear()}):this._trigger("stop",e)!==!1&&this._clear(),!1},_mouseUp:function(e){return this._unblockFrames(),t.ui.ddmanager&&t.ui.ddmanager.dragStop(this,e),this.handleElement.is(e.target)&&this.element.trigger("focus"),t.ui.mouse.prototype._mouseUp.call(this,e)},cancel:function(){return this.helper.is(".ui-draggable-dragging")?this._mouseUp(new t.Event("mouseup",{target:this.element[0]})):this._clear(),this},_getHandle:function(e){return this.options.handle?!!t(e.target).closest(this.element.find(this.options.handle)).length:!0},_setHandleClassName:function(){this.handleElement=this.options.handle?this.element.find(this.options.handle):this.element,this._addClass(this.handleElement,"ui-draggable-handle")},_removeHandleClassName:function(){this._removeClass(this.handleElement,"ui-draggable-handle")},_createHelper:function(e){var i=this.options,s=t.isFunction(i.helper),n=s?t(i.helper.apply(this.element[0],[e])):"clone"===i.helper?this.element.clone().removeAttr("id"):this.element;return n.parents("body").length||n.appendTo("parent"===i.appendTo?this.element[0].parentNode:i.appendTo),s&&n[0]===this.element[0]&&this._setPositionRelative(),n[0]===this.element[0]||/(fixed|absolute)/.test(n.css("position"))||n.css("position","absolute"),n},_setPositionRelative:function(){/^(?:r|a|f)/.test(this.element.css("position"))||(this.element[0].style.position="relative")},_adjustOffsetFromHelper:function(e){"string"==typeof e&&(e=e.split(" ")),t.isArray(e)&&(e={left:+e[0],top:+e[1]||0}),"left"in e&&(this.offset.click.left=e.left+this.margins.left),"right"in e&&(this.offset.click.left=this.helperProportions.width-e.right+this.margins.left),"top"in e&&(this.offset.click.top=e.top+this.margins.top),"bottom"in e&&(this.offset.click.top=this.helperProportions.height-e.bottom+this.margins.top)},_isRootNode:function(t){return/(html|body)/i.test(t.tagName)||t===this.document[0]},_getParentOffset:function(){var e=this.offsetParent.offset(),i=this.document[0];return"absolute"===this.cssPosition&&this.scrollParent[0]!==i&&t.contains(this.scrollParent[0],this.offsetParent[0])&&(e.left+=this.scrollParent.scrollLeft(),e.top+=this.scrollParent.scrollTop()),this._isRootNode(this.offsetParent[0])&&(e={top:0,left:0}),{top:e.top+(parseInt(this.offsetParent.css("borderTopWidth"),10)||0),left:e.left+(parseInt(this.offsetParent.css("borderLeftWidth"),10)||0)}},_getRelativeOffset:function(){if("relative"!==this.cssPosition)return{top:0,left:0};var t=this.element.position(),e=this._isRootNode(this.scrollParent[0]);return{top:t.top-(parseInt(this.helper.css("top"),10)||0)+(e?0:this.scrollParent.scrollTop()),left:t.left-(parseInt(this.helper.css("left"),10)||0)+(e?0:this.scrollParent.scrollLeft())}
+},_cacheMargins:function(){this.margins={left:parseInt(this.element.css("marginLeft"),10)||0,top:parseInt(this.element.css("marginTop"),10)||0,right:parseInt(this.element.css("marginRight"),10)||0,bottom:parseInt(this.element.css("marginBottom"),10)||0}},_cacheHelperProportions:function(){this.helperProportions={width:this.helper.outerWidth(),height:this.helper.outerHeight()}},_setContainment:function(){var e,i,s,n=this.options,o=this.document[0];return this.relativeContainer=null,n.containment?"window"===n.containment?(this.containment=[t(window).scrollLeft()-this.offset.relative.left-this.offset.parent.left,t(window).scrollTop()-this.offset.relative.top-this.offset.parent.top,t(window).scrollLeft()+t(window).width()-this.helperProportions.width-this.margins.left,t(window).scrollTop()+(t(window).height()||o.body.parentNode.scrollHeight)-this.helperProportions.height-this.margins.top],void 0):"document"===n.containment?(this.containment=[0,0,t(o).width()-this.helperProportions.width-this.margins.left,(t(o).height()||o.body.parentNode.scrollHeight)-this.helperProportions.height-this.margins.top],void 0):n.containment.constructor===Array?(this.containment=n.containment,void 0):("parent"===n.containment&&(n.containment=this.helper[0].parentNode),i=t(n.containment),s=i[0],s&&(e=/(scroll|auto)/.test(i.css("overflow")),this.containment=[(parseInt(i.css("borderLeftWidth"),10)||0)+(parseInt(i.css("paddingLeft"),10)||0),(parseInt(i.css("borderTopWidth"),10)||0)+(parseInt(i.css("paddingTop"),10)||0),(e?Math.max(s.scrollWidth,s.offsetWidth):s.offsetWidth)-(parseInt(i.css("borderRightWidth"),10)||0)-(parseInt(i.css("paddingRight"),10)||0)-this.helperProportions.width-this.margins.left-this.margins.right,(e?Math.max(s.scrollHeight,s.offsetHeight):s.offsetHeight)-(parseInt(i.css("borderBottomWidth"),10)||0)-(parseInt(i.css("paddingBottom"),10)||0)-this.helperProportions.height-this.margins.top-this.margins.bottom],this.relativeContainer=i),void 0):(this.containment=null,void 0)},_convertPositionTo:function(t,e){e||(e=this.position);var i="absolute"===t?1:-1,s=this._isRootNode(this.scrollParent[0]);return{top:e.top+this.offset.relative.top*i+this.offset.parent.top*i-("fixed"===this.cssPosition?-this.offset.scroll.top:s?0:this.offset.scroll.top)*i,left:e.left+this.offset.relative.left*i+this.offset.parent.left*i-("fixed"===this.cssPosition?-this.offset.scroll.left:s?0:this.offset.scroll.left)*i}},_generatePosition:function(t,e){var i,s,n,o,a=this.options,r=this._isRootNode(this.scrollParent[0]),h=t.pageX,l=t.pageY;return r&&this.offset.scroll||(this.offset.scroll={top:this.scrollParent.scrollTop(),left:this.scrollParent.scrollLeft()}),e&&(this.containment&&(this.relativeContainer?(s=this.relativeContainer.offset(),i=[this.containment[0]+s.left,this.containment[1]+s.top,this.containment[2]+s.left,this.containment[3]+s.top]):i=this.containment,t.pageX-this.offset.click.left<i[0]&&(h=i[0]+this.offset.click.left),t.pageY-this.offset.click.top<i[1]&&(l=i[1]+this.offset.click.top),t.pageX-this.offset.click.left>i[2]&&(h=i[2]+this.offset.click.left),t.pageY-this.offset.click.top>i[3]&&(l=i[3]+this.offset.click.top)),a.grid&&(n=a.grid[1]?this.originalPageY+Math.round((l-this.originalPageY)/a.grid[1])*a.grid[1]:this.originalPageY,l=i?n-this.offset.click.top>=i[1]||n-this.offset.click.top>i[3]?n:n-this.offset.click.top>=i[1]?n-a.grid[1]:n+a.grid[1]:n,o=a.grid[0]?this.originalPageX+Math.round((h-this.originalPageX)/a.grid[0])*a.grid[0]:this.originalPageX,h=i?o-this.offset.click.left>=i[0]||o-this.offset.click.left>i[2]?o:o-this.offset.click.left>=i[0]?o-a.grid[0]:o+a.grid[0]:o),"y"===a.axis&&(h=this.originalPageX),"x"===a.axis&&(l=this.originalPageY)),{top:l-this.offset.click.top-this.offset.relative.top-this.offset.parent.top+("fixed"===this.cssPosition?-this.offset.scroll.top:r?0:this.offset.scroll.top),left:h-this.offset.click.left-this.offset.relative.left-this.offset.parent.left+("fixed"===this.cssPosition?-this.offset.scroll.left:r?0:this.offset.scroll.left)}},_clear:function(){this._removeClass(this.helper,"ui-draggable-dragging"),this.helper[0]===this.element[0]||this.cancelHelperRemoval||this.helper.remove(),this.helper=null,this.cancelHelperRemoval=!1,this.destroyOnClear&&this.destroy()},_trigger:function(e,i,s){return s=s||this._uiHash(),t.ui.plugin.call(this,e,[i,s,this],!0),/^(drag|start|stop)/.test(e)&&(this.positionAbs=this._convertPositionTo("absolute"),s.offset=this.positionAbs),t.Widget.prototype._trigger.call(this,e,i,s)},plugins:{},_uiHash:function(){return{helper:this.helper,position:this.position,originalPosition:this.originalPosition,offset:this.positionAbs}}}),t.ui.plugin.add("draggable","connectToSortable",{start:function(e,i,s){var n=t.extend({},i,{item:s.element});s.sortables=[],t(s.options.connectToSortable).each(function(){var i=t(this).sortable("instance");i&&!i.options.disabled&&(s.sortables.push(i),i.refreshPositions(),i._trigger("activate",e,n))})},stop:function(e,i,s){var n=t.extend({},i,{item:s.element});s.cancelHelperRemoval=!1,t.each(s.sortables,function(){var t=this;t.isOver?(t.isOver=0,s.cancelHelperRemoval=!0,t.cancelHelperRemoval=!1,t._storedCSS={position:t.placeholder.css("position"),top:t.placeholder.css("top"),left:t.placeholder.css("left")},t._mouseStop(e),t.options.helper=t.options._helper):(t.cancelHelperRemoval=!0,t._trigger("deactivate",e,n))})},drag:function(e,i,s){t.each(s.sortables,function(){var n=!1,o=this;o.positionAbs=s.positionAbs,o.helperProportions=s.helperProportions,o.offset.click=s.offset.click,o._intersectsWith(o.containerCache)&&(n=!0,t.each(s.sortables,function(){return this.positionAbs=s.positionAbs,this.helperProportions=s.helperProportions,this.offset.click=s.offset.click,this!==o&&this._intersectsWith(this.containerCache)&&t.contains(o.element[0],this.element[0])&&(n=!1),n})),n?(o.isOver||(o.isOver=1,s._parent=i.helper.parent(),o.currentItem=i.helper.appendTo(o.element).data("ui-sortable-item",!0),o.options._helper=o.options.helper,o.options.helper=function(){return i.helper[0]},e.target=o.currentItem[0],o._mouseCapture(e,!0),o._mouseStart(e,!0,!0),o.offset.click.top=s.offset.click.top,o.offset.click.left=s.offset.click.left,o.offset.parent.left-=s.offset.parent.left-o.offset.parent.left,o.offset.parent.top-=s.offset.parent.top-o.offset.parent.top,s._trigger("toSortable",e),s.dropped=o.element,t.each(s.sortables,function(){this.refreshPositions()}),s.currentItem=s.element,o.fromOutside=s),o.currentItem&&(o._mouseDrag(e),i.position=o.position)):o.isOver&&(o.isOver=0,o.cancelHelperRemoval=!0,o.options._revert=o.options.revert,o.options.revert=!1,o._trigger("out",e,o._uiHash(o)),o._mouseStop(e,!0),o.options.revert=o.options._revert,o.options.helper=o.options._helper,o.placeholder&&o.placeholder.remove(),i.helper.appendTo(s._parent),s._refreshOffsets(e),i.position=s._generatePosition(e,!0),s._trigger("fromSortable",e),s.dropped=!1,t.each(s.sortables,function(){this.refreshPositions()}))})}}),t.ui.plugin.add("draggable","cursor",{start:function(e,i,s){var n=t("body"),o=s.options;n.css("cursor")&&(o._cursor=n.css("cursor")),n.css("cursor",o.cursor)},stop:function(e,i,s){var n=s.options;n._cursor&&t("body").css("cursor",n._cursor)}}),t.ui.plugin.add("draggable","opacity",{start:function(e,i,s){var n=t(i.helper),o=s.options;n.css("opacity")&&(o._opacity=n.css("opacity")),n.css("opacity",o.opacity)},stop:function(e,i,s){var n=s.options;n._opacity&&t(i.helper).css("opacity",n._opacity)}}),t.ui.plugin.add("draggable","scroll",{start:function(t,e,i){i.scrollParentNotHidden||(i.scrollParentNotHidden=i.helper.scrollParent(!1)),i.scrollParentNotHidden[0]!==i.document[0]&&"HTML"!==i.scrollParentNotHidden[0].tagName&&(i.overflowOffset=i.scrollParentNotHidden.offset())},drag:function(e,i,s){var n=s.options,o=!1,a=s.scrollParentNotHidden[0],r=s.document[0];a!==r&&"HTML"!==a.tagName?(n.axis&&"x"===n.axis||(s.overflowOffset.top+a.offsetHeight-e.pageY<n.scrollSensitivity?a.scrollTop=o=a.scrollTop+n.scrollSpeed:e.pageY-s.overflowOffset.top<n.scrollSensitivity&&(a.scrollTop=o=a.scrollTop-n.scrollSpeed)),n.axis&&"y"===n.axis||(s.overflowOffset.left+a.offsetWidth-e.pageX<n.scrollSensitivity?a.scrollLeft=o=a.scrollLeft+n.scrollSpeed:e.pageX-s.overflowOffset.left<n.scrollSensitivity&&(a.scrollLeft=o=a.scrollLeft-n.scrollSpeed))):(n.axis&&"x"===n.axis||(e.pageY-t(r).scrollTop()<n.scrollSensitivity?o=t(r).scrollTop(t(r).scrollTop()-n.scrollSpeed):t(window).height()-(e.pageY-t(r).scrollTop())<n.scrollSensitivity&&(o=t(r).scrollTop(t(r).scrollTop()+n.scrollSpeed))),n.axis&&"y"===n.axis||(e.pageX-t(r).scrollLeft()<n.scrollSensitivity?o=t(r).scrollLeft(t(r).scrollLeft()-n.scrollSpeed):t(window).width()-(e.pageX-t(r).scrollLeft())<n.scrollSensitivity&&(o=t(r).scrollLeft(t(r).scrollLeft()+n.scrollSpeed)))),o!==!1&&t.ui.ddmanager&&!n.dropBehaviour&&t.ui.ddmanager.prepareOffsets(s,e)}}),t.ui.plugin.add("draggable","snap",{start:function(e,i,s){var n=s.options;s.snapElements=[],t(n.snap.constructor!==String?n.snap.items||":data(ui-draggable)":n.snap).each(function(){var e=t(this),i=e.offset();this!==s.element[0]&&s.snapElements.push({item:this,width:e.outerWidth(),height:e.outerHeight(),top:i.top,left:i.left})})},drag:function(e,i,s){var n,o,a,r,h,l,c,u,d,p,f=s.options,g=f.snapTolerance,m=i.offset.left,_=m+s.helperProportions.width,v=i.offset.top,b=v+s.helperProportions.height;for(d=s.snapElements.length-1;d>=0;d--)h=s.snapElements[d].left-s.margins.left,l=h+s.snapElements[d].width,c=s.snapElements[d].top-s.margins.top,u=c+s.snapElements[d].height,h-g>_||m>l+g||c-g>b||v>u+g||!t.contains(s.snapElements[d].item.ownerDocument,s.snapElements[d].item)?(s.snapElements[d].snapping&&s.options.snap.release&&s.options.snap.release.call(s.element,e,t.extend(s._uiHash(),{snapItem:s.snapElements[d].item})),s.snapElements[d].snapping=!1):("inner"!==f.snapMode&&(n=g>=Math.abs(c-b),o=g>=Math.abs(u-v),a=g>=Math.abs(h-_),r=g>=Math.abs(l-m),n&&(i.position.top=s._convertPositionTo("relative",{top:c-s.helperProportions.height,left:0}).top),o&&(i.position.top=s._convertPositionTo("relative",{top:u,left:0}).top),a&&(i.position.left=s._convertPositionTo("relative",{top:0,left:h-s.helperProportions.width}).left),r&&(i.position.left=s._convertPositionTo("relative",{top:0,left:l}).left)),p=n||o||a||r,"outer"!==f.snapMode&&(n=g>=Math.abs(c-v),o=g>=Math.abs(u-b),a=g>=Math.abs(h-m),r=g>=Math.abs(l-_),n&&(i.position.top=s._convertPositionTo("relative",{top:c,left:0}).top),o&&(i.position.top=s._convertPositionTo("relative",{top:u-s.helperProportions.height,left:0}).top),a&&(i.position.left=s._convertPositionTo("relative",{top:0,left:h}).left),r&&(i.position.left=s._convertPositionTo("relative",{top:0,left:l-s.helperProportions.width}).left)),!s.snapElements[d].snapping&&(n||o||a||r||p)&&s.options.snap.snap&&s.options.snap.snap.call(s.element,e,t.extend(s._uiHash(),{snapItem:s.snapElements[d].item})),s.snapElements[d].snapping=n||o||a||r||p)}}),t.ui.plugin.add("draggable","stack",{start:function(e,i,s){var n,o=s.options,a=t.makeArray(t(o.stack)).sort(function(e,i){return(parseInt(t(e).css("zIndex"),10)||0)-(parseInt(t(i).css("zIndex"),10)||0)});a.length&&(n=parseInt(t(a[0]).css("zIndex"),10)||0,t(a).each(function(e){t(this).css("zIndex",n+e)}),this.css("zIndex",n+a.length))}}),t.ui.plugin.add("draggable","zIndex",{start:function(e,i,s){var n=t(i.helper),o=s.options;n.css("zIndex")&&(o._zIndex=n.css("zIndex")),n.css("zIndex",o.zIndex)},stop:function(e,i,s){var n=s.options;n._zIndex&&t(i.helper).css("zIndex",n._zIndex)}}),t.ui.draggable,t.widget("ui.resizable",t.ui.mouse,{version:"1.12.1",widgetEventPrefix:"resize",options:{alsoResize:!1,animate:!1,animateDuration:"slow",animateEasing:"swing",aspectRatio:!1,autoHide:!1,classes:{"ui-resizable-se":"ui-icon ui-icon-gripsmall-diagonal-se"},containment:!1,ghost:!1,grid:!1,handles:"e,s,se",helper:!1,maxHeight:null,maxWidth:null,minHeight:10,minWidth:10,zIndex:90,resize:null,start:null,stop:null},_num:function(t){return parseFloat(t)||0},_isNumber:function(t){return!isNaN(parseFloat(t))},_hasScroll:function(e,i){if("hidden"===t(e).css("overflow"))return!1;var s=i&&"left"===i?"scrollLeft":"scrollTop",n=!1;return e[s]>0?!0:(e[s]=1,n=e[s]>0,e[s]=0,n)},_create:function(){var e,i=this.options,s=this;this._addClass("ui-resizable"),t.extend(this,{_aspectRatio:!!i.aspectRatio,aspectRatio:i.aspectRatio,originalElement:this.element,_proportionallyResizeElements:[],_helper:i.helper||i.ghost||i.animate?i.helper||"ui-resizable-helper":null}),this.element[0].nodeName.match(/^(canvas|textarea|input|select|button|img)$/i)&&(this.element.wrap(t("<div class='ui-wrapper' style='overflow: hidden;'></div>").css({position:this.element.css("position"),width:this.element.outerWidth(),height:this.element.outerHeight(),top:this.element.css("top"),left:this.element.css("left")})),this.element=this.element.parent().data("ui-resizable",this.element.resizable("instance")),this.elementIsWrapper=!0,e={marginTop:this.originalElement.css("marginTop"),marginRight:this.originalElement.css("marginRight"),marginBottom:this.originalElement.css("marginBottom"),marginLeft:this.originalElement.css("marginLeft")},this.element.css(e),this.originalElement.css("margin",0),this.originalResizeStyle=this.originalElement.css("resize"),this.originalElement.css("resize","none"),this._proportionallyResizeElements.push(this.originalElement.css({position:"static",zoom:1,display:"block"})),this.originalElement.css(e),this._proportionallyResize()),this._setupHandles(),i.autoHide&&t(this.element).on("mouseenter",function(){i.disabled||(s._removeClass("ui-resizable-autohide"),s._handles.show())}).on("mouseleave",function(){i.disabled||s.resizing||(s._addClass("ui-resizable-autohide"),s._handles.hide())}),this._mouseInit()},_destroy:function(){this._mouseDestroy();var e,i=function(e){t(e).removeData("resizable").removeData("ui-resizable").off(".resizable").find(".ui-resizable-handle").remove()};return this.elementIsWrapper&&(i(this.element),e=this.element,this.originalElement.css({position:e.css("position"),width:e.outerWidth(),height:e.outerHeight(),top:e.css("top"),left:e.css("left")}).insertAfter(e),e.remove()),this.originalElement.css("resize",this.originalResizeStyle),i(this.originalElement),this},_setOption:function(t,e){switch(this._super(t,e),t){case"handles":this._removeHandles(),this._setupHandles();break;default:}},_setupHandles:function(){var e,i,s,n,o,a=this.options,r=this;if(this.handles=a.handles||(t(".ui-resizable-handle",this.element).length?{n:".ui-resizable-n",e:".ui-resizable-e",s:".ui-resizable-s",w:".ui-resizable-w",se:".ui-resizable-se",sw:".ui-resizable-sw",ne:".ui-resizable-ne",nw:".ui-resizable-nw"}:"e,s,se"),this._handles=t(),this.handles.constructor===String)for("all"===this.handles&&(this.handles="n,e,s,w,se,sw,ne,nw"),s=this.handles.split(","),this.handles={},i=0;s.length>i;i++)e=t.trim(s[i]),n="ui-resizable-"+e,o=t("<div>"),this._addClass(o,"ui-resizable-handle "+n),o.css({zIndex:a.zIndex}),this.handles[e]=".ui-resizable-"+e,this.element.append(o);this._renderAxis=function(e){var i,s,n,o;e=e||this.element;for(i in this.handles)this.handles[i].constructor===String?this.handles[i]=this.element.children(this.handles[i]).first().show():(this.handles[i].jquery||this.handles[i].nodeType)&&(this.handles[i]=t(this.handles[i]),this._on(this.handles[i],{mousedown:r._mouseDown})),this.elementIsWrapper&&this.originalElement[0].nodeName.match(/^(textarea|input|select|button)$/i)&&(s=t(this.handles[i],this.element),o=/sw|ne|nw|se|n|s/.test(i)?s.outerHeight():s.outerWidth(),n=["padding",/ne|nw|n/.test(i)?"Top":/se|sw|s/.test(i)?"Bottom":/^e$/.test(i)?"Right":"Left"].join(""),e.css(n,o),this._proportionallyResize()),this._handles=this._handles.add(this.handles[i])},this._renderAxis(this.element),this._handles=this._handles.add(this.element.find(".ui-resizable-handle")),this._handles.disableSelection(),this._handles.on("mouseover",function(){r.resizing||(this.className&&(o=this.className.match(/ui-resizable-(se|sw|ne|nw|n|e|s|w)/i)),r.axis=o&&o[1]?o[1]:"se")}),a.autoHide&&(this._handles.hide(),this._addClass("ui-resizable-autohide"))},_removeHandles:function(){this._handles.remove()},_mouseCapture:function(e){var i,s,n=!1;for(i in this.handles)s=t(this.handles[i])[0],(s===e.target||t.contains(s,e.target))&&(n=!0);return!this.options.disabled&&n},_mouseStart:function(e){var i,s,n,o=this.options,a=this.element;return this.resizing=!0,this._renderProxy(),i=this._num(this.helper.css("left")),s=this._num(this.helper.css("top")),o.containment&&(i+=t(o.containment).scrollLeft()||0,s+=t(o.containment).scrollTop()||0),this.offset=this.helper.offset(),this.position={left:i,top:s},this.size=this._helper?{width:this.helper.width(),height:this.helper.height()}:{width:a.width(),height:a.height()},this.originalSize=this._helper?{width:a.outerWidth(),height:a.outerHeight()}:{width:a.width(),height:a.height()},this.sizeDiff={width:a.outerWidth()-a.width(),height:a.outerHeight()-a.height()},this.originalPosition={left:i,top:s},this.originalMousePosition={left:e.pageX,top:e.pageY},this.aspectRatio="number"==typeof o.aspectRatio?o.aspectRatio:this.originalSize.width/this.originalSize.height||1,n=t(".ui-resizable-"+this.axis).css("cursor"),t("body").css("cursor","auto"===n?this.axis+"-resize":n),this._addClass("ui-resizable-resizing"),this._propagate("start",e),!0},_mouseDrag:function(e){var i,s,n=this.originalMousePosition,o=this.axis,a=e.pageX-n.left||0,r=e.pageY-n.top||0,h=this._change[o];return this._updatePrevProperties(),h?(i=h.apply(this,[e,a,r]),this._updateVirtualBoundaries(e.shiftKey),(this._aspectRatio||e.shiftKey)&&(i=this._updateRatio(i,e)),i=this._respectSize(i,e),this._updateCache(i),this._propagate("resize",e),s=this._applyChanges(),!this._helper&&this._proportionallyResizeElements.length&&this._proportionallyResize(),t.isEmptyObject(s)||(this._updatePrevProperties(),this._trigger("resize",e,this.ui()),this._applyChanges()),!1):!1},_mouseStop:function(e){this.resizing=!1;var i,s,n,o,a,r,h,l=this.options,c=this;return this._helper&&(i=this._proportionallyResizeElements,s=i.length&&/textarea/i.test(i[0].nodeName),n=s&&this._hasScroll(i[0],"left")?0:c.sizeDiff.height,o=s?0:c.sizeDiff.width,a={width:c.helper.width()-o,height:c.helper.height()-n},r=parseFloat(c.element.css("left"))+(c.position.left-c.originalPosition.left)||null,h=parseFloat(c.element.css("top"))+(c.position.top-c.originalPosition.top)||null,l.animate||this.element.css(t.extend(a,{top:h,left:r})),c.helper.height(c.size.height),c.helper.width(c.size.width),this._helper&&!l.animate&&this._proportionallyResize()),t("body").css("cursor","auto"),this._removeClass("ui-resizable-resizing"),this._propagate("stop",e),this._helper&&this.helper.remove(),!1},_updatePrevProperties:function(){this.prevPosition={top:this.position.top,left:this.position.left},this.prevSize={width:this.size.width,height:this.size.height}},_applyChanges:function(){var t={};return this.position.top!==this.prevPosition.top&&(t.top=this.position.top+"px"),this.position.left!==this.prevPosition.left&&(t.left=this.position.left+"px"),this.size.width!==this.prevSize.width&&(t.width=this.size.width+"px"),this.size.height!==this.prevSize.height&&(t.height=this.size.height+"px"),this.helper.css(t),t},_updateVirtualBoundaries:function(t){var e,i,s,n,o,a=this.options;o={minWidth:this._isNumber(a.minWidth)?a.minWidth:0,maxWidth:this._isNumber(a.maxWidth)?a.maxWidth:1/0,minHeight:this._isNumber(a.minHeight)?a.minHeight:0,maxHeight:this._isNumber(a.maxHeight)?a.maxHeight:1/0},(this._aspectRatio||t)&&(e=o.minHeight*this.aspectRatio,s=o.minWidth/this.aspectRatio,i=o.maxHeight*this.aspectRatio,n=o.maxWidth/this.aspectRatio,e>o.minWidth&&(o.minWidth=e),s>o.minHeight&&(o.minHeight=s),o.maxWidth>i&&(o.maxWidth=i),o.maxHeight>n&&(o.maxHeight=n)),this._vBoundaries=o},_updateCache:function(t){this.offset=this.helper.offset(),this._isNumber(t.left)&&(this.position.left=t.left),this._isNumber(t.top)&&(this.position.top=t.top),this._isNumber(t.height)&&(this.size.height=t.height),this._isNumber(t.width)&&(this.size.width=t.width)},_updateRatio:function(t){var e=this.position,i=this.size,s=this.axis;return this._isNumber(t.height)?t.width=t.height*this.aspectRatio:this._isNumber(t.width)&&(t.height=t.width/this.aspectRatio),"sw"===s&&(t.left=e.left+(i.width-t.width),t.top=null),"nw"===s&&(t.top=e.top+(i.height-t.height),t.left=e.left+(i.width-t.width)),t},_respectSize:function(t){var e=this._vBoundaries,i=this.axis,s=this._isNumber(t.width)&&e.maxWidth&&e.maxWidth<t.width,n=this._isNumber(t.height)&&e.maxHeight&&e.maxHeight<t.height,o=this._isNumber(t.width)&&e.minWidth&&e.minWidth>t.width,a=this._isNumber(t.height)&&e.minHeight&&e.minHeight>t.height,r=this.originalPosition.left+this.originalSize.width,h=this.originalPosition.top+this.originalSize.height,l=/sw|nw|w/.test(i),c=/nw|ne|n/.test(i);return o&&(t.width=e.minWidth),a&&(t.height=e.minHeight),s&&(t.width=e.maxWidth),n&&(t.height=e.maxHeight),o&&l&&(t.left=r-e.minWidth),s&&l&&(t.left=r-e.maxWidth),a&&c&&(t.top=h-e.minHeight),n&&c&&(t.top=h-e.maxHeight),t.width||t.height||t.left||!t.top?t.width||t.height||t.top||!t.left||(t.left=null):t.top=null,t},_getPaddingPlusBorderDimensions:function(t){for(var e=0,i=[],s=[t.css("borderTopWidth"),t.css("borderRightWidth"),t.css("borderBottomWidth"),t.css("borderLeftWidth")],n=[t.css("paddingTop"),t.css("paddingRight"),t.css("paddingBottom"),t.css("paddingLeft")];4>e;e++)i[e]=parseFloat(s[e])||0,i[e]+=parseFloat(n[e])||0;return{height:i[0]+i[2],width:i[1]+i[3]}},_proportionallyResize:function(){if(this._proportionallyResizeElements.length)for(var t,e=0,i=this.helper||this.element;this._proportionallyResizeElements.length>e;e++)t=this._proportionallyResizeElements[e],this.outerDimensions||(this.outerDimensions=this._getPaddingPlusBorderDimensions(t)),t.css({height:i.height()-this.outerDimensions.height||0,width:i.width()-this.outerDimensions.width||0})},_renderProxy:function(){var e=this.element,i=this.options;this.elementOffset=e.offset(),this._helper?(this.helper=this.helper||t("<div style='overflow:hidden;'></div>"),this._addClass(this.helper,this._helper),this.helper.css({width:this.element.outerWidth(),height:this.element.outerHeight(),position:"absolute",left:this.elementOffset.left+"px",top:this.elementOffset.top+"px",zIndex:++i.zIndex}),this.helper.appendTo("body").disableSelection()):this.helper=this.element},_change:{e:function(t,e){return{width:this.originalSize.width+e}},w:function(t,e){var i=this.originalSize,s=this.originalPosition;return{left:s.left+e,width:i.width-e}},n:function(t,e,i){var s=this.originalSize,n=this.originalPosition;return{top:n.top+i,height:s.height-i}},s:function(t,e,i){return{height:this.originalSize.height+i}},se:function(e,i,s){return t.extend(this._change.s.apply(this,arguments),this._change.e.apply(this,[e,i,s]))},sw:function(e,i,s){return t.extend(this._change.s.apply(this,arguments),this._change.w.apply(this,[e,i,s]))},ne:function(e,i,s){return t.extend(this._change.n.apply(this,arguments),this._change.e.apply(this,[e,i,s]))},nw:function(e,i,s){return t.extend(this._change.n.apply(this,arguments),this._change.w.apply(this,[e,i,s]))}},_propagate:function(e,i){t.ui.plugin.call(this,e,[i,this.ui()]),"resize"!==e&&this._trigger(e,i,this.ui())},plugins:{},ui:function(){return{originalElement:this.originalElement,element:this.element,helper:this.helper,position:this.position,size:this.size,originalSize:this.originalSize,originalPosition:this.originalPosition}}}),t.ui.plugin.add("resizable","animate",{stop:function(e){var i=t(this).resizable("instance"),s=i.options,n=i._proportionallyResizeElements,o=n.length&&/textarea/i.test(n[0].nodeName),a=o&&i._hasScroll(n[0],"left")?0:i.sizeDiff.height,r=o?0:i.sizeDiff.width,h={width:i.size.width-r,height:i.size.height-a},l=parseFloat(i.element.css("left"))+(i.position.left-i.originalPosition.left)||null,c=parseFloat(i.element.css("top"))+(i.position.top-i.originalPosition.top)||null;i.element.animate(t.extend(h,c&&l?{top:c,left:l}:{}),{duration:s.animateDuration,easing:s.animateEasing,step:function(){var s={width:parseFloat(i.element.css("width")),height:parseFloat(i.element.css("height")),top:parseFloat(i.element.css("top")),left:parseFloat(i.element.css("left"))};n&&n.length&&t(n[0]).css({width:s.width,height:s.height}),i._updateCache(s),i._propagate("resize",e)}})}}),t.ui.plugin.add("resizable","containment",{start:function(){var e,i,s,n,o,a,r,h=t(this).resizable("instance"),l=h.options,c=h.element,u=l.containment,d=u instanceof t?u.get(0):/parent/.test(u)?c.parent().get(0):u;d&&(h.containerElement=t(d),/document/.test(u)||u===document?(h.containerOffset={left:0,top:0},h.containerPosition={left:0,top:0},h.parentData={element:t(document),left:0,top:0,width:t(document).width(),height:t(document).height()||document.body.parentNode.scrollHeight}):(e=t(d),i=[],t(["Top","Right","Left","Bottom"]).each(function(t,s){i[t]=h._num(e.css("padding"+s))}),h.containerOffset=e.offset(),h.containerPosition=e.position(),h.containerSize={height:e.innerHeight()-i[3],width:e.innerWidth()-i[1]},s=h.containerOffset,n=h.containerSize.height,o=h.containerSize.width,a=h._hasScroll(d,"left")?d.scrollWidth:o,r=h._hasScroll(d)?d.scrollHeight:n,h.parentData={element:d,left:s.left,top:s.top,width:a,height:r}))},resize:function(e){var i,s,n,o,a=t(this).resizable("instance"),r=a.options,h=a.containerOffset,l=a.position,c=a._aspectRatio||e.shiftKey,u={top:0,left:0},d=a.containerElement,p=!0;d[0]!==document&&/static/.test(d.css("position"))&&(u=h),l.left<(a._helper?h.left:0)&&(a.size.width=a.size.width+(a._helper?a.position.left-h.left:a.position.left-u.left),c&&(a.size.height=a.size.width/a.aspectRatio,p=!1),a.position.left=r.helper?h.left:0),l.top<(a._helper?h.top:0)&&(a.size.height=a.size.height+(a._helper?a.position.top-h.top:a.position.top),c&&(a.size.width=a.size.height*a.aspectRatio,p=!1),a.position.top=a._helper?h.top:0),n=a.containerElement.get(0)===a.element.parent().get(0),o=/relative|absolute/.test(a.containerElement.css("position")),n&&o?(a.offset.left=a.parentData.left+a.position.left,a.offset.top=a.parentData.top+a.position.top):(a.offset.left=a.element.offset().left,a.offset.top=a.element.offset().top),i=Math.abs(a.sizeDiff.width+(a._helper?a.offset.left-u.left:a.offset.left-h.left)),s=Math.abs(a.sizeDiff.height+(a._helper?a.offset.top-u.top:a.offset.top-h.top)),i+a.size.width>=a.parentData.width&&(a.size.width=a.parentData.width-i,c&&(a.size.height=a.size.width/a.aspectRatio,p=!1)),s+a.size.height>=a.parentData.height&&(a.size.height=a.parentData.height-s,c&&(a.size.width=a.size.height*a.aspectRatio,p=!1)),p||(a.position.left=a.prevPosition.left,a.position.top=a.prevPosition.top,a.size.width=a.prevSize.width,a.size.height=a.prevSize.height)},stop:function(){var e=t(this).resizable("instance"),i=e.options,s=e.containerOffset,n=e.containerPosition,o=e.containerElement,a=t(e.helper),r=a.offset(),h=a.outerWidth()-e.sizeDiff.width,l=a.outerHeight()-e.sizeDiff.height;e._helper&&!i.animate&&/relative/.test(o.css("position"))&&t(this).css({left:r.left-n.left-s.left,width:h,height:l}),e._helper&&!i.animate&&/static/.test(o.css("position"))&&t(this).css({left:r.left-n.left-s.left,width:h,height:l})}}),t.ui.plugin.add("resizable","alsoResize",{start:function(){var e=t(this).resizable("instance"),i=e.options;t(i.alsoResize).each(function(){var e=t(this);e.data("ui-resizable-alsoresize",{width:parseFloat(e.width()),height:parseFloat(e.height()),left:parseFloat(e.css("left")),top:parseFloat(e.css("top"))})})},resize:function(e,i){var s=t(this).resizable("instance"),n=s.options,o=s.originalSize,a=s.originalPosition,r={height:s.size.height-o.height||0,width:s.size.width-o.width||0,top:s.position.top-a.top||0,left:s.position.left-a.left||0};t(n.alsoResize).each(function(){var e=t(this),s=t(this).data("ui-resizable-alsoresize"),n={},o=e.parents(i.originalElement[0]).length?["width","height"]:["width","height","top","left"];t.each(o,function(t,e){var i=(s[e]||0)+(r[e]||0);i&&i>=0&&(n[e]=i||null)}),e.css(n)})},stop:function(){t(this).removeData("ui-resizable-alsoresize")}}),t.ui.plugin.add("resizable","ghost",{start:function(){var e=t(this).resizable("instance"),i=e.size;e.ghost=e.originalElement.clone(),e.ghost.css({opacity:.25,display:"block",position:"relative",height:i.height,width:i.width,margin:0,left:0,top:0}),e._addClass(e.ghost,"ui-resizable-ghost"),t.uiBackCompat!==!1&&"string"==typeof e.options.ghost&&e.ghost.addClass(this.options.ghost),e.ghost.appendTo(e.helper)},resize:function(){var e=t(this).resizable("instance");e.ghost&&e.ghost.css({position:"relative",height:e.size.height,width:e.size.width})},stop:function(){var e=t(this).resizable("instance");e.ghost&&e.helper&&e.helper.get(0).removeChild(e.ghost.get(0))}}),t.ui.plugin.add("resizable","grid",{resize:function(){var e,i=t(this).resizable("instance"),s=i.options,n=i.size,o=i.originalSize,a=i.originalPosition,r=i.axis,h="number"==typeof s.grid?[s.grid,s.grid]:s.grid,l=h[0]||1,c=h[1]||1,u=Math.round((n.width-o.width)/l)*l,d=Math.round((n.height-o.height)/c)*c,p=o.width+u,f=o.height+d,g=s.maxWidth&&p>s.maxWidth,m=s.maxHeight&&f>s.maxHeight,_=s.minWidth&&s.minWidth>p,v=s.minHeight&&s.minHeight>f;s.grid=h,_&&(p+=l),v&&(f+=c),g&&(p-=l),m&&(f-=c),/^(se|s|e)$/.test(r)?(i.size.width=p,i.size.height=f):/^(ne)$/.test(r)?(i.size.width=p,i.size.height=f,i.position.top=a.top-d):/^(sw)$/.test(r)?(i.size.width=p,i.size.height=f,i.position.left=a.left-u):((0>=f-c||0>=p-l)&&(e=i._getPaddingPlusBorderDimensions(this)),f-c>0?(i.size.height=f,i.position.top=a.top-d):(f=c-e.height,i.size.height=f,i.position.top=a.top+o.height-f),p-l>0?(i.size.width=p,i.position.left=a.left-u):(p=l-e.width,i.size.width=p,i.position.left=a.left+o.width-p))}}),t.ui.resizable,t.widget("ui.dialog",{version:"1.12.1",options:{appendTo:"body",autoOpen:!0,buttons:[],classes:{"ui-dialog":"ui-corner-all","ui-dialog-titlebar":"ui-corner-all"},closeOnEscape:!0,closeText:"Close",draggable:!0,hide:null,height:"auto",maxHeight:null,maxWidth:null,minHeight:150,minWidth:150,modal:!1,position:{my:"center",at:"center",of:window,collision:"fit",using:function(e){var i=t(this).css(e).offset().top;0>i&&t(this).css("top",e.top-i)}},resizable:!0,show:null,title:null,width:300,beforeClose:null,close:null,drag:null,dragStart:null,dragStop:null,focus:null,open:null,resize:null,resizeStart:null,resizeStop:null},sizeRelatedOptions:{buttons:!0,height:!0,maxHeight:!0,maxWidth:!0,minHeight:!0,minWidth:!0,width:!0},resizableRelatedOptions:{maxHeight:!0,maxWidth:!0,minHeight:!0,minWidth:!0},_create:function(){this.originalCss={display:this.element[0].style.display,width:this.element[0].style.width,minHeight:this.element[0].style.minHeight,maxHeight:this.element[0].style.maxHeight,height:this.element[0].style.height},this.originalPosition={parent:this.element.parent(),index:this.element.parent().children().index(this.element)},this.originalTitle=this.element.attr("title"),null==this.options.title&&null!=this.originalTitle&&(this.options.title=this.originalTitle),this.options.disabled&&(this.options.disabled=!1),this._createWrapper(),this.element.show().removeAttr("title").appendTo(this.uiDialog),this._addClass("ui-dialog-content","ui-widget-content"),this._createTitlebar(),this._createButtonPane(),this.options.draggable&&t.fn.draggable&&this._makeDraggable(),this.options.resizable&&t.fn.resizable&&this._makeResizable(),this._isOpen=!1,this._trackFocus()},_init:function(){this.options.autoOpen&&this.open()},_appendTo:function(){var e=this.options.appendTo;return e&&(e.jquery||e.nodeType)?t(e):this.document.find(e||"body").eq(0)},_destroy:function(){var t,e=this.originalPosition;this._untrackInstance(),this._destroyOverlay(),this.element.removeUniqueId().css(this.originalCss).detach(),this.uiDialog.remove(),this.originalTitle&&this.element.attr("title",this.originalTitle),t=e.parent.children().eq(e.index),t.length&&t[0]!==this.element[0]?t.before(this.element):e.parent.append(this.element)},widget:function(){return this.uiDialog
+},disable:t.noop,enable:t.noop,close:function(e){var i=this;this._isOpen&&this._trigger("beforeClose",e)!==!1&&(this._isOpen=!1,this._focusedElement=null,this._destroyOverlay(),this._untrackInstance(),this.opener.filter(":focusable").trigger("focus").length||t.ui.safeBlur(t.ui.safeActiveElement(this.document[0])),this._hide(this.uiDialog,this.options.hide,function(){i._trigger("close",e)}))},isOpen:function(){return this._isOpen},moveToTop:function(){this._moveToTop()},_moveToTop:function(e,i){var s=!1,n=this.uiDialog.siblings(".ui-front:visible").map(function(){return+t(this).css("z-index")}).get(),o=Math.max.apply(null,n);return o>=+this.uiDialog.css("z-index")&&(this.uiDialog.css("z-index",o+1),s=!0),s&&!i&&this._trigger("focus",e),s},open:function(){var e=this;return this._isOpen?(this._moveToTop()&&this._focusTabbable(),void 0):(this._isOpen=!0,this.opener=t(t.ui.safeActiveElement(this.document[0])),this._size(),this._position(),this._createOverlay(),this._moveToTop(null,!0),this.overlay&&this.overlay.css("z-index",this.uiDialog.css("z-index")-1),this._show(this.uiDialog,this.options.show,function(){e._focusTabbable(),e._trigger("focus")}),this._makeFocusTarget(),this._trigger("open"),void 0)},_focusTabbable:function(){var t=this._focusedElement;t||(t=this.element.find("[autofocus]")),t.length||(t=this.element.find(":tabbable")),t.length||(t=this.uiDialogButtonPane.find(":tabbable")),t.length||(t=this.uiDialogTitlebarClose.filter(":tabbable")),t.length||(t=this.uiDialog),t.eq(0).trigger("focus")},_keepFocus:function(e){function i(){var e=t.ui.safeActiveElement(this.document[0]),i=this.uiDialog[0]===e||t.contains(this.uiDialog[0],e);i||this._focusTabbable()}e.preventDefault(),i.call(this),this._delay(i)},_createWrapper:function(){this.uiDialog=t("<div>").hide().attr({tabIndex:-1,role:"dialog"}).appendTo(this._appendTo()),this._addClass(this.uiDialog,"ui-dialog","ui-widget ui-widget-content ui-front"),this._on(this.uiDialog,{keydown:function(e){if(this.options.closeOnEscape&&!e.isDefaultPrevented()&&e.keyCode&&e.keyCode===t.ui.keyCode.ESCAPE)return e.preventDefault(),this.close(e),void 0;if(e.keyCode===t.ui.keyCode.TAB&&!e.isDefaultPrevented()){var i=this.uiDialog.find(":tabbable"),s=i.filter(":first"),n=i.filter(":last");e.target!==n[0]&&e.target!==this.uiDialog[0]||e.shiftKey?e.target!==s[0]&&e.target!==this.uiDialog[0]||!e.shiftKey||(this._delay(function(){n.trigger("focus")}),e.preventDefault()):(this._delay(function(){s.trigger("focus")}),e.preventDefault())}},mousedown:function(t){this._moveToTop(t)&&this._focusTabbable()}}),this.element.find("[aria-describedby]").length||this.uiDialog.attr({"aria-describedby":this.element.uniqueId().attr("id")})},_createTitlebar:function(){var e;this.uiDialogTitlebar=t("<div>"),this._addClass(this.uiDialogTitlebar,"ui-dialog-titlebar","ui-widget-header ui-helper-clearfix"),this._on(this.uiDialogTitlebar,{mousedown:function(e){t(e.target).closest(".ui-dialog-titlebar-close")||this.uiDialog.trigger("focus")}}),this.uiDialogTitlebarClose=t("<button type='button'></button>").button({label:t("<a>").text(this.options.closeText).html(),icon:"ui-icon-closethick",showLabel:!1}).appendTo(this.uiDialogTitlebar),this._addClass(this.uiDialogTitlebarClose,"ui-dialog-titlebar-close"),this._on(this.uiDialogTitlebarClose,{click:function(t){t.preventDefault(),this.close(t)}}),e=t("<span>").uniqueId().prependTo(this.uiDialogTitlebar),this._addClass(e,"ui-dialog-title"),this._title(e),this.uiDialogTitlebar.prependTo(this.uiDialog),this.uiDialog.attr({"aria-labelledby":e.attr("id")})},_title:function(t){this.options.title?t.text(this.options.title):t.html("&#160;")},_createButtonPane:function(){this.uiDialogButtonPane=t("<div>"),this._addClass(this.uiDialogButtonPane,"ui-dialog-buttonpane","ui-widget-content ui-helper-clearfix"),this.uiButtonSet=t("<div>").appendTo(this.uiDialogButtonPane),this._addClass(this.uiButtonSet,"ui-dialog-buttonset"),this._createButtons()},_createButtons:function(){var e=this,i=this.options.buttons;return this.uiDialogButtonPane.remove(),this.uiButtonSet.empty(),t.isEmptyObject(i)||t.isArray(i)&&!i.length?(this._removeClass(this.uiDialog,"ui-dialog-buttons"),void 0):(t.each(i,function(i,s){var n,o;s=t.isFunction(s)?{click:s,text:i}:s,s=t.extend({type:"button"},s),n=s.click,o={icon:s.icon,iconPosition:s.iconPosition,showLabel:s.showLabel,icons:s.icons,text:s.text},delete s.click,delete s.icon,delete s.iconPosition,delete s.showLabel,delete s.icons,"boolean"==typeof s.text&&delete s.text,t("<button></button>",s).button(o).appendTo(e.uiButtonSet).on("click",function(){n.apply(e.element[0],arguments)})}),this._addClass(this.uiDialog,"ui-dialog-buttons"),this.uiDialogButtonPane.appendTo(this.uiDialog),void 0)},_makeDraggable:function(){function e(t){return{position:t.position,offset:t.offset}}var i=this,s=this.options;this.uiDialog.draggable({cancel:".ui-dialog-content, .ui-dialog-titlebar-close",handle:".ui-dialog-titlebar",containment:"document",start:function(s,n){i._addClass(t(this),"ui-dialog-dragging"),i._blockFrames(),i._trigger("dragStart",s,e(n))},drag:function(t,s){i._trigger("drag",t,e(s))},stop:function(n,o){var a=o.offset.left-i.document.scrollLeft(),r=o.offset.top-i.document.scrollTop();s.position={my:"left top",at:"left"+(a>=0?"+":"")+a+" "+"top"+(r>=0?"+":"")+r,of:i.window},i._removeClass(t(this),"ui-dialog-dragging"),i._unblockFrames(),i._trigger("dragStop",n,e(o))}})},_makeResizable:function(){function e(t){return{originalPosition:t.originalPosition,originalSize:t.originalSize,position:t.position,size:t.size}}var i=this,s=this.options,n=s.resizable,o=this.uiDialog.css("position"),a="string"==typeof n?n:"n,e,s,w,se,sw,ne,nw";this.uiDialog.resizable({cancel:".ui-dialog-content",containment:"document",alsoResize:this.element,maxWidth:s.maxWidth,maxHeight:s.maxHeight,minWidth:s.minWidth,minHeight:this._minHeight(),handles:a,start:function(s,n){i._addClass(t(this),"ui-dialog-resizing"),i._blockFrames(),i._trigger("resizeStart",s,e(n))},resize:function(t,s){i._trigger("resize",t,e(s))},stop:function(n,o){var a=i.uiDialog.offset(),r=a.left-i.document.scrollLeft(),h=a.top-i.document.scrollTop();s.height=i.uiDialog.height(),s.width=i.uiDialog.width(),s.position={my:"left top",at:"left"+(r>=0?"+":"")+r+" "+"top"+(h>=0?"+":"")+h,of:i.window},i._removeClass(t(this),"ui-dialog-resizing"),i._unblockFrames(),i._trigger("resizeStop",n,e(o))}}).css("position",o)},_trackFocus:function(){this._on(this.widget(),{focusin:function(e){this._makeFocusTarget(),this._focusedElement=t(e.target)}})},_makeFocusTarget:function(){this._untrackInstance(),this._trackingInstances().unshift(this)},_untrackInstance:function(){var e=this._trackingInstances(),i=t.inArray(this,e);-1!==i&&e.splice(i,1)},_trackingInstances:function(){var t=this.document.data("ui-dialog-instances");return t||(t=[],this.document.data("ui-dialog-instances",t)),t},_minHeight:function(){var t=this.options;return"auto"===t.height?t.minHeight:Math.min(t.minHeight,t.height)},_position:function(){var t=this.uiDialog.is(":visible");t||this.uiDialog.show(),this.uiDialog.position(this.options.position),t||this.uiDialog.hide()},_setOptions:function(e){var i=this,s=!1,n={};t.each(e,function(t,e){i._setOption(t,e),t in i.sizeRelatedOptions&&(s=!0),t in i.resizableRelatedOptions&&(n[t]=e)}),s&&(this._size(),this._position()),this.uiDialog.is(":data(ui-resizable)")&&this.uiDialog.resizable("option",n)},_setOption:function(e,i){var s,n,o=this.uiDialog;"disabled"!==e&&(this._super(e,i),"appendTo"===e&&this.uiDialog.appendTo(this._appendTo()),"buttons"===e&&this._createButtons(),"closeText"===e&&this.uiDialogTitlebarClose.button({label:t("<a>").text(""+this.options.closeText).html()}),"draggable"===e&&(s=o.is(":data(ui-draggable)"),s&&!i&&o.draggable("destroy"),!s&&i&&this._makeDraggable()),"position"===e&&this._position(),"resizable"===e&&(n=o.is(":data(ui-resizable)"),n&&!i&&o.resizable("destroy"),n&&"string"==typeof i&&o.resizable("option","handles",i),n||i===!1||this._makeResizable()),"title"===e&&this._title(this.uiDialogTitlebar.find(".ui-dialog-title")))},_size:function(){var t,e,i,s=this.options;this.element.show().css({width:"auto",minHeight:0,maxHeight:"none",height:0}),s.minWidth>s.width&&(s.width=s.minWidth),t=this.uiDialog.css({height:"auto",width:s.width}).outerHeight(),e=Math.max(0,s.minHeight-t),i="number"==typeof s.maxHeight?Math.max(0,s.maxHeight-t):"none","auto"===s.height?this.element.css({minHeight:e,maxHeight:i,height:"auto"}):this.element.height(Math.max(0,s.height-t)),this.uiDialog.is(":data(ui-resizable)")&&this.uiDialog.resizable("option","minHeight",this._minHeight())},_blockFrames:function(){this.iframeBlocks=this.document.find("iframe").map(function(){var e=t(this);return t("<div>").css({position:"absolute",width:e.outerWidth(),height:e.outerHeight()}).appendTo(e.parent()).offset(e.offset())[0]})},_unblockFrames:function(){this.iframeBlocks&&(this.iframeBlocks.remove(),delete this.iframeBlocks)},_allowInteraction:function(e){return t(e.target).closest(".ui-dialog").length?!0:!!t(e.target).closest(".ui-datepicker").length},_createOverlay:function(){if(this.options.modal){var e=!0;this._delay(function(){e=!1}),this.document.data("ui-dialog-overlays")||this._on(this.document,{focusin:function(t){e||this._allowInteraction(t)||(t.preventDefault(),this._trackingInstances()[0]._focusTabbable())}}),this.overlay=t("<div>").appendTo(this._appendTo()),this._addClass(this.overlay,null,"ui-widget-overlay ui-front"),this._on(this.overlay,{mousedown:"_keepFocus"}),this.document.data("ui-dialog-overlays",(this.document.data("ui-dialog-overlays")||0)+1)}},_destroyOverlay:function(){if(this.options.modal&&this.overlay){var t=this.document.data("ui-dialog-overlays")-1;t?this.document.data("ui-dialog-overlays",t):(this._off(this.document,"focusin"),this.document.removeData("ui-dialog-overlays")),this.overlay.remove(),this.overlay=null}}}),t.uiBackCompat!==!1&&t.widget("ui.dialog",t.ui.dialog,{options:{dialogClass:""},_createWrapper:function(){this._super(),this.uiDialog.addClass(this.options.dialogClass)},_setOption:function(t,e){"dialogClass"===t&&this.uiDialog.removeClass(this.options.dialogClass).addClass(e),this._superApply(arguments)}}),t.ui.dialog,t.widget("ui.droppable",{version:"1.12.1",widgetEventPrefix:"drop",options:{accept:"*",addClasses:!0,greedy:!1,scope:"default",tolerance:"intersect",activate:null,deactivate:null,drop:null,out:null,over:null},_create:function(){var e,i=this.options,s=i.accept;this.isover=!1,this.isout=!0,this.accept=t.isFunction(s)?s:function(t){return t.is(s)},this.proportions=function(){return arguments.length?(e=arguments[0],void 0):e?e:e={width:this.element[0].offsetWidth,height:this.element[0].offsetHeight}},this._addToManager(i.scope),i.addClasses&&this._addClass("ui-droppable")},_addToManager:function(e){t.ui.ddmanager.droppables[e]=t.ui.ddmanager.droppables[e]||[],t.ui.ddmanager.droppables[e].push(this)},_splice:function(t){for(var e=0;t.length>e;e++)t[e]===this&&t.splice(e,1)},_destroy:function(){var e=t.ui.ddmanager.droppables[this.options.scope];this._splice(e)},_setOption:function(e,i){if("accept"===e)this.accept=t.isFunction(i)?i:function(t){return t.is(i)};else if("scope"===e){var s=t.ui.ddmanager.droppables[this.options.scope];this._splice(s),this._addToManager(i)}this._super(e,i)},_activate:function(e){var i=t.ui.ddmanager.current;this._addActiveClass(),i&&this._trigger("activate",e,this.ui(i))},_deactivate:function(e){var i=t.ui.ddmanager.current;this._removeActiveClass(),i&&this._trigger("deactivate",e,this.ui(i))},_over:function(e){var i=t.ui.ddmanager.current;i&&(i.currentItem||i.element)[0]!==this.element[0]&&this.accept.call(this.element[0],i.currentItem||i.element)&&(this._addHoverClass(),this._trigger("over",e,this.ui(i)))},_out:function(e){var i=t.ui.ddmanager.current;i&&(i.currentItem||i.element)[0]!==this.element[0]&&this.accept.call(this.element[0],i.currentItem||i.element)&&(this._removeHoverClass(),this._trigger("out",e,this.ui(i)))},_drop:function(e,i){var s=i||t.ui.ddmanager.current,n=!1;return s&&(s.currentItem||s.element)[0]!==this.element[0]?(this.element.find(":data(ui-droppable)").not(".ui-draggable-dragging").each(function(){var i=t(this).droppable("instance");return i.options.greedy&&!i.options.disabled&&i.options.scope===s.options.scope&&i.accept.call(i.element[0],s.currentItem||s.element)&&v(s,t.extend(i,{offset:i.element.offset()}),i.options.tolerance,e)?(n=!0,!1):void 0}),n?!1:this.accept.call(this.element[0],s.currentItem||s.element)?(this._removeActiveClass(),this._removeHoverClass(),this._trigger("drop",e,this.ui(s)),this.element):!1):!1},ui:function(t){return{draggable:t.currentItem||t.element,helper:t.helper,position:t.position,offset:t.positionAbs}},_addHoverClass:function(){this._addClass("ui-droppable-hover")},_removeHoverClass:function(){this._removeClass("ui-droppable-hover")},_addActiveClass:function(){this._addClass("ui-droppable-active")},_removeActiveClass:function(){this._removeClass("ui-droppable-active")}});var v=t.ui.intersect=function(){function t(t,e,i){return t>=e&&e+i>t}return function(e,i,s,n){if(!i.offset)return!1;var o=(e.positionAbs||e.position.absolute).left+e.margins.left,a=(e.positionAbs||e.position.absolute).top+e.margins.top,r=o+e.helperProportions.width,h=a+e.helperProportions.height,l=i.offset.left,c=i.offset.top,u=l+i.proportions().width,d=c+i.proportions().height;switch(s){case"fit":return o>=l&&u>=r&&a>=c&&d>=h;case"intersect":return o+e.helperProportions.width/2>l&&u>r-e.helperProportions.width/2&&a+e.helperProportions.height/2>c&&d>h-e.helperProportions.height/2;case"pointer":return t(n.pageY,c,i.proportions().height)&&t(n.pageX,l,i.proportions().width);case"touch":return(a>=c&&d>=a||h>=c&&d>=h||c>a&&h>d)&&(o>=l&&u>=o||r>=l&&u>=r||l>o&&r>u);default:return!1}}}();t.ui.ddmanager={current:null,droppables:{"default":[]},prepareOffsets:function(e,i){var s,n,o=t.ui.ddmanager.droppables[e.options.scope]||[],a=i?i.type:null,r=(e.currentItem||e.element).find(":data(ui-droppable)").addBack();t:for(s=0;o.length>s;s++)if(!(o[s].options.disabled||e&&!o[s].accept.call(o[s].element[0],e.currentItem||e.element))){for(n=0;r.length>n;n++)if(r[n]===o[s].element[0]){o[s].proportions().height=0;continue t}o[s].visible="none"!==o[s].element.css("display"),o[s].visible&&("mousedown"===a&&o[s]._activate.call(o[s],i),o[s].offset=o[s].element.offset(),o[s].proportions({width:o[s].element[0].offsetWidth,height:o[s].element[0].offsetHeight}))}},drop:function(e,i){var s=!1;return t.each((t.ui.ddmanager.droppables[e.options.scope]||[]).slice(),function(){this.options&&(!this.options.disabled&&this.visible&&v(e,this,this.options.tolerance,i)&&(s=this._drop.call(this,i)||s),!this.options.disabled&&this.visible&&this.accept.call(this.element[0],e.currentItem||e.element)&&(this.isout=!0,this.isover=!1,this._deactivate.call(this,i)))}),s},dragStart:function(e,i){e.element.parentsUntil("body").on("scroll.droppable",function(){e.options.refreshPositions||t.ui.ddmanager.prepareOffsets(e,i)})},drag:function(e,i){e.options.refreshPositions&&t.ui.ddmanager.prepareOffsets(e,i),t.each(t.ui.ddmanager.droppables[e.options.scope]||[],function(){if(!this.options.disabled&&!this.greedyChild&&this.visible){var s,n,o,a=v(e,this,this.options.tolerance,i),r=!a&&this.isover?"isout":a&&!this.isover?"isover":null;r&&(this.options.greedy&&(n=this.options.scope,o=this.element.parents(":data(ui-droppable)").filter(function(){return t(this).droppable("instance").options.scope===n}),o.length&&(s=t(o[0]).droppable("instance"),s.greedyChild="isover"===r)),s&&"isover"===r&&(s.isover=!1,s.isout=!0,s._out.call(s,i)),this[r]=!0,this["isout"===r?"isover":"isout"]=!1,this["isover"===r?"_over":"_out"].call(this,i),s&&"isout"===r&&(s.isout=!1,s.isover=!0,s._over.call(s,i)))}})},dragStop:function(e,i){e.element.parentsUntil("body").off("scroll.droppable"),e.options.refreshPositions||t.ui.ddmanager.prepareOffsets(e,i)}},t.uiBackCompat!==!1&&t.widget("ui.droppable",t.ui.droppable,{options:{hoverClass:!1,activeClass:!1},_addActiveClass:function(){this._super(),this.options.activeClass&&this.element.addClass(this.options.activeClass)},_removeActiveClass:function(){this._super(),this.options.activeClass&&this.element.removeClass(this.options.activeClass)},_addHoverClass:function(){this._super(),this.options.hoverClass&&this.element.addClass(this.options.hoverClass)},_removeHoverClass:function(){this._super(),this.options.hoverClass&&this.element.removeClass(this.options.hoverClass)}}),t.ui.droppable,t.widget("ui.progressbar",{version:"1.12.1",options:{classes:{"ui-progressbar":"ui-corner-all","ui-progressbar-value":"ui-corner-left","ui-progressbar-complete":"ui-corner-right"},max:100,value:0,change:null,complete:null},min:0,_create:function(){this.oldValue=this.options.value=this._constrainedValue(),this.element.attr({role:"progressbar","aria-valuemin":this.min}),this._addClass("ui-progressbar","ui-widget ui-widget-content"),this.valueDiv=t("<div>").appendTo(this.element),this._addClass(this.valueDiv,"ui-progressbar-value","ui-widget-header"),this._refreshValue()},_destroy:function(){this.element.removeAttr("role aria-valuemin aria-valuemax aria-valuenow"),this.valueDiv.remove()},value:function(t){return void 0===t?this.options.value:(this.options.value=this._constrainedValue(t),this._refreshValue(),void 0)},_constrainedValue:function(t){return void 0===t&&(t=this.options.value),this.indeterminate=t===!1,"number"!=typeof t&&(t=0),this.indeterminate?!1:Math.min(this.options.max,Math.max(this.min,t))},_setOptions:function(t){var e=t.value;delete t.value,this._super(t),this.options.value=this._constrainedValue(e),this._refreshValue()},_setOption:function(t,e){"max"===t&&(e=Math.max(this.min,e)),this._super(t,e)},_setOptionDisabled:function(t){this._super(t),this.element.attr("aria-disabled",t),this._toggleClass(null,"ui-state-disabled",!!t)},_percentage:function(){return this.indeterminate?100:100*(this.options.value-this.min)/(this.options.max-this.min)},_refreshValue:function(){var e=this.options.value,i=this._percentage();this.valueDiv.toggle(this.indeterminate||e>this.min).width(i.toFixed(0)+"%"),this._toggleClass(this.valueDiv,"ui-progressbar-complete",null,e===this.options.max)._toggleClass("ui-progressbar-indeterminate",null,this.indeterminate),this.indeterminate?(this.element.removeAttr("aria-valuenow"),this.overlayDiv||(this.overlayDiv=t("<div>").appendTo(this.valueDiv),this._addClass(this.overlayDiv,"ui-progressbar-overlay"))):(this.element.attr({"aria-valuemax":this.options.max,"aria-valuenow":e}),this.overlayDiv&&(this.overlayDiv.remove(),this.overlayDiv=null)),this.oldValue!==e&&(this.oldValue=e,this._trigger("change")),e===this.options.max&&this._trigger("complete")}}),t.widget("ui.selectable",t.ui.mouse,{version:"1.12.1",options:{appendTo:"body",autoRefresh:!0,distance:0,filter:"*",tolerance:"touch",selected:null,selecting:null,start:null,stop:null,unselected:null,unselecting:null},_create:function(){var e=this;this._addClass("ui-selectable"),this.dragged=!1,this.refresh=function(){e.elementPos=t(e.element[0]).offset(),e.selectees=t(e.options.filter,e.element[0]),e._addClass(e.selectees,"ui-selectee"),e.selectees.each(function(){var i=t(this),s=i.offset(),n={left:s.left-e.elementPos.left,top:s.top-e.elementPos.top};t.data(this,"selectable-item",{element:this,$element:i,left:n.left,top:n.top,right:n.left+i.outerWidth(),bottom:n.top+i.outerHeight(),startselected:!1,selected:i.hasClass("ui-selected"),selecting:i.hasClass("ui-selecting"),unselecting:i.hasClass("ui-unselecting")})})},this.refresh(),this._mouseInit(),this.helper=t("<div>"),this._addClass(this.helper,"ui-selectable-helper")},_destroy:function(){this.selectees.removeData("selectable-item"),this._mouseDestroy()},_mouseStart:function(e){var i=this,s=this.options;this.opos=[e.pageX,e.pageY],this.elementPos=t(this.element[0]).offset(),this.options.disabled||(this.selectees=t(s.filter,this.element[0]),this._trigger("start",e),t(s.appendTo).append(this.helper),this.helper.css({left:e.pageX,top:e.pageY,width:0,height:0}),s.autoRefresh&&this.refresh(),this.selectees.filter(".ui-selected").each(function(){var s=t.data(this,"selectable-item");s.startselected=!0,e.metaKey||e.ctrlKey||(i._removeClass(s.$element,"ui-selected"),s.selected=!1,i._addClass(s.$element,"ui-unselecting"),s.unselecting=!0,i._trigger("unselecting",e,{unselecting:s.element}))}),t(e.target).parents().addBack().each(function(){var s,n=t.data(this,"selectable-item");return n?(s=!e.metaKey&&!e.ctrlKey||!n.$element.hasClass("ui-selected"),i._removeClass(n.$element,s?"ui-unselecting":"ui-selected")._addClass(n.$element,s?"ui-selecting":"ui-unselecting"),n.unselecting=!s,n.selecting=s,n.selected=s,s?i._trigger("selecting",e,{selecting:n.element}):i._trigger("unselecting",e,{unselecting:n.element}),!1):void 0}))},_mouseDrag:function(e){if(this.dragged=!0,!this.options.disabled){var i,s=this,n=this.options,o=this.opos[0],a=this.opos[1],r=e.pageX,h=e.pageY;return o>r&&(i=r,r=o,o=i),a>h&&(i=h,h=a,a=i),this.helper.css({left:o,top:a,width:r-o,height:h-a}),this.selectees.each(function(){var i=t.data(this,"selectable-item"),l=!1,c={};i&&i.element!==s.element[0]&&(c.left=i.left+s.elementPos.left,c.right=i.right+s.elementPos.left,c.top=i.top+s.elementPos.top,c.bottom=i.bottom+s.elementPos.top,"touch"===n.tolerance?l=!(c.left>r||o>c.right||c.top>h||a>c.bottom):"fit"===n.tolerance&&(l=c.left>o&&r>c.right&&c.top>a&&h>c.bottom),l?(i.selected&&(s._removeClass(i.$element,"ui-selected"),i.selected=!1),i.unselecting&&(s._removeClass(i.$element,"ui-unselecting"),i.unselecting=!1),i.selecting||(s._addClass(i.$element,"ui-selecting"),i.selecting=!0,s._trigger("selecting",e,{selecting:i.element}))):(i.selecting&&((e.metaKey||e.ctrlKey)&&i.startselected?(s._removeClass(i.$element,"ui-selecting"),i.selecting=!1,s._addClass(i.$element,"ui-selected"),i.selected=!0):(s._removeClass(i.$element,"ui-selecting"),i.selecting=!1,i.startselected&&(s._addClass(i.$element,"ui-unselecting"),i.unselecting=!0),s._trigger("unselecting",e,{unselecting:i.element}))),i.selected&&(e.metaKey||e.ctrlKey||i.startselected||(s._removeClass(i.$element,"ui-selected"),i.selected=!1,s._addClass(i.$element,"ui-unselecting"),i.unselecting=!0,s._trigger("unselecting",e,{unselecting:i.element})))))}),!1}},_mouseStop:function(e){var i=this;return this.dragged=!1,t(".ui-unselecting",this.element[0]).each(function(){var s=t.data(this,"selectable-item");i._removeClass(s.$element,"ui-unselecting"),s.unselecting=!1,s.startselected=!1,i._trigger("unselected",e,{unselected:s.element})}),t(".ui-selecting",this.element[0]).each(function(){var s=t.data(this,"selectable-item");i._removeClass(s.$element,"ui-selecting")._addClass(s.$element,"ui-selected"),s.selecting=!1,s.selected=!0,s.startselected=!0,i._trigger("selected",e,{selected:s.element})}),this._trigger("stop",e),this.helper.remove(),!1}}),t.widget("ui.selectmenu",[t.ui.formResetMixin,{version:"1.12.1",defaultElement:"<select>",options:{appendTo:null,classes:{"ui-selectmenu-button-open":"ui-corner-top","ui-selectmenu-button-closed":"ui-corner-all"},disabled:null,icons:{button:"ui-icon-triangle-1-s"},position:{my:"left top",at:"left bottom",collision:"none"},width:!1,change:null,close:null,focus:null,open:null,select:null},_create:function(){var e=this.element.uniqueId().attr("id");this.ids={element:e,button:e+"-button",menu:e+"-menu"},this._drawButton(),this._drawMenu(),this._bindFormResetHandler(),this._rendered=!1,this.menuItems=t()},_drawButton:function(){var e,i=this,s=this._parseOption(this.element.find("option:selected"),this.element[0].selectedIndex);this.labels=this.element.labels().attr("for",this.ids.button),this._on(this.labels,{click:function(t){this.button.focus(),t.preventDefault()}}),this.element.hide(),this.button=t("<span>",{tabindex:this.options.disabled?-1:0,id:this.ids.button,role:"combobox","aria-expanded":"false","aria-autocomplete":"list","aria-owns":this.ids.menu,"aria-haspopup":"true",title:this.element.attr("title")}).insertAfter(this.element),this._addClass(this.button,"ui-selectmenu-button ui-selectmenu-button-closed","ui-button ui-widget"),e=t("<span>").appendTo(this.button),this._addClass(e,"ui-selectmenu-icon","ui-icon "+this.options.icons.button),this.buttonItem=this._renderButtonItem(s).appendTo(this.button),this.options.width!==!1&&this._resizeButton(),this._on(this.button,this._buttonEvents),this.button.one("focusin",function(){i._rendered||i._refreshMenu()})},_drawMenu:function(){var e=this;this.menu=t("<ul>",{"aria-hidden":"true","aria-labelledby":this.ids.button,id:this.ids.menu}),this.menuWrap=t("<div>").append(this.menu),this._addClass(this.menuWrap,"ui-selectmenu-menu","ui-front"),this.menuWrap.appendTo(this._appendTo()),this.menuInstance=this.menu.menu({classes:{"ui-menu":"ui-corner-bottom"},role:"listbox",select:function(t,i){t.preventDefault(),e._setSelection(),e._select(i.item.data("ui-selectmenu-item"),t)},focus:function(t,i){var s=i.item.data("ui-selectmenu-item");null!=e.focusIndex&&s.index!==e.focusIndex&&(e._trigger("focus",t,{item:s}),e.isOpen||e._select(s,t)),e.focusIndex=s.index,e.button.attr("aria-activedescendant",e.menuItems.eq(s.index).attr("id"))}}).menu("instance"),this.menuInstance._off(this.menu,"mouseleave"),this.menuInstance._closeOnDocumentClick=function(){return!1},this.menuInstance._isDivider=function(){return!1}},refresh:function(){this._refreshMenu(),this.buttonItem.replaceWith(this.buttonItem=this._renderButtonItem(this._getSelectedItem().data("ui-selectmenu-item")||{})),null===this.options.width&&this._resizeButton()},_refreshMenu:function(){var t,e=this.element.find("option");this.menu.empty(),this._parseOptions(e),this._renderMenu(this.menu,this.items),this.menuInstance.refresh(),this.menuItems=this.menu.find("li").not(".ui-selectmenu-optgroup").find(".ui-menu-item-wrapper"),this._rendered=!0,e.length&&(t=this._getSelectedItem(),this.menuInstance.focus(null,t),this._setAria(t.data("ui-selectmenu-item")),this._setOption("disabled",this.element.prop("disabled")))},open:function(t){this.options.disabled||(this._rendered?(this._removeClass(this.menu.find(".ui-state-active"),null,"ui-state-active"),this.menuInstance.focus(null,this._getSelectedItem())):this._refreshMenu(),this.menuItems.length&&(this.isOpen=!0,this._toggleAttr(),this._resizeMenu(),this._position(),this._on(this.document,this._documentClick),this._trigger("open",t)))},_position:function(){this.menuWrap.position(t.extend({of:this.button},this.options.position))},close:function(t){this.isOpen&&(this.isOpen=!1,this._toggleAttr(),this.range=null,this._off(this.document),this._trigger("close",t))},widget:function(){return this.button},menuWidget:function(){return this.menu},_renderButtonItem:function(e){var i=t("<span>");return this._setText(i,e.label),this._addClass(i,"ui-selectmenu-text"),i},_renderMenu:function(e,i){var s=this,n="";t.each(i,function(i,o){var a;o.optgroup!==n&&(a=t("<li>",{text:o.optgroup}),s._addClass(a,"ui-selectmenu-optgroup","ui-menu-divider"+(o.element.parent("optgroup").prop("disabled")?" ui-state-disabled":"")),a.appendTo(e),n=o.optgroup),s._renderItemData(e,o)})},_renderItemData:function(t,e){return this._renderItem(t,e).data("ui-selectmenu-item",e)},_renderItem:function(e,i){var s=t("<li>"),n=t("<div>",{title:i.element.attr("title")});return i.disabled&&this._addClass(s,null,"ui-state-disabled"),this._setText(n,i.label),s.append(n).appendTo(e)},_setText:function(t,e){e?t.text(e):t.html("&#160;")},_move:function(t,e){var i,s,n=".ui-menu-item";this.isOpen?i=this.menuItems.eq(this.focusIndex).parent("li"):(i=this.menuItems.eq(this.element[0].selectedIndex).parent("li"),n+=":not(.ui-state-disabled)"),s="first"===t||"last"===t?i["first"===t?"prevAll":"nextAll"](n).eq(-1):i[t+"All"](n).eq(0),s.length&&this.menuInstance.focus(e,s)},_getSelectedItem:function(){return this.menuItems.eq(this.element[0].selectedIndex).parent("li")},_toggle:function(t){this[this.isOpen?"close":"open"](t)},_setSelection:function(){var t;this.range&&(window.getSelection?(t=window.getSelection(),t.removeAllRanges(),t.addRange(this.range)):this.range.select(),this.button.focus())},_documentClick:{mousedown:function(e){this.isOpen&&(t(e.target).closest(".ui-selectmenu-menu, #"+t.ui.escapeSelector(this.ids.button)).length||this.close(e))}},_buttonEvents:{mousedown:function(){var t;window.getSelection?(t=window.getSelection(),t.rangeCount&&(this.range=t.getRangeAt(0))):this.range=document.selection.createRange()},click:function(t){this._setSelection(),this._toggle(t)},keydown:function(e){var i=!0;switch(e.keyCode){case t.ui.keyCode.TAB:case t.ui.keyCode.ESCAPE:this.close(e),i=!1;break;case t.ui.keyCode.ENTER:this.isOpen&&this._selectFocusedItem(e);break;case t.ui.keyCode.UP:e.altKey?this._toggle(e):this._move("prev",e);break;case t.ui.keyCode.DOWN:e.altKey?this._toggle(e):this._move("next",e);break;case t.ui.keyCode.SPACE:this.isOpen?this._selectFocusedItem(e):this._toggle(e);break;case t.ui.keyCode.LEFT:this._move("prev",e);break;case t.ui.keyCode.RIGHT:this._move("next",e);break;case t.ui.keyCode.HOME:case t.ui.keyCode.PAGE_UP:this._move("first",e);break;case t.ui.keyCode.END:case t.ui.keyCode.PAGE_DOWN:this._move("last",e);break;default:this.menu.trigger(e),i=!1}i&&e.preventDefault()}},_selectFocusedItem:function(t){var e=this.menuItems.eq(this.focusIndex).parent("li");e.hasClass("ui-state-disabled")||this._select(e.data("ui-selectmenu-item"),t)},_select:function(t,e){var i=this.element[0].selectedIndex;this.element[0].selectedIndex=t.index,this.buttonItem.replaceWith(this.buttonItem=this._renderButtonItem(t)),this._setAria(t),this._trigger("select",e,{item:t}),t.index!==i&&this._trigger("change",e,{item:t}),this.close(e)},_setAria:function(t){var e=this.menuItems.eq(t.index).attr("id");this.button.attr({"aria-labelledby":e,"aria-activedescendant":e}),this.menu.attr("aria-activedescendant",e)},_setOption:function(t,e){if("icons"===t){var i=this.button.find("span.ui-icon");this._removeClass(i,null,this.options.icons.button)._addClass(i,null,e.button)}this._super(t,e),"appendTo"===t&&this.menuWrap.appendTo(this._appendTo()),"width"===t&&this._resizeButton()},_setOptionDisabled:function(t){this._super(t),this.menuInstance.option("disabled",t),this.button.attr("aria-disabled",t),this._toggleClass(this.button,null,"ui-state-disabled",t),this.element.prop("disabled",t),t?(this.button.attr("tabindex",-1),this.close()):this.button.attr("tabindex",0)},_appendTo:function(){var e=this.options.appendTo;return e&&(e=e.jquery||e.nodeType?t(e):this.document.find(e).eq(0)),e&&e[0]||(e=this.element.closest(".ui-front, dialog")),e.length||(e=this.document[0].body),e},_toggleAttr:function(){this.button.attr("aria-expanded",this.isOpen),this._removeClass(this.button,"ui-selectmenu-button-"+(this.isOpen?"closed":"open"))._addClass(this.button,"ui-selectmenu-button-"+(this.isOpen?"open":"closed"))._toggleClass(this.menuWrap,"ui-selectmenu-open",null,this.isOpen),this.menu.attr("aria-hidden",!this.isOpen)},_resizeButton:function(){var t=this.options.width;return t===!1?(this.button.css("width",""),void 0):(null===t&&(t=this.element.show().outerWidth(),this.element.hide()),this.button.outerWidth(t),void 0)},_resizeMenu:function(){this.menu.outerWidth(Math.max(this.button.outerWidth(),this.menu.width("").outerWidth()+1))},_getCreateOptions:function(){var t=this._super();return t.disabled=this.element.prop("disabled"),t},_parseOptions:function(e){var i=this,s=[];e.each(function(e,n){s.push(i._parseOption(t(n),e))}),this.items=s},_parseOption:function(t,e){var i=t.parent("optgroup");return{element:t,index:e,value:t.val(),label:t.text(),optgroup:i.attr("label")||"",disabled:i.prop("disabled")||t.prop("disabled")}},_destroy:function(){this._unbindFormResetHandler(),this.menuWrap.remove(),this.button.remove(),this.element.show(),this.element.removeUniqueId(),this.labels.attr("for",this.ids.element)}}]),t.widget("ui.slider",t.ui.mouse,{version:"1.12.1",widgetEventPrefix:"slide",options:{animate:!1,classes:{"ui-slider":"ui-corner-all","ui-slider-handle":"ui-corner-all","ui-slider-range":"ui-corner-all ui-widget-header"},distance:0,max:100,min:0,orientation:"horizontal",range:!1,step:1,value:0,values:null,change:null,slide:null,start:null,stop:null},numPages:5,_create:function(){this._keySliding=!1,this._mouseSliding=!1,this._animateOff=!0,this._handleIndex=null,this._detectOrientation(),this._mouseInit(),this._calculateNewMax(),this._addClass("ui-slider ui-slider-"+this.orientation,"ui-widget ui-widget-content"),this._refresh(),this._animateOff=!1
+},_refresh:function(){this._createRange(),this._createHandles(),this._setupEvents(),this._refreshValue()},_createHandles:function(){var e,i,s=this.options,n=this.element.find(".ui-slider-handle"),o="<span tabindex='0'></span>",a=[];for(i=s.values&&s.values.length||1,n.length>i&&(n.slice(i).remove(),n=n.slice(0,i)),e=n.length;i>e;e++)a.push(o);this.handles=n.add(t(a.join("")).appendTo(this.element)),this._addClass(this.handles,"ui-slider-handle","ui-state-default"),this.handle=this.handles.eq(0),this.handles.each(function(e){t(this).data("ui-slider-handle-index",e).attr("tabIndex",0)})},_createRange:function(){var e=this.options;e.range?(e.range===!0&&(e.values?e.values.length&&2!==e.values.length?e.values=[e.values[0],e.values[0]]:t.isArray(e.values)&&(e.values=e.values.slice(0)):e.values=[this._valueMin(),this._valueMin()]),this.range&&this.range.length?(this._removeClass(this.range,"ui-slider-range-min ui-slider-range-max"),this.range.css({left:"",bottom:""})):(this.range=t("<div>").appendTo(this.element),this._addClass(this.range,"ui-slider-range")),("min"===e.range||"max"===e.range)&&this._addClass(this.range,"ui-slider-range-"+e.range)):(this.range&&this.range.remove(),this.range=null)},_setupEvents:function(){this._off(this.handles),this._on(this.handles,this._handleEvents),this._hoverable(this.handles),this._focusable(this.handles)},_destroy:function(){this.handles.remove(),this.range&&this.range.remove(),this._mouseDestroy()},_mouseCapture:function(e){var i,s,n,o,a,r,h,l,c=this,u=this.options;return u.disabled?!1:(this.elementSize={width:this.element.outerWidth(),height:this.element.outerHeight()},this.elementOffset=this.element.offset(),i={x:e.pageX,y:e.pageY},s=this._normValueFromMouse(i),n=this._valueMax()-this._valueMin()+1,this.handles.each(function(e){var i=Math.abs(s-c.values(e));(n>i||n===i&&(e===c._lastChangedValue||c.values(e)===u.min))&&(n=i,o=t(this),a=e)}),r=this._start(e,a),r===!1?!1:(this._mouseSliding=!0,this._handleIndex=a,this._addClass(o,null,"ui-state-active"),o.trigger("focus"),h=o.offset(),l=!t(e.target).parents().addBack().is(".ui-slider-handle"),this._clickOffset=l?{left:0,top:0}:{left:e.pageX-h.left-o.width()/2,top:e.pageY-h.top-o.height()/2-(parseInt(o.css("borderTopWidth"),10)||0)-(parseInt(o.css("borderBottomWidth"),10)||0)+(parseInt(o.css("marginTop"),10)||0)},this.handles.hasClass("ui-state-hover")||this._slide(e,a,s),this._animateOff=!0,!0))},_mouseStart:function(){return!0},_mouseDrag:function(t){var e={x:t.pageX,y:t.pageY},i=this._normValueFromMouse(e);return this._slide(t,this._handleIndex,i),!1},_mouseStop:function(t){return this._removeClass(this.handles,null,"ui-state-active"),this._mouseSliding=!1,this._stop(t,this._handleIndex),this._change(t,this._handleIndex),this._handleIndex=null,this._clickOffset=null,this._animateOff=!1,!1},_detectOrientation:function(){this.orientation="vertical"===this.options.orientation?"vertical":"horizontal"},_normValueFromMouse:function(t){var e,i,s,n,o;return"horizontal"===this.orientation?(e=this.elementSize.width,i=t.x-this.elementOffset.left-(this._clickOffset?this._clickOffset.left:0)):(e=this.elementSize.height,i=t.y-this.elementOffset.top-(this._clickOffset?this._clickOffset.top:0)),s=i/e,s>1&&(s=1),0>s&&(s=0),"vertical"===this.orientation&&(s=1-s),n=this._valueMax()-this._valueMin(),o=this._valueMin()+s*n,this._trimAlignValue(o)},_uiHash:function(t,e,i){var s={handle:this.handles[t],handleIndex:t,value:void 0!==e?e:this.value()};return this._hasMultipleValues()&&(s.value=void 0!==e?e:this.values(t),s.values=i||this.values()),s},_hasMultipleValues:function(){return this.options.values&&this.options.values.length},_start:function(t,e){return this._trigger("start",t,this._uiHash(e))},_slide:function(t,e,i){var s,n,o=this.value(),a=this.values();this._hasMultipleValues()&&(n=this.values(e?0:1),o=this.values(e),2===this.options.values.length&&this.options.range===!0&&(i=0===e?Math.min(n,i):Math.max(n,i)),a[e]=i),i!==o&&(s=this._trigger("slide",t,this._uiHash(e,i,a)),s!==!1&&(this._hasMultipleValues()?this.values(e,i):this.value(i)))},_stop:function(t,e){this._trigger("stop",t,this._uiHash(e))},_change:function(t,e){this._keySliding||this._mouseSliding||(this._lastChangedValue=e,this._trigger("change",t,this._uiHash(e)))},value:function(t){return arguments.length?(this.options.value=this._trimAlignValue(t),this._refreshValue(),this._change(null,0),void 0):this._value()},values:function(e,i){var s,n,o;if(arguments.length>1)return this.options.values[e]=this._trimAlignValue(i),this._refreshValue(),this._change(null,e),void 0;if(!arguments.length)return this._values();if(!t.isArray(arguments[0]))return this._hasMultipleValues()?this._values(e):this.value();for(s=this.options.values,n=arguments[0],o=0;s.length>o;o+=1)s[o]=this._trimAlignValue(n[o]),this._change(null,o);this._refreshValue()},_setOption:function(e,i){var s,n=0;switch("range"===e&&this.options.range===!0&&("min"===i?(this.options.value=this._values(0),this.options.values=null):"max"===i&&(this.options.value=this._values(this.options.values.length-1),this.options.values=null)),t.isArray(this.options.values)&&(n=this.options.values.length),this._super(e,i),e){case"orientation":this._detectOrientation(),this._removeClass("ui-slider-horizontal ui-slider-vertical")._addClass("ui-slider-"+this.orientation),this._refreshValue(),this.options.range&&this._refreshRange(i),this.handles.css("horizontal"===i?"bottom":"left","");break;case"value":this._animateOff=!0,this._refreshValue(),this._change(null,0),this._animateOff=!1;break;case"values":for(this._animateOff=!0,this._refreshValue(),s=n-1;s>=0;s--)this._change(null,s);this._animateOff=!1;break;case"step":case"min":case"max":this._animateOff=!0,this._calculateNewMax(),this._refreshValue(),this._animateOff=!1;break;case"range":this._animateOff=!0,this._refresh(),this._animateOff=!1}},_setOptionDisabled:function(t){this._super(t),this._toggleClass(null,"ui-state-disabled",!!t)},_value:function(){var t=this.options.value;return t=this._trimAlignValue(t)},_values:function(t){var e,i,s;if(arguments.length)return e=this.options.values[t],e=this._trimAlignValue(e);if(this._hasMultipleValues()){for(i=this.options.values.slice(),s=0;i.length>s;s+=1)i[s]=this._trimAlignValue(i[s]);return i}return[]},_trimAlignValue:function(t){if(this._valueMin()>=t)return this._valueMin();if(t>=this._valueMax())return this._valueMax();var e=this.options.step>0?this.options.step:1,i=(t-this._valueMin())%e,s=t-i;return 2*Math.abs(i)>=e&&(s+=i>0?e:-e),parseFloat(s.toFixed(5))},_calculateNewMax:function(){var t=this.options.max,e=this._valueMin(),i=this.options.step,s=Math.round((t-e)/i)*i;t=s+e,t>this.options.max&&(t-=i),this.max=parseFloat(t.toFixed(this._precision()))},_precision:function(){var t=this._precisionOf(this.options.step);return null!==this.options.min&&(t=Math.max(t,this._precisionOf(this.options.min))),t},_precisionOf:function(t){var e=""+t,i=e.indexOf(".");return-1===i?0:e.length-i-1},_valueMin:function(){return this.options.min},_valueMax:function(){return this.max},_refreshRange:function(t){"vertical"===t&&this.range.css({width:"",left:""}),"horizontal"===t&&this.range.css({height:"",bottom:""})},_refreshValue:function(){var e,i,s,n,o,a=this.options.range,r=this.options,h=this,l=this._animateOff?!1:r.animate,c={};this._hasMultipleValues()?this.handles.each(function(s){i=100*((h.values(s)-h._valueMin())/(h._valueMax()-h._valueMin())),c["horizontal"===h.orientation?"left":"bottom"]=i+"%",t(this).stop(1,1)[l?"animate":"css"](c,r.animate),h.options.range===!0&&("horizontal"===h.orientation?(0===s&&h.range.stop(1,1)[l?"animate":"css"]({left:i+"%"},r.animate),1===s&&h.range[l?"animate":"css"]({width:i-e+"%"},{queue:!1,duration:r.animate})):(0===s&&h.range.stop(1,1)[l?"animate":"css"]({bottom:i+"%"},r.animate),1===s&&h.range[l?"animate":"css"]({height:i-e+"%"},{queue:!1,duration:r.animate}))),e=i}):(s=this.value(),n=this._valueMin(),o=this._valueMax(),i=o!==n?100*((s-n)/(o-n)):0,c["horizontal"===this.orientation?"left":"bottom"]=i+"%",this.handle.stop(1,1)[l?"animate":"css"](c,r.animate),"min"===a&&"horizontal"===this.orientation&&this.range.stop(1,1)[l?"animate":"css"]({width:i+"%"},r.animate),"max"===a&&"horizontal"===this.orientation&&this.range.stop(1,1)[l?"animate":"css"]({width:100-i+"%"},r.animate),"min"===a&&"vertical"===this.orientation&&this.range.stop(1,1)[l?"animate":"css"]({height:i+"%"},r.animate),"max"===a&&"vertical"===this.orientation&&this.range.stop(1,1)[l?"animate":"css"]({height:100-i+"%"},r.animate))},_handleEvents:{keydown:function(e){var i,s,n,o,a=t(e.target).data("ui-slider-handle-index");switch(e.keyCode){case t.ui.keyCode.HOME:case t.ui.keyCode.END:case t.ui.keyCode.PAGE_UP:case t.ui.keyCode.PAGE_DOWN:case t.ui.keyCode.UP:case t.ui.keyCode.RIGHT:case t.ui.keyCode.DOWN:case t.ui.keyCode.LEFT:if(e.preventDefault(),!this._keySliding&&(this._keySliding=!0,this._addClass(t(e.target),null,"ui-state-active"),i=this._start(e,a),i===!1))return}switch(o=this.options.step,s=n=this._hasMultipleValues()?this.values(a):this.value(),e.keyCode){case t.ui.keyCode.HOME:n=this._valueMin();break;case t.ui.keyCode.END:n=this._valueMax();break;case t.ui.keyCode.PAGE_UP:n=this._trimAlignValue(s+(this._valueMax()-this._valueMin())/this.numPages);break;case t.ui.keyCode.PAGE_DOWN:n=this._trimAlignValue(s-(this._valueMax()-this._valueMin())/this.numPages);break;case t.ui.keyCode.UP:case t.ui.keyCode.RIGHT:if(s===this._valueMax())return;n=this._trimAlignValue(s+o);break;case t.ui.keyCode.DOWN:case t.ui.keyCode.LEFT:if(s===this._valueMin())return;n=this._trimAlignValue(s-o)}this._slide(e,a,n)},keyup:function(e){var i=t(e.target).data("ui-slider-handle-index");this._keySliding&&(this._keySliding=!1,this._stop(e,i),this._change(e,i),this._removeClass(t(e.target),null,"ui-state-active"))}}}),t.widget("ui.sortable",t.ui.mouse,{version:"1.12.1",widgetEventPrefix:"sort",ready:!1,options:{appendTo:"parent",axis:!1,connectWith:!1,containment:!1,cursor:"auto",cursorAt:!1,dropOnEmpty:!0,forcePlaceholderSize:!1,forceHelperSize:!1,grid:!1,handle:!1,helper:"original",items:"> *",opacity:!1,placeholder:!1,revert:!1,scroll:!0,scrollSensitivity:20,scrollSpeed:20,scope:"default",tolerance:"intersect",zIndex:1e3,activate:null,beforeStop:null,change:null,deactivate:null,out:null,over:null,receive:null,remove:null,sort:null,start:null,stop:null,update:null},_isOverAxis:function(t,e,i){return t>=e&&e+i>t},_isFloating:function(t){return/left|right/.test(t.css("float"))||/inline|table-cell/.test(t.css("display"))},_create:function(){this.containerCache={},this._addClass("ui-sortable"),this.refresh(),this.offset=this.element.offset(),this._mouseInit(),this._setHandleClassName(),this.ready=!0},_setOption:function(t,e){this._super(t,e),"handle"===t&&this._setHandleClassName()},_setHandleClassName:function(){var e=this;this._removeClass(this.element.find(".ui-sortable-handle"),"ui-sortable-handle"),t.each(this.items,function(){e._addClass(this.instance.options.handle?this.item.find(this.instance.options.handle):this.item,"ui-sortable-handle")})},_destroy:function(){this._mouseDestroy();for(var t=this.items.length-1;t>=0;t--)this.items[t].item.removeData(this.widgetName+"-item");return this},_mouseCapture:function(e,i){var s=null,n=!1,o=this;return this.reverting?!1:this.options.disabled||"static"===this.options.type?!1:(this._refreshItems(e),t(e.target).parents().each(function(){return t.data(this,o.widgetName+"-item")===o?(s=t(this),!1):void 0}),t.data(e.target,o.widgetName+"-item")===o&&(s=t(e.target)),s?!this.options.handle||i||(t(this.options.handle,s).find("*").addBack().each(function(){this===e.target&&(n=!0)}),n)?(this.currentItem=s,this._removeCurrentsFromItems(),!0):!1:!1)},_mouseStart:function(e,i,s){var n,o,a=this.options;if(this.currentContainer=this,this.refreshPositions(),this.helper=this._createHelper(e),this._cacheHelperProportions(),this._cacheMargins(),this.scrollParent=this.helper.scrollParent(),this.offset=this.currentItem.offset(),this.offset={top:this.offset.top-this.margins.top,left:this.offset.left-this.margins.left},t.extend(this.offset,{click:{left:e.pageX-this.offset.left,top:e.pageY-this.offset.top},parent:this._getParentOffset(),relative:this._getRelativeOffset()}),this.helper.css("position","absolute"),this.cssPosition=this.helper.css("position"),this.originalPosition=this._generatePosition(e),this.originalPageX=e.pageX,this.originalPageY=e.pageY,a.cursorAt&&this._adjustOffsetFromHelper(a.cursorAt),this.domPosition={prev:this.currentItem.prev()[0],parent:this.currentItem.parent()[0]},this.helper[0]!==this.currentItem[0]&&this.currentItem.hide(),this._createPlaceholder(),a.containment&&this._setContainment(),a.cursor&&"auto"!==a.cursor&&(o=this.document.find("body"),this.storedCursor=o.css("cursor"),o.css("cursor",a.cursor),this.storedStylesheet=t("<style>*{ cursor: "+a.cursor+" !important; }</style>").appendTo(o)),a.opacity&&(this.helper.css("opacity")&&(this._storedOpacity=this.helper.css("opacity")),this.helper.css("opacity",a.opacity)),a.zIndex&&(this.helper.css("zIndex")&&(this._storedZIndex=this.helper.css("zIndex")),this.helper.css("zIndex",a.zIndex)),this.scrollParent[0]!==this.document[0]&&"HTML"!==this.scrollParent[0].tagName&&(this.overflowOffset=this.scrollParent.offset()),this._trigger("start",e,this._uiHash()),this._preserveHelperProportions||this._cacheHelperProportions(),!s)for(n=this.containers.length-1;n>=0;n--)this.containers[n]._trigger("activate",e,this._uiHash(this));return t.ui.ddmanager&&(t.ui.ddmanager.current=this),t.ui.ddmanager&&!a.dropBehaviour&&t.ui.ddmanager.prepareOffsets(this,e),this.dragging=!0,this._addClass(this.helper,"ui-sortable-helper"),this._mouseDrag(e),!0},_mouseDrag:function(e){var i,s,n,o,a=this.options,r=!1;for(this.position=this._generatePosition(e),this.positionAbs=this._convertPositionTo("absolute"),this.lastPositionAbs||(this.lastPositionAbs=this.positionAbs),this.options.scroll&&(this.scrollParent[0]!==this.document[0]&&"HTML"!==this.scrollParent[0].tagName?(this.overflowOffset.top+this.scrollParent[0].offsetHeight-e.pageY<a.scrollSensitivity?this.scrollParent[0].scrollTop=r=this.scrollParent[0].scrollTop+a.scrollSpeed:e.pageY-this.overflowOffset.top<a.scrollSensitivity&&(this.scrollParent[0].scrollTop=r=this.scrollParent[0].scrollTop-a.scrollSpeed),this.overflowOffset.left+this.scrollParent[0].offsetWidth-e.pageX<a.scrollSensitivity?this.scrollParent[0].scrollLeft=r=this.scrollParent[0].scrollLeft+a.scrollSpeed:e.pageX-this.overflowOffset.left<a.scrollSensitivity&&(this.scrollParent[0].scrollLeft=r=this.scrollParent[0].scrollLeft-a.scrollSpeed)):(e.pageY-this.document.scrollTop()<a.scrollSensitivity?r=this.document.scrollTop(this.document.scrollTop()-a.scrollSpeed):this.window.height()-(e.pageY-this.document.scrollTop())<a.scrollSensitivity&&(r=this.document.scrollTop(this.document.scrollTop()+a.scrollSpeed)),e.pageX-this.document.scrollLeft()<a.scrollSensitivity?r=this.document.scrollLeft(this.document.scrollLeft()-a.scrollSpeed):this.window.width()-(e.pageX-this.document.scrollLeft())<a.scrollSensitivity&&(r=this.document.scrollLeft(this.document.scrollLeft()+a.scrollSpeed))),r!==!1&&t.ui.ddmanager&&!a.dropBehaviour&&t.ui.ddmanager.prepareOffsets(this,e)),this.positionAbs=this._convertPositionTo("absolute"),this.options.axis&&"y"===this.options.axis||(this.helper[0].style.left=this.position.left+"px"),this.options.axis&&"x"===this.options.axis||(this.helper[0].style.top=this.position.top+"px"),i=this.items.length-1;i>=0;i--)if(s=this.items[i],n=s.item[0],o=this._intersectsWithPointer(s),o&&s.instance===this.currentContainer&&n!==this.currentItem[0]&&this.placeholder[1===o?"next":"prev"]()[0]!==n&&!t.contains(this.placeholder[0],n)&&("semi-dynamic"===this.options.type?!t.contains(this.element[0],n):!0)){if(this.direction=1===o?"down":"up","pointer"!==this.options.tolerance&&!this._intersectsWithSides(s))break;this._rearrange(e,s),this._trigger("change",e,this._uiHash());break}return this._contactContainers(e),t.ui.ddmanager&&t.ui.ddmanager.drag(this,e),this._trigger("sort",e,this._uiHash()),this.lastPositionAbs=this.positionAbs,!1},_mouseStop:function(e,i){if(e){if(t.ui.ddmanager&&!this.options.dropBehaviour&&t.ui.ddmanager.drop(this,e),this.options.revert){var s=this,n=this.placeholder.offset(),o=this.options.axis,a={};o&&"x"!==o||(a.left=n.left-this.offset.parent.left-this.margins.left+(this.offsetParent[0]===this.document[0].body?0:this.offsetParent[0].scrollLeft)),o&&"y"!==o||(a.top=n.top-this.offset.parent.top-this.margins.top+(this.offsetParent[0]===this.document[0].body?0:this.offsetParent[0].scrollTop)),this.reverting=!0,t(this.helper).animate(a,parseInt(this.options.revert,10)||500,function(){s._clear(e)})}else this._clear(e,i);return!1}},cancel:function(){if(this.dragging){this._mouseUp(new t.Event("mouseup",{target:null})),"original"===this.options.helper?(this.currentItem.css(this._storedCSS),this._removeClass(this.currentItem,"ui-sortable-helper")):this.currentItem.show();for(var e=this.containers.length-1;e>=0;e--)this.containers[e]._trigger("deactivate",null,this._uiHash(this)),this.containers[e].containerCache.over&&(this.containers[e]._trigger("out",null,this._uiHash(this)),this.containers[e].containerCache.over=0)}return this.placeholder&&(this.placeholder[0].parentNode&&this.placeholder[0].parentNode.removeChild(this.placeholder[0]),"original"!==this.options.helper&&this.helper&&this.helper[0].parentNode&&this.helper.remove(),t.extend(this,{helper:null,dragging:!1,reverting:!1,_noFinalSort:null}),this.domPosition.prev?t(this.domPosition.prev).after(this.currentItem):t(this.domPosition.parent).prepend(this.currentItem)),this},serialize:function(e){var i=this._getItemsAsjQuery(e&&e.connected),s=[];return e=e||{},t(i).each(function(){var i=(t(e.item||this).attr(e.attribute||"id")||"").match(e.expression||/(.+)[\-=_](.+)/);i&&s.push((e.key||i[1]+"[]")+"="+(e.key&&e.expression?i[1]:i[2]))}),!s.length&&e.key&&s.push(e.key+"="),s.join("&")},toArray:function(e){var i=this._getItemsAsjQuery(e&&e.connected),s=[];return e=e||{},i.each(function(){s.push(t(e.item||this).attr(e.attribute||"id")||"")}),s},_intersectsWith:function(t){var e=this.positionAbs.left,i=e+this.helperProportions.width,s=this.positionAbs.top,n=s+this.helperProportions.height,o=t.left,a=o+t.width,r=t.top,h=r+t.height,l=this.offset.click.top,c=this.offset.click.left,u="x"===this.options.axis||s+l>r&&h>s+l,d="y"===this.options.axis||e+c>o&&a>e+c,p=u&&d;return"pointer"===this.options.tolerance||this.options.forcePointerForContainers||"pointer"!==this.options.tolerance&&this.helperProportions[this.floating?"width":"height"]>t[this.floating?"width":"height"]?p:e+this.helperProportions.width/2>o&&a>i-this.helperProportions.width/2&&s+this.helperProportions.height/2>r&&h>n-this.helperProportions.height/2},_intersectsWithPointer:function(t){var e,i,s="x"===this.options.axis||this._isOverAxis(this.positionAbs.top+this.offset.click.top,t.top,t.height),n="y"===this.options.axis||this._isOverAxis(this.positionAbs.left+this.offset.click.left,t.left,t.width),o=s&&n;return o?(e=this._getDragVerticalDirection(),i=this._getDragHorizontalDirection(),this.floating?"right"===i||"down"===e?2:1:e&&("down"===e?2:1)):!1},_intersectsWithSides:function(t){var e=this._isOverAxis(this.positionAbs.top+this.offset.click.top,t.top+t.height/2,t.height),i=this._isOverAxis(this.positionAbs.left+this.offset.click.left,t.left+t.width/2,t.width),s=this._getDragVerticalDirection(),n=this._getDragHorizontalDirection();return this.floating&&n?"right"===n&&i||"left"===n&&!i:s&&("down"===s&&e||"up"===s&&!e)},_getDragVerticalDirection:function(){var t=this.positionAbs.top-this.lastPositionAbs.top;return 0!==t&&(t>0?"down":"up")},_getDragHorizontalDirection:function(){var t=this.positionAbs.left-this.lastPositionAbs.left;return 0!==t&&(t>0?"right":"left")},refresh:function(t){return this._refreshItems(t),this._setHandleClassName(),this.refreshPositions(),this},_connectWith:function(){var t=this.options;return t.connectWith.constructor===String?[t.connectWith]:t.connectWith},_getItemsAsjQuery:function(e){function i(){r.push(this)}var s,n,o,a,r=[],h=[],l=this._connectWith();if(l&&e)for(s=l.length-1;s>=0;s--)for(o=t(l[s],this.document[0]),n=o.length-1;n>=0;n--)a=t.data(o[n],this.widgetFullName),a&&a!==this&&!a.options.disabled&&h.push([t.isFunction(a.options.items)?a.options.items.call(a.element):t(a.options.items,a.element).not(".ui-sortable-helper").not(".ui-sortable-placeholder"),a]);for(h.push([t.isFunction(this.options.items)?this.options.items.call(this.element,null,{options:this.options,item:this.currentItem}):t(this.options.items,this.element).not(".ui-sortable-helper").not(".ui-sortable-placeholder"),this]),s=h.length-1;s>=0;s--)h[s][0].each(i);return t(r)},_removeCurrentsFromItems:function(){var e=this.currentItem.find(":data("+this.widgetName+"-item)");this.items=t.grep(this.items,function(t){for(var i=0;e.length>i;i++)if(e[i]===t.item[0])return!1;return!0})},_refreshItems:function(e){this.items=[],this.containers=[this];var i,s,n,o,a,r,h,l,c=this.items,u=[[t.isFunction(this.options.items)?this.options.items.call(this.element[0],e,{item:this.currentItem}):t(this.options.items,this.element),this]],d=this._connectWith();if(d&&this.ready)for(i=d.length-1;i>=0;i--)for(n=t(d[i],this.document[0]),s=n.length-1;s>=0;s--)o=t.data(n[s],this.widgetFullName),o&&o!==this&&!o.options.disabled&&(u.push([t.isFunction(o.options.items)?o.options.items.call(o.element[0],e,{item:this.currentItem}):t(o.options.items,o.element),o]),this.containers.push(o));for(i=u.length-1;i>=0;i--)for(a=u[i][1],r=u[i][0],s=0,l=r.length;l>s;s++)h=t(r[s]),h.data(this.widgetName+"-item",a),c.push({item:h,instance:a,width:0,height:0,left:0,top:0})},refreshPositions:function(e){this.floating=this.items.length?"x"===this.options.axis||this._isFloating(this.items[0].item):!1,this.offsetParent&&this.helper&&(this.offset.parent=this._getParentOffset());var i,s,n,o;for(i=this.items.length-1;i>=0;i--)s=this.items[i],s.instance!==this.currentContainer&&this.currentContainer&&s.item[0]!==this.currentItem[0]||(n=this.options.toleranceElement?t(this.options.toleranceElement,s.item):s.item,e||(s.width=n.outerWidth(),s.height=n.outerHeight()),o=n.offset(),s.left=o.left,s.top=o.top);if(this.options.custom&&this.options.custom.refreshContainers)this.options.custom.refreshContainers.call(this);else for(i=this.containers.length-1;i>=0;i--)o=this.containers[i].element.offset(),this.containers[i].containerCache.left=o.left,this.containers[i].containerCache.top=o.top,this.containers[i].containerCache.width=this.containers[i].element.outerWidth(),this.containers[i].containerCache.height=this.containers[i].element.outerHeight();return this},_createPlaceholder:function(e){e=e||this;var i,s=e.options;s.placeholder&&s.placeholder.constructor!==String||(i=s.placeholder,s.placeholder={element:function(){var s=e.currentItem[0].nodeName.toLowerCase(),n=t("<"+s+">",e.document[0]);return e._addClass(n,"ui-sortable-placeholder",i||e.currentItem[0].className)._removeClass(n,"ui-sortable-helper"),"tbody"===s?e._createTrPlaceholder(e.currentItem.find("tr").eq(0),t("<tr>",e.document[0]).appendTo(n)):"tr"===s?e._createTrPlaceholder(e.currentItem,n):"img"===s&&n.attr("src",e.currentItem.attr("src")),i||n.css("visibility","hidden"),n},update:function(t,n){(!i||s.forcePlaceholderSize)&&(n.height()||n.height(e.currentItem.innerHeight()-parseInt(e.currentItem.css("paddingTop")||0,10)-parseInt(e.currentItem.css("paddingBottom")||0,10)),n.width()||n.width(e.currentItem.innerWidth()-parseInt(e.currentItem.css("paddingLeft")||0,10)-parseInt(e.currentItem.css("paddingRight")||0,10)))}}),e.placeholder=t(s.placeholder.element.call(e.element,e.currentItem)),e.currentItem.after(e.placeholder),s.placeholder.update(e,e.placeholder)},_createTrPlaceholder:function(e,i){var s=this;e.children().each(function(){t("<td>&#160;</td>",s.document[0]).attr("colspan",t(this).attr("colspan")||1).appendTo(i)})},_contactContainers:function(e){var i,s,n,o,a,r,h,l,c,u,d=null,p=null;for(i=this.containers.length-1;i>=0;i--)if(!t.contains(this.currentItem[0],this.containers[i].element[0]))if(this._intersectsWith(this.containers[i].containerCache)){if(d&&t.contains(this.containers[i].element[0],d.element[0]))continue;d=this.containers[i],p=i}else this.containers[i].containerCache.over&&(this.containers[i]._trigger("out",e,this._uiHash(this)),this.containers[i].containerCache.over=0);if(d)if(1===this.containers.length)this.containers[p].containerCache.over||(this.containers[p]._trigger("over",e,this._uiHash(this)),this.containers[p].containerCache.over=1);else{for(n=1e4,o=null,c=d.floating||this._isFloating(this.currentItem),a=c?"left":"top",r=c?"width":"height",u=c?"pageX":"pageY",s=this.items.length-1;s>=0;s--)t.contains(this.containers[p].element[0],this.items[s].item[0])&&this.items[s].item[0]!==this.currentItem[0]&&(h=this.items[s].item.offset()[a],l=!1,e[u]-h>this.items[s][r]/2&&(l=!0),n>Math.abs(e[u]-h)&&(n=Math.abs(e[u]-h),o=this.items[s],this.direction=l?"up":"down"));if(!o&&!this.options.dropOnEmpty)return;if(this.currentContainer===this.containers[p])return this.currentContainer.containerCache.over||(this.containers[p]._trigger("over",e,this._uiHash()),this.currentContainer.containerCache.over=1),void 0;o?this._rearrange(e,o,null,!0):this._rearrange(e,null,this.containers[p].element,!0),this._trigger("change",e,this._uiHash()),this.containers[p]._trigger("change",e,this._uiHash(this)),this.currentContainer=this.containers[p],this.options.placeholder.update(this.currentContainer,this.placeholder),this.containers[p]._trigger("over",e,this._uiHash(this)),this.containers[p].containerCache.over=1}},_createHelper:function(e){var i=this.options,s=t.isFunction(i.helper)?t(i.helper.apply(this.element[0],[e,this.currentItem])):"clone"===i.helper?this.currentItem.clone():this.currentItem;return s.parents("body").length||t("parent"!==i.appendTo?i.appendTo:this.currentItem[0].parentNode)[0].appendChild(s[0]),s[0]===this.currentItem[0]&&(this._storedCSS={width:this.currentItem[0].style.width,height:this.currentItem[0].style.height,position:this.currentItem.css("position"),top:this.currentItem.css("top"),left:this.currentItem.css("left")}),(!s[0].style.width||i.forceHelperSize)&&s.width(this.currentItem.width()),(!s[0].style.height||i.forceHelperSize)&&s.height(this.currentItem.height()),s},_adjustOffsetFromHelper:function(e){"string"==typeof e&&(e=e.split(" ")),t.isArray(e)&&(e={left:+e[0],top:+e[1]||0}),"left"in e&&(this.offset.click.left=e.left+this.margins.left),"right"in e&&(this.offset.click.left=this.helperProportions.width-e.right+this.margins.left),"top"in e&&(this.offset.click.top=e.top+this.margins.top),"bottom"in e&&(this.offset.click.top=this.helperProportions.height-e.bottom+this.margins.top)},_getParentOffset:function(){this.offsetParent=this.helper.offsetParent();var e=this.offsetParent.offset();return"absolute"===this.cssPosition&&this.scrollParent[0]!==this.document[0]&&t.contains(this.scrollParent[0],this.offsetParent[0])&&(e.left+=this.scrollParent.scrollLeft(),e.top+=this.scrollParent.scrollTop()),(this.offsetParent[0]===this.document[0].body||this.offsetParent[0].tagName&&"html"===this.offsetParent[0].tagName.toLowerCase()&&t.ui.ie)&&(e={top:0,left:0}),{top:e.top+(parseInt(this.offsetParent.css("borderTopWidth"),10)||0),left:e.left+(parseInt(this.offsetParent.css("borderLeftWidth"),10)||0)}},_getRelativeOffset:function(){if("relative"===this.cssPosition){var t=this.currentItem.position();return{top:t.top-(parseInt(this.helper.css("top"),10)||0)+this.scrollParent.scrollTop(),left:t.left-(parseInt(this.helper.css("left"),10)||0)+this.scrollParent.scrollLeft()}}return{top:0,left:0}},_cacheMargins:function(){this.margins={left:parseInt(this.currentItem.css("marginLeft"),10)||0,top:parseInt(this.currentItem.css("marginTop"),10)||0}},_cacheHelperProportions:function(){this.helperProportions={width:this.helper.outerWidth(),height:this.helper.outerHeight()}},_setContainment:function(){var e,i,s,n=this.options;"parent"===n.containment&&(n.containment=this.helper[0].parentNode),("document"===n.containment||"window"===n.containment)&&(this.containment=[0-this.offset.relative.left-this.offset.parent.left,0-this.offset.relative.top-this.offset.parent.top,"document"===n.containment?this.document.width():this.window.width()-this.helperProportions.width-this.margins.left,("document"===n.containment?this.document.height()||document.body.parentNode.scrollHeight:this.window.height()||this.document[0].body.parentNode.scrollHeight)-this.helperProportions.height-this.margins.top]),/^(document|window|parent)$/.test(n.containment)||(e=t(n.containment)[0],i=t(n.containment).offset(),s="hidden"!==t(e).css("overflow"),this.containment=[i.left+(parseInt(t(e).css("borderLeftWidth"),10)||0)+(parseInt(t(e).css("paddingLeft"),10)||0)-this.margins.left,i.top+(parseInt(t(e).css("borderTopWidth"),10)||0)+(parseInt(t(e).css("paddingTop"),10)||0)-this.margins.top,i.left+(s?Math.max(e.scrollWidth,e.offsetWidth):e.offsetWidth)-(parseInt(t(e).css("borderLeftWidth"),10)||0)-(parseInt(t(e).css("paddingRight"),10)||0)-this.helperProportions.width-this.margins.left,i.top+(s?Math.max(e.scrollHeight,e.offsetHeight):e.offsetHeight)-(parseInt(t(e).css("borderTopWidth"),10)||0)-(parseInt(t(e).css("paddingBottom"),10)||0)-this.helperProportions.height-this.margins.top])},_convertPositionTo:function(e,i){i||(i=this.position);var s="absolute"===e?1:-1,n="absolute"!==this.cssPosition||this.scrollParent[0]!==this.document[0]&&t.contains(this.scrollParent[0],this.offsetParent[0])?this.scrollParent:this.offsetParent,o=/(html|body)/i.test(n[0].tagName);return{top:i.top+this.offset.relative.top*s+this.offset.parent.top*s-("fixed"===this.cssPosition?-this.scrollParent.scrollTop():o?0:n.scrollTop())*s,left:i.left+this.offset.relative.left*s+this.offset.parent.left*s-("fixed"===this.cssPosition?-this.scrollParent.scrollLeft():o?0:n.scrollLeft())*s}},_generatePosition:function(e){var i,s,n=this.options,o=e.pageX,a=e.pageY,r="absolute"!==this.cssPosition||this.scrollParent[0]!==this.document[0]&&t.contains(this.scrollParent[0],this.offsetParent[0])?this.scrollParent:this.offsetParent,h=/(html|body)/i.test(r[0].tagName);return"relative"!==this.cssPosition||this.scrollParent[0]!==this.document[0]&&this.scrollParent[0]!==this.offsetParent[0]||(this.offset.relative=this._getRelativeOffset()),this.originalPosition&&(this.containment&&(e.pageX-this.offset.click.left<this.containment[0]&&(o=this.containment[0]+this.offset.click.left),e.pageY-this.offset.click.top<this.containment[1]&&(a=this.containment[1]+this.offset.click.top),e.pageX-this.offset.click.left>this.containment[2]&&(o=this.containment[2]+this.offset.click.left),e.pageY-this.offset.click.top>this.containment[3]&&(a=this.containment[3]+this.offset.click.top)),n.grid&&(i=this.originalPageY+Math.round((a-this.originalPageY)/n.grid[1])*n.grid[1],a=this.containment?i-this.offset.click.top>=this.containment[1]&&i-this.offset.click.top<=this.containment[3]?i:i-this.offset.click.top>=this.containment[1]?i-n.grid[1]:i+n.grid[1]:i,s=this.originalPageX+Math.round((o-this.originalPageX)/n.grid[0])*n.grid[0],o=this.containment?s-this.offset.click.left>=this.containment[0]&&s-this.offset.click.left<=this.containment[2]?s:s-this.offset.click.left>=this.containment[0]?s-n.grid[0]:s+n.grid[0]:s)),{top:a-this.offset.click.top-this.offset.relative.top-this.offset.parent.top+("fixed"===this.cssPosition?-this.scrollParent.scrollTop():h?0:r.scrollTop()),left:o-this.offset.click.left-this.offset.relative.left-this.offset.parent.left+("fixed"===this.cssPosition?-this.scrollParent.scrollLeft():h?0:r.scrollLeft())}},_rearrange:function(t,e,i,s){i?i[0].appendChild(this.placeholder[0]):e.item[0].parentNode.insertBefore(this.placeholder[0],"down"===this.direction?e.item[0]:e.item[0].nextSibling),this.counter=this.counter?++this.counter:1;var n=this.counter;
+this._delay(function(){n===this.counter&&this.refreshPositions(!s)})},_clear:function(t,e){function i(t,e,i){return function(s){i._trigger(t,s,e._uiHash(e))}}this.reverting=!1;var s,n=[];if(!this._noFinalSort&&this.currentItem.parent().length&&this.placeholder.before(this.currentItem),this._noFinalSort=null,this.helper[0]===this.currentItem[0]){for(s in this._storedCSS)("auto"===this._storedCSS[s]||"static"===this._storedCSS[s])&&(this._storedCSS[s]="");this.currentItem.css(this._storedCSS),this._removeClass(this.currentItem,"ui-sortable-helper")}else this.currentItem.show();for(this.fromOutside&&!e&&n.push(function(t){this._trigger("receive",t,this._uiHash(this.fromOutside))}),!this.fromOutside&&this.domPosition.prev===this.currentItem.prev().not(".ui-sortable-helper")[0]&&this.domPosition.parent===this.currentItem.parent()[0]||e||n.push(function(t){this._trigger("update",t,this._uiHash())}),this!==this.currentContainer&&(e||(n.push(function(t){this._trigger("remove",t,this._uiHash())}),n.push(function(t){return function(e){t._trigger("receive",e,this._uiHash(this))}}.call(this,this.currentContainer)),n.push(function(t){return function(e){t._trigger("update",e,this._uiHash(this))}}.call(this,this.currentContainer)))),s=this.containers.length-1;s>=0;s--)e||n.push(i("deactivate",this,this.containers[s])),this.containers[s].containerCache.over&&(n.push(i("out",this,this.containers[s])),this.containers[s].containerCache.over=0);if(this.storedCursor&&(this.document.find("body").css("cursor",this.storedCursor),this.storedStylesheet.remove()),this._storedOpacity&&this.helper.css("opacity",this._storedOpacity),this._storedZIndex&&this.helper.css("zIndex","auto"===this._storedZIndex?"":this._storedZIndex),this.dragging=!1,e||this._trigger("beforeStop",t,this._uiHash()),this.placeholder[0].parentNode.removeChild(this.placeholder[0]),this.cancelHelperRemoval||(this.helper[0]!==this.currentItem[0]&&this.helper.remove(),this.helper=null),!e){for(s=0;n.length>s;s++)n[s].call(this,t);this._trigger("stop",t,this._uiHash())}return this.fromOutside=!1,!this.cancelHelperRemoval},_trigger:function(){t.Widget.prototype._trigger.apply(this,arguments)===!1&&this.cancel()},_uiHash:function(e){var i=e||this;return{helper:i.helper,placeholder:i.placeholder||t([]),position:i.position,originalPosition:i.originalPosition,offset:i.positionAbs,item:i.currentItem,sender:e?e.element:null}}}),t.widget("ui.spinner",{version:"1.12.1",defaultElement:"<input>",widgetEventPrefix:"spin",options:{classes:{"ui-spinner":"ui-corner-all","ui-spinner-down":"ui-corner-br","ui-spinner-up":"ui-corner-tr"},culture:null,icons:{down:"ui-icon-triangle-1-s",up:"ui-icon-triangle-1-n"},incremental:!0,max:null,min:null,numberFormat:null,page:10,step:1,change:null,spin:null,start:null,stop:null},_create:function(){this._setOption("max",this.options.max),this._setOption("min",this.options.min),this._setOption("step",this.options.step),""!==this.value()&&this._value(this.element.val(),!0),this._draw(),this._on(this._events),this._refresh(),this._on(this.window,{beforeunload:function(){this.element.removeAttr("autocomplete")}})},_getCreateOptions:function(){var e=this._super(),i=this.element;return t.each(["min","max","step"],function(t,s){var n=i.attr(s);null!=n&&n.length&&(e[s]=n)}),e},_events:{keydown:function(t){this._start(t)&&this._keydown(t)&&t.preventDefault()},keyup:"_stop",focus:function(){this.previous=this.element.val()},blur:function(t){return this.cancelBlur?(delete this.cancelBlur,void 0):(this._stop(),this._refresh(),this.previous!==this.element.val()&&this._trigger("change",t),void 0)},mousewheel:function(t,e){if(e){if(!this.spinning&&!this._start(t))return!1;this._spin((e>0?1:-1)*this.options.step,t),clearTimeout(this.mousewheelTimer),this.mousewheelTimer=this._delay(function(){this.spinning&&this._stop(t)},100),t.preventDefault()}},"mousedown .ui-spinner-button":function(e){function i(){var e=this.element[0]===t.ui.safeActiveElement(this.document[0]);e||(this.element.trigger("focus"),this.previous=s,this._delay(function(){this.previous=s}))}var s;s=this.element[0]===t.ui.safeActiveElement(this.document[0])?this.previous:this.element.val(),e.preventDefault(),i.call(this),this.cancelBlur=!0,this._delay(function(){delete this.cancelBlur,i.call(this)}),this._start(e)!==!1&&this._repeat(null,t(e.currentTarget).hasClass("ui-spinner-up")?1:-1,e)},"mouseup .ui-spinner-button":"_stop","mouseenter .ui-spinner-button":function(e){return t(e.currentTarget).hasClass("ui-state-active")?this._start(e)===!1?!1:(this._repeat(null,t(e.currentTarget).hasClass("ui-spinner-up")?1:-1,e),void 0):void 0},"mouseleave .ui-spinner-button":"_stop"},_enhance:function(){this.uiSpinner=this.element.attr("autocomplete","off").wrap("<span>").parent().append("<a></a><a></a>")},_draw:function(){this._enhance(),this._addClass(this.uiSpinner,"ui-spinner","ui-widget ui-widget-content"),this._addClass("ui-spinner-input"),this.element.attr("role","spinbutton"),this.buttons=this.uiSpinner.children("a").attr("tabIndex",-1).attr("aria-hidden",!0).button({classes:{"ui-button":""}}),this._removeClass(this.buttons,"ui-corner-all"),this._addClass(this.buttons.first(),"ui-spinner-button ui-spinner-up"),this._addClass(this.buttons.last(),"ui-spinner-button ui-spinner-down"),this.buttons.first().button({icon:this.options.icons.up,showLabel:!1}),this.buttons.last().button({icon:this.options.icons.down,showLabel:!1}),this.buttons.height()>Math.ceil(.5*this.uiSpinner.height())&&this.uiSpinner.height()>0&&this.uiSpinner.height(this.uiSpinner.height())},_keydown:function(e){var i=this.options,s=t.ui.keyCode;switch(e.keyCode){case s.UP:return this._repeat(null,1,e),!0;case s.DOWN:return this._repeat(null,-1,e),!0;case s.PAGE_UP:return this._repeat(null,i.page,e),!0;case s.PAGE_DOWN:return this._repeat(null,-i.page,e),!0}return!1},_start:function(t){return this.spinning||this._trigger("start",t)!==!1?(this.counter||(this.counter=1),this.spinning=!0,!0):!1},_repeat:function(t,e,i){t=t||500,clearTimeout(this.timer),this.timer=this._delay(function(){this._repeat(40,e,i)},t),this._spin(e*this.options.step,i)},_spin:function(t,e){var i=this.value()||0;this.counter||(this.counter=1),i=this._adjustValue(i+t*this._increment(this.counter)),this.spinning&&this._trigger("spin",e,{value:i})===!1||(this._value(i),this.counter++)},_increment:function(e){var i=this.options.incremental;return i?t.isFunction(i)?i(e):Math.floor(e*e*e/5e4-e*e/500+17*e/200+1):1},_precision:function(){var t=this._precisionOf(this.options.step);return null!==this.options.min&&(t=Math.max(t,this._precisionOf(this.options.min))),t},_precisionOf:function(t){var e=""+t,i=e.indexOf(".");return-1===i?0:e.length-i-1},_adjustValue:function(t){var e,i,s=this.options;return e=null!==s.min?s.min:0,i=t-e,i=Math.round(i/s.step)*s.step,t=e+i,t=parseFloat(t.toFixed(this._precision())),null!==s.max&&t>s.max?s.max:null!==s.min&&s.min>t?s.min:t},_stop:function(t){this.spinning&&(clearTimeout(this.timer),clearTimeout(this.mousewheelTimer),this.counter=0,this.spinning=!1,this._trigger("stop",t))},_setOption:function(t,e){var i,s,n;return"culture"===t||"numberFormat"===t?(i=this._parse(this.element.val()),this.options[t]=e,this.element.val(this._format(i)),void 0):(("max"===t||"min"===t||"step"===t)&&"string"==typeof e&&(e=this._parse(e)),"icons"===t&&(s=this.buttons.first().find(".ui-icon"),this._removeClass(s,null,this.options.icons.up),this._addClass(s,null,e.up),n=this.buttons.last().find(".ui-icon"),this._removeClass(n,null,this.options.icons.down),this._addClass(n,null,e.down)),this._super(t,e),void 0)},_setOptionDisabled:function(t){this._super(t),this._toggleClass(this.uiSpinner,null,"ui-state-disabled",!!t),this.element.prop("disabled",!!t),this.buttons.button(t?"disable":"enable")},_setOptions:r(function(t){this._super(t)}),_parse:function(t){return"string"==typeof t&&""!==t&&(t=window.Globalize&&this.options.numberFormat?Globalize.parseFloat(t,10,this.options.culture):+t),""===t||isNaN(t)?null:t},_format:function(t){return""===t?"":window.Globalize&&this.options.numberFormat?Globalize.format(t,this.options.numberFormat,this.options.culture):t},_refresh:function(){this.element.attr({"aria-valuemin":this.options.min,"aria-valuemax":this.options.max,"aria-valuenow":this._parse(this.element.val())})},isValid:function(){var t=this.value();return null===t?!1:t===this._adjustValue(t)},_value:function(t,e){var i;""!==t&&(i=this._parse(t),null!==i&&(e||(i=this._adjustValue(i)),t=this._format(i))),this.element.val(t),this._refresh()},_destroy:function(){this.element.prop("disabled",!1).removeAttr("autocomplete role aria-valuemin aria-valuemax aria-valuenow"),this.uiSpinner.replaceWith(this.element)},stepUp:r(function(t){this._stepUp(t)}),_stepUp:function(t){this._start()&&(this._spin((t||1)*this.options.step),this._stop())},stepDown:r(function(t){this._stepDown(t)}),_stepDown:function(t){this._start()&&(this._spin((t||1)*-this.options.step),this._stop())},pageUp:r(function(t){this._stepUp((t||1)*this.options.page)}),pageDown:r(function(t){this._stepDown((t||1)*this.options.page)}),value:function(t){return arguments.length?(r(this._value).call(this,t),void 0):this._parse(this.element.val())},widget:function(){return this.uiSpinner}}),t.uiBackCompat!==!1&&t.widget("ui.spinner",t.ui.spinner,{_enhance:function(){this.uiSpinner=this.element.attr("autocomplete","off").wrap(this._uiSpinnerHtml()).parent().append(this._buttonHtml())},_uiSpinnerHtml:function(){return"<span>"},_buttonHtml:function(){return"<a></a><a></a>"}}),t.ui.spinner,t.widget("ui.tabs",{version:"1.12.1",delay:300,options:{active:null,classes:{"ui-tabs":"ui-corner-all","ui-tabs-nav":"ui-corner-all","ui-tabs-panel":"ui-corner-bottom","ui-tabs-tab":"ui-corner-top"},collapsible:!1,event:"click",heightStyle:"content",hide:null,show:null,activate:null,beforeActivate:null,beforeLoad:null,load:null},_isLocal:function(){var t=/#.*$/;return function(e){var i,s;i=e.href.replace(t,""),s=location.href.replace(t,"");try{i=decodeURIComponent(i)}catch(n){}try{s=decodeURIComponent(s)}catch(n){}return e.hash.length>1&&i===s}}(),_create:function(){var e=this,i=this.options;this.running=!1,this._addClass("ui-tabs","ui-widget ui-widget-content"),this._toggleClass("ui-tabs-collapsible",null,i.collapsible),this._processTabs(),i.active=this._initialActive(),t.isArray(i.disabled)&&(i.disabled=t.unique(i.disabled.concat(t.map(this.tabs.filter(".ui-state-disabled"),function(t){return e.tabs.index(t)}))).sort()),this.active=this.options.active!==!1&&this.anchors.length?this._findActive(i.active):t(),this._refresh(),this.active.length&&this.load(i.active)},_initialActive:function(){var e=this.options.active,i=this.options.collapsible,s=location.hash.substring(1);return null===e&&(s&&this.tabs.each(function(i,n){return t(n).attr("aria-controls")===s?(e=i,!1):void 0}),null===e&&(e=this.tabs.index(this.tabs.filter(".ui-tabs-active"))),(null===e||-1===e)&&(e=this.tabs.length?0:!1)),e!==!1&&(e=this.tabs.index(this.tabs.eq(e)),-1===e&&(e=i?!1:0)),!i&&e===!1&&this.anchors.length&&(e=0),e},_getCreateEventData:function(){return{tab:this.active,panel:this.active.length?this._getPanelForTab(this.active):t()}},_tabKeydown:function(e){var i=t(t.ui.safeActiveElement(this.document[0])).closest("li"),s=this.tabs.index(i),n=!0;if(!this._handlePageNav(e)){switch(e.keyCode){case t.ui.keyCode.RIGHT:case t.ui.keyCode.DOWN:s++;break;case t.ui.keyCode.UP:case t.ui.keyCode.LEFT:n=!1,s--;break;case t.ui.keyCode.END:s=this.anchors.length-1;break;case t.ui.keyCode.HOME:s=0;break;case t.ui.keyCode.SPACE:return e.preventDefault(),clearTimeout(this.activating),this._activate(s),void 0;case t.ui.keyCode.ENTER:return e.preventDefault(),clearTimeout(this.activating),this._activate(s===this.options.active?!1:s),void 0;default:return}e.preventDefault(),clearTimeout(this.activating),s=this._focusNextTab(s,n),e.ctrlKey||e.metaKey||(i.attr("aria-selected","false"),this.tabs.eq(s).attr("aria-selected","true"),this.activating=this._delay(function(){this.option("active",s)},this.delay))}},_panelKeydown:function(e){this._handlePageNav(e)||e.ctrlKey&&e.keyCode===t.ui.keyCode.UP&&(e.preventDefault(),this.active.trigger("focus"))},_handlePageNav:function(e){return e.altKey&&e.keyCode===t.ui.keyCode.PAGE_UP?(this._activate(this._focusNextTab(this.options.active-1,!1)),!0):e.altKey&&e.keyCode===t.ui.keyCode.PAGE_DOWN?(this._activate(this._focusNextTab(this.options.active+1,!0)),!0):void 0},_findNextTab:function(e,i){function s(){return e>n&&(e=0),0>e&&(e=n),e}for(var n=this.tabs.length-1;-1!==t.inArray(s(),this.options.disabled);)e=i?e+1:e-1;return e},_focusNextTab:function(t,e){return t=this._findNextTab(t,e),this.tabs.eq(t).trigger("focus"),t},_setOption:function(t,e){return"active"===t?(this._activate(e),void 0):(this._super(t,e),"collapsible"===t&&(this._toggleClass("ui-tabs-collapsible",null,e),e||this.options.active!==!1||this._activate(0)),"event"===t&&this._setupEvents(e),"heightStyle"===t&&this._setupHeightStyle(e),void 0)},_sanitizeSelector:function(t){return t?t.replace(/[!"$%&'()*+,.\/:;<=>?@\[\]\^`{|}~]/g,"\\$&"):""},refresh:function(){var e=this.options,i=this.tablist.children(":has(a[href])");e.disabled=t.map(i.filter(".ui-state-disabled"),function(t){return i.index(t)}),this._processTabs(),e.active!==!1&&this.anchors.length?this.active.length&&!t.contains(this.tablist[0],this.active[0])?this.tabs.length===e.disabled.length?(e.active=!1,this.active=t()):this._activate(this._findNextTab(Math.max(0,e.active-1),!1)):e.active=this.tabs.index(this.active):(e.active=!1,this.active=t()),this._refresh()},_refresh:function(){this._setOptionDisabled(this.options.disabled),this._setupEvents(this.options.event),this._setupHeightStyle(this.options.heightStyle),this.tabs.not(this.active).attr({"aria-selected":"false","aria-expanded":"false",tabIndex:-1}),this.panels.not(this._getPanelForTab(this.active)).hide().attr({"aria-hidden":"true"}),this.active.length?(this.active.attr({"aria-selected":"true","aria-expanded":"true",tabIndex:0}),this._addClass(this.active,"ui-tabs-active","ui-state-active"),this._getPanelForTab(this.active).show().attr({"aria-hidden":"false"})):this.tabs.eq(0).attr("tabIndex",0)},_processTabs:function(){var e=this,i=this.tabs,s=this.anchors,n=this.panels;this.tablist=this._getList().attr("role","tablist"),this._addClass(this.tablist,"ui-tabs-nav","ui-helper-reset ui-helper-clearfix ui-widget-header"),this.tablist.on("mousedown"+this.eventNamespace,"> li",function(e){t(this).is(".ui-state-disabled")&&e.preventDefault()}).on("focus"+this.eventNamespace,".ui-tabs-anchor",function(){t(this).closest("li").is(".ui-state-disabled")&&this.blur()}),this.tabs=this.tablist.find("> li:has(a[href])").attr({role:"tab",tabIndex:-1}),this._addClass(this.tabs,"ui-tabs-tab","ui-state-default"),this.anchors=this.tabs.map(function(){return t("a",this)[0]}).attr({role:"presentation",tabIndex:-1}),this._addClass(this.anchors,"ui-tabs-anchor"),this.panels=t(),this.anchors.each(function(i,s){var n,o,a,r=t(s).uniqueId().attr("id"),h=t(s).closest("li"),l=h.attr("aria-controls");e._isLocal(s)?(n=s.hash,a=n.substring(1),o=e.element.find(e._sanitizeSelector(n))):(a=h.attr("aria-controls")||t({}).uniqueId()[0].id,n="#"+a,o=e.element.find(n),o.length||(o=e._createPanel(a),o.insertAfter(e.panels[i-1]||e.tablist)),o.attr("aria-live","polite")),o.length&&(e.panels=e.panels.add(o)),l&&h.data("ui-tabs-aria-controls",l),h.attr({"aria-controls":a,"aria-labelledby":r}),o.attr("aria-labelledby",r)}),this.panels.attr("role","tabpanel"),this._addClass(this.panels,"ui-tabs-panel","ui-widget-content"),i&&(this._off(i.not(this.tabs)),this._off(s.not(this.anchors)),this._off(n.not(this.panels)))},_getList:function(){return this.tablist||this.element.find("ol, ul").eq(0)},_createPanel:function(e){return t("<div>").attr("id",e).data("ui-tabs-destroy",!0)},_setOptionDisabled:function(e){var i,s,n;for(t.isArray(e)&&(e.length?e.length===this.anchors.length&&(e=!0):e=!1),n=0;s=this.tabs[n];n++)i=t(s),e===!0||-1!==t.inArray(n,e)?(i.attr("aria-disabled","true"),this._addClass(i,null,"ui-state-disabled")):(i.removeAttr("aria-disabled"),this._removeClass(i,null,"ui-state-disabled"));this.options.disabled=e,this._toggleClass(this.widget(),this.widgetFullName+"-disabled",null,e===!0)},_setupEvents:function(e){var i={};e&&t.each(e.split(" "),function(t,e){i[e]="_eventHandler"}),this._off(this.anchors.add(this.tabs).add(this.panels)),this._on(!0,this.anchors,{click:function(t){t.preventDefault()}}),this._on(this.anchors,i),this._on(this.tabs,{keydown:"_tabKeydown"}),this._on(this.panels,{keydown:"_panelKeydown"}),this._focusable(this.tabs),this._hoverable(this.tabs)},_setupHeightStyle:function(e){var i,s=this.element.parent();"fill"===e?(i=s.height(),i-=this.element.outerHeight()-this.element.height(),this.element.siblings(":visible").each(function(){var e=t(this),s=e.css("position");"absolute"!==s&&"fixed"!==s&&(i-=e.outerHeight(!0))}),this.element.children().not(this.panels).each(function(){i-=t(this).outerHeight(!0)}),this.panels.each(function(){t(this).height(Math.max(0,i-t(this).innerHeight()+t(this).height()))}).css("overflow","auto")):"auto"===e&&(i=0,this.panels.each(function(){i=Math.max(i,t(this).height("").height())}).height(i))},_eventHandler:function(e){var i=this.options,s=this.active,n=t(e.currentTarget),o=n.closest("li"),a=o[0]===s[0],r=a&&i.collapsible,h=r?t():this._getPanelForTab(o),l=s.length?this._getPanelForTab(s):t(),c={oldTab:s,oldPanel:l,newTab:r?t():o,newPanel:h};e.preventDefault(),o.hasClass("ui-state-disabled")||o.hasClass("ui-tabs-loading")||this.running||a&&!i.collapsible||this._trigger("beforeActivate",e,c)===!1||(i.active=r?!1:this.tabs.index(o),this.active=a?t():o,this.xhr&&this.xhr.abort(),l.length||h.length||t.error("jQuery UI Tabs: Mismatching fragment identifier."),h.length&&this.load(this.tabs.index(o),e),this._toggle(e,c))},_toggle:function(e,i){function s(){o.running=!1,o._trigger("activate",e,i)}function n(){o._addClass(i.newTab.closest("li"),"ui-tabs-active","ui-state-active"),a.length&&o.options.show?o._show(a,o.options.show,s):(a.show(),s())}var o=this,a=i.newPanel,r=i.oldPanel;this.running=!0,r.length&&this.options.hide?this._hide(r,this.options.hide,function(){o._removeClass(i.oldTab.closest("li"),"ui-tabs-active","ui-state-active"),n()}):(this._removeClass(i.oldTab.closest("li"),"ui-tabs-active","ui-state-active"),r.hide(),n()),r.attr("aria-hidden","true"),i.oldTab.attr({"aria-selected":"false","aria-expanded":"false"}),a.length&&r.length?i.oldTab.attr("tabIndex",-1):a.length&&this.tabs.filter(function(){return 0===t(this).attr("tabIndex")}).attr("tabIndex",-1),a.attr("aria-hidden","false"),i.newTab.attr({"aria-selected":"true","aria-expanded":"true",tabIndex:0})},_activate:function(e){var i,s=this._findActive(e);s[0]!==this.active[0]&&(s.length||(s=this.active),i=s.find(".ui-tabs-anchor")[0],this._eventHandler({target:i,currentTarget:i,preventDefault:t.noop}))},_findActive:function(e){return e===!1?t():this.tabs.eq(e)},_getIndex:function(e){return"string"==typeof e&&(e=this.anchors.index(this.anchors.filter("[href$='"+t.ui.escapeSelector(e)+"']"))),e},_destroy:function(){this.xhr&&this.xhr.abort(),this.tablist.removeAttr("role").off(this.eventNamespace),this.anchors.removeAttr("role tabIndex").removeUniqueId(),this.tabs.add(this.panels).each(function(){t.data(this,"ui-tabs-destroy")?t(this).remove():t(this).removeAttr("role tabIndex aria-live aria-busy aria-selected aria-labelledby aria-hidden aria-expanded")}),this.tabs.each(function(){var e=t(this),i=e.data("ui-tabs-aria-controls");i?e.attr("aria-controls",i).removeData("ui-tabs-aria-controls"):e.removeAttr("aria-controls")}),this.panels.show(),"content"!==this.options.heightStyle&&this.panels.css("height","")},enable:function(e){var i=this.options.disabled;i!==!1&&(void 0===e?i=!1:(e=this._getIndex(e),i=t.isArray(i)?t.map(i,function(t){return t!==e?t:null}):t.map(this.tabs,function(t,i){return i!==e?i:null})),this._setOptionDisabled(i))},disable:function(e){var i=this.options.disabled;if(i!==!0){if(void 0===e)i=!0;else{if(e=this._getIndex(e),-1!==t.inArray(e,i))return;i=t.isArray(i)?t.merge([e],i).sort():[e]}this._setOptionDisabled(i)}},load:function(e,i){e=this._getIndex(e);var s=this,n=this.tabs.eq(e),o=n.find(".ui-tabs-anchor"),a=this._getPanelForTab(n),r={tab:n,panel:a},h=function(t,e){"abort"===e&&s.panels.stop(!1,!0),s._removeClass(n,"ui-tabs-loading"),a.removeAttr("aria-busy"),t===s.xhr&&delete s.xhr};this._isLocal(o[0])||(this.xhr=t.ajax(this._ajaxSettings(o,i,r)),this.xhr&&"canceled"!==this.xhr.statusText&&(this._addClass(n,"ui-tabs-loading"),a.attr("aria-busy","true"),this.xhr.done(function(t,e,n){setTimeout(function(){a.html(t),s._trigger("load",i,r),h(n,e)},1)}).fail(function(t,e){setTimeout(function(){h(t,e)},1)})))},_ajaxSettings:function(e,i,s){var n=this;return{url:e.attr("href").replace(/#.*$/,""),beforeSend:function(e,o){return n._trigger("beforeLoad",i,t.extend({jqXHR:e,ajaxSettings:o},s))}}},_getPanelForTab:function(e){var i=t(e).attr("aria-controls");return this.element.find(this._sanitizeSelector("#"+i))}}),t.uiBackCompat!==!1&&t.widget("ui.tabs",t.ui.tabs,{_processTabs:function(){this._superApply(arguments),this._addClass(this.tabs,"ui-tab")}}),t.ui.tabs,t.widget("ui.tooltip",{version:"1.12.1",options:{classes:{"ui-tooltip":"ui-corner-all ui-widget-shadow"},content:function(){var e=t(this).attr("title")||"";return t("<a>").text(e).html()},hide:!0,items:"[title]:not([disabled])",position:{my:"left top+15",at:"left bottom",collision:"flipfit flip"},show:!0,track:!1,close:null,open:null},_addDescribedBy:function(e,i){var s=(e.attr("aria-describedby")||"").split(/\s+/);s.push(i),e.data("ui-tooltip-id",i).attr("aria-describedby",t.trim(s.join(" ")))},_removeDescribedBy:function(e){var i=e.data("ui-tooltip-id"),s=(e.attr("aria-describedby")||"").split(/\s+/),n=t.inArray(i,s);-1!==n&&s.splice(n,1),e.removeData("ui-tooltip-id"),s=t.trim(s.join(" ")),s?e.attr("aria-describedby",s):e.removeAttr("aria-describedby")},_create:function(){this._on({mouseover:"open",focusin:"open"}),this.tooltips={},this.parents={},this.liveRegion=t("<div>").attr({role:"log","aria-live":"assertive","aria-relevant":"additions"}).appendTo(this.document[0].body),this._addClass(this.liveRegion,null,"ui-helper-hidden-accessible"),this.disabledTitles=t([])},_setOption:function(e,i){var s=this;this._super(e,i),"content"===e&&t.each(this.tooltips,function(t,e){s._updateContent(e.element)})},_setOptionDisabled:function(t){this[t?"_disable":"_enable"]()},_disable:function(){var e=this;t.each(this.tooltips,function(i,s){var n=t.Event("blur");n.target=n.currentTarget=s.element[0],e.close(n,!0)}),this.disabledTitles=this.disabledTitles.add(this.element.find(this.options.items).addBack().filter(function(){var e=t(this);return e.is("[title]")?e.data("ui-tooltip-title",e.attr("title")).removeAttr("title"):void 0}))},_enable:function(){this.disabledTitles.each(function(){var e=t(this);e.data("ui-tooltip-title")&&e.attr("title",e.data("ui-tooltip-title"))}),this.disabledTitles=t([])},open:function(e){var i=this,s=t(e?e.target:this.element).closest(this.options.items);s.length&&!s.data("ui-tooltip-id")&&(s.attr("title")&&s.data("ui-tooltip-title",s.attr("title")),s.data("ui-tooltip-open",!0),e&&"mouseover"===e.type&&s.parents().each(function(){var e,s=t(this);s.data("ui-tooltip-open")&&(e=t.Event("blur"),e.target=e.currentTarget=this,i.close(e,!0)),s.attr("title")&&(s.uniqueId(),i.parents[this.id]={element:this,title:s.attr("title")},s.attr("title",""))}),this._registerCloseHandlers(e,s),this._updateContent(s,e))},_updateContent:function(t,e){var i,s=this.options.content,n=this,o=e?e.type:null;return"string"==typeof s||s.nodeType||s.jquery?this._open(e,t,s):(i=s.call(t[0],function(i){n._delay(function(){t.data("ui-tooltip-open")&&(e&&(e.type=o),this._open(e,t,i))})}),i&&this._open(e,t,i),void 0)},_open:function(e,i,s){function n(t){l.of=t,a.is(":hidden")||a.position(l)}var o,a,r,h,l=t.extend({},this.options.position);if(s){if(o=this._find(i))return o.tooltip.find(".ui-tooltip-content").html(s),void 0;i.is("[title]")&&(e&&"mouseover"===e.type?i.attr("title",""):i.removeAttr("title")),o=this._tooltip(i),a=o.tooltip,this._addDescribedBy(i,a.attr("id")),a.find(".ui-tooltip-content").html(s),this.liveRegion.children().hide(),h=t("<div>").html(a.find(".ui-tooltip-content").html()),h.removeAttr("name").find("[name]").removeAttr("name"),h.removeAttr("id").find("[id]").removeAttr("id"),h.appendTo(this.liveRegion),this.options.track&&e&&/^mouse/.test(e.type)?(this._on(this.document,{mousemove:n}),n(e)):a.position(t.extend({of:i},this.options.position)),a.hide(),this._show(a,this.options.show),this.options.track&&this.options.show&&this.options.show.delay&&(r=this.delayedShow=setInterval(function(){a.is(":visible")&&(n(l.of),clearInterval(r))},t.fx.interval)),this._trigger("open",e,{tooltip:a})}},_registerCloseHandlers:function(e,i){var s={keyup:function(e){if(e.keyCode===t.ui.keyCode.ESCAPE){var s=t.Event(e);s.currentTarget=i[0],this.close(s,!0)}}};i[0]!==this.element[0]&&(s.remove=function(){this._removeTooltip(this._find(i).tooltip)}),e&&"mouseover"!==e.type||(s.mouseleave="close"),e&&"focusin"!==e.type||(s.focusout="close"),this._on(!0,i,s)},close:function(e){var i,s=this,n=t(e?e.currentTarget:this.element),o=this._find(n);return o?(i=o.tooltip,o.closing||(clearInterval(this.delayedShow),n.data("ui-tooltip-title")&&!n.attr("title")&&n.attr("title",n.data("ui-tooltip-title")),this._removeDescribedBy(n),o.hiding=!0,i.stop(!0),this._hide(i,this.options.hide,function(){s._removeTooltip(t(this))}),n.removeData("ui-tooltip-open"),this._off(n,"mouseleave focusout keyup"),n[0]!==this.element[0]&&this._off(n,"remove"),this._off(this.document,"mousemove"),e&&"mouseleave"===e.type&&t.each(this.parents,function(e,i){t(i.element).attr("title",i.title),delete s.parents[e]}),o.closing=!0,this._trigger("close",e,{tooltip:i}),o.hiding||(o.closing=!1)),void 0):(n.removeData("ui-tooltip-open"),void 0)},_tooltip:function(e){var i=t("<div>").attr("role","tooltip"),s=t("<div>").appendTo(i),n=i.uniqueId().attr("id");return this._addClass(s,"ui-tooltip-content"),this._addClass(i,"ui-tooltip","ui-widget ui-widget-content"),i.appendTo(this._appendTo(e)),this.tooltips[n]={element:e,tooltip:i}},_find:function(t){var e=t.data("ui-tooltip-id");return e?this.tooltips[e]:null},_removeTooltip:function(t){t.remove(),delete this.tooltips[t.attr("id")]},_appendTo:function(t){var e=t.closest(".ui-front, dialog");return e.length||(e=this.document[0].body),e},_destroy:function(){var e=this;t.each(this.tooltips,function(i,s){var n=t.Event("blur"),o=s.element;n.target=n.currentTarget=o[0],e.close(n,!0),t("#"+i).remove(),o.data("ui-tooltip-title")&&(o.attr("title")||o.attr("title",o.data("ui-tooltip-title")),o.removeData("ui-tooltip-title"))}),this.liveRegion.remove()}}),t.uiBackCompat!==!1&&t.widget("ui.tooltip",t.ui.tooltip,{options:{tooltipClass:null},_tooltip:function(){var t=this._superApply(arguments);return this.options.tooltipClass&&t.tooltip.addClass(this.options.tooltipClass),t}}),t.ui.tooltip});
\ No newline at end of file
diff --git a/web/static/js/lightbox.js b/web/static/js/lightbox.js
index 5f4b8af23c1..39bd4972ee9 100644
--- a/web/static/js/lightbox.js
+++ b/web/static/js/lightbox.js
@@ -21,7 +21,7 @@
       this.alwaysShowNavOnTouchDevices = false;
       this.wrapAround                  = false;
     }
-    
+
     // Change to localize to non-english language
     LightboxOptions.prototype.albumLabel = function(curImageNum, albumSize) {
       return "Image " + curImageNum + " of " + albumSize;
@@ -59,7 +59,7 @@
     Lightbox.prototype.build = function() {
       var self = this;
       $("<div id='lightboxOverlay' class='lightboxOverlay'></div><div id='lightbox' class='lightbox'><div class='lb-outerContainer'><div class='lb-container'><img class='lb-image' src='' /><div class='lb-nav'><a class='lb-prev' href='' ></a><a class='lb-next' href='' ></a></div><div class='lb-loader'><a class='lb-cancel'></a></div></div></div><div class='lb-dataContainer'><div class='lb-data'><div class='lb-details'><span class='lb-caption'></span><span class='lb-number'></span></div><div class='lb-closeContainer'><a class='lb-close'></a></div></div></div></div>").appendTo($('body'));
-      
+
       // Cache jQuery objects
       this.$lightbox       = $('#lightbox');
       this.$overlay        = $('#lightboxOverlay');
@@ -71,7 +71,7 @@
       this.containerRightPadding = parseInt(this.$container.css('padding-right'), 10);
       this.containerBottomPadding = parseInt(this.$container.css('padding-bottom'), 10);
       this.containerLeftPadding = parseInt(this.$container.css('padding-left'), 10);
-      
+
       // Attach event handlers to the newly minted DOM elements
       this.$overlay.hide().on('click', function() {
         self.end();
@@ -166,7 +166,7 @@
           }
         }
       }
-      
+
       // Position Lightbox
       var top  = $window.scrollTop() + this.options.positionFromTop;
       var left = $window.scrollLeft();
@@ -202,7 +202,7 @@
 
         $image.width(preloader.width);
         $image.height(preloader.height);
-        
+
         if (self.options.fitImagesInViewport) {
           // Fit image inside the viewport.
           // Take into account the border around the image and an additional 10px gutter on each side.
@@ -244,12 +244,12 @@
     // Animate the size of the lightbox to fit the image we are showing
     Lightbox.prototype.sizeContainer = function(imageWidth, imageHeight) {
       var self = this;
-      
+
       var oldWidth  = this.$outerContainer.outerWidth();
       var oldHeight = this.$outerContainer.outerHeight();
       var newWidth  = imageWidth + this.containerLeftPadding + this.containerRightPadding;
       var newHeight = imageHeight + this.containerTopPadding + this.containerBottomPadding;
-      
+
       function postResize() {
         self.$lightbox.find('.lb-dataContainer').width(newWidth);
         self.$lightbox.find('.lb-prevLink').height(newHeight);
@@ -273,7 +273,7 @@
     Lightbox.prototype.showImage = function() {
       this.$lightbox.find('.lb-loader').hide();
       this.$lightbox.find('.lb-image').fadeIn('slow');
-    
+
       this.updateNav();
       this.updateDetails();
       this.preloadNeighboringImages();
@@ -330,15 +330,15 @@
             location.href = $(this).attr('href');
           });
       }
-    
+
       if (this.album.length > 1 && this.options.showImageNumberLabel) {
         this.$lightbox.find('.lb-number').text(this.options.albumLabel(this.currentImageIndex + 1, this.album.length)).fadeIn('fast');
       } else {
         this.$lightbox.find('.lb-number').hide();
       }
-    
+
       this.$outerContainer.removeClass('animating');
-    
+
       this.$lightbox.find('.lb-dataContainer').fadeIn(this.options.resizeDuration, function() {
         return self.sizeOverlay();
       });
diff --git a/web/static/js/moment.min.js b/web/static/js/moment.min.js
index 05199bd3b93..042ad7e1755 100644
--- a/web/static/js/moment.min.js
+++ b/web/static/js/moment.min.js
@@ -4,4 +4,4 @@
 //! license : MIT
 //! momentjs.com
 !function(a,b){"object"==typeof exports&&"undefined"!=typeof module?module.exports=b():"function"==typeof define&&define.amd?define(b):a.moment=b()}(this,function(){"use strict";function a(){return Dc.apply(null,arguments)}function b(a){Dc=a}function c(a){return"[object Array]"===Object.prototype.toString.call(a)}function d(a){return a instanceof Date||"[object Date]"===Object.prototype.toString.call(a)}function e(a,b){var c,d=[];for(c=0;c<a.length;++c)d.push(b(a[c],c));return d}function f(a,b){return Object.prototype.hasOwnProperty.call(a,b)}function g(a,b){for(var c in b)f(b,c)&&(a[c]=b[c]);return f(b,"toString")&&(a.toString=b.toString),f(b,"valueOf")&&(a.valueOf=b.valueOf),a}function h(a,b,c,d){return za(a,b,c,d,!0).utc()}function i(){return{empty:!1,unusedTokens:[],unusedInput:[],overflow:-2,charsLeftOver:0,nullInput:!1,invalidMonth:null,invalidFormat:!1,userInvalidated:!1,iso:!1}}function j(a){return null==a._pf&&(a._pf=i()),a._pf}function k(a){if(null==a._isValid){var b=j(a);a._isValid=!isNaN(a._d.getTime())&&b.overflow<0&&!b.empty&&!b.invalidMonth&&!b.nullInput&&!b.invalidFormat&&!b.userInvalidated,a._strict&&(a._isValid=a._isValid&&0===b.charsLeftOver&&0===b.unusedTokens.length&&void 0===b.bigHour)}return a._isValid}function l(a){var b=h(0/0);return null!=a?g(j(b),a):j(b).userInvalidated=!0,b}function m(a,b){var c,d,e;if("undefined"!=typeof b._isAMomentObject&&(a._isAMomentObject=b._isAMomentObject),"undefined"!=typeof b._i&&(a._i=b._i),"undefined"!=typeof b._f&&(a._f=b._f),"undefined"!=typeof b._l&&(a._l=b._l),"undefined"!=typeof b._strict&&(a._strict=b._strict),"undefined"!=typeof b._tzm&&(a._tzm=b._tzm),"undefined"!=typeof b._isUTC&&(a._isUTC=b._isUTC),"undefined"!=typeof b._offset&&(a._offset=b._offset),"undefined"!=typeof b._pf&&(a._pf=j(b)),"undefined"!=typeof b._locale&&(a._locale=b._locale),Fc.length>0)for(c in Fc)d=Fc[c],e=b[d],"undefined"!=typeof e&&(a[d]=e);return a}function n(b){m(this,b),this._d=new Date(+b._d),Gc===!1&&(Gc=!0,a.updateOffset(this),Gc=!1)}function o(a){return a instanceof n||null!=a&&null!=a._isAMomentObject}function p(a){var b=+a,c=0;return 0!==b&&isFinite(b)&&(c=b>=0?Math.floor(b):Math.ceil(b)),c}function q(a,b,c){var d,e=Math.min(a.length,b.length),f=Math.abs(a.length-b.length),g=0;for(d=0;e>d;d++)(c&&a[d]!==b[d]||!c&&p(a[d])!==p(b[d]))&&g++;return g+f}function r(){}function s(a){return a?a.toLowerCase().replace("_","-"):a}function t(a){for(var b,c,d,e,f=0;f<a.length;){for(e=s(a[f]).split("-"),b=e.length,c=s(a[f+1]),c=c?c.split("-"):null;b>0;){if(d=u(e.slice(0,b).join("-")))return d;if(c&&c.length>=b&&q(e,c,!0)>=b-1)break;b--}f++}return null}function u(a){var b=null;if(!Hc[a]&&"undefined"!=typeof module&&module&&module.exports)try{b=Ec._abbr,require("./locale/"+a),v(b)}catch(c){}return Hc[a]}function v(a,b){var c;return a&&(c="undefined"==typeof b?x(a):w(a,b),c&&(Ec=c)),Ec._abbr}function w(a,b){return null!==b?(b.abbr=a,Hc[a]||(Hc[a]=new r),Hc[a].set(b),v(a),Hc[a]):(delete Hc[a],null)}function x(a){var b;if(a&&a._locale&&a._locale._abbr&&(a=a._locale._abbr),!a)return Ec;if(!c(a)){if(b=u(a))return b;a=[a]}return t(a)}function y(a,b){var c=a.toLowerCase();Ic[c]=Ic[c+"s"]=Ic[b]=a}function z(a){return"string"==typeof a?Ic[a]||Ic[a.toLowerCase()]:void 0}function A(a){var b,c,d={};for(c in a)f(a,c)&&(b=z(c),b&&(d[b]=a[c]));return d}function B(b,c){return function(d){return null!=d?(D(this,b,d),a.updateOffset(this,c),this):C(this,b)}}function C(a,b){return a._d["get"+(a._isUTC?"UTC":"")+b]()}function D(a,b,c){return a._d["set"+(a._isUTC?"UTC":"")+b](c)}function E(a,b){var c;if("object"==typeof a)for(c in a)this.set(c,a[c]);else if(a=z(a),"function"==typeof this[a])return this[a](b);return this}function F(a,b,c){for(var d=""+Math.abs(a),e=a>=0;d.length<b;)d="0"+d;return(e?c?"+":"":"-")+d}function G(a,b,c,d){var e=d;"string"==typeof d&&(e=function(){return this[d]()}),a&&(Mc[a]=e),b&&(Mc[b[0]]=function(){return F(e.apply(this,arguments),b[1],b[2])}),c&&(Mc[c]=function(){return this.localeData().ordinal(e.apply(this,arguments),a)})}function H(a){return a.match(/\[[\s\S]/)?a.replace(/^\[|\]$/g,""):a.replace(/\\/g,"")}function I(a){var b,c,d=a.match(Jc);for(b=0,c=d.length;c>b;b++)Mc[d[b]]?d[b]=Mc[d[b]]:d[b]=H(d[b]);return function(e){var f="";for(b=0;c>b;b++)f+=d[b]instanceof Function?d[b].call(e,a):d[b];return f}}function J(a,b){return a.isValid()?(b=K(b,a.localeData()),Lc[b]||(Lc[b]=I(b)),Lc[b](a)):a.localeData().invalidDate()}function K(a,b){function c(a){return b.longDateFormat(a)||a}var d=5;for(Kc.lastIndex=0;d>=0&&Kc.test(a);)a=a.replace(Kc,c),Kc.lastIndex=0,d-=1;return a}function L(a,b,c){_c[a]="function"==typeof b?b:function(a){return a&&c?c:b}}function M(a,b){return f(_c,a)?_c[a](b._strict,b._locale):new RegExp(N(a))}function N(a){return a.replace("\\","").replace(/\\(\[)|\\(\])|\[([^\]\[]*)\]|\\(.)/g,function(a,b,c,d,e){return b||c||d||e}).replace(/[-\/\\^$*+?.()|[\]{}]/g,"\\$&")}function O(a,b){var c,d=b;for("string"==typeof a&&(a=[a]),"number"==typeof b&&(d=function(a,c){c[b]=p(a)}),c=0;c<a.length;c++)ad[a[c]]=d}function P(a,b){O(a,function(a,c,d,e){d._w=d._w||{},b(a,d._w,d,e)})}function Q(a,b,c){null!=b&&f(ad,a)&&ad[a](b,c._a,c,a)}function R(a,b){return new Date(Date.UTC(a,b+1,0)).getUTCDate()}function S(a){return this._months[a.month()]}function T(a){return this._monthsShort[a.month()]}function U(a,b,c){var d,e,f;for(this._monthsParse||(this._monthsParse=[],this._longMonthsParse=[],this._shortMonthsParse=[]),d=0;12>d;d++){if(e=h([2e3,d]),c&&!this._longMonthsParse[d]&&(this._longMonthsParse[d]=new RegExp("^"+this.months(e,"").replace(".","")+"$","i"),this._shortMonthsParse[d]=new RegExp("^"+this.monthsShort(e,"").replace(".","")+"$","i")),c||this._monthsParse[d]||(f="^"+this.months(e,"")+"|^"+this.monthsShort(e,""),this._monthsParse[d]=new RegExp(f.replace(".",""),"i")),c&&"MMMM"===b&&this._longMonthsParse[d].test(a))return d;if(c&&"MMM"===b&&this._shortMonthsParse[d].test(a))return d;if(!c&&this._monthsParse[d].test(a))return d}}function V(a,b){var c;return"string"==typeof b&&(b=a.localeData().monthsParse(b),"number"!=typeof b)?a:(c=Math.min(a.date(),R(a.year(),b)),a._d["set"+(a._isUTC?"UTC":"")+"Month"](b,c),a)}function W(b){return null!=b?(V(this,b),a.updateOffset(this,!0),this):C(this,"Month")}function X(){return R(this.year(),this.month())}function Y(a){var b,c=a._a;return c&&-2===j(a).overflow&&(b=c[cd]<0||c[cd]>11?cd:c[dd]<1||c[dd]>R(c[bd],c[cd])?dd:c[ed]<0||c[ed]>24||24===c[ed]&&(0!==c[fd]||0!==c[gd]||0!==c[hd])?ed:c[fd]<0||c[fd]>59?fd:c[gd]<0||c[gd]>59?gd:c[hd]<0||c[hd]>999?hd:-1,j(a)._overflowDayOfYear&&(bd>b||b>dd)&&(b=dd),j(a).overflow=b),a}function Z(b){a.suppressDeprecationWarnings===!1&&"undefined"!=typeof console&&console.warn&&console.warn("Deprecation warning: "+b)}function $(a,b){var c=!0,d=a+"\n"+(new Error).stack;return g(function(){return c&&(Z(d),c=!1),b.apply(this,arguments)},b)}function _(a,b){kd[a]||(Z(b),kd[a]=!0)}function aa(a){var b,c,d=a._i,e=ld.exec(d);if(e){for(j(a).iso=!0,b=0,c=md.length;c>b;b++)if(md[b][1].exec(d)){a._f=md[b][0]+(e[6]||" ");break}for(b=0,c=nd.length;c>b;b++)if(nd[b][1].exec(d)){a._f+=nd[b][0];break}d.match(Yc)&&(a._f+="Z"),ta(a)}else a._isValid=!1}function ba(b){var c=od.exec(b._i);return null!==c?void(b._d=new Date(+c[1])):(aa(b),void(b._isValid===!1&&(delete b._isValid,a.createFromInputFallback(b))))}function ca(a,b,c,d,e,f,g){var h=new Date(a,b,c,d,e,f,g);return 1970>a&&h.setFullYear(a),h}function da(a){var b=new Date(Date.UTC.apply(null,arguments));return 1970>a&&b.setUTCFullYear(a),b}function ea(a){return fa(a)?366:365}function fa(a){return a%4===0&&a%100!==0||a%400===0}function ga(){return fa(this.year())}function ha(a,b,c){var d,e=c-b,f=c-a.day();return f>e&&(f-=7),e-7>f&&(f+=7),d=Aa(a).add(f,"d"),{week:Math.ceil(d.dayOfYear()/7),year:d.year()}}function ia(a){return ha(a,this._week.dow,this._week.doy).week}function ja(){return this._week.dow}function ka(){return this._week.doy}function la(a){var b=this.localeData().week(this);return null==a?b:this.add(7*(a-b),"d")}function ma(a){var b=ha(this,1,4).week;return null==a?b:this.add(7*(a-b),"d")}function na(a,b,c,d,e){var f,g,h=da(a,0,1).getUTCDay();return h=0===h?7:h,c=null!=c?c:e,f=e-h+(h>d?7:0)-(e>h?7:0),g=7*(b-1)+(c-e)+f+1,{year:g>0?a:a-1,dayOfYear:g>0?g:ea(a-1)+g}}function oa(a){var b=Math.round((this.clone().startOf("day")-this.clone().startOf("year"))/864e5)+1;return null==a?b:this.add(a-b,"d")}function pa(a,b,c){return null!=a?a:null!=b?b:c}function qa(a){var b=new Date;return a._useUTC?[b.getUTCFullYear(),b.getUTCMonth(),b.getUTCDate()]:[b.getFullYear(),b.getMonth(),b.getDate()]}function ra(a){var b,c,d,e,f=[];if(!a._d){for(d=qa(a),a._w&&null==a._a[dd]&&null==a._a[cd]&&sa(a),a._dayOfYear&&(e=pa(a._a[bd],d[bd]),a._dayOfYear>ea(e)&&(j(a)._overflowDayOfYear=!0),c=da(e,0,a._dayOfYear),a._a[cd]=c.getUTCMonth(),a._a[dd]=c.getUTCDate()),b=0;3>b&&null==a._a[b];++b)a._a[b]=f[b]=d[b];for(;7>b;b++)a._a[b]=f[b]=null==a._a[b]?2===b?1:0:a._a[b];24===a._a[ed]&&0===a._a[fd]&&0===a._a[gd]&&0===a._a[hd]&&(a._nextDay=!0,a._a[ed]=0),a._d=(a._useUTC?da:ca).apply(null,f),null!=a._tzm&&a._d.setUTCMinutes(a._d.getUTCMinutes()-a._tzm),a._nextDay&&(a._a[ed]=24)}}function sa(a){var b,c,d,e,f,g,h;b=a._w,null!=b.GG||null!=b.W||null!=b.E?(f=1,g=4,c=pa(b.GG,a._a[bd],ha(Aa(),1,4).year),d=pa(b.W,1),e=pa(b.E,1)):(f=a._locale._week.dow,g=a._locale._week.doy,c=pa(b.gg,a._a[bd],ha(Aa(),f,g).year),d=pa(b.w,1),null!=b.d?(e=b.d,f>e&&++d):e=null!=b.e?b.e+f:f),h=na(c,d,e,g,f),a._a[bd]=h.year,a._dayOfYear=h.dayOfYear}function ta(b){if(b._f===a.ISO_8601)return void aa(b);b._a=[],j(b).empty=!0;var c,d,e,f,g,h=""+b._i,i=h.length,k=0;for(e=K(b._f,b._locale).match(Jc)||[],c=0;c<e.length;c++)f=e[c],d=(h.match(M(f,b))||[])[0],d&&(g=h.substr(0,h.indexOf(d)),g.length>0&&j(b).unusedInput.push(g),h=h.slice(h.indexOf(d)+d.length),k+=d.length),Mc[f]?(d?j(b).empty=!1:j(b).unusedTokens.push(f),Q(f,d,b)):b._strict&&!d&&j(b).unusedTokens.push(f);j(b).charsLeftOver=i-k,h.length>0&&j(b).unusedInput.push(h),j(b).bigHour===!0&&b._a[ed]<=12&&b._a[ed]>0&&(j(b).bigHour=void 0),b._a[ed]=ua(b._locale,b._a[ed],b._meridiem),ra(b),Y(b)}function ua(a,b,c){var d;return null==c?b:null!=a.meridiemHour?a.meridiemHour(b,c):null!=a.isPM?(d=a.isPM(c),d&&12>b&&(b+=12),d||12!==b||(b=0),b):b}function va(a){var b,c,d,e,f;if(0===a._f.length)return j(a).invalidFormat=!0,void(a._d=new Date(0/0));for(e=0;e<a._f.length;e++)f=0,b=m({},a),null!=a._useUTC&&(b._useUTC=a._useUTC),b._f=a._f[e],ta(b),k(b)&&(f+=j(b).charsLeftOver,f+=10*j(b).unusedTokens.length,j(b).score=f,(null==d||d>f)&&(d=f,c=b));g(a,c||b)}function wa(a){if(!a._d){var b=A(a._i);a._a=[b.year,b.month,b.day||b.date,b.hour,b.minute,b.second,b.millisecond],ra(a)}}function xa(a){var b,e=a._i,f=a._f;return a._locale=a._locale||x(a._l),null===e||void 0===f&&""===e?l({nullInput:!0}):("string"==typeof e&&(a._i=e=a._locale.preparse(e)),o(e)?new n(Y(e)):(c(f)?va(a):f?ta(a):d(e)?a._d=e:ya(a),b=new n(Y(a)),b._nextDay&&(b.add(1,"d"),b._nextDay=void 0),b))}function ya(b){var f=b._i;void 0===f?b._d=new Date:d(f)?b._d=new Date(+f):"string"==typeof f?ba(b):c(f)?(b._a=e(f.slice(0),function(a){return parseInt(a,10)}),ra(b)):"object"==typeof f?wa(b):"number"==typeof f?b._d=new Date(f):a.createFromInputFallback(b)}function za(a,b,c,d,e){var f={};return"boolean"==typeof c&&(d=c,c=void 0),f._isAMomentObject=!0,f._useUTC=f._isUTC=e,f._l=c,f._i=a,f._f=b,f._strict=d,xa(f)}function Aa(a,b,c,d){return za(a,b,c,d,!1)}function Ba(a,b){var d,e;if(1===b.length&&c(b[0])&&(b=b[0]),!b.length)return Aa();for(d=b[0],e=1;e<b.length;++e)b[e][a](d)&&(d=b[e]);return d}function Ca(){var a=[].slice.call(arguments,0);return Ba("isBefore",a)}function Da(){var a=[].slice.call(arguments,0);return Ba("isAfter",a)}function Ea(a){var b=A(a),c=b.year||0,d=b.quarter||0,e=b.month||0,f=b.week||0,g=b.day||0,h=b.hour||0,i=b.minute||0,j=b.second||0,k=b.millisecond||0;this._milliseconds=+k+1e3*j+6e4*i+36e5*h,this._days=+g+7*f,this._months=+e+3*d+12*c,this._data={},this._locale=x(),this._bubble()}function Fa(a){return a instanceof Ea}function Ga(a,b){G(a,0,0,function(){var a=this.utcOffset(),c="+";return 0>a&&(a=-a,c="-"),c+F(~~(a/60),2)+b+F(~~a%60,2)})}function Ha(a){var b=(a||"").match(Yc)||[],c=b[b.length-1]||[],d=(c+"").match(td)||["-",0,0],e=+(60*d[1])+p(d[2]);return"+"===d[0]?e:-e}function Ia(b,c){var e,f;return c._isUTC?(e=c.clone(),f=(o(b)||d(b)?+b:+Aa(b))-+e,e._d.setTime(+e._d+f),a.updateOffset(e,!1),e):Aa(b).local();return c._isUTC?Aa(b).zone(c._offset||0):Aa(b).local()}function Ja(a){return 15*-Math.round(a._d.getTimezoneOffset()/15)}function Ka(b,c){var d,e=this._offset||0;return null!=b?("string"==typeof b&&(b=Ha(b)),Math.abs(b)<16&&(b=60*b),!this._isUTC&&c&&(d=Ja(this)),this._offset=b,this._isUTC=!0,null!=d&&this.add(d,"m"),e!==b&&(!c||this._changeInProgress?$a(this,Va(b-e,"m"),1,!1):this._changeInProgress||(this._changeInProgress=!0,a.updateOffset(this,!0),this._changeInProgress=null)),this):this._isUTC?e:Ja(this)}function La(a,b){return null!=a?("string"!=typeof a&&(a=-a),this.utcOffset(a,b),this):-this.utcOffset()}function Ma(a){return this.utcOffset(0,a)}function Na(a){return this._isUTC&&(this.utcOffset(0,a),this._isUTC=!1,a&&this.subtract(Ja(this),"m")),this}function Oa(){return this._tzm?this.utcOffset(this._tzm):"string"==typeof this._i&&this.utcOffset(Ha(this._i)),this}function Pa(a){return a=a?Aa(a).utcOffset():0,(this.utcOffset()-a)%60===0}function Qa(){return this.utcOffset()>this.clone().month(0).utcOffset()||this.utcOffset()>this.clone().month(5).utcOffset()}function Ra(){if(this._a){var a=this._isUTC?h(this._a):Aa(this._a);return this.isValid()&&q(this._a,a.toArray())>0}return!1}function Sa(){return!this._isUTC}function Ta(){return this._isUTC}function Ua(){return this._isUTC&&0===this._offset}function Va(a,b){var c,d,e,g=a,h=null;return Fa(a)?g={ms:a._milliseconds,d:a._days,M:a._months}:"number"==typeof a?(g={},b?g[b]=a:g.milliseconds=a):(h=ud.exec(a))?(c="-"===h[1]?-1:1,g={y:0,d:p(h[dd])*c,h:p(h[ed])*c,m:p(h[fd])*c,s:p(h[gd])*c,ms:p(h[hd])*c}):(h=vd.exec(a))?(c="-"===h[1]?-1:1,g={y:Wa(h[2],c),M:Wa(h[3],c),d:Wa(h[4],c),h:Wa(h[5],c),m:Wa(h[6],c),s:Wa(h[7],c),w:Wa(h[8],c)}):null==g?g={}:"object"==typeof g&&("from"in g||"to"in g)&&(e=Ya(Aa(g.from),Aa(g.to)),g={},g.ms=e.milliseconds,g.M=e.months),d=new Ea(g),Fa(a)&&f(a,"_locale")&&(d._locale=a._locale),d}function Wa(a,b){var c=a&&parseFloat(a.replace(",","."));return(isNaN(c)?0:c)*b}function Xa(a,b){var c={milliseconds:0,months:0};return c.months=b.month()-a.month()+12*(b.year()-a.year()),a.clone().add(c.months,"M").isAfter(b)&&--c.months,c.milliseconds=+b-+a.clone().add(c.months,"M"),c}function Ya(a,b){var c;return b=Ia(b,a),a.isBefore(b)?c=Xa(a,b):(c=Xa(b,a),c.milliseconds=-c.milliseconds,c.months=-c.months),c}function Za(a,b){return function(c,d){var e,f;return null===d||isNaN(+d)||(_(b,"moment()."+b+"(period, number) is deprecated. Please use moment()."+b+"(number, period)."),f=c,c=d,d=f),c="string"==typeof c?+c:c,e=Va(c,d),$a(this,e,a),this}}function $a(b,c,d,e){var f=c._milliseconds,g=c._days,h=c._months;e=null==e?!0:e,f&&b._d.setTime(+b._d+f*d),g&&D(b,"Date",C(b,"Date")+g*d),h&&V(b,C(b,"Month")+h*d),e&&a.updateOffset(b,g||h)}function _a(a){var b=a||Aa(),c=Ia(b,this).startOf("day"),d=this.diff(c,"days",!0),e=-6>d?"sameElse":-1>d?"lastWeek":0>d?"lastDay":1>d?"sameDay":2>d?"nextDay":7>d?"nextWeek":"sameElse";return this.format(this.localeData().calendar(e,this,Aa(b)))}function ab(){return new n(this)}function bb(a,b){var c;return b=z("undefined"!=typeof b?b:"millisecond"),"millisecond"===b?(a=o(a)?a:Aa(a),+this>+a):(c=o(a)?+a:+Aa(a),c<+this.clone().startOf(b))}function cb(a,b){var c;return b=z("undefined"!=typeof b?b:"millisecond"),"millisecond"===b?(a=o(a)?a:Aa(a),+a>+this):(c=o(a)?+a:+Aa(a),+this.clone().endOf(b)<c)}function db(a,b,c){return this.isAfter(a,c)&&this.isBefore(b,c)}function eb(a,b){var c;return b=z(b||"millisecond"),"millisecond"===b?(a=o(a)?a:Aa(a),+this===+a):(c=+Aa(a),+this.clone().startOf(b)<=c&&c<=+this.clone().endOf(b))}function fb(a){return 0>a?Math.ceil(a):Math.floor(a)}function gb(a,b,c){var d,e,f=Ia(a,this),g=6e4*(f.utcOffset()-this.utcOffset());return b=z(b),"year"===b||"month"===b||"quarter"===b?(e=hb(this,f),"quarter"===b?e/=3:"year"===b&&(e/=12)):(d=this-f,e="second"===b?d/1e3:"minute"===b?d/6e4:"hour"===b?d/36e5:"day"===b?(d-g)/864e5:"week"===b?(d-g)/6048e5:d),c?e:fb(e)}function hb(a,b){var c,d,e=12*(b.year()-a.year())+(b.month()-a.month()),f=a.clone().add(e,"months");return 0>b-f?(c=a.clone().add(e-1,"months"),d=(b-f)/(f-c)):(c=a.clone().add(e+1,"months"),d=(b-f)/(c-f)),-(e+d)}function ib(){return this.clone().locale("en").format("ddd MMM DD YYYY HH:mm:ss [GMT]ZZ")}function jb(){var a=this.clone().utc();return 0<a.year()&&a.year()<=9999?"function"==typeof Date.prototype.toISOString?this.toDate().toISOString():J(a,"YYYY-MM-DD[T]HH:mm:ss.SSS[Z]"):J(a,"YYYYYY-MM-DD[T]HH:mm:ss.SSS[Z]")}function kb(b){var c=J(this,b||a.defaultFormat);return this.localeData().postformat(c)}function lb(a,b){return this.isValid()?Va({to:this,from:a}).locale(this.locale()).humanize(!b):this.localeData().invalidDate()}function mb(a){return this.from(Aa(),a)}function nb(a,b){return this.isValid()?Va({from:this,to:a}).locale(this.locale()).humanize(!b):this.localeData().invalidDate()}function ob(a){return this.to(Aa(),a)}function pb(a){var b;return void 0===a?this._locale._abbr:(b=x(a),null!=b&&(this._locale=b),this)}function qb(){return this._locale}function rb(a){switch(a=z(a)){case"year":this.month(0);case"quarter":case"month":this.date(1);case"week":case"isoWeek":case"day":this.hours(0);case"hour":this.minutes(0);case"minute":this.seconds(0);case"second":this.milliseconds(0)}return"week"===a&&this.weekday(0),"isoWeek"===a&&this.isoWeekday(1),"quarter"===a&&this.month(3*Math.floor(this.month()/3)),this}function sb(a){return a=z(a),void 0===a||"millisecond"===a?this:this.startOf(a).add(1,"isoWeek"===a?"week":a).subtract(1,"ms")}function tb(){return+this._d-6e4*(this._offset||0)}function ub(){return Math.floor(+this/1e3)}function vb(){return this._offset?new Date(+this):this._d}function wb(){var a=this;return[a.year(),a.month(),a.date(),a.hour(),a.minute(),a.second(),a.millisecond()]}function xb(){return k(this)}function yb(){return g({},j(this))}function zb(){return j(this).overflow}function Ab(a,b){G(0,[a,a.length],0,b)}function Bb(a,b,c){return ha(Aa([a,11,31+b-c]),b,c).week}function Cb(a){var b=ha(this,this.localeData()._week.dow,this.localeData()._week.doy).year;return null==a?b:this.add(a-b,"y")}function Db(a){var b=ha(this,1,4).year;return null==a?b:this.add(a-b,"y")}function Eb(){return Bb(this.year(),1,4)}function Fb(){var a=this.localeData()._week;return Bb(this.year(),a.dow,a.doy)}function Gb(a){return null==a?Math.ceil((this.month()+1)/3):this.month(3*(a-1)+this.month()%3)}function Hb(a,b){if("string"==typeof a)if(isNaN(a)){if(a=b.weekdaysParse(a),"number"!=typeof a)return null}else a=parseInt(a,10);return a}function Ib(a){return this._weekdays[a.day()]}function Jb(a){return this._weekdaysShort[a.day()]}function Kb(a){return this._weekdaysMin[a.day()]}function Lb(a){var b,c,d;for(this._weekdaysParse||(this._weekdaysParse=[]),b=0;7>b;b++)if(this._weekdaysParse[b]||(c=Aa([2e3,1]).day(b),d="^"+this.weekdays(c,"")+"|^"+this.weekdaysShort(c,"")+"|^"+this.weekdaysMin(c,""),this._weekdaysParse[b]=new RegExp(d.replace(".",""),"i")),this._weekdaysParse[b].test(a))return b}function Mb(a){var b=this._isUTC?this._d.getUTCDay():this._d.getDay();return null!=a?(a=Hb(a,this.localeData()),this.add(a-b,"d")):b}function Nb(a){var b=(this.day()+7-this.localeData()._week.dow)%7;return null==a?b:this.add(a-b,"d")}function Ob(a){return null==a?this.day()||7:this.day(this.day()%7?a:a-7)}function Pb(a,b){G(a,0,0,function(){return this.localeData().meridiem(this.hours(),this.minutes(),b)})}function Qb(a,b){return b._meridiemParse}function Rb(a){return"p"===(a+"").toLowerCase().charAt(0)}function Sb(a,b,c){return a>11?c?"pm":"PM":c?"am":"AM"}function Tb(a){G(0,[a,3],0,"millisecond")}function Ub(){return this._isUTC?"UTC":""}function Vb(){return this._isUTC?"Coordinated Universal Time":""}function Wb(a){return Aa(1e3*a)}function Xb(){return Aa.apply(null,arguments).parseZone()}function Yb(a,b,c){var d=this._calendar[a];return"function"==typeof d?d.call(b,c):d}function Zb(a){var b=this._longDateFormat[a];return!b&&this._longDateFormat[a.toUpperCase()]&&(b=this._longDateFormat[a.toUpperCase()].replace(/MMMM|MM|DD|dddd/g,function(a){return a.slice(1)}),this._longDateFormat[a]=b),b}function $b(){return this._invalidDate}function _b(a){return this._ordinal.replace("%d",a)}function ac(a){return a}function bc(a,b,c,d){var e=this._relativeTime[c];return"function"==typeof e?e(a,b,c,d):e.replace(/%d/i,a)}function cc(a,b){var c=this._relativeTime[a>0?"future":"past"];return"function"==typeof c?c(b):c.replace(/%s/i,b)}function dc(a){var b,c;for(c in a)b=a[c],"function"==typeof b?this[c]=b:this["_"+c]=b;this._ordinalParseLenient=new RegExp(this._ordinalParse.source+"|"+/\d{1,2}/.source)}function ec(a,b,c,d){var e=x(),f=h().set(d,b);return e[c](f,a)}function fc(a,b,c,d,e){if("number"==typeof a&&(b=a,a=void 0),a=a||"",null!=b)return ec(a,b,c,e);var f,g=[];for(f=0;d>f;f++)g[f]=ec(a,f,c,e);return g}function gc(a,b){return fc(a,b,"months",12,"month")}function hc(a,b){return fc(a,b,"monthsShort",12,"month")}function ic(a,b){return fc(a,b,"weekdays",7,"day")}function jc(a,b){return fc(a,b,"weekdaysShort",7,"day")}function kc(a,b){return fc(a,b,"weekdaysMin",7,"day")}function lc(){var a=this._data;return this._milliseconds=Rd(this._milliseconds),this._days=Rd(this._days),this._months=Rd(this._months),a.milliseconds=Rd(a.milliseconds),a.seconds=Rd(a.seconds),a.minutes=Rd(a.minutes),a.hours=Rd(a.hours),a.months=Rd(a.months),a.years=Rd(a.years),this}function mc(a,b,c,d){var e=Va(b,c);return a._milliseconds+=d*e._milliseconds,a._days+=d*e._days,a._months+=d*e._months,a._bubble()}function nc(a,b){return mc(this,a,b,1)}function oc(a,b){return mc(this,a,b,-1)}function pc(){var a,b,c,d=this._milliseconds,e=this._days,f=this._months,g=this._data,h=0;return g.milliseconds=d%1e3,a=fb(d/1e3),g.seconds=a%60,b=fb(a/60),g.minutes=b%60,c=fb(b/60),g.hours=c%24,e+=fb(c/24),h=fb(qc(e)),e-=fb(rc(h)),f+=fb(e/30),e%=30,h+=fb(f/12),f%=12,g.days=e,g.months=f,g.years=h,this}function qc(a){return 400*a/146097}function rc(a){return 146097*a/400}function sc(a){var b,c,d=this._milliseconds;if(a=z(a),"month"===a||"year"===a)return b=this._days+d/864e5,c=this._months+12*qc(b),"month"===a?c:c/12;switch(b=this._days+Math.round(rc(this._months/12)),a){case"week":return b/7+d/6048e5;case"day":return b+d/864e5;case"hour":return 24*b+d/36e5;case"minute":return 1440*b+d/6e4;case"second":return 86400*b+d/1e3;case"millisecond":return Math.floor(864e5*b)+d;default:throw new Error("Unknown unit "+a)}}function tc(){return this._milliseconds+864e5*this._days+this._months%12*2592e6+31536e6*p(this._months/12)}function uc(a){return function(){return this.as(a)}}function vc(a){return a=z(a),this[a+"s"]()}function wc(a){return function(){return this._data[a]}}function xc(){return fb(this.days()/7)}function yc(a,b,c,d,e){return e.relativeTime(b||1,!!c,a,d)}function zc(a,b,c){var d=Va(a).abs(),e=fe(d.as("s")),f=fe(d.as("m")),g=fe(d.as("h")),h=fe(d.as("d")),i=fe(d.as("M")),j=fe(d.as("y")),k=e<ge.s&&["s",e]||1===f&&["m"]||f<ge.m&&["mm",f]||1===g&&["h"]||g<ge.h&&["hh",g]||1===h&&["d"]||h<ge.d&&["dd",h]||1===i&&["M"]||i<ge.M&&["MM",i]||1===j&&["y"]||["yy",j];return k[2]=b,k[3]=+a>0,k[4]=c,yc.apply(null,k)}function Ac(a,b){return void 0===ge[a]?!1:void 0===b?ge[a]:(ge[a]=b,!0)}function Bc(a){var b=this.localeData(),c=zc(this,!a,b);return a&&(c=b.pastFuture(+this,c)),b.postformat(c)}function Cc(){var a=he(this.years()),b=he(this.months()),c=he(this.days()),d=he(this.hours()),e=he(this.minutes()),f=he(this.seconds()+this.milliseconds()/1e3),g=this.asSeconds();return g?(0>g?"-":"")+"P"+(a?a+"Y":"")+(b?b+"M":"")+(c?c+"D":"")+(d||e||f?"T":"")+(d?d+"H":"")+(e?e+"M":"")+(f?f+"S":""):"P0D"}var Dc,Ec,Fc=a.momentProperties=[],Gc=!1,Hc={},Ic={},Jc=/(\[[^\[]*\])|(\\)?(Mo|MM?M?M?|Do|DDDo|DD?D?D?|ddd?d?|do?|w[o|w]?|W[o|W]?|Q|YYYYYY|YYYYY|YYYY|YY|gg(ggg?)?|GG(GGG?)?|e|E|a|A|hh?|HH?|mm?|ss?|S{1,4}|x|X|zz?|ZZ?|.)/g,Kc=/(\[[^\[]*\])|(\\)?(LTS|LT|LL?L?L?|l{1,4})/g,Lc={},Mc={},Nc=/\d/,Oc=/\d\d/,Pc=/\d{3}/,Qc=/\d{4}/,Rc=/[+-]?\d{6}/,Sc=/\d\d?/,Tc=/\d{1,3}/,Uc=/\d{1,4}/,Vc=/[+-]?\d{1,6}/,Wc=/\d+/,Xc=/[+-]?\d+/,Yc=/Z|[+-]\d\d:?\d\d/gi,Zc=/[+-]?\d+(\.\d{1,3})?/,$c=/[0-9]*['a-z\u00A0-\u05FF\u0700-\uD7FF\uF900-\uFDCF\uFDF0-\uFFEF]+|[\u0600-\u06FF\/]+(\s*?[\u0600-\u06FF]+){1,2}/i,_c={},ad={},bd=0,cd=1,dd=2,ed=3,fd=4,gd=5,hd=6;G("M",["MM",2],"Mo",function(){return this.month()+1}),G("MMM",0,0,function(a){return this.localeData().monthsShort(this,a)}),G("MMMM",0,0,function(a){return this.localeData().months(this,a)}),y("month","M"),L("M",Sc),L("MM",Sc,Oc),L("MMM",$c),L("MMMM",$c),O(["M","MM"],function(a,b){b[cd]=p(a)-1}),O(["MMM","MMMM"],function(a,b,c,d){var e=c._locale.monthsParse(a,d,c._strict);null!=e?b[cd]=e:j(c).invalidMonth=a});var id="January_February_March_April_May_June_July_August_September_October_November_December".split("_"),jd="Jan_Feb_Mar_Apr_May_Jun_Jul_Aug_Sep_Oct_Nov_Dec".split("_"),kd={};a.suppressDeprecationWarnings=!1;var ld=/^\s*(?:[+-]\d{6}|\d{4})-(?:(\d\d-\d\d)|(W\d\d$)|(W\d\d-\d)|(\d\d\d))((T| )(\d\d(:\d\d(:\d\d(\.\d+)?)?)?)?([\+\-]\d\d(?::?\d\d)?|\s*Z)?)?$/,md=[["YYYYYY-MM-DD",/[+-]\d{6}-\d{2}-\d{2}/],["YYYY-MM-DD",/\d{4}-\d{2}-\d{2}/],["GGGG-[W]WW-E",/\d{4}-W\d{2}-\d/],["GGGG-[W]WW",/\d{4}-W\d{2}/],["YYYY-DDD",/\d{4}-\d{3}/]],nd=[["HH:mm:ss.SSSS",/(T| )\d\d:\d\d:\d\d\.\d+/],["HH:mm:ss",/(T| )\d\d:\d\d:\d\d/],["HH:mm",/(T| )\d\d:\d\d/],["HH",/(T| )\d\d/]],od=/^\/?Date\((\-?\d+)/i;a.createFromInputFallback=$("moment construction falls back to js Date. This is discouraged and will be removed in upcoming major release. Please refer to https://github.com/moment/moment/issues/1407 for more info.",function(a){a._d=new Date(a._i+(a._useUTC?" UTC":""))}),G(0,["YY",2],0,function(){return this.year()%100}),G(0,["YYYY",4],0,"year"),G(0,["YYYYY",5],0,"year"),G(0,["YYYYYY",6,!0],0,"year"),y("year","y"),L("Y",Xc),L("YY",Sc,Oc),L("YYYY",Uc,Qc),L("YYYYY",Vc,Rc),L("YYYYYY",Vc,Rc),O(["YYYY","YYYYY","YYYYYY"],bd),O("YY",function(b,c){c[bd]=a.parseTwoDigitYear(b)}),a.parseTwoDigitYear=function(a){return p(a)+(p(a)>68?1900:2e3)};var pd=B("FullYear",!1);G("w",["ww",2],"wo","week"),G("W",["WW",2],"Wo","isoWeek"),y("week","w"),y("isoWeek","W"),L("w",Sc),L("ww",Sc,Oc),L("W",Sc),L("WW",Sc,Oc),P(["w","ww","W","WW"],function(a,b,c,d){b[d.substr(0,1)]=p(a)});var qd={dow:0,doy:6};G("DDD",["DDDD",3],"DDDo","dayOfYear"),y("dayOfYear","DDD"),L("DDD",Tc),L("DDDD",Pc),O(["DDD","DDDD"],function(a,b,c){c._dayOfYear=p(a)}),a.ISO_8601=function(){};var rd=$("moment().min is deprecated, use moment.min instead. https://github.com/moment/moment/issues/1548",function(){var a=Aa.apply(null,arguments);return this>a?this:a}),sd=$("moment().max is deprecated, use moment.max instead. https://github.com/moment/moment/issues/1548",function(){var a=Aa.apply(null,arguments);return a>this?this:a});Ga("Z",":"),Ga("ZZ",""),L("Z",Yc),L("ZZ",Yc),O(["Z","ZZ"],function(a,b,c){c._useUTC=!0,c._tzm=Ha(a)});var td=/([\+\-]|\d\d)/gi;a.updateOffset=function(){};var ud=/(\-)?(?:(\d*)\.)?(\d+)\:(\d+)(?:\:(\d+)\.?(\d{3})?)?/,vd=/^(-)?P(?:(?:([0-9,.]*)Y)?(?:([0-9,.]*)M)?(?:([0-9,.]*)D)?(?:T(?:([0-9,.]*)H)?(?:([0-9,.]*)M)?(?:([0-9,.]*)S)?)?|([0-9,.]*)W)$/;Va.fn=Ea.prototype;var wd=Za(1,"add"),xd=Za(-1,"subtract");a.defaultFormat="YYYY-MM-DDTHH:mm:ssZ";var yd=$("moment().lang() is deprecated. Instead, use moment().localeData() to get the language configuration. Use moment().locale() to change languages.",function(a){return void 0===a?this.localeData():this.locale(a)});G(0,["gg",2],0,function(){return this.weekYear()%100}),G(0,["GG",2],0,function(){return this.isoWeekYear()%100}),Ab("gggg","weekYear"),Ab("ggggg","weekYear"),Ab("GGGG","isoWeekYear"),Ab("GGGGG","isoWeekYear"),y("weekYear","gg"),y("isoWeekYear","GG"),L("G",Xc),L("g",Xc),L("GG",Sc,Oc),L("gg",Sc,Oc),L("GGGG",Uc,Qc),L("gggg",Uc,Qc),L("GGGGG",Vc,Rc),L("ggggg",Vc,Rc),P(["gggg","ggggg","GGGG","GGGGG"],function(a,b,c,d){b[d.substr(0,2)]=p(a)}),P(["gg","GG"],function(b,c,d,e){c[e]=a.parseTwoDigitYear(b)}),G("Q",0,0,"quarter"),y("quarter","Q"),L("Q",Nc),O("Q",function(a,b){b[cd]=3*(p(a)-1)}),G("D",["DD",2],"Do","date"),y("date","D"),L("D",Sc),L("DD",Sc,Oc),L("Do",function(a,b){return a?b._ordinalParse:b._ordinalParseLenient}),O(["D","DD"],dd),O("Do",function(a,b){b[dd]=p(a.match(Sc)[0],10)});var zd=B("Date",!0);G("d",0,"do","day"),G("dd",0,0,function(a){return this.localeData().weekdaysMin(this,a)}),G("ddd",0,0,function(a){return this.localeData().weekdaysShort(this,a)}),G("dddd",0,0,function(a){return this.localeData().weekdays(this,a)}),G("e",0,0,"weekday"),G("E",0,0,"isoWeekday"),y("day","d"),y("weekday","e"),y("isoWeekday","E"),L("d",Sc),L("e",Sc),L("E",Sc),L("dd",$c),L("ddd",$c),L("dddd",$c),P(["dd","ddd","dddd"],function(a,b,c){var d=c._locale.weekdaysParse(a);null!=d?b.d=d:j(c).invalidWeekday=a}),P(["d","e","E"],function(a,b,c,d){b[d]=p(a)});var Ad="Sunday_Monday_Tuesday_Wednesday_Thursday_Friday_Saturday".split("_"),Bd="Sun_Mon_Tue_Wed_Thu_Fri_Sat".split("_"),Cd="Su_Mo_Tu_We_Th_Fr_Sa".split("_");G("H",["HH",2],0,"hour"),G("h",["hh",2],0,function(){return this.hours()%12||12}),Pb("a",!0),Pb("A",!1),y("hour","h"),L("a",Qb),L("A",Qb),L("H",Sc),L("h",Sc),L("HH",Sc,Oc),L("hh",Sc,Oc),O(["H","HH"],ed),O(["a","A"],function(a,b,c){c._isPm=c._locale.isPM(a),c._meridiem=a}),O(["h","hh"],function(a,b,c){b[ed]=p(a),j(c).bigHour=!0});var Dd=/[ap]\.?m?\.?/i,Ed=B("Hours",!0);G("m",["mm",2],0,"minute"),y("minute","m"),L("m",Sc),L("mm",Sc,Oc),O(["m","mm"],fd);var Fd=B("Minutes",!1);G("s",["ss",2],0,"second"),y("second","s"),L("s",Sc),L("ss",Sc,Oc),O(["s","ss"],gd);var Gd=B("Seconds",!1);G("S",0,0,function(){return~~(this.millisecond()/100)}),G(0,["SS",2],0,function(){return~~(this.millisecond()/10)}),Tb("SSS"),Tb("SSSS"),y("millisecond","ms"),L("S",Tc,Nc),L("SS",Tc,Oc),L("SSS",Tc,Pc),L("SSSS",Wc),O(["S","SS","SSS","SSSS"],function(a,b){b[hd]=p(1e3*("0."+a))});var Hd=B("Milliseconds",!1);G("z",0,0,"zoneAbbr"),G("zz",0,0,"zoneName");var Id=n.prototype;Id.add=wd,Id.calendar=_a,Id.clone=ab,Id.diff=gb,Id.endOf=sb,Id.format=kb,Id.from=lb,Id.fromNow=mb,Id.to=nb,Id.toNow=ob,Id.get=E,Id.invalidAt=zb,Id.isAfter=bb,Id.isBefore=cb,Id.isBetween=db,Id.isSame=eb,Id.isValid=xb,Id.lang=yd,Id.locale=pb,Id.localeData=qb,Id.max=sd,Id.min=rd,Id.parsingFlags=yb,Id.set=E,Id.startOf=rb,Id.subtract=xd,Id.toArray=wb,Id.toDate=vb,Id.toISOString=jb,Id.toJSON=jb,Id.toString=ib,Id.unix=ub,Id.valueOf=tb,Id.year=pd,Id.isLeapYear=ga,Id.weekYear=Cb,Id.isoWeekYear=Db,Id.quarter=Id.quarters=Gb,Id.month=W,Id.daysInMonth=X,Id.week=Id.weeks=la,Id.isoWeek=Id.isoWeeks=ma,Id.weeksInYear=Fb,Id.isoWeeksInYear=Eb,Id.date=zd,Id.day=Id.days=Mb,Id.weekday=Nb,Id.isoWeekday=Ob,Id.dayOfYear=oa,Id.hour=Id.hours=Ed,Id.minute=Id.minutes=Fd,Id.second=Id.seconds=Gd,Id.millisecond=Id.milliseconds=Hd,Id.utcOffset=Ka,Id.utc=Ma,Id.local=Na,Id.parseZone=Oa,Id.hasAlignedHourOffset=Pa,Id.isDST=Qa,Id.isDSTShifted=Ra,Id.isLocal=Sa,Id.isUtcOffset=Ta,Id.isUtc=Ua,Id.isUTC=Ua,Id.zoneAbbr=Ub,Id.zoneName=Vb,Id.dates=$("dates accessor is deprecated. Use date instead.",zd),Id.months=$("months accessor is deprecated. Use month instead",W),Id.years=$("years accessor is deprecated. Use year instead",pd),Id.zone=$("moment().zone is deprecated, use moment().utcOffset instead. https://github.com/moment/moment/issues/1779",La);var Jd=Id,Kd={sameDay:"[Today at] LT",nextDay:"[Tomorrow at] LT",nextWeek:"dddd [at] LT",lastDay:"[Yesterday at] LT",lastWeek:"[Last] dddd [at] LT",sameElse:"L"},Ld={LTS:"h:mm:ss A",LT:"h:mm A",L:"MM/DD/YYYY",LL:"MMMM D, YYYY",LLL:"MMMM D, YYYY LT",LLLL:"dddd, MMMM D, YYYY LT"},Md="Invalid date",Nd="%d",Od=/\d{1,2}/,Pd={future:"in %s",past:"%s ago",s:"a few seconds",m:"a minute",mm:"%d minutes",h:"an hour",
-hh:"%d hours",d:"a day",dd:"%d days",M:"a month",MM:"%d months",y:"a year",yy:"%d years"},Qd=r.prototype;Qd._calendar=Kd,Qd.calendar=Yb,Qd._longDateFormat=Ld,Qd.longDateFormat=Zb,Qd._invalidDate=Md,Qd.invalidDate=$b,Qd._ordinal=Nd,Qd.ordinal=_b,Qd._ordinalParse=Od,Qd.preparse=ac,Qd.postformat=ac,Qd._relativeTime=Pd,Qd.relativeTime=bc,Qd.pastFuture=cc,Qd.set=dc,Qd.months=S,Qd._months=id,Qd.monthsShort=T,Qd._monthsShort=jd,Qd.monthsParse=U,Qd.week=ia,Qd._week=qd,Qd.firstDayOfYear=ka,Qd.firstDayOfWeek=ja,Qd.weekdays=Ib,Qd._weekdays=Ad,Qd.weekdaysMin=Kb,Qd._weekdaysMin=Cd,Qd.weekdaysShort=Jb,Qd._weekdaysShort=Bd,Qd.weekdaysParse=Lb,Qd.isPM=Rb,Qd._meridiemParse=Dd,Qd.meridiem=Sb,v("en",{ordinalParse:/\d{1,2}(th|st|nd|rd)/,ordinal:function(a){var b=a%10,c=1===p(a%100/10)?"th":1===b?"st":2===b?"nd":3===b?"rd":"th";return a+c}}),a.lang=$("moment.lang is deprecated. Use moment.locale instead.",v),a.langData=$("moment.langData is deprecated. Use moment.localeData instead.",x);var Rd=Math.abs,Sd=uc("ms"),Td=uc("s"),Ud=uc("m"),Vd=uc("h"),Wd=uc("d"),Xd=uc("w"),Yd=uc("M"),Zd=uc("y"),$d=wc("milliseconds"),_d=wc("seconds"),ae=wc("minutes"),be=wc("hours"),ce=wc("days"),de=wc("months"),ee=wc("years"),fe=Math.round,ge={s:45,m:45,h:22,d:26,M:11},he=Math.abs,ie=Ea.prototype;ie.abs=lc,ie.add=nc,ie.subtract=oc,ie.as=sc,ie.asMilliseconds=Sd,ie.asSeconds=Td,ie.asMinutes=Ud,ie.asHours=Vd,ie.asDays=Wd,ie.asWeeks=Xd,ie.asMonths=Yd,ie.asYears=Zd,ie.valueOf=tc,ie._bubble=pc,ie.get=vc,ie.milliseconds=$d,ie.seconds=_d,ie.minutes=ae,ie.hours=be,ie.days=ce,ie.weeks=xc,ie.months=de,ie.years=ee,ie.humanize=Bc,ie.toISOString=Cc,ie.toString=Cc,ie.toJSON=Cc,ie.locale=pb,ie.localeData=qb,ie.toIsoString=$("toIsoString() is deprecated. Please use toISOString() instead (notice the capitals)",Cc),ie.lang=yd,G("X",0,0,"unix"),G("x",0,0,"valueOf"),L("x",Xc),L("X",Zc),O("X",function(a,b,c){c._d=new Date(1e3*parseFloat(a,10))}),O("x",function(a,b,c){c._d=new Date(p(a))}),a.version="2.10.3",b(Aa),a.fn=Jd,a.min=Ca,a.max=Da,a.utc=h,a.unix=Wb,a.months=gc,a.isDate=d,a.locale=v,a.invalid=l,a.duration=Va,a.isMoment=o,a.weekdays=ic,a.parseZone=Xb,a.localeData=x,a.isDuration=Fa,a.monthsShort=hc,a.weekdaysMin=kc,a.defineLocale=w,a.weekdaysShort=jc,a.normalizeUnits=z,a.relativeTimeThreshold=Ac;var je=a;return je});
\ No newline at end of file
+hh:"%d hours",d:"a day",dd:"%d days",M:"a month",MM:"%d months",y:"a year",yy:"%d years"},Qd=r.prototype;Qd._calendar=Kd,Qd.calendar=Yb,Qd._longDateFormat=Ld,Qd.longDateFormat=Zb,Qd._invalidDate=Md,Qd.invalidDate=$b,Qd._ordinal=Nd,Qd.ordinal=_b,Qd._ordinalParse=Od,Qd.preparse=ac,Qd.postformat=ac,Qd._relativeTime=Pd,Qd.relativeTime=bc,Qd.pastFuture=cc,Qd.set=dc,Qd.months=S,Qd._months=id,Qd.monthsShort=T,Qd._monthsShort=jd,Qd.monthsParse=U,Qd.week=ia,Qd._week=qd,Qd.firstDayOfYear=ka,Qd.firstDayOfWeek=ja,Qd.weekdays=Ib,Qd._weekdays=Ad,Qd.weekdaysMin=Kb,Qd._weekdaysMin=Cd,Qd.weekdaysShort=Jb,Qd._weekdaysShort=Bd,Qd.weekdaysParse=Lb,Qd.isPM=Rb,Qd._meridiemParse=Dd,Qd.meridiem=Sb,v("en",{ordinalParse:/\d{1,2}(th|st|nd|rd)/,ordinal:function(a){var b=a%10,c=1===p(a%100/10)?"th":1===b?"st":2===b?"nd":3===b?"rd":"th";return a+c}}),a.lang=$("moment.lang is deprecated. Use moment.locale instead.",v),a.langData=$("moment.langData is deprecated. Use moment.localeData instead.",x);var Rd=Math.abs,Sd=uc("ms"),Td=uc("s"),Ud=uc("m"),Vd=uc("h"),Wd=uc("d"),Xd=uc("w"),Yd=uc("M"),Zd=uc("y"),$d=wc("milliseconds"),_d=wc("seconds"),ae=wc("minutes"),be=wc("hours"),ce=wc("days"),de=wc("months"),ee=wc("years"),fe=Math.round,ge={s:45,m:45,h:22,d:26,M:11},he=Math.abs,ie=Ea.prototype;ie.abs=lc,ie.add=nc,ie.subtract=oc,ie.as=sc,ie.asMilliseconds=Sd,ie.asSeconds=Td,ie.asMinutes=Ud,ie.asHours=Vd,ie.asDays=Wd,ie.asWeeks=Xd,ie.asMonths=Yd,ie.asYears=Zd,ie.valueOf=tc,ie._bubble=pc,ie.get=vc,ie.milliseconds=$d,ie.seconds=_d,ie.minutes=ae,ie.hours=be,ie.days=ce,ie.weeks=xc,ie.months=de,ie.years=ee,ie.humanize=Bc,ie.toISOString=Cc,ie.toString=Cc,ie.toJSON=Cc,ie.locale=pb,ie.localeData=qb,ie.toIsoString=$("toIsoString() is deprecated. Please use toISOString() instead (notice the capitals)",Cc),ie.lang=yd,G("X",0,0,"unix"),G("x",0,0,"valueOf"),L("x",Xc),L("X",Zc),O("X",function(a,b,c){c._d=new Date(1e3*parseFloat(a,10))}),O("x",function(a,b,c){c._d=new Date(p(a))}),a.version="2.10.3",b(Aa),a.fn=Jd,a.min=Ca,a.max=Da,a.utc=h,a.unix=Wb,a.months=gc,a.isDate=d,a.locale=v,a.invalid=l,a.duration=Va,a.isMoment=o,a.weekdays=ic,a.parseZone=Xb,a.localeData=x,a.isDuration=Fa,a.monthsShort=hc,a.weekdaysMin=kc,a.defineLocale=w,a.weekdaysShort=jc,a.normalizeUnits=z,a.relativeTimeThreshold=Ac;var je=a;return je});
diff --git a/web/static/js/pako_inflate.min.js b/web/static/js/pako_inflate.min.js
new file mode 100644
index 00000000000..7b3b98558f1
--- /dev/null
+++ b/web/static/js/pako_inflate.min.js
@@ -0,0 +1,2 @@
+/*! pako 2.1.0 https://github.com/nodeca/pako @license (MIT AND Zlib) */
+!function(e,t){"object"==typeof exports&&"undefined"!=typeof module?t(exports):"function"==typeof define&&define.amd?define(["exports"],t):t((e="undefined"!=typeof globalThis?globalThis:e||self).pako={})}(this,(function(e){"use strict";var t=(e,t,i,n)=>{let a=65535&e|0,r=e>>>16&65535|0,o=0;for(;0!==i;){o=i>2e3?2e3:i,i-=o;do{a=a+t[n++]|0,r=r+a|0}while(--o);a%=65521,r%=65521}return a|r<<16|0};const i=new Uint32Array((()=>{let e,t=[];for(var i=0;i<256;i++){e=i;for(var n=0;n<8;n++)e=1&e?3988292384^e>>>1:e>>>1;t[i]=e}return t})());var n=(e,t,n,a)=>{const r=i,o=a+n;e^=-1;for(let i=a;i<o;i++)e=e>>>8^r[255&(e^t[i])];return-1^e};const a=16209;var r=function(e,t){let i,n,r,o,s,l,d,f,c,h,u,w,b,m,k,_,g,p,v,x,y,E,R,A;const Z=e.state;i=e.next_in,R=e.input,n=i+(e.avail_in-5),r=e.next_out,A=e.output,o=r-(t-e.avail_out),s=r+(e.avail_out-257),l=Z.dmax,d=Z.wsize,f=Z.whave,c=Z.wnext,h=Z.window,u=Z.hold,w=Z.bits,b=Z.lencode,m=Z.distcode,k=(1<<Z.lenbits)-1,_=(1<<Z.distbits)-1;e:do{w<15&&(u+=R[i++]<<w,w+=8,u+=R[i++]<<w,w+=8),g=b[u&k];t:for(;;){if(p=g>>>24,u>>>=p,w-=p,p=g>>>16&255,0===p)A[r++]=65535&g;else{if(!(16&p)){if(0==(64&p)){g=b[(65535&g)+(u&(1<<p)-1)];continue t}if(32&p){Z.mode=16191;break e}e.msg="invalid literal/length code",Z.mode=a;break e}v=65535&g,p&=15,p&&(w<p&&(u+=R[i++]<<w,w+=8),v+=u&(1<<p)-1,u>>>=p,w-=p),w<15&&(u+=R[i++]<<w,w+=8,u+=R[i++]<<w,w+=8),g=m[u&_];i:for(;;){if(p=g>>>24,u>>>=p,w-=p,p=g>>>16&255,!(16&p)){if(0==(64&p)){g=m[(65535&g)+(u&(1<<p)-1)];continue i}e.msg="invalid distance code",Z.mode=a;break e}if(x=65535&g,p&=15,w<p&&(u+=R[i++]<<w,w+=8,w<p&&(u+=R[i++]<<w,w+=8)),x+=u&(1<<p)-1,x>l){e.msg="invalid distance too far back",Z.mode=a;break e}if(u>>>=p,w-=p,p=r-o,x>p){if(p=x-p,p>f&&Z.sane){e.msg="invalid distance too far back",Z.mode=a;break e}if(y=0,E=h,0===c){if(y+=d-p,p<v){v-=p;do{A[r++]=h[y++]}while(--p);y=r-x,E=A}}else if(c<p){if(y+=d+c-p,p-=c,p<v){v-=p;do{A[r++]=h[y++]}while(--p);if(y=0,c<v){p=c,v-=p;do{A[r++]=h[y++]}while(--p);y=r-x,E=A}}}else if(y+=c-p,p<v){v-=p;do{A[r++]=h[y++]}while(--p);y=r-x,E=A}for(;v>2;)A[r++]=E[y++],A[r++]=E[y++],A[r++]=E[y++],v-=3;v&&(A[r++]=E[y++],v>1&&(A[r++]=E[y++]))}else{y=r-x;do{A[r++]=A[y++],A[r++]=A[y++],A[r++]=A[y++],v-=3}while(v>2);v&&(A[r++]=A[y++],v>1&&(A[r++]=A[y++]))}break}}break}}while(i<n&&r<s);v=w>>3,i-=v,w-=v<<3,u&=(1<<w)-1,e.next_in=i,e.next_out=r,e.avail_in=i<n?n-i+5:5-(i-n),e.avail_out=r<s?s-r+257:257-(r-s),Z.hold=u,Z.bits=w};const o=15,s=new Uint16Array([3,4,5,6,7,8,9,10,11,13,15,17,19,23,27,31,35,43,51,59,67,83,99,115,131,163,195,227,258,0,0]),l=new Uint8Array([16,16,16,16,16,16,16,16,17,17,17,17,18,18,18,18,19,19,19,19,20,20,20,20,21,21,21,21,16,72,78]),d=new Uint16Array([1,2,3,4,5,7,9,13,17,25,33,49,65,97,129,193,257,385,513,769,1025,1537,2049,3073,4097,6145,8193,12289,16385,24577,0,0]),f=new Uint8Array([16,16,16,16,17,17,18,18,19,19,20,20,21,21,22,22,23,23,24,24,25,25,26,26,27,27,28,28,29,29,64,64]);var c=(e,t,i,n,a,r,c,h)=>{const u=h.bits;let w,b,m,k,_,g,p=0,v=0,x=0,y=0,E=0,R=0,A=0,Z=0,S=0,T=0,O=null;const U=new Uint16Array(16),D=new Uint16Array(16);let I,B,N,C=null;for(p=0;p<=o;p++)U[p]=0;for(v=0;v<n;v++)U[t[i+v]]++;for(E=u,y=o;y>=1&&0===U[y];y--);if(E>y&&(E=y),0===y)return a[r++]=20971520,a[r++]=20971520,h.bits=1,0;for(x=1;x<y&&0===U[x];x++);for(E<x&&(E=x),Z=1,p=1;p<=o;p++)if(Z<<=1,Z-=U[p],Z<0)return-1;if(Z>0&&(0===e||1!==y))return-1;for(D[1]=0,p=1;p<o;p++)D[p+1]=D[p]+U[p];for(v=0;v<n;v++)0!==t[i+v]&&(c[D[t[i+v]]++]=v);if(0===e?(O=C=c,g=20):1===e?(O=s,C=l,g=257):(O=d,C=f,g=0),T=0,v=0,p=x,_=r,R=E,A=0,m=-1,S=1<<E,k=S-1,1===e&&S>852||2===e&&S>592)return 1;for(;;){I=p-A,c[v]+1<g?(B=0,N=c[v]):c[v]>=g?(B=C[c[v]-g],N=O[c[v]-g]):(B=96,N=0),w=1<<p-A,b=1<<R,x=b;do{b-=w,a[_+(T>>A)+b]=I<<24|B<<16|N|0}while(0!==b);for(w=1<<p-1;T&w;)w>>=1;if(0!==w?(T&=w-1,T+=w):T=0,v++,0==--U[p]){if(p===y)break;p=t[i+c[v]]}if(p>E&&(T&k)!==m){for(0===A&&(A=E),_+=x,R=p-A,Z=1<<R;R+A<y&&(Z-=U[R+A],!(Z<=0));)R++,Z<<=1;if(S+=1<<R,1===e&&S>852||2===e&&S>592)return 1;m=T&k,a[m]=E<<24|R<<16|_-r|0}}return 0!==T&&(a[_+T]=p-A<<24|64<<16|0),h.bits=E,0},h={Z_NO_FLUSH:0,Z_PARTIAL_FLUSH:1,Z_SYNC_FLUSH:2,Z_FULL_FLUSH:3,Z_FINISH:4,Z_BLOCK:5,Z_TREES:6,Z_OK:0,Z_STREAM_END:1,Z_NEED_DICT:2,Z_ERRNO:-1,Z_STREAM_ERROR:-2,Z_DATA_ERROR:-3,Z_MEM_ERROR:-4,Z_BUF_ERROR:-5,Z_NO_COMPRESSION:0,Z_BEST_SPEED:1,Z_BEST_COMPRESSION:9,Z_DEFAULT_COMPRESSION:-1,Z_FILTERED:1,Z_HUFFMAN_ONLY:2,Z_RLE:3,Z_FIXED:4,Z_DEFAULT_STRATEGY:0,Z_BINARY:0,Z_TEXT:1,Z_UNKNOWN:2,Z_DEFLATED:8};const{Z_FINISH:u,Z_BLOCK:w,Z_TREES:b,Z_OK:m,Z_STREAM_END:k,Z_NEED_DICT:_,Z_STREAM_ERROR:g,Z_DATA_ERROR:p,Z_MEM_ERROR:v,Z_BUF_ERROR:x,Z_DEFLATED:y}=h,E=16180,R=16190,A=16191,Z=16192,S=16194,T=16199,O=16200,U=16206,D=16209,I=e=>(e>>>24&255)+(e>>>8&65280)+((65280&e)<<8)+((255&e)<<24);function B(){this.strm=null,this.mode=0,this.last=!1,this.wrap=0,this.havedict=!1,this.flags=0,this.dmax=0,this.check=0,this.total=0,this.head=null,this.wbits=0,this.wsize=0,this.whave=0,this.wnext=0,this.window=null,this.hold=0,this.bits=0,this.length=0,this.offset=0,this.extra=0,this.lencode=null,this.distcode=null,this.lenbits=0,this.distbits=0,this.ncode=0,this.nlen=0,this.ndist=0,this.have=0,this.next=null,this.lens=new Uint16Array(320),this.work=new Uint16Array(288),this.lendyn=null,this.distdyn=null,this.sane=0,this.back=0,this.was=0}const N=e=>{if(!e)return 1;const t=e.state;return!t||t.strm!==e||t.mode<E||t.mode>16211?1:0},C=e=>{if(N(e))return g;const t=e.state;return e.total_in=e.total_out=t.total=0,e.msg="",t.wrap&&(e.adler=1&t.wrap),t.mode=E,t.last=0,t.havedict=0,t.flags=-1,t.dmax=32768,t.head=null,t.hold=0,t.bits=0,t.lencode=t.lendyn=new Int32Array(852),t.distcode=t.distdyn=new Int32Array(592),t.sane=1,t.back=-1,m},z=e=>{if(N(e))return g;const t=e.state;return t.wsize=0,t.whave=0,t.wnext=0,C(e)},F=(e,t)=>{let i;if(N(e))return g;const n=e.state;return t<0?(i=0,t=-t):(i=5+(t>>4),t<48&&(t&=15)),t&&(t<8||t>15)?g:(null!==n.window&&n.wbits!==t&&(n.window=null),n.wrap=i,n.wbits=t,z(e))},L=(e,t)=>{if(!e)return g;const i=new B;e.state=i,i.strm=e,i.window=null,i.mode=E;const n=F(e,t);return n!==m&&(e.state=null),n};let M,H,j=!0;const K=e=>{if(j){M=new Int32Array(512),H=new Int32Array(32);let t=0;for(;t<144;)e.lens[t++]=8;for(;t<256;)e.lens[t++]=9;for(;t<280;)e.lens[t++]=7;for(;t<288;)e.lens[t++]=8;for(c(1,e.lens,0,288,M,0,e.work,{bits:9}),t=0;t<32;)e.lens[t++]=5;c(2,e.lens,0,32,H,0,e.work,{bits:5}),j=!1}e.lencode=M,e.lenbits=9,e.distcode=H,e.distbits=5},P=(e,t,i,n)=>{let a;const r=e.state;return null===r.window&&(r.wsize=1<<r.wbits,r.wnext=0,r.whave=0,r.window=new Uint8Array(r.wsize)),n>=r.wsize?(r.window.set(t.subarray(i-r.wsize,i),0),r.wnext=0,r.whave=r.wsize):(a=r.wsize-r.wnext,a>n&&(a=n),r.window.set(t.subarray(i-n,i-n+a),r.wnext),(n-=a)?(r.window.set(t.subarray(i-n,i),0),r.wnext=n,r.whave=r.wsize):(r.wnext+=a,r.wnext===r.wsize&&(r.wnext=0),r.whave<r.wsize&&(r.whave+=a))),0};var Y={inflateReset:z,inflateReset2:F,inflateResetKeep:C,inflateInit:e=>L(e,15),inflateInit2:L,inflate:(e,i)=>{let a,o,s,l,d,f,h,B,C,z,F,L,M,H,j,Y,G,X,W,q,J,Q,V=0;const $=new Uint8Array(4);let ee,te;const ie=new Uint8Array([16,17,18,0,8,7,9,6,10,5,11,4,12,3,13,2,14,1,15]);if(N(e)||!e.output||!e.input&&0!==e.avail_in)return g;a=e.state,a.mode===A&&(a.mode=Z),d=e.next_out,s=e.output,h=e.avail_out,l=e.next_in,o=e.input,f=e.avail_in,B=a.hold,C=a.bits,z=f,F=h,Q=m;e:for(;;)switch(a.mode){case E:if(0===a.wrap){a.mode=Z;break}for(;C<16;){if(0===f)break e;f--,B+=o[l++]<<C,C+=8}if(2&a.wrap&&35615===B){0===a.wbits&&(a.wbits=15),a.check=0,$[0]=255&B,$[1]=B>>>8&255,a.check=n(a.check,$,2,0),B=0,C=0,a.mode=16181;break}if(a.head&&(a.head.done=!1),!(1&a.wrap)||(((255&B)<<8)+(B>>8))%31){e.msg="incorrect header check",a.mode=D;break}if((15&B)!==y){e.msg="unknown compression method",a.mode=D;break}if(B>>>=4,C-=4,J=8+(15&B),0===a.wbits&&(a.wbits=J),J>15||J>a.wbits){e.msg="invalid window size",a.mode=D;break}a.dmax=1<<a.wbits,a.flags=0,e.adler=a.check=1,a.mode=512&B?16189:A,B=0,C=0;break;case 16181:for(;C<16;){if(0===f)break e;f--,B+=o[l++]<<C,C+=8}if(a.flags=B,(255&a.flags)!==y){e.msg="unknown compression method",a.mode=D;break}if(57344&a.flags){e.msg="unknown header flags set",a.mode=D;break}a.head&&(a.head.text=B>>8&1),512&a.flags&&4&a.wrap&&($[0]=255&B,$[1]=B>>>8&255,a.check=n(a.check,$,2,0)),B=0,C=0,a.mode=16182;case 16182:for(;C<32;){if(0===f)break e;f--,B+=o[l++]<<C,C+=8}a.head&&(a.head.time=B),512&a.flags&&4&a.wrap&&($[0]=255&B,$[1]=B>>>8&255,$[2]=B>>>16&255,$[3]=B>>>24&255,a.check=n(a.check,$,4,0)),B=0,C=0,a.mode=16183;case 16183:for(;C<16;){if(0===f)break e;f--,B+=o[l++]<<C,C+=8}a.head&&(a.head.xflags=255&B,a.head.os=B>>8),512&a.flags&&4&a.wrap&&($[0]=255&B,$[1]=B>>>8&255,a.check=n(a.check,$,2,0)),B=0,C=0,a.mode=16184;case 16184:if(1024&a.flags){for(;C<16;){if(0===f)break e;f--,B+=o[l++]<<C,C+=8}a.length=B,a.head&&(a.head.extra_len=B),512&a.flags&&4&a.wrap&&($[0]=255&B,$[1]=B>>>8&255,a.check=n(a.check,$,2,0)),B=0,C=0}else a.head&&(a.head.extra=null);a.mode=16185;case 16185:if(1024&a.flags&&(L=a.length,L>f&&(L=f),L&&(a.head&&(J=a.head.extra_len-a.length,a.head.extra||(a.head.extra=new Uint8Array(a.head.extra_len)),a.head.extra.set(o.subarray(l,l+L),J)),512&a.flags&&4&a.wrap&&(a.check=n(a.check,o,L,l)),f-=L,l+=L,a.length-=L),a.length))break e;a.length=0,a.mode=16186;case 16186:if(2048&a.flags){if(0===f)break e;L=0;do{J=o[l+L++],a.head&&J&&a.length<65536&&(a.head.name+=String.fromCharCode(J))}while(J&&L<f);if(512&a.flags&&4&a.wrap&&(a.check=n(a.check,o,L,l)),f-=L,l+=L,J)break e}else a.head&&(a.head.name=null);a.length=0,a.mode=16187;case 16187:if(4096&a.flags){if(0===f)break e;L=0;do{J=o[l+L++],a.head&&J&&a.length<65536&&(a.head.comment+=String.fromCharCode(J))}while(J&&L<f);if(512&a.flags&&4&a.wrap&&(a.check=n(a.check,o,L,l)),f-=L,l+=L,J)break e}else a.head&&(a.head.comment=null);a.mode=16188;case 16188:if(512&a.flags){for(;C<16;){if(0===f)break e;f--,B+=o[l++]<<C,C+=8}if(4&a.wrap&&B!==(65535&a.check)){e.msg="header crc mismatch",a.mode=D;break}B=0,C=0}a.head&&(a.head.hcrc=a.flags>>9&1,a.head.done=!0),e.adler=a.check=0,a.mode=A;break;case 16189:for(;C<32;){if(0===f)break e;f--,B+=o[l++]<<C,C+=8}e.adler=a.check=I(B),B=0,C=0,a.mode=R;case R:if(0===a.havedict)return e.next_out=d,e.avail_out=h,e.next_in=l,e.avail_in=f,a.hold=B,a.bits=C,_;e.adler=a.check=1,a.mode=A;case A:if(i===w||i===b)break e;case Z:if(a.last){B>>>=7&C,C-=7&C,a.mode=U;break}for(;C<3;){if(0===f)break e;f--,B+=o[l++]<<C,C+=8}switch(a.last=1&B,B>>>=1,C-=1,3&B){case 0:a.mode=16193;break;case 1:if(K(a),a.mode=T,i===b){B>>>=2,C-=2;break e}break;case 2:a.mode=16196;break;case 3:e.msg="invalid block type",a.mode=D}B>>>=2,C-=2;break;case 16193:for(B>>>=7&C,C-=7&C;C<32;){if(0===f)break e;f--,B+=o[l++]<<C,C+=8}if((65535&B)!=(B>>>16^65535)){e.msg="invalid stored block lengths",a.mode=D;break}if(a.length=65535&B,B=0,C=0,a.mode=S,i===b)break e;case S:a.mode=16195;case 16195:if(L=a.length,L){if(L>f&&(L=f),L>h&&(L=h),0===L)break e;s.set(o.subarray(l,l+L),d),f-=L,l+=L,h-=L,d+=L,a.length-=L;break}a.mode=A;break;case 16196:for(;C<14;){if(0===f)break e;f--,B+=o[l++]<<C,C+=8}if(a.nlen=257+(31&B),B>>>=5,C-=5,a.ndist=1+(31&B),B>>>=5,C-=5,a.ncode=4+(15&B),B>>>=4,C-=4,a.nlen>286||a.ndist>30){e.msg="too many length or distance symbols",a.mode=D;break}a.have=0,a.mode=16197;case 16197:for(;a.have<a.ncode;){for(;C<3;){if(0===f)break e;f--,B+=o[l++]<<C,C+=8}a.lens[ie[a.have++]]=7&B,B>>>=3,C-=3}for(;a.have<19;)a.lens[ie[a.have++]]=0;if(a.lencode=a.lendyn,a.lenbits=7,ee={bits:a.lenbits},Q=c(0,a.lens,0,19,a.lencode,0,a.work,ee),a.lenbits=ee.bits,Q){e.msg="invalid code lengths set",a.mode=D;break}a.have=0,a.mode=16198;case 16198:for(;a.have<a.nlen+a.ndist;){for(;V=a.lencode[B&(1<<a.lenbits)-1],j=V>>>24,Y=V>>>16&255,G=65535&V,!(j<=C);){if(0===f)break e;f--,B+=o[l++]<<C,C+=8}if(G<16)B>>>=j,C-=j,a.lens[a.have++]=G;else{if(16===G){for(te=j+2;C<te;){if(0===f)break e;f--,B+=o[l++]<<C,C+=8}if(B>>>=j,C-=j,0===a.have){e.msg="invalid bit length repeat",a.mode=D;break}J=a.lens[a.have-1],L=3+(3&B),B>>>=2,C-=2}else if(17===G){for(te=j+3;C<te;){if(0===f)break e;f--,B+=o[l++]<<C,C+=8}B>>>=j,C-=j,J=0,L=3+(7&B),B>>>=3,C-=3}else{for(te=j+7;C<te;){if(0===f)break e;f--,B+=o[l++]<<C,C+=8}B>>>=j,C-=j,J=0,L=11+(127&B),B>>>=7,C-=7}if(a.have+L>a.nlen+a.ndist){e.msg="invalid bit length repeat",a.mode=D;break}for(;L--;)a.lens[a.have++]=J}}if(a.mode===D)break;if(0===a.lens[256]){e.msg="invalid code -- missing end-of-block",a.mode=D;break}if(a.lenbits=9,ee={bits:a.lenbits},Q=c(1,a.lens,0,a.nlen,a.lencode,0,a.work,ee),a.lenbits=ee.bits,Q){e.msg="invalid literal/lengths set",a.mode=D;break}if(a.distbits=6,a.distcode=a.distdyn,ee={bits:a.distbits},Q=c(2,a.lens,a.nlen,a.ndist,a.distcode,0,a.work,ee),a.distbits=ee.bits,Q){e.msg="invalid distances set",a.mode=D;break}if(a.mode=T,i===b)break e;case T:a.mode=O;case O:if(f>=6&&h>=258){e.next_out=d,e.avail_out=h,e.next_in=l,e.avail_in=f,a.hold=B,a.bits=C,r(e,F),d=e.next_out,s=e.output,h=e.avail_out,l=e.next_in,o=e.input,f=e.avail_in,B=a.hold,C=a.bits,a.mode===A&&(a.back=-1);break}for(a.back=0;V=a.lencode[B&(1<<a.lenbits)-1],j=V>>>24,Y=V>>>16&255,G=65535&V,!(j<=C);){if(0===f)break e;f--,B+=o[l++]<<C,C+=8}if(Y&&0==(240&Y)){for(X=j,W=Y,q=G;V=a.lencode[q+((B&(1<<X+W)-1)>>X)],j=V>>>24,Y=V>>>16&255,G=65535&V,!(X+j<=C);){if(0===f)break e;f--,B+=o[l++]<<C,C+=8}B>>>=X,C-=X,a.back+=X}if(B>>>=j,C-=j,a.back+=j,a.length=G,0===Y){a.mode=16205;break}if(32&Y){a.back=-1,a.mode=A;break}if(64&Y){e.msg="invalid literal/length code",a.mode=D;break}a.extra=15&Y,a.mode=16201;case 16201:if(a.extra){for(te=a.extra;C<te;){if(0===f)break e;f--,B+=o[l++]<<C,C+=8}a.length+=B&(1<<a.extra)-1,B>>>=a.extra,C-=a.extra,a.back+=a.extra}a.was=a.length,a.mode=16202;case 16202:for(;V=a.distcode[B&(1<<a.distbits)-1],j=V>>>24,Y=V>>>16&255,G=65535&V,!(j<=C);){if(0===f)break e;f--,B+=o[l++]<<C,C+=8}if(0==(240&Y)){for(X=j,W=Y,q=G;V=a.distcode[q+((B&(1<<X+W)-1)>>X)],j=V>>>24,Y=V>>>16&255,G=65535&V,!(X+j<=C);){if(0===f)break e;f--,B+=o[l++]<<C,C+=8}B>>>=X,C-=X,a.back+=X}if(B>>>=j,C-=j,a.back+=j,64&Y){e.msg="invalid distance code",a.mode=D;break}a.offset=G,a.extra=15&Y,a.mode=16203;case 16203:if(a.extra){for(te=a.extra;C<te;){if(0===f)break e;f--,B+=o[l++]<<C,C+=8}a.offset+=B&(1<<a.extra)-1,B>>>=a.extra,C-=a.extra,a.back+=a.extra}if(a.offset>a.dmax){e.msg="invalid distance too far back",a.mode=D;break}a.mode=16204;case 16204:if(0===h)break e;if(L=F-h,a.offset>L){if(L=a.offset-L,L>a.whave&&a.sane){e.msg="invalid distance too far back",a.mode=D;break}L>a.wnext?(L-=a.wnext,M=a.wsize-L):M=a.wnext-L,L>a.length&&(L=a.length),H=a.window}else H=s,M=d-a.offset,L=a.length;L>h&&(L=h),h-=L,a.length-=L;do{s[d++]=H[M++]}while(--L);0===a.length&&(a.mode=O);break;case 16205:if(0===h)break e;s[d++]=a.length,h--,a.mode=O;break;case U:if(a.wrap){for(;C<32;){if(0===f)break e;f--,B|=o[l++]<<C,C+=8}if(F-=h,e.total_out+=F,a.total+=F,4&a.wrap&&F&&(e.adler=a.check=a.flags?n(a.check,s,F,d-F):t(a.check,s,F,d-F)),F=h,4&a.wrap&&(a.flags?B:I(B))!==a.check){e.msg="incorrect data check",a.mode=D;break}B=0,C=0}a.mode=16207;case 16207:if(a.wrap&&a.flags){for(;C<32;){if(0===f)break e;f--,B+=o[l++]<<C,C+=8}if(4&a.wrap&&B!==(4294967295&a.total)){e.msg="incorrect length check",a.mode=D;break}B=0,C=0}a.mode=16208;case 16208:Q=k;break e;case D:Q=p;break e;case 16210:return v;default:return g}return e.next_out=d,e.avail_out=h,e.next_in=l,e.avail_in=f,a.hold=B,a.bits=C,(a.wsize||F!==e.avail_out&&a.mode<D&&(a.mode<U||i!==u))&&P(e,e.output,e.next_out,F-e.avail_out),z-=e.avail_in,F-=e.avail_out,e.total_in+=z,e.total_out+=F,a.total+=F,4&a.wrap&&F&&(e.adler=a.check=a.flags?n(a.check,s,F,e.next_out-F):t(a.check,s,F,e.next_out-F)),e.data_type=a.bits+(a.last?64:0)+(a.mode===A?128:0)+(a.mode===T||a.mode===S?256:0),(0===z&&0===F||i===u)&&Q===m&&(Q=x),Q},inflateEnd:e=>{if(N(e))return g;let t=e.state;return t.window&&(t.window=null),e.state=null,m},inflateGetHeader:(e,t)=>{if(N(e))return g;const i=e.state;return 0==(2&i.wrap)?g:(i.head=t,t.done=!1,m)},inflateSetDictionary:(e,i)=>{const n=i.length;let a,r,o;return N(e)?g:(a=e.state,0!==a.wrap&&a.mode!==R?g:a.mode===R&&(r=1,r=t(r,i,n,0),r!==a.check)?p:(o=P(e,i,n,n),o?(a.mode=16210,v):(a.havedict=1,m)))},inflateInfo:"pako inflate (from Nodeca project)"};const G=(e,t)=>Object.prototype.hasOwnProperty.call(e,t);var X=function(e){const t=Array.prototype.slice.call(arguments,1);for(;t.length;){const i=t.shift();if(i){if("object"!=typeof i)throw new TypeError(i+"must be non-object");for(const t in i)G(i,t)&&(e[t]=i[t])}}return e},W=e=>{let t=0;for(let i=0,n=e.length;i<n;i++)t+=e[i].length;const i=new Uint8Array(t);for(let t=0,n=0,a=e.length;t<a;t++){let a=e[t];i.set(a,n),n+=a.length}return i};let q=!0;try{String.fromCharCode.apply(null,new Uint8Array(1))}catch(e){q=!1}const J=new Uint8Array(256);for(let e=0;e<256;e++)J[e]=e>=252?6:e>=248?5:e>=240?4:e>=224?3:e>=192?2:1;J[254]=J[254]=1;var Q=e=>{if("function"==typeof TextEncoder&&TextEncoder.prototype.encode)return(new TextEncoder).encode(e);let t,i,n,a,r,o=e.length,s=0;for(a=0;a<o;a++)i=e.charCodeAt(a),55296==(64512&i)&&a+1<o&&(n=e.charCodeAt(a+1),56320==(64512&n)&&(i=65536+(i-55296<<10)+(n-56320),a++)),s+=i<128?1:i<2048?2:i<65536?3:4;for(t=new Uint8Array(s),r=0,a=0;r<s;a++)i=e.charCodeAt(a),55296==(64512&i)&&a+1<o&&(n=e.charCodeAt(a+1),56320==(64512&n)&&(i=65536+(i-55296<<10)+(n-56320),a++)),i<128?t[r++]=i:i<2048?(t[r++]=192|i>>>6,t[r++]=128|63&i):i<65536?(t[r++]=224|i>>>12,t[r++]=128|i>>>6&63,t[r++]=128|63&i):(t[r++]=240|i>>>18,t[r++]=128|i>>>12&63,t[r++]=128|i>>>6&63,t[r++]=128|63&i);return t},V=(e,t)=>{const i=t||e.length;if("function"==typeof TextDecoder&&TextDecoder.prototype.decode)return(new TextDecoder).decode(e.subarray(0,t));let n,a;const r=new Array(2*i);for(a=0,n=0;n<i;){let t=e[n++];if(t<128){r[a++]=t;continue}let o=J[t];if(o>4)r[a++]=65533,n+=o-1;else{for(t&=2===o?31:3===o?15:7;o>1&&n<i;)t=t<<6|63&e[n++],o--;o>1?r[a++]=65533:t<65536?r[a++]=t:(t-=65536,r[a++]=55296|t>>10&1023,r[a++]=56320|1023&t)}}return((e,t)=>{if(t<65534&&e.subarray&&q)return String.fromCharCode.apply(null,e.length===t?e:e.subarray(0,t));let i="";for(let n=0;n<t;n++)i+=String.fromCharCode(e[n]);return i})(r,a)},$=(e,t)=>{(t=t||e.length)>e.length&&(t=e.length);let i=t-1;for(;i>=0&&128==(192&e[i]);)i--;return i<0||0===i?t:i+J[e[i]]>t?i:t},ee={2:"need dictionary",1:"stream end",0:"","-1":"file error","-2":"stream error","-3":"data error","-4":"insufficient memory","-5":"buffer error","-6":"incompatible version"};var te=function(){this.input=null,this.next_in=0,this.avail_in=0,this.total_in=0,this.output=null,this.next_out=0,this.avail_out=0,this.total_out=0,this.msg="",this.state=null,this.data_type=2,this.adler=0};var ie=function(){this.text=0,this.time=0,this.xflags=0,this.os=0,this.extra=null,this.extra_len=0,this.name="",this.comment="",this.hcrc=0,this.done=!1};const ne=Object.prototype.toString,{Z_NO_FLUSH:ae,Z_FINISH:re,Z_OK:oe,Z_STREAM_END:se,Z_NEED_DICT:le,Z_STREAM_ERROR:de,Z_DATA_ERROR:fe,Z_MEM_ERROR:ce}=h;function he(e){this.options=X({chunkSize:65536,windowBits:15,to:""},e||{});const t=this.options;t.raw&&t.windowBits>=0&&t.windowBits<16&&(t.windowBits=-t.windowBits,0===t.windowBits&&(t.windowBits=-15)),!(t.windowBits>=0&&t.windowBits<16)||e&&e.windowBits||(t.windowBits+=32),t.windowBits>15&&t.windowBits<48&&0==(15&t.windowBits)&&(t.windowBits|=15),this.err=0,this.msg="",this.ended=!1,this.chunks=[],this.strm=new te,this.strm.avail_out=0;let i=Y.inflateInit2(this.strm,t.windowBits);if(i!==oe)throw new Error(ee[i]);if(this.header=new ie,Y.inflateGetHeader(this.strm,this.header),t.dictionary&&("string"==typeof t.dictionary?t.dictionary=Q(t.dictionary):"[object ArrayBuffer]"===ne.call(t.dictionary)&&(t.dictionary=new Uint8Array(t.dictionary)),t.raw&&(i=Y.inflateSetDictionary(this.strm,t.dictionary),i!==oe)))throw new Error(ee[i])}function ue(e,t){const i=new he(t);if(i.push(e),i.err)throw i.msg||ee[i.err];return i.result}he.prototype.push=function(e,t){const i=this.strm,n=this.options.chunkSize,a=this.options.dictionary;let r,o,s;if(this.ended)return!1;for(o=t===~~t?t:!0===t?re:ae,"[object ArrayBuffer]"===ne.call(e)?i.input=new Uint8Array(e):i.input=e,i.next_in=0,i.avail_in=i.input.length;;){for(0===i.avail_out&&(i.output=new Uint8Array(n),i.next_out=0,i.avail_out=n),r=Y.inflate(i,o),r===le&&a&&(r=Y.inflateSetDictionary(i,a),r===oe?r=Y.inflate(i,o):r===fe&&(r=le));i.avail_in>0&&r===se&&i.state.wrap>0&&0!==e[i.next_in];)Y.inflateReset(i),r=Y.inflate(i,o);switch(r){case de:case fe:case le:case ce:return this.onEnd(r),this.ended=!0,!1}if(s=i.avail_out,i.next_out&&(0===i.avail_out||r===se))if("string"===this.options.to){let e=$(i.output,i.next_out),t=i.next_out-e,a=V(i.output,e);i.next_out=t,i.avail_out=n-t,t&&i.output.set(i.output.subarray(e,e+t),0),this.onData(a)}else this.onData(i.output.length===i.next_out?i.output:i.output.subarray(0,i.next_out));if(r!==oe||0!==s){if(r===se)return r=Y.inflateEnd(this.strm),this.onEnd(r),this.ended=!0,!0;if(0===i.avail_in)break}}return!0},he.prototype.onData=function(e){this.chunks.push(e)},he.prototype.onEnd=function(e){e===oe&&("string"===this.options.to?this.result=this.chunks.join(""):this.result=W(this.chunks)),this.chunks=[],this.err=e,this.msg=this.strm.msg};var we=he,be=ue,me=function(e,t){return(t=t||{}).raw=!0,ue(e,t)},ke=ue,_e=h,ge={Inflate:we,inflate:be,inflateRaw:me,ungzip:ke,constants:_e};e.Inflate=we,e.constants=_e,e.default=ge,e.inflate=be,e.inflateRaw=me,e.ungzip=ke,Object.defineProperty(e,"__esModule",{value:!0})}));
\ No newline at end of file
diff --git a/web/static/webfonts/fa-brands-400.eot b/web/static/webfonts/fa-brands-400.eot
deleted file mode 100644
index 958684e26ab..00000000000
Binary files a/web/static/webfonts/fa-brands-400.eot and /dev/null differ
diff --git a/web/static/webfonts/fa-brands-400.svg b/web/static/webfonts/fa-brands-400.svg
deleted file mode 100644
index 2b7cf17b9a5..00000000000
--- a/web/static/webfonts/fa-brands-400.svg
+++ /dev/null
@@ -1,3717 +0,0 @@
-<?xml version="1.0" standalone="no"?>
-<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN" "http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd" >
-<svg xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" version="1.1">
-<metadata>
-Created by FontForge 20200314 at Mon Oct  5 09:50:45 2020
- By Robert Madole
-Copyright (c) Font Awesome
-</metadata>
-<!-- Font Awesome Free 5.15.1 by @fontawesome - https://fontawesome.com License - https://fontawesome.com/license/free (Icons: CC BY 4.0, Fonts: SIL OFL 1.1, Code: MIT License) --><defs>
-<font id="FontAwesome5Brands-Regular" horiz-adv-x="448" >
-  <font-face 
-    font-family="Font Awesome 5 Brands Regular"
-    font-weight="400"
-    font-stretch="normal"
-    units-per-em="512"
-    panose-1="2 0 5 3 0 0 0 0 0 0"
-    ascent="448"
-    descent="-64"
-    bbox="-0.200195 -66.9505 641.5 448.3"
-    underline-thickness="25"
-    underline-position="-50"
-    unicode-range="U+0020-F8E8"
-  />
-    <missing-glyph />
-    <glyph glyph-name="firefox-browser" unicode="&#xe007;" horiz-adv-x="512" 
-d="M130.63 324.51c0.160156 -0.00976562 0.0800781 -0.00976562 0 0zM482.05 279.16c15.2803 -36.7598 20.6709 -80.748 15.8213 -122.578c-0.370117 -3.15039 -0.700195 -6.29004 -1.11035 -9.41016c-19.6094 -115.04 -119.79 -202.62 -240.43 -202.62
-c-134.71 0 -243.92 109.19 -243.92 243.891v1.23926c0.149414 2.70996 0.30957 5.41016 0.490234 8.12012c0.0498047 0.240234 0.0498047 0.480469 0.0498047 0.719727c0.439453 6.29004 0.870117 10.3105 1.43945 14c0.240234 1.91309 0.5 3.82617 0.780273 5.73926
-c1.66992 12.2705 3.94043 22.21 4 22.4805c5.99219 26.8799 17.3516 52.1084 32.7305 73.8994v0c6.86816 9.79785 14.3965 18.8301 22.7695 27.3301c7.36719 7.53418 15.2451 14.2881 23.8398 20.4307c0.930664 0.629883 8.03027 4.83984 8.15039 4.30957
-c-0.570312 -8.42969 -1.24023 -48.8301 8.42969 -61.0801h0.120117c14.1602 15.9199 33.6504 33.96 58.71 45.3701c-2.38477 -9.13379 -3.64844 -18.6562 -3.64844 -28.5332c0 -10.7832 1.51367 -21.2158 4.33887 -31.0967
-c2.20508 -1.47852 4.29199 -3.05566 6.30957 -4.77051c3.71973 -3.14941 7.91992 -7.34961 16.7705 -16.0596c16.5498 -16.3096 59 -33.1797 59.0898 -35.1797c-0.400391 -6.08008 -21.8301 -27 -29.3301 -27c-69.3701 0 -80.6201 -41.9502 -80.6201 -41.9502
-c3.07031 -35.3301 27.6699 -64.4102 57.5098 -79.75c1.36035 -0.730469 2.74023 -1.37012 4.12012 -2c2.36035 -1.04004 4.74023 -2.02051 7.16016 -2.92969c9.95996 -3.52539 20.6885 -5.66895 31.7402 -6.12012c121.569 -5.7002 145.13 145.34 57.3896 189.199
-c22.4697 3.91016 45.8203 -5.12988 58.8203 -14.2793c-10.374 18.1104 -24.9414 33.167 -42.6602 44.1299c-0.993164 0.620117 -1.99316 1.21973 -3 1.7998c-1.55957 0.913086 -3.13965 1.79004 -4.74023 2.62988c-0.75 0.390625 -1.5 0.759766 -2.25 1.12988
-c-1.65332 0.813477 -3.32031 1.59668 -5.00098 2.34961c-1.07031 0.469727 -2.16016 0.910156 -3.25 1.34961c-1.33984 0.580078 -2.68945 1.08008 -4.0498 1.58008c-1.86035 0.669922 -3.73047 1.2998 -5.62012 1.87012c-0.679688 0.209961 -1.33008 0.429688 -2 0.629883
-c-10.8193 3.12793 -22.2139 4.82422 -34.0352 4.82422c-0.338867 0 -0.676758 -0.00195312 -1.01465 -0.00390625c-2 -0.0205078 -4 -0.100586 -6 -0.220703l-1.41992 -0.0996094c-14.8984 -1.04102 -29.2461 -4.92383 -42.1104 -11l-0.519531 -0.209961
-c-0.625977 -0.21582 -1.29688 -0.335938 -1.99609 -0.335938c-2.68164 0 -4.96289 1.72559 -5.79395 4.12598c-0.246094 0.669922 -0.388672 1.39258 -0.388672 2.14746c0 2.4541 1.41797 4.58008 3.47852 5.60254c14.7295 6.98535 31.1982 11.3564 48.3301 12.3301
-c5.7793 35.3994 28.2695 91.0098 82.5 122.78l-0.100586 -0.140625l0.180664 0.100586l0.120117 0.0693359c0.0732422 0.0195312 0.149414 0.0302734 0.229492 0.0302734c0.0791016 0 0.15625 -0.0107422 0.230469 -0.0302734
-c0.30957 -0.0390625 0.550781 -0.303711 0.550781 -0.624023c0 -0.0117188 -0.000976562 -0.0244141 -0.000976562 -0.0361328c0.84375 -3.34961 2.08887 -6.61523 3.63965 -9.61914c0.830078 -1.70996 1.69043 -3.40039 2.69043 -5.05078
-c1.87988 -3.21973 3.80957 -6.2793 5.73926 -9.33008c38.2002 -60.3594 84.9707 -88.0791 112.551 -156.829c-0.0507812 0.269531 -0.0507812 0.40918 -0.0507812 0.40918c-3.0293 20.1201 -10.9795 47.1104 -24.6992 74
-c16.8594 -8.72949 38.3301 -36.2295 48.9395 -61.7295z" />
-    <glyph glyph-name="ideal" unicode="&#xe013;" horiz-adv-x="576" 
-d="M125.61 282.52c27.0713 -0.0107422 49.0488 -21.9873 49.0596 -49.0596v-0.00976562c0 -27.083 -21.9873 -49.0703 -49.0703 -49.0703c-27.082 0 -49.0693 21.9873 -49.0693 49.0703c0 27.082 21.9873 49.0693 49.0693 49.0693h0.0107422zM86.1504 22.1602v140.52
-h78.9395v-140.52h-78.9395zM237.61 233.76c0 -20.4502 -8.99023 -23.2598 -18.7402 -23.2598h-14.0498v45.79h14.0498c8.74023 0 18.7402 -2.53027 18.7402 -22.5303zM439.3 187.76h57.0898c-1.7793 -98.4795 -52.1094 -165.64 -196.72 -165.64h-94.8301v165.62h14
-c25.9805 0 41.5 17.1895 41.5 46c0 27.9102 -15.8994 45.2598 -41.5 45.2598h-14v82.8096h94.8301c88.9404 0 186.83 -26.8896 196.07 -151.31h-33.6904v68.5703h-22.75v-91.3105zM329.55 187.76l-0.0400391 22.7402h-33.5098v12.5h30v22.6904h-30v10.5791h31.7305v22.7305
-h-54.4307v-91.2402h56.25zM404.21 187.76l23.6699 -0.0195312l-27.5303 91.3398h-32.3496l-27.5303 -91.3203h23.6602l5.17969 17.6699h29.7402zM299.65 416c218.35 0 250.97 -140 251 -223.48c0 -144.789 -89.1504 -224.52 -251 -224.52h-267.65v448h267.65z
-M299.65 -10.9199c148.899 0 229.899 69.3496 229.899 203.439c0 137.801 -87.7998 202.41 -229.899 202.41h-246.58v-405.85h246.58zM383.51 253.93h1.37012l7.52051 -25.8096h-16.4004z" />
-    <glyph glyph-name="microblog" unicode="&#xe01a;" 
-d="M399.36 85.7695l0.149414 0.0605469c-13.5439 -15.3408 -21.7432 -35.5967 -21.7432 -57.6494c0 -19.957 6.73438 -38.3545 18.0537 -53.041c0.589844 -0.745117 0.944336 -1.68652 0.944336 -2.71094c0 -0.311523 -0.0322266 -0.615234 -0.0947266 -0.90918
-c-0.416992 -2.00684 -2.19434 -3.52051 -4.32422 -3.52051c-0.306641 0 -0.606445 0.03125 -0.895508 0.0908203c-32.2803 7.17969 -61.3105 24.8301 -79.8906 49.9199c-1.30566 1.78906 -3.41699 2.94434 -5.7998 2.94434
-c-0.811523 0 -1.5918 -0.135742 -2.31934 -0.383789c-24.7363 -8.66016 -51.3818 -13.4404 -79.0586 -13.4404h-0.381836c-122.86 0 -222.46 91.4805 -222.46 204.43c0 112.95 99.5996 204.44 222.46 204.44s222.46 -91.4902 222.46 -204.44
-c0 -47.4492 -17.6104 -91.0996 -47.0996 -125.79zM329.52 235.6c1.56738 1.18652 2.57324 3.03516 2.57324 5.15039c0 3.57227 -2.88672 6.47461 -6.45312 6.5l-71.8799 1.50977l-23.6602 67.9199c-0.882812 2.54199 -3.29688 4.36914 -6.1377 4.36914
-s-5.25879 -1.82715 -6.1416 -4.36914l-23.6602 -67.9199l-71.8799 -1.50977c-3.5293 -0.0673828 -6.38086 -2.95117 -6.38086 -6.49609c0 -2.11523 1.01367 -3.99707 2.58105 -5.18359l57.2998 -43.4902l-20.79 -68.8604
-c-0.178711 -0.59375 -0.269531 -1.21875 -0.269531 -1.87109c0 -3.59277 2.91699 -6.50977 6.50977 -6.50977c1.37793 0 2.65723 0.429688 3.70996 1.16113l59.0596 41.0801l59.0596 -41.0498c1.05371 -0.735352 2.33984 -1.1709 3.71973 -1.1709
-c3.58789 0 6.5 2.91211 6.5 6.5c0 0.657227 -0.0976562 1.29199 -0.279297 1.89062l-20.7803 68.8604z" />
-    <glyph glyph-name="pied-piper-square" unicode="&#xe01e;" 
-d="M32 29l-32 -60.2002l0.799805 328c0 65.9004 53.2002 119.2 119.2 119.2h327.2c-93 -28.9004 -189.9 -94.2002 -253.9 -168.6c-70.5996 -81.4004 -110.7 -137.4 -161.3 -218.4zM448 416c0 0 0 -328.8 0.0996094 -328.8c0 -65.9004 -53.2998 -119.2 -119.3 -119.2
-h-328.399c18.5 25.5 61.6992 54 84.8994 66c35.5 18.0996 76.4004 28.5 105.3 56.2998c42.1006 40.5 47.8008 105 71 158.601c43.6006 100.3 186.4 167.1 186.4 167.1z" />
-    <glyph glyph-name="unity" unicode="&#xe049;" horiz-adv-x="576" 
-d="M498.11 241.6l-30 -49.5996l30 -49.6299l-52.8008 -191.62l-197.079 51.3604l-29.2402 50l-59.1699 -0.430664l-144.28 140.32l144.26 140.29l59.2002 -0.429688l29.2002 50.0596l197.109 51.3604zM223.77 323.8l-108.899 -108.13h173.13l86.5498 145.82zM223.77 60.1699
-l150.78 -37.6895l-86.5498 145.81h-173.13zM416.77 46.1699l41.79 145.83l-41.8096 145.84l-86.5801 -145.84z" />
-    <glyph glyph-name="dailymotion" unicode="&#xe052;" 
-d="M298.93 181c7.14062 -4 12.9844 -9.85254 16.9727 -17c3.86426 -6.83691 6.10059 -14.7783 6.10059 -23.1865c0 -0.0947266 0 -0.188477 -0.000976562 -0.283203c-0.0332031 -13.6602 -4.58691 -25.084 -13.6602 -34.2705s-20.4434 -13.7793 -34.1104 -13.7793
-c-13.4336 0 -24.5771 4.47949 -33.4307 13.4395s-13.2803 20.4932 -13.2803 34.5996c0 13.4336 4.53711 24.5742 13.6104 33.4209s20.2197 13.2695 33.4395 13.2695c0.214844 0.00292969 0.469727 -0.0263672 0.685547 -0.0263672
-c8.59668 0 16.6738 -2.24609 23.6738 -6.18359zM0.00195312 416h448v-448h-448v448zM374.712 42.7402l-0.0302734 264.349l-55.79 -12.0898v-77.9199c-7.81348 7.86035 -16.1465 13.5273 -25 17.001c-8.87695 3.35352 -18.5127 5.21875 -28.5576 5.21875
-c-0.394531 0 -0.789062 -0.00292969 -1.18164 -0.00878906c-17.6934 -0.00683594 -33.6006 -4.37305 -47.7207 -13.0996c-14.0625 -8.68066 -25.4102 -20.9805 -32.9297 -35.7803c-7.83984 -15.1064 -11.7598 -31.8467 -11.7598 -50.2197
-c-0.00683594 -18.8066 3.85645 -35.7705 11.5898 -50.8906c7.45215 -14.8447 18.8232 -27.1611 32.9395 -35.7695c14.2197 -8.7334 30.5166 -13.1006 48.8906 -13.1006c26.6602 0 45.2539 8.7334 55.7803 26.2002h0.669922v-23.8896h53.0996z" />
-    <glyph glyph-name="instagram-square" unicode="&#xe055;" 
-d="M224 245.34c29.4385 -0.0107422 53.3379 -23.9043 53.3604 -53.3398c0 -29.4395 -23.9004 -53.3398 -53.3398 -53.3398s-53.3398 23.9004 -53.3398 53.3398c0 29.4326 23.8896 53.3291 53.3193 53.3398zM348.71 286.34
-c8.34961 -21.0703 6.46973 -71.0596 6.46973 -94.3398s1.91992 -73.3301 -6.42969 -94.3301c-5.4834 -13.8955 -16.5146 -24.9268 -30.4102 -30.4102c-21.0596 -8.35938 -70.9902 -6.42969 -94.2998 -6.42969s-73.3096 -1.86035 -94.3096 6.42969
-c-13.8955 5.4834 -24.9277 16.5146 -30.4102 30.4102c-8.32031 21.0703 -6.4707 71.0605 -6.4707 94.3398c0 23.2803 -1.84961 73.3301 6.43066 94.3301c5.48242 13.8955 16.5146 24.9268 30.4102 30.4102c21.0596 8.36035 71.0098 6.42969 94.3096 6.42969
-s73.2998 1.86035 94.2998 -6.42969c13.8955 -5.4834 24.9268 -16.5146 30.4102 -30.4102zM224 110c0.0341797 0 0.0664062 -0.00195312 0.0996094 -0.00195312c45.2021 0 81.9004 36.6982 81.9004 81.9004v0.101562c0 45.2568 -36.7432 82 -82 82s-82 -36.7432 -82 -82
-s36.7432 -82 82 -82zM309.38 258.3c10.5371 0.00585938 19.1299 8.52051 19.1299 19.0586v0.0820312c0 10.5635 -8.57617 19.1396 -19.1396 19.1396c-10.5645 0 -19.1406 -8.57617 -19.1406 -19.1396c0 -10.5645 8.57617 -19.1406 19.1406 -19.1406h0.00976562zM400 416
-c26.4922 0 48 -21.5078 48 -48v-352c0 -26.4922 -21.5078 -48 -48 -48h-352c-26.4922 0 -48 21.5078 -48 48v352c0 26.4922 21.5078 48 48 48h352zM382.88 126c1.49023 26.4404 1.49023 105.56 0 131.88c-1.21973 25.6299 -7.17969 48.3506 -25.8496 67.0498
-c-18.6699 18.7002 -41.3701 24.5605 -67 25.8506c-26.4102 1.48926 -105.59 1.48926 -132 0c-25.5303 -1.2207 -48.2207 -7.12012 -67 -25.7803c-18.7803 -18.6602 -24.5605 -41.3701 -25.8506 -67c-1.48926 -26.3896 -1.48926 -105.58 0 -132
-c1.2207 -25.5801 7.11035 -48.2998 25.8506 -67c18.7393 -18.7002 41.3701 -24.5596 67 -25.8496c26.4102 -1.49023 105.59 -1.49023 132 0c25.5996 1.21973 48.29 7.18945 67 25.8496s24.5596 41.3701 25.8496 67z" />
-    <glyph glyph-name="mixer" unicode="&#xe056;" horiz-adv-x="512" 
-d="M114.57 371.93l128.319 -172.399c1.44531 -1.99805 2.29785 -4.47461 2.29785 -7.12598c0 -2.65234 -0.852539 -5.10645 -2.29785 -7.10449l-128.89 -173.24c-8.33594 -11.1826 -21.6582 -18.3877 -36.666 -18.3877c-11.877 0 -22.7031 4.54004 -30.834 11.9785
-c-17.8496 16.1797 -18.9697 43.5195 -4.74023 62.7695l92.3301 124.15l-91.7803 123c-14.25 19.25 -12.8291 46.5898 4.75 62.7695c8.13281 7.44141 18.9551 12.0264 30.8359 12.0264c15.0088 0 28.3389 -7.25 36.6748 -18.4365zM470.24 68.4199
-c14.2295 -19.25 13.1094 -46.5898 -4.73047 -62.7695c-8.13184 -7.44141 -18.9551 -12.0264 -30.835 -12.0264c-15.0098 0 -28.3389 7.25 -36.6748 18.4355l-128.57 173.5c-1.44434 1.99805 -2.29688 4.47461 -2.29688 7.12598c0 2.65234 0.852539 5.10645 2.29688 7.10449
-l128 172.12c8.33594 11.1855 21.6602 18.3926 36.6699 18.3926c11.8809 0 22.708 -4.54199 30.8408 -11.9824c17.5791 -16.1807 18.9697 -43.5205 4.75 -62.7705l-91.7803 -123z" />
-    <glyph glyph-name="shopify" unicode="&#xe057;" 
-d="M388.32 343.9c0.399414 -2.40039 54.4395 -367.9 54.4395 -367.9l-125.689 -31.2002v432.73c8.00977 -8.01074 29.6201 -28.8301 29.6201 -28.8301s35.2295 -0.799805 37.2295 -0.799805c2.25 -0.103516 4.08887 -1.81055 4.40039 -4zM288.65 377.53
-c9.20996 2.7998 13.3604 4.18945 14.8096 4.39941c1.4502 0.209961 2.90625 0.34375 4.40039 0.400391v-438.33l-302.58 52.4805s36.7998 281.819 38 291.819c1.58984 13.2002 2 13.6006 16 18c0.399414 0.400391 19.6094 6.41016 47.2295 14.8105
-c2.82031 21.2197 13.21 48.4395 26.8203 70.0596c19.25 30.8301 43.25 48.0303 67.25 48.8301c12.4199 0.370117 22.8203 -3.62988 30.8203 -12.4004c0.399414 -0.799805 1.19922 -1.19922 1.59961 -2c1.11914 0.267578 2.27051 0.40918 3.4707 0.40918
-c0.176758 0 0.353516 -0.00292969 0.529297 -0.00878906c18.4199 0 34 -10.8496 44.4404 -30.8604c2.84082 -5.58887 5.28809 -11.5479 7.20996 -17.6094zM233.41 360.31c0.399414 13.21 -1.2002 32.8301 -8.00977 47.2002
-c-6.80078 -3.2002 -12.8105 -8.41016 -17.21 -12.8096c-11.21 -12.3701 -20.8203 -31.1807 -25.6201 -50c17.21 5.20996 34.8398 10.8096 50.8398 15.6094zM200.58 423.56c-36.8301 -0.799805 -69.25 -58.8398 -78.0098 -97.2295c13.1699 4 27.5801 8.40039 42 12.8096
-c4.7998 24.4502 16.4102 50.0303 31.6201 66.4502c6 6 12.4092 11.21 18.8096 14.4102c-3.99414 2.26367 -8.625 3.57422 -13.54 3.57422c-0.293945 0 -0.587891 -0.00488281 -0.879883 -0.0146484zM154.15 203.39c-0.400391 4.81055 0 23.6104 29.6191 25.6201
-c20.4209 1.60059 37.6309 -6.39941 37.6309 -6.39941l15.21 57.5996s-13.2305 6.41016 -39.2305 4.80957c-67.25 -4.40918 -97.6699 -51.2393 -94.4697 -97.6797c3.59961 -55.2402 58.8398 -53.2402 60.8398 -86.8594
-c0.410156 -8.01074 -4.80957 -19.6201 -18.8096 -20.4209c-21.6201 -1.59961 -48.4404 18.8203 -48.4404 18.8203l-10.4004 -44s26.8203 -28.8203 75.6504 -25.6201c40.4297 2.41016 68.4502 34.8301 65.6504 82.4707c-4 60.4395 -71.6504 66.0498 -73.25 91.6592z
-M249.42 365.12c8.80664 2.7998 16.8135 5.2002 24.0205 7.2002c-4.01074 12.4297 -12.8105 32.8301 -31.2305 36.4297c5.61035 -14.4102 7.20996 -31.6299 7.20996 -43.6299z" />
-    <glyph glyph-name="deezer" unicode="&#xe077;" horiz-adv-x="576" 
-d="M451.46 203.29v72.71h124.54v-72.71h-124.54zM451.46 377.18h124.54v-72.6699h-124.54v72.6699zM451.46 102.12v72.6797h124.54v-72.6797h-124.54zM0 0.910156v72.6699h124.54v-72.6699h-124.54zM150.47 0.910156v72.6699h124.53v-72.6699h-124.53zM300.99 0.910156
-l0.00976562 72.6699h124.53v-72.6699h-124.54zM451.46 0.910156v72.6699h124.54v-72.6699h-124.54zM301 102.12v72.6797h124.53v-72.6797h-124.53zM150.48 102.12l-0.0107422 72.6797h124.53v-72.6797h-124.52zM150.48 203.29l-0.0107422 72.71h124.53v-72.71h-124.52z" />
-    <glyph glyph-name="edge-legacy" unicode="&#xe078;" horiz-adv-x="512" 
-d="M25.71 219.84l0.349609 0.480469c0 -0.160156 0 -0.320312 -0.0693359 -0.480469h-0.280273zM486.29 204.33v-52.0703h-314.08c1.38965 -128.49 191.39 -124.06 272.26 -67.5693v-104.431c-47.3594 -28.5293 -156.779 -53.1699 -240.13 -21.3301
-c-70.6201 27.1602 -119.92 100.551 -120.75 172c-1.09961 92.2207 45.7002 153.42 120.75 188.32c-15.79 -19.9297 -27.9697 -41.54 -34.3398 -78.9297h175.85c10.25 105 -99.4199 105 -99.4199 105c-103.3 -3.62012 -177.949 -63.6904 -220.37 -125
-c14.5605 114.47 92.9404 219.96 232.83 219.68c85.0205 0 157.61 -39.8799 198.591 -113.27c21.0498 -37.9404 28.8096 -78.4004 28.8096 -122.4z" />
-    <glyph glyph-name="google-pay" unicode="&#xe079;" horiz-adv-x="640" 
-d="M105.72 233h99.6602c1.1543 -7.06152 1.75 -14.1768 1.75 -21.5635v-0.216797c0 -32.7598 -11.4102 -60.2998 -31.4102 -78.9102c-17.4502 -16.3799 -41.5293 -25.9092 -70 -25.9092c-41.4531 0.103516 -77.2598 24.0869 -94.3799 59v0.149414
-c-7.21582 14.4512 -11.2773 30.957 -11.2773 48.1943c0 17.2383 4.06152 33.5352 11.2773 47.9863c17.1172 34.9355 52.9199 58.9502 94.3799 59.1094c0.344727 0.00390625 0.699219 0.00585938 1.04492 0.00585938c27 0 51.5469 -10.5928 69.7051 -27.8457
-l-30.2793 -30.6201c-10.1777 9.95508 -24.0938 16.0898 -39.4404 16.0898c-0.357422 0 -0.713867 -0.00292969 -1.07031 -0.00976562c-27.5996 0 -50.9297 -18.9102 -59.2998 -44.3701v0c-2.12109 -6.44824 -3.26855 -13.3545 -3.26855 -20.5088
-s1.14746 -14.043 3.26855 -20.4912c8.37012 -25.3096 31.7002 -44.2197 59.2998 -44.2197c14.2803 0 26.46 3.72949 36 10.2803c10.9629 7.39648 18.7705 19.0664 21.1406 32.5996h-57.1006v41.25zM495.13 237c10.1299 -9.33984 15.1201 -22.4502 15.0498 -39v-78.7002
-h-22.6094v17.7197h-1c-9.79004 -14.5898 -22.71 -21.8896 -39 -21.8896c-13.79 0 -25.54 4.16992 -34.79 12.5098c-8.55078 7.29199 -13.9541 18.1143 -13.9541 30.2207c0 0.350586 0.00488281 0.701172 0.0136719 1.0498c0 13.25 4.98047 23.6699 14.8203 31.5596
-c9.83984 7.89062 23.0498 11.7705 39.4902 11.7705c14.0898 0 25.54 -2.68066 34.6396 -7.75v5.50977c-0.00488281 8.47461 -3.75098 16.0723 -9.69043 21.2305c-6.02051 5.44141 -14.0078 8.76855 -22.75 8.78906c-13.2061 0 -23.626 -5.66699 -31.2598 -17
-l-20.8496 13.2607c11.1602 16.5195 28.04 24.8594 50.5 24.8594c17.46 0 31.2598 -4.75977 41.3896 -14.1396zM475.9 147.7c7.7793 7.4502 11.7393 16.2295 11.7393 26.3594c-7.33984 5.94043 -17.6396 8.94043 -30.7998 8.78027c-9.54004 0 -17.75 -2.38965 -24.0703 -7
-c-6.31934 -4.60938 -9.53906 -10.4199 -9.53906 -17.4199c-0.000976562 -0.0332031 -0.0166016 -0.0546875 -0.0166016 -0.0878906c0 -6.35449 3.05957 -12 7.78613 -15.542c4.8916 -3.90625 11.1035 -6.25391 17.8447 -6.25391
-c0.162109 0 0.324219 0.000976562 0.485352 0.00390625c10.3965 0.0126953 19.8076 4.2793 26.5703 11.1602zM382.25 289.7c10.4268 -9.92188 16.9102 -23.9102 16.9102 -39.4248c0 -14.166 -5.4209 -27.0752 -14.2998 -36.7656
-c-0.890625 -0.889648 -1.77051 -1.79004 -2.65039 -2.67969c-11.0098 -10.5703 -24.5098 -15.9297 -40.5098 -15.9297h-39v-75.6406h-23.6299v186.74h62.6699c0.379883 0.0078125 0.749023 0.0185547 1.13086 0.0185547c15.3701 0 29.2949 -6.23828 39.3789 -16.3184z
-M365.67 227.47c5.5957 5.94141 9.03223 13.9971 9.03223 22.7939c0 9.18164 -3.7373 17.4961 -9.77246 23.5059c-5.78027 5.70801 -13.7236 9.23047 -22.4814 9.23047h-0.118164h-39.6299v-65.21h39.6299c0.328125 -0.0107422 0.640625 -0.0253906 0.970703 -0.0253906
-c8.82031 0 16.7754 3.7334 22.3691 9.70508zM614.31 247h25.6904l-79 -183.87h-24.3496l29.3496 64.3203l-51.79 119.55h25.6904l37.4199 -91.7002h0.449219z" />
-    <glyph glyph-name="rust" unicode="&#xe07a;" horiz-adv-x="512" 
-d="M508.52 198.25c2.09375 -1.2959 3.44043 -3.60449 3.44043 -6.24512c0 -2.6416 -1.39648 -4.95898 -3.49023 -6.25488l-21.8193 -13.5098c-0.169922 -1.95996 -0.34082 -3.91992 -0.550781 -5.87012l18.7207 -17.5c1.43457 -1.3418 2.33203 -3.24805 2.33203 -5.36523
-c0 -3.15039 -1.98535 -5.83984 -4.77246 -6.88477l-24 -9c-0.540039 -1.88965 -1.08008 -3.78027 -1.66992 -5.65039l15 -20.8301c0.865234 -1.20508 1.37207 -2.68945 1.37207 -4.28516c0 -3.65234 -2.66992 -6.68555 -6.16211 -7.25488l-25.4199 -4.14941
-c-0.900391 -1.71973 -1.79004 -3.4502 -2.73047 -5.15039l10.6807 -23.4199c0.420898 -0.925781 0.655273 -1.96875 0.655273 -3.05176c0 -1.50781 -0.455078 -2.91113 -1.23535 -4.07812c-1.29199 -1.97168 -3.51172 -3.26758 -6.04297 -3.26758
-c-0.109375 0 -0.21875 0.00292969 -0.327148 0.0078125l-25.8203 0.910156c-1.18652 -1.4873 -2.38965 -2.9541 -3.60938 -4.40039l5.92969 -25.1602c0.125977 -0.538086 0.196289 -1.0957 0.196289 -1.67188c0 -4.0625 -3.29785 -7.36035 -7.35938 -7.36035
-c-0.577148 0 -1.13867 0.0664062 -1.67676 0.192383l-25.1504 5.92969c-1.45312 -1.21289 -2.91992 -2.41602 -4.39941 -3.60938l0.90918 -25.8203c0.00390625 -0.0878906 -0.000976562 -0.167969 -0.000976562 -0.256836c0 -4.05664 -3.29395 -7.34961 -7.34961 -7.34961
-c-1.08398 0 -2.1123 0.235352 -3.03906 0.65625l-23.4199 10.6807c-1.7002 -0.94043 -3.42969 -1.83008 -5.15039 -2.73047l-4.14941 -25.4199c-0.56543 -3.49121 -3.60254 -6.16309 -7.25293 -6.16309c-1.59961 0 -3.08105 0.512695 -4.28711 1.38281l-20.8203 15
-c-1.87012 -0.599609 -3.75977 -1.12988 -5.64941 -1.67969l-9 -24c-1.05078 -2.7832 -3.7373 -4.7627 -6.88574 -4.7627c-2.11426 0 -4.02148 0.892578 -5.36426 2.32227l-17.5 18.7305c-1.9502 -0.219727 -3.88086 -0.390625 -5.88086 -0.560547l-13.5098 -21.8193
-c-1.2959 -2.09375 -3.60352 -3.49023 -6.24512 -3.49023s-4.95898 1.39648 -6.25488 3.49023l-13.5098 21.8193c-1.95996 0.169922 -3.92969 0.34082 -5.87988 0.550781l-17.5 -18.7207c-1.34277 -1.42969 -3.24707 -2.32422 -5.36133 -2.32422
-c-3.14844 0 -5.83789 1.98145 -6.88867 4.76465l-9 24c-1.88965 0.549805 -3.79004 1.08008 -5.65039 1.67969l-20.8301 -15c-1.20605 -0.870117 -2.69434 -1.37988 -4.29395 -1.37988c-3.64941 0 -6.68066 2.66895 -7.24609 6.16016l-4.14941 25.4199
-c-1.71973 0.900391 -3.4502 1.79004 -5.14062 2.73047l-23.4297 -10.6807c-0.925781 -0.420898 -1.96094 -0.664062 -3.04492 -0.664062c-4.05664 0 -7.34961 3.29297 -7.34961 7.34961c0 0.0888672 0.00195312 0.176758 0.00488281 0.264648l0.919922 25.8203
-c-1.4873 1.18652 -2.95703 2.38965 -4.41016 3.60938l-25.1602 -5.92969c-0.538086 -0.125977 -1.0957 -0.196289 -1.67188 -0.196289c-4.0625 0 -7.36035 3.29785 -7.36035 7.35938c0 0.577148 0.0664062 1.13867 0.192383 1.67676l5.92969 25.1602
-c-1.21973 1.45312 -2.41992 2.91992 -3.59961 4.40039l-25.8301 -0.910156c-0.125977 -0.00683594 -0.243164 -0.0175781 -0.371094 -0.0175781c-2.5166 0 -4.72949 1.30664 -5.99902 3.27734c-0.776367 1.16504 -1.23047 2.57812 -1.23047 4.08301
-c0 1.08691 0.236328 2.11816 0.660156 3.04688l10.6309 23.4297c-0.94043 1.69043 -1.83008 3.4209 -2.73047 5.14062l-25.4199 4.14941c-3.49219 0.569336 -6.16504 3.60938 -6.16504 7.26172c0 1.5957 0.509766 3.07324 1.375 4.27832l15 20.8301
-c-0.599609 1.87012 -1.12988 3.76074 -1.67969 5.65039l-24 9c-2.78711 1.04492 -4.77148 3.73145 -4.77148 6.88184c0 2.11719 0.896484 4.02637 2.33105 5.36816l18.7197 17.5c-0.209961 1.9502 -0.379883 3.87012 -0.549805 5.87012l-21.8193 13.5098
-c-2.09473 1.2959 -3.49023 3.60449 -3.49023 6.24512c0 2.6416 1.39551 4.95898 3.49023 6.25488l21.8594 13.5c0.169922 1.96973 0.339844 3.92969 0.549805 5.87988l-18.7197 17.5c-1.43457 1.3418 -2.33203 3.24805 -2.33203 5.36523
-c0 3.15039 1.98535 5.83984 4.77246 6.88477l24 9c0.549805 1.88965 1.08984 3.79004 1.67969 5.66016l-15 20.8203c-0.865234 1.20508 -1.37207 2.68945 -1.37207 4.28516c0 3.65234 2.66992 6.68555 6.16211 7.25488l25.4102 4.13965
-c0.899414 1.72949 1.79004 3.45996 2.72949 5.16016l-10.6602 23.4102c-0.423828 0.927734 -0.65918 1.97363 -0.65918 3.06055c0 1.50391 0.453125 2.90332 1.22949 4.06934c1.33398 1.97266 3.58398 3.26367 6.14258 3.26367
-c0.0761719 0 0.152344 -0.00195312 0.227539 -0.00390625l25.8096 -0.910156c1.19043 1.48047 2.39062 2.95996 3.62012 4.41016l-5.92969 25.1602c-0.125977 0.538086 -0.196289 1.0957 -0.196289 1.67188c0 4.0625 3.29785 7.36035 7.35938 7.36035
-c0.577148 0 1.13867 -0.0664062 1.67676 -0.192383l25.1504 -5.96973c1.41992 1.21973 2.92969 2.41992 4.41992 3.60938l-0.919922 25.8105c-0.00488281 0.104492 -0.000976562 0.201172 -0.000976562 0.307617c0 4.05566 3.29395 7.34961 7.35059 7.34961
-c1.08398 0 2.11328 -0.235352 3.04004 -0.657227l23.4004 -10.6299c1.70996 0.939453 3.42969 1.83008 5.16016 2.72949l4.14941 25.4102c0.569336 3.49219 3.60938 6.16504 7.26172 6.16504c1.5957 0 3.07324 -0.509766 4.27832 -1.375l20.8203 -15
-c1.87012 0.599609 3.76953 1.12988 5.66016 1.67969l9 24c1.04492 2.78711 3.73145 4.77148 6.88184 4.77148c2.11719 0 4.02637 -0.896484 5.36816 -2.33105l17.5 -18.7197c1.94922 0.209961 3.87988 0.379883 5.87988 0.549805l13.5098 21.8193
-c1.2959 2.09473 3.60449 3.49023 6.24512 3.49023c2.6416 0 4.95898 -1.39551 6.25488 -3.49023l13.4805 -21.8398c1.96973 -0.169922 3.92969 -0.339844 5.87988 -0.549805l17.5 18.7197c1.3418 1.43457 3.24805 2.33301 5.36523 2.33301
-c3.14941 0 5.83984 -1.98535 6.88477 -4.77246l9 -24c1.88965 -0.540039 3.7793 -1.08008 5.63965 -1.66992l20.8604 14.9697c1.20508 0.865234 2.68945 1.37207 4.28516 1.37207c3.65234 0 6.68555 -2.66992 7.25488 -6.16211l4.14941 -25.4199
-c1.71973 -0.889648 3.4502 -1.79004 5.15039 -2.73047l23.4199 10.7305c0.926758 0.421875 1.96289 0.666016 3.04688 0.666016c4.05664 0 7.34961 -3.29395 7.34961 -7.35059c0 -0.105469 -0.00195312 -0.210938 -0.00683594 -0.31543l-0.910156 -25.8203
-c1.4873 -1.18652 2.9541 -2.38965 4.40039 -3.60938l25.1602 5.92969c0.538086 0.125977 1.0957 0.196289 1.67188 0.196289c4.0625 0 7.36035 -3.29785 7.36035 -7.35938c0 -0.577148 -0.0664062 -1.13867 -0.192383 -1.67676l-5.87988 -25.1602
-c1.21387 -1.45312 2.41699 -2.91992 3.61035 -4.40039l25.8193 0.910156c0.0878906 0.00292969 0.167969 -0.000976562 0.256836 -0.000976562c4.05664 0 7.34961 -3.29395 7.34961 -7.35059c0 -1.08301 -0.234375 -2.1123 -0.65625 -3.03809l-10.6797 -23.4199
-c0.939453 -1.7002 1.83008 -3.41992 2.72949 -5.15039l25.4199 -4.14941c3.49219 -0.569336 6.16504 -3.60938 6.16504 -7.26172c0 -1.5957 -0.509766 -3.07324 -1.375 -4.27832l-15 -20.8301c0.589844 -1.86035 1.12988 -3.76074 1.66992 -5.64062l24 -9
-c2.78711 -1.04492 4.77148 -3.73145 4.77148 -6.88184c0 -2.11719 -0.896484 -4.02637 -2.33105 -5.36816l-18.7197 -17.5c0.209961 -1.94922 0.379883 -3.87988 0.549805 -5.87988zM357.52 69.1699l32.1406 -6.87988c6.28125 6.3125 12.0029 12.9395 17.3398 20.0898
-h-79.0498c-12.5 0 -24.21 17.6396 -27.1006 26.46c-2.88965 7.86035 -7.14941 32.4502 -9.05957 40c-6.12988 24.5898 -25.3799 25.8701 -29.79 25.8701h-48.4805l-0.0498047 -34.3496h44.8301c1.71973 0 2.89062 -0.34082 2.89062 -1.91016v-54.1904
-c0 -1.62012 -1.1709 -1.91016 -2.89062 -1.91016h-153.17c5.01953 -6.80957 10.3848 -13.1465 16.2598 -19.21l31.5107 6.76074c0.935547 0.199219 1.89746 0.294922 2.89258 0.294922c6.66211 0 12.2344 -4.70801 13.5674 -10.9756l7.63965 -35.6602
-c23.9688 -11.1318 50.9941 -17.3506 79.1416 -17.3506c27.5205 0 53.665 5.94141 77.2188 16.6113l7.63965 35.6699c1.34668 6.27246 6.91797 10.9893 13.5908 10.9893c1.00488 0 1.98438 -0.106445 2.92871 -0.30957zM383.29 34.6797
-c0 0.00585938 -0.0576172 0.0107422 -0.0576172 0.0166016c0 8.25977 -6.58887 14.9922 -14.792 15.2236h-0.44043c-8.3877 -0.0273438 -15.1904 -6.8457 -15.1904 -15.2402c0 -8.41113 6.8291 -15.2393 15.2402 -15.2393s15.2402 6.82812 15.2402 15.2393zM157.67 35.3604
-c0 0.00195312 -0.0576172 0.00488281 -0.0576172 0.0078125c0 8.24707 -6.56055 14.9736 -14.7422 15.2422h-0.450195c-8.40625 -0.00585938 -15.2295 -6.83203 -15.2295 -15.2402c0 -8.41113 6.82812 -15.2402 15.2393 -15.2402c8.4082 0 15.2344 6.82324 15.2402 15.2305z
-M69.5703 213.85c-0.725586 -6.69922 -1.0625 -13.2754 -1.0625 -20.167c0 -17.8242 2.49023 -35.0713 7.14258 -51.4131h53.5996v119.73h-26.5596l6.76953 -15.2197c0.765625 -1.7207 1.20801 -3.62988 1.20801 -5.63281c0 -5.66406 -3.39941 -10.54 -8.26758 -12.6973z
-M58.3096 249.91c0.00292969 -8.4082 6.84375 -15.2236 15.2529 -15.2236c8.41113 0 15.2402 6.82812 15.2402 15.2393c0 8.26562 -6.59375 15.0029 -14.8027 15.2344h-0.459961c-8.40625 -0.00585938 -15.2305 -6.83203 -15.2305 -15.2402v-0.00976562zM213.47 225.42
-h58.7002c12.4902 0 27.6797 4.41016 27.6797 16.7002c0 14.8496 -19.79 18.6201 -23.0693 18.6201h-63.2607zM399 141.29c10.3096 1.12988 22 5.70996 22.0195 26.46v8.82031c0 1.85938 0.780273 3.12988 2.69043 3.12988h19.2803
-c0.349609 4.6709 0.529297 9.02832 0.529297 13.7891c0 6.32812 -0.314453 12.583 -0.929688 18.751l-34.5898 15.3301c-4.86621 2.19434 -8.23828 7.0918 -8.23828 12.7725c0 1.97363 0.410156 3.85352 1.14844 5.55762l18 40.5693
-c-26.8047 47.0127 -73.3965 81.1328 -128.37 91.4307l-26.2598 -25c-2.48535 -2.39062 -5.86523 -3.86523 -9.58203 -3.86523c-3.94141 0 -7.5 1.6543 -10.0186 4.30469l-23.4697 24.6006c-41.29 -7.80371 -77.9434 -29.083 -104.89 -59.1904h198.899
-c4.99023 0 23.5107 -2.23047 40.2705 -13.2305c11.9102 -7.88965 29.3994 -23.96 29.3994 -49.4795c0 -23.6201 -19.5996 -41.3096 -38.46 -53.2598c15.1807 -12 24.79 -18.9102 30.5703 -51.4004c1.37012 -5.96973 12.2002 -11.2197 22 -10.0898zM240 387.79
-c0 -0.0078125 -0.00683594 -0.015625 -0.00683594 -0.0244141c0 -8.41113 6.82812 -15.2393 15.2402 -15.2393c8.41113 0 15.2393 6.82812 15.2393 15.2393c0 8.26855 -6.59863 15.0078 -14.8125 15.2344h-0.450195c-8.38672 -0.0166016 -15.1934 -6.82324 -15.21 -15.21z
-M436.84 234c0.0742188 -0.000976562 0.141602 -0.00195312 0.21582 -0.00195312c8.41211 0 15.2422 6.83008 15.2422 15.2422c0 8.33691 -6.70898 15.1201 -15.0176 15.2402h-0.44043c-8.41113 0 -15.2402 -6.8291 -15.2402 -15.2402s6.8291 -15.2402 15.2402 -15.2402z" />
-    <glyph glyph-name="tiktok" unicode="&#xe07b;" 
-d="M448 238.09h-0.512695c-45.5098 0 -87.8428 14.6162 -122.257 39.25v-178.72c-0.0332031 -89.6855 -72.8574 -162.489 -162.551 -162.489c-89.7139 0 -162.55 72.8359 -162.55 162.55s72.8359 162.55 162.55 162.55c7.62891 0 14.9697 -0.521484 22.3203 -1.54004
-v-89.8906c-7.06836 2.22363 -14.5889 3.42285 -22.3877 3.42285c-41.1836 0 -74.6201 -33.4365 -74.6201 -74.6201c0 -41.1846 33.4365 -74.6201 74.6201 -74.6201c41.1846 0 74.6182 33.4541 74.6182 74.6377v349.38h88
-c-0.00292969 -0.337891 -0.00488281 -0.676758 -0.00488281 -1.01562c0 -7.25977 0.638672 -14.2441 1.86426 -21.1543v0c6.28613 -33.5771 26.1982 -62.3613 53.9102 -80.2197c19.1787 -12.6816 42.1592 -20.0674 66.8506 -20.0674
-c0.00878906 0 0.140625 -0.0732422 0.149414 -0.0732422v-87.3799z" />
-    <glyph glyph-name="unsplash" unicode="&#xe07c;" 
-d="M448 217.83v-249.83h-448v249.83h141.13v-124.92h165.74v124.92h141.13zM306.87 416v-124.91h-165.74v124.91h165.74z" />
-    <glyph glyph-name="cloudflare" unicode="&#xe07d;" horiz-adv-x="640" 
-d="M407.906 128.087c12.1836 -0.574219 22.2178 -5.50977 28.2334 -13.9023c6.54883 -9.09961 8 -21.5 4.10059 -34.8994l-3.27344 -11.2656c-0.681641 -2.28125 -2.7793 -3.95508 -5.27051 -4c-0.0419922 -0.000976562 -0.0791016 -0.0195312 -0.12207 -0.0195312
-l-426.101 0.0507812c-2.26172 0.00878906 -4.13379 1.69238 -4.44434 3.87109c-0.676758 4.58691 -1.02637 9.18457 -1.0293 13.958c0 52.3926 41.9238 95.0137 94.2002 96.5303c-1.37402 5.39062 -2.05469 10.9785 -2.05469 16.7939
-c0 37.5967 30.5234 68.1201 68.1201 68.1201c15.3838 0 29.583 -5.11035 40.9912 -13.7246c20.542 59.582 77.085 102.308 143.607 102.308c72.1562 0 132.629 -50.417 148.085 -117.914c0.107422 -0.513672 0.164062 -1.03906 0.164062 -1.58398v-0.046875
-c0 -0.0332031 -0.00292969 -0.0683594 -0.00292969 -0.101562c0 -0.998047 -0.18457 -1.9541 -0.521484 -2.83496l-13.2861 -34.542c-10.4756 -27.21 -40.3906 -49.5234 -68.0215 -50.7842l-232.94 -2.93555c-2.48145 -0.173828 -4.5625 -1.82227 -5.36035 -4.07617
-c-0.178711 -0.493164 -0.275391 -1.03223 -0.275391 -1.58691c0 -0.945312 0.283203 -1.8252 0.768555 -2.55957c0.8125 -1.14258 2.13379 -1.89355 3.63281 -1.92676zM513.856 226.9c69.668 0 126.144 -56.2002 126.147 -125.533
-c0 -0.0458984 -0.0175781 -0.0644531 -0.0175781 -0.110352c0 -11.7441 -1.62598 -23.1123 -4.66406 -33.8896c-0.571289 -1.94629 -2.37012 -3.37012 -4.5 -3.37012h-0.0390625h-175.91c-0.0478516 0 -0.0898438 0.0166016 -0.135742 0.0166016
-c-1.44727 0.0595703 -2.60449 1.25391 -2.60449 2.71484c0 0.339844 0.0634766 0.666016 0.176758 0.96582l3.69531 9.60547c10.4766 27.21 40.3916 49.5146 68.1455 50.7842l51.125 2.93945c2.47559 0.179688 4.55078 1.82617 5.35059 4.07422
-c0.177734 0.492188 0.274414 1.03027 0.274414 1.58301c0 0.957031 -0.291016 1.84766 -0.788086 2.58594c-0.785156 1.11035 -2.06152 1.84375 -3.51074 1.89453l-49.1992 2.93848c-12.1846 0.577148 -22.2188 5.5 -28.2383 13.9004
-c-6.54883 9.10352 -8 21.4902 -4.09961 34.8896l9.07617 31.1934c0.447266 1.45508 1.75391 2.53613 3.32422 2.65332c2.12012 0.101562 4.25 0.164062 6.3916 0.164062z" />
-    <glyph glyph-name="guilded" unicode="&#xe07e;" 
-d="M443.427 384c0.00195312 -0.518555 0.0253906 -0.367188 0.0253906 -0.885742c0 -29.1934 -2.00293 -57.9229 -5.87891 -86.0576h-336.147s0.366211 -52.0498 27.0918 -105.883c27.458 -51.8174 65.3164 -85.1025 96.5488 -98.3623
-c32.2695 15.082 63.4434 41.2695 80.4561 69.4824h-88.5898c-22.9229 18.998 -40.96 50.5146 -45.0996 86.9443h259.889c-12.8154 -58.5713 -40.0088 -111.838 -65.916 -145.762c-35.8154 -46.7773 -84.2695 -82.8105 -140.55 -103.477
-c-1.25586 0 -113.21 33.8652 -177.267 161.642c-21.2266 42.2988 -43.418 119.099 -43.418 222.358h438.855z" />
-    <glyph glyph-name="hive" unicode="&#xe07f;" horiz-adv-x="512" 
-d="M260.353 193.122c0.191406 -0.329102 0.300781 -0.716797 0.300781 -1.12402c0 -0.404297 -0.107422 -0.783203 -0.294922 -1.11133l-127.412 -221.777c-0.380859 -0.666992 -1.09473 -1.11621 -1.91602 -1.11621c-0.818359 0 -1.53223 0.445312 -1.91406 1.10645
-l-128.816 221.778c-0.189453 0.328125 -0.297852 0.713867 -0.297852 1.12012s0.108398 0.787109 0.297852 1.11523l127.409 221.777c0.380859 0.666016 1.09473 1.11523 1.91602 1.11523c0.817383 0 1.53125 -0.445312 1.91309 -1.10547zM299.431 218.835l-110.624 193.824
-c-0.189453 0.327148 -0.298828 0.709961 -0.298828 1.11523c0 1.21973 0.983398 2.21094 2.19922 2.22559h66.5078c0.81543 -0.00195312 1.52539 -0.447266 1.90039 -1.11133l110.625 -193.823c0.189453 -0.328125 0.298828 -0.709961 0.298828 -1.11523
-c0 -1.21973 -0.983398 -2.21191 -2.19922 -2.22656h-66.5088c-0.81543 0.00292969 -1.52441 0.448242 -1.90039 1.11133zM511.7 193.114c0.1875 -0.328125 0.294922 -0.711914 0.294922 -1.11621c0 -0.405273 -0.107422 -0.78418 -0.294922 -1.1123l-126.808 -221.773
-c-0.376953 -0.664062 -1.08887 -1.11035 -1.90527 -1.1123h-66.6006c-1.21875 0.0117188 -2.20312 1.00684 -2.20312 2.22852c0 0.404297 0.108398 0.78418 0.297852 1.11133l126.171 220.66l-126.168 220.66c-0.189453 0.327148 -0.298828 0.708984 -0.298828 1.11426
-c0 1.2207 0.985352 2.21387 2.2041 2.22559h66.6006c0.818359 -0.000976562 1.53125 -0.447266 1.91016 -1.1123zM366.016 163.083c1.2168 -0.0136719 2.19922 -1.00879 2.19922 -2.22852c0 -0.405273 -0.108398 -0.785156 -0.297852 -1.1123l-108.8 -190.631
-c-0.375 -0.664062 -1.08496 -1.10938 -1.90039 -1.11133h-66.5088c-1.21582 0.0146484 -2.19824 1.00879 -2.19824 2.22852c0 0.405273 0.108398 0.785156 0.297852 1.1123l108.801 190.631c0.374023 0.664062 1.08398 1.10938 1.89941 1.11133h66.5078z" />
-    <glyph glyph-name="innosoft" unicode="&#xe080;" 
-d="M422.559 288.29l0.00292969 -190.955c0.0253906 -12.4102 -5.87793 -22.8965 -16.623 -29.5283l-164.527 -94.9951c-5.08008 -3.04102 -11.0938 -4.79004 -17.4404 -4.79004c-6.11523 0 -11.8545 1.62402 -16.8096 4.46387l-118.794 68.583l247.049 142.627v-56
-l-150.051 -86.627l32.7227 -18.9004c1.74805 -0.97168 3.78613 -1.52441 5.92676 -1.52441c2.18457 0 4.23633 0.576172 6.01074 1.58691l138.111 79.7441c3.54883 2.08008 5.91992 5.92578 5.91992 10.332v0.0361328v138.281l-308.407 -178.066
-c-3.94629 -2.25293 -8.57129 -3.54102 -13.4365 -3.54102c-4.83301 0 -9.37207 1.27051 -13.2998 3.49609c-8.39453 4.75586 -13.3037 13.293 -13.4736 23.4287v191.5c0.518555 12.7334 6.65527 23.0039 17.2891 29.124l164.601 95.0254
-c11.5 5.98535 22.8076 5.85938 33.7998 -0.269531l118.513 -68.4072l-247.061 -142.637v56l150.062 86.6367l-32.6553 18.8525c-1.76367 0.998047 -3.82715 1.56738 -5.99609 1.56738c-2.15137 0 -4.17285 -0.55957 -5.92578 -1.54199l-138.076 -79.7129
-c-3.60352 -2.04785 -6.02734 -5.90723 -6.04688 -10.3398v-138.387l308.539 178.142c3.88281 2.24414 8.44531 3.5293 13.25 3.5293c4.70801 0 9.13086 -1.23438 12.9609 -3.39648c8.16406 -4.63184 13.6914 -13.3291 13.8652 -23.3369z" />
-    <glyph glyph-name="instalod" unicode="&#xe081;" horiz-adv-x="512" 
-d="M153.384 -32l50.8447 146.789l298.325 57.4463l-115.44 -204.235h-233.729zM504.726 207.922l-144.495 -27.8223l-204.562 235.9h231.444zM124.386 399.191l101.241 -116.752l-102.391 -295.594l-115.962 205.154z" />
-    <glyph glyph-name="octopus-deploy" unicode="&#xe082;" horiz-adv-x="512" 
-d="M455.6 98.7998c12.4395 -10.5996 42.6348 -26.4775 42.5244 -45.2666c-0.15332 -24.6084 -48.4248 5.24121 -53.8184 9.51953c6.13965 -10.7275 66.998 -74.1787 28.2627 -78.6943c-35.6562 -4.1582 -67.1406 45.6416 -88.5615 67.0225
-c-36 35.9082 -29.7373 -43.5332 -29.8994 -59.9443c-0.257812 -25.9082 -18.5586 -78.4209 -51.4121 -44.2207c-27.1387 28.2314 -16.873 73.2607 -35.7383 104.622c-20.6641 34.3535 -55.0361 -34.3535 -63.627 -46.9258
-c-9.59668 -14.042 -57.6094 -82.041 -76.709 -45.8125c-15.499 29.4004 9.2793 75.5127 21.4629 102.103c-4.44336 -9.65723 -35.9297 -23.9414 -45.1299 -28.5879c-20.7871 -10.4971 -41.8867 -16.7256 -65.2646 -15.0449
-c-27.8916 2.00098 -38.3789 11.6572 8.42773 41.8574c38.5615 24.8389 83.8613 67.4209 66.6621 117.582c-9.37305 27.3301 -22.3574 50.7568 -24.0898 80.2998c-0.209961 3.56152 -0.25 7.08008 -0.25 10.6924c0 22.0957 3.9707 43.2715 11.2373 62.8516
-c34.5752 92.8066 137.363 136.747 230.253 108.848c86.0371 -25.8398 145.23 -125.74 109.575 -212.79c-20.5752 -50.2334 -29.7959 -89.0205 16.0947 -128.11z" />
-    <glyph glyph-name="perbyte" unicode="&#xe083;" 
-d="M305.314 163.422c15.9307 0.000976562 28.5732 -4.5 37.9277 -13.5059s14.0322 -20.7842 14.0322 -35.335c0 -14.8936 -4.58984 -26.9307 -13.7705 -36.1113c-9.17969 -9.17969 -21.9111 -13.7695 -38.1934 -13.7695h-58.7109v98.7217h58.7148zM149.435 319.301
-c15.9346 0.00488281 28.5791 -4.49609 37.9316 -13.5039s14.0283 -20.7871 14.0283 -35.3379c0 -14.8896 -4.58984 -26.9258 -13.7695 -36.1084c-9.17969 -9.18164 -21.9102 -13.7725 -38.1904 -13.7725h-58.7109v98.7227h58.7109zM366.648 416.002
-c22.4385 -0.0253906 41.5996 -7.98145 57.4854 -23.8672s23.8418 -35.0479 23.8672 -57.4854v-285.296c-0.0253906 -22.4375 -7.98145 -41.5996 -23.8672 -57.4854s-35.0479 -23.8418 -57.4854 -23.8672h-285.295c-22.4385 0.0253906 -41.6006 7.98145 -57.4863 23.8672
-s-23.8418 35.0479 -23.8672 57.4863v285.296c0.0253906 22.4375 7.98145 41.5996 23.8672 57.4854s35.0479 23.8408 57.4863 23.8662h285.295zM430.282 49.3535l-0.000976562 285.296c-0.0195312 17.5518 -6.24219 32.54 -18.668 44.9658s-27.4141 18.6484 -44.9648 18.668
-h-285.295c-17.5508 -0.0195312 -32.5391 -6.24219 -44.9648 -18.668s-18.6484 -27.4141 -18.668 -44.9658v-285.296c0.0195312 -17.5508 6.24219 -32.5391 18.668 -44.9648s27.4141 -18.6484 44.9648 -18.668h285.295c17.5518 0.0195312 32.54 6.24219 44.9658 18.668
-s18.6484 27.4141 18.668 44.9648zM305.313 319.301c15.9307 0.00488281 28.5732 -4.49609 37.9277 -13.5039s14.0322 -20.7871 14.0322 -35.3379c0 -14.8896 -4.58984 -26.9258 -13.7705 -36.1084c-9.17969 -9.18164 -21.9111 -13.7725 -38.1934 -13.7725h-58.7109v98.7227
-h58.7148z" />
-    <glyph glyph-name="uncharted" unicode="&#xe084;" 
-d="M171.73 215.187c-0.0605469 -0.00195312 -0.12207 -0.000976562 -0.183594 -0.000976562c-0.673828 0 -1.3125 0.148438 -1.88672 0.414062l-115.933 67.9004v-85.2891c-0.0830078 -2.71289 -1.16895 -5.18555 -2.89941 -7.03906
-c-1.6748 -1.54297 -3.91113 -2.4873 -6.36621 -2.4873c-0.0859375 0 -0.172852 0.000976562 -0.258789 0.00390625c-0.146484 -0.0078125 -0.296875 -0.00585938 -0.444336 -0.00585938c-1.65332 0 -3.2002 0.455078 -4.52344 1.24707l-22.3584 12.835
-c-2.9541 1.50684 -4.9707 4.57031 -4.9707 8.1123c0 0.0566406 0.000976562 0.112305 0.00195312 0.168945v115.107c0.118164 3.54102 2.08105 6.61523 4.96875 8.28027l100.2 57.9668c1.40625 0.787109 3.04688 1.23535 4.77148 1.23535s3.3457 -0.448242 4.75098 -1.23535
-l22.3584 -12.8389c2.9541 -1.50586 4.96973 -4.56934 4.96973 -8.11035c0 -0.0566406 -0.000976562 -0.113281 -0.00195312 -0.169922c-0.117188 -3.54199 -2.08008 -6.61523 -4.96777 -8.28125l-74.5293 -43.4727l116.757 -68.3184
-c1.16016 -0.680664 1.96191 -1.89941 2.07129 -3.31152c0 -1.65723 -0.414062 -3.31348 -1.65723 -4.1416c-7.34473 -6.5459 -12.6475 -15.3301 -14.8994 -25.2559c-0.810547 -1.94629 -2.72949 -3.31348 -4.96777 -3.31348h-0.00195312zM323.272 70.2695
-c4.96777 0 9.52734 -4.55469 10.3506 -9.1084v-26.085c-0.117188 -3.54199 -2.08105 -6.61523 -4.96777 -8.28125l-100.2 -57.5527c-1.48633 -0.772461 -3.18359 -1.22363 -4.96875 -1.24219c-0.146484 -0.00683594 -0.296875 -0.00488281 -0.444336 -0.00488281
-c-1.65332 0 -3.2002 0.455078 -4.52441 1.24707l-100.199 57.5527c-2.95508 1.50586 -4.9707 4.56934 -4.9707 8.11035c0 0.0576172 0 0.114258 0.000976562 0.170898v26.085c0.0585938 5.22852 4.29492 9.46484 9.52344 9.52246
-c0.146484 0.0078125 0.296875 0.00585938 0.444336 0.00585938c1.65332 0 3.20117 -0.456055 4.52441 -1.24707l74.5293 -43.0615v133.323c0.0615234 2.62891 2.21387 4.74609 4.85742 4.74609c0.469727 0 0.922852 -0.0673828 1.35254 -0.191406
-c4.39453 -1.18066 8.99414 -1.80664 13.7588 -1.80664c5.29102 0 10.4023 0.776367 15.2256 2.2207c3.31055 1.24512 6.21094 -1.65527 6.21094 -4.55469v-134.152l74.5273 43.0625c1.50684 0.730469 3.2002 1.17383 4.96973 1.24121zM286.007 370
-c-12.6943 0 -23 10.3057 -23 23s10.3057 23 23 23s23 -10.3057 23 -23s-10.3057 -23 -23 -23zM349.634 380.086c12.6943 0 23 -10.3057 23 -23s-10.3057 -23 -23 -23c-12.6934 0 -23 10.3057 -23 23s10.3066 23 23 23zM412.816 296.4c-12.6943 0 -23 10.3057 -23 23
-c0 12.6934 10.3057 23 23 23c12.6934 0 23 -10.3066 23 -23c0 -12.6943 -10.3066 -23 -23 -23zM349.634 305.6c12.6943 0 23 -10.3057 23 -23c0 -12.6934 -10.3057 -23 -23 -23c-12.6934 0 -23 10.3066 -23 23c0 12.6943 10.3066 23 23 23zM286.007 222.356
-c-12.6943 0 -23 10.3018 -23 22.9951v0.00488281c0 12.6934 10.3057 23 23 23s23 -10.3066 23 -23c0 -12.6943 -10.3057 -23 -23 -23zM223.933 185.998c-12.6934 0 -23 10.3018 -23 22.9961v0.00390625c0 12.6943 10.3066 23 23 23c12.6943 0 23 -10.3057 23 -23
-s-10.3057 -23 -23 -23zM412.816 268.356c12.6924 0 22.9971 -10.3086 23 -23c0 -12.6943 -10.3066 -23 -23 -23c-12.6943 0 -23 10.3057 -23 23c0 12.6934 10.3057 23 23 23zM412.816 196.084c12.6924 0 22.9971 -10.3076 23 -23c0 -12.6943 -10.3066 -23 -23 -23
-c-12.6943 0 -23 10.3057 -23 23s10.3057 23 23 23z" />
-    <glyph glyph-name="watchman-monitoring" unicode="&#xe087;" horiz-adv-x="512" 
-d="M256 432c132.548 0 240 -107.452 240 -240s-107.452 -240 -240 -240s-240 107.452 -240 240s107.452 240 240 240zM121.69 18.8779l27.6846 204.861l-9.46777 7.39941c-2.98242 2.34082 -4.89062 5.9668 -4.89062 10.0479
-c0 0.100586 0.000976562 0.201172 0.00292969 0.301758c0 7.04883 0.144531 19.5488 0.144531 19.5488l13.9434 2.0127l0.120117 10.9668l-102.899 -17.8945c-6.20508 -20.251 -9.58691 -41.7412 -9.58691 -64.0137v-0.108398c0 -70.3223 33.3145 -132.972 84.9492 -173.122
-zM227.382 302.148l0.0400391 -3.61816l193.512 37.7002c-40.1152 46.0273 -99.1426 75.0244 -164.934 75.0244c-74.4863 0 -140.374 -37.3623 -180.018 -94.2998l73.5068 -19.1758l0.0478516 4.36914l-8.48145 7.61719s-6.93359 5.38086 0.144531 9.34473
-c7.18652 4.02539 39.5283 34.5 39.5283 34.5c7.20312 7.34668 10.1123 5.47656 15.4609 0c0 0 32.3418 -30.4766 39.5293 -34.5c7.07715 -3.96387 0.143555 -9.34473 0.143555 -9.34473zM261.445 -27.1211c118.386 2.90918 213.813 100.047 213.813 219.121
-c-0.0107422 17.2881 -2.04297 33.9951 -5.85059 50.1299l-241.711 31.3916l0.116211 -10.4746l13.9424 -2.0127s0.144531 -12.5049 0.144531 -19.5488c0.00195312 -0.100586 0.0126953 -0.19043 0.0126953 -0.290039c0 -4.08203 -1.91797 -7.71973 -4.90137 -10.0596
-l-9.4668 -7.39941z" />
-    <glyph glyph-name="wodu" unicode="&#xe088;" horiz-adv-x="640" 
-d="M178.414 108.294h-37.3145l-28.9336 116.231h-0.477539l-28.4609 -116.231h-38.0273l-45.2002 170.76h37.5479l27.0264 -116.23h0.477539l29.6553 116.23h35.1572l29.1777 -117.667h0.479492l27.9785 117.667h36.8311zM271.4 235.287
-c38.9834 0 64.0996 -25.8281 64.0996 -65.291c0 -39.2217 -25.1113 -65.0498 -64.0996 -65.0498c-38.7432 0 -63.8555 25.8281 -63.8555 65.0498c0.00195312 39.4629 25.1143 65.291 63.8555 65.291zM271.4 130.534c23.1992 0 30.1328 19.8516 30.1328 39.4619
-c0 19.8516 -6.93457 39.7002 -30.1328 39.7002c-27.7002 0 -29.8945 -19.8506 -29.8945 -39.7002c0.00195312 -19.6104 6.9375 -39.4619 29.8945 -39.4619zM435.084 124.078h-0.477539c-7.89355 -13.3926 -21.7656 -19.1318 -37.5488 -19.1318
-c-37.3096 0 -55.4844 32.0449 -55.4844 66.2461c0 33.2422 18.415 64.0947 54.7666 64.0947c14.5889 0 28.9385 -6.21777 36.8311 -18.416h0.240234v62.1826h33.96v-170.76h-32.2871v15.7842zM405.428 209.7c-22.2393 0 -29.8936 -19.1338 -29.8936 -39.4629
-c0 -19.3711 8.84766 -39.7002 29.8936 -39.7002c22.4824 0 29.1787 19.6133 29.1787 39.9395c0 20.0879 -7.1748 39.2236 -29.1787 39.2236zM592.96 108.294h-32.2871v17.2188h-0.717773c-8.60938 -13.8701 -23.4365 -20.5664 -37.7861 -20.5664
-c-36.1133 0 -45.2002 20.3281 -45.2002 50.9404v76.0527h33.959v-69.8398c0 -20.3281 5.97949 -30.3721 21.7656 -30.3721c18.415 0 26.3057 10.2832 26.3057 35.3936v64.8184h33.9609v-123.646zM602.453 145.124h37.5469v-36.8301h-37.5469v36.8301z" />
-    <glyph glyph-name="twitter-square" unicode="&#xf081;" 
-d="M400 416c26.5 0 48 -21.5 48 -48v-352c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h352zM351.1 257.2c12.8008 9.2998 24 20.8994 32.9004 34c-11.7998 -5.10059 -24.5996 -8.7998 -37.7998 -10.2002
-c13.5996 8.09961 23.8994 20.9004 28.7998 36.0996c-12.5996 -7.5 -26.7998 -13 -41.5996 -15.7998c-12 12.7998 -29 20.7002 -47.9004 20.7002c-40 0 -73.2998 -36.0996 -64 -80.5996c-54.4004 2.7998 -102.9 28.7998 -135.2 68.5996
-c-5.7002 -9.7002 -8.89941 -20.9004 -8.89941 -33.0996c0 -0.0371094 -0.0664062 -0.0322266 -0.0664062 -0.0683594c0 -22.749 11.6309 -42.8018 29.2656 -54.5322c-10.6992 0.400391 -20.8994 3.40039 -29.5996 8.2998v-0.799805c0 -31.8994 22.5 -58.2998 52.5 -64.3994
-c-10.4004 -2.7002 -19.5 -2.7002 -29.5996 -1.2002c8.2998 -26 32.5 -44.9004 61.2998 -45.5c-22.5 -17.6006 -50.7002 -28 -81.4004 -28c-5.39941 0 -10.5 0.200195 -15.7998 0.799805c29 -18.5996 63.5 -29.4004 100.7 -29.4004c120.6 0 186.6 99.9004 186.6 186.601
-c0 2.7998 0 5.7002 -0.200195 8.5z" />
-    <glyph glyph-name="facebook-square" unicode="&#xf082;" 
-d="M400 416c26.4922 0 48 -21.5078 48 -48v-352c0 -26.4922 -21.5078 -48 -48 -48h-137.25v152.31h57.7803l11 71.6904h-68.7803v46.5498c0 19.6104 9.61035 38.7305 40.4199 38.7305h31.2705v61s-28.3809 4.83984 -55.5205 4.83984
-c-56.6699 0 -93.6699 -34.3301 -93.6699 -96.4805v-54.6396h-63v-71.6904h63v-152.31h-137.25c-26.4922 0 -48 21.5078 -48 48v352c0 26.4922 21.5078 48 48 48h352z" />
-    <glyph glyph-name="linkedin" unicode="&#xf08c;" 
-d="M416 416c17.5996 0 32 -14.5 32 -32.2998v-383.4c0 -17.7998 -14.4004 -32.2998 -32 -32.2998h-384.1c-17.6006 0 -31.9004 14.5 -31.9004 32.2998v383.4c0 17.7998 14.2998 32.2998 31.9004 32.2998h384.1zM135.4 32h0.0996094v213.8h-66.5v-213.8h66.4004zM102.2 275
-c21.2998 0 38.5 17.2002 38.5 38.5c0 21.2002 -17.2998 38.5 -38.5 38.5c-21.2998 0 -38.5 -17.2998 -38.5 -38.5s17.2002 -38.5 38.5 -38.5zM384.3 32v117.2c0 57.5996 -12.5 101.899 -79.7002 101.899c-32.2998 0 -54 -17.6992 -62.8994 -34.5h-0.900391v29.2002h-63.7002
-v-213.8h66.4004v105.8c0 27.9004 5.2998 54.9004 39.9004 54.9004c34 0 34.5 -31.9004 34.5 -56.7002v-104h66.3994z" />
-    <glyph glyph-name="github-square" unicode="&#xf092;" 
-d="M400 416c26.5 0 48 -21.5 48 -48v-352c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h352zM277.3 32.2998c66 22 110.8 84.9004 110.7 158.3c0 91.8008 -74.4004 161.5 -166.2 161.5s-162 -69.6992 -162 -161.5
-c0 -73.3994 46.2002 -136.199 112.2 -158.3c8.5 -1.5 11.5 3.7002 11.5 8c0 4.10059 -0.200195 26.7002 -0.200195 40.6006c0 0 -46.3994 -10 -56.0996 19.6992c0 0 -7.60059 19.2002 -18.4004 24.2002c0 0 -15.0996 10.4004 1.10059 10.2002
-c0 0 16.3994 -1.2998 25.5 -17.0996c14.5 -25.6006 38.7998 -18.2002 48.2998 -13.9004c1.5 10.5996 5.7998 18 10.5996 22.2998c-37 4.10059 -74.2998 9.5 -74.2998 73.1006c0 18.1992 5 27.2998 15.5996 39c-1.7998 4.39941 -7.39941 22.0996 1.7002 45
-c13.9004 4.2998 45.7002 -17.9004 45.7002 -17.9004c13.2002 3.7002 27.5 5.59961 41.5996 5.59961c14.1006 0 28.4004 -1.89941 41.6006 -5.59961c0 0 31.7998 22.2002 45.7002 17.9004c9.09961 -23 3.39941 -40.7002 1.69922 -45
-c10.6006 -11.7002 17.1006 -20.8008 17.1006 -39c0 -63.9004 -39 -69 -76 -73.1006c6.09961 -5.2002 11.2998 -15.0996 11.2998 -30.7002c0 -22.2998 -0.200195 -49.8994 -0.200195 -55.2998c0 -4.2998 3.10059 -9.5 11.5 -8zM179.2 93.4004
-c-1.90039 -0.400391 -3.7002 0.399414 -3.90039 1.69922c-0.200195 1.5 1.10059 2.80078 3 3.2002c1.90039 0.200195 3.7002 -0.599609 3.90039 -1.89941c0.299805 -1.30078 -1 -2.60059 -3 -3zM169.7 94.2998c0 1.5 -1.7998 2.60059 -3.7002 2.40039
-c-2 0 -3.5 -1.10059 -3.5 -2.40039c0 -1.5 1.5 -2.59961 3.7002 -2.39941c2 0 3.5 1.09961 3.5 2.39941zM156 95.4004c-0.400391 -1.30078 -2.40039 -1.90039 -4.09961 -1.30078c-1.90039 0.400391 -3.2002 1.90039 -2.80078 3.2002
-c0.400391 1.2998 2.40039 1.90039 4.10059 1.5c2 -0.599609 3.2998 -2.09961 2.7998 -3.39941zM143.7 100.8c0.899414 0.799805 0.399414 2.7998 -0.900391 4.10059c-1.5 1.5 -3.39941 1.69922 -4.2998 0.599609c-1 -0.900391 -0.599609 -2.7998 0.900391 -4.09961
-c1.5 -1.5 3.39941 -1.7002 4.2998 -0.600586zM134.6 109.9c1.10059 0.799805 1.10059 2.59961 0 4.09961c-0.899414 1.5 -2.59961 2.2002 -3.69922 1.2998c-1.10059 -0.700195 -1.10059 -2.39941 0 -3.89941c1.09961 -1.5 2.7998 -2.10059 3.69922 -1.5zM128.1 119.6
-c0.900391 0.700195 0.700195 2.2002 -0.399414 3.5c-1.10059 1 -2.60059 1.5 -3.5 0.600586c-0.900391 -0.700195 -0.700195 -2.2002 0.399414 -3.5c1.10059 -1 2.60059 -1.5 3.5 -0.600586zM121.4 127c0.399414 0.799805 -0.200195 1.90039 -1.5 2.59961
-c-1.30078 0.5 -2.40039 0.200195 -2.80078 -0.399414c-0.399414 -0.900391 0.200195 -2 1.5 -2.60059c1.10059 -0.699219 2.40039 -0.5 2.80078 0.400391z" />
-    <glyph glyph-name="twitter" unicode="&#xf099;" horiz-adv-x="512" 
-d="M459.37 296.284c0.325195 -4.54785 0.325195 -9.09766 0.325195 -13.6455c0 -138.72 -105.583 -298.558 -298.559 -298.558c-59.4521 0 -114.68 17.2188 -161.137 47.1055c8.44727 -0.973633 16.5684 -1.29883 25.3398 -1.29883
-c49.0547 0 94.2129 16.5684 130.274 44.832c-46.1318 0.975586 -84.792 31.1885 -98.1123 72.7725c6.49805 -0.974609 12.9951 -1.62402 19.8184 -1.62402c9.4209 0 18.8428 1.2998 27.6133 3.57324c-48.0811 9.74707 -84.1426 51.9795 -84.1426 102.984v1.29883
-c13.9688 -7.79688 30.2139 -12.6699 47.4307 -13.3184c-28.2637 18.8428 -46.7803 51.0049 -46.7803 87.3906c0 19.4922 5.19629 37.3604 14.2939 52.9541c51.6543 -63.6748 129.3 -105.258 216.364 -109.807c-1.62402 7.79688 -2.59863 15.918 -2.59863 24.04
-c0 57.8271 46.7822 104.934 104.934 104.934c30.2139 0 57.502 -12.6699 76.6709 -33.1367c23.7148 4.54785 46.4551 13.3193 66.5986 25.3398c-7.79785 -24.3662 -24.3662 -44.833 -46.1318 -57.8271c21.1172 2.27344 41.584 8.12207 60.4258 16.2432
-c-14.292 -20.791 -32.1611 -39.3086 -52.6279 -54.2529z" />
-    <glyph glyph-name="facebook" unicode="&#xf09a;" horiz-adv-x="512" 
-d="M504 192c0 -123.78 -90.6904 -226.38 -209.25 -245v173.31h57.7803l11 71.6904h-68.7803v46.5498c0 19.6104 9.61035 38.7305 40.4102 38.7305h31.2803v61s-28.3809 4.83984 -55.5205 4.83984c-56.6699 0 -93.6699 -34.3301 -93.6699 -96.4805v-54.6396h-63v-71.6904h63
-v-173.31c-118.56 18.6201 -209.25 121.22 -209.25 245c0 137 111 248 248 248s248 -111 248 -248z" />
-    <glyph glyph-name="github" unicode="&#xf09b;" horiz-adv-x="496" 
-d="M165.9 50.5996c0 -2 -2.30078 -3.59961 -5.2002 -3.59961c-3.2998 -0.299805 -5.60059 1.2998 -5.60059 3.59961c0 2 2.30078 3.60059 5.2002 3.60059c3 0.299805 5.60059 -1.2998 5.60059 -3.60059zM134.8 55.0996c0.700195 2 3.60059 3 6.2002 2.30078
-c3 -0.900391 4.90039 -3.2002 4.2998 -5.2002c-0.599609 -2 -3.59961 -3 -6.2002 -2c-3 0.599609 -5 2.89941 -4.2998 4.89941zM179 56.7998c2.90039 0.299805 5.59961 -1 5.90039 -2.89941c0.299805 -2 -1.7002 -3.90039 -4.60059 -4.60059
-c-3 -0.700195 -5.59961 0.600586 -5.89941 2.60059c-0.300781 2.2998 1.69922 4.19922 4.59961 4.89941zM244.8 440c138.7 0 251.2 -105.3 251.2 -244c0 -110.9 -67.7998 -205.8 -167.8 -239c-12.7002 -2.2998 -17.2998 5.59961 -17.2998 12.0996
-c0 8.2002 0.299805 49.9004 0.299805 83.6006c0 23.5 -7.7998 38.5 -17 46.3994c55.8994 6.30078 114.8 14 114.8 110.5c0 27.4004 -9.7998 41.2002 -25.7998 58.9004c2.59961 6.5 11.0996 33.2002 -2.60059 67.9004c-20.8994 6.59961 -69 -27 -69 -27
-c-20 5.59961 -41.5 8.5 -62.7998 8.5s-42.7998 -2.90039 -62.7998 -8.5c0 0 -48.0996 33.5 -69 27c-13.7002 -34.6006 -5.2002 -61.4004 -2.59961 -67.9004c-16 -17.5996 -23.6006 -31.4004 -23.6006 -58.9004c0 -96.1992 56.4004 -104.3 112.3 -110.5
-c-7.19922 -6.59961 -13.6992 -17.6992 -16 -33.6992c-14.2998 -6.60059 -51 -17.7002 -72.8994 20.8994c-13.7002 23.7998 -38.6006 25.7998 -38.6006 25.7998c-24.5 0.300781 -1.59961 -15.3994 -1.59961 -15.3994c16.4004 -7.5 27.7998 -36.6006 27.7998 -36.6006
-c14.7002 -44.7998 84.7002 -29.7998 84.7002 -29.7998c0 -21 0.299805 -55.2002 0.299805 -61.3994c0 -6.5 -4.5 -14.4004 -17.2998 -12.1006c-99.7002 33.4004 -169.5 128.3 -169.5 239.2c0 138.7 106.1 244 244.8 244zM97.2002 95.0996
-c1.2998 1.30078 3.59961 0.600586 5.2002 -1c1.69922 -1.89941 2 -4.19922 0.699219 -5.19922c-1.2998 -1.30078 -3.59961 -0.600586 -5.19922 1c-1.7002 1.89941 -2 4.19922 -0.700195 5.19922zM86.4004 103.2c0.699219 1 2.2998 1.2998 4.2998 0.700195
-c2 -1 3 -2.60059 2.2998 -3.90039c-0.700195 -1.40039 -2.7002 -1.7002 -4.2998 -0.700195c-2 1 -3 2.60059 -2.2998 3.90039zM118.8 67.5996c1.2998 1.60059 4.2998 1.30078 6.5 -1c2 -1.89941 2.60059 -4.89941 1.2998 -6.19922
-c-1.2998 -1.60059 -4.19922 -1.30078 -6.5 1c-2.2998 1.89941 -2.89941 4.89941 -1.2998 6.19922zM107.4 82.2998c1.59961 1.2998 4.19922 0.299805 5.59961 -2c1.59961 -2.2998 1.59961 -4.89941 0 -6.2002c-1.2998 -1 -4 0 -5.59961 2.30078
-c-1.60059 2.2998 -1.60059 4.89941 0 5.89941z" />
-    <glyph glyph-name="pinterest" unicode="&#xf0d2;" horiz-adv-x="496" 
-d="M496 192c0 -137 -111 -248 -248 -248c-25.5996 0 -50.2002 3.90039 -73.4004 11.0996c10.1006 16.5 25.2002 43.5 30.8008 65c3 11.6006 15.3994 59 15.3994 59c8.10059 -15.3994 31.7002 -28.5 56.7998 -28.5c74.8008 0 128.7 68.8008 128.7 154.301
-c0 81.8994 -66.8994 143.199 -152.899 143.199c-107 0 -163.9 -71.7998 -163.9 -150.1c0 -36.4004 19.4004 -81.7002 50.2998 -96.0996c4.7002 -2.2002 7.2002 -1.2002 8.2998 3.2998c0.800781 3.39941 5 20.2998 6.90039 28.0996
-c0.599609 2.5 0.299805 4.7002 -1.7002 7.10059c-10.0996 12.5 -18.2998 35.2998 -18.2998 56.5996c0 54.7002 41.4004 107.6 112 107.6c60.9004 0 103.6 -41.5 103.6 -100.899c0 -67.1006 -33.8994 -113.601 -78 -113.601c-24.2998 0 -42.5996 20.1006 -36.6992 44.8008
-c7 29.5 20.5 61.2998 20.5 82.5996c0 19 -10.2002 34.9004 -31.4004 34.9004c-24.9004 0 -44.9004 -25.7002 -44.9004 -60.2002c0 -22 7.40039 -36.7998 7.40039 -36.7998s-24.5 -103.801 -29 -123.2c-5 -21.4004 -3 -51.6006 -0.900391 -71.2002
-c-92.1992 36.0996 -157.6 125.9 -157.6 231c0 137 111 248 248 248s248 -111 248 -248z" />
-    <glyph glyph-name="pinterest-square" unicode="&#xf0d3;" 
-d="M448 368v-352c0 -26.5 -21.5 -48 -48 -48h-245.6c9.7998 16.4004 22.3994 40 27.3994 59.2998c3 11.5 15.2998 58.4004 15.2998 58.4004c8 -15.2998 31.4004 -28.2002 56.3008 -28.2002c74.0996 0 127.399 68.0996 127.399 152.7
-c0 81.0996 -66.2002 141.8 -151.399 141.8c-106 0 -162.2 -71.0996 -162.2 -148.6c0 -36 19.2002 -80.8008 49.7998 -95.1006c4.7002 -2.2002 7.09961 -1.2002 8.2002 3.2998c0.799805 3.40039 5 20.1006 6.7998 27.8008c0.599609 2.5 0.299805 4.59961 -1.7002 7
-c-10.0996 12.2998 -18.2998 34.8994 -18.2998 56c0 54.1992 41 106.6 110.9 106.6c60.2998 0 102.6 -41.0996 102.6 -99.9004c0 -66.3994 -33.5 -112.399 -77.2002 -112.399c-24.0996 0 -42.0996 19.8994 -36.3994 44.3994c6.89941 29.2002 20.2998 60.7002 20.2998 81.8008
-c0 53 -75.5 45.6992 -75.5 -25c0 -21.7002 7.2998 -36.5 7.2998 -36.5c-31.4004 -132.801 -36.0996 -134.5 -29.5996 -192.601l2.19922 -0.799805h-88.5996c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h352c26.5 0 48 -21.5 48 -48z" />
-    <glyph glyph-name="google-plus-square" unicode="&#xf0d4;" 
-d="M400 416c26.5 0 48 -21.5 48 -48v-352c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h352zM164 92c57.7002 0 96 40.5 96 97.5996c0 6.5 -0.599609 11.6006 -1.59961 16.6006h-94.4004v-34.4004h56.9004
-c-2.40039 -14.5996 -17.2002 -43.0996 -56.8008 -43.0996c-34.0996 0 -61.8994 28.2998 -61.8994 63.2002c0 35 27.7998 63.1992 61.8994 63.1992c19.5 0 32.4004 -8.2998 39.8008 -15.3994l27.0996 26.0996c-17.5 16.4004 -40 26.2002 -67 26.2002
-c-55.2998 0 -100 -44.7002 -100 -100s44.7002 -100 100 -100zM384 173.8v29.2002h-29v29h-29.2002v-29h-29v-29.2002h29v-29h29.2002v29h29z" />
-    <glyph glyph-name="google-plus-g" unicode="&#xf0d5;" horiz-adv-x="640" 
-d="M386.061 219.504c1.83398 -9.69238 3.14355 -19.3838 3.14355 -31.9561c0 -109.753 -73.6055 -187.548 -184.404 -187.548c-106.084 0 -192 85.915 -192 192s85.916 192 192 192c51.8643 0 95.083 -18.8594 128.611 -50.292l-52.126 -50.0303
-c-14.1455 13.6211 -39.0283 29.5996 -76.4854 29.5996c-65.4834 0 -118.92 -54.2217 -118.92 -121.277s53.4365 -121.277 118.92 -121.277c75.9609 0 104.514 54.7451 108.965 82.7734h-108.965v66.0088h181.261v-0.000976562zM571.467 213.067h55.7334v-56.001h-55.7334
-v-55.7334h-56.001v55.7334h-55.7324v56.001h55.7324v55.7324h56.001v-55.7324z" />
-    <glyph glyph-name="linkedin-in" unicode="&#xf0e1;" 
-d="M100.28 0h-92.8799v299.1h92.8799v-299.1zM53.79 339.9c-29.7002 0 -53.79 24.5996 -53.79 54.2998c0 29.6875 24.1025 53.79 53.79 53.79s53.79 -24.1025 53.79 -53.79c0 -29.7002 -24.0996 -54.2998 -53.79 -54.2998zM447.9 0h-92.6807v145.6
-c0 34.7002 -0.700195 79.2002 -48.29 79.2002c-48.29 0 -55.6895 -37.7002 -55.6895 -76.7002v-148.1h-92.7803v299.1h89.0801v-40.7998h1.2998c12.4004 23.5 42.6904 48.2998 87.8799 48.2998c94 0 111.28 -61.8994 111.28 -142.3v-164.3h-0.0996094z" />
-    <glyph glyph-name="github-alt" unicode="&#xf113;" horiz-adv-x="480" 
-d="M186.1 119.3c0 -20.8994 -10.8994 -55.0996 -36.6992 -55.0996c-25.8008 0 -36.7002 34.2002 -36.7002 55.0996c0 20.9004 10.8994 55.1006 36.7002 55.1006c25.7998 0 36.6992 -34.2002 36.6992 -55.1006zM480 169.8c0 -31.8994 -3.2002 -65.7002 -17.5 -95
-c-37.9004 -76.5996 -142.1 -74.7998 -216.7 -74.7998c-75.7998 0 -186.2 -2.7002 -225.6 74.7998c-14.6006 29 -20.2002 63.1006 -20.2002 95c0 41.9004 13.9004 81.5 41.5 113.601c-5.2002 15.7998 -7.7002 32.3994 -7.7002 48.7998
-c0 21.5 4.90039 32.2998 14.6006 51.7998c45.2998 0 74.2998 -9 108.8 -36c29 6.90039 58.7998 10 88.7002 10c27 0 54.1992 -2.90039 80.3994 -9.2002c34 26.7002 63 35.2002 107.8 35.2002c9.80078 -19.5 14.6006 -30.2998 14.6006 -51.7998
-c0 -16.4004 -2.60059 -32.7002 -7.7002 -48.2002c27.5 -32.4004 39 -72.2998 39 -114.2zM415.7 119.3c0 43.9004 -26.7002 82.6006 -73.5 82.6006c-18.9004 0 -37 -3.40039 -56 -6c-14.9004 -2.30078 -29.7998 -3.2002 -45.1006 -3.2002
-c-15.1992 0 -30.0996 0.899414 -45.0996 3.2002c-18.7002 2.59961 -37 6 -56 6c-46.7998 0 -73.5 -38.7002 -73.5 -82.6006c0 -87.7998 80.4004 -101.3 150.4 -101.3h48.1992c70.3008 0 150.601 13.4004 150.601 101.3zM333.1 174.4
-c25.8008 0 36.7002 -34.2002 36.7002 -55.1006c0 -20.8994 -10.8994 -55.0996 -36.7002 -55.0996c-25.7998 0 -36.6992 34.2002 -36.6992 55.0996c0 20.9004 10.8994 55.1006 36.6992 55.1006z" />
-    <glyph glyph-name="maxcdn" unicode="&#xf136;" horiz-adv-x="512" 
-d="M461.1 5.2998h-97.3994l51.8994 242.7c2.30078 10.2002 0.900391 19.5 -4.39941 25.7002c-5 6.09961 -13.7002 9.59961 -24.2002 9.59961h-49.2998l-59.5 -278h-97.4004l59.5 278h-83.3994l-59.5 -278h-97.4004l59.5 278l-44.5996 95.4004h372.1
-c39.4004 0 75.2998 -16.2998 98.2998 -44.9004c23.2998 -28.5996 31.7998 -67.3994 23.6006 -105.899z" />
-    <glyph glyph-name="html5" unicode="&#xf13b;" horiz-adv-x="384" 
-d="M0 416h384l-34.9004 -395.8l-157.6 -52.2002l-156.6 52.2002zM308.2 288.1l4.39941 47.7002h-241.1l12.7998 -145.6h166.9l-6 -62.2002l-53.7002 -14.5l-53.5 14.5l-3.5 38.0996h-47.7002l6 -75.7998l98.7002 -27.2998h1.09961v0.299805l97.9004 27l13.5996 148.4h-175.6
-l-4.09961 49.3994h183.8z" />
-    <glyph glyph-name="css3" unicode="&#xf13c;" horiz-adv-x="512" 
-d="M480 416l-64 -368l-223.3 -80l-192.7 80l19.5996 94.7998h82l-8 -40.5996l116.4 -44.4004l134.1 44.4004l18.8008 97.0996h-333.4l16 82h333.7l10.5 52.7002h-333.4l16.2998 82h407.4z" />
-    <glyph glyph-name="btc" unicode="&#xf15a;" horiz-adv-x="384" 
-d="M310.204 205.362c46.0059 -11.0283 74.9971 -38.4443 69.3262 -99.8906c-7.24805 -76.5723 -61.5967 -97.0547 -142.896 -101.467v-68.0049h-48.5273v66.7451c-12.29 0 -25.21 0 -38.4443 0.314453v-67.0596h-48.5283v68.0049s-8.88867 0.31543 -97.3701 0.31543
-l9.76758 57.666c34.7305 -0.614258 50.3301 -3.4209 53.2549 16.0703v217.43c-4.60645 24.5664 -24.709 22.1045 -63.0234 21.4268v51.6777c58.748 -0.275391 79.5283 -0.539062 97.3701 0v79.4092h48.5283v-77.833c12.9189 0.31543 25.8389 0.629883 38.4443 0.629883
-v77.2031h48.5273v-79.4092c62.3926 -5.35547 109.492 -24.5781 114.851 -81.9287c4.09668 -41.9102 -13.5508 -67.1201 -41.2803 -81.2998zM150.608 313.447v-96.7402c27.416 0 113.126 -6.30273 113.126 48.2119c0 57.0352 -85.7109 48.5283 -113.126 48.5283z
-M150.608 61.6709c32.7715 0 133.126 -6.93262 133.127 53.2529c0 62.3936 -100.355 53.2549 -133.127 53.2549v-106.508z" />
-    <glyph glyph-name="youtube" unicode="&#xf167;" horiz-adv-x="576" 
-d="M549.655 323.917c11.4121 -42.8672 11.4121 -132.305 11.4121 -132.305s0 -89.4385 -11.4121 -132.306c-6.28125 -23.6494 -24.7871 -41.5 -48.2842 -47.8203c-42.5908 -11.4863 -213.371 -11.4863 -213.371 -11.4863s-170.78 0 -213.371 11.4863
-c-23.4971 6.32031 -42.0029 24.1709 -48.2842 47.8203c-11.4121 42.8672 -11.4121 132.306 -11.4121 132.306s0 89.4375 11.4121 132.305c6.28125 23.6504 24.7871 42.2754 48.2842 48.5967c42.5908 11.4863 213.371 11.4863 213.371 11.4863s170.781 0 213.371 -11.4863
-c23.4971 -6.32031 42.0029 -24.9463 48.2842 -48.5967zM232.145 110.409l142.739 81.2012l-142.739 81.2051v-162.406z" />
-    <glyph glyph-name="xing" unicode="&#xf168;" horiz-adv-x="384" 
-d="M162.7 238c-1.7998 -3.2998 -25.2002 -44.4004 -70.1006 -123.5c-4.89941 -8.2998 -10.7998 -12.5 -17.6992 -12.5h-65.1006c-7.7002 0 -12.0996 7.5 -8.5 14.4004l69 121.3c0.200195 0 0.200195 0.0996094 0 0.299805l-43.8994 75.5996
-c-4.30078 7.80078 0.299805 14.1006 8.5 14.1006h65.0996c7.2998 0 13.2998 -4.10059 18 -12.2002zM382.6 401.9l-144 -253v-0.300781l91.6006 -166.6c3.89941 -7.09961 0.200195 -14.0996 -8.5 -14.0996h-65.2002c-7.59961 0 -13.5996 4 -18 12.1992l-92.4004 168.5
-c3.30078 5.80078 51.5 90.8008 144.801 255.2c4.59961 8.10059 10.3994 12.2002 17.5 12.2002h65.6992c8 0 12.3008 -6.7002 8.5 -14.0996z" />
-    <glyph glyph-name="xing-square" unicode="&#xf169;" 
-d="M400 416c26.5 0 48 -21.5 48 -48v-352c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h352zM140.4 127.8c4.89941 0 9.09961 2.90039 12.5996 9.10059c32.0996 56.5 48.7998 85.8994 50.0996 88.1992l-31.8994 55.3008
-c-3.40039 5.7998 -7.7002 8.69922 -12.9004 8.69922h-46.5996c-5.7998 0 -9 -4.5 -6 -10.0996l31.3994 -54c0.100586 -0.0996094 0.100586 -0.200195 0 -0.200195l-49.2998 -86.7002c-2.7002 -5 0.5 -10.2998 6 -10.2998h46.6006zM360.1 341.9
-c2.80078 5.2998 -0.299805 10.0996 -6 10h-46.8994c-5.10059 0 -9.2002 -2.90039 -12.5 -8.7002c-66.6006 -117.4 -101.101 -178.2 -103.4 -182.3l66 -120.301c3.2002 -5.7998 7.40039 -8.69922 12.9004 -8.69922h46.5996c6.10059 0 8.7998 5 6 10.0996l-65.5 119v0.200195z
-" />
-    <glyph glyph-name="dropbox" unicode="&#xf16b;" horiz-adv-x="528" 
-d="M264.4 331.7l-132 -84.2998l132 -84.3008l-132 -84.2998l-132.4 85.1006l132.3 84.2998l-132.3 83.5l132.3 84.2998zM131.6 52.2998l132 84.2998l132 -84.2998l-132 -84.2998zM264.4 163.9l132 84.2998l-132 83.5996l131.3 84.2002l132.3 -84.2998l-132.3 -84.2998
-l132.3 -84.2002l-132.3 -84.2998z" />
-    <glyph glyph-name="stack-overflow" unicode="&#xf16c;" horiz-adv-x="384" 
-d="M290.7 137l-8.2002 -39l-195.7 41l8.2002 39.2998zM341.7 224l-25.5 -30.7998l-153.5 128.3l25.5 30.7998zM310.5 184.3l-16.7998 -36.2998l-181.2 84.5l16.7002 36.5zM262 416l119.3 -160.3l-32 -24l-119.3 160.3zM282.5 88v-39.7002h-200v39.7002h200zM322.2 8v120h40
-v-160h-359.5v160h40v-120h279.5z" />
-    <glyph glyph-name="instagram" unicode="&#xf16d;" 
-d="M224.1 307c63.6006 0 114.9 -51.2998 114.9 -114.9c0 -63.5996 -51.2998 -114.899 -114.9 -114.899c-63.5996 0 -114.899 51.2998 -114.899 114.899c0 63.6006 51.2998 114.9 114.899 114.9zM224.1 117.4c41.1006 0 74.7002 33.5 74.7002 74.6992
-c0 41.2002 -33.5 74.7002 -74.7002 74.7002c-41.1992 0 -74.6992 -33.5 -74.6992 -74.7002c0 -41.1992 33.5996 -74.6992 74.6992 -74.6992zM370.5 311.7c0 -14.9004 -12 -26.7998 -26.7998 -26.7998c-14.9004 0 -26.7998 12 -26.7998 26.7998s12 26.7998 26.7998 26.7998
-s26.7998 -12 26.7998 -26.7998zM446.6 284.5c2.10059 -37 2.10059 -147.8 0 -184.8c-1.7998 -35.9004 -10 -67.7002 -36.1992 -93.9004c-26.2002 -26.2998 -58 -34.5 -93.9004 -36.2002c-37 -2.09961 -147.9 -2.09961 -184.9 0
-c-35.8994 1.80078 -67.5996 10 -93.8994 36.2002s-34.5 58 -36.2002 93.9004c-2.09961 37 -2.09961 147.899 0 184.899c1.7998 35.9004 9.90039 67.7002 36.2002 93.9004s58.0996 34.4004 93.8994 36.0996c37 2.10059 147.9 2.10059 184.9 0
-c35.9004 -1.7998 67.7002 -10 93.9004 -36.1992c26.2998 -26.2002 34.5 -58 36.1992 -93.9004zM398.8 60c11.7002 29.4004 9 99.5 9 132.1c0 32.6006 2.7002 102.601 -9 132.101c-7.89941 19.7002 -23 34.7998 -42.5996 42.5996c-29.4004 11.6006 -99.5 9 -132.101 9
-c-32.5996 0 -102.6 2.7002 -132.1 -9c-19.7002 -7.89941 -34.7998 -23 -42.5996 -42.5996c-11.6006 -29.4004 -9 -99.5 -9 -132.101c0 -32.5996 -2.7002 -102.6 9 -132.1c7.89941 -19.7002 23 -34.7998 42.5996 -42.5996c29.4004 -11.6006 99.5 -9 132.1 -9
-c32.6006 0 102.601 -2.7002 132.101 9c19.7002 7.89941 34.7998 23 42.5996 42.5996z" />
-    <glyph glyph-name="flickr" unicode="&#xf16e;" 
-d="M400 416c26.5 0 48 -21.5 48 -48v-352c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h352zM144.5 129c35.0996 0 63.5 28.4004 63.5 63.5s-28.4004 63.5 -63.5 63.5s-63.5 -28.4004 -63.5 -63.5s28.4004 -63.5 63.5 -63.5z
-M303.5 129c35.0996 0 63.5 28.4004 63.5 63.5s-28.4004 63.5 -63.5 63.5s-63.5 -28.4004 -63.5 -63.5s28.4004 -63.5 63.5 -63.5z" />
-    <glyph glyph-name="adn" unicode="&#xf170;" horiz-adv-x="496" 
-d="M248 280.5l64.9004 -98.7998h-129.801zM496 192c0 -136.9 -111.1 -248 -248 -248s-248 111.1 -248 248s111.1 248 248 248s248 -111.1 248 -248zM396.2 109.3l-148.2 223.2l-148.2 -223.2h30.4004l33.5996 51.7002h168.601l33.5996 -51.7002h30.2002z" />
-    <glyph glyph-name="bitbucket" unicode="&#xf171;" horiz-adv-x="512" 
-d="M22.2002 416l466.8 -0.200195c0.954102 -0.0136719 1.875 -0.0800781 2.7998 -0.200195c7.58789 -1.25 13.3994 -7.83203 13.3994 -15.7715c0 -0.860352 -0.0683594 -1.7041 -0.199219 -2.52832l-67.9004 -416.8c-1.24902 -7.58887 -7.84277 -13.4014 -15.7832 -13.4014
-c-0.0722656 0 -0.144531 0 -0.216797 0.000976562h-325.699c-10.7129 0.0869141 -19.5967 7.94727 -21.3008 18.2002l-67.8994 412.101c-0.116211 0.924805 -0.182617 1.84668 -0.200195 2.7998c0.108398 8.7373 7.23242 15.8008 15.9951 15.8008
-c0.0683594 0 0.136719 0 0.205078 -0.000976562zM308.1 118.2l25.2002 147h-157.3l28.0996 -147h104z" />
-    <glyph glyph-name="tumblr" unicode="&#xf173;" horiz-adv-x="320" 
-d="M309.8 -32.2998c-13.5996 -14.5 -50 -31.7002 -97.3994 -31.7002c-120.801 0 -147 88.7998 -147 140.6v144h-47.5c-5.5 0 -10 4.5 -10 10v68c0 7.2002 4.5 13.6006 11.2998 16c62 21.8008 81.5 76 84.2998 117.101c0.799805 11 6.5 16.2998 16.0996 16.2998h70.9004
-c5.5 0 10 -4.5 10 -10v-115.2h83c5.5 0 10 -4.39941 10 -9.89941v-81.7002c0 -5.5 -4.5 -10 -10 -10h-83.4004v-133.2c0 -34.2002 23.7002 -53.5996 68 -35.7998c4.80078 1.89941 9 3.2002 12.7002 2.2002c3.5 -0.900391 5.7998 -3.40039 7.40039 -7.90039l22 -64.2998
-c1.7998 -5 3.2998 -10.6006 -0.400391 -14.5z" />
-    <glyph glyph-name="tumblr-square" unicode="&#xf174;" 
-d="M400 416c26.5 0 48 -21.5 48 -48v-352c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h352zM317.7 51.7998c2.2998 2.40039 1.2998 5.90039 0.299805 9.10059l-13.7998 40.1992c-1 2.80078 -2.40039 4.40039 -4.60059 4.90039
-c-2.39941 0.599609 -5 -0.200195 -8 -1.40039c-27.6992 -11.0996 -42.5 1 -42.5 22.4004v83.2998h52.1006c3.39941 0 6.2002 2.7998 6.2002 6.2002v51.0996c0 3.40039 -2.80078 6.2002 -6.2002 6.2002h-51.9004v72c0 3.40039 -2.7998 6.2002 -6.2002 6.2002h-44.2998
-c-5.89941 0 -9.5 -3.2998 -10 -10.2002c-1.7998 -25.7002 -13.8994 -59.5 -52.7002 -73.2002c-4.2998 -1.5 -7.09961 -5.5 -7.09961 -10v-42.5c0 -3.39941 2.7998 -6.19922 6.2002 -6.19922h29.7002v-90c0 -32.4004 16.3994 -87.9004 91.8994 -87.9004
-c29.7002 0 52.4004 10.7002 60.9004 19.7998z" />
-    <glyph glyph-name="apple" unicode="&#xf179;" horiz-adv-x="384" 
-d="M318.7 179.3c0 -1.89941 -3.5 -61.2002 61.7002 -91.8994c-12.2002 -36.8008 -54 -118.601 -102.601 -119.301c-28.0996 0 -44.5996 17.9004 -76.3994 17.9004c-32.8008 0 -50.6006 -17.2998 -75.8008 -17.9004c-48.1992 -1.5 -94.3994 88.5 -107.199 125.2
-c-9.60059 27.9336 -14.4004 55 -14.4004 81.2002c0 88.7002 59.2998 132.3 115.1 133.2c27 0 61.4004 -19.7002 76.4004 -19.7002c14.2002 0 53 23.5 88.5 20.7002c37.5 -2.90039 65.9004 -17.7002 84.7002 -44.6006c-33.6006 -20.3994 -50.2002 -48.0996 -50 -84.7998z
-M262.1 343.5c-19.5996 -22.9004 -43.3994 -36.2998 -69.5 -34.2998c-2.19922 27.5996 8.10059 52.0996 25.6006 71.8994c15.8994 18.5 43.7998 33.5 67.8994 34.9004c0.800781 -10.5996 3.30078 -40.0996 -24 -72.5z" />
-    <glyph glyph-name="windows" unicode="&#xf17a;" 
-d="M0 354.3l183.6 25.2998v-177.399h-183.6v152.1zM0 29.7002v149.899h183.6v-175.199zM203.8 1.7002v177.899h244.2v-211.6zM203.8 382.3l244.2 33.7002v-213.8h-244.2v180.1z" />
-    <glyph glyph-name="android" unicode="&#xf17b;" horiz-adv-x="576" 
-d="M420.55 146.07c-13.2461 0 -24 10.7539 -24 24s10.7539 24 24 24s24 -10.7539 24 -24s-10.7539 -24 -24 -24zM155.45 146.07c-13.2461 0 -24 10.7539 -24 24s10.7539 24 24 24s24 -10.7539 24 -24s-10.7539 -24 -24 -24zM429.15 290.55l47.9395 83
-c1.06738 1.59082 1.69043 3.50391 1.69043 5.5625c0 5.51855 -4.48047 10 -10 10c-3.93359 0 -7.32812 -2.25684 -8.95996 -5.5625v0l-48.54 -84.0693c-37.5742 16.8516 -79.2197 26.2266 -123.037 26.2266c-43.8164 0 -85.9492 -9.375 -123.523 -26.2266l-48.54 84.0693
-c-1.63184 3.30566 -5.03809 5.58203 -8.97168 5.58203c-5.51953 0 -10 -4.48145 -10 -10c0 -2.05859 0.634766 -3.99121 1.70215 -5.58203v0l47.9395 -83c-82.3193 -44.7695 -138.609 -128.1 -146.85 -226.55h576c-8.24023 98.4502 -64.54 181.78 -146.85 226.55z" />
-    <glyph glyph-name="linux" unicode="&#xf17c;" 
-d="M220.8 324.7c-1.09961 0.599609 -3.09961 0.399414 -3.39941 1.7002c-0.200195 0.399414 0.199219 0.899414 0.599609 1.09961c1.59961 0.900391 3.7998 0.599609 5.5 -0.0996094c1.2998 -0.600586 3.40039 -1.5 3.2002 -2.90039
-c-0.100586 -1.09961 -1.7998 -1.5 -2.90039 -1.5c-1.2002 0 -2 1.2002 -3 1.7002zM198.9 323c-1 -0.0996094 -2.7002 0.400391 -2.80078 1.40039c-0.199219 1.39941 1.90039 2.2998 3.2002 2.89941c1.7002 0.700195 3.90039 1 5.5 0.100586
-c0.400391 -0.200195 0.799805 -0.700195 0.600586 -1.10059c-0.400391 -1.2002 -2.40039 -1 -3.5 -1.59961c-1 -0.5 -1.80078 -1.7002 -3 -1.7002zM420 44.2002c11.0996 -12.4004 15.9004 -21.5 15.5 -29.7002c-0.5 -8.2002 -6.5 -13.7998 -13.9004 -18.2998
-c-14.8994 -9 -37.2998 -15.7998 -50.8994 -32.2002c-14.2002 -16.9004 -31.7002 -26.5996 -48.2998 -27.9004c-16.5 -1.2998 -32 6.30078 -40.3008 23v0.100586c-1.09961 2.09961 -1.89941 4.39941 -2.5 6.7002c-21.5 -1.2002 -40.1992 5.2998 -55.0996 4.09961
-c-22 -1.2002 -35.7998 -6.5 -48.2998 -6.59961c-4.7998 -10.6006 -14.2998 -17.6006 -25.9004 -20.2002c-16 -3.7002 -36.0996 0 -55.8994 10.3994c-18.5 9.80078 -42 8.90039 -59.3008 12.5c-8.69922 1.80078 -16.2998 5 -20.0996 12.3008
-c-3.7002 7.2998 -3 17.2998 2.2002 31.6992c1.7002 5.10059 0.399414 12.7002 -0.799805 20.8008c-0.600586 3.89941 -1.2002 7.89941 -1.2002 11.7998c0 4.2998 0.700195 8.5 2.7998 12.3994c4.5 8.5 11.7998 12.1006 18.5 14.5c6.7002 2.40039 12.7998 4 17 8.30078
-c5.2002 5.5 10.0996 14.3994 16.5996 20.1992c-2.59961 17.2002 0.200195 35.4004 6.2002 53.3008c12.6006 37.8994 39.2002 74.1992 58.1006 96.6992c16.0996 22.9004 20.7998 41.3008 22.5 64.7002c1.09961 31.7998 -24.5 135.4 77.8994 135.2
-c80.9004 -0.0996094 76.2998 -85.4004 75.7998 -131.3c-0.299805 -30.1006 16.3008 -50.5 33.4004 -72c15.2002 -18 35.0996 -44.2998 46.5 -74.4004c9.2998 -24.5996 12.9004 -51.7998 3.7002 -79.0996c1.39941 -0.5 2.7998 -1.2002 4.09961 -2
-c1.40039 -0.799805 2.7002 -1.7998 4 -2.90039c6.60059 -5.59961 8.7002 -14.2998 10.5 -22.3994c1.90039 -8.10059 3.60059 -15.7002 7.2002 -19.7002zM223.7 360.7c-3.2002 -7.2002 -3.90039 -14.9004 -2.90039 -21.7998c3.60059 -0.900391 8.90039 -2.40039 13 -4.40039
-c-2.09961 12.2002 4.5 23.5 11.7998 23c8.90039 -0.299805 13.9004 -15.5 9.10059 -27.2998c-0.799805 -1.90039 -2.7998 -3.40039 -3.90039 -4.60059c6.7002 -2.2998 11 -4.09961 12.6006 -4.89941c7.89941 9.5 10.7998 26.2002 4.2998 40.3994
-c-9.7998 21.4004 -34.2002 21.8008 -44 -0.399414zM183 372.2c-18.9004 0 -24 -37.5 -8.40039 -52.1006c7.80078 5.7002 6.90039 4.7002 5.90039 5.5c-8 6.90039 -6.59961 27.4004 1.7998 28.1006c6.2998 0.5 10.7998 -10.7002 9.60059 -19.6006
-c3.09961 2.10059 6.69922 3.60059 10.1992 4.60059c1.7002 19.2998 -9 33.5 -19.0996 33.5zM169.4 311.5c-4.2002 -3.2998 -5.60059 -7.40039 -4.2002 -12.2998c1.5 -4.90039 6.09961 -10.5 14.7002 -15.2998c7.7998 -4.60059 12 -11.5 20 -15
-c2.59961 -1.10059 5.69922 -1.90039 9.59961 -2.10059c18.4004 -1.09961 27.0996 11.2998 38.2002 14.9004c11.7002 3.7002 20.0996 11 22.7002 18.0996c3.19922 8.5 -2.10059 14.7002 -10.5 18.2002c-11.3008 4.90039 -16.3008 5.2002 -22.6006 9.2998
-c-10.2998 6.60059 -18.7998 8.90039 -25.8994 8.90039c-14.4004 0 -23.2002 -9.7998 -27.9004 -14.2002c-0.5 -0.5 -7.90039 -5.90039 -14.0996 -10.5zM172.7 -22.5c2.09961 20.5 -31.5 49 -41 68.9004l-19.6006 35.5996c-6.7998 9.2002 -13.7998 14.7998 -21.8994 16
-c-7.7002 1.2002 -12.6006 -1.40039 -17.7002 -6.90039c-4.7998 -5.09961 -8.7998 -12.2998 -14.2998 -18c-7.7998 -6.5 -9.2998 -6.19922 -19.6006 -9.89941c-6.2998 -2.2002 -11.2998 -4.60059 -14.7998 -11.2998c-2.7002 -5 -2.09961 -12.2002 -0.899414 -20
-c1.19922 -7.90039 3 -16.3008 0.599609 -23.9004v-0.200195c-5 -13.7002 -5 -21.7002 -2.59961 -26.3994c7.89941 -15.4004 46.5996 -6.10059 76.5 -21.9004c31.3994 -16.4004 72.5996 -17.0996 75.2998 18zM171.3 3.40039c37.6006 -25.7002 82.2002 -15.7002 114.3 7.19922
-c3.2002 11 6.30078 21.3008 6.80078 29c0.799805 15.2002 1.59961 28.7002 4.39941 39.9004c3.10059 12.5996 9.2998 23.0996 21.4004 27.2998c2.2998 21.1006 18.7002 21.1006 38.2998 12.5c18.9004 -8.5 26 -16 22.7998 -26.0996c1 0 2 0.0996094 4.2002 0
-c5.2002 16.8994 -14.2998 28 -30.7002 34.7998c2.90039 12 2.40039 24.0996 -0.399414 35.7002c-6 25.2998 -22.6006 47.7998 -35.2002 59c-2.2998 0.0996094 -2.10059 -1.90039 2.59961 -6.5c11.6006 -10.7002 37.1006 -49.2002 23.2998 -84.9004
-c-3.89941 1 -7.59961 1.5 -10.8994 1.40039c-5.2998 29.0996 -17.5 53.2002 -23.6006 64.5996c-11.5 21.4004 -29.5 65.2998 -37.1992 95.7002c-4.5 -6.40039 -12.4004 -11.9004 -22.3008 -15c-4.69922 -1.5 -9.69922 -5.5 -15.8994 -9
-c-13.9004 -8 -30 -8.7998 -42.4004 1.2002c-4.5 3.59961 -8 7.59961 -12.5996 10.2998c-1.60059 0.900391 -5.10059 3.2998 -6.2002 4.09961c-2 -37.7998 -27.2998 -85.2998 -39.2998 -112.699c-8.2998 -19.7002 -13.2002 -40.8008 -13.7998 -61.5
-c-21.8008 29.0996 -5.90039 66.2998 2.59961 82.3994c9.5 17.6006 11 22.5 8.7002 20.7998c-8.60059 -14 -22 -36.2998 -27.2002 -59.1992c-2.7002 -11.9004 -3.2002 -24 0.299805 -35.2002s11.1006 -21.5 24.6006 -29.9004c0 0 24.7998 -14.2998 38.2998 -32.5
-c7.39941 -10 9.7002 -18.7002 7.39941 -24.8994c-2.5 -6.7002 -9.59961 -8.90039 -16.6992 -8.90039c4.7998 -6 10.2998 -13 14.3994 -19.5996zM428.7 14.9004c0.299805 5.09961 -3.10059 13 -13.7002 24.5996c-10 11.2998 -7.2002 33.0996 -17.0996 41.5996
-c-6.90039 6 -13.6006 5.40039 -22.6006 5.10059c-7.7002 -8.7998 -25.7998 -19.6006 -38.3994 -16.2998c-11.5 2.89941 -18 16.2998 -18.8008 29.5c-0.299805 -0.200195 -0.699219 -0.300781 -1 -0.5c-7.09961 -3.90039 -11.0996 -10.8008 -13.6992 -21.1006
-c-2.5 -10.2002 -3.40039 -23.5 -4.2002 -38.7002c-0.700195 -11.7998 -6.2002 -26.3994 -9.90039 -40.5996c-3.5 -13.2002 -5.7998 -25.2002 -1.09961 -36.2998c7.2002 -14.5 19.5 -20.4004 33.7002 -19.2998c14.1992 1.09961 30.3994 9.7998 43.5996 25.5
-c22 26.5996 62.2998 29.6992 63.2002 46.5zM173.3 299.3c-3.5 2.7998 -3.09961 6.60059 -1.7002 6.5c2.40039 -0.299805 2.80078 -3.5 4.30078 -4.89941c2 -1.90039 4.59961 -4.40039 7.69922 -6.90039c6.2002 -4.90039 14.5 -9.7002 24.9004 -9.7002
-s22.5 6 29.9004 10.2002c4.19922 2.40039 9.5 6.59961 13.8994 9.7998c3.40039 2.5 3.2002 5.40039 6 5.10059c2.7998 -0.300781 0.799805 -3.2002 -3.09961 -6.60059c-3.90039 -3.39941 -9.90039 -7.7998 -14.7998 -10.3994
-c-9.30078 -4.90039 -20.2002 -10.8008 -31.8008 -10.8008c-11.5 0 -20.6992 5.40039 -27.2998 10.6006c-3.2998 2.59961 -6 5.2002 -8 7.09961z" />
-    <glyph glyph-name="dribbble" unicode="&#xf17d;" horiz-adv-x="512" 
-d="M256 440c136.748 0 248 -111.252 248 -248s-111.252 -248 -248 -248s-248 111.252 -248 248s111.252 248 248 248zM419.97 325.634c-4.46582 -6.04102 -39.9629 -51.5459 -118.284 -83.5225c7.43652 -15.2217 12.8652 -27.5732 18.6172 -41.6143
-c70.4844 8.86426 140.519 -5.34082 147.502 -6.81836c-0.46582 49.998 -18.332 95.9092 -47.835 131.955zM396.421 350.13c-52.0947 46.2188 -122.885 63.6816 -190.061 47.4893c5.85449 -7.83984 44.3281 -60.2324 79.04 -124.008
-c75.3232 28.2324 107.211 71.0918 111.021 76.5186zM165.941 383.38c-59.2637 -27.9531 -103.562 -82.585 -117.298 -148.318c9.47461 -0.125 96.7471 -0.503906 195.834 25.8096c-35.0986 62.3926 -72.9512 114.85 -78.5361 122.509zM44.1699 191.677
-c0 -54.4072 20.624 -104.082 54.457 -141.636c34.3369 58.7793 103.932 120.731 180.531 142.306c-5.31738 12.0342 -11.1104 24.0811 -17.1738 35.9492c-105.786 -31.6592 -208.438 -30.3359 -217.706 -30.1455c-0.0654297 -2.15137 -0.108398 -4.30762 -0.108398 -6.47363
-zM125.977 24.5645c62.7539 -48.9355 144.656 -56.8955 212.769 -27.8828c-3.15039 18.585 -15.4492 83.3555 -45.1895 160.639c-85.4004 -29.1348 -145.452 -87.5234 -167.579 -132.756zM374.357 16.0752c47.5215 32.1338 81.3525 83.0371 90.7949 141.978
-c-7.24707 2.28711 -65.5674 19.6816 -131.947 9.05566c27.7061 -76.1367 38.9805 -138.147 41.1523 -151.033z" />
-    <glyph glyph-name="skype" unicode="&#xf17e;" 
-d="M424.7 148.2c14.5996 -18.9004 23.2998 -42.5 23.2002 -68.1006c0 -61.7998 -50.2002 -112 -112 -112c-25.6006 0 -49.2002 8.7002 -68.2002 23.3008c-14.1006 -3 -28.9004 -4.7002 -43.7998 -4.7002c-113.4 0 -205.301 91.7998 -205.301 205.3
-c0 14.9004 1.80078 29.7998 4.7002 43.7998c-14.5996 18.9004 -23.2998 42.5 -23.2998 68.2002c0 61.7998 50.2002 112 112 112c25.7002 0 49.2998 -8.7002 68.2998 -23.4004c14.1006 3 28.9004 4.7002 43.7998 4.7002c113.4 0 205.301 -91.7998 205.301 -205.3
-c0 -14.9004 -1.80078 -29.7998 -4.7002 -43.7998zM230.1 56.7002c54.9004 0 112 27.3994 112 86.5c0 50.7998 -49.2998 68.2998 -90.6992 77.5996c-48.3008 11.2002 -69.1006 13.2002 -69.1006 33c0 15.5 16.2998 22.5 42 22.5c45.7998 0 46.7002 -33.5 75 -33.5
-c18.9004 0 30.2998 14.9004 30.2998 31.7998c0 33.5 -55.6992 55.4004 -110.8 55.4004c-50.5 0 -109.1 -21.9004 -109.1 -81.0996c0 -65.2002 55.2998 -71.8008 117.8 -87.2002c26 -6.40039 42 -9.2998 42 -28c0 -14.9004 -16.5996 -26.2998 -42.2998 -26.2998
-c-54 0 -56.9004 44.8994 -88.1006 44.8994c-20.5 0 -29.5 -14.5996 -29.5 -30.5996c0 -35.7998 54.9004 -65 120.5 -65z" />
-    <glyph glyph-name="foursquare" unicode="&#xf180;" horiz-adv-x="368" 
-d="M323.1 445c40 0 50.7002 -22.7998 42.2002 -65.2002l-48.5996 -243c-3.7002 -14.5 -9.2002 -39.7002 -44.2998 -39.7002h-83.4004c-3.40039 0 -3.7002 0.300781 -6.7998 -3.09961c0 0 -2.2002 -2.5 -131.101 -151.9
-c-10.0996 -11.6992 -26.6992 -9.59961 -32.8994 -7.09961c-6.10059 2.40039 -18.2002 9.7998 -18.2002 30.0996v433.801c0 17.7998 12.4004 46.0996 49.9004 46.0996h273.199zM306.8 371.2c2.10059 9.7998 -5.2998 17.5 -13.5 17.5h-219
-c-9.7998 0 -16.5996 -8.90039 -16.5996 -16.6006v-338.8c0 -0.899414 0.899414 -1.2002 1.7998 -0.299805c80.5996 96.9004 89.5 108.3 89.5 108.3c9.2998 10.7998 13 12.6006 26.5 12.6006h73.5c10.0996 0 16 8.59961 16.9004 13.5
-c0.899414 5 9.59961 49.8994 11.3994 58.7998c1.7998 9 -6.5 18.2002 -14.7998 18.2002h-90.4004c-12 0 -20.5996 8.59961 -20.5996 20.5996v13c0 12 8.59961 20.2998 20.5996 20.2998h106.4c7.40039 0 15.7002 6.7002 16.9004 13.2002z" />
-    <glyph glyph-name="trello" unicode="&#xf181;" 
-d="M392.3 416c30.7998 -0.200195 55.7002 -25.2002 55.6006 -56v-336c0 -30.7998 -24.9004 -55.7998 -55.7002 -56h-336.2c-30.9004 0 -56 25.0996 -56 56c0 340 -0.0996094 336 0 336c0 30.9004 25.0996 56 56.0996 56h336.2zM197 76.7002h0.0996094v254.2
-c0 14.8994 -12.0996 26.8994 -26.8994 26.8994h-82.9004c-14.8994 0 -26.8994 -12.0996 -26.8994 -26.8994v-254.2c0.0996094 -14.7998 12.1992 -26.7002 27 -26.6006h82.6992c14.8008 0 26.7002 11.9004 26.9004 26.6006zM390.1 188.7v142.1
-c0 14.9004 -12.0996 26.9004 -26.8994 26.9004h-81.1006c-14.7998 0 -26.7998 -12.1006 -26.7998 -26.9004v-142.1c0 -14.9004 12.1006 -26.9004 26.9004 -26.9004h81c14.8994 0 26.8994 12.1006 26.8994 26.9004z" />
-    <glyph glyph-name="gratipay" unicode="&#xf184;" horiz-adv-x="496" 
-d="M248 440c136.9 0 248 -111.1 248 -248s-111.1 -248 -248 -248s-248 111.1 -248 248s111.1 248 248 248zM362.6 213.6c8.80078 12 19.1006 50.4004 -13.7998 72c-27.7002 18.1006 -54.2002 4.2002 -68.0996 -11.8994c-15.1006 -16.9004 -45.7998 -17.9004 -61.7002 0
-c-13.9004 16.0996 -40.4004 30 -68.5 11.8994c-32.7002 -21.5996 -22.2998 -60.0996 -13.5996 -72l112.699 -152.699z" />
-    <glyph glyph-name="vk" unicode="&#xf189;" horiz-adv-x="576" 
-d="M545 330.3c-7.40039 -34.2998 -79.2998 -135.5 -79.4004 -135.6c-6.19922 -10 -8.69922 -15 0 -26.2002c3.40039 -4.7998 79.1006 -76.5996 90.3008 -111.5c4.89941 -16.5996 -3.60059 -25 -20.4004 -25h-58.9004c-22.3994 0 -29 17.9004 -69 57.9004
-c-35 33.6992 -50 38.0996 -58.6992 38.0996c-18.8008 0 -15.4004 -6.2998 -15.4004 -73.0996c0 -14.5 -4.59961 -22.9004 -42.0996 -22.9004c-62.4004 0 -131 37.9004 -179.7 107.8c-73.1006 102.4 -93.1006 179.9 -93.1006 195.5c0 8.7998 3.40039 16.7002 20.2002 16.7002
-h58.9004c15.0996 0 20.7998 -6.59961 26.5996 -22.9004c28.7998 -84 77.4004 -157.399 97.4004 -157.399c7.5 0 10.8994 3.5 10.8994 22.5v86.7998c-2.19922 40 -23.3994 43.2998 -23.3994 57.5c0 6.5 5.59961 13.5 15 13.5h92.5996
-c12.4004 0 16.6006 -6.7002 16.6006 -21.7002v-116.7c0 -12.5 5.69922 -16.8994 9.39941 -16.8994c7.5 0 13.7998 4.39941 27.5 18.0996c42.4004 47.4004 72.4004 120.5 72.4004 120.5c3.7002 8.7998 10.5996 16.7002 25.5996 16.7002h58.9004
-c17.7998 0 21.5 -9.2002 17.7998 -21.7002z" />
-    <glyph glyph-name="weibo" unicode="&#xf18a;" horiz-adv-x="512" 
-d="M407 270.4c7.59961 24 -13.4004 46.7998 -37.4004 41.6992c-22 -4.7998 -28.7998 28.1006 -7.09961 32.8008c50.0996 10.8994 92.2998 -37.1006 76.5 -84.8008c-6.7998 -21.1992 -38.7998 -10.7998 -32 10.3008zM214.8 1.2998c-106.3 0 -214.8 51.4004 -214.8 136.3
-c0 44.3008 28 95.4004 76.2998 143.7c99.7002 99.7002 203.2 100.9 173.601 5.7002c-4 -13.0996 12.2998 -5.7002 12.2998 -6c79.5 33.5996 140.5 16.7998 114 -51.4004c-3.7002 -9.39941 1.09961 -10.8994 8.2998 -13.0996c135.7 -42.2998 34.7998 -215.2 -169.7 -215.2z
-M358.5 147.6c-5.40039 55.7002 -78.5 94 -163.4 85.7002c-84.7998 -8.59961 -148.8 -60.2998 -143.399 -116c5.39941 -55.7002 78.5 -94 163.399 -85.7002c84.8008 8.60059 148.801 60.3008 143.4 116zM347.9 412.9c102.3 21.5996 189.3 -74.5 157.399 -174.301
-c-8.2998 -25 -44.7998 -12.1992 -37.3994 12c23.0996 71.2002 -39.4004 139.2 -111.7 124c-25.1006 -5.39941 -34.2002 32.7002 -8.2998 38.3008zM269.4 101.9c-17.1006 -38.8008 -66.8008 -60 -109.101 -46.3008c-40.7998 13.1006 -58 53.4004 -40.2998 89.7002
-c17.7002 35.4004 63.0996 55.4004 103.4 45.1006c42 -10.8008 63.0996 -50.2002 46 -88.5zM183.1 131.9c-12.8994 5.39941 -30 -0.300781 -38 -12.9004c-8.2998 -12.9004 -4.2998 -28 8.60059 -34c13.0996 -6 30.7998 -0.299805 39.0996 12.9004
-c8 13.0996 3.7002 28.2998 -9.7002 34zM215.7 145.3c-5.10059 1.7002 -11.4004 -0.599609 -14.2998 -5.39941c-2.90039 -5.10059 -1.40039 -10.6006 3.69922 -12.9004c5.10059 -2 11.7002 0.299805 14.6006 5.40039c2.7998 5.19922 1.09961 10.8994 -4 12.8994z" />
-    <glyph glyph-name="renren" unicode="&#xf18b;" horiz-adv-x="512" 
-d="M214 278.9c0 -110.4 -61 -205.4 -147.6 -247.4c-36.4004 43.2998 -58.4004 98.7998 -58.4004 159.9c0 122.699 89.0996 224.399 206 244.1v-156.6zM255 -56c-42.9004 0 -83.2998 11 -118.5 30.4004c57.2002 36.0996 103.4 90.6992 118.5 154.6
-c15.5 -63.9004 61.7002 -118.5 118.8 -154.7c-35.0996 -19.2998 -75.5 -30.2998 -118.8 -30.2998zM445.6 31.5c-86.5996 42 -147.6 136.9 -147.6 247.4v156.6c116.9 -19.7002 206 -121.4 206 -244.1c0 -61.1006 -22 -116.601 -58.4004 -159.9z" />
-    <glyph glyph-name="pagelines" unicode="&#xf18c;" horiz-adv-x="384" 
-d="M384 135.3c-55.0996 -136.7 -187.1 -54 -187.1 -54c-40.5 -81.7998 -107.4 -134.399 -184.601 -134.7c-16.0996 0 -16.5996 24.4004 0 24.4004c64.4004 0.299805 120.5 42.7002 157.2 110.1c-41.0996 -15.8994 -118.6 -27.8994 -161.6 82.2002
-c109 44.9004 159.1 -11.2002 178.3 -45.5c9.89941 24.4004 17 50.9004 21.5996 79.7002c0 0 -139.7 -21.9004 -149.5 98.0996c119.101 47.9004 152.601 -76.6992 152.601 -76.6992c1.59961 16.6992 3.2998 52.5996 3.2998 53.3994c0 0 -106.3 73.7002 -38.1006 165.2
-c124.601 -43 61.4004 -162.4 61.4004 -162.4c0.5 -1.59961 0.5 -23.7998 0 -33.3994c0 0 45.2002 89 136.4 57.5c-4.2002 -134 -141.9 -106.4 -141.9 -106.4c-4.40039 -27.3994 -11.2002 -53.3994 -20 -77.5c0 0 83 91.7998 172 20z" />
-    <glyph glyph-name="stack-exchange" unicode="&#xf18d;" 
-d="M17.7002 115.7h412.7v-22c0 -37.7002 -29.3008 -68 -65.3008 -68h-19l-86.7998 -89.7002v89.7002h-176.3c-36 0 -65.2998 30.2998 -65.2998 68v22zM17.7002 139.3v85h412.7v-85h-412.7zM17.7002 248.7v85h412.7v-85h-412.7zM365 448
-c36 0 65.2998 -30.2998 65.4004 -67.7002v-22.2998h-412.7v22.2998c0 37.4004 29.2998 67.7002 65.2998 67.7002h282z" />
-    <glyph glyph-name="vimeo-square" unicode="&#xf194;" 
-d="M400 416c26.5 0 48 -21.5 48 -48v-352c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h352zM383.8 266.4c1.90039 41.5996 -13.5996 63 -46.5 64c-44.2998 1.39941 -74.3994 -23.6006 -90.0996 -75.1006
-c19.5996 8.40039 48.5996 10.6006 45.2002 -22.2002c-0.900391 -11.0996 -8.10059 -27.0996 -21.5 -48.2998c-37.2002 -58.7002 -46.3008 -39.0996 -66.8008 90.5c-5.7998 36.5 -21.0996 53.5 -46 51.1006c-22 -2 -57.1992 -38 -94.0996 -70.4004l15 -19.4004
-c14.2998 10.1006 22.7002 15.1006 25.0996 15.1006c20.8008 0 31.5 -54.1006 56.7002 -146.4c12.9004 -34.3994 28.6006 -51.5996 47.2998 -51.5996c30.1006 0 66.9004 28.2998 110.4 84.7998c42.0996 54.0996 63.9004 96.7998 65.2998 127.9z" />
-    <glyph glyph-name="slack" unicode="&#xf198;" 
-d="M94.1201 132.9c0 -25.9004 -21.1602 -47.0605 -47.0605 -47.0605c-25.8994 0 -47.0596 21.1602 -47.0596 47.0605c0 25.8994 21.1602 47.0596 47.0596 47.0596h47.0605v-47.0596zM117.84 132.9c0 25.8994 21.1602 47.0596 47.0605 47.0596
-c25.8994 0 47.0596 -21.1602 47.0596 -47.0596v-117.841c0 -25.8994 -21.1602 -47.0596 -47.0596 -47.0596c-25.9004 0 -47.0605 21.1602 -47.0605 47.0596v117.841zM164.9 321.88c-25.9004 0 -47.0605 21.1602 -47.0605 47.0605c0 25.8994 21.1602 47.0596 47.0605 47.0596
-c25.8994 0 47.0596 -21.1602 47.0596 -47.0596v-47.0605h-47.0596zM164.9 298.16c25.8994 0 47.0596 -21.1602 47.0596 -47.0605c0 -25.8994 -21.1602 -47.0596 -47.0596 -47.0596h-117.841c-25.8994 0 -47.0596 21.1602 -47.0596 47.0596
-c0 25.9004 21.1602 47.0605 47.0596 47.0605h117.841zM353.88 251.1c0 25.9004 21.1602 47.0605 47.0605 47.0605c25.8994 0 47.0596 -21.1602 47.0596 -47.0605c0 -25.8994 -21.1602 -47.0596 -47.0596 -47.0596h-47.0605v47.0596zM330.16 251.1
-c0 -25.8994 -21.1602 -47.0596 -47.0605 -47.0596c-25.8994 0 -47.0596 21.1602 -47.0596 47.0596v117.841c0 25.8994 21.1602 47.0596 47.0596 47.0596c25.9004 0 47.0605 -21.1602 47.0605 -47.0596v-117.841zM283.1 62.1201c25.9004 0 47.0605 -21.1602 47.0605 -47.0605
-c0 -25.8994 -21.1602 -47.0596 -47.0605 -47.0596c-25.8994 0 -47.0596 21.1602 -47.0596 47.0596v47.0605h47.0596zM283.1 85.8398c-25.8994 0 -47.0596 21.1602 -47.0596 47.0605c0 25.8994 21.1602 47.0596 47.0596 47.0596h117.841
-c25.8994 0 47.0596 -21.1602 47.0596 -47.0596c0 -25.9004 -21.1602 -47.0605 -47.0596 -47.0605h-117.841z" />
-    <glyph glyph-name="wordpress" unicode="&#xf19a;" horiz-adv-x="512" 
-d="M61.7002 278.6l101.5 -278c-71 34.4004 -119.9 107.2 -119.9 191.4c0 30.9004 6.60059 60.0996 18.4004 86.5996zM399.6 202.7c0 -18.2002 -7 -39.2998 -16 -68.7002l-21.1992 -70.9004l-76.9004 228.7c12.7998 0.700195 24.2998 2 24.2998 2
-c11.4004 1.2998 10.1006 18.2002 -1.39941 17.5c0 0 -34.5 -2.7002 -56.7002 -2.7002c-20.9004 0 -56 2.7002 -56 2.7002c-11.4004 0.700195 -12.7998 -16.7998 -1.2998 -17.5c0 0 10.7998 -1.2998 22.2998 -2l33.0996 -90.7998l-46.5996 -139.6l-77.5 230.399
-c12.7998 0.700195 24.2998 2 24.2998 2c11.4004 1.2998 10.0996 18.2002 -1.40039 17.5c0 0 -34.5 -2.7002 -56.6992 -2.7002c-4 0 -8.7002 0.100586 -13.7002 0.300781c38.0996 57.7998 103.5 95.8994 177.8 95.8994c55.4004 0 105.8 -21.2002 143.7 -55.8994
-c-1 0.0996094 -1.90039 0.199219 -2.7998 0.199219c-20.9004 0 -35.7002 -18.1992 -35.7002 -37.7998c0 -17.5 10.0996 -32.3994 20.8994 -49.8994c8.10059 -14.2002 17.5 -32.4004 17.5 -58.7002zM259.7 173.4l65.3994 -179.2c0.400391 -1 0.900391 -2 1.5 -2.90039
-c-22.0996 -7.7998 -45.7998 -12.0996 -70.5996 -12.0996c-20.9004 0 -41 3.09961 -60.0996 8.7002zM442.7 294.1c16.5996 -30.2998 26 -65.0996 26 -102.1c0 -78.5 -42.5 -147 -105.8 -183.9l65 187.9c12.1992 30.4004 16.1992 54.5996 16.1992 76.2002
-c0 7.89941 -0.5 15.0996 -1.39941 21.8994zM504 192c0 -136.8 -111.3 -248 -248 -248c-136.8 0 -248 111.3 -248 248c0 136.8 111.2 248 248 248c136.7 0 248 -111.2 248 -248zM492.6 192c0 130.5 -106.199 236.6 -236.6 236.6c-130.5 0 -236.6 -106.1 -236.6 -236.6
-s106.199 -236.6 236.6 -236.6c130.5 0 236.6 106.1 236.6 236.6z" />
-    <glyph glyph-name="openid" unicode="&#xf19b;" 
-d="M271.5 16l-68 -32c-115 10.2998 -203.5 71.5 -203.5 145.8c0 71.5 82.5 131 191.7 144.3v-43c-71.5 -12.5 -124 -53 -124 -101.3c0 -51 58.5 -93.2998 135.7 -103v340l68 33.2002v-384h0.0996094zM448 157l-131.3 28.5l36.7998 20.7002c-19.5 11.5 -43.5 20 -70 24.7998
-v43c46.2002 -5.5 87.7002 -19.5 120.3 -39.2998l35 19.7998z" />
-    <glyph glyph-name="yahoo" unicode="&#xf19e;" horiz-adv-x="512" 
-d="M223.69 306.94h93.5791l-140.909 -338.94h-94.1699l38.5693 89.8096l-105.83 249.131h96.0703l56 -143.171zM329.09 171.15c32.1328 0 58.2197 -26.0879 58.2197 -58.2207c0 -32.1318 -26.0869 -58.2197 -58.2197 -58.2197s-58.2197 26.0879 -58.2197 58.2197
-c0 32.1328 26.0869 58.2207 58.2197 58.2207zM394.65 416h104.42l-92.6299 -223.47h-104.79z" />
-    <glyph glyph-name="google" unicode="&#xf1a0;" horiz-adv-x="488" 
-d="M488 186.2c0 -141.5 -96.9004 -242.2 -240 -242.2c-137.2 0 -248 110.8 -248 248s110.8 248 248 248c66.7998 0 123 -24.5 166.3 -64.9004l-67.5 -64.8994c-88.2998 85.2002 -252.5 21.2002 -252.5 -118.2c0 -86.5 69.1006 -156.6 153.7 -156.6
-c98.2002 0 135 70.3994 140.8 106.899h-140.8v85.2998h236.1c2.30078 -12.6992 3.90039 -24.8994 3.90039 -41.3994z" />
-    <glyph glyph-name="reddit" unicode="&#xf1a1;" horiz-adv-x="512" 
-d="M201.5 142.5c-13.7998 0 -24.9004 11.0996 -24.9004 24.5996c0 13.8008 11.1006 24.9004 24.9004 24.9004c13.5996 0 24.5996 -11.0996 24.5996 -24.9004c0 -13.5996 -11.0996 -24.5996 -24.5996 -24.5996zM504 192c0 -137 -111 -248 -248 -248s-248 111 -248 248
-s111 248 248 248s248 -111 248 -248zM371.7 233.2c-9.40039 0 -17.7002 -3.90039 -23.7998 -10c-22.4004 15.5 -52.6006 25.5 -86.1006 26.5996l17.4004 78.2998l55.3994 -12.5c0 -13.5996 11.1006 -24.5996 24.6006 -24.5996c13.7998 0 24.8994 11.2998 24.8994 24.9004
-c0 13.5996 -11.0996 24.8994 -24.8994 24.8994c-9.7002 0 -18 -5.7998 -22.1006 -13.7998l-61.1992 13.5996c-3 0.800781 -6.10059 -1.39941 -6.90039 -4.39941l-19.0996 -86.4004c-33.2002 -1.39941 -63.1006 -11.2998 -85.5 -26.7998
-c-6.10059 6.40039 -14.7002 10.2002 -24.1006 10.2002c-34.8994 0 -46.2998 -46.9004 -14.3994 -62.7998c-1.10059 -5 -1.7002 -10.2002 -1.7002 -15.5c0 -52.6006 59.2002 -95.2002 132 -95.2002c73.0996 0 132.3 42.5996 132.3 95.2002
-c0 5.2998 -0.599609 10.7998 -1.90039 15.7998c31.3008 16 19.8008 62.5 -14.8994 62.5zM302.8 117c2.2002 2.2002 6.10059 2.2002 8.2998 0c2.5 -2.5 2.5 -6.40039 0 -8.59961c-22.8994 -22.8008 -87.3994 -22.8008 -110.199 0c-2.5 2.19922 -2.5 6.09961 0 8.59961
-c2.19922 2.2002 6.09961 2.2002 8.2998 0c17.5 -17.9004 75.3994 -18.2002 93.5996 0zM310.5 192c13.9004 0 24.9004 -11.0996 24.9004 -24.9004c0 -13.5 -11.1006 -24.5996 -24.9004 -24.5996c-13.5 0 -24.5996 11 -24.5996 24.5996c0 13.8008 11 24.9004 24.5996 24.9004z
-" />
-    <glyph glyph-name="reddit-square" unicode="&#xf1a2;" 
-d="M283.2 102.5c2.7002 -2.7002 2.7002 -6.7998 0 -9.2002c-24.5 -24.5 -93.7998 -24.5996 -118.4 0c-2.7002 2.40039 -2.7002 6.5 0 9.2002c2.40039 2.40039 6.5 2.40039 8.90039 0c18.7002 -19.2002 81 -19.5996 100.5 0c2.39941 2.2998 6.59961 2.2998 9 0zM191.9 156.3
-c0 -14.5996 -11.9004 -26.5 -26.5 -26.5c-14.9004 0 -26.8008 11.9004 -26.8008 26.5c0 14.9004 11.9004 26.7998 26.8008 26.7998c14.5996 0 26.5 -11.8994 26.5 -26.7998zM282.6 183.1c14.9004 0 26.8008 -11.8994 26.8008 -26.7998
-c0 -14.5996 -11.9004 -26.5 -26.8008 -26.5c-14.5996 0 -26.5 11.9004 -26.5 26.5c0 14.9004 11.9004 26.7998 26.5 26.7998zM448 368v-352c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h352c26.5 0 48 -21.5 48 -48zM348.3 227.4
-c-10.0996 0 -19 -4.2002 -25.5996 -10.7002c-24.1006 16.7002 -56.5 27.3994 -92.5 28.5996l18.7002 84.2002l59.5 -13.4004c0 -14.5996 11.8994 -26.5 26.5 -26.5c14.8994 0 26.7998 12.2002 26.7998 26.8008c0 14.5996 -11.9004 26.7998 -26.7998 26.7998
-c-10.4004 0 -19.3008 -6.2002 -23.8008 -14.9004l-65.6992 14.6006c-3.30078 0.899414 -6.5 -1.5 -7.40039 -4.80078l-20.5 -92.7998c-35.7002 -1.5 -67.7998 -12.2002 -91.9004 -28.8994c-6.5 6.7998 -15.7998 11 -25.8994 11c-37.5 0 -49.7998 -50.4004 -15.5 -67.5
-c-1.2002 -5.40039 -1.7998 -11 -1.7998 -16.7002c0 -56.5 63.6992 -102.3 141.899 -102.3c78.5 0 142.2 45.7998 142.2 102.3c0 5.7002 -0.599609 11.5996 -2.09961 17c33.5996 17.2002 21.1992 67.2002 -16.1006 67.2002z" />
-    <glyph glyph-name="stumbleupon-circle" unicode="&#xf1a3;" horiz-adv-x="496" 
-d="M256 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM256 262.5c9.7998 0 17.7998 -8 17.7002 -17.5996v-20.6006l22.8994 -10.7002l34.1006 10.1006v23.7002c0 40.2998 -34 72.5996 -74.7002 72.5996
-c-40.5 0 -74.7002 -32.0996 -74.7002 -72.0996v-108.4c0 -9.90039 -8 -17.7998 -17.7998 -17.7998s-17.7998 7.7998 -17.7998 17.7998v45.7998h-57.2998v-46.5c0 -41.3994 33.5 -74.8994 74.8994 -74.8994c41 0 74.9004 33 74.9004 73.8994v106.9
-c0 9.7998 8 17.7998 17.7998 17.7998zM423.6 138.9c0 0 0 0.5 0.100586 46.3994h-57.2998v-48c0 -9.7002 -8 -17.5996 -17.8008 -17.5996c-9.7998 0 -17.7998 7.7998 -17.7998 17.5996v47.1006l-34.0996 -10.1006l-22.9004 10.7002v-46.7998
-c0 -41 33.7002 -74.2002 74.9004 -74.2002c41.3994 0 74.8994 33.5 74.8994 74.9004z" />
-    <glyph glyph-name="stumbleupon" unicode="&#xf1a4;" horiz-adv-x="512" 
-d="M502.9 182v-69.7002c0 -62.0996 -50.3008 -112.399 -112.4 -112.399c-61.7998 0 -112.4 49.7998 -112.4 111.3v70.2002l34.3008 -16l51.0996 15.1992v-70.5996c0 -14.7002 12 -26.5 26.7002 -26.5s26.7998 11.7998 26.7998 26.5v72h85.9004zM278.2 240.2v30.8994
-c0 14.7002 -12 26.7002 -26.7002 26.7002s-26.7002 -12 -26.7002 -26.7002v-160.3c0 -61.2998 -50.7998 -110.8 -112.399 -110.8c-62.1006 0 -112.4 50.2998 -112.4 112.3v69.7002h86v-68.5996c0 -14.9004 12 -26.7002 26.7002 -26.7002s26.7002 11.7998 26.7002 26.7002
-v162.399c0 60 51.2998 108.2 112.1 108.2c61 0 112.1 -48.5 112.1 -109v-35.5996l-51.0996 -15.2002z" />
-    <glyph glyph-name="delicious" unicode="&#xf1a5;" 
-d="M446.5 380c1 -3.7998 1.5 -7.90039 1.59961 -12v-352.1c0 -26.5 -21.5 -48 -48 -48h-352c-4.09961 0 -8.19922 0.5 -12 1.5c-7.69922 2 -14.5996 5.7998 -20.2998 11c-1.2002 1.09961 -2.2998 2.19922 -3.2998 3.2998c-5.2002 5.7002 -9 12.5996 -11 20.2998
-c-1 3.7998 -1.5 7.90039 -1.5 12v352c0 26.5 21.5 48 48 47.9004h352c4.09961 0 8.2002 -0.5 12 -1.5c1.90039 -0.400391 3.7002 -1 5.40039 -1.7002c1.89941 -0.700195 3.69922 -1.5 5.5 -2.5c1.39941 -0.700195 2.69922 -1.5 4 -2.40039
-c1.09961 -0.799805 2.19922 -1.59961 3.2998 -2.5c2.5 -2 4.7998 -4.2998 6.89941 -6.7998c1.7002 -2.09961 3.30078 -4.5 4.7002 -6.90039c1.2998 -2.2998 2.40039 -4.59961 3.2998 -7.09961c0.5 -1.5 1 -3 1.40039 -4.5zM416 16v176h-192v192h-176
-c-8.7998 0 -16 -7.2002 -16 -16v-176h192v-192h176c8.7998 0 16 7.2002 16 16z" />
-    <glyph glyph-name="digg" unicode="&#xf1a6;" horiz-adv-x="512" 
-d="M81.7002 275.7v76.2998h51v-250.7h-132.7v174.4h81.7002zM81.7002 142.3v92.2998h-30.7998v-92.2998h30.7998zM378.9 275.7h133.1v-243.7h-133.1v40.7998h81.7998v28.5h-81.7998v174.4zM460.7 142.3v92.2998h-30.7998v-92.2998h30.7998zM225.1 101.3v174.4h133.301
-v-243.7h-133.301v40.7998h82.1006v28.5h-82.1006zM276.3 234.6v-92.2998h30.7998v92.2998h-30.7998zM153.3 352h51.2998v-51h-51.2998v51zM153.3 275.7h51.2998v-174.4h-51.2998v174.4z" />
-    <glyph glyph-name="pied-piper-pp" unicode="&#xf1a7;" 
-d="M205.3 273.4c0 -21.1006 -14.2002 -38.1006 -31.7002 -38.1006c-7.09961 0 -12.7998 1.2002 -17.1992 3.7002v68c4.39941 2.7002 10.0996 4.2002 17.1992 4.2002c17.5 0 31.7002 -16.9004 31.7002 -37.7998zM257.9 206.4c17.3994 0 31.6992 -17 31.6992 -38.1006
-c0 -20.8994 -14.2998 -37.7998 -31.6992 -37.7998c-7.10059 0 -12.8008 1.2002 -17.2002 3.7002v68c4.39941 2.7002 10.0996 4.2002 17.2002 4.2002zM448 368v-352c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h352
-c26.5 0 48 -21.5 48 -48zM185 192.9c41 0 74.2002 35.5996 74.2002 79.5996s-33.2002 79.5996 -74.2002 79.5996c-12 0 -24.0996 -3.19922 -34.5996 -8.7998h-45.7002v-206.3l51.7998 10.0996v50.6006c8.59961 -3.10059 18.0996 -4.7998 28.5 -4.7998zM343.4 167.6
-c0 44 -33.2002 79.6006 -73.9004 79.6006c-3.2002 0 -6.40039 -0.200195 -9.59961 -0.700195c-3.7002 -12.5 -10.1006 -23.7998 -19.2002 -33.4004c-13.7998 -15 -32.2002 -23.7998 -51.7998 -24.7998v-156.3l51.7998 10.0996v50.6006
-c8.59961 -3.2002 18.2002 -4.7002 28.7002 -4.7002c40.7998 0 74 35.5996 74 79.5996z" />
-    <glyph glyph-name="pied-piper-alt" unicode="&#xf1a8;" horiz-adv-x="576" 
-d="M244 202l-27.7002 -5.7002l-1.7002 4.90039c6.7002 0.5 12.7002 3.7002 19.3008 3.7002c3.7998 0 6.89941 -0.900391 10.0996 -2.90039zM379.9 4.09961c9.5 0 28.1992 -45.0996 33 -55.0996c-35.9004 -13.4004 -70.3008 -15.9004 -106 -9.7998l-6.90039 45.0996
-c15.7998 10.2998 60.9004 19.7998 79.9004 19.7998zM340.8 271c-7.59961 3.5 -63.8994 6.40039 -98.7998 -10c6.2998 11.7998 13.2002 17 25.9004 21.7998c27.2998 10.2998 40.1992 30.5 58.8994 51.1006c11.9004 -8.40039 12 -24.6006 31.6006 -23v-21.8008
-l6.2998 -0.299805c37.3994 14.4004 74.7002 30.2002 106.6 54.6006c48.2998 36.7998 52.9004 50 81.2998 100l2 2.59961c-0.599609 -14.0996 -6.2998 -27.2998 -12.3994 -39.9004c-30.5 -63.7998 -78.7002 -100.3 -146.8 -116.699
-c-12.4004 -2.90039 -26.4004 -3.2002 -37.6006 -8.90039c1.40039 -9.7998 13.2002 -18.0996 13.2002 -23c0 -3.40039 -5.5 -7.2002 -7.5 -8.59961c-11.2002 12.8994 -16.0996 19.2998 -22.7002 22.0996zM555.5 448l-0.299805 -1.40039l-0.600586 -0.599609
-l0.300781 0.900391zM496.3 65.9004c20.1006 -34.2002 43.7002 -54.3008 72.7002 -79.9004c-31 -19.2998 -70.4004 -32.2002 -103.5 -47.2002c-55.2002 46.2998 -23 229.9 -111.5 229.9c-3.5 -0.700195 -2.40039 -0.299805 -4.59961 -1.7002
-c1.09961 -1.40039 2.59961 -2.90039 3.69922 -4c23.9004 -20.0996 33.4004 -24.4004 34.8008 -58.5996l0.299805 -9.5c0.799805 -21.6006 -5.5 -42.5 -9.7998 -63.5c-25.9004 0.699219 -51.2002 -11 -77.9004 -2.90039c-0.700195 5.90039 -1.09961 30.9004 0.299805 41.0996
-c1.40039 9.5 33.6006 29.9004 33 43.7002c-5.5 0.600586 -9.2002 -2.59961 -12.3994 -6.89941c-13.3008 -19.5 -47.2002 -41.9004 -71.3008 -41.9004c-16.5996 0 -56.2998 71.5 -76.3994 85.9004c-3.2002 2.2998 -5.2002 5.39941 -7.7998 8.59961
-c-16.1006 -3.7998 -139.4 -32.2002 -147.4 -32.2002c-6 0 -11.5 4.90039 -11.5 10.9004c0 5.5 3.40039 10.7002 8.90039 11.7998l139.6 30.4004c-9.5 17.1992 12.2998 17.5 21.5 20.0996c3.2002 0.799805 6.2998 4 9.5 4c6.2998 0 11.7998 -8.90039 13.7998 -14.0996
-c6.2998 1.39941 45.7002 10.5996 49.4004 10.5996c15.2002 0 15.8994 -20.0996 2.89941 -22.7002l-52.2998 -11.5l-0.299805 -4.59961c-0.299805 -10.1006 45.4004 -60.1006 53.4004 -60.1006c18.0996 0 54.8994 41.7002 54.8994 60.1006
-c0 30.7002 -42.7998 12.5996 -42.7998 33.5996c0 3.5 1.2002 6.60059 2.90039 9.7998l-19.5 5.5c13.0996 13.6006 13.7998 31.7002 10.8994 50.3008c14.7002 2.89941 26.7002 4.59961 41.4004 4.59961c56.8994 0 45.7002 -8.59961 65.5 -54.2998l14.3994 7.2002
-c-2.2998 -34.2002 -36.1992 -17.5 -35.0996 -31l0.299805 -6c74.7002 2.89941 116.101 -58.6006 150 -115.5zM300.1 19.7998h8.90039l2.90039 -23.7998l-11.8008 -3.40039v27.2002zM231.4 170.2l13.7998 3.5l31.2998 -50.9004l-21 -13.7998zM315.8 15.2998
-c22.6006 2.5 32.7002 6.2998 59.5 6.2998c0.299805 -1.39941 0.900391 -3.19922 0.900391 -4.59961c0 -7.5 -49.4004 -12.5996 -58.4004 -14.0996z" />
-    <glyph glyph-name="drupal" unicode="&#xf1a9;" 
-d="M319.5 333.3c13.5 -8.2998 96.5 -67 96.5 -179.3c0 -112 -88.5 -186 -190.2 -186c-102 0 -193.8 80.2998 -193.8 189.5c0 109 85 167.5 100.8 175.8c18.7002 10.1006 32.2002 15.2998 53.5 32.2998c10.5 8.30078 19.2998 20.2002 22 49.5
-c15.2002 -18.2998 33.5 -39.5 46.5 -48.2998c21.2002 -14 42.5 -19.5 64.7002 -33.5zM322 7.7002c4.2002 4.2002 1.90039 13.0996 -4.2002 8.5c-8.5 -6.2998 -27.5 -14 -54.5 -14c-34.5 0 -51.5 13.2998 -51.5 13.2998c-6.2002 0 -11.2998 -7.2002 -6.5 -12
-c26.6006 -24.5 96.6006 -15.9004 116.7 4.2002zM267.5 60.2998c-6.5 -2.7002 -28.4004 -16.7998 -22.4004 -25c2.40039 -3.2998 5.2002 -1.2998 12.2002 4.7002c7.2002 5.7998 12 11 26.7002 11c25.2998 0 18.0996 -19.9004 26.5 -15.7002
-c9.90039 4.90039 -2.09961 20.9004 -6.2002 23.7002c-7.7998 5.09961 -28.0996 4.90039 -36.7998 1.2998zM360 43c39.0996 -3.2998 64.5 106 15.7998 106c-20 0 -60.5 -41.5 -81.7998 -41.7998c-24.7002 -0.5 -59 49 -108.5 48.5
-c-66.4004 -0.400391 -90.5996 -78.6006 -51.7998 -105.2c57.2002 -38.7002 130.399 42.9004 161.3 42c19.5 -0.700195 49.7998 -48.5 65 -49.5z" />
-    <glyph glyph-name="joomla" unicode="&#xf1aa;" 
-d="M0.599609 355.9c0 33.2998 26.8008 60.0996 59.8008 60.0996c30 0 54.5 -21.9004 59.1992 -50.2002c32.6006 7.60059 67.1006 -0.599609 96.5 -30l-44.2998 -44.2998c-20.5 20.5 -42.5996 16.2998 -55.3994 3.5c-14.3008 -14.2998 -14.3008 -37.9004 0 -52.2002
-l99.5 -99.5l-44 -44.2998c-87.7002 87.2002 -49.7002 49.7002 -99.8008 99.7002c-26.7998 26.5 -35 64.7998 -24.7998 98.8994c-26.8994 5.80078 -46.7002 29.7002 -46.7002 58.3008zM130.1 239.5c28.5 28.4004 81.3008 80.7998 99.6006 99.9004
-c26.5996 26.5996 64.5 35 98.2998 25.0996c4.09961 29.0996 29.2002 51.5996 59.5 51.5996c33 0 59.7998 -26.8994 59.7998 -60.0996c0 -30.2998 -22.7002 -55.4004 -51.8994 -59.5c9.59961 -33.5996 2.2998 -70 -28.9004 -101.2l-44 44.2998
-c20.5 20.4004 16.2998 42.6006 3.5 55.4004c-14.2998 14.2998 -37.5996 14.2998 -51.9004 0c-10 -10.0996 -89.6992 -89.7998 -99.6992 -99.7998zM396.4 87.2998c29.0996 -4.09961 51.5996 -28.8994 51.5996 -59.0996c0 -33.2998 -26.7998 -60.1006 -59.7998 -60.1006
-c-29.2002 0 -53.4004 20.7002 -58.9004 48.1006c-34.7002 -10.7998 -75.0996 -2.2002 -102.7 28l44 44.2998c20.4004 -20.5 42.6006 -16.2998 55.4004 -3.5c14.2998 14.2998 14.2998 37.5996 0 51.9004l-99.7002 99.6992l44.2998 44.3008
-c104.5 -104.4 87.7002 -87.5 99.5 -99.7002c25.4004 -25.4004 34.5 -61.2002 26.3008 -93.9004zM312.1 140.4c-87.2998 -87.3008 -67.3994 -67.7002 -99.5 -99.7002c-25.6992 -25.4004 -61.5 -34.2002 -94.1992 -26c-6.10059 -26.9004 -30 -46.7002 -58.6006 -46.7002
-c-33 0 -59.7998 26.7998 -59.7998 60.0996c0 28.3008 19.5 52.2002 46.2002 58.2002c-8.5 33.1006 -0.700195 68.1006 29.5 98.2998l44 -44.2998c-20.1006 -20.0996 -16.2998 -42 -3.2002 -55.3994c14.2998 -14.3008 37.5996 -14.3008 51.9004 0
-c49.2998 49.3994 12.6992 13.3994 99.6992 99.7998z" />
-    <glyph glyph-name="behance" unicode="&#xf1b4;" horiz-adv-x="576" 
-d="M232 210.8c43.5996 -12.2998 64.7002 -45.2002 64.7002 -89.7002c0 -72 -60.5 -102.899 -124.9 -102.899h-171.8v354.399h167.1c60.7002 0 113.301 -17.1992 113.301 -87.7998c0 -35.7998 -16.6006 -58.7998 -48.4004 -74zM77.9004 312.1v-82.6992h79
-c27.7998 0 47.5 12.0996 47.5 42.1992c0 32.6006 -25.3008 40.5 -53.4004 40.5h-73.0996zM161.2 78.4004c31.7002 0 57.5996 11.1992 57.5996 47c0 36.2998 -21.7002 50.5996 -56 50.5996h-84.8994v-97.5996h83.2998zM519.7 319.1h-143.7v34.9004h143.7v-34.9004zM576 142.8
-c0 -4.5 -0.299805 -9 -0.599609 -13.2002h-185.101c0 -41.0996 21.7002 -65.2998 63 -65.2998c21.4004 0 49 11.6006 55.7002 33.5h62.2002c-19.1006 -58.7002 -58.7998 -86.2998 -120.101 -86.2998c-81 0 -131.3 54.7998 -131.3 134.7c0 77 53.1006 135.8 131.3 135.8
-c80.5 0 124.9 -63.2998 124.9 -139.2zM390.4 174h114.699c-3 34 -20.7998 54.7998 -56.1992 54.7998c-33.8008 0 -56.2002 -21.0996 -58.5 -54.7998z" />
-    <glyph glyph-name="behance-square" unicode="&#xf1b5;" 
-d="M186.5 155c0 -19.2998 -14 -25.4004 -31.2002 -25.4004h-45.0996v52.9004h46c18.5996 -0.0996094 30.2998 -7.7998 30.2998 -27.5zM178.8 237.3c0 -16.2998 -10.7002 -22.8994 -25.7998 -22.8994h-42.7002v44.7998h39.6006c15.1992 0 28.8994 -4.2002 28.8994 -21.9004z
-M311.1 214.1c19.2002 0 28.8008 -11.1992 30.5 -29.6992h-62.1992c1.19922 18.2998 13.3994 29.6992 31.6992 29.6992zM448 368v-352c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h352c26.5 0 48 -21.5 48 -48zM271.7 263h77.7998
-v18.9004h-77.7998v-18.9004zM228.7 152.7c0 24.0996 -11.4004 44.8994 -35 51.5996c17.2002 8.2002 26.2002 17.7002 26.2002 37c0 38.2002 -28.5 47.5 -61.4004 47.5h-90.5v-192h93.0996c34.9004 0.200195 67.6006 16.9004 67.6006 55.9004zM380 167.5
-c0 41.0996 -24.0996 75.4004 -67.5996 75.4004c-42.4004 0 -71.1006 -31.8008 -71.1006 -73.6006c0 -43.2998 27.2998 -73 71.1006 -73c33.1992 0 54.6992 14.9004 65.0996 46.7998h-33.7002c-3.7002 -11.8994 -18.5996 -18.0996 -30.2002 -18.0996
-c-22.3994 0 -34.0996 13.0996 -34.0996 35.2998h100.2c0.0996094 2.2998 0.299805 4.7998 0.299805 7.2002z" />
-    <glyph glyph-name="steam" unicode="&#xf1b6;" horiz-adv-x="496" 
-d="M496 192c0 -137 -111.2 -248 -248.4 -248c-113.8 0 -209.6 76.2998 -239 180.4l95.2002 -39.3008c6.40039 -32.0996 34.9004 -56.3994 68.9004 -56.3994c39.2002 0 71.8994 32.3994 70.2002 73.5l84.5 60.2002c52.0996 -1.30078 95.7998 40.8994 95.7998 93.5
-c0 51.5996 -42 93.5 -93.7002 93.5s-93.7002 -42 -93.7002 -93.5v-1.2002l-59.2002 -85.7002c-15.5 0.900391 -30.6992 -3.40039 -43.5 -12.0996l-133.1 55c10.2002 127.699 117.1 228.1 247.6 228.1c137.2 0 248.4 -111 248.4 -248zM155.7 63.7002
-c19.7998 -8.2002 42.5 1.09961 50.7998 21c8.2998 19.7998 -1.09961 42.5 -20.9004 50.7002l-31.5 13c12.2002 4.59961 26 4.7998 38.9004 -0.600586c13 -5.39941 23.0996 -15.5996 28.5 -28.5996s5.2998 -27.2998 -0.0996094 -40.2998
-c-11.2002 -26.8008 -42.1006 -39.6006 -69 -28.4004c-11.9453 4.99414 -21.6055 14.1826 -27.2002 25.7998zM329.5 193.6c-34.4004 0 -62.4004 28 -62.4004 62.3008c0 34.2998 28 62.2998 62.4004 62.2998s62.4004 -28 62.4004 -62.2998
-c0 -34.3008 -27.9004 -62.3008 -62.4004 -62.3008zM329.6 209.2c25.9004 0 46.9004 21 46.9004 46.7998c0 25.9004 -21 46.7998 -46.9004 46.7998c-25.8994 0 -46.8994 -21 -46.8994 -46.7998c0.0996094 -25.7998 21.0996 -46.7998 46.8994 -46.7998z" />
-    <glyph glyph-name="steam-square" unicode="&#xf1b7;" 
-d="M185.2 91.5c7.7002 18.5 -1 39.7002 -19.6006 47.4004l-29.5 12.1992c11.4004 4.30078 24.3008 4.5 36.4004 -0.5c12.2002 -5.09961 21.5996 -14.5996 26.7002 -26.6992c5 -12.2002 5 -25.6006 -0.100586 -37.7002c-10.5 -25.1006 -39.3994 -37 -64.5996 -26.5
-c-11.5996 4.7998 -20.4004 13.5996 -25.4004 24.2002l28.5 -11.8008c18.6006 -7.7998 39.9004 0.900391 47.6006 19.4004zM400 416c26.5 0 48 -21.5 48 -48v-352c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v112.8l89.0996 -36.8994
-c6 -30 32.7002 -52.7002 64.5 -52.7002c36.6006 0 67.3008 30.2998 65.7002 68.7998l79 56.2998c48.7002 -1.2002 89.6006 38.2998 89.6006 87.5c0 48.2002 -39.3008 87.5 -87.6006 87.5s-87.5996 -39.2998 -87.5996 -87.5v-1.09961l-55.4004 -80.2002
-c-14.5 0.799805 -28.7002 -3.09961 -40.7002 -11.2998l-116.6 48.0996v160.7c0 26.5 21.5 48 48 48h352zM300.3 193.5c-32.2002 0 -58.3994 26.0996 -58.3994 58.2998s26.1992 58.2998 58.3994 58.2998s58.4004 -26.1992 58.4004 -58.2998
-c0 -32.0996 -26.2002 -58.2998 -58.4004 -58.2998zM300.4 208.1c24.1992 0 43.8994 19.6006 43.8994 43.8008c0 24.1992 -19.5996 43.7998 -43.8994 43.7998c-24.2002 0 -43.9004 -19.6006 -43.9004 -43.7998c0 -24.2002 19.7002 -43.8008 43.9004 -43.8008z" />
-    <glyph glyph-name="spotify" unicode="&#xf1bc;" horiz-adv-x="496" 
-d="M248 440c136.9 0 248 -111.1 248 -248s-111.1 -248 -248 -248s-248 111.1 -248 248s111.1 248 248 248zM348.7 75.0996c8.09961 0 15.2002 6.30078 15.2002 15.4004s-3.60059 12.5996 -9.7002 16.5c-71.4004 42.7002 -155.101 44.2998 -237 26.2002
-c-7.5 -1.60059 -13.6006 -6.5 -13.6006 -16.7998c0 -8.10059 6.10059 -15.8008 15.8008 -15.8008c2.89941 0 8 1.60059 11.8994 2.60059c71.7002 14.7002 144.3 13.0996 206.7 -24.5c3.90039 -2.2998 6.5 -3.60059 10.7002 -3.60059zM375.6 140.7
-c10.9004 0 19.3008 8.7002 19.4004 19.5c0 8.7002 -3.2002 14.8994 -11.2998 19.7002c-49.4004 29.3994 -112.101 45.5 -177 45.5c-41.6006 0 -70 -5.80078 -97.7998 -13.6006c-10.3008 -2.89941 -15.5 -10 -15.5 -20.7002c0 -10.6992 8.69922 -19.3994 19.3994 -19.3994
-c4.5 0 7.10059 1.2998 11.9004 2.59961c82.8994 22.5 176.1 7.60059 238.6 -29.3994c3.60059 -1.90039 7.10059 -4.2002 12.2998 -4.2002zM406.6 216.9c12.2002 0 23.2002 9.69922 23.2002 23.2998c0 11.8994 -5.09961 18.0996 -12.8994 22.5996
-c-55.9004 32.6006 -132.4 47.7998 -205.4 47.7998c-42.9004 0 -82.2998 -4.89941 -117.5 -15.1992c-9 -2.60059 -17.4004 -10.3008 -17.4004 -23.9004c0 -13.2998 10.1006 -23.5996 23.3008 -23.5996c4.7998 0 9.2998 1.59961 12.8994 2.59961
-c82.4004 23 209.7 12.7998 280.9 -29.7002c4.5 -2.59961 7.7002 -3.89941 12.8994 -3.89941z" />
-    <glyph glyph-name="deviantart" unicode="&#xf1bd;" horiz-adv-x="320" 
-d="M320 354.8l-98.2002 -179.1l7.40039 -9.5h90.7998v-127.7h-160.9l-13.5 -9.2002l-43.6992 -84c-0.300781 0 -8.60059 -8.59961 -9.2002 -9.2002h-92.7002v93.2002l93.2002 179.4l-7.40039 9.2002h-85.7998v127.6h156l13.5 9.2002l43.7002 84
-c0.299805 0 8.59961 8.59961 9.2002 9.2002h97.5996v-93.1006z" />
-    <glyph glyph-name="soundcloud" unicode="&#xf1be;" horiz-adv-x="640" 
-d="M111.4 191.7l5.7998 -65l-5.7998 -68.2998c-0.300781 -2.5 -2.2002 -4.40039 -4.40039 -4.40039s-4.2002 1.90039 -4.2002 4.40039l-5.59961 68.2998l5.59961 65c0 2.2002 1.90039 4.2002 4.2002 4.2002c2.2002 0 4.09961 -2 4.40039 -4.2002zM132.8 237.3
-c2.5 0 4.7002 -2.2002 4.7002 -5l5.7998 -105.6l-5.7998 -68.2998c0 -2.80078 -2.2002 -5 -4.7002 -5c-2.7998 0 -4.7002 2.19922 -5 5l-5 68.2998l5 105.6c0.299805 2.7998 2.2002 5 5 5zM158.3 261.4c2.7998 0 5.2998 -2.2002 5.2998 -5.30078l5.30078 -130
-l-5.30078 -67.7998c0 -3.09961 -2.5 -5.2998 -5.2998 -5.2998c-3.09961 0 -5.2998 2.2002 -5.59961 5.2998l-4.40039 67.7998l4.40039 130c0.299805 3.10059 2.5 5.30078 5.59961 5.30078zM7.2002 164.8c1.39941 0 2.2002 -1.09961 2.5 -2.5l5.59961 -35.5996l-5.59961 -35
-c-0.299805 -1.40039 -1.10059 -2.5 -2.5 -2.5c-1.40039 0 -2.2002 1.09961 -2.5 2.5l-4.7002 35l4.7002 35.5996c0.299805 1.40039 1.09961 2.5 2.5 2.5zM30.7998 186.7c1.40039 0 2.5 -1.10059 2.7998 -2.5l7.2002 -57.5l-7.2002 -56.4004
-c-0.299805 -1.39941 -1.39941 -2.5 -2.7998 -2.5c-1.39941 0 -2.5 1.10059 -2.5 2.7998l-6.39941 56.1006l6.39941 57.5c0 1.39941 1.10059 2.5 2.5 2.5zM56.0996 198.1c1.7002 0 3.10059 -1.39941 3.10059 -3.2998l6.89941 -68.0996l-6.89941 -65.7998
-c0 -1.7002 -1.40039 -3.10059 -3.10059 -3.10059c-1.59961 0 -3 1.40039 -3.2998 3.10059l-5.7998 65.7998l5.7998 68.0996c0.200195 1.90039 1.60059 3.2998 3.2998 3.2998zM81.4004 200.3c1.89941 0 3.59961 -1.39941 3.89941 -3.59961l6.40039 -70l-6.40039 -67.7998
-c-0.299805 -2.2002 -2 -3.60059 -3.89941 -3.60059c-1.90039 0 -3.60059 1.40039 -3.60059 3.60059l-5.7998 67.7998l5.7998 70c0 2.2002 1.7002 3.59961 3.60059 3.59961zM322.8 311.2c2.5 -1.40039 4.10059 -4.2002 4.5 -7.2002l3.90039 -177.5l-3.90039 -64.2002
-c0 -4.7002 -3.89941 -8.59961 -8.59961 -8.59961s-8.60059 3.89941 -8.90039 8.59961l-1.7002 31.7002l-1.69922 32.5l3.2998 176.7v0.799805c0.200195 2.5 1.39941 5 3.2998 6.7002c1.40039 1.09961 3.40039 1.89941 5.59961 1.89941
-c1.40039 0 3.10059 -0.599609 4.2002 -1.39941zM296.1 295.9c2.2002 -1.40039 3.60059 -3.90039 3.90039 -6.7002l3.2998 -162.8l-3.09961 -58.6006l-0.299805 -6.7002c0 -2.2998 -0.800781 -4.19922 -2.5 -5.59961c-1.40039 -1.40039 -3.40039 -2.5 -5.60059 -2.5
-c-2.5 0 -4.7002 1.2002 -6.39941 3.09961c-1.10059 1.40039 -1.7002 3 -1.7002 4.7002v0.299805c-3.10059 65.3008 -3.10059 65.6006 -3.10059 65.6006l2.80078 160.8l0.299805 1.7002c0 2.7998 1.39941 5.2998 3.59961 6.7002
-c1.2998 0.799805 2.7998 1.39941 4.40039 1.39941c1.59961 0 3 -0.599609 4.39941 -1.39941zM184.7 273.4c3.39941 0 5.89941 -2.80078 6.09961 -6.10059l5 -140.6l-5 -67.2002c-0.299805 -3.2998 -2.7998 -5.7998 -6.09961 -5.7998c-3 0 -5.5 2.5 -5.7998 5.7998
-l-4.40039 67.2002l4.40039 140.6c0 3.2998 2.69922 6.10059 5.7998 6.10059zM561.4 210.6c43.2998 0 78.5996 -35.2998 78.5 -78.8994c0 -43.2998 -35.3008 -78.2998 -78.6006 -78.2998h-218.3c-4.7002 0.599609 -8.59961 4.19922 -8.59961 9.19922v249.7
-c0 4.7998 1.69922 7 7.7998 9.2002c15.2998 6.09961 32.5 9.40039 50.2998 9.40039c72.5 0 131.9 -55.6006 138.3 -126.4c9.5 3.90039 19.7998 6.09961 30.6006 6.09961zM264.7 270.9c4.2002 0 7.2002 -3.30078 7.5 -7.80078l3.89941 -136.699l-3.89941 -65.6006
-c0 -4.2002 -3.2998 -7.5 -7.5 -7.5s-7.5 3.2998 -7.7998 7.5l-3.30078 65.6006l3.30078 136.699c0.299805 4.5 3.59961 7.80078 7.7998 7.80078zM211.1 278.7c3.60059 0 6.40039 -3.10059 6.7002 -6.7002l4.40039 -145.3l-4.40039 -66.9004
-c-0.299805 -3.59961 -3.09961 -6.39941 -6.7002 -6.39941c-3.2998 0 -6.09961 2.7998 -6.39941 6.39941l-3.90039 66.9004l3.90039 145.3c0 3.59961 3.09961 6.7002 6.39941 6.7002zM237.8 275.3c3.90039 0 6.90039 -3 6.90039 -6.89941l4.2002 -141.7l-4.2002 -66.4004
-c0 -3.7998 -3.10059 -6.89941 -6.90039 -6.89941s-6.59961 3 -6.89941 6.89941l-3.90039 66.4004l3.90039 141.7c0 3.7998 3 6.89941 6.89941 6.89941z" />
-    <glyph glyph-name="vine" unicode="&#xf1ca;" horiz-adv-x="384" 
-d="M384 193.3v-52.0996c-18.4004 -4.2002 -36.9004 -6.10059 -52.0996 -6.10059c-36.9004 -77.3994 -103 -143.8 -125.101 -156.199c-14 -7.90039 -27.0996 -8.40039 -42.7002 0.799805c-27.0996 16.2998 -129.899 100.6 -164.1 365.6h74.5
-c18.7002 -159.1 64.5 -240.7 114.8 -301.8c27.9004 27.9004 54.7998 65.0996 75.6006 106.9c-49.8008 25.2998 -80.1006 80.8994 -80.1006 145.6c0 65.5996 37.7002 115.1 102.2 115.1c114.9 0 106.2 -127.899 81.5996 -181.5c0 0 -46.3994 -9.19922 -63.5 20.5
-c3.40039 11.3008 8.2002 30.8008 8.2002 48.5c0 31.3008 -11.2998 46.6006 -28.3994 46.6006c-18.2002 0 -30.8008 -17.1006 -30.8008 -50c0.100586 -79.2002 59.4004 -118.7 129.9 -101.9z" />
-    <glyph glyph-name="codepen" unicode="&#xf1cb;" horiz-adv-x="512" 
-d="M502.285 288.296c6.00098 -3.99902 9.71484 -11.1426 9.71582 -18.2852v-155.999c0 -7.14258 -3.71484 -14.2871 -9.71484 -18.2861l-234 -156.021c-8.06055 -4.95996 -16.584 -4.91504 -24.5713 0l-234 156.021c-6.00098 4 -9.71484 11.1436 -9.71484 18.2861v155.999
-c0 7.14258 3.71387 14.2861 9.71387 18.2852l234 156c8.06055 4.95996 16.584 4.91504 24.5713 0zM278 384.869v-102.572l95.4287 -63.7148l76.8574 51.4287zM234 384.869l-172.286 -114.858l76.8574 -51.4287l95.4287 63.7148v102.572zM44 228.868v-73.7139
-l55.1426 36.8564zM234 -0.84668v102.571l-95.4287 63.7158l-76.8574 -51.4297zM256 140.011l77.7148 52l-77.7148 52l-77.7148 -52zM278 -0.84668l172.286 114.857l-76.8574 51.4297l-95.4287 -63.7158v-102.571zM468 155.154v73.7139l-55.1426 -36.8574z" />
-    <glyph glyph-name="jsfiddle" unicode="&#xf1cc;" horiz-adv-x="576" 
-d="M510.634 210.538c45.6885 -25.334 68.3721 -74.5605 56.832 -122.634c-12.1035 -50.4199 -55.5479 -86.6592 -108.212 -87.293c-84.0303 -1.01172 -168.079 -0.458984 -252.12 -0.480469c-30.3223 -0.00683594 -60.668 -0.492188 -90.959 0.539062
-c-48.0938 1.63672 -91.7764 35.8643 -105.607 81.4326c-14.1289 46.5508 2.18945 94.623 41.9014 124.615c2.54688 1.92383 4.86914 6.52051 4.51465 9.54492c-3.74609 31.8604 7.14453 57.6709 32.6758 76.4082c26.2822 19.2881 55.2285 21.5879 85.3311 9.16699
-c2.36621 -0.975586 4.63965 -2.17773 7.82422 -3.68555c16.5215 27.5332 38.1221 48.6523 65.4922 63.9023c92.8594 51.7402 210.954 8.31152 246.85 -91.6455c5.55762 -15.4766 6.74512 -32.6074 9.09668 -49.0947c0.716797 -5.02832 1.6543 -8.15527 6.38086 -10.7764z
-M531.741 53.6582c39.3135 48.375 22.418 117.668 -35.1426 144.497c-7.43555 3.46582 -9.72559 7.74414 -9.84766 15.8936c-1.87012 125.129 -132.78 187.063 -230.24 132.697c-26.1133 -14.5674 -46.4492 -34.8955 -60.6709 -61.2939
-c-7.59082 -14.0908 -11.9287 -7.97754 -22.1982 -2.52734c-24.6113 13.0635 -49.0469 12.6406 -72.0332 -3.08301c-21.9678 -15.0244 -31.9102 -36.6201 -26.4199 -62.9805c2.4082 -11.5703 -0.914062 -17.0635 -10.0967 -23.1367
-c-38.1895 -25.2578 -53.0879 -74.8604 -34.1855 -116.105c18.4355 -40.2295 51.3135 -59.6631 95.1748 -59.9951c0.700195 -0.00488281 163.728 -0.545898 163.728 0.154297c56.8857 0 113.778 -0.551758 170.652 0.229492
-c28.9375 0.397461 53.0498 13.2178 71.2803 35.6504zM443.952 134.157c-5.84863 -31.1572 -34.6221 -55.0967 -66.666 -55.0957c-16.9531 0.00195312 -32.0586 6.5459 -44.0791 17.7051c-27.6973 25.7139 -71.1406 74.9805 -95.9375 93.3877
-c-20.0557 14.8877 -41.9893 12.333 -60.2715 -3.78223c-49.9961 -44.0713 15.8594 -121.775 67.0625 -77.1885c4.54883 3.95996 7.84082 9.54297 12.7441 12.8447c8.18457 5.50879 20.7666 0.883789 13.168 -10.6221c-17.3574 -26.2842 -49.3301 -38.1973 -78.8623 -29.3008
-c-28.8975 8.70312 -48.8408 35.9678 -48.626 70.1787c1.22461 22.4844 12.3633 43.0596 35.4141 55.9648c22.5742 12.6377 46.3682 13.1455 66.9902 -2.47363c50.791 -38.4756 75.5781 -81.7451 107.296 -101.245c24.5586 -15.0996 54.2549 -7.36328 68.8232 17.5059
-c28.8301 49.209 -34.5918 105.016 -78.8682 63.46c-3.98828 -3.74414 -6.91699 -8.93164 -11.4092 -11.7197c-10.9756 -6.81152 -17.333 4.1123 -12.8096 10.3525c20.7031 28.5537 50.4639 40.4404 83.2715 28.2139c31.4287 -11.7139 49.1074 -44.3662 42.7598 -78.1855z
-" />
-    <glyph glyph-name="rebel" unicode="&#xf1d0;" horiz-adv-x="512" 
-d="M256.5 -56c-139.3 0 -247.5 116.2 -243.3 254.1c2.7998 79.2002 43.2002 152.2 116.5 200.4c0.299805 0 1.89941 0.599609 1.09961 -0.799805c-5.7998 -5.5 -111.3 -129.8 -14.0996 -226.4c49.7998 -49.5 90 -2.5 90 -2.5c38.5 50.1006 -0.600586 125.9 -0.600586 125.9
-c-10 24.8994 -45.6992 40.0996 -45.6992 40.0996l28.7998 31.7998c24.3994 -10.5 43.2002 -38.6992 43.2002 -38.6992c0.799805 29.5996 -21.9004 61.3994 -21.9004 61.3994l44.5996 50.7002l44.3008 -50.0996c-20.5 -28.8008 -21.9004 -62.6006 -21.9004 -62.6006
-c13.7998 23 43.5 39.2998 43.5 39.2998l28.5 -31.7998c-27.4004 -8.89941 -45.4004 -39.8994 -45.4004 -39.8994c-15.7998 -28.5 -27.0996 -89.4004 0.600586 -127.301c32.3994 -44.5996 87.7002 2.80078 87.7002 2.80078c102.699 91.8994 -10.5 225 -10.5 225
-c-6.10059 5.5 0.799805 2.7998 0.799805 2.7998c50.0996 -36.5 114.6 -84.4004 116.2 -204.8c2 -145.601 -99.9004 -249.4 -242.4 -249.4z" />
-    <glyph glyph-name="empire" unicode="&#xf1d1;" horiz-adv-x="496" 
-d="M287.6 393.8c-10.7998 2.2002 -22.0996 3.2998 -33.5 3.60059v18.1992c78.1006 -2.19922 146.101 -44 184.601 -106.6l-15.7998 -9.09961c-6.10059 9.69922 -12.7002 18.7998 -20.2002 27.0996l-18 -15.5c-26 29.5996 -61.4004 50.7002 -101.9 58.4004zM53.4004 125.6
-c3.89941 -10.7998 8.2998 -21.0996 13.5996 -31.0996l-15.7998 -9.09961c-17.1006 31.5996 -27.1006 68.0996 -27.1006 106.6s9.90039 75 27.1006 106.5l15.7998 -9.09961c-5.2998 -9.7002 -10 -20.2002 -13.5996 -31l22.6992 -7.7002
-c-6.39941 -18.2998 -9.69922 -38.2002 -9.69922 -58.7002s3.59961 -40.4004 10 -58.7002zM213.1 14l-4.69922 -23.7998c10.7998 -1.90039 22.1992 -3.2998 33.5 -3.60059v-18.2998c-78.1006 2.2998 -146.4 44.2998 -184.9 106.601l16 9.39941
-c5.7998 -9.7002 12.7002 -18.7998 20.2002 -27.3994l18 15.7998c26.0996 -29.6006 61.5 -50.7002 101.899 -58.7002zM93.2998 327.1c-7.5 -8.2998 -14.0996 -17.5 -20.0996 -27.1992l-15.7998 9.09961c38.5 62.5996 106.5 104.4 184.6 106.6v-18.1992
-c-11.4004 -0.300781 -22.7002 -1.40039 -33.5 -3.60059l4.7002 -23.7998c-40.5 -7.7002 -75.9004 -28.7998 -101.9 -58.4004zM402.7 56.9004c7.5 8.59961 14.3994 17.6992 20.0996 27.3994l16.1006 -9.39941c-38.5 -62.3008 -106.801 -104.4 -184.9 -106.601v18.2998
-c11.4004 0.300781 22.7002 1.7002 33.5 3.60059l-4.7002 23.7998c40.5 8 75.9004 29.0996 101.9 58.7002zM496 192c0 -137 -111 -248 -248 -248s-248 111 -248 248s111 248 248 248s248 -111 248 -248zM483.8 192c0 130.1 -105.7 235.8 -235.8 235.8
-s-235.8 -105.7 -235.8 -235.8s105.7 -235.8 235.8 -235.8s235.8 105.7 235.8 235.8zM444.8 298.6c17.2002 -31.5996 27.1006 -68.0996 27.1006 -106.6s-9.90039 -75 -27.1006 -106.4l-15.7998 9.10059c5.2998 10 9.7002 20.2002 13.5996 31l-23 7.7002
-c6.40039 18.2998 10 38.1992 10 58.6992s-3.2998 40.4004 -9.69922 58.7002l22.6992 7.7002c-3.59961 10.7998 -8.2998 21.2998 -13.5996 31zM261.8 120.9l13.2998 -66.7002c-8.59961 -1.7002 -17.6992 -2.7998 -27.0996 -2.7998s-18.5 1.09961 -27.0996 2.7998
-l13.2998 66.7002c-16.2998 3.2998 -30.5 11.5996 -40.7002 23.5l-51.2002 -44.8008c-11.8994 13.6006 -21.2998 29.4004 -27.0996 46.8008l64.2002 22.0996c-2.5 7.40039 -3.90039 15.2002 -3.90039 23.5s1.40039 16 3.90039 23.5l-64.5 22.0996
-c6.09961 17.5 15.5 33.2002 27.3994 46.8008l51.2002 -44.8008c10.2998 11.9004 24.4004 20.5 40.7002 23.8008l-13.2998 66.3994c8.59961 2 17.6992 2.7998 27.0996 2.7998s18.5 -0.899414 27.0996 -2.7998l-13.2998 -66.3994
-c16.2998 -3.30078 30.5 -11.9004 40.7002 -23.8008l51.2002 44.8008c11.8994 -13.6006 21.2998 -29.4004 27.3994 -46.8008l-64.5 -22.0996c2.5 -7.40039 3.90039 -15.2002 3.90039 -23.5s-1.40039 -16 -3.90039 -23.5l64.2002 -22.0996
-c-5.7998 -17.5 -15.2002 -33.2002 -27.0996 -46.8008l-51.2002 44.8008c-10.2998 -11.9004 -24.4004 -20.2002 -40.7002 -23.5z" />
-    <glyph glyph-name="git-square" unicode="&#xf1d2;" 
-d="M100.59 113.76c48.5703 -3.30957 58.9502 -2.10938 58.9502 -11.9395c0 -20 -65.5498 -20.0605 -65.5498 -1.52051c0.00976562 5.08984 3.29004 9.40039 6.59961 13.46zM128.54 230.4c30.96 0 31.7598 -44.4707 -0.75 -44.4707c-33 0 -31.54 44.4707 0.75 44.4707z
-M448 368v-352c0 -26.4922 -21.5078 -48 -48 -48h-352c-26.4922 0 -48 21.5078 -48 48v352c0 26.4922 21.5078 48 48 48h352c26.4922 0 48 -21.5078 48 -48zM221 298.69c0 -14.4902 8.37988 -22.8809 22.8604 -22.8809c14.7393 0 23.1299 8.39062 23.1299 22.8809
-c0 14.4893 -8.37012 22.3096 -23.1104 22.3096c-14.4795 0 -22.8799 -7.83984 -22.8799 -22.3096zM199.18 253h-49.5498c-25 6.5498 -81.5596 4.84961 -81.5596 -46.75c0 -18.7998 9.39941 -32 21.8496 -38.1104c-15.6895 -14.3701 -23.1201 -21.1396 -23.1201 -30.7393
-c0 -6.87012 2.79004 -13.2207 11.1807 -16.7607c-8.90039 -8.39941 -14 -14.4795 -14 -25.9199c0.0195312 -20.0693 17.5498 -31.7197 63.5391 -31.7197c44.2207 0 69.8701 16.5098 69.8701 45.7305c0 36.6699 -28.2295 35.3193 -94.7695 39.3799l8.37988 13.4297
-c17 -4.74023 74.1904 -6.23047 74.1904 42.4297c0 11.6904 -4.83008 19.8203 -9.40039 25.6699l23.3799 1.78027zM283.52 143.16l-13 1.78027c-3.81934 0.509766 -4.06934 1 -4.06934 5.08984v105.45h-52.6006l-2.79004 -20.5703c15.75 -5.5498 17 -4.86035 17 -10.1699
-v-74.7402c0 -5.62012 -0.30957 -4.58008 -17 -6.87012v-20.0596h72.4209zM384 133l-6.87012 22.3701c-40.9297 -15.3701 -37.8496 12.4102 -37.8496 16.7295v60.7207h37.8496v25.4102h-35.8203c-2.86914 0 -2 -2.52051 -2 38.6299h-24.1797
-c-2.79004 -27.7002 -11.6797 -38.8799 -34 -41.4199v-22.6201c20.4697 0 19.8203 0.849609 19.8203 -2.54004v-66.5703c0 -28.7197 11.4297 -40.9102 41.6699 -40.9102c14.4502 0 30.4502 4.83008 41.3799 10.2002z" />
-    <glyph glyph-name="git" unicode="&#xf1d3;" horiz-adv-x="512" 
-d="M216.29 289.61l0.0400391 -34.5508l-37.4102 -2.83984c7.27051 -9.35938 15 -22.3701 15 -41.0693c0 -77.8906 -91.4297 -75.4707 -118.7 -67.8906l-13.4297 -21.5498c106.47 -6.5 151.63 -4.33984 151.63 -63c0 -46.7598 -41.04 -73.1797 -111.79 -73.1797
-c-73.5801 0 -101.63 18.71 -101.63 50.8193c0 18.3008 8.12988 28.04 22.4004 41.4502c-13.4199 5.66992 -17.8906 15.8105 -17.8906 26.8105c0 15.3594 11.9004 26.21 37 49.21c-20 9.76953 -35 30.9102 -35 61c0 82.5498 90.4902 85.2793 130.49 74.79h79.29z
-M152.87 47.71c0 15.7402 -16.6104 13.8096 -94.3203 19.1104c-5.2998 -6.54004 -10.5693 -13.4004 -10.5693 -21.54c0 -29.6699 104.89 -29.6299 104.89 2.42969zM102.06 182.29c52.0205 0 50.7402 71.1602 1.2002 71.1602c-51.6602 0 -54 -71.1602 -1.2002 -71.1602z
-M235.36 81.7803v32.0996c26.75 3.66016 27.2393 2 27.2393 11v119.51c0 8.5 -2.0498 7.37988 -27.2393 16.2607l4.46973 32.9199h84.1699v-168.71c0 -6.51074 0.400391 -7.32031 6.50977 -8.14062l20.7305 -2.83984v-32.0996h-115.88zM287.81 326.09
-c-23.1699 0 -36.5898 13.4297 -36.5898 36.6104c0 23.1797 13.4199 35.7695 36.5898 35.7695c23.5801 0 37 -12.6201 37 -35.7695c0 -23.1504 -13.4199 -36.6104 -37 -36.6104zM512 97.54c-17.4902 -8.53027 -43.0996 -16.2598 -66.2803 -16.2598
-c-48.3799 0 -66.6699 19.5 -66.6699 65.46v106.51c0 5.41992 1.0498 4.05957 -31.71 4.05957v36.1904c35.7803 4.07031 50 22 54.4697 66.2695h38.6309c0 -65.8291 -1.34082 -61.8096 3.25977 -61.8096h57.2998v-40.6504h-60.5596v-97.1494
-c0 -6.91992 -4.9209 -51.4102 60.5693 -26.8398z" />
-    <glyph glyph-name="hacker-news" unicode="&#xf1d4;" 
-d="M0 416h448v-448h-448v448zM21.2002 218.8h-0.200195c0.0996094 0.100586 0.200195 0.299805 0.299805 0.400391c0 -0.100586 0 -0.299805 -0.0996094 -0.400391zM239.2 164.9l80.7998 155.1h-34.7998c-54.7998 -101.2 -48.2998 -98.5996 -60.6006 -125.6
-c-10.0996 24.3994 -6.7998 27.2998 -59.2998 125.6h-37.2998l79.7998 -153.3v-102.7h31.4004v100.9z" />
-    <glyph glyph-name="tencent-weibo" unicode="&#xf1d5;" horiz-adv-x="384" 
-d="M72.2998 -47.7998c1.40039 -19.9004 -27.5996 -22.2002 -29.7002 -2.90039c-11.5996 129.9 31.1006 239.5 101.4 313.2c-15.5996 34 9.2002 77.0996 50.5996 77.0996c30.3008 0 55.1006 -24.5996 55.1006 -55.0996c0 -44 -49.5 -70.7998 -86.9004 -45.0996
-c-65.7002 -71.3008 -101.399 -169.801 -90.5 -287.2zM192 447.9c92 0 166.6 -74.6006 166.6 -166.5c0 -102.301 -93.2998 -185.5 -204 -162.301c-19 4.7002 -12.5 33.2002 6.60059 29.1006c80.7998 -20.7998 167.7 42.2998 167.7 133.1c0 75.5 -61.5 136.9 -136.9 136.9
-c-101 0 -168.3 -106.601 -122 -199.2c9 -17.9004 -17.5996 -30.7998 -26.2998 -13.4004c-56 108.101 22.3994 242.301 148.3 242.301z" />
-    <glyph glyph-name="qq" unicode="&#xf1d6;" 
-d="M433.754 27.5547c-11.5264 -1.39258 -44.8604 52.7412 -44.8604 52.7412c0 -31.3447 -16.1357 -72.2471 -51.0508 -101.786c16.8418 -5.19141 54.8428 -19.167 45.8037 -34.4209c-7.31641 -12.3428 -125.511 -7.88086 -159.633 -4.03711
-c-34.1221 -3.84375 -152.315 -8.30566 -159.632 4.03711c-9.04492 15.25 28.918 29.2139 45.7832 34.415c-34.9199 29.5391 -51.0586 70.4453 -51.0586 101.792c0 0 -33.334 -54.1338 -44.8594 -52.7412c-5.37012 0.650391 -12.4238 29.6445 9.34668 99.7041
-c10.2617 33.0244 21.9951 60.4785 40.1445 105.779c-3.05566 116.898 45.2441 214.956 160.262 214.962c113.737 -0.00585938 163.156 -96.1328 160.264 -214.963c18.1182 -45.2227 29.9121 -72.8506 40.1445 -105.778c21.7676 -70.0596 14.7158 -99.0527 9.3457 -99.7041z
-" />
-    <glyph glyph-name="weixin" unicode="&#xf1d7;" horiz-adv-x="576" 
-d="M385.2 280.4c-92.4004 0 -165.4 -69.1006 -165.3 -154c0 -14.2002 2.19922 -27.9004 6.19922 -40.8008c-6.19922 -0.5 -12.0996 -0.799805 -18.2998 -0.799805c-24.3994 0 -43.7998 4.90039 -68.2002 9.7002l-68 -34.0996l19.3008 58.5996
-c-48.6006 34.0996 -77.9004 78.2002 -77.9004 131.6c0 92.6006 87.5 165.4 194.7 165.4c95.5996 0 179.7 -58.2998 196.3 -136.7c-6.2002 0.799805 -12.4004 1.10059 -18.7998 1.10059zM280.7 333.3c-14.7002 0 -29.2002 -9.7002 -29.2998 -24.3994
-c0 -14.5 14.5 -24.2002 29.2998 -24.2002c14.5 0 24.2002 9.7002 24.2002 24.2002c0 14.6992 -9.7002 24.3994 -24.2002 24.3994zM144.3 284.7c14.7998 0 24.4004 9.59961 24.4004 24.2002c0 14.6992 -9.60059 24.3994 -24.4004 24.3994
-c-14.5 0 -29.2998 -9.59961 -29.2998 -24.3994c0 -14.5 14.7998 -24.2002 29.2998 -24.2002zM563 128.6c0 -43.7998 -29 -82.6992 -68.2002 -112.1l14.7998 -48.5996l-53.3994 29.2998c-19.7002 -4.7998 -39.2998 -9.90039 -58.6006 -9.90039
-c-92.5996 0 -165.399 63.4004 -165.399 141.3c0 77.9004 72.7002 141.301 165.399 141.301c87.5 0 165.4 -63.4004 165.4 -141.301zM343.9 153.1c14.6992 0 24.3994 9.60059 24.3994 19.6006c0 9.59961 -9.59961 19.2998 -24.3994 19.2998
-c-9.60059 0 -19.3008 -9.59961 -19.3008 -19.2998c0 -9.90039 9.60059 -19.6006 19.3008 -19.6006zM451 153.1c14.5 0 24.5 9.60059 24.4004 19.6006c0 9.59961 -9.90039 19.2998 -24.4004 19.2998c-9.59961 0 -19.2998 -9.59961 -19.2998 -19.2998
-c0 -9.90039 9.59961 -19.6006 19.2998 -19.6006z" />
-    <glyph glyph-name="slideshare" unicode="&#xf1e7;" horiz-adv-x="512" 
-d="M187.7 294.3c34 0 61.7002 -25.7002 61.7002 -57.7002c0 -31.6992 -27.7002 -57.6992 -61.7002 -57.6992s-61.7002 26 -61.7002 57.6992c0 32 27.7002 57.7002 61.7002 57.7002zM331.1 294.3c34.3008 0 61.8008 -25.7002 61.7002 -57.7002
-c0 -31.6992 -27.3994 -57.6992 -61.7002 -57.6992c-34 0 -61.6992 26 -61.6992 57.6992c0 32 27.6992 57.7002 61.6992 57.7002zM487.7 204.3c15.2002 10.5 25.2002 -4 16.0996 -17.7998c-18.2998 -22.5996 -53.2002 -50.2998 -106.3 -72
-c56.2998 -191.7 -137.4 -222.3 -134.3 -124c0 0.700195 -0.299805 53.7998 -0.299805 93.5c-4.30078 0.799805 -8.60059 2 -13.7002 3.09961c0 -40 -0.299805 -95.8994 -0.299805 -96.5996c3.09961 -98.2002 -190.601 -67.5996 -134.301 124.1
-c-53.1992 21.7002 -88 49.4004 -106.3 72c-9.09961 13.7002 0.900391 28.3008 16 17.7002c2 -1.39941 4.2998 -2.89941 6.2998 -4.2998v198.3c0 27.4004 20.6006 49.7002 46 49.7002h359.101c25.3994 0 46 -22.2998 46 -49.7002v-198.3zM457.2 185.1h0.0996094v190.601
-c0 32.7998 -10.5996 45.7002 -40.8994 45.7002h-317.7c-31.7002 0 -40.6006 -10.8008 -40.6006 -45.7002v-192.4c67.7002 -35.3994 125.7 -29.0996 157.4 -28c13.4004 0.299805 22 -2.2998 27.0996 -7.7002c1.7002 -1.59961 10 -9.39941 20.3008 -17.0996
-c1.09961 15.7998 10 25.7998 33.6992 24.9004c32.3008 -1.40039 91.7002 -7.7002 160.601 29.6992z" />
-    <glyph glyph-name="twitch" unicode="&#xf1e8;" horiz-adv-x="512" 
-d="M391.17 344.53v-109.7h-38.6299v109.7h38.6299zM285 345v-109.75h-38.6299v109.75h38.6299zM120.83 448h366.86v-256l-173.771 -164.58h-77.25l-96.5303 -91.4199v91.4199h-115.83v329.16zM449.07 210.25v201.17h-308.931v-274.29h86.8701v-64l67.6006 64h77.2393z" />
-    <glyph glyph-name="yelp" unicode="&#xf1e9;" horiz-adv-x="384" 
-d="M42.9004 207.68l99.6191 -48.6094c19.2002 -9.40039 16.2002 -37.5107 -4.5 -42.71l-107.52 -26.8105c-1.78223 -0.448242 -3.64746 -0.685547 -5.56738 -0.685547c-11.7246 0 -21.3848 8.89453 -22.6426 20.2861c-0.853516 7.44141 -1.29297 15.0078 -1.29297 22.6768
-c0 21.9561 3.65723 42.9111 10.293 62.6426c3.03906 9.02148 11.5723 15.5264 21.6133 15.5264c3.5791 0 6.98145 -0.84375 9.99707 -2.31641zM86.9004 -31.5703c-6.01172 4.1123 -9.9248 11.0195 -9.9248 18.8457c0 5.85742 2.21191 11.2021 5.84473 15.2441l74.21 82.4004
-c14.3096 15.8105 40.5098 5.2002 39.8096 -16.0996l-3.89941 -110.82c-0.414062 -12.21 -10.4365 -22.0088 -22.7461 -22.0088c-1.32129 0 -2.61523 0.112305 -3.87402 0.329102c-28.9365 4.90039 -56.1416 16.1621 -79.4199 32.1094zM232.24 78.3496
-c-11.2998 18.1104 6.2002 40.4102 26.5098 33.9102l105.42 -34.2598c9.14453 -3.04102 15.7305 -11.6855 15.7305 -21.8447c0 -3.46289 -0.767578 -6.74805 -2.14062 -9.69531c-12.5361 -26.3281 -30.4697 -49.2246 -52.71 -67.6104
-c-3.96191 -3.26465 -9.03809 -5.25781 -14.5674 -5.25781c-8.18555 0 -15.375 4.29785 -19.4326 10.7578zM380.57 210.58c1.21289 -2.79883 1.93359 -5.89941 1.93359 -9.1416c0 -10.4385 -6.96875 -19.2627 -16.5039 -22.0684l-106.64 -30.5098
-c-20.5 -5.90039 -37.1006 17.0098 -25.2002 34.71l62 91.9199c4.10742 6.08398 11.0635 10.0615 18.9502 10.0615c5.76172 0 11.0283 -2.1377 15.0498 -5.66211c21.5781 -19.0479 38.7783 -42.5518 50.4102 -69.3096zM62.1104 417.82
-c34.3301 16.3438 72.6104 26.9434 112.33 30.0996c0.610352 0.0498047 1.20703 0.078125 1.83008 0.078125c12.5127 0 22.6709 -10.1582 22.6709 -22.6699c0 -0.0693359 -0.000976562 -0.138672 -0.000976562 -0.208008v-208.34
-c0 -23.2998 -30.9102 -31.6006 -42.6104 -11.4004l-104.12 180.44c-1.92871 3.35059 -3.06738 7.24805 -3.06738 11.3887c0 9.07422 5.29883 16.9199 12.9678 20.6113z" />
-    <glyph glyph-name="paypal" unicode="&#xf1ed;" horiz-adv-x="384" 
-d="M111.4 152.1c-3.5 -19.1992 -17.4004 -108.699 -21.5 -134c-0.300781 -1.7998 -1 -2.5 -3 -2.5h-74.6006c-7.59961 0 -13.0996 6.60059 -12.0996 13.9004l58.5996 371.9c1.5 9.59961 10.1006 16.8994 20 16.8994c152.3 0 165.101 3.7002 204 -11.3994
-c60.1006 -23.3008 65.6006 -79.5 44 -140.301c-21.5 -62.5996 -72.5 -89.5 -140.1 -90.2998c-43.4004 -0.700195 -69.5 7 -75.2998 -24.2002zM357.1 296c28.4004 -21.2002 30.3008 -57.7998 23.8008 -92.5996c-16.5 -83.5 -71.9004 -112.301 -142.9 -112.301
-c-15 0 -24.7002 2.30078 -29.2998 -19.6992c-15.5 -97.4004 -13.7002 -85.9004 -14.4004 -91.3008c-1.7002 -8.59961 -8.7998 -14.8994 -17.3994 -14.8994h-63.5c-7.10059 0 -11.6006 5.7998 -10.6006 12.8994c0 0 4.5 29.3008 27.1006 169.7
-c0.799805 6.10059 4.7998 9.40039 10.8994 9.40039c54 0 164.601 -9.90039 204.5 103.899c3.7002 11.1006 6.7998 22.2002 8.7998 33.6006c0.5 3.09961 1.2002 2.59961 3 1.2998z" />
-    <glyph glyph-name="google-wallet" unicode="&#xf1ee;" 
-d="M156.8 321.2c37.6006 -60.6006 64.2002 -113.101 84.2998 -162.5c-8.2998 -33.7998 -18.7998 -66.5 -31.2998 -98.2998c-13.2002 52.2998 -26.5 101.3 -56 148.5c6.5 36.3994 2.2998 73.5996 3 112.3zM109.3 248c5 0 10 -2.5 13 -6.5
-c43.7998 -59.7998 66.2998 -123.8 82.5 -193.5h-103.5c-20 69.5 -49.5 133 -91.7002 187.3c-4 5.2002 0 12.7002 6.5 12.7002h93.2002zM157.1 336h108.7c74.7998 -103 131.2 -230 143.2 -368h-113.7c-8.2002 133.5 -69.7002 260 -138.2 368zM408.9 404.5
-c19 -67.5 31.0996 -139 31.0996 -212.6c0 -69.5 -9.5 -142.5 -25.2998 -203c-10.9004 92.5 -42.4004 184.6 -90.6006 270.8c-4.19922 50.5 -13.2998 99.5 -26.5 146c-1.19922 5.2998 2.5 10.2998 7.80078 10.2998h88.2998c7 0 13.3994 -4.7002 15.2002 -11.5z" />
-    <glyph glyph-name="cc-visa" unicode="&#xf1f0;" horiz-adv-x="576" 
-d="M470.1 216.7c0 0 7.60059 -37.2002 9.30078 -45h-33.4004c3.2998 8.89941 16 43.5 16 43.5c-0.200195 -0.299805 3.2998 9.09961 5.2998 14.8994zM576 368v-352c0 -26.5 -21.5 -48 -48 -48h-480c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h480
-c26.5 0 48 -21.5 48 -48zM152.5 116.8l63.2002 155.2h-42.5l-39.2998 -106l-4.30078 21.5l-14 71.4004c-2.2998 9.89941 -9.39941 12.6992 -18.1992 13.0996h-64.7002l-0.700195 -3.09961c15.7998 -4 29.9004 -9.80078 42.2002 -17.1006l35.7998 -135h42.5zM246.9 116.6
-l25.1992 155.4h-40.1992l-25.1006 -155.4h40.1006zM386.8 167.4c0.200195 17.6992 -10.5996 31.1992 -33.7002 42.2998c-14.0996 7.09961 -22.6992 11.8994 -22.6992 19.2002c0.199219 6.59961 7.2998 13.3994 23.0996 13.3994
-c13.0996 0.299805 22.7002 -2.7998 29.9004 -5.89941l3.59961 -1.7002l5.5 33.5996c-7.90039 3.10059 -20.5 6.60059 -36 6.60059c-39.7002 0 -67.5996 -21.2002 -67.7998 -51.4004c-0.299805 -22.2998 20 -34.7002 35.2002 -42.2002
-c15.5 -7.59961 20.7998 -12.5996 20.7998 -19.2998c-0.200195 -10.4004 -12.6006 -15.2002 -24.1006 -15.2002c-16 0 -24.5996 2.5 -37.6992 8.2998l-5.30078 2.5l-5.59961 -34.8994c9.40039 -4.2998 26.7998 -8.10059 44.7998 -8.2998
-c42.2002 -0.100586 69.7002 20.7998 70 53zM528 116.6l-32.4004 155.4h-31.0996c-9.59961 0 -16.9004 -2.7998 -21 -12.9004l-59.7002 -142.5h42.2002s6.90039 19.2002 8.40039 23.3008h51.5996c1.2002 -5.5 4.7998 -23.3008 4.7998 -23.3008h37.2002z" />
-    <glyph glyph-name="cc-mastercard" unicode="&#xf1f1;" horiz-adv-x="576" 
-d="M482.9 37.7002c0 -6.7998 -4.60059 -11.7002 -11.2002 -11.7002c-6.7998 0 -11.2002 5.2002 -11.2002 11.7002s4.40039 11.7002 11.2002 11.7002c6.59961 0 11.2002 -5.2002 11.2002 -11.7002zM172.1 49.4004c6.5 0 10.8008 -5.2002 10.9004 -11.7002
-c0 -6.7998 -4.40039 -11.7002 -10.9004 -11.7002c-7.09961 0 -11.1992 5.2002 -11.1992 11.7002s4.09961 11.7002 11.1992 11.7002zM289.6 49.7002c5.2002 0 8.7002 -3 9.60059 -8.7002h-19.1006c0.800781 5.2002 4.10059 8.7002 9.5 8.7002zM397.4 49.4004
-c6.7998 0 11.1992 -5.2002 11.1992 -11.7002c0 -6.7998 -4.39941 -11.7002 -11.1992 -11.7002c-6.80078 0 -10.9004 5.2002 -10.9004 11.7002s4.09961 11.7002 10.9004 11.7002zM503.3 23.2998c0 -0.299805 0.299805 -0.5 0.299805 -1.09961
-c0 -0.299805 -0.299805 -0.5 -0.299805 -1.10059c-0.299805 -0.299805 -0.299805 -0.5 -0.5 -0.799805c-0.299805 -0.299805 -0.5 -0.5 -1.09961 -0.5c-0.299805 -0.299805 -0.5 -0.299805 -1.10059 -0.299805c-0.299805 0 -0.5 0 -1.09961 0.299805
-c-0.299805 0 -0.5 0.299805 -0.799805 0.5c-0.299805 0.299805 -0.5 0.5 -0.5 0.799805c-0.299805 0.5 -0.299805 0.800781 -0.299805 1.10059c0 0.5 0 0.799805 0.299805 1.09961c0 0.5 0.299805 0.799805 0.5 1.10059c0.299805 0.299805 0.5 0.299805 0.799805 0.5
-c0.5 0.299805 0.799805 0.299805 1.09961 0.299805c0.5 0 0.800781 0 1.10059 -0.299805c0.5 -0.300781 0.799805 -0.300781 1.09961 -0.5c0.299805 -0.200195 0.200195 -0.600586 0.5 -1.10059zM501.1 21.9004c0.5 0 0.5 0.299805 0.800781 0.299805
-c0.299805 0.299805 0.299805 0.5 0.299805 0.799805s0 0.5 -0.299805 0.799805c-0.300781 0 -0.5 0.299805 -1.10059 0.299805h-1.59961v-3.5h0.799805v1.40039h0.299805l1.10059 -1.40039h0.799805zM576 367v-352c0 -26.5 -21.5 -48 -48 -48h-480c-26.5 0 -48 21.5 -48 48
-v352c0 26.5 21.5 48 48 48h480c26.5 0 48 -21.5 48 -48zM64 227.4c0 -76.5 62.0996 -138.5 138.5 -138.5c27.2002 0 53.9004 8.19922 76.5 23.0996c-72.9004 59.2998 -72.4004 171.2 0 230.5c-22.5996 15 -49.2998 23.0996 -76.5 23.0996
-c-76.4004 0.100586 -138.5 -62 -138.5 -138.199zM288 118.6c70.5 55 70.2002 162.2 0 217.5c-70.2002 -55.2998 -70.5 -162.6 0 -217.5zM145.7 42.2998c0 8.7002 -5.7002 14.4004 -14.7002 14.7002c-4.59961 0 -9.5 -1.40039 -12.7998 -6.5
-c-2.40039 4.09961 -6.5 6.5 -12.2002 6.5c-3.7998 0 -7.59961 -1.40039 -10.5996 -5.40039v4.40039h-8.2002v-36.7002h8.2002c0 18.9004 -2.5 30.2002 9 30.2002c10.1992 0 8.19922 -10.2002 8.19922 -30.2002h7.90039c0 18.2998 -2.5 30.2002 9 30.2002
-c10.2002 0 8.2002 -10 8.2002 -30.2002h8.2002v23h-0.200195zM190.6 56h-7.89941v-4.40039c-2.7002 3.30078 -6.5 5.40039 -11.7002 5.40039c-10.2998 0 -18.2002 -8.2002 -18.2002 -19.2998c0 -11.2002 7.90039 -19.2998 18.2002 -19.2998
-c5.2002 0 9 1.89941 11.7002 5.39941v-4.59961h7.89941v36.7998zM231.1 30.4004c0 15 -22.8994 8.19922 -22.8994 15.1992c0 5.7002 11.8994 4.80078 18.5 1.10059l3.2998 6.5c-9.40039 6.09961 -30.2002 6 -30.2002 -8.2002c0 -14.2998 22.9004 -8.2998 22.9004 -15
-c0 -6.2998 -13.5 -5.7998 -20.7002 -0.799805l-3.5 -6.2998c11.2002 -7.60059 32.5996 -6 32.5996 7.5zM266.5 21.0996l-2.2002 6.80078c-3.7998 -2.10059 -12.2002 -4.40039 -12.2002 4.09961v16.5996h13.1006v7.40039h-13.1006v11.2002h-8.19922v-11.2002h-7.60059
-v-7.2998h7.60059v-16.7002c0 -17.5996 17.2998 -14.4004 22.5996 -10.9004zM279.8 34.5h27.5c0 16.2002 -7.39941 22.5996 -17.3994 22.5996c-10.6006 0 -18.2002 -7.89941 -18.2002 -19.2998c0 -20.5 22.5996 -23.8994 33.7998 -14.2002l-3.7998 6
-c-7.7998 -6.39941 -19.6006 -5.7998 -21.9004 4.90039zM338.9 56c-4.60059 2 -11.6006 1.7998 -15.2002 -4.40039v4.40039h-8.2002v-36.7002h8.2002v20.7002c0 11.5996 9.5 10.0996 12.7998 8.40039zM349.5 37.7002c0 11.3994 11.5996 15.0996 20.7002 8.39941l3.7998 6.5
-c-11.5996 9.10059 -32.7002 4.10059 -32.7002 -15c0 -19.7998 22.4004 -23.7998 32.7002 -15l-3.7998 6.5c-9.2002 -6.5 -20.7002 -2.59961 -20.7002 8.60059zM416.2 56h-8.2002v-4.40039c-8.2998 11 -29.9004 4.80078 -29.9004 -13.8994
-c0 -19.2002 22.4004 -24.7002 29.9004 -13.9004v-4.59961h8.2002v36.7998zM449.9 56c-2.40039 1.2002 -11 2.90039 -15.2002 -4.40039v4.40039h-7.90039v-36.7002h7.90039v20.7002c0 11 9 10.2998 12.7998 8.40039zM490.2 70.9004h-7.90039v-19.3008
-c-8.2002 10.9004 -29.8994 5.10059 -29.8994 -13.8994c0 -19.4004 22.5 -24.6006 29.8994 -13.9004v-4.59961h7.90039v51.7002zM497.8 146v-4.59961h0.799805v4.59961h1.90039v0.799805h-4.59961v-0.799805h1.89941zM504.4 22.2002c0 0.5 0 1.09961 -0.300781 1.59961
-c-0.299805 0.299805 -0.5 0.799805 -0.799805 1.10059c-0.299805 0.299805 -0.799805 0.5 -1.09961 0.799805c-0.5 0 -1.10059 0.299805 -1.60059 0.299805c-0.299805 0 -0.799805 -0.299805 -1.39941 -0.299805c-0.5 -0.299805 -0.799805 -0.5 -1.10059 -0.799805
-c-0.5 -0.300781 -0.799805 -0.800781 -0.799805 -1.10059c-0.299805 -0.5 -0.299805 -1.09961 -0.299805 -1.59961c0 -0.299805 0 -0.799805 0.299805 -1.40039c0 -0.299805 0.299805 -0.799805 0.799805 -1.09961c0.300781 -0.299805 0.5 -0.5 1.10059 -0.799805
-c0.5 -0.300781 1.09961 -0.300781 1.39941 -0.300781c0.5 0 1.10059 0 1.60059 0.300781c0.299805 0.299805 0.799805 0.5 1.09961 0.799805s0.5 0.799805 0.799805 1.09961c0.300781 0.600586 0.300781 1.10059 0.300781 1.40039zM507.6 146.9h-1.39941l-1.60059 -3.5
-l-1.59961 3.5h-1.40039v-5.40039h0.800781v4.09961l1.59961 -3.5h1.09961l1.40039 3.5v-4.09961h1.09961v5.40039zM512 227.4c0 76.1992 -62.0996 138.3 -138.5 138.3c-27.2002 0 -53.9004 -8.2002 -76.5 -23.1006c72.0996 -59.2998 73.2002 -171.5 0 -230.5
-c22.5996 -15 49.5 -23.0996 76.5 -23.0996c76.4004 -0.0996094 138.5 61.9004 138.5 138.4z" />
-    <glyph glyph-name="cc-discover" unicode="&#xf1f2;" horiz-adv-x="576" 
-d="M520.4 251.9c0 -8.40039 -5.5 -12.8008 -15.8008 -12.8008h-4.69922v24.9004h4.89941c10.1006 0 15.6006 -4.2002 15.6006 -12.0996zM528 416c26.5 0 48 -21.5 48 -48v-352c0 -26.5 -21.5 -48 -48 -48h-480c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h480z
-M483.9 277.1v-82h16v32.8008h2.19922l22.2002 -32.8008h19.6006l-25.8008 34.4004c12.1006 2.5 18.7002 10.5996 18.7002 23.2002c0 28.5 -30.2998 24.3994 -52.8994 24.3994zM428 277v-82h45.2998v13.7998h-29.2998v22.2002h28.2998v13.7998h-28.2998v18.2002h29.2998v14
-h-45.2998zM359.3 277h-17.5l35 -84.2002h8.60059l35.5 84.2002h-17.5l-22.2002 -55.2002zM303.4 280c-24.6006 0 -44.6006 -19.9004 -44.6006 -44.5996c0 -24.6006 19.9004 -44.6006 44.6006 -44.6006c24.5996 0 44.5996 19.9004 44.5996 44.6006
-c0 24.5996 -19.9004 44.5996 -44.5996 44.5996zM254.1 273.9c-30.1992 15 -63.2998 -6.80078 -63.2998 -38c0 -32.5 33.6006 -52.5 63.2998 -38.2002v19c-19.2998 -19.2998 -46.7998 -5.7998 -46.7998 19.2002c0 23.6992 26.7002 39.0996 46.7998 19v19zM156.9 207.6
-c-7.60059 0 -13.8008 3.7002 -17.5 10.8008l-10.3008 -9.90039c17.8008 -26.0996 56.6006 -18.2002 56.6006 11.2998c0 13.1006 -5.40039 19 -23.6006 25.6006c-9.59961 3.39941 -12.2998 5.89941 -12.2998 10.2998c0 8.7002 14.5 14.0996 24.9004 2.5l8.39941 10.7998
-c-19.0996 17.0996 -49.6992 8.90039 -49.6992 -14.2998c0 -11.2998 5.19922 -17.2002 20.1992 -22.7002c25.7002 -9.09961 14.7002 -24.4004 3.30078 -24.4004zM55.4004 195c30.8994 0 44.0996 22.4004 44.0996 40.9004c0 24.0996 -18 41.0996 -44.0996 41.0996h-23.4004
-v-82h23.4004zM122.9 195v82h-16v-82h16zM544 15v145c-33.2998 -20.7998 -226.4 -124.4 -416 -160h401c8.2002 0 15 6.7998 15 15zM74.0996 256.4c5.7002 -5 8.90039 -12.6006 8.90039 -20.5c0 -7.90039 -3.2002 -15.5 -8.90039 -20.7002
-c-4.89941 -4.40039 -11.5996 -6.40039 -21.8994 -6.40039h-4.2002v54.2002h4.2002c10.2998 0 16.7002 -1.7002 21.8994 -6.59961z" />
-    <glyph glyph-name="cc-amex" unicode="&#xf1f3;" horiz-adv-x="576" 
-d="M325.1 280.2c0.100586 -8 -4.2998 -15.7002 -11.6992 -18.7002c9.5 -3.2998 11 -9.2002 11 -18.4004v-13.5h-16.6006c-0.299805 14.8008 3.60059 25.1006 -14.7998 25.1006h-18v-25.1006h-16.4004v69.3008l39.1006 -0.300781c13.2998 0 27.3994 -2 27.3994 -18.3994z
-M295.7 268.9c5.7002 0 11 1.2998 11 7.89941c0 6.40039 -5.60059 7.40039 -10.7002 7.40039h-21v-15.2998h20.7002zM279 179.4c15.5996 0 27.9004 -5.40039 27.9004 -22.7002c0 -27.9004 -30.4004 -23.2998 -49.3008 -23.2998l-0.0996094 -23.3008h-32.2002l-20.3994 23
-l-21.3008 -23h-65.3994l0.0996094 69.3008h66.5l20.5 -22.8008l21 22.8008h52.7002zM175.2 124.7l19 20.2002l-17.9004 20.1992h-41.7002v-12.5h36.3008v-14.0996h-36.3008v-13.7998h40.6006zM241 116.5v55.5l-25.2998 -27.4004zM278.8 147.5
-c5.90039 0 10.5 2.7998 10.5 9.2002c0 6.09961 -4.59961 8.39941 -10.2002 8.39941h-21.5v-17.5996h21.2002zM247.2 284.2h-38.9004v-12.5h37.7998v-14.1006h-37.7998v-13.7998h38.9004v-14.2998h-55.5v69.2998h55.5v-14.5996zM576 192.6h-0.200195h0.200195zM381.4 160.7
-c-0.100586 -7.60059 -4.2002 -15.2998 -11.9004 -18.4004c9.2002 -3.2998 11 -9.5 11 -18.3994l-0.0996094 -13.8008h-16.6006l0.100586 11.5c0 11.8008 -3.80078 13.8008 -14.8008 13.8008h-17.5996l-0.0996094 -25.3008h-16.6006l0.100586 69.3008h39.3994
-c13 0 27.1006 -2.30078 27.1006 -18.7002zM352.2 149.5c5.59961 0 11 1.2998 11 8.2002c0 6.39941 -5.60059 7.39941 -10.7002 7.39941h-21v-15.5996h20.7002zM179.4 229.5h-16.8008v54.2002l-24 -54.2002h-14.5996l-24 54.2002v-54.2002h-33.7998l-6.40039 15.2998h-34.5
-l-6.39941 -15.2998h-17.9004l29.7002 69.2998h24.5l28.0996 -65.7002v65.7002h27.1006l21.6992 -47l19.7002 47h27.6006v-69.2998zM31.2002 259.2h22.7002l-11.5 27.5996zM508.6 100.3c34.8008 0 54.8008 -2.2002 67.5 6.10059v-90.4004c0 -26.5 -21.5 -48 -48 -48h-480.1
-c-26.5 0 -48 21.5 -48 48v203.7h26.5996c4.2002 10.0996 2.2002 5.2998 6.40039 15.2998h19.2002c4.2002 -10 2.2002 -5.2002 6.39941 -15.2998h52.9004v11.3994c2.2002 -5 1.09961 -2.5 5.09961 -11.3994h29.5c2.40039 5.5 2.60059 5.7998 5.10059 11.3994v-11.3994h135.5
-v25.0996c6.39941 0 8 0.100586 9.7998 -0.200195c0 0 -0.200195 -10.8994 0.0996094 -24.7998h66.5v8.90039c7.40039 -5.90039 17.4004 -8.90039 29.7002 -8.90039h26.7998c4.2002 10.1006 2.2002 5.2998 6.40039 15.2998h19c6.5 -15 0.200195 -0.5 6.59961 -15.2998
-h52.8008v21.9004c11.7998 -19.7002 7.7998 -12.9004 13.1992 -21.9004h41.6006v92h-39.9004v-18.3994c-12.2002 20.1992 -6.2998 10.3994 -11.2002 18.3994h-43.2998v-20.5996c-6.2002 14.5996 -4.59961 10.7998 -8.7998 20.5996h-32.4004
-c-0.399414 0 -2.2998 -0.200195 -2.2998 0.299805h-27.5996c-12.7998 0 -23.1006 -3.19922 -30.7002 -9.2998v9.2998h-39.9004v-5.2998c-10.7998 6.10059 -20.6992 5.10059 -64.3994 5.2998c-0.100586 0 -11.6006 0.100586 -11.6006 0h-103
-c-2.5 -6.09961 -6.7998 -16.3994 -12.5996 -30c-2.7998 6 -11 23.8008 -13.9004 30h-46v-21.0996c-7.39941 17.4004 -4.69922 11 -9 21.0996h-39.6992c-3.40039 -7.89941 -13.7002 -32 -23.1006 -53.8994v109.8c0 26.5 21.5 48 48 48h480c26.5 0 48 -21.5 48 -48v-175.4
-c-37.7002 0.200195 -44 0.900391 -54.2998 -5v5c-45.2998 0 -53.5 1.7002 -64.9004 -5.19922v5.19922h-78.1992v-5.09961c-11.4004 6.5 -21.4004 5.09961 -75.7002 5.09961v-5.59961c-6.2998 3.7002 -14.5 5.59961 -24.2998 5.59961h-58
-c-3.5 -3.7998 -12.5 -13.6992 -15.7002 -17.1992c-12.7002 14.0996 -10.5 11.5996 -15.5 17.1992h-83.1006v-92.2998h82c3.30078 3.5 12.9004 13.9004 16.1006 17.4004c12.7002 -14.2998 10.2998 -11.7002 15.3994 -17.4004h48.9004
-c0 14.7002 0.0996094 8.2998 0.0996094 23c11.5 -0.200195 24.3008 0.200195 34.3008 6.2002c0 -13.9004 -0.100586 -17.0996 -0.100586 -29.2002h39.6006c0 18.5 0.0996094 7.40039 0.0996094 25.2998c6.2002 0 7.7002 0 9.40039 -0.0996094
-c0.0996094 -1.2998 0 0 0 -25.2002c152.8 0 145.899 -1.09961 156.699 4.5v-4.5zM544.9 164.8c-4.60059 0 -9.2002 -0.700195 -9.2002 -6.5c0 -12.2002 28.7998 0.299805 39.2998 -13.5v-25.7998c-4.90039 -7.09961 -14.0996 -8.90039 -22.5 -8.90039h-32l0.0996094 14.8008
-h32c4.10059 0 8.40039 1.2998 8.40039 6.39941c0 14.6006 -42.7002 -5.59961 -42.7002 27.4004c0 14.0996 11 20.7002 23.7998 20.7002h32.9004v-14.6006h-30.0996zM487.9 125c4.09961 0 8.69922 1 8.7998 6.40039c0 14.8994 -42.7002 -5.60059 -42.7002 27.3994
-c0 14.1006 10.7002 20.7002 23.5 20.7002h33.2002v-14.5996h-30.4004c-4.2998 0 -9.2002 -0.800781 -9.2002 -6.40039c0 -15.0996 42.9004 6.90039 42.9004 -26.2998c0 -16.4004 -11.4004 -22 -26.2002 -22h-32.2002l0.100586 14.7998h32.2002zM445.7 165.1h-38.5v-12.5
-h37.7998v-14.0996h-37.9004v-13.7998l38.6006 -0.299805l-0.100586 -14.3008h-55.1992l0.0996094 69.3008h55.2002v-14.3008zM389.4 273.2c0.299805 0.299805 1.69922 1 7.2998 1c1 0 2 -0.100586 3.09961 -0.100586l-7.2998 -16.8994
-c-2.2998 0 -3.2002 0.399414 -3.40039 0.5c-0.199219 0.200195 -1.09961 1.89941 -1.09961 7.89941c0 5.40039 1.09961 7.40039 1.40039 7.60059zM409.8 283.7h-0.0996094h0.0996094zM393.6 298.9h16.1006v-15.2002c-17.4004 0.299805 -33.1006 4.09961 -33.1006 -19.7002
-c0 -11.7998 2.80078 -19.9004 16.1006 -19.9004h7.39941l23.5 54.5h24.8008l27.8994 -65.3994v65.3994h25.2998l29.1006 -48.0996v48.0996h16.8994v-69h-23.5996l-31.2002 51.9004v-51.9004h-33.7002l-6.59961 15.3008h-34.2998l-6.40039 -15.3008h-19.2002
-c-22.7998 0 -33 11.8008 -33 34c0 23.3008 10.5 35.3008 34 35.3008zM435.7 286.8l-11.6006 -27.5996h22.8008zM334.6 298.8h16.9004v-69.2998h-16.9004v69.2998z" />
-    <glyph glyph-name="cc-paypal" unicode="&#xf1f4;" horiz-adv-x="576" 
-d="M186.3 189.8c0 -12.2002 -9.7002 -21.5 -22 -21.5c-9.2002 0 -16 5.2002 -16 15c0 12.2002 9.5 22 21.7002 22c9.2998 0 16.2998 -5.7002 16.2998 -15.5zM80.5 238.3c11.2998 0 19.7998 -1.5 17.5 -14.8994c-2 -12.7002 -10.5 -14.2002 -21.5 -14.2002l-8.2002 -0.299805
-l4.2998 26.6992c0.200195 1.7002 1.7002 2.7002 3.2002 2.7002h4.7002zM364.5 238.3c8.5 0 18 -0.5 18.0996 -11.0996c0 -15 -9 -18 -22 -18l-8 -0.299805l4.2002 26.6992c0.200195 1.7002 1.40039 2.7002 3.2002 2.7002h4.5zM576 368v-352c0 -26.5 -21.5 -48 -48 -48h-480
-c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h480c26.5 0 48 -21.5 48 -48zM128.3 232.6c0 21 -16.2002 28 -34.7002 28h-40c-2.5 0 -5 -2 -5.19922 -4.69922l-16.4004 -102.101c-0.299805 -2 1.2002 -4 3.2002 -4h19c2.7002 0 5.2002 2.90039 5.5 5.7002l4.5 26.5996
-c1 7.2002 13.2002 4.7002 18 4.7002c28.5996 0 46.0996 17 46.0996 45.7998zM212.5 223.8h-19c-3.7998 0 -4 -5.5 -4.2002 -8.2002c-5.7998 8.5 -14.2002 10 -23.7002 10c-24.5 0 -43.1992 -21.5 -43.1992 -45.1992c0 -19.5 12.1992 -32.2002 31.6992 -32.2002
-c9 0 20.2002 4.89941 26.5 11.8994c-0.5 -1.5 -1 -4.69922 -1 -6.19922c0 -2.30078 1 -4 3.2002 -4h17.2002c2.7002 0 5 2.89941 5.5 5.69922l10.2002 64.3008c0.299805 1.89941 -1.2002 3.89941 -3.2002 3.89941zM253 125.9l63.7002 92.5996c0.5 0.5 0.5 1 0.5 1.7002
-c0 1.7002 -1.5 3.5 -3.2002 3.5h-19.2002c-1.7002 0 -3.5 -1 -4.5 -2.5l-26.5 -39l-11 37.5c-0.799805 2.2002 -3 4 -5.5 4h-18.7002c-1.69922 0 -3.19922 -1.7998 -3.19922 -3.5c0 -1.2002 19.5 -56.7998 21.1992 -62.1006c-2.69922 -3.7998 -20.5 -28.5996 -20.5 -31.5996
-c0 -1.7998 1.5 -3.2002 3.2002 -3.2002h19.2002c1.7998 0.100586 3.5 1.10059 4.5 2.60059zM412.3 232.6c0 21 -16.2002 28 -34.7002 28h-39.6992c-2.7002 0 -5.2002 -2 -5.5 -4.69922l-16.2002 -102c-0.200195 -2 1.2998 -4 3.2002 -4h20.5c2 0 3.5 1.5 4 3.19922l4.5 29
-c1 7.2002 13.1992 4.7002 18 4.7002c28.3994 0 45.8994 17 45.8994 45.7998zM496.5 223.8h-19c-3.7998 0 -4 -5.5 -4.2998 -8.2002c-5.5 8.5 -14 10 -23.7002 10c-24.5 0 -43.2002 -21.5 -43.2002 -45.1992c0 -19.5 12.2002 -32.2002 31.7002 -32.2002
-c9.2998 0 20.5 4.89941 26.5 11.8994c-0.299805 -1.5 -1 -4.69922 -1 -6.19922c0 -2.30078 1 -4 3.2002 -4h17.2998c2.7002 0 5 2.89941 5.5 5.69922l10.2002 64.3008c0.299805 1.89941 -1.2002 3.89941 -3.2002 3.89941zM544 257.1c0 2 -1.5 3.5 -3.2002 3.5h-18.5
-c-1.5 0 -3 -1.19922 -3.2002 -2.69922l-16.1992 -104l-0.300781 -0.5c0 -1.80078 1.5 -3.5 3.5 -3.5h16.5c2.5 0 5 2.89941 5.2002 5.69922l16.2002 101.2v0.299805zM454 205.3c9.2998 0 16.2998 -5.7002 16.2002 -15.5c0 -12.2998 -9.7002 -21.5 -21.7002 -21.5
-c-9.2002 0 -16.2002 5.2998 -16.2002 15c0 12.2998 9.5 22 21.7002 22z" />
-    <glyph glyph-name="cc-stripe" unicode="&#xf1f5;" horiz-adv-x="576" 
-d="M492.4 227.2c8.69922 0 18 -6.7002 18 -22.7002h-36.7002c0 16 9.7998 22.7002 18.7002 22.7002zM375 224.6c12.9004 0.100586 21.9004 -14.5 21.9004 -33.0996c0 -19.0996 -8.80078 -33.4004 -21.9004 -33.4004c-8.2998 0 -13.2998 3 -16.7998 6.7002l-0.200195 52.7998
-c3.7002 4.10059 8.7998 7 17 7zM528 416c26.5 0 48 -21.5 48 -48v-352c0 -26.5 -21.5 -48 -48 -48h-480c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h480zM122.2 166.9c0 42.2998 -54.2998 34.6992 -54.2998 50.6992c0 5.5 4.59961 7.7002 12.0996 7.7002
-c10.7998 0 24.5 -3.2998 35.2998 -9.09961v33.3994c-11.7998 4.7002 -23.5 6.5 -35.2998 6.5c-28.7998 0 -48 -15 -48 -40.1992c0 -39.3008 54 -32.9004 54 -49.9004c0 -6.59961 -5.7002 -8.7002 -13.5996 -8.7002c-11.8008 0 -26.9004 4.90039 -38.9004 11.2998v-33.8994
-c13.2002 -5.7002 26.5996 -8.10059 38.7998 -8.10059c29.6006 0.200195 49.9004 14.7002 49.9004 40.3008zM191 223.5v30.2998h-26.9004v30.7998l-34.6992 -7.39941l-0.200195 -113.9c0 -21 15.7998 -36.5 36.8994 -36.5c11.6006 0 20.2002 2.10059 24.9004 4.7002v28.9004
-c-4.5 -1.80078 -27 -8.30078 -27 12.5996v50.5h27zM265 221.1v32.7002h-0.0996094c-4.7002 1.7002 -21.3008 4.7998 -29.6006 -10.5l-2.2002 10.5h-30.6992v-124.5h35.5v84.4004c8.39941 11 22.5996 8.89941 27.0996 7.39941zM309.1 129.3v124.5h-35.6992v-124.5h35.6992z
-M309.1 272.2v28.8994l-35.6992 -7.59961v-28.9004zM383.2 126.7c25.3994 0.0996094 48.5996 20.5 48.5996 65.5996c0 41.2998 -23.5 63.7998 -48.3994 63.7998c-13.9004 0 -22.9004 -6.59961 -27.8008 -11.0996l-1.7998 8.7998h-31.2998v-165.8l35.5 7.5l0.0996094 40.2002
-c5.10059 -3.7002 12.7002 -9 25.1006 -9zM543.6 178.2c0.100586 2 0.400391 9.39941 0.400391 12.8994c0 36.4004 -17.5996 65.1006 -51.2998 65.1006c-33.7998 0 -54.2998 -28.7002 -54.2998 -64.9004c0 -42.7998 24.1992 -64.5 58.7998 -64.5
-c17 0 29.7002 3.90039 39.3994 9.2002v28.5996c-9.69922 -4.89941 -20.7998 -7.89941 -34.8994 -7.89941c-13.7998 0 -26 4.89941 -27.6006 21.5h69.5z" />
-    <glyph glyph-name="lastfm" unicode="&#xf202;" horiz-adv-x="512" 
-d="M225.8 80.9004c0 0 -31.7002 -31.1006 -97.8994 -31.1006c-82.2002 0 -127.9 48.1006 -127.9 137.2c0 92.7002 45.7002 147.2 131.8 147.2c117.7 0 129.3 -66.2002 161.3 -163c14 -42.7998 38.7002 -73.9004 97.9004 -73.9004c39.9004 0 61 8.7998 61 30.5
-c0 31.9004 -34.9004 35.1006 -79.7998 45.7002c-48.6006 11.7002 -68 36.9004 -68 76.7998c0 64 51.5996 83.9004 104.399 83.9004c59.8008 0 96.2002 -21.7002 100.9 -74.5l-58.5996 -7c-2.30078 25.2002 -17.5 35.7998 -45.7002 35.7998
-c-25.7998 0 -41.6006 -11.7998 -41.6006 -31.7002c0 -17.5996 7.60059 -28.0996 33.4004 -34c52.2998 -11.5 115 -19.2002 115 -92.0996c0 -58.6006 -49.2998 -80.9004 -122 -80.9004c-101.4 0 -136.6 45.7002 -155.4 102.601
-c-26.0996 81.5996 -34.3994 134.899 -100.899 134.899c-35.7002 0 -72.1006 -25.7998 -72.1006 -97.8994c0 -56.3008 28.7002 -91.5 69.2002 -91.5c45.7002 0 76.2002 34 76.2002 34z" />
-    <glyph glyph-name="lastfm-square" unicode="&#xf203;" 
-d="M400 416c26.5 0 48 -21.5 48 -48v-352c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h352zM307.8 103.1c45.4004 0 76.2002 13.9004 76.1006 50.6006c0 45.5 -39.1006 50.3994 -71.8008 57.5
-c-16.0996 3.7002 -20.8994 10.2998 -20.8994 21.2998c0 12.5 9.89941 19.7998 26 19.7998c17.5996 0 27.0996 -6.59961 28.5996 -22.3994l36.7002 4.39941c-2.90039 33 -25.5996 46.6006 -63 46.6006c-32.9004 0 -65.2002 -12.4004 -65.2002 -52.4004
-c0 -24.9004 12.1006 -40.7002 42.5 -48c28.1006 -6.59961 49.9004 -8.7002 49.9004 -28.5996c0 -13.6006 -13.2002 -19.1006 -38.1006 -19.1006c-37 0 -52.3994 19.4004 -61.1992 46.2002c-20 60.5 -27.3008 101.9 -100.801 101.9c-53.8994 0 -82.5 -34.1006 -82.5 -92
-c0 -55.7002 28.6006 -85.8008 79.9004 -85.8008c41.4004 0 61.2002 19.4004 61.2002 19.4004l-11.7002 31.9004s-19 -21.3008 -47.5996 -21.3008c-25.3008 0 -43.3008 22 -43.3008 57.2002c0 45.1006 22.7002 61.2002 45.1006 61.2002c41.5 0 46.7002 -33.2998 63 -84.2998
-c11.7002 -35.5 33.7002 -64.1006 97.0996 -64.1006z" />
-    <glyph glyph-name="ioxhost" unicode="&#xf208;" horiz-adv-x="640" 
-d="M616 288c13.2998 0 24 -10.7002 24 -24c0 -13.2002 -10.7002 -24 -24 -24h-52.7002c3.10059 -15.5 4.7002 -31.5996 4.7002 -48c0 -137 -111 -248 -248 -248c-102.9 0 -191.2 62.7002 -228.7 152h-67.2998c-13.2998 0 -24 10.7002 -24 24c0 13.2002 10.7002 24 24 24
-h52.7002c-3.10059 15.5 -4.7002 31.5996 -4.7002 48c0 137 111 248 248 248c102.9 0 191.2 -62.7002 228.7 -152h67.2998zM520 192c0 16.5996 -2 32.5996 -5.7998 48h-298.2c-13.2998 0 -24 10.7002 -24 24c0 13.2002 10.7002 24 24 24h279.5
-c-33.9004 62 -99.7998 104 -175.5 104c-110.5 0 -200 -89.5 -200 -200c0 -16.5996 2 -32.5996 5.7998 -48h298.2c13.2998 0 24 -10.7002 24 -24c0 -13.2002 -10.7002 -24 -24 -24h-279.5c33.9004 -62 99.7998 -104 175.5 -104c110.5 0 200 89.5 200 200zM216 216h208
-c13.2998 0 24 -10.7002 24 -24c0 -13.2002 -10.7002 -24 -24 -24h-208c-13.2998 0 -24 10.7002 -24 24c0 13.2002 10.7002 24 24 24z" />
-    <glyph glyph-name="angellist" unicode="&#xf209;" 
-d="M347.1 232.6c48 -11.6992 54.9004 -50.5996 54.9004 -93.6992c0 -114.301 -73.4004 -202.9 -191.4 -202.9c-96.1992 0 -164.6 76.4004 -164.5 148.6c0 37.1006 14.2002 61.7002 51.1006 71.7002c-3.10059 8.2998 -8 20.7998 -8 29.7002
-c0 23.5 24.8994 52.5996 48.2998 52.5996c6.90039 0 13.7002 -2 20 -4.2998c-12.4004 35.2002 -46.5996 126.7 -46.5996 162c0 28.7998 14.5996 51.7002 45.6992 51.7002c40 0 85.4004 -144 95.1006 -172.5c12.5 31.4004 52.5 163.1 97.0996 163.1
-c28 0 43.7002 -22.2998 43.7002 -48.8994c0 -30.2002 -33.7002 -124.5 -45.4004 -157.101zM311.7 340l-33.1006 -93.7002l34 -6c8.5 23.4004 47.1006 128.9 47.1006 148c0 7.10059 -2.2998 16 -10.9004 16c-16 0 -33.0996 -52 -37.0996 -64.2998zM142.3 399.7
-c0 -29.1006 34.6006 -120 45.5 -148.8c7.7002 4.39941 19.7998 2.69922 35.4004 1.39941l-34.6006 100.3c-31.7998 92.8008 -46.2998 59 -46.2998 47.1006zM140 204c-7.7002 0 -20.2998 -13.4004 -20.4004 -21.0996c0 -20.8008 56 -97.7002 76.9004 -97.7002
-c5.7002 0 10.5996 6.2998 10.5996 11.3994c0 12.8008 -37.7998 107.4 -67.0996 107.4zM324.3 17.7002c55.2998 61.5 49.1006 158.6 31 174.7c-24 21.0996 -106 29.0996 -138.3 29.0996c-17.2998 0 -17.4004 -6.40039 -17.4004 -13.0996
-c0 -43.7002 92.9004 -39.7002 120.601 -39.7002c11.2002 0 15.7998 -9.90039 16.8994 -21.1006c-7.39941 -7.39941 -17.6992 -11.6992 -27.3994 -15.3994c-9.40039 -3.40039 -19.1006 -7.10059 -27.1006 -13.1006c-22 -16 -43.6992 -43.3994 -43.6992 -71.6992
-c0 -17.7002 10.5996 -32.9004 10.5996 -50.3008c0 -0.299805 -2 -6.5 -2 -7.39941c-32.5996 2.2998 -40.5996 34.5996 -41.7002 61.7002c-3.39941 -0.900391 -8 -0.600586 -11.7002 -0.600586c5.10059 -17.7998 -11.8994 -42 -38 -42
-c-37.7998 0 -88 57.2002 -58.2998 86.9004c28.7002 -35.9004 35 -51.4004 51.1006 -51.4004c4 0 11.6992 3.40039 11.6992 8.2998c0 12.8008 -42.8994 73.1006 -54.2998 73.1006c-16.7998 0 -37.7002 -24.9004 -20.5996 -68.2998
-c22.5996 -55.7002 69.5 -88.3008 128.899 -88.3008c43.4004 0 80.6006 16.6006 109.7 48.6006zM225.7 143.7c3.2002 -8.2998 6.59961 -16.6006 9.39941 -25.1006c6.30078 7.10059 12.9004 13.7002 20.3008 19.1006c-10 2 -20 2.89941 -29.7002 6z" />
-    <glyph glyph-name="buysellads" unicode="&#xf20d;" 
-d="M224 297.3l42.9004 -160.7h-85.8008zM448 368v-352c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h352c26.5 0 48 -21.5 48 -48zM382.7 42.7002l-94.5 298.7h-128.4l-94.5 -298.7h90.7002l111.7 91.5996l24.2002 -91.5996h90.7998z
-" />
-    <glyph glyph-name="connectdevelop" unicode="&#xf20e;" horiz-adv-x="576" 
-d="M550.5 207c6.69629 -1.33887 11.7861 -7.5 11.7881 -14.7324c0 -7.5 -5.3584 -13.6602 -12.3223 -15l-54.9111 -95.3574c0.536133 -1.60742 0.804688 -3.21387 0.804688 -4.82129c0 -7.23145 -5.09082 -13.3926 -12.0547 -14.7314l-51.6963 -90.2686
-c0.535156 -1.33887 0.802734 -2.67773 0.802734 -4.28516c0 -8.30371 -6.69727 -15.2676 -15.2686 -15.2676c-4.28516 0 -8.30371 1.875 -10.9814 4.82129h-107.144c-2.67871 -3.21484 -6.96484 -5.35742 -11.5176 -5.35742s-8.83887 2.14258 -11.5166 5.35645h-106.875
-c-2.67969 -3.21484 -6.69727 -5.35742 -11.5186 -5.35742c-8.30371 0 -15.2676 6.69727 -15.2676 15.2676c0 1.875 0.535156 3.75 1.07031 5.35742l-51.6963 89.7324c-6.96484 1.33887 -12.0547 7.5 -12.0547 14.7314c0 1.875 0.268555 3.21387 0.804688 4.82129
-l-55.1797 95.3574c-6.96484 1.60742 -12.0537 7.76855 -12.0537 15c0 7.5 5.3584 13.6611 12.5898 15l53.3047 92.1436c0 0.536133 -0.268555 1.07227 -0.268555 1.60645c0 6.16113 3.75098 11.251 9.10742 13.6611l55.9824 97.2334
-c-0.536133 1.33887 -1.07129 3.21387 -1.07129 4.82129c0 8.57129 6.96484 15.2676 15.2676 15.2676c4.82227 0 8.83887 -2.14258 11.7861 -5.625h106.071c2.67871 3.48242 6.69629 5.625 11.5176 5.625s8.83887 -2.14258 11.5176 -5.62402h106.606
-c2.94727 3.48242 6.96484 5.625 11.7861 5.625c8.30371 0 15.2676 -6.69727 15.2676 -15.2676c0 -1.60742 -0.535156 -3.21484 -1.07031 -4.82129l55.4463 -95.8936c8.03613 -0.267578 14.7324 -6.96484 14.7324 -15.001c0 -2.67871 -0.803711 -5.08984 -1.875 -7.23145z
-M153.535 -2.73242v75.8037h-43.6602zM153.535 81.1074v50.624l-44.999 -47.4102c0.535156 -1.07227 1.07129 -2.14355 1.33887 -3.21387h43.6602zM153.535 143.518l0.000976562 92.9463l-50.0889 51.9648c-2.41113 -1.60645 -5.08887 -2.41113 -7.76855 -2.67871
-l-51.9648 -90c0.268555 -1.07227 0.268555 -2.14258 0.268555 -3.48242c0 -1.33887 0 -2.67871 -0.535156 -4.01758l55.7129 -96.4287c1.33887 -0.267578 2.67871 -1.07129 4.01758 -1.60742zM153.535 245.84v72.0527l-43.9277 -15.8037
-c0 -0.267578 0.267578 -0.803711 0.267578 -1.07227c0 -2.94531 -0.803711 -5.62402 -2.14258 -7.7666zM153.535 326.465v59.7324l-43.6602 -75.5361zM480.054 287.357l-0.267578 0.267578l-98.0361 -101.518l63.75 -67.2324l35.3584 167.143zM291.75 92.8926
-l-11.25 -11.7852h22.7676zM291.482 104.143l79.2852 82.2324l-83.0352 87.5889l-79.5537 -84.375zM296.839 98.25l16.875 -17.1426h124.02l5.8916 28.125l-67.5 71.25zM410.411 403.607l-117.053 -124.019l83.0342 -87.5889l97.5 101.25
-c-1.33984 2.14258 -2.14258 4.82129 -2.14258 7.7666v0.536133l-57.8574 100.714c-1.33984 0.268555 -2.41016 0.804688 -3.48145 1.34082zM401.304 405.75h-4.28711l-166.339 -60l57.0547 -60.2676zM277.821 405.75h-103.929l50.8936 -53.5713l148.393 53.5713h-75
-c-2.67871 -2.67773 -6.16016 -4.28516 -10.1787 -4.28516s-7.50098 1.60742 -10.1787 4.28516zM161.572 400.125v-70.7148l54.9111 19.8213l-51.1611 53.8398c-0.870117 -0.300781 -1.77832 -0.574219 -2.67969 -0.804688zM161.572 320.839v-83.3037l40.9814 -42.0527
-l79.5537 84.1064l-59.7324 63.2139zM161.572 228.161v-76.0723l36.4277 38.3037zM161.572 140.303v-59.1953h107.678l17.1426 17.6777l-82.7676 85.9814zM168.536 -21.75h1.33887l91.6074 94.8213h-99.9102v-89.7324l1.07031 -1.60645
-c2.41113 -0.804688 4.28613 -1.875 5.89355 -3.48242zM298.447 -21.75h104.194l-91.6064 94.8213h-38.3037l-91.6074 -94.8213h96.4287c2.68066 2.41016 6.42871 4.28516 10.4473 4.28516s7.76758 -1.875 10.4473 -4.28516zM418.447 -9.96387l17.4121 83.0361h-114.376
-l89.1953 -91.875c1.07227 0.536133 2.14355 1.07031 3.48242 1.33887zM431.303 12.2676l34.8223 60.8037h-21.9639zM466.125 81.1074c0.267578 1.07129 0.803711 2.14258 1.33887 2.94531l-17.1426 18.2139l-4.55371 -21.1592h20.3574zM532.286 188.518
-c-0.268555 1.33984 -0.536133 2.41113 -0.536133 3.75c0 1.60742 0.536133 2.94629 0.802734 4.28516l-45.8027 79.2861l-34.5537 -163.928l20.625 -21.9639c1.33887 0.802734 2.67871 1.33887 4.01758 1.87402z" />
-    <glyph glyph-name="dashcube" unicode="&#xf210;" 
-d="M326.6 344l102.2 104v-427c0 -50.5 -40.0996 -85 -91.2002 -85h-227.199c-51.1006 0 -91.2002 34.5 -91.2002 85v229.5c0 50.2002 40.0996 93.5 91.2002 93.5h216.199zM153.9 31.5v-0.0996094h223.8l-51.1006 52.2998v123.5c0 17.7002 -14.2998 32.5 -32 32.5h-140.699
-c-17.7002 0 -32.4004 -14.7998 -32.4004 -32.5v-142.9c0 -17.7002 14.7002 -32.7998 32.4004 -32.7998z" />
-    <glyph glyph-name="forumbee" unicode="&#xf211;" 
-d="M5.7998 138.3c-3.7998 17 -5.7998 34.2002 -5.7998 51.4004c0 123.3 99.7998 223.3 223.1 223.3c16.6006 0 33.3008 -2 49.3008 -5.5c-123.4 -47 -220.5 -145.5 -266.601 -269.2zM398.7 327.5c-151.101 -44 -269.2 -164.4 -312.3 -315.7
-c-17.2002 13.4004 -32.7002 30.9004 -45.2002 49c43.3994 149.9 160.1 267.7 309.7 312c18.0996 -12.5996 34.0996 -27.7998 47.7998 -45.2998zM414.5 74.7998c13.0996 -35.2998 24.2002 -73.2998 33.5 -109.8c-36.0996 9.2998 -72 20.5 -107 33.5996
-c-25.7002 -16 -54.5996 -26.8994 -84.5996 -31.2998c42.5996 79.7002 108.199 147.4 187.6 190.3c-4.09961 -29.0996 -14.2998 -57.6992 -29.5 -82.7998zM444.2 220.3c-113.7 -46.7002 -204.2 -139.399 -250.5 -253.5c-19.6006 2.7002 -38.5 7.60059 -56.6006 15.2002
-c44.9004 138.5 153.4 249.3 291.301 295.1c7.89941 -18.0996 13.1992 -37.2998 15.7998 -56.7998z" />
-    <glyph glyph-name="leanpub" unicode="&#xf212;" horiz-adv-x="576" 
-d="M386.539 336.515l15.0957 -248.955l-10.9785 0.275391c-36.2324 0.824219 -71.6406 -8.7832 -102.657 -27.9971c-31.0156 19.2139 -66.4238 27.9971 -102.657 27.9971c-45.5635 0 -82.0693 -10.7051 -123.516 -27.7227l31.291 258.288
-c28.5459 11.8027 61.4834 18.1143 92.2256 18.1143c41.1729 0 73.8359 -13.1748 102.657 -42.5439c27.7227 28.2715 59.0127 41.7217 98.5391 42.5439zM569.07 0c-25.5264 0 -47.4854 5.21484 -70.542 15.6445c-34.3105 15.6455 -69.9932 24.9785 -107.871 24.9785
-c-38.9775 0 -74.9346 -12.9014 -102.657 -40.623c-27.7227 27.7227 -63.6797 40.623 -102.657 40.623c-37.8779 0 -73.5605 -9.33301 -107.871 -24.9785c-22.2324 -9.88086 -44.7402 -15.6445 -69.1689 -15.6445h-1.37305l42.5449 349.141
-c39.251 22.2334 87.0117 34.8594 132.301 34.8594c37.0547 0 75.209 -7.68457 106.225 -29.0947c31.0156 21.4102 69.1699 29.0947 106.225 29.0947c45.2891 0 93.0498 -12.626 132.301 -34.8594zM525.702 44.7412l-34.0361 280.246
-c-30.7422 13.999 -67.248 21.4102 -101.009 21.4102c-38.4287 0 -74.3848 -12.0771 -102.657 -38.7021c-28.2725 26.625 -64.2275 38.7021 -102.657 38.7021c-33.7607 0 -70.2666 -7.41113 -101.009 -21.4102l-34.0361 -280.246
-c47.2109 19.4863 82.8945 33.4854 135.045 33.4854c37.6045 0 70.8174 -9.60547 102.657 -29.6436c31.8398 20.0381 65.0518 29.6436 102.657 29.6436c52.1504 0 87.834 -13.999 135.045 -33.4854z" />
-    <glyph glyph-name="sellsy" unicode="&#xf213;" horiz-adv-x="640" 
-d="M539.71 210.692c55.1572 -13.4834 94.0742 -63.124 94.0732 -119.509c0 -68.0264 -55.4639 -123.184 -123.185 -123.184h-381.197c-67.7217 0 -123.186 55.1572 -123.185 123.185c0 47.4961 27.8848 91.0098 70.7852 111.234
-c-2.14453 7.35449 -3.06543 15.0146 -3.06543 22.3691c0 46.2705 37.6914 83.9609 83.9629 83.9609c20.2227 0 39.835 -7.35449 55.1562 -20.5303c18.3867 74.7695 85.8008 127.781 163.021 127.781c92.542 0 167.924 -75.3818 167.924 -167.924
-c0 -12.5635 -1.22559 -25.127 -4.29004 -37.3838zM199.88 46.4463v110.928c0 8.27344 -7.04688 15.3213 -15.3213 15.3213h-30.9482c-8.27344 0 -15.3213 -7.04785 -15.3213 -15.3213v-110.928c0 -8.27344 7.04688 -15.3213 15.3213 -15.3213h30.9482
-c8.27344 0 15.3213 7.04688 15.3213 15.3213zM289.357 46.4463v131.458c0 8.27246 -7.04883 15.3203 -15.3223 15.3203h-30.9492c-8.27246 0 -15.3213 -7.04688 -15.3213 -15.3203v-131.458c0 -8.27344 7.04688 -15.3213 15.3213 -15.3213h30.9492
-c8.27344 0 15.3223 7.04688 15.3223 15.3213zM378.834 46.4463v162.714c0 8.27246 -7.04688 15.3213 -15.3213 15.3213h-30.9482c-8.27441 0 -15.3223 -7.04785 -15.3223 -15.3213v-162.714c0 -8.27344 7.04785 -15.3213 15.3223 -15.3213h30.9482
-c8.27441 0 15.3213 7.04688 15.3213 15.3213zM465.861 46.4463v224.612c0 8.58008 -7.04785 15.6279 -15.3223 15.6279h-28.4971c-8.27441 0 -15.3213 -7.04883 -15.3213 -15.6279v-224.612c0 -8.27344 7.04688 -15.3213 15.3213 -15.3213h28.4971
-c8.27441 0 15.3223 7.04688 15.3223 15.3213z" />
-    <glyph glyph-name="shirtsinbulk" unicode="&#xf214;" 
-d="M100 37.7002l4.40039 9.89941l30.5996 -13.3994l-4.40039 -9.90039zM139.4 20.2002l4.39941 9.89941l30.6006 -13.3994l-4.40039 -9.90039zM311.5 34.2002l30.5996 13.3994l4.40039 -9.89941l-30.5996 -13.4004zM179.1 3l4.40039 9.59961l30.2998 -13.3994
-l-4.39941 -9.90039zM60.4004 55.2002l4.39941 9.89941l30.6006 -13.6992l-4.40039 -9.60059zM271.8 16.7002l30.6006 13.3994l4.39941 -9.89941l-30.5996 -13.4004zM232.5 -0.799805l30.5996 13.3994l4.40039 -9.59961l-30.5996 -13.7002zM350.9 51.4004l30.5996 13.6992
-l4.40039 -9.89941l-30.6006 -13.4004zM170 401.4v-10.5h-33.5v10.5h33.5zM122.8 401.4l-0.0996094 -10.5h-33.5v10.5h33.5996zM75.5 401.4l0.0996094 -10.5h-33.2998v10.5h33.2002zM217 401.4v-10.5h-33.2002v10.5h33.2002zM311.5 401.4v-10.5h-33.5v10.5h33.5zM358.8 401.4
-v-10.5h-33.5v10.5h33.5zM264.2 401.4v-10.5h-33.2002v10.5h33.2002zM405.7 401.4v-10.5h-33.2998v10.5h33.2998zM52.7998 96.9004v-33.5h-10.7998v33.5h10.7998zM122.8 312.8l-0.0996094 -10.5h-33.5v10.5h33.5996zM52.7998 302.2v-23h-10.7998v33.5h33.5996v-10.5h-22.7998
-zM221.7 73.5996c-50.2002 0 -91.2998 40.8008 -91.2998 91.3008c0 50.1992 41.0996 91.2998 91.2998 91.2998c50.5 0 91.2998 -41.1006 91.2998 -91.2998c0 -50.5 -40.7998 -91.3008 -91.2998 -91.3008zM173.5 184.7c0 -44.2998 77.5996 -11.9004 77.5996 -38
-c0 -13.1006 -24 -14.2998 -32.6992 -14.2998c-12.3008 0 -29.8008 2.69922 -35.9004 14.8994h-0.900391l-9 -18.3994c14.8008 -9.30078 29.1006 -12.2002 47.2002 -12.2002c19.5 0 51 5.7998 51 31.2002c0 48.0996 -78.5 16.2998 -78.5 37.8994
-c0 13.1006 20.7998 14.9004 29.7998 14.9004c10.8008 0 29.2002 -3.2002 35.6006 -13.1006h0.899414l8.80078 16.9004c-15.1006 6.2002 -27.4004 12 -44.3008 12c-20.0996 0 -49.5996 -6.40039 -49.5996 -31.7998zM52.7998 269.6v-33.5996h-10.7998v33.5996h10.7998z
-M395.2 63.4004v33.5h10.7998v-33.5h-10.7998zM52.7998 140.1v-33.5h-10.7998v33.5h10.7998zM0 444.3h448v-406l-226.3 -98.5996l-221.7 98.5996v406zM418.8 57.2002h0.100586v270.1h-389.7v-270.1l192.8 -85.7002zM418.8 356.5h0.100586v58.5996h-389.7v-58.5996h389.6z
-M52.7998 226.4v-33.5h-10.7998v33.5h10.7998zM52.7998 183.2v-33.5h-10.7998v33.5h10.7998zM170 312.8v-10.5h-33.5v10.5h33.5zM395.2 149.7v33.5h10.7998v-33.5h-10.7998zM395.2 192.9v33.5h10.7998v-33.5h-10.7998zM217 312.8v-10.5h-33.2002v10.5h33.2002zM395.2 236
-v33.5h10.7998v-33.5h-10.7998zM395.2 106.5v33.5h10.7998v-33.5h-10.7998zM264.2 312.8v-10.5h-33.2002v10.5h33.2002zM311.5 312.8v-10.5h-33.5v10.5h33.5zM395.2 279.2l0.0996094 23h-22.7998v10.5h33.5v-33.5h-10.7998zM358.8 312.8v-10.5h-33.5v10.5h33.5z" />
-    <glyph glyph-name="simplybuilt" unicode="&#xf215;" horiz-adv-x="512" 
-d="M481.2 384c14.7002 0 26.5 -11.7998 26.7002 -26.2998v-331.4c0 -14.5 -11.8008 -26.2998 -26.6006 -26.2998h-450.399c-14.8008 0 -26.6006 11.7998 -26.6006 26.2998v331.4c0 14.5 11.7998 26.2998 26.4004 26.2998h106c14.5996 0 26.5996 -11.7998 26.5996 -26.2998
-v-39.6006h185.3v39.6006c0 14.5 12.1006 26.2998 26.6006 26.2998h106zM149.8 92.2002c36.9004 0 66.6006 29.7002 66.6006 66.3994c0 36.9004 -29.7002 66.6006 -66.6006 66.6006c-36.7002 0 -66.3994 -29.7002 -66.3994 -66.6006
-c0 -36.6992 29.7998 -66.3994 66.3994 -66.3994zM362.2 92.2002c36.5996 0 66.3994 29.7002 66.3994 66.5996c0 36.7002 -29.7998 66.4004 -66.3994 66.4004c-36.9004 0 -66.6006 -29.7998 -66.6006 -66.4004c0 -36.8994 29.7002 -66.5996 66.6006 -66.5996z" />
-    <glyph glyph-name="skyatlas" unicode="&#xf216;" horiz-adv-x="640" 
-d="M640 118.7c0 -65.9004 -52.5 -114.4 -117.5 -114.4c-165.9 0 -196.6 249.7 -359.7 249.7c-146.899 0 -147.1 -212.2 5.60059 -212.2c42.5 0 90.8994 17.7998 125.3 42.5c5.59961 4.10059 16.8994 16.2998 22.7998 16.2998s10.9004 -5 10.9004 -10.8994
-c0 -7.7998 -13.1006 -19.1006 -18.7002 -24.1006c-40.9004 -35.5996 -100.3 -61.1992 -154.7 -61.1992c-83.4004 -0.100586 -154 59 -154 144.899c0 85.9004 67.5 149.101 152.8 149.101c185.3 0 222.5 -245.9 361.9 -245.9c99.8994 0 94.7998 139.7 3.39941 139.7
-c-17.5 0 -35 -11.6006 -46.8994 -11.6006c-8.40039 0 -15.9004 7.2002 -15.9004 15.6006c0 11.5996 5.2998 23.7002 5.2998 36.2998c0 66.5996 -50.8994 114.7 -116.899 114.7c-53.1006 0 -80 -36.9004 -88.7998 -36.9004c-6.2002 0 -11.2002 5 -11.2002 11.2002
-c0 5.59961 4.09961 10.2998 7.7998 14.4004c25.2998 28.7998 64.7002 43.6992 102.8 43.6992c79.4004 0 139.101 -58.3994 139.101 -137.8c0 -6.89941 -0.300781 -13.7002 -1.2002 -20.5996c11.8994 3.09961 24.0996 4.7002 35.8994 4.7002
-c60.7002 0 111.9 -45.3008 111.9 -107.2z" />
-    <glyph glyph-name="pinterest-p" unicode="&#xf231;" horiz-adv-x="384" 
-d="M204 441.5c94.2002 0 180 -64.7998 180 -164.1c0 -93.3008 -47.7002 -196.801 -153.9 -196.801c-25.1992 0 -57 12.6006 -69.2998 36c-22.7998 -90.2998 -21 -103.8 -71.3994 -172.8c-5.2002 -1.89941 -3.5 -2.2998 -6.90039 1.5c-1.7998 18.9004 -4.5 37.5 -4.5 56.4004
-c0 61.2002 28.2002 149.7 42 209.1c-7.5 15.2998 -9.59961 33.9004 -9.59961 50.7002c0 80 93.8994 92 93.8994 25.7998c0 -39 -26.3994 -75.5996 -26.3994 -113.399c0 -25.8008 21.2998 -43.8008 46.1992 -43.8008c69 0 90.3008 99.6006 90.3008 152.7
-c0 71.1006 -50.4004 109.8 -118.5 109.8c-79.2002 0 -140.4 -57 -140.4 -137.399c0 -38.7002 23.7002 -58.5 23.7002 -67.7998c0 -7.80078 -5.7002 -35.4004 -15.6006 -35.4004c-24 0 -63.5996 40 -63.5996 110.4c0 110.699 101.4 179.1 204 179.1z" />
-    <glyph glyph-name="whatsapp" unicode="&#xf232;" 
-d="M380.9 350.9c41.8994 -42 67.0996 -97.7002 67.0996 -157c0 -122.4 -101.8 -222 -224.1 -222h-0.100586c-37.2002 0 -73.7002 9.2998 -106.1 27l-117.7 -30.9004l31.5 115c-19.4004 33.7002 -29.5996 71.9004 -29.5996 111c0 122.4 99.5996 222 222 222
-c59.2998 0 115.1 -23.0996 157 -65.0996zM223.9 9.2998c101.699 0 186.6 82.7998 186.6 184.601c0.0996094 49.2998 -21.2998 95.5996 -56.0996 130.5c-34.8008 34.8994 -81.1006 54.0996 -130.4 54.0996c-101.8 0 -184.6 -82.7998 -184.6 -184.5
-c0 -34.9004 9.69922 -68.7998 28.1992 -98.2002l4.40039 -7l-18.5996 -68.0996l69.7998 18.2998l6.7002 -4c28.2998 -16.7998 60.7998 -25.7002 94 -25.7002zM325.1 147.5c5.5 -2.7002 9.2002 -4.09961 10.5 -6.59961c1.40039 -2.30078 1.40039 -13.4004 -3.19922 -26.4004
-c-4.60059 -13 -26.7002 -24.7998 -37.4004 -26.4004c-17.5996 -2.59961 -31.4004 -1.2998 -66.5996 13.9004c-55.7002 24.0996 -92 80.0996 -94.8008 83.7998c-2.69922 3.7002 -22.5996 30.1006 -22.5996 57.4004s14.2998 40.7002 19.4004 46.2998
-c5.09961 5.5 11.0996 6.90039 14.7998 6.90039s7.39941 0 10.5996 -0.200195c3.40039 -0.200195 8 1.2998 12.5 -9.5c4.60059 -11.1006 15.7002 -38.4004 17.1006 -41.2002c1.39941 -2.7998 2.2998 -6 0.5 -9.7002c-10.6006 -21.2002 -22 -20.5 -16.3008 -30.2998
-c21.5 -36.9004 42.9004 -49.7002 75.5 -66c5.5 -2.7998 8.80078 -2.2998 12 1.40039c3.30078 3.7998 13.9004 16.1992 17.6006 21.7998c3.7002 5.59961 7.39941 4.7002 12.5 2.7998c5.09961 -1.7998 32.3994 -15.2002 37.8994 -18z" />
-    <glyph glyph-name="viacoin" unicode="&#xf237;" horiz-adv-x="384" 
-d="M384 416l-48 -112h48v-48h-68.5l-13.7998 -32h82.2998v-48h-102.8l-89.2002 -208l-89.2002 208h-102.8v48h82.2998l-13.7998 32h-68.5v48h48l-48 112h64l80.7998 -192h94.5l80.7002 192h64zM192 112l27 64h-54z" />
-    <glyph glyph-name="medium" unicode="&#xf23a;" 
-d="M0 416h448v-448h-448v448zM372.2 309.9v5h-83.2002l-59.2998 -147.9l-67.4004 148h-87.2998v-5.09961l28.0996 -33.9004c2.80078 -2.5 4.2002 -6.09961 3.80078 -9.7998v-133c0.799805 -4.7998 -0.700195 -9.7002 -4.10059 -13.2002l-31.5996 -38.2998v-5.10059h89.7998
-v5.10059l-31.5996 38.2998c-3.40039 3.5 -5.10059 8.40039 -4.40039 13.2002v115l78.7002 -171.601h9.09961l67.6006 171.601v-136.9c0 -3.59961 0 -4.2998 -2.40039 -6.7002l-24.2998 -23.5996v-4.90039h118v5.10059l-23.5 23
-c-2.10059 1.5 -3.10059 4.09961 -2.7002 6.7002v169.3c-0.400391 2.5 0.599609 5.09961 2.7002 6.7002z" />
-    <glyph glyph-name="y-combinator" unicode="&#xf23b;" 
-d="M448 416v-448h-448v448h448zM236 160.5l77.5 145.5h-32.7002l-45.7998 -91c-4.7002 -9.2998 -9 -18.2998 -12.7998 -26.7998l-12.2002 26.7998l-45.2002 91h-35l76.7002 -143.8v-94.5h29.5v92.7998z" />
-    <glyph glyph-name="optin-monster" unicode="&#xf23c;" horiz-adv-x="576" 
-d="M572.6 26.5996c1 -3.5 1.90039 -7 1.7002 -10.6992c0.799805 -31.6006 -44.2998 -64 -73.5 -65.1006c-17.2998 -0.799805 -34.5996 8.40039 -42.7002 23.5c-113.5 -4.09961 -227 -4.89941 -340.199 0c-8.40039 -15.0996 -25.7002 -24 -43 -23.5
-c-28.9004 1.10059 -74 33.5 -73.5 65.1006c0.299805 3.7998 0.799805 7.2998 1.89941 10.7998c-5.59961 9.39941 -4.7998 15.2998 5.40039 11.5996c3.2998 5.2002 7 9.5 11.0996 13.7998c-2.5 10.9004 1.2998 14.1006 11.1006 9.2002c4.5 3.2998 10 6.5 15.8994 9.2002
-c0 15.7998 11.7998 11.2002 17.2998 5.7002c12.5 1.7998 20.2002 -0.700195 26.8008 -5.7002v19.7002c-12.9004 0 -40.6006 11.3994 -45.9004 36.2002c-5 20.7998 2.59961 38.0996 25.0996 47.5996c0.800781 5.90039 8.10059 14 14.9004 15.9004
-c7.59961 1.89941 12.5 -4.60059 14.0996 -10.3008c7.40039 0 17.8008 -1.5 21.1006 -8.09961c5.39941 0.5 11.0996 1.40039 16.5 1.90039c-2.40039 1.89941 -5.10059 3.5 -8.10059 4.59961c-5.09961 8.90039 -13.7998 11.0996 -24.5996 11.5996
-c0 0.800781 0 1.60059 0.299805 2.7002c-19.7998 0.5 -44.0996 5.60059 -54.8994 17.7998c-21.3008 23.6006 -15.9004 83.6006 12.1992 103.5c8.40039 5.7002 21.6006 0.800781 22.7002 -9.69922c2.40039 -20.6006 0.400391 -26.8008 26.2002 -25.9004
-c8.09961 7.7998 16.7998 14.5996 26.5 20c-14.9004 1.2998 -28.9004 -1.59961 -43.7998 -3.7998c12.7002 12.5 23.8994 25.3994 56.7002 42.3994c23.5 11.9004 50 20.8008 76.1992 23.2002c-18.5996 7.90039 -40 11.9004 -59.6992 16.5
-c76.5 16.2002 174.6 22.1006 244.199 -37.5996c18.1006 -15.4004 32.4004 -36.2002 42.7002 -60c39.7998 -4.90039 36.4004 5.5 38.6006 25.0996c1.09961 10.2998 14.2998 15.4004 22.6992 9.5c14.9004 -10.5 22.2002 -30.7998 24.6006 -48.0996
-c2.2002 -17.7998 0.299805 -41.2998 -12.4004 -55.1006c-10.7998 -12.1992 -34.2998 -17.5996 -53.7998 -18.0996v-2.7998c-11.0996 -0.200195 -20.2998 -2.40039 -25.7002 -11.6006c-3 -1.09961 -5.7002 -2.69922 -8.39941 -4.59961
-c5.69922 -0.5 11.3994 -1.40039 16.7998 -1.90039c1.89941 5.60059 12.5996 8.40039 21.0996 8.40039c1.7002 5.40039 6.7998 11.9004 14.1006 10.2998c7.2998 -1.59961 14.0996 -10 14.8994 -15.8994c10.7998 -4.40039 22.1006 -12.2002 25.1006 -25.7002
-c1.89941 -8.10059 1.69922 -15.1006 0.299805 -21.9004c-5.7002 -25.2002 -33.2998 -36.2002 -45.9004 -36.2002c0 -6.69922 0 -13.1992 -0.299805 -19.6992c8.09961 6 16.4004 7.19922 26.7998 5.69922c6 5.90039 17.6006 9.40039 17.6006 -5.69922
-c5.59961 -2.7002 11.2998 -6 15.8994 -9.2002c10.1006 5 13.7002 0.5 10.7998 -9.2002c4.10059 -4.2998 8.10059 -8.90039 11.1006 -13.7998c10.0996 3.59961 11 -2.10059 5.39941 -11.6006zM498.8 280.6c17.2998 -6.69922 26.2002 -22.0996 30.2998 -35.6992
-c1.10059 10.5996 -2.69922 39.5 -13.7998 51.0996c-7.2998 7.2998 -14.0996 5.09961 -14.0996 -0.799805c0 -6.2002 -1.2998 -11.6006 -2.40039 -14.6006zM494.2 273.9c-3.2002 -3.30078 -9.2002 -4.90039 -14.1006 -5.7002c13 -15.7002 17 -41.7002 12.7002 -63
-c10.7998 2.2002 20.5 6.2998 26.2002 12.2002c1.90039 2.19922 3.7998 4.89941 4.90039 7.59961c-1.10059 21.2998 -10.2002 42.7002 -29.7002 48.9004zM470.1 267.1c-3.69922 0 -8.09961 0 -11.7998 0.300781c7.5 -20.6006 12.4004 -42.7002 14.2998 -64.6006
-c3.5 0 7.5 0.299805 11.6006 0.799805c5.89941 24.3008 -0.299805 51.6006 -14.1006 63.5zM47.5 245c4.09961 13.5 13 28.9004 30.2998 35.7002c-1 3 -2.39941 8.39941 -2.39941 14.5996c0 5.90039 -7.10059 8.10059 -14.1006 0.799805
-c-11.3994 -11.5996 -14.8994 -40.5996 -13.7998 -51.0996zM57.2002 217.4c5.7002 -6.2002 15.3994 -10 26.2002 -12.2002c-4.30078 21.3994 -0.300781 47.2998 12.6992 63c-4.89941 0.799805 -10.8994 2.5 -14.0996 5.7002
-c-19.4004 -6.2002 -28.2998 -27.6006 -29.7002 -48.9004c1.40039 -2.7002 3 -5.40039 4.90039 -7.59961zM105.1 202.8c2.40039 22.2002 9.10059 43.7998 19.8008 63.5c-5.2002 -1.09961 -10 -3 -14.9004 -4.89941l-12.2002 -5.10059v0.299805
-c-7.2998 -14.0996 -10 -34.3994 -5.39941 -53c4.59961 -0.5 8.59961 -0.799805 12.6992 -0.799805zM289.1 365.5c-41.8994 0 -76.1992 -34.0996 -76.1992 -75.9004c0 -42.1992 34.2998 -76.1992 76.1992 -76.1992c41.9004 0 76.2002 34 76.2002 76.1992
-c0 41.9004 -34.2998 75.9004 -76.2002 75.9004zM404.7 191.2c-12.9004 0.799805 -26.2002 0.799805 -39.5 1.09961c10 -50.5996 3.2998 -64.7002 16.5 -58.0996c16 8.09961 22.7002 39.2002 23 57zM350.7 192.8c-18.9004 0.299805 -38.1006 0.299805 -57 0v0.299805
-c-0.299805 -5.19922 0.200195 -38.0996 4.2998 -41.0996c11.0996 -5.40039 39.5 -4.59961 51.0996 -1.09961c5.40039 1.59961 2.40039 37 1.60059 41.8994zM278.3 139c4.60059 2.5 2.40039 45.4004 1.2998 53.7002v0.299805
-c-19.3994 -0.299805 -38.5996 -0.299805 -57.7998 -0.799805c-1.89941 -9.2002 -4.59961 -48.9004 1.90039 -51.6006c13 -5.69922 41.5996 -5.09961 54.5996 -1.59961zM171.8 190.1c-5.39941 -19.6992 0.299805 -45.0996 22.2002 -54.8994
-c5.40039 -2.5 8.59961 -2.5 9.7002 4.2998c1.89941 8.7002 2.5 36.7998 4.89941 52.2002c-12.1992 -0.200195 -24.5996 -0.799805 -36.7998 -1.60059zM136.4 158.8c2.39941 -3.7002 1.59961 -9.09961 -8 -12.5c43.7998 -47 92.6992 -85.7002 155.899 -106.5
-c67.5 19.2002 115.601 60 163.2 107c-11.0996 4.2998 -7.7002 10.2998 -7.2998 11.6006c-8.90039 0.799805 -17.9004 1.89941 -26.5 2.69922c-9.5 -33 -36 -52.8994 -46.7998 -31.5996c-2.7002 5.2002 -3.5 11.7002 -4.60059 16.7998
-c-3.7998 -8.39941 -13.2998 -8.09961 -24.5996 -8.89941c-13.2002 -1.10059 -31.6006 -1.30078 -44 3c-3 -12.9004 -11.1006 -12.9004 -26.7998 -14.3008c-14.1006 -1.39941 -48.7002 -4.09961 -54.9004 10.8008c-1.09961 -28.7002 -35.0996 -10 -45.0996 7
-c-3.2002 5.69922 -5.40039 11.3994 -7 17.5996c-7.80078 -0.799805 -15.7002 -1.59961 -23.5 -2.7002zM114.8 -13.7002c0.5 2.5 0.799805 5.2002 0.799805 8.2002c-5.69922 23.2002 -18.5996 49.7002 -33.5 54c-22.3994 6.7002 -68.8994 -23.5 -66.1992 -54.5996
-c12.6992 -19.5 40 -35.7002 59.1992 -36.5c17.8008 -0.800781 35.9004 11.0996 39.7002 28.8994zM106.1 52.2998c9 -16 15.5 -33.2998 16.7002 -51.8994c33.5 19.3994 69.1006 35.6992 105.9 47c-38.7002 20.5 -68.1006 47.7998 -97.2998 77
-c-2.10059 -1.30078 -5.10059 -2.40039 -7.80078 -3.5c-1.59961 -4.90039 8.7002 -5.30078 5.40039 -12.4004c-2.09961 -4.09961 -8.59961 -7.59961 -15.0996 -9.2002c-2.10059 -2.7002 -5.10059 -4.89941 -7.80078 -6.5h-0.299805
-c-0.200195 -13.5 -0.200195 -27 0.299805 -40.5zM443.7 -12.2998c-36.7998 21.2998 -74.1006 41.2998 -115.601 53c-13.7998 -6.2002 -27.8994 -11.2998 -42.1992 -15.4004c-2.10059 -0.799805 -2.10059 -0.799805 -4.30078 0
-c-11.8994 3.7002 -23.2998 8.10059 -34.8994 13.2002c-40.2002 -11.5996 -77.2998 -29.2002 -112.4 -50.7998h-0.299805v-0.299805c0.299805 0 0.299805 0 0.299805 0.299805c103.2 -4.10059 206.4 -3.5 309.4 0zM454.2 0.0996094c1 14.7002 7.2002 35.8008 16.5 51.7002
-l-0.299805 -0.299805c0.5 13.7002 0.799805 27.5 0.799805 41.2998c-3 1.7002 -5.7002 4.10059 -8.10059 6.7998c-6.5 1.30078 -12.8994 5.10059 -15.0996 8.90039c-1.90039 4.09961 1.2998 7.59961 5.90039 10.2998c-0.200195 0.5 -0.5 1.60059 -0.5 2.40039
-c-3 0.799805 -5.40039 1.7998 -7.60059 3.2002c-31.5996 -29.4004 -65.3994 -56.7002 -103.5 -76.7002c38.9004 -11.7002 76 -28.1006 111.9 -47.6006zM560.1 -6.09961c3 31.0996 -43.5 61.3994 -66.1992 54.5c-14.6006 -4.30078 -27.8008 -30.8008 -33.5 -54
-c0 -23.8008 21.1992 -37.9004 40.5 -37c19.1992 0.799805 46.5 17 59.1992 36.5zM372.9 372.8c-35.7002 39.2002 -81.4004 47.7998 -126 23.5c25.1992 56.2002 122.199 48.6006 126 -23.5zM74.7998 40.9004c14.9004 1.89941 24.6006 -19.2002 18.6006 -30.8008
-c-4.80078 -9.69922 -23.7002 -24.0996 -35.9004 -27.2998c-16.5 -4.59961 -32.2002 3.2998 -32.2002 14.9004c0 17.7998 33.7998 41.5996 49.5 43.2002zM290.7 217.1c-30.9004 0 -57.6006 25.7002 -50.2998 59.8008c13.1992 -20.7002 46.5 -12 46.5 11.2998
-c0 10 -7 18.5996 -16.5 21.5996c31.6992 13.7998 72.1992 -8.2002 72.1992 -44.2998c0 -26.7998 -23.2998 -48.4004 -51.8994 -48.4004zM68 -26.0996c-0.5 8.39941 20.2998 23.5 29.2002 25.0996c8.59961 1.59961 12.7002 -11.4004 9.7002 -18.4004
-c-2.7002 -5.69922 -10.5 -13.5 -17.3008 -16.1992c-9.39941 -3.2002 -21.0996 3 -21.5996 9.5zM501.2 40.9004c15.7002 -1.60059 49.5 -25.4004 49.5 -43.2002c0 -11.7002 -15.7002 -19.5 -32.2002 -14.9004c-12.0996 3.2002 -31.2998 17.6006 -36.2002 27.2998
-c-5.7002 11.6006 4 32.7002 18.9004 30.8008zM478.8 -1c8.90039 -1.59961 30 -16.7002 29.1006 -25.0996c-0.200195 -6.5 -12.1006 -12.7002 -21.3008 -9.5c-7 2.69922 -14.8994 10.5 -17.2998 16.1992c-2.89941 7.10059 1.10059 20 9.5 18.4004z" />
-    <glyph glyph-name="opencart" unicode="&#xf23d;" horiz-adv-x="640" 
-d="M423.3 7.2998c0 -25.2998 -20.2998 -45.5996 -45.5996 -45.5996s-45.7998 20.2998 -45.7998 45.5996s20.5996 45.7998 45.7998 45.7998c25.3994 0 45.5996 -20.5 45.5996 -45.7998zM169.4 53.0996c25.2998 0 45.7998 -20.5 45.7998 -45.7998
-s-20.5 -45.5996 -45.7998 -45.5996c-25.3008 0 -45.6006 20.3994 -45.6006 45.5996s20.2998 45.7998 45.6006 45.7998zM461.1 323.1c302.2 0 169.5 -67.1992 -17.1992 -233.899c59.1992 102.8 262.5 193.899 -70.8008 188.899c-319.8 -4.69922 -338.699 92.5 -373.1 144.2
-c81.9004 -86.3994 158.9 -99.2002 461.1 -99.2002z" />
-    <glyph glyph-name="expeditedssl" unicode="&#xf23e;" horiz-adv-x="496" 
-d="M248 404.6c117.4 0 212.6 -95.1992 212.6 -212.6s-95.1992 -212.6 -212.6 -212.6s-212.6 95.1992 -212.6 212.6s95.1992 212.6 212.6 212.6zM150.6 271.7h-0.199219v-26.6006c0 -5 3.89941 -8.89941 8.89941 -8.89941h17.7002c5 0 8.90039 3.89941 8.90039 8.89941
-v26.6006c0 82.0996 124 82.0996 124 0v-26.6006c0 -5 3.89941 -8.89941 8.89941 -8.89941h17.7002c5 0 8.90039 3.89941 8.90039 8.89941v26.6006c0 53.7002 -43.7002 97.3994 -97.4004 97.3994s-97.4004 -43.6992 -97.4004 -97.3994zM389.7 68v141.7
-c0 9.7002 -8 17.7002 -17.7002 17.7002h-248c-9.7002 0 -17.7002 -8 -17.7002 -17.7002v-141.7c0 -9.7002 8 -17.7002 17.7002 -17.7002h248c9.7002 0 17.7002 8 17.7002 17.7002zM141.7 205.3v-132.899c0 -2.5 -1.90039 -4.40039 -4.40039 -4.40039h-8.89941
-c-2.5 0 -4.40039 1.90039 -4.40039 4.40039v132.899c0 2.5 1.90039 4.40039 4.40039 4.40039h8.89941c2.5 0 4.40039 -1.90039 4.40039 -4.40039zM283.4 156.6c0 -13 -7.2002 -24.3994 -17.7002 -30.3994v-31.6006c0 -5 -3.90039 -8.89941 -8.90039 -8.89941h-17.7002
-c-5 0 -8.89941 3.89941 -8.89941 8.89941v31.6006c-10.5 6.09961 -17.7002 17.3994 -17.7002 30.3994c0 19.7002 15.7998 35.4004 35.4004 35.4004c19.5996 0 35.5 -15.7998 35.5 -35.4004zM248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248
-s111 248 248 248zM248 -38.2998c127 0 230.3 103.3 230.3 230.3s-103.3 230.3 -230.3 230.3s-230.3 -103.3 -230.3 -230.3s103.3 -230.3 230.3 -230.3z" />
-    <glyph glyph-name="cc-jcb" unicode="&#xf24b;" horiz-adv-x="576" 
-d="M431.5 203.7v32.2998c41.2002 0 38.5 -0.200195 38.5 -0.200195c7.2998 -1.2998 13.2998 -7.2998 13.2998 -16c0 -8.7998 -6 -14.5 -13.2998 -15.7998c-1.2002 -0.400391 -3.2998 -0.299805 -38.5 -0.299805zM474.3 183.5c7.5 -1.5 13.5 -8.2998 13.5 -17
-c0 -9 -6 -15.5 -13.5 -17c-2.7998 -0.700195 -3.2002 -0.5 -42.7998 -0.5v35c39.5 0 40 0.200195 42.7998 -0.5zM576 368v-352c0 -26.5 -21.5 -48 -48 -48h-480c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h480c26.5 0 48 -21.5 48 -48zM182 255.7h-57
-c0 -67.1006 10.7002 -109.7 -35.7998 -109.7c-19.5 0 -38.7998 5.7002 -57.2002 14.7998v-28c30 -8.2998 68 -8.2998 68 -8.2998c97.9004 0 82 47.7002 82 131.2zM360.5 251.2c-63.4004 16 -165 14.8994 -165 -59.2998c0 -77.1006 108.2 -73.6006 165 -59.2002v28.2998
-c-47.5996 -24.7002 -107.5 -22 -107.5 31s59.7998 55.5996 107.5 31.2002v28zM544 161.5c0 18.5 -16.5 30.5 -38 32v0.799805c19.5 2.7002 30.2998 15.5 30.2998 30.2002c0 19 -15.7002 30 -37 31c0 0 6.2998 0.299805 -120.3 0.299805v-127.5h122.7
-c24.2998 -0.0996094 42.2998 12.9004 42.2998 33.2002z" />
-    <glyph glyph-name="cc-diners-club" unicode="&#xf24c;" horiz-adv-x="576" 
-d="M239.7 368.1c97.2002 0 175.8 -78.5996 175.8 -175.8c0 -96.8994 -78.5996 -175.8 -175.8 -175.8c-96.9004 0 -175.8 78.9004 -175.8 175.8c0 97.2002 78.8994 175.8 175.8 175.8zM199.8 88.5v207.9c-41.7002 -16.2002 -71.3994 -56.7002 -71.3994 -104.101
-c0 -47.3994 29.6992 -87.8994 71.3994 -103.8zM279.6 88.2002c41.7002 16.2002 71.4004 56.7002 71.4004 104.1c0 47.4004 -29.7002 87.9004 -71.4004 104.101v-208.2zM528 416c26.5 0 48 -21.5 48 -48v-352c0 -26.5 -21.5 -48 -48 -48h-480c-26.5 0 -48 21.5 -48 48v352
-c0 26.5 21.5 48 48 48h480zM329.7 0c105 0 200.7 85.5 200.7 190.2c0 114.6 -95.7002 193.8 -200.7 193.8h-90.2998c-106.2 0 -193.801 -79.2002 -193.801 -193.8c0 -104.7 87.6006 -190.2 193.801 -190.2h90.2998z" />
-    <glyph glyph-name="creative-commons" unicode="&#xf25e;" horiz-adv-x="496" 
-d="M245.83 233.13l-33.2197 -17.2803c-9.43066 19.5801 -25.2402 19.9307 -27.46 19.9307c-22.1309 0 -33.2207 -14.6104 -33.2207 -43.8398c0 -23.5703 9.20996 -43.8408 33.2207 -43.8408c14.4697 0 24.6494 7.09082 30.5693 21.2607l30.5498 -15.5
-c-6.16992 -11.5107 -25.6895 -38.9805 -65.0996 -38.9805c-22.5996 0 -73.96 10.3203 -73.96 77.0498c0 58.6904 43 77.0605 72.6299 77.0605c30.7197 0.00976562 52.7002 -11.9502 65.9902 -35.8604zM388.88 233.13l-32.7803 -17.2803
-c-9.5 19.7705 -25.7197 19.9307 -27.8994 19.9307c-22.1406 0 -33.2197 -14.6104 -33.2197 -43.8398c0 -23.5508 9.22949 -43.8408 33.2197 -43.8408c14.4502 0 24.6494 7.09082 30.54 21.2607l31 -15.5c-2.10059 -3.75 -21.3906 -38.9805 -65.0898 -38.9805
-c-22.6904 0 -73.96 9.87012 -73.96 77.0498c0 58.6699 42.9697 77.0605 72.6299 77.0605c30.71 0.00976562 52.5801 -11.9502 65.5596 -35.8604zM247.56 439.95c141.82 0 248.44 -110.13 248.44 -248c0 -147.13 -118.51 -248 -248.44 -248
-c-133.96 0 -247.56 109.51 -247.56 248c0 132.939 104.74 248 247.56 248zM248.43 -10.8604c103.16 0 202.83 81.1299 202.84 202.82c0 113.8 -90.2891 203.26 -202.819 203.26c-118.29 0 -203.72 -97.8496 -203.72 -203.27c0 -109.771 91.1592 -202.811 203.699 -202.811z
-" />
-    <glyph glyph-name="gg" unicode="&#xf260;" horiz-adv-x="512" 
-d="M179.2 217.6l102.399 -102.399l-102.399 -102.4l-179.2 179.2l179.2 179.2l44.7998 -44.7998l-25.5996 -25.6006l-19.2002 19.2002l-128 -128l128 -128l51.5 51.5l-77.1006 76.5zM332.8 371.2l179.2 -179.2l-179.2 -179.2l-44.7998 44.7998l25.5996 25.6006
-l19.2002 -19.2002l128 128l-128 128l-51.5 -51.5l77.1006 -76.5l-25.6006 -25.5996l-102.399 102.399z" />
-    <glyph glyph-name="gg-circle" unicode="&#xf261;" horiz-adv-x="512" 
-d="M257 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM207.5 65.2002l75 75.2002l-77.2002 77.1992l-24.3994 -24.3994l53.0996 -52.9004l-26.5996 -26.5996l-77.2002 77.2002l77.2002 77.1992l11.0996 -11.0996l24.2002 24.2002
-l-35.2002 35.3994l-125.7 -125.699zM306.5 67.4004l125.7 125.6l-125.7 125.7l-75 -75l77.2002 -77.2002l24.3994 24.4004l-53.0996 52.8994l26.5 26.5l77.2002 -77.2002l-77.2002 -77.1992l-11.0996 11.0996l-24.1006 -24.4004z" />
-    <glyph glyph-name="tripadvisor" unicode="&#xf262;" horiz-adv-x="576" 
-d="M528.91 269.18c28.8652 -26.2666 46.9404 -64.1113 46.9404 -106.176c0 -0.0615234 -0.000976562 -0.12207 -0.000976562 -0.183594h0.0302734c-0.00195312 -79.4414 -64.5479 -143.928 -143.989 -143.928c-37.7363 0 -72.0996 14.5527 -97.7803 38.3477
-l-46.1104 -50.1699l-46.1396 50.1992c-25.6064 -23.4443 -59.8145 -37.7793 -97.2334 -37.7793c-79.4268 0 -143.911 64.4844 -143.911 143.911c0 41.8076 17.8662 79.4756 46.374 105.778l-47.0898 51.2402h104.66c52.2266 35.5498 115.938 56.3369 183.822 56.3369
-s130.95 -20.7871 183.178 -56.3369h104.34zM144.06 65.4297c53.751 0 97.3906 43.6396 97.3906 97.3906s-43.6396 97.3896 -97.3906 97.3896s-97.3896 -43.6387 -97.3896 -97.3896s43.6387 -97.3906 97.3896 -97.3906zM288 165.63c0 64.0801 46.6104 119.07 108.08 142.59
-c-33.2285 13.8467 -70.0527 21.4941 -108.272 21.4941c-38.2207 0 -74.6689 -7.64746 -107.897 -21.4941c61.4697 -23.5098 108.09 -78.5 108.09 -142.59zM431.88 65.4297c53.7568 0.00292969 97.4004 43.6475 97.4004 97.4053c0 53.7598 -43.6455 97.4053 -97.4053 97.4053
-c-53.7588 0 -97.4053 -43.6455 -97.4053 -97.4053c0 -53.7578 43.6436 -97.4023 97.4004 -97.4053h0.00976562zM144.06 213.88c0.0175781 0 0.0332031 -0.000976562 0.0507812 -0.000976562c28.1299 0 50.9717 -22.8242 51 -50.9492v-0.109375
-c0 -28.1807 -22.8799 -51.0605 -51.0605 -51.0605s-51.0596 22.8799 -51.0596 51.0605s22.8789 51.0596 51.0596 51.0596h0.00976562zM431.88 213.88c28.1807 0 51.0605 -22.8789 51.0605 -51.0596s-22.8799 -51.0605 -51.0605 -51.0605s-51.0596 22.8799 -51.0596 51.0605
-s22.8789 51.0596 51.0596 51.0596z" />
-    <glyph glyph-name="odnoklassniki" unicode="&#xf263;" horiz-adv-x="320" 
-d="M275.1 114c-27.3994 -17.4004 -65.0996 -24.2998 -90 -26.9004l20.9004 -20.5996l76.2998 -76.2998c27.9004 -28.6006 -17.5 -73.2998 -45.7002 -45.7002c-19.0996 19.4004 -47.0996 47.4004 -76.2998 76.5996l-76.2998 -76.5
-c-28.2002 -27.5 -73.5996 17.6006 -45.4004 45.7002c19.4004 19.4004 47.1006 47.4004 76.3008 76.2998l20.5996 20.6006c-24.5996 2.59961 -62.9004 9.09961 -90.5996 26.8994c-32.6006 21 -46.9004 33.3008 -34.3008 59c7.40039 14.6006 27.7002 26.9004 54.6006 5.7002
-c0 0 36.2998 -28.8994 94.8994 -28.8994c58.6006 0 94.9004 28.8994 94.9004 28.8994c26.9004 21.1006 47.0996 8.90039 54.5996 -5.7002c12.4004 -25.6992 -1.89941 -38 -34.5 -59.0996zM30.2998 318.3c0 71.7002 58.2998 129.7 129.7 129.7s129.7 -58 129.7 -129.7
-c0 -71.3994 -58.2998 -129.399 -129.7 -129.399s-129.7 58 -129.7 129.399zM96.2998 318.3c0 -35.0996 28.6006 -63.7002 63.7002 -63.7002s63.7002 28.6006 63.7002 63.7002c0 35.4004 -28.6006 64 -63.7002 64s-63.7002 -28.5996 -63.7002 -64z" />
-    <glyph glyph-name="odnoklassniki-square" unicode="&#xf264;" 
-d="M184.2 270.9c0 22.0996 17.8994 40 39.7998 40s39.7998 -17.9004 39.7998 -40c0 -22 -17.8994 -39.8008 -39.7998 -39.8008s-39.7998 17.9004 -39.7998 39.8008zM448 368v-352c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h352
-c26.5 0 48 -21.5 48 -48zM142.9 270.9c0 -44.6006 36.3994 -80.9004 81.0996 -80.9004s81.0996 36.2002 81.0996 80.9004c0 44.7998 -36.3994 81.0996 -81.0996 81.0996s-81.0996 -36.2002 -81.0996 -81.0996zM317.4 180.2
-c-4.60059 9.09961 -17.3008 16.7998 -34.1006 3.59961c0 0 -22.7002 -18 -59.2998 -18s-59.2998 18 -59.2998 18c-16.7998 13.2002 -29.5 5.5 -34.1006 -3.59961c-7.89941 -16.1006 1.10059 -23.7002 21.4004 -37c17.2998 -11.1006 41.2002 -15.2002 56.5996 -16.7998
-l-12.8994 -12.9004c-18.2002 -18 -35.5 -35.5 -47.7002 -47.7002c-17.5996 -17.5996 10.7002 -45.7998 28.4004 -28.5996l47.6992 47.8994c18.2002 -18.1992 35.7002 -35.6992 47.7002 -47.8994c17.6006 -17.2002 46 10.7002 28.6006 28.5996l-47.7002 47.7002l-13 12.9004
-c15.5 1.59961 39.0996 5.89941 56.2002 16.7998c20.3994 13.2998 29.2998 21 21.5 37z" />
-    <glyph glyph-name="get-pocket" unicode="&#xf265;" 
-d="M407.6 384c22.7002 0 40.4004 -18.2002 40.4004 -40.5996v-135.2c0 -124.7 -99.7998 -224.2 -223.8 -224.2c-124.5 0 -224.2 99.5 -224.2 224.2v135.2c0 22.0996 18.5 40.5996 40.5996 40.5996h367zM245.6 115.5c111.9 107.5 114.801 105.4 114.801 123.2
-c0 16.8994 -13.8008 30.7002 -30.7002 30.7002c-16.9004 0 -14.9004 -2.40039 -105.5 -89.3008c-89.1006 85.5 -88.2002 89.3008 -105.2 89.3008c-16.9004 0 -30.7002 -13.8008 -30.7002 -30.7002c0 -18.1006 1.2002 -14.2998 114.9 -123.2
-c11 -11.0996 30 -11.7998 42.3994 0z" />
-    <glyph glyph-name="wikipedia-w" unicode="&#xf266;" horiz-adv-x="640" 
-d="M640 396.8l-0.299805 -12.2002c-28.1006 -0.799805 -45 -15.7998 -55.7998 -40.2998c-25 -57.7998 -103.301 -240 -155.301 -358.6h-13.5996l-81.9004 193.1c-32.5 -63.5996 -68.2998 -130 -99.1992 -193.1c-0.300781 -0.299805 -15 0 -15 0.299805
-c-46.9004 109.7 -96.1006 218.6 -143.101 328.6c-11.3994 26.7002 -49.3994 70 -75.5996 69.7002c0 3.10059 -0.299805 10 -0.299805 14.2002h161.899v-13.9004c-19.2002 -1.09961 -52.7998 -13.2998 -43.2998 -34.1992c21.9004 -49.7002 103.6 -240.301 125.6 -288.601
-c15 29.7002 57.8008 109.2 75.3008 142.8c-13.9004 28.3008 -58.6006 133.9 -72.8008 160c-9.69922 17.8008 -36.0996 19.4004 -55.7998 19.7002v13.9004l142.5 -0.299805v-13.1006c-19.3994 -0.599609 -38.0996 -7.7998 -29.3994 -26.0996
-c18.8994 -40 30.5996 -68.1006 48.0996 -104.7c5.59961 10.7998 34.7002 69.4004 48.0996 100.8c8.90039 20.6006 -3.89941 28.6006 -38.5996 29.4004c0.299805 3.59961 0 10.2998 0.299805 13.5996c44.4004 0.299805 111.101 0.299805 123.101 0.600586v-13.6006
-c-22.5 -0.799805 -45.8008 -12.7998 -58.1006 -31.7002l-59.2002 -122.8c6.40039 -16.0996 63.3008 -142.8 69.2002 -156.7l122.4 282.601c-8.60059 23.0996 -36.4004 28.0996 -47.2002 28.2998v13.9004l127.8 -1.10059z" />
-    <glyph glyph-name="safari" unicode="&#xf267;" horiz-adv-x="512" 
-d="M274.69 173.31l-108.69 -71.3096l71.3096 108.69zM256 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM411.85 265.21c-2.88672 -1.20801 -4.9082 -4.0625 -4.9082 -7.38574c0 -1.08496 0.21582 -2.12012 0.608398 -3.06445v0
-c1.20215 -2.90039 4.06348 -4.93457 7.39648 -4.93457c1.08105 0 2.1123 0.214844 3.05371 0.604492l14.75 6.11035c2.90234 1.20117 4.93848 4.06348 4.93848 7.39746c0 1.08496 -0.216797 2.11914 -0.608398 3.0625v0c-1.2002 2.90527 -4.06348 4.94336 -7.39941 4.94336
-c-1.08008 0 -2.11035 -0.214844 -3.05078 -0.603516zM314.43 354c-0.396484 -0.949219 -0.625 -1.99219 -0.625 -3.08496c0 -3.33398 2.04395 -6.19336 4.94531 -7.39551v0c0.941406 -0.388672 1.97461 -0.613281 3.05566 -0.613281
-c3.33301 0 6.19238 2.04297 7.39453 4.94336l6.12988 14.7803c0.389648 0.941406 0.613281 1.97461 0.613281 3.05566c0 3.33301 -2.04297 6.19238 -4.94336 7.39453v0c-0.944336 0.392578 -1.98047 0.618164 -3.06641 0.618164
-c-3.32324 0 -6.17578 -2.03125 -7.38379 -4.91797zM256 388c-4.41504 0 -8 -3.58496 -8 -8v-16c0 -4.41504 3.58496 -8 8 -8v0c4.41504 0 8 3.58496 8 8v16c0 4.41504 -3.58496 8 -8 8v0zM181 373.08c-2.89941 -1.20215 -4.93262 -4.0625 -4.93262 -7.39551
-c0 -1.06934 0.210938 -2.09082 0.592773 -3.02441l6.12988 -14.7803c1.16504 -2.97754 4.05762 -5.07812 7.44531 -5.07812c4.41602 0 8 3.58496 8 8c0 1.13672 -0.237305 2.21875 -0.665039 3.19824l-6.11035 14.75c-1.20117 2.90234 -4.06348 4.93848 -7.39746 4.93848
-c-1.08496 0 -2.11914 -0.216797 -3.0625 -0.608398zM117.42 330.59c-1.44727 -1.44824 -2.35254 -3.44922 -2.35254 -5.65625c0 -2.19141 0.883789 -4.17773 2.3125 -5.62402l11.3105 -11.3096c1.44727 -1.44727 3.44922 -2.34277 5.65527 -2.34277
-c2.20703 0 4.20605 0.895508 5.6543 2.34277v0c1.43848 1.44629 2.32715 3.44238 2.32715 5.6416c0 2.19824 -0.888672 4.19141 -2.32715 5.63867l-11.2695 11.3096c-1.44824 1.44727 -3.4502 2.34277 -5.65625 2.34277c-2.20703 0 -4.20605 -0.895508 -5.6543 -2.34277v0z
-M60 192c0 -4.41504 3.58496 -8 8 -8h16c4.41504 0 8 3.58496 8 8v0c0 4.41504 -3.58496 8 -8 8h-16c-4.41504 0 -8 -3.58496 -8 -8v0zM100.15 118.79c2.88672 1.20801 4.9082 4.0625 4.9082 7.38574c0 1.08496 -0.21582 2.12012 -0.608398 3.06445v0
-c-1.20215 2.90039 -4.06348 4.93457 -7.39648 4.93457c-1.08105 0 -2.1123 -0.214844 -3.05371 -0.604492l-14.75 -6.11035c-2.90234 -1.20117 -4.93848 -4.06348 -4.93848 -7.39746c0 -1.08496 0.216797 -2.11914 0.608398 -3.0625v0
-c1.2002 -2.90527 4.06348 -4.94336 7.39941 -4.94336c1.08008 0 2.11035 0.214844 3.05078 0.603516zM104.48 254.79c0.386719 0.939453 0.609375 1.93945 0.609375 3.0166c0 3.33203 -2.04102 6.19043 -4.93945 7.39355l-14.7803 6.12988
-c-0.941406 0.389648 -1.97461 0.613281 -3.05566 0.613281c-3.33301 0 -6.19238 -2.04297 -7.39453 -4.94336v0c-0.392578 -0.944336 -0.618164 -1.98047 -0.618164 -3.06641c0 -3.32324 2.03125 -6.17578 4.91797 -7.38379l14.7803 -6.12012
-c0.945312 -0.393555 1.9834 -0.619141 3.07129 -0.619141c3.34668 0 6.21582 2.05957 7.40918 4.97949v0zM197.57 30c0.427734 0.979492 0.672852 2.07129 0.672852 3.20801c0 4.41602 -3.58496 8 -8 8c-3.38867 0 -6.28809 -2.11035 -7.45312 -5.08789l-6.12988 -14.7803
-c-0.389648 -0.941406 -0.611328 -1.9834 -0.611328 -3.06543c0 -4.41699 3.58594 -8.00293 8.00293 -8.00293c3.33496 0 6.19727 2.04492 7.39844 4.94824zM264 4v16c0 4.41504 -3.58496 8 -8 8v0c-4.41504 0 -8 -3.58496 -8 -8v-16c0 -4.41504 3.58496 -8 8 -8v0
-c4.41504 0 8 3.58496 8 8zM331 10.9199c2.89941 1.20215 4.93262 4.0625 4.93262 7.39551c0 1.06934 -0.210938 2.09082 -0.592773 3.02441l-6.12988 14.7803c-1.20215 2.90039 -4.06348 4.93457 -7.39648 4.93457c-1.08105 0 -2.1123 -0.214844 -3.05371 -0.604492v0
-c-2.90039 -1.20215 -4.93457 -4.06348 -4.93457 -7.39648c0 -1.08105 0.214844 -2.1123 0.604492 -3.05371l6.11035 -14.75c1.20117 -2.90234 4.06348 -4.93848 7.39746 -4.93848c1.08496 0 2.11914 0.216797 3.0625 0.608398v0zM394.58 53.4102
-c1.44727 1.44824 2.35254 3.44922 2.35254 5.65625c0 2.19141 -0.883789 4.17773 -2.3125 5.62402l-11.3105 11.3096c-1.44727 1.44727 -3.44922 2.34277 -5.65527 2.34277c-2.20703 0 -4.20605 -0.895508 -5.6543 -2.34277v0
-c-1.43848 -1.44629 -2.32715 -3.44238 -2.32715 -5.6416c0 -2.19824 0.888672 -4.19141 2.32715 -5.63867l11.2695 -11.3096c1.44824 -1.44727 3.4502 -2.34277 5.65625 -2.34277c2.20703 0 4.20605 0.895508 5.6543 2.34277v0zM286.25 161.75l115.41 175.91
-l-175.91 -115.41l-115.41 -175.91zM437.08 117c0.392578 0.944336 0.618164 1.98047 0.618164 3.06641c0 3.32324 -2.03125 6.17578 -4.91797 7.38379l-14.7803 6.12012c-0.949219 0.396484 -1.99219 0.625 -3.08496 0.625c-3.33398 0 -6.19336 -2.04395 -7.39551 -4.94531
-v0c-0.388672 -0.941406 -0.613281 -1.97461 -0.613281 -3.05566c0 -3.33301 2.04297 -6.19238 4.94336 -7.39453l14.7803 -6.12988c0.941406 -0.389648 1.97461 -0.613281 3.05566 -0.613281c3.33301 0 6.19238 2.04297 7.39453 4.94336v0zM444 184c4.41504 0 8 3.58496 8 8
-v0c0 4.41504 -3.58496 8 -8 8h-16c-4.41504 0 -8 -3.58496 -8 -8v0c0 -4.41504 3.58496 -8 8 -8h16z" />
-    <glyph glyph-name="chrome" unicode="&#xf268;" horiz-adv-x="496" 
-d="M131.5 230.5l-76.4004 117.4c47.6006 59.1992 119 91.7998 192 92.0996c42.3008 0.299805 85.5 -10.5 124.801 -33.2002c43.3994 -25.2002 76.3994 -61.3994 97.3994 -103l-205.3 10.7998c-58.0996 3.40039 -113.4 -29.2998 -132.5 -84.0996zM164.4 192
-c0 46.2998 37.3994 83.5996 83.5996 83.5996s83.5996 -37.3994 83.5996 -83.5996s-37.3994 -83.5996 -83.5996 -83.5996s-83.5996 37.3994 -83.5996 83.5996zM479.3 281.2c43.5 -111.9 0 -241.9 -107.399 -303.9c-43.4004 -25.2002 -91.3008 -35.3994 -137.801 -32.8994
-l112.101 172.399c31.8994 49 31.2998 112.9 -6.60059 157.2zM133.7 144.4c26.2998 -51.7002 81.8994 -83.3008 139.5 -72.5l-63.7002 -124.801c-118.7 18.2002 -209.5 120.9 -209.5 244.9c0 50.0996 14.9004 96.9004 40.4004 135.9z" />
-    <glyph glyph-name="firefox" unicode="&#xf269;" horiz-adv-x="512" 
-d="M503.52 206.52c0.240234 -4.43945 0.360352 -9 0.480469 -13.5195c0 -137.19 -111.23 -248.42 -248.32 -248.42c-122.779 0 -224.859 89.2695 -244.779 206.38c-0.360352 3.24023 -0.720703 6.36035 -1.08008 9.59961c-4.91992 42.6006 0.479492 87.3604 16.0801 124.79
-c10.7998 25.8809 32.6396 54 49.7998 62.8809c-16.2002 -31.8008 -24.1201 -63 -25.7998 -83.8809c11.2793 37.2002 32.6299 68.3604 62.5098 90.3604c51.2402 37.6699 120.229 39.3604 147.71 15.3604c-51 -17.5107 -106.55 -87.96 -94.3105 -170.511
-c2.00586 -13.791 6.21289 -27.1582 12.1201 -39.2393c-9.51953 25.0801 -10.3594 60.3594 5 83.2793c17.1602 25.5508 41.6299 30.9502 54.71 28.1904c-5.15918 1.08008 -16.5596 -20.75 -18.2393 -24.5898c-3.99609 -9.09863 -6.25098 -19.1865 -6.25098 -29.7539
-c0 -0.416016 0.00390625 -0.832031 0.0107422 -1.24609c0.392578 -23.1182 10.1045 -44.0088 25.5596 -59c47.6504 -46.4307 124.561 -28.1602 159 24.8398c23.6406 36.4795 26.5205 98.3896 -3.83984 147.59c-7.62891 12.0801 -16.5693 22.9639 -26.8799 32.7598
-c-47.6602 45.4707 -116.06 64.6699 -180.24 52.9902c-0.240234 0 -0.599609 -0.120117 -0.839844 -0.120117c-1.7998 -0.359375 -3.47949 -0.719727 -5.16016 -1.08008c-0.359375 -0.120117 -0.839844 -0.120117 -1.2002 -0.239258l-5.87988 -1.44043
-c-14.5195 -3.55957 -34.7998 -10.7998 -49.4395 -19.5596c-0.09375 -0.0136719 -0.176758 -0.0566406 -0.240234 -0.120117l0.120117 0.120117c0 -0.0664062 -0.0537109 -0.120117 -0.120117 -0.120117l-0.120117 -0.120117l0.120117 0.120117h-0.129883l0.479492 0.479492
-c0.480469 0.480469 1.32031 1.16016 2.40039 2.16016c19.6797 17.7598 49.3203 31.9199 82.9102 39c14.7383 3.09766 29.8691 4.81543 45.4795 5h10.6299c12.9863 -0.311523 25.6123 -1.67188 38 -4c0.960938 -0.120117 1.76074 -0.360352 2.76074 -0.479492h0.120117
-c1.7998 -0.360352 3.71973 -0.84082 5.63965 -1.2002c19.2676 -4.375 38.0977 -11.0762 55.4297 -19.5605c2.40039 -1.2002 4.7998 -2.39941 7.2002 -3.71973c8.6748 -4.32129 16.8906 -9.37891 24.5996 -15.1201c4.32031 -3.12012 8.48047 -6.36035 12.4805 -9.83984
-c6.50781 -5.19434 12.5332 -10.6973 18.29 -16.7002c8.51074 -8.35645 16.2646 -17.1406 23.5098 -26.6396c0.959961 -1.2002 1.75977 -2.40039 2.75977 -3.71973c0.400391 -0.480469 0.640625 -0.84082 1 -1.32031l1.80078 -2.52051
-c0.359375 -0.479492 0.719727 -1.08008 1.08008 -1.55957c0.479492 -0.719727 1.0791 -1.56055 1.55957 -2.28027c0.441406 -0.571289 0.839844 -1.16992 1.2002 -1.7998l1.43945 -2.12988c0.441406 -0.571289 0.84082 -1.16992 1.2002 -1.7998
-c0.480469 -0.720703 0.959961 -1.56055 1.32031 -2.16016c0.359375 -0.600586 0.839844 -1.24023 1.2002 -1.91992c0.359375 -0.680664 0.839844 -1.32031 1.19922 -2c0.360352 -0.680664 0.84082 -1.28027 1.2002 -2c0.441406 -0.638672 0.842773 -1.30566 1.2002 -2
-c0.360352 -0.720703 0.839844 -1.56055 1.2002 -2.16016c0.359375 -0.599609 0.719727 -1.32031 1.08008 -1.91992c0.359375 -0.839844 0.799805 -1.67969 1.2002 -2.28027c0.399414 -0.599609 0.639648 -1.2002 1 -1.7998
-c0.359375 -0.839844 0.839844 -1.56055 1.19922 -2.40039c0.240234 -0.479492 0.480469 -1.08008 0.720703 -1.55957c0.479492 -0.839844 0.839844 -1.63965 1.31934 -2.63965l0.360352 -0.720703c1.75977 -3.71973 3.44043 -7.55957 5 -11.3994
-c0 -0.120117 0.120117 -0.240234 0.120117 -0.360352c0.439453 -1.2002 0.959961 -2.28027 1.43945 -3.48047c0.120117 -0.239258 0.240234 -0.599609 0.360352 -0.839844c0.480469 -1.08008 0.839844 -2.2793 1.32031 -3.35938
-c0.138672 -0.321289 0.261719 -0.660156 0.359375 -1c0.360352 -1.08008 0.84082 -2.28027 1.2002 -3.36035l0.360352 -1.08008c0.479492 -1.2002 0.839844 -2.28027 1.2002 -3.47949c0.119141 -0.400391 0.239258 -0.640625 0.359375 -1
-c0.360352 -1.08008 0.720703 -2.28027 1.08008 -3.48047c0.120117 -0.240234 0.120117 -0.599609 0.240234 -0.839844c0.360352 -1.2002 0.719727 -2.52051 1.08008 -3.71973c0.120117 -0.120117 0.120117 -0.360352 0.240234 -0.600586l1.08008 -4
-c0.119141 -0.120117 0.119141 -0.120117 0.119141 -0.240234c3.54297 -13.2549 6.04102 -27.1152 7.32031 -41.1494v-0.120117l0.360352 -4.67969v-0.120117c0 -1.56055 0.120117 -3.12012 0.239258 -4.68066z" />
-    <glyph glyph-name="opera" unicode="&#xf26a;" horiz-adv-x="496" 
-d="M313.9 415.3c-170.2 0 -252.601 -223.8 -147.5 -355.1c36.5 -45.4004 88.5996 -75.6006 147.5 -75.6006c36.2998 0 70.2998 11.1006 99.3994 30.4004c-43.7998 -39.2002 -101.899 -63 -165.3 -63c-3.90039 0 -8 0 -11.9004 0.299805
-c-131.5 6.10059 -236.1 114.601 -236.1 247.7c0 137 111 248 248 248h0.799805c63.1006 -0.299805 120.7 -24.0996 164.4 -63.0996c-29 19.3994 -63.1006 30.3994 -99.2998 30.3994zM415.7 17.5996c-40.9004 -24.6992 -90.7002 -23.5996 -132 5.80078
-c56.2002 20.5 97.7002 91.5996 97.7002 176.6c0 84.7002 -41.2002 155.8 -97.4004 176.6c41.7998 29.2002 91.2002 30.3008 132.9 5c105.899 -98.6992 105.5 -265.699 -1.2002 -364z" />
-    <glyph glyph-name="internet-explorer" unicode="&#xf26b;" horiz-adv-x="512" 
-d="M483.049 288.294c25.1963 -45.4473 33.2578 -97.5811 26.8516 -141.162h-328.792c0 -100.432 144.31 -136.029 196.818 -47.4355h120.833c-32.5645 -91.7285 -119.689 -146.022 -216.813 -146.022c-35.1367 0 -70.2725 0.143555 -101.695 15.5732
-c-87.3975 -44.4941 -180.251 -56.5693 -180.251 42.0059c0 45.8066 23.2461 107.096 43.9922 145.022c35.1357 63.7227 81.4121 124.875 135.687 173.168c-43.7061 -18.8604 -91.125 -66.2959 -121.977 -101.158c25.877 112.787 129.466 193.638 237.098 186.457
-c130.032 59.7939 209.673 34.1445 209.673 -38.5771c0 -27.4326 -10.5684 -63.2959 -21.4238 -87.8711zM64.5586 101.123c-73.001 -152.4 11.5254 -172.244 100.267 -123.304c-46.5635 27.4326 -82.5557 72.1533 -100.267 123.304zM180.536 209.996h207.961
-c-2 55.1514 -50.5635 94.8711 -103.981 94.8711c-53.7041 0 -101.979 -39.7197 -103.979 -94.8711zM365.072 397.596c46.2764 -18.002 85.9824 -57.2939 112.263 -99.5859c7.1416 18.8604 14.5693 47.8643 14.5693 67.8672c0 32.0049 -22.8525 53.7217 -54.2744 53.7217
-c-23.9951 0 -51.1328 -11.7158 -72.5576 -22.0029z" />
-    <glyph glyph-name="contao" unicode="&#xf26d;" horiz-adv-x="512" 
-d="M45.4004 143c14.3994 -67.0996 26.3994 -129 68.1992 -175h-79.5996c-18.7002 0 -34 15.2002 -34 34v380c0 18.7002 15.2002 34 34 34h57.7002c-13.7998 -12.5996 -26.1006 -27.2002 -36.9004 -43.5996c-45.3994 -70 -27 -146.801 -9.39941 -229.4zM478 416
-c18.7998 0 34 -15.2002 34 -34v-380.1c0 -18.8008 -15.2998 -34 -34 -34h-52.0996c38.6992 38.3994 60.5996 92.0996 57.3994 163.6l-137.399 -29.5996c-1.7002 -32.5 -12.9004 -63.8008 -57.4004 -73.2002c-24.9004 -5.2998 -45.4004 0.599609 -58.2998 11.7002
-c-15.7998 13.5 -28.4004 31 -49.5 131.199c-21.4004 100.5 -17 121.601 -8.2002 140.301c7.2998 15.2998 23.7002 29.2998 48.2998 34.5996c44.7998 9.40039 67.7002 -14.9004 82.6006 -43.9004l137.1 29.3008c-13.5 34.5996 -31.2998 62.6992 -52.7002 84.0996h90.2002z
-" />
-    <glyph glyph-name="500px" unicode="&#xf26e;" 
-d="M103.3 103.7c-6.5 14.2002 -6.89941 18.2998 7.40039 23.0996c25.5996 8 8 -9.2002 43.2002 -49.2002h0.299805v93.9004c1.2002 50.2002 44 92.2002 97.7002 92.2002c53.8994 0 97.6992 -43.5 97.6992 -96.7998c0 -63.4004 -60.7998 -113.2 -128.5 -93.3008
-c-10.5 4.2002 -2.09961 31.7002 8.5 28.6006c53 0 89.4004 10.0996 89.4004 64.3994c0 61 -77.0996 89.6006 -116.9 44.6006c-23.5 -26.4004 -17.5996 -42.1006 -17.5996 -157.601c50.7002 -31 118.3 -22 160.4 20.1006c24.7998 24.7998 38.5 58 38.5 93
-c0 35.2002 -13.8008 68.2002 -38.8008 93.2998c-24.7998 24.7998 -57.7998 38.5 -93.2998 38.5s-68.7998 -13.7998 -93.5 -38.5c-0.299805 -0.299805 -16 -16.5 -21.2002 -23.9004l-0.5 -0.599609c-3.2998 -4.7002 -6.2998 -9.09961 -20.0996 -6.09961
-c-6.90039 1.69922 -14.2998 5.7998 -14.2998 11.7998v186.8c0 5 3.89941 10.5 10.5 10.5h241.3c8.2998 0 8.2998 -11.5996 8.2998 -15.0996c0 -3.90039 0 -15.1006 -8.2998 -15.1006h-223.2v-132.899h0.299805c104.2 109.8 282.801 36 282.801 -108.9
-c0 -178.1 -244.801 -220.3 -310.101 -62.7998zM166.6 364.5c3.80078 18.7998 145.101 50.7998 238.301 -38.2002c8.5 -7.5 -9.5 -22.7998 -14.3008 -22.7998c-6.59961 0 -84.5996 87.9004 -209.399 40.4004c-10 -3.90039 -15.1006 16.3994 -14.6006 20.5996zM393 33.2998
-c8.09961 8 27.5996 -12.5996 20.7002 -20.3994c-135.601 -135.601 -357.601 -52.1006 -381.601 121.3c-1.5 10.7002 28.9004 15.5 28.9004 3.2998c33 -165 222 -214.1 332 -104.2zM213.6 141.4c0 3.39941 2.30078 4.69922 20.4004 22.5996l-18.2002 18.2002
-c-5.59961 5.59961 7.40039 17.2998 12.4004 17.2998c3.09961 0 2.89941 -0.700195 21.5 -19.5l17.8994 17.9004c6.10059 6.09961 22.5 -8.90039 16.2002 -15.7002l-18.2002 -18.2002l17.3008 -17.2998c7.7998 -7.7998 -5.30078 -18.2002 -10.7002 -18.2002
-c-3.2002 0 -2.7002 0.200195 -22.2998 19.5c-19.7002 -19.7002 -18.5 -19.5 -22.3008 -19.5c-2.39941 0 -5.5 1.40039 -8.5 4.40039c-1.19922 1.19922 -5.5 4.5 -5.5 8.5z" />
-    <glyph glyph-name="amazon" unicode="&#xf270;" 
-d="M257.2 285.3c0 39.2998 5.2002 69.2002 -35.5 69.1006c0 0 -37.9004 0 -54.2002 -49.5l-73.5 6.7998c0 49.2998 46.7002 104.3 134.7 104.3c87.7998 0 112.3 -57 112.3 -82.2998v-147.101c0 -27.5 32.2998 -52.7998 32.2998 -52.7998l-56.7998 -56
-c-9.90039 9.2998 -38.7998 36.6006 -45.2998 46.7998c-45.2002 -70.7998 -183.5 -66.2998 -183.5 43.2002c0 102 120.8 115.7 169.5 117.5zM257.2 198.5v40.5996c-33.7002 -1.09961 -84.2002 -10.5996 -84.2002 -57.7998c0 -50.7998 84.2002 -62.7998 84.2002 17.2002z
-M393.2 35c-7.7002 -10 -70 -67 -174.5 -67s-184.5 71.5 -209 101c-6.7998 7.7002 1 11.2998 5.5 8.2998c73.2998 -44.5 187.8 -117.8 372.5 -30.2998c7.5 3.7002 13.2998 -2 5.5 -12zM433 32.7998c-6.5 -15.7998 -16 -26.7998 -21.2002 -31
-c-5.5 -4.5 -9.5 -2.7002 -6.5 3.7998s19.2998 46.5 12.7002 55c-6.5 8.30078 -37 4.30078 -48 3.2002c-10.7998 -1 -13 -2 -14 0.299805c-2.2998 5.7002 21.7002 15.5 37.5 17.5c15.7002 1.80078 41 0.800781 46 -5.69922c3.7002 -5.10059 0 -27.1006 -6.5 -43.1006z" />
-    <glyph glyph-name="houzz" unicode="&#xf27c;" 
-d="M275.9 117.3h-104.601v-149.3h-154.3v448h109.5v-104.5l305.1 -85.5996v-257.9h-155.699v149.3z" />
-    <glyph glyph-name="vimeo-v" unicode="&#xf27d;" 
-d="M447.8 294.4c-2 -43.6006 -32.3994 -103.301 -91.3994 -179.101c-60.9004 -79.2002 -112.4 -118.8 -154.601 -118.8c-26.0996 0 -48.2002 24.0996 -66.2998 72.2998c-35.2002 129.2 -50.2002 204.9 -79.2998 204.9c-3.40039 0 -15.1006 -7.10059 -35.2002 -21.1006
-l-21 27.2002c51.5996 45.2998 100.9 95.7002 131.8 98.5c34.9004 3.40039 56.2998 -20.5 64.4004 -71.5c28.7002 -181.5 41.3994 -208.899 93.5996 -126.7c18.7002 29.6006 28.7998 52.1006 30.2002 67.6006c4.7998 45.8994 -35.7998 42.7998 -63.2998 31
-c22 72.0996 64.0996 107.1 126.2 105.1c45.7998 -1.2002 67.5 -31.0996 64.8994 -89.3994z" />
-    <glyph glyph-name="black-tie" unicode="&#xf27e;" 
-d="M0 416h448v-448h-448v448zM316.5 90.7998l-64.5 184l64.4004 86.6006h-184.9l64.5 -86.6006l-64.5 -184l92.5 -88.7002z" />
-    <glyph glyph-name="fonticons" unicode="&#xf280;" 
-d="M0 416h448v-448h-448v448zM187 275.1c11.9004 0 16.5996 -4.2998 16.2998 -23l50.7002 6.10059c0 44.5996 -30.5996 52.7998 -64.7002 52.7998c-50.7998 0 -77.2998 -20.4004 -77.2998 -70v-21h-28v-37.4004h22.2002c2.89941 0 5.7998 0 5.7998 -2.2998v-111.399
-c0 -5.60059 -1.5 -7.30078 -6.7002 -7.90039l-21.2998 -2v-25.7002h130.7v25.1006l-43.5 4.09961c-5.2002 0.599609 -3.2002 1.5 -3.2002 7.2998v112.9h55.7002l11.0996 37.2998h-67.3994c-2.90039 0 0.599609 2 0.599609 4.40039v23.2998
-c0 17.5 0.599609 27.3994 19 27.3994zM261.3 33.2998h102.601v25.1006l-15.7002 2.59961c-5.5 0.900391 -2.90039 1.5 -2.90039 7.2998v151.7h-80.2002l-6.69922 -29.5l24.1992 -6.40039c3.80078 -1.19922 6.7002 -3.7998 6.7002 -7.89941v-107.9
-c0 -5.59961 -2.39941 -6.7002 -7.59961 -7.2998l-20.4004 -2.59961v-25.1006zM342.1 288.8l21.9004 24.2002l-3.5 9.59961h-27.7002l-15.5 28h-9.2998l-15.5 -28h-27.7002l-3.5 -9.59961l21.7998 -24.2002l-9 -33.2002l7.30078 -7.2998l31.1992 16.6006l31.2002 -16.6006
-l7.2998 7.2998z" />
-    <glyph glyph-name="reddit-alien" unicode="&#xf281;" horiz-adv-x="512" 
-d="M440.3 244.5c55.2998 0 73.7002 -74.0996 23.7998 -99.7002c2.2002 -7.89941 3.10059 -16.7002 3.10059 -25.0996c0 -83.7998 -94.4004 -151.7 -210.8 -151.7c-115.9 0 -210.301 67.9004 -210.301 151.7c0 8.39941 0.800781 16.7998 2.60059 24.7002
-c-50.9004 25.5 -32.7002 100.1 22.8994 100.1c15 0 28.7002 -6.2002 38.4004 -16.2998c35.7998 24.7002 83.4004 40.5996 136.3 42.7998l30.4004 137.6c1.2998 4.90039 6.09961 8.40039 11 7.10059l97.3994 -21.6006c6.60059 12.7002 19.9004 22 35.3008 22
-c22.0996 0 39.6992 -18.0996 39.6992 -39.6992c0 -21.6006 -17.6992 -39.7002 -39.6992 -39.7002c-21.6006 0 -39.2002 17.5996 -39.2002 39.2002l-88.2002 19.7998l-27.7002 -124.8c53.2998 -1.7002 101.4 -17.6006 137.101 -42.3008
-c9.69922 9.7002 22.8994 15.9004 37.8994 15.9004zM129.4 139.1c0 -21.5996 17.6992 -39.2998 39.6992 -39.1992c21.6006 0 39.2002 17.5996 39.2002 39.1992c0 22.1006 -17.5996 39.7002 -39.2002 39.7002c-22.0996 0 -39.6992 -17.7002 -39.6992 -39.7002zM343.7 45.5996
-c4 3.5 4 9.7002 -0.100586 13.7002c-3.5 3.5 -9.69922 3.5 -13.1992 0c-29 -29 -121.2 -28.5 -149 0c-3.5 3.5 -9.7002 3.5 -13.2002 0c-4 -4 -4 -10.2002 0 -13.7002c36.3994 -36.3994 139.1 -36.3994 175.5 0zM342.9 99.7998c22 0 39.5996 17.7002 39.6992 39.2002
-c0 22.0996 -17.6992 39.7002 -39.6992 39.7002c-21.6006 0 -39.2002 -17.7002 -39.2002 -39.7002c0 -21.5996 17.5996 -39.2002 39.2002 -39.2002z" />
-    <glyph glyph-name="edge" unicode="&#xf282;" horiz-adv-x="512" 
-d="M481.92 313.52c6.46973 -12.7793 22.4697 -41.6494 21.9697 -85.0791c-0.0917969 -43.7148 -23.6953 -81.8525 -58.9492 -102.44c-17.1387 -10.1797 -37.2617 -16.1211 -58.6104 -16.1797c-0.139648 0 -52.6504 -2.56055 -80.5098 16.8096
-c-5.85059 4.08008 -9.14062 8.94043 -9.14062 14c0 6.16016 4.82031 9 6.39062 11c9.7998 12.75 15.1094 28.1699 15.1094 38.5703c0 32.71 -11 59.2998 -33 83.0996c-1.16016 1.25 -42.9795 50.1807 -122.25 50.1807c-63.2393 0 -123.46 -32.6504 -149.46 -79.1406
-c24.04 111.98 123.58 195.66 242.44 195.66c96.3496 0 184.96 -46.1797 226.01 -126.48zM212.77 -27.6699c1.28027 -0.570312 29.0107 -20.5898 67.1309 -27.21c-7.89551 -0.759766 -15.5156 -1.3584 -23.6084 -1.3584c-99.3408 0 -185.118 58.5361 -224.692 142.969
-c-25.75 55.4697 -24.0801 105.96 -23 118.27c4.16992 34.2803 27.0801 59.7002 46.8408 74.7998c29.6299 22.6904 68.8193 35.6904 107.529 35.6904c7.0498 0 43.9199 -0.900391 77.6406 -18.5898c32.5596 -17.1006 47.3193 -37.5801 56.5596 -53.5107
-c1.84961 -3.23242 3.49902 -6.64551 4.88965 -10.1396c-4.21973 4.65039 -40.0596 44.2002 -99.0596 -1c-26.6719 -19.334 -46.8008 -46.8369 -56.9697 -78.9199c-14.1406 -40.4004 -12.8398 -88.5801 20.0996 -136c12.2471 -18.1914 27.9951 -33.3955 46.6396 -45z
-M463.49 70.6602c2.1748 -1.37305 3.60742 -3.80176 3.60742 -6.56152c0 -1.53418 -0.447266 -2.96484 -1.21777 -4.16895c-47.5703 -75.4297 -127.86 -108.87 -163 -108.87c-22.7002 0 -48.1299 6.95996 -71.7002 19.6104c-33 17.6699 -49.4893 38.7598 -56 47.6699
-c-46.3301 63.5303 -28.25 122.29 -13.3301 151.66c9.73145 19.1172 22.8193 35.9404 38.7607 50c-4.04688 -8.04102 -6.40625 -17.168 -6.52051 -26.75c0 -80.9404 79.8506 -144 171.521 -144c0.116211 0 0.310547 0.0693359 0.426758 0.0693359
-c24.3125 0 47.6045 4.40137 69.123 12.4502c6.98145 2.61816 13.8652 5.69824 20.4102 9.12012c1.11328 0.618164 2.41113 0.970703 3.77441 0.970703c1.52344 0 2.94531 -0.44043 4.14551 -1.2002z" />
-    <glyph glyph-name="codiepie" unicode="&#xf284;" horiz-adv-x="472" 
-d="M422.5 245.1c30.7002 0 33.5 -53.0996 -0.299805 -53.0996h-10.7998v-44.2998h-26.6006v97.3994h37.7002zM472 95.4004c-42.0996 -91.9004 -121.6 -151.4 -224 -151.4c-137 0 -248 111 -248 248s111 248 248 248c97.4004 0 172.8 -53.7002 218.2 -138.4l-186 -108.8z
-M433.5 82.9004l-60.2998 30.6992c-27.1006 -44.2998 -70.4004 -71.3994 -122.4 -71.3994c-82.5 0 -149.2 66.7002 -149.2 148.899c0 82.5 66.7002 149.2 149.2 149.2c48.4004 0 88.9004 -23.5 116.9 -63.3994l59.5 34.5996c-40.7002 62.5996 -104.7 100 -179.2 100
-c-121.2 0 -219.5 -98.2998 -219.5 -219.5s98.2998 -219.5 219.5 -219.5c78.5996 0 146.5 42.0996 185.5 110.4z" />
-    <glyph glyph-name="modx" unicode="&#xf285;" 
-d="M356 206.2l36.7002 -23.7002v-214.5l-133 83.7998zM440 373l-83.2002 -134.3l-153.5 96.5l23 37.7998h213.7zM351 230.2l-249.8 -57.7002l-46 29v214.5zM97 153.8l249.7 57.7002l-125 -200.5h-213.7z" />
-    <glyph glyph-name="fort-awesome" unicode="&#xf286;" horiz-adv-x="512" 
-d="M489.2 160.1c2.59961 0 4.59961 -2 4.5 -4.59961v-219.5h-182.9v96c0 72.5996 -109.7 72.5996 -109.7 0v-96h-182.899v219.5c0 2.59961 2 4.59961 4.59961 4.59961h27.4004c2.59961 0 4.59961 -2 4.59961 -4.59961v-32h36.6006v178.3
-c0 2.60059 2 4.60059 4.59961 4.60059h27.4004c2.59961 0 4.59961 -2 4.59961 -4.60059v-32h36.2998v32c0 2.60059 2 4.60059 4.60059 4.60059h27.3994c2.60059 0 4.60059 -2 4.60059 -4.60059v-32h36.5996v32c0 6 8 4.60059 11.7002 4.60059v111.699
-c-5.40039 2.60059 -9.10059 8.30078 -9.10059 14.3008c0 20.7998 31.4004 20.6992 31.4004 0c0 -6 -3.7002 -11.7002 -9.09961 -14.3008v-4.89941c7.69922 1.7998 15.6992 2.89941 23.6992 2.89941c11.7002 0 22.9004 -4.2998 32.6006 -4.2998
-c8.89941 0 18.8994 4.2998 24 4.2998c2.59961 0 4.59961 -2 4.59961 -4.59961v-60c0 -6.90039 -23.0996 -8 -27.7002 -8c-10.5 0 -20.5 4.2998 -31.3994 4.2998c-8.60059 0 -17.4004 -1.39941 -25.7002 -3.39941v-38c3.7002 0 11.7002 1.39941 11.7002 -4.60059v-32h36.5996
-v32c0 2.60059 2 4.60059 4.60059 4.60059h27.3994c2.60059 0 4.60059 -2 4.60059 -4.60059v-32h36.5996v32c0 2.60059 2 4.60059 4.59961 4.60059h27.4004c2.59961 0 4.59961 -2 4.59961 -4.60059v-178.3h36.6006v32c0 2.59961 2 4.59961 4.59961 4.59961h27.4004z
-M201.1 164.6v64c0 2.60059 -2 4.60059 -4.59961 4.60059h-27.4004c-2.59961 0 -4.59961 -2 -4.59961 -4.60059v-64c0 -2.59961 2 -4.59961 4.59961 -4.59961h27.4004c2.59961 0 4.59961 2 4.59961 4.59961zM347.5 164.6v64c0 2.60059 -2 4.60059 -4.59961 4.60059h-27.4004
-c-2.59961 0 -4.59961 -2 -4.59961 -4.60059v-64c0 -2.59961 2 -4.59961 4.59961 -4.59961h27.4004c2.59961 0 4.59961 2 4.59961 4.59961z" />
-    <glyph glyph-name="usb" unicode="&#xf287;" horiz-adv-x="640" 
-d="M641.5 192c0 -3.09961 -1.7002 -6.09961 -4.5 -7.5l-89.0996 -53.5c-1.40039 -0.799805 -2.80078 -1.40039 -4.5 -1.40039c-1.40039 0 -3.10059 0.300781 -4.5 1.10059c-2.80078 1.7002 -4.5 4.5 -4.5 7.7998v35.5996h-238.7
-c25.2998 -39.5996 40.5 -106.899 69.5996 -106.899h26.7002v26.7998c0 5 3.90039 8.90039 8.90039 8.90039h89.0996c5 0 8.90039 -3.90039 8.90039 -8.90039v-89.0996c0 -5 -3.90039 -8.90039 -8.90039 -8.90039h-89.0996c-5 0 -8.90039 3.90039 -8.90039 8.90039v26.6992
-h-26.7002c-75.3994 0 -81.0996 142.5 -124.7 142.5h-100.3c-8.09961 -30.5996 -35.8994 -53.5 -69 -53.5c-39.2998 0.100586 -71.2998 32.1006 -71.2998 71.4004s32 71.2998 71.2998 71.2998c33.1006 0 61 -22.7998 69 -53.5c39.1006 0 43.9004 -9.5 74.6006 60.4004
-c40.0996 89.0996 58.0996 82.0996 108.899 82.0996c7.5 20.9004 27 35.6006 50.4004 35.6006c29.5 0 53.5 -23.9004 53.5 -53.5c0 -29.6006 -23.9004 -53.5 -53.5 -53.5c-23.4004 0 -42.9004 14.7998 -50.4004 35.5996h-29.7998
-c-29.0996 0 -44.2998 -67.4004 -69.5996 -106.9h310.1v35.6006c0 3.2998 1.7002 6.09961 4.5 7.7998s6.40039 1.40039 8.90039 -0.299805l89.0996 -53.5c2.7998 -1.10059 4.5 -4.10059 4.5 -7.2002z" />
-    <glyph glyph-name="product-hunt" unicode="&#xf288;" horiz-adv-x="512" 
-d="M326.3 229.2c0 -20.5 -16.7002 -37.2002 -37.2002 -37.2002h-70.2998v74.4004h70.2998c20.5 0 37.2002 -16.7002 37.2002 -37.2002zM504 192c0 -137 -111 -248 -248 -248s-248 111 -248 248s111 248 248 248s248 -111 248 -248zM375.9 229.2
-c0 47.8994 -38.9004 86.7998 -86.8008 86.7998h-119.899v-248h49.5996v74.4004h70.2998c47.9004 0 86.8008 38.8994 86.8008 86.7998z" />
-    <glyph glyph-name="mixcloud" unicode="&#xf289;" horiz-adv-x="640" 
-d="M424.43 228.271c42.3623 -9.1377 74.4805 -47.0693 74.4805 -92.2002c0 -52.3311 -42.6406 -94.6934 -94.9688 -94.6934h-289.614c-62.5752 0 -113.243 50.668 -113.243 112.966c0 56.7598 42.085 103.554 96.6299 111.582
-c22.9814 67.5586 86.9395 114.074 159.205 114.074c87.2158 0 159.205 -66.7266 167.511 -151.729zM403.941 83.7412c29.0713 0 52.6064 23.5352 52.6064 52.3301c0 22.1494 -14.1211 40.9766 -33.502 48.4531c-1.38477 -8.58301 -3.59961 -17.166 -6.36914 -25.4727
-c-8.01367 -25.6484 -49.0898 -14.2266 -40.1465 13.29c4.15332 12.7373 6.36914 26.0264 6.36914 39.5938c0 69.2197 -56.4834 125.702 -125.979 125.702c-49.8379 0 -94.6934 -29.626 -114.628 -73.9258c19.3809 -4.98438 37.3779 -14.9512 52.0527 -29.3486
-c19.9531 -19.9531 -10.2168 -50.1436 -30.1797 -30.1807c-13.29 13.291 -31.0107 20.7666 -49.8379 20.7666c-39.04 0 -70.8809 -31.5645 -70.8809 -70.6045s31.8408 -70.6035 70.8809 -70.6035h289.614zM639.01 136.071c0 -44.0244 -12.7363 -86.3867 -37.1016 -122.657
-c-4.15332 -6.0918 -10.7979 -9.41406 -17.7197 -9.41406c-16.3174 0 -27.1279 18.8262 -17.4434 32.9492c19.3809 29.3486 29.9033 63.6816 29.9033 99.1221c0 35.4395 -10.5215 69.7725 -29.9033 98.8447c-15.6553 22.8311 19.3613 47.2402 35.1631 23.5342
-c24.3662 -35.9932 37.1016 -78.3564 37.1016 -122.379zM568.13 136.071c0 -31.5654 -9.13672 -62.0215 -26.8564 -88.3252c-4.15332 -6.09082 -10.7988 -9.13574 -17.7207 -9.13574c-17.2012 0 -27.0215 18.9785 -17.4424 32.9473
-c13.0127 19.1045 19.6572 41.2559 19.6572 64.5137c0 22.9805 -6.64453 45.4072 -19.6572 64.5117c-15.7617 22.9863 19.0078 47.0947 35.1631 23.5352c17.7188 -26.0264 26.8564 -56.4834 26.8564 -88.0469z" />
-    <glyph glyph-name="scribd" unicode="&#xf28a;" horiz-adv-x="384" 
-d="M42.2998 195.3c-16.0996 19 -24.7002 45.9004 -24.7998 79.9004c0 100.399 75.2002 153.1 167.2 153.1c98.5996 1.60059 156.8 -49 184.3 -70.5996l-50.5 -72.1006l-37.2998 24.6006l26.8994 38.5996c-36.5 24 -79.3994 36.5 -123 35.7998
-c-50.6992 0.800781 -111.699 -27.1992 -111.699 -76.1992c0 -18.7002 11.1992 -20.7002 28.5996 -15.6006c23.2998 5.2998 41.9004 -0.599609 55.7998 -14c26.4004 -24.2998 23.2002 -67.5996 -0.700195 -91.8994c-29.1992 -29.5 -85.1992 -27.3008 -114.8 8.39941z
-M360 189.4c33.9004 -40.4004 36.7998 -138.2 -20.2998 -189.601c-39.2002 -33.5996 -82.2002 -44.0996 -133.601 -44.0996c-70.2998 -0.299805 -138.199 25.3994 -190.699 72.2002l-15.4004 13.7998l60.7998 71.7998l35.6006 -27.4004l-33.7002 -39.3994
-c41.7002 -30.9004 92.2002 -47.5 144.1 -47.2998c61.9004 0 104.7 23.5 121.4 64.3994c0.899414 4.2002 1.39941 8.40039 1.39941 12.7002c0 18.7002 -11.1992 20.7002 -28.5996 15.5996c-23.2998 -5.2998 -42.2002 0.5 -56.2998 14.4004
-c-12.4004 11.2998 -19.1006 27.5 -18.4004 44.2998c-0.599609 39.2002 32.4004 69.2002 70.5 67.2002c24.2998 0.799805 47.7002 -9.7998 63.2002 -28.5996z" />
-    <glyph glyph-name="bluetooth" unicode="&#xf293;" 
-d="M292.6 276.9l-42.8994 -42.9004l-0.299805 86zM249.4 57.0996l0.199219 86l42.9004 -42.8994zM416 188.6c0 -205.6 -71.9004 -252.6 -185.1 -252.6c-113.2 0 -198.9 47 -198.9 252.6c0 205.601 83.4004 259.4 196.6 259.4c113.2 0 187.4 -53.9004 187.4 -259.4z
-M257.5 188.6l79.4004 88.6006l-125.101 134.3v-176.9l-73.7998 73.8008l-27 -26.9004l92.7002 -93l-92.7002 -93l26.9004 -26.9004l73.7998 73.8008l2.2998 -170l127.4 127.5z" />
-    <glyph glyph-name="bluetooth-b" unicode="&#xf294;" horiz-adv-x="320" 
-d="M196.48 187.977l97.9111 -103.333l-148.552 -148.644l-2.71484 198.284l-86.1113 -86.1113l-31.4053 31.4053l108.061 108.398l-108.061 108.399l31.4053 31.4053l86.1113 -86.1113v206.33l145.981 -156.69zM237.34 290.973l-50.3145 50.3174l0.337891 -100.295z
-M187.363 134.96l-0.337891 -100.294l50.3145 50.3164z" />
-    <glyph glyph-name="gitlab" unicode="&#xf296;" horiz-adv-x="512" 
-d="M105.2 423.1c0 0 56.5 -174.8 56.5996 -174.8h-132l56.5 174.8c3.2002 8.90039 15.7998 8.90039 18.9004 0zM0.900391 160.3l28.7998 88l226.2 -294l-247.9 184c-6.7998 5.10059 -9.7002 14 -7.09961 22zM161.7 248.3h188.6l-94.2998 -294zM511.1 160.3
-c2.5 -8 -0.299805 -16.8994 -7.19922 -22l-247.9 -184l226.3 294zM425.7 423.1l56.5 -174.8h-132l56.5996 174.8c3.2002 8.90039 15.7998 8.90039 18.9004 0z" />
-    <glyph glyph-name="wpbeginner" unicode="&#xf297;" horiz-adv-x="512" 
-d="M462.799 125.626c56.2109 -64.3076 4.16211 -157.626 -91.8545 -157.626c-39.6025 0 -78.8242 17.6865 -100.143 50.04c-6.88672 -0.356445 -22.7021 -0.356445 -29.5898 0c-21.3643 -32.4209 -60.624 -50.04 -100.143 -50.04
-c-95.4902 0 -148.349 92.9961 -91.8555 157.626c-79.1387 131.851 31.2646 290.374 206.792 290.374c175.632 0 285.87 -158.626 206.793 -290.374zM123.152 208.598h41.5283v58.0752h-41.5283v-58.0752zM340.332 122.526v23.8389
-c-60.5059 -20.915 -132.355 -9.19824 -187.589 33.9707l0.246094 -24.8965c51.1006 -46.3672 131.746 -57.875 187.343 -32.9131zM189.579 208.598h166.058v58.0752h-166.058v-58.0752z" />
-    <glyph glyph-name="wpforms" unicode="&#xf298;" 
-d="M448 372.8v-361.7c0 -24.2998 -19 -43.1992 -43.2002 -43.1992h-361.6c-23.9004 0.0996094 -43.2002 18.6992 -43.2002 43.2998v361.6c0 24.1006 18.7998 43.2002 43.2002 43.2002h361.7c24 0 43.0996 -18.7998 43.0996 -43.2002zM410.7 11.2002v361.6
-c0 3 -2.60059 5.7998 -5.7998 5.7998h-9.30078l-110.3 -74.5996l-61.2998 49.9004l-61.2002 -49.9004l-110.3 74.7002h-9.2998c-3.2002 0 -5.7998 -2.7998 -5.7998 -5.7998v-361.7c0 -3 2.59961 -5.7998 5.7998 -5.7998h361.7
-c3.19922 -0.100586 5.7998 2.69922 5.7998 5.7998zM150.2 262v-37h-73.5v37h73.5zM150.2 187.6v-37.2998h-73.5v37.2998h73.5zM161.3 334.9l54 43.6992h-118.5zM371.3 262v-37h-196v37h196zM371.3 187.6v-37.2998h-196v37.2998h196zM286.7 334.9l64.5 43.6992h-118.4z
-M371.3 113v-37.2998h-99.3994v37.2998h99.3994z" />
-    <glyph glyph-name="envira" unicode="&#xf299;" 
-d="M0 416c477.6 0 366.6 -317.3 367.1 -366.3l80.9004 -81.7002h-26l-70.4004 71.2002c-39 -4.2002 -124.399 -34.5 -214.399 37c-90.2002 71.5 -85.2002 157.1 -137.2 339.8zM79.7002 370c-49.7002 23.5 -5.2002 -9.2002 -5.2002 -9.2002
-c45.2002 -31.2002 66 -73.7002 90.2002 -119.899c31.5 -60.2002 79 -139.7 144.2 -167.7c65 -28 34.1992 -12.5 6 8.5c-28.2002 21.2002 -68.2002 87 -91 130.2c-31.7002 60 -61 118.6 -144.2 158.1z" />
-    <glyph glyph-name="glide" unicode="&#xf2a5;" 
-d="M252.8 299.4c0 -8.80078 -1.59961 -17.7002 -3.39941 -26.4004c-5.80078 -27.7998 -11.6006 -55.7998 -17.3008 -83.5996c-1.39941 -6.30078 -8.2998 -4.90039 -13.6992 -4.90039c-23.8008 0 -30.5 26 -30.5 45.5c0 29.2998 11.1992 68.0996 38.5 83.0996
-c4.2998 2.5 9.19922 4.2002 14.0996 4.2002c11.4004 0 12.2998 -8.2998 12.2998 -17.8994zM448 368v-352c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h352c26.5 0 48 -21.5 48 -48zM384 181c0 5.09961 -20.7998 37.7002 -25.5 39.5
-c-2.2002 0.900391 -7.2002 2.2998 -9.59961 2.2998c-23.1006 0 -38.7002 -10.5 -58.2002 -21.5l-0.5 0.5c4.2998 29.4004 14.5996 57.2002 14.5996 87.4004c0 44.5996 -23.7998 62.7002 -67.5 62.7002c-71.7002 0 -108 -70.8008 -108 -123.5c0 -54.7002 32 -85 86.2998 -85
-c7.5 0 6.90039 0.599609 6.90039 -2.30078c-10.5 -80.2998 -56.5 -82.8994 -56.5 -58.8994c0 24.3994 28 36.5 28.2998 38c-0.200195 7.59961 -29.2998 17.2002 -36.7002 17.2002c-21.0996 0 -32.6992 -33 -32.6992 -50.6006c0 -32.2998 20.3994 -54.7002 53.2998 -54.7002
-c48.2002 0 83.3994 49.7002 94.2998 91.7002c9.40039 37.7002 7 39.4004 12.2998 42.1006c20 10.0996 35.7998 16.7998 58.4004 16.7998c11.0996 0 19 -2.2998 36.7002 -5.2002c1.7998 -0.0996094 4.09961 1.7002 4.09961 3.5z" />
-    <glyph glyph-name="glide-g" unicode="&#xf2a6;" 
-d="M407.1 236.8c7.5 -2.89941 40.9004 -55.3994 40.9004 -63.3994c0 -2.90039 -3.7998 -5.80078 -6.7002 -5.80078c-28.3994 4.7002 -41.0996 8.40039 -58.8994 8.40039c-36.3008 0 -61.6006 -10.7998 -93.8008 -27c-8.5 -4.2998 -4.59961 -7.09961 -19.6992 -67.5996
-c-17.4004 -67.6006 -74 -145.4 -151.4 -145.4c-52.7002 0 -85.5 36 -85.5 87.9004c0 28.0996 18.5 79.1992 52.4004 79.2998c11.8994 0 58.5996 -15.4004 58.8994 -27.6006c-0.5 -2.39941 -45.5 -21.7998 -45.5 -61c0 -38.5 73.9004 -34.2998 90.7998 94.6006
-c0 4.7998 1 3.7998 -11 3.7998c-87.2998 0 -138.6 48.7002 -138.6 136.6c0 84.7002 58.2998 198.4 173.4 198.4c70.1992 0 108.399 -29.0996 108.399 -100.6c0 -48.5 -16.5 -93.1006 -23.5 -140.4l0.900391 -0.900391c31.2998 17.7002 56.3994 34.5 93.5 34.5
-c3.7998 0 11.8994 -2.39941 15.3994 -3.7998zM231.8 321.2c2.90039 13.8994 5.5 28.0996 5.60059 42.3994c0 15.4004 -1.40039 28.7002 -20 28.7002c-7.80078 0 -15.6006 -2.59961 -22.6006 -6.7002c-43.7998 -24.0996 -61.7998 -86.3994 -61.7998 -133.399
-c0 -31.2998 10.7002 -73.1006 49 -73.1006c8.7002 0 19.7002 -2.39941 22 7.80078c9.2002 44.6992 18.5 89.5996 27.7998 134.3z" />
-    <glyph glyph-name="viadeo" unicode="&#xf2a9;" 
-d="M276.2 297.5v-0.700195c-17.9004 52.6006 -42.6006 103.4 -70.7998 151.2c43.2998 -29.2002 67 -100 70.7998 -150.5zM308.9 175.8c15.0996 3.10059 29.5 9 42.1992 17c24.5 -58.5996 20.2002 -139.7 -36.3994 -201c-67.7998 -73.8994 -191.9 -74.5996 -259.8 0
-c-108.801 117.8 -31.6006 313.7 129.899 313.7c21.2998 0 42.6006 -3.5 62.5 -10.7002c-6.89941 -13.3994 -11.7002 -28.2002 -13.3994 -43.2998c-15.4004 6.5 -32.3008 9.59961 -49.1006 9.59961c-78 0 -135.399 -66.6992 -135.399 -142.3
-c0 -68.7998 45.5996 -126 111.3 -137.399c98.5 38.3994 116.6 188.199 116.6 280c0 11.6992 0 23.6992 -1 35.3994c12.4004 -36.0996 18.9004 -73.8994 18.9004 -112c0 -86.5 -35.1006 -158.399 -109.3 -205.1l-3.80078 -0.299805
-c80 -1.60059 137.801 61.6992 137.801 139.399c0 19.5 -3.40039 38.7998 -11 57zM418.1 436.3c52 -74 20.9004 -208.6 -58.0996 -208.6c-21.2998 0 -40.2002 11.3994 -55 25.7998c35.0996 19.2998 79.4004 49.2002 99.7002 84.9004
-c2.39941 4.7998 6.5 13.6992 7.2002 19.1992c-19.9004 -44.6992 -70.8008 -79.6992 -118.2 -90.6992c-7.5 11.6992 -12 24.6992 -12 38.7998c0 16.5 8.2002 38.5 20.5996 50.5c34.5 32.8994 84.7998 13.5996 115.8 80.0996z" />
-    <glyph glyph-name="viadeo-square" unicode="&#xf2aa;" 
-d="M400 416c26.5 0 48 -21.5 48 -48v-352c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h352zM280.7 66.7998c35.3994 38.2998 38.0996 89 22.7998 125.601c-7.90039 -4.90039 -16.9004 -8.60059 -26.4004 -10.5
-c4.80078 -11.4004 6.90039 -23.5 6.90039 -35.7002c0 -48.6006 -36.2002 -88.2002 -86.2002 -87.2002l2.40039 0.200195c46.3994 29.2002 68.2998 74.0996 68.2998 128.2c0 23.7998 -4.09961 47.5 -11.7998 70v0.399414c-2.2998 31.6006 -17.1006 75.7998 -44.2002 94.1006
-c17.5996 -29.9004 33 -61.6006 44.2002 -94.5c0.599609 -7.30078 0.599609 -14.8008 0.599609 -22.1006c0 -57.3994 -11.3994 -151 -72.8994 -175c-41 7.2002 -69.5 42.9004 -69.5 85.9004c0 47.2002 35.7998 88.8994 84.5996 88.8994c10.5 0 21 -1.89941 30.7002 -6
-c1.09961 9.5 4.09961 18.7002 8.39941 27.1006c-12.5 4.59961 -25.7998 6.7002 -39.0996 6.7002c-101 0 -149.2 -122.5 -81.2002 -196.101c42.4004 -46.5996 120 -46.2002 162.4 0zM309 214.3c49.4004 0 68.7998 84.1006 36.2998 130.3
-c-19.3994 -41.5 -50.7998 -29.5 -72.3994 -50c-7.7002 -7.5 -12.9004 -21.2998 -12.9004 -31.5996c0 -8.7998 2.7998 -17 7.5 -24.2998c29.7002 6.89941 61.4004 28.7998 73.9004 56.7002c-0.400391 -3.40039 -3 -9 -4.5 -12c-12.7002 -22.3008 -40.4004 -41 -62.3008 -53
-c9.30078 -9 21.1006 -16.1006 34.4004 -16.1006z" />
-    <glyph glyph-name="snapchat" unicode="&#xf2ab;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM417.5 101.1c2.2002 5.30078 -0.900391 9.80078 -4.90039 10.8008c-46.2998 7.59961 -67.0996 55.0996 -68 57.0996
-c-0.0996094 0.0996094 -0.0996094 0.200195 -0.199219 0.299805c-2.40039 5 -3 9.2002 -1.60059 12.5c2.60059 6.2998 12.5 9.40039 19 11.5c1.7998 0.600586 3.5 1.10059 4.90039 1.7002c11.5 4.5 17.2998 10.0996 17.2002 16.5996
-c-0.100586 5.10059 -4.10059 9.60059 -10.4004 11.9004c-4 1.59961 -9.59961 1.90039 -13.5996 0c-5.5 -2.59961 -10.4004 -4 -14.7002 -4.2002c-2.7998 0.100586 -4.60059 0.799805 -5.7002 1.40039c1.40039 24 4.7002 58 -3.7998 77.0996
-c-16.2998 36.5 -49.6006 54.2998 -84.2998 54.2998c-0.600586 0 -6.10059 -0.0996094 -6.7002 -0.0996094c-14 0 -61.6006 -4 -84.1006 -54.2998c-8.5 -19.1006 -5.19922 -53.2002 -3.7998 -77.1006c-1.09961 -0.599609 -3.2998 -1.39941 -6.59961 -1.39941
-c-4.5 0 -9.7998 1.39941 -15.7002 4.2002c-7.5 3.5 -20.2998 -1.80078 -21.9004 -10.3008c-1 -4.89941 1.2002 -12.0996 17 -18.2998c6.10059 -2.5 20.6006 -5.2998 24 -13.2002c1.40039 -3.2998 0.900391 -7.5 -1.59961 -12.5
-c-0.0996094 -0.0996094 -0.200195 -0.199219 -0.200195 -0.299805c-0.899414 -2 -21.7002 -49.5 -68 -57.0996c-3.59961 -0.600586 -6.09961 -3.7998 -5.89941 -7.40039c0.699219 -13.8994 31.6992 -19.2998 45.5 -21.3994c1.39941 -1.90039 2.5 -9.90039 4.2998 -16
-c0.799805 -2.7002 2.89941 -6 8.2998 -6s13.2998 3.09961 25.7998 3.09961c17.6006 0 23.6006 -4 37.4004 -13.7002c9.89941 -7 27.5 -19.7998 48.5 -18.2002c20.7998 -0.899414 34.7002 7.90039 49.2002 18.2002c13.6992 9.7002 19.7998 13.7002 37.3994 13.7002
-c13 0 19.6006 -2.90039 25.7998 -2.90039h0.200195c4.40039 0 7 2.2002 8.10059 5.90039c1.7998 6.09961 2.89941 14 4.2998 15.9004c26.7002 4.19922 41.2998 10.0996 44.7998 18.1992z" />
-    <glyph glyph-name="snapchat-ghost" unicode="&#xf2ac;" horiz-adv-x="512" 
-d="M510.846 55.3271c-5.21094 -12.1572 -27.2383 -21.0889 -67.3594 -27.3184c-2.06445 -2.78613 -3.77539 -14.6855 -6.50781 -23.9561c-1.625 -5.56543 -5.62207 -8.86914 -12.1279 -8.86914l-0.296875 0.00585938c-9.39453 0 -19.2031 4.32227 -38.8516 4.32227
-c-26.5215 0 -35.6621 -6.04297 -56.2539 -20.5879c-21.832 -15.4375 -42.7715 -28.7637 -74.0273 -27.3984c-31.6455 -2.33398 -58.0244 16.9072 -72.8711 27.4033c-20.7139 14.6436 -29.8281 20.582 -56.2412 20.582c-18.8633 0 -30.7354 -4.71973 -38.8516 -4.71973
-c-8.07324 0 -11.2129 4.92188 -12.4219 9.04004c-2.70312 9.18848 -4.4043 21.2627 -6.52344 24.1299c-20.6787 3.20898 -67.3096 11.3438 -68.498 32.1504c-0.0107422 0.196289 -0.015625 0.393555 -0.015625 0.591797c0 5.27148 3.85645 9.64355 8.89258 10.4766
-c69.583 11.4551 100.925 82.9014 102.228 85.9346c0.0742188 0.175781 0.155273 0.34375 0.237305 0.514648c3.71289 7.53711 4.54395 13.8486 2.46289 18.7529c-5.05078 11.8965 -26.8721 16.1641 -36.0537 19.7959c-23.7148 9.36621 -27.0146 20.1279 -25.6113 27.5039
-c2.43652 12.8359 21.7246 20.7354 33.002 15.4531c8.91895 -4.18066 16.8428 -6.29688 23.5469 -6.29688c5.02148 0 8.21191 1.2041 9.95996 2.1709c-2.04297 35.9365 -7.10156 87.29 5.68652 115.969c33.7734 75.7188 105.356 81.6025 126.478 81.6025
-c0.943359 0 9.14062 0.0888672 10.1094 0.0888672c52.1484 0 102.255 -26.7803 126.724 -81.6426c12.7764 -28.6504 7.74902 -79.792 5.69434 -116.01c1.58203 -0.87207 4.35742 -1.94141 8.59961 -2.13867c6.39648 0.286133 13.8145 2.38867 22.0693 6.25684
-c6.08496 2.84668 14.4053 2.46094 20.4795 -0.0576172l0.0292969 -0.00976562c9.47559 -3.38574 15.4385 -10.2158 15.5889 -17.8701c0.183594 -9.74707 -8.52246 -18.165 -25.8779 -25.0186c-2.11816 -0.834961 -4.69434 -1.6543 -7.43457 -2.52441
-c-9.79688 -3.10645 -24.5996 -7.80566 -28.6152 -17.2715c-2.0791 -4.9043 -1.25684 -11.2109 2.45996 -18.748c0.0869141 -0.167969 0.166016 -0.341797 0.238281 -0.514648c1.30176 -3.03027 32.6152 -74.46 102.23 -85.9346
-c6.42676 -1.05762 11.1631 -7.87695 7.72461 -15.8584z" />
-    <glyph glyph-name="snapchat-square" unicode="&#xf2ad;" 
-d="M400 416c26.5 0 48 -21.5 48 -48v-352c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h352zM393.5 101.1c2.2002 5.30078 -0.900391 9.80078 -4.90039 10.8008c-46.2998 7.59961 -67.0996 55.0996 -68 57.0996
-c-0.0996094 0.0996094 -0.0996094 0.200195 -0.199219 0.299805c-2.40039 5 -3 9.2002 -1.60059 12.5c2.60059 6.2998 12.5 9.40039 19 11.5c1.7998 0.600586 3.5 1.10059 4.90039 1.7002c11.5 4.5 17.2998 10.0996 17.2002 16.5996
-c-0.100586 5.10059 -4.10059 9.60059 -10.4004 11.9004c-4 1.59961 -9.59961 1.90039 -13.5996 0c-5.5 -2.59961 -10.4004 -4 -14.7002 -4.2002c-2.7998 0.100586 -4.60059 0.799805 -5.7002 1.40039c1.40039 24 4.7002 58 -3.7998 77.0996
-c-16.2998 36.5 -49.6006 54.2998 -84.2998 54.2998c-0.600586 0 -6.10059 -0.0996094 -6.7002 -0.0996094c-14 0 -61.6006 -4 -84.1006 -54.2998c-8.5 -19.1006 -5.19922 -53.2002 -3.7998 -77.1006c-1.09961 -0.599609 -3.2998 -1.39941 -6.59961 -1.39941
-c-4.5 0 -9.7998 1.39941 -15.7002 4.2002c-7.5 3.5 -20.2998 -1.80078 -21.9004 -10.3008c-1 -4.89941 1.2002 -12.0996 17 -18.2998c6.10059 -2.5 20.6006 -5.2998 24 -13.2002c1.40039 -3.2998 0.900391 -7.5 -1.59961 -12.5
-c-0.0996094 -0.0996094 -0.200195 -0.199219 -0.200195 -0.299805c-0.899414 -2 -21.7002 -49.5 -68 -57.0996c-3.59961 -0.600586 -6.09961 -3.7998 -5.89941 -7.40039c0.699219 -13.8994 31.6992 -19.2998 45.5 -21.3994c1.39941 -1.90039 2.5 -9.90039 4.2998 -16
-c0.799805 -2.7002 2.89941 -6 8.2998 -6s13.2998 3.09961 25.7998 3.09961c17.6006 0 23.6006 -4 37.4004 -13.7002c9.89941 -7 27.5 -19.7998 48.5 -18.2002c20.7998 -0.899414 34.7002 7.90039 49.2002 18.2002c13.6992 9.7002 19.7998 13.7002 37.3994 13.7002
-c13 0 19.6006 -2.90039 25.7998 -2.90039h0.200195c4.40039 0 7 2.2002 8.10059 5.90039c1.7998 6.09961 2.89941 14 4.2998 15.9004c26.7002 4.19922 41.2998 10.0996 44.7998 18.1992z" />
-    <glyph glyph-name="pied-piper" unicode="&#xf2ae;" horiz-adv-x="480" 
-d="M455.93 424.8c9.41992 2.40039 15.0703 -10.25 6.99023 -15.6797c-98.2295 -65.9199 -120.439 -127.561 -126.229 -160.18c-33.5205 -188.881 -101.37 -119.32 -184.311 -226.65c25.7607 -14.8125 55.8076 -23.3984 87.6299 -23.4004
-c97.6504 0 177.09 79.4502 177.09 177.11c-0.00488281 45.0508 -16.9824 86.25 -44.8496 117.41c4.72754 9.75293 10.4238 18.9131 17 27.3994c36.3574 -37.3457 58.75 -88.3779 58.75 -144.564v-0.245117c0 -114.87 -93.1299 -208 -208 -208s-208 93.1201 -208 208
-s93.1299 208 208 208c36.7422 -0.000976562 71.4697 -9.77246 101.35 -26.6602c46.4404 38.9697 87.8809 60.6602 114.58 67.46zM125 41.5996c64.7695 140.881 125.64 231.641 191.63 293.75c-23.0674 11.3037 -49.1611 17.75 -76.5615 17.75h-0.0683594
-c-97.6504 0 -177.1 -79.4395 -177.1 -177.1c0.0234375 -53.8203 24.0684 -102.002 62.0996 -134.4z" />
-    <glyph glyph-name="first-order" unicode="&#xf2b0;" 
-d="M12.9004 218.8c0.0996094 0.100586 0.199219 0.299805 0.299805 0.400391c0 -0.100586 0 -0.299805 -0.100586 -0.400391h-0.199219zM224 351.4c7.40039 0 14.5996 -0.5 21.7002 -1.7002l-4 -67.7002l22.2998 64.2998c14.2998 -3.7998 27.7002 -9.5 40 -16.8994
-l-29.4004 -61.1006l45.1006 50.9004c11.5 -8.90039 21.7002 -19.2002 30.5996 -30.9004l-50.5996 -45.3994l60.8994 29.6992c7.5 -12.2998 12.9004 -26 16.6006 -40.2998l-64 -22.2998l67.7002 4c1.09961 -7.09961 1.39941 -14.5996 1.39941 -22
-s-0.299805 -14.5996 -1.39941 -21.7002l-67.4004 4l64 -22.2998c-3.7002 -14.5996 -9.5 -28 -16.5996 -40.2998l-61.1006 29.3994l50.6006 -45.0996c-8.60059 -11.7998 -18.9004 -22 -30.6006 -30.9004l-44.8994 50.9004l29.3994 -61.2998
-c-12.2998 -7.5 -25.7002 -12.9004 -40 -16.9004l-22.5996 65.1006l4 -68.6006c-7.10059 -1.09961 -14.2998 -1.7002 -21.7002 -1.7002c-7.09961 0 -14.5996 0.600586 -21.7002 1.7002l4 68l-22.2998 -64.5996c-14.2998 3.7998 -27.7002 9.5 -40 16.8994l29.5 61.4004
-l-44.9004 -50.9004c-11.7998 8.60059 -22 19.2002 -30.8994 30.9004l50.8994 45.0996l-61.0996 -29.6992c-7.2002 12.5996 -12.9004 26 -16.5996 40.2998l64 22.5996l-67.7002 -4c-0.799805 7.10059 -1.40039 14.2998 -1.40039 21.7002s0.5 14.9004 1.40039 22l68 -4
-l-64.2998 22.5996c3.69922 14.3008 9.5 27.7002 16.5996 40l61.0996 -29.6992l-50.5996 45.3994c8.90039 11.7998 19.2002 22 30.5996 30.9004l45.1006 -50.9004l-29.4004 61.4004c12.2998 7.2002 25.7002 12.8994 40 16.5996l22 -64l-3.7002 67.4004
-c6.80078 1.09961 14.3008 1.7002 21.4004 1.7002zM443.4 320v-256l-219.4 -128l-219.4 128v256l219.4 128zM426.3 309.7l-202.3 117.399l-202.3 -117.399v-235.101l202.3 -117.699l202.3 117.699v235.101zM224 410.9l187.7 -109.4v-218.9l-187.7 -109.5l-187.7 109.5
-v218.801zM224 360c-92.2998 0 -166.9 -75.0996 -166.9 -168c0 -92.5996 74.6006 -167.7 166.9 -167.7c92 0 166.9 75.1006 166.9 167.7c0 92.9004 -74.9004 168 -166.9 168z" />
-    <glyph glyph-name="yoast" unicode="&#xf2b1;" 
-d="M91.2998 372h186l-7 -18.9004h-179c-39.7002 0 -71.8994 -31.5996 -71.8994 -70.2998v-205.399c0 -35.4004 24.8994 -70.3008 84 -70.3008v-19.0996h-12.1006c-50.0996 0 -91.2998 40.2002 -91.2998 89.5v205.3c0 49.2998 40.7002 89.2002 91.2998 89.2002zM320.4 428
-h66.5c-143.801 -378.1 -145.7 -398.9 -184.7 -439.3c-20.7998 -21.6006 -49.2998 -31.7002 -78.2998 -32.7002v51.0996c49.1992 7.7002 64.5996 49.9004 64.5996 75.3008c0 20.0996 0.599609 12.5996 -82.0996 223.199h61.3994l50.4004 -156.6zM448 286.5v-298.5h-214
-c6.59961 9.59961 10.7002 16.2998 12.0996 19.4004h182.5v279.1c0 32.5 -17.0996 51.9004 -48.1992 62.9004l6.69922 17.5996c41.7002 -13.5996 60.9004 -43.0996 60.9004 -80.5z" />
-    <glyph glyph-name="themeisle" unicode="&#xf2b2;" horiz-adv-x="512" 
-d="M208 359.714c0 10 6.28613 21.7139 17.7148 21.7139c11.1426 0 17.7139 -11.7139 17.7139 -21.7139c0 -10.2852 -6.57129 -21.7139 -17.7139 -21.7139c-11.4287 0 -17.7148 11.4287 -17.7148 21.7139zM512 199.714c0 -36.001 -11.4287 -102.286 -36.2861 -129.714
-c-22.8574 -24.8584 -87.4277 -61.1426 -120.856 -70.5723l-1.14355 -0.286133v-32.5703c0 -16.2861 -12.5723 -30.5713 -29.1426 -30.5713c-10 0 -19.4297 5.71387 -24.5723 14.2861c-5.42676 -8.57227 -14.8564 -14.2861 -24.8564 -14.2861
-s-19.4287 5.71387 -24.8574 14.2861c-5.14258 -8.57227 -14.5713 -14.2861 -24.5703 -14.2861c-10.2861 0 -19.4287 5.71387 -24.8574 14.2861c-5.14355 -8.57227 -14.5713 -14.2861 -24.5713 -14.2861c-18.8574 0 -29.4287 15.7139 -29.4287 32.8574
-c-16.2861 -12.2852 -35.7158 -19.4287 -56.5713 -19.4287c-22 0 -43.4287 8.28516 -60.2861 22.8574c10.2852 0.286133 20.5713 2.28613 30.2852 5.71387c-20.8574 5.71387 -39.4277 18.8574 -52 36.2861c21.3701 -4.64551 46.209 -1.67285 67.1426 11.1426
-c-22 22 -56.5703 58.8574 -68.5713 87.4287c-5.71387 13.4287 -6.85645 31.4287 -6.85645 45.7139c0 49.7139 20.2861 160 86.2861 160c10.5713 0 18.8564 -4.8584 23.1426 -14.8574c3.7041 5.41992 7.6709 10.5186 12 15.4277c2 2.57227 5.71387 5.42969 7.14355 8.28613
-c7.99902 12.5713 11.7139 21.1426 21.7139 34c32.2852 41.1445 81.7139 69.4297 134.856 69.4297c6 0 12 -0.285156 17.7148 -1.14355c10.8564 11.7148 26 18.2861 41.7148 18.2861c14.5703 0 29.7139 -6 40 -16.2861c0.856445 -0.857422 1.42773 -2.28613 1.42773 -3.42773
-c0 -3.71387 -10.2852 -13.4287 -12.8574 -16.2861c4.28613 -1.42871 15.7148 -6.8584 15.7148 -12c0 -2.85742 -2.85742 -5.14258 -4.57129 -7.14258c31.4287 -27.7148 49.4287 -67.1436 56.2861 -108c4.28613 5.14258 10.2852 8.57129 17.1426 8.57129
-c10.5713 0 20.8574 -7.14355 28.5713 -14.001c20.8564 -18.5703 25.7139 -53.1416 25.7139 -79.7139zM188 358.572c0 -18.2861 12.5713 -37.1436 32.2861 -37.1436c19.7139 0 32.2852 18.8574 32.2852 37.1436c0 18 -12.5713 36.8564 -32.2852 36.8564
-c-19.7148 0 -32.2861 -18.8574 -32.2861 -36.8564zM237.714 254c0 19.7139 3.71387 39.1426 8.57129 58.2861c-52.0391 -79.5342 -13.5312 -184.571 68.8574 -184.571c21.4287 0 42.5713 7.71387 60 20c2 7.42871 3.71484 14.8574 3.71484 22.5723
-c0 14.2861 -6.28613 21.4277 -20.5723 21.4277c-4.57129 0 -9.14355 -0.856445 -13.4287 -1.71387c-63.3438 -12.668 -107.143 -3.66895 -107.143 63.999zM196.572 -0.858398c0 11.1436 -8.8584 20.8574 -20.2861 20.8574c-11.4287 0 -20 -9.71484 -20 -20.8574v-32.5703
-c0 -11.1436 8.57129 -21.1426 20 -21.1426c11.4277 0 20.2861 9.71484 20.2861 21.1426v32.5703zM245.715 -0.858398c0 11.1436 -8.57227 20.8574 -20 20.8574c-11.4287 0 -20.2861 -9.71484 -20.2861 -20.8574v-32.5703c0 -11.1436 8.85742 -21.1426 20.2861 -21.1426
-c11.4277 0 20 10 20 21.1426v32.5703zM295.428 -0.858398c0 11.1436 -8.85645 20.8574 -20.2852 20.8574s-20.2852 -9.71484 -20.2852 -20.8574v-32.5703c0 -11.1436 8.85645 -21.1426 20.2852 -21.1426s20.2852 9.71484 20.2852 21.1426v32.5703zM345.143 -0.858398
-c0 11.1436 -8.85645 20.8574 -20.2852 20.8574s-20.2861 -9.71484 -20.2861 -20.8574v-32.5703c0 -11.1436 8.85742 -21.1426 20.2861 -21.1426s20.2852 10 20.2852 21.1426v32.5703zM421.714 162c-30.8564 -59.1416 -90.2852 -102.572 -158.571 -102.572
-c-96.5703 0 -160.57 84.5723 -160.57 176.572c0 16.8574 2 33.4287 6 49.7139c-20 -33.7148 -29.7139 -72.5723 -29.7139 -111.429c0 -60.2861 24.8564 -121.715 71.4287 -160.857c5.14258 9.71387 14.8564 16.2861 26 16.2861c10 0 19.4277 -5.71387 24.5713 -14.2861
-c5.42871 8.57129 14.5703 14.2861 24.8574 14.2861c10 0 19.4277 -5.71387 24.5713 -14.2861c5.42871 8.57129 14.8564 14.2861 24.8574 14.2861c10 0 19.4287 -5.71387 24.8574 -14.2861c5.14258 8.57129 14.5713 14.2861 24.5723 14.2861
-c10.8564 0 20.8564 -6.57227 25.7139 -16c43.4268 36.2861 68.5693 92 71.4258 148.286zM432.286 261.714c0 53.7139 -34.5713 105.714 -92.5723 105.714c-30.2852 0 -58.5713 -15.1426 -78.8564 -36.8564c-19.9951 -66.3828 -27.4473 -136.571 41.4287 -136.571
-c28.8047 0 97.3564 28.5381 84.2861 -36.8574c28.8564 26 45.7139 65.7148 45.7139 104.571z" />
-    <glyph glyph-name="google-plus" unicode="&#xf2b3;" horiz-adv-x="512" 
-d="M256 440c136.9 0 248 -111.1 248 -248s-111.1 -248 -248 -248s-248 111.1 -248 248s111.1 248 248 248zM185.3 68c71.2998 0 118.8 50.4004 118.8 121.2c0.000976562 0.140625 0.00195312 0.182617 0.00195312 0.323242c0 6.96289 -0.65332 13.7744 -1.90137 20.377
-h-116.9v-42.6006h70.1006c-5.2002 -34.2002 -37.5 -53.2998 -70.1006 -53.2998c-43 0 -77.2002 35.5 -77.2002 78.0996c0 42.6006 34.3008 78.1006 77.2002 78.1006c18.1006 0 36.2002 -6.2002 49.4004 -19.1006l33.5996 32.6006
-c-22.8994 21.2998 -51.7002 32.2998 -83 32.2998c-68.4375 0 -124 -55.5625 -124 -124s55.5625 -124 124 -124zM415.5 174.2h35.2002v35.5h-35.2002v35.5h-35.5v-35.5h-35.5v-35.5h35.5v-35.5h35.5v35.5z" />
-    <glyph glyph-name="font-awesome" unicode="&#xf2b4;" 
-d="M397.8 416c27.5 0 50.2002 -22.7002 50.2002 -50.2002v-347.6c0 -27.5 -22.7002 -50.2002 -50.2002 -50.2002h-347.6c-27.5 0 -50.2002 22.7002 -50.2002 50.2002v347.6c0 27.5 22.7002 50.2002 50.2002 50.2002h347.6zM352.4 131.7h0.0996094v140.3
-c0 4.2002 -4.2002 7.7998 -9 7.7998c-6 0 -31.0996 -16.0996 -53.7998 -16.0996c-4.7002 0 -8.90039 0.599609 -13.1006 2.39941c-20.2998 7.7002 -38.1992 13.7002 -60.8994 13.7002c-20.9004 0 -43 -6.5 -61.5 -14.2998
-c-1.7998 -1.2002 -3.60059 -1.7998 -5.40039 -2.40039v18.5c8.2998 6 13.1006 15.5 13.1006 26.3008c0 18.5996 -15 33.5 -33.5 33.5c-18.6006 0 -33.5 -15 -33.5 -33.5c0 -10.8008 5.2998 -20.3008 13.0996 -26.3008v-218.6c0 -11.2998 9 -20.2998 20.2998 -20.2998
-c8.90039 0 16.7002 5.89941 19.1006 14.2998v1.2002c0.599609 1.2002 0.599609 3 0.599609 4.7998v45.4004c1.2002 0.599609 2.40039 0.599609 3.59961 1.19922c19.7002 8.90039 44.2002 17.3008 67.5 17.3008c32.3008 0 44.8008 -16.7002 71.7002 -16.7002
-c19.2002 0 37.1006 6.5 53.7998 13.7002c4.2002 1.7998 7.80078 3.59961 7.80078 7.7998z" />
-    <glyph glyph-name="linode" unicode="&#xf2b8;" 
-d="M437.4 221.7c0.599609 -2 -8.80078 -66.2998 -9.7002 -72.7998c0 -0.900391 -0.5 -1.7002 -1.10059 -2l-54.5996 -43.7002c-1.09961 -0.900391 -2.59961 -0.900391 -3.7002 0l-20.2998 14l-2.2998 -33.4004c0 -0.899414 -0.200195 -1.7002 -1.10059 -2.2998
-l-66.8994 -53.4004c-1.10059 -0.899414 -2.90039 -0.899414 -4 0l-28 23.7002l2 -46c0 -0.899414 -0.200195 -1.7002 -1.10059 -2.2998l-83.6992 -66.9004c-0.600586 -0.299805 -1.10059 -0.599609 -1.7002 -0.599609c-0.900391 0.299805 -1.7002 0.299805 -2.2998 0.900391
-l-65.1006 69.0996c-1.5 1.40039 -15.5 72 -16.8994 79.0996c-0.300781 1.10059 0.5 2.5 1.39941 3.10059l17.4004 10.5996c-3.40039 3.2002 -26.5 23.4004 -27.1006 26.2998l-20.5996 100.301c-0.299805 1.09961 0.299805 2.5 1.7002 3.39941l26.8994 12.9004
-c-4.59961 3.5 -37.6992 27.5 -38.5996 30.8994l-27.4004 133.101c-0.299805 1.7002 0.600586 3.09961 2 3.7002l123.7 38.5996c0.600586 0 1.40039 0 2.2998 -0.299805l90.6006 -43.7002c0.799805 -0.599609 1.7002 -1.7002 1.7002 -2.59961l5.69922 -132.301
-c0 -1.19922 -0.599609 -2.2998 -1.69922 -2.89941l-33.7002 -17.4004l36 -24.2998c0.799805 -0.299805 1.39941 -1.40039 1.39941 -2.2998l1.40039 -35.1006l34.5996 21.2002c0.800781 0.600586 2.2002 0.600586 3.10059 0l24 -16l0.899414 31.4004
-c0 0.899414 0.5 2 1.40039 2.59961l58.9004 36c1.09961 0.600586 2.19922 0.600586 3.09961 0l70 -38.5996c0.5 -0.600586 1.09961 -1.10059 1.40039 -2zM232.6 216.9l-100.6 -57.2002l14 -96.6006l90.5996 61.2002zM224.9 396.9l-120.9 -46.6006l19.7002 -134.8
-l106.6 55.4004zM44 274.9l73.0996 -57.2002l-19.3994 132.899l-79.7002 49.4004zM74.5996 127.1l64.8008 -60.7998l-13.7002 93.4004l-70 58.2998zM98.9004 9.40039l57.6992 -61.2002l-9.69922 67.3994l-61.7002 60.9004zM163.4 -55.0996l78.1992 62.2998l-3.09961 70
-l-85.7002 -61.4004zM245.4 60l27.0996 -22.9004l-0.599609 68.3008l-29.4004 22.5996c0 -2.2998 1.2002 -6.2998 -1.09961 -8l-22.3008 -14.9004l24.3008 -20c2.89941 -2.19922 2 -21.6992 2 -25.0996zM339.7 85.4004l4.2002 66.8994l-65.7002 -46.8994l0.599609 -68.6006z
-M367.4 111.1l5.7998 66.6006l-64.6006 40.5996l-0.599609 -30l41.2002 -27.2002c0.799805 -0.599609 1.39941 -1.69922 1.09961 -2.59961l-2 -34zM422 150.9l8.5 63.3994l-51.0996 -36.5996l-5.7002 -65.1006z" />
-    <glyph glyph-name="quora" unicode="&#xf2c4;" 
-d="M440.5 61.2998c1.7998 -18 -7.2002 -93.2998 -89 -93.2998c-49.5 0 -75.5 28.7002 -95.2002 62.2998c-117.7 -32.5996 -249 54.9004 -249 189c0 117 98 196.7 197.7 196.7c101.8 0 198.5 -79.2002 198.4 -196.7c0 -65.5 -30.5 -118.8 -74.7002 -153
-c14.2002 -21.5996 29 -35.7998 49.5 -35.7998c22.5 0 31.5 17.2998 33 30.7998h29.2998zM297 118.8c11.2998 24.9004 16.7998 58.7002 16.7002 100.5c0 104.2 -32.5 157.7 -108.7 157.7c-75 0 -107.5 -53.5 -107.5 -157.9c0 -103.699 32.5 -156.699 107.5 -156.699
-c12 0 22.7002 1.19922 32.7002 4.19922c-15.5 30.5 -33.7002 61.3008 -69.2002 61.3008c-6.7998 0 -13.5996 -1 -19.7998 -4l-12.2002 24.2998c14.7002 12.7998 38.5 22.7998 69 22.7998c47.7998 0 72 -23 91.5 -52.2002z" />
-    <glyph glyph-name="free-code-camp" unicode="&#xf2c5;" horiz-adv-x="576" 
-d="M97.2197 351.79c-43.2197 -41.6201 -64.9697 -92.5898 -64.8193 -154.021c0.15918 -68 23.0293 -122.67 67.4795 -165c9.33984 -8.34961 13.2002 -14.9199 13.2002 -20.5498c0 -2.75 -1.90039 -5.62012 -3.81055 -8.37988
-c-2.19141 -2.1543 -5.12598 -3.56836 -8.36914 -3.83984c-10.2803 0 -24.6807 12.1396 -43.4707 35.79c-36.5898 44.8701 -53.1992 94.3398 -54.0596 161.87s20.3096 113.34 61.79 160.6c14.9199 16.9004 27.3594 25.6904 35.8398 25.6904
-c3.12402 -0.0712891 6.03027 -1.11914 8.38965 -2.83984c1.91016 -1.91016 3.83008 -4.66016 3.83008 -7.41992c0 -4.78027 -5.63965 -11.25 -16 -21.9004zM239.47 27.9297c0.580078 -0.370117 0.910156 -0.549805 0.910156 -0.549805zM333.26 27.3799l0.169922 0.129883
-c-0.189453 -0.129883 -0.259766 -0.179688 -0.169922 -0.129883zM336.39 185.56c16.2305 -4.14941 24.04 24.04 30.0303 30.0508c84.71 -110.101 -27.5098 -184.45 -33 -188.101c3.86035 3.04004 44.3301 49.7705 21.5801 76.5498
-c-1 1.03027 -67.2998 -20.0596 -54.8398 53.54c8.30957 48.6807 -7.60059 71.1309 -7.60059 71.1309c-17.9697 -37.29 -32.5 -53.8604 -43.5 -72.1602c-56.9492 -92.9404 -16.2793 -124.29 -9.5498 -128.641c-10.54 6.5 -108.27 70.8799 -34 175.23
-c78.3701 110.189 62.8301 159.57 62.8301 159.57c118.46 -94.2803 51.8105 -173.021 68.0498 -177.171zM510.88 358.31c41.4404 -47.3096 62.6699 -93.1592 61.75 -160.649s-17.4697 -117.021 -54.0596 -161.87c-18.79 -23.6602 -33.1904 -35.79 -43.4707 -35.79
-c-3.24219 0.279297 -6.17676 1.69629 -8.36914 3.84961c-1.91016 2.76074 -3.81055 5.63086 -3.81055 8.38086c0.0205078 5.62988 3.86035 12.1992 13.2002 20.5498c44.4795 42.3701 67.3203 97 67.4795 165c0.180664 61.4697 -21.5898 112.45 -64.8193 154.06
-c-10.4004 10.6406 -16 17.1201 -16 21.9004c0 2.75977 1.91992 5.50977 3.83008 7.41992c2.35938 1.7207 5.26562 2.76855 8.38965 2.83984c8.51953 0 21 -8.79004 35.8799 -25.6904z" />
-    <glyph glyph-name="telegram" unicode="&#xf2c6;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM369.8 270.1c3.60059 16.8008 -6.09961 23.5 -17.2002 19.5l-239.1 -92.1992c-16.4004 -6.40039 -16.0996 -15.5 -2.7998 -19.7002l61.2002 -19.1006l142 89.4004
-c6.59961 4.40039 12.6992 1.90039 7.69922 -2.5l-114.899 -103.8l-4.40039 -63.1006c6.40039 0 9.2002 2.80078 12.5 6.10059l29.9004 28.7998l62 -45.7002c11.2998 -6.39941 19.3994 -3.09961 22.3994 10.5z" />
-    <glyph glyph-name="bandcamp" unicode="&#xf2d5;" horiz-adv-x="512" 
-d="M256 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM304.2 113.9l84.7002 156.1h-181l-84.7002 -156.1h181z" />
-    <glyph glyph-name="grav" unicode="&#xf2d6;" horiz-adv-x="512" 
-d="M301.1 236c4.40039 -4.40039 4.40039 -11.9004 0 -16.2998l-9.69922 -9.7002c-4.40039 -4.7002 -11.9004 -4.7002 -16.6006 0l-10.5 10.5c-4.39941 4.7002 -4.39941 11.9004 0 16.5996l9.7002 9.7002c4.40039 4.40039 11.9004 4.40039 16.5996 0zM270.9 255.7
-c-2.7002 -2.7998 -7.40039 -2.7998 -10.5 0c-2.80078 3 -2.80078 7.7002 0 10.5c3 3 7.69922 3 10.5 0c3 -2.7002 3 -7.5 0 -10.5zM244.9 250.4c2.7998 3 7.5 3 10.5 0c2.7998 -2.7002 2.7998 -7.40039 0 -10.2002c-3 -3 -7.7002 -3 -10.5 0c-3 2.7002 -3 7.39941 0 10.2002
-zM317.4 263.7c-19.9004 14.3994 -33.8008 43.2002 -11.9004 68.0996c21.5996 24.9004 40.7002 17.2002 59.7998 -0.799805c11.9004 -11.2998 29.2998 -24.9004 17.2002 -48.2002c-12.5 -23.5 -45.0996 -33.2002 -65.0996 -19.0996zM365.1 308.2
-c-8.89941 10 -23.2998 -6.90039 -15.5 -16.1006c7.40039 -9 32.1006 -2.39941 15.5 16.1006zM504 192c0 -137 -111 -248 -248 -248s-248 111 -248 248s111 248 248 248s248 -111 248 -248zM437.8 149.4c2.5 16.0996 -20.2002 16.5996 -25.2002 25.6992
-c-13.5996 24.1006 -27.6992 36.8008 -54.5 30.4004c11.6006 8 23.5 6.09961 23.5 6.09961c0.300781 6.40039 0 13 -9.39941 24.9004c3.89941 12.5 0.299805 22.4004 0.299805 22.4004c15.5 8.59961 26.7998 24.3994 29.0996 43.1992
-c3.60059 31 -18.7998 59.2002 -49.7998 62.8008c-22.0996 2.5 -43.7002 -7.7002 -54.2998 -25.7002c-23.2002 -40.1006 1.40039 -70.9004 22.4004 -81.4004c-14.4004 1.40039 -34.3008 11.9004 -40.1006 34.2998c-6.59961 25.7002 2.7998 49.8008 8.90039 61.4004
-c0 0 -4.40039 5.7998 -8 8.90039c0 0 -13.7998 0 -24.6006 -5.30078c11.9004 15.2002 25.2002 14.4004 25.2002 14.4004c0 6.40039 -0.599609 14.9004 -3.59961 21.5996c-5.40039 11 -23.7998 12.9004 -31.7002 -2.7998c0.0996094 0.200195 0.299805 0.400391 0.400391 0.5
-c-5 -11.8994 -1.10059 -55.8994 16.8994 -87.2002c-2.5 -1.39941 -9.09961 -6.09961 -13 -10c-21.5996 -9.69922 -56.2002 -60.2998 -56.2002 -60.2998c-28.1992 -10.7998 -77.1992 -50.8994 -70.5996 -79.7002c0.299805 -3 1.40039 -5.5 3 -7.5
-c-2.7998 -2.19922 -5.5 -5 -8.2998 -8.2998c-11.9004 -13.7998 -5.2998 -35.2002 17.7002 -24.3994c15.7998 7.19922 29.5996 20.1992 36.2998 30.3994c0 0 -5.5 5 -16.2998 4.40039c27.6992 6.59961 34.2998 9.39941 46.1992 9.09961c8 -3.89941 8 34.2998 8 34.2998
-c0 14.7002 -2.19922 31 -11.0996 41.5c12.5 -12.1992 29.0996 -32.6992 28 -60.5996c-0.799805 -18.2998 -15.2002 -23 -15.2002 -23c-9.09961 -16.5996 -43.2002 -65.9004 -30.3994 -106c0 0 -9.7002 14.9004 -10.2002 22.0996
-c-17.4004 -19.3994 -46.5 -52.2998 -24.6006 -64.5c26.6006 -14.6992 108.801 88.6006 126.2 142.301c34.6006 20.7998 55.4004 47.2998 63.9004 65c22 -43.5 95.2998 -94.5 101.1 -59z" />
-    <glyph glyph-name="etsy" unicode="&#xf2d7;" horiz-adv-x="384" 
-d="M384 100c-1.75 -10.75 -13.75 -110 -15.5 -132c-117.879 4.29883 -219.895 4.74316 -368.5 0v25.5c45.457 8.94824 60.627 8.01855 61 35.25c1.79297 72.3223 3.52441 244.143 0 322c-1.0293 28.46 -12.1299 26.7646 -61 36v25.5
-c73.8857 -2.3584 255.933 -8.55078 362.999 3.75c-3.5 -38.25 -7.75 -126.5 -7.75 -126.5h-23.249c-11.0527 42.835 -18.7588 90.5 -54.75 90.5h-137c-10.25 0 -10.75 -3.5 -10.75 -9.75v-163.75c58 -0.5 88.5 2.5 88.5 2.5c29.7695 0.951172 27.5596 8.50195 40.75 65.251
-h25.75c-4.40723 -101.351 -3.91016 -61.8291 -1.75 -160.25h-25.75c-9.15527 40.0859 -9.06543 61.0449 -39.501 61.5c0 0 -21.5 2 -88 2v-139c0 -26 14.25 -38.25 44.25 -38.25h89.251c63.6357 0 66.5645 24.9961 98.751 99.75h22.249v-0.000976562z" />
-    <glyph glyph-name="imdb" unicode="&#xf2d8;" 
-d="M400 416c26.5 0 48 -21.5 48 -48v-352c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h352zM21.2998 218.8h-0.299805c0.0996094 0.100586 0.200195 0.299805 0.299805 0.400391v-0.400391zM97 128.2v127.8h-33v-127.8h33z
-M210.2 128.2v127.8h-43l-7.60059 -59.9004c-2.69922 20 -5.39941 40.1006 -8.69922 59.9004h-42.8008v-127.8h29v84.5l12.2002 -84.5h20.6006l11.5996 86.3994v-86.3994h28.7002zM221.6 128.2c86.1006 -0.100586 75 -6 75 82.5c0 8.09961 0.300781 16.7998 -1.39941 24.3994
-c-4.2998 22.5 -31.4004 20.9004 -49 20.9004h-24.6006v-127.8zM382.5 157.4v36c0 17.2998 -0.799805 30.0996 -22.2002 30.0996c-8.89941 0 -14.8994 -2.7002 -20.8994 -9.2002v41.7002h-31.7002v-127.8h29.7998l1.90039 8.09961
-c5.69922 -6.7998 11.8994 -9.7998 20.8994 -9.7998c19.7998 0 22.2002 15.2002 22.2002 30.9004zM265 218.1v-49.2998c0 -9.7002 1.90039 -18.7002 -10.2998 -18.3994v83.6992c11.8994 0 10.2998 -6.2998 10.2998 -16zM350.5 192v-32.7002
-c0 -5.39941 1.59961 -14.3994 -6.2002 -14.3994c-1.59961 0 -3 0.799805 -3.7998 2.39941c-2.2002 5.10059 -1.09961 44.1006 -1.09961 44.7002c0 3.7998 -1.10059 12.7002 4.89941 12.7002c7.2998 0 6.2002 -7.2998 6.2002 -12.7002z" />
-    <glyph glyph-name="ravelry" unicode="&#xf2d9;" horiz-adv-x="512" 
-d="M498.252 213.777c0.129883 -0.613281 0.322266 -1.21777 0.561523 -1.78223v-37.0557c-0.194336 -0.300781 -0.516602 -0.583008 -0.552734 -0.900391c-0.619141 -5.36426 -0.837891 -10.8076 -1.87012 -16.0869c-2.06934 -10.6074 -4.15723 -21.2393 -7.0166 -31.6523
-c-4.94531 -18.0205 -12.7578 -34.8809 -22.2998 -50.9258c-8.94336 -15.126 -19.4043 -28.9668 -31.4268 -41.6387c-3.74609 -3.92188 -7.54688 -7.80078 -11.5107 -11.5c-5.31152 -4.95703 -10.5146 -10.1094 -16.2998 -14.457
-c-9.3418 -7.02344 -18.9883 -13.6533 -28.7373 -20.1006c-15.083 -9.81543 -31.6211 -17.9053 -48.9512 -23.8174c-15.3828 -5.38281 -31.1533 -9.38574 -47.4893 -10.7178c-2.52734 -0.206055 -5.02051 -0.753906 -7.52734 -1.14258h-32.2891
-c-0.358398 0.245117 -0.762695 0.436523 -1.18945 0.55957c-6.1377 0.620117 -12.3418 0.863281 -18.4121 1.87305c-13.8301 2.22949 -27.5977 5.58398 -40.6416 9.83496c-19.5498 6.43359 -38.4463 15.0176 -55.8994 25.2773
-c-15.0488 8.79004 -28.9365 18.9688 -41.7871 30.5859c-9.6875 8.70605 -18.3936 18.0898 -26.3584 28.416c-9.38184 12.1963 -17.4385 25.4316 -24 39.5283c-7.5918 16.6592 -13.3467 34.7812 -16.7295 53.2998c-2.35547 13.1611 -3.85059 26.5459 -4.4248 40.2402
-c-0.136719 3.0332 -0.209961 5.74121 -0.209961 8.80859c0 9.05566 0.599609 17.9717 1.76172 26.7119c1.52637 11.874 4.15625 23.6367 7.69043 34.7588c5.05762 15.7021 12.0283 30.7871 20.4941 44.6006c9.58203 15.9961 20.7793 30.6025 33.6484 43.9502
-c9.55469 9.83496 19.7539 19.0605 29.9268 28.2676c5.70605 5.1582 11.8066 9.9082 17.9736 14.5186c12.0029 9.04004 24.6963 17.1025 38.0801 24.1572c12.5137 6.63281 25.9795 12.1963 39.7686 16.3555c10.9453 3.41016 22.5254 5.84375 34.2559 7.09961
-c2.42773 0.225586 4.82617 0.761719 7.23633 1.15039c10.7627 -0.00195312 21.5254 0 32.2881 0.00585938c0.299805 -0.195312 0.583984 -0.516602 0.899414 -0.552734c6.87793 -0.81543 13.8467 -1.16797 20.627 -2.48242
-c11.2432 -2.18359 22.4971 -4.51465 33.5156 -7.61523c19.999 -5.78125 39.2266 -14.2031 56.7227 -24.668c17.2832 -10.0947 32.9639 -22.1357 47.1133 -36.1152c6.71973 -6.90527 12.9209 -14.0508 18.8174 -21.6895c13.4639 -16.959 24.0283 -36.4561 30.874 -57.5
-c3.88867 -11.8086 7.16211 -24.2148 9.62207 -36.5996c2.0459 -10.1748 2.53809 -20.6602 3.74609 -31zM337.135 214.927l0.00488281 67.2695c-35.2686 0 -53.1152 -9.36719 -62.04 -36.1895v31.9316h-73.5176v-190.738h73.5127v93.667
-c0 22.1396 6.37012 37.04 33.5703 37.04c11.8984 0 28.4697 -2.98047 28.4697 -2.98047z" />
-    <glyph glyph-name="sellcast" unicode="&#xf2da;" 
-d="M353.4 416c52.0996 0 94.6992 -42.5996 94.6992 -94.5996v-258.801c0 -52 -42.5996 -94.5996 -94.6992 -94.5996h-258.7c-52.1006 0 -94.7002 42.5996 -94.7002 94.7002v258.7c0 52 42.5996 94.5996 94.7002 94.5996h258.7zM303.4 99.5996
-c27.8994 48.2002 11.1992 110.5 -37.2002 138.5c-18.6006 10.8008 0.0996094 -0.0996094 -18.5 10.7002c-25 14.4004 -46.2002 -23.2998 -21.6006 -37.5c18 -10.2002 0.800781 -0.399414 18.6006 -10.5996c27.5996 -16 37.2002 -51.7998 21.2998 -79.4004
-c-16 -27.5996 -51.7998 -37.2002 -79.4004 -21.2998c-18.5996 10.7998 0.100586 -0.0996094 -18.5 10.7002c-10.2998 6 -23.5996 2.39941 -29.5 -7.90039l-15.6992 -27.2002c-12.6006 -21.7998 19.3994 -53 42.2998 -13.1992c48.2998 -27.7002 110.3 -11 138.2 37.1992z
-M325.2 308.4c14.2998 24.7998 -23.4004 46.3994 -37.7002 21.5l-4.7998 -8.40039c-48.2998 27.7002 -110.3 11 -138.2 -37.2002c-27.7998 -48.2998 -11.0996 -110.6 37.0996 -138.399c18.6006 -10.8008 -0.0996094 0.0996094 18.5 -10.7002
-c25 -14.4004 46.2002 23.2998 21.6006 37.5c-0.100586 0 -18.6006 10.5996 -18.6006 10.5996c-27.5996 16 -37.2998 51.7998 -21.2998 79.4004c16 27.5996 51.7998 37.2002 79.4004 21.2998c18.5996 -10.7998 -0.100586 0.0996094 18.5 -10.7002
-c10.2002 -5.09961 20 -2.89941 26.5 3.60059c2.7002 2.69922 2 2 19 31.5z" />
-    <glyph glyph-name="superpowers" unicode="&#xf2dd;" 
-d="M448 416l-87.2002 -87c39.7002 -38.7002 61.2002 -92.7002 57.7002 -148.2c-5.40039 -93 -76.9004 -167.3 -168.7 -179.8c-83.2998 -11 -166.5 -22 -249.8 -33l86.7998 86.7998c-39.7998 38.7002 -61.0996 92.7002 -57.7998 148.2c5.7002 93.2998 77 167.5 169 180
-c83.2002 11 166.7 22 250 33zM368.3 183.7c4.40039 80 -56.7998 146.3 -136.1 151c-78.7002 4.7998 -148.5 -55.2998 -153 -134.5c-4.40039 -80 56.7998 -146.3 136.3 -151c78.7998 -4.7002 148.6 55 152.8 134.5z" />
-    <glyph glyph-name="wpexplorer" unicode="&#xf2de;" horiz-adv-x="512" 
-d="M512 192c0 -141.2 -114.7 -256 -256 -256c-141.2 0 -256 114.7 -256 256s114.7 256 256 256s256 -114.7 256 -256zM480 192c0 123.2 -100.3 224 -224 224c-123.5 0 -224 -100.5 -224 -224s100.5 -224 224 -224s224 100.5 224 224zM160.9 323.4l86.8994 -37.1006
-l-37.0996 -86.8994l-86.9004 37.0996zM270.9 154.3l46.5996 -94h-14.5996l-50 100l-48.9004 -100h-14l51.0996 106.9l-22.2998 9.39941l6 14l68.6006 -29.0996l-6 -14.2998zM259.1 270.6l68.6006 -29.3994l-29.4004 -68.2998l-68.2998 29.0996zM339.4 227.7
-l54.5996 -23.1006l-23.4004 -54.2998l-54.2998 23.1006z" />
-    <glyph glyph-name="meetup" unicode="&#xf2e0;" horiz-adv-x="512" 
-d="M99 33.7002c1.09961 -5.7002 -2.2998 -11.1006 -8 -12.2998c-5.40039 -1.10059 -10.9004 2.2998 -12 8c-1.09961 5.39941 2.2998 11.0996 7.7002 12.2998c5.39941 1.2002 11.0996 -2.2998 12.2998 -8zM242.1 -37.7002c6.60059 4.60059 15.5 2.7998 19.7002 -3.7002
-c4.60059 -6.59961 2.90039 -15.3994 -3.39941 -20c-6.60059 -4.59961 -15.4004 -2.89941 -20 3.7002c-4.30078 6.60059 -2.60059 15.4004 3.69922 20zM156.1 424.6c-6.2998 -1.5 -12.5 2.5 -13.8994 9.10059c-1.2002 6.2998 2.7998 12.5996 9.09961 14
-c6.2998 1.5 12.6006 -2.5 13.7002 -9.10059c1.40039 -6.2998 -2.59961 -12.5996 -8.90039 -14zM34.4004 221.7c10 -7.10059 12.5996 -20.7998 5.69922 -31.2002c-6.89941 -10.2998 -20.5996 -12.7998 -30.5996 -5.7002c-10 6.90039 -12.5996 20.9004 -5.7002 30.9004
-c6.90039 10.2998 20.6006 12.8994 30.6006 6zM306.4 392.6c-10.3008 -6.2998 -23.7002 -2.89941 -29.7002 7.40039c-6.2998 10.5996 -2.90039 24.2998 7.39941 30.5996c10.3008 6.30078 23.7002 2.90039 30 -7.69922c6 -10.3008 2.90039 -24 -7.69922 -30.3008zM115.3 334.6
-c-7.5 -5.19922 -18 -3.5 -23.0996 4.30078c-5.10059 7.69922 -3.40039 18.2998 4.2998 23.6992c7.40039 5.10059 18 3.40039 23.0996 -4.2998c5.10059 -7.7002 3.40039 -18.2998 -4.2998 -23.7002zM487.6 178.6c7.40039 1.40039 14.8008 -3.5 16.3008 -10.8994
-c1.69922 -7.7002 -3.2002 -15.2002 -10.6006 -16.6006c-7.39941 -1.69922 -14.8994 3.2002 -16.2998 10.6006c-1.7002 7.7998 3.2002 15.2002 10.5996 16.8994zM527.3 235.4c1.40039 -5.7002 -2.2998 -11.1006 -7.7002 -12.6006
-c-5.69922 -1.09961 -11.1992 2.60059 -12.2998 8c-1.09961 5.7002 2.2998 11.5 8 12.6006c5.40039 1.09961 10.9004 -2.30078 12 -8zM447 309.1c8.2998 6 20 3.80078 25.7002 -4.89941c5.7002 -8.60059 3.7002 -20.2998 -4.60059 -26.2998
-c-8.59961 -5.7002 -20.2998 -3.7002 -26 4.89941c-5.69922 8.60059 -3.69922 20.2998 4.90039 26.2998zM440.7 169.7c26.2998 -43.1006 15.0996 -100 -26.2998 -129.101c-17.4004 -12.2998 -37.1006 -17.6992 -56.9004 -17.0996
-c-12 -47.0996 -69.4004 -64.5996 -105.1 -32.5996c-1.10059 -0.900391 -2.60059 -1.7002 -3.7002 -2.90039c-39.1006 -27.0996 -92.2998 -17.4004 -119.4 22.2998c-9.7002 14.2998 -14.5996 30.6006 -15.0996 46.9004c-65.4004 10.8994 -90 94 -41.1006 139.7
-c-28.2998 46.8994 0.600586 107.399 53.4004 114.899c25.0996 66.2002 107.6 97.6006 163.6 54.2002c67.4004 22.2998 136.301 -29.4004 130.9 -101.1c41.0996 -12.6006 52.7998 -66.9004 19.7002 -95.2002zM370.7 95.4004
-c-3.10059 20.5996 -40.9004 4.59961 -43.1006 27.0996c-3.09961 32 43.7002 101.1 40 128c-3.39941 24 -19.3994 29.0996 -33.3994 29.4004c-13.4004 0.299805 -16.9004 -2 -21.4004 -4.60059c-2.89941 -1.7002 -6.59961 -4.89941 -11.7002 0.299805
-c-6.2998 6 -11.0996 11.7002 -19.3994 12.9004c-12.2998 2 -17.7002 -2 -26.6006 -9.7002c-3.39941 -2.89941 -12 -12.8994 -20 -9.09961c-3.39941 1.7002 -15.3994 7.7002 -24 11.3994c-16.2998 7.10059 -40 -4.59961 -48.5996 -20
-c-12.9004 -22.8994 -38 -113.1 -41.7002 -125.1c-8.59961 -26.5996 10.9004 -48.5996 36.9004 -47.0996c11.0996 0.599609 18.2998 4.59961 25.3994 17.3994c4 7.40039 41.7002 107.7 44.6006 112.601c2 3.39941 8.89941 8 14.5996 5.09961
-c5.7002 -3.09961 6.90039 -9.40039 6 -15.0996c-1.09961 -9.7002 -28 -70.9004 -28.8994 -77.7002c-3.40039 -22.9004 26.8994 -26.6006 38.5996 -4c3.7002 7.09961 45.7002 92.5996 49.4004 98.2998c4.2998 6.2998 7.39941 8.2998 11.6992 8
-c3.10059 0 8.30078 -0.900391 7.10059 -10.9004c-1.40039 -9.39941 -35.1006 -72.2998 -38.9004 -87.6992c-4.59961 -20.6006 6.60059 -41.4004 24.9004 -50.6006c11.3994 -5.7002 62.5 -15.7002 58.5 11.1006zM376.4 3.09961c10.5996 7.5 24.8994 4.60059 32.2998 -6
-c7.09961 -10.5996 4.59961 -25.1992 -6 -32.5996c-10.6006 -7.09961 -24.9004 -4.59961 -32 6c-7.2002 10.5996 -4.60059 25.2002 5.7002 32.5996z" />
-    <glyph glyph-name="font-awesome-alt" unicode="&#xf35c;" 
-d="M339.3 276.8c5.40039 0 9.5 -3 7.7002 -7.09961v-134.4c0 -4.2002 -3 -6 -7.2002 -7.7998c-15.5996 -7.09961 -33.5 -13.7002 -52 -13.7002c-26.2998 0 -38.2002 16.1006 -69.2998 16.1006c-22.7002 0 -46 -8.30078 -65.7002 -16.7002
-c-0.599609 -0.600586 -1.7998 -1.2002 -3 -1.2002v-44.2002c0 -1.7998 0 -3 -0.599609 -4.7998v-1.2998c-2.40039 -7.7002 -9.5 -13.7002 -18.5 -13.7002c-10.7002 0 -19.7002 8.90039 -19.7002 19.7002v212.1c-7.7002 6 -12.5 15.5 -12.5 25.7002
-c0 18 14.2998 32.2998 32.2998 32.2998s32.2998 -14.3994 32.2998 -32.2998c0 -10.7998 -4.69922 -19.7002 -12.5 -25.7002v-17.8994c1.2002 0.599609 3 1.19922 4.80078 1.7998c17.8994 7.09961 39.3994 13.7002 59.6992 13.7002
-c22.1006 0 39.4004 -5.90039 59.1006 -13.7002c4.09961 -1.7998 8.2998 -2.40039 12.5 -2.40039c22.7002 0 46.5996 15.5 52.5996 15.5zM397.8 416c27.5 0 50.2002 -22.7002 50.2002 -50.2002v-347.6c0 -27.5 -22.7002 -50.2002 -50.2002 -50.2002h-347.6
-c-27.5 0 -50.2002 22.7002 -50.2002 50.2002v347.6c0 27.5 22.7002 50.2002 50.2002 50.2002h347.6zM412.1 18.2998v347.601c0 7.69922 -6.5 14.2998 -14.2998 14.2998v-0.100586h-347.6c-7.7002 0 -14.2998 -6.5 -14.2998 -14.2998v-347.5
-c0 -7.7002 6.5 -14.2998 14.2998 -14.2998h347.6c7.7002 0 14.2998 6.5 14.2998 14.2998z" />
-    <glyph glyph-name="accessible-icon" unicode="&#xf368;" 
-d="M423.9 192.2l-12.9004 -157.3c-3.2998 -40.7002 -63.9004 -35.1006 -60.5996 4.89941l10 122.5l-41.1006 -2.2998c10.1006 -20.7002 15.7998 -43.9004 15.7998 -68.5c0 -41.2002 -16.0996 -78.7002 -42.2998 -106.5l-39.2998 39.2998
-c57.9004 63.7002 13.0996 167.2 -74 167.2c-25.9004 0 -49.5 -9.90039 -67.2002 -26l-39.2998 39.2998c22 20.7002 50.0996 35.1006 81.4004 40.2002l75.2998 85.7002l-42.6006 24.7998l-51.5996 -46c-30 -26.7998 -70.5996 18.5 -40.5 45.4004l68 60.6992
-c9.7998 8.80078 24.0996 10.2002 35.5 3.60059c0 0 139.3 -80.9004 139.5 -81.1006c16.2002 -10.0996 20.7002 -36 6.09961 -52.5996l-58.3994 -66.5l106.1 5.90039c18.5 1.09961 33.6006 -14.4004 32.1006 -32.7002zM359 346.2
-c-28.0996 0 -50.9004 22.7998 -50.9004 50.8994c0 28.1006 22.8008 50.9004 50.9004 50.9004s50.9004 -22.7998 50.9004 -50.9004c0 -28.0996 -22.8008 -50.8994 -50.9004 -50.8994zM179.6 -8.5c20.8008 0 40.1006 6.40039 56.1006 17.2998l39.7002 -39.7002
-c-100.7 -78.8994 -251.4 -8.19922 -251.4 122.5c0 36.1006 12.4004 69.4004 33.2002 95.7002l39.7002 -39.7002c-44.7002 -65.5 2.09961 -156.1 82.6992 -156.1z" />
-    <glyph glyph-name="accusoft" unicode="&#xf369;" horiz-adv-x="640" 
-d="M322.1 196c-1.69922 -1.59961 -89.5996 -82.5 -90.1992 -83.2998l-92.6006 -33.7998c-4.7998 -2 -7.59961 -3.7002 -7 -8.90039c0.200195 -1.5 0.600586 -22.5996 1 -27.7002c-0.700195 -0.5 -0.0996094 0 -0.599609 -0.599609c0 0 -113.7 -36.6006 -114.5 -36.6006
-c-14.1006 -5.09961 -22.7002 -8.2998 -15.7002 1.7002c1.2998 1.7998 234.4 231.601 243.4 240.9c13 13.5 25 15.0996 25 15.0996l51.1992 -65.7998v-1zM482.2 75.9004c-5.7002 6.89941 -232.2 297.1 -239.9 306.6c-13.7002 17.2002 0 16.7998 19.2002 16.9004
-c9.7002 0.0996094 106.3 0.599609 116.5 0.599609c24.0996 0.0996094 28.7002 -0.599609 38.4004 -12.7998c2.09961 -2.7002 205.1 -245.8 207.199 -248.3c5.5 -6.7002 15.2002 -19.1006 7.2002 -23.4004c-2.39941 -1.2998 -114.6 -47.7002 -117.8 -48.9004
-c-10.0996 -4 -17.5 -6.7998 -30.7998 9.30078zM634.9 74.2998c6 -1.39941 7.09961 -4.2002 1.69922 -8.2002c-2 -1.39941 -123.699 -76.5996 -125.8 -77.7998c-15.0996 -8.7998 -38 -1.59961 -53.5996 1.7002c-7.10059 1.5 -305.3 68.2998 -308 69.0996
-c-2.60059 0.900391 -4.40039 1 -4.60059 3.5c-0.299805 4 6 5.60059 11.1006 7.60059c5 1.89941 145.3 52.5996 150.2 54.7002c4.7998 2.09961 11.2998 2.69922 14.3994 2.89941c4.90039 0.299805 59.9004 -8.39941 65.2998 -9.2998l57.1006 -74
-c9.7998 -11.4004 20.7002 -21.9004 36.7002 -14.5996c2.5 1.19922 117.5 51.5996 117.5 51.5996c13.3994 -2.5 35.6992 -6.90039 38 -7.2002z" />
-    <glyph glyph-name="adversal" unicode="&#xf36a;" horiz-adv-x="512" 
-d="M482.1 416c24.5 0 29.9004 -5.59961 29.9004 -30.2002v-388.1c0 -24.5 -5.5 -29.7002 -29.9004 -29.7002h-453.399c-22.9004 0 -28.7002 5.59961 -28.7002 28.9004v390.199c0 23 5.7998 28.9004 28.7002 28.9004h453.399zM178.4 227.7
-c9.39941 -7.2002 12.3994 -17.1006 11.2998 -27.2998c-1.7998 -19.1006 -75.7998 -11.4004 -114 -30.9004c-27.2002 -13.9004 -42.7002 -41.7002 -39.6006 -71c6.7002 -64.7002 89.6006 -79.7002 147 -43.2998c4.60059 3.2002 8.30078 4.89941 11.9004 1
-c2.09961 -2.60059 2 -4 3.90039 -6.2002c7.2998 -9.59961 38.1992 -14.0996 46.5996 -7.40039c3.09961 2.80078 4.59961 6.30078 2.7002 10.7002c-13.6006 30.5 -6.60059 63 -9.2998 88.7998c0 69.3008 6.39941 111.7 -34.5 128.5
-c-41.9004 17.4004 -84.2002 16.6006 -125.301 -4.7998c-16.2998 -9 -53.6992 -52.8994 -24.8994 -64.2998c5.2998 -2.2998 12.7998 -4 22.5 -5.5c8.2002 -1.2002 13.2002 -2.7998 17.5 8.2998c12.0996 32.1006 56.7002 43.6006 84.2002 23.4004zM465.1 5.7002
-c0 14.2998 -9.7998 9.89941 -16.5996 9.89941c-132.3 0.400391 -264.5 0.400391 -396.8 0c-6.60059 0 -16.7002 4.80078 -17.1006 -9.09961c-0.399414 -15.5 10.4004 -10.7002 17.8008 -10.7002h394.899c6.7002 0 17.7998 -5.2002 17.7998 9.90039zM468.9 346.2
-c0 0.200195 0 0.299805 0.0996094 0.5c0 9.89941 -3.5 15.0996 -13.5996 14.2998c-3.10059 -0.400391 -6.60059 0 -9.7002 0c-26.1006 0 -26 0 -26 -26.2002v-71c-79.2002 45.6006 -124.3 -6.59961 -136.101 -30.5c-16.3994 -32.8994 -21.7998 -66.5996 -15.6992 -100
-c16.2998 -92.2998 91 -114.899 144.399 -85.2002c4.60059 2.80078 6.60059 7.5 12.4004 -1.19922c8.59961 -12.7002 23.7002 -5.2002 36.0996 -5.60059c7.40039 0 8.10059 8.2002 8.10059 13.9004v291zM417.4 113.9c-19.5 -47.6006 -72.9004 -43.3008 -90 -5.2002
-c-15.1006 33.2998 -15.5 68.2002 0.399414 101.5c16.2998 34.0996 59.7002 35.7002 81.5 4.7998c20.6006 -28.7998 14.9004 -84.5996 8.10059 -101.1zM122.6 78.5996c-7.5 1.30078 -33 3.30078 -33.6992 27.8008c-0.400391 13.8994 7.7998 23 19.7998 25.7998
-c24.3994 5.89941 49.2998 9.89941 73.7002 14.7002c8.89941 2 7.39941 -4.40039 7.7998 -9.5c1.39941 -33 -26.1006 -59.2002 -67.6006 -58.8008z" />
-    <glyph glyph-name="affiliatetheme" unicode="&#xf36b;" horiz-adv-x="512" 
-d="M159.7 210.6c-51.2998 -70.8994 -116.601 -110.8 -145.7 -89.1992c-29.2002 21.6992 -11.2002 96.5996 40.2002 167.5c51.2998 70.8994 116.6 110.8 145.7 89.1992c29.0996 -21.5996 11.0996 -96.5996 -40.2002 -167.5zM510.9 267.9
-c0.699219 -8.2002 1.09961 -16.5 1 -25c0 -151.801 -121.601 -274.9 -271.601 -274.9c-82.8994 0 -157.2 37.5996 -207 96.9004c71.2998 19.3994 130.5 68.3994 164.101 133.199c7.69922 -32.5996 24 -58.5996 49 -73.7998c72.5996 -44.0996 190.699 20.2002 264.5 143.601z
-" />
-    <glyph glyph-name="algolia" unicode="&#xf36c;" 
-d="M229.3 265.4c49.2002 0 89.2002 -39.9004 89.2002 -89.2002s-39.9004 -89.2002 -89.2002 -89.2002s-89.2002 39.9004 -89.2002 89.2002s39.9004 89.2002 89.2002 89.2002zM292 208.8c1.2998 0.700195 1.7998 2.40039 1.09961 3.7002
-c-12.1992 21.4004 -34.8994 36.0996 -61.0996 37.0996c-1.40039 0.100586 -2.7002 -1.09961 -2.7002 -2.59961v-66.5c0 -1.90039 2 -3.2002 3.7998 -2.2998zM389.1 416c32.5 0 58.9004 -26.4004 58.8008 -58.9004v-330.199c0 -32.5 -26.3008 -58.9004 -58.9004 -58.9004
-h-330.1c-32.5 0 -58.9004 26.4004 -58.9004 59v330.1c0 32.5 26.4004 58.9004 58.9004 58.9004h330.199zM186.5 331.3h0.0996094v-15.7998c0 -1.7002 1.7002 -3 3.40039 -2.5c12.7002 3.7002 25.9004 5.5 39.4004 5.5c13 0 25.7998 -1.7002 38.0996 -5.09961
-c1.59961 -0.5 3.2998 0.699219 3.2998 2.5v15.3994c0 10.7998 -8.7002 19.5 -19.5 19.5h-45.2998c-10.7998 0 -19.5 -8.7002 -19.5 -19.5zM102.1 294.3c-7.59961 -7.59961 -7.59961 -19.8994 0 -27.3994l7.7002 -7.7002c1.10059 -1.2002 3 -1 4 0.299805
-c4.40039 6.09961 9.40039 12 14.7998 17.4004c5.5 5.5 11.4004 10.3994 17.6006 14.8994c1.2998 1 1.39941 2.90039 0.299805 4l-7.7002 7.7002c-7.59961 7.59961 -19.8994 7.59961 -27.5 0zM229.3 49.5c69.9004 0 126.601 56.7998 126.601 126.6
-c0 70 -56.6006 126.601 -126.601 126.601c-69.8994 0 -126.6 -56.7002 -126.6 -126.601c0 -69.8994 56.5996 -126.6 126.6 -126.6z" />
-    <glyph glyph-name="amilia" unicode="&#xf36d;" 
-d="M240.1 416c134.101 0 191.9 -55.7002 192 -136v-296.6c0 -3 -1 -8.10059 -5.09961 -9.10059c-4 -1 -57.2998 -0.700195 -66.5 -0.700195s-56.7998 1 -59.9004 2c-4 0.900391 -6.09961 6.10059 -6.09961 9.10059v25.3994
-c-39.5996 -21.3994 -105.5 -42.0996 -153.3 -42.0996c-109.7 0 -124.9 85.7002 -124.9 104s-5.09961 95.5 30.4004 111.8c31.5 13.2002 156.3 36.5 243.7 47.7998v38.5c0 44.7002 -1 73.1006 -58.9004 73.1006c-55.7998 0 -119.8 -25.4004 -152.3 -47.7002
-c-6.10059 -4.09961 -16.2002 -4.09961 -20.2998 6.09961c-5.10059 12.2002 -9.10059 34.5 -10.2002 39.6006c-1.90039 10.2002 2.09961 16.2998 7.2002 19.3994c52.6992 38.5 122.3 55.4004 184.199 55.4004zM290.3 68v106.7c-44.7002 -4.10059 -95.5 -20.2998 -119.8 -33.5
-c-21.2998 -10.2002 -18.2998 -40.7002 -18.2998 -52.9004c0.0996094 -11.2002 6.2002 -44.7002 59 -44.7002c30.3994 0 57.7002 11.2002 79.0996 24.4004z" />
-    <glyph glyph-name="angrycreative" unicode="&#xf36e;" horiz-adv-x="640" 
-d="M640 209.8l-3.2002 -28.2002l-34.5 -2.2998l-2 -18.0996l34.5 2.2998l-3.2002 -28.2002l-34.3994 -2.2002l-2.2998 -20.0996l34.3994 2.2002l-3 -26.1006l-64.7002 -4.09961l12.7002 113.2l-47.2998 -115.4l-31.9004 -2l-23.7998 117.8l30.2998 2l13.6006 -79.3994
-l31.7002 82.3994zM426.8 76.5l12.7998 120l28.4004 1.90039l-12.9004 -120.101zM162 59.9004l-19.4004 36l-3.5 -37.4004l-28.1992 -1.7002l2.69922 29.1006c-11 -18 -32 -34.3008 -56.8994 -35.8008c-32.7998 -2 -59.7002 20.9004 -56.4004 58.2002
-c2.60059 29.2998 26.7002 62.7998 67.5 65.4004c37.7002 2.39941 47.6006 -23.2002 51.2998 -28.7998l2.80078 30.7998l38.8994 2.5c20.1006 1.2998 38.7002 -3.7002 42.5 -23.7002l2.60059 26.5996l64.7998 4.2002l-2.7002 -27.8994l-36.4004 -2.40039l-1.69922 -17.9004
-l36.3994 2.30078l-2.7002 -27.9004l-36.3994 -2.2998l-1.90039 -19.9004l36.2998 2.2998l-2.09961 -20.7998l55 117.2l23.7998 1.59961l32.1006 -110.6l8.89941 85.5996l-22.2998 -1.39941l2.90039 27.8994l75 4.90039l-3 -28l-24.3008 -1.59961l-9.69922 -91.9004
-l-58 -3.7002l-4.30078 15.6006l-39.3994 -2.5l-8 -16.3008zM117.7 130.1l-26.4004 -1.69922c-6.7002 12.3994 -14.3994 16.5996 -26.2998 15.7998c-19 -1.2002 -33.2998 -17.5 -34.5996 -33.2998c-1.40039 -16 7.2998 -32.5 28.6992 -31.2002
-c12.8008 0.799805 21.3008 8.59961 28.9004 18.8994l27 1.7002zM173.8 137.8c1.2002 12.9004 -7.59961 13.6006 -26.0996 12.4004l-2.7002 -28.5c14.2002 0.899414 27.5 2.09961 28.7998 16.0996zM194.9 67l5.7998 60c-5 -13.5 -14.7002 -21.0996 -27.9004 -26.5996z
-M330.3 112l-7.89941 37.7998l-15.8008 -39.2998zM160.2 186.6l-4.2998 17.5l-39.6006 -2.59961l-8.09961 -18.2002l-31.9004 -2.09961l57 121.899l23.9004 1.60059l30.7002 -102l9.89941 104.7l27 1.7998l37.7998 -63.6006l6.5 66.6006l28.5 1.89941l-4 -41.1992
-c7.40039 13.5 22.9004 44.6992 63.6006 47.5c40.5 2.7998 52.3994 -29.3008 53.3994 -30.3008l3.30078 32l39.2998 2.7002c12.7002 0.900391 27.7998 -0.299805 36.2998 -9.7002l-4.40039 11.9004l32.2002 2.2002l12.9004 -43.2002l23 45.7002l31 2.2002l-43.6006 -78.4004
-l-4.7998 -44.2998l-28.3994 -1.90039l4.7998 44.2998l-15.7998 43c1 -22.2998 -9.2002 -40.0996 -32 -49.5996l25.1992 -38.7998l-36.3994 -2.40039l-19.2002 36.7998l-4 -38.2998l-28.4004 -1.89941l3.30078 31.5c-6.7002 -9.30078 -19.7002 -35.4004 -59.6006 -38
-c-26.2002 -1.7002 -45.5996 10.2998 -55.3994 39.1992l-4 -40.2998l-25 -1.59961l-37.6006 63.2998l-6.2998 -66.2002zM436.8 268.7c10.2002 0.700195 17.5 2.09961 21.6006 4.2998c4.5 2.40039 7 6.40039 7.59961 12.0996
-c0.599609 5.30078 -0.599609 8.80078 -3.40039 10.4004c-3.59961 2.09961 -10.5996 2.7998 -22.8994 2zM327.7 234c5.59961 -5.90039 12.7002 -8.5 21.2998 -7.90039c4.7002 0.300781 9.09961 1.80078 13.2998 4.10059c5.5 3 10.6006 8 15.1006 14.2998l-34.2002 -2.2998
-l2.39941 23.8994l63.1006 4.30078l1.2002 12l-31.2002 -2.10059c-4.10059 3.7002 -7.7998 6.60059 -11.1006 8.10059c-4 1.69922 -8.09961 2.7998 -12.1992 2.5c-8 -0.5 -15.3008 -3.60059 -22 -9.2002c-7.7002 -6.40039 -12 -14.5 -12.9004 -24.4004
-c-1.09961 -9.59961 1.40039 -17.2998 7.2002 -23.2998zM126.4 225.8l23.7998 1.60059l-8.2998 37.5996z" />
-    <glyph glyph-name="app-store" unicode="&#xf36f;" horiz-adv-x="512" 
-d="M255.9 327.1l9.09961 15.7002c5.59961 9.7998 18.0996 13.1006 27.9004 7.5c9.7998 -5.59961 13.0996 -18.0996 7.5 -27.8994l-87.5 -151.5h63.2998c20.5 0 32 -24.1006 23.0996 -40.8008h-185.5c-11.2998 0 -20.3994 9.10059 -20.3994 20.4004
-s9.09961 20.4004 20.3994 20.4004h52l66.6006 115.399l-20.8008 36.1006c-5.59961 9.7998 -2.2998 22.1992 7.5 27.8994c9.80078 5.60059 22.2002 2.2998 27.9004 -7.5zM177.2 109.1l-19.6006 -34c-5.59961 -9.7998 -18.0996 -13.0996 -27.8994 -7.5
-c-9.7998 5.60059 -13.1006 18.1006 -7.5 27.9004l14.5996 25.2002c16.4004 5.09961 29.7998 1.2002 40.4004 -11.6006zM346.1 170.8h53.1006c11.2998 0 20.3994 -9.09961 20.3994 -20.3994c0 -11.3008 -9.09961 -20.4004 -20.3994 -20.4004h-29.5l19.8994 -34.5
-c5.60059 -9.7998 2.30078 -22.2002 -7.5 -27.9004c-9.7998 -5.59961 -22.1992 -2.2998 -27.8994 7.5c-33.5 58.1006 -58.7002 101.601 -75.4004 130.601c-17.0996 29.5 -4.89941 59.0996 7.2002 69.0996c13.4004 -23 33.4004 -57.7002 60.0996 -104zM256 440
-c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM472 192c0 119.9 -97.2998 216 -216 216c-119.9 0 -216 -97.2998 -216 -216c0 -119.9 97.2998 -216 216 -216c119.9 0 216 97.2998 216 216z" />
-    <glyph glyph-name="app-store-ios" unicode="&#xf370;" 
-d="M400 416c26.5 0 48 -21.5 48 -48v-352c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h352zM127 63.5l19.2998 33.2998c-10.2998 12.5 -23.5 16.2998 -39.5996 11.4004l-14.2998 -24.7002
-c-5.5 -9.5 -2.30078 -21.7998 7.2998 -27.2998c9.5 -5.5 21.7998 -2.2998 27.2998 7.2998zM265.9 117.4c8.7998 16.2998 -2.5 40 -22.7002 40h-62.1006l85.8008 148.6c5.5 9.5 2.2998 21.7998 -7.30078 27.2998c-9.5 5.5 -21.7998 2.2998 -27.2998 -7.2998
-l-8.89941 -15.4004l-8.90039 15.4004c-5.5 9.5 -17.7002 12.7998 -27.2998 7.2998c-9.5 -5.5 -12.7998 -17.7002 -7.2998 -27.2998l20.5 -35.4004l-65.4004 -113.199h-51c-11 0 -20 -9 -20 -20s9 -20 20 -20h181.9zM364 117.4c11 0 20 8.89941 20 20c0 11 -9 20 -20 20h-52
-c-26.2002 45.2998 -45.7998 79.2998 -58.9004 102c-11.8994 -9.80078 -23.7998 -38.8008 -7.09961 -67.8008c16.5 -28.3994 41.0996 -71.1992 74 -128.1c5.5 -9.5 17.7002 -12.7998 27.2998 -7.2998c9.5 5.5 12.7998 17.7002 7.2998 27.2998l-19.5996 33.9004h29z" />
-    <glyph glyph-name="apper" unicode="&#xf371;" horiz-adv-x="640" 
-d="M42.0996 208.9c22.2002 0 29 -2.80078 33.5 -14.6006h0.800781v22.9004c0 11.2998 -4.80078 15.3994 -17.9004 15.3994c-11.2998 0 -14.4004 -2.5 -15.0996 -12.7998h-38.6006c0.299805 13.9004 1.5 19.1006 5.7998 24.4004
-c7.30078 8.7998 18.9004 11.7998 46.1006 11.7998c33 0 47.0996 -5 53.8994 -18.9004c2 -4.2998 4 -15.5996 4 -23.6992v-76.3008h-38.2998l1.2998 19.1006h-1c-5.2998 -15.6006 -13.5996 -20.4004 -35.5 -20.4004c-30.2998 0 -41.0996 10.1006 -41.0996 37.2998
-c0 25.2002 12.2998 35.8008 42.0996 35.8008zM59.2002 160.8c13.0996 0 16.8994 3 16.8994 13.4004c0 9.09961 -4.2998 11.5996 -19.5996 11.5996c-13.0996 0 -17.9004 -3 -17.9004 -12.0996c-0.0996094 -10.4004 3.7002 -12.9004 20.6006 -12.9004zM137 255.7h38.2998
-l-1.5 -20.6006h0.799805c9.10059 17.1006 15.9004 20.9004 37.5 20.9004c14.4004 0 24.7002 -3 31.5 -9.09961c9.80078 -8.60059 12.8008 -20.4004 12.8008 -48.1006c0 -30 -3 -43.0996 -12.1006 -52.8994c-6.7998 -7.30078 -16.3994 -10.1006 -33.2002 -10.1006
-c-20.3994 0 -29.1992 5.5 -33.7998 21.2002h-0.799805v-70.2998h-39.5v169zM217.9 195c0 27.5 -3.30078 32.5 -20.7002 32.5c-16.9004 0 -20.7002 -5 -20.7002 -28.7002c0 -28 3.5 -33.5 21.2002 -33.5c16.3994 0 20.2002 5.60059 20.2002 29.7002zM275.8 255.7h38.2998
-l-1.5 -20.6006h0.800781c9.09961 17.1006 15.8994 20.9004 37.5 20.9004c14.3994 0 24.6992 -3 31.5 -9.09961c9.7998 -8.60059 12.7998 -20.4004 12.7998 -48.1006c0 -30 -3 -43.0996 -12.1006 -52.8994c-6.7998 -7.30078 -16.3994 -10.1006 -33.2998 -10.1006
-c-20.3994 0 -29.2002 5.5 -33.7998 21.2002h-0.799805v-70.2998h-39.5v169h0.0996094zM356.7 195c0 27.5 -3.2998 32.5 -20.7002 32.5c-16.9004 0 -20.7002 -5 -20.7002 -28.7002c0 -28 3.5 -33.5 21.2002 -33.5c16.4004 0 20.2002 5.60059 20.2002 29.7002zM410.5 198.8
-c0 25.4004 3.2998 37.7998 12.2998 45.7998c8.7998 8.10059 22.2002 11.3008 45.1006 11.3008c42.7998 0 55.6992 -12.8008 55.6992 -55.7002v-11.1006h-75.2998c-0.299805 -2 -0.299805 -4 -0.299805 -4.7998c0 -16.8994 4.5 -21.8994 20.0996 -21.8994
-c13.9004 0 17.9004 3 17.9004 13.8994h37.5v-2.2998c0 -9.7998 -2.5 -18.9004 -6.7998 -24.7002c-7.2998 -9.7998 -19.6006 -13.5996 -44.2998 -13.5996c-27.5 0 -41.6006 3.2998 -50.6006 12.2998c-8.5 8.5 -11.2998 21.2998 -11.2998 50.7998zM486.9 210.4
-c-0.300781 1.7998 -0.300781 3.2998 -0.300781 3.7998c0 12.2998 -3.2998 14.5996 -19.5996 14.5996c-14.4004 0 -17.0996 -3 -18.0996 -15.0996l-0.300781 -3.2998h38.3008zM542.5 255.7h38.2998l-1.7998 -19.9004h0.700195
-c6.7998 14.9004 14.3994 20.2002 29.7002 20.2002c10.7998 0 19.0996 -3.2998 23.3994 -9.2998c5.2998 -7.2998 6.7998 -14.4004 6.7998 -34c0 -1.5 0 -5 0.200195 -9.2998h-35c0.299805 1.7998 0.299805 3.2998 0.299805 4c0 15.3994 -2 19.3994 -10.2998 19.3994
-c-6.2998 0 -10.7998 -3.2998 -13.0996 -9.2998c-1 -3 -1 -4.2998 -1 -12.2998v-68h-38.2998v118.5h0.0996094z" />
-    <glyph glyph-name="asymmetrik" unicode="&#xf372;" horiz-adv-x="576" 
-d="M517.5 138.8c-13.9004 -14.2998 -30.4004 -27.7002 -48.9004 -39.7998l73.4004 -110.4h-101.6l-45.9004 71.8008c-17.5996 -7.2002 -35.9004 -13.4004 -54.5 -18.7002l32.5996 -53.1006h-135.5l22.8008 37.1006c-23.3008 -2.7002 -46.4004 -3.7002 -68.6006 -2.7002
-l-22 -34.4004h-101.6l34.5 51.7002c-45 17.9004 -68.9004 47.9004 -68.4004 83c0.299805 25.7998 14 54.2998 41.7002 82.9004c38.9004 40 96.5 72.5996 161.6 92.8994c-22.2998 -8.09961 -42 -18.5 -62 -30.6992c-31.1992 -16.2002 -58.6992 -35.9004 -79.5 -58.1006
-c-57.3994 -61 -46.5 -121.8 19.1006 -151.2l190.2 285.5l150.899 -226.399c13 9.5 24.7998 19.7998 35 30.5996c98 104.2 53.7002 207.9 -98.7998 231.7c-68.2998 10.5996 -146.8 5.7002 -221.3 -14.7998c-60.1006 -10 -118.7 -31.7002 -170.7 -58.2002
-c118.1 66.9004 277.9 102.1 406.6 82.4004c110 -16.8008 170.2 -69.5 169.4 -135c-0.400391 -36.1006 -19.7002 -76.1006 -58.5 -116.101zM329.9 58.2998c18.3994 5.2998 36.5 11.7998 53.6992 19.2002l-78.6992 123l-101.9 -159.3
-c22.5 -0.700195 45.7998 0.899414 69.2002 4.39941l32.7002 53.3008z" />
-    <glyph glyph-name="audible" unicode="&#xf373;" horiz-adv-x="640" 
-d="M640 248.1v-54l-320 -200l-320 199.9v54l320 -200zM445.5 176.1c-70.7998 94.4004 -200.5 110.7 -290.2 36.3008c-2.59961 -2.2002 -5.2002 -4.40039 -7.7002 -6.7002h-0.299805c37.1006 55.7002 100.601 92.3994 172.601 92.3994s135.5 -36.7998 172.699 -92.5996z
-M225.4 157.3c21 29.6006 55.5 49 94.3994 49c39.2002 0 73.9004 -19.5996 94.7998 -49.5l-45.3994 -28.3994c-21.2002 29.1992 -52 47.5996 -86.4004 47.5996c-20.8994 0 -40.5 -6.7998 -57.3994 -18.7002zM103.6 286.9c-11.5 -9.10059 -24.2998 -22.1006 -34.1992 -32.6006
-c53.8994 82.1006 147 135.601 250.5 135.601c104.899 0 197.199 -54 250.699 -135.7l-48.7998 -30.4004l-0.700195 1c-99.2998 138.5 -285.699 166.4 -417.5 62.1006zM570.6 254.2z" />
-    <glyph glyph-name="avianex" unicode="&#xf374;" horiz-adv-x="512" 
-d="M453.1 416c39 0 64.8008 -31.2002 57.8008 -69.7998l-56.7002 -308.5c-7.10059 -38.5 -44.4004 -69.7002 -83.2998 -69.7002h-312c-39 0 -64.8008 31.2002 -57.7002 69.7002l56.5996 308.6c7.10059 38.5 44.4004 69.7002 83.2998 69.7002h312zM394.9 68.7002
-l6.2998 7.89941l-94.9004 119.4l-4.5 7.2998c19.7998 14.2002 33.5 24.2998 35.2998 25.6006c7.90039 6.59961 6.30078 20.7998 -2.69922 31.2998c-9.2002 10.7998 -23 14.3994 -30.7002 7.89941c0 0 -14.4004 -13.5996 -33.7998 -32.3994l-4.90039 4.5l-103.1 112.399
-l-8.90039 -4.7998l-18.7998 -28.8994l68.7998 -99.8008l20.5 -29.5996c-12 -12.2998 -23.5 -24.4004 -32.7998 -34.9004l-58 31.1006l-15.7002 -15.4004l52.4004 -48.0996l40.5996 -61l17.9004 12.7002l-22.1006 64.1992c12.5 7.60059 27 17.1006 41.7002 27.1006
-l115.4 -110z" />
-    <glyph glyph-name="aws" unicode="&#xf375;" horiz-adv-x="640" 
-d="M180.41 244.99c-0.719727 -22.6504 10.5996 -32.6807 10.8799 -39.0498c-0.276367 -2.69141 -1.85352 -4.99902 -4.09961 -6.27051l-12.8008 -8.95996c-1.60352 -1.12402 -3.54785 -1.82422 -5.62988 -1.91992c-0.429688 0.0195312 -8.18945 -1.83008 -20.4795 25.6104
-c-14.4111 -17.9883 -36.5596 -29.5156 -61.3789 -29.5156c-0.427734 0 -0.804688 0.0585938 -1.23145 0.0654297c-16.2803 -0.890625 -60.4004 9.24023 -58.1299 56.21c-1.58984 38.2803 34.0596 62.0596 70.9297 60.0498
-c7.10059 -0.0195312 21.6006 -0.370117 46.9902 -6.26953v15.6191c2.69043 26.46 -14.7002 46.9902 -44.8096 43.9102c-2.40039 -0.00976562 -19.4004 0.5 -45.8408 -10.1094c-7.35938 -3.37988 -8.2998 -2.82031 -10.75 -2.82031
-c-7.40918 0 -4.35938 21.4795 -2.93945 24.2002c5.20996 6.39941 35.8604 18.3496 65.9395 18.1797c2.25586 0.199219 4.53906 0.301758 6.84668 0.301758c18.5547 0 35.5566 -6.61719 48.8438 -17.582c11.1152 -12.4326 17.877 -28.8398 17.877 -46.8135
-c0 -1.87891 -0.0615234 -3.70508 -0.207031 -5.5459zM93.9902 212.6c32.4297 0.470703 46.1602 19.9707 49.29 30.4707c2.45996 10.0498 2.0498 16.4102 2.0498 27.3994c-9.66992 2.32031 -23.5898 4.85059 -39.5605 4.87012
-c-15.1494 1.14062 -42.8193 -5.62988 -41.7393 -32.2598c-1.24023 -16.79 11.1201 -31.4004 29.96 -30.4805zM264.91 189.55c-7.86035 -0.719727 -11.5205 4.86035 -12.6797 10.3701l-49.8008 164.65c-0.969727 2.7793 -1.60938 5.64941 -1.91992 8.58008
-c-0.0341797 0.227539 -0.0527344 0.459961 -0.0527344 0.697266c0 2.30566 1.70117 4.21387 3.91309 4.55273c0.240234 0.0400391 -2.12988 0 22.25 0c8.78027 0.879883 11.6396 -6.03027 12.5498 -10.3701l35.7197 -140.83l33.1602 140.83
-c0.530273 3.21973 2.94043 11.0693 12.7998 10.2393h17.1602c2.16992 0.180664 11.1104 0.5 12.6807 -10.3691l33.4199 -142.631l36.8701 142.631c0.479492 2.17969 2.71973 11.3691 12.6797 10.3691h19.7197c0.850586 0.130859 6.15039 0.810547 5.25 -8.5791
-c-0.429688 -1.85059 3.41016 10.6592 -52.75 -169.9c-1.14941 -5.50977 -4.82031 -11.0898 -12.6797 -10.3701h-18.6904c-10.9395 -1.15039 -12.5098 9.66016 -12.6797 10.75l-33.1602 137.13l-32.7803 -136.99c-0.15918 -1.08984 -1.72949 -11.8994 -12.6797 -10.75
-h-18.2998v-0.00976562zM538.39 183.92c-5.87988 -0.00976562 -33.9199 0.299805 -57.3594 12.29c-4.59375 1.94531 -7.81934 6.49609 -7.81934 11.7949c0 0.0410156 0.00878906 0.0742188 0.00878906 0.115234v10.75c0 8.4502 6.2002 6.89941 8.83008 5.88965
-c10.04 -4.05957 16.4805 -7.13965 28.8105 -9.59961c36.6494 -7.53027 52.7695 2.2998 56.7197 4.47949c13.1504 7.81055 14.1895 25.6807 5.25 34.9502c-10.4805 8.79004 -15.4805 9.12012 -53.1299 21c-4.64062 1.29004 -43.7002 13.6104 -43.79 52.3604
-c-0.610352 28.2402 25.0498 56.1797 69.5195 55.9502c12.6699 0.00976562 46.4307 -4.13086 55.5703 -15.6201c1.34961 -2.08984 2.01953 -4.5498 1.91992 -7.04004v-10.1104c0 -4.43945 -1.62012 -6.66016 -4.87012 -6.66016
-c-7.70996 0.860352 -21.3896 11.1699 -49.1602 10.75c-6.88965 0.360352 -39.8896 -0.910156 -38.4092 -24.9697c-0.430664 -18.96 26.6094 -26.0703 29.6992 -26.8896c36.46 -10.9707 48.6504 -12.79 63.1201 -29.5801c17.1406 -22.25 7.90039 -48.2998 4.35059 -55.4404
-c-19.0801 -37.4902 -68.4199 -34.4395 -69.2607 -34.4199zM578.59 79.0596c-70.0303 -51.7197 -171.689 -79.25 -258.49 -79.25c-1.0498 -0.00683594 -2.10059 -0.00976562 -3.15234 -0.00976562c-120.699 0 -230.949 45.7383 -314.117 120.74
-c-6.53027 5.88965 -0.770508 13.96 7.16992 9.46973c93.1143 -53.2637 200.925 -83.7148 315.791 -83.7148c0.138672 0 0.950195 -0.405273 1.08887 -0.405273c85.4404 0.458984 167.381 18.2432 241.59 49.5508c11.7803 5 21.7705 -7.80078 10.1201 -16.3809z
-M607.78 112.35c-8.95996 11.5205 -59.2803 5.38086 -81.8105 2.69043c-6.79004 -0.770508 -7.93945 5.12012 -1.79004 9.46973c40.0703 28.1699 105.88 20.1006 113.44 10.6299c7.5498 -9.46973 -2.0498 -75.4092 -39.5605 -106.909
-c-5.75977 -4.87012 -11.2695 -2.30078 -8.70996 4.09961c8.44043 21.25 27.3906 68.4902 18.4307 80.0195z" />
-    <glyph glyph-name="bimobject" unicode="&#xf378;" 
-d="M416 416c17.5996 0 32 -14.4004 32 -32v-384c0 -17.5996 -14.4004 -32 -32 -32h-384c-17.5996 0 -32 14.4004 -32 32v384c0 17.5996 14.4004 32 32 32h384zM352 158.6h-0.0996094v35c0 49.4004 -11.4004 82.5 -103.801 82.5h-17.2998
-c-30 0 -65.0996 -8.2998 -69.7002 -38.7998h-1.09961v74.7002h-64v-232h64v34.7998h0.900391c8 -23.8994 26.2998 -38.7998 70.3994 -38.7998h16.9004c92.3994 0 103.8 33.2002 103.8 82.5996zM288 187.5v-22.9004c0 -21.6992 -3.40039 -33.7998 -38.4004 -33.7998h-45.2998
-c-28.8994 0 -44.0996 6.5 -44.0996 35.7002v19c0 29.2998 15.2002 35.7002 44.0996 35.7002h45.2998c35 0.200195 38.4004 -12 38.4004 -33.7002z" />
-    <glyph glyph-name="bitcoin" unicode="&#xf379;" horiz-adv-x="512" 
-d="M504 192c0 -136.967 -111.033 -248 -248 -248s-248 111.033 -248 248s111.033 248 248 248s248 -111.033 248 -248zM362.349 227.33c4.9375 32.999 -20.1904 50.7393 -54.5498 62.5732l11.1465 44.7021l-27.2129 6.78027l-10.8516 -43.5234
-c-7.1543 1.78223 -14.502 3.46387 -21.8027 5.12988l10.9287 43.8096l-27.1982 6.78125l-11.1523 -44.6855c-5.92188 1.34863 -11.7354 2.68164 -17.377 4.08398l0.0302734 0.139648l-37.5293 9.37012l-7.23926 -29.0625s20.1914 -4.62695 19.7646 -4.91309
-c11.0225 -2.75098 13.0146 -10.0439 12.6807 -15.8242l-12.6963 -50.9258c0.759766 -0.193359 1.74414 -0.472656 2.8291 -0.90625c-0.907227 0.224609 -1.87598 0.472656 -2.87598 0.712891l-17.7959 -71.3379c-1.34961 -3.34863 -4.76758 -8.37012 -12.4717 -6.46484
-c0.271484 -0.394531 -19.7793 4.9375 -19.7793 4.9375l-13.5107 -31.1475l35.4141 -8.82617c6.58887 -1.65137 13.0449 -3.37988 19.4004 -5.00684l-11.2617 -45.2129l27.1816 -6.78027l11.1533 44.7324c7.14062 -1.93457 14.4863 -3.84082 21.6865 -5.62695
-l-11.1152 -44.5225l27.2139 -6.78125l11.2617 45.1279c46.4043 -8.78125 81.2988 -5.23926 95.9863 36.7266c11.8359 33.79 -0.589844 53.2812 -25.0049 65.9912c17.7803 4.09766 31.1748 15.792 34.7471 39.9492zM300.172 140.151
-c-8.41016 -33.79 -65.3076 -15.5234 -83.7549 -10.9434l14.9443 59.8994c18.4453 -4.60352 77.5996 -13.7178 68.8105 -48.9561zM308.589 227.818c-7.67285 -30.7363 -55.0312 -15.1201 -70.3926 -11.292l13.5479 54.3262
-c15.3633 -3.82715 64.8359 -10.9727 56.8447 -43.0342z" />
-    <glyph glyph-name="bity" unicode="&#xf37a;" horiz-adv-x="496" 
-d="M78.4004 380.8c95.3994 89.2002 246.1 91.2002 343.1 -3.7998c14.2998 -14.0996 -6.40039 -37.0996 -22.4004 -21.5c-84.7998 82.4004 -215.8 80.2998 -298.899 3.2002c-16.2998 -15.1006 -36.5 8.2998 -21.7998 22.0996zM177.3 -37.7998
-c-128.7 38.2998 -201.899 170.7 -169.8 298.1c5.2998 21 35.2002 12.5 30.2002 -7.09961c-28.2998 -111.3 35.2998 -227.101 147.5 -261c21.3994 -6.40039 11.3994 -35.7002 -7.90039 -30zM325.4 -35.7998c-19.2002 -6.2998 -30 22.7002 -8.80078 29.7002
-c106.101 35.5 167.4 145.699 143.2 253.399c-4.89941 21.7002 25.5 27.6006 30 7.90039c28.5 -124.101 -42.5 -250.8 -164.399 -291zM262.5 43.2002c0 -8.2002 -6.59961 -14.7998 -14.7998 -14.7998s-14.7998 6.59961 -14.7998 14.7998l0.199219 71.7998
-c0 8.09961 6.60059 14.7998 14.8008 14.7998c8.19922 0 14.7998 -6.59961 14.7998 -14.7998zM333.5 312.2c0 21.7998 32.5 19.5996 32.5 0v-71.6006c0 -69.2998 -60.7002 -90.8994 -118 -90.0996c-57.2998 -0.799805 -118 20.7998 -118 90.0996v71.6006
-c0 19.5996 32.5 21.7998 32.5 0c-1.40039 -88.2002 -7 -131.8 85.5 -132.5c90.2002 0.599609 87.5996 41.5996 85.5 132.5z" />
-    <glyph glyph-name="blackberry" unicode="&#xf37b;" horiz-adv-x="512" 
-d="M166 331.1c0 -23.3994 -16.4004 -49.0996 -72.5 -49.0996h-70.0996l21 88.7998h67.7998c42.0996 0 53.7998 -23.2998 53.7998 -39.7002zM292.2 370.8c42.0996 0 53.7998 -23.2998 53.7002 -39.7002c0 -23.3994 -16.3008 -49.0996 -70.1006 -49.0996h-70.0996
-l18.7002 88.7998h67.7998zM88.7998 239.9c42.1006 0 53.7998 -23.4004 53.7998 -39.7002c0 -25.7002 -16.3994 -49.1006 -72.5 -49.1006h-70.0996l21 88.8008h67.7998zM268.9 239.9c42 0 53.6992 -23.4004 53.6992 -39.7002c0 -25.7002 -16.2998 -49.1006 -70.0996 -49.1006
-h-70.0996l18.6992 88.8008h67.8008zM458.2 293.7c42.0996 0 53.7998 -23.4004 53.7002 -39.7002c0 -25.7002 -16.3008 -49.0996 -70.1006 -49.0996h-70.0996l18.7002 88.7998h67.7998zM430.2 155.8c42.0996 0 53.7002 -23.3994 53.7002 -39.7002
-c0 -25.6992 -14 -49.0996 -70.1006 -49.0996h-70.0996l18.7002 88.7998h67.7998zM240.8 102c42.1006 0 53.7998 -23.4004 53.7002 -39.7002c0 -23.3994 -14 -49.0996 -70.0996 -49.0996h-70.1006l18.7002 88.7998h67.7998z" />
-    <glyph glyph-name="blogger" unicode="&#xf37c;" 
-d="M162.4 252c4.7998 4.90039 6.19922 5.09961 36.3994 5.09961c27.2002 0 28.1006 -0.0996094 32.1006 -2.09961c5.7998 -2.90039 8.2998 -7 8.2998 -13.5996c0 -5.90039 -2.40039 -10 -7.60059 -13.4004c-2.7998 -1.7998 -4.5 -1.90039 -31.0996 -2.09961
-c-16.4004 -0.100586 -29.5 0.199219 -31.5 0.799805c-10.2998 2.89941 -14.0996 17.7002 -6.59961 25.2998zM223.8 157.5c55.4004 0 55.1006 0 60.4004 -4.7002c7.39941 -7 5.89941 -19.2998 -3.10059 -24.3994l-9.19922 -1.5l-47.9004 -0.600586
-c-42.2002 -0.5 -54.0996 0.200195 -56.2998 1.2002c-4.40039 1.90039 -8.5 7.2998 -9.2002 12c-0.599609 4.5 1.59961 10.7998 5.09961 13.9004c4.40039 3.89941 6.30078 4.09961 60.2002 4.09961zM447.2 27.4004c-3.5 -28.4004 -23 -50.4004 -51.1006 -57.5
-c-7.19922 -1.80078 -9.69922 -1.90039 -172.899 -1.80078c-157.8 0 -165.9 0.100586 -172 1.80078c-8.40039 2.19922 -15.6006 5.5 -22.2998 10c-5.60059 3.7998 -13.9004 11.7998 -17 16.3994c-3.80078 5.60059 -8.2002 15.2998 -10 22
-c-1.80078 6.7002 -1.90039 9.40039 -1.90039 173.4c0 163.1 0 166.6 1.7998 173.7c6.2998 24.6992 25.9004 43.5996 51.2002 49.1992c7.2998 1.60059 332.1 1.90039 340 0.300781c21.2002 -4.30078 37.9004 -17.1006 47.5996 -36.4004c7.7002 -15.2998 7 1.5 7.30078 -180.6
-c0.199219 -115.801 0 -164.5 -0.700195 -170.5zM361.8 212.6c-1.09961 5 -4.2002 9.60059 -7.7002 11.5c-1.09961 0.600586 -8 1.30078 -15.5 1.7002c-12.3994 0.600586 -13.7998 0.799805 -17.7998 3.10059c-6.2002 3.59961 -7.89941 7.59961 -8 18.2998
-c0 20.3994 -8.5 39.3994 -25.2998 56.5c-12 12.2002 -25.2998 20.5 -40.5996 25.0996c-3.60059 1.10059 -11.8008 1.5 -39.2002 1.7998c-42.9004 0.5 -52.5 -0.399414 -67.1006 -6.19922c-27 -10.7002 -46.2998 -33.4004 -53.3994 -62.4004
-c-1.2998 -5.40039 -1.60059 -14.2002 -1.90039 -64.2998c-0.399414 -62.7998 0 -72.1006 4 -84.5c9.7002 -30.7002 37.1006 -53.4004 64.6006 -58.4004c9.19922 -1.7002 122.199 -2.09961 133.699 -0.5c20.1006 2.7002 35.9004 10.7998 50.7002 25.9004
-c10.7002 10.8994 17.4004 22.7998 21.7998 38.5c3.2002 10.8994 2.90039 88.3994 1.7002 93.8994z" />
-    <glyph glyph-name="blogger-b" unicode="&#xf37d;" 
-d="M446.6 225.3c2 -8.89941 2.40039 -134.1 -2.5 -151.7c-7.09961 -25.2998 -17.8994 -44.3994 -35.1992 -62.0996c-23.9004 -24.4004 -49.4004 -37.5 -81.9004 -41.9004c-18.7002 -2.5 -201.2 -1.89941 -216 0.800781c-44.5 8 -88.7998 44.6992 -104.4 94.2998
-c-6.2998 20.0996 -7 35 -6.39941 136.5c0.5 81 1 95.0996 3.09961 103.899c11.4004 46.8008 42.6006 83.4004 86.1006 100.601c23.5996 9.39941 39 10.7998 108.399 10c44.2002 -0.5 57.4004 -1.10059 63.2998 -2.90039c24.6006 -7.5 46.2002 -20.7998 65.5 -40.5
-c27.1006 -27.5996 40.8008 -58.2998 40.9004 -91.2998c0.0996094 -17.2002 2.7998 -23.5996 12.9004 -29.5c6.39941 -3.7002 8.59961 -4.09961 28.6992 -5c12 -0.5 23.2002 -1.7002 25 -2.7002c5.7002 -3.09961 10.7002 -10.5 12.5 -18.5zM124.5 288.9
-c-12.2002 -12.3008 -6 -36.1006 10.5996 -40.8008c3.10059 -0.799805 24.3008 -1.39941 50.8008 -1.19922c43 0.199219 45.6992 0.399414 50.2998 3.2998c8.5 5.39941 12.2998 12.0996 12.2998 21.5996c0 10.6006 -4.09961 17.2002 -13.4004 21.9004
-c-6.39941 3.2998 -7.89941 3.39941 -51.7998 3.39941c-48.7998 0 -51 -0.299805 -58.7998 -8.19922zM316.3 89.0996c14.4004 8.2002 17 28.1006 4.90039 39.4004c-8.5 7.90039 -8 7.90039 -97.6006 7.7998c-87.0996 -0.0996094 -90.1992 -0.299805 -97.2998 -6.7002
-c-5.59961 -5.09961 -9.2998 -15.0996 -8.2002 -22.3994c1.10059 -7.7002 7.80078 -16.2998 14.9004 -19.4004c3.59961 -1.59961 22.7998 -2.7998 90.9004 -2l77.5 0.900391z" />
-    <glyph glyph-name="buromobelexperte" unicode="&#xf37f;" 
-d="M0 416h128v-128h-128v128zM120 296v112h-112v-112h112zM160 416h128v-128h-128v128zM280 296v112h-112v-112h112zM320 416h128v-128h-128v128zM440 296v112h-112v-112h112zM0 256h128v-128h-128v128zM120 136v112h-112v-112h112zM160 256h128v-128h-128v128zM280 136v112
-h-112v-112h112zM320 256h128v-128h-128v128zM440 136v112h-112v-112h112zM0 96h128v-128h-128v128zM120 -24v112h-112v-112h112zM160 96h128v-128h-128v128zM280 -24v112h-112v-112h112zM320 96h128v-128h-128v128z" />
-    <glyph glyph-name="centercode" unicode="&#xf380;" horiz-adv-x="512" 
-d="M329.2 179.4c-3.7998 -35.2002 -35.4004 -60.6006 -70.6006 -56.8008c-35.1992 3.80078 -60.5996 35.4004 -56.7998 70.6006s35.4004 60.5996 70.6006 56.7998c35.0996 -3.7998 60.5996 -35.4004 56.7998 -70.5996zM243.4 -55.7002
-c-146.7 7.7002 -251.601 138.2 -233.301 279.4c11.2002 86.5996 65.8008 156.899 139.101 192c161 77.0996 349.7 -37.4004 354.7 -216.601c4.09961 -147 -118.4 -262.199 -260.5 -254.8zM423.3 124.3c27.9004 118 -160.5 205.9 -237.2 234.2
-c-57.5 -56.2998 -69.0996 -188.6 -33.7998 -344.4c68.7998 -15.7998 169.101 26.4004 271 110.2z" />
-    <glyph glyph-name="cloudscale" unicode="&#xf383;" 
-d="M318.1 294c6.2002 6.2998 15.8008 -3.09961 9.5 -9.59961l-75.1992 -88.8008c0.899414 -8.19922 -1.80078 -16.7998 -8.10059 -23.0996c-11.0996 -11 -28.8994 -11 -40 0c-11.0996 11.0996 -11.0996 29 0 40c6.2998 6.2998 14.7998 9 23.1006 8.09961l25.1992 20.4004
-c-16.3994 15.2998 -38.3994 24.7002 -62.5996 24.7002c-50.7998 0 -94.5996 -41.4004 -92.5996 -97.4004c-1 6.2998 -1.40039 12.7998 -1.40039 19.4004c0 71.5 57.7998 132.3 129.4 132.3c31.7998 0 60.7998 -14.2998 83.2998 -33.5996zM234.3 182.5
-c5.60059 5.5 5.60059 14.5996 0 20.2002c-5.59961 5.59961 -14.5996 5.59961 -20.2002 0c-5.59961 -5.60059 -5.59961 -14.6006 0 -20.2002c5.60059 -5.5 14.6006 -5.5 20.2002 0zM224 416c123.5 0 224 -100.5 224 -224s-100.5 -224 -224 -224s-224 100.5 -224 224
-s100.5 224 224 224zM224 32c88.2002 0 160 71.7998 160 160s-71.7998 160 -160 160s-160 -71.7998 -160 -160s71.7998 -160 160 -160z" />
-    <glyph glyph-name="cloudsmith" unicode="&#xf384;" horiz-adv-x="332" 
-d="M332.5 28.0996c0 -46.3994 -37.5996 -84.0996 -84 -84.0996s-84 37.7002 -84 84.0996c0 46.4004 37.5996 84 84 84s84 -37.5996 84 -84zM248.5 272c-46.4004 0 -80 -33.5996 -80 -80s-37.5996 -80 -84 -80s-84 33.5996 -84 80s37.5996 88 84 88s76 29.5996 76 76
-s41.5996 84 88 84s80 -37.5996 80 -84s-33.5996 -84 -80 -84z" />
-    <glyph glyph-name="cloudversify" unicode="&#xf385;" horiz-adv-x="616" 
-d="M148.6 144v-0.0996094h-48.8994c-6.40039 0 -11.7002 5.39941 -11.7002 11.7998v40.3994c0 7.60059 7 11.9004 10.7998 11.9004h46.7998v-6.59961c0 -10.7002 8.80078 -16.7002 19.5 -16.7002h20.2002c10.7998 0 19.5 8.7998 19.5 19.5v20.3994
-c0 10.6006 -3.5 19.5 -15.2002 19.5c18.5 15.2002 37.2002 21.4004 45 24.1006c15 56.5 42 92.3994 99.3008 109.7c55.0996 16.5 153.5 3.09961 186.5 -85c73.8994 -22.6006 106.899 -92.6006 92.0996 -155.101c-13 -54.8994 -62.2998 -100.6 -131.5 -99.5
-c-49.5996 -51.3994 -135.2 -48.8994 -186.4 -5.59961c-78.5996 -4.2002 -137.8 42.7998 -146 111.3zM376 136c8.7002 -54.0996 59.7002 -65.5 91.7998 -59.2002c39.1006 7.7002 70.5 37.5 79.7002 76.5c5.7998 24.4004 2.40039 50 -9.40039 72l-10.5 19.6006
-c1.2002 -22.5 -12.5 -60.6006 -47.5 -76.9004c65.5 67.7002 2.10059 141.2 -67.6992 150.5c-49.8008 6.59961 -83.3008 -13 -114.2 -43.7002c48 -4.7002 87.7002 -26.7998 101.8 -74.7998c-30.0996 49.2998 -103 56.5996 -133.6 40.7998
-c-35.5 -18.2002 -60 -54 -57 -93.8994c3.59961 -47.4004 39.5 -67.4004 57.3994 -79.8008c-4.5 21.7002 -4 71.3008 29.2002 92.9004c-36.2998 -60 28.0996 -144.6 135.3 -110.8c-33.5996 14.3994 -66 40.5 -55.2998 86.7998zM128 240h-39.7998
-c-8.90039 0 -16.2002 7.2998 -16.2002 16.2002v39.5996c0 8.90039 7.2998 16.2002 16.2002 16.2002h39.7998c8.90039 0 16.2002 -7.2998 16.2002 -16.2002v-39.5996c0 -8.90039 -7.2998 -16.2002 -16.2002 -16.2002zM10.0996 280c-5.59961 0 -10.0996 4.5 -10.0996 10.0996
-v27.8008c0 5.59961 4.5 10.0996 10.0996 10.0996h27.7002c5.5 0 10.1006 -4.5 10.1006 -10.0996v-27.8008c0 -5.59961 -4.5 -10.0996 -10.1006 -10.0996h-27.7002zM168 305.3v21.4004c0 5.09961 4.2002 9.2998 9.2998 9.2998h21.4004
-c5.09961 0 9.2998 -4.2002 9.2998 -9.2998v-21.4004c0 -5.09961 -4.2002 -9.2998 -9.2998 -9.2998h-21.4004c-5.09961 0 -9.2998 4.2002 -9.2998 9.2998zM56 212.5v-25c0 -6.2998 -5.09961 -11.5 -11.4004 -11.5h-25.1992c-6.30078 0 -11.4004 5.2002 -11.4004 11.5v25
-c0 6.2998 5.09961 11.5 11.4004 11.5h25.0996c6.40039 0 11.5 -5.2002 11.5 -11.5z" />
-    <glyph glyph-name="cpanel" unicode="&#xf388;" horiz-adv-x="640" 
-d="M210.3 227.8c6.60059 -29.0996 -14.5 -65.2998 -51.7002 -65.2998h-32l6.40039 23.7998c1.7998 6.2002 7.2998 10.7998 14.2998 10.7998h10.2998c12.4004 0 20.8008 11.7002 18.3008 22.6006c-2.10059 9.2002 -9.90039 14.7998 -18.3008 14.7998h-19.7998
-l-25.7998 -95.7002c-1.90039 -6.2002 -7.40039 -10.7002 -14.2002 -10.7002l-24.7002 -0.0996094l34.9004 130.1c1.7998 6.40039 7.2002 10.9004 14.2998 10.9004h37c24.1006 0 45.4004 -16.4004 51 -41.2002zM53.7998 199.8c-24.8994 0 -24.7002 -37.3994 0 -37.3994
-h11.2998c4.2002 0 7.60059 -3.90039 6.40039 -8.30078l-7.09961 -26.0996h-12.4004c-33.5 0 -59 31.4004 -50.2998 65.2002c7.2998 27 28.2998 41.0996 51.2002 41.0996h40l-6.2002 -23.5996c-1.90039 -6.5 -7.40039 -10.9004 -14.2998 -10.9004h-18.6006zM301.3 234.6
-c18.7998 0 33.2998 -17.5996 28.5 -36.7998l-14 -51.7998c-2.7998 -10.5996 -12.2002 -17.7998 -23.3994 -17.7998l-57.5 0.200195c-42.9004 0 -38.5 63.7998 0.699219 63.7998h48.4004l-3.5 -13.2002c-1.90039 -6.2002 -7.40039 -10.7998 -14.2002 -10.7998h-21.5996
-c-5.2998 0 -5.2998 -7.90039 0 -7.90039h34.8994c4.60059 0 5.10059 3.90039 5.5 5.2998l8.60059 31.8008c0.299805 1 1.89941 5.2998 -2.10059 5.2998h-57.5c-9.69922 0 -16.5996 8.89941 -14.1992 18.5l3.5 13.3994h77.8994zM633.1 269c4.5 0 7.7002 -4 6.5 -8.2998
-l-26.5 -98.2002c-5.09961 -20.7002 -24.1992 -34.5 -44.8994 -34.5l35.5996 133.1c1.2002 4.7002 5.5 7.90039 10.4004 7.90039h18.8994zM396.8 234.3c34.4004 0 59.2998 -32.2998 50.2998 -65.3994l-8.7998 -33.1006c-1.2002 -4.89941 -5.7002 -7.7998 -10.2998 -7.7998
-h-19.0996c-4.5 0 -7.60059 4 -6.40039 8.2998l10.5996 40c3.30078 11.6006 -5.59961 23.4004 -18.0996 23.4004h-19.7998l-17.2002 -64c-1.2002 -4.7998 -5.59961 -7.7998 -10.4004 -7.7998h-18.8994c-4.2002 0 -7.60059 3.89941 -6.40039 8.2998l26.2002 98h48.2998
-v0.0996094zM495.1 159.7h73.3008l-5.7002 -21c-1.90039 -6.2002 -7.40039 -10.7002 -14.2002 -10.7002h-66.7002c-20 0 -33.2998 19 -28.2998 36.7002l10.7998 40c4.7998 17.5996 20.7002 29.5996 38.6006 29.5996h47.2998c19 0 33.2002 -17.7002 28.2998 -36.7998
-l-3.2002 -12c-2.89941 -11 -12.7002 -17.5996 -23.2002 -17.5996h-53.3994l3.5 13c1.59961 6.19922 7.2002 10.7998 14.2002 10.7998h21.5996c2 0 3.2998 1 3.90039 3l0.699219 2.59961c0.700195 2.7002 -1.2998 5.10059 -3.89941 5.10059h-32.9004
-c-4.09961 0 -6.89941 -2.10059 -7.7998 -6l-8 -30c-0.900391 -3.30078 1.5 -6.7002 5.09961 -6.7002z" />
-    <glyph glyph-name="css3-alt" unicode="&#xf38b;" horiz-adv-x="384" 
-d="M0 416h384l-34.9004 -395.8l-157.1 -52.2002l-157.1 52.2002zM313.1 336h-242.199l5.7998 -47.2998h122.899l-6.5 -2.7002l-112.1 -46.7002l3.59961 -46.2998l0.200195 0.0996094v-0.0996094l166.3 -0.5l-3.69922 -61.5996l-54.7002 -15.4004l-52.6006 13.2998
-l-3.19922 38.2998h-48.9004l6.40039 -73.8994l98.7998 -29.2002l98.2002 28.7002l12.7998 146.6h-111.5l0.299805 0.100586l115.3 49.2998z" />
-    <glyph glyph-name="cuttlefish" unicode="&#xf38c;" horiz-adv-x="440" 
-d="M344 142.5c13.7002 -50.9004 41.7002 -93.2998 87 -117.8c-45.2998 -49.6006 -110.5 -80.7002 -183 -80.7002c-137 0 -248 111 -248 248s111 248 248 248c72.5 0 137.7 -31.0996 183 -80.7002c-45.2998 -24.5 -73.2998 -66.8994 -87 -117.8
-c-17.5 31.5996 -57.4004 54.5 -96 54.5c-56.5996 0 -104 -47.4004 -104 -104s47.4004 -104 104 -104c38.5996 0 78.5 22.9004 96 54.5z" />
-    <glyph glyph-name="d-and-d" unicode="&#xf38d;" horiz-adv-x="576" 
-d="M82.5 349.1c-0.599609 17.2002 2 33.8008 12.7002 48.2002c0.299805 -7.39941 1.2002 -14.5 4.2002 -21.5996c5.89941 27.5 19.6992 49.2998 42.2998 65.5c-1.90039 -5.90039 -3.5 -11.7998 -3 -17.7002c8.7002 7.40039 18.7998 17.7998 44.3994 22.7002
-c14.7002 2.7998 29.7002 2 42.1006 -1c38.5 -9.2998 61 -34.2998 69.7002 -72.2998c5.2998 -23.1006 0.699219 -45 -8.30078 -66.4004c-5.19922 -12.4004 -12 -24.4004 -20.6992 -35.0996c-2 1.89941 -3.90039 3.7998 -5.80078 5.59961
-c-42.7998 40.7998 -26.7998 25.2002 -37.3994 37.4004c-1.10059 1.19922 -1 2.19922 -0.100586 3.59961c8.30078 13.5 11.8008 28.2002 10 44c-1.09961 9.7998 -4.2998 18.9004 -11.2998 26.2002c-14.5 15.2998 -39.2002 15 -53.5 -0.600586
-c-11.3994 -12.5 -14.0996 -27.3994 -10.8994 -43.5996c0.199219 -1.2998 0.399414 -2.7002 0 -3.90039c-3.40039 -13.6992 -4.60059 -27.5996 -2.5 -41.5996c0.0996094 -0.5 0.0996094 -1.09961 0.0996094 -1.59961c0 -0.300781 -0.0996094 -0.5 -0.200195 -1.10059
-c-21.7998 11 -36 28.2998 -43.2002 52.2002c-8.2998 -17.7998 -11.0996 -35.5 -6.59961 -54.0996c-15.5996 15.1992 -21.2998 34.2998 -22 55.1992zM552.1 225.9c0.5 -0.600586 1.2002 -1 1.7002 -1.40039v-0.5c-15 3.59961 -29.7998 1.7998 -44.5 -1.2998
-c-9.2998 -2 -18.2998 -4.7002 -26.7002 -9c-2.89941 -1.5 -5.69922 -3.2998 -8 -4.7002c-5.7998 2.40039 -11.2998 5.5 -17.1992 6.7998c-24.5 5.2998 -45.8008 -1.2002 -62.5 -20c-19.7002 -22.2002 -34.5 -47.5996 -46.7002 -74.5l-1.2002 -2.7002
-c-0.0996094 -0.199219 -0.200195 -0.299805 -0.400391 -0.399414c-12.0996 8.2998 -21.5996 20.2998 -36.0996 25.5996c0.299805 0.400391 0.400391 0.900391 0.700195 1.2998c20.5996 28.2002 44.8994 52.5 75.0996 70.4004c16 9.5 33 16.0996 51.5 18.5
-c1.7998 0.200195 3.5 0.400391 5.2998 1.09961c-4.39941 0 -8.7998 0.300781 -13.0996 -0.0996094c-21.2002 -1.90039 -40.5 -9.59961 -58.7002 -20.2002c-13.7998 -8 -26.2002 -17.7002 -36.5996 -29.7998c-0.400391 -0.5 -0.600586 -1.09961 -0.900391 -1.7002
-c-0.299805 0.299805 -0.700195 0.600586 -1 0.900391c11 30.8994 30.7002 55 57.7002 73.2998c0.200195 -0.200195 0.5 -0.299805 0.700195 -0.5c-1.2002 -1.7002 -2.5 -3.2998 -3.5 -5.09961c-1.7998 -3.30078 -3.7002 -6.5 -5.10059 -10
-c-1.7998 -4.30078 1.60059 -8.60059 12 -0.5c18.2002 14.0996 29.6006 26.2998 48.9004 29.5996c0.700195 0.0996094 1.2998 0.299805 1.90039 0.299805h2.5c-1 -0.700195 -1.60059 -1.09961 -2.2002 -1.5c-11.6006 -7.7998 -11.7998 -7.39941 -15 -12
-c-2.60059 -3.7002 -0.200195 -8 4.7002 -6.7998c2.59961 0.599609 5.19922 1.2998 7.69922 2.2002c9.40039 3.2998 19 5.7998 29 6.39941c13.9004 0.800781 27.1006 -1.89941 39.9004 -7.09961c15.0996 -6.2002 28.5 -15 40.0996 -26.5996zM316.7 50.4004
-c1.5 -1.30078 1.89941 -2.40039 0.899414 -4.2002c-25.2998 -50.2002 -61.0996 -89.1006 -116 -98.7998c-26.7998 -4.7002 -52.8994 -2.7002 -77.8994 8.59961c-18.5 8.2002 -34.6006 19.5996 -47.2002 35.5996c-2 2.60059 -3.7002 5.40039 -5.90039 8.60059
-c-0.699219 -7.7998 0.100586 -14.9004 1.5 -21.9004c-0.199219 -0.200195 -0.399414 -0.299805 -0.599609 -0.5c-3.2002 3.40039 -6.59961 6.60059 -9.5 10.2998c-12.2002 15.5 -19.5 33.3008 -24.0996 52.3008c-11.8008 48.2998 -0.5 78.7998 7.7998 101.1
-c-8.7002 -4.7998 -16.2002 -10.2998 -23.6006 -16.2002c11.6006 32.7998 31.9004 59.9004 56.1006 84.6006c2.39941 -2.10059 3.2998 -4.7002 3 -7.40039c-0.200195 -1 -5.90039 -38.9004 -5.60059 -44.7002c18.9004 18.9004 40.5 33.2998 64.8008 43.9004
-c-7.5 -11.1006 -11 -23.4004 -11.8008 -37.2998c13.4004 12.1992 27.7002 20.0996 46.4004 13.8994c-8.5 -9.09961 -30.7998 -30.5 -38.5996 -64.2998c-5.10059 -21.9004 -3.80078 -43.0996 8.19922 -62.5996c11.2002 -18.3008 27.8008 -27.8008 49.4004 -27.8008
-c12.5996 0 23.7998 5 34.0996 11.8008c18.5 12.2998 32.8008 28.5 44 47.5996c1.90039 3.2002 1.10059 2.09961 1.90039 3c19.9004 -16.0996 3.2998 -2.59961 42.7002 -35.5996zM488.7 96.7998c20.2002 -6.59961 35.5 -18.7998 43.7998 -38.8994
-c9.2002 -23.1006 2.09961 -49.4004 -17.4004 -66c-16.3994 -14 -35.6992 -19.2002 -57 -17.4004c-0.599609 0 -1.19922 0 -1.89941 -0.299805c15.0996 -10.7002 31.5996 -15.2002 50.8994 -10.6006c-2.19922 -2.39941 -3.89941 -4.69922 -5.89941 -6.5
-c-12.2998 -10.8994 -26.9004 -16.8994 -42.9004 -19.7998c-39.5996 -7.2998 -75.5996 12.7998 -85 56.9004c-0.5 2.09961 -0.599609 4.2002 -0.899414 6.39941c-10.8008 -8.19922 -16.4004 -34.0996 -0.700195 -52.2998c-1.60059 0.5 -2.60059 0.700195 -3.60059 1.10059
-c-21.2998 8.2998 -34.3994 28.2998 -33.5 51.1992c0.900391 23.2002 4.90039 41 -13 56c-16.5 13.8008 -33 27.4004 -49.5 41.1006c-8.09961 6.7002 -14.7998 14.5 -17 25.0996c-1 4.60059 -1.39941 9.40039 -1.7998 14.1006c-0.5 6.09961 -3.2998 11 -7.89941 14.7998
-c-4.5 3.89941 -9.30078 7.39941 -13.8008 11.2002c-8.89941 7.5 -12.2998 18.8994 -7.2998 29.8994c2.7998 -12.8994 9.60059 -18.8994 22.6006 -20.2998c4.39941 -0.5 8.89941 -0.799805 13.2998 -1.5c8.09961 -1.2002 12.7998 -6.09961 14.2998 -14.2002
-c0.700195 -3.39941 1.2998 -6.7998 2.2002 -10.2002c1.59961 -5.59961 4.5 -8 10.3994 -8.39941c4.60059 -0.299805 9.30078 -0.5 13.9004 -0.900391c7.59961 -0.599609 14.2002 -3.7998 20.0996 -8.7002c19.4004 -16.1992 39 -32.1992 58.5 -48.2998
-c5.7002 -4.7002 12 -8.2002 19.6006 -8.5c16.7002 -0.599609 29 15.2002 24.7998 31.7998c-0.200195 0.700195 -0.400391 1.5 -0.0996094 2.80078c2.39941 -2 4.89941 -3.80078 7 -5.90039c14.0996 -14 18.0996 -39.2998 8.69922 -56.0996
-c-2.09961 -3.80078 -5.2998 -7.10059 -8.09961 -10.8008c0.700195 -0.199219 1.7998 -0.5 3 -0.599609c14 -1.40039 27.2002 1 38.9004 9.09961c15.7998 10.9004 18 31.2002 5.39941 45.6006c-4.7002 5.39941 -8.89941 8 -18.7998 12
-c6.5 1.2998 19.2002 0.200195 28.7002 -2.90039zM99.4004 268.7c-5.30078 9.2002 -13.2002 15.5996 -22.1006 21.2998c13.7002 0.5 26.6006 -0.200195 39.6006 -3.7002c-7 12.2002 -8.5 24.7002 -5 38.7002c5.2998 -11.9004 13.6992 -20.0996 23.5996 -26.7998
-c19.7002 -13.2002 35.7002 -19.6006 46.7002 -30.2002c3.39941 -3.2998 6.2998 -7.09961 9.59961 -10.9004c-0.799805 2.10059 -1.39941 4.10059 -2.2002 6c-5 10.6006 -13 18.6006 -22.5996 25c-1.7998 1.2002 -2.7998 2.5 -3.40039 4.5
-c-3.2998 12.5 -3 25.1006 -0.699219 37.6006c1 5.5 2.7998 10.8994 4.5 16.2998c0.799805 2.40039 2.2998 4.59961 4 6.59961c0.599609 -6.89941 0 -25.5 19.5996 -46c10.7998 -11.2998 22.4004 -21.8994 33.9004 -32.6992c9 -8.5 18.2998 -16.7002 25.5 -26.8008
-c1.09961 -1.59961 2.19922 -3.2998 3.7998 -4.69922c-5 13 -14.2002 24.0996 -24.2002 33.7998c-9.59961 9.2998 -19.4004 18.3994 -29.2002 27.3994c-3.2998 3 -4.59961 6.7002 -5.09961 10.9004c-1.2002 10.4004 0 20.5996 4.2998 30.2002c0.5 1 1.09961 2 1.90039 3.2998
-c0.5 -4.2002 0.599609 -7.90039 1.39941 -11.5996c4.7998 -23.1006 20.4004 -36.3008 49.2998 -63.5c10 -9.40039 19.3008 -19.2002 25.6006 -31.6006c4.7998 -9.2998 7.2998 -19 5.7002 -29.5996c-0.100586 -0.600586 0.5 -1.7002 1.09961 -2
-c6.2002 -2.60059 10 -6.90039 9.7002 -14.2998c7.7002 2.59961 12.5 8 16.3994 14.5c4.2002 -20.2002 -9.09961 -50.3008 -27.1992 -58.7002c0.399414 4.5 5 23.3994 -16.5 27.7002c-6.80078 1.2998 -12.8008 1.2998 -22.9004 2.09961c4.7002 9 10.4004 20.5996 0.5 22.4004
-c-24.9004 4.59961 -52.7998 -1.90039 -57.7998 -4.60059c8.2002 -0.399414 16.2998 -1 23.5 -3.2998c-2 -6.5 -4 -12.7002 -5.7998 -18.9004c-1.90039 -6.5 2.09961 -14.5996 9.2998 -9.59961c1.2002 0.900391 2.2998 1.90039 3.2998 2.7002
-c-3.09961 -17.9004 -2.90039 -15.9004 -2.7998 -18.2998c0.299805 -10.2002 9.5 -7.80078 15.7002 -7.30078c-2.5 -11.7998 -29.5 -27.2998 -45.4004 -25.7998c7 4.7002 12.7002 10.2998 15.9004 17.9004c-6.5 -0.799805 -12.9004 -1.60059 -19.2002 -2.40039
-l-0.299805 0.900391c4.69922 3.39941 8 7.7998 10.1992 13.0996c8.7002 21.1006 -3.59961 38 -25 39.9004c-9.09961 0.799805 -17.7998 -0.799805 -25.8994 -5.5c6.2002 15.5996 17.2002 26.5996 32.5996 34.5c-15.2002 4.2998 -8.89941 2.7002 -24.5996 6.2998
-c14.5996 9.2998 30.2002 13.2002 46.5 14.5996c-5.2002 3.2002 -48.1006 3.60059 -70.2002 -20.8994c7.90039 -1.40039 15.5 -2.7998 23.2002 -4.2002c-23.7998 -7 -44 -19.7002 -62.4004 -35.5996c1.10059 4.7998 2.7002 9.5 3.2998 14.2998
-c0.600586 4.5 0.800781 9.2002 0.100586 13.5996c-1.5 9.40039 -8.90039 15.1006 -19.7002 16.2998c-7.90039 0.900391 -15.5996 -0.0996094 -23.2998 -1.2998c-0.900391 -0.0996094 -1.7002 -0.299805 -2.90039 0c15.7998 14.7998 36 21.7002 53.1006 33.5
-c6 4.5 6.7998 8.2002 3 14.9004zM227.8 241.9c3.2998 -16 12.6006 -25.5 23.7998 -24.3008c-4.59961 11.3008 -12.0996 19.5 -23.7998 24.3008z" />
-    <glyph glyph-name="deploydog" unicode="&#xf38e;" horiz-adv-x="512" 
-d="M382.2 312h51.7002v-239.6h-51.7002v20.6992c-19.7998 -24.7998 -52.7998 -24.0996 -73.7998 -14.6992c-26.2002 11.6992 -44.3008 38.0996 -44.3008 71.7998c0 29.7998 14.8008 57.8994 43.3008 70.7998c20.1992 9.09961 52.6992 10.5996 74.7998 -12.9004v103.9z
-M317.5 150.2c0 -18.2002 13.5996 -33.5 33.2002 -33.5c19.7998 0 33.2002 16.3994 33.2002 32.8994c0 17.1006 -13.7002 33.2002 -33.2002 33.2002c-19.6006 0 -33.2002 -16.3994 -33.2002 -32.5996zM188.5 312h51.7002v-239.6h-51.7002v20.6992
-c-19.7998 -24.7998 -52.7998 -24.0996 -73.7998 -14.6992c-26.2002 11.6992 -44.2998 38.0996 -44.2998 71.7998c0 29.7998 14.7998 57.8994 43.2998 70.7998c20.2002 9.09961 52.7002 10.5996 74.7998 -12.9004v103.9zM123.8 150.2c0 -18.2002 13.6006 -33.5 33.2002 -33.5
-c19.7998 0 33.2002 16.3994 33.2002 32.8994c0 17.1006 -13.7002 33.2002 -33.2002 33.2002c-19.7002 0 -33.2002 -16.3994 -33.2002 -32.5996zM448 352h-384c-17.5996 0 -32 -14.5 -32 -32v-256c0 -17.5996 14.5 -32 32 -32h384c17.5996 0 32 14.5 32 32v256
-c0 17.5996 -14.5 32 -32 32zM448 384c35.2002 0 64 -28.7998 64 -64v-256c0 -35.2002 -28.7998 -64 -64 -64h-384c-35.2002 0 -64 28.7998 -64 64v256c0 35.2002 28.7998 64 64 64h384z" />
-    <glyph glyph-name="deskpro" unicode="&#xf38f;" horiz-adv-x="480" 
-d="M205.9 -64l31.0996 38.4004c12.2998 0.199219 25.5996 1.39941 36.5 6.59961c38.9004 18.5996 38.4004 61.9004 38.2998 63.7998c-0.0996094 5 -0.799805 4.40039 -28.8994 37.4004h79.0996c-0.200195 -50.1006 -7.2998 -68.5 -10.2002 -75.7002
-c-9.39941 -23.7002 -43.8994 -62.7998 -95.2002 -69.4004c-8.69922 -1.09961 -32.7998 -1.19922 -50.6992 -1.09961zM406.3 103.7l-119.2 -0.100586l17.4004 31.3008l175.5 -0.300781c-15.2002 -17.2998 -35.0996 -30.8994 -73.7002 -30.8994zM362.7 327.6v-168.3h-73.5
-l-32.7002 -55.5h-6.5c-52.2998 0 -58.0996 56.5 -58.2998 58.9004c-1.2002 13.2002 -21.2998 11.5996 -20.1006 -1.7998c1.40039 -15.8008 8.80078 -40 26.4004 -57.1006h-91c-25.5 0 -110.8 26.7998 -107 114v213.3c0 16 9.7002 16.6006 15 16.8008h82
-c0.200195 0 0.299805 -0.100586 0.5 -0.100586c4.2998 0.400391 50.0996 2.10059 50.0996 -43.7002c0 -13.2998 20.2002 -13.3994 20.2002 0c0 18.2002 -5.5 32.8008 -15.7998 43.7002h84.2002c108.7 0.400391 126.5 -79.3994 126.5 -120.2zM230.2 271.6l64 -29.2998
-c13.2998 45.5 -42.2002 71.7002 -64 29.2998z" />
-    <glyph glyph-name="digital-ocean" unicode="&#xf391;" horiz-adv-x="512" 
-d="M87 -33.7998v73.5996h73.7002v-73.5996h-73.7002zM25.4004 101.4h61.5996v-61.6006h-61.5996v61.6006zM491.6 271.1c53.2002 -170.3 -73 -327.1 -235.6 -327.1v95.7998h0.299805v0.299805c101.7 0.200195 180.5 101 141.4 208
-c-14.2998 39.6006 -46.1006 71.4004 -85.7998 85.7002c-107.101 38.7998 -208.101 -39.8994 -208.101 -141.7h-95.7998c0 162.2 156.9 288.7 327 235.601c74.2002 -23.2998 133.6 -82.4004 156.6 -156.601zM256.3 40.0996h-0.299805v-0.299805h-95.2998v95.6006h95.5996
-v-95.3008z" />
-    <glyph glyph-name="discord" unicode="&#xf392;" 
-d="M297.216 204.8c0 -15.6162 -11.5195 -28.416 -26.1123 -28.416c-14.3359 0 -26.1113 12.7998 -26.1113 28.416s11.5195 28.416 26.1113 28.416c14.5928 0 26.1123 -12.7998 26.1123 -28.416zM177.664 233.216c14.5918 0 26.3682 -12.7998 26.1123 -28.416
-c0 -15.6162 -11.5205 -28.416 -26.1123 -28.416c-14.3359 0 -26.1123 12.7998 -26.1123 28.416s11.5205 28.416 26.1123 28.416zM448 395.264v-459.264c-64.4941 56.9941 -43.8682 38.1279 -118.784 107.776l13.5684 -47.3604h-290.304
-c-28.9287 0 -52.4805 23.5518 -52.4805 52.7363v346.111c0 29.1846 23.5518 52.7363 52.4805 52.7363h343.039c28.9287 0 52.4805 -23.5518 52.4805 -52.7363zM375.04 152.576c0 82.4316 -36.8643 149.248 -36.8643 149.248
-c-36.8643 27.6475 -71.9355 26.8799 -71.9355 26.8799l-3.58398 -4.0957c43.5195 -13.3125 63.7441 -32.5127 63.7441 -32.5127c-60.8115 33.3291 -132.244 33.335 -191.232 7.42383c-9.47168 -4.35156 -15.1035 -7.42383 -15.1035 -7.42383
-s21.2471 20.2246 67.3271 33.5361l-2.55957 3.07227s-35.0723 0.767578 -71.9355 -26.8799c0 0 -36.8643 -66.8164 -36.8643 -149.248c0 0 21.5039 -37.1201 78.0801 -38.9121c0 0 9.47168 11.5195 17.1514 21.248c-32.5117 9.72754 -44.7998 30.208 -44.7998 30.208
-c3.7666 -2.63574 9.97656 -6.05273 10.4961 -6.40039c43.21 -24.1973 104.588 -32.126 159.744 -8.95996c8.95996 3.32812 18.9443 8.19238 29.4395 15.1045c0 0 -12.7998 -20.9922 -46.3359 -30.4639c7.68066 -9.72852 16.8965 -20.7363 16.8965 -20.7363
-c56.5762 1.79199 78.3359 38.9121 78.3359 38.9121z" />
-    <glyph glyph-name="discourse" unicode="&#xf393;" 
-d="M225.9 416c122.699 0 222.1 -102.3 222.1 -223.9c0 -121.6 -99.4004 -223.899 -222.1 -223.899l-225.801 -0.200195s-0.0996094 224 -0.0996094 227.9c0 121.6 103.3 220.1 225.9 220.1zM224 64c70.7002 0 128 57.2998 128 128s-57.2998 128 -128 128
-s-128 -57.2998 -128 -128c0 -22.0996 5.59961 -42.9004 15.4004 -61l-22.9004 -75l81.0996 20.0996c16.5 -7.7998 35 -12.0996 54.4004 -12.0996z" />
-    <glyph glyph-name="dochub" unicode="&#xf394;" horiz-adv-x="416" 
-d="M397.9 288h-141.9v140.4zM304 256h96v-126.1c0 -129.301 -70.2998 -193.9 -210.8 -193.9h-189.2v512h189.2c12.2002 0 23.7002 -1.09961 34.5996 -3.2998v-84c-10 1.7002 -21.0996 2.5 -33.0996 2.5h-94.7002v-337.3h94.7002c76.7998 0 113.3 33.2998 113.3 100.1v130z
-" />
-    <glyph glyph-name="docker" unicode="&#xf395;" horiz-adv-x="640" 
-d="M349.9 211.7h-66.1006v59.3994h66.1006v-59.3994zM349.9 416v-60.7002h-66.1006v60.7002h66.1006zM428.1 271.2v-59.4004h-66.0996v59.4004h66.0996zM271.8 343.3v-60.0996h-66.0996v60.0996h66.0996zM349.9 343.3v-60.0996h-66.1006v60.0996h66.1006zM626.7 243.3
-l13.2998 -8.89941c-1.90039 -3.90039 -7 -14.6006 -8.5 -17.1006c-23.7002 -45.2998 -69.9004 -45.5996 -91.2998 -45.2002c-54.5 -131.699 -171 -204.199 -328.4 -204.199c-72.7002 0 -128.3 22.2998 -165.399 66.1992c-38.2002 45.3008 -52.7002 111.301 -44 162.101
-h434.699c22.6006 -0.400391 39.7002 6 48.4004 10.7002c-19.7002 30.1992 -14.7002 76 3.7002 103.8l9.2998 14l14 -9.2998c24.4004 -18.8008 37.7998 -39.7002 41.0996 -63.7002c25.5 4.7998 58.7002 1.2998 73.1006 -8.40039zM115.6 271.2h0.100586v-59.4004h-66.1006
-v59.4004h66zM193.7 271.2v-59.4004h-66.1006v59.4004h66.1006zM271.8 271.2v-59.4004h-66.0996v59.4004h66.0996zM193.7 343.3v-60.0996h-66.1006v60.0996h66.1006z" />
-    <glyph glyph-name="draft2digital" unicode="&#xf396;" horiz-adv-x="480" 
-d="M480 49.9004l-144 -81.9004v64.2002l-336 -0.100586c18.2998 19.1006 84.5 87.8008 161.1 174.801c32.6006 37.1992 78 83.2998 69.7002 127.6c-5.2998 28.2998 -42.2002 50.7998 -83.2998 33.5c-8.59961 -3.59961 -24.5 -17.4004 -26.2998 -24.7002
-c28.2998 -4.7002 48 -29.7002 48 -56.7998c0 -31.7002 -25.6006 -57.4004 -57.2998 -57.4004c-37.3008 0 -62.2002 34.1006 -56.7002 67.1006c1.2002 7.89941 5.09961 26.7998 18.2002 47.7002c14.8994 23.8994 45.1992 54.8994 104.3 67.2998
-c103.8 21.7002 161.6 -36.6006 166 -41.2002c28.8994 -29.9004 48 -90.7002 12.7998 -153.3c-30 -53.4004 -81 -114.3 -111.8 -149.3h91.2998v64.6992zM369.9 77v-54.4004l47.0996 27.2002zM134.2 286.6c0 12.3008 -10 22.4004 -22.4004 22.4004
-c-12.3994 0 -22.3994 -10 -22.3994 -22.4004c0 -12.3994 10 -22.3994 22.3994 -22.3994c12.4004 0 22.4004 10 22.4004 22.3994zM82.5 67.5h114.4c17.5996 19.2002 91.5 100.8 128.5 166.7c36.5996 65.0996 -5.80078 113.3 -5.80078 113.3
-c-14.1992 14.9004 -36.8994 36.2002 -82.1992 38.2998c6.7998 -5.5 16.8994 -16.8994 24.2998 -35.7002c11.8994 -30.2998 6.7002 -69.5996 -28.4004 -112.699c-53.0996 -65.2002 -125.2 -142.5 -150.8 -169.9z" />
-    <glyph glyph-name="dribbble-square" unicode="&#xf397;" 
-d="M90.2002 219.8c8.89941 42.4004 37.3994 77.7002 75.7002 95.7002c3.59961 -4.90039 28 -38.7998 50.6992 -79c-64 -17 -120.3 -16.7998 -126.399 -16.7002zM314.6 294c-2.5 -3.5 -23 -31.0996 -71.5996 -49.4004c-22.4004 41.1006 -47.2002 74.9004 -51 80
-c43.2998 10.5 89 -0.799805 122.6 -30.5996zM140.1 84c14.3008 29.2002 53 66.7998 108.101 85.5996c19.2002 -49.7998 27.2002 -91.5996 29.2002 -103.6c-44 -18.7002 -96.8008 -13.5996 -137.301 18zM238.9 192.2c-49.4004 -13.9004 -94.3008 -53.9004 -116.5 -91.7998
-c-21.8008 24.2998 -35.1006 56.2998 -35.1006 91.3994c0 1.40039 0.100586 2.7998 0.100586 4.2002c6 -0.200195 72.1992 -1 140.399 19.4004c3.90039 -7.7002 7.7002 -15.4004 11.1006 -23.2002zM273.8 175.9c42.7998 6.89941 80.5 -4.30078 85.1006 -5.80078
-c-6.10059 -38 -27.9004 -70.8994 -58.6006 -91.5996c-1.39941 8.2998 -8.59961 48.2998 -26.5 97.4004zM253.5 224.3c50.5 20.7002 73.4004 50 76.2998 53.9004c19.1006 -23.2002 30.6006 -52.7998 30.9004 -85.1006c-4.5 1 -49.7002 10.1006 -95.2002 4.40039
-c-3.7002 9 -7.2002 17 -12 26.7998zM448 368v-352c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h352c26.5 0 48 -21.5 48 -48zM384 192c0 88.2002 -71.7998 160 -160 160s-160 -71.7998 -160 -160s71.7998 -160 160 -160
-s160 71.7998 160 160z" />
-    <glyph glyph-name="dyalog" unicode="&#xf399;" horiz-adv-x="416" 
-d="M0 416h171.2c74.5 0 137.7 -24 182.5 -69.5996c40.2002 -40.9004 62.2998 -95.6006 62.2998 -154.301c0 -111.399 -84.0996 -224.1 -244.8 -224.1h-171.2v64h171.2c122.2 0 180.8 84 180.8 160.1c0 79.7002 -67.4004 159.9 -180.8 159.9h-107.2v-55.2002h-64v119.2z" />
-    <glyph glyph-name="earlybirds" unicode="&#xf39a;" horiz-adv-x="480" 
-d="M313.2 400.5c1.2002 13 21.2998 14 36.5996 8.7002c0.900391 -0.299805 26.2002 -9.7002 19 -15.2002c-27.8994 7.40039 -56.3994 -18.2002 -55.5996 6.5zM112.2 393.6c-7.7998 6.2002 19.8994 16.4004 20.8994 16.7002c16.8008 5.7002 38.9004 4.60059 40.2002 -9.59961
-c0.900391 -27.1006 -30.3994 1 -61.0996 -7.10059zM319.4 288c8.7998 0 16 -7.2002 16 -16s-7.2002 -16 -16 -16c-8.80078 0 -16 7.2002 -16 16s7.19922 16 16 16zM159.7 288c8.7998 0 16 -7.2002 16 -16s-7.2002 -16 -16 -16s-16 7.2002 -16 16s7.2002 16 16 16z
-M478.2 124.8c-9.90039 -24 -40.7002 -11 -63.9004 1.2002c-13.5 -69.0996 -58.0996 -111.4 -126.3 -124.2c0.299805 -0.899414 -2 0.100586 24 -1c33.5996 -1.39941 63.7998 3.10059 97.4004 8c-19.8008 13.7998 -11.4004 37.1006 -9.80078 38.1006
-c1.40039 0.899414 14.7002 -1.7002 21.6006 -11.5c8.59961 12.5 28.3994 14.7998 30.2002 13.5996c1.59961 -1.09961 6.59961 -20.9004 -6.90039 -34.5996c4.7002 0.899414 8.2002 1.59961 9.7998 2.09961c2.60059 0.799805 17.7002 -11.2998 3.10059 -13.2998
-c-14.3008 -2.2998 -22.6006 -5.10059 -47.1006 -10.7998c-45.8994 -10.7002 -85.8994 -11.8008 -117.7 -12.8008l1 -11.5996c3.80078 -18.0996 -23.3994 -24.2998 -27.5996 -6.2002c0.799805 -17.8994 -27.0996 -21.7998 -28.4004 1l-0.5 -5.2998
-c-0.699219 -18.4004 -28.3994 -17.9004 -28.2998 0.599609c-7.5 -13.5 -28.0996 -6.7998 -26.3994 8.5l1.19922 12.4004c-36.6992 -0.900391 -59.6992 -3.09961 -61.7998 -3.09961c-20.8994 0 -20.8994 31.5996 0 31.5996c2.40039 0 27.7002 -1.2998 63.2002 -2.7998
-c-61.0996 15.5 -103.7 55 -114.9 118.2c-25 -12.8008 -57.5 -26.8008 -68.1992 -0.800781c-10.5 25.4004 21.5 42.6006 66.7998 73.4004c0.700195 6.59961 1.59961 13.2998 2.7002 19.7998c-14.4004 19.6006 -11.6006 36.2998 -16.1006 60.4004
-c-16.7998 -2.40039 -23.2002 9.09961 -23.5996 23.0996c0.299805 7.2998 2.09961 14.9004 2.39941 15.4004c1.10059 1.7998 10.1006 2 12.7002 2.59961c6 31.7002 50.6006 33.2002 90.9004 34.5c19.7002 21.7998 45.2002 41.5 80.8994 48.2998
-c-15.2998 19.4004 -3.39941 39.9004 -2.39941 40.4004c1.7002 0.799805 21.2002 -4.2998 26.2998 -23.2002c5.2002 8.7998 18.2998 11.4004 19.5996 10.7002c1.10059 -0.599609 6.40039 -15 -4.89941 -25.9004c40.2998 -3.5 72.2002 -24.6992 96 -50.6992
-c36.0996 -1.5 71.7998 -5.90039 77.0996 -34c2.7002 -0.600586 11.6006 -0.800781 12.7002 -2.60059c0.299805 -0.5 2.09961 -8.09961 2.40039 -15.3994c-0.5 -13.9004 -6.80078 -25.4004 -23.6006 -23.1006c-3.2002 -17.2998 -2.7002 -32.8994 -8.7002 -47.7002
-c2.40039 -11.6992 4 -23.7998 4.80078 -36.3994c37 -25.4004 70.2998 -42.5 60.2998 -66.9004zM207.4 288.1c0.899414 44 -37.9004 42.2002 -78.6006 40.3008c-21.7002 -1 -38.8994 -1.90039 -45.5 -13.9004c-11.3994 -20.9004 5.90039 -92.9004 23.2002 -101.2
-c9.7998 -4.7002 73.4004 -7.89941 86.2998 7.10059c8.2002 9.39941 15 49.3994 14.6006 67.6992zM259.4 229.8c-4.30078 12.4004 -6 30.1006 -15.3008 32.7002c-2 0.5 -9 0.5 -11 0c-10 -2.7998 -10.7998 -22.0996 -17 -37.2002c15.4004 0 19.3008 -9.7002 23.7002 -9.7002
-c4.2998 0 6.2998 11.3008 19.6006 14.2002zM395.1 314.5c-6.59961 12.0996 -24.7998 12.9004 -46.5 13.9004c-40.1992 1.89941 -78.1992 3.7998 -77.2998 -40.3008c-0.5 -18.2998 5 -58.2998 13.2002 -67.7998c13 -14.8994 76.5996 -11.7998 86.2998 -7.09961
-c15.7998 7.59961 36.5 78.8994 24.2998 101.3z" />
-    <glyph glyph-name="erlang" unicode="&#xf39d;" horiz-adv-x="640" 
-d="M87.2002 394.5c-41.5 -50.2002 -65.6006 -116.2 -65.5 -192.9c-0.100586 -86.7998 29 -159.5 78.7002 -212.1h-100.4v405h87.2002zM325.4 384.8c46.1992 -0.0996094 79.5996 -33.5 80.6992 -83.2002h-169.899c4.09961 49.7002 43.2998 83.1006 89.2002 83.2002z
-M556.1 394.4h0.300781l-0.100586 0.0996094zM556.4 394.4h83.5996v-405h-80.7998c21.3994 23 40.5 49.8994 57.8994 80.7998l-96.3994 48.2002c-33.9004 -55.1006 -83.4004 -105.801 -151.9 -106.101c-99.7002 0.400391 -138.8 85.6006 -138.6 195.3h372.399
-c0.5 12.4004 0.5 18.1006 0 24.1006c2.5 65.2002 -14.7998 120 -46.1992 162.7z" />
-    <glyph glyph-name="facebook-f" unicode="&#xf39e;" horiz-adv-x="320" 
-d="M279.14 160h-74.6895v-224h-100.17v224h-81.3906v92.6602h81.3906v70.6201c0 80.3398 47.8594 124.72 121.08 124.72c35.0693 0 71.75 -6.25977 71.75 -6.25977v-78.8906h-40.4199c-39.8203 0 -52.2402 -24.71 -52.2402 -50.0596v-60.1299h88.9102z" />
-    <glyph glyph-name="facebook-messenger" unicode="&#xf39f;" horiz-adv-x="512" 
-d="M256.55 440c140.04 0 247.45 -102.34 247.45 -240.57c0 -175.13 -166.15 -273.229 -319.44 -231.04c-8.96973 2.44043 -9.64941 0.600586 -62.5596 -22.6992c-2.4375 -1.06445 -5.14355 -1.6543 -7.97168 -1.6543c-10.7617 0 -19.541 8.55176 -19.9082 19.2236
-c-1.41992 46.3701 0.299805 50.7207 -8.0498 58.2305c-48.3604 43.1602 -78.0703 105.64 -78.0703 177.939c0 138.23 108.52 240.57 248.55 240.57zM405.79 254.87c7.0498 11.0801 -6.65039 23.5996 -17.0898 15.6201l-78.4102 -59.3799
-c-2.50586 -1.87988 -5.64258 -2.99316 -9.0127 -2.99316s-6.48145 1.11328 -8.9873 2.99316l-58.0596 43.46c-6.23047 4.65234 -13.9668 7.46582 -22.333 7.46582c-13.2803 0 -24.9512 -6.94434 -31.5771 -17.3965l-73 -115.569
-c-7.05078 -11.0703 6.64941 -23.6006 17.1094 -15.6699l78.3701 59.4395c2.50586 1.87891 5.64258 2.99316 9.0127 2.99316s6.48242 -1.11426 8.9873 -2.99316l58.0801 -43.4697c6.23047 -4.65039 13.9658 -7.46191 22.3301 -7.46191
-c13.2803 0 24.9512 6.94141 31.5801 17.3916z" />
-    <glyph glyph-name="firstdraft" unicode="&#xf3a1;" horiz-adv-x="384" 
-d="M384 256h-64v-128h-128v-128h-192v25.5996h166.4v128h128v128h89.5996v-25.5996zM358.4 217.6h25.5996v-153.6h-128v-128h-192v25.5996h166.4v128h128v128zM384 25.5996v-25.5996h-64v-64h-25.5996v89.5996h89.5996zM0 448h384v-128h-128v-128h-128v-128h-128v384z" />
-    <glyph glyph-name="fonticons-fi" unicode="&#xf3a2;" horiz-adv-x="384" 
-d="M114.4 224h92.3994l-15.2002 -51.2002h-76.3994v-157.8c0 -8 -2.7998 -9.2002 4.39941 -10l59.6006 -5.59961v-34.4004h-179.2v35.2002l29.2002 2.7998c7.2002 0.799805 9.2002 3.2002 9.2002 10.7998v155.8c0 3.2002 -4 3.2002 -8 3.2002h-30.4004v51.2002h38.4004
-v28.7998c0 68 36.3994 96 106 96c46.7998 0 88.7998 -11.2002 88.7998 -72.3994l-69.6006 -8.40039c0.400391 25.5996 -6 31.5996 -22.3994 31.5996c-25.2002 0 -26 -13.5996 -26 -37.5996v-32c0 -3.2002 -4.7998 -6 -0.799805 -6zM384 -35h-140.8v34.4004l28 3.59961
-c7.2002 0.799805 10.3994 2.40039 10.3994 10v148c0 5.59961 -4 9.2002 -9.19922 10.7998l-33.2002 8.7998l9.2002 40.4004h110v-208c0 -8 -3.60059 -8.7998 4 -10l21.5996 -3.59961v-34.4004zM354 312.2l12.4004 -45.6006l-10 -10l-42.8008 22.8008l-42.7998 -22.8008
-l-10 10l12.4004 45.6006l-30 36.3994l4.7998 10h38l21.2002 38.4004h12.7998l21.2002 -38.4004h38l4.7998 -13.1992z" />
-    <glyph glyph-name="fort-awesome-alt" unicode="&#xf3a3;" horiz-adv-x="512" 
-d="M208 210.6c2.09961 0 3.7002 -1.59961 3.7002 -3.69922v-51.7002c0 -2.10059 -1.60059 -3.7002 -3.7002 -3.7002h-22.2002c-2.09961 0 -3.7002 1.59961 -3.7002 3.7002v51.7002c0 2.09961 1.60059 3.69922 3.7002 3.69922h22.2002zM326.2 210.6
-c2 0 3.59961 -1.59961 3.7002 -3.69922v-51.7002c0 -2.10059 -1.60059 -3.7002 -3.7002 -3.7002h-22.2002c-2.09961 0 -3.7002 1.59961 -3.7002 3.7002v51.7002c0 2.09961 1.60059 3.69922 3.7002 3.69922h22.2002zM458.2 335.7
-c28.8994 -40.7002 45.7998 -90.2002 45.7998 -143.7c0 -2 0 -4 -0.0996094 -6c0 -0.700195 0 -1.2998 -0.100586 -2c0 -1.2998 -0.0996094 -2.7002 -0.200195 -4c0 -0.799805 -0.0996094 -1.5 -0.0996094 -2.2998
-c-0.0996094 -1.2002 -0.0996094 -2.40039 -0.200195 -0.700195c-0.0996094 -0.799805 -0.0996094 -1.59961 -0.200195 -2.40039c-0.0996094 -1.19922 -0.199219 -2.39941 -0.299805 -3.5c-0.0996094 -0.799805 -0.200195 -1.59961 -0.200195 -2.39941
-c-0.0996094 -1.2002 -0.299805 -2.40039 -0.399414 -3.60059c-0.100586 -0.799805 -0.200195 -1.5 -0.299805 -2.2998c-0.200195 -1.2998 -0.400391 -2.59961 -0.5 -3.89941c-0.100586 -0.600586 -0.200195 -1.30078 -0.300781 -1.90039l-0.899414 -5.7002
-c-0.100586 -0.599609 -0.200195 -1.09961 -0.299805 -1.7002c-0.200195 -1.2998 -0.5 -2.69922 -0.800781 -4c-0.199219 -0.799805 -0.299805 -1.59961 -0.5 -2.39941c-0.199219 -1.10059 -0.5 -2.2002 -0.699219 -3.2002
-c-0.200195 -0.900391 -0.400391 -1.7002 -0.600586 -2.59961c-0.200195 -1 -0.5 -2 -0.700195 -3c-0.199219 -0.900391 -0.5 -1.80078 -0.699219 -2.7002c-0.300781 -1 -0.5 -1.90039 -0.800781 -2.90039c-0.199219 -0.899414 -0.5 -1.7998 -0.799805 -2.7002
-c-0.299805 -0.899414 -0.599609 -1.89941 -0.799805 -2.7998c-0.299805 -0.899414 -0.5 -1.7998 -0.799805 -2.7002c-0.299805 -0.899414 -0.600586 -1.7998 -0.900391 -2.7998c-0.5 -1.59961 -1.09961 -3.2998 -1.7002 -4.89941
-c-0.299805 -0.900391 -0.599609 -1.80078 -1 -2.80078c-0.399414 -1 -0.699219 -2 -1.09961 -3c-0.299805 -0.799805 -0.599609 -1.5 -0.900391 -2.2998l-1.19922 -3c-0.300781 -0.700195 -0.600586 -1.5 -0.900391 -2.2002c-0.400391 -1 -0.799805 -2 -1.2998 -3
-l-0.900391 -2.09961c-0.399414 -1 -0.899414 -2 -1.39941 -3c-0.300781 -0.700195 -0.600586 -1.2998 -0.900391 -2c-0.5 -1 -1 -2.09961 -1.5 -3.09961c-0.299805 -0.600586 -0.599609 -1.10059 -0.799805 -1.7002c-0.600586 -1.10059 -1.10059 -2.2002 -1.7002 -3.2998
-c-0.0996094 -0.200195 -0.200195 -0.300781 -0.299805 -0.5c-2.2002 -4.10059 -4.40039 -8.2002 -6.7998 -12.2002c-0.200195 -0.400391 -0.5 -0.799805 -0.700195 -1.2002c-0.700195 -1.09961 -1.2998 -2.2002 -2 -3.2998
-c-0.299805 -0.5 -0.600586 -0.900391 -0.900391 -1.40039c-0.700195 -1.09961 -1.39941 -2.09961 -2 -3.2002c-0.299805 -0.5 -0.599609 -0.899414 -0.899414 -1.39941c-0.700195 -1.10059 -1.40039 -2.10059 -2.10059 -3.2002
-c-0.299805 -0.400391 -0.599609 -0.799805 -0.799805 -1.2002c-0.799805 -1.09961 -1.5 -2.2002 -2.2998 -3.2998c-0.200195 -0.200195 -0.299805 -0.5 -0.5 -0.700195c-37.6006 -54.7002 -94.5 -91.3994 -160.101 -102.399
-c-0.899414 -0.100586 -1.69922 -0.300781 -2.59961 -0.400391c-1 -0.200195 -2.09961 -0.299805 -3.09961 -0.5c-0.900391 -0.0996094 -1.80078 -0.299805 -2.80078 -0.400391c-1 -0.0996094 -2 -0.299805 -3 -0.399414c-1 -0.100586 -2 -0.200195 -2.89941 -0.299805
-c-1 -0.100586 -1.90039 -0.200195 -2.90039 -0.300781c-1 -0.0996094 -2.09961 -0.199219 -3.09961 -0.299805c-0.900391 -0.0996094 -1.7998 -0.200195 -2.7002 -0.200195c-1.09961 -0.0996094 -2.2998 -0.0996094 -3.40039 -0.199219
-c-0.799805 0 -1.69922 -0.100586 -2.5 -0.100586c-1.2998 -0.0996094 -2.59961 -0.0996094 -3.89941 -0.0996094c-0.700195 0 -1.40039 -0.100586 -2.10059 -0.100586c-2 0 -4 -0.0996094 -6 -0.0996094s-4 0 -6 0.0996094c-0.699219 0 -1.39941 0 -2.09961 0.100586
-c-1.2998 0 -2.59961 0.0996094 -3.90039 0.0996094c-0.799805 0 -1.69922 0.100586 -2.5 0.100586c-1.09961 0.0996094 -2.2998 0.0996094 -3.39941 0.199219c-0.900391 0.100586 -1.7998 0.100586 -2.7002 0.200195c-1 0.100586 -2.09961 0.200195 -3.09961 0.299805
-c-1 0.100586 -1.90039 0.200195 -2.90039 0.300781c-1 0.0996094 -2 0.199219 -2.90039 0.299805c-1 0.0996094 -2 0.200195 -3 0.399414c-0.899414 0.100586 -1.7998 0.300781 -2.7998 0.400391s-2.09961 0.299805 -3.09961 0.5
-c-0.900391 0.0996094 -1.7002 0.299805 -2.60059 0.400391c-65.5996 10.8994 -122.5 47.6992 -160 99.3994c-0.199219 0.200195 -0.299805 0.5 -0.5 0.700195c-0.799805 1.09961 -1.59961 2.2002 -2.2998 3.2998c-0.299805 0.400391 -0.599609 0.799805 -0.799805 1.2002
-c-0.700195 1.09961 -1.40039 2.09961 -2.09961 3.2002c-0.300781 0.5 -0.600586 0.899414 -0.900391 1.39941c-0.700195 1.10059 -1.40039 2.10059 -2 3.2002c-0.299805 0.5 -0.599609 0.900391 -0.900391 1.40039c-0.699219 1.09961 -1.2998 2.2002 -2 3.2998
-c-0.199219 0.400391 -0.5 0.799805 -0.699219 1.2002c-2.40039 4 -4.60059 8.09961 -6.80078 12.2002c-0.0996094 0.199219 -0.199219 0.299805 -0.299805 0.5c-0.599609 1.09961 -1.09961 2.19922 -1.7002 3.2998c-0.299805 0.599609 -0.599609 1.09961 -0.799805 1.7002
-c-0.5 1 -1 2.09961 -1.5 3.09961c-0.299805 0.700195 -0.599609 1.2998 -0.899414 2c-0.5 1 -0.900391 2 -1.40039 3l-0.900391 2.09961c-0.399414 1 -0.899414 2 -1.2998 3c-0.299805 0.700195 -0.599609 1.5 -0.899414 2.2002l-1.2002 3
-c-0.299805 0.799805 -0.600586 1.5 -0.900391 2.2998c-0.399414 1 -0.799805 2 -1.09961 3c-0.299805 0.900391 -0.600586 1.80078 -1 2.80078c-0.600586 1.59961 -1.10059 3.2998 -1.7002 4.89941c-0.299805 0.900391 -0.599609 1.7998 -0.900391 2.7998
-c-0.299805 0.900391 -0.5 1.80078 -0.799805 2.7002c-0.299805 0.900391 -0.599609 1.90039 -0.799805 2.7998c-0.299805 0.900391 -0.5 1.80078 -0.799805 2.7002c-0.299805 1 -0.5 1.90039 -0.799805 2.90039c-0.200195 0.899414 -0.5 1.7998 -0.700195 2.7002
-c-0.299805 1 -0.5 2 -0.700195 3c-0.200195 0.899414 -0.400391 1.69922 -0.599609 2.59961c-0.200195 1.09961 -0.5 2.2002 -0.700195 3.2002c-0.200195 0.799805 -0.299805 1.59961 -0.5 2.39941c-0.299805 1.30078 -0.5 2.7002 -0.799805 4
-c-0.100586 0.600586 -0.200195 1.10059 -0.300781 1.7002l-0.899414 5.7002c-0.100586 0.599609 -0.200195 1.2998 -0.299805 1.90039c-0.200195 1.2998 -0.400391 2.59961 -0.5 3.89941c-0.100586 0.799805 -0.200195 1.5 -0.300781 2.2998
-c-0.0996094 1.2002 -0.299805 2.40039 -0.399414 3.60059c-0.100586 0.799805 -0.200195 1.59961 -0.200195 2.39941c-0.0996094 1.2002 -0.200195 2.40039 -0.299805 3.5c-0.100586 0.800781 -0.100586 1.60059 -0.200195 2.40039
-c-0.0996094 1.2002 -0.200195 2.40039 -0.200195 3.7002c0 0.799805 -0.0996094 1.5 -0.0996094 2.2998c-0.100586 1.2998 -0.100586 2.7002 -0.200195 4c0 0.700195 0 1.2998 -0.0996094 2c0 2 -0.100586 4 -0.100586 6c0 53.5 16.9004 103 45.7998 143.6
-c2.30078 3.2002 4.7002 6.40039 7.10059 9.5c4.89941 6.2002 10.0996 12.3008 15.5996 18c2.7002 2.90039 5.5 5.7002 8.40039 8.40039c2.89941 2.7002 5.7998 5.40039 8.7998 8c4.5 3.90039 9.09961 7.59961 13.9004 11.2002c1.59961 1.2002 3.19922 2.39941 4.7998 3.5
-c27.2998 19.5996 59 33.7002 93.2998 40.7998c16.0996 3.2998 32.9004 5 50 5s33.7998 -1.7002 50 -5c34.2998 -7 66 -21.0996 93.5996 -40.7002c1.60059 -1.2002 3.2002 -2.2998 4.80078 -3.5c4.7998 -3.59961 9.39941 -7.2998 13.8994 -11.2002
-c12 -10.3994 23 -21.8994 32.7998 -34.3994c2.5 -3.10059 4.80078 -6.2998 7.10059 -9.5zM448 76.5v71.2998c0 2.10059 -1.59961 3.7002 -3.7002 3.7002h-22.2002c-2.09961 0 -3.69922 -1.59961 -3.69922 -3.7002v-25.7998h-29.5v144
-c0 2.09961 -1.60059 3.7002 -3.7002 3.7002h-22.1006c-2.09961 0 -3.69922 -1.60059 -3.69922 -3.7002v-25.9004h-29.5v25.9004c0 2.09961 -1.60059 3.7002 -3.7002 3.7002h-22.2002c-2.09961 0 -3.7002 -1.60059 -3.7002 -3.7002v-25.9004h-29.5v25.9004
-c0 4.7998 -6.5 3.7002 -9.5 3.7002v30.7002c6.7002 1.59961 13.7998 2.7998 20.7998 2.7998c8.80078 0 16.8008 -3.5 25.4004 -3.5c3.7002 0 22.4004 0.899414 22.4004 6.5v48.3994c0 2.10059 -1.60059 3.7002 -3.7002 3.7002c-4.2002 0 -12.2002 -3.5 -19.4004 -3.5
-c-7.89941 0 -16.8994 3.5 -26.2998 3.5c-6.5 0 -12.9004 -0.899414 -19.2002 -2.2998v3.90039c4.40039 2.09961 7.40039 6.69922 7.40039 11.5c0 16.7998 -25.4004 16.7998 -25.4004 0c0 -4.80078 3 -9.5 7.40039 -11.5v-90.2002c-3 0 -9.5 1.09961 -9.5 -3.7002v-25.9004
-h-29.5v25.9004c0 2.09961 -1.60059 3.7002 -3.7002 3.7002h-22.2002c-2.09961 0 -3.7002 -1.60059 -3.7002 -3.7002v-25.9004h-29.5v25.9004c0 2.09961 -1.59961 3.7002 -3.69922 3.7002h-22.1006c-2.09961 0 -3.7002 -1.60059 -3.7002 -3.7002v-144h-29.5996v25.7998
-c0 2.10059 -1.59961 3.7002 -3.7002 3.7002h-22.0996c-2.10059 0 -3.7002 -1.59961 -3.7002 -3.7002v-71.2998c9.40039 -15.5 20.5996 -29.9004 33.5996 -42.9004c20.6006 -20.5996 44.5 -36.6992 71.2002 -48c13.9004 -5.89941 28.2002 -10.2998 42.9004 -13.1992v75.7998
-c0 58.5996 88.5996 58.5996 88.5996 0v-75.7998c14.7002 2.89941 29 7.39941 42.9004 13.1992c26.7002 11.3008 50.5996 27.4004 71.2002 48c13 13 24.1992 27.4004 33.5996 42.9004z" />
-    <glyph glyph-name="freebsd" unicode="&#xf3a4;" 
-d="M303.7 351.8c11.0996 11.1006 115.5 77 139.2 53.2002c23.6992 -23.7002 -42.1006 -128.1 -53.2002 -139.2c-11.1006 -11.0996 -39.4004 -0.899414 -63.1006 22.9004c-23.7998 23.7002 -34.0996 52 -22.8994 63.0996zM109.9 379.9
-c-31.6006 -19.4004 -57.9004 -46.5 -76.4004 -78.7002c-20.7998 36.2998 -44.5 89.0996 -27.9004 105.7c16.4004 16.5 68 -6.40039 104.301 -27zM406.7 274c3.2998 5.5 7 11.7998 10.8994 18.7998c17.6006 -31.2998 27.7002 -67.3994 27.7002 -105.8
-c0 -119.1 -96.5 -215.6 -215.6 -215.6c-119.101 0 -215.601 96.5996 -215.601 215.6c0 119.1 96.5 215.6 215.601 215.6c35.8994 0 69.7002 -8.7998 99.5 -24.2998c-7.2998 -4 -13.9004 -8 -19.6006 -11.5996c-26 4.7002 -32.8994 -16.4004 -14.8994 -48.7002
-c21.7998 -43.0996 89 -90.4004 109.3 -70.0996c5.40039 5.39941 6 14.7998 2.7002 26.0996z" />
-    <glyph glyph-name="gitkraken" unicode="&#xf3a6;" horiz-adv-x="592" 
-d="M565.7 329.9c11.7998 -31.6006 18.2998 -65.7002 18.2998 -101.4c0 -155.1 -122.6 -281.6 -276.3 -287.7v145.8c-8.40039 -0.5 -16.6006 -0.399414 -23.4004 0v-145.899c-153.7 6.2002 -276.3 132.7 -276.3 287.8c0 35.7002 6.5 69.7998 18.2998 101.3
-c2.2998 6.2002 9.2998 9.2002 15.2998 6.60059c5.7002 -2.40039 8.5 -8.80078 6.30078 -14.6006c-10.9004 -29 -16.9004 -60.5 -16.9004 -93.2998c0 -134.6 100.4 -245.7 230.2 -262.7v123.7c-7.90039 1.59961 -15.4004 3.7002 -23 6.2002v-104
-c-106.7 26 -185.9 122.1 -185.9 236.8c0 91.7998 50.7998 171.8 125.8 213.3c5.80078 3.2002 13 0.900391 15.9004 -5c2.7002 -5.5 0.700195 -12.0996 -4.7002 -15.0996c-67.8994 -37.7002 -113.899 -110.101 -113.899 -193.2c0 -93.4004 57.8994 -173.2 139.8 -205.4
-v92.2002c-14.2002 4.5 -24.7998 17.7002 -24.7998 33.5c0 13.1006 6.69922 24.4004 17.2998 30.5c-8.2002 79.6006 -44.5 58.6006 -44.5 83.9004v14.7998c0 38 87.8994 161.7 129.1 164.7c2.60059 0.200195 5.10059 0.200195 7.60059 0
-c41.0996 -2.90039 129 -126.7 129 -164.7v-14.7002c0 -25.2998 -36.2002 -4.39941 -44.5 -83.8994c10.5 -6.10059 17.2998 -17.4004 17.2998 -30.5c0 -15.8008 -10.7002 -29 -24.9004 -33.5v-92.2002c81.9004 32.2998 139.8 112.1 139.8 205.399
-c0 83.2002 -46 155.601 -113.899 193.2c-5.2998 2.90039 -7.40039 9.60059 -4.7002 15.1006c2.90039 5.89941 10.2002 8.19922 15.9004 5c75 -41.5 125.8 -121.5 125.8 -213.301c0 -114.699 -79.2002 -210.899 -185.9 -236.8v104
-c-7.5 -2.59961 -15.0996 -4.7002 -23 -6.2002v-123.699c129.9 17 230.2 128.1 230.2 262.699c0 32.8008 -6 64.3008 -16.9004 93.3008c-2.19922 5.69922 0.600586 12.1992 6.30078 14.5996c6 2.59961 13 -0.5 15.2998 -6.59961zM365.9 172.5
-c-13.1006 0 -23.7002 -10.5996 -23.7002 -23.7002c0 -13.2002 10.7002 -23.7002 23.7002 -23.7002c13.0996 0 23.6992 10.6006 23.6992 23.7002c0 13.2002 -10.6992 23.7002 -23.6992 23.7002zM226.1 125.2c13.2002 0 23.7002 10.7002 23.7002 23.7002
-c0 13.0996 -10.5996 23.6992 -23.7002 23.6992c-13.1992 0 -23.6992 -10.6992 -23.6992 -23.6992s10.5 -23.7002 23.6992 -23.7002z" />
-    <glyph glyph-name="gofore" unicode="&#xf3a7;" horiz-adv-x="400" 
-d="M324 128.2c54.2998 0 65.7002 -50.1006 67.7002 -77.7002c-46.5 -56.2998 -107.8 -82.5 -171 -82.5c-123.7 0 -220.7 101.5 -220.7 224c0 123.4 98 224 220.7 224c59 0 114.3 -23.2998 156.1 -65.5996l-62.2998 -63.3008c-25 25.4004 -58.2998 39.4004 -93.5996 39.4004
-c-73.2002 0 -132.4 -60.2998 -132.4 -134.4c0 -74.1992 59.2002 -134.399 132.4 -134.399c33.5996 0 65.3994 12.7002 89.8994 35.7998v34.7002h13.2002zM311.9 240.7c47.6992 0 88.0996 -35 88.0996 -100.2v-30.5996c-15.5 26.6992 -42.5 41.7998 -76 41.7998h-118.4v89
-h106.301z" />
-    <glyph glyph-name="goodreads" unicode="&#xf3a8;" 
-d="M299.9 256.8c5.09961 -37.2998 -4.7002 -79 -35.9004 -100.7c-22.2998 -15.5 -52.7998 -14.0996 -70.7998 -5.69922c-37.1006 17.2998 -49.5 58.5996 -46.7998 97.1992c4.2998 60.9004 40.8994 87.9004 75.2998 87.5c46.8994 0.200195 71.7998 -31.7998 78.2002 -78.2998
-zM448 360v-336c0 -30.9004 -25.0996 -56 -56 -56h-336c-30.9004 0 -56 25.0996 -56 56v336c0 30.9004 25.0996 56 56 56h336c30.9004 0 56 -25.0996 56 -56zM330 134.8c0 0 -0.0996094 34 -0.0996094 217.3h-29v-40.2998c-0.800781 -0.299805 -1.2002 0.5 -1.60059 1.2002
-c-9.59961 20.7002 -35.8994 46.2998 -76 46c-51.8994 -0.400391 -87.2002 -31.2002 -100.6 -77.7998c-4.2998 -14.9004 -5.7998 -30.1006 -5.5 -45.6006c1.7002 -77.8994 45.0996 -117.8 112.399 -115.199c28.9004 1.09961 54.5 17 69 45.1992
-c0.5 1 1.10059 1.90039 1.7002 2.90039c0.200195 -0.0996094 0.400391 -0.0996094 0.600586 -0.200195c0.299805 -3.7998 0.199219 -30.7002 0.0996094 -34.5c-0.200195 -14.7998 -2 -29.5 -7.2002 -43.5c-7.7998 -21 -22.2998 -34.7002 -44.5 -39.5
-c-17.7998 -3.89941 -35.5996 -3.7998 -53.2002 1.2002c-21.5 6.09961 -36.5 19 -41.0996 41.7998c-0.299805 1.60059 -1.2998 1.2998 -2.2998 1.2998h-26.7998c0.799805 -10.5996 3.19922 -20.2998 8.5 -29.1992c24.1992 -40.5 82.6992 -48.5 128.199 -37.4004
-c49.9004 12.2998 67.3008 54.9004 67.4004 106.3z" />
-    <glyph glyph-name="goodreads-g" unicode="&#xf3a9;" horiz-adv-x="384" 
-d="M42.5996 44.7002h2.80078c12.6992 0 25.5 0 38.1992 -0.100586c1.60059 0 3.10059 0.400391 3.60059 -2.09961c7.09961 -34.9004 30 -54.5996 62.8994 -63.9004c26.9004 -7.59961 54.1006 -7.7998 81.3008 -1.7998c33.7998 7.40039 56 28.2998 68 60.4004
-c8 21.5 10.6992 43.7998 11 66.5c0.0996094 5.7998 0.299805 47 -0.200195 52.7998l-0.900391 0.299805c-0.799805 -1.5 -1.7002 -2.89941 -2.5 -4.39941c-22.0996 -43.1006 -61.2998 -67.4004 -105.399 -69.1006c-103 -4 -169.4 57 -172 176.2
-c-0.5 23.7002 1.7998 46.9004 8.2998 69.7002c20.5996 71.0996 74.5996 118.2 153.899 118.8c61.3008 0.400391 101.5 -38.7002 116.2 -70.2998c0.5 -1.10059 1.2998 -2.2998 2.40039 -1.90039v61.6006h44.2998c0 -280.301 0.0996094 -332.2 0.0996094 -332.2
-c-0.0996094 -78.5 -26.6992 -143.7 -103 -162.2c-69.5 -16.9004 -159 -4.7998 -196 57.2002c-8 13.5 -11.7998 28.2998 -13 44.5zM188.9 411.5c-52.5 0.5 -108.5 -40.7002 -115 -133.8c-4.10059 -59 14.7998 -122.2 71.5 -148.601
-c27.5996 -12.8994 74.2998 -15 108.3 8.7002c47.5996 33.2002 62.7002 97 54.7998 154c-9.7002 71.1006 -47.7998 120 -119.6 119.7z" />
-    <glyph glyph-name="google-drive" unicode="&#xf3aa;" horiz-adv-x="512" 
-d="M339 133.1l-163.6 282.9h161.199l163.601 -282.9h-161.2zM201.5 109.5h310.5l-80.5996 -141.5h-310.5zM154.1 380.6l82.9004 -141.399l-156.4 -271.2l-80.5996 141.5z" />
-    <glyph glyph-name="google-play" unicode="&#xf3ab;" horiz-adv-x="512" 
-d="M325.3 213.7l-220.7 221.3l280.801 -161.2zM47 448l256.6 -255.9l-256.6 -256c-13 6.80078 -21.7002 19.2002 -21.7002 35.3008v441.3c0 16.0996 8.7002 28.5 21.7002 35.2998zM472.2 222.4c19.2002 -14.3008 19.2002 -46.5 1.2002 -60.8008l-60.1006 -34.0996
-l-65.7002 64.5l65.7002 64.5zM104.6 -51l220.7 221.3l60.1006 -60.0996z" />
-    <glyph glyph-name="gripfire" unicode="&#xf3ac;" horiz-adv-x="384" 
-d="M112.5 146.6c0 -26.8994 16.5996 -47.1992 32.5996 -69.5c22.5 -30.1992 44.2002 -56.8994 44.2002 -86.5c-0.0996094 -14.5 -4.39941 -29.6992 -17.5 -46.3994c0 5.2998 4.7998 12.2002 4.7998 22.2998c0 15.2002 -13 39.9004 -78.0996 86.5996
-c-34.2998 29.1006 -66.5 58.5 -66.5 108.301c0 114.699 147.1 176.5 147.1 268.6c0 3.2998 -0.199219 6.7002 -0.599609 10c5.09961 -2.40039 39.0996 -43.2998 39.0996 -90.4004c0 -80.5 -105.1 -129.199 -105.1 -203zM317.8 185.6
-c1.5 -8.39941 2.2002 -16.5996 2.2002 -24.5996c0 -51.7998 -29.4004 -97.5 -67.2998 -136.8c-1 -1 -2.2002 -2.40039 -3.2002 -2.40039c-3.59961 0 -35.5 41.6006 -35.5 53.2002c0 0 41.7998 55.7002 41.7998 96.9004c0 10.7998 -2.7002 21.6992 -9.09961 33.3994
-c-1.5 -32.2998 -55.7002 -87.7002 -58.1006 -87.7002c-2.69922 0 -17.8994 22 -17.8994 42.1006c0 5.2998 1 10.7002 3.2002 15.7998c2.39941 5.5 56.5996 72 56.5996 116.7c0 6.2002 -1 12 -3.40039 17.0996l-4 7.2002c16.7002 -6.5 82.6006 -64.0996 94.7002 -130.9z" />
-    <glyph glyph-name="grunt" unicode="&#xf3ad;" horiz-adv-x="384" 
-d="M61.2998 258.7c0.5 4.89941 2.7998 10 7 12h0.100586c-4.60059 1.7002 -9.2002 3.09961 -13.5 4.09961c42.1992 10.2002 73.3994 -20.5996 83.0996 -31.7998c16.5996 -19.2002 35.5 -8.7998 35.5 -8.7998c0.299805 -11.1006 -10.2998 -19 -21.0996 -19.5
-c1.19922 -15.4004 -13.9004 -32.5 -13.9004 -32.5s5.59961 15 2.7002 25.2998c-0.900391 3.2002 -2 6.09961 -3 8.5c-19.2998 -17.2002 -48 -1.5 -54.9004 6.09961c-9.59961 10.6006 -12.3994 23.8008 -12.7998 34.1006c-1.7998 -3.7998 -3.2998 -9.10059 -4 -16.6006
-c0 0 -6.2998 9.10059 -5.2002 19.1006zM89.5996 260.5c-2.89941 -9.09961 -3.39941 -27.7002 6.90039 -35.2998c16.2998 -12.1006 32.2998 -5 38 -1.7002c-7.5 11.2998 -25.4004 26 -44.9004 37zM231.7 214.7c-10.7998 0.399414 -21.4004 8.39941 -21.2002 19.2998
-c0 0 18.7998 -10.4004 35.5 8.7998c9.7002 11.2002 40.7998 42 83.0996 31.7998c-4.2998 -0.899414 -8.89941 -2.2998 -13.5 -4.09961h0.100586c4.09961 -1.7998 6.39941 -6.7998 7 -11.7998c1.2002 -10 -5.2002 -19.1006 -5.2002 -19.1006
-c-0.599609 7.5 -2.2002 12.8008 -4 16.6006c-0.5 -10.2998 -3.2002 -23.5 -12.7998 -34.1006c-6.7998 -7.59961 -35.5 -23.3994 -54.7998 -6.09961c-1 -2.5 -2.10059 -5.2998 -3 -8.5c-2.90039 -10.2998 2.69922 -25.2998 2.69922 -25.2998s-15.0996 17 -13.8994 32.5z
-M294.4 260.5c-19.5 -11 -37.4004 -25.5996 -44.9004 -37c5.7002 -3.40039 21.5996 -10.5 37.9004 1.59961c10.3994 7.7002 10 26.3008 7 35.4004zM160 29.5c4.09961 0 7 -0.900391 8.7998 -2.7002c2.2002 -2.2998 1.5 -5.2998 0.900391 -6.7998
-c-1.10059 -2.7002 -5.5 -11.5996 -13 -19.7998c-2.7002 -2.90039 -6.60059 -4.60059 -11 -4.60059c-4.2998 0 -8.7002 1.60059 -11.7998 4.30078c-2.30078 2.09961 -10.2002 9.5 -13.7002 18.5996c-1.2998 3.40039 -1 6.09961 0.899414 8.09961
-c1.30078 1.30078 4 2.90039 9.5 2.90039h29.4004zM349.2 130.7c0 0 29.2998 -22.5 21.0996 -70.9004c-5.2998 -29.5 -23.2002 -46 -47 -54.7002c-8.7998 -19.0996 -29.3994 -45.6992 -67.2998 -49.5996c-14.5 -11.7998 -34.5 -19.5 -63.5996 -19.5h-0.200195
-c-29.2002 0 -49.2002 7.7002 -63.6006 19.5c-37.8994 3.90039 -58.5 30.5 -67.2998 49.5996c-23.7998 8.60059 -41.7998 25.2002 -47 54.7002c-8.59961 48.2002 20.6006 70.7998 20.6006 70.7998c2.39941 -17.8994 13 -33.8994 24.5996 -43.7998
-c3.09961 22.7002 3.7002 55.5 3.7002 62.4004c0 14.7002 -9.5 24.5 -12.2002 26.0996c-2.5 1.5 -5.2998 3 -8.2998 4.60059c-18 9.59961 -40.4004 21.5996 -40.4004 43.6992c0 16.1006 9.2998 23.2002 15.4004 27.8008c0.799805 0.599609 1.5 1.19922 2.2002 1.69922
-c2.09961 1.7002 3.69922 3 4.2998 4.40039c4.39941 9.7998 3.59961 34.2002 1.7002 37.5996c-0.600586 0.700195 -16.8008 21 -11.8008 39.2002c2 7.40039 6.90039 13.2998 14.1006 17c5.2998 2.7002 11.7998 4.2002 19.5 4.5c0.0996094 2 0.5 4 0.899414 5.90039
-c0.5 2.59961 1.10059 5.2998 0.900391 8.09961c-0.400391 4.7002 -0.799805 9.10059 -2.2002 11.2998c-8.39941 13.3008 -28.7998 17.6006 -29 17.6006l-12.2998 2.39941l8.09961 9.40039c0.200195 0.200195 17.3008 17.5 46.3008 17.5c7.89941 0 16 -1.2998 23.8994 -3.5
-c24.2998 -7.7998 42.9004 -30.5 49.4004 -39.2998c2 0.599609 3.89941 1.2002 5.89941 1.7002c-1 26.3994 20.7002 47.3994 28.2002 48.2998c0.5 -4.5 -0.399414 -22.2002 7.2002 -27.6006c2.2002 14.4004 9.59961 30.3008 39.0996 40.7002
-c-6.2998 -16.7002 -0.799805 -30.7002 1.80078 -37.2002c20.0996 18.2002 33.6992 15.2002 33.6992 15.2002s-13.1992 -22.7002 -9 -38.5c3.30078 -0.799805 6.5 -1.7002 9.60059 -2.7002c6.5 8.80078 25.2002 31.5 49.3994 39.3008
-c8.10059 2.59961 16.2002 3.89941 24.1006 3.89941c29 0 46.2002 -17.2998 46.2998 -17.5l8.09961 -9.5l-12.2998 -2.39941c-0.200195 0 -20.5996 -4.30078 -29 -17.6006c-1.39941 -2.2998 -1.7998 -6.59961 -2.2002 -11.2998
-c-0.199219 -2.7998 0.300781 -5.5 0.900391 -8.09961c0.400391 -2 0.799805 -3.90039 0.900391 -5.90039c7.59961 -0.299805 14.1992 -1.7998 19.5 -4.5c7.19922 -3.7002 12.0996 -9.59961 14.0996 -17c4.90039 -18.2998 -11.2002 -38.5996 -11.7998 -39.2002
-c-1.90039 -3.39941 -2.7002 -27.7998 1.7002 -37.5996c0.599609 -1.40039 2.19922 -2.7002 4.2998 -4.40039c0.700195 -0.599609 1.39941 -1.09961 2.2002 -1.7002c6.09961 -4.59961 15.3994 -11.5996 15.3994 -27.7998c0 -22.0996 -22.3994 -34.0996 -40.3994 -43.7002
-c-2.90039 -1.59961 -5.80078 -3.09961 -8.30078 -4.59961c-2.69922 -1.59961 -12.1992 -11.4004 -12.1992 -26.0996c0 -6.90039 0.599609 -39.7002 3.69922 -62.4004c11.6006 9.90039 22.2002 25.7998 24.6006 43.7002zM305.7 410.3
-c-17.7998 -5.7002 -31.6006 -23.0996 -37.7002 -32.2002c1.59961 -0.699219 3.09961 -1.39941 4.7002 -2.19922c2.59961 -1.2002 4.89941 -2.40039 7.09961 -3.7002c2.7002 5.5 8.40039 13.7002 20.7002 22.3994c8.2002 5.80078 18.2002 8.90039 28.7002 8.90039
-c3.59961 0 6.7998 -0.400391 9.2002 -0.799805c3.2998 2.09961 6.59961 3.89941 9.69922 5.2998c-4.7998 2 -13.6992 5 -24.6992 5c-6.10059 0 -12.1006 -0.900391 -17.7002 -2.7002zM326.7 392.1c-7.40039 -0.299805 -14 -2.69922 -19.6006 -7
-c-8 -6.39941 -12.0996 -17.6992 -13.5 -22.5c4.90039 -4.19922 8.2002 -8.09961 10.5 -11.1992c3.40039 1 7.30078 1.89941 11.5 2.69922c3.30078 4.5 3.90039 10.6006 4.40039 17c0.5 6.2002 1.09961 12.6006 4.40039 17.8008c0.699219 1.09961 1.5 2.19922 2.2998 3.19922
-zM45.5996 402.7c2.40039 0.399414 5.60059 0.799805 9 0.899414c10.6006 0 20.5 -3.09961 28.8008 -8.89941c12.3994 -8.7002 18.0996 -17 20.6992 -22.4004c2.2002 1.2002 4.60059 2.5 7.10059 3.7002c1.59961 0.799805 3.2002 1.5 4.7998 2.2002
-c-6.09961 8.89941 -19.9004 26.2998 -37.7002 32.0996c-5.7002 1.7998 -11.5996 2.7002 -17.7002 2.7002c-11 0 -19.8994 -3 -24.6992 -5c3.09961 -1.2998 6.39941 -3.09961 9.69922 -5.2998zM90.2998 362.6c-1.39941 4.80078 -5.5 16.1006 -13.5 22.4004
-c-5.5 4.40039 -12.0996 6.7002 -19.5 7c0.799805 -1 1.60059 -2.09961 2.2998 -3.2002c3.30078 -5.2002 3.90039 -11.5996 4.40039 -17.7998c0.5 -6.40039 1 -12.5 4.2998 -16.9004c4.2002 -0.799805 8.10059 -1.7998 11.5 -2.69922c2.2002 3.19922 5.60059 7 10.5 11.1992z
-M58.0996 188.1c8.7002 -5 18.1006 -16.7998 19 -34.1992c0.900391 -14.7002 -0.899414 -49.9004 -3.39941 -75.9004c12.5 -4.7998 26.7002 -6.40039 39.7002 -6.7998c2 4.09961 3.89941 8.5 5.5 13.0996c0.699219 1.90039 19.5996 51 26.3994 62.2002
-c-5.39941 -39 -17.5 -73.7002 -23.5 -89.5996c3.40039 0.399414 7.2998 0.699219 11.7002 0.699219h117c4.40039 0 8.2002 -0.199219 11.7002 -0.699219c-6 15.8994 -18 50.5996 -23.5 89.5996c6.7998 -11.0996 25.7002 -60.2002 26.3994 -62.2002
-c1.60059 -4.59961 3.5 -9 5.5 -13.0996c13 0.399414 27.3008 2 39.7002 6.7998c-2.5 26 -4.2998 61.2998 -3.39941 75.9004c1.09961 17.5 10.3994 29.1992 19.0996 34.1992c2.7002 1.5 5.5 3.10059 8.40039 4.60059c14.7998 8 30.1992 16.2998 30.1992 30.5
-c0 11.0996 -4.2998 14.5 -8.89941 18.2002l-0.5 0.399414c-0.700195 0.600586 -1.5 1.2002 -2.2002 1.7998c0.900391 -7.19922 1.90039 -13.2998 2.7002 -14.8994c0 0 -12.1006 15 -15.7002 44.2998c-1.40039 11.5 1.09961 34.2002 5.09961 43
-c-0.199219 -4.90039 0 -9.7998 0.300781 -14.4004c0.399414 0.900391 0.799805 1.60059 1.2998 2.2002c3.2998 4 11.8994 17.5 9.39941 26.6006c-1 3.39941 -3.19922 6 -6.69922 7.7998c-3.80078 1.89941 -8.80078 2.89941 -15.1006 2.89941
-c-12.2998 0 -25.8994 -3.7998 -32.8994 -6c-25.1006 -7.89941 -55.4004 -30.8994 -64.1006 -37.6992c-0.200195 -0.200195 -0.399414 -0.300781 -0.399414 -0.300781l-5.60059 -3.89941l3.5 5.7998c0.200195 0.299805 19.1006 31.4004 53.1006 46.5
-c-2 2.90039 -7.40039 8.2002 -21.6006 15.0996c-21.3994 10.5 -46.3994 15.8008 -74.2998 15.8008c-27.7998 0 -52.9004 -5.30078 -74.2998 -15.8008c-14.2002 -7 -19.6006 -12.1992 -21.6006 -15.0996c34.1006 -15.0996 53 -46.2002 53.2002 -46.5l3.5 -5.7998
-l-5.59961 3.89941s-0.200195 0.100586 -0.400391 0.300781c-8.7002 6.7998 -39 29.6992 -64.0996 37.6992c-7 2.30078 -20.6006 6 -32.9004 6c-6.2998 0 -11.2998 -1 -15.0996 -2.89941c-3.60059 -1.7998 -5.7998 -4.2998 -6.7002 -7.7998
-c-2.40039 -9.10059 6.2002 -22.6006 9.40039 -26.6006c0.5 -0.599609 0.899414 -1.39941 1.2998 -2.2002c0.299805 4.60059 0.5 9.5 0.299805 14.4004c4 -8.7002 6.5 -31.5 5.09961 -43c-3.59961 -29.2998 -15.6992 -44.2998 -15.6992 -44.2998
-c0.799805 1.59961 1.7998 7.7002 2.69922 14.8994c-0.799805 -0.599609 -1.5 -1.19922 -2.19922 -1.7998l-0.5 -0.399414c-4.60059 -3.60059 -8.90039 -7.10059 -8.90039 -18.2002c0 -14.2002 15.2998 -22.5 30.2002 -30.5c2.7998 -1.5 5.7002 -3 8.39941 -4.60059z
-M34.7998 43.4004c11.9004 -19.7002 35.5 -29.4004 58.2002 -29.5c-4.5 13.2998 -3.09961 24 4.09961 31.7998l1.40039 1.39941c1.7998 2.40039 4.2998 5.80078 7 10c-27.2002 1.10059 -63.5 11 -74.4004 45.4004c-5 -5 -8.39941 -39.0996 3.7002 -59.0996zM80.5 -0.0996094
-c6.5 -9.5 16.5 -19.6006 30.9004 -25.5c-4.90039 7.19922 -8.80078 15.0996 -12.3008 23.0996c-6.39941 0.5 -12.5996 1.2998 -18.5996 2.40039zM192 -50.2002c60.5996 0.100586 78.2998 45.9004 84.9004 64.7002c3.59961 10.5 3.2998 18.2998 -0.900391 23.0996
-c-2.7998 3.30078 -9.5 7.2002 -24.5996 7.2002h-118.801c-15.0996 0 -21.6992 -3.89941 -24.5996 -7.2002c-4.2998 -4.89941 -4.59961 -12.5996 -0.900391 -23.0996c6.60059 -18.9004 24.3008 -64.5996 84.9004 -64.7002zM272.6 -25.5996
-c14.4004 5.89941 24.4004 16 30.9004 25.5c-6 -1.10059 -12.2002 -1.90039 -18.5996 -2.40039c-3.5 -8 -7.40039 -15.9004 -12.3008 -23.0996zM349.2 43.4004c12.2002 19.8994 8.7998 54 3.7998 59c-10.9004 -34.4004 -47.2002 -44.2002 -74.4004 -45.4004
-c2.7002 -4.2002 5.2002 -7.59961 7 -10c0.5 -0.5 1 -1 1.40039 -1.5c7.2002 -7.7002 8.59961 -18.5 4.09961 -31.7998c22.5 0.399414 46.1006 10 58.1006 29.7002zM191.9 260.3c-12.7002 0.200195 -27.2002 17.7998 -27.2002 17.7998
-c9.89941 -6 18.7998 -8.09961 27.2998 -8.2998c8.5 0.200195 17.4004 2.2998 27.2998 8.2998c0 0 -14.5 -17.6992 -27.2002 -17.7998h-0.199219zM253.6 29.5996c5.40039 -0.0996094 8.10059 -1.69922 9.40039 -3c1.90039 -1.89941 2.2002 -4.59961 0.900391 -7.89941
-c-3.5 -8.90039 -11.4004 -16.1006 -13.7002 -18.1006c-3.10059 -2.59961 -7.40039 -4.19922 -11.7998 -4.19922c-4.40039 0 -8.30078 1.59961 -11 4.5c-7.5 8 -12 16.6992 -13 19.2998c-0.600586 1.5 -1.30078 4.39941 0.899414 6.7002
-c1.7002 1.7998 4.7002 2.69922 8.90039 2.69922h29.3994z" />
-    <glyph glyph-name="gulp" unicode="&#xf3ae;" horiz-adv-x="256" 
-d="M209.8 56.9004l-14.0996 -24.6006l-4.60059 -80.2002c0 -8.89941 -28.2998 -16.0996 -63.0996 -16.0996s-63.0996 7.2002 -63.0996 16.0996l-5.80078 79.4004l-14.8994 25.4004c41.2002 -17.3008 126 -16.7002 165.6 0zM13.7998 310.2
-c30.7002 -17 197.8 -16.9004 228.3 0.200195l-14.7998 -136.801c-4.7998 -4.19922 -11.5996 -10.1992 -16.5996 -14.0996c-1.60059 -1.2002 -6 -4.7002 -8 -4.7002c-1.2998 0 -2.2002 0.5 -2.2002 1.7998c0.0996094 1 3.40039 4.5 5 6.40039
-c4.90039 5.7002 13.7998 16 13.7998 23.4004c0 7 -10.7002 14.0996 -25.7002 0.199219c-1.59961 -1.5 -3.09961 -3 -4.5 -4.5c0.400391 1.10059 1.10059 5.10059 1.10059 6.2002c0 2.7998 -1.40039 4 -4.2002 4c-1 0 -1.90039 -0.599609 -2.7002 -1.59961
-c-2.59961 -3.10059 -3.89941 -7.5 -5.2998 -11.2998c-0.5 -1.80078 -1.09961 -3.60059 -1.7002 -5.5c-0.399414 -0.200195 -0.700195 -0.300781 -0.899414 -0.600586c-3.80078 -3.89941 -17.7002 -17 -23.1006 -17c-2.2998 0 -1.59961 3.60059 -1 5.7998
-c1 3.40039 6.7998 17.7002 8.7002 22.3008c4.59961 11.0996 8 19.7998 13.2002 31.8994c3.89941 9.2002 3.7998 8.60059 4.5 10.5c0.700195 2.10059 0.700195 4.90039 -1 6.2002c-1 0.700195 -2 1.09961 -3.2002 1.09961c-2.40039 0 -4.7998 -1.39941 -6.09961 -4.69922
-c-25.5 -64.4004 -25.2002 -63.3008 -26.4004 -68.2002c-2 -1.7002 -4.40039 -3.40039 -6.7998 -4.5c-3.10059 -1.40039 -6.7998 -2.2002 -6.7998 1.2002c0 3.69922 1.39941 8.19922 2.69922 11.6992c2.2002 6.10059 4.90039 11.1006 6.90039 16.7002
-c0.900391 2.40039 1.2998 4.7002 -0.400391 6.90039c-0.799805 1 -1.89941 1.5 -3.19922 1.5c-2.60059 0 -4.10059 -2.60059 -5.2002 -5.10059c-0.700195 -1.5 -1.2998 -3.09961 -1.7998 -4.7998c-1.2002 -4 -3.60059 -8.7002 -5.60059 -12.2998
-c-2.7998 -5 -6.5 -10.0996 -11.0996 -13.5c-2.2002 -1.59961 -4.5 -2.40039 -6.90039 -2.40039c-3.5 0 -2.39941 5.7002 -1.5 9c2.2002 7.80078 5.5 13.3008 9.2998 20.8008c1.30078 2.69922 2.30078 5.39941 -0.299805 7.19922c-0.5 0.300781 -1 0.5 -1.59961 0.700195
-c-3.40039 0.900391 -6 -1.09961 -7.60059 -4.5c-3.09961 -6.2998 -5.39941 -11.7002 -7.09961 -16.2002c-3.2998 -8.89941 -6.90039 -18.2998 -4.59961 -23.7998c1.5 -3.7002 4.5 -5.09961 8.59961 -5.09961c9.7998 0 17.7998 6.7002 22.4004 14.8994
-c-4.30078 -19.7998 8.19922 -17.2998 20 -8.09961c0.0996094 -0.400391 0.0996094 -0.799805 0.199219 -1.2002c1.5 -6.7002 8.7002 -6.7002 14.5 -4.09961c3.5 1.59961 8.2002 4.5 14.4004 10.5c0.200195 0.299805 0.799805 1.39941 -0.799805 -2.2998
-c-7.2002 -16.2002 -13.5 -28.2002 -15 -34.3008c-0.200195 -0.899414 -0.299805 -1.7998 -0.299805 -2.69922c0 -1.80078 0.399414 -3.10059 1.2998 -3.7002c1.59961 -1.2002 4.2002 -1.2998 6.09961 -0.299805c1.7998 1 3.10059 2.59961 4 4.5
-c1 2.19922 0.200195 0.699219 5.2002 14c5 13.3994 2.90039 7.7998 9.09961 22c1.90039 4.2998 4.2002 9.5 8.5 15.5c2.5 3.39941 5.5 7 8.7002 9.69922c5.7002 4.7002 11.7002 5.40039 11.7002 2.5c0 -2.19922 -3.2998 -6.39941 -4.7002 -8.09961
-c-5.2998 -6.7002 -14.3994 -16.2998 -14.3994 -21.5c0 -9.5 12 -8 17.3994 -5.7002c7.2998 3.2002 13.9004 9.60059 19.6006 14.7998l-10.9004 -94.5996c-1.90039 -4.90039 -39.0996 -17.0996 -88.2002 -17.0996c-49 0 -86.2002 12.0996 -88.2002 17.0996l-7.59961 79.5996
-c2.09961 -1.5 4.2998 -2.39941 7.7002 -2.39941c7.39941 0 16.0996 6.7002 21.5 11.7998c2.2998 2.2002 4.39941 4.40039 6.39941 6.59961c-1 -3 -7.09961 -22 -7.2998 -25.1992c-0.0996094 -1 -0.200195 -4.90039 0.799805 -6.30078
-c0.5 -0.799805 1.40039 -1.19922 2.60059 -1.19922c2.89941 0 5.59961 4.69922 6.2998 7.5c0 0 1.7998 6.2998 7.59961 25.7998c6.30078 21.0996 10 24.5 10 34.7002c0 5.59961 -7.2998 6.7998 -9.89941 0l-5.2002 -15.5c-2.2002 -4.5 -8 -11.5 -12.5 -16
-c-3.5 -3.5 -10.7998 -10.1006 -15.7998 -10.1006c-2.40039 0 -3.90039 1.40039 -4.90039 3.60059c-2.2998 5.2998 -0.899414 14.2998 0.600586 19.8994c2.59961 9.7002 6.89941 19.4004 12 28.2002c4.19922 7.2998 10.1992 15.7002 17.0996 20.7002
-c6.59961 4.7998 12.7998 4.5 16.9004 -2.7998c1.5 -2.7002 3.7998 -7.30078 6.7998 -7.30078c2.5 0 5.7002 2.60059 4.5 9.10059c-0.5 2.5 -4.90039 8.7998 -10.1006 11.7998c-6 3.59961 -12.3994 3.59961 -18.6992 0.900391
-c-19.2002 -8.2002 -34.1006 -35.2002 -40 -55.2002zM243.5 318.7c0 -21 -231.2 -21 -231.2 0c0 8.7998 51.7998 15.8994 115.601 15.8994c9 0 17.7998 -0.0996094 26.2998 -0.399414l12.5996 48.7002l61.2998 64.5c1.40039 1.39941 5.80078 0.199219 9.90039 -3.5
-c4.09961 -3.7002 6.59961 -7.90039 5.2998 -9.30078l-0.0996094 -0.0996094l-57.2998 -60.5l-10 -40.7002c39.8994 -2.59961 67.5996 -8.09961 67.5996 -14.5996zM174.1 314.1c0 0.800781 -0.899414 1.5 -2.5 2.10059l-0.199219 -0.799805
-c0 -1.30078 -5 -2.40039 -11.1006 -2.40039c-6.09961 0 -11.0996 1.09961 -11.0996 2.40039c0 0.0996094 0 0.199219 0.0996094 0.299805l0.200195 0.700195c-1.7998 -0.600586 -3 -1.40039 -3 -2.30078c0 -2.09961 6.2002 -3.69922 13.7002 -3.69922
-c7.7002 -0.100586 13.8994 1.59961 13.8994 3.69922z" />
-    <glyph glyph-name="hacker-news-square" unicode="&#xf3af;" 
-d="M400 416c26.5 0 48 -21.5 48 -48v-352c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h352zM21.2002 218.8h-0.200195c0.0996094 0.100586 0.200195 0.299805 0.299805 0.400391c0 -0.100586 0 -0.299805 -0.0996094 -0.400391z
-M239.2 164.9l80.7998 155.1h-34.7998c-54.7998 -101.2 -48.2998 -98.5996 -60.6006 -125.6c-10.0996 24.3994 -6.7998 27.2998 -59.2998 125.6h-37.2998l79.7998 -153.3v-102.7h31.4004v100.9z" />
-    <glyph glyph-name="hire-a-helper" unicode="&#xf3b0;" horiz-adv-x="512" 
-d="M443.1 448c3.90039 -36.4004 32.5 -65.7998 68.9004 -71.7002v-370.5c-35.4004 -4 -64.9004 -33.3994 -67.9004 -69.7998h-372.199c-5.90039 36.4004 -34.5 63.9004 -71.9004 68.7998v371.5c37.4004 3.90039 67.9004 34.4004 71.9004 71.7002h371.199zM406.1 43.0996
-c7.80078 0 5.80078 10.8008 0 10.8008c-10.2998 3.39941 -13.5 3.59961 -21.6992 13.7998c-7.80078 12.8994 -7.90039 44.3994 -7.90039 127.8v101.2c0 22.0996 12.2002 28.2998 28.5996 32.3994c8.90039 2.2002 3.90039 11.8008 -1 11.8008
-c-36.5 0 -20.5996 -2 -57.0996 -2c-32.7002 0 -16.5 2 -49.2002 2c-3.2998 0 -8.5 -8.30078 -1 -10.8008c4.90039 -1.59961 27.6006 -3.69922 27.6006 -39.2998c0 -45.5996 0.199219 -55.7998 -1 -68.7998c0 -1.2998 -2.30078 -12.7998 -12.8008 -12.7998h-109.199
-c-10.5 0 -12.8008 11.5 -12.8008 12.7998c-1.19922 13 -1 23.2002 -1 68.7998c0 35.6006 22.7002 37.7002 27.6006 39.2998c7.5 2.5 2.2998 10.8008 -1 10.8008c-32.7002 0 -16.5 -2 -49.2002 -2c-36.5 0 -20.5996 2 -57.0996 2c-5 0 -9.80078 -9.60059 -1 -11.8008
-c16.3994 -4.09961 28.5996 -10.1992 28.5996 -32.3994v-101.2c0 -83.4004 -0.200195 -114.9 -7.90039 -127.8c-8.19922 -10.2998 -11.5 -10.4004 -21.6992 -13.7998c-5.80078 0 -7.90039 -10.8008 0 -10.8008c36.2998 0 18.7998 2 55.0996 2c35.7998 0 21 -2 56.0996 -2
-c6 0 4.90039 8.2002 0 9.80078c-22.7998 7.59961 -22.8994 10.2998 -24.5996 12.7998c-10.4004 15.5996 -5.90039 83 -5.90039 113c0 5.2998 6.40039 12.7998 13.8008 12.7998h111.199c7.40039 0 13.8008 -7.5 13.8008 -12.7998c0 -30 4.5 -97.4004 -5.90039 -113
-c-1.7002 -2.60059 -1.7998 -5.2002 -24.5996 -12.7998c-4.90039 -1.60059 -5.90039 -9.80078 0 -9.80078c35.0996 0 20.2998 2 56.0996 2c36.2998 0 18.7998 -2 55.0996 -2z" />
-    <glyph glyph-name="hotjar" unicode="&#xf3b1;" 
-d="M414.9 286.5c30 -53 41.7998 -121.6 26.2998 -180.9c-14.7002 -56.6992 -68.2998 -120.3 -148.8 -145.6c54.5 76.9004 43.8994 200.1 -27.1006 215.5c54.2002 -93.9004 -53.7002 -180.3 -110.8 -93.9004c-2.5 -7.19922 -25.0996 -74.5 4.09961 -129.6
-c-61.0996 9.09961 -117.8 33.5 -144.6 93.4004c-35 78.1992 -2.7002 149.8 79 204.899c129.2 87.2998 28.0996 197.7 28.0996 197.7s219.101 -29 293.801 -161.5z" />
-    <glyph glyph-name="hubspot" unicode="&#xf3b2;" horiz-adv-x="512" 
-d="M267.4 236.4l-163.2 114.699c-7.90039 -4.69922 -17 -7.59961 -26.7998 -7.59961c-28.8008 0 -52.2002 23.4004 -52.2002 52.2998c0 28.7998 23.3994 52.2002 52.2002 52.2002c28.8994 0 52.3994 -23.4004 52.3994 -52.2002c0 -4.7998 -0.799805 -9.39941 -2 -13.7998
-c51.4004 -39.0996 141.3 -103.9 168.9 -124.8c13.0996 6.89941 27.5 11.5 42.7002 13.5996v61.2002c-17.5 7.40039 -28.2002 23.7998 -28.2002 42.9004c0 26.0996 20.5996 47.8994 46.7002 47.8994c26.0996 0 47 -21.7998 47 -47.8994
-c0 -19.1006 -10.7002 -35.5 -28.2002 -42.9004v-61.5996c62.5 -9.5 110.2 -63.5 110.2 -128.7c0 -71.9004 -58.1006 -130.2 -130 -130.2c-29.9004 0 -57.3008 10 -79.3008 26.9004l-50 -50.2002c1.30078 -3.90039 1.90039 -7.90039 1.90039 -12.1006
-c0 -10.6992 -4.2002 -20.8994 -11.7998 -28.5c-7.7002 -7.69922 -17.7998 -11.5996 -28.6006 -11.5996c-10.6992 0 -20.8994 4 -28.5 11.5996c-7.59961 7.60059 -11.7998 17.7002 -11.7998 28.5c0 10.8008 4.2002 21 11.7998 28.6006
-c7.60059 7.59961 17.7002 11.7998 28.5 11.7998c4.90039 0 9.60059 -0.900391 14 -2.5l49.5 49.7998c-16.2998 21.7002 -26 48.7002 -26 78c0 37.2998 15.7002 70.9004 40.8008 94.6006zM356.9 72.7998c38.0996 0 69 30.9004 69 69c0 38.1006 -30.9004 69 -69 69
-c-38.1006 0 -69 -30.8994 -69 -69c0 -38.0996 30.8994 -69 69 -69z" />
-    <glyph glyph-name="itunes" unicode="&#xf3b4;" 
-d="M223.6 367.7c94.5 0 171.2 -76.7002 171.2 -171.3c0 -94.5 -76.5996 -171.2 -171.2 -171.2c-94.5996 0 -171.1 76.7998 -171.1 171.3s76.5 171.2 171.1 171.2zM303 127.7c1.40039 6.2002 0.900391 -3 1 167.6c0 5.7002 -3.2998 9.10059 -9 8.7002
-c-1.7998 0 -14.0996 -2.40039 -115.1 -21.4004c-0.900391 0 -4.60059 -1 -6.7002 -2.69922c-2 -1.60059 -3.10059 -3.80078 -3.5 -6.40039c-1.7002 -6.7002 2.39941 -128 -2.60059 -133.7c-2.09961 -2.5 -4.69922 -3.2002 -7.69922 -3.7002
-c-17.7002 -3.19922 -29.6006 -4.7998 -38 -12.7998c-14.5 -14.2002 -7 -38.8994 14.3994 -42.8994c8 -1.40039 23.1006 0.599609 31.4004 5.19922c7.2998 3.80078 12.7998 10.6006 14.8994 19.6006c1.7002 7.7002 1.2002 2.39941 1.2002 118.5
-c0 5.7002 1.7002 7.2002 6.7002 8.2998c0 0 87.9004 16.4004 91.9004 17.0996c5.69922 1 8.39941 -0.5 8.39941 -6.09961c0 -78.7998 1 -77.2002 -2.2002 -80.7998c-2.09961 -2.5 -4.69922 -3.2002 -7.69922 -3.7002c-17.7002 -3.2002 -29.6006 -4.7998 -38 -12.7998
-c-10.6006 -10.4004 -10.4004 -26.7998 1.39941 -36.7998c9.7002 -7.80078 19.7998 -7.2002 31.9004 -5c13.7998 2.59961 24.0996 10.1992 27.2998 23.7998zM345.2 416c56.8994 0 102.8 -45.9004 102.8 -102.8v-242.4c0 -56.8994 -45.7998 -102.8 -102.8 -102.8h-242.4
-c-56.8994 0 -102.8 45.9004 -102.8 102.8v242.4c0 56.8994 45.9004 102.8 102.8 102.8h242.4zM223.6 4c106.301 0 192.5 86.2002 192.5 192.5s-86.1992 192.5 -192.5 192.5c-106.3 0 -192.5 -86.2002 -192.5 -192.5s86.2002 -192.5 192.5 -192.5z" />
-    <glyph glyph-name="itunes-note" unicode="&#xf3b5;" horiz-adv-x="384" 
-d="M381.9 59.7998c-6.40039 -27.3994 -27.2002 -42.7998 -55.1006 -48c-24.5 -4.5 -44.8994 -5.59961 -64.5 10.2002c-23.8994 20.0996 -24.2002 53.4004 -2.7002 74.4004c17 16.1992 40.9004 19.5 76.8008 25.7998c6 1.09961 11.1992 2.5 15.5996 7.39941
-c6.40039 7.2002 4.40039 4.10059 4.40039 163.2c0 11.2002 -5.5 14.2998 -17 12.2998c-8.2002 -1.39941 -185.7 -34.5996 -185.7 -34.5996c-10.2002 -2.2002 -13.4004 -5.2002 -13.4004 -16.7002c0 -234.7 1.10059 -223.899 -2.5 -239.5
-c-4.2002 -18.2002 -15.3994 -31.8994 -30.2002 -39.5c-16.7998 -9.2998 -47.1992 -13.3994 -63.3994 -10.3994c-43.2002 8.09961 -58.4004 58 -29.1006 86.5996c17 16.2002 40.9004 19.5 76.8008 25.7998c6 1.10059 11.1992 2.5 15.5996 7.40039
-c10.0996 11.5 1.7998 256.6 5.2002 270.2c0.799805 5.19922 3 9.59961 7.09961 12.8994c4.2002 3.5 11.7998 5.5 13.4004 5.5c204 38.2002 228.899 43.1006 232.399 43.1006c11.5 0.799805 18.1006 -6 18.1006 -17.6006c0.200195 -344.5 1.09961 -326 -1.7998 -338.5z" />
-    <glyph glyph-name="jenkins" unicode="&#xf3b6;" horiz-adv-x="512" 
-d="M487.1 23c1.5 -11.9004 -5.2998 -28.2998 -8.69922 -39.7002c-4.90039 -16.2998 -9.7002 -31.8994 -14.6006 -47.2002h-422c-0.700195 1.90039 -1.39941 4 -2.09961 6c-4.60059 14.2002 -12.6006 31.7002 -14.7002 45.8008
-c-3.09961 20.8994 16.5996 22.0996 29.2002 31.0996c19.5 14 34.7998 21.7998 55.8994 34.2998c6.30078 3.7998 25.1006 13.2002 27.3008 17.6006c4.2998 8.69922 -7.30078 20.8994 -10.4004 27.6992c-4.90039 10.7002 -7.5 19.8008 -8.2002 30.4004
-c-17.7002 2.7998 -31.0996 13.2998 -39.2002 25.2002c-13.3994 19.7002 -22.6992 56 -11.0996 83.7002c0.900391 2.19922 5.40039 6.5 6.09961 9.7998c1.40039 6.59961 -2.5 15.3994 -2.69922 22.3994c-1.2002 36 6.09961 67 30.2998 77.8008
-c9.7998 39.0996 45 52.1992 78.0996 71.5996c12.2998 7.2998 26 11.9004 40.1006 17.0996c50.5 18.7002 128.1 15.1006 170.1 -16.5996c17.7998 -13.5 46.2002 -41.9004 56.4004 -62.5c26.8994 -54.2998 25 -145.1 6.19922 -211.2
-c-2.5 -8.89941 -6.19922 -21.8994 -11.2998 -32.5996c-3.59961 -7.40039 -14.7002 -22.2998 -13.2998 -28.9004c1.40039 -6.7998 25.2998 -24.8994 30.4004 -29.8994c9.19922 -8.80078 26.7998 -20.7002 28.1992 -31.9004zM205.9 414.3
-c-33.2002 -9.39941 -75.7002 -33.5 -89.3008 -63.3994c10.6006 1.5 17.9004 6.7998 28.3008 7.5c3.89941 0.299805 9.09961 -1.60059 13.5996 -0.5c9 2.2998 16.5996 22.5 23.4004 30c6.59961 7.39941 14.5996 10.5 20 17.1992c3.5 1.7002 8.69922 1.60059 8.89941 6.80078
-c-1.5 1.69922 -3.09961 2.89941 -4.89941 2.39941zM101.1 320.7c-14.6992 -16.1006 -11.5996 -46.2998 -9.7998 -67.7998c26.5 16.6992 61.6006 -1.30078 61.2998 -29.6006c12.6006 0.299805 4.7002 15.7998 2.40039 25.7002c-7.5 32.5996 12.5996 67.9004 0.900391 97.5996
-c-22.7002 -1.7998 -41.3008 -11 -54.8008 -25.8994zM137.8 120.5c4.90039 -20 15.7002 -46 26.2998 -61.4004c13.6006 -19.3994 40.1006 -22.2998 68.7002 -24.1992c5.10059 11 23.9004 10.0996 36.2002 7.19922c-14.7002 5.80078 -28.4004 19.9004 -39.7002 32.4004
-c-13 14.2998 -26.0996 29.7002 -26.7998 48.4004c24.5 -34 44.7998 -63.8008 89.5 -78.8008c33.7998 -11.2998 73.2002 5.2002 99.2002 23.4004c10.7998 7.59961 17.2002 19.5996 24.8994 30.5996c28.7002 41.2002 42 100.101 39.1006 157.101
-c-1.2002 23.5 -1.10059 47 -9 62.7998c-8.2998 16.5996 -36.2002 31.2998 -52.5 16.4004c-3 16.0996 13.5996 26.0996 33.0996 20.2998c-13.8994 18 -28.5996 39.5996 -48.2998 50.7002c-34.4004 19.5 -92.7002 34.0996 -129.3 15.7998
-c-29.6006 -14.7002 -69.5 -39.1006 -83.1006 -70c12.7002 -29.7998 -3.7998 -57.1006 -4.7998 -87.4004c-0.599609 -16.0996 7.60059 -30.2002 8.2002 -47.7002c-4.40039 -7.19922 -17.7002 -8.09961 -26.9004 -7.59961c-3.09961 15.5 -8.5 32.9004 -24.5 34.7002
-c-22.5 2.39941 -39.0996 -16.2998 -40.0996 -35.7998c-1.2002 -23 17.7002 -61 44.4004 -58.4004c10.2998 1.09961 12.7998 11.4004 24.0996 11.2998c6.09961 -12.2002 -9.40039 -16 -11 -24.7002c-0.400391 -2.19922 1.2998 -11 2.2998 -15.0996zM359.8 -3.59961
-c-1.59961 -4.40039 0.299805 -10.4004 -0.599609 -16.5c14.8994 -4.2002 31.8994 -6.40039 50.7002 -7c3.69922 4.7998 4.89941 13.7998 4.5 22.7998c-0.600586 10.7998 -3.40039 33.0996 -10.1006 37c-14.0996 8.2002 -39 -16.5 -49.5996 -20.2998
-c1.2002 -3.40039 3.09961 -6 3.2002 -10.2002c6.2998 1.5 13.8994 0.5 19.2998 -2.2002c-6.2998 -0.700195 -13.2998 -0.599609 -17.4004 -3.59961zM342.6 16.4004c7.60059 5.5 14.3008 12 22.2002 17.0996c-18.2002 -1.59961 -41 -12.9004 -59 -4.90039
-c-0.0996094 -0.899414 -1.2998 -0.599609 -1.5 -1.39941c12.2998 -9.60059 21.5 -11.6006 38.2998 -10.7998zM330.5 -16.7998c26.9004 -8.40039 22.2002 36.7998 -2.7998 20.2002c-0.700195 -8.2002 1.2002 -10.8008 2.7998 -20.2002zM226 9.40039
-c0 6.19922 3.59961 12 2.7998 16.3994c-13.7998 2.40039 -31.8994 0.799805 -41.2998 7.2998c-9.59961 -9.69922 26.9004 -23 38.5 -23.6992zM57.7002 -49.0996v-0.100586h180.7c-0.800781 2.5 -1.5 4.90039 -2.2002 7.2002c-4.7998 15.2998 -7.5 26.7002 -8.7002 35.5
-c-19.2002 9.2002 -39.7002 18.5 -56.2002 30.2002c-3 2.2002 -23.3994 28.7002 -26.2002 27.5996c-36.8994 -14.5996 -71.3994 -39.7002 -102.199 -63.5c5.59961 -11.7998 10.5 -24.2002 14.7998 -36.8994zM298.3 -54.7998h-0.799805
-c0.299805 0.200195 0.5 0.399414 0.799805 0.5v-0.5zM305.8 -49.0996h9.60059c-1 1.5 -2.10059 2.89941 -3.2002 4.2998c-2.10059 -1.5 -4.2998 -2.90039 -6.40039 -4.2998zM320.9 -24.4004c0.0996094 3.60059 0.299805 7.2002 0.399414 10.6006
-c-6.5 3.2002 -14 5.5 -23.5 5.89941c6.5 3.30078 15.9004 3.2002 21.7998 7.10059c0.100586 1.5 0.100586 2.89941 0.200195 4.2998c-10.7998 0.900391 -14.7998 5.59961 -21.8994 9.5c-11.6006 6.40039 -29 13.2002 -43.9004 16.0996
-c-18.5 3.60059 -16.7998 -25.1992 -16 -42.3994c0.700195 -13.6006 7.7002 -28 10.7998 -37c1.5 -4.2002 1.7998 -8.7002 5.40039 -9.5c6.39941 -1.5 27.3994 6.89941 33.3994 10.2002c12.7002 6.89941 22.5 17.8994 33.3008 25.1992zM374.3 -49.0996l0.600586 12.5996
-c-11.2002 -0.700195 -17.5 10.2002 -25.4004 11c-6.90039 0.700195 -12.7002 -7.90039 -21.7002 -4.2002c-2 -2.2002 -3.89941 -4.7002 -6 -6.89941c3.2002 -3.90039 6.10059 -8.10059 8.90039 -12.5h17.3994c0.200195 3.19922 2.80078 5.7998 6.10059 5.7998
-s6 -2.60059 6.09961 -5.7998h14zM383 -49.0996h36.2998c-6.7002 10.1992 -20.0996 18.7998 -35.7002 11.5c-0.199219 -3.7002 -0.399414 -7.5 -0.599609 -11.5zM466.4 -12.0996c1.19922 6.19922 4.59961 19.5996 3.7998 25.0996
-c-1.40039 9.7998 -14.6006 17.0996 -21.4004 23.0996c-12.3994 11.1006 -20.2002 21 -33.2002 31.4004c-5.19922 -7.7998 -16.5 -13 -20.7998 -19.2998c30.7002 14.8994 36.2998 -55.7998 24.2002 -78.5c1.90039 -6.7998 8.2998 -9.40039 10.9004 -15.5
-c-0.700195 -1.10059 -1.30078 -2.2002 -1.90039 -3.2998h27.9004c0.199219 0 0.399414 0 0.599609 -0.100586c4.09961 13.1006 7.59961 25.9004 9.90039 37.1006zM222.2 317.5c5.39941 14.9004 27.2002 34.7002 45 32c7.7002 -1.2002 18 -8.2002 12.2002 -17.7002
-c-30.2002 7 -45.2002 -12.5996 -54.4004 -33.0996c-8.09961 2 -4.90039 13.0996 -2.7998 18.7998zM406.3 254.4c8.2002 3.59961 22.4004 0.699219 29.6006 5.2998c-4.2002 11.5 -10.3008 21.3994 -9.30078 37.7002c0.5 0 1 0 1.40039 -0.100586
-c6.7998 -14.2002 12.7002 -29.2002 21.4004 -41.7002c-5.7002 -13.5 -43.6006 -25.3994 -43.1006 -1.19922zM309.5 251.7c-6.7998 10.8994 -19 32.5 -14.5 45.2998c6.5 -11.9004 8.59961 -24.4004 17.7998 -33.2998c4.10059 -4 12.2002 -9 8.2002 -20.2002
-c-0.900391 -2.7002 -7.7998 -8.59961 -11.7002 -9.7002c-14.3994 -4.2998 -47.8994 -0.899414 -36.5996 17.1006c11.8994 -0.700195 27.8994 -7.80078 36.7998 0.799805zM336.8 181.7c3.7998 -6.60059 1.40039 -18.7002 12.1006 -20.6006
-c20.1992 -3.39941 43.5996 12.3008 58.0996 17.8008c9 15.1992 -0.799805 20.6992 -8.90039 30.5c-16.5996 20 -38.7998 44.7998 -38 74.6992c6.7002 4.90039 7.30078 -7.39941 8.2002 -9.69922c8.7002 -20.3008 30.4004 -46.2002 46.2998 -63.5
-c3.90039 -4.30078 10.3008 -8.40039 11 -11.2002c2.10059 -8.2002 -5.39941 -18 -4.5 -23.5c-21.6992 -13.9004 -45.7998 -29.1006 -81.3994 -25.6006c-7.40039 6.7002 -10.2998 21.4004 -2.90039 31.1006zM135.5 190.9c-6.7998 3.89941 -8.40039 21 -16.4004 21.3994
-c-11.3994 0.700195 -9.2998 -22.2002 -9.2998 -35.5c-7.7998 7.10059 -9.2002 29.1006 -3.5 40.2998c-6.59961 3.2002 -9.5 -3.59961 -13.0996 -5.89941c4.7002 34.0996 49.7998 15.7998 42.2998 -20.2998zM435.1 162.1c-10.0996 -19.1992 -24.3994 -40.3994 -54 -41
-c-0.599609 6.2002 -1.09961 15.6006 0 19.4004c22.7002 2.2002 36.6006 13.7002 54 21.5996zM293.2 149.7c18.8994 -9.90039 53.5996 -11 79.2998 -10.2002c1.40039 -5.59961 1.2998 -12.5996 1.40039 -19.4004c-33 -1.7998 -72 6.40039 -80.7002 29.6006zM385.4 103
-c-1.7002 -4.2998 -5.30078 -9.2998 -9.80078 -11.0996c-12.0996 -4.90039 -45.5996 -8.7002 -62.3994 0.299805c-10.7002 5.7002 -17.5 18.5 -23.4004 26c-2.7998 3.59961 -16.8994 12.8994 -0.200195 12.8994c13.1006 -32.6992 58 -29 95.8008 -28.0996z" />
-    <glyph glyph-name="joget" unicode="&#xf3b7;" horiz-adv-x="496" 
-d="M378.1 403c116.601 -71.7998 152.9 -224.6 81 -341.2c-71.8994 -116.5 -224.6 -152.8 -341.199 -80.8994c-116.601 71.8994 -152.9 224.6 -81 341.199c46.8994 76 128.1 117.9 211.3 117.9c44.3994 0 89.3994 -11.9004 129.899 -37zM429.9 79.7998
-c5.2998 8.7002 9.89941 17.6006 13.8994 26.6006c-32.0996 -1.10059 -157.1 1.5 -208.8 -17.6006c-58.4004 -21.5 -36.9004 -53.3994 -31.2002 -67.0996c3.7998 -9.10059 14.7002 -28.7998 23.7002 -42.4004c6.7998 -0.599609 13.5996 -1 20.4004 -1
-c71.5996 0 141.6 36 182 101.5zM229.1 166.1c51 -1.2998 205.4 -4.39941 230.301 -4.89941c11.8994 81.7998 -24.5 166.6 -99.3008 212.7c-100.5 61.8994 -232.1 30.6992 -294 -69.8008c-28.5996 -46.3994 -37.2998 -99.3994 -28.5 -149.1
-c11 40.9004 49.7002 131.5 178.301 140.2c50.8994 4 41.5 -19.2002 23.5996 -29.7002c-17.7998 -10.5 -45.7002 -23.7998 -68.9004 -51.2002c-23.1992 -27.3994 3 -46.7998 58.5 -48.2002zM412.9 220.9c22.6992 -6 19.0996 -15.5 19.0996 -15.5l-46.5 -23.4004
-l-169.5 -1.59961s33.7998 10.7998 65.2998 31.2998c26 16.8994 49.7002 35.5996 67.5 35.5996c3.7002 0 7.2002 -0.899414 10.4004 -2.7002c18.5 -10.5996 -2.90039 -18.1992 -13.4004 -24.5996s-50.7002 -34.5 -50.7002 -34.5s1.40039 -7.59961 31.1006 8.2002
-c29.7002 15.8994 64 33.2002 86.7002 27.2002z" />
-    <glyph glyph-name="js" unicode="&#xf3b8;" 
-d="M0 416h448v-448h-448v448zM243.8 66.5996v143.7h-42.0996v-143.1c0 -21.1006 -8.7998 -26.5 -22.6006 -26.5c-14.5 0 -20.5 9.89941 -27.0996 21.5996l-34.2998 -20.7002c10 -21.0996 29.5 -38.5 63.2002 -38.5c37.2998 0 62.8994 19.9004 62.8994 63.5zM343.4 3.09961
-c39.8994 0 69.6992 20.8008 69.6992 58.6006c0 35.2002 -20.0996 50.8994 -55.8994 66.2002l-10.5 4.5c-18.1006 7.89941 -25.9004 13 -25.9004 25.5996c0 10.2002 7.7998 18 20.1006 18c12.0996 0 19.8994 -5.09961 27.0996 -18l32.7998 21
-c-13.7998 24.4004 -33 33.7002 -59.7998 33.7002c-37.5 0 -61.5996 -24 -61.5996 -55.6006c0 -34.2998 20.0996 -50.5996 50.5 -63.5l10.5 -4.5c19.2998 -8.5 30.6992 -13.5996 30.6992 -28c0 -12.0996 -11.1992 -20.7998 -28.5996 -20.7998
-c-20.7002 0 -32.5 10.9004 -41.5 25.6006l-34.2998 -19.8008c12.2998 -24.3994 37.5996 -43 76.7002 -43z" />
-    <glyph glyph-name="js-square" unicode="&#xf3b9;" 
-d="M400 416c26.5 0 48 -21.5 48 -48v-352c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h352zM243.8 66.5996v143.7h-42.0996v-143.1c0 -21.1006 -8.7998 -26.5 -22.6006 -26.5c-14.5 0 -20.5 9.89941 -27.0996 21.5996
-l-34.2998 -20.7002c10 -21.0996 29.5 -38.5 63.2002 -38.5c37.2998 0 62.8994 19.9004 62.8994 63.5zM343.4 3.09961c39.8994 0 69.6992 20.8008 69.6992 58.6006c0 35.2002 -20.0996 50.8994 -55.8994 66.2002l-10.5 4.5c-18.1006 7.89941 -25.9004 13 -25.9004 25.5996
-c0 10.2002 7.7998 18 20.1006 18c12.0996 0 19.8994 -5.09961 27.0996 -18l32.7998 21c-13.7998 24.4004 -33 33.7002 -59.7998 33.7002c-37.5 0 -61.5996 -24 -61.5996 -55.6006c0 -34.2998 20.0996 -50.5996 50.5 -63.5l10.5 -4.5
-c19.2998 -8.5 30.6992 -13.5996 30.6992 -28c0 -12.0996 -11.1992 -20.7998 -28.5996 -20.7998c-20.7002 0 -32.5 10.9004 -41.5 25.6006l-34.2998 -19.8008c12.2998 -24.3994 37.5996 -43 76.7002 -43z" />
-    <glyph glyph-name="keycdn" unicode="&#xf3ba;" horiz-adv-x="512" 
-d="M63.7998 38.7002l60.5 59c32.1006 -42.7998 71.1006 -66 126.601 -67.4004c30.5 -0.700195 60.2998 7 86.3994 22.4004c5.10059 -5.2998 18.5 -19.5 20.9004 -22c-32.2002 -20.7002 -69.6006 -31.1006 -108.101 -30.2002
-c-43.2998 1.09961 -84.5996 16.7002 -117.699 44.4004c0.299805 0.599609 -38.2002 -37.5 -38.6006 -37.9004c9.5 -29.7998 -13.0996 -62.4004 -46.2998 -62.4004c-26.7998 0.100586 -47.5 21.7002 -47.5 48.5c0 34.3008 33.0996 56.6006 63.7998 45.6006zM418.7 291.1
-c19.0996 -31.2998 29.5996 -67.3994 28.7002 -104c-1.10059 -44.7998 -19 -87.5 -48.6006 -121c0.299805 -0.299805 23.7998 -25.1992 24.1006 -25.5c9.59961 1.30078 19.1992 -2 25.8994 -9.09961c11.2998 -12 10.9004 -30.9004 -1.09961 -42.4004
-c-12 -11.2998 -30.9004 -10.8994 -42.4004 1.10059c-6.7002 7 -9.39941 16.7998 -7.59961 26.2998c-24.9004 26.5996 -44.4004 47.2002 -44.4004 47.2002c42.7002 34.0996 63.2998 79.5996 64.4004 124.2c0.700195 28.8994 -7.2002 57.1992 -21.1006 82.1992zM104 394.9
-c6.7002 -7 9.40039 -16.8008 7.59961 -26.3008l45.9004 -48.0996c-4.7002 -3.7998 -13.2998 -10.4004 -22.7998 -21.2998c-25.4004 -28.5 -39.6006 -64.7998 -40.7002 -102.9c-0.700195 -28.8994 6.09961 -57.2002 20 -82.3994l-22 -21.5
-c-19.2998 31.5996 -28.9004 67.6992 -27.7998 104.699c1 44.6006 18.2998 87.6006 47.5 121.101l-25.2998 26.3994c-9.60059 -1.2998 -19.2002 2 -25.9004 9.10059c-11.2998 12 -10.9004 30.8994 1.09961 42.3994c11.9004 11.2002 30.6006 10.9004 42.4004 -1.19922z
-M464.9 440c26 0 47.0996 -22.4004 47.0996 -48.2998c0 -25.9004 -21.0996 -47.7002 -47.0996 -47.7002c-6.30078 -0.0996094 -14 1.09961 -15.9004 1.7998l-62.9004 -59.7002c-32.6992 43.6006 -76.6992 65.9004 -126.899 67.2002
-c-30.5 0.700195 -60.2998 -6.7998 -86.2002 -22.3994l-21.0996 22c32.1992 20.7998 69.5996 31.0996 108.1 30.1992c43.2998 -1.09961 84.5996 -16.6992 117.7 -44.5996l41.0996 38.5996c-1.5 4.7002 -2.2002 9.60059 -2.2002 14.5
-c-0.0996094 26.7002 22.3008 48.4004 48.3008 48.4004zM256.7 334.6c5.5 0 10.8994 -0.399414 16.3994 -1.09961c78.1006 -9.7998 133.4 -81.0996 123.801 -159.1c-9.80078 -78.1006 -81.1006 -133.4 -159.101 -123.801c-78.0996 9.80078 -133.399 81.1006 -123.8 159.2
-c9.2998 72.4004 70.0996 124.601 142.7 124.8zM197.7 215.2c0.599609 -22.7002 12.2002 -41.7998 32.3994 -52.2002l-11 -51.7002h73.7002l-11 51.7002c20.1006 10.9004 32.1006 29 32.4004 52.2002c-0.400391 32.7998 -25.7998 57.5 -58.2998 58.2998
-c-32.1006 -0.799805 -57.3008 -24.7998 -58.2002 -58.2998zM256 288z" />
-    <glyph glyph-name="kickstarter" unicode="&#xf3bb;" 
-d="M400 -32h-352c-26.4004 0 -48 21.5996 -48 48v352c0 26.4004 21.5996 48 48 48h352c26.4004 0 48 -21.5996 48 -48v-352c0 -26.4004 -21.5996 -48 -48 -48zM199.6 269.5c0 30.7002 -17.5996 45.0996 -39.6992 45.0996c-25.8008 0 -40 -19.7998 -40 -44.5v-154.8
-c0 -25.7998 13.6992 -45.5996 40.5 -45.5996c21.5 0 39.1992 14 39.1992 45.5996v41.7998l60.6006 -75.6992c12.2998 -14.9004 39 -16.8008 55.7998 0c14.5996 15.0996 14.7998 36.7998 4 50.3994l-49.0996 62.7998l40.5 58.7002c9.39941 13.5 9.5 34.5 -5.60059 49.1006
-c-16.3994 15.8994 -44.5996 17.2998 -61.3994 -7l-44.8008 -64.7002v38.7998z" />
-    <glyph glyph-name="kickstarter-k" unicode="&#xf3bc;" horiz-adv-x="384" 
-d="M147.3 333.6v-70.5996l82.7998 118.2c31.2002 44.3994 83.3008 41.7998 113.601 12.7998c27.8994 -26.7002 27.7998 -65.0996 10.3994 -89.7998l-74.8994 -107.4l90.7998 -114.8c19.9004 -24.7998 19.5996 -64.5996 -7.40039 -92.2002
-c-31.0996 -30.7002 -80.5 -27.2002 -103.199 0l-112.101 138.3v-76.5c0 -57.7998 -32.5996 -83.3994 -72.3994 -83.3994c-49.6006 0 -74.9004 36.0996 -74.9004 83.3994v283c0 45.2002 26.2002 81.4004 73.9004 81.4004c40.8994 0 73.3994 -26.2002 73.3994 -82.4004z" />
-    <glyph glyph-name="laravel" unicode="&#xf3bd;" horiz-adv-x="512" 
-d="M504.4 332.17c0.15625 -0.650391 0.240234 -1.32324 0.240234 -2.02051c0 -0.0234375 0 -0.046875 -0.000976562 -0.0693359v-109.85c0.000976562 -0.0244141 0.00878906 -0.0429688 0.00878906 -0.0673828c0 -2.96191 -1.61328 -5.5498 -4.00879 -6.93262
-l-92.2393 -53.1104v-105.26c0 -0.0078125 0.0078125 -0.00976562 0.0078125 -0.0166016c0 -2.96289 -1.61328 -5.55078 -4.00781 -6.93359l-192.561 -110.84c-0.442383 -0.231445 -0.916016 -0.428711 -1.39941 -0.580078
-c-0.180664 -0.0605469 -0.350586 -0.169922 -0.550781 -0.220703c-0.654297 -0.174805 -1.33789 -0.268555 -2.04688 -0.268555c-0.709961 0 -1.39844 0.09375 -2.05273 0.268555c-0.219727 0.0605469 -0.419922 0.180664 -0.629883 0.260742
-c-0.458008 0.143555 -0.908203 0.327148 -1.33008 0.540039l-192.5 110.84c-2.39551 1.38281 -4 3.96582 -4 6.92773v0.0224609v329.699c0.00195312 0.727539 0.0996094 1.42969 0.280273 2.10059c0.0839844 0.228516 0.181641 0.454102 0.290039 0.669922
-c0.133789 0.427734 0.307617 0.84668 0.509766 1.24023c0.149414 0.259766 0.370117 0.469727 0.549805 0.719727c0.21582 0.329102 0.450195 0.636719 0.709961 0.929688c0.250977 0.217773 0.512695 0.416016 0.790039 0.600586
-c0.274414 0.254883 0.56543 0.483398 0.879883 0.689453v0l96.2705 55.4199c1.1748 0.678711 2.55469 1.06738 4.00781 1.06738s2.81641 -0.388672 3.99219 -1.06738l96.29 -55.4199v0c0.307617 -0.210938 0.598633 -0.435547 0.879883 -0.679688
-c0.271484 -0.1875 0.529297 -0.385742 0.779297 -0.599609c0.260742 -0.298828 0.499023 -0.610352 0.720703 -0.94043c0.169922 -0.25 0.399414 -0.459961 0.540039 -0.719727c0.203125 -0.393555 0.379883 -0.813477 0.519531 -1.24023
-c0.0800781 -0.230469 0.219727 -0.44043 0.280273 -0.679688c0.181641 -0.661133 0.280273 -1.35352 0.280273 -2.07129v-0.0195312v-205.93l80.2197 46.1904v105.239c0.00292969 0.720703 0.100586 1.41602 0.280273 2.08008
-c0.0693359 0.240234 0.199219 0.450195 0.279297 0.680664c0.144531 0.427734 0.320312 0.850586 0.520508 1.25c0.149414 0.259766 0.370117 0.469727 0.540039 0.709961c0.21875 0.329102 0.457031 0.636719 0.719727 0.929688
-c0.248047 0.216797 0.505859 0.416016 0.780273 0.599609c0.277344 0.250977 0.568359 0.479492 0.879883 0.69043v0l96.2803 55.4502c1.1748 0.677734 2.55469 1.06641 4.00781 1.06641s2.81641 -0.388672 3.99219 -1.06641l96.2598 -55.4199
-c0.316406 -0.208984 0.613281 -0.433594 0.899414 -0.680664c0.25 -0.199219 0.540039 -0.379883 0.770508 -0.599609c0.260742 -0.298828 0.499023 -0.609375 0.719727 -0.94043c0.198242 -0.223633 0.376953 -0.458008 0.540039 -0.709961
-c0.207031 -0.396484 0.386719 -0.819336 0.530273 -1.25c0.106445 -0.217773 0.201172 -0.447266 0.280273 -0.679688zM111.6 430.72l-80.1895 -46.1602l80.1797 -46.1699l80.2002 46.1807l-80.1904 46.1494v0zM199.85 370.72l-33.6895 -19.4297l-46.5303 -26.79v-201.29
-l33.6904 19.4004l46.5293 26.79v201.319zM199.85 -42.0596l-0.109375 92.3594l-92.1904 52.1807v0v0c-0.301758 0.203125 -0.585938 0.421875 -0.859375 0.65918c-0.25 0.200195 -0.540039 0.360352 -0.770508 0.580078v0
-c-0.240234 0.265625 -0.458008 0.542969 -0.660156 0.839844c-0.21582 0.25 -0.414062 0.507812 -0.599609 0.780273v0c-0.166016 0.316406 -0.308594 0.655273 -0.419922 1c-0.149414 0.285156 -0.27832 0.589844 -0.379883 0.900391v0
-c-0.0820312 0.383789 -0.135742 0.77832 -0.160156 1.17969c-0.0595703 0.293945 -0.0996094 0.594727 -0.120117 0.900391v215.18l-46.5205 26.7998l-33.6895 19.3799v-311.18zM207.85 64.1104l117.62 67.1494l58.7998 33.5605l-80.1299 46.1299l-92.2598 -53.1104
-l-84.0898 -48.4102zM392.37 59.54v91.4102l-45.7705 -26.1504l-130.72 -74.5996v-92.3105zM392.37 178.67v91.3301l-46.5303 26.8096l-33.6895 19.4004v-91.4199l46.5293 -26.79zM400.37 283.95l80.1797 46.1797l-80.1797 46.1504l-80.2002 -46.1602zM408.37 178.67
-l80.3096 46.1504v0v91.3896l-33.6797 -19.4004l-46.6299 -26.8096v-91.3301z" />
-    <glyph glyph-name="line" unicode="&#xf3c0;" 
-d="M272.1 243.8v-71.0996c0 -1.7998 -1.39941 -3.2002 -3.19922 -3.2002h-11.4004c-1.09961 0 -2.09961 0.599609 -2.59961 1.2998l-32.6006 44v-42.2002c0 -1.7998 -1.39941 -3.19922 -3.2002 -3.19922h-11.3994c-1.7998 0 -3.2002 1.39941 -3.2002 3.19922v71.1006
-c0 1.7998 1.40039 3.2002 3.2002 3.2002h11.2998c1 0 2.09961 -0.5 2.59961 -1.40039l32.6006 -44v42.2002c0 1.7998 1.39941 3.2002 3.2002 3.2002h11.3994c1.7998 0.0996094 3.2998 -1.40039 3.2998 -3.10059zM190.1 247c1.80078 0 3.2002 -1.5 3.2002 -3.2002v-71.0996
-c0 -1.7998 -1.39941 -3.2002 -3.2002 -3.2002h-11.3994c-1.7998 0 -3.2002 1.40039 -3.2002 3.2002v71.0996c0 1.7998 1.40039 3.2002 3.2002 3.2002h11.3994zM162.6 187.4c1.7002 0 3.10059 -1.5 3.10059 -3.2002v-11.4004c0 -1.7998 -1.40039 -3.2002 -3.2002 -3.2002
-h-45.7002c-0.899414 0 -1.59961 0.400391 -2.2002 0.900391c-0.599609 0.599609 -0.899414 1.2998 -0.899414 2.2002v71.0996c0 1.7998 1.39941 3.2002 3.2002 3.2002h11.3994c1.7998 0 3.2002 -1.40039 3.2002 -3.2002v-56.3994h31.0996zM332.1 247
-c1.7002 0 3.10059 -1.5 3.2002 -3.2002v-11.3994c0 -1.80078 -1.39941 -3.2002 -3.2002 -3.2002h-31.0996v-12h31.0996c1.80078 0 3.2002 -1.40039 3.2002 -3.2002v-11.5c0 -1.7998 -1.39941 -3.2002 -3.2002 -3.2002h-31.0996v-12h31.0996
-c1.80078 0 3.2002 -1.39941 3.2002 -3.2002v-11.3994c0 -1.7998 -1.39941 -3.2002 -3.2002 -3.2002h-45.6992c-1.80078 0 -3.2002 1.5 -3.2002 3.2002v71.0996c0 1.7998 1.5 3.2002 3.2002 3.2002h45.6992zM448 334.3v-285.3
-c-0.0996094 -44.7998 -36.7998 -81.0996 -81.7002 -81h-285.3c-44.7998 0.0996094 -81.0996 36.9004 -81 81.7002v285.3c0.0996094 44.7998 36.9004 81.0996 81.7002 81h285.3c44.7998 -0.0996094 81.0996 -36.7998 81 -81.7002zM386.4 211.7
-c0 73 -73.2002 132.399 -163.101 132.399c-89.8994 0 -163.1 -59.3994 -163.1 -132.399c0 -65.4004 58 -120.2 136.399 -130.601c19.1006 -4.09961 16.9004 -11.0996 12.6006 -36.7998c-0.700195 -4.09961 -3.2998 -16.0996 14.0996 -8.7998
-c17.4004 7.2998 93.9004 55.2998 128.2 94.7002c23.5996 26 34.9004 52.2998 34.9004 81.5z" />
-    <glyph glyph-name="lyft" unicode="&#xf3c3;" horiz-adv-x="512" 
-d="M0 366.9h77.7998v-208.7c0 -33.1006 15 -52.7998 27.2002 -61c-12.7002 -11.1006 -51.2002 -20.9004 -80.2002 2.7998c-17 14 -24.7998 37.2998 -24.7998 59v207.9zM485.9 193.4c0 -14.2002 11.5996 -25.9004 26.0996 -25.9004v-76.5
-c-56.7002 0 -102.7 46.0996 -102.7 102.7v77.0996c0 34.6006 -52.2002 34.6006 -52.2002 0v-23.2998h38.8008v-76.7998h-38.8008v-6.7002c0 -21.7998 -7.69922 -45 -24.7998 -59c-16.2998 -13.7002 -35.7002 -16.2998 -51.7002 -14v179.2
-c0 56.7002 46.1006 102.7 102.7 102.7c49.1006 0 90.2002 -34.4004 100.3 -80.7002h26.1006v-76.7998h-23.7998v-22zM191.6 292.4v0.5h77.1006v-178.2c0 -52.4004 -29.7002 -91.7002 -76.7998 -100.8c-26.1006 -5.10059 -52.5 -2.80078 -77.6006 4.69922v70.3008
-c9.7998 -4.2002 29.5 -9.40039 45 -7.80078c20.4004 2 32.7998 11.9004 34.9004 25.3008c0 0 -21.2002 -20.4004 -58.2002 -10.6006c-37 9.90039 -45 40.1006 -45 63.9004v132.7h76.7998v-113c0 -15.4004 23.7998 -15.4004 23.7998 0v113z" />
-    <glyph glyph-name="magento" unicode="&#xf3c4;" 
-d="M445.7 320.1v-256.1l-63.4004 -36.5v255.8l-158.5 91.6006l-158.6 -91.6006l0.399414 -255.899l-63.2998 36.5996v255.9l221.9 128.1zM255.6 27.5v255.9l63.4004 -36.6006v-256l-95.0996 -54.8994l-94.9004 54.8994l-0.0996094 255.9l63.2998 36.5996v-256
-l31.7998 -18.2002z" />
-    <glyph glyph-name="medapps" unicode="&#xf3c6;" horiz-adv-x="320" 
-d="M118.3 209.6c3.5 12.5 6.90039 33.6006 13.2002 33.6006c8.2998 -1.7998 9.59961 -23.4004 18.5996 -36.6006c4.60059 23.5 5.30078 85.1006 14.1006 86.7002c9 0.700195 19.7002 -66.5 22 -77.5c9.89941 -4.09961 48.8994 -6.59961 48.8994 -6.59961
-c1.90039 -7.2998 -24 -7.60059 -40 -7.7998c-4.59961 -14.8008 -5.39941 -27.7002 -11.3994 -28c-4.7002 -0.200195 -8.2002 28.7998 -17.5 49.5996l-9.40039 -65.5c-4.39941 -13 -15.5 22.5 -21.8994 39.2998c-3.30078 0.100586 -62.4004 1.60059 -47.6006 7.7998zM228 0
-h-136c-21.2002 0 -21.2002 32 0 32h136c21.2002 0 21.2002 -32 0 -32zM204 -64h-88c-21.2002 0 -21.2002 32 0 32h88c21.2002 0 21.2002 -32 0 -32zM238.2 77.5c-3.60059 -21.2998 -36 -15.5 -32.6006 5.09961c3.60059 21.2002 5.60059 40.6006 15.3008 58.6006
-c32.5996 60.2998 66.0996 95.5 66.0996 151.6c0 67.9004 -57 123.2 -127 123.2s-127 -55.2998 -127 -123.2c0 -56.0996 33.5 -91.2998 66.0996 -151.7c9.7002 -17.8994 11.7002 -36.8994 15.3008 -58.5996c3.5 -20.7998 -29.1006 -26.0996 -32.6006 -5.09961
-c-3.2002 19.0996 -5.2002 36.3994 -11.8994 48.8994c-8 14.7002 -16.1006 28.1006 -24 41c-24.6006 40.4004 -45.9004 75.2998 -45.9004 125.5c0 85.6006 71.7998 155.2 160 155.2s160 -69.5996 160 -155.2c0 -50.2998 -21.2998 -85.0996 -45.9004 -125.5
-c-7.89941 -12.8994 -16.0996 -26.2998 -24 -41c-6.69922 -12.3994 -8.69922 -29.8994 -11.8994 -48.7998z" />
-    <glyph glyph-name="medium-m" unicode="&#xf3c7;" horiz-adv-x="512" 
-d="M71.5 305.7c0.599609 5.89941 -1.7002 11.7998 -6.09961 15.7998l-45.1006 54.4004v8.09961h140.2l108.4 -237.7l95.2998 237.7h133.7v-8.09961l-38.6006 -37c-3.2998 -2.5 -5 -6.7002 -4.2998 -10.8008v-272c-0.700195 -4.09961 1 -8.2998 4.2998 -10.7998l37.7002 -37
-v-8.09961h-189.7v8.09961l39.1006 37.9004c3.7998 3.7998 3.7998 5 3.7998 10.7998v219.8l-108.7 -275.899h-14.7002l-126.399 275.899v-184.899c-1.10059 -7.80078 1.5 -15.6006 7 -21.2002l50.7998 -61.6006v-8.09961h-144v8l50.7998 61.7002
-c5.40039 5.59961 7.90039 13.5 6.5 21.2002v213.8z" />
-    <glyph glyph-name="medrt" unicode="&#xf3c8;" horiz-adv-x="544" 
-d="M113.7 192c0 -121.8 83.8994 -222.8 193.5 -241.1c-18.7002 -4.5 -38.2002 -6.90039 -58.2002 -6.90039c-137.6 0 -249 111 -249 248s111.4 248 248.9 248c20.0996 0 39.5996 -2.40039 58.1992 -6.90039c-109.6 -18.2998 -193.399 -119.3 -193.399 -241.1zM411.1 91.7002
-c77.7002 55.3994 104.4 155.1 67 233.899c11.2002 -9.89941 21.5 -21.2998 30.5 -34.1992c61.6006 -88.3008 40.8008 -210.301 -46.5 -272.601c-87.2998 -62.2998 -208.1 -41.2002 -269.699 47c-9 12.7998 -16.2002 26.4004 -21.7002 40.5
-c60.7998 -62.0996 162.7 -70 240.399 -14.5996zM192.3 335.7c72.5 54.5996 171.601 45.7002 221.601 -19.7998c45.2998 -59.7002 34.3994 -145.601 -22.3008 -201.801c18.5 51.4004 11.3008 111 -24.3994 158c-43 56.5 -114.601 78.3008 -178.9 60.5
-c1.2998 1 2.60059 2.10059 4 3.10059zM296 224h40c4.40039 0 8 -3.59961 8 -8v-48c0 -4.40039 -3.59961 -8 -8 -8h-40c-4.40039 0 -8 -3.59961 -8 -8v-40c0 -4.40039 -3.59961 -8 -8 -8h-48c-4.40039 0 -8 3.59961 -8 8v40c0 4.40039 -3.59961 8 -8 8h-40
-c-4.40039 0 -8 3.59961 -8 8v48c0 4.40039 3.59961 8 8 8h40c4.40039 0 8 3.59961 8 8v40c0 4.40039 3.59961 8 8 8h48c4.40039 0 8 -3.59961 8 -8v-40c0 -4.40039 3.59961 -8 8 -8z" />
-    <glyph glyph-name="microsoft" unicode="&#xf3ca;" 
-d="M0 416h214.6v-214.6h-214.6v214.6zM233.4 416h214.6v-214.6h-214.6v214.6zM0 182.6h214.6v-214.6h-214.6v214.6zM233.4 182.6h214.6v-214.6h-214.6v214.6z" />
-    <glyph glyph-name="mix" unicode="&#xf3cb;" 
-d="M0 384h448v-204.1c0 -56.6006 -88 -59.9004 -88 0v23.7998c0 56.7998 -82.7002 59 -88 4.2998v-116.1c0 -58 -96 -57.9004 -96 0v175.3c0 56.8994 -80.0996 59.3994 -88 6.5v-238.601c0 -58.0996 -88 -56.1992 -88 0v348.9z" />
-    <glyph glyph-name="mizuni" unicode="&#xf3cc;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111.1 248 -248c0 -137 -111 -248 -248 -248s-248 111 -248 248c0 136.9 111 248 248 248zM168 88.0996v223.9c0 22.0996 -17.9004 40 -40 40s-40 -17.9004 -40 -40v-272.1c21.2002 20.8994 48.5996 37.5996 80 48.1992zM288 98v214
-c0 22.0996 -17.9004 40 -40 40s-40 -17.9004 -40 -40v-214c13 2 26.4004 3.09961 40.2002 3.09961c13.5996 0 26.8994 -1.09961 39.7998 -3.09961zM408 40.2998v271.7c0 22.0996 -17.9004 40 -40 40s-40 -17.9004 -40 -40v-223.7c31.4004 -10.5996 58.7998 -27.2002 80 -48z
-" />
-    <glyph glyph-name="monero" unicode="&#xf3d0;" horiz-adv-x="496" 
-d="M352 64h108.4c-43.4004 -71.9004 -122.301 -120 -212.4 -120s-169 48.0996 -212.4 120h108.4v127.8l104 -104.8l104 105v-128zM88 112h-74.7998c-8.60059 25.0996 -13.2002 52 -13.2002 80c0 137 111 248 248 248s248 -111 248 -248c0 -28 -4.7002 -54.9004 -13.2002 -80
-h-74.7998v208l-160.6 -159.4l-159.4 159.4v-208z" />
-    <glyph glyph-name="napster" unicode="&#xf3d2;" horiz-adv-x="496" 
-d="M298.3 74.4004c-14.2002 -13.6006 -31.2998 -24.1006 -50.3994 -30.5c-19 6.39941 -36.2002 16.8994 -50.3008 30.5h100.7zM342.3 274c-56.3994 39.7998 -132.1 39.9004 -188.899 -0.0996094c-19.9004 16.7998 -43.6006 29.5 -69.5 36.3994v-161.6
-c0 -217.3 328 -219.101 328 0.299805v161.2c-26 -7 -49.6006 -19.2998 -69.6006 -36.2002zM133.5 332.5c6.5 -3.2002 14.0996 -7.40039 20.4004 -11.4004c58.6992 30.5 129.199 30.6006 187.899 0.100586c6.7002 4.2002 13.5 8 20.6006 11.5
-c-64.6006 59.8994 -164.5 59.7998 -228.9 -0.200195zM43.7998 354.8c17.5 -0.5 34.2998 -3.09961 50.6006 -7.5c82 91.6006 225.5 91.6006 307.5 0.100586c16.0996 4.39941 32.7998 6.89941 50.0996 7.39941v-69.2002c58.7002 -36.5 58.5 -121.899 -0.200195 -158.199
-l-0.299805 -1.7002c-25.9004 -238.8 -381.2 -243.601 -407.6 1.5c-58.5 37.2002 -58.5 121.8 -0.100586 158.3v69.2998zM259.2 96c13.0996 59.2998 33.5 56 113 55.4004c-0.799805 -8.2002 0.0996094 -32.3008 -26.2002 -47.4004c-4.40039 -2.5 -15.2998 -6 -25.5 -6.5
-c-25.2998 -1.2002 -61.2998 -1.5 -61.2998 -1.5zM123.7 151.3c79.2998 0.700195 99.7998 4 113 -55.3994c0 0 -36 0.399414 -61.2998 1.5c-10.3008 0.5 -21.1006 4 -25.5 6.5c-26.3008 15.0996 -25.4004 39.1992 -26.2002 47.3994zM292.8 27.9004
-c3 -4.90039 3.2002 -8.80078 3.2998 -8.90039c-29.0996 -17.5996 -67.0996 -17.5996 -96.1992 0c0 0 0.899414 5.5 3.69922 9.59961c3.5 5.10059 6.40039 6.60059 6.40039 6.60059c23.7002 -6.90039 51.0996 -7.2998 75.9004 0c0 0 3.69922 -2 6.89941 -7.2998z" />
-    <glyph glyph-name="node-js" unicode="&#xf3d3;" 
-d="M224 -60c-6.7002 0 -13.5 1.7998 -19.4004 5.2002l-61.6992 36.5c-9.2002 5.2002 -4.7002 7 -1.7002 8c12.2998 4.2998 14.7998 5.2002 27.8994 12.7002c1.40039 0.799805 3.2002 0.5 4.60059 -0.400391l47.3994 -28.0996c1.7002 -1 4.10059 -1 5.7002 0l184.7 106.6
-c1.7002 1 2.7998 3 2.7998 5v213.2c0 2.09961 -1.09961 4 -2.89941 5.09961l-184.601 106.5c-1.7002 1 -4 1 -5.7002 0l-184.5 -106.6c-1.7998 -1 -2.89941 -3 -2.89941 -5.10059v-213.1c0 -2 1.09961 -4 2.89941 -4.90039l50.6006 -29.1992
-c27.5 -13.7002 44.2998 2.39941 44.2998 18.6992v210.4c0 3 2.40039 5.2998 5.40039 5.2998h23.3994c2.90039 0 5.40039 -2.2998 5.40039 -5.2998v-210.5c0 -36.5996 -20 -57.5996 -54.7002 -57.5996c-10.7002 0 -19.0996 0 -42.5 11.5996l-48.4004 27.9004
-c-12 6.89941 -19.3994 19.7998 -19.3994 33.6992v213.101c0 13.7998 7.39941 26.7998 19.3994 33.7002l184.5 106.6c11.7002 6.59961 27.2002 6.59961 38.8008 0l184.699 -106.7c12 -6.89941 19.4004 -19.7998 19.4004 -33.7002v-213.1
-c0 -13.7998 -7.40039 -26.7002 -19.4004 -33.7002l-184.699 -106.6c-5.90039 -3.40039 -12.6006 -5.2002 -19.4004 -5.2002zM373.1 150.1c0 -40.1992 -33.5996 -63.2998 -92 -63.3994c-80.8994 0 -97.7998 37.0996 -97.7998 68.2002c0 2.89941 2.2998 5.2998 5.2998 5.2998
-h23.9004c2.7002 0 4.90039 -1.90039 5.2998 -4.5c3.60059 -24.2998 14.2998 -36.6006 63.2002 -36.6006c38.9004 0 55.5 8.80078 55.5 29.4004c0 11.9004 -4.7002 20.7998 -65.2002 26.7002c-50.5 5 -81.7998 16.2002 -81.7998 56.5996c0 37.2998 31.4004 59.5 84.0996 59.5
-c59.2002 0 88.5 -20.5 92.2002 -64.5996c0.100586 -1.5 -0.399414 -3 -1.39941 -4.10059c-1 -1.09961 -2.40039 -1.69922 -3.90039 -1.69922h-24c-2.5 0 -4.7002 1.7998 -5.2002 4.19922c-5.7998 25.6006 -19.7998 33.8008 -57.7002 33.8008
-c-42.5 0 -47.3994 -14.8008 -47.3994 -25.9004c0 -13.4004 5.7998 -17.2998 63.2002 -24.9004c56.6992 -7.5 83.6992 -18.0996 83.6992 -58z" />
-    <glyph glyph-name="npm" unicode="&#xf3d4;" horiz-adv-x="576" 
-d="M288 160h-32v64h32v-64zM576 288v-192h-288v-32h-128v32h-160v192h576zM160 256h-128v-128h64v96h32v-96h32v128zM320 256h-128v-160h64v32h64v128zM544 256h-192v-128h64v96h32v-96h32v96h32v-96h32v128z" />
-    <glyph glyph-name="ns8" unicode="&#xf3d5;" horiz-adv-x="640" 
-d="M104.324 178.828v26.1777h26.0664v-26.1777h-26.0664zM156.79 205.006h-26.3428v26.1777c-0.124023 7.05762 -5.8916 12.748 -12.9785 12.748c-7.08594 0 -12.8535 -5.69043 -12.9775 -12.748v-0.166016h-26.4004v0.166016
-c-0.000976562 0.119141 -0.000976562 0.220703 -0.000976562 0.339844c0 21.7041 17.6211 39.3242 39.3242 39.3242c21.5039 0 38.999 -17.2959 39.3213 -38.7227v-0.941406zM209.146 179.16v26.0117h26.3438v-26.0117
-c0 -0.0371094 -0.000976562 -0.0722656 -0.000976562 -0.109375c0 -64.7373 -52.5439 -117.3 -117.274 -117.331h-0.774414c-0.0380859 0 -0.0732422 0.000976562 -0.110352 0.000976562c-64.7373 0 -117.299 52.543 -117.33 117.273v0.166016h26.3369
-c0 -50.2793 40.8203 -91.1006 91.0996 -91.1006h0.609375c50.2793 0 91.1006 40.8213 91.1006 91.1006zM51.9131 179.16v25.96h-26.291v25.3994c0 50.6445 41.1162 91.7617 91.7607 91.7617s91.7607 -41.1172 91.7607 -91.7617v-25.293h-26.3438v25.293v0.200195
-c0 36.1055 -29.3135 65.4199 -65.4199 65.4199c-35.7656 0 -64.8672 -28.7646 -65.4121 -64.4023v-26.6201h26.2891v-25.957c0.356445 -21.2305 17.7031 -38.3564 39.0176 -38.3564s38.6611 17.126 39.0176 38.3564h26.3438
-c-0.140625 -35.9551 -29.374 -65.1016 -65.3613 -65.1016s-65.2207 29.1465 -65.3613 65.1016zM470.313 250.333c-11.3467 0 -20.8633 -4.75977 -24.2402 -12.1172v-8.41211c2.21875 -4.53809 6.30859 -7.69238 12.6191 -9.62988
-c4.75879 -1.37891 9.76562 -2.3623 14.832 -2.87793c6.36426 -0.827148 13.0068 -1.71484 20.6992 -4.42676c13.7256 -4.59375 24.0742 -13.2275 28.9443 -24.2412l0.166016 -0.664062l-0.166016 -25.8994c-7.69238 -17.0479 -28.668 -28.4473 -52.2998 -28.4473
-c-25.6797 0 -47.374 12.6182 -55.2891 32.0439l-0.552734 1.43848l23.0205 11.5078l0.719727 -1.49414c5.97754 -12.1211 17.5996 -19.0391 31.9336 -19.0391c12.0098 0 22.083 4.81445 25.791 12.3418v9.85059c-2.37988 4.59473 -6.47656 7.75098 -12.8398 9.85156
-c-5.20312 1.71582 -10.3506 2.37988 -15.8291 3.09961c-6.78809 0.675781 -13.4814 2.04199 -19.8135 3.98438c-14.1123 4.87109 -23.9678 13.2275 -28.668 24.2412c-0.158203 0.949219 -0.123047 -2.02637 0 24.8496c7.36133 17.0469 27.8379 28.4473 50.9727 28.4473
-c24.9062 0 45.3818 -12.0098 53.4062 -31.2705l0.609375 -1.43848l-23.2451 -11.5117l-0.71875 1.5498c-5.47949 11.6221 -16.3818 18.2637 -30.0518 18.2637zM287.568 136.656v68.3994h26.0664v-68.3994h-26.0664zM639.834 189.956l0.166016 -0.722656l-0.166016 -28.8906
-c-7.52734 -15.9941 -27.8916 -26.7305 -50.584 -26.7305s-43.0029 10.7363 -50.585 26.7305l-0.166016 0.720703l0.166016 28.8887c2.93262 6.25391 8.24121 12.0137 15.4414 16.7139c-5.57422 3.90332 -10.0391 9.14453 -13.0068 15.3311l-0.166016 0.664062
-l0.166016 25.3467c7.36133 15.9922 26.7334 26.7324 48.1504 26.7324s40.7881 -10.7402 48.1504 -26.7295l0.166016 -0.664062l-0.166016 -25.3467c-2.90137 -6.22852 -7.38379 -11.4873 -13.0078 -15.3301c7.1416 -4.7041 12.5088 -10.46 15.4414 -16.7139z
-M566.614 240.762v-13.7246c3.48535 -6.19922 12.5068 -10.3486 22.5801 -10.3486c10.0723 0 19.0938 4.14844 22.6357 10.3486v13.7246c-3.59766 6.31055 -12.6191 10.5166 -22.6357 10.5166c-10.0176 0 -18.9805 -4.20605 -22.5801 -10.5166zM613.933 168.593v16.1572
-c-3.76367 6.36523 -13.3379 10.5146 -24.6826 10.5146c-11.1836 0 -20.9756 -4.20605 -24.6836 -10.5146v-16.1572c3.70801 -6.52734 13.5586 -10.8994 24.6836 -10.8994c11.3447 0 20.9189 4.25879 24.6826 10.8994zM376.4 182.038v89.7129h25.8994v-135.095h-25.6777
-l-62.5391 94.085v0.386719h-26.5098v40.623h29z" />
-    <glyph glyph-name="nutritionix" unicode="&#xf3d6;" horiz-adv-x="400" 
-d="M88 439.9c0 0 133.4 8.19922 121 -104.4c0 0 19.0996 74.9004 103 40.5996c0 0 -17.7002 -74 -88 -56c0 0 14.5996 54.6006 66.0996 56.6006c0 0 -39.8994 10.2998 -82.0996 -48.7998c0 0 -19.7998 94.5 -93.5996 99.6992c0 0 75.1992 -19.3994 77.5996 -107.5
-c0 -0.0996094 -106.4 -7 -104 119.801zM400 124.3c0 -48.5 -9.7002 -95.2998 -32 -132.3c-42.2002 -30.9004 -105 -48 -168 -48c-62.9004 0 -125.8 17.0996 -168 48c-22.2998 37 -32 83.7998 -32 132.3c0 48.4004 17.7002 94.7002 40 131.7
-c42.2002 30.9004 97.0996 48.5996 160 48.5996c63 0 117.8 -17.5996 160 -48.5996c22.2998 -37 40 -83.2998 40 -131.7zM120 20c0 15.5 -12.5 28 -28 28s-28 -12.5 -28 -28s12.5 -28 28 -28s28 12.5 28 28zM120 86.2002c0 15.5 -12.5 28 -28 28s-28 -12.5 -28 -28
-s12.5 -28 28 -28s28 12.5 28 28zM120 152.4c0 15.5 -12.5 28 -28 28s-28 -12.5 -28 -28s12.5 -28 28 -28s28 12.5 28 28zM192 20c0 15.5 -12.5 28 -28 28s-28 -12.5 -28 -28s12.5 -28 28 -28s28 12.5 28 28zM192 86.2002c0 15.5 -12.5 28 -28 28s-28 -12.5 -28 -28
-s12.5 -28 28 -28s28 12.5 28 28zM192 152.4c0 15.5 -12.5 28 -28 28s-28 -12.5 -28 -28s12.5 -28 28 -28s28 12.5 28 28zM264 20c0 15.5 -12.5 28 -28 28s-28 -12.5 -28 -28s12.5 -28 28 -28s28 12.5 28 28zM264 86.2002c0 15.5 -12.5 28 -28 28s-28 -12.5 -28 -28
-s12.5 -28 28 -28s28 12.5 28 28zM264 152.4c0 15.5 -12.5 28 -28 28s-28 -12.5 -28 -28s12.5 -28 28 -28s28 12.5 28 28zM336 20c0 15.5 -12.5 28 -28 28s-28 -12.5 -28 -28s12.5 -28 28 -28s28 12.5 28 28zM336 86.2002c0 15.5 -12.5 28 -28 28s-28 -12.5 -28 -28
-s12.5 -28 28 -28s28 12.5 28 28zM336 152.4c0 15.5 -12.5 28 -28 28s-28 -12.5 -28 -28s12.5 -28 28 -28s28 12.5 28 28zM360 192c-4.7998 22.2998 -7.40039 36.9004 -16 56c-38.7998 19.9004 -90.5 32 -144 32s-105.2 -12.0996 -144 -32
-c-8.7998 -19.5 -11.2002 -33.9004 -16 -56c42.2002 7.90039 98.7002 14.7998 160 14.7998s117.8 -6.89941 160 -14.7998z" />
-    <glyph glyph-name="page4" unicode="&#xf3d7;" horiz-adv-x="496" 
-d="M248 -56c-137 0 -248 111 -248 248s111 248 248 248c20.9004 0 41.2998 -2.59961 60.7002 -7.5l-266.4 -376.5h205.7v-112zM248 87.5996h-149.4l149.4 213.601v-213.601zM344 56h111.4c-26.9004 -41 -65.7002 -73.5 -111.4 -92.7002v92.7002zM401.4 194.2v-16.7002
-l-21.2002 8.2998zM381.1 139.7c5.90039 0 8.2002 -4.7002 8.2002 -10.6006v-10h-16.2002v7.7002c0 6.60059 1.30078 12.9004 8 12.9004zM496 192c0 -37.2998 -8.2002 -72.7002 -23 -104.4h-129v333.101c89.2998 -37.5 152 -125.8 152 -228.7zM360.4 304.4h68.1992v47.5996
-h-13.8994v-32.5996h-13.9004v29.5996h-13.8994v-29.5996h-12.7002v32.5996h-13.9004v-47.5996h0.100586zM428.5 119.1h-26.5v11c0 15.4004 -5.59961 25.2002 -20.9004 25.2002c-15.3994 0 -20.6992 -10.5996 -20.6992 -25.8994v-25.3008h68.1992v15h-0.0996094zM428.5 222.1
-l-68.2002 -29.6992v-12.4004l68.2002 -29.5v16.5996l-14.4004 5.7002v26.5l14.4004 5.90039v16.8994zM423.7 290.6h-35.6006v-26.5996h13.9004v12.2002h11c8.59961 -15.7998 1.2998 -35.2998 -18.5996 -35.2998c-22.5 0 -28.3008 25.2998 -15.5 37.6992l-11.6006 10.6006
-c-16.2002 -17.5 -12.2002 -63.9004 27.1006 -63.9004c34 0 44.6992 35.9004 29.2998 65.2998z" />
-    <glyph glyph-name="palfed" unicode="&#xf3d8;" horiz-adv-x="576" 
-d="M384.9 254.1c0.0996094 -53.3994 -46.5 -96.1992 -83.3008 -96.1992c-12.5 0 -14.3994 3.39941 -15.0996 6.19922c0.5 39.1006 1.7002 80.4004 3 119.801c40.2002 14.3994 95.4004 17.5996 95.4004 -29.8008zM190.4 181.9
-c-0.200195 0.599609 -0.400391 2.09961 -0.600586 4.59961c0 25.5996 37 60.9004 58.5 75.9004c-1.2002 -36.4004 -5.5 -198.101 -1.39941 -242.5c3 -32.3008 26.7998 -32.9004 36.3994 -22.3008c5.90039 6.60059 5.5 15.7002 5.2998 19.1006v0.200195
-c-1.7998 25.5996 -2.7998 60.5996 -2.69922 100c60.7998 -14.4004 140.1 60.2998 140.1 138.199c0 71 -63 94.2002 -135.2 72c-2.89941 14.6006 -18.2998 20.1006 -29.5 11.1006c-7.5 -6.2002 -9.5 -15.7998 -10.5 -28.2002c-57.7998 -30.9004 -100.7 -84.5 -100.7 -126.5
-c0 -24.9004 15.6006 -43 37.1006 -43c35.0996 0 41 44.0996 14.3994 44.0996c-4.69922 0 -11 -2.69922 -11.1992 -2.69922zM8 266.9c0 38.5996 38.4004 37.3994 38.4004 37.3994h29c15.5 70.1006 120.5 74.2998 120.5 74.2998h28.0996v19.1006
-c0 18.3994 21.0996 18.3994 21.0996 18.3994h85.8008c18.3994 0 21.0996 -18.3994 21.0996 -18.3994v-19.1006h28c89.2002 0 112.1 -48.6992 119.4 -74.2998h30.0996c38.5 0 38.4004 -37.3994 38.4004 -37.3994c0 -38.6006 -38.4004 -37.4004 -38.4004 -37.4004h-30
-l-22.4004 -217.2c0 -43.8994 -44.6992 -44.2998 -44.6992 -44.2998h-288.9c-44.7002 0 -44.7002 44.2998 -44.7002 44.2998l-22.3994 217.2h-30c-38.5 0 -38.4004 37.4004 -38.4004 37.4004z" />
-    <glyph glyph-name="patreon" unicode="&#xf3d9;" horiz-adv-x="512" 
-d="M512 253.2c0 -101.3 -82.4004 -183.8 -183.8 -183.8c-101.7 0 -184.4 82.3994 -184.4 183.8c0 101.6 82.7002 184.3 184.4 184.3c101.399 0 183.8 -82.7002 183.8 -184.3zM0 -53.5v491h90v-491h-90z" />
-    <glyph glyph-name="periscope" unicode="&#xf3da;" 
-d="M370 384.4c38.4004 -40.7002 59.5 -94.3008 59.5 -150.801c0 -74.2998 -57.4004 -159.5 -82 -192.6c-8 -10.7998 -79.2998 -105 -120.9 -105c-34 0 -88.7998 56.5 -125.399 104.9c-24.9004 32.8994 -82.7002 117.6 -82.7002 192.699c0 118.2 93.4004 214.4 208.1 214.4
-c53.9004 0 104.801 -22.5996 143.4 -63.5996zM226.6 -45.9004c37.3008 0 184.801 167.301 184.7 279.4c0 107.3 -83.8994 196.3 -184.7 196.3c-106.1 0 -190 -88.8994 -190 -196.3c0 -112.1 147.5 -279.4 190 -279.4zM338 241.2c0 -59.1006 -51.0996 -109.7 -110.8 -109.7
-c-100.601 0 -150.7 108.2 -92.9004 181.8v-0.399414c0 -24.5 20.1006 -44.4004 44.7998 -44.4004c24.7002 0 44.8008 19.9004 44.8008 44.4004c0 18.1992 -11.1006 33.7998 -26.9004 40.6992c76.5996 19.2002 141 -39.2998 141 -112.399z" />
-    <glyph glyph-name="phabricator" unicode="&#xf3db;" horiz-adv-x="496" 
-d="M323 185.9c0 0 21.5996 -19.6006 20.9004 -20.7002l-8.10059 -19.7998c-0.5 -1.40039 -29.7002 -0.5 -29.7002 -0.5l-9.09961 -9.10059s1.59961 -31.5 0.200195 -32.0996l-20 -7.5c-1.2998 -0.5 -21.7998 23.2998 -21.7998 23.2998l-13.1006 0.200195
-s-19.2998 -24.1006 -20.7002 -23.5l-20.0996 8.2998c-1.40039 0.5 -1.2002 32.2998 -1.2002 32.2998l-9.39941 9.2998s-28.9004 -0.899414 -29.5 0.5l-9.5 20c-0.600586 1.40039 21.0996 21.2002 21.0996 21.2002l-0.0996094 12.9004s-21.6006 19.5996 -21 21
-l8.09961 19.7998c0.5 1.2998 29.7002 0.400391 29.7002 0.400391l9.09961 9.09961s-1.59961 28.4004 -0.200195 28.9004l20 8.2998c1.40039 0.599609 21.9004 -20.7998 21.9004 -20.7998l13.0996 -0.200195s19.3008 21.5996 20.7002 21l20.1006 -9.2002
-c1.39941 -0.599609 1.19922 -29.0996 1.19922 -29.0996l9.40039 -9.30078s28.9004 0.900391 29.5 -0.5l9.5 -20c0.599609 -1.39941 -21.0996 -21.1992 -21.0996 -21.1992zM278.1 194.6c-0.699219 17 -15.5 30.3008 -32.7998 29.5
-c-17.2998 -0.699219 -30.7998 -15.1992 -30.0996 -32.2998c0.700195 -17.0996 15.5 -30.3994 32.7998 -29.5996s30.7998 15.2998 30.0996 32.3994zM479.3 232.5c22.2998 -22.2998 22.2998 -58.7002 0 -81c-67.3994 -67.4004 -44.2998 -44.4004 -95.2998 -95.2998
-c-74.4004 -74.5 -194.7 -74.9004 -269.8 -1.60059l-0.100586 -0.0996094c-51 51 -27.5 27.5996 -97.3994 97c-22.2998 22.2998 -22.2998 58.7002 0 81c67.8994 67.4004 44.7998 44.2998 95.7002 95.2998c74.3994 74.4004 194.699 74.9004 269.8 1.60059l0.0996094 0.0996094
-zM140.4 84.2002c59.5996 -59.5 156 -59.6006 215.6 -0.100586c59.5996 59.6006 59.5 156.101 0 215.601c-59.5996 59.5 -156.1 59.5996 -215.6 0c-59.6006 -59.5 -59.6006 -156 0 -215.5z" />
-    <glyph glyph-name="phoenix-framework" unicode="&#xf3dc;" horiz-adv-x="640" 
-d="M212.9 103.7c-36.7002 -1.2002 -108.7 29.2998 -127.7 106.399c-8.7002 35.3008 -2.7002 51.8008 -8 86.1006c-8.2002 53.3994 -32.1006 72.2002 -55.9004 76.5c-6.2002 1.09961 -12.3994 1.2998 -18.7002 0.299805
-c-0.799805 -0.0996094 -1.59961 -0.200195 -2.39941 -0.200195c-0.100586 0.200195 -0.100586 0.299805 -0.200195 0.5c0.700195 0.600586 1.40039 1.2002 2.2002 1.7998c36.8994 26.9004 92 38.4004 136.3 35c123.6 -9.5 141.3 -156.6 252.5 -173.1
-c6.09961 -0.900391 12.2998 -1.09961 18.5 -1.7002c0.700195 -0.0996094 1.40039 -0.0996094 2.5 -0.200195c-2.09961 -2.19922 -21.5996 -11.7998 -36.5 -14.5c-18.4004 -3.39941 -35.7002 -0.0996094 -51.2998 10.3008c-14.5 9.7998 -24.5 23.5 -38.9004 27.3994
-c-13 3.60059 -34.0996 1.7002 -35.8994 -19.5996c-1.30078 -15.9004 14.1992 -51.7998 51.7998 -74.6006c40.3994 -24.5 101.399 -26.8994 134.7 -14.7998c0.299805 0.100586 0.699219 0.200195 1.09961 0.299805c0.200195 0.100586 0.400391 0 1 -0.0996094
-c-23.5996 -28.4004 -71.2002 -49.9004 -108.2 -45.4004c-50.3994 6.2002 -77.7002 75.9004 -113.7 97.5c-19.0996 11.5 -49.0996 7 -52 -18.5c-1.09961 -10 2.10059 -19 6.40039 -27.5996c24.4004 -48.5996 65.5996 -47 68 -49.5996
-c-2.7998 -0.800781 -21.7998 -2.10059 -25.5996 -2.2002zM75.2998 383.1c13.1006 -14.5 34.2002 -7.89941 35.2998 6.80078c-12.3994 -0.700195 -24.5 -2.2002 -36.5996 -4.80078c0.400391 -0.799805 0.400391 -1 1.2998 -2zM272.2 32.5996
-c-42.7998 -1.19922 -92 26.7002 -123.5 61.4004c-4.60059 5 -16.7998 20.2002 -18.6006 23.4004l0.400391 0.399414c6.59961 -4.09961 25.7002 -18.5996 54.7998 -27c24.2002 -7 48.1006 -6.2998 71.6006 3.2998c22.6992 9.30078 41 0.5 43.0996 -2.89941
-c-18.5 -3.7998 -20.0996 -4.40039 -24 -7.90039c-5.09961 -4.39941 -4.59961 -11.7002 7 -17.2002c26.2002 -12.3994 63 2.80078 97.2002 -25.3994c2.39941 -2 8.09961 -7.7998 10.0996 -10.7002c-0.0996094 -0.200195 -0.299805 -0.299805 -0.399414 -0.5
-c-4.80078 1.5 -16.4004 7.5 -40.2002 9.2998c-24.7002 2 -46.2998 -5.2998 -77.5 -6.2002zM447 284.6c16.4004 5.2002 41.2998 13.4004 66.5 3.30078c16.0996 -6.5 26.2002 -18.7002 32.0996 -34.6006c3.5 -9.39941 5.10059 -19.7002 5.10059 -28.7002
-c-0.200195 0 -0.400391 0 -0.600586 -0.0996094c-0.199219 0.400391 -0.399414 0.900391 -0.5 1.2998c-5 22 -29.8994 43.7998 -67.5996 29.9004c-50.2002 -18.6006 -130.4 -9.7002 -176.9 48c-0.699219 0.899414 -2.39941 1.7002 -1.2998 3.2002
-c0.100586 0.199219 2.10059 -0.600586 3 -1.30078c18.1006 -13.3994 38.2998 -21.8994 60.2998 -26.1992c30.5 -6.10059 54.6006 -2.90039 79.9004 5.19922zM549.7 167.1c-32.4004 -0.199219 -33.7998 -50.0996 -103.601 -64.3994
-c-18.1992 -3.7002 -38.6992 -4.60059 -44.8994 -4.2002v0.400391c2.7998 1.5 14.7002 2.59961 29.7002 16.5996c7.89941 7.2998 15.2998 15.0996 22.7998 22.9004c19.5 20.1992 41.3994 42.1992 81.8994 39c23.1006 -1.80078 29.3008 -8.2002 36.1006 -12.7002
-c0.299805 -0.200195 0.399414 -0.5 0.700195 -0.900391c-0.5 0 -0.700195 -0.0996094 -0.900391 0c-7 2.7002 -14.2998 3.2998 -21.7998 3.2998zM537.4 191.2c-0.100586 -0.200195 -0.100586 -0.400391 -0.200195 -0.600586c-28.9004 4.40039 -48 7.90039 -68.5 -4
-c-17 -9.89941 -31.4004 -20.5 -62 -24.3994c-27.1006 -3.40039 -45.1006 -2.40039 -66.1006 8c-0.299805 0.200195 -0.599609 0.399414 -1 0.599609c0 0.200195 0.100586 0.299805 0.100586 0.5c24.8994 -3.7998 36.3994 -5.09961 55.5 5.7998
-c22.2998 12.9004 40.0996 26.6006 71.2998 31c29.5996 4.10059 51.2998 -2.5 70.9004 -16.8994zM268.6 350.7c-0.599609 0.599609 -1.09961 1.2002 -2.09961 2.2998c7.59961 0 29.7002 1.2002 53.4004 -8.40039c19.6992 -8 32.1992 -21 50.1992 -32.8994
-c11.1006 -7.2998 23.4004 -9.2998 36.4004 -8.10059c4.2998 0.400391 8.5 1.2002 12.7998 1.7002c0.400391 0.100586 0.900391 0 1.5 -0.299805c-0.599609 -0.400391 -1.2002 -0.900391 -1.7998 -1.2002c-8.09961 -4 -16.7002 -6.2998 -25.5996 -7.09961
-c-26.1006 -2.60059 -50.3008 3.7002 -73.4004 15.3994c-19.2998 9.90039 -36.4004 22.9004 -51.4004 38.6006zM640 112.3c-3.5 -3.09961 -22.7002 -11.5996 -42.7002 -5.2998c-12.2998 3.90039 -19.5 14.9004 -31.5996 24.0996
-c-10 7.60059 -20.9004 7.90039 -28.1006 8.40039c0.600586 0.799805 0.900391 1.2002 1.2002 1.40039c14.7998 9.19922 30.5 12.1992 47.2998 6.5c12.5 -4.2002 19.2002 -13.5 30.4004 -24.2002c10.7998 -10.4004 21 -9.90039 23.0996 -10.5
-c0.100586 0.0996094 0.200195 0 0.400391 -0.400391zM427.5 -24.7002c2.2002 -1.2002 1.59961 -1.5 1.5 -2c-18.5 1.40039 -33.9004 7.60059 -46.7998 22.2002c-21.7998 24.7002 -41.7002 27.9004 -48.6006 29.7002c0.5 0.200195 0.800781 0.399414 1.10059 0.399414
-c13.0996 -0.0996094 26.0996 -0.699219 38.8994 -3.89941c25.3008 -6.40039 35 -25.4004 41.6006 -35.2998c3.2002 -4.80078 7.2998 -8.30078 12.2998 -11.1006z" />
-    <glyph glyph-name="playstation" unicode="&#xf3df;" horiz-adv-x="576" 
-d="M570.9 75.7002c-11.3008 -14.2002 -38.8008 -24.2998 -38.8008 -24.2998l-205.1 -73.6006v54.2998l150.9 53.8008c17.0996 6.09961 19.7998 14.7998 5.7998 19.3994c-13.9004 4.60059 -39.1006 3.2998 -56.2002 -2.89941l-100.5 -35.5v56.3994
-c23.2002 7.7998 47.0996 13.6006 75.7002 16.7998c40.8994 4.5 90.8994 -0.599609 130.2 -15.5c44.1992 -14 49.1992 -34.6992 38 -48.8994zM346.5 168.2v139c0 16.2998 -3 31.2998 -18.2998 35.5996c-11.7002 3.7998 -19 -7.09961 -19 -23.3994v-347.9l-93.7998 29.7998
-v414.7c39.8994 -7.40039 98 -24.9004 129.199 -35.4004c79.5 -27.2998 106.4 -61.2998 106.4 -137.8c0 -74.5 -46 -102.8 -104.5 -74.5996zM43.2002 37.7998c-45.4004 12.7998 -53 39.5 -32.2998 54.7998c19.0996 14.2002 51.6992 24.9004 51.6992 24.9004l134.5 47.7998
-v-54.5l-96.7998 -34.5996c-17.0996 -6.10059 -19.7002 -14.7998 -5.7998 -19.4004c13.9004 -4.59961 39.0996 -3.2998 56.2002 2.90039l46.3994 16.8994v-48.7998c-51.5996 -9.2998 -101.399 -7.2998 -153.899 10z" />
-    <glyph glyph-name="pushed" unicode="&#xf3e1;" horiz-adv-x="432" 
-d="M407 336.1c21.7002 -1.89941 33.7998 -28 17.4004 -44.7998l-235.2 -231.3l-35.2998 -80.7998c-11 -17.2002 -41.2002 -14.2998 -47.7002 7l-105.101 348.3c-4.59961 18.2998 6.30078 33.9004 21.4004 36.5996l271.3 44.4004c17.9004 3.40039 39.1006 -13.5 28.7002 -37
-l-14 -33.4004zM297.6 394.4l-189 -31l177.4 -16.3008l16.7998 39.9004c2.2998 4.90039 -0.0996094 8.09961 -5.2002 7.40039zM22.7002 340.1l157.899 -244.3l96.9004 230.7l-248.7 22.7002c-5.09961 0.899414 -9.2002 -4 -6.09961 -9.10059zM136 -8.40039
-c0 0 28.2002 64.1006 35.2002 79.1006l-127.7 197.6l83.0996 -275.5c1.5 -4.2998 6.80078 -5.2002 9.40039 -1.2002zM408.8 306.1c3.10059 3.30078 1.40039 7.5 -2.59961 8.60059l-106.4 9.7002l-89.7002 -213.7z" />
-    <glyph glyph-name="python" unicode="&#xf3e2;" 
-d="M439.8 247.5c10.7002 -42.9004 11.2002 -75.0996 0 -108.6c-10.7998 -32.5 -22.2998 -54.2002 -53.3994 -54.2002h-160.2v-13.6006h106.7v-40.6992c0 -30.8008 -26.5 -46.5 -53.4004 -54.3008c-40.5 -11.6992 -73 -9.89941 -106.8 0
-c-28.2002 8.30078 -53.4004 25.3008 -53.4004 54.3008v101.8c0 29.2998 24.2002 54.2998 53.4004 54.2998h106.8c35.5996 0 66.7998 31 66.7998 67.7998v47.4004h40.1006c31.0996 0 45.6992 -23.2998 53.3994 -54.2002zM286.2 44c-11 0 -20 -9 -20.1006 -20.2998
-c0 -11.2002 9.10059 -20.4004 20.1006 -20.4004c11.0996 0 20.0996 9.10059 20.0996 20.4004c0 11.2002 -9 20.2998 -20.0996 20.2998zM167.8 199.9c-36.2998 0 -66.7998 -31.1006 -66.7998 -66.4004v-48.7998h-36.7002c-31.0996 0 -49.2002 22.5996 -56.7998 54.2002
-c-10.2002 42.5 -9.7998 67.8994 0 108.6c8.5 35.5 35.7002 54.2002 66.7998 54.2002h147v13.5996h-106.899v40.7002c0 30.9004 8.19922 47.5996 53.3994 55.5996c32.1006 5.7002 71 6 106.8 0.100586c29 -4.90039 53.4004 -26.6006 53.4004 -55.6006v-101.899
-c0 -29.7998 -23.7002 -54.2998 -53.4004 -54.2998h-106.8zM161.1 342.5c11.1006 0 20.1006 9.09961 20.1006 20.2998s-9.10059 20.4004 -20.1006 20.4004c-11.0996 0 -20 -9.10059 -20.0996 -20.4004c0 -11.2002 9 -20.2998 20.0996 -20.2998z" />
-    <glyph glyph-name="red-river" unicode="&#xf3e3;" 
-d="M353.2 416c52.3994 0 94.7998 -42.4004 94.7998 -94.7998v-258.4c0 -52.3994 -42.4004 -94.7998 -94.7998 -94.7998h-258.4c-52.3994 0 -94.7998 42.4004 -94.7998 94.7998v258.4c0 52.3994 42.4004 94.7998 94.7998 94.7998h258.4zM144.9 247.1
-c-0.600586 12.4004 11.6992 24.6006 24 24h56.2998c27 0 48.8994 21.9004 48.8994 48.9004h-154.199c-13.2002 0 -23.9004 -10.7002 -23.9004 -23.9004v-154.199c27 0 48.9004 21.8994 48.9004 48.8994v56.2998zM321.2 175.1c27 0 48.8994 21.9004 48.8994 48.9004h-154.199
-c-13.2002 0 -23.9004 -10.7002 -23.9004 -23.9004v-154.199c27 0 48.9004 21.8994 48.9004 48.8994v56.2998c-0.600586 12.4004 11.6992 24.6006 24 24h56.2998z" />
-    <glyph glyph-name="wpressr" unicode="&#xf3e4;" horiz-adv-x="496" 
-d="M248 440c136.97 0 248 -111.03 248 -248s-111.03 -248 -248 -248s-248 111.03 -248 248s111.03 248 248 248zM419.33 281.4c2.41016 5.47949 0.459961 8.2793 -5.62012 8.26953c-104.8 0.00976562 -107.69 -0.0302734 -130.78 0.0302734
-c-4.31934 0.00976562 -7.10938 -1.82031 -8.83984 -5.78027c-5.70996 -13.0996 -11.5195 -26.1504 -17.2998 -39.21c-2.57031 -5.7998 -1 -8.26953 5.26953 -8.26953c25.2607 0 50.5205 -0.0107422 75.7803 0.0195312
-c10.0303 0.00976562 8.54004 -13.6602 -3.89941 -13.6396c-26.4307 0.0498047 -52.8604 0 -79.29 0.0498047c-4.91016 0.00976562 -8.33008 -1.88965 -10.3506 -6.5c-4.2998 -9.83008 -32.1494 -73.0801 -32.1895 -73.1602
-c-3.2002 -7.16016 -16.2607 -6.09961 -11.2803 5.33008c8.26953 18.9902 16.6504 37.9297 24.9795 56.8896c2.25 5.11035 -0.0996094 8.74023 -5.65918 8.75c-15.21 0.0205078 -30.4307 -0.0400391 -45.6406 0.0400391
-c-3.35938 0.0107422 -5.41016 -1.29004 -6.76953 -4.38965c-31.4307 -71.8701 -29.7803 -67.3203 -30.0098 -67.6904c-3.87012 -6.37012 -14.8604 -3.34961 -10.9502 5.60059c5.66992 13.0098 11.3701 26.0098 17.0898 39c13.5703 30.7793 27.1396 61.5596 40.7402 92.3301
-c2.54004 5.75 -0.419922 10.5801 -6.66016 10.5898c-14.2402 0.0302734 -28.4805 -0.0498047 -42.7197 0.0498047c-4.26074 0.0302734 -6.84082 -1.76953 -8.54004 -5.65039c-12.8604 -29.3896 -25.8203 -58.7295 -38.75 -88.0791
-c-8.62012 -19.5605 -17.2305 -39.1201 -25.8906 -58.6602c-1.58008 -3.55078 -1.47949 -6.78027 1.20996 -9.73047c11.2207 -12.3096 22.4707 -24.6094 33.6807 -36.9395c2.08984 -2.30078 4.58984 -3.4502 7.71973 -3.4502c45.9395 0.0195312 91.8701 0.00976562 137.81 0
-c3.86035 0 6.37988 1.78027 7.91992 5.29004c10.3203 23.5 20.7607 46.9395 30.9502 70.5c2.08984 4.83008 5.21973 6.75 10.3398 6.71973c23.0205 -0.110352 46.0303 -0.0400391 69.0508 -0.0498047c6.0791 0 10.5293 2.72949 12.9697 8.24023
-c15.2598 34.4795 30.4502 68.9893 45.6299 103.5z" />
-    <glyph glyph-name="replyd" unicode="&#xf3e6;" 
-d="M320 -32h-192c-70.4004 0 -128 57.5996 -128 128v192c0 70.4004 57.5996 128 128 128h192c70.4004 0 128 -57.5996 128 -128v-192c0 -70.4004 -57.5996 -128 -128 -128zM193.4 174.8c-6.10059 2 -11.6006 3.10059 -16.4004 3.10059
-c-7.2002 0 -13.5 -1.90039 -18.9004 -5.60059c-5.39941 -3.7002 -9.59961 -9 -12.7998 -15.7998h-1.09961l-4.2002 18.2998h-28v-138.899h36.0996v89.6992c1.5 5.40039 4.40039 9.80078 8.7002 13.2002c4.2998 3.40039 9.7998 5.10059 16.2002 5.10059
-c4.59961 0 9.7998 -1 15.5996 -3.10059zM308.6 71.4004c-3.19922 -2.40039 -7.69922 -4.80078 -13.6992 -7.10059s-12.8008 -3.5 -20.4004 -3.5c-12.2002 0 -21.0996 3 -26.5 8.90039c-5.5 5.89941 -8.5 14.7002 -9 26.3994h83.2998
-c0.900391 4.80078 1.60059 9.40039 2.10059 13.9004c0.5 4.40039 0.699219 8.59961 0.699219 12.5c0 10.7002 -1.59961 19.7002 -4.69922 26.9004c-3.2002 7.19922 -7.30078 13 -12.5 17.1992c-5.2002 4.30078 -11.1006 7.30078 -17.8008 9.2002
-c-6.69922 1.7998 -13.5 2.7998 -20.5996 2.7998c-21.0996 0 -37.5 -6.09961 -49.2002 -18.2998s-17.5 -30.5 -17.5 -55c0 -22.7998 5.2002 -40.7002 15.6006 -53.7002c10.3994 -13.0996 26.7998 -19.5996 49.1992 -19.5996c10.7002 0 20.9004 1.5 30.4004 4.59961
-c9.5 3.10059 17.0996 6.80078 22.5996 11.2002zM286.8 141.7c3.7998 -5.40039 5.2998 -13.1006 4.60059 -23.1006h-51.7002c0.899414 9.40039 3.7002 17 8.2002 22.6006c4.5 5.59961 11.5 8.5 21 8.5c8.19922 0.0996094 14.0996 -2.60059 17.8994 -8zM366.7 139.2
-c4.09961 -3.90039 9.39941 -5.7998 16.0996 -5.7998c7 0 12.6006 1.89941 16.7002 5.7998c4.09961 3.89941 6.09961 9.09961 6.09961 15.5996s-2 11.6006 -6.09961 15.4004s-9.59961 5.7002 -16.7002 5.7002c-6.7002 0 -12 -1.90039 -16.0996 -5.7002
-c-4.10059 -3.7998 -6.10059 -8.90039 -6.10059 -15.4004s2 -11.7002 6.10059 -15.5996zM366.7 38.7002c4.09961 -3.90039 9.39941 -5.7998 16.0996 -5.7998c7 0 12.6006 1.89941 16.7002 5.7998c4.09961 3.89941 6.09961 9.09961 6.09961 15.5996
-s-2 11.6006 -6.09961 15.4004s-9.59961 5.7002 -16.7002 5.7002c-6.7002 0 -12 -1.90039 -16.0996 -5.7002c-4.10059 -3.7998 -6.10059 -8.90039 -6.10059 -15.4004c0 -6.59961 2 -11.7002 6.10059 -15.5996z" />
-    <glyph glyph-name="resolving" unicode="&#xf3e7;" horiz-adv-x="496" 
-d="M281.2 169.8l-197.9 -57.2002l-28.5996 98.6006l188.2 54.0996c52.6992 15.2998 65 8.10059 71.0996 -12.7998l11.2002 -39.2998c5.59961 -19.9004 2 -30.1006 -44 -43.4004zM248.5 440c137 0 248.5 -111.4 247.5 -247.7c0 -136.899 -111.5 -248.3 -248.5 -248.3
-c-46 0 -89.5 12.7002 -126.3 34.7002l-23 80.2002l286.8 -37.3008l48.0996 13.3008l-9.69922 34.1992l-220.4 27.1006l92.5996 26.5996c30.2002 8.7002 42 15.7998 61.4004 33.2002c24.5 23 31.7002 45.5 23.5 73.5996l-10.7002 37.8008
-c-8.7002 30.1992 -25.0996 49.0996 -61.3994 55.1992c-25.1006 3.5 -44.5 2 -79.3008 -8.19922l-221.899 -63.9004c26 108.8 124.2 189.5 241.3 189.5zM38.2998 59.4004c-24 38.3994 -38.2998 83.2998 -38.2998 131.8z" />
-    <glyph glyph-name="rocketchat" unicode="&#xf3e8;" horiz-adv-x="576" 
-d="M284.046 223.2c0.0341797 0 0.0664062 -0.00195312 0.100586 -0.00195312c18.8496 0 34.1592 -15.2754 34.2168 -34.1113c0 -18.8281 -15.2822 -34.1143 -34.1104 -34.1143s-34.1143 15.2861 -34.1143 34.1143c0 18.7588 15.1748 34.002 33.9072 34.1133zM173.596 223.2
-c0.0332031 0 0.0673828 -0.00195312 0.100586 -0.00195312c18.8496 0 34.1592 -15.2754 34.2168 -34.1113c0 -18.8281 -15.2822 -34.1143 -34.1104 -34.1143s-34.1143 15.2861 -34.1143 34.1143c0 18.7588 15.1748 34.002 33.9072 34.1133zM394.519 223.2
-c0.0351562 0 0.0683594 -0.00195312 0.102539 -0.00195312c18.8496 0 34.1592 -15.2754 34.2148 -34.1113c0 -18.8281 -15.2822 -34.1143 -34.1104 -34.1143s-34.1133 15.2861 -34.1133 34.1143c0 18.7588 15.1738 34.002 33.9062 34.1133zM548.326 278.519
-c17.3076 -26.9443 26.0674 -55.9189 26.0898 -86.9395c0 -30.209 -8.76074 -59.2021 -26.0703 -86.125c-15.5342 -24.1934 -37.3076 -45.5703 -64.6787 -63.6191c-52.8672 -34.8164 -122.354 -53.9746 -195.667 -53.9746
-c-0.150391 -0.000976562 0.0664062 -0.00585938 -0.0830078 -0.00585938c-24.5488 0 -48.5908 2.18359 -71.9443 6.36621c-14.8564 -14.2842 -31.3604 -26.5059 -49.5098 -36.5889c-66.7744 -33.3467 -125.6 -20.9092 -155.324 -10.2002
-c-5.54492 1.96289 -9.51758 7.25488 -9.51758 13.4697c0 3.82715 1.50879 7.30469 3.96289 9.87109c20.9619 21.6748 55.6416 64.5342 47.1162 103.49c-33.1426 33.9004 -51.1123 74.7764 -51.1123 118.148c0 42.5605 17.9697 83.4365 51.1123 117.337
-c8.52148 38.9521 -26.1582 81.7939 -47.1201 103.47c-2.45996 2.56738 -3.97656 6.0498 -3.97656 9.88281c0 6.21973 3.98047 11.5156 9.53125 13.4785c29.7246 10.71 88.5488 23.1211 155.302 -10.2109c18.1504 -10.0811 34.6553 -22.3027 49.5107 -36.5879
-c23.3457 4.18066 47.0137 6.35742 71.5547 6.35742c0.15918 0 0.318359 -0.000976562 0.476562 -0.000976562c73.293 0 142.78 -19.1826 195.666 -54c27.3711 -18.0479 49.1465 -39.4453 64.6816 -63.6182zM284.987 38.0996c128.612 0 232.866 67.376 232.866 150.487
-c0 83.0957 -104.274 150.469 -232.866 150.469c-128.593 0 -232.847 -67.3691 -232.847 -150.469c0 -36.2002 19.7861 -69.4375 52.7783 -95.4004c9.28809 -29.5986 3.84668 -62.958 -16.3252 -100.078c-0.960938 -1.79297 -1.8584 -3.58496 -2.8418 -5.35645
-c18.6367 1.63574 36.5557 6.875 52.5225 14.8701c13.5889 7.65625 25.9609 16.8633 37.1377 27.585l20.1289 19.3926c28.2617 -7.47852 57.8037 -11.501 88.4033 -11.501c0.347656 0 0.695312 0 1.04297 0.000976562z" />
-    <glyph glyph-name="rockrms" unicode="&#xf3e9;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM405.4 20.5l-101.5 118.9s73.5996 0.199219 74.1992 0.199219c29.6006 -1.09961 46.6006 33.3008 27.6006 56.1006l-157.7 185.1c-13.2002 17.2998 -40.0996 18.4004 -54.5 0
-l-147.1 -172.5h90l84.2998 98.9004l84.5996 -99.2998h-75.2998c-30.5 0 -44.5 -35.7002 -26.5996 -56.1006l112 -131.3h90z" />
-    <glyph glyph-name="schlix" unicode="&#xf3ea;" 
-d="M350.5 290.3l-54.2002 46.1006l73.4004 39l78.2998 -44.2002zM192 325.9l45.7002 28.1992l34.7002 -34.5996l-55.4004 -29zM126.9 319.3l31.8994 22.1006l17.2002 -28.4004l-36.7002 -22.5zM103.6 231.1l-8.7998 34.8008l29.6006 18.2998l13.0996 -35.2998z
-M82.4004 314.8l23.8994 18.1006l8.90039 -24l-26.7002 -18.3008zM59 241.5l-3.59961 28.4004l22.2998 15.5l6.09961 -28.7002zM28.4004 224.9l20.7998 12.7998l3.2998 -33.4004l-22.9004 -12zM1.40039 180l19.1992 10.2002l0.400391 -38.2002l-21 -8.7998zM60.5 120.7
-l-28.2998 -8.2998l-1.60059 46.7998l25.1006 10.7002zM99 184.8l-31.0996 -13l-5.2002 40.7998l27.3994 14.4004zM123.2 71l-41.6006 -5.90039l-8.09961 63.5l35.2002 10.8008zM151.7 210.9l21.2002 -57.1006l-46.2002 -13.5996l-13.7002 54.0996zM237.4 -19.5996
-l-70.9004 3.2998l-24.2998 95.7998l55.2002 8.59961zM152.5 260.1l42.2002 22.4004l28 -45.9004l-50.7998 -21.2998zM193.5 165.2l61.2998 18.7002l52.7998 -86.6006l-79.7998 -11.2998zM244.9 250.8l67.2998 28.7998l65.5 -65.3994l-88.6006 -26.2002z" />
-    <glyph glyph-name="searchengin" unicode="&#xf3eb;" horiz-adv-x="460" 
-d="M220.6 317.7l-67.1992 -209.3v130.3l-54.7002 -24.2002l54.7002 190.3v-115.3zM137.4 414.4l-1.30078 -4.7002l-15.1992 -52.9004c-40.3008 -15.5 -68.9004 -54.5996 -68.9004 -100.3c0 -52.2998 34.2998 -95.9004 83.4004 -105.5v-53.5996
-c-77.9004 10.5 -135.4 78.1992 -135.4 159c0 80.5 59.7998 147.199 137.4 158zM448.8 -32.7998c-11.2002 -11.2002 -23.0996 -12.2998 -28.5996 -10.5c-5.40039 1.7998 -27.1006 19.8994 -60.4004 44.3994c-33.2998 24.6006 -33.5996 35.7002 -43 56.7002
-c-9.39941 20.9004 -30.3994 42.6006 -57.5 52.4004l-9.7002 14.7002c-24.6992 -16.9004 -53 -26.9004 -81.2998 -28.7002l2.10059 6.59961l15.8994 49.5c46.5 11.9004 80.9004 54 80.9004 104.2c0 54.5 -38.4004 102.1 -96 107.1v52.1006
-c83.2002 -5.10059 148.8 -74.5 148.8 -159.3c0 -33.6006 -11.2002 -64.7002 -29 -90.4004l14.5996 -9.59961c9.80078 -27.1006 31.5 -48 52.4004 -57.4004s32.2002 -9.7002 56.7998 -43c24.6006 -33.2002 42.7002 -54.9004 44.5 -60.2998
-c1.7998 -5.40039 0.700195 -17.2998 -10.5 -28.5zM438.9 -14.9004c0 4.40039 -3.60059 8 -8 8c-4.40039 0 -8 -3.59961 -8 -8c0 -4.39941 3.59961 -8 8 -8c4.39941 0 8 3.60059 8 8z" />
-    <glyph glyph-name="servicestack" unicode="&#xf3ec;" horiz-adv-x="496" 
-d="M88 232c81.7002 -10.2002 273.7 -102.3 304 -232h-392c99.5 8.09961 184.5 137 88 232zM120 384c102.8 -15.5 335.3 -167.9 376 -384h-96c-26.2998 126.7 -150.7 216.7 -233.6 250.4c1.2998 49.6992 -14.1006 98 -46.4004 133.6z" />
-    <glyph glyph-name="sistrix" unicode="&#xf3ee;" 
-d="M448 -1l-30.5 -31l-146 148.1c-28.7002 -23.6992 -65.2002 -37.8994 -105 -37.8994c-91.7998 0 -166.5 75.7998 -166.5 168.899c0 93.1006 74.7002 168.9 166.6 168.801c91.8008 0 166.5 -75.8008 166.5 -168.9c0 -37 -11.8994 -71.2998 -31.8994 -99.2002zM166.5 117.2
-c70.7002 0 128.1 58.2998 128.1 129.899c0 71.6006 -57.5 129.9 -128.1 129.9s-128.1 -58.2998 -128.1 -129.9c0 -71.5996 57.5 -129.899 128.1 -129.899z" />
-    <glyph glyph-name="slack-hash" unicode="&#xf3ef;" 
-d="M446.2 177.6c6.2002 -19 -3.90039 -39.6992 -22.9004 -45.6992l-45.3994 -15.1006l15.6992 -47c6.10059 -19.0996 -3.89941 -39.7002 -23 -45.8994c-21.2998 -6.10059 -40.0996 6 -46 22.8994l-15.6992 47l-93.6006 -31.2998l15.7002 -47
-c6.09961 -19.0996 -3.90039 -39.7002 -23 -45.9004c-21.2998 -6.09961 -40.0996 6 -46 22.9004l-15.7002 47c-45.7002 -15.2002 -50.8994 -17.7998 -57.7002 -16.7998c-14.5 0.599609 -28.5996 10.0996 -33.5996 24.5996c-6.09961 19 4 39.7002 23 45.9004l45.4004 15.0996
-l-30.3008 90c-45.6992 -15.2002 -50.8994 -17.7998 -57.6992 -16.7998c-14.5 0.599609 -28.6006 10.0996 -33.6006 24.5996c-6.09961 19.1006 3.90039 39.7002 23 45.9004l45.2998 15l-15.6992 47c-6.10059 19.0996 3.89941 39.7002 23 45.9004
-c19.0996 6.19922 39.7998 -3.90039 46 -22.9004l15.6992 -47l93.4004 31.2002l-15.7002 47c-6.09961 19.0996 3.90039 39.7002 23 45.8994c19.1006 6.2002 39.7998 -3.89941 46 -22.8994l15.7002 -47l45.4004 15.0996c19.0996 6.2002 39.7998 -3.89941 46 -22.8994
-c6.09961 -19.1006 -3.90039 -39.7002 -23 -45.9004l-45.4004 -15.0996l30.2998 -90l45.4004 15.0996c19.0996 6.2002 39.7998 -3.90039 46 -22.9004zM192.1 130.4l93.5 31.2998l-30.2998 90.2002l-93.5 -31.3008z" />
-    <glyph glyph-name="speakap" unicode="&#xf3f3;" 
-d="M64 56.2197c-79.4102 88.1904 -72 224.36 16.6396 304.141c88.6406 79.7793 224.801 73 304.21 -15.2402c79.4102 -88.2402 72 -224.36 -16.6396 -304.14c-18.7402 -16.8701 64 -43.0908 42 -52.2607c-82.0596 -34.21 -253.91 -35 -346.229 67.5h0.0195312z
-M277.31 267.82l38.5 40.8594c-9.60938 8.89062 -32 26.8301 -76.1699 27.6006c-52.3301 0.910156 -95.8594 -28.2998 -96.7695 -80c-0.200195 -11.3301 0.290039 -36.7207 29.4199 -54.8301c34.46 -21.4199 86.5195 -21.5098 86 -52.2598
-c-0.370117 -21.2803 -26.4199 -25.8105 -38.5898 -25.6006c-3 0.0498047 -30.2305 0.459961 -47.6104 24.6201l-40 -42.6104c28.1602 -27 59 -32.6191 83.4902 -33.0498c10.2295 -0.179688 96.4199 -0.330078 97.8398 81
-c0.280273 15.8105 -2.07031 39.7197 -28.8604 56.5898c-34.3594 21.6406 -85 19.4502 -84.4297 49.75c0.410156 23.25 31 25.3701 37.5303 25.2607c0.429688 0 26.6201 -0.260742 39.6201 -17.3701z" />
-    <glyph glyph-name="staylinked" unicode="&#xf3f5;" horiz-adv-x="440" 
-d="M382.7 155.5l44.2998 -41.2998c3.7002 -3.5 3.2998 -9 -0.700195 -12.2002l-198 -163.9c-9.89941 -7.59961 -17.2998 -0.799805 -17.2998 -0.799805l-208.7 196.101c-3.5 3.5 -3 9 1.2002 12.1992l45.7998 34.9004c4.2002 3.2002 10.4004 3 13.9004 -0.5l151.899 -147.5
-c3.7002 -3.5 10 -3.7002 14.2002 -0.400391l93.2002 74c4.09961 3.2002 4.5 8.7002 0.900391 12.2002l-84 81.2998c-3.60059 3.5 -9.90039 3.7002 -14 0.5l-0.100586 -0.0996094c-4.09961 -3.2002 -10.3994 -3 -14 0.5l-68.0996 64.2998
-c-3.5 3.5 -3.10059 9 1.09961 12.2002l57.2998 43.5996c4.10059 3.2002 10.3008 3 13.8008 -0.5l170 -167.3zM437.2 238.9c3.7002 -3.5 3.39941 -9 -0.700195 -12.2002l-45.7998 -35.7998c-4.10059 -3.2002 -10.4004 -3 -14.1006 0.5l-160.399 159
-c-3.60059 3.5 -9.7998 3.69922 -13.9004 0.5l-92.2002 -71.5c-4.19922 -3.30078 -4.69922 -8.7002 -1.09961 -12.2002l94.5996 -91.7998c3.7002 -3.5 10 -3.60059 14.2002 -0.400391l0.100586 0.0996094c4.19922 3.2002 10.5996 3 14.1992 -0.5l57.1006 -54.3994
-c3.7002 -3.5 3.2998 -9 -0.900391 -12.2002l-7.7002 -6l0.300781 -0.299805l-50.2002 -38.7998c-4.2002 -3.30078 -10.6006 -3.10059 -14.2998 0.399414l-171.7 165.101l-42.2998 41.6992c-3.60059 3.5 -3 9 1.19922 12.2002l206.801 162.101
-c8.2998 6.59961 14.7998 2.2998 16.2998 1.09961z" />
-    <glyph glyph-name="steam-symbol" unicode="&#xf3f6;" 
-d="M395.5 270.5c0 -33.7998 -27.5 -61 -61 -61c-33.7998 0 -61 27.2998 -61 61s27.2998 61 61 61c33.5 0 61 -27.2002 61 -61zM448 270.3c0 -63 -51 -113.8 -113.7 -113.8l-109.3 -79.7998c-4 -43 -40.5 -76.7998 -84.5 -76.7998c-40.5 0 -74.7002 28.7998 -83 67
-l-57.5 23.0996v107.3l97.2002 -39.2998c15.0996 9.2002 32.2002 13.2998 52 11.5l71 101.7c0.5 62.2998 51.5 112.8 114 112.8c62.7998 0 113.8 -51 113.8 -113.7zM203 85c0 34.7002 -27.7998 62.5 -62.5 62.5c-4.5 0 -9 -0.5 -13.5 -1.5l26 -10.5
-c25.5 -10.2002 38 -39 27.7002 -64.5c-10.2002 -25.5 -39.2002 -38 -64.7002 -27.5c-10.2002 4 -20.5 8.2998 -30.7002 12.2002c10.5 -19.7002 31.2002 -33.2002 55.2002 -33.2002c34.7002 0 62.5 27.7998 62.5 62.5zM410.5 270.3c0 42 -34.2998 76.2002 -76.2002 76.2002
-c-42.2998 0 -76.5 -34.2002 -76.5 -76.2002c0 -42.2002 34.2998 -76.2002 76.5 -76.2002c41.9004 -0.0996094 76.2002 33.9004 76.2002 76.2002z" />
-    <glyph glyph-name="sticker-mule" unicode="&#xf3f7;" horiz-adv-x="576" 
-d="M561.7 248.4c-1.2998 -0.300781 0.299805 0 0 0zM555.5 325.8c20.2002 -50.0996 20.5996 -45.2002 20.5996 -52.8994c0 -7.5 -4.09961 -11 -7.19922 -16.5c-1.5 -3 -4.60059 -7.5 -7.2002 -8c-0.400391 0 -3 -0.5 -13.4004 -2.5c-7.2002 -1 -13.3994 4.5 -14.8994 9.5
-c-1.60059 4.69922 2.7998 10.0996 -11.8008 22.8994c-10.2998 10 -21.0996 11.2998 -31.8994 17c-9.7998 5.7002 -11.9004 -1 -18 -8c-18 -22.8994 -34 -46.8994 -52 -69.7998c-11.7998 -15 -24.2002 -30.4004 -33.5 -47.4004
-c-3.90039 -6.7998 -9.5 -28.0996 -10.2998 -29.8994c-6.2002 -17.7002 -5.5 -25.7998 -16.5 -68.2998c-3.10059 -10 -5.7002 -21.4004 -8.7002 -32.4004c-2.2002 -6.7998 -7.40039 -49.2998 -0.5 -59.4004c2.09961 -3.5 8.7002 -4.5 11.2998 -8
-c0.0996094 -0.0996094 9.59961 -18.1992 9.2998 -20c0 -6.09961 -9.39941 -5.59961 -11.2998 -6.5c-4.7998 -2.89941 -3.7998 -5.89941 -6.40039 -7.39941c-5.89941 -2.90039 -32.0996 -3.2002 -36.5 0.5c-4.09961 3 -2.19922 11.8994 -1.5 15
-c2.2002 15 -2.5 7.89941 -9.7998 11.5c-3.09961 1.5 -4.09961 5.5 -4.59961 10c-0.5 1.5 -1 2.5 -1.5 3.5c-1.7002 10.7002 6.7998 33.5996 8.2002 43.3994c4.89941 23.7002 -0.700195 37.2002 1.5 46.9004c3.69922 16.2002 4.09961 3.5 4.09961 29.9004
-c-1.40039 25.8994 3.2998 36.8994 0.5 38.8994c-14.7998 0 -64.2998 -10.7002 -112.2 -2c-46.0996 8.90039 -59.3994 29 -65.3994 30.9004c-10.3008 4.5 -23.2002 -0.5 -27.3008 -7c-0.0996094 -0.100586 -35 -70.6006 -39.5996 -87.7998
-c-6.2002 -20.5 -0.5 -47.4004 4.09961 -66.8008c0 -0.0996094 4.5 -14.5996 10.3008 -19.5c2.09961 -1.5 5.09961 -2.5 7.19922 -4.5c2.80078 -2.69922 9.40039 -15.1992 9.80078 -16c2.59961 -4.5 3.59961 -8 -1.5 -10.5c-3.60059 -2 -9.30078 -2.5 -14.4004 -2.5
-c-2.59961 -0.5 -1.5 -3.5 -3.09961 -5c-2.90039 -2.7998 -20.7002 -6.09961 -29.9004 -2.5c-2.59961 1 -5.7002 3 -6.2002 5c-1.5 4 2.10059 9 -1 12.5c-4.5 2.90039 -13.0996 2 -17 12c-2.2002 5.40039 -2.59961 7.60059 -2.59961 49.4004
-c0 9.7002 -5.90039 38.7002 -8.2002 46.9004c-1.5 5.5 -1.5 11.5 0 16c0.299805 0.899414 4.09961 4.59961 4.09961 13c-1 1.5 -4.59961 0.5 -5.09961 1.5c-10.4004 80.5996 -5.90039 79 -7.7002 98.2998c-1.5 16 -10.8994 43.8994 -6.7002 64.2998
-c0.5 2.40039 3.40039 21 24.2002 38.9004c31 26.6992 48.4004 38.2998 159 11.5c1.10059 -0.400391 66.2998 -21.1006 110.7 9c15.5 11.2998 28.7998 11.2998 35.5 16c0.0996094 0.0996094 61.7002 52.0996 87 65.2998c47.2002 29.3994 69.9004 16.7002 75.0996 18
-c4.7002 1 13.4004 25.7998 17 25.7998c5.5 0 1.60059 -20.2002 3.60059 -25.9004c0.5 -2 3.59961 -5 6.2002 -5c2.2998 0 1.69922 0.800781 10.2998 5c8.39941 5.40039 14.8994 17.6006 20.5996 17c11.7002 -1.59961 -19 -41.5996 -19 -46.8994
-c0 -2 0.200195 -0.799805 4.60059 -9.5c2.59961 -5.5 4.59961 -13.5 6.19922 -20c8.30078 -29.7002 5.7002 -14.6006 13.4004 -36.9004z" />
-    <glyph glyph-name="studiovinari" unicode="&#xf3f8;" horiz-adv-x="512" 
-d="M480.3 260.3l4.2002 -28v-28l-25.0996 -44.0996l-39.8008 -78.4004l-56.0996 -67.5l-79.0996 -37.7998l-17.7002 -24.5l-7.7002 -12l-9.59961 -4s17.2998 63.5996 19.3994 63.5996c2.10059 0 20.2998 -0.699219 20.2998 -0.699219l66.7002 38.5996l-92.5 -26.0996
-l-55.8994 -36.8008l-22.8008 -28l-6.59961 -1.39941l20.7998 73.5996l6.90039 5.5l20.7002 -12.8994l88.2998 45.1992l56.7998 51.5l14.7998 68.4004l-125.399 -23.2998l15.1992 18.2002l-173.399 53.2998l81.8994 10.5l-166 122.899l114.9 -18.0996l-101.3 108
-l252.899 -126.6l-31.5 38l124.4 -74.4004l-143.3 99l18.7002 -38.4004l-49.6006 18.1006l-45.5 84.2998l194.601 -122l-42.9004 55.7998l108 -96.3994l12 8.89941l-21 16.4004l4.2002 37.7998l37.7998 10.4004l29.2002 -24.7002l11.5 -4.2002l-7 -6.2002l8.5 -12
-l-13.1006 -7.39941l-10.2998 -20.2002z" />
-    <glyph glyph-name="supple" unicode="&#xf3f9;" horiz-adv-x="640" 
-d="M640 185.5c0 -64.0996 -109 -116.1 -243.5 -116.1c-24.7998 0 -48.5996 1.7998 -71.0996 5c7.69922 -0.400391 15.5 -0.600586 23.3994 -0.600586c134.5 0 243.5 56.9004 243.5 127.101c0 29.3994 -19.0996 56.3994 -51.2002 78
-c60 -21.1006 98.9004 -55.1006 98.9004 -93.4004zM47.7002 220.1c0.0996094 -29.3994 19.2998 -56.5 51.5996 -78c-60.2002 21 -99.2002 55 -99.2998 93.3008c-0.0996094 64.0996 108.8 116.3 243.3 116.699c24.7002 0 48.5 -1.69922 71 -4.89941
-c-7.7002 0.299805 -15.3994 0.5 -23.2998 0.5c-134.5 -0.299805 -243.4 -57.4004 -243.3 -127.601zM107.9 180.2l8.7998 10.8994s8.7998 -10.0996 20.7002 -10.0996c6.5 0 12.2998 3.5 12.2998 10.0996c0 14.5 -40.2002 13.3008 -40.2002 39.9004
-c0 13.9004 12 24.0996 28.5 24.0996c10 0 25.4004 -4.69922 25.4004 -16.7998v-7.89941h-14.2002v3.89941c0 4 -5.60059 6.60059 -11.2998 6.60059c-7.2002 0 -12.5 -3.7002 -12.5 -9.10059c0 -14.5996 40.1992 -11.7002 40.1992 -39.7002
-c0 -13.5996 -10.5 -25.0996 -28.3994 -25.0996c-18.7998 0 -29.2998 13.2002 -29.2998 13.2002zM228.7 253.8h15.7002v-55c0 -18.8994 -13.3008 -31.8994 -33.4004 -31.8994c-20.2998 0 -33.7002 13 -33.7002 31.8994v55h15.7998v-54.5
-c0 -11.2002 7.10059 -17.7002 17.8008 -17.7002c10.6992 0 17.7998 6.5 17.7998 17.8008v54.3994zM263.1 168.4v72h-7.7998v13.3994h39.1006c16 0 27.1992 -11.2002 27.1992 -27.7998s-11.1992 -28.0996 -27.1992 -28.0996h-15.5v-29.5h-15.8008zM278.9 211.4h12.5996
-c8.90039 0 14 5.7998 14 14.6992c0 8.7002 -5 14.4004 -13.7002 14.4004h-12.8994v-29.0996zM335.9 168.4v72h-7.80078v13.3994h39.1006c16 0 27.2002 -11.2002 27.2002 -27.7998s-11.2002 -28.0996 -27.2002 -28.0996h-15.5v-29.5h-15.7998zM351.6 211.4h12.6006
-c9 0 14 5.7998 14 14.6992c0 8.7002 -5 14.4004 -13.7002 14.4004h-12.9004v-29.0996zM408.7 176.6h0.0996094v61.2002c0 1.60059 -0.899414 2.60059 -2.59961 2.60059h-5.2002v13.3994h15.4004c5.7998 0 8.19922 -2.5 8.19922 -8.2002v-61.1992
-c0 -1.60059 0.900391 -2.60059 2.60059 -2.60059h18.5996c1.60059 0 2.60059 0.900391 2.60059 2.60059v5.19922h14.2998v-13c0 -5.7998 -2.40039 -8.19922 -8.2002 -8.19922h-37.5996c-5.80078 0 -8.2002 2.39941 -8.2002 8.19922zM472.1 176.6h-0.0996094v63.9004h-7.7998
-v13.4004h51.5996c5.7002 0 8.2002 -2.5 8.2002 -8.2002v-13h-14.2002v5.2002c0 1.59961 -0.899414 2.59961 -2.59961 2.59961h-19.2002v-22.4004h27.7002v-13.3994h-27.7002v-20.2998c0 -1.60059 0.900391 -2.60059 2.59961 -2.60059h19.7002
-c1.60059 0 2.60059 0.900391 2.60059 2.60059v5.19922h14.2998v-13c0 -5.7998 -2.5 -8.19922 -8.2002 -8.19922h-38.7002c-5.7998 0 -8.2002 2.39941 -8.2002 8.19922zM531 252.6h-2.7002v1.2002h7v-1.2002h-2.7002v-5.89941h-1.59961v5.89941zM536.7 253.8h2.39941
-l2.10059 -5.09961l2.09961 5.09961h2.2998v-7.09961h-1.5v5.7002l-2.2998 -5.7002h-1.2998l-2.2998 5.7002v-5.7002h-1.5v7.09961z" />
-    <glyph glyph-name="telegram-plane" unicode="&#xf3fe;" 
-d="M446.7 349.4l-67.6006 -318.801c-5.09961 -22.5 -18.3994 -28.0996 -37.2998 -17.5l-103 75.9004l-49.7002 -47.7998c-5.5 -5.5 -10.0996 -10.1006 -20.6992 -10.1006l7.39941 104.9l190.9 172.5c8.2998 7.40039 -1.7998 11.5 -12.9004 4.09961l-236 -148.6
-l-101.6 31.7998c-22.1006 6.90039 -22.5 22.1006 4.59961 32.7002l397.4 153.1c18.3994 6.90039 34.5 -4.09961 28.5 -32.1992z" />
-    <glyph glyph-name="uber" unicode="&#xf402;" 
-d="M414.1 416c18.7002 0 33.9004 -15.2002 33.8008 -33.9004v-380.199c0 -18.7002 -15.2002 -33.9004 -33.9004 -33.9004h-380.1c-18.7002 0 -33.9004 15.2002 -33.9004 34v380.1c0 18.7002 15.2002 33.9004 33.9004 33.9004h380.199zM237.6 56.9004
-c74.6006 7.5 129 74.0996 121.5 148.6c-7 69.4004 -65.3994 122.2 -135.1 122.2s-128.1 -52.7998 -135.1 -122.2h94.3994v20.4004c0 3.7998 3.10059 6.7998 6.7998 6.7998h67.9004c3.7998 0 6.7998 -3.10059 6.7998 -6.7998v-67.9004
-c0 -3.7998 -3.09961 -6.7998 -6.7998 -6.7998h-67.9004c-3.7998 0 -6.7998 3.09961 -6.7998 6.7998v20.4004h-94.3994c7.5 -74.6006 74.0996 -129 148.699 -121.5z" />
-    <glyph glyph-name="uikit" unicode="&#xf403;" 
-d="M443.9 320v-256l-225.9 -128l-218 128v214.3l87.5996 -45.0996v-117l133.5 -75.5l135.801 75.5v151l-101.101 57.5996l87.6006 53.1006zM308.6 398.9l-87.3994 -53l-86 47.2998l88.5996 54.7998z" />
-    <glyph glyph-name="uniregistry" unicode="&#xf404;" horiz-adv-x="384" 
-d="M192 -32c-39.5 0 -76.2002 11.7998 -106.7 32.2002h213.5c-30.5996 -20.4004 -67.2998 -32.2002 -106.8 -32.2002zM102.9 161.1c0 -2.5 0.0996094 -5 0.299805 -7.39941h-103.101c-0.0996094 2.39941 -0.0996094 4.89941 -0.0996094 7.39941v12.4004h102.9v-12.4004z
-M123.4 104.1c8.89941 -10.5996 20.0996 -19.0996 33 -24.7998h-138.301c-3.7998 8 -7 16.2998 -9.59961 24.7998h114.9zM105.7 138.8c2 -7.89941 5.2002 -15.3994 9.2002 -22.2998h-109.7c-1.7002 7.2998 -3 14.7002 -3.90039 22.2998h104.4zM102.9 208.1v-17.2998h-102.9
-v17.2998h102.9zM102.9 381.3v-4.89941h-102.9v4.89941h102.9zM102.9 416v-2.5h-102.9v2.5h102.9zM102.9 346.7v-7.40039h-102.9v7.40039h102.9zM102.9 242.7v-14.7998h-102.9v14.7998h102.9zM102.9 312v-9.90039h-102.9v9.90039h102.9zM102.9 277.4v-12.4004h-102.9v12.4004
-h102.9zM269.1 116.5c4 6.90039 7.10059 14.4004 9.2002 22.2998h104.4c-0.799805 -7.59961 -2.10059 -15 -3.90039 -22.2998h-109.7zM281.1 302.2v9.7998h102.9v-9.7998h-102.9zM281.1 265v12.4004h102.9v-12.4004h-102.9zM281.1 339.3v7.40039h102.9v-7.40039h-102.9z
-M281.1 416h102.9v-2.5h-102.9v2.5zM78.0996 5.09961c-11.7998 8.7002 -23.5996 18.7002 -33.1992 29.7002h293.1c-9.5 -11.0996 -20.4004 -21 -32.2002 -29.7002h-227.7zM281.1 376.4v4.89941h102.9v-4.89941h-102.9zM281.1 227.9v14.7998h102.9v-14.7998h-102.9z
-M38.7998 42.2998c-6.59961 8.5 -10.5996 17.6006 -15.7998 27.2002h338.9c-5.2002 -9.59961 -11.1006 -18.7002 -17.8008 -27.2002h-305.3zM227.6 79.4004c12.8008 5.59961 24.1006 14.0996 32.9004 24.7998h115c-2.7002 -8.60059 -4.7998 -16.7998 -8.5 -24.7998h-139.4z
-M281.1 161.1v12.4004h102.9v-12.4004c0 -2.5 -0.0996094 -4.89941 -0.200195 -7.39941h-103.1c0.299805 2.39941 0.399414 4.89941 0.399414 7.39941zM281.1 190.8v17.2998h102.9v-17.2998h-102.9z" />
-    <glyph glyph-name="untappd" unicode="&#xf405;" horiz-adv-x="640" 
-d="M401.3 398.1c-79.7998 -160.1 -84.5996 -152.5 -87.8994 -173.199l-5.2002 -32.8008c-1.90039 -12 -6.60059 -23.5 -13.7002 -33.3994l-148.9 -207.8c-7.59961 -10.6006 -20.3994 -16.2002 -33.3994 -14.6006c-40.2998 5 -77.7998 32.2002 -95.2998 68.5
-c-5.7002 11.7998 -4.5 25.7998 3.09961 36.4004l148.9 207.899c7.09961 9.90039 16.3994 18 27.1992 23.7002l29.3008 15.5c18.5 9.7998 9.69922 11.9004 135.6 138.9c1 4.7998 1 7.2998 3.59961 8c3 0.700195 6.60059 1 6.30078 4.59961l-0.400391 4.60059
-c-0.200195 1.89941 1.2998 3.59961 3.2002 3.59961c4.5 0.0996094 13.2002 -1.2002 25.5996 -10c12.2998 -8.90039 16.4004 -16.7998 17.7002 -21.0996c0.599609 -1.80078 -0.599609 -3.7002 -2.40039 -4.2002l-4.5 -1.10059
-c-3.39941 -0.899414 -2.5 -4.39941 -2.2998 -7.39941c0.100586 -2.7998 -2.2998 -3.60059 -6.5 -6.10059zM230.1 411.6c-3.19922 0.800781 -8.19922 1.2002 -6.7998 5.40039c1.2998 4.2998 5.40039 12.2002 17.7002 21.0996c12.4004 8.90039 21.0996 10.1006 25.5996 10
-c4.2002 -0.0996094 3.10059 -4.89941 2.80078 -8.19922c-0.300781 -3.60059 3.2998 -3.80078 6.2998 -4.60059c2.59961 -0.700195 2.59961 -3.2998 3.59961 -8c9.10059 -9.2002 17.6006 -17.8994 25.6006 -26.0996c1.2998 -1.40039 1.19922 -3.5 -0.100586 -4.90039
-c-15.8994 -16.3994 -29.2998 -30.5996 -40.5 -42.5996c-1 -1 -2.59961 -0.799805 -3.2998 0.5c-6.90039 13.5 -14.2998 28.0996 -22.2002 44c-4.2998 2.5 -6.59961 3.2998 -6.39941 6c0.199219 3 1.09961 6.5 -2.30078 7.39941zM620 41.2998
-c7.7002 -10.7002 8.7998 -24.7002 3.40039 -36.5996c-17.7002 -36.6006 -55.4004 -63.7002 -95.7002 -68.6006c-12.9004 -1.5 -25.5 4.10059 -33.1006 14.7002l-148.899 207.9c-7.10059 9.89941 -11.7998 21.3994 -13.7002 33.3994
-c-1.59961 9.80078 -2 19.1006 -0.299805 29.8008c1.89941 12 2.7002 6 49 94.7998c0.700195 1.39941 2.59961 1.59961 3.59961 0.5c16.2998 -18 19.2998 -23 30.5 -28.9004c29.7998 -15.7002 43.2002 -20.5996 56.4004 -39.0996z" />
-    <glyph glyph-name="ussunnah" unicode="&#xf407;" horiz-adv-x="512" 
-d="M156.8 162.9l5.7002 -14.4004h-8.2002c-1.2998 3.2002 -3.09961 7.7002 -3.7998 9.5c-2.5 6.2998 -1.09961 8.40039 0 10c1.90039 2.7002 3.2002 4.40039 3.59961 5.2002c0 -2.2002 0.800781 -5.7002 2.7002 -10.2998zM454.1 144.1
-c-2.09961 -13.7998 -5.69922 -27.0996 -10.5 -39.6992l43 -23.4004l-44.7998 18.7998c-5.2998 -13.2002 -12 -25.5996 -19.8994 -37.2002l34.1992 -30.1992l-36.7998 26.3994c-8.39941 -11.7998 -18 -22.5996 -28.7002 -32.2998l24.9004 -34.7002l-28.0996 31.7998
-c-11 -9.59961 -23.1006 -18 -36.1006 -25.0996l15.7002 -37.2002l-19.2998 35.2998c-13.1006 -6.7998 -27 -12.0996 -41.6006 -15.8994l6.7002 -38.4004l-10.5 37.4004c-14.2998 -3.40039 -29.2002 -5.2998 -44.5 -5.40039l-1.7998 -38.2998l-1.90039 38.4004
-c-15.2998 0.0996094 -30.1992 2 -44.5 5.2998l-10.5996 -37.2998l6.7002 38.1992c-14.6006 3.7002 -28.6006 9.10059 -41.7002 15.8008l-19.2002 -35.1006l15.6006 37c-13 7 -25.2002 15.4004 -36.2002 25.1006l-27.9004 -31.6006l24.7002 34.4004
-c-10.7002 9.7002 -20.4004 20.5 -28.7998 32.2998l-36.5 -26.2002l33.8994 29.9004c-7.89941 11.5996 -14.5996 24.0996 -20 37.2998l-44.3994 -18.7002l42.5996 23.2002c-4.7998 12.7002 -8.39941 26.0996 -10.5 39.9004l-51 -9l50.2998 14.1992
-c-1.09961 8.5 -1.69922 17.1006 -1.69922 25.9004c0 4.7002 0.199219 9.40039 0.5 14.0996l-55.4004 2.90039l56 2.7998c1.2998 13.1006 3.7998 25.7998 7.5 38.1006l-57.0996 16.0996l58.8994 -10.4004c4 12 9.10059 23.5 15.2002 34.4004l-55.0996 30l58.2998 -24.5996
-c6.2998 10.5996 13.5 20.3994 21.5996 29.5996l-49.5 43.5996l53.9004 -38.6992c8.09961 8.59961 17 16.5 26.5996 23.5996l-40 55.5996l45.6006 -51.5996c9.5 6.59961 19.6992 12.2998 30.2998 17.2002l-27.2998 64.8994l33.7998 -62.0996
-c10.5 4.40039 21.3994 7.90039 32.7002 10.4004l-12.4004 70.6992l19.5 -69.1992c11 2.09961 22.2998 3.19922 33.7998 3.39941l3.7002 72.2002l3.59961 -72.2002c11.5 -0.200195 22.8008 -1.39941 33.8008 -3.5l19.5996 69.2998l-12.4004 -70.6992
-c11.3008 -2.60059 22.2002 -6.10059 32.6006 -10.5l33.8994 62.1992l-27.3994 -65.0996c10.5996 -4.90039 20.7002 -10.7002 30.2002 -17.2002l45.7998 51.7998l-40.1006 -55.8994c9.5 -7.10059 18.4004 -15 26.5 -23.6006l54.2002 38.9004l-49.7002 -43.9004
-c8 -9.09961 15.2002 -18.8994 21.5 -29.3994l58.7002 24.7002l-55.5 -30.2002c6.10059 -10.9004 11.1006 -22.2998 15.1006 -34.2998l59.2998 10.3994l-57.5 -16.2002c3.7002 -12.1992 6.2002 -24.8994 7.5 -37.8994l56.2998 -2.7002l-56 -2.7998
-c0.299805 -4.60059 0.5 -9.2998 0.5 -14.1006c0 -8.69922 -0.599609 -17.2998 -1.59961 -25.7998l50.6992 -14.2998zM432.3 175.1c0 97.5 -79 176.5 -176.5 176.5s-176.5 -79 -176.5 -176.5s79 -176.5 176.5 -176.5s176.5 79 176.5 176.5zM408.3 175.1
-c0 -84.2998 -68.2998 -152.6 -152.6 -152.6s-152.601 68.2998 -152.601 152.6c0 84.3008 68.3008 152.601 152.601 152.601s152.6 -68.2998 152.6 -152.601zM195 207c0 -2.09961 1.2998 -3.7998 3.59961 -5.09961c3.30078 -1.90039 6.2002 -4.60059 8.2002 -8.2002
-c2.7998 5.7002 4.2998 9.5 4.2998 11.2002c0 2.19922 -1.09961 4.39941 -3.19922 7c-2.10059 2.5 -3.2002 5.19922 -3.30078 7.69922c-6.5 -6.7998 -9.59961 -10.8994 -9.59961 -12.5996zM154.3 226c0 -2.09961 1.2998 -3.7998 3.60059 -5.09961
-c3.5 -1.90039 6.19922 -4.60059 8.19922 -8.2002c2.80078 5.7002 4.30078 9.5 4.30078 11.2002c0 2.19922 -1.10059 4.39941 -3.2002 7c-2.10059 2.5 -3.2002 5.19922 -3.2998 7.69922c-6.5 -6.7998 -9.60059 -10.8994 -9.60059 -12.5996zM135.3 226
-c0 -2.09961 1.2998 -3.7998 3.60059 -5.09961c3.2998 -1.90039 6.19922 -4.60059 8.19922 -8.2002c2.80078 5.7002 4.30078 9.5 4.30078 11.2002c0 2.19922 -1.10059 4.39941 -3.2002 7c-2.10059 2.5 -3.2002 5.19922 -3.2998 7.69922
-c-6.40039 -6.7998 -9.60059 -10.8994 -9.60059 -12.5996zM340.2 138.1c-8.40039 3 -8.7002 6.80078 -8.7002 15.6006v112.3c-8.2002 -12.5 -14.2002 -18.5996 -18 -18.5996c6.2998 -14.4004 9.5 -23.9004 9.5 -28.3008v-64.2998c0 -2.2002 -2.2002 -6.5 -4.7002 -6.5h-18
-c-2.7998 7.5 -10.2002 26.9004 -15.2998 40.2998c-2 -2.5 -7.2002 -9.19922 -10.7002 -13.6992c2.40039 -1.60059 4.10059 -3.60059 5.2002 -6.30078c2.59961 -6.69922 6.40039 -16.5 7.90039 -20.1992h-9.2002c-3.90039 10.3994 -9.60059 25.3994 -11.7998 31.0996
-c-2 -2.5 -7.2002 -9.2002 -10.7002 -13.7002c2.39941 -1.59961 4.09961 -3.59961 5.2002 -6.2998c0.799805 -2 2.7998 -7.2998 4.2998 -10.9004h-9.2002c-1.5 4.10059 -5.59961 14.6006 -8.40039 22c-2 -2.5 -7.19922 -9.19922 -10.6992 -13.6992
-c2.5 -1.60059 4.2998 -3.60059 5.19922 -6.30078c0.200195 -0.599609 0.5 -1.39941 0.600586 -1.69922h-17.7002c-4.59961 13.8994 -11.4004 27.6992 -11.4004 34.0996c0 2.2002 0.300781 5.09961 1.10059 8.2002c-8.7998 -10.7998 -14 -15.9004 -14 -25
-c0 -7.5 10.3994 -28.2998 10.3994 -33.2998c0 -1.7002 -0.5 -3.30078 -1.39941 -4.90039c-9.60059 12.7002 -15.5 20.7002 -18.7998 20.7002h-12l-11.2002 28c-3.7998 9.59961 -5.7002 16 -5.7002 18.7998c0 3.7998 0.5 7.7002 1.7002 12.2002
-c-1 -1.2998 -3.7002 -4.7002 -5.5 -7.10059c-0.799805 2.10059 -3.10059 7.7002 -4.60059 11.5c-2.09961 -2.5 -7.5 -9.09961 -11.1992 -13.5996c0.899414 -2.2998 3.2998 -8.09961 4.89941 -12.2002c-2.5 -3.2998 -9.09961 -11.7998 -13.5996 -17.7002
-c-4 -5.2998 -5.7998 -13.2998 -2.7002 -21.7998c2.5 -6.7002 2 -7.89941 -1.7002 -14.0996h61.7002c5.5 0 14.2998 -14 15.5 -22c13.2002 16 15.4004 19.5996 16.7998 21.5996h107c3.90039 0 7.2002 1.90039 9.90039 5.7998zM360.3 164.7v101.6
-c-9 -12.5 -15.8994 -18.5996 -20.7002 -18.5996c7.10059 -14.4004 10.7002 -23.9004 10.7002 -28.2998v-66.3008c0 -17.5 8.60059 -20.3994 24 -20.3994c8.10059 0 12.5 0.799805 13.7002 2.7002c-4.2998 1.59961 -7.59961 2.5 -9.90039 3.2998
-c-8.09961 3.2002 -17.7998 7.39941 -17.7998 26z" />
-    <glyph glyph-name="vaadin" unicode="&#xf408;" 
-d="M224.5 307.3c1.5 17.6006 4.90039 52.7002 49.7998 52.7002h98.6006c20.6992 0 32.0996 7.7998 32.0996 21.5996v12.3008c0 12.1992 9.2998 22.0996 21.5 22.0996s21.5 -9.90039 21.5 -22.0996v-36.5c0 -42.9004 -21.5 -62 -66.7998 -62h-100.5
-c-30.1006 0 -33 -14.7002 -33 -27.1006c0 -1.2998 -0.100586 -2.5 -0.200195 -3.7002c-0.700195 -12.2998 -10.9004 -22.1992 -23.4004 -22.1992s-22.6992 9.7998 -23.3994 22.1992c-0.100586 1.2002 -0.200195 2.40039 -0.200195 3.7002c0 12.2998 -3 27.1006 -33 27.1006
-h-100.7c-45.2998 0 -66.7998 19.0996 -66.7998 62v36.5c0 12.1992 9.40039 22.0996 21.5996 22.0996c12.2002 0 21.5 -9.90039 21.5 -22.0996v-12.3008c0 -13.7998 11.4004 -21.5996 32.1006 -21.5996h98.5996c44.7998 0 48.2998 -35.0996 49.7998 -52.7002h0.900391z
-M224 -8c-11.5 0 -21.4004 7 -25.7002 16.2998c-1.09961 1.7998 -97.0996 169.5 -98.2002 171.4c-11.8994 19.7002 3.2002 44.2998 27.2002 44.2998c13.9004 0 23.4004 -6.40039 29.7998 -20.2998l66.9004 -117.7l66.9004 117.7c6.5 13.8994 15.8994 20.2998 29.7998 20.2998
-c24 0 39.0996 -24.7002 27.2002 -44.2998c-1.10059 -1.7998 -97.1006 -169.601 -98.2002 -171.4c-4.2998 -9.2998 -14.2002 -16.2998 -25.7002 -16.2998z" />
-    <glyph glyph-name="viber" unicode="&#xf409;" horiz-adv-x="512" 
-d="M444 398.1c42.2002 -36.6992 65.5996 -117.899 49.7998 -246.5c-15.2002 -124.6 -109.1 -136.6 -125.7 -142c-7.19922 -2.2998 -70.2998 -18.0996 -152.5 -11.1992c-9.09961 -10.5 -21.0996 -24.3008 -29.7998 -33.7002
-c-15.8994 -17.1006 -25.7002 -33 -42.2998 -27.7998c-13.7998 4.19922 -13 25.0996 -13 25.0996l0.0996094 51.5996h-0.0996094c-120.1 33.8008 -118.4 158.4 -117 224.9s14.2998 120.2 50.9004 156.8c65.7998 60.4004 200.899 52.2998 200.899 52.2998
-c114.601 -0.5 166 -37.7998 178.7 -49.5zM457.9 161c13.2998 107.3 -4.90039 180.5 -40.6006 211.1c-10.7998 9.80078 -57.2002 39 -154.1 39.4004c0 0 -114.7 7.5 -170.4 -43c-31 -30.5996 -41.5 -76.0996 -42.5996 -131.6
-c-1.10059 -55.5 -7.10059 -161.601 94.7002 -189.801c-0.100586 0 -0.100586 0 0 0c0 0 -0.400391 -78.7998 -0.400391 -85.6992c-0.0996094 -10.5 5.7002 -11 11 -5.7002c16.2002 16.2998 68.2002 79 68.2002 79c69.7002 -4.5 125.2 9.2998 131.2 11.2002
-c14 4.5 90.0996 11.0996 103 115.1zM318.9 241.8c0.399414 -8.59961 -12.5 -9.2002 -12.9004 -0.599609c-1.09961 22 -11.4004 32.7002 -32.5996 33.8994c-8.60059 0.5 -7.80078 13.4004 0.699219 12.9004c27.9004 -1.5 43.4004 -17.5 44.8008 -46.2002zM339.2 230.5
-c1 42.4004 -25.5 75.5996 -75.7998 79.2998c-8.5 0.600586 -7.60059 13.5 0.899414 12.9004c58 -4.2002 88.9004 -44.1006 87.7998 -92.5c-0.0996094 -8.60059 -13.0996 -8.2002 -12.8994 0.299805zM386.2 217.1c0.0996094 -8.59961 -12.9004 -8.69922 -12.9004 -0.0996094
-c-0.599609 81.5 -54.8994 125.9 -120.8 126.4c-8.5 0.0996094 -8.5 12.8994 0 12.8994c73.7002 -0.5 133 -51.3994 133.7 -139.2zM374.9 119v-0.200195c-10.8008 -19 -31 -40 -51.8008 -33.2998l-0.199219 0.299805c-21.1006 5.90039 -70.8008 31.5 -102.2 56.5
-c-16.2002 12.7998 -31 27.9004 -42.4004 42.4004c-10.2998 12.8994 -20.7002 28.2002 -30.7998 46.5996c-21.2998 38.5 -26 55.7002 -26 55.7002c-6.7002 20.7998 14.2002 41 33.2998 51.7998h0.200195c9.2002 4.7998 18 3.2002 23.9004 -3.89941
-c0 0 12.3994 -14.8008 17.6992 -22.1006c5 -6.7998 11.7002 -17.7002 15.2002 -23.7998c6.10059 -10.9004 2.2998 -22 -3.7002 -26.5996l-12 -9.60059c-6.09961 -4.89941 -5.2998 -14 -5.2998 -14s17.7998 -67.2998 84.2998 -84.2998c0 0 9.10059 -0.799805 14 5.2998
-l9.60059 12c4.59961 6 15.7002 9.7998 26.5996 3.7002c14.7002 -8.2998 33.4004 -21.2002 45.7998 -32.9004c7 -5.69922 8.60059 -14.3994 3.80078 -23.5996z" />
-    <glyph glyph-name="vimeo" unicode="&#xf40a;" 
-d="M403.2 416c24.7002 0 44.7998 -20.0996 44.7998 -44.7998v-358.4c0 -24.7002 -20.0996 -44.7998 -44.7998 -44.7998h-358.4c-24.7002 0 -44.7998 20.0996 -44.7998 44.7998v358.4c0 24.7002 20.0996 44.7998 44.7998 44.7998h358.4zM377 267.2
-c1.90039 42.2002 -13.7998 63.7998 -47.0996 64.7002c-44.9004 1.39941 -75.3008 -23.9004 -91.2002 -76c19.8994 8.5 49.2998 10.7998 45.7998 -22.4004c-1 -11.2002 -8.2998 -27.5 -21.7998 -48.9004c-37.7002 -59.3994 -46.9004 -39.5996 -67.6006 91.6006
-c-5.7998 36.8994 -21.2998 54.0996 -46.5 51.7002c-22.2998 -2 -57.8994 -38.4004 -95.1992 -71.2002l15.1992 -19.6006c14.5 10.1006 23 15.2002 25.4004 15.2002c21 0 31.9004 -54.7002 57.4004 -148c13.0996 -34.8994 29 -52.2998 47.8994 -52.2998
-c30.4004 0 67.7002 28.5996 111.7 85.7998c42.5996 54.7002 64.5996 97.9004 66 129.4z" />
-    <glyph glyph-name="vnv" unicode="&#xf40b;" horiz-adv-x="640" 
-d="M104.9 96c-34.1006 0 -46.4004 30.4004 -46.4004 30.4004l-55.9004 111.5s-10.3994 18.0996 10.4004 18.0996h32.7998c10.4004 0 13.2002 -8.7002 18.7998 -18.0996l36.7002 -74.5s5.2002 -13.1006 21.1006 -13.1006c15.8994 0 21.0996 13.1006 21.0996 13.1006
-l36.7002 74.5c5.59961 9.5 8.39941 18.0996 18.7998 18.0996h32.7998c20.7998 0 10.4004 -18.0996 10.4004 -18.0996l-55.7998 -111.5s-12.2002 -30.4004 -46.4004 -30.4004h-35.0996zM499.9 96c-34.1006 0 -46.4004 30.4004 -46.4004 30.4004l-55.9004 111.5
-s-10.3994 18.0996 10.4004 18.0996h32.7998c10.4004 0 13.2002 -8.7002 18.7998 -18.0996l36.7002 -74.5s5.2002 -13.1006 21.1006 -13.1006c15.8994 0 21.0996 13.1006 21.0996 13.1006l36.7998 74.5c5.60059 9.5 8.40039 18.0996 18.7998 18.0996h32.9004
-c20.7998 0 10.4004 -18.0996 10.4004 -18.0996l-55.9004 -111.5s-12.2002 -30.4004 -46.4004 -30.4004h-35.1992zM337.6 256c34.1006 0 46.4004 -30.4004 46.4004 -30.4004l55.9004 -111.5s10.3994 -18.0996 -10.4004 -18.0996h-32.7998
-c-10.4004 0 -13.2002 8.7002 -18.7998 18.0996l-36.7002 74.5s-5.2002 13.1006 -21.1006 13.1006c-15.8994 0 -21.0996 -13.1006 -21.0996 -13.1006l-36.7002 -74.5c-5.59961 -9.39941 -8.39941 -18.0996 -18.7998 -18.0996h-32.9004
-c-20.7998 0 -10.3994 18.0996 -10.3994 18.0996l55.8994 111.5s12.2002 30.4004 46.4004 30.4004h35.0996z" />
-    <glyph glyph-name="whatsapp-square" unicode="&#xf40c;" 
-d="M224 325.2c35.2002 0 68.2002 -13.7002 93.2002 -38.7002c24.8994 -24.9004 40.0996 -58 40.0996 -93.2002c0 -72.7002 -60.7002 -131.8 -133.3 -131.8h-0.0996094c-23.7002 0 -46.9004 6.40039 -67.1006 18.4004l-4.7998 2.89941l-49.9004 -13.0996l13.3008 48.5996
-l-3.10059 5c-13.2002 20.9004 -20.2002 45.2002 -20.2002 70.1006c0.100586 72.6992 59.2002 131.8 131.9 131.8zM301.5 136.8c3.2998 9.2002 3.2998 17.2002 2.40039 19.1006c-1 1.59961 -3.60059 2.59961 -7.60059 4.59961s-23.5 11.5996 -27.0996 12.9004
-c-3.60059 1.2998 -6.2998 2 -8.90039 -2c-2.59961 -3.90039 -10.2002 -12.9004 -12.5 -15.5c-2.2998 -2.7002 -4.59961 -3 -8.59961 -1c-23.2998 11.6992 -38.6006 20.7998 -53.9004 47.0996c-4.09961 7 4 6.40039 11.6006 21.5996
-c1.39941 2.60059 0.699219 4.90039 -0.300781 6.90039s-8.89941 21.5 -12.1992 29.4004c-3.2002 7.69922 -6.5 6.69922 -8.90039 6.7998c-2.2998 0.0996094 -5 0.0996094 -7.59961 0.0996094c-2.7002 0 -7 -1 -10.6006 -5c-3.7002 -4 -13.8994 -13.5996 -13.8994 -33.0996
-s14.1992 -38.4004 16.1992 -41c2 -2.60059 28 -42.6006 67.7002 -59.7998c25.1006 -10.8008 34.9004 -11.8008 47.5 -9.90039c7.60059 1.09961 23.4004 9.5 26.7002 18.7998zM400 416c26.5 0 48 -21.5 48 -48v-352c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48
-v352c0 26.5 21.5 48 48 48h352zM223.9 34.7998c87.3994 0 160.1 71.1006 160.1 158.5c0 42.4004 -18 82.2002 -47.9004 112.2c-30 30 -69.7998 46.5 -112.199 46.5c-87.4004 0 -158.5 -71.0996 -158.601 -158.5c0 -28 7.2998 -55.2998 21.2002 -79.2998l-22.5 -82.2002
-l84.0996 22.0996c23.1006 -12.5996 49.2002 -19.2998 75.8008 -19.2998z" />
-    <glyph glyph-name="whmcs" unicode="&#xf40d;" 
-d="M448 287l-29.0996 -7l-2.2002 -12.0996l20.8994 -18.8008l-10.2998 -20.0996l-28.7998 8.7998l-7.7998 -8.09961l8.7998 -28l-20.4004 -12.1006l-20.6992 21.6006l-11.6006 -3.5l-6.7002 -28.7998l-22.5996 0.299805l-6.7002 28.5l-11.5996 2.89941l-19.4004 -20.3994
-l-19.8994 11.5996l8.09961 26.9004l-7.2002 8.59961l-29.5996 -7.5l-10.4004 18.5l20.1006 19.9004l-2.40039 12.0996l-28.7998 7.5l0.299805 21.7002l28.5 7.7998l2.90039 10.4004l-20.7002 21l11 19.0996l28.5 -7.5l8.09961 8.40039l-8.09961 27.7002l19.3994 11
-l19.7002 -21l12.1006 3.19922l6.19922 26.4004h22.6006l7 -26.4004l10.7002 -3.19922l21.2998 21l19.0996 -11.6006l-7.5 -28.2002l7.2002 -7.5l29 7.5l10.4004 -19.3994l-20.1006 -20.7002l2.2002 -10.4004l28.5 -8.7998v-21.2998zM328.8 241.8
-c31.4004 0 56.7998 25.2998 56.7998 56.7998c0 31.4004 -25.3994 56.8008 -56.7998 56.8008c-31.3994 0 -56.7998 -25.4004 -56.7998 -56.8008c0 -31.3994 25.5 -56.7998 56.7998 -56.7998zM401.1 225.4l46.9004 -14.5v-39.9004l-55.0996 -13.4004l-4.10059 -22.6992
-l38.9004 -35.3008l-19.2002 -37.8994l-54 16.7002l-14.5996 -15.2002l16.6992 -52.5l-38.2998 -22.7002l-38.8994 40.5l-21.7002 -6.59961l-12.6006 -54l-42.3994 0.5l-12.6006 53.5996l-21.6992 5.59961l-36.4004 -38.3994l-37.4004 21.7002l15.2002 50.5l-13.7002 16.0996
-l-55.5 -14.0996l-19.6992 34.7998l37.8994 37.3994l-4.7998 22.8008l-54 14.0996l0.5 40.9004l53.5 14.6992l5.7002 19.7002l-38.9004 39.4004l20.7002 35.7998l53.5996 -14.0996l15.2002 15.6992l-15.2002 52l36.4004 20.7002l36.7998 -39.3994l22.7002 6.09961l11.5996 52
-h42.4004l11.5996 -45.9004l-22.5996 5.90039l-6.2998 1.7002l-3.2998 -5.7002l-11 -19.0996l-3.30078 -5.60059l4.60059 -4.59961l17.2002 -17.4004l-0.300781 -1l-23.7998 -6.5l-6.2002 -1.7002l-0.0996094 -6.39941l-0.200195 -12.9004
-c-47.5 -10.3994 -83.2998 -52.7998 -83.2998 -103.5c0 -58.2998 47.2998 -105.7 105.7 -105.7c50.5 0 92.7002 35.4004 103.2 82.8008l13.1992 -0.200195l6.90039 -0.100586l1.59961 6.7002l5.60059 24l1.89941 0.600586l17.1006 -17.8008l4.7002 -4.89941l5.7998 3.39941
-l20.3994 12.1006l5.80078 3.5l-2 6.5z" />
-    <glyph glyph-name="wordpress-simple" unicode="&#xf411;" horiz-adv-x="512" 
-d="M256 440c136.7 0 248 -111.2 248 -248c0 -136.7 -111.3 -248 -248 -248s-248 111.3 -248 248c0 136.8 111.3 248 248 248zM33 192c0 -88.2002 51.2998 -164.5 125.7 -200.7l-106.4 291.4c-12.3994 -27.7002 -19.2998 -58.4004 -19.2998 -90.7002zM256 -31
-c26 0 50.9004 4.5 74 12.5996c-0.599609 1 -1.09961 2 -1.59961 3.10059l-68.5 187.8l-66.9004 -194.4c20 -5.89941 41.0996 -9.09961 63 -9.09961zM286.7 296.5l80.7002 -239.6l22.1992 74.2998c9.7002 30.8994 17 53 17 72.0996c0 27.6006 -9.89941 46.7002 -18.3994 61.5
-c-11.2998 18.4004 -21.9004 33.9004 -21.9004 52.2998c0 20.5 15.5 39.6006 37.4004 39.6006c1 0 1.89941 -0.100586 2.89941 -0.200195c-39.6992 36.2998 -92.5996 58.5 -150.6 58.5c-77.9004 0 -146.4 -40 -186.3 -100.5
-c5.2998 -0.200195 10.2002 -0.299805 14.3994 -0.299805c23.3008 0 59.4004 2.7998 59.4004 2.7998c12 0.700195 13.4004 -17 1.40039 -18.4004c0 0 -12.1006 -1.39941 -25.5 -2.09961l81.1992 -241.5l48.8008 146.3l-34.7002 95.2002
-c-12 0.700195 -23.4004 2.09961 -23.4004 2.09961c-12 0.700195 -10.5996 19.1006 1.40039 18.4004c0 0 36.7998 -2.7998 58.7002 -2.7998c23.2998 0 59.3994 2.7998 59.3994 2.7998c12 0.700195 13.4004 -17 1.40039 -18.4004c0 0 -12.1006 -1.39941 -25.5 -2.09961z
-M368.1 -0.700195c66.3008 38.6006 110.9 110.4 110.9 192.7c0 38.7998 -9.90039 75.2002 -27.2998 107c1 -7.09961 1.5 -14.7002 1.5 -22.9004c0 -22.6992 -4.2998 -48.0996 -17 -79.8994z" />
-    <glyph glyph-name="xbox" unicode="&#xf412;" horiz-adv-x="512" 
-d="M369.9 129.8c44.2998 -54.2998 64.6992 -98.7998 54.3994 -118.7c-7.89941 -15.0996 -56.7002 -44.5996 -92.5996 -55.8994c-29.6006 -9.2998 -68.4004 -13.2998 -100.4 -10.2002c-38.2002 3.7002 -76.8994 17.4004 -110.1 39
-c-27.9004 18.2002 -34.2002 25.7002 -34.2002 40.5996c0 29.9004 32.9004 82.3008 89.2002 142.101c32 33.8994 76.5 73.7002 81.3994 72.5996c9.40039 -2.09961 84.3008 -75.0996 112.301 -109.5zM188.6 304.2c-66.3994 -81.5 -106 -155.4 -120.3 -194.4
-c-9.7998 -26.5 -13.7002 -53 -9.5 -64c2.7998 -7.39941 0.200195 -4.7002 -9.2998 9.90039c-23.2002 35.5 -34.9004 70.3994 -40.5 120.899c-1.90039 16.7002 -1.2002 26.3008 4.2002 60.5c6.7998 42.7002 31.0996 92 60.2998 122.4
-c12.4004 12.9004 13.5 13.2002 28.7002 8.09961c28.2998 -9.5 56.7002 -36.5 86.3994 -63.3994zM500.2 240.7c4.7002 -22.6006 5.09961 -70.9004 0.799805 -93.4004c-3.59961 -18.5 -11.2002 -42.5 -18.5996 -58.7002c-5.5 -12.1992 -19.3008 -35.7998 -25.4004 -43.5
-c-3.09961 -3.89941 -3.09961 -3.89941 -1.40039 4.60059c2.30078 11.2002 -0.599609 31.5996 -7.39941 52.2998c-20.7002 62.9004 -80.5 149 -122.9 202.3c23.2998 21.4004 41 38.2998 64.2998 52.7998c11.8008 7.40039 28.7002 13.9004 36 13.9004
-c7.10059 0 57.7002 -50.2998 74.6006 -130.3zM141.3 405c-14.5996 -0.700195 -14 0.0996094 9.40039 11.2002c81.2002 38.2998 170 27.5996 233.899 -11.7002c-13.3994 0.599609 -43.5 5.90039 -107.399 -25.2002c-11.2002 -5.5 -20.9004 -9.7998 -21.6006 -9.7002
-c-4.59961 0.900391 -66.5996 37.9004 -114.3 35.4004z" />
-    <glyph glyph-name="yandex" unicode="&#xf413;" horiz-adv-x="256" 
-d="M153.1 132.2l-87.3994 -196.2h-63.7002l96 209.8c-45.0996 22.9004 -75.2002 64.4004 -75.2002 141.101c-0.0996094 107.399 68 161.1 148.9 161.1h82.2998v-512h-55.0996v196.2h-45.8008zM198.9 401.5h-29.4004c-44.4004 0 -87.4004 -29.4004 -87.4004 -114.6
-c0 -82.3008 39.4004 -108.801 87.4004 -108.801h29.4004v223.4z" />
-    <glyph glyph-name="yandex-international" unicode="&#xf414;" horiz-adv-x="320" 
-d="M129.5 -64v166.1l-111 297.9h55.7998l81.7998 -229.7l94.1006 277.7h51.2998l-120.7 -347.8v-164.2h-51.2998z" />
-    <glyph glyph-name="apple-pay" unicode="&#xf415;" horiz-adv-x="640" 
-d="M116.9 289.5c-7.5 -8.90039 -19.5 -15.9004 -31.5 -14.9004c-1.5 12 4.39941 24.8008 11.2998 32.6006c7.5 9.09961 20.5996 15.5996 31.2998 16.0996c1.2002 -12.3994 -3.7002 -24.7002 -11.0996 -33.7998zM127.8 272.3c6.7998 -0.5 26.2998 -2.5 38.7998 -21.0996
-c-1 -0.799805 -23.1992 -13.5 -22.8994 -40.2998c0.299805 -32 28 -42.6006 28.2998 -42.9004c-0.200195 -0.799805 -4.40039 -15.0996 -14.5 -29.9004c-8.90039 -13 -18 -25.6992 -32.5 -26c-14 -0.199219 -18.7002 8.40039 -34.7998 8.40039
-c-16 0 -21.2002 -8.09961 -34.5 -8.59961c-14 -0.5 -24.6006 13.7998 -33.5 26.7998c-18.2002 26.2998 -32.1006 74 -13.2998 106.3c9.09961 16.0996 25.6992 26.2002 43.5996 26.5c13.7998 0.299805 26.4004 -9.09961 34.7998 -9.09961
-c8.2002 0 23.1006 10.8994 40.5 9.89941zM228.2 308.5h73.2002c37.6992 0 64.0996 -26 64.0996 -64s-26.7998 -64.2998 -65.0996 -64.2998h-41.9004v-66.6006h-30.2998v194.9zM258.5 283v-77.4004h34.7998c26.4004 0 41.4004 14.2002 41.4004 38.8008
-c0 24.5996 -15 38.5996 -41.2998 38.5996h-34.9004zM420.7 112.1c-28.1006 0 -47.7002 16.8008 -47.7998 42c0 25 19 39.4004 54.0996 41.5l37.7998 2.30078v10.7998c0 15.8994 -10.3994 24.5 -28.8994 24.5c-15.2002 0 -26.3008 -7.90039 -28.6006 -19.9004h-27.2998
-c0.900391 25.2002 24.7002 43.6006 56.7998 43.6006c34.6006 0 57.1006 -18.2002 57.1006 -46.3008v-97h-28v23.4004h-0.600586c-8 -15.2998 -25.5996 -24.9004 -44.5996 -24.9004zM428.9 135.2c20.5 0 36 13 36 31.2002v11l-33.6006 -2.10059
-c-18.8994 -1.09961 -28.7998 -8.2002 -28.7998 -20.5c0 -11.7998 10.2998 -19.5996 26.4004 -19.5996zM531.4 60.5996c-2.30078 0 -9.80078 0.300781 -11.6006 0.700195v23.4004c1.90039 -0.200195 6.5 -0.5 8.90039 -0.5c13.3994 0 20.8994 5.7002 25.5 20.2998
-l2.7998 8.59961l-51.2002 141.9h31.6006l35.5996 -115.1h0.599609l35.6006 115.1h30.7998l-53.0996 -149c-12.1006 -34.0996 -26 -45.4004 -55.5 -45.4004z" />
-    <glyph glyph-name="cc-apple-pay" unicode="&#xf416;" horiz-adv-x="576" 
-d="M302.2 229.6c0 -17.1992 -10.5 -27.0996 -29 -27.0996h-24.2998v54.2002h24.3994c18.4004 0 28.9004 -9.7998 28.9004 -27.1006zM349.7 167c0 8.59961 6.89941 13.5 20.2002 14.4004l23.5 1.5v-7.7002c0 -12.7998 -10.8008 -21.9004 -25.2002 -21.9004
-c-11.2998 0 -18.5 5.40039 -18.5 13.7002zM576 369v-352c0 -26.5 -21.5 -48 -48 -48h-480c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h480c26.5 0 48 -21.5 48 -48zM127.8 250.8c8.40039 -0.700195 16.7998 4.2002 22.1006 10.4004
-c5.19922 6.39941 8.59961 15 7.69922 23.7002c-7.39941 -0.300781 -16.5996 -4.90039 -21.8994 -11.3008c-4.7998 -5.5 -8.90039 -14.3994 -7.90039 -22.7998zM188.4 176.3c-0.200195 0.200195 -19.6006 7.60059 -19.8008 30c-0.199219 18.7002 15.3008 27.7002 16 28.2002
-c-8.7998 13 -22.3994 14.4004 -27.0996 14.7002c-12.2002 0.700195 -22.5996 -6.90039 -28.4004 -6.90039c-5.89941 0 -14.6992 6.60059 -24.2998 6.40039c-12.5 -0.200195 -24.2002 -7.2998 -30.5 -18.6006c-13.0996 -22.5996 -3.39941 -56 9.2998 -74.3994
-c6.2002 -9.10059 13.7002 -19.1006 23.5 -18.7002c9.30078 0.400391 13 6 24.2002 6c11.2998 0 14.5 -6 24.2998 -5.90039c10.2002 0.200195 16.5 9.10059 22.8008 18.2002c6.89941 10.4004 9.7998 20.4004 10 21zM323.8 229.7c0 26.5996 -18.5 44.7998 -44.8994 44.7998
-h-51.2002v-136.4h21.2002v46.6006h29.2998c26.7998 0 45.5996 18.3994 45.5996 45zM413.8 206c0 19.7002 -15.7998 32.4004 -40 32.4004c-22.5 0 -39.0996 -12.9004 -39.7002 -30.5h19.1006c1.59961 8.39941 9.39941 13.8994 20 13.8994c13 0 20.2002 -6 20.2002 -17.2002
-v-7.5l-26.4004 -1.59961c-24.5996 -1.5 -37.9004 -11.5996 -37.9004 -29.0996c0 -17.7002 13.7002 -29.4004 33.4004 -29.4004c13.2998 0 25.5996 6.7002 31.2002 17.4004h0.399414v-16.4004h19.6006v68h0.0996094zM516 237.1h-21.5l-24.9004 -80.5996h-0.399414
-l-24.9004 80.5996h-22.2998l35.9004 -99.2998l-1.90039 -6c-3.2002 -10.2002 -8.5 -14.2002 -17.9004 -14.2002c-1.69922 0 -4.89941 0.200195 -6.19922 0.300781v-16.4004c1.19922 -0.400391 6.5 -0.5 8.09961 -0.5c20.7002 0 30.4004 7.90039 38.9004 31.7998z" />
-    <glyph glyph-name="fly" unicode="&#xf417;" horiz-adv-x="384" 
-d="M197.8 20.2002c12.9004 -11.7002 33.7002 -33.2998 33.2002 -50.7002c0 -0.799805 -0.0996094 -1.59961 -0.0996094 -2.5c-1.80078 -19.7998 -18.8008 -31.0996 -39.1006 -31c-25 0.0996094 -39.8994 16.7998 -38.7002 35.7998c1 16.2002 20.5 36.7002 32.4004 47.6006
-c2.2998 2.09961 2.7002 2.69922 5.59961 3.59961c3.40039 0 3.90039 -0.299805 6.7002 -2.7998zM331.9 380.7c23.8994 -40 27.7998 -73.2998 20.7998 -112.5c-15.2002 -69.9004 -103.601 -166.5 -155.9 -215.7c-1.7002 -1.59961 -1.39941 -1.40039 -3.5 -2.09961
-l-3.2998 0.0996094c-1.7002 0.599609 -4.5 3.5 -6.2002 5.09961c-58.7998 57.8008 -148.7 151.601 -155.8 233.801c-1.5 71.3994 29.2998 113.399 82.9004 141.3c9.89941 4.09961 37 17.2998 81.0996 17.2998c22 0.200195 51.0996 -4.5 76.5996 -15.2002
-c24.7002 -11.5 47 -26.3994 63.3008 -52.0996zM186.8 96.0996v325.7c-57.8994 -5.5 -72.7002 -89.2002 -69.2998 -136.7c4.09961 -58.2998 41.2998 -137.899 69.2998 -189zM328.7 268c15.7998 54.9004 -10.9004 134.7 -99.7002 153
-c38.2002 -25.5996 49.5996 -85.5 48 -131.4c-2 -58.5996 -39.4004 -140 -67.2002 -191.899c41.6006 42.2998 102.5 113.5 118.9 170.3z" />
-    <glyph glyph-name="node" unicode="&#xf419;" horiz-adv-x="640" 
-d="M316.3 -4c-2.09961 0 -4.2002 0.599609 -6.09961 1.59961l-19.2002 11.4004c-2.90039 1.59961 -1.5 2.2002 -0.5 2.5c3.7998 1.2998 4.59961 1.59961 8.7002 4c0.399414 0.200195 1 0.0996094 1.39941 -0.0996094l14.8008 -8.80078
-c0.5 -0.299805 1.2998 -0.299805 1.7998 0l57.7998 33.4004c0.5 0.299805 0.900391 0.900391 0.900391 1.59961v66.7002c0 0.700195 -0.300781 1.2998 -0.900391 1.60059l-57.7998 33.2998c-0.5 0.299805 -1.2002 0.299805 -1.7998 0l-57.8008 -33.2998
-c-0.599609 -0.300781 -0.899414 -1 -0.899414 -1.60059v-66.7002c0 -0.599609 0.399414 -1.19922 0.899414 -1.5l15.8008 -9.09961c8.59961 -4.2998 13.8994 0.799805 13.8994 5.7998v65.9004c0 0.899414 0.700195 1.7002 1.7002 1.7002h7.2998
-c0.900391 0 1.7002 -0.700195 1.7002 -1.7002v-65.9004c0 -11.5 -6.2002 -18 -17.0996 -18c-3.30078 0 -6 0 -13.3008 3.60059l-15.1992 8.69922c-3.7002 2.2002 -6.10059 6.2002 -6.10059 10.5v66.7002c0 4.2998 2.2998 8.40039 6.10059 10.5l57.7998 33.4004
-c3.7002 2.09961 8.5 2.09961 12.0996 0l57.7998 -33.4004c3.7002 -2.2002 6.10059 -6.2002 6.10059 -10.5v-66.7002c0 -4.2998 -2.2998 -8.39941 -6.10059 -10.5l-57.7998 -33.3994c-1.7002 -1.10059 -3.7998 -1.7002 -6 -1.7002zM363 61.7998
-c0 -12.5996 -10.5 -19.7998 -29 -19.7998c-25.2998 0 -30.5996 11.5996 -30.5996 21.2998c0 1 0.799805 1.7002 1.69922 1.7002h7.5c0.900391 0 1.60059 -0.599609 1.7002 -1.40039c1.10059 -7.59961 4.5 -11.3994 19.7998 -11.3994
-c12.2002 0 17.4004 2.7002 17.4004 9.2002c0 3.69922 -1.5 6.39941 -20.4004 8.2998c-15.7998 1.59961 -25.5996 5 -25.5996 17.7002c0 11.5996 9.7998 18.5996 26.2998 18.5996c18.5 0 27.6006 -6.40039 28.7998 -20.2002
-c0.100586 -0.5 -0.0996094 -0.899414 -0.399414 -1.2998c-0.299805 -0.299805 -0.700195 -0.5 -1.2002 -0.5h-7.5c-0.799805 0 -1.40039 0.5 -1.59961 1.2998c-1.80078 8 -6.2002 10.6006 -18.1006 10.6006c-13.2998 0 -14.7998 -4.60059 -14.7998 -8.10059
-c0 -4.2002 1.7998 -5.39941 19.7998 -7.7998c17.7998 -2.40039 26.2002 -5.7002 26.2002 -18.2002zM417.5 111.9c0 -6.10059 -5 -11.1006 -11.0996 -11.1006c-6.10059 0 -11.1006 5 -11.1006 11.1006c0 6.2998 5.2002 11.0996 11.1006 11.0996
-c6 0.0996094 11.0996 -4.7998 11.0996 -11.0996zM415.7 111.9c0 5.19922 -4.2002 9.2998 -9.40039 9.2998c-5.09961 0 -9.2998 -4.10059 -9.2998 -9.2998c0 -5.2002 4.2002 -9.40039 9.2998 -9.40039c5.2002 0.0996094 9.40039 4.2998 9.40039 9.40039zM411.2 105.7
-h-2.60059c-0.0996094 0.599609 -0.5 3.7998 -0.5 3.89941c-0.199219 0.700195 -0.399414 1.10059 -1.2998 1.10059h-2.2002v-5h-2.39941v12.5h4.2998c1.5 0 4.40039 0 4.40039 -3.2998c0 -2.30078 -1.5 -2.80078 -2.40039 -3.10059
-c1.7002 -0.0996094 1.7998 -1.2002 2.09961 -2.7998c0.100586 -1 0.300781 -2.7002 0.600586 -3.2998zM408.4 114.5c0 1.7002 -1.2002 1.7002 -1.80078 1.7002h-2v-3.5h1.90039c1.59961 0 1.90039 1.09961 1.90039 1.7998zM137.3 257l-0.200195 -95
-c0 -1.2998 -0.699219 -2.59961 -1.7998 -3.2002c-1.09961 -0.700195 -2.59961 -0.700195 -3.7002 0l-36.3994 20.9004c-2.2998 1.2998 -3.7002 3.7998 -3.7002 6.39941v44.4004c0 2.59961 -1.40039 5.09961 -3.7002 6.40039l-15.5 8.89941
-c-1.09961 0.700195 -2.39941 1 -3.7002 1c-1.2998 0 -2.5 -0.299805 -3.69922 -1l-15.5 -8.89941c-2.30078 -1.30078 -3.7002 -3.80078 -3.7002 -6.40039v-44.4004c0 -2.59961 -1.40039 -5 -3.7002 -6.39941l-36.4004 -20.9004
-c-1.19922 -0.700195 -2.59961 -0.700195 -3.69922 0c-1.10059 0.700195 -1.80078 1.90039 -1.80078 3.2002l-0.0996094 95c0 2.59961 1.40039 5.09961 3.7002 6.40039l61.2002 35.2998c1.09961 0.599609 2.19922 1 3.39941 1h0.600586
-c1.19922 -0.100586 2.39941 -0.400391 3.39941 -1l61.2998 -35.2998c2.30078 -1.30078 3.7002 -3.7002 3.7002 -6.40039zM472.5 360.7v-176.4c0 -2.59961 -1.40039 -5.09961 -3.7002 -6.39941l-61.2998 -35.4004c-2.2998 -1.2998 -5.09961 -1.2998 -7.40039 0
-l-61.2998 35.4004c-2.2998 1.2998 -3.7002 3.7998 -3.7002 6.39941v70.7998c0 2.60059 1.40039 5.10059 3.7002 6.40039l61.2998 35.4004c2.30078 1.2998 5.10059 1.2998 7.40039 0l15.2998 -8.80078c1.7002 -1 3.90039 0.300781 3.90039 2.2002v94
-c0 2.7998 3 4.60059 5.5 3.2002l36.5 -20.4004c2.2998 -1.19922 3.7998 -3.69922 3.7998 -6.39941zM426.5 231.8c0 0.700195 -0.400391 1.2998 -0.900391 1.60059l-21 12.1992c-0.599609 0.300781 -1.2998 0.300781 -1.89941 0l-21 -12.1992
-c-0.600586 -0.300781 -0.900391 -0.900391 -0.900391 -1.60059v-24.2998c0 -0.700195 0.400391 -1.2998 0.900391 -1.59961l21 -12.1006c0.599609 -0.299805 1.2998 -0.299805 1.7998 0l21 12.1006c0.599609 0.299805 0.900391 0.899414 0.900391 1.59961v24.2998h0.0996094
-zM636.3 232.5l-36.7002 -21.2998c-2.5 -1.40039 -5.59961 0.399414 -5.59961 3.2002v17.3994c0 1.2998 -0.799805 2.5 -1.90039 3.2002l-19.1992 11.0996c-1.10059 0.700195 -2.60059 0.700195 -3.7002 0l-19.2002 -11.0996
-c-1.2002 -0.700195 -1.90039 -1.90039 -1.90039 -3.2002v-22.2002c0 -1.2998 0.700195 -2.5 1.90039 -3.19922l61.7002 -35.4004c2.5 -1.40039 2.5 -5 0 -6.40039l-36.7998 -20.5c-2.30078 -1.2998 -5.10059 -1.2998 -7.30078 0l-60.8994 34.7002
-c-2.2998 1.2998 -3.7002 3.7002 -3.7002 6.40039v70.7998c0 2.59961 1.40039 5.09961 3.7002 6.40039l61.2998 35.3994c2.2998 1.2998 5.09961 1.2998 7.40039 0l60.8994 -35.3994c2.2998 -1.30078 3.7002 -3.80078 3.7002 -6.40039v-17.0996
-c0 -2.60059 -1.40039 -5.10059 -3.7002 -6.40039zM559 229l11.7998 6.7998c0.400391 0.299805 1 0.299805 1.40039 0l11.7998 -6.7998c0.400391 -0.200195 0.700195 -0.700195 0.700195 -1.2002v-13.5996c0 -0.5 -0.299805 -0.900391 -0.700195 -1.2002l-11.7998 -6.7998
-c-0.400391 -0.299805 -1 -0.299805 -1.40039 0l-11.7998 6.7998c-0.400391 0.200195 -0.700195 0.700195 -0.700195 1.2002v13.5996c0 0.5 0.299805 0.900391 0.700195 1.2002zM304.8 185.5c0 -0.599609 -0.0996094 -1.2002 -0.200195 -1.7002
-c-0.5 -2 -1.7998 -3.7002 -3.59961 -4.7002l-61 -35.1992c-2.2002 -1.30078 -5 -1.40039 -7.40039 0l-61.1992 35.1992c-2.10059 1.2002 -4 3.60059 -4 6.40039v70.4004c0 2.69922 1.59961 5.09961 3.89941 6.39941l61.1006 35.2002
-c2.39941 1.40039 5.2998 1.2002 7.39941 0l61.1006 -35.2002c2.2998 -1.2998 3.89941 -3.7998 3.89941 -6.39941v-70.4004zM230.5 310.4l-0.799805 -0.5h1.09961zM306.7 180.2l-0.400391 0.700195v-0.900391z" />
-    <glyph glyph-name="osi" unicode="&#xf41a;" horiz-adv-x="512" 
-d="M8 181.56c2.2998 135.801 97.3994 232.441 213.799 248.102c138.8 18.5996 255.601 -75.7998 278 -201.101c21.2998 -118.8 -44 -230 -151.6 -274c-9.2998 -3.7998 -14.4004 -1.69922 -18 7.7002c-17.7998 46.2998 -35.5996 92.6328 -53.3994 138.999
-c-3.09961 8.10059 -1 13.2002 7 16.7998c24.2002 11 39.2998 29.4004 43.2998 55.8008c0.561523 3.60547 0.852539 7.2998 0.852539 11.0615c0 37.3613 -28.7998 67.9971 -65.3525 71.1377c-39 3.40039 -71.7998 -23.6992 -77.5 -59.6992
-c-5.19922 -33 11.1006 -63.7002 41.9004 -77.7002c9.59961 -4.40039 11.5 -8.60059 7.7998 -18.4004c-17.8994 -46.5996 -35.7998 -93.2324 -53.7002 -139.899c-2.59961 -6.90039 -8.2998 -9.30078 -15.5 -6.5c-52.5996 20.2998 -101.399 61 -130.8 119
-c-24.8994 49.1992 -25.2002 87.6992 -26.7998 108.699zM28.8994 183.461c0.399414 -6.59961 0.599609 -14.3008 1.2998 -22.1006c6.2998 -71.9004 49.5996 -143.5 131 -183.101c3.2002 -1.5 4.39941 -0.799805 5.59961 2.2998c14.9004 39.1006 29.9004 78.2012 45 117.302
-c1.2998 3.2998 0.600586 4.7998 -2.39941 6.69922c-31.6006 19.9004 -47.3008 48.5 -45.6006 86c1 21.6006 9.2998 40.5 23.7998 56.3008c30 32.6992 77 39.7998 115.5 17.5996c27.4619 -15.834 45.9629 -45.4971 45.9629 -79.4463
-c0 -3.75879 -0.321289 -7.3125 -0.762695 -10.9541c-3.59961 -30.5996 -19.2998 -53.8994 -45.7002 -69.7998c-2.69922 -1.59961 -3.5 -2.89941 -2.2998 -6c15.2002 -39.2002 30.2666 -78.4336 45.2002 -117.7c1.2002 -3.09961 2.40039 -3.7998 5.59961 -2.2998
-c35.5 16.6006 65.2002 40.2998 88.1006 72c34.7998 48.2002 49.0996 101.9 42.2998 161c-13.7002 117.5 -119.4 214.8 -255.5 198c-106.1 -13 -195.3 -102.5 -197.1 -225.8z" />
-    <glyph glyph-name="react" unicode="&#xf41b;" horiz-adv-x="512" 
-d="M418.2 270.8c54.3994 -18.7002 93.7998 -48.0996 93.7998 -78.3994c0 -31.7002 -41.7998 -62.6006 -99.5 -81.7002c-3.09961 -1 -6.2002 -2 -9.40039 -2.90039c1.10059 -4.59961 2.10059 -9.09961 3 -13.5c11.4004 -57.5996 2.60059 -104.899 -24.3994 -120.5
-c-26.1006 -15.0996 -68.4004 -0.200195 -111.2 36.6006c-4.59961 4 -9.2002 8.09961 -13.5996 12.3994c-3.5 -3.39941 -7 -6.59961 -10.5 -9.7002c-44.2002 -38.6992 -89.6006 -54.6992 -116.601 -39.0996c-26.2002 15.0996 -34.3994 59.0996 -23.8994 114.6
-c1.19922 6.10059 2.5 12 4 18c-4.60059 1.30078 -9.10059 2.80078 -13.6006 4.30078c-55.5 19 -96.2998 50.2998 -96.2998 81.5c0 30.1992 38.2998 59.3994 91.7002 77.8994c5.89941 2.10059 12.2002 4.10059 18.5996 5.90039
-c-1.39941 5.59961 -2.59961 11.0996 -3.7002 16.7002c-11 56.3994 -3.19922 101.5 23 116.699c27.3008 15.9004 72.9004 -1.09961 118.4 -41.5c2.7998 -2.5 5.59961 -5.09961 8.2998 -7.69922c4 3.89941 8.2002 7.7998 12.5 11.5
-c43.4004 37.7998 86.2998 53.5 112.601 38.3994c27.2998 -15.7998 35.3994 -63.7002 23.0996 -123.3c-0.799805 -3.7002 -1.59961 -7.40039 -2.5 -11.0996c5.40039 -1.60059 10.7998 -3.30078 16.2002 -5.10059zM282.9 355.7c-4 -3.5 -7.80078 -7 -11.7002 -10.7002
-c15.3994 -16.7002 29.5996 -34.5 42.5996 -53.0996c22.6006 -2 45.1006 -5.60059 67.2998 -10.6006c0.900391 3.2998 1.60059 6.60059 2.30078 10c10.5996 51.5 4.09961 90.7002 -12.8008 100.4c-15.7998 9.09961 -50.5 -3.60059 -87.6992 -36zM167.2 140.5
-c-5 8.59961 -9.7002 17.2998 -14.2998 26.0996c-6.40039 -15.1992 -11.9004 -30.0996 -16.3008 -44.5c15.3008 -3.2998 30.8008 -5.7998 46.4004 -7.5c-5.5 8.5 -10.7002 17.2002 -15.7998 25.9004zM136.9 260.8c4.39941 -14.0996 9.69922 -28.7002 16 -43.5996
-c4.5 8.7998 9.2998 17.5 14.1992 26c4.90039 8.59961 10.1006 17.0996 15.4004 25.3994c-15.9004 -2 -31.2002 -4.59961 -45.5996 -7.7998zM164.3 191.9c6.7002 -13.8008 13.7998 -27.3008 21.5 -40.6006s15.9004 -26.2998 24.6006 -39
-c14.6992 -0.899414 29.8994 -1.39941 45.5996 -1.39941s31.2002 0.5 46.0996 1.59961c8.5 12.7998 16.6006 25.7002 24.2002 39c7.7002 13.4004 14.9004 27 21.6006 40.7998c-6.80078 13.7002 -14 27.2002 -21.7002 40.4004s-15.7998 26.0996 -24.2998 38.7002
-c-14.9004 1.09961 -30.3008 1.69922 -45.9004 1.69922s-30.9004 -0.599609 -45.9004 -1.69922c-8.59961 -12.7002 -16.7998 -25.6006 -24.3994 -38.9004c-7.60059 -13.2998 -14.7998 -26.7998 -21.4004 -40.5996zM344.9 140.7c-5 -8.60059 -10.1006 -17.2002 -15.5 -25.6006
-c15.7998 1.80078 31.5 4.5 47 8c-4.90039 15.1006 -10.5 29.8008 -16.9004 44.3008c-4.7002 -9 -9.5 -17.9004 -14.5996 -26.7002zM359.3 217.2c6.10059 14.2002 11.5 28.5996 16.1006 43.3994c-14.4004 3.30078 -29.8008 6 -45.9004 8
-c5.2998 -8.2998 10.4004 -16.6992 15.2998 -25.1992c5 -8.60059 9.7998 -17.4004 14.5 -26.2002zM256.2 329.7c-10 -10.9004 -20.1006 -22.9004 -29.9004 -35.7998c19.7998 0.899414 39.7002 0.899414 59.5 0c-9.2002 12.3994 -19.0996 24.3994 -29.5996 35.7998zM140.2 391
-c-15.7998 -9.09961 -22 -45.5996 -12.6006 -94c1.10059 -5.2002 2.2002 -10.4004 3.5 -15.5c22.2002 4.90039 44.6006 8.40039 67.2002 10.4004c13.1006 18.5996 27.4004 36.3994 42.9004 53.0996c-2.60059 2.40039 -5.10059 4.7998 -7.60059 7
-c-39.2998 34.7998 -76.5996 48.7998 -93.3994 39zM115.7 127.4c6.89941 22 15.2002 43.5996 24.7998 64.5c-9.5 20.5996 -17.7002 41.8994 -24.5 63.5996c-5.7998 -1.7002 -11.5996 -3.5 -17.2998 -5.5c-45.6006 -15.9004 -77.2002 -39.2998 -77.2002 -57.5996
-c1.90039 -12.1006 8.7002 -22.9004 18.7998 -29.9004c17.5 -13.9004 41.7002 -24.5 63 -31.2002c4.10059 -1.39941 8.2002 -2.7002 12.4004 -3.89941zM232.3 29.4004c3.2002 2.7998 6.40039 5.7998 9.60059 8.89941c-15.5 16.7998 -30 34.7002 -43.2002 53.4004
-c-22.9004 1.7002 -45.5 5 -67.9004 9.7998c-1.39941 -5.5 -2.59961 -11.0996 -3.7002 -16.7002c-9 -47.5 -2.39941 -82.7998 13.5 -92c11.4004 -4.5 24.2002 -4 35.3008 1.2998c20.7998 8.2002 39.8994 20.2002 56.3994 35.3008zM256.8 53.7002
-c10.5 11.5996 20.4004 23.7002 29.6006 36.3994c-10 -0.5 -20.1006 -0.699219 -30.4004 -0.699219c-10 0 -19.9004 0.199219 -29.5 0.599609c9.90039 -13.0996 20.0996 -25.2998 30.2998 -36.2998zM387.5 23.7002c3.2002 22.2002 2.40039 44.7002 -2.5 66.2998
-c-0.799805 4 -1.7002 8.09961 -2.7002 12.2002c-22.5 -5.10059 -45.2998 -8.60059 -68.2002 -10.5c-12.7998 -18.7998 -26.8994 -36.7002 -42.1992 -53.6006c4.2998 -4 8.5 -7.89941 12.6992 -11.5c36.6006 -31.3994 70.5 -43.3994 86.4004 -34.1992
-c9.59961 7.69922 15.5996 19.0996 16.5 31.2998zM405.7 131.2c49.8994 16.5 84.7998 41.7998 84.7998 61.3994c0 18.2002 -32.7002 42 -79.2998 58c-4.7998 1.60059 -9.7998 3.2002 -15 4.7002c-6.7998 -21.5 -14.9004 -42.5 -24.5 -62.8994
-c9.89941 -20.7002 18.5 -42 25.5 -63.8008c2.89941 0.800781 5.7002 1.7002 8.5 2.60059zM256 146.2c-25.2998 0 -45.7998 20.5 -45.7998 45.7998s20.5 45.7998 45.7998 45.7998s45.7998 -20.5 45.7998 -45.7998s-20.5 -45.7998 -45.7998 -45.7998z" />
-    <glyph glyph-name="autoprefixer" unicode="&#xf41c;" horiz-adv-x="640" 
-d="M318.4 432l164.1 -480h-77.5l-25.2002 81.4004h-119.5l-25.3994 -81.4004h-77.5zM278.1 90.0996h83.6006l-40.9004 130.4h-1.5zM640 43l-158.5 -9.5l-19.4004 56.5l167.9 -15.5996zM177.9 90l-19.4004 -56.4004l-158.5 9.40039l10 31.2998z" />
-    <glyph glyph-name="less" unicode="&#xf41d;" horiz-adv-x="640" 
-d="M612.7 229c0 -11 6.7998 -22.5996 27.2998 -23.2998v-27.2998c-20.5 -1 -27.2998 -12.6006 -27.2998 -23.6006c0 -20.3994 3.2002 -32 3.2002 -54.5996c0 -34.2002 -12.7002 -45.2002 -40.5 -45.2002h-20.5v25.2002h6.2998v0.5c13.5996 0 17.2998 4.7002 17.2998 22.5996
-c0 17.2998 -1.59961 32.6006 -1.59961 51.5c0 24.2002 7.7998 33.6006 23.5996 37.2998v1.60059c-15.7002 3.7002 -23.5996 13.0996 -23.5996 37.2998c0 18.9004 1.59961 35.2002 1.59961 51.5c0 17.4004 -3.09961 22.0996 -17.2998 22.0996h-6.2998v24.2002h20.5
-c27.8994 0 40.5 -11 40.5 -45.2002c0 -22 -3.2002 -34.0996 -3.2002 -54.5996zM507.1 197c20.5 -6.7998 43 -18.9004 43 -47.7998c0 -28.9004 -22.5996 -51 -64.5996 -51c-20 0 -44.0996 9 -59.9004 22.0996l21 30.5c14.2002 -11 27.4004 -16.2998 40.5 -16.2998
-c14.2002 0 20.5 5.2002 20.5 13.0996c0 10.5 -15.7998 15.8008 -32.0996 22.1006c-18.9004 7.2998 -41.5 20.5 -41.5 46.2002c0 28.8994 24.2002 49.3994 59.9004 49.3994c24.1992 0 42.0996 -10.5 55.1992 -20.5l-21 -27.7998c-11.5 8.40039 -22 13.0996 -33.5996 13.0996
-s-17.9004 -4.69922 -17.9004 -12.5996c0 -10.5 14.7002 -14.2002 30.5 -20.5zM148.2 137.6c1.59961 0 3.09961 0 6.2002 0.800781l5.2998 -34.2002c-5.7002 -2.10059 -13.6006 -3.7002 -23.6006 -3.7002c-32.0996 0 -43.0996 21 -43.0996 53.0996v150.801h-14.0996
-c-13.6006 0 -17.3008 -4.80078 -17.3008 -22.1006s1.60059 -32.5996 1.60059 -51.5c0 -24.2002 -7.7998 -33.5996 -23.6006 -37.2998v-1.59961c15.7002 -3.7002 23.6006 -13.1006 23.6006 -37.3008c0 -19.3994 -1.60059 -34.1992 -1.60059 -51.5
-c0 -17.2998 4.2002 -22.5996 17.3008 -22.5996h6.2998v-24.2002h-20.5c-27.9004 0 -40.5 11 -40.5 45.2002c0 22.5996 3.2002 34.2002 3.2002 53.5996c0 11 -6.80078 22.6006 -27.3008 23.1006v27.2998c20.5 1 27.3008 12.5996 27.3008 23.5996
-c0 19.4004 -3.2002 32 -3.2002 54.6006c0 34.2002 12.5996 45.2002 41 45.2002h74.5996v-178.2c0 -9.90039 4.7002 -13.1006 8.40039 -13.1006zM379.9 197c20.5 -6.7998 43.0996 -18.9004 43 -47.7998c0 -28.9004 -22.6006 -51 -64.6006 -51
-c-20 0 -44.0996 9 -59.8994 22.0996l20.5 30.5c14.1992 -11 27.3994 -16.2998 40.5 -16.2998c14.1992 0 20.5 5.2002 20.5 13.0996c0 10.5 -15.8008 15.8008 -32.1006 22.1006c-18.8994 7.2998 -41.5 20.5 -41.5 46.2002c0 28.8994 24.2002 49.3994 59.9004 49.3994
-c24.2002 0 42.0996 -10.5 55.2002 -20.5l-21 -27.7998c-11.5 8.40039 -22 13.0996 -33.6006 13.0996c-11.5996 0 -17.8994 -4.69922 -17.8994 -12.5996c0 -10.5 14.6992 -14.2002 31 -20.5zM224.9 265.8c44.0996 0 67.2998 -33.0996 66.6992 -75.7002
-c0 -8.39941 -1.09961 -15.6992 -1.59961 -19.3994h-95.2002c4.2002 -24.2002 20.5 -34.2002 41.5 -34.2002c11.6006 0 22.6006 3.2002 34.2002 10l15.7998 -27.7998c-16.2998 -11.1006 -37.2998 -17.9004 -56.2002 -17.9004c-45.0996 0 -79.2998 30.5 -79.2998 82.5
-c-1 50.4004 35.7002 82.5 74.1006 82.5zM194.9 199.6h56.7998c0 17.9004 -7.40039 31 -26.2998 31c-14.7002 0 -27.3008 -10 -30.5 -31z" />
-    <glyph glyph-name="sass" unicode="&#xf41e;" horiz-adv-x="640" 
-d="M301.84 69.0801c-0.299805 -0.599609 -0.599609 -1.08008 0 0zM550.97 156.08c57.9092 0.300781 90.5703 -37.0801 88.9707 -71.0801c-1.10059 -26.9004 -25.6904 -37.9004 -30.29 -38.7002c-3.30078 -0.599609 -5.10059 -0.700195 -5.60059 1.90039
-c-0.299805 1.7998 0.900391 2.7002 4.7998 5.09961c3.90039 2.40039 15.6006 10.5 17.7002 25c2.10059 14.5 -8.7998 49.2998 -64.4795 55.7998c-26 3 -46.3906 -0.599609 -62.0898 -7.19922c2.89941 -7.60059 5.09961 -15.5 5.39941 -23.4004
-c0.799805 -17.5 -11.29 -30.4004 -23.79 -39.5996c-6.50391 -4.72559 -13.8096 -8.50879 -21.5898 -11.1006c-5.2002 -2.2002 -12.2002 -4.5 -17.0996 -3.5c-10.9004 2.2002 -16.7002 11.7998 -9.30078 33.1006c4 11.5 15.5 29 34.0908 44.0996
-c-4.30078 8.7002 -8.99023 17.5996 -11.3906 25.7002c-2.58984 8.31934 -4.7002 17.0566 -6.2002 25.7998c0 0 -15.2998 -31.7197 -35.0898 -60.6201c-1.09961 -1.7002 -2.2998 -3.39941 -3.39941 -5c3.7998 -9 6.89941 -18.5996 7.2998 -28.2002
-c0.700195 -17.3994 -6.90039 -30.5996 -19.4004 -39.7998c-6.1377 -4.40625 -12.9531 -8.00488 -20.1895 -10.5996c-3.90039 -1.7998 -12 -4.60059 -23.5 -5.40039c-6.29004 -0.5 -12.29 -0.0996094 -15.6904 2.5c-4.59961 3.40039 -5.2002 7.7998 -2.7998 13.7002
-c2 5 17.21 22.4004 30 37.5996c3.5 4.2002 6.90039 8.5 9.90039 12.5c-0.0556641 0.0507812 -0.0927734 0.121094 -0.100586 0.200195c0 0 2.2998 3 6.10059 8.2002c-4.7002 10.0996 -10.6006 20.5 -13.4004 30c-2.58984 8.32031 -4.7002 17.0576 -6.2002 25.7998
-c0 0 -15.4902 -39.7002 -31.6895 -71.5c-12.4902 -24.5996 -20.79 -39.5 -24.5908 -46v-0.299805s-0.5 -0.900391 -1.5 -2.40039c-0.5 -0.799805 -0.699219 -1.19922 -0.699219 -1.19922v0.0996094c-4.20996 -6.2002 -13.6104 -18.2998 -23 -18.2998
-c-25.7002 0 -16.3008 52.2002 -16.3008 52.2002s-7.5 -19.3008 -16 -35.9004c-6.88965 -13.5996 -13.0898 -25 -26.8896 -25c-3.90039 0 -10.1904 0.0996094 -15.3896 5c-11.8008 11.2002 -20.9004 39.7002 -19.1006 61.7002c1.5 18.7998 4.40039 31.7998 8.40039 42.5996
-c-7.10059 -3.89941 -15.2002 -8.39941 -23.4902 -13.2998c-4.2998 -2.5 -8.59961 -5 -12.7998 -7.5c0.0996094 -0.299805 0.299805 -0.5 0.400391 -0.799805c10.5996 -20.4004 13.3896 -65.2002 -9.60059 -99.5s-65.7803 -55.2002 -107.57 -43.6006
-c-13.3896 3.80078 -33.79 31.6006 -16.29 70.4004c15.4902 34.2002 77.3809 66.5996 93.6709 74.7002c1.39941 0.799805 2.89941 1.59961 4.5 2.5c-32.4902 28.3994 -113.671 66.7998 -125.061 125.7c-3.2002 16.5996 4.58984 56.2998 53.2803 101.899
-c40.9902 38.2998 97.9697 67.7002 150.66 86.4004c88.4297 31.3994 181.949 12.8994 196.31 -43.5c14.1006 -55.5 -33.9902 -121.8 -95.7695 -145.601c-54.9902 -21.2998 -100.471 -17.8994 -119.17 -11.7998c-21.29 7 -33.79 21 -36.79 28.9004
-c-1.2002 3.09961 -3.30078 8.2998 0 10.0996c2 1.10059 2.7998 0.799805 8.09961 -5.09961c5.09961 -5.60059 25.4902 -20.6006 64.2803 -16.2998c101.77 11.3994 163.06 90.5 143.66 133c-13.4902 29.7998 -91.8408 43.1992 -189.841 -5.60059
-c-119.569 -59.5996 -126.069 -108.7 -127.069 -127.399c-2.7998 -51.3008 63.2793 -78.3008 99.0693 -116.5c0.5 -0.5 0.900391 -1 1.40039 -1.5c6.7002 3.69922 13.7998 7.59961 20.7002 11.3994c18 9.90039 35.0996 19.2002 43 23.5
-c12.5801 18.2998 38.1797 38.5 56.5801 38.5c29.4893 0 19.3896 -42.3994 19.3896 -42.3994s0.599609 2 1.40039 2c0.799805 0 4.09961 5.5 13.1992 2.19922c9.40039 -3.5 7.2002 -10 7.30078 -10.6992c0.0996094 -1.30078 -11 -38.9004 -15.7002 -63.1006
-c-2.2002 -11.5 -0.900391 -19.8994 -0.299805 -19.8994c0.899414 0 2.7998 2.89941 4.5 6.09961v0.0996094s1.2998 2.40039 3.5 6.7002c0 0.200195 -0.200195 -0.299805 -0.5 -0.799805c0.199219 0.400391 0.5 0.900391 0.899414 1.7002
-c2.60059 5 6.2002 12.3994 10.4004 21.5996c8.18945 18.1006 39.4795 87.7002 42.0801 95.4004c2.59961 7.7002 4 15.7002 5.2998 19.0996c1.2998 3.40039 12.4102 6 25.2998 5.90039c12.8906 -0.100586 14.1904 -5.60059 14.29 -6.7002
-c0.100586 -1.09961 -6.2002 -16.4004 -7.59961 -27.2002c-1.40039 -10.7998 -0.100586 -16.2002 1.09961 -25.2998c0.799805 -6 4.5 -13.5 8.90039 -22c13.2998 21.7998 36.79 63.5996 39.0898 75.2998c1.25195 6.51465 3.06152 12.9941 5.2998 19.1006
-c1.29004 3.39941 12.3896 6 25.29 5.89941c12.9004 -0.0996094 14.2002 -5.59961 14.2998 -6.7002c0.100586 -1.09961 -6.2002 -16.3994 -7.59961 -27.1992c-1.40039 -10.8008 -0.100586 -16.2002 1.09961 -25.3008c1 -7.7998 7.10059 -18.1992 13 -30.0996
-c17.4492 8.59473 37.2061 13.5 57.957 13.5h0.0429688zM121.79 11.3799c19.4004 21.0996 27.3896 47.9199 19.0996 78.3203c-1 -0.600586 -2 -1.10059 -2.89941 -1.7002c0 0 -0.400391 -0.200195 -1.2002 -0.700195c-4.7998 -2.89941 -8.7002 -5.2998 -11.4004 -6.89941
-c-11.7998 -7.40039 -29.5898 -19.4004 -43.3896 -32.4004c-22.6904 -21.4199 -27.3896 -51 -15.4902 -57.9199c11.0898 -6.40039 36.8906 1.2002 55.2803 21.2998zM256.15 102.78c4 9.7998 19.6992 53.2998 16.1992 59.2002c-2.59961 4.5 -13.6992 0.899414 -23.79 -10.4004
-c-6.2998 -7 -16.8994 -25 -21.8994 -40.0996c-9.90039 -30 -5.60059 -60.5 1.39941 -62.3008c8.2002 -2.09961 21.6904 37.9004 28.0908 53.6006zM367.15 49.7803c7.7998 4.7998 24.96 16.8994 25.0898 34.7998c0 0.599609 -0.100586 1.09961 -0.100586 1.59961
-c-3.98926 -5.19922 -7.68945 -9.89941 -10.8896 -13.8994c-5.5 -6.7998 -19.4004 -21.7002 -19.4004 -21.7002s-2 -1.90039 -1.09961 -2.40039c1.2002 -0.699219 3.7002 0.200195 6.40039 1.60059zM452.73 69.2803c9.68945 3.5 25.7998 11.8994 25.8994 34.3994
-c-0.0830078 3.7627 -0.750977 7.4043 -1.89941 10.8008c-10.4102 -9.2002 -16.4004 -18.8008 -19 -24.5c-6.7002 -14.6006 -7 -19.3008 -5 -20.7002z" />
-    <glyph glyph-name="vuejs" unicode="&#xf41f;" 
-d="M356.9 383.7h91.0996l-224 -383.7l-224 383.7h176l48 -88.6006l56 88.6006h76.9004zM55.7002 351.7l168.3 -288.2l168.2 288.2h-53.7998l-114.4 -198.2l-114.5 198.2h-53.7998z" />
-    <glyph glyph-name="angular" unicode="&#xf420;" 
-d="M185.7 179.9l38.0996 91.5996l38.1006 -91.5996h-76.2002zM223.8 416l207.8 -74.4004l-31.7998 -275.699l-176 -97.9004l-176 97.9004l-31.7998 275.699zM354 74.2002l-130.2 292.3l-130.1 -292.3h48.7002l26.1992 65.3994h110.601l26.2002 -65.3994h48.5996z" />
-    <glyph glyph-name="aviato" unicode="&#xf421;" horiz-adv-x="640" 
-d="M107.2 164.5l-19 41.7998h-52.1006l-19 -41.7998h-17.0996l62.2002 131.4l62.2002 -131.4h-17.2002zM62.2002 262.6l-19.6006 -42.5h39.2002zM174.9 160.2l-62.2002 131.399h17.0996l45.1006 -96l45.0996 96h17zM255.5 164.5v127.1h15.5v-127.1h-15.5zM464.6 280.1
-v-115.6h-17.2998v115.6h-41.2002v11.5h99.6006v-11.5h-41.1006zM640 229.2c0 -9.2002 -1.7002 -17.7998 -5.09961 -25.7998c-3.40039 -8 -8.2002 -15.1006 -14.2002 -21.1006s-13.1006 -10.7998 -21.1006 -14.2002c-8 -3.39941 -16.5996 -5.09961 -25.7998 -5.09961
-s-17.7998 1.7002 -25.7998 5.09961c-8 3.40039 -15.0996 8.2002 -21.0996 14.2002s-10.8008 13 -14.2002 21.1006c-3.40039 8 -5.10059 16.5996 -5.10059 25.7998s1.7002 17.7998 5.10059 25.7998c3.39941 8 8.2002 15.0996 14.2002 21.0996s13 8.40039 21.0996 11.9004
-c8 3.40039 16.5996 5.09961 25.7998 5.09961s17.7998 -1.69922 25.7998 -5.09961s15.1006 -5.7998 21.1006 -11.9004c6 -6 10.7002 -13.0996 14.2002 -21.0996c3.39941 -8 5.09961 -16.5996 5.09961 -25.7998zM624.5 229.2c0 7.2998 -1.2998 14 -3.90039 20.2998
-c-2.59961 6.2998 -6.19922 11.7002 -10.7998 16.2998c-4.59961 4.60059 -10 8.2002 -16.2002 10.9004c-6.19922 2.7002 -12.7998 4 -19.7998 4s-13.5996 -1.2998 -19.7998 -4s-11.5996 -6.2998 -16.2002 -10.9004c-4.59961 -4.59961 -8.2002 -10 -10.7998 -16.2998
-s-3.90039 -13.0996 -3.90039 -20.2998c0 -7.2998 1.30078 -14 3.90039 -20.2998c2.59961 -6.30078 6.2002 -11.7002 10.7998 -16.3008c4.60059 -4.59961 10 -8.19922 16.2002 -10.8994s12.7998 -4 19.7998 -4s13.6006 1.2998 19.7998 4
-c6.2002 2.7002 11.6006 6.2998 16.2002 10.8994c4.60059 4.60059 8.2002 10 10.7998 16.3008c2.60059 6.2998 3.90039 13.0996 3.90039 20.2998zM529.7 132.5c6 -0.900391 10.5 -6 10.7002 -12.2998c0 -6.7998 -5.60059 -12.4004 -12.4004 -12.4004
-s-12.4004 5.60059 -12.4004 12.4004c0 6.2002 4.60059 11.2998 10.5 12.2002v5.7998l-80.2998 -9v-5.40039c5.60059 -1.09961 9.90039 -6.09961 9.90039 -12.0996c0 -6.7998 -5.60059 -10.2002 -12.4004 -10.2002s-12.3994 3.40039 -12.3994 10.2002
-c0 5.89941 4.19922 11 9.89941 12.0996v4.90039l-28.3994 -3.2002v-23.7002h5.89941v-13.7998h-5.89941v6.59961h-5v-6.59961h-5.90039v13.7998h5.90039v23.2002l-38.3008 -4.2998c-8.09961 -11.5 -19 -13.6006 -19 -13.6006l0.100586 -6.69922l5.09961 -0.200195
-l0.100586 -12.1006h-4.10059l-0.0996094 5h-5.2002l-0.0996094 -5h-4.10059l0.100586 12.1006l5.09961 0.200195l0.0996094 6.69922s-10.8994 2.2002 -19 13.6006l-38.2998 4.2998v-23.2002h5.90039v-13.7998h-5.90039v6.59961h-5v-6.59961h-5.89941v13.9004h5.89941
-v23.6992l-28.3994 3.2002v-4.89941c5.59961 -1.10059 9.89941 -6.10059 9.89941 -12.1006c0 -6.7998 -5.59961 -10.2002 -12.3994 -10.2002c-6.80078 0 -12.4004 3.40039 -12.4004 10.2002c0 5.90039 4.2002 11 9.90039 12.1006v5.39941l-80.3008 9v-5.7998
-c5.90039 -0.900391 10.5 -6 10.5 -12.2002c0 -6.7998 -5.59961 -12.3994 -12.3994 -12.3994s-12.4004 5.59961 -12.4004 12.3994c0 6.2002 4.60059 11.2998 10.5 12.2002v6.2998l-88.8994 10l242.899 -13.5c-0.599609 2.2002 -1.09961 4.60059 -1.39941 7.2002
-c-0.300781 2.09961 -0.5 4.2002 -0.600586 6.5l-64.7998 8.09961l64.9004 -1.89941c0 0.399414 0 0.799805 0.0996094 1.09961c2.7998 17.2002 25.5 23.7002 25.5 23.7002l1.09961 26.4004h-23.5996l-19 -41.8008h-17.0996l62.1992 131.4l62.2002 -131.4h-17.0996
-l-19 41.8008h-23.7998l1.09961 -26.3008s22.7002 -6.5 25.5 -23.6992c0 -0.400391 0.0996094 -0.700195 0.0996094 -1.10059l64.9004 1.90039l-64.7998 -8.10059c-0.100586 -2.2998 -0.299805 -4.5 -0.600586 -6.5c-0.299805 -2.59961 -0.799805 -5 -1.39941 -7.19922
-l242.899 13.3994l-88.8994 -10v-6.2998zM328.9 220.1h17.8994l1.7002 40.3008l1.7002 -40.3008h17.8994l-19.5996 42.5z" />
-    <glyph glyph-name="ember" unicode="&#xf423;" horiz-adv-x="640" 
-d="M639.9 193.4c1.09961 -10.8008 -5.30078 -14.3008 -5.30078 -14.3008s-26.5996 -19.5996 -47 -13.6992c-20.3994 5.89941 -21.5 43.1992 -21.5 43.1992h-1.89941l-20.7002 -57.1992s-8.2998 -27.9004 -20.7002 -22.8008
-c-12.3994 5.10059 -12.0996 18.6006 -12.0996 18.6006s-19.2998 -21.2998 -54.7998 -18.6006c-31.1006 2.30078 -41.1006 26.7002 -41.1006 26.7002s-20.7998 -14.3994 -79.0996 -25.8994c-26.1006 -2.90039 -44.6006 12.8994 -44.6006 12.8994
-c-2.39941 -2.39941 -18 -10.2002 -18 -10.2002s-22.2998 -10.2998 -30.8994 5.30078c-8.60059 15.5996 -3 63.6992 -3 63.6992h-1.60059s-12.8994 -26.2998 -19.5996 -49.8994c-6.7002 -23.6006 -15 -21.2002 -15 -21.2002s-15.2998 -1.40039 -18.7998 11.4004
-c-3.5 12.8994 5.59961 59.6992 5.59961 59.6992l-1.2998 -0.299805s-0.799805 1.40039 -12.5996 -23.5996c-20.1006 -48.9004 -24.9004 -50 -36.5 -47.9004c-11.6006 2.10059 -12.1006 16.7002 -12.1006 16.7002l-15.8994 -8.7998s-38.6006 -16.6006 -58.8008 -1.2998
-c-13.3994 10.1992 -18 22.1992 -19.5996 29.6992c0 0 -17 1.80078 -28.0996 6.10059c-11.1006 4.2998 0.0996094 18.2998 0.0996094 18.2998s3.5 5.2998 10 0s18.7998 -2.90039 18.7998 -2.90039c1 8.5 2.5 19.7002 7.7998 31.5c11 24.7002 27.6006 33 41.3008 33.3008
-c13.6992 0.199219 23.3994 -3.5 31.6992 -15.3008c18.6006 -45.8994 -49.3994 -69.1992 -49.3994 -69.1992s-1.7998 -12.1006 16.7002 -11.8008c18.5996 0.200195 46.7998 20.4004 46.7998 20.4004c1.2998 15.4004 12.0996 63.5 15 70.7002
-c2.89941 7.2002 14.2002 5.89941 14.2002 5.89941s8.89941 1.90039 10.5 -7.5c1.69922 -9.39941 -6.40039 -47.5996 -6.40039 -47.5996l1.2998 -1.59961c0.799805 3.69922 20.4004 36.5 20.4004 36.5s11.2998 19.5996 28.5 18.7998s-0.799805 -53.5 -0.799805 -53.5
-l1.2998 -1.60059l1.2998 2.40039c2.2002 5.90039 27.7002 44.5996 27.7002 44.5996s9.59961 11.3008 18.5 8.60059c8.7998 -2.60059 9.39941 -6.7002 9.89941 -14.2002s-7 -52.0996 -7 -52.0996s-4.2998 -29.2002 5.40039 -28.7002s20.2002 10.7002 20.2002 10.7002
-s7.5 57.5996 12.5996 105.1c5.10059 47.5 27.1006 79.5 27.1006 79.5s6.5 10 23.5 16.7002c11.1992 4 23.3994 1.2998 29.1992 -23.1006c9.5 -41 -23.2998 -87.8994 -36.8994 -105.199c5.89941 5.7998 15.7998 12.0996 27.2002 5.2998
-c40.2998 -25.2998 7.2998 -80.9004 7.2998 -80.9004c11.7998 3.7998 33 18 33 18s0.5 6.10059 0.700195 7.5c7.19922 41.2998 32 56.2002 36.5996 59.7002c4.7998 3.59961 47.0996 19.7998 49 -24s-52.9004 -59.0996 -52.9004 -59.0996s4.80078 -12.6006 25 -9.40039
-c20.2002 3.2002 43.3008 22.7998 43.3008 22.7998c0.799805 18 12.5996 61 15 67.2002c2.39941 6.2002 17.1992 6.5 18.7998 3c2.2002 -7 0.299805 -37.5996 0.299805 -37.5996l1.59961 0.5c5.90039 17.5 18.3008 31.1992 18.3008 31.1992s9.89941 9.7002 18 7.30078
-c8.09961 -2.30078 5.09961 -30.4004 5.09961 -30.4004s-4.2998 -30.7002 9.40039 -32c13.6992 -1.40039 29.2998 10.7002 29.2998 10.7002s9.59961 3.89941 10.7002 -6.7998zM61.9004 188.1c0 0 6.19922 -1.89941 19.8994 7.60059
-c13.7002 9.39941 16.4004 24.3994 9.10059 31.3994c-7.2002 6.90039 -28.2002 -7 -29 -39zM334.7 311.9c0 0 -15.9004 -54.5 -16.4004 -70.7002c0 0 44.5 72 40 96.2002c-4.5 24.1992 -23.5996 -25.5 -23.5996 -25.5zM357.5 173.5
-c12.5996 33.0996 -3.59961 45.5 -3.59961 45.5s-23.4004 12.9004 -33.3008 -20.2002c-9.89941 -33.0996 -6.39941 -44.8994 -6.39941 -44.8994s30.7002 -13.4004 43.2998 19.5996zM442.1 188.1c0 0 15.7002 -1.09961 26.4004 14.2002s1.2998 25.5 1.2998 25.5
-s-8.59961 11.1006 -19.5996 -9.09961c-11.1006 -20.1006 -8.10059 -30.6006 -8.10059 -30.6006z" />
-    <glyph glyph-name="font-awesome-flag" unicode="&#xf425;" 
-d="M444.373 88.5762c0 -7.16797 -6.14453 -10.2402 -13.3125 -13.3125c-28.6719 -12.2881 -59.3916 -23.5518 -92.1592 -23.5518c-46.0801 0 -67.584 28.6719 -122.88 28.6719c-39.9365 0 -81.9209 -14.3359 -115.713 -29.6953
-c-2.04785 -1.02441 -4.0957 -1.02441 -6.14355 -2.04883v-77.8232c0 -21.4053 -16.1221 -34.8164 -33.792 -34.8164c-19.4561 0 -34.8164 15.3604 -34.8164 34.8164v374.783c-13.3115 10.2402 -22.5273 26.624 -22.5273 45.0566c0 31.7441 25.5996 57.3438 57.3438 57.3438
-s57.3438 -25.5996 57.3438 -57.3438c0 -18.4326 -8.19141 -34.8164 -22.5273 -45.0566v-31.7432c4.12402 1.37402 58.7676 28.6719 114.688 28.6719c65.2705 0 97.6758 -27.6484 126.976 -27.6484c38.9121 0 81.9209 27.6484 92.1602 27.6484
-c8.19238 0 15.3604 -6.14453 15.3604 -13.3125v-240.64z" />
-    <glyph glyph-name="gitter" unicode="&#xf426;" horiz-adv-x="384" 
-d="M66.4004 125.5h-50.4004v322.5h50.4004v-322.5zM166.9 371.9v-435.9h-50.4004v435.9h50.4004zM267.5 371.9v-435.9h-50.4004v435.9h50.4004zM368 372v-247h-50.4004v247h50.4004z" />
-    <glyph glyph-name="hooli" unicode="&#xf427;" horiz-adv-x="640" 
-d="M144.5 96v16c12.2998 -6.59961 25.0996 -12.2002 38.2998 -16.7998zM202.2 101.3c29.5 -10.7002 55.3994 -13.5 75.2998 -13.2998c-24.7998 -7 -58.2002 -5.2998 -94.7002 7.2002l19.4004 0.799805v5.2998zM611.1 216.5c-16 0 -28.8994 13 -28.8994 28.9004
-c0 15.8994 13 24.5 28.8994 24.5c16 0 28.9004 -8.5 28.9004 -24.5s-13 -28.9004 -28.9004 -28.9004zM582.1 96v110.5h57.9004v-110.5h-57.9004zM508.4 96v168l57.8994 27.2998v-195.3h-57.8994zM477.4 215.4c18.0996 -18.1006 16.6992 -33.8008 16.7998 -52.6006
-c0 -18.7002 1.39941 -34.2998 -16.7998 -52.5c-18.1006 -18.2002 -50.4004 -17.0996 -50.4004 -17.0996s-32.2002 -1.10059 -50.4004 17.0996c-18.1992 18.2002 -16.7998 33.7998 -16.7998 52.5s-1.39941 34.4004 16.7998 52.6006
-c18.1006 18.1992 50.4004 17.0996 50.4004 17.0996s32.2002 1.09961 50.4004 -17.0996zM437.6 143.5v40.4004c0 8.7998 -7.2998 10.8994 -10.6992 10.8994c-3.40039 0 -10.7002 -2.2002 -10.7002 -10.8994v-40.4004c0 -3.59961 1.7998 -12.5 10.7002 -12.5
-c8.89941 0 10.6992 8.90039 10.6992 12.5zM331.4 215.4c18.1992 -18.1006 16.6992 -33.8008 16.6992 -52.3008c0 -18.6992 1.5 -34.2998 -16.6992 -52.5c-18.1006 -18.1992 -50.4004 -17.0996 -50.4004 -17.0996s-32.2002 -1.09961 -50.4004 17.0996
-c-18.1992 18.2002 -16.7998 33.8008 -16.7998 52.5c0 15.6006 -0.899414 29.1006 9.2998 43.7002c-16 11.7998 -58 37.4004 -99.8994 58.2998v-54.2998c8 13.7002 22.7002 22 38.5 21.9004c27.2002 0 40.5996 -18.7002 40.5996 -37.4004v-93.8994
-c-20.3994 7.5 -39.7002 17.3994 -57.7002 29.5996v48.7002c0 8.09961 -1.5 15 -10.5996 15s-10.7998 -11.2998 -10.7998 -18.2002v-29.7998l-4.5 3.59961c-22.9004 18.9004 -40.2998 35.6006 -53.4004 50.2998v-31c11 -9.7998 23.6006 -20.1992 38.4004 -31.3994
-c6.39941 -4.90039 12.8994 -9.40039 19.3994 -13.6006v-28.5996h-57.8994v73.7002c-86.7002 78 -61.7998 110.8 -61.7998 110.8c8.2998 18.2998 42.8994 22.2002 97.2998 0.0996094l22.5 10.6006v-20.7002c29.5996 -14.5996 63.8994 -31.5 102.1 -61.0996
-c1.60059 2.09961 3.40039 4.09961 5.2998 6c18.2002 18.1992 50.4004 17.0996 50.4004 17.0996s32.2002 1.09961 50.4004 -17.0996zM65.2002 264l29.2002 13.7002c-26.9004 10.0996 -50.9004 13.5 -64.4004 2.09961c-3.7002 -3.09961 -13.5 -24.5996 35.2002 -79.0996
-v63.2998zM291.7 143.5v40.4004c0 8.7998 -7.2998 10.8994 -10.7002 10.8994s-10.7002 -2.2002 -10.7002 -10.8994v-40.4004c0 -3.59961 1.7998 -12.5 10.7002 -12.5s10.7002 8.90039 10.7002 12.5z" />
-    <glyph glyph-name="strava" unicode="&#xf428;" horiz-adv-x="384" 
-d="M158.4 448l150.199 -292h-88.5l-61.6992 116.1l-62.2002 -116.1h-89.2002zM308.6 156h67.6006l-111.5 -220l-112.2 220h67.5996l44.6006 -88.2002z" />
-    <glyph glyph-name="stripe" unicode="&#xf429;" horiz-adv-x="640" 
-d="M165 303.3l0.0996094 -38.5h33.7002v-37.7998h-33.7002v-63.2002c0 -26.2002 28 -18 33.7002 -15.7002v-33.7998c-5.89941 -3.2002 -16.5996 -5.89941 -31.2002 -5.89941c-26.2998 0 -46.0996 17 -46.0996 43.2998l0.200195 142.399zM254.1 251.7
-c10.4004 19.0996 31.1006 15.2002 37.1006 13.0996v-40.7998c-5.7002 1.7998 -23.4004 4.5 -33.9004 -9.2998v-103.101h-44.2998v153.2h38.4004zM346.4 324v-36.2002l-44.6006 -9.5v36.2002zM44.9004 219.7c0 -20 67.8994 -10.5 67.8994 -63.4004
-c0 -32 -25.3994 -47.7998 -62.2998 -47.7998c-15.2998 0 -32 3 -48.5 10.0996v40c14.9004 -8.09961 33.9004 -14.1992 48.5996 -14.1992c9.90039 0 17 2.69922 17 10.8994c0 21.2002 -67.5 13.2002 -67.5 62.4004c0 31.3994 24 50.2002 60 50.2002
-c14.7002 0 29.4004 -2.30078 44.1006 -8.10059v-41.7998c-13.5 7.2998 -30.7002 11.4004 -44.2002 11.4004c-9.2998 -0.100586 -15.0996 -2.80078 -15.0996 -9.7002zM640 186.4c0 -4.30078 -0.400391 -13.6006 -0.599609 -15.9004h-86.9004
-c2 -20.7998 17.2002 -26.9004 34.5 -26.9004c17.5996 0 31.5 3.7002 43.5996 9.80078v-33.4004c-12.0996 -6.7002 -28 -11.5 -49.1992 -11.5c-43.2002 0 -73.5 24.7002 -73.5 78.2002c0 45.2002 25.6992 81.0996 67.8994 81.0996s64.2002 -35.8994 64.2002 -81.3994z
-M552.1 203.2h45.9004c0 20 -11.5996 28.3994 -22.5 28.3994c-11.0996 0 -23.4004 -8.39941 -23.4004 -28.3994zM439.2 267.8c31.2002 0 60.5996 -28.0996 60.5 -79.7002c0 -56.3994 -29 -79.5996 -60.7998 -79.5996c-15.5 0 -25 6.5 -31.4004 11.2002l-0.0996094 -50.2002
-l-44.4004 -9.40039v204.801h39.0996l2.30078 -11c6.19922 5.69922 17.3994 13.8994 34.7998 13.8994zM428.6 145.3c16.5 0 27.5 17.9004 27.4004 41.7998c0 23.2002 -11.2002 41.4004 -27.4004 41.4004c-10.1992 0 -16.5996 -3.7002 -21.1992 -8.7998l0.299805 -66
-c4.2998 -4.60059 10.5 -8.40039 20.8994 -8.40039zM301.9 111.6v153.2h44.5996v-153.2h-44.5996z" />
-    <glyph glyph-name="stripe-s" unicode="&#xf42a;" horiz-adv-x="384" 
-d="M155.3 293.4c0 -64.2002 218 -33.7002 218 -203.9c0 -102.6 -81.7002 -153.6 -200.3 -153.6c-55.2773 0.125 -108.22 11.7861 -156 32.3994v128.5c47.9004 -26 108.9 -45.5 156.1 -45.5c31.8008 0 54.7002 8.5 54.7002 34.9004c0 68.0996 -216.8 42.5 -216.8 200.399
-c0 101 77.0996 161.4 192.8 161.4c47.2998 0 94.5 -7.2002 141.8 -26.0996v-134.301c-43.3994 23.4004 -98.5 36.7002 -141.899 36.7002c-29.7998 0 -48.4004 -8.59961 -48.4004 -30.8994z" />
-    <glyph glyph-name="typo3" unicode="&#xf42b;" 
-d="M178.7 369.6c0 -66.3994 83.3994 -264.899 140.6 -264.899c6.90039 0 11.5 0 18.5 2.2998c-49.3994 -79.5 -110.399 -139 -146.7 -139c-77.2998 0 -184.1 234 -184.1 337.5c0 16.2998 3.90039 29.4004 9.2998 37.0996c27 32.4004 106.8 57.9004 176.3 66.4004
-c-8.5 -7 -13.8994 -14.7002 -13.8994 -39.4004zM301.5 416c71.7998 0 138.8 -11.5996 138.8 -52.5c0 -82.5996 -52.5 -182.3 -78.7998 -182.3c-47.9004 0 -101.7 132.1 -101.7 198.5c0 30.8994 11.6006 36.2998 41.7002 36.2998z" />
-    <glyph glyph-name="amazon-pay" unicode="&#xf42c;" horiz-adv-x="640" 
-d="M14 122.7c2.2998 4.2002 5.2002 4.89941 9.7002 2.5c10.3994 -5.60059 20.5996 -11.4004 31.2002 -16.7002c39.8447 -19.8691 83.1084 -35.7148 127.399 -46.2998c20.5771 -4.96484 41.8789 -8.95996 63.2002 -11.7998
-c26.4932 -3.56152 53.5293 -5.40039 80.9922 -5.40039c4.97266 0 9.06348 0.0800781 14.0078 0.200195c17.4004 0.399414 34.7998 1.7998 52.0996 3.7998c56.8682 6.62891 112.369 21.4697 163.301 42.7998c2.89941 1.2002 5.89941 2 9.09961 1.2002
-c6.7002 -1.7998 9 -9 4.09961 -13.9004c-2.98828 -2.74707 -6.16797 -5.2002 -9.59961 -7.39941c-30.7002 -21.1006 -64.2002 -36.4004 -99.5996 -47.9004c-24.0801 -7.76074 -49.5137 -13.7686 -75.1006 -17.5996c-17.4854 -2.67871 -35.0918 -4.29395 -53.2002 -4.7998
-c-0.847656 -0.0517578 -1.68066 -0.152344 -2.5 -0.300781h-21.0996c-0.818359 0.148438 -1.65234 0.249023 -2.5 0.300781c-3.59961 0.199219 -7.2002 0.299805 -10.7002 0.399414c-17.1182 0.776367 -33.8633 2.55957 -50.3994 5.2998
-c-27.5244 4.48633 -54.7959 11.6387 -80.4004 20.9004c-54.1943 19.5449 -103.535 49.2734 -145.6 87c-1.80078 1.59961 -3 3.7998 -4.40039 5.7002v2zM172 382.9c2.7998 0 5.5 0 8.2998 -0.100586c3.2998 -0.5 6.60059 -0.799805 9.7998 -1.5
-c21.3008 -4.39941 35.4004 -17.2998 43.9004 -36.8994c6.90039 -15.9004 8.59961 -32.7002 8.09961 -49.8008c-0.399414 -15.3994 -3.2998 -30.1992 -10.2998 -44.0996c-9.2002 -18.4004 -23.3994 -30.9004 -43.7998 -34.9004c-22.5 -4.39941 -43.0996 0.5 -61 15.4004
-c-0.5 0.5 -1.09961 1 -2.2002 1.90039v-72.4004c0 -1 0 -2 -0.0996094 -3c-0.299805 -3 -2.10059 -5 -5 -5c-7 -0.0996094 -14.1006 -0.0996094 -21.1006 0c-2.89941 0.0996094 -4.69922 2 -4.89941 5c-0.100586 1 -0.100586 2 -0.100586 3v209.3
-c0 6.90039 1.30078 8.2002 8.2002 8.2002h11.5c4.60059 0 6.90039 -2 7.60059 -6.59961c0.5 -2.7002 0.899414 -5.5 1.2998 -8.2002c0.0537109 -0.494141 0.193359 -0.970703 0.399414 -1.40039c2.5 1.90039 4.7002 3.7002 7.10059 5.40039
-c10.8691 7.98535 23.957 13.3662 38 15.0996zM124.6 341c0.100586 -14.0996 0 -28 0 -42.0996c0 -14.1006 0.100586 -28.1006 0 -42.2002c-0.00585938 -0.0849609 -0.0126953 -0.165039 -0.0126953 -0.250977c0 -1.29102 0.686523 -2.42188 1.71289 -3.04883
-c11.2002 -7.90039 23.4004 -13.3008 37.4004 -13.9004c20.2002 -0.900391 35.7998 7.2002 42.5996 28.5c3.2002 10 4 20.2002 4 30.5996c0 11.2002 -1 22.3008 -4.89941 33c-6.40039 17.5 -18.6006 24.8008 -33.5 25.9004
-c-16.8008 1.2998 -31.9004 -3.7002 -45.6006 -13.2002c-1.02734 -0.605469 -1.71289 -1.7168 -1.71289 -2.99414c0 -0.103516 0.00390625 -0.205078 0.0126953 -0.305664zM330.3 382.9c4 0 8 0 11.9004 0.0996094c3.59961 -0.5 7.2002 -0.799805 10.7998 -1.2998
-c7.7002 -1.10059 15.0996 -3.10059 21.7998 -7.10059c11.6006 -6.89941 17.1006 -17.5 19 -30.3994c0.597656 -3.93945 0.905273 -7.87793 0.905273 -11.9834c0 -0.305664 -0.00195312 -0.611328 -0.00488281 -0.916992v-106
-c0.00292969 -0.157227 0.00488281 -0.282227 0.00488281 -0.44043c0 -0.794922 -0.0351562 -1.58203 -0.105469 -2.35938c-0.0742188 -2.59277 -2.19336 -4.67969 -4.7998 -4.7002c-5.39941 -0.0996094 -10.8994 -0.0996094 -16.2998 0
-c-2.90039 0.100586 -4.7998 2.10059 -5.40039 5.2002c-0.699219 3.59961 -1.19922 7.2002 -1.7998 11c-0.583984 -0.296875 -1.11816 -0.665039 -1.59961 -1.09961c-11.7998 -9.7002 -25.2002 -16.1006 -40.2998 -18.4004c-13.1006 -2 -26 -1.2002 -37.9004 5.40039
-c-12.4004 6.89941 -19.4004 17.6992 -21.4004 31.6992c-1.5 10.5 -0.799805 20.9004 3.90039 30.7002c6.09961 12.6006 16.5 20.4004 29.4004 24.9004c10.7998 3.7998 22 4.5 33.2998 3.89941c10.9355 -0.680664 21.6748 -2.35449 32 -4.89941
-c0.399414 -0.100586 0.799805 0 1.2998 -0.100586c0.107422 0.453125 0.174805 0.921875 0.200195 1.40039c-0.100586 8.2998 0 16.5996 -0.299805 24.9004c-0.200195 5.89941 -1.60059 11.5996 -5.30078 16.3994c-4.19922 5.5 -10.2998 7.40039 -16.7998 8.40039
-c-12.5 1.89941 -24.8994 0.899414 -37.2002 -1.40039c-7.89941 -1.5 -15.6992 -3.7002 -23.5 -5.7002c-4.69922 -1.19922 -6.69922 0.100586 -6.7998 4.90039c-0.0996094 3.2998 0.100586 6.59961 0 9.90039c-0.0996094 3.89941 1.7002 6.5 5.2998 7.69922
-c5.90039 2 11.8008 4.2002 17.9004 5.80078c9.3125 2.27539 18.9932 3.68164 28.9004 4.09961c0.899414 0.0996094 1.89941 0.299805 2.89941 0.400391zM365.3 255.2c-0.0996094 4.7002 0.100586 9.2998 0.100586 14.0996s-0.100586 9.5 0 14.2998
-c0 1.60059 -0.5 2.40039 -2.10059 2.60059c-8.39941 1.09961 -16.5996 2.7002 -25 3.39941c-2.34766 0.273438 -4.66895 0.400391 -7.08984 0.400391c-6.15625 0 -12.1016 -0.90918 -17.71 -2.59961c-8 -2.60059 -13.9004 -7.30078 -16.4004 -15.6006
-c-0.914062 -3.01953 -1.40527 -6.22168 -1.40527 -9.53906c0 -3.43457 0.527344 -6.74707 1.50586 -9.86035c1.77637 -6.16602 6.41895 -11.1133 12.3994 -13.3008c5.40039 -2.19922 11.1006 -2.39941 16.8008 -1.7998c13.8994 1.40039 26.1992 6.7998 37.3994 14.9004
-c0.90918 0.594727 1.50684 1.61719 1.50684 2.7832c0 0.0732422 -0.00195312 0.145508 -0.00683594 0.216797zM625.2 125.8v-17.2998c-0.700195 -3.59961 -1.2998 -7.2998 -2.10059 -10.9004c-4.39941 -20.2998 -11.8994 -39.1992 -24.6992 -55.5996
-c-3.97559 -4.76562 -8.1582 -9.17773 -12.7002 -13.4004c-1.33008 -1.21289 -2.98242 -2.09082 -4.7998 -2.5c-2.90039 -0.699219 -4.60059 1.2002 -4.10059 4.10059c0.243164 1.03027 0.584961 2.04785 1 3c5.7998 14.7998 11.7002 29.7002 15.7998 45.0996
-c2.10059 7.60059 3.90039 15.2998 3.5 23.2998c-0.199219 5.2002 -2.5 9 -7.59961 10.4004c-4.60352 1.3623 -9.46191 2.29004 -14.4004 2.7002c-11.3994 0.899414 -22.8994 0.200195 -34.2998 -0.900391c-7.7998 -0.799805 -15.5 -1.7002 -23.2998 -2.5
-c-0.607422 -0.0693359 -1.20215 -0.104492 -1.82715 -0.104492c-0.125 0 -0.249023 0.00195312 -0.373047 0.00488281c-1.5 -0.100586 -3.2002 0.299805 -3.59961 1.7998c-0.129883 0.450195 -0.197266 0.930664 -0.197266 1.42285
-c0 0.939453 0.253906 1.82031 0.697266 2.57715c1.00879 1.39258 2.25 2.56836 3.7002 3.5c12.0996 8.2998 25.6992 12.9004 40 15.5996c8.68945 1.59961 17.376 2.43945 26.5254 2.43945c4.26953 0 8.49707 -0.182617 12.6738 -0.539062
-c7.24512 -0.454102 14.3311 -1.80273 21 -3.90039c4.30078 -1.39941 8.10059 -3.2998 9.10059 -8.2998zM493.1 249c0.300781 -0.700195 0.501953 -1.2998 0.902344 -2.40039c2.59961 7.7002 5.2002 15 7.7002 22.2002l34.7998 100
-c0.5 1.40039 1.09961 2.7002 1.59961 4.10059c0.980469 3.02734 3.81543 5.21777 7.16699 5.21777c0.179688 0 0.357422 -0.00585938 0.533203 -0.0185547c6.60059 0 13.2998 0.100586 19.9004 0c2.7998 0 4.09961 -1.59961 3.7002 -4.39941
-c-0.335938 -1.89648 -0.884766 -3.76465 -1.60059 -5.5c-23.3662 -59.9336 -46.8994 -119.801 -70.5996 -179.601c-2.58691 -6.37598 -5.6875 -12.5654 -9.2002 -18.3994c-8.7998 -14.9004 -22.4004 -21.7998 -39.5 -21.4004c-5.7666 0.225586 -11.3984 0.905273 -16.9004 2
-c-5.39941 0.900391 -7.2998 3.40039 -7.39941 8.90039c-0.100586 3.2666 -0.100586 6.56641 0 9.89941c0.0996094 3.5 1.7998 5 5.2002 4.80078c2.5 -0.200195 5 -0.800781 7.5 -1c1.57227 -0.178711 3.11328 -0.264648 4.7334 -0.264648
-c3.68457 0 7.25879 0.473633 10.666 1.36426c7.2002 1.90039 12.2002 6.7998 15.2002 13.2998c3.40039 7.2998 6 15 9.2998 22.2998c1.90039 4.2002 1.5 7.7002 -0.200195 11.8008c-19.7998 48.5 -39.5 97 -59.1006 145.5
-c-0.770508 1.95117 -1.41797 4.02051 -1.90039 6.09961c-0.5 2.5 0.700195 4.5 3.2002 4.5c7.7002 0.0996094 15.2998 0 22.9004 -0.0996094c3.2002 0 5.2998 -1.90039 6.39941 -4.80078c2.10059 -5.59961 4.30078 -11.1992 6.30078 -16.8994
-c12.8994 -35.7666 25.7988 -71.5 38.6982 -107.2z" />
-    <glyph glyph-name="cc-amazon-pay" unicode="&#xf42d;" horiz-adv-x="576" 
-d="M124.7 246.2c0.0996094 11.7998 0 23.5 0 35.2998v35.2998c0 1.2998 0.399414 2 1.39941 2.7002c11.5 8 24.1006 12.0996 38.2002 11.0996c12.5 -0.899414 22.7002 -7 28.1006 -21.6992c3.2998 -8.90039 4.09961 -18.2002 4.09961 -27.7002
-c0 -8.7002 -0.700195 -17.2998 -3.40039 -25.6006c-5.69922 -17.7998 -18.6992 -24.6992 -35.6992 -23.8994c-11.7002 0.5 -21.9004 5 -31.4004 11.7002c-0.900391 0.799805 -1.40039 1.59961 -1.2998 2.7998zM279.6 231.6c-5.19922 2 -8.7998 5.7002 -10.3994 11.2002
-c-1.7002 5.40039 -1.7002 10.7998 -0.100586 16.2002c2 6.90039 7 10.9004 13.7002 13.0996c6.7998 2.2002 13.7998 2.5 20.7998 1.90039c7 -0.700195 13.9004 -2 20.9004 -2.90039c1.40039 -0.199219 1.7998 -0.799805 1.7998 -2.19922c-0.0996094 -4 0 -8 0 -12
-c0 -3.90039 -0.0996094 -7.90039 0 -11.8008c0 -1.19922 -0.399414 -1.89941 -1.2998 -2.5c-9.40039 -6.7998 -19.7002 -11.2998 -31.2998 -12.5c-4.7998 -0.5 -9.5 -0.299805 -14.1006 1.5zM576 368v-352c0 -26.5 -21.5 -48 -48 -48h-480c-26.5 0 -48 21.5 -48 48v352
-c0 26.5 21.5 48 48 48h480c26.5 0 48 -21.5 48 -48zM368.5 344.1c0.400391 -1.69922 0.900391 -3.39941 1.59961 -5.09961c16.5 -40.5996 32.9004 -81.2998 49.5 -121.9c1.40039 -3.5 1.7002 -6.39941 0.200195 -9.89941
-c-2.7998 -6.2002 -4.89941 -12.6006 -7.7998 -18.7002c-2.59961 -5.5 -6.7002 -9.5 -12.7002 -11.2002c-4.2002 -1.09961 -8.5 -1.2998 -12.8994 -0.899414c-2.10059 0.199219 -4.2002 0.699219 -6.30078 0.799805c-2.7998 0.200195 -4.19922 -1.10059 -4.2998 -4
-c-0.0996094 -2.7998 -0.0996094 -5.60059 0 -8.2998c0.100586 -4.60059 1.60059 -6.7002 6.2002 -7.5c4.7002 -0.800781 9.40039 -1.60059 14.2002 -1.7002c14.2998 -0.299805 25.7002 5.39941 33.0996 17.8994c2.90039 4.90039 5.60059 10.1006 7.7002 15.4004
-c19.7998 50.0996 39.5 100.3 59.2002 150.5c0.599609 1.5 1.09961 3 1.2998 4.59961c0.400391 2.40039 -0.700195 3.60059 -3.09961 3.7002c-5.60059 0.100586 -11.1006 0 -16.7002 0c-3.10059 0 -5.2998 -1.39941 -6.40039 -4.2998
-c-0.399414 -1.09961 -0.899414 -2.2998 -1.2998 -3.40039l-29.0996 -83.6992c-2.10059 -6.10059 -4.2002 -12.1006 -6.5 -18.6006c-0.400391 0.900391 -0.600586 1.40039 -0.800781 1.90039c-10.7998 29.8994 -21.5996 59.8994 -32.3994 89.7998
-c-1.7002 4.7002 -3.5 9.5 -5.2998 14.2002c-0.900391 2.5 -2.7002 4 -5.40039 4c-6.40039 0.0996094 -12.7998 0.200195 -19.2002 0.0996094c-2.2002 0 -3.2998 -1.59961 -2.7998 -3.7002zM242.4 242c1.69922 -11.7002 7.59961 -20.7998 18 -26.5996
-c9.89941 -5.5 20.6992 -6.2002 31.6992 -4.60059c12.7002 1.90039 23.9004 7.2998 33.8008 15.5c0.399414 0.299805 0.799805 0.600586 1.39941 1c0.5 -3.2002 0.900391 -6.2002 1.5 -9.2002c0.5 -2.59961 2.10059 -4.2998 4.5 -4.39941
-c4.60059 -0.100586 9.10059 -0.100586 13.7002 0c2.2998 0.0996094 3.7998 1.59961 4 3.89941c0.0996094 0.800781 0.0996094 1.60059 0.0996094 2.30078v88.7998c0 3.59961 -0.199219 7.2002 -0.699219 10.7998c-1.60059 10.7998 -6.2002 19.7002 -15.9004 25.4004
-c-5.59961 3.2998 -11.7998 5 -18.2002 5.89941c-3 0.400391 -6 0.700195 -9.09961 1.10059h-10c-0.799805 -0.100586 -1.60059 -0.300781 -2.5 -0.300781c-8.2002 -0.399414 -16.2998 -1.39941 -24.2002 -3.5c-5.09961 -1.2998 -10 -3.19922 -15 -4.89941
-c-3 -1 -4.5 -3.2002 -4.40039 -6.5c0.100586 -2.7998 -0.0996094 -5.60059 0 -8.2998c0.100586 -4.10059 1.80078 -5.2002 5.7002 -4.10059c6.5 1.7002 13.1006 3.5 19.7002 4.7998c10.2998 1.90039 20.7002 2.7002 31.0996 1.2002
-c5.40039 -0.799805 10.5 -2.39941 14.1006 -7c3.09961 -4 4.2002 -8.7998 4.39941 -13.7002c0.300781 -6.89941 0.200195 -13.8994 0.300781 -20.7998c0 -0.399414 -0.100586 -0.700195 -0.200195 -1.2002c-0.400391 0 -0.799805 0 -1.10059 0.100586
-c-8.7998 2.09961 -17.6992 3.59961 -26.7998 4.09961c-9.5 0.5 -18.8994 -0.0996094 -27.8994 -3.2002c-10.8008 -3.7998 -19.5 -10.2998 -24.6006 -20.7998c-4.09961 -8.2998 -4.59961 -17 -3.39941 -25.7998zM98.7002 341.1v-175.3c0 -0.799805 0 -1.7002 0.0996094 -2.5
-c0.200195 -2.5 1.7002 -4.09961 4.10059 -4.2002c5.89941 -0.0996094 11.7998 -0.0996094 17.6992 0c2.5 0 4 1.7002 4.10059 4.10059c0.0996094 0.799805 0.0996094 1.7002 0.0996094 2.5v60.7002c0.900391 -0.700195 1.40039 -1.2002 1.90039 -1.60059
-c15 -12.5 32.2002 -16.5996 51.0996 -12.8994c17.1006 3.39941 28.9004 13.8994 36.7002 29.1992c5.7998 11.6006 8.2998 24.1006 8.7002 37c0.5 14.3008 -1 28.4004 -6.7998 41.7002c-7.10059 16.4004 -18.9004 27.2998 -36.7002 30.9004
-c-2.7002 0.599609 -5.5 0.799805 -8.2002 1.2002h-7c-1.2002 -0.200195 -2.40039 -0.300781 -3.59961 -0.5c-11.7002 -1.40039 -22.3008 -5.80078 -31.8008 -12.7002c-2 -1.40039 -3.89941 -3 -5.89941 -4.5c-0.100586 0.5 -0.299805 0.799805 -0.400391 1.2002
-c-0.399414 2.2998 -0.700195 4.59961 -1.09961 6.89941c-0.600586 3.90039 -2.5 5.5 -6.40039 5.60059h-9.7002c-5.89941 0.0996094 -6.89941 -1 -6.89941 -6.80078zM493.6 109c-2.69922 0.700195 -5.09961 0 -7.59961 -1c-43.9004 -18.4004 -89.5 -30.2002 -136.8 -35.7998
-c-14.5 -1.7002 -29.1006 -2.7998 -43.7002 -3.2002c-26.5996 -0.700195 -53.2002 0.799805 -79.5996 4.2998c-17.8008 2.40039 -35.5 5.7002 -53 9.90039c-37 8.89941 -72.7002 21.7002 -106.7 38.7998c-8.7998 4.40039 -17.4004 9.2998 -26.1006 14
-c-3.7998 2.09961 -6.19922 1.5 -8.19922 -2.09961v-1.7002c1.19922 -1.60059 2.19922 -3.40039 3.69922 -4.7998c36 -32.2002 76.6006 -56.5 122 -72.9004c21.9004 -7.90039 44.4004 -13.7002 67.3008 -17.5c14 -2.2998 28 -3.7998 42.1992 -4.5
-c3 -0.0996094 6 -0.200195 9 -0.400391c0.700195 0 1.40039 -0.199219 2.10059 -0.299805h17.7002c0.699219 0.100586 1.39941 0.299805 2.09961 0.299805c14.9004 0.400391 29.7998 1.80078 44.5996 4c21.4004 3.2002 42.4004 8.10059 62.9004 14.7002
-c29.5996 9.60059 57.7002 22.4004 83.4004 40.1006c2.7998 1.89941 5.69922 3.7998 8 6.19922c4.2998 4.40039 2.2998 10.4004 -3.30078 11.9004zM544 136.7c-0.799805 4.2002 -4 5.7998 -7.59961 7c-5.7002 1.89941 -11.6006 2.7998 -17.6006 3.2998
-c-11 0.900391 -22 0.400391 -32.7998 -1.59961c-12 -2.2002 -23.4004 -6.10059 -33.5 -13.1006c-1.2002 -0.799805 -2.40039 -1.7998 -3.09961 -3c-0.600586 -0.899414 -0.700195 -2.2998 -0.5 -3.39941c0.299805 -1.30078 1.69922 -1.60059 3 -1.5
-c0.599609 0 1.19922 0 1.7998 0.0996094l19.5 2.09961c9.59961 0.900391 19.2002 1.5 28.7998 0.800781c4.09961 -0.300781 8.09961 -1.2002 12 -2.2002c4.2998 -1.10059 6.2002 -4.40039 6.40039 -8.7002c0.299805 -6.7002 -1.2002 -13.0996 -2.90039 -19.5
-c-3.5 -12.9004 -8.2998 -25.4004 -13.2998 -37.7998c-0.299805 -0.799805 -0.700195 -1.7002 -0.799805 -2.5c-0.400391 -2.5 1 -4 3.39941 -3.5c1.40039 0.299805 3 1.09961 4 2.09961c3.7002 3.60059 7.5 7.2002 10.6006 11.2002
-c10.6992 13.7998 17 29.5996 20.6992 46.5996c0.700195 3 1.2002 6.10059 1.7002 9.10059c0.200195 4.7002 0.200195 9.59961 0.200195 14.5z" />
-    <glyph glyph-name="ethereum" unicode="&#xf42e;" horiz-adv-x="320" 
-d="M311.9 187.2l-151.9 -92.7998l-152 92.7998l152 260.8zM160 64.5996l152 92.8008l-152 -221.4l-152 221.4z" />
-    <glyph glyph-name="korvue" unicode="&#xf42f;" horiz-adv-x="446" 
-d="M386.5 414c32.7002 0 59.5 -26.7998 59.5996 -59.5v-327c0 -32.7002 -26.5 -59.5 -59.5 -59.5h-327.1c-32.7002 0 -59.5 26.7998 -59.5 59.4004v327.1c0 32.7002 26.7998 59.5 59.5 59.5h327zM87.0996 327.2v-132h187.5l81.2002 132h-110.899l-61.8008 -116v116h-96z
-M248.9 55.0996h118.399l-88.5996 130.801h-191.5v-130.801h96v113.601z" />
-    <glyph glyph-name="elementor" unicode="&#xf430;" 
-d="M425.6 416c12.4004 0 22.4004 -10 22.4004 -22.4004v-403.199c0 -12.4004 -10 -22.4004 -22.4004 -22.4004h-403.199c-12.4004 0 -22.4004 10 -22.4004 22.4004v403.199c0 12.4004 10 22.4004 22.4004 22.4004h403.199zM164.3 92.5v199h-39.7998v-199h39.7998z
-M323.6 92.5v39.7998h-119.5v-39.7998h119.5zM323.6 172.1v39.8008h-119.5v-39.8008h119.5zM323.6 251.8v39.7998h-119.5v-39.7998h119.5z" />
-    <glyph glyph-name="youtube-square" unicode="&#xf431;" 
-d="M186.8 245.9l95.2002 -54.1006l-95.2002 -54.0996v108.2zM448 368v-352c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h352c26.5 0 48 -21.5 48 -48zM406 191.7c0 0 0 59.5996 -7.59961 88.2002
-c-4.2002 15.7998 -16.5 28.1992 -32.2002 32.3994c-28.2998 7.7002 -142.2 7.7002 -142.2 7.7002s-113.9 0 -142.2 -7.7002c-15.7002 -4.2002 -28 -16.5996 -32.2002 -32.3994c-7.59961 -28.5 -7.59961 -88.2002 -7.59961 -88.2002s0 -59.6006 7.59961 -88.2002
-c4.2002 -15.7998 16.5 -27.7002 32.2002 -31.9004c28.2998 -7.59961 142.2 -7.59961 142.2 -7.59961s113.9 0 142.2 7.7002c15.7002 4.2002 28 16.0996 32.2002 31.8994c7.59961 28.5 7.59961 88.1006 7.59961 88.1006z" />
-    <glyph glyph-name="flipboard" unicode="&#xf44d;" 
-d="M0 416h448v-448h-448v448zM358.4 236.8v89.6006h-268.801v-268.801h89.6006v89.6006h89.5996v89.5996h89.6006z" />
-    <glyph glyph-name="hips" unicode="&#xf452;" horiz-adv-x="640" 
-d="M251.6 290.4v-201.801c0 -1.89941 -0.899414 -2.7998 -2.7998 -2.7998h-40.8994c-1.60059 0 -2.7002 1.40039 -2.7002 2.7998v201.801c0 1.39941 1.09961 2.7998 2.7002 2.7998h40.8994c1.90039 0 2.7998 -0.900391 2.7998 -2.7998zM156.5 280
-c18.7002 -13.5 28 -31.9004 28 -55.2998v-136.101c0 -1.89941 -0.900391 -2.7998 -2.7002 -2.7998h-27.2998c-9.09961 0 -16.4004 7.2998 -16.4004 16.2998v122.601c0 0.899414 2.7002 27 -45.7998 27c-48.5996 0 -45.7998 -26.2002 -45.7998 -27v-136.101
-c0 -1.89941 -0.900391 -2.7998 -2.7998 -2.7998h-41c-1.7998 0 -2.7002 0.900391 -2.7002 2.7998v279.2c0 1.7998 0.900391 2.7002 2.7002 2.7002h40.8994c1.90039 0 2.80078 -0.900391 2.80078 -2.7002v-81.2002c15.1992 7.7002 31.6992 11.5 49.7998 11.4004
-c24 -0.0996094 44.2002 -6.2002 60.2998 -18zM634.9 169.9c5.5 -12.6006 6.59961 -25.6006 3.09961 -39.1006c-9.59961 -36.8994 -44.9004 -45.5 -45.5996 -45.7998c-10.5 -3.09961 -23.6006 -4.2998 -36.3008 -4.2998c-16.5996 0 -32.5996 2.7002 -48.1992 8.2002
-c-9.7002 3.39941 -14.6006 10.2998 -14.6006 20.6992v34.4004c0 2.09961 2.2998 3.7002 4.40039 2.2998c13.7002 -10.2002 34.0996 -19.0996 58.3994 -19.0996c23.3008 0 32.8008 4.5 36.5 13.5996c3 7.90039 -0.599609 16.1006 -12.1992 21.2002l-53.6006 23.5
-c-21.3994 9.40039 -33.7998 24 -37.2002 43.5996c-5.69922 33.7002 22.2002 53.3008 22.7002 53.7002c13.2002 9.60059 32 15.4004 58.5 15.4004c19 0 37.4004 -3.2998 55.1006 -9.90039c1.2998 -0.5 1.89941 -1.2998 1.89941 -2.59961v-44.7002
-c0 -2.09961 -2.2998 -3.40039 -4 -2.40039c-39.7002 20.7002 -76.5996 12.3008 -84 6.80078c-6.59961 -4.90039 -6 -12.5 2.60059 -16.1006l57.5996 -25.2998c16.5 -7.09961 28.0996 -18.4004 34.9004 -34.0996zM376.2 298.2c60.3994 0 108.7 -48.2998 108.6 -108.601
-c0 -60.1992 -48.2002 -108.699 -108.7 -108.699c-21.8994 0 -41.1992 6.39941 -57.6992 19.0996v-88.7998c0 -1.7998 -0.900391 -2.7002 -2.80078 -2.7002h-40.8994c-2.10059 0 -2.7002 1.90039 -2.7002 2.7002v183.5c0 83.3994 72.5 103.5 104.2 103.5zM376.2 127.3
-c34.8994 0 62.2998 27.9004 62.2002 62.2002c0 34.5996 -27.7002 62.2002 -62.2002 62.2002c-34.6006 0 -62.2002 -27.7002 -62.2002 -62.2002c0 -17.2002 6 -31.7998 18.2002 -44c12.0996 -12.0996 26.7998 -18.2002 44 -18.2002zM228.3 375.5
-c15.9004 0 28.9004 -12.7002 28.9004 -28.9004c0 -15.7998 -12.7002 -28.8994 -28.9004 -28.8994s-28.8994 13.2998 -28.8994 28.8994c0.0996094 16 13 28.9004 28.8994 28.9004z" />
-    <glyph glyph-name="php" unicode="&#xf457;" horiz-adv-x="640" 
-d="M320 343.5c-171.3 0 -303.2 -72.2002 -303.2 -151.5s131.8 -151.5 303.2 -151.5c171.3 0 303.2 72.2002 303.2 151.5s-131.8 151.5 -303.2 151.5zM320 360.3c176.7 0 320 -75.2998 320 -168.3s-143.3 -168.3 -320 -168.3s-320 75.2998 -320 168.3s143.3 168.3 320 168.3z
-M218.2 205.5c7.39941 38.4004 -18.4004 34.2998 -56.4004 34.2998l-13.7002 -70.5996c34.3008 0 62.2002 -4.2002 70.1006 36.2998zM97.4004 97.7002l32.6992 168.7h70.7002c21.2002 0 36.7998 -5.5 46.5 -16.7002c18.6006 -21.4004 11.7998 -64.1006 -14.2998 -88.1006
-c-23.5996 -22.0996 -49.0996 -19.0996 -90.2002 -19.0996l-8.7002 -44.7998h-36.6992zM283.1 311.3h36.5l-8.69922 -44.7998c31.5 0 60.6992 2.2998 74.7998 -10.7002c14.7998 -13.5996 7.7002 -31 -8.2998 -113.1h-37c15.3994 79.3994 18.2998 86 12.6992 92
-c-5.39941 5.7998 -17.6992 4.59961 -47.3994 4.59961l-18.7998 -96.5996h-36.5zM505 205.5c7.40039 38.4004 -18.2002 34.2998 -56.4004 34.2998l-13.6992 -70.5996c33.3994 0 62.0996 -4.7998 70.0996 36.2998zM384.2 97.7002l32.7998 168.7h70.7002
-c21.2002 0 36.7998 -5.5 46.5 -16.7002c18.5996 -21.4004 11.7998 -64.1006 -14.2998 -88.1006c-23.1006 -21.5996 -47 -19.0996 -90.2002 -19.0996l-8.7002 -44.7998h-36.7998z" />
-    <glyph glyph-name="quinscape" unicode="&#xf459;" horiz-adv-x="512" 
-d="M313.6 -26.5996c4.40039 -4.40039 8.10059 -9 13.3008 -12.5c-21.7051 -6.54492 -44.666 -10.1084 -68.4922 -10.1084c-0.636719 0 -1.27246 0.00292969 -1.9082 0.0078125c-135 0 -244.5 109.5 -244.5 244.601c0 135.1 109.4 244.6 244.5 244.6
-s244.6 -109.5 244.6 -244.6c0 -35.3008 -6.89941 -67.4004 -20.2998 -97.7002c-3 5.7002 -7.2002 10.2002 -11.2002 15.2998c11.2002 93.5 -62.0996 176.6 -157 176.6c-87.2578 0 -158.1 -70.8418 -158.1 -158.1s70.8418 -158.1 158.1 -158.1h1zM313.5 -26.5
-l0.400391 -0.0996094zM391.9 142.4c54.7393 0 99.1992 -44.4414 99.1992 -99.1797v-0.0205078c0 -54.75 -44.4492 -99.2002 -99.1992 -99.2002s-99.2002 44.4502 -99.2002 99.2002s44.4502 99.2002 99.2002 99.2002z" />
-    <glyph glyph-name="readme" unicode="&#xf4d5;" horiz-adv-x="576" 
-d="M528.3 401.5c26.4004 -0.200195 47.7002 -21.7002 47.7002 -48.0996v-245.7c0 -26.5 -21.5 -48 -48 -48h-89.7002c-102.1 0 -132.6 -24.4004 -147.3 -75c-0.799805 -2.7998 -5.2998 -2.7998 -6 0c-14.5996 50.5996 -45.0996 75 -147.3 75h-89.7002
-c-26.5 0 -48 21.5 -48 48v245.8c0 26.5 21.5 48 48 48h139.7c48.0996 0 89.7998 -33.2998 100.399 -80.2998c10.5 47 52.3008 80.2998 100.4 80.2998h139.8zM242 136.1h0.0996094v22.9004c0 2 -1.59961 3.5 -3.5 3.5h-160.399c-2 0 -3.5 -1.59961 -3.5 -3.5v-22.9004
-c0 -2 1.59961 -3.5 3.5 -3.5h160.3c2 0 3.5 1.60059 3.5 3.5zM242 197h0.0996094v22.9004c0 2 -1.59961 3.5 -3.5 3.5h-160.399c-2 0 -3.5 -1.60059 -3.5 -3.5v-22.9004c0 -2 1.59961 -3.5 3.5 -3.5h160.3c2 0 3.5 1.59961 3.5 3.5zM242 257.9h0.0996094v22.8994
-c0 2 -1.59961 3.5 -3.5 3.5h-160.399c-2 0 -3.5 -1.59961 -3.5 -3.5v-22.8994c0 -2 1.59961 -3.5 3.5 -3.5h160.3c2 0 3.5 1.59961 3.5 3.5zM501.3 136.2h0.100586v22.8994c0 2 -1.60059 3.5 -3.5 3.5h-160.4c-2 0 -3.5 -1.59961 -3.5 -3.5v-22.8994
-c0 -2 1.59961 -3.5 3.5 -3.5h160.3c2 0 3.5 1.59961 3.5 3.5zM501.3 197.1h0.100586v22.9004c0 2 -1.60059 3.5 -3.5 3.5h-160.4c-2 0 -3.5 -1.59961 -3.5 -3.5v-22.9004c0 -2 1.59961 -3.5 3.5 -3.5h160.3c2 0 3.5 1.60059 3.5 3.5zM501.3 258h0.100586v22.7998
-c0 2 -1.60059 3.5 -3.5 3.5h-160.4c-2 0 -3.5 -1.59961 -3.5 -3.5v-22.7998c0 -2 1.59961 -3.5 3.5 -3.5h160.3c2 0 3.5 1.59961 3.5 3.5z" />
-    <glyph glyph-name="java" unicode="&#xf4e4;" horiz-adv-x="384" 
-d="M277.74 135.1c-94.5 -24.8994 -277 -13.2998 -224.5 12.1006c44.5 21.3994 80.5996 19 80.5996 19s-93.0996 -22.1006 -33 -30.1006c25.4004 -3.39941 76 -2.59961 123.101 1.30078c38.5 3.19922 77.1992 10.1992 77.1992 10.1992s-13.5996 -5.7998 -23.3994 -12.5z
-M192.34 167.2c-48.5 43.7998 -84.0996 82.2998 -60.2002 118.2c35.1006 52.5 132.2 78.0996 110.7 162.6c0 0 53.1602 -53.2002 -50.5 -135c-83.0996 -65.5996 -19 -103.1 0 -145.8zM306.94 343.4c-111.601 -64.7002 -91 -83.5 -64.1006 -121.301
-c28.7998 -40.5 -33.8994 -72.8994 -33.8994 -72.8994s31.1992 25.5996 6.5 54c-83.7002 96.3994 91.5996 140.2 91.5 140.2zM300.84 72.9004c96.1006 49.8994 51.6006 97.8994 20.6006 91.3994c-3.75195 -0.703125 -7.4834 -1.72656 -11 -3
-c2.01367 2.86523 4.85742 5.07227 8.19922 6.2998c61.3008 21.6006 108.5 -63.5996 -19.7998 -97.2998c0.78125 0.773438 1.44922 1.63965 2 2.60059zM348 10.5996c53 -23.8994 -115.16 -72 -319.4 -38.7998c-74.8994 12.1006 36.1006 54.5 56.4004 40.2002
-c0 0 -6.5 0.400391 -17.7002 -2c-10.7998 -2.2998 -45.0996 -13.4004 -26.7998 -21.2998c50.7998 -22.1006 233.7 -16.7998 291.6 0.700195c30.4004 9.2998 15.9004 21.1992 15.9004 21.1992zM124.44 52c0 0 -19.6006 -11.4004 13.8994 -15.2002
-c40.6006 -4.59961 61.2998 -4 106 4.5c8.91016 -5.33594 18.4062 -9.99512 28.2002 -13.7998c-100.2 -42.9004 -226.8 2.5 -148.1 24.5zM304.24 -45.2002c69.7998 13.2002 76.2002 29.7002 76.2002 29.7002c-3.30078 -43.5996 -144.9 -52.7998 -237.101 -46.9004
-c-60.5996 3.90039 -72.3994 13.7002 -72.3994 13.6006c57.5 -9.5 154.6 -11.2002 233.3 3.59961zM260.64 95c6.01562 -5.61719 13.1807 -10.0039 21.1006 -12.7998c-121.3 -35.5 -256.3 -2.90039 -169.5 25.8994c0 0 -21.9004 -16.1992 11.5996 -19.6992
-c43.2998 -4.5 77.6006 -4.80078 136.8 6.59961z" />
-    <glyph glyph-name="pied-piper-hat" unicode="&#xf4e5;" horiz-adv-x="640" 
-d="M640 423.1c-80.7998 -53.5996 -89.4004 -92.5 -96.4004 -104.399c-6.69922 -12.2002 -11.6992 -60.2998 -23.2998 -83.6006c-11.7002 -23.5996 -54.2002 -42.1992 -66.0996 -50c-11.7002 -7.7998 -28.2998 -38.0996 -41.9004 -64.1992
-c-108.1 4.39941 -167.399 -38.8008 -259.2 -93.6006c29.4004 9.7002 43.3008 16.7002 43.3008 16.7002c94.1992 36 139.3 68.2998 281.1 49.2002c1.09961 0 1.90039 -0.600586 2.7998 -0.799805c3.90039 -2.2002 5.2998 -6.90039 3.10059 -10.8008l-53.9004 -95.7998
-c-2.5 -4.7002 -7.7998 -7.2002 -13.0996 -6.09961c-126.801 23.7998 -226.9 -17.2998 -318.9 -18.6006c-73.4004 -1.09961 -97.5 33.5 -97.5 35.1006c0 1.09961 0.599609 1.7002 1.7002 1.7002c0 0 38.2998 0 103.1 15.2998c73.6006 140.3 139.2 189.399 210.601 189.399
-c0 0 71.6992 0 90.5996 -61.8994c22.7998 39.7002 28.2998 49.2002 28.2998 49.2002c5.2998 9.39941 35 77.1992 86.4004 141.399c51.5 64 90.3994 79.9004 119.3 91.7998z" />
-    <glyph glyph-name="creative-commons-by" unicode="&#xf4e7;" horiz-adv-x="496" 
-d="M314.9 253.6v-101.399h-28.3008v-120.5h-77.0996v120.399h-28.2998v101.5c0 4.40039 1.59961 8.2002 4.59961 11.3008c3.10059 3.09961 6.90039 4.69922 11.2998 4.69922h101.9c4.09961 0 7.7998 -1.59961 11.0996 -4.69922
-c3.10059 -3.2002 4.80078 -6.90039 4.80078 -11.3008zM213.4 317.3c0 23.2998 11.5 35 34.5 35s34.5 -11.7002 34.5 -35c0 -23 -11.5 -34.5 -34.5 -34.5s-34.5 11.5 -34.5 34.5zM247.6 440c141.801 0 248.4 -110.1 248.4 -248c0 -147.1 -118.5 -248 -248.4 -248
-c-134 0 -247.6 109.5 -247.6 248c0 132.9 104.7 248 247.6 248zM248.4 395.3c-118.2 0 -203.7 -97.8994 -203.7 -203.3c0 -109.8 91.2002 -202.8 203.7 -202.8c103.199 0 202.8 81.0996 202.8 202.8c0.0996094 113.8 -90.2002 203.3 -202.8 203.3z" />
-    <glyph glyph-name="creative-commons-nc" unicode="&#xf4e8;" horiz-adv-x="496" 
-d="M247.6 440c139.801 0 248.4 -107.9 248.4 -248c0 -147.2 -118.5 -248 -248.4 -248c-134.5 0 -247.6 110.8 -247.6 248c0 132.9 104.7 248 247.6 248zM55.7998 258.9c-7.39941 -20.4004 -11.0996 -42.7002 -11.0996 -66.9004c0 -110.9 92.0996 -202.4 203.7 -202.4
-c122.399 0 177.199 101.801 178.5 104.101l-93.4004 41.5996c-7.7002 -37.0996 -41.2002 -53 -68.2002 -55.3994v-38.1006h-28.7998v38.2002c-27.5 0.299805 -52.5996 10.2002 -75.2998 29.7002l34.0996 34.5c31.7002 -29.4004 86.4004 -31.7998 86.4004 2.2002
-c0 6.19922 -2.2002 11.1992 -6.60059 15.0996c-14.1992 6 -1.7998 0.0996094 -219.3 97.4004zM248.4 395.7c-38.4004 0 -112.4 -8.7002 -170.5 -93l94.7998 -42.5c10 31.2998 40.3994 42.8994 63.7998 44.2998v38.0996h28.7998v-38.0996
-c22.7002 -1.2002 43.4004 -8.90039 62 -23l-32.2998 -33.2002c-42.7002 29.9004 -83.5 8 -70 -11.0996c53.4004 -24.1006 43.7998 -19.7998 93 -41.6006l127.1 -56.6992c4.10059 17.3994 6.2002 35.0996 6.2002 53.0996c0 57 -19.7998 105 -59.2998 143.9
-c-39.2998 39.8994 -87.2002 59.7998 -143.6 59.7998z" />
-    <glyph glyph-name="creative-commons-nc-eu" unicode="&#xf4e9;" horiz-adv-x="496" 
-d="M247.7 440c140.7 0 248.3 -109 248.3 -248c0 -147.1 -118.1 -248 -248.3 -248c-136 0 -247.7 111.7 -247.7 248c0 131.2 103.6 248 247.7 248zM248.3 -10.7002c122.601 0 177.3 102.2 178.8 104.3l-128.3 56.8008h-90.2998
-c9.2002 -39.3008 39.0996 -50.2002 67.2998 -50.2002c19.1006 0 38.6006 6.2002 47.2998 10.7998l10 -46.0996c-14.1992 -7.90039 -38.1992 -15.8008 -64.7998 -15.8008c-57.3994 0 -113.2 34.3008 -124.6 101.301h-27v29.5h22.7998
-c0 16.2998 0.400391 13.2998 0.400391 19.5h-23.3008v29.5h4.7002l-65.7002 29.0996c-7.19922 -20.7998 -10.8994 -42.7998 -10.8994 -66c0 -110.2 91.5996 -202.7 203.6 -202.7zM231.6 179.9l-0.5 0.399414l0.900391 -0.399414h-0.400391zM308.8 199.4l136.101 -60.5
-c4.19922 16.5996 6.2998 34.1992 6.2998 52.8994c0 113.2 -90 203.4 -203 203.4c-13 0 -106.101 3.2002 -170.7 -93.6006l81.5996 -36.0996c4.10059 7.2002 8.60059 14 13.9004 20.0996c23.7002 26.5 56.9004 42.3008 95.9004 42.3008
-c25.2998 0 47.2998 -5.80078 62.2998 -12.4004l-11.6006 -47.2998c-10.7998 4.59961 -27.7998 10 -46.0996 10c-20 0 -38.2002 -6.60059 -51.0996 -22.4004c-3.40039 -3.7998 -6.30078 -8.7998 -8.80078 -14.2998l28.6006 -12.5996h70.2998v-29.5h-3.7002z" />
-    <glyph glyph-name="creative-commons-nc-jp" unicode="&#xf4ea;" horiz-adv-x="496" 
-d="M247.7 440c140.8 0 248.3 -109.2 248.3 -248c0 -147.2 -118.1 -248 -248.3 -248c-135.9 0 -247.7 111.6 -247.7 248c0 131.2 103.6 248 247.7 248zM248.3 -10.7002c118.101 0 173.7 96.1006 175.2 98.2998l-81 36.1006v-35.7002h-64.2002v-56h-61.7002v56h-63.7998
-v38.7002h63.7998v18.7002l-5.69922 11.7998h-58.1006v38.5996h27.9004l-127 56.5c-6 -19.0996 -9 -39.2002 -9 -60.2998c0 -110.2 91.5996 -202.7 203.6 -202.7zM335.9 126.6l-54.7002 24.3008l-2.90039 -5.60059v-18.7002h57.6006zM342.4 178l101 -45.0996
-c5.19922 18.3994 7.89941 38 7.89941 59c0 113.399 -90.2002 203.399 -203 203.399c-91.0996 0 -145.899 -54 -173.7 -98.0996l81.9004 -36.5l-27.2998 51h65.7998l39.5996 -85.7002l23 -10.2002l43.4004 96h65.7998l-63 -116h38.6006v-17.7998z" />
-    <glyph glyph-name="creative-commons-nd" unicode="&#xf4eb;" horiz-adv-x="496" 
-d="M247.6 440c141.801 0 248.4 -110.1 248.4 -248c0 -147.1 -118.5 -248 -248.4 -248c-134 0 -247.6 109.5 -247.6 248c0 132.9 104.7 248 247.6 248zM248.4 395.3c-118.2 0 -203.7 -97.8994 -203.7 -203.3c0 -109.8 91.2002 -202.8 203.7 -202.8
-c103.199 0 202.8 81.0996 202.8 202.8c0.0996094 113.8 -90.2002 203.3 -202.8 203.3zM342.4 251v-42.5h-180.301v42.5h180.301zM342.4 171.2v-42.5h-180.301v42.5h180.301z" />
-    <glyph glyph-name="creative-commons-pd" unicode="&#xf4ec;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111.1 248 -248c0 -137 -111 -248 -248 -248s-248 111 -248 248c0 136.9 111 248 248 248zM248 -9.5c76.0996 0 142.4 42.4004 176.7 104.8c-1.40039 0.299805 12.5 -5.7998 -217.9 96.7998c0.200195 -32 16.1006 -71.8994 53.9004 -71.8994
-c18.7002 0 30.7998 10.3994 36.2998 16.7002l36.0996 -43.9004c-25.8994 -22.7998 -56.5 -29.5 -79.3994 -29.5c-46.5 0 -120.4 27.9004 -120.4 126.9c0 11.3994 1.2002 22.3994 3.2998 32.8994l-78.7998 35.1006c-45.5996 -129.9 51 -267.9 190.2 -267.9zM442.2 140.5
-c0.200195 -0.200195 0.299805 -0.299805 0.599609 -0.400391c4.40039 16.6006 6.7998 34 6.7998 52c0 111.101 -90.3994 201.5 -201.5 201.5c-70.3994 0 -132.399 -36.2998 -168.5 -91.1992l74.9004 -33.4004c19.7998 31.0996 53.2998 51.5996 100.7 51.5996
-c20.0996 0 51 -4.19922 78.0996 -27.5l-40.3994 -41.5996c-19.8008 19.7002 -55.9004 23 -74.7002 -11z" />
-    <glyph glyph-name="creative-commons-pd-alt" unicode="&#xf4ed;" horiz-adv-x="496" 
-d="M247.6 440c141.801 0 248.4 -110.1 248.4 -248c0 -147.1 -118.5 -248 -248.4 -248c-134 0 -247.6 109.5 -247.6 248c0 132.9 104.7 248 247.6 248zM248.4 -10.7998c103.199 0 202.8 81.0996 202.8 202.8c0.0996094 113.8 -90.2002 203.3 -202.8 203.3
-c-118.2 0 -203.7 -97.8994 -203.7 -203.3c0 -109.8 91.2002 -202.8 203.7 -202.8zM316.7 262c21.3994 0 70 -5.2002 70 -68.5996c0 -63.5 -48.6006 -68.6006 -70 -68.6006h-53.2002v137.2h53.2002zM317.5 153.5c24 0 34.5 15.2998 34.5 39.9004
-c0 42 -31.2002 39.8994 -35 39.8994l-19.4004 -0.0996094v-79.7002h19.9004zM203.7 262c33.7002 0 50.5 -15.5 50.5 -46.5c0 -9 -3 -46.5 -57.1006 -46.5h-27v-44.2998h-34.5996v137.3h68.2002zM198.8 194.7c27.9004 0 30 41.5996 -0.899414 41.5996h-28.3008v-41.5996
-h29.2002z" />
-    <glyph glyph-name="creative-commons-remix" unicode="&#xf4ee;" horiz-adv-x="496" 
-d="M247.6 440c141.801 0 248.4 -110.1 248.4 -248c0 -147.1 -118.5 -248 -248.4 -248c-134 0 -247.6 109.5 -247.6 248c0 132.9 104.7 248 247.6 248zM248.4 395.3c-118.2 0 -203.7 -97.8994 -203.7 -203.3c0 -109.8 91.2002 -202.8 203.7 -202.8
-c103.199 0 202.8 81.0996 202.8 202.8c0.0996094 113.8 -90.2002 203.3 -202.8 203.3zM410.1 187.6l4.90039 -2.19922v-70c-7.2002 -3.60059 -63.4004 -27.5 -67.2998 -28.8008c-6.5 1.80078 -113.7 46.8008 -137.3 56.2002l-64.2002 -26.5996l-63.2998 27.5v63.7998
-l59.2998 24.7998c-0.700195 0.700195 -0.400391 -5 -0.400391 70.4004l67.2998 29.7002l151.9 -62.9004v-61.5996zM339.7 106.1v43.8008h-0.400391v1.7998l-113.8 46.5v-45.2002l113.8 -46.9004v0.400391zM347.2 163.7l39.8994 16.3994l-36.7998 15.5l-39 -16.3994z
-M399.5 125.6v43l-44.2998 -18.5996v-43.4004z" />
-    <glyph glyph-name="creative-commons-sa" unicode="&#xf4ef;" horiz-adv-x="496" 
-d="M247.6 440c141.801 0 248.4 -110.1 248.4 -248c0 -147.1 -118.5 -248 -248.4 -248c-134 0 -247.6 109.5 -247.6 248c0 132.9 104.7 248 247.6 248zM248.4 395.3c-118.2 0 -203.7 -97.8994 -203.7 -203.3c0 -109.8 91.2002 -202.8 203.7 -202.8
-c103.199 0 202.8 81.0996 202.8 202.8c0.0996094 113.8 -90.2002 203.3 -202.8 203.3zM137.7 227c13 83.9004 80.5 95.7002 108.899 95.7002c99.8008 0 127.5 -82.5 127.5 -134.2c0 -63.5996 -41 -132.9 -128.899 -132.9c-38.9004 0 -99.1006 20 -109.4 97h62.5
-c1.5 -30.0996 19.6006 -45.1992 54.5 -45.1992c23.2998 0 58 18.1992 58 82.7998c0 82.5 -49.0996 80.5996 -56.7002 80.5996c-33.0996 0 -51.6992 -14.5996 -55.7998 -43.7998h18.2002l-49.2002 -49.2002l-49 49.2002h19.4004z" />
-    <glyph glyph-name="creative-commons-sampling" unicode="&#xf4f0;" horiz-adv-x="496" 
-d="M247.6 440c141.801 0 248.4 -110.1 248.4 -248c0 -147.1 -118.5 -248 -248.4 -248c-134 0 -247.6 109.5 -247.6 248c0 132.9 104.7 248 247.6 248zM248.4 395.3c-118.2 0 -203.7 -97.8994 -203.7 -203.3c0 -109.8 91.2002 -202.8 203.7 -202.8
-c103.199 0 202.8 81.0996 202.8 202.8c0.0996094 113.8 -90.2002 203.3 -202.8 203.3zM252 342.1c2.7998 0.300781 11.5 -1 11.5 -11.5l6.59961 -107.199l4.90039 59.2998c0 6 4.7002 10.5996 10.5996 10.5996c5.90039 0 10.6006 -4.7002 10.6006 -10.5996
-c0 -2.5 -0.5 5.7002 5.7002 -81.5l5.7998 64.2002c0.299805 2.89941 2.89941 9.2998 10.2002 9.2998c3.7998 0 9.89941 -2.2998 10.5996 -8.90039l11.5 -96.5l5.2998 12.7998c1.7998 4.40039 5.2002 6.60059 10.2002 6.60059h58v-21.2998h-50.9004l-18.1992 -44.3008
-c-3.90039 -9.89941 -19.5 -9.09961 -20.8008 3.10059l-4 31.8994l-7.5 -92.5996c-0.299805 -3 -3 -9.2998 -10.1992 -9.2998c-3 0 -9.80078 2.09961 -10.6006 9.2998c0 1.90039 0.600586 -5.7998 -6.2002 77.9004l-5.2998 -72.2002
-c-1.09961 -4.7998 -4.7998 -9.2998 -10.5996 -9.2998c-2.90039 0 -9.7998 2 -10.6006 9.2998c0 1.89941 0.5 -6.7002 -5.7998 87.7002l-5.7998 -94.8008c0 -6.2998 -3.59961 -12.3994 -10.5996 -12.3994c-5.2002 0 -10.6006 4.09961 -10.6006 12l-5.7998 87.7002
-c-5.7998 -92.5 -5.2998 -84 -5.2998 -85.9004c-1.10059 -4.7998 -4.7998 -9.2998 -10.6006 -9.2998c-3 0 -9.7998 2.09961 -10.5996 9.2998c0 0.700195 -0.400391 1.09961 -0.400391 2.59961l-6.19922 88.6006l-4.90039 -56.7002
-c-0.700195 -6.5 -6.7002 -9.2998 -10.5996 -9.2998c-5.80078 0 -9.60059 4.09961 -10.6006 8.89941l-11.0996 76.4004c-2 -4 -3.5 -8.40039 -11.1006 -8.40039h-51.3994v21.3008h44.7998l13.7002 27.8994c4.39941 9.90039 18.2002 7.2002 19.8994 -2.7002l3.10059 -20.3994
-l8.39941 97.8994c0 6 4.80078 10.6006 10.6006 10.6006c0.5 0 10.5996 0.200195 10.5996 -12.4004l4.90039 -69.0996l6.59961 92.5996c0 10.1006 9.5 10.6006 10.2002 10.6006c0.599609 0 10.5996 -0.700195 10.5996 -10.6006l5.30078 -80.5996l6.19922 97.8994
-c0.100586 1.10059 -0.599609 10.3008 9.90039 11.5z" />
-    <glyph glyph-name="creative-commons-sampling-plus" unicode="&#xf4f1;" horiz-adv-x="496" 
-d="M247.6 440c141.801 0 248.4 -110.1 248.4 -248c0 -147.1 -118.5 -248 -248.4 -248c-134 0 -247.6 109.5 -247.6 248c0 132.9 104.7 248 247.6 248zM248.4 395.3c-118.2 0 -203.7 -97.8994 -203.7 -203.3c0 -109.8 91.2002 -202.8 203.7 -202.8
-c103.199 0 202.8 81.0996 202.8 202.8c0.0996094 113.8 -90.2002 203.3 -202.8 203.3zM355.4 189.7l58.3994 0.299805v-23.2002h-50.5l-18 -43.3994c-4.59961 -11 -20.8994 -8.7002 -22.2998 3.09961l-2.7002 22.2998l-6.7998 -83
-c-1.09961 -14.0996 -22 -14.2002 -23.0996 0.100586l-4.90039 64.3994l-4.59961 -58.5996c-1.10059 -14.2998 -22.3008 -14.1006 -23.2002 0.200195l-4.5 71.7998l-4.90039 -80.5c-0.899414 -14.5 -22.2998 -14.5 -23.2002 -0.100586l-4.7998 73.3008l-4.59961 -70.4004
-c-0.900391 -14.2998 -22.1006 -14.5 -23.2002 -0.0996094l-5.7002 78.2998l-3.7998 -43.6006c-1.2002 -13.6992 -21.0996 -14.1992 -23.0996 -0.699219l-10.7002 73.0996c-2 -3.90039 -6 -6.40039 -10.4004 -6.40039h-51.2998v23.2002h43.9004l13.1992 27.7002
-c4.90039 10.2998 20.3008 8.09961 22 -3.2998l1.80078 -12.2002l7.69922 89.7998c1.2002 14.1006 22.1006 14.1006 23.2002 -0.200195l4.10059 -57l5.2998 80.2002c1 14.4004 22.2998 14.4004 23.2002 0l4.2998 -66.2998l5.09961 83.7002
-c0.900391 14.3994 22.2998 14.5 23.2002 0l5.90039 -94.2998l3.5 44.8994c1.09961 14.2002 22.0996 14.2998 23.1992 0l5.2002 -68.7998l4.2998 51.4004c1.10059 13.7998 21.4004 14.2998 23.1006 0.399414l11 -92.7998l4 9.5c1.7002 4.40039 6 7.2002 10.7002 7.2002z
-M277.4 184.5c4.09961 0 7.5 3.40039 7.5 7.5c0 4.2002 -3.40039 7.5 -7.5 7.5h-21.9004v21.9004c0 4.19922 -3.40039 7.5 -7.5 7.5s-7.5 -3.40039 -7.5 -7.5v-21.9004h-21.9004c-4.09961 0 -7.5 -3.40039 -7.5 -7.5c0 -4.2002 3.40039 -7.5 7.5 -7.5h21.9004v-21.9004
-c0 -4.19922 3.40039 -7.5 7.5 -7.5c4.2002 0 7.5 3.40039 7.5 7.5v21.9004h21.9004z" />
-    <glyph glyph-name="creative-commons-share" unicode="&#xf4f2;" horiz-adv-x="496" 
-d="M247.6 440c141.801 0 248.4 -110.1 248.4 -248c0 -147.1 -118.5 -248 -248.4 -248c-134 0 -247.6 109.5 -247.6 248c0 132.9 104.7 248 247.6 248zM248.4 395.3c-118.2 0 -203.7 -97.8994 -203.7 -203.3c0 -109.8 91.2002 -202.8 203.7 -202.8
-c103.199 0 202.8 81.0996 202.8 202.8c0.0996094 113.8 -90.2002 203.3 -202.8 203.3zM349.4 262.9c7.7998 0 13.6992 -6.10059 13.6992 -13.7002v-182.5c0 -7.7002 -6.09961 -13.7002 -13.6992 -13.7002h-135.101c-7.7002 0 -13.7002 6 -13.7002 13.7002v54h-54
-c-7.7998 0 -13.6992 6 -13.6992 13.7002v182.5c0 8.19922 6.59961 12.6992 12.3994 13.6992h136.4c7.7002 0 13.7002 -6 13.7002 -13.6992v-54h54zM159.9 147.7h40.6992v101.399c0 7.40039 5.80078 12.6006 12 13.7002h55.8008v40.2998h-108.5v-155.399zM336.1 235.8h-108.5
-v-155.399h108.5v155.399z" />
-    <glyph glyph-name="creative-commons-zero" unicode="&#xf4f3;" horiz-adv-x="496" 
-d="M247.6 440c141.801 0 248.4 -110.1 248.4 -248c0 -147.1 -118.5 -248 -248.4 -248c-134 0 -247.6 109.5 -247.6 248c0 132.9 104.7 248 247.6 248zM248.4 395.3c-118.2 0 -203.7 -97.8994 -203.7 -203.3c0 -109.8 91.2002 -202.8 203.7 -202.8
-c103.199 0 202.8 81.0996 202.8 202.8c0.0996094 113.8 -90.2002 203.3 -202.8 203.3zM248 334.8c81.9004 0 102.5 -77.2998 102.5 -142.8s-20.5996 -142.8 -102.5 -142.8s-102.5 77.2998 -102.5 142.8s20.5996 142.8 102.5 142.8zM248 280.9
-c-42.0996 0 -44.0996 -60.1006 -44.0996 -88.9004c0 -9.2998 0.199219 -21.7002 1.89941 -34.4004l54.5 100.2c5.7002 9.7998 2.7998 16.7998 -3.09961 21.9004c-2.7998 0.700195 -5.90039 1.2002 -9.2002 1.2002zM288.8 234.7l-60.8994 -105.2
-c-12.5 -18.7002 6.59961 -26.4004 20.0996 -26.4004c42.0996 0 44.0996 60 44.0996 88.9004c0 11.2998 -0.399414 27.2998 -3.2998 42.7002z" />
-    <glyph glyph-name="ebay" unicode="&#xf4f4;" horiz-adv-x="640" 
-d="M606 258.5h34l-99.2002 -194.8h-35.8994l28.5 54.0996l-61.5 116.101c3.09961 -6.60059 4.7998 -14.5 4.7998 -23.8008v-65.5996c0 -9.2998 0.299805 -18.5996 1 -26.7998h-29.7998c-0.800781 6.89941 -1.10059 13.5996 -1.10059 20.2002
-c-16.0996 -19.8008 -35.2998 -25.5 -61.8994 -25.5c-39.5 0 -60.6006 20.8994 -60.6006 45c0 3.19922 0.200195 6.19922 0.700195 9c-8.40039 -32.3008 -36.4004 -54.2002 -73.2998 -54.2002c-23.2998 0 -45.1006 8.2998 -58.7002 24.8994
-c0 -6.59961 -0.400391 -13.1992 -1.09961 -19.5h-31.5c0.5 10.2002 1.09961 22.8008 1.09961 33.1006v169.5h32.0996v-80.6006c15.7002 18.7002 37.4004 24.2002 58.7002 24.2002c35.7002 0 75.4004 -24.0996 75.4004 -76.2002c0 -5.59961 -0.5 -11 -1.5 -16.1992
-c7.09961 24.3994 34.2998 33.5 76.7002 34.3994c13.6992 0.299805 29 0.400391 41.6992 0.400391v3.39941c0 23.4004 -15 33 -41 33c-19.2998 0 -33.5996 -8 -35 -21.7998h-33.6992c3.59961 34.4004 39.6992 43.1006 71.5 43.1006c27.3994 0 51.7998 -7 63.2998 -26
-l-10.9004 20.5996h37.5l54.9004 -109.9zM243.7 134.2c29.7998 0 50.2002 21.5 50.2002 53.7998c0 32.4004 -20.4004 53.7998 -50.2002 53.7998c-29.6006 0 -50.2002 -21.3994 -50.2002 -53.7998c0 -32.2998 20.5996 -53.7998 50.2002 -53.7998zM444.6 181.5v3.2998
-c-11.7998 0 -26.2998 -0.0996094 -39.3994 -0.599609c-29.1006 -0.900391 -47.2002 -6.2002 -47.2002 -25.2998c0 -12.4004 9.90039 -25.8008 35 -25.8008c33.7002 0 51.5996 18.4004 51.5996 48.4004zM32.7002 179.9c3.5 -58.3008 79.2002 -57.4004 91.2002 -21.6006
-h33.0996c-6.40039 -34.3994 -43 -46.0996 -74.4004 -46.0996c-57.1992 0 -82.5 31.5 -82.5 74c0 46.7998 26.2002 77.5996 83 77.5996c45.3008 0 78.4004 -23.7002 78.4004 -75.3994v-8.5h-128.8zM127.7 201.3c-2.2998 54.7002 -87.5 56.6006 -94.4004 0h94.4004z" />
-    <glyph glyph-name="keybase" unicode="&#xf4f5;" 
-d="M286.17 29c9.93457 0 18 -8.06543 18 -18s-8.06543 -18 -18 -18s-18 8.06543 -18 18s8.06543 18 18 18zM398.09 176.6c22.9102 -33.46 35.9102 -72.3398 35.9102 -110.92c0 -31.6797 -5 -60.6797 -14.5996 -86.2295
-c-3.04004 -8.0498 -10.9502 -12.7197 -18.3701 -11.1504c-6.83984 1.24023 -11.1201 9.28027 -8.60059 15.7402c11.1904 28.71 14.8799 58.3398 14.8799 81.6396c-0.0634766 9.75 -1.02246 19.1807 -2.7998 28.4307c-0.649414 -1.06055 -1.12988 -2.2207 -1.84961 -3.2207
-c-17.29 -24.5293 -50.54 -33.8896 -84.7402 -23.8398c-78.8701 23.1699 -178.02 3.81055 -236.25 -38.5898l24.6602 74.1104l-46.8203 -59.8301c2.4834 -18.6582 7.96191 -36.7539 15.7598 -53.1299c6.25 -13.1904 0.460938 -18.2402 -3.75 -20.1104
-c-4.76953 -2.12012 -13.8594 -2.7998 -19.6396 7.33008c-6.41504 11.584 -11.4131 24.3486 -14.5596 37.5596l-23.3203 -29.7998v33.6406c0 55.7695 0 125.109 62.6504 188.409c13.7461 13.917 29.1787 25.7891 46.29 35.54l-8.93066 0.540039
-c-27.8799 1.64062 -49.2402 24.8506 -47.6299 51.8506l2.36035 36.6797c0 -6.24023 0.139648 45.8799 50.75 45.8799c2.05957 0 -0.470703 0.120117 41.0596 -2.33008c2.82715 -0.19043 5.60742 -0.616211 8.29004 -1.25c7.41992 11.3398 15.6504 22.8301 24.3398 34.8906
-l5.48047 7.55957l22.8994 -13.5195c-11.29 -24 -10 -33 -9.39941 -35c9.08008 0.229492 20 -1.6709 32.4102 -5.77051c31.2002 -10.3584 53.6846 -39.8262 53.6846 -74.4844c0 -10.4883 -2.0625 -20.498 -5.80469 -29.6455
-c6.18652 -2.13965 12.3135 -4.56348 18.3799 -7.27051c47.8896 -21.2598 77.7598 -59.0898 87.2598 -73.71zM142.37 319.42c1.87695 6.54492 4.25684 13.041 7 19.1699l-29.1104 1.73047c0.610352 -0.0507812 -12.2598 0.849609 -13.2598 -11.3203l-2.41016 -36.6602
-c-0.00683594 -0.174805 -0.00292969 -0.34375 -0.00292969 -0.520508c0 -6.60449 5.22461 -11.998 11.7627 -12.2695l22.3809 -1.33984c-0.457031 3.73438 -0.692383 7.34863 -0.692383 11.2061c0 2.81836 0.125977 5.6084 0.37207 8.36426l-13.1299 0.779297l1.38965 21.79
-zM290.79 147.24c2.27441 1.75195 3.72949 4.50586 3.72949 7.59668c0 2.19922 -0.742188 4.22559 -1.98926 5.84277l-81.0898 96.3203c-1.9043 2.21094 -4.72949 3.60156 -7.87305 3.60156c-2.42578 0 -4.65918 -0.833984 -6.42773 -2.23145
-c-2.27344 -1.74805 -3.72754 -4.49902 -3.72754 -7.58594c0 -2.19531 0.741211 -4.21973 1.98828 -5.83398c0.0898438 -0.140625 18.5996 -22.1406 18.5996 -22.1406l-16.9102 -13.29c-1.75879 -1.34863 -2.88477 -3.47461 -2.88477 -5.86133
-c0 -1.68359 0.564453 -3.23633 1.51465 -4.47852c0.0800781 -0.109375 2.37988 -2.91113 3.7998 -4.5293c1.4209 -1.61914 3.50977 -2.63477 5.83105 -2.63477c1.79395 0 3.44531 0.610352 4.75977 1.63477l17.0898 13.4492l14.1396 -16.7393l-34.5703 -27.1807
-c-1.74805 -1.34961 -2.86621 -3.46875 -2.86621 -5.84668c0 -1.69043 0.569336 -3.24805 1.52637 -4.49316l15.7803 -18.6396c1.48438 -1.72363 3.68555 -2.80762 6.13574 -2.80762c1.88379 0 3.61816 0.645508 4.99414 1.72754l34.4199 27l9.68066 -11.4902
-c1.92676 -2.2041 4.76465 -3.58789 7.91992 -3.58789c2.4209 0 4.65234 0.820312 6.42969 2.19824zM187.44 29c9.93359 0 18 -8.06543 18 -18s-8.06641 -18 -18 -18c-9.93457 0 -18 8.06543 -18 18s8.06543 18 18 18z" />
-    <glyph glyph-name="mastodon" unicode="&#xf4f6;" 
-d="M433 268.89c0 0 0.799805 -71.6992 -9 -121.5c-6.23047 -31.5996 -55.1104 -66.1992 -111.23 -72.8994c-20.0996 -2.40039 -93.1191 -14.2002 -178.75 6.7002c0 -0.116211 -0.00390625 -0.119141 -0.00390625 -0.235352c0 -4.63281 0.307617 -9.19434 0.904297 -13.665
-c6.62988 -49.5996 49.2197 -52.5996 89.6299 -54c40.8105 -1.2998 77.1201 10.0996 77.1201 10.0996l1.7002 -36.8994s-28.5098 -15.2998 -79.3203 -18.1006c-28.0098 -1.59961 -62.8193 0.700195 -103.33 11.4004c-112.229 29.7002 -105.63 173.4 -105.63 289.1
-c0 97.2002 63.7197 125.7 63.7197 125.7c61.9209 28.4004 227.96 28.7002 290.48 0c0 0 63.71 -28.5 63.71 -125.7zM357.88 143.69c0 122 5.29004 147.71 -18.4199 175.01c-25.71 28.7002 -79.7197 31 -103.83 -6.10059l-11.5996 -19.5l-11.6006 19.5
-c-24.0098 36.9004 -77.9297 35 -103.83 6.10059c-23.6094 -27.1006 -18.4092 -52.9004 -18.4092 -175h46.7295v114.2c0 49.6992 64 51.5996 64 -6.90039v-62.5098h46.3301v62.5c0 58.5 64 56.5996 64 6.89941v-114.199h46.6299z" />
-    <glyph glyph-name="r-project" unicode="&#xf4f7;" horiz-adv-x="581" 
-d="M581 221.4c0 -54.8008 -33.9004 -104.301 -88.4004 -139.7l67.4004 -113.7h-112l-40.0996 75.4004c-21.8008 -6.5 -45.1006 -11.2002 -69.4004 -13.9004v-61.5h-99.0996v61.9004c-136.101 16.0996 -239.4 95.6992 -239.4 191.5c0 107.5 130.1 194.6 290.5 194.6
-s290.5 -87.0996 290.5 -194.6zM114.2 206.9c0 -52.8008 51.0996 -98.4004 125.2 -119.9v208.3h199s90.5996 -1.59961 90.5996 -87.8994c0 -86.3008 -86.5996 -92.7002 -86.5996 -92.7002s17.5996 -5.2998 27.7998 -10.5c1.7002 -0.799805 4 -2.10059 6.39941 -3.7002
-c43.8008 21.4004 70.3008 56.2998 70.3008 106.4c0 92.2998 -90 133 -211.9 133s-220.8 -59.5 -220.8 -133zM339.3 168.6c49.6006 0 87.7998 -8.19922 87.7998 28.3008c0 34.0996 -30 27.2998 -87.7998 27.2998v-55.6006zM338.4 96.0996v-22.0996
-c17.5996 0.0996094 34.5 1 50.5996 2.90039c-5.09961 7.5 -13.2002 19.1992 -24 19.1992h-26.5996z" />
-    <glyph glyph-name="researchgate" unicode="&#xf4f8;" 
-d="M0 416h448v-448h-448v448zM262.2 81.5996v7.30078c-10 0 -20 6.89941 -27.2002 14.6992c-12.2002 13.3008 -28.5996 34.7002 -42.2002 58.9004c22.5 5.2998 39.2002 26.4004 39.2002 47.5c0 31.2002 -24.2002 45.5996 -55.9004 45.5996
-c-17.7998 0 -45.0996 -1.59961 -70.8994 -0.599609v-8.09961c15.5996 -2.90039 22 -1.30078 22 -23.9004v-109.4c0 -22.5996 -6.5 -21 -22 -23.8994v-8.10059c7.5 0.200195 20.5 0.800781 33.5996 0.800781c12.5 0 28.7002 -0.5 35.6006 -0.800781v8.10059
-c-19.8008 2.7002 -25.8008 0.399414 -25.8008 23.8994v46.4004c6.7002 -0.599609 12.5 -0.599609 21.4004 -0.599609c16.9004 -30.3008 33 -53 42.2002 -63.6006c16.7998 -20.2002 43.3994 -17.2002 50 -14.2002zM285.1 216.6c38.7002 0 34 29.4004 34 49.9004h-30.3994
-v-10.7002h17.8994c0 -15.8994 -7.39941 -26.7998 -21.5 -26.7998c-11.2998 0 -17.8994 9.90039 -17.8994 23.2998v26.7998c0 12.4004 11.7998 19.7002 19.7002 19.7002c14.1992 0 19.6992 -12.5 19.6992 -12.5l10.7002 7.2002s-5.2002 17.9004 -30.3994 17.9004
-c-25.2002 0 -34 -18.2002 -34 -30.4004v-32.2002c0 -16.5 8.89941 -32.2002 32.1992 -32.2002zM168.6 171.9c-9.39941 0 -13.5996 0.299805 -20 0.799805v69.7002c6.40039 0.599609 15 0.599609 22.5 0.599609c23.3008 0 37.2002 -12.2002 37.2002 -34.5
-c0 -21.9004 -15 -36.5996 -39.7002 -36.5996z" />
-    <glyph glyph-name="teamspeak" unicode="&#xf4f9;" horiz-adv-x="512" 
-d="M244.2 101.21c-2.40039 -12.5 -10.6006 -20 -22.5 -24.2998c-9.2002 -3.2002 -50.1006 -1.60059 -61.7002 -1c-18 1.2998 -33.2002 8.5 -43.4004 24c-14.5 22.5 -19.5 47.7002 -14.5 73.8994c4.60059 24.5 24.6006 34.7002 46.3008 22.7002
-c15.1992 -7.5 42.5 -27.3994 63.3994 -46.5996c20.4004 -18.7002 34.7998 -36.4004 32.4004 -48.7002zM449.2 80.4102c6.7002 -5.41016 11.2002 -22 11.5996 -32.1006c1 -50.3994 -23.8994 -68 -46.5996 -85.3994c-65.1006 -50 -295.101 -16.9004 -145.4 -6.40039
-c127.4 9 164.101 96.1006 172.101 121.5c0.679688 2.0918 2.64941 3.60352 4.9668 3.60352c1.2666 0 2.42871 -0.452148 3.33301 -1.20312zM511.2 202.81c0 -17.1992 1.89941 -34.5996 -1 -51.6992c-4 -24.7002 -29.1006 -41.7002 -53.2002 -36.7002
-c-7.2002 1.7002 -9.40039 7.2002 -9.40039 14.2002c0 28.0996 0.800781 56.3994 0 84.5996c-1.89941 75.79 -36.1992 132.79 -102.3 169.4c-111 60.3896 -253.2 -7 -277.8 -131.5c-6.09961 -30.4004 -1.7002 -48.3008 -3.7002 -125.801
-c-0.299805 -7.19922 -4.2998 -11.1992 -12 -11.5c-30.7998 -1.39941 -51.7998 18.2002 -51.7998 49v20.9004l0.799805 26.4902c2.40039 15.5 10.7002 27 24.9004 34c3.5 1.7998 5.7002 3.5 6.39941 7.7998c6.10059 33.4102 19.5 64 39.3008 91.71
-c2.2998 3.09961 4 5.2998 1 9.2998c-3.7002 5.40039 -1 10.2002 3 14.5c28.0996 31.7998 61.8994 55.1006 102 67.4004c96 29.4668 180.1 9.29688 252.3 -60.5098c6.7002 -6.40039 15.5 -12.9004 7 -24.4004c-1.2998 -1.7998 1.09961 -3.5 2.2002 -5
-c20.0586 -27.0264 34.2529 -59.1357 40.3994 -93.5898c0.900391 -3.7002 3 -5.10059 5.90039 -6.40039c17.3994 -8.7998 25.7002 -23.2998 26 -42.2002zM351.6 71.3096l-51.5996 7.7002c-22.7998 5.90039 -51 32.7002 22.2002 60.7998
-c21.5996 8.5 85.7002 37.2002 87.7998 -8c0.900391 -32 -21.9004 -63.2998 -58.4004 -60.5z" />
-    <glyph glyph-name="first-order-alt" unicode="&#xf50a;" horiz-adv-x="496" 
-d="M248 440c136.97 0 248 -111.03 248 -248s-111.03 -248 -248 -248s-248 111.03 -248 248s111.03 248 248 248zM248 -48.21c132.66 0 240.21 107.55 240.21 240.21s-107.55 240.21 -240.21 240.21s-240.21 -107.55 -240.21 -240.21s107.55 -240.21 240.21 -240.21z
-M248 411.71c121.34 0 219.71 -98.3701 219.71 -219.71s-98.3701 -219.71 -219.71 -219.71s-219.71 98.3701 -219.71 219.71s98.3701 219.71 219.71 219.71zM248 -19.5098c116.81 0 211.51 94.7002 211.51 211.51s-94.7002 211.51 -211.51 211.51
-s-211.51 -94.6895 -211.51 -211.51s94.7002 -211.51 211.51 -211.51zM434.23 143.47c-4.46582 -17.1914 -11.3633 -33.7256 -20.1309 -48.6895l-74.1299 35.8799l61.4805 -54.8203c-10.709 -14.1553 -23.0713 -26.5469 -37.2002 -37.29l-54.7998 61.5703l35.8799 -74.2705
-c-14.9385 -8.80469 -31.4502 -15.7354 -48.6299 -20.2295l-27.29 78.4697l4.79004 -82.9297c-8.61035 -1.17969 -17.4004 -1.7998 -26.3301 -1.7998s-17.7197 0.620117 -26.3301 1.7998l4.75977 82.46l-27.1494 -78.0303
-c-17.1836 4.48828 -33.7021 11.4092 -48.6504 20.2002l35.9297 74.3398l-54.8701 -61.6396c-14.1318 10.7412 -26.5 23.1299 -37.2197 37.2793l61.5898 54.9004l-74.2598 -35.9297c-8.77051 14.9639 -15.6709 31.4971 -20.1396 48.6895l77.8398 27.1104l-82.2305 -4.75977
-c-1.15918 8.56934 -1.7793 17.3193 -1.7793 26.21c0 9 0.629883 17.8398 1.81934 26.5098l82.3799 -4.76953l-77.9395 27.1592c4.5 17.1895 11.4307 33.7148 20.2295 48.6699l74.2207 -35.9199l-61.5205 54.8604c10.7412 14.1328 23.1299 26.501 37.2803 37.2197
-l54.7598 -61.5293l-35.8301 74.1699c14.9521 8.76465 31.4717 15.6621 48.6504 20.1299l26.8701 -77.25l-4.70996 81.6094c8.60938 1.18066 17.3896 1.80078 26.3193 1.80078c8.93066 0 17.71 -0.620117 26.3203 -1.80078l-4.74023 -82.1592l27.0498 77.7598
-c17.2705 -4.5 33.6006 -11.3506 48.6309 -20.1699l-35.8203 -74.1201l54.7197 61.4697c14.1426 -10.7178 26.5186 -23.0908 37.2402 -37.2295l-61.4502 -54.7705l74.1201 35.8604c8.78906 -14.9492 15.71 -31.4678 20.2002 -48.6504l-77.8105 -27.0996l82.2402 4.75
-c1.19043 -8.66016 1.82031 -17.5 1.82031 -26.4902c0 -8.87988 -0.610352 -17.6299 -1.78027 -26.1904l-82.1201 4.75z" />
-    <glyph glyph-name="fulcrum" unicode="&#xf50b;" horiz-adv-x="320" 
-d="M95.75 283.86l-35.3799 -43.5508l-35.3701 43.5508l35.3799 43.5498zM144.23 448v-211.11l-41.0801 -44.8896l41.0801 -44.8896v-211.11l-20.5107 198.18l-51 57.8203l50.9707 57.8203zM223.9 283.86l35.3799 43.5498l35.3799 -43.5498l-35.3799 -43.5508zM175.42 236.86
-v211.14l20.5801 -198.18l51 -57.8203l-51 -57.8203l-20.5801 -198.18v211.11l41.0801 44.8896z" />
-    <glyph glyph-name="galactic-republic" unicode="&#xf50c;" horiz-adv-x="496" 
-d="M248 -56c-136.75 0 -248 111.25 -248 248s111.25 248 248 248s248 -111.25 248 -248s-111.25 -248 -248 -248zM248 423.47c-127.63 0 -231.47 -103.84 -231.47 -231.47s103.84 -231.47 231.47 -231.47s231.47 103.84 231.47 231.47s-103.84 231.47 -231.47 231.47z
-M275.62 401.66c37.6602 -4.91016 72.21 -19.7402 100.96 -41.7998l-17.3896 -17.3604c-23.9795 17.7627 -52.7207 29.9941 -83.5703 34.54v24.6201zM220.25 401.59v-24.54c-30.9697 -4.60938 -59.4502 -16.8301 -83.5195 -34.6699h-0.0800781l-17.2803 17.3604
-c28.7197 22.0498 63.2402 36.9102 100.88 41.8496zM232.5 351.42h31v-82.8604c10.0498 -2.0293 19.3701 -6.00977 27.6201 -11.5l58.6699 58.6709l21.9297 -21.9307l-58.6699 -58.6699c5.46973 -8.24023 9.48047 -17.5996 11.5 -27.6201h82.8701v-31h-82.8701
-c-2.03027 -10.0195 -6.04004 -19.3096 -11.5 -27.54l58.6699 -58.6895l-21.9297 -21.9307l-58.6699 58.6904c-8.25 -5.49023 -17.5703 -9.52051 -27.6201 -11.5498v-82.9004h-31v82.9004c-10.0039 2.02148 -19.4531 6.00977 -27.6699 11.4697l-58.6201 -58.6201
-l-21.9297 21.9297l58.6699 58.6904c-5.45996 8.23047 -9.4502 17.5205 -11.4697 27.54h-82.9004v31h82.9004c2.01953 10.0303 6 19.3896 11.4697 27.6201l-58.6699 58.6699l21.9297 21.9297l58.6201 -58.5898c8.25 5.48047 17.6299 9.38965 27.6699 11.4199v82.8701z
-M415.74 320.7c22.0996 -28.7402 36.9795 -63.3398 41.9297 -101.03h-24.6201c-4.58496 30.8906 -16.8604 59.665 -34.6699 83.6699zM80.1904 320.57l17.3896 -17.3906c-17.8301 -24.0693 -29.9902 -52.5596 -34.5898 -83.5195h-24.6504
-c4.94043 37.6494 19.79 72.1895 41.8506 100.91zM38.3398 164.33l24.6504 0.00976562c4.58984 -30.9502 16.7002 -59.4502 34.5098 -83.5195l-17.3604 -17.3906c-22.0498 28.7207 -36.8799 63.2607 -41.7998 100.9zM433.04 164.33h24.6201
-c-4.9502 -37.6699 -19.8506 -72.2197 -41.9297 -100.96l-17.3604 17.3604c17.8701 24.0996 30.0596 52.6094 34.6699 83.5996zM136.66 41.6201c24.0703 -17.8604 52.6094 -30.0205 83.5996 -34.6504v-24.6396c-37.6602 4.9502 -72.2295 19.8398 -100.96 41.9297z
-M359.19 41.5703h0.0791016l17.3105 -17.3906c-28.75 -22.0596 -63.29 -36.9297 -100.96 -41.8496v24.5703c30.9902 4.58984 59.4795 16.8301 83.5703 34.6699z" />
-    <glyph glyph-name="galactic-senate" unicode="&#xf50d;" horiz-adv-x="512" 
-d="M249.86 414.52h12.2793v-26.0693c13.5801 -20.6201 23.8604 -108.59 24.4902 -215.351c-11.7402 15.6201 -19.1299 33.3301 -19.1299 48.2402v16.8799c0.0302734 5.32031 -0.75 10.5303 -2.19043 15.6504c-0.649414 2.13965 -1.38965 4.07031 -2.61914 5.82031
-c-1.23047 1.73926 -3.44043 3.79004 -6.68066 3.79004c-3.25 0 -5.4502 -2.04004 -6.67969 -3.79004c-1.23047 -1.74023 -1.96973 -3.68066 -2.62012 -5.82031c-1.44043 -5.12012 -2.21973 -10.3301 -2.19043 -15.6504v-16.8799
-c0 -14.9102 -7.38965 -32.6201 -19.1299 -48.2402c0.610352 106.761 10.8906 194.73 24.4707 215.351v26.0693zM223.52 266.75c-1.59961 -22.4004 -2.75 -46.5195 -3.47949 -72.0703c-23.2998 -11.2793 -40.7705 -33.1602 -46.3203 -59.5098
-c-7.71973 -2.25977 -22.71 -3.91992 -40.4893 -4.21973c-7.51074 3.66016 -16.5 5.85938 -26.1807 6.04004c1.90039 14.9102 5.87012 29.1699 11.6504 42.4199c15.4395 -8.10059 30.9297 -8.66016 35.4697 -0.959961c4.57031 7.74023 -3.58984 21.04 -18.3203 30.6602
-c8.68066 11.7695 18.9805 22.2998 30.5605 31.0898c9.50977 -15.5898 23.3594 -24.4404 31.3594 -19.8203c8.05078 4.65039 7.19043 21.1699 -1.70996 37.29c8.76074 3.88965 17.9404 6.92969 27.46 9.08008zM288.48 266.75
-c9.45508 -2.12695 18.7754 -5.23145 27.4492 -9.08008c-8.89941 -16.1299 -9.75977 -32.6396 -1.70996 -37.29c8 -4.62012 21.8506 4.23047 31.3604 19.8203c11.5801 -8.79004 21.8799 -19.3203 30.5596 -31.0898c-14.7197 -9.61035 -22.8896 -22.9199 -18.3193 -30.6602
-c4.54004 -7.7002 20.0293 -7.14062 35.4697 0.959961c5.79004 -13.25 9.75 -27.5098 11.6504 -42.4199c-9.68066 -0.19043 -18.6709 -2.37988 -26.1807 -6.04004c-17.7793 0.299805 -32.7695 1.95996 -40.4902 4.21973c-5.5498 26.3496 -23.0293 48.2305 -46.3193 59.5098
-c-0.719727 25.5508 -1.87988 49.6699 -3.46973 72.0703zM256 258.15c3.23047 0 5.86035 -8.81055 6.08984 -19.9307h0.0498047v-16.8799c0 -41.4199 49.0107 -95.04 93.4902 -95.04c52 0 122.76 1.4502 156.37 -29.1699v-2.50977
-c-9.41992 -17.1104 -20.5801 -33.1699 -33.1797 -47.9697c-12.5303 21.0898 -51.5898 40.96 -108.021 41.3496c-45.6797 -1.01953 -79.0195 -20.3301 -90.7598 -40.8701c-0.00976562 -0.00976562 0.00976562 -0.0400391 0 -0.0498047
-c-7.66992 -2.13965 -15.8496 -3.23047 -24.04 -3.20996c-8.19043 -0.0205078 -16.3701 1.07031 -24.04 3.20996c-0.00976562 0.00976562 0.00976562 0.0400391 0 0.0498047c-11.7295 20.54 -45.0801 39.8506 -90.7598 40.8701
-c-56.4307 -0.400391 -95.5 -20.2598 -108.021 -41.3496c-12.5996 14.7998 -23.7598 30.8496 -33.1797 47.9697v2.50977c33.6201 30.6201 104.37 29.1699 156.37 29.1699c44.4795 0 93.4902 53.6201 93.4902 95.04v16.8799h0.0498047
-c0.229492 11.1201 2.85938 19.9307 6.08984 19.9307zM256 161.56c-22.4199 0 -40.5996 -18.1797 -40.5996 -40.5996s18.1797 -40.6504 40.5996 -40.6504s40.5996 18.2305 40.5996 40.6504s-18.1797 40.5996 -40.5996 40.5996zM256 153.92
-c18.1904 0 32.96 -14.7695 32.96 -32.96s-14.7695 -32.96 -32.96 -32.96s-32.96 14.7695 -32.96 32.96s14.7695 32.96 32.96 32.96zM256 147.78c-14.8096 0 -26.8203 -12.0107 -26.8203 -26.8203s12.0107 -26.8203 26.8203 -26.8203s26.8203 12.0107 26.8203 26.8203
-s-12.0107 26.8203 -26.8203 26.8203zM141.2 81.1104c18.75 -0.419922 35.1895 -4.18066 48.6094 -9.66992c12.5508 -16.0303 29.1602 -30.04 49.5801 -33.0703c0.100586 -0.00976562 0.169922 -0.0302734 0.270508 -0.0498047
-c0.0498047 -0.0107422 0.109375 -0.0400391 0.160156 -0.0507812c5.23926 -1.06934 10.6396 -1.59961 16.1895 -1.59961c5.56055 0 10.9502 0.530273 16.1904 1.59961c0.0498047 0.0107422 0.109375 0.0400391 0.160156 0.0507812
-c0.0996094 0.00976562 0.179688 0.0292969 0.269531 0.0498047c20.4199 3.04004 37.04 17.04 49.5801 33.0703c13.4199 5.5 29.8496 9.25 48.6104 9.66992c10.1797 -0.0800781 21.5996 -0.360352 30.5 -1.66016c-0.430664 -4.41992 -1.51074 -18.6299 -7.11035 -29.7598
-c-9.11035 2.55957 -18.3604 3.89941 -27.6201 3.89941c-41.2803 -0.939453 -71.4795 -34.3496 -78.2598 -74.4697l-0.110352 -4.7002c-10.3994 -1.91992 -21.1797 -2.93945 -32.21 -2.93945c-11.0195 0 -21.8096 1.0293 -32.21 2.93945l-0.109375 4.7002
-c-6.78027 40.1201 -36.9805 73.5303 -78.2607 74.4697c-9.25977 0 -18.5098 -1.33984 -27.6201 -3.89941c-5.59961 11.1299 -6.67969 25.3398 -7.10938 29.7598c8.89941 1.2998 20.3096 1.58984 30.5 1.66016z" />
-    <glyph glyph-name="jedi-order" unicode="&#xf50e;" 
-d="M398.5 74.4004c0 0 26.2998 16.1992 49.9004 77.6992c0 0 -17 -183.3 -222 -185.699h-4.10059c-205.1 2.39941 -222 185.699 -222 185.699c23.2002 -61.5996 49.4004 -77.6992 49.4004 -77.6992c-95.9004 122.1 -17.2002 233.1 -17.2002 233.1
-c-45.4004 -85.7002 41.4004 -170.5 41.4004 -170.5c-105 171.6 60.5 271.5 60.5 271.5c-96.9004 -72.5996 10.0996 -190.7 10.0996 -190.7c-85.7998 -158.399 68.5996 -230.1 68.5996 -230.1s0.400391 16.8994 2.2002 85.7002l-34.5 -36.2002l24.2002 47.3994
-l-62.5996 9.10059l62.5996 9.09961l-20.2002 55.5l31.4004 -45.8994c2.2998 87.8994 7.89941 305.899 7.89941 306.899v2.40039v-1v1v-2.40039c0.100586 -1.7998 5.7002 -219.2 7.90039 -306.899l31.4004 45.8994l-20.2002 -55.5l62.5996 -9.09961l-62.5996 -9.10059
-l24.2002 -47.3994s-30.2002 31.7002 -34.5 36.2002c1.7998 -68.8008 2.19922 -85.7002 2.19922 -85.7002s154.4 71.7002 68.6006 230.1c0 0 107 118 10.0996 190.7c0 0 165.5 -100 60.5 -271.5c0 0 86.7998 84.7002 41.4004 170.5c0 0 78.7002 -111 -17.2002 -233.1z" />
-    <glyph glyph-name="mandalorian" unicode="&#xf50f;" 
-d="M232.27 -63.8896c-1 3.25977 -1.68945 15.8301 -1.38965 24.5801c0.549805 15.8896 1 24.7197 1.40039 28.7598c0.639648 6.2002 2.87012 20.7197 3.2793 21.3799c0.600586 1 0.400391 27.8701 -0.239258 33.1299c-0.310547 2.58008 -0.629883 11.9004 -0.69043 20.7305
-c-0.129883 16.4697 -0.530273 20.1191 -2.72949 24.7598c-1.10059 2.31934 -1.23047 3.83984 -1 11.4297c0.0546875 1.30957 0.0830078 2.62695 0.0830078 3.9502c0 3.00586 -0.142578 5.82715 -0.423828 8.75977c-2 13 -3.45996 27.7002 -3.25 33.9004
-s0.430664 7.14941 2.06055 9.66992c3.0498 4.70996 6.50977 14 8.62012 23.2695c2.25977 9.86035 3.87988 17.1807 4.58984 20.7402c1.1123 5.11914 2.61816 10.2246 4.41992 15.0498c2.26953 6.25 2.49023 15.3906 0.370117 15.3906
-c-0.299805 0 -1.37988 -1.2207 -2.41016 -2.70996c-1.03027 -1.49023 -4.75977 -4.80078 -8.29004 -7.36035c-8.37012 -6.08008 -11.7002 -9.38965 -12.6602 -12.5801s-1 -7.22949 -0.160156 -7.75977c0.34082 -0.209961 1.29004 -2.40039 2.11035 -4.87988
-c0.926758 -2.82617 1.42773 -5.84375 1.42773 -8.97754c0 -2.19824 -0.241211 -4.3252 -0.708008 -6.38281c-0.389648 -1.76953 -1 -5.46973 -1.45996 -8.22949c-0.459961 -2.76074 -1 -6.46094 -1.25 -8.2207c-0.181641 -1.55176 -0.731445 -3.01367 -1.5498 -4.25977
-c-1 -1 -1.13965 -0.910156 -2.0498 0.530273c-0.724609 1.4541 -1.22656 3.07324 -1.44043 4.75c-0.25 1.73926 -1.62988 7.10938 -3.08008 11.9297c-3.2793 10.9004 -3.51953 16.1504 -1 21c0.800781 1.39648 1.38086 2.96875 1.66992 4.61035
-c0 2.38965 -2.19922 5.31934 -7.40918 9.88965c-7 6.17969 -8.62988 7.91992 -10.2305 11.2998c-1.70996 3.60059 -3.05957 4.06055 -4.54004 1.54004c-1.78027 -3 -2.59961 -9.10938 -3 -22l-0.339844 -12.1895l2 -2.25c3.20996 -3.7002 12.0703 -16.4502 13.7803 -19.8301
-c3.41016 -6.74023 4.33984 -11.6904 4.41016 -23.5605c0.0693359 -11.8701 0.949219 -22.75 2 -24.71c0.359375 -0.660156 0.509766 -1.34961 0.339844 -1.51953s0.410156 -2.08984 1.29004 -4.27051c1.02539 -2.84082 1.73633 -5.8916 2.05957 -9
-c0.37207 -3.50684 0.950195 -6.99219 1.70996 -10.3701c2.23047 -9.55957 2.77051 -14.0801 2.39062 -20.1396c-0.200195 -3.26953 -0.530273 -11.0703 -0.730469 -17.3203c-1.30957 -41.7598 -1.84961 -58 -2 -61.21c-0.120117 -2 -0.389648 -11.5098 -0.599609 -21.0693
-c-0.360352 -16.3008 -1.30078 -27.3701 -2.41992 -28.6504c-0.640625 -0.729492 -8.07031 4.91016 -12.5205 9.49023c-3.75 3.87012 -4 4.79004 -2.83008 9.9502c0.700195 3 2.25977 18.29 3.33008 32.6191c0.360352 4.78027 0.80957 10.5 1 12.7109
-c0.830078 9.36914 1.66016 20.3496 2.61035 34.7793c0.55957 8.45996 1.33008 16.4404 1.71973 17.7305s0.889648 9.88965 1.12988 19.1094l0.429688 16.7705l-2.25977 4.2998c-1.71973 3.28027 -4.87012 6.94043 -13.2197 15.3398
-c-6 6.07031 -11.8398 12.2998 -12.9102 13.8506l-1.9502 2.80957l0.75 10.9004c1.08984 15.71 1.10059 48.5693 0 59.0596l-0.889648 8.7002l-3.28027 4.51953c-5.85938 8.08008 -5.7998 7.75 -6.21973 33.2705c-0.100586 6.07031 -0.379883 11.5 -0.629883 12.0596
-c-0.830078 1.87012 -3.0498 2.66016 -8.54004 3.05078c-8.86035 0.619141 -11 1.89941 -23.8506 14.5498c-6.14941 6 -12.3398 12 -13.75 13.1895c-2.80957 2.41992 -2.79004 2 -0.55957 9.62988l1.34961 4.65039l-1.68945 3
-c-0.764648 1.42578 -1.62793 2.78223 -2.58984 4.07031c-1.33008 1.50977 -5.5 10.8896 -6 13.4893c-0.100586 0.362305 -0.154297 0.743164 -0.154297 1.13672c0 1.05469 0.385742 2.02148 1.02441 2.76367c2.22949 2.86035 3.39941 5.67969 4.44922 10.7305
-c2.33008 11.1895 7.74023 26.0898 10.6006 29.2197c3.17969 3.46973 7.7002 1 9.41016 -5c1.33984 -4.79004 1.36914 -9.79004 0.0996094 -18.5498c-0.53418 -3.65918 -0.869141 -7.33594 -1 -11.1104c0 -4 0.19043 -4.69043 2.25 -7.38965
-c3.33008 -4.37012 7.72949 -7.41016 15.2002 -10.5205c1.71777 -0.71582 3.30566 -1.67969 4.71973 -2.84961c11.1699 -10.7207 18.6201 -16.1807 22.9502 -16.8506c5.17969 -0.799805 8 -4.54004 10 -13.3896c1.30957 -5.65039 4 -11.1396 5.45996 -11.1396
-c1.2041 0.246094 2.3418 0.729492 3.33008 1.38965c2 1.21973 2.25 1.73047 2.25 4.17969c-0.267578 6.07031 -0.943359 12.0078 -2 17.8398c-0.370117 1.66016 -0.780273 4.06055 -0.930664 5.35059c-0.149414 1.29004 -0.609375 3.84961 -1 5.68945
-c-2.5498 11.1602 -3.64941 15.46 -4.09961 16c-1.5498 2 -4.08008 10.2002 -4.92969 15.9209c-1.64062 11.1094 -4 14.2295 -12.9102 17.3896c-4.92969 1.81641 -9.44238 4.50195 -13.3398 7.87988c-1.15039 1 -4 3.21973 -6.35059 5.05957
-c-2.34961 1.84082 -4.40918 3.53027 -4.59961 3.76074c-0.848633 0.733398 -1.73926 1.39648 -2.69043 2c-6.23926 4.21973 -8.83984 7 -11.2598 12l-2.43945 5l-0.220703 13l-0.219727 13l6.91016 6.5498c3.9502 3.75 8.47949 7.34961 10.5898 8.42969
-c3.30957 1.69043 4.4502 1.89062 11.3701 2c8.53027 0.19043 10.1201 0 11.6602 -1.55957c1.54004 -1.56055 1.35938 -6.40039 -0.290039 -8.5c-0.592773 -0.666992 -1.05273 -1.45508 -1.33984 -2.32031c0 -0.580078 -2.61035 -4.91016 -5.41992 -9
-c-1.03906 -2.12988 -1.85156 -4.44727 -2.37012 -6.82031c20.4395 -13.3896 21.5498 -3.76953 14.0693 -29l11.3604 -2.51953c3.11035 8.66016 6.46973 17.2598 8.61035 26.2197c0.290039 7.62988 -12 4.19043 -15.4004 8.68066
-c-2.33008 5.92969 3.12988 14.1797 6.05957 19.1992c1.60059 2.33984 6.62012 4.7002 8.82031 4.15039c0.879883 -0.219727 4.16016 0.349609 7.37012 1.28027c2.41992 0.759766 4.97461 1.33398 7.5498 1.67969c2.05957 0.222656 4.08984 0.666016 6 1.29004
-c3.65039 1.11035 4.5 1.16992 6.35059 0.400391c1.85156 -0.636719 3.82324 -1.10352 5.81934 -1.36035c2.12598 -0.287109 4.17285 -0.953125 6 -1.91016c1.55078 -0.908203 3.24414 -1.64746 5 -2.16992c2.51074 -0.679688 3 -0.570312 7.05078 1.66992l4.34961 2.40039
-l10.7402 0.389648c10.4395 0.400391 10.8096 0.469727 15.2598 2.67969l4.58008 2.32031l2.45996 -1.42969c1.75977 -1 3.13965 -2.73047 4.84961 -6c2.36035 -4.51074 2.37988 -4.58008 1.37012 -7.37012c-0.879883 -2.44043 -0.889648 -3.2998 -0.0996094 -6.39062
-c0.526367 -2.03027 1.24219 -4.03516 2.09961 -5.90918c0.62793 -1.22852 1.08203 -2.5918 1.31055 -4c0.30957 -4.33008 0 -5.30078 -2.41016 -6.91992c-2.16992 -1.4707 -7 -7.91016 -7 -9.34082c-0.249023 -1.03906 -0.614258 -2.05762 -1.07031 -3
-c-5 -11.5098 -6.75977 -13.5596 -14.2598 -17c-9.2002 -4.19922 -12.2998 -5.18945 -16.21 -5.18945c-3.10059 0 -4 -0.25 -4.54004 -1.25977c-1.17383 -1.44238 -2.53613 -2.67969 -4.08984 -3.70996c-1.82715 -1.21973 -3.32031 -2.84668 -4.37988 -4.78027
-c-0.486328 -1.22852 -1.36426 -2.24707 -2.49023 -2.91016c-0.941406 -0.387695 -1.77246 -0.97168 -2.4502 -1.70996c-2.22168 -1.9502 -4.53613 -3.73047 -7 -5.37988c-3.33008 -2.33984 -6.87012 -5 -7.87012 -6c-0.666992 -0.71875 -1.47168 -1.29688 -2.37988 -1.7002
-c-0.837891 -0.376953 -1.5625 -0.941406 -2.12988 -1.65039c-1.31055 -1.38965 -1.49023 -2.10938 -1.13965 -4.59961c0.310547 -2.00488 0.795898 -3.99707 1.41992 -5.87988c1.31934 -3.7998 1.30957 -7.86035 0 -10.5703
-c-1.31055 -2.70996 -0.890625 -6.64941 1.34961 -9.58984c2 -2.62988 2.16016 -4.55957 0.709961 -8.83984c-0.692383 -2.67969 -1.06152 -5.48926 -1.06152 -8.38379c0 -0.183594 -0.000976562 -0.34375 0.00195312 -0.526367
-c0 -4.87988 0.219727 -6.28027 1.45996 -8.37988c1.23926 -2.09961 1.81934 -2.48047 3.23926 -2.32031c2 0.230469 2.30078 1.0498 4.70996 12.1201c2.18066 10 3.70996 11.9199 13.7607 17.0801c2.93945 1.50977 7.45996 4 10 5.44043
-c2.54004 1.43945 6.79004 3.68945 9.37012 4.90918c5.99512 2.625 11.1807 6.62598 15.2197 11.6709c7.10938 8.78906 10 16.2197 12.8496 33.2998c0.362305 2.81152 1.37402 5.46387 2.86035 7.72949c1.39648 2.17676 2.40332 4.6748 2.88965 7.31055
-c1 5.2998 2.85059 9.08008 5.58008 11.5098c4.7002 4.17969 6 1.08984 4.58984 -10.8701c-0.459961 -3.86035 -1.09961 -10.3301 -1.43945 -14.3799l-0.610352 -7.36035l4.4502 -4.08984l4.4502 -4.08984l0.109375 -8.41992
-c0.0605469 -4.62988 0.470703 -9.53027 0.919922 -10.8896l0.820312 -2.4707l-6.42969 -6.2793c-8.54004 -8.33008 -12.8799 -13.9307 -16.7598 -21.6104c-1.77051 -3.49023 -3.74023 -7.11035 -4.38086 -8c-2.17969 -3.11035 -6.45996 -13 -8.75977 -20.2598
-l-2.29004 -7.2207l-7 -6.48926c-3.83008 -3.57031 -8 -7.25 -9.16992 -8.16992c-3.0498 -2.32031 -4.25977 -5.15039 -4.25977 -10c-0.00878906 -0.204102 -0.0126953 -0.40918 -0.0126953 -0.614258c0 -2.39062 0.583984 -4.65332 1.60254 -6.64648
-c0.789062 -1.54785 1.49512 -3.17871 2.08984 -4.83008c0.350586 -1.05859 0.887695 -2.03809 1.57031 -2.88965c1.40039 -1.58984 1.91992 -16.1201 0.830078 -23.2197c-0.679688 -4.48047 -3.62988 -12 -4.7002 -12c-1.79004 0 -4.05957 -9.27051 -5.07031 -20.7402
-c-0.179688 -2 -0.620117 -5.94043 -1 -8.7002s-1 -10 -1.34961 -16.0498c-0.770508 -12.2197 -0.19043 -18.7705 2 -23.1504c3.41016 -6.68945 0.519531 -12.6895 -11 -22.8398l-4 -3.49023l0.0703125 -5.18945c0.0546875 -3.05273 0.448242 -6.01562 1.13965 -8.87012
-c4.61035 -16 4.73047 -16.9199 4.37988 -37.1299c-0.459961 -26.4004 -0.259766 -40.2705 0.629883 -44.1504c0.489258 -2.28223 0.853516 -4.63086 1.08008 -7c0.169922 -2 0.660156 -5.33008 1.08008 -7.35938c0.469727 -2.26074 0.780273 -11 0.790039 -22.7402v-19.0605
-l-1.80957 -2.62988c-2.70996 -3.91016 -15.1104 -13.54 -15.4902 -12.29zM261.8 -18.7803c-0.179688 0.299805 -0.330078 6.87012 -0.330078 14.5898c0 14.0605 -0.889648 27.54 -2.25977 34.4502c-0.400391 2 -0.80957 9.7002 -0.900391 17.0605
-c-0.149414 11.9297 -1.39941 24.3701 -2.63965 26.3799c-0.660156 1.06934 -3 17.6602 -3 21.2998c0 4.23047 1 6 5.28027 9.12988s4.85938 3.13965 5.47949 0.719727c0.280273 -1.09961 1.4502 -5.61914 2.60059 -10c3.92969 -15.1191 4.13965 -16.2695 4.0498 -21.7393
-c-0.0996094 -5.78027 -0.129883 -6.12988 -1.74023 -17.7305c-1 -7.07031 -1.16992 -12.3896 -1 -28.4297c0.169922 -19.4004 -0.639648 -35.7305 -2 -41.2705c-0.709961 -2.7793 -2.7998 -5.47949 -3.42969 -4.42969zM190.8 18.7998
-c-0.761719 3.52051 -1.3457 7.14453 -1.72949 10.79c-0.382812 3.64648 -0.967773 7.27051 -1.73047 10.79c-0.513672 2.0957 -0.854492 4.27344 -1 6.49023c-0.30957 3.18945 -0.910156 7.45996 -1.33008 9.47949c-1 4.79004 -3.34961 19.3506 -3.41992 21.0703
-c0 0.740234 -0.339844 4.0498 -0.700195 7.36035c-0.669922 6.20996 -0.839844 27.6699 -0.219727 28.29c1 1 6.62988 -2.76074 11.3301 -7.43066l5.28027 -5.25l-0.450195 -6.46973c-0.25 -3.55957 -0.599609 -10.2295 -0.780273 -14.8301
-c-0.179688 -4.59961 -0.490234 -9.87012 -0.669922 -11.71s-0.610352 -9.36035 -0.939453 -16.7197c-0.790039 -17.4102 -1.94043 -31.29 -2.65039 -32c-0.113281 -0.119141 -0.273438 -0.194336 -0.450195 -0.194336c-0.239258 0 -0.446289 0.135742 -0.549805 0.333984
-h0.00976562zM103.62 285.39c21.0703 -12.79 17.8398 -14.1494 28.4902 -17.6592c13 -4.29004 18.8701 -7.13086 23.1494 -16.8701c-43.6602 -36.1406 -69.0098 -57.8604 -76.71 -70.8604c-31 -52 -6 -101.59 62.75 -87.21c-14.1797 -29.2305 -78 -28.6299 -98.6797 4.90039
-c-24.6797 39.9492 -22.0898 118.3 61 187.659v0.0400391zM314.41 106.39c56.6602 -6.87988 82.3203 37.7402 46.54 89.2305c0 0 -26.8701 29.3398 -64.2803 68c3 15.4502 9.49023 32.1201 30.5703 53.8203c89.2002 -63.5107 92 -141.61 92.46 -149.36
-c4.2998 -70.6396 -78.7002 -91.1797 -105.29 -61.71v0.0195312z" />
-    <glyph glyph-name="old-republic" unicode="&#xf510;" horiz-adv-x="496" 
-d="M235.76 437.77c7.5 0.310547 15 0.280273 22.5 0.0908203c3.61035 -0.140625 7.2002 -0.400391 10.79 -0.730469c4.91992 -0.269531 9.79004 -1.03027 14.6699 -1.62012c2.93066 -0.429688 5.83008 -0.979492 8.75 -1.45996
-c7.90039 -1.33008 15.6699 -3.28027 23.3906 -5.39941c12.2393 -3.4707 24.1895 -7.91992 35.7598 -13.21c26.5596 -12.2402 50.9395 -29.21 71.6299 -49.8809c20.0303 -20.0898 36.7197 -43.5498 48.8896 -69.1895c1.12988 -2.58984 2.44043 -5.10059 3.4707 -7.74023
-c2.80957 -6.42969 5.38965 -12.9697 7.58008 -19.6299c4.13965 -12.3301 7.33984 -24.9902 9.41992 -37.8301c0.569336 -3.13965 1.04004 -6.2998 1.39941 -9.46973c0.549805 -3.83008 0.94043 -7.69043 1.18066 -11.5605
-c0.829102 -8.33984 0.839844 -16.7295 0.769531 -25.0996c-0.0703125 -4.96973 -0.259766 -9.94043 -0.75 -14.8896c-0.240234 -3.38086 -0.509766 -6.76074 -0.979492 -10.1201c-0.390625 -2.7207 -0.630859 -5.45996 -1.11035 -8.16992
-c-0.900391 -5.15039 -1.7002 -10.3105 -2.87012 -15.4102c-4.09961 -18.5 -10.2998 -36.5498 -18.5098 -53.6299c-15.7705 -32.8301 -38.8301 -62.1699 -67.1201 -85.1201c-17.2012 -14.0635 -36.3066 -25.8115 -56.9102 -34.8604
-c-6.20996 -2.67969 -12.46 -5.25 -18.8701 -7.41016c-3.50977 -1.16016 -7.00977 -2.37988 -10.5703 -3.38965c-6.61914 -1.87988 -13.2891 -3.63965 -20.0391 -5c-4.66016 -0.910156 -9.34082 -1.73047 -14.0303 -2.48047c-5.25 -0.65918 -10.5 -1.43945 -15.79 -1.73926
-c-6.69043 -0.660156 -13.4102 -0.839844 -20.1201 -0.810547c-6.82031 -0.0292969 -13.6504 0.120117 -20.4502 0.790039c-3.29004 0.230469 -6.57031 0.5 -9.83008 0.950195c-2.71973 0.389648 -5.45996 0.629883 -8.16992 1.11035
-c-4.12012 0.719727 -8.25 1.37012 -12.3496 2.21973c-4.25 0.939453 -8.49023 1.88965 -12.6904 3.01953c-8.62988 2.16992 -17.0801 5.01074 -25.4102 8.13086c-10.4893 4.11914 -20.79 8.75 -30.6396 14.25c-2.13965 1.14941 -4.28027 2.28906 -6.34961 3.56934
-c-11.2207 6.58008 -21.8604 14.1006 -31.9199 22.3398c-34.6807 28.4102 -61.4102 66.4307 -76.3506 108.7c-3.08984 8.74023 -5.70996 17.6504 -7.7998 26.6797c-1.48047 6.16016 -2.52051 12.4209 -3.58008 18.6602
-c-0.400391 2.35059 -0.610352 4.73047 -0.950195 7.08984c-0.599609 3.96094 -0.75 7.96094 -1.16992 11.9404c-0.799805 9.46973 -0.709961 18.9902 -0.509766 28.4902c0.139648 3.50977 0.339844 7.00977 0.700195 10.5098
-c0.30957 3.16992 0.459961 6.37012 0.919922 9.52051c0.410156 2.80957 0.649414 5.64941 1.16016 8.43945c0.699219 3.94043 1.2998 7.90039 2.11914 11.8203c3.43066 16.5195 8.4707 32.7295 15.2607 48.1797c1.14941 2.91992 2.58984 5.71973 3.85938 8.58984
-c8.05078 16.71 17.9004 32.5605 29.4902 47.0605c20 25.3799 45.1006 46.6797 73.2705 62.4697c7.5 4.15039 15.1592 8.0498 23.0693 11.3701c15.8203 6.87988 32.4102 11.9502 49.3105 15.3799c3.50977 0.669922 7.04004 1.24023 10.5596 1.84961
-c2.62012 0.470703 5.28027 0.700195 7.91016 1.08008c3.53027 0.530273 7.09961 0.680664 10.6504 1.04004c2.45996 0.240234 4.90918 0.360352 7.35938 0.509766zM244.4 413.36c-9.23047 -0.100586 -18.4307 -0.990234 -27.5703 -2.23047
-c-7.2998 -1.08008 -14.5303 -2.59961 -21.71 -4.2998c-13.9102 -3.5 -27.4805 -8.33984 -40.46 -14.4199c-10.46 -4.99023 -20.5898 -10.7002 -30.1797 -17.2197c-4.18066 -2.9209 -8.40039 -5.80078 -12.3408 -9.03027
-c-5.08008 -3.96973 -9.97949 -8.16992 -14.6797 -12.5898c-2.50977 -2.24023 -4.80957 -4.7002 -7.21973 -7.06055c-28.2207 -28.79 -48.4404 -65.3896 -57.5 -104.689c-2.04004 -8.44043 -3.54004 -17.0205 -4.44043 -25.6504
-c-1.09961 -8.88965 -1.43945 -17.8496 -1.41016 -26.7998c0.110352 -7.13965 0.379883 -14.2803 1.2207 -21.3701c0.620117 -7.12012 1.87012 -14.1602 3.19922 -21.1797c1.07031 -4.65039 2.03027 -9.32031 3.33008 -13.9102
-c6.29004 -23.3799 16.5 -45.7002 30.0703 -65.75c8.63965 -12.9805 18.7803 -24.9297 29.9805 -35.7705c16.2793 -15.8193 35.0498 -29.04 55.3398 -39.2197c7.2793 -3.51953 14.6602 -6.87012 22.2695 -9.62988c5.04004 -1.75977 10.0605 -3.57031 15.2197 -4.98047
-c11.2607 -3.22949 22.7705 -5.59961 34.3906 -7.05957c2.91016 -0.290039 5.80957 -0.610352 8.71973 -0.900391c13.8203 -1.08008 27.7402 -1 41.54 0.430664c4.4502 0.599609 8.91992 0.989258 13.3496 1.7793c3.63086 0.670898 7.28027 1.25 10.8701 2.10059
-c4.12988 0.979492 8.28027 1.91016 12.3604 3.07031c26.5 7.33984 51.5801 19.71 73.5801 36.1992c15.7803 11.8203 29.96 25.7607 42.1201 41.2803c3.25977 4.02051 6.16992 8.30957 9.12988 12.5498c3.38965 5.06055 6.58008 10.25 9.59961 15.54
-c2.40039 4.44043 4.74023 8.91016 6.9502 13.4502c5.69043 12.0498 10.2803 24.6201 13.75 37.4902c2.58984 10.0098 4.75 20.1602 5.90039 30.4502c1.76953 13.4697 1.93945 27.0996 1.29004 40.6494c-0.290039 3.89062 -0.669922 7.77051 -1 11.6602
-c-2.23047 19.0801 -6.79004 37.9102 -13.8203 55.7998c-5.9502 15.1299 -13.5303 29.6299 -22.6104 43.1299c-12.6895 18.8008 -28.2393 35.6807 -45.9697 49.8301c-25.0498 20 -54.4697 34.5498 -85.6504 42.0801c-7.7793 1.92969 -15.6895 3.33984 -23.6299 4.4502
-c-3.90918 0.589844 -7.84961 0.820312 -11.7695 1.24023c-7.38965 0.569336 -14.8105 0.719727 -22.2197 0.580078zM139.26 364.47c13.2998 8.89062 28.0801 15.3799 43.2998 20.1807c-3.16992 -1.77051 -6.43945 -3.38086 -9.5293 -5.29004
-c-11.21 -6.68066 -21.5205 -14.9004 -30.3799 -24.4902c-6.80078 -7.42969 -12.7607 -15.7305 -17.0107 -24.8896c-3.29004 -6.86035 -5.63965 -14.1904 -6.85938 -21.7109c-0.930664 -4.84961 -1.2998 -9.80957 -1.16992 -14.75
-c0.129883 -13.6592 4.43945 -27.0791 11.29 -38.8193c5.91992 -10.2197 13.6299 -19.3301 22.3594 -27.2598c4.85059 -4.36035 10.2402 -8.09082 14.9502 -12.6006c2.25977 -2.18945 4.49023 -4.41992 6.42969 -6.91016c2.62012 -3.30957 4.89062 -6.98926 5.99023 -11.0996
-c0.900391 -3.02051 0.660156 -6.2002 0.69043 -9.31055c0.0195312 -4.09961 -0.0400391 -8.19922 0.0292969 -12.2998c0.140625 -3.54004 -0.0195312 -7.08984 0.110352 -10.6299c0.0800781 -2.37988 0.0205078 -4.75977 0.0498047 -7.13965
-c0.160156 -5.77051 0.0605469 -11.5303 0.150391 -17.2998c0.109375 -2.91016 0.0195312 -5.82031 0.129883 -8.74023c0.0302734 -1.62988 0.129883 -3.28027 -0.0302734 -4.91016c-0.910156 -0.120117 -1.81934 -0.179688 -2.72949 -0.160156
-c-10.9902 0 -21.8799 2.62988 -31.9502 6.92969c-6 2.7002 -11.8105 5.89062 -17.0898 9.83008c-5.75 4.19043 -11.0898 8.95996 -15.79 14.3105c-6.53027 7.24023 -11.9805 15.3896 -16.6201 23.9502c-1.07031 2.0293 -2.24023 4.01953 -3.17969 6.12012
-c-1.16016 2.63965 -2.62012 5.13965 -3.66992 7.81934c-4.05078 9.68066 -6.57031 19.9404 -8.08008 30.3105c-0.490234 4.43945 -1.09082 8.87988 -1.2002 13.3496c-0.700195 15.7305 0.839844 31.5498 4.66992 46.8203c2.12012 8.14941 4.76953 16.1797 8.30957 23.8301
-c6.32031 14.1992 15.3398 27.1797 26.3008 38.1895c6.2793 6.2002 13.1299 11.8398 20.5293 16.6699zM314.63 384.59c2.74023 -0.740234 5.41016 -1.74023 8.08984 -2.67969c6.36035 -2.33008 12.6807 -4.83984 18.71 -7.95996
-c13.1104 -6.44043 25.3105 -14.8105 35.8203 -24.9697c10.2002 -9.9502 18.7402 -21.6006 25.1396 -34.3408c1.28027 -2.75 2.64062 -5.45996 3.81055 -8.25977c6.30957 -15.0996 10 -31.2598 11.2295 -47.5703c0.410156 -4.54004 0.44043 -9.08984 0.450195 -13.6396
-c0.0703125 -11.6396 -1.49023 -23.25 -4.2998 -34.5303c-1.96973 -7.26953 -4.34961 -14.4893 -7.86035 -21.1797c-3.17969 -6.63965 -6.67969 -13.1602 -10.8398 -19.2402c-6.93945 -10.4697 -15.5996 -19.8701 -25.8203 -27.2197
-c-10.4795 -7.63965 -22.6396 -13.0195 -35.3994 -15.3799c-3.50977 -0.69043 -7.08008 -1.08008 -10.6602 -1.20996c-1.84961 -0.0605469 -3.71973 -0.160156 -5.55957 0.0996094c-0.280273 2.15039 0 4.31055 -0.0107422 6.45996
-c-0.0292969 3.73047 0.140625 7.4502 0.100586 11.1699c0.189453 7.02051 0.0195312 14.0508 0.209961 21.0703c0.0292969 2.37988 -0.0302734 4.75977 0.0292969 7.13965c0.170898 5.07031 -0.0390625 10.1406 0.140625 15.21
-c0.0996094 2.99023 -0.240234 6.04004 0.509766 8.95996c0.660156 2.5 1.78027 4.86035 3.08984 7.08008c4.45996 7.31055 11.0605 12.96 17.6807 18.2607c5.37988 4.17969 10.4697 8.76953 15.0195 13.8398c7.67969 8.37012 14.1699 17.8799 18.7803 28.2695
-c2.5 5.93066 4.51953 12.1006 5.5498 18.46c0.860352 4.37012 1.05957 8.83008 1.00977 13.2705c-0.0195312 7.84961 -1.39941 15.6494 -3.63965 23.1699c-1.75 5.72949 -4.27051 11.1797 -7.08984 16.4502c-3.87012 6.92969 -8.65039 13.3096 -13.96 19.1992
-c-9.94043 10.8506 -21.75 19.9404 -34.6006 27.1006c-1.84961 1.01953 -3.83984 1.82031 -5.62988 2.96973zM213.83 326.14c0.979492 1.18066 1.99023 2.33008 3.12012 3.37988c-0.610352 -0.929688 -1.27051 -1.80957 -1.9502 -2.67969
-c-3.09961 -3.87988 -5.54004 -8.30957 -7.03027 -13.0596c-0.870117 -3.27051 -1.67969 -6.60059 -1.72949 -10c-0.0703125 -2.52051 -0.0800781 -5.07031 0.319336 -7.57031c1.13086 -7.62988 4.33008 -14.8496 8.77051 -21.1201c2 -2.7002 4.25 -5.26953 6.91992 -7.33008
-c1.62012 -1.26953 3.53027 -2.08984 5.33984 -3.0498c3.11035 -1.67969 6.32031 -3.22949 9.07031 -5.47949c2.66992 -2.09082 4.5498 -5.33008 4.39941 -8.79004c-0.00976562 -73.6709 0 -147.341 -0.00976562 -221.021c0 -1.34961 -0.0800781 -2.7002 0.0400391 -4.04004
-c0.129883 -1.47949 0.820312 -2.83008 1.46973 -4.14941c0.860352 -1.66016 1.78027 -3.34082 3.18066 -4.62012c0.849609 -0.770508 1.96973 -1.40039 3.14941 -1.24023c1.5 0.200195 2.66016 1.34961 3.4502 2.57031c0.959961 1.50977 1.67969 3.15918 2.28027 4.84961
-c0.759766 2.12988 0.439453 4.41992 0.540039 6.62988c0.139648 4.03027 -0.0205078 8.06055 0.139648 12.0898c0.0302734 5.89062 0.0302734 11.7705 0.0605469 17.6602c0.139648 3.62012 0.0292969 7.24023 0.109375 10.8604
-c0.150391 4.0293 -0.0195312 8.05957 0.140625 12.0898c0.0292969 5.99023 0.0292969 11.9795 0.0693359 17.9697c0.140625 3.62012 0.0205078 7.24023 0.110352 10.8604c0.139648 3.92969 -0.0205078 7.85938 0.139648 11.7803
-c0.0302734 5.98926 0.0302734 11.9795 0.0605469 17.9697c0.160156 3.93945 -0.00976562 7.87988 0.189453 11.8193c0.290039 -1.43945 0.129883 -2.91992 0.220703 -4.37988c0.189453 -3.60938 0.419922 -7.22949 0.759766 -10.8398
-c0.320312 -3.43945 0.439453 -6.88965 0.859375 -10.3193c0.370117 -3.10059 0.510742 -6.2207 0.950195 -9.31055c0.570312 -4.08984 0.870117 -8.20996 1.54004 -12.29c1.45996 -9.04004 2.83008 -18.1104 5.08984 -26.9902c1.13086 -4.81934 2.40039 -9.60938 4 -14.2998
-c2.54004 -7.89941 5.7207 -15.6699 10.3105 -22.6201c1.72949 -2.63965 3.87012 -4.97949 6.09961 -7.20996c0.270508 -0.25 0.549805 -0.509766 0.879883 -0.709961c0.600586 -0.25 1.31055 0.0703125 1.7002 0.570312c0.709961 0.879883 1.16992 1.93945 1.7002 2.92969
-c4.0498 7.7998 8.17969 15.5605 12.3398 23.3105c0.700195 1.30957 1.44043 2.62012 2.56055 3.60938c1.75 1.57031 3.83984 2.69043 5.97949 3.62988c2.87988 1.2207 5.90039 2.19043 9.03027 2.41992c6.58008 0.620117 13.1094 -0.75 19.5596 -1.84961
-c3.69043 -0.580078 7.40039 -1.16992 11.1299 -1.41016c3.74023 -0.0996094 7.48047 -0.0498047 11.21 0.280273c8.55078 0.919922 16.9902 2.95996 24.9404 6.25c5.2998 2.24023 10.46 4.83008 15.3096 7.92969c11.46 7.20996 21.46 16.5703 30.04 27.0107
-c1.16992 1.41992 2.25 2.89941 3.45996 4.2793c-1.19922 -3.24023 -2.66992 -6.37012 -4.15918 -9.47949c-1.25 -2.90039 -2.84082 -5.61035 -4.27051 -8.41992c-5.16016 -9.62988 -11.0195 -18.9102 -17.75 -27.5205
-c-4.03027 -5.20996 -8.53027 -10.0498 -13.3301 -14.5703c-6.63965 -6.0498 -14.0703 -11.3691 -22.4297 -14.7598c-8.20996 -3.37012 -17.3105 -4.62988 -26.0898 -3.29004c-3.56055 0.580078 -7.01074 1.69043 -10.4102 2.87988
-c-2.79004 0.970703 -5.39062 2.38086 -8.03027 3.69043c-3.42969 1.70996 -6.63965 3.80957 -9.70996 6.08008c2.70996 -3.06055 5.69043 -5.86035 8.7002 -8.61035c4.26953 -3.75977 8.74023 -7.30957 13.6299 -10.2295c3.98047 -2.4502 8.29004 -4.40039 12.8398 -5.51074
-c1.45996 -0.369141 2.95996 -0.459961 4.4502 -0.599609c-1.25 -1.09961 -2.62988 -2.04004 -3.99023 -2.97949c-9.60938 -6.54004 -20.0098 -11.8604 -30.6895 -16.4307c-20.8604 -8.7002 -43.1699 -13.9697 -65.7402 -15.3398
-c-4.66016 -0.240234 -9.32031 -0.360352 -13.9805 -0.360352c-4.97949 0.110352 -9.96973 0.130859 -14.9199 0.650391c-11.2002 0.759766 -22.29 2.73047 -33.1699 5.42969c-10.3496 2.70996 -20.5498 6.12012 -30.2998 10.5508
-c-8.70996 3.85938 -17.1201 8.41992 -24.9902 13.79c-1.83008 1.30957 -3.74023 2.5293 -5.37012 4.0791c6.60059 1.19043 13.0303 3.39062 18.9902 6.48047c5.74023 2.86035 10.9902 6.66016 15.6299 11.0703c2.24023 2.18945 4.29004 4.58984 6.19043 7.08984
-c-3.43066 -2.12988 -6.93066 -4.15039 -10.6201 -5.78027c-4.41016 -2.16016 -9.07031 -3.76953 -13.8105 -5.01953c-5.72949 -1.52051 -11.7393 -1.73047 -17.6094 -1.14062c-8.12988 0.950195 -15.8604 4.27051 -22.5098 8.98047
-c-4.32031 2.93945 -8.2207 6.42969 -11.96 10.0596c-9.93066 10.1602 -18.2002 21.8105 -25.6602 33.8604c-3.94043 6.26953 -7.53027 12.75 -11.1201 19.2197c-1.0498 2.04004 -2.15039 4.0498 -3.17969 6.10059c2.84961 -2.9209 5.56934 -5.9707 8.42969 -8.88086
-c8.99023 -8.96973 18.5596 -17.4395 29.1602 -24.4795c7.5498 -4.90039 15.6699 -9.23047 24.5596 -11.0303c3.11035 -0.729492 6.32031 -0.469727 9.46973 -0.80957c2.77051 -0.280273 5.56055 -0.200195 8.34082 -0.299805
-c5.0498 -0.0605469 10.1094 -0.0400391 15.1592 0.15918c3.65039 0.160156 7.27051 0.660156 10.8906 1.09082c2.06934 0.25 4.10938 0.709961 6.13965 1.19922c3.87988 0.950195 8.11035 0.959961 11.8301 -0.609375c4.75977 -1.85059 8.44043 -5.64062 11.3799 -9.70996
-c2.16016 -3.02051 4.06055 -6.2207 5.66016 -9.58008c1.16016 -2.43066 2.45996 -4.79004 3.5498 -7.26074c1 -2.23926 2.15039 -4.41992 3.41992 -6.51953c0.669922 -1.01953 1.40039 -2.15039 2.62012 -2.5498c1.06055 0.75 1.70996 1.91016 2.28027 3.03027
-c2.09961 4.15918 3.41992 8.64941 4.88965 13.0498c2.02051 6.58984 3.78027 13.2695 5.19043 20.0195c2.20996 9.25 3.25 18.7197 4.54004 28.1299c0.55957 3.98047 0.830078 7.99023 1.30957 11.9707c0.870117 10.6396 1.90039 21.2695 2.24023 31.9395
-c0.0800781 1.86035 0.240234 3.70996 0.25 5.57031c0.00976562 4.34961 0.25 8.68945 0.219727 13.0303c-0.00976562 2.37988 -0.00976562 4.75977 0 7.12988c0.0498047 5.06934 -0.200195 10.1396 -0.219727 15.21c-0.200195 6.60938 -0.709961 13.2002 -1.29004 19.7793
-c-0.730469 5.88086 -1.5498 11.7803 -3.12012 17.5107c-2.0498 7.75 -5.58984 15.0293 -9.7998 21.8193c-3.16016 5.07031 -6.79004 9.87988 -11.0898 14.0303c-3.87988 3.86035 -8.58008 7.08008 -13.9404 8.4502c-1.5 0.410156 -3.05957 0.450195 -4.58984 0.639648
-c0.0703125 2.99023 0.700195 5.93066 1.25977 8.85059c1.58984 7.70996 3.7998 15.2998 6.76074 22.5996c1.51953 4.03027 3.40918 7.90039 5.38965 11.7197c3.4502 6.56055 7.62012 12.79 12.46 18.46zM245.1 324.44
-c0.350586 0.0595703 0.709961 0.119141 1.07031 0.189453c0.19043 -1.79004 0.0898438 -3.58008 0.0996094 -5.37012v-38.1299c-0.00976562 -1.74023 0.130859 -3.49023 -0.149414 -5.21973c-0.360352 0.0302734 -0.709961 0.0498047 -1.06055 0.0498047
-c-0.949219 3.75 -1.71973 7.5498 -2.61914 11.3096c-0.380859 1.53027 -0.580078 3.09082 -1.07031 4.59082c-1.7002 0.239258 -3.42969 0.169922 -5.15039 0.199219c-5.05957 0.0107422 -10.1299 0 -15.1895 0.0107422
-c-1.66016 0.00976562 -3.32031 -0.0898438 -4.98047 0.0292969c-0.0302734 0.390625 -0.259766 0.910156 0.160156 1.18066c1.28027 0.649414 2.71973 0.879883 4.05957 1.34961c3.43066 1.13965 6.88086 2.16016 10.3105 3.31055
-c1.38965 0.479492 2.90039 0.719727 4.16016 1.54004c0.0400391 0.55957 0.0195312 1.12988 -0.0498047 1.67969c-1.23047 0.549805 -2.53027 0.870117 -3.81055 1.28027c-3.12988 1.0293 -6.29004 1.95996 -9.41016 3.01953c-1.79004 0.620117 -3.66992 1 -5.41016 1.79004
-c-0.0292969 0.370117 -0.0693359 0.730469 -0.109375 1.08984c5.08984 0.19043 10.2002 -0.0595703 15.2998 0.120117c3.36035 0.129883 6.73047 -0.0800781 10.0898 0.0703125c0.120117 0.389648 0.259766 0.769531 0.370117 1.16016
-c1.08008 4.93945 2.33008 9.8291 3.38965 14.75zM251.07 324.64c0.359375 -0.0498047 0.719727 -0.120117 1.08008 -0.199219c0.979492 -3.85059 1.72949 -7.76074 2.70996 -11.6104c0.359375 -1.41992 0.55957 -2.87988 1.0293 -4.27051
-c2.53027 -0.179688 5.07031 0.0107422 7.61035 -0.0498047c5.16016 -0.120117 10.3301 -0.120117 15.4902 -0.0693359c0.759766 0.00976562 1.51953 -0.0302734 2.2793 -0.0800781c-0.0390625 -0.360352 -0.0693359 -0.720703 -0.0996094 -1.08008
-c-1.82031 -0.830078 -3.78027 -1.25 -5.66992 -1.89062c-3.73047 -1.22949 -7.48047 -2.38965 -11.2197 -3.56934c-0.570312 -0.169922 -1.12012 -0.419922 -1.66992 -0.640625c-0.150391 -0.549805 -0.180664 -1.12012 -0.120117 -1.68945
-c0.870117 -0.480469 1.81934 -0.810547 2.76953 -1.08984c4.87988 -1.52051 9.73047 -3.14062 14.6299 -4.60059c0.379883 -0.129883 0.780273 -0.269531 1.12988 -0.490234c0.400391 -0.269531 0.230469 -0.790039 0.150391 -1.17969
-c-1.66016 -0.129883 -3.30957 -0.0302734 -4.96973 -0.0400391c-5.16992 -0.00976562 -10.3301 0.00976562 -15.5 -0.00976562c-1.61035 -0.0302734 -3.21973 0.0195312 -4.82031 -0.209961c-0.519531 -1.66992 -0.719727 -3.41992 -1.16992 -5.11035
-c-0.94043 -3.56934 -1.51953 -7.24023 -2.54004 -10.7793c-0.360352 -0.0107422 -0.709961 -0.0205078 -1.05957 -0.0605469c-0.290039 1.73047 -0.150391 3.48047 -0.150391 5.21973v38.1299c0.0205078 1.78027 -0.0800781 3.58008 0.110352 5.37012zM65.0498 279.67
-c1.12012 2.15039 2.08008 4.40039 3.37012 6.45996c-1.82031 -7.55957 -2.91016 -15.2695 -3.62012 -23c-0.799805 -7.70996 -0.849609 -15.4902 -0.540039 -23.2295c1.0498 -19.9404 5.54004 -39.8301 14.2305 -57.8809c2.99023 -5.98926 6.34961 -11.8291 10.5 -17.1094
-c6.12012 -7.46973 12.5293 -14.7598 19.8398 -21.0898c4.7998 -4.10059 9.99023 -7.78027 15.54 -10.8008c3.26953 -1.64941 6.50977 -3.38965 9.93945 -4.67969c5.01074 -2.03027 10.1904 -3.60938 15.4209 -4.93945c3.8291 -0.959961 7.7793 -1.41016 11.5195 -2.70996
-c5 -1.57031 9.46973 -4.61035 13.0303 -8.43066c4.92969 -5.22949 8.08984 -11.8701 10.2002 -18.6699c0.989258 -2.89941 1.58984 -5.91016 2.16992 -8.91992c0.149414 -0.75 0.219727 -1.51953 0.15918 -2.29004c-6.5 -2.78027 -13.2598 -5.05957 -20.2598 -6.17969
-c-4.10938 -0.780273 -8.29004 -0.990234 -12.46 -1.08008c-10.25 -0.240234 -20.4697 1.75977 -30.1201 5.12012c-3.73926 1.41992 -7.48926 2.84961 -11.0293 4.71973c-8.06055 3.83984 -15.6406 8.7002 -22.46 14.46c-2.9209 2.5498 -5.83008 5.12988 -8.40039 8.03027
-c-9.16016 9.83008 -16.2998 21.4102 -21.79 33.6494c-2.38965 5.55078 -4.61035 11.1807 -6.37012 16.96c-1.16992 3.94043 -2.36035 7.89062 -3.25977 11.9102c-0.75 2.94043 -1.21973 5.9502 -1.87012 8.91992c-0.459961 2.14062 -0.69043 4.32031 -1.03027 6.48047
-c-0.849609 5.42969 -1.2793 10.9297 -1.33008 16.4297c0.110352 6.18066 0.25 12.3701 1.07031 18.5c0.400391 2.86035 0.669922 5.74023 1.15039 8.60059c0.979492 5.69922 2.13965 11.3691 3.70996 16.9297c3.08984 11.6504 7.47949 22.9502 12.6895 33.8398z
-M428.78 286.11c1.09961 -1.66016 1.91016 -3.48047 2.7793 -5.26074c2.10059 -4.44922 4.24023 -8.89941 6.02051 -13.4893c7.61035 -18.7607 12.2998 -38.79 13.04 -59.0508c0.0195312 -1.75977 0.0703125 -3.51953 0.110352 -5.29004
-c0.129883 -9.56934 -1.27051 -19.0898 -3.18066 -28.4492c-0.729492 -3.58984 -1.54004 -7.16992 -2.58008 -10.6904c-4.04004 -14.7197 -10 -29 -18.4102 -41.7803c-8.20996 -12.5693 -19.0098 -23.5498 -31.8398 -31.4092
-c-5.72949 -3.59082 -11.79 -6.64062 -18.0498 -9.19043c-5.78027 -2.19043 -11.71 -4.03027 -17.7998 -5.11035c-6.40039 -1.0498 -12.9102 -1.51953 -19.4004 -1.22949c-7.91992 0.479492 -15.7793 2.07031 -23.21 4.84961
-c-1.93945 0.799805 -3.93945 1.45996 -5.83984 2.33008c-0.209961 1.50977 0.25 2.99023 0.530273 4.45996c1.16016 5.74023 3.03027 11.3604 5.7002 16.5801c2.36914 4.50977 5.51953 8.65039 9.45996 11.9004c2.42969 2.0498 5.23926 3.60938 8.15918 4.83008
-c3.58008 1.5 7.4707 1.96973 11.2402 2.83008c7.23047 1.70996 14.3701 3.92969 21.1504 7c10.3496 4.64941 19.71 11.3799 27.6494 19.46c1.59082 1.60938 3.23047 3.17969 4.74023 4.86914c3.37012 3.76074 6.70996 7.57031 9.85059 11.5303
-c7.47949 10.0703 12.8193 21.5898 16.71 33.4805c1.58008 5.2998 3.20996 10.5996 4.20996 16.0498c0.629883 2.87012 1.04004 5.78027 1.51953 8.67969c0.870117 6.08984 1.58984 12.2207 1.67969 18.3799c0.120117 6.65039 0.140625 13.3203 -0.529297 19.9404
-c-0.730469 7.99023 -1.87012 15.96 -3.70996 23.7803z" />
-    <glyph glyph-name="phoenix-squadron" unicode="&#xf511;" horiz-adv-x="512" 
-d="M96 384.62c46.4902 36.1299 105.55 56.0703 164.51 54.5703c29.5801 0.379883 59.1104 -5.37012 86.9102 -15.3301c-24.1299 4.62988 -49 6.33984 -73.3799 2.44922c-42.8701 -5.30957 -83.04 -27.1494 -111.83 -59.1797c5.66992 1 10.7803 3.66992 16 5.86035
-c18.1396 7.87012 37.4902 13.2598 57.2305 14.8301c19.7393 2.12988 39.6396 0.429688 59.2793 -1.91992c-14.4199 -2.79004 -29.1201 -4.57031 -43 -9.59082c-34.4297 -11.0693 -65.2695 -33.1592 -86.2998 -62.6299c-13.7998 -19.71 -23.6299 -42.8594 -24.6699 -67.1299
-c-0.349609 -16.4902 5.21973 -34.8096 19.8301 -44c8.0293 -4.85254 17.4395 -7.64648 27.498 -7.64648c3.4209 0 6.7793 0.289062 10.0215 0.90625c15.4502 2.45996 30.0703 8.64062 43.6006 16.3301c11.5195 6.82031 22.6699 14.5508 32 24.25
-c3.79004 3.2207 2.53027 8.4502 2.62012 12.79c-2.12012 0.339844 -4.37988 1.11035 -6.30078 -0.299805c-11.2676 -6.17773 -23.3838 -11.3975 -35.8193 -15.3701c-20 -6.16992 -42.1602 -8.45996 -62.1006 -0.779297c12.79 -1.73047 26.0605 -0.310547 37.7402 5.43945
-c20.2305 9.71973 36.8105 25.2002 54.4404 38.7705c27.625 21.2686 57.3311 39.7881 88.8994 55.3096c25.71 12 52.9404 22.7803 81.5703 24.1201c-15.6299 -13.7197 -32.1504 -26.5205 -46.7803 -41.3799c-14.5098 -14 -27.46 -29.5 -40.1094 -45.1807
-c-3.52051 -4.59961 -8.9502 -6.93945 -13.5801 -10.1592c-22.333 -15.0176 -40.1992 -35.627 -51.8906 -60.1006c-9.33008 -19.6797 -14.5 -41.8496 -11.7695 -63.6494c1.93945 -13.6904 8.70996 -27.5908 20.8994 -34.9102c12.9004 -8 29.0508 -8.07031 43.4805 -5.10059
-c32.7998 7.4502 61.4297 28.8906 81 55.8408c20.4404 27.5195 30.5195 62.1992 29.1602 96.3496c-0.520508 7.5 -1.57031 15 -1.66016 22.4902c8 -19.4805 14.8203 -39.71 16.6504 -60.8301c2 -14.2803 0.75 -28.7598 -1.62012 -42.9004
-c-1.91016 -11 -5.66992 -21.5098 -7.78027 -32.4297c19.9287 22.3428 33.9023 50.3545 39.3398 81.0703c1.48438 9.39258 2.25488 19.0225 2.25488 28.8301c0 27.0342 -5.95508 52.6875 -16.4648 75.8096c20.7803 -32 32.3398 -69.5801 35.71 -107.48
-c0.490234 -12.7295 0.490234 -25.5098 0 -38.2295c-2.89453 -35.0469 -13.3936 -68.4854 -29.5898 -97.75c-26.1201 -47.3398 -68 -85.6299 -117.19 -108c-78.29 -36.2305 -174.68 -31.3203 -248 14.6797c-39.0088 23.8643 -70.5215 57.7861 -91.4492 98.6602
-c-14.2646 28.0879 -23.2725 59.8086 -25.3604 92.9199v31.3398c3.92969 69.7402 40.8701 135.92 96 178.36zM318 304.29c5.50781 0.932617 10.9404 2.46973 16 4.47949c5 1.77051 9.24023 5.94043 10.3203 11.2207c-8.95996 -4.99023 -17.9805 -9.91992 -26.3203 -15.7002z
-" />
-    <glyph glyph-name="sith" unicode="&#xf512;" 
-d="M0 416l118.75 -69.71l-11.5195 58.9004l91.0596 -69.8701c8.5 1.50977 17.0996 2.29004 25.71 2.29004s17.21 -0.770508 25.71 -2.29004l91.0596 69.8701l-11.5195 -58.9004l118.75 69.71l-69.71 -118.75l58.8604 11.5195l-69.8408 -91.0293
-c3.04004 -17.0098 3.03027 -34.4404 0 -51.4502l69.8408 -91.0303l-58.8604 11.5205l69.71 -118.78l-118.75 69.71l11.5195 -58.8604l-91.0293 69.8408c-17.0098 -3.04004 -34.46 -3.04004 -51.4805 0l-91.0293 -69.8408l11.5195 58.8604l-118.75 -69.71l69.71 118.78
-l-58.8604 -11.5205l69.8408 91.0303c-1.49512 8.39453 -2.27539 16.7734 -2.27539 25.5947s0.780273 17.4609 2.27539 25.8555l-69.8408 91.0293l58.8604 -11.5195zM224 316.22c-31.7998 0 -63.6104 -12.0898 -87.8496 -36.3398c-48.4902 -48.4902 -48.5 -127.2 0 -175.7
-c48.5 -48.4893 127.21 -48.5195 175.699 -0.0292969c48.4902 48.4893 48.5 127.199 0 175.699c-24.25 24.25 -56.0498 36.3701 -87.8496 36.3701zM224 279.56c22.4199 0 44.8301 -8.51953 61.9199 -25.6094c34.1904 -34.1904 34.1797 -89.6904 0 -123.87
-c-34.1895 -34.1797 -89.6504 -34.1904 -123.84 0c-34.1904 34.1895 -34.1797 89.6895 0 123.87c17.0898 17.0898 39.5 25.6094 61.9199 25.6094z" />
-    <glyph glyph-name="trade-federation" unicode="&#xf513;" horiz-adv-x="496" 
-d="M248 439.2c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM248 -43.5996c129.7 0 234.8 105.1 234.8 234.8s-105.1 234.8 -234.8 234.8s-234.8 -105.1 -234.8 -234.8s105.1 -234.8 234.8 -234.8zM403.1 284.9v-0.100586h-145.699
-v-34.7998h83.2998v-47h-83.2998v-195.8h-48.8008v196.8h-117.699l-36.7002 46h155.1v81.7002h193.8v-46.7998zM329.8 239.8h-82.8994v56.2002h145v24.4004h-171.801v-80.6006h-143.899l20.0996 -23.8994h123.8v-197.4h26.8008v197.4h82.8994v23.8994zM168.5 308.8l22 9.2998
-l-15.7998 -18.0996l15.7002 -18.0996l-22.2002 9.5l-12.2998 -20.5l2.09961 24l-23.2998 5.39941l23.5 5.40039l-2.10059 23.7998zM138.9 328.5l9.5 -10.2002l-13.8008 5.2998l-6.7998 -12.1992l0.799805 14.6992l-13.6992 2.7002l14.2998 3.7998l-1.7002 13.9004
-l8 -12.4004l12.7002 5.90039zM304.3 183.3l-9.2998 -10.7998l9.40039 -10.7002l-13.1006 5.5l-7.2998 -12.2002l1.2002 14.2002l-13.9004 3.2002l13.9004 3.2002l-1.2998 14.2002l7.2998 -12.2002zM411.2 260.5l-15 -17.5996l15.0996 -17l-21.2002 8.7998l-11.5 -19.6006
-l1.80078 22.9004l-22.2002 4.90039l22.2998 5.39941l-2.2002 22.7002l12 -19.5996zM248 418.1c125.3 0 226.9 -101.6 226.9 -226.899s-101.601 -226.9 -226.9 -226.9s-226.9 101.601 -226.9 226.9s101.601 226.899 226.9 226.899zM342.6 252h-83.1992v30.9004h145.699
-v50.6992h-197.8v-81.5996h-157.399l40 -49.9004h116.699v-196.8h52.7002v195.7h83.2998v51zM248 404.8c-94.5996 0 -174.9 -61.5996 -202.9 -146.8h157.4v81.5996h199.1c-38.7998 40.2002 -93.2998 65.2002 -153.6 65.2002zM248 -22.2998c117.9 0 213.5 95.5996 213.4 213.5
-c0 51.8994 -18.5 99.5 -49.3008 136.5v-50.7998h-145.6v-19.2002h83.2002v-62.7002h-83.2998v-195.8h-64.6006v196.8h-114.7l-43.7998 56.2998c-5.7998 -19.2998 -8.89941 -39.8994 -8.89941 -61.0996c0 -117.9 95.6992 -213.5 213.6 -213.5zM178.8 173l22.7002 9.2998
-l-16.9004 -17.0996l15.8008 -18.7998l-21.5 10.7998l-13 -20.9004l3.69922 23.7998l-23.7998 5.90039l23.7002 3.90039l-1.7002 24.5z" />
-    <glyph glyph-name="wolf-pack-battalion" unicode="&#xf514;" horiz-adv-x="512" 
-d="M267.73 -23.5303l-11.4404 -21.1396l-11.4404 21.1104l-10.5596 -15.8408l-5.28027 12.3203l-5.2793 -7v-29.8301c-21.0605 7.91992 -21.1104 66.8604 -25.5107 97.21c-4.62012 31.8799 0.879883 92.8105 -81.3701 149.11c8.88086 23.5996 12 49.4297 2.64062 80.0498
-c-27.8701 -3.33008 -53.9404 -10.5801 -63.3398 -54.0996l30.3496 -8.36035c-11.2002 -23.04 -17.0195 -46.7598 -13.2002 -72.1396l27.2705 7l6.16016 -33.4307l18.4697 7l8.7998 -33.4297l19.3496 7l-26.4297 -21.0596l-8.7998 28.1494l-24.6299 -5.28027l-7 35.6309
-l-26.3906 -14.5205c-0.25 20.0205 -6.95996 58.0605 8.80078 84.4502l-26.3906 -5.28027c-3.99023 22.0703 2.37988 39.21 7.91992 56.7402l-22.4297 -9.67969c0.44043 25.0693 29.9404 56.79 61.5898 58.5098c20.2197 1.08984 56.7305 25.1602 54.1006 51.8994
-c-1.95996 19.8701 -17.4502 42.6201 -43.1104 49.7002c43.9795 -36.5098 9.71973 -67.2998 -5.28027 -73.46c-4.39941 11.4404 -17.54 69.0801 0 130.2c40.4697 -22.8701 89.7002 -65.0996 93.21 -147.86l58.0605 -38.71l3.51953 -93.25l-107.33 59.8203l-7 -7
-l17.5801 -3.50977l44 -38.71l15.8398 5.2793l28.1504 -49.2598l3.51953 -119.64l-21.1094 -15.8398l32.5498 -15.8398l32.5498 15.8398l-21.1094 15.8398l3.51953 119.64l28.0996 49.25l15.8408 -5.28027l44 38.7109l17.5898 3.51953l-7 7l-107.3 -59.7695l3.51953 93.25
-l58 38.71c3.5498 82.6895 52.8096 124.92 93.2002 147.79c17.54 -61.1201 4.39941 -118.761 0 -130.2c-14.96 6.16016 -49.2803 36.9502 -5.28027 73.46c-25.6602 -7.08008 -41.1104 -29.8301 -43.1104 -49.7002c-2.63965 -26.7305 33.8809 -50.8096 54.1006 -51.9004
-c31.6396 -1.70996 61.1396 -33.4297 61.5801 -58.5l-22.4307 9.68066c5.54004 -17.5303 11.9209 -34.6699 7.9209 -56.7402l-26.3906 5.28027c15.7998 -26.3906 9.0498 -64.4502 8.7998 -84.4502l-26.3896 14.5195l-7 -35.6299l-24.5898 5.24023l-8.7998 -28.1504
-l-26.3906 21.1104l19.3506 -7l8.7998 33.3896l18.4697 -7l6.16016 33.4307l27.2803 -7.05078c3.7998 25.3809 -2.0498 49.1406 -13.2002 72.1406l30.3496 8.35938c-9.42969 43.5205 -35.4297 50.7305 -63.3398 54.1006
-c-9.35938 -30.6201 -6.24023 -56.4404 2.64062 -80.0498c-82.25 -56.3008 -76.75 -117.221 -81.3701 -149.11c-4.40039 -30.3496 -4.4502 -89.29 -25.5107 -97.21v29.9502l-5.2793 7l-5.28027 -12.3203zM346.9 71.4697l-15.8408 10.5303
-c7.4707 4.36035 13.7607 8.41992 19.3506 12.3203c-0.600586 -7.2207 -0.270508 -13.8398 -3.50977 -22.8398v-0.0107422zM375.05 120.73c-0.399414 -10.9404 -0.899414 -21.6602 -1.75977 -31.6709c-7.84961 1.86035 -15.5703 3.80078 -21.1104 7
-c8.24023 7.94043 15.5508 16.3203 22.8701 24.6807v-0.00976562zM399.68 115.45l-23.75 6.16016c6.78906 8.64844 12.9297 17.708 18.4707 27.2695c3.22949 -9.21973 5.2793 -20 5.2793 -33.4297zM403.2 196.39c19.4395 -12.8096 27.7998 -33.6592 29.9102 -56.2998
-c-12.3203 4.53027 -24.6299 9.31055 -36.9502 10.5605c5.05957 12 6.64941 28.1396 7 45.7393h0.0400391zM401.44 242.13c18.5596 -2.62988 35.1494 -9.18945 45.7598 -28.1494c-14.2197 -4.36035 -24.7803 -5.9707 -44 -14.0801
-c0.0800781 13.4092 -0.950195 27.9297 -1.75977 42.2295zM165.68 71.4805c-3.23926 9 -2.91016 15.5791 -3.50977 22.8398c5.58984 -3.90039 11.8799 -7.95996 19.3496 -12.3203zM137.53 120.74c7.31934 -8.36035 14.6299 -16.7402 22.8701 -24.6699
-c-5.54004 -3.2002 -13.2607 -5.14062 -21.1104 -7c-0.860352 10.0098 -1.36035 20.7295 -1.75977 31.6699zM112.89 115.46c0 13.4297 2 24.21 5.28027 33.4297c5.54102 -9.56152 11.6816 -18.6211 18.4697 -27.2695zM109.37 196.4h0.0898438
-c0.349609 -17.6006 2 -33.7402 7 -45.7402c-12.3701 -1.25 -24.6797 -6.03027 -37 -10.5605c2.11035 22.6406 10.4697 43.4902 29.9102 56.3008zM111.13 242.14c-0.80957 -14.2998 -1.83984 -28.8193 -1.75977 -42.2295c-19.2197 8.10938 -29.7803 9.71973 -44 14.0801
-c10.6299 18.9502 27.2295 25.5195 45.7598 28.1494z" />
-    <glyph glyph-name="hornbill" unicode="&#xf592;" horiz-adv-x="512" 
-d="M76.3799 77.7002c0.219727 -1.64648 0.333008 -3.32617 0.333008 -5.03125c0 -20.8623 -16.9375 -37.7998 -37.8008 -37.7998c-20.8623 0 -37.7998 16.9375 -37.7998 37.7998s16.9375 37.7998 37.7998 37.7998c1.84668 0 3.62207 -0.0927734 5.39746 -0.348633
-c-78.2793 111.35 52 190.53 52 190.53c-5.85938 -43 -8.23926 -91.1602 -8.23926 -91.1602c-67.3105 -41.4902 0.929688 -64.0605 39.8096 -72.8701c19.7207 -53.6396 71.2256 -91.8984 131.66 -91.9404c1.91992 0 3.76953 0.209961 5.66992 0.280273l0.110352 -18.8604
-c-99.2207 -1.38965 -158.7 29.1406 -188.94 51.6006zM184.38 405.4c109.75 73.9395 187.601 -54.0605 187.601 -54.0605c-43.04 5.86035 -91.1807 8.24023 -91.1807 8.24023c-43.0996 70.0098 -65.7998 -6.58008 -73.7998 -44.29
-c-51.5254 -20.7842 -87.8506 -71.208 -87.8896 -130.13c0 -0.910156 0.139648 -1.78027 0.139648 -2.67969l-21.8398 -0.150391c-1.41016 100.43 29.8701 160.09 52.4199 190c-1.02051 -0.0820312 -2.03711 -0.0888672 -3.07812 -0.0888672
-c-20.9453 0 -37.9492 17.0049 -37.9492 37.9502s17.0039 37.9502 37.9492 37.9502c15.0898 0 28.1338 -8.8252 34.248 -21.5918c2.35742 -4.91211 3.70117 -10.4102 3.70117 -16.2188c0 -1.67188 -0.109375 -3.31738 -0.321289 -4.93066zM488.57 271.23
-c-4.87012 -2.31934 -10.2754 -3.63965 -16.0244 -3.63965c-1.09375 0 -2.17578 0.046875 -3.24609 0.139648c84.4502 -113.45 -49 -194.61 -49 -194.61c5.87012 43.0303 8.20996 91.1602 8.20996 91.1602c66.6006 40.96 0.640625 63.54 -38.46 72.54
-c-20.5566 51.9932 -71.2275 88.7393 -130.49 88.7598c-2.75 0 -5.43945 -0.259766 -8.13965 -0.410156l-0.139648 22.5c93.6094 1.33008 151.72 -25.7998 183.45 -47.7402c-0.270508 1.82617 -0.375 3.67676 -0.375 5.57715c0 20.9395 17 37.9395 37.9395 37.9395
-c20.9404 0 37.9404 -17 37.9404 -37.9395c0 -15.1162 -8.85938 -28.1797 -21.665 -34.2764zM374.06 11.7598v-0.0595703c0.112305 0.000976562 0.239258 -0.0332031 0.351562 -0.0332031c20.9336 0 37.9297 -16.9961 37.9297 -37.9297
-c0 -20.9346 -16.9961 -37.9307 -37.9297 -37.9307c-15.0908 0 -28.1348 8.83203 -34.2412 21.6035c-2.0498 4.26074 -3.33984 9.0332 -3.63965 14c-111.98 -80.3398 -191.9 51 -191.9 51c43.0703 -5.87988 91.1904 -8.21973 91.1904 -8.21973
-c41.3301 -67.1709 63.9199 0.540039 72.7695 39.4893c53.3574 19.8584 91.3574 71.2188 91.3906 131.45c0 2.08008 -0.220703 4.08984 -0.300781 6.15039l19.5205 0.139648c1.28027 -89.9697 -23.71 -147.2 -45.1406 -179.66z" />
-    <glyph glyph-name="mailchimp" unicode="&#xf59e;" 
-d="M330.61 204.48c-2.50977 3.17969 -4.70996 8.31934 -5.9707 14.3193c-2.22949 10.6807 -1.98926 18.4102 4.24023 19.4199c6.23047 1.01074 9.25 -5.45996 11.4805 -16.1299c1.5 -7.17969 1.20996 -13.7803 -0.450195 -17.6094
-c-1.53418 0.198242 -3.02441 0.300781 -4.61328 0.300781c-1.58789 0 -3.15234 -0.102539 -4.68652 -0.300781zM277.05 196c-4.45996 1.95996 -10.2598 4.13965 -17.2598 3.7002c-12.5996 -0.770508 -21.75 -7.21973 -22.5996 -3.48047
-c-0.400391 1.83984 2.40918 4.87988 5.40918 7.06055c5.20117 3.80859 11.6621 6.06055 18.5967 6.06055c4.25391 0 8.31152 -0.84668 12.0137 -2.38086c8.63965 -3.7002 14.0098 -11.1504 12.1201 -13.0898c-1.08008 -1.12988 -3.81055 0.129883 -8.28027 2.12988z
-M268.05 190.87c9.68066 1.14941 16.8604 -4.62988 15.4004 -6.85059c-0.629883 -1.00977 -2.02051 -0.829102 -4.94043 -0.489258c-1.85449 0.286133 -3.73438 0.420898 -5.66895 0.420898c-4.59277 0 -8.99121 -0.838867 -13.0508 -2.37109
-c-4.04004 -1.62012 -4.30957 -1.15039 -5.20996 -0.810547c-1.53027 3.57031 4.40039 8.68066 13.4697 10.1006zM322.22 173.77c-3.40039 -6.91016 -17.7002 0.0703125 -14.2998 7c3.40039 6.93066 17.6797 -0.129883 14.2998 -7zM337.88 194.24
-c7.69922 -0.149414 7.42969 -16.0605 -0.259766 -15.9307c-7.69043 0.130859 -7.40039 16.0605 0.259766 15.9307zM119.09 115.34c4.0293 0.910156 3.40039 -1.25 3.37012 -0.359375c0.291016 -0.358398 0.464844 -0.818359 0.464844 -1.31445
-c0 -0.369141 -0.0966797 -0.71582 -0.264648 -1.01562c-3.16016 -7.37012 -20.1904 -7.68066 -21.5801 9c-0.910156 10.8594 9.30957 21.0293 -2.28027 28.6191c-2.02734 1.34277 -4.46289 2.14648 -7.0752 2.14648c-4.51465 0 -8.4873 -2.33691 -10.7744 -5.86621
-c-3.2998 -5.16016 -3.11035 -12.2002 -7.37988 -11.6299c-3.7207 0.540039 -3.70996 14.4805 5 24.0801c7.22949 8 25.9492 11.9297 35.0498 -5.54004c8.11035 -15.3896 -8.2002 -27.7695 -3 -35.7695c2.46973 -3.80078 7.14941 -2.66016 8.46973 -2.35059zM418.81 132.41
-c6.44043 0 16.5605 -7.5 16.5605 -25.2705c0 -17.7695 -7.37012 -37.9092 -9.11035 -42.3799c-54.3896 -130.279 -264.56 -130.06 -322.29 3c-31.5293 -0.0400391 -64.1699 26.9805 -67.5293 60.3799c-0.308594 2.71191 -0.438477 5.42383 -0.438477 8.2168
-c0 8.89062 1.60352 17.4102 4.53809 25.2832l-14.7598 12.5107c-67.5498 57.04 143.72 291.85 211.27 232.93c0.339844 -0.299805 22.9902 -22.5205 23.0498 -22.5703l12.5508 5.33008c59.2695 24.5303 107.359 12.6904 107.42 -26.4697
-c0.0292969 -20.3604 -12.9404 -44.1006 -33.7305 -65.6504c26.1699 -24.2998 20.0205 -71.6094 21.5205 -83c7.19922 -2 30.6992 -7.62012 41.0996 -18.54c18.3604 -19.25 5.52051 -39.5801 3.07031 -43.25c4.20996 -11.2998 3.42969 -8.79004 6.7793 -20.5195z
-M102.81 84.25c29.4502 -0.680664 38.6309 28.2002 34.0908 57.8398c-9.74023 62.9404 -90.1699 48.9805 -84 -12.3301c2.44922 -24.3594 27.0898 -44.8994 49.9092 -45.5098zM84.2998 198.45c19.3105 51.8096 51.54 99.5498 94.2002 132.399
-c31.6504 26.4102 65.7998 45.3506 65.7998 45.3506s-18.3896 21.3193 -23.9395 22.8896c-34.1699 9.23047 -107.94 -41.6494 -155.051 -108.88c-19.0596 -27.21 -46.3096 -75.3604 -33.2998 -100.21c1.58984 -3 10.71 -10.9297 15.5898 -15
-c8.18066 11.9102 21.54 20.5 36.7002 23.4502zM323.18 97.2998c2.58984 0.259766 0.560547 -2.53027 0.560547 -2.53027s-27.4004 -12.75 -71 0.740234c1.20996 -10.2295 11.1699 -14.8193 15.9395 -16.6699c31.4004 -12.21 86.6904 -2.58008 128.46 26
-c0.850586 0.589844 1.41992 0 0.730469 -1c-28.9697 -41.3496 -128.73 -54.7598 -151.37 -21.3496c-12.0801 17.8301 -0.599609 43.8594 19.5498 41.1494c6.7998 -0.769531 53.7705 -8 100.48 13.6807c27.4893 12.7598 37.8701 26.79 36.3096 38.1602
-c-0.537109 3.60742 -2.25 6.85156 -4.74023 9.28906c-5 4.83008 -12.79 8.60059 -26 12.3105c-4.35938 1.22949 -7.31934 2.00977 -10.5098 3.05957c-5.67969 1.83008 -8.47949 3.33008 -9.10938 14c-0.280273 4.62988 -1.09082 20.9102 -1.38086 27.6299
-c-0.519531 11.7607 -1.91992 27.8506 -11.9199 34.4902c-2.71094 1.73535 -5.94238 2.75098 -9.39746 2.75098c-1.44824 0 -2.85645 -0.177734 -4.20215 -0.510742c-5.69043 -0.969727 -9.06055 -4.00977 -13.2598 -7.50977
-c-12.4404 -10.3701 -22.9502 -12.0605 -34.6406 -11.5605c-6.98926 0.290039 -14.3994 1.37988 -22.8799 1.87988l-5 0.290039c-19.5801 1 -40.5693 -15.9092 -44.0693 -39.9092c-4.86035 -33.4307 19.3291 -50.7002 26.3291 -60.8301
-c1.04785 -1.25391 1.74121 -2.82812 1.9209 -4.54004c0 -1.94043 -1.25 -3.48047 -2.48047 -4.79004c-19.9805 -20.54 -26.3701 -53.1699 -18.8398 -80.3701c0.927734 -3.33594 2.13574 -6.6377 3.5498 -9.74023c17.7002 -41.2598 72.4902 -60.4795 126 -43
-c7.01562 2.29199 13.8936 5.20215 20.3398 8.58008c11.8203 5.84668 22.2969 13.7168 31.1504 23.3096c14.2002 14.8408 22.6396 30.9707 25.9297 50.8408c2.81055 18.6191 -7.78027 18.7598 -11.4395 18.0996c-1.37598 8.42188 -3.82812 16.6758 -7.12012 24.2803
-c-15.6299 -12.3506 -35.71 -20.9707 -51 -25.3506c-69.4004 -19.9102 -90.1904 6.35059 -96.4004 -13.8096c33.7705 -12.3701 69.5098 -7.07031 69.5098 -7.07031zM171.31 290.5l0.0605469 0.00976562c-0.107422 -0.130859 -0.170898 -0.297852 -0.170898 -0.480469
-c0 -0.419922 0.34082 -0.759766 0.759766 -0.759766c0.151367 0 0.292969 0.0439453 0.411133 0.120117c11.4199 8.30078 64.9502 42.7705 134.5 26.8301c0.860352 -0.189453 1.39941 1.29004 0.639648 1.7207c-11.3398 6.33984 -28.6895 10.6494 -41 10.7393
-c-0.405273 0.00976562 -0.732422 0.342773 -0.732422 0.750977c0 0.164062 0.0527344 0.31543 0.142578 0.439453c2.23535 2.92383 4.79492 5.49414 7.70996 7.74023c0.18457 0.140625 0.303711 0.362305 0.303711 0.611328
-c0 0.424805 -0.345703 0.770508 -0.770508 0.770508c-0.0175781 0 -0.0351562 -0.000976562 -0.0527344 -0.00195312c-17.5205 -1.08008 -37.5107 -9.4707 -49 -17.2998c-0.12207 -0.0859375 -0.271484 -0.136719 -0.431641 -0.136719
-c-0.414062 0 -0.75 0.335938 -0.75 0.75c0 0.0605469 0.0078125 0.120117 0.0214844 0.176758c0.899414 4.30957 3.72949 9.98926 5.18945 12.6494c0.0644531 0.108398 0.101562 0.236328 0.101562 0.371094c0 0.40332 -0.327148 0.730469 -0.730469 0.730469
-c-0.134766 0 -0.261719 -0.0371094 -0.371094 -0.101562c-18.4697 -9.4502 -39.0898 -26.2803 -55.8301 -45.6299z" />
-    <glyph glyph-name="megaport" unicode="&#xf5a3;" horiz-adv-x="496" 
-d="M214.5 238.4l33.4004 33.3994l33.3994 -33.3994v-66.4004l-33.2998 -33.2998l-33.5 33.5v66.2002zM248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM393.1 25.5996h0.100586v87.1006l-59.7002 59.7002v87.5996l-59.5 59.5
-v75.5996l-26.0996 19.2002l-26.1006 -19.2002v-75.5996l-59.5 -59.5v-87.9004l-59.5 -59.5v-87l26.1006 -19.1992l26.0996 19.1992v65.5l33.5 33.4004l33.4004 -33.4004v-65.5l26.0996 -19.1992l26.2002 19.1992v65.5l33.3994 33.4004l33.4004 -33.4004v-65.5l26 -19.1992z
-" />
-    <glyph glyph-name="nimblr" unicode="&#xf5a8;" horiz-adv-x="384" 
-d="M246.6 148.71c15.5703 0 27.1504 -11.46 27.1504 -27s-11.6201 -27 -27.1504 -27c-15.6992 0 -27.1494 11.5703 -27.1494 27s11.5498 27 27.1494 27zM113 121.75c0 15.6104 11.6797 27 27.1504 27c15.4697 0 27.1494 -11.46 27.1494 -27s-11.4697 -27 -27.1494 -27
-c-15.4404 0 -27.1504 11.3096 -27.1504 27zM191.76 289c98.3701 0 177.76 -78.9102 177.76 -176.48c0 -97.5693 -79.6094 -176.52 -177.76 -176.52c-98.1494 0 -177.76 78.8701 -177.76 176.52v335.48l45.25 -227c30.2002 48.2305 97.75 68 132.51 68zM191.76 -19.1201
-c73.2402 0 132.51 58.96 132.51 131.64c0 72.6807 -59.2393 131.54 -132.51 131.54c-73.2695 0 -132.51 -58.8994 -132.51 -131.59c0 -72.6895 59.2402 -131.59 132.51 -131.59z" />
-    <glyph glyph-name="rev" unicode="&#xf5b2;" 
-d="M289.67 173.11c0 -36.1895 -29.3809 -65.5703 -65.5703 -65.5703c-36.1885 0 -65.5693 29.3809 -65.5693 65.5703c0 36.1885 29.3906 65.5596 65.5801 65.5596c36.1631 -0.0439453 65.5156 -29.3965 65.5596 -65.5596zM429.22 178.16v-210.16h-210.16v0.110352
-c-110.939 2.70996 -200.06 93.4092 -200.06 205c0 108.569 84.2998 197.319 191 204.569v38.3203l108.77 -62.7803l-108.77 -62.79v39.1201c-80 -7.16016 -143 -74.5498 -143 -156.43c0 -86.6201 70.4902 -157.12 157.11 -157.12s157.09 70.5 157.09 157.12
-c-0.0263672 55.3057 -28.5371 103.871 -71.8105 131.84l45.3799 26.2002c44.3125 -36.582 72.8613 -91.4561 74.3203 -153h0.129883z" />
-    <glyph glyph-name="shopware" unicode="&#xf5b5;" horiz-adv-x="512" 
-d="M403.5 -7.41016c-40.9688 -30.4482 -91.7109 -48.4707 -146.63 -48.4707c-0.223633 0 -0.646484 -0.120117 -0.870117 -0.119141c-137.19 0 -248 111 -248 248c0 137.19 111 248 248 248h0.21582c63.5576 0 121.648 -24.0508 165.484 -63.5
-c0.716797 -0.65332 1.16699 -1.59375 1.16699 -2.63965c0 -1.9707 -1.59961 -3.57031 -3.57031 -3.57031c-0.155273 0 -0.306641 0.0107422 -0.457031 0.0302734c-18.2656 2.43848 -36.9023 3.69727 -55.8301 3.69727c-0.445312 0 -0.43457 -0.0166016 -0.879883 -0.0175781
-c-129.36 0 -222.399 -53.4697 -222.399 -155.35c0 -109 92.1299 -145.881 176.829 -178.73c33.6406 -13 65.4004 -25.3604 87 -41.5898c0.868164 -0.65332 1.42969 -1.69238 1.42969 -2.86133c0 -1.16992 -0.561523 -2.20508 -1.42969 -2.8584zM503 214.91
-c0.698242 -7.59375 0.950195 -15.1699 0.950195 -22.9443c0 -31.8691 -5.99902 -62.3467 -16.9307 -90.3662c-0.526367 -1.31445 -1.81543 -2.24023 -3.31738 -2.24023c-0.608398 0 -1.18066 0.152344 -1.68262 0.420898
-c-29.4893 16.3594 -61.6094 28.3398 -92.6797 39.9297c-60.2803 22.4902 -112.34 41.8896 -112.34 84.4902c0 1.45996 -3.87988 53.6299 80.25 53.6299c50.8604 0 92.7197 -17.4805 144.48 -60.4805c0.706055 -0.598633 1.17871 -1.46484 1.26953 -2.43945z" />
-    <glyph glyph-name="squarespace" unicode="&#xf5be;" horiz-adv-x="512" 
-d="M186.12 104.66l157.22 157.2c38.5703 38.5898 101.13 38.5898 139.72 0c38.5908 -38.5801 38.5908 -101.13 0 -139.721l-119.25 -119.239l-0.0400391 -0.0400391c-19.2891 -19.2705 -50.5498 -19.25 -69.8193 0.0400391l154.149 154.14
-c19.29 19.29 19.29 50.5703 0 69.8604s-50.5693 19.29 -69.8594 0l-157.181 -157.181c-9.64941 -9.64941 -25.29 -9.64941 -34.9395 0c-9.65039 9.65039 -9.65039 25.29 0 34.9404zM430.65 209.46c9.63965 -9.63965 9.63965 -25.2803 -0.0107422 -34.9297l-157.199 -157.2
-c-38.5801 -38.5703 -101.141 -38.5703 -139.721 0l-0.0195312 0.0195312c-9.64062 9.65039 -9.62988 25.29 0.0195312 34.9307l0.0107422 0.00976562c9.64941 9.63965 25.2793 9.62988 34.9199 -0.00976562l0.0498047 -0.0498047
-c19.29 -19.2607 50.5498 -19.2402 69.8193 0.0498047l157.2 157.18c9.64062 9.65039 25.2803 9.65039 34.9307 0zM168.66 122.13c-38.6006 -38.5801 -101.13 -38.5801 -139.73 0.00976562c-38.5801 38.5801 -38.5801 101.13 0 139.721l119.23 119.25l0.0195312 0.0195312
-c19.3008 19.2803 50.5703 19.2705 69.8506 -0.0195312l-154.17 -154.17l-0.0302734 -0.0302734c-19.2803 -19.2998 -19.2598 -50.5605 0.0302734 -69.8398l0.00976562 -0.0107422c19.29 -19.29 50.5703 -19.2793 69.8496 0.0107422l157.21 157.18
-c9.64062 9.63965 25.2705 9.63965 34.9102 0c9.64062 -9.65039 9.64062 -25.29 0 -34.9404zM81.3301 174.53c-9.64062 9.64941 -9.65039 25.29 0 34.9297l157.189 157.19c38.5908 38.5898 101.131 38.5898 139.721 0c9.64941 -9.64062 9.64941 -25.2803 0 -34.9307
-c-9.64062 -9.64941 -25.2803 -9.64941 -34.9307 0l-0.0195312 0.0205078c-19.29 19.2793 -50.5596 19.2695 -69.8398 -0.0205078l-157.21 -157.189c-9.64062 -9.64062 -25.2705 -9.64062 -34.9102 0z" />
-    <glyph glyph-name="themeco" unicode="&#xf5c6;" 
-d="M202.9 439.57c9.89941 5.72949 26 5.81934 35.9492 0.209961l191.15 -107.63c10 -5.60059 18 -19.4404 18 -30.8604v-217.29c0 -11.4404 -8.05957 -25.29 -18 -31l-191.19 -108.74c-9.92969 -5.66016 -26 -5.56934 -35.8496 0.209961l-185.1 108.41
-c-9.86035 5.78027 -17.8604 19.7402 -17.8604 31.1201v217.29c0 11.4404 8 25.3604 17.9102 31.0801zM125.5 239.74c-15.9404 0 -31.8896 -0.140625 -47.8301 -0.140625v-101.449h19.1299v29.8496h28.7002c49.71 0 49.5596 71.7402 0 71.7402zM265.64 139.45
-l-30.7295 34.6396c37 7.50977 34.7998 65.2305 -10.8701 65.5098c-16.0898 0 -32.1699 0.140625 -48.2598 0.140625v-101.59h19.1299v33.9092h18.4102l29.5596 -33.9092h22.7598v1.2998zM224.05 221.77c23.3398 0 23.2598 -32.46 0 -32.46h-29.1299v32.46h29.1299z
-M128.49 223.37c21.1797 0 21.1094 -38.8506 0 -38.8506h-32.3105v38.8408zM321.14 241.62c-68.46 0 -71 -105.8 0 -105.8c69.4805 0.00976562 69.4102 105.8 0 105.8zM321.14 224.23c44.1201 0 44.8008 -70.8604 0 -70.8604c-44.7998 0 -44.4297 70.8604 0 70.8604z" />
-    <glyph glyph-name="weebly" unicode="&#xf5cc;" horiz-adv-x="512" 
-d="M425.09 382.17c50.9102 0 87.5498 -35.1504 86.9199 -83.4697c0 -21.6201 -0.950195 -18.5498 -77.5 -227.2c-22.3799 -60.5703 -67.7695 -69.6699 -92.7402 -69.6699c-39.2393 0 -70.0391 19.46 -85.9297 54.29c-15.8896 -34.5205 -46.7002 -53.9805 -85.9297 -53.9805
-c-24.9697 0 -70.3701 8.78027 -92.7402 69.3506c-72.9902 200.21 -77.1699 204.52 -77.1699 233.479c0 43.3105 38.5898 77.2002 87.54 77.2002c40.21 0 73.2803 -25.7295 83.6602 -64.3301c18.4795 58.0498 65.5 64.3301 85.2803 64.3301
-c19.4492 0 66.7891 -6.26953 84.9492 -64.3301c10.3799 38.6006 43.7803 64.3301 83.6602 64.3301zM451.43 267.36c3.49023 11.1992 7.29004 19.3701 7.61035 27.2393c0 22.3906 -16.1602 35.71 -38.3301 35.71c-18.6904 0 -31.9902 -11.7998 -36.1104 -29.0498
-l-44.0293 -139.819h-0.950195l-44.6602 136.79c-6.01953 19.9697 -16.4697 32.0791 -38.96 32.0791s-32.9404 -12.4092 -38.96 -32.0791l-44.6602 -136.79h-0.950195l-44.0293 139.819c-4.12012 17.25 -17.4199 29.0498 -36.1104 29.0498
-c-22.4902 0 -38.3301 -13.0195 -38.3301 -29.3594c0 -10.5898 2.54004 -19.6699 7.91992 -34.5l64.9404 -175.23c7.91016 -21.4795 21.2197 -37.2197 46.2393 -37.2197c23.1201 0 37.0605 12.0996 44.0205 33.5996l39.2803 117.42h0.949219l39.2803 -117.42
-c6.65039 -21.4893 20.5898 -33.8994 44.0303 -33.8994c25.0195 0 38.3203 15.7295 46.2402 37.2197z" />
-    <glyph glyph-name="wix" unicode="&#xf5cf;" horiz-adv-x="640" 
-d="M393.38 316.31c0 -13.0293 2.08008 -32.6895 -28.6797 -43.8291c-9.52051 -3.4502 -15.9502 -9.66016 -15.9502 -9.66016c0 31 4.71973 42.2197 17.4004 48.8594c9.75 5.11035 27.2295 4.62988 27.2295 4.62988zM277.58 280.77
-c5.47949 26.3408 30.8799 38.3408 55.2998 35.2705l-65.5703 -247.93s-21.6396 -1.56055 -32.46 3.95996c-14.2197 7.25 -20.9893 12.8398 -29.5898 46.5693c-7.66992 30.0703 -29.1494 118.4 -31.1201 124.7c-4.30957 13.8105 -10.6396 14.9404 -15.3994 0
-c-2.00977 -6.29004 -23.4502 -94.6299 -31.1201 -124.7c-8.61035 -33.7295 -15.3701 -39.3193 -29.5898 -46.5693c-10.8301 -5.52051 -32.46 -3.95996 -32.46 -3.95996l-65.5703 247.93c23.8604 3 49.7305 -8.5498 55.2803 -35.2705l34.2393 -132.659l28.4805 108.569
-c7.76953 32.3506 21.0596 48.5303 48.4297 48.5303c27.6201 0 40.7402 -16.54 48.4307 -48.5303l28.4795 -108.569zM393.36 275.56v-8.97949l0.0195312 0.00976562v-150.27c-0.129883 -30.8301 -3.33008 -37.6807 -17.2598 -44.7803
-c-10.8203 -5.52051 -27.3701 -3.42969 -27.3701 -3.42969v152.069c0 21.25 -1.95996 27.9404 13.1797 35.2002c6.19043 2.96973 11.96 5.25 17.9707 8.61035c9.35938 5.22949 13.46 11.5693 13.46 11.5693zM556.8 191.48l82.9902 -123.36s-35.9297 -4.62012 -53.3203 11.21
-c-13.9102 12.6602 -23.7393 28.3398 -53.1396 70.7197c-0.5 0.770508 -6.25977 10.5205 -13.0703 0c-34.9297 -50.3496 -41.0195 -60.2598 -52.5098 -70.7197c-17.3799 -15.8301 -53.9502 -11.21 -53.9502 -11.21l82.9697 123.36l-83.1992 123.739
-s35.1094 5.98047 52.5 -9.84961c13.3799 -12.1797 24.8896 -30.2402 54.1797 -72.4697c6.82031 -10.54 12.5996 -0.730469 13.0703 0c29.7695 42.9199 40.8799 60.3691 54.1797 72.4697c17.3896 15.8301 52.5 9.84961 52.5 9.84961z" />
-    <glyph glyph-name="ello" unicode="&#xf5f1;" horiz-adv-x="496" 
-d="M248 440c136.97 0 248 -111.03 248 -248s-111.03 -248 -248 -248s-248 111.03 -248 248s111.03 248 248 248zM391.84 154.8c2.48047 7.44043 -2.47949 15.71 -9.91992 17.3604c-7.43945 2.47949 -15.71 -2.48047 -17.3604 -9.91992
-c-14.0498 -52.9102 -62 -90.1104 -116.56 -90.1104s-102.51 37.2002 -116.56 90.1104c-1.65039 7.43945 -9.9209 11.5693 -17.3604 9.91992c-7.44043 -1.65039 -11.5703 -9.91992 -9.91992 -17.3604c16.5303 -65.3096 76.0498 -111.6 143.84 -111.6
-s127.31 46.29 143.84 111.6z" />
-    <glyph glyph-name="hackerrank" unicode="&#xf5f7;" horiz-adv-x="512" 
-d="M477.5 320c14.5 -25 14.4805 -230.92 -0.00976562 -256s-192.391 -128 -221.33 -128c-28.9404 0 -206.83 102.8 -221.32 128s-14.4102 230.79 0 256s192.351 128 221.32 128s206.84 -103.05 221.34 -128zM316.13 33.7803c3.95996 0 40.4404 35.7793 37.5605 38.6895
-c-0.870117 0.839844 -8.82031 1.49023 -17.6904 1.83984c0 32.4004 -3 19.0508 0.679688 210.341c0.0703125 3.65918 -1.04004 5.37988 -4.5 5.37988c-11.0801 0.0693359 -22.1602 0.0195312 -33.2295 -0.0605469c-3.25977 -0.0292969 -4.31055 -1.80957 -4.20996 -5.2002
-c1.58984 -48.8994 1.2002 -79.0898 1.2002 -83.6396h-80.2607c0.629883 25.7998 0.209961 79.6396 2.62988 105.39v3.16016c8.87012 0.350586 15.9004 0.970703 16.7705 1.83984c2.90039 2.91016 -34.3203 38.6904 -38.2705 38.6904
-c-3.94922 0 -41.4092 -35.7695 -38.4893 -38.6904c0.879883 -0.839844 7.58984 -1.48926 17.2598 -1.83984v-3.16992c3.15039 -128.67 1.07031 -179.229 0.150391 -212.67c-0.130859 -4.58008 1.63965 -6.10938 5.73926 -6.10938
-c10.1406 0.0292969 20.2803 -0.0800781 30.4102 -0.0800781c4.16016 -0.0605469 5.96973 1.39941 5.74023 5.93945c-1.83008 36.6797 -1.37012 65.7803 -1.37012 72.8799h79.9297c0 -2.41992 0.44043 -3.84961 0.44043 -5.84961
-c-0.350586 -17.7305 -0.94043 -60.0898 -0.94043 -86.3203c-11.29 -0.349609 -16.6797 -0.959961 -17.5498 -1.83008c-2.91016 -2.91992 34 -38.6895 38 -38.6895z" />
-    <glyph glyph-name="kaggle" unicode="&#xf5fa;" horiz-adv-x="320" 
-d="M304.2 -53.5l1.39941 -7.59961c-0.5 -2 -2.5 -3 -6 -3h-66.8994c-4 0 -7.5 1.7998 -10.5 5.2998l-110.5 140.6l-30.7998 -29.2998v-109c0 -5 -2.5 -7.5 -7.5 -7.5h-51.9004c-5 0 -7.5 2.5 -7.5 7.5v497c0 5 2.5 7.5 7.5 7.5h51.9004c5 0 7.5 -2.5 7.5 -7.5v-306
-l132.3 133.7c3.5 3.5 7 5.2998 10.5 5.2998h69.2002c7 0 7.89941 -7.7998 5.2998 -10.5l-139.8 -135.3z" />
-    <glyph glyph-name="markdown" unicode="&#xf60f;" horiz-adv-x="640" 
-d="M593.8 388.9c25.5 0 46.2002 -20.7002 46.2002 -46.1006v-301.6c0.0996094 -25.4004 -20.5996 -46.1006 -46.0996 -46.1006h-547.7c-25.5 0 -46.2002 20.7002 -46.2002 46.2002v301.5c0 25.4004 20.7002 46.1006 46.2002 46.1006h547.6zM338.5 87.4004h-0.200195v209.199
-h-61.5l-61.5 -76.8994l-61.5 76.8994h-61.5v-209.199h61.7002v120l61.5 -76.9004l61.5 76.9004v-120h61.5zM473.8 84.2998l92.2002 107.7h-61.5v104.6h-61.5v-104.6h-61.5z" />
-    <glyph glyph-name="neos" unicode="&#xf612;" horiz-adv-x="512" 
-d="M415.44 -64h-95.1104l-108.21 154.54v-91.0996l-86.4297 -63.4404h-97.6904v482.18l40.4697 29.8203h108.05l123.74 -176.13v112.68l86.4307 63.4502h97.6895v-461.5zM38.7695 412.73v-460.73l72 52.8799v249.12l215.5 -307.64h84.79l52.3506 38.1699h-78.2705
-l-316.14 450.47zM121.31 -53.8799l80 58.7803v101l-79.7598 114.399v-220.939l-72.5498 -53.25h72.3398zM80.6299 437.23l310.601 -442.57h82.3691v442.57h-79.75v-317.561l-222.939 317.561h-90.2803zM311 256.35l72 -102.81v278.53l-72 -53v-122.721z" />
-    <glyph glyph-name="zhihu" unicode="&#xf63f;" horiz-adv-x="640" 
-d="M170.54 299.87h122.68v-217.55h-49.5293l-42.0107 -26.3701l-7.70996 26.3701l-23.4297 0.00976562v217.54zM268.29 105.94v170.31h-72.8203v-170.31l11.9004 -0.0400391l5.08008 -17.4707l27.8994 17.5107h27.9404zM149.83 200.33
-c7.5 0 7.58984 -23.6104 7.58984 -23.6104h-61.6504c-0.879883 -13.1201 -3.50977 -26.6895 -7.86914 -40.6699l14.6191 11.6201c8.73047 -8.75 29.2109 -32.8896 36.79 -41.8096c9.15039 -13.1006 1.24023 -39.9902 1.24023 -39.9902l-53.96 64.9395
-c-12.6094 -48.3496 -35.5898 -69.25 -35.5898 -69.25c-10.0898 -8.96973 -30.5098 -15.75 -51 -9.89941c42.8301 33.2197 66.4502 75.2402 70.8496 125.1h-65.5801s3.82031 23.6201 15.5605 23.6201h52.2695c0.480469 6.56055 1.68066 62.9404 1.68066 73.4404h-28.8701
-c-2.62988 -7.87012 -3.03027 -8.64062 -5.14062 -14.5303c-11.4697 -21.0303 -30.9492 -21.5703 -36.8398 -22.21c17.4902 34.9795 27.3105 69.2197 30.7002 78.1201c8.2002 21.5693 32.2705 21.5693 32.2705 21.5693c-5.25 -14.0098 -9.63086 -27.5498 -13.1201 -40.6699
-h88.5c10.5498 0.25 8.58008 -22.3096 8.58008 -22.3096h-51.1602c0 -21.8701 -0.459961 -46.3604 -2.2002 -73.46h52.3301zM561.85 201.93l-19.2295 14.4307s30.8301 40.0498 36.8301 48.1992c8.72949 10.7402 27.3799 -4.05957 27.3799 -4.05957
-s-24.1504 -32.9297 -44.9805 -58.5703zM411.76 261.02l0.00976562 0.0107422c8.99023 -8.25 34.6602 -45.8604 34.6602 -45.8604l-19.46 -13.7295c-1.59961 2.40918 -41.1201 57.4492 -41.1201 57.4492s16.9004 10.3799 25.9102 2.12988zM640 189.65
-c0 0 0.950195 -23.79 -8.73047 -23.79h-122.359v-73.3203c0.780273 -28.0303 -15.3301 -45.3096 -44.8906 -45.3096c-9.84961 0 -16.1396 1.75977 -26.0195 6.56934c-12.9805 7.4502 -17.3203 17.8701 -19.3096 21.8398c15.6094 -0.65918 27.6094 -1.91992 41.6895 -1.80957
-c13.29 -0.870117 24.4805 7.15039 24.4805 21.1201v70.9199h-107.94c-22.6895 0.540039 -25.5098 22.8496 -25.5098 22.8496h133.47v99.8105c-12.8301 0 -31.6797 -0.830078 -56.5098 -2.43066c-26.46 -0.80957 -35.8398 -2.58984 -49.1504 0.890625
-c-8.16016 2.46973 -14.1797 10.7295 -15.7793 19.5498c67.1396 1.55957 232.359 18.0498 232.359 18.0498s20.1006 5.75977 23.1699 4.58008c12.8105 -6.25 0.589844 -33.4395 0.589844 -33.4395c-17.6396 -0.810547 -46.8896 -2.40039 -87.7695 -4.81055
-c-10.4297 -0.799805 -18.04 -1.2002 -22.8496 -1.2002v-101c0.149414 0 111.279 0.930664 131.06 0.930664z" />
-    <glyph glyph-name="alipay" unicode="&#xf642;" 
-d="M377.74 416c38.6895 0 70.0898 -31.5703 69.9297 -70.2598v-234.41c-48.6104 16.7002 -99.6895 36.04 -148.62 52.7402c23.1406 44.2998 38.3506 90.9199 38.3506 90.9199h-88.7705v31.2402h109.45v19.0098h-109.44v50.4199h-50.9199v-50.4199h-109.439v-19.0098h109.439
-v-31.2402h-92.0801v-16.7002h178.2s-9.91992 -30.25 -26.4502 -60.3398c-47.7793 14.71 -91.75 24.96 -127.13 24.96c-84.6396 0 -103.49 -42.4902 -99.5195 -81.5c3.30957 -31.0703 26.4502 -76.3701 97.04 -76.3701c64.4795 0 116.55 37.0303 148.62 81
-c61.0098 -28.0996 125.64 -62.8203 171.6 -88.4404c-0.5 -38.5195 -31.7402 -69.5996 -70.2598 -69.5996h-307.48c-38.8496 0 -70.2598 31.4102 -70.2598 70.2598v307.48c0 38.8496 31.4102 70.2598 70.2598 70.2598h307.48zM47.2803 125.05
-c-0.990234 17.5205 10.9102 50.5801 78.3594 50.5801c24.96 0 64.8105 -12.7295 109.44 -31.4102c-25.29 -33.2197 -65.7998 -72.8994 -117.87 -72.8994c-59.6797 0 -68.9404 33.5596 -69.9297 53.7295z" />
-    <glyph glyph-name="the-red-yeti" unicode="&#xf69d;" horiz-adv-x="512" 
-d="M488.23 206.3c2.95508 -3.9668 5.25098 -8.47559 6.76953 -13.2998c3.99121 -10.8701 7.04004 -22.4727 8.90039 -34.2002l-2.5 -0.5l-13 14.2998c-17.9004 -28.0996 -9.90039 -15.3994 -16.7002 -25.0996c0 -124.2 -101.3 -211.5 -223 -211.5
-c-61.5 0 -113.9 20.2002 -157.5 60.2002c-64.5 60.8994 -64.9004 125 -64.9004 150.5c-0.5 1.7998 -0.700195 3.5 -1.2002 5.2002l-20.1992 -22.4004c-6.80078 43 25.6992 74.2998 33 80.7002c0.5 1 0.699219 2.2002 1.19922 3.2002l-28.7998 1l-3 3.39941
-c8.5 3.5 25.2998 13.2998 40.2998 14.2998c7.63672 14.623 16.9365 28.0742 27.8008 40.3008c1.2998 6.39941 3.2998 14.1992 6.59961 25.7998l-7.59961 -4.7002l-1.7002 1.7002l1.7002 8.39941c10.6934 25.7754 26.6318 48.6221 46.6992 67.4004l-33 14.2998h3.7002
-c20.9004 4.90039 33.2002 3.2998 49.2002 0c-2.5 4.10059 -5.40039 10.5 -8.40039 18.9004c-1.36035 3.74219 -2.09961 7.81445 -2.09961 12.0244c0 4.69629 0.923828 9.17871 2.59961 13.2754c8.90039 -7.40039 14.3008 -24.5996 15.2002 -27
-c0.700195 3.59961 2.10059 21.2998 33.7002 45.5l1.83008 -0.5l-12 -44.2002c30 17.7002 63 21.9004 97.9004 11.7998c-12.7002 -12.1992 -24.3008 -28.8994 -42.5 -33c7.39941 -2.2998 28.6992 -9.69922 34.1992 -15.1992l-24.7998 7.09961
-c6.5 -6 19.6006 -16.4004 25.1006 -25.0996c23.7891 -1.09473 46.9111 -5.74414 68.3994 -13.3008l-0.5 0.5c29.4004 14.7002 37.7002 27.3008 74.7998 3c0 -30.1992 -2.2998 -23.3994 3 -29.7998c7.69336 6.50391 16.1553 12.0381 25.3008 16.5
-c13 6.40039 23.0996 4.7002 30.6992 -5.89941c11.8008 0 17.8008 -15.7002 18.4004 -27c14.7998 -2.90039 2.7002 -30.7002 2.5 -30.7002l-7.09961 -18.2002c7.7998 -7.7998 22.0996 -20.9004 31.6992 -44.7998zM398 336.8c-13.0996 8.90039 -22.7002 11.9004 -28.2998 8.5
-c8.09961 -7.2002 13 -14.2998 13.5 -20.7002c1.2002 -7.59961 -2.2002 -14.7998 -10.6006 -21.8994l-4.19922 -3.40039c4.2002 -6.89355 7.1416 -14.793 8.39941 -23.0996h2.5c-2.09961 13.8994 -2.5 11 0.700195 14.7998c11 -6.40039 14.9004 -14.5 16 -19.9004
-c21.7998 10.1006 29.5 12.7002 54.7998 20.9004l-18.2002 -16c11.4004 0 25.6006 0.299805 46.5 -8.40039c7 24.3008 7.10059 20.7002 2.5 20.7002l-4.69922 -11.2998c-1.7002 10.5 -2.90039 18.9004 -3.40039 25.2998c-0.5 6.7002 -3.90039 9.60059 -9.2998 10.1006
-c-0.0117188 -0.470703 -0.0126953 -0.894531 -0.0126953 -1.36816c0 -4.77148 0.594727 -9.40527 1.71289 -13.832l-1.7002 -5.90039c-2.90039 10.6006 -5.90039 20.2002 -9.2998 27.7998c-9.7002 17.7002 -30.2002 -9.19922 -43 -11.2998
-c4.53027 -0.25293 8.71777 -0.380859 13.3115 -0.380859c4.59277 0 9.15723 0.12793 13.6885 0.380859l-22.4004 -5.39941l3.40039 -4.7002c-5.5 0 -16.9004 -0.900391 -22.4004 17.2002zM358.4 346.9l-20.3008 -11.8008
-c11.3008 -7.59961 20.2002 -18.1992 27.8008 -31.1992c6.39941 2.89941 10.0996 5.09961 11.7998 7.59961c2.5 2.7998 2.5 4.7002 3 7.09961c0.599609 1.30078 0.799805 2.7002 -3.40039 11.1006c-7.5 11.7998 -16.2002 15.2998 -18.8994 17.2002zM91 304.9
-c-7.7998 -24.1006 -11.7002 -49.4004 -13.2002 -74.6006l13.2002 -5l1.2002 27c9.5 -16.3994 11.2002 -23.2998 12.2998 -28.7998c2.7998 2.09961 7.7002 7 22.5996 11.2998l1.2002 -1.7002l-7.59961 -10.5996c10.0996 3.5 19.5 3.5 28.2998 0.5l-10.5996 -8.40039
-c22.7998 -8.39941 26.5996 -7.59961 38.3994 -26.0996l-11.7998 1.2002c34.9297 -20.5 66 -47.9004 141.2 -63.2002c15.5996 24.0996 14 21.0996 14 22.9004l0.200195 0.199219l-0.200195 0.200195c-0.700195 1.90039 -14.1006 16.6006 -18.2002 20.7002
-c7.2998 -1.7998 6 -0.900391 10.7998 -3.7002c1.7002 -0.899414 -5.39941 5.40039 -21.8994 20.2002c16.5 -6.7002 27.5996 -15.5 33 -27.7998l1.69922 30.7002l-22.3994 17.6992l6.39941 5.90039c-7.2998 0 -31 3.7002 -49.1992 -16l-2.5 0.5
-c6.9668 14.3867 12.4512 30.0156 16 46c1.9209 9.16797 2.95508 18.5742 3 28.2998c0 19.5 -4.7002 38.4004 -13.5 56.6006c-6.40039 13.5 -16.5 25.2998 -30 35.3994c-6.5957 4.94238 -13.4805 9.43652 -20.7002 13.5c3 0.700195 1 1.2002 -5.40039 1.2002
-c-6.39941 0.200195 -13 0.700195 -19.3994 1.2002v-3c-10.2949 -1.63086 -19.2871 -7.22266 -25.3008 -15.2002h-1.19922l-5.40039 -3.40039c-1.2002 2.90039 0 6.30078 4.2002 9.30078l10.5996 11.2998l-3.39941 -0.5l2 3.39941
-c-2.30078 0.200195 -4.2002 0.5 -6.2002 0.700195l-0.5 1.2002l2.5 1.7002c2.2002 -0.200195 4.59961 -0.5 7.09961 -0.700195c2.9043 1.54785 6.22559 2.4375 9.74414 2.4375c1.45898 0 2.88184 -0.150391 4.25586 -0.4375l2.5 -1.2002l0.200195 -0.5
-c7.93457 0.514648 15.7422 1.49121 23.4004 2.90039c20.6992 2.89941 36.6992 11.2998 48.5 24.7998l-21.1006 0.5c-25.7998 0.5 -49.3994 -5.40039 -71.2998 -18.9004l-2.5 2.5l0.5 4.7002l1.7002 7.10059c1.66211 8.54199 3.83691 17.1143 6.39941 25.2998
-c-1.69922 -0.700195 -4.59961 -4.90039 -9.2998 -11.2998c-4.7002 -6.40039 -8.39941 -13 -10.0996 -19.4004c-1.0957 -5.14258 -3.14062 -10.0195 -5.90039 -14.2998l-13.5 29l8.40039 -35.7998l-0.5 -1.7002c-0.00585938 0 -0.0146484 0.0117188 -0.0195312 0.0117188
-c-5.57227 0 -10.9424 0.87207 -15.9805 2.48828c-3.40039 0.700195 -10.6006 1.2002 -20.9004 1.2002c0.5 0 -0.700195 0 -3.2002 -0.5c5.40039 -1.30078 13.5 -4.2002 24.8008 -8.40039l6.39941 1.2002c-4.2002 -3.40039 -10.8994 -10.1006 -20.2002 -19.4004
-c-9.39941 -8.89941 -20.1992 -26.0996 -32.5 -50.2002l4.2002 1.2002l10.1006 9.2998l-5.40039 -4.69922l13 12.2998l-2.5 -3.40039c-5.09961 -7.59961 -8.09961 -12.2998 -9.2998 -15.2002zM367.5 -25.0996c8.2998 40.2998 3.59961 55.1992 -0.700195 89.5
-c-35.5 -11.8008 -20.2998 -6 -32 -10.8008l10.5 -14.1992l-1.2002 -1.2002c-20.1992 6 -23.1992 10.7998 -27.7998 15c6 -22.2002 13.9004 -26.4004 29.5 -31.7002c-9.5 -9.59961 -25.3994 4 -34.3994 13l2.5 -23.5996l-4.2002 -3c-5 22.0996 -22 39.0996 -25.2998 39.0996
-c-44 -13 -79.1006 -5.7998 -113.9 10.5996c-1.59961 -0.399414 -70.5996 -18 -120.5 37.1006c13.7002 -35 32.2998 -63.7002 71.2998 -82.6006c-4.98047 10.3184 -12.0117 19.3135 -20.7002 26.6006c0 0 0.700195 3.7002 1.2002 10.0996
-c19.4004 -19.3994 50.7002 -39.5 93.2002 -60.2002c-59.5996 24.5 -59.9004 24.8008 -69.0996 29l16 -20.6992c-3 -1.30078 -6.7002 -0.5 -10.1006 1.19922c-12.5371 7.32422 -24.2949 15.5693 -35.3994 24.8008c1.89941 -2.2002 80.0996 -98.5 200.899 -74.3008
-c-43.0996 21.8008 -52.3994 52.4004 -66.5996 73.5l17.7002 -7.59961l-11.8008 23.0996c20.1006 -27.7998 28.6006 -35 38.4004 -44.2998l-30 16.5c12.5996 -27.0996 33.7002 -47 63.5 -58.7998c2.90039 1.5 9.09961 -1.09961 59 23.9004zM482.8 189.3l8.93066 -12.7998
-l-12.3008 32.5c10.9004 0 10 -0.0996094 21.2002 -3.40039c-8.16406 11.4756 -17.0879 22.0469 -27 32l-26.5996 23.1006l1.2002 3l23.5996 2.5c-10.6865 2.35742 -21.708 3.79199 -33 4.2002l-17.7002 -0.5l-0.5 2.89941l14.7998 13l-41.7998 -20.2002l-12.2998 18.9004
-l3.40039 -16l-2.5 -1.2002l-5.90039 4.2002h-10.0996l5.39941 -4.2002v-2l-13.5 -27.7998c-10.0996 -31.2002 -21.8994 -67.9004 -35.3994 -109.7l1.19922 16l-1.19922 -3v-0.5c-6.40039 -16 -13.6006 -29.5 -21.2002 -39.5996l9.2998 21.8994l-46.7002 -20.1992
-c11.7998 13.5 23.6006 19.3994 34.9004 18.8994c-71.2002 11.4004 -106.2 41 -110.4 46c3.60059 -6.2002 13.2002 -17.7998 16 -40.0996l-1.7002 -1.2002c-4.2998 15.5996 -16.3994 46.5996 -55.7998 69.5996l23.6006 -2.5c-10.5 12.6006 -36.3008 17.8008 -40.8008 16
-l-2.5 2.5l8.40039 8.40039l-22.2998 -5.7998l5.39941 13.5c-8.09961 -4.40039 -4.2998 -2.40039 -17 -8.90039l-1.69922 0.5c0.599609 0.600586 0.899414 -0.700195 -3 9.2998c-0.600586 -11 -0.400391 -8.59961 -1 -11.7998
-c-1.29785 -0.430664 -2.54785 -1.00781 -3.7002 -1.7002c-40 20.6006 -57.2002 11 -73 5.2002c36.7998 -6 29.2998 -4 38.3994 -9.2998c-25.7998 -12.2002 -31.8994 -12.5996 -51.3994 -70.0996l22.2695 22.2998l2.5 -16.4004c13.4004 -58 68.7002 -92.5 126.4 -83.3994
-l-26.1006 22.3994l44.8008 -22.3994l-1.2002 -3c4.59961 -1.7002 9.2998 -3 13.5 -4.2002c19.3359 -5.72266 39.5713 -8.83887 60.752 -8.83887c11.0293 0 21.8643 0.832031 32.4482 2.43848l-32.5 21.2002c35.7998 -7 50.6992 -31.4004 56.7998 -39.5996l-7.60059 29
-l1.2002 2.5l19 -27.9004l-9.2998 26.5996l21.9004 -13.5h1.19922l-3.39941 4.2002l7.09961 -4.7002l-14.2998 16l1.2002 3l7.59961 -7.09961c4.2998 1.2002 41.4004 10.5 80.9004 40.2998c47.8994 35.4004 68.0996 73.7998 71.5996 79.7002l-3 9.2998zM476.7 260.6
-l-18.2002 -1.19922l14.2998 -11.8008zM221.9 253.5c2.69922 -5.09961 5.69922 -12.4004 18.3994 -18.7998c-7.5 -10.9004 -8.2998 -10.5 -20.2002 -16c-7.59961 -7.7002 -13.5 -13.1006 -17.6992 -14.7998l7.09961 13c-5.38281 -1.97266 -11.167 -3.06836 -17.2295 -3.06836
-c-2.57324 0 -5.10156 0.194336 -7.57031 0.568359l-0.5 1.19922c19 2.10059 37.2002 9.40039 46.5 16c-4.10059 4.2002 -7.10059 11.3008 -8.7998 21.9004zM225.6 355.8c5.87793 -3.32715 10.7842 -8.04688 14.3008 -13.7998
-c14.6992 -24.0996 19.1992 -40.0996 11.2998 -47.7002c-7.90039 -7.59961 -16.7998 -7.09961 -26.1006 3c-9.2998 10.1006 -13.5 23.7002 -11.7998 39.6006c1.7002 15.8994 5.90039 22.2998 12.2998 18.8994zM220.9 309.5
-c7.09961 -21.2998 33.3994 -23.0996 26.8994 4.90039c-3.89941 16.5 -8.7998 27.0996 -15.2002 32.5c-6.59961 5.39941 -10.0996 6.69922 -11.2998 4.19922c-2.5 -2.89941 -3.5 -11.2998 -3 -24.7998c7.5 12.7998 11.6006 5.90039 12.5 4.7002l-0.5 -0.5
-c-0.799805 -1.7002 -2.59961 -3.09961 1.7002 -6.2002l1.2002 0.5v-4.7002c-1.7998 -12.5 -6.90039 -12.7998 -12.2998 -10.5996zM175.9 315c-2.41016 0.448242 -4.38965 2.04102 -5.40039 4.2002c-3.5 8.5 0 21.2002 8.09961 21.2002
-c2 -0.5 3.7002 -1.7002 5.40039 -4.7002c-1.5 -0.400391 -4.7002 -4.7998 0.700195 -5.90039h0.5c0 -13.7002 -7.7002 -15.0996 -9.2998 -14.7998zM216 365.1l-3.7002 2.40039l-0.5 2.5c18.2998 0 25.7998 -8.7998 28.2998 -14.2998
-c-6.94727 3.78809 -14.9268 5.97363 -23.3916 5.97363c-0.90918 0 -1.81152 -0.0244141 -2.70801 -0.0742188l-0.5 3zM144.2 315.7c1.59961 -1.60059 0.599609 -0.299805 4.89941 -6.60059c-25.3994 -4.69922 -23.1992 -12.2998 -30 -12.2998
-c0.300781 0.600586 7.10059 16 23.6006 16l-7.10059 7.60059c9.40039 0.5 15.2002 2.09961 19.9004 -5.90039c0.0214844 8.14648 1.03027 16.0225 2.90039 23.5996c2 7.60059 3.69922 11.8008 5.39941 13.5c1 1.5 16.2998 15.7002 29 22.4004
-c2.33496 1.68262 5.22168 2.67676 8.31641 2.67676c1.8291 0 3.57715 -0.34668 5.18359 -0.976562c0.321289 -0.390625 0.515625 -0.889648 0.515625 -1.43457c0 -0.0898438 -0.00488281 -0.178711 -0.015625 -0.265625l-13 -7.59961
-c7.60059 -11.8008 10.5 -25.3008 8.7998 -41.3008c-1.11328 -11.292 -6.61426 -21.3291 -14.7998 -28.2998l2.90039 -4.7002c-30 2.2002 -24.7998 6.80078 -46.5 23.6006zM162.9 334.4c-1.80078 -7.2002 -2.30078 -16 -3.10059 -26l5.40039 -6.40039l7.09961 -3.40039
-c2.39648 -0.458008 4.79688 -0.699219 7.3252 -0.699219c1.3418 0 2.66797 0.0673828 3.97461 0.199219c1 1.7002 3.5 4.2002 6.40039 7.60059c5 5.89941 7.90039 13.7998 8.40039 23.0996c0.0849609 1.43848 0.113281 2.82617 0.113281 4.28613
-c0 7.30859 -1.08887 14.3643 -3.11328 21.0137c-3 8.10059 -5.90039 11 -10.1006 9.30078c-5.39941 -1.7002 -10.5996 -5.40039 -16 -11.8008c-3 -4.19922 -5.2002 -9.59961 -6.39941 -17.1992zM204.9 278.3l-3.10059 -6.5c7.10059 4.2002 13.5 7.2002 19.4004 8.40039
-l7.09961 0.5l11.7998 -7.60059h-2.5c-8.7998 3.7002 -19.3994 1.2002 -30.6992 -7.59961c-0.5 -4.7002 1.69922 -14.7002 5.89941 -29.5l9.2002 0.5c-21.9004 -6.59961 -37.5996 -8.40039 -48.9004 -5.40039c-24.8994 6.7002 -27.3994 23.6006 -27.5 24.1006
-c-1.74121 6.70996 -2.67871 13.6348 -2.67871 20.8867c0 4.35645 0.333984 8.63574 0.979492 12.8135c-6.40039 -0.5 -11 -4.2002 -15.2002 -10.6006c-2.90039 5.90039 -5.40039 8.7998 -5.90039 9.2998c1.5 0.700195 12.2998 7.5 32.5 4.90039l0.5 -2.5l-5.89941 -1.2002
-c-0.100586 -0.399414 -1.90039 -29.5 18.8994 -24.7998c1.40039 0.299805 1.2998 -0.0996094 36.1006 14.2998z" />
-    <glyph glyph-name="acquisitions-incorporated" unicode="&#xf6af;" horiz-adv-x="384" 
-d="M357.45 -20.2002c2.2002 -14.2998 4.09961 -28.7002 6.59961 -43.7002c-367.8 0 -153.899 -0.599609 -337.1 0c-4 0 -6.10059 0.700195 -5.2998 5.7002c2.09961 12.9004 3.5 25.9004 5 38.7998c0.5 4.80078 2.2998 6.80078 7.59961 6.80078
-c118.1 -1 114.9 -0.300781 121.4 2.39941c9.39941 4 14.8994 12.9004 14.8994 23.1006c-0.0996094 42.8994 -0.299805 85.8994 -0.200195 128.8c0 3.7998 -1.19922 5.89941 -4.59961 6.7998c-15.7002 3.90039 -31.2998 7.7002 -47.5996 11.7002
-c-5.30078 -12.2998 -10.4004 -24.4004 -15.7002 -36.7002c1.7998 -3.2998 28.3994 -2.90039 35.2998 -2.90039v-27.5996h-114.3c1 8.59961 1.7002 16.7998 3.2002 24.9004c0.299805 1.39941 3.59961 3.09961 5.5 3.19922
-c8.39941 0.400391 16.8994 0.300781 25.3994 0.100586c4 0 5.90039 1.09961 7.60059 5.2002c16.5996 40.6992 13.5 31.1992 67.2998 161c31.5 76.0996 33 76 32.5996 87.3994c-0.700195 18.6006 -25.3994 22.2998 -37.7002 22.1006c-30 -0.400391 -38.3994 0.5 -101.8 0.5
-c-7.2002 44.5 -4.2002 32.0996 -6.39941 45.2998c-0.700195 4.2002 1 5.2998 4.59961 5.2998l339.1 -0.200195c-0.799805 -5.39941 -1.59961 -10.7998 -2.39941 -16.0996c-1.2998 -9.7002 -2.7998 -19.4004 -4 -29.2002c-0.299805 -2.90039 -1.2002 -4.2998 -4.2998 -4.2998
-c-20.6006 -0.100586 -41.2002 -0.100586 -61.8008 -0.5c-18.6992 -0.400391 -37.5996 -0.299805 -56.1992 -2c-13.4004 -1.2002 -23.3008 -12.6006 -18.9004 -26.6006c8.59961 -27.0996 27.7002 -69.0996 36.5 -89.1992c65.7002 -154.2 61.4004 -157 84 -158.601
-c6.59961 -0.5 13.4004 -0.0996094 20.4004 -0.0996094c1.2998 -9.40039 2.59961 -18 4 -27.5h-116v27c10.3994 0 20.3994 0.0996094 30.3994 -0.100586c3.5 0 5 0.700195 3.40039 4.40039c-4.40039 10.2998 -8.7002 20.5996 -13.2002 30.9004
-c-1.59961 3.69922 -4.09961 4.7998 -8.40039 3.5c-12.3994 -3.60059 -24.7998 -6.7002 -37.2998 -9.7002c-4.2998 -1.10059 -6 -2.7998 -5.89941 -7.5c0.799805 -57.5 0.899414 -127.5 1 -129.101c0.399414 -12.5996 8.69922 -21.3994 21 -23.0996
-c0.899414 -0.200195 12.8994 -2.7998 112.699 -2.59961c8.30078 0 8.40039 0.0996094 9.60059 -7.60059zM182.55 185.5c2.87695 -1.01465 5.98633 -1.56641 9.20801 -1.56641s6.31543 0.551758 9.19238 1.56641c13 4.2002 26.2998 7.7998 39.3994 11.7002
-c1.34473 0.620117 2.65234 1.32422 3.90039 2.09961c-6.7002 17.4004 -13.0996 34.2002 -19.7002 50.9004c-8.89941 22.7002 -17.7002 60.2998 -27 82.7998c-1.5 0.799805 -1.89941 -2.40039 -9.39941 0c-17.1006 -44 -34.1006 -87.7998 -51.3008 -132.1
-c1.8457 -1.09766 3.7959 -2.07422 5.80078 -2.90039c13.2998 -4.2998 26.5996 -8.2998 39.8994 -12.5z" />
-    <glyph glyph-name="critical-role" unicode="&#xf6c9;" 
-d="M225.82 448c0.259766 -0.150391 216.569 -124.51 217.12 -124.72c3 -1.18066 3.69922 -3.45996 3.69922 -6.56055c-0.0732422 -83.4463 -0.0732422 -166.899 0 -250.359c0.0117188 -0.150391 0.0175781 -0.302734 0.0175781 -0.456055
-c0 -2.36035 -1.38867 -4.38867 -3.39746 -5.32422c-21.3701 -12 -207.859 -118.29 -218.93 -124.58h-3c-79.3301 45.6602 -218.25 125.44 -218.4 125.52c-1.11816 0.526367 -1.89355 1.66309 -1.89355 2.97949c0 0.0898438 0.00683594 0.173828 0.0136719 0.260742
-c0 0.870117 0 225.94 -0.0498047 253.101c-0.00976562 0.124023 -0.0136719 0.25 -0.0136719 0.376953c0 2.02832 1.20605 3.76855 2.94336 4.55273c23.2607 13.0996 209.271 119.21 220.141 125.21h1.75zM215.4 427.58l-0.219727 0.158203
-c-64.7471 -36.8604 -129.474 -73.7305 -194.18 -110.61c0 -0.120117 0.0800781 -0.229492 0.129883 -0.349609l30.8604 -11.6406c-7.70996 -6 -8.32031 -6 -10.6504 -5.12988c-0.0996094 0 -24.1699 9.28027 -26.7998 10v-230.43
-c0.879883 1.41016 64.0703 110.91 64.1299 111c1.62012 2.82031 3 1.91992 9.12012 1.51953c1.40039 -0.0898438 1.47949 -0.219727 0.780273 -1.41992c-41.1904 -71.3301 -36.4004 -63 -67.4805 -116.939c-0.80957 -1.40039 -0.609375 -1.12988 1.25 -1.12988h186.5
-c1.44043 0 1.69043 0.229492 1.7002 1.63965v8.87988c0 1.33984 2.36035 0.810547 -18.3701 1c-7.45996 0.0703125 -14.1396 3.21973 -21.3799 12.7002c-7.37988 9.66016 -14.6201 19.4297 -21.8496 29.21c-2.28027 3.08008 -3.4502 2.37988 -16.7607 2.37988
-c-1.75 0 -1.7793 0 -1.75977 -1.82031c0.290039 -26.21 0.150391 -25.2695 1 -32.6592c0.520508 -4.37012 2.16016 -4.2002 9.69043 -4.81055c3.13965 -0.259766 3.87988 -4.08008 0.519531 -4.91992c-1.57031 -0.389648 -31.5996 -0.509766 -33.6699 0.0996094
-c-1.02539 0.28125 -1.7793 1.2207 -1.7793 2.33496c0 1.21973 0.905273 2.22949 2.0791 2.39551c3.29004 0.759766 6.16016 -0.80957 6.66016 4.44043c1.2998 13.6592 1.16992 9 1.09961 79.4199c0 10.8193 -0.349609 12.5801 -5.35938 13.5498
-c-1.21973 0.240234 -3.54004 0.160156 -4.69043 0.549805c-2.87988 1 -2 4.83984 1.77051 4.84961c33.6699 0 46.0801 1.07031 56.0596 -4.85938c7.74023 -4.61035 12 -11.4805 12.5098 -20.4004c0.880859 -14.5898 -6.50977 -22.3496 -15 -32.5898
-c-0.313477 -0.267578 -0.511719 -0.666016 -0.511719 -1.11035s0.198242 -0.841797 0.511719 -1.10938c2.60059 -3.25 5 -6.62988 7.70996 -9.83008c27.5605 -33.2305 24.1104 -30.54 41.2803 -33.0605c0.890625 -0.129883 1 0.419922 1 1.15039v11
-c0 1 0.320312 1.42969 1.41016 1.25977c3.57227 -0.542969 7.23047 -0.825195 10.9531 -0.825195c4.35449 0 8.4834 0.386719 12.627 1.125c1.08008 0.150391 1.5 -0.199219 1.47949 -1.33008c0 -0.109375 0.880859 -26.6895 0.870117 -26.7998
-c-0.0498047 -1.51953 0.669922 -1.62012 1.89062 -1.62012h186.71c-27.1533 47.0342 -54.2334 93.9746 -81.2402 140.821c2.25977 0.660156 -0.400391 0 6.69043 1.38965c2 0.390625 2.0498 0.410156 3.10938 -1.43945c7.31055 -12.6396 77.3105 -134 77.3701 -134.061
-v230.44c-1.71973 -0.5 -103.3 -38.7197 -105.76 -39.6797c-1.08008 -0.419922 -1.5498 -0.200195 -1.91016 0.879883c-0.629883 1.89941 -1.33984 3.75977 -2.08984 5.62012c-0.320312 0.790039 -0.0898438 1.12988 0.649414 1.38965
-c0.100586 0 95.5303 35.8496 103 38.7705c-65.4199 37.5693 -130.56 75 -196 112.6l86.8203 -150.39l-0.280273 -0.330078c-9.56934 0.899414 -10.46 1.59961 -11.7998 3.93945c-1 1.69043 -73.5 127.71 -82 142.16c-9.09961 -14.6699 -83.5596 -146.21 -85.3701 -146.32
-c-2.92969 -0.169922 -5.87988 -0.0800781 -9.25 -0.0800781c28.833 49.8271 57.5596 99.4941 86.1797 149.001zM267.331 297.658c1.88379 0.146484 3.74316 0.435547 5.54004 0.849609c1.68945 0.299805 2.53027 -0.200195 2.59961 -1.91992
-c0 -0.109375 0.0703125 -19.0596 -0.859375 -20.4502c-0.930664 -1.38965 -1.87988 -1.21973 -2.60059 0.19043c-5 9.68945 6.2207 9.66016 -39.1201 12c-0.699219 0 -1 -0.230469 -1 -0.929688c0 -0.130859 3.7207 -122 3.73047 -122.11
-c0 -0.889648 0.519531 -1.2002 1.20996 -1.50977c2.97363 -1.18262 5.9043 -2.54883 8.7002 -4.0498c7.30957 -4.33008 11.3799 -10.8408 12.4102 -19.3105c1.43945 -11.7998 -2.77051 -35.7695 -32.21 -37.1396c-2.75 -0.129883 -28.2607 -1.08008 -34.1406 23.25
-c-4.66016 19.2598 8.25977 32.7002 19.8906 36.3994c1.14258 0.208008 2.00977 1.20898 2.00977 2.41113c0 0.0849609 -0.00195312 0.166016 -0.00976562 0.249023c0.0996094 5.62988 3 107.101 3.70996 121.351c0.0498047 1.0791 -0.620117 1.15918 -1.35059 1.14941
-c-32.3496 -0.519531 -36.75 0.339844 -40.2197 -8.51953c-2.41992 -6.18066 -4.13965 -1.32031 -3.9502 -0.230469c1.05957 6 2.16309 12 3.31055 18c0.399414 2.11035 1.42969 2.61035 3.42969 1.86035c5.58984 -2.11035 6.71973 -1.7002 37.25 -1.91992
-c1.72949 0 1.78027 0.0800781 1.82031 1.84961c0.679688 27.4902 0.579102 22.5898 1 29.5498c0.0117188 0.106445 0.0185547 0.213867 0.0185547 0.322266c0 1.11719 -0.679688 2.07129 -1.64941 2.47852c-5.59961 2.90918 -8.75 7.5498 -8.89941 13.8691
-c-0.350586 14.8105 17.7197 21.6699 27.3799 11.5107c6.83984 -7.19043 5.7998 -18.9102 -2.4502 -24.1504c-1.34473 -0.740234 -2.25684 -2.1709 -2.25684 -3.81348c0 -0.180664 0.015625 -0.351562 0.0371094 -0.526367c0 -0.589844 -0.110352 4.30957 1 -30.0498
-c0 -0.900391 0.429688 -1.12012 1.24023 -1.11035c0.0996094 0 23 0.0898438 34.4697 0.370117zM68.2705 306.298c19.8408 4.50977 32.6807 0.560547 52.4902 -1.68945c2.75977 -0.310547 3.74023 -1.2207 3.62012 -4c-0.209961 -5 -1.16016 -22.3301 -1.24023 -23.1504
-c-0.0419922 -1.05566 -0.702148 -1.9541 -1.62988 -2.33984c-4.05957 -1.7002 -3.60938 4.4502 -4 7.29004c-3.12988 22.4297 -73.8701 32.7002 -74.6299 -25.4004c-0.30957 -23.9199 17 -53.6299 54.0801 -50.8799c27.2402 2 19 20.1904 24.8398 20.4697
-c0.120117 0.0166016 0.241211 0.0244141 0.365234 0.0244141c1.50098 0 2.71973 -1.21875 2.71973 -2.71973c0 -0.229492 -0.03125 -0.451172 -0.0849609 -0.664062c-1.83008 -10.8506 -3.41992 -18.9502 -3.4502 -19.1504
-c-1.54004 -9.16992 -86.6992 -22.0898 -93.3496 42.0605c-2.70996 25.8496 10.4404 53.3691 40.2695 60.1494zM148.271 218.628h-19.4893c-0.0703125 -0.00585938 -0.140625 -0.00878906 -0.210938 -0.00878906c-1.15039 0 -2.12109 0.756836 -2.44922 1.79883
-c2.37988 3.75 5.88965 -0.919922 5.86035 6.13965c-0.0800781 25.75 0.209961 38 0.229492 40.1006c0 3.41992 -0.530273 4.64941 -3.32031 4.93945c-7 0.720703 -3.10938 3.37012 -1.10938 3.38086c11.8398 0.0996094 22.6201 0.179688 30.0498 -0.720703
-c8.76953 -1.06934 16.71 -12.6299 7.92969 -22.6201c-2 -2.25 -4 -4.41992 -6.13965 -6.72949c0.950195 -1.15039 6.89941 -8.82031 17.2803 -19.6797c2.65918 -2.78027 6.14941 -3.51074 9.87988 -3.13086h0.0214844c1.18945 0 2.16016 0.943359 2.20801 2.12012
-c0.299805 3.41992 0.259766 -4.72949 0.450195 40.5801c0 5.65039 -0.339844 6.58008 -3.22949 6.83008c-3.9502 0.350586 -4 2.25977 -0.69043 3.37012l19.0898 0.0898438c0.320312 0 4.49023 -0.530273 1 -3.37988c0 -0.0498047 -0.160156 0 -0.240234 0
-c-3.60938 -0.259766 -3.93945 -1 -4 -4.62012c-0.269531 -43.9297 0.0703125 -40.2295 0.410156 -42.8203c0.110352 -0.839844 0.270508 -2.22949 5.10059 -2.13965c2.48926 0 3.85938 -3.37012 0 -3.39941c-10.3701 -0.0800781 -20.7402 0 -31.1104 -0.0703125
-c-10.6699 0 -13.4697 6.2002 -24.21 20.8203c-1.59961 2.17969 -8.31055 2.35938 -8.2002 0.369141c0.879883 -16.4697 0 -17.7793 4 -17.6699c4.75 0.100586 4.73047 -3.56934 0.830078 -3.5498h0.0595703zM423.271 228.778
-c-1.20996 -7.12988 0.170898 -10.3799 -5.2998 -10.3398c-61.5498 0.419922 -47.8193 0.219727 -50.7197 0.30957c-1.24414 0.12207 -2.4707 0.37207 -3.62988 0.730469c-2.53027 0.599609 1.47949 1.22949 -0.379883 5.59961
-c-1.43066 3.37012 -2.78027 6.78027 -4.11035 10.1895c-0.219727 0.831055 -0.976562 1.44336 -1.87598 1.44336c-0.0419922 0 -0.0820312 0 -0.124023 -0.00292969c-2.22852 0.107422 -4.4707 0.161133 -6.72559 0.161133
-c-2.70605 0 -5.18652 -0.0771484 -7.85449 -0.231445c-0.6875 -0.0898438 -1.27734 -0.491211 -1.62012 -1.05957c-1.58008 -3.62012 -3.06934 -7.29004 -4.50977 -11c-1.26953 -3.23047 7.86035 -1.32031 12.1904 -2.16016c3 -0.570312 4.5293 -3.71973 0.65918 -3.72949
-h-26.3691c-2.91992 0 -3.09082 3.14941 -0.740234 3.20996c0.0966797 -0.00488281 0.194336 -0.00683594 0.291992 -0.00683594c2.46484 0 4.59277 1.41211 5.62793 3.47656c1.5 3 2.7998 6 4.11035 9.08984c18.1797 42.1396 17.0596 40.1699 18.4199 41.6104
-c0.330078 0.473633 0.879883 0.783203 1.50098 0.783203s1.16797 -0.30957 1.49902 -0.783203c2.92969 -3.33984 18.3994 -44.71 23.6201 -51.9199c2 -2.7002 5.73926 -2 6.35938 -2c3.61035 -0.130859 4 1.10938 4.12988 4.29004
-c0.0898438 1.86914 0.0800781 -1.1709 0.0703125 41.2393c0 4.45996 -2.36035 3.74023 -5.5498 4.27051c-0.259766 0 -2.56055 0.629883 -0.0800781 3.05957c0.209961 0.200195 -0.890625 0.240234 21.7002 0.150391c2.31934 0 5.31934 -2.75 -1.20996 -3.4502
-c-0.0390625 0.00195312 -0.078125 0.00292969 -0.116211 0.00292969c-1.41309 0 -2.56055 -1.14746 -2.56055 -2.56055c0 -0.0927734 0.00683594 -0.181641 0.0166016 -0.272461c-0.0703125 -1.62988 -0.19043 -38.8896 0.290039 -41.21
-c0.288086 -1.39062 1.52051 -2.43652 2.99609 -2.43652c0.0791016 0 0.155273 0.000976562 0.233398 0.00683594c13.25 -0.430664 14.9199 -0.44043 16 3.41016c1.66992 5.7793 4.12988 2.51953 3.73047 0.189453zM318.551 164.408
-c-4.24023 0 -4.41992 3.38965 -0.609375 3.41016c35.9092 0.160156 28.1094 -0.379883 37.1895 0.649414c1.67969 0.19043 2.37988 -0.239258 2.25 -1.88965c-0.259766 -3.38965 -0.639648 -6.78027 -1 -10.1602c-0.25 -2.16016 -3.2002 -2.61035 -3.39941 0.150391
-c-0.380859 5.30957 -2.15039 4.44922 -15.6309 5.08008c-1.58008 0.0693359 -1.63965 0 -1.63965 -1.52051v-16.1299c0 -1.65039 0 -1.59961 1.62012 -1.46973c3.12012 0.25 10.3096 -0.339844 15.6895 1.51953c0.470703 0.160156 3.30078 1.79004 3.07031 -1.75977
-c0 -0.209961 -0.759766 -10.3496 -1.17969 -11.3896c-0.530273 -1.29004 -1.87988 -1.51074 -2.58008 -0.320312c-1.16992 2 0 5.08008 -3.70996 5.2998c-15.4199 0.900391 -12.9102 2.5498 -12.9102 -6c0 -12.25 -0.759766 -16.1104 3.88965 -16.2402
-c16.6406 -0.479492 14.4004 0 16.4307 5.70996c0.839844 2.37012 3.5 1.77051 3.17969 -0.580078c-0.44043 -3.20996 -0.849609 -6.42969 -1.22949 -9.63965c0 -0.360352 -0.160156 -2.39941 -4.66016 -2.38965c-37.1602 0.0800781 -34.54 0.189453 -35.21 0.30957
-c-2.7207 0.509766 -2.2002 3 0.219727 3.4502c1.09961 0.19043 4 -0.540039 4.16016 2.55957c2.43945 56.2207 -0.0703125 51.3408 -3.91016 51.3301zM318.141 273.928c2.45996 -0.609375 3.12988 -1.75977 2.9502 -4.64941
-c-0.330078 -5.2998 -0.339844 -9 -0.549805 -9.69043c-0.660156 -2.22949 -3.15039 -2.12012 -3.33984 0.270508c-0.379883 4.80957 -3.0498 7.81934 -7.57031 9.14941c-26.2803 7.73047 -32.8096 -15.46 -27.1699 -30.2197c5.87988 -15.4102 22 -15.9199 28.8604 -13.7803
-c5.91992 1.85059 5.87988 6.5 6.91016 7.58008c1.22949 1.2998 2.25 1.83984 3.11914 -1.09961c0 -0.100586 0.570312 -11.8906 -6 -12.75c-1.59961 -0.209961 -19.3799 -3.69043 -32.6797 3.38965c-21 11.1904 -16.7402 35.4697 -6.87988 45.3301
-c14 14.0596 39.9102 7.05957 42.3203 6.46973h0.0292969zM289.801 167.858c3.28027 0 3.66016 -3 0.160156 -3.43066c-2.61035 -0.319336 -5 0.419922 -5 -5.45996c0 -2 -0.19043 -29.0498 0.400391 -41.4502c0.109375 -2.28906 1.14941 -3.51953 3.43945 -3.64941
-c22 -1.20996 14.9502 1.64941 18.79 6.33984c1.83008 2.24023 2.75977 -0.839844 2.75977 -1.08008c0.350586 -13.6201 -4 -12.3896 -5.18945 -12.3994l-38.1602 0.189453c-1.92969 0.230469 -2.05957 3 -0.419922 3.37988c2 0.480469 4.93945 -0.399414 5.12988 2.7998
-c1 15.8701 0.570312 44.6504 0.339844 47.8105c-0.269531 3.76953 -2.7998 3.26953 -5.67969 3.70996c-2.46973 0.379883 -2 3.21973 0.339844 3.21973c1.4502 0.0205078 17.9697 0.0302734 23.0898 0.0205078zM258.171 225.648
-c0.0703125 -4.08008 2.86035 -3.45996 6 -3.58008c2.61035 -0.100586 2.53027 -3.41016 -0.0703125 -3.43066c-6.47949 0 -13.6992 0 -21.6094 0.0605469c-3.83984 0 -3.37988 3.34961 0 3.37012c4.49023 0 3.24023 -1.61035 3.41016 45.54
-c0 5.08008 -3.27051 3.54004 -4.7207 4.22949c-2.58008 1.23047 -1.35938 3.08984 0.410156 3.15039c1.29004 0 20.1904 0.410156 21.1699 -0.209961c0.980469 -0.620117 1.87012 -1.65039 -0.419922 -2.86035c-1 -0.519531 -3.85938 0.280273 -4.14941 -2.46973
-c0 -0.209961 -0.820312 -1.62988 -0.0703125 -43.7998h0.0498047zM221.261 -48.6221c0.46582 -0.311523 1.02539 -0.493164 1.62695 -0.493164c0.602539 0 1.16797 0.181641 1.63281 0.493164c17 9.79004 182 103.57 197.421 112.51
-c-0.140625 0.430664 11.2598 0.180664 -181.521 0.270508c-1.21973 0 -1.57031 -0.370117 -1.53027 -1.56055c0 -0.0996094 1.25 -44.5098 1.2207 -50.3799c-0.0966797 -2.67383 -0.571289 -5.27344 -1.36035 -7.70996c-0.549805 -1.83008 0.379883 0.5 -13.5 -32.2295
-c-0.730469 -1.7207 -1 -2.20996 -2 0.0800781c-4.19043 10.3398 -8.28027 20.7197 -12.5703 31c-1.29785 2.92285 -2.01953 6.15723 -2.01953 9.55957c0 0.412109 -0.000976562 0.823242 0.0195312 1.23047c0.160156 2.45996 0.800781 16.1191 1.51074 48
-c0 1.94922 0 2 -2 2h-183c2.5791 -1.63086 178.319 -102.57 196 -112.761zM130.361 140.128c0 -2.39941 0.359375 -2.79004 2.75977 -3c11.54 -1.16992 21 -3.74023 25.6396 7.32031c6 14.46 2.66016 34.4102 -12.4795 38.8398c-2 0.589844 -16 2.75977 -15.9404 -1.50977
-c0.0498047 -8.04004 0.00976562 -11.6104 0.0205078 -41.6504zM236.111 155.178c0 -2.12988 1.06934 -38.6797 1.08984 -39.1299c0.339844 -9.93945 -25.5801 -5.76953 -25.2305 2.58984c0.0800781 2 1.37012 37.4199 1.10059 39.4307
-c-14.1006 -7.44043 -14.4199 -40.21 6.43945 -48.8008c2.18066 -0.946289 4.58594 -1.4707 7.11328 -1.4707c6.46094 0 12.1299 3.40332 15.2773 8.54102c4.90918 7.75977 6.83984 29.4697 -5.43066 39c-0.114258 -0.0478516 -0.237305 -0.0888672 -0.359375 -0.120117
-v-0.0400391zM223.831 353.178c-9.83008 0 -9.73047 -14.75 -0.0703125 -14.8701c9.66016 -0.119141 10.1006 14.8809 0.0703125 14.9102v-0.0400391zM143.681 249.348c0 -1.7998 0.410156 -2.39941 2.16992 -2.58008c13.6201 -1.38965 12.5107 11 12.1602 13.3604
-c-1.68945 11.2197 -14.3799 10.2002 -14.3496 7.81055c0.0498047 -4.5 -0.0302734 -13.6807 0.0195312 -18.5908zM356.001 242.948l-6.09961 15.8398c-2.16016 -5.48047 -4.16016 -10.5703 -6.23047 -15.8398h12.3301z" />
-    <glyph glyph-name="d-and-d-beyond" unicode="&#xf6ca;" horiz-adv-x="640" 
-d="M313.8 206.5c-9.89941 0 -16 7 -15.7002 7.09961c-4.2998 5.7002 -3 -0.299805 -2.39941 -1.89941c-10.9004 10.2998 -5.2998 25.3994 -5.10059 26c0.700195 1.89941 0 2.2002 -0.599609 1.89941c-1 -0.299805 -2.09961 -1.89941 -2.09961 -1.89941
-c0.799805 9.09961 9.2998 14.7002 9.2998 14.7002l0.200195 -0.200195c1 -1.5 -0.400391 -3.2002 -0.600586 -9c1.60059 2.2998 7.90039 6.59961 11.4004 7.89941c-1.10059 -1.5 -2.10059 -3.59961 -2.10059 -6.59961c3.7002 4.2002 7.5 2.59961 8 2.40039
-c-12.1992 -11.9004 -7 -26.6006 3.2002 -26.6006c5.7002 0 11.5 6.40039 13.9004 10.7002c2.39941 -2.40039 6.39941 -5.5 7.39941 -6.59961c-3.7998 -7.80078 -11 -17.9004 -24.7998 -17.9004zM366.2 227.6c0 -2.89941 -2.90039 -4.09961 -5.40039 -4.5
-c0.700195 1.5 1.7998 5.10059 -0.200195 9c0.700195 -0.0996094 5.60059 -0.5 5.60059 -4.5zM376.5 222.4c-0.400391 -6.5 -6.90039 -11.6006 -14.5996 -10.6006c2 -1.7002 6.59961 -3 9 -1.89941c-3.90039 -6.90039 -23.1006 -7.5 -23.1006 6.39941
-c-2.89941 -2.89941 -2.09961 -7.39941 0 -9.2998c-2.2002 0.700195 -5.7998 3.09961 -6.39941 7.40039c-1.30078 10.0996 4.39941 6.5 -10.4004 18.0996c-4.7998 3.7002 -3 6.59961 -4 8.5c-1.09961 2.2002 -7 4.09961 -4.5 8.5
-c-0.0996094 -1.59961 1 -2.90039 2.59961 -3.5c1.80078 -0.700195 3.2002 -0.200195 4.80078 -1c1.69922 -1.2002 0.899414 -3.90039 2.19922 -5c1.10059 -0.799805 4.2002 0.299805 6.60059 -1.7998c2.59961 -2 8.2002 -6.7002 10.5996 -8.60059
-c4.40039 -3.59961 8.7998 0.400391 7.40039 4.60059c4.5 -2.60059 5 -9.90039 1.2998 -12.5c10.5996 -2.40039 13 10.0996 5 11.3994c7.2998 0.700195 13.5 -4.2998 13.5 -10.6992zM337.1 240.8c4.30078 6.10059 13.3008 15.2998 23.8008 15.7998
-c-5.90039 0.800781 -15.1006 -3.19922 -19.7002 -9c0.899414 3.90039 5.09961 10.1006 10.2002 13c0 0 -2.5 -3.19922 -1.40039 -3.69922c1.59961 -0.800781 5.7998 5.69922 11.2002 5.89941c0 0 -4 -2 -3.2002 -3.39941c0.599609 -0.900391 3.2998 1.2998 8 1.2998
-c5.7998 0 10.9004 -3.5 13.2998 -6.2002c-4 1.09961 -11.5996 -0.799805 -13.7998 -2.7002c-0.299805 0.200195 -11.7998 9 -22 -15.5c-4.7998 3.7998 -4.40039 3.7002 -6.40039 4.5zM579.6 188.9c37.2002 0 60.4004 -19.6006 60.4004 -48.9004
-c0 -28.2002 -17 -48.9004 -59.0996 -48.9004c-20.7002 0 -41.2002 1.30078 -51.6006 2.10059l7.40039 8.2002v77.1992l-7.40039 8.2002c10.2998 0.799805 29.6006 2.10059 50.2998 2.10059zM564.5 113.3c25.4004 -3.2002 46.7998 1.40039 46.7998 27
-c0 22.5 -16.7002 29.6006 -46.7998 26.2998v-53.2998zM301.6 267c0.100586 -0.299805 -2.7998 2.2998 -3.2998 7.5c-0.200195 2.2998 0 19.7998 20 18.9004c11.2002 -0.600586 16.7002 -8.30078 16.7002 -16.5c0 -4.30078 -2.2998 -10.1006 -5.5 -13.8008
-c-2.2002 2.2002 -5.59961 4.60059 -7.7002 7.80078c3.7998 5.59961 2.2002 14.3994 -4.7002 14.3994c-4.2998 0 -7.7998 -4.5 -6.39941 -9.89941c-0.700195 -2.40039 -1 -5.60059 -0.5 -8c-4.90039 2.59961 -6.5 6 -7.5 9c-1.2998 -2.5 -2.10059 -6 -1.10059 -9.40039z
-M301.2 261c0.299805 1.7002 -3.10059 4.59961 -4.7998 5.2002c4.7998 0.200195 7 -0.600586 7 -0.600586c-1.30078 1.7002 -1.60059 4.5 -1 6.7002c2.5 -6.09961 11.6992 -7.09961 13.8994 -12.2002c-0.299805 2.30078 -2.39941 4.7002 -4.7998 6.10059
-c-1.2998 3.2002 -0.299805 9.39941 1.2998 11c-0.5 -8.7998 12 -13.7998 14.6006 -20.2002c-1.40039 5.5 -7.40039 9 -10.1006 12.2002c-1 2.09961 -0.200195 5.7998 0.799805 7.09961c-0.5 -9.7002 15.8008 -14.2998 14.1006 -23.8994
-c0.899414 -0.400391 2.09961 -1.2002 1.89941 -2.60059c1.30078 0.299805 2.60059 1.7002 2.90039 2.7002c0.700195 -4.5 -1.90039 -9 -4.7998 -10.4004c1.59961 4 -2.7002 5.60059 -6.7002 5.10059c0 0 1.59961 2.2998 1 3.39941
-c-0.799805 1.5 -8 0.800781 -11.2002 -0.299805c1.10059 0.100586 3.60059 -0.200195 4.60059 -0.5c-2.10059 -2.89941 -1 -7.09961 1.2998 -4.2002c0 0 -1.10059 -3.5 -0.299805 -4.2998c0.799805 -0.799805 2.59961 -0.200195 2.59961 -0.200195
-c-1.2002 -2.69922 -5.2998 -4.59961 -8.2002 -4.59961c1.10059 0.400391 2.7002 2.2998 3 3.40039c-0.799805 -0.5 -2.7002 -0.700195 -3.5 -0.5c6.10059 3 0 13.1992 -7 8.19922c1 2.7002 3.7002 5.30078 5.7998 6.10059c-1.2998 0.5 -2.69922 0.799805 -4.2998 1.09961
-c1.7998 1.5 6.2998 2.7998 8.5 2.60059c-3.5 0.799805 -9.89941 -0.300781 -12.7998 -3.7002c0.900391 0 3.2998 -0.5 4.2998 -0.799805c-4 -0.700195 -9.39941 -4.40039 -11 -6.2002c0.299805 2.2002 1 4.2002 0.5 5.59961c-0.799805 2 -3 2.7998 -7.7998 1.7998
-c3.2002 3.2002 9.7002 5.10059 10.2002 6.90039zM327.1 253.6c0 0 -0.899414 3 -4.19922 4.30078c0.699219 -2.2002 1.5 -4.30078 4.19922 -4.30078zM366 249.9l0.700195 0.699219c0.5 0.400391 1.59961 0.900391 2.7002 1.40039v-18.4004
-c-1.7002 0.800781 -3.5 1.10059 -5.60059 1.10059c-2.39941 0 -5 -0.5 -5 -0.5c-0.5 0.5 -3.59961 2.89941 -5.09961 3.2002c4.09961 -4.30078 0.5 -9.80078 -3 -7.2002v15.7002c0.700195 0.799805 1.2998 1.7998 2.09961 2.59961
-c1.7002 2.09961 4.60059 3.40039 7.5 3.40039c1.7998 0 3.60059 -0.400391 4.7002 -1.40039zM79.9004 142.1c22 -6.39941 19.3994 -20.0996 19.3994 -25.1992c0 -7.80078 -3.2002 -13.6006 -9.89941 -17.6006c-12.6006 -7.39941 -24.7002 -5.89941 -86.4004 -5.89941
-l8.40039 8.59961v32.2998l-11.4004 14.6006h11.2998v29.5l-8.2998 8.59961h56.0996c12.9004 0 37 -4.40039 37 -25c0 -1.90039 1 -15.2998 -16.1992 -19.9004zM38.5996 169.6v-20.8994c10.6006 0 29.6006 -3.2998 29.6006 8.7998v3
-c0 9.90039 -9.60059 9.09961 -29.6006 9.09961zM38.5996 110.4c20.4004 0 32.9004 -1.90039 32.9004 9.2998h-0.200195v4.5c0 11.0996 -20.5 8.7998 -32.7002 8.7998v-22.5996zM139.8 129.7v-15.4004l60.1006 0.200195l-14.1006 -21.2002h-81.2002l7.40039 8.2002v77.0996
-l-7.40039 8.2002l73.5 0.200195v-0.200195l14.1006 -21h-52.4004v-14.8994h37.2002l-14.0996 -21.2002v-0.200195zM354.5 189.8c73.7998 0 77.5996 -99.2998 -0.299805 -99.2998c-77.2002 0 -73.6006 99.2998 0.299805 99.2998zM354.2 112.3
-c39 0 37 55.2002 0.200195 55.2998c-37.1006 0 -37.6006 -55.2998 -0.200195 -55.2998zM262.9 120.6l0.199219 -19l7.2002 -8.19922h-42.5996l7.7002 8.19922l-0.200195 19.4004l-44.1006 65.7998h44.9004l-6.40039 -7.2002l21 -37.1992h0.300781l20.5 37.1992
-l-6.10059 7.2002h41.7002zM234.5 271.9c-9.09961 6.69922 -9.5 14.0996 -9.59961 14.8994c7.2998 -4.2998 9 -4 39.8994 -4c-5.7998 0 24 3.10059 32.2002 -22.8994c-0.400391 0 -8.40039 -4.80078 -10.4004 -7.90039c5.30078 1.90039 8.90039 1.09961 9 1.09961
-c-8 -5.09961 -9.59961 -14.7998 -9.59961 -20.5c0.900391 2.10059 2.7002 3.7002 2.7002 3.5c-0.600586 -2.5 -1.40039 -7 -0.799805 -12c-8.60059 -7.09961 -16 -8.59961 -26 -8.59961h-35.1006c0.400391 0.0996094 7.7998 4.5 7.90039 4.59961
-c1.89941 1.10059 2.7002 2.2002 2.7002 6.40039v38.7998c0 4.2002 -1.30078 5.2998 -2.90039 6.60059zM256 266.4v-34.6006c4.7002 0 23.0996 -3.39941 23.0996 17.2998c0 20.6006 -18.5 17.3008 -23.0996 17.3008zM484.9 186.8l39.1992 -0.0996094l-7.39941 -8.2998
-v-85.2002h-21.2998c-4 12.7002 -44.8008 45 -48.5 55.5996h-0.300781v-47.3994l7.40039 -8.2002h-39l7.2002 8.2998v76.9004l-7.40039 8.5h31.6006c2.89941 -9.40039 39.7998 -36.5 45.1992 -50.9004h0.300781v42.5zM378.2 282.9
-c32.7002 -1.60059 33.7998 -29.8008 33.7998 -33.6006c0 -6.7002 -3.2998 -34 -36.7002 -34h-0.299805c3.59961 4.2998 3.5 11.9004 -2.2002 16.2998c1.2002 0 19.7002 -3.19922 19.7002 17.3008c0 20.6992 -18.4004 17.2998 -23.0996 17.2998v-4.2998
-c-5.40039 0.799805 -7.40039 -0.300781 -7.5 -0.300781c2.09961 1.80078 4.5 2.60059 6.09961 2.90039c-7.09961 1.59961 -13.5996 -2.40039 -14.5996 -3.5c0.799805 1.7998 2.39941 3.40039 3.5 4.5c-2.30078 -0.799805 -4.30078 -1.90039 -6.10059 -3
-c0 5.2002 0.200195 7.5 -2.89941 9.5c-9.10059 6.59961 -9.5 14.2002 -9.60059 14.9004c7.10059 -4.2002 7.7002 -4 39.9004 -4z" />
-    <glyph glyph-name="dev" unicode="&#xf6cc;" 
-d="M120.12 239.71c3.87012 -2.90039 5.82031 -7.25977 5.83008 -13.0596v-69.6504c0 -5.80957 -1.94043 -10.1602 -5.82031 -13.0596c-3.87988 -2.90039 -7.76953 -4.35059 -11.6494 -4.35059h-17.4502v104.47h17.4395c3.87988 0 7.77051 -1.44922 11.6504 -4.34961z
-M404.1 416c24.2002 0 43.8408 -19.5898 43.9004 -43.7998v-360.4c-0.0595703 -24.21 -19.6904 -43.7998 -43.9004 -43.7998h-360.199c-24.2002 0 -43.8408 19.5898 -43.9004 43.7998v360.4c0.0595703 24.21 19.7002 43.7998 43.9004 43.7998h360.199zM154.2 156.81
-l-0.00976562 70.9307c-0.0107422 18.8193 -11.9307 47.2793 -47.3701 47.2793h-47.3799v-165.46h46.3994c36.75 -0.0595703 48.3604 28.4404 48.3604 47.25zM254.88 245.47l0.00976562 29.5205h-63.1895c-11.1504 -0.280273 -19.9805 -9.54004 -19.71 -20.6904v-125.109
-c0.279297 -11.1602 9.55957 -19.9805 20.7197 -19.6904h62.1797v29.5703h-53.29v38.4102h32.5703v29.5693h-32.5703v38.4199h53.2803zM358.52 130.18l38.4609 144.801h-32.5801l-29.5703 -113.721l-29.71 113.721h-32.5703l38.5303 -144.801
-c10.5898 -24.6299 34.2402 -30.75 47.4395 0z" />
-    <glyph glyph-name="fantasy-flight-games" unicode="&#xf6dc;" horiz-adv-x="512" 
-d="M256 415.14l223.14 -223.14l-223.14 -223.14l-223.14 223.14zM88.3398 192.17c13.8027 -13.6836 27.3086 -27.0547 41.1299 -40.7197c20.1602 19.8799 40.46 39.8994 61.8506 60.9902c12.0596 -12.5801 24.5195 -25.5703 36.54 -38.1104
-c12.0293 11.6895 23.7393 23.0596 35.6895 34.6602c-6.99023 7.4502 -32.1494 32.8301 -35.0898 35.7793c-1.91016 1.9209 -2.29004 3.2207 -0.120117 5.35059c15.5801 15.2295 39.21 17.79 56.9805 5.09961c7.98926 -5.70996 14.2998 -11.6396 48.5098 -43.9502
-c10.8203 11.1504 22.2295 22.8506 33.5 34.6904c0.490234 0.520508 0.0996094 2.63965 -0.580078 3.37988c-0.0898438 0.100586 -37.5195 40.6006 -62.1504 59c-33.5801 25.0801 -78.3193 23.0605 -119.77 -18.6895c-84.5703 -85.1807 -94.5303 -95.4805 -96.4902 -97.4805z
-M323.16 90.5703c18.8203 18.79 80.3301 80.6396 100.5 101.5c-13.7305 13.4492 -27.1797 26.6299 -40.8604 40.0293c-20.0098 -19.7393 -40.2402 -39.6895 -61.25 -60.4199c-12.3301 12.8301 -24.8799 25.8799 -37.25 38.75
-c-1.25977 -0.689453 -1.64941 -0.80957 -1.91016 -1.06934c-10.7295 -10.7705 -21.4199 -21.5801 -32.21 -32.29c-2.22949 -2.20996 -0.519531 -3.35059 0.800781 -4.69043c10.5791 -10.7402 21.1797 -21.4502 31.7695 -32.1797
-c3.5498 -3.60059 3.54004 -3.85059 -0.139648 -7.24023c-16.8008 -15.4697 -40.8408 -16.54 -59.3203 -1.7998c-7.62012 6.08008 -11.6602 10.1797 -44.6797 42.0898c-11.5801 -11.8896 -23.3203 -23.9404 -35.3701 -36.3096
-c33.5498 -34.7607 50.8496 -53.3408 72.9297 -66.8408c28.9004 -17.6699 71.5 -14.96 106.99 20.4707zM256 448l256 -256l-256 -256l-256 256zM16 192l240 -240l240 240l-240 240z" />
-    <glyph glyph-name="penny-arcade" unicode="&#xf704;" horiz-adv-x="640" 
-d="M421.91 283.73c7.33984 -16.2705 2.29004 -5.07031 24.6299 -54.6807l-39.7305 -10.6094c13.7002 59.2295 10.6104 45.8398 15.1006 65.29zM215.82 232.62c32.5 8.99023 41.9492 -37.6396 -0.350586 -47.4297c-14.2002 -3.77051 -6.64941 -1.75 -34.8193 -9.34082
-l-4.45996 46.1904c28.3193 7.5498 19.4395 5.17969 39.6299 10.5801zM541.98 258.81c75.7998 -37.9092 98 -76.3193 97.9893 -104.47c2.10059 -78.8496 -183.3 -130.33 -399.89 -84.8301c0.540039 -13 -8.00977 -24.6494 -20.5801 -28.0195
-c-125.54 -33.54 -117.35 -31.75 -122.53 -31.7598c-14.3701 -0.0107422 -26.4102 10.8896 -27.7998 25.1992l-4.2998 44.4805c-0.0830078 0.875 -0.138672 1.72461 -0.138672 2.62109c0 11.877 7.43945 22.0293 17.9082 26.0488l-1.73926 17.8799
-c-50.2305 28.2598 -80.9004 61.8701 -80.9004 95.3701c0 72.9199 144.26 113.4 309.41 98.3701c3.02734 8.49316 10.0977 15.0625 18.8896 17.4102c96.8701 25.9092 65.3203 17.4795 135.59 36.2295c13.1602 3.50977 26.9307 -2.95996 32.6201 -15.3301zM255.14 149.7
-c20.7529 4.80176 38.666 16.9805 50.75 33.7197c21.6006 32.5898 14.1104 105.561 -42.5498 104.43c-16.04 -0.229492 -8.07031 0.890625 -186.22 -46.6494l4.34961 -44.5l20.1201 5.38965l11.1104 -114.64l-20.0205 -5.35059l4.30078 -44.5195l115.31 30.7803
-l-4.50977 44.5098l-20.5303 -5.50977l-2.45996 23.5498l48.4404 12.9102zM454.32 133.08l108.55 28.96l-4.2998 44.4795l-20.79 -5.55957l-66.6699 145.47c-70.5801 -18.8301 -42.2305 -11.25 -135.591 -36.2393l4.2002 -44.4805l17.1504 4.55957l-33.0801 -126.47
-l-20.9902 -5.58984l4.45996 -44.4297l112.851 30.0693l-4.05078 39.54l-19.1992 -5.12012l4.09961 17.54l57.7598 15.4209l6.61035 -14.6807l-14.9004 -3.97949z" />
-    <glyph glyph-name="wizards-of-the-coast" unicode="&#xf730;" horiz-adv-x="640" 
-d="M219.19 102.31c7.44922 5.80078 16.2598 0.680664 21.7295 -7.0791c7.08984 -10.1201 6.24023 -18.1602 -0.259766 -23.04c-7.62012 -6.24023 -17.0898 0.129883 -21.7305 6.5498c-10.8096 15.1299 -1.63965 22.1895 0.260742 23.5693zM555.94 26.3701
-c1.30957 4.4502 3.92969 10.21 3.93945 20.1699c0 34.04 -41.6299 64.4102 -100.03 68.0801c-53.1592 3.39941 -120.46 -15.4502 -184.35 -73.8506l-0.790039 0.260742c1.58008 10.4697 -0.780273 16.2295 -3.40039 21.21l0.260742 1.56934
-c64.4199 51.3203 134.069 66.5107 188.8 60.4902c61.0098 -6.54004 104.479 -39.54 101.34 -78.0303c-0.790039 -9.68945 -2.88965 -15.71 -4.97949 -19.8994c-1.34082 -1.66992 -1.13086 -1.7002 -0.790039 0zM392.28 207.58
-c-0.530273 7.07031 3.13965 11.7803 6.7998 15.46c3.66992 3.91992 14.9297 10.4697 14.9297 10.4697s-1.2998 -26.4502 -2.08984 -29.8496c-1.04004 -3.92969 -4.96973 -6.81055 -10.4697 -6.5498c-4.98047 0.259766 -8.37988 3.39941 -9.16992 10.4697zM342.26 358.68
-c147.17 0 275.48 -86.6797 291.21 -196.939c0 0 -3.66992 -1.31055 -9.68945 -4.4502c0 -0.259766 1.0498 -10.7402 0.259766 -16.5c-0.259766 -1.83008 -1.0498 -1.0498 -1.0498 0c-0.270508 5.24023 -1.57031 11.5303 -2.36035 14.9297
-c-4.70996 -2.60938 -10.21 -6.54004 -15.9697 -11.7793c0 0 4.70996 -10.21 4.70996 -25.9209c0 -21.21 -8.37988 -32.9893 -16.5 -37.9697l-0.259766 0.520508c9.16992 9.16992 12.5693 21.4795 12.5693 31.9492c0 13.8701 -6.80957 33.25 -14.3994 41.3701
-c0 0 4.4502 -8.12012 6.80957 -17.8096c0 0 -21.21 -21.4697 -26.9697 -62.3203c0 0 -3.66992 9.16992 -10.7402 16.2402c0 0 12.0498 -15.4502 12.0498 -38.2305c0 -19.3799 -12.8398 -37.4395 -27.5 -48.1797c-0.989258 0 -0.790039 -0.169922 -0.790039 0.790039
-c15.71 12.8301 22.2607 28.0205 22.2607 46.3506c0 38.2295 -49.2305 80.3896 -130.15 80.3896c-96.1104 0 -181.74 -58.1299 -236.99 -128.05l-1.0498 0.259766c-40.3203 120.979 -135.64 185.66 -196.13 202.16c-2.09961 0.519531 -1.83984 0.790039 -0.790039 1.30957
-c12.3096 14.4004 136.96 151.88 341.47 151.88zM243.02 69.0596c16.8408 14.5908 4.99023 30.7705 4.71094 31.1602c-4.08008 5.99023 -16.3105 16.8506 -31.1602 5.5c-10.9502 -8.37988 -11.6406 -22.8896 -4.19043 -32.4697
-c6.44043 -8.26953 19.5801 -13.1797 30.6396 -4.19043zM245.11 205.49l1.83008 -8.11035l-3.6709 4.4502l-14.1396 -26.71l24.6201 -28.7998l12.5703 6.01953l-11.7803 70.96zM263.7 87.9102c3.41016 2.35938 7.33984 4.97949 9.67969 6.57031l-0.259766 0.259766
-c-1.56055 -0.780273 -3.11035 -1.0498 -12.5703 15.9697v0.259766c6.87012 5.16016 8.45996 4.89062 11.5205 5.5l0.259766 0.260742c-1.31055 3.66992 -1.31055 3.66992 -1.83008 5.5h-0.259766c-3.95996 -3.31055 -1.4707 -1.58008 -11.5205 -7.86035h-0.259766
-c-1.83008 3.13965 -4.19043 7.33008 -5.75977 9.68945v1.31055c4.4502 3.91992 10.2197 6.7998 12.3096 7.58984c2.87988 1.0498 4.19043 0.520508 5.24023 0.259766l0.259766 0.520508c-1.30957 1.83008 -2.08984 2.87988 -3.39941 4.70996l-0.520508 0.259766
-c-9.9502 -5.5 -17.54 -9.9502 -25.3994 -15.71l0.259766 -0.519531c1.30957 0.259766 3.13965 -0.260742 4.4502 -2.62012c15.04 -25.0801 19.5898 -27.5908 17.54 -31.6904zM318.96 120.38v0.25c-1.99023 0 -2.34961 -1.37012 -14.6602 30.6396v0.260742
-c4.95996 1.85938 8.78027 4.37988 12.3105 2.62012l0.259766 0.519531l-3.13965 4.98047l-0.520508 0.259766c-2.22949 -0.929688 -20.4697 -8.00977 -27.7598 -12.5703l-0.259766 -0.519531l1.0498 -5.76074h0.519531c1.0498 3.68066 9.7998 7.33008 9.9502 7.33008
-l0.259766 -0.259766c12.9404 -29.7598 13.0703 -29.8799 11.7803 -32.4697l0.259766 -0.259766c3.93066 2.09961 6.81055 3.40918 9.9502 4.97949zM363.73 136.88c-0.780273 0.520508 -2.09082 1.31055 -2.63086 3.92969c-1.56934 6.02051 -4.70996 20.1709 -6.2793 26.4502
-c-0.530273 1.57031 -0.530273 3.14062 0.519531 4.4502l-0.259766 0.259766c-3.41016 -0.529297 -6.29004 -1.30957 -10.7402 -2.35938v-0.260742c1.57031 -0.529297 2.10059 -2.09961 2.62012 -3.92969l2.62012 -9.42969l-0.259766 -0.259766
-c-3.40039 -1.05078 -8.90039 -2.62012 -12.8301 -3.93066h-0.259766c-0.780273 2.10059 -1.83008 5.75977 -3.14062 9.69043l0.259766 4.70996l-0.259766 0.259766c-4.71973 -1.30957 -7.59961 -2.34961 -10.7402 -3.40039v-0.519531
-c1.05078 0 2.10059 -1.30957 2.62012 -3.13965c1.0498 -3.40039 8.12012 -24.0908 9.16992 -27.2305c0.790039 -2.09961 0.790039 -3.66992 -0.259766 -4.97949l0.259766 -0.260742c3.14062 1.31055 6.54004 2.87988 10.21 3.93066v0.519531
-c-1.0498 0.259766 -2.08984 0.780273 -2.87988 3.13965c-1.0498 3.93066 -3.39941 11.2607 -4.18945 13.8809l0.259766 0.259766c3.92969 1.30957 9.42969 3.13965 12.8301 3.92969l0.259766 -0.259766c0.530273 -2.09961 2.62012 -10.2197 3.66992 -13.6201
-l-0.519531 -4.4502l0.259766 -0.259766c4.4502 1.57031 5.5 1.83008 9.69043 2.87988zM395.94 143.69c0.529297 1.8291 1.0498 3.65918 1.5791 6.04004h-0.259766c-2.0293 -4.06055 -15.0898 -5.09082 -16.2402 -4.71094l-0.259766 0.260742
-c-0.519531 3.13965 -1.83008 10.4795 -2.08984 12.5693l0.259766 0.260742c8.06055 0.899414 5.40039 1.0293 10.21 0h0.260742c0 3.40918 0.259766 3.66992 0.259766 5.23926h-0.259766c-5.98047 -2.2998 -1.2207 -0.679688 -10.7402 -2.35938l-0.259766 0.259766
-c-0.520508 3.40039 -1.31055 8.37988 -1.57031 9.9502l0.259766 0.259766c12.9004 2.41016 15.1006 0.349609 16.2402 -0.790039l0.259766 0.259766c-0.780273 2.36035 -1.0498 3.14062 -1.57031 5.5l-0.259766 0.260742
-c-4.71973 -0.260742 -15.71 -1.05078 -24.8799 -2.62012l-0.790039 -0.520508c1.83008 -0.790039 2.36035 -1.83984 2.62012 -3.66992c1.58008 -7.59961 3.41016 -18.3301 4.98047 -26.1895l-0.790039 -4.19043l0.259766 -0.259766
-c8.37988 1.83008 17.8096 3.66992 22.5195 4.18945zM406.68 188.2c3.14062 1.56934 7.33008 5.5 7.33008 5.50977c1.95996 -4.58008 0.970703 -2.70996 4.19043 -7.86035c10.1494 -0.459961 8.60938 0.0205078 20.4297 -1.0498l0.790039 4.70996
-s-4.18945 0 -5.75977 1.83008c-1.0498 1.31055 -1.31055 3.14062 -1.57031 5.5c0 2.36035 0.270508 16.5 0.790039 20.6904c0.259766 4.18945 2.08984 20.4199 2.08984 23.04c0.260742 2.62012 1.0498 8.91016 0.260742 12.0498
-c-4.82031 19.2803 -24.4307 17.8096 -50.0205 16.2402l-5.24023 -16.2402l2.62012 -2.87988c16.5498 16.5498 37.6201 4.56934 29.5898 -5.75977c-5.18945 -6.9209 -19.7393 -8.90039 -28.54 -17.0205c-6.47949 -6.49023 -12.2393 -20.9004 -5.5 -31.6904
-c6.12988 -11.0391 17.29 -9.96973 17.54 -9.94922c2.87988 0 6.55078 0.519531 11 2.87988zM443.86 166.99c0 1.83984 0.269531 4.18945 0.269531 5.25l-0.259766 0.519531c-14.3604 8.98047 -26.8604 0.919922 -28.7998 -9.9502
-c-2.83984 -16.0898 15.3594 -25.46 25.6602 -18.5898l0.519531 0.520508c0 0.259766 1.30957 4.4502 1.83008 6.2793l-0.259766 0.260742c-6.39062 -9.58008 -23.3203 -6.87012 -20.6904 10.21c1.91016 12.6602 15.3799 16.0801 21.7305 5.5zM449.63 254.72
-c0 0 4.96973 -0.790039 4.99023 -3.66016c0 -2.08984 -4.98047 -55.25 -4.98047 -55.25c-0.109375 -1.48926 -0.339844 -6.80957 -7.58984 -6.80957l-0.790039 -4.70996c18.3906 -2.83008 19.3701 -3.04004 36.9199 -7.33008l0.520508 4.70996
-c-13.0498 3.91992 -9.74023 7.37012 -4.4502 46.0898c1.09961 0.870117 8.62012 7.14062 20.6904 0.790039l11.2598 11.2598s-9.69043 8.90039 -14.9307 7.33008c-5.23926 -1.30957 -15.4492 -10.7393 -15.4492 -10.7393l1.56934 17.54
-c-8.10938 4.0498 -27.0693 7.3291 -27.7598 7.3291v-6.5498zM460.62 140.28c9.42969 -2.35059 16.2402 2.62012 18.8496 11.5195c2.08984 7.60059 -1.56934 16.7598 -10.7393 19.3799c-6.54004 2.10059 -15.7109 -0.779297 -18.8506 -10.21
-c-3.39941 -9.68945 2.62012 -18.5996 10.7402 -20.6895zM502.78 130.59c-0.780273 1.31055 -1.04004 2.10059 -0.799805 3.91016c1.22949 27.0098 1.5293 24.6602 1.0498 25.1396c-2.08984 0.790039 -5.5 2.09082 -7.58984 2.87988l-0.520508 -0.259766v-2.08984
-c-3.92969 -6.01953 -10.4795 -15.4502 -13.8799 -20.1602l-2.62012 -1.83008v-0.259766c2.08984 -0.259766 4.70996 -1.30957 6.02051 -1.57031v0.260742l0.790039 3.39941c0.789062 1.0498 2.35938 3.66992 3.66992 5.5c0.40918 0 2.25 -0.549805 7.06934 -2.35938
-c0.330078 -0.320312 0.330078 0.649414 -0.259766 -7.59082l-1.57031 -1.8291v-0.260742c1.57031 -0.519531 6.28027 -2.35938 8.64062 -2.87988zM498.07 220.41c-13.2207 -21.1504 -9.39062 -51.6006 9.66992 -52.9004c5.75977 -0.259766 9.42969 3.93066 9.68945 3.66992
-l-2.08984 -6.80957c8.91016 -4.21973 11.4404 -5.29004 17.8105 -8.63965l1.83008 4.44922c-6.14062 3.51074 -1.29004 11.25 24.6191 84.3203c-6.13965 6.45996 -10.2998 10.0596 -22.5195 20.4297l-1.83008 -3.66992c1.62988 -1.35938 6.79004 -5.00977 4.4502 -11.2598
-l-7.58984 -26.1904c-3.28027 12.79 -22.79 14.8701 -34.04 -3.39941zM527.4 141.07l2.35938 3.39941v0.520508c-3.41016 6.83008 -11.9395 7.41992 -14.6602 2.35938c-1.83984 -3.40918 0.260742 -7.06934 1.83008 -9.68945
-c1.57031 -2.87988 3.14062 -6.29004 2.08984 -8.37988c-2.31934 -4.62988 -8.94922 -0.680664 -8.37988 4.97949l-0.790039 -0.259766c-2.09961 -4.7998 -1.83008 -4.00977 -1.83008 -4.70996c3.05078 -6.09961 12.8105 -7.12988 15.4502 -0.790039
-c1.57031 3.15039 0.520508 6.80957 -1.0498 9.42969c-1.83008 3.40039 -4.18945 6.29004 -2.87988 8.37988c1.51953 2.65039 7.86035 0.470703 7.86035 -5.23926zM548.61 127.71l1.30957 3.91016l-0.259766 0.259766c-2.36035 2.08984 -8.64062 6.54004 -12.3105 8.90039
-h-0.259766l-3.13965 -3.40039v-0.259766c4.7998 -0.320312 3.37988 0.149414 6.01953 -1.83008v-0.259766c-2.62012 -4.9707 -6.0293 -11.2607 -9.16992 -17.0205l-2.08984 -1.30957l-0.259766 -0.259766l5.75977 -4.4502l0.259766 0.259766
-c-0.259766 0.530273 -0.519531 1.57031 0.790039 3.92969c2.87988 5.77051 6.28027 12.0508 8.64062 16.2402h0.259766c3.54004 -2.57031 2.49023 -1.43945 4.4502 -4.70996zM575.84 171.97l7.85059 10.46s-9.4209 18.8604 -23.04 16.5
-c-20.8408 -4.0293 -3.15039 -34.21 -2.09082 -38.2295c4.33008 -15.1299 -16.3193 -12.5605 -13.3496 5.24023l-2.87988 2.08984l-4.98047 -14.4004s11.7803 -11.2598 20.1602 -10.4697c8.12012 0.790039 13.8799 6.29004 13.8799 16.5
-c0 8.37988 -7.85938 22.7803 -7.85938 27.7598c0 6.86035 12.2695 4.75977 11.5195 -4.97949c-0.259766 -2.61035 -1.2998 -5.23047 -2.08984 -7.59082zM611.46 182.18c0.780273 -2.35938 1.57031 -1.83008 0.790039 0.270508
-c-32.4697 98.9795 -132.76 138.78 -199.8 139.83c-50.54 0.779297 -89.5605 -11.79 -131.98 -35.8799l20.6904 61.0098l-33.7803 -65.7305l-8.89941 20.9502c3.13965 1.04004 6.2793 2.08984 6.2793 2.08984l-2.62012 8.64062s-3.13965 -0.780273 -7.33008 -2.09082
-l-12.0498 28.2803l13.6201 -61.0098c-5.12012 2.55957 -19.0996 6.83008 -6.5498 19.3799l-2.62012 11c-6.97949 -2.21973 -13.2295 -3.62012 -32.21 -9.68945l-23.0801 11.5l59.1797 -42.6807l-4.70996 -2.08984l-17.2793 13.8799
-c2.23926 -5.13965 3.2998 -12.1699 4.70996 -19.6396l-28.54 -13.0898l-30.1104 36.1396l-17.2803 -9.16992l13.6201 -42.4199l-11.2598 -4.98047l94.2695 29.3301l-3.66992 -10.4697l-0.519531 3.13965l-13.0898 -3.39941l4.97949 -24.6201l-4.4502 -12.3105
-l-25.6592 30.6406l-39.8008 -10.21l18.8506 -58.9199c-60.1299 62.3994 -67.7002 66.3994 -61.7998 75.6797c2.09961 2.87988 7.85938 7.07031 7.85938 7.07031l-4.18945 7.06934c-26.7803 -18.3496 -27.8398 -19.1494 -58.4004 -42.6797l4.98047 -6.01953
-s8.12012 5.75977 13.6201 5.5c7.81934 -0.350586 1.76953 2.93945 113.659 -98.7305l11.7803 8.37988l-27.7598 93.4805l35.8799 -42.1602l-4.70996 -13.8799l41.9004 88.5098c34.6699 -80.5098 29.1494 -66.9502 32.9893 -78.8203l-33.5195 67.2998l-2.36035 -4.44922
-c1.2998 -1.30078 -0.919922 3.05957 22.7803 -59.4404c3.22949 -8.88965 -1.10059 -9.88965 -5.5 -12.8301l2.36035 -4.70996c15.3594 6.79004 22.9395 9.54004 39.0195 14.4004l-1.0498 4.97949c-8.89062 -1.33008 -10.1006 0.169922 -12.0498 4.4502
-c-1.05078 2.09961 -14.1504 40.0703 -20.4307 58.6602l-10.21 4.97949l-2.35938 8.12012l61.54 -36.6602l-13.0908 -43.21c12.1904 3.26074 27.0303 6.74023 49.4902 9.9502l-0.259766 26.71l-4.98047 -1.0498c-0.669922 -13.7998 -6.0293 -22.0801 -19.6396 -22.7803
-l22.2598 80.3906c-27.6201 -0.450195 -59.2695 -7.19043 -66.7695 -8.90039l3.92969 -16.5l-25.1396 19.6396l91.3896 20.6904l-85.6299 -9.16992c38.4902 22.5195 79.3398 39.0195 132.76 37.9697c131.46 -2.08984 180.95 -99.2402 191.95 -129.62zM203.48 295.57
-l2.35938 -8.64062c7.82031 2.61035 10.8604 2.36035 11.2598 2.36035l-9.42969 7.58984c-2.36035 -0.790039 -4.18945 -1.30957 -4.18945 -1.30957zM347.24 257.07l-11.5303 -37.71l-21.7295 17.0195c6.7998 25.5 31.6895 21.29 33.2598 20.6904zM318.43 380.93
-c224.94 0 321.83 -143.76 321.57 -227.55c0 -11 -0.269531 -17.5498 -0.790039 -19.6396c-0.259766 -2.10059 -1.0498 -0.790039 -1.0498 0.519531v9.9502c0 106.58 -121.51 223.37 -301.67 223.37c-61.2705 0 -103.69 -12.0498 -110.24 -13.8799l-1.57031 0.259766
-c-6.80957 7.58984 -12.8301 9.69043 -21.21 11.7803v0.790039c8.91016 2.34961 56.5605 14.3994 114.96 14.3994zM529.49 211.25c-8.61035 -34.4502 -13.6504 -35.3496 -18.3301 -35.3604c-7.33008 0 -6.81055 9.43066 -6.02051 14.9307
-c0.879883 9.72949 7.40039 34.6494 17.0205 33.5195c7.33008 -0.780273 8.63965 -7.33008 7.33008 -13.0898zM467.96 168.3c3.40039 -0.780273 7.84961 -4.4502 5.23047 -14.3896c-2.88086 -11.2598 -8.11035 -11.79 -11.7803 -10.7402
-c-5.5 1.31055 -7.85059 7.84961 -6.02051 14.6602c3.14062 11.2598 9.9502 11.2598 12.5703 10.4697zM491 147.35v0.270508c1.0498 1.83008 5.5 8.63965 6.5498 9.9502c-0.269531 -3.66992 -0.790039 -10.2207 -0.790039 -12.0508
-c-2.62012 0.780273 -3.92969 1.31055 -5.75977 1.83008z" />
-    <glyph glyph-name="think-peaks" unicode="&#xf731;" horiz-adv-x="576" 
-d="M465.4 38.5996l-206.2 353.801l-204.2 -352.101l-32 0.299805l236.2 407.4l206.2 -353.9l55.0996 95l32 -0.299805zM110.1 82.7002l149.601 257.899l235.8 -404.6l-32.5 0.0996094l-203.4 349.101l-117.399 -202.5h-32.1006z" />
-    <glyph glyph-name="reacteurope" unicode="&#xf75d;" horiz-adv-x="576" 
-d="M250.6 236.26l2 6.7998l-5.69922 4.30078l7.19922 0.0996094l2.30078 6.7998l2.2998 -6.7998l7.09961 -0.0996094l-5.7002 -4.30078l2.10059 -6.7998l-5.7998 4.10059zM314.3 236.26l1.90039 6.7998l-5.7002 4.30078l7.2002 0.0996094l2.2998 6.7998l2.2998 -6.7998
-l7.2002 -0.0996094l-5.7002 -4.30078l2.10059 -6.7998l-5.80078 4.10059zM223 185.76c4.90039 0 3.7998 -3.89941 3.7998 -13.7598c0 -10.2998 -6.7002 -14.0996 -16.7998 -14.0996h-0.200195c-10.0996 0 -16.7998 3.69922 -16.7998 14.0996v40.0596
-c0 9.90039 6.7002 14.1006 16.7998 14.1006h0.200195c10.0996 0 16.7998 -4.2002 16.7998 -14.1006c0 -8.39941 0.900391 -12.1992 -3.7998 -12.2998h-3.40039c-4.5 0 -3.7998 3.2998 -3.7998 10.5c0 4.7002 -2.2998 6.10059 -5.7998 6.10059
-s-5.7998 -1.40039 -5.7998 -6.10059v-36.5996c0 -4.7002 2.2998 -6.10059 5.7998 -6.10059s5.7998 1.40039 5.7998 6.10059c0 8.09961 -1 12.0996 3.7998 12.0996h3.40039zM142.3 168.36c2.5 0 3.7998 -1.30078 3.7998 -3.80078v-2.09961
-c0 -2.5 -1.2998 -3.7998 -3.7998 -3.7998h-21.8994c-2.5 0 -3.80078 1.2998 -3.80078 3.7998v59.0996c0 2.5 1.30078 3.90039 3.7002 3.80078h21.7002c2.5 0 3.7998 -1.30078 3.7998 -3.80078v-2.09961c0 -2.5 -1.2998 -3.7998 -3.7998 -3.7998h-14.4004v-18.2998h11.4004
-c2.5 0 3.7998 -1.30078 3.7998 -3.80078v-2.09961c0 -2.5 -1.2998 -3.7998 -3.7998 -3.7998h-11.4004v-19.2998h14.7002zM100.3 186.86l8.10059 -23.9004c0.799805 -2.59961 -0.400391 -4.40039 -3.2002 -4.40039h-3.2998
-c-0.0996094 -0.00683594 -0.196289 -0.0078125 -0.297852 -0.0078125c-1.95703 0 -3.59473 1.37402 -4.00293 3.20801l-7.39941 23.5h-5.60059v-22.8994c0 -2.5 -1.2998 -3.80078 -3.7998 -3.80078h-3.39941c-2.5 0 -3.80078 1.30078 -3.80078 3.80078v59.0996
-c0 2.5 1.30078 3.7998 3.80078 3.7998h13.3994c10.1006 0 16.7998 -4 16.7998 -14.0996v-11.9004c0 -6.39941 -2.69922 -10.3994 -7.2998 -12.3994zM96.5 200.86v8.69922c0 4.80078 -2.5 6.10059 -6.09961 6.10059h-5.80078v-20.9004h5.80078
-c3.59961 0 6.09961 1.2998 6.09961 6.10059zM176 222l11.2002 -59.2002c0.5 -2.7002 -0.799805 -4.09961 -3.40039 -4.09961h-3.5c-0.12207 -0.0117188 -0.241211 -0.015625 -0.366211 -0.015625c-1.98926 0 -3.61719 1.55566 -3.7334 3.51562l-1.7998 11.2998h-12.2002
-l-1.7998 -11.2998c-0.117188 -1.95996 -1.74121 -3.51855 -3.73047 -3.51855c-0.125 0 -0.248047 0.00683594 -0.370117 0.0185547h-3c-2.5 0 -3.89941 1.39941 -3.39941 4.09961l11 59.2002c0.137695 1.90625 1.72559 3.41504 3.66602 3.41504
-c0.112305 0 0.223633 -0.00488281 0.333984 -0.0146484h6.89941c0.132812 0.0136719 0.264648 0.0166016 0.401367 0.0166016c1.97168 0 3.59766 -1.49805 3.79883 -3.41699zM163.7 182.7h9.39941l-4.69922 29.7002zM253 162.5c0 -2.45996 -1.2998 -3.83984 -3.7998 -3.7998
-h-3.40039c-2.5 0 -3.7998 1.2998 -3.7998 3.7998v53.2002h-7.2998c-2.5 0 -3.7998 1.2998 -3.7998 3.7998v2.09961c0 2.5 1.2998 3.80078 3.7998 3.80078h25.7998c2.5 0 3.7998 -1.30078 3.7998 -3.80078v-2.09961c0 -2.5 -1.2998 -3.7998 -3.7998 -3.7998h-7.5v-53.2002z
-M501 163.3c0.0546875 0.00488281 0.108398 -0.03125 0.164062 -0.03125c1.01562 0 1.84082 -0.824219 1.84082 -1.83984c0 -0.0429688 -0.00195312 -0.0859375 -0.00488281 -0.128906v-0.799805c0.00195312 -0.0332031 0.00488281 -0.0664062 0.00488281 -0.100586
-c0 -0.999023 -0.811523 -1.80957 -1.81055 -1.80957c-0.0654297 0 -0.130859 0.00292969 -0.194336 0.00976562h-22.5c-0.0634766 -0.00683594 -0.126953 -0.0117188 -0.192383 -0.0117188c-0.999023 0 -1.81055 0.811523 -1.81055 1.81055
-c0 0.0341797 0.000976562 0.0683594 0.00292969 0.101562v63c-0.0107422 0.0751953 -0.0166016 0.150391 -0.0166016 0.229492c0 0.893555 0.725586 1.61914 1.61914 1.61914c0.137695 0 0.270508 -0.0166016 0.397461 -0.0488281h22.2002
-c0.0771484 0.0107422 0.155273 0.0175781 0.236328 0.0175781c0.976562 0 1.76953 -0.792969 1.76953 -1.76953c0 -0.0498047 -0.00195312 -0.0996094 -0.00585938 -0.147461v-0.800781c0.00195312 -0.0380859 0.00488281 -0.0742188 0.00488281 -0.113281
-c0 -1.04297 -0.84668 -1.88965 -1.88965 -1.88965c-0.0390625 0 -0.0771484 0.000976562 -0.115234 0.00292969h-19.1006v-25.7998h16.1006c0.0380859 0.00292969 0.0742188 0.00488281 0.113281 0.00488281c1.04297 0 1.88965 -0.84668 1.88965 -1.88965
-c0 -0.0390625 -0.000976562 -0.0771484 -0.00292969 -0.115234v-0.799805c0.00195312 -0.0380859 0.00488281 -0.0751953 0.00488281 -0.113281c0 -1.04297 -0.84668 -1.89062 -1.88965 -1.89062c-0.0390625 0 -0.0771484 0.00195312 -0.115234 0.00390625h-16.1006
-v-26.7002h19.4004zM407.9 226.2c10.0996 0 15.2998 -4.74023 15.2998 -14.1006v-40.0996c0 -9.2998 -5.2002 -14.0996 -15.2998 -14.0996h-0.800781c-10.0996 0 -15.2998 4.7998 -15.2998 14.0996v40.0996c0 9.40039 5.2002 14.1006 15.2998 14.1006h0.800781zM418.1 173.8
-v36.6006c0 7.89941 -3 11.0996 -10.5 11.0996s-10.5 -3.2002 -10.5 -11.0996v-36.6006c0 -8 3 -11.0996 10.5 -11.0996s10.4004 3.09961 10.5 11.0996zM371.6 188.3l10.6006 -27.2998c0.5 -1.2998 -0.100586 -2.2998 -1.5 -2.2998h-1.5
-c-0.0429688 -0.00292969 -0.0839844 -0.00488281 -0.12793 -0.00488281c-0.993164 0 -1.8418 0.625977 -2.17188 1.50488l-10.4004 27.2002h-11.5996v-26.9004c0.00488281 -0.0556641 0.00976562 -0.111328 0.00976562 -0.167969
-c0 -0.960938 -0.780273 -1.74023 -1.74023 -1.74023c-0.0576172 0 -0.114258 0.00292969 -0.169922 0.0078125h-1.2002c-0.0634766 -0.00683594 -0.126953 -0.0117188 -0.192383 -0.0117188c-0.999023 0 -1.81055 0.811523 -1.81055 1.81055
-c0 0.0341797 0.000976562 0.0683594 0.00292969 0.101562v63c-0.00195312 0.0332031 -0.00488281 0.0664062 -0.00488281 0.100586c0 0.999023 0.811523 1.80957 1.81055 1.80957c0.0654297 0 0.130859 -0.00292969 0.194336 -0.00976562h13.7002
-c10.0996 0 15.2998 -4.7002 15.2998 -14.1006v-9.7002c0 -7.19922 -3.09961 -11.6992 -9.2002 -13.2998zM365.2 192.2c7.5 0 10.5 3.16016 10.5 11v6.39941c0 8 -3 11.1006 -10.5 11.1006h-10.2002v-28.5h10.2002zM451.1 225.3c10.1006 0 15.3008 -4.7002 15.3008 -14.0996
-v-10.5c0 -9.2998 -5.2002 -14.1006 -15.3008 -14.1006h-10.5996v-26.0996c0.00585938 -0.0556641 0.00976562 -0.111328 0.00976562 -0.167969c0 -0.960938 -0.779297 -1.74023 -1.74023 -1.74023c-0.0566406 0 -0.113281 0.00292969 -0.169922 0.0078125h-1.19922
-c-0.0644531 -0.00683594 -0.12793 -0.0117188 -0.193359 -0.0117188c-0.999023 0 -1.80957 0.811523 -1.80957 1.81055c0 0.0341797 0.000976562 0.0683594 0.00292969 0.101562v63c-0.0107422 0.0751953 -0.0175781 0.150391 -0.0175781 0.229492
-c0 0.893555 0.726562 1.61914 1.62012 1.61914c0.136719 0 0.270508 -0.0166016 0.397461 -0.0488281h13.6992zM461.3 202.5v7.09961c0 7.90039 -3 11.1006 -10.5 11h-10.2002v-29.1992h10.2002c7.5 0 10.5 3.19922 10.5 11.0996zM259.5 140l7.09961 -0.0996094
-l-5.69922 -4.30078l2.09961 -6.7998l-5.7998 4.10059l-5.7998 -4.10059l2.09961 6.7998l-5.7002 4.30078l7.10059 0.0996094l2.2998 6.7998zM487.1 276.1c122.301 -46.0996 118.401 -132.54 -33.8984 -176.34c13.3994 -49.7002 18.0996 -101.899 0.0996094 -133.8
-c-3.7998 -6.7002 -16.7998 -27.7002 -47.5996 -27.7002c-41.5 0 -110.2 41.6006 -182.101 142c-42.7998 3.5 -72.1992 10.1006 -84.5996 13c-20.5 -82.2998 -6.7998 -125.3 15.5 -137.899c1.2002 -0.700195 38.4004 -27.2002 120.9 52.7998
-c3.39941 -3.5 6.79883 -6.90039 10.1982 -10.2002c-63.0996 -61.2002 -110.199 -71 -138.199 -55.2002c-32.4004 18.2998 -42.8008 72 -22.3008 153.9c-18.8994 5 -121.6 33.2002 -122.1 92.7998c-0.400391 40.9004 49.7998 74.7002 120.3 95
-c-13.3994 49.5996 -18.2002 101.8 -0.0996094 133.8c3.7998 6.74023 16.7998 27.7402 47.5996 27.7402c41.6006 0 110.3 -41.6396 182.2 -142.14c28.7607 -2.29492 57.1504 -6.70801 84.5996 -13c20.5 82 6.90039 125.1 -15.5 137.8
-c-1.2998 0.700195 -38.3994 27.2002 -120.899 -52.7998c-3.40039 3.5 -6.80078 6.89941 -10.2002 10.1992c52.2998 50.9404 103.7 74.6006 138.2 55.2402c33.8994 -19.2002 41.8994 -75.8994 22.2998 -153.899c12.0234 -3.14844 24.0938 -6.9873 35.5996 -11.3008z
-M135.901 411.16c-23.1006 -40.7998 1 -121.562 1.19922 -122.961c27.2979 6.86914 55.7041 11.835 84.4004 14.5996c15.5215 22.6875 32.2832 43.9033 50.7002 64.2002c3.39941 -3.33301 6.7998 -6.74609 10.2002 -10.2393
-c-15.1953 -16.6592 -29.1309 -33.958 -42.2002 -52.3994c17.9678 1.35645 34.9062 2.04102 53.2197 2.04102c13.6523 0 27.2158 -0.383789 40.6797 -1.1416c-64.5 86.6006 -126.5 126.2 -163.3 126.2c-23 0 -32 -15.2002 -34.8994 -20.2998zM440.701 -27.1406
-c3.2998 6 21.5 38.5996 -1.2002 123c-4.09961 -1.10059 -37.0996 -9.90039 -84.4004 -14.6006c-15.4961 -22.7061 -32.2598 -43.9238 -50.6992 -64.2002c-3.40039 3.2998 -6.80078 6.7002 -10.2002 10.2002c15.1943 16.6602 29.1299 33.958 42.2002 52.4004
-c-17.9014 -1.38379 -34.792 -2.08301 -53.0459 -2.08301c-13.7139 0 -27.3359 0.398438 -40.8545 1.18262c64.5996 -86.7998 126.6 -126.2 163.3 -126.2c23.1006 0 32 15.2002 34.9004 20.3008zM449.801 111.459c25.6006 7.2998 85.9004 27.4004 105.7 62.5
-c1.40039 2.5 33.5 50.5 -72.5996 90.4004c-11.1553 4.18555 -22.8525 7.92188 -34.5 11c-3.60059 -12.9004 -7.90039 -26.1006 -12.8008 -39.5c-3.71387 -0.506836 -6.9248 -2.60645 -8.89941 -5.60059l-0.100586 0.100586c-1.94824 1.84863 -4.25 3.31445 -6.7998 4.2998
-c5.7002 15 10.6006 29.7998 14.6006 44.2002c-7.2002 1.69922 -31.8008 7.59961 -72.2002 11.6992c16.7002 -24.5 27.8994 -44.0996 34.2998 -55.5c-4.18457 -1.36719 -7.79199 -3.96777 -10.4004 -7.39941c-13.5996 16.3994 -11 19.8994 -42.5 64.5
-c-16.6885 1.17285 -32.207 1.77344 -49.1914 1.77344c-21.2998 0 -42.3818 -0.9375 -63.208 -2.77344c-16.9004 -25 -28.2998 -45.2002 -34.7998 -56.9004c-4.16797 -1.77637 -7.68652 -4.69238 -10.2002 -8.39941c-1.07422 3.39844 -3.37402 6.23633 -6.40039 8
-c6.10059 11.3994 16.9004 31 32.7998 55.2998c-39.5996 -4.60059 -65 -11.2002 -72 -13c4.30078 -14.1006 9.40039 -28.6006 15.2002 -43.2998c-0.866211 -0.632812 -1.63086 -1.36328 -2.2998 -2.2002c-1.5 1.89941 -4 5.2998 -14.4004 5.2998
-c-4.69922 12.2998 -8.7998 24.5 -12.3994 36.4004c-138.8 -40.3604 -158.4 -121.36 1.5 -164c3.59961 12.8994 7.7998 26 12.7002 39.3994c0.328125 -0.0185547 0.651367 -0.0214844 0.984375 -0.0214844c2.0752 0 4.06641 0.360352 5.91504 1.02148
-c3 -1.2002 5.2002 -1 8.40039 -1c-5.5 -14.5996 -10.2002 -28.8994 -14.1006 -42.8994c23.4512 -5.42578 47.71 -9.39258 72.2002 -11.7002c-16.2998 23.8994 -27.5 43.3994 -33.7998 54.5996c8.7002 0 10.7002 1.60059 12.5996 3.2002
-c0.950195 -0.574219 1.95996 -1.08008 3 -1.5c15.3008 -26.7002 28.9004 -46.5996 36.8008 -57.7998c16.6875 -1.17285 32.2051 -1.77344 49.1895 -1.77344c21.2998 0 42.3838 0.9375 63.21 2.77344c16.5 24.2998 27.7002 44 33.9004 55.2002
-c7.2998 0 9.7998 3 10.8994 4.19922c1.82324 -1.3252 3.84766 -2.41113 6 -3.19922c-15 -28 -28.6992 -48.9004 -32.1992 -54.2002c24.4219 2.70312 48.6768 7.11816 72 13c-4.10059 13.7998 -9 27.8994 -14.7002 42.2002c2.00391 0.898438 3.81934 2.11523 5.39941 3.59961
-l0.100586 0.0996094c2.2666 -3.44043 6.1543 -5.7002 10.5781 -5.7002c0.0410156 0 0.0810547 0 0.12207 0.000976562c4.69922 -12.3008 8.7998 -24.5 12.3994 -36.4004zM335.401 225.459c0.0664062 0.00683594 0.132812 0.00878906 0.201172 0.00878906
-c1.07422 0 1.95117 -0.84668 1.99805 -1.90918v-51.5c0 -9.5 -5 -14.0996 -15.0996 -14.0996h-0.400391c-10.0996 0 -15.0996 4.5 -15.0996 14.0996v51.5c-0.00195312 0.0341797 -0.00488281 0.0664062 -0.00488281 0.100586c0 0.999023 0.811523 1.81055 1.81055 1.81055
-c0.0654297 0 0.130859 -0.00390625 0.194336 -0.0107422h1.2002c0.0742188 0.00976562 0.148438 0.0166016 0.224609 0.0166016c0.932617 0 1.69043 -0.756836 1.69043 -1.68945c0 -0.0771484 -0.00488281 -0.15332 -0.015625 -0.227539v-49.7998
-c0 -8 2.60059 -11.0996 10.1006 -11.0996s10.0996 3.2002 10.0996 11.0996v49.7998c-0.00488281 0.0566406 -0.00976562 0.111328 -0.00976562 0.168945c0 0.959961 0.779297 1.73926 1.74023 1.73926c0.0576172 0 0.114258 -0.00195312 0.169922 -0.0078125h1.2002z
-M321.701 139.999l7.09961 -0.0996094l-5.7002 -4.30078l2.10059 -6.7998l-5.7998 4.10059l-5.80078 -4.10059l2.10059 6.7998l-5.7002 4.30078l7.09961 0.0996094l2.30078 6.7998zM290.601 132.599l7.10059 -0.0996094l-5.7002 -4.2998l2.09961 -6.7998l-5.7998 4.09961
-l-5.7998 -4.09961l2.09961 6.7998l-5.69922 4.2998l7.09961 0.0996094l2.2998 6.80078zM295.701 163.399c0.0615234 0.00585938 0.12207 -0.0292969 0.185547 -0.0292969c1.00977 0 1.83008 -0.819336 1.83008 -1.83008
-c0 -0.0810547 -0.00585938 -0.162109 -0.015625 -0.241211v-0.799805c0.00390625 -0.0488281 0.0078125 -0.0966797 0.0078125 -0.145508c0 -0.977539 -0.792969 -1.77051 -1.77051 -1.77051c-0.0800781 0 -0.160156 0.00585938 -0.237305 0.015625h-22.5
-c-0.0644531 -0.00683594 -0.126953 -0.0117188 -0.193359 -0.0117188c-0.999023 0 -1.80957 0.811523 -1.80957 1.81055c0 0.0341797 0.000976562 0.0683594 0.00292969 0.101562v63c-0.00195312 0.0332031 -0.00488281 0.0664062 -0.00488281 0.100586
-c0 0.999023 0.811523 1.80957 1.80957 1.80957c0.0664062 0 0.130859 -0.00292969 0.195312 -0.00976562h22.2002c0.0771484 0.00976562 0.155273 0.0175781 0.235352 0.0175781c0.977539 0 1.77051 -0.793945 1.77051 -1.77051
-c0 -0.0498047 -0.00195312 -0.0986328 -0.00585938 -0.147461v-0.799805c0.00195312 -0.0380859 0.00488281 -0.0751953 0.00488281 -0.113281c0 -1.04395 -0.847656 -1.89062 -1.89062 -1.89062c-0.0380859 0 -0.0761719 0.000976562 -0.114258 0.00390625h-19.1006
-v-25.7998h16.1006c0.0380859 0.00195312 0.0742188 0.00488281 0.113281 0.00488281c1.04297 0 1.88965 -0.847656 1.88965 -1.89062c0 -0.0380859 -0.000976562 -0.0761719 -0.00292969 -0.114258v-0.800781
-c0.00195312 -0.0380859 0.00488281 -0.0742188 0.00488281 -0.113281c0 -1.04297 -0.847656 -1.88965 -1.89062 -1.88965c-0.0380859 0 -0.0761719 0.000976562 -0.114258 0.00292969h-16.1006v-26.6992h19.4004zM288.301 262.799l2.2998 -6.7998l7.10059 -0.0996094
-l-5.7002 -4.30078l2.09961 -6.7998l-5.7998 4.10059l-5.7998 -4.10059l2.09961 6.7998l-5.69922 4.30078l7.09961 0.0996094z" />
-    <glyph glyph-name="artstation" unicode="&#xf77a;" horiz-adv-x="512" 
-d="M2 70.5996h315.1l59.2002 -102.6h-285.399c-0.00488281 0 0.0205078 -0.0498047 0.015625 -0.0498047c-20.0742 0 -37.4736 11.5439 -45.916 28.3496zM501.8 98c19 -29.4004 -0.0996094 -55.9004 -2 -59.0996l-40.7002 -70.5l-257.3 447.6h88.4004
-c0.00390625 0 -0.0234375 0.0527344 -0.0195312 0.0527344c19.6797 0 36.79 -11.0879 45.4189 -27.3525zM275 143.5h-231l115.5 200z" />
-    <glyph glyph-name="atlassian" unicode="&#xf77b;" horiz-adv-x="512" 
-d="M152.2 211.6c66.2998 -70.7998 89.0996 -189.3 51.2002 -267.1c-2.40039 -5.2002 -7.60059 -8.5 -13.4004 -8.40039h-175c-11 0 -18.4004 11.7002 -13.4004 21.7002l125.801 251c5.09961 10.5 17.0996 11 24.7998 2.7998zM244.4 439.9
-c6.7998 10.8994 20.2998 10.6992 25.5996 0.0996094c5.90039 -11.7002 240.4 -482.3 240.4 -482.3c5 -9.90039 -2.2002 -21.7002 -13.4004 -21.7002h-174.2c-5.7002 0 -10.8994 3.2998 -13.3994 8.40039c-73.5 146.899 -187.301 302.1 -65 495.5z" />
-    <glyph glyph-name="canadian-maple-leaf" unicode="&#xf785;" horiz-adv-x="512" 
-d="M383.8 96.2998c-5 -5 -10 -7.5 -5 -22.5s10 -35.0996 10 -35.0996s-95.2002 20.0996 -105.2 22.5996c-8.89941 0.900391 -18.3994 -2.39941 -18.3994 -12.5c0 -10.0996 5.7998 -112.8 5.7998 -112.8h-30s5.7998 102.8 5.7998 112.8s-9.59961 13.4004 -18.2998 12.5
-c-10.0996 -2.5 -105.3 -22.5996 -105.3 -22.5996s5 20.0996 10.0996 35.0996c4.90039 15 0 17.5 -5.09961 22.5c-2.60059 2.5 -105.2 92.4004 -105.2 92.4004l17.5 7.59961c10 4.90039 7.40039 11.4004 5 17.4004c-2.5 7.59961 -20.0996 67.2998 -20.0996 67.2998
-s47.5996 -10 57.6992 -12.5c7.5 -2.40039 10 2.5 12.5 7.5s15 32.2998 15 32.2998s52.6006 -59.7998 55.1006 -62.2998c10.0996 -7.5 20.0996 0 17.5996 10c0 10 -27.5996 129.6 -27.5996 129.6s30.0996 -17.3994 40.0996 -22.3994c7.60059 -5 12.6006 -5 17.6006 5
-c5 7.5 42.5 79.7998 42.5 79.7998s37.5996 -72.2998 42.6992 -79.7998c5 -10 10.1006 -10 17.6006 -5c10 5 40.0996 22.3994 40.0996 22.3994s-27.5996 -119.6 -27.5996 -129.6c-2.5 -10 7.59961 -17.5 17.5996 -10c2.5 2.40039 55.1006 62.2998 55.1006 62.2998
-s12.5 -27.3994 15 -32.3994s5 -9.90039 12.5 -7.5c10 2.5 57.6992 12.5 57.6992 12.5s-17.6992 -59.7002 -20.0996 -67.3008c-2.40039 -5.89941 -5 -12.5 5 -17.3994l17.5 -7.5s-102.7 -89.9004 -105.2 -92.4004z" />
-    <glyph glyph-name="centos" unicode="&#xf789;" 
-d="M289.6 350.5l31.6006 -31.7002l-76.2998 -76.5v108.2h44.6992zM127.2 318.8l31.5996 31.7002h44.7002v-108.2zM168.7 360.4l55.5 55.5996l55.5 -55.5996h-44.7002v-127.9l-10.7998 -10.7998l-10.7998 10.7998v127.9h-44.7002zM194.9 192.3l-10.8008 -10.7998h-128.6
-v-44.7998l-55.5 55.5996l55.5 55.6006v-44.8008h128.6zM274.2 213l76.2998 76.5l31.5996 -31.7002v-44.7998h-107.899zM447.5 192.3l-55.5 -55.5996v44.7998h-127.7l-10.7998 10.7998l10.7998 10.7998h127.7v44.8008zM65.4004 271.8v78.7002h79.3994l-31.5996 -31.7002
-l90.2998 -90.5v-15.2998h-15.2998l-90.2998 90.5zM382.1 350.5v-78.7002l-31.5996 31.7002l-90.2998 -90.5h-15.2998v15.2998l90.2998 90.5l-31.6006 31.7002h78.5zM203.5 34.0996v-0.0996094h-44.7002l-31.5996 31.7002l76.2998 76.5v-108.101zM65.4004 213v44.7998
-l32.5 31.7002l76.2998 -76.5h-108.8zM382.1 112.8v-78.7002h-78.5l31.6006 31.7002l-90.2998 90.5v15.2998h15.2998l90.2998 -90.5zM382.1 171.6v-44.7998l-31.5996 -31.7002l-76.2998 76.5h107.899zM321.2 65.7998l-31.6006 -31.5996h-44.6992v108.1zM97.9004 95.0996
-l-32.5 31.7002v44.7998h108.8zM279.7 24.2002l-55.5 -55.6006l-55.5 55.6006h44.7002v127.899l10.7998 10.8008l10.7998 -10.8008v-127.899h44.7002zM113.2 65.7998l31.5996 -31.7002h-79.3994v78.7002l32.5 -31.7002l90.2998 90.5h15.2998v-15.2998z" />
-    <glyph glyph-name="confluence" unicode="&#xf78d;" horiz-adv-x="512" 
-d="M2.2998 35.7998c42.2998 66.9004 125.2 233.2 373.101 112.601c39.6992 -19.1006 83.6992 -39.9004 105.899 -50.3008c8 -3.69922 11.7002 -13.1992 8.10059 -21.2998l-50.4004 -114.1c-0.0996094 -0.100586 -0.0996094 -0.299805 -0.200195 -0.400391
-c-3.89941 -8.09961 -13.5996 -11.5996 -21.7002 -7.7002c-200.399 95.2002 -213.8 111.5 -280.899 -0.699219c0 0 -0.100586 -0.100586 -0.100586 -0.200195c-4.69922 -7.7002 -14.6992 -10 -22.3994 -5.2998l-105.9 65.1992c-7.59961 4.7002 -10 14.6006 -5.5 22.2002z
-M509.7 347.9c-42.6006 -67.5 -125.4 -232.9 -373.4 -112.9c-39.7002 19.2002 -83.7998 40 -106 50.4004c-8 3.69922 -11.7002 13.1992 -8.09961 21.2998l50.5 114.1c0.0996094 0.100586 0.0996094 0.299805 0.200195 0.400391
-c3.89941 8.09961 13.5996 11.5996 21.6992 7.7002c199.5 -94.7002 213.301 -111.7 280.601 0.899414c0.200195 0.400391 0.399414 0.700195 0.599609 1c5 7.5 15.1006 9.40039 22.6006 4.40039l105.8 -65.1006c7.59961 -4.69922 10 -14.5996 5.5 -22.1992z" />
-    <glyph glyph-name="dhl" unicode="&#xf790;" horiz-adv-x="640" 
-d="M238 146.8l22.2998 30.2002h58.7002l-22.2998 -30.2002h-58.7002zM0 165.1h86.5l-4.7002 -6.39941h-81.7998v6.39941zM172.9 177h68.1992c-5.69922 -7.7998 -24.0996 -30.2998 -57.1992 -30.2998h-100.101l41.1006 55.7998h51c5.59961 0 5.59961 -2.2002 2.7998 -5.90039
-c-2.7998 -3.69922 -7.60059 -10.2998 -10.4004 -14.0996c-1.39941 -1.90039 -4.09961 -5.5 4.60059 -5.5zM490.4 183.9h-62.2002l39.2998 53.3994h62.2002zM95.2998 177l-4.7002 -6.40039h-90.5996v6.40039h95.2998zM206.3 203.6
-c2.7998 3.7002 2.90039 5.90039 -2.7002 5.90039h-111.399l20.3994 27.7998h117.9c29.9004 0 37.5996 -23.5996 29.2002 -35c-6.2002 -8.39941 -13.5 -18.3994 -13.5 -18.3994h-45.6006c-8.69922 0 -6 3.5 -4.59961 5.5c2.7998 3.7998 7.5 10.3994 10.2998 14.1992zM0 146.8
-v6.40039h77.7998l-4.7002 -6.40039h-73.0996zM323 146.8c0 0 22.2002 30.2002 22.2998 30.2002h58.7002l-22.2998 -30.2002h-58.7002zM545 146.7l4.7002 6.39941h90.2998v-6.39941h-95zM567.3 177h72.7002v-6.40039h-77.4004zM553.8 158.7l4.7002 6.39941h81.5v-6.39941
-h-86.2002zM389.6 237.3h58.7002l-39.2998 -53.3994h-143.6l39.2998 53.3994h58.7002l-22.5 -30.5996h26.1992zM423.1 177h133.4l-22.2998 -30.2998h-94.2998c-24.1006 0 -30.6006 11.5996 -23.2002 21.5996c2.09961 2.7998 6.39941 8.7002 6.39941 8.7002z" />
-    <glyph glyph-name="diaspora" unicode="&#xf791;" horiz-adv-x="512" 
-d="M251.64 93.4502c-1.39941 0 -88 -119.9 -88.6992 -119.9c-0.700195 0 -86.6006 60.4502 -86.9404 61.2002s86.5996 125.7 86.5996 127.4c0 2.19922 -129.6 44 -137.6 47.0996c-1.2998 0.5 31.4004 101.8 31.7002 102.1c0.599609 0.700195 144.399 -47 145.5 -47
-c0.399414 0 0.899414 0.600586 1 1.30078c0.399414 2 1 148.6 1.7002 149.6c0.799805 1.2002 104.5 0.700195 105.1 0.299805c1.5 -1 3.5 -156.1 6.09961 -156.1c1.40039 0 138.7 47 139.301 46.2998c0.799805 -0.900391 31.8994 -102.2 31.5 -102.6
-c-0.900391 -0.900391 -140.2 -47.1006 -140.601 -48.8008c-0.299805 -1.39941 82.7998 -122.1 82.5 -122.899s-85.5 -63.5 -86.2998 -63.5c-1 0.200195 -89 125.5 -90.9004 125.5h0.0400391z" />
-    <glyph glyph-name="fedex" unicode="&#xf797;" horiz-adv-x="640" 
-d="M586 163.5l54 -60.5h-64.4004l-22.2998 25l-22.0996 -25h-212.2v11.9004h-0.5c-7.90039 -11.7002 -20.7998 -18.6006 -34.9004 -18.6006c-32.6992 0 -56.3994 26.4004 -60.0996 56.9004h-85.5c0 -23.5 31.0996 -35.5 45.7998 -14.6006h42
-c-27.5996 -67.6992 -130.2 -49.3994 -130.2 23.7002c0 6.40039 0.800781 12.5 2.30078 18.2002h-48.9004v-77.5h-49v184.4h109v-41.1006h-60v-26.2002h54.7998v-24.1992c24.5 43.5996 103.9 45.3994 121.9 -14c7.5 25.5 28.8994 44.8994 57.2998 44.8994
-c13.9004 0 25.7998 -3.7998 35.4004 -14.7998h0.5v75.5h151.199v-48.0996h-56.0996v-16h118.7l22.5 -24.8008l21.7002 24.8008h62.3994zM139.3 180.1h46.5c-4.7998 25.6006 -40.3994 26.3008 -46.5 0zM292.7 131.2c34.5 0 32.5996 62.7998 0 62.7998
-c-34 0 -34.6006 -62.7998 0 -62.7998zM460.5 112.1v29.6006h-56.0996v44.7002h56.0996v28.0996h-55.5v33.9004h56.0996v30.1992h-95v-166.5h94.4004zM414.6 151.9h56.1006v-45.6006l50.7002 57l-50.7002 57v-44h-56.1006v-24.3994zM553.2 141.6l26.2998 -29.5h40.5
-l-46 51.4004l45.4004 51h-38.5l-25.6006 -29.2998l-26.5996 29.2998h-39.7002l45.5996 -51.2002l-45.5996 -51.2002h38.0996z" />
-    <glyph glyph-name="fedora" unicode="&#xf798;" 
-d="M225 416c123.7 -0.299805 223.7 -100.9 223.4 -224.6c-0.300781 -123.7 -100.9 -223.7 -224.601 -223.4l-170.2 0.400391c-29.582 0 -53.6006 24.0117 -53.6006 53.5938c0 0.102539 0 0.204102 0.000976562 0.305664l0.400391 170.3
-c0.399414 123.7 100.899 223.7 224.6 223.4zM394.8 258.8c-0.0947266 7.71387 -1.06445 15.1934 -2.7998 22.4004l-55.2002 56.0996v-1.59961c0 -5.10059 -1.5 -9.60059 -3.7998 -14.2998zM331 353.7c1.94141 -2.71777 3.39453 -5.85449 4.2002 -9.2002l54.2998 -54.5996
-c-9.56543 28.6953 -30.9629 51.8848 -58.5 63.7998zM118.1 200.8c-5.54395 -0.450195 -11.0029 -1.44336 -16.1992 -2.89941l8.5 -8.5c2.04004 4.16895 4.62598 7.98535 7.69922 11.3994zM97 196.6c-4.72363 -1.31543 -9.36719 -3.08691 -13.7002 -5.19922l27 -27.2002
-c-1.51855 3.87012 -2.37598 8.09961 -2.39941 12.5l0.899414 8zM78.7998 189.2c-3.89551 -2.1748 -7.62207 -4.57227 -11.2002 -7.2002l35.3008 -35.9004c4.36133 2.17188 9.16016 3.79395 14.0996 4.7002zM63.5996 179.4
-c-3.7207 -2.78223 -7.0625 -5.89355 -10.0996 -9.40039l34.9004 -34.5996c3.2168 3.18945 6.69531 6.00781 10.5 8.5zM50.2998 167.1c-2.89941 -3.2998 -5.7998 -6.69922 -8.59961 -10.5l35.7998 -35.8994c2.11035 4.12598 4.6875 7.93262 7.7002 11.3994zM39.2998 152.8
-c-2.49414 -3.82227 -4.73926 -7.83984 -6.7002 -12l39.5 -39.7998c0.374023 5.3252 1.63574 10.4883 3.60059 15.2002zM30.5 136.5c-1.7998 -4.90039 -3.2998 -9.59961 -4.7002 -14.5l52.7002 -53.5c-3.96484 7.90234 -6.36621 16.8438 -6.7002 26.2002zM22.5996 93.5
-c0.046875 -7.56934 1.05859 -14.8945 2.90039 -21.9004l55.4004 -55.6992v1.09961c0.0429688 5.14551 1.35156 10.0322 3.59961 14.2998zM27.9004 62.7998c9.59375 -28.6787 30.9805 -51.8564 58.5 -63.7998c-1.90527 2.74219 -3.35254 5.87402 -4.2002 9.2002z
-M22.5996 99.7998l64.4004 -64.2002c2.76953 3.4707 6.08594 6.38965 9.90039 8.7002l-72.2002 72.5c-1.2793 -5.48047 -2.00293 -11.1543 -2.10059 -17zM275.9 151.6c32.5996 -0.0996094 32.6992 49.2002 0.199219 49.4004l-33.5996 0.0996094
-c-4.91504 0.0224609 -8.90039 4.01855 -8.90039 8.93945v0.0605469l0.100586 47c0.0996094 40.5 38.5996 60.8008 66 54.9004c15.3994 -3.90039 30.2998 8.40039 30.2998 23.9004c0 12.0996 -8.7002 22.1992 -19.9004 24c-6.37305 1.50098 -12.9639 2.30078 -19.793 2.30078
-c-0.135742 0 -0.271484 -0.000976562 -0.40625 -0.000976562c-0.143555 0 -0.277344 -0.00292969 -0.420898 -0.00292969c-57.9893 0 -105.081 -47.0303 -105.18 -104.997l-0.0996094 -56l-42.6006 0.0996094c-32.5996 0.100586 -32.6992 -49.2002 -0.0996094 -49.2998
-l33.5996 -0.0996094c4.40039 0 8.90039 -4.5 8.90039 -9l-0.0996094 -47c-0.00585938 -30.8535 -25.0527 -55.9004 -55.9062 -55.9004h-0.194336c-9.39941 0 -9.39941 1.59961 -15.7002 1.59961c-13.458 -0.209961 -24.3447 -11.1289 -24.5 -24.5996
-c0 -15.5 14.2002 -24.2002 19.9004 -24.2002c61.2998 -12.8994 125.5 33.6006 125.7 102.9l0.0996094 56zM299.4 151.9c5.48145 0.538086 10.9062 1.52637 16.0996 2.89941l-8.5 8.5c-1.78711 -4.29492 -4.37207 -8.14844 -7.59961 -11.3994zM320.4 156.1
-c4.74121 1.31738 9.38574 3.12305 13.6992 5.30078l-27 27.1992c1.51855 -3.86914 2.37598 -8.09961 2.40039 -12.5l-0.900391 -8.09961zM338.4 163.5c4 2.2002 8.09961 4.7002 11.8994 7.2002l-36.2002 35.8994c-4.09961 -2.2998 -8.7998 -3.59961 -13.6992 -4.69922z
-M353.9 173.3c3.55273 2.83594 6.87891 5.7998 10.0996 9l-34.9004 35c-3.18457 -3.22266 -6.66797 -6.04492 -10.5 -8.5zM367.1 185.6c3.0625 3.36523 5.89941 6.82812 8.60059 10.5l-35.7998 35.9004c-2.1582 -4.0957 -4.73145 -7.89746 -7.7002 -11.4004zM378.1 199.9
-c2.53027 3.79688 4.77832 7.81738 6.7002 12l-39.5 39.7998c-0.374023 -5.3252 -1.63574 -10.4893 -3.59961 -15.2002zM391.6 230.8l-53.0996 53.4004c4.25977 -7.79688 6.82422 -16.7627 7.09961 -26.2002l41.3008 -41.5c1.7959 4.61523 3.39258 9.46387 4.69922 14.2998z
-M392.6 236.4c1.25586 5.3623 2.04199 10.9189 2.30078 16.5996l-64.3008 64.7002c-2.61426 -3.74805 -5.95898 -6.85938 -9.89941 -9.2002z" />
-    <glyph glyph-name="figma" unicode="&#xf799;" horiz-adv-x="384" 
-d="M277 277.3h-85.4004v-256c-0.0273438 -47.082 -38.2617 -85.2998 -85.3506 -85.2998c-47.1055 0 -85.3496 38.2441 -85.3496 85.3496c0 47.1064 38.2441 85.3506 85.3496 85.3506h0.0507812c-47.1055 0 -85.3496 38.2441 -85.3496 85.3496
-c0 47.1064 38.2441 85.3506 85.3496 85.3506c-47.0781 0 -85.2998 38.2217 -85.2998 85.2998s38.2217 85.2998 85.2998 85.2998h170.7c47.1055 0 85.3496 -38.2441 85.3496 -85.3496c0 -47.1064 -38.2441 -85.3506 -85.3496 -85.3506zM277 277.3
-c47.0762 -0.00488281 85.2949 -38.2236 85.2998 -85.2998c0 -47.0781 -38.2217 -85.2998 -85.2998 -85.2998s-85.2998 38.2217 -85.2998 85.2998s38.2217 85.2998 85.2998 85.2998z" />
-    <glyph glyph-name="intercom" unicode="&#xf7af;" 
-d="M392 416c30.9004 0 56 -25.0996 56 -56v-336c0 -30.9004 -25.0996 -56 -56 -56h-336c-30.9004 0 -56 25.0996 -56 56v336c0 30.9004 25.0996 56 56 56h336zM283.7 333.9v-199.5c0 -19.8008 29.8994 -19.8008 29.8994 0v199.5c0 19.7998 -29.8994 19.7998 -29.8994 0z
-M209.1 341.4v-216.5c0 -19.8008 29.9004 -19.8008 29.9004 0v216.5c0 19.7998 -29.9004 19.7998 -29.9004 0zM134.4 333.9v-199.5c0 -19.8008 29.8994 -19.8008 29.8994 0v199.5c0 19.7998 -29.8994 19.7998 -29.8994 0zM59.7002 304v-134.3
-c0 -19.7998 29.8994 -19.7998 29.8994 0v134.3c0 19.7998 -29.8994 19.7998 -29.8994 0zM383.1 76.2002c14.9004 12.8994 -4.5 35.5996 -19.3994 22.7002c-63.2002 -53.9004 -213.4 -55.3008 -279.3 0c-15 12.7998 -34.4004 -9.90039 -19.4004 -22.7002
-c76.4004 -65.4004 245.3 -63 318.1 0zM388.3 169.7v134.3c0 19.7998 -29.8994 19.7998 -29.8994 0v-134.3c0 -19.7998 29.8994 -19.7998 29.8994 0z" />
-    <glyph glyph-name="invision" unicode="&#xf7b0;" 
-d="M407.4 416c22.3994 0 40.5996 -18.2002 40.5996 -40.5996v-366.801c0 -22.3994 -18.2002 -40.5996 -40.5996 -40.5996h-366.801c-22.3994 0 -40.5996 18.2002 -40.5996 40.5996v366.801c0 22.3994 18.2002 40.5996 40.5996 40.5996h366.801zM176.1 302.4
-c-0.599609 35.0996 -53.5996 34.7998 -53.6992 -0.400391c0 -15 12.1992 -27 27.0996 -27c4.2002 0.0996094 27 4 26.5996 27.4004zM332.8 71c23.7998 0 42.7002 15.2998 53.2002 52l-17.9004 6.7002c-14.2998 -39.5 -31.7998 -32.4004 -31.7998 -16.9004
-c0.299805 8.10059 0.700195 7.7002 14.9004 58.7998c26.0996 85.8008 -61.2998 113.5 -101.8 38l8.89941 40.5h-68.7998l-9.7002 -35.5996h32.2998l-19.7998 -79.4004c-16.5 -36.6992 -57.3994 -44.0996 -57.3994 -23.1992c0.299805 11.2998 -0.700195 4.5 32.8994 138.199
-h-76.3994l-9.7002 -35.5996h31.7998c-22.0996 -90.0996 -22.9004 -89.7998 -23 -104.1c0 -48.7002 63.0996 -56.1006 94.5996 -4.30078l-8.09961 -32.5h45.0996l25.8008 103.301c14.6992 59.6992 74 47.0996 59.8994 0.699219c-9.09961 -32.5996 -40.5996 -106.6 25 -106.6z
-" />
-    <glyph glyph-name="jira" unicode="&#xf7b1;" horiz-adv-x="496" 
-d="M490 206.3c8 -7.89941 8 -20.7002 0 -28.5996c-225.8 -225 137.9 136.3 -241.5 -241.7c-180.7 180.1 -109.7 109.3 -242.5 241.6c-7.90039 8 -7.90039 20.8008 0 28.7002c0 0 77 76.7998 242.5 241.7c72.0996 -71.7998 168.6 -169 241.5 -241.7zM248.5 116.3l76 75.7002
-l-76 75.7002l-76 -75.7002z" />
-    <glyph glyph-name="mendeley" unicode="&#xf7b3;" horiz-adv-x="640" 
-d="M624.6 122.8c23.1006 -22.7002 17.8008 -73.5 0 -88.2998c-36.1992 -38.9004 -100 -18.2002 -104.899 35.2002c-1 11.7002 1.09961 23 5.7002 33c47.2998 103.7 -185.9 106.1 -146.5 8.2002c0.0996094 -0.100586 0.199219 -0.200195 0.299805 -0.400391
-c26.5996 -42.5996 -6.7002 -97.2998 -58.7998 -95.2002c-52 -2.2002 -85.6006 52.4004 -58.8008 95.2002c0.100586 0.200195 0.200195 0.299805 0.300781 0.400391c39.3994 97.8994 -193.801 95.5 -146.5 -8.2002c20.3994 -44.9004 -14.1006 -93.7002 -61.2002 -87.7998
-c-61.9004 7.7998 -62.5 82.8994 -42.6006 102.6c16 16 31.8008 24.7998 53 22.5c43.3008 1 49.7002 34.9004 37.5 98.7998c-22.6992 57.5 14.5 131.601 87.4004 130.8c76.9004 -0.699219 82.7998 -82 130.9 -82c49.1992 0 53.5 81.3008 130.899 82
-c72.5 0.700195 110.2 -73.2998 87.4004 -130.8c-12.2002 -63.8994 -5.7998 -97.7998 37.5 -98.7998c18.7002 2 36.0996 -4.7998 48.3994 -17.2002zM320.7 141.9c43.5996 0 62.7998 37.7998 62.7998 62.7998c0 34.7002 -28.0996 62.7998 -62.7998 62.7998h-0.600586
-c-34.5996 0 -62.7998 -28.0996 -62.7998 -62.7998c0 -25.2998 19.4004 -62.7998 62.7998 -62.7998h0.600586z" />
-    <glyph glyph-name="raspberry-pi" unicode="&#xf7bb;" horiz-adv-x="407" 
-d="M372 215.5c28.7002 -17.2002 54.5996 -72.5996 14 -117.7c-2.59961 -14.0996 -7.09961 -24.2002 -11 -35.3994c-5.90039 -45.2002 -44.4004 -66.3008 -54.5996 -68.8008c-14.9004 -11.1992 -30.7002 -21.7998 -52.2002 -29.1992
-c-20.2002 -20.6006 -42.1006 -28.4004 -64.2002 -28.4004h-1c-22 0 -44 7.7998 -64.2998 28.4004c-21.4004 7.39941 -37.2998 18 -52.2002 29.1992c-10.0996 2.5 -48.7002 23.6006 -54.5996 68.8008c-3.90039 11.1992 -8.40039 21.2998 -11 35.3994
-c-40.5 45 -14.6006 100.5 14.1992 117.7l3.7002 6.5c-0.0996094 46.4004 21.4004 65.2998 46.5 79.7002c-7.59961 2 -15.3994 3.7002 -17.5996 13.2002c-13.1006 3.39941 -15.7998 9.39941 -17.1006 15.7998c-3.39941 2.2998 -14.7998 8.7002 -13.5996 19.7002
-c-6.2998 4.39941 -9.90039 10.0996 -8.09961 18.0996c-6.90039 7.5 -8.7002 13.7002 -5.80078 19.4004c-8.2998 10.1992 -4.59961 15.5 -1.09961 20.8994c-6.2002 11.2002 -0.799805 23.2002 16.5 21.2002c6.90039 10.0996 21.9004 7.7998 24.2002 7.7998
-c2.5 3.2998 6 6 16.5 4.7002c6.7998 6.09961 14.3994 5.09961 22.2998 2.09961c3.2002 2.5 6.09961 3.40039 8.7002 3.5c5 0.100586 9.2998 -2.89941 13.8994 -4.2998c11.3008 3.60059 13.8008 -1.39941 19.4004 -3.39941c12.2998 2.59961 16.0996 -3 22 -8.90039
-l6.90039 0.0996094c18.5996 -10.7998 27.7998 -32.7998 31.0996 -44.0996c3.2998 11.2998 12.5 33.2998 31.0996 44.0996l6.90039 -0.0996094c5.90039 5.90039 9.7002 11.5 22 8.90039c5.5 2.09961 8.09961 7 19.4004 3.39941
-c7.09961 2.2002 13.2998 8.10059 22.5996 0.799805c7.90039 2.90039 15.5 4 22.2998 -2.09961c10.5 1.2998 13.9004 -1.5 16.5 -4.7002c2.2998 0 17.2998 2.2998 24.2002 -7.7998c17.2998 2 22.7998 -10 16.5996 -21.2002c3.5 -5.2998 7.2002 -10.5996 -1.09961 -20.8994
-c2.90039 -5.7002 1.09961 -11.9004 -5.7998 -19.4004c1.89941 -8 -1.7002 -13.7002 -8.10059 -18.0996c1.2002 -11 -10.1992 -17.4004 -13.5996 -19.7002c-1.2998 -6.40039 -4 -12.5 -17.0996 -15.7998c-2.2002 -9.60059 -10 -11.2002 -17.6006 -13.2002
-c25.1006 -14.4004 46.6006 -33.2998 46.5 -79.7002zM349.8 223.5c1.5 48.7002 -36.3994 75.4004 -82.0996 67.9004c-16.7998 -2.80078 80.5996 -86.6006 82.0996 -67.9004zM306.8 130.4c24.5 15.7998 28.9004 51.5996 9.90039 80
-c-19 28.3994 -54.2998 38.5996 -78.7998 22.7998s-28.9004 -51.6006 -9.90039 -80c19 -28.4004 54.2998 -38.6006 78.7998 -22.7998zM238.9 418.7c-16.6006 -15.9004 -40.1006 -55.9004 -5.80078 -71.7998c29 23.5 63.6006 40.6992 102 53.5
-c-49.2998 -25.1006 -78 -45.3008 -93.6992 -62.6006c8.09961 -31.7002 50 -33.2002 65.3994 -32.2998c-3.09961 1.40039 -5.7998 3.09961 -6.7002 5.7998c3.80078 2.7002 17.5 0.299805 27 5.60059c-3.69922 0.699219 -5.39941 1.39941 -7.09961 4.09961
-c9 2.90039 18.7002 5.2998 24.4004 10c-3.10059 0 -6 -0.599609 -10 2.09961c8.09961 4.30078 16.6992 7.7002 23.3994 14.2002c-4.2002 0.100586 -8.7002 0.100586 -10 1.60059c7.40039 4.5 13.6006 9.5 18.7998 15c-5.7998 -0.700195 -8.2998 -0.100586 -9.69922 0.899414
-c5.59961 5.60059 12.5996 10.4004 16 17.2998c-4.40039 -1.5 -8.30078 -2.09961 -11.2002 0.100586c1.89941 4.2998 10 6.7002 14.7002 16.5996c-4.60059 -0.399414 -9.40039 -1 -10.4004 0c2.09961 8.5 5.7002 13.2002 9.2998 18.2002
-c-9.7998 0.200195 -24.5996 0 -23.8994 0.799805l6 6.10059c-9.5 2.5 -19.3008 -0.400391 -26.4004 -2.60059c-3.2002 2.5 0 5.60059 3.90039 8.7998c-8.10059 -1 -15.5 -2.89941 -22.1006 -5.39941c-3.59961 3.09961 2.2998 6.2998 5.10059 9.39941
-c-12.5 -2.2998 -17.8008 -5.59961 -23.1006 -8.89941c-3.7998 3.59961 -0.200195 6.7002 2.40039 9.7998c-9.40039 -3.5 -14.2998 -7.90039 -19.4004 -12.2998c-1.7998 2.2998 -4.39941 4 -1.2002 9.59961c-6.69922 -3.7998 -11.7998 -8.2998 -15.5 -13.2998
-c-4.19922 2.59961 -2.5 6.09961 -2.5 9.40039c-7 -5.60059 -11.3994 -11.5 -16.7998 -17.3008c-1.09961 0.800781 -2.09961 3.40039 -2.89941 7.60059zM204.5 304.1c-27.2002 0.700195 -53.4004 -19.8994 -53.4004 -31.7998
-c-0.0996094 -14.5996 21.5 -29.3994 53.6006 -29.7998c32.7998 -0.200195 53.7002 11.9004 53.7998 26.9004c0.0996094 16.8994 -29.7998 35 -54 34.6992zM81.5 316.9c9.59961 -5.2002 23.2002 -2.80078 27.2002 -5.60059
-c-0.900391 -2.59961 -3.60059 -4.39941 -6.7002 -5.7998c15.4004 -0.900391 57.4004 0.5 65.4004 32.2998c-15.7002 17.2998 -44.4004 37.6006 -93.7002 62.6006c38.3994 -12.8008 73 -30 102 -53.5c34.0996 15.8994 10.5996 55.8994 -6 71.7998
-c-0.900391 -4.2002 -1.7998 -6.7998 -2.90039 -7.60059c-5.39941 5.80078 -9.7998 11.7002 -16.7998 17.3008c0 -3.2002 1.59961 -6.80078 -2.5 -9.40039c-3.7002 5 -8.7998 9.5 -15.5 13.2998c3.2002 -5.59961 0.5 -7.2998 -1.2002 -9.59961
-c-5.09961 4.39941 -10 8.89941 -19.3994 12.2998c2.59961 -3.09961 6.19922 -6.2002 2.39941 -9.7998c-5.2998 3.2998 -10.5996 6.59961 -23.0996 8.89941c2.7998 -3.09961 8.59961 -6.2998 5.09961 -9.39941c-6.7002 2.5 -14 4.2998 -22.0996 5.39941
-c3.7998 -3.19922 7.09961 -6.2998 3.89941 -8.7998c-7.09961 2.2002 -16.8994 5.10059 -26.3994 2.60059l6 -6.10059c0.700195 -0.799805 -14.1006 -0.700195 -23.9004 -0.799805c3.5 -4.90039 7.2002 -9.7002 9.2998 -18.2002c-1 -1 -5.7998 -0.399414 -10.3994 0
-c4.7002 -9.89941 12.7998 -12.3994 14.7002 -16.5996c-2.90039 -2.10059 -6.90039 -1.60059 -11.2002 -0.100586c3.2998 -6.89941 10.3994 -11.6992 16 -17.2998c-1.40039 -1 -3.90039 -1.59961 -9.7002 -0.899414c5.2002 -5.5 11.4004 -10.5 18.7998 -15
-c-1.2998 -1.60059 -5.7998 -1.5 -10 -1.60059c6.7002 -6.5 15.2998 -9.89941 23.4004 -14.2002c-4 -2.7998 -6.90039 -2.09961 -10 -2.09961c5.7002 -4.7002 15.3994 -7.2002 24.3994 -10c-1.69922 -2.59961 -3.39941 -3.40039 -7.09961 -4.09961zM141.6 292.8
-c-45.5996 7.60059 -83.5996 -19.2002 -82.0996 -67.8994c1.5 -18.6006 98.9004 65.0996 82.0996 67.8994zM38.2002 106c21.5996 -9.5 39.0996 105.3 12.5996 98.2998c-43.8994 -24.5996 -36.2998 -79.5 -12.5996 -98.2998zM129.2 7.7998
-c14.0996 10.4004 6.39941 45.7002 -10.5 65.7002c-19.4004 22.2002 -44.6006 35.4004 -60.9004 25.5996c-10.8994 -8.19922 -12.8994 -36 2.60059 -63.3994c23 -32.6006 55.5 -35.7998 68.7998 -27.9004zM102.8 127.5c24.4004 -15.7998 59.7002 -5.59961 78.7998 22.7998
-c19 28.4004 14.6006 64.2002 -9.89941 80s-59.7998 5.60059 -78.7998 -22.7998s-14.6006 -64.2002 9.89941 -80zM205 -48c28.4004 -0.5 57.7002 24.4004 57.2002 35.4004c-0.100586 11.3994 -32 19.8994 -55.7002 18.8994c-23.5 0.600586 -59.7002 -9.2998 -59.2998 -22
-c-0.400391 -8.59961 28.3994 -33.5 57.7998 -32.2998zM263.9 76.9004v0.599609c-0.200195 29.5996 -26.8008 53.5996 -59.4004 53.4004c-32.5996 -0.200195 -59 -24.3008 -58.7998 -54v-0.600586c0.200195 -29.5996 26.7998 -53.5996 59.3994 -53.3994
-c32.6006 0.199219 59 24.2998 58.8008 54zM346.1 34.2002c18.4004 23.2002 12.2002 62 1.7002 72.2998c-15.5996 11.9004 -38 -3.2998 -58.8994 -26.5996c-18.3008 -21.1006 -28.4004 -59.6006 -15.1006 -72c12.7002 -9.60059 47 -8.30078 72.2998 26.2998zM369 107.4
-c23.7002 18.6992 31.2998 73.5996 -12.5996 98.2998c-26.4004 7 -8.90039 -107.7 12.5996 -98.2998z" />
-    <glyph glyph-name="redhat" unicode="&#xf7bc;" horiz-adv-x="512" 
-d="M341.52 162.59v-0.149414c33.6504 0 82.3408 6.93945 82.3408 47c0.219727 6.73926 0.859375 1.81934 -20.8799 96.2393c-4.62012 19.1504 -8.68066 27.8398 -42.3105 44.6504c-26.0898 13.3398 -82.9199 35.3701 -99.7295 35.3701
-c-15.6602 0 -20.2002 -20.1699 -38.8701 -20.1699c-18 0 -31.3105 15.0596 -48.1201 15.0596c-16.1406 0 -26.6602 -11 -34.7803 -33.6201c-27.5 -77.5498 -26.2803 -74.2695 -26.1201 -78.2695c0 -24.7998 97.6406 -106.11 228.47 -106.11zM429.07 193.19
-l-0.0703125 -0.0302734c4.65039 -22 4.65039 -24.3506 4.65039 -27.25c0 -37.6602 -42.3301 -58.5605 -98 -58.5605c-125.74 -0.0800781 -235.91 73.6504 -235.91 122.33v0.078125c0 6.96289 1.46289 13.6279 4.05957 19.6426
-c-45.2402 -2.26074 -103.8 -10.3301 -103.8 -62.0303c0 -84.6699 200.63 -189 359.49 -189c121.79 0 152.51 55.0801 152.51 98.5801c0 34.21 -29.5898 73.0498 -82.9297 96.2402z" />
-    <glyph glyph-name="sketch" unicode="&#xf7c6;" horiz-adv-x="512" 
-d="M27.5 285.8l78.9004 105.8l-6.90039 -130.699h-90.5zM396.3 402.3l7.10059 -133.5l-135.7 147.2zM112.2 229.7l122.6 -239.7l-224.899 261.7h91.0996zM114.2 260.9l142.1 154.1l60.4004 -65.5996l81.5 -88.5h-284zM411.5 251.8v-0.0996094h90.9004l-224.801 -261.7z
-M415.4 379l87.8994 -118.1h-90.2998l-6.09961 113.399l-0.900391 17.2998zM113.5 354.5l2.59961 47.7998l128.601 13.7002l-135.8 -147.1zM401.2 251.8l-144.9 -283.8l-102.7 200.9l-42.3994 82.8994h290z" />
-    <glyph glyph-name="sourcetree" unicode="&#xf7d3;" 
-d="M427.2 245c-0.104492 -90.2461 -59.1543 -166.747 -140.7 -193.1v-101.601c0 -7.89258 -6.40723 -14.2998 -14.2998 -14.2998h-96.4004c-7.89258 0 -14.2998 6.40723 -14.2998 14.2998v101.7c-81.501 26.3281 -140.5 102.814 -140.5 193.03v0.370117
-c0.200195 112 91.0996 202.8 203.2 202.6c112.1 0 203 -90.9004 203 -203zM155.6 245c0 -91 137.2 -89.9004 137.301 0c0 90.7998 -137.301 90.7998 -137.301 0z" />
-    <glyph glyph-name="suse" unicode="&#xf7d6;" horiz-adv-x="640" 
-d="M471.08 345.34c0 1 1.01953 0.759766 0.919922 0.660156c4.2002 -0.599609 92.2002 -13.7002 129.2 -35.2998c12.0996 -6.90039 20.7002 -21.5 34.5 -69.6006c0.700195 -2.7998 -2.7998 -5.09961 -3.60059 -5.69922
-c-26.8994 -18.8008 -56.7998 -36.6006 -145.199 21.6992c11.0996 -26.6992 10.6992 -25.0996 11 -25.5c5.39941 -2.7998 56.2998 -28.6992 81.5996 -28.1992c20.4004 0.399414 42.2002 10.3994 50.9004 15.5996c0 0 4.5 2.7002 3.19922 -2.40039
-c-0.5 -1.89941 -3.2998 -14.5996 -7 -17.6992c-1 -1 -36.5996 -28.4004 -103.1 -28c-42.7002 1 -76.7998 16.3994 -82.4004 -17.4004c-2.7998 -17.0996 6.10059 -37.5 18.9004 -55.7998h-48.5996c-15.9004 28.3994 -23.1006 68.2998 -79.8008 68.2998
-c-51.5996 0 -48.3994 -50.7002 -42.6992 -68.2998h-45.9004c-18.7998 68.7998 -69.2002 98.5996 -102.4 104.3c-74.2998 12.7998 -113 -49.2002 -87 -98.4004c23.1006 -43.5996 81.4004 -44.0996 99.7002 -20.3994c19.2002 25 3.7998 62.8994 -28.5 65.7002
-c-12.2998 1.09961 -25.2998 -4.60059 -25.5 -16.9004v-0.0595703c0 -10.9004 10 -13.8008 12 -14c7.2998 0.399414 8.90039 1.89941 11.7998 2.39941c5.2002 0.900391 16.8008 -1.7998 16.8008 -13.8994c0 -8.40039 -6.80078 -13.1006 -13.3008 -14.9004
-c-4.94922 -1.71484 -10.2754 -2.67285 -15.7998 -2.7002c-17.2002 0 -41.2002 14.7998 -41.5 42.6006c-0.200195 15.6992 7.7002 30 21.6006 39.1992c15.8994 10.5 43.5996 14.1006 69.1992 -1.59961c31.5 -19.2998 39.7002 -57.0996 31.5 -82.9004
-c-11.8994 -37.2998 -45.5996 -57.1992 -90 -53.2998c-31.5 2.7998 -60.6992 19.4004 -78.0996 44.4004c-7.45117 10.6377 -13.1357 22.7852 -16.5 35.7002c-7.12012 28.0596 0 58.0596 5.48047 71.3994c25.6992 63.6006 80.1992 97.2998 99.5996 109.7
-c100.2 61.5996 171.1 59.0996 223 57.2998c61.2998 -2.2002 126.6 -23.2998 135.7 -26.2998c0 2 0.299805 20.2998 0.299805 20.2998zM531.48 272.54c-1.10059 -33.5 39.0996 -51.5996 63.2998 -28.9004c24.3994 22.9004 9 64 -24.4004 65.2002
-c-0.464844 0.0175781 -0.910156 0.00585938 -1.37988 0.00585938c-20.3057 0 -36.8682 -16.1572 -37.5195 -36.3057zM570.08 297.84c14.0928 -0.414062 25.4199 -11.9697 25.4199 -26.1631c0 -0.34668 -0.00683594 -0.692383 -0.0195312 -1.03711
-c-0.505859 -14.0547 -12.0898 -25.3252 -26.2676 -25.3252c-14.499 0 -26.2695 11.7705 -26.2695 26.2695s11.7705 26.2705 26.2695 26.2705c0.290039 0 0.579102 -0.00488281 0.867188 -0.0146484zM574.38 269.04c15.4004 0 15.4004 15.5996 0 15.5996
-c-15.3994 0 -15.3994 -15.5996 0 -15.5996z" />
-    <glyph glyph-name="ubuntu" unicode="&#xf7df;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM300.7 347c-8.7998 -15.2002 -3.60059 -34.7002 11.7002 -43.5996c15.1992 -8.80078 34.6992 -3.5 43.5 11.6992c8.7998 15.3008 3.59961 34.8008 -11.7002 43.6006
-c-15.2002 8.7998 -34.7002 3.5 -43.5 -11.7002zM87.4004 160.1c17.5996 0 31.8994 14.3008 31.8994 31.9004s-14.2998 31.9004 -31.8994 31.9004c-17.6006 0 -31.9004 -14.3008 -31.9004 -31.9004s14.2998 -31.9004 31.9004 -31.9004zM115.5 157
-c8.7002 -32.7002 29.0996 -60.7002 56.5 -79l23.7002 39.5996c-51.5 36.3008 -51.5 112.5 0 148.801l-23.7002 39.5996c-27.4004 -18.4004 -47.9004 -46.2998 -56.5 -79.0996c22.4004 -18 22.2998 -52 0 -69.9004zM344.2 25.2998
-c15.2998 8.7998 20.5 28.2998 11.7002 43.6006c-8.80078 15.2998 -28.3008 20.5 -43.5 11.6992c-15.3008 -8.7998 -20.5 -28.2998 -11.7002 -43.5996s28.2002 -20.5 43.5 -11.7002zM344.5 94.7998c23 22.9004 38 53.9004 40.2998 88.4004l-46.0996 0.700195
-c-5.5 -62.7002 -71.9004 -100.9 -128.9 -74.4004l-22.5 -40.2998c47.7998 -23.7002 91.5 -10.7998 96.7002 -9.40039c4.40039 28.4004 33.7998 45.2998 60.5 35zM338.6 200.1l46 0.600586c-2.19922 34.5996 -17.0996 65.5996 -40.1992 88.5
-c-26.7002 -10.2998 -56.1006 6.7002 -60.5 35c-5.2002 1.39941 -48.8008 14.2998 -96.7002 -9.40039l22.5 -40.2998c57.5996 26.7998 123.5 -12.4004 128.899 -74.4004z" />
-    <glyph glyph-name="ups" unicode="&#xf7e0;" horiz-adv-x="384" 
-d="M103.2 145v123h32.5996v-141.6c-17.7002 -12.1006 -97.8994 -35.9004 -97.8994 39v102.6h32.6992v-104c0 -32.0996 27.4004 -22.5996 32.6006 -19zM4 373.18c93.5996 49.6006 259.1 61.6006 375.4 0v-220.899c0 -103.9 -75.3008 -135.2 -187.7 -184.101
-c-112.8 48.9004 -187.7 80.4004 -187.7 184.101v220.899zM362.1 152.28v216.2c-109.3 10.1992 -238.6 4 -340.899 -89.8008v-126.399c0 -86.6006 53 -113.5 170.5 -165.3c117.2 51.6992 170.399 78.6992 170.399 165.3zM152.5 259.68
-c23.7002 15.3203 104.4 31.8008 104.4 -65.5996c0 -75.9004 -47.3008 -85.7998 -71.7002 -78.5v-68.7002h-32.7002v212.8zM185.2 142.38c2 -0.799805 38.3994 -16.8994 38.3994 51c0 62 -30 53.5 -38.3994 49.2998v-100.3zM264.3 228.78
-c-0.200195 41.0996 51.2002 53.8994 79.7002 31.8994v-28.3994c-17.9004 18.2998 -47.9004 18.0996 -48.5 -2.2002c-0.700195 -26.5996 55.0996 -21.7002 53.4004 -73.2002c-1.30078 -41.5996 -47 -55 -83.2002 -33.5v30.1006
-c20.3994 -18.1006 51.3994 -18.6006 50.7998 4.89941c-0.599609 27.9004 -52.0996 23.1006 -52.2002 70.4004z" />
-    <glyph glyph-name="usps" unicode="&#xf7e1;" horiz-adv-x="576" 
-d="M460.3 206.3c-1.39941 -2.2002 -4.2998 -4.39941 -3.7998 0.100586c2.90039 11.5996 13.9004 30.5 4.40039 32c-17.8008 3.09961 -88.1006 -4.5 -88.1006 0c0 2.39941 26.7002 3.09961 37.9004 8.69922c9.39941 9.40039 10.7998 8 10.8994 8h27
-c26.9004 0 37.5 -7.5 11.7002 -48.7998zM348.2 183.7c-62.2998 -21.2002 -124.8 -54.2002 -321.2 -151.5l52.4004 245.5c185 0 335.199 5.59961 337.899 -22.6006h-196.6l30.7002 -93.2998c35 16.7998 120.899 51.7002 172.6 53.9004
-c21.7998 0.799805 30.5996 -2.90039 26.2002 -5.7998c-4.7002 -2.30078 -38 -4.90039 -102 -26.2002zM94.7002 352h454.3l-67.7002 -319.7h-423.1s402 157.3 406.399 160.2c0 0 35.7002 48 14.6006 67.7002c-6.5 6.59961 -16 6.59961 -52.4004 6.59961
-c-2.09961 19.5 -78.7998 31.5 -332.1 85.2002z" />
-    <glyph glyph-name="yarn" unicode="&#xf7e3;" horiz-adv-x="496" 
-d="M393.9 102.8c-39 -9.2998 -48.4004 -32.0996 -104 -47.3994c0 0 -2.7002 -4 -10.4004 -5.80078c-13.4004 -3.2998 -63.9004 -6 -68.5 -6.09961c-12.4004 -0.0996094 -19.9004 3.2002 -22 8.2002c-6.40039 15.2998 9.2002 22 9.2002 22
-c-8.10059 5 -9 9.89941 -9.7998 8.09961c-2.40039 -5.7998 -3.60059 -20.0996 -10.1006 -26.5c-8.7998 -8.89941 -25.5 -5.89941 -35.2998 -0.799805c-10.7998 5.7002 0.799805 19.2002 0.799805 19.2002s-5.7998 -3.40039 -10.5 3.59961
-c-6 9.2998 -17.0996 37.2998 11.5 62c-1.2998 10.1006 -4.59961 53.7002 40.6006 85.6006c0 0 -20.6006 22.7998 -12.9004 43.2998c5 13.3994 7 13.2998 8.59961 13.8994c5.7002 2.2002 11.3008 4.60059 15.4004 9.10059c20.5996 22.2002 46.7998 18 46.7998 18
-s12.4004 37.7998 23.9004 30.3994c3.5 -2.2998 16.2998 -30.5996 16.2998 -30.5996s13.5996 7.90039 15.0996 5c8.2002 -16 9.2002 -46.5 5.60059 -65.0996c-6.10059 -30.6006 -21.4004 -47.1006 -27.6006 -57.5c-1.39941 -2.40039 16.5 -10 27.8008 -41.3008
-c10.3994 -28.5996 1.09961 -52.6992 2.7998 -55.2998c0.799805 -1.39941 13.7002 -0.799805 36.3994 13.2002c12.8008 7.90039 28.1006 16.9004 45.4004 17c16.7002 0.5 17.5996 -19.2002 4.90039 -22.2002zM496 192c0 -136.9 -111.1 -248 -248 -248s-248 111.1 -248 248
-s111.1 248 248 248s248 -111.1 248 -248zM416.7 116.8c-1.7002 13.6006 -13.2002 23 -28 22.7998c-22 -0.299805 -40.5 -11.6992 -52.7998 -19.1992c-4.80078 -3 -8.90039 -5.2002 -12.4004 -6.80078c3.09961 44.5 -22.5 73.1006 -28.7002 79.4004
-c7.7998 11.2998 18.4004 27.7998 23.4004 53.2002c4.2998 21.7002 3 55.5 -6.90039 74.5c-1.59961 3.09961 -7.39941 11.2002 -21 7.39941c-9.7002 20 -13 22.1006 -15.5996 23.8008c-1.10059 0.699219 -23.6006 16.3994 -41.4004 -28
-c-12.2002 -0.900391 -31.2998 -5.30078 -47.5 -22.8008c-2 -2.19922 -5.89941 -3.7998 -10.0996 -5.39941h0.0996094c-8.39941 -3 -12.2998 -9.90039 -16.8994 -22.2998c-6.5 -17.4004 0.199219 -34.6006 6.7998 -45.7002c-17.7998 -15.9004 -37 -39.7998 -35.7002 -82.5
-c-34 -36 -11.7998 -73 -5.59961 -79.6006c-1.60059 -11.0996 3.69922 -19.3994 12 -23.7998c12.5996 -6.7002 30.2998 -9.59961 43.8994 -2.7998c4.90039 -5.2002 13.7998 -10.0996 30 -10.0996c6.7998 0 58 2.89941 72.6006 6.5c6.7998 1.59961 11.5 4.5 14.5996 7.09961
-c9.7998 3.09961 36.7998 12.2998 62.2002 28.7002c18 11.7002 24.2002 14.2002 37.5996 17.3994c12.9004 3.2002 21 15.1006 19.4004 28.2002z" />
-    <glyph glyph-name="airbnb" unicode="&#xf834;" 
-d="M224 74.8799h0.0595703c24.71 31.1797 39.5508 58.9297 45 83.1797c22.5508 88 -112.609 88 -90.0596 0c4.91992 -23.75 19.7598 -51.5098 45 -83.1797zM362.15 1.65039c35.6396 15.3496 50.1797 53.5693 37.0098 86.6396
-c-25.4902 61.6104 -78.8398 168.47 -114.84 239.09c-16.9707 33.9297 -28.0303 59.8701 -60.3701 59.8701c-33.8203 0 -43.6299 -27.3301 -59.3799 -57.4004c-4.15039 -10.3799 -100.771 -202.399 -115.87 -241.56c-17.8105 -50.0303 21.2998 -98.5205 71.2998 -91.0898
-c24.5996 2.22949 52.6201 18.8701 85.1504 54.9199c-29.2002 37.1104 -47.5 70.3096 -54.4307 99.5c-11.8799 53.9902 18.3604 100.5 73.2803 100.5c64.96 0 122.75 -69.9297 18.8496 -200c35.6309 -39.5898 77.2402 -68.7803 119.301 -50.4697zM409.15 137.77
-c0 -0.679688 16.8496 -35.6895 16.8301 -39.5791c25.2393 -69.3301 -26.7207 -130.24 -89.6104 -130.19c-11.1104 0 -53.6904 -1.37988 -112.37 62.4004c-51.7598 -56.3408 -90.6602 -62.4004 -112.37 -62.4004c-62.8896 0 -114.85 60.8604 -89.6299 130.19
-c0.889648 2.61914 11.1797 32.71 117.34 245.02c19.79 41.1201 39.1406 72.79 84.6602 72.79c49.1299 0 56.2695 -3.92969 185.15 -278.23z" />
-    <glyph glyph-name="battle-net" unicode="&#xf835;" horiz-adv-x="512" 
-d="M448.61 222.38c60.75 -36.25 71.9893 -73.8096 57.3193 -93.6895c-4.70996 -6.88086 -25.1797 -36.2402 -148 -31.6406c-21.8193 -30.3994 -45.25 -53.2695 -67.4697 -69.2695c28.54 -53.7803 54.2998 -85.0303 62.54 -91.7803c0 0 -3.44043 0.160156 -8.58008 3.37012
-c-3.2627 1.95117 -6.17871 4.31836 -8.75 7.08984c-15.6299 16.1797 -35.5195 41.9404 -55.7002 74.1201c-43.9502 -28.1104 -81.1299 -29.0996 -88.4395 -9.4502c-4.83984 10.8301 1.5293 26.5 9.05957 39.3398c-31.3203 -17.5098 -61.7002 -26.8496 -86.7002 -21.1396
-c-6.79004 1.54004 -17.6299 5.50977 -23.1992 18.2598c-4.52051 9.53027 -6.02051 24.2598 -0.150391 47.1406c9.07031 35.3398 37.5801 82.2998 47.3096 97.6992c3.75 -8.62988 -20.7793 40.1904 -26 93.1904c-89.1592 0 -110.56 -8.83984 -111.56 -9.21973
-c1.54004 2.44922 7.86035 7.26953 17.7598 9.71973c22 5.47949 54.6406 9.84961 93 11.2295c-2.38965 52.0703 15.3398 84.7705 36 81.29h0.180664c11.3291 -1.2998 21.2598 -13.5801 28.5 -25.9297c0.669922 35.2002 7.7998 65.54 25 84.0703
-c4.72949 5.14941 13.5693 12.5498 27.3994 11h0.0498047c10.5205 -0.850586 24 -6.91992 40.8398 -23.4707c25.6006 -25.0693 51.54 -71.9893 60.4805 -88.9297c37.25 -3.7002 68.7695 -12.5801 93.7695 -23.7998c32.3506 51.5898 46.4805 89.5303 48.2002 100.05
-c0.640625 -1.25 2.93066 -8.41992 -0.450195 -20.25c-6.22949 -21.6201 -18.5791 -51.7197 -36.3398 -85.2998c45.79 -23.7305 65.3203 -55.0098 52.8506 -71.3301c-3.35059 -4.94043 -12.0498 -12.5498 -38.9199 -12.3701zM370.76 116.16
-c70.4102 4.37988 79.6504 20.5703 78.5098 33.5c-1.87988 21.25 -21.1992 41.2598 -49.0596 58.8301c0.889648 -24.5605 -5.63965 -54.6201 -29.4502 -92.3301zM216.9 60.3096c-19.04 -30.46 9.19922 -39.5596 49.7998 -17.6992
-c-7 12.0898 -13.9199 24.8594 -20.6006 38.1895c-9.66992 -7.37012 -19.4395 -14.2598 -29.1992 -20.4902zM431.9 231.66c36.2598 -1.23047 29.4199 27.8496 -9.64062 51.9502c-7.22559 -12.5537 -14.7959 -24.8359 -22.7402 -36.9004
-c11.2207 -4.70996 22.0908 -9.70996 32.3809 -15.0498zM279.18 50c28.3799 18.2002 60.1689 48.1201 84.7695 85.4297c18.46 27.96 26.1494 56.0205 25.4102 79.5703c-30.5801 17.3203 -89.3604 42.7197 -167.23 57.21c0.350586 18.4805 2.08984 19.8799 2.16016 20.3301
-c13.2168 -1.61523 26.4307 -3.64844 39.3896 -6.0498c39.375 -7.36328 78.5059 -18.1924 115.34 -31.71c-15.6191 33.1494 -41.4092 47.2197 -41.5195 47.2197c1.59961 0.160156 28.1299 -6 48.8604 -43.7197c8.42676 11.2061 16.2031 22.0293 23.3301 32.4697
-c-29.96 15.46 -71.75 28.04 -116.32 30.71c-33.4502 1.99023 -61.6299 -5.38965 -81.6299 -17.8096c0.240234 -35.2607 7.66992 -98.96 34 -173.431c-16.8301 -9.12988 -17.7402 -7.87012 -18.6699 -8.25c-20.2715 48.0654 -35.623 99.999 -44.6699 152.84
-c-21.0908 -30.3994 -20.1406 -59.5 -20.1406 -59.5693c-0.919922 1.22949 -8.81934 27.4297 13.4707 64.2295c-13.5801 1.70996 -26.5508 2.9707 -38.8506 3.87988c1.57031 -33.6797 11.5703 -76.1494 31.5703 -116.069c14.8701 -29.71 35.1201 -50.3105 55.71 -61.4902
-c30.4102 17.9199 81.0498 55.6504 132.75 115.92c14.9697 -9 16.1494 -11.71 16.5098 -12c-7.91309 -10.5332 -16.2227 -20.9033 -24.9287 -31.1104c-26.1514 -30.5225 -54.2061 -58.2285 -85.0605 -84c37.5303 -3.38965 62.5303 12.1807 62.5303 12.25
-c-0.860352 -1.67969 -20.0303 -21.6797 -63.2803 -20.4092c5.5 -12.9404 10.9902 -25.0908 16.5 -36.4404zM306.579 337c-1.58008 2.4502 -39.5801 58.8496 -56.4805 54.6104c-16.8994 1.09961 -36.21 -22.9805 -38.21 -75.2803
-c21.1104 13.2402 50.1299 22.3301 94.6904 20.6699zM175.929 333.9c-3.7998 6.68945 -8.66992 12.4795 -14.4297 13.5693h-0.0898438c-24.79 1.41016 -24.75 -52.8301 -24.6699 -49.5898c13.6602 -0.00976562 27.8496 -0.410156 42.3994 -1.25977
-c-1.62012 12.6602 -2.72949 25.1699 -3.20996 37.2803zM147.869 171.9c-30.7998 -61.5098 -19.8701 -76.6104 -19.6699 -76.8203c7.38965 -15.4902 38.1299 -20.25 84.9199 4.50977c-21.9502 11.7402 -44.4902 32.6104 -65.25 72.3105zM357.929 97.0996z" />
-    <glyph glyph-name="bootstrap" unicode="&#xf836;" 
-d="M292.3 136.07c0 -42.4102 -39.7197 -41.4307 -43.9199 -41.4307h-80.8896v81.6904h80.8896c42.5605 0 43.9199 -31.9004 43.9199 -40.2598zM242.15 209.2h-74.6602v72.1797h74.6602c34.9297 0 38.4395 -20.3496 38.4395 -35.8701
-c0 -37.3096 -37.7695 -36.3096 -38.4395 -36.3096zM448 341.33v-298.66c-0.121094 -41.1553 -33.5146 -74.5488 -74.6699 -74.6699h-298.66c-41.1553 0.121094 -74.5488 33.5146 -74.6699 74.6699v298.66c0.121094 41.1553 33.5146 74.5488 74.6699 74.6699h298.66
-c41.1553 -0.121094 74.5488 -33.5146 74.6699 -74.6699zM338.05 130.14c0 21.5703 -6.64941 58.29 -49.0498 67.3506v0.729492c22.9102 9.78027 37.3398 28.25 37.3398 55.6406c0 7 2 64.7793 -77.5996 64.7793h-127v-261.33c128.229 0 139.87 -1.67969 163.6 5.70996
-c14.21 4.4209 52.71 17.9805 52.71 67.1201z" />
-    <glyph glyph-name="buffer" unicode="&#xf837;" 
-d="M427.84 67.3301l-196.5 -97.8203c-2.24707 -0.963867 -4.72266 -1.49805 -7.32129 -1.49805s-5.10156 0.53418 -7.34863 1.49805l-196.51 97.8203c-4 2 -4 5.28027 0 7.29004l47.0596 23.3799c2.25098 0.964844 4.72949 1.49805 7.33203 1.49805
-c2.60156 0 5.10742 -0.533203 7.3584 -1.49805l134.76 -67c2.24609 -0.969727 4.72168 -1.50684 7.32129 -1.50684s5.10254 0.537109 7.34863 1.50684l134.76 67c2.24902 0.964844 4.72656 1.49902 7.32715 1.49902s5.10449 -0.53418 7.35352 -1.49902l47.0596 -23.4297
-c4.0498 -1.95996 4.0498 -5.24023 0 -7.24023zM427.84 203.86c4.0498 -2.01074 4.0498 -5.29004 0 -7.31055l-196.5 -97.7998c-2.24707 -0.964844 -4.74902 -1.49902 -7.34863 -1.49902c-2.59863 0 -5.07422 0.53418 -7.32129 1.49902l-196.51 97.7998
-c-4 2.02051 -4 5.31055 0 7.31055l47.0596 23.4297c2.25098 0.964844 4.75684 1.49805 7.3584 1.49805c2.60254 0 5.08105 -0.533203 7.33203 -1.49805l134.76 -67.0801c2.24902 -0.959961 4.75 -1.49121 7.34863 -1.49121c2.59766 0 5.07227 0.53125 7.32129 1.49121
-l134.76 67.0801c2.24902 0.964844 4.75293 1.49902 7.35352 1.49902s5.07812 -0.53418 7.32715 -1.49902zM20.1602 317.58c-4.0498 1.86035 -4.0498 4.88965 0 6.74023l196.5 90.2793c2.2666 0.900391 4.76074 1.39551 7.3457 1.39551
-c2.58594 0 5.05762 -0.495117 7.32422 -1.39551l196.51 -90.2793c4 -1.85059 4 -4.87988 0 -6.74023l-196.51 -90.29c-2.26953 -0.890625 -4.76172 -1.37988 -7.3457 -1.37988s-5.05469 0.489258 -7.32422 1.37988z" />
-    <glyph glyph-name="chromecast" unicode="&#xf838;" horiz-adv-x="512" 
-d="M447.8 384c23.6006 0 42.9004 -19.0996 42.9004 -42.7002v-298.6c0 -23.6006 -19.1006 -42.7002 -42.7002 -42.7002h-149.4v42.7002h149.2v298.6h-383.8v-63.8994h-42.7002v63.8994c0 23.6006 19.1006 42.7002 42.7002 42.7002h383.8zM21.2998 64.4004
-c35.2998 0 63.9004 -28.6006 63.9004 -63.9004h-63.9004v63.9004v0zM21.2998 149.4c82.4004 -0.100586 149.4 -67 149.3 -149.4h-42.6992c0 58.9004 -47.7002 107 -106.601 107v42.4004zM213.4 0c-0.100586 106 -86.1006 192.4 -192.101 192.2v42.3994
-c129.5 -0.299805 234.3 -105.1 234.8 -234.6h-42.6992z" />
-    <glyph glyph-name="evernote" unicode="&#xf839;" horiz-adv-x="384" 
-d="M120.82 315.79c1.59961 -22.3096 -17.5508 -21.5898 -21.6104 -21.5898c-68.9297 0 -73.6396 1 -83.5801 -3.33984c-0.55957 -0.220703 -0.740234 0 -0.370117 0.370117l108.53 110.319c0.379883 0.370117 0.599609 0.219727 0.379883 -0.370117
-c-4.34961 -9.98926 -3.34961 -15.0898 -3.34961 -85.3896zM199.82 7.79004c-14.6807 37.0801 13 76.9297 52.5195 76.6201c17.4902 0 22.6006 -23.21 7.9502 -31.4199c-6.19043 -3.2998 -24.9502 -1.74023 -25.1396 -19.2002
-c-0.0507812 -17.0898 19.6699 -25 31.1992 -24.8896h0.0107422c25.1895 0 45.6396 20.4502 45.6396 45.6396v0.00976562v0.0800781c0 11.6299 -7.79004 47.2197 -47.54 55.3398c-7.71973 1.54004 -65 6.35059 -68.3496 50.5205
-c-3.74023 -16.9307 -17.4004 -63.4902 -43.1104 -69.0898c-8.74023 -1.94043 -69.6797 -7.64062 -112.92 36.7695c0 0 -18.5703 15.2305 -28.2305 57.9502c-3.37988 15.75 -9.2793 39.7002 -11.1396 62c0 18 11.1396 30.4502 25.0703 32.2002c81 0 90 -2.32031 101 7.7998
-c9.81934 9.24023 7.7998 15.5 7.7998 102.78c1 8.2998 7.79004 30.8096 53.4102 24.1396c6 -0.860352 31.9102 -4.17969 37.4795 -30.6396l64.2607 -11.1504c20.4297 -3.70996 70.9395 -7 80.5996 -57.9404c22.6602 -121.09 8.91016 -238.46 7.7998 -238.46
-c-15.9795 -114.38 -111.07 -108.85 -111.07 -108.85c-18.9492 0.230469 -54.25 9.40039 -67.2695 39.8301zM280.76 212.63c-1 -1.91992 -2.2002 -6 0.850586 -7c14.0898 -4.92969 39.75 -6.83984 45.8799 -5.53027c3.10938 0.25 3.0498 4.43066 2.47949 6.65039
-c-3.5293 21.8496 -40.8301 26.5 -49.2393 5.91992z" />
-    <glyph glyph-name="itch-io" unicode="&#xf83a;" horiz-adv-x="512" 
-d="M71.9199 413.23c19.2197 1.66992 114.32 2.76953 184.08 2.76953s116.56 -0.400391 184 -2.73047c21.7197 -12.9297 64.5195 -62.0996 64.9199 -75v-21.3398c0 -27.0596 -25.25 -50.8398 -48.25 -50.8398c-27.54 0 -50.54 22.8799 -50.54 50
-c0 -27.1494 -22.2295 -50 -49.7598 -50s-49 22.8799 -49 50c0 -27.1494 -23.5898 -50 -51.1602 -50h-0.5c-27.5703 0 -51.1602 22.8799 -51.1602 50c0 -27.1494 -21.4199 -50 -49 -50s-49.7598 22.8799 -49.7598 50c0 -27.1494 -22.9697 -50 -50.54 -50
-c-22.96 0 -48.25 23.7803 -48.25 50.8398v21.3398c0.400391 12.8906 43.2002 62.0605 64.9199 74.9609zM204.24 278.84c9.91797 -17.3369 28.5586 -28.9785 49.9453 -28.9785c0.614258 0 1.22559 0.00976562 1.83398 0.0283203c28.7109 0 44.6602 16.4502 51.7607 28.9404
-c22 -38.3398 77.8496 -38.7598 99.8496 -0.240234c13.1201 -23.0596 43.0801 -32.0996 56 -27.6602c3.57031 -37.1494 13.9004 -236.88 -17.75 -269.149c-77.6797 -18.1201 -299.76 -18.6699 -379.76 0c-31.4004 32.0195 -21.6006 229 -17.7305 269.149
-c12.8301 -4.41016 42.8301 4.52051 56 27.6602c21.9502 -38.46 77.8506 -38.1494 99.8506 0.25zM162.66 225.07l-0.0205078 -0.0703125c-52.3193 0 -65.21 -77.4502 -83.8799 -144.45c-17.2598 -62.1494 5.52051 -63.6699 33.9404 -63.7295
-c42.1494 1.56934 65.4902 32.1797 65.4902 62.79c53.6191 -8.79004 116.3 -6.43066 155.55 0c0 -30.6104 23.3398 -61.2207 65.4902 -62.79c28.4297 0.0595703 51.21 1.58008 33.9492 63.7295c-18.6494 66.9199 -31.54 144.45 -83.8701 144.45
-c-16.46 0 -31.0898 0 -49.25 -19.71c-14.6436 1.48535 -28.6113 2.24609 -43.6445 2.24609c-15.0342 0 -29.8906 -0.760742 -44.5352 -2.24609c-18.1299 19.7803 -32.75 19.7803 -49.2197 19.7803zM256 177.21l-0.0595703 -0.00976562s44.3496 -40.7598 52.3496 -55.2402
-l-29 1.16992v-25.2803c0 -1.15918 -11.6602 -0.699219 -23.3096 -0.15918c-1.99023 0 -23.3301 -1.39062 -23.3301 0.15918v25.3203l-29 -1.16992c7.96973 14.4404 52.3496 55.21 52.3496 55.21z" />
-    <glyph glyph-name="salesforce" unicode="&#xf83b;" horiz-adv-x="640" 
-d="M248.89 202.36h-26.3496c0.69043 5.15918 3.32031 14.1201 13.6396 14.1201c6.75 0 11.9707 -3.82031 12.71 -14.1201zM385.55 216.24c0.450195 0 14.1104 1.75977 14.1104 -20c0 -6.45996 -1.11035 -20 -14.1104 -20c-0.479492 0 -14.1094 -1.77051 -14.1094 20
-c0 21.7695 13.6396 20 14.1094 20zM142.33 192.48c4.2002 3.60938 15.6104 2.71973 20.9297 1.64941v-16.9395c-5.85938 -1.1709 -16.2295 -2.75 -20.9297 0.949219c-1.20996 1 -3.29004 2.27051 -3.29004 7.05078
-c-0.00976562 0.166992 -0.0205078 0.325195 -0.0205078 0.495117c0 2.75684 1.29492 5.21387 3.31055 6.79492zM640 216c0 -87.5801 -80 -154.39 -165.36 -136.43c-18.3701 -33 -70.7295 -70.75 -132.199 -41.6299c-41.1602 -96.0508 -177.891 -92.1807 -213.811 5.16992
-c-119.72 -23.8906 -178.82 138.37 -75.2695 199.279c-34.75 79.4307 22.6396 173.61 114.31 173.61c40.1748 -0.0253906 75.8613 -19.0605 98.5605 -48.7002c20.6992 21.4004 49.3994 34.8105 81.1494 34.8105c42.3398 0 79 -23.5205 98.7998 -58.5703
-c92.8203 40.6797 193.82 -28.2305 193.82 -127.54zM120.45 184.2c0 11.7598 -11.6904 15.1699 -17.8701 17.1699c-5.27051 2.11035 -13.4102 3.50977 -13.4102 8.93945c0 9.45996 17 6.66016 25.1699 2.12012c0 0 1.16992 -0.709961 1.64062 0.470703
-c0.239258 0.699219 2.35938 6.58008 2.58984 7.29004c0.0341797 0.108398 0.0527344 0.223633 0.0527344 0.34375c0 0.492188 -0.313477 0.911133 -0.75293 1.06543c-12.3301 7.63086 -40.7002 8.51074 -40.7002 -12.6992c0 -12.46 11.4902 -15.4404 17.8799 -17.1699
-c4.71973 -1.58008 13.1699 -3 13.1699 -8.7002c0 -4 -3.5293 -7.06055 -9.16992 -7.06055c-7.11328 0.0126953 -13.709 2.38281 -19 6.35059c-0.469727 0.229492 -1.41992 0.709961 -1.64941 -0.709961l-2.40039 -7.4707
-c-0.469727 -0.939453 0.230469 -1.17969 0.230469 -1.40918c1.75 -1.40039 10.2998 -6.59082 22.8193 -6.59082c13.1699 0 21.4004 7.06055 21.4004 18.1104v-0.0498047zM152.45 226.78c-10.1299 0 -18.6602 -3.16992 -21.4004 -5.18066
-c-0.260742 -0.179688 -0.431641 -0.481445 -0.431641 -0.822266c0 -0.219727 0.0722656 -0.422852 0.191406 -0.586914l2.59082 -7.06055c0.119141 -0.417969 0.504883 -0.723633 0.960938 -0.723633c0.0751953 0 0.148438 0.0078125 0.21875 0.0234375
-c0.650391 0 6.7998 4 16.9297 4c4 0 7.06055 -0.709961 9.18066 -2.35938c3.59961 -2.80078 3.05957 -8.29004 3.05957 -10.5801c-4.79004 0.299805 -19.1104 3.43945 -29.4102 -3.75977c-4.44727 -3.05078 -7.36621 -8.16895 -7.36621 -13.9639
-c0 -0.199219 0.0195312 -0.378906 0.0263672 -0.576172c0 -5.90039 1.50977 -10.4004 6.58984 -14.3506c12.2402 -8.16016 36.2803 -2 38.1006 -1.41016c1.5791 0.320312 3.5293 0.660156 3.5293 1.87988v33.8809c0.0400391 4.60938 0.320312 21.6396 -22.7793 21.6396z
-M199 247.76c0.00195312 0.0244141 0.00195312 0.0488281 0.00195312 0.0732422c0 0.613281 -0.49707 1.11035 -1.10938 1.11035c-0.0244141 0 -0.0488281 -0.00195312 -0.0722656 -0.00292969h-9.82031
-c-0.0205078 0.000976562 -0.0419922 0.000976562 -0.0634766 0.000976562c-0.612305 0 -1.10938 -0.49707 -1.10938 -1.10938c0 -0.0244141 0.000976562 -0.0478516 0.00292969 -0.0722656v-79c-0.00195312 -0.0234375 -0.00195312 -0.0478516 -0.00195312 -0.0722656
-c0 -0.613281 0.49707 -1.11035 1.10938 -1.11035c0.0214844 0 0.0419922 0.00195312 0.0625 0.00292969h9.87988c0.0244141 -0.00195312 0.0488281 -0.00292969 0.0732422 -0.00292969c0.613281 0 1.11035 0.498047 1.11035 1.11035
-c0 0.0244141 -0.00195312 0.0478516 -0.00390625 0.0722656zM254.75 218.83c-2.09961 2.30957 -6.79004 7.53027 -17.6504 7.53027c-3.50977 0 -14.1592 -0.230469 -20.6992 -8.94043c-6.35059 -7.62988 -6.58008 -18.1104 -6.58008 -21.4102
-c0 -3.12012 0.149414 -14.2598 7.05957 -21.1699c2.63965 -2.91016 9.06055 -8.22949 22.8105 -8.22949c10.8193 0 16.4697 2.34961 18.5791 3.75977c0.470703 0.240234 0.710938 0.709961 0.240234 1.87988l-2.34961 6.83008
-c-0.200195 0.430664 -0.637695 0.729492 -1.14355 0.729492c-0.0917969 0 -0.179688 -0.0107422 -0.266602 -0.0292969c-2.58984 -0.94043 -6.34961 -2.82031 -15.29 -2.82031c-17.4199 0 -16.8496 14.7402 -16.9404 16.7002h37.1709
-c0.567383 0.0117188 1.04102 0.40918 1.16992 0.939453c-0.290039 0 2.06934 14.7002 -6.09082 24.2305h-0.0195312zM291.44 166.14c13.1699 0 21.4092 7.06055 21.4092 18.1104c0 11.7598 -11.6992 15.1699 -17.8799 17.1699
-c-4.13965 1.66016 -13.4102 3.37988 -13.4102 8.94043c0 3.75977 3.29004 6.34961 8.4707 6.34961c5.98828 -0.120117 11.6924 -1.64844 16.7002 -4.22949c5.00684 -2.58203 1.17969 -0.710938 1.64941 0.469727c0.230469 0.700195 2.35059 6.58008 2.58008 7.29004
-c0.0351562 0.108398 0.0537109 0.223633 0.0537109 0.34375c0 0.492188 -0.314453 0.911133 -0.753906 1.06641c-7.91016 4.89941 -16.7402 4.93945 -20.2295 4.93945c-12 0 -20.46 -7.29004 -20.46 -17.6396c0 -12.46 11.4795 -15.4404 17.8701 -17.1699
-c6.10938 -2 13.1699 -3.26074 13.1699 -8.7002c0 -4 -3.52051 -7.06055 -9.16992 -7.06055c-7.1123 0.015625 -13.708 2.38574 -19 6.35059c-0.175781 0.150391 -0.402344 0.241211 -0.651367 0.241211c-0.535156 0 -0.973633 -0.422852 -0.999023 -0.951172
-l-2.34961 -7.52051c-0.470703 -0.939453 0.229492 -1.17969 0.229492 -1.40918c1.71973 -1.40039 10.3301 -6.59082 22.79 -6.59082h-0.0195312zM357.09 224c0 0.709961 -0.240234 1.17969 -1.17969 1.17969h-11.7598c0 0.140625 0.939453 8.94043 4.46973 12.4707
-c4.16016 4.14941 11.7598 1.63965 12 1.63965c1.16992 -0.469727 1.41016 0 1.63965 0.469727l2.83008 7.77051c0.700195 0.939453 0 1.16992 -0.240234 1.41016c-5.08984 2 -17.3496 2.86914 -24.46 -4.24023c-5.47949 -5.48047 -7 -13.9199 -8 -19.5205h-8.46973
-c-0.624023 -0.0517578 -1.12305 -0.553711 -1.16992 -1.17969l-1.41992 -7.75977c0 -0.700195 0.240234 -1.16992 1.17969 -1.16992h8.23047c-8.50977 -47.9004 -8.75 -50.21 -10.3506 -55.5205c-1.08008 -3.62012 -3.29004 -6.89941 -5.87988 -7.75977
-c-0.0898438 0 -3.87988 -1.67969 -9.63965 0.240234c0 0 -0.94043 0.469727 -1.41016 -0.709961c-0.240234 -0.709961 -2.58984 -6.82031 -2.83008 -7.53027s0 -1.41016 0.469727 -1.41016c5.11035 -2 13 -1.76953 17.8809 0
-c6.2793 2.28027 9.71973 7.88965 11.5293 12.9404c2.75 7.70996 2.81055 9.79004 11.7598 59.7393h12.2305c0.626953 0.0517578 1.12891 0.553711 1.17969 1.18066zM410.48 208c-0.560547 1.67969 -5.10059 18.1104 -25.1709 18.1104c-15.25 0 -23 -10 -25.1592 -18.1104
-c-1 -3 -3.18066 -14 0 -23.5195c0.0898438 -0.300781 4.40918 -18.1201 25.1592 -18.1201c14.9502 0 22.9004 9.60938 25.1709 18.1201c3.20996 9.60938 1.00977 20.5195 0 23.5195zM455.88 224.7c-5 1.64941 -16.6201 1.89941 -22.1104 -5.41016v4.46973
-c0.00195312 0.0214844 0.00195312 0.0419922 0.00195312 0.0634766c0 0.612305 -0.49707 1.11035 -1.10938 1.11035c-0.0244141 0 -0.0478516 -0.00195312 -0.0722656 -0.00390625h-9.39941c-0.0244141 0.00195312 -0.0488281 0.00292969 -0.0732422 0.00292969
-c-0.612305 0 -1.11035 -0.498047 -1.11035 -1.11035c0 -0.0214844 0.00195312 -0.0410156 0.00292969 -0.0625v-55.2793c-0.000976562 -0.0214844 -0.00195312 -0.0419922 -0.00195312 -0.0634766c0 -0.618164 0.501953 -1.11914 1.12012 -1.11914
-c0.0214844 0 0.0410156 0.000976562 0.0625 0.00195312h9.63965c0.0205078 -0.000976562 0.0410156 -0.00195312 0.0625 -0.00195312c0.618164 0 1.12012 0.501953 1.12012 1.12012c0 0.0214844 -0.00195312 0.0410156 -0.00292969 0.0625v27.7695
-c0 2.91016 0.0498047 11.3701 4.45996 15.0498c4.90039 4.90039 12 3.36035 13.4102 3.06055c0.630859 0.0107422 1.1709 0.393555 1.41016 0.939453c1.15918 2.57324 2.19629 5.28125 3.05957 8c0.0517578 0.130859 0.0800781 0.273438 0.0800781 0.422852
-c0 0.416992 -0.21875 0.783203 -0.549805 0.987305v-0.00976562zM502.69 170.6l-2.12012 7.29004c-0.470703 1.18066 -1.41016 0.709961 -1.41016 0.709961c-4.23047 -1.81934 -10.1504 -1.88965 -11.29 -1.88965c-4.63965 0 -17.1699 1.12988 -17.1699 19.7598
-c0 6.23047 1.84961 19.7607 16.4697 19.7607c0.299805 0.00683594 0.601562 0.0107422 0.90332 0.0107422c3.70605 0 7.26562 -0.587891 10.6172 -1.66113c3.35059 -1.07324 0.939453 -0.469727 1.17969 0.709961c0.939453 2.58984 1.63965 4.46973 2.58984 7.53027
-c0.230469 0.939453 -0.469727 1.16992 -0.709961 1.16992c-11.5898 3.87012 -22.3398 2.5293 -27.7598 0c-1.58984 -0.740234 -16.2305 -6.49023 -16.2305 -27.5205c0 -2.89941 -0.580078 -30.1094 28.9404 -30.1094c5.45117 0.0107422 10.6943 1.02051 15.5195 2.83008
-c0.319336 0.236328 0.527344 0.616211 0.527344 1.04395c0 0.130859 -0.0214844 0.256836 -0.0566406 0.375977v-0.0107422zM556.56 210.12c-0.799805 3 -5.36914 16.2295 -22.3496 16.2295c-16 0 -23.5195 -10.1094 -25.6396 -18.5898
-c-1.07129 -3.53906 -1.64746 -7.29199 -1.64746 -11.1787c0 -0.198242 -0.00585938 -0.383789 -0.00292969 -0.581055c0 -25.8701 18.8398 -29.4004 29.8799 -29.4004c10.8203 0 16.46 2.35059 18.5801 3.76074c0.469727 0.239258 0.709961 0.709961 0.240234 1.87988
-l-2.36035 6.83008c-0.200195 0.430664 -0.636719 0.729492 -1.14258 0.729492c-0.0927734 0 -0.180664 -0.0107422 -0.267578 -0.0302734c-2.58984 -0.939453 -6.34961 -2.81934 -15.29 -2.81934c-17.4199 0 -16.8496 14.7402 -16.9297 16.7002h37.1602
-c0.569336 0.0136719 1.04395 0.40918 1.17969 0.939453c-0.239258 0.00976562 0.94043 7.07031 -1.41016 15.54v-0.00976562zM533.27 216.47c5.11035 0 11.8506 -2.2002 12.7305 -14.1201h-26.3701c0.639648 5.12012 3.31055 14.1201 13.6396 14.1201z" />
-    <glyph glyph-name="speaker-deck" unicode="&#xf83c;" horiz-adv-x="512" 
-d="M213.86 152h-113.86c-55.1914 0 -100 44.8086 -100 100s44.8086 100 100 100h132.84c22.0771 0 40 -17.9238 40 -40s-17.9229 -40 -40 -40h-134.84c-26.4697 0 -26.4502 -40 0 -40h113.82c55.1914 0 100 -44.8086 100 -100s-44.8086 -100 -100 -100h-171.82
-c-22.0762 0 -40 17.9238 -40 40s17.9238 40 40 40h173.86c26.4795 0 26.46 40 0 40zM298 32c26.7314 18.1455 45.667 46.8174 51.1104 80h64.5498c10.8652 0.0927734 19.6572 8.94238 19.6572 19.8291c0 0.0585938 0.00292969 0.113281 0.00292969 0.170898v120v0.173828
-c0 10.8867 -8.79492 19.7334 -19.6602 19.8262h-117.24c9.34473 10.6875 15.0088 24.6729 15.0088 39.9697c0 15.2979 -5.66406 29.3428 -15.0088 40.0303h136.93c43.4404 0 78.6504 -35.8203 78.6504 -80v-160c0 -44.1797 -35.21 -80 -78.6504 -80h-135.35z" />
-    <glyph glyph-name="symfony" unicode="&#xf83d;" horiz-adv-x="512" 
-d="M256 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM389.74 296.46c15.3496 0.540039 19.7695 15.4404 19.5195 23.1299c-0.639648 18.0605 -19.6699 29.46 -44.8301 28.6504
-c-1.89941 -0.0703125 -65.2598 3.46973 -102.43 -105.53c-10.0596 8.29004 -57.7695 65.1602 -110.58 25.8096c-18.9502 -14.1797 -31.4199 -47.9199 -2.9502 -79.6699c16.9502 -18.1396 26.7207 -25.3301 22.25 -39.8496c-9.14941 -29.79 -55.5596 -16.1602 -51 -1.38965
-c1.36035 4.38965 3.49023 4.46973 6.28027 13.0693c7.74023 25.3203 -27.1104 37.75 -34.6201 13.6006c-4.32031 -14.0605 2.37988 -39.5107 38.3799 -50.6201c42.1602 -12.96 77.8203 10.0098 82.8799 39.9395c3.2002 18.75 -5.29004 32.6904 -20.7998 50.6201l-12.6299 14
-c-7.66016 7.7002 -10.29 20.7002 -2.37012 30.7002c6.69043 8.45996 16.2002 12.0605 31.8105 7.83008c22.7695 -6.16992 32.9199 -21.9697 49.8496 -34.7197c-1.23047 -4 -10.04 -32.3398 -18.2305 -82c-12.1094 -63.4902 -21.3496 -98.3506 -45.3496 -118.351
-c-4.83984 -3.48926 -11.7598 -8.63965 -22.1797 -9c-1.94043 -0.0595703 -14.1406 2.83984 -2.0498 12.5508c15.2393 8.3291 7.00977 34.75 -14.8809 34c-9.85938 -0.330078 -24.8691 -9.59082 -24.3096 -26.5908c0.580078 -17.5293 16.9297 -30.6895 41.5801 -29.8398
-c13.1797 0.44043 42.5801 5.7998 71.5801 40.2598c39.8496 46.7207 47.4395 102.2 58.2002 161.721c51.6797 -6.11035 77.2393 17.8398 77.5996 35.7002c0.549805 24.2998 -28 23.46 -32 5.2998c-1.91992 -8.83984 13.4199 -16.8105 1.41992 -24.5605
-c-8.49023 -5.5 -23.71 -9.37012 -45.1396 -6.21973c10.2998 56.8496 19.1094 112.56 58.8896 113.85c2.70996 0.150391 12.6396 -0.119141 12.8701 -6.66992c0.150391 -5.41016 -6.7998 -9.66992 -6.53027 -18.8496c0.370117 -10.4199 8.2998 -17.2803 19.7705 -16.8701z
-" />
-    <glyph glyph-name="waze" unicode="&#xf83f;" horiz-adv-x="512" 
-d="M502.17 246.33c14.5205 -85.8604 -30.9395 -167.92 -113.17 -208.13c13 -34.1006 -12.4004 -70.2002 -48.3203 -70.2002c-27.5918 0.0214844 -50.1543 21.752 -51.5693 49c-6.44043 -0.19043 -64.2002 0 -76.3301 0.639648
-c-1.11328 -27.5479 -23.8281 -49.5713 -51.6475 -49.5713c-0.725586 0 -1.41504 -0.0175781 -2.13281 0.0117188c-33.8604 1.36035 -57.9502 34.8398 -47 67.9199c-37.21 13.1104 -72.54 34.8701 -99.6201 70.7998c-13 17.2803 -0.479492 41.7998 20.8398 41.7998
-c46.3105 0 32.2207 54.1699 43.1504 110.261c18.4297 93.9395 116.75 157.14 211.72 157.14c102.48 0 197.15 -70.6699 214.08 -169.67zM373.51 59.7197c42 19.1807 81.3301 56.71 96.29 102.141c40.4805 123.09 -64.1494 228 -181.71 228
-c-83.4502 0 -170.32 -55.4199 -186.07 -136c-9.5293 -48.9102 5 -131.351 -68.75 -131.351c24.9404 -33.1094 58.3301 -52.6201 93.7305 -64.0498c24.6602 21.7998 63.8701 15.4697 79.8301 -14.3398c14.2197 -1 79.1895 -1.17969 87.9004 -0.820312
-c8.5625 16.7266 25.9746 28.1865 46.041 28.1865c12.418 0 23.8223 -4.45703 32.7383 -11.7666zM205.12 260.87c0 34.7402 50.8398 34.75 50.8398 0s-50.8398 -34.7402 -50.8398 0zM321.69 260.87c0 34.7402 50.8594 34.75 50.8594 0s-50.8594 -34.75 -50.8594 0z
-M199.08 190.18c-3.44043 16.9404 22.1797 22.1807 25.6201 5.20996l0.0595703 -0.279297c4.14062 -21.4199 29.8506 -44 64.1201 -43.0703c35.6797 0.94043 59.25 22.21 64.1104 42.7695c4.45996 16.0508 28.5996 10.3604 25.4697 -6
-c-5.22949 -22.1797 -31.21 -62 -91.46 -62.8994c-42.5498 0 -80.8799 27.8398 -87.9004 64.25z" />
-    <glyph glyph-name="yammer" unicode="&#xf840;" horiz-adv-x="512" 
-d="M421.78 295.83c-48.1602 -26.3896 -118.561 -58.1504 -130.2 -50s91.4395 80.3701 106.689 88.7695c0.920898 0.5 1.80078 0.970703 2.63086 1.40039c2.07227 0.612305 4.28125 0.954102 6.55176 0.954102c12.7275 0 23.0605 -10.332 23.0605 -23.0596
-c0 -7.31445 -3.41309 -13.8389 -8.73242 -18.0645zM421.78 78.6602c5.27539 -4.22949 8.64258 -10.7148 8.64258 -17.9961c0 -12.7334 -10.3369 -23.0703 -23.0693 -23.0703c-2.24023 0 -4.40527 0.320312 -6.45312 0.916016
-c-0.830078 0.410156 -1.70996 0.900391 -2.63086 1.41016c-15.2695 8.38965 -118.25 80.6396 -106.689 88.7402c11.5596 8.09961 82.04 -23.6201 130.2 -50zM464.21 211c10.4287 -2.18359 18.2344 -11.4395 18.2344 -22.5127
-c0 -11.4219 -8.34375 -20.9102 -19.2646 -22.6973c-54.9102 0.0195312 -131.93 6.00977 -138.21 18.7598c-6.2793 12.75 118.84 26.5098 136.24 26.5098c1.0498 0 2.0498 -0.0595703 3 -0.0595703zM31 351.35c-0.817383 2.46387 -1.26074 5.09766 -1.26074 7.83496
-c0 13.7314 11.1484 24.8799 24.8799 24.8799c9.96582 0 18.5498 -5.8457 22.5205 -14.3145l81 -205.06h1.20996l77 203.529c3.42188 8.7627 11.9502 14.9775 21.9189 14.9775c12.9805 0 23.5195 -10.5391 23.5195 -23.5195
-c0 -2.33398 -0.353516 -4.59863 -0.988281 -6.72754l-109.6 -273.391c-18.5498 -47.2197 -37.1201 -79.5596 -93.29 -79.5596c-0.185547 -0.000976562 -0.371094 -0.000976562 -0.556641 -0.000976562c-7.9707 0 -15.6465 0.666016 -23.2539 1.95117
-c-8.90723 2.55371 -15.4336 10.7646 -15.4336 20.4883c0 11.7607 9.54883 21.3096 21.3105 21.3096c0.349609 0 0.677734 -0.0117188 1.02344 -0.0283203c0.660156 -0.0595703 10.9102 -0.660156 13.8604 -0.660156c30.4697 0 43.7393 18.9404 58.0693 59.4102z" />
-    <glyph glyph-name="git-alt" unicode="&#xf841;" 
-d="M439.55 211.95c5.22266 -5.22363 8.45508 -12.4463 8.45508 -20.4092s-3.23242 -15.1768 -8.45508 -20.4014l-194.689 -194.689c-5.22363 -5.21973 -12.4443 -8.4502 -20.4043 -8.4502c-7.96094 0 -15.1729 3.23047 -20.3965 8.4502l-195.609 195.6
-c-5.22266 5.22363 -8.45508 12.4463 -8.45508 20.4092s3.23242 15.1768 8.45508 20.4014l134.12 134.14l50.79 -50.8496c-5.95996 -14.2607 -2.16016 -36.4902 18.6396 -45v-123c-22.3203 -9.09082 -28.8203 -38.4004 -11.25 -56
-c6.21582 -6.21191 14.8066 -10.0557 24.2803 -10.0557c9.47266 0 18.0547 3.84375 24.2695 10.0557c13.1807 13.1494 16.2197 42.46 -9.08008 55v121.85l46.3506 -46.29c-14.21 -34.4697 29.5098 -63.8301 56 -37.3398c25.71 25.6895 -1.24023 68.4902 -35.4707 56.6895
-l-49.6592 49.6602c9.29004 26.9102 -16.3301 52.8203 -43.3906 43.6807l-51.5195 51.5195l40.6602 40.6299c5.22461 5.2207 12.4463 8.45117 20.4082 8.45117c7.96289 0 15.1768 -3.23047 20.4014 -8.45117z" />
-    <glyph glyph-name="stackpath" unicode="&#xf842;" 
-d="M244.6 215.6c0 -8.5 -4.25977 -20.4893 -21.3398 -20.4893h-19.6094v41.4697h19.6094c17.1299 0 21.3398 -12.3604 21.3398 -20.9805zM448 416v-448h-448v448h448zM151.3 160.16c0 21.2402 -12.1201 34.54 -46.7197 44.8496c-20.5703 7.41016 -26 10.9102 -26 18.6299
-c0 7.7207 7 14.6104 20.4102 14.6104c14.0898 0 20.79 -8.4502 20.79 -18.3496h30.7002l0.189453 0.569336c0.5 19.5703 -15.0596 41.6504 -51.1201 41.6504c-23.3701 0 -52.5498 -10.75 -52.5498 -38.29c0 -19.4004 9.25 -31.29 50.7402 -44.3701
-c17.2598 -6.15039 21.9102 -10.4004 21.9102 -19.4795c0 -15.2002 -19.1309 -14.2305 -19.4707 -14.2305c-20.3994 0 -25.6494 9.09961 -25.6494 21.9004h-30.7998l-0.180664 -0.560547c-0.679688 -31.3203 28.3799 -45.2197 56.6299 -45.2197
-c29.9805 0 51.1201 13.5498 51.1201 38.29zM276.68 215.79c0 25.2998 -18.4297 45.46 -53.4199 45.46h-51.7793v-138.18h32.1699v47.3594h19.6094c30.25 0 53.4199 15.9502 53.4199 45.3604zM297.94 123l49.0596 138.22h-31.0898l-47.9102 -138.22h29.9404zM404.46 261.22
-h-31.0898l-47.9102 -138.22h29.9404z" />
-    <glyph glyph-name="cotton-bureau" unicode="&#xf89e;" horiz-adv-x="512" 
-d="M474.31 117.59h25.1807c-25.7998 -109.78 -111.4 -173.59 -239.67 -173.59c-154.63 -0.339844 -247.82 92.8604 -247.82 248.18c0 154.63 93 247.82 247.82 247.82c128.399 0 214.06 -63.5098 240.18 -173.61h-25.2598
-c-24.8506 95.6104 -99.9199 148.811 -214.69 148.811c-141.85 0 -223.2 -81.3799 -223.2 -223.2c0 -137.93 76.6699 -218 211.101 -223v49.2002c0 48.1602 -26.5498 74.3896 -74.5498 74.3896c-62.1309 0 -99.4004 37.2803 -99.4004 99.4102
-c0 61.3701 36.5195 98.2803 97.3799 99.0596c30.7402 64.6504 144.24 69.3203 177.24 0c60.8496 -0.779297 97.3799 -37.6895 97.3799 -99.0596c0 -62.0098 -37.2002 -99.21 -99.2002 -99.21c-47.9795 0 -74.3896 -26.3896 -74.3896 -74.3896v-49.1602
-c107.67 3.75977 178.24 56.5 201.899 148.35zM357 265.67c3.7998 -21.0801 11.2695 -104.2 -71.79 -120.75c12.2598 -17.7402 32.9805 -27.3301 61.5898 -27.3301c47.9697 0 74.4004 26.4102 74.4004 74.4102c0 44.6699 -22.8301 70.2197 -64.2002 73.6699zM275.32 168.31
-c72.7803 9.89062 58.5 86.9102 56.2295 97c-72.5596 -10 -58.6895 -86.6592 -56.2295 -97zM260 316l-0.179688 -0.259766c-28.3008 0 -49.1602 -9.66016 -61.5703 -27.3506c28.3701 -5.44922 49.3701 -20.5898 61.5996 -43.4492
-c12.2305 22.8594 33.2305 37.9697 61.5908 43.4492c-12.4404 17.9404 -32.8301 27.6104 -61.4404 27.6104zM188.48 265.28h0.239258c-2.75 -10.0498 -16.1602 -87.1602 56.25 -97c2.41992 10.1895 16.6807 86.4297 -56.4893 97zM173.2 117.59l0.330078 0.0302734
-c28.2998 0 49 9.66992 61.1396 27.2998c-73.0303 14.2197 -78.4004 83.5498 -71.6504 120.75c-41.3594 -3.66992 -64.2197 -29.3096 -64.2197 -73.6699c0 -48.0098 26.4004 -74.4102 74.4004 -74.4102zM226.41 105.2h0.269531
-c14.4902 -7.60059 25.5605 -19.3301 33.5605 -33.8301c7.52734 14.4502 19.1924 26.1982 33.5801 33.8301c-14.4902 8.00977 -26.0508 19.0596 -33.8203 33.5498c-7.60156 -14.3262 -19.2539 -25.9658 -33.5898 -33.5498z" />
-    <glyph glyph-name="buy-n-large" unicode="&#xf8a6;" horiz-adv-x="576" 
-d="M288 416c154.73 0 280.21 -100.32 280.21 -224s-125.479 -224 -280.21 -224s-280.21 100.32 -280.21 224s125.479 224 280.21 224zM202.61 58.8096c61.5498 0.600586 99.4697 24.3604 117.71 61.5205c-35.79 6.4502 -62.9307 37.3096 -62.9307 74.4502
-c0 41.7695 34.3408 75.6494 76.6904 75.6494c0.0117188 0 -0.0234375 -0.00292969 -0.0117188 -0.00292969c5.91797 0 11.6826 -0.666016 17.2217 -1.92676c0.623047 2.21875 1.13281 4.53516 1.5 6.84961c6.92969 44.1904 -14.8496 72.8408 -78 72.8408h-133.44
-l-77.25 -290.74zM358 240.89l-9.4502 -36.75l-15 36.75h-31.3398l-26.6299 -90.3096h37.8301l7.83008 35.6299l11.1895 -35.6299h35.4102l22.1602 90.3096h-32zM503.86 58.8096l21.1992 84.0605h-103.869l53.0498 205.36h-92.5l-21.3301 -82.3506
-c29.3799 -10.5996 50.3799 -38.4102 50.3799 -71.0596c0 -41.7803 -34.3496 -75.6504 -76.6904 -75.6504c-0.0205078 0 0.0380859 -0.00292969 0.0166016 -0.00292969c-3.90137 0 -7.73633 0.28418 -11.4863 0.833008l-15.8398 -61.1904h197.07zM211.7 178.61
-c16.1494 0 29.7002 -7.51074 24.1396 -29.8203c-5.83008 -23.4697 -21.7998 -26.6504 -37.9395 -26.6504h-24.7002l13.7998 56.4707h24.7002zM233 278c18.0703 0 32.2305 1.29004 27.5801 -17.5703c-3.83008 -15.5 -21.21 -30.1396 -39.21 -30.1396h-21.3701l11.6602 47.71
-h21.3398z" />
-    <glyph glyph-name="mdb" unicode="&#xf8ca;" horiz-adv-x="576" 
-d="M17.3701 287.59h46.2998l42.3301 -117.33l40.7002 117.33h45.5098l12.79 -191.59h-45.5303l-4.79004 77.4297l-25.54 -77.4297h-44.71l-27.9297 79.8301l-5.58984 -79.8301h-43.9102zM298.37 287.59c0 0 93.4199 -1.58984 94.2002 -95.7998
-c0.799805 -96.5898 -94.2002 -95.79 -94.2002 -95.79h-47.9004v191.59h47.9004zM297.17 141.13c0 0 47.5996 5.21973 46.7998 51.5205c-0.799805 46.2998 -46.7998 50.5693 -46.7998 50.5693v-102.09zM535.46 215.37c0 0 33.54 -11.96 33.54 -55.1006
-c0 -68.6396 -87 -63.8496 -87 -63.8496h-45.5195v191.58h51.8994s49.7402 1.44043 55.0801 -34.3203c0.416992 -2.75586 0.595703 -5.58203 0.595703 -8.45312c0 -10.9678 -3.15039 -21.2061 -8.5957 -29.8564zM483.56 247.31v-21.5898h12s5.43066 5.33984 4 12
-c-2.42969 11.1807 -16 9.58984 -16 9.58984zM483.46 137.85c0 0 41.04 -4.92969 41.3701 20.7207c0.389648 27.1602 -41.1904 22.4297 -41.1904 22.4297h-0.0800781v-18.2305z" />
-    <glyph glyph-name="orcid" unicode="&#xf8d2;" horiz-adv-x="512" 
-d="M294.75 259.81c58.1299 0 84.6699 -35.2598 84.6699 -76.8994c0 -25.5703 -15.5 -76.9102 -83.1201 -76.9102h-47.4697v153.81h45.9199zM256 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM175.21 79.2402v207.5h-29.8398v-207.5
-h29.8398zM160.29 310.38c10.7832 0.0380859 19.5312 8.78711 19.5703 19.5703c0 10.8008 -8.76953 19.5693 -19.5703 19.5693s-19.5703 -8.76855 -19.5703 -19.5693s8.76953 -19.5703 19.5703 -19.5703zM300 79c68.3799 0 110 50.6104 110.04 103.89
-c0 49.0205 -33.71 103.851 -110.44 103.851h-80.5996v-207.74h81z" />
-    <glyph glyph-name="swift" unicode="&#xf8e1;" 
-d="M448 291.91c0 -5.35059 -0.000976562 -10.7002 0.00878906 -16.0498v-183.771c-0.0292969 -4.50977 -0.0800781 -9.00977 -0.200195 -13.5098c-0.119141 -10.0547 -0.998047 -19.7852 -2.58984 -29.4199c-1.67969 -9.83789 -4.86914 -19.373 -9.21973 -28
-c-9.04004 -17.748 -23.3896 -32.1074 -41.1299 -41.1602c-8.62891 -4.34375 -18.1641 -7.5293 -28 -9.20996c-9.64355 -1.58594 -19.3809 -2.46387 -29.4404 -2.58984c-4.51953 -0.120117 -9.00977 -0.200195 -13.5195 -0.200195h-199.79
-c-4.52051 0.0302734 -9.02051 0.0800781 -13.5205 0.200195c-10.0576 0.120117 -19.792 0.999023 -29.4297 2.58984c-9.83691 1.67871 -19.3711 4.86523 -28 9.20996c-17.7354 9.05566 -32.083 23.4102 -41.1299 41.1504c-4.35059 8.62598 -7.54004 18.1611 -9.21973 28
-c-1.58398 9.63574 -2.45898 19.3662 -2.58008 29.4199c-0.129883 4.50977 -0.209961 9 -0.209961 13.5098v199.83c0.0292969 4.51953 0.0800781 9.00977 0.209961 13.5195c0.109375 10.0479 0.97168 19.7676 2.54004 29.4004c1.68164 9.83691 4.87109 19.3721 9.21973 28
-c4.52637 8.88477 10.3564 16.875 17.3496 23.8496c1.74023 1.7207 3.55078 3.39062 5.43066 5c5.61426 4.80176 11.7549 8.92383 18.3896 12.3203c2.2334 1.11328 4.50391 2.15332 6.81152 3.12012c6.69531 2.73145 13.8994 4.82422 21.21 6.09961
-c7.22656 1.23633 14.5557 2.01855 22.0596 2.32031c2.45996 0.120117 4.91992 0.200195 7.37012 0.269531c4.51953 0.120117 9.00977 0.200195 13.5195 0.200195h199.75c4.52051 -0.0292969 9.01074 -0.0800781 13.5205 -0.200195
-c10.0576 -0.120117 19.792 -0.998047 29.4297 -2.58984c9.83887 -1.67773 19.374 -4.86719 28 -9.21973c17.7559 -9.03711 32.1191 -23.3965 41.1602 -41.1504c4.34668 -8.62891 7.53516 -18.1631 9.21973 -28c1.58301 -9.63672 2.45801 -19.3662 2.58008 -29.4199
-c0.120117 -4.51953 0.200195 -9.00977 0.200195 -13.5195zM378.119 50.9102c4.91016 -9.58008 15.3604 41.1797 -23.1602 88.5801c0.490234 1.68945 1 3.35938 1.44043 5.08984c18.5996 74.0801 -26.79 161.67 -103.58 207.75
-c33.6494 -45.6201 48.5293 -100.87 35.3096 -149.2c-1.16797 -4.21484 -2.58105 -8.44238 -4.16016 -12.4697c-1.72949 1.14941 -3.84961 2.41992 -6.72949 4c0 0 -76.3906 47.1699 -159.181 130.59c-2.16992 2.2002 44.1504 -66.25 96.7207 -121.74
-c-24.7803 13.9004 -93.7803 64.1201 -137.48 104.12c5.58301 -9.18652 11.8184 -17.7773 18.7803 -25.8994c36.4902 -46.2207 84.0898 -103.37 141.09 -147.221c-40 -24.4902 -96.6396 -26.3994 -153 0c-13.8662 6.50977 -26.9756 14.3477 -39.1699 23.3701
-c25.1133 -39.9365 61.6025 -71.4268 105.29 -90.3701c53.3203 -22.9199 106.35 -21.3799 145.85 -0.379883l0.419922 0.25c1.77051 1 3.53027 2 5.25 3c19.0801 9.7998 56.3105 19.46 76.3105 -19.4697z" />
-    <glyph glyph-name="umbraco" unicode="&#xf8e8;" horiz-adv-x="510" 
-d="M255.35 440c136.99 -0.169922 247.83 -111.31 247.65 -248.28c-0.179688 -136.97 -111.15 -247.67 -248 -247.67c-137 0.0703125 -248.07 111.271 -248 248.271c0.139648 136.96 111.36 247.85 248.35 247.68zM400.35 174
-c0.360352 5.24023 0.524414 10.1309 0.524414 15.4619c0 5.12988 -0.169922 10.2197 -0.503906 15.2656c-0.43457 14.9102 -1.64258 29.4004 -3.61035 43.8799c-1.87012 13.2197 -3.56934 22.3799 -5.38965 32c-1.02051 4.87988 -1.28027 6.39941 -1.83008 8.44922
-c-0.506836 2.22461 -2.49805 3.89062 -4.875 3.89062h-0.0253906h-0.819336l-32 -5c-2.37793 -0.385742 -4.20117 -2.44922 -4.20117 -4.93457c0 -0.0224609 0.000976562 -0.0439453 0.000976562 -0.0654297
-c-0.00976562 -0.128906 -0.0146484 -0.249023 -0.0146484 -0.380859c0 -0.130859 0.00488281 -0.260742 0.0146484 -0.389648l1.68945 -8.7793c1.60645 -8.86719 3.23633 -20.0938 4.88965 -33.6807c1.62695 -13.9551 2.49707 -27.7852 2.59961 -42.1494
-c0.266602 -26.9072 -2.44336 -46.834 -8.12988 -59.7803c-5.62891 -12.7627 -17.1777 -22.3076 -31.1504 -25.2305c-16.2686 -3.44336 -32.8506 -5.2627 -50.1387 -5.2627c-2.38477 0 -4.76172 0.0341797 -7.13086 0.103516h-10.25
-c-2.40625 -0.0712891 -4.53223 -0.0996094 -6.95605 -0.0996094c-17.2725 0 -34.127 1.80566 -50.3838 5.23926c-14.0283 2.86719 -25.6377 12.4033 -31.3105 25.1797c-5.60645 12.9336 -8.31641 32.877 -8.12988 59.8301
-c0.101562 14.3672 0.986328 28.2021 2.64062 42.1504c1.62012 13.6201 3.2334 24.8467 4.83984 33.6797l1.7002 8.78027c0.00976562 0.128906 0.0146484 0.249023 0.0146484 0.379883c0 0.131836 -0.00488281 0.261719 -0.0146484 0.389648
-c0 0.00488281 -0.00488281 0.00878906 -0.00488281 0.0126953c0 2.48633 -1.79297 4.55664 -4.15527 4.9873l-32 5h-0.69043c-2.37402 -0.0214844 -4.3623 -1.6748 -4.89941 -3.88965c-0.540039 -2.03027 -0.820312 -3.57031 -1.82031 -8.4502
-c-1.83008 -9.41992 -3.52051 -18.6094 -5.40039 -32c-1.95898 -14.4814 -3.16406 -28.9697 -3.59961 -43.8799c-0.351562 -5.13867 -0.530273 -9.93066 -0.530273 -15.1582s0.178711 -10.4131 0.530273 -15.5518c0.766602 -27.0928 5.43359 -48.7598 14 -65
-c8.57324 -16.2061 23.0801 -27.873 43.5195 -35c20.4404 -7.12695 48.9209 -10.6172 85.4414 -10.4697h4.59961c36.5605 -0.15332 65.0439 3.33691 85.4502 10.4707c20.4336 7.12012 34.9365 18.7871 43.5098 35.001s13.2402 37.8809 14 65.001z" />
-  </font>
-</defs></svg>
diff --git a/web/static/webfonts/fa-brands-400.ttf b/web/static/webfonts/fa-brands-400.ttf
index f071825144b..227f022db56 100644
Binary files a/web/static/webfonts/fa-brands-400.ttf and b/web/static/webfonts/fa-brands-400.ttf differ
diff --git a/web/static/webfonts/fa-brands-400.woff b/web/static/webfonts/fa-brands-400.woff
deleted file mode 100644
index 277ab65bb45..00000000000
Binary files a/web/static/webfonts/fa-brands-400.woff and /dev/null differ
diff --git a/web/static/webfonts/fa-brands-400.woff2 b/web/static/webfonts/fa-brands-400.woff2
index 47805d47131..73c5c129404 100644
Binary files a/web/static/webfonts/fa-brands-400.woff2 and b/web/static/webfonts/fa-brands-400.woff2 differ
diff --git a/web/static/webfonts/fa-regular-400.eot b/web/static/webfonts/fa-regular-400.eot
deleted file mode 100644
index bef9f7226c2..00000000000
Binary files a/web/static/webfonts/fa-regular-400.eot and /dev/null differ
diff --git a/web/static/webfonts/fa-regular-400.svg b/web/static/webfonts/fa-regular-400.svg
deleted file mode 100644
index bccc256b913..00000000000
--- a/web/static/webfonts/fa-regular-400.svg
+++ /dev/null
@@ -1,801 +0,0 @@
-<?xml version="1.0" standalone="no"?>
-<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN" "http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd" >
-<svg xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" version="1.1">
-<metadata>
-Created by FontForge 20200314 at Mon Oct  5 09:50:45 2020
- By Robert Madole
-Copyright (c) Font Awesome
-</metadata>
-<!-- Font Awesome Free 5.15.1 by @fontawesome - https://fontawesome.com License - https://fontawesome.com/license/free (Icons: CC BY 4.0, Fonts: SIL OFL 1.1, Code: MIT License) --><defs>
-<font id="FontAwesome5Free-Regular" horiz-adv-x="512" >
-  <font-face 
-    font-family="Font Awesome 5 Free Regular"
-    font-weight="400"
-    font-stretch="normal"
-    units-per-em="512"
-    panose-1="2 0 5 3 0 0 0 0 0 0"
-    ascent="448"
-    descent="-64"
-    bbox="-0.0663408 -64.0662 640.004 448.1"
-    underline-thickness="25"
-    underline-position="-50"
-    unicode-range="U+0020-F5C8"
-  />
-    <missing-glyph />
-    <glyph glyph-name="heart" unicode="&#xf004;" 
-d="M458.4 383.7c75.2998 -63.4004 64.0996 -166.601 10.5996 -221.3l-175.4 -178.7c-10 -10.2002 -23.2998 -15.7998 -37.5996 -15.7998c-14.2002 0 -27.5996 5.69922 -37.5996 15.8994l-175.4 178.7c-53.5996 54.7002 -64.5996 157.9 10.5996 221.2
-c57.8008 48.7002 147.101 41.2998 202.4 -15c55.2998 56.2998 144.6 63.5996 202.4 15zM434.8 196.2c36.2002 36.8994 43.7998 107.7 -7.2998 150.8c-38.7002 32.5996 -98.7002 27.9004 -136.5 -10.5996l-35 -35.7002l-35 35.7002
-c-37.5996 38.2998 -97.5996 43.1992 -136.5 10.5c-51.2002 -43.1006 -43.7998 -113.5 -7.2998 -150.7l175.399 -178.7c2.40039 -2.40039 4.40039 -2.40039 6.80078 0z" />
-    <glyph glyph-name="star" unicode="&#xf005;" horiz-adv-x="576" 
-d="M528.1 276.5c26.2002 -3.7998 36.7002 -36.0996 17.7002 -54.5996l-105.7 -103l25 -145.5c4.5 -26.3008 -23.1992 -45.9004 -46.3994 -33.7002l-130.7 68.7002l-130.7 -68.7002c-23.2002 -12.2998 -50.8994 7.39941 -46.3994 33.7002l25 145.5l-105.7 103
-c-19 18.5 -8.5 50.7998 17.7002 54.5996l146.1 21.2998l65.2998 132.4c11.7998 23.8994 45.7002 23.5996 57.4004 0l65.2998 -132.4zM388.6 135.7l100.601 98l-139 20.2002l-62.2002 126l-62.2002 -126l-139 -20.2002l100.601 -98l-23.7002 -138.4l124.3 65.2998
-l124.3 -65.2998z" />
-    <glyph glyph-name="user" unicode="&#xf007;" horiz-adv-x="448" 
-d="M313.6 144c74.2002 0 134.4 -60.2002 134.4 -134.4v-25.5996c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v25.5996c0 74.2002 60.2002 134.4 134.4 134.4c28.7998 0 42.5 -16 89.5996 -16s60.9004 16 89.5996 16zM400 -16v25.5996
-c0 47.6006 -38.7998 86.4004 -86.4004 86.4004c-14.6992 0 -37.8994 -16 -89.5996 -16c-51.2998 0 -75 16 -89.5996 16c-47.6006 0 -86.4004 -38.7998 -86.4004 -86.4004v-25.5996h352zM224 160c-79.5 0 -144 64.5 -144 144s64.5 144 144 144s144 -64.5 144 -144
-s-64.5 -144 -144 -144zM224 400c-52.9004 0 -96 -43.0996 -96 -96s43.0996 -96 96 -96s96 43.0996 96 96s-43.0996 96 -96 96z" />
-    <glyph glyph-name="clock" unicode="&#xf017;" 
-d="M256 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM256 -8c110.5 0 200 89.5 200 200s-89.5 200 -200 200s-200 -89.5 -200 -200s89.5 -200 200 -200zM317.8 96.4004l-84.8994 61.6992
-c-3.10059 2.30078 -4.90039 5.90039 -4.90039 9.7002v164.2c0 6.59961 5.40039 12 12 12h32c6.59961 0 12 -5.40039 12 -12v-141.7l66.7998 -48.5996c5.40039 -3.90039 6.5 -11.4004 2.60059 -16.7998l-18.8008 -25.9004c-3.89941 -5.2998 -11.3994 -6.5 -16.7998 -2.59961z
-" />
-    <glyph glyph-name="list-alt" unicode="&#xf022;" 
-d="M464 416c26.5098 0 48 -21.4902 48 -48v-352c0 -26.5098 -21.4902 -48 -48 -48h-416c-26.5098 0 -48 21.4902 -48 48v352c0 26.5098 21.4902 48 48 48h416zM458 16c3.31152 0 6 2.68848 6 6v340c0 3.31152 -2.68848 6 -6 6h-404c-3.31152 0 -6 -2.68848 -6 -6v-340
-c0 -3.31152 2.68848 -6 6 -6h404zM416 108v-24c0 -6.62695 -5.37305 -12 -12 -12h-200c-6.62695 0 -12 5.37305 -12 12v24c0 6.62695 5.37305 12 12 12h200c6.62695 0 12 -5.37305 12 -12zM416 204v-24c0 -6.62695 -5.37305 -12 -12 -12h-200c-6.62695 0 -12 5.37305 -12 12
-v24c0 6.62695 5.37305 12 12 12h200c6.62695 0 12 -5.37305 12 -12zM416 300v-24c0 -6.62695 -5.37305 -12 -12 -12h-200c-6.62695 0 -12 5.37305 -12 12v24c0 6.62695 5.37305 12 12 12h200c6.62695 0 12 -5.37305 12 -12zM164 288c0 -19.8818 -16.1182 -36 -36 -36
-s-36 16.1182 -36 36s16.1182 36 36 36s36 -16.1182 36 -36zM164 192c0 -19.8818 -16.1182 -36 -36 -36s-36 16.1182 -36 36s16.1182 36 36 36s36 -16.1182 36 -36zM164 96c0 -19.8818 -16.1182 -36 -36 -36s-36 16.1182 -36 36s16.1182 36 36 36s36 -16.1182 36 -36z" />
-    <glyph glyph-name="flag" unicode="&#xf024;" 
-d="M336.174 368c35.4668 0 73.0195 12.6914 108.922 28.1797c31.6406 13.6514 66.9043 -9.65723 66.9043 -44.1162v-239.919c0 -16.1953 -8.1543 -31.3057 -21.7129 -40.1631c-26.5762 -17.3643 -70.0693 -39.9814 -128.548 -39.9814c-68.6084 0 -112.781 32 -161.913 32
-c-56.5674 0 -89.957 -11.2803 -127.826 -28.5566v-83.4434c0 -8.83691 -7.16309 -16 -16 -16h-16c-8.83691 0 -16 7.16309 -16 16v406.438c-14.3428 8.2998 -24 23.7979 -24 41.5615c0 27.5693 23.2422 49.71 51.2012 47.8965
-c22.9658 -1.49023 41.8662 -19.4717 44.4805 -42.3379c0.213867 -1.83398 0.308594 -3.65918 0.308594 -5.5498c0 -5.30273 -0.860352 -10.4053 -2.4502 -15.1768c22.418 8.68555 49.4199 15.168 80.7207 15.168c68.6084 0 112.781 -32 161.913 -32zM464 112v240
-c-31.5059 -14.6338 -84.5547 -32 -127.826 -32c-59.9111 0 -101.968 32 -161.913 32c-41.4365 0 -80.4766 -16.5879 -102.261 -32v-232c31.4473 14.5967 84.4648 24 127.826 24c59.9111 0 101.968 -32 161.913 -32c41.4365 0 80.4775 16.5879 102.261 32z" />
-    <glyph glyph-name="bookmark" unicode="&#xf02e;" horiz-adv-x="384" 
-d="M336 448c26.5098 0 48 -21.4902 48 -48v-464l-192 112l-192 -112v464c0 26.5098 21.4902 48 48 48h288zM336 19.5703v374.434c0 3.31348 -2.68555 5.99609 -6 5.99609h-276c-3.31152 0 -6 -2.68848 -6 -6v-374.43l144 84z" />
-    <glyph glyph-name="image" unicode="&#xf03e;" 
-d="M464 384c26.5098 0 48 -21.4902 48 -48v-288c0 -26.5098 -21.4902 -48 -48 -48h-416c-26.5098 0 -48 21.4902 -48 48v288c0 26.5098 21.4902 48 48 48h416zM458 48c3.31152 0 6 2.68848 6 6v276c0 3.31152 -2.68848 6 -6 6h-404c-3.31152 0 -6 -2.68848 -6 -6v-276
-c0 -3.31152 2.68848 -6 6 -6h404zM128 296c22.0908 0 40 -17.9092 40 -40s-17.9092 -40 -40 -40s-40 17.9092 -40 40s17.9092 40 40 40zM96 96v48l39.5137 39.5146c4.6875 4.68652 12.2852 4.68652 16.9717 0l39.5146 -39.5146l119.514 119.515
-c4.6875 4.68652 12.2852 4.68652 16.9717 0l87.5146 -87.5146v-80h-320z" />
-    <glyph glyph-name="edit" unicode="&#xf044;" horiz-adv-x="576" 
-d="M402.3 103.1l32 32c5 5 13.7002 1.5 13.7002 -5.69922v-145.4c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h273.5c7.09961 0 10.7002 -8.59961 5.7002 -13.7002l-32 -32c-1.5 -1.5 -3.5 -2.2998 -5.7002 -2.2998h-241.5v-352h352
-v113.5c0 2.09961 0.799805 4.09961 2.2998 5.59961zM558.9 304.9l-262.601 -262.601l-90.3994 -10c-26.2002 -2.89941 -48.5 19.2002 -45.6006 45.6006l10 90.3994l262.601 262.601c22.8994 22.8994 59.8994 22.8994 82.6992 0l43.2002 -43.2002
-c22.9004 -22.9004 22.9004 -60 0.100586 -82.7998zM460.1 274l-58.0996 58.0996l-185.8 -185.899l-7.2998 -65.2998l65.2998 7.2998zM524.9 353.7l-43.2002 43.2002c-4.10059 4.09961 -10.7998 4.09961 -14.7998 0l-30.9004 -30.9004l58.0996 -58.0996l30.9004 30.8994
-c4 4.2002 4 10.7998 -0.0996094 14.9004z" />
-    <glyph glyph-name="times-circle" unicode="&#xf057;" 
-d="M256 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM256 -8c110.5 0 200 89.5 200 200s-89.5 200 -200 200s-200 -89.5 -200 -200s89.5 -200 200 -200zM357.8 254.2l-62.2002 -62.2002l62.2002 -62.2002
-c4.7002 -4.7002 4.7002 -12.2998 0 -17l-22.5996 -22.5996c-4.7002 -4.7002 -12.2998 -4.7002 -17 0l-62.2002 62.2002l-62.2002 -62.2002c-4.7002 -4.7002 -12.2998 -4.7002 -17 0l-22.5996 22.5996c-4.7002 4.7002 -4.7002 12.2998 0 17l62.2002 62.2002l-62.2002 62.2002
-c-4.7002 4.7002 -4.7002 12.2998 0 17l22.5996 22.5996c4.7002 4.7002 12.2998 4.7002 17 0l62.2002 -62.2002l62.2002 62.2002c4.7002 4.7002 12.2998 4.7002 17 0l22.5996 -22.5996c4.7002 -4.7002 4.7002 -12.2998 0 -17z" />
-    <glyph glyph-name="check-circle" unicode="&#xf058;" 
-d="M256 440c136.967 0 248 -111.033 248 -248s-111.033 -248 -248 -248s-248 111.033 -248 248s111.033 248 248 248zM256 392c-110.549 0 -200 -89.4678 -200 -200c0 -110.549 89.4678 -200 200 -200c110.549 0 200 89.4678 200 200c0 110.549 -89.4678 200 -200 200z
-M396.204 261.733c4.66699 -4.70508 4.63672 -12.3037 -0.0673828 -16.9717l-172.589 -171.204c-4.70508 -4.66797 -12.3027 -4.63672 -16.9697 0.0683594l-90.7812 91.5156c-4.66797 4.70605 -4.63672 12.3047 0.0683594 16.9717l22.7188 22.5361
-c4.70508 4.66699 12.3027 4.63574 16.9697 -0.0693359l59.792 -60.2773l141.353 140.216c4.70508 4.66797 12.3027 4.6377 16.9697 -0.0673828z" />
-    <glyph glyph-name="question-circle" unicode="&#xf059;" 
-d="M256 440c136.957 0 248 -111.083 248 -248c0 -136.997 -111.043 -248 -248 -248s-248 111.003 -248 248c0 136.917 111.043 248 248 248zM256 -8c110.569 0 200 89.4697 200 200c0 110.529 -89.5088 200 -200 200c-110.528 0 -200 -89.5049 -200 -200
-c0 -110.569 89.4678 -200 200 -200zM363.244 247.2c0 -67.0518 -72.4209 -68.084 -72.4209 -92.8633v-6.33691c0 -6.62695 -5.37305 -12 -12 -12h-45.6475c-6.62695 0 -12 5.37305 -12 12v8.65918c0 35.7451 27.1006 50.0342 47.5791 61.5156
-c17.5615 9.84473 28.3242 16.541 28.3242 29.5791c0 17.2461 -21.999 28.6934 -39.7842 28.6934c-23.1885 0 -33.8936 -10.9775 -48.9424 -29.9697c-4.05664 -5.11914 -11.46 -6.07031 -16.666 -2.12402l-27.8232 21.0986
-c-5.10742 3.87207 -6.25098 11.0654 -2.64453 16.3633c23.627 34.6934 53.7217 54.1846 100.575 54.1846c49.0713 0 101.45 -38.3037 101.45 -88.7998zM298 80c0 -23.1592 -18.8408 -42 -42 -42s-42 18.8408 -42 42s18.8408 42 42 42s42 -18.8408 42 -42z" />
-    <glyph glyph-name="eye" unicode="&#xf06e;" horiz-adv-x="576" 
-d="M288 304c0.114258 0 0.240234 -0.0175781 0.354492 -0.0175781c61.6543 0 111.71 -50.0557 111.71 -111.71s-50.0557 -111.71 -111.71 -111.71s-111.71 50.0557 -111.71 111.71c0 10.7422 1.51953 21.1328 4.35547 30.9678
-c7.95898 -4.52637 17.2129 -7.17188 27 -7.24023c30.9072 0 56 25.0928 56 56c-0.0683594 9.78711 -2.71387 19.041 -7.24023 27c9.88379 3.07617 20.3896 4.83008 31.2402 5zM572.52 206.6c2.21387 -4.37793 3.46094 -9.38965 3.46094 -14.626
-c0 -5.2373 -1.24707 -10.1855 -3.46094 -14.5635c-54.1992 -105.771 -161.59 -177.41 -284.52 -177.41s-230.29 71.5898 -284.52 177.4c-2.21387 4.37793 -3.46094 9.38965 -3.46094 14.626c0 5.2373 1.24707 10.1855 3.46094 14.5635
-c54.1992 105.771 161.59 177.41 284.52 177.41s230.29 -71.5898 284.52 -177.4zM288 48c98.6602 0 189.1 55 237.93 144c-48.8398 89 -139.27 144 -237.93 144s-189.09 -55 -237.93 -144c48.8398 -89 139.279 -144 237.93 -144z" />
-    <glyph glyph-name="eye-slash" unicode="&#xf070;" horiz-adv-x="640" 
-d="M634 -23c3.66895 -2.93262 6.00391 -7.45117 6.00391 -12.5088c0 -3.7832 -1.31543 -7.26074 -3.51367 -10.001l-10 -12.4902c-2.93359 -3.66309 -7.44824 -5.99414 -12.502 -5.99414c-3.77637 0 -7.25 1.31152 -9.98828 3.50391l-598 467.49
-c-3.66895 2.93262 -6.00391 7.45117 -6.00391 12.5088c0 3.7832 1.31543 7.26074 3.51367 10.001l10 12.4902c2.93359 3.66309 7.44824 5.99414 12.502 5.99414c3.77637 0 7.25 -1.31152 9.98828 -3.50391zM296.79 301.53c7.51172 1.60254 15.2266 2.45508 23.21 2.46973
-c60.4805 0 109.36 -47.9102 111.58 -107.85zM343.21 82.46c-7.51367 -1.59375 -15.2285 -2.44336 -23.21 -2.45996c-60.4697 0 -109.35 47.9102 -111.58 107.84zM320 336c-19.8799 0 -39.2803 -2.7998 -58.2197 -7.09961l-46.4102 36.29
-c32.9199 11.8096 67.9297 18.8096 104.63 18.8096c122.93 0 230.29 -71.5898 284.57 -177.4c2.21289 -4.37793 3.45996 -9.38965 3.45996 -14.626c0 -5.2373 -1.24707 -10.1855 -3.45996 -14.5635c-14.1924 -27.5625 -31.9229 -52.6689 -52.9004 -75.1104l-37.7402 29.5
-c17.2305 18.0527 31.9385 38.1318 44 60.2002c-48.8398 89 -139.279 144 -237.93 144zM320 48c19.8896 0 39.2803 2.7998 58.2197 7.08984l46.4102 -36.2803c-32.9199 -11.7598 -67.9297 -18.8096 -104.63 -18.8096c-122.92 0 -230.28 71.5898 -284.51 177.4
-c-2.21387 4.37793 -3.46094 9.38965 -3.46094 14.626c0 5.2373 1.24707 10.1855 3.46094 14.5635c14.1885 27.5586 31.916 52.6621 52.8896 75.1006l37.7402 -29.5c-17.249 -18.0469 -31.9727 -38.1221 -44.0498 -60.1904c48.8496 -89 139.279 -144 237.93 -144z" />
-    <glyph glyph-name="calendar-alt" unicode="&#xf073;" horiz-adv-x="448" 
-d="M148 160h-40c-6.59961 0 -12 5.40039 -12 12v40c0 6.59961 5.40039 12 12 12h40c6.59961 0 12 -5.40039 12 -12v-40c0 -6.59961 -5.40039 -12 -12 -12zM256 172c0 -6.59961 -5.40039 -12 -12 -12h-40c-6.59961 0 -12 5.40039 -12 12v40c0 6.59961 5.40039 12 12 12h40
-c6.59961 0 12 -5.40039 12 -12v-40zM352 172c0 -6.59961 -5.40039 -12 -12 -12h-40c-6.59961 0 -12 5.40039 -12 12v40c0 6.59961 5.40039 12 12 12h40c6.59961 0 12 -5.40039 12 -12v-40zM256 76c0 -6.59961 -5.40039 -12 -12 -12h-40c-6.59961 0 -12 5.40039 -12 12v40
-c0 6.59961 5.40039 12 12 12h40c6.59961 0 12 -5.40039 12 -12v-40zM160 76c0 -6.59961 -5.40039 -12 -12 -12h-40c-6.59961 0 -12 5.40039 -12 12v40c0 6.59961 5.40039 12 12 12h40c6.59961 0 12 -5.40039 12 -12v-40zM352 76c0 -6.59961 -5.40039 -12 -12 -12h-40
-c-6.59961 0 -12 5.40039 -12 12v40c0 6.59961 5.40039 12 12 12h40c6.59961 0 12 -5.40039 12 -12v-40zM448 336v-352c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h48v52c0 6.59961 5.40039 12 12 12h40
-c6.59961 0 12 -5.40039 12 -12v-52h128v52c0 6.59961 5.40039 12 12 12h40c6.59961 0 12 -5.40039 12 -12v-52h48c26.5 0 48 -21.5 48 -48zM400 -10v298h-352v-298c0 -3.2998 2.7002 -6 6 -6h340c3.2998 0 6 2.7002 6 6z" />
-    <glyph glyph-name="comment" unicode="&#xf075;" 
-d="M256 416c141.4 0 256 -93.0996 256 -208s-114.6 -208 -256 -208c-32.7998 0 -64 5.2002 -92.9004 14.2998c-29.0996 -20.5996 -77.5996 -46.2998 -139.1 -46.2998c-9.59961 0 -18.2998 5.7002 -22.0996 14.5c-3.80078 8.7998 -2 19 4.59961 26
-c0.5 0.400391 31.5 33.7998 46.4004 73.2002c-33 35.0996 -52.9004 78.7002 -52.9004 126.3c0 114.9 114.6 208 256 208zM256 48c114.7 0 208 71.7998 208 160s-93.2998 160 -208 160s-208 -71.7998 -208 -160c0 -42.2002 21.7002 -74.0996 39.7998 -93.4004
-l20.6006 -21.7998l-10.6006 -28.0996c-5.5 -14.5 -12.5996 -28.1006 -19.8994 -40.2002c23.5996 7.59961 43.1992 18.9004 57.5 29l19.5 13.7998l22.6992 -7.2002c25.3008 -8 51.7002 -12.0996 78.4004 -12.0996z" />
-    <glyph glyph-name="folder" unicode="&#xf07b;" 
-d="M464 320c26.5098 0 48 -21.4902 48 -48v-224c0 -26.5098 -21.4902 -48 -48 -48h-416c-26.5098 0 -48 21.4902 -48 48v288c0 26.5098 21.4902 48 48 48h146.74c8.49023 0 16.6299 -3.37012 22.6299 -9.37012l54.6299 -54.6299h192zM464 48v224h-198.62
-c-8.49023 0 -16.6299 3.37012 -22.6299 9.37012l-54.6299 54.6299h-140.12v-288h416z" />
-    <glyph glyph-name="folder-open" unicode="&#xf07c;" horiz-adv-x="576" 
-d="M527.9 224c37.6992 0 60.6992 -41.5 40.6992 -73.4004l-79.8994 -128c-8.7998 -14.0996 -24.2002 -22.5996 -40.7002 -22.5996h-400c-26.5 0 -48 21.5 -48 48v288c0 26.5 21.5 48 48 48h160l64 -64h160c26.5 0 48 -21.5 48 -48v-48h47.9004zM48 330v-233.4l62.9004 104.2
-c8.69922 14.4004 24.2998 23.2002 41.0996 23.2002h280v42c0 3.2998 -2.7002 6 -6 6h-173.9l-64 64h-134.1c-3.2998 0 -6 -2.7002 -6 -6zM448 48l80 128h-378.8l-77.2002 -128h376z" />
-    <glyph glyph-name="chart-bar" unicode="&#xf080;" 
-d="M396.8 96c-6.39941 0 -12.7998 6.40039 -12.7998 12.7998v230.4c0 6.39941 6.40039 12.7998 12.7998 12.7998h22.4004c6.39941 0 12.7998 -6.40039 12.7998 -12.7998v-230.4c0 -6.39941 -6.40039 -12.7998 -12.7998 -12.7998h-22.4004zM204.8 96
-c-6.39941 0 -12.7998 6.40039 -12.7998 12.7998v198.4c0 6.39941 6.40039 12.7998 12.7998 12.7998h22.4004c6.39941 0 12.7998 -6.40039 12.7998 -12.7998v-198.4c0 -6.39941 -6.40039 -12.7998 -12.7998 -12.7998h-22.4004zM300.8 96
-c-6.39941 0 -12.7998 6.40039 -12.7998 12.7998v134.4c0 6.39941 6.40039 12.7998 12.7998 12.7998h22.4004c6.39941 0 12.7998 -6.40039 12.7998 -12.7998v-134.4c0 -6.39941 -6.40039 -12.7998 -12.7998 -12.7998h-22.4004zM496 48c8.83984 0 16 -7.16016 16 -16v-16
-c0 -8.83984 -7.16016 -16 -16 -16h-464c-17.6699 0 -32 14.3301 -32 32v336c0 8.83984 7.16016 16 16 16h16c8.83984 0 16 -7.16016 16 -16v-320h448zM108.8 96c-6.39941 0 -12.7998 6.40039 -12.7998 12.7998v70.4004c0 6.39941 6.40039 12.7998 12.7998 12.7998h22.4004
-c6.39941 0 12.7998 -6.40039 12.7998 -12.7998v-70.4004c0 -6.39941 -6.40039 -12.7998 -12.7998 -12.7998h-22.4004z" />
-    <glyph glyph-name="comments" unicode="&#xf086;" horiz-adv-x="576" 
-d="M532 61.7998c15.2998 -30.7002 37.4004 -54.5 37.7998 -54.7998c6.2998 -6.7002 8 -16.5 4.40039 -25c-3.7002 -8.5 -12 -14 -21.2002 -14c-53.5996 0 -96.7002 20.2998 -125.2 38.7998c-19 -4.39941 -39 -6.7998 -59.7998 -6.7998
-c-86.2002 0 -159.9 40.4004 -191.3 97.7998c-9.7002 1.2002 -19.2002 2.7998 -28.4004 4.90039c-28.5 -18.6006 -71.7002 -38.7998 -125.2 -38.7998c-9.19922 0 -17.5996 5.5 -21.1992 14c-3.7002 8.5 -1.90039 18.2998 4.39941 25
-c0.400391 0.399414 22.4004 24.1992 37.7002 54.8994c-27.5 27.2002 -44 61.2002 -44 98.2002c0 88.4004 93.0996 160 208 160c86.2998 0 160.3 -40.5 191.8 -98.0996c99.7002 -11.8008 176.2 -77.9004 176.2 -157.9c0 -37.0996 -16.5 -71.0996 -44 -98.2002zM139.2 154.1
-l19.7998 -4.5c16 -3.69922 32.5 -5.59961 49 -5.59961c86.7002 0 160 51.2998 160 112s-73.2998 112 -160 112s-160 -51.2998 -160 -112c0 -28.7002 16.2002 -50.5996 29.7002 -64l24.7998 -24.5l-15.5 -31.0996c-2.59961 -5.10059 -5.2998 -10.1006 -8 -14.8008
-c14.5996 5.10059 29 12.3008 43.0996 21.4004zM498.3 96c13.5 13.4004 29.7002 35.2998 29.7002 64c0 49.2002 -48.2998 91.5 -112.7 106c0.299805 -3.2998 0.700195 -6.59961 0.700195 -10c0 -80.9004 -78 -147.5 -179.3 -158.3
-c29.0996 -29.6006 77.2998 -49.7002 131.3 -49.7002c16.5 0 33 1.90039 49 5.59961l19.9004 4.60059l17.0996 -11.1006c14.0996 -9.09961 28.5 -16.2998 43.0996 -21.3994c-2.69922 4.7002 -5.39941 9.7002 -8 14.7998l-15.5 31.0996z" />
-    <glyph glyph-name="star-half" unicode="&#xf089;" horiz-adv-x="576" 
-d="M288 62.7002v-54.2998l-130.7 -68.6006c-23.3994 -12.2998 -50.8994 7.60059 -46.3994 33.7002l25 145.5l-105.7 103c-19 18.5 -8.5 50.7998 17.7002 54.5996l146.1 21.2002l65.2998 132.4c5.90039 11.8994 17.2998 17.7998 28.7002 17.7998v-68.0996l-62.2002 -126
-l-139 -20.2002l100.601 -98l-23.7002 -138.4z" />
-    <glyph glyph-name="lemon" unicode="&#xf094;" 
-d="M484.112 420.111c28.1221 -28.123 35.9434 -68.0039 19.0215 -97.0547c-23.0576 -39.584 50.1436 -163.384 -82.3311 -295.86c-132.301 -132.298 -256.435 -59.3594 -295.857 -82.3291c-29.0459 -16.917 -68.9219 -9.11426 -97.0576 19.0205
-c-28.1221 28.1221 -35.9434 68.0029 -19.0215 97.0547c23.0566 39.5859 -50.1436 163.386 82.3301 295.86c132.308 132.309 256.407 59.3496 295.862 82.332c29.0498 16.9219 68.9307 9.09863 97.0537 -19.0234zM461.707 347.217
-c13.5166 23.2031 -27.7578 63.7314 -50.4883 50.4912c-66.6025 -38.7939 -165.646 45.5898 -286.081 -74.8457c-120.444 -120.445 -36.0449 -219.472 -74.8447 -286.08c-13.542 -23.2471 27.8145 -63.6953 50.4932 -50.4883
-c66.6006 38.7949 165.636 -45.5996 286.076 74.8428c120.444 120.445 36.0449 219.472 74.8447 286.08zM291.846 338.481c1.37012 -10.96 -6.40332 -20.957 -17.3643 -22.3271c-54.8467 -6.85547 -135.779 -87.7871 -142.636 -142.636
-c-1.37305 -10.9883 -11.3984 -18.7334 -22.3262 -17.3643c-10.9609 1.37012 -18.7344 11.3652 -17.3643 22.3262c9.16211 73.2852 104.167 168.215 177.364 177.364c10.9531 1.36816 20.9561 -6.40234 22.3262 -17.3633z" />
-    <glyph glyph-name="credit-card" unicode="&#xf09d;" horiz-adv-x="576" 
-d="M527.9 416c26.5996 0 48.0996 -21.5 48.0996 -48v-352c0 -26.5 -21.5 -48 -48.0996 -48h-479.801c-26.5996 0 -48.0996 21.5 -48.0996 48v352c0 26.5 21.5 48 48.0996 48h479.801zM54.0996 368c-3.2998 0 -6 -2.7002 -6 -6v-42h479.801v42c0 3.2998 -2.7002 6 -6 6
-h-467.801zM521.9 16c3.2998 0 6 2.7002 6 6v170h-479.801v-170c0 -3.2998 2.7002 -6 6 -6h467.801zM192 116v-40c0 -6.59961 -5.40039 -12 -12 -12h-72c-6.59961 0 -12 5.40039 -12 12v40c0 6.59961 5.40039 12 12 12h72c6.59961 0 12 -5.40039 12 -12zM384 116v-40
-c0 -6.59961 -5.40039 -12 -12 -12h-136c-6.59961 0 -12 5.40039 -12 12v40c0 6.59961 5.40039 12 12 12h136c6.59961 0 12 -5.40039 12 -12z" />
-    <glyph glyph-name="hdd" unicode="&#xf0a0;" horiz-adv-x="576" 
-d="M567.403 212.358c5.59668 -8.04688 8.59668 -17.6113 8.59668 -27.4121v-136.946c0 -26.5098 -21.4902 -48 -48 -48h-480c-26.5098 0 -48 21.4902 -48 48v136.946c0 10.167 3.19531 19.6465 8.59668 27.4121l105.08 151.053
-c8.67383 12.4678 23.0791 20.5889 39.4043 20.5889h269.838c16.3252 0 30.7305 -8.12109 39.4043 -20.5889zM153.081 336l-77.9131 -112h425.664l-77.9131 112h-269.838zM528 48v128h-480v-128h480zM496 112c0 -17.6729 -14.3271 -32 -32 -32s-32 14.3271 -32 32
-s14.3271 32 32 32s32 -14.3271 32 -32zM400 112c0 -17.6729 -14.3271 -32 -32 -32s-32 14.3271 -32 32s14.3271 32 32 32s32 -14.3271 32 -32z" />
-    <glyph glyph-name="hand-point-right" unicode="&#xf0a4;" 
-d="M428.8 310.4c45.0996 0 83.2002 -38.1016 83.2002 -83.2002c0 -45.6162 -37.7646 -83.2002 -83.2002 -83.2002h-35.6475c-1.71387 -7.70605 -4.43555 -15.2051 -7.92969 -22.0645c2.50586 -22.0059 -3.50293 -44.9775 -15.9844 -62.791
-c-1.14062 -52.4863 -37.3984 -91.1445 -99.9404 -91.1445h-21.2988c-60.0635 0 -98.5117 40 -127.2 40h-2.67871c-5.74707 -4.95215 -13.5361 -8 -22.1201 -8h-64c-17.6729 0 -32 12.8936 -32 28.7998v230.4c0 15.9062 14.3271 28.7998 32 28.7998h64.001
-c8.58398 0 16.373 -3.04785 22.1201 -8h2.67871c6.96387 0 14.8623 6.19336 30.1816 23.6689l0.128906 0.148438l0.130859 0.145508c8.85645 9.93652 18.1162 20.8398 25.8506 33.2529c18.7051 30.2471 30.3936 78.7842 75.707 78.7842c56.9277 0 92 -35.2861 92 -83.2002
-c0 -0.0283203 0 0.0361328 0 0.0078125c0 -7.66602 -0.748047 -15.1582 -2.17578 -22.4072h86.1768zM428.8 192c18.9756 0 35.2002 16.2246 35.2002 35.2002c0 18.7002 -16.7754 35.2002 -35.2002 35.2002h-158.399c0 17.3242 26.3994 35.1992 26.3994 70.3994
-c0 26.4004 -20.625 35.2002 -44 35.2002c-8.79395 0 -20.4443 -32.7119 -34.9258 -56.0996c-9.07422 -14.5752 -19.5244 -27.2256 -30.7988 -39.875c-16.1094 -18.374 -33.8359 -36.6328 -59.0752 -39.5967v-176.753c42.79 -3.7627 74.5088 -39.6758 120 -39.6758h21.2988
-c40.5244 0 57.124 22.1973 50.6006 61.3252c14.6113 8.00098 24.1514 33.9785 12.9248 53.625c19.3652 18.2246 17.7871 46.3809 4.9502 61.0498h91.0254zM88 64c0 13.2549 -10.7451 24 -24 24s-24 -10.7451 -24 -24s10.7451 -24 24 -24s24 10.7451 24 24z" />
-    <glyph glyph-name="hand-point-left" unicode="&#xf0a5;" 
-d="M0 227.2c0 45.0986 38.1006 83.2002 83.2002 83.2002h86.1758c-1.3623 6.91016 -2.17578 14.374 -2.17578 22.3994c0 47.9141 35.0723 83.2002 92 83.2002c45.3135 0 57.002 -48.5371 75.7061 -78.7852c7.73438 -12.4121 16.9951 -23.3154 25.8506 -33.2529
-l0.130859 -0.145508l0.128906 -0.148438c15.3213 -17.4746 23.2197 -23.668 30.1836 -23.668h2.67871c5.74707 4.95215 13.5361 8 22.1201 8h64c17.6729 0 32 -12.8936 32 -28.7998v-230.4c0 -15.9062 -14.3271 -28.7998 -32 -28.7998h-64
-c-8.58398 0 -16.373 3.04785 -22.1201 8h-2.67871c-28.6885 0 -67.1367 -40 -127.2 -40h-21.2988c-62.542 0 -98.8008 38.6582 -99.9404 91.1445c-12.4814 17.8135 -18.4922 40.7852 -15.9844 62.791c-3.49414 6.85938 -6.21582 14.3584 -7.92969 22.0645h-35.6465
-c-45.4355 0 -83.2002 37.584 -83.2002 83.2002zM48 227.2c0 -18.9756 16.2246 -35.2002 35.2002 -35.2002h91.0244c-12.8369 -14.6689 -14.415 -42.8252 4.9502 -61.0498c-11.2256 -19.6465 -1.68652 -45.624 12.9248 -53.625
-c-6.52246 -39.1279 10.0771 -61.3252 50.6016 -61.3252h21.2988c45.4912 0 77.21 35.9131 120 39.6768v176.752c-25.2393 2.96289 -42.9658 21.2227 -59.0752 39.5967c-11.2744 12.6494 -21.7246 25.2998 -30.7988 39.875
-c-14.4814 23.3877 -26.1318 56.0996 -34.9258 56.0996c-23.375 0 -44 -8.7998 -44 -35.2002c0 -35.2002 26.3994 -53.0752 26.3994 -70.3994h-158.399c-18.4248 0 -35.2002 -16.5 -35.2002 -35.2002zM448 88c-13.2549 0 -24 -10.7451 -24 -24s10.7451 -24 24 -24
-s24 10.7451 24 24s-10.7451 24 -24 24z" />
-    <glyph glyph-name="hand-point-up" unicode="&#xf0a6;" horiz-adv-x="448" 
-d="M105.6 364.8c0 45.0996 38.1016 83.2002 83.2002 83.2002c45.6162 0 83.2002 -37.7646 83.2002 -83.2002v-35.6465c7.70605 -1.71387 15.2051 -4.43555 22.0645 -7.92969c22.0059 2.50684 44.9775 -3.50293 62.791 -15.9844
-c52.4863 -1.14062 91.1445 -37.3984 91.1445 -99.9404v-21.2988c0 -60.0635 -40 -98.5117 -40 -127.2v-2.67871c4.95215 -5.74707 8 -13.5361 8 -22.1201v-64c0 -17.6729 -12.8936 -32 -28.7998 -32h-230.4c-15.9062 0 -28.7998 14.3271 -28.7998 32v64
-c0 8.58398 3.04785 16.373 8 22.1201v2.67871c0 6.96387 -6.19336 14.8623 -23.6689 30.1816l-0.148438 0.128906l-0.145508 0.130859c-9.93652 8.85645 -20.8398 18.1162 -33.2529 25.8506c-30.2471 18.7051 -78.7842 30.3936 -78.7842 75.707
-c0 56.9277 35.2861 92 83.2002 92c0.0283203 0 -0.0361328 0 -0.0078125 0c7.66602 0 15.1582 -0.748047 22.4072 -2.17578v86.1768zM224 364.8c0 18.9756 -16.2246 35.2002 -35.2002 35.2002c-18.7002 0 -35.2002 -16.7754 -35.2002 -35.2002v-158.399
-c-17.3242 0 -35.1992 26.3994 -70.3994 26.3994c-26.4004 0 -35.2002 -20.625 -35.2002 -44c0 -8.79395 32.7119 -20.4443 56.0996 -34.9258c14.5752 -9.07422 27.2256 -19.5244 39.875 -30.7988c18.374 -16.1094 36.6328 -33.8359 39.5967 -59.0752h176.753
-c3.7627 42.79 39.6758 74.5088 39.6758 120v21.2988c0 40.5244 -22.1973 57.124 -61.3252 50.6006c-8.00098 14.6113 -33.9785 24.1514 -53.625 12.9248c-18.2246 19.3652 -46.3809 17.7871 -61.0498 4.9502v91.0254zM352 24c-13.2549 0 -24 -10.7451 -24 -24
-s10.7451 -24 24 -24s24 10.7451 24 24s-10.7451 24 -24 24z" />
-    <glyph glyph-name="hand-point-down" unicode="&#xf0a7;" horiz-adv-x="448" 
-d="M188.8 -64c-45.0986 0 -83.2002 38.1006 -83.2002 83.2002v86.1758c-6.91016 -1.3623 -14.374 -2.17578 -22.3994 -2.17578c-47.9141 0 -83.2002 35.0723 -83.2002 92c0 45.3135 48.5371 57.002 78.7852 75.707c12.4121 7.73438 23.3154 16.9951 33.2529 25.8506
-l0.145508 0.130859l0.148438 0.128906c17.4746 15.3213 23.668 23.2197 23.668 30.1836v2.67871c-4.95215 5.74707 -8 13.5361 -8 22.1201v64c0 17.6729 12.8936 32 28.7998 32h230.4c15.9062 0 28.7998 -14.3271 28.7998 -32v-64.001
-c0 -8.58398 -3.04785 -16.373 -8 -22.1201v-2.67871c0 -28.6885 40 -67.1367 40 -127.2v-21.2988c0 -62.542 -38.6582 -98.8008 -91.1445 -99.9404c-17.8135 -12.4814 -40.7852 -18.4922 -62.791 -15.9844c-6.85938 -3.49414 -14.3584 -6.21582 -22.0645 -7.92969v-35.6465
-c0 -45.4355 -37.584 -83.2002 -83.2002 -83.2002zM188.8 -16c18.9756 0 35.2002 16.2246 35.2002 35.2002v91.0244c14.6689 -12.8369 42.8252 -14.415 61.0498 4.9502c19.6465 -11.2256 45.624 -1.68652 53.625 12.9248c39.1279 -6.52246 61.3252 10.0771 61.3252 50.6016
-v21.2988c0 45.4912 -35.9131 77.21 -39.6768 120h-176.752c-2.96289 -25.2393 -21.2227 -42.9658 -39.5967 -59.0752c-12.6494 -11.2744 -25.2998 -21.7246 -39.875 -30.7988c-23.3877 -14.4814 -56.0996 -26.1318 -56.0996 -34.9258c0 -23.375 8.7998 -44 35.2002 -44
-c35.2002 0 53.0752 26.3994 70.3994 26.3994v-158.399c0 -18.4248 16.5 -35.2002 35.2002 -35.2002zM328 384c0 -13.2549 10.7451 -24 24 -24s24 10.7451 24 24s-10.7451 24 -24 24s-24 -10.7451 -24 -24z" />
-    <glyph glyph-name="copy" unicode="&#xf0c5;" horiz-adv-x="448" 
-d="M433.941 382.059c8.68848 -8.68848 14.0586 -20.6943 14.0586 -33.9404v-268.118c0 -26.5098 -21.4902 -48 -48 -48h-80v-48c0 -26.5098 -21.4902 -48 -48 -48h-224c-26.5098 0 -48 21.4902 -48 48v320c0 26.5098 21.4902 48 48 48h80v48c0 26.5098 21.4902 48 48 48
-h172.118c13.2461 0 25.252 -5.37012 33.9404 -14.0586zM266 -16c3.31152 0 6 2.68848 6 6v42h-96c-26.5098 0 -48 21.4902 -48 48v224h-74c-3.31152 0 -6 -2.68848 -6 -6v-308c0 -3.31152 2.68848 -6 6 -6h212zM394 80c3.31152 0 6 2.68848 6 6v202h-88
-c-13.2549 0 -24 10.7451 -24 24v88h-106c-3.31152 0 -6 -2.68848 -6 -6v-308c0 -3.31152 2.68848 -6 6 -6h212zM400 336v9.63184c0 1.65527 -0.670898 3.15723 -1.75684 4.24316l-48.3682 48.3682c-1.12598 1.125 -2.65234 1.75684 -4.24316 1.75684h-9.63184v-64h64z" />
-    <glyph glyph-name="save" unicode="&#xf0c7;" horiz-adv-x="448" 
-d="M433.941 318.059c8.68848 -8.68848 14.0586 -20.6943 14.0586 -33.9404v-268.118c0 -26.5098 -21.4902 -48 -48 -48h-352c-26.5098 0 -48 21.4902 -48 48v352c0 26.5098 21.4902 48 48 48h268.118c13.2461 0 25.252 -5.37012 33.9404 -14.0586zM272 368h-128v-80h128v80z
-M394 16c3.31152 0 6 2.68848 6 6v259.632c0 1.65527 -0.670898 3.15723 -1.75684 4.24316l-78.2432 78.2432v-100.118c0 -13.2549 -10.7451 -24 -24 -24h-176c-13.2549 0 -24 10.7451 -24 24v104h-42c-3.31152 0 -6 -2.68848 -6 -6v-340c0 -3.31152 2.68848 -6 6 -6h340z
-M224 216c48.5234 0 88 -39.4766 88 -88s-39.4766 -88 -88 -88s-88 39.4766 -88 88s39.4766 88 88 88zM224 88c22.0557 0 40 17.9443 40 40s-17.9443 40 -40 40s-40 -17.9443 -40 -40s17.9443 -40 40 -40z" />
-    <glyph glyph-name="square" unicode="&#xf0c8;" horiz-adv-x="448" 
-d="M400 416c26.5 0 48 -21.5 48 -48v-352c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h352zM394 16c3.2998 0 6 2.7002 6 6v340c0 3.2998 -2.7002 6 -6 6h-340c-3.2998 0 -6 -2.7002 -6 -6v-340c0 -3.2998 2.7002 -6 6 -6h340z" />
-    <glyph glyph-name="envelope" unicode="&#xf0e0;" 
-d="M464 384c26.5098 0 48 -21.4902 48 -48v-288c0 -26.5098 -21.4902 -48 -48 -48h-416c-26.5098 0 -48 21.4902 -48 48v288c0 26.5098 21.4902 48 48 48h416zM464 336h-416v-40.8047c22.4248 -18.2627 58.1797 -46.6602 134.587 -106.49
-c16.834 -13.2422 50.2051 -45.0762 73.4131 -44.7012c23.2119 -0.371094 56.5723 31.4541 73.4131 44.7012c76.4189 59.8389 112.165 88.2305 134.587 106.49v40.8047zM48 48h416v185.601c-22.915 -18.252 -55.4189 -43.8691 -104.947 -82.6523
-c-22.5439 -17.748 -60.3359 -55.1787 -103.053 -54.9473c-42.9277 -0.231445 -81.2051 37.75 -103.062 54.9551c-49.5293 38.7842 -82.0244 64.3945 -104.938 82.6455v-185.602z" />
-    <glyph glyph-name="lightbulb" unicode="&#xf0eb;" horiz-adv-x="352" 
-d="M176 368c8.83984 0 16 -7.16016 16 -16s-7.16016 -16 -16 -16c-35.2803 0 -64 -28.7002 -64 -64c0 -8.83984 -7.16016 -16 -16 -16s-16 7.16016 -16 16c0 52.9404 43.0596 96 96 96zM96.0596 -11.1699l-0.0400391 43.1797h159.961l-0.0507812 -43.1797
-c-0.00976562 -3.13965 -0.939453 -6.21973 -2.67969 -8.83984l-24.5098 -36.8398c-2.95996 -4.45996 -7.95996 -7.14062 -13.3203 -7.14062h-78.8496c-5.35059 0 -10.3506 2.68066 -13.3203 7.14062l-24.5098 36.8398c-1.75 2.62012 -2.68066 5.68945 -2.68066 8.83984z
-M176 448c97.2002 0 176 -78.7998 176 -176c0 -44.3701 -16.4502 -84.8496 -43.5498 -115.79c-16.6406 -18.9795 -42.7402 -58.79 -52.4199 -92.1602v-0.0498047h-48v0.0996094c0.00488281 4.98145 0.790039 9.78809 2.21973 14.3008
-c5.67969 17.9893 22.9902 64.8496 62.0996 109.46c20.4102 23.29 31.6504 53.1699 31.6504 84.1396c0 70.5801 -57.4199 128 -128 128c-68.2803 0 -128.15 -54.3604 -127.95 -128c0.0898438 -30.9902 11.0703 -60.71 31.6104 -84.1396
-c39.3496 -44.9004 56.5801 -91.8604 62.1699 -109.67c1.42969 -4.56055 2.13965 -9.30078 2.15039 -14.0703v-0.120117h-48v0.0595703c-9.68066 33.3604 -35.7803 73.1709 -52.4209 92.1602c-27.1094 30.9307 -43.5596 71.4102 -43.5596 115.78
-c0 93.0303 73.7197 176 176 176z" />
-    <glyph glyph-name="bell" unicode="&#xf0f3;" horiz-adv-x="448" 
-d="M439.39 85.71c6 -6.44043 8.66016 -14.1602 8.61035 -21.71c-0.0996094 -16.4004 -12.9805 -32 -32.0996 -32h-383.801c-19.1191 0 -31.9893 15.5996 -32.0996 32c-0.0498047 7.5498 2.61035 15.2598 8.61035 21.71c19.3193 20.7598 55.4697 51.9902 55.4697 154.29
-c0 77.7002 54.4795 139.9 127.939 155.16v20.8398c0 17.6699 14.3203 32 31.9805 32s31.9805 -14.3301 31.9805 -32v-20.8398c73.46 -15.2598 127.939 -77.46 127.939 -155.16c0 -102.3 36.1504 -133.53 55.4697 -154.29zM67.5303 80h312.939
-c-21.2197 27.96 -44.4199 74.3203 -44.5293 159.42c0 0.200195 0.0595703 0.379883 0.0595703 0.580078c0 61.8604 -50.1396 112 -112 112s-112 -50.1396 -112 -112c0 -0.200195 0.0595703 -0.379883 0.0595703 -0.580078
-c-0.109375 -85.0898 -23.3096 -131.45 -44.5293 -159.42zM224 -64c-35.3203 0 -63.9697 28.6504 -63.9697 64h127.939c0 -35.3496 -28.6494 -64 -63.9697 -64z" />
-    <glyph glyph-name="hospital" unicode="&#xf0f8;" horiz-adv-x="448" 
-d="M128 204v40c0 6.62695 5.37305 12 12 12h40c6.62695 0 12 -5.37305 12 -12v-40c0 -6.62695 -5.37305 -12 -12 -12h-40c-6.62695 0 -12 5.37305 -12 12zM268 192c-6.62695 0 -12 5.37305 -12 12v40c0 6.62695 5.37305 12 12 12h40c6.62695 0 12 -5.37305 12 -12v-40
-c0 -6.62695 -5.37305 -12 -12 -12h-40zM192 108c0 -6.62695 -5.37305 -12 -12 -12h-40c-6.62695 0 -12 5.37305 -12 12v40c0 6.62695 5.37305 12 12 12h40c6.62695 0 12 -5.37305 12 -12v-40zM268 96c-6.62695 0 -12 5.37305 -12 12v40c0 6.62695 5.37305 12 12 12h40
-c6.62695 0 12 -5.37305 12 -12v-40c0 -6.62695 -5.37305 -12 -12 -12h-40zM448 -28v-36h-448v36c0 6.62695 5.37305 12 12 12h19.5v378.965c0 11.6172 10.7451 21.0352 24 21.0352h88.5v40c0 13.2549 10.7451 24 24 24h112c13.2549 0 24 -10.7451 24 -24v-40h88.5
-c13.2549 0 24 -9.41797 24 -21.0352v-378.965h19.5c6.62695 0 12 -5.37305 12 -12zM79.5 -15h112.5v67c0 6.62695 5.37305 12 12 12h40c6.62695 0 12 -5.37305 12 -12v-67h112.5v351h-64.5v-24c0 -13.2549 -10.7451 -24 -24 -24h-112c-13.2549 0 -24 10.7451 -24 24v24
-h-64.5v-351zM266 384h-26v26c0 3.31152 -2.68848 6 -6 6h-20c-3.31152 0 -6 -2.68848 -6 -6v-26h-26c-3.31152 0 -6 -2.68848 -6 -6v-20c0 -3.31152 2.68848 -6 6 -6h26v-26c0 -3.31152 2.68848 -6 6 -6h20c3.31152 0 6 2.68848 6 6v26h26c3.31152 0 6 2.68848 6 6v20
-c0 3.31152 -2.68848 6 -6 6z" />
-    <glyph glyph-name="plus-square" unicode="&#xf0fe;" horiz-adv-x="448" 
-d="M352 208v-32c0 -6.59961 -5.40039 -12 -12 -12h-88v-88c0 -6.59961 -5.40039 -12 -12 -12h-32c-6.59961 0 -12 5.40039 -12 12v88h-88c-6.59961 0 -12 5.40039 -12 12v32c0 6.59961 5.40039 12 12 12h88v88c0 6.59961 5.40039 12 12 12h32c6.59961 0 12 -5.40039 12 -12
-v-88h88c6.59961 0 12 -5.40039 12 -12zM448 368v-352c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h352c26.5 0 48 -21.5 48 -48zM400 22v340c0 3.2998 -2.7002 6 -6 6h-340c-3.2998 0 -6 -2.7002 -6 -6v-340
-c0 -3.2998 2.7002 -6 6 -6h340c3.2998 0 6 2.7002 6 6z" />
-    <glyph glyph-name="circle" unicode="&#xf111;" 
-d="M256 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM256 -8c110.5 0 200 89.5 200 200s-89.5 200 -200 200s-200 -89.5 -200 -200s89.5 -200 200 -200z" />
-    <glyph glyph-name="smile" unicode="&#xf118;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM248 -8c110.3 0 200 89.7002 200 200s-89.7002 200 -200 200s-200 -89.7002 -200 -200s89.7002 -200 200 -200zM168 208c-17.7002 0 -32 14.2998 -32 32s14.2998 32 32 32
-s32 -14.2998 32 -32s-14.2998 -32 -32 -32zM328 208c-17.7002 0 -32 14.2998 -32 32s14.2998 32 32 32s32 -14.2998 32 -32s-14.2998 -32 -32 -32zM332 135.4c8.5 10.1992 23.7002 11.5 33.7998 3.09961c10.2002 -8.5 11.6006 -23.5996 3.10059 -33.7998
-c-30 -36 -74.1006 -56.6006 -120.9 -56.6006s-90.9004 20.6006 -120.9 56.6006c-8.39941 10.2002 -7.09961 25.2998 3.10059 33.7998c10.0996 8.40039 25.2998 7.09961 33.7998 -3.09961c20.7998 -25.1006 51.5 -39.4004 84 -39.4004s63.2002 14.4004 84 39.4004z" />
-    <glyph glyph-name="frown" unicode="&#xf119;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM248 -8c110.3 0 200 89.7002 200 200s-89.7002 200 -200 200s-200 -89.7002 -200 -200s89.7002 -200 200 -200zM168 208c-17.7002 0 -32 14.2998 -32 32s14.2998 32 32 32
-s32 -14.2998 32 -32s-14.2998 -32 -32 -32zM328 272c17.7002 0 32 -14.2998 32 -32s-14.2998 -32 -32 -32s-32 14.2998 -32 32s14.2998 32 32 32zM248 144c40.2002 0 78 -17.7002 103.8 -48.5996c8.40039 -10.2002 7.10059 -25.3008 -3.09961 -33.8008
-c-10.7002 -8.7998 -25.7002 -6.59961 -33.7998 3.10059c-16.6006 20 -41 31.3994 -66.9004 31.3994s-50.2998 -11.5 -66.9004 -31.3994c-8.5 -10.2002 -23.5996 -11.5 -33.7998 -3.10059c-10.2002 8.5 -11.5996 23.6006 -3.09961 33.8008
-c25.7998 30.8994 63.5996 48.5996 103.8 48.5996z" />
-    <glyph glyph-name="meh" unicode="&#xf11a;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM248 -8c110.3 0 200 89.7002 200 200s-89.7002 200 -200 200s-200 -89.7002 -200 -200s89.7002 -200 200 -200zM168 208c-17.7002 0 -32 14.2998 -32 32s14.2998 32 32 32
-s32 -14.2998 32 -32s-14.2998 -32 -32 -32zM328 272c17.7002 0 32 -14.2998 32 -32s-14.2998 -32 -32 -32s-32 14.2998 -32 32s14.2998 32 32 32zM336 128c13.2002 0 24 -10.7998 24 -24s-10.7998 -24 -24 -24h-176c-13.2002 0 -24 10.7998 -24 24s10.7998 24 24 24h176z
-" />
-    <glyph glyph-name="keyboard" unicode="&#xf11c;" horiz-adv-x="576" 
-d="M528 384c26.5098 0 48 -21.4902 48 -48v-288c0 -26.5098 -21.4902 -48 -48 -48h-480c-26.5098 0 -48 21.4902 -48 48v288c0 26.5098 21.4902 48 48 48h480zM536 48v288c0 4.41113 -3.58887 8 -8 8h-480c-4.41113 0 -8 -3.58887 -8 -8v-288c0 -4.41113 3.58887 -8 8 -8
-h480c4.41113 0 8 3.58887 8 8zM170 178c0 -6.62695 -5.37305 -12 -12 -12h-28c-6.62695 0 -12 5.37305 -12 12v28c0 6.62695 5.37305 12 12 12h28c6.62695 0 12 -5.37305 12 -12v-28zM266 178c0 -6.62695 -5.37305 -12 -12 -12h-28c-6.62695 0 -12 5.37305 -12 12v28
-c0 6.62695 5.37305 12 12 12h28c6.62695 0 12 -5.37305 12 -12v-28zM362 178c0 -6.62695 -5.37305 -12 -12 -12h-28c-6.62695 0 -12 5.37305 -12 12v28c0 6.62695 5.37305 12 12 12h28c6.62695 0 12 -5.37305 12 -12v-28zM458 178c0 -6.62695 -5.37305 -12 -12 -12h-28
-c-6.62695 0 -12 5.37305 -12 12v28c0 6.62695 5.37305 12 12 12h28c6.62695 0 12 -5.37305 12 -12v-28zM122 96c0 -6.62695 -5.37305 -12 -12 -12h-28c-6.62695 0 -12 5.37305 -12 12v28c0 6.62695 5.37305 12 12 12h28c6.62695 0 12 -5.37305 12 -12v-28zM506 96
-c0 -6.62695 -5.37305 -12 -12 -12h-28c-6.62695 0 -12 5.37305 -12 12v28c0 6.62695 5.37305 12 12 12h28c6.62695 0 12 -5.37305 12 -12v-28zM122 260c0 -6.62695 -5.37305 -12 -12 -12h-28c-6.62695 0 -12 5.37305 -12 12v28c0 6.62695 5.37305 12 12 12h28
-c6.62695 0 12 -5.37305 12 -12v-28zM218 260c0 -6.62695 -5.37305 -12 -12 -12h-28c-6.62695 0 -12 5.37305 -12 12v28c0 6.62695 5.37305 12 12 12h28c6.62695 0 12 -5.37305 12 -12v-28zM314 260c0 -6.62695 -5.37305 -12 -12 -12h-28c-6.62695 0 -12 5.37305 -12 12v28
-c0 6.62695 5.37305 12 12 12h28c6.62695 0 12 -5.37305 12 -12v-28zM410 260c0 -6.62695 -5.37305 -12 -12 -12h-28c-6.62695 0 -12 5.37305 -12 12v28c0 6.62695 5.37305 12 12 12h28c6.62695 0 12 -5.37305 12 -12v-28zM506 260c0 -6.62695 -5.37305 -12 -12 -12h-28
-c-6.62695 0 -12 5.37305 -12 12v28c0 6.62695 5.37305 12 12 12h28c6.62695 0 12 -5.37305 12 -12v-28zM408 102c0 -6.62695 -5.37305 -12 -12 -12h-216c-6.62695 0 -12 5.37305 -12 12v16c0 6.62695 5.37305 12 12 12h216c6.62695 0 12 -5.37305 12 -12v-16z" />
-    <glyph glyph-name="calendar" unicode="&#xf133;" horiz-adv-x="448" 
-d="M400 384c26.5 0 48 -21.5 48 -48v-352c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h48v52c0 6.59961 5.40039 12 12 12h40c6.59961 0 12 -5.40039 12 -12v-52h128v52c0 6.59961 5.40039 12 12 12h40c6.59961 0 12 -5.40039 12 -12
-v-52h48zM394 -16c3.2998 0 6 2.7002 6 6v298h-352v-298c0 -3.2998 2.7002 -6 6 -6h340z" />
-    <glyph glyph-name="play-circle" unicode="&#xf144;" 
-d="M371.7 210c16.3994 -9.2002 16.3994 -32.9004 0 -42l-176 -101c-15.9004 -8.7998 -35.7002 2.59961 -35.7002 21v208c0 18.5 19.9004 29.7998 35.7002 21zM504 192c0 -137 -111 -248 -248 -248s-248 111 -248 248s111 248 248 248s248 -111 248 -248zM56 192
-c0 -110.5 89.5 -200 200 -200s200 89.5 200 200s-89.5 200 -200 200s-200 -89.5 -200 -200z" />
-    <glyph glyph-name="minus-square" unicode="&#xf146;" horiz-adv-x="448" 
-d="M108 164c-6.59961 0 -12 5.40039 -12 12v32c0 6.59961 5.40039 12 12 12h232c6.59961 0 12 -5.40039 12 -12v-32c0 -6.59961 -5.40039 -12 -12 -12h-232zM448 368v-352c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h352
-c26.5 0 48 -21.5 48 -48zM400 22v340c0 3.2998 -2.7002 6 -6 6h-340c-3.2998 0 -6 -2.7002 -6 -6v-340c0 -3.2998 2.7002 -6 6 -6h340c3.2998 0 6 2.7002 6 6z" />
-    <glyph glyph-name="check-square" unicode="&#xf14a;" horiz-adv-x="448" 
-d="M400 416c26.5098 0 48 -21.4902 48 -48v-352c0 -26.5098 -21.4902 -48 -48 -48h-352c-26.5098 0 -48 21.4902 -48 48v352c0 26.5098 21.4902 48 48 48h352zM400 16v352h-352v-352h352zM364.136 257.724l-172.589 -171.204
-c-4.70508 -4.66699 -12.3027 -4.63672 -16.9697 0.0683594l-90.7812 91.5156c-4.66699 4.70508 -4.63672 12.3037 0.0693359 16.9717l22.7188 22.5361c4.70508 4.66699 12.3027 4.63672 16.9697 -0.0693359l59.792 -60.2773l141.353 140.217
-c4.70508 4.66699 12.3027 4.63672 16.9697 -0.0683594l22.5361 -22.7178c4.66699 -4.70605 4.63672 -12.3047 -0.0683594 -16.9717z" />
-    <glyph glyph-name="share-square" unicode="&#xf14d;" horiz-adv-x="576" 
-d="M561.938 289.94c18.75 -18.7402 18.75 -49.1406 0 -67.8809l-143.998 -144c-29.9727 -29.9727 -81.9404 -9.05273 -81.9404 33.9404v53.7998c-101.266 -7.83691 -99.625 -31.6406 -84.1104 -78.7598c14.2285 -43.0889 -33.4736 -79.248 -71.0195 -55.7402
-c-51.6924 32.3057 -84.8701 83.0635 -84.8701 144.76c0 39.3408 12.2197 72.7402 36.3301 99.3008c19.8398 21.8398 47.7402 38.4697 82.9102 49.4199c36.7295 11.4395 78.3096 16.1094 120.76 17.9893v57.1982c0 42.9355 51.9258 63.9541 81.9404 33.9404zM384 112l144 144
-l-144 144v-104.09c-110.86 -0.90332 -240 -10.5166 -240 -119.851c0 -52.1396 32.79 -85.6094 62.3096 -104.06c-39.8174 120.65 48.999 141.918 177.69 143.84v-103.84zM408.74 27.5068c7.4375 2.125 14.5508 5.30566 20.9736 9.30273
-c7.97656 4.95215 18.2861 -0.825195 18.2861 -10.2139v-42.5957c0 -26.5098 -21.4902 -48 -48 -48h-352c-26.5098 0 -48 21.4902 -48 48v352c0 26.5098 21.4902 48 48 48h132c6.62695 0 12 -5.37305 12 -12v-4.48633c0 -4.91699 -2.9873 -9.36914 -7.56934 -11.1514
-c-13.7021 -5.33105 -26.3955 -11.5371 -38.0498 -18.585c-1.82715 -1.11523 -3.98633 -1.76953 -6.28027 -1.77734h-86.1006c-3.31152 0 -6 -2.68848 -6 -6v-340c0 -3.31152 2.68848 -6 6 -6h340c3.31152 0 6 2.68848 6 6v25.9658c0 5.37012 3.5791 10.0596 8.74023 11.541z
-" />
-    <glyph glyph-name="compass" unicode="&#xf14e;" horiz-adv-x="496" 
-d="M347.94 318.14c16.6592 7.61035 33.8096 -9.54004 26.1992 -26.1992l-65.9697 -144.341c-3.19238 -6.9834 -8.78613 -12.5771 -15.7695 -15.7695l-144.341 -65.9697c-16.6592 -7.61035 -33.8096 9.5498 -26.1992 26.1992l65.9697 144.341
-c3.19238 6.9834 8.78613 12.5771 15.7695 15.7695zM270.58 169.42c12.4697 12.4697 12.4697 32.6904 0 45.1602s-32.6904 12.4697 -45.1602 0s-12.4697 -32.6904 0 -45.1602s32.6904 -12.4697 45.1602 0zM248 440c136.97 0 248 -111.03 248 -248s-111.03 -248 -248 -248
-s-248 111.03 -248 248s111.03 248 248 248zM248 -8c110.28 0 200 89.7197 200 200s-89.7197 200 -200 200s-200 -89.7197 -200 -200s89.7197 -200 200 -200z" />
-    <glyph glyph-name="caret-square-down" unicode="&#xf150;" horiz-adv-x="448" 
-d="M125.1 240h197.801c10.6992 0 16.0996 -13 8.5 -20.5l-98.9004 -98.2998c-4.7002 -4.7002 -12.2002 -4.7002 -16.9004 0l-98.8994 98.2998c-7.7002 7.5 -2.2998 20.5 8.39941 20.5zM448 368v-352c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352
-c0 26.5 21.5 48 48 48h352c26.5 0 48 -21.5 48 -48zM400 22v340c0 3.2998 -2.7002 6 -6 6h-340c-3.2998 0 -6 -2.7002 -6 -6v-340c0 -3.2998 2.7002 -6 6 -6h340c3.2998 0 6 2.7002 6 6z" />
-    <glyph glyph-name="caret-square-up" unicode="&#xf151;" horiz-adv-x="448" 
-d="M322.9 144h-197.801c-10.6992 0 -16.0996 13 -8.5 20.5l98.9004 98.2998c4.7002 4.7002 12.2002 4.7002 16.9004 0l98.8994 -98.2998c7.7002 -7.5 2.2998 -20.5 -8.39941 -20.5zM448 368v-352c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352
-c0 26.5 21.5 48 48 48h352c26.5 0 48 -21.5 48 -48zM400 22v340c0 3.2998 -2.7002 6 -6 6h-340c-3.2998 0 -6 -2.7002 -6 -6v-340c0 -3.2998 2.7002 -6 6 -6h340c3.2998 0 6 2.7002 6 6z" />
-    <glyph glyph-name="caret-square-right" unicode="&#xf152;" horiz-adv-x="448" 
-d="M176 93.0996v197.801c0 10.6992 13 16.0996 20.5 8.5l98.2998 -98.9004c4.7002 -4.7002 4.7002 -12.2002 0 -16.9004l-98.2998 -98.8994c-7.5 -7.7002 -20.5 -2.2998 -20.5 8.39941zM448 368v-352c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352
-c0 26.5 21.5 48 48 48h352c26.5 0 48 -21.5 48 -48zM400 22v340c0 3.2998 -2.7002 6 -6 6h-340c-3.2998 0 -6 -2.7002 -6 -6v-340c0 -3.2998 2.7002 -6 6 -6h340c3.2998 0 6 2.7002 6 6z" />
-    <glyph glyph-name="file" unicode="&#xf15b;" horiz-adv-x="384" 
-d="M369.9 350.1c9 -9 14.0996 -21.2998 14.0996 -34v-332.1c0 -26.5 -21.5 -48 -48 -48h-288c-26.5 0 -48 21.5 -48 48v416c0 26.5 21.5 48 48 48.0996h204.1c12.7002 0 24.9004 -5.09961 33.9004 -14.0996zM332.1 320l-76.0996 76.0996v-76.0996h76.0996zM48 -16h288v288
-h-104c-13.2998 0 -24 10.7002 -24 24v104h-160v-416z" />
-    <glyph glyph-name="file-alt" unicode="&#xf15c;" horiz-adv-x="384" 
-d="M288 200v-28c0 -6.59961 -5.40039 -12 -12 -12h-168c-6.59961 0 -12 5.40039 -12 12v28c0 6.59961 5.40039 12 12 12h168c6.59961 0 12 -5.40039 12 -12zM276 128c6.59961 0 12 -5.40039 12 -12v-28c0 -6.59961 -5.40039 -12 -12 -12h-168c-6.59961 0 -12 5.40039 -12 12
-v28c0 6.59961 5.40039 12 12 12h168zM384 316.1v-332.1c0 -26.5 -21.5 -48 -48 -48h-288c-26.5 0 -48 21.5 -48 48v416c0 26.5 21.5 48 48 48h204.1c12.7002 0 24.9004 -5.09961 33.9004 -14.0996l83.9004 -83.9004c9 -8.90039 14.0996 -21.2002 14.0996 -33.9004z
-M256 396.1v-76.0996h76.0996zM336 -16v288h-104c-13.2998 0 -24 10.7002 -24 24v104h-160v-416h288z" />
-    <glyph glyph-name="thumbs-up" unicode="&#xf164;" 
-d="M466.27 161.31c4.6748 -22.6465 0.864258 -44.5371 -8.98926 -62.9893c2.95898 -23.8682 -4.02148 -48.5654 -17.3398 -66.9902c-0.954102 -55.9072 -35.8232 -95.3301 -112.94 -95.3301c-7 0 -15 0.00976562 -22.2197 0.00976562
-c-102.742 0 -133.293 38.9395 -177.803 39.9404c-3.56934 -13.7764 -16.085 -23.9502 -30.9775 -23.9502h-64c-17.6729 0 -32 14.3271 -32 32v240c0 17.6729 14.3271 32 32 32h98.7598c19.1455 16.9531 46.0137 60.6533 68.7598 83.4004
-c13.667 13.667 10.1533 108.6 71.7607 108.6c57.5801 0 95.2695 -31.9355 95.2695 -104.73c0 -18.4092 -3.92969 -33.7295 -8.84961 -46.5391h36.4795c48.6025 0 85.8203 -41.5654 85.8203 -85.5801c0 -19.1504 -4.95996 -34.9902 -13.7305 -49.8408zM404.52 107.48
-c21.5811 20.3838 18.6992 51.0645 5.21094 65.6191c9.44922 0 22.3594 18.9102 22.2695 37.8105c-0.0898438 18.9102 -16.71 37.8203 -37.8203 37.8203h-103.989c0 37.8193 28.3594 55.3691 28.3594 94.5391c0 23.75 0 56.7305 -47.2695 56.7305
-c-18.9102 -18.9102 -9.45996 -66.1797 -37.8203 -94.54c-26.5596 -26.5703 -66.1797 -97.46 -94.54 -97.46h-10.9199v-186.17c53.6113 0 100.001 -37.8203 171.64 -37.8203h37.8203c35.5117 0 60.8203 17.1201 53.1201 65.9004
-c15.2002 8.16016 26.5 36.4395 13.9395 57.5703zM88 16c0 13.2549 -10.7451 24 -24 24s-24 -10.7451 -24 -24s10.7451 -24 24 -24s24 10.7451 24 24z" />
-    <glyph glyph-name="thumbs-down" unicode="&#xf165;" 
-d="M466.27 222.69c8.77051 -14.8506 13.7305 -30.6904 13.7305 -49.8408c0 -44.0146 -37.2178 -85.5801 -85.8203 -85.5801h-36.4795c4.91992 -12.8096 8.84961 -28.1299 8.84961 -46.5391c0 -72.7949 -37.6895 -104.73 -95.2695 -104.73
-c-61.6074 0 -58.0938 94.9326 -71.7607 108.6c-22.7461 22.7471 -49.6133 66.4473 -68.7598 83.4004h-7.05176c-5.5332 -9.56152 -15.8662 -16 -27.708 -16h-64c-17.6729 0 -32 14.3271 -32 32v240c0 17.6729 14.3271 32 32 32h64c8.11328 0 15.5146 -3.02539 21.1553 -8
-h10.8447c40.9971 0 73.1953 39.9902 176.78 39.9902c7.21973 0 15.2197 0.00976562 22.2197 0.00976562c77.1172 0 111.986 -39.4229 112.94 -95.3301c13.3184 -18.4248 20.2979 -43.1221 17.3398 -66.9902c9.85352 -18.4521 13.6641 -40.3428 8.98926 -62.9893zM64 152
-c13.2549 0 24 10.7451 24 24s-10.7451 24 -24 24s-24 -10.7451 -24 -24s10.7451 -24 24 -24zM394.18 135.27c21.1104 0 37.7305 18.9102 37.8203 37.8203c0.0898438 18.9004 -12.8203 37.8105 -22.2695 37.8105c13.4883 14.5547 16.3701 45.2354 -5.21094 65.6191
-c12.5605 21.1309 1.26074 49.4102 -13.9395 57.5703c7.7002 48.7803 -17.6084 65.9004 -53.1201 65.9004h-37.8203c-71.6387 0 -118.028 -37.8203 -171.64 -37.8203v-186.17h10.9199c28.3604 0 67.9805 -70.8896 94.54 -97.46
-c28.3604 -28.3604 18.9102 -75.6299 37.8203 -94.54c47.2695 0 47.2695 32.9805 47.2695 56.7305c0 39.1699 -28.3594 56.7197 -28.3594 94.5391h103.989z" />
-    <glyph glyph-name="sun" unicode="&#xf185;" 
-d="M494.2 226.1c11.2002 -7.59961 17.7998 -20.0996 17.8994 -33.6992c0 -13.4004 -6.69922 -26 -17.7998 -33.5l-59.7998 -40.5l13.7002 -71c2.5 -13.2002 -1.60059 -26.8008 -11.1006 -36.3008s-22.8994 -13.7998 -36.2998 -11.0996l-70.8994 13.7002l-40.4004 -59.9004
-c-7.5 -11.0996 -20.0996 -17.7998 -33.5 -17.7998s-26 6.7002 -33.5 17.9004l-40.4004 59.8994l-70.7998 -13.7002c-13.3994 -2.59961 -26.7998 1.60059 -36.2998 11.1006s-13.7002 23.0996 -11.0996 36.2998l13.6992 71l-59.7998 40.5
-c-11.0996 7.5 -17.7998 20 -17.7998 33.5s6.59961 26 17.7998 33.5996l59.7998 40.5l-13.6992 71c-2.60059 13.2002 1.59961 26.7002 11.0996 36.3008c9.5 9.59961 23 13.6992 36.2998 11.1992l70.7998 -13.6992l40.4004 59.8994c15.0996 22.2998 51.9004 22.2998 67 0
-l40.4004 -59.8994l70.8994 13.6992c13 2.60059 26.6006 -1.59961 36.2002 -11.0996c9.5 -9.59961 13.7002 -23.2002 11.0996 -36.4004l-13.6992 -71zM381.3 140.5l76.7998 52.0996l-76.7998 52l17.6006 91.1006l-91 -17.6006l-51.9004 76.9004l-51.7998 -76.7998
-l-91 17.5996l17.5996 -91.2002l-76.7998 -52l76.7998 -52l-17.5996 -91.1992l90.8994 17.5996l51.9004 -77l51.9004 76.9004l91 -17.6006zM256 296c57.2998 0 104 -46.7002 104 -104s-46.7002 -104 -104 -104s-104 46.7002 -104 104s46.7002 104 104 104zM256 136
-c30.9004 0 56 25.0996 56 56s-25.0996 56 -56 56s-56 -25.0996 -56 -56s25.0996 -56 56 -56z" />
-    <glyph glyph-name="moon" unicode="&#xf186;" 
-d="M279.135 -64c-141.424 0 -256 114.64 -256 256c0 141.425 114.641 256 256 256c16.0342 -0.00292969 31.5078 -1.46875 46.7354 -4.27734c44.0205 -8.13086 53.7666 -66.8691 15.0215 -88.9189c-41.374 -23.5439 -67.4336 -67.4121 -67.4336 -115.836
-c0 -83.5234 75.9238 -146.475 158.272 -130.792c43.6904 8.32129 74.5186 -42.5693 46.248 -77.4004c-47.8613 -58.9717 -120.088 -94.7754 -198.844 -94.7754zM279.135 400c-114.875 0 -208 -93.125 -208 -208s93.125 -208 208 -208
-c65.2314 0 123.439 30.0361 161.575 77.0244c-111.611 -21.2568 -215.252 64.0957 -215.252 177.943c0 67.5127 36.9326 126.392 91.6934 157.555c-12.3271 2.27637 -25.0312 3.47754 -38.0166 3.47754z" />
-    <glyph glyph-name="caret-square-left" unicode="&#xf191;" horiz-adv-x="448" 
-d="M272 290.9v-197.801c0 -10.6992 -13 -16.0996 -20.5 -8.5l-98.2998 98.9004c-4.7002 4.7002 -4.7002 12.2002 0 16.9004l98.2998 98.8994c7.5 7.7002 20.5 2.2998 20.5 -8.39941zM448 368v-352c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352
-c0 26.5 21.5 48 48 48h352c26.5 0 48 -21.5 48 -48zM400 22v340c0 3.2998 -2.7002 6 -6 6h-340c-3.2998 0 -6 -2.7002 -6 -6v-340c0 -3.2998 2.7002 -6 6 -6h340c3.2998 0 6 2.7002 6 6z" />
-    <glyph glyph-name="dot-circle" unicode="&#xf192;" 
-d="M256 392c-110.549 0 -200 -89.4678 -200 -200c0 -110.549 89.4678 -200 200 -200c110.549 0 200 89.4678 200 200c0 110.549 -89.4678 200 -200 200zM256 440c136.967 0 248 -111.033 248 -248s-111.033 -248 -248 -248s-248 111.033 -248 248s111.033 248 248 248z
-M256 272c44.1826 0 80 -35.8174 80 -80s-35.8174 -80 -80 -80s-80 35.8174 -80 80s35.8174 80 80 80z" />
-    <glyph glyph-name="building" unicode="&#xf1ad;" horiz-adv-x="448" 
-d="M128 300v40c0 6.59961 5.40039 12 12 12h40c6.59961 0 12 -5.40039 12 -12v-40c0 -6.59961 -5.40039 -12 -12 -12h-40c-6.59961 0 -12 5.40039 -12 12zM268 288c-6.59961 0 -12 5.40039 -12 12v40c0 6.59961 5.40039 12 12 12h40c6.59961 0 12 -5.40039 12 -12v-40
-c0 -6.59961 -5.40039 -12 -12 -12h-40zM140 192c-6.59961 0 -12 5.40039 -12 12v40c0 6.59961 5.40039 12 12 12h40c6.59961 0 12 -5.40039 12 -12v-40c0 -6.59961 -5.40039 -12 -12 -12h-40zM268 192c-6.59961 0 -12 5.40039 -12 12v40c0 6.59961 5.40039 12 12 12h40
-c6.59961 0 12 -5.40039 12 -12v-40c0 -6.59961 -5.40039 -12 -12 -12h-40zM192 108c0 -6.59961 -5.40039 -12 -12 -12h-40c-6.59961 0 -12 5.40039 -12 12v40c0 6.59961 5.40039 12 12 12h40c6.59961 0 12 -5.40039 12 -12v-40zM268 96c-6.59961 0 -12 5.40039 -12 12v40
-c0 6.59961 5.40039 12 12 12h40c6.59961 0 12 -5.40039 12 -12v-40c0 -6.59961 -5.40039 -12 -12 -12h-40zM448 -28v-36h-448v36c0 6.59961 5.40039 12 12 12h19.5v440c0 13.2998 10.7002 24 24 24h337c13.2998 0 24 -10.7002 24 -24v-440h19.5
-c6.59961 0 12 -5.40039 12 -12zM79.5 -15h112.5v67c0 6.59961 5.40039 12 12 12h40c6.59961 0 12 -5.40039 12 -12v-67h112.5v414l-288.5 1z" />
-    <glyph glyph-name="file-pdf" unicode="&#xf1c1;" horiz-adv-x="384" 
-d="M369.9 350.1c9 -9 14.0996 -21.2998 14.0996 -34v-332.1c0 -26.5 -21.5 -48 -48 -48h-288c-26.5 0 -48 21.5 -48 48v416c0 26.5 21.5 48 48 48.0996h204.1c12.7002 0 24.9004 -5.09961 33.9004 -14.0996zM332.1 320l-76.0996 76.0996v-76.0996h76.0996zM48 -16h288v288
-h-104c-13.2998 0 -24 10.7002 -24 24v104h-160v-416zM298.2 127.7c10.5 -10.5 8 -38.7002 -17.5 -38.7002c-14.7998 0 -36.9004 6.7998 -55.7998 17c-21.6006 -3.59961 -46 -12.7002 -68.4004 -20.0996c-50.0996 -86.4004 -79.4004 -47 -76.0996 -31.2002
-c4 20 31 35.8994 51 46.2002c10.5 18.3994 25.3994 50.5 35.3994 74.3994c-7.39941 28.6006 -11.3994 51 -7 67.1006c4.7998 17.6992 38.4004 20.2998 42.6006 -5.90039c4.69922 -15.4004 -1.5 -39.9004 -5.40039 -56c8.09961 -21.2998 19.5996 -35.7998 36.7998 -46.2998
-c17.4004 2.2002 52.2002 5.5 64.4004 -6.5zM100.1 49.9004c0 -0.700195 11.4004 4.69922 30.4004 35c-5.90039 -5.5 -25.2998 -21.3008 -30.4004 -35zM181.7 240.5c-2.5 0 -2.60059 -26.9004 1.7998 -40.7998c4.90039 8.7002 5.59961 40.7998 -1.7998 40.7998zM157.3 103.9
-c15.9004 6.09961 34 14.8994 54.7998 19.1992c-11.1992 8.30078 -21.7998 20.4004 -30.0996 35.5c-6.7002 -17.6992 -15 -37.7998 -24.7002 -54.6992zM288.9 108.9c3.59961 2.39941 -2.2002 10.3994 -37.3008 7.7998c32.3008 -13.7998 37.3008 -7.7998 37.3008 -7.7998z" />
-    <glyph glyph-name="file-word" unicode="&#xf1c2;" horiz-adv-x="384" 
-d="M369.9 350.1c9 -9 14.0996 -21.2998 14.0996 -34v-332.1c0 -26.5 -21.5 -48 -48 -48h-288c-26.5 0 -48 21.5 -48 48v416c0 26.5 21.5 48 48 48.0996h204.1c12.7002 0 24.9004 -5.09961 33.9004 -14.0996zM332.1 320l-76.0996 76.0996v-76.0996h76.0996zM48 -16h288v288
-h-104c-13.2998 0 -24 10.7002 -24 24v104h-160v-416zM268.1 192v0.200195h15.8008c7.7998 0 13.5 -7.2998 11.5996 -14.9004c-4.2998 -17 -13.7002 -54.0996 -34.5 -136c-1.2998 -5.39941 -6.09961 -9.09961 -11.5996 -9.09961h-24.7002
-c-5.5 0 -10.2998 3.7998 -11.6006 9.09961c-5.2998 20.9004 -17.7998 71 -17.8994 71.4004l-2.90039 17.2998c-0.5 -5.2998 -1.5 -11.0996 -3 -17.2998l-17.8994 -71.4004c-1.30078 -5.39941 -6.10059 -9.09961 -11.6006 -9.09961h-25.2002
-c-5.59961 0 -10.3994 3.7002 -11.6992 9.09961c-6.5 26.5 -25.2002 103.4 -33.2002 136c-1.7998 7.5 3.89941 14.7998 11.7002 14.7998h16.7998c5.7998 0 10.7002 -4.09961 11.7998 -9.69922c5 -25.7002 18.4004 -93.8008 19.0996 -99
-c0.300781 -1.7002 0.400391 -3.10059 0.5 -4.2002c0.800781 7.5 0.400391 4.7002 24.8008 103.7c1.39941 5.2998 6.19922 9.09961 11.6992 9.09961h13.3008c5.59961 0 10.3994 -3.7998 11.6992 -9.2002c23.9004 -99.7002 22.8008 -94.3994 23.6006 -99.5
-c0.299805 -1.7002 0.5 -3.09961 0.700195 -4.2998c0.599609 8.09961 0.399414 5.7998 21 103.5c1.09961 5.5 6 9.5 11.6992 9.5z" />
-    <glyph glyph-name="file-excel" unicode="&#xf1c3;" horiz-adv-x="384" 
-d="M369.9 350.1c9 -9 14.0996 -21.2998 14.0996 -34v-332.1c0 -26.5 -21.5 -48 -48 -48h-288c-26.5 0 -48 21.5 -48 48v416c0 26.5 21.5 48 48 48.0996h204.1c12.7002 0 24.9004 -5.09961 33.9004 -14.0996zM332.1 320l-76.0996 76.0996v-76.0996h76.0996zM48 -16h288v288
-h-104c-13.2998 0 -24 10.7002 -24 24v104h-160v-416zM260 224c9.2002 0 15 -10 10.2998 -18c-16 -27.5 -45.5996 -76.9004 -46.2998 -78l46.4004 -78c4.59961 -8 -1.10059 -18 -10.4004 -18h-28.7998c-4.40039 0 -8.5 2.40039 -10.6006 6.2998
-c-22.6992 41.7998 -13.6992 27.5 -28.5996 57.7002c-5.59961 -12.7002 -6.90039 -17.7002 -28.5996 -57.7002c-2.10059 -3.89941 -6.10059 -6.2998 -10.5 -6.2998h-28.9004c-9.2998 0 -15.0996 10 -10.4004 18l46.3008 78l-46.3008 78c-4.59961 8 1.10059 18 10.4004 18
-h28.9004c4.39941 0 8.5 -2.40039 10.5996 -6.2998c21.7002 -40.4004 14.7002 -28.6006 28.5996 -57.7002c6.40039 15.2998 10.6006 24.5996 28.6006 57.7002c2.09961 3.89941 6.09961 6.2998 10.5 6.2998h28.7998z" />
-    <glyph glyph-name="file-powerpoint" unicode="&#xf1c4;" horiz-adv-x="384" 
-d="M369.9 350.1c9 -9 14.0996 -21.2998 14.0996 -34v-332.1c0 -26.5 -21.5 -48 -48 -48h-288c-26.5 0 -48 21.5 -48 48v416c0 26.5 21.5 48 48 48.0996h204.1c12.7002 0 24.9004 -5.09961 33.9004 -14.0996zM332.1 320l-76.0996 76.0996v-76.0996h76.0996zM48 -16h288v288
-h-104c-13.2998 0 -24 10.7002 -24 24v104h-160v-416zM120 44v168c0 6.59961 5.40039 12 12 12h69.2002c36.7002 0 62.7998 -27 62.7998 -66.2998c0 -74.2998 -68.7002 -66.5 -95.5 -66.5v-47.2002c0 -6.59961 -5.40039 -12 -12 -12h-24.5c-6.59961 0 -12 5.40039 -12 12z
-M168.5 131.4h23c7.90039 0 13.9004 2.39941 18.0996 7.19922c8.5 9.80078 8.40039 28.5 0.100586 37.8008c-4.10059 4.59961 -9.90039 7 -17.4004 7h-23.8994v-52h0.0996094z" />
-    <glyph glyph-name="file-image" unicode="&#xf1c5;" horiz-adv-x="384" 
-d="M369.9 350.1c9 -9 14.0996 -21.2998 14.0996 -34v-332.1c0 -26.5 -21.5 -48 -48 -48h-288c-26.5 0 -48 21.5 -48 48v416c0 26.5 21.5 48 48 48.0996h204.1c12.7002 0 24.9004 -5.09961 33.9004 -14.0996zM332.1 320l-76.0996 76.0996v-76.0996h76.0996zM48 -16h288v288
-h-104c-13.2998 0 -24 10.7002 -24 24v104h-160v-416zM80 32v64l39.5 39.5c4.7002 4.7002 12.2998 4.7002 17 0l39.5 -39.5l87.5 87.5c4.7002 4.7002 12.2998 4.7002 17 0l23.5 -23.5v-128h-224zM128 272c26.5 0 48 -21.5 48 -48s-21.5 -48 -48 -48s-48 21.5 -48 48
-s21.5 48 48 48z" />
-    <glyph glyph-name="file-archive" unicode="&#xf1c6;" horiz-adv-x="384" 
-d="M128.3 288h32v-32h-32v32zM192.3 384v-32h-32v32h32zM128.3 352h32v-32h-32v32zM192.3 320v-32h-32v32h32zM369.9 350.1c9 -9 14.0996 -21.2998 14.0996 -34v-332.1c0 -26.5 -21.5 -48 -48 -48h-288c-26.5 0 -48 21.5 -48 48v416c0 26.5 21.5 48 48 48.0996h204.1
-c12.7002 0 24.9004 -5.09961 33.9004 -14.0996zM256 396.1v-76.0996h76.0996zM336 -16v288h-104c-13.2998 0 -24 10.7002 -24 24v104h-48.2998v-16h-32v16h-79.7002v-416h288zM194.2 182.3l17.2998 -87.7002c6.40039 -32.3994 -18.4004 -62.5996 -51.5 -62.5996
-c-33.2002 0 -58 30.4004 -51.4004 62.9004l19.7002 97.0996v32h32v-32h22.1006c5.7998 0 10.6992 -4.09961 11.7998 -9.7002zM160.3 57.9004c17.9004 0 32.4004 12.0996 32.4004 27c0 14.8994 -14.5 27 -32.4004 27c-17.8994 0 -32.3994 -12.1006 -32.3994 -27
-c0 -14.9004 14.5 -27 32.3994 -27zM192.3 256v-32h-32v32h32z" />
-    <glyph glyph-name="file-audio" unicode="&#xf1c7;" horiz-adv-x="384" 
-d="M369.941 350.059c8.68848 -8.68848 14.0586 -20.6943 14.0586 -33.9404v-332.118c0 -26.5098 -21.4902 -48 -48 -48h-288c-26.5098 0 -48 21.4902 -48 48v416c0 26.5098 21.4902 48 48 48h204.118c13.2461 0 25.252 -5.37012 33.9404 -14.0586zM332.118 320
-l-76.1182 76.1182v-76.1182h76.1182zM48 -16h288v288h-104c-13.2549 0 -24 10.7451 -24 24v104h-160v-416zM192 60.0244c0 -10.6914 -12.9258 -16.0459 -20.4854 -8.48535l-35.5146 35.9746h-28c-6.62695 0 -12 5.37305 -12 12v56c0 6.62695 5.37305 12 12 12h28
-l35.5146 36.9473c7.56055 7.56055 20.4854 2.20605 20.4854 -8.48535v-135.951zM233.201 107.154c9.05078 9.29688 9.05957 24.1328 0.000976562 33.4385c-22.1494 22.752 12.2344 56.2461 34.3945 33.4814c27.1982 -27.9404 27.2119 -72.4443 0.000976562 -100.401
-c-21.793 -22.3857 -56.9463 10.3154 -34.3965 33.4814z" />
-    <glyph glyph-name="file-video" unicode="&#xf1c8;" horiz-adv-x="384" 
-d="M369.941 350.059c8.68848 -8.68848 14.0586 -20.6943 14.0586 -33.9404v-332.118c0 -26.5098 -21.4902 -48 -48 -48h-288c-26.5098 0 -48 21.4902 -48 48v416c0 26.5098 21.4902 48 48 48h204.118c13.2461 0 25.252 -5.37012 33.9404 -14.0586zM332.118 320
-l-76.1182 76.1182v-76.1182h76.1182zM48 -16h288v288h-104c-13.2549 0 -24 10.7451 -24 24v104h-160v-416zM276.687 195.303c10.0049 10.0049 27.3135 2.99707 27.3135 -11.3135v-111.976c0 -14.2939 -17.2959 -21.332 -27.3135 -11.3135l-52.6865 52.6738v-37.374
-c0 -11.0459 -8.9541 -20 -20 -20h-104c-11.0459 0 -20 8.9541 -20 20v104c0 11.0459 8.9541 20 20 20h104c11.0459 0 20 -8.9541 20 -20v-37.374z" />
-    <glyph glyph-name="file-code" unicode="&#xf1c9;" horiz-adv-x="384" 
-d="M149.9 98.9004c3.5 -3.30078 3.69922 -8.90039 0.399414 -12.4004l-17.3994 -18.5996c-1.60059 -1.80078 -4 -2.80078 -6.40039 -2.80078c-2.2002 0 -4.40039 0.900391 -6 2.40039l-57.7002 54.0996c-3.7002 3.40039 -3.7002 9.30078 0 12.8008l57.7002 54.0996
-c3.40039 3.2998 9 3.2002 12.4004 -0.400391l17.3994 -18.5996l0.200195 -0.200195c3.2002 -3.59961 2.7998 -9.2002 -0.799805 -12.3994l-32.7998 -28.9004l32.7998 -28.9004zM369.9 350.1c9 -9 14.0996 -21.2998 14.0996 -34v-332.1c0 -26.5 -21.5 -48 -48 -48h-288
-c-26.5 0 -48 21.5 -48 48v416c0 26.5 21.5 48 48 48.0996h204.1c12.7002 0 24.9004 -5.09961 33.9004 -14.0996zM256 396.1v-76.0996h76.0996zM336 -16v288h-104c-13.2998 0 -24 10.7002 -24 24v104h-160v-416h288zM209.6 234l24.4004 -7
-c4.7002 -1.2998 7.40039 -6.2002 6 -10.9004l-54.7002 -188.199c-1.2998 -4.60059 -6.2002 -7.40039 -10.8994 -6l-24.4004 7.09961c-4.7002 1.2998 -7.40039 6.2002 -6 10.9004l54.7002 188.1c1.39941 4.7002 6.2002 7.40039 10.8994 6zM234.1 157.1
-c-3.5 3.30078 -3.69922 8.90039 -0.399414 12.4004l17.3994 18.5996c3.30078 3.60059 8.90039 3.7002 12.4004 0.400391l57.7002 -54.0996c3.7002 -3.40039 3.7002 -9.30078 0 -12.8008l-57.7002 -54.0996c-3.5 -3.2998 -9.09961 -3.09961 -12.4004 0.400391
-l-17.3994 18.5996l-0.200195 0.200195c-3.2002 3.59961 -2.7998 9.2002 0.799805 12.3994l32.7998 28.9004l-32.7998 28.9004z" />
-    <glyph glyph-name="life-ring" unicode="&#xf1cd;" 
-d="M256 -56c-136.967 0 -248 111.033 -248 248s111.033 248 248 248s248 -111.033 248 -248s-111.033 -248 -248 -248zM152.602 20.7197c63.2178 -38.3184 143.579 -38.3184 206.797 0l-53.4111 53.4111c-31.8467 -13.5215 -68.168 -13.5059 -99.9746 0zM336 192
-c0 44.1123 -35.8877 80 -80 80s-80 -35.8877 -80 -80s35.8877 -80 80 -80s80 35.8877 80 80zM427.28 88.6016c38.3184 63.2178 38.3184 143.579 0 206.797l-53.4111 -53.4111c13.5215 -31.8467 13.5049 -68.168 0 -99.9746zM359.397 363.28
-c-63.2168 38.3184 -143.578 38.3184 -206.796 0l53.4111 -53.4111c31.8457 13.5215 68.167 13.5049 99.9736 0zM84.7197 295.398c-38.3184 -63.2178 -38.3184 -143.579 0 -206.797l53.4111 53.4111c-13.5215 31.8467 -13.5059 68.168 0 99.9746z" />
-    <glyph glyph-name="paper-plane" unicode="&#xf1d8;" 
-d="M440 441.5c34.5996 19.9004 77.5996 -8.7998 71.5 -48.9004l-59.4004 -387.199c-2.2998 -14.5 -11.0996 -27.3008 -23.8994 -34.5c-7.2998 -4.10059 -15.4004 -6.2002 -23.6006 -6.2002c-6.19922 0 -12.3994 1.2002 -18.2998 3.59961l-111.899 46.2002l-43.8008 -59.0996
-c-27.3994 -36.9004 -86.5996 -17.8008 -86.5996 28.5996v84.4004l-114.3 47.2998c-36.7998 15.0996 -40.1006 66 -5.7002 85.8994zM192 -16l36.5996 49.5l-36.5996 15.0996v-64.5996zM404.6 12.7002l59.4004 387.3l-416 -240l107.8 -44.5996l211.5 184.3
-c14.2002 12.2998 34.4004 -5.7002 23.7002 -21.2002l-140.2 -202.3z" />
-    <glyph glyph-name="futbol" unicode="&#xf1e3;" horiz-adv-x="496" 
-d="M483.8 268.6c42.2998 -130.199 -29 -270.1 -159.2 -312.399c-25.5 -8.2998 -51.2998 -12.2002 -76.6992 -12.2002c-104.5 0 -201.7 66.5996 -235.7 171.4c-42.2998 130.199 29 270.1 159.2 312.399c25.5 8.2998 51.2998 12.2002 76.6992 12.2002
-c104.5 0 201.7 -66.5996 235.7 -171.4zM409.3 74.9004c6.10059 8.39941 12.1006 16.8994 16.7998 26.1992c14.3008 28.1006 21.5 58.5 21.7002 89.2002l-38.8994 36.4004l-71.1006 -22.1006l-24.3994 -75.1992l43.6992 -60.9004zM409.3 310.3
-c-24.5 33.4004 -58.7002 58.4004 -97.8994 71.4004l-47.4004 -26.2002v-73.7998l64.2002 -46.5l70.7002 22zM184.9 381.6c-39.9004 -13.2998 -73.5 -38.5 -97.8008 -71.8994l10.1006 -52.5l70.5996 -22l64.2002 46.5v73.7998zM139 68.5l43.5 61.7002l-24.2998 74.2998
-l-71.1006 22.2002l-39 -36.4004c0.5 -55.7002 23.4004 -95.2002 37.8008 -115.3zM187.2 1.5c64.0996 -20.4004 115.5 -1.7998 121.7 0l22.3994 48.0996l-44.2998 61.7002h-78.5996l-43.6006 -61.7002z" />
-    <glyph glyph-name="newspaper" unicode="&#xf1ea;" horiz-adv-x="576" 
-d="M552 384c13.2549 0 24 -10.7451 24 -24v-336c0 -13.2549 -10.7451 -24 -24 -24h-496c-30.9277 0 -56 25.0723 -56 56v272c0 13.2549 10.7451 24 24 24h42.752c6.60547 18.623 24.3896 32 45.248 32h440zM48 56c0 -4.41113 3.58887 -8 8 -8s8 3.58887 8 8v248h-16v-248z
-M528 48v288h-416v-280c0 -2.7168 -0.204102 -5.38574 -0.578125 -8h416.578zM172 168c-6.62695 0 -12 5.37305 -12 12v96c0 6.62695 5.37305 12 12 12h136c6.62695 0 12 -5.37305 12 -12v-96c0 -6.62695 -5.37305 -12 -12 -12h-136zM200 248v-40h80v40h-80zM160 108v24
-c0 6.62695 5.37305 12 12 12h136c6.62695 0 12 -5.37305 12 -12v-24c0 -6.62695 -5.37305 -12 -12 -12h-136c-6.62695 0 -12 5.37305 -12 12zM352 108v24c0 6.62695 5.37305 12 12 12h104c6.62695 0 12 -5.37305 12 -12v-24c0 -6.62695 -5.37305 -12 -12 -12h-104
-c-6.62695 0 -12 5.37305 -12 12zM352 252v24c0 6.62695 5.37305 12 12 12h104c6.62695 0 12 -5.37305 12 -12v-24c0 -6.62695 -5.37305 -12 -12 -12h-104c-6.62695 0 -12 5.37305 -12 12zM352 180v24c0 6.62695 5.37305 12 12 12h104c6.62695 0 12 -5.37305 12 -12v-24
-c0 -6.62695 -5.37305 -12 -12 -12h-104c-6.62695 0 -12 5.37305 -12 12z" />
-    <glyph glyph-name="bell-slash" unicode="&#xf1f6;" horiz-adv-x="640" 
-d="M633.99 -23.0195c6.91016 -5.52051 8.01953 -15.5908 2.5 -22.4902l-10 -12.4902c-5.53027 -6.88965 -15.5898 -8.00977 -22.4902 -2.49023l-598 467.51c-6.90039 5.52051 -8.01953 15.5908 -2.49023 22.4902l10 12.4902
-c5.52051 6.90039 15.5898 8.00977 22.4902 2.49023zM163.53 80h182.84l61.3994 -48h-279.659c-19.1201 0 -31.9902 15.5996 -32.1006 32c-0.0498047 7.5498 2.61035 15.2598 8.61035 21.71c18.3701 19.7402 51.5703 49.6904 54.8398 140.42l45.4697 -35.5498
-c-6.91992 -54.7803 -24.6895 -88.5498 -41.3994 -110.58zM320 352c-23.3496 0 -45 -7.17969 -62.9404 -19.4004l-38.1699 29.8408c19.6807 15.7793 43.1104 27.3096 69.1299 32.7197v20.8398c0 17.6699 14.3203 32 31.9805 32s31.9805 -14.3301 31.9805 -32v-20.8398
-c73.46 -15.2598 127.939 -77.46 127.939 -155.16c0 -41.3604 6.03027 -70.7197 14.3398 -92.8496l-59.5293 46.54c-1.63086 13.96 -2.77051 28.8896 -2.79004 45.7295c0 0.200195 0.0595703 0.379883 0.0595703 0.580078c0 61.8604 -50.1396 112 -112 112zM320 -64
-c-35.3203 0 -63.9697 28.6504 -63.9697 64h127.939c0 -35.3496 -28.6494 -64 -63.9697 -64z" />
-    <glyph glyph-name="copyright" unicode="&#xf1f9;" 
-d="M256 440c136.967 0 248 -111.033 248 -248s-111.033 -248 -248 -248s-248 111.033 -248 248s111.033 248 248 248zM256 -8c110.549 0 200 89.4678 200 200c0 110.549 -89.4678 200 -200 200c-110.549 0 -200 -89.4688 -200 -200c0 -110.549 89.4678 -200 200 -200z
-M363.351 93.0645c-9.61328 -9.71289 -45.5293 -41.3965 -104.064 -41.3965c-82.4297 0 -140.484 61.4248 -140.484 141.567c0 79.1514 60.2754 139.4 139.763 139.4c55.5303 0 88.7373 -26.6201 97.5928 -34.7783c2.37793 -2.1875 3.86914 -5.3252 3.86914 -8.80762
-c0 -2.39746 -0.717773 -4.64258 -1.93359 -6.51465l-18.1543 -28.1133c-3.8418 -5.9502 -11.9668 -7.28223 -17.499 -2.9209c-8.5957 6.77637 -31.8145 22.5381 -61.708 22.5381c-48.3037 0 -77.916 -35.3301 -77.916 -80.082c0 -41.5889 26.8877 -83.6924 78.2764 -83.6924
-c32.6572 0 56.8428 19.0391 65.7266 27.2256c5.26953 4.85645 13.5957 4.03906 17.8193 -1.73828l19.8652 -27.1699c1.45996 -1.98145 2.32422 -4.42969 2.32422 -7.07715c0 -3.28809 -1.32422 -6.2793 -3.47656 -8.44043z" />
-    <glyph glyph-name="closed-captioning" unicode="&#xf20a;" 
-d="M464 384c26.5 0 48 -21.5 48 -48v-288c0 -26.5 -21.5 -48 -48 -48h-416c-26.5 0 -48 21.5 -48 48v288c0 26.5 21.5 48 48 48h416zM458 48c3.2998 0 6 2.7002 6 6v276c0 3.2998 -2.7002 6 -6 6h-404c-3.2998 0 -6 -2.7002 -6 -6v-276c0 -3.2998 2.7002 -6 6 -6h404z
-M246.9 133.7c1.69922 -2.40039 1.5 -5.60059 -0.5 -7.7002c-53.6006 -56.7998 -172.801 -32.0996 -172.801 67.9004c0 97.2998 121.7 119.5 172.5 70.0996c2.10059 -2 2.5 -3.2002 1 -5.7002l-17.5 -30.5c-1.89941 -3.09961 -6.19922 -4 -9.09961 -1.7002
-c-40.7998 32 -94.5996 14.9004 -94.5996 -31.1992c0 -48 51 -70.5 92.1992 -32.6006c2.80078 2.5 7.10059 2.10059 9.2002 -0.899414zM437.3 133.7c1.7002 -2.40039 1.5 -5.60059 -0.5 -7.7002c-53.5996 -56.9004 -172.8 -32.0996 -172.8 67.9004
-c0 97.2998 121.7 119.5 172.5 70.0996c2.09961 -2 2.5 -3.2002 1 -5.7002l-17.5 -30.5c-1.90039 -3.09961 -6.2002 -4 -9.09961 -1.7002c-40.8008 32 -94.6006 14.9004 -94.6006 -31.1992c0 -48 51 -70.5 92.2002 -32.6006c2.7998 2.5 7.09961 2.10059 9.2002 -0.899414z
-" />
-    <glyph glyph-name="object-group" unicode="&#xf247;" 
-d="M500 320h-12v-256h12c6.62695 0 12 -5.37305 12 -12v-72c0 -6.62695 -5.37305 -12 -12 -12h-72c-6.62695 0 -12 5.37305 -12 12v12h-320v-12c0 -6.62695 -5.37305 -12 -12 -12h-72c-6.62695 0 -12 5.37305 -12 12v72c0 6.62695 5.37305 12 12 12h12v256h-12
-c-6.62695 0 -12 5.37305 -12 12v72c0 6.62695 5.37305 12 12 12h72c6.62695 0 12 -5.37305 12 -12v-12h320v12c0 6.62695 5.37305 12 12 12h72c6.62695 0 12 -5.37305 12 -12v-72c0 -6.62695 -5.37305 -12 -12 -12zM448 384v-32h32v32h-32zM32 384v-32h32v32h-32zM64 0v32
-h-32v-32h32zM480 0v32h-32v-32h32zM440 64v256h-12c-6.62695 0 -12 5.37305 -12 12v12h-320v-12c0 -6.62695 -5.37305 -12 -12 -12h-12v-256h12c6.62695 0 12 -5.37305 12 -12v-12h320v12c0 6.62695 5.37305 12 12 12h12zM404 256c6.62695 0 12 -5.37207 12 -12v-168
-c0 -6.62793 -5.37305 -12 -12 -12h-200c-6.62695 0 -12 5.37207 -12 12v52h-84c-6.62695 0 -12 5.37207 -12 12v168c0 6.62793 5.37305 12 12 12h200c6.62695 0 12 -5.37207 12 -12v-52h84zM136 280v-112h144v112h-144zM376 104v112h-56v-76
-c0 -6.62793 -5.37305 -12 -12 -12h-76v-24h144z" />
-    <glyph glyph-name="object-ungroup" unicode="&#xf248;" horiz-adv-x="576" 
-d="M564 224h-12v-160h12c6.62695 0 12 -5.37305 12 -12v-72c0 -6.62695 -5.37305 -12 -12 -12h-72c-6.62695 0 -12 5.37305 -12 12v12h-224v-12c0 -6.62695 -5.37305 -12 -12 -12h-72c-6.62695 0 -12 5.37305 -12 12v72c0 6.62695 5.37305 12 12 12h12v24h-88v-12
-c0 -6.62695 -5.37305 -12 -12 -12h-72c-6.62695 0 -12 5.37305 -12 12v72c0 6.62695 5.37305 12 12 12h12v160h-12c-6.62695 0 -12 5.37305 -12 12v72c0 6.62695 5.37305 12 12 12h72c6.62695 0 12 -5.37305 12 -12v-12h224v12c0 6.62695 5.37305 12 12 12h72
-c6.62695 0 12 -5.37305 12 -12v-72c0 -6.62695 -5.37305 -12 -12 -12h-12v-24h88v12c0 6.62695 5.37305 12 12 12h72c6.62695 0 12 -5.37305 12 -12v-72c0 -6.62695 -5.37305 -12 -12 -12zM352 384v-32h32v32h-32zM352 128v-32h32v32h-32zM64 96v32h-32v-32h32zM64 352v32
-h-32v-32h32zM96 136h224v12c0 6.62695 5.37305 12 12 12h12v160h-12c-6.62695 0 -12 5.37305 -12 12v12h-224v-12c0 -6.62695 -5.37305 -12 -12 -12h-12v-160h12c6.62695 0 12 -5.37305 12 -12v-12zM224 0v32h-32v-32h32zM504 64v160h-12c-6.62695 0 -12 5.37305 -12 12v12
-h-88v-88h12c6.62695 0 12 -5.37305 12 -12v-72c0 -6.62695 -5.37305 -12 -12 -12h-72c-6.62695 0 -12 5.37305 -12 12v12h-88v-24h12c6.62695 0 12 -5.37305 12 -12v-12h224v12c0 6.62695 5.37305 12 12 12h12zM544 0v32h-32v-32h32zM544 256v32h-32v-32h32z" />
-    <glyph glyph-name="sticky-note" unicode="&#xf249;" horiz-adv-x="448" 
-d="M448 99.8936c0 -13.2451 -5.37012 -25.252 -14.0586 -33.9404l-83.8828 -83.8818c-8.68848 -8.68848 -20.6943 -14.0596 -33.9404 -14.0596h-268.118c-26.5098 0 -48 21.4902 -48 48v351.988c0 26.5098 21.4902 48 48 48h352c26.5098 0 48 -21.4902 48 -48v-268.106z
-M320 19.8936l76.1182 76.1182h-76.1182v-76.1182zM400 368h-352v-351.988h224v104c0 13.2549 10.7451 24 24 24h104v223.988z" />
-    <glyph glyph-name="clone" unicode="&#xf24d;" 
-d="M464 448c26.5098 0 48 -21.4902 48 -48v-320c0 -26.5098 -21.4902 -48 -48 -48h-48v-48c0 -26.5098 -21.4902 -48 -48 -48h-320c-26.5098 0 -48 21.4902 -48 48v320c0 26.5098 21.4902 48 48 48h48v48c0 26.5098 21.4902 48 48 48h320zM362 -16c3.31152 0 6 2.68848 6 6
-v42h-224c-26.5098 0 -48 21.4902 -48 48v224h-42c-3.31152 0 -6 -2.68848 -6 -6v-308c0 -3.31152 2.68848 -6 6 -6h308zM458 80c3.31152 0 6 2.68848 6 6v308c0 3.31152 -2.68848 6 -6 6h-308c-3.31152 0 -6 -2.68848 -6 -6v-308c0 -3.31152 2.68848 -6 6 -6h308z" />
-    <glyph glyph-name="hourglass" unicode="&#xf254;" horiz-adv-x="384" 
-d="M368 400c0 -80.0996 -31.8984 -165.619 -97.1797 -208c64.9912 -42.1934 97.1797 -127.436 97.1797 -208h4c6.62695 0 12 -5.37305 12 -12v-24c0 -6.62695 -5.37305 -12 -12 -12h-360c-6.62695 0 -12 5.37305 -12 12v24c0 6.62695 5.37305 12 12 12h4
-c0 80.0996 31.8994 165.619 97.1797 208c-64.9912 42.1934 -97.1797 127.436 -97.1797 208h-4c-6.62695 0 -12 5.37305 -12 12v24c0 6.62695 5.37305 12 12 12h360c6.62695 0 12 -5.37305 12 -12v-24c0 -6.62695 -5.37305 -12 -12 -12h-4zM64 400
-c0 -101.621 57.3066 -184 128 -184s128 82.3799 128 184h-256zM320 -16c0 101.62 -57.3076 184 -128 184s-128 -82.3799 -128 -184h256z" />
-    <glyph glyph-name="hand-rock" unicode="&#xf255;" 
-d="M408.864 368.948c48.8213 20.751 103.136 -15.0723 103.136 -67.9111v-114.443c0 -15.3955 -3.08887 -30.3906 -9.18262 -44.5674l-42.835 -99.6562c-4.99707 -11.625 -3.98242 -18.8574 -3.98242 -42.3701c0 -17.6729 -14.3271 -32 -32 -32h-252
-c-17.6729 0 -32 14.3271 -32 32c0 27.3301 1.1416 29.2012 -3.11035 32.9033l-97.71 85.0811c-24.8994 21.6797 -39.1797 52.8926 -39.1797 85.6338v56.9531c0 47.4277 44.8457 82.0215 91.0459 71.1807c1.96094 55.751 63.5107 87.8262 110.671 60.8057
-c29.1895 31.0713 78.8604 31.4473 108.334 -0.0214844c32.7051 18.6846 76.4121 10.3096 98.8135 -23.5879zM464 186.594v114.445c0 34.29 -52 33.8232 -52 0.676758c0 -8.83594 -7.16309 -16 -16 -16h-7c-8.83691 0 -16 7.16406 -16 16v26.751
-c0 34.457 -52 33.707 -52 0.676758v-27.4287c0 -8.83594 -7.16309 -16 -16 -16h-7c-8.83691 0 -16 7.16406 -16 16v40.4658c0 34.3525 -52 33.8115 -52 0.677734v-41.1436c0 -8.83594 -7.16406 -16 -16 -16h-7c-8.83594 0 -16 7.16406 -16 16v26.751
-c0 34.4023 -52 33.7744 -52 0.676758v-116.571c0 -8.83105 -7.17773 -15.9961 -16.0078 -15.9961c-4.0166 0 -7.68848 1.48242 -10.499 3.92969l-7 6.09473c-3.37012 2.93457 -5.49316 7.25293 -5.49316 12.0674v41.2275c0 34.2148 -52 33.8857 -52 0.677734v-56.9531
-c0 -18.8555 8.27441 -36.874 22.7002 -49.4365l97.71 -85.0801c12.4502 -10.8398 19.5898 -26.4463 19.5898 -42.8164v-10.2861h220v7.07617c0 13.21 2.65332 26.0791 7.88281 38.25l42.835 99.6553c3.37891 7.82715 5.28223 16.501 5.28223 25.5625v0.0498047z" />
-    <glyph glyph-name="hand-paper" unicode="&#xf256;" horiz-adv-x="448" 
-d="M372.57 335.359c39.9062 5.63281 75.4297 -25.7393 75.4297 -66.3594v-131.564c-0.00292969 -15.7393 -1.80566 -30.9482 -5.19531 -45.666l-30.1836 -130.958c-3.34668 -14.5234 -16.2783 -24.8125 -31.1816 -24.8125h-222.897
-c-10.7539 0 -20.2588 5.28613 -26.0615 13.4316l-119.97 168.415c-21.2441 29.8203 -14.8047 71.3574 14.5498 93.1533c18.7754 13.9395 42.1309 16.2979 62.083 8.87109v126.13c0 44.0547 41.125 75.5439 82.4053 64.9834c23.8926 48.1963 92.3535 50.2471 117.982 0.74707
-c42.5186 11.1445 83.0391 -21.9346 83.0391 -65.5469v-10.8242zM399.997 137.437l-0.00195312 131.563c0 24.9492 -36.5703 25.5508 -36.5703 -0.691406v-76.3086c0 -8.83691 -7.16309 -16 -16 -16h-6.85645c-8.83691 0 -16 7.16309 -16 16v154.184
-c0 25.501 -36.5703 26.3633 -36.5703 0.691406v-154.875c0 -8.83691 -7.16309 -16 -16 -16h-6.85645c-8.83691 0 -16 7.16309 -16 16v188.309c0 25.501 -36.5703 26.3545 -36.5703 0.691406v-189c0 -8.83691 -7.16309 -16 -16 -16h-6.85645c-8.83691 0 -16 7.16309 -16 16
-v153.309c0 25.501 -36.5713 26.3359 -36.5713 0.691406v-206.494c0 -15.5703 -20.0352 -21.9092 -29.0303 -9.2832l-27.1279 38.0791c-14.3711 20.1709 -43.833 -2.33496 -29.3945 -22.6045l115.196 -161.697h201.92l27.3252 118.551
-c2.63086 11.417 3.96484 23.1553 3.96484 34.8857z" />
-    <glyph glyph-name="hand-scissors" unicode="&#xf257;" 
-d="M256 -32c-44.9561 0 -77.3428 43.2627 -64.0244 85.8535c-21.6484 13.71 -34.0156 38.7617 -30.3408 65.0068h-87.6348c-40.8037 0 -74 32.8105 -74 73.1406c0 40.3291 33.1963 73.1396 74 73.1396l94 -9.14062l-78.8496 18.6787
-c-38.3076 14.7422 -57.04 57.4707 -41.9424 95.1123c15.0303 37.4736 57.7549 55.7803 95.6416 41.2012l144.929 -55.7568c24.9551 30.5566 57.8086 43.9932 92.2178 24.7324l97.999 -54.8525c20.9746 -11.7393 34.0049 -33.8457 34.0049 -57.6904v-205.702
-c0 -30.7422 -21.4404 -57.5576 -51.7979 -64.5537l-118.999 -27.4268c-4.97168 -1.14648 -10.0889 -1.72949 -15.2031 -1.72949zM256 16.0127l70 -0.000976562c1.52441 0 2.99707 0.174805 4.42285 0.501953l119.001 27.4277
-c8.58203 1.97754 14.5762 9.29102 14.5762 17.7812v205.701c0 6.4873 -3.62109 12.542 -9.44922 15.8047l-98 54.8545c-8.13965 4.55566 -18.668 2.61914 -24.4873 -4.50781l-21.7646 -26.6475c-2.93457 -3.59375 -7.40332 -5.87305 -12.4004 -5.87305
-c-2.02246 0 -3.95703 0.375977 -5.73828 1.06152l-166.549 64.0908c-32.6543 12.5664 -50.7744 -34.5771 -19.2227 -46.7168l155.357 -59.7852c6 -2.30859 10.2539 -8.12402 10.2539 -14.9326v-11.6328c0 -8.83691 -7.16309 -16 -16 -16h-182
-c-34.375 0 -34.4297 -50.2803 0 -50.2803h182c8.83691 0 16 -7.16309 16 -16v-6.85645c0 -8.83691 -7.16309 -16 -16 -16h-28c-25.1221 0 -25.1592 -36.5674 0 -36.5674h28c8.83691 0 16 -7.16211 16 -16v-6.85547c0 -8.83691 -7.16309 -16 -16 -16
-c-25.1201 0 -25.1602 -36.5674 0 -36.5674z" />
-    <glyph glyph-name="hand-lizard" unicode="&#xf258;" horiz-adv-x="576" 
-d="M556.686 157.458c12.6357 -19.4863 19.3145 -42.0615 19.3145 -65.2871v-124.171h-224v71.582l-99.751 38.7871c-2.7832 1.08203 -5.70996 1.63086 -8.69727 1.63086h-131.552c-30.8789 0 -56 25.1211 -56 56c0 48.5234 39.4766 88 88 88h113.709l18.333 48h-196.042
-c-44.1123 0 -80 35.8877 -80 80v8c0 30.8779 25.1211 56 56 56h293.917c24.5 0 47.084 -12.2725 60.4111 -32.8291zM528 16v76.1709c0 0.0166016 -0.0439453 0.106445 -0.0439453 0.12207c0 14.3945 -4.24219 27.8057 -11.5439 39.0498l-146.358 225.715
-c-4.44336 6.85254 -11.9707 10.9424 -20.1367 10.9424h-293.917c-4.41113 0 -8 -3.58887 -8 -8v-8c0 -17.6445 14.3555 -32 32 -32h213.471c25.2021 0 42.626 -25.293 33.6299 -48.8457l-24.5518 -64.2812c-7.05371 -18.4658 -25.0732 -30.873 -44.8398 -30.873h-113.709
-c-22.0557 0 -40 -17.9443 -40 -40c0 -4.41113 3.58887 -8 8 -8h131.552c0.0175781 0 0.0712891 -0.0273438 0.0888672 -0.0273438c9.16992 0 17.9404 -1.72461 26.0039 -4.86621l99.752 -38.7881c18.5898 -7.22852 30.6035 -24.7881 30.6035 -44.7363v-23.582h128z" />
-    <glyph glyph-name="hand-spock" unicode="&#xf259;" 
-d="M501.03 331.824c6.92773 -11.1826 10.9697 -24.4053 10.9697 -38.5146c0 -5.92676 -0.706055 -11.6885 -2.03809 -17.208l-57.623 -241.963c-13.2236 -56.1904 -63.707 -98.1387 -123.908 -98.1387h-0.352539h-107.455
-c-0.0761719 0 -0.193359 0.00195312 -0.270508 0.00195312c-40.9248 0 -78.1475 15.9814 -105.761 42.0391l-91.3652 85.9766c-14.3076 13.4434 -23.2246 32.5547 -23.2246 53.7168c0 19.5254 7.61035 37.2861 20.0254 50.4766
-c5.31836 5.66406 29.875 29.3926 68.1152 21.8477l-24.3594 82.1973c-1.97363 6.64844 -2.97656 13.6836 -2.97656 20.9688c0 38.6953 29.8926 70.4639 67.8262 73.4531c-0.246094 2.45117 -0.34082 4.85547 -0.34082 7.37207c0 34.4199 23.585 63.376 55.4619 71.5752
-c43.248 10.9785 80.5645 -17.7012 89.6602 -53.0723l13.6836 -53.207l4.64648 22.6602c6.99023 33.5186 36.6826 58.8037 72.2373 58.916c8.73438 0 56.625 -3.26953 70.7383 -54.0801c15.0664 0.710938 46.9199 -3.50977 66.3105 -35.0176zM463.271 287.219
-c7.86914 32.9844 -42.1211 45.2695 -50.0859 11.9219l-24.8008 -104.146c-4.38867 -18.4141 -31.7783 -11.8926 -28.0557 6.2168l28.5479 139.166c7.39844 36.0703 -43.3076 45.0703 -50.1182 11.9629l-31.791 -154.971
-c-3.54883 -17.3086 -28.2832 -18.0469 -32.7109 -0.804688l-47.3262 184.035c-8.43359 32.8105 -58.3691 20.2676 -49.8652 -12.8359l42.4414 -165.039c4.81641 -18.7207 -23.3711 -26.9121 -28.9648 -8.00781l-31.3438 105.779
-c-9.6875 32.6465 -59.1191 18.2578 -49.3867 -14.625l36.0137 -121.539c6.59375 -22.2441 10.1777 -45.7803 10.1777 -70.1523c0 -6.54297 -8.05664 -10.9355 -13.4824 -5.82617l-51.123 48.1074c-24.7852 23.4082 -60.0527 -14.1875 -35.2793 -37.4902l91.3691 -85.9805
-c19.0469 -17.9736 44.75 -28.998 72.9795 -28.998h0.157227h107.455c0.0732422 0 0.138672 0.0429688 0.212891 0.0429688c37.5791 0 69.1016 26.1416 77.3564 61.2168z" />
-    <glyph glyph-name="hand-pointer" unicode="&#xf25a;" horiz-adv-x="448" 
-d="M358.182 268.639c43.1934 16.6348 89.8184 -15.7949 89.8184 -62.6387v-84c-0.000976562 -5.24023 -0.600586 -10.3037 -1.72754 -15.2041l-27.4297 -118.999c-6.98242 -30.2969 -33.7549 -51.7969 -64.5566 -51.7969h-178.286
-c-21.2588 0 -41.3682 10.4102 -53.791 27.8457l-109.699 154.001c-21.2432 29.8193 -14.8047 71.3574 14.5498 93.1523c18.8115 13.9658 42.1748 16.2822 62.083 8.87207v161.129c0 36.9443 29.7363 67 66.2861 67s66.2861 -30.0557 66.2861 -67v-73.6338
-c20.4131 2.85742 41.4678 -3.94238 56.5947 -19.6289c27.1934 12.8467 60.3799 5.66992 79.8721 -19.0986zM80.9854 168.303c-14.4004 20.2119 -43.8008 -2.38281 -29.3945 -22.6055l109.712 -154c3.43457 -4.81934 8.92871 -7.69727 14.6973 -7.69727h178.285
-c8.49219 0 15.8037 5.99414 17.7822 14.5762l27.4297 119.001c0.333008 1.44629 0.501953 2.93457 0.501953 4.42285v84c0 25.1602 -36.5713 25.1211 -36.5713 0c0 -8.83594 -7.16309 -16 -16 -16h-6.85645c-8.83691 0 -16 7.16406 -16 16v21
-c0 25.1602 -36.5713 25.1201 -36.5713 0v-21c0 -8.83594 -7.16309 -16 -16 -16h-6.85938c-8.83691 0 -16 7.16406 -16 16v35c0 25.1602 -36.5703 25.1201 -36.5703 0v-35c0 -8.83594 -7.16309 -16 -16 -16h-6.85742c-8.83691 0 -16 7.16406 -16 16v175
-c0 25.1602 -36.5713 25.1201 -36.5713 0v-241.493c0 -15.5703 -20.0352 -21.9092 -29.0303 -9.2832zM176.143 48v96c0 8.83691 6.26855 16 14 16h6c7.73242 0 14 -7.16309 14 -16v-96c0 -8.83691 -6.26758 -16 -14 -16h-6c-7.73242 0 -14 7.16309 -14 16zM251.571 48v96
-c0 8.83691 6.26758 16 14 16h6c7.73145 0 14 -7.16309 14 -16v-96c0 -8.83691 -6.26855 -16 -14 -16h-6c-7.73242 0 -14 7.16309 -14 16zM327 48v96c0 8.83691 6.26758 16 14 16h6c7.73242 0 14 -7.16309 14 -16v-96c0 -8.83691 -6.26758 -16 -14 -16h-6
-c-7.73242 0 -14 7.16309 -14 16z" />
-    <glyph glyph-name="hand-peace" unicode="&#xf25b;" horiz-adv-x="448" 
-d="M362.146 256.024c42.5908 13.3184 85.8535 -19.0684 85.8535 -64.0244l-0.0117188 -70.001c-0.000976562 -5.24023 -0.600586 -10.3027 -1.72949 -15.2031l-27.4268 -118.999c-6.99707 -30.3564 -33.8105 -51.7969 -64.5547 -51.7969h-205.702
-c-23.8447 0 -45.9502 13.0303 -57.6904 34.0059l-54.8525 97.999c-19.2607 34.4092 -5.82422 67.2617 24.7324 92.2178l-55.7568 144.928c-14.5791 37.8867 3.72754 80.6113 41.2012 95.6416c37.6406 15.0977 80.3691 -3.63477 95.1123 -41.9424l18.6787 -78.8496
-l-9.14062 94c0 40.8037 32.8096 74 73.1396 74s73.1406 -33.1963 73.1406 -74v-87.6348c26.2451 3.6748 51.2959 -8.69238 65.0068 -30.3408zM399.987 122l-0.000976562 70c0 25.1602 -36.5674 25.1201 -36.5674 0c0 -8.83691 -7.16309 -16 -16 -16h-6.85547
-c-8.83789 0 -16 7.16309 -16 16v28c0 25.1592 -36.5674 25.1221 -36.5674 0v-28c0 -8.83691 -7.16309 -16 -16 -16h-6.85645c-8.83691 0 -16 7.16309 -16 16v182c0 34.4297 -50.2803 34.375 -50.2803 0v-182c0 -8.83691 -7.16309 -16 -16 -16h-11.6328
-c-6.80859 0 -12.624 4.25391 -14.9326 10.2539l-59.7842 155.357c-12.1396 31.5518 -59.2842 13.4326 -46.7168 -19.2227l64.0898 -166.549c0.685547 -1.78125 1.07812 -3.71875 1.07812 -5.74121c0 -4.99707 -2.2959 -9.46289 -5.88965 -12.3975l-26.6475 -21.7646
-c-7.12695 -5.81934 -9.06445 -16.3467 -4.50781 -24.4873l54.8535 -98c3.26367 -5.82812 9.31934 -9.44922 15.8057 -9.44922h205.701c8.49121 0 15.8037 5.99414 17.7812 14.5762l27.4277 119.001c0.333008 1.44629 0.501953 2.93457 0.501953 4.42285z" />
-    <glyph glyph-name="registered" unicode="&#xf25d;" 
-d="M256 440c136.967 0 248 -111.033 248 -248s-111.033 -248 -248 -248s-248 111.033 -248 248s111.033 248 248 248zM256 -8c110.549 0 200 89.4678 200 200c0 110.549 -89.4678 200 -200 200c-110.549 0 -200 -89.4688 -200 -200c0 -110.549 89.4678 -200 200 -200z
-M366.442 73.791c4.40332 -7.99219 -1.37012 -17.791 -10.5107 -17.791h-42.8096c-0.00488281 0 -0.000976562 -0.0126953 -0.00585938 -0.0126953c-4.58594 0 -8.57422 2.58301 -10.5869 6.37305l-47.5156 89.3027h-31.958v-83.6631c0 -6.61719 -5.38281 -12 -12 -12
-h-38.5674c-6.61719 0 -12 5.38281 -12 12v248.304c0 6.61719 5.38281 12 12 12h78.667c71.251 0 101.498 -32.749 101.498 -85.252c0 -31.6123 -15.2148 -59.2969 -39.4824 -73.1758c3.02148 -4.61719 0.225586 0.199219 53.2715 -96.085zM256.933 208.094
-c20.9131 0 32.4307 11.5186 32.4316 32.4316c0 19.5752 -6.5127 31.709 -38.9297 31.709h-27.377v-64.1406h33.875z" />
-    <glyph glyph-name="calendar-plus" unicode="&#xf271;" horiz-adv-x="448" 
-d="M336 156v-24c0 -6.59961 -5.40039 -12 -12 -12h-76v-76c0 -6.59961 -5.40039 -12 -12 -12h-24c-6.59961 0 -12 5.40039 -12 12v76h-76c-6.59961 0 -12 5.40039 -12 12v24c0 6.59961 5.40039 12 12 12h76v76c0 6.59961 5.40039 12 12 12h24c6.59961 0 12 -5.40039 12 -12
-v-76h76c6.59961 0 12 -5.40039 12 -12zM448 336v-352c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h48v52c0 6.59961 5.40039 12 12 12h40c6.59961 0 12 -5.40039 12 -12v-52h128v52c0 6.59961 5.40039 12 12 12h40
-c6.59961 0 12 -5.40039 12 -12v-52h48c26.5 0 48 -21.5 48 -48zM400 -10v298h-352v-298c0 -3.2998 2.7002 -6 6 -6h340c3.2998 0 6 2.7002 6 6z" />
-    <glyph glyph-name="calendar-minus" unicode="&#xf272;" horiz-adv-x="448" 
-d="M124 120c-6.59961 0 -12 5.40039 -12 12v24c0 6.59961 5.40039 12 12 12h200c6.59961 0 12 -5.40039 12 -12v-24c0 -6.59961 -5.40039 -12 -12 -12h-200zM448 336v-352c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h48v52
-c0 6.59961 5.40039 12 12 12h40c6.59961 0 12 -5.40039 12 -12v-52h128v52c0 6.59961 5.40039 12 12 12h40c6.59961 0 12 -5.40039 12 -12v-52h48c26.5 0 48 -21.5 48 -48zM400 -10v298h-352v-298c0 -3.2998 2.7002 -6 6 -6h340c3.2998 0 6 2.7002 6 6z" />
-    <glyph glyph-name="calendar-times" unicode="&#xf273;" horiz-adv-x="448" 
-d="M311.7 73.2998l-17 -17c-4.7002 -4.7002 -12.2998 -4.7002 -17 0l-53.7002 53.7998l-53.7002 -53.6992c-4.7002 -4.7002 -12.2998 -4.7002 -17 0l-17 17c-4.7002 4.69922 -4.7002 12.2998 0 17l53.7002 53.6992l-53.7002 53.7002c-4.7002 4.7002 -4.7002 12.2998 0 17
-l17 17c4.7002 4.7002 12.2998 4.7002 17 0l53.7002 -53.7002l53.7002 53.7002c4.7002 4.7002 12.2998 4.7002 17 0l17 -17c4.7002 -4.7002 4.7002 -12.2998 0 -17l-53.7998 -53.7998l53.6992 -53.7002c4.80078 -4.7002 4.80078 -12.2998 0.100586 -17zM448 336v-352
-c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h48v52c0 6.59961 5.40039 12 12 12h40c6.59961 0 12 -5.40039 12 -12v-52h128v52c0 6.59961 5.40039 12 12 12h40c6.59961 0 12 -5.40039 12 -12v-52h48c26.5 0 48 -21.5 48 -48zM400 -10
-v298h-352v-298c0 -3.2998 2.7002 -6 6 -6h340c3.2998 0 6 2.7002 6 6z" />
-    <glyph glyph-name="calendar-check" unicode="&#xf274;" horiz-adv-x="448" 
-d="M400 384c26.5098 0 48 -21.4902 48 -48v-352c0 -26.5098 -21.4902 -48 -48 -48h-352c-26.5098 0 -48 21.4902 -48 48v352c0 26.5098 21.4902 48 48 48h48v52c0 6.62695 5.37305 12 12 12h40c6.62695 0 12 -5.37305 12 -12v-52h128v52c0 6.62695 5.37305 12 12 12h40
-c6.62695 0 12 -5.37305 12 -12v-52h48zM394 -16c3.31152 0 6 2.68848 6 6v298h-352v-298c0 -3.31152 2.68848 -6 6 -6h340zM341.151 184.65l-142.31 -141.169c-4.70508 -4.66699 -12.3027 -4.6377 -16.9707 0.0673828l-75.0908 75.6992
-c-4.66699 4.70508 -4.6377 12.3027 0.0673828 16.9707l22.7197 22.5361c4.70508 4.66699 12.3027 4.63672 16.9697 -0.0693359l44.1035 -44.4609l111.072 110.182c4.70508 4.66699 12.3027 4.63672 16.9707 -0.0683594l22.5361 -22.7178
-c4.66699 -4.70508 4.63672 -12.3027 -0.0683594 -16.9697z" />
-    <glyph glyph-name="map" unicode="&#xf279;" horiz-adv-x="576" 
-d="M560.02 416c8.4502 0 15.9805 -6.83008 15.9805 -16.0195v-346.32c0 -13.4707 -8.32422 -24.9951 -20.1201 -29.71l-151.83 -52.8105c-6.23242 -2.02832 -12.9023 -3.12305 -19.8076 -3.12305c-7.07324 0 -13.8799 1.15039 -20.2422 3.27344l-172 60.71l-170.05 -62.8398
-c-1.99023 -0.790039 -4 -1.16016 -5.95996 -1.16016c-8.45996 0 -15.9902 6.83008 -15.9902 16.0195v346.32c0.00292969 13.4697 8.32617 24.9932 20.1201 29.71l151.83 52.8105c6.43945 2.08984 13.1201 3.13965 19.8096 3.13965
-c7.06641 -0.00292969 13.8789 -1.16602 20.2402 -3.28027l172 -60.7197h0.00976562l170.05 62.8398c1.98047 0.790039 4 1.16016 5.95996 1.16016zM224 357.58v-285.97l128 -45.1904v285.97zM48 29.9502l127.36 47.0801l0.639648 0.229492v286.2l-128 -44.5303v-288.979z
-M528 65.0801v288.97l-127.36 -47.0693l-0.639648 -0.240234v-286.19z" />
-    <glyph glyph-name="comment-alt" unicode="&#xf27a;" 
-d="M448 448c35.2998 0 64 -28.7002 64 -64v-288c0 -35.2998 -28.7002 -64 -64 -64h-144l-124.9 -93.5996c-2.19922 -1.7002 -4.69922 -2.40039 -7.09961 -2.40039c-6.2002 0 -12 4.90039 -12 12v84h-96c-35.2998 0 -64 28.7002 -64 64v288c0 35.2998 28.7002 64 64 64h384z
-M464 96v288c0 8.7998 -7.2002 16 -16 16h-384c-8.7998 0 -16 -7.2002 -16 -16v-288c0 -8.7998 7.2002 -16 16 -16h144v-60l67.2002 50.4004l12.7998 9.59961h160c8.7998 0 16 7.2002 16 16z" />
-    <glyph glyph-name="pause-circle" unicode="&#xf28b;" 
-d="M256 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM256 -8c110.5 0 200 89.5 200 200s-89.5 200 -200 200s-200 -89.5 -200 -200s89.5 -200 200 -200zM352 272v-160c0 -8.7998 -7.2002 -16 -16 -16h-48
-c-8.7998 0 -16 7.2002 -16 16v160c0 8.7998 7.2002 16 16 16h48c8.7998 0 16 -7.2002 16 -16zM240 272v-160c0 -8.7998 -7.2002 -16 -16 -16h-48c-8.7998 0 -16 7.2002 -16 16v160c0 8.7998 7.2002 16 16 16h48c8.7998 0 16 -7.2002 16 -16z" />
-    <glyph glyph-name="stop-circle" unicode="&#xf28d;" 
-d="M504 192c0 -137 -111 -248 -248 -248s-248 111 -248 248s111 248 248 248s248 -111 248 -248zM56 192c0 -110.5 89.5 -200 200 -200s200 89.5 200 200s-89.5 200 -200 200s-200 -89.5 -200 -200zM352 272v-160c0 -8.7998 -7.2002 -16 -16 -16h-160
-c-8.7998 0 -16 7.2002 -16 16v160c0 8.7998 7.2002 16 16 16h160c8.7998 0 16 -7.2002 16 -16z" />
-    <glyph glyph-name="handshake" unicode="&#xf2b5;" horiz-adv-x="640" 
-d="M519.2 320.1h120.8v-255.699h-64c-17.5 0 -31.7998 14.1992 -31.9004 31.6992h-57.8994c-1.7998 -8.19922 -5.2998 -16.0996 -10.9004 -23l-26.2002 -32.2998c-15.7998 -19.3994 -41.8994 -25.5 -64 -16.7998c-13.5 -16.5996 -30.5996 -24 -48.7998 -24
-c-15.0996 0 -28.5996 5.09961 -41.0996 15.9004c-31.7998 -21.9004 -74.7002 -21.3008 -105.601 3.7998l-84.5996 76.3994h-9.09961c-0.100586 -17.5 -14.3008 -31.6992 -31.9004 -31.6992h-64v255.699h118l47.5996 47.6006c10.5 10.3994 24.8008 16.2998 39.6006 16.2998
-h226.8c15.4326 0 29.4326 -6.22168 39.5996 -16.2998zM48 96.4004c8.7998 0 16 7.09961 16 16c0 8.7998 -7.2002 16 -16 16s-16 -7.2002 -16 -16c0 -8.80078 7.2002 -16 16 -16zM438 103.3c2.7002 3.40039 2.2002 8.5 -1.2002 11.2998l-108.2 87.8008l-8.19922 -7.5
-c-40.3008 -36.8008 -86.7002 -11.8008 -101.5 4.39941c-26.7002 29 -25 74.4004 4.39941 101.3l38.7002 35.5h-56.7002c-2 -0.799805 -3.7002 -1.5 -5.7002 -2.2998l-61.6992 -61.5996h-41.9004v-128.101h27.7002l97.2998 -88
-c16.0996 -13.0996 41.4004 -10.5 55.2998 6.60059l15.6006 19.2002l36.7998 -31.5c3 -2.40039 12 -4.90039 18 2.39941l30 36.5l23.8994 -19.3994c3.5 -2.80078 8.5 -2.2002 11.3008 1.19922zM544 144.1v128h-44.7002l-61.7002 61.6006
-c-1.39941 1.5 -3.39941 2.2998 -5.5 2.2998l-83.6992 -0.200195c-10 0 -19.6006 -3.7002 -27 -10.5l-65.6006 -60.0996c-9.7002 -8.7998 -10.5 -24 -1.2002 -33.9004c8.90039 -9.39941 25.1006 -8.7002 34.6006 0l55.2002 50.6006c6.5 5.89941 16.5996 5.5 22.5996 -1
-l10.9004 -11.7002c6 -6.5 5.5 -16.6006 -1 -22.6006l-12.5 -11.3994l102.699 -83.4004c2.80078 -2.2998 5.40039 -4.89941 7.7002 -7.7002h69.2002zM592 96.4004c8.7998 0 16 7.09961 16 16c0 8.7998 -7.2002 16 -16 16s-16 -7.2002 -16 -16c0 -8.80078 7.2002 -16 16 -16z
-" />
-    <glyph glyph-name="envelope-open" unicode="&#xf2b6;" 
-d="M494.586 283.484c10.6523 -8.80762 17.4141 -22.1064 17.4141 -36.9932v-262.491c0 -26.5098 -21.4902 -48 -48 -48h-416c-26.5098 0 -48 21.4902 -48 48v262.515c0 14.9355 6.80469 28.2705 17.5146 37.0771c4.08008 3.35449 110.688 89.0996 135.15 108.549
-c22.6992 18.1426 60.1299 55.8594 103.335 55.8594c43.4365 0 81.2314 -38.1914 103.335 -55.8594c23.5283 -18.707 130.554 -104.773 135.251 -108.656zM464 -10v253.632c0 0.00195312 0.00390625 0.000976562 0.00390625 0.00292969
-c0 1.88184 -0.869141 3.56152 -2.22754 4.66016c-15.8633 12.8232 -108.793 87.5752 -132.366 106.316c-17.5527 14.0195 -49.7168 45.3887 -73.4102 45.3887c-23.6016 0 -55.2451 -30.8799 -73.4102 -45.3887c-23.5713 -18.7393 -116.494 -93.4795 -132.364 -106.293
-c-1.40918 -1.13965 -2.22559 -2.85254 -2.22559 -4.66504v-253.653c0 -3.31152 2.68848 -6 6 -6h404c3.31152 0 6 2.68848 6 6zM432.009 177.704c4.24902 -5.15918 3.46484 -12.7949 -1.74512 -16.9814c-28.9746 -23.2822 -59.2734 -47.5967 -70.9287 -56.8623
-c-22.6992 -18.1436 -60.1299 -55.8604 -103.335 -55.8604c-43.4521 0 -81.2871 38.2373 -103.335 55.8604c-11.2793 8.9668 -41.7441 33.4131 -70.9268 56.8643c-5.20996 4.1875 -5.99316 11.8223 -1.74512 16.9814l15.2578 18.5283
-c4.17773 5.07227 11.6572 5.84277 16.7793 1.72559c28.6182 -23.001 58.5654 -47.0352 70.5596 -56.5713c17.5527 -14.0195 49.7168 -45.3887 73.4102 -45.3887c23.6016 0 55.2461 30.8799 73.4102 45.3887c11.9941 9.53516 41.9434 33.5703 70.5625 56.5684
-c5.12207 4.11621 12.6016 3.3457 16.7783 -1.72656z" />
-    <glyph glyph-name="address-book" unicode="&#xf2b9;" horiz-adv-x="448" 
-d="M436 288h-20v-64h20c6.59961 0 12 -5.40039 12 -12v-40c0 -6.59961 -5.40039 -12 -12 -12h-20v-64h20c6.59961 0 12 -5.40039 12 -12v-40c0 -6.59961 -5.40039 -12 -12 -12h-20v-48c0 -26.5 -21.5 -48 -48 -48h-320c-26.5 0 -48 21.5 -48 48v416c0 26.5 21.5 48 48 48
-h320c26.5 0 48 -21.5 48 -48v-48h20c6.59961 0 12 -5.40039 12 -12v-40c0 -6.59961 -5.40039 -12 -12 -12zM368 -16v416h-320v-416h320zM208 192c-35.2998 0 -64 28.7002 -64 64s28.7002 64 64 64s64 -28.7002 64 -64s-28.7002 -64 -64 -64zM118.4 64
-c-12.4004 0 -22.4004 8.59961 -22.4004 19.2002v19.2002c0 31.7998 30.0996 57.5996 67.2002 57.5996c11.3994 0 17.8994 -8 44.7998 -8c26.0996 0 34 8 44.7998 8c37.1006 0 67.2002 -25.7998 67.2002 -57.5996v-19.2002c0 -10.6006 -10 -19.2002 -22.4004 -19.2002
-h-179.199z" />
-    <glyph glyph-name="address-card" unicode="&#xf2bb;" horiz-adv-x="576" 
-d="M528 416c26.5 0 48 -21.5 48 -48v-352c0 -26.5 -21.5 -48 -48 -48h-480c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h480zM528 16v352h-480v-352h480zM208 192c-35.2998 0 -64 28.7002 -64 64s28.7002 64 64 64s64 -28.7002 64 -64s-28.7002 -64 -64 -64z
-M118.4 64c-12.4004 0 -22.4004 8.59961 -22.4004 19.2002v19.2002c0 31.7998 30.0996 57.5996 67.2002 57.5996c11.3994 0 17.8994 -8 44.7998 -8c26.0996 0 34 8 44.7998 8c37.1006 0 67.2002 -25.7998 67.2002 -57.5996v-19.2002
-c0 -10.6006 -10 -19.2002 -22.4004 -19.2002h-179.199zM360 128c-4.40039 0 -8 3.59961 -8 8v16c0 4.40039 3.59961 8 8 8h112c4.40039 0 8 -3.59961 8 -8v-16c0 -4.40039 -3.59961 -8 -8 -8h-112zM360 192c-4.40039 0 -8 3.59961 -8 8v16c0 4.40039 3.59961 8 8 8h112
-c4.40039 0 8 -3.59961 8 -8v-16c0 -4.40039 -3.59961 -8 -8 -8h-112zM360 256c-4.40039 0 -8 3.59961 -8 8v16c0 4.40039 3.59961 8 8 8h112c4.40039 0 8 -3.59961 8 -8v-16c0 -4.40039 -3.59961 -8 -8 -8h-112z" />
-    <glyph glyph-name="user-circle" unicode="&#xf2bd;" horiz-adv-x="496" 
-d="M248 344c53 0 96 -43 96 -96s-43 -96 -96 -96s-96 43 -96 96s43 96 96 96zM248 200c26.5 0 48 21.5 48 48s-21.5 48 -48 48s-48 -21.5 -48 -48s21.5 -48 48 -48zM248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM248 -8
-c49.7002 0 95.0996 18.2998 130.1 48.4004c-14.8994 23 -40.3994 38.5 -69.5996 39.5c-20.7998 -6.5 -40.5996 -9.60059 -60.5 -9.60059s-39.7002 3.2002 -60.5 9.60059c-29.2002 -0.900391 -54.7002 -16.5 -69.5996 -39.5c35 -30.1006 80.3994 -48.4004 130.1 -48.4004z
-M410.7 76.0996c23.3994 32.7002 37.2998 72.7002 37.2998 115.9c0 110.3 -89.7002 200 -200 200s-200 -89.7002 -200 -200c0 -43.2002 13.9004 -83.2002 37.2998 -115.9c24.5 31.4004 62.2002 51.9004 105.101 51.9004c10.1992 0 26.0996 -9.59961 57.5996 -9.59961
-c31.5996 0 47.4004 9.59961 57.5996 9.59961c43 0 80.7002 -20.5 105.101 -51.9004z" />
-    <glyph glyph-name="id-badge" unicode="&#xf2c1;" horiz-adv-x="384" 
-d="M336 448c26.5 0 48 -21.5 48 -48v-416c0 -26.5 -21.5 -48 -48 -48h-288c-26.5 0 -48 21.5 -48 48v416c0 26.5 21.5 48 48 48h288zM336 -16v416h-288v-416h288zM144 336c-8.7998 0 -16 7.2002 -16 16s7.2002 16 16 16h96c8.7998 0 16 -7.2002 16 -16s-7.2002 -16 -16 -16
-h-96zM192 160c-35.2998 0 -64 28.7002 -64 64s28.7002 64 64 64s64 -28.7002 64 -64s-28.7002 -64 -64 -64zM102.4 32c-12.4004 0 -22.4004 8.59961 -22.4004 19.2002v19.2002c0 31.7998 30.0996 57.5996 67.2002 57.5996c11.3994 0 17.8994 -8 44.7998 -8
-c26.0996 0 34 8 44.7998 8c37.1006 0 67.2002 -25.7998 67.2002 -57.5996v-19.2002c0 -10.6006 -10 -19.2002 -22.4004 -19.2002h-179.199z" />
-    <glyph glyph-name="id-card" unicode="&#xf2c2;" horiz-adv-x="576" 
-d="M528 416c26.5 0 48 -21.5 48 -48v-352c0 -26.5 -21.5 -48 -48 -48h-480c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h480zM528 16v288h-480v-288h32.7998c-1 4.5 -0.799805 -3.59961 -0.799805 22.4004c0 31.7998 30.0996 57.5996 67.2002 57.5996
-c11.3994 0 17.8994 -8 44.7998 -8c26.0996 0 34 8 44.7998 8c37.1006 0 67.2002 -25.7998 67.2002 -57.5996c0 -26 0.0996094 -17.9004 -0.799805 -22.4004h224.8zM360 96c-4.40039 0 -8 3.59961 -8 8v16c0 4.40039 3.59961 8 8 8h112c4.40039 0 8 -3.59961 8 -8v-16
-c0 -4.40039 -3.59961 -8 -8 -8h-112zM360 160c-4.40039 0 -8 3.59961 -8 8v16c0 4.40039 3.59961 8 8 8h112c4.40039 0 8 -3.59961 8 -8v-16c0 -4.40039 -3.59961 -8 -8 -8h-112zM360 224c-4.40039 0 -8 3.59961 -8 8v16c0 4.40039 3.59961 8 8 8h112
-c4.40039 0 8 -3.59961 8 -8v-16c0 -4.40039 -3.59961 -8 -8 -8h-112zM192 128c-35.2998 0 -64 28.7002 -64 64s28.7002 64 64 64s64 -28.7002 64 -64s-28.7002 -64 -64 -64z" />
-    <glyph glyph-name="window-maximize" unicode="&#xf2d0;" 
-d="M464 416c26.5 0 48 -21.5 48 -48v-352c0 -26.5 -21.5 -48 -48 -48h-416c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h416zM464 22v234h-416v-234c0 -3.2998 2.7002 -6 6 -6h404c3.2998 0 6 2.7002 6 6z" />
-    <glyph glyph-name="window-minimize" unicode="&#xf2d1;" 
-d="M480 -32h-448c-17.7002 0 -32 14.2998 -32 32s14.2998 32 32 32h448c17.7002 0 32 -14.2998 32 -32s-14.2998 -32 -32 -32z" />
-    <glyph glyph-name="window-restore" unicode="&#xf2d2;" 
-d="M464 448c26.5 0 48 -21.5 48 -48v-320c0 -26.5 -21.5 -48 -48 -48h-48v-48c0 -26.5 -21.5 -48 -48 -48h-320c-26.5 0 -48 21.5 -48 48v320c0 26.5 21.5 48 48 48h48v48c0 26.5 21.5 48 48 48h320zM368 -16v208h-320v-208h320zM464 80v320h-320v-48h224
-c26.5 0 48 -21.5 48 -48v-224h48z" />
-    <glyph glyph-name="snowflake" unicode="&#xf2dc;" horiz-adv-x="448" 
-d="M440.1 92.7998c7.60059 -4.39941 10.1006 -14.2002 5.5 -21.7002l-7.89941 -13.8994c-4.40039 -7.7002 -14 -10.2998 -21.5 -5.90039l-39.2002 23l9.09961 -34.7002c2.30078 -8.5 -2.69922 -17.2998 -11.0996 -19.5996l-15.2002 -4.09961
-c-8.39941 -2.30078 -17.0996 2.7998 -19.2998 11.2998l-21.2998 81l-71.9004 42.2002v-84.5l58.2998 -59.3008c6.10059 -6.19922 6.10059 -16.3994 0 -22.5996l-11.0996 -11.2998c-6.09961 -6.2002 -16.0996 -6.2002 -22.2002 0l-24.8994 25.3994v-46.0996
-c0 -8.7998 -7 -16 -15.7002 -16h-15.7002c-8.7002 0 -15.7002 7.2002 -15.7002 16v45.9004l-24.8994 -25.4004c-6.10059 -6.2002 -16.1006 -6.2002 -22.2002 0l-11.1006 11.2998c-6.09961 6.2002 -6.09961 16.4004 0 22.6006l58.3008 59.2998v84.5l-71.9004 -42.2002
-l-21.2998 -81c-2.2998 -8.5 -10.9004 -13.5996 -19.2998 -11.2998l-15.2002 4.09961c-8.40039 2.2998 -13.2998 11.1006 -11.1006 19.6006l9.10059 34.6992l-39.2002 -23c-7.5 -4.39941 -17.2002 -1.7998 -21.5 5.90039l-7.90039 13.9004
-c-4.2998 7.69922 -1.69922 17.5 5.80078 21.8994l39.1992 23l-34.0996 9.2998c-8.40039 2.30078 -13.2998 11.1006 -11.0996 19.6006l4.09961 15.5c2.2998 8.5 10.9004 13.5996 19.2998 11.2998l79.7002 -21.7002l71.9004 42.2002l-71.9004 42.2002l-79.7002 -21.7002
-c-8.39941 -2.2998 -17.0996 2.7998 -19.2998 11.2998l-4.09961 15.5c-2.30078 8.5 2.69922 17.2998 11.0996 19.6006l34.0996 9.09961l-39.1992 23c-7.60059 4.5 -10.1006 14.2002 -5.80078 21.9004l7.90039 13.8994c4.40039 7.7002 14 10.2998 21.5 5.90039l39.2002 -23
-l-9.10059 34.7002c-2.2998 8.5 2.7002 17.2998 11.1006 19.5996l15.2002 4.09961c8.39941 2.30078 17.0996 -2.7998 19.2998 -11.2998l21.2998 -81l71.9004 -42.2002v84.5l-58.3008 59.3008c-6.09961 6.19922 -6.09961 16.3994 0 22.5996l11.5 11.2998
-c6.10059 6.2002 16.1006 6.2002 22.2002 0l24.9004 -25.3994v46.0996c0 8.7998 7 16 15.7002 16h15.6992c8.7002 0 15.7002 -7.2002 15.7002 -16v-45.9004l24.9004 25.4004c6.09961 6.2002 16.0996 6.2002 22.2002 0l11.0996 -11.2998
-c6.09961 -6.2002 6.09961 -16.4004 0 -22.6006l-58.2998 -59.2998v-84.5l71.8994 42.2002l21.3008 81c2.2998 8.5 10.8994 13.5996 19.2998 11.2998l15.2002 -4.09961c8.39941 -2.2998 13.2998 -11.1006 11.0996 -19.6006l-9.09961 -34.6992l39.1992 23
-c7.5 4.39941 17.2002 1.7998 21.5 -5.90039l7.90039 -13.9004c4.2998 -7.69922 1.7002 -17.5 -5.7998 -21.8994l-39.2002 -23l34.0996 -9.2998c8.40039 -2.30078 13.3008 -11.1006 11.1006 -19.6006l-4.10059 -15.5c-2.2998 -8.5 -10.8994 -13.5996 -19.2998 -11.2998
-l-79.7002 21.7002l-71.8994 -42.2002l71.7998 -42.2002l79.7002 21.7002c8.39941 2.2998 17.0996 -2.7998 19.2998 -11.2998l4.09961 -15.5c2.30078 -8.5 -2.69922 -17.2998 -11.0996 -19.6006l-34.0996 -9.2998z" />
-    <glyph glyph-name="trash-alt" unicode="&#xf2ed;" horiz-adv-x="448" 
-d="M268 32c-6.62305 0 -12 5.37695 -12 12v216c0 6.62305 5.37695 12 12 12h24c6.62305 0 12 -5.37695 12 -12v-216c0 -6.62305 -5.37695 -12 -12 -12h-24zM432 368c8.83105 0 16 -7.16895 16 -16v-16c0 -8.83105 -7.16895 -16 -16 -16h-16v-336
-c0 -26.4922 -21.5078 -48 -48 -48h-288c-26.4922 0 -48 21.5078 -48 48v336h-16c-8.83105 0 -16 7.16895 -16 16v16c0 8.83105 7.16895 16 16 16h82.4102l34.0195 56.7002c8.39258 13.9844 23.6777 23.2998 41.1602 23.2998h100.82
-c0.0078125 0 -0.015625 0.0517578 -0.0078125 0.0517578c17.4824 0 32.7949 -9.36719 41.1875 -23.3516l34 -56.7002h82.4102zM171.84 397.09l-17.4502 -29.0898h139.221l-17.46 29.0898c-1.0498 1.74707 -2.95898 2.91016 -5.14355 2.91016h-0.00683594h-94
-c-0.00585938 0 -0.00683594 0.00683594 -0.0126953 0.00683594c-2.18457 0 -4.09766 -1.16992 -5.14746 -2.91699zM368 -16v336h-288v-336h288zM156 32c-6.62305 0 -12 5.37695 -12 12v216c0 6.62305 5.37695 12 12 12h24c6.62305 0 12 -5.37695 12 -12v-216
-c0 -6.62305 -5.37695 -12 -12 -12h-24z" />
-    <glyph glyph-name="images" unicode="&#xf302;" horiz-adv-x="576" 
-d="M480 32v-16c0 -26.5098 -21.4902 -48 -48 -48h-384c-26.5098 0 -48 21.4902 -48 48v256c0 26.5098 21.4902 48 48 48h16v-48h-10c-3.31152 0 -6 -2.68848 -6 -6v-244c0 -3.31152 2.68848 -6 6 -6h372c3.31152 0 6 2.68848 6 6v10h48zM522 368h-372
-c-3.31152 0 -6 -2.68848 -6 -6v-244c0 -3.31152 2.68848 -6 6 -6h372c3.31152 0 6 2.68848 6 6v244c0 3.31152 -2.68848 6 -6 6zM528 416c26.5098 0 48 -21.4902 48 -48v-256c0 -26.5098 -21.4902 -48 -48 -48h-384c-26.5098 0 -48 21.4902 -48 48v256
-c0 26.5098 21.4902 48 48 48h384zM264 304c0 -22.0908 -17.9092 -40 -40 -40s-40 17.9092 -40 40s17.9092 40 40 40s40 -17.9092 40 -40zM192 208l39.5146 39.5146c4.68652 4.68652 12.2842 4.68652 16.9717 0l39.5137 -39.5146l103.515 103.515
-c4.68652 4.68652 12.2842 4.68652 16.9717 0l71.5137 -71.5146v-80h-288v48z" />
-    <glyph glyph-name="clipboard" unicode="&#xf328;" horiz-adv-x="384" 
-d="M336 384c26.5 0 48 -21.5 48 -48v-352c0 -26.5 -21.5 -48 -48 -48h-288c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h80c0 35.2998 28.7002 64 64 64s64 -28.7002 64 -64h80zM192 408c-13.2998 0 -24 -10.7002 -24 -24s10.7002 -24 24 -24s24 10.7002 24 24
-s-10.7002 24 -24 24zM336 -10v340c0 3.2998 -2.7002 6 -6 6h-42v-36c0 -6.59961 -5.40039 -12 -12 -12h-168c-6.59961 0 -12 5.40039 -12 12v36h-42c-3.2998 0 -6 -2.7002 -6 -6v-340c0 -3.2998 2.7002 -6 6 -6h276c3.2998 0 6 2.7002 6 6z" />
-    <glyph glyph-name="arrow-alt-circle-down" unicode="&#xf358;" 
-d="M256 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM256 -8c110.5 0 200 89.5 200 200s-89.5 200 -200 200s-200 -89.5 -200 -200s89.5 -200 200 -200zM224 308c0 6.59961 5.40039 12 12 12h40c6.59961 0 12 -5.40039 12 -12v-116
-h67c10.7002 0 16.0996 -12.9004 8.5 -20.5l-99 -99c-4.7002 -4.7002 -12.2998 -4.7002 -17 0l-99 99c-7.5 7.59961 -2.2002 20.5 8.5 20.5h67v116z" />
-    <glyph glyph-name="arrow-alt-circle-left" unicode="&#xf359;" 
-d="M8 192c0 137 111 248 248 248s248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248zM456 192c0 110.5 -89.5 200 -200 200s-200 -89.5 -200 -200s89.5 -200 200 -200s200 89.5 200 200zM384 212v-40c0 -6.59961 -5.40039 -12 -12 -12h-116v-67
-c0 -10.7002 -12.9004 -16 -20.5 -8.5l-99 99c-4.7002 4.7002 -4.7002 12.2998 0 17l99 99c7.59961 7.59961 20.5 2.2002 20.5 -8.5v-67h116c6.59961 0 12 -5.40039 12 -12z" />
-    <glyph glyph-name="arrow-alt-circle-right" unicode="&#xf35a;" 
-d="M504 192c0 -137 -111 -248 -248 -248s-248 111 -248 248s111 248 248 248s248 -111 248 -248zM56 192c0 -110.5 89.5 -200 200 -200s200 89.5 200 200s-89.5 200 -200 200s-200 -89.5 -200 -200zM128 172v40c0 6.59961 5.40039 12 12 12h116v67
-c0 10.7002 12.9004 16 20.5 8.5l99 -99c4.7002 -4.7002 4.7002 -12.2998 0 -17l-99 -99c-7.59961 -7.59961 -20.5 -2.2002 -20.5 8.5v67h-116c-6.59961 0 -12 5.40039 -12 12z" />
-    <glyph glyph-name="arrow-alt-circle-up" unicode="&#xf35b;" 
-d="M256 -56c-137 0 -248 111 -248 248s111 248 248 248s248 -111 248 -248s-111 -248 -248 -248zM256 392c-110.5 0 -200 -89.5 -200 -200s89.5 -200 200 -200s200 89.5 200 200s-89.5 200 -200 200zM276 64h-40c-6.59961 0 -12 5.40039 -12 12v116h-67
-c-10.7002 0 -16 12.9004 -8.5 20.5l99 99c4.7002 4.7002 12.2998 4.7002 17 0l99 -99c7.59961 -7.59961 2.2002 -20.5 -8.5 -20.5h-67v-116c0 -6.59961 -5.40039 -12 -12 -12z" />
-    <glyph glyph-name="gem" unicode="&#xf3a5;" horiz-adv-x="576" 
-d="M464 448c4.09961 0 7.7998 -2 10.0996 -5.40039l99.9004 -147.199c2.90039 -4.40039 2.59961 -10.1006 -0.700195 -14.2002l-276 -340.8c-4.7998 -5.90039 -13.7998 -5.90039 -18.5996 0l-276 340.8c-3.2998 4 -3.60059 9.7998 -0.700195 14.2002l100 147.199
-c2.2002 3.40039 6 5.40039 10 5.40039h352zM444.7 400h-56.7998l51.6992 -96h68.4004zM242.6 400l-51.5996 -96h194l-51.7002 96h-90.7002zM131.3 400l-63.2998 -96h68.4004l51.6992 96h-56.7998zM88.2998 256l119.7 -160l-68.2998 160h-51.4004zM191.2 256l96.7998 -243.3
-l96.7998 243.3h-193.6zM368 96l119.6 160h-51.3994z" />
-    <glyph glyph-name="money-bill-alt" unicode="&#xf3d1;" horiz-adv-x="640" 
-d="M320 304c53.0195 0 96 -50.1396 96 -112c0 -61.8701 -43 -112 -96 -112c-53.0195 0 -96 50.1504 -96 112c0 61.8604 42.9805 112 96 112zM360 136v16c0 4.41992 -3.58008 8 -8 8h-16v88c0 4.41992 -3.58008 8 -8 8h-13.5801
-c-4.91113 0 -9.50586 -1.49316 -13.3096 -4.03027l-15.3301 -10.2197c-2.15332 -1.43262 -3.55957 -3.88379 -3.55957 -6.66113c0 -1.6377 0.493164 -3.16113 1.33887 -4.42871l8.88086 -13.3105c1.43164 -2.15234 3.88379 -3.55957 6.66113 -3.55957
-c1.6377 0 3.16016 0.494141 4.42871 1.33984l0.469727 0.310547v-55.4404h-16c-4.41992 0 -8 -3.58008 -8 -8v-16c0 -4.41992 3.58008 -8 8 -8h64c4.41992 0 8 3.58008 8 8zM608 384c17.6699 0 32 -14.3301 32 -32v-320c0 -17.6699 -14.3301 -32 -32 -32h-576
-c-17.6699 0 -32 14.3301 -32 32v320c0 17.6699 14.3301 32 32 32h576zM592 112v160c-35.3496 0 -64 28.6504 -64 64h-416c0 -35.3496 -28.6504 -64 -64 -64v-160c35.3496 0 64 -28.6504 64 -64h416c0 35.3496 28.6504 64 64 64z" />
-    <glyph glyph-name="window-close" unicode="&#xf410;" 
-d="M464 416c26.5 0 48 -21.5 48 -48v-352c0 -26.5 -21.5 -48 -48 -48h-416c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h416zM464 22v340c0 3.2998 -2.7002 6 -6 6h-404c-3.2998 0 -6 -2.7002 -6 -6v-340c0 -3.2998 2.7002 -6 6 -6h404c3.2998 0 6 2.7002 6 6z
-M356.5 253.4l-61.4004 -61.4004l61.4004 -61.4004c4.59961 -4.59961 4.59961 -12.0996 0 -16.7998l-22.2998 -22.2998c-4.60059 -4.59961 -12.1006 -4.59961 -16.7998 0l-61.4004 61.4004l-61.4004 -61.4004c-4.59961 -4.59961 -12.0996 -4.59961 -16.7998 0
-l-22.2998 22.2998c-4.59961 4.60059 -4.59961 12.1006 0 16.7998l61.4004 61.4004l-61.4004 61.4004c-4.59961 4.59961 -4.59961 12.0996 0 16.7998l22.2998 22.2998c4.60059 4.59961 12.1006 4.59961 16.7998 0l61.4004 -61.4004l61.4004 61.4004
-c4.59961 4.59961 12.0996 4.59961 16.7998 0l22.2998 -22.2998c4.7002 -4.60059 4.7002 -12.1006 0 -16.7998z" />
-    <glyph glyph-name="comment-dots" unicode="&#xf4ad;" 
-d="M144 240c17.7002 0 32 -14.2998 32 -32s-14.2998 -32 -32 -32s-32 14.2998 -32 32s14.2998 32 32 32zM256 240c17.7002 0 32 -14.2998 32 -32s-14.2998 -32 -32 -32s-32 14.2998 -32 32s14.2998 32 32 32zM368 240c17.7002 0 32 -14.2998 32 -32s-14.2998 -32 -32 -32
-s-32 14.2998 -32 32s14.2998 32 32 32zM256 416c141.4 0 256 -93.0996 256 -208s-114.6 -208 -256 -208c-32.7998 0 -64 5.2002 -92.9004 14.2998c-29.0996 -20.5996 -77.5996 -46.2998 -139.1 -46.2998c-9.59961 0 -18.2998 5.7002 -22.0996 14.5
-c-3.80078 8.7998 -2 19 4.59961 26c0.5 0.400391 31.5 33.7998 46.4004 73.2002c-33 35.0996 -52.9004 78.7002 -52.9004 126.3c0 114.9 114.6 208 256 208zM256 48c114.7 0 208 71.7998 208 160s-93.2998 160 -208 160s-208 -71.7998 -208 -160
-c0 -42.2002 21.7002 -74.0996 39.7998 -93.4004l20.6006 -21.7998l-10.6006 -28.0996c-5.5 -14.5 -12.5996 -28.1006 -19.8994 -40.2002c23.5996 7.59961 43.1992 18.9004 57.5 29l19.5 13.7998l22.6992 -7.2002c25.3008 -8 51.7002 -12.0996 78.4004 -12.0996z" />
-    <glyph glyph-name="smile-wink" unicode="&#xf4da;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM248 -8c110.3 0 200 89.7002 200 200s-89.7002 200 -200 200s-200 -89.7002 -200 -200s89.7002 -200 200 -200zM365.8 138.4c10.2002 -8.5 11.6006 -23.6006 3.10059 -33.8008
-c-30 -36 -74.1006 -56.5996 -120.9 -56.5996s-90.9004 20.5996 -120.9 56.5996c-8.39941 10.2002 -7.09961 25.3008 3.10059 33.8008c10.0996 8.39941 25.2998 7.09961 33.7998 -3.10059c20.7998 -25.0996 51.5 -39.3994 84 -39.3994s63.2002 14.3994 84 39.3994
-c8.5 10.2002 23.5996 11.6006 33.7998 3.10059zM168 208c-17.7002 0 -32 14.2998 -32 32s14.2998 32 32 32s32 -14.2998 32 -32s-14.2998 -32 -32 -32zM328 268c25.7002 0 55.9004 -16.9004 59.7002 -42.0996c1.7998 -11.1006 -11.2998 -18.2002 -19.7998 -10.8008l-9.5 8.5
-c-14.8008 13.2002 -46.2002 13.2002 -61 0l-9.5 -8.5c-8.30078 -7.39941 -21.5 -0.399414 -19.8008 10.8008c4 25.1992 34.2002 42.0996 59.9004 42.0996z" />
-    <glyph glyph-name="angry" unicode="&#xf556;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM248 -8c110.3 0 200 89.7002 200 200s-89.7002 200 -200 200s-200 -89.7002 -200 -200s89.7002 -200 200 -200zM248 136c33.5996 0 65.2002 -14.7998 86.7998 -40.5996
-c8.40039 -10.2002 7.10059 -25.3008 -3.09961 -33.8008c-10.6006 -8.89941 -25.7002 -6.69922 -33.7998 3c-24.8008 29.7002 -75 29.7002 -99.8008 0c-8.5 -10.1992 -23.5996 -11.5 -33.7998 -3s-11.5996 23.6006 -3.09961 33.8008
-c21.5996 25.7998 53.2002 40.5996 86.7998 40.5996zM200 208c0 -17.7002 -14.2998 -32.0996 -32 -32.0996s-32 14.2998 -32 32c0 6.19922 2.2002 11.6992 5.2998 16.5996l-28.2002 8.5c-12.6992 3.7998 -19.8994 17.2002 -16.0996 29.9004
-c3.7998 12.6992 17.0996 20 29.9004 16.0996l80 -24c12.6992 -3.7998 19.8994 -17.2002 16.0996 -29.9004c-3.09961 -10.3994 -12.7002 -17.0996 -23 -17.0996zM399 262.9c3.7998 -12.7002 -3.40039 -26.1006 -16.0996 -29.8008l-28.2002 -8.5
-c3.09961 -4.89941 5.2998 -10.3994 5.2998 -16.5996c0 -17.7002 -14.2998 -32 -32 -32s-32 14.2998 -32 32c-10.2998 0 -19.9004 6.7002 -23 17.0996c-3.7998 12.7002 3.40039 26.1006 16.0996 29.9004l80 24c12.8008 3.7998 26.1006 -3.40039 29.9004 -16.0996z" />
-    <glyph glyph-name="dizzy" unicode="&#xf567;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM248 -8c110.3 0 200 89.7002 200 200s-89.7002 200 -200 200s-200 -89.7002 -200 -200s89.7002 -200 200 -200zM214.2 209.9
-c-7.90039 -7.90039 -20.5 -7.90039 -28.4004 -0.200195l-17.7998 17.7998l-17.7998 -17.7998c-7.7998 -7.7998 -20.5 -7.7998 -28.2998 0c-7.80078 7.7998 -7.80078 20.5 0 28.2998l17.8994 17.9004l-17.8994 17.8994c-7.80078 7.7998 -7.80078 20.5 0 28.2998
-c7.7998 7.80078 20.5 7.80078 28.2998 0l17.7998 -17.7998l17.9004 17.9004c7.7998 7.7998 20.5 7.7998 28.2998 0s7.7998 -20.5 0 -28.2998l-17.9004 -17.9004l17.9004 -17.7998c7.7998 -7.7998 7.7998 -20.5 0 -28.2998zM374.2 302.1
-c7.7002 -7.7998 7.7002 -20.3994 0 -28.1992l-17.9004 -17.9004l17.7998 -18c7.80078 -7.7998 7.80078 -20.5 0 -28.2998c-7.7998 -7.7998 -20.5 -7.7998 -28.2998 0l-17.7998 17.7998l-17.7998 -17.7998c-7.7998 -7.7998 -20.5 -7.7998 -28.2998 0
-c-7.80078 7.7998 -7.80078 20.5 0 28.2998l17.8994 17.9004l-17.8994 17.8994c-7.80078 7.7998 -7.80078 20.5 0 28.2998c7.7998 7.80078 20.5 7.80078 28.2998 0l17.7998 -17.7998l17.9004 17.7998c7.7998 7.80078 20.5 7.80078 28.2998 0zM248 176
-c35.2998 0 64 -28.7002 64 -64s-28.7002 -64 -64 -64s-64 28.7002 -64 64s28.7002 64 64 64z" />
-    <glyph glyph-name="flushed" unicode="&#xf579;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM248 -8c110.3 0 200 89.7002 200 200s-89.7002 200 -200 200s-200 -89.7002 -200 -200s89.7002 -200 200 -200zM344 304c44.2002 0 80 -35.7998 80 -80s-35.7998 -80 -80 -80
-s-80 35.7998 -80 80s35.7998 80 80 80zM344 176c26.5 0 48 21.5 48 48s-21.5 48 -48 48s-48 -21.5 -48 -48s21.5 -48 48 -48zM344 248c13.2998 0 24 -10.7002 24 -24s-10.7002 -24 -24 -24s-24 10.7002 -24 24s10.7002 24 24 24zM232 224c0 -44.2002 -35.7998 -80 -80 -80
-s-80 35.7998 -80 80s35.7998 80 80 80s80 -35.7998 80 -80zM152 176c26.5 0 48 21.5 48 48s-21.5 48 -48 48s-48 -21.5 -48 -48s21.5 -48 48 -48zM152 248c13.2998 0 24 -10.7002 24 -24s-10.7002 -24 -24 -24s-24 10.7002 -24 24s10.7002 24 24 24zM312 104
-c13.2002 0 24 -10.7998 24 -24s-10.7998 -24 -24 -24h-128c-13.2002 0 -24 10.7998 -24 24s10.7998 24 24 24h128z" />
-    <glyph glyph-name="frown-open" unicode="&#xf57a;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM248 -8c110.3 0 200 89.7002 200 200s-89.7002 200 -200 200s-200 -89.7002 -200 -200s89.7002 -200 200 -200zM200 240c0 -17.7002 -14.2998 -32 -32 -32s-32 14.2998 -32 32
-s14.2998 32 32 32s32 -14.2998 32 -32zM328 272c17.7002 0 32 -14.2998 32 -32s-14.2998 -32 -32 -32s-32 14.2998 -32 32s14.2998 32 32 32zM248 160c35.5996 0 88.7998 -21.2998 95.7998 -61.2002c2 -11.7998 -9.09961 -21.5996 -20.5 -18.0996
-c-31.2002 9.59961 -59.3994 15.2998 -75.2998 15.2998s-44.0996 -5.7002 -75.2998 -15.2998c-11.5 -3.40039 -22.5 6.2998 -20.5 18.0996c7 39.9004 60.2002 61.2002 95.7998 61.2002z" />
-    <glyph glyph-name="grimace" unicode="&#xf57f;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM248 -8c110.3 0 200 89.7002 200 200s-89.7002 200 -200 200s-200 -89.7002 -200 -200s89.7002 -200 200 -200zM168 208c-17.7002 0 -32 14.2998 -32 32s14.2998 32 32 32
-s32 -14.2998 32 -32s-14.2998 -32 -32 -32zM328 208c-17.7002 0 -32 14.2998 -32 32s14.2998 32 32 32s32 -14.2998 32 -32s-14.2998 -32 -32 -32zM344 192c26.5 0 48 -21.5 48 -48v-32c0 -26.5 -21.5 -48 -48 -48h-192c-26.5 0 -48 21.5 -48 48v32c0 26.5 21.5 48 48 48
-h192zM176 96v24h-40v-8c0 -8.7998 7.2002 -16 16 -16h24zM176 136v24h-24c-8.7998 0 -16 -7.2002 -16 -16v-8h40zM240 96v24h-48v-24h48zM240 136v24h-48v-24h48zM304 96v24h-48v-24h48zM304 136v24h-48v-24h48zM360 112v8h-40v-24h24c8.7998 0 16 7.2002 16 16zM360 136v8
-c0 8.7998 -7.2002 16 -16 16h-24v-24h40z" />
-    <glyph glyph-name="grin" unicode="&#xf580;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM248 -8c110.3 0 200 89.7002 200 200s-89.7002 200 -200 200s-200 -89.7002 -200 -200s89.7002 -200 200 -200zM353.6 143.4c10 3.09961 19.3008 -5.5 17.7002 -15.3008
-c-8 -47.0996 -71.2998 -80 -123.3 -80s-115.4 32.9004 -123.3 80c-1.7002 9.90039 7.7998 18.4004 17.7002 15.3008c26 -8.30078 64.3994 -13.1006 105.6 -13.1006s79.7002 4.7998 105.6 13.1006zM168 208c-17.7002 0 -32 14.2998 -32 32s14.2998 32 32 32
-s32 -14.2998 32 -32s-14.2998 -32 -32 -32zM328 208c-17.7002 0 -32 14.2998 -32 32s14.2998 32 32 32s32 -14.2998 32 -32s-14.2998 -32 -32 -32z" />
-    <glyph glyph-name="grin-alt" unicode="&#xf581;" horiz-adv-x="496" 
-d="M200.3 200c-7.5 -11.4004 -24.5996 -12 -32.7002 0c-12.3994 18.7002 -15.1992 37.2998 -15.6992 56c0.599609 18.7002 3.2998 37.2998 15.6992 56c7.60059 11.4004 24.7002 12 32.7002 0c12.4004 -18.7002 15.2002 -37.2998 15.7002 -56
-c-0.599609 -18.7002 -3.2998 -37.2998 -15.7002 -56zM328.3 200c-7.5 -11.4004 -24.5996 -12 -32.7002 0c-12.3994 18.7002 -15.1992 37.2998 -15.6992 56c0.599609 18.7002 3.2998 37.2998 15.6992 56c7.60059 11.4004 24.7002 12 32.7002 0
-c12.4004 -18.7002 15.2002 -37.2998 15.7002 -56c-0.599609 -18.7002 -3.2998 -37.2998 -15.7002 -56zM248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM248 -8c110.3 0 200 89.7002 200 200s-89.7002 200 -200 200
-s-200 -89.7002 -200 -200s89.7002 -200 200 -200zM353.6 143.4c10 3.09961 19.3008 -5.5 17.7002 -15.3008c-8 -47.0996 -71.2998 -80 -123.3 -80s-115.4 32.8008 -123.3 80c-1.7002 10 7.7998 18.4004 17.7002 15.3008c26 -8.30078 64.3994 -13.1006 105.6 -13.1006
-s79.7002 4.7998 105.6 13.1006z" />
-    <glyph glyph-name="grin-beam" unicode="&#xf582;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM248 -8c110.3 0 200 89.7002 200 200s-89.7002 200 -200 200s-200 -89.7002 -200 -200s89.7002 -200 200 -200zM353.6 143.4c10 3.09961 19.3008 -5.5 17.7002 -15.3008
-c-8 -47.0996 -71.2998 -80 -123.3 -80s-115.4 32.9004 -123.3 80c-1.7002 10 7.89941 18.4004 17.7002 15.3008c26 -8.30078 64.3994 -13.1006 105.6 -13.1006s79.7002 4.7998 105.6 13.1006zM117.7 216.3c-3.60059 1.10059 -6 4.60059 -5.7002 8.2998
-c3.2998 42.1006 32.2002 71.4004 56 71.4004s52.7002 -29.2998 56 -71.4004c0.299805 -3.7998 -2.09961 -7.19922 -5.7002 -8.2998c-3.09961 -1 -7.2002 0 -9.2998 3.7002l-9.5 17c-7.7002 13.7002 -19.2002 21.5996 -31.5 21.5996s-23.7998 -7.89941 -31.5 -21.5996
-l-9.5 -17c-1.90039 -3.2002 -5.7998 -4.7998 -9.2998 -3.7002zM277.7 216.3c-3.60059 1.10059 -6 4.60059 -5.7002 8.2998c3.2998 42.1006 32.2002 71.4004 56 71.4004s52.7002 -29.2998 56 -71.4004c0.299805 -3.7998 -2.09961 -7.19922 -5.7002 -8.2998
-c-3.09961 -1 -7.2002 0 -9.2998 3.7002l-9.5 17c-7.7002 13.7002 -19.2002 21.5996 -31.5 21.5996s-23.7998 -7.89941 -31.5 -21.5996l-9.5 -17c-1.90039 -3.2002 -5.7998 -4.7998 -9.2998 -3.7002z" />
-    <glyph glyph-name="grin-beam-sweat" unicode="&#xf583;" horiz-adv-x="496" 
-d="M440 288c-29.5 0 -53.2998 26.2998 -53.2998 58.7002c0 25 31.7002 75.5 46.2002 97.2998c3.5 5.2998 10.5996 5.2998 14.1992 0c14.5 -21.7998 46.2002 -72.2998 46.2002 -97.2998c0 -32.4004 -23.7998 -58.7002 -53.2998 -58.7002zM248 48
-c-51.9004 0 -115.3 32.9004 -123.3 80c-1.7002 10 7.89941 18.4004 17.7002 15.2998c26 -8.2998 64.3994 -13.0996 105.6 -13.0996s79.7002 4.7998 105.6 13.0996c10 3.2002 19.4004 -5.39941 17.7002 -15.2998c-8 -47.0996 -71.3994 -80 -123.3 -80zM378.3 216.3
-c-3.09961 -0.899414 -7.2002 0.100586 -9.2998 3.7002l-9.5 17c-7.7002 13.7002 -19.2002 21.5996 -31.5 21.5996s-23.7998 -7.89941 -31.5 -21.5996l-9.5 -17c-1.90039 -3.2002 -5.7998 -4.7998 -9.2998 -3.7002c-3.60059 1.10059 -6 4.60059 -5.7002 8.2998
-c3.2998 42.1006 32.2002 71.4004 56 71.4004s52.7002 -29.2998 56 -71.4004c0.299805 -3.7998 -2.09961 -7.19922 -5.7002 -8.2998zM483.6 269.2c8 -24.2998 12.4004 -50.2002 12.4004 -77.2002c0 -137 -111 -248 -248 -248s-248 111 -248 248s111 248 248 248
-c45.7002 0 88.4004 -12.5996 125.2 -34.2002c-10.9004 -21.5996 -15.5 -36.2002 -17.2002 -45.7002c-31.2002 20.1006 -68.2002 31.9004 -108 31.9004c-110.3 0 -200 -89.7002 -200 -200s89.7002 -200 200 -200s200 89.7002 200 200
-c0 22.5 -3.90039 44.0996 -10.7998 64.2998c0.399414 0 21.7998 -2.7998 46.3994 12.9004zM168 258.6c-12.2998 0 -23.7998 -7.7998 -31.5 -21.5996l-9.5 -17c-1.90039 -3.2002 -5.7998 -4.7998 -9.2998 -3.7002c-3.60059 1.10059 -6 4.60059 -5.7002 8.2998
-c3.2998 42.1006 32.2002 71.4004 56 71.4004s52.7002 -29.2998 56 -71.4004c0.299805 -3.7998 -2.09961 -7.19922 -5.7002 -8.2998c-3.09961 -1 -7.2002 0 -9.2998 3.7002l-9.5 17c-7.7002 13.7002 -19.2002 21.5996 -31.5 21.5996z" />
-    <glyph glyph-name="grin-hearts" unicode="&#xf584;" horiz-adv-x="496" 
-d="M353.6 143.4c10 3.09961 19.3008 -5.5 17.7002 -15.3008c-8 -47.0996 -71.2998 -80 -123.3 -80s-115.4 32.8008 -123.3 80c-1.7002 10 7.89941 18.4004 17.7002 15.3008c26 -8.30078 64.3994 -13.1006 105.6 -13.1006s79.7002 4.7998 105.6 13.1006zM200.8 192.3
-l-70.2002 18.1006c-20.3994 5.2998 -31.8994 27 -24.1992 47.1992c6.69922 17.7002 26.6992 26.7002 44.8994 22l7.10059 -1.89941l2 7.09961c5.09961 18.1006 22.8994 30.9004 41.5 27.9004c21.3994 -3.40039 34.3994 -24.2002 28.7998 -44.5l-19.4004 -69.9004
-c-1.2998 -4.5 -6 -7.2002 -10.5 -6zM389.6 257.6c7.7002 -20.1992 -3.7998 -41.7998 -24.1992 -47.0996l-70.2002 -18.2002c-4.60059 -1.2002 -9.2998 1.5 -10.5 6l-19.4004 69.9004c-5.59961 20.2998 7.40039 41.0996 28.7998 44.5c18.7002 3 36.5 -9.7998 41.5 -27.9004
-l2 -7.09961l7.10059 1.89941c18.2002 4.7002 38.2002 -4.39941 44.8994 -22zM248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM248 -8c110.3 0 200 89.7002 200 200s-89.7002 200 -200 200s-200 -89.7002 -200 -200
-s89.7002 -200 200 -200z" />
-    <glyph glyph-name="grin-squint" unicode="&#xf585;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM248 -8c110.3 0 200 89.7002 200 200s-89.7002 200 -200 200s-200 -89.7002 -200 -200s89.7002 -200 200 -200zM353.6 143.4c10 3.09961 19.3008 -5.5 17.7002 -15.3008
-c-8 -47.0996 -71.2998 -80 -123.3 -80s-115.4 32.9004 -123.3 80c-1.7002 9.90039 7.7998 18.4004 17.7002 15.3008c26 -8.30078 64.3994 -13.1006 105.6 -13.1006s79.7002 4.7998 105.6 13.1006zM118.9 184.2c-3.80078 4.39941 -3.90039 11 -0.100586 15.5l33.6006 40.2998
-l-33.6006 40.2998c-3.7002 4.5 -3.7002 11 0.100586 15.5c3.89941 4.40039 10.1992 5.5 15.2998 2.5l80 -48c3.59961 -2.2002 5.7998 -6.09961 5.7998 -10.2998s-2.2002 -8.09961 -5.7998 -10.2998l-80 -48c-5.40039 -3.2002 -11.7002 -1.7002 -15.2998 2.5zM361.8 181.7
-l-80 48c-3.59961 2.2002 -5.7998 6.09961 -5.7998 10.2998s2.2002 8.09961 5.7998 10.2998l80 48c5.10059 2.90039 11.5 1.90039 15.2998 -2.5c3.80078 -4.5 3.90039 -11 0.100586 -15.5l-33.6006 -40.2998l33.6006 -40.2998c3.7002 -4.5 3.7002 -11 -0.100586 -15.5
-c-3.59961 -4.2002 -9.89941 -5.7002 -15.2998 -2.5z" />
-    <glyph glyph-name="grin-squint-tears" unicode="&#xf586;" 
-d="M117.1 63.9004c6.30078 0.899414 11.7002 -4.5 10.9004 -10.9004c-3.7002 -25.7998 -13.7002 -84 -30.5996 -100.9c-22 -21.8994 -57.9004 -21.5 -80.3008 0.900391c-22.3994 22.4004 -22.7998 58.4004 -0.899414 80.2998
-c16.8994 16.9004 75.0996 26.9004 100.899 30.6006zM75.9004 105.6c-19.6006 -3.89941 -35.1006 -8.09961 -47.3008 -12.1992c-39.2998 90.5996 -22.0996 199.899 52 274c48.5 48.3994 111.9 72.5996 175.4 72.5996c38.9004 0 77.7998 -9.2002 113.2 -27.4004
-c-4 -12.1992 -8.2002 -28 -12 -48.2998c-30.4004 17.9004 -65 27.7002 -101.2 27.7002c-53.4004 0 -103.6 -20.7998 -141.4 -58.5996c-61.5996 -61.5 -74.2998 -153.4 -38.6992 -227.801zM428.2 293.2c20.2998 3.89941 36.2002 8 48.5 12
-c47.8994 -93.2002 32.8994 -210.5 -45.2002 -288.601c-48.5 -48.3994 -111.9 -72.5996 -175.4 -72.5996c-33.6992 0 -67.2998 7 -98.6992 20.5996c4.19922 12.2002 8.2998 27.7002 12.1992 47.2002c26.6006 -12.7998 55.9004 -19.7998 86.4004 -19.7998
-c53.4004 0 103.6 20.7998 141.4 58.5996c65.6992 65.7002 75.7998 166 30.7998 242.601zM394.9 320.1c-6.30078 -0.899414 -11.7002 4.5 -10.9004 10.9004c3.7002 25.7998 13.7002 84 30.5996 100.9c22 21.8994 57.9004 21.5 80.3008 -0.900391
-c22.3994 -22.4004 22.7998 -58.4004 0.899414 -80.2998c-16.8994 -16.9004 -75.0996 -26.9004 -100.899 -30.6006zM207.9 211.8c3 -3 4.19922 -7.2998 3.19922 -11.5l-22.5996 -90.5c-1.40039 -5.39941 -6.2002 -9.09961 -11.7002 -9.09961h-0.899414
-c-5.80078 0.5 -10.5 5.09961 -11 10.8994l-4.80078 52.3008l-52.2998 4.7998c-5.7998 0.5 -10.3994 5.2002 -10.8994 11c-0.400391 5.89941 3.39941 11.2002 9.09961 12.5996l90.5 22.7002c4.2002 1 8.40039 -0.200195 11.4004 -3.2002zM247.6 236.9
-c-0.0996094 0 -6.39941 -1.80078 -11.3994 3.19922c-3 3 -4.2002 7.30078 -3.2002 11.4004l22.5996 90.5c1.40039 5.7002 7 9.2002 12.6006 9.09961c5.7998 -0.5 10.5 -5.09961 11 -10.8994l4.7998 -52.2998l52.2998 -4.80078c5.7998 -0.5 10.4004 -5.19922 10.9004 -11
-c0.399414 -5.89941 -3.40039 -11.1992 -9.10059 -12.5996zM299.6 148.4c29.1006 29.0996 53 59.5996 65.3008 83.7998c4.89941 9.2998 17.5996 9.89941 23.3994 1.7002c27.7002 -38.9004 6.10059 -106.9 -30.5996 -143.7s-104.8 -58.2998 -143.7 -30.6006
-c-8.2998 5.90039 -7.5 18.6006 1.7002 23.4004c24.2002 12.5 54.7998 36.2998 83.8994 65.4004z" />
-    <glyph glyph-name="grin-stars" unicode="&#xf587;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM248 -8c110.3 0 200 89.7002 200 200s-89.7002 200 -200 200s-200 -89.7002 -200 -200s89.7002 -200 200 -200zM353.6 143.4c10 3.09961 19.3008 -5.5 17.7002 -15.3008
-c-8 -47.0996 -71.2998 -80 -123.3 -80s-115.4 32.8008 -123.3 80c-1.7002 10 7.89941 18.4004 17.7002 15.3008c26 -8.30078 64.3994 -13.1006 105.6 -13.1006s79.7002 4.7998 105.6 13.1006zM125.7 200.9l6.09961 34.8994l-25.3994 24.6006
-c-4.60059 4.59961 -1.90039 12.2998 4.2998 13.1992l34.8994 5l15.5 31.6006c2.90039 5.7998 11 5.7998 13.9004 0l15.5 -31.6006l34.9004 -5c6.19922 -1 8.7998 -8.69922 4.2998 -13.1992l-25.4004 -24.6006l6 -34.8994c1 -6.2002 -5.39941 -11 -11 -7.90039
-l-31.2998 16.2998l-31.2998 -16.2998c-5.60059 -3.09961 -12 1.7002 -11 7.90039zM385.4 273.6c6.19922 -1 8.89941 -8.59961 4.39941 -13.1992l-25.3994 -24.6006l6 -34.8994c1 -6.2002 -5.40039 -11 -11 -7.90039l-31.3008 16.2998l-31.2998 -16.2998
-c-5.59961 -3.09961 -12 1.7002 -11 7.90039l6 34.8994l-25.3994 24.6006c-4.60059 4.59961 -1.90039 12.2998 4.2998 13.1992l34.8994 5l15.5 31.6006c2.90039 5.7998 11 5.7998 13.9004 0l15.5 -31.6006z" />
-    <glyph glyph-name="grin-tears" unicode="&#xf588;" horiz-adv-x="640" 
-d="M117.1 191.9c6.30078 0.899414 11.7002 -4.5 10.9004 -10.9004c-3.7002 -25.7998 -13.7002 -84 -30.5996 -100.9c-22 -21.8994 -57.9004 -21.5 -80.3008 0.900391c-22.3994 22.4004 -22.7998 58.4004 -0.899414 80.2998c16.8994 16.9004 75.0996 26.9004 100.899 30.6006
-zM623.8 161.3c21.9004 -21.8994 21.5 -57.8994 -0.799805 -80.2002c-22.4004 -22.3994 -58.4004 -22.7998 -80.2998 -0.899414c-16.9004 16.8994 -26.9004 75.0996 -30.6006 100.899c-0.899414 6.30078 4.5 11.7002 10.8008 10.8008
-c25.7998 -3.7002 84 -13.7002 100.899 -30.6006zM497.2 99.5996c12.3994 -37.2998 25.0996 -43.7998 28.2998 -46.5c-44.5996 -65.7998 -120 -109.1 -205.5 -109.1s-160.9 43.2998 -205.5 109.1c3.09961 2.60059 15.7998 9.10059 28.2998 46.5
-c33.4004 -63.8994 100.3 -107.6 177.2 -107.6s143.8 43.7002 177.2 107.6zM122.7 223.5c-2.40039 0.299805 -5 2.5 -49.5 -6.90039c12.3994 125.4 118.1 223.4 246.8 223.4s234.4 -98 246.8 -223.5c-44.2998 9.40039 -47.3994 7.2002 -49.5 7
-c-15.2002 95.2998 -97.7998 168.5 -197.3 168.5s-182.1 -73.2002 -197.3 -168.5zM320 48c-51.9004 0 -115.3 32.9004 -123.3 80c-1.7002 10 7.89941 18.4004 17.7002 15.2998c26 -8.2998 64.3994 -13.0996 105.6 -13.0996s79.7002 4.7998 105.6 13.0996
-c10 3.2002 19.4004 -5.39941 17.7002 -15.2998c-8 -47.0996 -71.3994 -80 -123.3 -80zM450.3 216.3c-3.09961 -0.899414 -7.2002 0.100586 -9.2998 3.7002l-9.5 17c-7.7002 13.7002 -19.2002 21.5996 -31.5 21.5996s-23.7998 -7.89941 -31.5 -21.5996l-9.5 -17
-c-1.90039 -3.2002 -5.7998 -4.7998 -9.2998 -3.7002c-3.60059 1.10059 -6 4.60059 -5.7002 8.2998c3.2998 42.1006 32.2002 71.4004 56 71.4004s52.7002 -29.2998 56 -71.4004c0.299805 -3.7998 -2.09961 -7.19922 -5.7002 -8.2998zM240 258.6
-c-12.2998 0 -23.7998 -7.7998 -31.5 -21.5996l-9.5 -17c-1.90039 -3.2002 -5.7998 -4.7998 -9.2998 -3.7002c-3.60059 1.10059 -6 4.60059 -5.7002 8.2998c3.2998 42.1006 32.2002 71.4004 56 71.4004s52.7002 -29.2998 56 -71.4004
-c0.299805 -3.7998 -2.09961 -7.19922 -5.7002 -8.2998c-3.09961 -1 -7.2002 0 -9.2998 3.7002l-9.5 17c-7.7002 13.7002 -19.2002 21.5996 -31.5 21.5996z" />
-    <glyph glyph-name="grin-tongue" unicode="&#xf589;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM312 40h0.0996094v43.7998l-17.6992 8.7998c-15.1006 7.60059 -31.5 -1.69922 -34.9004 -16.5l-2.7998 -12.0996c-2.10059 -9.2002 -15.2002 -9.2002 -17.2998 0
-l-2.80078 12.0996c-3.39941 14.8008 -19.8994 24 -34.8994 16.5l-17.7002 -8.7998v-42.7998c0 -35.2002 28 -64.5 63.0996 -65c35.8008 -0.5 64.9004 28.4004 64.9004 64zM340.2 14.7002c64 33.3994 107.8 100.3 107.8 177.3c0 110.3 -89.7002 200 -200 200
-s-200 -89.7002 -200 -200c0 -77 43.7998 -143.9 107.8 -177.3c-2.2002 8.09961 -3.7998 16.5 -3.7998 25.2998v43.5c-14.2002 12.4004 -24.4004 27.5 -27.2998 44.5c-1.7002 10 7.7998 18.4004 17.7002 15.2998c26 -8.2998 64.3994 -13.0996 105.6 -13.0996
-s79.7002 4.7998 105.6 13.0996c10 3.2002 19.4004 -5.39941 17.7002 -15.2998c-2.89941 -17 -13.0996 -32.0996 -27.2998 -44.5v-43.5c0 -8.7998 -1.59961 -17.2002 -3.7998 -25.2998zM168 272c17.7002 0 32 -14.2998 32 -32s-14.2998 -32 -32 -32s-32 14.2998 -32 32
-s14.2998 32 32 32zM328 272c17.7002 0 32 -14.2998 32 -32s-14.2998 -32 -32 -32s-32 14.2998 -32 32s14.2998 32 32 32z" />
-    <glyph glyph-name="grin-tongue-squint" unicode="&#xf58a;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM312 40h0.0996094v43.7998l-17.6992 8.7998c-15.1006 7.60059 -31.5 -1.69922 -34.9004 -16.5l-2.7998 -12.0996c-2.10059 -9.2002 -15.2002 -9.2002 -17.2998 0
-l-2.80078 12.0996c-3.39941 14.8008 -19.8994 24 -34.8994 16.5l-17.7002 -8.7998v-42.7998c0 -35.2002 28 -64.5 63.0996 -65c35.8008 -0.5 64.9004 28.4004 64.9004 64zM340.2 14.7002c64 33.3994 107.8 100.3 107.8 177.3c0 110.3 -89.7002 200 -200 200
-s-200 -89.7002 -200 -200c0 -77 43.7998 -143.9 107.8 -177.3c-2.2002 8.09961 -3.7998 16.5 -3.7998 25.2998v43.5c-14.2002 12.4004 -24.4004 27.5 -27.2998 44.5c-1.7002 10 7.7998 18.4004 17.7002 15.2998c26 -8.2998 64.3994 -13.0996 105.6 -13.0996
-s79.7002 4.7998 105.6 13.0996c10 3.2002 19.4004 -5.39941 17.7002 -15.2998c-2.89941 -17 -13.0996 -32.0996 -27.2998 -44.5v-43.5c0 -8.7998 -1.59961 -17.2002 -3.7998 -25.2998zM377.1 295.8c3.80078 -4.39941 3.90039 -11 0.100586 -15.5l-33.6006 -40.2998
-l33.6006 -40.2998c3.7002 -4.5 3.7002 -11 -0.100586 -15.5c-3.59961 -4.2002 -9.89941 -5.7002 -15.2998 -2.5l-80 48c-3.59961 2.2002 -5.7998 6.09961 -5.7998 10.2998s2.2002 8.09961 5.7998 10.2998l80 48c5 3 11.5 1.90039 15.2998 -2.5zM214.2 250.3
-c3.59961 -2.2002 5.7998 -6.09961 5.7998 -10.2998s-2.2002 -8.09961 -5.7998 -10.2998l-80 -48c-5.40039 -3.2002 -11.7002 -1.7002 -15.2998 2.5c-3.80078 4.5 -3.90039 11 -0.100586 15.5l33.6006 40.2998l-33.6006 40.2998c-3.7002 4.5 -3.7002 11 0.100586 15.5
-c3.89941 4.5 10.2998 5.5 15.2998 2.5z" />
-    <glyph glyph-name="grin-tongue-wink" unicode="&#xf58b;" horiz-adv-x="496" 
-d="M152 268c25.7002 0 55.9004 -16.9004 59.7998 -42.0996c0.799805 -5 -1.7002 -10 -6.09961 -12.4004c-5.7002 -3.09961 -11.2002 -0.599609 -13.7002 1.59961l-9.5 8.5c-14.7998 13.2002 -46.2002 13.2002 -61 0l-9.5 -8.5
-c-3.7998 -3.39941 -9.2998 -4 -13.7002 -1.59961c-4.39941 2.40039 -6.89941 7.40039 -6.09961 12.4004c3.89941 25.1992 34.0996 42.0996 59.7998 42.0996zM328 320c44.2002 0 80 -35.7998 80 -80s-35.7998 -80 -80 -80s-80 35.7998 -80 80s35.7998 80 80 80zM328 192
-c26.5 0 48 21.5 48 48s-21.5 48 -48 48s-48 -21.5 -48 -48s21.5 -48 48 -48zM328 264c13.2998 0 24 -10.7002 24 -24s-10.7002 -24 -24 -24s-24 10.7002 -24 24s10.7002 24 24 24zM248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248z
-M312 40h0.0996094v43.7998l-17.6992 8.7998c-15.1006 7.60059 -31.5 -1.69922 -34.9004 -16.5l-2.7998 -12.0996c-2.10059 -9.2002 -15.2002 -9.2002 -17.2998 0l-2.80078 12.0996c-3.39941 14.8008 -19.8994 24 -34.8994 16.5l-17.7002 -8.7998v-42.7998
-c0 -35.2002 28 -64.5 63.0996 -65c35.8008 -0.5 64.9004 28.4004 64.9004 64zM340.2 14.7002c64 33.3994 107.8 100.3 107.8 177.3c0 110.3 -89.7002 200 -200 200s-200 -89.7002 -200 -200c0 -77 43.7998 -143.9 107.8 -177.3
-c-2.2002 8.09961 -3.7998 16.5 -3.7998 25.2998v43.5c-14.2002 12.4004 -24.4004 27.5 -27.2998 44.5c-1.7002 10 7.7998 18.4004 17.7002 15.2998c26 -8.2998 64.3994 -13.0996 105.6 -13.0996s79.7002 4.7998 105.6 13.0996c10 3.2002 19.4004 -5.39941 17.7002 -15.2998
-c-2.89941 -17 -13.0996 -32.0996 -27.2998 -44.5v-43.5c0 -8.7998 -1.59961 -17.2002 -3.7998 -25.2998z" />
-    <glyph glyph-name="grin-wink" unicode="&#xf58c;" horiz-adv-x="496" 
-d="M328 268c25.6904 0 55.8799 -16.9199 59.8701 -42.1201c1.72949 -11.0898 -11.3506 -18.2695 -19.8301 -10.8398l-9.5498 8.47949c-14.8105 13.1904 -46.1602 13.1904 -60.9707 0l-9.5498 -8.47949c-8.33008 -7.40039 -21.5801 -0.379883 -19.8301 10.8398
-c3.98047 25.2002 34.1699 42.1201 59.8604 42.1201zM168 208c-17.6699 0 -32 14.3301 -32 32s14.3301 32 32 32s32 -14.3301 32 -32s-14.3301 -32 -32 -32zM353.55 143.36c10.04 3.13965 19.3906 -5.4502 17.71 -15.3408
-c-7.92969 -47.1494 -71.3193 -80.0195 -123.26 -80.0195s-115.33 32.8701 -123.26 80.0195c-1.69043 9.9707 7.76953 18.4707 17.71 15.3408c25.9297 -8.31055 64.3994 -13.0605 105.55 -13.0605s79.6201 4.75977 105.55 13.0605zM248 440c136.97 0 248 -111.03 248 -248
-s-111.03 -248 -248 -248s-248 111.03 -248 248s111.03 248 248 248zM248 -8c110.28 0 200 89.7197 200 200s-89.7197 200 -200 200s-200 -89.7197 -200 -200s89.7197 -200 200 -200z" />
-    <glyph glyph-name="kiss" unicode="&#xf596;" horiz-adv-x="496" 
-d="M168 272c17.7002 0 32 -14.2998 32 -32s-14.2998 -32 -32 -32s-32 14.2998 -32 32s14.2998 32 32 32zM304 140c0 -13 -13.4004 -27.2998 -35.0996 -36.4004c21.7998 -8.69922 35.1992 -23 35.1992 -36c0 -19.1992 -28.6992 -41.5 -71.5 -44h-0.5
-c-3.69922 0 -7 2.60059 -7.7998 6.2002c-0.899414 3.7998 1.10059 7.7002 4.7002 9.2002l17 7.2002c12.9004 5.5 20.7002 13.5 20.7002 21.5s-7.7998 16 -20.7998 21.5l-16.9004 7.2002c-6 2.59961 -5.7002 12.3994 0 14.7998l17 7.2002
-c12.9004 5.5 20.7002 13.5 20.7002 21.5s-7.7998 16 -20.7998 21.5l-16.9004 7.19922c-3.59961 1.5 -5.59961 5.40039 -4.7002 9.2002c0.799805 3.7998 4.40039 6.60059 8.2002 6.2002c42.7002 -2.5 71.5 -24.7998 71.5 -44zM248 440c137 0 248 -111 248 -248
-s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM248 -8c110.3 0 200 89.7002 200 200s-89.7002 200 -200 200s-200 -89.7002 -200 -200s89.7002 -200 200 -200zM328 272c17.7002 0 32 -14.2998 32 -32s-14.2998 -32 -32 -32s-32 14.2998 -32 32s14.2998 32 32 32z
-" />
-    <glyph glyph-name="kiss-beam" unicode="&#xf597;" horiz-adv-x="496" 
-d="M168 296c23.7998 0 52.7002 -29.2998 55.7998 -71.4004c0.299805 -3.7998 -2 -7.19922 -5.59961 -8.2998c-3.10059 -1 -7.2002 0 -9.2998 3.7002l-9.5 17c-7.7002 13.7002 -19.2002 21.5996 -31.5 21.5996c-12.3008 0 -23.8008 -7.89941 -31.5 -21.5996l-9.5 -17
-c-1.80078 -3.2002 -5.80078 -4.7002 -9.30078 -3.7002c-3.59961 1.10059 -5.89941 4.60059 -5.59961 8.2998c3.2998 42.1006 32.2002 71.4004 56 71.4004zM248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM248 -8
-c110.3 0 200 89.7002 200 200s-89.7002 200 -200 200s-200 -89.7002 -200 -200s89.7002 -200 200 -200zM304 140c0 -13 -13.4004 -27.2998 -35.0996 -36.4004c21.7998 -8.69922 35.1992 -23 35.1992 -36c0 -19.1992 -28.6992 -41.5 -71.5 -44h-0.5
-c-3.69922 0 -7 2.60059 -7.7998 6.2002c-0.899414 3.7998 1.10059 7.7002 4.7002 9.2002l17 7.2002c12.9004 5.5 20.7002 13.5 20.7002 21.5s-7.7998 16 -20.7998 21.5l-16.9004 7.2002c-6 2.59961 -5.7002 12.3994 0 14.7998l17 7.2002
-c12.9004 5.5 20.7002 13.5 20.7002 21.5s-7.7998 16 -20.7998 21.5l-16.9004 7.19922c-3.59961 1.5 -5.59961 5.40039 -4.7002 9.2002c0.799805 3.7998 4.40039 6.60059 8.2002 6.2002c42.7002 -2.5 71.5 -24.7998 71.5 -44zM328 296
-c23.7998 0 52.7002 -29.2998 55.7998 -71.4004c0.299805 -3.7998 -2 -7.19922 -5.59961 -8.2998c-3.10059 -1 -7.2002 0 -9.2998 3.7002l-9.5 17c-7.7002 13.7002 -19.2002 21.5996 -31.5 21.5996c-12.3008 0 -23.8008 -7.89941 -31.5 -21.5996l-9.5 -17
-c-1.80078 -3.2002 -5.80078 -4.7002 -9.30078 -3.7002c-3.59961 1.10059 -5.89941 4.60059 -5.59961 8.2998c3.2998 42.1006 32.2002 71.4004 56 71.4004z" />
-    <glyph glyph-name="kiss-wink-heart" unicode="&#xf598;" horiz-adv-x="504" 
-d="M304 139.5c0 -13 -13.4004 -27.2998 -35.0996 -36.4004c21.7998 -8.69922 35.1992 -23 35.1992 -36c0 -19.1992 -28.6992 -41.5 -71.5 -44h-0.5c-3.69922 0 -7 2.60059 -7.7998 6.2002c-0.899414 3.7998 1.10059 7.7002 4.7002 9.2002l17 7.2002
-c12.9004 5.5 20.7002 13.5 20.7002 21.5s-7.7998 16 -20.7998 21.5l-16.9004 7.2002c-6 2.59961 -5.7002 12.3994 0 14.7998l17 7.2002c12.9004 5.5 20.7002 13.5 20.7002 21.5s-7.7998 16 -20.7998 21.5l-16.9004 7.19922c-3.59961 1.5 -5.59961 5.40039 -4.7002 9.2002
-c0.799805 3.7998 4.40039 6.60059 8.2002 6.2002c42.7002 -2.5 71.5 -24.7998 71.5 -44zM374.5 223c-14.7998 13.2002 -46.2002 13.2002 -61 0l-9.5 -8.5c-2.5 -2.2998 -7.90039 -4.7002 -13.7002 -1.59961c-4.39941 2.39941 -6.89941 7.39941 -6.09961 12.3994
-c3.89941 25.2002 34.2002 42.1006 59.7998 42.1006s55.7998 -16.9004 59.7998 -42.1006c0.799805 -5 -1.7002 -10 -6.09961 -12.3994c-4.40039 -2.40039 -9.90039 -1.7002 -13.7002 1.59961zM136 239.5c0 17.7002 14.2998 32 32 32s32 -14.2998 32 -32s-14.2998 -32 -32 -32
-s-32 14.2998 -32 32zM501.1 45.5c9.2002 -23.9004 -4.39941 -49.4004 -28.5 -55.7002l-83 -21.5c-5.39941 -1.39941 -10.8994 1.7998 -12.3994 7.10059l-22.9004 82.5996c-6.59961 24 8.7998 48.5996 34 52.5996c22 3.5 43.1006 -11.5996 49 -33l2.2998 -8.39941
-l8.40039 2.2002c21.5996 5.59961 45.0996 -5.10059 53.0996 -25.9004zM334 11.7002c17.7002 -64 10.9004 -39.5 13.4004 -46.7998c-30.5 -13.4004 -64 -20.9004 -99.4004 -20.9004c-137 0 -248 111 -248 248s111 248 248 248s248 -111 247.9 -248
-c0 -31.7998 -6.2002 -62.0996 -17.1006 -90c-6 1.5 -12.2002 2.7998 -18.5996 2.90039c-5.60059 9.69922 -13.6006 17.5 -22.6006 23.8994c6.7002 19.9004 10.4004 41.1006 10.4004 63.2002c0 110.3 -89.7002 200 -200 200s-200 -89.7002 -200 -200s89.7002 -200 200 -200
-c30.7998 0 59.9004 7.2002 86 19.7002z" />
-    <glyph glyph-name="laugh" unicode="&#xf599;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM389.4 50.5996c37.7998 37.8008 58.5996 88 58.5996 141.4s-20.7998 103.6 -58.5996 141.4c-37.8008 37.7998 -88 58.5996 -141.4 58.5996s-103.6 -20.7998 -141.4 -58.5996
-c-37.7998 -37.8008 -58.5996 -88 -58.5996 -141.4s20.7998 -103.6 58.5996 -141.4c37.8008 -37.7998 88 -58.5996 141.4 -58.5996s103.6 20.7998 141.4 58.5996zM328 224c-17.7002 0 -32 14.2998 -32 32s14.2998 32 32 32s32 -14.2998 32 -32s-14.2998 -32 -32 -32zM168 224
-c-17.7002 0 -32 14.2998 -32 32s14.2998 32 32 32s32 -14.2998 32 -32s-14.2998 -32 -32 -32zM362.4 160c8.19922 0 14.5 -7 13.5 -15c-7.5 -59.2002 -58.9004 -105 -121.101 -105h-13.5996c-62.2002 0 -113.601 45.7998 -121.101 105c-1 8 5.30078 15 13.5 15h228.801z" />
-    <glyph glyph-name="laugh-beam" unicode="&#xf59a;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM389.4 50.5996c37.7998 37.8008 58.5996 88 58.5996 141.4s-20.7998 103.6 -58.5996 141.4c-37.8008 37.7998 -88 58.5996 -141.4 58.5996s-103.6 -20.7998 -141.4 -58.5996
-c-37.7998 -37.8008 -58.5996 -88 -58.5996 -141.4s20.7998 -103.6 58.5996 -141.4c37.8008 -37.7998 88 -58.5996 141.4 -58.5996s103.6 20.7998 141.4 58.5996zM328 296c23.7998 0 52.7002 -29.2998 55.7998 -71.4004c0.700195 -8.5 -10.7998 -11.8994 -14.8994 -4.5
-l-9.5 17c-7.7002 13.7002 -19.2002 21.6006 -31.5 21.6006c-12.3008 0 -23.8008 -7.90039 -31.5 -21.6006l-9.5 -17c-4.10059 -7.39941 -15.6006 -4.09961 -14.9004 4.5c3.2998 42.1006 32.2002 71.4004 56 71.4004zM127 220.1c-4.2002 -7.39941 -15.7002 -4 -15.0996 4.5
-c3.2998 42.1006 32.1992 71.4004 56 71.4004c23.7998 0 52.6992 -29.2998 56 -71.4004c0.699219 -8.5 -10.8008 -11.8994 -14.9004 -4.5l-9.5 17c-7.7002 13.7002 -19.2002 21.6006 -31.5 21.6006s-23.7998 -7.90039 -31.5 -21.6006zM362.4 160c8.19922 0 14.5 -7 13.5 -15
-c-7.5 -59.2002 -58.9004 -105 -121.101 -105h-13.5996c-62.2002 0 -113.601 45.7998 -121.101 105c-1 8 5.30078 15 13.5 15h228.801z" />
-    <glyph glyph-name="laugh-squint" unicode="&#xf59b;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM389.4 50.5996c37.7998 37.8008 58.5996 88 58.5996 141.4s-20.7998 103.6 -58.5996 141.4c-37.8008 37.7998 -88 58.5996 -141.4 58.5996s-103.6 -20.7998 -141.4 -58.5996
-c-37.7998 -37.8008 -58.5996 -88 -58.5996 -141.4s20.7998 -103.6 58.5996 -141.4c37.8008 -37.7998 88 -58.5996 141.4 -58.5996s103.6 20.7998 141.4 58.5996zM343.6 252l33.6006 -40.2998c8.59961 -10.4004 -3.90039 -24.7998 -15.4004 -18l-80 48
-c-7.7998 4.7002 -7.7998 15.8994 0 20.5996l80 48c11.6006 6.7998 24 -7.7002 15.4004 -18zM134.2 193.7c-11.6006 -6.7998 -24.1006 7.59961 -15.4004 18l33.6006 40.2998l-33.6006 40.2998c-8.59961 10.2998 3.7998 24.9004 15.4004 18l80 -48
-c7.7998 -4.7002 7.7998 -15.8994 0 -20.5996zM362.4 160c8.19922 0 14.5 -7 13.5 -15c-7.5 -59.2002 -58.9004 -105 -121.101 -105h-13.5996c-62.2002 0 -113.601 45.7998 -121.101 105c-1 8 5.30078 15 13.5 15h228.801z" />
-    <glyph glyph-name="laugh-wink" unicode="&#xf59c;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM389.4 50.5996c37.7998 37.8008 58.5996 88 58.5996 141.4s-20.7998 103.6 -58.5996 141.4c-37.8008 37.7998 -88 58.5996 -141.4 58.5996s-103.6 -20.7998 -141.4 -58.5996
-c-37.7998 -37.8008 -58.5996 -88 -58.5996 -141.4s20.7998 -103.6 58.5996 -141.4c37.8008 -37.7998 88 -58.5996 141.4 -58.5996s103.6 20.7998 141.4 58.5996zM328 284c25.7002 0 55.9004 -16.9004 59.7002 -42.0996c1.7998 -11.1006 -11.2998 -18.2002 -19.7998 -10.8008
-l-9.5 8.5c-14.8008 13.2002 -46.2002 13.2002 -61 0l-9.5 -8.5c-8.30078 -7.39941 -21.5 -0.399414 -19.8008 10.8008c4 25.1992 34.2002 42.0996 59.9004 42.0996zM168 224c-17.7002 0 -32 14.2998 -32 32s14.2998 32 32 32s32 -14.2998 32 -32s-14.2998 -32 -32 -32z
-M362.4 160c8.19922 0 14.5 -7 13.5 -15c-7.5 -59.2002 -58.9004 -105 -121.101 -105h-13.5996c-62.2002 0 -113.601 45.7998 -121.101 105c-1 8 5.30078 15 13.5 15h228.801z" />
-    <glyph glyph-name="meh-blank" unicode="&#xf5a4;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM248 -8c110.3 0 200 89.7002 200 200s-89.7002 200 -200 200s-200 -89.7002 -200 -200s89.7002 -200 200 -200zM168 272c17.7002 0 32 -14.2998 32 -32s-14.2998 -32 -32 -32
-s-32 14.2998 -32 32s14.2998 32 32 32zM328 272c17.7002 0 32 -14.2998 32 -32s-14.2998 -32 -32 -32s-32 14.2998 -32 32s14.2998 32 32 32z" />
-    <glyph glyph-name="meh-rolling-eyes" unicode="&#xf5a5;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM248 -8c110.3 0 200 89.7002 200 200s-89.7002 200 -200 200s-200 -89.7002 -200 -200s89.7002 -200 200 -200zM336 296c39.7998 0 72 -32.2002 72 -72s-32.2002 -72 -72 -72
-s-72 32.2002 -72 72s32.2002 72 72 72zM336 184c22.0996 0 40 17.9004 40 40c0 13.5996 -7.2998 25.0996 -17.7002 32.2998c1 -2.59961 1.7002 -5.39941 1.7002 -8.2998c0 -13.2998 -10.7002 -24 -24 -24s-24 10.7002 -24 24c0 3 0.700195 5.7002 1.7002 8.2998
-c-10.4004 -7.2002 -17.7002 -18.7002 -17.7002 -32.2998c0 -22.0996 17.9004 -40 40 -40zM232 224c0 -39.7998 -32.2002 -72 -72 -72s-72 32.2002 -72 72s32.2002 72 72 72s72 -32.2002 72 -72zM120 224c0 -22.0996 17.9004 -40 40 -40s40 17.9004 40 40
-c0 13.5996 -7.2998 25.0996 -17.7002 32.2998c1 -2.59961 1.7002 -5.39941 1.7002 -8.2998c0 -13.2998 -10.7002 -24 -24 -24s-24 10.7002 -24 24c0 3 0.700195 5.7002 1.7002 8.2998c-10.4004 -7.2002 -17.7002 -18.7002 -17.7002 -32.2998zM312 96
-c13.2002 0 24 -10.7998 24 -24s-10.7998 -24 -24 -24h-128c-13.2002 0 -24 10.7998 -24 24s10.7998 24 24 24h128z" />
-    <glyph glyph-name="sad-cry" unicode="&#xf5b3;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM392 53.5996c34.5996 35.9004 56 84.7002 56 138.4c0 110.3 -89.7002 200 -200 200s-200 -89.7002 -200 -200c0 -53.7002 21.4004 -102.4 56 -138.4v114.4
-c0 13.2002 10.7998 24 24 24s24 -10.7998 24 -24v-151.4c28.5 -15.5996 61.2002 -24.5996 96 -24.5996s67.5 9 96 24.5996v151.4c0 13.2002 10.7998 24 24 24s24 -10.7998 24 -24v-114.4zM205.8 213.5c-5.7998 -3.2002 -11.2002 -0.700195 -13.7002 1.59961l-9.5 8.5
-c-14.7998 13.2002 -46.1992 13.2002 -61 0l-9.5 -8.5c-3.7998 -3.39941 -9.2998 -4 -13.6992 -1.59961c-4.40039 2.40039 -6.90039 7.40039 -6.10059 12.4004c3.90039 25.1992 34.2002 42.0996 59.7998 42.0996c25.6006 0 55.8008 -16.9004 59.8008 -42.0996
-c0.799805 -5 -1.7002 -10 -6.10059 -12.4004zM344 268c25.7002 0 55.9004 -16.9004 59.7998 -42.0996c0.799805 -5 -1.7002 -10 -6.09961 -12.4004c-5.7002 -3.09961 -11.2002 -0.599609 -13.7002 1.59961l-9.5 8.5c-14.7998 13.2002 -46.2002 13.2002 -61 0l-9.5 -8.5
-c-3.7998 -3.39941 -9.2002 -4 -13.7002 -1.59961c-4.39941 2.40039 -6.89941 7.40039 -6.09961 12.4004c3.89941 25.1992 34.0996 42.0996 59.7998 42.0996zM248 176c30.9004 0 56 -28.7002 56 -64s-25.0996 -64 -56 -64s-56 28.7002 -56 64s25.0996 64 56 64z" />
-    <glyph glyph-name="sad-tear" unicode="&#xf5b4;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM248 -8c110.3 0 200 89.7002 200 200s-89.7002 200 -200 200s-200 -89.7002 -200 -200s89.7002 -200 200 -200zM256 144c38.0996 0 74 -16.7998 98.5 -46.0996
-c8.5 -10.2002 7.09961 -25.3008 -3.09961 -33.8008c-10.6006 -8.7998 -25.7002 -6.69922 -33.8008 3.10059c-15.2998 18.2998 -37.7998 28.7998 -61.5996 28.7998c-13.2002 0 -24 10.7998 -24 24s10.7998 24 24 24zM168 208c-17.7002 0 -32 14.2998 -32 32s14.2998 32 32 32
-s32 -14.2998 32 -32s-14.2998 -32 -32 -32zM328 272c17.7002 0 32 -14.2998 32 -32s-14.2998 -32 -32 -32s-32 14.2998 -32 32s14.2998 32 32 32zM162.4 173.2c2.7998 3.7002 8.39941 3.7002 11.1992 0c11.4004 -15.2998 36.4004 -50.6006 36.4004 -68.1006
-c0 -22.6992 -18.7998 -41.0996 -42 -41.0996s-42 18.4004 -42 41.0996c0 17.5 25 52.8008 36.4004 68.1006z" />
-    <glyph glyph-name="smile-beam" unicode="&#xf5b8;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM248 -8c110.3 0 200 89.7002 200 200s-89.7002 200 -200 200s-200 -89.7002 -200 -200s89.7002 -200 200 -200zM332 135.4c8.5 10.1992 23.5996 11.5 33.7998 3.09961
-c10.2002 -8.5 11.6006 -23.5996 3.10059 -33.7998c-30 -36 -74.1006 -56.6006 -120.9 -56.6006s-90.9004 20.6006 -120.9 56.6006c-8.39941 10.2002 -7.09961 25.2998 3.10059 33.7998c10.2002 8.40039 25.2998 7.09961 33.7998 -3.09961
-c20.7998 -25.1006 51.5 -39.4004 84 -39.4004s63.2002 14.4004 84 39.4004zM136.5 237l-9.5 -17c-1.90039 -3.2002 -5.90039 -4.7998 -9.2998 -3.7002c-3.60059 1.10059 -6 4.60059 -5.7002 8.2998c3.2998 42.1006 32.2002 71.4004 56 71.4004s52.7002 -29.2998 56 -71.4004
-c0.299805 -3.7998 -2.09961 -7.19922 -5.7002 -8.2998c-3.09961 -1 -7.2002 0 -9.2998 3.7002l-9.5 17c-7.7002 13.7002 -19.2002 21.5996 -31.5 21.5996s-23.7998 -7.89941 -31.5 -21.5996zM328 296c23.7998 0 52.7002 -29.2998 56 -71.4004
-c0.299805 -3.7998 -2.09961 -7.19922 -5.7002 -8.2998c-3.09961 -1 -7.2002 0 -9.2998 3.7002l-9.5 17c-7.7002 13.7002 -19.2002 21.5996 -31.5 21.5996s-23.7998 -7.89941 -31.5 -21.5996l-9.5 -17c-1.90039 -3.2002 -5.7998 -4.7998 -9.2998 -3.7002
-c-3.60059 1.10059 -6 4.60059 -5.7002 8.2998c3.2998 42.1006 32.2002 71.4004 56 71.4004z" />
-    <glyph glyph-name="surprise" unicode="&#xf5c2;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM248 -8c110.3 0 200 89.7002 200 200s-89.7002 200 -200 200s-200 -89.7002 -200 -200s89.7002 -200 200 -200zM248 168c35.2998 0 64 -28.7002 64 -64s-28.7002 -64 -64 -64
-s-64 28.7002 -64 64s28.7002 64 64 64zM200 240c0 -17.7002 -14.2998 -32 -32 -32s-32 14.2998 -32 32s14.2998 32 32 32s32 -14.2998 32 -32zM328 272c17.7002 0 32 -14.2998 32 -32s-14.2998 -32 -32 -32s-32 14.2998 -32 32s14.2998 32 32 32z" />
-    <glyph glyph-name="tired" unicode="&#xf5c8;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM248 -8c110.3 0 200 89.7002 200 200s-89.7002 200 -200 200s-200 -89.7002 -200 -200s89.7002 -200 200 -200zM377.1 295.8c3.80078 -4.39941 3.90039 -11 0.100586 -15.5
-l-33.6006 -40.2998l33.6006 -40.2998c3.7998 -4.5 3.7002 -11 -0.100586 -15.5c-3.5 -4.10059 -9.89941 -5.7002 -15.2998 -2.5l-80 48c-3.59961 2.2002 -5.7998 6.09961 -5.7998 10.2998s2.2002 8.09961 5.7998 10.2998l80 48c5 2.90039 11.5 1.90039 15.2998 -2.5z
-M220 240c0 -4.2002 -2.2002 -8.09961 -5.7998 -10.2998l-80 -48c-5.40039 -3.2002 -11.7998 -1.60059 -15.2998 2.5c-3.80078 4.5 -3.90039 11 -0.100586 15.5l33.6006 40.2998l-33.6006 40.2998c-3.7998 4.5 -3.7002 11 0.100586 15.5
-c3.7998 4.40039 10.2998 5.5 15.2998 2.5l80 -48c3.59961 -2.2002 5.7998 -6.09961 5.7998 -10.2998zM248 176c45.4004 0 100.9 -38.2998 107.8 -93.2998c1.5 -11.9004 -7 -21.6006 -15.5 -17.9004c-22.7002 9.7002 -56.2998 15.2002 -92.2998 15.2002
-s-69.5996 -5.5 -92.2998 -15.2002c-8.60059 -3.7002 -17 6.10059 -15.5 17.9004c6.89941 55 62.3994 93.2998 107.8 93.2998z" />
-  </font>
-</defs></svg>
diff --git a/web/static/webfonts/fa-regular-400.ttf b/web/static/webfonts/fa-regular-400.ttf
index 659527a68a0..c8ed46d4cea 100644
Binary files a/web/static/webfonts/fa-regular-400.ttf and b/web/static/webfonts/fa-regular-400.ttf differ
diff --git a/web/static/webfonts/fa-regular-400.woff b/web/static/webfonts/fa-regular-400.woff
deleted file mode 100644
index 31f44b2d469..00000000000
Binary files a/web/static/webfonts/fa-regular-400.woff and /dev/null differ
diff --git a/web/static/webfonts/fa-regular-400.woff2 b/web/static/webfonts/fa-regular-400.woff2
index 0332a9bf97e..c9291c7b66b 100644
Binary files a/web/static/webfonts/fa-regular-400.woff2 and b/web/static/webfonts/fa-regular-400.woff2 differ
diff --git a/web/static/webfonts/fa-solid-900.eot b/web/static/webfonts/fa-solid-900.eot
deleted file mode 100644
index 5da4fa001b7..00000000000
Binary files a/web/static/webfonts/fa-solid-900.eot and /dev/null differ
diff --git a/web/static/webfonts/fa-solid-900.svg b/web/static/webfonts/fa-solid-900.svg
deleted file mode 100644
index 313b31188f2..00000000000
--- a/web/static/webfonts/fa-solid-900.svg
+++ /dev/null
@@ -1,5028 +0,0 @@
-<?xml version="1.0" standalone="no"?>
-<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN" "http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd" >
-<svg xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" version="1.1">
-<metadata>
-Created by FontForge 20200314 at Mon Oct  5 09:50:45 2020
- By Robert Madole
-Copyright (c) Font Awesome
-</metadata>
-<!-- Font Awesome Free 5.15.1 by @fontawesome - https://fontawesome.com License - https://fontawesome.com/license/free (Icons: CC BY 4.0, Fonts: SIL OFL 1.1, Code: MIT License) --><defs>
-<font id="FontAwesome5Free-Solid" horiz-adv-x="512" >
-  <font-face 
-    font-family="Font Awesome 5 Free Solid"
-    font-weight="900"
-    font-stretch="normal"
-    units-per-em="512"
-    panose-1="2 0 5 3 0 0 0 0 0 0"
-    ascent="448"
-    descent="-64"
-    bbox="-1.00195 -64.9795 640.104 448.576"
-    underline-thickness="25"
-    underline-position="-50"
-    unicode-range="U+0020-F8FF"
-  />
-    <missing-glyph />
-    <glyph glyph-name="faucet" unicode="&#xe005;" 
-d="M352 192c88.3066 0 160 -71.6934 160 -160c0 -17.6611 -14.3389 -32 -32 -32h-64c-17.6611 0 -32 14.3389 -32 32s-14.3389 32 -32 32h-12.79c-20.5898 -37.7305 -64.21 -64 -115.21 -64s-94.6201 26.2695 -115.21 64h-92.79c-8.83105 0 -16 7.16895 -16 16v96
-c0 8.83105 7.16895 16 16 16h118.61c15.71 13.4004 35.46 23 57.3896 28v47.5596l32 3.38086l32 -3.38086v-47.5596c21.9297 -4.92969 41.6797 -14.5596 57.3896 -28h38.6104zM81.5898 288.09c-9.41992 -1 -17.5898 6.81055 -17.5898 16.7998v30.2207
-c0 9.98926 8.16992 17.7998 17.5898 16.8096l110.41 -11.6602v27.7402c0 8.83105 7.16895 16 16 16h32c8.83105 0 16 -7.16895 16 -16v-27.7402l110.41 11.6602c9.41992 0.990234 17.5898 -6.80957 17.5898 -16.8096v-30.2207
-c0 -9.98926 -8.16992 -17.7998 -17.5898 -16.7998l-142.41 15z" />
-    <glyph glyph-name="trailer" unicode="&#xe041;" horiz-adv-x="640" 
-d="M624 128c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-337.61c-7.83008 54.21 -54 96 -110.39 96s-102.56 -41.79 -110.39 -96h-49.6104c-8.83105 0 -16 7.16895 -16 16v288c0 8.83105 7.16895 16 16 16h512c8.83105 0 16 -7.16895 16 -16v-240
-h80zM96 204.32v107.68c0 4.41504 -3.58496 8 -8 8h-16c-4.41504 0 -8 -3.58496 -8 -8v-128.39c9.85938 8.0166 20.5459 14.9482 32 20.71zM192 222.86v89.1396c0 4.41504 -3.58496 8 -8 8h-16c-4.41504 0 -8 -3.58496 -8 -8v-89.1396
-c5.30957 0.489258 10.5703 1.13965 16 1.13965s10.6904 -0.650391 16 -1.13965zM288 183.61v128.39c0 4.41504 -3.58496 8 -8 8h-16c-4.41504 0 -8 -3.58496 -8 -8v-107.68c11.4541 -5.76172 22.1406 -12.6934 32 -20.71zM384 128v184c0 4.41504 -3.58496 8 -8 8h-16
-c-4.41504 0 -8 -3.58496 -8 -8v-184h32zM480 128v184c0 4.41504 -3.58496 8 -8 8h-16c-4.41504 0 -8 -3.58496 -8 -8v-184h32zM176 128c44.1533 0 80 -35.8467 80 -80s-35.8467 -80 -80 -80s-80 35.8467 -80 80s35.8467 80 80 80zM176 16c17.6611 0 32 14.3389 32 32
-s-14.3389 32 -32 32s-32 -14.3389 -32 -32s14.3389 -32 32 -32z" />
-    <glyph glyph-name="bacteria" unicode="&#xe059;" horiz-adv-x="640" 
-d="M272.35 221.6c-2.19727 -0.946289 -4.63184 -1.47949 -7.17578 -1.47949h-0.0341797c-0.00292969 0 0.00195312 -0.0146484 -0.00195312 -0.0146484c-7.27051 0 -13.5322 4.35449 -16.3174 10.5947l-3.91992 8.84961
-c-1.15039 -0.729492 -2.35059 -1.37988 -3.4707 -2.14941c-3.47168 -2.44629 -6.75293 -5.02832 -9.93945 -7.82031c-4.16406 -3.56152 -8.00098 -7.31543 -11.6504 -11.4004c-2.79688 -3.0166 -5.3916 -6.11719 -7.87012 -9.41016
-c-0.700195 -0.969727 -1.22949 -2.0498 -1.89941 -3.0498l8.7998 -4.10938c6.0166 -2.84082 10.1523 -8.94531 10.1523 -16.0361c0 -9.79199 -7.9502 -17.7432 -17.7432 -17.7432c-2.70312 0 -5.26562 0.606445 -7.55957 1.68848l-9 4.2207
-c-1.61035 -5.00293 -2.92773 -10.2646 -3.87012 -15.5303c-1.9248 -11.2178 -6.14648 -21.8359 -12.0801 -31.0498l9.14062 -9.37012c3.09082 -3.19824 4.99121 -7.55957 4.99121 -12.3545c0 -9.80859 -7.96387 -17.7715 -17.7725 -17.7715
-c-5.01465 0 -9.54688 2.08105 -12.7793 5.42578l-8.58984 8.7998c-13.0752 -8.66602 -28.8223 -13.7949 -45.6494 -13.8799c-1.03027 0 -2.10059 0.259766 -3.10059 0.259766l-2.87012 -11c-2.08008 -7.52637 -8.97949 -13.0732 -17.165 -13.0732
-c-9.8291 0 -17.8096 7.98047 -17.8096 17.8105c0 1.44043 0.171875 2.84082 0.495117 4.18359l2.87988 11.0596c-15.5566 7.7666 -28.2236 20.1123 -36.3896 35.4297l-11.2705 -3.33008c-1.60547 -0.477539 -3.30273 -0.741211 -5.06348 -0.741211
-c-9.79004 0 -17.7383 7.94824 -17.7383 17.7383c0 8.03027 5.34668 14.8213 12.6719 17.0029l11.5801 3.43066c-0.142578 1.98535 -0.214844 3.83594 -0.214844 5.85742c0 4.47168 0.353516 8.86133 1.03516 13.1426c1.72949 10.3799 4.72949 20.2197 7.51953 30.2197
-l-10.3496 3.54004c-6.94824 2.40234 -11.9346 8.99512 -11.9346 16.7549c0 9.78711 7.94629 17.7334 17.7334 17.7334c2.02734 0 3.97559 -0.34082 5.79102 -0.96875l10.4795 -3.58984c6.40332 15.3193 14.1484 30.0723 23 43.9102l-8.87988 6.46973
-c-4.4375 3.20996 -7.30176 8.43652 -7.30176 14.3262c0 3.90625 1.27148 7.51855 3.42188 10.4443c3.24805 4.4248 8.49316 7.27441 14.3975 7.27441c3.9209 0 7.54688 -1.26758 10.4922 -3.41406l8.82031 -6.4209c10.6797 12.8564 22.2119 24.5146 34.9502 35.3301
-l-6.4502 8.61035c-2.22168 2.95703 -3.5625 6.6377 -3.5625 10.6182c0 5.82617 2.82227 10.998 7.17285 14.2217c2.97461 2.20312 6.66211 3.53027 10.6445 3.53027c5.83789 0 11.0273 -2.80078 14.2949 -7.12988l6.32031 -8.43066
-c13.8359 9.05371 28.5869 16.9834 43.9404 23.5703l-3.49023 9.7998c-0.658203 1.8584 -1.02734 3.86816 -1.02734 5.95117c0 9.8252 7.97656 17.8018 17.8018 17.8018c7.74316 0 14.3379 -4.9541 16.7852 -11.8623l3.37988 -9.45996
-c10.9004 3.16992 21.7305 6.38965 33.1104 8.21973c4.51367 0.758789 9.02637 1.15234 13.7539 1.15234c1 0 1.99512 -0.0175781 2.98633 -0.0527344l2.81934 10.7803c1.98633 7.66504 8.95117 13.3457 17.2334 13.3457c9.82617 0 17.8047 -7.97754 17.8047 -17.8037
-c0 -1.54395 -0.197266 -3.04297 -0.567383 -4.47168l-2.83984 -10.8506c15.5527 -7.83105 28.2119 -20.2178 36.3799 -35.5693l11.3398 3.35938c1.6084 0.480469 3.30957 0.745117 5.07324 0.745117c9.79199 0 17.7412 -7.9502 17.7412 -17.7412
-c0 -8.02832 -5.34375 -14.8184 -12.665 -17.0039l-11.8496 -3.50977c0.120117 -1.82227 0.125977 -3.67969 0.125977 -5.53223c0 -15.5859 -4.2998 -30.1758 -11.7764 -42.6475l9.7207 -8.76074c3.56934 -3.25 5.79688 -7.92969 5.79688 -13.1328
-c0 -9.80469 -7.95996 -17.7646 -17.7637 -17.7646c-4.60156 0 -8.79688 1.75391 -11.9531 4.62793l-10 9c-9.85547 -6.88477 -21.4219 -11.7422 -33.75 -13.8398c-4.16895 -0.80957 -8.35547 -1.85547 -12.3604 -3.08008l4 -9.08008
-c0.96875 -2.18848 1.5293 -4.61426 1.5293 -7.16016c0 -7.26172 -4.37988 -13.5078 -10.6396 -16.2402zM128 192c17.6611 0 32 14.3389 32 32s-14.3389 32 -32 32s-32 -14.3389 -32 -32s14.3389 -32 32 -32zM208 288c8.83105 0 16 7.16895 16 16s-7.16895 16 -16 16
-s-16 -7.16895 -16 -16s7.16895 -16 16 -16zM639.26 242.7c0.470703 -1.59277 0.724609 -3.27344 0.724609 -5.01758c0 -8.04492 -5.37891 -14.8438 -12.7344 -16.9922l-11.5801 -3.43066c0.143555 -1.99512 0.216797 -3.85547 0.216797 -5.88672
-c0 -4.47852 -0.354492 -8.875 -1.03711 -13.1631c-1.72949 -10.3701 -4.72949 -20.21 -7.51953 -30.21l10.3398 -3.53027c6.94824 -2.40234 11.9346 -8.99414 11.9346 -16.7549c0 -9.78711 -7.94629 -17.7334 -17.7344 -17.7334
-c-2.02637 0 -3.97559 0.34082 -5.79004 0.96875l-10.4805 3.58984c-6.40527 -15.3213 -14.1494 -30.0781 -23 -43.9199l8.88086 -6.45996c4.6377 -3.20605 7.64746 -8.54297 7.64746 -14.6025c0 -9.80176 -7.95801 -17.7598 -17.7598 -17.7598
-c-4.10156 0 -7.87988 1.39355 -10.8877 3.73242l-8.82031 6.41992c-10.6826 -12.8574 -22.2148 -24.5176 -34.9502 -35.3398l6.4502 -8.61035c2.23926 -2.96094 3.5918 -6.6543 3.5918 -10.6494c0 -5.84082 -2.83984 -11.0225 -7.21191 -14.2402
-c-2.97363 -2.20508 -6.66016 -3.53418 -10.6426 -3.53418c-5.83594 0 -11.0234 2.80273 -14.2871 7.13379l-6.32031 8.42969c-13.8379 -9.05273 -28.5889 -16.9854 -43.9404 -23.5801l3.49023 -9.79004c0.658203 -1.85742 1.02734 -3.86816 1.02734 -5.9502
-c0 -9.8252 -7.97656 -17.8018 -17.8018 -17.8018c-7.74316 0 -14.3379 4.9541 -16.7852 11.8623l-3.37988 9.45996c-10.8604 -3.16992 -21.7305 -6.34961 -33.1006 -8.24023c-4.51465 -0.757812 -9.02832 -1.15234 -13.7568 -1.15234
-c-0.999023 0 -1.99316 0.0175781 -2.9834 0.0527344l-2.81934 -10.7803c-1.98633 -7.66504 -8.95117 -13.3457 -17.2334 -13.3457c-9.82617 0 -17.8037 7.97754 -17.8037 17.8047c0 1.54395 0.196289 3.04199 0.566406 4.47168l2.84082 10.8496
-c-15.5664 7.8291 -28.2363 20.2207 -36.4102 35.5801l-11.3398 -3.36035c-1.61035 -0.480469 -3.31348 -0.746094 -5.0791 -0.746094c-9.79199 0 -17.7422 7.9502 -17.7422 17.7432c0 8.02734 5.3418 14.8164 12.6611 17.0029l11.8594 3.51074
-c-0.119141 1.82227 -0.125 3.67871 -0.125 5.53125c0 15.5869 4.29883 30.1768 11.7754 42.6484l-9.71973 8.75c-3.68848 3.25684 -6.00293 8.0166 -6.00293 13.3193c0 9.80762 7.96289 17.7705 17.7705 17.7705c4.69824 0 8.97363 -1.82812 12.1523 -4.80957l10 -9
-c9.85645 6.9082 21.4297 11.7861 33.7695 13.8994c4.1709 0.804688 8.35742 1.85156 12.3604 3.08008l-4 9.08008c-0.962891 2.18262 -1.51953 4.60156 -1.51953 7.13867c0 7.25391 4.37012 13.4951 10.6191 16.2314c2.19824 0.954102 4.63477 1.49414 7.18066 1.5
-c0.00390625 0 -0.00195312 0.0146484 0.00195312 0.0146484c7.27051 0 13.5322 -4.35449 16.3174 -10.5947l3.91992 -8.84961c1.15039 0.729492 2.35059 1.37988 3.4707 2.14941c3.49023 2.4502 6.79199 5.03613 10 7.83008c4.13867 3.53516 7.94922 7.2666 11.5693 11.3301
-c2.82617 3.03223 5.44336 6.15332 7.94043 9.46973c0.69043 0.970703 1.21973 2.0498 1.88965 3.0498l-8.7998 4.11035c-6.0166 2.84082 -10.1523 8.94531 -10.1523 16.0352c0 9.79297 7.9502 17.7432 17.7432 17.7432c2.70312 0 5.26562 -0.605469 7.55957 -1.68848
-l9 -4.21973c1.60938 4.99902 2.92676 10.2578 3.87012 15.5195c1.91992 11.2236 6.14258 21.8457 12.0801 31.0605l-9.14062 9.37012c-3.09082 3.19824 -4.99121 7.55957 -4.99121 12.3535c0 9.80957 7.96387 17.7725 17.7725 17.7725
-c5.01465 0 9.54688 -2.08105 12.7793 -5.42578l8.58984 -8.81055c13.0723 8.67285 28.8203 13.8066 45.6494 13.8906c1.03027 0 2.10059 -0.260742 3.10059 -0.260742l2.87012 11c2.10059 7.49609 8.98438 13.0137 17.1475 13.0137
-c9.83008 0 17.8105 -7.98047 17.8105 -17.8096c0 -1.41602 -0.166016 -2.79297 -0.478516 -4.11426l-2.87988 -11.0596c15.5527 -7.77246 28.2188 -20.1162 36.3896 -35.4297l11.2705 3.33008c1.59766 0.478516 3.28906 0.739258 5.04199 0.739258h0.0380859
-c0.00585938 0 0.0078125 -0.000976562 0.0136719 -0.000976562c8.0459 0 14.8506 -5.35254 17.0459 -12.6885zM416 32c17.6611 0 32 14.3389 32 32s-14.3389 32 -32 32s-32 -14.3389 -32 -32s14.3389 -32 32 -32z" />
-    <glyph glyph-name="bacterium" unicode="&#xe05a;" 
-d="M511 345.07c0.634766 -2.13379 0.976562 -4.3877 0.976562 -6.72656c0 -10.7275 -7.1709 -19.7949 -16.9766 -22.6641l-15.79 -4.67969c0.15625 -2.4082 0.163086 -4.86133 0.163086 -7.30859c0 -20.8174 -5.75195 -40.3027 -15.7529 -56.9512l12.9395 -11.6699
-c5.1709 -4.34766 8.44043 -10.8584 8.44043 -18.1357c0 -13.0742 -10.6152 -23.6895 -23.6895 -23.6895c-6.47754 0 -12.3525 2.60547 -16.6309 6.8252l-13.3301 12c-13.1318 -9.21387 -28.5537 -15.7207 -45 -18.54c-5.5625 -1.07129 -11.1484 -2.46484 -16.4893 -4.10059
-l5.35938 -12.1094c1.2793 -2.91602 2.0127 -6.17285 2.0127 -9.55859c0 -13.1035 -10.6377 -23.7412 -23.7412 -23.7412c-9.7168 0 -18.0791 5.85156 -21.751 14.2197l-5.23047 11.7998c-1.5293 -0.980469 -3.12988 -1.87012 -4.62988 -2.87012
-c-4.61719 -3.25684 -8.98438 -6.69043 -13.2295 -10.4004c-5.58008 -4.76562 -10.7148 -9.79785 -15.5908 -15.2793c-3.71875 -4.00195 -7.16699 -8.11914 -10.46 -12.4902c-0.929688 -1.29004 -1.62988 -2.74023 -2.51953 -4.05957l11.7197 -5.49023
-c8.20801 -3.71484 13.8818 -11.9531 13.8818 -21.542c0 -13.0576 -10.6016 -23.6592 -23.6602 -23.6592c-3.73535 0 -7.26855 0.867188 -10.4111 2.41113l-12 5.63965c-2.14844 -6.6709 -3.90527 -13.6875 -5.16016 -20.71
-c-2.5625 -14.959 -8.19336 -29.1182 -16.1104 -41.3994l12.1904 -12.5c3.92383 -4.22949 6.32129 -9.90332 6.32129 -16.1221c0 -13.0801 -10.6201 -23.7002 -23.7002 -23.7002c-6.5127 0 -12.416 2.63379 -16.7012 6.8916l-11.4502 11.7402
-c-17.4336 -11.5586 -38.4326 -18.4014 -60.8701 -18.5195c-1.36035 0 -2.75977 0.299805 -4.12988 0.349609l-3.80957 -14.6299c-2.67383 -10.1768 -11.9395 -17.7002 -22.9502 -17.7002h-0.0498047c-2.07324 0.00292969 -4.07715 0.264648 -6 0.75
-c-10.1992 2.62988 -17.751 11.8857 -17.751 22.9014c0 2.04688 0.260742 4.03418 0.750977 5.92871l3.84961 14.75c-20.7412 10.3623 -37.6318 26.8203 -48.5303 47.2402l-15 -4.44043c-2.14062 -0.638672 -4.40527 -0.989258 -6.75293 -0.989258
-c-13.0479 0 -23.6406 10.5928 -23.6406 23.6406c0 10.6992 7.12402 19.749 16.8838 22.6592l15.4404 4.55957c-0.199219 2.7207 -0.300781 5.25781 -0.300781 8.0293c0 5.89355 0.458008 11.6826 1.34082 17.3311c2.37012 13.6738 5.52832 27.3877 9.2998 40.5293
-l-13 4.48047c-9.47656 3.08398 -16.3213 11.9814 -16.3213 22.4805c0 13.0527 10.5967 23.6504 23.6494 23.6504c2.86035 0 5.60254 -0.508789 8.1416 -1.44141l12.9297 -4.42969c8.61523 20.5029 19.0254 40.2393 30.9199 58.75l-11.0898 8.06055
-c-6.20508 4.27051 -10.2344 11.3994 -10.2344 19.4951c0 13.0693 10.6104 23.6797 23.6797 23.6797c5.48535 0 10.5381 -1.86914 14.5547 -5.00488l11 -8c14.2725 17.249 29.6816 32.9014 46.7002 47.4395l-8 10.6299c-2.9541 3.9375 -4.7373 8.83691 -4.7373 14.1338
-c0 7.7666 3.76465 14.6611 9.56738 18.9561c3.96484 2.93848 8.87988 4.70801 14.1885 4.70801c7.78125 0 14.6973 -3.73438 19.0518 -9.50781l8 -10.6299c18.4736 12.2129 38.1689 22.917 58.6895 31.8301l-4.2998 12.0498
-c-0.799805 2.37695 -1.24805 4.93555 -1.24805 7.58105c0 13.1025 10.6377 23.7402 23.7402 23.7402c10.1953 0 18.8975 -6.44043 22.2578 -15.4707l4.2998 -12c14.3408 4.27246 29.3477 7.81055 44.3301 10.4102c6.0459 1.01172 12.0889 1.53711 18.4199 1.53711
-c1.30859 0 2.6123 -0.0224609 3.91016 -0.0673828l3.75977 14.3701c2.64941 10.2295 11.9443 17.8125 22.998 17.8125c13.1123 0 23.7588 -10.6465 23.7588 -23.7588c0 -2.05957 -0.262695 -4.05762 -0.756836 -5.96387l-3.79004 -14.4697
-c20.7402 -10.4336 37.6182 -26.9492 48.5 -47.4209l15.1201 4.48047c2.14844 0.639648 4.41797 0.985352 6.77246 0.985352c10.7344 0 19.8164 -7.13379 22.7578 -16.915zM160 80c26.4922 0 48 21.5078 48 48s-21.5078 48 -48 48s-48 -21.5078 -48 -48s21.5078 -48 48 -48z
-M240 216c13.2461 0 24 10.7539 24 24s-10.7539 24 -24 24s-24 -10.7539 -24 -24s10.7539 -24 24 -24z" />
-    <glyph glyph-name="box-tissue" unicode="&#xe05b;" 
-d="M383.88 160.18h-256l-64 288h141.4c30.9912 -0.00195312 57.3018 -20.1162 66.5996 -48c9.29492 -27.8818 35.6016 -47.9961 66.5898 -48h109.41zM-0.120117 -31.8203v64h512v-64c0 -17.6611 -14.3389 -32 -32 -32h-448c-17.6611 0 -32 14.3389 -32 32zM479.88 224.18
-c17.6562 -0.00488281 31.9902 -14.3418 31.9902 -32v-128h-512v128c0 17.6611 14.3389 32 32 32h49l14.2197 -64h-15.21c-8.83008 0 -16 -7.16895 -16 -16c0 -8.83008 7.16992 -16 16 -16h352c8.83105 0 16 7.16992 16 16c0 8.83105 -7.16895 16 -16 16h-14.2695l21.3301 64
-h40.9395z" />
-    <glyph glyph-name="hand-holding-medical" unicode="&#xe05c;" horiz-adv-x="576" 
-d="M159.88 272.18c-8.83008 0 -16 7.16992 -16 16v64c0 8.83105 7.16992 16 16 16h64v64c0 8.83105 7.16992 16 16 16h64c8.83105 0 16 -7.16895 16 -16v-64h64c8.83105 0 16 -7.16895 16 -16v-64c0 -8.83008 -7.16895 -16 -16 -16h-64v-64c0 -8.83008 -7.16895 -16 -16 -16
-h-64c-8.83008 0 -16 7.16992 -16 16v64h-64zM568.07 111.87c4.87109 -6.62695 7.80469 -14.8232 7.80469 -23.6709c0 -13.1982 -6.40527 -24.9121 -16.2754 -32.1992l-135.029 -99.5703c-17.2783 -12.6621 -38.6699 -20.2148 -61.7002 -20.2695h-347
-c-8.80273 0.0595703 -15.9404 7.19727 -16 16v96c0.0595703 8.80273 7.19727 15.9395 16 16h55.3604l46.5 37.7402c20.2246 16.3867 46.0615 26.25 74.0947 26.25h0.0244141h160c17.6943 0 32.0654 -14.3359 32.0654 -32.0303
-c0 -1.82324 -0.152344 -3.61035 -0.445312 -5.35059c-2.62012 -15.7393 -17.3701 -26.6094 -33.3701 -26.6094h-78.2393c-8.83105 0 -16 -7.16992 -16 -16c0 -8.83105 7.16895 -16 16 -16h120.609l119.67 88.1797c6.63281 4.91016 14.8516 7.87012 23.7295 7.87012
-c13.2129 0 24.9355 -6.43555 32.2012 -16.3398z" />
-    <glyph glyph-name="hand-sparkles" unicode="&#xe05d;" horiz-adv-x="640" 
-d="M106.66 277.36l-20.7402 -49.6201c-1.08691 -2.19531 -3.34277 -3.70703 -5.95605 -3.70703s-4.87695 1.51172 -5.96387 3.70703l-20.6602 49.6602h-0.0703125l-49.5898 20.5996c-2.10938 1.20508 -3.55469 3.42969 -3.67969 6v0
-c0.124023 2.57617 1.5791 4.80371 3.7002 6l49.6299 20.6904h0.0498047l20.7002 49.6299c1.0918 2.18848 3.3457 3.69434 5.95605 3.69434s4.87207 -1.50586 5.96387 -3.69434l20.6602 -49.6406h0.0703125l49.5693 -20.6699c2.11328 -1.2002 3.56055 -3.42676 3.68066 -6v0
-c-0.125977 -2.57031 -1.57129 -4.79492 -3.68066 -6l-49.5498 -20.6494h-0.0898438zM471.38 -19.4102l37.4902 -15.6299l0.0703125 -0.169922c-7.59082 -17.0596 -24 -28.79 -43.2402 -28.79h-197.61c-15.9482 0.0273438 -30.0625 7.79492 -38.79 19.79l-125.6 172.61
-c-4.80469 6.60156 -7.68066 14.7979 -7.68066 23.5801c0 22.085 17.9297 40.0156 40.0146 40.0156c13.3027 0 25.0986 -6.50586 32.376 -16.5059l23.5898 -32.4902v241c0 17.6611 14.3389 32 32 32s32 -14.3389 32 -32v-152c0 -4.41504 3.58496 -8 8 -8h16
-c4.41504 0 8 3.58496 8 8v184c0 17.6611 14.3389 32 32 32s32 -14.3389 32 -32v-184c0 -4.41504 3.58496 -8 8 -8h16c4.41504 0 8 3.58496 8 8v152c0 17.6611 14.3389 32 32 32s32 -14.3389 32 -32v-152c0 -4.41504 3.58496 -8 8 -8h16c4.41504 0 8 3.58496 8 8v72
-c0 17.6611 14.3389 32 32 32s32 -14.3389 32 -32v-176.03c-0.0195312 -1.30957 -0.269531 -2.66992 -0.269531 -4c-7.77051 -3.70996 -14.5 -9.59961 -18.3506 -17.3398l-0.469727 -0.950195l-0.410156 -1l-15.6299 -37.4795l-37.4902 -15.6299l-1 -0.430664l-1 -0.489258
-c-12.6719 -6.35254 -21.3789 -19.4189 -21.3789 -34.5479s8.70703 -28.2402 21.3789 -34.5928l1 -0.5zM349.79 108.48c1.31543 0.655273 2.21973 2.00879 2.21973 3.57715s-0.904297 2.92676 -2.21973 3.58203l-29.79 12.4199l-12.4297 29.7803
-c-0.657227 1.30957 -2.00879 2.20996 -3.57324 2.20996c-1.56348 0 -2.91992 -0.900391 -3.57715 -2.20996l-12.4199 -29.7803l-29.79 -12.4199c-1.31543 -0.655273 -2.21973 -2.00879 -2.21973 -3.57715s0.904297 -2.92676 2.21973 -3.58203l29.79 -12.4102
-l12.4297 -29.7803c0.657227 -1.30957 2.00879 -2.20996 3.57324 -2.20996c1.56348 0 2.91992 0.900391 3.57715 2.20996l12.4199 29.7803zM640 16.0898l-0.0703125 -0.0703125v0c-0.135742 -2.55078 -1.58008 -4.75684 -3.67969 -5.94922l-49.5498 -20.6602h-0.0898438v0
-l-20.6904 -49.6201c-1.08691 -2.19531 -3.34277 -3.70703 -5.95605 -3.70703s-4.87695 1.51172 -5.96387 3.70703l-20.6602 49.5898h-0.0703125l-49.5693 20.6699c-2.10059 1.19238 -3.54395 3.39844 -3.68066 5.9502v0c0.118164 2.57324 1.56641 4.80078 3.68066 6
-l49.6299 20.7402h0.0498047l20.7002 49.6299c1.0918 2.18848 3.3457 3.69434 5.95605 3.69434s4.87207 -1.50586 5.96387 -3.69434l20.6797 -49.6104h0.0703125l49.5703 -20.6699c2.11328 -1.19922 3.5625 -3.42676 3.67969 -6z" />
-    <glyph glyph-name="hands-wash" unicode="&#xe05e;" horiz-adv-x="576" 
-d="M496 224c-26.4922 0 -48 21.5078 -48 48s21.5078 48 48 48s48 -21.5078 48 -48s-21.5078 -48 -48 -48zM311.47 269.55l-16.0801 -4.96973l20.9004 66.1699c3.5 11.0703 14.1797 18.8604 25.71 17.5098c12.0508 -1.27246 21.4727 -11.4824 21.4727 -23.8682
-c0 -2.53418 -0.393555 -4.97754 -1.12305 -7.27148l-15.3496 -48.6104c-5.91699 2.19336 -12.3369 3.43457 -19 3.49023c-0.0107422 0 -0.0185547 -0.0107422 -0.0302734 -0.0107422c-5.7373 0 -11.2773 -0.853516 -16.5 -2.43945zM93.6504 61.6699
-c-36.4326 21.1162 -60.9873 60.2432 -61.6504 105.19v112.729c0.179688 13.3203 11.6699 23.9102 24.9004 23.8604c13.1807 -0.0771484 23.8604 -10.7988 23.8604 -23.9971c0 -0.0507812 0 -0.102539 -0.000976562 -0.15332l2.06055 -50.0498l60 189.85
-c3.5 11.0703 14.1797 18.9004 25.71 17.46c12.0371 -1.28613 21.4443 -11.4883 21.4443 -23.8652c0 -2.52441 -0.390625 -4.95801 -1.11426 -7.24414l-38.5605 -122c-0.240234 -0.760742 -0.373047 -1.57129 -0.373047 -2.41016
-c0 -4.41699 3.58496 -8.00195 8.00195 -8.00195c3.57617 0 6.60742 2.35156 7.63086 5.5918l47.9307 151.71c3.50977 11.0605 14.1797 18.8506 25.71 17.5098c12.0371 -1.28613 21.4443 -11.4883 21.4443 -23.8652c0 -2.52441 -0.390625 -4.95801 -1.11426 -7.24414
-l-43.3701 -137.79c-0.241211 -0.762695 -0.375 -1.57422 -0.375 -2.41602c0 -4.41699 3.58594 -8.00293 8.00293 -8.00293c3.57617 0 6.60645 2.35059 7.63184 5.58887l33.4502 106.42c3.5 11.0703 14.1895 18.8604 25.7197 17.5195
-c12.0371 -1.28613 21.4443 -11.4883 21.4443 -23.8652c0 -2.52441 -0.390625 -4.95801 -1.11426 -7.24414l-34.1602 -108.12l-73.7002 -22.7598c-62.1299 -20.5283 -107.005 -79.04 -107.06 -148v-25.6904c-0.80957 -0.169922 -1.5498 -0.519531 -2.34961 -0.709961z
-M519.1 112c11.6104 0 22.25 -7.83984 24.4404 -19.2402c0.3125 -1.54395 0.477539 -3.12402 0.477539 -4.75977c0 -13.2461 -10.7549 -24 -24 -24h-0.0175781h-160c-4.41504 0 -8 -3.58496 -8 -8s3.58496 -8 8 -8h127.1c11.6104 0 22.25 -7.83984 24.4404 -19.2402
-c0.3125 -1.54395 0.477539 -3.12402 0.477539 -4.75977c0 -13.2461 -10.7549 -24 -24 -24h-0.0175781h-128c-4.41504 0 -8 -3.58496 -8 -8s3.58496 -8 8 -8h95.0996c11.6104 0 22.25 -7.83984 24.4404 -19.2402c0.3125 -1.54395 0.477539 -3.12402 0.477539 -4.75977
-c0 -13.2461 -10.7549 -24 -24 -24h-0.0175781h-208c-22.6738 0.0859375 -43.9951 6.60645 -62 17.7197c3.8623 9.36328 5.9668 19.6699 5.9668 30.4199c0 38.6191 -27.499 70.8652 -63.9668 78.21v25.6504c0 54.8691 35.7324 101.431 85.1904 117.69l107.72 33.25
-c2.24121 0.692383 4.62207 1.0752 7.08984 1.0752c13.252 0 24.0107 -10.7588 24.0107 -24.0107c0 -10.7842 -7.125 -19.917 -16.9209 -22.9453l-47.0898 -17.0596h199.1c11.6104 0 22.25 -7.83984 24.4404 -19.2402c0.3125 -1.54395 0.477539 -3.12402 0.477539 -4.75977
-c0 -13.2461 -10.7549 -24 -24 -24h-0.0175781h-128c-4.41504 0 -8 -3.58496 -8 -8s3.58496 -8 8 -8h159.1zM416 384c-17.6611 0 -32 14.3389 -32 32s14.3389 32 32 32s32 -14.3389 32 -32s-14.3389 -32 -32 -32zM112 32c26.4922 0 48 -21.5078 48 -48s-21.5078 -48 -48 -48
-s-48 21.5078 -48 48s21.5078 48 48 48z" />
-    <glyph glyph-name="handshake-alt-slash" unicode="&#xe05f;" horiz-adv-x="640" 
-d="M358.59 252.4l26.1104 23.8896c3.19727 2.92676 5.19238 7.13086 5.19238 11.8037c0 8.83203 -7.1709 16.0029 -16.0039 16.0029c-4.16016 0 -7.95117 -1.59082 -10.7988 -4.19629l-27 -24.7002l-32.6895 -29.9199l330.43 -255.38
-c3.76562 -2.92871 6.1709 -7.50781 6.1709 -12.6426c0 -3.69434 -1.25488 -7.09863 -3.36133 -9.80762l-19.6396 -25.2705c-2.92871 -3.76855 -7.50879 -6.17578 -12.6465 -6.17578c-3.69727 0 -7.10254 1.25684 -9.81348 3.36621l-588.35 454.72
-c-3.76562 2.92871 -6.17188 7.50781 -6.17188 12.6426c0 3.69434 1.25488 7.09766 3.36133 9.80762l19.6201 25.2695c2.92773 3.77148 7.51074 6.18164 12.6504 6.18164c3.69922 0 7.1084 -1.25879 9.81934 -3.37109l116.891 -90.3301l20.3398 20.2998
-c5.78027 5.7998 13.7764 9.39258 22.5996 9.41016h83.79l-75.5996 -69.2402l25.6895 -19.8496l88.1201 80.6797c5.69238 5.21777 13.2881 8.40723 21.6104 8.41016h85.8896c8.82812 -0.0146484 16.8271 -3.60742 22.6104 -9.41016l54.5898 -54.5898h112
-c8.7998 0 15.9502 -7.12109 16 -15.9102v-191.8c-0.0273438 -8.81836 -7.18164 -15.9727 -16 -16h-97.5898c-2.7002 15.1729 -10.7646 28.5215 -22.21 37.9102zM16 320h7.55957l382.44 -295.59l-8.7998 -10.8203c-6.81543 -8.38672 -17.2246 -13.7119 -28.8633 -13.7119
-c-8.87793 0 -17.0322 3.12012 -23.4268 8.32227l-17.9102 15.5l-0.200195 -0.200195c-11.7383 -14.4346 -29.6592 -23.5977 -49.6963 -23.5977c-15.2695 0 -29.2969 5.35938 -40.3037 14.2979l-90.5 81.8896h-130.3c-8.83105 0 -16 7.16992 -16 16v191.91
-c0.0273438 8.81836 7.18164 15.9727 16 16z" />
-    <glyph glyph-name="handshake-slash" unicode="&#xe060;" horiz-adv-x="640" 
-d="M0 319.79h23.8301l72.1699 -55.79v-168c0 -17.6611 -14.3389 -32 -32 -32h-64v255.79zM48 127.9c-8.83105 0 -16 -7.16992 -16 -16c0 -8.83105 7.16895 -16 16 -16s16 7.16895 16 16c0 8.83008 -7.16895 16 -16 16zM128 96.0898v143.19l278 -214.87l-8.7998 -10.8203
-c-6.81543 -8.38672 -17.2246 -13.7119 -28.8633 -13.7119c-8.87793 0 -17.0322 3.12012 -23.4268 8.32227l-17.9102 15.5l-0.200195 -0.200195c-11.7383 -14.4346 -29.6592 -23.5977 -49.6963 -23.5977c-15.2695 0 -29.2969 5.35938 -40.3037 14.2979l-90.5 81.8896
-h-18.2998zM544 319.79h96v-255.89h-64c-17.6611 0 -32 14.3379 -32 32v223.89zM592 95.9004c8.83105 0 16 7.16895 16 16c0 8.83008 -7.16895 16 -16 16s-16 -7.16992 -16 -16c0 -8.83105 7.16895 -16 16 -16zM303.33 245.33l330.5 -255.43
-c3.76953 -2.92871 6.17676 -7.50977 6.17676 -12.6475c0 -3.69238 -1.25293 -7.09375 -3.35645 -9.80273l-19.6504 -25.2705c-2.92773 -3.77051 -7.51074 -6.18066 -12.6504 -6.18066c-3.69922 0 -7.1084 1.25879 -9.81934 3.37109l-588.34 454.72
-c-3.76562 2.92871 -6.17188 7.50781 -6.17188 12.6426c0 3.69434 1.25488 7.09766 3.36133 9.80762l19.6201 25.2695c2.92773 3.77148 7.51074 6.18164 12.6504 6.18164c3.69922 0 7.1084 -1.25879 9.81934 -3.37109l116.891 -90.3398l20.3398 20.3096
-c5.78027 5.7998 13.7764 9.39258 22.5996 9.41016h83.79l-75.5996 -69.2402l25.6396 -19.8096l88.0703 80.6396c5.68457 5.21973 13.2764 8.41016 21.5947 8.41016h0.00488281h85.9004c0.0117188 0 0.0263672 0.00488281 0.0380859 0.00488281
-c8.82031 0 16.8047 -3.60254 22.5615 -9.41504l54.6104 -54.5898v-193.5c-2.45605 2.78125 -5.0625 5.31934 -7.91016 7.7002l-145.59 118.2l26.0898 23.8896c3.05762 2.91504 4.95215 7.02441 4.95215 11.5781c0 8.83105 -7.16895 16 -16 16
-c-4.03613 0 -7.72559 -1.49805 -10.542 -3.96777z" />
-    <glyph glyph-name="head-side-cough" unicode="&#xe061;" horiz-adv-x="640" 
-d="M616 144c-13.2461 0 -24 10.7539 -24 24s10.7539 24 24 24s24 -10.7539 24 -24s-10.7539 -24 -24 -24zM552 32c13.2461 0 24 -10.7539 24 -24s-10.7539 -24 -24 -24s-24 10.7539 -24 24s10.7539 24 24 24zM488 88c13.2461 0 24 -10.7539 24 -24s-10.7539 -24 -24 -24
-s-24 10.7539 -24 24s10.7539 24 24 24zM616 -16c13.2461 0 24 -10.7539 24 -24s-10.7539 -24 -24 -24s-24 10.7539 -24 24s10.7539 24 24 24zM616 88c13.2461 0 24 -10.7539 24 -24s-10.7539 -24 -24 -24s-24 10.7539 -24 24s10.7539 24 24 24zM552 128
-c13.2461 0 24 -10.7539 24 -24s-10.7539 -24 -24 -24s-24 10.7539 -24 24s10.7539 24 24 24zM477.22 173c1.76367 -3.9668 2.75977 -8.38281 2.75977 -13c0 -17.6543 -14.3281 -31.9883 -31.9795 -32h-32v-32h-96c-17.6611 0 -32 -14.3389 -32 -32s14.3389 -32 32 -32h96
-c0 -35.3223 -28.6777 -64 -64 -64h-64v-32h-224v177.12c-39.25 35.2598 -64 86.1299 -64 142.88c0 106 86 192 192 192h42.0996c70.2783 -0.046875 132.342 -34.8047 170 -88.25c24.6201 -35 52.1201 -139.63 73.1201 -186.75zM288 224
-c17.6436 0.0380859 31.9619 14.3564 32 32c0 17.6611 -14.3389 32 -32 32s-32 -14.3389 -32 -32s14.3389 -32 32 -32z" />
-    <glyph glyph-name="head-side-cough-slash" unicode="&#xe062;" horiz-adv-x="640" 
-d="M454.11 128.79l179.72 -138.89c3.76562 -2.92871 6.1709 -7.50781 6.1709 -12.6426c0 -3.69434 -1.25488 -7.09863 -3.36133 -9.80762l-19.6396 -25.2705c-2.92773 -3.77051 -7.51074 -6.18066 -12.6504 -6.18066c-3.69922 0 -7.1084 1.25879 -9.81934 3.37109
-l-588.351 454.72c-3.76562 2.92871 -6.1709 7.50781 -6.1709 12.6426c0 3.69434 1.25488 7.09766 3.36133 9.80762l19.6299 25.2695c2.92871 3.76855 7.50879 6.17676 12.6465 6.17676c3.69727 0 7.10254 -1.25684 9.81348 -3.36621l38.7197 -29.9199
-c30.6045 20.9385 67.7969 33.2998 107.644 33.2998h0.176758h42.0996c70.2783 -0.046875 132.342 -34.8047 170 -88.25c24.6201 -35 52.1201 -139.63 73.1201 -186.75c8.51074 -19.21 -3.5498 -40.4004 -23.1094 -44.21zM313.39 237.55
-c3.85059 5.28027 6.61035 11.4502 6.58008 18.4502c-0.0332031 17.6455 -14.3535 31.9668 -32 32c-9.92969 0 -18.4795 -4.86035 -24.3594 -12zM616 144c-13.2461 0 -24 10.7539 -24 24s10.7539 24 24 24s24 -10.7539 24 -24s-10.7539 -24 -24 -24zM552 80
-c-13.2461 0 -24 10.7539 -24 24s10.7539 24 24 24s24 -10.7539 24 -24s-10.7539 -24 -24 -24zM288 64c0 -17.6611 14.3389 -32 32 -32h96c0 -35.3223 -28.6777 -64 -64 -64h-64v-32h-224v177.12c-39.25 35.2598 -64 86.1299 -64 142.88
-c0.015625 31.0195 7.56055 60.5098 20.7305 86.4102l318.81 -246.41h-19.54c-17.6611 0 -32 -14.3389 -32 -32zM616 88c13.2461 0 24 -10.7539 24 -24s-10.7539 -24 -24 -24s-24 10.7539 -24 24s10.7539 24 24 24z" />
-    <glyph glyph-name="head-side-mask" unicode="&#xe063;" 
-d="M0.150391 263.58c0.445312 9.60547 1.64062 19.0078 3.51953 28.1699l220.33 -160.26v-195.49h-160v177.12c-41 36.8203 -66.1699 90.6699 -63.8496 150.46zM509.22 173c1.62891 -3.79102 2.54688 -7.97949 2.54688 -12.3652
-c0 -0.211914 -0.00195312 -0.423828 -0.00683594 -0.634766h-272.55l-225.96 164.35c29.2305 73.0801 103.75 123.65 186.75 123.65h66.1104c70.2744 -0.046875 132.336 -34.8047 169.989 -88.25c24.6201 -35 52.1201 -139.63 73.1201 -186.75zM320 224
-c17.6436 0.0380859 31.9619 14.3564 32 32c0 17.6611 -14.3389 32 -32 32s-32 -14.3389 -32 -32s14.3389 -32 32 -32zM336 80c-8.83105 0 -16 -7.16895 -16 -16s7.16895 -16 16 -16h149.34l-10.6699 -32h-138.67c-8.83105 0 -16 -7.16895 -16 -16s7.16895 -16 16 -16h128
-l-1.41016 -4.24023c-8.47363 -25.4199 -32.458 -43.7578 -60.71 -43.7598h-145.88v192h256l-16 -48h-160z" />
-    <glyph glyph-name="head-side-virus" unicode="&#xe064;" 
-d="M272 208c8.83105 0 16 -7.16895 16 -16s-7.16895 -16 -16 -16s-16 7.16895 -16 16s7.16895 16 16 16zM208 272c8.83105 0 16 -7.16895 16 -16s-7.16895 -16 -16 -16s-16 7.16895 -16 16s7.16895 16 16 16zM509.2 173c1.76367 -3.9668 2.75879 -8.38281 2.75879 -13
-c0 -17.6475 -14.3164 -31.9775 -31.959 -32h-32v-64c0 -35.3223 -28.6777 -64 -64 -64h-64v-64h-256v177.19c-39.3125 35.0342 -64 86.0137 -64 142.763v0.046875c0 106 86 192 192 192h74.0898c70.3008 0 132.405 -34.7725 170.04 -88.25
-c24.6396 -35.0195 52.1396 -139.63 73.0703 -186.75zM368 208c8.83105 0 16 7.16895 16 16s-7.16895 16 -16 16h-12.1201c-28.5098 0 -42.79 34.4697 -22.6299 54.6299l8.58008 8.57031c2.89648 2.89648 4.68457 6.90137 4.68457 11.3174
-c0 8.83105 -7.16992 16.002 -16.002 16.002c-4.41602 0 -8.41602 -1.79297 -11.3125 -4.68945l-8.57031 -8.58008c-20.1602 -20.1602 -54.6299 -5.87988 -54.6299 22.6299v12.1201c0 8.83105 -7.16895 16 -16 16s-16 -7.16895 -16 -16v-12.1201
-c0 -28.5098 -34.4697 -42.79 -54.6299 -22.6299l-8.57031 8.58008c-2.89648 2.89648 -6.90137 4.68457 -11.3174 4.68457c-8.83105 0 -16.002 -7.16992 -16.002 -16.002c0 -4.41602 1.79297 -8.41602 4.68945 -11.3125l8.58008 -8.57031
-c20.1602 -20.1602 5.87988 -54.6299 -22.6299 -54.6299h-12.1201c-8.83105 0 -16 -7.16895 -16 -16s7.16895 -16 16 -16h12.1201c28.5098 0 42.79 -34.4697 22.6299 -54.6299l-8.58008 -8.57031c-2.89648 -2.89648 -4.68457 -6.90137 -4.68457 -11.3174
-c0 -8.83105 7.16992 -16.002 16.002 -16.002c4.41602 0 8.41602 1.79297 11.3125 4.68945l8.57031 8.58008c20.1602 20.1602 54.6299 5.87988 54.6299 -22.6299v-12.1201c0 -8.83105 7.16895 -16 16 -16s16 7.16895 16 16v12.1201c0 28.5098 34.4697 42.79 54.6299 22.6299
-l8.57031 -8.58008c2.89648 -2.89648 6.90137 -4.68457 11.3174 -4.68457c8.83105 0 16.002 7.16992 16.002 16.002c0 4.41602 -1.79297 8.41602 -4.68945 11.3125l-8.58008 8.57031c-20.1602 20.1602 -5.87988 54.6299 22.6299 54.6299h12.1201z" />
-    <glyph glyph-name="house-user" unicode="&#xe065;" horiz-adv-x="576" 
-d="M570.69 211.73c2.9082 -3.21777 4.83887 -7.36914 5.30957 -11.9209c-0.388672 -3.95801 -1.85742 -7.64648 -4.08984 -10.6895l-21.4102 -23.8105c-3.20117 -2.90527 -7.33496 -4.83594 -11.8701 -5.30957c-3.9668 0.40625 -7.66406 1.88379 -10.7197 4.12012
-l-15.9102 14v-210.12c0 -17.6611 -14.3389 -32 -32 -32h-383.91c-17.6611 0 -32 14.3389 -32 32v210.11l-15.8994 -14c-3.04297 -2.23926 -6.73047 -3.71484 -10.6904 -4.11035c-4.57715 0.460938 -8.75586 2.38867 -12 5.2998l-21.4102 23.79
-c-2.37695 2.95605 -3.87891 6.67773 -4.08984 10.71c0.241211 4.62402 2.20312 8.8125 5.25977 11.9004l256 226c6.28027 5.68945 18.21 10.2998 26.7402 10.2998s20.5 -4.61035 26.7803 -10.2998l101.22 -89.3701v51.6699c0 8.83105 7.16895 16 16 16h64
-c8.83105 0 16 -7.16895 16 -16v-136.44zM288 272c-35.3223 0 -64 -28.6777 -64 -64s28.6777 -64 64 -64s64 28.6777 64 64s-28.6777 64 -64 64zM400 0c8.83105 0 16 7.16895 16 16c0 52.9834 -43.0166 96 -96 96h-64c-52.9834 0 -96 -43.0166 -96 -96
-c0 -8.83105 7.16895 -16 16 -16h224z" />
-    <glyph glyph-name="laptop-house" unicode="&#xe066;" horiz-adv-x="640" 
-d="M272 160v-128h-176c-17.6611 0 -32 14.3389 -32 32v164.12l-21.6602 -19.1201c-2.5957 -2.02832 -5.83691 -3.30469 -9.33984 -3.48047c-4.15527 0.22168 -7.91113 2.00684 -10.6602 4.78027l-18.79 21.3105c-2.06836 2.59668 -3.37207 5.8584 -3.5498 9.38965
-c0.234375 4.12598 2.01758 7.85352 4.78027 10.5801l211.8 187.5c5.54004 4.91992 16.0703 8.91992 23.4697 8.91992c7.40039 0 17.9502 -4 23.4502 -8.91992l88.5 -78.3799v39.2998c0 8.83105 7.16895 16 16 16h32c8.83105 0 16 -7.16895 16 -16v-96l59.25 -52.3896
-c2.74609 -2.74707 4.5166 -6.48145 4.75 -10.6104c-0.186523 -3.56445 -1.51172 -6.85449 -3.61035 -9.46973l-6.64941 -7.53027h-136.94c-17.7998 0 -33.6895 -8.24023 -44.7998 -21.1201v37.1201c0 8.83105 -7.16895 16 -16 16h-64c-8.83105 0 -16 -7.16895 -16 -16v-64
-c0 -8.83105 7.16895 -16 16 -16h64zM629.33 0c5.88867 0 10.6699 -4.78125 10.6699 -10.6699v-10.6602c-0.0820312 -23.4883 -19.1201 -42.5498 -42.5996 -42.6699h-298.801c-23.4795 0.120117 -42.5176 19.1816 -42.5996 42.6699v10.6602
-c0 5.88867 4.78125 10.6699 10.6699 10.6699h37.3301v160c0 17.6699 12.8896 32 28.7998 32h230.4c15.9102 0 28.7998 -14.3301 28.7998 -32v-160h37.3301zM544 0v144h-192v-144h192z" />
-    <glyph glyph-name="lungs-virus" unicode="&#xe067;" horiz-adv-x="640" 
-d="M344 297.32c-6.99512 4.2207 -15.291 6.65039 -24.0498 6.65039s-16.9551 -2.42969 -23.9502 -6.65039v134.68c0 8.83105 7.16895 16 16 16h16c8.83105 0 16 -7.16895 16 -16v-134.68zM195.54 3.54004c8.44824 -8.67969 20.2178 -14.0645 33.2754 -14.0645
-c2.87988 0 5.69922 0.261719 8.43457 0.764648c-13.043 -16.7764 -31.3789 -29.1445 -52.5 -34.75l-59.5 -15.8701c-62.75 -16.8799 -125.25 27.3799 -125.25 88.6299c0 0.0820312 0.0126953 0.125 0.0126953 0.207031c0 10.1719 1.3457 20.0322 3.86719 29.4131
-c22.0361 82.46 57.0371 160.927 102 231c22.1201 34.6299 36.1201 63.1299 80.1201 63.1299c38.6201 0 70 -29.3799 70 -65.75v-27.6797c-7.62012 5.0918 -16.832 8.08496 -26.6768 8.08496c-26.4922 0 -48 -21.5088 -48 -48c0 -13.3232 5.43945 -25.3848 14.2168 -34.085
-l8.58008 -8.57031h-12.1201c-26.4922 0 -48 -21.5078 -48 -48s21.5078 -48 48 -48h12.1201l-8.58008 -8.58008c-8.67383 -8.69531 -14.0391 -20.707 -14.0391 -33.9473s5.36523 -25.2363 14.0391 -33.9326zM421.83 26.1699
-c-2.89648 -2.89648 -6.90137 -4.68945 -11.3174 -4.68945s-8.41602 1.79297 -11.3125 4.68945l-8.57031 8.57031c-20.1602 20.1602 -54.6299 5.87988 -54.6299 -22.6201v-12.1201c0 -8.83105 -7.16895 -16 -16 -16s-16 7.16895 -16 16v12.1201
-c0 28.5 -34.4697 42.7803 -54.6299 22.6201l-8.57031 -8.57031c-2.9082 -2.99609 -6.98242 -4.85449 -11.4834 -4.85449c-8.83105 0 -16 7.16992 -16 16c0 4.49902 1.86035 8.56641 4.85352 11.4746l8.58008 8.58008c20.1602 20.1602 5.87988 54.6299 -22.6299 54.6299
-h-12.1201c-8.83105 0 -16 7.16895 -16 16s7.16895 16 16 16h12.1201c28.5098 0 42.79 34.4697 22.6299 54.6201l-8.58008 8.58008c-2.89648 2.89648 -4.68457 6.90137 -4.68457 11.3174c0 8.83105 7.16992 16.002 16.002 16.002
-c4.41602 0 8.41602 -1.79297 11.3125 -4.68945l8.57031 -8.58008c20.1602 -20.1602 54.6299 -5.87988 54.6299 22.6299v12.1201c0 8.83105 7.16895 16 16 16s16 -7.16895 16 -16v-12.1201c0 -28.5098 34.4697 -42.79 54.6299 -22.6299l8.57031 8.58008
-c2.89648 2.89648 6.90137 4.68457 11.3174 4.68457c8.83105 0 16.002 -7.16992 16.002 -16.002c0 -4.41602 -1.79297 -8.41602 -4.68945 -11.3125l-8.58008 -8.58008c-20.1602 -20.1504 -5.87988 -54.6201 22.6299 -54.6201h12.1201c8.83105 0 16 -7.16895 16 -16
-s-7.16895 -16 -16 -16h-12.1201c-28.5098 0 -42.79 -34.4697 -22.6299 -54.6299l8.58008 -8.58008c2.89355 -2.89551 4.68457 -6.89844 4.68457 -11.3125c0 -4.41309 -1.79102 -8.41211 -4.68457 -11.3076zM288 144c8.83105 0 16 7.16895 16 16s-7.16895 16 -16 16
-s-16 -7.16895 -16 -16s7.16895 -16 16 -16zM352 80c8.83105 0 16 7.16895 16 16s-7.16895 16 -16 16s-16 -7.16895 -16 -16s7.16895 -16 16 -16zM636.12 57.8701c2.52148 -9.38086 3.87988 -19.2021 3.87988 -29.374v-0.246094c0 -61.25 -62.5 -105.51 -125.25 -88.6299
-l-59.5 15.8701c-21.1211 5.60547 -39.457 17.9736 -52.5 34.75c2.77246 -0.50293 5.59766 -0.761719 8.51465 -0.761719c26.3262 0 47.7002 21.374 47.7002 47.7002c0 13.4287 -5.56152 25.5693 -14.5049 34.2412l-8.58008 8.58008h12.1201c26.4922 0 48 21.5078 48 48
-s-21.5078 48 -48 48h-12.1201l8.58008 8.53027c8.77734 8.7002 14.1602 20.7393 14.1602 34.0615c0 26.4922 -21.5078 48 -48 48c-9.84375 0 -19 -2.96973 -26.6201 -8.06152v27.7197c0 36.3701 31.3799 65.75 70 65.75c44 0 58 -28.5 80.1201 -63.1299
-c44.9629 -70.0732 79.9639 -148.54 102 -231z" />
-    <glyph glyph-name="people-arrows" unicode="&#xe068;" horiz-adv-x="576" 
-d="M96 320c-35.3223 0 -64 28.6777 -64 64s28.6777 64 64 64s64 -28.6777 64 -64s-28.6777 -64 -64 -64zM96 143.92c0 -0.0400391 -0.0117188 -0.078125 -0.0117188 -0.119141c0 -12.5332 5.24219 -23.8516 13.6514 -31.8809l50.3604 -47.5303v-96.3896
-c0 -17.6611 -14.3389 -32 -32 -32h-64c-17.6611 0 -32 14.3389 -32 32v128c-17.6611 0 -32 14.3389 -32 32v96c0 35.3223 28.6777 64 64 64h64c26.9717 -0.0253906 50.0303 -16.7598 59.3799 -40.4297c-1.83984 -1.26074 -3.95996 -2.02051 -5.61035 -3.57031
-l-72.1299 -68.0801c-8.40918 -8.03418 -13.6396 -19.3555 -13.6396 -31.8926v-0.107422zM480 320c-35.3223 0 -64 28.6777 -64 64s28.6777 64 64 64s64 -28.6777 64 -64s-28.6777 -64 -64 -64zM512 288c35.3223 0 64 -28.6777 64 -64v-96c0 -17.6611 -14.3389 -32 -32 -32
-v-128c0 -17.6611 -14.3389 -32 -32 -32h-64c-17.6611 0 -32 14.3389 -32 32v96.3799l50.3604 47.5498c8.4082 8.07617 13.6445 19.4336 13.6445 32.002c0 12.5674 -5.23633 23.9219 -13.6445 31.998l-72.1201 68.0605c-1.62012 1.58984 -3.78027 2.31934 -5.62012 3.58984
-c9.35352 23.666 32.4102 40.3965 59.3799 40.4199h64zM444.4 152.66c2.22461 -2.24219 3.59961 -5.33203 3.59961 -8.7373c0 -3.4043 -1.375 -6.49121 -3.59961 -8.73242l-72.1201 -68.0703c-2.1543 -2.05371 -5.07227 -3.31543 -8.28027 -3.31543
-c-6.62305 0 -12 5.37695 -12 12v0.0556641v36.1396h-128v-36.1396c0 -0.0185547 -0.00292969 -0.0361328 -0.00292969 -0.0546875c0 -6.62305 -5.37695 -12 -12 -12c-3.20801 0 -6.12305 1.26074 -8.27734 3.31445l-72.1201 68.0703
-c-2.22461 2.24121 -3.59961 5.33203 -3.59961 8.73633c0 3.40527 1.375 6.49121 3.59961 8.7334l72.1201 68.0703c2.1543 2.05273 5.07227 3.31445 8.28027 3.31445c6.62305 0 12 -5.37695 12 -12v-0.0449219v-36h128v36
-c0 0.0117188 0.00292969 0.0224609 0.00292969 0.0341797c0 6.62305 5.37695 12 12 12c3.20801 0 6.12305 -1.26074 8.27734 -3.31445z" />
-    <glyph glyph-name="plane-slash" unicode="&#xe069;" horiz-adv-x="640" 
-d="M32.4805 300.12c-0.258789 1.12109 -0.386719 2.2959 -0.386719 3.49512c0 2.94531 0.825195 5.7002 2.25586 8.04492l324.841 -251.061l-66.6006 -116.54c-2.75684 -4.82227 -7.94141 -8.05957 -13.8896 -8.05957h-65.5
-c-8.81641 0.0166016 -15.9678 7.17676 -15.9678 15.9971c0 1.53027 0.21582 3.01074 0.617188 4.41309l49 171.59h-102.85l-43.2002 -57.5898c-2.91797 -3.89648 -7.5625 -6.40723 -12.7998 -6.41016h-40c-8.82812 0.00292969 -15.9941 7.16406 -15.9941 15.9932
-c0 1.33691 0.165039 2.63574 0.474609 3.87695l31.5195 108.13zM633.82 -10.0898c3.77148 -2.92871 6.18164 -7.51074 6.18164 -12.6514c0 -3.69531 -1.25488 -7.09863 -3.3623 -9.80859l-19.6396 -25.2598c-2.92773 -3.77246 -7.51074 -6.18262 -12.6514 -6.18262
-c-3.69434 0 -7.09863 1.25488 -9.80859 3.3623l-588.36 454.72c-3.76855 2.92871 -6.17578 7.50879 -6.17578 12.6465c0 3.69727 1.25684 7.10352 3.36621 9.81348l19.6299 25.2598c2.92871 3.76855 7.50879 6.17676 12.6465 6.17676
-c3.69727 0 7.10254 -1.25684 9.81348 -3.36621l189.3 -146.3l-36.9395 129.29c-0.398438 1.39551 -0.614258 2.86621 -0.614258 4.38965c0 8.8291 7.16602 15.9971 15.9941 16h65.5098c5.12988 0 11.3496 -3.61035 13.9004 -8.05957l105.09 -183.94h114.3
-c35.3398 0 96 -28.6602 96 -64s-60.6602 -64 -96 -64h-56.8604z" />
-    <glyph glyph-name="pump-medical" unicode="&#xe06a;" horiz-adv-x="384" 
-d="M235.51 288.18c33.3369 -0.00195312 60.7559 -25.6123 63.7305 -58.1797l20.3701 -224c0.175781 -1.93066 0.262695 -3.82324 0.262695 -5.7998c0 -35.3203 -28.6738 -63.9961 -63.9932 -64h-192c-35.3223 0 -64.0059 28.6143 -64.0059 63.9365
-c0 1.97656 0.0898438 3.93262 0.265625 5.86328l20.3701 224c2.97461 32.5674 30.3936 58.1777 63.7305 58.1797h151.27zM239.88 114.85v26.6602c0 7.3623 -5.97754 13.3398 -13.3398 13.3398h-40v40c0 7.35742 -5.97266 13.3301 -13.3301 13.3301h-26.6699
-c-7.35742 0 -13.3301 -5.97266 -13.3301 -13.3301v-40h-40c-7.35742 0 -13.3301 -5.97266 -13.3301 -13.3291v-0.0107422v-26.6602c0 -7.3584 5.97266 -13.334 13.3301 -13.3398h40v-40c0 -7.35645 5.97266 -13.3301 13.3301 -13.3301h26.6699
-c7.35742 0 13.3301 5.97363 13.3301 13.3301v40h40c7.36035 0.00585938 13.334 5.98047 13.3398 13.3398zM379.19 354.12c2.89648 -2.89648 4.68945 -6.90137 4.68945 -11.3174s-1.79297 -8.41602 -4.68945 -11.3125l-22.6201 -22.6201
-c-2.89648 -2.89746 -6.90137 -4.68945 -11.3174 -4.68945s-8.41699 1.79199 -11.3125 4.68945l-43.3105 43.3096h-66.75v-32h-128v96c0 17.6611 14.3389 32 32 32h64c17.6611 0 32 -14.3389 32 -32h66.75c17.6553 -0.00195312 33.6582 -7.16016 45.2402 -18.7393z" />
-    <glyph glyph-name="pump-soap" unicode="&#xe06b;" horiz-adv-x="384" 
-d="M235.63 288c0.00390625 0 0.0107422 -0.0634766 0.0146484 -0.0634766c33.3496 0 60.7754 -25.5625 63.7354 -58.1465l20.3604 -224c0.174805 -1.92773 0.259766 -3.81738 0.259766 -5.79004c0 -35.3223 -28.6777 -64 -64 -64h-192
-c-35.3193 0.00390625 -63.9941 28.6172 -63.9941 63.9365c0 1.97363 0.0888672 3.92578 0.263672 5.85352l20.3604 224c2.95996 32.584 30.3906 58.21 63.7402 58.21h151.26zM160 32c33.1201 0 60 26.3301 60 58.7305c0 25 -35.6699 75.4697 -52 97.2695
-c-1.82422 2.43848 -4.72559 4.01855 -8.00293 4.01855c-3.26758 0 -6.17188 -1.57129 -7.99707 -3.99902c-16.2998 -21.7998 -52 -72.2695 -52 -97.2695c0 -32.4199 26.8799 -58.75 60 -58.75zM379.31 353.94c2.89746 -2.89648 4.69043 -6.90137 4.69043 -11.3174
-s-1.79297 -8.41699 -4.69043 -11.3135l-22.6191 -22.6191c-2.89648 -2.89746 -6.90137 -4.69043 -11.3174 -4.69043s-8.41699 1.79297 -11.3135 4.69043l-43.3096 43.3096h-66.75v-32h-128v96c0 17.6611 14.3389 32 32 32h64c17.6611 0 32 -14.3389 32 -32h66.75
-c17.6582 0 33.666 -7.1582 45.25 -18.7402z" />
-    <glyph glyph-name="shield-virus" unicode="&#xe06c;" 
-d="M224 256c8.83105 0 16 -7.16895 16 -16s-7.16895 -16 -16 -16s-16 7.16895 -16 16s7.16895 16 16 16zM466.5 364.32c17.3359 -7.24121 29.5 -24.3428 29.5 -44.291v-0.0292969c0 -221.3 -135.91 -344.61 -221.59 -380.32
-c-5.67578 -2.3584 -11.9619 -3.66016 -18.4873 -3.66016c-6.52441 0 -12.7471 1.30176 -18.4229 3.66016c-107 44.6006 -221.5 181.82 -221.5 380.32c0 0.0166016 -0.03125 0.0107422 -0.03125 0.0263672c0 19.9707 12.2402 37.1055 29.6211 44.3037l192 80
-c5.75293 2.17188 12 3.46582 18.46 3.66992c6.45605 -0.208008 12.7012 -1.50586 18.4502 -3.67969zM384 192c8.83105 0 16 7.16895 16 16s-7.16895 16 -16 16h-12.1201c-28.5098 0 -42.79 34.4697 -22.6299 54.6299l8.58008 8.57031
-c2.89648 2.89648 4.68457 6.90137 4.68457 11.3174c0 8.83105 -7.16992 16.002 -16.002 16.002c-4.41602 0 -8.41602 -1.79297 -11.3125 -4.68945l-8.57031 -8.58008c-20.1602 -20.1602 -54.6299 -5.87988 -54.6299 22.6299v12.1201c0 8.83105 -7.16895 16 -16 16
-s-16 -7.16895 -16 -16v-12.1201c0 -28.5098 -34.4697 -42.79 -54.6299 -22.6299l-8.57031 8.58008c-2.89648 2.89648 -6.90137 4.68457 -11.3174 4.68457c-8.83105 0 -16.002 -7.16992 -16.002 -16.002c0 -4.41602 1.79297 -8.41602 4.68945 -11.3125l8.58008 -8.57031
-c20.1602 -20.1602 5.87988 -54.6299 -22.6299 -54.6299h-12.1201c-8.83105 0 -16 -7.16895 -16 -16s7.16895 -16 16 -16h12.1201c28.5098 0 42.79 -34.4697 22.6299 -54.6299l-8.58008 -8.57031c-2.89648 -2.89648 -4.68457 -6.90137 -4.68457 -11.3174
-c0 -8.83105 7.16992 -16.002 16.002 -16.002c4.41602 0 8.41602 1.79297 11.3125 4.68945l8.57031 8.58008c20.1602 20.1602 54.6299 5.87988 54.6299 -22.6299v-12.1201c0 -8.83105 7.16895 -16 16 -16s16 7.16895 16 16v12.1201c0 28.5098 34.4697 42.79 54.6299 22.6299
-l8.57031 -8.58008c2.89648 -2.89648 6.90137 -4.68457 11.3174 -4.68457c8.83105 0 16.002 7.16992 16.002 16.002c0 4.41602 -1.79297 8.41602 -4.68945 11.3125l-8.58008 8.57031c-20.1602 20.1602 -5.87988 54.6299 22.6299 54.6299h12.1201zM288 192
-c8.83105 0 16 -7.16895 16 -16s-7.16895 -16 -16 -16s-16 7.16895 -16 16s7.16895 16 16 16z" />
-    <glyph glyph-name="sink" unicode="&#xe06d;" 
-d="M32 32v32h448v-32c0 -52.9834 -43.0166 -96 -96 -96h-256c-52.9834 0 -96 43.0166 -96 96zM496 160c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-480c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h96v32h-64
-c-8.83105 0 -16 7.16895 -16 16v16c0 8.83105 7.16895 16 16 16h80c17.6611 0 32 -14.3389 32 -32v-48h64v188.21c0 46.4297 31.29 89.0801 76.8701 97.9297c6.15625 1.23926 12.4512 1.8877 18.9697 1.8877c53.0283 0 96.0879 -43.0166 96.1602 -96.0273v-16
-c0 -8.83105 -7.16895 -16 -16 -16h-32c-8.83105 0 -16 7.16895 -16 16v16c0 17.6611 -14.3389 32 -32 32s-32 -14.3389 -32 -32v-192h64v48c0 17.6611 14.3389 32 32 32h80c8.83105 0 16 -7.16895 16 -16v-16c0 -8.83105 -7.16895 -16 -16 -16h-64v-32h96z" />
-    <glyph glyph-name="soap" unicode="&#xe06e;" 
-d="M416 256c52.9834 0 96 -43.0166 96 -96v-128c0 -52.9834 -43.0166 -96 -96 -96h-320c-52.9834 0 -96 43.0166 -96 96v128c0 52.9834 43.0166 96 96 96h128c0.0634766 -24.6279 9.49707 -47.1133 24.9102 -64h-88.9102c-52.9834 0 -96 -43.0166 -96 -96
-s43.0166 -96 96 -96h192c0.0703125 0 0.171875 -0.0322266 0.242188 -0.0322266c52.873 0 95.7998 42.9268 95.7998 95.7998c0 41.3477 -26.251 76.6123 -62.9824 90.0225c19.0049 17.4219 30.9033 42.4307 30.9404 70.21zM320 192c-35.3223 0 -64 28.6777 -64 64
-s28.6777 64 64 64s64 -28.6777 64 -64s-28.6777 -64 -64 -64zM208 352c-26.4922 0 -48 21.5078 -48 48s21.5078 48 48 48s48 -21.5078 48 -48s-21.5078 -48 -48 -48zM384 384c-17.6611 0 -32 14.3389 -32 32s14.3389 32 32 32s32 -14.3389 32 -32s-14.3389 -32 -32 -32z
-M160 160h192c35.3223 0 64 -28.6777 64 -64s-28.6777 -64 -64 -64h-192c-35.3223 0 -64 28.6777 -64 64s28.6777 64 64 64z" />
-    <glyph glyph-name="stopwatch-20" unicode="&#xe06f;" horiz-adv-x="448" 
-d="M398.5 257.09c21.1045 -32.3291 33.501 -71.1426 33.501 -112.596c0 -0.165039 -0.000976562 -0.329102 -0.000976562 -0.494141c0 -116 -94.8701 -209.77 -211.28 -208c-113.96 1.78027 -208.08 100.5 -204.63 214.43c3.10156 100.915 78.4639 183.935 175.91 199.07
-v34.5h-32c-8.81836 0.0273438 -15.9727 7.18164 -16 16v32c0.0273438 8.81836 7.18164 15.9727 16 16h128c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-32v-34.5c37.3506 -5.76855 71.749 -21.625 99.6904 -44.5898l24.6797 24.6797
-c2.89648 2.89746 6.90137 4.69043 11.3174 4.69043s8.41602 -1.79297 11.3125 -4.69043l22.6797 -22.6797c2.89746 -2.89648 4.69043 -6.90137 4.69043 -11.3174s-1.79297 -8.41602 -4.69043 -11.3125l-26.5898 -26.5801zM204.37 70.4502l-49.1299 0.0400391
-c1.7998 15.6299 14.8496 36.2002 26.4102 51.2002c21.9092 30.0996 34.3496 45.7295 34.3496 81.3096c0 35.1504 -12.5703 61 -55.5703 61c-47.9492 0 -56.4297 -32.9404 -56.4297 -60.2402v-4.06934c0.0703125 -4.46582 3.71484 -8.07129 8.19629 -8.07129
-c0.0449219 0 0.0888672 0 0.133789 0.000976562h24.9004c0.0439453 -0.000976562 0.0859375 0.000976562 0.130859 0.000976562c4.48145 0 8.12891 3.60352 8.19824 8.06934v5.22949c0 15.2803 3.30078 22.6797 12.6904 22.6797c10.4199 0 12.21 -7.34961 12.21 -24.2695
-c0 -25.0205 -6.67969 -33.1504 -27.0996 -62.3398c-23.7803 -33.96 -35.6699 -56.1504 -38.4502 -91.3701c-0.0273438 -0.388672 -0.0449219 -0.765625 -0.0449219 -1.16113c0 -9.08496 7.37598 -16.46 16.46 -16.46c0.0654297 0 0.129883 0 0.194336 0.000976562h82.8506
-c0.0410156 -0.000976562 0.0800781 0.000976562 0.121094 0.000976562c4.48145 0 8.12891 3.60352 8.19922 8.06934v22.3096c-0.0703125 4.46484 -3.71582 8.07129 -8.19727 8.07129c-0.0410156 0 -0.0820312 -0.000976562 -0.123047 -0.000976562zM344 95.6797v107.021
-c0 38.6602 -19 61.2998 -55.7998 61.2998c-36.6201 0 -56.2002 -22.4902 -56.2002 -63.2197v-105.33c0 -33.9307 11.1904 -63.4502 54.7695 -63.4502c44.9307 0 57.2305 28.5195 57.2305 63.6797zM287.87 226.27c10.0098 0 13.0195 -8.05957 13 -19.3291v-115.94
-c0 -13.2695 -3.36035 -21.2695 -13 -21.2695s-13.2305 7.47949 -13.2305 20.5898v115.949c0 12.5 3.82031 20 13.2305 20z" />
-    <glyph glyph-name="store-alt-slash" unicode="&#xe070;" horiz-adv-x="640" 
-d="M17.8896 324.38l88.4707 -68.3799h-74.2607c-25.5898 0 -40.79 28.5 -26.5898 49.7998zM576 34.5801l57.8301 -44.6797c3.76562 -2.92871 6.1709 -7.50781 6.1709 -12.6426c0 -3.69434 -1.25488 -7.09863 -3.36133 -9.80762l-19.6396 -25.2598
-c-2.92773 -3.77539 -7.5127 -6.1875 -12.6553 -6.1875c-3.69727 0 -7.10352 1.25684 -9.81445 3.36719l-588.351 454.72c-3.76562 2.92871 -6.1709 7.50781 -6.1709 12.6426c0 3.69434 1.25488 7.09766 3.36133 9.80762l19.6299 25.2695
-c2.92871 3.76855 7.50879 6.17676 12.6465 6.17676c3.69727 0 7.10254 -1.25684 9.81348 -3.36621l34.6904 -26.8203l10.6592 16c5.71387 8.57715 15.4521 14.2002 26.5215 14.2002h0.0888672h405.18c0.00390625 0 -0.0107422 0.0322266 -0.00683594 0.0322266
-c11.1172 0 20.9248 -5.64941 26.707 -14.2324l85.29 -128c14.1104 -21.2998 -1.08984 -49.7998 -26.5898 -49.7998h-318.48l41.4004 -32h53.0801v-41l128 -99v140h64v-189.42zM320 64v26.8799l64 -49.4697v-73.4102c0 -17.6611 -14.3389 -32 -32 -32h-256
-c-17.6611 0 -32 14.3389 -32 32v256h64v-160h192z" />
-    <glyph glyph-name="store-slash" unicode="&#xe071;" horiz-adv-x="640" 
-d="M121.51 64h226.91l157.33 -128h-414.52c-16.8105 0 -30.4004 14.2998 -30.4004 32v196.8c5.02051 -1.53516 10.2939 -2.76074 15.5801 -3.59961c5.62891 -0.791016 11.2549 -1.19727 17.0996 -1.2002c9.65723 0.157227 19.0283 1.47559 28 3.7998v-99.7998z
-M93.5098 192.09c-0.0644531 0 -0.0566406 -0.00390625 -0.121094 -0.00390625c-4.37402 0 -8.67969 0.294922 -12.8984 0.864258c-58.9404 8.46973 -87.0098 81.6094 -56.4902 135l133.51 -108.62c-16.71 -16.5205 -38.8994 -27.2402 -64 -27.2402zM602.13 -10.0898
-c3.59863 -3.04297 5.86719 -7.59961 5.86719 -12.6758c0 -3.6582 -1.1875 -7.04102 -3.19727 -9.78418l-18.6602 -25.2598c-2.66211 -3.74902 -7.04102 -6.17871 -11.9854 -6.17871c-3.54785 0 -6.80469 1.26074 -9.34473 3.3584l-558.939 454.72
-c-3.59863 3.04297 -5.86719 7.59961 -5.86719 12.6758c0 3.6582 1.1875 7.04102 3.19727 9.78418l18.6602 25.2598c2.66016 3.74805 7.03711 6.17676 11.9785 6.17676c3.55176 0 6.81055 -1.26367 9.35156 -3.36621l33.6895 -27.4004l9.38965 15.7803
-c5.16309 8.89941 14.7383 14.8848 25.7305 15h383.81c10.998 -0.109375 20.5781 -6.09668 25.7402 -15l61.6602 -103.6c31.9404 -53.6006 3.59961 -127.99 -56.0596 -136.4c-4.28027 -0.598633 -8.55762 -0.90625 -13 -0.910156c-28.0303 0 -52.9199 13 -70.1104 33.1104
-c-17.1104 -20.1104 -42 -33.1104 -70.1104 -33.1104c-8.83496 0.130859 -17.3857 1.58594 -25.4102 4.14062l137.82 -112.11v79.6797c8.95801 -2.36523 18.3291 -3.6875 28 -3.7998c5.9082 0.00683594 11.5957 0.412109 17.29 1.2002
-c5.31152 0.757812 10.584 1.9873 15.5703 3.59961v-130.21z" />
-    <glyph glyph-name="toilet-paper-slash" unicode="&#xe072;" horiz-adv-x="640" 
-d="M64 256c0 10.8096 0.530273 21.3398 1.41992 31.6699l316 -244.25c-4.17969 -32.2002 -12.8701 -57.7197 -22.1797 -85.5498c-4.19727 -12.7002 -16.1592 -21.8701 -30.2588 -21.8701h-0.121094h-280.86c-8.79395 0.0429688 -15.917 7.19824 -15.917 16.002
-c0 1.74512 0.279297 3.4248 0.796875 4.99805c21.3701 64.1201 31.1201 85.75 31.1201 126.87v172.13zM633.82 -10.0898c3.77148 -2.92871 6.18164 -7.51074 6.18164 -12.6514c0 -3.69531 -1.25488 -7.09863 -3.3623 -9.80859l-19.6396 -25.2598
-c-2.92773 -3.77246 -7.51074 -6.18262 -12.6514 -6.18262c-3.69434 0 -7.09863 1.25488 -9.80859 3.3623l-588.36 454.72c-3.76855 2.92871 -6.17578 7.50879 -6.17578 12.6465c0 3.69727 1.25684 7.10352 3.36621 9.81348l19.6299 25.2598
-c2.92871 3.76855 7.50879 6.17676 12.6465 6.17676c3.69727 0 7.10254 -1.25684 9.81348 -3.36621l53.2803 -41.1504c16.6299 27.7002 37.9297 44.5303 61.2598 44.5303h284.5c-36.8701 -38.5 -60.5 -108.38 -60.5 -192v-73l50.4297 -39
-c-11.4297 31.5996 -18.4297 70 -18.4297 112c0 106 43 192 96 192s96 -86 96 -192c0 -92.3203 -32.7197 -168.91 -76.1797 -187.28zM512 192c17.6201 0 32 28.6299 32 64s-14.3701 64 -32 64s-32 -28.6201 -32 -64s14.3701 -64 32 -64z" />
-    <glyph glyph-name="users-slash" unicode="&#xe073;" horiz-adv-x="640" 
-d="M132.65 235.68c-10.3945 -7.33496 -23.1328 -11.6836 -36.8105 -11.6836c-35.2344 0 -63.8398 28.6055 -63.8398 63.8398v0.164062c0.0615234 7.80859 1.5625 15.3242 4.20996 22.2197zM173.09 173.4c-40.2002 -21.9072 -68.8896 -62.1416 -75.1797 -109.4h-65.9102
-c-17.6611 0 -32 14.3389 -32 32v32c0.0332031 35.3076 28.6924 63.9668 64 64h64c0.0224609 0 0.0537109 0.0078125 0.0771484 0.0078125c17.5605 0 33.4727 -7.11035 45.0127 -18.6074zM544 224c-35.3076 0.0332031 -63.9668 28.6924 -64 64c0 35.3223 28.6777 64 64 64
-s64 -28.6777 64 -64s-28.6777 -64 -64 -64zM500.56 92.8896l133.271 -102.989c3.76562 -2.92871 6.1709 -7.50781 6.1709 -12.6426c0 -3.69434 -1.25488 -7.09863 -3.36133 -9.80762l-19.6396 -25.2705c-2.92773 -3.77051 -7.51074 -6.18066 -12.6504 -6.18066
-c-3.69922 0 -7.1084 1.25879 -9.81934 3.37109l-588.351 454.72c-3.76562 2.92871 -6.1709 7.50781 -6.1709 12.6426c0 3.69434 1.25488 7.09766 3.36133 9.80762l19.6299 25.2695c2.92871 3.76855 7.50879 6.17676 12.6465 6.17676
-c3.69727 0 7.10254 -1.25684 9.81348 -3.36621l163.94 -126.7c6.90918 55.25 53.46 98.0801 110.6 98.0801c0.0234375 0 0.0458984 0.000976562 0.0703125 0.000976562c61.7754 0 111.93 -50.1533 111.93 -111.93v-0.0712891c0 -47.3096 -29.54 -86.9297 -71 -103.23
-l55.0898 -42.5996c37.6797 -6.53711 69.0986 -31.4668 84.4697 -65.2803zM128 44.79c0 59.79 45.7402 108.38 104 114.08l244.57 -189c-3.99707 -1.1582 -8.21582 -1.81152 -12.5703 -1.87012h-288c-26.4922 0 -48 21.5078 -48 48v28.79zM576 192
-c35.3076 -0.0332031 63.9668 -28.6924 64 -64v-32c0 -17.6611 -14.3389 -32 -32 -32h-66c-6.21875 47.2666 -34.8916 87.5146 -75.0898 109.4c11.54 11.4971 27.4609 18.5996 45.0215 18.5996h0.0683594h64z" />
-    <glyph glyph-name="virus" unicode="&#xe074;" 
-d="M483.55 220.45c0.180664 0.00292969 0.332031 0.00488281 0.512695 0.00488281c15.7021 0 28.4502 -12.748 28.4502 -28.4502s-12.748 -28.4502 -28.4502 -28.4502c-0.180664 0 -0.362305 0.00195312 -0.542969 0.00488281h-21.5391
-c-50.6807 0 -76.0703 -61.2793 -40.2305 -97.1191l15.25 -15.2402c4.66602 -5.06836 7.50879 -11.8418 7.50879 -19.2666c0 -15.7021 -12.748 -28.4502 -28.4502 -28.4502c-7.42578 0 -14.1904 2.85059 -19.2588 7.5166l-15.2402 15.2305
-c-35.8398 35.8398 -97.1094 10.4492 -97.1094 -40.2305v-21.5195c0 -15.7021 -12.748 -28.4502 -28.4502 -28.4502s-28.4502 12.748 -28.4502 28.4502v21.5391c0 50.6807 -61.2695 76.0703 -97.1094 40.2305l-15.2402 -15.25
-c-5.06836 -4.66602 -11.8418 -7.50879 -19.2666 -7.50879c-15.7021 0 -28.4502 12.748 -28.4502 28.4502c0 7.42578 2.85059 14.1904 7.5166 19.2588l15.2305 15.2402c35.8398 35.8398 10.4492 97.1191 -40.2305 97.1191h-21.5498
-c-0.180664 -0.00292969 -0.361328 -0.00488281 -0.542969 -0.00488281c-15.7021 0 -28.4502 12.748 -28.4502 28.4502s12.748 28.4502 28.4502 28.4502c0.181641 0 0.362305 -0.00195312 0.542969 -0.00488281h21.5693c50.6807 0 76.0703 61.2695 40.2305 97.1094
-l-15.25 15.25c-4.73047 5.08008 -7.61816 11.8994 -7.61816 19.3818c0 15.6963 12.7432 28.4404 28.4395 28.4404c7.48535 0 14.2988 -2.89844 19.3789 -7.63184l15.2402 -15.2305c35.8398 -35.8291 97.1094 -10.4492 97.1094 40.2305v21.5596
-c0 15.7021 12.748 28.4502 28.4502 28.4502s28.4502 -12.748 28.4502 -28.4502v-21.5498c0 -50.6797 61.2695 -76.0596 97.1094 -40.2295l15.2402 15.2197c5.08008 4.7334 11.9023 7.62305 19.3867 7.62305c15.6963 0 28.4404 -12.7432 28.4404 -28.4395
-c0 -7.48242 -2.89648 -14.2939 -7.62695 -19.374l-15.2305 -15.25c-35.8398 -35.8398 -10.4492 -97.1094 40.2305 -97.1094h21.5498zM224 176c26.4922 0 48 21.5078 48 48s-21.5078 48 -48 48s-48 -21.5078 -48 -48s21.5078 -48 48 -48zM304 120c13.2461 0 24 10.7539 24 24
-s-10.7539 24 -24 24s-24 -10.7539 -24 -24s10.7539 -24 24 -24z" />
-    <glyph glyph-name="virus-slash" unicode="&#xe075;" horiz-adv-x="640" 
-d="M114 220.4c9.90039 0.0996094 19.7002 2.89941 28.0996 8l244.5 -189c-21.1992 -7.5 -38.1992 -26.8008 -38.1992 -53.4004v-21.5c0 -15.7002 -12.7002 -28.4004 -28.4004 -28.4004s-28.5 12.7002 -28.5 28.4004v21.5c0 50.7002 -61.2998 76 -97.0996 40.2002
-l-15.2002 -15.2002c-0.5 -0.599609 -1.10059 -1.09961 -1.60059 -1.59961c-11.5 -10.6006 -29.5996 -9.90039 -40.1992 1.59961c-10.6006 11.5 -9.90039 29.5 1.59961 40.2002l15.2002 15.2998c35.8994 35.7998 10.5 97.0996 -40.2002 97.0996h-21.5996
-c-15.7002 0 -28.4004 12.7002 -28.4004 28.4004s12.7002 28.4004 28.4004 28.4004h21.5996zM617 -57.7998c-5.40039 -7 -15.5 -8.2998 -22.4004 -2.90039l-588.399 454.7c-7 5.5 -8.2002 15.5 -2.7998 22.5l19.5996 25.2998c5.5 7 15.5 8.2002 22.5 2.7998l93.2002 -72.0996
-c11.0996 11.0996 29.3994 11.5996 40.5 0.5l15.2998 -15.2002c35.7998 -35.8994 97.0996 -10.5 97.0996 40.2002v21.5996c0 15.7002 12.7002 28.4004 28.4004 28.4004s28.4004 -12.7002 28.5 -28.5v-21.5996c0 -50.7002 61.2998 -76 97.0996 -40.2002l15.2002 15.2002
-c10.9004 10.0996 27.7002 10.0996 38.6006 0c11.5996 -10.7002 12.2998 -28.7002 1.59961 -40.2002l-15.2002 -15.2998c-35.8994 -35.8008 -10.5 -97.1006 40.2002 -97.1006h21.5c15.7002 0 28.4004 -12.7002 28.4004 -28.3994
-c0 -15.7002 -12.7002 -28.4004 -28.4004 -28.4004h-21.5c-30.5 0 -51.2002 -22.0996 -55.4004 -47.5l163.2 -126c7 -5.5 8.2002 -15.5 2.7998 -22.5zM335.4 220.5c0.0996094 1.2002 0.599609 2.2998 0.5 3.5c0 26.5 -21.5 48 -48 48
-c-5.2002 -0.0996094 -10.5 -1.09961 -15.4004 -2.90039z" />
-    <glyph glyph-name="viruses" unicode="&#xe076;" horiz-adv-x="640" 
-d="M624 96c8.83105 0 16 -7.16895 16 -16s-7.16895 -16 -16 -16h-12.1201c-28.5098 0 -42.79 -34.4697 -22.6299 -54.6299l8.58008 -8.57031c2.89648 -2.89648 4.68457 -6.90137 4.68457 -11.3174c0 -8.83105 -7.16992 -16.002 -16.002 -16.002
-c-4.41602 0 -8.41602 1.79297 -11.3125 4.68945l-8.57031 8.58008c-20.1602 20.1602 -54.6299 5.87988 -54.6299 -22.6299v-12.1201c0 -8.83105 -7.16895 -16 -16 -16s-16 7.16895 -16 16v12.1201c0 28.5098 -34.4697 42.79 -54.6299 22.6299l-8.57031 -8.58008
-c-2.89648 -2.89648 -6.90137 -4.68457 -11.3174 -4.68457c-8.83105 0 -16.002 7.16992 -16.002 16.002c0 4.41602 1.79297 8.41602 4.68945 11.3125l8.58008 8.57031c20.1602 20.1602 5.87988 54.6299 -22.6299 54.6299h-12.1201c-8.83105 0 -16 7.16895 -16 16
-s7.16895 16 16 16h12.1201c28.5098 0 42.79 34.4697 22.6299 54.6299l-8.58008 8.57031c-2.89648 2.89648 -4.68457 6.90137 -4.68457 11.3174c0 8.83105 7.16992 16.002 16.002 16.002c4.41602 0 8.41602 -1.79297 11.3125 -4.68945l8.57031 -8.58008
-c20.1602 -20.1602 54.6299 -5.87988 54.6299 22.6299v12.1201c0 8.83105 7.16895 16 16 16s16 -7.16895 16 -16v-12.1201c0 -28.5098 34.4697 -42.79 54.6299 -22.6299l8.57031 8.58008c2.89648 2.89648 6.90137 4.68457 11.3174 4.68457
-c8.83105 0 16.002 -7.16992 16.002 -16.002c0 -4.41602 -1.79297 -8.41602 -4.68945 -11.3125l-8.58008 -8.57031c-20.1602 -20.1602 -5.87988 -54.6299 22.6299 -54.6299h12.1201zM480 64c17.6611 0 32 14.3389 32 32s-14.3389 32 -32 32s-32 -14.3389 -32 -32
-s14.3389 -32 32 -32zM346.51 234.67c-38.0195 0 -57.0498 -45.96 -30.1699 -72.8398l11.4297 -11.4297c3.8623 -3.8623 6.24609 -9.20117 6.24609 -15.0879c0 -11.7744 -9.55957 -21.334 -21.334 -21.334c-5.88672 0 -11.2197 2.38965 -15.082 6.25195l-11.4297 11.4297
-c-26.8398 26.8799 -72.8398 7.83008 -72.8398 -30.1699v-16.1602c0 -11.7725 -9.55762 -21.3301 -21.3301 -21.3301s-21.3301 9.55762 -21.3301 21.3301v16.1602c0 38.0195 -45.96 57.0498 -72.8398 30.1699l-11.4297 -11.4297
-c-3.8623 -3.8623 -9.20117 -6.24609 -15.0879 -6.24609c-11.7744 0 -21.334 9.55957 -21.334 21.334c0 5.88672 2.38965 11.2197 6.25195 15.082l11.4297 11.4297c26.8799 26.8398 7.83008 72.8398 -30.1699 72.8398h-16.1602c-11.7725 0 -21.3301 9.55762 -21.3301 21.3301
-s9.55762 21.3301 21.3301 21.3301h16.1602c38.0195 0 57.0498 45.96 30.1699 72.8398l-11.4297 11.4404c-3.83008 3.85645 -6.19043 9.17188 -6.19043 15.0312c0 11.7725 9.55762 21.3301 21.3301 21.3301c5.86035 0 11.1729 -2.36914 15.0303 -6.20215l11.4297 -11.4297
-c26.8398 -26.8799 72.8398 -7.83008 72.8398 30.1699v16.1602c0 11.7725 9.55762 21.3301 21.3301 21.3301s21.3301 -9.55762 21.3301 -21.3301v-16.1602c0 -38.0195 45.96 -57.0498 72.8398 -30.1699l11.4297 11.4297c3.85742 3.83301 9.17578 6.19531 15.0361 6.19531
-c11.7725 0 21.3301 -9.55762 21.3301 -21.3291c0 -5.85938 -2.36621 -11.1689 -6.19629 -15.0254l-11.4297 -11.4404c-26.8799 -26.8398 -7.83008 -72.8398 30.1699 -72.8398h16.1602c11.7725 0 21.3301 -9.55762 21.3301 -21.3301s-9.55762 -21.3301 -21.3301 -21.3301
-h-16.1602zM160 256c17.6611 0 32 14.3389 32 32s-14.3389 32 -32 32s-32 -14.3389 -32 -32s14.3389 -32 32 -32zM240 224c8.83105 0 16 7.16895 16 16s-7.16895 16 -16 16s-16 -7.16895 -16 -16s7.16895 -16 16 -16z" />
-    <glyph glyph-name="vest" unicode="&#xe085;" horiz-adv-x="448" 
-d="M437.252 208.123c6.76562 -10.1484 10.748 -22.3994 10.748 -35.5v-204.623c0 -17.6611 -14.3389 -32 -32 -32h-192v224l73.8115 221.438c-21.7695 -12.3281 -47.0635 -19.5205 -73.8115 -19.6729c-26.748 0.150391 -52.042 7.34277 -73.8115 19.6699l56.9463 -170.836
-l-13.4922 -40.4805c-1.05957 -3.17969 -1.64258 -6.58496 -1.64258 -10.1191v-224h-160c-17.6611 0 -32 14.3389 -32 32v204.623c0 13.1006 3.98242 25.3516 10.748 35.5l53.252 79.877v128c0 17.6611 14.3389 32 32 32h32
-c4.91211 -0.00195312 9.50586 -1.49512 13.3115 -4.03125l25 -16.6719c16.4814 -11.0186 36.4971 -17.4463 57.793 -17.4463s41.1025 6.42773 57.584 17.4463l25 16.6719c3.80566 2.53613 8.39941 4.0293 13.3115 4.03125h32c17.6611 0 32 -14.3389 32 -32v-128z
-M131.312 76.6885c2.78125 2.87891 4.48828 6.80078 4.48828 11.1152c0 8.83105 -7.16992 16 -16 16c-4.31445 0 -8.23242 -1.71094 -11.1113 -4.49219l-48 -48c-2.78125 -2.87891 -4.48828 -6.80078 -4.48828 -11.1152c0 -8.83105 7.16992 -16 16 -16
-c4.31445 0 8.23242 1.71094 11.1113 4.49219zM387.312 28.6885c2.89746 2.89453 4.69043 6.89844 4.69043 11.3135s-1.79297 8.41504 -4.69043 11.3096l-48 48c-2.87891 2.78125 -6.80078 4.48828 -11.1152 4.48828c-8.83105 0 -16 -7.16992 -16 -16
-c0 -4.31445 1.71094 -8.23242 4.49219 -11.1113l48 -48c2.89453 -2.89746 6.89844 -4.69043 11.3135 -4.69043s8.41504 1.79297 11.3096 4.69043z" />
-    <glyph glyph-name="vest-patches" unicode="&#xe086;" horiz-adv-x="448" 
-d="M437.252 208.123c6.76562 -10.1484 10.748 -22.3994 10.748 -35.5v-204.623c0 -17.6611 -14.3389 -32 -32 -32h-192v224l73.8105 221.434c-21.7705 -12.3252 -47.0635 -19.5156 -73.8105 -19.668c-26.7471 0.154297 -52.041 7.34668 -73.8115 19.6738l56.9463 -170.84
-l-13.4922 -40.4805c-1.05957 -3.17969 -1.64258 -6.58496 -1.64258 -10.1191v-224h-160c-17.6611 0 -32 14.3389 -32 32v204.623c0 13.1006 3.98242 25.3516 10.748 35.5l53.252 79.877v128c0 17.6611 14.3389 32 32 32h32l0.0283203 -0.0146484
-c4.91113 0 9.47949 -1.47949 13.2832 -4.0166l25 -16.6719c16.4814 -11.0186 36.4971 -17.4463 57.793 -17.4463s41.1025 6.42773 57.584 17.4463l25 16.6719c3.80371 2.53711 8.39551 4.03125 13.3066 4.03125h0.00488281h32c17.6611 0 32 -14.3389 32 -32v-128z
-M63.5 175.516l15.5156 -15.5156l-15.5156 -15.5156c-2.12402 -2.16699 -3.43066 -5.1377 -3.43066 -8.4082c0 -6.62891 5.38086 -12.0107 12.0098 -12.0107c3.2793 0 6.25293 1.31738 8.4209 3.4502l15.5 15.5l15.5 -15.5
-c2.16797 -2.13281 5.14551 -3.44629 8.42383 -3.44629c6.62891 0 12.0107 5.38184 12.0107 12.0098c0 3.27051 -1.31055 6.23828 -3.43457 8.40527l-15.5156 15.5156l15.5156 15.5156c2.12402 2.16699 3.43066 5.1377 3.43066 8.4082
-c0 6.62891 -5.38086 12.0107 -12.0098 12.0107c-3.2793 0 -6.25293 -1.31738 -8.4209 -3.4502l-15.5 -15.5l-15.5 15.5c-2.16797 2.13281 -5.14551 3.44629 -8.42383 3.44629c-6.62891 0 -12.0107 -5.38184 -12.0107 -12.0098c0 -3.27051 1.31055 -6.23828 3.43457 -8.40527
-zM96 -8c22.0762 0 40 17.9238 40 40s-17.9238 40 -40 40s-40 -17.9238 -40 -40s17.9238 -40 40 -40zM359.227 112.215c13.6875 0.0966797 24.7734 11.2139 24.7734 24.9229c0 0.757812 -0.0341797 1.50684 -0.0996094 2.24707
-c-1.16406 12.8008 -12.5742 22.1113 -25.4004 22.0762l-5.05078 -0.0371094l0.0371094 5.05762c0.0722656 12.7998 -9.26758 24.2568 -22.0566 25.4189c-0.742188 0.0664062 -1.46973 0.0947266 -2.22949 0.0947266c-13.7012 0 -24.8418 -11.0527 -24.9854 -24.7207
-l-0.214844 -48.5742c0 -0.00976562 -0.000976562 -0.0195312 -0.000976562 -0.0292969c0 -3.68164 2.98926 -6.6709 6.6709 -6.6709h0.0302734z" />
-    <glyph glyph-name="glass-martini" unicode="&#xf000;" 
-d="M502.05 390.4l-214.05 -214.04v-192.36h56c22.0898 0 40 -17.9102 40 -40c0 -4.41992 -3.58008 -8 -8 -8h-240c-4.41992 0 -8 3.58008 -8 8c0 22.0898 17.9102 40 40 40h56v192.36l-214.05 214.04c-21.25 21.2598 -6.2002 57.5996 23.8496 57.5996h444.4
-c30.0498 0 45.0996 -36.3398 23.8496 -57.5996z" />
-    <glyph glyph-name="music" unicode="&#xf001;" 
-d="M470.38 446.49c3.03613 0.957031 6.26953 1.47949 9.62012 1.47949c17.6514 0 31.9834 -14.3223 32 -31.9697v-352c0 -35.3496 -43 -64 -96 -64s-96 28.6602 -96 64s43 64 96 64c11.0361 -0.0605469 21.7158 -1.4248 32 -3.92969v184.609l-256 -75v-233.68
-c0 -35.3398 -43 -64 -96 -64s-96 28.6602 -96 64s43 64 96 64c11.0352 -0.0625 21.7139 -1.42285 32 -3.91992v261.41c0.00878906 14.3125 9.43359 26.4336 22.4102 30.5098z" />
-    <glyph glyph-name="search" unicode="&#xf002;" 
-d="M505 5.2998c9.2998 -9.39941 9.2998 -24.5996 -0.0996094 -34l-28.3008 -28.2998c-9.2998 -9.40039 -24.5 -9.40039 -33.8994 0l-99.7002 99.7002c-4.5 4.5 -7 10.5996 -7 17v16.2998c-35.2998 -27.5996 -79.7002 -44 -128 -44c-114.9 0 -208 93.0996 -208 208
-s93.0996 208 208 208s208 -93.0996 208 -208c0 -48.2998 -16.4004 -92.7002 -44 -128h16.2998c6.40039 0 12.5 -2.5 17 -7zM208 112c70.7998 0 128 57.2998 128 128c0 70.7998 -57.2998 128 -128 128c-70.7998 0 -128 -57.2998 -128 -128c0 -70.7998 57.2998 -128 128 -128z
-" />
-    <glyph glyph-name="heart" unicode="&#xf004;" 
-d="M462.3 385.4c62.7998 -53.6006 66.1006 -149.801 9.7998 -207.9l-193.5 -199.8c-12.5 -12.9004 -32.7998 -12.9004 -45.2998 0l-193.5 199.8c-56.2002 58.0996 -52.8994 154.3 9.90039 207.9c54.7998 46.6992 136.399 38.2998 186.6 -13.6006l19.7002 -20.2998
-l19.7002 20.2998c50.2998 51.9004 131.8 60.2998 186.6 13.6006z" />
-    <glyph glyph-name="star" unicode="&#xf005;" horiz-adv-x="576" 
-d="M259.3 430.2c11.7998 23.8994 45.7002 23.5996 57.4004 0l65.2998 -132.4l146.1 -21.2998c26.2002 -3.7998 36.7002 -36.0996 17.7002 -54.5996l-105.7 -103l25 -145.5c4.5 -26.3008 -23.1992 -45.9004 -46.3994 -33.7002l-130.7 68.7002l-130.7 -68.7002
-c-23.2002 -12.2998 -50.8994 7.39941 -46.3994 33.7002l25 145.5l-105.7 103c-19 18.5 -8.5 50.7998 17.7002 54.5996l146.1 21.2998z" />
-    <glyph glyph-name="user" unicode="&#xf007;" horiz-adv-x="448" 
-d="M224 192c-70.7002 0 -128 57.2998 -128 128s57.2998 128 128 128s128 -57.2998 128 -128s-57.2998 -128 -128 -128zM313.6 160c74.2002 0 134.4 -60.2002 134.4 -134.4v-41.5996c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v41.5996
-c0 74.2002 60.2002 134.4 134.4 134.4h16.6992c22.3008 -10.2002 46.9004 -16 72.9004 -16s50.7002 5.7998 72.9004 16h16.6992z" />
-    <glyph glyph-name="film" unicode="&#xf008;" 
-d="M488 384c13.2998 0 24 -10.7002 24 -24v-336c0 -13.2998 -10.7002 -24 -24 -24h-8v20c0 6.59961 -5.40039 12 -12 12h-40c-6.59961 0 -12 -5.40039 -12 -12v-20h-320v20c0 6.59961 -5.40039 12 -12 12h-40c-6.59961 0 -12 -5.40039 -12 -12v-20h-8
-c-13.2998 0 -24 10.7002 -24 24v336c0 13.2998 10.7002 24 24 24h8v-20c0 -6.59961 5.40039 -12 12 -12h40c6.59961 0 12 5.40039 12 12v20h320v-20c0 -6.59961 5.40039 -12 12 -12h40c6.59961 0 12 5.40039 12 12v20h8zM96 76v40c0 6.59961 -5.40039 12 -12 12h-40
-c-6.59961 0 -12 -5.40039 -12 -12v-40c0 -6.59961 5.40039 -12 12 -12h40c6.59961 0 12 5.40039 12 12zM96 172v40c0 6.59961 -5.40039 12 -12 12h-40c-6.59961 0 -12 -5.40039 -12 -12v-40c0 -6.59961 5.40039 -12 12 -12h40c6.59961 0 12 5.40039 12 12zM96 268v40
-c0 6.59961 -5.40039 12 -12 12h-40c-6.59961 0 -12 -5.40039 -12 -12v-40c0 -6.59961 5.40039 -12 12 -12h40c6.59961 0 12 5.40039 12 12zM368 60v96c0 6.59961 -5.40039 12 -12 12h-200c-6.59961 0 -12 -5.40039 -12 -12v-96c0 -6.59961 5.40039 -12 12 -12h200
-c6.59961 0 12 5.40039 12 12zM368 228v96c0 6.59961 -5.40039 12 -12 12h-200c-6.59961 0 -12 -5.40039 -12 -12v-96c0 -6.59961 5.40039 -12 12 -12h200c6.59961 0 12 5.40039 12 12zM480 76v40c0 6.59961 -5.40039 12 -12 12h-40c-6.59961 0 -12 -5.40039 -12 -12v-40
-c0 -6.59961 5.40039 -12 12 -12h40c6.59961 0 12 5.40039 12 12zM480 172v40c0 6.59961 -5.40039 12 -12 12h-40c-6.59961 0 -12 -5.40039 -12 -12v-40c0 -6.59961 5.40039 -12 12 -12h40c6.59961 0 12 5.40039 12 12zM480 268v40c0 6.59961 -5.40039 12 -12 12h-40
-c-6.59961 0 -12 -5.40039 -12 -12v-40c0 -6.59961 5.40039 -12 12 -12h40c6.59961 0 12 5.40039 12 12z" />
-    <glyph glyph-name="th-large" unicode="&#xf009;" 
-d="M296 416h192c13.2549 0 24 -10.7451 24 -24v-160c0 -13.2549 -10.7451 -24 -24 -24h-192c-13.2549 0 -24 10.7451 -24 24v160c0 13.2549 10.7451 24 24 24zM216 416c13.2549 0 24 -10.7451 24 -24v-160c0 -13.2549 -10.7451 -24 -24 -24h-192
-c-13.2549 0 -24 10.7451 -24 24v160c0 13.2549 10.7451 24 24 24h192zM0 152c0 13.2549 10.7451 24 24 24h192c13.2549 0 24 -10.7451 24 -24v-160c0 -13.2549 -10.7451 -24 -24 -24h-192c-13.2549 0 -24 10.7451 -24 24v160zM296 -32c-13.2549 0 -24 10.7451 -24 24v160
-c0 13.2549 10.7451 24 24 24h192c13.2549 0 24 -10.7451 24 -24v-160c0 -13.2549 -10.7451 -24 -24 -24h-192z" />
-    <glyph glyph-name="th" unicode="&#xf00a;" 
-d="M149.333 392v-80c0 -13.2549 -10.7451 -24 -24 -24h-101.333c-13.2549 0 -24 10.7451 -24 24v80c0 13.2549 10.7451 24 24 24h101.333c13.2549 0 24 -10.7451 24 -24zM330.667 152c0 -13.2549 -10.7451 -24 -24.001 -24h-101.333c-13.2549 0 -24 10.7451 -24 24v80
-c0 13.2549 10.7451 24 24 24h101.334c13.2549 0 24 -10.7451 24 -24v-80zM362.667 392c0 13.2549 10.7451 24 24 24h101.333c13.2549 0 24 -10.7451 24 -24v-80c0 -13.2549 -10.7451 -24 -24 -24h-101.333c-13.2549 0 -24 10.7451 -24 24v80zM330.667 312
-c0 -13.2549 -10.7451 -24 -24.001 -24h-101.333c-13.2549 0 -24 10.7451 -24 24v80c0 13.2549 10.7451 24 24 24h101.334c13.2549 0 24 -10.7451 24 -24v-80zM125.333 256c13.2549 0 24 -10.7451 24 -24v-80c0 -13.2549 -10.7451 -24 -24 -24h-101.333
-c-13.2549 0 -24 10.7451 -24 24v80c0 13.2549 10.7451 24 24 24h101.333zM0 72c0 13.2549 10.7451 24 24 24h101.333c13.2549 0 24 -10.7451 24 -24v-80c0 -13.2549 -10.7451 -24 -24 -24h-101.333c-13.2549 0 -24 10.7451 -24 24v80zM386.667 128
-c-13.2549 0 -24 10.7451 -24 24v80c0 13.2549 10.7451 24 24 24h101.333c13.2549 0 24 -10.7451 24 -24v-80c0 -13.2549 -10.7451 -24 -24 -24h-101.333zM386.667 -32c-13.2549 0 -24 10.7451 -24 24v80c0 13.2549 10.7451 24 24 24h101.333c13.2549 0 24 -10.7451 24 -24
-v-80c0 -13.2549 -10.7451 -24 -24 -24h-101.333zM181.333 72c0 13.2549 10.7451 24 24 24h101.333c13.2549 0 24 -10.7451 24 -24v-80c0 -13.2549 -10.7451 -24 -24 -24h-101.333c-13.2549 0 -24 10.7451 -24 24v80z" />
-    <glyph glyph-name="th-list" unicode="&#xf00b;" 
-d="M149.333 232v-80c0 -13.2549 -10.7451 -24 -24 -24h-101.333c-13.2549 0 -24 10.7451 -24 24v80c0 13.2549 10.7451 24 24 24h101.333c13.2549 0 24 -10.7451 24 -24zM0 72c0 13.2549 10.7451 24 24 24h101.333c13.2549 0 24 -10.7451 24 -24v-80
-c0 -13.2549 -10.7451 -24 -24 -24h-101.333c-13.2549 0 -24 10.7451 -24 24v80zM125.333 416c13.2549 0 24 -10.7451 24 -24v-80c0 -13.2549 -10.7451 -24 -24 -24h-101.333c-13.2549 0 -24 10.7451 -24 24v80c0 13.2549 10.7451 24 24 24h101.333zM205.333 -32
-c-13.2549 0 -24 10.7451 -24 24v80c0 13.2549 10.7451 24 24 24h282.667c13.2549 0 24 -10.7451 24 -24v-80c0 -13.2549 -10.7451 -24 -24 -24h-282.667zM181.333 392c0 13.2549 10.7451 24 24 24h282.667c13.2549 0 24 -10.7451 24 -24v-80
-c0 -13.2549 -10.7451 -24 -24 -24h-282.667c-13.2549 0 -24 10.7451 -24 24v80zM205.333 128c-13.2549 0 -24 10.7451 -24 24v80c0 13.2549 10.7451 24 24 24h282.667c13.2549 0 24 -10.7451 24 -24v-80c0 -13.2549 -10.7451 -24 -24 -24h-282.667z" />
-    <glyph glyph-name="check" unicode="&#xf00c;" 
-d="M173.898 8.5957l-166.4 166.4c-9.99707 9.99707 -9.99707 26.2061 0 36.2041l36.2031 36.2041c9.99707 9.99805 26.207 9.99805 36.2041 0l112.095 -112.095l240.095 240.095c9.99707 9.99707 26.207 9.99707 36.2041 0l36.2031 -36.2041
-c9.99707 -9.99707 9.99707 -26.2061 0 -36.2041l-294.4 -294.401c-9.99805 -9.99707 -26.207 -9.99707 -36.2031 0.000976562z" />
-    <glyph glyph-name="times" unicode="&#xf00d;" horiz-adv-x="352" 
-d="M242.72 192l100.07 -100.07c12.2803 -12.29 12.2803 -32.1992 0 -44.4795l-22.2402 -22.2402c-12.2803 -12.2803 -32.2002 -12.2803 -44.4795 0l-100.07 100.07l-100.07 -100.07c-12.2793 -12.2803 -32.1992 -12.2803 -44.4795 0l-22.2402 22.2402
-c-12.2803 12.29 -12.2803 32.2002 0 44.4795l100.07 100.07l-100.07 100.07c-12.2803 12.29 -12.2803 32.1992 0 44.4795l22.2402 22.2402c12.29 12.2803 32.2002 12.2803 44.4795 0l100.07 -100.07l100.07 100.07c12.29 12.2803 32.1992 12.2803 44.4795 0
-l22.2402 -22.2402c12.2803 -12.29 12.2803 -32.2002 0 -44.4795z" />
-    <glyph glyph-name="search-plus" unicode="&#xf00e;" 
-d="M304 256v-32c0 -6.59961 -5.40039 -12 -12 -12h-56v-56c0 -6.59961 -5.40039 -12 -12 -12h-32c-6.59961 0 -12 5.40039 -12 12v56h-56c-6.59961 0 -12 5.40039 -12 12v32c0 6.59961 5.40039 12 12 12h56v56c0 6.59961 5.40039 12 12 12h32c6.59961 0 12 -5.40039 12 -12
-v-56h56c6.59961 0 12 -5.40039 12 -12zM505 -28.7002l-28.2998 -28.2998c-9.40039 -9.40039 -24.6006 -9.40039 -33.9004 0l-99.7998 99.7002c-4.5 4.5 -7 10.5996 -7 17v16.2998c-35.2998 -27.5996 -79.7002 -44 -128 -44c-114.9 0 -208 93.0996 -208 208
-s93.0996 208 208 208s208 -93.0996 208 -208c0 -48.2998 -16.4004 -92.7002 -44 -128h16.2998c6.40039 0 12.5 -2.5 17 -7l99.7002 -99.7002c9.2998 -9.39941 9.2998 -24.5996 0 -34zM344 240c0 75.2002 -60.7998 136 -136 136s-136 -60.7998 -136 -136
-s60.7998 -136 136 -136s136 60.7998 136 136z" />
-    <glyph glyph-name="search-minus" unicode="&#xf010;" 
-d="M304 256v-32c0 -6.59961 -5.40039 -12 -12 -12h-168c-6.59961 0 -12 5.40039 -12 12v32c0 6.59961 5.40039 12 12 12h168c6.59961 0 12 -5.40039 12 -12zM505 -28.7002l-28.2998 -28.2998c-9.40039 -9.40039 -24.6006 -9.40039 -33.9004 0l-99.7998 99.7002
-c-4.5 4.5 -7 10.5996 -7 17v16.2998c-35.2998 -27.5996 -79.7002 -44 -128 -44c-114.9 0 -208 93.0996 -208 208s93.0996 208 208 208s208 -93.0996 208 -208c0 -48.2998 -16.4004 -92.7002 -44 -128h16.2998c6.40039 0 12.5 -2.5 17 -7l99.7002 -99.7002
-c9.2998 -9.39941 9.2998 -24.5996 0 -34zM344 240c0 75.2002 -60.7998 136 -136 136s-136 -60.7998 -136 -136s60.7998 -136 136 -136s136 60.7998 136 136z" />
-    <glyph glyph-name="power-off" unicode="&#xf011;" 
-d="M400 393.9c63 -45 104 -118.601 104 -201.9c0 -136.8 -110.8 -247.7 -247.5 -248c-136.5 -0.299805 -248.3 111 -248.5 247.6c-0.0996094 83.3008 40.9004 157.101 103.8 202.2c11.7002 8.2998 28 4.7998 35 -7.7002l15.7998 -28.0996
-c5.90039 -10.5 3.10059 -23.7998 -6.59961 -31c-41.5 -30.7998 -68 -79.5996 -68 -134.9c-0.0996094 -92.2998 74.5 -168.1 168 -168.1c91.5996 0 168.6 74.2002 168 169.1c-0.299805 51.8008 -24.7002 101.801 -68.0996 134c-9.7002 7.2002 -12.4004 20.5 -6.5 30.9004
-l15.7998 28.0996c7 12.4004 23.2002 16.1006 34.7998 7.80078zM296 184c0 -13.2998 -10.7002 -24 -24 -24h-32c-13.2998 0 -24 10.7002 -24 24v240c0 13.2998 10.7002 24 24 24h32c13.2998 0 24 -10.7002 24 -24v-240z" />
-    <glyph glyph-name="signal" unicode="&#xf012;" horiz-adv-x="640" 
-d="M216 160c8.83984 0 16 -7.16016 16 -16v-192c0 -8.83984 -7.16016 -16 -16 -16h-48c-8.83984 0 -16 7.16016 -16 16v192c0 8.83984 7.16016 16 16 16h48zM88 64c8.83984 0 16 -7.16016 16 -16v-96c0 -8.83984 -7.16016 -16 -16 -16h-48c-8.83984 0 -16 7.16016 -16 16v96
-c0 8.83984 7.16016 16 16 16h48zM344 256c8.83984 0 16 -7.16016 16 -16v-288c0 -8.83984 -7.16016 -16 -16 -16h-48c-8.83984 0 -16 7.16016 -16 16v288c0 8.83984 7.16016 16 16 16h48zM472 352c8.83984 0 16 -7.16016 16 -16v-384c0 -8.83984 -7.16016 -16 -16 -16h-48
-c-8.83984 0 -16 7.16016 -16 16v384c0 8.83984 7.16016 16 16 16h48zM600 448c8.83984 0 16 -7.16016 16 -16v-480c0 -8.83984 -7.16016 -16 -16 -16h-48c-8.83984 0 -16 7.16016 -16 16v480c0 8.83984 7.16016 16 16 16h48z" />
-    <glyph glyph-name="cog" unicode="&#xf013;" 
-d="M487.4 132.3c4.89941 -2.7998 7.09961 -8.59961 5.59961 -14.0996c-11.0996 -35.7002 -30 -67.9004 -54.7002 -94.6006c-3.7998 -4.19922 -9.89941 -5.09961 -14.7998 -2.2998l-42.5996 24.6006c-18 -15.3008 -38.6006 -27.2002 -60.8008 -35.1006v-49.2002
-c0 -5.59961 -3.89941 -10.5 -9.39941 -11.6992c-34.9004 -7.80078 -72.5 -8.2002 -109.2 0c-5.5 1.19922 -9.40039 6.09961 -9.40039 11.6992v49.2002c-22.2998 7.7998 -42.8994 19.7002 -60.7998 35.1006l-42.5996 -24.6006c-4.7998 -2.7998 -11 -1.7998 -14.7998 2.2998
-c-24.7002 26.8008 -43.6006 59 -54.7002 94.6006c-1.60059 5.39941 0.599609 11.2002 5.5 14l42.5996 24.5996c-4.2998 23.2002 -4.2998 47 0 70.2002l-42.5996 24.5996c-4.90039 2.80078 -7.2002 8.60059 -5.5 14c11.0996 35.7002 30 67.9004 54.7002 94.6006
-c3.7998 4.2002 9.89941 5.09961 14.7998 2.2998l42.5 -24.5996c18 15.2998 38.5996 27.1992 60.7998 35.0996v49.2002c0 5.59961 3.90039 10.5 9.40039 11.7002c34.8994 7.7998 72.5 8.19922 109.199 0c5.5 -1.2002 9.40039 -6.10059 9.40039 -11.7002v-49.1006
-c22.2998 -7.7998 42.9004 -19.6992 60.7998 -35.0996l42.6006 24.5996c4.7998 2.80078 11 1.80078 14.7998 -2.2998c24.7002 -26.7998 43.5996 -59 54.7002 -94.5996c1.59961 -5.40039 -0.600586 -11.2002 -5.5 -14l-42.6006 -24.6006
-c4.2998 -23.1992 4.2998 -47 0 -70.1992zM256 112c44.0996 0 80 35.9004 80 80s-35.9004 80 -80 80s-80 -35.9004 -80 -80s35.9004 -80 80 -80z" />
-    <glyph glyph-name="home" unicode="&#xf015;" horiz-adv-x="576" 
-d="M280.37 299.74c2.09082 1.68555 4.76562 2.69434 7.6582 2.69434s5.55078 -1.00879 7.6416 -2.69434l184.33 -151.74v-164c0 -8.83105 -7.16895 -16 -16 -16l-112.02 0.30957c-8.83105 0 -16.001 7.16895 -16.001 15.999c0 0.0175781 0 0.0341797 0.000976562 0.0517578
-v95.6396c0 8.83105 -7.16992 16 -16 16h-64c-8.83105 0 -16 -7.16895 -16 -16v-95.71c0 -8.80371 -7.12695 -15.9561 -15.9209 -16l-112.06 -0.290039c-8.83105 0 -16 7.16895 -16 16v163.89zM571.6 196.53c2.70703 -2.20117 4.42578 -5.56152 4.42578 -9.31836
-c0 -2.88867 -1.02246 -5.54004 -2.72559 -7.6123l-25.5 -31c-2.20117 -2.66309 -5.53418 -4.35059 -9.25684 -4.35059c-2.90332 0 -5.56641 1.0332 -7.64258 2.75098l-235.23 193.74c-2.09082 1.68555 -4.7666 2.69434 -7.6582 2.69434
-c-2.89258 0 -5.55078 -1.00879 -7.6416 -2.69434l-235.22 -193.74c-2.0752 -1.71387 -4.73926 -2.75586 -7.63867 -2.75586c-3.73242 0 -7.07031 1.70898 -9.27148 4.38574l-25.5 31c-1.71875 2.07617 -2.7627 4.74414 -2.7627 7.64648
-c0 3.72266 1.69824 7.05176 4.3623 9.25391l253.13 208.47c8.29102 6.82227 18.9668 10.9209 30.5312 10.9209s22.1787 -4.09863 30.4688 -10.9209l89.5303 -73.6602v72.6104c0 6.62305 5.37695 12 12 12h56c6.62305 0 12 -5.37695 12 -12v-138.51z" />
-    <glyph glyph-name="clock" unicode="&#xf017;" 
-d="M256 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM348.49 127c2.19531 2.73926 3.52637 6.21973 3.52637 10c0 5.05566 -2.35059 9.56738 -6.0166 12.5l-58 42.5v144c0 8.83105 -7.16895 16 -16 16h-32
-c-8.83105 0 -16 -7.16895 -16 -16v-155.55c0 -12.6338 5.8418 -23.8975 15 -31.2305l67 -49.7197v0c2.7373 -2.19043 6.21387 -3.51758 9.98926 -3.51758c5.05566 0 9.56738 2.35059 12.501 6.01758l20 25v0z" />
-    <glyph glyph-name="road" unicode="&#xf018;" horiz-adv-x="576" 
-d="M573.19 45.3301c9.25977 -21.1904 -5.5 -45.3301 -27.7305 -45.3301h-196.84l-10.3105 97.6797c-0.859375 8.14062 -7.71973 14.3203 -15.9092 14.3203h-68.8008c-8.18945 0 -15.0498 -6.17969 -15.9092 -14.3203l-10.3105 -97.6797h-196.84
-c-22.2305 0 -36.9902 24.1396 -27.7402 45.3301l139.79 320c4.96973 11.3799 15.7998 18.6699 27.7305 18.6699h97.5898l-2.4502 -23.1602c-0.5 -4.71973 3.20996 -8.83984 7.95996 -8.83984h29.1602c4.75 0 8.45996 4.12012 7.95996 8.83984l-2.4502 23.1602h97.5898
-c11.9199 0 22.75 -7.29004 27.7207 -18.6699zM260.4 312.84l-4.59082 -43.5801c-0.75 -7.08984 4.80078 -13.2598 11.9307 -13.2598h40.54c7.12012 0 12.6797 6.16992 11.9297 13.2598l-4.59961 43.5801c-0.430664 4.07031 -3.87012 7.16016 -7.95996 7.16016h-39.29
-c-0.00195312 0 -0.00390625 -0.0078125 -0.00488281 -0.0078125c-4.12891 0 -7.53125 -3.13477 -7.95508 -7.15234zM315.64 144c9.5 0 16.9102 8.23047 15.9102 17.6797l-5.06934 48c-0.860352 8.14062 -7.7207 14.3203 -15.9102 14.3203h-45.1504
-c-8.18945 0 -15.0498 -6.17969 -15.9102 -14.3203l-5.06934 -48c-1 -9.44922 6.40918 -17.6797 15.9092 -17.6797h55.29z" />
-    <glyph glyph-name="download" unicode="&#xf019;" 
-d="M216 448h80c13.2998 0 24 -10.7002 24 -24v-168h87.7002c17.7998 0 26.7002 -21.5 14.0996 -34.0996l-152.1 -152.2c-7.5 -7.5 -19.7998 -7.5 -27.2998 0l-152.301 152.2c-12.5996 12.5996 -3.69922 34.0996 14.1006 34.0996h87.7998v168c0 13.2998 10.7002 24 24 24z
-M512 72v-112c0 -13.2998 -10.7002 -24 -24 -24h-464c-13.2998 0 -24 10.7002 -24 24v112c0 13.2998 10.7002 24 24 24h146.7l49 -49c20.0996 -20.0996 52.5 -20.0996 72.5996 0l49 49h146.7c13.2998 0 24 -10.7002 24 -24zM388 -16c0 11 -9 20 -20 20s-20 -9 -20 -20
-s9 -20 20 -20s20 9 20 20zM452 -16c0 11 -9 20 -20 20s-20 -9 -20 -20s9 -20 20 -20s20 9 20 20z" />
-    <glyph glyph-name="inbox" unicode="&#xf01c;" horiz-adv-x="576" 
-d="M567.938 204.092c5.07422 -7.61035 8.06152 -16.7998 8.06152 -26.625v-129.467c0 -26.5098 -21.4902 -48 -48 -48h-480c-26.5098 0 -48 21.4902 -48 48v129.467c0 9.8252 2.9873 19.0146 8.06152 26.625l105.689 158.534c8.60742 12.9102 23.2725 21.374 39.9385 21.374
-h268.621c16.667 0 31.332 -8.46387 39.9395 -21.374zM162.252 320l-85.334 -128h123.082l32 -64h112l32 64h123.082l-85.333 128h-251.497z" />
-    <glyph glyph-name="redo" unicode="&#xf01e;" 
-d="M500.33 448c6.62305 0 12 -5.37695 12 -12v-200.34c0 -6.62305 -5.37695 -12 -12 -12h-200.33c-6.62305 0 -12 5.37695 -12 12v47.4102c0 0.00390625 -0.00878906 0.00878906 -0.00878906 0.0136719c0 6.62305 5.37695 12 12 12
-c0.194336 0 0.386719 -0.00488281 0.579102 -0.0136719l101.529 -4.87012c-31.6084 47.0322 -85.1172 77.8594 -145.992 77.8594c-97.1367 0 -176 -78.8633 -176 -176s78.8633 -176 176 -176c44.502 0 85.168 16.5518 116.173 43.8301
-c2.10938 1.84375 4.87793 2.96582 7.89746 2.96582c3.31055 0 6.31055 -1.34375 8.48242 -3.51562l34 -34c2.17383 -2.17188 3.52246 -5.17285 3.52246 -8.48633c0 -3.55176 -1.54688 -6.74512 -4.00293 -8.94336c-43.8477 -39.6924 -102.079 -63.9102 -165.824 -63.9102
-h-0.355469c-136.9 0 -247.9 110.93 -248 247.81c-0.0996094 136.66 111.34 248.19 248 248.19c0.0927734 0 0.116211 0.140625 0.208984 0.140625c75.5918 0 143.312 -33.9727 188.711 -87.4707l-4 82.7598c-0.00878906 0.192383 -0.0136719 0.375977 -0.0136719 0.570312
-c0 6.62305 5.37695 12 12 12h0.0136719h47.4102z" />
-    <glyph glyph-name="sync" unicode="&#xf021;" 
-d="M440.65 435.43c-0.00976562 0.192383 -0.0136719 0.375977 -0.0136719 0.570312c0 6.62109 5.37305 11.9961 11.9932 12h47.3701c6.62305 0 12 -5.37695 12 -12v-200.35c0 -6.62305 -5.37695 -12 -12 -12h-200.22c-6.62305 0 -12 5.37695 -12 12v47.4092
-c0 0.00488281 -0.00878906 0.00976562 -0.00878906 0.0136719c0 6.62305 5.37695 12 12 12c0.194336 0 0.386719 -0.00390625 0.578125 -0.0136719l101.46 -4.85938c-31.5938 46.9941 -85.1406 77.6738 -145.973 77.6738c-82.8662 0 -152.428 -57.4229 -171.027 -134.614
-c-1.24219 -5.29688 -5.99707 -9.25391 -11.6699 -9.25977h-49.0498c-6.62305 0 -12 5.36719 -12 11.9893c0 0.748047 0.0693359 1.48047 0.200195 2.19043c21.6201 114.9 122.44 201.82 243.54 201.82c0.0966797 0 0.123047 0.141602 0.219727 0.141602
-c75.5615 0 143.248 -33.9814 188.601 -87.4814zM255.83 16c0.015625 0 0.0185547 0.0898438 0.0332031 0.0898438c82.8701 0 152.43 57.4434 170.997 134.65c1.24219 5.29688 5.99707 9.25391 11.6699 9.25977h49.0498c6.62305 0 12 -5.36719 12 -11.9893
-c0 -0.748047 -0.0693359 -1.48047 -0.200195 -2.19043c-21.6201 -114.9 -122.439 -201.82 -243.55 -201.82c-0.0800781 0 -0.0908203 -0.140625 -0.170898 -0.140625c-75.4814 0 -143.106 33.9082 -188.459 87.3105l4.14941 -82.5703
-c0.0107422 -0.201172 0.015625 -0.395508 0.015625 -0.599609c0 -6.62305 -5.37695 -12 -12 -12h-0.015625h-47.3496c-6.62305 0 -12 5.37695 -12 12v200.33c0 6.62305 5.37695 12 12 12h200.2c6.62305 0 12 -5.37695 12 -12v-47.4004
-c0 -0.00390625 0.0078125 -0.00878906 0.0078125 -0.0136719c0 -6.62305 -5.37695 -12 -12 -12c-0.193359 0 -0.386719 0.00488281 -0.578125 0.0136719l-101.8 4.87012c31.5254 -47.0088 85.0449 -77.7998 145.847 -77.7998h0.15332z" />
-    <glyph glyph-name="list-alt" unicode="&#xf022;" 
-d="M464 -32h-416c-26.5098 0 -48 21.4902 -48 48v352c0 26.5098 21.4902 48 48 48h416c26.5098 0 48 -21.4902 48 -48v-352c0 -26.5098 -21.4902 -48 -48 -48zM128 328c-22.0908 0 -40 -17.9092 -40 -40s17.9092 -40 40 -40s40 17.9092 40 40s-17.9092 40 -40 40zM128 232
-c-22.0908 0 -40 -17.9092 -40 -40s17.9092 -40 40 -40s40 17.9092 40 40s-17.9092 40 -40 40zM128 136c-22.0908 0 -40 -17.9092 -40 -40s17.9092 -40 40 -40s40 17.9092 40 40s-17.9092 40 -40 40zM416 272v32c0 6.62695 -5.37305 12 -12 12h-200
-c-6.62695 0 -12 -5.37305 -12 -12v-32c0 -6.62695 5.37305 -12 12 -12h200c6.62695 0 12 5.37305 12 12zM416 176v32c0 6.62695 -5.37305 12 -12 12h-200c-6.62695 0 -12 -5.37305 -12 -12v-32c0 -6.62695 5.37305 -12 12 -12h200c6.62695 0 12 5.37305 12 12zM416 80v32
-c0 6.62695 -5.37305 12 -12 12h-200c-6.62695 0 -12 -5.37305 -12 -12v-32c0 -6.62695 5.37305 -12 12 -12h200c6.62695 0 12 5.37305 12 12z" />
-    <glyph glyph-name="lock" unicode="&#xf023;" horiz-adv-x="448" 
-d="M400 224c26.5 0 48 -21.5 48 -48v-192c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v192c0 26.5 21.5 48 48 48h24v72c0 83.7998 68.2002 152 152 152s152 -68.2002 152 -152v-72h24zM296 224v72c0 39.7002 -32.2998 72 -72 72s-72 -32.2998 -72 -72v-72h144
-z" />
-    <glyph glyph-name="flag" unicode="&#xf024;" 
-d="M349.565 349.217c40.4951 0 82.6113 15.9062 116.949 31.8545c21.2168 9.85352 45.4854 -5.62305 45.4854 -29.0166v-243.1c0 -10.5264 -5.16016 -20.4072 -13.8428 -26.3584c-35.8379 -24.5635 -74.3359 -40.8574 -122.505 -40.8574
-c-67.373 0 -111.629 34.7832 -165.218 34.7832c-50.8525 0 -86.124 -10.0586 -114.435 -22.1221v-94.4004c0 -13.2549 -10.7451 -24 -24 -24h-16c-13.2549 0 -24 10.7451 -24 24v386.055c-14.5029 10.1201 -24 26.9189 -24 45.9453
-c0 31.7041 26.3447 57.2539 58.3379 55.9521c28.4678 -1.1582 51.7793 -23.9668 53.5508 -52.4033c0.0761719 -1.19141 0.0927734 -2.37305 0.0927734 -3.58301c0 -7.03711 -1.30176 -13.7734 -3.67871 -19.9785c20.7363 7.62891 43.0898 12.0127 68.0449 12.0127
-c67.373 0 111.63 -34.7832 165.218 -34.7832z" />
-    <glyph glyph-name="headphones" unicode="&#xf025;" 
-d="M256 416c141.504 0 256 -114.521 256 -256v-48c0 -12.5312 -7.1875 -23.3711 -17.6904 -28.6221l-14.3818 -7.19141c-2.01074 -60.0889 -51.3486 -108.187 -111.928 -108.187h-24c-13.2549 0 -24 10.7451 -24 24v176c0 13.2549 10.7451 24 24 24h24
-c31.3418 0 59.6709 -12.8789 80 -33.627v1.62695c0 105.869 -86.1309 192 -192 192s-192 -86.1309 -192 -192v-1.62695c20.3291 20.748 48.6582 33.627 80 33.627h24c13.2549 0 24 -10.7451 24 -24v-176c0 -13.2549 -10.7451 -24 -24 -24h-24
-c-60.5791 0 -109.917 48.0967 -111.928 108.187l-14.3828 7.19141c-10.502 5.25098 -17.6895 16.0908 -17.6895 28.6221v48c0 141.504 114.52 256 256 256z" />
-    <glyph glyph-name="volume-off" unicode="&#xf026;" horiz-adv-x="256" 
-d="M215 377c15 15 41 4.46973 41 -17v-336c0 -21.4697 -26 -32 -41 -17l-88.9404 89h-102.06c-13.2461 0 -24 10.7539 -24 24v144c0 13.2461 10.7539 24 24 24h102z" />
-    <glyph glyph-name="volume-down" unicode="&#xf027;" horiz-adv-x="384" 
-d="M215.03 375.96c15.0098 15 40.9697 4.49023 40.9697 -16.9795v-335.961c0 -21.4395 -25.9404 -32 -40.9697 -16.9697l-88.9707 88.9502h-102.06c-13.2598 0 -24 10.75 -24 24v144c0 13.2598 10.7402 24 24 24h102.06zM338.23 267.88
-c28.2393 -15.5498 45.7793 -44.9902 45.7793 -76.8701s-17.54 -61.3301 -45.7695 -76.8799c-11.5605 -6.34961 -26.1807 -2.20996 -32.6104 9.4502c-6.38965 11.6104 -2.16016 26.2002 9.4502 32.6104c12.9004 7.08984 20.9199 20.4297 20.9199 34.8096
-s-8.01953 27.7197 -20.9297 34.8203c-11.6104 6.41016 -15.8398 21 -9.4502 32.6094c6.41992 11.6104 21.0303 15.7803 32.6104 9.4502z" />
-    <glyph glyph-name="volume-up" unicode="&#xf028;" horiz-adv-x="576" 
-d="M215.03 376.95c15.0098 15.0098 40.9697 4.49023 40.9697 -16.9697v-335.961c0 -21.4395 -25.9404 -32 -40.9697 -16.9697l-88.9707 88.9502h-102.06c-13.2598 0 -24 10.75 -24 24v144c0 13.2598 10.7402 24 24 24h102.06zM448.35 428.03
-c79.9199 -52.46 127.65 -140.7 127.65 -236.03s-47.7305 -183.58 -127.65 -236.04c-11.5801 -7.61035 -26.4697 -3.75977 -33.5098 6.9502c-7.33984 11.1602 -4.21973 26.1797 6.9502 33.5c66.2695 43.4902 105.82 116.6 105.82 195.58
-c0 78.9795 -39.5508 152.09 -105.82 195.58c-11.1699 7.33008 -14.29 22.3398 -6.9502 33.5098c7.33008 11.1895 22.3398 14.2803 33.5098 6.9502zM480 192c0 -63.54 -32.0596 -121.94 -85.7695 -156.24c-12 -7.67969 -26.6104 -2.89941 -33.1201 7.45996
-c-7.09082 11.29 -3.78027 26.2207 7.40918 33.3604c39.75 25.3896 63.4805 68.5303 63.4805 115.42s-23.7305 90.0303 -63.4805 115.42c-11.1895 7.15039 -14.5 22.0801 -7.40918 33.3604c7.08984 11.2793 21.9297 14.5996 33.1201 7.45996
-c53.71 -34.2998 85.7695 -92.71 85.7695 -156.24zM338.23 268.87c28.2393 -15.54 45.7793 -44.9805 45.7793 -76.8604s-17.54 -61.3301 -45.7695 -76.8799c-11.5605 -6.34961 -26.1807 -2.20996 -32.6104 9.4502c-6.38965 11.6104 -2.16016 26.2002 9.4502 32.6104
-c12.9004 7.08984 20.9199 20.4297 20.9199 34.8096c0 14.3701 -8.01953 27.7197 -20.9297 34.8096c-11.6104 6.41016 -15.8398 21 -9.4502 32.6104c6.41992 11.6104 21.0303 15.7803 32.6104 9.4502z" />
-    <glyph glyph-name="qrcode" unicode="&#xf029;" horiz-adv-x="448" 
-d="M0 224v192h192v-192h-192zM64 352v-64h64v64h-64zM256 416h192v-192h-192v192zM384 288v64h-64v-64h64zM0 -32v192h192v-192h-192zM64 96v-64h64v64h-64zM416 160h32v-128h-96v32h-32v-96h-64v192h96v-32h64v32zM416 0h32v-32h-32v32zM352 0h32v-32h-32v32z" />
-    <glyph glyph-name="barcode" unicode="&#xf02a;" 
-d="M0 0v384h18v-384h-18zM26.8574 0.273438v383.727h9.14258v-383.727h-9.14258zM54 0.273438v383.727h8.85742v-383.727h-8.85742zM98.8574 0.273438v383.727h8.85645v-383.727h-8.85645zM134.857 0.273438v383.727h17.7139v-383.727h-17.7139zM179.714 0.273438v383.727
-h8.85742v-383.727h-8.85742zM197.714 0.273438v383.727h8.85742v-383.727h-8.85742zM215.714 0.273438v383.727h8.85742v-383.727h-8.85742zM251.429 0.273438v383.727h18v-383.727h-18zM296.286 0.273438v383.727h18v-383.727h-18zM332.285 0.273438v383.727h18.001
-v-383.727h-18.001zM368.286 0.273438v383.727h18.001v-383.727h-18.001zM395.143 0.273438v383.727h18v-383.727h-18zM440.286 0.273438v383.727h26.8564v-383.727h-26.8564zM476 0.273438v383.727h9.14258v-383.727h-9.14258zM494 0v384h18v-384h-18z" />
-    <glyph glyph-name="tag" unicode="&#xf02b;" 
-d="M0 195.882v204.118c0 26.5098 21.4902 48 48 48h204.118c13.2461 0 25.252 -5.37012 33.9404 -14.0586l211.883 -211.883c18.7441 -18.7441 18.7441 -49.1367 0 -67.8818l-204.118 -204.118c-18.7451 -18.7441 -49.1377 -18.7441 -67.8818 0l-211.883 211.883
-c-8.68848 8.68848 -14.0586 20.6943 -14.0586 33.9404zM112 384c-26.5098 0 -48 -21.4902 -48 -48s21.4902 -48 48 -48s48 21.4902 48 48s-21.4902 48 -48 48z" />
-    <glyph glyph-name="tags" unicode="&#xf02c;" horiz-adv-x="640" 
-d="M497.941 222.059c18.7441 -18.7441 18.7441 -49.1367 0 -67.8818l-204.118 -204.118c-18.7461 -18.7451 -49.1387 -18.7441 -67.8818 0l-211.883 211.883c-8.68848 8.68848 -14.0586 20.6943 -14.0586 33.9404v204.118c0 26.5098 21.4902 48 48 48h204.118
-c13.2461 0 25.252 -5.37012 33.9404 -14.0586zM112 288c26.5098 0 48 21.4902 48 48s-21.4902 48 -48 48s-48 -21.4902 -48 -48s21.4902 -48 48 -48zM625.941 154.177l-204.118 -204.118c-18.7451 -18.7441 -49.1377 -18.7441 -67.8818 0l-0.360352 0.360352
-l174.059 174.059c16.999 16.999 26.3604 39.6006 26.3604 63.6406s-9.3623 46.6406 -26.3604 63.6396l-196.242 196.242h48.7207c13.2461 0 25.252 -5.37012 33.9404 -14.0586l211.883 -211.883c18.7441 -18.7441 18.7441 -49.1367 0 -67.8818z" />
-    <glyph glyph-name="book" unicode="&#xf02d;" horiz-adv-x="448" 
-d="M448 88c0 -7.5 -3.5 -14.2998 -8.90039 -18.5996c-4.19922 -15.4004 -4.19922 -59.3008 0 -74.7002c5.40039 -4.40039 8.90039 -11.2002 8.90039 -18.7002v-16c0 -13.2998 -10.7002 -24 -24 -24h-328c-53 0 -96 43 -96 96v320c0 53 43 96 96 96h328
-c13.2998 0 24 -10.7002 24 -24v-336zM128 314v-20c0 -3.2998 2.7002 -6 6 -6h212c3.2998 0 6 2.7002 6 6v20c0 3.2998 -2.7002 6 -6 6h-212c-3.2998 0 -6 -2.7002 -6 -6zM128 250v-20c0 -3.2998 2.7002 -6 6 -6h212c3.2998 0 6 2.7002 6 6v20c0 3.2998 -2.7002 6 -6 6h-212
-c-3.2998 0 -6 -2.7002 -6 -6zM381.4 0c-1.90039 17.0996 -1.90039 46.9004 0 64h-285.4c-17.5996 0 -32 -14.4004 -32 -32c0 -17.7002 14.2998 -32 32 -32h285.4z" />
-    <glyph glyph-name="bookmark" unicode="&#xf02e;" horiz-adv-x="384" 
-d="M0 -64v464c0 26.5098 21.4902 48 48 48h288c26.5098 0 48 -21.4902 48 -48v-464l-192 112z" />
-    <glyph glyph-name="print" unicode="&#xf02f;" 
-d="M448 256c35.3496 0 64 -28.6504 64 -64v-112c0 -8.83984 -7.16016 -16 -16 -16h-48v-96c0 -17.6699 -14.3301 -32 -32 -32h-320c-17.6699 0 -32 14.3301 -32 32v96h-48c-8.83984 0 -16 7.16016 -16 16v112c0 35.3496 28.6504 64 64 64v160c0 17.6699 14.3301 32 32 32
-h274.74c8.49023 0 16.6299 -3.37012 22.6299 -9.37012l45.2598 -45.25c6 -6.00977 9.37012 -14.1396 9.37012 -22.6299v-114.75zM384 0v96h-256v-96h256zM384 224v96h-48c-8.83984 0 -16 7.16016 -16 16v48h-192v-160h256zM432 152c13.25 0 24 10.75 24 24
-c0 13.2598 -10.75 24 -24 24s-24 -10.7402 -24 -24c0 -13.25 10.75 -24 24 -24z" />
-    <glyph glyph-name="camera" unicode="&#xf030;" 
-d="M512 304v-288c0 -26.5 -21.5 -48 -48 -48h-416c-26.5 0 -48 21.5 -48 48v288c0 26.5 21.5 48 48 48h88l12.2998 32.9004c7 18.6992 24.9004 31.0996 44.9004 31.0996h125.5c20 0 37.8994 -12.4004 44.8994 -31.0996l12.4004 -32.9004h88c26.5 0 48 -21.5 48 -48zM376 160
-c0 66.2002 -53.7998 120 -120 120s-120 -53.7998 -120 -120s53.7998 -120 120 -120s120 53.7998 120 120zM344 160c0 -48.5 -39.5 -88 -88 -88s-88 39.5 -88 88s39.5 88 88 88s88 -39.5 88 -88z" />
-    <glyph glyph-name="font" unicode="&#xf031;" horiz-adv-x="448" 
-d="M432 32c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-128c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h19.5801l-23.2998 64h-152.561l-23.2998 -64h19.5801c8.83105 0 16 -7.16895 16 -16v-32
-c0 -8.83105 -7.16895 -16 -16 -16h-128c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h23.4102l130.71 362.31c4.29297 12.6133 16.2363 21.6904 30.293 21.6904h0.00683594h47.1602l-0.00292969 0.00683594c14.0576 0 26.0098 -9.08398 30.3027 -21.6973
-l130.71 -362.31h23.4102zM176.85 176h94.3008l-47.1504 129.49z" />
-    <glyph glyph-name="bold" unicode="&#xf032;" horiz-adv-x="384" 
-d="M333.49 210c34.4395 -27.54 55.5693 -71.1504 50.8301 -119.6c-6.86035 -70.6504 -70.2002 -122.4 -141 -122.4h-209.32c-8.83105 0 -16 7.16895 -16 16v48c0 8.83105 7.16895 16 16 16h31.8701v288h-31.8701c-8.83105 0 -16 7.16895 -16 16v48
-c0 8.83105 7.16895 16 16 16h199.42c74.5801 0 134.45 -64.4902 127.07 -140.79c-2.43945 -24.5273 -12.1992 -47.1309 -27 -65.21zM145.66 336v-96h87.7598c26.4922 0 48 21.5078 48 48s-21.5078 48 -48 48h-87.7598zM233.42 48c30.9072 0 56 25.0928 56 56
-s-25.0928 56 -56 56h-87.7598v-112h87.7598z" />
-    <glyph glyph-name="italic" unicode="&#xf033;" horiz-adv-x="320" 
-d="M320 400v-32c0 -8.83105 -7.16895 -16 -16 -16h-62.7598l-80 -320h46.7598c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-192c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h62.7598l80 320h-46.7598
-c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h192c8.83105 0 16 -7.16895 16 -16z" />
-    <glyph glyph-name="text-height" unicode="&#xf034;" horiz-adv-x="576" 
-d="M304 416c8.83105 0 16 -7.16895 16 -16v-96c0 -8.83105 -7.16895 -16 -16 -16h-32c-8.83105 0 -16 7.16895 -16 16v32h-56v-304h40c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-160c-8.83105 0 -16 7.16895 -16 16v32
-c0 8.83105 7.16895 16 16 16h40v304h-56v-32c0 -8.83105 -7.16895 -16 -16 -16h-32c-8.83105 0 -16 7.16895 -16 16v96c0 8.83105 7.16895 16 16 16h288zM560 80c15.6396 0 20.6396 -18 11.3096 -27.3096l-80 -80c-2.89551 -2.89453 -6.89844 -4.68555 -11.3115 -4.68555
-c-4.41406 0 -8.41211 1.79102 -11.3076 4.68555l-80 80c-10.0107 10 -3 27.3096 11.3096 27.3096h48v224h-48c-15.6396 0 -20.6396 18 -11.3096 27.3096l80 80c2.89551 2.89453 6.89844 4.68555 11.3115 4.68555c4.41406 0 8.41211 -1.79102 11.3076 -4.68555l80 -80
-c10.0205 -10 3 -27.3096 -11.3096 -27.3096h-48v-224h48z" />
-    <glyph glyph-name="text-width" unicode="&#xf035;" horiz-adv-x="448" 
-d="M432 416c8.83105 0 16 -7.16895 16 -16v-80c0 -8.83105 -7.16895 -16 -16 -16h-32c-8.83105 0 -16 7.16895 -16 16v16h-120v-112h24c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-128c-8.83105 0 -16 7.16895 -16 16v32
-c0 8.83105 7.16895 16 16 16h24v112h-120v-16c0 -8.83105 -7.16895 -16 -16 -16h-32c-8.83105 0 -16 7.16895 -16 16v80c0 8.83105 7.16895 16 16 16h416zM363.31 155.31l80 -80c2.89453 -2.89551 4.68555 -6.89844 4.68555 -11.3115
-c0 -4.41406 -1.79102 -8.41211 -4.68555 -11.3076l-80 -80c-10 -10.0205 -27.3096 -3 -27.3096 11.3096v48h-224v-48c0 -15.6396 -18 -20.6396 -27.3096 -11.3096l-80 80c-2.89453 2.89551 -4.68555 6.89844 -4.68555 11.3115c0 4.41406 1.79102 8.41211 4.68555 11.3076
-l80 80c10 10.0107 27.3096 3 27.3096 -11.3096v-48h224v48c0 15.6396 18 20.6396 27.3096 11.3096z" />
-    <glyph glyph-name="align-left" unicode="&#xf036;" horiz-adv-x="448" 
-d="M12.8301 96c-7.07617 0 -12.8301 5.74414 -12.8301 12.8193v0.0107422v38.3398v0.00976562c0 7.07617 5.74414 12.8203 12.8193 12.8203h0.0107422h262.34h0.00976562c7.07617 0 12.8203 -5.74414 12.8203 -12.8193v-0.0107422v-38.3398v-0.00976562
-c0 -7.07617 -5.74414 -12.8203 -12.8193 -12.8203h-0.0107422h-262.34zM12.8301 352c-7.07617 0 -12.8301 5.74414 -12.8301 12.8193v0.0107422v38.3398v0.00976562c0 7.07617 5.74414 12.8203 12.8193 12.8203h0.0107422h262.34h0.00976562
-c7.07617 0 12.8203 -5.74414 12.8203 -12.8193v-0.0107422v-38.3398v-0.00976562c0 -7.07617 -5.74414 -12.8203 -12.8193 -12.8203h-0.0107422h-262.34zM432 288c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-416c-8.83105 0 -16 7.16895 -16 16v32
-c0 8.83105 7.16895 16 16 16h416zM432 32c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-416c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h416z" />
-    <glyph glyph-name="align-center" unicode="&#xf037;" horiz-adv-x="448" 
-d="M432 288c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-416c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h416zM432 32c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-416c-8.83105 0 -16 7.16895 -16 16
-v32c0 8.83105 7.16895 16 16 16h416zM108.1 352c-6.67773 0 -12.0996 5.42188 -12.0996 12.0996v39.8105c0 6.67285 5.41699 12.0898 12.0898 12.0898h0.00976562h231.811c6.67285 0 12.0898 -5.41699 12.0898 -12.0898v-39.8105v-0.00976562
-c0 -6.67285 -5.41699 -12.0898 -12.0898 -12.0898h-231.811zM339.91 96h-231.811c-6.67773 0 -12.0996 5.42188 -12.0996 12.0996v39.8105c0 6.67285 5.41699 12.0898 12.0898 12.0898h0.00976562h231.811c6.67285 0 12.0898 -5.41699 12.0898 -12.0898v-39.8105
-v-0.00976562c0 -6.67285 -5.41699 -12.0898 -12.0898 -12.0898z" />
-    <glyph glyph-name="align-right" unicode="&#xf038;" horiz-adv-x="448" 
-d="M16 224c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h416c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-416zM432 32c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-416c-8.83105 0 -16 7.16895 -16 16
-v32c0 8.83105 7.16895 16 16 16h416zM435.17 416c7.07617 0 12.8301 -5.74414 12.8301 -12.8193v-0.0107422v-38.3398v-0.00976562c0 -7.07617 -5.74414 -12.8203 -12.8193 -12.8203h-0.0107422h-262.34h-0.00976562c-7.07617 0 -12.8203 5.74414 -12.8203 12.8193
-v0.0107422v38.3398v0.00976562c0 7.07617 5.74414 12.8203 12.8193 12.8203h0.0107422h262.34zM435.17 160c7.07617 0 12.8301 -5.74414 12.8301 -12.8193v-0.0107422v-38.3398v-0.00976562c0 -7.07617 -5.74414 -12.8203 -12.8193 -12.8203h-0.0107422h-262.34h-0.00976562
-c-7.07617 0 -12.8203 5.74414 -12.8203 12.8193v0.0107422v38.3398v0.00976562c0 7.07617 5.74414 12.8203 12.8193 12.8203h0.0107422h262.34z" />
-    <glyph glyph-name="align-justify" unicode="&#xf039;" horiz-adv-x="448" 
-d="M432 32c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-416c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h416zM432 160c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-416c-8.83105 0 -16 7.16895 -16 16
-v32c0 8.83105 7.16895 16 16 16h416zM432 288c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-416c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h416zM432 416c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16
-h-416c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h416z" />
-    <glyph glyph-name="list" unicode="&#xf03a;" 
-d="M80 80c8.83105 0 16 -7.16895 16 -16v-64c0 -8.83105 -7.16895 -16 -16 -16h-64c-8.83105 0 -16 7.16895 -16 16v64c0 8.83105 7.16895 16 16 16h64zM80 400c8.83105 0 16 -7.16895 16 -16v-64c0 -8.83105 -7.16895 -16 -16 -16h-64c-8.83105 0 -16 7.16895 -16 16v64
-c0 8.83105 7.16895 16 16 16h64zM80 240c8.83105 0 16 -7.16895 16 -16v-64c0 -8.83105 -7.16895 -16 -16 -16h-64c-8.83105 0 -16 7.16895 -16 16v64c0 8.83105 7.16895 16 16 16h64zM496 64c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-320
-c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h320zM496 384c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-320c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h320zM496 224c8.83105 0 16 -7.16895 16 -16v-32
-c0 -8.83105 -7.16895 -16 -16 -16h-320c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h320z" />
-    <glyph glyph-name="outdent" unicode="&#xf03b;" horiz-adv-x="448" 
-d="M100.69 84.71l-96 95.9805c-2.89453 2.89551 -4.68555 6.89844 -4.68555 11.3115c0 4.41406 1.79102 8.41211 4.68555 11.3076l96 96c9.97949 10 27.3096 3.01074 27.3096 -11.3096v-191.98c0 -14.2393 -17.3096 -21.3096 -27.3096 -11.3096zM432 32
-c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-416c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h416zM435.17 160c7.07617 0 12.8301 -5.74414 12.8301 -12.8193v-0.0107422v-38.3398v-0.00976562
-c0 -7.07617 -5.74414 -12.8203 -12.8193 -12.8203h-0.0107422h-230.34h-0.00976562c-7.07617 0 -12.8203 5.74414 -12.8203 12.8193v0.0107422v38.3398v0.00976562c0 7.07617 5.74414 12.8203 12.8193 12.8203h0.0107422h230.34zM435.17 288
-c7.07617 0 12.8301 -5.74414 12.8301 -12.8193v-0.0107422v-38.3398v-0.00976562c0 -7.07617 -5.74414 -12.8203 -12.8193 -12.8203h-0.0107422h-230.34h-0.00976562c-7.07617 0 -12.8203 5.74414 -12.8203 12.8193v0.0107422v38.3398v0.00976562
-c0 7.07617 5.74414 12.8203 12.8193 12.8203h0.0107422h230.34zM432 416c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-416c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h416z" />
-    <glyph glyph-name="indent" unicode="&#xf03c;" horiz-adv-x="448" 
-d="M27.3096 84.7002c-9.97949 -10 -27.3096 -3.00977 -27.3096 11.2998v192c0 14.2197 17.2695 21.3398 27.3096 11.3203l96 -96c2.89453 -2.89648 4.68555 -6.89941 4.68555 -11.3125s-1.79102 -8.41211 -4.68555 -11.3076zM432 32c8.83105 0 16 -7.16895 16 -16v-32
-c0 -8.83105 -7.16895 -16 -16 -16h-416c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h416zM435.17 160c7.07617 0 12.8301 -5.74414 12.8301 -12.8193v-0.0107422v-38.3398v-0.00976562c0 -7.07617 -5.74414 -12.8203 -12.8193 -12.8203h-0.0107422
-h-230.34h-0.00976562c-7.07617 0 -12.8203 5.74414 -12.8203 12.8193v0.0107422v38.3398v0.00976562c0 7.07617 5.74414 12.8203 12.8193 12.8203h0.0107422h230.34zM435.17 288c7.07617 0 12.8301 -5.74414 12.8301 -12.8193v-0.0107422v-38.3398v-0.00976562
-c0 -7.07617 -5.74414 -12.8203 -12.8193 -12.8203h-0.0107422h-230.34h-0.00976562c-7.07617 0 -12.8203 5.74414 -12.8203 12.8193v0.0107422v38.3398v0.00976562c0 7.07617 5.74414 12.8203 12.8193 12.8203h0.0107422h230.34zM432 416c8.83105 0 16 -7.16895 16 -16v-32
-c0 -8.83105 -7.16895 -16 -16 -16h-416c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h416z" />
-    <glyph glyph-name="video" unicode="&#xf03d;" horiz-adv-x="576" 
-d="M336.2 384c26.3994 0 47.7998 -21.4004 47.7998 -47.7998v-288.4c0 -26.3994 -21.4004 -47.7998 -47.7998 -47.7998h-288.4c-26.3994 0 -47.7998 21.4004 -47.7998 47.7998v288.4c0 26.3994 21.4004 47.7998 47.7998 47.7998h288.4zM525.6 346.3
-c21.3008 14.6006 50.4004 -0.399414 50.4004 -25.7998v-256.9c0 -25.5 -29.2002 -40.3994 -50.4004 -25.7998l-109.6 75.5v157.4z" />
-    <glyph glyph-name="image" unicode="&#xf03e;" 
-d="M464 0h-416c-26.5098 0 -48 21.4902 -48 48v288c0 26.5098 21.4902 48 48 48h416c26.5098 0 48 -21.4902 48 -48v-288c0 -26.5098 -21.4902 -48 -48 -48zM112 328c-30.9277 0 -56 -25.0723 -56 -56s25.0723 -56 56 -56s56 25.0723 56 56s-25.0723 56 -56 56zM64 64h384
-v112l-87.5146 87.5146c-4.68652 4.68652 -12.2842 4.68652 -16.9717 0l-135.514 -135.515l-55.5146 55.5146c-4.68652 4.68652 -12.2842 4.68652 -16.9717 0l-71.5137 -71.5146v-48z" />
-    <glyph glyph-name="map-marker" unicode="&#xf041;" horiz-adv-x="384" 
-d="M172.268 -53.6699c-145.298 210.639 -172.268 232.257 -172.268 309.67c0 106.039 85.9609 192 192 192s192 -85.9609 192 -192c0 -77.4131 -26.9697 -99.0312 -172.268 -309.67c-9.53516 -13.7744 -29.9307 -13.7734 -39.4648 0z" />
-    <glyph glyph-name="adjust" unicode="&#xf042;" 
-d="M8 192c0 136.967 111.034 248 248 248s248 -111.034 248 -248s-111.033 -248 -248 -248s-248 111.034 -248 248zM256 8c101.689 0 184 82.2949 184 184c0 101.689 -82.2949 184 -184 184v-368z" />
-    <glyph glyph-name="tint" unicode="&#xf043;" horiz-adv-x="352" 
-d="M205.22 425.91c46.9902 -158.48 146.78 -200.07 146.78 -311.82c0 -98.4395 -78.7197 -178.09 -176 -178.09s-176 79.6504 -176 178.09c0 111.19 100.01 154.061 146.78 311.82c9 30.1201 50.5 28.7803 58.4395 0zM176 0c8.83984 0 16 7.16016 16 16s-7.16016 16 -16 16
-c-44.1104 0 -80 35.8896 -80 80c0 8.83984 -7.16016 16 -16 16s-16 -7.16016 -16 -16c0 -61.75 50.25 -112 112 -112z" />
-    <glyph glyph-name="edit" unicode="&#xf044;" horiz-adv-x="576" 
-d="M402.6 364.8l90.2002 -90.2002c3.7998 -3.7998 3.7998 -10 0 -13.7998l-218.399 -218.399l-92.8008 -10.3008c-12.3994 -1.39941 -22.8994 9.10059 -21.5 21.5l10.3008 92.8008l218.399 218.399c3.7998 3.7998 10 3.7998 13.7998 0zM564.6 387.7
-c15.2002 -15.2002 15.2002 -39.9004 0 -55.2002l-35.3994 -35.4004c-3.7998 -3.7998 -10 -3.7998 -13.7998 0l-90.2002 90.2002c-3.7998 3.7998 -3.7998 10 0 13.7998l35.3994 35.4004c15.3008 15.2002 40 15.2002 55.2002 0zM384 101.8c0 3.2002 1.2998 6.2002 3.5 8.5
-l40 40c7.59961 7.5 20.5 2.2002 20.5 -8.5v-157.8c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h285.8c10.7002 0 16.1006 -12.9004 8.5 -20.5l-40 -40c-2.2998 -2.2002 -5.2998 -3.5 -8.5 -3.5h-229.8v-320h320v101.8z" />
-    <glyph glyph-name="step-backward" unicode="&#xf048;" horiz-adv-x="448" 
-d="M64 -20v424c0 6.59961 5.40039 12 12 12h48c6.59961 0 12 -5.40039 12 -12v-176.4l195.5 181c20.5996 17.1006 52.5 2.80078 52.5 -24.5996v-384c0 -27.4004 -31.9004 -41.7002 -52.5 -24.5996l-195.5 179.899v-175.3c0 -6.59961 -5.40039 -12 -12 -12h-48
-c-6.59961 0 -12 5.40039 -12 12z" />
-    <glyph glyph-name="fast-backward" unicode="&#xf049;" 
-d="M0 12v360c0 6.59961 5.40039 12 12 12h40c6.59961 0 12 -5.40039 12 -12v-151.9l171.5 156.5c20.5996 17.1006 52.5 2.80078 52.5 -24.5996v-131.9l171.5 156.5c20.5996 17.1006 52.5 2.80078 52.5 -24.5996v-320c0 -27.4004 -31.9004 -41.7002 -52.5 -24.5996
-l-171.5 155.3v-130.7c0 -27.4004 -31.9004 -41.7002 -52.5 -24.5996l-171.5 155.3v-150.7c0 -6.59961 -5.40039 -12 -12 -12h-40c-6.59961 0 -12 5.40039 -12 12z" />
-    <glyph glyph-name="backward" unicode="&#xf04a;" 
-d="M11.5 167.4c-15.2998 12.7998 -15.2998 36.3994 0 49.1992l192 160c20.5996 17.2002 52.5 2.80078 52.5 -24.5996v-320c0 -27.4004 -31.9004 -41.7998 -52.5 -24.5996zM267.5 167.4c-15.2998 12.7998 -15.2998 36.3994 0 49.1992l192 160
-c20.5996 17.2002 52.5 2.80078 52.5 -24.5996v-320c0 -27.4004 -31.9004 -41.7998 -52.5 -24.5996z" />
-    <glyph glyph-name="play" unicode="&#xf04b;" horiz-adv-x="448" 
-d="M424.4 233.3c31.5 -18.5 31.3994 -64.0996 0 -82.5996l-352 -208c-31.7002 -18.7998 -72.4004 3.7998 -72.4004 41.2998v416.1c0 41.8008 43.7998 58.2002 72.4004 41.3008z" />
-    <glyph glyph-name="pause" unicode="&#xf04c;" horiz-adv-x="448" 
-d="M144 -31h-96c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h96c26.5 0 48 -21.5 48 -48v-352c0 -26.5 -21.5 -48 -48 -48zM448 17c0 -26.5 -21.5 -48 -48 -48h-96c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h96c26.5 0 48 -21.5 48 -48v-352z" />
-    <glyph glyph-name="stop" unicode="&#xf04d;" horiz-adv-x="448" 
-d="M400 416c26.5 0 48 -21.5 48 -48v-352c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h352z" />
-    <glyph glyph-name="forward" unicode="&#xf04e;" 
-d="M500.5 216.6c15.2998 -12.7998 15.2998 -36.3994 0 -49.1992l-192 -160c-20.5996 -17.2002 -52.5 -2.80078 -52.5 24.5996v320c0 27.4004 31.9004 41.7002 52.5 24.5996zM244.5 216.6c15.2998 -12.7998 15.2998 -36.3994 0 -49.1992l-192 -160
-c-20.5996 -17.2002 -52.5 -2.80078 -52.5 24.5996v320c0 27.4004 31.9004 41.7002 52.5 24.5996z" />
-    <glyph glyph-name="fast-forward" unicode="&#xf050;" 
-d="M512 372v-360c0 -6.59961 -5.40039 -12 -12 -12h-40c-6.59961 0 -12 5.40039 -12 12v151.9l-171.5 -156.5c-20.5996 -17.2002 -52.5 -2.80078 -52.5 24.5996v131.9l-171.5 -156.5c-20.5996 -17.2002 -52.5 -2.80078 -52.5 24.5996v320
-c0 27.4004 31.9004 41.7002 52.5 24.5996l171.5 -155.399v130.8c0 27.4004 31.9004 41.7002 52.5 24.5996l171.5 -155.399v150.8c0 6.59961 5.40039 12 12 12h40c6.59961 0 12 -5.40039 12 -12z" />
-    <glyph glyph-name="step-forward" unicode="&#xf051;" horiz-adv-x="448" 
-d="M384 404v-424c0 -6.59961 -5.40039 -12 -12 -12h-48c-6.59961 0 -12 5.40039 -12 12v176.4l-195.5 -181c-20.5996 -17.1006 -52.5 -2.80078 -52.5 24.5996v384c0 27.4004 31.9004 41.7002 52.5 24.5996l195.5 -179.899v175.3c0 6.59961 5.40039 12 12 12h48
-c6.59961 0 12 -5.40039 12 -12z" />
-    <glyph glyph-name="eject" unicode="&#xf052;" horiz-adv-x="448" 
-d="M448 64v-64c0 -17.6729 -14.3271 -32 -32 -32h-384c-17.6729 0 -32 14.3271 -32 32v64c0 17.6729 14.3271 32 32 32h384c17.6729 0 32 -14.3271 32 -32zM48.0527 128c-41.7285 0 -63.5273 49.7324 -35.3828 80.4346l175.946 192.008
-c19.0156 20.7432 51.7529 20.7422 70.7666 0l175.939 -192.008c28.1973 -30.7607 6.26758 -80.4346 -35.3828 -80.4346h-351.887z" />
-    <glyph glyph-name="chevron-left" unicode="&#xf053;" horiz-adv-x="320" 
-d="M34.5195 208.97l194.351 194.34c9.37012 9.37012 24.5703 9.37012 33.9395 0l22.6709 -22.6699c9.35938 -9.35938 9.36914 -24.5195 0.0390625 -33.8994l-154.029 -154.74l154.02 -154.75c9.33984 -9.37988 9.32031 -24.54 -0.0400391 -33.9004l-22.6699 -22.6699
-c-9.37012 -9.37012 -24.5693 -9.37012 -33.9395 0l-194.341 194.351c-9.36914 9.37012 -9.36914 24.5693 0 33.9395z" />
-    <glyph glyph-name="chevron-right" unicode="&#xf054;" horiz-adv-x="320" 
-d="M285.476 175.029l-194.344 -194.344c-9.37305 -9.37207 -24.5684 -9.37207 -33.9404 0l-22.667 22.667c-9.35742 9.35742 -9.375 24.5225 -0.0400391 33.9014l154.021 154.746l-154.021 154.745c-9.33496 9.37891 -9.31738 24.5439 0.0400391 33.9014l22.667 22.667
-c9.37305 9.37207 24.5684 9.37207 33.9404 0l194.343 -194.344c9.37305 -9.37207 9.37305 -24.5674 0.000976562 -33.9404z" />
-    <glyph glyph-name="plus-circle" unicode="&#xf055;" 
-d="M256 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM400 164v56c0 6.59961 -5.40039 12 -12 12h-92v92c0 6.59961 -5.40039 12 -12 12h-56c-6.59961 0 -12 -5.40039 -12 -12v-92h-92c-6.59961 0 -12 -5.40039 -12 -12v-56
-c0 -6.59961 5.40039 -12 12 -12h92v-92c0 -6.59961 5.40039 -12 12 -12h56c6.59961 0 12 5.40039 12 12v92h92c6.59961 0 12 5.40039 12 12z" />
-    <glyph glyph-name="minus-circle" unicode="&#xf056;" 
-d="M256 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM124 152h264c6.59961 0 12 5.40039 12 12v56c0 6.59961 -5.40039 12 -12 12h-264c-6.59961 0 -12 -5.40039 -12 -12v-56c0 -6.59961 5.40039 -12 12 -12z" />
-    <glyph glyph-name="times-circle" unicode="&#xf057;" 
-d="M256 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM377.6 126.9l-65.5996 65.0996l65.7002 65c4.7002 4.7002 4.7002 12.2998 0 17l-39.6006 39.5996c-4.69922 4.7002 -12.2998 4.7002 -17 0l-65.0996 -65.5996l-65 65.7002
-c-4.7002 4.7002 -12.2998 4.7002 -17 0l-39.5996 -39.6006c-4.7002 -4.69922 -4.7002 -12.2998 0 -17l65.5996 -65.0996l-65.5996 -65c-4.7002 -4.7002 -4.7002 -12.2998 0 -17l39.5 -39.5996c4.69922 -4.7002 12.2998 -4.7002 17 0l65.0996 65.5996l65 -65.5996
-c4.7002 -4.7002 12.2998 -4.7002 17 0l39.5996 39.5c4.7002 4.69922 4.7002 12.2998 0 17z" />
-    <glyph glyph-name="check-circle" unicode="&#xf058;" 
-d="M504 192c0 -136.967 -111.033 -248 -248 -248s-248 111.033 -248 248s111.033 248 248 248s248 -111.033 248 -248zM227.314 60.6855l184 184c6.24707 6.24805 6.24707 16.3799 0 22.6279l-22.6279 22.627c-6.24707 6.24902 -16.3789 6.24902 -22.6279 0
-l-150.059 -150.059l-70.0586 70.0596c-6.24805 6.24805 -16.3799 6.24805 -22.6279 0l-22.6279 -22.627c-6.24707 -6.24805 -6.24707 -16.3799 0 -22.6279l104 -104c6.24902 -6.24805 16.3799 -6.24805 22.6289 -0.000976562z" />
-    <glyph glyph-name="question-circle" unicode="&#xf059;" 
-d="M504 192c0 -136.997 -111.043 -248 -248 -248s-248 111.003 -248 248c0 136.917 111.043 248 248 248s248 -111.083 248 -248zM262.655 358c-54.4971 0 -89.2549 -22.957 -116.549 -63.7578c-3.53613 -5.28613 -2.35352 -12.415 2.71484 -16.2578l34.6982 -26.3105
-c5.20508 -3.94727 12.6211 -3.00781 16.665 2.12207c17.8643 22.6582 30.1133 35.7969 57.3037 35.7969c20.4287 0 45.6973 -13.1475 45.6973 -32.958c0 -14.9756 -12.3623 -22.667 -32.5332 -33.9756c-23.5244 -13.1875 -54.6523 -29.6006 -54.6523 -70.6592v-4
-c0 -6.62695 5.37305 -12 12 -12h56c6.62695 0 12 5.37305 12 12v1.33301c0 28.4619 83.1855 29.6475 83.1855 106.667c0 58.002 -60.1641 102 -116.53 102zM256 110c-25.3652 0 -46 -20.6348 -46 -46c0 -25.3643 20.6348 -46 46 -46s46 20.6357 46 46
-c0 25.3652 -20.6348 46 -46 46z" />
-    <glyph glyph-name="info-circle" unicode="&#xf05a;" 
-d="M256 440c136.957 0 248 -111.083 248 -248c0 -136.997 -111.043 -248 -248 -248s-248 111.003 -248 248c0 136.917 111.043 248 248 248zM256 330c-23.1963 0 -42 -18.8037 -42 -42s18.8037 -42 42 -42s42 18.8037 42 42s-18.8037 42 -42 42zM312 76v24
-c0 6.62695 -5.37305 12 -12 12h-12v100c0 6.62695 -5.37305 12 -12 12h-64c-6.62695 0 -12 -5.37305 -12 -12v-24c0 -6.62695 5.37305 -12 12 -12h12v-64h-12c-6.62695 0 -12 -5.37305 -12 -12v-24c0 -6.62695 5.37305 -12 12 -12h88c6.62695 0 12 5.37305 12 12z" />
-    <glyph glyph-name="crosshairs" unicode="&#xf05b;" 
-d="M500 224c6.62695 0 12 -5.37305 12 -12v-40c0 -6.62695 -5.37305 -12 -12 -12h-30.3643c-13.9121 -93.6748 -87.9609 -167.724 -181.636 -181.636v-30.3643c0 -6.62695 -5.37305 -12 -12 -12h-40c-6.62695 0 -12 5.37305 -12 12v30.3643
-c-93.6748 13.9121 -167.724 87.9609 -181.636 181.636h-30.3643c-6.62695 0 -12 5.37305 -12 12v40c0 6.62695 5.37305 12 12 12h30.3643c13.9121 93.6748 87.9609 167.724 181.636 181.636v30.3643c0 6.62695 5.37305 12 12 12h40c6.62695 0 12 -5.37305 12 -12v-30.3643
-c93.6748 -13.9121 167.724 -87.9609 181.636 -181.636h30.3643zM288 43.3662c58.2432 12.417 104.232 58.46 116.634 116.634h-40.6338c-6.62695 0 -12 5.37305 -12 12v40c0 6.62695 5.37305 12 12 12h40.6338c-12.417 58.2432 -58.46 104.232 -116.634 116.634v-40.6338
-c0 -6.62695 -5.37305 -12 -12 -12h-40c-6.62695 0 -12 5.37305 -12 12v40.6338c-58.2432 -12.417 -104.232 -58.46 -116.634 -116.634h40.6338c6.62695 0 12 -5.37305 12 -12v-40c0 -6.62695 -5.37305 -12 -12 -12h-40.6338
-c12.417 -58.2432 58.46 -104.232 116.634 -116.634v40.6338c0 6.62695 5.37305 12 12 12h40c6.62695 0 12 -5.37305 12 -12v-40.6338zM288 192c0 -17.6729 -14.3271 -32 -32 -32s-32 14.3271 -32 32s14.3271 32 32 32s32 -14.3271 32 -32z" />
-    <glyph glyph-name="ban" unicode="&#xf05e;" 
-d="M256 440c136.967 0 248 -111.034 248 -248s-111.034 -248 -248 -248s-248 111.033 -248 248s111.034 248 248 248zM386.108 322.108c-65.4121 65.4102 -165.435 70.0312 -235.639 20.6758l256.315 -256.313c49.3232 70.1562 44.7705 170.189 -20.6768 235.638z
-M125.892 61.8916c65.4121 -65.4111 165.436 -70.0312 235.639 -20.6758l-256.315 256.313c-49.3232 -70.1562 -44.7705 -170.189 20.6768 -235.638z" />
-    <glyph glyph-name="arrow-left" unicode="&#xf060;" horiz-adv-x="448" 
-d="M257.5 2.90039l-22.2002 -22.2002c-9.39941 -9.40039 -24.5996 -9.40039 -33.8994 0l-194.4 194.3c-9.40039 9.40039 -9.40039 24.5996 0 33.9004l194.4 194.399c9.39941 9.40039 24.5996 9.40039 33.8994 0l22.2002 -22.2002c9.5 -9.5 9.2998 -25 -0.400391 -34.2998
-l-120.5 -114.8h287.4c13.2998 0 24 -10.7002 24 -24v-32c0 -13.2998 -10.7002 -24 -24 -24h-287.4l120.5 -114.8c9.80078 -9.2998 10 -24.7998 0.400391 -34.2998z" />
-    <glyph glyph-name="arrow-right" unicode="&#xf061;" horiz-adv-x="448" 
-d="M190.5 381.1l22.2002 22.2002c9.39941 9.40039 24.5996 9.40039 33.8994 0l194.4 -194.3c9.40039 -9.40039 9.40039 -24.5996 0 -33.9004l-194.4 -194.399c-9.39941 -9.40039 -24.5996 -9.40039 -33.8994 0l-22.2002 22.2002c-9.5 9.5 -9.2998 25 0.400391 34.2998
-l120.5 114.8h-287.4c-13.2998 0 -24 10.7002 -24 24v32c0 13.2998 10.7002 24 24 24h287.4l-120.5 114.8c-9.80078 9.2998 -10 24.7998 -0.400391 34.2998z" />
-    <glyph glyph-name="arrow-up" unicode="&#xf062;" horiz-adv-x="448" 
-d="M34.9004 158.5l-22.2002 22.2002c-9.40039 9.39941 -9.40039 24.5996 0 33.8994l194.3 194.4c9.40039 9.40039 24.5996 9.40039 33.9004 0l194.3 -194.3c9.39941 -9.40039 9.39941 -24.6006 0 -33.9004l-22.2002 -22.2002c-9.5 -9.5 -25 -9.2998 -34.2998 0.400391
-l-114.7 120.4v-287.4c0 -13.2998 -10.7002 -24 -24 -24h-32c-13.2998 0 -24 10.7002 -24 24v287.4l-114.8 -120.5c-9.2998 -9.80078 -24.7998 -10 -34.2998 -0.400391z" />
-    <glyph glyph-name="arrow-down" unicode="&#xf063;" horiz-adv-x="448" 
-d="M413.1 225.5l22.2002 -22.2002c9.40039 -9.39941 9.40039 -24.5996 0 -33.8994l-194.3 -194.4c-9.40039 -9.40039 -24.5996 -9.40039 -33.9004 0l-194.399 194.4c-9.40039 9.39941 -9.40039 24.5996 0 33.8994l22.2002 22.2002c9.5 9.5 25 9.2998 34.2998 -0.400391
-l114.8 -120.5v287.4c0 13.2998 10.7002 24 24 24h32c13.2998 0 24 -10.7002 24 -24v-287.4l114.8 120.5c9.2998 9.80078 24.7998 10 34.2998 0.400391z" />
-    <glyph glyph-name="share" unicode="&#xf064;" 
-d="M503.691 258.164c11.0859 -9.5752 11.0703 -26.7656 0 -36.3281l-176.005 -152c-15.3867 -13.2891 -39.6865 -2.53613 -39.6865 18.1641v87.915c-155.083 -2.23145 -221.934 -40.7295 -176.59 -185.742c5.03418 -16.0977 -14.4238 -28.5615 -28.0771 -18.6309
-c-43.752 31.8232 -83.333 92.6914 -83.333 154.132c0 152.227 127.371 184.419 288 186.258v80.0537c0 20.668 24.2812 31.4688 39.6865 18.1641z" />
-    <glyph glyph-name="expand" unicode="&#xf065;" horiz-adv-x="448" 
-d="M0 268v124c0 13.2998 10.7002 24 24 24h124c6.59961 0 12 -5.40039 12 -12v-40c0 -6.59961 -5.40039 -12 -12 -12h-84v-84c0 -6.59961 -5.40039 -12 -12 -12h-40c-6.59961 0 -12 5.40039 -12 12zM288 404c0 6.59961 5.40039 12 12 12h124c13.2998 0 24 -10.7002 24 -24
-v-124c0 -6.59961 -5.40039 -12 -12 -12h-40c-6.59961 0 -12 5.40039 -12 12v84h-84c-6.59961 0 -12 5.40039 -12 12v40zM436 128c6.59961 0 12 -5.40039 12 -12v-124c0 -13.2998 -10.7002 -24 -24 -24h-124c-6.59961 0 -12 5.40039 -12 12v40c0 6.59961 5.40039 12 12 12h84
-v84c0 6.59961 5.40039 12 12 12h40zM160 -20c0 -6.59961 -5.40039 -12 -12 -12h-124c-13.2998 0 -24 10.7002 -24 24v124c0 6.59961 5.40039 12 12 12h40c6.59961 0 12 -5.40039 12 -12v-84h84c6.59961 0 12 -5.40039 12 -12v-40z" />
-    <glyph glyph-name="compress" unicode="&#xf066;" horiz-adv-x="448" 
-d="M436 256h-124c-13.2998 0 -24 10.7002 -24 24v124c0 6.59961 5.40039 12 12 12h40c6.59961 0 12 -5.40039 12 -12v-84h84c6.59961 0 12 -5.40039 12 -12v-40c0 -6.59961 -5.40039 -12 -12 -12zM160 280c0 -13.2998 -10.7002 -24 -24 -24h-124
-c-6.59961 0 -12 5.40039 -12 12v40c0 6.59961 5.40039 12 12 12h84v84c0 6.59961 5.40039 12 12 12h40c6.59961 0 12 -5.40039 12 -12v-124zM160 -20c0 -6.59961 -5.40039 -12 -12 -12h-40c-6.59961 0 -12 5.40039 -12 12v84h-84c-6.59961 0 -12 5.40039 -12 12v40
-c0 6.59961 5.40039 12 12 12h124c13.2998 0 24 -10.7002 24 -24v-124zM352 -20c0 -6.59961 -5.40039 -12 -12 -12h-40c-6.59961 0 -12 5.40039 -12 12v124c0 13.2998 10.7002 24 24 24h124c6.59961 0 12 -5.40039 12 -12v-40c0 -6.59961 -5.40039 -12 -12 -12h-84v-84z" />
-    <glyph glyph-name="plus" unicode="&#xf067;" horiz-adv-x="448" 
-d="M416 240c17.6699 0 32 -14.3301 32 -32v-32c0 -17.6699 -14.3301 -32 -32 -32h-144v-144c0 -17.6699 -14.3301 -32 -32 -32h-32c-17.6699 0 -32 14.3301 -32 32v144h-144c-17.6699 0 -32 14.3301 -32 32v32c0 17.6699 14.3301 32 32 32h144v144
-c0 17.6699 14.3301 32 32 32h32c17.6699 0 32 -14.3301 32 -32v-144h144z" />
-    <glyph glyph-name="minus" unicode="&#xf068;" horiz-adv-x="448" 
-d="M416 240c17.6699 0 32 -14.3301 32 -32v-32c0 -17.6699 -14.3301 -32 -32 -32h-384c-17.6699 0 -32 14.3301 -32 32v32c0 17.6699 14.3301 32 32 32h384z" />
-    <glyph glyph-name="asterisk" unicode="&#xf069;" 
-d="M478.21 113.907c11.7949 -6.47754 15.96 -21.3828 9.23242 -33.0361l-19.4805 -33.7412c-6.72754 -11.6533 -21.7207 -15.499 -33.2266 -8.52246l-138.735 84.1104l3.47559 -162.204c0.288086 -13.4531 -10.5391 -24.5137 -23.9941 -24.5137h-38.9619
-c-13.4551 0 -24.2822 11.0605 -23.9941 24.5137l3.47461 162.204l-138.735 -84.1113c-11.5059 -6.97656 -26.499 -3.13086 -33.2266 8.52246l-19.4805 33.7412c-6.72852 11.6533 -2.5625 26.5596 9.23242 33.0371l142.21 78.0928l-142.209 78.0918
-c-11.7949 6.47754 -15.9609 21.3838 -9.2334 33.0371l19.4805 33.7412c6.72754 11.6533 21.7207 15.499 33.2266 8.52246l138.735 -84.1104l-3.47363 162.204c-0.289062 13.4531 10.5381 24.5137 23.9932 24.5137h38.9609c13.4561 0 24.2822 -11.0605 23.9941 -24.5137
-l-3.47461 -162.204l138.735 84.1113c11.5068 6.97656 26.499 3.13086 33.2266 -8.52246l19.4805 -33.7412c6.72852 -11.6533 2.5625 -26.5596 -9.23242 -33.0371l-142.21 -78.0928z" />
-    <glyph glyph-name="exclamation-circle" unicode="&#xf06a;" 
-d="M504 192c0 -136.997 -111.043 -248 -248 -248s-248 111.003 -248 248c0 136.917 111.043 248 248 248s248 -111.083 248 -248zM256 142c-25.4053 0 -46 -20.5947 -46 -46s20.5947 -46 46 -46s46 20.5947 46 46s-20.5947 46 -46 46zM212.327 307.346l7.41797 -136
-c0.34668 -6.36328 5.6084 -11.3457 11.9814 -11.3457h48.5469c6.37305 0 11.6348 4.98242 11.9814 11.3457l7.41797 136c0.375 6.87402 -5.09766 12.6543 -11.9814 12.6543h-63.3838c-6.88379 0 -12.3555 -5.78027 -11.9805 -12.6543z" />
-    <glyph glyph-name="gift" unicode="&#xf06b;" 
-d="M32 0v128h192v-160h-160c-17.7002 0 -32 14.2998 -32 32zM288 -32v160h192v-128c0 -17.7002 -14.2998 -32 -32 -32h-160zM480 288c17.7002 0 32 -14.2998 32 -32v-80c0 -8.7998 -7.2002 -16 -16 -16h-480c-8.7998 0 -16 7.2002 -16 16v80c0 17.7002 14.2998 32 32 32
-h44.0996c-6.2998 12.0996 -10.0996 25.5 -10.0996 40c0 48.5 39.5 88 88 88c41.5996 0 68.5 -21.2998 103 -68.2998c34.5 47 61.4004 68.2998 103 68.2998c48.5 0 88 -39.5 88 -88c0 -14.5 -3.90039 -27.9004 -10.0996 -40h42.0996zM153.9 288h86.0996
-c-51.5 76.7002 -66.2002 80 -86.0996 80c-22.1006 0 -40 -17.9004 -40 -40s17.8994 -40 40 -40zM360 288c22.0996 0 40 17.9004 40 40s-17.9004 40 -40 40c-20.4004 0 -34.7002 -3.5 -86.0996 -80h86.0996z" />
-    <glyph glyph-name="leaf" unicode="&#xf06c;" horiz-adv-x="576" 
-d="M546.2 438.3c19 -42.3994 29.7998 -94.3994 29.7998 -144.6c0 -172.4 -110.5 -313.2 -267.5 -324.601c-80.9004 -8.59961 -142.5 33.3008 -174.9 77.2002c-51 -42.7002 -70.3994 -87 -71.8994 -90.5996c-6.7998 -16.2002 -25.4004 -24.1006 -41.7998 -17.2998
-c-16.3008 6.69922 -24.1006 25.2998 -17.5 41.5996c23.5996 57.9004 130.199 212 381.6 212c8.7998 0 16 7.2002 16 16s-7.2002 16 -16 16c-130.6 0 -222.7 -38.7998 -286.5 -84.5c-0.700195 6.7998 -1.5 13.5 -1.5 20.5c0 106 86 192 192 192h80
-c63.4004 0 118.9 33.5996 149.9 87.5c6.69922 11.7998 22.6992 11.2998 28.2998 -1.2002z" />
-    <glyph glyph-name="fire" unicode="&#xf06d;" horiz-adv-x="384" 
-d="M216 424.14c0 -103.14 168 -125.85 168 -296.14c0 -105.87 -86.1299 -192 -192 -192s-192 86.1299 -192 192c0 58.6699 27.7998 106.84 54.5703 134.96c14.96 15.7305 41.4297 5.2002 41.4297 -16.5v-85.5098c0 -35.1699 27.9805 -64.4902 63.1504 -64.9404
-c35.7393 -0.469727 64.8496 28.3604 64.8496 63.9902c0 88 -176 96.1504 -52.1504 277.18c13.5 19.7305 44.1504 10.7607 44.1504 -13.04z" />
-    <glyph glyph-name="eye" unicode="&#xf06e;" horiz-adv-x="576" 
-d="M572.52 206.6c2.21387 -4.37793 3.46094 -9.38965 3.46094 -14.626c0 -5.2373 -1.24707 -10.1855 -3.46094 -14.5635c-54.1992 -105.771 -161.59 -177.41 -284.52 -177.41s-230.29 71.5898 -284.52 177.4c-2.21387 4.37793 -3.46094 9.38965 -3.46094 14.626
-c0 5.2373 1.24707 10.1855 3.46094 14.5635c54.1992 105.771 161.59 177.41 284.52 177.41s230.29 -71.5898 284.52 -177.4zM288 48c0.0234375 0 0.0458984 -0.000976562 0.0703125 -0.000976562c79.4365 0 143.93 64.4922 143.93 143.93v0.0712891
-c0 79.4756 -64.5244 144 -144 144s-144 -64.5244 -144 -144s64.5244 -144 144 -144zM288 288c0.0761719 0 0.160156 -0.0273438 0.237305 -0.0273438c52.8623 0 95.7803 -42.917 95.7803 -95.7793s-42.918 -95.7803 -95.7803 -95.7803s-95.7803 42.918 -95.7803 95.7803
-c0 8.68945 1.16016 17.1104 3.33301 25.1162c7.93164 -5.83594 17.7432 -9.26758 28.3359 -9.26758c26.4092 0 47.8496 21.4404 47.8496 47.8496c0 10.5938 -3.44922 20.3867 -9.28516 28.3184c8.0459 2.34277 16.541 3.66797 25.3096 3.79004z" />
-    <glyph glyph-name="eye-slash" unicode="&#xf070;" horiz-adv-x="640" 
-d="M320 48c8.91309 0.0830078 17.542 0.976562 26 2.61035l51.8896 -40.1504c-25.0195 -6.45996 -50.9795 -10.46 -77.8896 -10.46c-122.93 0 -230.29 71.5898 -284.52 177.4c-2.21387 4.37793 -3.46094 9.38965 -3.46094 14.626c0 5.2373 1.24707 10.1855 3.46094 14.5635
-c10.2393 20 22.9297 38.29 36.7197 55.5898l104.899 -81.0693c5.65039 -74.4004 67.0508 -133.11 142.9 -133.11zM633.82 -10.0996c3.76855 -2.92871 6.17676 -7.50977 6.17676 -12.6475c0 -3.69238 -1.25293 -7.09375 -3.35742 -9.80273l-19.6396 -25.2705
-c-2.92871 -3.76855 -7.50879 -6.17578 -12.6465 -6.17578c-3.69727 0 -7.10254 1.25684 -9.81348 3.36621l-588.36 454.729c-3.76562 2.92871 -6.1709 7.50781 -6.1709 12.6426c0 3.69434 1.25488 7.09863 3.36133 9.80762l19.6299 25.2705
-c2.92871 3.76855 7.50879 6.17578 12.6465 6.17578c3.69727 0 7.10254 -1.25684 9.81348 -3.36621l127.22 -98.3301c43.6846 23.8564 94.0967 37.6357 147.32 37.7002c122.93 0 230.29 -71.5898 284.52 -177.4c2.21387 -4.37793 3.46094 -9.38965 3.46094 -14.626
-c0 -5.2373 -1.24707 -10.1855 -3.46094 -14.5635c-20.2109 -39.3887 -47.6904 -73.7881 -81.25 -102.07zM450.1 131.9c8.61035 18.3203 13.9004 38.4697 13.9004 60.0996c0 0.0273438 0.00195312 0.0527344 0.00195312 0.0800781c0 79.4316 -64.4883 143.92 -143.92 143.92
-h-0.0820312c-34.6328 -0.0253906 -66.4756 -12.4902 -91.1504 -33.1104l73.6104 -56.8896c0.857422 3.20508 1.38867 6.5625 1.54004 10c-0.0185547 10.5391 -3.49023 20.3242 -9.30957 28.21c8.43164 2.46191 17.3359 3.82031 26.5576 3.82031
-c52.2998 0 94.7607 -42.46 94.7607 -94.7598c0 -0.423828 -0.00292969 -0.847656 -0.00878906 -1.27051c-0.138672 -10.377 -1.97559 -20.4014 -5.2002 -29.7197z" />
-    <glyph glyph-name="exclamation-triangle" unicode="&#xf071;" horiz-adv-x="576" 
-d="M569.517 7.9873c18.458 -31.9941 -4.71094 -71.9873 -41.5762 -71.9873h-479.887c-36.9365 0 -59.999 40.0547 -41.5771 71.9873l239.946 416.027c18.4668 32.0098 64.7197 31.9512 83.1543 0zM288 94c-25.4053 0 -46 -20.5947 -46 -46s20.5947 -46 46 -46
-s46 20.5947 46 46s-20.5947 46 -46 46zM244.327 259.346l7.41797 -136c0.34668 -6.36328 5.6084 -11.3457 11.9814 -11.3457h48.5469c6.37305 0 11.6348 4.98242 11.9814 11.3457l7.41797 136c0.375 6.87402 -5.09766 12.6543 -11.9814 12.6543h-63.3838
-c-6.88379 0 -12.3555 -5.78027 -11.9805 -12.6543z" />
-    <glyph glyph-name="plane" unicode="&#xf072;" horiz-adv-x="576" 
-d="M480 256c35.3496 0 96 -28.6504 96 -64s-60.6504 -64 -96 -64h-114.29l-105.11 -183.94c-2.84961 -4.97949 -8.14941 -8.05957 -13.8896 -8.05957h-65.5c-10.6299 0 -18.2998 10.1797 -15.3799 20.4004l49.0303 171.6h-102.86l-43.2002 -57.5996
-c-3.01953 -4.03027 -7.75977 -6.40039 -12.7998 -6.40039h-39.9902c-10.4102 0 -18.0498 9.78027 -15.5195 19.8799l31.5098 108.12l-31.5098 108.12c-2.53027 10.0996 5.10938 19.8799 15.5195 19.8799h39.9902c5.03027 0 9.78027 -2.37012 12.7998 -6.40039
-l43.2002 -57.5996h102.86l-49.0303 171.61c-2.91992 10.2197 4.75 20.3896 15.3799 20.3896h65.5c5.95117 0 11.1396 -3.23633 13.9004 -8.05957l105.1 -183.94h114.29z" />
-    <glyph glyph-name="calendar-alt" unicode="&#xf073;" horiz-adv-x="448" 
-d="M0 -16v272h448v-272c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48zM320 180v-40c0 -6.59961 5.40039 -12 12 -12h40c6.59961 0 12 5.40039 12 12v40c0 6.59961 -5.40039 12 -12 12h-40c-6.59961 0 -12 -5.40039 -12 -12zM320 52v-40
-c0 -6.59961 5.40039 -12 12 -12h40c6.59961 0 12 5.40039 12 12v40c0 6.59961 -5.40039 12 -12 12h-40c-6.59961 0 -12 -5.40039 -12 -12zM192 180v-40c0 -6.59961 5.40039 -12 12 -12h40c6.59961 0 12 5.40039 12 12v40c0 6.59961 -5.40039 12 -12 12h-40
-c-6.59961 0 -12 -5.40039 -12 -12zM192 52v-40c0 -6.59961 5.40039 -12 12 -12h40c6.59961 0 12 5.40039 12 12v40c0 6.59961 -5.40039 12 -12 12h-40c-6.59961 0 -12 -5.40039 -12 -12zM64 180v-40c0 -6.59961 5.40039 -12 12 -12h40c6.59961 0 12 5.40039 12 12v40
-c0 6.59961 -5.40039 12 -12 12h-40c-6.59961 0 -12 -5.40039 -12 -12zM64 52v-40c0 -6.59961 5.40039 -12 12 -12h40c6.59961 0 12 5.40039 12 12v40c0 6.59961 -5.40039 12 -12 12h-40c-6.59961 0 -12 -5.40039 -12 -12zM400 384c26.5 0 48 -21.5 48 -48v-48h-448v48
-c0 26.5 21.5 48 48 48h48v48c0 8.7998 7.2002 16 16 16h32c8.7998 0 16 -7.2002 16 -16v-48h128v48c0 8.7998 7.2002 16 16 16h32c8.7998 0 16 -7.2002 16 -16v-48h48z" />
-    <glyph glyph-name="random" unicode="&#xf074;" 
-d="M504.971 88.9707c9.37305 -9.37305 9.37305 -24.5684 0 -33.9404l-80 -79.9844c-15.0098 -15.0098 -40.9707 -4.49023 -40.9707 16.9707v39.9834h-58.7852c-3.46094 0 -6.58105 1.46484 -8.77246 3.81152l-70.5566 75.5967l53.333 57.1426l52.7812 -56.5508h32v39.9814
-c0 21.4375 25.9434 31.9971 40.9707 16.9707zM12 272c-6.62695 0 -12 5.37305 -12 12v56c0 6.62695 5.37305 12 12 12h110.785c3.46094 0 6.58203 -1.46484 8.77246 -3.81152l70.5566 -75.5967l-53.333 -57.1426l-52.7812 56.5508h-84zM384 272h-32l-220.442 -236.188
-c-2.26953 -2.43066 -5.44629 -3.81152 -8.77246 -3.81152h-110.785c-6.62695 0 -12 5.37305 -12 12v56c0 6.62695 5.37305 12 12 12h84l220.442 236.188c2.19141 2.34668 5.31152 3.81152 8.77246 3.81152h58.7852v39.9814c0 21.4365 25.9434 31.9971 40.9707 16.9697
-l80 -79.9814c9.37305 -9.37207 9.37305 -24.5674 0 -33.9404l-80 -79.9844c-15.0098 -15.0088 -40.9707 -4.48926 -40.9707 16.9707v39.9844z" />
-    <glyph glyph-name="comment" unicode="&#xf075;" 
-d="M256 416c141.4 0 256 -93.0996 256 -208s-114.6 -208 -256 -208c-38.4004 0 -74.7002 7.09961 -107.4 19.4004c-24.5996 -19.6006 -74.2998 -51.4004 -140.6 -51.4004c-3.2002 0 -6 1.7998 -7.2998 4.7998s-0.700195 6.40039 1.5 8.7002
-c0.5 0.5 42.2998 45.4004 54.7998 95.7998c-35.5996 35.7002 -57 81.1006 -57 130.7c0 114.9 114.6 208 256 208z" />
-    <glyph glyph-name="magnet" unicode="&#xf076;" 
-d="M164.07 299.9h-152.07c-6.62305 0 -12 5.37695 -12 12v80c0 19.8682 16.1309 36 36 36h104c19.8691 0 36 -16.1318 36 -36v-80c0 -0.0380859 0.000976562 -0.0751953 0.000976562 -0.112305c0 -6.5625 -5.32812 -11.8906 -11.8906 -11.8906
-c-0.0136719 0 -0.0263672 0.00292969 -0.0400391 0.00292969zM512 311.9c0 -0.00390625 0.00195312 -0.0078125 0.00195312 -0.0107422c0 -6.5625 -5.32715 -11.8906 -11.8896 -11.8906c-0.0380859 0 -0.0751953 0.000976562 -0.112305 0.000976562h-152
-c-6.62305 0 -12 5.37695 -12 12v80c0 19.8691 16.1309 36 36 36h104c19.8691 0 36 -16.1309 36 -36v-80.0996zM348 267.9h151.85c6.62305 0 12.001 -5.37598 12.001 -11.998c0 -0.0341797 0 -0.0683594 -0.000976562 -0.102539
-c-0.199219 -20.2002 -0.599609 -40.3994 0 -53.2002c0 -150.699 -134.42 -246.699 -255 -246.699s-256.75 96 -256.75 246.6c0.600586 13 0.100586 31.9004 0 53.2998v0.100586c0 6.62305 5.37695 12 12 12h151.9c6.62305 0 12 -5.37695 12 -12v-52
-c0 -127.9 160 -128.101 160 0v52c0 6.62305 5.37695 12 12 12z" />
-    <glyph glyph-name="chevron-up" unicode="&#xf077;" horiz-adv-x="448" 
-d="M240.971 317.476l194.344 -194.343c9.37207 -9.37305 9.37207 -24.5684 0 -33.9404l-22.667 -22.667c-9.35742 -9.35742 -24.5225 -9.375 -33.9014 -0.0400391l-154.746 154.02l-154.745 -154.021c-9.37891 -9.33496 -24.5439 -9.31738 -33.9014 0.0400391
-l-22.667 22.667c-9.37207 9.37305 -9.37207 24.5684 0 33.9404l194.344 194.343c9.37207 9.37305 24.5674 9.37305 33.9404 0.000976562z" />
-    <glyph glyph-name="chevron-down" unicode="&#xf078;" horiz-adv-x="448" 
-d="M207.029 66.5244l-194.344 194.344c-9.37207 9.37305 -9.37207 24.5684 0 33.9404l22.667 22.667c9.35742 9.35742 24.5225 9.375 33.9014 0.0400391l154.746 -154.021l154.745 154.021c9.37891 9.33496 24.5439 9.31738 33.9014 -0.0400391l22.667 -22.667
-c9.37207 -9.37305 9.37207 -24.5684 0 -33.9404l-194.343 -194.344c-9.37305 -9.37207 -24.5684 -9.37207 -33.9414 0z" />
-    <glyph glyph-name="retweet" unicode="&#xf079;" horiz-adv-x="640" 
-d="M629.657 104.402l-100.687 -100.687c-9.37305 -9.37207 -24.5674 -9.37207 -33.9404 0l-100.688 100.687c-9.37305 9.37305 -9.37305 24.5684 0 33.9404l10.8232 10.8232c9.56152 9.56152 25.1328 9.33984 34.4189 -0.492188l40.415 -42.792v182.118h-187.549
-c-6.62305 0 -12.626 2.68555 -16.9707 7.0293l-16 16c-15.1191 15.1201 -4.41113 40.9707 16.9707 40.9707h243.549c13.2549 0 24 -10.7451 24 -24v-222.118l40.416 42.792c9.28516 9.83105 24.8564 10.0537 34.4189 0.492188l10.8232 -10.8232
-c9.37207 -9.37207 9.37207 -24.5684 -0.000976562 -33.9404zM364.519 88.9707l16.001 -16c15.1191 -15.1201 4.41113 -40.9707 -16.9707 -40.9707h-243.549c-13.2549 0 -24 10.7451 -24 24v222.119l-40.416 -42.793c-9.28613 -9.83105 -24.8574 -10.0527 -34.4189 -0.491211
-l-10.8223 10.8223c-9.37305 9.37207 -9.37305 24.5674 0 33.9404l100.688 100.687c9.37207 9.37305 24.5674 9.37305 33.9404 0l100.687 -100.686c9.37305 -9.37207 9.37305 -24.5674 0 -33.9404l-10.8223 -10.8223c-9.5625 -9.5625 -25.1328 -9.33984 -34.4189 0.491211
-l-40.416 42.792v-182.119h187.548c6.62305 0 12.627 -2.68457 16.9707 -7.0293z" />
-    <glyph glyph-name="shopping-cart" unicode="&#xf07a;" horiz-adv-x="576" 
-d="M528.12 146.681c-2.4834 -10.9268 -12.1973 -18.6807 -23.4033 -18.6807h-293.145l6.54492 -32h268.418c15.4004 0 26.8154 -14.3008 23.4033 -29.3193l-5.51758 -24.2754c18.6914 -9.07324 31.5791 -28.2334 31.5791 -50.4053c0 -30.9277 -25.0723 -56 -56 -56
-s-56 25.0723 -56 56c0 15.6738 6.44727 29.835 16.8232 40h-209.647c10.377 -10.165 16.8242 -24.3262 16.8242 -40c0 -30.9277 -25.0723 -56 -56 -56s-56 25.0723 -56 56c0 20.7783 11.3252 38.9004 28.1309 48.5654l-70.248 343.435h-69.8828
-c-13.2549 0 -24 10.7451 -24 24v16c0 13.2549 10.7451 24 24 24h102.529c11.4004 0 21.2285 -8.02148 23.5127 -19.1904l9.16602 -44.8096h392.782c15.4004 0 26.8154 -14.3008 23.4023 -29.3193z" />
-    <glyph glyph-name="folder" unicode="&#xf07b;" 
-d="M464 320c26.5098 0 48 -21.4902 48 -48v-224c0 -26.5098 -21.4902 -48 -48 -48h-416c-26.5098 0 -48 21.4902 -48 48v288c0 26.5098 21.4902 48 48 48h160l64 -64h192z" />
-    <glyph glyph-name="folder-open" unicode="&#xf07c;" horiz-adv-x="576" 
-d="M572.694 155.907l-72.4248 -124.155c-11.0967 -19.0244 -31.6865 -31.752 -55.2803 -31.752h-399.964c-18.5234 0 -30.0645 20.0928 -20.7314 36.0928l72.4238 124.155c11.0986 19.0244 31.6875 31.752 55.2822 31.752h399.964
-c18.5234 0 30.0645 -20.0928 20.7305 -36.0928zM152 224c-34.0107 0 -65.7861 -18.25 -82.9229 -47.6279l-69.0771 -118.418v278.046c0 26.5098 21.4902 48 48 48h160l64 -64h160c26.5098 0 48 -21.4902 48 -48v-48h-328z" />
-    <glyph glyph-name="chart-bar" unicode="&#xf080;" 
-d="M332.8 128c-6.39941 0 -12.7998 6.40039 -12.7998 12.7998v134.4c0 6.39941 6.40039 12.7998 12.7998 12.7998h38.4004c6.39941 0 12.7998 -6.40039 12.7998 -12.7998v-134.4c0 -6.39941 -6.40039 -12.7998 -12.7998 -12.7998h-38.4004zM428.8 128
-c-6.39941 0 -12.7998 6.40039 -12.7998 12.7998v230.4c0 6.39941 6.40039 12.7998 12.7998 12.7998h38.4004c6.39941 0 12.7998 -6.40039 12.7998 -12.7998v-230.4c0 -6.39941 -6.40039 -12.7998 -12.7998 -12.7998h-38.4004zM140.8 128
-c-6.39941 0 -12.7998 6.40039 -12.7998 12.7998v70.4004c0 6.39941 6.40039 12.7998 12.7998 12.7998h38.4004c6.39941 0 12.7998 -6.40039 12.7998 -12.7998v-70.4004c0 -6.39941 -6.40039 -12.7998 -12.7998 -12.7998h-38.4004zM236.8 128
-c-6.39941 0 -12.7998 6.40039 -12.7998 12.7998v198.4c0 6.39941 6.40039 12.7998 12.7998 12.7998h38.4004c6.39941 0 12.7998 -6.40039 12.7998 -12.7998v-198.4c0 -6.39941 -6.40039 -12.7998 -12.7998 -12.7998h-38.4004zM496 64c8.83984 0 16 -7.16016 16 -16v-32
-c0 -8.83984 -7.16016 -16 -16 -16h-464c-17.6699 0 -32 14.3301 -32 32v336c0 8.83984 7.16016 16 16 16h32c8.83984 0 16 -7.16016 16 -16v-304h432z" />
-    <glyph glyph-name="camera-retro" unicode="&#xf083;" 
-d="M48 416h416c26.5 0 48 -21.5 48 -48v-352c0 -26.5 -21.5 -48 -48 -48h-416c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48zM48 384c-8.7998 0 -16 -7.2002 -16 -16v-10c0 -3.2998 2.7002 -6 6 -6h116c3.2998 0 6 2.7002 6 6v20c0 3.2998 -2.7002 6 -6 6h-106z
-M474 288c3.2998 0 6 2.7002 6 6v74c0 8.7998 -7.2002 16 -16 16h-252.8c-2 0 -3.90039 -1 -5 -2.7002l-30.2002 -45.2998h-138c-3.2998 0 -6 -2.7002 -6 -6v-36c0 -3.2998 2.7002 -6 6 -6h436zM256 24c66.2002 0 120 53.7998 120 120s-53.7998 120 -120 120
-s-120 -53.7998 -120 -120s53.7998 -120 120 -120zM256 232c48.5 0 88 -39.5 88 -88s-39.5 -88 -88 -88s-88 39.5 -88 88s39.5 88 88 88zM208 128c8.7998 0 16 7.2002 16 16c0 17.5996 14.4004 32 32 32c8.7998 0 16 7.2002 16 16s-7.2002 16 -16 16
-c-35.2998 0 -64 -28.7002 -64 -64c0 -8.7998 7.2002 -16 16 -16z" />
-    <glyph glyph-name="key" unicode="&#xf084;" 
-d="M512 271.999c0 -97.2021 -78.7979 -175.999 -176 -175.999c-11.2197 0 -22.1904 1.06152 -32.8271 3.06934l-24.0117 -27.0146c-4.39746 -4.94727 -10.8047 -8.05469 -17.9385 -8.05469h-37.2227v-40c0 -13.2549 -10.7451 -24 -24 -24h-40v-40
-c0 -13.2549 -10.7451 -24 -24 -24h-112c-13.2549 0 -24 10.7451 -24 24v78.0586c0 6.36523 2.5293 12.4707 7.0293 16.9717l161.802 161.802c-5.72266 17.3535 -8.83105 35.8965 -8.83105 55.168c0 97.2021 78.7969 175.999 175.999 176
-c97.4893 0.000976562 176.001 -78.5107 176.001 -176.001zM336 320c0 -26.5098 21.4902 -48 48 -48s48 21.4902 48 48s-21.4902 48 -48 48s-48 -21.4902 -48 -48z" />
-    <glyph glyph-name="cogs" unicode="&#xf085;" horiz-adv-x="640" 
-d="M512.1 257l-8.19922 -14.2998c-3 -5.2998 -9.40039 -7.5 -15.1006 -5.40039c-11.7998 4.40039 -22.5996 10.7002 -32.0996 18.6006c-4.60059 3.7998 -5.7998 10.5 -2.7998 15.6992l8.19922 14.3008c-6.89941 8 -12.2998 17.2998 -15.8994 27.3994h-16.5
-c-6 0 -11.2002 4.2998 -12.2002 10.2998c-2 12 -2.09961 24.6006 0 37.1006c1 6 6.2002 10.3994 12.2002 10.3994h16.5c3.59961 10.1006 9 19.4004 15.8994 27.4004l-8.19922 14.2998c-3 5.2002 -1.90039 11.9004 2.7998 15.7002
-c9.5 7.90039 20.3994 14.2002 32.0996 18.5996c5.7002 2.10059 12.1006 -0.0996094 15.1006 -5.39941l8.19922 -14.2998c10.5 1.89941 21.2002 1.89941 31.7002 0l8.2002 14.2998c3 5.2998 9.40039 7.5 15.0996 5.39941c11.8008 -4.39941 22.6006 -10.6992 32.1006 -18.5996
-c4.59961 -3.7998 5.7998 -10.5 2.7998 -15.7002l-8.2002 -14.2998c6.90039 -8 12.2998 -17.2998 15.9004 -27.4004h16.5c6 0 11.2002 -4.2998 12.2002 -10.2998c2 -12 2.09961 -24.5996 0 -37.0996c-1 -6 -6.2002 -10.4004 -12.2002 -10.4004h-16.5
-c-3.60059 -10.0996 -9 -19.3994 -15.9004 -27.3994l8.2002 -14.3008c3 -5.19922 1.90039 -11.8994 -2.7998 -15.6992c-9.5 -7.90039 -20.4004 -14.2002 -32.1006 -18.6006c-5.69922 -2.09961 -12.0996 0.100586 -15.0996 5.40039l-8.2002 14.2998
-c-10.3994 -1.90039 -21.2002 -1.90039 -31.7002 0zM501.6 315.8c38.5 -29.5996 82.4004 14.2998 52.8008 52.7998c-38.5 29.7002 -82.4004 -14.2998 -52.8008 -52.7998zM386.3 161.9l33.7002 -16.8008c10.0996 -5.7998 14.5 -18.0996 10.5 -29.0996
-c-8.90039 -24.2002 -26.4004 -46.4004 -42.5996 -65.7998c-7.40039 -8.90039 -20.2002 -11.1006 -30.3008 -5.2998l-29.0996 16.7998c-16 -13.7002 -34.5996 -24.6006 -54.9004 -31.7002v-33.5996c0 -11.6006 -8.2998 -21.6006 -19.6992 -23.6006
-c-24.6006 -4.2002 -50.4004 -4.39941 -75.9004 0c-11.5 2 -20 11.9004 -20 23.6006v33.5996c-20.2998 7.2002 -38.9004 18 -54.9004 31.7002l-29.0996 -16.7002c-10 -5.7998 -22.9004 -3.59961 -30.2998 5.2998c-16.2002 19.4004 -33.2998 41.6006 -42.2002 65.7002
-c-4 10.9004 0.400391 23.2002 10.5 29.0996l33.2998 16.8008c-3.89941 20.8994 -3.89941 42.3994 0 63.3994l-33.2998 16.9004c-10.0996 5.7998 -14.5996 18.0996 -10.5 29c8.90039 24.2002 26 46.3994 42.2002 65.7998c7.39941 8.90039 20.2002 11.0996 30.2998 5.2998
-l29.0996 -16.7998c16 13.7002 34.6006 24.5996 54.9004 31.7002v33.7002c0 11.5 8.2002 21.5 19.5996 23.5c24.6006 4.19922 50.5 4.39941 76 0.0996094c11.5 -2 20 -11.9004 20 -23.5996v-33.6006c20.3008 -7.2002 38.9004 -18 54.9004 -31.7002l29.0996 16.8008
-c10 5.7998 22.9004 3.59961 30.3008 -5.30078c16.1992 -19.3994 33.1992 -41.5996 42.0996 -65.7998c4 -10.8994 0.0996094 -23.2002 -10 -29.0996l-33.7002 -16.7998c3.90039 -21 3.90039 -42.5 0 -63.5zM268.7 140.8c59.2002 77 -28.7002 164.9 -105.7 105.7
-c-59.2002 -77 28.7002 -164.9 105.7 -105.7zM512.1 -41.9004l-8.19922 -14.2998c-3 -5.2998 -9.40039 -7.5 -15.1006 -5.39941c-11.7998 4.39941 -22.5996 10.6992 -32.0996 18.5996c-4.60059 3.7998 -5.7998 10.5 -2.7998 15.7002l8.19922 14.2998
-c-6.89941 8 -12.2998 17.2998 -15.8994 27.4004h-16.5c-6 0 -11.2002 4.2998 -12.2002 10.2998c-2 12 -2.09961 24.5996 0 37.0996c1 6 6.2002 10.4004 12.2002 10.4004h16.5c3.59961 10.0996 9 19.3994 15.8994 27.3994l-8.19922 14.3008
-c-3 5.19922 -1.90039 11.8994 2.7998 15.6992c9.5 7.90039 20.3994 14.2002 32.0996 18.6006c5.7002 2.09961 12.1006 -0.100586 15.1006 -5.40039l8.19922 -14.2998c10.5 1.90039 21.2002 1.90039 31.7002 0l8.2002 14.2998c3 5.2998 9.40039 7.5 15.0996 5.40039
-c11.8008 -4.40039 22.6006 -10.7002 32.1006 -18.6006c4.59961 -3.7998 5.7998 -10.5 2.7998 -15.6992l-8.2002 -14.3008c6.90039 -8 12.2998 -17.2998 15.9004 -27.3994h16.5c6 0 11.2002 -4.2998 12.2002 -10.2998c2 -12 2.09961 -24.6006 0 -37.1006
-c-1 -6 -6.2002 -10.3994 -12.2002 -10.3994h-16.5c-3.60059 -10.1006 -9 -19.4004 -15.9004 -27.4004l8.2002 -14.2998c3 -5.2002 1.90039 -11.9004 -2.7998 -15.7002c-9.5 -7.90039 -20.4004 -14.2002 -32.1006 -18.5996
-c-5.69922 -2.10059 -12.0996 0.0996094 -15.0996 5.39941l-8.2002 14.2998c-10.3994 -1.89941 -21.2002 -1.89941 -31.7002 0zM501.6 17c38.5 -29.5996 82.4004 14.2998 52.8008 52.7998c-38.5 29.6006 -82.4004 -14.2998 -52.8008 -52.7998z" />
-    <glyph glyph-name="comments" unicode="&#xf086;" horiz-adv-x="576" 
-d="M416 256c0 -88.4004 -93.0996 -160 -208 -160c-41 0 -79.0996 9.2998 -111.3 25c-21.7998 -12.7002 -52.1006 -25 -88.7002 -25c-3.2002 0 -6 1.7998 -7.2998 4.7998s-0.700195 6.40039 1.5 8.7002c0.299805 0.299805 22.3994 24.2998 35.7998 54.5
-c-23.9004 26.0996 -38 57.7002 -38 92c0 88.4004 93.0996 160 208 160s208 -71.5996 208 -160zM538 36c13.4004 -30.2998 35.5 -54.2002 35.7998 -54.5c2.2002 -2.40039 2.7998 -5.7998 1.5 -8.7002c-1.2002 -2.89941 -4.09961 -4.7998 -7.2998 -4.7998
-c-36.5996 0 -66.9004 12.2998 -88.7002 25c-32.2002 -15.7998 -70.2998 -25 -111.3 -25c-86.2002 0 -160.2 40.4004 -191.7 97.9004c10.4004 -1.10059 20.9004 -1.90039 31.7002 -1.90039c132.3 0 240 86.0996 240 192c0 6.7998 -0.400391 13.5 -1.2998 20.0996
-c75.7998 -23.8994 129.3 -81.1992 129.3 -148.1c0 -34.2998 -14.0996 -66 -38 -92z" />
-    <glyph glyph-name="star-half" unicode="&#xf089;" horiz-adv-x="576" 
-d="M288 448v-439.6l-130.7 -68.6006c-23.3994 -12.2998 -50.8994 7.60059 -46.3994 33.7002l25 145.5l-105.7 103c-19 18.5 -8.5 50.7998 17.7002 54.5996l146.1 21.2002l65.2998 132.4c5.90039 11.8994 17.2998 17.7998 28.7002 17.7998z" />
-    <glyph glyph-name="thumbtack" unicode="&#xf08d;" horiz-adv-x="384" 
-d="M298.028 233.733c47.9893 -22.3135 85.9717 -62.5508 85.9727 -113.733c0 -13.2549 -10.7451 -24 -24 -24h-136v-104.007c0 -1.2832 -0.307617 -2.50293 -0.844727 -3.57812l-24 -48c-2.94727 -5.89258 -11.3701 -5.88184 -14.3115 0l-24 48
-c-0.555664 1.11133 -0.844727 2.33594 -0.844727 3.57812v104.007h-136c-13.2549 0 -24 10.7451 -24 24c0 50.7393 37.4648 91.1797 85.9717 113.733l12.2354 118.267h-42.207c-13.2549 0 -24 10.7451 -24 24v48c0 13.2549 10.7451 24 24 24h272
-c13.2549 0 24 -10.7451 24 -24v-48c0 -13.2549 -10.7451 -24 -24 -24h-42.207z" />
-    <glyph glyph-name="trophy" unicode="&#xf091;" horiz-adv-x="576" 
-d="M552 384c13.2998 0 24 -10.7002 24 -24v-56c0 -35.7002 -22.5996 -72.4004 -61.9004 -100.7c-31.3994 -22.7002 -69.6992 -37.0996 -110 -41.7002c-31.3994 -52.0996 -68.0996 -73.5996 -68.0996 -73.5996v-72h48c35.2998 0 64 -20.7002 64 -56v-12
-c0 -6.59961 -5.40039 -12 -12 -12h-296c-6.59961 0 -12 5.40039 -12 12v12c0 35.2998 28.7002 56 64 56h48v72s-36.7002 21.5 -68.0996 73.5996c-40.2002 4.60059 -78.5 19 -110 41.7002c-39.4004 28.2998 -61.9004 65 -61.9004 100.7v56c0 13.2998 10.7002 24 24 24h104v40
-c0 13.2998 10.7002 24 24 24h272c13.2998 0 24 -10.7002 24 -24v-40h104zM99.2998 255.2c12.5 -9 26.6006 -16.2002 41.7002 -21.4004c-7 25 -11.7998 53.6006 -12.7998 86.2002h-64.2002v-16c0 -11.5996 10.9004 -31.2002 35.2998 -48.7998zM512 304v16h-64.2998
-c-1 -32.5996 -5.7998 -61.2002 -12.7998 -86.2002c15.0996 5.2002 29.2998 12.4004 41.7998 21.4004c17.5996 12.7002 35.2998 32.7002 35.2998 48.7998z" />
-    <glyph glyph-name="upload" unicode="&#xf093;" 
-d="M296 64h-80c-13.2998 0 -24 10.7002 -24 24v168h-87.7002c-17.7998 0 -26.7002 21.5 -14.0996 34.0996l152.1 152.2c7.5 7.5 19.7998 7.5 27.2998 0l152.2 -152.2c12.6006 -12.5996 3.7002 -34.0996 -14.0996 -34.0996h-87.7002v-168c0 -13.2998 -10.7002 -24 -24 -24z
-M512 72v-112c0 -13.2998 -10.7002 -24 -24 -24h-464c-13.2998 0 -24 10.7002 -24 24v112c0 13.2998 10.7002 24 24 24h136v-8c0 -30.9004 25.0996 -56 56 -56h80c30.9004 0 56 25.0996 56 56v8h136c13.2998 0 24 -10.7002 24 -24zM388 -16c0 11 -9 20 -20 20s-20 -9 -20 -20
-s9 -20 20 -20s20 9 20 20zM452 -16c0 11 -9 20 -20 20s-20 -9 -20 -20s9 -20 20 -20s20 9 20 20z" />
-    <glyph glyph-name="lemon" unicode="&#xf094;" 
-d="M489.038 425.037c23.0938 -23.0938 28.8916 -54.3906 16.833 -75.0928c-34.3115 -58.9043 53.0762 -181.249 -86.7461 -321.071s-262.167 -52.4326 -321.068 -86.7432c-20.7031 -12.0586 -52 -6.2627 -75.0947 16.832c-23.0928 23.0938 -28.8916 54.3906 -16.833 75.0928
-c34.3125 58.9043 -53.0781 181.247 86.7451 321.07s262.167 52.4336 321.073 86.7461c20.7012 12.0586 51.9971 6.25879 75.0908 -16.834zM243.881 352.478c8.57227 2.14355 13.7832 10.8291 11.6416 19.4023c-2.14258 8.57324 -10.8281 13.7852 -19.4033 11.6426
-c-69.8027 -17.4521 -154.218 -101.949 -171.643 -171.643c-2.1416 -8.57324 3.07031 -17.2588 11.6426 -19.4033c1.30273 -0.324219 2.6084 -0.480469 3.89258 -0.480469c7.16895 0 13.6943 4.85352 15.5117 12.124c14.5498 58.2031 90.1689 133.811 148.357 148.357z" />
-    <glyph glyph-name="phone" unicode="&#xf095;" 
-d="M493.4 423.4c10.8994 -2.5 18.5996 -12.2002 18.5996 -23.4004c0 -256.5 -207.9 -464 -464 -464c-11.2998 0 -20.9004 7.7998 -23.4004 18.5996l-24 104c-2.59961 11.3008 3.30078 22.9004 14 27.6006l112 48c9.80078 4.2002 21.2002 1.39941 28 -6.90039
-l49.6006 -60.5996c78.2998 36.7002 141.2 100.5 177.2 177.2l-60.6006 49.5996c-8.2998 6.7002 -11.0996 18.2002 -6.89941 28l48 112c4.59961 10.5996 16.1992 16.5 27.5 13.9004z" />
-    <glyph glyph-name="phone-square" unicode="&#xf098;" horiz-adv-x="448" 
-d="M400 416c26.5098 0 48 -21.4902 48 -48v-352c0 -26.5098 -21.4902 -48 -48 -48h-352c-26.5098 0 -48 21.4902 -48 48v352c0 26.5098 21.4902 48 48 48h352zM94 32c160.055 0 290 129.708 290 290c0 7.11621 -4.97559 13.0801 -11.6279 14.6143l-65 14.998
-c-1.08691 0.250977 -2.20312 0.394531 -3.36621 0.394531c-6.18457 0 -11.501 -3.75195 -13.7939 -9.10156l-30 -69.998c-0.775391 -1.81055 -1.22266 -3.81055 -1.22266 -5.90332c0 -4.68066 2.14844 -8.86328 5.51172 -11.6152l37.8857 -30.9971
-c-22.4834 -47.9219 -61.8369 -87.8164 -110.78 -110.779l-30.9971 37.8848c-2.75195 3.36328 -6.94043 5.49414 -11.6211 5.49414c-2.09277 0 -4.08691 -0.429688 -5.89746 -1.20508l-69.998 -29.999c-5.34961 -2.29297 -9.08984 -7.59375 -9.08984 -13.7783
-c0 -1.16309 0.131836 -2.29492 0.382812 -3.38184l14.998 -65c1.55957 -6.75391 7.58301 -11.627 14.6162 -11.627z" />
-    <glyph glyph-name="unlock" unicode="&#xf09c;" horiz-adv-x="448" 
-d="M400 192c26.5 0 48 -21.5 48 -48v-160c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v160c0 26.5 21.5 48 48 48h24v102.5c0 84 67.5 153.2 151.5 153.5s152.5 -68 152.5 -152v-16c0 -13.2998 -10.7002 -24 -24 -24h-32c-13.2998 0 -24 10.7002 -24 24v16
-c0 39.9004 -32.7002 72.4004 -72.7002 72c-39.5996 -0.400391 -71.2998 -33.2998 -71.2998 -72.9004v-103.1h248z" />
-    <glyph glyph-name="credit-card" unicode="&#xf09d;" horiz-adv-x="576" 
-d="M0 16v176h576v-176c0 -26.5 -21.5 -48 -48 -48h-480c-26.5 0 -48 21.5 -48 48zM192 84v-40c0 -6.59961 5.40039 -12 12 -12h136c6.59961 0 12 5.40039 12 12v40c0 6.59961 -5.40039 12 -12 12h-136c-6.59961 0 -12 -5.40039 -12 -12zM64 84v-40
-c0 -6.59961 5.40039 -12 12 -12h72c6.59961 0 12 5.40039 12 12v40c0 6.59961 -5.40039 12 -12 12h-72c-6.59961 0 -12 -5.40039 -12 -12zM576 368v-48h-576v48c0 26.5 21.5 48 48 48h480c26.5 0 48 -21.5 48 -48z" />
-    <glyph glyph-name="rss" unicode="&#xf09e;" horiz-adv-x="448" 
-d="M128.081 32.041c0 -35.3691 -28.6719 -64.041 -64.041 -64.041s-64.04 28.6719 -64.04 64.041s28.6719 64.041 64.041 64.041s64.04 -28.6729 64.04 -64.041zM303.741 -15.209c0.494141 -9.13477 -6.84668 -16.791 -15.9951 -16.79h-48.0693
-c-8.41406 0 -15.4707 6.49023 -16.0176 14.8867c-7.29883 112.07 -96.9404 201.488 -208.772 208.772c-8.39648 0.545898 -14.8867 7.60254 -14.8867 16.0176v48.0693c0 9.14746 7.65625 16.4883 16.791 15.9941c154.765 -8.36328 278.596 -132.351 286.95 -286.95z
-M447.99 -15.4971c0.324219 -9.03027 -6.97168 -16.5029 -16.0049 -16.5039h-48.0684c-8.62598 0 -15.6455 6.83496 -15.999 15.4531c-7.83789 191.148 -161.286 344.626 -352.465 352.465c-8.61816 0.354492 -15.4531 7.37402 -15.4531 15.999v48.0684
-c0 9.03418 7.47266 16.3301 16.5029 16.0059c234.962 -8.43555 423.093 -197.667 431.487 -431.487z" />
-    <glyph glyph-name="hdd" unicode="&#xf0a0;" horiz-adv-x="576" 
-d="M576 144v-96c0 -26.5098 -21.4902 -48 -48 -48h-480c-26.5098 0 -48 21.4902 -48 48v96c0 26.5098 21.4902 48 48 48h480c26.5098 0 48 -21.4902 48 -48zM528 224h-480c-0.0234375 0 -0.0996094 -0.0361328 -0.124023 -0.0361328
-c-10.8613 0 -21.2168 -2.18066 -30.6533 -6.12891l96.5283 144.791c8.60742 12.9102 23.2725 21.374 39.9385 21.374h268.621c16.667 0 31.332 -8.46387 39.9395 -21.374l96.5273 -144.791c-9.43652 3.94824 -19.8447 6.16504 -30.7061 6.16504h-0.0712891zM480 128
-c-17.6729 0 -32 -14.3271 -32 -32s14.3271 -32 32 -32s32 14.3271 32 32s-14.3271 32 -32 32zM384 128c-17.6729 0 -32 -14.3271 -32 -32s14.3271 -32 32 -32s32 14.3271 32 32s-14.3271 32 -32 32z" />
-    <glyph glyph-name="bullhorn" unicode="&#xf0a1;" horiz-adv-x="576" 
-d="M576 208c0 -23.6299 -12.9502 -44.04 -32.0098 -55.1299v-152.87c0 -9.21973 -7.08008 -32 -32 -32c-7.5459 0.00683594 -14.5078 2.64062 -19.9805 7.01953l-85.0293 68.0303c-42.7002 34.1406 -96.3203 52.9502 -150.98 52.9502h-28.0801
-c-2.79004 -10.21 -4.41016 -20.8896 -4.41016 -32c0 -29.0801 9.75 -55.9199 26.1504 -77.4404c15.79 -20.7197 0.149414 -50.5596 -25.9004 -50.5596h-74.2793c-11.8809 0 -23.2109 6.37012 -28.4004 17.0596c-16.2998 33.5908 -25.5605 71.1709 -25.5605 110.94
-c0 10.8604 0.790039 21.5195 2.18066 32h-33.7002c-35.3496 0 -64 28.6504 -64 64v96c0 35.3496 28.6504 64 64 64h192c54.6602 0 108.28 18.8096 150.99 52.9502l85.0293 68.0303c5.79004 4.63965 12.8604 7.01953 19.9805 7.01953c25.0195 0 32 -23.2598 32 -32.0098
-v-152.87c19.0498 -11.0801 32 -31.4902 32 -55.1201zM480 66.5801v282.84l-33.0498 -26.4395c-54 -43.2002 -121.83 -66.9805 -190.95 -66.9805v-96c69.1201 0 136.95 -23.7803 190.95 -66.9805z" />
-    <glyph glyph-name="certificate" unicode="&#xf0a3;" 
-d="M458.622 192.08l45.9844 -45.0039c13.7012 -12.9727 7.32227 -36.0371 -10.6641 -40.3389l-62.6504 -15.9902l17.6611 -62.0146c4.99023 -17.834 -11.8252 -34.665 -29.6611 -29.6719l-61.9941 17.667l-15.9834 -62.6709
-c-4.33887 -18.1533 -27.8252 -24.1553 -40.3252 -10.668l-44.9893 46.001l-44.9912 -46.001c-12.6289 -13.3496 -35.8857 -7.90625 -40.3252 10.668l-15.9834 62.6709l-61.9941 -17.667c-17.832 -4.99121 -34.6523 11.833 -29.6611 29.6719l17.6611 62.0146
-l-62.6504 15.9902c-17.9795 4.2998 -24.3721 27.3613 -10.6641 40.3389l45.9854 45.0039l-45.9854 45.0049c-13.7012 12.9707 -7.32227 36.0371 10.665 40.3379l62.6504 15.9902l-17.6611 62.0146c-4.99023 17.834 11.8242 34.665 29.6611 29.6709l61.9951 -17.667
-l15.9834 62.6709c4.27832 17.9023 27.6953 24.0195 40.3252 10.6689l44.9893 -46.3418l44.9902 46.3428c12.7744 13.5039 36.0947 7.03027 40.3252 -10.6689l15.9834 -62.6709l61.9941 17.667c17.832 4.99219 34.6523 -11.833 29.6611 -29.6709l-17.6611 -62.0146
-l62.6504 -15.9902c17.9795 -4.2998 24.3721 -27.3623 10.6641 -40.3389z" />
-    <glyph glyph-name="hand-point-right" unicode="&#xf0a4;" 
-d="M512 248.348c0 -23.625 -20.6504 -43.8252 -44.7998 -43.8252h-99.8516c16.3408 -17.0488 18.3467 -49.7666 -6.29883 -70.9443c14.2881 -22.8291 2.14746 -53.0176 -16.4502 -62.3154c8.97461 -49.1406 -21.9453 -71.2627 -72.5996 -71.2627
-c-2.74609 0 -13.2764 0.203125 -16 0.195312c-61.9707 -0.167969 -76.8936 31.0645 -123.731 38.3145c-11.6729 1.80762 -20.2686 11.8916 -20.2686 23.7041v171.525l0.00195312 0.000976562c0.0107422 18.3662 10.6074 35.8887 28.4639 43.8447
-c28.8857 12.9941 95.4131 49.0381 107.534 77.3232c7.79688 18.1934 21.3838 29.084 40 29.0918c34.2217 0.0136719 57.752 -35.0977 44.1191 -66.9082c-3.58301 -8.3584 -8.3125 -16.6699 -14.1533 -24.918h149.234c23.4502 0 44.7998 -20.543 44.7998 -43.8262zM96 248
-v-192c0 -13.2549 -10.7451 -24 -24 -24h-48c-13.2549 0 -24 10.7451 -24 24v192c0 13.2549 10.7451 24 24 24h48c13.2549 0 24 -10.7451 24 -24zM68 80c0 11.0459 -8.9541 20 -20 20s-20 -8.9541 -20 -20s8.9541 -20 20 -20s20 8.9541 20 20z" />
-    <glyph glyph-name="hand-point-left" unicode="&#xf0a5;" 
-d="M44.7998 292.174h149.234c-5.84082 8.24805 -10.5703 16.5586 -14.1533 24.918c-13.6328 31.8105 9.89746 66.9219 44.1191 66.9082c18.6162 -0.0078125 32.2031 -10.8975 40 -29.0918c12.1221 -28.2861 78.6484 -64.3291 107.534 -77.3232
-c17.8564 -7.95605 28.4531 -25.4785 28.4639 -43.8447l0.00195312 -0.000976562v-171.526c0 -11.8115 -8.5957 -21.8965 -20.2686 -23.7031c-46.8379 -7.25 -61.7607 -38.4824 -123.731 -38.3145c-2.72363 0.00683594 -13.2539 -0.195312 -16 -0.195312
-c-50.6543 0 -81.5742 22.1221 -72.5996 71.2627c-18.5977 9.29688 -30.7383 39.4863 -16.4502 62.3154c-24.6455 21.1768 -22.6396 53.8955 -6.29883 70.9443h-99.8516c-24.1494 0 -44.7998 20.2002 -44.7998 43.8252c0 23.2832 21.3496 43.8262 44.7998 43.8262zM440 272
-h48c13.2549 0 24 -10.7451 24 -24v-192c0 -13.2549 -10.7451 -24 -24 -24h-48c-13.2549 0 -24 10.7451 -24 24v192c0 13.2549 10.7451 24 24 24zM464 60c11.0459 0 20 8.9541 20 20s-8.9541 20 -20 20s-20 -8.9541 -20 -20s8.9541 -20 20 -20z" />
-    <glyph glyph-name="hand-point-up" unicode="&#xf0a6;" horiz-adv-x="384" 
-d="M135.652 448c23.625 0 43.8252 -20.6504 43.8252 -44.7998v-99.8516c17.0488 16.3408 49.7666 18.3467 70.9443 -6.29883c22.8291 14.2881 53.0176 2.14746 62.3154 -16.4502c49.1406 8.97461 71.2627 -21.9453 71.2627 -72.5996
-c0 -2.74609 -0.203125 -13.2764 -0.195312 -16c0.167969 -61.9707 -31.0645 -76.8936 -38.3145 -123.731c-1.80762 -11.6729 -11.8916 -20.2686 -23.7041 -20.2686h-171.525l-0.000976562 0.00195312c-18.3662 0.0107422 -35.8887 10.6074 -43.8447 28.4639
-c-12.9941 28.8857 -49.0381 95.4121 -77.3232 107.534c-18.1943 7.79688 -29.084 21.3838 -29.0918 40c-0.0136719 34.2217 35.0977 57.752 66.9082 44.1191c8.3584 -3.58301 16.6699 -8.3125 24.918 -14.1533v149.234c0 23.4502 20.543 44.7998 43.8262 44.7998zM136 32
-h192c13.2549 0 24 -10.7451 24 -24v-48c0 -13.2549 -10.7451 -24 -24 -24h-192c-13.2549 0 -24 10.7451 -24 24v48c0 13.2549 10.7451 24 24 24zM304 4c-11.0459 0 -20 -8.9541 -20 -20s8.9541 -20 20 -20s20 8.9541 20 20s-8.9541 20 -20 20z" />
-    <glyph glyph-name="hand-point-down" unicode="&#xf0a7;" horiz-adv-x="384" 
-d="M91.8262 -19.2002v149.234c-8.24805 -5.84082 -16.5586 -10.5703 -24.918 -14.1533c-31.8105 -13.6328 -66.9219 9.89746 -66.9082 44.1191c0.0078125 18.6162 10.8975 32.2031 29.0918 40c28.2861 12.1221 64.3291 78.6484 77.3232 107.534
-c7.95605 17.8564 25.4785 28.4531 43.8447 28.4639l0.000976562 0.00195312h171.526c11.8115 0 21.8965 -8.5957 23.7031 -20.2686c7.25 -46.8379 38.4824 -61.7607 38.3145 -123.731c-0.00683594 -2.72363 0.195312 -13.2539 0.195312 -16
-c0 -50.6543 -22.1221 -81.5742 -71.2627 -72.5996c-9.29688 -18.5977 -39.4863 -30.7383 -62.3154 -16.4502c-21.1768 -24.6455 -53.8955 -22.6396 -70.9443 -6.29883v-99.8516c0 -24.1494 -20.2002 -44.7998 -43.8252 -44.7998
-c-23.2832 0 -43.8262 21.3496 -43.8262 44.7998zM112 376v48c0 13.2549 10.7451 24 24 24h192c13.2549 0 24 -10.7451 24 -24v-48c0 -13.2549 -10.7451 -24 -24 -24h-192c-13.2549 0 -24 10.7451 -24 24zM324 400c0 11.0459 -8.9541 20 -20 20s-20 -8.9541 -20 -20
-s8.9541 -20 20 -20s20 8.9541 20 20z" />
-    <glyph glyph-name="arrow-circle-left" unicode="&#xf0a8;" 
-d="M256 -56c-137 0 -248 111 -248 248s111 248 248 248s248 -111 248 -248s-111 -248 -248 -248zM284.9 87.5996l-75.5 72.4004h182.6c13.2998 0 24 10.7002 24 24v16c0 13.2998 -10.7002 24 -24 24h-182.6l75.5 72.4004c9.69922 9.2998 9.89941 24.7998 0.399414 34.2998
-l-11 10.8994c-9.39941 9.40039 -24.5996 9.40039 -33.8994 0l-132.7 -132.6c-9.40039 -9.40039 -9.40039 -24.5996 0 -33.9004l132.7 -132.699c9.39941 -9.40039 24.5996 -9.40039 33.8994 0l11 10.8994c9.5 9.5 9.2998 25 -0.399414 34.2998z" />
-    <glyph glyph-name="arrow-circle-right" unicode="&#xf0a9;" 
-d="M256 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM227.1 296.4l75.5 -72.4004h-182.6c-13.2998 0 -24 -10.7002 -24 -24v-16c0 -13.2998 10.7002 -24 24 -24h182.6l-75.5 -72.4004
-c-9.69922 -9.2998 -9.89941 -24.7998 -0.399414 -34.2998l11 -10.8994c9.39941 -9.40039 24.5996 -9.40039 33.8994 0l132.7 132.6c9.40039 9.40039 9.40039 24.5996 0 33.9004l-132.7 132.8c-9.39941 9.39941 -24.5996 9.39941 -33.8994 0l-11 -10.9004
-c-9.5 -9.59961 -9.2998 -25.0996 0.399414 -34.3994z" />
-    <glyph glyph-name="arrow-circle-up" unicode="&#xf0aa;" 
-d="M8 192c0 137 111 248 248 248s248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248zM151.6 163.1l72.4004 75.5v-182.6c0 -13.2998 10.7002 -24 24 -24h16c13.2998 0 24 10.7002 24 24v182.6l72.4004 -75.5c9.2998 -9.69922 24.7998 -9.89941 34.2998 -0.399414
-l10.8994 11c9.40039 9.39941 9.40039 24.5996 0 33.8994l-132.6 132.7c-9.40039 9.40039 -24.5996 9.40039 -33.9004 0l-132.8 -132.7c-9.39941 -9.39941 -9.39941 -24.5996 0 -33.8994l10.9004 -11c9.59961 -9.5 25.0996 -9.2998 34.3994 0.399414z" />
-    <glyph glyph-name="arrow-circle-down" unicode="&#xf0ab;" 
-d="M504 192c0 -137 -111 -248 -248 -248s-248 111 -248 248s111 248 248 248s248 -111 248 -248zM360.4 220.9l-72.4004 -75.5v182.6c0 13.2998 -10.7002 24 -24 24h-16c-13.2998 0 -24 -10.7002 -24 -24v-182.6l-72.4004 75.5
-c-9.2998 9.69922 -24.7998 9.89941 -34.2998 0.399414l-10.8994 -11c-9.40039 -9.39941 -9.40039 -24.5996 0 -33.8994l132.6 -132.7c9.40039 -9.40039 24.5996 -9.40039 33.9004 0l132.699 132.7c9.40039 9.39941 9.40039 24.5996 0 33.8994l-10.8994 11
-c-9.5 9.5 -25 9.2998 -34.2998 -0.399414z" />
-    <glyph glyph-name="globe" unicode="&#xf0ac;" horiz-adv-x="496" 
-d="M336.5 288h-177c14.5 89.2998 48.7002 152 88.5 152s74 -62.7002 88.5 -152zM152 192c0 22.2002 1.2002 43.5 3.2998 64h185.3c2.10059 -20.5 3.30078 -41.7998 3.30078 -64s-1.2002 -43.5 -3.30078 -64h-185.3c-2.09961 20.5 -3.2998 41.7998 -3.2998 64zM476.7 288
-h-108c-8.7998 56.9004 -25.6006 107.8 -50 141.6c71.5 -21.1992 129.399 -73.6992 158 -141.6zM177.2 429.6c-24.4004 -33.7998 -41.2002 -84.6992 -49.9004 -141.6h-108c28.5 67.9004 86.5 120.4 157.9 141.6zM487.4 256c5.39941 -20.5 8.5 -41.7998 8.5 -64
-s-3.10059 -43.5 -8.60059 -64h-114.6c2.09961 21 3.2998 42.5 3.2998 64s-1.2002 43 -3.2998 64h114.7zM120 192c0 -21.5 1.2002 -43 3.2002 -64h-114.601c-5.39941 20.5 -8.59961 41.7998 -8.59961 64s3.2002 43.5 8.59961 64h114.7
-c-2.09961 -21 -3.2998 -42.5 -3.2998 -64zM159.5 96h177c-14.5 -89.2998 -48.7002 -152 -88.5 -152s-74 62.7002 -88.5 152zM318.8 -45.5996c24.4004 33.7998 41.2002 84.6992 50 141.6h108c-28.5996 -67.9004 -86.5996 -120.4 -158 -141.6zM19.2998 96h108
-c8.7998 -56.9004 25.6006 -107.8 50 -141.6c-71.5 21.1992 -129.399 73.6992 -158 141.6z" />
-    <glyph glyph-name="wrench" unicode="&#xf0ad;" 
-d="M507.73 338.9c11.7891 -47.4102 -0.84082 -99.6602 -37.9102 -136.73c-39.9004 -39.9004 -97.25 -50.9297 -147.37 -34.2197l-213.21 -213.21c-24.9902 -24.9902 -65.5098 -24.9902 -90.5 0s-24.9902 65.5098 0 90.5l213.39 213.39
-c-16.5 50.1006 -5.58984 107.561 34.0498 147.2c37.0303 37.0195 89.2002 49.6699 136.58 37.9297c9.08984 -2.25977 12.2803 -13.54 5.66016 -20.1602l-74.3604 -74.3594l11.3105 -67.8799l67.8799 -11.3105l74.3604 74.3604
-c6.58008 6.58008 17.8799 3.51953 20.1201 -5.50977zM64 -24c13.25 0 24 10.75 24 24c0 13.2598 -10.75 24 -24 24s-24 -10.7402 -24 -24c0 -13.25 10.75 -24 24 -24z" />
-    <glyph glyph-name="tasks" unicode="&#xf0ae;" 
-d="M139.61 412.5l17 -16.5c2.13281 -2.18066 3.44922 -5.16797 3.44922 -8.45605c0 -3.33496 -1.35352 -6.35547 -3.54004 -8.54395l-72.1992 -72.1904l-15.5898 -15.6191c-2.29297 -2.17969 -5.39941 -3.51758 -8.80859 -3.51758
-c-3.41016 0 -6.50977 1.33789 -8.80176 3.51758l-47.5898 47.3994c-2.18066 2.17383 -3.53125 5.18262 -3.53125 8.50195c0 3.31836 1.35059 6.3252 3.53125 8.49805l15.7002 15.7197c2.17285 2.18164 5.18164 3.53125 8.50098 3.53125s6.3252 -1.34961 8.49902 -3.53125
-l22.6992 -22.1191l63.6807 63.3096c2.17285 2.18066 5.18262 3.53125 8.50098 3.53125c3.31934 0 6.3252 -1.35059 8.49902 -3.53125zM139.61 253.31l16.9795 -17c2.125 -2.16504 3.43652 -5.13574 3.43652 -8.40625c0 -3.31641 -1.34863 -6.32031 -3.52637 -8.49316
-l-72.2002 -72.2197l-15.7002 -15.6904c-2.29004 -2.17871 -5.39551 -3.5166 -8.80273 -3.5166c-3.4082 0 -6.50586 1.33789 -8.79688 3.5166l-47.4697 47.5c-2.18066 2.17285 -3.53125 5.18262 -3.53125 8.50195c0 3.31836 1.35059 6.3252 3.53125 8.49805l15.7002 15.6904
-c2.17285 2.18066 5.18164 3.53125 8.50098 3.53125s6.3252 -1.35059 8.49902 -3.53125l22.6992 -22.1006l63.6807 63.7197c2.17285 2.18164 5.18262 3.53125 8.50098 3.53125c3.31934 0 6.3252 -1.34961 8.49902 -3.53125zM64 80c26.4922 0 48 -21.5078 48 -48
-s-21.5078 -48 -48 -48c-26.4697 0 -48.5898 21.5 -48.5898 48s22.0996 48 48.5898 48zM496 64c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-288c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h288zM496 384
-c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-288c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h288zM496 224c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-288c-8.83105 0 -16 7.16895 -16 16v32
-c0 8.83105 7.16895 16 16 16h288z" />
-    <glyph glyph-name="filter" unicode="&#xf0b0;" 
-d="M487.976 448c21.3623 0 32.0459 -25.8965 16.9717 -40.9707l-184.947 -184.971v-262.039c0 -19.5127 -21.9805 -30.71 -37.7627 -19.6611l-80 55.9795c-6.41602 4.49219 -10.2373 11.8311 -10.2373 19.6621v206.059l-184.942 184.971
-c-15.1045 15.1045 -4.34766 40.9707 16.9707 40.9707h463.947z" />
-    <glyph glyph-name="briefcase" unicode="&#xf0b1;" 
-d="M320 112v48h192v-144c0 -25.5996 -22.4004 -48 -48 -48h-416c-25.5996 0 -48 22.4004 -48 48v144h192v-48c0 -8.83984 7.16016 -16 16 -16h96c8.83984 0 16 7.16016 16 16zM464 320c25.5996 0 48 -22.4004 48 -48v-80h-512v80c0 25.5996 22.4004 48 48 48h80v48
-c0 25.5996 22.4004 48 48 48h160c25.5996 0 48 -22.4004 48 -48v-48h80zM320 320v32h-128v-32h128z" />
-    <glyph glyph-name="arrows-alt" unicode="&#xf0b2;" 
-d="M352.201 22.2246l-79.1963 -79.1953c-9.37305 -9.37305 -24.5684 -9.37305 -33.9404 0l-79.1963 79.1953c-15.1191 15.1191 -4.41113 40.9717 16.9707 40.9707h51.1621l-0.000976562 100.805h-100.804v-51.1621c0 -21.3818 -25.8516 -32.0898 -40.9717 -16.9707
-l-79.1953 79.1963c-9.37305 9.37207 -9.37305 24.5684 0 33.9404l79.1953 79.1963c15.1191 15.1191 40.9717 4.41113 40.9717 -16.9717v-51.2285h100.804v100.804h-51.2305c-21.3818 0 -32.0898 25.8516 -16.9707 40.9717l79.1963 79.1953
-c9.37305 9.37305 24.5684 9.37305 33.9404 0l79.1963 -79.1953c15.1191 -15.1191 4.41113 -40.9717 -16.9707 -40.9717h-51.1621v-100.804h100.804v51.1621c0 21.3818 25.8516 32.0898 40.9707 16.9707l79.1953 -79.1963c9.37305 -9.37207 9.37305 -24.5684 0 -33.9404
-l-79.1953 -79.1963c-15.1191 -15.1191 -40.9717 -4.41113 -40.9707 16.9717v51.2285h-100.803v-100.804h51.2305c21.3818 0 32.0898 -25.8516 16.9707 -40.9717z" />
-    <glyph glyph-name="users" unicode="&#xf0c0;" horiz-adv-x="640" 
-d="M96 224c-35.2998 0 -64 28.7002 -64 64s28.7002 64 64 64s64 -28.7002 64 -64s-28.7002 -64 -64 -64zM544 224c-35.2998 0 -64 28.7002 -64 64s28.7002 64 64 64s64 -28.7002 64 -64s-28.7002 -64 -64 -64zM576 192c35.2998 0 64 -28.7002 64 -64v-32
-c0 -17.7002 -14.2998 -32 -32 -32h-66c-6.2002 47.4004 -34.7998 87.2998 -75.0996 109.4c11.5996 11.5 27.5 18.5996 45.0996 18.5996h64zM320 192c-61.9004 0 -112 50.0996 -112 112s50.0996 112 112 112s112 -50.0996 112 -112s-50.0996 -112 -112 -112zM396.8 160
-c63.6006 0 115.2 -51.5996 115.2 -115.2v-28.7998c0 -26.5 -21.5 -48 -48 -48h-288c-26.5 0 -48 21.5 -48 48v28.7998c0 63.6006 51.5996 115.2 115.2 115.2h8.2998c20.9004 -10 43.9004 -16 68.5 -16s47.7002 6 68.5 16h8.2998zM173.1 173.4
-c-40.2998 -22.1006 -68.8994 -62 -75.1992 -109.4h-65.9004c-17.7002 0 -32 14.2998 -32 32v32c0 35.2998 28.7002 64 64 64h64c17.5996 0 33.5 -7.09961 45.0996 -18.5996z" />
-    <glyph glyph-name="link" unicode="&#xf0c1;" 
-d="M326.612 262.609c59.7471 -59.8096 58.9268 -155.698 0.359375 -214.591c-0.109375 -0.119141 -0.239258 -0.25 -0.359375 -0.369141l-67.2002 -67.2002c-59.2705 -59.2705 -155.699 -59.2627 -214.96 0c-59.2705 59.2598 -59.2705 155.7 0 214.96l37.1055 37.1055
-c9.84082 9.84082 26.7861 3.30078 27.2939 -10.6055c0.648438 -17.7227 3.82617 -35.5273 9.69043 -52.7207c1.98633 -5.82227 0.567383 -12.2627 -3.7832 -16.6123l-13.0869 -13.0869c-28.0254 -28.0264 -28.9053 -73.6602 -1.15527 -101.96
-c28.0244 -28.5791 74.0859 -28.749 102.325 -0.510742l67.2002 67.1904c28.1914 28.1914 28.0732 73.7568 0 101.83c-3.70117 3.69434 -7.42871 6.56348 -10.3408 8.56934c-4.05078 2.78125 -6.74707 7.37402 -6.94727 12.6055
-c-0.395508 10.5674 3.34766 21.4561 11.6982 29.8057l21.0537 21.0557c5.52148 5.52051 14.1826 6.19922 20.584 1.73047c7.38574 -5.15723 14.1709 -10.8447 20.5225 -17.1963zM467.547 403.551c59.2705 -59.2598 59.2705 -155.7 -0.000976562 -214.959l-37.1055 -37.1055
-c-9.84082 -9.83984 -26.7852 -3.30078 -27.2939 10.6055c-0.648438 17.7227 -3.82617 35.5273 -9.69043 52.7217c-1.98633 5.82129 -0.567383 12.2617 3.7832 16.6113l13.0869 13.0869c28.0264 28.0264 28.9053 73.6602 1.15527 101.96
-c-28.0254 28.5791 -74.0869 28.749 -102.325 0.510742l-67.2002 -67.1904c-28.1914 -28.1914 -28.0732 -73.7568 0 -101.83c3.70117 -3.69434 7.42871 -6.56348 10.3408 -8.56934c4.05078 -2.78125 6.74707 -7.37402 6.94727 -12.6055
-c0.395508 -10.5674 -3.34766 -21.4561 -11.6982 -29.8057l-21.0537 -21.0557c-5.52051 -5.51953 -14.1826 -6.19922 -20.584 -1.73047c-7.38574 5.15625 -14.1699 10.8447 -20.5215 17.1953c-59.7471 59.8096 -58.9258 155.698 -0.359375 214.591
-c0.109375 0.119141 0.239258 0.25 0.359375 0.369141l67.2002 67.2002c59.2705 59.2705 155.699 59.2627 214.96 0z" />
-    <glyph glyph-name="cloud" unicode="&#xf0c2;" horiz-adv-x="640" 
-d="M537.6 221.4c58.4004 -11.8008 102.4 -63.5 102.4 -125.4c0 -70.7002 -57.2998 -128 -128 -128h-368c-79.5 0 -144 64.5 -144 144c0 62.7998 40.2002 116.2 96.2002 135.9c-0.100586 2.69922 -0.200195 5.39941 -0.200195 8.09961c0 88.4004 71.5996 160 160 160
-c59.2998 0 111 -32.2002 138.7 -80.2002c15.2002 10.2002 33.5996 16.2002 53.2998 16.2002c53 0 96 -43 96 -96c0 -12.2002 -2.2998 -23.9004 -6.40039 -34.5996z" />
-    <glyph glyph-name="flask" unicode="&#xf0c3;" horiz-adv-x="448" 
-d="M437.2 44.5c29.2998 -47 -4.40039 -108.5 -60.1006 -108.5h-306.199c-55.6006 0 -89.4004 61.4004 -60.1006 108.5l117.2 188.5v151h-8c-13.2998 0 -24 10.7002 -24 24v16c0 13.2998 10.7002 24 24 24h208c13.2998 0 24 -10.7002 24 -24v-16
-c0 -13.2998 -10.7002 -24 -24 -24h-8v-151zM137.9 128h172l-48.2002 77.5996c-3.60059 5.2002 -5.7998 11.5 -5.7998 18.4004v160h-64v-160c0 -6.7998 -2.10059 -13.2002 -5.80078 -18.4004z" />
-    <glyph glyph-name="cut" unicode="&#xf0c4;" horiz-adv-x="448" 
-d="M278.06 192l166.421 -166.43c4.68945 -4.69043 4.68945 -12.29 0 -16.9707c-32.8008 -32.7998 -85.9902 -32.7998 -118.79 0l-115.511 115.521l-24.8594 -24.8604c4.30957 -10.9199 6.67969 -22.8096 6.67969 -35.2598c0 -53.0195 -42.9805 -96 -96 -96
-s-96 42.9805 -96 96s42.9805 96 96 96c4.53027 0 8.99023 -0.320312 13.3604 -0.929688l32.9297 32.9297l-32.9297 32.9297c-4.37012 -0.609375 -8.82031 -0.929688 -13.3604 -0.929688c-53.0195 0 -96 42.9805 -96 96s42.9805 96 96 96s96 -42.9805 96 -96
-c0 -12.4502 -2.37012 -24.3398 -6.67969 -35.2598l24.8594 -24.8604l115.511 115.521c32.7998 32.7998 85.9893 32.7998 118.79 0c4.68945 -4.68066 4.68945 -12.2803 0 -16.9707zM96 288c17.6396 0 32 14.3604 32 32s-14.3604 32 -32 32s-32 -14.3604 -32 -32
-s14.3604 -32 32 -32zM96 32c17.6396 0 32 14.3604 32 32s-14.3604 32 -32 32s-32 -14.3604 -32 -32s14.3604 -32 32 -32z" />
-    <glyph glyph-name="copy" unicode="&#xf0c5;" horiz-adv-x="448" 
-d="M320 0v-40c0 -13.2549 -10.7451 -24 -24 -24h-272c-13.2549 0 -24 10.7451 -24 24v368c0 13.2549 10.7451 24 24 24h72v-296c0 -30.8789 25.1211 -56 56 -56h168zM320 344c0 -13.2002 10.7998 -24 24 -24h104v-264c0 -13.2549 -10.7451 -24 -24 -24h-272
-c-13.2549 0 -24 10.7451 -24 24v368c0 13.2549 10.7451 24 24 24h168v-104zM440.971 375.029c4.34473 -4.34473 7.0293 -10.3477 7.0293 -16.9707v-6.05859h-96v96h6.05859c6.62305 0 12.626 -2.68457 16.9707 -7.0293z" />
-    <glyph glyph-name="paperclip" unicode="&#xf0c6;" horiz-adv-x="448" 
-d="M43.2461 -18.1416c-58.4297 60.2891 -57.3408 157.511 1.38574 217.581l209.76 214.561c44.3164 45.332 116.352 45.3359 160.672 0c43.8896 -44.8936 43.9424 -117.329 0 -162.276l-182.85 -186.852c-29.8545 -30.5371 -78.6328 -30.1113 -107.981 0.998047
-c-28.2754 29.9697 -27.3682 77.4727 1.45117 106.953l143.743 146.835c6.18262 6.31348 16.3125 6.42188 22.626 0.241211l22.8613 -22.3799c6.31445 -6.18164 6.42188 -16.3115 0.241211 -22.626l-143.729 -146.82c-4.93164 -5.04492 -5.23535 -13.4287 -0.647461 -18.292
-c4.37207 -4.63379 11.2451 -4.71094 15.6875 -0.165039l182.85 186.851c19.6123 20.0625 19.6123 52.7256 -0.0117188 72.7979c-19.1885 19.627 -49.957 19.6377 -69.1533 0l-209.762 -214.56c-34.7627 -35.5605 -35.2988 -93.1201 -1.19043 -128.313
-c34.0098 -35.0928 88.9844 -35.1367 123.058 -0.285156l172.061 175.999c6.17676 6.31836 16.3066 6.43262 22.626 0.255859l22.877 -22.3643c6.31836 -6.17676 6.43359 -16.3066 0.255859 -22.626l-172.061 -175.998c-59.5752 -60.9385 -155.942 -60.2158 -214.77 0.485352
-z" />
-    <glyph glyph-name="save" unicode="&#xf0c7;" horiz-adv-x="448" 
-d="M433.941 318.059c8.68848 -8.68848 14.0586 -20.6943 14.0586 -33.9404v-268.118c0 -26.5098 -21.4902 -48 -48 -48h-352c-26.5098 0 -48 21.4902 -48 48v352c0 26.5098 21.4902 48 48 48h268.118c13.2461 0 25.252 -5.37012 33.9404 -14.0586zM224 32
-c35.3457 0 64 28.6543 64 64s-28.6543 64 -64 64s-64 -28.6543 -64 -64s28.6543 -64 64 -64zM320 336.52c0 3.31152 -1.34277 6.31348 -3.51465 8.48535l-3.48047 3.48047c-2.25 2.25098 -5.30176 3.51465 -8.48535 3.51465h-228.52c-6.62695 0 -12 -5.37305 -12 -12v-104
-c0 -6.62695 5.37305 -12 12 -12h232c6.62695 0 12 5.37305 12 12v100.52z" />
-    <glyph glyph-name="square" unicode="&#xf0c8;" horiz-adv-x="448" 
-d="M400 416c26.5 0 48 -21.5 48 -48v-352c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h352z" />
-    <glyph glyph-name="bars" unicode="&#xf0c9;" horiz-adv-x="448" 
-d="M16 316c-8.83691 0 -16 7.16309 -16 16v40c0 8.83691 7.16309 16 16 16h416c8.83691 0 16 -7.16309 16 -16v-40c0 -8.83691 -7.16309 -16 -16 -16h-416zM16 156c-8.83691 0 -16 7.16309 -16 16v40c0 8.83691 7.16309 16 16 16h416c8.83691 0 16 -7.16309 16 -16v-40
-c0 -8.83691 -7.16309 -16 -16 -16h-416zM16 -4c-8.83691 0 -16 7.16309 -16 16v40c0 8.83691 7.16309 16 16 16h416c8.83691 0 16 -7.16309 16 -16v-40c0 -8.83691 -7.16309 -16 -16 -16h-416z" />
-    <glyph glyph-name="list-ul" unicode="&#xf0ca;" 
-d="M48 400c26.4922 0 48 -21.5078 48 -48s-21.5078 -48 -48 -48s-48 21.5078 -48 48s21.5078 48 48 48zM48 240c26.4922 0 48 -21.5078 48 -48s-21.5078 -48 -48 -48s-48 21.5078 -48 48s21.5078 48 48 48zM48 80c26.4922 0 48 -21.5078 48 -48s-21.5078 -48 -48 -48
-s-48 21.5078 -48 48s21.5078 48 48 48zM496 64c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-320c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h320zM496 384c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16
-h-320c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h320zM496 224c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-320c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h320z" />
-    <glyph glyph-name="list-ol" unicode="&#xf0cb;" 
-d="M61.7695 47c19.6104 -5.12012 28.7002 -20.5 28.7305 -34.8799c0 -21.3701 -14.3398 -44.1201 -48.5 -44.1201c-16.6201 0 -29.29 4.75 -37 9.44043c-5.82031 4.21973 -6.34961 9.80957 -2.62988 15.9395l5.58984 9.31055c3.86035 6.61914 9.11035 7 15.5996 3.11914
-c4.76758 -1.95996 10.0107 -3.07617 15.4707 -3.11914c10.1602 0 14.3594 3.5 14.3594 8.21973c0 6.64941 -5.60938 9.08984 -15.9395 9.08984h-4.73047c-5.95996 0 -9.25 2.12012 -12.25 7.87988l-1.0498 1.92969c-2.4502 4.75 -1.2002 9.81055 2.7998 14.8809l5.61035 7
-c3.47461 4.32422 7.0957 8.37695 11 12.3096h-22.8301c-4.41504 0 -8 3.58496 -8 8v16c0 4.41504 3.58496 8 8 8h57c7.5 0 11.3398 -4 11.3398 -11.3496v-3.31055c0.0136719 -0.299805 0.0175781 -0.595703 0.0175781 -0.899414
-c0 -5.10449 -1.9248 -9.76367 -5.08789 -13.29zM496 224c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-320c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h320zM496 384c8.83105 0 16 -7.16895 16 -16v-32
-c0 -8.83105 -7.16895 -16 -16 -16h-320c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h320zM496 64c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-320c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h320zM16 288
-c-4.41504 0 -8 3.58496 -8 8v16c0 4.41504 3.58496 8 8 8h16v64h-8c-4.4082 0.0078125 -7.98145 3.59766 -7.98145 8.00781c0 1.2832 0.303711 2.49707 0.841797 3.57227l8 16c1.31055 2.62012 4.01367 4.41406 7.13965 4.41992h24c4.41504 0 8 -3.58496 8 -8v-88h16
-c4.41504 0 8 -3.58496 8 -8v-16c0 -4.41504 -3.58496 -8 -8 -8h-64zM12.0898 128c-7.00977 0 -12.0898 4 -12.0898 11.4102v4c0 47.2803 51 56.3994 50.9697 69.1201c0 7.18945 -5.9502 8.75 -9.2793 8.75c-0.0185547 0 -0.0380859 0.000976562 -0.0566406 0.000976562
-c-3.65918 0 -6.97949 -1.46582 -9.40332 -3.84082c-5.12012 -4.91016 -10.5107 -7 -16.1201 -2.44043l-8.58008 6.87988c-5.7998 4.53027 -7.16992 9.78027 -2.7998 15.3701c6.65918 8.75 19.0996 18.75 40.46 18.75c19.4697 0 44.4697 -10.5 44.4697 -39.5596
-c0 -37.7607 -45.0498 -46.1504 -48.3398 -56.4404h38.6797c4.41504 0 8 -3.58496 8 -8v-16c0 -4.41504 -3.58496 -8 -8 -8h-67.9102z" />
-    <glyph glyph-name="strikethrough" unicode="&#xf0cc;" 
-d="M496 224c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-480c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h102.29c-11.6797 16.5303 -19.7803 35.4697 -21.7803 56.3604c-0.385742 3.97559 -0.577148 7.88281 -0.577148 11.96
-c0 68.2266 55.3633 123.624 123.577 123.68h68c50.1416 0 93.5244 -28.7686 114.521 -70.7998l0.529297 -1c1.07324 -2.14844 1.70215 -4.57715 1.70215 -7.13965c0 -6.26562 -3.61035 -11.6953 -8.86133 -14.3203l-42.9404 -21.4707
-c-2.14941 -1.07324 -4.5791 -1.70312 -7.14355 -1.70312c-6.2627 0 -11.6895 3.60645 -14.3164 8.85352c-8.18652 16.374 -25.0859 27.5801 -44.623 27.5801h-0.0371094h-66.79c-24.0352 -0.000976562 -43.5479 -19.5059 -43.5479 -43.541
-c0 -19.5742 12.9414 -36.1494 30.7285 -41.6289l87.1699 -26.8301h202.1zM315.76 128h94.3906c2.6084 -7.7373 4.44434 -15.9834 5.33984 -24.3604c0.385742 -3.97559 0.577148 -7.88281 0.577148 -11.96c0 -68.2266 -55.3633 -123.624 -123.577 -123.68h-68
-c-50.1416 0 -93.5244 28.7686 -114.521 70.7998l-0.529297 1c-1.07324 2.14844 -1.70215 4.57715 -1.70215 7.13965c0 6.26562 3.61035 11.6953 8.86133 14.3203l42.9404 21.4707c2.14941 1.07324 4.5791 1.70312 7.14355 1.70312
-c6.2627 0 11.6895 -3.60645 14.3164 -8.85352c8.18652 -16.374 25.0859 -27.5801 44.623 -27.5801h0.0371094h66.79c24.0254 0.0224609 43.5273 19.5244 43.5498 43.5498c-0.0117188 15.3828 -8.07227 28.8594 -20.2402 36.4502z" />
-    <glyph glyph-name="underline" unicode="&#xf0cd;" horiz-adv-x="448" 
-d="M32 384c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h144c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-32v-160c0 -44.1533 35.8467 -80 80 -80s80 35.8467 80 80v160h-32c-8.83105 0 -16 7.16895 -16 16v32
-c0 8.83105 7.16895 16 16 16h144c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-32v-160c0 -88.2197 -71.7803 -160 -160 -160s-160 71.7803 -160 160v160h-32zM432 0c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-416
-c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h416z" />
-    <glyph glyph-name="table" unicode="&#xf0ce;" 
-d="M464 416c26.5098 0 48 -21.4902 48 -48v-352c0 -26.5098 -21.4902 -48 -48 -48h-416c-26.5098 0 -48 21.4902 -48 48v352c0 26.5098 21.4902 48 48 48h416zM224 32v96h-160v-96h160zM224 192v96h-160v-96h160zM448 32v96h-160v-96h160zM448 192v96h-160v-96h160z" />
-    <glyph glyph-name="magic" unicode="&#xf0d0;" 
-d="M224 352l-16 32l-32 16l32 16l16 32l16 -32l32 -16l-32 -16zM80 288l-26.6602 53.3301l-53.3398 26.6699l53.3398 26.6699l26.6602 53.3301l26.6602 -53.3301l53.3398 -26.6699l-53.3398 -26.6699zM432 160l26.6602 -53.3301l53.3398 -26.6699l-53.3398 -26.6699
-l-26.6602 -53.3301l-26.6602 53.3301l-53.3398 26.6699l53.3398 26.6699zM502.62 353.77c12.5 -12.4893 12.5 -32.7598 0 -45.2393l-363.14 -363.15c-6.25 -6.25 -14.4404 -9.37012 -22.6309 -9.37012c-8.17969 0 -16.3691 3.12012 -22.6191 9.37012l-84.8506 84.8506
-c-12.5 12.4893 -12.5 32.75 0 45.25l363.14 363.14c6.25 6.25977 14.4404 9.37988 22.6309 9.37988c8.18945 0 16.3799 -3.12012 22.6191 -9.37988zM359.45 244.54l86.5996 86.5996l-50.9102 50.9102l-86.5996 -86.5996z" />
-    <glyph glyph-name="truck" unicode="&#xf0d1;" horiz-adv-x="640" 
-d="M624 96c8.7998 0 16 -7.2002 16 -16v-32c0 -8.7998 -7.2002 -16 -16 -16h-48c0 -53 -43 -96 -96 -96s-96 43 -96 96h-128c0 -53 -43 -96 -96 -96s-96 43 -96 96h-16c-26.5 0 -48 21.5 -48 48v320c0 26.5 21.5 48 48 48h320c26.5 0 48 -21.5 48 -48v-48h44.0996
-c12.7002 0 24.9004 -5.09961 33.9004 -14.0996l99.9004 -99.9004c9 -9 14.0996 -21.2002 14.0996 -33.9004v-108.1h16zM160 -16c26.5 0 48 21.5 48 48s-21.5 48 -48 48s-48 -21.5 -48 -48s21.5 -48 48 -48zM480 -16c26.5 0 48 21.5 48 48s-21.5 48 -48 48s-48 -21.5 -48 -48
-s21.5 -48 48 -48zM560 192v12.0996l-99.9004 99.9004h-44.0996v-112h144z" />
-    <glyph glyph-name="money-bill" unicode="&#xf0d6;" horiz-adv-x="640" 
-d="M608 384c17.6699 0 32 -14.3301 32 -32v-320c0 -17.6699 -14.3301 -32 -32 -32h-576c-17.6699 0 -32 14.3301 -32 32v320c0 17.6699 14.3301 32 32 32h576zM48 48h64c0 35.3496 -28.6504 64 -64 64v-64zM48 272c35.3496 0 64 28.6504 64 64h-64v-64zM320 96
-c44.1699 0 80 42.9697 80 96c0 53.0195 -35.8203 96 -80 96s-80 -42.9805 -80 -96c0 -53.0098 35.8096 -96 80 -96zM592 48v64c-35.3496 0 -64 -28.6504 -64 -64h64zM592 272v64h-64c0 -35.3496 28.6504 -64 64 -64z" />
-    <glyph glyph-name="caret-down" unicode="&#xf0d7;" horiz-adv-x="320" 
-d="M31.2998 256h257.3c17.8008 0 26.7002 -21.5 14.1006 -34.0996l-128.601 -128.7c-7.7998 -7.7998 -20.5 -7.7998 -28.2998 0l-128.6 128.7c-12.6006 12.5996 -3.7002 34.0996 14.0996 34.0996z" />
-    <glyph glyph-name="caret-up" unicode="&#xf0d8;" horiz-adv-x="320" 
-d="M288.662 96h-257.324c-17.8184 0 -26.7412 21.543 -14.1416 34.1416l128.662 128.662c7.80957 7.81055 20.4736 7.81055 28.2832 0l128.662 -128.662c12.6006 -12.5986 3.67676 -34.1416 -14.1416 -34.1416z" />
-    <glyph glyph-name="caret-left" unicode="&#xf0d9;" horiz-adv-x="192" 
-d="M192 320.662v-257.324c0 -17.8184 -21.543 -26.7412 -34.1416 -14.1416l-128.662 128.662c-7.81055 7.80957 -7.81055 20.4736 0 28.2832l128.662 128.662c12.5986 12.6006 34.1416 3.67676 34.1416 -14.1416z" />
-    <glyph glyph-name="caret-right" unicode="&#xf0da;" horiz-adv-x="192" 
-d="M0 63.3379v257.324c0 17.8184 21.543 26.7412 34.1416 14.1416l128.662 -128.662c7.81055 -7.80957 7.81055 -20.4736 0 -28.2832l-128.662 -128.662c-12.5986 -12.6006 -34.1416 -3.67676 -34.1416 14.1416z" />
-    <glyph glyph-name="columns" unicode="&#xf0db;" 
-d="M464 416c26.5098 0 48 -21.4902 48 -48v-352c0 -26.5098 -21.4902 -48 -48 -48h-416c-26.5098 0 -48 21.4902 -48 48v352c0 26.5098 21.4902 48 48 48h416zM224 32v256h-160v-256h160zM448 32v256h-160v-256h160z" />
-    <glyph glyph-name="sort" unicode="&#xf0dc;" horiz-adv-x="320" 
-d="M41 160h238c21.4004 0 32.0996 -25.9004 17 -41l-119 -119c-9.40039 -9.40039 -24.5996 -9.40039 -33.9004 0l-119.1 119c-15.0996 15.0996 -4.40039 41 17 41zM296 265c15.0996 -15.0996 4.40039 -41 -17 -41h-238c-21.4004 0 -32.0996 25.9004 -17 41l119.1 119
-c9.30078 9.40039 24.5 9.40039 33.9004 0z" />
-    <glyph glyph-name="sort-down" unicode="&#xf0dd;" horiz-adv-x="320" 
-d="M41 160h238c21.4004 0 32.0996 -25.9004 17 -41l-119 -119c-9.40039 -9.40039 -24.5996 -9.40039 -33.9004 0l-119.1 119c-15.0996 15.0996 -4.40039 41 17 41z" />
-    <glyph glyph-name="sort-up" unicode="&#xf0de;" horiz-adv-x="320" 
-d="M279 224h-238c-21.4004 0 -32.0996 25.9004 -17 41l119 119c9.40039 9.40039 24.5996 9.40039 33.9004 0l119 -119c15.1992 -15.0996 4.5 -41 -16.9004 -41z" />
-    <glyph glyph-name="envelope" unicode="&#xf0e0;" 
-d="M502.3 257.2c3.90039 3.09961 9.7002 0.200195 9.7002 -4.7002v-204.5c0 -26.5 -21.5 -48 -48 -48h-416c-26.5 0 -48 21.5 -48 48v204.4c0 5 5.7002 7.7998 9.7002 4.69922c22.3994 -17.3994 52.0996 -39.5 154.1 -113.6
-c21.1006 -15.4004 56.7002 -47.7998 92.2002 -47.5996c35.7002 -0.300781 72 32.7998 92.2998 47.5996c102 74.0996 131.601 96.2998 154 113.7zM256 128c-23.2002 -0.400391 -56.5996 29.2002 -73.4004 41.4004c-132.699 96.2998 -142.8 104.8 -173.399 128.699
-c-5.7998 4.60059 -9.2002 11.5 -9.2002 18.9004v19c0 26.5 21.5 48 48 48h416c26.5 0 48 -21.5 48 -48v-19c0 -7.40039 -3.40039 -14.4004 -9.2002 -18.9004c-30.5996 -24 -40.7002 -32.3994 -173.399 -128.699c-16.8008 -12.2002 -50.2002 -41.8008 -73.4004 -41.4004z" />
-    <glyph glyph-name="undo" unicode="&#xf0e2;" 
-d="M212.333 223.667h-200.333c-6.62695 0 -12 5.37305 -12 12v200.333c0 6.62695 5.37305 12 12 12h48c6.62695 0 12 -5.37305 12 -12v-78.1123c45.7734 50.833 112.26 82.6426 186.175 82.1055c136.906 -0.994141 246.448 -111.623 246.157 -248.532
-c-0.291016 -136.719 -111.212 -247.461 -247.999 -247.461c-64.0889 0 -122.496 24.3135 -166.51 64.2148c-5.09961 4.62207 -5.33398 12.5537 -0.466797 17.4199l33.9668 33.9668c4.47363 4.47461 11.6621 4.71777 16.4004 0.525391
-c31.0361 -27.4629 71.8564 -44.127 116.609 -44.127c97.2676 0 176 78.7158 176 176c0 97.2666 -78.7158 176 -176 176c-58.4961 0 -110.28 -28.4756 -142.274 -72.333h98.2744c6.62695 0 12 -5.37305 12 -12v-48c0 -6.62695 -5.37305 -12 -12 -12z" />
-    <glyph glyph-name="gavel" unicode="&#xf0e3;" 
-d="M504.971 248.638c9.37207 -9.37305 9.37207 -24.5684 0 -33.9404l-124.451 -124.451c-9.37109 -9.37305 -24.5674 -9.37305 -33.9404 0l-22.627 22.627c-9.37305 9.37207 -9.37305 24.5684 0 33.9414l5.65723 5.65625l-39.5986 39.5986l-81.04 -81.04l5.65723 -5.65723
-c12.4971 -12.4971 12.4971 -32.7578 0 -45.2549l-114.745 -114.745c-12.4971 -12.4971 -32.7578 -12.4971 -45.2549 0l-45.2549 45.2549c-12.4971 12.4971 -12.4971 32.7578 0 45.2549l114.744 114.746c12.4971 12.4971 32.7578 12.4971 45.2549 0l5.65723 -5.65723
-l81.04 81.04l-39.5986 39.5986l-5.65625 -5.65723c-9.37207 -9.37305 -24.5684 -9.37305 -33.9414 0l-22.627 22.627c-9.37305 9.37207 -9.37305 24.5684 0 33.9404l124.451 124.451c9.37207 9.37305 24.5674 9.37305 33.9404 0l22.627 -22.6279
-c9.37305 -9.37207 9.37305 -24.5674 0 -33.9404l-5.65625 -5.65723l113.138 -113.137l5.65723 5.65625c9.37207 9.37305 24.5674 9.37305 33.9404 0z" />
-    <glyph glyph-name="bolt" unicode="&#xf0e7;" horiz-adv-x="320" 
-d="M296 288c18.5 0 30 -20.0996 20.7002 -36l-176 -304c-4.40039 -7.59961 -12.4004 -12 -20.7998 -12c-15.3008 0 -26.9004 14.2998 -23.3008 29.5l46.1006 194.5h-118.7c-14.5 0 -25.7002 12.7998 -23.7998 27.2002l32 240
-c1.59961 11.8994 11.7998 20.7998 23.7998 20.7998h144c15.7002 0 27.2002 -15 23.2002 -30.2002l-42.6006 -129.8h115.4z" />
-    <glyph glyph-name="sitemap" unicode="&#xf0e8;" horiz-adv-x="640" 
-d="M128 96c17.6699 0 32 -14.3301 32 -32v-96c0 -17.6699 -14.3301 -32 -32 -32h-96c-17.6699 0 -32 14.3301 -32 32v96c0 17.6699 14.3301 32 32 32h96zM104 176v-48h-48v57.5898c0 21.1797 17.2305 38.4102 38.4102 38.4102h201.59v64h-40c-17.6699 0 -32 14.3301 -32 32
-v96c0 17.6699 14.3301 32 32 32h128c17.6699 0 32 -14.3301 32 -32v-96c0 -17.6699 -14.3301 -32 -32 -32h-40v-64h201.59c21.1797 0 38.4102 -17.2402 38.4102 -38.4102v-57.5898h-48v48h-192v-48h-48v48h-192zM368 96c17.6699 0 32 -14.3301 32 -32v-96
-c0 -17.6699 -14.3301 -32 -32 -32h-96c-17.6699 0 -32 14.3301 -32 32v96c0 17.6699 14.3301 32 32 32h96zM608 96c17.6699 0 32 -14.3301 32 -32v-96c0 -17.6699 -14.3301 -32 -32 -32h-96c-17.6699 0 -32 14.3301 -32 32v96c0 17.6699 14.3301 32 32 32h96z" />
-    <glyph glyph-name="umbrella" unicode="&#xf0e9;" horiz-adv-x="576" 
-d="M575.7 167.2c2.2002 -10.1006 -8.40039 -21.4004 -18.7002 -11.4004c-51.5 54.4004 -107.6 52.5 -158.6 -37c-5.30078 -9.5 -14.9004 -8.59961 -19.7002 0c-2.5 4.40039 -32.2002 73.2002 -90.7002 73.2002c-45.7998 0 -70.5 -37.7998 -90.7002 -73.2002
-c-4.7998 -8.59961 -14.3994 -9.5 -19.7002 0c-50.8994 89.4004 -106.6 92 -158.6 37c-10.2002 -9.89941 -20.9004 1.2998 -18.7002 11.4004c29.2002 136.3 138 218.2 255.7 230.899v17.9004c0 17.7002 14.2998 32 32 32s32 -14.2998 32 -32v-17.9004
-c117.3 -12.6992 227.1 -94.5996 255.7 -230.899zM256 146.3c9.59961 8.90039 19.7002 13.6006 32 13.7002c12.2002 0 22.9004 -5.7002 32 -13.5996v-130.301c0 -44.0996 -35.9004 -80 -80 -80c-33.7998 0 -64.2002 21.4004 -75.4004 53.3008
-c-5.89941 16.5996 2.80078 34.8994 19.5 40.7998c16.7002 5.89941 34.9004 -2.7998 40.8008 -19.5c1.89941 -5.40039 7.2998 -10.7002 15.0996 -10.7002c8.7998 0 16 7.2002 16 16v130.3z" />
-    <glyph glyph-name="paste" unicode="&#xf0ea;" horiz-adv-x="448" 
-d="M128 264v-232h-104c-13.2549 0 -24 10.7451 -24 24v336c0 13.2549 10.7451 24 24 24h80.6104c11.084 19.1104 31.7529 32 55.3896 32s44.3057 -12.8896 55.3896 -32h80.6104c13.2549 0 24 -10.7451 24 -24v-72h-136c-30.8779 0 -56 -25.1211 -56 -56zM160 408
-c-13.2549 0 -24 -10.7451 -24 -24s10.7451 -24 24 -24s24 10.7451 24 24s-10.7451 24 -24 24zM344 160h104v-200c0 -13.2549 -10.7451 -24 -24 -24h-240c-13.2549 0 -24 10.7451 -24 24v304c0 13.2549 10.7451 24 24 24h136v-104c0 -13.2002 10.7998 -24 24 -24z
-M448 198.059v-6.05859h-96v96h6.05859c6.62305 0 12.626 -2.68457 16.9707 -7.0293l65.9404 -65.9404c4.34473 -4.34473 7.03027 -10.3477 7.03027 -16.9717z" />
-    <glyph glyph-name="lightbulb" unicode="&#xf0eb;" horiz-adv-x="352" 
-d="M96.0596 -6.34961l-0.0498047 38.3496h159.98l-0.0400391 -38.3496c-0.0078125 -6.52637 -1.99219 -12.6309 -5.36035 -17.6904l-17.0898 -25.6904c-5.73242 -8.62305 -15.5176 -14.2793 -26.6396 -14.2793h-61.71c-11.123 0 -20.9072 5.65625 -26.6406 14.2793
-l-17.0898 25.6904c-3.49023 5.24023 -5.34961 11.4004 -5.36035 17.6904zM0 272c0 93.0303 73.4404 175.69 175.45 176c97.46 0.299805 176.55 -78.6104 176.55 -176c0 -44.3701 -16.4502 -84.8496 -43.5596 -115.78c-16.5205 -18.8496 -42.3604 -58.2295 -52.21 -91.4502
-c-0.0400391 -0.269531 -0.0703125 -0.519531 -0.110352 -0.779297h-160.24c-0.0400391 0.259766 -0.0703125 0.519531 -0.110352 0.779297c-9.84961 33.2207 -35.6895 72.6006 -52.21 91.4502c-27.1094 30.9307 -43.5596 71.4102 -43.5596 115.78zM176 352
-c8.83984 0 16 7.16016 16 16s-7.16016 16 -16 16c-61.7598 0 -112 -50.2402 -112 -112c0 -8.83984 7.16016 -16 16 -16s16 7.16016 16 16c0 44.1104 35.8896 80 80 80z" />
-    <glyph glyph-name="user-md" unicode="&#xf0f0;" horiz-adv-x="448" 
-d="M224 192c-70.7002 0 -128 57.2998 -128 128s57.2998 128 128 128s128 -57.2998 128 -128s-57.2998 -128 -128 -128zM104 24c0 13.2998 10.7002 24 24 24s24 -10.7002 24 -24s-10.7002 -24 -24 -24s-24 10.7002 -24 24zM320 159.4c71.2002 -3.5 128 -61.8008 128 -133.801
-v-44.7998c0 -24.7002 -20.0996 -44.7998 -44.7998 -44.7998h-358.4c-24.7002 0 -44.7998 20.0996 -44.7998 44.7998v44.7998c0 66.6006 48.5 121.4 112.1 132.101v-80.4004c-23.0996 -6.89941 -40 -28.0996 -40 -53.3994c0 -30.9004 25.1006 -56 56 -56
-c30.9004 0 56 25.0996 56 56c0 25.2998 -16.8994 46.5 -40 53.3994v81.6006c7.7002 -1 15.2002 -2.60059 22.6006 -5.2002c18 -6.2998 37.2998 -9.7998 57.3994 -9.7998c20.1006 0 39.4004 3.5 57.4004 9.7998c2.2002 0.799805 4.40039 1.2002 6.59961 1.89941v-45.1992
-c-36.5 -7.5 -64 -39.8008 -64 -78.4004v-43.7998c0 -8.10059 5.90039 -14.7998 13.8008 -15.9004l31.1992 -4.2002c4.30078 -0.799805 8.5 2 9.40039 6.30078l3.09961 15.6992c0.800781 4.30078 -2 8.5 -6.2998 9.40039l-19.2998 3.90039v26.6992
-c0 67 96 64.7002 96 1.90039v-28.5l-19.2998 -3.90039c-4.40039 -0.799805 -7.2002 -5.09961 -6.2998 -9.39941l3.09961 -15.7002c0.900391 -4.40039 5.09961 -7.2002 9.40039 -6.2998l32.1992 6.39941c7.5 1.5 12.9004 8.10059 12.9004 15.7002v41.7002
-c0 38.5996 -27.5 71 -64 78.4004v49z" />
-    <glyph glyph-name="stethoscope" unicode="&#xf0f1;" 
-d="M447.1 336c35.7002 0.5 64.9004 -28.2998 64.9004 -64c0 -23.7002 -12.9004 -44.2998 -32 -55.4004v-112.6c0 -92.5996 -79 -168 -176 -168c-95.4004 0 -173.3 72.7998 -175.9 163.2c-73 14.7998 -128.1 79.5 -128.1 156.8v155.4c0 11.5 8.09961 21.2998 19.2998 23.5996
-l62.7998 12.4004c13 2.59961 25.6006 -5.80078 28.2002 -18.8008l3.10059 -15.6992c2.59961 -13 -5.80078 -25.6006 -18.8008 -28.2002l-30.6992 -6.10059v-122.5c0 -53.2998 43.5 -96.5 96.8994 -96c52.9004 0.5 95.1006 44.3008 95.1006 97.2002v121.4l-30.7002 6.09961
-c-13 2.60059 -21.4004 15.2002 -18.7998 28.2002l3.19922 15.7002c2.60059 13 15.2002 21.3994 28.2002 18.7998l62.9004 -12.5996c11.2002 -2.2002 19.2998 -12.1006 19.2998 -23.5v-155.4c0 -77.2002 -55 -141.8 -127.8 -156.8
-c2.7002 -55.1006 51.8994 -99.2002 111.899 -99.2002c61.8008 0 112 46.7002 112 104v112.6c-19.5 11.2002 -32.5 32.5 -32 56.8008c0.700195 34.1992 28.8008 62.0996 63 62.5996zM448 256c8.7998 0 16 7.2002 16 16s-7.2002 16 -16 16s-16 -7.2002 -16 -16
-s7.2002 -16 16 -16z" />
-    <glyph glyph-name="suitcase" unicode="&#xf0f2;" 
-d="M128 -32v400c0 26.5 21.5 48 48 48h160c26.5 0 48 -21.5 48 -48v-400h-256zM192 352v-32h128v32h-128zM512 272v-256c0 -26.5 -21.5 -48 -48 -48h-48v352h48c26.5 0 48 -21.5 48 -48zM96 -32h-48c-26.5 0 -48 21.5 -48 48v256c0 26.5 21.5 48 48 48h48v-352z" />
-    <glyph glyph-name="bell" unicode="&#xf0f3;" horiz-adv-x="448" 
-d="M224 -64c-35.3203 0 -63.9697 28.6504 -63.9697 64h127.939c0 -35.3496 -28.6494 -64 -63.9697 -64zM439.39 85.71c6 -6.44043 8.66016 -14.1602 8.61035 -21.71c-0.0996094 -16.4004 -12.9805 -32 -32.0996 -32h-383.801c-19.1191 0 -31.9893 15.5996 -32.0996 32
-c-0.0498047 7.5498 2.61035 15.2598 8.61035 21.71c19.3193 20.7598 55.4697 51.9902 55.4697 154.29c0 77.7002 54.4795 139.9 127.939 155.16v20.8398c0 17.6699 14.3203 32 31.9805 32s31.9805 -14.3301 31.9805 -32v-20.8398
-c73.46 -15.2598 127.939 -77.46 127.939 -155.16c0 -102.3 36.1504 -133.53 55.4697 -154.29z" />
-    <glyph glyph-name="coffee" unicode="&#xf0f4;" horiz-adv-x="640" 
-d="M192 64c-53 0 -96 43 -96 96v232c0 13.2998 10.7002 24 24 24h392c70.5996 0 128 -57.4004 128 -128s-57.4004 -128 -128 -128h-32c0 -53 -43 -96 -96 -96h-192zM512 352h-32v-128h32c35.2998 0 64 28.7002 64 64s-28.7002 64 -64 64zM559.7 -32h-511.4
-c-47.5996 0 -61 64 -36 64h583.3c25 0 11.8008 -64 -35.8994 -64z" />
-    <glyph glyph-name="hospital" unicode="&#xf0f8;" horiz-adv-x="448" 
-d="M448 -44v-20h-448v20c0 6.62695 5.37305 12 12 12h20v360c0 13.2549 10.7451 24 24 24h88v72c0 13.2549 10.7451 24 24 24h112c13.2549 0 24 -10.7451 24 -24v-72h88c13.2549 0 24 -10.7451 24 -24v-360h20c6.62695 0 12 -5.37305 12 -12zM308 256h-40
-c-6.62695 0 -12 -5.37305 -12 -12v-40c0 -6.62695 5.37305 -12 12 -12h40c6.62695 0 12 5.37305 12 12v40c0 6.62695 -5.37305 12 -12 12zM140 192h40c6.62695 0 12 5.37305 12 12v40c0 6.62695 -5.37305 12 -12 12h-40c-6.62695 0 -12 -5.37305 -12 -12v-40
-c0 -6.62695 5.37305 -12 12 -12zM244 64h-40c-6.62695 0 -12 -5.37305 -12 -12v-84h64v84c0 6.62695 -5.37305 12 -12 12zM308 160h-40c-6.62695 0 -12 -5.37305 -12 -12v-40c0 -6.62695 5.37305 -12 12 -12h40c6.62695 0 12 5.37305 12 12v40c0 6.62695 -5.37305 12 -12 12
-zM192 148c0 6.62695 -5.37305 12 -12 12h-40c-6.62695 0 -12 -5.37305 -12 -12v-40c0 -6.62695 5.37305 -12 12 -12h40c6.62695 0 12 5.37305 12 12v40zM182 352h26v-26c0 -3.31152 2.68848 -6 6 -6h20c3.31152 0 6 2.68848 6 6v26h26c3.31152 0 6 2.68848 6 6v20
-c0 3.31152 -2.68848 6 -6 6h-26v26c0 3.31152 -2.68848 6 -6 6h-20c-3.31152 0 -6 -2.68848 -6 -6v-26h-26c-3.31152 0 -6 -2.68848 -6 -6v-20c0 -3.31152 2.68848 -6 6 -6z" />
-    <glyph glyph-name="ambulance" unicode="&#xf0f9;" horiz-adv-x="640" 
-d="M624 96c8.7998 0 16 -7.2002 16 -16v-32c0 -8.7998 -7.2002 -16 -16 -16h-48c0 -53 -43 -96 -96 -96s-96 43 -96 96h-128c0 -53 -43 -96 -96 -96s-96 43 -96 96h-16c-26.5 0 -48 21.5 -48 48v320c0 26.5 21.5 48 48 48h320c26.5 0 48 -21.5 48 -48v-48h44.0996
-c12.7002 0 24.9004 -5.09961 33.9004 -14.0996l99.9004 -99.9004c9 -9 14.0996 -21.2002 14.0996 -33.9004v-108.1h16zM160 -16c26.5 0 48 21.5 48 48s-21.5 48 -48 48s-48 -21.5 -48 -48s21.5 -48 48 -48zM304 232v48c0 4.40039 -3.59961 8 -8 8h-56v56
-c0 4.40039 -3.59961 8 -8 8h-48c-4.40039 0 -8 -3.59961 -8 -8v-56h-56c-4.40039 0 -8 -3.59961 -8 -8v-48c0 -4.40039 3.59961 -8 8 -8h56v-56c0 -4.40039 3.59961 -8 8 -8h48c4.40039 0 8 3.59961 8 8v56h56c4.40039 0 8 3.59961 8 8zM480 -16c26.5 0 48 21.5 48 48
-s-21.5 48 -48 48s-48 -21.5 -48 -48s21.5 -48 48 -48zM560 192v12.0996l-99.9004 99.9004h-44.0996v-112h144z" />
-    <glyph glyph-name="medkit" unicode="&#xf0fa;" 
-d="M96 -32v352h32v48c0 26.5098 21.4902 48 48 48h160c26.5098 0 48 -21.4902 48 -48v-48h32v-352h-320zM192 352v-32h128v32h-128zM512 272v-256c0 -26.5098 -21.4902 -48 -48 -48h-16v352h16c26.5098 0 48 -21.4902 48 -48zM64 -32h-16c-26.5098 0 -48 21.4902 -48 48v256
-c0 26.5098 21.4902 48 48 48h16v-352zM352 176c0 8.83691 -7.16309 16 -16 16h-48v48c0 8.83691 -7.16309 16 -16 16h-32c-8.83691 0 -16 -7.16309 -16 -16v-48h-48c-8.83691 0 -16 -7.16309 -16 -16v-32c0 -8.83691 7.16309 -16 16 -16h48v-48
-c0 -8.83691 7.16309 -16 16 -16h32c8.83691 0 16 7.16309 16 16v48h48c8.83691 0 16 7.16309 16 16v32z" />
-    <glyph glyph-name="fighter-jet" unicode="&#xf0fb;" horiz-adv-x="640" 
-d="M544 224c96 -21.333 96 -26.583 96 -32s0 -10.667 -96 -32l-128 -16l-48 -16h-24l-116.842 -148h39.5088c11.666 0 21.333 -2.625 21.333 -6s-9.66602 -6 -21.333 -6h-114.667v12h16v164h-48l-66.666 -80h-34.667l-10.667 10.667v69.333h8v16h48v2.66699l-64 8v42.667
-l64 8v2.66602h-48v16h-8v69.333l10.667 10.667h34.666l66.667 -80h48v164h-16v12h114.667c11.666 0 21.333 -2.625 21.333 -6s-9.66699 -6 -21.333 -6h-39.5088l116.842 -148h24l48 -16z" />
-    <glyph glyph-name="beer" unicode="&#xf0fc;" horiz-adv-x="448" 
-d="M368 352c44.1123 0 80 -35.8877 80 -80v-128.86c0 -31.5273 -18.6035 -60.2031 -47.3936 -73.0527l-80.6064 -35.9766v-42.1104c0 -13.2549 -10.7451 -24 -24 -24h-272c-13.2549 0 -24 10.7451 -24 24v400c0 13.2549 10.7451 24 24 24h272c13.2549 0 24 -10.7451 24 -24
-v-40h48zM384 143.14v128.86c0 8.82227 -7.17773 16 -16 16h-48v-183.805l54.5215 24.334c5.58789 2.49902 9.47363 8.09863 9.47852 14.6104zM208 64c8.83594 0 16 7.16406 16 16v224c0 8.83594 -7.16406 16 -16 16s-16 -7.16406 -16 -16v-224
-c0 -8.83594 7.16406 -16 16 -16zM112 64c8.83594 0 16 7.16406 16 16v224c0 8.83594 -7.16406 16 -16 16s-16 -7.16406 -16 -16v-224c0 -8.83594 7.16406 -16 16 -16z" />
-    <glyph glyph-name="h-square" unicode="&#xf0fd;" horiz-adv-x="448" 
-d="M448 368v-352c0 -26.5098 -21.4902 -48 -48 -48h-352c-26.5098 0 -48 21.4902 -48 48v352c0 26.5098 21.4902 48 48 48h352c26.5098 0 48 -21.4902 48 -48zM336 320h-32c-8.83691 0 -16 -7.16309 -16 -16v-80h-128v80c0 8.83691 -7.16309 16 -16 16h-32
-c-8.83691 0 -16 -7.16309 -16 -16v-224c0 -8.83691 7.16309 -16 16 -16h32c8.83691 0 16 7.16309 16 16v80h128v-80c0 -8.83691 7.16309 -16 16 -16h32c8.83691 0 16 7.16309 16 16v224c0 8.83691 -7.16309 16 -16 16z" />
-    <glyph glyph-name="plus-square" unicode="&#xf0fe;" horiz-adv-x="448" 
-d="M400 416c26.5 0 48 -21.5 48 -48v-352c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h352zM368 164v56c0 6.59961 -5.40039 12 -12 12h-92v92c0 6.59961 -5.40039 12 -12 12h-56c-6.59961 0 -12 -5.40039 -12 -12v-92h-92
-c-6.59961 0 -12 -5.40039 -12 -12v-56c0 -6.59961 5.40039 -12 12 -12h92v-92c0 -6.59961 5.40039 -12 12 -12h56c6.59961 0 12 5.40039 12 12v92h92c6.59961 0 12 5.40039 12 12z" />
-    <glyph glyph-name="angle-double-left" unicode="&#xf100;" horiz-adv-x="448" 
-d="M223.7 209l136 136c9.39941 9.40039 24.5996 9.40039 33.8994 0l22.6006 -22.5996c9.39941 -9.40039 9.39941 -24.6006 0 -33.9004l-96.2998 -96.5l96.3994 -96.4004c9.40039 -9.39941 9.40039 -24.5996 0 -33.8994l-22.5996 -22.7002
-c-9.40039 -9.40039 -24.6006 -9.40039 -33.9004 0l-136 136c-9.5 9.40039 -9.5 24.5996 -0.0996094 34zM31.7002 175c-9.40039 9.40039 -9.40039 24.5996 0.0996094 34l136 136c9.2998 9.40039 24.5 9.40039 33.9004 0l22.5996 -22.7002
-c9.40039 -9.2998 9.40039 -24.5 0 -33.8994l-96.3994 -96.4004l96.2998 -96.5c9.39941 -9.2998 9.39941 -24.5 0 -33.9004l-22.6006 -22.5996c-9.2998 -9.40039 -24.5 -9.40039 -33.8994 0z" />
-    <glyph glyph-name="angle-double-right" unicode="&#xf101;" horiz-adv-x="448" 
-d="M224.3 175l-136 -136c-9.39941 -9.40039 -24.5996 -9.40039 -33.8994 0l-22.6006 22.5996c-9.39941 9.40039 -9.39941 24.6006 0 33.9004l96.4004 96.4004l-96.4004 96.3994c-9.39941 9.40039 -9.39941 24.6006 0 33.9004l22.5 22.7998
-c9.40039 9.40039 24.6006 9.40039 33.9004 0l136 -136c9.5 -9.40039 9.5 -24.5996 0.0996094 -34zM416.3 209c9.40039 -9.40039 9.40039 -24.5996 0 -33.7998l-136 -136c-9.2998 -9.40039 -24.5 -9.40039 -33.8994 0l-22.6006 22.5996
-c-9.39941 9.2998 -9.39941 24.5 0 33.9004l96.4004 96.3994l-96.4004 96.4004c-9.39941 9.2998 -9.39941 24.5 0 33.9004l22.6006 22.5996c9.2998 9.40039 24.5 9.40039 33.8994 0z" />
-    <glyph glyph-name="angle-double-up" unicode="&#xf102;" horiz-adv-x="320" 
-d="M177 192.3l136 -136c9.40039 -9.39941 9.40039 -24.5996 0 -33.8994l-22.5996 -22.6006c-9.40039 -9.39941 -24.6006 -9.39941 -33.9004 0l-96.5 96.2998l-96.4004 -96.3994c-9.39941 -9.40039 -24.5996 -9.40039 -33.8994 0l-22.7002 22.5996
-c-9.40039 9.40039 -9.40039 24.6006 0 33.9004l136 136c9.40039 9.5 24.5996 9.5 34 0.0996094zM143 384.3c9.40039 9.40039 24.5996 9.40039 33.7998 0l136 -136c9.40039 -9.2998 9.40039 -24.5 0 -33.8994l-22.5996 -22.6006c-9.2998 -9.39941 -24.5 -9.39941 -33.9004 0
-l-96.3994 96.4004l-96.4004 -96.4004c-9.2998 -9.39941 -24.5 -9.39941 -33.9004 0l-22.5996 22.6006c-9.40039 9.2998 -9.40039 24.5 0 33.8994z" />
-    <glyph glyph-name="angle-double-down" unicode="&#xf103;" horiz-adv-x="320" 
-d="M143 191.7l-136 136c-9.40039 9.39941 -9.40039 24.5996 0 33.8994l22.5996 22.6006c9.40039 9.39941 24.6006 9.39941 33.9004 0l96.4004 -96.4004l96.3994 96.4004c9.40039 9.39941 24.6006 9.39941 33.9004 0l22.7998 -22.5
-c9.40039 -9.40039 9.40039 -24.6006 0 -33.9004l-136 -136c-9.40039 -9.5 -24.5996 -9.5 -34 -0.0996094zM177 -0.299805c-9.40039 -9.40039 -24.5996 -9.40039 -34 0.0996094l-136 136c-9.40039 9.2998 -9.40039 24.5 0 33.9004l22.7002 22.5996
-c9.2998 9.40039 24.5 9.40039 33.8994 0l96.4004 -96.3994l96.5 96.2998c9.2998 9.39941 24.5 9.39941 33.9004 0l22.5996 -22.6006c9.40039 -9.2998 9.40039 -24.5 0 -33.8994z" />
-    <glyph glyph-name="angle-left" unicode="&#xf104;" horiz-adv-x="256" 
-d="M31.7002 209l136 136c9.39941 9.40039 24.5996 9.40039 33.8994 0l22.6006 -22.5996c9.39941 -9.40039 9.39941 -24.6006 0 -33.9004l-96.2998 -96.5l96.3994 -96.4004c9.40039 -9.39941 9.40039 -24.5996 0 -33.8994l-22.5996 -22.7002
-c-9.40039 -9.40039 -24.6006 -9.40039 -33.9004 0l-136 136c-9.5 9.40039 -9.5 24.5996 -0.0996094 34z" />
-    <glyph glyph-name="angle-right" unicode="&#xf105;" horiz-adv-x="256" 
-d="M224.3 175l-136 -136c-9.39941 -9.40039 -24.5996 -9.40039 -33.8994 0l-22.6006 22.5996c-9.39941 9.40039 -9.39941 24.6006 0 33.9004l96.4004 96.4004l-96.4004 96.3994c-9.39941 9.40039 -9.39941 24.6006 0 33.9004l22.5 22.7998
-c9.40039 9.40039 24.6006 9.40039 33.9004 0l136 -136c9.5 -9.40039 9.5 -24.5996 0.0996094 -34z" />
-    <glyph glyph-name="angle-up" unicode="&#xf106;" horiz-adv-x="320" 
-d="M177 288.3l136 -136c9.40039 -9.39941 9.40039 -24.5996 0 -33.8994l-22.5996 -22.6006c-9.40039 -9.39941 -24.6006 -9.39941 -33.9004 0l-96.5 96.2998l-96.4004 -96.3994c-9.39941 -9.40039 -24.5996 -9.40039 -33.8994 0l-22.7002 22.5996
-c-9.40039 9.40039 -9.40039 24.6006 0 33.9004l136 136c9.40039 9.5 24.5996 9.5 34 0.0996094z" />
-    <glyph glyph-name="angle-down" unicode="&#xf107;" horiz-adv-x="320" 
-d="M143 95.7002l-136 136c-9.40039 9.39941 -9.40039 24.5996 0 33.8994l22.5996 22.6006c9.40039 9.39941 24.6006 9.39941 33.9004 0l96.4004 -96.4004l96.3994 96.4004c9.40039 9.39941 24.6006 9.39941 33.9004 0l22.5996 -22.6006
-c9.40039 -9.39941 9.40039 -24.5996 0 -33.8994l-136 -136c-9.2002 -9.40039 -24.3994 -9.40039 -33.7998 0z" />
-    <glyph glyph-name="desktop" unicode="&#xf108;" horiz-adv-x="576" 
-d="M528 448c26.5 0 48 -21.5 48 -48v-320c0 -26.5 -21.5 -48 -48 -48h-192l16 -48h72c13.2998 0 24 -10.7002 24 -24s-10.7002 -24 -24 -24h-272c-13.2998 0 -24 10.7002 -24 24s10.7002 24 24 24h72l16 48h-192c-26.5 0 -48 21.5 -48 48v320c0 26.5 21.5 48 48 48h480z
-M512 96v288h-448v-288h448z" />
-    <glyph glyph-name="laptop" unicode="&#xf109;" horiz-adv-x="640" 
-d="M624 32c8.7998 0 16 -7.2002 16 -16v-16c0 -35.2002 -28.7998 -64 -64 -64h-512c-35.2002 0 -64 28.7998 -64 64v16c0 8.7998 7.2002 16 16 16h239.23c-0.25 -14.5303 14.0791 -32 32.7695 -32h60.7998c18.0303 0 32 12.1904 32.7402 32h242.46zM576 400v-336h-512v336
-c0 26.4004 21.5996 48 48 48h416c26.4004 0 48 -21.5996 48 -48zM512 128v256h-384v-256h384z" />
-    <glyph glyph-name="tablet" unicode="&#xf10a;" horiz-adv-x="448" 
-d="M400 448c26.5 0 48 -21.5 48 -48v-416c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v416c0 26.5 21.5 48 48 48h352zM224 -32c17.7002 0 32 14.2998 32 32s-14.2998 32 -32 32s-32 -14.2998 -32 -32s14.2998 -32 32 -32z" />
-    <glyph glyph-name="mobile" unicode="&#xf10b;" horiz-adv-x="320" 
-d="M272 448c26.5 0 48 -21.5 48 -48v-416c0 -26.5 -21.5 -48 -48 -48h-224c-26.5 0 -48 21.5 -48 48v416c0 26.5 21.5 48 48 48h224zM160 -32c17.7002 0 32 14.2998 32 32s-14.2998 32 -32 32s-32 -14.2998 -32 -32s14.2998 -32 32 -32z" />
-    <glyph glyph-name="quote-left" unicode="&#xf10d;" 
-d="M464 192c26.5 0 48 -21.5 48 -48v-128c0 -26.5 -21.5 -48 -48 -48h-128c-26.5 0 -48 21.5 -48 48v240c0 88.4004 71.5996 160 160 160h8c13.2998 0 24 -10.7002 24 -24v-48c0 -13.2998 -10.7002 -24 -24 -24h-8c-35.2998 0 -64 -28.7002 -64 -64v-64h80zM176 192
-c26.5 0 48 -21.5 48 -48v-128c0 -26.5 -21.5 -48 -48 -48h-128c-26.5 0 -48 21.5 -48 48v240c0 88.4004 71.5996 160 160 160h8c13.2998 0 24 -10.7002 24 -24v-48c0 -13.2998 -10.7002 -24 -24 -24h-8c-35.2998 0 -64 -28.7002 -64 -64v-64h80z" />
-    <glyph glyph-name="quote-right" unicode="&#xf10e;" 
-d="M464 416c26.5 0 48 -21.5 48 -48v-240c0 -88.4004 -71.5996 -160 -160 -160h-8c-13.2998 0 -24 10.7002 -24 24v48c0 13.2998 10.7002 24 24 24h8c35.2998 0 64 28.7002 64 64v64h-80c-26.5 0 -48 21.5 -48 48v128c0 26.5 21.5 48 48 48h128zM176 416
-c26.5 0 48 -21.5 48 -48v-240c0 -88.4004 -71.5996 -160 -160 -160h-8c-13.2998 0 -24 10.7002 -24 24v48c0 13.2998 10.7002 24 24 24h8c35.2998 0 64 28.7002 64 64v64h-80c-26.5 0 -48 21.5 -48 48v128c0 26.5 21.5 48 48 48h128z" />
-    <glyph glyph-name="spinner" unicode="&#xf110;" 
-d="M304 400c0 -26.5098 -21.4902 -48 -48 -48s-48 21.4902 -48 48s21.4902 48 48 48s48 -21.4902 48 -48zM256 32c26.5098 0 48 -21.4902 48 -48s-21.4902 -48 -48 -48s-48 21.4902 -48 48s21.4902 48 48 48zM464 240c26.5098 0 48 -21.4902 48 -48s-21.4902 -48 -48 -48
-s-48 21.4902 -48 48s21.4902 48 48 48zM96 192c0 -26.5098 -21.4902 -48 -48 -48s-48 21.4902 -48 48s21.4902 48 48 48s48 -21.4902 48 -48zM108.922 92.9219c26.5088 0 48 -21.4912 48 -48c0 -26.5098 -21.4902 -48 -48 -48s-48 21.4902 -48 48s21.4902 48 48 48z
-M403.078 92.9219c26.5098 0 48 -21.4912 48 -48c0 -26.5098 -21.4902 -48 -48 -48s-48 21.4902 -48 48s21.4902 48 48 48zM108.922 387.078c26.5088 0 48 -21.4902 48 -48s-21.4902 -48 -48 -48s-48 21.4902 -48 48s21.4902 48 48 48z" />
-    <glyph glyph-name="circle" unicode="&#xf111;" 
-d="M256 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248z" />
-    <glyph glyph-name="smile" unicode="&#xf118;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM328 272c-17.7002 0 -32 -14.2998 -32 -32s14.2998 -32 32 -32s32 14.2998 32 32s-14.2998 32 -32 32zM168 272c-17.7002 0 -32 -14.2998 -32 -32s14.2998 -32 32 -32
-s32 14.2998 32 32s-14.2998 32 -32 32zM362.8 101.8c13.5 16.2998 -11.2002 36.7002 -24.5996 20.5c-22.4004 -26.7998 -55.2002 -42.2002 -90.2002 -42.2002s-67.7998 15.3008 -90.2002 42.2002c-13.5996 16.2002 -38.2002 -4.2002 -24.5996 -20.5
-c28.5 -34.2002 70.2998 -53.7998 114.8 -53.7998s86.2998 19.5996 114.8 53.7998z" />
-    <glyph glyph-name="frown" unicode="&#xf119;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM328 272c-17.7002 0 -32 -14.2998 -32 -32s14.2998 -32 32 -32s32 14.2998 32 32s-14.2998 32 -32 32zM168 272c-17.7002 0 -32 -14.2998 -32 -32s14.2998 -32 32 -32
-s32 14.2998 32 32s-14.2998 32 -32 32zM338.2 53.7998c13.5 -16.2998 38.0996 4.2002 24.5 20.4004c-28.4004 34.2002 -70.2998 53.7998 -114.7 53.7998s-86.2998 -19.5996 -114.8 -53.7002c-13.5 -16.2998 11.0996 -36.7998 24.5996 -20.5
-c22.4004 26.7998 55.2998 42.2002 90.2002 42.2002s67.7998 -15.4004 90.2002 -42.2002z" />
-    <glyph glyph-name="meh" unicode="&#xf11a;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM168 272c-17.7002 0 -32 -14.2998 -32 -32s14.2998 -32 32 -32s32 14.2998 32 32s-14.2998 32 -32 32zM344 80c21.2002 0 21.2002 32 0 32h-192c-21.2002 0 -21.2002 -32 0 -32
-h192zM328 208c17.7002 0 32 14.2998 32 32s-14.2998 32 -32 32s-32 -14.2998 -32 -32s14.2998 -32 32 -32z" />
-    <glyph glyph-name="gamepad" unicode="&#xf11b;" horiz-adv-x="640" 
-d="M480.07 352c88.2842 -0.0263672 159.938 -71.7402 159.938 -160.03c0 -88.3066 -71.6934 -160 -160 -160c-44.7324 0 -85.2021 18.3965 -114.249 48.0303h-91.5195c-29.0469 -29.6338 -69.5078 -48 -114.24 -48c-88.3066 0 -160 71.6934 -160 160s71.6934 160 160 160
-h320.07zM248 180v24c0 6.62305 -5.37695 12 -12 12h-52v52c0 6.62305 -5.37695 12 -12 12h-24c-6.62305 0 -12 -5.37695 -12 -12v-52h-52c-6.62305 0 -12 -5.37695 -12 -12v-24c0 -6.62305 5.37695 -12 12 -12h52v-52c0 -6.62305 5.37695 -12 12 -12h24
-c6.62305 0 12 5.37695 12 12v52h52c6.62305 0 12 5.37695 12 12zM464 104c22.0762 0 40 17.9238 40 40s-17.9238 40 -40 40s-40 -17.9238 -40 -40s17.9238 -40 40 -40zM528 200c22.0762 0 40 17.9238 40 40s-17.9238 40 -40 40s-40 -17.9238 -40 -40s17.9238 -40 40 -40z
-" />
-    <glyph glyph-name="keyboard" unicode="&#xf11c;" horiz-adv-x="576" 
-d="M528 0h-480c-26.5098 0 -48 21.4902 -48 48v288c0 26.5098 21.4902 48 48 48h480c26.5098 0 48 -21.4902 48 -48v-288c0 -26.5098 -21.4902 -48 -48 -48zM128 268v40c0 6.62695 -5.37305 12 -12 12h-40c-6.62695 0 -12 -5.37305 -12 -12v-40
-c0 -6.62695 5.37305 -12 12 -12h40c6.62695 0 12 5.37305 12 12zM224 268v40c0 6.62695 -5.37305 12 -12 12h-40c-6.62695 0 -12 -5.37305 -12 -12v-40c0 -6.62695 5.37305 -12 12 -12h40c6.62695 0 12 5.37305 12 12zM320 268v40c0 6.62695 -5.37305 12 -12 12h-40
-c-6.62695 0 -12 -5.37305 -12 -12v-40c0 -6.62695 5.37305 -12 12 -12h40c6.62695 0 12 5.37305 12 12zM416 268v40c0 6.62695 -5.37305 12 -12 12h-40c-6.62695 0 -12 -5.37305 -12 -12v-40c0 -6.62695 5.37305 -12 12 -12h40c6.62695 0 12 5.37305 12 12zM512 268v40
-c0 6.62695 -5.37305 12 -12 12h-40c-6.62695 0 -12 -5.37305 -12 -12v-40c0 -6.62695 5.37305 -12 12 -12h40c6.62695 0 12 5.37305 12 12zM176 172v40c0 6.62695 -5.37305 12 -12 12h-40c-6.62695 0 -12 -5.37305 -12 -12v-40c0 -6.62695 5.37305 -12 12 -12h40
-c6.62695 0 12 5.37305 12 12zM272 172v40c0 6.62695 -5.37305 12 -12 12h-40c-6.62695 0 -12 -5.37305 -12 -12v-40c0 -6.62695 5.37305 -12 12 -12h40c6.62695 0 12 5.37305 12 12zM368 172v40c0 6.62695 -5.37305 12 -12 12h-40c-6.62695 0 -12 -5.37305 -12 -12v-40
-c0 -6.62695 5.37305 -12 12 -12h40c6.62695 0 12 5.37305 12 12zM464 172v40c0 6.62695 -5.37305 12 -12 12h-40c-6.62695 0 -12 -5.37305 -12 -12v-40c0 -6.62695 5.37305 -12 12 -12h40c6.62695 0 12 5.37305 12 12zM128 76v40c0 6.62695 -5.37305 12 -12 12h-40
-c-6.62695 0 -12 -5.37305 -12 -12v-40c0 -6.62695 5.37305 -12 12 -12h40c6.62695 0 12 5.37305 12 12zM416 76v40c0 6.62695 -5.37305 12 -12 12h-232c-6.62695 0 -12 -5.37305 -12 -12v-40c0 -6.62695 5.37305 -12 12 -12h232c6.62695 0 12 5.37305 12 12zM512 76v40
-c0 6.62695 -5.37305 12 -12 12h-40c-6.62695 0 -12 -5.37305 -12 -12v-40c0 -6.62695 5.37305 -12 12 -12h40c6.62695 0 12 5.37305 12 12z" />
-    <glyph glyph-name="flag-checkered" unicode="&#xf11e;" 
-d="M243.2 258.1c24.2002 -6.69922 47.5996 -16.3994 73.5996 -22.1992v-68.2002c-24.2998 6.7002 -47.5 16.3994 -73.5996 22.2998v68.0996zM466.5 381.1c21.2002 9.80078 45.5 -5.69922 45.4004 -29v-243.1c0 -10.5996 -5.10059 -20.4004 -13.8008 -26.4004
-c-35.7998 -24.5996 -74.2998 -40.8994 -122.5 -40.8994c-67.3994 0 -111.6 34.7998 -165.199 34.7998c-50.8008 0 -86.1006 -10 -114.4 -22.0996v-94.4004c0 -13.2998 -10.7002 -24 -24 -24h-16c-13.2998 0 -24 10.7002 -24 24v386.1c-14.5 10.1006 -24 26.9004 -24 45.9004
-c0 31.7002 26.2998 57.2998 58.2998 56c28.5 -1.2002 51.7998 -24 53.6006 -52.4004c0.5 -8.39941 -0.800781 -16.2998 -3.60059 -23.5996c20.7002 7.59961 43 12 68 12c67.4004 0 111.7 -34.7998 165.2 -34.7998c40.5 0 82.7002 16 117 31.8994zM169.6 122.5v71.2998
-c-26.0996 -2.39941 -47.3994 -8.09961 -73.5996 -17.3994v-70.5c23.5996 8.39941 47.7998 13.8994 73.5996 16.5996zM464 257v70.5c-21.2998 -8.90039 -46.5996 -17.7002 -73.5996 -22.5v-71.9004c-26 -4.19922 -49.9004 -2.59961 -73.6006 2.7002v68.4004
-c-26.3994 4.59961 -49.8994 13.8994 -73.5996 21.2998v-67.4004c-25.2002 7 -46.6006 9.40039 -73.6006 5.7002v71.6006c-23.5 -2.2002 -40.3994 -9.80078 -73.5996 -22v-70.5c29 10.6992 51.2002 17.7998 73.5996 20.8994v-70c32.8008 3 53.9004 0.600586 73.6006 -3.7998
-v-68.5c26.2998 -4.59961 49.7002 -13.9004 73.5996 -21.2998v67.3994c25.7002 -7.09961 46.6006 -9.2998 73.6006 -5.59961v-71.5996c25.0996 2.39941 48.5 11 73.5996 27.0996v70.5c-22.2002 -14.2002 -48.7998 -22.5996 -73.5996 -26v71.0996
-c27.2998 4.40039 50 14.1006 73.5996 23.9004z" />
-    <glyph glyph-name="terminal" unicode="&#xf120;" horiz-adv-x="640" 
-d="M257.981 175.029l-194.344 -194.344c-9.37305 -9.37207 -24.5684 -9.37207 -33.9404 0l-22.668 22.667c-9.35742 9.35742 -9.375 24.5225 -0.0400391 33.9014l154.021 154.746l-154.021 154.745c-9.33496 9.37891 -9.31738 24.5439 0.0400391 33.9014l22.667 22.667
-c9.37305 9.37207 24.5684 9.37207 33.9404 0l194.344 -194.344c9.37207 -9.37207 9.37207 -24.5674 0 -33.9404zM640 -8c0 -13.2549 -10.7451 -24 -24 -24h-304c-13.2549 0 -24 10.7451 -24 24v32c0 13.2549 10.7451 24 24 24h304c13.2549 0 24 -10.7451 24 -24v-32z" />
-    <glyph glyph-name="code" unicode="&#xf121;" horiz-adv-x="640" 
-d="M278.9 -63.5l-61 17.7002c-6.40039 1.7998 -10 8.5 -8.2002 14.8994l136.5 470.2c1.7998 6.40039 8.5 10 14.8994 8.2002l61 -17.7002c6.40039 -1.7998 10 -8.5 8.2002 -14.8994l-136.5 -470.2c-1.89941 -6.40039 -8.5 -10.1006 -14.8994 -8.2002zM164.9 48.7002
-c-4.5 -4.90039 -12.1006 -5.10059 -17 -0.5l-144.101 135.1c-5.09961 4.7002 -5.09961 12.7998 0 17.5l144.101 135c4.89941 4.60059 12.5 4.2998 17 -0.5l43.5 -46.3994c4.69922 -4.90039 4.2998 -12.7002 -0.800781 -17.2002l-90.5996 -79.7002l90.5996 -79.7002
-c5.10059 -4.5 5.40039 -12.2998 0.800781 -17.2002zM492.1 48.0996c-4.89941 -4.5 -12.5 -4.2998 -17 0.600586l-43.5 46.3994c-4.69922 4.90039 -4.2998 12.7002 0.800781 17.2002l90.5996 79.7002l-90.5996 79.7998c-5.10059 4.5 -5.40039 12.2998 -0.800781 17.2002
-l43.5 46.4004c4.60059 4.7998 12.2002 5 17 0.5l144.101 -135.2c5.09961 -4.7002 5.09961 -12.7998 0 -17.5z" />
-    <glyph glyph-name="reply-all" unicode="&#xf122;" horiz-adv-x="576" 
-d="M136.309 258.164l176.005 151.985c15.4062 13.3047 39.6865 2.50293 39.6865 -18.1641v-82.7637c129.182 -10.2305 224 -52.2119 224 -183.548c0 -61.4404 -39.582 -122.309 -83.333 -154.132c-13.6533 -9.93066 -33.1113 2.5332 -28.0771 18.6309
-c38.5117 123.162 -3.92188 169.482 -112.59 182.016v-84.1758c0 -20.7012 -24.2998 -31.4531 -39.6865 -18.1641l-176.005 151.987c-11.0703 9.56152 -11.0859 26.7529 0 36.3281zM8.30859 221.836c-11.0703 9.56152 -11.0859 26.7529 0 36.3281l176.005 151.985
-c15.4062 13.3047 39.6865 2.50293 39.6865 -18.1641v-15.8174l-108.607 -93.7861c-11.8906 -10.2637 -19.3926 -25.4307 -19.3926 -42.3564v-0.0234375c0 -0.0078125 -0.0292969 -0.00292969 -0.0292969 -0.0117188c0 -16.9268 7.53125 -32.1084 19.4229 -42.373
-l108.606 -93.7852v-15.8184c0 -20.7002 -24.2998 -31.4531 -39.6865 -18.1641z" />
-    <glyph glyph-name="location-arrow" unicode="&#xf124;" 
-d="M444.52 444.48c38.3809 16 79.9609 -25.5801 63.9707 -63.9707l-191.9 -415.779c-22.3896 -47.9805 -92.75 -31.9805 -92.75 19.1895v175.91h-175.91c-51.1699 0 -67.1602 70.3604 -19.1895 92.75z" />
-    <glyph glyph-name="crop" unicode="&#xf125;" 
-d="M488 96c13.25 0 24 -10.7402 24 -24v-48c0 -13.25 -10.75 -24 -24 -24h-40v-40c0 -13.25 -10.75 -24 -24 -24h-48c-13.25 0 -24 10.75 -24 24v282.75l-146.75 -146.75h114.75v-96h-232c-13.25 0 -24 10.75 -24 24v264h-40c-13.25 0 -24 10.75 -24 24v48
-c0 13.2598 10.75 24 24 24h40v40c0 13.2598 10.75 24 24 24h48c13.25 0 24 -10.7402 24 -24v-282.75l146.75 146.75h-114.75v96h210.75l59.3096 59.3096c6.25 6.25 16.3809 6.25 22.6309 0l22.6191 -22.6191c6.25 -6.25 6.25 -16.3809 0 -22.6309l-59.3096 -59.3096v-242.75
-h40z" />
-    <glyph glyph-name="code-branch" unicode="&#xf126;" horiz-adv-x="384" 
-d="M384 304c0 -35.2002 -22.7998 -65.0996 -54.4004 -75.9004c-0.5 -28.0996 -7.59961 -50.5 -21.5996 -67.8994c-28.2002 -35 -76 -39.5 -118.2 -43.4004c-25.7002 -2.39941 -49.8994 -4.59961 -66.0996 -12.7998c-7.10059 -3.59961 -11.7998 -8.2002 -14.9004 -13.4004
-c30 -11.5 51.2002 -40.5996 51.2002 -74.5996c0 -44.2002 -35.7998 -80 -80 -80s-80 35.7998 -80 80c0 35.7998 23.5 66.0996 56 76.4004v199.3c-32.5 10.2002 -56 40.5 -56 76.2998c0 44.2002 35.7998 80 80 80s80 -35.7998 80 -80c0 -35.7998 -23.5 -66.0996 -56 -76.2998
-v-144c23.9004 11.5 53.0996 14.2998 81.2998 16.8994c35.9004 3.30078 69.7998 6.5 85.2002 25.7002c6.7998 8.40039 10.4004 20.7998 11 36.9004c-33.2002 9.7002 -57.5 40.3994 -57.5 76.7998c0 44.2002 35.7998 80 80 80s80 -35.7998 80 -80zM80 384
-c-8.7998 0 -16 -7.2002 -16 -16s7.2002 -16 16 -16s16 7.2002 16 16s-7.2002 16 -16 16zM80 0c8.7998 0 16 7.2002 16 16s-7.2002 16 -16 16s-16 -7.2002 -16 -16s7.2002 -16 16 -16zM304 320c-8.7998 0 -16 -7.2002 -16 -16s7.2002 -16 16 -16s16 7.2002 16 16
-s-7.2002 16 -16 16z" />
-    <glyph glyph-name="unlink" unicode="&#xf127;" 
-d="M304.083 42.0928c4.68555 -4.68555 4.68555 -12.2842 0 -16.9707l-44.6738 -44.6738c-59.2627 -59.2627 -155.693 -59.2666 -214.961 0c-59.2646 59.2646 -59.2646 155.695 0 214.96l44.6748 44.6748c4.68555 4.68555 12.2842 4.68555 16.9707 0l39.5986 -39.5977
-c4.68555 -4.68652 4.68555 -12.2842 0 -16.9717l-44.6758 -44.6738c-28.0713 -28.0732 -28.0713 -73.75 0 -101.823c28.0723 -28.0713 73.75 -28.0723 101.824 0l44.6738 44.6748c4.68652 4.68555 12.2842 4.68555 16.9717 0zM247.515 302.309l-39.5967 39.5986
-c-4.68555 4.68652 -4.68555 12.2852 0 16.9707l44.6738 44.6738c59.2666 59.2646 155.695 59.2646 214.961 0s59.2656 -155.694 0 -214.96l-44.6748 -44.6748c-4.68652 -4.68555 -12.2852 -4.68555 -16.9707 0l-39.5986 39.5977c-4.68555 4.6875 -4.68555 12.2852 0 16.9717
-l44.6758 44.6738c28.0713 28.0732 28.0713 73.75 0 101.823c-28.0742 28.0723 -73.752 28.0742 -101.824 0l-44.6738 -44.6748c-4.6875 -4.68555 -12.2852 -4.68555 -16.9717 0zM482.343 -56.9707c-9.37207 -9.37207 -24.5674 -9.37207 -33.9404 0l-441.373 441.373
-c-9.37305 9.37207 -9.37305 24.5674 0 33.9404l22.6279 22.6279c9.37207 9.37305 24.5674 9.37305 33.9404 0l441.372 -441.374c9.37305 -9.37207 9.37305 -24.5674 0 -33.9404z" />
-    <glyph glyph-name="question" unicode="&#xf128;" horiz-adv-x="384" 
-d="M202.021 448c84.8809 0 175.482 -66.2559 175.481 -153.6c0 -115.982 -125.268 -117.768 -125.268 -160.627v-5.77344c0 -13.2549 -10.7451 -24 -24 -24h-72.4717c-13.2549 0 -24 10.7451 -24 24v9.78809c0 61.8291 46.876 86.5449 82.2998 106.405
-c30.376 17.0293 48.9922 28.6113 48.9922 51.1641c0 29.832 -38.0518 49.6309 -68.8154 49.6309c-39.127 0 -57.708 -18.0684 -82.7568 -49.4492c-8.12109 -10.1738 -22.8809 -12.0127 -33.2529 -4.14844l-43.1387 32.709c-10.2705 7.78809 -12.541 22.2939 -5.17773 32.874
-c40.5889 58.3232 92.2881 91.0264 172.107 91.0264zM192 74.541c38.1963 0 69.2715 -31.0742 69.2715 -69.2695c0 -38.1963 -31.0752 -69.2715 -69.2715 -69.2715s-69.2715 31.0752 -69.2715 69.2695c0 38.1963 31.0752 69.2715 69.2715 69.2715z" />
-    <glyph glyph-name="info" unicode="&#xf129;" horiz-adv-x="192" 
-d="M20 23.7715h20v144.457h-20c-11.0459 0 -20 8.9541 -20 20v47.7715c0 11.0459 8.9541 20 20 20h112c11.0459 0 20 -8.9541 20 -20v-212.229h20c11.0459 0 20 -8.9541 20 -20v-47.7715c0 -11.0459 -8.9541 -20 -20 -20h-152c-11.0459 0 -20 8.9541 -20 20v47.7715
-c0 11.0459 8.9541 20 20 20zM96 448c39.7637 0 72 -32.2354 72 -72s-32.2354 -72 -72 -72s-72 32.2354 -72 72s32.2354 72 72 72z" />
-    <glyph glyph-name="exclamation" unicode="&#xf12a;" horiz-adv-x="192" 
-d="M176 16c0 -44.1123 -35.8877 -80 -80 -80s-80 35.8877 -80 80s35.8877 80 80 80s80 -35.8877 80 -80zM25.2598 422.801c-0.68457 13.709 10.2441 25.1992 23.9707 25.1992h93.5391c13.7266 0 24.6553 -11.4902 23.9707 -25.1992l-13.6006 -272
-c-0.638672 -12.7725 -11.1807 -22.8008 -23.9697 -22.8008h-66.3398c-12.7891 0 -23.3311 10.0283 -23.9697 22.8008z" />
-    <glyph glyph-name="superscript" unicode="&#xf12b;" 
-d="M496 288c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-96c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h16v96h-16c-8.82422 0.0078125 -15.9775 7.18945 -15.9775 16.0156c0 2.57129 0.608398 5.00098 1.6875 7.1543l16 32
-c2.62598 5.23926 8.03613 8.8252 14.29 8.83008h48c8.83105 0 16 -7.16895 16 -16v-144h16zM336 384c8.83105 0 16 -7.16895 16 -16v-48c0 -8.83105 -7.16895 -16 -16 -16h-33.4805l-77.8096 -112l77.8096 -112h33.4805c8.83105 0 16 -7.16895 16 -16v-48
-c0 -8.83105 -7.16895 -16 -16 -16h-67c-5.41113 0.0273438 -10.1836 2.73047 -13.0596 6.87012l-79.9004 115l-79.9004 -115c-2.89062 -4.16016 -7.69531 -6.87012 -13.1396 -6.87012h-67c-8.83105 0 -16 7.16895 -16 16v48c0 8.83105 7.16895 16 16 16h33.4805l77.8096 112
-l-77.8096 112h-33.4805c-8.83105 0 -16 7.16895 -16 16v48c0 8.83105 7.16895 16 16 16h67c5.41113 -0.0273438 10.1836 -2.73047 13.0596 -6.87012l79.9004 -115l79.9004 115c2.89062 4.16016 7.69531 6.87012 13.1396 6.87012h67z" />
-    <glyph glyph-name="subscript" unicode="&#xf12c;" 
-d="M496 0c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-96c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h16v96h-16c-8.82422 0.0078125 -15.9775 7.18945 -15.9775 16.0156c0 2.57129 0.608398 5.00098 1.6875 7.1543l16 32
-c2.62598 5.23926 8.03613 8.8252 14.29 8.83008h48c8.83105 0 16 -7.16895 16 -16v-144h16zM336 384c8.83105 0 16 -7.16895 16 -16v-48c0 -8.83105 -7.16895 -16 -16 -16h-33.4805l-77.8096 -112l77.8096 -112h33.4805c8.83105 0 16 -7.16895 16 -16v-48
-c0 -8.83105 -7.16895 -16 -16 -16h-67c-5.41113 0.0273438 -10.1836 2.73047 -13.0596 6.87012l-79.9004 115l-79.9004 -115c-2.89062 -4.16016 -7.69531 -6.87012 -13.1396 -6.87012h-67c-8.83105 0 -16 7.16895 -16 16v48c0 8.83105 7.16895 16 16 16h33.4805l77.8096 112
-l-77.8096 112h-33.4805c-8.83105 0 -16 7.16895 -16 16v48c0 8.83105 7.16895 16 16 16h67c5.41113 -0.0273438 10.1836 -2.73047 13.0596 -6.87012l79.9004 -115l79.9004 115c2.89062 4.16016 7.69531 6.87012 13.1396 6.87012h67z" />
-    <glyph glyph-name="eraser" unicode="&#xf12d;" 
-d="M497.941 174.059l-142.059 -142.059h144.117c6.62695 0 12 -5.37305 12 -12v-40c0 -6.62695 -5.37305 -12 -12 -12h-356c-13.2461 0 -25.2529 5.37012 -33.9424 14.0586l-96 96c-18.7441 18.7451 -18.7441 49.1377 0 67.8828l256 256
-c18.7471 18.7451 49.1387 18.7441 67.8838 0l160 -160c18.7441 -18.7451 18.7441 -49.1377 0 -67.8828zM195.314 236.686l-124.687 -124.686l80 -80h114.745l67.3135 67.3135z" />
-    <glyph glyph-name="puzzle-piece" unicode="&#xf12e;" horiz-adv-x="576" 
-d="M519.442 159.349c37.5957 0 56.5576 -31.5928 56.5576 -65.792c0 -33.5469 -19.2881 -61.5566 -54.9229 -61.5557c-39.8848 0 -50.3457 36.1523 -86.3086 36.1523c-60.5518 0 -25.8262 -120.102 -25.8262 -120.102c-51.5557 0 -181.23 -35.0732 -181.23 25.7305
-c0 35.8271 36.2881 46.25 36.2881 85.9844c0 35.501 -28.1152 54.7178 -61.7881 54.7178c-34.3271 0 -63.5771 -18.8906 -63.5771 -56.3467c0 -41.3633 40 -58.998 40 -81.4707c0 -69.709 -178.635 -28.6621 -178.635 -28.6621v333.237s175.885 -40.9609 175.884 28.6621
-c0 22.4727 -31.7109 40.3857 -31.7109 81.75c0 37.4551 31.7119 56.3457 66.3662 56.3457c33.3457 0 61.4609 -19.2158 61.4609 -54.7178c0 -39.7354 -36.2881 -50.1582 -36.2881 -85.9854c0 -83.2969 196.288 -3.29688 196.288 -3.29688
-s-54.5908 -176.244 5.38379 -176.244c22.5586 0 40.5391 31.5928 82.0586 31.5928z" />
-    <glyph glyph-name="microphone" unicode="&#xf130;" horiz-adv-x="352" 
-d="M176 96c-53.0195 0 -96 42.9805 -96 96v160c0 53.0195 42.9805 96 96 96s96 -42.9805 96 -96v-160c0 -53.0195 -42.9805 -96 -96 -96zM336 256c8.83984 0 16 -7.16016 16 -16v-48c0 -88.9004 -66.29 -162.47 -152 -174.23v-33.7695h56c8.83984 0 16 -7.16016 16 -16v-16
-c0 -8.83984 -7.16016 -16 -16 -16h-160c-8.83984 0 -16 7.16016 -16 16v16c0 8.83984 7.16016 16 16 16h56v34.1504c-88.0303 12.1396 -152 92.0498 -152 181.689v40.1602c0 8.83984 7.16016 16 16 16h16c8.83984 0 16 -7.16016 16 -16v-42.2998
-c0 -66.8105 48.71 -126.59 115.21 -133.08c76.2998 -7.44043 140.79 52.5801 140.79 127.38v48c0 8.83984 7.16016 16 16 16h16z" />
-    <glyph glyph-name="microphone-slash" unicode="&#xf131;" horiz-adv-x="640" 
-d="M633.82 -10.0996c6.97949 -5.43066 8.22949 -15.4805 2.81934 -22.4502l-19.6396 -25.2705c-5.42969 -6.97949 -15.4805 -8.23926 -22.46 -2.80957l-588.36 454.729c-6.97949 5.43066 -8.22949 15.4805 -2.80957 22.4502l19.6396 25.2705
-c5.41992 6.97949 15.4805 8.22949 22.46 2.80957l178.54 -137.99v45.3604c0 53.0195 42.9805 96 96 96c53.0205 0 96 -42.9805 96 -96v-160.01c0 -10.4502 -2.17969 -20.2705 -5.2793 -29.6699l26.5498 -20.5205c6.75977 15.4004 10.7197 32.2803 10.7197 50.2002v48
-c0 8.83984 7.16016 16 16 16h16c8.83984 0 16 -7.16016 16 -16v-48c0 -29.0098 -7.38965 -56.1299 -19.9805 -80.1396zM400 -16c8.83984 0 16 -7.16016 16 -16v-16c0 -8.83984 -7.16016 -16 -16 -16h-160c-8.83984 0 -16 7.16016 -16 16v16c0 8.83984 7.16016 16 16 16h56
-v34.1504c-88.0303 12.1396 -152 92.0498 -152 181.689v6.85059l52.0303 -40.2305c12.4395 -53.2197 55.3301 -96.4004 111.18 -101.85c6.94043 -0.669922 13.6396 -0.200195 20.3496 0.199219l50.1104 -38.7295c-10.8203 -3.77051 -22.0098 -6.70996 -33.6699 -8.31055
-v-33.7695h56z" />
-    <glyph glyph-name="calendar" unicode="&#xf133;" horiz-adv-x="448" 
-d="M12 256h424c6.59961 0 12 -5.40039 12 -12v-260c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v260c0 6.59961 5.40039 12 12 12zM448 300c0 -6.59961 -5.40039 -12 -12 -12h-424c-6.59961 0 -12 5.40039 -12 12v36c0 26.5 21.5 48 48 48h48v52
-c0 6.59961 5.40039 12 12 12h40c6.59961 0 12 -5.40039 12 -12v-52h128v52c0 6.59961 5.40039 12 12 12h40c6.59961 0 12 -5.40039 12 -12v-52h48c26.5 0 48 -21.5 48 -48v-36z" />
-    <glyph glyph-name="fire-extinguisher" unicode="&#xf134;" horiz-adv-x="448" 
-d="M434.027 421.671c7.31445 1.21875 13.9727 -4.4209 13.9727 -11.8369v-115.668c0 -7.41602 -6.6582 -13.0557 -13.9727 -11.8369l-168 28c-11.7305 1.95508 -10.0273 14.6973 -10.0273 17.6709h-40v-27.0303c41.4043 -10.6582 72 -48.2383 72 -92.9697v-248
-c0 -13.2549 -10.7451 -24 -24 -24h-144c-13.2549 0 -24 10.7451 -24 24v246.795c0 44.8945 30.457 83.2666 72 94.1289v27.0762c-61.0361 0 -92.9424 7.00977 -121.711 -64.9141c-4.91699 -12.2949 -18.8789 -18.2959 -31.1963 -13.3701
-c-12.3066 4.92285 -18.293 18.8906 -13.3701 31.1973c14.668 36.6709 38.0107 77.833 90.0498 90.8838c-14.1406 36.5273 12.793 76.2031 52.2275 76.2031c37.4463 0 64.3525 -36.1084 53.668 -72h58.332c0 4.2002 -1.30664 15.7822 10.0273 17.6709zM144 376
-c8.82227 0 16 7.17773 16 16s-7.17773 16 -16 16s-16 -7.17773 -16 -16s7.17773 -16 16 -16z" />
-    <glyph glyph-name="rocket" unicode="&#xf135;" 
-d="M505.12 428.906c6.95508 -32.2031 6.95508 -57.4062 6.86133 -82.6094c0 -102.688 -55.4375 -164.781 -128.035 -211.094v-104.438c0 -16.3594 -11.8789 -35.5625 -26.5078 -42.8594l-98.7275 -49.3906c-3.27441 -1.48047 -6.91699 -2.375 -10.707 -2.51562
-c-13.2471 0.00195312 -24.002 10.7539 -24.0059 24v103.844l-22.4746 -22.4688c-13.1211 -13.1562 -34.1211 -11.1875 -45.2773 0l-50.9043 50.9062c-12.9961 12.9922 -11.3652 33.8887 0 45.25l22.4746 22.4688h-103.811c-13.2461 0.00195312 -24.001 10.7539 -24.0059 24
-c0.136719 3.79004 1.03223 7.43164 2.51562 10.7031l49.4355 98.8125c7.33008 14.6094 26.5391 26.4688 42.8867 26.4844h104.215c46.2168 72.7969 108.122 128 211.354 128c25.0996 0 50.3086 0 82.5059 -6.90625c5.54883 -1.1875 11.0176 -6.65625 12.207 -12.1875z
-M384.04 280c22.0752 0.0078125 39.9971 17.9258 40.0098 40c0 22.0762 -17.9229 40 -40 40c-22.0762 0 -40 -17.9238 -40 -40c0 -22.0732 17.918 -39.9951 39.9902 -40z" />
-    <glyph glyph-name="chevron-circle-left" unicode="&#xf137;" 
-d="M256 -56c-137 0 -248 111 -248 248s111 248 248 248s248 -111 248 -248s-111 -248 -248 -248zM142.1 175l135.5 -135.5c9.40039 -9.40039 24.6006 -9.40039 33.9004 0l17 17c9.40039 9.40039 9.40039 24.5996 0 33.9004l-101.6 101.6l101.6 101.6
-c9.40039 9.40039 9.40039 24.6006 0 33.9004l-17 17c-9.40039 9.40039 -24.5996 9.40039 -33.9004 0l-135.5 -135.5c-9.39941 -9.40039 -9.39941 -24.5996 0 -34z" />
-    <glyph glyph-name="chevron-circle-right" unicode="&#xf138;" 
-d="M256 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM369.9 209l-135.5 135.5c-9.40039 9.40039 -24.6006 9.40039 -33.9004 0l-17 -17c-9.40039 -9.40039 -9.40039 -24.5996 0 -33.9004l101.6 -101.6l-101.6 -101.6
-c-9.40039 -9.40039 -9.40039 -24.6006 0 -33.9004l17 -17c9.40039 -9.40039 24.5996 -9.40039 33.9004 0l135.5 135.5c9.39941 9.40039 9.39941 24.5996 0 34z" />
-    <glyph glyph-name="chevron-circle-up" unicode="&#xf139;" 
-d="M8 192c0 137 111 248 248 248s248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248zM239 305.9l-135.5 -135.5c-9.40039 -9.40039 -9.40039 -24.6006 0 -33.9004l17 -17c9.40039 -9.40039 24.5996 -9.40039 33.9004 0l101.6 101.6l101.6 -101.6
-c9.40039 -9.40039 24.6006 -9.40039 33.9004 0l17 17c9.40039 9.40039 9.40039 24.5996 0 33.9004l-135.5 135.5c-9.40039 9.39941 -24.5996 9.39941 -34 0z" />
-    <glyph glyph-name="chevron-circle-down" unicode="&#xf13a;" 
-d="M504 192c0 -137 -111 -248 -248 -248s-248 111 -248 248s111 248 248 248s248 -111 248 -248zM273 78.0996l135.5 135.5c9.40039 9.40039 9.40039 24.6006 0 33.9004l-17 17c-9.40039 9.40039 -24.5996 9.40039 -33.9004 0l-101.6 -101.6l-101.6 101.6
-c-9.40039 9.40039 -24.6006 9.40039 -33.9004 0l-17 -17c-9.40039 -9.40039 -9.40039 -24.5996 0 -33.9004l135.5 -135.5c9.40039 -9.39941 24.5996 -9.39941 34 0z" />
-    <glyph glyph-name="anchor" unicode="&#xf13d;" horiz-adv-x="576" 
-d="M12.9707 96c-10.6904 0 -16.0449 12.9258 -8.48535 20.4854l67.0283 67.0283c4.6875 4.68652 12.2852 4.68652 16.9717 0l67.0283 -67.0283c7.56055 -7.55957 2.20605 -20.4854 -8.48438 -20.4854h-35.1465c20.2969 -54.3359 85.1816 -86.6162 144.117 -94.0146v190.015
-h-52c-6.62695 0 -12 5.37305 -12 12v40c0 6.62695 5.37305 12 12 12h52v5.46973c-37.2842 13.1807 -64 48.7324 -64 90.5303c0 53.4746 43.7227 96.7393 97.3701 95.9902c52.2354 -0.728516 94.6348 -43.7627 94.6289 -96.002
-c-0.00488281 -41.793 -26.7188 -77.3398 -64 -90.5186v-5.46973h52c6.62695 0 12 -5.37305 12 -12v-40c0 -6.62695 -5.37305 -12 -12 -12h-52v-190.015c59.1543 7.42676 123.827 39.6973 144.117 94.0146h-35.1465c-10.6904 0 -16.0449 12.9248 -8.48438 20.4854
-l67.0283 67.0283c4.6875 4.68652 12.2852 4.68652 16.9717 0l67.0283 -67.0283c7.56055 -7.55957 2.20605 -20.4854 -8.48438 -20.4854h-32.3945c-21.7822 -102.62 -136.406 -160 -242.635 -160c-106.056 0 -220.828 57.2646 -242.635 160h-32.3945zM288 384
-c-17.6445 0 -32 -14.3555 -32 -32s14.3555 -32 32 -32s32 14.3555 32 32s-14.3555 32 -32 32z" />
-    <glyph glyph-name="unlock-alt" unicode="&#xf13e;" horiz-adv-x="448" 
-d="M400 192c26.5 0 48 -21.5 48 -48v-160c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v160c0 26.5 21.5 48 48 48h24v102.5c0 84 67.5 153.2 151.5 153.5s152.5 -68 152.5 -152v-16c0 -13.2998 -10.7002 -24 -24 -24h-32c-13.2998 0 -24 10.7002 -24 24v16
-c0 39.9004 -32.7002 72.4004 -72.7002 72c-39.5996 -0.400391 -71.2998 -33.2998 -71.2998 -72.9004v-103.1h248zM264 40v48c0 22.0996 -17.9004 40 -40 40s-40 -17.9004 -40 -40v-48c0 -22.0996 17.9004 -40 40 -40s40 17.9004 40 40z" />
-    <glyph glyph-name="bullseye" unicode="&#xf140;" horiz-adv-x="496" 
-d="M248 440c136.97 0 248 -111.03 248 -248s-111.03 -248 -248 -248s-248 111.03 -248 248s111.03 248 248 248zM248 8c101.71 0 184 82.3096 184 184c0 101.71 -82.3096 184 -184 184c-101.71 0 -184 -82.3096 -184 -184c0 -101.71 82.3096 -184 184 -184zM248 320
-c70.6904 0 128 -57.3096 128 -128s-57.3096 -128 -128 -128s-128 57.3096 -128 128s57.3096 128 128 128zM248 128c35.29 0 64 28.71 64 64s-28.71 64 -64 64s-64 -28.71 -64 -64s28.71 -64 64 -64z" />
-    <glyph glyph-name="ellipsis-h" unicode="&#xf141;" 
-d="M328 192c0 -39.7998 -32.2002 -72 -72 -72s-72 32.2002 -72 72s32.2002 72 72 72s72 -32.2002 72 -72zM432 264c39.7998 0 72 -32.2002 72 -72s-32.2002 -72 -72 -72s-72 32.2002 -72 72s32.2002 72 72 72zM80 264c39.7998 0 72 -32.2002 72 -72s-32.2002 -72 -72 -72
-s-72 32.2002 -72 72s32.2002 72 72 72z" />
-    <glyph glyph-name="ellipsis-v" unicode="&#xf142;" horiz-adv-x="192" 
-d="M96 264c39.7998 0 72 -32.2002 72 -72s-32.2002 -72 -72 -72s-72 32.2002 -72 72s32.2002 72 72 72zM24 368c0 39.7998 32.2002 72 72 72s72 -32.2002 72 -72s-32.2002 -72 -72 -72s-72 32.2002 -72 72zM24 16c0 39.7998 32.2002 72 72 72s72 -32.2002 72 -72
-s-32.2002 -72 -72 -72s-72 32.2002 -72 72z" />
-    <glyph glyph-name="rss-square" unicode="&#xf143;" horiz-adv-x="448" 
-d="M400 416c26.5098 0 48 -21.4902 48 -48v-352c0 -26.5098 -21.4902 -48 -48 -48h-352c-26.5098 0 -48 21.4902 -48 48v352c0 26.5098 21.4902 48 48 48h352zM112 32c26.5098 0 48 21.4902 48 48s-21.4902 48 -48 48s-48 -21.4902 -48 -48s21.4902 -48 48 -48zM269.533 32
-c6.53516 0 11.7764 5.46777 11.4248 11.9941c-5.9668 110.428 -94.418 198.99 -204.964 204.964c-6.52637 0.351562 -11.9941 -4.88965 -11.9941 -11.4248v-34.335c0 -6.00977 4.63574 -11.0508 10.6328 -11.4414c79.8799 -5.20312 143.909 -69.0732 149.123 -149.123
-c0.391602 -5.99805 5.43066 -10.6338 11.4424 -10.6338h34.335zM372.56 32c6.4541 0 11.6641 5.33789 11.4326 11.7871c-5.99512 167.014 -140.375 302.18 -308.205 308.205c-6.44922 0.231445 -11.7871 -4.97852 -11.7871 -11.4326v-34.334
-c0 -6.16016 4.88184 -11.1748 11.0391 -11.4277c136.556 -5.59863 246.162 -115.225 251.76 -251.76c0.251953 -6.15625 5.2666 -11.0381 11.4268 -11.0381h34.334z" />
-    <glyph glyph-name="play-circle" unicode="&#xf144;" 
-d="M256 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM371.7 168c16.3994 9.09961 16.3994 32.7998 0 42l-176 107c-15.9004 8.7998 -35.7002 -2.59961 -35.7002 -21v-208c0 -18.5 19.9004 -29.7998 35.7002 -21z" />
-    <glyph glyph-name="minus-square" unicode="&#xf146;" horiz-adv-x="448" 
-d="M400 416c26.5 0 48 -21.5 48 -48v-352c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h352zM92 152h264c6.59961 0 12 5.40039 12 12v56c0 6.59961 -5.40039 12 -12 12h-264c-6.59961 0 -12 -5.40039 -12 -12v-56
-c0 -6.59961 5.40039 -12 12 -12z" />
-    <glyph glyph-name="check-square" unicode="&#xf14a;" horiz-adv-x="448" 
-d="M400 -32h-352c-26.5098 0 -48 21.4902 -48 48v352c0 26.5098 21.4902 48 48 48h352c26.5098 0 48 -21.4902 48 -48v-352c0 -26.5098 -21.4902 -48 -48 -48zM195.314 66.0586l184 184c6.24707 6.24805 6.24707 16.3799 0 22.627l-22.6279 22.6279
-c-6.24707 6.24707 -16.3789 6.24805 -22.6279 0l-150.059 -150.059l-70.0586 70.0596c-6.24805 6.24707 -16.3799 6.24707 -22.6279 0l-22.6279 -22.6279c-6.24707 -6.24707 -6.24707 -16.3789 0 -22.627l104 -104c6.24902 -6.25 16.3799 -6.25 22.6289 -0.000976562z" />
-    <glyph glyph-name="pen-square" unicode="&#xf14b;" horiz-adv-x="448" 
-d="M400 -32h-352c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h352c26.5 0 48 -21.5 48 -48v-352c0 -26.5 -21.5 -48 -48 -48zM238.1 270.1l-135.699 -135.699l-6.30078 -57.1006c-0.799805 -7.59961 5.60059 -14.0996 13.3008 -13.2998l57.0996 6.2998l135.7 135.7
-c2.2998 2.2998 2.2998 6.09961 0 8.5l-55.5 55.5c-2.5 2.40039 -6.2998 2.40039 -8.60059 0.0996094zM345 282.9l-30.0996 30.0996c-9.40039 9.40039 -24.6006 9.40039 -33.9004 0l-23.0996 -23.0996c-2.30078 -2.30078 -2.30078 -6.10059 0 -8.5l55.5 -55.5
-c2.2998 -2.30078 6.09961 -2.30078 8.5 0l23.0996 23.0996c9.2998 9.2998 9.2998 24.5 0 33.9004z" />
-    <glyph glyph-name="share-square" unicode="&#xf14d;" horiz-adv-x="576" 
-d="M568.482 270.552l-144.004 -135.984c-15.1787 -14.335 -40.4785 -3.70703 -40.4785 17.4473v71.9629c-144.575 -0.969727 -205.566 -35.1123 -164.775 -171.353c4.4834 -14.9727 -12.8457 -26.5674 -25.0059 -17.3301
-c-38.9668 29.5996 -74.2188 86.2168 -74.2188 143.366c0 143.937 117.599 172.5 264 173.312v72.0156c0 21.1738 25.3174 31.7676 40.4785 17.4473l144.004 -135.987c10.0195 -9.46289 10.0273 -25.4248 0 -34.8965zM384 68.8721c0 7.34473 6.53027 12.9053 13.7998 11.8594
-c3.36816 -0.485352 6.75977 -0.711914 10.2607 -0.711914c8.3877 0 16.4424 1.44043 23.9287 4.08887c7.81348 2.76367 16.0107 -3.01465 16.0107 -11.3027v-88.8057c0 -26.5098 -21.4902 -48 -48 -48h-352c-26.5098 0 -48 21.4902 -48 48v352c0 26.5098 21.4902 48 48 48
-h121.033c12.5508 0 16.6748 -16.8301 5.54492 -22.6309c-18.7773 -9.78613 -36.0615 -22.1084 -51.0137 -37.6758c-2.18164 -2.27637 -5.25098 -3.69141 -8.64844 -3.69336h-50.916v-320h320v68.8721z" />
-    <glyph glyph-name="compass" unicode="&#xf14e;" horiz-adv-x="496" 
-d="M225.38 214.63c12.4902 12.4902 32.75 12.4902 45.25 0s12.5 -32.75 0 -45.25c-12.4902 -12.5 -32.7598 -12.5 -45.25 0c-12.5 12.4902 -12.5 32.75 0 45.25zM248 440c136.97 0 248 -111.03 248 -248s-111.03 -248 -248 -248s-248 111.03 -248 248s111.03 248 248 248z
-M374.14 291.95c7.61035 16.6494 -9.54004 33.7998 -26.1895 26.2002l-144.34 -65.9707c-6.98438 -3.19238 -12.5781 -8.78516 -15.7705 -15.7695l-65.9795 -144.351c-7.61035 -16.6494 9.5498 -33.8096 26.1992 -26.1992l144.341 65.9697
-c6.9834 3.19238 12.5771 8.78613 15.7695 15.7695z" />
-    <glyph glyph-name="caret-square-down" unicode="&#xf150;" horiz-adv-x="448" 
-d="M448 368v-352c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h352c26.5 0 48 -21.5 48 -48zM92.5 227.5l123 -123c4.7002 -4.7002 12.2998 -4.7002 17 0l123 123c7.59961 7.59961 2.2002 20.5 -8.5 20.5h-246
-c-10.7002 0 -16.0996 -12.9004 -8.5 -20.5z" />
-    <glyph glyph-name="caret-square-up" unicode="&#xf151;" horiz-adv-x="448" 
-d="M0 16v352c0 26.5098 21.4902 48 48 48h352c26.5098 0 48 -21.4902 48 -48v-352c0 -26.5098 -21.4902 -48 -48 -48h-352c-26.5098 0 -48 21.4902 -48 48zM355.515 156.485l-123.029 123.029c-4.68652 4.68652 -12.2842 4.68652 -16.9717 0l-123.028 -123.029
-c-7.56055 -7.56055 -2.20605 -20.4854 8.48438 -20.4854h246.06c10.6904 0 16.0449 12.9258 8.48535 20.4854z" />
-    <glyph glyph-name="caret-square-right" unicode="&#xf152;" horiz-adv-x="448" 
-d="M48 416h352c26.5098 0 48 -21.4902 48 -48v-352c0 -26.5098 -21.4902 -48 -48 -48h-352c-26.5098 0 -48 21.4902 -48 48v352c0 26.5098 21.4902 48 48 48zM188.485 60.4854l123.028 123.028c4.68652 4.68652 4.68652 12.2842 0 16.9717l-123.028 123.029
-c-7.56055 7.56055 -20.4854 2.20605 -20.4854 -8.48438v-246.06c0 -10.6904 12.9258 -16.0449 20.4854 -8.48535z" />
-    <glyph glyph-name="euro-sign" unicode="&#xf153;" horiz-adv-x="320" 
-d="M310.706 34.2354l8.81836 -44.4902c1.23828 -6.24902 -2.62109 -12.3623 -8.78809 -13.957c-12.5391 -3.24414 -34.8008 -7.78809 -61.1016 -7.78809c-104.371 0 -182.496 65.3076 -207.521 155.64h-30.1143c-6.62695 0 -12 5.37305 -12 12v28.3604
-c0 6.62695 5.37305 12 12 12h21.3877c-1 12.958 -0.828125 28.6377 0.181641 42.2451h-21.5693c-6.62695 0 -12 5.37305 -12 12v29.7549c0 6.62695 5.37305 12 12 12h33.0752c28.9551 83.748 107.376 144 204.56 144c21.0752 0 40.582 -2.91211 52.6865 -5.20703
-c6.86035 -1.30078 11.1475 -8.17578 9.32617 -14.917l-11.9912 -44.3682c-1.65527 -6.125 -7.78613 -9.89062 -14.002 -8.62305c-9.28711 1.89551 -23.3652 4.14551 -37.8516 4.14551c-54.9287 0 -96.9854 -30.0391 -117.619 -75.0303h138.278
-c7.66211 0 13.3613 -7.08203 11.7227 -14.5664l-6.51172 -29.7549c-1.17969 -5.3877 -5.9834 -9.43359 -11.7227 -9.43359h-146.593c-1.55176 -13.958 -1.34766 -27.917 -0.137695 -42.2451h134.237c7.68945 0 13.3936 -7.12891 11.708 -14.6309l-6.37305 -28.3604
-c-1.20312 -5.35547 -5.99121 -9.36914 -11.708 -9.36914h-113.689c19.5322 -50.6582 64.6982 -85.4482 121.462 -85.4482c18.0039 0 34.7334 2.97363 45.4258 5.41211c6.58887 1.50391 13.1094 -2.73828 14.4238 -9.36816z" />
-    <glyph glyph-name="pound-sign" unicode="&#xf154;" horiz-adv-x="320" 
-d="M308 96c6.62695 0 12 -5.37305 12 -12v-104c0 -6.62695 -5.37305 -12 -12 -12h-296c-6.62695 0 -12 5.37305 -12 12v40c0 6.62695 5.37305 12 12 12h36v128h-28c-6.62695 0 -12 5.37305 -12 12v40c0 6.62695 5.37305 12 12 12h28v66.0391
-c0 73.2188 58.0264 125.961 139.931 125.961c48.6455 0 85.1934 -22.5596 101.575 -34.9277c5.39844 -4.07617 6.35254 -11.8057 2.11914 -17.0811l-28.4932 -35.5137c-3.7998 -4.73535 -10.5371 -5.89746 -15.6875 -2.68457
-c-11.7744 7.34375 -33.9941 18.8486 -57.6523 18.8486c-37.2305 0 -61.792 -24.8193 -61.792 -57.0859v-63.5557h84c6.62695 0 12 -5.37305 12 -12v-40c0 -6.62695 -5.37305 -12 -12 -12h-84v-126.848h122.505v50.8477c0 6.62695 5.37305 12 12 12h45.4951z" />
-    <glyph glyph-name="dollar-sign" unicode="&#xf155;" horiz-adv-x="288" 
-d="M209.2 214.6c57.8994 -16.8994 94 -80.0996 72.5 -141.699c-15.4004 -44.1006 -59.1006 -71.8008 -105.7 -72.7002v-48.2002c0 -8.7998 -7.2002 -16 -16 -16h-32c-8.7998 0 -16 7.2002 -16 16v48c-31.4004 0.0996094 -62 10.7998 -86.5 30
-c-7.90039 6.09961 -8.90039 17.5996 -1.7998 24.5l34.7998 34c5.2002 5.09961 13.4004 6.09961 19.5 2c10 -6.7998 22 -10.5 34.2002 -10.5h66.2998c16.2998 0 29.5 13.2002 29.5 29.5c0 13 -8.7002 24.5996 -21.2002 28.2998l-102.5 30
-c-44.3994 13 -79.5996 50.5 -83.7998 96.6006c-5.90039 64.8994 45.2998 119.6 109 119.6h2.5v48c0 8.7998 7.2002 16 16 16h32c8.7998 0 16 -7.2002 16 -16v-48c31.4004 -0.0996094 62 -10.7998 86.5 -30c7.90039 -6.09961 8.90039 -17.5996 1.7998 -24.5l-34.7998 -34
-c-5.2002 -5.09961 -13.4004 -6.09961 -19.5 -2c-10 6.7998 -22 10.5 -34.2002 10.5h-66.2998c-16.2998 0 -29.5 -13.2002 -29.5 -29.5c0 -13 8.7002 -24.7002 21.2002 -28.2998z" />
-    <glyph glyph-name="rupee-sign" unicode="&#xf156;" horiz-adv-x="320" 
-d="M308 352h-72.9424c5.97266 -9.75391 10.7666 -20.459 14.252 -32h58.6904c6.62695 0 12 -5.37305 12 -12v-40c0 -6.62695 -5.37305 -12 -12 -12h-52.8105c-7.1748 -74.5107 -61.8193 -125.566 -138.318 -127.906l150.882 -139.275
-c8.02734 -7.41016 2.78516 -20.8184 -8.13867 -20.8184h-82.5625c-3.1377 0 -6 1.20801 -8.13867 3.18164l-165.052 152.356c-2.46094 2.27148 -3.86133 5.46875 -3.86133 8.81836v53.0117c0 6.62695 5.37305 12 12 12h84c41.7959 0 68.54 22.5459 74.7568 58.6318h-158.757
-c-6.62695 0 -12 5.37305 -12 12v40c0 6.62695 5.37305 12 12 12h146.25c-12.709 17.2939 -33.6621 27.252 -60.9697 27.252h-85.2803c-6.62695 0 -12 5.37305 -12 12v44.748c0 6.62695 5.37305 12 12 12h296c6.62695 0 12 -5.37305 12 -12v-40
-c0 -6.62695 -5.37305 -12 -12 -12z" />
-    <glyph glyph-name="yen-sign" unicode="&#xf157;" horiz-adv-x="384" 
-d="M351.2 416c9.09961 0 14.8994 -9.7002 10.5996 -17.5996l-80.0996 -150.4h58.2998c6.59961 0 12 -5.40039 12 -12v-32c0 -6.59961 -5.40039 -12 -12 -12h-88.2002l-19.7998 -37.2002v-26.7998h108c6.59961 0 12 -5.40039 12 -12v-32c0 -6.59961 -5.40039 -12 -12 -12
-h-108v-92c0 -6.59961 -5.40039 -12 -12 -12h-56c-6.59961 0 -12 5.40039 -12 12v92h-108c-6.59961 0 -12 5.40039 -12 12v32c0 6.59961 5.40039 12 12 12h108v26.7998l-19.7998 37.2002h-88.2002c-6.59961 0 -12 5.40039 -12 12v32c0 6.59961 5.40039 12 12 12h58.2998
-l-80.0996 150.4c-4.2002 7.89941 1.5 17.5996 10.5996 17.5996h65.2002c4.59961 0 8.7998 -2.59961 10.7998 -6.7002l55.4004 -113.2c14.5 -34.6992 27.0996 -71.8994 27.0996 -71.8994h1.2998s12.6006 37.2002 27.1006 71.8994l55.3994 113.2
-c2 4.10059 6.2002 6.7002 10.8008 6.7002h65.2998z" />
-    <glyph glyph-name="ruble-sign" unicode="&#xf158;" horiz-adv-x="384" 
-d="M239.36 128h-92.8008v-32h161.44c6.62695 0 12 -5.37305 12 -12v-40c0 -6.62695 -5.37305 -12 -12 -12h-161.44v-52c0 -6.62695 -5.37305 -12 -12 -12h-58.5596c-6.62695 0 -12 5.37305 -12 12v52h-52c-6.62695 0 -12 5.37305 -12 12v40c0 6.62695 5.37305 12 12 12h52
-v32h-52c-6.62695 0 -12 5.37305 -12 12v45.3682c0 6.62695 5.37305 12 12 12h52v206.632c0 6.62695 5.37305 12 12 12h163.36c85.1201 0 144.64 -57.5996 144.64 -143.071c0 -85.4707 -59.5195 -144.929 -144.64 -144.929zM146.56 347.252v-149.884h77.4404
-c48 0 76.1602 29.7285 76.1602 75.5605c0 45.2129 -28.1602 74.3232 -74.8799 74.3232h-78.7207z" />
-    <glyph glyph-name="won-sign" unicode="&#xf159;" horiz-adv-x="576" 
-d="M564 256h-62.7002l-7.39941 -32h70.0996c6.59961 0 12 -5.40039 12 -12v-40c0 -6.59961 -5.40039 -12 -12 -12h-84.9004l-42.0996 -182.7c-1.2998 -5.39941 -6.09961 -9.2998 -11.7002 -9.2998h-56.7998c-5.59961 0 -10.4004 3.90039 -11.7002 9.2998l-42.3994 182.7
-h-55.1006l-42.2998 -182.7c-1.2998 -5.39941 -6.09961 -9.2998 -11.7002 -9.2998h-56.7998c-5.59961 0 -10.5 3.90039 -11.7002 9.40039l-40.8994 182.6h-83.9004c-6.59961 0 -12 5.40039 -12 12v40c0 6.59961 5.40039 12 12 12h69.5l-7.2002 32h-62.2998
-c-6.59961 0 -12 5.40039 -12 12v40c0 6.59961 5.40039 12 12 12h48l-18.0996 80.7002c-1.7002 7.5 4 14.5996 11.6992 14.5996h42.1006c5.7002 0 10.7002 -4 11.7998 -9.59961l17.5 -85.7002h108.7l20 86c1.2998 5.5 6.09961 9.2998 11.7002 9.2998h44
-c5.59961 0 10.3994 -3.7998 11.6992 -9.2998l19.7002 -86h109.9l14.3994 85.7998c1.10059 5.5 6 9.5 11.7002 9.5h46.1006c7.69922 0 13.3994 -7.2002 11.6992 -14.7002l-18.5996 -80.5996h48c6.59961 0 12 -5.40039 12 -12v-40c0 -6.59961 -5.40039 -12 -12 -12zM183.8 106
-l12.6006 54h-38.8008l11 -54c5.10059 -25.2002 6.80078 -47.2002 6.80078 -47.2002h1.09961c0.5 0 1.09961 21.4004 7.2998 47.2002zM211.3 224l7.5 32h-80.7998l6.5 -32h66.7998zM274.2 224h25.3994l-2 8.59961c-1.89941 8 -3.5 16 -4.7998 23.4004h-11.7998
-c-1.2998 -7.40039 -2.90039 -15.4004 -4.7998 -23.4004zM405.1 106l11.5 54h-39.0996l12.4004 -54c6.19922 -25.7998 6.69922 -47.2002 7.2998 -47.2002h1.09961s1.7002 22 6.7998 47.2002zM430.3 224l6.90039 32h-81.6006l7.30078 -32h67.3994z" />
-    <glyph glyph-name="file" unicode="&#xf15b;" horiz-adv-x="384" 
-d="M224 312c0 -13.2002 10.7998 -24 24 -24h136v-328c0 -13.2998 -10.7002 -24 -24 -24h-336c-13.2998 0 -24 10.7002 -24 24v464c0 13.2998 10.7002 24 24 24h200v-136zM384 326.1v-6.09961h-128v128h6.09961c6.40039 0 12.5 -2.5 17 -7l97.9004 -98
-c4.5 -4.5 7 -10.5996 7 -16.9004z" />
-    <glyph glyph-name="file-alt" unicode="&#xf15c;" horiz-adv-x="384" 
-d="M224 312c0 -13.2002 10.7998 -24 24 -24h136v-328c0 -13.2998 -10.7002 -24 -24 -24h-336c-13.2998 0 -24 10.7002 -24 24v464c0 13.2998 10.7002 24 24 24h200v-136zM288 76v8c0 6.59961 -5.40039 12 -12 12h-168c-6.59961 0 -12 -5.40039 -12 -12v-8
-c0 -6.59961 5.40039 -12 12 -12h168c6.59961 0 12 5.40039 12 12zM288 140v8c0 6.59961 -5.40039 12 -12 12h-168c-6.59961 0 -12 -5.40039 -12 -12v-8c0 -6.59961 5.40039 -12 12 -12h168c6.59961 0 12 5.40039 12 12zM288 212c0 6.59961 -5.40039 12 -12 12h-168
-c-6.59961 0 -12 -5.40039 -12 -12v-8c0 -6.59961 5.40039 -12 12 -12h168c6.59961 0 12 5.40039 12 12v8zM384 326.1v-6.09961h-128v128h6.09961c6.40039 0 12.5 -2.5 17 -7l97.9004 -98c4.5 -4.5 7 -10.5996 7 -16.9004z" />
-    <glyph glyph-name="sort-alpha-down" unicode="&#xf15d;" horiz-adv-x="448" 
-d="M176 96c14.2197 0 21.3496 -17.2598 11.3301 -27.3096l-80 -96c-2.89551 -2.89453 -6.89844 -4.68555 -11.3125 -4.68555c-4.41309 0 -8.41211 1.79102 -11.3076 4.68555l-80 96c-10.0703 10.0693 -2.90039 27.3096 11.29 27.3096h48v304c0 8.83105 7.16895 16 16 16h32
-c8.83105 0 16 -7.16895 16 -16v-304h48zM416 160c8.83105 0 16 -7.16895 16 -16v-17.6299c0 -9.51074 -4.14355 -18.0566 -10.7402 -23.9199l-61.2598 -70.4502h56c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-128c-8.83105 0 -16 7.16895 -16 16
-v17.6299c0 9.51074 4.14355 18.0566 10.7402 23.9199l61.2598 70.4502h-56c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h128zM447.06 245.38c0.600586 -1.67969 0.931641 -3.49512 0.931641 -5.37988c0 -8.82812 -7.16406 -15.9951 -15.9912 -16h-24.8398
-c-0.015625 0 -0.0263672 -0.00195312 -0.0419922 -0.00195312c-7.11426 0 -13.1514 4.6543 -15.2285 11.082l-4.40918 12.9199h-71l-4.4209 -12.9199c-2.07617 -6.42773 -8.10938 -11.0801 -15.2246 -11.0801h-0.00488281h-24.8301
-c-8.82715 0.00488281 -15.9863 7.17773 -15.9863 16.0049c0 1.88574 0.326172 3.69531 0.926758 5.375l59.2695 160c2.20996 6.19043 8.125 10.6201 15.0703 10.6201h41.4395c6.94531 0 12.8604 -4.42969 15.0703 -10.6201zM335.61 304h32.7793l-16.3896 48z" />
-    <glyph glyph-name="sort-alpha-up" unicode="&#xf15e;" horiz-adv-x="448" 
-d="M16 288c-14.2197 0 -21.3496 17.2598 -11.3096 27.3096l80 96c2.89551 2.89453 6.89844 4.68555 11.3115 4.68555c4.41406 0 8.41211 -1.79102 11.3076 -4.68555l80 -96c10.0703 -10.0693 2.90039 -27.3096 -11.3096 -27.3096h-48v-304c0 -8.83105 -7.16895 -16 -16 -16
-h-32c-8.83105 0 -16 7.16895 -16 16v304h-48zM416 160c8.83105 0 16 -7.16895 16 -16v-17.6299c0 -9.51074 -4.14355 -18.0566 -10.7402 -23.9199l-61.2598 -70.4502h56c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-128
-c-8.83105 0 -16 7.16895 -16 16v17.6299c0 9.51074 4.14355 18.0566 10.7402 23.9199l61.2598 70.4502h-56c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h128zM447.06 245.38c0.600586 -1.67969 0.931641 -3.49512 0.931641 -5.37988
-c0 -8.82812 -7.16406 -15.9951 -15.9912 -16h-24.8398c-0.015625 0 -0.0263672 -0.00195312 -0.0419922 -0.00195312c-7.11426 0 -13.1514 4.6543 -15.2285 11.082l-4.40918 12.9199h-71l-4.4209 -12.9199c-2.07617 -6.42773 -8.10938 -11.0801 -15.2246 -11.0801
-h-0.00488281h-24.8301c-8.82715 0.00488281 -15.9863 7.17773 -15.9863 16.0049c0 1.88574 0.326172 3.69531 0.926758 5.375l59.2695 160c2.20996 6.19043 8.125 10.6201 15.0703 10.6201h41.4395c6.94531 0 12.8604 -4.42969 15.0703 -10.6201zM335.61 304h32.7793
-l-16.3896 48z" />
-    <glyph glyph-name="sort-amount-down" unicode="&#xf160;" 
-d="M304 32c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-64c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h64zM176 96c14.2197 0 21.3496 -17.2598 11.3301 -27.3096l-80 -96
-c-2.89551 -2.89453 -6.89844 -4.68555 -11.3125 -4.68555c-4.41309 0 -8.41211 1.79102 -11.3076 4.68555l-80 96c-10.0801 10.0693 -2.90039 27.3096 11.29 27.3096h48v304c0 8.83105 7.16895 16 16 16h32c8.83105 0 16 -7.16895 16 -16v-304h48zM432 288
-c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-192c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h192zM368 160c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-128c-8.83105 0 -16 7.16895 -16 16v32
-c0 8.83105 7.16895 16 16 16h128zM496 416c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-256c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h256z" />
-    <glyph glyph-name="sort-amount-up" unicode="&#xf161;" 
-d="M304 32c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-64c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h64zM16 288c-14.2305 0 -21.3496 17.2598 -11.3096 27.3096l80 96c2.89551 2.89453 6.89844 4.68555 11.3115 4.68555
-c4.41406 0 8.41211 -1.79102 11.3076 -4.68555l80 -96c10.0703 -10.0693 2.90039 -27.3096 -11.3096 -27.3096h-48v-304c0 -8.83105 -7.16895 -16 -16 -16h-32c-8.83105 0 -16 7.16895 -16 16v304h-48zM432 288c8.83105 0 16 -7.16895 16 -16v-32
-c0 -8.83105 -7.16895 -16 -16 -16h-192c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h192zM368 160c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-128c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h128zM496 416
-c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-256c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h256z" />
-    <glyph glyph-name="sort-numeric-down" unicode="&#xf162;" horiz-adv-x="448" 
-d="M304 352c-8.82422 0.0078125 -15.9775 7.18945 -15.9775 16.0156c0 2.57129 0.608398 5.00098 1.6875 7.1543l16 32c2.62598 5.23926 8.03613 8.8252 14.29 8.83008h48c8.83105 0 16 -7.16895 16 -16v-112h16c8.83105 0 16 -7.16895 16 -16v-32
-c0 -8.83105 -7.16895 -16 -16 -16h-96c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h16v64h-16zM330.15 189.09c53.4502 14.25 101.85 -25.8799 101.869 -77.0898v-10.7695c0 -70.3906 -28.25 -107.24 -86.25 -132
-c-8.36914 -3.58008 -18.0293 1.2793 -20.8994 9.90918l-9.90039 20c-2.62012 7.87012 0.610352 16.9404 8.18066 20.3408c7.59961 3.28516 14.6064 7.64258 20.8496 12.9092c-47.6396 4.76074 -83.0996 51.4805 -68.8496 102.53c7.62793 26.2793 28.5596 46.9287 55 54.1699
-zM352 92c11.0381 0 20 8.96191 20 20s-8.96191 20 -20 20s-20 -8.96191 -20 -20s8.96191 -20 20 -20zM176 96c14.2197 0 21.3496 -17.2598 11.3301 -27.3096l-80 -96c-2.89551 -2.89453 -6.89844 -4.68555 -11.3125 -4.68555c-4.41309 0 -8.41211 1.79102 -11.3076 4.68555
-l-80 96c-10.0703 10.0693 -2.90039 27.3096 11.29 27.3096h48v304c0 8.83105 7.16895 16 16 16h32c8.83105 0 16 -7.16895 16 -16v-304h48z" />
-    <glyph glyph-name="sort-numeric-up" unicode="&#xf163;" horiz-adv-x="448" 
-d="M330.17 189.09c53.4502 14.25 101.83 -25.8799 101.85 -77.0898v-10.7695c0 -70.3906 -28.25 -107.24 -86.25 -132c-8.36914 -3.58008 -18.0293 1.2793 -20.8994 9.90918l-9.90039 20c-2.62012 7.87012 0.610352 16.9404 8.18066 20.3408
-c7.59961 3.28516 14.6064 7.64258 20.8496 12.9092c-47.6396 4.76074 -83.0996 51.4805 -68.8301 102.53c7.62891 26.2793 28.5596 46.9287 55 54.1699zM352 92c11.0381 0 20 8.96191 20 20s-8.96191 20 -20 20s-20 -8.96191 -20 -20s8.96191 -20 20 -20zM304 352
-c-8.82422 0.0078125 -15.9775 7.18945 -15.9775 16.0156c0 2.57129 0.608398 5.00098 1.6875 7.1543l16 32c2.62598 5.23926 8.03613 8.8252 14.29 8.83008h48c8.83105 0 16 -7.16895 16 -16v-112h16c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-96
-c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h16v64h-16zM107.31 411.31l80 -96c10.0703 -10.0693 2.90039 -27.3096 -11.3096 -27.3096h-48v-304c0 -8.83105 -7.16895 -16 -16 -16h-32c-8.83105 0 -16 7.16895 -16 16v304h-48
-c-14.2197 0 -21.3496 17.2598 -11.3096 27.3096l80 96c2.89551 2.89453 6.89844 4.68555 11.3115 4.68555c4.41406 0 8.41211 -1.79102 11.3076 -4.68555z" />
-    <glyph glyph-name="thumbs-up" unicode="&#xf164;" 
-d="M104 224c13.2549 0 24 -10.7451 24 -24v-240c0 -13.2549 -10.7451 -24 -24 -24h-80c-13.2549 0 -24 10.7451 -24 24v240c0 13.2549 10.7451 24 24 24h80zM64 -24c13.2549 0 24 10.7451 24 24s-10.7451 24 -24 24s-24 -10.7451 -24 -24s10.7451 -24 24 -24zM384 366.548
-c0 -42.416 -25.9697 -66.208 -33.2773 -94.5479h101.724c33.3965 0 59.3965 -27.7461 59.5527 -58.0977c0.0839844 -17.9385 -7.5459 -37.249 -19.4395 -49.1973l-0.109375 -0.110352c9.83594 -23.3369 8.23633 -56.0371 -9.30859 -79.4688
-c8.68164 -25.8945 -0.0683594 -57.7041 -16.3818 -74.7568c4.29785 -17.5977 2.24414 -32.5752 -6.14746 -44.6318c-20.4102 -29.3242 -70.9961 -29.7373 -113.773 -29.7373l-2.84473 0.000976562c-48.2871 0.0166016 -87.8057 17.5977 -119.561 31.7246
-c-15.957 7.09961 -36.8203 15.8877 -52.6504 16.1787c-6.54004 0.120117 -11.7832 5.45703 -11.7832 11.998v213.77c0 3.2002 1.28223 6.27148 3.55762 8.52148c39.6143 39.1436 56.6484 80.5869 89.1172 113.11c14.8037 14.832 20.1885 37.2363 25.3936 58.9023
-c4.44629 18.501 13.749 57.7939 33.9316 57.7939c24 0 72 -8 72 -81.4521z" />
-    <glyph glyph-name="thumbs-down" unicode="&#xf165;" 
-d="M0 392c0 13.2549 10.7451 24 24 24h80c13.2549 0 24 -10.7451 24 -24v-240c0 -13.2549 -10.7451 -24 -24 -24h-80c-13.2549 0 -24 10.7451 -24 24v240zM40 192c0 -13.2549 10.7451 -24 24 -24s24 10.7451 24 24s-10.7451 24 -24 24s-24 -10.7451 -24 -24zM312 -64
-c-20.1826 0 -29.4854 39.293 -33.9307 57.7949c-5.20605 21.666 -10.5889 44.0703 -25.3936 58.9023c-32.4688 32.5234 -49.5029 73.9668 -89.1172 113.11c-2.19727 2.17285 -3.55762 5.19043 -3.55762 8.52148v213.77c0 6.54102 5.24316 11.8779 11.7832 11.998
-c15.8311 0.290039 36.6934 9.0791 52.6504 16.1787c31.7549 14.127 71.2744 31.708 119.561 31.7246h2.84375c42.7773 0 93.3633 -0.413086 113.774 -29.7373c8.3916 -12.0566 10.4453 -27.0342 6.14746 -44.6318c16.3125 -17.0527 25.0635 -48.8633 16.3818 -74.7568
-c17.5439 -23.4316 19.1436 -56.1318 9.30859 -79.4688l0.109375 -0.110352c11.8936 -11.9492 19.5234 -31.2588 19.4395 -49.1973c-0.15625 -30.3516 -26.1572 -58.0977 -59.5527 -58.0977h-101.725c7.30762 -28.3398 33.2773 -52.1318 33.2773 -94.5479
-c0 -73.4521 -48 -81.4521 -72 -81.4521z" />
-    <glyph glyph-name="female" unicode="&#xf182;" horiz-adv-x="256" 
-d="M128 448c35.3457 0 64 -28.6543 64 -64s-28.6543 -64 -64 -64s-64 28.6543 -64 64s28.6543 64 64 64zM247.283 93.8213c3.78809 -15.1504 -7.69238 -29.8213 -23.2832 -29.8213h-56v-104c0 -13.2549 -10.7451 -24 -24 -24h-32c-13.2549 0 -24 10.7451 -24 24v104h-56
-c-15.6172 0 -27.0654 14.6953 -23.2832 29.8213l48 192c2.6084 10.4316 12.0488 18.1787 23.2832 18.1787h11.3604c23.6895 -10.8936 50.5684 -10.4434 73.2793 0h11.3604c11.2344 0 20.6748 -7.74707 23.2832 -18.1787z" />
-    <glyph glyph-name="male" unicode="&#xf183;" horiz-adv-x="192" 
-d="M96 448c35.3457 0 64 -28.6543 64 -64s-28.6543 -64 -64 -64s-64 28.6543 -64 64s28.6543 64 64 64zM144 304c26.5098 0 48 -21.4902 48 -48v-136c0 -13.2549 -10.7451 -24 -24 -24h-16v-136c0 -13.2549 -10.7451 -24 -24 -24h-64c-13.2549 0 -24 10.7451 -24 24v136h-16
-c-13.2549 0 -24 10.7451 -24 24v136c0 26.5098 21.4902 48 48 48h11.3604c23.6895 -10.8936 50.5684 -10.4434 73.2793 0h11.3604z" />
-    <glyph glyph-name="sun" unicode="&#xf185;" 
-d="M256 288c52.9004 0 96 -43.0996 96 -96s-43.0996 -96 -96 -96s-96 43.0996 -96 96s43.0996 96 96 96zM502.4 207.5c12.7998 -6.40039 12.7998 -24.5996 -0.200195 -31.0996l-94.7002 -47.3008l33.5 -100.399c4.59961 -13.5 -8.2998 -26.4004 -21.9004 -21.9004
-l-100.399 33.5l-47.2998 -94.7002c-6.40039 -12.7998 -24.6006 -12.7998 -31 0l-47.3008 94.7002l-100.399 -33.5c-13.5 -4.59961 -26.4004 8.2998 -21.9004 21.9004l33.5 100.5l-94.7002 47.2998c-12.7998 6.40039 -12.7998 24.5996 0 31l94.7002 47.4004l-33.5 100.399
-c-4.59961 13.5 8.2998 26.4004 21.9004 21.9004l100.5 -33.5l47.2998 94.7002c6.40039 12.7998 24.5996 12.7998 31 0l47.4004 -94.8008l100.399 33.5c13.5 4.60059 26.4004 -8.2998 21.9004 -21.8994l-33.5 -100.4zM346.5 101.5c49.9004 49.9004 49.9004 131.1 0 181
-s-131.1 49.9004 -181 0s-49.9004 -131.1 0 -181s131.1 -49.9004 181 0z" />
-    <glyph glyph-name="moon" unicode="&#xf186;" 
-d="M283.211 -64c-141.489 0 -256 114.691 -256 256c0 141.489 114.691 256 256 256c16.0479 -0.00195312 31.5352 -1.46973 46.7754 -4.28027c11.0059 -2.0332 13.4414 -16.7178 3.75586 -22.2295c-62.8359 -35.7588 -101.498 -102.172 -101.498 -174.395
-c0 -125.378 114.059 -220.607 238.262 -196.954c10.9229 2.08008 18.6299 -10.6416 11.5625 -19.3496c-47.7783 -58.8672 -119.896 -94.792 -198.857 -94.792z" />
-    <glyph glyph-name="archive" unicode="&#xf187;" 
-d="M32 0v288h448v-288c0 -17.7002 -14.2998 -32 -32 -32h-384c-17.7002 0 -32 14.2998 -32 32zM192 212v-8c0 -6.59961 5.40039 -12 12 -12h104c6.59961 0 12 5.40039 12 12v8c0 6.59961 -5.40039 12 -12 12h-104c-6.59961 0 -12 -5.40039 -12 -12zM480 416
-c17.7002 0 32 -14.2998 32 -32v-48c0 -8.7998 -7.2002 -16 -16 -16h-480c-8.7998 0 -16 7.2002 -16 16v48c0 17.7002 14.2998 32 32 32h448z" />
-    <glyph glyph-name="bug" unicode="&#xf188;" 
-d="M511.988 159.1c-0.478516 -17.4297 -15.2168 -31.0996 -32.6533 -31.0996h-55.335v-16c0 -21.8643 -4.88184 -42.584 -13.5996 -61.1445l60.2275 -60.2285c12.4961 -12.4971 12.4961 -32.7578 0 -45.2549c-12.498 -12.4971 -32.7588 -12.4961 -45.2559 0
-l-54.7363 54.7363c-24.75 -20.0732 -56.2852 -32.1084 -90.6357 -32.1084v244c0 6.62695 -5.37305 12 -12 12h-24c-6.62695 0 -12 -5.37305 -12 -12v-244c-34.3506 0 -65.8857 12.0352 -90.6357 32.1084l-54.7363 -54.7363c-12.498 -12.4971 -32.7588 -12.4961 -45.2559 0
-c-12.4961 12.4971 -12.4961 32.7578 0 45.2549l60.2275 60.2285c-8.71777 18.5605 -13.5996 39.2803 -13.5996 61.1445v16h-55.334c-17.4355 0 -32.1748 13.6699 -32.6533 31.0996c-0.49707 18.084 14.0156 32.9004 31.9873 32.9004h56v58.7451l-46.6279 46.6279
-c-12.4961 12.4971 -12.4961 32.7578 0 45.2549c12.498 12.4971 32.7578 12.4971 45.2559 0l54.627 -54.6279h229.489l54.627 54.627c12.498 12.4971 32.7578 12.4971 45.2559 0c12.4961 -12.4971 12.4961 -32.7578 0 -45.2549l-46.627 -46.627v-58.7451h56
-c17.9717 0 32.4844 -14.8164 31.9883 -32.9004zM257 448c61.8564 0 112 -50.1436 112 -112h-224c0 61.8564 50.1436 112 112 112z" />
-    <glyph glyph-name="caret-square-left" unicode="&#xf191;" horiz-adv-x="448" 
-d="M400 -32h-352c-26.5098 0 -48 21.4902 -48 48v352c0 26.5098 21.4902 48 48 48h352c26.5098 0 48 -21.4902 48 -48v-352c0 -26.5098 -21.4902 -48 -48 -48zM259.515 323.515l-123.029 -123.029c-4.68652 -4.68652 -4.68652 -12.2842 0 -16.9717l123.028 -123.028
-c7.56055 -7.56055 20.4854 -2.20605 20.4854 8.48438v246.06c0.000976562 10.6904 -12.9248 16.0449 -20.4844 8.48535z" />
-    <glyph glyph-name="dot-circle" unicode="&#xf192;" 
-d="M256 440c136.967 0 248 -111.033 248 -248s-111.033 -248 -248 -248s-248 111.033 -248 248s111.033 248 248 248zM336 192c0 44.1123 -35.8877 80 -80 80s-80 -35.8877 -80 -80s35.8877 -80 80 -80s80 35.8877 80 80z" />
-    <glyph glyph-name="wheelchair" unicode="&#xf193;" 
-d="M496.101 62.3311l14.2275 -28.6631c3.92871 -7.91504 0.697266 -17.5156 -7.21777 -21.4453l-65.4658 -32.8857c-16.0488 -7.9668 -35.5557 -1.19434 -43.1885 15.0547l-62.7773 133.608h-139.679c-15.9248 0 -29.4258 11.71 -31.6787 27.4746
-c-33.8887 237.218 -31.9414 222.481 -32.3213 228.525c0 36.3584 30.3184 65.6348 67.0518 63.9287c33.2715 -1.54492 60.0479 -28.9043 60.9248 -62.2012c0.868164 -32.9326 -23.1514 -60.4229 -54.6074 -65.0381l4.66992 -32.6904h129.961c8.83691 0 16 -7.16309 16 -16
-v-32c0 -8.83691 -7.16309 -16 -16 -16h-120.818l4.57227 -32h132.246c12.8076 0 23.8506 -7.5127 28.9619 -18.3916l57.5146 -122.407l36.1787 18.3486c7.91504 3.92871 17.5166 0.697266 21.4453 -7.21777zM311.358 96l25.752 -54.8076
-c-27.3047 -61.8848 -89.2402 -105.192 -161.11 -105.192c-97.0469 0 -176 78.9531 -176 176c0 74.0371 45.9561 137.536 110.836 163.489c2.64453 -18.4736 5.77637 -40.3682 9.48828 -66.333c-33.6299 -19.3477 -56.3242 -55.6514 -56.3242 -97.1562
-c0 -61.7568 50.2432 -112 112 -112c56.3242 0 103.064 41.7959 110.852 96h24.5068z" />
-    <glyph glyph-name="lira-sign" unicode="&#xf195;" horiz-adv-x="384" 
-d="M371.994 192c6.78613 0 12.2578 -5.62598 11.9971 -12.4082c-5.15332 -133.758 -94.3174 -211.592 -228.408 -211.592h-79.583c-6.62695 0 -12 5.37305 -12 12v193.442l-49.3975 -10.9775c-7.49316 -1.66602 -14.6025 4.03711 -14.6025 11.7139v40.9766
-c0 5.72656 4.02734 10.5205 9.39746 11.7139l54.6025 12.1338v30.4395l-49.3975 -10.9775c-7.49316 -1.66602 -14.6025 4.03711 -14.6025 11.7139v40.9766c0 5.72656 4.02734 10.5205 9.39746 11.7139l54.6025 12.1338v68.9971c0 6.62695 5.37305 12 12 12h56
-c6.62695 0 12 -5.37305 12 -12v-51.2188l129.397 28.7539c7.49316 1.66602 14.6025 -4.03711 14.6025 -11.7139v-40.9756c0 -5.72656 -4.02734 -10.5205 -9.39746 -11.7139l-134.603 -29.9121v-30.4385l129.397 28.7539c7.49316 1.66602 14.6025 -4.03711 14.6025 -11.7139
-v-40.9766c0 -5.72656 -4.02734 -10.5205 -9.39746 -11.7139l-134.603 -29.9121v-159.219c86.1787 0 168 48 168 148.754c0 6.33398 5.63965 11.2461 11.9746 11.2461h48.0195z" />
-    <glyph glyph-name="space-shuttle" unicode="&#xf197;" horiz-adv-x="640" 
-d="M592.604 239.756c29.6787 -13.9111 47.3965 -31.7637 47.3965 -47.7559s-17.7178 -33.8447 -47.3965 -47.7559c-32.8682 -15.4082 -76.8262 -24.2441 -120.604 -24.2441h-285.674c-4.95215 -6.55469 -10.585 -11.9775 -16.7197 -16h206.394
-c-146.843 -30.2529 -156.597 -136 -279.997 -136h-0.00292969v128h-16v-128c-26.5098 0 -48 28.6543 -48 64v64c-23.1807 0 -32 10.0166 -32 24v40c0 13.9678 8.80273 24 32 24v16c-23.1807 0 -32 10.0166 -32 24v40c0 13.9678 8.80273 24 32 24v64
-c0 35.3457 21.4902 64 48 64v-128h16v128h0.00292969c123.4 0 133.154 -105.747 279.997 -136h-206.393c6.13477 -4.02246 11.7676 -9.44531 16.7197 -16h285.673c43.7773 0 87.7354 -8.83594 120.604 -24.2441zM488 152c31.9424 0 31.9092 80 0 80
-c-4.41504 0 -8 -3.58496 -8 -8v-64c0 -4.41504 3.58496 -8 8 -8z" />
-    <glyph glyph-name="envelope-square" unicode="&#xf199;" horiz-adv-x="448" 
-d="M400 416c26.5098 0 48 -21.4902 48 -48v-352c0 -26.5098 -21.4902 -48 -48 -48h-352c-26.5098 0 -48 21.4902 -48 48v352c0 26.5098 21.4902 48 48 48h352zM178.117 185.896c10.5156 -7.66895 31.3799 -26.1133 45.8828 -25.8955
-c14.4912 -0.225586 35.3828 18.2393 45.8828 25.8936c90.6836 65.8145 89.7461 65.9697 114.117 84.9385v25.167c0 13.2549 -10.7451 24 -24 24h-272c-13.2549 0 -24 -10.7451 -24 -24v-25.167c24.3525 -18.9541 23.4287 -19.1201 114.117 -84.9365zM384 230.225
-c-13.958 -10.793 -33.3252 -25.2334 -95.2832 -70.1982c-13.6826 -9.98438 -37.833 -32.1592 -64.7197 -32.0254c-26.7188 -0.134766 -50.5322 21.6689 -64.6943 32.0098c-61.9736 44.9785 -81.3447 59.4199 -95.3027 70.2139v-142.225c0 -13.2549 10.7451 -24 24 -24h272
-c13.2549 0 24 10.7451 24 24v142.225z" />
-    <glyph glyph-name="university" unicode="&#xf19c;" 
-d="M496 320v-16c0 -4.41504 -3.58496 -8 -8 -8h-24v-12c0 -6.62695 -5.37305 -12 -12 -12h-392c-6.62695 0 -12 5.37305 -12 12v12h-24c-4.41504 0 -8 3.58496 -8 8v16c0 3.33398 2.03906 6.19141 4.94141 7.3916l232 88
-c0.94043 0.389648 1.97168 0.605469 3.05371 0.605469c1.08105 0 2.12305 -0.21582 3.06348 -0.605469l232 -88c2.90234 -1.2002 4.94141 -4.05762 4.94141 -7.3916zM472 16c13.2549 0 24 -10.7451 24 -24v-16c0 -4.41504 -3.58496 -8 -8 -8h-464
-c-4.41504 0 -8 3.58496 -8 8v16c0 13.2549 10.7451 24 24 24h432zM96 256h64v-192h64v192h64v-192h64v192h64v-192h36c6.62695 0 12 -5.37305 12 -12v-20h-416v20c0 6.62695 5.37305 12 12 12h36v192z" />
-    <glyph glyph-name="graduation-cap" unicode="&#xf19d;" horiz-adv-x="640" 
-d="M622.34 294.8c23.5498 -7.24023 23.5498 -38.3594 0 -45.5996l-278.95 -85.7002c-20.3496 -6.25 -37.7295 -2.78027 -46.79 0l-195.569 60.0898c-12.25 -8.41992 -19.9307 -21.7002 -20.6904 -36.7197c9.19043 -5.62012 15.6602 -15.2998 15.6602 -26.8701
-c0 -10.7803 -5.67969 -19.8496 -13.8604 -25.6504l25.5303 -114.88c2.21973 -9.98926 -5.37988 -19.4697 -15.6201 -19.4697h-56.1094c-10.2305 0 -17.8301 9.48047 -15.6104 19.4697l25.5303 114.88c-8.18066 5.80078 -13.8604 14.8701 -13.8604 25.6504
-c0 11.8896 6.78027 21.8496 16.4102 27.3701c0.649414 17.6201 7.20996 33.71 17.8799 46.8994l-48.6299 14.9404c-23.54 7.23047 -23.54 38.3604 0 45.5898l278.95 85.7002c15.1895 4.66992 31.5898 4.66992 46.79 0zM352.79 132.91l145.03 44.5596l14.1797 -113.47
-c0 -35.3496 -85.96 -64 -192 -64s-192 28.6504 -192 64l14.1797 113.46l145.021 -44.5498c12.75 -3.91992 37.0596 -8.75977 65.5898 0z" />
-    <glyph glyph-name="language" unicode="&#xf1ab;" horiz-adv-x="640" 
-d="M152.1 211.8l10.9004 -37.5h-38.0996l11.0996 37.5c3.5 12.1006 7.7998 33.2002 7.7998 33.2002h0.5s4.2998 -21.0996 7.7998 -33.2002zM616 352c13.2998 0 24 -10.7002 24 -24v-272c0 -13.2998 -10.7002 -24 -24 -24h-280v320h280zM592 232v16
-c0 6.59961 -5.40039 12 -12 12h-64v16c0 6.59961 -5.40039 12 -12 12h-16c-6.59961 0 -12 -5.40039 -12 -12v-16h-64c-6.59961 0 -12 -5.40039 -12 -12v-16c0 -6.59961 5.40039 -12 12 -12h114.3c-6.2002 -14.2998 -16.5 -29 -30 -43.2002
-c-6.59961 6.90039 -12.3994 13.9004 -17.3994 20.9004c-3.60059 5.09961 -10.6006 6.59961 -16 3.39941l-7.30078 -4.2998l-6.5 -3.89941c-5.89941 -3.5 -7.69922 -11.4004 -3.69922 -17.1006c6.09961 -8.7002 13.0996 -17.2998 21 -25.7002
-c-8.10059 -6.2998 -16.8008 -12.2998 -26.1006 -18c-5.59961 -3.39941 -7.39941 -10.5996 -4.2002 -16.1992l7.90039 -13.9004c3.40039 -5.90039 10.9004 -7.7998 16.7002 -4.2998c12.7002 7.7998 24.5 16.2002 35.3994 24.8994
-c10.9004 -8.7998 22.8008 -17.0996 35.4004 -24.8994c5.7998 -3.5 13.2998 -1.60059 16.7002 4.2998l7.89941 13.9004c3.2002 5.69922 1.40039 12.7998 -4.09961 16.1992c-9 5.5 -17.7002 11.6006 -26.0996 18c21 22.5 35.7998 46.3008 42.6992 69.9004h11.4004
-c6.59961 0 12 5.40039 12 12zM0 328c0 13.2998 10.7002 24 24 24h280v-320h-280c-13.2998 0 -24 10.7002 -24 24v272zM58.9004 111.9c-2.60059 -7.80078 3.19922 -15.9004 11.3994 -15.9004h22.9004c5.2998 0 10 3.59961 11.5 8.7002l9.09961 31.7998h60.2002
-l9.40039 -31.9004c1.4668 -4.96582 6.06152 -8.5957 11.5 -8.59961h22.8994c8.2998 0 14 8.09961 11.4004 15.9004l-57.5 169.1c-1.7002 4.7998 -6.2998 8.09961 -11.4004 8.09961h-32.5c-5.2002 0 -9.7002 -3.19922 -11.3994 -8.09961z" />
-    <glyph glyph-name="fax" unicode="&#xf1ac;" 
-d="M480 288c17.6611 0 32 -14.3389 32 -32v-288c0 -17.6611 -14.3389 -32 -32 -32h-320c-17.6611 0 -32 14.3389 -32 32v448c0 17.6611 14.3389 32 32 32h242.75c8.82715 -0.000976562 16.8291 -3.58008 22.6201 -9.37012l45.25 -45.25
-c5.7959 -5.79199 9.37891 -13.7979 9.37988 -22.6299v-82.75zM288 16v32c0 8.83105 -7.16895 16 -16 16h-32c-8.83105 0 -16 -7.16895 -16 -16v-32c0 -8.83105 7.16895 -16 16 -16h32c8.83105 0 16 7.16895 16 16zM288 144v32c0 8.83105 -7.16895 16 -16 16h-32
-c-8.83105 0 -16 -7.16895 -16 -16v-32c0 -8.83105 7.16895 -16 16 -16h32c8.83105 0 16 7.16895 16 16zM416 16v32c0 8.83105 -7.16895 16 -16 16h-32c-8.83105 0 -16 -7.16895 -16 -16v-32c0 -8.83105 7.16895 -16 16 -16h32c8.83105 0 16 7.16895 16 16zM416 144v32
-c0 8.83105 -7.16895 16 -16 16h-32c-8.83105 0 -16 -7.16895 -16 -16v-32c0 -8.83105 7.16895 -16 16 -16h32c8.83105 0 16 7.16895 16 16zM416 256v64h-48c-8.83105 0 -16 7.16895 -16 16v48h-160v-128h224zM64 320c17.6611 0 32 -14.3389 32 -32v-320
-c0 -17.6611 -14.3389 -32 -32 -32h-32c-17.6611 0 -32 14.3389 -32 32v320c0 17.6611 14.3389 32 32 32h32z" />
-    <glyph glyph-name="building" unicode="&#xf1ad;" horiz-adv-x="448" 
-d="M436 -32c6.62695 0 12 -5.37305 12 -12v-20h-448v20c0 6.62695 5.37305 12 12 12h20v456c0 13.2549 10.7451 24 24 24h336c13.2549 0 24 -10.7451 24 -24v-456h20zM128 372v-40c0 -6.62695 5.37305 -12 12 -12h40c6.62695 0 12 5.37305 12 12v40
-c0 6.62695 -5.37305 12 -12 12h-40c-6.62695 0 -12 -5.37305 -12 -12zM128 276v-40c0 -6.62695 5.37305 -12 12 -12h40c6.62695 0 12 5.37305 12 12v40c0 6.62695 -5.37305 12 -12 12h-40c-6.62695 0 -12 -5.37305 -12 -12zM180 128c6.62695 0 12 5.37305 12 12v40
-c0 6.62695 -5.37305 12 -12 12h-40c-6.62695 0 -12 -5.37305 -12 -12v-40c0 -6.62695 5.37305 -12 12 -12h40zM256 -32v84c0 6.62695 -5.37305 12 -12 12h-40c-6.62695 0 -12 -5.37305 -12 -12v-84h64zM320 140v40c0 6.62695 -5.37305 12 -12 12h-40
-c-6.62695 0 -12 -5.37305 -12 -12v-40c0 -6.62695 5.37305 -12 12 -12h40c6.62695 0 12 5.37305 12 12zM320 236v40c0 6.62695 -5.37305 12 -12 12h-40c-6.62695 0 -12 -5.37305 -12 -12v-40c0 -6.62695 5.37305 -12 12 -12h40c6.62695 0 12 5.37305 12 12zM320 332v40
-c0 6.62695 -5.37305 12 -12 12h-40c-6.62695 0 -12 -5.37305 -12 -12v-40c0 -6.62695 5.37305 -12 12 -12h40c6.62695 0 12 5.37305 12 12z" />
-    <glyph glyph-name="child" unicode="&#xf1ae;" horiz-adv-x="384" 
-d="M120 376c0 39.7646 32.2354 72 72 72s72 -32.2354 72 -72c0 -39.7637 -32.2354 -72 -72 -72s-72 32.2363 -72 72zM374.627 374.627c12.4971 -12.4971 12.4971 -32.7568 0 -45.2539l-94.627 -94.627v-266.746c0 -17.6729 -14.3271 -32 -32 -32h-16
-c-17.6729 0 -32 14.3271 -32 32v112h-16v-112c0 -17.6729 -14.3271 -32 -32 -32h-16c-17.6729 0 -32 14.3271 -32 32v266.746l-94.627 94.626c-12.4971 12.4971 -12.4971 32.7578 0 45.2549c12.4961 12.4971 32.7578 12.4971 45.2539 0l86.627 -86.627h101.491
-l86.6279 86.627c12.4961 12.4971 32.7578 12.4971 45.2539 0z" />
-    <glyph glyph-name="paw" unicode="&#xf1b0;" 
-d="M256 224c79.4102 0 192 -122.76 192 -200.25c0 -34.9004 -26.8096 -55.75 -71.7402 -55.75c-48.4102 0 -80.75 25.0801 -120.26 25.0801c-39.1699 0 -71.4199 -25.0801 -120.26 -25.0801c-44.9307 0 -71.7402 20.8496 -71.7402 55.75c0 77.4902 112.59 200.25 192 200.25
-zM108.72 236.61c10.4004 -34.6504 -4.76953 -68.3799 -33.8896 -75.3408c-29.1201 -6.95996 -61.1602 15.4805 -71.5605 50.1309c-10.3994 34.6494 4.77051 68.3799 33.8906 75.3398s61.1602 -15.4805 71.5596 -50.1299zM193.44 257.39
-c-30.9307 -8.14941 -65.6201 20.4502 -77.46 63.8701c-11.8408 43.4199 3.63965 85.2207 34.5791 93.3604c30.9404 8.13965 65.6201 -20.4502 77.46 -63.8701c11.8408 -43.4199 -3.63965 -85.2197 -34.5791 -93.3604zM474.83 286.73
-c29.1201 -6.96094 44.29 -40.6904 33.8896 -75.3408c-10.4102 -34.6494 -42.4395 -57.0898 -71.5596 -50.1299s-44.29 40.6904 -33.8906 75.3398c10.4102 34.6504 42.4404 57.0908 71.5605 50.1309zM318.56 257.39c-30.9395 8.14062 -46.4199 49.9404 -34.5791 93.3604
-c11.8398 43.4199 46.5195 72.0195 77.46 63.8701c30.9395 -8.15039 46.4199 -49.9404 34.5791 -93.3604c-11.8398 -43.4199 -46.5195 -72.0098 -77.46 -63.8701z" />
-    <glyph glyph-name="cube" unicode="&#xf1b2;" 
-d="M239.1 441.7c10.9004 4.09961 22.9004 4.09961 33.7002 -0.100586l208 -78c18.7002 -7 31.1006 -24.8994 31.1006 -44.8994v-225.101c0 -18.0996 -10.2002 -34.7998 -26.5 -42.8994l-208 -104c-13.5 -6.7998 -29.4004 -6.7998 -42.9004 0l-208 104
-c-16.2002 8.09961 -26.5 24.7002 -26.5 42.8994v225.101c0 20 12.4004 38 31.0996 45zM256 379.6l-192 -72v-1.09961l192 -78l192 78v1.09961zM288 23.5996l160 80v133.9l-160 -65v-148.9z" />
-    <glyph glyph-name="cubes" unicode="&#xf1b3;" 
-d="M488.6 197.8c14.1006 -5.2998 23.4004 -18.7002 23.4004 -33.7002v-110.1c0 -13.5996 -7.7002 -26.0996 -19.9004 -32.2002l-100 -50c-10.0996 -5.09961 -22.0996 -5.09961 -32.1992 0l-103.9 52l-103.9 -52c-10.0996 -5.09961 -22.0996 -5.09961 -32.1992 0l-100 50
-c-12.2002 6.10059 -19.9004 18.6006 -19.9004 32.2002v110.1c0 15 9.2998 28.4004 23.2998 33.7002l96.6006 36.2002v108.5c0 15 9.2998 28.4004 23.3994 33.7002l100 37.5c8.2002 3.09961 17.2002 3.09961 25.2998 0l100 -37.5
-c14.1006 -5.2998 23.4004 -18.7002 23.4004 -33.7002v-108.5zM358 233.2v73.2998l-85 -37v-68.2002zM154 343.9v-0.600586l102 -41.3994l102 41.3994v0.600586l-102 38.1992zM238 52.7998v75.4004l-85 -38.7998v-79.1006zM238 164.8v0.600586l-102 38.1992l-102 -38.1992
-v-0.600586l102 -41.3994zM478 52.7998v75.4004l-85 -38.7998v-79.1006zM478 164.8v0.600586l-102 38.1992l-102 -38.1992v-0.600586l102 -41.3994z" />
-    <glyph glyph-name="recycle" unicode="&#xf1b8;" 
-d="M184.561 186.097c3.23242 -13.9971 -12.1221 -24.6348 -24.0674 -17.168l-40.7363 25.4551l-50.8672 -81.4014c-13.2832 -21.2559 2.07031 -48.9824 27.1221 -48.9824h51.9883c6.62695 0 12 -5.37305 12 -12v-40c0 -6.62695 -5.37305 -12 -12 -12h-51.8848
-c-75.334 0 -121.302 83.0479 -81.4082 146.88l50.8223 81.3877l-40.7256 25.4482c-12.0811 7.54688 -8.96582 25.9609 4.87891 29.1582l110.237 25.4502c8.61133 1.9873 17.2012 -3.38086 19.1895 -11.9902zM283.122 369.012
-c-12.2842 19.6543 -41.5449 20.3193 -54.2568 -0.0214844l-17.9609 -28.7432c-3.5127 -5.62012 -10.916 -7.3291 -16.5361 -3.81738l-33.9189 21.1953c-5.62012 3.51172 -7.33008 10.9131 -3.82031 16.5332l17.9629 28.7656c37.6074 60.1709 125.295 60.0332 162.816 0
-l41.2627 -66.082l40.6875 25.4238c12.0771 7.55176 27.2646 -3.32324 24.0674 -17.168l-25.4502 -110.236c-1.97363 -8.55273 -10.5166 -13.9893 -19.1885 -11.9902l-110.237 25.4502c-13.8789 3.20508 -16.9297 21.6299 -4.87891 29.1572l40.7402 25.457zM497.288 146.88
-c39.9268 -63.8828 -6.13379 -146.88 -81.4082 -146.88h-95.8799v-47.9893c0 -14.3105 -17.3105 -21.3184 -27.3135 -11.3145l-80 79.9883c-6.24805 6.24805 -6.24805 16.3799 0 22.627l80 79.9814c10.0713 10.0703 27.3135 2.90039 27.3135 -11.3125v-47.9814h95.9844
-c25.0791 0 40.3926 27.749 27.1357 48.96l-27.5645 44.1123c-3.51172 5.62109 -1.80176 13.0234 3.81836 16.5361l33.8613 21.1582c5.62207 3.51367 13.0264 1.80273 16.5381 -3.82031z" />
-    <glyph glyph-name="car" unicode="&#xf1b9;" 
-d="M499.99 272c7.80957 0 13.54 -7.33984 11.6494 -14.9102l-6 -24c-1.33008 -5.33984 -6.12988 -9.08984 -11.6396 -9.08984h-20.0703c13.4199 -11.7305 22.0703 -28.7803 22.0703 -48v-48c0 -16.1299 -6.16016 -30.6797 -16 -41.9297v-54.0703
-c0 -17.6699 -14.3301 -32 -32 -32h-32c-17.6699 0 -32 14.3301 -32 32v32h-256v-32c0 -17.6699 -14.3301 -32 -32 -32h-32c-17.6699 0 -32 14.3301 -32 32v54.0703c-9.83984 11.2598 -16 25.8096 -16 41.9297v48c0 19.2197 8.65039 36.2695 22.0801 48h-20.0703
-c-5.50977 0 -10.3096 3.75 -11.6396 9.08984l-6 24c-1.90039 7.57031 3.83008 14.9102 11.6396 14.9102h59.8604l16.6396 41.5996c17.1104 42.7705 57.9307 70.4004 103.99 70.4004h127c46.0703 0 86.8799 -27.6299 103.98 -70.4004l16.6396 -41.5996h59.8701z
-M147.93 289.83l-19.9297 -49.8301h256l-19.9297 49.8301c-7.29004 18.2197 -24.9404 30.1699 -44.5703 30.1699h-127c-19.6299 0 -37.2803 -11.9502 -44.5703 -30.1699zM96 128.2c19.2002 0 48 -3.19043 48 15.9502c0 19.1396 -28.7998 47.8496 -48 47.8496
-s-32 -12.7598 -32 -31.9004c0 -19.1396 12.7998 -31.8994 32 -31.8994zM416 128.2c19.2002 0 32 12.7598 32 31.8994c0 19.1406 -12.7998 31.9004 -32 31.9004s-48 -28.71 -48 -47.8496c0 -19.1406 28.7998 -15.9502 48 -15.9502z" />
-    <glyph glyph-name="taxi" unicode="&#xf1ba;" 
-d="M462 206.36c28.5898 -6.40039 50 -31.8301 50 -62.3604v-48c0 -23.6201 -12.9502 -44.0303 -32 -55.1201v-40.8799c0 -17.6699 -14.3301 -32 -32 -32h-32c-17.6699 0 -32 14.3301 -32 32v32h-256v-32c0 -17.6699 -14.3301 -32 -32 -32h-32c-17.6699 0 -32 14.3301 -32 32
-v40.8799c-19.0498 11.0801 -32 31.4902 -32 55.1201v48c0 30.5303 21.4102 55.96 50 62.3604l22 84.8398c9.59961 35.2002 41.5996 60.7998 76.7998 60.7998h11.2002v32c0 17.6699 14.3301 32 32 32h128c17.6699 0 32 -14.3301 32 -32v-32h11.2002
-c35.2002 0 67.2002 -25.5996 76.7998 -60.7998zM96 96c17.6699 0 32 14.3301 32 32s-14.3301 32 -32 32s-32 -14.3301 -32 -32s14.3301 -32 32 -32zM116.55 208h278.9l-17.3906 67.1396c-2.01953 7.37988 -9.37988 12.8604 -14.8496 12.8604h-214.4
-c-5.46973 0 -12.8291 -5.48047 -15.0596 -13.6396zM416 96c17.6699 0 32 14.3301 32 32s-14.3301 32 -32 32s-32 -14.3301 -32 -32s14.3301 -32 32 -32z" />
-    <glyph glyph-name="tree" unicode="&#xf1bb;" horiz-adv-x="384" 
-d="M378.31 69.5098c6 -6.79004 7.36035 -16.0898 3.56055 -24.2598c-3.75 -8.0498 -12 -13.25 -21.0098 -13.25h-136.86v-24.4502l30.29 -48.3994c5.32031 -10.6406 -2.41992 -23.1602 -14.3096 -23.1602h-95.9609c-11.8896 0 -19.6299 12.5195 -14.3096 23.1602
-l30.29 48.3994v24.4502h-136.86c-9.00977 0 -17.2598 5.2002 -21.0098 13.25c-3.7998 8.16992 -2.43945 17.4697 3.56055 24.2598l79.8896 90.4902h-30.6299c-9.02051 0 -16.9805 5 -20.7803 13.0498c-3.79004 8.0498 -2.54004 17.2598 3.27051 24.04l78.1396 90.9102
-h-28.8896c-9.10059 0 -17.3105 5.34961 -20.8701 13.6104c-3.51074 8.12988 -1.86035 17.5898 4.23926 24.0801l110.28 117.479c6.04004 6.4502 17.29 6.4502 23.3203 0l110.27 -117.479c6.10059 -6.49023 7.76074 -15.9502 4.24023 -24.0801
-c-3.55957 -8.26074 -11.7598 -13.6104 -20.8604 -13.6104h-28.8896l78.1299 -90.8896c5.83008 -6.79004 7.08008 -16.0107 3.28027 -24.0508c-3.7998 -8.05957 -11.7705 -13.0596 -20.7803 -13.0596h-30.6299z" />
-    <glyph glyph-name="database" unicode="&#xf1c0;" horiz-adv-x="448" 
-d="M448 374.857v-45.7148c0 -40.2852 -100.333 -73.1426 -224 -73.1426s-224 32.8574 -224 73.1426v45.7148c0 40.2852 100.333 73.1426 224 73.1426s224 -32.8574 224 -73.1426zM448 272v-102.857c0 -40.2852 -100.333 -73.1426 -224 -73.1426s-224 32.8574 -224 73.1426
-v102.857c48.125 -33.1426 136.208 -48.5723 224 -48.5723s175.874 15.4297 224 48.5723zM448 112v-102.857c0 -40.2852 -100.333 -73.1426 -224 -73.1426s-224 32.8574 -224 73.1426v102.857c48.125 -33.1426 136.208 -48.5723 224 -48.5723s175.874 15.4297 224 48.5723z
-" />
-    <glyph glyph-name="file-pdf" unicode="&#xf1c1;" horiz-adv-x="384" 
-d="M181.9 191.9c-5 16 -4.90039 46.8994 -2 46.8994c8.39941 0 7.59961 -36.8994 2 -46.8994zM180.2 144.7c9.59961 -17.4004 21.7998 -31.2002 34.5 -40.7998c-23.9004 -4.7002 -44.6006 -14.9004 -62.9004 -21.9004c11.1006 19.4004 20.7002 42.5 28.4004 62.7002z
-M86.0996 19.9004c5.80078 15.6992 28.2002 33.8994 34.9004 40.1992c-21.7002 -34.7998 -34.9004 -41 -34.9004 -40.1992zM248 288h136v-328c0 -13.2998 -10.7002 -24 -24 -24h-336c-13.2998 0 -24 10.7002 -24 24v464c0 13.2998 10.7002 24 24 24h200v-136
-c0 -13.2002 10.7998 -24 24 -24zM240 116.2c-20 12.2002 -33.2998 29 -42.7002 53.7998c4.5 18.5 11.6006 46.5996 6.2002 64.2002c-4.7002 29.3994 -42.4004 26.5 -47.7998 6.7998c-5 -18.2998 -0.400391 -44.0996 8.09961 -77
-c-11.5996 -27.5996 -28.7002 -64.5996 -40.7998 -85.7998c-0.0996094 0 -0.0996094 -0.100586 -0.200195 -0.100586c-27.0996 -13.8994 -73.5996 -44.5 -54.5 -68c5.60059 -6.89941 16 -10 21.5 -10c17.9004 0 35.7002 18 61.1006 61.8008
-c25.7998 8.5 54.0996 19.0996 79 23.1992c21.6992 -11.7998 47.0996 -19.5 64 -19.5c29.1992 0 31.1992 32 19.6992 43.4004c-13.8994 13.5996 -54.2998 9.7002 -73.5996 7.2002zM377 343c4.5 -4.5 7 -10.5996 7 -16.9004v-6.09961h-128v128h6c6.40039 0 12.5 -2.5 17 -7z
-M302.9 87.7002c0 0 -5.7002 -6.7998 -42.8008 9c40.3008 2.89941 46.9004 -6.2998 42.8008 -9z" />
-    <glyph glyph-name="file-word" unicode="&#xf1c2;" horiz-adv-x="384" 
-d="M224 312c0 -13.2002 10.7998 -24 24 -24h136v-328c0 -13.2998 -10.7002 -24 -24 -24h-336c-13.2998 0 -24 10.7002 -24 24v464c0 13.2998 10.7002 24 24 24h200v-136zM281.1 192c-5.59961 0 -10.5 -3.90039 -11.5 -9.5c-24.1992 -111.4 -21.7998 -118 -21.5996 -129.2
-c-0.799805 5.40039 -5.59961 29 -29.5996 129.4c-1.30078 5.39941 -6.10059 9.2002 -11.7002 9.2002h-29.1006c-5.59961 0 -10.3994 -3.7002 -11.6992 -9.10059c-22.1006 -90 -27.8008 -112.5 -29.4004 -122.7c-0.900391 12.7002 -5.40039 44.2002 -21 122.2
-c-1.09961 5.7002 -6.09961 9.7002 -11.7998 9.7002h-24.5c-7.7002 0 -13.4004 -7.09961 -11.7002 -14.5996l37.7998 -168c1.2002 -5.5 6.10059 -9.40039 11.7002 -9.40039h37.0996c5.5 0 10.3008 3.7998 11.6006 9.09961c23.2002 93.1006 24.5 96.2002 25.5996 110.5h0.5
-c4.7998 -29.2998 -0.200195 -7 25.6006 -110.5c1.2998 -5.2998 6.09961 -9.09961 11.5996 -9.09961h38c5.59961 0 10.5 3.7998 11.7002 9.2998l38 168c1.7002 7.60059 -4 14.7002 -11.7002 14.7002h-23.9004zM384 326.1v-6.09961h-128v128h6.09961
-c6.40039 0 12.5 -2.5 17 -7l97.9004 -98c4.5 -4.5 7 -10.5996 7 -16.9004z" />
-    <glyph glyph-name="file-excel" unicode="&#xf1c3;" horiz-adv-x="384" 
-d="M224 312c0 -13.2002 10.7998 -24 24 -24h136v-328c0 -13.2998 -10.7002 -24 -24 -24h-336c-13.2998 0 -24 10.7002 -24 24v464c0 13.2998 10.7002 24 24 24h200v-136zM284.1 205.5c5.10059 8 -0.599609 18.5 -10.0996 18.4004h-34.7998
-c-4.40039 0 -8.5 -2.40039 -10.6006 -6.30078c-30.5 -56.7998 -36.5996 -68.5 -36.5996 -68.5c-16.5996 34.9004 -10.5 19.7002 -36.5996 68.5c-2.10059 3.90039 -6.2002 6.30078 -10.6006 6.30078h-34.7998c-9.5 0 -15.2998 -10.5 -10.0996 -18.5l60.2998 -93.5
-l-60.2998 -93.5c-5.10059 -8 0.599609 -18.5 10.0996 -18.5h34.9004c4.39941 0 8.39941 2.39941 10.5 6.2998c26.5996 48.7998 30.1992 54 36.5996 68.7998c0 0 16.9004 -32.5 36.5 -68.7002c2.09961 -3.89941 6.2002 -6.2998 10.5996 -6.2998h34.9004
-c9.5 0 15.2002 10.5 10.0996 18.5l-60.0996 93.5zM384 326.1v-6.09961h-128v128h6.09961c6.40039 0 12.5 -2.5 17 -7l97.9004 -98c4.5 -4.5 7 -10.5996 7 -16.9004z" />
-    <glyph glyph-name="file-powerpoint" unicode="&#xf1c4;" horiz-adv-x="384" 
-d="M193.7 176.8c8.7998 0 15.5 -2.7002 20.2998 -8.09961c9.59961 -10.9004 9.7998 -32.7002 -0.200195 -44.1006c-4.89941 -5.59961 -11.8994 -8.5 -21.0996 -8.5h-26.9004v60.7002h27.9004zM377 343c4.5 -4.5 7 -10.5996 7 -16.9004v-6.09961h-128v128h6
-c6.40039 0 12.5 -2.5 17 -7zM224 312c0 -13.2002 10.7998 -24 24 -24h136v-328c0 -13.2998 -10.7002 -24 -24 -24h-336c-13.2998 0 -24 10.7002 -24 24v464c0 13.2998 10.7002 24 24 24h200v-136zM277 146.8c0 44.2002 -28.4004 77 -72.9004 77h-81
-c-6.59961 0 -12 -5.39941 -12 -12v-199.8c0 -6.59961 5.40039 -12 12 -12h30.8008c6.59961 0 12 5.40039 12 12v57.2002c22.2998 0 111.1 -12.7002 111.1 77.5996z" />
-    <glyph glyph-name="file-image" unicode="&#xf1c5;" horiz-adv-x="384" 
-d="M384 326.059v-6.05859h-128v128h6.05859c6.62305 0 12.626 -2.68457 16.9707 -7.0293l97.9404 -97.9404c4.34473 -4.34473 7.03027 -10.3477 7.03027 -16.9717zM248 288h136v-328c0 -13.2549 -10.7451 -24 -24 -24h-336c-13.2549 0 -24 10.7451 -24 24v464
-c0 13.2549 10.7451 24 24 24h200v-136c0 -13.2002 10.7998 -24 24 -24zM112.545 272c-26.5088 0 -48 -21.4902 -48 -48s21.4902 -48 48 -48s48 21.4902 48 48s-21.4902 48 -48 48zM320.545 32v112l-39.5137 39.5146c-4.6875 4.68652 -12.2852 4.68652 -16.9717 0
-l-103.515 -103.515l-39.5146 39.5146c-4.68652 4.68652 -11.7988 5.1709 -16.4854 0.485352l-39.5146 -39.5146l-0.485352 -48.4854h256z" />
-    <glyph glyph-name="file-archive" unicode="&#xf1c6;" horiz-adv-x="384" 
-d="M377 343c4.5 -4.5 7 -10.5996 7 -16.9004v-6.09961h-128v128h6.09961c6.40039 0 12.5 -2.5 17 -7zM128.4 112c17.8994 0 32.5 -12.0996 32.5 -27s-14.5 -27 -32.4004 -27s-32.5 12 -32.5 27c0 14.9004 14.5 27 32.4004 27zM224 312c0 -13.2002 10.7998 -24 24 -24h136
-v-328c0 -13.2998 -10.7002 -24 -24 -24h-336c-13.2998 0 -24 10.7002 -24 24v464c0 13.2998 10.7002 24 24 24h104.4v-32h32v32h63.5996v-136zM95.9004 416v-32h32v32h-32zM128.2 32c33 0 57.7998 30.2002 51.3994 62.5996l-17.2998 87.7002
-c-1.09961 5.60059 -6.09961 9.7002 -11.7998 9.7002h-22.0996v32h32v32h-32v32h32v32h-32v32h32v32h-32v-32h-32v-32h32v-32h-32v-32h32v-32h-32v-32l-19.6006 -97.0996c-6.59961 -32.5 18.2002 -62.9004 51.4004 -62.9004z" />
-    <glyph glyph-name="file-audio" unicode="&#xf1c7;" horiz-adv-x="384" 
-d="M224 312c0 -13.2002 10.7998 -24 24 -24h136v-328c0 -13.2998 -10.7002 -24 -24 -24h-336c-13.2998 0 -24 10.7002 -24 24v464c0 13.2998 10.7002 24 24 24h200v-136zM160 44v136c0 10.7002 -12.9004 16.0996 -20.5 8.5l-35.5 -36.5h-28c-6.59961 0 -12 -5.40039 -12 -12
-v-56c0 -6.59961 5.40039 -12 12 -12h28l35.5 -36.5c7.59961 -7.5 20.5 -2.2002 20.5 8.5zM193.2 91.5996c-22.5 -23.0996 12.5996 -55.7998 34.3994 -33.5c27.2002 28 27.2002 72.5 0 100.4c-22.1992 22.7002 -56.5 -10.7002 -34.3994 -33.5
-c9.09961 -9.2998 9.09961 -24.0996 0 -33.4004zM279.2 208.7c-22.1006 22.7998 -56.5 -10.7002 -34.4004 -33.5c36.2998 -37.2998 36.2002 -96.6006 0 -133.8c-22.5996 -23.2002 12.6006 -55.9004 34.4004 -33.5c54.3994 56 54.3994 144.899 0 200.8zM384 326.1v-6.09961
-h-128v128h6.09961c6.40039 0 12.5 -2.5 17 -7l97.9004 -98c4.5 -4.5 7 -10.5996 7 -16.9004z" />
-    <glyph glyph-name="file-video" unicode="&#xf1c8;" horiz-adv-x="384" 
-d="M384 326.059v-6.05859h-128v128h6.05859c6.36523 0 12.4707 -2.5293 16.9717 -7.0293l97.9404 -97.9404c4.34375 -4.34473 7.0293 -10.3486 7.0293 -16.9717zM224 312c0 -13.2002 10.7998 -24 24 -24h136v-328c0 -13.2549 -10.7451 -24 -24 -24h-336
-c-13.2549 0 -24 10.7451 -24 24v464c0 13.2549 10.7451 24 24 24h200v-136zM320 167.984c0 21.4609 -25.96 31.9795 -40.9707 16.9697l-55.0293 -55.0127v38.0586c0 13.2549 -10.7451 24 -24 24h-112c-13.2549 0 -24 -10.7451 -24 -24v-112c0 -13.2549 10.7451 -24 24 -24
-h112c13.2549 0 24 10.7451 24 24v38.0586l55.0293 -55.0088c15.0273 -15.0264 40.9707 -4.47363 40.9707 16.9717v111.963z" />
-    <glyph glyph-name="file-code" unicode="&#xf1c9;" horiz-adv-x="384" 
-d="M384 326.059v-6.05859h-128v128h6.05859c6.36523 0 12.4707 -2.5293 16.9717 -7.0293l97.9404 -97.9404c4.34375 -4.34473 7.0293 -10.3486 7.0293 -16.9717zM248 288h136v-328c0 -13.2549 -10.7451 -24 -24 -24h-336c-13.2549 0 -24 10.7451 -24 24v464
-c0 13.2549 10.7451 24 24 24h200v-136c0 -13.2002 10.7998 -24 24 -24zM123.206 47.4951l19.5791 20.8838c0.905273 0.96582 1.46289 2.26562 1.46289 3.69238c0 1.61426 -0.709961 3.06445 -1.83496 4.05469l-40.7627 35.874l40.7627 35.874
-c1.125 0.990234 1.83203 2.44043 1.83203 4.05566c0 1.42676 -0.554688 2.72559 -1.45996 3.69141l-19.5791 20.8848c-0.985352 1.05176 -2.3877 1.70703 -3.94141 1.70703c-1.42676 0 -2.72559 -0.555664 -3.69141 -1.46094l-64.8662 -60.8115
-c-1.05078 -0.986328 -1.70801 -2.38672 -1.70801 -3.93945c0 -1.55371 0.657227 -2.9541 1.70801 -3.94043l64.8662 -60.8115c0.96582 -0.905273 2.26562 -1.46289 3.69336 -1.46289c1.55273 0 2.9541 0.657227 3.93945 1.70898zM174.501 -2.98438
-c0.478516 -0.138672 0.982422 -0.212891 1.50488 -0.212891c2.45801 0 4.53418 1.64551 5.18555 3.89453l61.4395 211.626c0.138672 0.478516 0.213867 0.982422 0.213867 1.50488c0 2.45801 -1.64551 4.53418 -3.89355 5.18652l-27.4521 7.9707
-c-0.477539 0.138672 -0.981445 0.212891 -1.50391 0.212891c-2.45801 0 -4.53516 -1.64551 -5.18848 -3.89453l-61.4395 -211.626c-0.138672 -0.477539 -0.212891 -0.981445 -0.212891 -1.50293c0 -2.45898 1.64551 -4.53516 3.89355 -5.18848zM335.293 108.061
-c1.05176 0.986328 1.70898 2.38672 1.70898 3.94043c0 1.55273 -0.657227 2.95312 -1.70801 3.93945l-64.8662 60.8115c-0.96582 0.905273 -2.26562 1.46289 -3.69336 1.46289c-1.55273 0 -2.9541 -0.657227 -3.93945 -1.70898l-19.5801 -20.8848
-c-0.905273 -0.96582 -1.46289 -2.26562 -1.46289 -3.69238c0 -1.61426 0.709961 -3.06445 1.83496 -4.05469l40.7627 -35.874l-40.7637 -35.873c-1.125 -0.990234 -1.83203 -2.44043 -1.83203 -4.05566c0 -1.42676 0.554688 -2.72559 1.45996 -3.69141l19.5801 -20.8848
-c0.985352 -1.05176 2.3877 -1.70703 3.94141 -1.70703c1.42676 0 2.72559 0.555664 3.69141 1.46094z" />
-    <glyph glyph-name="life-ring" unicode="&#xf1cd;" 
-d="M256 440c136.967 0 248 -111.033 248 -248s-111.033 -248 -248 -248s-248 111.033 -248 248s111.033 248 248 248zM429.696 320.441c-12.8584 17.3291 -27.9258 32.3965 -45.2549 45.2549l-63.3994 -63.3994c18.585 -11.0029 34.2676 -26.6963 45.2549 -45.2549zM256 96
-c53.0186 0 96 42.9814 96 96s-42.9814 96 -96 96s-96 -42.9814 -96 -96s42.9814 -96 96 -96zM127.559 365.696c-17.3291 -12.8584 -32.3965 -27.9258 -45.2549 -45.2549l63.3994 -63.3994c11.0029 18.585 26.6963 34.2676 45.2549 45.2549zM82.3037 63.5586
-c12.8584 -17.3291 27.9258 -32.3965 45.2549 -45.2549l63.3994 63.3994c-18.585 11.0029 -34.2676 26.6963 -45.2549 45.2549zM384.441 18.3037c17.3291 12.8584 32.3965 27.9258 45.2549 45.2549l-63.3994 63.3994c-11.0029 -18.585 -26.6963 -34.2676 -45.2549 -45.2549z
-" />
-    <glyph glyph-name="circle-notch" unicode="&#xf1ce;" 
-d="M288 408.944c0 15.5996 14.6777 27.167 29.7891 23.292c107.071 -27.457 186.211 -124.604 186.211 -240.236c0 -136.788 -110.745 -247.711 -247.466 -247.999c-137.054 -0.289062 -247.812 109.615 -248.531 246.667c-0.609375 116.126 78.5996 213.85 185.951 241.502
-c15.2119 3.91895 30.0459 -7.52539 30.0459 -23.2344v-16.6475c0 -10.8047 -7.28125 -20.1621 -17.6885 -23.0693c-77.5254 -21.6543 -134.312 -92.749 -134.312 -177.219c0 -101.705 82.3105 -184 184 -184c101.705 0 184 82.3105 184 184
-c0 84.4824 -56.7959 155.566 -134.314 177.219c-10.4043 2.90723 -17.6855 12.2627 -17.6855 23.0664v16.6592z" />
-    <glyph glyph-name="paper-plane" unicode="&#xf1d8;" 
-d="M476 444.8c17.2998 10 39 -4.59961 35.5996 -24.7998l-72 -432c-2.59961 -15.2998 -18.7998 -24.2002 -33 -18.2002l-124.6 52.2002l-63.5 -77.2998c-14 -17.1006 -42.5 -7.7998 -42.5 15.7998v80.5l240.9 293.5c4.69922 5.7002 -3.10059 13.2002 -8.60059 8.2998
-l-287.3 -253.2l-106.3 44.6006c-18 7.59961 -20.2998 32.7998 -2.2002 43.2002z" />
-    <glyph glyph-name="history" unicode="&#xf1da;" 
-d="M504 192.469c0.25293 -136.64 -111.18 -248.372 -247.82 -248.468c-59.0146 -0.0419922 -113.223 20.5303 -155.821 54.9111c-11.0771 8.93945 -11.9053 25.541 -1.83984 35.6064l11.2676 11.2676c8.6084 8.6084 22.3525 9.55078 31.8906 1.9834
-c31.3848 -24.9043 71.1045 -39.7695 114.323 -39.7695c101.705 0 184 82.3105 184 184c0 101.705 -82.3105 184 -184 184c-48.8145 0 -93.1494 -18.9688 -126.068 -49.9316l50.7539 -50.7539c10.0801 -10.0801 2.94141 -27.3145 -11.3125 -27.3145h-145.373
-c-8.83691 0 -16 7.16309 -16 16v145.373c0 14.2539 17.2344 21.3926 27.3145 11.3135l49.3711 -49.3711c44.5234 42.5488 104.866 68.6846 171.314 68.6846c136.81 0 247.747 -110.78 248 -247.531zM323.088 113.685c-8.1377 -10.4629 -23.2158 -12.3467 -33.6787 -4.20996
-l-65.4092 50.874v135.651c0 13.2549 10.7451 24 24 24h16c13.2549 0 24 -10.7451 24 -24v-104.349l40.7012 -31.6572c10.4629 -8.13672 12.3477 -23.2158 4.20996 -33.6787z" />
-    <glyph glyph-name="heading" unicode="&#xf1dc;" 
-d="M448 352v-320h32c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-160c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h32v128h-192v-128h32c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-160
-c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h32v320h-32c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h160c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-32v-128h192v128h-32c-8.83105 0 -16 7.16895 -16 16v32
-c0 8.83105 7.16895 16 16 16h160c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-32z" />
-    <glyph glyph-name="paragraph" unicode="&#xf1dd;" horiz-adv-x="448" 
-d="M448 400v-32c0 -8.83105 -7.16895 -16 -16 -16h-48v-368c0 -8.83105 -7.16895 -16 -16 -16h-32c-8.83105 0 -16 7.16895 -16 16v368h-32v-368c0 -8.83105 -7.16895 -16 -16 -16h-32c-8.83105 0 -16 7.16895 -16 16v112h-32c-88.3066 0 -160 71.6934 -160 160
-s71.6934 160 160 160h240c8.83105 0 16 -7.16895 16 -16z" />
-    <glyph glyph-name="sliders-h" unicode="&#xf1de;" 
-d="M496 64c8.7998 0 16 -7.2002 16 -16v-32c0 -8.7998 -7.2002 -16 -16 -16h-336v-16c0 -8.7998 -7.2002 -16 -16 -16h-32c-8.7998 0 -16 7.2002 -16 16v16h-80c-8.7998 0 -16 7.2002 -16 16v32c0 8.7998 7.2002 16 16 16h80v16c0 8.7998 7.2002 16 16 16h32
-c8.7998 0 16 -7.2002 16 -16v-16h336zM496 224c8.7998 0 16 -7.2002 16 -16v-32c0 -8.7998 -7.2002 -16 -16 -16h-80v-16c0 -8.7998 -7.2002 -16 -16 -16h-32c-8.7998 0 -16 7.2002 -16 16v16h-336c-8.7998 0 -16 7.2002 -16 16v32c0 8.7998 7.2002 16 16 16h336v16
-c0 8.7998 7.2002 16 16 16h32c8.7998 0 16 -7.2002 16 -16v-16h80zM496 384c8.7998 0 16 -7.2002 16 -16v-32c0 -8.7998 -7.2002 -16 -16 -16h-208v-16c0 -8.7998 -7.2002 -16 -16 -16h-32c-8.7998 0 -16 7.2002 -16 16v16h-208c-8.7998 0 -16 7.2002 -16 16v32
-c0 8.7998 7.2002 16 16 16h208v16c0 8.7998 7.2002 16 16 16h32c8.7998 0 16 -7.2002 16 -16v-16h208z" />
-    <glyph glyph-name="share-alt" unicode="&#xf1e0;" horiz-adv-x="448" 
-d="M352 128c53.0186 0 96 -42.9814 96 -96s-42.9814 -96 -96 -96s-96 42.9814 -96 96c0 0.00976562 0.00292969 -0.0429688 0.00292969 -0.0332031c0 7.16699 0.785156 14.1523 2.27344 20.874l-102.486 64.0537c-16.4033 -13.0752 -37.1816 -20.8945 -59.79 -20.8945
-c-53.0186 0 -96 42.9814 -96 96s42.9814 96 96 96c22.6084 0 43.3867 -7.81934 59.79 -20.8945l102.486 64.0537c-1.48633 6.71094 -2.27637 13.6826 -2.27637 20.8408c0 53.0186 42.9814 96 96 96s96 -42.9814 96 -96s-42.9814 -96 -96 -96
-c-22.6084 0 -43.3867 7.81934 -59.79 20.8965l-102.486 -64.0547c1.48828 -6.73145 2.27344 -13.6025 2.27344 -20.7793s-0.785156 -14.1719 -2.27344 -20.9033l102.486 -64.0537c16.4033 13.0752 37.1816 20.8945 59.79 20.8945z" />
-    <glyph glyph-name="share-alt-square" unicode="&#xf1e1;" horiz-adv-x="448" 
-d="M448 368v-352c0 -26.5098 -21.4902 -48 -48 -48h-352c-26.5098 0 -48 21.4902 -48 48v352c0 26.5098 21.4902 48 48 48h352c26.5098 0 48 -21.4902 48 -48zM304 152c-14.5615 0 -27.8232 -5.56055 -37.7832 -14.6709l-67.958 40.7744
-c1.13379 4.45312 1.73633 9.11719 1.73633 13.9199c0 4.80371 -0.602539 9.4209 -1.73633 13.874l67.958 40.7744c9.95996 -9.11133 23.2217 -14.6719 37.7832 -14.6719c30.9277 0 56 25.0723 56 56s-25.0723 56 -56 56s-56 -25.0723 -56 -56
-c0 -4.79688 0.605469 -9.45312 1.74023 -13.8975l-67.958 -40.7744c-9.95898 9.11133 -23.2207 14.6719 -37.7822 14.6719c-30.9277 0 -56 -25.0723 -56 -56s25.0723 -56 56 -56c14.5615 0 27.8232 5.56055 37.7832 14.6709l67.958 -40.7744
-c-1.13281 -4.44141 -1.73535 -9.09375 -1.73535 -13.8857c0 -0.0117188 -0.00488281 0 -0.00488281 -0.0117188c0 -30.9277 25.0723 -56 56 -56s56 25.0723 56 56c-0.000976562 30.9287 -25.0732 56.001 -56.001 56.001z" />
-    <glyph glyph-name="bomb" unicode="&#xf1e2;" 
-d="M440.5 359.5l-52 -52l26.5 -26.5c9.40039 -9.40039 9.40039 -24.5996 0 -33.9004l-17.4004 -17.3994c11.8008 -26.1006 18.4004 -55.1006 18.4004 -85.6006c0 -114.899 -93.0996 -208 -208 -208s-208 93 -208 207.9s93.0996 208 208 208
-c30.5 0 59.5 -6.59961 85.5996 -18.4004l17.4004 17.4004c9.40039 9.40039 24.5996 9.40039 33.9004 0l26.5 -26.5l52 52zM500 388c6.59961 0 12 -5.40039 12 -12s-5.40039 -12 -12 -12h-24c-6.59961 0 -12 5.40039 -12 12s5.40039 12 12 12h24zM440 448
-c6.59961 0 12 -5.40039 12 -12v-24c0 -6.59961 -5.40039 -12 -12 -12s-12 5.40039 -12 12v24c0 6.59961 5.40039 12 12 12zM473.9 393c-4.60059 -4.7002 -12.2002 -4.7002 -17 0c-4.7002 4.7002 -4.7002 12.2998 0 17l17 17c4.69922 4.7002 12.2998 4.7002 17 0
-c4.69922 -4.7002 4.69922 -12.2998 0 -17zM406.1 393l-17 17c-4.69922 4.7002 -4.69922 12.2998 0 17c4.7002 4.7002 12.3008 4.7002 17 0l17 -17c4.7002 -4.7002 4.7002 -12.2998 0 -17c-4.69922 -4.7002 -12.2998 -4.7002 -17 0zM473.9 359l17 -17
-c4.69922 -4.7002 4.69922 -12.2998 0 -17c-4.7002 -4.7002 -12.3008 -4.7002 -17 0l-17 17c-4.7002 4.7002 -4.7002 12.2998 0 17c4.69922 4.7002 12.2998 4.7002 17 0zM112 176c0 35.2998 28.7002 64 64 64c8.7998 0 16 7.2002 16 16s-7.2002 16 -16 16
-c-52.9004 0 -96 -43.0996 -96 -96c0 -8.7998 7.2002 -16 16 -16s16 7.2002 16 16z" />
-    <glyph glyph-name="futbol" unicode="&#xf1e3;" 
-d="M504 192c0 -136.967 -111.033 -248 -248 -248s-248 111.033 -248 248s111.033 248 248 248s248 -111.033 248 -248zM456 192l-0.00292969 0.282227l-26.0645 -22.7412l-62.6787 58.5l16.4541 84.3555l34.3027 -3.07227
-c-24.8887 34.2158 -60.0039 60.0889 -100.709 73.1406l13.6514 -31.9385l-74.9531 -41.5264l-74.9531 41.5254l13.6514 31.9385c-40.6309 -13.0283 -75.7803 -38.8701 -100.709 -73.1406l34.5645 3.07324l16.1924 -84.3555l-62.6777 -58.5l-26.0645 22.7412
-l-0.00292969 -0.282227c0 -43.0146 13.4971 -83.9521 38.4717 -117.991l7.7041 33.8975l85.1387 -10.4473l36.3008 -77.8262l-29.9023 -17.7861c40.2021 -13.1221 84.29 -13.1475 124.572 0l-29.9023 17.7861l36.3008 77.8262l85.1387 10.4473l7.7041 -33.8975
-c24.9756 34.0391 38.4727 74.9766 38.4727 117.991zM207.898 122.429l-29.8945 91.3125l77.9961 56.5264l77.9961 -56.5264l-29.6221 -91.3125h-96.4756z" />
-    <glyph glyph-name="tty" unicode="&#xf1e4;" 
-d="M5.37012 344.178c138.532 138.532 362.936 138.326 501.262 0c6.07812 -6.07812 7.07422 -15.4961 2.58301 -22.6807l-43.2139 -69.1377c-3.24023 -5.18457 -8.99902 -8.63672 -15.5576 -8.63672c-2.40137 0 -4.69531 0.490234 -6.79883 1.33105l-86.4219 34.5693
-c-6.75684 2.70312 -11.5352 9.31348 -11.5352 17.0312c0 0.621094 0.0410156 1.20898 0.101562 1.81445l5.95215 59.5312c-62.1455 22.4541 -130.636 21.9863 -191.483 0l5.95312 -59.5322c0.0605469 -0.606445 0.0917969 -1.22168 0.0917969 -1.84375
-c0 -7.7168 -4.76855 -14.2998 -11.5254 -17.002l-86.4238 -34.5684c-2.10254 -0.84082 -4.39648 -1.30371 -6.79785 -1.30371c-6.55859 0 -12.3174 3.4248 -15.5576 8.60938l-43.2109 69.1387c-1.75879 2.81348 -2.77539 6.1377 -2.77539 9.69727
-c0 5.05859 2.04004 9.66406 5.3584 12.9824zM96 140c0 -6.62695 -5.37305 -12 -12 -12h-40c-6.62695 0 -12 5.37305 -12 12v40c0 6.62695 5.37305 12 12 12h40c6.62695 0 12 -5.37305 12 -12v-40zM192 140c0 -6.62695 -5.37305 -12 -12 -12h-40
-c-6.62695 0 -12 5.37305 -12 12v40c0 6.62695 5.37305 12 12 12h40c6.62695 0 12 -5.37305 12 -12v-40zM288 140c0 -6.62695 -5.37305 -12 -12 -12h-40c-6.62695 0 -12 5.37305 -12 12v40c0 6.62695 5.37305 12 12 12h40c6.62695 0 12 -5.37305 12 -12v-40zM384 140
-c0 -6.62695 -5.37305 -12 -12 -12h-40c-6.62695 0 -12 5.37305 -12 12v40c0 6.62695 5.37305 12 12 12h40c6.62695 0 12 -5.37305 12 -12v-40zM480 140c0 -6.62695 -5.37305 -12 -12 -12h-40c-6.62695 0 -12 5.37305 -12 12v40c0 6.62695 5.37305 12 12 12h40
-c6.62695 0 12 -5.37305 12 -12v-40zM144 44c0 -6.62695 -5.37305 -12 -12 -12h-40c-6.62695 0 -12 5.37305 -12 12v40c0 6.62695 5.37305 12 12 12h40c6.62695 0 12 -5.37305 12 -12v-40zM240 44c0 -6.62695 -5.37305 -12 -12 -12h-40c-6.62695 0 -12 5.37305 -12 12v40
-c0 6.62695 5.37305 12 12 12h40c6.62695 0 12 -5.37305 12 -12v-40zM336 44c0 -6.62695 -5.37305 -12 -12 -12h-40c-6.62695 0 -12 5.37305 -12 12v40c0 6.62695 5.37305 12 12 12h40c6.62695 0 12 -5.37305 12 -12v-40zM432 44c0 -6.62695 -5.37305 -12 -12 -12h-40
-c-6.62695 0 -12 5.37305 -12 12v40c0 6.62695 5.37305 12 12 12h40c6.62695 0 12 -5.37305 12 -12v-40zM96 -52c0 -6.62695 -5.37305 -12 -12 -12h-40c-6.62695 0 -12 5.37305 -12 12v40c0 6.62695 5.37305 12 12 12h40c6.62695 0 12 -5.37305 12 -12v-40zM384 -52
-c0 -6.62695 -5.37305 -12 -12 -12h-232c-6.62695 0 -12 5.37305 -12 12v40c0 6.62695 5.37305 12 12 12h232c6.62695 0 12 -5.37305 12 -12v-40zM480 -52c0 -6.62695 -5.37305 -12 -12 -12h-40c-6.62695 0 -12 5.37305 -12 12v40c0 6.62695 5.37305 12 12 12h40
-c6.62695 0 12 -5.37305 12 -12v-40z" />
-    <glyph glyph-name="binoculars" unicode="&#xf1e5;" 
-d="M416 400v-48h-96v48c0 8.83984 7.16016 16 16 16h64c8.83984 0 16 -7.16016 16 -16zM63.9102 288.01c0.479492 17.6201 14.2998 31.9902 31.9297 31.9902h96.1602v-160h-32v-160c0 -17.6699 -14.3301 -32 -32 -32h-96c-17.6699 0 -32 14.3301 -32 32v44
-c3.45996 129.78 61.4004 150.16 63.9102 244.01zM448.09 288.01c2.50977 -93.8496 60.4502 -114.229 63.9102 -244.01v-44c0 -17.6699 -14.3301 -32 -32 -32h-96c-17.6699 0 -32 14.3301 -32 32v160h-32v160h96.1602c17.6299 0 31.4502 -14.3701 31.9297 -31.9902zM176 416
-c8.83984 0 16 -7.16016 16 -16v-48h-96v48c0 8.83984 7.16016 16 16 16h64zM224 160v160h64v-160h-64z" />
-    <glyph glyph-name="plug" unicode="&#xf1e6;" horiz-adv-x="384" 
-d="M320 416v-96h-64v96c0 17.6611 14.3389 32 32 32s32 -14.3389 32 -32zM368 288c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-16v-32c-0.0117188 -77.3096 -55.0684 -141.886 -128 -156.8v-99.2002h-64v99.2002
-c-72.9316 14.9141 -127.988 79.4902 -128 156.8v32h-16c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h352zM128 416v-96h-64v96c0 17.6611 14.3389 32 32 32s32 -14.3389 32 -32z" />
-    <glyph glyph-name="newspaper" unicode="&#xf1ea;" horiz-adv-x="576" 
-d="M552 384c13.2549 0 24 -10.7451 24 -24v-312c0 -26.5098 -21.4902 -48 -48 -48h-472c-30.9277 0 -56 25.0723 -56 56v272c0 13.2549 10.7451 24 24 24h40v8c0 13.2549 10.7451 24 24 24h464zM56 48c4.41504 0 8 3.58496 8 8v248h-16v-248c0 -4.41504 3.58496 -8 8 -8z
-M292 64c6.62695 0 12 5.37305 12 12v8c0 6.62695 -5.37305 12 -12 12h-152c-6.62695 0 -12 -5.37305 -12 -12v-8c0 -6.62695 5.37305 -12 12 -12h152zM500 64c6.62695 0 12 5.37305 12 12v8c0 6.62695 -5.37305 12 -12 12h-152c-6.62695 0 -12 -5.37305 -12 -12v-8
-c0 -6.62695 5.37305 -12 12 -12h152zM292 160c6.62695 0 12 5.37305 12 12v8c0 6.62695 -5.37305 12 -12 12h-152c-6.62695 0 -12 -5.37305 -12 -12v-8c0 -6.62695 5.37305 -12 12 -12h152zM500 160c6.62695 0 12 5.37305 12 12v8c0 6.62695 -5.37305 12 -12 12h-152
-c-6.62695 0 -12 -5.37305 -12 -12v-8c0 -6.62695 5.37305 -12 12 -12h152zM500 256c6.62695 0 12 5.37305 12 12v40c0 6.62695 -5.37305 12 -12 12h-360c-6.62695 0 -12 -5.37305 -12 -12v-40c0 -6.62695 5.37305 -12 12 -12h360z" />
-    <glyph glyph-name="wifi" unicode="&#xf1eb;" horiz-adv-x="640" 
-d="M634.91 293.12c6.66016 -6.16016 6.79004 -16.5898 0.359375 -22.9805l-34.2393 -33.9697c-6.14062 -6.08984 -16.0205 -6.22949 -22.4004 -0.379883c-145.95 133.71 -371.33 133.68 -517.25 0c-6.37988 -5.84961 -16.2598 -5.71973 -22.3994 0.379883l-34.2402 33.9697
-c-6.44043 6.39062 -6.31055 16.8203 0.349609 22.9805c177.101 163.81 452.65 163.87 629.82 0zM320 96c35.3496 0 64 -28.6504 64 -64s-28.6504 -64 -64 -64s-64 28.6504 -64 64s28.6504 64 64 64zM522.67 179.59c6.88965 -6.08984 7.12012 -16.6895 0.560547 -23.1494
-l-34.4404 -33.9902c-6 -5.93066 -15.6602 -6.32031 -22.0498 -0.799805c-83.75 72.4092 -209.54 72.5693 -293.49 0c-6.38965 -5.52051 -16.0498 -5.12012 -22.0498 0.799805l-34.4404 33.9902c-6.5498 6.45996 -6.33008 17.0498 0.570312 23.1494
-c115.13 101.82 290.08 101.93 405.34 0z" />
-    <glyph glyph-name="calculator" unicode="&#xf1ec;" horiz-adv-x="448" 
-d="M400 448c25.5996 0 48 -22.4004 48 -48v-416c0 -25.5996 -22.4004 -48 -48 -48h-352c-25.5996 0 -48 22.4004 -48 48v416c0 25.5996 22.4004 48 48 48h352zM128 12.7998v38.4004c0 6.39941 -6.40039 12.7998 -12.7998 12.7998h-38.4004
-c-6.39941 0 -12.7998 -6.40039 -12.7998 -12.7998v-38.4004c0 -6.39941 6.40039 -12.7998 12.7998 -12.7998h38.4004c6.39941 0 12.7998 6.40039 12.7998 12.7998zM128 140.8v38.4004c0 6.39941 -6.40039 12.7998 -12.7998 12.7998h-38.4004
-c-6.39941 0 -12.7998 -6.40039 -12.7998 -12.7998v-38.4004c0 -6.39941 6.40039 -12.7998 12.7998 -12.7998h38.4004c6.39941 0 12.7998 6.40039 12.7998 12.7998zM256 12.7998v38.4004c0 6.39941 -6.40039 12.7998 -12.7998 12.7998h-38.4004
-c-6.39941 0 -12.7998 -6.40039 -12.7998 -12.7998v-38.4004c0 -6.39941 6.40039 -12.7998 12.7998 -12.7998h38.4004c6.39941 0 12.7998 6.40039 12.7998 12.7998zM256 140.8v38.4004c0 6.39941 -6.40039 12.7998 -12.7998 12.7998h-38.4004
-c-6.39941 0 -12.7998 -6.40039 -12.7998 -12.7998v-38.4004c0 -6.39941 6.40039 -12.7998 12.7998 -12.7998h38.4004c6.39941 0 12.7998 6.40039 12.7998 12.7998zM384 12.7998v166.4c0 6.39941 -6.40039 12.7998 -12.7998 12.7998h-38.4004
-c-6.39941 0 -12.7998 -6.40039 -12.7998 -12.7998v-166.4c0 -6.39941 6.40039 -12.7998 12.7998 -12.7998h38.4004c6.39941 0 12.7998 6.40039 12.7998 12.7998zM384 268.8v102.4c0 6.39941 -6.40039 12.7998 -12.7998 12.7998h-294.4
-c-6.39941 0 -12.7998 -6.40039 -12.7998 -12.7998v-102.4c0 -6.39941 6.40039 -12.7998 12.7998 -12.7998h294.4c6.39941 0 12.7998 6.40039 12.7998 12.7998z" />
-    <glyph glyph-name="bell-slash" unicode="&#xf1f6;" horiz-adv-x="640" 
-d="M633.82 -10.0996c6.97949 -5.43066 8.22949 -15.4805 2.80957 -22.4502l-19.6396 -25.2705c-5.43066 -6.97949 -15.4805 -8.23926 -22.46 -2.80957l-588.351 454.729c-6.97949 5.43066 -8.22949 15.4805 -2.80957 22.4502l19.6396 25.2705
-c5.41992 6.97949 15.4805 8.22949 22.46 2.80957l144.96 -112.04c22.9307 31.5 57.2607 54.1904 97.5898 62.5703v20.8398c0 17.6699 14.3203 32 31.9805 32s31.9805 -14.3301 31.9805 -32v-20.8301c73.46 -15.2598 127.939 -77.46 127.939 -155.16
-c0 -102.3 36.1504 -133.529 55.4697 -154.29c6 -6.43945 8.66016 -14.1602 8.61035 -21.71c0 -1.39941 -0.610352 -2.67969 -0.799805 -4.05957zM157.23 196.46l212.789 -164.46h-241.92c-19.1191 0 -31.9893 15.5996 -32.0996 32
-c-0.0498047 7.5498 2.61035 15.2598 8.61035 21.71c16.21 17.4199 44.0098 42.79 52.6201 110.75zM320 -64c-35.3203 0 -63.9697 28.6504 -63.9697 64h127.939c0 -35.3496 -28.6494 -64 -63.9697 -64z" />
-    <glyph glyph-name="trash" unicode="&#xf1f8;" horiz-adv-x="448" 
-d="M432 416c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-416c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h120l9.40039 18.7002c3.85547 7.88574 11.9434 13.2998 21.3066 13.2998h0.0927734h114.3
-c0.00585938 0 -0.00195312 0.0234375 0.00390625 0.0234375c9.41113 0 17.5645 -5.42871 21.4961 -13.3232l9.40039 -18.7002h120zM53.2002 -19l-21.2002 339h384l-21.2002 -339c-1.57031 -25.0762 -22.4316 -44.9971 -47.8994 -45h-245.801
-c-25.4678 0.00292969 -46.3291 19.9238 -47.8994 45z" />
-    <glyph glyph-name="copyright" unicode="&#xf1f9;" 
-d="M256 440c136.967 0 248 -111.033 248 -248s-111.033 -248 -248 -248s-248 111.033 -248 248s111.033 248 248 248zM373.134 93.2471c1.78516 2.09473 2.86035 4.82812 2.86035 7.79395c0 2.64355 -0.856445 5.08789 -2.30762 7.07227l-24.5469 33.5713
-c-4.44824 6.08691 -13.376 6.61816 -18.5078 1.05371c-0.263672 -0.287109 -26.8467 -28.625 -65.5439 -28.625c-48.7627 0 -74.2773 40.0898 -74.2773 79.6914c0 42.5068 27.8008 76.082 73.916 76.082c35.3516 0 61.6475 -23.666 61.8809 -23.8799
-c5.45996 -5.05566 14.1846 -3.97168 18.2334 2.29492l22.3799 34.6553c1.20996 1.87305 1.91895 4.12109 1.91895 6.51465c0 3.125 -1.19727 5.97168 -3.15625 8.1084c-1.45703 1.58887 -36.4658 38.9043 -103.423 38.9043c-81.7578 0 -143.762 -62.0986 -143.762 -143.401
-c0 -82.3066 59.792 -145.567 144.484 -145.567c70.0752 0 108.259 43.8643 109.851 45.7314z" />
-    <glyph glyph-name="at" unicode="&#xf1fa;" 
-d="M256 440c138.023 0 248 -87.6533 248 -224c0 -75.7979 -41.3906 -147.41 -150.299 -147.41c-30.0977 0 -61.1885 -0.000976562 -70.71 34.1035c-17.6221 -22.6963 -48.0068 -38.333 -74.9912 -38.333c-59.2148 0 -96 40.5664 -96 105.87
-c0 89.2256 63.251 151.46 137.831 151.46c19.5225 0 45.2744 -3.87402 59.9707 -21.7754l0.00976562 0.0917969c0.765625 6.7373 6.49219 11.9932 13.4326 11.9932h44.9805c15.083 0 26.4287 -13.75 23.5625 -28.5586l-23.4336 -121.11
-c-3.43359 -17.167 -3.87207 -29.5703 13.4766 -30.0244c37.0771 3.95117 58.1699 44.9072 58.1699 83.6934c0 102.381 -83.8613 160 -184 160c-101.458 0 -184 -82.542 -184 -184s82.542 -184 184 -184c35.3145 0 69.9199 10.2432 99.4102 29.1572
-c10.1934 6.53809 23.7021 4.24219 31.373 -5.12891l10.1768 -12.4336c9.07324 -11.084 6.45312 -27.5566 -5.55176 -35.3721c-40.0664 -26.083 -87.2539 -40.2227 -135.408 -40.2227c-137.081 0 -248 110.941 -248 248c0 137.081 110.941 248 248 248zM234.32 135.57
-c24.2861 0 58.1611 27.6689 58.1611 72.7295c0 25.5293 -13.3096 40.7705 -35.6016 40.7705c-27.8506 0 -58.6299 -27.7363 -58.6299 -72.7295c0 -25.1475 13.8213 -40.7705 36.0703 -40.7705z" />
-    <glyph glyph-name="eye-dropper" unicode="&#xf1fb;" 
-d="M50.75 114.75l126.63 126.61l128 -128l-126.64 -126.62c-12 -12 -28.2803 -18.7402 -45.25 -18.7402h-45.4902l-56 -32l-32 32l32 56v45.4902c0 16.9795 6.75 33.2598 18.75 45.2598zM483.88 419.88c37.5 -37.4902 37.5 -98.2695 -0.00976562 -135.75l-77.0898 -77.0898
-l13.0996 -13.0996c9.37012 -9.37012 9.37012 -24.5703 0 -33.9404l-40.9697 -40.96c-9.29004 -9.30957 -24.5 -9.44043 -33.9404 0l-161.939 161.94c-9.37012 9.36914 -9.37012 24.5693 0 33.9395l40.9697 40.9697c9.29004 9.31055 24.5 9.44043 33.9404 0l13.0996 -13.0996
-l77.0898 77.0898c37.4697 37.5 98.2803 37.5 135.75 0z" />
-    <glyph glyph-name="paint-brush" unicode="&#xf1fc;" 
-d="M167.02 138.66l88.0107 -73.3398c0.319336 -3.05078 0.969727 -6.02051 0.969727 -9.12988c0 -76.4209 -52.1396 -120.19 -128 -120.19c-90.0703 0 -128 72.3799 -128.01 154.73c9.79004 -6.68066 44.1396 -34.3506 55.25 -34.3506
-c6.58984 0 12.2402 3.77051 14.5898 9.98047c20.6602 54.4395 57.0703 69.7197 97.1895 72.2998zM457.89 448c28.1104 0 54.1104 -20.6396 54.1104 -49.5498c0 -16.1406 -6.51953 -31.6406 -13.9004 -45.9902c-113.05 -210.99 -149.05 -256.46 -211.159 -256.46
-c-7.75 0 -15.1807 1.23047 -22.3906 3.03027l-63.8193 53.1797c-5.48047 11.9404 -8.73047 25 -8.73047 38.7002c0 53.75 21.2695 58.04 225.68 240.64c10.8398 9.74023 25.0508 16.4502 40.21 16.4502z" />
-    <glyph glyph-name="birthday-cake" unicode="&#xf1fd;" horiz-adv-x="448" 
-d="M448 64c-28.0195 0 -31.2598 32 -74.5 32c-43.4297 0 -46.8252 -32 -74.75 -32c-27.6953 0 -31.4541 32 -74.75 32c-42.8418 0 -47.2178 -32 -74.5 -32c-28.1484 0 -31.2021 32 -74.75 32c-43.5469 0 -46.6533 -32 -74.75 -32v80c0 26.5 21.5 48 48 48h16v144h64v-144h64
-v144h64v-144h64v144h64v-144h16c26.5 0 48 -21.5 48 -48v-80zM448 -64h-448v96c43.3564 0 46.7666 32 74.75 32c27.9512 0 31.2529 -32 74.75 -32c42.8428 0 47.2168 32 74.5 32c28.1484 0 31.2012 -32 74.75 -32c43.3574 0 46.7666 32 74.75 32
-c27.4883 0 31.252 -32 74.5 -32v-96zM96 352c-17.75 0 -32 14.25 -32 32c0 31 32 23 32 64c12 0 32 -29.5 32 -56s-14.25 -40 -32 -40zM224 352c-17.75 0 -32 14.25 -32 32c0 31 32 23 32 64c12 0 32 -29.5 32 -56s-14.25 -40 -32 -40zM352 352c-17.75 0 -32 14.25 -32 32
-c0 31 32 23 32 64c12 0 32 -29.5 32 -56s-14.25 -40 -32 -40z" />
-    <glyph glyph-name="chart-area" unicode="&#xf1fe;" 
-d="M500 64c6.59961 0 12 -5.40039 12 -12v-40c0 -6.59961 -5.40039 -12 -12 -12h-488c-6.59961 0 -12 5.40039 -12 12v360c0 6.59961 5.40039 12 12 12h40c6.59961 0 12 -5.40039 12 -12v-308h436zM372.7 288.5c6 4 14.2002 1.7998 17.3994 -4.7002l89.9004 -187.8h-384v104
-l86.7998 144.7c4.40039 7.2998 14.7998 7.7998 19.9004 1l85.2998 -113.7z" />
-    <glyph glyph-name="chart-pie" unicode="&#xf200;" horiz-adv-x="544" 
-d="M527.79 160c9.5498 0 17.4004 -8.38965 16.0596 -17.8496c-7.80957 -55.25 -34.4297 -104.4 -73.1299 -140.86c-6.20996 -5.84961 -16.1494 -5.36035 -22.1895 0.679688l-158.03 158.03h237.29zM511.96 224.8c0.629883 -9.12012 -7.0498 -16.7998 -16.1904 -16.7998
-h-223.77v223.76c0 9.14062 7.67969 16.8301 16.7998 16.2002c119.46 -8.24023 214.92 -103.7 223.16 -223.16zM224 160l155.86 -155.87c6.84961 -6.84961 6.33008 -18.4795 -1.57031 -24.0801c-38.29 -27.1602 -84.8604 -43.3994 -135.26 -44.0303
-c-128.2 -1.60938 -238.53 103.471 -242.891 231.61c-4.23926 124.771 86.8506 228.88 206.021 245.72c9.4502 1.34082 17.8398 -6.50977 17.8398 -16.0596v-237.29z" />
-    <glyph glyph-name="chart-line" unicode="&#xf201;" 
-d="M496 64c8.83984 0 16 -7.16016 16 -16v-32c0 -8.83984 -7.16016 -16 -16 -16h-464c-17.6699 0 -32 14.3301 -32 32v336c0 8.83984 7.16016 16 16 16h32c8.83984 0 16 -7.16016 16 -16v-304h432zM464 352c8.83984 0 16 -7.16016 15.9902 -16v-118.05
-c0 -21.3799 -25.8506 -32.0898 -40.9707 -16.9697l-32.3994 32.3994l-96 -96c-12.4902 -12.5 -32.75 -12.5 -45.25 0l-73.3701 73.3701l-46.0596 -46.0703c-6.25 -6.25 -16.3809 -6.25 -22.6309 0l-22.6191 22.6201c-6.25 6.25 -6.25 16.3799 0 22.6299l68.6895 68.6904
-c12.4902 12.5 32.75 12.5 45.25 0l73.3701 -73.3701l73.3701 73.3799l-32.4004 32.4004c-15.1201 15.1201 -4.41016 40.9697 16.9707 40.9697h118.06z" />
-    <glyph glyph-name="toggle-off" unicode="&#xf204;" horiz-adv-x="576" 
-d="M384 384c106.039 0 192 -85.9609 192 -192s-85.9609 -192 -192 -192h-192c-106.039 0 -192 85.9609 -192 192s85.9609 192 192 192h192zM64 192c0 -70.751 57.2588 -128 128 -128c70.751 0 128 57.2588 128 128c0 70.751 -57.2588 128 -128 128
-c-70.751 0 -128 -57.2588 -128 -128zM384 64c70.751 0 128 57.2598 128 128c0 70.751 -57.2588 128 -128 128h-48.9053c65.2363 -72.8799 65.2168 -183.142 0 -256h48.9053z" />
-    <glyph glyph-name="toggle-on" unicode="&#xf205;" horiz-adv-x="576" 
-d="M384 384c106 0 192 -86 192 -192s-86 -192 -192 -192h-192c-106 0 -192 86 -192 192s86 192 192 192h192zM384 64c70.7002 0 128 57.2002 128 128c0 70.7002 -57.2002 128 -128 128c-70.7002 0 -128 -57.2002 -128 -128c0 -70.7002 57.2002 -128 128 -128z" />
-    <glyph glyph-name="bicycle" unicode="&#xf206;" horiz-adv-x="640" 
-d="M512.509 255.999c70.9502 -0.276367 128.562 -59.0547 127.477 -129.996c-1.07422 -70.1934 -58.6494 -126.681 -129.255 -125.996c-68.8301 0.667969 -126.584 58.8857 -126.729 127.719c-0.078125 37.3564 15.8516 70.9893 41.3066 94.4375l-14.9375 24.0674
-l-85.9619 -138.863c-4.23145 -6.83496 -11.7832 -11.3672 -20.4062 -11.3672h-52.0332c-14.209 -55.207 -64.3252 -96 -123.967 -96c-70.9473 0 -128.415 57.7207 -128 128.764c0.410156 70.2246 58.0918 127.406 128.317 127.236
-c15.0879 -0.0371094 29.5586 -2.69043 42.9912 -7.51953l29.417 47.5195h-48.7256c-13.1191 0 -23.7627 10.5186 -23.9951 23.5635c-0.241211 13.4375 11.0947 24.4365 24.5361 24.4365h87.459c8.83691 0 16 -7.16309 16 -16v-16h113.544l-14.8955 24h-50.6494
-c-8.83691 0 -16 7.16309 -16 16v16c0 8.83691 7.16309 16 16 16h64c8.6123 0 16.1572 -4.52148 20.3916 -11.3428l77.6807 -125.153c14.4053 5.54004 30.0625 8.55957 46.4355 8.49512zM186.75 182.228l-23.6641 -38.2275h43.3057
-c-2.96875 14.5674 -9.91504 27.6992 -19.6416 38.2275zM128.002 48c32.7383 0 60.9297 19.7754 73.2998 48h-81.2998c-18.7891 0 -30.2871 20.6729 -20.4062 36.6318l45.5049 73.5088c-5.5127 1.20605 -11.2295 1.85938 -17.0986 1.85938c-44.1123 0 -80 -35.8877 -80 -80
-s35.8877 -80 80 -80zM290.632 144l74.2861 120h-127.547l-24.7461 -39.9736c22.8271 -20.1328 38.4229 -48.2705 42.3828 -80.0264h35.624zM507.689 48.1143c46.0605 -2.43164 84.3115 34.3447 84.3125 79.8848c0 44.1123 -35.8877 80 -80 80
-c-0.0136719 0 0.00585938 -0.0078125 -0.00683594 -0.0078125c-6.85156 0 -13.5029 -0.864258 -19.8516 -2.48926l44.4688 -71.6426c4.66113 -7.50879 2.35156 -17.3721 -5.15625 -22.0322l-13.5938 -8.4375c-7.50879 -4.65918 -17.3721 -2.35156 -22.0322 5.15625
-l-44.4326 71.5859c-12.7021 -14.7451 -20.1475 -34.1416 -19.3359 -55.2627c1.57812 -41.0635 34.5918 -74.5898 75.6279 -76.7549z" />
-    <glyph glyph-name="bus" unicode="&#xf207;" 
-d="M488 320c13.25 0 24 -10.7402 24 -24v-80c0 -13.25 -10.75 -24 -24 -24h-8v-166.4c0 -12.7998 -9.59961 -25.5996 -25.5996 -25.5996h-6.40039v-32c0 -17.6699 -14.3301 -32 -32 -32h-32c-17.6699 0 -32 14.3301 -32 32v32h-192v-32c0 -17.6699 -14.3301 -32 -32 -32h-32
-c-17.6699 0 -32 14.3301 -32 32v32c-17.6699 0 -32 14.3301 -32 32v160h-8c-13.25 0 -24 10.75 -24 24v80c0 13.2598 10.75 24 24 24h8v48c0 44.7998 99.2002 80 224 80s224 -35.2002 224 -80v-48h8zM112 48c17.6699 0 32 14.3301 32 32s-14.3301 32 -32 32
-s-32 -14.3301 -32 -32s14.3301 -32 32 -32zM128 160h256c17.6699 0 32 14.3301 32 32v128c0 17.6699 -14.3301 32 -32 32h-256c-17.6699 0 -32 -14.3301 -32 -32v-128c0 -17.6699 14.3301 -32 32 -32zM400 48c17.6699 0 32 14.3301 32 32s-14.3301 32 -32 32
-s-32 -14.3301 -32 -32s14.3301 -32 32 -32z" />
-    <glyph glyph-name="closed-captioning" unicode="&#xf20a;" 
-d="M464 384c26.5 0 48 -21.5 48 -48v-288c0 -26.5 -21.5 -48 -48 -48h-416c-26.5 0 -48 21.5 -48 48v288c0 26.5 21.5 48 48 48h416zM218.1 160.3c-41.1992 -37.8994 -92.1992 -15.3994 -92.2998 32.6006c0 46.0996 53.7998 63.1992 94.6006 31.1992
-c2.89941 -2.2998 7.19922 -1.39941 9.09961 1.7002l17.5 30.5c1.5 2.5 1.09961 3.7002 -1 5.7002c-50.7998 49.4004 -172.5 27.2002 -172.5 -70.0996c0 -100 119.2 -124.7 172.8 -67.9004c2 2.09961 2.2002 5.2998 0.5 7.7002l-19.5 27.7002
-c-2.09961 3 -6.39941 3.39941 -9.2002 0.899414zM408.5 160.3c-41.2002 -37.8994 -92.2002 -15.3994 -92.2002 32.6006c0 46.0996 53.7998 63.1992 94.6006 31.1992c2.89941 -2.2998 7.19922 -1.39941 9.09961 1.7002l17.5 30.5c1.5 2.5 1.09961 3.7002 -1 5.7002
-c-50.7998 49.4004 -172.5 27.2002 -172.5 -70.0996c0 -100 119.2 -124.801 172.7 -67.9004c2 2.09961 2.2002 5.2998 0.5 7.7002l-19.5 27.7002c-2.10059 3 -6.40039 3.39941 -9.2002 0.899414z" />
-    <glyph glyph-name="shekel-sign" unicode="&#xf20b;" horiz-adv-x="448" 
-d="M248 280c0 30.9297 -25.0703 56 -56 56h-112v-352c0 -8.83984 -7.16016 -16 -16 -16h-48c-8.83984 0 -16 7.16016 -16 16v408c0 13.2598 10.75 24 24 24h168c75.1104 0 136 -60.8896 136 -136v-168c0 -8.83984 -7.16016 -16 -16 -16h-48c-8.83984 0 -16 7.16016 -16 16
-v168zM432 416c8.83984 0 16 -7.16016 16 -16v-296c0 -75.1104 -60.8896 -136 -136 -136h-168c-13.25 0 -24 10.75 -24 24v280c0 8.83984 7.16016 16 16 16h48c8.83984 0 16 -7.16016 16 -16v-224h112c30.9297 0 56 25.0703 56 56v296c0 8.83984 7.16016 16 16 16h48z" />
-    <glyph glyph-name="cart-plus" unicode="&#xf217;" horiz-adv-x="576" 
-d="M504.717 128h-293.145l6.54492 -32h268.418c15.4004 0 26.8154 -14.3008 23.4033 -29.3193l-5.51758 -24.2754c18.6914 -9.07324 31.5791 -28.2334 31.5791 -50.4053c0 -31.2021 -25.5186 -56.4443 -56.8242 -55.9941
-c-29.8232 0.428711 -54.3496 24.6309 -55.1543 54.4473c-0.44043 16.2871 6.08496 31.0488 16.8027 41.5479h-209.648c10.377 -10.166 16.8242 -24.3271 16.8242 -40.001c0 -31.8135 -26.5283 -57.4307 -58.6699 -55.9385c-28.54 1.3252 -51.751 24.3857 -53.251 52.917
-c-1.1582 22.0342 10.4355 41.4551 28.0508 51.5869l-70.2471 343.435h-69.8828c-13.2549 0 -24 10.7451 -24 24v16c0 13.2549 10.7451 24 24 24h102.529c11.4004 0 21.2275 -8.02148 23.5127 -19.1904l9.16602 -44.8096h392.782
-c15.4004 0 26.8154 -14.3008 23.4023 -29.3193l-47.2725 -208c-2.4834 -10.9268 -12.1973 -18.6807 -23.4033 -18.6807zM408 280h-48v40c0 8.83691 -7.16309 16 -16 16h-16c-8.83691 0 -16 -7.16309 -16 -16v-40h-48c-8.83691 0 -16 -7.16309 -16 -16v-16
-c0 -8.83691 7.16309 -16 16 -16h48v-40c0 -8.83691 7.16309 -16 16 -16h16c8.83691 0 16 7.16309 16 16v40h48c8.83691 0 16 7.16309 16 16v16c0 8.83691 -7.16309 16 -16 16z" />
-    <glyph glyph-name="cart-arrow-down" unicode="&#xf218;" horiz-adv-x="576" 
-d="M504.717 128h-293.145l6.54492 -32h268.418c15.4004 0 26.8154 -14.3008 23.4033 -29.3193l-5.51758 -24.2754c18.6914 -9.07324 31.5791 -28.2334 31.5791 -50.4053c0 -31.2021 -25.5186 -56.4443 -56.8242 -55.9941
-c-29.8232 0.428711 -54.3496 24.6309 -55.1543 54.4473c-0.44043 16.2871 6.08496 31.0488 16.8027 41.5479h-209.648c10.377 -10.166 16.8242 -24.3271 16.8242 -40.001c0 -31.8135 -26.5283 -57.4307 -58.6699 -55.9385c-28.54 1.3252 -51.751 24.3857 -53.251 52.917
-c-1.1582 22.0342 10.4355 41.4551 28.0508 51.5869l-70.2471 343.435h-69.8828c-13.2549 0 -24 10.7451 -24 24v16c0 13.2549 10.7451 24 24 24h102.529c11.4004 0 21.2275 -8.02148 23.5127 -19.1904l9.16602 -44.8096h392.782
-c15.4004 0 26.8154 -14.3008 23.4023 -29.3193l-47.2725 -208c-2.4834 -10.9268 -12.1973 -18.6807 -23.4033 -18.6807zM403.029 256h-43.0293v60c0 6.62695 -5.37305 12 -12 12h-24c-6.62695 0 -12 -5.37305 -12 -12v-60h-43.0293
-c-10.6904 0 -16.0449 -12.9258 -8.48438 -20.4854l67.0283 -67.0283c4.68652 -4.68652 12.2842 -4.68652 16.9717 0l67.0283 67.0283c7.55957 7.55957 2.20508 20.4854 -8.48535 20.4854z" />
-    <glyph glyph-name="ship" unicode="&#xf21a;" horiz-adv-x="640" 
-d="M496.616 75.3613c17.8418 -44.3604 58.5664 -75.3613 119.384 -75.3613c13.2549 0 24 -10.7451 24 -24v-16c0 -13.2549 -10.7451 -24 -24 -24c-61.0322 0 -107.505 20.6162 -143.258 59.3965c-14.4189 -34.8281 -48.7637 -59.3965 -88.7422 -59.3965h-128
-c-39.9785 0 -74.3232 24.5684 -88.7422 59.3965c-35.7588 -38.7861 -82.2344 -59.3965 -143.258 -59.3965c-13.2549 0 -24 10.7451 -24 24v16c0 13.2549 10.7451 24 24 24c61.5869 0 101.828 31.7129 119.384 75.3613l-70.0117 70.0117
-c-16.918 16.9189 -9.91699 45.7793 12.8359 53.0918l41.792 13.4336v140.102c0 17.6729 14.3271 32 32 32h64v40c0 13.2549 10.7451 24 24 24h144c13.2549 0 24 -10.7451 24 -24v-40h64c17.6729 0 32 -14.3271 32 -32v-140.102l41.792 -13.4336
-c22.7783 -7.32129 29.7354 -36.1914 12.8359 -53.0918zM192 320v-87.5312l118.208 37.9951c3.08594 0.992188 6.38086 1.52832 9.79492 1.52832c3.41309 0 6.70312 -0.536133 9.78906 -1.52832l118.208 -37.9951v87.5312h-256z" />
-    <glyph glyph-name="user-secret" unicode="&#xf21b;" horiz-adv-x="448" 
-d="M383.9 139.7c38.2998 -23.7002 64.0996 -65.7002 64.0996 -114.101v-44.7998c0 -24.7002 -20.0996 -44.7998 -44.7998 -44.7998h-358.4c-24.7002 0 -44.7998 20.0996 -44.7998 44.7998v44.7998c0 49.7002 27.2998 92.6006 67.4004 115.9l-25.8008 60.2002
-c-4.5 10.5996 3.2002 22.2998 14.7002 22.2998h57.5c-11 18.9004 -17.7998 40.5996 -17.7998 64v0.299805c-39.2002 7.7998 -64 19.1006 -64 31.7002c0 13.2998 27.2998 25.0996 70 33c9.2002 32.7998 27.0996 65.7998 40.5996 82.7998
-c9.5 11.9004 25.9004 15.6006 39.5 8.7998l27.6006 -13.7998c9 -4.5 19.5996 -4.5 28.5996 0l27.6006 13.7998c13.5996 6.80078 30 3.10059 39.5 -8.7998c13.5996 -17 31.3994 -50 40.5996 -82.7998c42.7998 -7.90039 70.0996 -19.7002 70.0996 -33
-c0 -12.5996 -24.7998 -23.9004 -64 -31.7002v-0.299805c0 -23.4004 -6.7998 -45.0996 -17.7998 -64h58.5c11.2998 0 19 -11.2002 15 -21.7002zM176 -32l32 120l-24 40l-49.5996 32zM272 -32l41.5996 192l-49.5996 -32l-24 -40zM313.7 266.5
-c0.799805 2.59961 6.2998 5.7002 6.39941 5.7998v10.7998c-28.2998 -3.69922 -61 -5.7998 -96 -5.7998s-67.6992 2.2002 -96 5.7998v-10.7998c0 -0.0996094 5.5 -3.2998 6.30078 -5.7998c3.7998 -11.9004 7 -24.5996 16.5 -33.4004c8 -7.39941 47 -25.1992 64 25
-c2.89941 8.40039 15.5 8.40039 18.2998 0c16 -47.3994 53.8994 -34.2998 64 -25c9.5 8.80078 12.5996 21.5 16.5 33.4004z" />
-    <glyph glyph-name="motorcycle" unicode="&#xf21c;" horiz-adv-x="640" 
-d="M512.9 256c69.5996 -0.5 126.5 -57.2998 127.199 -126.9c0.600586 -71.5996 -57.5996 -129.8 -129.199 -129.1c-69.6006 0.599609 -126.301 57.5 -126.801 127.1c-0.299805 39.3008 17.2002 74.5 44.8008 98.2002l-12.5 20.7998
-c-38.7002 -31.2998 -58.3008 -77.8994 -56.2002 -125c0.599609 -13.6992 -10.2998 -25.0996 -24 -25.0996h-84.2002c-14.2998 -55.2002 -64.4004 -96 -124 -96c-71.7002 0 -129.6 58.9004 -128 131c1.59961 67.4004 55.9004 122.5 123.2 124.9
-c14.3994 0.5 28.2998 -1.30078 41.2998 -5.2002l11.2998 20.5c-9.09961 13.8994 -23.2998 24.7998 -47.7998 24.7998h-56c-13.0996 0 -23.7998 10.5 -24 23.5c-0.299805 13.5 11 24.5 24.5 24.5h55.5c55 0 82.2002 -16.9004 99.9004 -40h153.699l-19.1992 32h-66.4004
-c-8.7998 0 -16 7.2002 -16 16v16c0 8.7998 7.2002 16 16 16h80c8.40039 0 16.2002 -4.40039 20.5996 -11.5996l22.8008 -38l37.5 41.6992c4.5 5 11 7.90039 17.7998 7.90039h45.2998c13.2998 0 24 -10.7002 24 -24v-32c0 -13.2998 -10.7002 -24 -24 -24h-82.4004
-l32.9004 -54.9004c13.2998 4.60059 27.5 7 42.4004 6.90039zM128 48c32.7002 0 60.9004 19.7998 73.2998 48h-81.2998c-18.2002 0 -29.7998 19.5996 -21 35.5996l41.5 75.4004c-4.09961 0.700195 -8.2998 1 -12.5 1c-44.0996 0 -80 -35.9004 -80 -80s35.9004 -80 80 -80z
-M591.9 123.6c2.39941 46.1006 -34.3008 84.4004 -79.9004 84.3008c-5.40039 0 -10.7002 -0.5 -15.9004 -1.60059l48.6006 -80.8994c4.5 -7.60059 2.09961 -17.5 -5.5 -22l-13.7002 -8.2002c-7.59961 -4.5 -17.5 -2.10059 -22 5.5l-49.4004 82.3994
-c-13.6992 -14.2998 -22.0996 -33.6992 -22.0996 -55.0996c0 -45.5996 38.2998 -82.4004 84.4004 -79.9004c40.5 2.10059 73.2998 34.9004 75.5 75.5z" />
-    <glyph glyph-name="street-view" unicode="&#xf21d;" 
-d="M367.9 118.24c85.2295 -15.5801 144.1 -48.29 144.1 -86.2402c0 -53.0195 -114.62 -96 -256 -96s-256 42.9805 -256 96c0 37.9502 58.8701 70.6602 144.1 86.2402c4.62012 -5.2998 9.78027 -10.1006 15.9004 -13.6504v-22.9395
-c-66.5195 -9.35059 -112 -28.0508 -112 -49.6504c0 -30.9297 93.1201 -56 208 -56s208 25.0703 208 56c0 21.5996 -45.4805 40.3096 -112 49.6504v22.9395c6.12012 3.5498 11.2803 8.35059 15.9004 13.6504zM256 320c-35.3496 0 -64 28.6504 -64 64s28.6504 64 64 64
-s64 -28.6504 64 -64s-28.6504 -64 -64 -64zM192 128c-17.6699 0 -32 14.3301 -32 32v96c0 26.5098 21.4902 48 48 48h11.7998c11.0703 -5.03027 23.2598 -8 36.2002 -8s25.1299 2.96973 36.2002 8h11.7998c26.5098 0 48 -21.4902 48 -48v-96
-c0 -17.6699 -14.3301 -32 -32 -32v-96c0 -17.6699 -14.3301 -32 -32 -32h-64c-17.6699 0 -32 14.3301 -32 32v96z" />
-    <glyph glyph-name="heartbeat" unicode="&#xf21e;" 
-d="M320.2 204.2l22.0996 -44.2002h109.101l-182.601 -186.5c-7.09961 -7.2998 -18.5996 -7.2998 -25.7002 0l-182.5 186.5h94.1006l30 71.7002l56.8994 -126.3c5.5 -12.3008 22.9004 -12.7002 28.9004 -0.600586zM473.7 374.1
-c48.7002 -49.7998 50.7998 -129.1 7.2998 -182.1h-118.9l-27.5996 55.2002c-5.90039 11.7998 -22.7002 11.7998 -28.5996 0l-49 -97.9004l-58.2002 129.3c-5.7998 12.8008 -24 12.5 -29.4004 -0.399414l-35.8994 -86.2002h-102.4c-43.5 53 -41.4004 132.3 7.2998 182.1
-l2.40039 2.40039c51.5 52.7002 135.899 52.7002 187.399 0l27.9004 -28.5l27.9004 28.5996c51.5996 52.6006 135.899 52.6006 187.399 0z" />
-    <glyph glyph-name="venus" unicode="&#xf221;" horiz-adv-x="288" 
-d="M288 272c0 -68.5 -47.9004 -125.9 -112 -140.4v-51.5996h36c6.59961 0 12 -5.40039 12 -12v-40c0 -6.59961 -5.40039 -12 -12 -12h-36v-36c0 -6.59961 -5.40039 -12 -12 -12h-40c-6.59961 0 -12 5.40039 -12 12v36h-36c-6.59961 0 -12 5.40039 -12 12v40
-c0 6.59961 5.40039 12 12 12h36v51.5996c-64.0996 14.5 -112 71.9004 -112 140.4c0 79.5 64.5 144 144 144s144 -64.5 144 -144zM64 272c0 -44.0996 35.9004 -80 80 -80s80 35.9004 80 80s-35.9004 80 -80 80s-80 -35.9004 -80 -80z" />
-    <glyph glyph-name="mars" unicode="&#xf222;" horiz-adv-x="384" 
-d="M372 384c6.59961 0 12 -5.40039 12 -12v-79c0 -10.7002 -12.9004 -16.0996 -20.5 -8.5l-16.9004 16.9004l-80.6992 -80.7002c14 -22.2002 22.0996 -48.5 22.0996 -76.7002c0 -79.5 -64.5 -144 -144 -144s-144 64.5 -144 144s64.5 144 144 144
-c28.2002 0 54.5 -8.09961 76.7002 -22.0996l80.7002 80.6992l-16.9004 16.9004c-7.5 7.59961 -2.2002 20.5 8.5 20.5h79zM144 64c44.0996 0 80 35.9004 80 80s-35.9004 80 -80 80s-80 -35.9004 -80 -80s35.9004 -80 80 -80z" />
-    <glyph glyph-name="mercury" unicode="&#xf223;" horiz-adv-x="288" 
-d="M288 240c0 -68.5 -47.9004 -125.9 -112 -140.4v-51.5996h36c6.59961 0 12 -5.40039 12 -12v-40c0 -6.59961 -5.40039 -12 -12 -12h-36v-36c0 -6.59961 -5.40039 -12 -12 -12h-40c-6.59961 0 -12 5.40039 -12 12v36h-36c-6.59961 0 -12 5.40039 -12 12v40
-c0 6.59961 5.40039 12 12 12h36v51.5996c-64.0996 14.5 -112 71.9004 -112 140.4c0 44.2002 19.9004 83.7002 51.2002 110c-2.5 1.90039 -4.90039 3.7998 -7.2002 5.7998c-24.7998 21.2002 -39.7998 48.7998 -43.2002 78.9004
-c-0.899414 7.09961 4.7002 13.2998 11.9004 13.2998h40.5c5.7002 0 10.5996 -4.09961 11.7002 -9.7998c2.5 -12.5 9.59961 -24.2998 20.6992 -33.7998c15.4004 -13.2002 36.1006 -20.4004 58.4004 -20.4004s43 7.2002 58.2998 20.4004
-c11.1006 9.5 18.2998 21.2998 20.7002 33.7998c1.09961 5.7002 6 9.7998 11.7998 9.7998h40.5c7.2002 0 12.7998 -6.2002 11.9004 -13.2998c-3.40039 -30 -18.5 -57.6006 -43.2002 -78.7998c-2.2998 -2 -4.7002 -4 -7.2002 -5.80078
-c31.2998 -26.3994 51.2002 -65.8994 51.2002 -110.1zM64 240c0 -44.0996 35.9004 -80 80 -80s80 35.9004 80 80s-35.9004 80 -80 80s-80 -35.9004 -80 -80z" />
-    <glyph glyph-name="transgender" unicode="&#xf224;" horiz-adv-x="384" 
-d="M372 448c6.59961 0 12 -5.40039 12 -12v-79c0 -10.7002 -12.9004 -16.0996 -20.5 -8.5l-16.9004 16.9004l-80.6992 -80.7002c14 -22.2002 22.0996 -48.5 22.0996 -76.7002c0 -68.5 -47.9004 -125.8 -112 -140.4v-27.5996h36c6.59961 0 12 -5.40039 12 -12v-40
-c0 -6.59961 -5.40039 -12 -12 -12h-36v-28c0 -6.59961 -5.40039 -12 -12 -12h-40c-6.59961 0 -12 5.40039 -12 12v28h-36c-6.59961 0 -12 5.40039 -12 12v40c0 6.59961 5.40039 12 12 12h36v27.5996c-64.0996 14.5 -112 71.9004 -112 140.4c0 79.5 64.5 144 144 144
-c28.2002 0 54.5 -8.09961 76.7002 -22.0996l80.7002 80.6992l-16.9004 16.9004c-7.5 7.59961 -2.2002 20.5 8.5 20.5h79zM144 128c44.0996 0 80 35.9004 80 80s-35.9004 80 -80 80s-80 -35.9004 -80 -80s35.9004 -80 80 -80z" />
-    <glyph glyph-name="transgender-alt" unicode="&#xf225;" horiz-adv-x="480" 
-d="M468 448c6.59961 0 12 -5.40039 12 -12v-79c0 -10.7002 -12.9004 -16.0996 -20.5 -8.5l-16.9004 16.9004l-80.6992 -80.7002c14 -22.2002 22.0996 -48.5 22.0996 -76.7002c0 -68.5 -47.9004 -125.8 -112 -140.4v-27.5996h36c6.59961 0 12 -5.40039 12 -12v-40
-c0 -6.59961 -5.40039 -12 -12 -12h-36v-28c0 -6.59961 -5.40039 -12 -12 -12h-40c-6.59961 0 -12 5.40039 -12 12v28h-36c-6.59961 0 -12 5.40039 -12 12v40c0 6.59961 5.40039 12 12 12h36v27.5996c-64.0996 14.5 -112 71.9004 -112 140.4
-c0 28.2002 8.09961 54.5 22.2002 76.5996l-16.5 16.5l-19.7998 -19.7998c-4.7002 -4.7002 -12.3008 -4.7002 -17 0l-28.3008 28.2998c-4.69922 4.7002 -4.69922 12.3008 0 17l19.8008 19.8008l-19 19l-16.9004 -16.9004c-7.59961 -7.5 -20.5 -2.2002 -20.5 8.5v79
-c0 6.59961 5.40039 12 12 12h79c10.7002 0 16.0996 -12.9004 8.40039 -20.4004l-16.9004 -16.8994l19 -19l19.7998 19.7998c4.7002 4.7002 12.2998 4.7002 17 0l28.2998 -28.2998c4.7002 -4.7002 4.7002 -12.2998 0 -17l-19.7998 -19.7998l16.5 -16.5
-c22.2002 14 48.5 22.0996 76.7002 22.0996s54.5 -8.09961 76.7002 -22.0996l80.7002 80.6992l-16.9004 16.9004c-7.5 7.59961 -2.2002 20.5 8.5 20.5h79zM240 128c44.0996 0 80 35.9004 80 80s-35.9004 80 -80 80s-80 -35.9004 -80 -80s35.9004 -80 80 -80z" />
-    <glyph glyph-name="venus-double" unicode="&#xf226;" 
-d="M288 272c0 -68.5 -47.9004 -125.9 -112 -140.4v-51.5996h36c6.59961 0 12 -5.40039 12 -12v-40c0 -6.59961 -5.40039 -12 -12 -12h-36v-36c0 -6.59961 -5.40039 -12 -12 -12h-40c-6.59961 0 -12 5.40039 -12 12v36h-36c-6.59961 0 -12 5.40039 -12 12v40
-c0 6.59961 5.40039 12 12 12h36v51.5996c-64.0996 14.5 -112 71.9004 -112 140.4c0 79.5 64.5 144 144 144s144 -64.5 144 -144zM64 272c0 -44.0996 35.9004 -80 80 -80s80 35.9004 80 80s-35.9004 80 -80 80s-80 -35.9004 -80 -80zM400 131.6v-51.5996h36
-c6.59961 0 12 -5.40039 12 -12v-40c0 -6.59961 -5.40039 -12 -12 -12h-36v-36c0 -6.59961 -5.40039 -12 -12 -12h-40c-6.59961 0 -12 5.40039 -12 12v36h-36c-6.59961 0 -12 5.40039 -12 12v40c0 6.59961 5.40039 12 12 12h36v51.5996
-c-21.2002 4.80078 -40.5996 14.3008 -57.2002 27.3008c14 16.6992 25 36 32.1006 57.0996c14.5 -14.7998 34.6992 -24 57.0996 -24c44.0996 0 80 35.9004 80 80s-35.9004 80 -80 80c-22.2998 0 -42.5996 -9.2002 -57.0996 -24
-c-7.10059 21.0996 -18 40.4004 -32.1006 57.0996c24.6006 19.3008 55.5 30.9004 89.2002 30.9004c79.5 0 144 -64.5 144 -144c0 -68.5 -47.9004 -125.9 -112 -140.4z" />
-    <glyph glyph-name="mars-double" unicode="&#xf227;" 
-d="M340 448c6.59961 0 12 -5.40039 12 -12v-79c0 -7.2002 -5.90039 -12 -12.0996 -12c-2.90039 0 -6 1.09961 -8.40039 3.5l-16.9004 16.9004l-48.6992 -48.7002c14 -22.2002 22.0996 -48.5 22.0996 -76.7002c0 -79.5 -64.5 -144 -144 -144s-144 64.5 -144 144
-s64.5 144 144 144c28.2002 0 54.5 -8.09961 76.7002 -22.0996l48.7002 48.6992l-16.9004 16.9004c-7.5 7.59961 -2.2002 20.5 8.5 20.5h79zM144 160c44.0996 0 80 35.9004 80 80s-35.9004 80 -80 80s-80 -35.9004 -80 -80s35.9004 -80 80 -80zM500 288.1
-c6.59961 0 12 -5.39941 12 -12.0996v-79c0 -7.2002 -5.90039 -12 -12.0996 -12c-3 0 -6 1.09961 -8.40039 3.5l-16.9004 16.9004l-48.6992 -48.7002c14 -22.2002 22.0996 -48.5 22.0996 -76.7002c0 -79.5 -64.5 -144 -144 -144c-74.4004 0 -135.6 56.4004 -143.2 128.9
-c21.7998 2 43.2998 8.19922 63.2998 18.3994c-0.0996094 -1 -0.0996094 -2.09961 -0.0996094 -3.2002c0 -44.0996 35.9004 -80 80 -80s80 35.9004 80 80c0 44.1006 -35.9004 80 -80 80c-1 0 -2.09961 -0.0996094 -3.2002 -0.0996094
-c10.2002 20 16.2998 41.5 18.4004 63.2998c22.5 -2.39941 43.2998 -9.89941 61.5 -21.2998l48.7002 48.7002l-16.9004 16.8994c-7.5 7.60059 -2.2002 20.5 8.5 20.5h79z" />
-    <glyph glyph-name="venus-mars" unicode="&#xf228;" horiz-adv-x="576" 
-d="M564 448c6.59961 0 12 -5.40039 12 -12v-79c0 -7.2002 -5.90039 -12 -12.0996 -12c-3 0 -6 1.09961 -8.40039 3.5l-16.9004 16.9004l-48.6992 -48.7002c14 -22.2002 22.0996 -48.5 22.0996 -76.7002c0 -79.5 -64.5 -144 -144 -144
-c-33.7002 0 -64.7002 11.5 -89.2002 30.9004c14.1006 16.6992 25 36 32.1006 57.0996c14.5 -14.7998 34.7998 -24 57.0996 -24c44.0996 0 80 35.9004 80 80s-35.9004 80 -80 80c-22.4004 0 -42.5996 -9.2002 -57.0996 -24
-c-7.10059 21.0996 -18.1006 40.4004 -32.1006 57.0996c24.6006 19.3008 55.5 30.9004 89.2002 30.9004c28.2002 0 54.5 -8.09961 76.7002 -22.0996l48.7002 48.6992l-16.9004 16.9004c-7.5 7.59961 -2.2002 20.5 8.5 20.5h79zM144 384c79.5 0 144 -64.5 144 -144
-c0 -68.5 -47.9004 -125.8 -112 -140.4v-51.5996h36c6.59961 0 12 -5.40039 12 -12v-40c0 -6.59961 -5.40039 -12 -12 -12h-36v-36c0 -6.59961 -5.40039 -12 -12 -12h-40c-6.59961 0 -12 5.40039 -12 12v36h-36c-6.59961 0 -12 5.40039 -12 12v40c0 6.59961 5.40039 12 12 12
-h36v51.5996c-64.0996 14.5 -112 71.9004 -112 140.4c0 79.5 64.5 144 144 144zM144 160c44.0996 0 80 35.9004 80 80s-35.9004 80 -80 80s-80 -35.9004 -80 -80s35.9004 -80 80 -80z" />
-    <glyph glyph-name="mars-stroke" unicode="&#xf229;" horiz-adv-x="384" 
-d="M372 384c6.59961 0 12 -5.40039 12.0996 -12v-78.9004c0 -10.6992 -12.8994 -16.0996 -20.5 -8.5l-16.8994 16.9004l-17.5 -17.5l14.0996 -14.0996c4.7002 -4.7002 4.7002 -12.3008 0 -17l-28.2998 -28.3008c-4.7002 -4.69922 -12.2998 -4.69922 -17 0l-14.0996 14.1006
-l-18 -18c14 -22.2002 22.0996 -48.5 22.0996 -76.7002c0 -79.5 -64.5 -144 -144 -144s-144 64.5 -144 144s64.5 144 143.9 144c28.1992 0 54.5 -8.09961 76.6992 -22.0996l18 18l-14.0996 14.0996c-4.7002 4.7002 -4.7002 12.2998 0 17l28.2998 28.2002
-c4.7002 4.7002 12.2998 4.7002 17 0l14.1006 -14.1006l17.5 17.5l-16.9004 16.9004c-7.5 7.59961 -2.2002 20.5 8.5 20.5h79zM144 64c44.0996 0 80 35.9004 80 80s-35.9004 80 -80 80s-80 -35.9004 -80 -80s35.9004 -80 80 -80z" />
-    <glyph glyph-name="mars-stroke-v" unicode="&#xf22a;" horiz-adv-x="288" 
-d="M245.8 213.8c56.2998 -56.2002 56.2998 -147.399 0 -203.6c-56.2002 -56.2002 -147.399 -56.2002 -203.6 0s-56.2002 147.399 0 203.6c19.8994 19.9004 44.2002 32.7998 69.7998 38.6006v25.3994h-20c-6.59961 0 -12 5.40039 -12 12v40c0 6.60059 5.40039 12 12 12h20
-v24.7002h-23.9004c-10.6992 0 -16.0996 12.9004 -8.5 20.5l55.9004 55.9004c4.7002 4.69922 12.2998 4.69922 17 0l55.9004 -55.8008c7.5 -7.59961 2.19922 -20.5 -8.5 -20.5h-23.9004v-24.7998h20c6.59961 0 12 -5.39941 12 -12v-40c0 -6.59961 -5.40039 -12 -12 -12h-20
-v-25.3994c25.5996 -5.80078 49.9004 -18.7002 69.7998 -38.6006zM200.6 55.4004c31.2002 31.1992 31.2002 82 0 113.1c-31.1992 31.2002 -81.8994 31.2002 -113.1 0s-31.2002 -81.9004 0 -113.1c31.2002 -31.2002 81.9004 -31.2002 113.1 0z" />
-    <glyph glyph-name="mars-stroke-h" unicode="&#xf22b;" horiz-adv-x="480" 
-d="M476.2 200.5c4.7002 -4.7002 4.7002 -12.2998 0.0996094 -17l-55.8994 -55.9004c-7.60059 -7.5 -20.5 -2.19922 -20.5 8.5v23.9004h-23.9004v-20c0 -6.59961 -5.40039 -12 -12 -12h-40c-6.59961 0 -12 5.40039 -12 12v20h-27.5996
-c-5.80078 -25.5996 -18.7002 -49.9004 -38.6006 -69.7998c-56.2002 -56.2002 -147.399 -56.2002 -203.6 0s-56.2002 147.399 0 203.6s147.399 56.2002 203.6 0c19.9004 -19.8994 32.7998 -44.2002 38.6006 -69.7998h27.5996v20c0 6.59961 5.40039 12 12 12h40
-c6.59961 0 12 -5.40039 12 -12v-20h23.7998v23.9004c0 10.6992 12.9004 16.0996 20.5 8.5zM200.6 135.4c31.2002 31.1992 31.2002 82 0 113.1c-31.1992 31.2002 -81.8994 31.2002 -113.1 0s-31.2002 -81.9004 0 -113.1c31.2002 -31.2002 81.9004 -31.2002 113.1 0z" />
-    <glyph glyph-name="neuter" unicode="&#xf22c;" horiz-adv-x="288" 
-d="M288 272c0 -68.5 -47.9004 -125.9 -112 -140.4v-151.6c0 -6.59961 -5.40039 -12 -12 -12h-40c-6.59961 0 -12 5.40039 -12 12v151.6c-64.0996 14.5 -112 71.9004 -112 140.4c0 79.5 64.5 144 144 144s144 -64.5 144 -144zM144 192c44.0996 0 80 35.9004 80 80
-s-35.9004 80 -80 80s-80 -35.9004 -80 -80s35.9004 -80 80 -80z" />
-    <glyph glyph-name="genderless" unicode="&#xf22d;" horiz-adv-x="288" 
-d="M144 272c-44.0996 0 -80 -35.9004 -80 -80s35.9004 -80 80 -80s80 35.9004 80 80s-35.9004 80 -80 80zM144 336c79.5 0 144 -64.5 144 -144s-64.5 -144 -144 -144s-144 64.5 -144 144s64.5 144 144 144z" />
-    <glyph glyph-name="server" unicode="&#xf233;" 
-d="M480 288h-448c-17.6729 0 -32 14.3271 -32 32v64c0 17.6729 14.3271 32 32 32h448c17.6729 0 32 -14.3271 32 -32v-64c0 -17.6729 -14.3271 -32 -32 -32zM432 376c-13.2549 0 -24 -10.7451 -24 -24s10.7451 -24 24 -24s24 10.7451 24 24s-10.7451 24 -24 24zM368 376
-c-13.2549 0 -24 -10.7451 -24 -24s10.7451 -24 24 -24s24 10.7451 24 24s-10.7451 24 -24 24zM480 128h-448c-17.6729 0 -32 14.3271 -32 32v64c0 17.6729 14.3271 32 32 32h448c17.6729 0 32 -14.3271 32 -32v-64c0 -17.6729 -14.3271 -32 -32 -32zM432 216
-c-13.2549 0 -24 -10.7451 -24 -24s10.7451 -24 24 -24s24 10.7451 24 24s-10.7451 24 -24 24zM368 216c-13.2549 0 -24 -10.7451 -24 -24s10.7451 -24 24 -24s24 10.7451 24 24s-10.7451 24 -24 24zM480 -32h-448c-17.6729 0 -32 14.3271 -32 32v64
-c0 17.6729 14.3271 32 32 32h448c17.6729 0 32 -14.3271 32 -32v-64c0 -17.6729 -14.3271 -32 -32 -32zM432 56c-13.2549 0 -24 -10.7451 -24 -24s10.7451 -24 24 -24s24 10.7451 24 24s-10.7451 24 -24 24zM368 56c-13.2549 0 -24 -10.7451 -24 -24s10.7451 -24 24 -24
-s24 10.7451 24 24s-10.7451 24 -24 24z" />
-    <glyph glyph-name="user-plus" unicode="&#xf234;" horiz-adv-x="640" 
-d="M624 240c8.7998 0 16 -7.2002 16 -16v-32c0 -8.7998 -7.2002 -16 -16 -16h-64v-64c0 -8.7998 -7.2002 -16 -16 -16h-32c-8.7998 0 -16 7.2002 -16 16v64h-64c-8.7998 0 -16 7.2002 -16 16v32c0 8.7998 7.2002 16 16 16h64v64c0 8.7998 7.2002 16 16 16h32
-c8.7998 0 16 -7.2002 16 -16v-64h64zM224 192c-70.7002 0 -128 57.2998 -128 128s57.2998 128 128 128s128 -57.2998 128 -128s-57.2998 -128 -128 -128zM313.6 160c74.2002 0 134.4 -60.2002 134.4 -134.4v-41.5996c0 -26.5 -21.5 -48 -48 -48h-352
-c-26.5 0 -48 21.5 -48 48v41.5996c0 74.2002 60.2002 134.4 134.4 134.4h16.6992c22.3008 -10.2002 46.9004 -16 72.9004 -16s50.7002 5.7998 72.9004 16h16.6992z" />
-    <glyph glyph-name="user-times" unicode="&#xf235;" horiz-adv-x="640" 
-d="M589.6 208l45.6006 -45.5996c6.2998 -6.30078 6.2998 -16.5 0 -22.8008l-22.7998 -22.7998c-6.30078 -6.2998 -16.5 -6.2998 -22.8008 0l-45.5996 45.6006l-45.5996 -45.6006c-6.30078 -6.2998 -16.5 -6.2998 -22.8008 0l-22.7998 22.7998
-c-6.2998 6.30078 -6.2998 16.5 0 22.8008l45.6006 45.5996l-45.6006 45.5996c-6.2998 6.30078 -6.2998 16.5 0 22.8008l22.7998 22.7998c6.30078 6.2998 16.5 6.2998 22.8008 0l45.5996 -45.6006l45.5996 45.6006c6.30078 6.2998 16.5 6.2998 22.8008 0l22.7998 -22.7998
-c6.2998 -6.30078 6.2998 -16.5 0 -22.8008zM224 192c-70.7002 0 -128 57.2998 -128 128s57.2998 128 128 128s128 -57.2998 128 -128s-57.2998 -128 -128 -128zM313.6 160c74.2002 0 134.4 -60.2002 134.4 -134.4v-41.5996c0 -26.5 -21.5 -48 -48 -48h-352
-c-26.5 0 -48 21.5 -48 48v41.5996c0 74.2002 60.2002 134.4 134.4 134.4h16.6992c22.3008 -10.2002 46.9004 -16 72.9004 -16s50.7002 5.7998 72.9004 16h16.6992z" />
-    <glyph glyph-name="bed" unicode="&#xf236;" horiz-adv-x="640" 
-d="M176 192c-44.1104 0 -80 35.8896 -80 80s35.8896 80 80 80s80 -35.8896 80 -80s-35.8896 -80 -80 -80zM528 320c61.8604 0 112 -50.1396 112 -112v-192c0 -8.83984 -7.16016 -16 -16 -16h-32c-8.83984 0 -16 7.16016 -16 16v48h-512v-48c0 -8.83984 -7.16016 -16 -16 -16
-h-32c-8.83984 0 -16 7.16016 -16 16v352c0 8.83984 7.16016 16 16 16h32c8.83984 0 16 -7.16016 16 -16v-208h224v144c0 8.83984 7.16016 16 16 16h224z" />
-    <glyph glyph-name="train" unicode="&#xf238;" horiz-adv-x="448" 
-d="M448 352v-256c0 -51.8154 -61.624 -96 -130.022 -96l62.9805 -49.7207c5.94727 -4.69629 2.60352 -14.2793 -4.95801 -14.2793h-304c-7.57812 0 -10.8916 9.59375 -4.95703 14.2793l62.9795 49.7207c-68.2021 0 -130.022 44.0459 -130.022 96v256c0 53.0186 64 96 128 96
-h192c65 0 128 -42.9814 128 -96zM400 216v112c0 13.2549 -10.7451 24 -24 24h-304c-13.2549 0 -24 -10.7451 -24 -24v-112c0 -13.2549 10.7451 -24 24 -24h304c13.2549 0 24 10.7451 24 24zM224 152c-30.9277 0 -56 -25.0723 -56 -56s25.0723 -56 56 -56s56 25.0723 56 56
-s-25.0723 56 -56 56z" />
-    <glyph glyph-name="subway" unicode="&#xf239;" horiz-adv-x="448" 
-d="M448 352v-256c0 -51.8154 -61.624 -96 -130.022 -96l62.9805 -49.7207c5.94727 -4.69629 2.60352 -14.2793 -4.95801 -14.2793h-304c-7.57812 0 -10.8916 9.59375 -4.95703 14.2793l62.9795 49.7207c-68.2021 0 -130.022 44.0459 -130.022 96v256c0 53.0186 64 96 128 96
-h192c65 0 128 -42.9814 128 -96zM200 216v112c0 13.2549 -10.7451 24 -24 24h-104c-13.2549 0 -24 -10.7451 -24 -24v-112c0 -13.2549 10.7451 -24 24 -24h104c13.2549 0 24 10.7451 24 24zM400 216v112c0 13.2549 -10.7451 24 -24 24h-104c-13.2549 0 -24 -10.7451 -24 -24
-v-112c0 -13.2549 10.7451 -24 24 -24h104c13.2549 0 24 10.7451 24 24zM352 160c-26.5098 0 -48 -21.4902 -48 -48s21.4902 -48 48 -48s48 21.4902 48 48s-21.4902 48 -48 48zM96 160c-26.5098 0 -48 -21.4902 -48 -48s21.4902 -48 48 -48s48 21.4902 48 48
-s-21.4902 48 -48 48z" />
-    <glyph glyph-name="battery-full" unicode="&#xf240;" horiz-adv-x="640" 
-d="M544 288h-480v-192h480v64h32v64h-32v64zM560 352c26.5098 0 48 -21.4902 48 -48v-16h8c13.2549 0 24 -10.7451 24 -24v-144c0 -13.2549 -10.7451 -24 -24 -24h-8v-16c0 -26.5098 -21.4902 -48 -48 -48h-512c-26.5098 0 -48 21.4902 -48 48v224
-c0 26.5098 21.4902 48 48 48h512zM512 256v-128h-416v128h416z" />
-    <glyph glyph-name="battery-three-quarters" unicode="&#xf241;" horiz-adv-x="640" 
-d="M544 288h-480v-192h480v64h32v64h-32v64zM560 352c26.5098 0 48 -21.4902 48 -48v-16h8c13.2549 0 24 -10.7451 24 -24v-144c0 -13.2549 -10.7451 -24 -24 -24h-8v-16c0 -26.5098 -21.4902 -48 -48 -48h-512c-26.5098 0 -48 21.4902 -48 48v224
-c0 26.5098 21.4902 48 48 48h512zM416 256v-128h-320v128h320z" />
-    <glyph glyph-name="battery-half" unicode="&#xf242;" horiz-adv-x="640" 
-d="M544 288h-480v-192h480v64h32v64h-32v64zM560 352c26.5098 0 48 -21.4902 48 -48v-16h8c13.2549 0 24 -10.7451 24 -24v-144c0 -13.2549 -10.7451 -24 -24 -24h-8v-16c0 -26.5098 -21.4902 -48 -48 -48h-512c-26.5098 0 -48 21.4902 -48 48v224
-c0 26.5098 21.4902 48 48 48h512zM320 256v-128h-224v128h224z" />
-    <glyph glyph-name="battery-quarter" unicode="&#xf243;" horiz-adv-x="640" 
-d="M544 288h-480v-192h480v64h32v64h-32v64zM560 352c26.5098 0 48 -21.4902 48 -48v-16h8c13.2549 0 24 -10.7451 24 -24v-144c0 -13.2549 -10.7451 -24 -24 -24h-8v-16c0 -26.5098 -21.4902 -48 -48 -48h-512c-26.5098 0 -48 21.4902 -48 48v224
-c0 26.5098 21.4902 48 48 48h512zM224 256v-128h-128v128h128z" />
-    <glyph glyph-name="battery-empty" unicode="&#xf244;" horiz-adv-x="640" 
-d="M544 288h-480v-192h480v64h32v64h-32v64zM560 352c26.5098 0 48 -21.4902 48 -48v-16h8c13.2549 0 24 -10.7451 24 -24v-144c0 -13.2549 -10.7451 -24 -24 -24h-8v-16c0 -26.5098 -21.4902 -48 -48 -48h-512c-26.5098 0 -48 21.4902 -48 48v224
-c0 26.5098 21.4902 48 48 48h512z" />
-    <glyph glyph-name="mouse-pointer" unicode="&#xf245;" horiz-adv-x="320" 
-d="M302.189 118.874h-106.084l55.8301 -135.993c3.88965 -9.42773 -0.554688 -19.999 -9.44336 -23.999l-49.165 -21.4268c-9.16504 -4 -19.4434 0.571289 -23.332 9.71387l-53.0527 129.136l-86.6641 -89.1377c-11.5498 -11.877 -30.2783 -2.7207 -30.2783 12.8564v429.678
-c0 16.3994 19.9209 24.3945 30.2773 12.8555l284.412 -292.542c11.4717 -11.1787 3.00684 -31.1406 -12.5 -31.1406z" />
-    <glyph glyph-name="i-cursor" unicode="&#xf246;" horiz-adv-x="256" 
-d="M256 395.952c0 -6.64648 -5.4043 -12.0098 -12.0498 -11.9922c-27.875 0.0712891 -83.9502 -3.20996 -83.9502 -48.1416v-111.818h36c6.62695 0 12 -5.37305 12 -12v-40c0 -6.62695 -5.37305 -12 -12 -12h-36v-112c0 -44.9395 57.8887 -48.5527 83.8555 -48.2422
-c6.68652 0.0800781 12.1445 -5.31055 12.1445 -11.998v-39.6445c0 -6.5957 -5.31836 -11.957 -11.9131 -12c-35.0654 -0.228516 -78.3525 0.62207 -116.087 37.8447c-38.4688 -37.9482 -83.6211 -38.3027 -116.158 -37.8936
-c-6.56738 0.0820312 -11.8418 5.42969 -11.8418 11.999v39.9824c0 6.64648 5.4043 12.0098 12.0498 11.9932c27.875 -0.0722656 83.9502 3.02734 83.9502 47.959v112h-36c-6.62695 0 -12 5.37305 -12 12v40c0 6.62695 5.37305 12 12 12h36v111.818
-c0 44.9385 -57.8887 48.7344 -83.8555 48.4248c-6.68652 -0.0800781 -12.1445 5.31055 -12.1445 11.998v39.6445c0 6.5957 5.31836 11.957 11.9131 12c35.0654 0.228516 78.3525 -0.62207 116.087 -37.8447c38.4688 37.9482 83.6211 38.3027 116.158 37.8926
-c6.56738 -0.0820312 11.8418 -5.42969 11.8418 -11.999v-39.9824z" />
-    <glyph glyph-name="object-group" unicode="&#xf247;" 
-d="M480 320v-288h20c6.62695 0 12 -5.37305 12 -12v-40c0 -6.62695 -5.37305 -12 -12 -12h-40c-6.62695 0 -12 5.37305 -12 12v20h-384v-20c0 -6.62695 -5.37305 -12 -12 -12h-40c-6.62695 0 -12 5.37305 -12 12v40c0 6.62695 5.37305 12 12 12h20v320h-20
-c-6.62695 0 -12 5.37305 -12 12v40c0 6.62695 5.37305 12 12 12h40c6.62695 0 12 -5.37305 12 -12v-20h384v20c0 6.62695 5.37305 12 12 12h40c6.62695 0 12 -5.37305 12 -12v-40c0 -6.62695 -5.37305 -12 -12 -12h-20v-32zM96 172c0 -6.62695 5.37305 -12 12 -12h168
-c6.62695 0 12 5.37305 12 12v136c0 6.62695 -5.37305 12 -12 12h-168c-6.62695 0 -12 -5.37305 -12 -12v-136zM416 76v136c0 6.62695 -5.37305 12 -12 12h-84v-72c0 -13.2549 -10.7451 -24 -24 -24h-72v-52c0 -6.62695 5.37305 -12 12 -12h168c6.62695 0 12 5.37305 12 12z
-" />
-    <glyph glyph-name="object-ungroup" unicode="&#xf248;" horiz-adv-x="576" 
-d="M64 128v-26c0 -3.31152 -2.68848 -6 -6 -6h-52c-3.31152 0 -6 2.68848 -6 6v52c0 3.31152 2.68848 6 6 6h26v192h-26c-3.31152 0 -6 2.68848 -6 6v52c0 3.31152 2.68848 6 6 6h52c3.31152 0 6 -2.68848 6 -6v-26h288v26c0 3.31152 2.68848 6 6 6h52
-c3.31152 0 6 -2.68848 6 -6v-52c0 -3.31152 -2.68848 -6 -6 -6h-26v-192h26c3.31152 0 6 -2.68848 6 -6v-52c0 -3.31152 -2.68848 -6 -6 -6h-52c-3.31152 0 -6 2.68848 -6 6v26h-288zM544 192v-160h26c3.31152 0 6 -2.68848 6 -6v-52c0 -3.31152 -2.68848 -6 -6 -6h-52
-c-3.31152 0 -6 2.68848 -6 6v26h-288v-26c0 -3.31152 -2.68848 -6 -6 -6h-52c-3.31152 0 -6 2.68848 -6 6v52c0 3.31152 2.68848 6 6 6h26v72h136v-8c0 -13.2549 10.7451 -24 24 -24h64c13.2549 0 24 10.7451 24 24v64c0 13.2549 -10.7451 24 -24 24h-8v72h104v26
-c0 3.31152 2.68848 6 6 6h52c3.31152 0 6 -2.68848 6 -6v-52c0 -3.31152 -2.68848 -6 -6 -6h-26v-32z" />
-    <glyph glyph-name="sticky-note" unicode="&#xf249;" horiz-adv-x="448" 
-d="M312 128c-13.2002 0 -24 -10.7998 -24 -24v-136h-264c-13.2998 0 -24 10.7002 -24 24v400c0 13.2998 10.7002 24 24 24h400c13.2998 0 24 -10.7002 24 -24v-264h-136zM441 73l-98 -98c-4.5 -4.5 -10.5996 -7 -17 -7h-6v128h128v-6.09961
-c0 -6.30078 -2.5 -12.4004 -7 -16.9004z" />
-    <glyph glyph-name="clone" unicode="&#xf24d;" 
-d="M464 448c26.5098 0 48 -21.4902 48 -48v-288c0 -26.5098 -21.4902 -48 -48 -48h-288c-26.5098 0 -48 21.4902 -48 48v288c0 26.5098 21.4902 48 48 48h288zM176 32h208v-48c0 -26.5098 -21.4902 -48 -48 -48h-288c-26.5098 0 -48 21.4902 -48 48v288
-c0 26.5098 21.4902 48 48 48h48v-208c0 -44.1123 35.8877 -80 80 -80z" />
-    <glyph glyph-name="balance-scale" unicode="&#xf24e;" horiz-adv-x="640" 
-d="M256 112c0 -44.1797 -57.3096 -80 -128 -80s-128 35.8203 -128 80h0.0195312c0 15.6699 -2.0791 7.25 85.04 181.51c17.6807 35.3604 68.2207 35.29 85.8701 0c86.3906 -172.779 85.0508 -165.33 85.0508 -181.51h0.0195312zM128 272l-72 -144h144zM639.98 112
-c0 -44.1797 -57.29 -80 -127.98 -80s-128 35.8203 -128 80h0.0195312c0 15.6699 -2.0791 7.25 85.04 181.51c17.6807 35.3604 68.2207 35.29 85.8701 0c86.3906 -172.779 85.0508 -165.33 85.0508 -181.51zM440 128h144l-72 144zM528 0c8.83984 0 16 -7.16016 16 -16v-32
-c0 -8.83984 -7.16016 -16 -16 -16h-416c-8.83984 0 -16 7.16016 -16 16v32c0 8.83984 7.16016 16 16 16h176v294.75c-23.5195 10.29 -41.1602 31.4902 -46.3896 57.25h-129.61c-8.83984 0 -16 7.16016 -16 16v32c0 8.83984 7.16016 16 16 16h144.36
-c14.5996 19.3203 37.5498 32 63.6396 32s49.04 -12.6797 63.6396 -32h144.36c8.83984 0 16 -7.16016 16 -16v-32c0 -8.83984 -7.16016 -16 -16 -16h-129.61c-5.22949 -25.7695 -22.8799 -46.96 -46.3896 -57.25v-294.75h176z" />
-    <glyph glyph-name="hourglass-start" unicode="&#xf251;" horiz-adv-x="384" 
-d="M360 448c13.2549 0 24 -10.7451 24 -24v-16c0 -13.2549 -10.7451 -24 -24 -24c0 -90.9648 -51.0156 -167.734 -120.842 -192c69.8262 -24.2656 120.842 -101.035 120.842 -192c13.2549 0 24 -10.7451 24 -24v-16c0 -13.2549 -10.7451 -24 -24 -24h-336
-c-13.2549 0 -24 10.7451 -24 24v16c0 13.2549 10.7451 24 24 24c0 90.9648 51.0156 167.734 120.842 192c-69.8262 24.2656 -120.842 101.035 -120.842 192c-13.2549 0 -24 10.7451 -24 24v16c0 13.2549 10.7451 24 24 24h336zM296 0c0 77.4834 -46.2139 144 -104 144
-c-57.7959 0 -104 -66.542 -104 -144h208z" />
-    <glyph glyph-name="hourglass-half" unicode="&#xf252;" horiz-adv-x="384" 
-d="M360 448c13.2549 0 24 -10.7451 24 -24v-16c0 -13.2549 -10.7451 -24 -24 -24c0 -90.9648 -51.0156 -167.734 -120.842 -192c69.8262 -24.2656 120.842 -101.035 120.842 -192c13.2549 0 24 -10.7451 24 -24v-16c0 -13.2549 -10.7451 -24 -24 -24h-336
-c-13.2549 0 -24 10.7451 -24 24v16c0 13.2549 10.7451 24 24 24c0 90.9648 51.0156 167.734 120.842 192c-69.8262 24.2656 -120.842 101.035 -120.842 192c-13.2549 0 -24 10.7451 -24 24v16c0 13.2549 10.7451 24 24 24h336zM284.922 64
-c-17.0596 46.8037 -52.1006 80 -92.9219 80c-40.8242 0 -75.8613 -33.2031 -92.9199 -80h185.842zM284.941 320c7.07129 19.4131 11.0586 41.1953 11.0586 64h-208c0 -22.748 3.98828 -44.5479 11.0781 -64h185.863z" />
-    <glyph glyph-name="hourglass-end" unicode="&#xf253;" horiz-adv-x="384" 
-d="M360 384c0 -90.9648 -51.0156 -167.734 -120.842 -192c69.8262 -24.2656 120.842 -101.035 120.842 -192c13.2549 0 24 -10.7451 24 -24v-16c0 -13.2549 -10.7451 -24 -24 -24h-336c-13.2549 0 -24 10.7451 -24 24v16c0 13.2549 10.7451 24 24 24
-c0 90.9648 51.0156 167.734 120.842 192c-69.8262 24.2656 -120.842 101.035 -120.842 192c-13.2549 0 -24 10.7451 -24 24v16c0 13.2549 10.7451 24 24 24h336c13.2549 0 24 -10.7451 24 -24v-16c0 -13.2549 -10.7451 -24 -24 -24zM192 240c57.4902 0 104 66.0547 104 144
-h-208c0 -77.4824 46.2129 -144 104 -144z" />
-    <glyph glyph-name="hourglass" unicode="&#xf254;" horiz-adv-x="384" 
-d="M360 384c0 -90.9648 -51.0156 -167.734 -120.842 -192c69.8262 -24.2656 120.842 -101.035 120.842 -192c13.2549 0 24 -10.7451 24 -24v-16c0 -13.2549 -10.7451 -24 -24 -24h-336c-13.2549 0 -24 10.7451 -24 24v16c0 13.2549 10.7451 24 24 24
-c0 90.9648 51.0156 167.734 120.842 192c-69.8262 24.2656 -120.842 101.035 -120.842 192c-13.2549 0 -24 10.7451 -24 24v16c0 13.2549 10.7451 24 24 24h336c13.2549 0 24 -10.7451 24 -24v-16c0 -13.2549 -10.7451 -24 -24 -24z" />
-    <glyph glyph-name="hand-rock" unicode="&#xf255;" 
-d="M464.8 368c26.2998 -0.400391 47.2002 -22.5 47.2002 -48.7998v-133.5c0 -12.7998 -2.5 -25.5 -7.5 -37.2998l-49 -116.301c-4.90039 -11.7998 -7.5 -24.5 -7.5 -37.2998v-2.89941c0 -13.3008 -10.7002 -24 -24 -24h-240c-13.2998 0 -24 10.6992 -24 24v6.69922
-c0 13.7002 -5.90039 26.8008 -16.0996 35.9004l-111.7 99.2998c-20.5 18.2998 -32.2002 44.4004 -32.2002 71.7998v66.4004c0 26.7998 21.9004 48.4004 48.7998 48c26.2998 -0.5 47.2002 -22.5 47.2002 -48.7998v-48.1006l8 -7.09961v136
-c0 26.7998 21.9004 48.4004 48.7998 48c26.2998 -0.5 47.2002 -22.5 47.2002 -48.7998v-31.2002h8v48c0 26.7998 21.9004 48.4004 48.7998 48c26.2998 -0.5 47.2002 -22.5 47.2002 -48.7998v-47.2002h8v32c0 26.7998 21.9004 48.4004 48.7998 48
-c26.2998 -0.5 47.2002 -22.5 47.2002 -48.7998v-31.2002h8c0 26.7998 21.9004 48.4004 48.7998 48z" />
-    <glyph glyph-name="hand-paper" unicode="&#xf256;" horiz-adv-x="448" 
-d="M408.781 319.993c21.7305 -0.416016 39.2188 -18.1621 39.2178 -39.9932v-150.359c0 -15.166 -1.77344 -29.8193 -5.10449 -43.9746l-26.5078 -112.66c-5.10156 -21.6816 -24.4502 -37.0059 -46.7236 -37.0059h-197.59c-15.9629 0 -30.0908 7.76562 -38.8193 19.7676
-l-125.601 172.705c-12.9932 17.8672 -9.04297 42.8838 8.82129 55.877c17.8682 12.9941 42.8848 9.04297 55.877 -8.82227l31.6484 -43.5195v235.992c0 21.8311 17.4883 39.5771 39.2188 39.9932c22.4248 0.428711 40.7812 -18.3535 40.7812 -40.7832v-175.21h8v216
-c0 21.8311 17.4883 39.5771 39.2188 39.9932c22.4248 0.428711 40.7812 -18.3535 40.7812 -40.7832v-215.21h8v177c0 21.8311 17.4883 39.5771 39.2188 39.9932c22.4248 0.428711 40.7812 -18.3535 40.7812 -40.7832v-176.21h8v87.21
-c0 22.4297 18.3564 41.2119 40.7812 40.7832z" />
-    <glyph glyph-name="hand-scissors" unicode="&#xf257;" 
-d="M216 8c0 22.0918 17.9092 40 40 40v8h-32c-22.0908 0 -40 17.9082 -40 40s17.9092 40 40 40h32v8h-208c-26.5098 0 -48 21.4902 -48 48s21.4902 48 48 48h208v13.5723l-177.551 69.7393c-24.6738 9.69434 -36.8184 37.5557 -27.125 62.2285
-c9.69238 24.6738 37.5537 36.8174 62.2275 27.124l190.342 -74.7646l24.8721 31.0898c12.3066 15.3809 33.9785 19.5146 51.0811 9.74121l112 -64c12.0605 -6.89355 20.1533 -19.8564 20.1533 -34.7305v-240c0 -18.5615 -12.7695 -34.6855 -30.8379 -38.9365l-136 -32
-c-2.94824 -0.694336 -6.00391 -1.06348 -9.16211 -1.06348h-80c-22.0908 0 -40 17.9082 -40 40z" />
-    <glyph glyph-name="hand-lizard" unicode="&#xf258;" horiz-adv-x="576" 
-d="M384 -32v61.4609c0 8.5332 -4.4375 16.0166 -11.1543 20.2734l-111.748 70.8105c-7.41895 4.70215 -16.2656 7.45508 -25.6914 7.45508h-147.406c-13.2549 0 -24 10.7451 -24 24v8c0 35.3457 28.6543 64 64 64h123.648c13.3086 0 24.7158 8.12109 29.5371 19.6924
-l21.4102 51.3848c4.94141 11.8555 -3.77051 24.9229 -16.6143 24.9229h-229.981c-30.9277 0 -56 25.0723 -56 56v16c0 13.2549 10.7451 24 24 24h333.544c17.0908 0 32.0781 -8.90137 40.583 -22.3682l163.04 -258.146c9.35645 -14.8145 14.833 -32.4619 14.833 -51.2637
-v-116.222h-192z" />
-    <glyph glyph-name="hand-spock" unicode="&#xf259;" 
-d="M510.9 302.729l-68.2969 -286.823c-10.8975 -45.7705 -52.0801 -79.9062 -101.166 -79.9062h-127.363c-36.0293 0 -68.8447 14.0459 -93.1855 36.9531l-108.298 101.92c-7.72754 7.29297 -12.5537 17.6299 -12.5537 29.084c0 22.0723 17.9199 39.9922 39.9922 39.9922
-c10.5742 0 20.2188 -4.11426 27.374 -10.8262l60.5928 -57.0254v0c0 27.958 -4.1084 54.9473 -11.6699 80.4668l-42.6885 144.075c-1.06738 3.60254 -1.63965 7.41699 -1.63965 11.3633c0 22.0801 17.9258 40.0059 40.0049 40.0059
-c18.1338 0 33.4512 -12.0977 38.3525 -28.6504l37.1543 -125.395c1.02148 -3.44629 4.21387 -5.96387 7.99023 -5.96387c4.59766 0 8.33105 3.7334 8.33105 8.33105c0 0.717773 -0.09375 1.41016 -0.264648 2.07422l-50.3047 195.641
-c-0.821289 3.19238 -1.25879 6.53711 -1.25879 9.98438c0 22.0742 17.9219 39.9961 39.9971 39.9961c18.6279 0 34.291 -12.793 38.7305 -30.043l56.0947 -218.158c1.15527 -4.49512 5.23926 -7.82129 10.0928 -7.82129c5.03125 0 9.23438 3.57715 10.207 8.32227
-l37.6826 183.704c3.76074 18.2139 19.9043 31.9248 39.2256 31.9248c4.20703 0 8.26562 -0.629883 12.0771 -1.83496c19.8604 -6.2998 30.8623 -27.6738 26.6758 -48.085l-33.8389 -164.967c-0.101562 -0.492188 -0.154297 -1.00098 -0.154297 -1.52344
-c0 -4.16797 3.38379 -7.55176 7.55176 -7.55176c3.56445 0 6.55566 2.48535 7.34668 5.80859l29.3975 123.459c4.19141 17.6016 20.0312 30.708 38.9082 30.708c22.0732 0 39.9941 -17.9209 39.9941 -39.9941c0 -3.19727 -0.380859 -6.26465 -1.09082 -9.24512v0z" />
-    <glyph glyph-name="hand-pointer" unicode="&#xf25a;" horiz-adv-x="448" 
-d="M448 208v-96c0 -3.08398 -0.356445 -6.15918 -1.06348 -9.16211l-32 -136c-4.25098 -18.0684 -20.375 -30.8379 -38.9365 -30.8379h-208c-13.3018 0 -25.0752 6.47168 -32.3496 16.4727l-127.997 176c-12.9932 17.8662 -9.04297 42.8838 8.82129 55.876
-c17.8672 12.9941 42.8848 9.04297 55.877 -8.82227l31.6484 -43.5186v275.992c0 22.0908 17.9082 40 40 40s40 -17.9092 40 -40v-200h8v40c0 22.0908 17.9082 40 40 40s40 -17.9092 40 -40v-40h8v24c0 22.0908 17.9082 40 40 40s40 -17.9092 40 -40v-24h8
-c0 22.0908 17.9082 40 40 40s40 -17.9092 40 -40zM192 128h-8v-96h8v96zM280 128h-8v-96h8v96zM368 128h-8v-96h8v96z" />
-    <glyph glyph-name="hand-peace" unicode="&#xf25b;" horiz-adv-x="448" 
-d="M408 232c22.0918 0 40 -17.9092 40 -40v-80c0 -3.1582 -0.369141 -6.21484 -1.06348 -9.16211l-32 -136c-4.25098 -18.0684 -20.375 -30.8379 -38.9365 -30.8379h-240c-14.874 0 -27.8379 8.09375 -34.7285 20.1543l-64 112
-c-9.77441 17.1025 -5.64062 38.7744 9.74023 51.0811l31.0898 24.8721l-74.7646 190.342c-9.69336 24.6738 2.4502 52.5342 27.124 62.2266c24.6729 9.69434 52.5332 -2.4502 62.2275 -27.125l69.7393 -177.551h13.5723v208c0 26.5098 21.4902 48 48 48s48 -21.4902 48 -48
-v-208h8v32c0 22.0908 17.9082 40 40 40s40 -17.9092 40 -40v-32h8c0 22.0908 17.9082 40 40 40z" />
-    <glyph glyph-name="trademark" unicode="&#xf25c;" horiz-adv-x="640" 
-d="M260.6 352c6.60059 0 12 -5.40039 11.9004 -12v-43.0996c0 -6.60059 -5.40039 -12 -12 -12h-85.0996v-240.9c0 -6.59961 -5.40039 -12 -12 -12h-54.3008c-6.59961 0 -12 5.40039 -12 12v240.9h-85.0996c-6.59961 0 -12 5.39941 -12 12v43.0996
-c0 6.59961 5.40039 12 12 12h248.6zM640 45c0.5 -7 -5 -13 -12 -13h-53.9004c-6.2998 0 -11.5996 4.90039 -12 11.2002l-9.09961 132.899c-1.7998 24.2002 0 53.7002 0 53.7002h-0.900391s-10.6992 -33.5996 -17.8994 -53.7002l-30.7002 -84.6992
-c-1.7002 -4.7002 -6.2002 -7.90039 -11.2998 -7.90039h-50.2998c-5.10059 0 -9.60059 3.2002 -11.3008 7.90039l-30.6992 84.6992c-7.2002 20.1006 -17.9004 53.7002 -17.9004 53.7002h-0.900391s1.80078 -29.5 0 -53.7002l-9.09961 -132.899
-c-0.5 -6.2998 -5.7002 -11.2002 -12 -11.2002h-54.5c-7.09961 0 -12.5996 6 -12 13l24.4004 296c0.599609 6.2002 5.7998 11 12 11h65.3994c5.10059 0 9.60059 -3.2998 11.2998 -8.09961l43.8008 -127.101c7.19922 -20.5996 16.0996 -52.7998 16.0996 -52.7998h0.900391
-s8.89941 32.2002 16.0996 52.7998l43.7998 127.101c1.60059 4.7998 6.2002 8.09961 11.2998 8.09961h65.4004c6.2998 0 11.5 -4.7998 12 -11z" />
-    <glyph glyph-name="registered" unicode="&#xf25d;" 
-d="M285.363 240.525c0 -18.6006 -9.83105 -28.4316 -28.4316 -28.4316h-29.876v56.1406h23.3779c28.668 0 34.9297 -8.77344 34.9297 -27.709zM504 192c0 -136.967 -111.033 -248 -248 -248s-248 111.033 -248 248s111.033 248 248 248s248 -111.033 248 -248z
-M363.411 87.5859c-46.7295 84.8252 -43.2988 78.6357 -44.7021 80.9805c23.4316 15.1719 37.9453 42.9785 37.9453 74.4854c0 54.2441 -31.5 89.252 -105.498 89.252h-70.667c-13.2549 0 -24 -10.7451 -24 -24v-232.304c0 -13.2549 10.7451 -24 24 -24h22.5664
-c13.2549 0 24 10.7451 24 24v71.6631h25.5566l44.1289 -82.9375c4.03516 -7.58301 12.0049 -12.7266 21.1875 -12.7266h24.4639c18.2617 0.000976562 29.8291 19.5908 21.0186 35.5869z" />
-    <glyph glyph-name="tv" unicode="&#xf26c;" horiz-adv-x="640" 
-d="M592 448c26.4922 0 48 -21.5078 48 -48v-320c0 -26.4922 -21.5078 -48 -48 -48h-240v-32h176c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-416c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h176v32h-240
-c-26.4922 0 -48 21.5078 -48 48v320c0 26.4922 21.5078 48 48 48h544zM576 96v288h-512v-288h512z" />
-    <glyph glyph-name="calendar-plus" unicode="&#xf271;" horiz-adv-x="448" 
-d="M436 288h-424c-6.59961 0 -12 5.40039 -12 12v36c0 26.5 21.5 48 48 48h48v52c0 6.59961 5.40039 12 12 12h40c6.59961 0 12 -5.40039 12 -12v-52h128v52c0 6.59961 5.40039 12 12 12h40c6.59961 0 12 -5.40039 12 -12v-52h48c26.5 0 48 -21.5 48 -48v-36
-c0 -6.59961 -5.40039 -12 -12 -12zM12 256h424c6.59961 0 12 -5.40039 12 -12v-260c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v260c0 6.59961 5.40039 12 12 12zM328 116c0 6.59961 -5.40039 12 -12 12h-60v60c0 6.59961 -5.40039 12 -12 12h-40
-c-6.59961 0 -12 -5.40039 -12 -12v-60h-60c-6.59961 0 -12 -5.40039 -12 -12v-40c0 -6.59961 5.40039 -12 12 -12h60v-60c0 -6.59961 5.40039 -12 12 -12h40c6.59961 0 12 5.40039 12 12v60h60c6.59961 0 12 5.40039 12 12v40z" />
-    <glyph glyph-name="calendar-minus" unicode="&#xf272;" horiz-adv-x="448" 
-d="M436 288h-424c-6.59961 0 -12 5.40039 -12 12v36c0 26.5 21.5 48 48 48h48v52c0 6.59961 5.40039 12 12 12h40c6.59961 0 12 -5.40039 12 -12v-52h128v52c0 6.59961 5.40039 12 12 12h40c6.59961 0 12 -5.40039 12 -12v-52h48c26.5 0 48 -21.5 48 -48v-36
-c0 -6.59961 -5.40039 -12 -12 -12zM12 256h424c6.59961 0 12 -5.40039 12 -12v-260c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v260c0 6.59961 5.40039 12 12 12zM316 64c6.59961 0 12 5.40039 12 12v40c0 6.59961 -5.40039 12 -12 12h-184
-c-6.59961 0 -12 -5.40039 -12 -12v-40c0 -6.59961 5.40039 -12 12 -12h184z" />
-    <glyph glyph-name="calendar-times" unicode="&#xf273;" horiz-adv-x="448" 
-d="M436 288h-424c-6.59961 0 -12 5.40039 -12 12v36c0 26.5 21.5 48 48 48h48v52c0 6.59961 5.40039 12 12 12h40c6.59961 0 12 -5.40039 12 -12v-52h128v52c0 6.59961 5.40039 12 12 12h40c6.59961 0 12 -5.40039 12 -12v-52h48c26.5 0 48 -21.5 48 -48v-36
-c0 -6.59961 -5.40039 -12 -12 -12zM12 256h424c6.59961 0 12 -5.40039 12 -12v-260c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v260c0 6.59961 5.40039 12 12 12zM269.3 96l48.1006 48.0996c4.69922 4.7002 4.69922 12.3008 0 17l-28.3008 28.3008
-c-4.69922 4.69922 -12.2998 4.69922 -17 0l-48.0996 -48.1006l-48.0996 48.1006c-4.7002 4.69922 -12.3008 4.69922 -17 0l-28.3008 -28.3008c-4.69922 -4.69922 -4.69922 -12.2998 0 -17l48.1006 -48.0996l-48.1006 -48.0996c-4.69922 -4.7002 -4.69922 -12.3008 0 -17
-l28.3008 -28.3008c4.69922 -4.69922 12.2998 -4.69922 17 0l48.0996 48.1006l48.0996 -48.1006c4.7002 -4.69922 12.3008 -4.69922 17 0l28.3008 28.3008c4.69922 4.69922 4.69922 12.2998 0 17z" />
-    <glyph glyph-name="calendar-check" unicode="&#xf274;" horiz-adv-x="448" 
-d="M436 288h-424c-6.62695 0 -12 5.37305 -12 12v36c0 26.5098 21.4902 48 48 48h48v52c0 6.62695 5.37305 12 12 12h40c6.62695 0 12 -5.37305 12 -12v-52h128v52c0 6.62695 5.37305 12 12 12h40c6.62695 0 12 -5.37305 12 -12v-52h48c26.5098 0 48 -21.4902 48 -48v-36
-c0 -6.62695 -5.37305 -12 -12 -12zM12 256h424c6.62695 0 12 -5.37305 12 -12v-260c0 -26.5098 -21.4902 -48 -48 -48h-352c-26.5098 0 -48 21.4902 -48 48v260c0 6.62695 5.37305 12 12 12zM345.296 160.053l-28.1689 28.3984
-c-4.66699 4.70508 -12.2646 4.73535 -16.9697 0.0673828l-106.037 -105.184l-45.9805 46.3516c-4.66699 4.70508 -12.2656 4.73633 -16.9707 0.0683594l-28.3965 -28.1699c-4.70508 -4.66699 -4.73633 -12.2646 -0.0683594 -16.9697l82.6006 -83.2695
-c4.66699 -4.70508 12.2656 -4.73535 16.9707 -0.0673828l142.952 141.805c4.70508 4.66699 4.73633 12.2646 0.0683594 16.9697z" />
-    <glyph glyph-name="industry" unicode="&#xf275;" 
-d="M475.115 284.219c15.9541 10.1514 36.8848 -1.33105 36.8848 -20.248v-271.971c0 -13.2549 -10.7451 -24 -24 -24h-464c-13.2549 0 -24 10.7451 -24 24v400c0 13.2549 10.7451 24 24 24h112c13.2549 0 24 -10.7451 24 -24v-196.309l139.115 88.5273
-c15.9541 10.1514 36.8848 -1.33203 36.8848 -20.248v-68.2793z" />
-    <glyph glyph-name="map-pin" unicode="&#xf276;" horiz-adv-x="288" 
-d="M112 131.06c10.3896 -1.91992 21.0596 -3.05957 32 -3.05957s21.6104 1.13965 32 3.05957v-156.689l-22.0098 -33.0205c-4.75 -7.11914 -15.2207 -7.11914 -19.9707 0l-22.0195 33.0205v156.689zM144 448c79.5303 0 144 -64.4697 144 -144s-64.4697 -144 -144 -144
-s-144 64.4697 -144 144s64.4697 144 144 144zM144 372c6.62012 0 12 5.37988 12 12s-5.37988 12 -12 12c-50.7197 0 -92 -41.2695 -92 -92c0 -6.62012 5.37988 -12 12 -12s12 5.37988 12 12c0 37.5 30.5 68 68 68z" />
-    <glyph glyph-name="map-signs" unicode="&#xf277;" 
-d="M507.31 363.31c6.25 -6.25 6.25 -16.3691 0 -22.6299l-43.3096 -43.3096c-6.00977 -6 -14.1396 -9.37012 -22.6299 -9.37012h-385.37c-13.25 0 -24 10.75 -24 24v80c0 13.25 10.75 24 24 24h168v16c0 8.83984 7.16016 16 16 16h32c8.83984 0 16 -7.16016 16 -16v-16
-h153.37c8.49023 0 16.6299 -3.37012 22.6299 -9.37012zM224 -48v112h64v-112c0 -8.83984 -7.16016 -16 -16 -16h-32c-8.83984 0 -16 7.16016 -16 16zM456 224c13.25 0 24 -10.75 24 -24v-80c0 -13.25 -10.75 -24 -24 -24h-385.37
-c-8.49023 0 -16.6299 3.37012 -22.6299 9.37012l-43.3096 43.3096c-6.25 6.25 -6.25 16.3799 0 22.6299l43.3096 43.3203c6.00977 6 14.1396 9.37012 22.6299 9.37012h153.37v32h64v-32h168z" />
-    <glyph glyph-name="map" unicode="&#xf279;" horiz-adv-x="576" 
-d="M0 330.34c0.00292969 13.4697 8.32617 24.9932 20.1201 29.71l139.88 55.9502v-384l-138.06 -62.8398c-10.5107 -4.2002 -21.9404 3.54004 -21.9404 14.8594v346.32zM192 32v384l192 -64v-384zM554.06 414.84c10.5107 4.2002 21.9404 -3.54004 21.9404 -14.8594v-346.32
-c0 -13.4707 -8.32422 -24.9951 -20.1201 -29.71l-139.88 -55.9502v384z" />
-    <glyph glyph-name="comment-alt" unicode="&#xf27a;" 
-d="M448 448c35.2998 0 64 -28.7002 64 -64v-288c0 -35.2998 -28.7002 -64 -64 -64h-144l-124.9 -93.7002c-7.89941 -5.7998 -19.0996 -0.0996094 -19.0996 9.7002v84h-96c-35.2998 0 -64 28.7002 -64 64v288c0 35.2998 28.7002 64 64 64h384z" />
-    <glyph glyph-name="pause-circle" unicode="&#xf28b;" 
-d="M256 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM240 112v160c0 8.7998 -7.2002 16 -16 16h-48c-8.7998 0 -16 -7.2002 -16 -16v-160c0 -8.7998 7.2002 -16 16 -16h48c8.7998 0 16 7.2002 16 16zM352 112v160
-c0 8.7998 -7.2002 16 -16 16h-48c-8.7998 0 -16 -7.2002 -16 -16v-160c0 -8.7998 7.2002 -16 16 -16h48c8.7998 0 16 7.2002 16 16z" />
-    <glyph glyph-name="stop-circle" unicode="&#xf28d;" 
-d="M256 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM352 112v160c0 8.7998 -7.2002 16 -16 16h-160c-8.7998 0 -16 -7.2002 -16 -16v-160c0 -8.7998 7.2002 -16 16 -16h160c8.7998 0 16 7.2002 16 16z" />
-    <glyph glyph-name="shopping-bag" unicode="&#xf290;" horiz-adv-x="448" 
-d="M352 288h96v-272c0 -44.1826 -35.8174 -80 -80 -80h-288c-44.1826 0 -80 35.8174 -80 80v272h96v32c0 70.5801 57.4199 128 128 128c70.5791 0 128 -57.4199 128 -128v-32zM160 320v-32h128v32c0 35.29 -28.71 64 -64 64s-64 -28.71 -64 -64zM320 200
-c13.2549 0 24 10.7451 24 24s-10.7451 24 -24 24s-24 -10.7451 -24 -24s10.7451 -24 24 -24zM128 200c13.2549 0 24 10.7451 24 24s-10.7451 24 -24 24s-24 -10.7451 -24 -24s10.7451 -24 24 -24z" />
-    <glyph glyph-name="shopping-basket" unicode="&#xf291;" horiz-adv-x="576" 
-d="M576 232v-16c0 -13.2549 -10.7451 -24 -24 -24h-8l-26.1133 -182.788c-3.37793 -23.6465 -23.6299 -41.2119 -47.5166 -41.2119h-364.74c-23.8867 0 -44.1387 17.5654 -47.5176 41.2119l-26.1123 182.788h-8c-13.2549 0 -24 10.7451 -24 24v16
-c0 13.2549 10.7451 24 24 24h67.3408l106.78 146.821c10.3945 14.292 30.4072 17.4531 44.7012 7.05762c14.293 -10.3945 17.4531 -30.4082 7.05762 -44.7012l-79.4033 -109.178h235.047l-79.4033 109.179c-10.3955 14.292 -7.23438 34.3066 7.05859 44.7012
-c14.291 10.3955 34.3066 7.23535 44.7012 -7.05762l106.779 -146.822h67.3408c13.2549 0 24 -10.7451 24 -24zM312 56v112c0 13.2549 -10.7451 24 -24 24s-24 -10.7451 -24 -24v-112c0 -13.2549 10.7451 -24 24 -24s24 10.7451 24 24zM424 56v112
-c0 13.2549 -10.7451 24 -24 24s-24 -10.7451 -24 -24v-112c0 -13.2549 10.7451 -24 24 -24s24 10.7451 24 24zM200 56v112c0 13.2549 -10.7451 24 -24 24s-24 -10.7451 -24 -24v-112c0 -13.2549 10.7451 -24 24 -24s24 10.7451 24 24z" />
-    <glyph glyph-name="hashtag" unicode="&#xf292;" horiz-adv-x="448" 
-d="M440.667 265.891c-1.00195 -5.61328 -5.91309 -9.89062 -11.8135 -9.89062h-79.0957l-22.8564 -128h74.8096c7.4707 0 13.126 -6.75391 11.8135 -14.1094l-7.14355 -40c-1.00195 -5.61328 -5.91309 -9.89062 -11.8125 -9.89062h-79.0967l-15.377 -86.1094
-c-1.00195 -5.61328 -5.91309 -9.89062 -11.8125 -9.89062h-40.6318c-7.47266 0 -13.127 6.75391 -11.8135 14.1094l14.623 81.8906h-98.6338l-15.3779 -86.1094c-1.00195 -5.61328 -5.91309 -9.89062 -11.8135 -9.89062h-40.6318
-c-7.4707 0 -13.126 6.75391 -11.8125 14.1094l14.623 81.8906h-74.8105c-7.4707 0 -13.126 6.75391 -11.8125 14.1094l7.14258 40c1.00195 5.61328 5.91309 9.89062 11.8135 9.89062h79.0957l22.8564 128h-74.8096c-7.4707 0 -13.126 6.75391 -11.8135 14.1094l7.14355 40
-c1.00195 5.61328 5.91309 9.89062 11.8125 9.89062h79.0967l15.377 86.1094c1.00195 5.61328 5.91309 9.89062 11.8125 9.89062h40.6318c7.47266 0 13.127 -6.75391 11.8135 -14.1094l-14.623 -81.8906h98.6348l15.377 86.1094
-c1.00195 5.61328 5.91309 9.89062 11.8135 9.89062h40.6318c7.4707 0 13.126 -6.75391 11.8125 -14.1094l-14.623 -81.8906h74.8105c7.4707 0 13.126 -6.75391 11.8125 -14.1094zM261.889 128l22.8574 128h-98.6338l-22.8574 -128h98.6338z" />
-    <glyph glyph-name="percent" unicode="&#xf295;" horiz-adv-x="448" 
-d="M112 224c-61.9004 0 -112 50.0996 -112 112s50.0996 112 112 112s112 -50.0996 112 -112s-50.0996 -112 -112 -112zM112 384c-26.5 0 -48 -21.5 -48 -48s21.5 -48 48 -48s48 21.5 48 48s-21.5 48 -48 48zM336 160c61.9004 0 112 -50.0996 112 -112
-s-50.0996 -112 -112 -112s-112 50.0996 -112 112s50.0996 112 112 112zM336 0c26.5 0 48 21.5 48 48s-21.5 48 -48 48s-48 -21.5 -48 -48s21.5 -48 48 -48zM392.3 447.8l31.6006 0.100586c19.3994 0.0996094 30.8994 -21.8008 19.6992 -37.8008l-366.199 -463.699
-c-4.33203 -6.17773 -11.4912 -10.1973 -19.6006 -10.2002l-33.3994 -0.100586c-19.5 0 -30.9004 21.9004 -19.7002 37.8008l368 463.699c4.5 6.40039 11.7998 10.2002 19.5996 10.2002z" />
-    <glyph glyph-name="universal-access" unicode="&#xf29a;" 
-d="M256 400c-114.971 0 -208 -93.0469 -208 -208c0 -114.971 93.0469 -208 208 -208c114.971 0 208 93.0469 208 208c0 114.971 -93.0469 208 -208 208zM256 440c136.967 0 248 -111.033 248 -248s-111.033 -248 -248 -248s-248 111.033 -248 248s111.033 248 248 248z
-M256 384c106.039 0 192 -85.9609 192 -192s-85.9609 -192 -192 -192s-192 85.9609 -192 192s85.9609 192 192 192zM256 340c-19.8818 0 -36 -16.1182 -36 -36s16.1182 -36 36 -36s36 16.1182 36 36s-16.1182 36 -36 36zM373.741 241.977
-c8.59961 2.03027 13.9258 10.6484 11.8965 19.249c-2.03027 8.60156 -10.6494 13.9258 -19.249 11.8955c-96.4912 -22.7832 -124.089 -22.8291 -220.774 0c-8.60254 2.03125 -17.2178 -3.29395 -19.249 -11.8955c-2.03125 -8.60059 3.29492 -17.2178 11.8945 -19.249
-c28.7129 -6.7793 55.5127 -12.749 82.1416 -15.8066c-0.852539 -101.08 -12.3242 -123.08 -25.0371 -155.621c-3.61719 -9.25879 0.957031 -19.6982 10.2168 -23.3145c9.26465 -3.61914 19.7002 0.961914 23.3154 10.2168c8.72754 22.3408 17.0947 40.6982 22.2617 78.5488
-h9.68555c5.1748 -37.9131 13.5566 -56.2412 22.2617 -78.5488c3.61621 -9.25977 14.0547 -13.834 23.3154 -10.2168c9.25977 3.61621 13.834 14.0547 10.2168 23.3145c-12.7305 32.5693 -24.1855 54.5986 -25.0371 155.621c26.6299 3.05859 53.4287 9.02832 82.1406 15.8066
-z" />
-    <glyph glyph-name="blind" unicode="&#xf29d;" horiz-adv-x="384" 
-d="M380.15 -62.8369c-1.20898 -0.733398 -2.62695 -1.15625 -4.14258 -1.15625c-2.89941 0 -5.44336 1.53223 -6.84668 3.84277l-125.33 206.428c5.10547 2.02539 9.53809 5.2959 12.958 9.48438l126.048 -207.607c0.734375 -1.20898 1.15723 -2.62793 1.15723 -4.14355
-c0 -2.89941 -1.53223 -5.44434 -3.84375 -6.84766zM142.803 133.662l62.8145 -153.537c6.69141 -16.3584 -1.14453 -35.042 -17.501 -41.7344c-16.3564 -6.69043 -35.04 1.1416 -41.7334 17.501l-36.1201 88.2852zM96 360c-24.3008 0 -44 19.6992 -44 44s19.6992 44 44 44
-s44 -19.6992 44 -44s-19.6992 -44 -44 -44zM250.837 190.872c8.19336 -10.374 6.44434 -25.4922 -3.96582 -33.708c-9.33984 -7.37402 -24.5635 -7.61914 -33.708 3.96484l-102.3 129.217c-0.733398 0.924805 -1.86328 1.5127 -3.13281 1.5127
-c-2.20801 0 -4.00098 -1.79297 -4.00098 -4.00098c0 -0.9375 0.323242 -1.7998 0.864258 -2.48242l31.4062 -39.8164v-107.196l-65.9258 -181.288c-6.04102 -16.6143 -24.4072 -25.1768 -41.0088 -19.1387c-16.6104 6.04004 -25.1787 24.4004 -19.1387 41.0098
-l54.0732 148.693v140.698l-16 -20.5713v-79.7656c0 -13.0996 -10.4951 -23.748 -23.5361 -23.9961c-13.4531 -0.254883 -24.4639 11.0811 -24.4639 24.5361v95.6943l61.0557 78.5c4.72754 6.0791 11.7979 9.23633 18.9443 9.23926v0.0263672h32v-0.015625
-c7.08691 -0.00390625 14.1035 -3.11719 18.8369 -9.1123z" />
-    <glyph glyph-name="audio-description" unicode="&#xf29e;" 
-d="M162.925 209.291l8.82227 -30.6553h-25.6064l9.04102 30.6523c1.27734 4.4209 2.65137 9.99414 3.87207 15.2451c1.2207 -5.25098 2.59473 -10.8232 3.87109 -15.2422zM329.399 241.39c28.6846 0 46.1748 -16.7656 46.1748 -49.0049
-c0 -32.0977 -16.3994 -49.7754 -46.1748 -49.7754h-14.5234v98.7803h14.5234zM512 336v-288c0 -26.5098 -21.4902 -48 -48 -48h-416c-26.5098 0 -48 21.4902 -48 48v288c0 26.5098 21.4902 48 48 48h416c26.5098 0 48 -21.4902 48 -48zM245.459 111.861l-57.0967 168
-c-1.6084 4.73242 -6.08887 8.13867 -11.3623 8.13867h-35.8936c-5.27344 0 -9.75391 -3.40625 -11.3623 -8.13867l-57.0967 -168c-2.64453 -7.7832 3.1416 -15.8613 11.3613 -15.8613h29.1328c5.47559 0 10.0977 3.67676 11.5352 8.69336l8.57422 29.9053h51.3672
-l8.79297 -29.9766c1.46094 -4.97949 6.06543 -8.62207 11.5146 -8.62207h29.1719c8.2207 0 14.0059 8.07812 11.3613 15.8613zM430.16 192.386c0 58.9775 -37.9189 95.6143 -98.96 95.6143h-57.3662c-6.62695 0 -12 -5.37305 -12 -12v-168c0 -6.62695 5.37305 -12 12 -12
-h57.3662c61.041 0 98.96 36.9326 98.96 96.3857z" />
-    <glyph glyph-name="phone-volume" unicode="&#xf2a0;" horiz-adv-x="384" 
-d="M97.333 -58.9658c-129.874 129.874 -129.681 340.252 0 469.933c5.69824 5.69824 14.5273 6.63184 21.2627 2.42188l64.8174 -40.5127c4.86035 -3.03711 8.09668 -8.43652 8.09668 -14.5859c0 -2.25098 -0.458984 -4.40137 -1.24805 -6.37207l-32.4082 -81.0205
-c-2.5332 -6.33496 -8.73047 -10.8145 -15.9648 -10.8145c-0.583008 0 -1.13574 0.0380859 -1.7041 0.0947266l-55.8096 5.58008c-21.0508 -58.2607 -20.6123 -122.471 0 -179.515l55.8105 5.58105c0.568359 0.0566406 1.14551 0.0859375 1.72852 0.0859375
-c7.23438 0 13.4072 -4.4707 15.9414 -10.8047l32.4072 -81.0225c0.789062 -1.9707 1.22266 -4.12207 1.22266 -6.37305c0 -6.14844 -3.21094 -11.5469 -8.07129 -14.585l-64.8174 -40.5127c-2.6377 -1.64844 -5.75391 -2.60156 -9.09082 -2.60156
-c-4.74316 0 -9.06152 1.91211 -12.1729 5.02344zM247.126 352.527c11.832 -20.0469 11.832 -45.0088 0 -65.0557c-3.9502 -6.69238 -13.1084 -7.95898 -18.7178 -2.58105l-5.97559 5.72656c-3.91016 3.74805 -4.79297 9.62207 -2.26074 14.4102
-c2.35645 4.46191 3.69141 9.5459 3.69141 14.9395c0 5.39258 -1.33496 10.543 -3.69141 15.0049c-2.5332 4.78809 -1.64941 10.6621 2.26074 14.4102l5.97559 5.72656c5.60938 5.37793 14.7676 4.11133 18.7178 -2.58105zM338.913 443.714
-c60.1396 -71.6035 60.0918 -175.882 0 -247.428c-4.47363 -5.32715 -12.5303 -5.74609 -17.5518 -0.933594l-5.79785 5.55762c-4.56055 4.37109 -4.97754 11.5293 -0.930664 16.3789c49.6875 59.5381 49.6465 145.933 0 205.422
-c-4.04688 4.84961 -3.63086 12.0078 0.930664 16.3789l5.79785 5.55762c5.02148 4.8125 13.0781 4.39355 17.5518 -0.933594zM292.941 398.773c36.0498 -46.3223 36.1074 -111.149 0 -157.547c-4.39062 -5.64062 -12.6973 -6.25098 -17.8564 -1.30371l-5.81836 5.5791
-c-4.39941 4.21875 -4.99805 11.0947 -1.28418 15.9307c26.5352 34.5645 26.5332 82.5723 0 117.135c-3.71387 4.83594 -3.11523 11.7109 1.28418 15.9307l5.81836 5.5791c5.15918 4.94727 13.4658 4.33691 17.8564 -1.30371z" />
-    <glyph glyph-name="braille" unicode="&#xf2a1;" horiz-adv-x="640" 
-d="M128 192c0 -35.3457 -28.6543 -64 -64 -64s-64 28.6543 -64 64s28.6543 64 64 64s64 -28.6543 64 -64zM64 64c17.6729 0 32 -14.3271 32 -32s-14.3271 -32 -32 -32s-32 14.3271 -32 32s14.3271 32 32 32zM64 416c35.3457 0 64 -28.6543 64 -64s-28.6543 -64 -64 -64
-s-64 28.6543 -64 64s28.6543 64 64 64zM224 224c17.6729 0 32 -14.3271 32 -32s-14.3271 -32 -32 -32s-32 14.3271 -32 32s14.3271 32 32 32zM224 64c17.6729 0 32 -14.3271 32 -32s-14.3271 -32 -32 -32s-32 14.3271 -32 32s14.3271 32 32 32zM224 416
-c35.3457 0 64 -28.6543 64 -64s-28.6543 -64 -64 -64s-64 28.6543 -64 64s28.6543 64 64 64zM448 224c17.6729 0 32 -14.3271 32 -32s-14.3271 -32 -32 -32s-32 14.3271 -32 32s14.3271 32 32 32zM448 64c17.6729 0 32 -14.3271 32 -32s-14.3271 -32 -32 -32
-s-32 14.3271 -32 32s14.3271 32 32 32zM448 416c35.3457 0 64 -28.6543 64 -64s-28.6543 -64 -64 -64s-64 28.6543 -64 64s28.6543 64 64 64zM608 224c17.6729 0 32 -14.3271 32 -32s-14.3271 -32 -32 -32s-32 14.3271 -32 32s14.3271 32 32 32zM608 64
-c17.6729 0 32 -14.3271 32 -32s-14.3271 -32 -32 -32s-32 14.3271 -32 32s14.3271 32 32 32zM608 384c17.6729 0 32 -14.3271 32 -32s-14.3271 -32 -32 -32s-32 14.3271 -32 32s14.3271 32 32 32z" />
-    <glyph glyph-name="assistive-listening-systems" unicode="&#xf2a2;" 
-d="M216 188c0 -15.4639 -12.5361 -28 -28 -28s-28 12.5361 -28 28c0 44.1123 35.8877 80 80 80s80 -35.8877 80 -80c0 -15.4639 -12.5361 -28 -28 -28s-28 12.5361 -28 28c0 13.2344 -10.7666 24 -24 24s-24 -10.7656 -24 -24zM240 364c97.0469 0 176 -78.9531 176 -176
-c0 -95.9863 -71.4053 -109.798 -72 -144.226c-0.124023 -59.4463 -48.5254 -107.774 -108 -107.774c-15.4639 0 -28 12.5361 -28 28s12.5361 28 28 28c28.6729 0 52 23.3271 52 52l0.00292969 0.37793c0.988281 73.3115 71.9971 68.458 71.9971 143.622
-c0 66.168 -53.832 120 -120 120s-120 -53.832 -120 -120c0 -15.4639 -12.5361 -28 -28 -28s-28 12.5361 -28 28c0 97.0469 78.9531 176 176 176zM160 128c17.6729 0 32 -14.3271 32 -32s-14.3271 -32 -32 -32s-32 14.3271 -32 32s14.3271 32 32 32zM32 0
-c17.6729 0 32 -14.3271 32 -32s-14.3271 -32 -32 -32s-32 14.3271 -32 32s14.3271 32 32 32zM512 187.993c0 -15.4639 -12.5371 -28 -28.001 -28s-28 12.5361 -28 28c0 1.12695 -0.00683594 2.24512 -0.0332031 3.36328l-0.00292969 0.1875
-c-1.4668 91.4404 -60.1709 172.599 -146.077 201.953c-14.6318 5.00098 -22.4414 20.917 -17.4414 35.5498c5.00098 14.6328 20.917 22.4404 35.5498 17.4424c108.163 -36.959 182.082 -139.015 183.961 -253.965c0.0332031 -1.50684 0.0449219 -3.01367 0.0449219 -4.53125
-zM152.971 8.9707l-33.9404 -33.9404l-80 80l33.9404 33.9404z" />
-    <glyph glyph-name="american-sign-language-interpreting" unicode="&#xf2a3;" horiz-adv-x="640" 
-d="M290.547 258.961c-20.2949 10.1494 -44.1465 11.1992 -64.7393 3.88965c42.6064 0 71.208 -20.4746 85.5781 -50.5752c8.57617 -17.8994 -5.14746 -38.0713 -23.6172 -38.0713c18.4297 0 32.2119 -20.1357 23.6172 -38.0713
-c-14.7246 -30.8457 -46.123 -50.8535 -80.2979 -50.8535c-0.556641 0 -94.4707 8.61426 -94.4707 8.61426l-66.4062 -33.3467c-9.38379 -4.69336 -19.8145 -0.378906 -23.8945 7.78125l-44.4561 88.9248c-4.16699 8.61523 -1.11133 18.8975 6.94531 23.6211l58.0723 33.0693
-l41.1221 74.1953c6.38965 57.2451 34.7314 109.768 79.7432 146.727c11.3906 9.44824 28.3408 7.78125 37.5098 -3.61328c9.44629 -11.3936 7.78027 -28.0674 -3.6123 -37.5156c-12.5029 -10.5596 -23.6172 -22.5098 -32.5088 -35.5703
-c21.6719 14.7285 46.6787 24.7324 74.1865 28.0674c14.7246 1.94434 28.0625 -8.33594 29.7295 -23.0654c1.94531 -14.7275 -8.33594 -28.0674 -23.0615 -29.7344c-16.1162 -1.94434 -31.1201 -7.50293 -44.1787 -15.2832c26.1143 5.71289 58.7119 3.1377 88.0791 -11.1152
-c13.3359 -6.66895 18.8936 -22.5088 12.2246 -35.8486c-6.38965 -13.0596 -22.5039 -18.6162 -35.5645 -12.2256zM263.318 189.489c-6.1123 12.5049 -18.3379 20.2861 -32.2314 20.2861h-0.107422c-19.5703 0 -35.46 -15.8896 -35.46 -35.46
-c0 -0.0380859 0.00195312 -0.0732422 0.00292969 -0.110352c0 -21.4277 17.8076 -35.5703 35.5645 -35.5703c13.8936 0 26.1191 7.78125 32.2314 20.2861c4.44531 9.44922 13.6133 15.0059 23.3389 15.2842c-9.72559 0.277344 -18.8936 5.83496 -23.3389 15.2842z
-M638.139 226.726c4.16797 -8.61426 1.11133 -18.8965 -6.94531 -23.6201l-58.0713 -33.0693l-41.1221 -74.1963c-6.38965 -57.2451 -34.7314 -109.767 -79.7432 -146.726c-10.9316 -9.1123 -27.7988 -8.14453 -37.5098 3.6123
-c-9.44629 11.3945 -7.78027 28.0674 3.61328 37.5166c12.5029 10.5586 23.6162 22.5088 32.5078 35.5703c-21.6719 -14.7295 -46.6787 -24.7324 -74.1865 -28.0674c-10.0205 -2.50586 -27.5518 5.64258 -29.7295 23.0645c-1.94531 14.7285 8.33594 28.0674 23.0615 29.7344
-c16.1162 1.94629 31.1201 7.50293 44.1787 15.2842c-26.1143 -5.71289 -58.7119 -3.1377 -88.0791 11.1152c-13.3359 6.66895 -18.8936 22.5088 -12.2246 35.8477c6.38965 13.0605 22.5049 18.6191 35.5654 12.2266c20.2949 -10.1484 44.1465 -11.1982 64.7393 -3.88965
-c-42.6064 0 -71.208 20.4746 -85.5781 50.5762c-8.57617 17.8984 5.14746 38.0713 23.6172 38.0713c-18.4297 0 -32.2109 20.1357 -23.6172 38.0703c14.0332 29.3965 44.0391 50.8877 81.9658 50.8545l92.8027 -8.61523l66.4062 33.3467
-c9.4082 4.7041 19.8281 0.354492 23.8936 -7.78027zM408.912 245.344c-13.8936 0 -26.1191 -7.78027 -32.2314 -20.2861c-4.44531 -9.44824 -13.6133 -15.0059 -23.3389 -15.2832c9.72559 -0.27832 18.8936 -5.83594 23.3389 -15.2842
-c6.1123 -12.5049 18.3379 -20.2861 32.2314 -20.2861h0.107422c19.5703 0 35.46 15.8887 35.46 35.46c0 0.0371094 -0.00195312 0.0722656 -0.00292969 0.110352c0 21.4287 -17.8076 35.5693 -35.5645 35.5693z" />
-    <glyph glyph-name="deaf" unicode="&#xf2a4;" 
-d="M216 188c0 -15.4639 -12.5361 -28 -28 -28s-28 12.5361 -28 28c0 44.1123 35.8877 80 80 80s80 -35.8877 80 -80c0 -15.4639 -12.5361 -28 -28 -28s-28 12.5361 -28 28c0 13.2344 -10.7666 24 -24 24s-24 -10.7656 -24 -24zM240 364c97.0469 0 176 -78.9531 176 -176
-c0 -95.9863 -71.4053 -109.798 -72 -144.226c-0.124023 -59.4463 -48.5254 -107.774 -108 -107.774c-15.4639 0 -28 12.5361 -28 28s12.5361 28 28 28c28.6729 0 52 23.3271 52 52l0.00292969 0.37793c0.988281 73.3115 71.9971 68.458 71.9971 143.622
-c0 66.168 -53.832 120 -120 120s-120 -53.832 -120 -120c0 -15.4639 -12.5361 -28 -28 -28s-28 12.5361 -28 28c0 97.0469 78.9531 176 176 176zM508.485 416.201c4.68652 -4.68652 4.68652 -12.2842 0 -16.9727l-87.0303 -87.0283
-c-4.68652 -4.68652 -12.2842 -4.68652 -16.9697 0l-28.2852 28.2852c-4.68652 4.68652 -4.68652 12.2842 0 16.9707l87.0283 87.0293c4.6875 4.68555 12.2842 4.68555 16.9717 0zM168.97 133.255l28.2861 -28.2842c4.68652 -4.68652 4.68652 -12.2852 0 -16.9707
-l-148.484 -148.485c-4.6875 -4.68555 -12.2842 -4.68555 -16.9717 0l-28.2852 28.2842c-4.68555 4.6875 -4.68555 12.2852 0 16.9707l148.485 148.485c4.68555 4.68652 12.2842 4.68652 16.9697 0z" />
-    <glyph glyph-name="sign-language" unicode="&#xf2a7;" horiz-adv-x="448" 
-d="M91.4336 -35.9873c-0.306641 16.0186 13.1094 29.1289 29.1309 29.1289h62.293v5.71484h-125.864c-16.0215 0 -29.4375 13.1104 -29.1299 29.1289c0.296875 15.5234 12.9717 28.0146 28.5645 28.0146h126.43v5.71387h-153.722
-c-16.0205 0 -29.4365 13.1113 -29.1299 29.1289c0.296875 15.5225 12.9727 28.0137 28.5664 28.0137h154.286v5.71387h-125.151c-16.0215 0 -29.4375 13.1104 -29.1299 29.1289c0.296875 15.5215 12.9727 28.0127 28.5654 28.0127h168.566l-31.085 22.6064
-c-12.7617 9.28027 -15.583 27.1484 -6.30176 39.9121c9.28027 12.7607 27.1494 15.5811 39.9121 6.30176l123.36 -89.7148c8.57324 -6.23535 14.1201 -16.3271 14.1201 -27.7285v-141.136c0 -15.9102 -10.9463 -29.7305 -26.4326 -33.374l-80.4717 -18.9346
-c-10.1113 -2.37891 -20.5771 -3.64551 -31.4102 -3.64551h-107.4c-15.5928 0.000976562 -28.2686 12.4922 -28.5664 28.0137zM164.683 189.714l-36.3711 46.71c-9.5791 12.3027 -7.51172 29.9795 4.55371 39.75c12.4502 10.083 31.0371 7.55273 40.8799 -5.08789
-l13.0039 -16.7002c-17.1426 -15.6484 -15.4092 -43.0244 3.16992 -56.5361l11.1875 -8.13574h-36.4238zM447.981 191.817c0.0117188 -0.379883 0.0439453 -0.729492 0.0439453 -1.1123c0 -10.9961 -5.1875 -20.7891 -13.2461 -27.0654l-61.0645 -47.5488v16.999
-c0 13.4834 -6.51074 26.2686 -17.415 34.1982l-123.359 89.7139c-12.6357 9.18945 -29.1934 9.16113 -41.6904 0.904297l-52.0527 66.8486c-9.84375 12.6416 -7.74121 31.2822 5.08594 40.8809c12.4297 9.30273 30.0732 6.97559 39.6523 -5.32812l77.6758 -99.7539
-l4.50879 3.51172l-94.4434 121.287c-9.84277 12.6416 -7.74121 31.2822 5.08594 40.8818c12.4307 9.30176 30.0732 6.97461 39.6533 -5.32812l94.79 -121.734l4.50879 3.51074l-76.8887 98.7451c-9.84277 12.6416 -7.74121 31.2822 5.08594 40.8809
-c12.4297 9.30273 30.0732 6.97559 39.6533 -5.32715l103.562 -133.001l-1.26172 38.4141c-0.518555 15.7715 11.8457 28.9756 27.6191 29.4932c15.7705 0.517578 28.9746 -11.8477 29.4922 -27.6191z" />
-    <glyph glyph-name="low-vision" unicode="&#xf2a8;" horiz-adv-x="576" 
-d="M569.344 216.369c4.20996 -7.13086 6.62598 -15.5469 6.62598 -24.4199c0 -8.87402 -2.41699 -17.1875 -6.62695 -24.3193c-31.9746 -54.2607 -79.6484 -98.3232 -136.81 -126.301l0.00683594 -0.00878906l43.1201 -58.377
-c7.60156 -10.8594 4.95996 -25.8252 -5.90039 -33.4268l-13.1133 -9.17773c-10.8594 -7.59863 -25.8223 -4.95801 -33.4238 5.90039l-251.836 356.544c-13.5234 -6.16211 -26.5166 -13.3994 -38.7764 -21.5635l189.979 -271.399
-c-11.4863 -1.21191 -22.4707 -1.83301 -34.2754 -1.83301c-15.1465 0 -30.0566 1.02344 -44.6641 3.00293l-40.6309 58.04h-0.00976562l-119.399 170.58c-10.457 -11.1943 -19.8271 -23.0791 -28.2939 -35.9121l124.19 -177.417
-c-73.1172 25.4863 -134.358 76.0166 -172.858 141.349c-8.96484 15.2109 -8.76562 33.8643 0 48.7393c0.0107422 0.0166016 0.0234375 0.0332031 0.0332031 0.0498047c33.5459 56.8984 82.7676 99.8506 136.79 126.242l-43.1309 58.3945
-c-7.60156 10.8604 -4.95996 25.8252 5.90039 33.4268l13.1143 9.17773c10.8584 7.59961 25.8213 4.95801 33.4229 -5.90039l52.7705 -72.1689c26.3496 6.79004 53.9834 10.4092 82.4512 10.4092c119.81 0 224.96 -63.9492 281.344 -159.631zM390.026 102.06
-c21.1406 23.9658 33.9736 55.4365 33.9736 89.9404c0 75.1738 -60.8379 136 -136 136c-17.5117 0 -34.2422 -3.30566 -49.6084 -9.32324l19.0684 -27.2363c25.9883 7.96289 54.7598 5.56836 79.5098 -7.68066h-0.0292969c-23.6504 0 -42.8203 -19.1699 -42.8203 -42.8193
-c0 -23.4717 18.9922 -42.8203 42.8203 -42.8203c23.6494 0 42.8193 19.1699 42.8193 42.8203v0.0292969c18.9111 -35.3271 15.8818 -79.1123 -8.7998 -111.68z" />
-    <glyph glyph-name="handshake" unicode="&#xf2b5;" horiz-adv-x="640" 
-d="M434.7 384c8.5 0 16.7002 -3.40039 22.5996 -9.40039l54.6006 -54.5996v-193.5c-2.40039 2.7002 -5 5.2998 -7.90039 7.7002l-145.6 118.2l26.0996 23.8994c6.5 6 7 16.1006 1 22.6006c-5.90039 6.5 -16.0996 6.89941 -22.5996 1l-79.9004 -73.2002
-c-0.0996094 -0.100586 -0.299805 -0.100586 -0.400391 -0.200195c-16.6992 -14.9004 -43.3994 -11.2002 -56.0996 2.7002c-14.2002 15.5 -14.5 40.3994 2.09961 56c0.100586 0.0996094 0.200195 0.299805 0.300781 0.399414l98.2998 90
-c5.89941 5.40039 13.5996 8.40039 21.5996 8.40039h85.9004zM544 319.8h96v-255.899h-64c-17.7002 0 -32 14.2998 -32 32v223.899zM592 95.9004c8.7998 0 16 7.19922 16 16c0 8.7998 -7.2002 16 -16 16s-16 -7.2002 -16 -16c0 -8.80078 7.2002 -16 16 -16zM0 64v255.8h96
-v-223.8c0 -17.7002 -14.2998 -32 -32 -32h-64zM48 127.9c-8.7998 0 -16 -7.10059 -16 -16c0 -8.80078 7.2002 -16 16 -16s16 7.19922 16 16c0 8.7998 -7.2002 16 -16 16zM483.9 109.3c13.6992 -11.2002 15.7998 -31.2998 4.59961 -45.0996l-9.5 -11.7002
-c-11.0996 -13.7998 -31.2998 -15.7998 -45 -4.7002l-5.40039 4.40039l-31.3994 -38.6006c-12.9004 -15.8994 -36.4004 -18.3994 -52.2998 -5.39941l-17.9004 15.5l-0.200195 -0.200195c-22.2998 -27.4004 -62.5996 -31.5996 -90 -9.2998l-90.5 81.8994h-18.2998v223.9
-l54.7002 54.5996c6 6 14.0996 9.40039 22.5996 9.40039h83.7998l-81.7998 -74.9004c-29.2002 -26.7998 -31.2998 -72.2998 -4.39941 -101.699c26.5 -28.9004 72 -31.5 101.699 -4.40039l30 27.5z" />
-    <glyph glyph-name="envelope-open" unicode="&#xf2b6;" 
-d="M512 -16c0 -26.5098 -21.4902 -48 -48 -48h-416c-26.5098 0 -48 21.4902 -48 48v263.276c0 15.3379 7.17383 28.9863 18.3867 37.7754c24.9131 19.5293 45.501 35.3652 164.2 121.512c16.8252 12.2666 50.21 41.7832 73.4131 41.4336
-c23.1982 0.353516 56.5957 -29.1719 73.4131 -41.4326c118.687 -86.1377 139.303 -101.995 164.2 -121.513c11.2129 -8.78906 18.3867 -22.4375 18.3867 -37.7754v-263.276zM446.334 180.605c-2.5625 3.72754 -7.7002 4.59473 -11.3389 1.90625
-c-22.8447 -16.873 -55.4619 -40.7051 -105.582 -77.0791c-16.8252 -12.2656 -50.21 -41.7803 -73.4131 -41.4297c-23.2109 -0.34375 -56.5586 29.1436 -73.4131 41.4297c-50.1143 36.3701 -82.7344 60.2041 -105.582 77.0791
-c-3.63867 2.68848 -8.77637 1.82129 -11.3389 -1.90625l-9.07227 -13.1963c-0.884766 -1.28711 -1.40332 -2.8457 -1.40332 -4.52539c0 -2.63867 1.26953 -4.98438 3.24219 -6.44141c22.8877 -16.8994 55.4541 -40.6904 105.304 -76.8682
-c20.2734 -14.7812 56.5234 -47.8135 92.2637 -47.5732c35.7236 -0.242188 71.9609 32.7715 92.2627 47.5732c49.8506 36.1787 82.418 59.9697 105.304 76.8682c1.97266 1.45703 3.25391 3.79883 3.25391 6.4375c0 1.67969 -0.530273 3.24219 -1.41504 4.5293z" />
-    <glyph glyph-name="address-book" unicode="&#xf2b9;" horiz-adv-x="448" 
-d="M436 288h-20v-64h20c6.59961 0 12 -5.40039 12 -12v-40c0 -6.59961 -5.40039 -12 -12 -12h-20v-64h20c6.59961 0 12 -5.40039 12 -12v-40c0 -6.59961 -5.40039 -12 -12 -12h-20v-48c0 -26.5 -21.5 -48 -48 -48h-320c-26.5 0 -48 21.5 -48 48v416c0 26.5 21.5 48 48 48
-h320c26.5 0 48 -21.5 48 -48v-48h20c6.59961 0 12 -5.40039 12 -12v-40c0 -6.59961 -5.40039 -12 -12 -12zM208 320c-35.2998 0 -64 -28.7002 -64 -64s28.7002 -64 64 -64s64 28.7002 64 64s-28.7002 64 -64 64zM320 83.2002v19.2002
-c0 31.7998 -30.0996 57.5996 -67.2002 57.5996h-5c-12.2002 -5.09961 -25.7002 -8 -39.7998 -8s-27.5 2.90039 -39.7998 8h-5c-37.1006 0 -67.2002 -25.7998 -67.2002 -57.5996v-19.2002c0 -10.6006 10 -19.2002 22.4004 -19.2002h179.199
-c12.4004 0 22.4004 8.59961 22.4004 19.2002z" />
-    <glyph glyph-name="address-card" unicode="&#xf2bb;" horiz-adv-x="576" 
-d="M528 416c26.5 0 48 -21.5 48 -48v-352c0 -26.5 -21.5 -48 -48 -48h-480c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h480zM176 320c-35.2998 0 -64 -28.7002 -64 -64s28.7002 -64 64 -64s64 28.7002 64 64s-28.7002 64 -64 64zM288 83.2002v19.2002
-c0 31.7998 -30.0996 57.5996 -67.2002 57.5996h-5c-12.2002 -5.09961 -25.7002 -8 -39.7998 -8s-27.5 2.90039 -39.7998 8h-5c-37.1006 0 -67.2002 -25.7998 -67.2002 -57.5996v-19.2002c0 -10.6006 10 -19.2002 22.4004 -19.2002h179.199
-c12.4004 0 22.4004 8.59961 22.4004 19.2002zM512 136v16c0 4.40039 -3.59961 8 -8 8h-144c-4.40039 0 -8 -3.59961 -8 -8v-16c0 -4.40039 3.59961 -8 8 -8h144c4.40039 0 8 3.59961 8 8zM512 200v16c0 4.40039 -3.59961 8 -8 8h-144c-4.40039 0 -8 -3.59961 -8 -8v-16
-c0 -4.40039 3.59961 -8 8 -8h144c4.40039 0 8 3.59961 8 8zM512 264v16c0 4.40039 -3.59961 8 -8 8h-144c-4.40039 0 -8 -3.59961 -8 -8v-16c0 -4.40039 3.59961 -8 8 -8h144c4.40039 0 8 3.59961 8 8z" />
-    <glyph glyph-name="user-circle" unicode="&#xf2bd;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM248 344c-48.5996 0 -88 -39.4004 -88 -88s39.4004 -88 88 -88s88 39.4004 88 88s-39.4004 88 -88 88zM248 0c58.7002 0 111.3 26.5996 146.5 68.2002
-c-18.7998 35.3994 -55.5996 59.7998 -98.5 59.7998c-2.40039 0 -4.7998 -0.400391 -7.09961 -1.09961c-12.9004 -4.2002 -26.6006 -6.90039 -40.9004 -6.90039s-27.9004 2.7002 -40.9004 6.90039c-2.2998 0.699219 -4.69922 1.09961 -7.09961 1.09961
-c-42.9004 0 -79.7002 -24.4004 -98.5 -59.7998c35.2002 -41.6006 87.7998 -68.2002 146.5 -68.2002z" />
-    <glyph glyph-name="id-badge" unicode="&#xf2c1;" horiz-adv-x="384" 
-d="M336 448c26.5 0 48 -21.5 48 -48v-416c0 -26.5 -21.5 -48 -48 -48h-288c-26.5 0 -48 21.5 -48 48v416c0 26.5 21.5 48 48 48h288zM144 416c-8.7998 0 -16 -7.2002 -16 -16s7.2002 -16 16 -16h96c8.7998 0 16 7.2002 16 16s-7.2002 16 -16 16h-96zM192 288
-c-35.2998 0 -64 -28.7002 -64 -64s28.7002 -64 64 -64s64 28.7002 64 64s-28.7002 64 -64 64zM304 51.2002v19.2002c0 31.7998 -30.0996 57.5996 -67.2002 57.5996h-5c-12.2002 -5.09961 -25.7002 -8 -39.7998 -8s-27.5 2.90039 -39.7998 8h-5
-c-37.1006 0 -67.2002 -25.7998 -67.2002 -57.5996v-19.2002c0 -10.6006 10 -19.2002 22.4004 -19.2002h179.199c12.4004 0 22.4004 8.59961 22.4004 19.2002z" />
-    <glyph glyph-name="id-card" unicode="&#xf2c2;" horiz-adv-x="576" 
-d="M528 416c26.5 0 48 -21.5 48 -48v-16h-576v16c0 26.5 21.5 48 48 48h480zM0 16v304h576v-304c0 -26.5 -21.5 -48 -48 -48h-480c-26.5 0 -48 21.5 -48 48zM352 248v-16c0 -4.40039 3.59961 -8 8 -8h144c4.40039 0 8 3.59961 8 8v16c0 4.40039 -3.59961 8 -8 8h-144
-c-4.40039 0 -8 -3.59961 -8 -8zM352 184v-16c0 -4.40039 3.59961 -8 8 -8h144c4.40039 0 8 3.59961 8 8v16c0 4.40039 -3.59961 8 -8 8h-144c-4.40039 0 -8 -3.59961 -8 -8zM352 120v-16c0 -4.40039 3.59961 -8 8 -8h144c4.40039 0 8 3.59961 8 8v16
-c0 4.40039 -3.59961 8 -8 8h-144c-4.40039 0 -8 -3.59961 -8 -8zM176 256c-35.2998 0 -64 -28.7002 -64 -64s28.7002 -64 64 -64s64 28.7002 64 64s-28.7002 64 -64 64zM67.0996 51.7998c-3.19922 -9.7998 5.2002 -19.7998 15.6006 -19.7998h186.6
-c10.4004 0 18.7998 9.90039 15.6006 19.7998c-8.40039 25.7002 -32.5 44.2002 -60.9004 44.2002h-8.2002c-12.2002 -5.09961 -25.7002 -8 -39.7998 -8s-27.5 2.90039 -39.7998 8h-8.2002c-28.4004 0 -52.5 -18.5 -60.9004 -44.2002z" />
-    <glyph glyph-name="thermometer-full" unicode="&#xf2c7;" horiz-adv-x="256" 
-d="M224 352v-203.347c19.9121 -22.5635 32 -52.1943 32 -84.6533c0 -70.6963 -57.3018 -128 -128 -128c-0.298828 0 -0.610352 0.000976562 -0.90918 0.00292969c-70.3018 0.488281 -127.448 58.3613 -127.089 128.664c0.164062 32.1973 12.2227 61.5771 31.998 83.9863
-v203.347c0 53.0186 42.9814 96 96 96s96 -42.9814 96 -96zM128 -16c44.1123 0 80 35.8877 80 80c0 34.3379 -19.3701 52.1904 -32 66.502v221.498c0 26.4668 -21.5332 48 -48 48s-48 -21.5332 -48 -48v-221.498c-12.7334 -14.4277 -31.8262 -32.0996 -31.999 -66.0801
-c-0.223633 -43.876 35.5635 -80.1162 79.4229 -80.4199zM192 64c0 -35.3457 -28.6543 -64 -64 -64s-64 28.6543 -64 64c0 23.6846 12.876 44.3486 32 55.417v232.583c0 17.6729 14.3271 32 32 32s32 -14.3271 32 -32v-232.583c19.124 -11.0684 32 -31.7324 32 -55.417z" />
-    <glyph glyph-name="thermometer-three-quarters" unicode="&#xf2c8;" horiz-adv-x="256" 
-d="M192 64c0 -35.3457 -28.6543 -64 -64 -64s-64 28.6543 -64 64c0 23.6846 12.876 44.3486 32 55.417v168.583c0 17.6729 14.3271 32 32 32s32 -14.3271 32 -32v-168.583c19.124 -11.0684 32 -31.7324 32 -55.417zM224 148.653c19.9121 -22.5635 32 -52.1943 32 -84.6533
-c0 -70.6963 -57.3027 -128 -128 -128c-0.298828 0 -0.609375 0.000976562 -0.90918 0.00292969c-70.3018 0.488281 -127.448 58.3613 -127.089 128.664c0.164062 32.1982 12.2227 61.5781 31.998 83.9863v203.347c0 53.0186 42.9814 96 96 96s96 -42.9814 96 -96v-203.347z
-M208 64c0 34.3389 -19.3701 52.1904 -32 66.502v221.498c0 26.4668 -21.5332 48 -48 48s-48 -21.5332 -48 -48v-221.498c-12.7324 -14.4277 -31.8252 -32.0996 -31.999 -66.0801c-0.223633 -43.876 35.5635 -80.1162 79.4229 -80.4199l0.576172 -0.00195312
-c44.1123 0 80 35.8877 80 80z" />
-    <glyph glyph-name="thermometer-half" unicode="&#xf2c9;" horiz-adv-x="256" 
-d="M192 64c0 -35.3457 -28.6543 -64 -64 -64s-64 28.6543 -64 64c0 23.6846 12.876 44.3486 32 55.417v104.583c0 17.6729 14.3271 32 32 32s32 -14.3271 32 -32v-104.583c19.124 -11.0684 32 -31.7324 32 -55.417zM224 148.653c19.9121 -22.5635 32 -52.1943 32 -84.6533
-c0 -70.6963 -57.3027 -128 -128 -128c-0.298828 0 -0.609375 0.000976562 -0.90918 0.00292969c-70.3018 0.488281 -127.448 58.3613 -127.089 128.664c0.164062 32.1982 12.2227 61.5781 31.998 83.9863v203.347c0 53.0186 42.9814 96 96 96s96 -42.9814 96 -96v-203.347z
-M208 64c0 34.3389 -19.3701 52.1904 -32 66.502v221.498c0 26.4668 -21.5332 48 -48 48s-48 -21.5332 -48 -48v-221.498c-12.7324 -14.4277 -31.8252 -32.0996 -31.999 -66.0801c-0.223633 -43.876 35.5635 -80.1162 79.4229 -80.4199l0.576172 -0.00195312
-c44.1123 0 80 35.8877 80 80z" />
-    <glyph glyph-name="thermometer-quarter" unicode="&#xf2ca;" horiz-adv-x="256" 
-d="M192 64c0 -35.3457 -28.6543 -64 -64 -64s-64 28.6543 -64 64c0 23.6846 12.876 44.3486 32 55.417v40.583c0 17.6729 14.3271 32 32 32s32 -14.3271 32 -32v-40.583c19.124 -11.0684 32 -31.7324 32 -55.417zM224 148.653c19.9121 -22.5635 32 -52.1943 32 -84.6533
-c0 -70.6963 -57.3027 -128 -128 -128c-0.298828 0 -0.609375 0.000976562 -0.90918 0.00292969c-70.3018 0.488281 -127.448 58.3613 -127.089 128.664c0.164062 32.1982 12.2227 61.5781 31.998 83.9863v203.347c0 53.0186 42.9814 96 96 96s96 -42.9814 96 -96v-203.347z
-M208 64c0 34.3389 -19.3701 52.1904 -32 66.502v221.498c0 26.4668 -21.5332 48 -48 48s-48 -21.5332 -48 -48v-221.498c-12.7324 -14.4277 -31.8252 -32.0996 -31.999 -66.0801c-0.223633 -43.876 35.5635 -80.1162 79.4229 -80.4199l0.576172 -0.00195312
-c44.1123 0 80 35.8877 80 80z" />
-    <glyph glyph-name="thermometer-empty" unicode="&#xf2cb;" horiz-adv-x="256" 
-d="M192 64c0 -35.3457 -28.6543 -64 -64 -64s-64 28.6543 -64 64s28.6543 64 64 64s64 -28.6543 64 -64zM224 148.653c19.9121 -22.5635 32 -52.1943 32 -84.6533c0 -70.6963 -57.3027 -128 -128 -128c-0.298828 0 -0.609375 0.000976562 -0.90918 0.00292969
-c-70.3018 0.488281 -127.448 58.3613 -127.089 128.664c0.164062 32.1982 12.2227 61.5781 31.998 83.9863v203.347c0 53.0186 42.9814 96 96 96s96 -42.9814 96 -96v-203.347zM208 64c0 34.3389 -19.3701 52.1904 -32 66.502v221.498c0 26.4668 -21.5332 48 -48 48
-s-48 -21.5332 -48 -48v-221.498c-12.7324 -14.4277 -31.8252 -32.0996 -31.999 -66.0801c-0.223633 -43.876 35.5635 -80.1162 79.4229 -80.4199l0.576172 -0.00195312c44.1123 0 80 35.8877 80 80z" />
-    <glyph glyph-name="shower" unicode="&#xf2cc;" 
-d="M304 128c8.83105 0 16 -7.16895 16 -16s-7.16895 -16 -16 -16s-16 7.16895 -16 16s7.16895 16 16 16zM336 224c8.83105 0 16 -7.16895 16 -16s-7.16895 -16 -16 -16s-16 7.16895 -16 16s7.16895 16 16 16zM368 160c-8.83105 0 -16 7.16895 -16 16s7.16895 16 16 16
-s16 -7.16895 16 -16s-7.16895 -16 -16 -16zM336 128c-8.83105 0 -16 7.16895 -16 16s7.16895 16 16 16s16 -7.16895 16 -16s-7.16895 -16 -16 -16zM304 192c8.83105 0 16 -7.16895 16 -16s-7.16895 -16 -16 -16s-16 7.16895 -16 16s7.16895 16 16 16zM432 224
-c-8.83105 0 -16 7.16895 -16 16s7.16895 16 16 16s16 -7.16895 16 -16s-7.16895 -16 -16 -16zM384 208c0 8.83105 7.16895 16 16 16s16 -7.16895 16 -16s-7.16895 -16 -16 -16s-16 7.16895 -16 16zM368 256c8.83105 0 16 -7.16895 16 -16s-7.16895 -16 -16 -16
-s-16 7.16895 -16 16s7.16895 16 16 16zM464 224c8.83105 0 16 -7.16895 16 -16s-7.16895 -16 -16 -16s-16 7.16895 -16 16s7.16895 16 16 16zM496 256c8.83105 0 16 -7.16895 16 -16s-7.16895 -16 -16 -16s-16 7.16895 -16 16s7.16895 16 16 16zM432 192
-c8.83105 0 16 -7.16895 16 -16s-7.16895 -16 -16 -16s-16 7.16895 -16 16s7.16895 16 16 16zM400 160c8.83105 0 16 -7.16895 16 -16s-7.16895 -16 -16 -16s-16 7.16895 -16 16s7.16895 16 16 16zM336 96c8.83105 0 16 -7.16895 16 -16s-7.16895 -16 -16 -16
-s-16 7.16895 -16 16s7.16895 16 16 16zM304 64c8.83105 0 16 -7.16895 16 -16s-7.16895 -16 -16 -16s-16 7.16895 -16 16s7.16895 16 16 16zM368 128c8.83105 0 16 -7.16895 16 -16s-7.16895 -16 -16 -16s-16 7.16895 -16 16s7.16895 16 16 16zM389.65 346.35
-c2.89648 -2.89551 4.68945 -6.90039 4.68945 -11.3164s-1.79297 -8.41699 -4.68945 -11.3135l-169.381 -169.37c-2.89551 -2.89648 -6.90039 -4.68945 -11.3164 -4.68945s-8.41699 1.79297 -11.3135 4.68945l-11.2998 11.3105
-c-2.89355 2.89551 -4.68457 6.89844 -4.68457 11.3125c0 4.41309 1.79102 8.41113 4.68457 11.3076l5.66016 5.66992c-19.7871 20.0811 -31.9951 47.6602 -32 78.0498c0 19.2402 5.2998 37.0801 13.9297 52.8604l-10 10c-10.5723 10.6055 -25.1416 17.167 -41.2861 17.167
-c-2.58984 0 -5.1416 -0.169922 -7.64355 -0.49707c-30 -3.73047 -51 -31.7803 -51 -61.9307v-305.6c0 -8.83105 -7.16895 -16 -16 -16h-32c-8.83105 0 -16 7.16895 -16 16v303.15c0 67.9395 55.4902 129.35 123.44 128.85
-c33.4453 -0.166992 63.7471 -13.835 85.6592 -35.8496l10 -10c15.8203 8.5498 33.6602 13.8496 52.9004 13.8496c30.3916 -0.000976562 57.9707 -12.21 78.0498 -32l5.66992 5.66016c2.89648 2.89648 6.90137 4.68945 11.3174 4.68945s8.41699 -1.79297 11.3125 -4.68945z
-" />
-    <glyph glyph-name="bath" unicode="&#xf2cd;" 
-d="M32 64v48h448v-48c-0.0576172 -28.2656 -12.3916 -53.6514 -32 -71.0898v-40.9102c0 -8.83105 -7.16895 -16 -16 -16h-32c-8.83105 0 -16 7.16895 -16 16v16h-256v-16c0 -8.83105 -7.16895 -16 -16 -16h-32c-8.83105 0 -16 7.16895 -16 16v40.9102
-c-19.6084 17.4385 -31.9424 42.8242 -32 71.0898zM496 192c8.83105 0 16 -7.16895 16 -16v-16c0 -8.83105 -7.16895 -16 -16 -16h-480c-8.83105 0 -16 7.16895 -16 16v16c0 8.83105 7.16895 16 16 16h16v186.75c0 38.2197 31.0391 69.2656 69.2598 69.2656
-c19.1113 0 36.4248 -7.75879 48.96 -20.2959l19.2607 -19.2695c29.8994 13.1299 59.1094 7.60938 79.7295 -8.62012l0.169922 0.169922c2.89551 2.89355 6.89941 4.68457 11.3125 4.68457s8.41211 -1.79102 11.3076 -4.68457l11.3096 -11.3096
-c2.89746 -2.89648 4.69043 -6.90137 4.69043 -11.3174s-1.79297 -8.41699 -4.69043 -11.3135l-105.369 -105.369c-2.89648 -2.89746 -6.90137 -4.69043 -11.3174 -4.69043s-8.41699 1.79297 -11.3135 4.69043l-11.3096 11.3096
-c-2.88477 2.89453 -4.66992 6.8916 -4.66992 11.2969c0 4.40625 1.78516 8.39844 4.66992 11.293l0.169922 0.169922c-16.2295 20.6201 -21.75 49.8506 -8.62012 79.7305l-19.2695 19.2598c-3.84766 3.84082 -9.16016 6.21289 -15.0205 6.21289
-c-11.7178 0 -21.2344 -9.50098 -21.2598 -21.2129v-186.75h416z" />
-    <glyph glyph-name="podcast" unicode="&#xf2ce;" horiz-adv-x="448" 
-d="M267.429 -40.5635c-5.14258 -19.0098 -24.5703 -23.4365 -43.4287 -23.4365c-18.8574 0 -38.2861 4.42676 -43.4277 23.4365c-7.64551 28.4297 -20.5723 99.665 -20.5723 132.813c0 35.1562 31.1416 43.75 64 43.75s64 -8.59375 64 -43.75
-c0 -32.9492 -12.8711 -104.179 -20.5713 -132.813zM156.867 159.446c2.6748 -2.61914 2.39941 -6.98535 -0.628906 -9.18555c-9.3125 -6.76465 -16.4609 -15.3418 -21.2354 -25.3623c-1.74219 -3.65723 -6.5 -4.6582 -9.45312 -1.8877
-c-28.0176 26.2891 -45.5498 63.6279 -45.5498 104.989c0 80.7852 66.8691 146.247 148.163 143.941c76.1982 -2.16113 137.938 -64.1631 139.793 -140.369c1.04199 -42.7822 -16.6846 -81.5225 -45.5107 -108.565c-2.95215 -2.76855 -7.70801 -1.7627 -9.44922 1.8916
-c-4.77441 10.0195 -11.9219 18.5977 -21.2344 25.3623c-3.02832 2.20117 -3.30273 6.56738 -0.62793 9.1875c17.8018 17.4355 28.8662 41.7246 28.8662 68.5518c0 54.1934 -45.1377 98.042 -99.793 95.9258c-49.7295 -1.9248 -90.0703 -42.1572 -92.124 -91.8809
-c-1.17383 -28.4258 10.0908 -54.291 28.7842 -72.5986zM224 448c123.815 0 224 -100.205 224 -224c0 -90.1865 -52.7734 -165.727 -125.739 -201.407c-4.33203 -2.11914 -9.2666 1.54297 -8.53516 6.31055c2.55566 16.6416 4.625 33.1924 5.62402 47.2295
-c48.4922 31.377 80.6504 85.9355 80.6504 147.867c0 97.2031 -79.207 176.253 -176.468 175.999c-96.2393 -0.250977 -174.938 -78.6621 -175.529 -174.899c-0.376953 -61.3311 30.7871 -115.541 78.1875 -147.347c1.52832 -1.02637 2.53125 -2.67578 2.67773 -4.51172
-c1.06348 -13.3936 3.02344 -28.8271 5.40625 -44.3389c0.731445 -4.7666 -4.20215 -8.42871 -8.53516 -6.31055c-73.1377 35.7607 -125.739 111.416 -125.739 201.408c0 123.815 100.204 224 224 224zM224 288c35.3457 0 64 -28.6543 64 -64s-28.6543 -64 -64 -64
-s-64 28.6543 -64 64s28.6543 64 64 64z" />
-    <glyph glyph-name="window-maximize" unicode="&#xf2d0;" 
-d="M464 416c26.5 0 48 -21.5 48 -48v-352c0 -26.5 -21.5 -48 -48 -48h-416c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h416zM448 256v84c0 6.59961 -5.40039 12 -12 12h-360c-6.59961 0 -12 -5.40039 -12 -12v-84h384z" />
-    <glyph glyph-name="window-minimize" unicode="&#xf2d1;" 
-d="M464 96c26.5 0 48 -21.5 48 -48v-32c0 -26.5 -21.5 -48 -48 -48h-416c-26.5 0 -48 21.5 -48 48v32c0 26.5 21.5 48 48 48h416z" />
-    <glyph glyph-name="window-restore" unicode="&#xf2d2;" 
-d="M512 400v-288c0 -26.5 -21.5 -48 -48 -48h-48v208c0 44.0996 -35.9004 80 -80 80h-208v48c0 26.5 21.5 48 48 48h288c26.5 0 48 -21.5 48 -48zM384 272v-288c0 -26.5 -21.5 -48 -48 -48h-288c-26.5 0 -48 21.5 -48 48v288c0 26.5 21.5 48 48 48h288
-c26.5 0 48 -21.5 48 -48zM316 244c0 6.59961 -5.40039 12 -12 12h-228c-6.59961 0 -12 -5.40039 -12 -12v-52h252v52z" />
-    <glyph glyph-name="microchip" unicode="&#xf2db;" 
-d="M416 400v-416c0 -26.5098 -21.4902 -48 -48 -48h-224c-26.5098 0 -48 21.4902 -48 48v416c0 26.5098 21.4902 48 48 48h224c26.5098 0 48 -21.4902 48 -48zM512 342v-12c0 -3.31152 -2.68848 -6 -6 -6h-18v-6c0 -3.31152 -2.68848 -6 -6 -6h-42v48h42
-c3.31152 0 6 -2.68848 6 -6v-6h18c3.31152 0 6 -2.68848 6 -6zM512 246v-12c0 -3.31152 -2.68848 -6 -6 -6h-18v-6c0 -3.31152 -2.68848 -6 -6 -6h-42v48h42c3.31152 0 6 -2.68848 6 -6v-6h18c3.31152 0 6 -2.68848 6 -6zM512 150v-12c0 -3.31152 -2.68848 -6 -6 -6h-18v-6
-c0 -3.31152 -2.68848 -6 -6 -6h-42v48h42c3.31152 0 6 -2.68848 6 -6v-6h18c3.31152 0 6 -2.68848 6 -6zM512 54v-12c0 -3.31152 -2.68848 -6 -6 -6h-18v-6c0 -3.31152 -2.68848 -6 -6 -6h-42v48h42c3.31152 0 6 -2.68848 6 -6v-6h18c3.31152 0 6 -2.68848 6 -6zM30 72h42
-v-48h-42c-3.31152 0 -6 2.68848 -6 6v6h-18c-3.31152 0 -6 2.68848 -6 6v12c0 3.31152 2.68848 6 6 6h18v6c0 3.31152 2.68848 6 6 6zM30 168h42v-48h-42c-3.31152 0 -6 2.68848 -6 6v6h-18c-3.31152 0 -6 2.68848 -6 6v12c0 3.31152 2.68848 6 6 6h18v6
-c0 3.31152 2.68848 6 6 6zM30 264h42v-48h-42c-3.31152 0 -6 2.68848 -6 6v6h-18c-3.31152 0 -6 2.68848 -6 6v12c0 3.31152 2.68848 6 6 6h18v6c0 3.31152 2.68848 6 6 6zM30 360h42v-48h-42c-3.31152 0 -6 2.68848 -6 6v6h-18c-3.31152 0 -6 2.68848 -6 6v12
-c0 3.31152 2.68848 6 6 6h18v6c0 3.31152 2.68848 6 6 6z" />
-    <glyph glyph-name="snowflake" unicode="&#xf2dc;" horiz-adv-x="448" 
-d="M440.3 102.8c7.40039 -4.2002 9.90039 -13.7002 5.60059 -21l-15.5 -26.7998c-4.30078 -7.40039 -13.7002 -10 -21.1006 -5.7002l-33.7998 19.5l7 -26c2.2002 -8.2002 -2.7002 -16.7002 -10.9004 -18.8994l-14.8994 -4
-c-8.2002 -2.2002 -16.7002 2.69922 -18.9004 10.8994l-19 70.7998l-62.7998 36.2002v-77.5l53.4004 -53.7002c6.19922 -6.19922 6.19922 -16.3994 0 -22.5996l-11.3008 -11.2998c-6.19922 -6.2002 -16.3994 -6.2002 -22.5996 0l-19.7002 19.7002v-40.4004
-c0 -8.7998 -7.2002 -16 -16 -16h-32c-8.7998 0 -16 7.2002 -16 16v40.2998l-19.7002 -19.7002c-6.19922 -6.19922 -16.3994 -6.19922 -22.5996 0l-11.2998 11.3008c-6.2998 6.19922 -6.2998 16.3994 0 22.5996l53.7002 53.7002v77.5l-62.8008 -36.2002l-19 -70.7998
-c-2.19922 -8.2002 -10.6992 -13.1006 -18.8994 -10.9004l-14.9004 4c-8.2002 2.2002 -13.0996 10.7002 -10.8994 18.9004l7 26l-33.8008 -19.5c-7.39941 -4.2002 -16.7998 -1.7002 -21.0996 5.7002l-15.5 26.7998c-4.2002 7.39941 -1.7002 16.7998 5.7002 21.0996
-l33.7998 19.6006l-26 7c-8.2002 2.19922 -13.0996 10.6992 -10.9004 18.8994l4 14.9004c2.2002 8.2002 10.7002 13.0996 18.9004 10.8994l70.7998 -19l63.7998 36.9004l-63.7998 36.9004l-70.7998 -19c-8.2002 -2.2002 -16.7002 2.69922 -18.9004 10.8994l-4 14.9004
-c-2.19922 8.2998 2.7002 16.7998 11 19l26 7l-33.7998 19.5c-7.39941 4.2998 -10 13.7002 -5.7002 21.0996l15.5 26.7002c4.30078 7.40039 13.7002 10 21.1006 5.7002l33.7998 -19.5l-7 26c-2.2002 8.2002 2.7002 16.7002 10.9004 18.8994l14.8994 4
-c8.2002 2.2002 16.7002 -2.69922 18.9004 -10.8994l19 -70.7998l62.7998 -36.2002v77.5l-53.7002 53.7002c-6.2998 6.19922 -6.2998 16.3994 0 22.5996l11.4004 11.2998c6.2002 6.2002 16.3994 6.2002 22.5996 0l19.7002 -19.7002v40.4004c0 8.7998 7.2002 16 16 16h32
-c8.7998 0 16 -7.2002 16 -16v-40.4004l19.7998 19.7002c6.2002 6.2002 16.4004 6.2002 22.6006 0l11.2998 -11.2998c6.2002 -6.2002 6.2002 -16.4004 0 -22.5996l-53.7002 -53.7002v-77.5l62.7998 36.2002l19 70.7998c2.2002 8.2002 10.7002 13.0996 18.9004 10.8994
-l14.8994 -4c8.2002 -2.19922 13.1006 -10.6992 10.9004 -18.8994l-7 -26l33.7998 19.5c7.40039 4.2002 16.7998 1.7002 21.1006 -5.7002l15.5 -26.7998c4.19922 -7.40039 1.69922 -16.7998 -5.7002 -21.1006l-33.7998 -19.5l26 -7
-c8.19922 -2.19922 13.0996 -10.6992 10.8994 -18.8994l-4 -14.9004c-2.2002 -8.2002 -10.7002 -13.0996 -18.8994 -10.8994l-70.8008 19l-63.7998 -36.9004l63.9004 -37l70.7998 19c8.2002 2.2002 16.7002 -2.7002 18.9004 -10.9004l4 -14.8994
-c2.19922 -8.2002 -2.7002 -16.7002 -10.9004 -18.9004l-26 -7z" />
-    <glyph glyph-name="utensil-spoon" unicode="&#xf2e5;" 
-d="M480.1 416.1c55.1006 -55 34.5 -164.899 -28.5 -227.8c-49.2998 -49.2998 -110 -55.0996 -160.399 -28.7998l-192.4 -214.4c-10.3994 -11.5996 -28.5 -12.0996 -39.5 -1.09961l-51.2998 51.2998c-11.0996 11 -10.5996 29 1 39.5l214.5 192.4
-c-26.2998 50.3994 -20.5 111.1 28.7998 160.399c62.9004 63 172.8 83.6006 227.8 28.5z" />
-    <glyph glyph-name="utensils" unicode="&#xf2e7;" horiz-adv-x="416" 
-d="M207.9 432.8c0.799805 -4.7002 16.0996 -94.5 16.0996 -128.8c0 -52.2998 -27.7998 -89.5996 -68.9004 -104.6l12.9004 -238.101c0.700195 -13.7002 -10.2002 -25.2998 -24 -25.2998h-64c-13.7002 0 -24.7002 11.5 -24 25.2998l12.9004 238.101
-c-41.2002 15 -68.9004 52.3994 -68.9004 104.6c0 34.4004 15.2998 124.1 16.0996 128.8c3.2002 20.2998 45.3008 20.6006 47.9004 -1.09961v-141.2c1.2998 -3.40039 15.0996 -3.2002 16 0c1.40039 25.2998 7.90039 139.2 8 141.8c3.2998 20.7998 44.7002 20.7998 47.9004 0
-c0.199219 -2.7002 6.59961 -116.5 8 -141.8c0.899414 -3.2002 14.7998 -3.40039 16 0v141.2c2.59961 21.5996 44.7998 21.3994 48 1.09961zM327.1 147.1c-156.5 122.4 -17.5996 300.9 64.9004 300.9c13.2998 0 24 -10.7998 24 -24v-464c0 -13.2998 -10.7002 -24 -24 -24h-56
-c-14 0 -25.0996 12 -23.9004 26z" />
-    <glyph glyph-name="undo-alt" unicode="&#xf2ea;" 
-d="M255.545 440c136.809 0.245117 248.456 -111.193 248.455 -248.002c-0.000976562 -136.965 -111.034 -247.998 -248 -247.998c-63.9258 0 -122.202 24.1865 -166.178 63.9082c-5.11328 4.61816 -5.35449 12.5605 -0.482422 17.4326l39.6621 39.6621
-c4.46191 4.46094 11.625 4.71387 16.3682 0.552734c30.6328 -26.8779 69.5029 -41.5557 110.63 -41.5557c93.8164 0 167.236 75.9912 167.994 166.552c0.798828 95.4648 -77.0859 170.24 -169.484 169.442c-42.4287 -0.366211 -82.3662 -16.374 -113.229 -45.2734
-l41.75 -41.75c15.1191 -15.1201 4.41113 -40.9707 -16.9717 -40.9707h-134.059c-13.2549 0 -24 10.7451 -24 24v134.059c0 21.3828 25.8506 32.0908 40.9707 16.9707l35.7139 -35.7139c44.4229 42.4512 104.592 68.5654 170.86 68.6846z" />
-    <glyph glyph-name="trash-alt" unicode="&#xf2ed;" horiz-adv-x="448" 
-d="M32 -16v336h384v-336c0 -26.4922 -21.5078 -48 -48 -48h-288c-26.4922 0 -48 21.5078 -48 48zM304 240v-224c0 -8.83105 7.16895 -16 16 -16s16 7.16895 16 16v224c0 8.83105 -7.16895 16 -16 16s-16 -7.16895 -16 -16zM208 240v-224c0 -8.83105 7.16895 -16 16 -16
-s16 7.16895 16 16v224c0 8.83105 -7.16895 16 -16 16s-16 -7.16895 -16 -16zM112 240v-224c0 -8.83105 7.16895 -16 16 -16s16 7.16895 16 16v224c0 8.83105 -7.16895 16 -16 16s-16 -7.16895 -16 -16zM432 416c8.83105 0 16 -7.16895 16 -16v-32
-c0 -8.83105 -7.16895 -16 -16 -16h-416c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h120l9.40039 18.7002c3.85547 7.88574 11.9434 13.2998 21.3066 13.2998h0.0927734h114.3c0.00585938 0 -0.00195312 0.0234375 0.00390625 0.0234375
-c9.41113 0 17.5645 -5.42871 21.4961 -13.3232l9.40039 -18.7002h120z" />
-    <glyph glyph-name="sync-alt" unicode="&#xf2f1;" 
-d="M370.72 314.72c-31.2617 29.2725 -71.832 45.3184 -114.872 45.2803c-77.458 -0.0683594 -144.328 -53.1777 -162.791 -126.85c-1.34375 -5.36328 -6.12207 -9.15039 -11.6504 -9.15039h-57.3037c-7.49707 0 -13.1934 6.80664 -11.8066 14.1758
-c21.6367 114.9 122.518 201.824 243.704 201.824c66.4482 0 126.791 -26.1357 171.315 -68.6846l35.7148 35.7148c15.1191 15.1191 40.9697 4.41113 40.9697 -16.9717v-134.059c0 -13.2549 -10.7451 -24 -24 -24h-134.059c-21.3828 0 -32.0908 25.8506 -16.9717 40.9707z
-M32 152h134.059c21.3828 0 32.0908 -25.8506 16.9717 -40.9707l-41.75 -41.75c31.2617 -29.2734 71.835 -45.3193 114.876 -45.2803c77.418 0.0703125 144.314 53.1436 162.787 126.849c1.34375 5.36328 6.12207 9.15039 11.6504 9.15039h57.3047
-c7.49805 0 13.1934 -6.80664 11.8066 -14.1758c-21.6377 -114.898 -122.519 -201.822 -243.705 -201.822c-66.4482 0 -126.791 26.1357 -171.315 68.6846l-35.7148 -35.7148c-15.1191 -15.1191 -40.9697 -4.41113 -40.9697 16.9717v134.059c0 13.2549 10.7451 24 24 24z" />
-    <glyph glyph-name="stopwatch" unicode="&#xf2f2;" horiz-adv-x="448" 
-d="M432 144c0 -114.9 -93.0996 -208 -208 -208s-208 93.0996 -208 208c0 104 76.2998 190.2 176 205.5v34.5h-28c-6.59961 0 -12 5.40039 -12 12v40c0 6.59961 5.40039 12 12 12h120c6.59961 0 12 -5.40039 12 -12v-40c0 -6.59961 -5.40039 -12 -12 -12h-28v-34.5
-c37.5 -5.7998 71.7002 -21.5996 99.7002 -44.5996l27.5 27.5c4.7002 4.69922 12.2998 4.69922 17 0l28.2998 -28.3008c4.7002 -4.69922 4.7002 -12.2998 0 -17l-29.4004 -29.3994l-0.599609 -0.600586c21.2002 -32.3994 33.5 -71.2998 33.5 -113.1zM256 108v151.5
-c0 6.59961 -5.40039 12 -12 12h-40c-6.59961 0 -12 -5.40039 -12 -12v-151.5c0 -6.59961 5.40039 -12 12 -12h40c6.59961 0 12 5.40039 12 12z" />
-    <glyph glyph-name="sign-out-alt" unicode="&#xf2f5;" 
-d="M497 175l-168 -168c-15 -15 -41 -4.5 -41 17v96h-136c-13.2998 0 -24 10.7002 -24 24v96c0 13.2998 10.7002 24 24 24h136v96c0 21.4004 25.9004 32 41 17l168 -168c9.2998 -9.40039 9.2998 -24.5996 0 -34zM192 12c0 -6.59961 -5.40039 -12 -12 -12h-84
-c-53 0 -96 43 -96 96v192c0 53 43 96 96 96h84c6.59961 0 12 -5.40039 12 -12v-40c0 -6.59961 -5.40039 -12 -12 -12h-84c-17.7002 0 -32 -14.2998 -32 -32v-192c0 -17.7002 14.2998 -32 32 -32h84c6.59961 0 12 -5.40039 12 -12v-40z" />
-    <glyph glyph-name="sign-in-alt" unicode="&#xf2f6;" 
-d="M416 0h-84c-6.59961 0 -12 5.40039 -12 12v40c0 6.59961 5.40039 12 12 12h84c17.7002 0 32 14.2998 32 32v192c0 17.7002 -14.2998 32 -32 32h-84c-6.59961 0 -12 5.40039 -12 12v40c0 6.59961 5.40039 12 12 12h84c53 0 96 -43 96 -96v-192c0 -53 -43 -96 -96 -96z
-M369 201c9.2998 -9.40039 9.2998 -24.5996 0 -34l-168 -168c-15 -15 -41 -4.5 -41 17v96h-136c-13.2998 0 -24 10.7002 -24 24v96c0 13.2998 10.7002 24 24 24h136v96c0 21.5 26 32 41 17z" />
-    <glyph glyph-name="redo-alt" unicode="&#xf2f9;" 
-d="M256.455 440c66.2686 -0.119141 126.437 -26.2334 170.859 -68.6846l35.7148 35.7148c15.1201 15.1191 40.9707 4.41113 40.9707 -16.9717v-134.059c0 -13.2549 -10.7451 -24 -24 -24h-134.059c-21.3828 0 -32.0908 25.8506 -16.9717 40.9707l41.75 41.75
-c-30.8633 28.8994 -70.8008 44.9072 -113.229 45.2734c-92.3984 0.797852 -170.283 -73.9775 -169.484 -169.442c0.757812 -90.5605 74.1777 -166.552 167.994 -166.552c41.127 0 79.9971 14.6777 110.629 41.5557c4.74316 4.16113 11.9062 3.9082 16.3682 -0.552734
-l39.6621 -39.6621c4.87207 -4.87207 4.63086 -12.8145 -0.482422 -17.4326c-43.9746 -39.7217 -102.251 -63.9082 -166.177 -63.9082c-136.966 0 -247.999 111.033 -248 247.998c-0.000976562 136.809 111.646 248.247 248.455 248.002z" />
-    <glyph glyph-name="poo" unicode="&#xf2fe;" 
-d="M451.4 78.9004c34.2998 -5.5 60.5996 -35 60.5996 -70.9004c0 -39.7998 -32.2002 -72 -72 -72h-368c-39.7998 0 -72 32.2002 -72 72c0 35.9004 26.2998 65.4004 60.5996 70.9004c-17.2998 13.0996 -28.5996 33.6992 -28.5996 57.0996c0 39.7998 32.2002 72 72 72h14.0996
-c-13.3994 11.7002 -22.0996 28.7998 -22.0996 48c0 35.2998 28.7002 64 64 64h16c44.2002 0 80 35.7998 80 80c0 17.4004 -5.7002 33.4004 -15.0996 46.5c4.89941 0.799805 9.89941 1.5 15.0996 1.5c53 0 96 -43 96 -96c0 -11.2998 -2.2998 -21.9004 -5.90039 -32h5.90039
-c35.2998 0 64 -28.7002 64 -64c0 -19.2002 -8.7002 -36.2998 -22.0996 -48h14.0996c39.7998 0 72 -32.2002 72 -72c0 -23.4004 -11.2998 -44 -28.5996 -57.0996zM192 192c-17.7002 0 -32 -14.2998 -32 -32s14.2998 -32 32 -32s32 14.2998 32 32s-14.2998 32 -32 32z
-M351.5 53c2 5.2998 -2 11 -7.7998 11h-175.4c-5.7998 0 -9.7998 -5.7002 -7.7998 -11c10.5 -27.9004 58.5 -53 95.5 -53s85 25.0996 95.5 53zM320 128c17.7002 0 32 14.2998 32 32s-14.2998 32 -32 32s-32 -14.2998 -32 -32s14.2998 -32 32 -32z" />
-    <glyph glyph-name="images" unicode="&#xf302;" horiz-adv-x="576" 
-d="M480 32v-16c0 -26.5098 -21.4902 -48 -48 -48h-384c-26.5098 0 -48 21.4902 -48 48v256c0 26.5098 21.4902 48 48 48h16v-208c0 -44.1123 35.8877 -80 80 -80h336zM576 112c0 -26.5098 -21.4902 -48 -48 -48h-384c-26.5098 0 -48 21.4902 -48 48v256
-c0 26.5098 21.4902 48 48 48h384c26.5098 0 48 -21.4902 48 -48v-256zM256 320c0 26.5098 -21.4902 48 -48 48s-48 -21.4902 -48 -48s21.4902 -48 48 -48s48 21.4902 48 48zM160 176v-48h352v112l-87.5137 87.5146c-4.6875 4.68652 -12.2852 4.68652 -16.9717 0
-l-135.515 -135.515l-39.5137 39.5146c-4.6875 4.68652 -12.2852 4.68652 -16.9717 0z" />
-    <glyph glyph-name="pencil-alt" unicode="&#xf303;" 
-d="M497.9 305.9l-46.1006 -46.1006c-4.7002 -4.7002 -12.2998 -4.7002 -17 0l-111 111c-4.7002 4.7002 -4.7002 12.2998 0 17l46.1006 46.1006c18.6992 18.6992 49.0996 18.6992 67.8994 0l60.1006 -60.1006c18.7998 -18.7002 18.7998 -49.0996 0 -67.8994zM284.2 348.2
-c4.7002 4.7002 12.2998 4.7002 17.0996 0l111 -111c4.7002 -4.7002 4.7002 -12.2998 0 -17l-262.6 -262.601l-121.5 -21.2998c-16.4004 -2.7998 -30.7002 11.4004 -27.7998 27.7998l21.1992 121.5zM124.1 108.1c5.5 -5.5 14.3008 -5.5 19.8008 0l154 154
-c5.5 5.5 5.5 14.3008 0 19.8008s-14.3008 5.5 -19.8008 0l-154 -154c-5.5 -5.5 -5.5 -14.3008 0 -19.8008zM88 24v48h-36.2998l-11.2998 -64.5l31.0996 -31.0996l64.5 11.2998v36.2998h-48z" />
-    <glyph glyph-name="pen" unicode="&#xf304;" 
-d="M290.74 354.76l128.02 -128.02l-277.99 -277.99l-114.14 -12.5996c-15.2803 -1.69043 -28.1895 11.2295 -26.4902 26.5098l12.7002 114.22zM497.94 373.82c18.75 -18.75 18.75 -49.1504 0 -67.9102l-56.5508 -56.5498l-128.02 128.02l56.5498 56.5498
-c18.75 18.75 49.1602 18.75 67.9102 0z" />
-    <glyph glyph-name="pen-alt" unicode="&#xf305;" 
-d="M497.94 373.83c18.75 -18.7598 18.75 -49.1602 0 -67.9102l-56.5508 -56.5498l-128.02 128.02l56.5498 56.5508c18.75 18.75 49.1602 18.75 67.9102 0zM251.14 394.36l84.8506 -84.8506l82.7695 -82.7695l-196.79 -196.79
-c-51.1611 -51.1592 -119.559 -85.4326 -195.34 -93.7998c-15.2803 -1.69043 -28.1895 11.2295 -26.4902 26.5098l0.0302734 0.229492c8.42188 75.6777 42.6777 143.978 93.7803 195.08l151.56 151.55l-22.6299 22.6201l-101.82 -101.819
-c-6.25 -6.25 -16.3799 -6.25 -22.6299 0l-22.6299 22.6299c-6.25 6.24023 -6.25 16.3701 0 22.6201l118.78 118.79c15.6201 15.6201 40.9395 15.6201 56.5596 0z" />
-    <glyph glyph-name="long-arrow-alt-down" unicode="&#xf309;" horiz-adv-x="256" 
-d="M168 102.059h46.0576c21.3828 0 32.0908 -25.8516 16.9717 -40.9707l-86.0596 -86.0586c-9.37207 -9.37305 -24.5674 -9.37305 -33.9404 0l-86.0596 86.0586c-15.1191 15.1201 -4.41113 40.9707 16.9717 40.9707h46.0586v301.941c0 6.62695 5.37305 12 12 12h56
-c6.62695 0 12 -5.37305 12 -12v-301.941z" />
-    <glyph glyph-name="long-arrow-alt-left" unicode="&#xf30a;" horiz-adv-x="448" 
-d="M134.059 152v-46.0576c0 -21.3828 -25.8516 -32.0908 -40.9707 -16.9717l-86.0586 86.0596c-9.37305 9.37207 -9.37305 24.5674 0 33.9404l86.0586 86.0596c15.1201 15.1191 40.9707 4.41113 40.9707 -16.9717v-46.0586h301.941c6.62695 0 12 -5.37305 12 -12v-56
-c0 -6.62695 -5.37305 -12 -12 -12h-301.941z" />
-    <glyph glyph-name="long-arrow-alt-right" unicode="&#xf30b;" horiz-adv-x="448" 
-d="M313.941 232v46.0576c0 21.3828 25.8516 32.0908 40.9707 16.9717l86.0586 -86.0596c9.37305 -9.37207 9.37305 -24.5674 0 -33.9404l-86.0586 -86.0596c-15.1201 -15.1191 -40.9707 -4.41113 -40.9707 16.9717v46.0586h-301.941c-6.62695 0 -12 5.37305 -12 12v56
-c0 6.62695 5.37305 12 12 12h301.941z" />
-    <glyph glyph-name="long-arrow-alt-up" unicode="&#xf30c;" horiz-adv-x="256" 
-d="M88 281.941h-46.0576c-21.3828 0 -32.0908 25.8516 -16.9717 40.9707l86.0596 86.0586c9.37207 9.37305 24.5674 9.37305 33.9404 0l86.0596 -86.0586c15.1191 -15.1201 4.41113 -40.9707 -16.9717 -40.9707h-46.0586v-301.941c0 -6.62695 -5.37305 -12 -12 -12h-56
-c-6.62695 0 -12 5.37305 -12 12v301.941z" />
-    <glyph glyph-name="expand-arrows-alt" unicode="&#xf31e;" horiz-adv-x="448" 
-d="M448 104v-112v-0.0615234c0 -13.2129 -10.7275 -23.9395 -23.9395 -23.9395c-0.0205078 0 -0.0400391 0.000976562 -0.0605469 0.000976562h-112c-21.3896 0 -32.0898 25.9004 -17 41l36.2002 36.2002l-107.2 107.2l-107.23 -107.301l36.2305 -36.0996
-c15.0898 -15.0996 4.38965 -41 -17 -41h-112h-0.0615234c-13.2129 0 -23.9395 10.7275 -23.9395 23.9395c0 0.0205078 0.000976562 0.0400391 0.000976562 0.0605469v112c0 21.4004 25.8896 32.0996 41 17l36.1904 -36.2002l107.27 107.2l-107.28 107.3l-36.1797 -36.2998
-c-15.0996 -15.0996 -41 -4.40039 -41 17v112v0.0615234c0 13.2129 10.7275 23.9395 23.9395 23.9395c0.0205078 0 0.0400391 -0.000976562 0.0605469 -0.000976562h112c21.3896 0 32.0898 -25.9004 17 -41l-36.2002 -36.2002l107.2 -107.2l107.23 107.301l-36.2305 36.0996
-c-15.0898 15.0996 -4.38965 41 17 41h112h0.0615234c13.2129 0 23.9395 -10.7275 23.9395 -23.9395c0 -0.0205078 -0.000976562 -0.0400391 -0.000976562 -0.0605469v-112c0 -21.4004 -25.8896 -32.0996 -41 -17l-36.1904 36.2002l-107.27 -107.2l107.28 -107.3
-l36.1797 36.2002c15.0996 15.1992 41 4.5 41 -16.9004z" />
-    <glyph glyph-name="clipboard" unicode="&#xf328;" horiz-adv-x="384" 
-d="M384 336v-352c0 -26.5098 -21.4902 -48 -48 -48h-288c-26.5098 0 -48 21.4902 -48 48v352c0 26.5098 21.4902 48 48 48h80c0 35.29 28.71 64 64 64s64 -28.71 64 -64h80c26.5098 0 48 -21.4902 48 -48zM192 408c-13.2549 0 -24 -10.7451 -24 -24s10.7451 -24 24 -24
-s24 10.7451 24 24s-10.7451 24 -24 24zM288 294v20c0 3.31152 -2.68848 6 -6 6h-180c-3.31152 0 -6 -2.68848 -6 -6v-20c0 -3.31152 2.68848 -6 6 -6h180c3.31152 0 6 2.68848 6 6z" />
-    <glyph glyph-name="arrows-alt-h" unicode="&#xf337;" 
-d="M377.941 278.059c0 21.3828 25.8516 32.0908 40.9707 16.9707l86.0586 -86.0596c9.37305 -9.37305 9.37305 -24.5674 0 -33.9404l-86.0586 -86.0596c-15.1201 -15.1191 -40.9707 -4.41113 -40.9707 16.9717v46.0586h-243.883v-46.0576
-c0 -21.3828 -25.8516 -32.0908 -40.9707 -16.9717l-86.0586 86.0596c-9.37305 9.37305 -9.37305 24.5674 0 33.9404l86.0586 86.0596c15.1201 15.1191 40.9707 4.41113 40.9707 -16.9717v-46.0586h243.883v46.0586z" />
-    <glyph glyph-name="arrows-alt-v" unicode="&#xf338;" horiz-adv-x="256" 
-d="M214.059 70.0586c21.3828 0 32.0908 -25.8516 16.9707 -40.9707l-86.0596 -86.0586c-9.37305 -9.37305 -24.5674 -9.37305 -33.9404 0l-86.0596 86.0586c-15.1191 15.1201 -4.41113 40.9707 16.9717 40.9707h46.0586v243.883h-46.0576
-c-21.3828 0 -32.0908 25.8516 -16.9717 40.9707l86.0596 86.0586c9.37305 9.37305 24.5674 9.37305 33.9404 0l86.0596 -86.0586c15.1191 -15.1201 4.41113 -40.9707 -16.9717 -40.9707h-46.0586v-243.883h46.0586z" />
-    <glyph glyph-name="arrow-alt-circle-down" unicode="&#xf358;" 
-d="M504 192c0 -137 -111 -248 -248 -248s-248 111 -248 248s111 248 248 248s248 -111 248 -248zM212 308v-116h-70.9004c-10.6992 0 -16.0996 -13 -8.5 -20.5l114.9 -114.3c4.7002 -4.7002 12.2002 -4.7002 16.9004 0l114.899 114.3c7.60059 7.59961 2.2002 20.5 -8.5 20.5
-h-70.7998v116c0 6.59961 -5.40039 12 -12 12h-64c-6.59961 0 -12 -5.40039 -12 -12z" />
-    <glyph glyph-name="arrow-alt-circle-left" unicode="&#xf359;" 
-d="M256 -56c-137 0 -248 111 -248 248s111 248 248 248s248 -111 248 -248s-111 -248 -248 -248zM372 236h-116v70.9004c0 10.6992 -13 16.0996 -20.5 8.5l-114.3 -114.9c-4.7002 -4.7002 -4.7002 -12.2002 0 -16.9004l114.3 -114.899
-c7.59961 -7.60059 20.5 -2.2002 20.5 8.5v70.7998h116c6.59961 0 12 5.40039 12 12v64c0 6.59961 -5.40039 12 -12 12z" />
-    <glyph glyph-name="arrow-alt-circle-right" unicode="&#xf35a;" 
-d="M256 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM140 148h116v-70.9004c0 -10.6992 13 -16.0996 20.5 -8.5l114.3 114.9c4.7002 4.7002 4.7002 12.2002 0 16.9004l-114.3 115c-7.59961 7.59961 -20.5 2.19922 -20.5 -8.5
-v-70.9004h-116c-6.59961 0 -12 -5.40039 -12 -12v-64c0 -6.59961 5.40039 -12 12 -12z" />
-    <glyph glyph-name="arrow-alt-circle-up" unicode="&#xf35b;" 
-d="M8 192c0 137 111 248 248 248s248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248zM300 76v116h70.9004c10.6992 0 16.0996 13 8.5 20.5l-114.9 114.3c-4.7002 4.7002 -12.2002 4.7002 -16.9004 0l-115 -114.3c-7.59961 -7.59961 -2.19922 -20.5 8.5 -20.5
-h70.9004v-116c0 -6.59961 5.40039 -12 12 -12h64c6.59961 0 12 5.40039 12 12z" />
-    <glyph glyph-name="external-link-alt" unicode="&#xf35d;" 
-d="M432 128c8.83105 0 16 -7.16895 16 -16v-128c0 -26.4922 -21.5078 -48 -48 -48h-352c-26.4922 0 -48 21.5078 -48 48v352c0 26.4922 21.5078 48 48 48h160c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-144v-320h320v112
-c0 8.83105 7.16895 16 16 16h32zM488 448c13.2461 0 24 -10.7539 24 -24v-128c0 -21.5 -26 -32 -41 -17l-35.7197 35.6797l-243.61 -243.68c-4.34668 -4.36133 -10.3652 -7.0625 -17.0029 -7.0625s-12.6504 2.70117 -16.9971 7.0625l-22.6699 22.6299
-c-4.36133 4.34668 -7.0625 10.3652 -7.0625 17.0029c0 6.63867 2.70117 12.6504 7.0625 16.9971l243.73 243.64l-35.7305 35.7305c-15.0498 15.0898 -4.37012 41 17 41h128z" />
-    <glyph glyph-name="external-link-square-alt" unicode="&#xf360;" horiz-adv-x="448" 
-d="M448 368v-352c0 -26.5098 -21.4902 -48 -48 -48h-352c-26.5098 0 -48 21.4902 -48 48v352c0 26.5098 21.4902 48 48 48h352c26.5098 0 48 -21.4902 48 -48zM360 352h-111.971c-21.3135 0 -32.0801 -25.8613 -16.9717 -40.9707l31.9844 -31.9873l-195.527 -195.527
-c-4.68555 -4.68555 -4.68555 -12.2832 0 -16.9707l31.0293 -31.0293c4.6875 -4.68555 12.2852 -4.68555 16.9707 0l195.526 195.526l31.9883 -31.9912c15.0283 -15.0264 40.9707 -4.47461 40.9707 16.9717v111.979c0 13.2549 -10.7451 24 -24 24z" />
-    <glyph glyph-name="exchange-alt" unicode="&#xf362;" 
-d="M0 280v16c0 13.2549 10.7451 24 24 24h360v48c0 21.3672 25.8994 32.042 40.9707 16.9707l80 -80c9.37207 -9.37305 9.37207 -24.5684 0 -33.9404l-80 -80c-15.0146 -15.0127 -40.9707 -4.48633 -40.9707 16.9697v48h-360c-13.2549 0 -24 10.7451 -24 24zM488 128
-c13.2549 0 24 -10.7451 24 -24v-16c0 -13.2549 -10.7451 -24 -24 -24h-360v-48c0 -21.4365 -25.9434 -31.9971 -40.9707 -16.9697l-80 80c-9.37207 9.37207 -9.37207 24.5674 0 33.9404l80 80c15.1084 15.1094 40.9707 4.34375 40.9707 -16.9707v-48h360z" />
-    <glyph glyph-name="cloud-download-alt" unicode="&#xf381;" horiz-adv-x="640" 
-d="M537.6 221.4c58.4004 -11.8008 102.4 -63.5 102.4 -125.4c0 -70.7002 -57.2998 -128 -128 -128h-368c-79.5 0 -144 64.5 -144 144c0 62.7998 40.2002 116.2 96.2002 135.9c-0.100586 2.69922 -0.200195 5.39941 -0.200195 8.09961c0 88.4004 71.5996 160 160 160
-c59.2998 0 111 -32.2002 138.7 -80.2002c15.2002 10.2002 33.5996 16.2002 53.2998 16.2002c53 0 96 -43 96 -96c0 -12.2002 -2.2998 -23.9004 -6.40039 -34.5996zM404.7 132.7c10.0996 10.0996 2.89941 27.2998 -11.2998 27.2998h-65.4004v112c0 8.7998 -7.2002 16 -16 16
-h-48c-8.7998 0 -16 -7.2002 -16 -16v-112h-65.4004c-14.1992 0 -21.3994 -17.2002 -11.2998 -27.2998l105.4 -105.4c6.2002 -6.2002 16.3994 -6.2002 22.5996 0z" />
-    <glyph glyph-name="cloud-upload-alt" unicode="&#xf382;" horiz-adv-x="640" 
-d="M537.6 221.4c58.4004 -11.8008 102.4 -63.5 102.4 -125.4c0 -70.7002 -57.2998 -128 -128 -128h-368c-79.5 0 -144 64.5 -144 144c0 62.7998 40.2002 116.2 96.2002 135.9c-0.100586 2.69922 -0.200195 5.39941 -0.200195 8.09961c0 88.4004 71.5996 160 160 160
-c59.2998 0 111 -32.2002 138.7 -80.2002c15.2002 10.2002 33.5996 16.2002 53.2998 16.2002c53 0 96 -43 96 -96c0 -12.2002 -2.2998 -23.9004 -6.40039 -34.5996zM393.4 160c14.1992 0 21.3994 17.2002 11.2998 27.2998l-105.4 105.4
-c-6.2002 6.2002 -16.3994 6.2002 -22.5996 0l-105.4 -105.4c-10.0996 -10.0996 -3 -27.2998 11.2998 -27.2998h65.4004v-112c0 -8.7998 7.2002 -16 16 -16h48c8.7998 0 16 7.2002 16 16v112h65.4004z" />
-    <glyph glyph-name="gem" unicode="&#xf3a5;" horiz-adv-x="576" 
-d="M485.5 448l90.5 -160h-101.1l-69.2002 160h79.7998zM357.5 448l69.2002 -160h-277.4l69.2002 160h139zM90.5 448h79.7998l-69.2002 -160h-101.1zM0 256h100.7l123 -251.7c1.5 -3.09961 -2.7002 -5.89941 -5 -3.2998zM148.2 256h279.6l-137 -318.2
-c-1 -2.39941 -4.5 -2.39941 -5.5 0zM352.3 4.2998l123 251.7h100.7l-218.7 -254.9c-2.2998 -2.69922 -6.5 0.100586 -5 3.2002z" />
-    <glyph glyph-name="level-down-alt" unicode="&#xf3be;" horiz-adv-x="320" 
-d="M313.553 55.6689l-103.966 -112.003c-9.48535 -10.2139 -25.6758 -10.2295 -35.1738 0l-103.975 112.003c-14.2061 15.2998 -3.37695 40.3311 17.5869 40.3311h63.9746v272h-83.9756c-3.31152 0 -6.31348 1.34277 -8.48535 3.51465l-56 56
-c-7.56055 7.55957 -2.20605 20.4854 8.48535 20.4854h195.976c13.2549 0 24 -10.7451 24 -24v-328h63.9658c20.8779 0 31.8516 -24.9688 17.5869 -40.3311z" />
-    <glyph glyph-name="level-up-alt" unicode="&#xf3bf;" horiz-adv-x="320" 
-d="M313.553 328.331c14.2646 -15.3623 3.29102 -40.3311 -17.5869 -40.3311h-63.9658v-328c0 -13.2549 -10.7451 -24 -24 -24h-195.976c-10.6914 0 -16.0459 12.9258 -8.48535 20.4854l56 56c2.17188 2.17188 5.17383 3.51465 8.48535 3.51465h83.9756v272h-63.9746
-c-20.9639 0 -31.793 25.0312 -17.5869 40.3311l103.975 112.003c9.49805 10.2295 25.6885 10.2139 35.1738 0z" />
-    <glyph glyph-name="lock-open" unicode="&#xf3c1;" horiz-adv-x="576" 
-d="M423.5 448c84 0.299805 152.5 -68 152.5 -152v-80c0 -13.2998 -10.7002 -24 -24 -24h-32c-13.2998 0 -24 10.7002 -24 24v80c0 39.9004 -32.7002 72.4004 -72.7002 72c-39.5996 -0.400391 -71.2998 -33.2998 -71.2998 -72.9004v-71.0996h48c26.5 0 48 -21.5 48 -48v-192
-c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v192c0 26.5 21.5 48 48 48h224v70.5c0 84 67.5 153.2 151.5 153.5z" />
-    <glyph glyph-name="map-marker-alt" unicode="&#xf3c5;" horiz-adv-x="384" 
-d="M172.268 -53.6699c-145.298 210.639 -172.268 232.257 -172.268 309.67c0 106.039 85.9609 192 192 192s192 -85.9609 192 -192c0 -77.4131 -26.9697 -99.0312 -172.268 -309.67c-9.53516 -13.7744 -29.9307 -13.7734 -39.4648 0zM192 176c44.1826 0 80 35.8174 80 80
-s-35.8174 80 -80 80s-80 -35.8174 -80 -80s35.8174 -80 80 -80z" />
-    <glyph glyph-name="microphone-alt" unicode="&#xf3c9;" horiz-adv-x="352" 
-d="M336 256c8.83984 0 16 -7.16016 16 -16v-48c0 -88.9004 -66.29 -162.47 -152 -174.23v-33.7695h56c8.83984 0 16 -7.16016 16 -16v-16c0 -8.83984 -7.16016 -16 -16 -16h-160c-8.83984 0 -16 7.16016 -16 16v16c0 8.83984 7.16016 16 16 16h56v34.1504
-c-88.0303 12.1396 -152 92.0498 -152 181.689v40.1602c0 8.83984 7.16016 16 16 16h16c8.83984 0 16 -7.16016 16 -16v-42.2998c0 -66.8105 48.71 -126.59 115.21 -133.08c76.2998 -7.44043 140.79 52.5801 140.79 127.38v48c0 8.83984 7.16016 16 16 16h16zM176 96
-c-53.0195 0 -96 42.9805 -96 96v160c0 53.0195 42.9805 96 96 96s96 -42.9805 96 -96h-85.3301c-5.88965 0 -10.6699 -3.58008 -10.6699 -8v-16c0 -4.41992 4.78027 -8 10.6699 -8h85.3301v-32h-85.3301c-5.88965 0 -10.6699 -3.58008 -10.6699 -8v-16
-c0 -4.41992 4.78027 -8 10.6699 -8h85.3301v-32h-85.3301c-5.88965 0 -10.6699 -3.58008 -10.6699 -8v-16c0 -4.41992 4.78027 -8 10.6699 -8h85.3301c0 -53.0195 -42.9805 -96 -96 -96z" />
-    <glyph glyph-name="mobile-alt" unicode="&#xf3cd;" horiz-adv-x="320" 
-d="M272 448c26.5 0 48 -21.5 48 -48v-416c0 -26.5 -21.5 -48 -48 -48h-224c-26.5 0 -48 21.5 -48 48v416c0 26.5 21.5 48 48 48h224zM160 -32c17.7002 0 32 14.2998 32 32s-14.2998 32 -32 32s-32 -14.2998 -32 -32s14.2998 -32 32 -32zM272 76v312
-c0 6.59961 -5.40039 12 -12 12h-200c-6.59961 0 -12 -5.40039 -12 -12v-312c0 -6.59961 5.40039 -12 12 -12h200c6.59961 0 12 5.40039 12 12z" />
-    <glyph glyph-name="money-bill-alt" unicode="&#xf3d1;" horiz-adv-x="640" 
-d="M352 160c4.41992 0 8 -3.58008 8 -8v-16c0 -4.41992 -3.58008 -8 -8 -8h-64c-4.41992 0 -8 3.58008 -8 8v16c0 4.41992 3.58008 8 8 8h16v55.4404l-0.469727 -0.310547c-1.26855 -0.845703 -2.79395 -1.35156 -4.43164 -1.35156
-c-2.77734 0 -5.22559 1.41895 -6.6582 3.57129l-8.88086 13.3105c-0.845703 1.26758 -1.35156 2.79395 -1.35156 4.43066c0 2.77734 1.41992 5.22656 3.57227 6.65918l15.3301 10.2197c3.93945 2.62988 8.56934 4.03027 13.3096 4.03027h13.5801c4.41992 0 8 -3.58008 8 -8
-v-88h16zM608 384c17.6699 0 32 -14.3301 32 -32v-320c0 -17.6699 -14.3301 -32 -32 -32h-576c-17.6699 0 -32 14.3301 -32 32v320c0 17.6699 14.3301 32 32 32h576zM48 48h64c0 35.3496 -28.6504 64 -64 64v-64zM48 272c35.3496 0 64 28.6504 64 64h-64v-64zM320 80
-c53 0 96 50.1299 96 112c0 61.8604 -42.9805 112 -96 112s-96 -50.1396 -96 -112c0 -61.8496 42.9805 -112 96 -112zM592 48v64c-35.3496 0 -64 -28.6504 -64 -64h64zM592 272v64h-64c0 -35.3496 28.6504 -64 64 -64z" />
-    <glyph glyph-name="phone-slash" unicode="&#xf3dd;" horiz-adv-x="640" 
-d="M268.2 66.5996c11.5 5.40039 22.7002 11.6006 33.5996 18.1006l80 -61.7998c-76 -54.5 -169 -86.9004 -269.7 -86.9004c-11.2998 0 -20.8994 7.7998 -23.3994 18.5996l-24 104c-2.60059 11.4004 3.2002 22.9004 13.8994 27.5l112 48
-c9.80078 4.2002 21.2002 1.40039 28 -6.89941zM633.8 -10.0996c7 -5.40039 8.2998 -15.5 2.90039 -22.3008l-19.6006 -25.2998c-5.5 -7 -15.5 -8.2002 -22.5 -2.7998l-588.399 454.7c-7 5.39941 -8.2002 15.3994 -2.7998 22.3994l19.5996 25.2002
-c5.5 7 15.5 8.2002 22.5 2.7998l353.9 -273.5c18.0996 22.5 33.7998 46.7002 46 72.8008l-60.6006 49.5996c-8.2998 6.7002 -11.0996 18.2002 -6.89941 28l48 112c4.59961 10.5996 16.1992 16.5 27.5 13.9004l104 -24c10.8994 -2.5 18.5996 -12.2002 18.5996 -23.4004
-c0 -108.9 -38.0996 -208.4 -100.9 -287.5z" />
-    <glyph glyph-name="portrait" unicode="&#xf3e0;" horiz-adv-x="384" 
-d="M336 448c26.5 0 48 -21.5 48 -48v-416c0 -26.5 -21.5 -48 -48 -48h-288c-26.5 0 -48 21.5 -48 48v416c0 26.5 21.5 48 48 48h288zM192 320c-35.2998 0 -64 -28.7002 -64 -64s28.7002 -64 64 -64s64 28.7002 64 64s-28.7002 64 -64 64zM304 83.2002v19.2002
-c0 31.7998 -30.0996 57.5996 -67.2002 57.5996h-5c-12.2002 -5.09961 -25.7002 -8 -39.7998 -8s-27.5 2.90039 -39.7998 8h-5c-37.1006 0 -67.2002 -25.7998 -67.2002 -57.5996v-19.2002c0 -10.6006 10 -19.2002 22.4004 -19.2002h179.199
-c12.4004 0 22.4004 8.59961 22.4004 19.2002z" />
-    <glyph glyph-name="reply" unicode="&#xf3e5;" 
-d="M8.30859 258.164l176.005 151.985c15.4053 13.3047 39.6865 2.50391 39.6865 -18.1641v-80.0537c160.629 -1.83887 288 -34.0312 288 -186.258c0 -61.4404 -39.5811 -122.309 -83.333 -154.132c-13.6533 -9.93066 -33.1113 2.5332 -28.0771 18.6309
-c45.3438 145.012 -21.5068 183.51 -176.59 185.742v-87.915c0 -20.7002 -24.2998 -31.4531 -39.6865 -18.1641l-176.005 152c-11.0703 9.5625 -11.0859 26.7529 0 36.3281z" />
-    <glyph glyph-name="shield-alt" unicode="&#xf3ed;" 
-d="M466.5 364.3c17.7998 -7.39941 29.5 -24.8994 29.5 -44.2998c0 -221.3 -135.9 -344.6 -221.6 -380.3c-11.8008 -4.90039 -25.1006 -4.90039 -36.9004 0c-107 44.5996 -221.5 181.8 -221.5 380.3c0 19.4004 11.7002 36.9004 29.5996 44.2998l192 80
-c5.67578 2.35449 11.96 3.6543 18.4824 3.6543c6.52148 0 12.7432 -1.2998 18.418 -3.6543zM256.1 1.7002c93.7002 46.5996 172.5 156.3 175.801 307.7l-175.9 73.2998z" />
-    <glyph glyph-name="tablet-alt" unicode="&#xf3fa;" horiz-adv-x="448" 
-d="M400 448c26.5 0 48 -21.5 48 -48v-416c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v416c0 26.5 21.5 48 48 48h352zM224 -32c17.7002 0 32 14.2998 32 32s-14.2998 32 -32 32s-32 -14.2998 -32 -32s14.2998 -32 32 -32zM400 76v312
-c0 6.59961 -5.40039 12 -12 12h-328c-6.59961 0 -12 -5.40039 -12 -12v-312c0 -6.59961 5.40039 -12 12 -12h328c6.59961 0 12 5.40039 12 12z" />
-    <glyph glyph-name="tachometer-alt" unicode="&#xf3fd;" horiz-adv-x="576" 
-d="M288 416c159.06 0 288 -128.94 288 -288c0 -52.7998 -14.25 -102.26 -39.0596 -144.8c-5.61035 -9.62012 -16.3008 -15.2002 -27.4404 -15.2002h-443c-11.1396 0 -21.8301 5.58008 -27.4404 15.2002c-24.8096 42.54 -39.0596 92 -39.0596 144.8
-c0 159.06 128.94 288 288 288zM288 352c-17.6699 0 -31.9902 -14.3301 -31.9902 -32s14.3301 -32 32 -32c6.66992 0 12.5098 2.51953 17.6406 6.00977l9.21973 27.6699c0.80957 2.44043 2.33984 4.41016 3.4502 6.66992c-3.74023 13.5205 -15.6104 23.6504 -30.3203 23.6504
-zM96 64c17.6699 0 32 14.3301 32 32s-14.3301 32 -32 32s-32 -14.3301 -32 -32s14.3301 -32 32 -32zM144 224c17.6699 0 32 14.3301 32 32s-14.3301 32 -32 32s-32 -14.3301 -32 -32s14.3301 -32 32 -32zM390.77 296.41c4.18066 12.5703 -2.59961 26.1699 -15.1699 30.3594
-c-12.6299 4.28027 -26.1895 -2.60938 -30.3594 -15.1699l-61.3398 -184.01c-33.4004 -2.16016 -59.9004 -29.6494 -59.9004 -63.5898c0 -11.7197 3.37988 -22.5498 8.87988 -32h110.24c5.5 9.4502 8.87988 20.2803 8.87988 32c0 19.46 -8.87012 36.6699 -22.5596 48.4102z
-M405.43 239.21c5.68066 -8.94043 15.1904 -15.21 26.5703 -15.2197c17.6699 0 32 14.3301 32 32s-14.3301 32 -32 32c-3.91992 0 -7.58008 -0.94043 -11.0498 -2.23047zM480 64c17.6699 0 32 14.3301 32 32s-14.3301 32 -32 32s-32 -14.3301 -32 -32s14.3301 -32 32 -32z
-" />
-    <glyph glyph-name="ticket-alt" unicode="&#xf3ff;" horiz-adv-x="576" 
-d="M128 288h320v-192h-320v192zM528 192c0 -26.5098 21.4902 -48 48 -48v-96c0 -26.5098 -21.4902 -48 -48 -48h-480c-26.5098 0 -48 21.4902 -48 48v96c26.5098 0 48 21.4902 48 48s-21.4902 48 -48 48v96c0 26.5098 21.4902 48 48 48h480c26.5098 0 48 -21.4902 48 -48
-v-96c-26.5098 0 -48 -21.4902 -48 -48zM480 296c0 13.2549 -10.7451 24 -24 24h-336c-13.2549 0 -24 -10.7451 -24 -24v-208c0 -13.2549 10.7451 -24 24 -24h336c13.2549 0 24 10.7451 24 24v208z" />
-    <glyph glyph-name="user-alt" unicode="&#xf406;" 
-d="M256 160c-79.5 0 -144 64.5 -144 144s64.5 144 144 144s144 -64.5 144 -144s-64.5 -144 -144 -144zM384 128c70.7002 0 128 -57.2998 128 -128v-16c0 -26.5 -21.5 -48 -48 -48h-416c-26.5 0 -48 21.5 -48 48v16c0 70.7002 57.2998 128 128 128h55.0996
-c22.3008 -10.2002 46.9004 -16 72.9004 -16s50.7002 5.7998 72.9004 16h55.0996z" />
-    <glyph glyph-name="window-close" unicode="&#xf410;" 
-d="M464 416c26.5 0 48 -21.5 48 -48v-352c0 -26.5 -21.5 -48 -48 -48h-416c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h416zM380.4 125.5l-67.1006 66.5l67.1006 66.5c4.7998 4.7998 4.7998 12.5996 0 17.4004l-40.5 40.5
-c-4.80078 4.7998 -12.6006 4.7998 -17.4004 0l-66.5 -67.1006l-66.5 67.1006c-4.7998 4.7998 -12.5996 4.7998 -17.4004 0l-40.5 -40.5c-4.7998 -4.80078 -4.7998 -12.6006 0 -17.4004l67.1006 -66.5l-67.1006 -66.5c-4.7998 -4.7998 -4.7998 -12.5996 0 -17.4004
-l40.5 -40.5c4.80078 -4.7998 12.6006 -4.7998 17.4004 0l66.5 67.1006l66.5 -67.1006c4.7998 -4.7998 12.5996 -4.7998 17.4004 0l40.5 40.5c4.7998 4.80078 4.7998 12.6006 0 17.4004z" />
-    <glyph glyph-name="compress-alt" unicode="&#xf422;" horiz-adv-x="448" 
-d="M4.68555 20.6855l99.3145 99.3145l-32.9219 31.0293c-15.1201 15.1201 -4.41211 40.9707 16.9697 40.9707h112c13.2549 0 23.9521 -10.7451 23.9521 -24v-112c0 -21.3818 -25.8027 -32.0898 -40.9219 -16.9707l-31.0781 32.9707l-99.3145 -99.3145
-c-6.24707 -6.24707 -16.3789 -6.24707 -22.627 0l-25.373 25.373c-6.24707 6.24805 -6.24707 16.3799 0 22.627zM443.314 363.314l-99.3145 -99.3145l32.9219 -31.0293c15.1201 -15.1201 4.41211 -40.9707 -16.9697 -40.9707h-112c-13.2549 0 -23.9521 10.7451 -23.9521 24
-v112c0 21.3818 25.8027 32.0898 40.9219 16.9707l31.0781 -32.9707l99.3145 99.3145c6.24707 6.24707 16.3789 6.24707 22.627 0l25.373 -25.373c6.24707 -6.24805 6.24707 -16.3799 0 -22.627z" />
-    <glyph glyph-name="expand-alt" unicode="&#xf424;" horiz-adv-x="448" 
-d="M212.686 132.686l-92.6855 -92.6855l32.9219 -31.0293c15.1201 -15.1201 4.41211 -40.9707 -16.9697 -40.9707h-112c-13.2549 0 -23.9521 10.7451 -23.9521 24v112c0 21.3818 25.8027 32.0898 40.9219 16.9707l31.0781 -32.9707l92.6855 92.6855
-c6.24805 6.24805 16.3799 6.24805 22.6279 0l25.3721 -25.3721c6.24902 -6.24805 6.24902 -16.3789 0 -22.6279zM235.314 251.314l92.6855 92.6855l-32.9219 31.0293c-15.1201 15.1201 -4.41211 40.9707 16.9697 40.9707h112c13.2549 0 23.9521 -10.7451 23.9521 -24v-112
-c0 -21.3818 -25.8027 -32.0898 -40.9219 -16.9707l-31.0781 32.9707l-92.6855 -92.6855c-6.24805 -6.24805 -16.3799 -6.24805 -22.6279 0l-25.3721 25.3721c-6.24902 6.24805 -6.24902 16.3789 0 22.6279z" />
-    <glyph glyph-name="baseball-ball" unicode="&#xf433;" horiz-adv-x="496" 
-d="M368.5 84.0996c12.9004 -26.6992 30.2998 -50.1992 51.4004 -70.5996c-44.6006 -43 -105.101 -69.5 -171.9 -69.5c-66.9004 0 -127.5 26.5996 -172 69.7002c21.2002 20.3994 38.5996 44 51.5 70.7002l-28.7998 13.8994c-11.1006 -23 -26.1006 -43.2998 -44.2998 -61
-c-34 42.4004 -54.4004 96.1006 -54.4004 154.7s20.4004 112.3 54.4004 154.8c17.7998 -17.2998 32.5 -37.0996 43.5 -59.3994l28.6992 14.0996c-12.7998 25.9004 -30 48.9004 -50.6992 68.7998c44.5996 43.1006 105.199 69.7002 172.1 69.7002
-c67 0 127.6 -26.7002 172.2 -69.7998c-20.7998 -20 -38 -43 -50.7998 -69l28.6992 -14.1006c11 22.4004 25.8008 42.2002 43.6006 59.5c33.7998 -42.3994 54.2002 -96.0996 54.2002 -154.6c0 -58.5996 -20.5 -112.4 -54.5 -154.9c-18.1006 17.7002 -33 38 -44.1006 60.9004z
-M140.2 116.1c17.2998 53.9004 14.2998 108.2 -0.700195 153.801l-30.4004 -10c13.3008 -40.2002 15.5 -87.6006 0.600586 -134zM356.5 269.5c-15 -45.5 -18 -99.7998 -0.700195 -153.8l30.5 9.7998c-14.8994 46.5 -12.5996 93.9004 0.600586 134z" />
-    <glyph glyph-name="basketball-ball" unicode="&#xf434;" horiz-adv-x="496" 
-d="M212.3 437.7c-1.5 -50 -17 -95.4004 -44.7998 -131.2l-77.4004 77.4004c36 29.6992 78.4004 47.5 122.2 53.7998zM248 226l-46.2998 46.2998c37.2002 45.4004 57.5 103.8 58.7002 167.7c51.8994 -2.59961 103.1 -21.0996 145.5 -56.0996zM56.0996 349.9l77.4004 -77.4004
-c-35.7002 -27.7998 -81.2002 -43.2998 -131.2 -44.7998c6.2998 43.7998 24.1006 86.2002 53.7998 122.2zM328.3 145.7l-46.2998 46.2998l157.9 157.9c35 -42.4004 53.5 -93.6006 56.0996 -145.5c-64 -1.30078 -122.4 -21.6006 -167.7 -58.7002zM248 158l46.2998 -46.2998
-c-37.0996 -45.2998 -57.3994 -103.7 -58.7002 -167.7c-51.8994 2.59961 -103.1 21.2002 -145.5 56.0996zM439.9 34.0996l-77.4004 77.4004c35.7002 27.7002 81.0996 43.2002 131.2 44.7998c-6.2998 -43.7998 -24.1006 -86.2002 -53.7998 -122.2zM167.7 238.3
-l46.2998 -46.2998l-157.9 -157.9c-35 42.4004 -53.5 93.6006 -56.0996 145.5c63.9004 1.10059 122.3 21.5 167.7 58.7002zM283.7 -53.7002c1.59961 50 17.0996 95.5 44.7998 131.2l77.4004 -77.4004c-36 -29.6992 -78.4004 -47.5 -122.2 -53.7998z" />
-    <glyph glyph-name="bowling-ball" unicode="&#xf436;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM120 256c17.7002 0 32 14.2998 32 32s-14.2998 32 -32 32s-32 -14.2998 -32 -32s14.2998 -32 32 -32zM184 352c0 -17.7002 14.2998 -32 32 -32s32 14.2998 32 32
-s-14.2998 32 -32 32s-32 -14.2998 -32 -32zM232 208c17.7002 0 32 14.2998 32 32s-14.2998 32 -32 32s-32 -14.2998 -32 -32s14.2998 -32 32 -32z" />
-    <glyph glyph-name="chess" unicode="&#xf439;" 
-d="M74 240l-33.9102 90.3799c-0.655273 1.74707 -1.01953 3.64551 -1.01953 5.62012c0 8.83105 7.16895 16 16 16h0.0195312h56.9102v32h-24c-4.41504 0 -8 3.58496 -8 8v16c0 4.41504 3.58496 8 8 8h24v24c0 4.41504 3.58496 8 8 8h16c4.41504 0 8 -3.58496 8 -8v-24h24
-c4.41504 0 8 -3.58496 8 -8v-16c0 -4.41504 -3.58496 -8 -8 -8h-24v-32h56.8896c0.00683594 0 0.0078125 -0.00683594 0.0146484 -0.00683594c8.83008 0 16 -7.16992 16 -16c0 -1.97461 -0.359375 -3.86621 -1.01465 -5.61328l-33.8896 -90.3799h10
-c8.83105 0 16 -7.16895 16 -16v-16c0 -8.83105 -7.16895 -16 -16 -16h-15.9404c0.142578 -44.1934 5.69141 -86.9287 15.9404 -128h-128c10.249 41.0713 15.7979 83.8066 15.9404 128h-15.9404c-8.83105 0 -16 7.16895 -16 16v16c0 8.83105 7.16895 16 16 16h10z
-M247.16 -11.5801c5.24805 -2.62598 8.83984 -8.0459 8.83984 -14.3096v-22.1104c0 -8.83105 -7.16895 -16 -16 -16h-224c-8.83105 0 -16 7.16895 -16 16v22.1104c0.000976562 6.26562 3.59668 11.6855 8.84961 14.3096l23.1504 11.5801v16c0 8.83105 7.16895 16 16 16h160
-c8.83105 0 16 -7.16895 16 -16v-16zM339.93 146.2l-24.5693 20.7998c-6.94434 5.86133 -11.3438 14.6143 -11.3604 24.4004v58.5996c0 3.31152 2.68848 6 6 6h26.3896c3.31152 0 6 -2.68848 6 -6v-26h24.71v26c0 3.31152 2.68848 6 6 6h53.8105c3.31152 0 6 -2.68848 6 -6
-v-26h24.71v26c0 3.31152 2.68848 6 6 6h26.3799c3.31152 0 6 -2.68848 6 -6v-58.54c0 -0.0107422 0.0185547 -0.0126953 0.0185547 -0.0234375c0 -9.79297 -4.40918 -18.5645 -11.3486 -24.4365l-24.5996 -20.79l3.29004 -82.21h-126.721zM384 144v-32h32v32
-c0 8.83105 -7.16895 16 -16 16s-16 -7.16895 -16 -16zM503.16 -11.5801c5.24805 -2.62598 8.83984 -8.0459 8.83984 -14.3096v-22.1104c0 -8.83105 -7.16895 -16 -16 -16h-192c-8.83105 0 -16 7.16895 -16 16v22.1104c0.000976562 6.26562 3.59668 11.6855 8.84961 14.3096
-l23.1504 11.5801v16c0 8.83105 7.16895 16 16 16h128c8.83105 0 16 -7.16895 16 -16v-16z" />
-    <glyph glyph-name="chess-bishop" unicode="&#xf43a;" horiz-adv-x="320" 
-d="M8 160.12c0 73.3799 59.8096 181.08 112.6 225.37c-14 3.41992 -24.5996 15.5098 -24.5996 30.5098c0 17.6611 14.3389 32 32 32h64c17.6611 0 32 -14.3389 32 -32c0 -15.0498 -10.5996 -27.0898 -24.5996 -30.5098c24.3994 -20.4902 50.0693 -54.6807 70.8691 -92.5898
-l-107.89 -107.931c-1.44727 -1.44727 -2.3418 -3.44922 -2.3418 -5.65625c0 -2.20605 0.894531 -4.20508 2.3418 -5.65332l11.3105 -11.3105c1.44727 -1.44629 3.44922 -2.3418 5.65527 -2.3418c2.20703 0 4.20605 0.895508 5.6543 2.3418l100.31 100.33
-c15.96 -35.46 26.6904 -71.9492 26.6904 -102.56c0 -51.6006 -22.1396 -73.8301 -56 -84.6006v-43.5195h-192v43.5195c-33.8604 10.7705 -56 32.9609 -56 84.6006zM304 0c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-288
-c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h288z" />
-    <glyph glyph-name="chess-board" unicode="&#xf43c;" 
-d="M255.9 447.8v-64h-64v64h64zM0 383.83h64v-64h-64v64zM128 447.8v-64h-64v64h64zM192 191.9h64v-64h-64v64zM0 255.88h64v-64h-64v64zM383.85 447.8v-64h-64v64h64zM511.85 447.8v-64h-64v64h64zM128 191.9v-64h-64v64h64zM511.8 0h-64v64h64v-64zM511.8 128h-64v64h64
-v-64zM383.85 -64v64h64v-64h-64zM511.85 255.88h-64v64h64v-64zM128 -64v64h64v-64h-64zM0 -64v64h64v-64h-64zM255.9 -64v64h64v-64h-64zM0 127.93h64v-64h-64v64zM319.88 319.85h-64v64h64v-64zM255.88 191.85v64h64v-64h-64zM191.88 63.8496h64v-64h-64v64z
-M319.88 127.85v64h64v-64h-64zM319.88 255.8v64h64v-64h-64zM319.88 63.8701h64v-64h-64v64zM64 63.9502h64v-64h-64v64zM192 319.85h-64v64h64v-64zM383.92 63.9502v64h64v-64h-64zM255.92 255.88h-64v64h64v-64zM383.92 383.83h64v-64h-64v64zM255.92 127.93h64v-64h-64
-v64zM191.92 255.88l0.0800781 -64h-64v64h63.9199zM383.84 191.88v64h64v-64h-64zM128 319.85v-64h-64v64h64zM128 127.93h64v-64h-64v64z" />
-    <glyph glyph-name="chess-king" unicode="&#xf43f;" horiz-adv-x="448" 
-d="M400 0c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-352c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h352zM416 288c17.6494 -0.0136719 31.9688 -14.3477 31.9688 -32.001c0 -3.32129 -0.507812 -6.52539 -1.44922 -9.53906
-l-73.0791 -214.46h-298.881l-73.0791 214.46c-0.941406 3.01367 -1.45508 6.21875 -1.45508 9.54004c0 17.6533 14.3252 31.9863 31.9746 32h160v48h-40c-4.41504 0 -8 3.58496 -8 8v48c0 4.41504 3.58496 8 8 8h40v40c0 4.41504 3.58496 8 8 8h48
-c4.41504 0 8 -3.58496 8 -8v-40h40c4.41504 0 8 -3.58496 8 -8v-48c0 -4.41504 -3.58496 -8 -8 -8h-40v-48h160z" />
-    <glyph glyph-name="chess-knight" unicode="&#xf441;" horiz-adv-x="384" 
-d="M19 175.53c-11.2041 4.98145 -19 16.1963 -19 29.2393v0.0205078v137.21c0 0.0195312 -0.00292969 0.0419922 -0.00292969 0.0625c0 6.60742 2.67578 12.5957 7.00293 16.9375l9 9l-14.21 28.4199c-1.13867 2.27344 -1.79004 4.85547 -1.79004 7.56934v0.0107422
-c0 6.62305 5.37695 12 12 12h147.94c106 0 191.92 -86 191.92 -192v-192h-319.86v14.5195c0 0.0078125 -0.078125 -0.03125 -0.078125 -0.0244141c0 31.3145 18.0312 58.4512 44.2686 71.585l57.2197 28.6504c15.751 7.87695 26.5303 24.1348 26.5303 42.9297v0.00976562
-v50.3301l-22.1201 -11.0801c-6.19238 -3.09668 -10.8369 -8.78906 -12.5508 -15.6504l-9.21973 -30.6494c-2.81152 -9.35645 -9.77051 -16.9043 -18.7598 -20.5l-12.7803 -5.12012c-3.66895 -1.46777 -7.7168 -2.27246 -11.9082 -2.27246
-c-4.61621 0 -9.00586 0.979492 -12.9717 2.74219zM52 320c-11.0381 0 -20 -8.96191 -20 -20s8.96191 -20 20 -20s20 8.96191 20 20s-8.96191 20 -20 20zM368 0c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-352c-8.83105 0 -16 7.16895 -16 16v32
-c0 8.83105 7.16895 16 16 16h352z" />
-    <glyph glyph-name="chess-pawn" unicode="&#xf443;" horiz-adv-x="320" 
-d="M105.1 224c-29.3896 18.3799 -49.0996 50.7803 -49.0996 88c0 57.3994 46.6006 104 104 104s104 -46.6006 104 -104c0 -37.2197 -19.71 -69.6201 -49.0996 -88h25.0996c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-16v-5.49023
-c0 -44 4.11035 -86.5996 24 -122.51h-176c19.8604 35.9102 24 78.5098 24 122.51v5.49023h-16c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h25.0996zM304 0c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-288
-c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h288z" />
-    <glyph glyph-name="chess-queen" unicode="&#xf445;" 
-d="M256 336c-30.9072 0 -56 25.0928 -56 56s25.0928 56 56 56s56 -25.0928 56 -56s-25.0928 -56 -56 -56zM432 0c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-352c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h352zM504.87 263.84
-c4.30566 -2.86816 7.11914 -7.77344 7.11914 -13.3311c0 -2.56445 -0.604492 -4.98926 -1.67969 -7.13867l-102.55 -211.37h-303.52l-102.55 211.33c-1.0752 2.14941 -1.70508 4.58008 -1.70508 7.14453c0 5.55762 2.83887 10.457 7.14453 13.3252l28.5703 16
-c7.35938 4.91016 16.8096 2.5498 22.0898 -4.54004c8.6543 -11.709 22.4922 -19.2686 38.1572 -19.2686c1.13672 0 2.26562 0.0400391 3.38281 0.119141c25.6699 1.73926 44.6699 24.7998 44.6699 50.4893c0 7.39648 6.00391 13.4004 13.4004 13.4004h38.7695
-c6.04004 0 11.6104 -3.99023 12.8604 -9.91016c4.57715 -21.7363 23.8789 -38.0752 46.9688 -38.0752s42.3936 16.3389 46.9707 38.0752c1.25 5.91016 6.86035 9.91016 12.8604 9.91016h38.7695c7.39648 0 13.4004 -6.00391 13.4004 -13.4004
-c0 -23.5293 15.7002 -45.46 38.8398 -49.75c2.95898 -0.576172 5.9541 -0.918945 9.08105 -0.918945c15.6064 0 29.4688 7.5293 38.1494 19.1494c5.37988 7.13965 14.8496 9.67969 22.29 4.67969z" />
-    <glyph glyph-name="chess-rook" unicode="&#xf447;" horiz-adv-x="384" 
-d="M368 416c8.83105 0 16 -7.16895 16 -16v-176l-64 -32c0 -47.7197 1.54004 -95 13.21 -160h-282.42c11.6699 65 13.21 111.67 13.21 160l-64 32v176c0 8.83105 7.16895 16 16 16h56.0996c8.83105 0 16 -7.16895 16 -16v-48h47.9004v48c0 8.83105 7.16895 16 16 16h80
-c8.83105 0 16 -7.16895 16 -16v-48h48v48c0 8.83105 7.16895 16 16 16h56zM224 128v64c0 17.6611 -14.3389 32 -32 32s-32 -14.3389 -32 -32v-64h64zM368 0c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-352c-8.83105 0 -16 7.16895 -16 16v32
-c0 8.83105 7.16895 16 16 16h352z" />
-    <glyph glyph-name="dumbbell" unicode="&#xf44b;" horiz-adv-x="640" 
-d="M104 352c13.2998 0 24 -10.7002 24 -24v-272c0 -13.2998 -10.7002 -24 -24 -24h-48c-13.2998 0 -24 10.7002 -24 24v104h-24c-4.40039 0 -8 3.59961 -8 8v48c0 4.40039 3.59961 8 8 8h24v104c0 13.2998 10.7002 24 24 24h48zM632 224c4.40039 0 8 -3.59961 8 -8v-48
-c0 -4.40039 -3.59961 -8 -8 -8h-24v-104c0 -13.2998 -10.7002 -24 -24 -24h-48c-13.2998 0 -24 10.7002 -24 24v272c0 13.2998 10.7002 24 24 24h48c13.2998 0 24 -10.7002 24 -24v-104h24zM456 416c13.2998 0 24 -10.7002 24 -24v-400c0 -13.2998 -10.7002 -24 -24 -24h-48
-c-13.2998 0 -24 10.7002 -24 24v168h-128v-168c0 -13.2998 -10.7002 -24 -24 -24h-48c-13.2998 0 -24 10.7002 -24 24v400c0 13.2998 10.7002 24 24 24h48c13.2998 0 24 -10.7002 24 -24v-168h128v168c0 13.2998 10.7002 24 24 24h48z" />
-    <glyph glyph-name="football-ball" unicode="&#xf44e;" horiz-adv-x="496" 
-d="M481.5 387.7c6.2998 -23.9004 13.7002 -61 14.5 -104.5l-156.6 156.8c43.5996 -0.900391 80.8994 -8.5 104.8 -14.9004c18.2002 -4.89941 32.5 -19.1992 37.2998 -37.3994zM14.5 -3.7002c-6.2998 23.9004 -13.7002 61 -14.5 104.5l156.6 -156.8
-c-43.5996 0.900391 -80.8994 8.5 -104.8 14.9004c-18.2002 4.89941 -32.5 19.1992 -37.2998 37.3994zM4.2002 164.6c22.5996 152.7 138.899 252 271.399 271.4l216.301 -216.6c-22.7002 -152.7 -139 -252 -271.5 -271.4zM321.5 288.2l-28.2998 -28.5l-28.2998 28.2998
-c-3.10059 3.09961 -8.2002 3.09961 -11.3008 0l-11.2998 -11.2998c-3.09961 -3.10059 -3.09961 -8.2002 0 -11.2998l28.2998 -28.3008l-22.5996 -22.5996l-28.2998 28.2998c-3.10059 3.10059 -8.2002 3.10059 -11.2998 0l-11.3008 -11.2998
-c-3.09961 -3.09961 -3.09961 -8.2002 0 -11.2998l28.3008 -28.2998l-22.6006 -22.6006l-28.2998 28.2998c-3.09961 3.10059 -8.2002 3.10059 -11.2998 0l-11.2998 -11.2998c-3.10059 -3.09961 -3.10059 -8.2002 0 -11.2998l28.2998 -28.2002l-28.2998 -28.2998
-c-3.10059 -3.09961 -3.10059 -8.2002 0 -11.2998l11.2998 -11.2998c3.09961 -3.10059 8.2002 -3.10059 11.2998 0l28.2998 28.2998l28.2998 -28.2998c3.10059 -3.10059 8.2002 -3.10059 11.3008 0l11.2998 11.2998c3.09961 3.09961 3.09961 8.2002 0 11.2998
-l-28.2998 28.2998l22.5996 22.6006l28.2998 -28.3008c3.10059 -3.09961 8.2002 -3.09961 11.2998 0l11.3008 11.3008c3.09961 3.09961 3.09961 8.19922 0 11.2998l-28.3008 28.2998l22.6006 22.7002l28.2998 -28.2998c3.09961 -3.10059 8.2002 -3.10059 11.2998 0
-l11.2998 11.2998c3.10059 3.09961 3.10059 8.2002 0 11.2998l-28.2998 28.2998l28.2998 28.2998c3.10059 3.10059 3.10059 8.2002 0 11.3008l-11.2998 11.2998c-3.09961 3.09961 -8.2002 3.09961 -11.2998 0z" />
-    <glyph glyph-name="golf-ball" unicode="&#xf450;" horiz-adv-x="416" 
-d="M96 32h224c0 -17.7002 -14.2998 -32 -32 -32h-16c-17.7002 0 -32 -14.2998 -32 -32v-20c0 -6.59961 -5.40039 -12 -12 -12h-40c-6.59961 0 -12 5.40039 -12 12v20c0 17.7002 -14.2998 32 -32 32h-16c-17.7002 0 -32 14.2998 -32 32zM416 240
-c0 -74.2002 -39 -139.2 -97.5 -176h-221c-58.5 36.7998 -97.5 101.8 -97.5 176c0 114.9 93.0996 208 208 208s208 -93.0996 208 -208zM235.9 196.1c18.2998 0 33.0996 14.8008 33.0996 33.1006c0 14.3994 -9.2998 26.2998 -22.0996 30.8994
-c9.59961 -26.7998 -15.6006 -51.2998 -41.9004 -41.8994c4.59961 -12.7998 16.5 -22.1006 30.9004 -22.1006zM285 149.2c0 14.3994 -9.2998 26.2998 -22.0996 30.8994c9.59961 -26.7998 -15.6006 -51.2998 -41.9004 -41.8994
-c4.59961 -12.7998 16.5 -22.1006 30.9004 -22.1006c18.2998 0 33.0996 14.9004 33.0996 33.1006zM349 213.2c0 14.3994 -9.2998 26.2998 -22.0996 30.8994c9.59961 -26.7998 -15.6006 -51.2998 -41.9004 -41.8994c4.59961 -12.7998 16.5 -22.1006 30.9004 -22.1006
-c18.2998 0 33.0996 14.9004 33.0996 33.1006z" />
-    <glyph glyph-name="hockey-puck" unicode="&#xf453;" 
-d="M0 288c0 53 114.6 96 256 96s256 -43 256 -96s-114.6 -96 -256 -96s-256 43 -256 96zM0 205.8c113.5 -82.3994 398.6 -82.2998 512 0v-109.8c0 -53 -114.6 -96 -256 -96s-256 43 -256 96v109.8z" />
-    <glyph glyph-name="quidditch" unicode="&#xf458;" horiz-adv-x="640" 
-d="M256.5 231.2l86.7002 -109.2s-16.6006 -102.4 -76.6006 -150.1c-59.8994 -47.7002 -266.6 -34.1006 -266.6 -34.1006s3.7998 23.1006 11 55.4004l94.5996 112.2c4 4.69922 -0.899414 11.5996 -6.59961 9.5l-60.4004 -22.1006c14.4004 41.7002 32.7002 80 54.6006 97.5
-c59.8994 47.7998 163.3 40.9004 163.3 40.9004zM494.5 96.2002c44 0 79.7998 -35.7002 79.7998 -79.9004c0 -44.0996 -35.7002 -79.8994 -79.7998 -79.8994s-79.7998 35.7998 -79.7998 79.8994c0 44.1006 35.7998 79.9004 79.7998 79.9004zM636.5 417
-c5.5 -6.90039 4.40039 -17 -2.5 -22.5l-232.5 -177.9l34.0996 -42.8994c5.10059 -6.40039 1.7002 -15.9004 -6.2998 -17.6006l-58.7998 -12.3994l-86.7002 109.2l25.2998 54.5996c3.5 7.40039 13.5 8.59961 18.6006 2.2002l34.0996 -43l232.5 177.899
-c6.90039 5.40039 16.9004 4.30078 22.4004 -2.59961z" />
-    <glyph glyph-name="square-full" unicode="&#xf45c;" 
-d="M512 -64h-512v512h512v-512z" />
-    <glyph glyph-name="table-tennis" unicode="&#xf45d;" 
-d="M496.2 151.5c-64.1006 43.2002 -149.5 27.9004 -195.601 -34.2002l-211.5 211.5l56 56.1006c83.9004 84.0996 220 84.0996 303.9 0c63 -63.1006 78.7002 -155.601 47.2002 -233.4zM278.3 71.7998c-3.7002 -12.7002 -6.2998 -25.8994 -6.2002 -39.7002
-c0 -19.5 3.90039 -38.0996 11 -55.0996c-25.6992 2.7998 -50.5996 13.5996 -70.2998 33.2998l-35.7002 35.7002l-89.2998 -103.3c-7.5 -8.60059 -20.7002 -9.10059 -28.7002 -1l-53.3994 53.5c-8.10059 8.09961 -7.60059 21.2998 1 28.7998l103 89.4004l-34.5 34.5996
-c-39 39.0996 -44.6006 98.7998 -17.2998 144.1zM416 128c53 0 96 -43 96 -96s-43 -96 -96 -96s-96 43 -96 96s43 96 96 96z" />
-    <glyph glyph-name="volleyball-ball" unicode="&#xf45f;" 
-d="M231.39 204.52c-70.1855 -43.1172 -122.835 -111.301 -146.1 -192.199c-24.0918 22.8398 -43.4365 50.252 -56.9004 81.0996c22.8008 94.4004 89.5 174.4 180.301 216.8c13.8145 -32.4951 21.9121 -68.375 22.6992 -105.7zM194.49 338.92
-c-84 -39.5 -149 -108.4 -182.4 -191.5c-19.7998 109.3 34 212.4 125 262.2c22.8408 -20.3574 42.0732 -43.9951 57.4004 -70.7002zM382.09 173.82c-36.7021 4.46582 -71.8574 16.1094 -102.899 33.1797c-2.36035 86.3154 -37.5332 164.725 -93.5 222.72
-c47.2998 14 84.1992 10.2002 98.8994 8.5c70.2002 -66.8994 106.101 -164.6 97.5 -264.399zM257.39 164.32c49.7002 -26.8008 104 -40.8008 158.601 -40.9004c27.9346 0.173828 54.9697 3.79297 80.8994 10.4004c-7.93359 -32.9053 -22.5615 -63.5879 -42.1992 -89.9004
-c-93 -27.2998 -195.5 -9.5 -277.5 47.7998c21.9443 29.166 48.8877 53.5898 80.1992 72.6006zM159.09 64.6201c53.6006 -37.2998 144 -78.2002 256.9 -62.1006c-43.0684 -36.5068 -99.1953 -58.4424 -160.021 -58.4424c-47.2529 0 -91.4258 13.2939 -128.979 36.3428
-c6.39941 29.7998 16.8994 58.2002 32.0996 84.2002zM339.39 425.22c95.9004 -34.2998 164.601 -125.6 164.601 -233.399c0 -2 -0.299805 -4 -0.299805 -6c-28.0381 -9.1709 -57.998 -14.2012 -89.083 -14.2012c-0.206055 0 -0.412109 0 -0.617188 0.000976562
-c7.89941 92.3994 -19.2998 183.2 -74.6006 253.6z" />
-    <glyph glyph-name="allergies" unicode="&#xf461;" horiz-adv-x="448" 
-d="M416 336c17.5996 0 32 -14.4004 32 -32v-176.1c-0.200195 -14 -1.90039 -28.6006 -5.09961 -42.3008l-26.5 -112.699c-5.10059 -21.7002 -24.4004 -37 -46.7002 -37h-197.601c-15.2998 0 -29.7998 7.39941 -38.7998 19.7998l-125.6 172.7
-c-13 17.8994 -9.10059 42.8994 8.7998 55.8994s42.9004 9.10059 55.9004 -8.7998l23.5996 -32.5v241c0 17.5996 14.4004 32 32 32s32 -14.4004 32 -32v-152c0 -4.40039 3.59961 -8 8 -8h16c4.40039 0 8 3.59961 8 8v184c0 17.5996 14.4004 32 32 32s32 -14.4004 32 -32v-184
-c0 -4.40039 3.59961 -8 8 -8h16c4.40039 0 8 3.59961 8 8v152c0 17.5996 14.4004 32 32 32s32 -14.4004 32 -32v-152c0 -4.40039 3.59961 -8 8 -8h16c4.40039 0 8 3.59961 8 8v72c0 17.5996 14.4004 32 32 32zM176 32c8.7998 0 16 7.2002 16 16s-7.2002 16 -16 16
-s-16 -7.2002 -16 -16s7.2002 -16 16 -16zM176 128c8.7998 0 16 7.2002 16 16s-7.2002 16 -16 16s-16 -7.2002 -16 -16s7.2002 -16 16 -16zM240 0c8.7998 0 16 7.2002 16 16s-7.2002 16 -16 16s-16 -7.2002 -16 -16s7.2002 -16 16 -16zM240 96c8.7998 0 16 7.2002 16 16
-s-7.2002 16 -16 16s-16 -7.2002 -16 -16s7.2002 -16 16 -16zM304 64c8.7998 0 16 7.2002 16 16s-7.2002 16 -16 16s-16 -7.2002 -16 -16s7.2002 -16 16 -16zM336 0c8.7998 0 16 7.2002 16 16s-7.2002 16 -16 16s-16 -7.2002 -16 -16s7.2002 -16 16 -16zM368 128
-c8.7998 0 16 7.2002 16 16s-7.2002 16 -16 16s-16 -7.2002 -16 -16s7.2002 -16 16 -16z" />
-    <glyph glyph-name="band-aid" unicode="&#xf462;" horiz-adv-x="640" 
-d="M0 288c0 35.2998 28.7002 64 64 64h96v-320h-96c-35.2998 0 -64 28.7002 -64 64v192zM576 352c35.2998 0 64 -28.7002 64 -64v-192c0 -35.2998 -28.7002 -64 -64 -64h-96v320h96zM192 32v320h256v-320h-256zM368 264c-13.2998 0 -24 -10.7002 -24 -24s10.7002 -24 24 -24
-s24 10.7002 24 24s-10.7002 24 -24 24zM368 168c-13.2998 0 -24 -10.7002 -24 -24s10.7002 -24 24 -24s24 10.7002 24 24s-10.7002 24 -24 24zM272 264c-13.2998 0 -24 -10.7002 -24 -24s10.7002 -24 24 -24s24 10.7002 24 24s-10.7002 24 -24 24zM272 168
-c-13.2998 0 -24 -10.7002 -24 -24s10.7002 -24 24 -24s24 10.7002 24 24s-10.7002 24 -24 24z" />
-    <glyph glyph-name="box" unicode="&#xf466;" 
-d="M509.5 263.4c0.799805 -2.40039 0.799805 -4.90039 1.2002 -7.40039h-238.7v192h141.4c20.6992 0 39 -13.2002 45.5 -32.7998zM240 448v-192h-238.7c0.400391 2.5 0.400391 5 1.2002 7.40039l50.5996 151.8c6.5 19.5996 24.8008 32.7998 45.5 32.7998h141.4zM0 224h512
-v-240c0 -26.5 -21.5 -48 -48 -48h-416c-26.5 0 -48 21.5 -48 48v240z" />
-    <glyph glyph-name="boxes" unicode="&#xf468;" horiz-adv-x="576" 
-d="M560 160c8.7998 0 16 -7.2002 16 -16v-192c0 -8.7998 -7.2002 -16 -16 -16h-224c-8.7998 0 -16 7.2002 -16 16v192c0 8.7998 7.2002 16 16 16h80v-96l32 21.2998l32 -21.2998v96h80zM176 224c-8.7998 0 -16 7.2002 -16 16v192c0 8.7998 7.2002 16 16 16h80v-96
-l32 21.2998l32 -21.2998v96h80c8.7998 0 16 -7.2002 16 -16v-192c0 -8.7998 -7.2002 -16 -16 -16h-224zM240 160c8.7998 0 16 -7.2002 16 -16v-192c0 -8.7998 -7.2002 -16 -16 -16h-224c-8.7998 0 -16 7.2002 -16 16v192c0 8.7998 7.2002 16 16 16h80v-96l32 21.2998
-l32 -21.2998v96h80z" />
-    <glyph glyph-name="briefcase-medical" unicode="&#xf469;" 
-d="M464 320c26.5 0 48 -21.5 48 -48v-288c0 -26.5 -21.5 -48 -48 -48h-416c-26.5 0 -48 21.5 -48 48v288c0 26.5 21.5 48 48 48h80v48c0 26.5 21.5 48 48 48h160c26.5 0 48 -21.5 48 -48v-48h80zM192 352v-32h128v32h-128zM352 104v48c0 4.40039 -3.59961 8 -8 8h-56v56
-c0 4.40039 -3.59961 8 -8 8h-48c-4.40039 0 -8 -3.59961 -8 -8v-56h-56c-4.40039 0 -8 -3.59961 -8 -8v-48c0 -4.40039 3.59961 -8 8 -8h56v-56c0 -4.40039 3.59961 -8 8 -8h48c4.40039 0 8 3.59961 8 8v56h56c4.40039 0 8 3.59961 8 8z" />
-    <glyph glyph-name="burn" unicode="&#xf46a;" horiz-adv-x="384" 
-d="M192 448c111.8 -100.9 192 -220.6 192 -300.5c0 -124.5 -79 -211.5 -192 -211.5s-192 87 -192 211.5c0 79.5996 79.7002 199.2 192 300.5zM192 0c56.5 0 96 39 96 94.7998c0 13.5 -4.59961 61.5 -96 161.2c-91.4004 -99.7002 -96 -147.7 -96 -161.2
-c0 -55.7998 39.5 -94.7998 96 -94.7998z" />
-    <glyph glyph-name="capsules" unicode="&#xf46b;" horiz-adv-x="576" 
-d="M555.3 147.9c36.2002 -51.7002 23.7002 -123 -28 -159.2c-20 -14 -42.7998 -20.7002 -65.5 -20.7002c-36.0996 0 -71.5996 17 -93.7998 48.7998l-131.2 187.3c-5.5 7.90039 -9.5 16.4004 -12.7998 25v-149.1c0 -61.9004 -50.0996 -112 -112 -112s-112 50.0996 -112 112
-v224c0 61.9004 50.0996 112 112 112c60 0 108.5 -47.2002 111.4 -106.5c7.7998 21 21.7998 40 41.5 53.7998c20 14 42.8994 20.7002 65.5 20.7002c36 0 71.5 -17 93.7998 -48.7998zM160 192v112c0 26.5 -21.5 48 -48 48s-48 -21.5 -48 -48v-112h96zM354.8 147.1
-l82.5 57.7002l-65.5996 93.7002c-9.40039 13.5 -24.7998 21.5 -41.2998 21.5c-10.3008 0 -20.3008 -3.09961 -28.8008 -9.09961c-11 -7.7002 -18.3994 -19.3008 -20.6992 -32.5c-2.40039 -13.2002 0.599609 -26.6006 8.2998 -37.6006z" />
-    <glyph glyph-name="clipboard-check" unicode="&#xf46c;" horiz-adv-x="384" 
-d="M336 384c26.5 0 48 -21.5 48 -48v-352c0 -26.5 -21.5 -48 -48 -48h-288c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h80c0 35.2998 28.7002 64 64 64s64 -28.7002 64 -64h80zM192 408c-13.2998 0 -24 -10.7002 -24 -24s10.7002 -24 24 -24s24 10.7002 24 24
-s-10.7002 24 -24 24zM313.2 176.2c4.7002 4.7002 4.7998 12.2002 0.0996094 17l-28.2002 28.3994c-4.69922 4.7002 -12.2998 4.80078 -17 0.100586l-106 -105.2l-46 46.4004c-4.69922 4.69922 -12.2998 4.7998 -17 0.0996094l-28.3994 -28.2002
-c-4.7002 -4.7002 -4.7998 -12.2998 -0.100586 -17l82.6006 -83.2998c4.7002 -4.7002 12.2998 -4.7998 17 -0.0996094z" />
-    <glyph glyph-name="clipboard-list" unicode="&#xf46d;" horiz-adv-x="384" 
-d="M336 384c26.5 0 48 -21.5 48 -48v-352c0 -26.5 -21.5 -48 -48 -48h-288c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h80c0 35.2998 28.7002 64 64 64s64 -28.7002 64 -64h80zM96 24c13.2998 0 24 10.7002 24 24s-10.7002 24 -24 24s-24 -10.7002 -24 -24
-s10.7002 -24 24 -24zM96 120c13.2998 0 24 10.7002 24 24s-10.7002 24 -24 24s-24 -10.7002 -24 -24s10.7002 -24 24 -24zM96 216c13.2998 0 24 10.7002 24 24s-10.7002 24 -24 24s-24 -10.7002 -24 -24s10.7002 -24 24 -24zM192 408c-13.2998 0 -24 -10.7002 -24 -24
-s10.7002 -24 24 -24s24 10.7002 24 24s-10.7002 24 -24 24zM320 40v16c0 4.40039 -3.59961 8 -8 8h-144c-4.40039 0 -8 -3.59961 -8 -8v-16c0 -4.40039 3.59961 -8 8 -8h144c4.40039 0 8 3.59961 8 8zM320 136v16c0 4.40039 -3.59961 8 -8 8h-144
-c-4.40039 0 -8 -3.59961 -8 -8v-16c0 -4.40039 3.59961 -8 8 -8h144c4.40039 0 8 3.59961 8 8zM320 232v16c0 4.40039 -3.59961 8 -8 8h-144c-4.40039 0 -8 -3.59961 -8 -8v-16c0 -4.40039 3.59961 -8 8 -8h144c4.40039 0 8 3.59961 8 8z" />
-    <glyph glyph-name="diagnoses" unicode="&#xf470;" horiz-adv-x="640" 
-d="M496 192c-8.7998 0 -16 7.2002 -16 16s7.2002 16 16 16s16 -7.2002 16 -16s-7.2002 -16 -16 -16zM320 272c-48.5 0 -88 39.5 -88 88s39.5 88 88 88s88 -39.5 88 -88s-39.5 -88 -88 -88zM59.7998 84l-17.7002 26.7002c-8.7998 13.2998 -7.59961 34.5996 10 45.0996
-c7.40039 4.40039 17.5 10 28.7002 16c31.6006 -27.2998 79 -4.2002 79.2002 36c47.0996 17.7002 103 32.2002 160 32.2002c45.0996 0 89.2998 -9.2002 129.2 -21.7998c-11.7002 -52.9004 59.5996 -81.2002 87.7002 -35.1006
-c21.3994 -10.3994 39.1992 -20.2998 51.0996 -27.3994c17.5996 -10.5 18.7998 -31.9004 10 -45.1006l-17.7998 -26.6992c-10.2002 -15.1006 -29.2998 -17.8008 -42.9004 -9.80078c-16.2002 9.60059 -56.2002 31.8008 -105.3 48.6006v-90.7002h-224v90.7998
-c-49.0996 -16.8994 -89.0996 -39 -105.3 -48.5996c-13.6006 -8 -32.7002 -5.5 -42.9004 9.7998zM368 104c-13.2998 0 -24 -10.7002 -24 -24s10.7002 -24 24 -24s24 10.7002 24 24s-10.7002 24 -24 24zM272 200c-13.2998 0 -24 -10.7002 -24 -24s10.7002 -24 24 -24
-s24 10.7002 24 24s-10.7002 24 -24 24zM112 192c-8.7998 0 -16 7.2002 -16 16s7.2002 16 16 16s16 -7.2002 16 -16s-7.2002 -16 -16 -16zM624 0c8.7998 0 16 -7.2002 16 -16v-32c0 -8.7998 -7.2002 -16 -16 -16h-608c-8.7998 0 -16 7.2002 -16 16v32
-c0 8.7998 7.2002 16 16 16h608z" />
-    <glyph glyph-name="dna" unicode="&#xf471;" horiz-adv-x="448" 
-d="M0.0996094 -46.0996c5.2002 42.8994 31.4004 153.899 159.9 238.1c-128.6 84.2002 -154.7 195.2 -159.9 238.1c-1.09961 9.5 6.40039 17.8008 16 17.8008l32.3008 0.0996094c8.09961 0.0996094 14.8994 -5.90039 16 -13.9004
-c0.699219 -5 1.7998 -11.0996 3.39941 -18.0996h312.4c1.59961 7 2.7002 13.2002 3.39941 18.0996c1.10059 8 7.90039 13.9004 16 13.9004l32.4004 -0.0996094c9.59961 0 17 -8.30078 15.9004 -17.8008c-5.80078 -47.8994 -37.4004 -181.199 -209.5 -266.699
-c-31.7002 -15.8008 -57.4004 -33.3008 -78.7002 -51.4004h127.6c-5.59961 4.7998 -10.7998 9.59961 -17 14.2002c21.4004 11.2002 40.9004 23 58.5 35.3994c93.2998 -78.6992 114.3 -169.8 118.9 -207.699c1.2002 -9.5 -6.2998 -17.8008 -15.9004 -17.8008
-l-32.2998 -0.0996094c-8.09961 -0.0996094 -14.9004 5.90039 -16 13.9004c-0.599609 4.89941 -1.90039 11.1992 -3.5 18.0996h-312.3c-1.60059 -7 -2.7002 -13.2002 -3.40039 -18.0996c-1.09961 -8 -7.89941 -13.9004 -16 -13.9004l-32.2998 0.0996094
-c-9.59961 0 -17 8.30078 -15.9004 17.8008zM224 228.4c25.0996 13.5996 46.4004 28.3994 64.2002 43.5996h-128.5c17.8994 -15.2002 39.2002 -29.9004 64.2998 -43.5996zM355.1 352h-262.1c5.7002 -10.4004 12.7002 -21.0996 21 -32h220.1
-c8.2002 10.9004 15.2002 21.5996 21 32zM92.9004 32h261.6c-5.7998 10.4004 -12.9004 21.0996 -21.2002 32h-219.399c-8.2002 -10.9004 -15.2002 -21.5996 -21 -32z" />
-    <glyph glyph-name="dolly" unicode="&#xf472;" horiz-adv-x="576" 
-d="M294.2 170.3l-53 159.4c-2.7998 8.2998 1.7002 17.3994 10.0996 20.2002l61.6006 20.5l33.0996 -99.4004l60.7002 20.0996l-33.1006 99.4004l61.1006 20.4004c8.2998 2.7998 17.3994 -1.7002 20.2002 -10.1006l60.3994 -181.2
-c2.7998 -8.2998 -1.7002 -17.3994 -10.0996 -20.1992l-161.5 -53.8008c-14.7998 11.3008 -31.5 19.7002 -49.5 24.7002zM575.2 121.6c2.7998 -8.39941 -1.7998 -17.3994 -10.1006 -20.1992l-213.3 -71.2002c-1.09961 -57.7998 -53.2002 -103.3 -113.399 -92.6006
-c-39.4004 6.90039 -71.2002 39.8008 -77.3008 79.2002c-5.69922 36.9004 9.90039 70.1006 36 90.5l-92.1992 276.7h-88.9004c-8.7998 0 -16 7.2002 -16 16v32c0 8.7998 7.2002 16 16 16h112c13.7998 0 26 -8.7998 30.4004 -21.9004l99.3994 -298.199
-c29.9004 -0.600586 56.2998 -15 73.5 -37l213.5 71.1992c8.2998 2.80078 17.4004 -1.69922 20.2002 -10.0996zM256 -16c26.5 0 48 21.5 48 48s-21.5 48 -48 48s-48 -21.5 -48 -48s21.5 -48 48 -48z" />
-    <glyph glyph-name="dolly-flatbed" unicode="&#xf474;" horiz-adv-x="640" 
-d="M208 128c-8.7998 0 -16 7.2002 -16 16v256c0 8.7998 7.2002 16 16 16h144v-128l48 32l48 -32v128h144c8.7998 0 16 -7.2002 16 -16v-256c0 -8.7998 -7.2002 -16 -16 -16h-384zM624 64c8.7998 0 16 -7.2002 16 -16v-32c0 -8.7998 -7.2002 -16 -16 -16h-82.7998
-c1.7002 -5 2.89941 -10.4004 2.89941 -16c0 -26.5 -21.5 -48 -48 -48s-48 21.5 -48 48c0 5.59961 1.10059 11 2.90039 16h-197.9c1.7002 -5 2.90039 -10.4004 2.90039 -16c0 -26.5 -21.5 -48 -48 -48s-48 21.5 -48 48c0 5.59961 1.09961 11 2.90039 16h-82.9004
-c-8.7998 0 -16 7.2002 -16 16v368h-48c-8.7998 0 -16 7.2002 -16 16v32c0 8.7998 7.2002 16 16 16h96c8.7998 0 16 -7.2002 16 -16v-368h496z" />
-    <glyph glyph-name="file-medical" unicode="&#xf477;" horiz-adv-x="384" 
-d="M377 343c4.5 -4.5 7 -10.5996 7 -16.9004v-6.09961h-128v128h6.09961c6.40039 0 12.5 -2.5 17 -7zM224 312c0 -13.2002 10.7998 -24 24 -24h136v-328c0 -13.2998 -10.7002 -24 -24 -24h-336c-13.2998 0 -24 10.7002 -24 24v464c0 13.2998 10.7002 24 24 24h200v-136z
-M288 152c0 4.40039 -3.59961 8 -8 8h-56v56c0 4.40039 -3.59961 8 -8 8h-48c-4.40039 0 -8 -3.59961 -8 -8v-56h-56c-4.40039 0 -8 -3.59961 -8 -8v-48c0 -4.40039 3.59961 -8 8 -8h56v-56c0 -4.40039 3.59961 -8 8 -8h48c4.40039 0 8 3.59961 8 8v56h56
-c4.40039 0 8 3.59961 8 8v48z" />
-    <glyph glyph-name="file-medical-alt" unicode="&#xf478;" horiz-adv-x="448" 
-d="M288 312c0 -13.2002 10.7998 -24 24 -24h136v-328c0 -13.2998 -10.7002 -24 -24 -24h-336c-13.2998 0 -24 10.7002 -24 24v168h70.0996l34.8008 -69.5c2.89941 -5.90039 11.3994 -5.90039 14.2998 0l56.7998 113.7l22.0996 -44.2002h89.9004c8.7998 0 16 7.2002 16 16
-s-7.2002 16 -16 16h-70.2002l-34.7002 69.5c-2.89941 5.90039 -11.3994 5.90039 -14.2998 0l-56.7998 -113.7l-19.9004 39.7998c-1.39941 2.7002 -4.19922 4.40039 -7.19922 4.40039h-140.9c-4.40039 0 -8 3.59961 -8 8v16c0 4.40039 3.59961 8 8 8h56v232
-c0 13.2998 10.7002 24 24 24h200v-136zM441 343c4.5 -4.5 7 -10.5996 7 -16.9004v-6.09961h-128v128h6.09961c6.40039 0 12.5 -2.5 17 -7z" />
-    <glyph glyph-name="first-aid" unicode="&#xf479;" horiz-adv-x="576" 
-d="M0 368c0 26.5 21.5 48 48 48h48v-448h-48c-26.5 0 -48 21.5 -48 48v352zM128 -32v448h320v-448h-320zM192 216v-48c0 -4.40039 3.59961 -8 8 -8h56v-56c0 -4.40039 3.59961 -8 8 -8h48c4.40039 0 8 3.59961 8 8v56h56c4.40039 0 8 3.59961 8 8v48
-c0 4.40039 -3.59961 8 -8 8h-56v56c0 4.40039 -3.59961 8 -8 8h-48c-4.40039 0 -8 -3.59961 -8 -8v-56h-56c-4.40039 0 -8 -3.59961 -8 -8zM528 416c26.5 0 48 -21.5 48 -48v-352c0 -26.5 -21.5 -48 -48 -48h-48v448h48z" />
-    <glyph glyph-name="hospital-alt" unicode="&#xf47d;" horiz-adv-x="576" 
-d="M544 352c17.7002 0 32 -14.2998 32 -32v-368c0 -8.7998 -7.2002 -16 -16 -16h-544c-8.7998 0 -16 7.2002 -16 16v368c0 17.7002 14.2998 32 32 32h128v64c0 17.7002 14.2998 32 32 32h192c17.7002 0 32 -14.2998 32 -32v-64h128zM160 12v40c0 6.59961 -5.40039 12 -12 12
-h-40c-6.59961 0 -12 -5.40039 -12 -12v-40c0 -6.59961 5.40039 -12 12 -12h40c6.59961 0 12 5.40039 12 12zM160 140v40c0 6.59961 -5.40039 12 -12 12h-40c-6.59961 0 -12 -5.40039 -12 -12v-40c0 -6.59961 5.40039 -12 12 -12h40c6.59961 0 12 5.40039 12 12zM320 12v40
-c0 6.59961 -5.40039 12 -12 12h-40c-6.59961 0 -12 -5.40039 -12 -12v-40c0 -6.59961 5.40039 -12 12 -12h40c6.59961 0 12 5.40039 12 12zM320 140v40c0 6.59961 -5.40039 12 -12 12h-40c-6.59961 0 -12 -5.40039 -12 -12v-40c0 -6.59961 5.40039 -12 12 -12h40
-c6.59961 0 12 5.40039 12 12zM336 310v20c0 3.2998 -2.7002 6 -6 6h-26v26c0 3.2998 -2.7002 6 -6 6h-20c-3.2998 0 -6 -2.7002 -6 -6v-26h-26c-3.2998 0 -6 -2.7002 -6 -6v-20c0 -3.2998 2.7002 -6 6 -6h26v-26c0 -3.2998 2.7002 -6 6 -6h20c3.2998 0 6 2.7002 6 6v26h26
-c3.2998 0 6 2.7002 6 6zM480 12v40c0 6.59961 -5.40039 12 -12 12h-40c-6.59961 0 -12 -5.40039 -12 -12v-40c0 -6.59961 5.40039 -12 12 -12h40c6.59961 0 12 5.40039 12 12zM480 140v40c0 6.59961 -5.40039 12 -12 12h-40c-6.59961 0 -12 -5.40039 -12 -12v-40
-c0 -6.59961 5.40039 -12 12 -12h40c6.59961 0 12 5.40039 12 12z" />
-    <glyph glyph-name="hospital-symbol" unicode="&#xf47e;" 
-d="M256 448c141.4 0 256 -114.6 256 -256s-114.6 -256 -256 -256s-256 114.6 -256 256s114.6 256 256 256zM368 72v240c0 4.40039 -3.59961 8 -8 8h-48c-4.40039 0 -8 -3.59961 -8 -8v-88h-96v88c0 4.40039 -3.59961 8 -8 8h-48c-4.40039 0 -8 -3.59961 -8 -8v-240
-c0 -4.40039 3.59961 -8 8 -8h48c4.40039 0 8 3.59961 8 8v88h96v-88c0 -4.40039 3.59961 -8 8 -8h48c4.40039 0 8 3.59961 8 8z" />
-    <glyph glyph-name="id-card-alt" unicode="&#xf47f;" horiz-adv-x="576" 
-d="M528 384c26.5 0 48 -21.5 48 -48v-352c0 -26.5 -21.5 -48 -48 -48h-480c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h144v-96h192v96h144zM288 224c-35.2998 0 -64 -28.7002 -64 -64s28.7002 -64 64 -64s64 28.7002 64 64s-28.7002 64 -64 64zM381.3 0
-c10.4004 0 18.7998 10 15.6006 19.7998c-8.40039 25.7002 -32.5 44.2002 -60.9004 44.2002h-8.2002c-12.2002 -5.09961 -25.7002 -8 -39.7998 -8s-27.5 2.90039 -39.7998 8h-8.2002c-28.5 0 -52.5996 -18.5996 -60.9004 -44.2002
-c-3.19922 -9.7998 5.2002 -19.7998 15.6006 -19.7998h186.6zM352 416v-96h-128v96c0 17.7002 14.2998 32 32 32h64c17.7002 0 32 -14.2998 32 -32z" />
-    <glyph glyph-name="notes-medical" unicode="&#xf481;" horiz-adv-x="384" 
-d="M336 384c26.5 0 48 -21.5 48 -48v-352c0 -26.5 -21.5 -48 -48 -48h-288c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h80c0 35.2998 28.7002 64 64 64s64 -28.7002 64 -64h80zM192 408c-13.2998 0 -24 -10.7002 -24 -24s10.7002 -24 24 -24s24 10.7002 24 24
-s-10.7002 24 -24 24zM288 104v48c0 4.40039 -3.59961 8 -8 8h-56v56c0 4.40039 -3.59961 8 -8 8h-48c-4.40039 0 -8 -3.59961 -8 -8v-56h-56c-4.40039 0 -8 -3.59961 -8 -8v-48c0 -4.40039 3.59961 -8 8 -8h56v-56c0 -4.40039 3.59961 -8 8 -8h48c4.40039 0 8 3.59961 8 8
-v56h56c4.40039 0 8 3.59961 8 8zM288 296v16c0 4.40039 -3.59961 8 -8 8h-176c-4.40039 0 -8 -3.59961 -8 -8v-16c0 -4.40039 3.59961 -8 8 -8h176c4.40039 0 8 3.59961 8 8z" />
-    <glyph glyph-name="pallet" unicode="&#xf482;" horiz-adv-x="640" 
-d="M144 192c-8.7998 0 -16 7.2002 -16 16v224c0 8.7998 7.2002 16 16 16h112v-128l64 32l64 -32v128h112c8.7998 0 16 -7.2002 16 -16v-224c0 -8.7998 -7.2002 -16 -16 -16h-352zM624 64h-48v-64h48c8.7998 0 16 -7.2002 16 -16v-32c0 -8.7998 -7.2002 -16 -16 -16h-608
-c-8.7998 0 -16 7.2002 -16 16v32c0 8.7998 7.2002 16 16 16h48v64h-48c-8.7998 0 -16 7.2002 -16 16v32c0 8.7998 7.2002 16 16 16h608c8.7998 0 16 -7.2002 16 -16v-32c0 -8.7998 -7.2002 -16 -16 -16zM288 0v64h-160v-64h160zM512 0v64h-160v-64h160z" />
-    <glyph glyph-name="pills" unicode="&#xf484;" horiz-adv-x="576" 
-d="M112 416c61.9004 0 112 -50.0996 112 -112v-224c0 -61.9004 -50.0996 -112 -112 -112s-112 50.0996 -112 112v224c0 61.9004 50.0996 112 112 112zM160 192v112c0 26.5 -21.5 48 -48 48s-48 -21.5 -48 -48v-112h96zM299.7 221.7l210.8 -210.8
-c3.5 -3.5 3.2002 -9.40039 -0.799805 -12.3008c-62.5 -45.2998 -150.101 -40.3994 -206.4 15.9004s-61.2002 143.9 -15.8994 206.4c2.89941 3.89941 8.7998 4.2998 12.2998 0.799805zM529.5 240.7c56.4004 -56.2998 61.2002 -143.8 15.9004 -206.4
-c-2.90039 -3.89941 -8.80078 -4.2998 -12.3008 -0.799805l-210.8 210.8c-3.5 3.5 -3.2002 9.40039 0.799805 12.2998c62.5 45.3008 150.101 40.4004 206.4 -15.8994z" />
-    <glyph glyph-name="prescription-bottle" unicode="&#xf485;" horiz-adv-x="384" 
-d="M32 256v64h320v-352c0 -17.5996 -14.4004 -32 -32 -32h-256c-17.5996 0 -32 14.4004 -32 32v64h120c4.40039 0 8 3.59961 8 8v16c0 4.40039 -3.59961 8 -8 8h-120v64h120c4.40039 0 8 3.59961 8 8v16c0 4.40039 -3.59961 8 -8 8h-120v64h120c4.40039 0 8 3.59961 8 8v16
-c0 4.40039 -3.59961 8 -8 8h-120zM360 448c13.2002 0 24 -10.7998 24 -24v-48c0 -13.2002 -10.7998 -24 -24 -24h-336c-13.2002 0 -24 10.7998 -24 24v48c0 13.2002 10.7998 24 24 24h336z" />
-    <glyph glyph-name="prescription-bottle-alt" unicode="&#xf486;" horiz-adv-x="384" 
-d="M360 448c13.2002 0 24 -10.7998 24 -24v-48c0 -13.2002 -10.7998 -24 -24 -24h-336c-13.2002 0 -24 10.7998 -24 24v48c0 13.2002 10.7998 24 24 24h336zM32 -32v352h320v-352c0 -17.5996 -14.4004 -32 -32 -32h-256c-17.5996 0 -32 14.4004 -32 32zM96 152v-48
-c0 -4.40039 3.59961 -8 8 -8h56v-56c0 -4.40039 3.59961 -8 8 -8h48c4.40039 0 8 3.59961 8 8v56h56c4.40039 0 8 3.59961 8 8v48c0 4.40039 -3.59961 8 -8 8h-56v56c0 4.40039 -3.59961 8 -8 8h-48c-4.40039 0 -8 -3.59961 -8 -8v-56h-56c-4.40039 0 -8 -3.59961 -8 -8z
-" />
-    <glyph glyph-name="procedures" unicode="&#xf487;" horiz-adv-x="640" 
-d="M528 224c61.9004 0 112 -50.0996 112 -112v-160c0 -8.7998 -7.2002 -16 -16 -16h-32c-8.7998 0 -16 7.2002 -16 16v48h-512v-48c0 -8.7998 -7.2002 -16 -16 -16h-32c-8.7998 0 -16 7.2002 -16 16v352c0 8.7998 7.2002 16 16 16h32c8.7998 0 16 -7.2002 16 -16v-240h192
-v144c0 8.7998 7.2002 16 16 16h256zM136 352c-4.40039 0 -8 3.59961 -8 8v16c0 4.40039 3.59961 8 8 8h140.9c3.09961 0 5.7998 -1.7002 7.19922 -4.40039l19.9004 -39.7998l49.7002 99.4004c5.89941 11.7998 22.7002 11.7998 28.5996 0l27.6006 -55.2002h102.1
-c8.7998 0 16 -7.2002 16 -16s-7.2002 -16 -16 -16h-121.9l-22.0996 44.2002l-49.7002 -99.4004c-5.89941 -11.7998 -22.7002 -11.7998 -28.5996 0l-27.6006 55.2002h-126.1zM160 96c-35.2998 0 -64 28.7002 -64 64s28.7002 64 64 64s64 -28.7002 64 -64
-s-28.7002 -64 -64 -64z" />
-    <glyph glyph-name="shipping-fast" unicode="&#xf48b;" horiz-adv-x="640" 
-d="M624 96c8.7998 0 16 -7.2002 16 -16v-32c0 -8.7998 -7.2002 -16 -16 -16h-48c0 -53 -43 -96 -96 -96s-96 43 -96 96h-128c0 -53 -43 -96 -96 -96s-96 43 -96 96v128h152c4.40039 0 8 3.59961 8 8v16c0 4.40039 -3.59961 8 -8 8h-208c-4.40039 0 -8 3.59961 -8 8v16
-c0 4.40039 3.59961 8 8 8h240c4.40039 0 8 3.59961 8 8v16c0 4.40039 -3.59961 8 -8 8h-208c-4.40039 0 -8 3.59961 -8 8v16c0 4.40039 3.59961 8 8 8h240c4.40039 0 8 3.59961 8 8v16c0 4.40039 -3.59961 8 -8 8h-272c-4.40039 0 -8 3.59961 -8 8v16
-c0 4.40039 3.59961 8 8 8h56v48c0 26.5 21.5 48 48 48h256c26.5 0 48 -21.5 48 -48v-48h44.0996c12.7002 0 24.9004 -5.09961 33.9004 -14.0996l99.9004 -99.9004c9 -9 14.0996 -21.2002 14.0996 -33.9004v-108.1h16zM160 -16c26.5 0 48 21.5 48 48s-21.5 48 -48 48
-s-48 -21.5 -48 -48s21.5 -48 48 -48zM480 -16c26.5 0 48 21.5 48 48s-21.5 48 -48 48s-48 -21.5 -48 -48s21.5 -48 48 -48zM560 192v12.0996l-99.9004 99.9004h-44.0996v-112h144z" />
-    <glyph glyph-name="smoking" unicode="&#xf48d;" horiz-adv-x="640" 
-d="M632 96c4.40039 0 8 -3.59961 8 -8v-144c0 -4.40039 -3.59961 -8 -8 -8h-48c-4.40039 0 -8 3.59961 -8 8v144c0 4.40039 3.59961 8 8 8h48zM553.3 360.9c54.2998 -36.4004 86.7002 -97.1006 86.7002 -162.601v-30.2998c0 -4.40039 -3.59961 -8 -8 -8h-48
-c-4.40039 0 -8 3.59961 -8 8v30.2998c0 50.2002 -25.2002 96.7002 -67.4004 124c-18.3994 12 -28.5996 33.4004 -28.5996 55.4004v62.2998c0 4.40039 3.59961 8 8 8h48c4.40039 0 8 -3.59961 8 -8v-62.2998c0 -6.7998 3.59961 -13 9.2998 -16.7998zM432 96
-c8.7998 0 16 -7.2002 16 -16v-128c0 -8.7998 -7.2002 -16 -16 -16h-384c-26.5 0 -48 21.5 -48 48v64c0 26.5 21.5 48 48 48h384zM400 -16v64h-176v-64h176zM487.7 306.4c35.2998 -24.7002 56.2998 -64.8008 56.2998 -108.101v-30.2998c0 -4.40039 -3.59961 -8 -8 -8h-48
-c-4.40039 0 -8 3.59961 -8 8v30.2998c0 27.4004 -13.2998 52.9004 -35.7002 68.6006c-35.7002 25.0996 -60.2998 63 -60.2998 106.699v66.4004c0 4.40039 3.59961 8 8 8h48c4.40039 0 8 -3.59961 8 -8v-62.2998c0 -29 15.7998 -54.7002 39.7002 -71.2998zM536 96
-c4.40039 0 8 -3.59961 8 -8v-144c0 -4.40039 -3.59961 -8 -8 -8h-48c-4.40039 0 -8 3.59961 -8 8v144c0 4.40039 3.59961 8 8 8h48z" />
-    <glyph glyph-name="syringe" unicode="&#xf48e;" 
-d="M201.5 273.2l64.9004 65l135.699 -135.7l-181.899 -181.9c-17.5 -17.5996 -41.5 -25.5996 -65.4004 -23l-63.5996 7.10059l-66.2998 -66.2998c-3.10059 -3.10059 -8.2002 -3.10059 -11.3008 0l-11.2998 11.2998c-3.09961 3.09961 -3.09961 8.2002 0 11.2998
-l66.4004 66.4004l-7.10059 63.5996c-2.59961 24.2998 5.7002 48.0996 23 65.4004l26.4004 26.3994l55.7998 -55.8994c3.10059 -3.10059 8.2002 -3.10059 11.2998 0l11.3008 11.2998c3.09961 3.09961 3.09961 8.2002 0 11.2998l-55.8008 55.7998l45.3008 45.2998
-l55.6992 -55.7998c3.10059 -3.09961 8.2002 -3.09961 11.3008 0l11.2998 11.2998c3.09961 3.10059 3.09961 8.2002 0 11.3008zM509.7 366.5c3.09961 -3.2002 3.09961 -8.2002 0 -11.4004l-11.2998 -11.2998c-3.10059 -3.09961 -8.2002 -3.09961 -11.3008 0l-28.2998 28.2998
-l-45.2998 -45.2998l73.5 -73.5c3.09961 -3.09961 3.09961 -8.2002 0 -11.2998l-33.9004 -34c-3.09961 -3.09961 -8.19922 -3.09961 -11.2998 0l-17 17l-135.7 135.9l-17 17c-3.09961 3.09961 -3.09961 8.19922 0 11.2998l33.9004 33.8994
-c3.09961 3.10059 8.2002 3.10059 11.2998 0l17 -17l56.6006 -56.5996l45.2998 45.2998l-28.2998 28.2998c-3.10059 3.10059 -3.10059 8.2002 0 11.3008l11.2998 11.2998c3.09961 3.09961 8.2002 3.09961 11.2998 0z" />
-    <glyph glyph-name="tablets" unicode="&#xf490;" horiz-adv-x="640" 
-d="M160 256c81.0996 0 147.5 -58.5 160 -134.7c0.799805 -4.7998 -3.2998 -9.2998 -8.2998 -9.2998h-303.3c-5 0 -9.10059 4.5 -8.30078 9.2998c12.4004 76.2002 78.8008 134.7 159.9 134.7zM311.6 80c5 0 9.10059 -4.5 8.30078 -9.2998
-c-12.4004 -76.2002 -78.8008 -134.7 -159.9 -134.7s-147.5 58.5 -159.9 134.7c-0.799805 4.7998 3.30078 9.2998 8.30078 9.2998h303.199zM593.4 401.4c56.5 -56.5 61.3994 -144.2 15.8994 -206.9c-2.7998 -4 -8.7998 -4.2998 -12.2998 -0.799805l-211.3 211.399
-c-3.5 3.40039 -3.2002 9.40039 0.799805 12.3008c62.7002 45.3994 150.4 40.5 206.9 -16zM363 382.3l211.3 -211.3c3.5 -3.40039 3.2002 -9.40039 -0.799805 -12.2998c-62.7002 -45.5 -150.4 -40.6006 -206.9 15.8994c-56.3994 56.5 -61.2998 144.2 -15.8994 206.9
-c2.7998 4 8.7998 4.2998 12.2998 0.799805z" />
-    <glyph glyph-name="thermometer" unicode="&#xf491;" 
-d="M476.8 427.6c49.4004 -40.6992 42.1006 -107.3 7.2002 -142.199l-254.2 -253.301h-99.8994l-89 -89c-9.30078 -9.39941 -24.5 -9.39941 -33.9004 0c-9.40039 9.30078 -9.40039 24.5 0 33.9004l89 89v100.9l45.2998 45.6992l50.1006 -50.1992
-c3.09961 -3.10059 8.19922 -3.10059 11.2998 0l11.2998 11.2998c3.09961 3.09961 3.09961 8.2002 0 11.2998l-50.0996 50.2002l45.0996 45.3994l50.2998 -50.1992c3.10059 -3.10059 8.2002 -3.10059 11.2998 0l11.3008 11.2998c3.09961 3.09961 3.09961 8.2002 0 11.2998
-l-50.3008 50.4004l45.1006 45.3994l50.3994 -50.5c3.10059 -3.09961 8.2002 -3.09961 11.3008 0l11.2998 11.2998c3.09961 3.10059 3.09961 8.2002 0 11.3008l-50.5 50.5l45.7002 46c36.3994 36.5 94.3994 40.8994 131.899 10.1992z" />
-    <glyph glyph-name="vial" unicode="&#xf492;" horiz-adv-x="480" 
-d="M477.7 261.9c3.09961 -3.10059 3.09961 -8.2002 0 -11.2002l-34 -33.9004c-3.10059 -3.09961 -8.2002 -3.09961 -11.2998 0l-11.2002 11.1006l-246.3 -245.7c-20.1006 -20.1006 -46.5 -30.1006 -72.9004 -30.1006c-28.9004 -0.0996094 -57.7998 11.9004 -78.4004 35.9004
-c-35.6992 41.5 -29.3994 104.8 9.40039 143.5l242.4 241.9l-11.2002 11.0996c-3.10059 3.09961 -3.10059 8.2002 0 11.2998l34 33.9004c3.09961 3.09961 8.2002 3.09961 11.2998 0zM318 192l69.5 69.4004l-78.5 78.2998l-148 -147.7h157z" />
-    <glyph glyph-name="vials" unicode="&#xf493;" horiz-adv-x="640" 
-d="M72 384c-4.40039 0 -8 3.59961 -8 8v48c0 4.40039 3.59961 8 8 8h208c4.40039 0 8 -3.59961 8 -8v-48c0 -4.40039 -3.59961 -8 -8 -8h-24v-240c0 -44.0996 -35.9004 -80 -80 -80s-80 35.9004 -80 80v240h-24zM144 384v-96h64v96h-64zM624 0c8.7998 0 16 -7.2002 16 -16
-v-32c0 -8.7998 -7.2002 -16 -16 -16h-608c-8.7998 0 -16 7.2002 -16 16v32c0 8.7998 7.2002 16 16 16h608zM360 384c-4.40039 0 -8 3.59961 -8 8v48c0 4.40039 3.59961 8 8 8h208c4.40039 0 8 -3.59961 8 -8v-48c0 -4.40039 -3.59961 -8 -8 -8h-24v-240
-c0 -44.0996 -35.9004 -80 -80 -80s-80 35.9004 -80 80v240h-24zM432 384v-96h64v96h-64z" />
-    <glyph glyph-name="warehouse" unicode="&#xf494;" horiz-adv-x="640" 
-d="M504 96c4.40039 0 8 -3.59961 8 -8v-48c0 -4.40039 -3.59961 -8 -8 -8h-367.7c-4.39941 0 -8 3.59961 -8 8l0.100586 48c0 4.40039 3.59961 8 8 8h367.6zM504 0c4.40039 0 8 -3.59961 8 -8v-48c0 -4.40039 -3.59961 -8 -8 -8h-368c-4.40039 0 -8 3.59961 -8 8
-l0.0996094 48c0 4.40039 3.60059 8 8 8h367.9zM504 192c4.40039 0 8 -3.59961 8 -8v-48c0 -4.40039 -3.59961 -8 -8 -8h-367.5c-4.40039 0 -8 3.59961 -8 8l0.0996094 48c0 4.40039 3.60059 8 8 8h367.4zM610.5 331c17.7998 -7.5 29.5 -24.9004 29.5 -44.2998v-342.7
-c0 -4.40039 -3.59961 -8 -8 -8h-80c-4.40039 0 -8 3.59961 -8 8v248c0 17.5996 -14.5996 32 -32.5996 32h-382.801c-18 0 -32.5996 -14.4004 -32.5996 -32v-248c0 -4.40039 -3.59961 -8 -8 -8h-80c-4.40039 0 -8 3.59961 -8 8v342.7c0 19.3994 11.7002 36.7998 29.5 44.2998
-l272 113.3c5.6748 2.35449 11.959 3.6543 18.4814 3.6543s12.7432 -1.2998 18.4189 -3.6543z" />
-    <glyph glyph-name="weight" unicode="&#xf496;" 
-d="M448 384c35.29 0 64 -28.71 64 -64v-320c0 -35.29 -28.71 -64 -64 -64h-384c-35.29 0 -64 28.71 -64 64v320c0 35.29 28.71 64 64 64h25.9805c-16.4209 -28.2803 -25.9805 -61.0098 -25.9805 -96c0 -105.87 86.1299 -192 192 -192s192 86.1299 192 192
-c0 34.9902 -9.55957 67.7197 -25.9805 96h25.9805zM256 128c-88.3701 0 -160 71.6299 -160 160s71.6299 160 160 160s160 -71.6299 160 -160s-71.6299 -160 -160 -160zM255.7 279.94c-21.9404 -0.170898 -39.7002 -17.96 -39.7002 -39.9404c0 -22.0898 17.9102 -40 40 -40
-s40 17.9102 40 40c0 10.5498 -4.26953 20 -10.9502 27.1602l33.6699 78.5498c3.4707 8.11035 -0.290039 17.5205 -8.41016 21c-8.08984 3.50977 -17.5293 -0.240234 -21.0293 -8.41016z" />
-    <glyph glyph-name="x-ray" unicode="&#xf497;" horiz-adv-x="640" 
-d="M240 64c8.7998 0 16 -7.2002 16 -16s-7.2002 -16 -16 -16s-16 7.2002 -16 16s7.2002 16 16 16zM400 32c-8.7998 0 -16 7.2002 -16 16s7.2002 16 16 16s16 -7.2002 16 -16s-7.2002 -16 -16 -16zM624 448c8.7998 0 16 -7.2002 16 -16v-32c0 -8.7998 -7.2002 -16 -16 -16
-h-608c-8.7998 0 -16 7.2002 -16 16v32c0 8.7998 7.2002 16 16 16h608zM624 0c8.7998 0 16 -7.2002 16 -16v-32c0 -8.7998 -7.2002 -16 -16 -16h-608c-8.7998 0 -16 7.2002 -16 16v32c0 8.7998 7.2002 16 16 16h48v352h512v-352h48zM480 200v16c0 4.40039 -3.59961 8 -8 8
-h-136v32h104c4.40039 0 8 3.59961 8 8v16c0 4.40039 -3.59961 8 -8 8h-104v24c0 4.40039 -3.59961 8 -8 8h-16c-4.40039 0 -8 -3.59961 -8 -8v-24h-104c-4.40039 0 -8 -3.59961 -8 -8v-16c0 -4.40039 3.59961 -8 8 -8h104v-32h-136c-4.40039 0 -8 -3.59961 -8 -8v-16
-c0 -4.40039 3.59961 -8 8 -8h136v-32h-104c-4.40039 0 -8 -3.59961 -8 -8v-16c0 -4.40039 3.59961 -8 8 -8h104v-32h-64c-26.5 0 -48 -21.5 -48 -48s21.5 -48 48 -48s48 21.5 48 48v16h64v-16c0 -26.5 21.5 -48 48 -48s48 21.5 48 48s-21.5 48 -48 48h-64v32h104
-c4.40039 0 8 3.59961 8 8v16c0 4.40039 -3.59961 8 -8 8h-104v32h136c4.40039 0 8 3.59961 8 8z" />
-    <glyph glyph-name="box-open" unicode="&#xf49e;" horiz-adv-x="640" 
-d="M425.7 192c4.5 0 9 0.599609 13.2998 1.90039l137 39.0996v-178c0 -14.5996 -10 -27.4004 -24.2002 -31l-216.399 -54.0996c-10.1006 -2.5 -20.8008 -2.5 -31 0l-216.2 54.0996c-14.2002 3.5 -24.2002 16.2998 -24.2002 31v178l137 -39.2002
-c4.2998 -1.2998 8.7998 -1.89941 13.2998 -1.89941c16.9004 0 32.7998 9 41.5 23.5l64.2002 106.6l64.2998 -106.6c8.60059 -14.4004 24.5 -23.4004 41.4004 -23.4004zM638.3 304.2c4.5 -9.2002 -0.299805 -20.2002 -10.2002 -23.1006l-197.899 -56.5
-c-7.10059 -2 -14.7002 1 -18.5 7.30078l-91.7002 152.1l250.1 31.9004c6.90039 0.899414 13.6006 -2.7002 16.7002 -8.90039zM53.2002 407c3.09961 6.2002 9.7002 9.7002 16.5996 8.90039l250.2 -31.9004l-91.7998 -152c-3.7998 -6.2998 -11.4004 -9.2998 -18.5 -7.2998
-l-197.9 56.5c-9.7998 2.7998 -14.7002 13.7998 -10.0996 23z" />
-    <glyph glyph-name="comment-dots" unicode="&#xf4ad;" 
-d="M256 416c141.4 0 256 -93.0996 256 -208s-114.6 -208 -256 -208c-38.4004 0 -74.7002 7.09961 -107.4 19.4004c-24.5996 -19.6006 -74.2998 -51.4004 -140.6 -51.4004c-3.2002 0 -6 1.7998 -7.2998 4.7998s-0.700195 6.40039 1.5 8.7002
-c0.5 0.5 42.2998 45.4004 54.7998 95.7998c-35.5996 35.7002 -57 81.1006 -57 130.7c0 114.9 114.6 208 256 208zM128 176c17.7002 0 32 14.2998 32 32s-14.2998 32 -32 32s-32 -14.2998 -32 -32s14.2998 -32 32 -32zM256 176c17.7002 0 32 14.2998 32 32
-s-14.2998 32 -32 32s-32 -14.2998 -32 -32s14.2998 -32 32 -32zM384 176c17.7002 0 32 14.2998 32 32s-14.2998 32 -32 32s-32 -14.2998 -32 -32s14.2998 -32 32 -32z" />
-    <glyph glyph-name="comment-slash" unicode="&#xf4b3;" horiz-adv-x="640" 
-d="M64 208c0 18.5996 3.2998 36.5 8.90039 53.5996l325.5 -251.6c-24.7002 -6.40039 -51 -10 -78.4004 -10c-38.4004 0 -74.7002 7.09961 -107.4 19.4004c-24.5996 -19.6006 -74.2998 -51.4004 -140.6 -51.4004c-3.2002 0 -6 1.90039 -7.2998 4.7998
-c-1.2998 3 -0.700195 6.40039 1.5 8.7002c0.5 0.599609 42.2002 45.5 54.7998 95.7998c-35.5996 35.7002 -57 81.1006 -57 130.7zM633.8 -10.0996c7 -5.40039 8.2998 -15.5 2.90039 -22.3008l-19.6006 -25.2998c-5.5 -7 -15.5 -8.2002 -22.5 -2.7998l-588.399 454.7
-c-7 5.39941 -8.2002 15.3994 -2.7998 22.3994l19.5996 25.2002c5.5 7 15.5 8.2002 22.5 2.7998l105.1 -81.2998c45.2002 32.6006 104.301 52.7002 169.4 52.7002c141.4 0 256 -93.0996 256 -208c0 -49.2002 -21.4004 -94.0996 -56.5996 -129.7z" />
-    <glyph glyph-name="couch" unicode="&#xf4b8;" horiz-adv-x="640" 
-d="M160 224c0 35.2998 -28.7002 64 -64 64h-32c0 53 43 96 96 96h320c53 0 96 -43 96 -96h-32c-35.2998 0 -64 -28.7002 -64 -64v-64h-320v64zM576 256c35.2998 0 64 -28.7002 64 -64c0 -23.5996 -13 -44 -32 -55.0996v-120.9c0 -8.7998 -7.2002 -16 -16 -16h-64
-c-8.7998 0 -16 7.2002 -16 16v16h-384v-16c0 -8.7998 -7.2002 -16 -16 -16h-64c-8.7998 0 -16 7.2002 -16 16v120.9c-19 11.0996 -32 31.5 -32 55.0996c0 35.2998 28.7002 64 64 64h32c17.7002 0 32 -14.2998 32 -32v-96h384v96c0 17.7002 14.2998 32 32 32h32z" />
-    <glyph glyph-name="donate" unicode="&#xf4b9;" 
-d="M256 32c-114.9 0 -208 93.0996 -208 208s93.0996 208 208 208s208 -93.0996 208 -208s-93.0996 -208 -208 -208zM233.8 350.6c-32.7002 -0.899414 -59 -28.3994 -59.0996 -62.3994c0 -27.7002 18 -52.4004 43.7002 -60.1006l62.2998 -18.6992
-c7.09961 -2.10059 12.0996 -9.40039 12.0996 -17.6006c0 -10.0996 -7.2998 -18.2998 -16.2998 -18.2998h-38.9004c-6.39941 0 -12.3994 1.7002 -17.7998 5.09961c-4.5 2.80078 -10.2002 2.7002 -14 -1l-16.2998 -15.5c-5 -4.7998 -4.40039 -13 1.2002 -17.0996
-c12.5 -9.2998 27.5 -14.5996 43 -15.4004v-17c0 -9.19922 7.39941 -16.5996 16.5996 -16.5996h11.1006c9.19922 0 16.5996 7.40039 16.5996 16.5996v16.8008c32.7002 0.899414 59.0996 28.3994 59.0996 62.3994c0 27.7002 -18 52.4004 -43.6992 60.1006l-62.3008 18.6992
-c-7.09961 2.10059 -12.0996 9.40039 -12.0996 17.6006c0 10.0996 7.2998 18.2998 16.2998 18.2998h38.9004c6.39941 0 12.3994 -1.7002 17.7998 -5.09961c4.5 -2.80078 10.2002 -2.7002 14 1l16.2998 15.5c5 4.7998 4.40039 13 -1.2002 17.0996
-c-12.5 9.2998 -27.5 14.5996 -43 15.4004v17c0 9.19922 -7.39941 16.5996 -16.5996 16.5996h-11.0996c-9.2002 0 -16.6006 -7.40039 -16.6006 -16.5996v-16.8008zM480 96c17.7002 0 32 -14.2998 32 -32v-96c0 -17.7002 -14.2998 -32 -32 -32h-448
-c-17.7002 0 -32 14.2998 -32 32v96c0 17.7002 14.2998 32 32 32h32.4004c19.6992 -26 44.5996 -47.7002 73 -64h-63.8008c-5.2998 0 -9.59961 -3.59961 -9.59961 -8v-16c0 -4.40039 4.2998 -8 9.59961 -8h364.7c5.2998 0 9.60059 3.59961 9.60059 8v16
-c0 4.40039 -4.30078 8 -9.60059 8h-63.7998c28.4004 16.2998 53.4004 38 73 64h32.5z" />
-    <glyph glyph-name="dove" unicode="&#xf4ba;" 
-d="M288 280.8c-50.7998 10.5 -96.5996 36.7998 -130.8 75.1006c11.2002 32.3994 27.7998 61.5996 48.8994 86.5c8.80078 10.5 25.7002 5.19922 27.8008 -8.30078c7 -45.8994 25.8994 -88.8994 54.0996 -125.199v-28.1006zM400 384h112l-32 -64v-160.1
-c0 -88.4004 -71.5996 -159.9 -160 -159.9h-76.9004l-65.1992 -56.0996c-6.10059 -5.30078 -14.1006 -8.2002 -22.1006 -7.90039c-92.7998 3.7998 -135.8 49.4004 -153.2 76.2998c-6 9.2998 -1.19922 21.7002 9.5 24.4004l143.9 36
-c-12.7998 9.59961 -25.7002 20.0996 -38.9004 32.7998c-51 49 -85.0996 115.1 -85.0996 185.9c0 41.3994 9.40039 80.5996 26 115.699c5.7998 12.3008 23.5 11.6006 29 -0.899414c40 -91.2002 128.6 -155.5 233 -161.7v59.4004c0 44.1992 35.7998 80.0996 80 80.0996z
-M400 287.9c8.7998 0 16 7.19922 16 16c0 8.7998 -7.2002 16 -16 16s-16 -7.2002 -16 -16c0 -8.80078 7.2002 -16 16 -16z" />
-    <glyph glyph-name="hand-holding" unicode="&#xf4bd;" horiz-adv-x="576" 
-d="M565.3 119.9c15.1006 -13.6006 13.9004 -36.8008 -1.2998 -48.9004l-151.2 -121c-11.3994 -9.09961 -25.5 -14 -40 -14h-356.8c-8.7998 0 -16 7.2002 -16 16v96c0 8.7998 7.2002 16 16 16h55.4004l46.5 37.7002c21 17 47.0996 26.2998 74.0996 26.2998h160
-c19.5 0 34.9004 -17.4004 31.5996 -37.4004c-2.59961 -15.6992 -17.3994 -26.5996 -33.2998 -26.5996h-78.2998c-8.7998 0 -16 -7.2002 -16 -16s7.2002 -16 16 -16h118.3c14.6006 0 28.7002 4.90039 40 14l92.4004 73.9004c12.3994 10 30.7998 10.6992 42.5996 0z" />
-    <glyph glyph-name="hand-holding-heart" unicode="&#xf4be;" horiz-adv-x="576" 
-d="M275.3 197.5l-108.899 114.2c-31.6006 33.2002 -29.7002 88.2002 5.59961 118.8c30.7998 26.7002 76.7002 21.9004 104.9 -7.7998l11.0996 -11.6006l11.2002 11.7002c28.2002 29.6006 74.0996 34.4004 104.899 7.7002c35.4004 -30.5996 37.2002 -85.5996 5.60059 -118.8
-l-108.9 -114.2c-7.09961 -7.40039 -18.5 -7.40039 -25.5 0zM565.3 119.9c15.1006 -13.6006 13.9004 -36.8008 -1.2998 -48.9004l-151.2 -121c-11.3994 -9.09961 -25.5 -14 -40 -14h-356.8c-8.7998 0 -16 7.2002 -16 16v96c0 8.7998 7.2002 16 16 16h55.4004l46.5 37.7002
-c21 17 47.0996 26.2998 74.0996 26.2998h160c19.5 0 34.9004 -17.4004 31.5996 -37.4004c-2.59961 -15.6992 -17.3994 -26.5996 -33.2998 -26.5996h-78.2998c-8.7998 0 -16 -7.2002 -16 -16s7.2002 -16 16 -16h118.3c14.6006 0 28.7002 4.90039 40 14l92.4004 73.9004
-c12.3994 10 30.7998 10.6992 42.5996 0z" />
-    <glyph glyph-name="hand-holding-usd" unicode="&#xf4c0;" horiz-adv-x="576" 
-d="M271.06 303.7c-24.0596 6.39941 -43.4297 24.7002 -46.5693 47.7002c-4.33984 32 20.6201 59.3994 53.5098 63v17.5996c0 8.7998 7.82031 16 17.3701 16h17.3701c9.5498 0 17.3701 -7.2002 17.3701 -16v-17.7197c12.457 -1.28516 24.2842 -5.35938 34.5195 -11.5
-c3.32227 -2.00098 5.52734 -5.64746 5.52734 -9.80469c0 -2.18945 -0.617188 -4.23633 -1.6875 -5.97559c-0.592773 -0.978516 -1.31836 -1.8457 -2.16992 -2.59961l-19 -17.5c-4.01953 -3.7002 -10.0693 -4.2002 -15.2998 -2
-c-3.46289 1.4043 -7.2666 2.19336 -11.2305 2.19922h-35.5996c-5.03027 0 -9.12012 -3.7998 -9.12012 -8.39941c0.12207 -3.94727 2.91699 -7.23145 6.62988 -8.10059l54.2705 -14.2998c24.0996 -6.39941 43.4102 -24.7002 46.5596 -47.7002
-c4.33984 -32 -20.5693 -59.3994 -53.5 -63v-17.5996c0 -8.7998 -7.83008 -16 -17.3799 -16h-17.3701c-9.54004 0 -17.3701 7.2002 -17.3701 16v17.7002c-12.4541 1.28516 -24.2773 5.35938 -34.5098 11.5c-3.33008 1.99609 -5.54199 5.64551 -5.54199 9.80762
-c0 2.17188 0.607422 4.20312 1.66211 5.93262c0.617188 1.00098 1.36914 1.88867 2.25 2.65918l19 17.5c4.01953 3.7002 10.0596 4.2002 15.2998 2c3.45117 -1.39941 7.24121 -2.18848 11.1904 -2.19922h35.5996c5.03027 0 9.12012 3.7998 9.12012 8.39941
-c-0.121094 3.94727 -2.91602 7.23145 -6.62988 8.10059zM565.27 119.9c6.5918 -5.86328 10.7656 -14.3916 10.7656 -23.8984c0 -10.1123 -4.70117 -19.1357 -12.0352 -25.002l-151.23 -121c-10.9443 -8.74512 -24.8633 -14 -39.9482 -14h-0.0517578h-356.77
-c-8.83105 0 -16 7.16895 -16 16v96c0 8.83105 7.16895 16 16 16h55.4004l46.5 37.71c20.2197 16.4053 46.0596 26.2822 74.0996 26.29h160c17.6406 0 31.9668 -14.3066 32 -31.9404c0 -0.0410156 0.000976562 -0.0507812 0.000976562 -0.0917969
-c0 -1.83008 -0.158203 -3.62402 -0.460938 -5.36816c-2.54004 -15.6992 -17.3496 -26.5996 -33.25 -26.5996h-78.29c-8.83105 0 -16 -7.16895 -16 -16s7.16895 -16 16 -16h118.27c0.0605469 0 0.161133 0.0234375 0.22168 0.0234375
-c15.0459 0 28.8799 5.23242 39.7783 13.9766l92.4004 73.9004c12.4004 10 30.7998 10.6992 42.5996 0z" />
-    <glyph glyph-name="hand-holding-water" unicode="&#xf4c1;" horiz-adv-x="576" 
-d="M288 192c-53 0 -96 42.0996 -96 94c0 40 57.0996 120.7 83.2002 155.6c6.39941 8.5 19.2002 8.5 25.5996 0c26.1006 -34.8994 83.2002 -115.6 83.2002 -155.6c0 -51.9004 -43 -94 -96 -94zM565.3 119.9c15.1006 -13.6006 13.9004 -36.8008 -1.2998 -48.9004l-151.2 -121
-c-11.3994 -9.09961 -25.5 -14 -40 -14h-356.8c-8.7998 0 -16 7.2002 -16 16v96c0 8.7998 7.2002 16 16 16h55.4004l46.5 37.7002c21 17 47.0996 26.2998 74.0996 26.2998h160c19.5 0 34.9004 -17.4004 31.5996 -37.4004
-c-2.59961 -15.6992 -17.3994 -26.5996 -33.2998 -26.5996h-78.2998c-8.7998 0 -16 -7.2002 -16 -16s7.2002 -16 16 -16h118.3c14.6006 0 28.7002 4.90039 40 14l92.4004 73.9004c12.3994 10 30.7998 10.6992 42.5996 0z" />
-    <glyph glyph-name="hands" unicode="&#xf4c2;" horiz-adv-x="640" 
-d="M204.8 217.6l57.6006 -76.7998c16.5996 -22.2002 25.5996 -49.0996 25.5996 -76.7998v-112c0 -8.7998 -7.2002 -16 -16 -16h-131.7c-7.2002 0 -13.5 4.7002 -15.2998 11.5996c-2 7.80078 -5.40039 15.2002 -10.4004 21.7002l-104.1 134.3
-c-6.7998 8.5 -10.5 19.1006 -10.5 30v218.4c0 17.7002 14.2998 32 32 32s32 -14.2998 32 -32v-148.4l89.7998 -107.8c6 -7.2998 16.9004 -7.7998 23.6006 -1.09961l12.7998 12.7998c5.59961 5.59961 6.2998 14.5 1.5 20.9004l-38.1006 50.7998
-c-10.5996 14.0996 -7.69922 34.2002 6.40039 44.7998s34.2002 7.7002 44.7998 -6.40039zM608 384c17.7002 0 32 -14.2998 32 -32v-218.4c0 -10.8994 -3.7002 -21.5 -10.5 -30l-104.1 -134.3c-5 -6.5 -8.40039 -13.8994 -10.4004 -21.7002
-c-1.7998 -6.89941 -8.2002 -11.5996 -15.2998 -11.5996h-131.7c-8.7998 0 -16 7.2002 -16 16v112c0 27.7002 9 54.5996 25.5996 76.7998l57.6006 76.7998c10.5996 14.1006 30.7002 17 44.7998 6.40039s17 -30.7002 6.40039 -44.7998l-38.1006 -50.7998
-c-4.7998 -6.40039 -4.09961 -15.3008 1.5 -20.9004l12.7998 -12.7998c6.60059 -6.60059 17.6006 -6.10059 23.6006 1.09961l89.7998 107.8v148.4c0 17.7002 14.2998 32 32 32z" />
-    <glyph glyph-name="hands-helping" unicode="&#xf4c4;" horiz-adv-x="640" 
-d="M488 256c13.2998 0 24 -10.7002 24 -24v-48c0 -13.2998 -10.7002 -24 -24 -24h-8v-64c0 -17.7002 -14.2998 -32 -32 -32h-16c0 -35.2998 -28.7002 -64 -64 -64h-136.6l-103.4 -59.7002c-15.2998 -8.7998 -34.9004 -3.59961 -43.7002 11.7002l-80 138.6
-c-8.89941 15.3008 -3.59961 34.9004 11.7002 43.7002l80 46.2002v47.2998c0 22.4004 11.7998 43.2998 31.0996 54.7998l64.9004 39v-121.6c0 -39.7002 32.2998 -72 72 -72s72 32.2998 72 72v56h152zM635.7 293.4c8.7998 -15.3008 3.59961 -34.8008 -11.7002 -43.7002
-l-80 -46.2002v28.5c0 30.9004 -25.0996 56 -56 56h-184v-88c0 -22.0996 -17.9004 -40 -40 -40s-40 17.9004 -40 40v126.3c0 11 5.59961 21.2998 15 27.1006l33.5 20.8994c10.2002 6.2998 21.9004 9.7002 33.9004 9.7002h102.199l103.4 59.7002
-c15.2998 8.7998 34.9004 3.59961 43.7002 -11.7002z" />
-    <glyph glyph-name="parachute-box" unicode="&#xf4cd;" 
-d="M511.9 273c1.09961 -9.2002 -6.80078 -17 -16.1006 -17h-8.7002l-136.8 -151.9c0.700195 -2.69922 1.60059 -5.19922 1.60059 -8.09961v-128c0 -17.7002 -14.3008 -32 -32 -32h-128c-17.7002 0 -32 14.2998 -32 32v128c0 2.90039 0.899414 5.5 1.59961 8.09961
-l-136.7 151.9h-8.7002c-9.19922 0 -17.0996 7.90039 -16 17c9.10059 75.5 78.4004 132.3 158.301 158.7c-36.4004 -39.4004 -62.4004 -100.601 -62.4004 -175.7h-28.0996l116.6 -129.5c2.5 0.599609 4.7998 1.5 7.5 1.5h48v128h-112c0 115.2 68.9004 192 128 192
-s128 -76.7998 128 -192h-112v-128h48c2.7002 0 5 -0.900391 7.5 -1.5l116.6 129.5h-28.0996c0 75.0996 -26 136.3 -62.4004 175.7c79.9004 -26.2998 149.2 -83.1006 158.301 -158.7z" />
-    <glyph glyph-name="people-carry" unicode="&#xf4ce;" horiz-adv-x="640" 
-d="M128 352c-26.5 0 -48 21.5 -48 48s21.5 48 48 48s48 -21.5 48 -48s-21.5 -48 -48 -48zM512 352c-26.5 0 -48 21.5 -48 48s21.5 48 48 48s48 -21.5 48 -48s-21.5 -48 -48 -48zM637.7 -20.0996c6.59961 -16.4004 -1.40039 -35 -17.7998 -41.6006
-c-3.90039 -1.59961 -7.90039 -2.2998 -11.9004 -2.2998c-12.7002 0 -24.7002 7.59961 -29.7002 20.0996l-27.7002 69.2002l2 18.2002l41.1006 46.4004zM603.5 189.7c4.59961 -20 -0.799805 -41.2002 -14.4004 -56.7002l-67.1992 -75.9004l-10.1006 -92.5996
-c-1.7998 -16.4004 -15.7002 -28.5 -31.7998 -28.5c-1.2002 0 -2.2998 0.0996094 -3.5 0.200195c-17.5 1.89941 -30.2002 17.7002 -28.2998 35.2998l10.0996 92.7998c1.5 13 6.90039 25.1006 15.6006 35l43.2998 49l-17.6006 70.2998l-6.7998 -20.3994
-c-4.09961 -12.6006 -11.8994 -23.4004 -24.5 -32.6006l-51.0996 -32.5c-4.60059 -2.89941 -12.1006 -4.59961 -17.2002 -5h-160c-5.09961 0.400391 -12.5996 2.10059 -17.2002 5l-51.0996 32.5c-12.6006 9.2002 -20.4004 20.1006 -24.5 32.6006l-6.7998 20.3994
-l-17.6006 -70.2998l43.2998 -49c8.7002 -9.89941 14.1006 -22 15.6006 -35l10.0996 -92.7998c1.90039 -17.5996 -10.7002 -33.4004 -28.2998 -35.2998c-1.2002 -0.100586 -2.2998 -0.200195 -3.5 -0.200195c-16.2002 0 -30 12.2002 -31.7998 28.5l-10.1006 92.5996
-l-67.1992 75.9004c-13.7002 15.5 -19 36.7002 -14.4004 56.7002l18.4004 80.2002c4.59961 20 18.5996 36.7998 37.5 44.8994c18.5 8 38.8994 6.7002 56.0996 -3.2998c22.7002 -13.4004 39.7998 -34.4004 48.0996 -59.4004l11.3008 -33.8994l16.0996 -10.2002v96
-c0 8.7998 7.2002 16 16 16h160c8.7998 0 16 -7.2002 16 -16v-96l16 10.2002l11.2998 33.8994c8.40039 24.9004 25.4004 46 48.1006 59.4004c17.0996 10 37.5996 11.2998 56.0996 3.2998c18.9004 -8.09961 32.9004 -24.8994 37.5 -44.8994zM46.2998 89.9004l41.1006 -46.4004
-l2 -18.2002l-27.7002 -69.2002c-6.5 -16.0996 -24.7998 -24.3994 -41.6006 -17.7998c-16.3994 6.60059 -24.3994 25.2002 -17.7998 41.6006z" />
-    <glyph glyph-name="piggy-bank" unicode="&#xf4d3;" horiz-adv-x="576" 
-d="M560 224c8.7998 0 16 -7.2002 16 -16v-128c0 -8.7998 -7.2002 -16 -16 -16h-48.7002c-9 -11.9004 -19.5 -22.4004 -31.2998 -31.2998v-80.7002c0 -8.7998 -7.2002 -16 -16 -16h-64c-8.7998 0 -16 7.2002 -16 16v48h-128v-48c0 -8.7998 -7.2002 -16 -16 -16h-64
-c-8.7998 0 -16 7.2002 -16 16v80.7002c-38.5996 29.2002 -64 75.0996 -64 127.3h-40c-33.2998 0 -59.9004 29.2002 -55.5 63.4004c3.59961 28.1992 29 48.5996 57.5 48.5996c3.2998 0 6 -2.7002 6 -6v-20c0 -3.2998 -2.7002 -6 -6 -6h-1
-c-11.5996 0 -22.2998 -7.7998 -24.5 -19.2002c-3 -15.2998 8.7002 -28.7998 23.5 -28.7998h43.2002c14.8994 73 79.3994 128 156.8 128h128c7.90039 0 15.4004 -1.2002 23 -2.2998c17.5996 20.7998 43.5996 34.2998 73 34.2998h32l-18.9004 -75.5
-c15.8008 -14.7998 28.6006 -32.5 37.4004 -52.5h29.5zM432 160c8.7998 0 16 7.2002 16 16s-7.2002 16 -16 16s-16 -7.2002 -16 -16s7.2002 -16 16 -16zM256 352c-16.4004 0 -32.2002 -2.2998 -47.4004 -6.2002c-0.0996094 2.10059 -0.599609 4.10059 -0.599609 6.2002
-c0 53 43 96 96 96s96 -43 96 -96c0 -0.299805 -0.0996094 -0.5 -0.0996094 -0.799805c-5.2002 0.399414 -10.5 0.799805 -15.9004 0.799805h-128z" />
-    <glyph glyph-name="ribbon" unicode="&#xf4d6;" horiz-adv-x="448" 
-d="M6.09961 3.7002l117.2 130l79.2002 -87.9004l-91.7998 -101.899c-8 -8.80078 -21.4004 -10.5 -31.2998 -3.80078l-68.8008 27.9004c-12 8.09961 -14.0996 24.9004 -4.5 35.7002zM441.9 3.7002c9.69922 -10.7998 7.59961 -27.6006 -4.30078 -35.6006l-68.7998 -27.8994
-c-9.89941 -6.7002 -23.2998 -5.10059 -31.2998 3.7998l-248.1 275.3c-48.6006 53.7998 -13 113.5 -11.5 116l43.5996 73.2002c4.2998 7.2002 9.90039 13.2998 16.7998 18c44 29.7002 130.7 27.5996 171.4 0c6.89941 -4.7002 12.5 -10.7998 16.7998 -18l43.7002 -73.5
-c21.8994 -36.9004 17.2998 -83.5996 -11.4004 -115.5l-34.2002 -38l-79.0996 87.7002s52.7002 59 56 64.5996c-15.4004 8.40039 -40.2002 17.9004 -77.5 17.9004s-62.0996 -9.5 -77.5 -17.9004c3.40039 -5.5 295.4 -330.1 295.4 -330.1z" />
-    <glyph glyph-name="route" unicode="&#xf4d7;" 
-d="M416 128c52.9004 0 96 -43.0996 96 -96s-43.0996 -96 -96 -96h-277.8c13.5 16.2998 31.2998 39.2002 47.2998 64h230.5c17.5996 0 32 14.4004 32 32s-14.4004 32 -32 32h-96c-52.9004 0 -96 43.0996 -96 96s43.0996 96 96 96h45.2998
-c-23.0996 32.5996 -45.2998 70.5 -45.2998 96c0 53 43 96 96 96s96 -43 96 -96s-96 -160 -96 -160h-96c-17.5996 0 -32 -14.4004 -32 -32s14.4004 -32 32 -32h96zM416 384c-17.7002 0 -32 -14.2998 -32 -32s14.2998 -32 32 -32s32 14.2998 32 32s-14.2998 32 -32 32zM96 192
-c53 0 96 -43 96 -96s-96 -160 -96 -160s-96 107 -96 160s43 96 96 96zM96 64c17.7002 0 32 14.2998 32 32s-14.2998 32 -32 32s-32 -14.2998 -32 -32s14.2998 -32 32 -32z" />
-    <glyph glyph-name="seedling" unicode="&#xf4d8;" 
-d="M64 352c123.7 0 224 -100.3 224 -224v-144c0 -8.7998 -7.2002 -16 -16 -16h-32c-8.7998 0 -16 7.2002 -16 16v144c-123.7 0 -224 100.3 -224 224h64zM448 416h64c0 -115.9 -88 -211.1 -200.7 -222.8c-10.7998 40.7002 -31.2998 77.3994 -59 107.6
-c38.2998 68.7002 111.5 115.2 195.7 115.2z" />
-    <glyph glyph-name="sign" unicode="&#xf4d9;" 
-d="M496 384c8.7998 0 16 -7.2002 16 -16v-32c0 -8.7998 -7.2002 -16 -16 -16h-368v-368c0 -8.7998 -7.2002 -16 -16 -16h-32c-8.7998 0 -16 7.2002 -16 16v368h-48c-8.7998 0 -16 7.2002 -16 16v32c0 8.7998 7.2002 16 16 16h48v48c0 8.7998 7.2002 16 16 16h32
-c8.7998 0 16 -7.2002 16 -16v-48h368zM160 64v224h320v-224h-320z" />
-    <glyph glyph-name="smile-wink" unicode="&#xf4da;" horiz-adv-x="496" 
-d="M0 192c0 137 111 248 248 248s248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248zM200 240c0 17.7002 -14.2998 32 -32 32s-32 -14.2998 -32 -32s14.2998 -32 32 -32s32 14.2998 32 32zM358.5 223.5l9.7002 -8.5c8.39941 -7.5 21.5 -0.299805 19.7998 10.7998
-c-4 25.2002 -34.2002 42.1006 -59.9004 42.1006c-25.6992 0 -55.8994 -16.9004 -59.8994 -42.1006c-1.7998 -11.2002 11.5 -18.2002 19.7998 -10.7998l9.5 8.5c14.7998 13.2002 46.2002 13.2002 61 0zM157.8 122.2c-13.3994 16.2998 -38.0996 -4.10059 -24.5996 -20.4004
-c28.5 -34.2002 70.2998 -53.7998 114.8 -53.7998s86.2998 19.5996 114.8 53.7002c13.5 16.2998 -11 36.7002 -24.5996 20.5c-22.4004 -26.7998 -55.2002 -42.2002 -90.2002 -42.2002s-67.7998 15.2998 -90.2002 42.2002z" />
-    <glyph glyph-name="tape" unicode="&#xf4db;" horiz-adv-x="640" 
-d="M224 256c35.2998 0 64 -28.7002 64 -64s-28.7002 -64 -64 -64s-64 28.7002 -64 64s28.7002 64 64 64zM624 32c8.7998 0 16 -7.2002 16 -16v-32c0 -8.7998 -7.2002 -16 -16 -16h-400c-123.7 0 -224 100.3 -224 224s100.3 224 224 224s224 -100.3 224 -224
-c0 -62.7002 -25.9004 -119.3 -67.4004 -160h243.4zM224 96c53 0 96 43 96 96s-43 96 -96 96s-96 -43 -96 -96s43 -96 96 -96z" />
-    <glyph glyph-name="truck-loading" unicode="&#xf4de;" horiz-adv-x="640" 
-d="M50.2002 72.4004l-49.6006 185.5c-2.2998 8.5 2.80078 17.2998 11.3008 19.5996l77.2998 20.7002l24.7998 -92.7002l61.7998 16.5l-24.7998 92.7002l77.2002 20.7998c8.5 2.2998 17.2998 -2.7998 19.5996 -11.2998l49.7002 -185.5
-c2.2998 -8.5 -2.7998 -17.2998 -11.2998 -19.6006l-216.4 -58c-8.5 -2.2998 -17.2998 2.80078 -19.5996 11.3008zM384 448h256v-400c0 -61.9004 -50.0996 -112 -112 -112c-60.4004 0 -109.2 47.9004 -111.6 107.7l-393.7 -107.4
-c-4.2002 -1.2002 -8.60059 1.2998 -9.7998 5.60059l-12.6006 46.2998c-1.2002 4.2002 1.2998 8.59961 5.60059 9.7998l346.1 94.4004v323.6c0 17.7002 14.2998 32 32 32zM528 0c26.5 0 48 21.5 48 48s-21.5 48 -48 48s-48 -21.5 -48 -48s21.5 -48 48 -48z" />
-    <glyph glyph-name="truck-moving" unicode="&#xf4df;" horiz-adv-x="640" 
-d="M621.3 210.7c12 -12 18.7002 -28.2002 18.7002 -45.2002v-85.5c0 -8.7998 -7.2002 -16 -16 -16h-17.5996c1 -5.2002 1.59961 -10.5 1.59961 -16c0 -44.2002 -35.7998 -80 -80 -80s-80 35.7998 -80 80c0 5.5 0.5 10.7998 1.59961 16h-163.199
-c1 -5.2002 1.59961 -10.5 1.59961 -16c0 -44.2002 -35.7998 -80 -80 -80c-26.2998 0 -49.4004 12.7998 -64 32.4004c-14.5996 -19.5 -37.7002 -32.4004 -64 -32.4004c-44.2002 0 -80 35.7998 -80 80v336c0 17.7002 14.2998 32 32 32h416c17.7002 0 32 -14.2998 32 -32
-v-96.0996h37.5c17 0 33.2998 -6.7002 45.2998 -18.7002zM80 16c17.5996 0 32 14.4004 32 32s-14.4004 32 -32 32s-32 -14.4004 -32 -32s14.4004 -32 32 -32zM208 16c17.5996 0 32 14.4004 32 32s-14.4004 32 -32 32s-32 -14.4004 -32 -32s14.4004 -32 32 -32zM480 240v-48
-h92.0996l-43.2998 43.2998c-3 3 -7 4.7002 -11.2998 4.7002h-37.5zM528 16c17.5996 0 32 14.4004 32 32s-14.4004 32 -32 32s-32 -14.4004 -32 -32s14.4004 -32 32 -32z" />
-    <glyph glyph-name="video-slash" unicode="&#xf4e2;" horiz-adv-x="640" 
-d="M633.8 -10.0996c7 -5.40039 8.2998 -15.5 2.7998 -22.4004l-19.5996 -25.2998c-5.5 -7 -15.5 -8.2002 -22.5 -2.7998l-178.5 138l-373.3 288.6l-36.5 28.2002c-7 5.39941 -8.2002 15.3994 -2.7998 22.3994l19.5996 25.2002c5.5 7 15.5 8.2002 22.5 2.7998
-l78.4004 -60.5996h244.3c26.3994 0 47.7998 -21.4004 47.7998 -47.7998v-178l32 -24.7002v137.2l109.6 75.5996c21.3008 14.6006 50.4004 -0.299805 50.4004 -25.7998v-257c0 -17.4004 -13.7998 -29.7002 -29.2002 -31.0996zM32 47.7998v245.5l365.8 -282.8
-c-8.2002 -6.5 -18.3994 -10.5 -29.5996 -10.5h-288.4c-26.3994 0 -47.7998 21.4004 -47.7998 47.7998z" />
-    <glyph glyph-name="wine-glass" unicode="&#xf4e3;" horiz-adv-x="288" 
-d="M216 -16c22.0898 0 40 -17.9102 40 -40c0 -4.41992 -3.58008 -8 -8 -8h-208c-4.41992 0 -8 3.58008 -8 8c0 22.0898 17.9102 40 40 40h40v117.18c-68.4697 15.8906 -118.05 79.9102 -111.4 154.16l15.96 178.11c0.730469 8.24023 7.55078 14.5498 15.7002 14.5498h223.48
-c8.16016 0 14.9697 -6.30957 15.71 -14.5498l15.9502 -178.101c6.64941 -74.25 -42.9307 -138.27 -111.4 -154.159v-117.19h40z" />
-    <glyph glyph-name="user-alt-slash" unicode="&#xf4fa;" horiz-adv-x="640" 
-d="M633.8 -10.0996c7 -5.40039 8.2998 -15.5 2.90039 -22.3008l-19.6006 -25.2998c-5.5 -7 -15.5 -8.2002 -22.5 -2.7998l-588.399 454.7c-7 5.39941 -8.2002 15.3994 -2.7998 22.3994l19.5996 25.2002c5.5 7 15.5 8.2002 22.5 2.7998l135.5 -104.8
-c16 62.1006 71.9004 108.2 139 108.2c79.5 0 144 -64.5 144 -144c0 -54.0996 -30.2002 -100.7 -74.4004 -125.3zM198.4 128h47.3994l248.4 -192h-382.2c-26.5 0 -48 21.5 -48 48v9.59961c0 74.2002 60.2002 134.4 134.4 134.4z" />
-    <glyph glyph-name="user-astronaut" unicode="&#xf4fb;" horiz-adv-x="448" 
-d="M64 224c-8.7998 0 -16 7.2002 -16 16v96c0 8.7998 7.2002 16 16 16h13.5c24.7002 56.5 80.9004 96 146.5 96s121.8 -39.5 146.5 -96h13.5c8.7998 0 16 -7.2002 16 -16v-96c0 -8.7998 -7.2002 -16 -16 -16h-13.5c-24.7002 -56.5 -80.9004 -96 -146.5 -96
-s-121.8 39.5 -146.5 96h-13.5zM104 312v-24c0 -53 43 -96 96 -96h48c53 0 96 43 96 96v24c0 22.0996 -21.5 40 -48 40h-144c-26.5 0 -48 -17.9004 -48 -40zM176 240l-12 36l-36 12l36 12l12 36l12 -36l36 -12l-36 -12zM327.6 126.6c67.5 -7.09961 120.4 -63.5996 120.4 -133
-v-9.59961c0 -26.5 -21.5 -48 -48 -48h-80v64c0 17.7002 -14.2998 32 -32 32h-128c-17.7002 0 -32 -14.2998 -32 -32v-64h-80c-26.5 0 -48 21.5 -48 48v9.59961c0 69.4004 52.9004 125.9 120.4 133c29.8994 -19.2998 65.3994 -30.5996 103.6 -30.5996
-s73.7002 11.2998 103.6 30.5996zM272 0c8.7998 0 16 -7.2002 16 -16s-7.2002 -16 -16 -16s-16 7.2002 -16 16s7.2002 16 16 16zM176 0c8.7998 0 16 -7.2002 16 -16v-48h-32v48c0 8.7998 7.2002 16 16 16z" />
-    <glyph glyph-name="user-check" unicode="&#xf4fc;" horiz-adv-x="640" 
-d="M224 192c-70.7002 0 -128 57.2998 -128 128s57.2998 128 128 128s128 -57.2998 128 -128s-57.2998 -128 -128 -128zM313.6 160c74.2002 0 134.4 -60.2002 134.4 -134.4v-41.5996c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v41.5996
-c0 74.2002 60.2002 134.4 134.4 134.4h16.6992c22.3008 -10.2002 46.9004 -16 72.9004 -16s50.7002 5.7998 72.9004 16h16.6992zM636.6 288.4c4.60059 -4.60059 4.5 -12.1006 -0.0996094 -16.8008l-141.3 -140.199c-4.7002 -4.60059 -12.2002 -4.60059 -16.7998 0.0996094
-l-81.7002 82.2998c-4.60059 4.7002 -4.60059 12.2002 0.0996094 16.7998l28.1006 27.9004c4.69922 4.59961 12.1992 4.59961 16.7998 -0.0996094l45.5 -45.8008l104.8 104c4.7002 4.60059 12.2002 4.60059 16.7998 -0.0996094z" />
-    <glyph glyph-name="user-clock" unicode="&#xf4fd;" horiz-adv-x="640" 
-d="M496 224c79.5996 0 144 -64.4004 144 -144s-64.4004 -144 -144 -144s-144 64.4004 -144 144s64.4004 144 144 144zM560 73.7002v12.5996c0 5.2998 -4.40039 9.7002 -9.7002 9.7002h-38.2998v54.2998c0 5.2998 -4.40039 9.7002 -9.7002 9.7002h-12.5996
-c-5.2998 0 -9.7002 -4.40039 -9.7002 -9.7002v-76.5996c0 -5.2998 4.40039 -9.7002 9.7002 -9.7002h60.5996c5.2998 0 9.7002 4.40039 9.7002 9.7002zM320 80c0 -59.5 29.7998 -112.1 75.0996 -144h-347.1c-26.5 0 -48 21.5 -48 48v41.5996
-c0 74.2002 60.2002 134.4 134.4 134.4h16.6992c22.3008 -10.2002 46.9004 -16 72.9004 -16s50.7002 5.7998 72.9004 16h16.6992c8.40039 0 16.6006 -1 24.6006 -2.5c-11.5 -23.4004 -18.2002 -49.7002 -18.2002 -77.5zM224 192c-70.7002 0 -128 57.2998 -128 128
-s57.2998 128 128 128s128 -57.2998 128 -128s-57.2998 -128 -128 -128z" />
-    <glyph glyph-name="user-cog" unicode="&#xf4fe;" horiz-adv-x="640" 
-d="M610.5 74.7002l25.7998 -14.9004c2.90039 -1.7002 4.2998 -5.2002 3.2998 -8.5c-6.69922 -21.5996 -18.1992 -41.2002 -33.1992 -57.3994c-2.30078 -2.5 -6.10059 -3.10059 -9 -1.40039l-25.8008 14.9004c-10.8994 -9.30078 -23.3994 -16.5 -36.8994 -21.3008v-29.7998
-c0 -3.39941 -2.40039 -6.39941 -5.7002 -7.09961c-21.2002 -4.7998 -43.9004 -5 -66.2002 0c-3.2998 0.700195 -5.7002 3.7002 -5.7002 7.09961v29.7998c-13.5 4.80078 -26 12 -36.8994 21.3008l-25.7998 -14.9004c-3 -1.7002 -6.7002 -1.09961 -9 1.40039
-c-15 16.2998 -26.5 35.7998 -33.2002 57.3994c-1 3.2998 0.299805 6.7998 3.2998 8.5l25.7998 14.9004c-2.59961 14.0996 -2.59961 28.5 0 42.5996l-25.7998 14.9004c-2.90039 1.7002 -4.2998 5.2002 -3.2998 8.5c6.7002 21.5996 18.2002 41.2002 33.2002 57.3994
-c2.2998 2.5 6.09961 3.10059 9 1.40039l25.7998 -14.9004c10.8994 9.30078 23.3994 16.5 36.8994 21.3008v29.7998c0 3.39941 2.40039 6.39941 5.7002 7.09961c21.2002 4.7998 43.9004 5 66.2002 0c3.2998 -0.700195 5.7002 -3.7002 5.7002 -7.09961v-29.7998
-c13.5 -4.80078 26 -12 36.8994 -21.3008l25.8008 14.9004c3 1.7002 6.69922 1.09961 9 -1.40039c15 -16.1992 26.5 -35.7998 33.1992 -57.3994c1 -3.2998 -0.299805 -6.7998 -3.2998 -8.5l-25.7998 -14.9004c2.59961 -14.0996 2.59961 -28.5 0 -42.5996zM496 47.5
-c26.7998 0 48.5 21.7998 48.5 48.5s-21.7998 48.5 -48.5 48.5s-48.5 -21.7998 -48.5 -48.5s21.7002 -48.5 48.5 -48.5zM224 192c-70.7002 0 -128 57.2998 -128 128s57.2998 128 128 128s128 -57.2998 128 -128s-57.2998 -128 -128 -128zM425.2 -34.5v-9.2002
-c0 -4.09961 0.799805 -8 2 -11.7998c-7.7002 -5.2998 -17.1006 -8.5 -27.2002 -8.5h-352c-26.5 0 -48 21.5 -48 48v41.5996c0 74.2002 60.2002 134.4 134.4 134.4h16.6992c22.3008 -10.2002 46.9004 -16 72.9004 -16s50.7002 5.7998 72.9004 16h16.6992
-c3.90039 0 7.60059 -0.900391 11.4004 -1.2002c-1 -2.89941 -2.2998 -5.7998 -3.2002 -8.7002c-5.5 -17.6992 1.90039 -36.5 17.9004 -45.6992l7.89941 -4.60059c-0.0996094 -2.59961 -0.0996094 -5.2002 0 -7.7998l-7.89941 -4.59961
-c-16 -9.30078 -23.4004 -28 -17.9004 -45.7002c7.90039 -25.7002 21.9004 -49.7998 40.2002 -69.6006c7.5 -8 18 -12.5996 28.9004 -12.5996c6.7998 0 13.5996 1.90039 19.5996 5.2998l7.90039 4.60059c2.19922 -1.30078 4.5 -2.7002 6.7998 -3.90039z" />
-    <glyph glyph-name="user-edit" unicode="&#xf4ff;" horiz-adv-x="640" 
-d="M224 192c-70.7002 0 -128 57.2998 -128 128s57.2998 128 128 128s128 -57.2998 128 -128s-57.2998 -128 -128 -128zM313.6 160c39.9004 0 75.4004 -17.7998 99.9004 -45.5l-77.2998 -77.2998l-7.90039 -7.90039l-1.2002 -11.0996l-6.7998 -60.9004
-c-0.799805 -7.2998 0.200195 -14.5 2.60059 -21.2998h-274.9c-26.5 0 -48 21.5 -48 48v41.5996c0 74.2002 60.2002 134.4 134.4 134.4h16.6992c22.3008 -10.2002 46.9004 -16 72.9004 -16s50.7002 5.7998 72.9004 16h16.6992zM358.9 14.7002l137.899 137.8l71.7002 -71.7002
-l-137.9 -137.899l-60.8994 -6.80078c-10.1006 -1.19922 -18.7002 7.40039 -17.6006 17.6006zM633 179.1c9.2998 -9.39941 9.2998 -24.5 0 -33.8994l-41.7998 -41.7998l-71.7998 71.6992l4.09961 4.10059l37.7998 37.7998c9.2998 9.2998 24.5 9.2998 33.7998 0z" />
-    <glyph glyph-name="user-friends" unicode="&#xf500;" horiz-adv-x="640" 
-d="M192 192c-61.9004 0 -112 50.0996 -112 112s50.0996 112 112 112s112 -50.0996 112 -112s-50.0996 -112 -112 -112zM268.8 160c63.6006 0 115.2 -51.5996 115.2 -115.2v-28.7998c0 -26.5 -21.5 -48 -48 -48h-288c-26.5 0 -48 21.5 -48 48v28.7998
-c0 63.6006 51.5996 115.2 115.2 115.2h8.2998c20.9004 -10 43.9004 -16 68.5 -16s47.7002 6 68.5 16h8.2998zM480 192c-53 0 -96 43 -96 96s43 96 96 96s96 -43 96 -96s-43 -96 -96 -96zM528 160c61.9004 0 112 -50.0996 112 -112c0 -26.5 -21.5 -48 -48 -48h-176.6
-c0.0996094 2.09961 0.599609 4.2002 0.599609 6.40039v38.3994c0 38.6006 -15.2998 73.5 -39.7002 99.7998c16.5 9.5 35.2998 15.4004 55.7002 15.4004h3.7998c13.9004 -4.7998 28.6006 -8 44.2002 -8s30.2998 3.2002 44.2002 8h3.7998z" />
-    <glyph glyph-name="user-graduate" unicode="&#xf501;" horiz-adv-x="448" 
-d="M319.4 127.4c71.5 -3.10059 128.6 -61.6006 128.6 -133.801v-9.59961c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v9.59961c0 72.2002 57.0996 130.7 128.6 133.801l95.4004 -95.4004zM13.5996 368.2c-18.0996 4.39941 -18.0996 27.2002 0 31.5996
-l190.601 45.9004c13 3.09961 26.7002 3.09961 39.7002 0l190.399 -46c18.2002 -4.40039 18.2002 -27.1006 0 -31.5l-96.2998 -23.2002c8.7002 -17.2002 14 -36.4004 14 -57c0 -70.7002 -57.2998 -128 -128 -128s-128 57.2998 -128 128c0 20.5996 5.40039 39.7998 14 57
-l-66 15.9004v-52.6006c7 -4.2002 12 -11.5 12 -20.2998c0 -8.40039 -4.59961 -15.4004 -11.0996 -19.7002l15.5996 -62.2998c1.7002 -6.90039 -2.09961 -14 -7.59961 -14h-41.8008c-5.5 0 -9.2998 7.09961 -7.59961 14l15.5996 62.2998
-c-6.5 4.2998 -11.0996 11.2998 -11.0996 19.7002c0 8.7998 5 16.0996 12 20.2998v58.4004z" />
-    <glyph glyph-name="user-lock" unicode="&#xf502;" horiz-adv-x="640" 
-d="M224 192c-70.6455 0 -128 57.3545 -128 128s57.3545 128 128 128s128 -57.3545 128 -128s-57.3545 -128 -128 -128zM320 128v-160c0.0791016 -11.6504 3.3418 -22.6367 8.90039 -32h-280.9c-26.4922 0 -48 21.5078 -48 48v41.5996
-c0.0166016 74.1699 60.2305 134.384 134.4 134.4h16.6992c22.1426 -10.2109 47.085 -15.9072 73.0498 -15.9072c25.9639 0 50.6084 5.69629 72.751 15.9072h16.6992c5 0 9.7002 -1 14.5 -1.5c-5.06641 -9.00684 -8.02539 -19.4561 -8.09961 -30.5zM608 160
-c17.6611 0 32 -14.3389 32 -32v-160c0 -17.6611 -14.3389 -32 -32 -32h-224c-17.6611 0 -32 14.3389 -32 32v160c0 17.6611 14.3389 32 32 32h32v80c0 44.1533 35.8467 80 80 80s80 -35.8467 80 -80v-80h32zM496 16c17.6611 0 32 14.3389 32 32s-14.3389 32 -32 32
-s-32 -14.3389 -32 -32s14.3389 -32 32 -32zM528 160v80c0 17.6611 -14.3389 32 -32 32s-32 -14.3389 -32 -32v-80h64z" />
-    <glyph glyph-name="user-minus" unicode="&#xf503;" horiz-adv-x="640" 
-d="M624 240c8.7998 0 16 -7.2002 16 -16v-32c0 -8.7998 -7.2002 -16 -16 -16h-192c-8.7998 0 -16 7.2002 -16 16v32c0 8.7998 7.2002 16 16 16h192zM224 192c-70.7002 0 -128 57.2998 -128 128s57.2998 128 128 128s128 -57.2998 128 -128s-57.2998 -128 -128 -128z
-M313.6 160c74.2002 0 134.4 -60.2002 134.4 -134.4v-41.5996c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v41.5996c0 74.2002 60.2002 134.4 134.4 134.4h16.6992c22.3008 -10.2002 46.9004 -16 72.9004 -16s50.7002 5.7998 72.9004 16h16.6992z" />
-    <glyph glyph-name="user-ninja" unicode="&#xf504;" horiz-adv-x="448" 
-d="M325.4 158.8c68.5996 -6.09961 122.6 -63 122.6 -133.2v-41.5996c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v41.5996c0 70.2002 54 127.101 122.6 133.2l101.4 -101.399zM32 256c0 33.4004 17.0996 62.7998 43.0996 80
-c-26 17.2002 -43.0996 46.5996 -43.0996 80c32 0 60.0996 -15.7998 77.5 -39.7998c20.9004 42.3994 64.0996 71.7998 114.5 71.7998c70.7002 0 128 -57.2998 128 -128s-57.2998 -128 -128 -128c-58.7998 0 -107.7 39.7998 -122.8 93.7002
-c-17.4004 -18.2002 -41.9004 -29.7002 -69.2002 -29.7002zM176 352c-17.7002 0 -32 -14.2998 -32 -32h160c0 17.7002 -14.2998 32 -32 32h-96z" />
-    <glyph glyph-name="user-shield" unicode="&#xf505;" horiz-adv-x="640" 
-d="M622.3 176.9c10.7002 -4.2002 17.7002 -14 17.7002 -24.9004c0 -124.5 -81.5996 -193.9 -132.9 -213.9c-4.19922 -1.59961 -12.5996 -3.69922 -22.1992 0c-64.2002 25.1006 -132.9 102.301 -132.9 213.9c0 10.9004 7 20.7002 17.7002 24.9004l115.2 45
-c9.59961 3.69922 18.0996 1.59961 22.1992 0zM496 -14.4004c34.5996 16.4004 89.9004 64.7002 95.5 151.801l-95.5 37.2998v-189.101zM224 192c-70.7002 0 -128 57.2998 -128 128s57.2998 128 128 128s128 -57.2998 128 -128s-57.2998 -128 -128 -128zM320 152
-c0 -95.2998 45.2002 -169.1 99.2002 -212c-5.90039 -2.5 -12.4004 -4 -19.2002 -4h-352c-26.5 0 -48 21.5 -48 48v41.5996c0 74.2002 60.2002 134.4 134.4 134.4h16.6992c22.3008 -10.2002 46.9004 -16 72.9004 -16s50.7002 5.7998 72.9004 16h16.6992
-c2.60059 0 5 -0.700195 7.5 -0.799805c-0.299805 -2.40039 -1.09961 -4.7002 -1.09961 -7.2002z" />
-    <glyph glyph-name="user-slash" unicode="&#xf506;" horiz-adv-x="640" 
-d="M633.8 -10.0996c7 -5.40039 8.2998 -15.5 2.90039 -22.3008l-19.6006 -25.2998c-5.5 -7 -15.5 -8.2002 -22.5 -2.7998l-588.399 454.7c-7 5.39941 -8.2002 15.3994 -2.7998 22.3994l19.5996 25.2002c5.5 7 15.5 8.2002 22.5 2.7998l147.6 -114
-c5.40039 65.6006 59.8008 117.4 126.9 117.4c70.7002 0 128 -57.2998 128 -128c0 -55.7998 -35.9004 -102.7 -85.7002 -120.3zM96 25.5996c0 66.4004 48.2002 121.101 111.4 132.101l286.8 -221.7h-350.2c-26.5 0 -48 21.5 -48 48v41.5996z" />
-    <glyph glyph-name="user-tag" unicode="&#xf507;" horiz-adv-x="640" 
-d="M630.6 83.0996c12.5 -12.5 12.5 -32.6992 -0.0996094 -45.1992l-92.5 -92.5c-12.5 -12.5 -32.7998 -12.5 -45.2998 0l-90.2998 90.1992c-12 12 -18.7002 28.2002 -18.7002 45.2002v79.2002c0 17.7002 14.2998 32 32 32h79.2998c17 0 33.2998 -6.7002 45.2998 -18.7002z
-M447.8 104.1c13.2998 0 24 10.8008 24 24c0 13.3008 -10.7002 24 -24 24s-24 -10.6992 -24 -24c0 -13.2998 10.7002 -24 24 -24zM224 192.1c-70.7002 0 -128 57.3008 -128 127.9c0 70.7002 57.2998 128 128 128s128 -57.2998 128 -127.9c0 -70.6992 -57.2998 -128 -128 -128
-zM351.8 80.9004c0 -25.7002 10 -49.8008 28.1006 -67.9004l58 -58c-8.80078 -11.4004 -22.4004 -18.9004 -37.9004 -18.9004h-352c-26.5 0 -48 21.5 -48 48v41.6006c0 74.2002 60.2002 134.399 134.4 134.5h16.6992c22.3008 -10.2002 46.9004 -16 72.9004 -16
-s50.7002 5.7998 72.9004 16h16.6992c13.3008 0 26 -2.60059 38.2002 -6.2002v-73.0996z" />
-    <glyph glyph-name="user-tie" unicode="&#xf508;" horiz-adv-x="448" 
-d="M224 192c-70.7002 0 -128 57.2998 -128 128s57.2998 128 128 128s128 -57.2998 128 -128s-57.2998 -128 -128 -128zM319.8 159.4c71.2998 -3.40039 128.2 -61.7002 128.2 -133.801v-41.5996c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v41.5996
-c0 72.1006 56.9004 130.4 128.2 133.801l47.7998 -191.4l32 136l-32 56h96l-32 -56l32 -136z" />
-    <glyph glyph-name="users-cog" unicode="&#xf509;" horiz-adv-x="640" 
-d="M610.5 106.7l25.7998 -14.9004c2.90039 -1.7002 4.2998 -5.2002 3.2998 -8.5c-6.69922 -21.5996 -18.1992 -41.2002 -33.1992 -57.3994c-2.30078 -2.5 -6.10059 -3.10059 -9 -1.40039l-25.8008 14.9004c-10.8994 -9.30078 -23.3994 -16.5 -36.8994 -21.3008v-29.7998
-c0 -3.39941 -2.40039 -6.39941 -5.7002 -7.09961c-21.2002 -4.7998 -43.9004 -5 -66.2002 0c-3.2998 0.700195 -5.7002 3.7002 -5.7002 7.09961v29.7998c-13.5 4.80078 -26 12 -36.8994 21.3008l-25.7998 -14.9004c-3 -1.7002 -6.7002 -1.09961 -9 1.40039
-c-15 16.2998 -26.5 35.7998 -33.2002 57.3994c-1 3.2998 0.299805 6.7998 3.2998 8.5l25.7998 14.9004c-2.59961 14.0996 -2.59961 28.5 0 42.5996l-25.7998 14.9004c-2.90039 1.7002 -4.2998 5.2002 -3.2998 8.5c6.7002 21.5996 18.2002 41.2002 33.2002 57.3994
-c2.2998 2.5 6.09961 3.10059 9 1.40039l25.7998 -14.9004c10.8994 9.30078 23.3994 16.5 36.8994 21.3008v29.7998c0 3.39941 2.40039 6.39941 5.7002 7.09961c21.2002 4.7998 43.9004 5 66.2002 0c3.2998 -0.700195 5.7002 -3.7002 5.7002 -7.09961v-29.7998
-c13.5 -4.80078 26 -12 36.8994 -21.3008l25.8008 14.9004c3 1.7002 6.69922 1.09961 9 -1.40039c15 -16.1992 26.5 -35.7998 33.1992 -57.3994c1 -3.2998 -0.299805 -6.7998 -3.2998 -8.5l-25.7998 -14.9004c2.59961 -14.0996 2.59961 -28.5 0 -42.5996zM496 79.5
-c26.7998 0 48.5 21.7998 48.5 48.5s-21.7998 48.5 -48.5 48.5s-48.5 -21.7998 -48.5 -48.5s21.7002 -48.5 48.5 -48.5zM96 224c-35.2998 0 -64 28.7002 -64 64s28.7002 64 64 64s64 -28.7002 64 -64s-28.7002 -64 -64 -64zM320 192c-61.9004 0 -112 50.0996 -112 112
-s50 111.9 111.9 111.9c61.8994 0 112 -50.1006 112 -112c0 -17.2002 -4.2002 -33.4004 -11.2002 -48c-0.799805 -0.5 -1.60059 -0.900391 -2.40039 -1.40039l-7.89941 4.59961c-5.90039 3.5 -12.7002 5.30078 -19.6006 5.30078c-11 0 -21.5 -4.60059 -28.8994 -12.6006
-c-15.8008 -17.0996 -28 -37.5 -36.3008 -59.2002c-1.89941 -0.0996094 -3.69922 -0.599609 -5.59961 -0.599609zM425.2 -2.5v-9.2002c0 -7.5 2.5 -14.2998 6.2002 -20.2998h-255.4c-26.5 0 -48 21.5 -48 48v28.7998c0 63.6006 51.5996 115.2 115.3 115.2h8.2998
-c20.9004 -10 43.9004 -16 68.5 -16c3.30078 0 6.5 0.400391 9.80078 0.599609c2.7998 -3.09961 6 -5.89941 9.7998 -8.09961l7.89941 -4.59961c-0.0996094 -2.60059 -0.0996094 -5.2002 0 -7.80078c-0.899414 -0.599609 -36.5 -15.7998 -25.7998 -50.2998
-c7.90039 -25.7002 21.9004 -49.7998 40.2002 -69.5996c7.5 -8 18 -12.6006 28.9004 -12.6006c12.1992 0 19.2998 5 27.5 9.80078c2.19922 -1.30078 4.5 -2.7002 6.7998 -3.90039zM173.1 173.4c-40.2998 -22.1006 -68.8994 -62 -75.1992 -109.4h-65.9004
-c-17.7002 0 -32 14.2998 -32 32v32c0 35.2998 28.7002 64 64 64h64c17.5996 0 33.5 -7.09961 45.0996 -18.5996z" />
-    <glyph glyph-name="balance-scale-left" unicode="&#xf515;" horiz-adv-x="640" 
-d="M528 0c8.83984 0 16 -7.16016 16.0098 -16v-32c0 -8.83984 -7.16016 -16 -16 -16h-224c-8.83984 0 -16 7.16016 -16 16v342.75c-4.55957 2 -8.91992 4.34961 -12.9902 7.12012l-142.05 -47.6299c-8.37988 -2.81055 -17.4502 1.7002 -20.2598 10.0801l-10.1699 30.3398
-c-2.80957 8.37988 1.7002 17.4502 10.0801 20.2598l128.39 43.0498c-0.419922 3.32031 -1.00977 6.60059 -1.00977 10.0303c0 44.1797 35.8203 80 80 80c29.6904 0 55.2998 -16.3604 69.1104 -40.3701l117.92 39.5303c8.37988 2.80957 17.4502 -1.7002 20.2598 -10.0801
-l10.1699 -30.3398c2.80957 -8.37988 -1.7002 -17.4502 -10.0801 -20.2598l-132 -44.2607c-7.28027 -21.25 -22.96 -38.5293 -43.3799 -47.4697v-294.75h176zM639.98 144c0 -44.1797 -57.29 -80 -127.98 -80s-128 35.8203 -128 80h0.0195312
-c0 15.6699 -2.0791 7.25 85.04 181.51c17.6807 35.3604 68.2207 35.29 85.8701 0c86.3906 -172.779 85.0508 -165.33 85.0508 -181.51zM440 160h144l-72 144zM170.93 197.51c86.3906 -172.779 85.0508 -165.33 85.0508 -181.51h0.0195312c0 -44.1797 -57.3096 -80 -128 -80
-s-128 35.8203 -128 80h0.0195312c0 15.6699 -2.0791 7.25 85.04 181.51c17.6807 35.3604 68.2207 35.29 85.8701 0zM56 32h144l-72 144z" />
-    <glyph glyph-name="balance-scale-right" unicode="&#xf516;" horiz-adv-x="640" 
-d="M96 -16c0 8.83984 7.16016 16 16 16h175.99v294.76c-20.4199 8.93066 -36.1006 26.2207 -43.3799 47.4707l-132 44.2598c-8.37012 2.80957 -12.8906 11.8799 -10.0801 20.2598l10.1699 30.3398c2.80957 8.37012 11.8799 12.8906 20.2598 10.0801l117.93 -39.54
-c13.8105 24.0098 39.4199 40.3701 69.1104 40.3701c44.1797 0 80 -35.8203 80 -80c0 -3.42969 -0.589844 -6.70996 -1.00977 -10.0303l128.399 -43.0498c8.37012 -2.80957 12.8906 -11.8799 10.0801 -20.2598l-10.1699 -30.3398
-c-2.80957 -8.37012 -11.8799 -12.8906 -20.2598 -10.0801l-142.05 47.6299c-4.07031 -2.77051 -8.43066 -5.12012 -12.9902 -7.12012v-342.75c0 -8.83984 -7.16016 -16 -16 -16h-224c-8.83984 0 -16 7.16016 -16 16v32zM0 144c0 16.1797 -1.32031 8.73047 85.0596 181.51
-c17.6504 35.29 68.1904 35.3604 85.8701 0c87.1299 -174.26 85.0508 -165.84 85.0508 -181.51h0.0195312c0 -44.1797 -57.3096 -80 -128 -80s-128 35.8203 -128 80zM56 160h144l-72 144zM384.02 16c0 16.1797 -1.33984 8.73047 85.04 181.51
-c17.6504 35.29 68.1904 35.3604 85.8701 0c87.1299 -174.26 85.0508 -165.84 85.0508 -181.51h0.0195312c0 -44.1797 -57.3096 -80 -128 -80s-128 35.8203 -128 80h0.0195312zM440 32h144l-72 144z" />
-    <glyph glyph-name="blender" unicode="&#xf517;" 
-d="M416 64c35.3496 0 64 -28.6504 64 -64v-32c0 -17.6699 -14.3301 -32 -32 -32h-320c-17.6699 0 -32 14.3301 -32 32v32c0 35.3496 28.6504 64 64 64h256zM288 -32c17.6699 0 32 14.3301 32 32s-14.3301 32 -32 32s-32 -14.3301 -32 -32s14.3301 -32 32 -32zM328 384
-c-4.41992 0 -8 -3.58008 -8 -8v-16c0 -4.41992 3.58008 -8 8 -8h157.82l-17.46 -64h-140.36c-4.41992 0 -8 -3.58008 -8 -8v-16c0 -4.41992 3.58008 -8 8 -8h131.64l-17.46 -64h-114.18c-4.41992 0 -8 -3.58008 -8 -8v-16c0 -4.41992 3.58008 -8 8 -8h105.46l-17.46 -64
-h-256l-8.73047 96h-103.27c-26.5098 0 -48 21.4902 -48 48v160c0 26.5098 21.4902 48 48 48h464l-17.46 -64h-166.54zM64 256h81.46l-11.6396 128h-69.8203v-128z" />
-    <glyph glyph-name="book-open" unicode="&#xf518;" horiz-adv-x="576" 
-d="M542.22 415.95c18.4199 1.04004 33.7803 -12.9902 33.7705 -30.7002v-337.84c0 -16.2305 -13.1299 -29.7705 -30.0205 -30.6602c-49.4697 -2.59961 -149.52 -12.0996 -218.7 -46.9199c-10.6494 -5.36035 -23.2793 1.93945 -23.2793 13.4902v363.87
-c0 5.2793 2.62988 10.3291 7.26953 13.1699c67.2402 41.1592 176.16 52.4795 230.96 55.5898zM264.73 360.36c4.64941 -2.85059 7.26953 -7.7002 7.26953 -12.9902v-364.12c0 -11.5195 -12.5898 -18.8096 -23.21 -13.46c-69.1797 34.8398 -169.28 44.3496 -218.771 46.9502
-c-16.8896 0.879883 -30.0195 14.4199 -30.0195 30.6602v337.85c0 17.71 15.3604 31.7402 33.7803 30.7002c54.7998 -3.12012 163.72 -14.4307 230.95 -55.5898z" />
-    <glyph glyph-name="broadcast-tower" unicode="&#xf519;" horiz-adv-x="640" 
-d="M150.94 256c-7.01074 0 -13.46 4.5 -15.4004 11.2402c-4.90039 16.9697 -7.54004 34.6396 -7.54004 52.7598s2.63965 35.79 7.53027 52.7695c1.9502 6.74023 8.39941 11.2305 15.4102 11.2305h33.7295c11.0098 0 18.6201 -10.8301 14.8604 -21.1797
-c-4.93066 -13.5801 -7.5498 -27.9805 -7.5498 -42.8203s2.61914 -29.2402 7.5498 -42.8203c3.75 -10.3496 -3.85059 -21.1797 -14.8604 -21.1797h-33.7295zM89.9199 424.66c-16.54 -31.1406 -49.6104 -115.97 0.169922 -209.29
-c5.66016 -10.6299 -1.92969 -23.3701 -13.9502 -23.3701h-34.8398c-6.18945 0 -11.9902 3.50977 -14.6094 9.13965c-23.5703 50.5303 -26.6904 94.1104 -26.6904 118.86c0 42.3496 9.40039 82.46 25.8896 118.69c2.60059 5.71973 8.4707 9.30957 14.7402 9.30957h35.3301
-c12.0098 0 19.5996 -12.7197 13.96 -23.3398zM614.06 438.71c16.5205 -36.2295 25.9404 -76.3496 25.9404 -118.71s-9.42969 -82.4805 -25.96 -118.71c-2.59961 -5.70996 -8.45996 -9.29004 -14.7305 -9.29004h-35.2295c-12.1104 0 -19.6299 12.8398 -13.9102 23.5195
-c48.1396 89.8105 17.9902 174.94 -0.280273 209.23c-5.63965 10.5898 2.04004 23.25 14.0205 23.25h35.4199c6.26953 0 12.1299 -3.58008 14.7295 -9.29004zM489.06 384c7.01074 0 13.46 -4.49023 15.4004 -11.2402c4.90039 -16.9697 7.54004 -34.6396 7.54004 -52.7598
-s-2.62988 -35.79 -7.53027 -52.7598c-1.9502 -6.75 -8.38965 -11.2402 -15.4102 -11.2402h-33.7295c-11.0098 0 -18.6201 10.8301 -14.8604 21.1797c4.93066 13.5801 7.5498 27.9805 7.5498 42.8203s-2.61914 29.2402 -7.5498 42.8203
-c-3.75 10.3496 3.85059 21.1797 14.8604 21.1797h33.7295zM372.76 283.88l130.5 -313.41c3.39062 -8.14941 -0.459961 -17.5195 -8.60938 -20.9199l-29.5107 -12.3096c-8.14941 -3.40039 -17.5098 0.450195 -20.9092 8.60938l-49.2002 118.15h-150.07l-49.1904 -118.15
-c-3.38965 -8.14941 -12.7598 -12.0098 -20.9092 -8.60938l-29.5107 12.3096c-8.14941 3.40039 -12.0098 12.7705 -8.60938 20.9199l130.5 313.41c-7.0498 10.29 -11.2002 22.71 -11.2002 36.1201c0 35.3496 28.6396 64 63.96 64c35.3301 0 63.96 -28.6504 63.96 -64
-c0 -13.4102 -4.15039 -25.8301 -11.2002 -36.1201zM271.62 128h96.7598l-48.3799 116.19z" />
-    <glyph glyph-name="broom" unicode="&#xf51a;" horiz-adv-x="640" 
-d="M256.47 231.23l86.7305 -109.181s-16.6006 -102.359 -76.5703 -150.12c-59.9697 -47.7793 -266.63 -34.1201 -266.63 -34.1201s3.7998 23.1406 11 55.4307l94.6201 112.17c3.96973 4.7002 -0.870117 11.6201 -6.65039 9.5l-60.3994 -22.0898
-c14.4395 41.6602 32.7197 80.04 54.5996 97.4697c59.9697 47.7598 163.3 40.9404 163.3 40.9404zM636.53 416.97c5.48926 -6.91016 4.33984 -16.96 -2.5498 -22.4395l-232.48 -177.8l34.0898 -42.9209c5.08008 -6.39941 1.66016 -15.9092 -6.33984 -17.5996
-l-58.7998 -12.4502l-86.7305 109.181l25.3301 54.5498c3.4502 7.41992 13.5 8.62012 18.5898 2.20996l34.1406 -42.9697l232.479 177.8c6.89062 5.48926 16.9199 4.33984 22.4102 -2.56055z" />
-    <glyph glyph-name="chalkboard" unicode="&#xf51b;" horiz-adv-x="640" 
-d="M96 384v-352h-64v376c0 22.0596 17.9404 40 40 40h496c22.0596 0 40 -17.9404 40 -40v-376h-64v352h-448zM624 0c8.83984 0 16 -7.16016 16 -16v-32c0 -8.83984 -7.16016 -16 -16 -16h-608c-8.83984 0 -16 7.16016 -16 16v32c0 8.83984 7.16016 16 16 16h272v64h192v-64
-h144z" />
-    <glyph glyph-name="chalkboard-teacher" unicode="&#xf51c;" horiz-adv-x="640" 
-d="M208 96c62.0596 0 112.33 -50.4805 112 -112.62c-0.139648 -26.2598 -21.7305 -47.3799 -48 -47.3799h-224c-26.2695 0 -47.8604 21.1201 -48 47.3799c-0.330078 62.1396 49.9404 112.62 112 112.62c2.38965 0 4.76953 -0.349609 7.0498 -1.08984
-c12.9697 -4.20996 26.6006 -6.91016 40.9502 -6.91016s27.9805 2.7002 40.9404 6.91016c2.2793 0.740234 4.66992 1.08984 7.05957 1.08984zM160 128c-53.0195 0 -96 42.9805 -96 96s42.9805 96 96 96s96 -42.9805 96 -96s-42.9805 -96 -96 -96zM592 448
-c26.4697 0 48 -22.25 48 -49.5898v-316.82c0 -27.3398 -21.5303 -49.5898 -48 -49.5898h-244.55c-6.57031 25.2695 -20.5898 47.3096 -39.6904 64h76.2402v64h128v-64h64v288h-352v-49.7998c-18.9004 11.0195 -40.5801 17.7998 -64 17.7998v46.4102
-c0 27.3398 21.5303 49.5898 48 49.5898h384z" />
-    <glyph glyph-name="church" unicode="&#xf51d;" horiz-adv-x="640" 
-d="M464.46 201.32c9.63965 -5.78027 15.54 -16.2002 15.54 -27.4404v-237.88h-96v96c0 35.3496 -28.6504 64 -64 64s-64 -28.6504 -64 -64v-96h-96v237.88c0 11.6572 6.21387 21.8467 15.54 27.4404l112.46 67.4795v51.2002h-48c-8.83984 0 -16 7.16016 -16 16v32
-c0 8.83984 7.16016 16 16 16h48v48c0 8.83984 7.16016 16 16 16h32c8.83984 0 16 -7.16016 16 -16v-48h48c8.83984 0 16 -7.16016 16 -16v-32c0 -8.83984 -7.16016 -16 -16 -16h-48v-51.2002zM0 52.04c0.00292969 13.1953 7.97949 24.5215 19.3896 29.4199l108.61 46.54
-v-192h-112c-8.83984 0 -16 7.16016 -16 16v100.04zM620.61 81.46c11.7598 -5.0498 19.3896 -16.6201 19.3896 -29.4199v-100.04c0 -8.83984 -7.16016 -16 -16 -16h-112v192z" />
-    <glyph glyph-name="coins" unicode="&#xf51e;" 
-d="M0 42.7002c41.2998 -29.1006 116.8 -42.7002 192 -42.7002s150.7 13.5996 192 42.7002v-42.7002c0 -35.2998 -86 -64 -192 -64s-192 28.7002 -192 64v42.7002zM320 320c-106 0 -192 28.7002 -192 64s86 64 192 64s192 -28.7002 192 -64s-86 -64 -192 -64zM0 147.6
-c41.2998 -34 116.9 -51.5996 192 -51.5996s150.7 17.5996 192 51.5996v-51.5996c0 -35.2998 -86 -64 -192 -64s-192 28.7002 -192 64v51.5996zM416 136.6v63.6006c38.7002 6.89941 72.7998 18.0996 96 34.5v-42.7002c0 -23.7002 -38.7002 -44.2998 -96 -55.4004zM192 288
-c106 0 192 -35.7998 192 -80s-86 -80 -192 -80s-192 35.7998 -192 80s86 80 192 80zM411.3 231.7c-8.7998 23.7002 -30.5 42.8994 -60 57.2002c64.2002 3.19922 125.2 16.6992 160.7 41.7998v-42.7002c0 -24.2998 -40.7002 -45.5 -100.7 -56.2998z" />
-    <glyph glyph-name="compact-disc" unicode="&#xf51f;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM88 192c0 88.2002 71.7998 160 160 160v32c-105.9 0 -192 -86.0996 -192 -192h32zM248 96c53 0 96 43 96 96s-43 96 -96 96s-96 -43 -96 -96s43 -96 96 -96zM248 224
-c17.7002 0 32 -14.2998 32 -32s-14.2998 -32 -32 -32s-32 14.2998 -32 32s14.2998 32 32 32z" />
-    <glyph glyph-name="crow" unicode="&#xf520;" horiz-adv-x="640" 
-d="M544 416c53.0195 0 96 -28.6504 96 -64l-96 -16v-80c0 -87.2598 -58.2598 -160.8 -137.97 -184.14l41.2393 -111.53c2.27051 -6.23047 -0.939453 -13.1104 -7.16992 -15.3799l-22.5498 -8.20996c-6.22949 -2.27051 -13.1094 0.939453 -15.3799 7.16992l-44.5098 120.38
-c-1.90039 -0.0595703 -3.75 -0.290039 -5.66016 -0.290039h-39.0596l38.3291 -103.68c2.27051 -6.23047 -0.939453 -13.1104 -7.16992 -15.3799l-22.5498 -8.20996c-6.22949 -2.27051 -13.1094 0.939453 -15.3799 7.16992l-44.4102 120.1h-96.4902l-121.539 -60.7695
-c-20.0908 -10.04 -43.7305 4.56934 -43.7305 27.0293c0.00195312 9.8877 4.7373 18.6572 12.0898 24.1699l371.91 292.59v20.9805c0 44.1797 35.8203 80 80 80c26.0898 0 49.04 -12.6797 63.6396 -32h16.3604zM464 344c13.25 0 24 10.75 24 24c0 13.2598 -10.75 24 -24 24
-s-24 -10.7402 -24 -24c0 -13.25 10.75 -24 24 -24z" />
-    <glyph glyph-name="crown" unicode="&#xf521;" horiz-adv-x="640" 
-d="M528 0c8.7998 0 16 -7.2002 16 -16v-32c0 -8.7998 -7.2002 -16 -16 -16h-416c-8.7998 0 -16 7.2002 -16 16v32c0 8.7998 7.2002 16 16 16h416zM592 320c26.5 0 48 -21.5 48 -48s-21.5 -48 -48 -48c-2.59961 0 -5.2002 0.400391 -7.7002 0.799805l-72.2998 -192.8h-384
-l-72.2998 192.8c-2.5 -0.399414 -5.10059 -0.799805 -7.7002 -0.799805c-26.5 0 -48 21.5 -48 48s21.5996 48 48.0996 48s48 -21.5 48 -48c0 -7.09961 -1.69922 -13.7998 -4.39941 -19.7998l72.2998 -43.4004c15.2998 -9.2002 35.2998 -4 44.2002 11.6006l81.5 142.6
-c-10.7002 8.7998 -17.7002 22 -17.7002 37c0 26.5 21.5 48 48 48s48 -21.5 48 -48c0 -15 -7 -28.2002 -17.7002 -37l81.5 -142.6c8.90039 -15.6006 28.7998 -20.8008 44.2002 -11.6006l72.4004 43.4004c-2.80078 6.09961 -4.40039 12.7002 -4.40039 19.7998
-c0 26.5 21.5 48 48 48z" />
-    <glyph glyph-name="dice" unicode="&#xf522;" horiz-adv-x="640" 
-d="M592 256c26.5098 0 48 -21.4902 48 -48v-224c0 -26.5098 -21.4902 -48 -48 -48h-224c-26.5098 0 -48 21.4902 -48 48v46.4199l136.26 136.26c24.1201 24.1201 29.6904 59.7305 17 89.3203h118.74zM480 72c13.25 0 24 10.75 24 24c0 13.2598 -10.75 24 -24 24
-s-24 -10.7402 -24 -24c0 -13.25 10.75 -24 24 -24zM433.63 258.7c19.1602 -19.1602 19.1602 -50.2305 0 -69.4004l-174.939 -174.93c-19.1602 -19.1602 -50.2305 -19.1602 -69.3906 0l-174.93 174.939c-19.1602 19.1602 -19.1602 50.2305 0 69.3906l174.939 174.93
-c19.1602 19.1602 50.2305 19.1602 69.3906 0zM96 200c13.25 0 24 10.75 24 24c0 13.2598 -10.75 24 -24 24s-24 -10.7402 -24 -24c0 -13.25 10.75 -24 24 -24zM224 72c13.25 0 24 10.75 24 24c0 13.2598 -10.75 24 -24 24s-24 -10.7402 -24 -24c0 -13.25 10.75 -24 24 -24z
-M224 200c13.25 0 24 10.75 24 24c0 13.2598 -10.75 24 -24 24s-24 -10.7402 -24 -24c0 -13.25 10.75 -24 24 -24zM224 328c13.25 0 24 10.75 24 24c0 13.2598 -10.75 24 -24 24s-24 -10.7402 -24 -24c0 -13.25 10.75 -24 24 -24zM352 200c13.25 0 24 10.75 24 24
-c0 13.2598 -10.75 24 -24 24s-24 -10.7402 -24 -24c0 -13.25 10.75 -24 24 -24z" />
-    <glyph glyph-name="dice-five" unicode="&#xf523;" horiz-adv-x="448" 
-d="M384 416c35.3496 0 64 -28.6504 64 -64v-320c0 -35.3496 -28.6504 -64 -64 -64h-320c-35.3496 0 -64 28.6504 -64 64v320c0 35.3496 28.6504 64 64 64h320zM128 64c17.6699 0 32 14.3301 32 32s-14.3301 32 -32 32s-32 -14.3301 -32 -32s14.3301 -32 32 -32zM128 256
-c17.6699 0 32 14.3301 32 32s-14.3301 32 -32 32s-32 -14.3301 -32 -32s14.3301 -32 32 -32zM224 160c17.6699 0 32 14.3301 32 32s-14.3301 32 -32 32s-32 -14.3301 -32 -32s14.3301 -32 32 -32zM320 64c17.6699 0 32 14.3301 32 32s-14.3301 32 -32 32
-s-32 -14.3301 -32 -32s14.3301 -32 32 -32zM320 256c17.6699 0 32 14.3301 32 32s-14.3301 32 -32 32s-32 -14.3301 -32 -32s14.3301 -32 32 -32z" />
-    <glyph glyph-name="dice-four" unicode="&#xf524;" horiz-adv-x="448" 
-d="M384 416c35.3496 0 64 -28.6504 64 -64v-320c0 -35.3496 -28.6504 -64 -64 -64h-320c-35.3496 0 -64 28.6504 -64 64v320c0 35.3496 28.6504 64 64 64h320zM128 64c17.6699 0 32 14.3301 32 32s-14.3301 32 -32 32s-32 -14.3301 -32 -32s14.3301 -32 32 -32zM128 256
-c17.6699 0 32 14.3301 32 32s-14.3301 32 -32 32s-32 -14.3301 -32 -32s14.3301 -32 32 -32zM320 64c17.6699 0 32 14.3301 32 32s-14.3301 32 -32 32s-32 -14.3301 -32 -32s14.3301 -32 32 -32zM320 256c17.6699 0 32 14.3301 32 32s-14.3301 32 -32 32
-s-32 -14.3301 -32 -32s14.3301 -32 32 -32z" />
-    <glyph glyph-name="dice-one" unicode="&#xf525;" horiz-adv-x="448" 
-d="M384 416c35.3496 0 64 -28.6504 64 -64v-320c0 -35.3496 -28.6504 -64 -64 -64h-320c-35.3496 0 -64 28.6504 -64 64v320c0 35.3496 28.6504 64 64 64h320zM224 160c17.6699 0 32 14.3301 32 32s-14.3301 32 -32 32s-32 -14.3301 -32 -32s14.3301 -32 32 -32z" />
-    <glyph glyph-name="dice-six" unicode="&#xf526;" horiz-adv-x="448" 
-d="M384 416c35.3496 0 64 -28.6504 64 -64v-320c0 -35.3496 -28.6504 -64 -64 -64h-320c-35.3496 0 -64 28.6504 -64 64v320c0 35.3496 28.6504 64 64 64h320zM128 64c17.6699 0 32 14.3301 32 32s-14.3301 32 -32 32s-32 -14.3301 -32 -32s14.3301 -32 32 -32zM128 160
-c17.6699 0 32 14.3301 32 32s-14.3301 32 -32 32s-32 -14.3301 -32 -32s14.3301 -32 32 -32zM128 256c17.6699 0 32 14.3301 32 32s-14.3301 32 -32 32s-32 -14.3301 -32 -32s14.3301 -32 32 -32zM320 64c17.6699 0 32 14.3301 32 32s-14.3301 32 -32 32
-s-32 -14.3301 -32 -32s14.3301 -32 32 -32zM320 160c17.6699 0 32 14.3301 32 32s-14.3301 32 -32 32s-32 -14.3301 -32 -32s14.3301 -32 32 -32zM320 256c17.6699 0 32 14.3301 32 32s-14.3301 32 -32 32s-32 -14.3301 -32 -32s14.3301 -32 32 -32z" />
-    <glyph glyph-name="dice-three" unicode="&#xf527;" horiz-adv-x="448" 
-d="M384 416c35.3496 0 64 -28.6504 64 -64v-320c0 -35.3496 -28.6504 -64 -64 -64h-320c-35.3496 0 -64 28.6504 -64 64v320c0 35.3496 28.6504 64 64 64h320zM128 256c17.6699 0 32 14.3301 32 32s-14.3301 32 -32 32s-32 -14.3301 -32 -32s14.3301 -32 32 -32zM224 160
-c17.6699 0 32 14.3301 32 32s-14.3301 32 -32 32s-32 -14.3301 -32 -32s14.3301 -32 32 -32zM320 64c17.6699 0 32 14.3301 32 32s-14.3301 32 -32 32s-32 -14.3301 -32 -32s14.3301 -32 32 -32z" />
-    <glyph glyph-name="dice-two" unicode="&#xf528;" horiz-adv-x="448" 
-d="M384 416c35.3496 0 64 -28.6504 64 -64v-320c0 -35.3496 -28.6504 -64 -64 -64h-320c-35.3496 0 -64 28.6504 -64 64v320c0 35.3496 28.6504 64 64 64h320zM128 256c17.6699 0 32 14.3301 32 32s-14.3301 32 -32 32s-32 -14.3301 -32 -32s14.3301 -32 32 -32zM320 64
-c17.6699 0 32 14.3301 32 32s-14.3301 32 -32 32s-32 -14.3301 -32 -32s14.3301 -32 32 -32z" />
-    <glyph glyph-name="divide" unicode="&#xf529;" horiz-adv-x="448" 
-d="M224 96c35.3496 0 64 -28.6504 64 -64s-28.6504 -64 -64 -64s-64 28.6504 -64 64s28.6504 64 64 64zM224 288c-35.3496 0 -64 28.6504 -64 64s28.6504 64 64 64s64 -28.6504 64 -64s-28.6504 -64 -64 -64zM416 240c17.6699 0 32 -14.3301 32 -32v-32
-c0 -17.6699 -14.3301 -32 -32 -32h-384c-17.6699 0 -32 14.3301 -32 32v32c0 17.6699 14.3301 32 32 32h384z" />
-    <glyph glyph-name="door-closed" unicode="&#xf52a;" horiz-adv-x="640" 
-d="M624 0c8.83984 0 16 -7.16016 16 -16v-32c0 -8.83984 -7.16016 -16 -16 -16h-608c-8.83984 0 -16 7.16016 -16 16v32c0 8.83984 7.16016 16 16 16h111.99v397.2c0 28.0195 21.5293 50.7998 48 50.7998h288.01c26.4697 0 48 -22.7803 48 -50.7998v-397.2h112zM415.99 160
-c17.6797 0 32.0098 14.3301 32 32c0 17.6699 -14.3301 32 -32 32s-32 -14.3301 -32 -32s14.3301 -32 32 -32z" />
-    <glyph glyph-name="door-open" unicode="&#xf52b;" horiz-adv-x="640" 
-d="M624 0c8.83984 0 16 -7.16016 16 -16v-32c0 -8.83984 -7.16016 -16 -16 -16h-144v384h-96v64h112c26.4697 0 48 -22.1904 48 -49.4502v-334.55h80zM312.24 446.99c20.2002 5.24023 39.7598 -10.5898 39.7598 -32.1699v-478.82h-336c-8.83984 0 -16 7.16016 -16 16v32
-c0 8.83984 7.16016 16 16 16h80v365.08c0 15.2197 9.99023 28.4795 24.2402 32.1699zM264 160c13.25 0 24 14.3301 24 32s-10.75 32 -24 32s-24 -14.3301 -24 -32s10.75 -32 24 -32z" />
-    <glyph glyph-name="equals" unicode="&#xf52c;" horiz-adv-x="448" 
-d="M416 144c17.6699 0 32 -14.3301 32 -32v-32c0 -17.6699 -14.3301 -32 -32 -32h-384c-17.6699 0 -32 14.3301 -32 32v32c0 17.6699 14.3301 32 32 32h384zM416 336c17.6699 0 32 -14.3301 32 -32v-32c0 -17.6699 -14.3301 -32 -32 -32h-384c-17.6699 0 -32 14.3301 -32 32
-v32c0 17.6699 14.3301 32 32 32h384z" />
-    <glyph glyph-name="feather" unicode="&#xf52d;" 
-d="M467.14 403.16c50.5703 -50.5205 61.7002 -124.9 16.2607 -199.36l-131.54 -43.7998h97.7793c-9.92969 -10.6797 3.68066 3.07031 -46.3096 -46.8604l-147.57 -49.1396h98.1904c-74.9502 -73.1104 -194.53 -70.6504 -246.83 -54.9404l-66.1006 -66.0293
-c-9.37988 -9.37012 -24.5996 -9.37012 -33.9795 0s-9.37988 24.5693 0 33.9395l259.52 259.25c6.25 6.25 6.25 16.3799 0 22.6299s-16.3896 6.25 -22.6494 0l-178.44 -178.25c-6.75 60.3408 3.18066 150.78 63.6406 211.17c24.7695 24.7402 7.13965 7.14062 85.75 85.6602
-c90.6094 90.5107 189.729 88.21 252.279 25.7305z" />
-    <glyph glyph-name="frog" unicode="&#xf52e;" horiz-adv-x="576" 
-d="M446.53 350.57c0 0 58.4297 -19.0605 98.9893 -41.2803c18.7607 -10.2803 30.4805 -29.8301 30.4805 -51.2305c0 -21.793 -11.9512 -40.7695 -29.71 -50.7295l-154.44 -86.6504l98.5205 -104.68h53.6299c17.6699 0 32 -14.3301 32 -32c0 -8.83984 -7.16016 -16 -16 -16
-h-90.3799l-118.53 125.94c5.07031 54.1494 -29.9297 85.0596 -40.7998 93.21c-36.8496 27.6191 -88.29 27.6592 -125.13 0l-34.7803 -26.0908c-7.07031 -5.2998 -8.49023 -15.3291 -3.18945 -22.4092c5.31934 -7.10059 15.3496 -8.5 22.4092 -3.19043l32.7607 24.5898
-c20.6895 15.5303 48.3496 20.8105 72.2393 10.8799c44.0605 -18.3193 57.8506 -70.3701 33.71 -106.6l-35.7998 -48.3301h79.4902c17.6699 0 32 -14.3301 32 -32c0 -8.83984 -7.16016 -16 -16 -16h-304c-34.9199 0 -63.8896 28.0996 -64 63.0195
-c-0.5 166.86 126.75 304.021 289.46 319.44c6.82031 37.25 39.3096 65.54 78.54 65.54c39.1904 0 71.6699 -28.2305 78.5303 -65.4297zM368 312c13.25 0 24 10.75 24 24c0 13.2598 -10.75 24 -24 24c-13.2598 0 -24 -10.7402 -24 -24c0 -13.25 10.7402 -24 24 -24z" />
-    <glyph glyph-name="gas-pump" unicode="&#xf52f;" 
-d="M336 0c8.7998 0 16 -7.2002 16 -16v-32c0 -8.7998 -7.2002 -16 -16 -16h-320c-8.7998 0 -16 7.2002 -16 16v32c0 8.7998 7.2002 16 16 16h320zM493.2 340.7c12 -12 18.7998 -28.2998 18.7998 -45.2998v-223.4c0 -42.2002 -36.5 -76 -79.5 -71.7002
-c-37.5 3.90039 -64.5 38.2002 -64.5 75.9004v27.7998c0 22.0996 -17.9004 40 -40 40h-8v-112h-288v352c0 35.2998 28.7002 64 64 64h160c35.2998 0 64 -28.7002 64 -64v-192h8c48.5996 0 88 -39.4004 88 -88v-32c0 -13.2002 10.7998 -24 24 -24s24 10.7998 24 24v160.8
-c-27.0996 3.90039 -48 27.1006 -48 55.2002v62.0996l-37.7002 37.7002c-6.2002 6.2002 -6.2002 16.4004 0 22.6006l11.2998 11.2998c6.2002 6.2002 16.4004 6.2002 22.6006 0zM256 256v128h-160v-128h160z" />
-    <glyph glyph-name="glasses" unicode="&#xf530;" horiz-adv-x="576" 
-d="M574.1 167.63c1.26074 -5.07031 1.90039 -10.2695 1.90039 -15.5v-70.25c0 -62.8896 -51.5801 -113.88 -115.2 -113.88h-37.1201c-60.2793 0 -110.37 45.9404 -114.87 105.37l-2.92969 38.6299h-35.75l-2.92969 -38.6299
-c-4.50977 -59.4297 -54.6006 -105.37 -114.88 -105.37h-37.1201c-63.6201 0 -115.2 50.9902 -115.2 113.89v70.25c0.000976562 5.35059 0.663086 10.5205 1.90039 15.4902l45.3398 181.73c5.91016 23.6895 21.5898 44.0293 43 55.7998
-c21.4395 11.7402 46.9697 14.1094 70.1895 6.33008l15.25 -5.08008c8.39062 -2.79004 12.9199 -11.8604 10.1201 -20.2402l-5.05957 -15.1797c-2.79004 -8.37988 -11.8506 -12.9102 -20.2305 -10.1201l-13.1699 4.38965
-c-10.8701 3.62012 -22.9902 3.57031 -33.1494 -1.72949c-10.29 -5.36035 -17.5908 -14.5605 -20.3809 -25.8105l-38.46 -153.83c22.1904 6.81055 49.79 12.46 81.21 12.46c34.7803 0 73.9902 -7.00977 114.86 -26.75h73.1797
-c40.8701 19.7207 80.0801 26.7402 114.851 26.7402c31.4102 0 59.0098 -5.64941 81.2002 -12.46l-38.46 153.82c-2.80078 11.2598 -10.0801 20.4502 -20.3701 25.8193c-10.1602 5.30078 -22.29 5.35059 -33.1602 1.73047l-13.1797 -4.38965
-c-8.38086 -2.79004 -17.4404 1.73926 -20.2305 10.1201l-5.05957 15.1797c-2.80078 8.37988 1.72949 17.4502 10.1191 20.2402l15.25 5.08008c23.2207 7.7793 48.75 5.39941 70.1904 -6.33008c21.4102 -11.7607 37.0898 -32.1104 43 -55.8105zM203.38 78.21l3.12988 41.2197
-c-22.6699 8.58984 -46.0693 12.9199 -69.9297 12.9199c-29.1602 0 -54.46 -6.42969 -72.5801 -12.9199v-37.54c0 -27.5098 22.9697 -49.8896 51.2002 -49.8896h37.1201c26.6602 0 49.0898 20.2998 51.0596 46.21zM512 81.8799l-0.00976562 37.54
-c-18.1201 6.49023 -43.4307 12.9297 -72.5498 12.9297c-23.8701 0 -47.2803 -4.33008 -69.9502 -12.9199l3.12988 -41.2197c1.95996 -25.9102 24.3896 -46.21 51.0596 -46.21h37.1201c28.2305 0 51.2002 22.3701 51.2002 49.8799z" />
-    <glyph glyph-name="greater-than" unicode="&#xf531;" horiz-adv-x="384" 
-d="M365.52 238.15c11.2803 -5.25 18.4805 -16.5605 18.4902 -29.0107v-34.2295c-0.00195312 -12.8398 -7.55469 -23.9062 -18.4795 -29l-306.471 -142.91c-16.0195 -7.46973 -35.0596 -0.540039 -42.5293 15.4805l-13.5205 29
-c-7.46973 16.0195 -0.540039 35.0596 15.4805 42.5293l218.47 101.891l-218.43 101.85c-16.0605 7.49023 -23.0107 26.5801 -15.5205 42.6396l13.5703 29.0801c7.49023 16.0605 26.5801 23.0107 42.6396 15.5205z" />
-    <glyph glyph-name="greater-than-equal" unicode="&#xf532;" horiz-adv-x="448" 
-d="M55.2197 340.31c-18.29 6 -27.7393 24.2607 -21.0996 40.79l12.0303 29.9199c6.63965 16.5303 26.8594 25.0605 45.1494 19.0605l301.72 -119.98c13.7705 -4.51953 22.9805 -16.6094 22.9805 -30.1699v-15.96c0 -13.5596 -9.20996 -25.6494 -22.9805 -30.1699
-l-301.409 -119.859c-18.3906 -6.04004 -38.7002 2.54004 -45.3799 19.1494l-12.0908 30.0801c-6.67969 16.6104 2.81055 34.9697 21.2002 41l175.44 68.0498zM424 48c13.25 0 24 -10.7402 24 -24v-48c0 -13.25 -10.75 -24 -24 -24h-400c-13.25 0 -24 10.75 -24 24v48
-c0 13.2598 10.75 24 24 24h400z" />
-    <glyph glyph-name="helicopter" unicode="&#xf533;" horiz-adv-x="640" 
-d="M304 64c-10.4707 0 -19.7627 5.01465 -25.5996 12.7998l-86.4004 115.2l-160 64l-31.5098 108.12c-2.53027 10.0996 5.10938 19.8799 15.5195 19.8799h39.9902c5.03027 0 9.78027 -2.37012 12.7998 -6.40039l43.2002 -57.5996h208v64h-176c-8.83984 0 -16 7.16016 -16 16
-v32c0 8.83984 7.16016 16 16 16h416c8.83984 0 16 -7.16016 16 -16v-32c0 -8.83984 -7.16016 -16 -16 -16h-176v-64c123.71 0 224 -100.29 224 -224c0 -17.6699 -14.3301 -32 -32 -32h-272zM416 252.49v-124.49h124.79c-12.7598 62.5596 -62.2402 111.7 -124.79 124.49z
-M635.37 -10.8096c6.58984 -6.61035 6.04004 -17.5205 -0.980469 -23.6602c-33.1494 -29.0498 -53.5693 -29.5205 -68.4492 -29.5205h-325.94c-8.83984 0 -16 7.18066 -16 16.0303v32.0596c0 8.85059 7.16016 16.0303 16 16.0303h325.94
-c10.7998 0 17.5498 4.48047 24.6396 11.25c6.40039 6.11035 16.3896 6.27051 22.6396 0.00976562z" />
-    <glyph glyph-name="infinity" unicode="&#xf534;" horiz-adv-x="640" 
-d="M471.1 352c93.1006 0 168.9 -71.7998 168.9 -160s-75.7998 -160 -168.9 -160c-66.0996 0 -117.8 41.2998 -151.1 78.5996c-33.2998 -37.2998 -85 -78.5996 -151.1 -78.5996c-93.1006 0 -168.9 71.7998 -168.9 160s75.7998 160 168.9 160
-c66.0996 0 117.8 -41.2998 151.1 -78.5996c33.2998 37.2998 85 78.5996 151.1 78.5996zM168.9 128c38.0996 0 73.5996 36.4004 94 64c-20.6006 27.9004 -55.8008 64 -94 64c-40.2002 0 -72.9004 -28.7002 -72.9004 -64s32.7002 -64 72.9004 -64zM471.1 128
-c40.2002 0 72.9004 28.7002 72.9004 64s-32.7002 64 -72.9004 64c-38.0996 0 -73.5996 -36.4004 -94 -64c20.6006 -27.9004 55.8008 -64 94 -64z" />
-    <glyph glyph-name="kiwi-bird" unicode="&#xf535;" horiz-adv-x="576" 
-d="M575.81 230.02c0.300781 -5.7793 0.160156 -246.02 0.160156 -246.02c0 -7.30957 -4.95996 -13.7002 -12.0498 -15.5c-1.30957 -0.339844 -2.63965 -0.5 -3.9502 -0.5c-5.75 0 -11.1895 3.11035 -14.0498 8.33984l-74.4102 136.44
-c-7.04004 -0.470703 2.43066 -0.780273 -23.0498 -0.780273c-54.5996 0 -106.39 -19.25 -152.13 -49.0596c-12.46 -8.12012 -26.0996 -14.4502 -40.3398 -19.5107v-59.4297c0 -8.83984 -7.16016 -16 -16 -16h-16c-8.83984 0 -16 7.16016 -16 16v49.1797
-c-5.32031 -0.449219 -10.5605 -1.17969 -16 -1.17969c-16.6006 0 -32.6406 2.2998 -48 6.25977v-54.2598c0 -8.83984 -7.16016 -16 -16 -16h-16c-8.83984 0 -16 7.16016 -16 16v73.9902c-57.3105 33.21 -95.9502 95.0596 -95.9902 166.01
-c-0.0800781 145.76 129.3 182.88 147.31 186.94c57.1709 12.9199 111.221 0.259766 153.21 -28.7002c43.4902 -29.9902 94.9209 -46.2402 147.74 -46.2402h9.37012c60.6504 0 115.01 -45.4102 118.18 -105.98zM463.97 200c13.25 0 24 10.75 24 24
-c0 13.2598 -10.75 24 -24 24s-24 -10.7402 -24 -24c0 -13.25 10.75 -24 24 -24zM543.97 46.75v99.0596c-11.1299 -11.3799 -24.7393 -20.1494 -39.8594 -25.9795z" />
-    <glyph glyph-name="less-than" unicode="&#xf536;" horiz-adv-x="384" 
-d="M365.46 90.2598c16.0703 -7.49023 23.0205 -26.5801 15.5303 -42.6396l-13.5605 -29.0801c-7.48926 -16.0596 -26.5801 -23.0098 -42.6396 -15.5205l-306.31 142.83c-11.2705 5.25 -18.4805 16.5605 -18.4805 29v34.2402c0.00488281 12.8389 7.55664 23.9043 18.4805 29
-l306.46 142.91c16.0195 7.46973 35.0596 0.540039 42.5293 -15.4805l13.5205 -29c7.46973 -16.0195 0.540039 -35.0596 -15.4805 -42.5293l-218.47 -101.88z" />
-    <glyph glyph-name="less-than-equal" unicode="&#xf537;" horiz-adv-x="448" 
-d="M54.9805 233.8c-13.7705 4.52051 -22.9805 16.6104 -22.9805 30.1699v15.96c0 13.5703 9.20996 25.6602 22.9805 30.1807l301.71 119.96c18.29 6 38.5098 -2.53027 45.1494 -19.0605l12.0303 -29.9199c6.63965 -16.5195 -2.81055 -34.79 -21.1006 -40.79
-l-175.56 -68.0898l175.44 -68.0498c18.3896 -6.03027 27.8896 -24.3906 21.21 -41l-12.0908 -30.0801c-6.66992 -16.6104 -26.9893 -25.1797 -45.3799 -19.1504zM424 48c13.25 0 24 -10.7402 24 -24v-48c0 -13.25 -10.75 -24 -24 -24h-400c-13.25 0 -24 10.75 -24 24v48
-c0 13.2598 10.75 24 24 24h400z" />
-    <glyph glyph-name="memory" unicode="&#xf538;" horiz-adv-x="640" 
-d="M640 317.06c-18.5996 -6.60938 -32 -24.1895 -32 -45.0596s13.4004 -38.4502 32 -45.0596v-98.9404h-640v98.9404c18.5996 6.60938 32 24.1895 32 45.0596s-13.4004 38.4502 -32 45.0596v34.9404c0 17.6699 14.3301 32 32 32h576c17.6699 0 32 -14.3301 32 -32v-34.9404z
-M224 192v128h-64v-128h64zM352 192v128h-64v-128h64zM480 192v128h-64v-128h64zM0 0v96h640v-96h-64v26.6699c0 8.83984 -7.16016 16 -16 16s-16 -7.16016 -16 -16v-26.6699h-128v26.6699c0 8.83984 -7.16016 16 -16 16s-16 -7.16016 -16 -16v-26.6699h-128v26.6699
-c0 8.83984 -7.16016 16 -16 16s-16 -7.16016 -16 -16v-26.6699h-128v26.6699c0 8.83984 -7.16016 16 -16 16s-16 -7.16016 -16 -16v-26.6699h-64z" />
-    <glyph glyph-name="microphone-alt-slash" unicode="&#xf539;" horiz-adv-x="640" 
-d="M633.82 -10.0996c6.97949 -5.43066 8.22949 -15.4805 2.81934 -22.4502l-19.6396 -25.2705c-5.42969 -6.97949 -15.4805 -8.23926 -22.46 -2.80957l-588.36 454.729c-6.97949 5.43066 -8.22949 15.4805 -2.80957 22.4502l19.6396 25.2705
-c5.41992 6.97949 15.4805 8.22949 22.46 2.80957l178.53 -138v45.3604c0 53.0195 42.9805 96 96 96s96 -42.9805 96 -96h-85.3301c-5.88965 0 -10.6699 -3.58008 -10.6699 -8v-16c0 -4.41992 4.78027 -8 10.6699 -8h85.3301v-32h-85.3301
-c-5.88965 0 -10.6699 -3.58008 -10.6699 -8v-16c0 -4.41992 4.78027 -8 10.6699 -8h85.3301v-32h-85.0596l41.3994 -32h43.6699c0 -10.4502 -2.17969 -20.2705 -5.2793 -29.6699l26.5498 -20.5205c6.75977 15.4004 10.7197 32.2803 10.7197 50.2002v48
-c0 8.83984 7.16016 16 16 16h16c8.83984 0 16 -7.16016 16 -16v-48c0 -28.9805 -7.25977 -56.21 -19.7402 -80.3301zM400 -16c8.83984 0 16 -7.16016 16 -16v-16c0 -8.83984 -7.16016 -16 -16 -16h-160c-8.83984 0 -16 7.16016 -16 16v16c0 8.83984 7.16016 16 16 16h56
-v34.1504c-88.0303 12.1396 -152 92.0498 -152 181.689v6.85059l52.0303 -40.2207c12.4395 -53.2197 55.3301 -96.3994 111.18 -101.85c6.94043 -0.669922 13.6396 -0.200195 20.3496 0.200195l50.4004 -38.96c-10.8604 -3.80078 -22.25 -6.45996 -33.96 -8.08008v-33.7803
-h56z" />
-    <glyph glyph-name="money-bill-wave" unicode="&#xf53a;" horiz-adv-x="640" 
-d="M621.16 393.54c11.6094 -4.87012 18.8398 -16.8301 18.8496 -29.4697v-317.25c0 -18.4902 -15.04 -31.8105 -32.25 -31.8105c-3.39941 0 -6.87988 0.520508 -10.3496 1.62012c-30.8906 9.7998 -61.7598 13.7197 -92.6504 13.7197
-c-123.17 0 -246.34 -62.3496 -369.51 -62.3496c-38.7998 0 -77.6201 6.19043 -116.41 22.4697c-11.6094 4.86035 -18.8398 16.8301 -18.8398 29.46v317.261c0 18.4893 15.04 31.8096 32.25 31.8096c3.40039 0 6.87988 -0.519531 10.3496 -1.62012
-c30.8906 -9.7998 61.7607 -13.7197 92.6504 -13.7197c123.17 0 246.33 62.3496 369.5 62.3398c38.7998 0 77.6201 -6.19043 116.41 -22.46zM48 315.78v-60.4707c31 0 56.8398 22.1504 62.7197 51.54c-21.5996 1.36035 -42.5996 3.89062 -62.7197 8.93066zM48 30.7803
-c20.1201 -7.31055 41.1797 -11.8105 63.71 -13.6201c-1.53027 34.1299 -29.3398 61.3994 -63.71 61.3994v-47.7793zM320 96c44.1699 0 80 42.9697 80 96c0 53.0195 -35.8203 96 -80 96s-80 -42.9805 -80 -96c0 -53.0098 35.8096 -96 80 -96zM592 68.2197v57.7207
-c-26.8203 -3.40039 -48.4502 -23.2002 -54.3203 -49.2803c18.6104 -1.58984 36.8008 -4.0498 54.3203 -8.44043zM592 304.33v48.8896c-17.7197 6.43066 -36.2695 10.4902 -55.8096 12.6602c0.949219 -31.8496 24.9199 -57.6396 55.8096 -61.5498z" />
-    <glyph glyph-name="money-bill-wave-alt" unicode="&#xf53b;" horiz-adv-x="640" 
-d="M621.16 393.54c11.6094 -4.87012 18.8398 -16.8301 18.8496 -29.4697v-317.25c0 -18.4902 -15.04 -31.8105 -32.25 -31.8105c-3.39941 0 -6.87988 0.520508 -10.3496 1.62012c-30.8906 9.7998 -61.7598 13.7197 -92.6504 13.7197
-c-123.17 0 -246.34 -62.3496 -369.51 -62.3496c-38.7998 0 -77.6201 6.19043 -116.41 22.4697c-11.6094 4.86035 -18.8398 16.8301 -18.8398 29.46v317.261c0 18.4893 15.04 31.8096 32.25 31.8096c3.40039 0 6.87988 -0.519531 10.3496 -1.62012
-c30.8906 -9.7998 61.7607 -13.7197 92.6504 -13.7197c123.17 0 246.33 62.3496 369.5 62.3398c38.7998 0 77.6201 -6.19043 116.41 -22.46zM320 96c44.1699 0 80 42.9697 80 96c0 53.0195 -35.8203 96 -80 96s-80 -42.9805 -80 -96c0 -53.0098 35.8096 -96 80 -96z" />
-    <glyph glyph-name="money-check" unicode="&#xf53c;" horiz-adv-x="640" 
-d="M0 0v320h640v-320c0 -17.6699 -14.3301 -32 -32 -32h-576c-17.6699 0 -32 14.3301 -32 32zM448 208v-32c0 -8.83984 7.16016 -16 16 -16h96c8.83984 0 16 7.16016 16 16v32c0 8.83984 -7.16016 16 -16 16h-96c-8.83984 0 -16 -7.16016 -16 -16zM448 88v-16
-c0 -4.41992 3.58008 -8 8 -8h112c4.41992 0 8 3.58008 8 8v16c0 4.41992 -3.58008 8 -8 8h-112c-4.41992 0 -8 -3.58008 -8 -8zM64 184v-16c0 -4.41992 3.58008 -8 8 -8h304c4.41992 0 8 3.58008 8 8v16c0 4.41992 -3.58008 8 -8 8h-304c-4.41992 0 -8 -3.58008 -8 -8z
-M64 88v-16c0 -4.41992 3.58008 -8 8 -8h176c4.41992 0 8 3.58008 8 8v16c0 4.41992 -3.58008 8 -8 8h-176c-4.41992 0 -8 -3.58008 -8 -8zM624 416c8.83984 0 16 -7.16016 16 -16v-48h-640v48c0 8.83984 7.16016 16 16 16h608z" />
-    <glyph glyph-name="money-check-alt" unicode="&#xf53d;" horiz-adv-x="640" 
-d="M608 416c17.6699 0 32 -14.3301 32 -32v-384c0 -17.6699 -14.3301 -32 -32 -32h-576c-17.6699 0 -32 14.3301 -32 32v384c0 17.6699 14.3301 32 32 32h576zM176 120.12c23.6201 0.629883 42.6699 20.54 42.6699 45.0703c0 19.9697 -12.9902 37.8096 -31.5801 43.3896
-l-45 13.5c-5.16016 1.54004 -8.76953 6.78027 -8.76953 12.7295c0 7.27051 5.2998 13.1904 11.7998 13.1904h28.1104c4.55957 0 8.94922 -1.29004 12.8193 -3.71973c3.24023 -2.03027 7.36035 -1.91016 10.1299 0.729492l11.75 11.21
-c3.53027 3.37012 3.33008 9.20996 -0.569336 12.1406c-9.10059 6.83984 -20.0801 10.7695 -31.3701 11.3496v16.29c0 4.41992 -3.58008 8 -8 8h-16c-4.41992 0 -8 -3.58008 -8 -8v-16.1201c-23.6201 -0.629883 -42.6699 -20.5498 -42.6699 -45.0703
-c0 -19.9697 12.9893 -37.8096 31.5801 -43.3896l45 -13.5c5.15918 -1.54004 8.76953 -6.78027 8.76953 -12.7295c0 -7.27051 -5.2998 -13.1904 -11.7998 -13.1904h-28.1104c-4.55957 0 -8.9502 1.2998 -12.8193 3.71973
-c-3.24023 2.03027 -7.36035 1.91016 -10.1309 -0.729492l-11.75 -11.21c-3.5293 -3.37012 -3.3291 -9.20996 0.570312 -12.1406c9.10059 -6.83008 20.0801 -10.7695 31.3701 -11.3496v-16.29c0 -4.41992 3.58008 -8 8 -8h16c4.41992 0 8 3.58008 8 8v16.1201zM416 136v16
-c0 4.41992 -3.58008 8 -8 8h-112c-4.41992 0 -8 -3.58008 -8 -8v-16c0 -4.41992 3.58008 -8 8 -8h112c4.41992 0 8 3.58008 8 8zM576 136v16c0 4.41992 -3.58008 8 -8 8h-80c-4.41992 0 -8 -3.58008 -8 -8v-16c0 -4.41992 3.58008 -8 8 -8h80c4.41992 0 8 3.58008 8 8z
-M576 232v16c0 4.41992 -3.58008 8 -8 8h-272c-4.41992 0 -8 -3.58008 -8 -8v-16c0 -4.41992 3.58008 -8 8 -8h272c4.41992 0 8 3.58008 8 8z" />
-    <glyph glyph-name="not-equal" unicode="&#xf53e;" horiz-adv-x="448" 
-d="M416 240h-98.4199l-74.5303 -96h172.95c17.6699 0 32 -14.3301 32 -32v-32c0 -17.6699 -14.3301 -32 -32 -32h-247.48l-82.0898 -105.73c-5.37012 -7.00977 -15.4102 -8.34961 -22.4297 -2.96973l-25.4102 19.46c-7.00977 5.37988 -8.33984 15.4199 -2.96973 22.4307
-l51.8701 66.8096h-55.4902c-17.6699 0 -32 14.3301 -32 32v32c0 17.6699 14.3301 32 32 32h130.03l74.5293 96h-204.56c-17.6699 0 -32 14.3301 -32 32v32c0 17.6699 14.3301 32 32 32h279.09l82.0801 105.73c5.37988 7.00977 15.4199 8.34961 22.4404 2.96973
-l25.4092 -19.46c7.01074 -5.37012 8.34082 -15.4102 2.9707 -22.4307l-51.8701 -66.8096h23.8799c17.6699 0 32 -14.3301 32 -32v-32c0 -17.6699 -14.3301 -32 -32 -32z" />
-    <glyph glyph-name="palette" unicode="&#xf53f;" 
-d="M204.3 443c163.8 31.9004 307.2 -92.0996 307.7 -249.7c-0.0996094 -35.7002 -29.0996 -65.2998 -64.9004 -65.2998h-79.6992c-51 0 -84 -53 -60.9004 -98.4004c18.9004 -37.0996 -1.2998 -85.2998 -42.5 -91.6992c-127.1 -19.7002 -295.8 119.699 -258.8 306.699
-c19.5996 99.1006 99.7002 179 199.1 198.4zM96 128c17.7002 0 32 14.2998 32 32s-14.2998 32 -32 32s-32 -14.2998 -32 -32s14.2998 -32 32 -32zM128 256c17.7002 0 32 14.2998 32 32s-14.2998 32 -32 32s-32 -14.2998 -32 -32s14.2998 -32 32 -32zM256 320
-c17.7002 0 32 14.2998 32 32s-14.2998 32 -32 32s-32 -14.2998 -32 -32s14.2998 -32 32 -32zM384 256c17.7002 0 32 14.2998 32 32s-14.2998 32 -32 32s-32 -14.2998 -32 -32s14.2998 -32 32 -32z" />
-    <glyph glyph-name="parking" unicode="&#xf540;" horiz-adv-x="448" 
-d="M400 416c26.5 0 48 -21.5 48 -48v-352c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h352zM240 128c52.9004 0 96 43.0996 96 96s-43.0996 96 -96 96h-96c-8.7998 0 -16 -7.2002 -16 -16v-224c0 -8.7998 7.2002 -16 16 -16h32
-c8.7998 0 16 7.2002 16 16v48h48zM240 256c17.5996 0 32 -14.4004 32 -32s-14.4004 -32 -32 -32h-48v64h48z" />
-    <glyph glyph-name="percentage" unicode="&#xf541;" horiz-adv-x="384" 
-d="M109.25 274.75c-24.9902 -25 -65.5098 -25 -90.5098 0c-24.9902 24.9902 -24.9902 65.5195 0 90.5098s65.5195 24.9902 90.5098 0s24.9902 -65.5195 0 -90.5098zM365.25 109.26c25 -25 25 -65.5195 0 -90.5098c-24.9902 -24.9902 -65.5195 -24.9902 -90.5098 0
-s-24.9902 65.5195 0 90.5098s65.5195 24.9902 90.5098 0zM363.31 340.69c12.5 -12.5 12.5 -32.7607 0 -45.25l-274.75 -274.75c-12.4893 -12.5 -32.75 -12.5 -45.25 0l-22.6191 22.6191c-12.5 12.4902 -12.5 32.75 0 45.25l274.75 274.75c12.4893 12.5 32.75 12.5 45.25 0z
-" />
-    <glyph glyph-name="project-diagram" unicode="&#xf542;" horiz-adv-x="640" 
-d="M384 128c17.6699 0 32 -14.3301 32 -32v-128c0 -17.6699 -14.3301 -32 -32 -32h-128c-17.6699 0 -32 14.3301 -32 32v128c0 17.6699 14.3301 32 32 32h128zM192 416v-32h224v-64h-224v-47.5098l64.2803 -112.49h-0.280273c-23.5996 0 -44.0195 -12.9805 -55.1201 -32.04
-l-73.1602 128.04h-95.7197c-17.6699 0 -32 14.3301 -32 32v128c0 17.6699 14.3301 32 32 32h128c17.6699 0 32 -14.3301 32 -32zM608 448c17.6699 0 32 -14.3301 32 -32v-128c0 -17.6699 -14.3301 -32 -32 -32h-128c-17.6699 0 -32 14.3301 -32 32v128
-c0 17.6699 14.3301 32 32 32h128z" />
-    <glyph glyph-name="receipt" unicode="&#xf543;" horiz-adv-x="384" 
-d="M358.4 444.8c10.5996 7.90039 25.5996 0.400391 25.5996 -12.7998v-480c0 -13.2002 -15.0996 -20.7002 -25.5996 -12.7998l-38.4004 44.7998l-54.4004 -44.7998c-2.66602 -2.01953 -6.01367 -3.21777 -9.6123 -3.21777c-3.59961 0 -6.9209 1.19824 -9.58691 3.21777
-l-54.4004 44.7998l-54.4004 -44.7998c-2.66602 -2.01953 -6.01367 -3.21777 -9.6123 -3.21777c-3.59961 0 -6.9209 1.19824 -9.58691 3.21777l-54.4004 44.7998l-38.4004 -44.7998c-10.5996 -7.90039 -25.5996 -0.400391 -25.5996 12.7998v480
-c0 13.2002 15 20.7002 25.5996 12.7998l38.4004 -44.7998l54.4004 44.7998c2.66602 2.01953 6.01367 3.21777 9.6123 3.21777c3.59961 0 6.9209 -1.19824 9.58691 -3.21777l54.4004 -44.7998l54.4004 44.7998c2.66602 2.01953 6.01367 3.21777 9.6123 3.21777
-c3.59961 0 6.9209 -1.19824 9.58691 -3.21777l54.4004 -44.7998zM320 88v16c0 4.40039 -3.59961 8 -8 8h-240c-4.40039 0 -8 -3.59961 -8 -8v-16c0 -4.40039 3.59961 -8 8 -8h240c4.40039 0 8 3.59961 8 8zM320 184v16c0 4.40039 -3.59961 8 -8 8h-240
-c-4.40039 0 -8 -3.59961 -8 -8v-16c0 -4.40039 3.59961 -8 8 -8h240c4.40039 0 8 3.59961 8 8zM320 280v16c0 4.40039 -3.59961 8 -8 8h-240c-4.40039 0 -8 -3.59961 -8 -8v-16c0 -4.40039 3.59961 -8 8 -8h240c4.40039 0 8 3.59961 8 8z" />
-    <glyph glyph-name="robot" unicode="&#xf544;" horiz-adv-x="640" 
-d="M32 224h32v-192h-32h-0.0390625c-17.6406 0 -31.9619 14.3213 -31.9619 31.9619c0 0.0126953 0.000976562 0.0253906 0.000976562 0.0380859v128v0.0390625c0 17.6406 14.3213 31.9619 31.9619 31.9619c0.0126953 0 0.0253906 -0.000976562 0.0380859 -0.000976562z
-M544 272v-272c-0.0351562 -35.3066 -28.6934 -63.9648 -64 -64h-320c-35.3066 0.0351562 -63.9648 28.6934 -64 64v272v0.0263672c0 44.1387 35.835 79.9746 79.9736 79.9746c0.00878906 0 0.0175781 -0.000976562 0.0263672 -0.000976562h112v64
-c0 17.6611 14.3389 32 32 32s32 -14.3389 32 -32v-64h112h0.0263672c44.1387 0 79.9746 -35.835 79.9746 -79.9736c0 -0.00878906 -0.000976562 -0.0175781 -0.000976562 -0.0263672zM264 192c0 22.0762 -17.9238 40 -40 40s-40 -17.9238 -40 -40s17.9238 -40 40 -40
-c22.0752 0 40 17.9248 40 40zM256 64h-64v-32h64v32zM352 64h-64v-32h64v32zM456 192c0 22.0762 -17.9238 40 -40 40s-40 -17.9238 -40 -40s17.9238 -40 40 -40c22.0752 0 40 17.9248 40 40zM448 64h-64v-32h64v32zM640 192v-128v-0.0390625
-c0 -17.6406 -14.3213 -31.9619 -31.9619 -31.9619c-0.0126953 0 -0.0253906 0.000976562 -0.0380859 0.000976562h-32v192h32h0.0390625c17.6406 0 31.9619 -14.3213 31.9619 -31.9619c0 -0.0126953 -0.000976562 -0.0253906 -0.000976562 -0.0380859z" />
-    <glyph glyph-name="ruler" unicode="&#xf545;" horiz-adv-x="640" 
-d="M635.7 280.8c8.7998 -15 3.59961 -34.2002 -11.6006 -42.7998l-496.8 -281.9c-15.2002 -8.59961 -34.7002 -3.5 -43.5 11.5l-79.5996 135.601c-8.7998 15 -3.5 34.0996 11.7002 42.7998l69 39.0996l59.6992 -101.399c2.2002 -3.7998 7.10059 -5.10059 10.9004 -2.90039
-l13.7998 7.7998c3.7998 2.2002 5.10059 7 2.90039 10.7002l-59.7002 101.7l55.2002 31.2998l27.8994 -47.5c2.2002 -3.7998 7.10059 -5.09961 10.9004 -2.89941l13.7998 7.7998c3.7998 2.2002 5.10059 6.89941 2.90039 10.7002l-27.9004 47.3994l55.2002 31.2998
-l59.7002 -101.699c2.2002 -3.80078 7.09961 -5.10059 10.8994 -2.90039l13.8008 7.7998c3.7998 2.2002 5.09961 7 2.89941 10.7002l-59.7998 101.7l55.2002 31.2998l27.8994 -47.2998c2.2002 -3.7998 7.10059 -5.10059 10.9004 -2.90039l13.7998 7.7998
-c3.7998 2.2002 5.10059 6.90039 2.90039 10.7002l-27.9004 47.4004l55.2002 31.2998l59.7002 -101.6c2.2002 -3.80078 7.09961 -5.10059 10.8994 -2.90039l13.8008 7.7998c3.7998 2.2002 5.09961 6.90039 2.89941 10.7002l-59.7002 101.7l69 39.0996
-c15.2002 8.60059 34.7002 3.5 43.5 -11.5z" />
-    <glyph glyph-name="ruler-combined" unicode="&#xf546;" 
-d="M160 160v-41.3799l-158.43 -158.42c-0.660156 2.55957 -1.57031 5.03027 -1.57031 7.7998v448c0 17.6699 14.3301 32 32 32h96c17.6699 0 32 -14.3301 32 -32v-32h-56c-4.41992 0 -8 -3.58008 -8 -8v-16c0 -4.41992 3.58008 -8 8 -8h56v-64h-56
-c-4.41992 0 -8 -3.58008 -8 -8v-16c0 -4.41992 3.58008 -8 8 -8h56v-64h-56c-4.41992 0 -8 -3.58008 -8 -8v-16c0 -4.41992 3.58008 -8 8 -8h56zM480 96c17.6699 0 32 -14.3301 32 -32v-96c0 -17.6699 -14.3301 -32 -32 -32h-448
-c-2.75977 0 -5.24023 0.910156 -7.7998 1.57031l158.43 158.43h41.3701v-56c0 -4.41992 3.58008 -8 8 -8h16c4.41992 0 8 3.58008 8 8v56h64v-56c0 -4.41992 3.58008 -8 8 -8h16c4.41992 0 8 3.58008 8 8v56h64v-56c0 -4.41992 3.58008 -8 8 -8h16c4.41992 0 8 3.58008 8 8
-v56h32z" />
-    <glyph glyph-name="ruler-horizontal" unicode="&#xf547;" horiz-adv-x="576" 
-d="M544 320c17.6699 0 32 -14.3301 32 -32v-192c0 -17.6699 -14.3301 -32 -32 -32h-512c-17.6699 0 -32 14.3301 -32 32v192c0 17.6699 14.3301 32 32 32h48v-88c0 -4.41992 3.58008 -8 8 -8h16c4.41992 0 8 3.58008 8 8v88h64v-88c0 -4.41992 3.58008 -8 8 -8h16
-c4.41992 0 8 3.58008 8 8v88h64v-88c0 -4.41992 3.58008 -8 8 -8h16c4.41992 0 8 3.58008 8 8v88h64v-88c0 -4.41992 3.58008 -8 8 -8h16c4.41992 0 8 3.58008 8 8v88h64v-88c0 -4.41992 3.58008 -8 8 -8h16c4.41992 0 8 3.58008 8 8v88h48z" />
-    <glyph glyph-name="ruler-vertical" unicode="&#xf548;" horiz-adv-x="256" 
-d="M168 32h88v-64c0 -17.6699 -14.3301 -32 -32 -32h-192c-17.6699 0 -32 14.3301 -32 32v448c0 17.6699 14.3301 32 32 32h192c17.6699 0 32 -14.3301 32 -32v-64h-88c-4.41992 0 -8 -3.58008 -8 -8v-16c0 -4.41992 3.58008 -8 8 -8h88v-64h-88
-c-4.41992 0 -8 -3.58008 -8 -8v-16c0 -4.41992 3.58008 -8 8 -8h88v-64h-88c-4.41992 0 -8 -3.58008 -8 -8v-16c0 -4.41992 3.58008 -8 8 -8h88v-64h-88c-4.41992 0 -8 -3.58008 -8 -8v-16c0 -4.41992 3.58008 -8 8 -8z" />
-    <glyph glyph-name="school" unicode="&#xf549;" horiz-adv-x="640" 
-d="M0 224c0 17.6699 14.3301 32 32 32h64v-320h-80c-8.83984 0 -16 7.16016 -16 16v272zM360 272c4.41992 0 8 -3.58008 8 -8v-16c0 -4.41992 -3.58008 -8 -8 -8h-48c-4.41992 0 -8 3.58008 -8 8v64c0 4.41992 3.58008 8 8 8h16c4.41992 0 8 -3.58008 8 -8v-40h24z
-M497.75 335.96c8.90039 -5.92969 14.25 -15.9297 14.25 -26.6299v-373.33h-128v144c0 8.83984 -7.16016 16 -16 16h-96c-8.83984 0 -16 -7.16016 -16 -16v-144h-128v373.34c0.00195312 11.1084 5.64453 20.8828 14.25 26.6201l160 106.67
-c5.0752 3.38086 11.2324 5.35156 17.7822 5.35156s12.6426 -1.9707 17.7178 -5.35156zM320 192c44.1797 0 80 35.8203 80 80s-35.8203 80 -80 80s-80 -35.8203 -80 -80s35.8203 -80 80 -80zM608 256c17.6699 0 32 -14.3301 32 -32v-272c0 -8.83984 -7.16016 -16 -16 -16h-80
-v320h64z" />
-    <glyph glyph-name="screwdriver" unicode="&#xf54a;" 
-d="M448 448l64 -64l-96 -128h-62.0596l-83.0303 -83.0303c-4.25 6.79004 -9.07031 13.2705 -14.8701 19.0703c-5.7998 5.80957 -12.2803 10.6201 -19.0703 14.8701l83.0303 83.0303v62.0596zM128 169.41c29.1104 29.1094 76.2998 29.1094 105.41 0
-c29.1094 -29.1104 29.1094 -76.2998 0 -105.41l-117.08 -117.08c-14.5605 -14.5596 -38.1504 -14.5596 -52.71 0l-52.7002 52.7002c-14.5498 14.5596 -14.5498 38.1602 0 52.71z" />
-    <glyph glyph-name="shoe-prints" unicode="&#xf54b;" horiz-adv-x="640" 
-d="M192 288c-35.3496 0 -64 28.6504 -64 64s28.6504 64 64 64h32v-128h-32zM0 32c0 35.3496 28.6504 64 64 64h32v-128h-32c-35.3496 0 -64 28.6504 -64 64zM337.46 160c90.3604 0 174.54 -32 174.54 -96c0 -45.2197 -39.0996 -97.2998 -148.58 -120.82
-c-31.9795 -6.87012 -64.8896 -8.50977 -97.5801 -6.19922c-27.2998 1.92969 -54.0996 7.76953 -80.3096 15.0498l-57.5303 15.9697v128c60.21 0 79.9404 15.6201 104.73 32c28.5693 18.8799 69.8193 32 104.729 32zM491.42 440.81
-c109.48 -23.5098 148.58 -75.5898 148.58 -120.81c0 -64 -84.1797 -96 -174.54 -96c-34.9102 0 -76.1602 13.1201 -104.729 32c-24.79 16.3799 -44.5303 32 -104.73 32v128l57.5303 15.9697c26.21 7.27051 53.0098 13.1104 80.3096 15.04
-c32.6904 2.32031 65.6006 0.669922 97.5801 -6.2002z" />
-    <glyph glyph-name="skull" unicode="&#xf54c;" 
-d="M256 448c141.4 0 256 -100.3 256 -224c0 -70.0996 -36.9004 -132.6 -94.5 -173.7c-9.7002 -6.89941 -15.2002 -18.2002 -13.5 -29.8994l9.40039 -66.2002c1.39941 -9.60059 -6 -18.2002 -15.7002 -18.2002h-77.7002v56c0 4.40039 -3.59961 8 -8 8h-16
-c-4.40039 0 -8 -3.59961 -8 -8v-56h-64v56c0 4.40039 -3.59961 8 -8 8h-16c-4.40039 0 -8 -3.59961 -8 -8v-56h-77.7002c-9.7002 0 -17.0996 8.59961 -15.7002 18.2002l9.40039 66.2002c1.7002 11.7998 -3.90039 23 -13.5 29.8994
-c-57.5996 41.1006 -94.5 103.601 -94.5 173.7c0 123.7 114.6 224 256 224zM160 128c35.2998 0 64 28.7002 64 64s-28.7002 64 -64 64s-64 -28.7002 -64 -64s28.7002 -64 64 -64zM352 128c35.2998 0 64 28.7002 64 64s-28.7002 64 -64 64s-64 -28.7002 -64 -64
-s28.7002 -64 64 -64z" />
-    <glyph glyph-name="smoking-ban" unicode="&#xf54d;" 
-d="M96 144v64c0 8.7998 7.2002 16 16 16h21.5l96 -96h-117.5c-8.7998 0 -16 7.2002 -16 16zM256 448c141.4 0 256 -114.6 256 -256s-114.6 -256 -256 -256s-256 114.6 -256 256s114.6 256 256 256zM256 0c41.4004 0 79.7002 13.2998 111.1 35.7002l-267.399 267.399
-c-22.4004 -31.3994 -35.7002 -69.6992 -35.7002 -111.1c0 -105.9 86.0996 -192 192 -192zM301.2 192l32 -32h50.7998v32h-82.7998zM412.3 80.9004c22.4004 31.3994 35.7002 69.6992 35.7002 111.1c0 105.9 -86.0996 192 -192 192
-c-41.4004 0 -79.7002 -13.2998 -111.1 -35.7002l124.3 -124.3h130.8c8.7998 0 16 -7.2002 16 -16v-64c0 -8.7998 -7.2002 -16 -16 -16h-34.7998zM320.6 320c32.1006 0 58.7002 -23.7002 63.3008 -54.5996c0.699219 -4.90039 -3 -9.40039 -8 -9.40039h-16.2002
-c-3.7002 0 -7 2.5 -7.7002 6.09961c-2.7998 14.7002 -15.7998 25.9004 -31.4004 25.9004c-32.0996 0 -58.6992 23.7002 -63.2998 54.5996c-0.700195 4.90039 3 9.40039 8 9.40039h16.2002c3.7002 0 7 -2.5 7.7002 -6.09961
-c2.7998 -14.7002 15.7998 -25.9004 31.3994 -25.9004z" />
-    <glyph glyph-name="store" unicode="&#xf54e;" horiz-adv-x="616" 
-d="M602 329.4c33.5996 -53.6006 3.7998 -128 -59 -136.4c-4.5 -0.599609 -9 -0.900391 -13.7002 -0.900391c-29.5 0 -55.7002 13 -73.7998 33.1006c-18 -20.1006 -44.2002 -33.1006 -73.7998 -33.1006c-29.5 0 -55.7998 13 -73.7998 33.1006
-c-18 -20.1006 -44.2002 -33.1006 -73.8008 -33.1006c-29.5 0 -55.7998 13 -73.7998 33.1006c-18 -20.1006 -44.2002 -33.1006 -73.7998 -33.1006c-4.59961 0 -9.2002 0.300781 -13.7002 0.900391c-62.5996 8.5 -92.2998 82.9004 -58.7998 136.4l64.9004 103.6
-c5.7998 9.2998 16.0996 15 27.0996 15h404c11 0 21.2998 -5.7002 27.0996 -15zM529.5 160c6.09961 0 12.0996 0.400391 18.2002 1.2002c5.59961 0.700195 11 2 16.3994 3.59961v-196.8c0 -17.7002 -14.2998 -32 -32 -32h-448c-17.6992 0 -32 14.2998 -32 32v196.8
-c5.30078 -1.5 10.8008 -2.7998 16.4004 -3.59961c5.90039 -0.799805 12 -1.2002 18 -1.2002c10 0 19.9004 1.59961 29.5 3.7998v-99.7998h384v99.7998c9.59961 -2.2998 19.5 -3.7998 29.5 -3.7998z" />
-    <glyph glyph-name="store-alt" unicode="&#xf54f;" horiz-adv-x="640" 
-d="M320 64v160h64v-256c0 -17.7002 -14.2998 -32 -32 -32h-256c-17.7002 0 -32 14.2998 -32 32v256h64v-160h192zM634.6 305.8c14.1006 -21.2998 -1.09961 -49.7998 -26.5996 -49.7998h-575.9c-25.5996 0 -40.7998 28.5 -26.5996 49.7998l85.2998 128
-c5.90039 8.90039 15.9004 14.2002 26.6006 14.2002h405.199c10.7002 0 20.7002 -5.2998 26.7002 -14.2002zM512 -48v272h64v-272c0 -8.7998 -7.2002 -16 -16 -16h-32c-8.7998 0 -16 7.2002 -16 16z" />
-    <glyph glyph-name="stream" unicode="&#xf550;" 
-d="M16 320c-8.83984 0 -16 7.16016 -16 16v64c0 8.83984 7.16016 16 16 16h416c8.83984 0 16 -7.16016 16 -16v-64c0 -8.83984 -7.16016 -16 -16 -16h-416zM496 240c8.83984 0 16 -7.16016 16 -16v-64c0 -8.83984 -7.16016 -16 -16 -16h-416c-8.83984 0 -16 7.16016 -16 16
-v64c0 8.83984 7.16016 16 16 16h416zM432 64c8.83984 0 16 -7.16016 16 -16v-64c0 -8.83984 -7.16016 -16 -16 -16h-416c-8.83984 0 -16 7.16016 -16 16v64c0 8.83984 7.16016 16 16 16h416z" />
-    <glyph glyph-name="stroopwafel" unicode="&#xf551;" 
-d="M188.12 237.26l45.25 -45.2598l-45.2598 -45.25l-45.25 45.25zM301.25 259.88l-45.25 -45.25l-45.25 45.2598l45.25 45.25zM210.75 124.12l45.25 45.25l45.2598 -45.25l-45.2598 -45.2598zM256 448c141.38 0 256 -114.62 256 -256s-114.62 -256 -256 -256
-s-256 114.62 -256 256s114.62 256 256 256zM442.68 152.4c1.44629 1.4502 2.3418 3.45312 2.3418 5.66113s-0.895508 4.20801 -2.3418 5.6582l-28.29 28.2803l28.2705 28.3096c3.12012 3.12012 3.12012 8.19043 0 11.3105l-11.3105 11.3096
-c-3.11914 3.12012 -8.18945 3.12012 -11.3096 0l-28.29 -28.29l-45.25 45.2607l33.9404 33.9395l16.9697 -16.9697c3.12012 -3.12012 8.18945 -3.12012 11.3096 0l11.3105 11.3096c3.12012 3.12012 3.12012 8.19043 0 11.3105l-16.9707 16.9697l16.9707 16.9697
-c3.12012 3.12012 3.12012 8.19043 0 11.3105l-11.3105 11.3096c-3.12012 3.12012 -8.18945 3.12012 -11.3096 0l-16.9697 -16.9697l-16.9707 16.9697c-3.12012 3.12012 -8.18945 3.12012 -11.3096 0l-11.3105 -11.3096c-3.11914 -3.12012 -3.11914 -8.19043 0 -11.3105
-l16.9707 -16.9697l-33.9404 -33.9404l-45.2598 45.25l28.29 28.29c3.12012 3.12012 3.12012 8.19043 0 11.3105l-11.3105 11.3096c-3.11914 3.12012 -8.18945 3.12012 -11.3096 0l-28.29 -28.29l-28.3096 28.2705c-3.12012 3.12012 -8.19043 3.12012 -11.3105 0
-l-11.3096 -11.3105c-3.12012 -3.11914 -3.12012 -8.18945 0 -11.3096l28.29 -28.29l-45.2607 -45.25l-33.9395 33.9404l16.9697 16.9697c3.12012 3.12012 3.12012 8.18945 0 11.3096l-11.3096 11.3105c-3.12012 3.12012 -8.19043 3.12012 -11.3105 0l-16.9697 -16.9707
-l-16.9697 16.9707c-3.12012 3.12012 -8.19043 3.12012 -11.3105 0l-11.3096 -11.3105c-3.12012 -3.12012 -3.12012 -8.18945 0 -11.3096l16.9697 -16.9697l-16.9697 -16.9707c-3.12012 -3.12012 -3.12012 -8.18945 0 -11.3096l11.3096 -11.3105
-c3.12012 -3.11914 8.19043 -3.11914 11.3105 0l16.9697 16.9707l33.9404 -33.9404l-45.25 -45.2598l-28.29 28.29c-3.12012 3.12012 -8.19043 3.12012 -11.3105 0l-11.3096 -11.3105c-3.12012 -3.11914 -3.12012 -8.18945 0 -11.3096l28.29 -28.29l-28.29 -28.29
-c-3.12012 -3.12012 -3.12012 -8.19043 0 -11.3096l11.3398 -11.3301c3.12012 -3.12012 8.18945 -3.12012 11.3096 0l28.29 28.29l45.25 -45.25l-33.9395 -33.9404l-16.9707 16.9697c-3.11914 3.12012 -8.18945 3.12012 -11.3096 0l-11.3096 -11.3096
-c-3.12012 -3.12012 -3.12012 -8.19043 0 -11.3105l16.9697 -16.9697l-16.9697 -16.9697c-3.12012 -3.12012 -3.12012 -8.19043 0 -11.3105l11.3096 -11.3096c3.12012 -3.12012 8.19043 -3.12012 11.3096 0l16.9707 16.9697l16.9697 -16.9697
-c3.12012 -3.12012 8.19043 -3.12012 11.3096 0l11.3105 11.3096c3.12012 3.12012 3.12012 8.19043 0 11.3105l-16.9697 16.9697l33.9395 33.9404l45.25 -45.2598l-28.29 -28.29c-3.12012 -3.12012 -3.12012 -8.19043 0 -11.3105l11.3105 -11.3096
-c3.11914 -3.12012 8.18945 -3.12012 11.3096 0l28.29 28.29l28.3096 -28.2705c3.12012 -3.12012 8.19043 -3.12012 11.3105 0l11.3096 11.3105c3.12012 3.11914 3.12012 8.18945 0 11.3096l-28.29 28.29l45.2607 45.2598l33.9395 -33.9395l-16.9697 -16.9707
-c-3.12012 -3.11914 -3.12012 -8.18945 0 -11.3096l11.3096 -11.3096c3.12012 -3.12012 8.19043 -3.12012 11.3105 0l16.9697 16.9697l16.9697 -16.9697c3.12012 -3.12012 8.19043 -3.12012 11.3105 0l11.3096 11.3096c3.12012 3.12012 3.12012 8.19043 0 11.3096
-l-16.9697 16.9707l16.9697 16.9697c3.12012 3.12012 3.12012 8.19043 0 11.3096l-11.3096 11.3105c-3.12012 3.12012 -8.19043 3.12012 -11.3105 0l-16.9697 -16.9697l-33.9404 33.9395l45.25 45.25l28.29 -28.29c3.12012 -3.12012 8.19043 -3.12012 11.3105 0zM278.63 192
-l45.2598 45.2598l45.25 -45.2598l-45.25 -45.25z" />
-    <glyph glyph-name="toolbox" unicode="&#xf552;" 
-d="M502.63 233.37c6 -6 9.37012 -14.1396 9.37012 -22.6201v-82.75h-128v16c0 8.83984 -7.16016 16 -16 16h-32c-8.83984 0 -16 -7.16016 -16 -16v-16h-128v16c0 8.83984 -7.16016 16 -16 16h-32c-8.83984 0 -16 -7.16016 -16 -16v-16h-128v82.7402
-c0 8.49023 3.37012 16.6299 9.37012 22.6299l45.25 45.2598c6.00977 6 14.1396 9.37012 22.6299 9.37012h50.75v80c0 26.5098 21.4902 48 48 48h160c26.5098 0 48 -21.4902 48 -48v-80.0098h50.75c8.49023 0 16.6299 -3.37012 22.6299 -9.37012zM320 288v64h-128v-64h128z
-M384 80v16h128v-96c0 -17.6699 -14.3301 -32 -32 -32h-448c-17.6699 0 -32 14.3301 -32 32v96h128v-16c0 -8.83984 7.16016 -16 16 -16h32c8.83984 0 16 7.16016 16 16v16h128v-16c0 -8.83984 7.16016 -16 16 -16h32c8.83984 0 16 7.16016 16 16z" />
-    <glyph glyph-name="tshirt" unicode="&#xf553;" horiz-adv-x="640" 
-d="M631.2 351.5c7.89941 -3.90039 11.0996 -13.5996 7.09961 -21.5l-57.2998 -114.4c-4 -8 -13.5996 -11.1992 -21.5 -7.19922l-56.5996 27.6992c-10.6006 5.2002 -23 -2.59961 -23 -14.3994v-253.7c0 -17.7002 -14.3008 -32 -32 -32h-256c-17.7002 0 -32 14.2998 -32 32
-v253.6c0 11.9004 -12.4004 19.6006 -23 14.4004l-56.6006 -27.7002c-7.89941 -3.89941 -17.5 -0.700195 -21.5 7.2002l-57.2002 114.5c-3.89941 7.90039 -0.699219 17.5 7.2002 21.5l194.7 96.5c20.0996 -27.7998 64.5996 -47.2002 116.5 -47.2002
-s96.4004 19.4004 116.5 47.2002z" />
-    <glyph glyph-name="walking" unicode="&#xf554;" horiz-adv-x="320" 
-d="M208 352c-26.5 0 -48 21.5 -48 48s21.5 48 48 48s48 -21.5 48 -48s-21.5 -48 -48 -48zM302.5 202.9c15.7002 -7.90039 22 -27.3008 14.2998 -43c-7.89941 -15.8008 -26.8994 -22.2002 -42.5 -14.3008l-23.2998 11.8008c-15 7.59961 -26.4004 20.8994 -31.7002 37
-l-5.5 16.5l-17.2002 -68.7002l45.5 -49.7002c7.2002 -7.7998 12.3008 -17.4004 14.9004 -27.7002l22.2002 -89c4.2998 -17.0996 -6.2002 -34.5 -23.2998 -38.7998c-17.1006 -4.2998 -34.5 6.2002 -38.8008 23.2998l-18.2998 73.2998
-c-2.59961 10.3008 -7.7002 19.8008 -14.8994 27.7002l-59.9004 65.4004c-14.5 15.8994 -20.0996 38 -14.9004 58.7998l15.2002 60.7002l-26.7998 -10.7998c-7.2002 -2.90039 -13 -8.40039 -16.5 -15.4004l-6.7002 -13.5996
-c-7.89941 -15.8008 -26.8994 -22.2002 -42.5 -14.3008c-15.7002 7.90039 -22 27.1006 -14.2002 42.9004l6.7002 13.5996c10.4004 21 28.1006 37.5 49.7002 46.2002c37.4004 15.1006 57.2998 25.2998 93.2998 25.2002c46.5 -0.0996094 87.5 -31.2998 102.2 -75.9004
-l9.7002 -29.3994zM73.5996 62.2002l20.7002 51.5c8.7002 -11.9004 -7.89941 6.59961 47.4004 -53.7002l-13.5 -33.7998c-3.2998 -8.10059 -8.10059 -15.4004 -14.2002 -21.5l-59.4004 -59.4004c-12.5 -12.5 -32.6992 -12.5 -45.1992 0s-12.5 32.7998 0 45.2998l50 50.1006
-c6.19922 6.09961 11 13.3994 14.1992 21.5z" />
-    <glyph glyph-name="wallet" unicode="&#xf555;" 
-d="M461.2 320c28.0195 0 50.7998 -21.5303 50.7998 -48v-256c0 -26.4697 -22.7803 -48 -50.7998 -48h-397.2c-35.3496 0 -64 28.6504 -64 64v320c0 35.3496 28.6504 64 64 64h368c26.5098 0 48 -21.4902 48 -48c0 -8.83984 -7.16016 -16 -16 -16h-384
-c-8.83984 0 -16 -7.16016 -16 -16s7.16016 -16 16 -16h381.2zM416 112c17.6699 0 32 14.3301 32 32s-14.3301 32 -32 32s-32 -14.3301 -32 -32s14.3301 -32 32 -32z" />
-    <glyph glyph-name="angry" unicode="&#xf556;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM136 208c0 -17.7002 14.4004 -32 32.0996 -32c17.7002 0 32 14.2998 32 32c0 2.90039 -1 5.5 -1.69922 8.2002c0.599609 0 1.19922 -0.200195 1.69922 -0.200195
-c6.90039 0 13.2002 4.5 15.3008 11.4004c2.59961 8.39941 -2.2002 17.3994 -10.7002 19.8994l-80 24c-8.5 2.5 -17.4004 -2.2002 -19.9004 -10.7002c-2.59961 -8.39941 2.2002 -17.3994 10.7002 -19.8994l31 -9.2998c-6.40039 -5.90039 -10.5 -14.1006 -10.5 -23.4004z
-M304 53.7998c13.4004 -16.0996 38.2998 4 24.5 20.5c-20 24 -49.4004 37.7998 -80.5996 37.7998c-31.2002 0 -60.6006 -13.7998 -80.6006 -37.7998c-13.5996 -16.2998 11.1006 -36.7998 24.6006 -20.5c27.8994 33.4004 84.2998 33.4004 112.1 0zM380.6 240.7
-c8.5 2.5 13.3008 11.3994 10.8008 19.8994c-2.5 8.40039 -11.5 13.2002 -19.9004 10.7002l-80 -24c-8.40039 -2.5 -13.2002 -11.3994 -10.7002 -19.8994c2.10059 -6.90039 8.40039 -11.4004 15.2998 -11.4004c0.600586 0 1.10059 0.0996094 1.7002 0.200195
-c-0.799805 -2.60059 -1.7002 -5.2998 -1.7002 -8.2002c0 -17.7002 14.3008 -32 32 -32c17.7002 0 32 14.2998 32 32c0 9.2998 -4.19922 17.5996 -10.5 23.4004z" />
-    <glyph glyph-name="archway" unicode="&#xf557;" horiz-adv-x="576" 
-d="M560 0c8.83984 0 16 -7.16016 16 -16v-32c0 -8.83984 -7.16016 -16 -16 -16h-159.98c-8.83984 0 -16 7.16016 -16 16v16l-0.0195312 160c0 53.0195 -42.9805 96 -96 96s-96 -42.9805 -96 -96v-176c0 -8.83984 -7.16016 -16 -16 -16h-159.98
-c-8.83984 0 -16 7.16016 -16 16v32c0 8.83984 7.16016 16 16 16h15.9805v352h512v-352h16zM560 448c8.83984 0 16 -7.16016 16 -16v-32c0 -8.83984 -7.16016 -16 -16 -16h-544c-8.83984 0 -16 7.16016 -16 16v32c0 8.83984 7.16016 16 16 16h544z" />
-    <glyph glyph-name="atlas" unicode="&#xf558;" horiz-adv-x="448" 
-d="M318.38 240c-5.28027 -31.2197 -25.5898 -57.1699 -53.2998 -70.4102c7.66992 19.0605 12.7197 43.3799 14.21 70.4102h39.0898zM318.38 272h-39.0898c-1.49023 27.0303 -6.53027 51.3496 -14.21 70.4102c27.71 -13.2402 48.0098 -39.1904 53.2998 -70.4102zM224 350.69
-c7.69043 -7.4502 20.7695 -34.4307 23.4404 -78.6904h-46.8701c2.66016 44.2695 15.7393 71.2402 23.4297 78.6904zM182.92 342.41c-7.67969 -19.0605 -12.7197 -43.3799 -14.21 -70.4102h-39.0898c5.28027 31.2197 25.5898 57.1699 53.2998 70.4102zM182.92 169.59
-c-27.71 13.2402 -48.0195 39.1904 -53.2998 70.4102h39.0898c1.49023 -27.0303 6.53027 -51.3496 14.21 -70.4102zM247.43 240c-2.66016 -44.2598 -15.7393 -71.2402 -23.4395 -78.6904c-7.69043 7.4502 -20.7705 34.4307 -23.4307 78.6904h46.8701zM448 89.5996
-c0 -9.59961 -3.2002 -16 -9.59961 -19.1992c-3.2002 -12.8008 -3.2002 -57.6006 0 -73.6006c6.39941 -6.39941 9.59961 -12.7998 9.59961 -19.2002v-16c0 -16 -12.7998 -25.5996 -25.5996 -25.5996h-326.4c-54.4004 0 -96 41.5996 -96 96v320c0 54.4004 41.5996 96 96 96
-h326.4c16 0 25.5996 -9.59961 25.5996 -25.5996v-332.801zM224 384c-70.6904 0 -128 -57.3096 -128 -128s57.3096 -128 128 -128s128 57.3096 128 128s-57.3096 128 -128 128zM384 0v64h-288c-16 0 -32 -12.7998 -32 -32s12.7998 -32 32 -32h288z" />
-    <glyph glyph-name="award" unicode="&#xf559;" horiz-adv-x="384" 
-d="M97.1201 85.3701c13.79 -13.7803 32.1104 -21.3701 51.6104 -21.3701c12.4395 0 24.4697 3.54004 35.3096 9.58008l-52.0498 -127.62c-4.39062 -10.7695 -18.4307 -13.4004 -26.4307 -4.95996l-36.2393 38.2803l-52.6904 -2.01074
-c-11.6201 -0.439453 -19.8203 11.2607 -15.4297 22.0303l45.3701 111.24c7.55957 -5.87012 15.9199 -10.7705 25.4297 -13.3203c20.96 -5.60938 16.4297 -3.16016 25.1201 -11.8496zM382.8 -0.700195c4.39062 -10.7598 -3.80957 -22.4697 -15.4297 -22.0303
-l-52.6904 2.01074l-36.25 -38.2803c-7.98926 -8.44043 -22.04 -5.80957 -26.4297 4.95996l-52.0498 127.62c10.8398 -6.03027 22.8701 -9.58008 35.3096 -9.58008c19.5 0 37.8301 7.58984 51.6201 21.3701c8.66992 8.66992 4.0498 6.20996 25.1201 11.8496
-c9.50977 2.5498 17.8701 7.44043 25.4297 13.3203zM263 108c-13.2305 -13.4697 -33.8398 -15.8799 -49.7305 -5.82031c-6.13867 3.89746 -13.5029 6.15527 -21.3066 6.15527s-15.084 -2.25781 -21.2227 -6.15527c-15.9004 -10.0596 -36.5098 -7.64941 -49.7402 5.82031
-c-14.7305 15 -16.4004 14.04 -38.7803 20.1396c-13.8896 3.79004 -24.75 14.8408 -28.4697 28.9805c-7.48047 28.3994 -5.54004 24.9697 -25.9502 45.75c-10.1699 10.3604 -14.1396 25.4502 -10.4199 39.5898c7.48047 28.4199 7.46973 24.46 0 52.8203
-c-3.72949 14.1396 0.25 29.2295 10.4199 39.5801c20.4102 20.7793 18.4805 17.3594 25.9502 45.75c3.71973 14.1396 14.5801 25.1895 28.4697 28.9795c27.8906 7.61035 24.5303 5.62988 44.9404 26.4102c10.1699 10.3604 25 14.4004 38.8896 10.6104
-c27.9199 -7.61035 24.0303 -7.60059 51.9004 0c13.8896 3.79004 28.7197 -0.260742 38.8896 -10.6104c20.4297 -20.79 17.0703 -18.7998 44.9502 -26.4102c13.8896 -3.79004 24.75 -14.8398 28.4697 -28.9795c7.48047 -28.3906 5.54004 -24.9707 25.9502 -45.75
-c10.1699 -10.3506 14.1396 -25.4404 10.4199 -39.5801c-7.47949 -28.4102 -7.46973 -24.4502 0 -52.8301c3.71973 -14.1406 -0.25 -29.2305 -10.4199 -39.5801c-20.4102 -20.7803 -18.4697 -17.3506 -25.9502 -45.75c-3.71973 -14.1396 -14.5801 -25.1904 -28.4697 -28.9805
-c-21.7598 -5.92969 -23.5098 -4.58984 -38.79 -20.1396zM97.6602 272.04c0 -53.0303 42.2402 -96.0205 94.3398 -96.0205s94.3398 42.9902 94.3398 96.0205s-42.2402 96.0195 -94.3398 96.0195s-94.3398 -42.9893 -94.3398 -96.0195z" />
-    <glyph glyph-name="backspace" unicode="&#xf55a;" horiz-adv-x="640" 
-d="M576 384c35.3496 0 64 -28.6504 64 -64v-256c0 -35.3496 -28.6504 -64 -64 -64h-370.75c-16.9697 0 -33.25 6.75 -45.25 18.75l-150.63 150.63c-12.5 12.4902 -12.5 32.75 0 45.25l150.63 150.62c11.5801 11.5869 27.5869 18.75 45.2471 18.75h0.0126953h370.74z
-M491.31 129.94l-62.0596 62.0596l62.0596 62.0596c6.25 6.25 6.25 16.3809 0 22.6309l-22.6191 22.6191c-6.25 6.25 -16.3809 6.25 -22.6309 0l-62.0596 -62.0596l-62.0596 62.0596c-6.25 6.25 -16.3809 6.25 -22.6309 0l-22.6191 -22.6191
-c-6.25 -6.25 -6.25 -16.3809 0 -22.6309l62.0596 -62.0596l-62.0596 -62.0596c-6.25 -6.25 -6.25 -16.3809 0 -22.6309l22.6191 -22.6191c6.25 -6.25 16.3809 -6.25 22.6309 0l62.0596 62.0596l62.0596 -62.0596c6.25 -6.25 16.3809 -6.25 22.6309 0l22.6191 22.6191
-c6.25 6.25 6.25 16.3809 0 22.6309z" />
-    <glyph glyph-name="bezier-curve" unicode="&#xf55b;" horiz-adv-x="640" 
-d="M368 416c17.6699 0 32 -14.3301 32 -32v-96c0 -17.6699 -14.3301 -32 -32 -32h-96c-17.6699 0 -32 14.3301 -32 32v96c0 17.6699 14.3301 32 32 32h96zM208 360v-72c0 -9.4502 2.17969 -18.3604 5.87988 -26.4404c-34.2695 -24.3496 -59.7402 -59.9492 -71.04 -101.56
-h-49.3994c13.6797 64.6797 54.1699 119.48 109.54 152h-79.7305c-9.5 -23.4404 -32.4102 -40 -59.25 -40c-35.3398 0 -64 28.6504 -64 64s28.6602 64 64 64c26.8398 0 49.75 -16.5596 59.25 -40h84.75zM160 128c17.6699 0 32 -14.3301 32 -32v-96
-c0 -17.6699 -14.3301 -32 -32 -32h-96c-17.6699 0 -32 14.3301 -32 32v96c0 17.6699 14.3301 32 32 32h96zM576 400c35.3398 0 64 -28.6504 64 -64s-28.6602 -64 -64 -64c-26.8398 0 -49.75 16.5596 -59.25 40h-79.7305c55.3701 -32.5195 95.8604 -87.3203 109.54 -152
-h-49.3994c-11.2998 41.6104 -36.7705 77.21 -71.04 101.56c3.68945 8.08008 5.87988 16.9902 5.87988 26.4404v72h84.75c9.5 23.4404 32.4102 40 59.25 40zM576 128c17.6699 0 32 -14.3301 32 -32v-96c0 -17.6699 -14.3301 -32 -32 -32h-96c-17.6699 0 -32 14.3301 -32 32
-v96c0 17.6699 14.3301 32 32 32h96z" />
-    <glyph glyph-name="bong" unicode="&#xf55c;" horiz-adv-x="448" 
-d="M302.5 -64h-221c-23.1699 0 -44.4199 12.5801 -56 32.6602c-16.1904 28.0703 -25.5 60.5898 -25.5 95.3398c0 71.0303 38.6699 132.9 96 166.11v153.93l-15.9697 -0.0205078c-8.85059 -0.00976562 -16.0303 7.16016 -16.0205 16.0107l0.0400391 31.7295
-c0.00976562 8.82031 7.16016 15.9707 15.9805 15.9805l223.939 0.259766c8.85059 0.00976562 16.0303 -7.16992 16.0205 -16.0195l-0.0400391 -31.7207c-0.00976562 -8.81934 -7.16016 -15.9697 -15.9805 -15.9795l-15.9697 -0.0205078v-154.16
-c14.1201 -8.17969 27.0898 -18.1396 38.6504 -29.5098l39.4092 39.4102l-9.37988 9.37988c-6.25 6.25 -6.25 16.3799 0 22.6299l11.3105 11.3105c6.25 6.25 16.3799 6.25 22.6299 0l52.6895 -52.6904c6.25 -6.25 6.25 -16.3799 0 -22.6299l-11.2998 -11.3203
-c-6.25 -6.25 -16.3799 -6.25 -22.6299 0l-9.37988 9.37988l-43.4404 -43.4395c17.3604 -28.8105 27.4404 -62.5 27.4404 -98.6201c0 -34.75 -9.30957 -67.2598 -25.5 -95.3398c-11.5703 -20.0801 -32.8203 -32.6602 -56 -32.6602zM120.06 188.57
-c-24.8096 -14.3701 -44.1094 -35.7305 -56.5596 -60.5703h257c-12.4404 24.8398 -31.75 46.2002 -56.5596 60.5703l-23.9404 13.8701v181.76l-96 -0.110352v-181.649z" />
-    <glyph glyph-name="brush" unicode="&#xf55d;" horiz-adv-x="384" 
-d="M352 448c17.6699 0 32 -14.3301 32 -32v-224h-384v224c0 17.6699 14.3301 32 32 32h320zM0 128v32h384v-32c0 -35.3496 -28.6602 -64 -64 -64h-64v-64c0 -35.3496 -28.6602 -64 -64 -64s-64 28.6504 -64 64v64h-64c-35.3398 0 -64 28.6504 -64 64zM192 24
-c-13.25 0 -24 -10.7402 -24 -24c0 -13.25 10.75 -24 24 -24s24 10.75 24 24c0 13.2598 -10.75 24 -24 24z" />
-    <glyph glyph-name="bus-alt" unicode="&#xf55e;" 
-d="M488 320c13.25 0 24 -10.7402 24 -24v-80c0 -13.25 -10.75 -24 -24 -24h-8v-166.4c0 -12.7998 -9.59961 -25.5996 -25.5996 -25.5996h-6.40039v-32c0 -17.6699 -14.3301 -32 -32 -32h-32c-17.6699 0 -32 14.3301 -32 32v32h-192v-32c0 -17.6699 -14.3301 -32 -32 -32h-32
-c-17.6699 0 -32 14.3301 -32 32v32c-17.6699 0 -32 14.3301 -32 32v160h-8c-13.25 0 -24 10.75 -24 24v80c0 13.2598 10.75 24 24 24h8v48c0 44.7998 99.2002 80 224 80s224 -35.2002 224 -80v-48h8zM160 376v-16c0 -4.41992 3.58008 -8 8 -8h176c4.41992 0 8 3.58008 8 8
-v16c0 4.41992 -3.58008 8 -8 8h-176c-4.41992 0 -8 -3.58008 -8 -8zM112 48c17.6699 0 32 14.3301 32 32s-14.3301 32 -32 32s-32 -14.3301 -32 -32s14.3301 -32 32 -32zM240 160v160h-112c-17.6699 0 -32 -14.3301 -32 -32v-96c0 -17.6699 14.3301 -32 32 -32h112zM272 160
-h112c17.6699 0 32 14.3301 32 32v96c0 17.6699 -14.3301 32 -32 32h-112v-160zM400 48c17.6699 0 32 14.3301 32 32s-14.3301 32 -32 32s-32 -14.3301 -32 -32s14.3301 -32 32 -32z" />
-    <glyph glyph-name="cannabis" unicode="&#xf55f;" 
-d="M503.47 87.75c5.24023 -2.75977 8.52051 -8.20996 8.53027 -14.1504c0.00976562 -5.92969 -3.26953 -11.3691 -8.50977 -14.1494c-2.4502 -1.29004 -60.7705 -31.7197 -133.49 -31.7197c-6.12988 0 -11.96 0.0996094 -17.5 0.30957
-c11.3604 -22.2305 16.5195 -38.3096 16.8096 -39.2197c1.80078 -5.68066 0.290039 -11.8906 -3.90918 -16.1104c-2.90137 -2.91113 -6.91699 -4.70801 -11.3477 -4.70801c-1.6543 0 -3.25098 0.250977 -4.75293 0.717773c-1.83008 0.580078 -37.7197 11.9902 -77.2998 39.29
-v-64.0098c0 -4.41992 -3.58008 -8 -8 -8h-16c-4.41992 0 -8 3.58008 -8 8v64.0195c-39.5801 -27.2998 -75.4697 -38.7197 -77.2998 -39.2891c-1.50195 -0.466797 -3.10059 -0.724609 -4.75586 -0.724609c-4.43066 0 -8.44336 1.80273 -11.3447 4.71387
-c-4.19922 4.2207 -5.70996 10.4307 -3.90918 16.1104c0.290039 0.910156 5.43945 16.9902 16.8096 39.2197c-5.54004 -0.209961 -11.3604 -0.30957 -17.5 -0.30957c-72.7305 0 -131.04 30.4297 -133.49 31.7197c-5.06836 2.68652 -8.52441 7.99805 -8.52441 14.1299
-c0 6.13965 3.46484 11.4766 8.54492 14.1602c1.56934 0.820312 32.3896 16.8896 76.7793 25.8096c-64.25 75.1201 -84.0498 161.671 -84.9297 165.641c-0.25 1.12207 -0.384766 2.28125 -0.384766 3.47754c0 4.40723 1.78711 8.39941 4.6748 11.292
-c3.03027 3.04004 7.12012 4.7002 11.3203 4.7002c1.14941 0 2.2998 -0.129883 3.43945 -0.379883c3.89062 -0.860352 86.5508 -19.5996 160.58 -79.7598c0 1.45996 -0.00976562 2.92969 -0.00976562 4.39941c0 118.79 59.9805 213.721 62.5303 217.7
-c2.93945 4.58984 8.01953 7.37012 13.4697 7.37012c5.65625 0 10.6211 -2.92969 13.46 -7.37012c2.5498 -3.97949 62.5303 -98.9102 62.5303 -217.7c0 -1.46973 0 -2.93945 -0.00976562 -4.39941c74.0391 60.1699 156.699 78.9102 160.579 79.7598
-c1.15039 0.259766 2.30078 0.379883 3.44043 0.379883c4.2002 0 8.29004 -1.66016 11.3203 -4.7002c3.85938 -3.87012 5.47949 -9.43945 4.2998 -14.7695c-0.879883 -3.96973 -20.6797 -90.5205 -84.9297 -165.641c44.3896 -8.91992 75.2197 -24.9893 76.7793 -25.8096z" />
-    <glyph glyph-name="check-double" unicode="&#xf560;" 
-d="M505 273.2c9.2998 -9.2998 9.2998 -24.5 -0.0996094 -34l-296 -296.2c-9.30078 -9.40039 -24.5 -9.40039 -33.9004 0l-168 168.1c-9.40039 9.40039 -9.40039 24.6006 0 34l39.7002 39.7002c9.2998 9.40039 24.5 9.40039 33.8994 0l111.4 -111.5l239.5 239.5
-c9.2998 9.40039 24.5 9.40039 33.9004 0zM180.7 167.2l-112 112.2c-6.2002 6.19922 -6.2002 16.2998 0 22.5996l45.2998 45.2998c6.2002 6.2998 16.4004 6.2998 22.5996 0l55.4004 -55.5l151.5 151.5c6.2002 6.2998 16.4004 6.2998 22.5996 0l45.2002 -45.2998
-c6.2002 -6.2002 6.2002 -16.2998 0 -22.5996l-208 -208.2c-6.2002 -6.2998 -16.3994 -6.2998 -22.5996 0z" />
-    <glyph glyph-name="cocktail" unicode="&#xf561;" horiz-adv-x="576" 
-d="M296 -16c22.0898 0 40 -17.9102 40 -40c0 -4.41992 -3.58008 -8 -8 -8h-240c-4.41992 0 -8 3.58008 -8 8c0 22.0898 17.9102 40 40 40h56v125.22l-168.74 168.73c-15.5195 15.5195 -4.5293 42.0498 17.4199 42.0498h366.641c21.9492 0 32.9395 -26.5303 17.4199 -42.0498
-l-168.74 -168.73v-125.22h56zM432 448c79.5303 0 144 -64.4697 144 -144s-64.4697 -144 -144 -144c-27.4102 0 -52.7695 8.08008 -74.5801 21.3799l35.2598 35.2598c12.0303 -5.43945 25.2803 -8.63965 39.3203 -8.63965c52.9297 0 96 43.0596 96 96s-43.0703 96 -96 96
-c-35.3701 0 -65.9902 -19.4502 -82.6396 -48h-52.54c19.8301 55.7998 72.5693 96 135.18 96z" />
-    <glyph glyph-name="concierge-bell" unicode="&#xf562;" 
-d="M288 317.46c108.51 -15.5703 192 -108.64 192 -221.46h-448c0 112.82 83.4902 205.89 192 221.46v18.54h-16c-8.83984 0 -16 7.16016 -16 16v16c0 8.83984 7.16016 16 16 16h96c8.83984 0 16 -7.16016 16 -16v-16c0 -8.83984 -7.16016 -16 -16 -16h-16v-18.54zM496 64
-c8.83984 0 16 -7.16016 16 -16v-32c0 -8.83984 -7.16016 -16 -16 -16h-480c-8.83984 0 -16 7.16016 -16 16v32c0 8.83984 7.16016 16 16 16h480z" />
-    <glyph glyph-name="cookie" unicode="&#xf563;" 
-d="M510.37 193.21c4.37988 -27.6602 -0.110352 -56 -12.8203 -80.96l-35.0996 -68.8701c-12.7021 -24.9268 -32.8652 -45.0938 -57.79 -57.7998l-69.1201 -35.21c-24.8301 -12.6396 -53.0098 -17.1104 -80.5205 -12.75l-76.6992 12.1396
-c-28.1211 4.45801 -53.4463 17.7891 -72.71 37.0498l-54.7607 54.75c-19.3213 19.3281 -32.6924 44.7373 -37.1592 72.9502l-12.0801 76.2705c-1.07715 6.79883 -1.55371 13.7725 -1.55371 20.8721c0 21.6162 5.18359 42.0303 14.373 60.0674l35.1006 68.8799
-c12.6992 24.9297 32.8633 45.0967 57.79 57.8008l69.1201 35.21c24.8291 12.6494 53.0098 17.1201 80.5195 12.7598l76.7002 -12.1504c27.5303 -4.34961 52.9795 -17.3301 72.71 -37.0498l54.7598 -54.75c19.3213 -19.3281 32.6924 -44.7363 37.1602 -72.9502zM176 80
-c17.6699 0 32 14.3301 32 32s-14.3301 32 -32 32s-32 -14.3301 -32 -32s14.3301 -32 32 -32zM208 240c17.6699 0 32 14.3301 32 32s-14.3301 32 -32 32s-32 -14.3301 -32 -32s14.3301 -32 32 -32zM368 112c17.6699 0 32 14.3301 32 32s-14.3301 32 -32 32
-s-32 -14.3301 -32 -32s14.3301 -32 32 -32z" />
-    <glyph glyph-name="cookie-bite" unicode="&#xf564;" 
-d="M510.52 192.18c4.10059 -27.3301 -0.349609 -55.2695 -12.9092 -79.9102l-35.1006 -68.8799c-12.6992 -24.9316 -32.8623 -45.1025 -57.79 -57.8096l-69.1299 -35.21c-24.8301 -12.6504 -53.0195 -17.1201 -80.5303 -12.7598l-76.71 12.1494
-c-28.123 4.45801 -53.4482 17.793 -72.71 37.0605l-54.7695 54.7598c-19.3223 19.332 -32.6934 44.7441 -37.1602 72.96l-12.0801 76.2695c-1.07617 6.7998 -1.55273 13.7734 -1.55273 20.874c0 21.6182 5.18262 42.0361 14.373 60.0762l35.0996 68.8799
-c12.6963 24.9346 32.8613 45.1055 57.79 57.8105l69.1299 35.2197c24.5898 12.5205 52.46 16.96 79.7207 12.8203c0.859375 -69.96 57.6895 -126.45 127.859 -126.45c0 -70.1699 56.5 -127.01 126.47 -127.86zM176 80c17.6699 0 32 14.3301 32 32s-14.3301 32 -32 32
-s-32 -14.3301 -32 -32s14.3301 -32 32 -32zM208 240c17.6699 0 32 14.3301 32 32s-14.3301 32 -32 32s-32 -14.3301 -32 -32s14.3301 -32 32 -32zM368 112c17.6699 0 32 14.3301 32 32s-14.3301 32 -32 32s-32 -14.3301 -32 -32s14.3301 -32 32 -32z" />
-    <glyph glyph-name="crop-alt" unicode="&#xf565;" 
-d="M488 96c13.25 0 24 -10.7402 24 -24v-48c0 -13.25 -10.75 -24 -24 -24h-40v-40c0 -13.25 -10.75 -24 -24 -24h-48c-13.25 0 -24 10.75 -24 24v328h-160v96h224c17.6699 0 32 -14.3301 32 -32v-256h40zM160 424v-328h160v-96h-224c-17.6699 0 -32 14.3301 -32 32v256h-40
-c-13.25 0 -24 10.75 -24 24v48c0 13.2598 10.75 24 24 24h40v40c0 13.2598 10.75 24 24 24h48c13.25 0 24 -10.7402 24 -24z" />
-    <glyph glyph-name="digital-tachograph" unicode="&#xf566;" horiz-adv-x="640" 
-d="M608 352c17.6699 0 32 -14.3301 32 -32v-256c0 -17.6699 -14.3301 -32 -32 -32h-576c-17.6699 0 -32 14.3301 -32 32v256c0 17.6699 14.3301 32 32 32h576zM304 96v8c0 4.41992 -3.58008 8 -8 8h-224c-4.41992 0 -8 -3.58008 -8 -8v-8c0 -4.41992 3.58008 -8 8 -8h224
-c4.41992 0 8 3.58008 8 8zM72 160c0 -4.41992 3.58008 -8 8 -8h16c4.41992 0 8 3.58008 8 8v16c0 4.41992 -3.58008 8 -8 8h-16c-4.41992 0 -8 -3.58008 -8 -8v-16zM136 160c0 -4.41992 3.58008 -8 8 -8h16c4.41992 0 8 3.58008 8 8v16c0 4.41992 -3.58008 8 -8 8h-16
-c-4.41992 0 -8 -3.58008 -8 -8v-16zM200 160c0 -4.41992 3.58008 -8 8 -8h16c4.41992 0 8 3.58008 8 8v16c0 4.41992 -3.58008 8 -8 8h-16c-4.41992 0 -8 -3.58008 -8 -8v-16zM264 160c0 -4.41992 3.58008 -8 8 -8h16c4.41992 0 8 3.58008 8 8v16c0 4.41992 -3.58008 8 -8 8
-h-16c-4.41992 0 -8 -3.58008 -8 -8v-16zM304 224v48c0 8.83984 -7.16016 16 -16 16h-208c-8.83984 0 -16 -7.16016 -16 -16v-48c0 -8.83984 7.16016 -16 16 -16h208c8.83984 0 16 7.16016 16 16zM576 96v8c0 4.41992 -3.58008 8 -8 8h-224c-4.41992 0 -8 -3.58008 -8 -8v-8
-c0 -4.41992 3.58008 -8 8 -8h224c4.41992 0 8 3.58008 8 8z" />
-    <glyph glyph-name="dizzy" unicode="&#xf567;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM152 233.4l28.7002 -28.7002c14.7002 -14.7998 37.7998 7.39941 22.5996 22.5996l-28.7002 28.7002l28.7002 28.7002c15 14.8994 -7.59961 37.5996 -22.5996 22.5996
-l-28.7002 -28.7002l-28.7002 28.7002c-14.8994 15 -37.5996 -7.59961 -22.5996 -22.5996l28.7002 -28.7002l-28.7002 -28.7002c-15.2002 -15.0996 7.7998 -37.3994 22.5996 -22.5996zM248 32c35.2998 0 64 28.7002 64 64s-28.7002 64 -64 64s-64 -28.7002 -64 -64
-s28.7002 -64 64 -64zM395.3 227.3l-28.7002 28.7002l28.7002 28.7002c15 14.8994 -7.59961 37.5996 -22.5996 22.5996l-28.7002 -28.7002l-28.7002 28.7002c-14.8994 15 -37.5996 -7.59961 -22.5996 -22.5996l28.7002 -28.7002l-28.7002 -28.7002
-c-15.2002 -15.0996 7.7998 -37.3994 22.5996 -22.5996l28.7002 28.7002l28.7002 -28.7002c14.7002 -14.7998 37.7998 7.39941 22.5996 22.5996z" />
-    <glyph glyph-name="drafting-compass" unicode="&#xf568;" 
-d="M457.01 103.58l54.9805 -95.2305l-7.02051 -58.25c-1.2793 -10.5898 -12.3594 -16.9893 -22.1699 -12.7998l-53.9502 23.04l-54.3799 94.1904c29.9102 11.8701 57.4902 28.7197 82.54 49.0498zM499.5 198.14c-52.6201 -83.1299 -144.45 -134.14 -243.5 -134.14
-c-35.3799 0 -69.8701 6.71973 -102.06 18.96l-70.8008 -122.63l-53.9492 -23.04c-9.81055 -4.19043 -20.8906 2.20996 -22.1709 12.7998l-7.01953 58.25l71.2803 123.46c-21.29 17.8105 -40.4102 38.3799 -55.9805 62.0205
-c-4.99023 7.56934 -2.20996 17.9297 5.64062 22.4697l27.75 16.0703c7.40918 4.29004 16.5898 1.76953 21.3799 -5.33008c9.71973 -14.4102 21.1299 -27.3906 33.6797 -39l68.2998 118.31c-7.43945 13.6299 -12.0498 29.0303 -12.0498 45.6602c0 53.0195 42.9805 96 96 96
-s96 -42.9805 96 -96c0 -16.6299 -4.61035 -32.0303 -12.0596 -45.6602l51.79 -89.71c-23.0508 -23.1699 -51.3809 -39.96 -82.6104 -48.9199l-51.0898 88.5c-0.69043 -0.0195312 -1.33984 -0.209961 -2.04004 -0.209961s-1.33984 0.19043 -2.04004 0.209961
-l-67.3604 -116.68c22.1797 -7.28027 45.4805 -11.5303 69.4102 -11.5303c76.25 0 147.01 38.8496 188.12 102.38c4.64941 7.17969 13.7803 9.87012 21.2598 5.71973l28.0703 -15.5693c7.93945 -4.40039 10.9102 -14.7207 6.0498 -22.3906zM256 384
-c-17.6699 0 -32 -14.3301 -32 -32s14.3301 -32 32 -32s32 14.3301 32 32s-14.3301 32 -32 32z" />
-    <glyph glyph-name="drum" unicode="&#xf569;" 
-d="M431.34 325.95c44.9004 -16.3398 80.6602 -42.7803 80.6602 -86.1006v-160.229c0 -30.2705 -27.5 -57.6797 -72 -77.8604v101.9c0 13.2461 -10.7539 24 -24 24s-24 -10.7539 -24 -24v-118.93c-33.0498 -9.11035 -71.0703 -15.0605 -112 -16.7305v103.61
-c0 13.2461 -10.7539 24 -24 24s-24 -10.7539 -24 -24v-103.61c-40.9297 1.66992 -78.9502 7.62012 -112 16.7305v118.93c0 13.2461 -10.7539 24 -24 24s-24 -10.7539 -24 -24v-101.9c-44.5 20.1807 -72 47.5898 -72 77.8604v160.229c0 107.601 219.55 112.15 256 112.15
-c15.2197 0 62.4297 -0.910156 112.19 -9.69043l110.06 71c2.53711 1.69238 5.59082 2.7041 8.86621 2.7041c5.55664 0 10.4551 -2.83887 13.3242 -7.14355l8.86914 -13.3105c1.69238 -2.53711 2.7041 -5.58984 2.7041 -8.86523
-c0 -5.55664 -2.83887 -10.4561 -7.14355 -13.3242zM256 175.76c114.87 0 208 28.6904 208 64.0898c0 21.3105 -33.9102 40.1504 -85.8604 51.75l-118.64 -76.5195c-2.53711 -1.69141 -5.59082 -2.7041 -8.86621 -2.7041c-5.55664 0 -10.4551 2.83887 -13.3242 7.14355
-l-8.86914 13.3105c-1.69434 2.53809 -2.70703 5.59277 -2.70703 8.87012c0 5.55371 2.83594 10.4502 7.13672 13.3193l72.8096 47c-15.9492 1.2002 -32.5293 1.91016 -49.6797 1.91016c-114.88 0 -208 -28.6797 -208 -64.0801c0 -35.3994 93.1201 -64.0898 208 -64.0898z
-" />
-    <glyph glyph-name="drum-steelpan" unicode="&#xf56a;" horiz-adv-x="576" 
-d="M288 416c159.06 0 288 -57.3096 288 -128v-192c0 -70.6904 -128.94 -128 -288 -128s-288 57.3096 -288 128v192c0 70.6904 128.94 128 288 128zM205.01 257.64c5.11035 19.0605 2.49023 38.96 -7.37012 56.0508l-25.5996 44.3398
-c-73.9297 -13.6406 -124.04 -39.8701 -124.04 -70.0303c0 -30.7803 52.2305 -57.46 128.7 -70.8398c13.7695 9.91016 23.8594 23.8701 28.3096 40.4795zM288 208c21.0801 0 41.4102 1 60.8896 2.7002c-8.05957 26.1299 -32.1494 45.2998 -60.8896 45.2998
-s-52.8301 -19.1699 -60.8896 -45.2998c19.4795 -1.7002 39.8096 -2.7002 60.8896 -2.7002zM352 352v13.04c-20.4004 1.87988 -41.7998 2.95996 -64 2.95996s-43.5996 -1.08008 -64 -2.95996v-13.04c0 -35.29 28.71 -64 64 -64s64 28.71 64 64zM398.93 217.1
-c76.6699 13.3604 129.07 40.0703 129.07 70.9004c0 30.21 -50.2803 56.5 -124.44 70.0996l-25.6494 -44.4199c-9.87012 -17.0801 -12.4902 -36.9795 -7.37988 -56.04c4.45996 -16.6396 14.5898 -30.6299 28.3994 -40.54z" />
-    <glyph glyph-name="feather-alt" unicode="&#xf56b;" 
-d="M512 448c-1.80957 -26.2598 -11.71 -132.86 -53.6201 -234.79l-106.54 -53.21h81.1406c-9.08008 -16.4102 -19.2002 -32.2305 -30.4502 -47.1201l-146.79 -48.8799h100.95c-35.5605 -30.0703 -79.1006 -51.0996 -132.58 -56.54
-c-41.8105 -4.83008 -83.8701 -7.21973 -125.96 -7.36035l-57.1309 -57.0693c-9.38965 -9.37012 -24.5996 -9.37012 -33.9795 0s-9.37988 24.5693 0 33.9395l259.5 259.24c6.25 6.25 6.25 16.3799 0 22.6299s-16.4004 6.25 -22.6504 0l-178.87 -178.689
-c1.15039 26.7998 2.90039 53.5801 5.99023 80.2393c25.4307 249.41 389.21 284.051 440.99 287.61z" />
-    <glyph glyph-name="file-contract" unicode="&#xf56c;" horiz-adv-x="384" 
-d="M224 312c0 -13.2002 10.7998 -24 24 -24h136v-328c0 -13.2998 -10.7002 -24 -24 -24h-336c-13.2998 0 -24 10.7002 -24 24v464c0 13.2998 10.7002 24 24 24h200v-136zM64 376v-16c0 -4.41992 3.58008 -8 8 -8h80c4.41992 0 8 3.58008 8 8v16c0 4.41992 -3.58008 8 -8 8
-h-80c-4.41992 0 -8 -3.58008 -8 -8zM64 312v-16c0 -4.41992 3.58008 -8 8 -8h80c4.41992 0 8 3.58008 8 8v16c0 4.41992 -3.58008 8 -8 8h-80c-4.41992 0 -8 -3.58008 -8 -8zM256.81 64c-4.19922 0 -8.13965 2.44043 -10.1592 6.5
-c-11.9502 23.8604 -46.2305 30.3496 -66 14.1602l-13.8809 41.6396c-3.28906 9.82031 -12.4297 16.4102 -22.7695 16.4102s-19.4805 -6.59961 -22.7803 -16.4102l-18.1895 -54.6396c-1.53027 -4.58008 -5.81055 -7.66016 -10.6406 -7.66016h-12.3896
-c-8.83984 0 -16 -7.16016 -16 -16s7.16016 -16 16 -16h12.3896c18.6201 0 35.1104 11.8701 41 29.5303l10.6104 31.8799l16.8301 -50.46c2.03027 -6.14062 7.58008 -10.4404 14.0303 -10.8906c0.389648 -0.0292969 0.759766 -0.0498047 1.13965 -0.0498047
-c0.00390625 0 -0.00292969 -0.015625 0.000976562 -0.015625c6.26074 0 11.6865 3.60742 14.3086 8.85547l7.6709 15.3408c2.7998 5.59961 7.93945 6.18945 10.0195 6.18945s7.21973 -0.599609 10.1699 -6.51953c7.37012 -14.7207 22.1904 -23.8604 38.6396 -23.8604
-h47.1904c8.83984 0 16 7.16016 16 16s-7.16016 16 -16 16h-47.1904zM377 343c4.5 -4.5 7 -10.5996 7 -16.9004v-6.09961h-128v128h6.09961c6.40039 0 12.5 -2.5 17 -7z" />
-    <glyph glyph-name="file-download" unicode="&#xf56d;" horiz-adv-x="384" 
-d="M224 312c0 -13.2002 10.7998 -24 24 -24h136v-328c0 -13.2998 -10.7002 -24 -24 -24h-336c-13.2998 0 -24 10.7002 -24 24v464c0 13.2998 10.7002 24 24 24h200v-136zM300.45 100.64c10.1299 10.0703 3.00977 27.3604 -11.2705 27.3604h-65.1797v80
-c0 8.83984 -7.16016 16 -16 16h-32c-8.83984 0 -16 -7.16016 -16 -16v-80h-65.1797c-14.2803 0 -21.4004 -17.29 -11.25 -27.3604l96.4199 -95.6992c6.64941 -6.61035 17.3896 -6.61035 24.04 0zM377 343c4.5 -4.5 7 -10.5996 7 -16.9004v-6.09961h-128v128h6.09961
-c6.40039 0 12.5 -2.5 17 -7z" />
-    <glyph glyph-name="file-export" unicode="&#xf56e;" horiz-adv-x="576" 
-d="M384 326.1v-6.09961h-128v128h6.09961c6.40039 0 12.5 -2.5 17 -7l97.9004 -98c4.5 -4.5 7 -10.5996 7 -16.9004zM571 140c6.59961 -6.59961 6.59961 -17.4004 0 -24l-95.7002 -96.5c-10.0996 -10.0996 -27.3994 -3 -27.3994 11.2998v65.2002h-64v64h64v65.0996
-c0 14.3008 17.2998 21.4004 27.3994 11.3008zM192 112c0 -8.7998 7.2002 -16 16 -16h176v-136c0 -13.2998 -10.7002 -24 -24 -24h-336c-13.2998 0 -24 10.7002 -24 24v464c0 13.2998 10.7002 24 24 24h200v-136c0 -13.2002 10.7998 -24 24 -24h136v-128h-176
-c-8.7998 0 -16 -7.2002 -16 -16v-32z" />
-    <glyph glyph-name="file-import" unicode="&#xf56f;" 
-d="M16 160h112v-64h-112c-8.7998 0 -16 7.2002 -16 16v32c0 8.7998 7.2002 16 16 16zM505 343c4.5 -4.5 7 -10.5996 7 -16.9004v-6.09961h-128v128h6.09961c6.40039 0 12.5 -2.5 17 -7zM352 312c0 -13.2002 10.7998 -24 24 -24h136v-328c0 -13.2998 -10.7002 -24 -24 -24
-h-336c-13.2998 0 -24 10.7002 -24 24v136h127.9v-65.0996c0 -14.3008 17.2998 -21.4004 27.3994 -11.3008l95.7002 96.4004c6.59961 6.59961 6.59961 17.2998 0 24l-95.5996 96.5c-10.1006 10.0996 -27.4004 3 -27.4004 -11.2998v-65.2002h-128v264
-c0 13.2998 10.7002 24 24 24h200v-136z" />
-    <glyph glyph-name="file-invoice" unicode="&#xf570;" horiz-adv-x="384" 
-d="M288 192v-64h-192v64h192zM377 343c4.5 -4.5 7 -10.5996 7 -16.9004v-6.09961h-128v128h6.09961c6.40039 0 12.5 -2.5 17 -7zM224 312c0 -13.2002 10.7998 -24 24 -24h136v-328c0 -13.2998 -10.7002 -24 -24 -24h-336c-13.2998 0 -24 10.7002 -24 24v464
-c0 13.2998 10.7002 24 24 24h200v-136zM64 376v-16c0 -4.41992 3.58008 -8 8 -8h80c4.41992 0 8 3.58008 8 8v16c0 4.41992 -3.58008 8 -8 8h-80c-4.41992 0 -8 -3.58008 -8 -8zM64 312v-16c0 -4.41992 3.58008 -8 8 -8h80c4.41992 0 8 3.58008 8 8v16
-c0 4.41992 -3.58008 8 -8 8h-80c-4.41992 0 -8 -3.58008 -8 -8zM320 8v16c0 4.41992 -3.58008 8 -8 8h-80c-4.41992 0 -8 -3.58008 -8 -8v-16c0 -4.41992 3.58008 -8 8 -8h80c4.41992 0 8 3.58008 8 8zM320 208c0 8.83984 -7.16016 16 -16 16h-224
-c-8.83984 0 -16 -7.16016 -16 -16v-96c0 -8.83984 7.16016 -16 16 -16h224c8.83984 0 16 7.16016 16 16v96z" />
-    <glyph glyph-name="file-invoice-dollar" unicode="&#xf571;" horiz-adv-x="384" 
-d="M377 343c4.5 -4.5 7 -10.5996 7 -16.9004v-6.09961h-128v128h6.09961c6.40039 0 12.5 -2.5 17 -7zM224 312c0 -13.2002 10.7998 -24 24 -24h136v-328c0 -13.2998 -10.7002 -24 -24 -24h-336c-13.2998 0 -24 10.7002 -24 24v464c0 13.2998 10.7002 24 24 24h200v-136z
-M64 376v-16c0 -4.41992 3.58008 -8 8 -8h80c4.41992 0 8 3.58008 8 8v16c0 4.41992 -3.58008 8 -8 8h-80c-4.41992 0 -8 -3.58008 -8 -8zM64 296c0 -4.41992 3.58008 -8 8 -8h80c4.41992 0 8 3.58008 8 8v16c0 4.41992 -3.58008 8 -8 8h-80c-4.41992 0 -8 -3.58008 -8 -8
-v-16zM208 32.1201c23.6201 0.629883 42.6699 20.54 42.6699 45.0703c0 19.9697 -12.9902 37.8096 -31.5801 43.3896l-45 13.5c-5.16016 1.54004 -8.76953 6.78027 -8.76953 12.7295c0 7.27051 5.2998 13.1904 11.7998 13.1904h28.1104
-c4.55957 0 8.94922 -1.29004 12.8193 -3.71973c3.24023 -2.03027 7.36035 -1.91016 10.1299 0.729492l11.75 11.21c3.53027 3.37012 3.33008 9.20996 -0.569336 12.1406c-9.10059 6.83984 -20.0801 10.7695 -31.3701 11.3496v24.29c0 4.41992 -3.58008 8 -8 8h-16
-c-4.41992 0 -8 -3.58008 -8 -8v-24.1201c-23.6201 -0.629883 -42.6699 -20.5498 -42.6699 -45.0703c0 -19.9697 12.9893 -37.8096 31.5801 -43.3896l45 -13.5c5.15918 -1.54004 8.76953 -6.78027 8.76953 -12.7295c0 -7.27051 -5.2998 -13.1904 -11.7998 -13.1904h-28.1104
-c-4.55957 0 -8.9502 1.2998 -12.8193 3.71973c-3.24023 2.03027 -7.36035 1.91016 -10.1309 -0.729492l-11.75 -11.21c-3.5293 -3.37012 -3.3291 -9.20996 0.570312 -12.1406c9.10059 -6.83008 20.0801 -10.7695 31.3701 -11.3496v-24.29c0 -4.41992 3.58008 -8 8 -8h16
-c4.41992 0 8 3.58008 8 8v24.1201z" />
-    <glyph glyph-name="file-prescription" unicode="&#xf572;" horiz-adv-x="384" 
-d="M224 312c0 -13.2002 10.7998 -24 24 -24h136v-328c0 -13.2998 -10.7002 -24 -24 -24h-336c-13.2998 0 -24 10.7002 -24 24v464c0 13.2998 10.7002 24 24 24h200v-136zM292.53 132.52c-6.25 6.25 -16.3799 6.25 -22.6299 0l-29.9004 -29.8994l-33.46 33.46
-c19.8398 10.8701 33.46 31.7002 33.46 55.9199c0 35.3496 -28.6504 64 -64 64h-80c-8.83984 0 -16 -7.16016 -16 -16v-160c0 -8.83984 7.16016 -16 16 -16h16c8.83984 0 16 7.16016 16 16v48h18.7402l59.3193 -59.3096l-30.0596 -30.0605
-c-6.25 -6.25 -6.25 -16.3799 0 -22.6299l11.3096 -11.3096c6.25 -6.25 16.3809 -6.25 22.6309 0l30.0596 30.0596l30.0596 -30.0703c6.25 -6.25 16.3809 -6.25 22.6309 0l11.3096 11.3105c6.25 6.25 6.25 16.3799 0 22.6299l-30.0596 30.0596l29.8994 29.9004
-c6.25 6.25 6.25 16.3799 0 22.6299zM176 176h-48v32h48c8.82031 0 16 -7.17969 16 -16s-7.17969 -16 -16 -16zM384 326.1v-6.09961h-128v128h6.09961c6.40039 0 12.5 -2.5 17 -7l97.9004 -98c4.5 -4.5 7 -10.5996 7 -16.9004z" />
-    <glyph glyph-name="file-signature" unicode="&#xf573;" horiz-adv-x="576" 
-d="M218.17 23.8604c7.25 -14.4707 21.71 -23.4404 37.8301 -23.75l128 -0.110352v-40c0 -13.2998 -10.7002 -24 -24 -24h-336c-13.2998 0 -24 10.7002 -24 24v464c0 13.2998 10.7002 24 24 24h200v-136c0 -13.2002 10.7998 -24 24 -24h136.01v-46.5498l-128 -127.09
-v-82.1201c-3.87012 0.30957 -7.46973 2.47949 -9.35938 6.25977c-11.9404 23.8604 -46.25 30.3496 -66 14.1602l-13.8809 41.6396c-3.28906 9.82031 -12.4297 16.4102 -22.7695 16.4102s-19.4805 -6.59961 -22.7803 -16.4102l-18.1895 -54.6396
-c-1.53027 -4.58008 -5.81055 -7.66016 -10.6406 -7.66016h-12.3896c-8.83984 0 -16 -7.16016 -16 -16s7.16016 -16 16 -16h12.3896c18.6201 0 35.1104 11.8701 41 29.5303l10.6104 31.8799l16.8301 -50.4697c4.4502 -13.46 23.1104 -14.8701 29.4795 -2.09082
-l7.6709 15.3408c2.7998 5.59961 7.93945 6.18945 10.0195 6.18945s7.21973 -0.599609 10.1699 -6.51953zM384 326.1v-6.09961h-128v128h6.09961c6.40039 0 12.5 -2.5 17 -7l97.9004 -98c4.5 -4.5 7 -10.5996 7 -16.9004zM288 101.04l162.79 161.62l67.8799 -67.8799
-l-161.68 -162.78h-68.9902v69.04zM568.54 280.67c9.9502 -9.93945 9.9502 -26.0703 0 -36.0098l-27.25 -27.25l-67.8799 67.8799l27.25 27.25c9.93945 9.94043 26.0703 9.94043 36.0098 0z" />
-    <glyph glyph-name="file-upload" unicode="&#xf574;" horiz-adv-x="384" 
-d="M224 312c0 -13.2002 10.7998 -24 24 -24h136v-328c0 -13.2998 -10.7002 -24 -24 -24h-336c-13.2998 0 -24 10.7002 -24 24v464c0 13.2998 10.7002 24 24 24h200v-136zM289.18 95.9902c14.2803 0 21.4004 17.29 11.25 27.3594l-96.4199 95.7002
-c-6.64941 6.61035 -17.3896 6.61035 -24.04 0l-96.4199 -95.7002c-10.1396 -10.0693 -3.00977 -27.3594 11.2705 -27.3594h65.1797v-80c0 -8.83984 7.16016 -16 16 -16h32c8.83984 0 16 7.16016 16 16v80h65.1797zM377 343c4.5 -4.5 7 -10.5996 7 -16.9004v-6.09961h-128
-v128h6.09961c6.40039 0 12.5 -2.5 17 -7z" />
-    <glyph glyph-name="fill" unicode="&#xf575;" 
-d="M502.63 230.94c12.4902 -12.5 12.4902 -32.7607 0 -45.2607l-221.57 -221.569c-18.75 -18.75 -43.3096 -28.1201 -67.8799 -28.1201c-24.5596 0 -49.1201 9.37988 -67.8701 28.1201l-117.189 117.189c-37.4902 37.4902 -37.4902 98.2598 0 135.75l94.7598 94.7598
-l-86.1895 86.1807c-6.24023 6.25 -6.24023 16.3799 0 22.6299l22.6191 22.6104c6.24023 6.25 16.3809 6.25 22.6201 0l86.1807 -86.1807l81.5801 81.5801c6.23926 6.25 14.4297 9.37012 22.6191 9.37012c8.19043 0 16.3809 -3.12012 22.6309 -9.37012zM386.41 159.97
-l48.3496 48.3398l-162.45 162.44l-58.9492 -58.9502l58.6094 -58.5996c12.4902 -12.4902 12.4902 -32.75 0 -45.2402c-12.4893 -12.4902 -32.75 -12.4902 -45.2393 0l-58.6104 58.5996l-81.6104 -81.6094l-13.1494 -13.1504
-c-3.86035 -3.84961 -6.07031 -7.99023 -7.43066 -11.8301h320.48z" />
-    <glyph glyph-name="fill-drip" unicode="&#xf576;" horiz-adv-x="576" 
-d="M512 128c0 0 64 -92.6504 64 -128s-28.6602 -64 -64 -64s-64 28.6504 -64 64s64 128 64 128zM502.63 230.94c12.4902 -12.5 12.4902 -32.75 -0.00976562 -45.25l-221.57 -221.57c-18.7402 -18.75 -43.2998 -28.1201 -67.8701 -28.1201
-c-24.5596 0 -49.1299 9.37988 -67.8701 28.1201l-117.189 117.189c-37.4902 37.4902 -37.4902 98.2705 0 135.75l94.7598 94.7607l-86.1895 86.1797c-6.24023 6.24023 -6.24023 16.3701 0 22.6201l22.6191 22.6201c6.24023 6.25 16.3701 6.25 22.6201 0l86.1807 -86.1904
-l81.5801 81.5801c6.23926 6.25 14.4297 9.37012 22.6191 9.37012c8.19043 0 16.3809 -3.12012 22.6309 -9.37012zM386.41 159.97l48.3398 48.3398l-162.44 162.44l-58.9492 -58.9502l58.5996 -58.5996c12.4902 -12.4902 12.4902 -32.75 0 -45.2402
-s-32.75 -12.4902 -45.2402 0l-58.5996 58.5996l-81.6104 -81.6094l-13.1494 -13.1504c-3.86035 -3.84961 -6.07031 -7.99023 -7.43066 -11.8301h320.48z" />
-    <glyph glyph-name="fingerprint" unicode="&#xf577;" 
-d="M256.12 202.04c13.2598 0 24 -10.75 23.9902 -24c1.55957 -99.1104 -15.9502 -176.61 -29.4805 -224.521c-2.97949 -10.5996 -12.6104 -17.5195 -23.0898 -17.5195c-20.9697 0 -25.8496 20.7695 -23.1201 30.4902c19.5605 69.6494 28.8398 139.3 27.7002 211.55
-c0 13.2598 10.75 24 24 24zM255.26 283.77c56.9707 -0.839844 104.03 -46.9199 104.91 -102.72c0.790039 -50.8994 -2.99023 -102.08 -11.2695 -152.109c-0.770508 -4.6709 -7.61035 -23.1006 -27.5801 -19.7705c-13.0703 2.16016 -21.9307 14.5205 -19.7607 27.5801
-c7.80078 47.2197 11.3809 95.5 10.6104 143.55c-0.469727 30.1299 -26.3096 55 -57.6201 55.4697c-34.5303 0.150391 -54.8594 -26.3896 -54.4502 -52.3398c0.800781 -51.4395 -4.0293 -102.93 -14.3691 -153.02c-2.69043 -12.9805 -15.3105 -21.3105 -28.3604 -18.6406
-c-12.9697 2.6709 -21.3301 15.3809 -18.6396 28.3604c9.61914 46.6396 14.1191 94.6104 13.3691 142.55c-0.849609 54.0205 41.9004 101.16 103.16 101.09zM144.57 303.55c10.2793 -8.37012 11.8398 -23.4795 3.48926 -33.7598
-c-18.7998 -23.0898 -28.4697 -51.0898 -28 -80.9697c0.640625 -40.6699 -2.66992 -81.4902 -9.85938 -121.33c-0.820312 -4.5498 -7.78027 -22.8604 -27.8906 -19.3604c-13.0498 2.36035 -21.6992 14.8398 -19.3594 27.8896c6.63965 36.7803 9.7002 74.4707 9.10938 112.051
-c-0.639648 40.7197 13.1309 80.5 38.75 112c8.39062 10.2793 23.46 11.8193 33.7607 3.47949zM254.04 365.88c101.09 -1.5 184.6 -83.0801 186.16 -181.83c0.0751953 -4.88281 0.147461 -8.55371 0.147461 -13.4551c0 -35.9766 -2.0498 -71.4785 -6.03809 -106.395
-c-1.06934 -9.23047 -9.85938 -23.0605 -26.5791 -21.1104c-13.1602 1.5 -22.6104 13.4102 -21.1104 26.5801c4.2998 37.5205 6.16992 75.75 5.58008 113.63c-1.15039 73.0801 -63.4502 133.45 -138.88 134.58c-11.5303 0.0800781 -22.9502 -1.08008 -34 -3.68945
-c-12.8906 -3 -25.8301 4.93945 -28.8906 17.8291c-3.04004 12.9102 4.94043 25.8301 17.8301 28.8906c14.9102 3.53027 30.3701 5.37988 45.7803 4.96973zM506.11 244.43c6.22949 -28.2295 6.00977 -50.1602 5.83008 -72.3398
-c-0.110352 -13.1895 -10.8301 -23.7998 -24 -23.7998h-0.200195c-13.25 0.110352 -23.9102 10.9297 -23.7998 24.2002c0.209961 24.1895 0.00976562 40.1895 -4.7002 61.5996c-2.86035 12.9502 5.31934 25.75 18.2598 28.6104
-c13.0996 2.92969 25.75 -5.35059 28.6104 -18.2705zM465.99 335.15c7.62012 -10.8408 5 -25.8105 -5.83984 -33.4307c-10.8604 -7.58984 -25.8105 -5 -33.4199 5.86035c-39.8906 56.8301 -105.171 91.3604 -174.62 92.3896
-c-56.3408 0.810547 -108.92 -20.0596 -147.681 -58.8594c-37.1201 -37.1406 -57.1094 -86.5 -56.2793 -139l-0.160156 -23.6406c-0.379883 -13 -11.0498 -23.2998 -23.9707 -23.2998c-0.239258 0 -0.489258 0 -0.719727 0.0205078
-c-13.25 0.379883 -23.6699 11.4395 -23.2803 24.6895l0.120117 21.4697c-1.04004 65.6104 23.9502 127.28 70.3203 173.71c48.0098 48.0303 112.56 73.7607 182.35 72.9209c84.79 -1.27051 164.48 -43.4404 213.181 -112.83z" />
-    <glyph glyph-name="fish" unicode="&#xf578;" horiz-adv-x="576" 
-d="M327.1 352c137.46 0 248.9 -128 248.9 -160s-111.44 -160 -248.9 -160c-89.9697 0 -168.55 54.7695 -212.279 101.62l-87.3301 -66.0498c-12.1299 -9.16992 -30.2402 0.599609 -27.1406 14.6602l24.1904 109.77l-24.1797 109.76
-c-3.10059 14.0605 15.0098 23.8398 27.1396 14.6602l87.3301 -66.0498c43.7295 46.8604 122.3 101.63 212.27 101.63zM414.53 168c13.25 0 24 10.75 24 24c0 13.2598 -10.7402 24 -24 24c-13.25 0 -24 -10.7402 -24 -24c0 -13.25 10.75 -24 24 -24z" />
-    <glyph glyph-name="flushed" unicode="&#xf579;" horiz-adv-x="496" 
-d="M344 248c13.2998 0 24 -10.7002 24 -24s-10.7002 -24 -24 -24s-24 10.7002 -24 24s10.7002 24 24 24zM152 248c13.2998 0 24 -10.7002 24 -24s-10.7002 -24 -24 -24s-24 10.7002 -24 24s10.7002 24 24 24zM248 440c137 0 248 -111 248 -248s-111 -248 -248 -248
-s-248 111 -248 248s111 248 248 248zM80 224c0 -39.7998 32.2002 -72 72 -72s72 32.2002 72 72s-32.2002 72 -72 72s-72 -32.2002 -72 -72zM312 48c21.2002 0 21.2002 32 0 32h-128c-21.2002 0 -21.2002 -32 0 -32h128zM344 152c39.7998 0 72 32.2002 72 72
-s-32.2002 72 -72 72s-72 -32.2002 -72 -72s32.2002 -72 72 -72z" />
-    <glyph glyph-name="frown-open" unicode="&#xf57a;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM136 240c0 -17.7002 14.2998 -32 32 -32s32 14.2998 32 32s-14.2998 32 -32 32s-32 -14.2998 -32 -32zM323.3 56.7002c11.4004 -3.5 22.5 6.2002 20.5 18.0996
-c-7 39.9004 -60.0996 61.2002 -95.7998 61.2002s-88.7998 -21.2002 -95.7998 -61.2002c-2 -11.7998 9 -21.5996 20.5 -18.0996c31.2002 9.59961 59.3994 15.2998 75.2998 15.2998s44.0996 -5.7002 75.2998 -15.2998zM328 208c17.7002 0 32 14.2998 32 32s-14.2998 32 -32 32
-s-32 -14.2998 -32 -32s14.2998 -32 32 -32z" />
-    <glyph glyph-name="glass-martini-alt" unicode="&#xf57b;" 
-d="M502.05 390.4l-214.05 -214.04v-192.36h56c22.0898 0 40 -17.9102 40 -40c0 -4.41992 -3.58008 -8 -8 -8h-240c-4.41992 0 -8 3.58008 -8 8c0 22.0898 17.9102 40 40 40h56v192.36l-214.05 214.04c-21.25 21.2598 -6.2002 57.5996 23.8496 57.5996h444.4
-c30.0498 0 45.0996 -36.3398 23.8496 -57.5996zM443.77 400h-375.529l48 -48h279.529z" />
-    <glyph glyph-name="globe-africa" unicode="&#xf57c;" horiz-adv-x="496" 
-d="M248 440c136.97 0 248 -111.03 248 -248s-111.03 -248 -248 -248s-248 111.03 -248 248s111.03 248 248 248zM408 224.5c0 8.55957 6.94043 15.5 15.5 15.5h18.4297c-19.0693 76.9805 -82.6992 136.37 -161.92 149.21v-21.7002c0 -8.55957 -6.93945 -15.5 -15.5 -15.5
-h-24.21c-5.17969 0 -10.0195 -2.58984 -12.8896 -6.89941l-8.08008 -12.1104c-2.13965 -3.20996 -5.40039 -5.5 -9.13965 -6.44043l-14.4502 -3.60938c-6.90039 -1.73047 -11.7402 -7.93066 -11.7402 -15.04v-4.40039c0 -8.55957 6.94043 -15.5 15.5 -15.5h90.0498
-l0.00488281 0.00195312c4.27637 0 8.15039 -1.73633 10.9551 -4.54199l6.91992 -6.91992c2.91016 -2.91016 6.85059 -4.54004 10.96 -4.54004h10.0908c8.55957 0 15.5 -6.93945 15.5 -15.5c0 -6.66992 -4.27051 -12.5898 -10.6006 -14.7002l-47.3096 -15.7695
-c-3.90039 -1.2998 -8.15039 -1 -11.8301 0.839844l-14.7207 7.36035c-7.5791 3.7998 -15.9492 5.76953 -24.4297 5.76953h-0.889648c-12.2734 -0.00292969 -23.6533 -4.08594 -32.7803 -10.9297l-27.5801 -20.6904c-13.75 -10.3193 -21.8496 -26.5098 -21.8496 -43.6992
-v-14.0605c0.00292969 -15.0742 6.11328 -28.7393 16 -38.6299c10.25 -10.2402 24.1396 -16 38.6299 -16h25.8799c8.55957 0 15.5 -6.94043 15.5 -15.5v-29.8896c0 -12.6504 3.0293 -24.6885 8.33008 -35.29c4.7002 -9.40039 14.3096 -15.3398 24.8203 -15.3398
-c9.63477 0.000976562 18.1133 4.89551 23.0898 12.3594l13.0293 19.5498c7.18359 10.7715 15.4854 20.4473 25 29.1602c2.4707 2.27051 4.14062 5.27051 4.76074 8.56055l4.2998 22.8301c0.439453 2.3291 1.41016 4.5293 2.83008 6.42969l18.7402 24.9795
-c2.00977 2.68066 3.09961 5.9502 3.09961 9.30078v11.3398c0 8.55957 -6.94043 15.5 -15.5 15.5h-8.20996c-5.17969 0 -10.0205 2.58984 -12.8896 6.89941l-13.2402 19.8604c-5.66992 8.50977 -1.70996 20.0703 7.99023 23.2998l2.64941 0.879883
-c1.53906 0.511719 3.20312 0.78418 4.91309 0.78418c3.17383 0 6.12695 -0.955078 8.58691 -2.59375l18.21 -12.1396c2.45801 -1.6416 5.44043 -2.59863 8.61523 -2.59863c2.48438 0 4.83301 0.585938 6.91504 1.62793l15.3896 7.7002
-c5.25 2.62012 8.57031 7.99023 8.57031 13.8604v6.92969z" />
-    <glyph glyph-name="globe-americas" unicode="&#xf57d;" horiz-adv-x="496" 
-d="M248 440c136.97 0 248 -111.03 248 -248s-111.03 -248 -248 -248s-248 111.03 -248 248s111.03 248 248 248zM330.29 82.4004c8.47363 8.42676 13.7158 20.0977 13.7197 32.9795l0.00488281 0.00976562c0 8.41504 -3.41602 16.0391 -8.93457 21.5605l-13.6904 13.6895
-c-6.00977 6 -14.1396 9.37012 -22.6299 9.37012h-66.75c-9.41016 4.70996 -21.4795 32 -32 32c-10.5195 0 -20.8994 2.4502 -30.3096 7.16016l-11.0801 5.54004c-4.0498 2.03027 -6.61035 6.16016 -6.61035 10.6904h-0.00195312c0 5.27539 3.42578 9.75684 8.17188 11.3398
-l31.1699 10.3896c1.58887 0.52832 3.29785 0.81543 5.0625 0.81543c4.00977 0 7.67676 -1.47656 10.4883 -3.91504l9.2793 -8.06055c1.4502 -1.25977 3.31055 -1.95996 5.24023 -1.95996h5.63965c5.94043 0 9.81055 6.25977 7.15039 11.5801l-15.5898 31.1904
-c-0.535156 1.07324 -0.842773 2.29297 -0.842773 3.57324c0 2.24805 0.928711 4.28125 2.42285 5.73633l9.91992 9.65039c1.5 1.45996 3.5 2.26953 5.58008 2.26953h8.99023l0.00390625 -0.000976562c2.20703 0 4.20703 0.894531 5.65527 2.34082l8 8
-c3.12012 3.12012 3.12012 8.19043 0 11.3105l-4.68945 4.68945c-3.12012 3.12012 -3.12012 8.19043 0 11.3105l10.3398 10.3398l4.69043 4.67969c6.25 6.25 6.25 16.3799 0 22.6299l-28.3008 28.3008c-8.26953 -0.310547 -16.3994 -1.12988 -24.3896 -2.41992v-11.3008
-c0 -11.8994 -12.5195 -19.6299 -23.1602 -14.3096l-24.0098 12.0098c-45.8398 -19.8496 -82.7305 -56.3896 -103.2 -101.89c9.92969 -14.7197 25.21 -37.3701 34.5898 -51.1406c5.20605 -7.66895 11.2012 -14.5479 18.0605 -20.7393l0.799805 -0.720703
-c9.5498 -8.60938 20.1699 -15.9697 31.6504 -21.75c14 -7.0498 34.4395 -18.1592 48.8096 -26.1094c10.1904 -5.62988 16.46 -16.3301 16.46 -27.9707v-32.0098c0 -8.49023 3.37012 -16.6299 9.37012 -22.6299c14.9902 -14.9902 24.3203 -38.6299 22.6299 -51.25v-27.3799
-c14.6504 0 28.8896 1.69043 42.6504 4.69043l17.3896 46.8496c2.04004 5.49023 3.25977 11.21 4.76953 16.8701c1.07031 4.00977 3.18066 7.70996 6.1709 10.71c3.31934 3.33008 7.40918 7.39941 11.3096 11.2803zM417 173.75l29.1797 -7.29004
-c1.08008 8.37988 1.82031 16.8701 1.82031 25.54c0 32.1299 -7.7998 62.4102 -21.3203 89.3301l-12.9795 -6.49023c-3.74023 -1.85938 -6.91992 -4.67969 -9.24023 -8.14941l-19.5898 -29.3809c-2.54004 -3.80371 -4.02051 -8.4209 -4.02051 -13.334
-c0 -4.91211 1.48047 -9.48145 4.02051 -13.2852l17.9795 -26.9707c3.31055 -4.96973 8.36035 -8.51953 14.1504 -9.96973z" />
-    <glyph glyph-name="globe-asia" unicode="&#xf57e;" horiz-adv-x="496" 
-d="M248 440c136.97 0 248 -111.03 248 -248s-111.03 -248 -248 -248s-248 111.03 -248 248s111.03 248 248 248zM236.66 199.77l17.3701 28.9502c1.7998 2.99023 6.2002 2.82031 7.75977 -0.299805c1.34961 -2.70996 4.12012 -4.41992 7.15039 -4.41992h3.05957
-c4.41992 0 8 3.58008 8 8v78.1201c0 6.05957 -3.41992 11.5996 -8.83984 14.3096l-10.8301 5.41016c-5.49023 2.75 -5.96973 10.4004 -0.860352 13.8105l50.1602 38.5293c-19.4297 6.31055 -40.1201 9.82031 -61.6299 9.82031c-110.28 0 -200 -89.7197 -200 -200
-c0 -10.9199 1.12012 -21.5498 2.80957 -31.9902h62.5703c4.24023 0 8.31055 1.69043 11.3105 4.69043l19.4697 19.46c3.85938 3.85938 10.3701 2.7998 12.8096 -2.08008l22.6201 -45.2305c2.70996 -5.42969 8.25 -8.84961 14.3105 -8.84961h6.10938
-c8.83984 0 16 7.16016 16 16v9.37012c0 4.24023 -1.68945 8.30957 -4.68945 11.3096l-5.66016 5.66016c-3.12012 3.12012 -3.12012 8.19043 0 11.3105l5.66016 5.65918c3 3 7.06934 4.69043 11.3096 4.69043h0.310547c5.61914 0 10.8291 2.9502 13.7197 7.76953z
-M408 89.5703l-0.00976562 24.5996c0 4.24023 -1.69043 8.31055 -4.69043 11.3105l-11.9102 11.9092c-1.5 1.5 -2.33984 3.54004 -2.33984 5.66016v12.9307c0 2.20996 -1.79004 4 -4 4h-6.05957c-1.78027 0 -3.33984 -1.1709 -3.83984 -2.88086l-4.2002 -14.4697
-c-0.490234 -1.7002 -2.06055 -2.87988 -3.83984 -2.87988h-3.80078c-1.66211 0.000976562 -3.08691 1.01465 -3.68945 2.45996l-5.35059 12.8496c-1.23926 2.99023 -4.15918 4.93066 -7.38965 4.93066h-12.0898
-c-0.00390625 0 -0.0146484 -0.00488281 -0.0185547 -0.00488281c-1.72168 0 -3.31738 -0.545898 -4.62109 -1.47559l-23.71 -16.8896c-1.73047 -1.23047 -3.61035 -2.25977 -5.59082 -3.0498l-39.3398 -15.7402c-3.04004 -1.21973 -5.0293 -4.16016 -5.0293 -7.42969
-v-10.2002l-0.00195312 -0.00390625c0 -2.20703 0.895508 -4.20703 2.3418 -5.65625l11.9102 -11.9102c3 -3 7.06934 -4.68945 11.3096 -4.68945h10.3398c1.31055 0 2.61035 0.15918 3.87988 0.479492l21.2705 5.32031c2.08203 0.520508 4.25391 0.802734 6.49707 0.802734
-c7.38574 0 14.0771 -2.99805 18.9229 -7.84277l13.0098 -13.0098c3 -3 7.07031 -4.69043 11.3096 -4.69043h15.1602c4.24023 0 8.31055 1.69043 11.3105 4.69043l9.56934 9.56934c3 3 4.69043 7.07031 4.69043 11.3105z" />
-    <glyph glyph-name="grimace" unicode="&#xf57f;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM144 48v40h-40v-8c0 -17.7002 14.2998 -32 32 -32h8zM144 104v40h-8c-17.7002 0 -32 -14.2998 -32 -32v-8h40zM136 240c0 -17.7002 14.2998 -32 32 -32s32 14.2998 32 32
-s-14.2998 32 -32 32s-32 -14.2998 -32 -32zM208 48v40h-48v-40h48zM208 104v40h-48v-40h48zM272 48v40h-48v-40h48zM272 104v40h-48v-40h48zM336 48v40h-48v-40h48zM336 104v40h-48v-40h48zM328 208c17.7002 0 32 14.2998 32 32s-14.2998 32 -32 32s-32 -14.2998 -32 -32
-s14.2998 -32 32 -32zM392 80v8h-40v-40h8c17.7002 0 32 14.2998 32 32zM392 104v8c0 17.7002 -14.2998 32 -32 32h-8v-40h40z" />
-    <glyph glyph-name="grin" unicode="&#xf580;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM328 272c-17.7002 0 -32 -14.2998 -32 -32s14.2998 -32 32 -32s32 14.2998 32 32s-14.2998 32 -32 32zM168 272c-17.7002 0 -32 -14.2998 -32 -32s14.2998 -32 32 -32
-s32 14.2998 32 32s-14.2998 32 -32 32zM248 16c60.5996 0 134.5 38.2998 143.8 93.2998c1.90039 11.7998 -9.39941 21.6006 -20.7002 17.9004c-30.1992 -9.7002 -75.0996 -15.2002 -123.1 -15.2002s-92.9004 5.5 -123.1 15.2002
-c-11.4004 3.7002 -22.7002 -6.10059 -20.7002 -17.9004c9.2998 -55 83.2002 -93.2998 143.8 -93.2998z" />
-    <glyph glyph-name="grin-alt" unicode="&#xf581;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM311.7 311.3c-12.4004 -18.3994 -15.2002 -36.8994 -15.7002 -55.2998c0.599609 -18.4004 3.2998 -36.9004 15.7002 -55.2998c8 -11.7002 25.0996 -11.4004 32.7002 0
-c12.3994 18.3994 15.1992 36.8994 15.6992 55.2998c-0.599609 18.4004 -3.2998 36.9004 -15.6992 55.2998c-8 11.7002 -25.1006 11.4004 -32.7002 0zM151.7 311.3c-12.4004 -18.3994 -15.2002 -36.8994 -15.7002 -55.2998
-c0.599609 -18.4004 3.2998 -36.9004 15.7002 -55.2998c8 -11.7002 25.0996 -11.4004 32.7002 0c12.3994 18.3994 15.1992 36.8994 15.6992 55.2998c-0.599609 18.4004 -3.2998 36.9004 -15.6992 55.2998c-8 11.7002 -25.1006 11.4004 -32.7002 0zM248 16
-c60.5996 0 134.5 38.2998 143.8 93.2998c1.90039 11.7998 -9.2998 21.6006 -20.7002 17.9004c-30.1992 -9.7002 -75.0996 -15.2002 -123.1 -15.2002s-92.9004 5.5 -123.1 15.2002c-11.4004 3.7002 -22.7002 -6.10059 -20.7002 -17.9004
-c9.2998 -55 83.2002 -93.2998 143.8 -93.2998z" />
-    <glyph glyph-name="grin-beam" unicode="&#xf582;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM328 296c-23.7998 0 -52.7002 -29.2998 -55.7998 -71.4004c-0.700195 -8.5 10.7998 -11.7998 14.8994 -4.5l9.5 17c7.7002 13.7002 19.2002 21.6006 31.5 21.6006
-c12.3008 0 23.8008 -7.90039 31.5 -21.6006l9.5 -17c4.10059 -7.39941 15.6006 -4.09961 14.9004 4.5c-3.2998 42.1006 -32.2002 71.4004 -56 71.4004zM168 296c-23.7998 0 -52.7002 -29.2998 -55.7998 -71.4004c-0.700195 -8.5 10.7002 -11.8994 14.8994 -4.5l9.5 17
-c7.7002 13.7002 19.2002 21.6006 31.5 21.6006c12.3008 0 23.8008 -7.90039 31.5 -21.6006l9.5 -17c4.10059 -7.39941 15.6006 -4.09961 14.9004 4.5c-3.2998 42.1006 -32.2002 71.4004 -56 71.4004zM248 16c60.5996 0 134.5 38.2998 143.8 93.2998
-c1.90039 11.7998 -9.2998 21.6006 -20.7002 17.9004c-30.1992 -9.7002 -75.0996 -15.2002 -123.1 -15.2002s-92.9004 5.5 -123.1 15.2002c-11.3008 3.7002 -22.7002 -6 -20.7002 -17.9004c9.2998 -55 83.2002 -93.2998 143.8 -93.2998z" />
-    <glyph glyph-name="grin-beam-sweat" unicode="&#xf583;" horiz-adv-x="504" 
-d="M456 320c-26.5 0 -48 21 -48 47c0 20 28.5 60.4004 41.5996 77.7998c3.2002 4.2998 9.60059 4.2998 12.8008 0c13.0996 -17.3994 41.5996 -57.7998 41.5996 -77.7998c0 -26 -21.5 -47 -48 -47zM456 288c6.7998 0 13.2002 1.09961 19.5 2.59961
-c13.0996 -30.1992 20.5 -63.5 20.5 -98.5996c0 -137 -111 -248 -248 -248s-248 111 -248 248s111 248 248 248c50.2998 0 97 -15.0996 136.1 -40.7998c-7.7998 -18 -8.09961 -27.7998 -8.09961 -32.2002c0 -43.5996 35.9004 -79 80 -79zM328 296
-c-23.7998 0 -52.7002 -29.2998 -55.7998 -71.4004c-0.700195 -8.5 10.7998 -11.8994 14.8994 -4.5l9.5 17c7.7002 13.7002 19.2002 21.6006 31.5 21.6006c12.3008 0 23.8008 -7.90039 31.5 -21.6006l9.5 -17c4.10059 -7.5 15.6006 -4.09961 14.9004 4.5
-c-3.2998 42.1006 -32.2002 71.4004 -56 71.4004zM168 296c-23.7998 0 -52.7002 -29.2998 -55.7998 -71.4004c-0.700195 -8.5 10.7002 -11.8994 14.8994 -4.5l9.5 17c7.7002 13.7002 19.2002 21.6006 31.5 21.6006c12.3008 0 23.8008 -7.90039 31.5 -21.6006l9.5 -17
-c4.10059 -7.5 15.6006 -4.09961 14.9004 4.5c-3.2998 42.1006 -32.2002 71.4004 -56 71.4004zM248 16c60.5996 0 134.5 38.2998 143.8 93.2998c1.90039 11.7002 -9.2002 21.6006 -20.7002 17.9004c-30.1992 -9.7002 -75.0996 -15.2002 -123.1 -15.2002
-s-92.9004 5.5 -123.1 15.2002c-11.4004 3.7002 -22.7002 -6.10059 -20.7002 -17.9004c9.2998 -55 83.2002 -93.2998 143.8 -93.2998z" />
-    <glyph glyph-name="grin-hearts" unicode="&#xf584;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM90.4004 264.4c-7.7002 -20.2002 3.7998 -41.8008 24.1992 -47.2002l70.2002 -18.2002c4.60059 -1.2002 9.2998 1.5 10.5 6l19.4004 69.9004
-c5.59961 20.2998 -7.40039 41.0996 -28.7998 44.5c-18.7002 3 -36.5 -9.80078 -41.5 -27.9004l-2 -7.09961l-7.10059 1.89941c-18.2002 4.7998 -38.2002 -4.2998 -44.8994 -21.8994zM248 16c60.5996 0 134.5 38.2998 143.8 93.2998
-c1.90039 11.7998 -9.2998 21.5 -20.7002 17.9004c-30.1992 -9.7002 -75.0996 -15.2002 -123.1 -15.2002s-92.9004 5.5 -123.1 15.2002c-11.5 3.59961 -22.7002 -6.10059 -20.7002 -17.9004c9.2998 -55 83.2002 -93.2998 143.8 -93.2998zM381.4 217.3
-c20.3994 5.2998 31.8994 26.9004 24.1992 47.2002c-6.69922 17.5996 -26.6992 26.5996 -44.8994 21.9004l-7.10059 -1.90039l-2 7.09961c-5.09961 18.1006 -22.8994 30.9004 -41.5 27.9004c-21.3994 -3.40039 -34.3994 -24.2002 -28.7998 -44.5l19.4004 -69.9004
-c1.2998 -4.5 6 -7.19922 10.5 -6z" />
-    <glyph glyph-name="grin-squint" unicode="&#xf585;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM281.8 250.3c-7.7002 -4.7002 -7.7002 -15.8994 0 -20.5996l80 -48c11.5 -6.7998 24.1006 7.59961 15.4004 18l-33.6006 40.2998l33.6006 40.2998
-c8.59961 10.2998 -3.7998 24.9004 -15.4004 18zM118.8 280.3l33.6006 -40.2998l-33.6006 -40.2998c-8.59961 -10.4004 3.90039 -24.7998 15.4004 -18l80 48c7.7998 4.7002 7.7998 15.8994 0 20.5996l-80 48c-11.6006 6.90039 -24 -7.7002 -15.4004 -18zM248 16
-c60.5996 0 134.5 38.2998 143.8 93.2998c1.90039 11.7002 -9.2002 21.6006 -20.7002 17.9004c-30.1992 -9.7002 -75.0996 -15.2002 -123.1 -15.2002s-92.9004 5.5 -123.1 15.2002c-11.3008 3.7002 -22.7002 -6 -20.7002 -17.9004
-c9.2998 -55 83.2002 -93.2998 143.8 -93.2998z" />
-    <glyph glyph-name="grin-squint-tears" unicode="&#xf586;" 
-d="M409.6 336.1c-5.59961 -0.799805 -10.2998 3.90039 -9.5 9.40039c3.30078 22.5996 12 73.5 26.8008 88.2998c19.0996 19.2002 50.6992 18.9004 70.2998 -0.700195c19.5996 -19.5996 19.8994 -51 0.700195 -70.1992
-c-14.8008 -14.8008 -65.7002 -23.6006 -88.3008 -26.8008zM102.4 47.9004c5.59961 0.799805 10.2998 -3.90039 9.5 -9.40039c-3.30078 -22.5996 -12 -73.5 -26.8008 -88.2998c-19.1992 -19.2002 -50.5996 -18.9004 -70.1992 0.700195
-c-19.6006 19.5996 -19.9004 51.0996 -0.800781 70.1992c14.8008 14.8008 65.7002 23.6006 88.3008 26.8008zM414.1 304.4c24 3.5 42.1006 7.39941 56.5 11.5c54.8008 -94.9004 42 -218.2 -39.1992 -299.301c-81.2002 -81.0996 -204.5 -94 -299.301 -39.1992
-c4.10059 14.3994 8.10059 32.5 11.5 56.5c2.90039 20.5 -12.5 49.5996 -45.6992 45.6992c-24.1006 -3.5 -42.1006 -7.39941 -56.5 -11.5c-54.8008 94.9004 -41.9004 218.2 39.1992 299.301c81.2002 81.0996 204.5 94 299.301 39.1992
-c-4.10059 -14.3994 -8.10059 -32.5 -11.5 -56.5c-2.90039 -20.5996 12.6992 -49.5996 45.6992 -45.6992zM255.7 342l-22.5 -90.5996c-2.2002 -8.60059 5.59961 -16.7002 14.5 -14.5l90.5 22.5996c13.0996 3.2998 11.5996 22.4004 -1.7998 23.5996l-52.3008 4.80078
-l-4.7998 52.2998c-1.2002 13.2998 -20.2998 15 -23.5996 1.7998zM164.8 111.7c1.2998 -13.4004 20.4004 -14.9004 23.5 -1.7002l22.6006 90.5c2.19922 8.7002 -5.7002 16.7002 -14.5 14.5l-90.5 -22.5996c-13.1006 -3.30078 -11.6006 -22.4004 1.7998 -23.6006
-l52.2998 -4.7998zM380.5 67.5c42.7998 42.9004 68 122.3 35.7002 167.6c-7.10059 9.90039 -21.9004 8.5 -27.2998 -2c-14.6006 -28.1992 -42.4004 -63.8994 -76.3008 -97.7998c-33.8994 -33.8994 -69.5 -61.7002 -97.7998 -76.2998
-c-10.7002 -5.40039 -11.7998 -20.2998 -2 -27.2002c14.4004 -10.2002 32.1006 -14.7002 51 -14.7002c41 0 87.4004 21.1006 116.7 50.4004z" />
-    <glyph glyph-name="grin-stars" unicode="&#xf587;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM94.5996 279.1c-6.19922 -1 -8.89941 -8.59961 -4.2998 -13.2998l25.4004 -24.5996l-6 -34.9004c-1 -6.2002 5.2998 -11 11 -7.89941l31.2998 16.2998l31.2002 -16.2002
-c5.7002 -3.09961 12 1.7002 11 7.90039l-6 34.8994l25.3994 24.6006c4.60059 4.59961 1.90039 12.1992 -4.2998 13.1992l-34.8994 5l-15.5 31.6006c-2.90039 5.7998 -11 5.7998 -13.9004 0l-15.5 -31.6006zM248 16c60.5996 0 134.5 38.2998 143.8 93.2998
-c1.90039 11.7998 -9.2002 21.6006 -20.7002 17.9004c-30.1992 -9.7002 -75.0996 -15.2002 -123.1 -15.2002s-92.9004 5.5 -123.1 15.2002c-11.4004 3.59961 -22.7002 -6.10059 -20.7002 -17.9004c9.2998 -55 83.2002 -93.2998 143.8 -93.2998zM405.7 265.9
-c4.59961 4.59961 1.89941 12.1992 -4.40039 13.0996l-34.8994 5l-15.5 31.5996c-2.90039 5.80078 -11 5.80078 -13.9004 0l-15.5 -31.5996l-34.9004 -5c-6.19922 -1 -8.7998 -8.59961 -4.2998 -13.2002l25.4004 -24.5996l-6 -34.9004c-1 -6.2002 5.2998 -11 11 -7.89941
-l31.2998 16.2998l31.2998 -16.2002c5.7002 -3.09961 12 1.7002 11 7.90039l-6 34.8994z" />
-    <glyph glyph-name="grin-tears" unicode="&#xf588;" horiz-adv-x="640" 
-d="M102.4 191.9c5.59961 0.799805 10.2998 -3.90039 9.5 -9.40039c-3.30078 -22.5996 -12 -73.5 -26.8008 -88.2998c-19.1992 -19.2002 -50.5996 -18.9004 -70.1992 0.700195c-19.6006 19.5996 -19.9004 51.0996 -0.800781 70.1992
-c14.8008 14.8008 65.7002 23.6006 88.3008 26.8008zM625.8 165.1c19.2002 -19.0996 18.7998 -50.6992 -0.799805 -70.2998c-19.5996 -19.5996 -51 -19.8994 -70.2002 -0.700195c-14.7998 14.8008 -23.5996 65.7002 -26.7998 88.3008c-0.799805 5.59961 4 10.2998 9.5 9.5
-c22.5996 -3.30078 73.5 -12 88.2998 -26.8008zM496.4 177.9c11.7998 -82.3008 29.8994 -100.4 35.7998 -106.301c0.899414 -1 2 -1.59961 3 -2.5c-42.7002 -74.6992 -123 -125.1 -215.2 -125.1s-172.5 50.4004 -215.2 125c1 0.900391 2.10059 1.59961 3 2.5
-c5.90039 6 24 24.0996 35.7998 106.4c2.90039 20.3994 -12.5 49.5996 -45.6992 45.6992c-8.90039 -1.2998 -16.8008 -2.69922 -24.3008 -4.09961c13.7002 124 118.7 220.5 246.4 220.5s232.7 -96.5 246.4 -220.5c-7.5 1.40039 -15.4004 2.7998 -24.3008 4.09961
-c-26.5996 3.80078 -49.5 -19.0996 -45.6992 -45.6992zM400 296c-23.7998 0 -52.7002 -29.2998 -55.7998 -71.4004c-0.700195 -8.5 10.7002 -11.8994 14.8994 -4.5l9.5 17c7.7002 13.7002 19.2002 21.6006 31.5 21.6006c12.3008 0 23.8008 -7.90039 31.5 -21.6006l9.5 -17
-c4.10059 -7.5 15.6006 -4.09961 14.9004 4.5c-3.2998 42.1006 -32.2002 71.4004 -56 71.4004zM240 296c-23.7998 0 -52.7002 -29.2998 -55.7998 -71.4004c-0.700195 -8.5 10.7002 -11.8994 14.8994 -4.5l9.5 17c7.7002 13.7002 19.2002 21.6006 31.5 21.6006
-c12.3008 0 23.8008 -7.90039 31.5 -21.6006l9.5 -17c4.10059 -7.5 15.6006 -4.09961 14.9004 4.5c-3.2998 42.1006 -32.2002 71.4004 -56 71.4004zM320 16c60.5996 0 134.5 38.2998 143.8 93.2998c1.90039 11.7998 -9.2998 21.6006 -20.7002 17.9004
-c-30.1992 -9.7002 -75.0996 -15.2002 -123.1 -15.2002s-92.9004 5.5 -123.1 15.2002c-11.5 3.7002 -22.7002 -6.2002 -20.7002 -17.9004c9.2998 -55 83.2002 -93.2998 143.8 -93.2998z" />
-    <glyph glyph-name="grin-tongue" unicode="&#xf589;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248c0 -106.3 -67 -196.7 -161 -232c5.59961 12.2002 9 25.7002 9 40v45.5c24.7002 16.2002 43.5 38.0996 47.7998 63.7998c1.90039 11.7998 -9.2998 21.5 -20.7002 17.9004c-30.1992 -9.7002 -75.0996 -15.2002 -123.1 -15.2002
-s-92.9004 5.5 -123.1 15.2002c-11.4004 3.59961 -22.7002 -6.10059 -20.7002 -17.9004c4.2998 -25.7002 23.0996 -47.5996 47.7998 -63.7998v-45.5c0 -14.2998 3.40039 -27.7998 9 -40c-94 35.2998 -161 125.7 -161 232c0 137 111 248 248 248zM168 208
-c17.7002 0 32 14.2998 32 32s-14.2998 32 -32 32s-32 -14.2998 -32 -32s14.2998 -32 32 -32zM328 208c17.7002 0 32 14.2998 32 32s-14.2998 32 -32 32s-32 -14.2998 -32 -32s14.2998 -32 32 -32zM293.1 73.4004c0.800781 -0.400391 -0.5 0.299805 19 -9.30078v-64
-c0 -35.5996 -29.1992 -64.5 -64.8994 -64c-35.1006 0.400391 -63.1006 29.7002 -63.1006 64.9004v63c19.2002 9.59961 18 9 18.9004 9.40039c14.4004 6.5 31.0996 -2.2002 34.5996 -17.6006l1.80078 -7.7998c2.09961 -9.2002 15.1992 -9.2002 17.2998 0l1.7998 7.7998
-c3.5 15.4004 20.2002 24.1006 34.5996 17.6006z" />
-    <glyph glyph-name="grin-tongue-squint" unicode="&#xf58a;" horiz-adv-x="496" 
-d="M293.1 73.4004c0.800781 -0.400391 -0.5 0.299805 19 -9.30078v-64c0 -35.5996 -29.1992 -64.5 -64.8994 -64c-35.1006 0.400391 -63.1006 29.7002 -63.1006 64.9004v63c19.2002 9.59961 18 9 18.9004 9.40039c14.4004 6.5 31.0996 -2.2002 34.5996 -17.6006
-l1.80078 -7.7998c2.09961 -9.2002 15.1992 -9.2002 17.2998 0l1.7998 7.7998c3.5 15.4004 20.2002 24.1006 34.5996 17.6006zM248 440c137 0 248 -111 248 -248c0 -106.3 -67 -196.7 -161 -232c5.59961 12.2002 9 25.7002 9 40v45.5
-c24.7002 16.2002 43.5 38.0996 47.7998 63.7998c1.90039 11.7998 -9.2998 21.6006 -20.7002 17.9004c-30.1992 -9.7002 -75.0996 -15.2002 -123.1 -15.2002s-92.9004 5.5 -123.1 15.2002c-11.5 3.59961 -22.7002 -6.10059 -20.7002 -17.9004
-c4.2998 -25.7002 23.0996 -47.5996 47.7998 -63.7998v-45.5c0 -14.2998 3.40039 -27.7998 9 -40c-94 35.2998 -161 125.7 -161 232c0 137 111 248 248 248zM214.2 229.7c7.7002 4.7002 7.7002 15.8994 0 20.5996l-80 48c-11.6006 6.90039 -24 -7.7002 -15.4004 -18
-l33.6006 -40.2998l-33.6006 -40.2998c-8.59961 -10.4004 3.90039 -24.7998 15.4004 -18zM377.2 199.7l-33.6006 40.2998l33.6006 40.2998c8.5 10.2998 -3.7002 24.9004 -15.4004 18l-80 -48c-7.7998 -4.7002 -7.7998 -15.8994 0 -20.5996l80 -48
-c11.5 -6.7998 24.1006 7.59961 15.4004 18z" />
-    <glyph glyph-name="grin-tongue-wink" unicode="&#xf58b;" horiz-adv-x="496" 
-d="M344 264c13.2998 0 24 -10.7002 24 -24s-10.7002 -24 -24 -24s-24 10.7002 -24 24s10.7002 24 24 24zM248 440c137 0 248 -111 248 -248c0 -106.3 -67 -196.7 -161 -232c5.59961 12.2002 9 25.7002 9 40v45.5c24.7002 16.2002 43.5 38.0996 47.7998 63.7998
-c1.90039 11.7998 -9.2002 21.6006 -20.7002 17.9004c-30.1992 -9.7002 -75.0996 -15.2002 -123.1 -15.2002s-92.9004 5.5 -123.1 15.2002c-11.4004 3.59961 -22.7002 -6.10059 -20.7002 -17.9004c4.2998 -25.7002 23.0996 -47.5996 47.7998 -63.7998v-45.5
-c0 -14.2998 3.40039 -27.7998 9 -40c-94 35.2998 -161 125.7 -161 232c0 137 111 248 248 248zM192 215c8.40039 -7.40039 21.5996 -0.299805 20 10.7998c-4 25.2002 -34.2002 42.1006 -59.9004 42.1006c-25.6992 0 -55.8994 -16.9004 -59.8994 -42.1006
-c-1.7998 -11.0996 11.2998 -18.2002 19.7998 -10.7998l9.5 8.5c14.7998 13.2002 46.2002 13.2002 61 0zM344 176c35.2998 0 64 28.7002 64 64s-28.7002 64 -64 64s-64 -28.7002 -64 -64s28.7002 -64 64 -64zM293.1 73.4004c0.800781 -0.400391 -0.5 0.299805 19 -9.30078
-v-64c0 -35.5996 -29.1992 -64.5 -64.8994 -64c-35.1006 0.400391 -63.1006 29.7002 -63.1006 64.9004v63c19.2002 9.59961 18 9 18.9004 9.40039c14.4004 6.5 31.0996 -2.2002 34.5996 -17.6006l1.80078 -7.7998c2.09961 -9.2002 15.1992 -9.2002 17.2998 0l1.7998 7.7998
-c3.5 15.4004 20.2002 24.1006 34.5996 17.6006z" />
-    <glyph glyph-name="grin-wink" unicode="&#xf58c;" horiz-adv-x="496" 
-d="M0 192c0 137 111 248 248 248s248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248zM200 240c0 17.7002 -14.2998 32 -32 32s-32 -14.2998 -32 -32s14.2998 -32 32 -32s32 14.2998 32 32zM368 215c8.5 -7.40039 21.5996 -0.200195 20 10.7998
-c-4 25.2002 -34.2002 42.1006 -59.9004 42.1006c-25.6992 0 -55.8994 -16.9004 -59.8994 -42.1006c-1.7998 -11.2002 11.5 -18.2002 19.7998 -10.7998l9.5 8.5c14.7998 13.2002 46.2002 13.2002 61 0zM124.9 127.2c-11.4004 3.7002 -22.7002 -6 -20.7002 -17.9004
-c9.2998 -55 83.2002 -93.2998 143.8 -93.2998s134.6 38.2998 143.8 93.2998c1.90039 11.9004 -9.39941 21.6006 -20.7002 17.9004c-30.1992 -9.7002 -75.0996 -15.2002 -123.1 -15.2002s-92.9004 5.5 -123.1 15.2002z" />
-    <glyph glyph-name="grip-horizontal" unicode="&#xf58d;" horiz-adv-x="448" 
-d="M96 160c17.6699 0 32 -14.3301 32 -32v-64c0 -17.6699 -14.3301 -32 -32 -32h-64c-17.6699 0 -32 14.3301 -32 32v64c0 17.6699 14.3301 32 32 32h64zM256 160c17.6699 0 32 -14.3301 32 -32v-64c0 -17.6699 -14.3301 -32 -32 -32h-64c-17.6699 0 -32 14.3301 -32 32v64
-c0 17.6699 14.3301 32 32 32h64zM416 160c17.6699 0 32 -14.3301 32 -32v-64c0 -17.6699 -14.3301 -32 -32 -32h-64c-17.6699 0 -32 14.3301 -32 32v64c0 17.6699 14.3301 32 32 32h64zM96 352c17.6699 0 32 -14.3301 32 -32v-64c0 -17.6699 -14.3301 -32 -32 -32h-64
-c-17.6699 0 -32 14.3301 -32 32v64c0 17.6699 14.3301 32 32 32h64zM256 352c17.6699 0 32 -14.3301 32 -32v-64c0 -17.6699 -14.3301 -32 -32 -32h-64c-17.6699 0 -32 14.3301 -32 32v64c0 17.6699 14.3301 32 32 32h64zM416 352c17.6699 0 32 -14.3301 32 -32v-64
-c0 -17.6699 -14.3301 -32 -32 -32h-64c-17.6699 0 -32 14.3301 -32 32v64c0 17.6699 14.3301 32 32 32h64z" />
-    <glyph glyph-name="grip-vertical" unicode="&#xf58e;" horiz-adv-x="320" 
-d="M96 416c17.6699 0 32 -14.3301 32 -32v-64c0 -17.6699 -14.3301 -32 -32 -32h-64c-17.6699 0 -32 14.3301 -32 32v64c0 17.6699 14.3301 32 32 32h64zM96 256c17.6699 0 32 -14.3301 32 -32v-64c0 -17.6699 -14.3301 -32 -32 -32h-64c-17.6699 0 -32 14.3301 -32 32v64
-c0 17.6699 14.3301 32 32 32h64zM96 96c17.6699 0 32 -14.3301 32 -32v-64c0 -17.6699 -14.3301 -32 -32 -32h-64c-17.6699 0 -32 14.3301 -32 32v64c0 17.6699 14.3301 32 32 32h64zM288 416c17.6699 0 32 -14.3301 32 -32v-64c0 -17.6699 -14.3301 -32 -32 -32h-64
-c-17.6699 0 -32 14.3301 -32 32v64c0 17.6699 14.3301 32 32 32h64zM288 256c17.6699 0 32 -14.3301 32 -32v-64c0 -17.6699 -14.3301 -32 -32 -32h-64c-17.6699 0 -32 14.3301 -32 32v64c0 17.6699 14.3301 32 32 32h64zM288 96c17.6699 0 32 -14.3301 32 -32v-64
-c0 -17.6699 -14.3301 -32 -32 -32h-64c-17.6699 0 -32 14.3301 -32 32v64c0 17.6699 14.3301 32 32 32h64z" />
-    <glyph glyph-name="headphones-alt" unicode="&#xf58f;" 
-d="M160 160c17.6699 0 32 -14.3496 32 -32.0596v-127.881c0 -17.6992 -14.3301 -32.0596 -32 -32.0596h-16c-35.3496 0 -64 28.71 -64 64.1201v63.7598c0 35.4199 28.6504 64.1201 64 64.1201h16zM368 160c35.3496 0 64 -28.71 64 -64.1201v-63.7598
-c0 -35.4102 -28.6504 -64.1201 -64 -64.1201h-16c-17.6699 0 -32 14.3604 -32 32.0596v127.881c0 17.71 14.3301 32.0596 32 32.0596h16zM256 416c143.09 0 251.43 -119.13 256 -256v-112c0 -8.83984 -7.16016 -16 -16 -16h-16c-8.83984 0 -16 7.16016 -16 16v112
-c0 114.67 -93.3301 207.8 -208 207.82c-114.67 -0.0205078 -208 -93.1504 -208 -207.82v-112c0 -8.83984 -7.16016 -16 -16 -16h-16c-8.83984 0 -16 7.16016 -16 16v112c4.57031 136.87 112.91 256 256 256z" />
-    <glyph glyph-name="headset" unicode="&#xf590;" 
-d="M192 240v-112c0 -17.6699 -14.3301 -32 -32 -32h-16c-35.3496 0 -64 28.6504 -64 64v48c0 35.3496 28.6504 64 64 64h16c17.6699 0 32 -14.3301 32 -32zM368 96h-16c-17.6699 0 -32 14.3301 -32 32v112c0 17.6699 14.3301 32 32 32h16c35.3496 0 64 -28.6504 64 -64v-48
-c0 -35.3496 -28.6504 -64 -64 -64zM256 448c142.82 0 251.42 -118.83 256 -256v-165.72c0 -49.8604 -40.4199 -90.2803 -90.2803 -90.2803h-181.72c-26.5098 0 -48 21.4902 -48 48s21.4902 48 48 48h32c26.5098 0 48 -21.4902 48 -48h101.72
-c23.3506 0 42.2803 18.9297 42.2803 42.2803c0 0 -0.0400391 163.29 -0.120117 165.72h0.120117c0 114.69 -93.3096 208 -208 208s-208 -93.3096 -208 -208v-16c0 -8.83984 -7.16016 -16 -16 -16h-16c-8.83984 0 -16 7.16016 -16 16v16c4.58008 137.17 113.18 256 256 256z
-" />
-    <glyph glyph-name="highlighter" unicode="&#xf591;" horiz-adv-x="544" 
-d="M0 -31.9805l68.3301 70.4707l67.04 -67.04l-35.4502 -35.4502zM124.61 208.03l41.5195 35.4395l173.34 -173.34l-35.5498 -41.6396c-9.5 -10.7705 -24.4199 -14.9805 -38.1504 -10.7803l-42.7393 13.0801l-50.8604 -50.8604l-96.2295 96.2305l50.9297 50.9395
-l-13.0498 42.8301c-1.02832 3.37598 -1.60645 6.94922 -1.60645 10.6592c0 10.9229 4.79688 20.7344 12.3965 27.4414zM527.92 368.73c20.5 -20.5 21.5303 -53.3906 2.34961 -75.1309l-169.949 -199.06l-169.771 169.78l199.05 169.96
-c21.7402 19.1699 54.6309 18.1396 75.1201 -2.35059z" />
-    <glyph glyph-name="hot-tub" unicode="&#xf593;" 
-d="M414.21 270.35c-3.15039 25.3906 -14.6104 47.9707 -31.9697 62.1406c-27.7305 22.6299 -45.79 58.0498 -50.1299 97.1602c-1.09082 9.7793 6.48926 18.3496 16 18.3496h16.1201c7.98926 0 14.7295 -6.13965 15.7393 -14.3398
-c3.16016 -25.4004 14.6104 -47.9805 31.9805 -62.1504c27.7295 -22.6299 45.79 -58.0498 50.1299 -97.1602c1.08008 -9.7793 -6.49023 -18.3496 -16 -18.3496h-16.1201c-8 0 -14.7295 6.13965 -15.75 14.3496zM306.21 270.35
-c-3.15039 25.3906 -14.6104 47.9707 -31.9697 62.1406c-27.7305 22.6299 -45.79 58.0498 -50.1299 97.1602c-1.09082 9.7793 6.48926 18.3496 16 18.3496h16.1201c7.98926 0 14.7295 -6.13965 15.7393 -14.3398c3.16016 -25.4004 14.6104 -47.9805 31.9805 -62.1504
-c27.7295 -22.6299 45.79 -58.0498 50.1299 -97.1602c1.08008 -9.7793 -6.49023 -18.3496 -16 -18.3496h-16.1201c-8 0 -14.7295 6.13965 -15.75 14.3496zM480 192c17.6699 0 32 -14.3301 32 -32v-160c0 -35.3496 -28.6504 -64 -64 -64h-384c-35.3496 0 -64 28.6504 -64 64
-v224c0 35.3496 28.6504 64 64 64h42.6699c14.3779 0 27.7109 -4.78223 38.4004 -12.7998l110.93 -83.2002h224zM128 8v112c0 4.41992 -3.58008 8 -8 8h-16c-4.41992 0 -8 -3.58008 -8 -8v-112c0 -4.41992 3.58008 -8 8 -8h16c4.41992 0 8 3.58008 8 8zM224 8v112
-c0 4.41992 -3.58008 8 -8 8h-16c-4.41992 0 -8 -3.58008 -8 -8v-112c0 -4.41992 3.58008 -8 8 -8h16c4.41992 0 8 3.58008 8 8zM320 8v112c0 4.41992 -3.58008 8 -8 8h-16c-4.41992 0 -8 -3.58008 -8 -8v-112c0 -4.41992 3.58008 -8 8 -8h16c4.41992 0 8 3.58008 8 8zM416 8
-v112c0 4.41992 -3.58008 8 -8 8h-16c-4.41992 0 -8 -3.58008 -8 -8v-112c0 -4.41992 3.58008 -8 8 -8h16c4.41992 0 8 3.58008 8 8zM64 320c-35.3496 0 -64 28.6504 -64 64s28.6504 64 64 64s64 -28.6504 64 -64s-28.6504 -64 -64 -64z" />
-    <glyph glyph-name="hotel" unicode="&#xf594;" horiz-adv-x="576" 
-d="M560 384h-16v-384h16c8.83984 0 16 -7.16016 16 -16v-32c0 -8.83984 -7.16016 -16 -16 -16h-240v80c0 8.7998 -7.2002 16 -16 16h-32c-8.7998 0 -16 -7.2002 -16 -16v-80h-240c-8.83984 0 -16 7.16016 -16 16v32c0 8.83984 7.16016 16 16 16h15.9805v384h-15.9805
-c-8.83984 0 -16 7.16016 -16 16v32c0 8.83984 7.16016 16 16 16h544c8.83984 0 16 -7.16016 16 -16v-32c0 -8.83984 -7.16016 -16 -16 -16zM256 339.2v-38.4004c0 -6.39941 6.40039 -12.7998 12.7998 -12.7998h38.4004c6.39941 0 12.7998 6.40039 12.7998 12.7998v38.4004
-c0 6.39941 -6.40039 12.7998 -12.7998 12.7998h-38.4004c-6.39941 0 -12.7998 -6.40039 -12.7998 -12.7998zM256 243.2v-38.4004c0 -6.39941 6.40039 -12.7998 12.7998 -12.7998h38.4004c6.39941 0 12.7998 6.40039 12.7998 12.7998v38.4004
-c0 6.39941 -6.40039 12.7998 -12.7998 12.7998h-38.4004c-6.39941 0 -12.7998 -6.40039 -12.7998 -12.7998zM128 339.2v-38.4004c0 -6.39941 6.40039 -12.7998 12.7998 -12.7998h38.4004c6.39941 0 12.7998 6.40039 12.7998 12.7998v38.4004
-c0 6.39941 -6.40039 12.7998 -12.7998 12.7998h-38.4004c-6.39941 0 -12.7998 -6.40039 -12.7998 -12.7998zM179.2 192c6.39941 0 12.7998 6.40039 12.7998 12.7998v38.4004c0 6.39941 -6.40039 12.7998 -12.7998 12.7998h-38.4004
-c-6.39941 0 -12.7998 -6.40039 -12.7998 -12.7998v-38.4004c0 -6.39941 6.40039 -12.7998 12.7998 -12.7998h38.4004zM192 64h192c0 53.0195 -42.9805 96 -96 96s-96 -42.9805 -96 -96zM448 204.8v38.4004c0 6.39941 -6.40039 12.7998 -12.7998 12.7998h-38.4004
-c-6.39941 0 -12.7998 -6.40039 -12.7998 -12.7998v-38.4004c0 -6.39941 6.40039 -12.7998 12.7998 -12.7998h38.4004c6.39941 0 12.7998 6.40039 12.7998 12.7998zM448 300.8v38.4004c0 6.39941 -6.40039 12.7998 -12.7998 12.7998h-38.4004
-c-6.39941 0 -12.7998 -6.40039 -12.7998 -12.7998v-38.4004c0 -6.39941 6.40039 -12.7998 12.7998 -12.7998h38.4004c6.39941 0 12.7998 6.40039 12.7998 12.7998z" />
-    <glyph glyph-name="joint" unicode="&#xf595;" horiz-adv-x="640" 
-d="M444.34 266.9c-35.7803 25.0693 -60.3398 63.0098 -60.3398 106.699v66.4004c0 4.41992 3.58008 8 8 8h48c4.41992 0 8 -3.58008 8 -8v-62.3096c0 -29.0303 15.8496 -54.71 39.6602 -71.3203c35.3301 -24.6504 56.3398 -64.8203 56.3398 -108.061v-30.3096
-c0 -4.41992 -3.58008 -8 -8 -8h-48c-4.41992 0 -8 3.58008 -8 8v30.3096c0 27.4307 -13.2803 52.9102 -35.6602 68.5908zM194.97 89.0195c22.3701 3.60059 45.0801 -4.30957 59.8203 -21.5098l112.72 -131.51h-88.5693c-98.6406 0 -195.29 27.7197 -278.94 80
-c59.6904 37.3096 126.03 61.9297 194.97 73.0195zM553.28 360.91c54.3096 -36.4102 86.7197 -97.1602 86.7197 -162.601v-30.3096c0 -4.41992 -3.58008 -8 -8 -8h-48c-4.41992 0 -8 3.58008 -8 8v30.3096c0 50.1504 -25.21 96.6504 -67.3604 123.99
-c-18.4697 11.9805 -28.6396 33.3701 -28.6396 55.3906v62.3096c0 4.41992 3.58008 8 8 8h48c4.41992 0 8 -3.58008 8 -8v-62.3096c0 -6.82031 3.61035 -12.9805 9.28027 -16.7803zM360.89 95.9502c0.0371094 0 0.0556641 0.0351562 0.0927734 0.0351562
-c19.4336 0 36.8535 -8.68652 48.5879 -22.3857l117.949 -137.6h-88.4492c-19.4385 0 -36.8506 8.65137 -48.5898 22.3496l-117.801 137.431c1.40039 0.0195312 53.8105 0.109375 88.21 0.169922zM616 96c13.25 0 24 -10.7402 24 -24v-112c0 -13.25 -10.75 -24 -24 -24
-h-17.4199c-19.4375 0 -36.8506 8.65137 -48.5898 22.3496l-117.99 137.65h184z" />
-    <glyph glyph-name="kiss" unicode="&#xf596;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM168 208c17.7002 0 32 14.2998 32 32s-14.2998 32 -32 32s-32 -14.2998 -32 -32s14.2998 -32 32 -32zM304 52c0 13 -13.4004 27.2998 -35.2002 36.4004
-c21.7998 8.69922 35.2002 23 35.2002 36c0 19.1992 -28.7002 41.5 -71.5 44c-8.40039 1.09961 -12.2002 -11.8008 -3.59961 -15.4004l17 -7.2002c13 -5.5 20.7998 -13.5 20.7998 -21.5s-7.7998 -16 -20.7998 -21.5l-17 -7.2002c-6.10059 -2.59961 -6 -12.2998 0 -14.7998
-l17 -7.2002c13 -5.5 20.7998 -13.5 20.7998 -21.5s-7.7998 -16 -20.7998 -21.5l-17 -7.19922c-8.5 -3.60059 -4.90039 -16.2002 3.59961 -15.4004c42.7998 2.5 71.5 24.7998 71.5 44zM328 208c17.7002 0 32 14.2998 32 32s-14.2998 32 -32 32s-32 -14.2998 -32 -32
-s14.2998 -32 32 -32z" />
-    <glyph glyph-name="kiss-beam" unicode="&#xf597;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM209 220.1c4.2002 -7.5 15.5996 -4 15.0996 4.5c-3.2998 42.1006 -32.1992 71.4004 -56 71.4004c-23.7998 0 -52.6992 -29.2998 -56 -71.4004
-c-0.699219 -8.5 10.7002 -11.8994 14.9004 -4.5l9.5 17c7.7002 13.7002 19.2002 21.6006 31.5 21.6006s23.7998 -7.90039 31.5 -21.6006zM304 52c0 13 -13.4004 27.2998 -35.2002 36.4004c21.7998 8.69922 35.2002 23 35.2002 36c0 19.1992 -28.7002 41.5 -71.5 44
-c-8.40039 1.09961 -12.2002 -11.8008 -3.59961 -15.4004l17 -7.2002c13 -5.5 20.7998 -13.5 20.7998 -21.5s-7.7998 -16 -20.7998 -21.5l-17 -7.2002c-6.10059 -2.59961 -6 -12.2998 0 -14.7998l17 -7.2002c13 -5.5 20.7998 -13.5 20.7998 -21.5s-7.7998 -16 -20.7998 -21.5
-l-17 -7.19922c-8.5 -3.60059 -4.90039 -16.2002 3.59961 -15.4004c42.7998 2.5 71.5 24.7998 71.5 44zM369 220.1c4.2002 -7.5 15.5996 -4 15.0996 4.5c-3.2998 42.1006 -32.1992 71.4004 -56 71.4004c-23.7998 0 -52.6992 -29.2998 -56 -71.4004
-c-0.699219 -8.5 10.8008 -11.7998 14.9004 -4.5l9.5 17c7.7002 13.7002 19.2002 21.6006 31.5 21.6006s23.7998 -7.90039 31.5 -21.6006z" />
-    <glyph glyph-name="kiss-wink-heart" unicode="&#xf598;" horiz-adv-x="504" 
-d="M501.1 45.5c9.2002 -23.9004 -4.39941 -49.4004 -28.5 -55.7002l-83 -21.5c-5.39941 -1.39941 -10.8994 1.7998 -12.3994 7.10059l-22.9004 82.5996c-6.59961 24 8.7998 48.5996 34 52.5996c22 3.5 43.1006 -11.5996 49 -33l2.2998 -8.39941l8.40039 2.2002
-c21.5996 5.59961 45.0996 -5.10059 53.0996 -25.9004zM323.5 49.5c0 0 23.5996 -83.9004 23.9004 -84.5996c-30.5 -13.4004 -64 -20.9004 -99.4004 -20.9004c-137 0 -248 111 -248 248s111 248 248 248s248 -111 248 -248c0 -31.7998 -6.2002 -62.0996 -17.0996 -90
-c-6 1.5 -12.2002 2.7998 -18.6006 2.90039c-29.0996 49.7998 -98.0996 50.5996 -127.8 4.2998c-11.2998 -17.7002 -14.5996 -39.4004 -9 -59.7002zM168 208c17.7002 0 32 14.2998 32 32s-14.2998 32 -32 32s-32 -14.2998 -32 -32s14.2998 -32 32 -32zM288 52
-c0 13 -13.4004 27.2998 -35.2002 36.4004c21.7998 8.69922 35.2002 23 35.2002 36c0 19.1992 -28.7002 41.5 -71.5 44c-8.2002 1.19922 -12.4004 -11.7002 -3.59961 -15.4004l17 -7.2002c13 -5.5 20.7998 -13.5 20.7998 -21.5s-7.7998 -16 -20.7998 -21.5l-17 -7.2002
-c-5.7002 -2.5 -6 -12.2998 0 -14.7998l17 -7.2002c13 -5.5 20.7998 -13.5 20.7998 -21.5s-7.7998 -16 -20.7998 -21.5l-17 -7.19922c-8.5 -3.60059 -4.90039 -16.2002 3.59961 -15.4004c42.7998 2.5 71.5 24.7998 71.5 44zM304 231l9.7002 8.5
-c14.7998 13.2002 46.2002 13.2002 61 0l9.5 -8.5c8.5 -7.5 21.5 -0.299805 19.7998 10.7998c-4 25.2002 -34.2002 42.1006 -59.9004 42.1006c-25.6992 0 -55.8994 -16.9004 -59.8994 -42.1006c-1.7998 -11.2002 11.5 -18.2002 19.7998 -10.7998z" />
-    <glyph glyph-name="laugh" unicode="&#xf599;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM328 288c-17.7002 0 -32 -14.2998 -32 -32s14.2998 -32 32 -32s32 14.2998 32 32s-14.2998 32 -32 32zM168 288c-17.7002 0 -32 -14.2998 -32 -32s14.2998 -32 32 -32
-s32 14.2998 32 32s-14.2998 32 -32 32zM256 16c73.4004 0 134 55 142.9 126c1.19922 9.59961 -6.30078 18 -15.9004 18h-270c-9.59961 0 -17.0996 -8.5 -15.9004 -18c8.90039 -71 69.5 -126 142.9 -126h16z" />
-    <glyph glyph-name="laugh-beam" unicode="&#xf59a;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM272 240.6c-0.700195 -8.59961 10.9004 -11.8994 15.0996 -4.5l9.5 17c7.7002 13.7002 19.2002 21.6006 31.5 21.6006c12.3008 0 23.8008 -7.90039 31.5 -21.6006l9.5 -17
-c4.10059 -7.39941 15.6006 -4.09961 14.9004 4.5c-3.2998 42.1006 -32.2002 71.4004 -56 71.4004s-52.7002 -29.2998 -56 -71.4004zM112 240.6c-0.700195 -8.5 10.7998 -11.8994 15.0996 -4.5l9.5 17c7.7002 13.7002 19.2002 21.6006 31.5 21.6006
-c12.3008 0 23.8008 -7.90039 31.5 -21.6006l9.5 -17c4.10059 -7.39941 15.6006 -4.09961 14.9004 4.5c-3.2998 42.1006 -32.2002 71.4004 -56 71.4004s-52.7002 -29.2998 -56 -71.4004zM398.9 142c1.19922 9.59961 -6.30078 18 -15.9004 18h-270
-c-9.59961 0 -17.0996 -8.5 -15.9004 -18c8.90039 -71 69.5 -126 142.9 -126h16c73.4004 0 134 55 142.9 126z" />
-    <glyph glyph-name="laugh-squint" unicode="&#xf59b;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM281.8 278.3c-7.7002 -4.7002 -7.7002 -15.8994 0 -20.5996l80 -48c11.5 -6.7998 24.1006 7.59961 15.4004 18l-33.6006 40.2998l33.6006 40.2998
-c8.59961 10.2998 -3.7998 24.9004 -15.4004 18zM118.8 308.3l33.6006 -40.2998l-33.6006 -40.2998c-8.59961 -10.4004 3.90039 -24.7998 15.4004 -18l80 48c7.7998 4.7002 7.7998 15.8994 0 20.5996l-80 48c-11.6006 6.90039 -24 -7.7002 -15.4004 -18zM398.9 142
-c1.19922 9.59961 -6.30078 18 -15.9004 18h-270c-9.59961 0 -17.0996 -8.5 -15.9004 -18c8.90039 -71 69.5 -126 142.9 -126h16c73.4004 0 134 55 142.9 126z" />
-    <glyph glyph-name="laugh-wink" unicode="&#xf59c;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM268.1 241.9c-1.69922 -11.2002 11.5 -18.3008 19.9004 -10.9004l9.59961 8.59961c14.8008 13.2002 46.2002 13.2002 61 0l9.5 -8.5
-c8.40039 -7.5 21.5 -0.299805 19.8008 10.8008c-4 25.1992 -34.2002 42.0996 -59.9004 42.0996s-55.9004 -16.9004 -59.9004 -42.0996zM168 288c-17.7002 0 -32 -14.2998 -32 -32s14.2998 -32 32 -32s32 14.2998 32 32s-14.2998 32 -32 32zM398.9 142
-c1.19922 9.59961 -6.30078 18 -15.9004 18h-270c-9.59961 0 -17.0996 -8.5 -15.9004 -18c8.90039 -71 69.5 -126 142.9 -126h16c73.4004 0 134 55 142.9 126z" />
-    <glyph glyph-name="luggage-cart" unicode="&#xf59d;" horiz-adv-x="640" 
-d="M224 128c-17.6699 0 -32 14.3301 -32 32v160c0 17.6699 14.3301 32 32 32h32v-224h-32zM576 160c0 -17.6699 -14.3301 -32 -32 -32h-32v224h32c17.6699 0 32 -14.3301 32 -32v-160zM624 64c8.83984 0 16 -7.16016 16 -16v-32c0 -8.83984 -7.16016 -16 -16 -16h-82.9404
-c1.79004 -5.03027 2.94043 -10.3604 2.94043 -16c0 -26.5098 -21.4902 -48 -48 -48s-48 21.4902 -48 48c0 5.63965 1.15039 10.9697 2.94043 16h-197.881c1.79004 -5.03027 2.94043 -10.3604 2.94043 -16c0 -26.5098 -21.4902 -48 -48 -48s-48 21.4902 -48 48
-c0 5.63965 1.15039 10.9697 2.94043 16h-82.9404c-8.83984 0 -16 7.16016 -16 16v368h-48c-8.83984 0 -16 7.16016 -16 16v32c0 8.83984 7.16016 16 16 16h96c8.83984 0 16 -7.16016 16 -16v-368h496zM480 352v-224h-192v272c0 26.5098 21.4902 48 48 48h96
-c26.5098 0 48 -21.4902 48 -48v-48zM432 352v48h-96v-48h96z" />
-    <glyph glyph-name="map-marked" unicode="&#xf59f;" horiz-adv-x="576" 
-d="M288 448c69.5898 0 126 -56.4102 126 -126c0 -56.2598 -82.3496 -158.8 -113.9 -196.02c-6.37988 -7.54004 -17.8096 -7.54004 -24.1992 0c-31.5508 37.2197 -113.9 139.76 -113.9 196.02c0 69.5898 56.4102 126 126 126zM20.1201 232.05l118.63 47.4502
-c5.17969 -14.8799 12.4102 -30.4404 21.25 -46.4199v-233.08l-138.06 -62.8398c-10.5107 -4.2002 -21.9404 3.54004 -21.9404 14.8594v250.32c0.00292969 13.4697 8.32617 24.9932 20.1201 29.71zM288 88.3301c14.0703 0 27.3799 6.17969 36.5098 16.9502
-c19.6699 23.2002 40.5703 49.6299 59.4902 76.7197v-245.99l-192 64v182c18.9199 -27.0996 39.8301 -53.5195 59.4902 -76.7197c9.12988 -10.7803 22.4395 -16.96 36.5098 -16.96zM554.06 286.84c10.5107 4.2002 21.9404 -3.54004 21.9404 -14.8594v-250.32
-c0 -13.4707 -8.32422 -24.9951 -20.1201 -29.71l-139.88 -55.9502v288z" />
-    <glyph glyph-name="map-marked-alt" unicode="&#xf5a0;" horiz-adv-x="576" 
-d="M288 448c69.5898 0 126 -56.4102 126 -126c0 -56.2598 -82.3496 -158.8 -113.9 -196.02c-6.37988 -7.54004 -17.8096 -7.54004 -24.1992 0c-31.5508 37.2197 -113.9 139.76 -113.9 196.02c0 69.5898 56.4102 126 126 126zM288 280c23.2002 0 42 18.7998 42 42
-s-18.7998 42 -42 42s-42 -18.7998 -42 -42s18.7998 -42 42 -42zM20.1201 232.05l118.63 47.4502c5.17969 -14.8799 12.4102 -30.4404 21.25 -46.4199v-233.08l-138.06 -62.8398c-10.5107 -4.2002 -21.9404 3.54004 -21.9404 14.8594v250.32
-c0.00292969 13.4697 8.32617 24.9932 20.1201 29.71zM288 88.3301c14.0703 0 27.3799 6.17969 36.5098 16.9502c19.6699 23.2002 40.5703 49.6299 59.4902 76.7197v-245.99l-192 64v182c18.9199 -27.0996 39.8301 -53.5195 59.4902 -76.7197
-c9.12988 -10.7803 22.4395 -16.96 36.5098 -16.96zM554.06 286.84c10.5107 4.2002 21.9404 -3.54004 21.9404 -14.8594v-250.32c0 -13.4707 -8.32422 -24.9951 -20.1201 -29.71l-139.88 -55.9502v288z" />
-    <glyph glyph-name="marker" unicode="&#xf5a1;" 
-d="M93.9502 157.97l75.3994 75.4004l128.021 -128.021l-75.4004 -75.3994c-51.1611 -51.1592 -119.559 -85.4326 -195.34 -93.7998c-15.2803 -1.69043 -28.1895 11.2295 -26.4902 26.5098l0.0302734 0.229492c8.42188 75.6777 42.6777 143.978 93.7803 195.08z
-M485.49 421.49c35.3496 -35.3604 35.3496 -92.6699 0 -128.021l-165.49 -165.489l-128.02 128.02l98.4795 98.4697l-19.5898 19.5898l-87.1504 -87.1494c-6.25 -6.25 -16.3799 -6.25 -22.6299 0l-22.6201 22.6201c-6.25 6.25 -6.25 16.3799 0 22.6299l104.12 104.12
-c15.6104 15.6201 40.9404 15.6201 56.5605 0l36.5596 -36.5498l21.7598 21.7598c35.3506 35.3496 92.6699 35.3496 128.021 0z" />
-    <glyph glyph-name="medal" unicode="&#xf5a2;" 
-d="M223.75 317.25c-42.04 -6.55957 -79.8398 -25.6201 -109.56 -53.3896l-111.271 158.96c-7.41992 10.6094 0.160156 25.1797 13.1104 25.1797h111.149c11.6572 0 21.8467 -6.21387 27.4404 -15.54zM495.97 448c12.9502 0 20.5303 -14.5703 13.1104 -25.1797
-l-111.271 -158.95c-29.7197 27.7598 -67.5195 46.8203 -109.56 53.3799l69.1299 115.21c5.78027 9.63965 16.2002 15.54 27.4404 15.54h111.149zM256 288c97.2002 0 176 -78.7998 176 -176s-78.7998 -176 -176 -176s-176 78.7998 -176 176s78.7998 176 176 176z
-M348.52 130.74c6.82031 6.63965 3.05078 18.2295 -6.34961 19.5898l-52.4297 7.63965l-23.4307 47.5205c-2.10938 4.25 -6.21973 6.38965 -10.3291 6.38965c-4.09082 0 -8.1709 -2.11035 -10.2803 -6.38965l-23.4307 -47.5205l-52.4297 -7.63965
-c-9.39941 -1.36035 -13.1699 -12.9502 -6.34961 -19.5898l37.9297 -36.96l-8.96973 -52.2207c-1.60059 -9.34961 8.25 -16.54 16.6494 -12.0898l46.9004 24.6504l46.9102 -24.6504c8.38965 -4.41992 18.25 2.73047 16.6494 12.0898l-8.96973 52.2207z" />
-    <glyph glyph-name="meh-blank" unicode="&#xf5a4;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM168 208c17.7002 0 32 14.2998 32 32s-14.2998 32 -32 32s-32 -14.2998 -32 -32s14.2998 -32 32 -32zM328 208c17.7002 0 32 14.2998 32 32s-14.2998 32 -32 32
-s-32 -14.2998 -32 -32s14.2998 -32 32 -32z" />
-    <glyph glyph-name="meh-rolling-eyes" unicode="&#xf5a5;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM88 224c0 -35.2998 28.7002 -64 64 -64s64 28.7002 64 64c0 24.2998 -13.7002 45.2002 -33.5996 56c0.699219 -2.59961 1.59961 -5.2002 1.59961 -8
-c0 -17.7002 -14.2998 -32 -32 -32s-32 14.2998 -32 32c0 2.7998 0.900391 5.40039 1.59961 8c-19.8994 -10.7998 -33.5996 -31.7002 -33.5996 -56zM312 48c21.2002 0 21.2002 32 0 32h-128c-21.2002 0 -21.2002 -32 0 -32h128zM344 160c35.2998 0 64 28.7002 64 64
-c0 24.2998 -13.7002 45.2002 -33.5996 56c0.699219 -2.59961 1.59961 -5.2002 1.59961 -8c0 -17.7002 -14.2998 -32 -32 -32s-32 14.2998 -32 32c0 2.7998 0.900391 5.40039 1.59961 8c-19.8994 -10.7998 -33.5996 -31.7002 -33.5996 -56c0 -35.2998 28.7002 -64 64 -64z
-" />
-    <glyph glyph-name="monument" unicode="&#xf5a6;" horiz-adv-x="384" 
-d="M368 0c8.83984 0 16 -7.16016 16 -16v-32c0 -8.83984 -7.16016 -16 -16 -16h-352c-8.83984 0 -16 7.16016 -16 16v32c0 8.83984 7.16016 16 16 16h352zM289.14 347.26l30.8604 -315.26h-256l30.8701 315.26c0.751953 7.54688 4.12988 14.3613 9.20996 19.4404
-l76.5996 76.6094c6.25 6.25 16.3799 6.25 22.6299 0l76.6201 -76.6094c5.08008 -5.0791 8.45801 -11.8936 9.20996 -19.4404zM240 140.8v38.4004c0 6.39941 -6.40039 12.7998 -12.7998 12.7998h-70.4004c-6.39941 0 -12.7998 -6.40039 -12.7998 -12.7998v-38.4004
-c0 -6.39941 6.40039 -12.7998 12.7998 -12.7998h70.4004c6.39941 0 12.7998 6.40039 12.7998 12.7998z" />
-    <glyph glyph-name="mortar-pestle" unicode="&#xf5a7;" 
-d="M501.54 387.09l-99.0801 -99.0898h-151.37l203.811 152.86c5.96094 4.46875 13.4297 7.11426 21.4473 7.11426c5.71973 0 11.1279 -1.34863 15.9219 -3.74414c21.7803 -10.8906 26.4902 -39.9209 9.27051 -57.1406zM496 256c8.83984 0 16 -7.16016 16 -16v-32
-c0 -8.83984 -7.16016 -16 -16 -16h-16c0 -80.9805 -50.2002 -150.11 -121.13 -178.32c12.7695 -16.8701 21.7295 -36.7998 24.9502 -58.6895c1.45996 -9.91992 -6.04004 -18.9805 -16.0703 -18.9805h-223.5c-10.0303 0 -17.5303 9.06055 -16.0703 18.9805
-c3.23047 21.8896 12.1904 41.8193 24.9502 58.6895c-70.9297 28.21 -121.13 97.3398 -121.13 178.32h-16c-8.83984 0 -16 7.16016 -16 16v32c0 8.83984 7.16016 16 16 16h480z" />
-    <glyph glyph-name="paint-roller" unicode="&#xf5aa;" 
-d="M416 320c0 -17.6699 -14.3301 -32 -32 -32h-352c-17.6699 0 -32 14.3301 -32 32v96c0 17.6699 14.3301 32 32 32h352c17.6699 0 32 -14.3301 32 -32v-96zM448 384c35.3496 0 64 -28.6504 64 -64v-64c0 -53.0195 -42.9805 -96 -96 -96h-160v-32
-c17.6699 0 32 -14.3301 32 -32v-128c0 -17.6699 -14.3301 -32 -32 -32h-64c-17.6699 0 -32 14.3301 -32 32v128c0 17.6699 14.3301 32 32 32v32c0 35.3496 28.6504 64 64 64h160c17.6699 0 32 14.3301 32 32v128z" />
-    <glyph glyph-name="passport" unicode="&#xf5ab;" horiz-adv-x="448" 
-d="M129.62 272c5.28027 31.2197 25.5898 57.1699 53.2998 70.4102c-7.66992 -19.0605 -12.7197 -43.3799 -14.21 -70.4102h-39.0898zM129.62 240h39.0898c1.49023 -27.0303 6.53027 -51.3496 14.21 -70.4102c-27.71 13.2402 -48.0098 39.1904 -53.2998 70.4102zM224 161.31
-c-7.69043 7.4502 -20.7695 34.4307 -23.4404 78.6904h46.8701c-2.66016 -44.2695 -15.7393 -71.2402 -23.4297 -78.6904zM200.57 272c2.66016 44.2598 15.7393 71.2402 23.4395 78.6904c7.69043 -7.4502 20.7705 -34.4307 23.4307 -78.6904h-46.8701zM265.08 169.59
-c7.67969 19.0605 12.7197 43.3799 14.21 70.4102h39.0898c-5.28027 -31.2197 -25.5898 -57.1699 -53.2998 -70.4102zM416 448c17.6699 0 32 -14.3301 32 -32v-448c0 -17.6699 -14.3301 -32 -32 -32h-352c-35.3496 0 -64 28.6504 -64 64v384c0 35.3496 28.6504 64 64 64h352z
-M336 32c8.7998 0 16 7.2002 16 16s-7.2002 16 -16 16h-224c-8.7998 0 -16 -7.2002 -16 -16s7.2002 -16 16 -16h224zM224 128c70.6904 0 128 57.3096 128 128s-57.3096 128 -128 128s-128 -57.3096 -128 -128s57.3096 -128 128 -128zM265.08 342.41
-c27.71 -13.2402 48.0195 -39.1904 53.2998 -70.4102h-39.0898c-1.49023 27.0303 -6.53027 51.3496 -14.21 70.4102z" />
-    <glyph glyph-name="pen-fancy" unicode="&#xf5ac;" 
-d="M79.1797 165.06l84.0703 33.0703l98.8799 -98.8799l-33.0703 -84.0703c-3.1748 -9.5332 -10.7061 -17.0645 -20.2393 -20.2393l-176.82 -58.9404l-4.67969 4.67969l92.8896 92.8906c2.55957 -0.660156 5.03027 -1.57031 7.7998 -1.57031c17.6699 0 32 14.3301 32 32
-s-14.3301 32 -32 32s-32 -14.3301 -32 -32c0 -2.76953 0.910156 -5.24023 1.57031 -7.7998l-92.8896 -92.8906l-4.69043 4.69043l58.9404 176.82c3.17773 9.53223 10.707 17.0615 20.2393 20.2393zM369.25 419.68c74.4805 84.2607 199.15 -39.1602 114.23 -114.229
-l-199.49 -183.11l-97.8506 97.8506z" />
-    <glyph glyph-name="pen-nib" unicode="&#xf5ad;" 
-d="M136.6 309.21l151.4 42.79l128 -128l-42.79 -151.4c-5.76172 -20.3838 -21.3594 -36.6455 -41.3496 -43.3096l-279.86 -93.29l-14.6904 14.6904l150.11 150.109c6.25977 -2.99023 13.1797 -4.7998 20.5801 -4.7998c26.5098 0 48 21.4902 48 48s-21.4902 48 -48 48
-s-48 -21.4902 -48 -48c0 -7.40039 1.80957 -14.3203 4.7998 -20.5801l-150.109 -150.11l-14.6904 14.6904l93.29 279.86c6.66406 19.9902 22.9258 35.5879 43.3096 41.3496zM497.94 373.83c18.75 -18.7598 18.75 -49.1602 0 -67.9102l-56.5508 -56.5498l-128.02 128.02
-l56.5498 56.5508c18.75 18.75 49.1602 18.75 67.9102 0z" />
-    <glyph glyph-name="pencil-ruler" unicode="&#xf5ae;" 
-d="M109.46 203.96l-100.17 100.18c-12.3896 12.3906 -12.3799 32.4707 0 44.8604l89.71 89.71c12.3896 12.3896 32.4697 12.3896 44.8604 0l33.6396 -33.6504l-61.6797 -61.6797c-3.10059 -3.08984 -3.10059 -8.11035 0 -11.21l11.21 -11.21
-c1.43359 -1.43652 3.41797 -2.32617 5.60547 -2.32617c2.18848 0 4.16992 0.889648 5.60449 2.32617l61.6797 61.6797l44.1201 -44.1201zM497.93 320.76l-46.0195 -46.0293l-113.2 113.199l46.0205 46.0107c18.7695 18.7598 49.1895 18.7598 67.9492 0l45.25 -45.25
-c18.75 -18.7607 18.7607 -49.1709 0 -67.9307zM316.08 365.29l113.2 -113.19l-296.92 -296.93l-107.45 -18.8398c-14.5 -2.5498 -27.1201 10.0703 -24.5898 24.5596l18.7598 107.44zM502.71 79.8604c12.3896 -12.3906 12.3896 -32.4707 0 -44.8604l-89.71 -89.7002
-c-12.3896 -12.3896 -32.4697 -12.3896 -44.8604 0l-100.21 100.2l134.58 134.56l44.1406 -44.1396l-61.6807 -61.6797c-3.08984 -3.08984 -3.08984 -8.11035 0 -11.21l11.21 -11.21c3.08984 -3.10059 8.11035 -3.10059 11.21 0l61.6807 61.6797z" />
-    <glyph glyph-name="plane-arrival" unicode="&#xf5af;" horiz-adv-x="640" 
-d="M624 0c8.83984 0 16 -7.16016 16 -16v-32c0 -8.83984 -7.16016 -16 -16 -16h-608c-8.83984 0 -16 7.16016 -16 16v32c0 8.83984 7.16016 16 16 16h608zM44.8096 242.34c-6.5498 5.91016 -12.3896 14.3398 -12.5791 23.25l-0.230469 101.78
-c0.19043 10.8799 10.3799 18.7002 20.7197 15.8799l39.7305 -10.8301c5.00977 -1.36035 9.08984 -5.04004 11.0195 -9.92969l27.5898 -67.8799l102.2 -27.8408l-47.9199 164.211c-0.189453 11.1191 10.1504 19.3193 20.71 16.4395l65.0898 -17.7295
-c5.70996 -1.56055 10.1504 -6.10059 11.6602 -11.9102l100.36 -191.851l97.5098 -26.5596c26.4805 -7.20996 51.5498 -20.1797 70.8301 -40c21.6396 -22.25 27.2002 -40.46 23.3701 -54.96c-3.81055 -14.5 -17.5801 -27.4404 -47.25 -35.71
-c-26.4404 -7.36035 -54.5205 -5.85059 -81 1.35938l-287.601 78.3506c-9.58496 2.61621 -18.2998 7.45605 -25.4697 13.9297z" />
-    <glyph glyph-name="plane-departure" unicode="&#xf5b0;" horiz-adv-x="640" 
-d="M624 0c8.83984 0 16 -7.16016 16 -16v-32c0 -8.83984 -7.16016 -16 -16 -16h-608c-8.83984 0 -16 7.16016 -16 16v32c0 8.83984 7.16016 16 16 16h608zM80.5498 106.73l-76.21 82.9697c-7.62012 8.95996 -4.87012 22.7803 5.57031 28.0801l40.1299 20.3701
-c2.41504 1.22461 5.18066 1.91504 8.07227 1.91504c2.875 0 5.59277 -0.682617 7.99805 -1.89551l72.3496 -36.4697l103.21 52.3799l-156.22 98.0996c-8.08008 8.87988 -5.5 23.1201 5.16992 28.5303l65.75 33.3701c2.41504 1.22559 5.18164 1.91699 8.07324 1.91699
-c3.67383 0 7.08984 -1.11621 9.92676 -3.02734l218.7 -82.0596l98.5098 49.9902c26.7402 13.5596 56.4297 21.4199 86.2803 19.4795c33.5098 -2.17969 51.04 -12.8799 58.25 -27.4502c7.22949 -14.5596 5.23926 -35.1699 -13.0703 -63.6494
-c-16.3096 -25.3701 -40.2803 -44.7402 -67.0205 -58.3105l-290.96 -147.649c-8.88574 -4.51562 -19.001 -7.10645 -29.6396 -7.12012l-130.54 -0.180664c-9.22949 -0.00976562 -18.0498 3.87012 -24.3301 10.7109z" />
-    <glyph glyph-name="prescription" unicode="&#xf5b1;" horiz-adv-x="384" 
-d="M301.26 96l78.0605 -78.0498c6.25 -6.25 6.25 -16.3799 0 -22.6299l-22.6299 -22.6299c-6.25 -6.25 -16.3809 -6.25 -22.6309 0l-78.0596 78.0596l-78.0498 -78.0703c-6.25 -6.25 -16.3799 -6.25 -22.6299 0l-22.6299 22.6299c-6.25 6.25 -6.25 16.3809 0 22.6309
-l78.0596 78.0596l-128 128h-18.75v-80c0 -8.83984 -7.16016 -16 -16 -16h-32c-8.83984 0 -16 7.16016 -16 16v256c0 8.83984 7.16016 16 16 16h144c53.0195 0 96 -42.9805 96 -96c0 -48.8896 -36.6904 -88.7998 -83.96 -94.7803l83.96 -83.96l78.0596 78.0605
-c6.25 6.25 16.3809 6.25 22.6309 0l22.6299 -22.6299c6.25 -6.25 6.25 -16.3809 0 -22.6309zM64 352v-64h96c17.6396 0 32 14.3604 32 32s-14.3604 32 -32 32h-96z" />
-    <glyph glyph-name="sad-cry" unicode="&#xf5b3;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248c0 -90 -48.2002 -168.7 -120 -212.1v180.1c0 8.7998 -7.2002 16 -16 16s-16 -7.2002 -16 -16v-196.7c-29.5 -12.3994 -62 -19.2998 -96 -19.2998s-66.5 6.90039 -96 19.2998v196.7c0 8.7998 -7.2002 16 -16 16s-16 -7.2002 -16 -16
-v-180.1c-71.7998 43.3994 -120 122 -120 212.1c0 137 111 248 248 248zM182.5 223.5l9.7002 -8.5c2.5 -2.2998 7.89941 -4.7002 13.7002 -1.59961c4.39941 2.39941 6.89941 7.39941 6.09961 12.3994c-4 25.2002 -34.2002 42.1006 -59.9004 42.1006
-c-25.6992 0 -55.8994 -16.9004 -59.8994 -42.1006c-0.799805 -5 1.7002 -10 6.09961 -12.3994c4.40039 -2.40039 9.90039 -1.7002 13.7002 1.59961l9.5 8.5c14.7998 13.2002 46.2002 13.2002 61 0zM248 32c26.5 0 48 28.7002 48 64s-21.5 64 -48 64s-48 -28.7002 -48 -64
-s21.5 -64 48 -64zM397.8 213.5c4.40039 2.40039 6.7998 7.40039 6.2002 12.2998c-4 25.2002 -34.2002 42.1006 -59.9004 42.1006c-25.6992 0 -55.8994 -16.9004 -59.8994 -42.1006c-0.799805 -5 1.7002 -10 6.09961 -12.3994
-c4.40039 -2.40039 9.90039 -1.7002 13.7002 1.59961l9.59961 8.59961c14.8008 13.2002 46.2002 13.2002 61 0l9.5 -8.5c2.5 -2.2998 7.90039 -4.69922 13.7002 -1.59961z" />
-    <glyph glyph-name="sad-tear" unicode="&#xf5b4;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM328 272c-17.7002 0 -32 -14.2998 -32 -32s14.2998 -32 32 -32s32 14.2998 32 32s-14.2998 32 -32 32zM152 32c26.5 0 48 21 48 47c0 20 -28.5 60.4004 -41.5996 77.7998
-c-3.2002 4.2998 -9.60059 4.2998 -12.8008 0c-13.0996 -17.3994 -41.5996 -57.7998 -41.5996 -77.7998c0 -26 21.5 -47 48 -47zM168 208c17.7002 0 32 14.2998 32 32s-14.2998 32 -32 32s-32 -14.2998 -32 -32s14.2998 -32 32 -32zM338.2 53.7998
-c13.2998 -16.0996 38.2998 4 24.5 20.4004c-28.4004 34.2002 -70.2998 53.7998 -114.7 53.7998c-21.2002 0 -21.2002 -32 0 -32c34.9004 0 67.7998 -15.4004 90.2002 -42.2002z" />
-    <glyph glyph-name="shuttle-van" unicode="&#xf5b6;" horiz-adv-x="640" 
-d="M628.88 237.35c7.17969 -8.62988 11.1201 -19.5 11.1201 -30.7295v-110.62c0 -17.6699 -14.3301 -32 -32 -32h-32c0 -53.0195 -42.9805 -96 -96 -96s-96 42.9805 -96 96h-128c0 -53.0195 -42.9805 -96 -96 -96s-96 42.9805 -96 96h-32c-17.6699 0 -32 14.3301 -32 32v288
-c0 17.6699 14.3301 32 32 32h425.52c14.8184 -0.00292969 28.0625 -6.70312 36.8701 -17.2695zM64 256h96v96h-96v-96zM160 16c26.5098 0 48 21.4902 48 48s-21.4902 48 -48 48s-48 -21.4902 -48 -48s21.4902 -48 48 -48zM320 256v96h-96v-96h96zM480 16
-c26.5098 0 48 21.4902 48 48s-21.4902 48 -48 48s-48 -21.4902 -48 -48s21.4902 -48 48 -48zM384 256h146.02l-80 96h-66.0195v-96z" />
-    <glyph glyph-name="signature" unicode="&#xf5b7;" horiz-adv-x="640" 
-d="M623.2 256c9.09961 0.599609 16.7998 -7.09961 16.5996 -16.2002v-32.0996c0 -8.5 -6.7002 -15.1006 -15.2002 -15.7998c-39.3994 -3.2002 -105.399 -51 -138.399 -65.8008c-34.2998 -15.3994 -66.7002 -30 -102.3 -30c-28.2002 0 -50.2002 8.5 -65.5 25.3008
-c-22.7002 24.8994 -22.8008 55.2998 -20.6006 83.7998c-56.5 -45.1006 -169 -153.601 -211.2 -195.8c-6.09961 -6.2002 -14.2998 -9.40039 -22.5996 -9.40039c-27 0 -36.5 27 -29.7002 43.9004l98.2002 245.6c8 19.9004 -14.2998 38.7998 -32.7002 27.0996l-58 -38.8994
-c-7.5 -4.7998 -17.3994 -2.60059 -22.0996 4.89941l-17.2002 27c-4.7002 7.5 -2.5 17.4004 4.90039 22.1006l54.8994 36.8994c76.5 48.7002 160.101 -26.8994 129.7 -102.8l-41.5 -103.7c105.2 101.2 144.4 124.5 169.5 126
-c54.4004 3.10059 43.7998 -68.0996 42.7002 -76.0996c-4.7002 -35.7002 -1.2998 -51.9004 21.2998 -51.9004c21.9004 0 47 11.3008 76.0996 24.4004c37.4004 16.7998 111.301 68 163.101 71.5z" />
-    <glyph glyph-name="smile-beam" unicode="&#xf5b8;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM112 224.6c-0.700195 -8.5 10.7998 -11.8994 15.0996 -4.5l9.5 17c7.7002 13.7002 19.2002 21.6006 31.5 21.6006c12.3008 0 23.8008 -7.90039 31.5 -21.6006l9.5 -17
-c4.10059 -7.39941 15.6006 -4.09961 14.9004 4.5c-3.2998 42.1006 -32.2002 71.4004 -56 71.4004s-52.7002 -29.2998 -56 -71.4004zM362.8 101.8c13.5 16.2002 -11 36.7002 -24.5996 20.5c-22.4004 -26.7998 -55.2002 -42.2002 -90.2002 -42.2002
-s-67.7998 15.3008 -90.2002 42.2002c-13.5996 16.2002 -38.0996 -4.2002 -24.5996 -20.5c28.5 -34.2002 70.2998 -53.7998 114.8 -53.7998s86.2998 19.5996 114.8 53.7998zM369 220.1c4.09961 -7.39941 15.7002 -4.09961 15.0996 4.5
-c-3.2998 42.1006 -32.1992 71.4004 -56 71.4004c-23.7998 0 -52.6992 -29.2998 -56 -71.4004c-0.699219 -8.5 10.8008 -11.7998 14.9004 -4.5l9.5 17c7.7002 13.7002 19.2002 21.6006 31.5 21.6006s23.7998 -7.90039 31.5 -21.6006z" />
-    <glyph glyph-name="solar-panel" unicode="&#xf5ba;" horiz-adv-x="640" 
-d="M431.98 -0.00976562c8.84961 0.00976562 16.0293 -7.16992 16.0195 -16.0205l-0.0400391 -31.7295c-0.00976562 -8.82031 -7.16016 -15.9707 -15.9795 -15.9805l-223.961 -0.259766c-8.84961 -0.00976562 -16.0293 7.16992 -16.0195 16.0195l0.0498047 31.7305
-c0.00976562 8.83008 7.16016 15.9805 15.9805 15.9902l47.9795 0.0498047v32.21h128v-32.0596zM585.2 421.26c58.1094 -342.42 54.7803 -321.39 54.7598 -325.47c-0.0800781 -17.2305 -14.3604 -31.79 -32.5898 -31.79h-574.74c-18.3096 0 -32.6299 14.6797 -32.5996 32
-c0.00976562 3.91992 -3.35059 -17.1602 54.7598 325.26c2.62012 15.4307 16.21 26.7402 32.1396 26.7402h466.13c15.9307 0 29.5205 -11.3096 32.1406 -26.7402zM259.83 384l-9.77051 -96h139.87l-9.76953 96h-120.33zM184.66 128l11.4102 112h-105.971l-19.0098 -112
-h113.57zM200.95 288l9.76953 96h-96.1895l-16.29 -96h102.71zM233.77 128h172.45l-11.3994 112h-149.65zM429.27 384l9.77051 -96h102.71l-16.29 96h-96.1904zM455.33 128h113.58l-19.0098 112h-105.971z" />
-    <glyph glyph-name="spa" unicode="&#xf5bb;" horiz-adv-x="576" 
-d="M568.25 256c4.41016 0.0195312 7.79004 -3.40039 7.75 -7.82031c-0.230469 -27.9199 -7.12988 -126.13 -88.7695 -199.3c-84.04 -81.8301 -167.23 -80.8799 -199.23 -80.8799s-115.21 -0.94043 -199.23 80.8799c-81.6299 73.1602 -88.5391 171.38 -88.7695 199.3
-c-0.0400391 4.41992 3.33984 7.83984 7.75 7.82031c29.04 -0.129883 135.01 -6.16016 213.84 -83c33.1201 -29.6299 53.3604 -63.2998 66.4102 -94.8604c13.0498 31.5605 33.29 65.2305 66.4102 94.8604c78.8301 76.8398 184.8 82.8701 213.84 83zM287.98 145.4
-c-12.9727 19.0527 -27.9248 36.124 -45.04 51.46c-18.7207 18.25 -38.8506 32.6895 -59.2207 44.3896c16.4707 70.4404 51.75 132.93 96.7402 172.07c4.12012 3.58008 11.0303 3.58008 15.1396 0c45.0107 -39.1699 80.29 -101.721 96.7305 -172.221
-c-20.6797 -11.8799 -41.1699 -26.5693 -60.2598 -45.1797c-16.4902 -14.7402 -31.2705 -31.6699 -44.0898 -50.5195z" />
-    <glyph glyph-name="splotch" unicode="&#xf5bc;" 
-d="M472.29 252.11c48.54 -16.6201 53.8301 -73.8301 8.9502 -96.79l-62 -31.7402c-17.8301 -9.12988 -29.2803 -25.2002 -30.6299 -42.9902l-4.7002 -61.8594c-3.41016 -44.79 -65.1299 -66.7803 -104.45 -37.2207l-54.3203 40.8301
-c-15.6201 11.7305 -36.96 16.1201 -57.0693 11.7305l-69.96 -15.2803c-50.6504 -11.0596 -94.0801 32.5596 -73.4902 73.8096l28.4297 56.9805c8.18066 16.3799 6.44043 35.1699 -4.63965 50.2402l-38.54 52.4199c-27.9004 37.9502 6.97949 86.8994 59.0303 82.8301
-l71.8799 -5.62012c20.6602 -1.62012 40.9395 5.59961 54.2002 19.3096l46.1396 47.6699c33.4102 34.5107 98.3994 21.1504 109.979 -22.6201l15.9902 -60.4492c4.60059 -17.3799 18.8604 -31.7002 38.1406 -38.3008z" />
-    <glyph glyph-name="spray-can" unicode="&#xf5bd;" 
-d="M224 416v-96h-128v96c0 17.6699 14.3301 32 32 32h64c17.6699 0 32 -14.3301 32 -32zM480 320c17.6699 0 32 -14.3301 32 -32s-14.3301 -32 -32 -32s-32 14.3301 -32 32s14.3301 32 32 32zM224 288c53.0195 0 96 -42.9805 96 -96v-224c0 -17.6699 -14.3301 -32 -32 -32
-h-256c-17.6699 0 -32 14.3301 -32 32v224c0 53.0195 42.9805 96 96 96h128zM160 32c44.1797 0 80 35.8203 80 80s-35.8203 80 -80 80s-80 -35.8203 -80 -80s35.8203 -80 80 -80zM480 352c-17.6699 0 -32 14.3301 -32 32s14.3301 32 32 32s32 -14.3301 32 -32
-s-14.3301 -32 -32 -32zM384 320c17.6699 0 32 -14.3301 32 -32s-14.3301 -32 -32 -32s-32 14.3301 -32 32s14.3301 32 32 32zM288 416c17.6699 0 32 -14.3301 32 -32s-14.3301 -32 -32 -32s-32 14.3301 -32 32s14.3301 32 32 32zM384 416c17.6699 0 32 -14.3301 32 -32
-s-14.3301 -32 -32 -32s-32 14.3301 -32 32s14.3301 32 32 32zM480 224c17.6699 0 32 -14.3301 32 -32s-14.3301 -32 -32 -32s-32 14.3301 -32 32s14.3301 32 32 32z" />
-    <glyph glyph-name="stamp" unicode="&#xf5bf;" 
-d="M32 -64v64h448v-64h-448zM416 192c53.0195 0 96 -42.9805 96 -96v-32c0 -17.6699 -14.3301 -32 -32 -32h-448c-17.6699 0 -32 14.3301 -32 32v32c0 53.0195 42.9805 96 96 96h66.5596c16.2607 0 29.4404 13.1797 29.4404 29.4404v0.0693359
-c0 31.79 -9.98047 62.0605 -23.3096 90.9102c-5.57031 12.04 -8.69043 25.4199 -8.69043 39.5801c0 58.6699 52.6201 105.04 113.25 94.4902c38.79 -6.75 70.4902 -38.6699 77.2598 -77.4502c3.85059 -22.0303 0.0605469 -42.8096 -9.0498 -60.4199
-c-12.5801 -24.3105 -21.46 -50.3506 -21.46 -77.7197v-9.45996c0 -16.2607 13.1797 -29.4404 29.4404 -29.4404h66.5596z" />
-    <glyph glyph-name="star-half-alt" unicode="&#xf5c0;" horiz-adv-x="536" 
-d="M508.55 276.49c26.25 -3.7998 36.7705 -36.1006 17.7305 -54.6006l-105.91 -102.979l25.0303 -145.49c3.55957 -20.79 -13.0605 -37.4004 -31.6602 -37.4004c-4.91016 0 -9.9707 1.16016 -14.8301 3.71094l-130.94 68.6992l-130.95 -68.6797
-c-4.86914 -2.58008 -9.93945 -3.75 -14.8691 -3.75c-18.5801 0 -35.1699 16.6699 -31.6104 37.4502l25.0596 145.479l-105.89 103c-19.0303 18.5 -8.50977 50.79 17.7402 54.5898l146.38 21.29l65.4297 132.381c5.90039 11.9092 17.29 17.8096 28.6904 17.8096
-c11.4697 0 22.9395 -5.98047 28.8193 -17.8096l65.4102 -132.391zM386.81 153.29l82.6504 80.3799l-114.229 16.6299l-25.0107 3.64062l-11.1797 22.6299l-51.0303 103.29l-0.0292969 -317.19l22.3799 -11.7402l102.13 -53.5898l-19.5205 113.45l-4.2793 24.8799z" />
-    <glyph glyph-name="suitcase-rolling" unicode="&#xf5c1;" horiz-adv-x="384" 
-d="M336 288c26.5098 0 48 -21.4902 48 -48v-224c0 -26.5098 -21.4902 -48 -48 -48h-16v-16c0 -8.83984 -7.16016 -16 -16 -16h-32c-8.83984 0 -16 7.16016 -16 16v16h-128v-16c0 -8.83984 -7.16016 -16 -16 -16h-32c-8.83984 0 -16 7.16016 -16 16v16h-16
-c-26.5098 0 -48 21.4902 -48 48v224c0 26.5098 21.4902 48 48 48h288zM320 72v16c0 4.41992 -3.58008 8 -8 8h-240c-4.41992 0 -8 -3.58008 -8 -8v-16c0 -4.41992 3.58008 -8 8 -8h240c4.41992 0 8 3.58008 8 8zM320 168v16c0 4.41992 -3.58008 8 -8 8h-240
-c-4.41992 0 -8 -3.58008 -8 -8v-16c0 -4.41992 3.58008 -8 8 -8h240c4.41992 0 8 3.58008 8 8zM144 400v-80h-48v80c0 26.5098 21.4902 48 48 48h96c26.5098 0 48 -21.4902 48 -48v-80h-48v80h-96z" />
-    <glyph glyph-name="surprise" unicode="&#xf5c2;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM136 240c0 -17.7002 14.2998 -32 32 -32s32 14.2998 32 32s-14.2998 32 -32 32s-32 -14.2998 -32 -32zM248 32c35.2998 0 64 28.7002 64 64s-28.7002 64 -64 64
-s-64 -28.7002 -64 -64s28.7002 -64 64 -64zM328 208c17.7002 0 32 14.2998 32 32s-14.2998 32 -32 32s-32 -14.2998 -32 -32s14.2998 -32 32 -32z" />
-    <glyph glyph-name="swatchbook" unicode="&#xf5c3;" 
-d="M434.66 280.29c5.77344 -5.79004 9.34473 -13.7861 9.34473 -22.5996c0 -8.81445 -3.57129 -16.8008 -9.34473 -22.5908l-210.66 -211.1v271.12l75.4297 75.5195l0.0703125 0.0703125v0c5.75781 5.73633 13.707 9.28516 22.4688 9.28516
-c8.79883 0 16.7676 -3.57715 22.5312 -9.35547l90.1602 -90.3496v0zM480 128c17.6611 0 32 -14.3389 32 -32v-128c0 -17.6611 -14.3389 -32 -32 -32h-300c2.17969 1.91016 4.62012 3.41992 6.67969 5.49023l186.41 186.51h106.91zM192 416v-384
-c0 -52.9834 -43.0166 -96 -96 -96s-96 43.0166 -96 96v384c0 17.6611 14.3389 32 32 32h128c17.6611 0 32 -14.3389 32 -32zM96 8c13.2461 0 24 10.7539 24 24s-10.7539 24 -24 24s-24 -10.7539 -24 -24s10.7539 -24 24 -24zM128 192v64h-64v-64h64zM128 320v64h-64v-64h64z
-" />
-    <glyph glyph-name="swimmer" unicode="&#xf5c4;" horiz-adv-x="640" 
-d="M189.61 137.42c-5.04004 4.65039 -10.3906 8.34961 -15.8604 11.5801l68.6299 98.04c7.36035 10.5 16.3398 19.5498 26.7197 26.9404l80.0205 57.1699c25.54 18.2598 57.8301 24.96 88.5596 18.3799l100.351 -21.5303c25.9297 -5.55957 42.4297 -31.0801 36.8799 -57
-c-5.56055 -25.9102 -31.0898 -42.4102 -57 -36.8799l-100.351 21.5303c-4.33984 0.90918 -8.97949 -0.0302734 -12.6191 -2.61035l-18 -12.8604l112.84 -80.5996c-17.5107 -1.04004 -34.5303 -8.4502 -49.3906 -22.1602
-c-3.5293 -3.25977 -15.2695 -9.41992 -34.3896 -9.41992s-30.8496 6.16016 -34.3896 9.41992c-16.0107 14.7705 -34.5 22.5801 -53.46 22.5801h-16.3008c-18.96 0 -37.4395 -7.80957 -53.46 -22.5801c-3.5293 -3.25977 -15.2695 -9.41992 -34.3896 -9.41992
-s-30.8496 6.16016 -34.3896 9.41992zM624 96c8.83984 0 16 -7.16016 16 -16v-32c0 -8.83984 -7.16016 -16 -16 -16h-16c-38.6201 0 -72.7197 12.1797 -96 31.8398c-23.2803 -19.6494 -57.3799 -31.8398 -96 -31.8398s-72.7197 12.1797 -96 31.8398
-c-23.2803 -19.6494 -57.3799 -31.8398 -96 -31.8398s-72.7197 12.1797 -96 31.8398c-23.2803 -19.6494 -57.3799 -31.8398 -96 -31.8398h-16c-8.83984 0 -16 7.16016 -16 16v32c0 8.83984 7.16016 16 16 16h16c26.04 0 45.7998 8.41992 56.0703 17.9004
-c8.89941 8.20996 19.6602 14.0996 31.7695 14.0996h16.2998c12.1104 0 22.8701 -5.88965 31.7705 -14.0996c10.29 -9.48047 30.0498 -17.9004 56.0898 -17.9004s45.7998 8.41992 56.0703 17.9004c8.89941 8.20996 19.6602 14.0996 31.7695 14.0996h16.2998
-c12.1104 0 22.8701 -5.88965 31.7705 -14.0996c10.29 -9.48047 30.0498 -17.9004 56.0898 -17.9004s45.7998 8.41992 56.0703 17.9004c8.89941 8.20996 19.6602 14.0996 31.7695 14.0996h16.2998c12.1104 0 22.8701 -5.88965 31.7705 -14.0996
-c10.29 -9.48047 30.0498 -17.9004 56.0898 -17.9004h16zM112 192c-44.1797 0 -80 35.8203 -80 80s35.8203 80 80 80s80 -35.8203 80 -80s-35.8203 -80 -80 -80z" />
-    <glyph glyph-name="swimming-pool" unicode="&#xf5c5;" horiz-adv-x="640" 
-d="M624 32c8.83984 0 16 -7.16016 16 -16v-32c0 -8.83984 -7.16016 -16 -16 -16h-16c-38.6201 0 -72.7197 12.1797 -96 31.8398c-23.2803 -19.6494 -57.3799 -31.8398 -96 -31.8398s-72.7197 12.1797 -96 31.8398c-23.2803 -19.6494 -57.3799 -31.8398 -96 -31.8398
-s-72.7197 12.1797 -96 31.8398c-23.2803 -19.6494 -57.3799 -31.8398 -96 -31.8398h-16c-8.83984 0 -16 7.16016 -16 16v32c0 8.83984 7.16016 16 16 16h16c26.04 0 45.7998 8.41992 56.0703 17.9004c8.89941 8.20996 19.6602 14.0996 31.7695 14.0996h16.2998
-c12.1104 0 22.8701 -5.88965 31.7705 -14.0996c10.29 -9.48047 30.0498 -17.9004 56.0898 -17.9004s45.7998 8.41992 56.0703 17.9004c8.89941 8.20996 19.6602 14.0996 31.7695 14.0996h16.2998c12.1104 0 22.8701 -5.88965 31.7705 -14.0996
-c10.29 -9.48047 30.0498 -17.9004 56.0898 -17.9004s45.7998 8.41992 56.0703 17.9004c8.89941 8.20996 19.6602 14.0996 31.7695 14.0996h16.2998c12.1104 0 22.8701 -5.88965 31.7705 -14.0996c10.29 -9.48047 30.0498 -17.9004 56.0898 -17.9004h16zM224 64
-c-19.1201 0 -30.8604 6.16016 -34.3896 9.42969c-9.16992 8.4502 -19.2002 14.3398 -29.6104 18.0703v228.5c0 52.9404 43.0596 96 96 96s96 -43.0596 96 -96v-16c0 -8.83984 -7.16016 -16 -16 -16h-32c-8.83984 0 -16 7.16016 -16 16v16c0 17.6396 -14.3604 32 -32 32
-s-32 -14.3604 -32 -32v-96h192v96c0 52.9404 43.0596 96 96 96s96 -43.0596 96 -96v-16c0 -8.83984 -7.16016 -16 -16 -16h-32c-8.83984 0 -16 7.16016 -16 16v16c0 17.6396 -14.3604 32 -32 32s-32 -14.3604 -32 -32v-228.51
-c-10.4102 -3.73047 -20.4404 -9.61035 -29.6104 -18.0703c-3.5293 -3.25977 -15.2695 -9.41992 -34.3896 -9.41992v96h-192v-96z" />
-    <glyph glyph-name="tint-slash" unicode="&#xf5c7;" horiz-adv-x="640" 
-d="M633.82 -10.0996c6.97949 -5.43066 8.22949 -15.4805 2.81934 -22.4502l-19.6396 -25.2705c-5.42969 -6.97949 -15.4805 -8.23926 -22.46 -2.80957l-588.36 454.729c-6.97949 5.43066 -8.22949 15.4805 -2.80957 22.4502l19.6396 25.2705
-c5.41992 6.97949 15.4805 8.22949 22.46 2.80957l186.82 -144.399c21.6201 33.7197 42.9697 73.3398 58.4902 125.68c9 30.1201 50.5 28.7803 58.4395 0c46.9902 -158.48 146.78 -200.061 146.78 -311.82c0 -5.70996 -0.509766 -11.2998 -1.03027 -16.8701zM144 114.09
-c0 29.7803 7.30957 54.6299 18.7197 78.1299l273.681 -211.52c-31.0303 -27.7402 -71.6904 -44.7002 -116.4 -44.7002c-97.2803 0 -176 79.6504 -176 178.09z" />
-    <glyph glyph-name="tired" unicode="&#xf5c8;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM281.8 250.3c-7.7002 -4.7002 -7.7002 -15.8994 0 -20.5996l80 -48c11.5 -6.7998 24.1006 7.59961 15.4004 18l-33.6006 40.2998l33.6006 40.2998
-c8.59961 10.2998 -3.7998 24.9004 -15.4004 18zM118.8 280.3l33.6006 -40.2998l-33.6006 -40.2998c-8.59961 -10.4004 3.90039 -24.7998 15.4004 -18l80 48c7.7998 4.7002 7.7998 15.8994 0 20.5996l-80 48c-11.6006 6.90039 -24 -7.7002 -15.4004 -18zM248 160
-c-51.9004 0 -115.3 -43.7998 -123.2 -106.7c-1.7002 -13.3994 7.90039 -24.5996 17.7002 -20.3994c25.9004 11.0996 64.4004 17.3994 105.5 17.3994s79.5996 -6.2998 105.5 -17.3994c9.7002 -4.2002 19.4004 6.7998 17.7002 20.3994
-c-7.90039 62.9004 -71.2998 106.7 -123.2 106.7z" />
-    <glyph glyph-name="tooth" unicode="&#xf5c9;" horiz-adv-x="448" 
-d="M443.98 351.75c10.1299 -41.6299 0.419922 -80.8203 -21.5303 -110.43c-23.3604 -31.5703 -32.6807 -68.6504 -36.29 -107.351c-4.41016 -47.1602 -10.3301 -94.1699 -20.9404 -140.319l-7.7998 -33.9502c-3.18945 -13.8701 -15.4902 -23.7002 -29.6699 -23.7002
-c-13.9697 0 -26.1504 9.5498 -29.54 23.1602l-34.4697 138.42c-4.56055 18.3096 -20.96 31.1602 -39.7598 31.1602c-18.8008 0 -35.2002 -12.8398 -39.7607 -31.1602l-34.4697 -138.42c-3.38965 -13.6104 -15.5703 -23.1602 -29.54 -23.1602
-c-14.1797 0 -26.4795 9.83008 -29.6699 23.7002l-7.7998 33.9502c-10.6104 46.1592 -16.54 93.1592 -20.9404 140.319c-3.60938 38.6904 -12.9297 75.7803 -36.29 107.351c-21.9199 29.6201 -31.6299 68.8096 -21.5 110.43c11.0098 45.2197 47.1104 82.0498 92.0098 93.7197
-c23.4307 6.08984 46.1104 0.540039 66.8105 -10.3096l100.51 -64.6201c7.83984 -5.05957 17.6504 -2.15039 22.1104 4.7998c4.78027 7.44043 2.62012 17.3398 -4.7998 22.1104l-28.3203 18.21c3.54004 1.75 7.25 3.08984 10.5 5.47949
-c26.1396 19.2305 56.9502 32.6904 89.1396 24.3301c44.9004 -11.6602 81 -48.5 92.0107 -93.7197z" />
-    <glyph glyph-name="umbrella-beach" unicode="&#xf5ca;" horiz-adv-x="640" 
-d="M115.38 311.1c-10.0801 3.66992 -14.1104 16.3203 -7.41992 24.7207c59.75 74.8398 152.65 116.689 248.53 111.8c-52.79 -29.4102 -103.811 -92.1602 -139 -173.7zM247.63 262.94c44.4902 101.979 114.74 171.14 172.76 171.149c7.95996 0 15.6904 -1.2998 23.0908 -4
-c61.3291 -22.3203 78.3896 -132.6 42.6299 -253.979zM521.48 387.5c76.5293 -57.9199 120.76 -149.67 118.439 -245.36c-0.259766 -10.7393 -11.4795 -17.8398 -21.5703 -14.1699l-102.619 37.3604c17.5293 58.75 24.6895 117.09 18.9492 166.979
-c-2.37012 20.5908 -6.97949 38.8906 -13.1992 55.1904zM560 0.0195312c8.83984 0 16 -7.15918 16 -16v-32.0098c0 -8.83984 -7.16016 -16.0098 -16 -16.0098h-544c-8.83984 0 -16 7.16992 -16 16.0098v32.0098c0 8.85059 7.16016 16.0107 16 16.0107h236.96l72.9004 200.37
-l60.1396 -21.9004l-64.9404 -178.48h238.94z" />
-    <glyph glyph-name="vector-square" unicode="&#xf5cb;" 
-d="M512 320c0 -17.6699 -14.3301 -32 -32 -32v-192c17.6699 0 32 -14.3301 32 -32v-96c0 -17.6699 -14.3301 -32 -32 -32h-96c-17.6699 0 -32 14.3301 -32 32h-192c0 -17.6699 -14.3301 -32 -32 -32h-96c-17.6699 0 -32 14.3301 -32 32v96c0 17.6699 14.3301 32 32 32v192
-c-17.6699 0 -32 14.3301 -32 32v96c0 17.6699 14.3301 32 32 32h96c17.6699 0 32 -14.3301 32 -32h192c0 17.6699 14.3301 32 32 32h96c17.6699 0 32 -14.3301 32 -32v-96zM416 384v-32h32v32h-32zM64 384v-32h32v32h-32zM96 0v32h-32v-32h32zM448 0v32h-32v-32h32zM416 96
-v192h-32c-17.6699 0 -32 14.3301 -32 32v32h-192v-32c0 -17.6699 -14.3301 -32 -32 -32h-32v-192h32c17.6699 0 32 -14.3301 32 -32v-32h192v32c0 17.6699 14.3301 32 32 32h32z" />
-    <glyph glyph-name="weight-hanging" unicode="&#xf5cd;" 
-d="M510.28 2.13965c8.33008 -33.3096 -14.6602 -66.1396 -46.2998 -66.1396h-415.95c-31.6504 0 -54.6406 32.8301 -46.3105 66.1396l73.0498 292.13c3.79004 15.1807 16.4404 25.7207 30.8701 25.7207h60.25c-3.58008 10.0498 -5.87988 20.7197 -5.87988 32
-c0 53.0195 42.9805 96 96 96c53.0205 0 96 -42.9805 96 -96c0 -11.2803 -2.30957 -21.9502 -5.87988 -32h60.25c14.4297 0 27.0703 -10.5303 30.8701 -25.7207zM256 320c17.6396 0 32 14.3604 32 32s-14.3604 32 -32 32s-32 -14.3604 -32 -32s14.3604 -32 32 -32z" />
-    <glyph glyph-name="wine-glass-alt" unicode="&#xf5ce;" horiz-adv-x="288" 
-d="M216 -16c22.0898 0 40 -17.9102 40 -40c0 -4.41992 -3.58008 -8 -8 -8h-208c-4.41992 0 -8 3.58008 -8 8c0 22.0898 17.9102 40 40 40h40v117.18c-68.4697 15.8906 -118.05 79.9102 -111.4 154.16l15.96 178.11c0.730469 8.24023 7.55078 14.5498 15.7002 14.5498h223.48
-c8.16016 0 14.9697 -6.30957 15.71 -14.5498l15.9502 -178.101c6.64941 -74.25 -42.9307 -138.27 -111.4 -154.159v-117.19h40zM61.75 400l-7.16992 -80h178.84l-7.16992 80h-164.5z" />
-    <glyph glyph-name="air-freshener" unicode="&#xf5d0;" horiz-adv-x="384" 
-d="M378.94 126.59c11.75 -12.1494 1.71973 -30.5898 -16.6406 -30.5898h-138.3v-32h112c8.83984 0 16 -7.16016 16 -16v-96c0 -8.83984 -7.16016 -16 -16 -16h-288c-8.83984 0 -16 7.16016 -16 16v96c0 8.83984 7.16016 16 16 16h112v32h-138.3
-c-18.3604 0 -28.3906 18.4404 -16.6406 30.5898l94.2402 97.4102h-49.2197c-15.2998 0 -23.6602 16.5996 -13.8604 27.5303l113.33 126.51c-3.42969 6.61035 -5.5498 14 -5.5498 21.96c0 26.5098 21.4902 48 48 48s48 -21.4902 48 -48
-c0 -7.95996 -2.12012 -15.3496 -5.5498 -21.96l113.33 -126.51c9.7998 -10.9307 1.43945 -27.5303 -13.8604 -27.5303h-49.2197zM192 416.02c-8.84961 0 -16.0195 -7.16992 -16.0195 -16.0195c0 -8.83984 7.16992 -16.0195 16.0195 -16.0195
-s16.0195 7.17969 16.0195 16.0195c0 8.84961 -7.16992 16.0195 -16.0195 16.0195zM304 16h-224v-32h224v32z" />
-    <glyph glyph-name="apple-alt" unicode="&#xf5d1;" horiz-adv-x="448" 
-d="M350.85 319c25.9707 -4.66992 47.2705 -18.6699 63.9199 -42c14.6504 -20.6699 24.6406 -46.6699 29.9609 -78c4.66992 -28.6699 4.31934 -57.3301 -1 -86c-7.99023 -47.3301 -23.9707 -87 -47.9404 -119c-28.6396 -38.6699 -64.5898 -58 -107.87 -58
-c-10.6602 0 -22.2998 3.33008 -34.96 10c-8.66016 5.33008 -18.3096 8 -28.9697 8s-20.2998 -2.66992 -28.9707 -8c-12.6592 -6.66992 -24.2998 -10 -34.96 -10c-43.2793 0 -79.2295 19.3301 -107.869 58c-23.9707 32 -39.9502 71.6699 -47.9404 119
-c-5.32031 28.6699 -5.66992 57.3301 -1 86c5.32031 31.3301 15.3096 57.3301 29.96 78c16.6504 23.3301 37.9502 37.3301 63.9199 42c15.9805 2.66992 37.9502 0.330078 65.9199 -7c23.9697 -6.66992 44.2803 -14.6699 60.9307 -24
-c16.6494 9.33008 36.96 17.3301 60.9297 24c27.9795 7.33008 49.96 9.66992 65.9395 7zM295.91 360c-9.32031 -8.66992 -21.6504 -15 -36.96 -19c-10.6602 -3.33008 -22.2998 -5 -34.96 -5l-14.9805 1c-1.33008 9.33008 -1.33008 20 0 32
-c2.66992 24 10.3203 42.3301 22.9707 55c9.31934 8.66992 21.6494 15 36.96 19c10.6592 3.33008 22.2998 5 34.96 5l14.9795 -1l1 -15c0 -12.6699 -1.66992 -24.3301 -4.99023 -35c-3.98926 -15.3301 -10.3096 -27.6699 -18.9795 -37z" />
-    <glyph glyph-name="atom" unicode="&#xf5d2;" horiz-adv-x="448" 
-d="M223.999 224c17.6484 -0.03125 31.9727 -14.3525 32.0078 -32c0 -17.6611 -14.3389 -32 -32 -32s-32 14.3389 -32 32c0 17.6582 14.335 31.9961 31.9922 32zM438.171 320c16.3789 -29.375 15.0039 -73.125 -25.1309 -128c40.1348 -54.875 41.5098 -98.625 25.1309 -128
-c-29.1309 -52.375 -101.646 -43.625 -116.275 -41.875c-21.5039 -51.25 -54.2617 -86.125 -97.8965 -86.125s-76.3906 34.875 -97.8965 86.125c-14.627 -1.75 -87.1426 -10.5 -116.273 41.875c-16.3789 29.375 -15.0039 73.125 25.1289 128
-c-40.1328 54.875 -41.5078 98.625 -25.1289 128c10.877 19.5 40.5078 50.625 116.273 41.875c21.5059 51.25 54.2617 86.125 97.8965 86.125s76.3926 -34.875 97.8965 -86.125c75.7656 8.875 105.398 -22.375 116.275 -41.875zM63.3389 96
-c3.75195 -6.625 19.0059 -11.875 43.6348 -11c-2.75 13 -5.125 26.375 -6.75 40.125c-7.75195 6.25 -15.0039 12.625 -21.8809 19.125c-15.1289 -23.5 -19.0039 -41 -15.0039 -48.25zM100.224 258.875c1.625 13.5 3.875 26.875 6.75 40.25c-1.875 0 -4 0.375 -5.75 0.375
-c-21.5059 0 -34.5078 -5.375 -37.8848 -11.5c-4 -7.25 -0.125 -24.75 15.0039 -48.25c6.87695 6.5 14.1289 12.875 21.8809 19.125zM223.999 384c-9.50195 0 -22.2539 -13.5 -33.8828 -37.25c11.2539 -3.75 22.5059 -8 33.8828 -12.875
-c11.3789 4.875 22.6309 9.125 33.8828 12.875c-11.627 23.75 -24.3809 37.25 -33.8828 37.25zM223.999 0c9.50195 0 22.2559 13.5 33.8828 37.25c-11.252 3.75 -22.5039 8 -33.8828 12.875c-11.377 -4.875 -22.6289 -9.125 -33.8828 -12.875
-c11.6289 -23.75 24.3809 -37.25 33.8828 -37.25zM223.999 112c44.1533 0 80 35.8467 80 80s-35.8467 80 -80 80s-80 -35.8467 -80 -80s35.8467 -80 80 -80zM384.659 96c4 7.25 0.125 24.75 -15.0039 48.25c-6.875 -6.5 -14.127 -12.875 -21.8789 -19.125
-c-1.625 -13.75 -4 -27.125 -6.75195 -40.125c24.6309 -0.875 40.0098 4.375 43.6348 11zM369.655 239.75c15.1289 23.5 19.0039 41 15.0039 48.25c-3.375 6.125 -16.3789 11.5 -37.8828 11.5c-1.75 0 -3.87695 -0.375 -5.75195 -0.375
-c2.87695 -13.375 5.12695 -26.75 6.75195 -40.25c7.75195 -6.25 15.0039 -12.625 21.8789 -19.125z" />
-    <glyph glyph-name="bone" unicode="&#xf5d7;" horiz-adv-x="640" 
-d="M598.88 203.44c-9.42969 -4.70996 -9.42969 -18.1709 -0.00976562 -22.8809c25.2002 -12.5996 41.1201 -38.3496 41.1201 -66.5293v-7.64062c0 -41.0898 -33.2998 -74.3896 -74.3799 -74.3896c-32.0107 0 -60.4404 20.4902 -70.5703 50.8604
-c-6.53027 19.5996 -10.7305 45.1396 -38.1104 45.1396h-273.87c-26.5098 0 -30.4297 -22.1104 -38.1094 -45.1396c-10.1299 -30.3701 -38.5498 -50.8604 -70.5703 -50.8604c-41.0801 0 -74.3799 33.2998 -74.3799 74.3896v7.64062
-c0 28.1699 15.9199 53.9297 41.1201 66.5293c9.42969 4.70996 9.42969 18.1709 0 22.8809c-25.2002 12.5996 -41.1201 38.3594 -41.1201 66.5293v7.64062c0 41.0898 33.2998 74.3896 74.3896 74.3896c32.0107 0 60.4404 -20.4902 70.5605 -50.8604
-c6.53027 -19.5996 10.7295 -45.1396 38.1094 -45.1396h273.87c26.5107 0 30.4307 22.1104 38.1104 45.1396c10.1299 30.3701 38.5498 50.8604 70.5703 50.8604c41.0898 0 74.3896 -33.2998 74.3896 -74.3896v-7.64062c0 -28.1699 -15.9199 -53.9297 -41.1201 -66.5293z" />
-    <glyph glyph-name="book-reader" unicode="&#xf5da;" 
-d="M352 352c0 -53.0195 -42.9805 -96 -96 -96s-96 42.9805 -96 96s42.9805 96 96 96s96 -42.9805 96 -96zM233.59 206.9c4.10059 -2.51074 6.41016 -6.79004 6.41992 -11.46v-245.99c0 -10.1602 -11.1094 -16.5898 -20.4795 -11.8701
-c-61.0498 30.75 -149.38 39.1396 -193.04 41.4297c-14.9004 0.770508 -26.4902 12.7207 -26.4902 27.0498v222.801c0 15.6299 13.5498 28.0098 29.7998 27.0898c48.3604 -2.75 144.46 -12.7305 203.79 -49.0498zM482.2 255.95
-c16.25 0.919922 29.7998 -11.46 29.8096 -27.0898v-222.82c0 -14.3301 -11.5898 -26.2803 -26.4902 -27.0596c-43.6494 -2.29004 -131.93 -10.6807 -192.97 -41.4004c-9.39941 -4.73047 -20.54 1.70996 -20.54 11.9004v245.789c0 4.6709 2.31055 9.12012 6.41016 11.6309
-c59.3203 36.3193 155.43 46.3096 203.78 49.0498z" />
-    <glyph glyph-name="brain" unicode="&#xf5dc;" horiz-adv-x="576" 
-d="M208 448c35.2998 0 64 -28.7002 64 -64v-376c0 -39.7998 -32.2002 -72 -72 -72c-31.7998 0 -58.4004 20.7002 -68 49.2002c-3.90039 -0.700195 -7.90039 -1.2002 -12 -1.2002c-39.7998 0 -72 32.2002 -72 72c0 4.7998 0.5 9.5 1.40039 14.0996
-c-29 12 -49.4004 40.6006 -49.4004 73.9004c0 29.7002 16.2998 55.2998 40.2998 69.0996c-5.09961 10.6006 -8.2998 22.3008 -8.2998 34.9004c0 33.4004 20.5 62 49.7002 74c-1.10059 4.5 -1.7002 9.2002 -1.7002 14c0 35.2998 28.7002 64 64 64
-c0.799805 0 1.40039 -0.200195 2.2002 -0.200195c7.09961 27.7002 31.8994 48.2002 61.7998 48.2002zM576 144c0 -33.2998 -20.4004 -61.9004 -49.4004 -73.9004c0.900391 -4.59961 1.40039 -9.2998 1.40039 -14.0996c0 -39.7998 -32.2002 -72 -72 -72
-c-4.09961 0 -8.09961 0.5 -12 1.2002c-9.59961 -28.5 -36.2002 -49.2002 -68 -49.2002c-39.7998 0 -72 32.2002 -72 72v376c0 35.4004 28.7002 64 64 64c29.9004 0 54.7002 -20.5 61.7998 -48.2002c0.700195 0 1.40039 0.200195 2.2002 0.200195
-c35.2998 0 64 -28.7002 64 -64c0 -4.7998 -0.700195 -9.5 -1.7002 -14c29.2002 -12 49.7002 -40.5996 49.7002 -74c0 -12.5996 -3.09961 -24.2998 -8.2998 -34.9004c24 -13.7998 40.2998 -39.3994 40.2998 -69.0996z" />
-    <glyph glyph-name="car-alt" unicode="&#xf5de;" horiz-adv-x="480" 
-d="M438.66 235.67c24.1201 -9.16992 41.3398 -32.3301 41.3398 -59.6699v-48c0 -16.1299 -6.16016 -30.6797 -16 -41.9297v-54.0703c0 -17.6699 -14.3301 -32 -32 -32h-32c-17.6699 0 -32 14.3301 -32 32v32h-256v-32c0 -17.6699 -14.3301 -32 -32 -32h-32
-c-17.6699 0 -32 14.3301 -32 32v54.0703c-9.83984 11.2598 -16 25.8096 -16 41.9297v48c0 27.3398 17.2197 50.5 41.3398 59.6699l11.2402 28.0996l19.9297 49.8301c17.1104 42.7705 57.9307 70.4004 103.99 70.4004h127c46.0703 0 86.8799 -27.6299 103.99 -70.4004
-l19.9297 -49.8301zM131.93 289.83l-19.9297 -49.8301h256l-19.9297 49.8301c-7.29004 18.2197 -24.9404 30.1699 -44.5703 30.1699h-127c-19.6299 0 -37.2803 -11.9502 -44.5703 -30.1699zM80 128.2c19.2002 0 48 -3.19043 48 15.9502
-c0 19.1396 -28.7998 47.8496 -48 47.8496s-32 -12.7598 -32 -31.9004c0 -19.1396 12.7998 -31.8994 32 -31.8994zM400 128.2c19.2002 0 32 12.7598 32 31.8994c0 19.1406 -12.7998 31.9004 -32 31.9004s-48 -28.71 -48 -47.8496c0 -19.1406 28.7998 -15.9502 48 -15.9502z
-" />
-    <glyph glyph-name="car-battery" unicode="&#xf5df;" 
-d="M480 320c17.6699 0 32 -14.3301 32 -32v-256c0 -17.6699 -14.3301 -32 -32 -32h-448c-17.6699 0 -32 14.3301 -32 32v256c0 17.6699 14.3301 32 32 32h32v48c0 8.83984 7.16016 16 16 16h96c8.83984 0 16 -7.16016 16 -16v-48h128v48c0 8.83984 7.16016 16 16 16h96
-c8.83984 0 16 -7.16016 16 -16v-48h32zM192 184v16c0 4.41992 -3.58008 8 -8 8h-112c-4.41992 0 -8 -3.58008 -8 -8v-16c0 -4.41992 3.58008 -8 8 -8h112c4.41992 0 8 3.58008 8 8zM448 184v16c0 4.41992 -3.58008 8 -8 8h-40v40c0 4.41992 -3.58008 8 -8 8h-16
-c-4.41992 0 -8 -3.58008 -8 -8v-40h-40c-4.41992 0 -8 -3.58008 -8 -8v-16c0 -4.41992 3.58008 -8 8 -8h40v-40c0 -4.41992 3.58008 -8 8 -8h16c4.41992 0 8 3.58008 8 8v40h40c4.41992 0 8 3.58008 8 8z" />
-    <glyph glyph-name="car-crash" unicode="&#xf5e1;" horiz-adv-x="640" 
-d="M143.25 227.19l-12.4199 -46.3701c-3.00977 -11.25 -3.62988 -22.8906 -2.41016 -34.3906l-35.2002 -28.9795c-6.56934 -5.41016 -16.3096 0.429688 -14.6201 8.76953l15.4404 76.6807c1.05957 5.25977 -2.66016 10.2793 -8 10.79l-77.8604 7.5498
-c-8.46973 0.819336 -11.2295 11.8301 -4.13965 16.54l65.1504 43.2998c4.45996 2.96973 5.37988 9.15039 1.97949 13.29l-49.71 60.4102c-5.41016 6.56934 0.429688 16.2998 8.78027 14.6201l76.6797 -15.4404c5.25977 -1.05957 10.2803 2.66016 10.7998 8l7.5498 77.8604
-c0.820312 8.47949 11.8301 11.2295 16.5508 4.13965l43.2998 -65.1396c2.96973 -4.45996 9.14941 -5.37988 13.29 -1.98047l60.3994 49.71c6.57031 5.41016 16.3008 -0.429688 14.6201 -8.76953l-11.3301 -56.1602c-2.70996 -3.0498 -5.42969 -6.08984 -7.90918 -9.40039
-l-32.1504 -42.9697l-10.71 -14.3203c-32.7305 -8.75977 -59.1797 -34.5293 -68.0801 -67.7393zM637.82 94.6797l-12.4199 -46.3594c-3.13086 -11.6807 -9.38086 -21.6104 -17.5508 -29.3604c-2.72852 -2.58398 -5.62695 -4.90137 -8.75977 -7l-13.9902 -52.2295
-c-1.13965 -4.27051 -3.09961 -8.10059 -5.64941 -11.3809c-7.66992 -9.83984 -20.7402 -14.6797 -33.54 -11.25l-30.9102 8.28027c-17.0703 4.57031 -27.2002 22.1201 -22.6299 39.1904l8.28027 30.9102l-247.28 66.2598l-8.28027 -30.9102
-c-4.57031 -17.0703 -22.1201 -27.2002 -39.1895 -22.6299l-30.9102 8.28027c-12.7998 3.42969 -21.7002 14.1592 -23.4199 26.5098c-0.570312 4.12012 -0.350586 8.41992 0.790039 12.6797l13.9893 52.2305c-1.63086 3.31445 -3.02148 6.85352 -4.08984 10.4492
-c-3.2002 10.79 -3.64941 22.5205 -0.519531 34.2002l12.4199 46.3701c5.30957 19.7998 19.3594 34.8301 36.8896 42.21c5.75 2.42285 12.0352 4.06543 18.4902 4.71973l18.1299 24.2305l32.1504 42.9697c3.44922 4.61035 7.18945 8.90039 11.1992 12.8398
-c8 7.89062 17.0303 14.4404 26.7402 19.5107c4.86035 2.54004 9.89062 4.70996 15.0498 6.48926c10.3301 3.58008 21.1904 5.62988 32.2402 6.04004s22.3105 -0.819336 33.4307 -3.7998l122.68 -32.8701c11.1201 -2.97949 21.4795 -7.54004 30.8496 -13.4297
-c14.0459 -8.81934 25.7959 -20.5068 34.6904 -34.5c8.81934 -13.8799 14.6396 -29.8398 16.6797 -46.9902l6.36035 -53.29l3.58984 -30.0498c10.3115 -7.44531 18.2578 -17.8018 22.7402 -29.9297c4.38965 -11.8799 5.29004 -25.1904 1.75 -38.3906zM255.58 213.66
-c-18.5498 4.96973 -34.21 -4.04004 -39.1699 -22.5303s4.10938 -34.1201 22.6494 -39.0898c18.5508 -4.96973 45.54 -15.5098 50.4902 2.97949c4.95996 18.4902 -15.4297 53.6709 -33.9697 58.6406zM546.19 185.49l-6.36035 53.29
-c-0.580078 4.87012 -1.88965 9.5293 -3.82031 13.8594c-5.7998 12.9902 -17.2002 23.0107 -31.4199 26.8203l-122.68 32.8701c-3.96777 1.0625 -8.13672 1.62891 -12.4375 1.62891c-15.7295 0 -29.6641 -7.53418 -38.4229 -19.2393l-32.1494 -42.9697l172 -46.0801z
-M564.68 130.84c-18.5498 4.96973 -53.7998 -15.3096 -58.75 -33.79c-4.94922 -18.4902 23.6904 -22.8594 42.2402 -27.8301c18.5498 -4.96973 34.21 4.04004 39.1699 22.5303c4.9502 18.4805 -4.10938 34.1201 -22.6602 39.0898z" />
-    <glyph glyph-name="car-side" unicode="&#xf5e4;" horiz-adv-x="640" 
-d="M544 256c53.0195 0 96 -42.9805 96 -96v-80c0 -8.83984 -7.16016 -16 -16 -16h-48c0 -53.0195 -42.9805 -96 -96 -96s-96 42.9805 -96 96h-128c0 -53.0195 -42.9805 -96 -96 -96s-96 42.9805 -96 96h-48c-8.83984 0 -16 7.16016 -16 16v112
-c0 29.79 20.4404 54.5996 48 61.7402l47.9102 122.029c9.71973 24.3008 33.25 40.2305 59.4199 40.2305h213.91c20.2227 -0.00292969 38.2441 -9.35645 49.9795 -24.0195l108.78 -135.98h16zM160 16c26.4697 0 48 21.5303 48 48s-21.5303 48 -48 48s-48 -21.5303 -48 -48
-s21.5303 -48 48 -48zM232 256v96h-76.6699l-38.4004 -96h115.07zM280 256h166.04l-76.7998 96h-89.2402v-96zM480 16c26.4697 0 48 21.5303 48 48s-21.5303 48 -48 48s-48 -21.5303 -48 -48s21.5303 -48 48 -48z" />
-    <glyph glyph-name="charging-station" unicode="&#xf5e7;" horiz-adv-x="576" 
-d="M336 0c8.83984 0 16 -7.16016 16 -16v-32c0 -8.83984 -7.16016 -16 -16 -16h-320c-8.83984 0 -16 7.16016 -16 16v32c0 8.83984 7.16016 16 16 16h320zM544 320h16c8.83984 0 16 -7.16016 16 -16v-32c0 -35.7598 -23.6201 -65.6904 -56 -75.9297v-120.07
-c0 -44.4102 -38.29 -80.0498 -83.5898 -75.6201c-39.4902 3.85059 -68.4102 39.3398 -68.4102 79.0098v24.6104c0 22.0898 -17.9102 40 -40 40h-8v-112h-288v352c0 35.3496 28.6504 64 64 64h160c35.3496 0 64 -28.6504 64 -64v-192h8c48.5996 0 88 -39.4004 88 -88v-28
-c0 -16.9902 15.2197 -30.5 32.7402 -27.6104c13.7598 2.27051 23.2598 15.2402 23.2598 29.1904v118.49c-32.3799 10.2393 -56 40.1699 -56 75.9297v32c0 8.83984 7.16016 16 16 16h16v48c0 8.83984 7.16016 16 16 16s16 -7.16016 16 -16v-48h32v48
-c0 8.83984 7.16016 16 16 16s16 -7.16016 16 -16v-48zM260.09 272.24c4.62012 6.97949 -1.14941 15.7598 -10.3896 15.7598h-57.7002l11.5996 50.79c2.02051 6.66992 -3.71973 13.21 -11.5996 13.21h-68c-6.01953 0 -11.0996 -3.90039 -11.8896 -9.11035l-16 -107
-c-0.959961 -6.2998 4.63965 -11.8896 11.8896 -11.8896h59.3496l-23.0195 -83.0801c-1.7998 -6.63965 4 -12.9199 11.6699 -12.9199c4.17969 0 8.19043 1.91016 10.3896 5.24023z" />
-    <glyph glyph-name="directions" unicode="&#xf5eb;" 
-d="M502.61 214.68c12.5195 -12.5293 12.5195 -32.8301 0 -45.3594l-223.931 -223.931c-12.5293 -12.5293 -32.8398 -12.5293 -45.3594 0l-223.931 223.931c-12.5195 12.5293 -12.5195 32.8301 0 45.3594l223.931 223.931c12.5293 12.5195 32.8398 12.5195 45.3594 0z
-M401.63 202.12c3.42969 3.16992 3.42969 8.58984 0 11.7598l-84.21 77.7305c-5.12988 4.72949 -13.4297 1.08984 -13.4297 -5.87988v-53.7305h-112c-17.6699 0 -32 -14.3301 -32 -32v-80c0 -4.41992 3.58008 -8 8 -8h32c4.41992 0 8 3.58008 8 8v64h96v-53.7305
-c0 -6.97949 8.30957 -10.6094 13.4297 -5.87988z" />
-    <glyph glyph-name="draw-polygon" unicode="&#xf5ee;" horiz-adv-x="448" 
-d="M384 96c35.3496 0 64 -28.6504 63.9902 -64c0 -35.3496 -28.6504 -64 -64 -64c-23.6299 0 -44.0303 12.9502 -55.1201 32h-209.75c-11.0801 -19.0498 -31.4902 -32 -55.1201 -32c-35.3496 0 -64 28.6504 -64 64c0 23.6299 12.9502 44.04 32 55.1299v209.75
-c-19.0498 11.0801 -32 31.4902 -32 55.1201c0 35.3496 28.6504 64 64 64c23.6299 0 44.04 -12.9502 55.1201 -32h209.76c11.0801 19.0498 31.4902 32 55.1201 32c35.3496 0 64 -28.6504 64 -64s-28.6504 -64 -64 -64c-0.349609 0 -0.669922 0.0898438 -1.01953 0.0996094
-l-39.2002 -65.3193c5.08008 -9.16992 8.21973 -19.5605 8.21973 -30.7803s-3.15039 -21.6104 -8.21973 -30.7803l39.2002 -65.3193c0.349609 0 0.669922 0.0996094 1.01953 0.0996094zM96 87.1201c9.61816 -5.58398 17.5361 -13.502 23.1201 -23.1201h208.36
-l-38.4609 64.0996c-0.349609 0 -0.669922 -0.0996094 -1.01953 -0.0996094c-35.3496 0 -64 28.6504 -64 64s28.6504 64 64 64c0.349609 0 0.669922 -0.0898438 1.01953 -0.0996094l38.4609 64.0996h-208.36c-5.58691 -9.61523 -13.5049 -17.5332 -23.1201 -23.1201v-209.76z
-M272 192c0 -8.82031 7.17969 -16 16 -16s16 7.17969 16 16s-7.17969 16 -16 16s-16 -7.17969 -16 -16zM400 352c0 8.82031 -7.17969 16 -16 16s-16 -7.17969 -16 -16s7.17969 -16 16 -16s16 7.17969 16 16zM64 368c-8.82031 0 -16 -7.17969 -16 -16s7.17969 -16 16 -16
-s16 7.17969 16 16s-7.17969 16 -16 16zM48 32c0 -8.82031 7.17969 -16 16 -16s16 7.17969 16 16s-7.17969 16 -16 16s-16 -7.17969 -16 -16zM384 16c8.82031 0 16 7.17969 16 16s-7.17969 16 -16 16s-16 -7.17969 -16 -16s7.17969 -16 16 -16z" />
-    <glyph glyph-name="laptop-code" unicode="&#xf5fc;" horiz-adv-x="640" 
-d="M255.03 186.35l-58.3506 58.3408c-6.25 6.25 -6.25 16.3799 0 22.6299l58.3398 58.3398c6.25 6.25 16.3809 6.25 22.6309 0l11.3096 -11.3105c6.25 -6.25 6.25 -16.3799 0 -22.6299l-35.71 -35.7197l35.7197 -35.71c6.25 -6.25 6.25 -16.3799 0 -22.6299
-l-11.3096 -11.3105c-6.25 -6.25 -16.3799 -6.25 -22.6299 0zM351.04 197.65c-6.25 6.25 -6.25 16.3799 0 22.6299l35.71 35.7197l-35.71 35.71c-6.25 6.25 -6.25 16.3799 0 22.6299l11.3096 11.3105c6.25 6.25 16.3809 6.25 22.6309 0l58.3398 -58.3408
-c6.25 -6.25 6.25 -16.3799 0 -22.6299l-58.3398 -58.3398c-6.25 -6.25 -16.3809 -6.25 -22.6309 0zM624 32c8.7998 0 16 -7.2002 16 -16v-16c0 -35.2002 -28.7998 -64 -64 -64h-512c-35.2002 0 -64 28.7998 -64 64v16c0 8.7998 7.2002 16 16 16h239.23
-c-0.25 -14.5303 14.0791 -32 32.7695 -32h60.7998c18.0303 0 32 12.1904 32.7402 32h242.46zM576 400v-336h-512v336c0 26.4004 21.5996 48 48 48h416c26.4004 0 48 -21.5996 48 -48zM512 128v256h-384v-256h384z" />
-    <glyph glyph-name="layer-group" unicode="&#xf5fd;" 
-d="M12.4102 299.98c-16.5498 7.50977 -16.5498 32.5293 0 40.0391l232.95 105.671c3.23633 1.47949 6.87695 2.30371 10.666 2.30371s7.38672 -0.824219 10.624 -2.30371l232.93 -105.681c16.5498 -7.50977 16.5498 -32.5195 0 -40.0293l-232.94 -105.671
-c-6.7998 -3.08984 -14.4893 -3.08984 -21.29 0zM499.59 211.7c16.5498 -7.5 16.5498 -32.5 0 -40l-232.95 -105.59c-6.7998 -3.08008 -14.4893 -3.08008 -21.29 0l-232.939 105.59c-16.5498 7.5 -16.5498 32.5 0 40l58.0996 26.3301l161.63 -73.2705
-c7.57031 -3.42969 15.5908 -5.16992 23.8604 -5.16992s16.2998 1.74023 23.8604 5.16992l161.64 73.2705zM499.59 83.9004c16.5498 -7.5 16.5498 -32.5 0 -40l-232.95 -105.591c-6.7998 -3.0791 -14.4893 -3.0791 -21.29 0l-232.939 105.591
-c-16.5498 7.5 -16.5498 32.5 0 40l57.8799 26.2295l161.85 -73.3701c7.57031 -3.42969 15.5908 -5.16992 23.8604 -5.16992s16.2998 1.74023 23.8604 5.16992l161.859 73.3701z" />
-    <glyph glyph-name="lungs" unicode="&#xf604;" horiz-adv-x="640" 
-d="M636.11 57.8496c2.58984 -9.68945 3.88965 -19.6396 3.88965 -29.6299c0 -61.2295 -62.4805 -105.439 -125.24 -88.6201l-59.5 15.9502c-42.1797 11.3105 -71.2598 47.4697 -71.2598 88.6201v87.4902l85.8398 -57.2305
-c1.26855 -0.845703 2.79395 -1.35156 4.43164 -1.35156c2.77734 0 5.22559 1.41992 6.6582 3.57227l8.87988 13.3096c0.845703 1.26758 1.35254 2.79395 1.35254 4.43164c0 2.77734 -1.41992 5.22559 -3.57227 6.6582l-167.59 111.72l-167.59 -111.72
-c-2.15332 -1.43262 -3.55957 -3.88379 -3.55957 -6.66113c0 -1.6377 0.493164 -3.16113 1.33984 -4.42871l8.87988 -13.3096c1.43262 -2.15332 3.88379 -3.56055 6.66113 -3.56055c1.6377 0 3.16016 0.494141 4.42871 1.33984l85.8398 57.2305v-87.4902
-c0 -41.1504 -29.0801 -77.3203 -71.2598 -88.6201l-59.5 -15.9502c-62.7598 -16.8193 -125.24 27.3906 -125.24 88.6201c0 9.99023 1.2998 19.9404 3.88965 29.6299c21.6699 81.3008 56.04 159.15 102.011 231.021c22.1191 34.5703 36.0693 63.1299 80.0498 63.1299
-c38.6895 0 70.0498 -29.4199 70.0498 -65.71v-60.1104l32.8799 21.9199c4.4502 2.9707 7.12012 7.95996 7.12012 13.3105v170.59c0 8.83984 7.16016 16 16 16h16c8.83984 0 16 -7.16016 16 -16v-170.59c0 -5.55273 2.81934 -10.4414 7.12012 -13.3105l32.8799 -21.9199
-v60.1104c0 36.29 31.3604 65.71 70.0498 65.71c43.9805 0 57.9307 -28.5596 80.0498 -63.1299c45.9707 -71.8701 80.3408 -149.72 102.011 -231.021z" />
-    <glyph glyph-name="microscope" unicode="&#xf610;" 
-d="M160 128c-17.6699 0 -32 14.3301 -32 32v224c0 17.6699 14.3301 32 32 32v16c0 8.83984 7.16016 16 16 16h64c8.83984 0 16 -7.16016 16 -16v-16c17.6699 0 32 -14.3301 32 -32v-224c0 -17.6699 -14.3301 -32 -32 -32h-12v-16c0 -8.83984 -7.16016 -16 -16 -16h-40
-c-8.83984 0 -16 7.16016 -16 16v16h-12zM464 0c26.5098 0 48 -21.4902 48 -48c0 -8.83984 -7.16016 -16 -16 -16h-480c-8.83984 0 -16 7.16016 -16 16c0 26.5098 21.4902 48 48 48h272c70.5801 0 128 57.4199 128 128s-57.4199 128 -128 128v64
-c105.88 0 192 -86.1201 192 -192c0 -49.2002 -18.7598 -93.9902 -49.29 -128h1.29004zM104 32c-4.41992 0 -8 3.58008 -8 8v16c0 4.41992 3.58008 8 8 8h208c4.41992 0 8 -3.58008 8 -8v-16c0 -4.41992 -3.58008 -8 -8 -8h-208z" />
-    <glyph glyph-name="oil-can" unicode="&#xf613;" horiz-adv-x="640" 
-d="M629.8 287.69c5.11035 1.45996 10.2002 -2.38086 10.1904 -7.69043v-18.0801c0 -2.12012 -0.839844 -4.16016 -2.33984 -5.66016l-212.261 -214.75c-6.00977 -6.08984 -14.21 -9.50977 -22.7598 -9.50977h-274.63c-17.6699 0 -32 14.3301 -32 32v46.54l-69.7197 12.6904
-c-15.2207 2.75977 -26.2803 16.0195 -26.2803 31.4795v94.9502c0 17.9795 14.6699 32.0098 31.9297 32.0098c1.9873 0 3.9043 -0.181641 5.79004 -0.530273l138.28 -25.1396h56v48h-56c-8.83984 0 -16 7.16016 -16 16v16c0 8.83984 7.16016 16 16 16h160
-c8.83984 0 16 -7.16016 16 -16v-16c0 -8.83984 -7.16016 -16 -16 -16h-56v-48h56.8896c10.2598 -0.00390625 20.0205 -2.46191 28.6201 -6.75977l50.4902 -25.2402zM96 159.33v62.4297l-48 8.73047v-62.4307zM549.33 74.6699c0 23.5605 42.6699 85.3301 42.6699 85.3301
-s42.6699 -61.7598 42.6699 -85.3301s-19.0996 -42.6699 -42.6699 -42.6699s-42.6699 19.1104 -42.6699 42.6699z" />
-    <glyph glyph-name="poop" unicode="&#xf619;" 
-d="M451.36 78.8604c34.3301 -5.48047 60.6396 -34.9805 60.6396 -70.8604c0 -39.7598 -32.2402 -72 -72 -72h-368c-39.7598 0 -72 32.2402 -72 72c0 35.8799 26.3096 65.3799 60.6396 70.8604c-17.2998 13.1494 -28.6396 33.7295 -28.6396 57.1396
-c0 39.7695 32.2402 72 72 72h14.0703c-13.4199 11.7305 -22.0703 28.7803 -22.0703 48c0 35.3496 28.6504 64 64 64h16c44.1797 0 80 35.8203 80 80c0 17.3799 -5.69043 33.3604 -15.1104 46.4805c4.95996 0.779297 9.94043 1.51953 15.1104 1.51953
-c53.0195 0 96 -42.9805 96 -96c0 -11.2803 -2.30957 -21.9502 -5.87988 -32h5.87988c35.3496 0 64 -28.6504 64 -64c0 -19.2197 -8.65039 -36.2695 -22.0703 -48h14.0703c39.7598 0 72 -32.2305 72 -72c0 -23.4102 -11.3398 -43.9902 -28.6396 -57.1396z" />
-    <glyph glyph-name="shapes" unicode="&#xf61f;" 
-d="M128 192c70.6455 0 128 -57.3545 128 -128s-57.3545 -128 -128 -128s-128 57.3545 -128 128s57.3545 128 128 128zM507 246.86c14.2402 -24.3799 -3.58008 -54.8604 -32.0898 -54.8604h-213.82c-28.5098 0 -46.3301 30.4805 -32.0898 54.8604l106.93 182.85
-c6.48828 10.9688 18.3906 18.3311 32.0469 18.3311c13.6553 0 25.6055 -7.3623 32.0938 -18.3311zM480 160c17.6611 0 32 -14.3389 32 -32v-160c0 -17.6611 -14.3389 -32 -32 -32h-160c-17.6611 0 -32 14.3389 -32 32v160c0 17.6611 14.3389 32 32 32h160z" />
-    <glyph glyph-name="star-of-life" unicode="&#xf621;" horiz-adv-x="480" 
-d="M471.99 113.57c7.66016 -4.41992 10.2793 -14.2002 5.85938 -21.8506l-32.0195 -55.4297c-4.41992 -7.66016 -14.21 -10.2803 -21.8701 -5.86035l-135.93 78.4307v-156.86c0 -8.83984 -7.16992 -16 -16.0107 -16h-64.0391c-8.84082 0 -16.0107 7.16016 -16.0107 16
-v156.85l-135.93 -78.4297c-7.66016 -4.41016 -17.4502 -1.79004 -21.8701 5.86035l-32.0195 55.4297c-4.41992 7.65039 -1.80078 17.4404 5.85938 21.8604l135.931 78.4297l-135.931 78.4297c-7.66016 4.41992 -10.2793 14.21 -5.85938 21.8604l32.0195 55.4199
-c4.41992 7.65039 14.21 10.2803 21.8701 5.86035l135.93 -78.4307v156.86c0 8.83984 7.16992 16 16.0107 16h64.0391c8.84082 0 16.0107 -7.16016 16.0107 -16v-156.85l135.93 78.4297c7.66016 4.41992 17.4502 1.79004 21.8701 -5.86035l32.0195 -55.4297
-c4.41992 -7.66016 1.80078 -17.4404 -5.85938 -21.8604l-135.931 -78.4297z" />
-    <glyph glyph-name="teeth" unicode="&#xf62e;" horiz-adv-x="640" 
-d="M544 448c53.0195 0 96 -42.9805 96 -96v-320c0 -53.0195 -42.9805 -96 -96 -96h-448c-53.0195 0 -96 42.9805 -96 96v320c0 53.0195 42.9805 96 96 96h448zM160 80v64c0 8.83984 -7.16016 16 -16 16h-64c-8.83984 0 -16 -7.16016 -16 -16v-64
-c0 -26.5098 21.4902 -48 48 -48s48 21.4902 48 48zM160 208v64c0 26.5098 -21.4902 48 -48 48s-48 -21.4902 -48 -48v-64c0 -8.83984 7.16016 -16 16 -16h64c8.83984 0 16 7.16016 16 16zM304 88v56c0 8.83984 -7.16016 16 -16 16h-80c-8.83984 0 -16 -7.16016 -16 -16v-56
-c0 -30.9297 25.0703 -56 56 -56s56 25.0703 56 56zM304 208v88c0 30.9297 -25.0703 56 -56 56s-56 -25.0703 -56 -56v-88c0 -8.83984 7.16016 -16 16 -16h80c8.83984 0 16 7.16016 16 16zM448 88v56c0 8.83984 -7.16016 16 -16 16h-80c-8.83984 0 -16 -7.16016 -16 -16v-56
-c0 -30.9297 25.0703 -56 56 -56s56 25.0703 56 56zM448 208v88c0 30.9297 -25.0703 56 -56 56s-56 -25.0703 -56 -56v-88c0 -8.83984 7.16016 -16 16 -16h80c8.83984 0 16 7.16016 16 16zM576 80v64c0 8.83984 -7.16016 16 -16 16h-64c-8.83984 0 -16 -7.16016 -16 -16v-64
-c0 -26.5098 21.4902 -48 48 -48s48 21.4902 48 48zM576 208v64c0 26.5098 -21.4902 48 -48 48s-48 -21.4902 -48 -48v-64c0 -8.83984 7.16016 -16 16 -16h64c8.83984 0 16 7.16016 16 16z" />
-    <glyph glyph-name="teeth-open" unicode="&#xf62f;" horiz-adv-x="640" 
-d="M544 448c53.0195 0 96 -42.9805 96 -96v-64c0 -35.3496 -28.6602 -64 -64 -64h-512c-35.3398 0 -64 28.6504 -64 64v64c0 53.0195 42.9805 96 96 96h448zM160 272v32c0 26.5098 -21.4902 48 -48 48s-48 -21.4902 -48 -48v-32c0 -8.83984 7.16016 -16 16 -16h64
-c8.83984 0 16 7.16016 16 16zM304 272v56c0 30.9297 -25.0703 56 -56 56s-56 -25.0703 -56 -56v-56c0 -8.83984 7.16016 -16 16 -16h80c8.83984 0 16 7.16016 16 16zM448 272v56c0 30.9297 -25.0703 56 -56 56s-56 -25.0703 -56 -56v-56c0 -8.83984 7.16016 -16 16 -16h80
-c8.83984 0 16 7.16016 16 16zM576 272v32c0 26.5098 -21.4902 48 -48 48s-48 -21.4902 -48 -48v-32c0 -8.83984 7.16016 -16 16 -16h64c8.83984 0 16 7.16016 16 16zM576 128c35.3398 0 64 -28.6504 64 -64v-32c0 -53.0195 -42.9805 -96 -96 -96h-448
-c-53.0195 0 -96 42.9805 -96 96v32c0 35.3496 28.6602 64 64 64h512zM160 48v32c0 8.83984 -7.16016 16 -16 16h-64c-8.83984 0 -16 -7.16016 -16 -16v-32c0 -26.5098 21.4902 -48 48 -48s48 21.4902 48 48zM304 56v24c0 8.83984 -7.16016 16 -16 16h-80
-c-8.83984 0 -16 -7.16016 -16 -16v-24c0 -30.9297 25.0703 -56 56 -56s56 25.0703 56 56zM448 56v24c0 8.83984 -7.16016 16 -16 16h-80c-8.83984 0 -16 -7.16016 -16 -16v-24c0 -30.9297 25.0703 -56 56 -56s56 25.0703 56 56zM576 48v32c0 8.83984 -7.16016 16 -16 16h-64
-c-8.83984 0 -16 -7.16016 -16 -16v-32c0 -26.5098 21.4902 -48 48 -48s48 21.4902 48 48z" />
-    <glyph glyph-name="theater-masks" unicode="&#xf630;" horiz-adv-x="640" 
-d="M206.86 202.85l-7.62988 -43.1797c-21.0908 -7.21973 -38.5 -18.2002 -49.9004 -30.9199c-2.41992 32.9004 21.6504 63.6504 57.5303 74.0996zM95.8096 153c5.87012 -33.1699 64.3203 -71.8096 111.931 -84.79c10.5596 -27.0996 25.9795 -50.5 39.5 -67.5801
-c-3.25977 -0.339844 -6.41992 -0.799805 -10.0098 -0.799805c-68.1201 0 -190.221 61.5596 -204.45 142.08l-31.7305 179.51c-4.96973 28.0996 7.98047 56.0996 32.1504 69.5205c67.8193 37.6396 143.46 57.0596 220.12 57.0596c23.9199 0 47.9492 -1.88965 71.8594 -5.7002
-c17.29 -2.76953 31.7803 -13.0498 41.7705 -27c-19.1299 -0.769531 -38.29 -2.2998 -57.1807 -5.31934c-19.8594 -3.1709 -37.6396 -12.5303 -51.5898 -26c-1.62012 0.0195312 -3.23926 0.189453 -4.84961 0.189453c-65.8896 0 -131.25 -16.9502 -189.01 -49.0098
-c0.0400391 -0.0302734 -0.530273 -1.03027 -0.240234 -2.65039zM193.36 290.46c3.83984 -21.7002 -10.6904 -42.4004 -32.4404 -46.2197c-21.7598 -3.82031 -42.5 10.6699 -46.3398 32.3701c-0.730469 4.12012 -0.610352 8.15918 -0.0898438 12.0996
-c10.8096 -5.57031 24.8301 -7.75 39.4795 -5.16992c14.6504 2.57031 27.0703 9.41016 35.3203 18.3203c1.83984 -3.53027 3.33984 -7.28027 4.07031 -11.4004zM606.8 327.1c24.1699 -13.4092 37.1201 -41.4092 32.1504 -69.5195l-31.7305 -179.51
-c-15.3896 -87.0508 -156.83 -151.931 -219.859 -140.84c-63.0303 11.0791 -173.7 120.3 -158.311 207.35l31.7305 179.51c4.95996 28.1006 26.7295 50 54.04 54.3604c100.55 16.0596 203 -1.96973 291.979 -51.3506zM333.56 230.3
-c-0.729492 -4.12012 -0.609375 -8.16016 -0.0791016 -12.1094c10.8096 5.56934 24.8291 7.75 39.4795 5.16992c14.6504 -2.57031 27.0703 -9.41016 35.3203 -18.3203c1.83984 3.53027 3.33984 7.28027 4.06934 11.4004c3.83008 21.6992 -10.6895 42.3896 -32.4492 46.2197
-c-21.7607 3.83008 -42.5 -10.6602 -46.3408 -32.3604zM404.03 31.54c55.6699 -9.79004 108.2 23.7803 122.38 75.7197c-28.1104 -16.9697 -68.6504 -24.21 -111.93 -16.5996c-43.2803 7.60938 -78.8906 28.2402 -99.4902 53.7803
-c-4.48047 -53.6309 33.3594 -103.11 89.04 -112.9zM534.33 182.88c1.83984 3.52051 3.33984 7.27051 4.07031 11.4004c3.83008 21.7002 -10.7002 42.3896 -32.4502 46.2197c-21.7598 3.82031 -42.5 -10.6699 -46.3398 -32.3701
-c-0.730469 -4.12012 -0.610352 -8.16016 -0.0908203 -12.0996c10.8105 5.56934 24.8301 7.75 39.4805 5.16992c14.6504 -2.57031 27.0801 -9.41016 35.3301 -18.3203z" />
-    <glyph glyph-name="traffic-light" unicode="&#xf637;" horiz-adv-x="384" 
-d="M384 256c0 -41.7402 -26.7998 -76.9004 -64 -90.1201v-37.8799h64c0 -42.8398 -28.25 -78.6904 -66.9902 -91.0498c-12.4297 -57.6699 -63.6094 -100.95 -125.01 -100.95s-112.58 43.2803 -125.01 100.95c-38.7402 12.3594 -66.9902 48.21 -66.9902 91.0498h64v37.8799
-c-37.2002 13.2197 -64 48.3799 -64 90.1201h64v37.8799c-37.2002 13.2197 -64 48.3799 -64 90.1201h64v32c0 17.6699 14.3301 32 32 32h192c17.6699 0 32 -14.3301 32 -32v-32h64c0 -41.7402 -26.7998 -76.9004 -64 -90.1201v-37.8799h64zM192 32
-c26.5098 0 48 21.4902 48 48s-21.4902 48 -48 48s-48 -21.4902 -48 -48s21.4902 -48 48 -48zM192 160c26.5098 0 48 21.4902 48 48s-21.4902 48 -48 48s-48 -21.4902 -48 -48s21.4902 -48 48 -48zM192 288c26.5098 0 48 21.4902 48 48s-21.4902 48 -48 48
-s-48 -21.4902 -48 -48s21.4902 -48 48 -48z" />
-    <glyph glyph-name="truck-monster" unicode="&#xf63b;" horiz-adv-x="640" 
-d="M624 224c8.83984 0 16 -7.16016 16 -16v-32c0 -8.83984 -7.16016 -16 -16 -16h-16.71c-29.21 38.6504 -75.0996 64 -127.28 64c-52.1797 0 -98.0693 -25.3496 -127.279 -64h-65.4502c-29.21 38.6504 -75.1006 64 -127.28 64s-98.0703 -25.3496 -127.28 -64h-16.7197
-c-8.83984 0 -16 7.16016 -16 16v32c0 8.83984 7.16016 16 16 16h16v80c0 8.83984 7.16016 16 16 16h176v96c0 17.6699 14.3301 32 32 32h113.24c20.2227 -0.00292969 38.2441 -9.35645 49.9795 -24.0195l83.1807 -103.98h73.5996c17.6699 0 32 -14.3301 32 -32v-64h16z
-M288 320h132.44l-51.2002 64h-81.2402v-64zM592 96c8.83984 0 16 -7.16016 16.0195 -16v-32c0 -8.83984 -7.15918 -16 -16 -16h-5.19922c-2.1709 -7.26172 -5.11426 -14.3359 -8.65039 -20.8896l3.66992 -3.66992c6.25 -6.25 6.25 -16.3809 0 -22.6309l-22.6299 -22.6299
-c-6.25 -6.25 -16.3799 -6.25 -22.6299 0l-3.66992 3.66992c-6.62012 -3.58008 -13.5703 -6.44922 -20.9004 -8.64941v-5.2002c0 -8.83984 -7.16016 -16 -16 -16h-32c-8.83984 0 -16 7.16016 -16 16v5.2002c-7.33008 2.2002 -14.29 5.08008 -20.8994 8.64941
-l-3.66992 -3.66992c-6.25 -6.25 -16.3809 -6.25 -22.6309 0l-22.6299 22.6299c-6.25 6.25 -6.25 16.3809 0 22.6309l3.66992 3.66992c-3.58008 6.60938 -6.44922 13.5596 -8.64941 20.8896h-5.2002c-8.83984 0 -16 7.16016 -16 16v32c0 8.83984 7.16016 16 16 16h5.2002
-c2.16992 7.26172 5.11426 14.3359 8.64941 20.8896l-3.66992 3.66992c-6.25 6.25 -6.25 16.3809 0 22.6309l22.6299 22.6299c6.25 6.25 16.3809 6.25 22.6309 0l3.66992 -3.66992c6.60938 3.58008 13.5596 6.44922 20.8896 8.64941v5.2002c0 8.83984 7.16016 16 16 16h32
-c8.83984 0 16 -7.16016 16 -16v-5.2002c7.26172 -2.16992 14.3359 -5.11426 20.8896 -8.64941l3.66992 3.66992c6.25 6.25 16.3809 6.25 22.6309 0l22.6299 -22.6299c6.25 -6.25 6.25 -16.3809 0 -22.6309l-3.66992 -3.66992
-c3.58008 -6.60938 6.44922 -13.5596 8.64941 -20.8896h5.2002zM480 16c26.5098 0 48 21.4902 48 48s-21.4902 48 -48 48s-48 -21.4902 -48 -48s21.4902 -48 48 -48zM272 96c8.83984 0 16 -7.16016 16.0195 -15.9902v-32c0 -8.83984 -7.15918 -16 -16 -16h-5.19922
-c-2.1709 -7.26074 -5.11426 -14.3359 -8.65039 -20.8896l3.66992 -3.66992c6.25 -6.25 6.25 -16.3799 0 -22.6299l-22.6299 -22.6299c-6.25 -6.25 -16.3799 -6.25 -22.6299 0l-3.66992 3.66992c-6.62012 -3.58008 -13.5703 -6.4502 -20.9004 -8.65039v-5.2002
-c0 -8.83984 -7.16016 -16 -16 -16h-32c-8.83984 0 -16 7.16016 -16 16v5.2002c-7.33008 2.2002 -14.29 5.08008 -20.8994 8.65039l-3.66992 -3.66992c-6.25 -6.25 -16.3809 -6.25 -22.6309 0l-22.6299 22.6299c-6.25 6.25 -6.25 16.3799 0 22.6299l3.66992 3.66992
-c-3.58008 6.61035 -6.44922 13.5596 -8.64941 20.8896h-5.2002c-8.83984 0 -16 7.16016 -16 16v32c0 8.83984 7.16016 16 16 16h5.2002c2.16992 7.26172 5.11426 14.3359 8.64941 20.8906l-3.66992 3.66992c-6.25 6.25 -6.25 16.3799 0 22.6299l22.6299 22.6201
-c6.25 6.25 16.3809 6.25 22.6309 0l3.66992 -3.66992c6.60938 3.58008 13.5596 6.44922 20.8896 8.64941v5.2002c0 8.83984 7.16016 16 16 16h32c8.83984 0 16 -7.16016 16 -16v-5.2002c7.26172 -2.16992 14.3359 -5.11426 20.8896 -8.64941l3.66992 3.66992
-c6.25 6.25 16.3809 6.25 22.6309 0l22.6299 -22.6299c6.25 -6.25 6.25 -16.3809 0 -22.6309l-3.66992 -3.66992c3.58008 -6.60938 6.44922 -13.5596 8.64941 -20.8896h5.2002zM160 16c26.5098 0 48 21.4902 48 48s-21.4902 48 -48 48s-48 -21.4902 -48 -48
-s21.4902 -48 48 -48z" />
-    <glyph glyph-name="truck-pickup" unicode="&#xf63c;" horiz-adv-x="640" 
-d="M624 160c8.83984 0 16 -7.16016 16 -16v-32c0 -8.83984 -7.16016 -16 -16 -16h-49.5996c0.759766 -5.26953 1.60938 -10.5195 1.60938 -16c0 -61.8604 -50.1396 -112 -112 -112c-61.8594 0 -112 50.1396 -112 112c0 5.48047 0.850586 10.7305 1.61035 16h-67.2305
-c0.760742 -5.26953 1.61035 -10.5195 1.61035 -16c0 -61.8604 -50.1396 -112 -112 -112s-112 50.1396 -112 112c0 5.48047 0.849609 10.7305 1.61035 16h-49.6104c-8.83984 0 -16 7.16016 -16 16v32c0 8.83984 7.16016 16 16 16h16v64c0 17.6699 14.3301 32 32 32h160v128
-c0 17.6699 14.3301 32 32 32h113.24c20.2227 -0.00292969 38.2441 -9.35645 49.9795 -24.0195l108.78 -135.98h48c17.6699 0 32 -14.3301 32 -32v-64h16zM288 352v-96h158.04l-76.7998 96h-81.2402zM176 32c26.4697 0 48 21.5303 48 48s-21.5303 48 -48 48
-s-48 -21.5303 -48 -48s21.5303 -48 48 -48zM464 32c26.4697 0 48 21.5303 48 48s-21.5303 48 -48 48s-48 -21.5303 -48 -48s21.5303 -48 48 -48z" />
-    <glyph glyph-name="ad" unicode="&#xf641;" 
-d="M157.52 176l18.4805 53.2197l18.4805 -53.2197h-36.9609zM352 192c13.2305 0 24 -10.7695 24 -24s-10.7695 -24 -24 -24s-24 10.7695 -24 24s10.7695 24 24 24zM464 384c26.5 0 48 -21.5 48 -48v-288c0 -26.5 -21.5 -48 -48 -48h-416c-26.5 0 -48 21.5 -48 48v288
-c0 26.5 21.5 48 48 48h416zM250.58 96c11 0 18.7197 10.8496 15.1104 21.25l-53.6904 154.62c-3.25586 9.3877 -12.1758 16.1299 -22.666 16.1299h-0.00390625h-26.6602l0.00292969 0.00585938c-10.4873 0 -19.4131 -6.74219 -22.6729 -16.126l-53.7002 -154.63
-c-3.60938 -10.4004 4.11035 -21.25 15.1201 -21.25h16.9404c0.00195312 0 -0.000976562 -0.00390625 0.000976562 -0.00390625c6.99316 0 12.9453 4.49609 15.1191 10.7539l7.37988 21.25h70.29l7.36914 -21.25c2.24023 -6.42969 8.31055 -10.75 15.1201 -10.75h16.9404z
-M424 112v160c0 8.83984 -7.16016 16 -16 16h-16c-8.83984 0 -16 -7.16016 -16 -16v-36.4199c-7.54004 2.68945 -15.54 4.41992 -24 4.41992c-39.7002 0 -72 -32.2998 -72 -72s32.2998 -72 72 -72c9.92969 0 19.4004 2.01953 28.0195 5.67969
-c2.94043 -3.41016 7.13086 -5.67969 11.9805 -5.67969h16c8.83984 0 16 7.16016 16 16z" />
-    <glyph glyph-name="ankh" unicode="&#xf644;" horiz-adv-x="320" 
-d="M296 192c13.25 0 24 -10.7402 24 -24v-32c0 -13.25 -10.75 -24 -24 -24h-96v-152c0 -13.25 -10.75 -24 -24 -24h-32c-13.25 0 -24 10.75 -24 24v152h-96c-13.25 0 -24 10.75 -24 24v32c0 13.2598 10.75 24 24 24h44.6201c-21.0801 33.9902 -36.6201 74.3496 -36.6201 112
-c0 88.3701 57.3096 144 128 144s128 -55.6299 128 -144c0 -37.6504 -15.54 -78.0098 -36.6201 -112h44.6201zM160 368c-29.6104 0 -48 -24.5195 -48 -64c0 -34.6602 27.1396 -78.1504 48 -100.87c20.8604 22.7305 48 66.21 48 100.87c0 39.4805 -18.3896 64 -48 64z" />
-    <glyph glyph-name="bible" unicode="&#xf647;" horiz-adv-x="448" 
-d="M448 89.5996c0 -9.59961 -3.2002 -16 -9.59961 -19.1992c-3.2002 -12.8008 -3.2002 -57.6006 0 -73.6006c6.39941 -6.39941 9.59961 -12.7998 9.59961 -19.2002v-16c0 -16 -12.7998 -25.5996 -25.5996 -25.5996h-326.4c-54.4004 0 -96 41.5996 -96 96v320
-c0 54.4004 41.5996 96 96 96h326.4c16 0 25.5996 -9.59961 25.5996 -25.5996v-332.801zM144 304v-32c0 -8.83984 7.16016 -16 16 -16h48v-112c0 -8.83984 7.16016 -16 16 -16h32c8.83984 0 16 7.16016 16 16v112h48c8.83984 0 16 7.16016 16 16v32
-c0 8.83984 -7.16016 16 -16 16h-48v48c0 8.83984 -7.16016 16 -16 16h-32c-8.83984 0 -16 -7.16016 -16 -16v-48h-48c-8.83984 0 -16 -7.16016 -16 -16zM380.8 0v64h-284.8c-16 0 -32 -12.7998 -32 -32s12.7998 -32 32 -32h284.8z" />
-    <glyph glyph-name="business-time" unicode="&#xf64a;" horiz-adv-x="640" 
-d="M496 224c79.5898 0 144 -64.4102 144 -144s-64.4102 -144 -144 -144s-144 64.4102 -144 144s64.4102 144 144 144zM560 73.71v12.5801c0 5.33984 -4.37012 9.70996 -9.70996 9.70996h-38.29v54.2803c0 5.33984 -4.37012 9.70996 -9.70996 9.70996h-12.5703
-c-5.33984 0 -9.70996 -4.37012 -9.70996 -9.70996v-76.5703c0 -5.33984 4.37012 -9.70996 9.70996 -9.70996h60.5703c5.33984 0 9.70996 4.37012 9.70996 9.70996zM496 256c-37.5303 0 -72.2803 -11.9102 -100.88 -32h-395.12v80c0 25.5996 22.4004 48 48 48h80v48
-c0 25.5996 22.4004 48 48 48h160c25.5996 0 48 -22.4004 48 -48v-48h80c25.5996 0 48 -22.4004 48 -48v-48.8096c-5.28027 0.479492 -10.5996 0.80957 -16 0.80957zM320 352v32h-128v-32h128zM326.82 128c-4.33984 -15.2803 -6.82031 -31.3398 -6.82031 -48
-c0 -28.8203 7.09961 -55.96 19.4297 -80h-291.43c-25.5996 0 -48 22.4004 -48 48v144h192v-48c0 -8.83984 7.16016 -16 16 -16h118.82z" />
-    <glyph glyph-name="city" unicode="&#xf64f;" horiz-adv-x="640" 
-d="M616 256c13.25 0 24 -10.7402 24 -24v-264c0 -17.6699 -14.3301 -32 -32 -32h-576c-17.6699 0 -32 14.3301 -32 32v360c0 13.2598 10.7402 24 24 24h40v80c0 8.83984 7.16016 16 16 16h16c8.83984 0 16 -7.16016 16 -16v-80h64v80c0 8.83984 7.16016 16 16 16h16
-c8.83984 0 16 -7.16016 16 -16v-80h64v72c0 13.2598 10.7402 24 24 24h144c13.2598 0 24 -10.7402 24 -24v-168h136zM128 44v40c0 6.62988 -5.37012 12 -12 12h-40c-6.62988 0 -12 -5.37012 -12 -12v-40c0 -6.62988 5.37012 -12 12 -12h40c6.62988 0 12 5.37012 12 12z
-M128 140v40c0 6.62988 -5.37012 12 -12 12h-40c-6.62988 0 -12 -5.37012 -12 -12v-40c0 -6.62988 5.37012 -12 12 -12h40c6.62988 0 12 5.37012 12 12zM128 236v40c0 6.62988 -5.37012 12 -12 12h-40c-6.62988 0 -12 -5.37012 -12 -12v-40c0 -6.62988 5.37012 -12 12 -12h40
-c6.62988 0 12 5.37012 12 12zM256 44v40c0 6.62988 -5.37012 12 -12 12h-40c-6.62988 0 -12 -5.37012 -12 -12v-40c0 -6.62988 5.37012 -12 12 -12h40c6.62988 0 12 5.37012 12 12zM256 140v40c0 6.62988 -5.37012 12 -12 12h-40c-6.62988 0 -12 -5.37012 -12 -12v-40
-c0 -6.62988 5.37012 -12 12 -12h40c6.62988 0 12 5.37012 12 12zM256 236v40c0 6.62988 -5.37012 12 -12 12h-40c-6.62988 0 -12 -5.37012 -12 -12v-40c0 -6.62988 5.37012 -12 12 -12h40c6.62988 0 12 5.37012 12 12zM416 140v40c0 6.62988 -5.37012 12 -12 12h-40
-c-6.62988 0 -12 -5.37012 -12 -12v-40c0 -6.62988 5.37012 -12 12 -12h40c6.62988 0 12 5.37012 12 12zM416 236v40c0 6.62988 -5.37012 12 -12 12h-40c-6.62988 0 -12 -5.37012 -12 -12v-40c0 -6.62988 5.37012 -12 12 -12h40c6.62988 0 12 5.37012 12 12zM416 332v40
-c0 6.62988 -5.37012 12 -12 12h-40c-6.62988 0 -12 -5.37012 -12 -12v-40c0 -6.62988 5.37012 -12 12 -12h40c6.62988 0 12 5.37012 12 12zM576 44v40c0 6.62988 -5.37012 12 -12 12h-40c-6.62988 0 -12 -5.37012 -12 -12v-40c0 -6.62988 5.37012 -12 12 -12h40
-c6.62988 0 12 5.37012 12 12zM576 140v40c0 6.62988 -5.37012 12 -12 12h-40c-6.62988 0 -12 -5.37012 -12 -12v-40c0 -6.62988 5.37012 -12 12 -12h40c6.62988 0 12 5.37012 12 12z" />
-    <glyph glyph-name="comment-dollar" unicode="&#xf651;" 
-d="M256 416c141.38 0 256 -93.1201 256 -208s-114.62 -208 -256 -208c-38.4102 0 -74.71 7.07031 -107.4 19.3799c-24.6094 -19.6299 -74.3398 -51.3799 -140.6 -51.3799l-0.00195312 0.00195312c-4.41309 0 -7.99512 3.58301 -7.99512 7.99512
-c0 2.13184 0.835938 4.06934 2.19727 5.50293c0.5 0.530273 42.2598 45.4502 54.8193 95.7598c-35.6094 35.7305 -57.0195 81.1807 -57.0195 130.74c0 114.88 114.62 208 256 208zM280 113.56c30.29 3.62012 53.3701 30.9805 49.3203 63.04
-c-2.90039 22.96 -20.6602 41.3105 -42.9102 47.6699l-50.0703 14.3008c-3.59961 1.0293 -6.12012 4.35938 -6.12012 8.10938c0 4.64062 3.78027 8.41992 8.44043 8.41992h32.7803c0.0214844 0 0.0634766 -0.0126953 0.0859375 -0.0126953
-c3.62891 0 7.07422 -0.790039 10.1738 -2.20703c4.7998 -2.20996 10.3701 -1.70996 14.1094 2.03027l17.5205 17.5195c5.26953 5.27051 4.66992 14.2705 -1.5498 18.3799c-9.5 6.27051 -20.3604 10.1104 -31.7803 11.46v17.7305c0 8.83984 -7.16016 16 -16 16h-16
-c-8.83984 0 -16 -7.16016 -16 -16v-17.5498c-30.29 -3.62012 -53.3701 -30.9805 -49.3203 -63.0498c2.90039 -22.96 20.6602 -41.3203 42.9102 -47.6699l50.0703 -14.3008c3.59961 -1.0293 6.12012 -4.35938 6.12012 -8.10938
-c0 -4.64062 -3.78027 -8.41992 -8.44043 -8.41992h-32.7803c-3.59961 0 -7.0791 0.759766 -10.2598 2.21973c-4.7998 2.20996 -10.3701 1.70996 -14.1094 -2.03027l-17.5205 -17.5195c-5.26953 -5.27051 -4.66992 -14.2705 1.5498 -18.3799
-c9.5 -6.27051 20.3604 -10.1104 31.7803 -11.46v-17.7305c0 -8.83984 7.16016 -16 16 -16h16c8.83984 0 16 7.16016 16 16v17.5596z" />
-    <glyph glyph-name="comments-dollar" unicode="&#xf653;" horiz-adv-x="576" 
-d="M416 256c0 -88.3701 -93.1201 -160 -208 -160c-40.9805 0 -79.0703 9.24023 -111.27 24.9805c-21.8008 -12.7305 -52.1504 -24.9805 -88.7305 -24.9805l-0.00195312 0.00195312c-4.41309 0 -7.99512 3.58301 -7.99512 7.99512
-c0 2.13184 0.835938 4.06934 2.19727 5.50293c0.319336 0.339844 22.4102 24.2803 35.7695 54.5195c-23.8398 26.0303 -37.9697 57.7109 -37.9697 91.9805c0 88.3701 93.1201 160 208 160s208 -71.6299 208 -160zM192 160c0 -4.41992 3.58008 -8 8 -8h16
-c4.41992 0 8 3.58008 8 8v16.1201c23.6201 0.629883 42.6699 20.54 42.6699 45.0703c0 19.9697 -12.9902 37.8096 -31.5801 43.3896l-45 13.5c-5.16016 1.54004 -8.76953 6.78027 -8.76953 12.7295c0 7.27051 5.2998 13.1904 11.7998 13.1904h28.1104
-c4.55957 0 8.94922 -1.29004 12.8193 -3.71973c3.24023 -2.03027 7.36035 -1.91016 10.1299 0.729492l11.75 11.21c3.53027 3.37012 3.33008 9.20996 -0.569336 12.1406c-9.10059 6.83984 -20.0801 10.7695 -31.3701 11.3496v16.29c0 4.41992 -3.58008 8 -8 8h-16
-c-4.41992 0 -8 -3.58008 -8 -8v-16.1201c-23.6201 -0.629883 -42.6699 -20.5498 -42.6699 -45.0703c0 -19.9697 12.9893 -37.8096 31.5801 -43.3896l45 -13.5c5.15918 -1.54004 8.76953 -6.78027 8.76953 -12.7295c0 -7.27051 -5.2998 -13.1904 -11.7998 -13.1904h-28.1104
-c-4.55957 0 -8.9502 1.2998 -12.8193 3.71973c-3.24023 2.03027 -7.36035 1.91016 -10.1309 -0.729492l-11.75 -11.21c-3.5293 -3.37012 -3.3291 -9.20996 0.570312 -12.1406c9.10059 -6.83008 20.0801 -10.7695 31.3701 -11.3496v-16.29zM538.01 36.0098
-c13.3604 -30.2598 35.4707 -54.1699 35.7803 -54.5c2.20996 -2.33008 2.82031 -5.72949 1.5498 -8.66992c-1.25 -2.92969 -4.13965 -4.83984 -7.33984 -4.83984c-36.5801 0 -66.9297 12.25 -88.7305 24.9805c-32.1992 -15.7402 -70.2891 -24.9805 -111.27 -24.9805
-c-86.2305 0 -160.2 40.3701 -191.73 97.8799c10.4102 -1.11035 20.9502 -1.87988 31.7305 -1.87988c132.34 0 240 86.1299 240 192c0 6.78027 -0.469727 13.4697 -1.33008 20.0703c75.8398 -23.8701 129.33 -81.1299 129.33 -148.07
-c0 -34.2695 -14.1299 -65.96 -37.9902 -91.9902z" />
-    <glyph glyph-name="cross" unicode="&#xf654;" horiz-adv-x="384" 
-d="M352 320c17.6699 0 32 -14.3301 32 -32v-64c0 -17.6699 -14.3301 -32 -32 -32h-96v-224c0 -17.6699 -14.3301 -32 -32 -32h-64c-17.6699 0 -32 14.3301 -32 32v224h-96c-17.6699 0 -32 14.3301 -32 32v64c0 17.6699 14.3301 32 32 32h96v96c0 17.6699 14.3301 32 32 32
-h64c17.6699 0 32 -14.3301 32 -32v-96h96z" />
-    <glyph glyph-name="dharmachakra" unicode="&#xf655;" 
-d="M495 222.94c9.20996 0.569336 17 -6.74023 17.0098 -15.9707v-29.9395c0 -9.23047 -7.79004 -16.5498 -17 -15.9707l-17.2197 1.08008c-5.28027 -39.4795 -20.7998 -75.6299 -43.8604 -105.83l12.9502 -11.4297c6.91992 -6.09961 7.25977 -16.7803 0.730469 -23.3096
-l-21.1699 -21.1699c-6.52051 -6.52051 -17.2002 -6.19043 -23.3105 0.729492l-11.4297 12.9502c-30.2002 -23.0703 -66.3506 -38.5898 -105.84 -43.8604l1.08008 -17.2197c0.569336 -9.20996 -6.74023 -17 -15.9707 -17h-29.9395c-9.23047 0 -16.5498 7.79004 -15.9707 17
-l1.09082 17.2197c-39.4902 5.28027 -75.6406 20.7998 -105.841 43.8604l-11.4297 -12.9502c-6.09961 -6.91992 -16.7803 -7.25977 -23.3096 -0.729492l-21.1699 21.1699c-6.52051 6.51953 -6.19043 17.1992 0.729492 23.3096l12.9502 11.4297
-c-23.0703 30.1904 -38.5898 66.3408 -43.8604 105.83l-17.2197 -1.08008c-9.20996 -0.569336 -17 6.74023 -17 15.9707v29.9395c0 9.23047 7.79004 16.5498 17 15.9707l17.2197 -1.08008c5.28027 39.4893 20.7998 75.6396 43.8604 105.84l-12.9502 11.4297
-c-6.91992 6.10059 -7.25977 16.7803 -0.729492 23.3105l21.1699 21.1592c6.51953 6.52051 17.1992 6.19043 23.3096 -0.729492l11.4297 -12.9502c30.1904 23.0703 66.3408 38.5898 105.83 43.8604l-1.08008 17.2197c-0.569336 9.20996 6.74023 17 15.9707 17h29.9395
-c9.23047 0 16.5498 -7.79004 15.9707 -17l-1.07031 -17.21c39.4795 -5.28027 75.6299 -20.7998 105.83 -43.8604l11.4297 12.9404c6.10059 6.91992 16.7803 7.25977 23.3105 0.729492l21.1592 -21.1592c6.52051 -6.52051 6.19043 -17.2002 -0.729492 -23.3105
-l-12.9502 -11.4297c23.0703 -30.2002 38.5898 -66.3506 43.8604 -105.84zM281.84 349.39l-4.00977 -64.1201c10.2998 -2.40918 19.8896 -6.50977 28.6201 -11.9492l42.6201 48.29c-19.6006 14.1201 -42.4199 23.71 -67.2305 27.7793zM230.16 349.39
-c-24.8105 -4.06934 -47.6299 -13.6592 -67.2305 -27.7793l42.6201 -48.29c8.73047 5.42969 18.3301 9.54004 28.6201 11.9492zM126.39 285.06c-14.1201 -19.5996 -23.71 -42.4092 -27.7793 -67.2197l64.1201 -4.00977c2.41992 10.29 6.51953 19.8896 11.96 28.6201z
-M98.6104 166.16c4.06934 -24.8105 13.6592 -47.6299 27.7793 -67.2305l48.29 42.6201c-5.42969 8.73047 -9.54004 18.3301 -11.9492 28.6201zM230.16 34.6104l4 64.1201c-10.29 2.41992 -19.8906 6.51953 -28.6201 11.96l-42.6104 -48.3008
-c19.6006 -14.1201 42.4199 -23.71 67.2305 -27.7793zM256 160c17.6699 0 32 14.3301 32 32s-14.3301 32 -32 32s-32 -14.3301 -32 -32s14.3301 -32 32 -32zM281.84 34.6104c24.8105 4.06934 47.6201 13.6592 67.2197 27.7793l-42.6094 48.3008
-c-8.73047 -5.44043 -18.3301 -9.55078 -28.6201 -11.96zM385.61 98.9404c14.1201 19.5898 23.71 42.4092 27.7793 67.2295l-64.1201 4.00977c-2.40918 -10.2998 -6.50977 -19.8896 -11.9492 -28.6201zM349.27 213.83l64.1201 4
-c-4.06934 24.8096 -13.6592 47.6299 -27.7793 67.2295l-48.3008 -42.6094c5.44043 -8.73047 9.55078 -18.3301 11.96 -28.6201z" />
-    <glyph glyph-name="envelope-open-text" unicode="&#xf658;" 
-d="M176 232c-8.83984 0 -16 7.16016 -16 16v16c0 8.83984 7.16016 16 16 16h160c8.83984 0 16 -7.16016 16 -16v-16c0 -8.83984 -7.16016 -16 -16 -16h-160zM160 152v16c0 8.83984 7.16016 16 16 16h160c8.83984 0 16 -7.16016 16 -16v-16c0 -8.83984 -7.16016 -16 -16 -16
-h-160c-8.83984 0 -16 7.16016 -16 16zM256 30.8701c16.4199 0 32.8398 5.07031 46.8604 15.1895l209.14 151.08v-213.14c0 -26.5098 -21.4902 -48 -48 -48h-416c-26.5098 0 -48 21.4902 -48 48v213.14l209.14 -151.08c14.0205 -10.1299 30.4404 -15.1895 46.8604 -15.1895z
-M493.61 285.05c11.6094 -9.09961 18.3896 -23.0303 18.3896 -37.7695v-10.6504l-96 -69.3496v184.72h-320v-184.72l-96 69.3496v10.6504c0.00195312 15.3359 7.17676 28.9824 18.3896 37.7695c8.85059 6.94043 17.2402 13.4805 29.6104 22.8105v44.1396
-c0 26.5098 21.4902 48 48 48h77.5498c3.04004 2.2002 5.87012 4.25977 9.04004 6.55957c16.8203 12.2705 50.21 41.79 73.4102 41.4404c23.2002 0.349609 56.5996 -29.1699 73.4102 -41.4404c3.16992 -2.2998 6 -4.35938 9.04004 -6.55957h77.5498
-c26.5098 0 48 -21.4902 48 -48v-44.1396c12.3701 -9.34082 20.7598 -15.8701 29.6104 -22.8105z" />
-    <glyph glyph-name="folder-minus" unicode="&#xf65d;" 
-d="M464 320c26.5098 0 48 -21.4902 48 -48v-224c0 -26.5098 -21.4902 -48 -48 -48h-416c-26.5098 0 -48 21.4902 -48 48v288c0 26.5098 21.4902 48 48 48h160l64 -64h192zM368 152v16c0 8.83984 -7.16016 16 -16 16h-192c-8.83984 0 -16 -7.16016 -16 -16v-16
-c0 -8.83984 7.16016 -16 16 -16h192c8.83984 0 16 7.16016 16 16z" />
-    <glyph glyph-name="folder-plus" unicode="&#xf65e;" 
-d="M464 320c26.4922 0 48 -21.5078 48 -48v-224c0 -26.4922 -21.5078 -48 -48 -48h-416c-26.4922 0 -48 21.5078 -48 48v288c0 26.4922 21.5078 48 48 48h160l64 -64h192zM359.5 152v16c0 8.83105 -7.16895 16 -16 16h-64v64c0 8.83105 -7.16895 16 -16 16h-16
-c-8.83105 0 -16 -7.16895 -16 -16v-64h-64c-8.83105 0 -16 -7.16895 -16 -16v-16c0 -8.83105 7.16895 -16 16 -16h64v-64c0 -8.83105 7.16895 -16 16 -16h16c8.83105 0 16 7.16895 16 16v64h64c8.83105 0 16 7.16895 16 16z" />
-    <glyph glyph-name="funnel-dollar" unicode="&#xf662;" horiz-adv-x="640" 
-d="M433.46 282.06c-83.4102 -20.8896 -145.46 -96.2695 -145.46 -186.06c0 -54.3496 22.7998 -103.38 59.21 -138.35c-10.75 -20.54 -38.3604 -29.21 -59.2197 -13.5703l-79.9902 60c-10.0703 7.55957 -16 19.4102 -16 32v155.92l-182.66 201.93
-c-19.9502 19.9502 -5.82031 54.0703 22.4004 54.0703h480.52c28.2207 0 42.3506 -34.1201 22.4004 -54.0703zM480 256c88.3701 0 160 -71.6299 160 -160s-71.6299 -160 -160 -160s-160 71.6299 -160 160s71.6299 160 160 160zM496 16.1201
-c23.6299 0.629883 42.6699 20.54 42.6699 45.0703c0 19.9697 -12.9902 37.8096 -31.5801 43.3896l-45 13.5c-5.16016 1.54004 -8.76953 6.78027 -8.76953 12.7295c0 7.27051 5.2998 13.1904 11.7998 13.1904h28.1104c4.55957 0 8.94922 -1.29004 12.8193 -3.71973
-c3.24023 -2.03027 7.36035 -1.91016 10.1299 0.729492l11.75 11.21c3.53027 3.37012 3.33008 9.20996 -0.569336 12.1406c-9.10059 6.83984 -20.0801 10.7695 -31.3701 11.3496v16.29c0 4.41992 -3.58008 8 -8 8h-16c-4.41992 0 -8 -3.58008 -8 -8v-16.1201
-c-23.6201 -0.629883 -42.6699 -20.5498 -42.6699 -45.0703c0 -19.9697 12.9893 -37.8096 31.5801 -43.3896l45 -13.5c5.15918 -1.54004 8.76953 -6.78027 8.76953 -12.7295c0 -7.27051 -5.2998 -13.1904 -11.7998 -13.1904h-28.1104
-c-4.55957 0 -8.9502 1.2998 -12.8193 3.71973c-3.24023 2.03027 -7.36035 1.91016 -10.1309 -0.729492l-11.75 -11.21c-3.5293 -3.37012 -3.3291 -9.20996 0.570312 -12.1406c9.10059 -6.83008 20.0801 -10.7695 31.3701 -11.3496v-16.29c0 -4.41992 3.58008 -8 8 -8h16
-c4.41992 0 8 3.58008 8 8v16.1201z" />
-    <glyph glyph-name="gopuram" unicode="&#xf664;" 
-d="M496 96c8.7998 0 16 -7.2002 16 -16v-128c0 -8.7998 -7.2002 -16 -16 -16h-80v160h-32v128h-32v96h-32v-96h32v-128h32v-160h-80v80c0 8.7998 -7.2002 16 -16 16h-64c-8.7998 0 -16 -7.2002 -16 -16v-80h-80v160h32v128h32v96h-32v-96h-32v-128h-32v-160h-80
-c-8.7998 0 -16 7.2002 -16 16v128c0 8.7998 7.2002 16 16 16h16v112c0 8.7998 7.2002 16 16 16h16v80c0 8.7998 7.2002 16 16 16h16v112c0 8.7998 7.2002 16 16 16s16 -7.2002 16 -16v-16h64v16c0 8.7998 7.2002 16 16 16s16 -7.2002 16 -16v-16h64v16
-c0 8.7998 7.2002 16 16 16s16 -7.2002 16 -16v-16h64v16c0 8.7998 7.2002 16 16 16s16 -7.2002 16 -16v-112h16c8.7998 0 16 -7.2002 16 -16v-80h16c8.7998 0 16 -7.2002 16 -16v-112h16zM232 272v-48h48v48c0 8.7998 -7.2002 16 -16 16h-16c-8.7998 0 -16 -7.2002 -16 -16z
-M288 96v64c0 8.7998 -7.2002 16 -16 16h-32c-8.7998 0 -16 -7.2002 -16 -16v-64h64z" />
-    <glyph glyph-name="hamsa" unicode="&#xf665;" 
-d="M509.34 140.75c1.70117 -3.9043 2.65918 -8.24805 2.65918 -12.7764c0 -8.42383 -3.26562 -16.0908 -8.59863 -21.8037l-102.681 -110.03c-35.6895 -38.2197 -88.4102 -60.1396 -144.72 -60.1396s-109.03 21.9199 -144.71 60.1396l-102.69 110.03
-c-5.33301 5.71289 -8.58398 13.4141 -8.58398 21.8379c0 4.52832 0.943359 8.83789 2.64453 12.7422c5.05957 11.6904 16.5898 19.25 29.3398 19.25h64v208c0 22 18 40 40 40s40 -18 40 -40v-134c0 -5.51953 4.48047 -10 10 -10h20c5.51953 0 10 4.48047 10 10v174
-c0 22 18 40 40 40s40 -18 40 -40v-174c0 -5.51953 4.48047 -10 10 -10h20c5.51953 0 10 4.48047 10 10v134c0 22 18 40 40 40s40 -18 40 -40v-208h64c12.75 0 24.2803 -7.55957 29.3398 -19.25zM256 32c53.0195 0 96 64 96 64s-42.9805 64 -96 64s-96 -64 -96 -64
-s42.9805 -64 96 -64zM256 128c17.6699 0 32 -14.3301 32 -32s-14.3301 -32 -32 -32s-32 14.3301 -32 32s14.3301 32 32 32z" />
-    <glyph glyph-name="bahai" unicode="&#xf666;" 
-d="M496.25 245.48c17.54 -2.46094 21.6797 -26.2705 6.04004 -34.6602l-98.1602 -52.6602l74.4805 -83.54c11.8594 -13.29 0.00976562 -34.25 -17.3506 -30.4902l-108.569 23.6504l4.10938 -112.55c0.430664 -11.6504 -8.87012 -19.2207 -18.4102 -19.2207
-c-5.15918 0 -10.3896 2.20996 -14.1992 7.18066l-68.1807 88.8994l-68.1797 -88.8994c-3.81055 -4.9707 -9.0498 -7.18066 -14.2002 -7.18066c-9.54004 0 -18.8398 7.57031 -18.4102 19.2207l4.11035 112.55l-108.57 -23.6504
-c-1.39941 -0.30957 -2.75977 -0.450195 -4.06934 -0.450195c-15.0107 0 -24.21 18.6807 -13.29 30.9307l74.4795 83.54l-98.1602 52.6592c-15.6494 8.40039 -11.5098 32.21 6.03027 34.6709l110 15.4297l-41.8203 104.34c-6.66016 16.6396 11.6006 32.1797 26.5898 22.6299
-l94.04 -59.8896l34.0908 107.189c2.70996 8.55078 10.0293 12.8203 17.3496 12.8203s14.6396 -4.26953 17.3496 -12.8203l34.0908 -107.18l94.04 59.8896c14.9893 9.55078 33.2598 -5.98926 26.5898 -22.6299l-41.8203 -104.34zM338.51 136.32l-35.6094 39.9297
-l46.9199 25.1699l-52.5703 7.37988l19.9902 49.8701l-44.9502 -28.6201l-16.29 51.2305l-16.3096 -51.2305l-44.9502 28.6201l19.9902 -49.8701l-52.5703 -7.37988l46.9199 -25.1699l-35.5996 -39.9297l51.8896 11.2998l-1.95996 -53.79l32.5898 42.4902l32.5898 -42.4902
-l-1.96973 53.79z" />
-    <glyph glyph-name="jedi" unicode="&#xf669;" horiz-adv-x="576" 
-d="M535.953 96c-42.6406 -94.1719 -137.641 -160 -247.984 -160c-4.26562 0 -8.54688 0.0986328 -12.8447 0.296875c-103.969 4.76562 -193.859 69.4688 -235.109 159.703h39.9219l-58.6094 58.5938c-2.65332 12.8242 -4.38672 25.9951 -5.10938 39.4219
-c-0.133789 3.5166 -0.202148 7.05078 -0.202148 10.5996c0 6.65527 0.234375 12.8477 0.702148 19.3848h47.2188l-41.3906 41.375c14.7842 66.6123 53.959 124.015 107.969 162.078c2.61426 1.87109 5.82812 2.98535 9.28125 3
-c5.62793 -0.03125 10.5791 -2.89355 13.5 -7.25c1.76367 -2.57422 2.7959 -5.68848 2.7959 -9.04199c0 -2.13086 -0.414062 -4.19141 -1.1709 -6.05176c-6.31445 -15.834 -9.84375 -33.1904 -9.84375 -51.2656c0 -45.1094 21.0469 -86.5781 57.7188 -113.734
-c4.07324 -2.96484 6.72266 -7.76855 6.72266 -13.1865c0 -4.86133 -2.13965 -9.2168 -5.51953 -12.2041c-26.5469 -23.9844 -41.1719 -56.5 -41.1719 -91.5781c0 -60.0312 42.9531 -110.281 99.8906 -121.922l2.5 65.2656l-27.1562 -18.4844
-c-1.29688 -0.832031 -2.83887 -1.31445 -4.49219 -1.31445c-2.10352 0 -4.04004 0.777344 -5.50781 2.06445c-1.55078 1.46387 -2.51953 3.53809 -2.51953 5.83691c0 1.49414 0.416992 2.90234 1.12891 4.10059l20.125 33.7656l-42.0625 8.73438
-c-3.64062 0.744141 -6.38379 3.96777 -6.38379 7.82812s2.74316 7.08398 6.38379 7.82812l42.0625 8.71875l-20.1094 33.7344c-0.724609 1.20312 -1.1416 2.61133 -1.1416 4.11719c0 4.41016 3.58105 7.99121 7.99121 7.99121c1.67188 0 3.22656 -0.510742 4.50977 -1.38965
-l30.3906 -20.6562l11.5166 287.969c0.15918 4.25879 3.66797 7.66699 7.96484 7.66699c0.0117188 0 0.0234375 0.00488281 0.0351562 0.00488281h0.046875c4.29004 -0.0332031 7.78418 -3.44629 7.95312 -7.70312l11.5312 -287.922l30.3906 20.6719
-c1.28223 0.855469 2.82227 1.35449 4.47852 1.35449c2.12793 0 4.07715 -0.820312 5.52148 -2.16699c1.54785 -1.45898 2.51465 -3.52832 2.51465 -5.82129c0 -1.48828 -0.415039 -2.89062 -1.12402 -4.08496l-20.1406 -33.7656l42.0781 -8.73438
-c3.63379 -0.750977 6.36914 -3.97266 6.36914 -7.82812s-2.73535 -7.07715 -6.36914 -7.82812l-42.0781 -8.71875l20.1094 -33.7344c0.730469 -1.20508 1.15039 -2.61719 1.15039 -4.12793c0 -2.27637 -0.947266 -4.33984 -2.47852 -5.79395
-c-1.46484 -1.32227 -3.4043 -2.12793 -5.53125 -2.12793c-1.6543 0 -3.20801 0.492188 -4.5 1.33105l-27.1719 18.4688l2.5 -65.3438c48.4844 9.40625 87.5781 48.1562 97.3125 96.5c1.68066 8.11816 2.56445 16.5254 2.56445 25.1387
-c0 36.5547 -15.8574 69.3145 -41.127 91.9395c-3.38867 2.98926 -5.52734 7.3623 -5.52734 12.2314c0 5.42578 2.64844 10.2256 6.73047 13.1904c36.6562 27.1719 57.6875 68.6094 57.6875 113.734v0.0859375c0 18.0664 -3.53613 35.4062 -9.85938 51.2266
-c-0.763672 1.86523 -1.18555 3.90625 -1.18555 6.0459c0 3.34668 1.0332 6.47949 2.79492 9.04785c2.9248 4.35059 7.875 7.20605 13.5 7.23438c3.44043 -0.0136719 6.64355 -1.12305 9.25 -2.98438c53.9287 -38.2227 93.0518 -95.6611 107.906 -162.281l-41.25 -41.2344
-h46.9531c0.359375 -5.76562 1.04688 -11.4531 1.04688 -17.2656c-0.0332031 -17.8086 -1.7959 -35.0137 -5.125 -51.8594l-58.8906 -58.875h39.9688z" />
-    <glyph glyph-name="journal-whills" unicode="&#xf66a;" horiz-adv-x="448" 
-d="M438.406 70.4062c-3.20312 -12.8125 -3.20312 -57.6094 0 -73.6094c6.39062 -6.39062 9.58887 -12.792 9.59375 -19.2031v-16c0 -16 -12.7969 -25.5938 -25.5938 -25.5938h-326.406c-54.4062 0 -96 41.5938 -96 96v320c0 54.4062 41.5938 96 96 96h326.406
-c16 0 25.5938 -9.59375 25.5938 -25.5938v-332.812c0 -9.59375 -3.19824 -15.9893 -9.59375 -19.1875zM380.797 64h-284.797c-16 0 -32 -12.7969 -32 -32s12.7969 -32 32 -32h284.797v64zM128.016 271.984c0 -0.515625 0.140625 -0.984375 0.140625 -1.5l37.1094 -32.4688
-c1.67383 -1.4668 2.73047 -3.62012 2.73047 -6.01758c0 -4.41309 -3.58398 -7.99414 -7.99609 -7.99805h-0.015625c-1.97363 0.0996094 -3.79785 0.828125 -5.25 1.98438l-23.5938 20.6406c11.5469 -49.5781 55.7656 -86.625 108.859 -86.625
-s97.3125 37.0469 108.875 86.625l-23.5938 -20.6406c-1.40918 -1.22461 -3.25391 -1.96875 -5.26562 -1.96875h-0.015625c-2.34766 0.129883 -4.46777 1.14551 -6.01562 2.71875c-1.1543 1.45996 -1.88184 3.28809 -1.98438 5.26562
-c0.128906 2.35059 1.15137 4.47266 2.73438 6.01562l37.1094 32.4688c0.015625 0.53125 0.15625 1 0.15625 1.51562c0 11.0469 -2.09375 21.5156 -5.0625 31.5938l-21.2656 -21.25c-1.44922 -1.4502 -3.45117 -2.34863 -5.66211 -2.34863
-c-4.41797 0 -8.00488 3.58691 -8.00488 8.00488c0 2.20605 0.892578 4.20801 2.33887 5.65625l26.4219 26.4062c-10.0342 20.8945 -26.1904 38.0244 -46.3594 49.2656c6.05371 -9.67676 9.55469 -21.1123 9.55469 -33.3584c0 -19.916 -9.17383 -37.7295 -23.6172 -49.2822
-c9.69336 -10.0459 15.6592 -23.7119 15.6592 -38.7598c0 -26.875 -19.0703 -49.3535 -44.3779 -54.6621l-1.42188 34.2812l12.6719 -8.625c0.635742 -0.432617 1.40234 -0.685547 2.22852 -0.685547c0.00585938 0 0.015625 -0.00195312 0.0214844 -0.00195312h0.0263672
-c2.19727 0 3.98047 1.7832 3.98047 3.98047c0 0.748047 -0.209961 1.45215 -0.569336 2.05078l-8.53125 14.3125l17.9062 3.71875c1.81738 0.379883 3.18457 1.99219 3.18457 3.92188s-1.36719 3.54199 -3.18457 3.92188l-17.9062 3.71875l8.53125 14.3125
-c0.359375 0.598633 0.566406 1.29883 0.566406 2.04688c0 2.19629 -1.7832 3.98047 -3.98047 3.98047c-0.00878906 0 -0.0146484 0.00390625 -0.0234375 0.00390625c-0.817383 -0.0322266 -1.58984 -0.275391 -2.25 -0.671875l-14.1875 -9.65625l-4.6875 112.297
-c-0.09375 2.12695 -1.84961 3.8252 -4 3.8252s-3.90625 -1.69824 -4 -3.8252l-4.625 -110.812l-12 8.15625c-0.639648 0.43457 -1.41211 0.688477 -2.24316 0.688477c-2.20996 0 -4.00293 -1.79395 -4.00293 -4.00391c0 -0.745117 0.203125 -1.44629 0.558594 -2.04395
-l8.53125 -14.3125l-17.9062 -3.71875c-1.81738 -0.375977 -3.18457 -1.98633 -3.18457 -3.91406s1.36719 -3.53809 3.18457 -3.91406l17.9062 -3.73438l-8.53125 -14.2969c-0.330078 -0.611328 -0.532227 -1.31152 -0.5625 -2.04688
-c0.0615234 -1.12109 0.525391 -2.14062 1.25 -2.90625c0.717773 -0.677734 1.68652 -1.09277 2.75 -1.09375c0.830078 0.00390625 1.60645 0.257812 2.25 0.6875l10.3594 7.04688l-1.35938 -32.7188c-25.3086 5.31836 -44.335 27.79 -44.335 54.6709
-c0 15.0518 5.92285 28.7324 15.6162 38.7822c-14.4434 11.5508 -23.7012 29.3193 -23.7012 49.2334c0 12.2559 3.59082 23.7412 9.6543 33.4229c-20.1709 -11.2451 -36.3311 -28.374 -46.375 -49.2656l26.4219 -26.4219c1.43945 -1.44727 2.33008 -3.44043 2.33008 -5.64062
-c0 -4.41504 -3.58496 -8 -7.99902 -8c-2.2002 0 -4.19629 0.888672 -5.64355 2.32812l-21.2656 21.2656c-2.98438 -10.0938 -5.07812 -20.5625 -5.0625 -31.625z" />
-    <glyph glyph-name="kaaba" unicode="&#xf66b;" horiz-adv-x="576" 
-d="M554.12 364.49c13.0703 -4.36035 21.8799 -16.5898 21.8799 -30.3604v-49.0098l-265 79.5098c-15.0596 4.5 -30.9502 4.5 -45.9805 0l-265.02 -79.5098v49.0098c0.000976562 14.1279 9.16992 26.1211 21.8799 30.3604l235.771 78.5801
-c9.53711 3.17969 19.7705 4.90234 30.3711 4.90234c10.5996 0 20.8008 -1.72266 30.3389 -4.90234zM274.22 333.97c9 2.7207 18.5498 2.7207 27.5898 0l274.2 -82.2598v-228.39c0 -15 -10.4199 -27.9902 -25.0596 -31.2402l-242.12 -53.7998
-c-6.72461 -1.49512 -13.5928 -2.28418 -20.7646 -2.28418s-14.1611 0.789062 -20.8857 2.28418l-242.12 53.7998c-14.6396 3.25977 -25.0596 16.2402 -25.0596 31.2402v228.38zM128 217.89v16.5801c0 5.28027 -5.01953 9.11035 -10.1104 7.7207l-80 -21.8203
-c-3.47949 -0.950195 -5.88965 -4.11035 -5.88965 -7.71973v-16.5801c0 -5.27051 5.01953 -9.10059 10.1104 -7.7207l80 21.8203c3.47949 0.950195 5.88965 4.11035 5.88965 7.71973zM272 257.17v16.5801c0 5.28027 -5.01953 9.11035 -10.1104 7.71973l-96 -26.1797
-c-3.47949 -0.950195 -5.88965 -4.11035 -5.88965 -7.71973v-16.5801c0 -5.28027 5.01953 -9.11035 10.1104 -7.7207l96 26.1807c3.47949 0.950195 5.88965 4.10938 5.88965 7.71973zM448 234.47v-16.5801c0 -0.00195312 0.00195312 -0.00195312 0.00195312 -0.00390625
-c0 -3.68359 2.49609 -6.78906 5.8877 -7.71582l80 -21.8203c5.09082 -1.38965 10.1104 2.44043 10.1104 7.7207v16.5801c0 3.60938 -2.41016 6.76953 -5.88965 7.71973l-80 21.8203c-5.09082 1.38965 -10.1104 -2.44043 -10.1104 -7.7207zM304 273.74v-16.5801
-c0 -0.00195312 0.00195312 -0.00292969 0.00195312 -0.00488281c0 -3.68359 2.49609 -6.78906 5.8877 -7.71484l96 -26.1807c5.09082 -1.38965 10.1104 2.44043 10.1104 7.7207v16.5791c0 3.61035 -2.41016 6.77051 -5.88965 7.7207l-96 26.1797
-c-5.09082 1.38965 -10.1104 -2.44043 -10.1104 -7.71973z" />
-    <glyph glyph-name="khanda" unicode="&#xf66d;" 
-d="M415.81 382c73.71 -40.2402 111.78 -123.85 90.1602 -207.51c-7.25 -28.0898 -22.3799 -53.5703 -41.25 -75.5898l-52.5098 -61.3105c-4.87012 -5.67969 -13.04 -7.22949 -19.6504 -3.70996l-79.3496 42.2305l-29.21 -20.3408l47.0801 -32.7793
-c1.66992 0.370117 3.22949 1.00977 5.00977 1.00977c13.25 0 23.9902 -10.7402 23.9902 -24c0 -13.25 -10.7402 -24 -23.9902 -24c-12.0898 0 -21.6797 9.11035 -23.3301 20.7598l-40.9102 28.4805v-30.1504c9.38086 -5.58008 15.9902 -15.3896 15.9902 -27.0996
-c0 -17.6699 -14.3203 -32 -31.9795 -32c-17.6602 0 -31.9805 14.3301 -31.9805 32c0 11.7197 6.60059 21.5293 15.9902 27.0996v29.9502l-40.6299 -28.2803c-1.64062 -11.6494 -11.2305 -20.7598 -23.3301 -20.7598c-13.25 0 -23.9902 10.75 -23.9902 24
-c0 13.2598 10.7402 24 23.9902 24c1.78027 0 3.33984 -0.639648 5.00977 -1.00977l47.0801 32.7793l-29.21 20.3301l-79.3496 -42.2295c-6.61035 -3.52051 -14.7803 -1.96973 -19.6504 3.71973l-55.9697 65.3604c-12.5703 14.6797 -23.3906 31.0693 -30.46 49.0596
-c-35.6602 90.6904 2.95996 186.391 81.4893 229.24c6.34082 3.5 15.0205 2.63965 20.0205 -2.7002c4.99023 -5.30957 6.45996 -12.9199 2.58984 -19.0801c-16.4902 -26.1602 -25.2002 -56.3896 -25.2002 -87.4697c0.180664 -53.1904 26.7598 -102.62 71.0303 -132.18
-l76.5898 -53.3301v19.8994l-44.0498 36.0908c-3.91016 4.20996 -5 10.0996 -2.81055 15.2793l7.85059 17.2402c-33.8506 19.2598 -56.9404 55.2402 -56.9404 96.9902c0 40.79 22.0205 76.1396 54.5898 95.7197l-5.21973 11.4404
-c-2.33008 5.5293 -0.929688 11.8301 3.57031 16.04l58.9902 52.8096l58.9893 -52.8203c4.5 -4.20996 5.91016 -10.5098 3.57031 -16.04l-5.21973 -11.4395c32.5693 -19.5801 54.5898 -54.9199 54.5898 -95.71c0 -41.7402 -23.0996 -77.7305 -56.9404 -96.9902
-l7.85059 -17.2402c2.18945 -5.18945 1.10938 -11.0801 -2.81055 -15.2793l-44.0498 -36.0908v-20.0996l76.6299 53.3496c44.5 29.7207 71.0801 79.1602 71.2705 132.41c0 31.0205 -8.70996 61.25 -25.2002 87.4102c-1.55762 2.46582 -2.46973 5.40723 -2.46973 8.53613
-c0 4.25293 1.66602 8.12012 4.37988 10.9844c4.99023 5.34961 12.9902 6.51953 19.3594 3.01953zM319.82 272c0 21.3203 -10.5801 40.1201 -26.6504 51.7695l-7.83008 -17.1797c-8.75 -24.5195 -8.75 -51.04 0 -75.5596l5.65039 -12.4102
-c17.3398 11.46 28.8301 31.0801 28.8301 53.3799zM191.89 272c0 -22.2998 11.5 -41.9297 28.8408 -53.3896l5.64941 12.4092c8.75 24.5303 8.75 51.04 0 75.5605l-7.83008 17.1797c-16.0801 -11.6396 -26.6602 -30.4395 -26.6602 -51.7598z" />
-    <glyph glyph-name="landmark" unicode="&#xf66f;" 
-d="M501.62 355.89c6.24023 -2.33984 10.3799 -8.30957 10.3799 -14.9795v-36.9102c0 -8.83984 -7.16016 -16 -16 -16h-480c-8.83984 0 -16 7.16016 -16 16v36.9102c0.000976562 6.85547 4.31445 12.7041 10.3799 14.9795l234.39 90.0703
-c3.49219 1.31152 7.30176 2.02832 11.25 2.02832c3.94727 0 7.72852 -0.716797 11.2207 -2.02832zM64 256h64v-160h96v160h64v-160h96v160h64v-160h16c8.83984 0 16 -7.16016 16 -16v-48h-448v48c0 8.83984 7.16016 16 16 16h16v160zM496 0c8.83984 0 16 -7.16016 16 -16
-v-32c0 -8.83984 -7.16016 -16 -16 -16h-480c-8.83984 0 -16 7.16016 -16 16v32c0 8.83984 7.16016 16 16 16h480z" />
-    <glyph glyph-name="mail-bulk" unicode="&#xf674;" horiz-adv-x="576" 
-d="M160 0c25.5996 0 51.2002 22.4004 64 32c64 44.7998 83.2002 60.7998 96 70.4004v-134.4c0 -17.6699 -14.3301 -32 -32 -32h-256c-17.6699 0 -32 14.3301 -32 32v134.4c12.7998 -9.60059 32 -25.6006 96 -70.4004c12.7998 -9.59961 38.4004 -32 64 -32zM288 192
-c17.6699 0 32 -14.3301 32 -32v-19.2002c-25.5996 -19.2002 -22.4004 -19.2002 -115.2 -86.3994c-9.59961 -3.2002 -28.7998 -22.4004 -44.7998 -22.4004s-35.2002 19.2002 -44.7998 25.5996c-92.7998 67.2002 -89.6006 67.2002 -115.2 86.4004v16
-c0 17.6699 14.3301 32 32 32h256zM544 288c17.6699 0 32 -14.3301 32 -32v-192c0 -17.6699 -14.3301 -32 -32 -32h-192v134.4l-0.290039 -0.220703c-3.12012 32.4004 -30.5 57.8203 -63.71 57.8203h-96v32c0 17.6699 14.3301 32 32 32h320zM512 160v64h-64v-64h64zM160 256
-v-32h-96v192c0 17.6699 14.3301 32 32 32h320c17.6699 0 32 -14.3301 32 -32v-96h-224c-35.29 0 -64 -28.71 -64 -64z" />
-    <glyph glyph-name="menorah" unicode="&#xf676;" horiz-adv-x="640" 
-d="M144 320c8.83984 0 16 -7.16016 16 -16v-144h-64v144c0 8.83984 7.16016 16 16 16h32zM240 320c8.83984 0 16 -7.16016 16 -16v-144h-64v144c0 8.83984 7.16016 16 16 16h32zM432 320c8.83984 0 16 -7.16016 16 -16v-144h-64v144c0 8.83984 7.16016 16 16 16h32zM528 320
-c8.83984 0 16 -7.16016 16 -16v-144h-64v144c0 8.83984 7.16016 16 16 16h32zM608 352c-17.6699 0 -32 14.3301 -32 32s32 64 32 64s32 -46.3301 32 -64s-14.3301 -32 -32 -32zM512 352c-17.6699 0 -32 14.3301 -32 32s32 64 32 64s32 -46.3301 32 -64s-14.3301 -32 -32 -32
-zM416 352c-17.6699 0 -32 14.3301 -32 32s32 64 32 64s32 -46.3301 32 -64s-14.3301 -32 -32 -32zM320 352c-17.6699 0 -32 14.3301 -32 32s32 64 32 64s32 -46.3301 32 -64s-14.3301 -32 -32 -32zM224 352c-17.6699 0 -32 14.3301 -32 32s32 64 32 64s32 -46.3301 32 -64
-s-14.3301 -32 -32 -32zM128 352c-17.6699 0 -32 14.3301 -32 32s32 64 32 64s32 -46.3301 32 -64s-14.3301 -32 -32 -32zM32 352c-17.6699 0 -32 14.3301 -32 32s32 64 32 64s32 -46.3301 32 -64s-14.3301 -32 -32 -32zM576 160v144c0 8.83984 7.16016 16 16 16h32
-c8.83984 0 16 -7.16016 16 -16v-144c0 -53.0195 -42.9805 -96 -96 -96h-192v-64h176c8.83984 0 16 -7.16016 16 -16v-32c0 -8.83984 -7.16016 -16 -16 -16h-416c-8.83984 0 -16 7.16016 -16 16v32c0 8.83984 7.16016 16 16 16h176v64h-192c-53.0195 0 -96 42.9805 -96 96
-v144c0 8.83984 7.16016 16 16 16h32c8.83984 0 16 -7.16016 16 -16v-144c0 -17.6699 14.3301 -32 32 -32h192v176c0 8.83984 7.16016 16 16 16h32c8.83984 0 16 -7.16016 16 -16v-176h192c17.6699 0 32 14.3301 32 32z" />
-    <glyph glyph-name="mosque" unicode="&#xf678;" horiz-adv-x="640" 
-d="M0 -32v320h128v-320c0 -17.6699 -14.3301 -32 -32 -32h-64c-17.6699 0 -32 14.3301 -32 32zM579.16 160h-358.32c-17.8594 17.3896 -28.8398 37.3398 -28.8398 58.9102c0 52.8594 41.79 93.79 87.9199 122.899c41.9502 26.46 80.6299 57.7705 111.96 96.2207
-l8.12012 9.96973l8.12012 -9.96973c31.3301 -38.4502 70.0195 -69.75 111.96 -96.2207c46.1299 -29.1094 87.9199 -70.04 87.9199 -122.899c0 -21.5703 -10.9805 -41.5205 -28.8398 -58.9102zM608 128c17.6699 0 32 -14.3301 32 -32v-128c0 -17.6699 -14.3301 -32 -32 -32
-h-32v64c0 17.6699 -14.3301 32 -32 32s-32 -14.3301 -32 -32v-64h-64v72c0 48 -48 72 -48 72s-48 -24 -48 -72v-72h-64v64c0 17.6699 -14.3301 32 -32 32s-32 -14.3301 -32 -32v-64h-32c-17.6699 0 -32 14.3301 -32 32v128c0 17.6699 14.3301 32 32 32h416zM64 448
-c0 0 64 -32 64 -96v-32h-128v32c0 64 64 96 64 96z" />
-    <glyph glyph-name="om" unicode="&#xf679;" 
-d="M360.6 387.06l-21.5801 21.5605c-1.89062 1.88867 -3.06055 4.50098 -3.06055 7.38086c0 2.88086 1.16992 5.49023 3.06055 7.37891l21.5703 21.5605c4.08008 4.06934 10.6797 4.06934 14.7598 0l21.5801 -21.5605c1.8916 -1.88867 3.06152 -4.50098 3.06152 -7.38086
-c0 -2.88086 -1.16992 -5.49023 -3.06152 -7.37891l-21.5693 -21.5605c-1.88867 -1.89062 -4.50098 -3.06055 -7.38184 -3.06055s-5.49023 1.16992 -7.37891 3.06055zM412.11 256c55.0898 0 99.8896 -44.7998 99.8896 -99.8799v-100.12c0 -48.5303 -47.4805 -88 -96.0195 -88
-c-96.0205 0 -96.0205 64 -96.0205 64v37.8701c0 7.55957 9.42969 10.8896 14.2002 5.01953c15.1494 -18.6494 42.4199 -42.8896 81.8203 -42.8896c13.2393 0 32.0098 10.7695 32.0098 24v100.12c0 19.79 -16.1006 35.8799 -35.8799 35.8799
-c-9.60059 0 -18.6006 -3.73047 -25.3799 -10.5l-24.25 -24.25c-18.8701 -18.8604 -43.9502 -29.25 -70.6406 -29.25h-21.6895c11.0293 -18.9004 17.8096 -40.5801 17.8096 -64c0 -70.5801 -57.4297 -128 -128.02 -128c-118.811 0 -160.03 96 -159.94 150.81
-c0.0195312 8.80078 10.2598 12.7705 14.79 5.2207c22.7998 -38.0107 49.1299 -92.0303 145.15 -92.0303c35.2998 0 64.0098 28.7002 64.0098 64s-28.71 64 -64.0098 64h-33.0303c-5.57031 0.450195 -10.6406 3.49023 -13.1699 8.5498l-16.0898 32.1699
-c-5.35059 10.7002 2.42969 23.2803 14.3896 23.2803h31.9004c26.4697 0 48.0098 21.5303 48.0098 48s-21.54 48 -48.0098 48c-11.25 0 -21.8203 -3.80957 -30.2705 -10.71c-5.54004 -4.53027 -13.4795 -4.50977 -19.2002 -0.209961l-26.1494 19.6299
-c-8.08984 6.08008 -8.48047 17.9697 -1.12012 24.9297c25.1094 23.7402 59.8594 34.71 96.0098 28.7803c43.1602 -7.08008 79.4199 -40.6396 89.5205 -83.1895c6.43945 -27.1201 2.80957 -53.1309 -7.73047 -75.2305h46.8398c9.60059 0 18.6006 3.73047 25.3799 10.5
-l24.25 24.25c18.8701 18.8604 43.9502 29.25 70.6406 29.25zM454.29 380.73c10.5596 7.95996 25.7002 0.489258 25.7002 -12.7305v-35.5195c0 -2.36035 -0.509766 -4.71094 -1.53027 -6.83008c-2.96973 -6.30078 -21.8301 -37.6602 -101.75 -37.6602
-c-78.4297 0 -117.19 69.3896 -118.8 72.3398c-3.61035 6.62988 -2.08008 14.8799 3.66016 19.7998c5.69922 4.92969 14.1201 5.16992 20.1396 0.549805c3.53027 -2.69922 87.0303 -65.0693 172.58 0.0507812z" />
-    <glyph glyph-name="pastafarianism" unicode="&#xf67b;" horiz-adv-x="640" 
-d="M624.54 100.33c12.4004 -4.71973 18.5996 -18.5801 13.8896 -30.9805c-4.69922 -12.4092 -18.5801 -18.6299 -30.9697 -13.8799c-8.11035 3.08984 -14.3398 0.19043 -31.3896 -11.3594c-13.5508 -9.15039 -30.8301 -20.8408 -52.4199 -20.8408
-c-7.16992 0 -14.8301 1.28027 -22.9707 4.39062c-32.6602 12.4395 -39.9893 41.3301 -45.3301 62.4395c-2.20996 8.7207 -3.98926 14.4902 -5.94922 18.8701c-16.6201 -13.5996 -36.9307 -25.8701 -61.6201 -34.1602c10.0098 -37 32.2793 -90.8096 60.2197 -90.8096
-c13.25 0 24 -10.75 24 -24s-10.75 -24 -24 -24c-66.7402 0 -97.0498 88.6299 -107.42 129.14c-6.69043 -0.599609 -13.4199 -1.13965 -20.5801 -1.13965s-13.8896 0.540039 -20.5801 1.13965c-10.3701 -40.5098 -40.6797 -129.14 -107.42 -129.14c-13.25 0 -24 10.75 -24 24
-s10.75 24 24 24c28.0801 0 50.2998 53.7998 60.2598 90.7998c-24.6895 8.29004 -45.0195 20.5605 -61.6396 34.1699c-1.95996 -4.37988 -3.74023 -10.1494 -5.9502 -18.8701c-5.34961 -21.1094 -12.6699 -50 -45.3301 -62.4395
-c-8.13965 -3.11035 -15.7998 -4.39062 -22.9697 -4.39062c-21.5898 -0.0195312 -38.8701 11.6807 -52.4199 20.8408c-17.0498 11.5498 -23.2305 14.4492 -31.3906 11.3594c-12.3594 -4.72949 -26.25 1.4707 -30.9697 13.8799
-c-4.71973 12.3906 1.48047 26.25 13.8701 30.9707c32.6504 12.4697 57.3398 -4.25 75.3701 -16.4502c17.0801 -11.5303 23.2998 -14.4199 31.4102 -11.3604c8.12012 3.10059 10.8301 9.37988 15.8896 29.3799c3.33008 13.1504 7.44043 29.3203 17.9502 42.6504
-c-2.24023 2.91016 -4.42969 5.78027 -6.37988 8.57031c-10.1699 -9.56055 -23.4102 -17.1104 -41.7002 -17.1104c-33.9502 0 -50.8701 25.7803 -62.0596 42.8301c-10.6006 16.1396 -15 21.1699 -21.9404 21.1699c-13.25 0 -24 10.75 -24 24s10.75 24 24 24
-c33.96 0 50.8799 -25.7803 62.0596 -42.8301c10.6006 -16.1396 15 -21.1699 21.9404 -21.1699c17.1504 0 37.6797 61.5596 97.2695 101.9l-17.25 34.5c-33.46 2.09961 -60.0195 29.6191 -60.0195 63.5996c0 35.3496 28.6504 64 64 64s64 -28.6504 64 -64
-c0 -13.0195 -3.94043 -25.0996 -10.5996 -35.21l18.1494 -36.2998c16.9697 4.59961 35.6006 7.50977 56.46 7.50977c20.8604 0 39.4805 -2.91016 56.46 -7.50977l18.1504 36.2998c-6.67969 10.1104 -10.6201 22.1904 -10.6201 35.21c0 35.3496 28.6504 64 64 64
-s64 -28.6504 64 -64c0 -33.9805 -26.5703 -61.5 -60.0098 -63.5898l-17.25 -34.5c59.7793 -40.4805 79.9502 -101.91 97.2598 -101.91c6.94043 0 11.3398 5.03027 21.9404 21.1699c11.1895 17.0498 28.1094 42.8301 62.0596 42.8301c13.25 0 24 -10.75 24 -24
-s-10.75 -24 -24 -24c-6.94043 0 -11.3496 -5.03027 -21.9404 -21.1699c-11.1895 -17.0498 -28.1094 -42.8301 -62.0596 -42.8301c-18.29 0 -31.5303 7.5498 -41.7002 17.1201c-1.9502 -2.78027 -4.13965 -5.66016 -6.37988 -8.57031
-c10.5098 -13.3301 14.6201 -29.5 17.9502 -42.6494c5.05957 -20 7.76953 -26.29 15.8896 -29.3809c8.16016 -3.05957 14.3506 -0.169922 31.4102 11.3604c18.0098 12.2002 42.6699 28.9697 75.3701 16.4502zM448 400c-8.82031 0 -16 -7.17969 -16 -16s7.17969 -16 16 -16
-s16 7.17969 16 16s-7.17969 16 -16 16zM192 400c-8.82031 0 -16 -7.17969 -16 -16s7.17969 -16 16 -16s16 7.17969 16 16s-7.17969 16 -16 16z" />
-    <glyph glyph-name="peace" unicode="&#xf67c;" horiz-adv-x="496" 
-d="M248 440c136.97 0 248 -111.03 248 -248s-111.03 -248 -248 -248s-248 111.03 -248 248s111.03 248 248 248zM432 192c0 90.5303 -65.7695 165.82 -152 181.03v-165.66l129.43 -103.54c14.3701 26.2002 22.5703 56.2402 22.5703 88.1699zM216 10.9697v114.46
-l-89.29 -71.4395c24.7998 -21.8203 55.4297 -37.0498 89.29 -43.0205zM280 125.43v-114.449c33.8604 5.96973 64.4902 21.1992 89.29 43.0195zM216 373.03c-86.2305 -15.21 -152 -90.5 -152 -181.03c0 -31.9297 8.2002 -61.9697 22.5703 -88.1699l129.43 103.54v165.66z" />
-    <glyph glyph-name="place-of-worship" unicode="&#xf67f;" horiz-adv-x="640" 
-d="M620.61 81.4502c11.4111 -4.89258 19.3896 -16.2168 19.3896 -29.4102v-100.04c0 -8.83984 -7.16016 -16 -16 -16h-112v192zM0 52.04c0 13.1934 7.97852 24.5176 19.3896 29.4102l108.61 46.5498v-192h-112c-8.83984 0 -16 7.16016 -16 16v100.04zM464.46 201.32
-c9.63965 -5.78027 15.54 -16.2002 15.54 -27.4404v-237.88h-96v96c0 35.3496 -28.6602 64 -64 64s-64 -28.6504 -64 -64v-96h-96v237.88c0 11.6572 6.21387 21.8467 15.54 27.4404l48.46 29.0801v114.97c0 8.49023 3.37988 16.6299 9.37988 22.6299l75.3105 75.3096
-c6.23926 6.25 16.3691 6.25 22.6191 0l75.3105 -75.3096c6.00977 -6.00977 9.37988 -14.1396 9.37988 -22.6299v-114.97z" />
-    <glyph glyph-name="poll" unicode="&#xf681;" horiz-adv-x="448" 
-d="M400 416c26.5 0 48 -21.5 48 -48v-352c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h352zM160 80v128c0 8.83984 -7.16016 16 -16 16h-32c-8.83984 0 -16 -7.16016 -16 -16v-128c0 -8.83984 7.16016 -16 16 -16h32
-c8.83984 0 16 7.16016 16 16zM256 80v224c0 8.83984 -7.16016 16 -16 16h-32c-8.83984 0 -16 -7.16016 -16 -16v-224c0 -8.83984 7.16016 -16 16 -16h32c8.83984 0 16 7.16016 16 16zM352 80v64c0 8.83984 -7.16016 16 -16 16h-32c-8.83984 0 -16 -7.16016 -16 -16v-64
-c0 -8.83984 7.16016 -16 16 -16h32c8.83984 0 16 7.16016 16 16z" />
-    <glyph glyph-name="poll-h" unicode="&#xf682;" horiz-adv-x="448" 
-d="M448 16c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48v352c0 26.5 21.5 48 48 48h352c26.5 0 48 -21.5 48 -48v-352zM112 256h128c8.83984 0 16 7.16016 16 16v32c0 8.83984 -7.16016 16 -16 16h-128c-8.83984 0 -16 -7.16016 -16 -16v-32
-c0 -8.83984 7.16016 -16 16 -16zM112 160h224c8.83984 0 16 7.16016 16 16v32c0 8.83984 -7.16016 16 -16 16h-224c-8.83984 0 -16 -7.16016 -16 -16v-32c0 -8.83984 7.16016 -16 16 -16zM112 64h64c8.83984 0 16 7.16016 16 16v32c0 8.83984 -7.16016 16 -16 16h-64
-c-8.83984 0 -16 -7.16016 -16 -16v-32c0 -8.83984 7.16016 -16 16 -16z" />
-    <glyph glyph-name="pray" unicode="&#xf683;" horiz-adv-x="384" 
-d="M256 320c-35.3496 0 -64 28.6504 -64 64s28.6504 64 64 64s64 -28.6504 64 -64s-28.6504 -64 -64 -64zM225.37 150.25l-24.1504 28.7598l-34.7998 -64.8701l109.86 -109.859c25.4893 -25.4902 5.7998 -68.2803 -28.2803 -68.2803h-208c-22.0898 0 -40 17.9102 -40 40
-s17.9102 40 40 40h91.5596l-44.8096 34.8896c-42.8799 27.3799 -57.5898 80.1104 -34.1904 123.75l49.3701 92.0303c11.1201 20.6504 32.1807 34.4404 56.3701 36.9199c24.7803 2.58984 48.5605 -6.93945 64 -25.3301l38.9102 -46.3096l57.4404 47
-c17.1191 13.9697 42.3398 11.4902 56.3096 -5.62012c13.9697 -17.0898 11.4697 -42.2998 -5.62012 -56.2803l-88 -72.0195c-16.9697 -13.8701 -41.9102 -11.5 -55.9697 5.21973z" />
-    <glyph glyph-name="praying-hands" unicode="&#xf684;" horiz-adv-x="640" 
-d="M272 256.09c17.5996 0 32 -14.3994 32 -32v-128c0 -51.8896 -34.8398 -98.0801 -84.75 -112.35l-179.19 -46.6201c-2.64941 -0.69043 -5.36914 -1.03027 -8.05957 -1.03027c-23.4805 0 -32 21.1797 -32 32v96
-c0 0.00390625 -0.00488281 -0.000976562 -0.00488281 0.00292969c0 14.1221 9.1748 26.1182 21.8848 30.3477l90.1201 30.04v80.2295c0 18.9805 5.55957 37.3896 16.1201 53.2305l117.26 175.899c0.169922 0.270508 0.589844 0.25 0.790039 0.480469
-c9.58008 13.5098 27.8496 17.8799 42.2998 9.20996c15.1602 -9.10059 20.0605 -28.75 10.9707 -43.9102l-77.75 -129.59c-8.9707 -14.9199 -13.6904 -32 -13.6904 -49.3906v-76.5498c0 -8.83984 7.16016 -16 16 -16s16 7.16016 16 16v80c0 17.6006 14.4004 32 32 32z
-M618.12 94.3604c13.0703 -4.36035 21.8799 -16.5801 21.8799 -30.3506v-96c0 -10.8193 -8.51953 -32 -32 -32c-2.67969 0 -5.40039 0.339844 -8.05957 1.03027l-179.19 46.6201c-49.9102 14.2598 -84.75 60.4502 -84.75 112.34v128c0 17.5996 14.4004 32 32 32
-s32 -14.4004 32 -32v-80c0 -8.83984 7.16016 -16 16 -16s16 7.16016 16 16v76.5498c0 17.3906 -4.71973 34.4697 -13.6904 49.3906l-77.75 129.59c-9.08984 15.1602 -4.18945 34.8193 10.9707 43.9102c14.4502 8.66992 32.7197 4.2998 42.2998 -9.20996
-c0.200195 -0.240234 0.610352 -0.210938 0.790039 -0.480469l117.26 -175.89c10.5605 -15.8408 16.1201 -34.25 16.1201 -53.2305v-80.2295z" />
-    <glyph glyph-name="quran" unicode="&#xf687;" horiz-adv-x="448" 
-d="M448 89.5996c0 -9.59961 -3.2002 -16 -9.59961 -19.1992c-3.2002 -12.8008 -3.2002 -57.6006 0 -73.6006c6.39941 -6.39941 9.59961 -12.7998 9.59961 -19.2002v-16c0 -16 -12.7998 -25.5996 -25.5996 -25.5996h-326.4c-54.4004 0 -96 41.5996 -96 96v320
-c0 54.4004 41.5996 96 96 96h326.4c16 0 25.5996 -9.59961 25.5996 -25.5996v-332.801zM301.08 302.18l-11.1904 -22.6494l-24.9893 -3.62988c-2.68066 -0.390625 -3.75 -3.66992 -1.81055 -5.56055l18.0898 -17.6299l-4.26953 -24.8896
-c-0.360352 -2.11035 1.30957 -3.82031 3.20996 -3.82031c0.5 0 1.01953 0.120117 1.51953 0.379883l22.3604 11.75l22.3604 -11.75c0.5 -0.259766 1.01953 -0.379883 1.51953 -0.379883c1.90039 0 3.57031 1.70996 3.20996 3.82031l-4.26953 24.8896l18.0898 17.6299
-c1.92969 1.89062 0.859375 5.16992 -1.81055 5.56055l-25 3.62988l-11.1797 22.6494c-0.599609 1.20996 -1.75977 1.82031 -2.91992 1.82031s-2.32031 -0.610352 -2.91992 -1.82031zM243.19 371.19c-63.5205 0 -115.19 -51.6709 -115.19 -115.19
-c0 -63.5098 51.6699 -115.19 115.18 -115.18c13.6006 0 27.1201 2.46973 40.1904 7.33984c2.67969 0.910156 4.62012 3.43945 4.62012 6.41992c0 3.63965 -2.87012 6.78027 -6.7998 6.78027c-0.650391 0 -3.10059 -0.209961 -4.13086 -0.209961
-c-52.3096 0 -94.8594 42.5596 -94.8594 94.8594c0 52.3105 42.5498 94.8604 94.8594 94.8604c1.04004 0 3.45996 -0.209961 4.13086 -0.209961c0.738281 -0.276367 1.54004 -0.429688 2.375 -0.429688c3.73926 0 6.77441 3.03516 6.77441 6.77441
-c0 3.7373 -3.0332 6.77246 -6.76953 6.77539c-13.1201 4.91992 -26.71 7.41016 -40.3799 7.41016zM380.8 0v64h-284.8c-16 0 -32 -12.7998 -32 -32s12.7998 -32 32 -32h284.8z" />
-    <glyph glyph-name="search-dollar" unicode="&#xf688;" 
-d="M505.04 5.33984c9.2998 -9.39941 9.2998 -24.5898 -0.0996094 -33.9902l-28.3008 -28.2998c-9.2998 -9.39941 -24.5 -9.39941 -33.8994 0l-99.71 99.6904c-4.5 4.5 -7 10.5996 -7 17v16.2998c-35.2998 -27.5996 -79.71 -44 -128.011 -44
-c-114.909 0 -208.02 93.0898 -208.02 207.979c0 114.891 93.1201 207.98 208.02 207.98c114.9 0 208.011 -93.0898 208.011 -207.98c0 -48.2998 -16.4004 -92.6895 -44 -127.989h16.2998c6.40039 0 12.5 -2.5 17 -7zM208.02 96.04c79.6504 0 144 64.4502 144 143.979
-c0 79.6406 -64.46 143.98 -144 143.98c-79.6494 0 -144 -64.4502 -144 -143.98c0 -79.6396 64.4609 -143.979 144 -143.979zM235.13 248.58c18.6006 -5.58008 31.5898 -23.4199 31.5898 -43.3896c0 -24.5303 -19.0498 -44.4404 -42.6797 -45.0703v-16.1201
-c0 -4.41992 -3.58008 -8 -8 -8h-16c-4.41992 0 -8 3.58008 -8 8v16.29c-11.29 0.580078 -22.2705 4.51953 -31.3701 11.3496c-3.90039 2.93066 -4.09961 8.77051 -0.570312 12.1406l11.75 11.21c2.77051 2.63965 6.89062 2.75977 10.1309 0.729492
-c3.85938 -2.42969 8.25977 -3.71973 12.8193 -3.71973h28.1006c6.5 0 11.7998 5.91992 11.7998 13.1904c0 5.94922 -3.61035 11.1797 -8.77051 12.7295l-45.0098 13.5c-18.5898 5.58008 -31.5801 23.4199 -31.5801 43.3896c0 24.5205 19.0498 44.4404 42.6797 45.0703
-v16.1201c0 4.41992 3.58008 8 8 8h16c4.4209 0 8 -3.58008 8 -8v-16.29c11.29 -0.580078 22.2705 -4.51953 31.3701 -11.3496c3.90039 -2.93066 4.10059 -8.77051 0.570312 -12.1406l-11.75 -11.21c-2.76953 -2.63965 -6.88965 -2.75977 -10.1299 -0.729492
-c-3.86035 2.42969 -8.25977 3.71973 -12.8203 3.71973h-28.1094c-6.5 0 -11.8008 -5.91992 -11.8008 -13.1904c0 -5.94922 3.61035 -11.1797 8.77051 -12.7295z" />
-    <glyph glyph-name="search-location" unicode="&#xf689;" 
-d="M505.04 5.33984c9.2998 -9.39941 9.2998 -24.5898 -0.0996094 -33.9902l-28.3008 -28.2998c-9.2998 -9.39941 -24.5 -9.39941 -33.8994 0l-99.71 99.6904c-4.5 4.5 -7 10.5996 -7 17v16.2998c-35.2998 -27.5996 -79.71 -44 -128.011 -44
-c-114.909 0 -208.02 93.0898 -208.02 207.979c0 114.891 93.1201 207.98 208.02 207.98c114.9 0 208.011 -93.0898 208.011 -207.98c0 -48.2998 -16.4004 -92.6895 -44 -127.989h16.2998c6.40039 0 12.5 -2.5 17 -7zM208.02 96.04c79.6504 0 144 64.4502 144 143.979
-c0 79.6406 -64.46 143.98 -144 143.98c-79.6494 0 -144 -64.4502 -144 -143.98c0 -79.6396 64.4609 -143.979 144 -143.979zM208.04 336c40.7803 0 73.8398 -33.0498 73.8398 -73.8301c0 -32.9697 -48.2598 -93.0498 -66.75 -114.86
-c-1.69531 -2.02832 -4.23926 -3.32031 -7.08691 -3.32031c-2.84863 0 -5.39746 1.29199 -7.09277 3.32031c-18.4902 21.8105 -66.75 81.9004 -66.75 114.86c0 40.7803 33.0596 73.8301 73.8398 73.8301zM208.04 240c13.25 0 24 10.75 24 24c0 13.2598 -10.75 24 -24 24
-s-24 -10.7402 -24 -24c0 -13.25 10.7402 -24 24 -24z" />
-    <glyph glyph-name="socks" unicode="&#xf696;" 
-d="M214.66 136.99c-52.7402 -39.5605 -69.0498 -110.021 -39.2002 -165.4l-21.8604 -16.3896c-17.2695 -12.9502 -37.4893 -19.2002 -57.5195 -19.2002c-32.8105 0 -65.6904 16.75 -83.9404 48.3301c-24.6494 42.6396 -10.1895 97.5 29.21 127.06l86.6504 64.6104v176h160
-v-160zM288 416v-32h-160v32c0 17.6699 14.3301 32 32 32h128c2.84961 0 5.40039 -0.919922 8.01953 -1.62012c-4.94922 -9.08008 -8.01953 -19.3301 -8.01953 -30.3799zM480 448c17.6699 0 32 -14.3301 32 -32v-32h-192v32c0 17.6699 14.3301 32 32 32h128zM320 176v176h192
-v-208c0 -41.8877 -20.0566 -79.043 -51.2002 -102.4l-115.2 -86.3994c-17.2695 -12.9502 -37.4893 -19.2002 -57.5195 -19.2002c-32.8105 0 -65.1699 16.75 -83.4199 48.3301c-24.6504 42.6396 -10.1904 97.5 29.21 127.06z" />
-    <glyph glyph-name="square-root-alt" unicode="&#xf698;" horiz-adv-x="576" 
-d="M571.31 196.69c6.25 -6.25 6.25 -16.3809 0 -22.6309l-46.0596 -46.0596l46.0596 -46.0596c6.25 -6.25 6.25 -16.3809 0 -22.6309l-22.6191 -22.6191c-6.25 -6.25 -16.3809 -6.25 -22.6309 0l-46.0596 46.0596l-46.0596 -46.0596c-6.25 -6.25 -16.3809 -6.25 -22.6309 0
-l-22.6191 22.6191c-6.25 6.25 -6.25 16.3809 0 22.6309l46.0596 46.0596l-46.0596 46.0596c-6.25 6.25 -6.25 16.3809 0 22.6309l22.6191 22.6191c6.25 6.25 16.3809 6.25 22.6309 0l46.0596 -46.0596l46.0596 46.0596c6.25 6.25 16.3809 6.25 22.6309 0zM552 448
-c13.25 0 24 -10.7402 24 -24v-48c0 -13.25 -10.75 -24 -24 -24h-194.97l-97.8105 -374.52c-9.83984 -32.4805 -37.0098 -41.4805 -54.2793 -41.4805c-18.6406 0 -35.9502 8.5 -48.4404 28.2695l-88.8799 163.73h-43.6201c-13.25 0 -24 10.75 -24 24v48
-c0 13.2598 10.75 24 24 24h81.4697c12.0801 -0.00292969 22.584 -6.67871 28.0303 -16.5703l58.4102 -106.1l84.79 322.8c3.68945 14.0703 16.4102 23.8701 30.9502 23.8701h244.35z" />
-    <glyph glyph-name="star-and-crescent" unicode="&#xf699;" 
-d="M340.47 -18.3604c8.74023 0 15.1299 -6.96973 15.1299 -15.0596c0 -6.62012 -4.31934 -12.2402 -10.2793 -14.2598c-29.04 -10.8301 -59.0898 -16.3203 -89.3203 -16.3203c-141.16 0 -256 114.84 -256 256s114.84 256 256 256c30.3896 0 60.5801 -5.54004 89.75 -16.4805
-c6.91992 -2.59961 10.9297 -9.83984 9.46973 -17.0898c-1.41992 -7.04004 -7.62012 -12.0693 -14.75 -12.0693c-1.47949 0 -6.85938 0.459961 -9.17969 0.459961c-116.25 0 -210.82 -94.5703 -210.82 -210.82s94.5703 -210.82 210.82 -210.82
-c2.29004 0 7.72949 0.459961 9.17969 0.459961zM503.46 234.14c8.16992 -1.17969 11.4297 -11.2197 5.52051 -16.9893l-55.2705 -53.8701l13.0498 -76.0703c1.11035 -6.42969 -4.00977 -11.6602 -9.80957 -11.6602c-1.53027 0 -3.11035 0.370117 -4.64062 1.16992
-l-68.3096 35.9102l-68.3301 -35.9102c-1.53027 -0.80957 -3.11035 -1.16992 -4.63965 -1.16992c-5.7998 0 -10.9199 5.21973 -9.81055 11.6602l13.0498 76.0703l-55.2695 53.8701c-5.91016 5.76953 -2.65039 15.8096 5.51953 16.9893l76.3809 11.1006l34.1592 69.21
-c1.83008 3.7002 5.38086 5.5498 8.93066 5.5498s7.09961 -1.84961 8.92969 -5.5498l34.1602 -69.21z" />
-    <glyph glyph-name="star-of-david" unicode="&#xf69a;" horiz-adv-x="464" 
-d="M405.68 192l53.2207 -89.3896c14.4092 -24.21 -3.41016 -54.6104 -32.0107 -54.6104h-106.93l-55.9502 -93.9805c-7.14941 -12.0098 -19.5801 -18.0195 -32.0098 -18.0195s-24.8604 6.00977 -32.0098 18.0195l-55.9502 93.9805h-106.93
-c-28.6006 0 -46.4199 30.4004 -32.0107 54.6104l53.2207 89.3896l-53.2207 89.3896c-14.4092 24.21 3.41016 54.6104 32.0107 54.6104h106.93l55.9502 93.9805c7.14941 12.0098 19.5801 18.0195 32.0098 18.0195s24.8604 -6.00977 32.0098 -18.0195l55.9502 -93.9805h106.92
-c28.6006 0 46.4199 -30.4004 32.0098 -54.6104zM392.9 280h-39.6006l19.7998 -33.2598zM340.51 192l-52.3896 88h-112.25l-52.3799 -88l52.3896 -88h112.24zM232 374.28l-22.7803 -38.2803h45.5703zM71.0996 280l19.8008 -33.2598l19.7998 33.2598h-39.6006zM71.0996 104
-h39.6006l-19.7998 33.2598zM232 9.71973l22.7803 38.2803h-45.5703zM353.29 104h39.6104l-19.8105 33.2598z" />
-    <glyph glyph-name="synagogue" unicode="&#xf69b;" horiz-adv-x="640" 
-d="M70 251.49c5.30957 6.00977 14.6904 6.00977 20 0l38 -43.0703v-272.42h-128v226.07l0.00488281 0.0185547c0 6.75391 2.51758 12.9229 6.66504 17.6211zM633.33 179.71c4.2998 -4.87012 6.66992 -11.1396 6.66992 -17.6396v-226.07h-128v272.42l38 43.0703
-c5.30957 6.01953 14.6904 6.01953 20 0zM339.99 440.99l128 -102.4c7.58984 -6.07031 12.0098 -15.2695 12.0098 -24.9902v-377.6h-96v96c0 38.8701 -34.6602 69.6504 -74.75 63.1201c-31.4697 -5.12012 -53.25 -34.6699 -53.25 -66.5498v-92.5703h-96v377.6
-c0 10.1123 4.67773 19.123 12.0098 24.9902l128 102.4c11.6904 9.34961 28.29 9.34961 39.9805 0zM392.06 225.44l-19.1895 30.5596l19.2002 30.5703c1.97949 3.14941 -0.290039 7.23926 -4 7.23926h-38.9502l-25.1201 39.9805c-1.84961 2.9502 -6.15039 2.9502 -8 0
-l-25.1201 -40h-38.9395c-3.70996 0 -5.98047 -4.08984 -4 -7.24023l19.1992 -30.5596l-19.1992 -30.5605c-1.98047 -3.14941 0.279297 -7.23926 4 -7.23926h38.9395l25.1201 -39.9805c1.84961 -2.9502 6.15039 -2.9502 8 0l25.1201 39.9902h38.9395
-c3.70996 0 5.98047 4.08984 4 7.24023z" />
-    <glyph glyph-name="torah" unicode="&#xf6a0;" horiz-adv-x="640" 
-d="M320.05 81.5195l-17.7402 29.6406h35.46zM419.26 247.52l-18.3994 -30.8193l-18.46 30.8193h36.8594zM48 448c26.5098 0 48 -14.3301 48 -32v-448c0 -17.6699 -21.4902 -32 -48 -32s-48 14.3301 -48 32v448c0 17.6699 21.4902 32 48 32zM220.74 136.5l18.3896 30.8203
-l18.46 -30.8203h-36.8496zM382.45 136.5l18.4102 30.7998l18.4492 -30.7998h-36.8594zM128 -16v416h384v-416h-384zM194.77 262.13c-1.7627 -3.04492 -2.77148 -6.62402 -2.77148 -10.3936c0 -3.92969 1.09668 -7.60547 3.00195 -10.7363l29.3604 -49l-29.21 -48.8398
-c-1.91211 -3.17578 -3.02637 -6.91699 -3.02637 -10.8906c0 -11.6504 9.45898 -21.1094 21.1104 -21.1094h0.015625h59.5l29.25 -48.8799c3.61816 -6.12793 10.2754 -10.2207 17.9004 -10.2207h0.0996094c7.7373 0.0166016 14.4912 4.17676 18.1602 10.4004l29.1299 48.7002
-h59.4697c0.0078125 0 0.00195312 -0.0224609 0.00878906 -0.0224609c7.90723 0 14.8115 4.32812 18.4717 10.7422c1.75879 3.04199 2.76562 6.61621 2.76562 10.3799c0 3.93164 -1.09863 7.6084 -3.00586 10.7402l-29.3701 49l29.2402 48.8496
-c1.90723 3.17383 3.01758 6.91113 3.01758 10.8809c0 11.6553 -9.46191 21.1182 -21.1182 21.1191h-59.5195l-29.25 48.8604c-3.6123 6.12207 -10.2617 10.21 -17.8779 10.21h-0.0722656c-0.0117188 0 -0.00976562 0.0224609 -0.0214844 0.0224609
-c-7.74316 0 -14.5186 -4.17383 -18.1982 -10.3926l-29.1299 -48.71h-59.4502c-0.015625 0 -0.0166016 0.0224609 -0.0322266 0.0224609c-7.89844 0 -14.7939 -4.32422 -18.4482 -10.7324zM592 448c26.5098 0 48 -14.3301 48 -32v-448c0 -17.6699 -21.4902 -32 -48 -32
-s-48 14.3301 -48 32v448c0 17.6699 21.4902 32 48 32zM320 302.47l17.6797 -29.6201h-35.46zM257.55 247.47l-18.3701 -30.7998l-18.4395 30.7998h36.8096zM287.13 136.47l-33.2295 55.5303l33.1699 55.5195h65.79l33.2295 -55.5195l-33.1699 -55.5303h-65.79z" />
-    <glyph glyph-name="torii-gate" unicode="&#xf6a1;" 
-d="M376.45 416c48.5918 0.00292969 94.8242 11.6396 135.55 32v-96c0 -17.6699 -14.3301 -32 -32 -32h-32v-64h48c8.83984 0 16 -7.16016 16 -16v-32c0 -8.83984 -7.16016 -16 -16 -16h-48v-240c0 -8.83984 -7.16016 -16 -16 -16h-32c-8.83984 0 -16 7.16016 -16 16v240
-h-256v-240c0 -8.83984 -7.16016 -16 -16 -16h-32c-8.83984 0 -16 7.16016 -16 16v240h-48c-8.83984 0 -16 7.16016 -16 16v32c0 8.83984 7.16016 16 16 16h48v64h-32c-17.6699 0 -32 14.3301 -32 32v96c40.7256 -20.3604 86.958 -31.9971 135.55 -32h240.9zM128 320v-64h96
-v64h-96zM384 256v64h-96v-64h96z" />
-    <glyph glyph-name="vihara" unicode="&#xf6a7;" horiz-adv-x="640" 
-d="M632.88 47.29c5.41992 -3.61035 7.7002 -9.62012 6.99023 -15.29c-0.620117 -5.00977 -3.56055 -9.75 -8.71973 -12.3301l-55.1504 -19.6699v-48c0 -8.83984 -7.16016 -16 -16 -16h-32c-8.83984 0 -16 7.16016 -16 16v48h-160v-48c0 -8.83984 -7.16016 -16 -16 -16h-32
-c-8.83984 0 -16 7.16016 -16 16v48h-160v-48c0 -8.83984 -7.16016 -16 -16 -16h-32c-8.83984 0 -16 7.16016 -16 16v48l-55.1602 19.6699c-5.14941 2.58008 -8.09961 7.32031 -8.71973 12.3301c-0.700195 5.66016 1.58008 11.6699 7 15.29l88.8799 48.71v64
-l-55.1602 17.6904c-11.79 5.89941 -11.79 22.7197 0 28.6191l119.16 49.6904v64l-27.3096 16.3096c-7.7207 7.7207 -5.61035 20.7402 4.15918 25.6201l183.15 86.0703l183.15 -86.0801c9.76953 -4.87988 11.8799 -17.9004 4.15918 -25.6201l-27.3096 -16.2998v-64
-l119.16 -49.6904c11.79 -5.89941 11.79 -22.7197 0 -28.6191l-55.1602 -17.6904v-64zM224 320v-64h192v64h-192zM160 96h320v64h-320v-64z" />
-    <glyph glyph-name="volume-mute" unicode="&#xf6a9;" 
-d="M215.03 376.95c15.0098 15.0098 40.9697 4.49023 40.9697 -16.9697v-335.961c0 -21.4395 -25.9404 -32 -40.9697 -16.9697l-88.9707 88.9502h-102.06c-13.2598 0 -24 10.75 -24 24v144c0 13.2598 10.7402 24 24 24h102.06zM461.64 192l45.6406 -45.6396
-c6.2998 -6.30078 6.2998 -16.5205 0 -22.8203l-22.8203 -22.8203c-6.2998 -6.2998 -16.5195 -6.2998 -22.8203 0l-45.6396 45.6406l-45.6299 -45.6299c-6.2998 -6.30078 -16.5205 -6.30078 -22.8203 0l-22.8193 22.8193c-6.30078 6.2998 -6.30078 16.5205 0 22.8203
-l45.6299 45.6299l-45.6406 45.6396c-6.2998 6.30078 -6.2998 16.5205 0 22.8203l22.8203 22.8203c6.2998 6.2998 16.5195 6.2998 22.8203 0l45.6396 -45.6406l45.6396 45.6406c6.30078 6.2998 16.5205 6.2998 22.8203 0l22.8203 -22.8203
-c6.2998 -6.2998 6.2998 -16.5195 0 -22.8203z" />
-    <glyph glyph-name="yin-yang" unicode="&#xf6ad;" horiz-adv-x="496" 
-d="M248 440c136.97 0 248 -111.03 248 -248s-111.03 -248 -248 -248s-248 111.03 -248 248s111.03 248 248 248zM248 64c17.6699 0 32 14.3301 32 32s-14.3301 32 -32 32s-32 -14.3301 -32 -32s14.3301 -32 32 -32zM248 192c53.0195 0 96 42.9805 96 96s-42.9805 96 -96 96
-c-106.04 0 -192 -85.96 -192 -192s85.96 -192 192 -192c-53.0195 0 -96 42.9805 -96 96s42.9805 96 96 96zM248 320c17.6699 0 32 -14.3301 32 -32s-14.3301 -32 -32 -32s-32 14.3301 -32 32s14.3301 32 32 32z" />
-    <glyph glyph-name="blender-phone" unicode="&#xf6b6;" horiz-adv-x="576" 
-d="M392 384c-4.41992 0 -8 -3.58008 -8 -8v-16c0 -4.41992 3.58008 -8 8 -8h157.82l-17.46 -64h-140.36c-4.41992 0 -8 -3.58008 -8 -8v-16c0 -4.41992 3.58008 -8 8 -8h131.64l-17.46 -64h-114.18c-4.41992 0 -8 -3.58008 -8 -8v-16c0 -4.41992 3.58008 -8 8 -8h105.46
-l-17.46 -64h-288v352h384l-17.46 -64h-166.54zM158.8 112.99c3.00977 -7.40039 0.200195 -15.8506 -6.68945 -20.0703l-39.4102 -24.1797c-12.5303 -7.68066 -31.7803 -6 -41.6504 4.7998c-94.0996 102.94 -94.6699 258.89 -2.09961 362.49
-c11.1396 12.4697 29.5596 15.8398 43.8896 7.0498l39.2803 -24.0996c6.87988 -4.2207 9.7002 -12.6807 6.67969 -20.0703l-25.7803 -63.2598c-2.7793 -6.80078 -9.80957 -10.9902 -17.2393 -10.2607l-45.0303 4.41992c-17.6504 -47.9395 -17.2803 -100.779 0 -147.72
-l45.0303 4.41992c7.43945 0.730469 14.46 -3.4502 17.2393 -10.2598zM480 64c35.3496 0 64 -28.6504 64 -64v-32c0 -17.6699 -14.3301 -32 -32 -32h-352c-17.6699 0 -32 14.3301 -32 32v32c0 35.3496 28.6504 64 64 64h288zM336 -32c17.6699 0 32 14.3301 32 32
-s-14.3301 32 -32 32s-32 -14.3301 -32 -32s14.3301 -32 32 -32z" />
-    <glyph glyph-name="book-dead" unicode="&#xf6b7;" horiz-adv-x="448" 
-d="M272 312c-8.7998 0 -16 7.2002 -16 16s7.2002 16 16 16s16 -7.2002 16 -16s-7.2002 -16 -16 -16zM448 89.5996c0 -9.59961 -3.2002 -16 -9.59961 -19.1992c-3.2002 -12.8008 -3.2002 -57.6006 0 -73.6006c6.39941 -6.39941 9.59961 -12.7998 9.59961 -19.2002v-16
-c0 -16 -12.7998 -25.5996 -25.5996 -25.5996h-326.4c-54.4004 0 -96 41.5996 -96 96v320c0 54.4004 41.5996 96 96 96h326.4c16 0 25.5996 -9.59961 25.5996 -25.5996v-332.801zM240 392c-44.2002 0 -80 -28.7002 -80 -64c0 -20.9004 12.7002 -39.2002 32 -50.9004v-13.0996
-c0 -8.7998 7.2002 -16 16 -16h64c8.7998 0 16 7.2002 16 16v13.0996c19.2998 11.7002 32 30 32 50.9004c0 35.2998 -35.7998 64 -80 64zM124.8 224.7c-1.7002 -4.10059 0.100586 -8.7998 4.2002 -10.5l70.5 -30.2998l-70.4004 -30.1006
-c-4.09961 -1.7002 -5.89941 -6.39941 -4.19922 -10.5l6.2998 -14.7002c1.7002 -4.09961 6.39941 -5.89941 10.5 -4.19922l98.2998 42.1992l98.2998 -42.0996c4.10059 -1.7002 8.7998 0.0996094 10.5 4.2002l6.2998 14.7002c1.7002 4.09961 -0.0996094 8.7998 -4.19922 10.5
-l-70.3008 30.0996l70.3008 30.2002c4.09961 1.7002 5.89941 6.39941 4.19922 10.5l-6.2998 14.7002c-1.7002 4.09961 -6.39941 5.89941 -10.5 4.19922l-98.3994 -42.0996l-98.3008 42.0996c-4.09961 1.7002 -8.7998 -0.0996094 -10.5 -4.19922zM380.8 0v64h-284.8
-c-16 0 -32 -12.7998 -32 -32s12.7998 -32 32 -32h284.8zM208 312c-8.7998 0 -16 7.2002 -16 16s7.2002 16 16 16s16 -7.2002 16 -16s-7.2002 -16 -16 -16z" />
-    <glyph glyph-name="campground" unicode="&#xf6bb;" horiz-adv-x="640" 
-d="M624 0c8.83984 0 16 -7.16016 16 -16v-32c0 -8.83984 -7.16016 -16 -16 -16h-608c-8.83984 0 -16 7.16016 -16 16v32c0 8.83984 7.16016 16 16 16h24.6797l239.79 330.25l-53.4102 73.5498c-5.19922 7.15039 -3.60938 17.1602 3.54004 22.3506l25.8809 18.7998
-c7.14941 5.18945 17.1592 3.59961 22.3496 -3.5498l41.1699 -56.7002l41.1602 56.6895c5.2002 7.16016 15.2002 8.74023 22.3496 3.55078l25.9004 -18.79c7.14941 -5.19043 8.72949 -15.2002 3.54004 -22.3506l-53.4102 -73.5498l239.78 -330.25h24.6797zM320 160
-l-116.36 -160h232.721z" />
-    <glyph glyph-name="cat" unicode="&#xf6be;" 
-d="M290.59 256c11.8906 -58.3496 63.6006 -102.4 125.41 -102.4c11.1104 0 21.71 1.87012 32 4.54004v-206.14c0 -8.83984 -7.16016 -16 -16 -16h-32c-8.83984 0 -16 7.16016 -16 16v144l-128 -96h32c17.6699 0 32 -14.3301 32 -32v-16c0 -8.83984 -7.16016 -16 -16 -16
-h-176c-35.2998 0 -64 28.7002 -64 64v256c0 17.6396 -14.3604 32 -32 32c-17.6699 0 -32 14.3301 -32 32s14.3301 32 32 32c52.9404 0 96 -43.0596 96 -96v-85.9502c55.7695 83.9697 142.41 85.9502 162.59 85.9502zM448 352l64 64v-134.4c0 -53.0195 -42.9805 -96 -96 -96
-s-96 42.9805 -96 96v134.4l64 -64h64zM376 272c8.83984 0 16 7.16016 16 16s-7.16016 16 -16 16s-16 -7.16016 -16 -16s7.16016 -16 16 -16zM456 272c8.83984 0 16 7.16016 16 16s-7.16016 16 -16 16s-16 -7.16016 -16 -16s7.16016 -16 16 -16z" />
-    <glyph glyph-name="chair" unicode="&#xf6c0;" horiz-adv-x="448" 
-d="M112 320v-128h-48v128c0 70.7002 57.2998 128 128 128h64c70.7002 0 128 -57.2998 128 -128v-128h-48v128c0 29.5 -16.2002 55 -40 68.9004v-196.9h-48v208h-48v-208h-48v196.9c-23.7998 -13.9004 -40 -39.4004 -40 -68.9004zM446.3 106.1
-c6.90039 -20.6992 -8.5 -42.0996 -30.2998 -42.0996v-112c0 -8.7998 -7.2002 -16 -16 -16h-32c-8.7998 0 -16 7.2002 -16 16v112h-256v-112c0 -8.7998 -7.2002 -16 -16 -16h-32c-8.7998 0 -16 7.2002 -16 16v112c-21.7998 0 -37.2002 21.4004 -30.4004 42.0996l10.7002 32
-c4.40039 13.1006 16.6006 21.9004 30.4004 21.9004h362.5c13.7998 0 26 -8.7998 30.3994 -21.9004z" />
-    <glyph glyph-name="cloud-moon" unicode="&#xf6c3;" horiz-adv-x="576" 
-d="M342.8 95.2998c40.9004 -3.5 73.2002 -37.3994 73.2002 -79.2998c0 -44.2002 -35.7998 -80 -80 -80h-240c-53 0 -96 43 -96 96c0 41.9004 27.0996 77.2002 64.5996 90.2998c-0.0996094 1.90039 -0.599609 3.7002 -0.599609 5.7002c0 53 43 96 96 96
-c36.2002 0 67.4004 -20.2998 83.7002 -49.9004c11.5 11 27.0996 17.9004 44.2998 17.9004c35.2998 0 64 -28.7002 64 -64c0 -12 -3.5 -23.0996 -9.2002 -32.7002zM565.3 149.6c8.2002 1.60059 14 -8 8.7002 -14.5c-33.4004 -41.0996 -82.7002 -67 -137.1 -70.3994
-c-11.1006 23.0996 -29.9004 41.7998 -53.5 52.5996c0.399414 3.5 0.599609 7.10059 0.599609 10.7002c0 52.9004 -43.0996 96 -96 96c-12.7002 0 -25 -2.5 -36.4004 -7.2002c-5.09961 5.2998 -10.7998 9.90039 -16.6992 14.2002c-1.10059 8.2002 -1.80078 16.5 -1.80078 25
-c0 106.1 86 192 191.9 192c11.7002 0 23.4004 -1.09961 35.0996 -3.2002c8.2002 -1.59961 10.1006 -12.5996 2.80078 -16.7002c-47.1006 -26.7998 -76.1006 -76.5996 -76.1006 -130.8c0 -94 85.4004 -165.399 178.5 -147.7z" />
-    <glyph glyph-name="cloud-sun" unicode="&#xf6c4;" horiz-adv-x="640" 
-d="M575.2 122.3c37.5996 -13 64.7998 -48.2998 64.7998 -90.3994c0 -53 -43 -96 -96 -96h-272c-53 0 -96 43 -96 96c0 50.5996 39.2998 91.5996 88.9004 95.2998c-0.200195 2.89941 -0.900391 5.7002 -0.900391 8.7002c0 61.8994 50.2002 112 112 112
-c45.4004 0 84.2998 -27.2002 101.9 -66c9.89941 6.19922 21.5 10 34.0996 10c35.2998 0 64 -28.7002 64 -64c0 -1.90039 -0.599609 -3.7002 -0.799805 -5.60059zM144.8 144.9c10.6006 -10.6006 22.9004 -18.6006 36 -24c-9.59961 -9.80078 -17.5 -21.1006 -23.5996 -33.5
-l-76.1006 -25.3008c-11.8994 -3.89941 -23.1992 7.30078 -19.1992 19.2002l29.2998 87.7998l-82.7998 41.4004c-11.2002 5.59961 -11.2002 21.5 0 27.0996l82.7998 41.5l-29.2998 87.8008c-3.90039 11.7998 7.39941 23.0996 19.1992 19.1992l87.9004 -29.2998
-l41.4004 82.7998c5.59961 11.2002 21.5996 11.2002 27.0996 0l41.5 -82.7998l87.7998 29.2998c11.9004 3.90039 23.2002 -7.2998 19.2002 -19.1992l-29.7998 -88.9004c-10.6006 -1.5 -20.9004 -3.7998 -30.7002 -7.5c-5.40039 11.7998 -12.5996 23 -22.2998 32.7002
-c-43.7002 43.7002 -114.7 43.7002 -158.4 0c-43.7002 -43.6006 -43.7002 -114.601 0 -158.3zM140 224.1c0 46.3008 37.7002 83.9004 84 83.9004c34 0 63.2998 -20.4004 76.5 -49.5c-36.4004 -22.5 -62 -60.7002 -67.4004 -105
-c-8.89941 -2.90039 -17.1992 -7 -25.1992 -11.7002c-38.6006 7.5 -67.9004 41.5 -67.9004 82.2998z" />
-    <glyph glyph-name="dice-d20" unicode="&#xf6cf;" horiz-adv-x="480" 
-d="M106.75 232.94l108.64 -190.101l-208.26 22.0703c-5.83008 0.639648 -9.00977 7.13965 -5.92969 12.1396zM7.41016 132.57c-2.12012 -3.44043 -7.41016 -1.94043 -7.41016 2.08984v162.81c0 3.11035 3.38965 5.03027 6.05957 3.43066l76.6406 -45.9805zM18.25 24.4004
-c-4.03027 1.97949 -2.25 8.06934 2.2002 7.56934l203.55 -22.2998v-65.6699c0 -5.83008 -6.0498 -9.70996 -11.3496 -7.25977zM99.4697 282.18l-81.5293 48.6904c-2.52051 1.51953 -2.60059 5.16016 -0.130859 6.78027l150.811 98.6094
-c7.18945 4.11035 15.1201 -4.08008 10.7803 -11.1396zM240 272h-109.21l95.5801 168.38c3.12988 5.08008 8.37988 7.62012 13.6299 7.62012s10.5 -2.54004 13.6299 -7.62012l95.5801 -168.38h-109.21zM473.94 300.9c2.66992 1.59961 6.05957 -0.320312 6.05957 -3.43066
-v-162.81c0 -4.04004 -5.2998 -5.54004 -7.41016 -2.10059l-75.29 122.351zM380.53 282.18l-79.9307 142.94c-4.33984 7.05957 3.59082 15.25 10.7803 11.1396l150.811 -98.5996c2.46973 -1.62012 2.39941 -5.25977 -0.130859 -6.78027zM459.55 31.9697
-c4.4502 0.5 6.23047 -5.58984 2.2002 -7.55957l-194.4 -87.6602c-5.2998 -2.4502 -11.3496 1.41992 -11.3496 7.25977v65.6699zM373.25 232.94l105.56 -155.891c3.08008 -5 -0.0996094 -11.4902 -5.92969 -12.1396l-208.26 -22.0703zM240 240h100.43l-100.43 -175.75
-l-100.43 175.75h100.43z" />
-    <glyph glyph-name="dice-d6" unicode="&#xf6d1;" horiz-adv-x="448" 
-d="M422.19 338.05c5.3291 -3.24023 5.2998 -11.2695 -0.0507812 -14.46l-198.14 -118.14l-198.13 118.14c-5.35059 3.19043 -5.37988 11.2305 -0.0605469 14.46l165.971 100.88c19.9102 12.1006 44.5195 12.1006 64.4297 0zM436.03 293.42
-c5.33008 3.17969 11.9697 -0.839844 11.9697 -7.25v-197.7c0 -23.7598 -12.1104 -45.7393 -31.79 -57.7002l-152.16 -92.4795c-10.6602 -6.48047 -24.0498 1.5498 -24.0498 14.4297v223.82zM0 286.17c0 6.41016 6.63965 10.4297 11.9697 7.25l196.03 -116.88v-223.81
-c0 -12.8906 -13.3799 -20.9102 -24.0498 -14.4307l-152.16 92.4697c-19.6797 11.9609 -31.79 33.9307 -31.79 57.7002v197.7z" />
-    <glyph glyph-name="dog" unicode="&#xf6d3;" horiz-adv-x="576" 
-d="M298.06 224l149.94 -53.5498v-218.45c0 -8.83105 -7.16895 -16 -16 -16h-64c-8.83105 0 -16 7.16895 -16 16v112h-160v-112c0 -8.83105 -7.16895 -16 -16 -16h-64c-8.83105 0 -16 7.16895 -16 16v213.91c-37.1602 13.25 -64 48.4297 -64 90.0898
-c0 17.6611 14.3389 32 32 32s32 -14.3389 32 -32c0.0332031 -17.6455 14.3545 -31.9668 32 -32h170.06zM544 336v-32c0 -35.3223 -28.6777 -64 -64 -64h-32v-35.5801l-128 45.71v149.87c0 14.25 17.2197 21.3896 27.3096 11.3096l27.2803 -27.3096h53.6299
-c10.9102 0 23.75 -7.91992 28.6201 -17.6904l7.16016 -14.3096h64c8.83105 0 16 -7.16895 16 -16zM432 336c0 8.83105 -7.16895 16 -16 16s-16 -7.16895 -16 -16s7.16895 -16 16 -16s16 7.16895 16 16z" />
-    <glyph glyph-name="dragon" unicode="&#xf6d5;" horiz-adv-x="640" 
-d="M18.3203 192.22c-15.96 -2.2793 -24.8906 17.8105 -12.5107 28.1406l117.4 116.34c21.7705 18.5996 53.2402 20.4697 77.0596 4.58984l119.73 -87.5996v-42.2705c0 -28.9102 5.29004 -56.9795 14.7305 -83.3799h-222.7c-14.25 0 -21.3906 17.2295 -11.3105 27.3096
-l91.2803 68.6904zM575.19 158.12c41.9092 -20.96 67.1592 -64.0801 64.6396 -111.36c-3.37988 -63.2002 -59.7002 -110.77 -122.99 -110.76h-499.08c-9.80957 0 -17.7598 8 -17.7598 17.7998c0 8.32031 5.78027 15.5303 13.9004 17.3301
-c89.54 19.9004 238.51 54.1006 434.1 60.9102c-59.9697 39.9902 -96 107.3 -96 179.38v108.62l-59.5801 24.8496c-5.90039 2.9502 -5.90039 11.3604 0 14.3105l59.5801 24.8398l-61.6396 50.3496c-5.04004 5.04004 -1.4707 13.6104 5.65918 13.6104h237.45
-c10.0703 0 19.5498 -4.7002 25.6006 -12.7598l74.5293 -99.3799c4.00781 -5.3457 6.37988 -12.042 6.37988 -19.2305c0 -5.12988 -1.20996 -9.98047 -3.35938 -14.2803l-14.3105 -28.6191c-5.25 -10.502 -16.0889 -17.6895 -28.6191 -17.6904h-30.9707
-c-8.48926 0 -16.6299 3.37012 -22.6299 9.37012l-28.0898 22.6299h-64v-36.6904c0.00195312 -18.791 10.7812 -35.0459 26.5303 -42.9199zM489.18 381.75c-4.33008 -17.1396 8.56055 -28.96 21.5205 -29.6699c11.6602 -0.629883 21.3799 7.34961 24.1299 18.2598z" />
-    <glyph glyph-name="drumstick-bite" unicode="&#xf6d7;" 
-d="M462.8 398.43c34.3203 -34.2793 50.4307 -79.5996 49.1299 -124.56c-41.9795 22.6602 -94.3594 17.5596 -128.739 -16.7998c-40.8809 -40.8398 -40.6904 -107.181 -1.05078 -151.07c-18.9736 -6.45312 -39.3203 -10.0049 -60.4648 -10.0049
-c-0.475586 0 -0.950195 0.000976562 -1.4248 0.00488281h-85.8896l-40.6104 -40.5596c-9.71973 -9.75 -11.0898 -24.0205 -6 -36.75c2.77051 -6.92383 4.3125 -14.5234 4.3125 -22.4316c0 -33.3086 -27.042 -60.3506 -60.3496 -60.3506
-c-16.7041 0 -31.8311 6.80078 -42.7627 17.7822c-15.2803 15.2695 -19.6006 36.5 -15.1006 56.0996c-19.6094 -4.49023 -40.8496 -0.179688 -56.1191 15.0703c-10.9395 10.9229 -17.668 26.002 -17.668 42.666c0 33.2979 27.0332 60.3301 60.3301 60.3301
-c7.88965 0 15.4277 -1.51758 22.3379 -4.27637c12.7793 -5.07031 27.0791 -3.69043 36.7793 6l40.6201 40.5898v85.8301c0 64 27.6904 107 63.1699 142.43c30.666 30.6338 73.0479 49.5889 119.774 49.5889s89.0605 -18.9551 119.726 -49.5889z" />
-    <glyph glyph-name="dungeon" unicode="&#xf6d9;" 
-d="M128.73 252.68c6.58984 -4.12012 8.89941 -12.2393 6.33984 -19.5801c-3 -8.60938 -5.15039 -17.6094 -6.24023 -26.9395c-0.929688 -7.91016 -7.0498 -14.1602 -15.0098 -14.1602h-97.1299c-9.10059 0 -16.7402 7.62988 -16.1504 16.7197
-c2.0293 31.5166 9.95215 61.9062 22.4502 89.2705c3.93945 8.62012 14.8896 11.4697 22.9297 6.4502zM319.03 440c9.16992 -2.36035 13.9102 -12.5996 10.3896 -21.3896l-37.4697 -104.03c-2.28027 -6.34961 -8.2998 -10.5801 -15.0498 -10.5801h-41.8008
-c-6.92773 0.00292969 -12.8281 4.41211 -15.0498 10.5801l-37.4697 104.03c-3.52051 8.79004 1.21973 19.04 10.3896 21.3896c20.1699 5.17969 41.2607 8 63.0303 8s42.8604 -2.82031 63.0303 -8zM112 160c8.83984 0 16 -7.16016 16 -16v-64
-c0 -8.83984 -7.16016 -16 -16 -16h-96c-8.83984 0 -16 7.16016 -16 16v64c0 8.83984 7.16016 16 16 16h96zM112 32c8.83984 0 16 -7.16016 16 -16v-64c0 -8.83984 -7.16016 -16 -16 -16h-96c-8.83984 0 -16 7.16016 -16 16v64c0 8.83984 7.16016 16 16 16h96zM189.31 315.67
-c2.85059 -7.12012 -0.0195312 -14.8799 -6.2998 -19.29c-6 -4.2002 -11.6094 -8.89941 -16.79 -14.0498c-5.4502 -5.41016 -13.5996 -6.86035 -20.1094 -2.79004l-82.9307 51.8301c-8.06934 5.04004 -10.2793 16.2002 -4.21973 23.5195
-c20.0459 24.1963 44.0801 44.3428 71.6104 59.8906c8.29004 4.67969 18.8896 0.519531 22.4199 -8.31055zM398.18 192c-7.95996 0 -14.0801 6.25 -15.0098 14.1602c-1.08984 9.32031 -3.22949 18.3301 -6.24023 26.9395c-2.55957 7.34082 -0.25 15.46 6.33984 19.5801
-l82.8105 51.7607c8.04004 5.01953 18.9902 2.16992 22.9297 -6.4502c12.499 -27.3633 20.4219 -57.7529 22.4502 -89.2705c0.589844 -9.08984 -7.0498 -16.7197 -16.1504 -16.7197h-97.1299zM453.03 354.89c6.06934 -7.31934 3.84961 -18.4795 -4.2207 -23.5098
-l-82.9297 -51.8301c-6.50977 -4.06934 -14.6699 -2.62012 -20.1104 2.79004c-5.17969 5.15039 -10.7891 9.85059 -16.7891 14.0498c-6.28027 4.40039 -9.15039 12.1602 -6.30078 19.2803l36.3203 90.7998c3.54004 8.83008 14.1396 12.9902 22.4199 8.31055
-c27.5303 -15.5479 51.5645 -35.6943 71.6104 -59.8906zM496 160c8.83984 0 16 -7.16016 16 -16v-64c0 -8.83984 -7.16016 -16 -16 -16h-96c-8.83984 0 -16 7.16016 -16 16v64c0 8.83984 7.16016 16 16 16h96zM496 32c8.83984 0 16 -7.16016 16 -16v-64
-c0 -8.83984 -7.16016 -16 -16 -16h-96c-8.83984 0 -16 7.16016 -16 16v64c0 8.83984 7.16016 16 16 16h96zM240 270.38c5.23047 0.889648 10.5195 1.62012 16 1.62012s10.7695 -0.730469 16 -1.62012v-294.38c0 -4.41992 -3.58008 -8 -8 -8h-16c-4.41992 0 -8 3.58008 -8 8
-v294.38zM176 228.87c8.16016 12.2998 19.2197 22.3203 32 29.7695v-282.64c0 -4.41992 -3.58008 -8 -8 -8h-16c-4.41992 0 -8 3.58008 -8 8v252.87zM304 258.64c12.7803 -7.44922 23.8398 -17.4697 32 -29.7695v-252.87c0 -4.41992 -3.58008 -8 -8 -8h-16
-c-4.41992 0 -8 3.58008 -8 8v282.64z" />
-    <glyph glyph-name="file-csv" unicode="&#xf6dd;" horiz-adv-x="384" 
-d="M224 312c0 -13.2002 10.7998 -24 24 -24h136v-328c0 -13.2998 -10.7002 -24 -24 -24h-336c-13.2998 0 -24 10.7002 -24 24v464c0 13.2998 10.7002 24 24 24h200v-136zM128 168v16c0 4.41992 -3.58008 8 -8 8h-8c-26.5098 0 -48 -21.4902 -48 -48v-32
-c0 -26.5098 21.4902 -48 48 -48h8c4.41992 0 8 3.58008 8 8v16c0 4.41992 -3.58008 8 -8 8h-8c-8.83984 0 -16 7.16016 -16 16v32c0 8.83984 7.16016 16 16 16h8c4.41992 0 8 3.58008 8 8zM172.27 64c23.3906 0 42.4004 17.3301 42.3906 38.6201
-c0 10.6602 -4.86035 20.9199 -13.3301 28.1396l-21.8896 18.7705c-1.37012 1.17969 -2.12012 2.54004 -2.12012 3.83984c0 3.12012 4.45996 6.62012 10.4102 6.62012h12.2695c4.41992 0 8 3.58008 8 8v16c0 4.41992 -3.58008 8 -8 8h-12.25
-c-23.3896 0 -42.4102 -17.3203 -42.4102 -38.6201c0 -10.6602 4.86035 -20.9199 13.3301 -28.1396l21.8896 -18.7705c1.37012 -1.17969 2.12012 -2.54004 2.12012 -3.83984c0 -3.12012 -4.45996 -6.62012 -10.4102 -6.62012h-12.2695c-4.41992 0 -8 -3.58008 -8 -8v-16
-c0 -4.41992 3.58008 -8 8 -8h12.2695zM256 184c0 4.41992 -3.58008 8 -8 8h-16c-4.41992 0 -8 -3.58008 -8 -8v-20.7998c0 -35.4805 12.8799 -68.8906 36.2803 -94.0898c3.01953 -3.25 7.26953 -5.11035 11.7197 -5.11035s8.7002 1.86035 11.7197 5.11035
-c23.4004 25.1992 36.2803 58.6094 36.2803 94.0898v20.7998c0 4.41992 -3.58008 8 -8 8h-16c-4.41992 0 -8 -3.58008 -8 -8v-20.7998c0 -20.2705 -5.7002 -40.1807 -16 -56.8799c-10.2998 16.71 -16 36.6094 -16 56.8799v20.7998zM377 343c4.5 -4.5 7 -10.5996 7 -16.9004
-v-6.09961h-128v128h6.09961c6.40039 0 12.5 -2.5 17 -7z" />
-    <glyph glyph-name="fist-raised" unicode="&#xf6de;" horiz-adv-x="384" 
-d="M255.98 288h-48.0303c-5.62988 0 -10.9502 -1.15039 -15.9697 -2.92969v146.93c0 8.83984 7.15918 16 16 16h32c8.83984 0 16 -7.16016 16 -16v-144zM383.98 192.01l0.0195312 -88.2197c0 -26.4971 -10.7412 -50.5273 -28.1201 -67.9102l-35.9102 -35.9199v-63.96
-h-255.979v64l-26.5 26.5098c-24.0098 24.0098 -37.4902 56.5605 -37.4902 90.5098v77.9307c5.03027 -1.7998 10.3604 -2.9502 16 -2.9502h32c12.3301 0 23.4805 4.80957 32 12.4902c8.50977 -7.66992 19.6602 -12.4805 32 -12.4805h32
-c7.91016 0 15.2803 2.11035 21.8701 5.52051c7.46973 -16.3301 21.5996 -28.9404 38.8701 -34.4502c-17.1104 -14.8203 -31.5801 -34.4805 -47.3105 -58.0801l-6.30957 -9.46973c-0.845703 -1.26855 -1.35156 -2.79395 -1.35156 -4.43164
-c0 -2.77734 1.41895 -5.22559 3.57129 -6.6582l13.3105 -8.88086c1.26758 -0.845703 2.79395 -1.35156 4.43066 -1.35156c2.77734 0 5.22559 1.41992 6.65918 3.57227l6.30957 9.46973c31.8906 47.8398 51.5303 70.2695 96.0498 72.5498
-c4.29004 0.219727 7.88086 3.70996 7.88086 8v16.2002c0 4.41992 -3.52051 8 -13.2002 8h-35.2607c-26.2695 0 -47.5693 21.3203 -47.5693 47.5898v0.560547c0 8.7793 7.12012 15.8496 15.8994 15.8496h112.141c35.3301 0 63.9795 -28.6504 63.9902 -63.9902zM351.97 282.1
-c-10.0596 3.59082 -20.7197 5.90039 -32 5.90039h-32v112c0 8.83984 7.16016 16 16 16h32c8.83984 0 16 -7.16016 16 -16v-117.9zM16 224c-8.83984 0 -16 7.16016 -16 16v128c0 8.83984 7.16016 16 16 16h32c8.83984 0 16 -7.16016 16 -16v-128
-c0 -8.83984 -7.16016 -16 -16 -16h-32zM111.99 224c-8.83984 0 -16 7.16016 -16 16v160c0 8.83984 7.16016 16 16 16h32c8.83984 0 16 -7.16016 16 -16v-160c0 -8.83984 -7.16016 -16 -16 -16h-32z" />
-    <glyph glyph-name="ghost" unicode="&#xf6e2;" horiz-adv-x="384" 
-d="M186.1 447.91c108.73 3.25977 197.9 -83.9102 197.9 -191.91v-271.97c0 -14.25 -17.2305 -21.3906 -27.3096 -11.3105l-24.9209 18.5303c-6.65918 4.95996 -16 3.99023 -21.5098 -2.20996l-42.9502 -48.3496c-6.25 -6.25 -16.3799 -6.25 -22.6299 0l-40.7197 45.8496
-c-6.36035 7.16992 -17.5498 7.16992 -23.9199 0l-40.7197 -45.8496c-6.25 -6.25 -16.3799 -6.25 -22.6299 0l-42.9502 48.3496c-5.50977 6.2002 -14.8506 7.16016 -21.5098 2.20996l-24.9209 -18.5303c-10.0791 -10.0801 -27.3096 -2.9502 -27.3096 11.3105v263.92
-c0 105.13 81.0098 196.81 186.1 199.96zM128 224c17.6699 0 32 14.3301 32 32s-14.3301 32 -32 32s-32 -14.3301 -32 -32s14.3301 -32 32 -32zM256 224c17.6699 0 32 14.3301 32 32s-14.3301 32 -32 32s-32 -14.3301 -32 -32s14.3301 -32 32 -32z" />
-    <glyph glyph-name="hammer" unicode="&#xf6e3;" horiz-adv-x="576" 
-d="M571.31 254.06c6.25 -6.25 6.25 -16.3799 0.0205078 -22.6191l-90.5098 -90.5107c-6.25 -6.25 -16.3799 -6.25 -22.6299 0l-22.6309 22.6299c-6.25 6.25 -6.25 16.3809 0 22.6309l11.3105 11.3096l-28.9004 28.9004
-c-21.3096 -5.63086 -44.8994 -0.360352 -61.6094 16.3496l-49.1406 49.1396c-12.0098 12 -18.75 28.2803 -18.75 45.25v18.75l-90.5098 45.25c62.4902 62.4805 163.8 62.4805 226.28 0l45.25 -45.25c16.71 -16.71 21.9795 -40.2998 16.3496 -61.6094l28.9004 -28.9004
-l11.3096 11.3105c6.25 6.25 16.3799 6.25 22.6299 0zM284.59 269.26l49.1406 -49.1396c3.53906 -3.54004 7.47949 -6.5 11.4395 -9.41016l-238.13 -255.07c-23.8799 -25.5801 -64.2002 -26.2695 -88.9297 -1.5293c-24.7305 24.7393 -24.04 65.0498 1.5293 88.9297
-l255.101 238.17c3.00977 -4.16016 6.14941 -8.25 9.84961 -11.9502z" />
-    <glyph glyph-name="hanukiah" unicode="&#xf6e6;" horiz-adv-x="640" 
-d="M232 288h16c4.41992 0 8 -3.58008 8 -8v-120h-32v120c0 4.41992 3.58008 8 8 8zM168 288h16c4.41992 0 8 -3.58008 8 -8v-120h-32v120c0 4.41992 3.58008 8 8 8zM392 288h16c4.41992 0 8 -3.58008 8 -8v-120h-32v120c0 4.41992 3.58008 8 8 8zM456 288h16
-c4.41992 0 8 -3.58008 8 -8v-120h-32v120c0 4.41992 3.58008 8 8 8zM544 280v-120h-32v120c0 4.41992 3.58008 8 8 8h16c4.41992 0 8 -3.58008 8 -8zM104 288h16c4.41992 0 8 -3.58008 8 -8v-120h-32v120c0 4.41992 3.58008 8 8 8zM624 288c8.83984 0 16 -7.16016 16 -16
-v-112c0 -53.0195 -42.9805 -96 -96 -96h-192v-64h176c8.83984 0 16 -7.16016 16 -16v-32c0 -8.83984 -7.16016 -16 -16 -16h-416c-8.83984 0 -16 7.16016 -16 16v32c0 8.83984 7.16016 16 16 16h176v64h-192c-53.0195 0 -96 42.9805 -96 96v112c0 8.83984 7.16016 16 16 16
-h32c8.83984 0 16 -7.16016 16 -16v-112c0 -17.6699 14.3301 -32 32 -32h192v192c0 8.83984 7.16016 16 16 16h32c8.83984 0 16 -7.16016 16 -16v-192h192c17.6699 0 32 14.3301 32 32v112c0 8.83984 7.16016 16 16 16h32zM608 320c-13.25 0 -24 11.9502 -24 26.6699
-s24 53.3301 24 53.3301s24 -38.5996 24 -53.3301c0 -14.7295 -10.75 -26.6699 -24 -26.6699zM32 320c-13.25 0 -24 11.9502 -24 26.6699s24 53.3301 24 53.3301s24 -38.5996 24 -53.3301c0 -14.7295 -10.75 -26.6699 -24 -26.6699zM320 368
-c-13.25 0 -24 11.9502 -24 26.6699s24 53.3301 24 53.3301s24 -38.5996 24 -53.3301c0 -14.7295 -10.75 -26.6699 -24 -26.6699zM112 320c-13.25 0 -24 11.9502 -24 26.6699s24 53.3301 24 53.3301s24 -38.5996 24 -53.3301c0 -14.7295 -10.75 -26.6699 -24 -26.6699z
-M176 320c-13.25 0 -24 11.9502 -24 26.6699s24 53.3301 24 53.3301s24 -38.5996 24 -53.3301c0 -14.7295 -10.75 -26.6699 -24 -26.6699zM240 320c-13.25 0 -24 11.9502 -24 26.6699s24 53.3301 24 53.3301s24 -38.5996 24 -53.3301
-c0 -14.7295 -10.75 -26.6699 -24 -26.6699zM400 320c-13.25 0 -24 11.9502 -24 26.6699s24 53.3301 24 53.3301s24 -38.5996 24 -53.3301c0 -14.7295 -10.75 -26.6699 -24 -26.6699zM464 320c-13.25 0 -24 11.9502 -24 26.6699s24 53.3301 24 53.3301
-s24 -38.5996 24 -53.3301c0 -14.7295 -10.75 -26.6699 -24 -26.6699zM528 320c-13.25 0 -24 11.9502 -24 26.6699s24 53.3301 24 53.3301s24 -38.5996 24 -53.3301c0 -14.7295 -10.75 -26.6699 -24 -26.6699z" />
-    <glyph glyph-name="hat-wizard" unicode="&#xf6e8;" 
-d="M496 0c8.83984 0 16 -7.16016 16 -16v-32c0 -8.83984 -7.16016 -16 -16 -16h-480c-8.83984 0 -16 7.16016 -16 16v32c0 8.83984 7.16016 16 16 16h480zM192 64l16 -32h-144l110.96 249.66c11.1211 25.0264 29.8379 45.6514 53.46 59.1494l187.58 107.19l-56.2998 -168.92
-c-2.12207 -6.35938 -3.25781 -13.2188 -3.25781 -20.2881c0 -8.93164 1.83496 -17.4375 5.14746 -25.1621l86.4102 -201.63h-208l16 32l64 32l-64 32l-32 64l-32 -64l-64 -32zM256 288l-32 -16l32 -16l16 -32l16 32l32 16l-32 16l-16 32z" />
-    <glyph glyph-name="hiking" unicode="&#xf6ec;" horiz-adv-x="384" 
-d="M80.9502 -24.2305l34.5596 138.221l52.7803 -52.7803l-25.2402 -100.97c-3.64941 -14.5303 -16.6895 -24.2305 -31.0195 -24.2305c-2.58008 0 -5.19043 0.290039 -7.7998 0.950195c-17.1406 4.28027 -27.5605 21.6504 -23.2803 38.8096zM95.8398 171.89
-c-2.18945 -8.41992 -11.0801 -13.54 -19.8701 -11.4395l-63.5596 15.25c-8.78027 2.10938 -14.1104 10.6396 -11.9199 19.0596l25.2695 98.1299c10.9707 42.1006 55.4404 67.6904 99.3203 57.1699c8.78027 -2.10938 14.1104 -10.6396 11.9199 -19.0596zM368 288
-c8.83984 0 16 -7.16016 15.9902 -16v-320.01c0 -8.83984 -7.16016 -16 -16 -16h-16c-8.83984 0 -16 7.16016 -16 16v240h-48c-8.48047 0 -16.6201 3.37988 -22.6201 9.37988l-22.4297 22.4297l-19.8906 -79.5693
-c-0.129883 -0.520508 -0.469727 -0.910156 -0.620117 -1.41016l46.8203 -46.8203c12.0898 -12.0898 18.75 -28.1602 18.75 -45.25v-82.75c0 -17.6699 -14.3301 -32 -32 -32s-32 14.3301 -32 32v82.75l-86.6201 86.6201c-5.79297 5.79395 -9.37109 13.7861 -9.37109 22.6191
-c0 2.67969 0.330078 5.28223 0.951172 7.77051l26.9199 107.721c6.56055 26.2197 30.0098 44.5195 57.0303 44.5195c15.7002 0 30.4697 -6.11035 41.5596 -17.2197l46.7803 -46.7803h34.75v16c0 8.83984 7.16016 16 16 16h16zM240 352c-26.5098 0 -48 21.4902 -48 48
-s21.4902 48 48 48s48 -21.4902 48 -48s-21.4902 -48 -48 -48z" />
-    <glyph glyph-name="hippo" unicode="&#xf6ed;" horiz-adv-x="640" 
-d="M581.12 351.8c34.0898 -0.189453 58.8799 -33.6895 58.8799 -67.7803v-92.0195c0 -17.6699 -14.3301 -32 -32 -32v-32c0 -8.83984 -7.16016 -16 -16 -16h-32c-8.83984 0 -16 7.16016 -16 16v32h-128v-176c0 -8.83984 -7.16016 -16 -16 -16h-64
-c-8.83984 0 -16 7.16016 -16 16v70.79c-32.3496 -14.3604 -70.7197 -22.79 -112 -22.79s-79.6504 8.42969 -112 22.79v-70.79c0 -8.83984 -7.16016 -16 -16 -16h-64c-8.83984 0 -16 7.16016 -16 16v240c0 88.3604 85.96 160 192 160
-c49.2402 0 94.0098 -15.5801 128 -40.9805v48.9805c0 13.2598 10.75 24 24 24h16c13.25 0 24 -10.7402 24 -24v-13.8799c10.0498 3.58008 20.7197 5.87988 32 5.87988c39.8301 0 73.9805 -24.2695 88.5195 -58.8203c24.1006 9.04004 48.9307 26.7705 76.6006 26.6201z
-M448 272c8.83984 0 16 7.16016 16 16s-7.16016 16 -16 16s-16 -7.16016 -16 -16s7.16016 -16 16 -16z" />
-    <glyph glyph-name="horse" unicode="&#xf6f0;" horiz-adv-x="576" 
-d="M575.92 371.4l0.0605469 -77.71c0 -0.0107422 0.0185547 -0.00683594 0.0185547 -0.0166016c0 -13.4707 -8.34277 -25.0088 -20.1387 -29.7236l-32.5508 -13.0205c-15.4395 -6.17969 -33.04 0.5 -40.4893 15.3701l-18.9004 37.7002l-16 7.11035v-102.471
-c0.00976562 -0.219727 0.0800781 -0.419922 0.0800781 -0.639648c0 -30.4697 -12.2598 -58.0303 -32 -78.2197v-177.78c0 -8.83984 -7.16016 -16 -16 -16h-64c-8.83984 0 -16 7.16016 -16 16v150.4l-133.97 22.3301l-23.8398 -63.5908l26.3096 -105.26
-c2.53027 -10.0996 -5.11035 -19.8799 -15.5195 -19.8799h-65.9609c-7.48633 0 -13.7783 5.16602 -15.5098 12.1201l-24.8496 99.4102c-1.24707 4.98047 -1.8916 10.1924 -1.8916 15.5576c0 7.8916 1.43262 15.4502 4.05176 22.4316l25.7197 68.6006
-c-18.7002 17.5195 -30.54 42.2402 -30.54 69.8799c0 2.62988 0.570312 5.09961 0.780273 7.67969c-9.91016 -7.29004 -16.7803 -18.46 -16.7803 -31.6797v-56c0 -8.83984 -7.16016 -16 -16 -16h-16c-8.83984 0 -16 7.16016 -16 16v56c0 48.5303 39.4697 88 88 88v-1.11035
-c17.5996 20.1299 43.1602 33.1104 72 33.1104h159.92c0 70.6904 57.3105 128 128 128h119.98c5.05957 0 8.94922 -4.67969 7.92969 -9.63965c-2.67969 -13.1699 -11.1201 -23.8203 -22.1797 -30.6602c5.10938 -5.37988 9.90918 -10.4697 13.6895 -14.5
-c5.56055 -5.93066 8.57031 -13.6699 8.58008 -21.7998zM511.92 352c8.83984 0 16 7.16016 16 16s-7.16016 16 -16 16s-16 -7.16016 -16 -16s7.16016 -16 16 -16z" />
-    <glyph glyph-name="house-damage" unicode="&#xf6f1;" horiz-adv-x="576" 
-d="M288 333.04l218.74 -192.94c1.54004 -1.37988 3.55957 -2.04004 5.25977 -3.19922v-184.9c0 -8.83984 -7.16016 -16 -16 -16h-176.19l-39.9199 55.25l104.11 64l-148.05 136.78l60.1602 -119.221l-104.11 -64l37.2305 -72.8096h-149.23c-8.83984 0 -16 7.16016 -16 16
-v184.94c1.78027 1.20996 3.84961 1.88965 5.46973 3.34961zM570.69 211.72c6.5791 -5.89941 7.11914 -16.0195 1.21973 -22.5898l-21.4004 -23.8203c-5.91016 -6.56934 -16.0293 -7.10938 -22.5996 -1.20996l-229.32 202.271c-6.0498 5.33008 -15.1201 5.33008 -21.1699 0
-l-229.32 -202.28c-6.58008 -5.91016 -16.6992 -5.35938 -22.5996 1.20996l-21.4004 23.8203c-5.90918 6.58008 -5.35938 16.6895 1.20996 22.5996l255.99 226.011c7.60059 6.85938 17.1406 10.2793 26.7002 10.2695s19.1201 -3.4502 26.75 -10.3096l101.25 -89.3809v51.6904
-c0 8.83984 7.16016 16 16 16h64c8.83984 0 16 -7.16016 16 -16v-136.45z" />
-    <glyph glyph-name="hryvnia" unicode="&#xf6f2;" horiz-adv-x="384" 
-d="M368 208h-99.7002l-34.6699 -32h134.37c8.83984 0 16 -7.16016 16 -16v-32c0 -8.83984 -7.16016 -16 -16 -16h-203.7l-29.4902 -27.2197c-4.3291 -4 -6.80957 -9.66992 -6.80957 -15.5801c0 -11.6807 9.50977 -21.2002 21.2002 -21.2002h83.6299
-c5.83301 0 11.1992 2.09375 15.3604 5.55957l11.75 9.80078c10.1895 8.48926 25.3193 7.12012 33.8096 -3.07031l20.4902 -24.5898c8.49023 -10.1807 7.10938 -25.3105 -3.07031 -33.7998l-11.7695 -9.81055c-18.6807 -15.5596 -42.2207 -24.0898 -66.54 -24.0898h-78.8203
-c-37.1396 0 -73.3799 17.8496 -92.0498 49.9502c-17.8701 30.7197 -17.54 65.4199 -4.12988 94.0498h-41.8604c-8.83984 0 -16 7.16016 -16 16v32c0 8.83984 7.16016 16 16 16h99.7002l34.6699 32h-134.37c-8.83984 0 -16 7.16016 -16 16v32c0 8.83984 7.16016 16 16 16
-h203.7l29.4902 27.21c4.3291 4 6.80957 9.66992 6.80957 15.5801c0 11.6797 -9.50977 21.2002 -21.2002 21.2002h-83.6201c-5.62012 0 -11.0693 -1.9707 -15.3896 -5.57031l-11.7305 -9.78027c-10.1895 -8.48926 -25.3193 -7.12012 -33.8096 3.07031l-20.4902 24.5898
-c-8.49023 10.1807 -7.10938 25.3105 3.07031 33.7998l11.7695 9.81055c18.6807 15.5596 42.2207 24.0898 66.54 24.0898h78.8203c37.1396 0 73.3799 -17.8398 92.0498 -49.9502c17.8701 -30.7197 17.54 -65.4199 4.12988 -94.0498h41.8604c8.83984 0 16 -7.16016 16 -16v-32
-c0 -8.83984 -7.16016 -16 -16 -16z" />
-    <glyph glyph-name="mask" unicode="&#xf6fa;" horiz-adv-x="640" 
-d="M320.67 384c449.09 0 348.32 -384 158.46 -384c-39.8994 0 -77.4697 20.6904 -101.41 55.8604l-25.7295 37.79c-15.6602 22.9893 -46.9707 22.9893 -62.6299 0l-25.7305 -37.79c-23.9502 -35.1699 -61.5195 -55.8604 -101.42 -55.8604c-199.11 0 -284.14 384 158.46 384z
-M184 139.64c41.0596 0 67.7598 25.6504 80.0801 41.0508c5.22949 6.54004 5.22949 16.0996 0 22.6299c-12.3203 15.3896 -39.0098 41.0498 -80.0801 41.0498s-67.7598 -25.6504 -80.0801 -41.0498c-5.22949 -6.54004 -5.22949 -16.1006 0 -22.6299
-c12.3203 -15.3906 39.0205 -41.0508 80.0801 -41.0508zM456 139.64c41.0596 0 67.7598 25.6504 80.0801 41.0508c5.22949 6.54004 5.22949 16.0996 0 22.6299c-12.3203 15.3896 -39.0098 41.0498 -80.0801 41.0498s-67.7598 -25.6504 -80.0801 -41.0498
-c-5.22949 -6.54004 -5.22949 -16.1006 0 -22.6299c12.3203 -15.3906 39.0205 -41.0508 80.0801 -41.0508z" />
-    <glyph glyph-name="mountain" unicode="&#xf6fc;" horiz-adv-x="640" 
-d="M634.92 -14.7002c3.2041 -4.98145 5.06348 -10.9756 5.06348 -17.334c0 -5.53906 -1.41113 -10.751 -3.89355 -15.2959c-5.60938 -10.2803 -16.3799 -16.6699 -28.0898 -16.6699h-576c-12.1191 0 -22.6582 6.7168 -28.0898 16.6602
-c-2.48242 4.5459 -3.89355 9.82715 -3.89355 15.3672c0 6.36035 1.85938 12.2891 5.06348 17.2725l288 448c5.88965 9.16016 16.0303 14.7002 26.9199 14.7002s21.0303 -5.54004 26.9199 -14.7002zM320 356.82l-102.06 -158.761l38.0596 -38.0596l64 64h85.3896z" />
-    <glyph glyph-name="network-wired" unicode="&#xf6ff;" horiz-adv-x="640" 
-d="M640 184c0 -8.83984 -7.16016 -16 -16 -16h-104v-40h56c17.6699 0 32 -14.3301 32 -32v-128c0 -17.6699 -14.3301 -32 -32 -32h-160c-17.6699 0 -32 14.3301 -32 32v128c0 17.6699 14.3301 32 32 32h56v40h-304v-40h56c17.6699 0 32 -14.3301 32 -32v-128
-c0 -17.6699 -14.3301 -32 -32 -32h-160c-17.6699 0 -32 14.3301 -32 32v128c0 17.6699 14.3301 32 32 32h56v40h-104c-8.83984 0 -16 7.16016 -16 16v16c0 8.83984 7.16016 16 16 16h280v40h-72c-17.6699 0 -32 14.3301 -32 32v128c0 17.6699 14.3301 32 32 32h192
-c17.6699 0 32 -14.3301 32 -32v-128c0 -17.6699 -14.3301 -32 -32 -32h-72v-40h280c8.83984 0 16 -7.16016 16 -16v-16zM256 320h128v64h-128v-64zM192 0v64h-96v-64h96zM544 0v64h-96v-64h96z" />
-    <glyph glyph-name="otter" unicode="&#xf700;" horiz-adv-x="640" 
-d="M608 416c17.6699 0 32 -14.3301 32 -32v-32c0 -53.0195 -42.9805 -96 -96 -96h-22.8604l-92.4697 -49.79l55.1104 -110.21h28.2197c17.6699 0 32 -14.3301 32 -32v-16c0 -8.83984 -7.16016 -16 -16 -16h-80l-74.5098 144.5l-149.49 -80.5h64
-c17.6699 0 32 -14.3301 32 -32v-16c0 -8.83984 -7.16016 -16 -16 -16h-224c-8.83008 0 -16 -7.16992 -16 -16s7.16992 -16 16 -16h112c17.6699 0 32 -14.3301 32 -32s-14.3301 -32 -32 -32h-108.47c-39.3799 0 -75.5205 26.9004 -82.2803 65.7002
-c-4.91016 28.1201 5 54.2197 23.1904 71.7998c23.5596 22.75 39.5596 52.1396 39.5596 84.8896v1.61035c0 106.04 85.96 192 192 192h56l153.25 87.5703c9.66992 5.51953 20.6104 8.42969 31.75 8.42969h20.4902c0.00390625 0 0.0166016 0.00878906 0.0214844 0.00878906
-c17.6602 0 33.6582 -7.17188 45.2383 -18.7588l13.25 -13.25h32zM512 400c-8.83984 0 -16 -7.16016 -16 -16s7.16016 -16 16 -16s16 7.16016 16 16s-7.16016 16 -16 16zM544 304c20.8301 0 38.4297 13.4199 45.0498 32h-77.0498l-118.57 -59.29l13.7705 -27.5498
-l101.84 54.8398h34.96z" />
-    <glyph glyph-name="ring" unicode="&#xf70b;" 
-d="M256 384c145.94 0 256 -61.9102 256 -144v-98.1299c0 -78.3506 -114.62 -141.87 -256 -141.87s-256 63.5195 -256 141.87v98.1299c0 82.0898 110.06 144 256 144zM256 320c-106.04 0 -192 -35.8203 -192 -80c0 -9.25977 3.96973 -18.1201 10.9102 -26.3896
-c44.9395 26.1797 108.859 42.3896 181.09 42.3896s136.15 -16.21 181.09 -42.3896c6.94043 8.26953 10.9102 17.1299 10.9102 26.3896c0 44.1797 -85.96 80 -192 80zM120.43 183.36c34.7305 -14.4307 82.6406 -23.3604 135.57 -23.3604s100.84 8.92969 135.57 23.3604
-c-34.6104 14.71 -81.21 24.6396 -135.57 24.6396s-100.96 -9.92969 -135.57 -24.6396z" />
-    <glyph glyph-name="running" unicode="&#xf70c;" horiz-adv-x="416" 
-d="M272 352c-26.5098 0 -48 21.4902 -48 48s21.4902 48 48 48s48 -21.4902 48 -48s-21.4902 -48 -48 -48zM113.69 130.53c7.92969 -17.2402 20.6699 -32.3799 37.9893 -42.6104l10.6699 -6.2998l-8.79004 -20.5205c-7.5293 -17.6494 -24.8594 -29.0898 -44.1094 -29.0898
-h-77.4502c-17.6699 0 -32 14.3301 -32 32s14.3301 32 32 32h66.8896zM384 224.01c17.6699 0 32 -14.3193 32 -31.9902c0 -17.6699 -14.3301 -32 -32 -32h-53.9902c-18.1895 0 -35.1094 10.5508 -43.1094 26.8906l-20.2705 41.4297l-31.3096 -78.2803l61.2393 -36.1396
-c18.75 -11.3096 27.5508 -33.6201 21.6406 -54.3896l-31.6406 -101.061c-4.29004 -13.6797 -16.9092 -22.4502 -30.5195 -22.4502c-3.16992 0 -6.38965 0.480469 -9.58008 1.48047c-16.8604 5.28027 -26.25 23.2305 -20.9697 40.0898l27.4697 87.7305l-84.9795 50.1699
-c-27.6104 16.2998 -38.9209 50.8301 -26.3008 80.3096l37.46 87.3906l-14.6992 4.36914c-7.83008 1.86035 -17.6006 -0.25 -25.2705 -6.13965l-39.6895 -30.4102c-14.0205 -10.7402 -34.0908 -8.10938 -44.8604 5.91992c-10.7705 14.0303 -8.11035 34.1104 5.91992 44.8604
-l39.6699 30.4102c23.0703 17.6895 52.54 23.9395 80.8398 17.1396l71.0801 -21.1396c26.3301 -6.70996 49.2803 -25.3906 61.7803 -50.9404l26.0596 -53.25h44.0303z" />
-    <glyph glyph-name="scroll" unicode="&#xf70e;" horiz-adv-x="640" 
-d="M48 448c26.4697 0 48 -21.5303 48 -48v-80h-80c-8.83984 0 -16 7.16016 -16 16v64c0 26.4697 21.5303 48 48 48zM256 35.4297c0 -31.8896 -21.7803 -61.4297 -53.25 -66.5498c-40.0996 -6.53027 -74.75 24.25 -74.75 63.1201v368c0 18.0801 -6.25977 34.5898 -16.4102 48
-h336.41c52.9404 0 96 -43.0596 96 -96v-256h-288v-60.5703zM288 64h336c8.83984 0 16 -7.16016 16 -16c0 -61.8604 -50.1396 -112 -112 -112h-336c52.9404 0 96 43.0703 96 96v32z" />
-    <glyph glyph-name="skull-crossbones" unicode="&#xf714;" horiz-adv-x="448" 
-d="M439.15 -5.05957c7.89941 -3.9502 11.1094 -13.5605 7.15918 -21.4707l-14.3096 -28.6299c-3.95996 -7.89941 -13.5703 -11.0996 -21.4697 -7.14941l-186.53 90.7197l-186.52 -90.7197c-7.91016 -3.95996 -17.5205 -0.75 -21.4707 7.14941l-14.3096 28.6299
-c-3.95996 7.91016 -0.75 17.5205 7.14941 21.4707l141.98 69.0596l-141.99 69.0596c-7.89941 3.9502 -11.0996 13.5605 -7.14941 21.46l14.3096 28.6309c3.95996 7.90918 13.5703 11.1094 21.4697 7.15918l186.53 -90.7197l186.53 90.7197
-c7.91016 3.9502 17.5195 0.740234 21.4697 -7.15918l14.3096 -28.6309c3.95996 -7.89941 0.75 -17.5098 -7.14941 -21.46l-141.99 -69.0596zM150 210.72c-41.7803 22.4102 -70 62.75 -70 109.28c0 70.6904 64.4697 128 144 128s144 -57.3096 144 -128
-c0 -46.5303 -28.2197 -86.8701 -70 -109.28l5.5 -25.8701c2.66992 -12.6191 -5.41992 -24.8496 -16.4502 -24.8496h-126.08c-11.0293 0 -19.1201 12.2305 -16.4502 24.8496zM280 336c-17.6504 0 -32 -14.3496 -32 -32s14.3496 -32 32 -32s32 14.3496 32 32
-s-14.3496 32 -32 32zM168 336c-17.6504 0 -32 -14.3496 -32 -32s14.3496 -32 32 -32s32 14.3496 32 32s-14.3496 32 -32 32z" />
-    <glyph glyph-name="slash" unicode="&#xf715;" horiz-adv-x="640" 
-d="M594.53 -60.6299l-588.351 454.729c-6.96973 5.41992 -8.22949 15.4707 -2.80957 22.4502l19.6396 25.2705c5.41992 6.97949 15.4805 8.23926 22.46 2.80957l588.351 -454.729c6.96973 -5.41992 8.22949 -15.4707 2.80957 -22.4502l-19.6396 -25.2705
-c-5.41992 -6.97949 -15.4805 -8.22949 -22.46 -2.80957z" />
-    <glyph glyph-name="spider" unicode="&#xf717;" horiz-adv-x="576" 
-d="M151.17 280.65l-27.1504 54.2998c-2.14551 4.29883 -3.3623 9.18359 -3.3623 14.3115c0 3.53516 0.573242 6.9375 1.63281 10.1182l25.8896 77.6797c2.79004 8.39062 11.8604 12.9209 20.2402 10.1201l15.1699 -5.05957
-c8.39062 -2.7998 12.9102 -11.8604 10.1201 -20.2402l-23.7998 -71.3896l20.29 -40.5801c-1.41016 -4.20996 -2.49023 -8.20996 -3.20996 -11.79l-5.2207 -26.1201h-4.66992zM573.31 98.6201c4.90039 -7.35059 2.9209 -17.2803 -4.43945 -22.1797l-13.3105 -8.88086
-c-7.34961 -4.89941 -17.29 -2.90918 -22.1895 4.44043l-48 72h-47.0605l60.8301 -97.3301c3.16992 -5.08008 4.86035 -10.96 4.86035 -16.96v-77.71c0 -8.83984 -7.16016 -16 -16 -16h-16c-8.83984 0 -16 7.16016 -16 16v73.1104l-74.0801 118.529
-c1 -14.0498 2.08008 -28.1094 2.08008 -42.21c0 -53.0693 -40.7598 -101.43 -96 -101.43s-96 48.3604 -96 101.43c0 14.1006 1.07031 28.1602 2.08008 42.21l-74.0801 -118.529v-73.1104c0 -8.83984 -7.16016 -16 -16 -16h-16c-8.83984 0 -16 7.16016 -16 16v77.7002
-c0 0.00292969 0.0205078 0.0400391 0.0205078 0.0439453c0 6.20898 1.77246 12.0078 4.83984 16.916l60.8301 97.3301h-47.0605l-48 -72c-4.89941 -7.35059 -14.8398 -9.33984 -22.1895 -4.44043l-13.3105 8.87988c-7.36035 4.90039 -9.33984 14.8398 -4.43945 22.1904
-l52.7393 79.1299c5.74121 8.60547 15.5186 14.248 26.6299 14.25h77.9404l-68.9902 24.3496c-6.81738 2.27441 -12.5947 6.74023 -16.5098 12.6104l-53.5996 80.4102c-4.90039 7.36035 -2.91016 17.29 4.43945 22.1895l13.3105 8.88086
-c7.35938 4.89941 17.29 2.90918 22.1895 -4.44043l50.5703 -75.8301l60.4902 -20.1699h36.0996l10.3701 51.8496c2.18945 10.9707 17.3701 60.1504 69.6299 60.1504s67.4404 -49.1797 69.6299 -60.1504l10.3701 -51.8496h36.0996l60.5 20.1699l50.5605 75.8301
-c4.89941 7.34961 14.8398 9.33984 22.1895 4.44043l13.3105 -8.88086c7.34961 -4.89941 9.33984 -14.8398 4.43945 -22.1895l-53.5996 -80.4102c-3.91504 -5.87012 -9.69238 -10.3359 -16.5098 -12.6104l-68.9902 -24.3594h77.9404
-c11.1084 -0.00292969 20.8828 -5.64453 26.6191 -14.25zM406.09 350.49l-23.7998 71.3896c-2.79004 8.37988 1.74023 17.4404 10.1201 20.2402l15.1699 5.05957c8.37988 2.80078 17.4502 -1.73926 20.2402 -10.1201l25.8896 -77.6797
-c1.06152 -3.18164 1.62598 -6.62109 1.62598 -10.1582c0 -5.12695 -1.20801 -9.97461 -3.35547 -14.2715l-27.1504 -54.2998l-25.9297 -8.65039h-4.66992l-5.2207 26.1201c-0.719727 3.58008 -1.7998 7.58008 -3.20996 11.79z" />
-    <glyph glyph-name="toilet-paper" unicode="&#xf71e;" horiz-adv-x="576" 
-d="M128 448h284.44c-36.7705 -38.4805 -60.4404 -108.4 -60.4404 -192v-172.07c0 -53.6494 -11.8799 -87.5693 -24.71 -126.05c-4.36035 -13.0703 -16.5898 -21.8799 -30.3604 -21.8799h-280.92c-10.9199 0 -18.6299 10.7002 -15.1797 21.0596
-c21.3701 64.1006 31.1699 85.75 31.1699 126.87v172.07c0 106.04 42.9805 192 96 192zM96 224c8.83984 0 16 7.16016 16 16s-7.16016 16 -16 16s-16 -7.16016 -16 -16s7.16016 -16 16 -16zM160 224c8.83984 0 16 7.16016 16 16s-7.16016 16 -16 16s-16 -7.16016 -16 -16
-s7.16016 -16 16 -16zM224 224c8.83984 0 16 7.16016 16 16s-7.16016 16 -16 16s-16 -7.16016 -16 -16s7.16016 -16 16 -16zM288 224c8.83984 0 16 7.16016 16 16s-7.16016 16 -16 16s-16 -7.16016 -16 -16s7.16016 -16 16 -16zM480 448c53.0195 0 96 -85.96 96 -192
-s-42.9805 -192 -96 -192s-96 85.96 -96 192s42.9805 192 96 192zM480 192c17.6699 0 32 28.6504 32 64s-14.3301 64 -32 64s-32 -28.6504 -32 -64s14.3301 -64 32 -64z" />
-    <glyph glyph-name="tractor" unicode="&#xf722;" horiz-adv-x="640" 
-d="M528 112c48.5996 0 88 -39.4004 88 -88s-39.4004 -88 -88 -88s-88 39.4004 -88 88s39.4004 88 88 88zM528 0c13.2305 0 24 10.7695 24 24s-10.7695 24 -24 24s-24 -10.7695 -24 -24s10.7695 -24 24 -24zM608 288c17.6699 0 32 -14.3301 31.9902 -32v-50.7598
-c0 -8.49023 -3.37012 -16.6299 -9.37012 -22.6299l-50.8203 -50.8203c-15.7295 7.58984 -33.1602 12.2002 -51.7998 12.2002c-39.1396 0 -73.5498 -19.0098 -95.46 -48h-80.54v-6c0 -12.1504 -9.84961 -22 -22 -22h-7.16016
-c-2.9502 -9.90039 -6.91992 -19.46 -11.9102 -28.7207l5.06055 -5.05957c8.58984 -8.58984 8.58984 -22.5195 0 -31.1104l-31.1104 -31.1094c-8.58984 -8.58984 -22.5195 -8.58984 -31.1104 0l-5.05957 5.05957c-9.25977 -4.99023 -18.8203 -8.95996 -28.7197 -11.9102
-v-7.13965c0 -12.1504 -9.85059 -22 -22 -22h-44c-12.1504 0 -22 9.84961 -22 22v7.15039c-9.90039 2.94922 -19.46 6.91992 -28.7207 11.9092l-5.05957 -5.05957c-8.58984 -8.58984 -22.5195 -8.58984 -31.1104 0l-31.1094 31.1104
-c-8.58984 8.58984 -8.58984 22.5195 0 31.1094l5.05957 5.06055c-4.99023 9.26953 -8.9502 18.8193 -11.9102 28.7295h-7.13965c-12.1504 0 -22 9.85059 -22 22v44c0 12.1504 9.84961 22 22 22h7.15039c2.94922 9.90039 6.91992 19.46 11.9092 28.7207l-5.05957 5.05957
-c-8.58984 8.58984 -8.58984 22.5195 0 31.1104l31.1104 31.1094c7.92969 7.93066 20.2598 8.2002 28.8896 1.4707v146.52c0 26.4697 21.5303 48 48 48h133.45c0.015625 0 0.00878906 0.0341797 0.0244141 0.0341797c19.7969 0 36.8047 -12.0312 44.1055 -29.1738
-l56.0898 -130.86h102.33v40.2002c0 29.9902 10.5801 58.8994 29.5 81.7197c6.37988 7.7002 18.04 8.23047 24.7002 0.780273l21.6299 -24.1699c4.87012 -5.43066 5.74023 -13.6904 1.32031 -19.4902c-8.4502 -11.0801 -13.1504 -24.7197 -13.1504 -38.8398v-40.2002h64z
-M176 32c44.1797 0 80 35.8203 80 80s-35.8203 80 -80 80s-80 -35.8203 -80 -80s35.8203 -80 80 -80zM198 288h110.04l-41.1504 96h-106.89v-96h38z" />
-    <glyph glyph-name="user-injured" unicode="&#xf728;" horiz-adv-x="448" 
-d="M277.37 436.02l-90.6904 -68.0195h-81.1895c19.0098 46.8701 64.8193 80 118.51 80c19.1104 0 37.0801 -4.46973 53.3701 -11.9805zM342.51 368h-102.52l66.0293 49.5195c15.8203 -13.3193 28.5908 -30.0498 36.4902 -49.5195zM224 192c-70.6904 0 -128 57.3096 -128 128
-c0 5.48047 0.94043 10.7002 1.61035 16h252.779c0.660156 -5.2998 1.61035 -10.5195 1.61035 -16c0 -70.6904 -57.3096 -128 -128 -128zM80 148.3c9.34668 4.14844 19.4795 7.31641 29.8096 9.21973l98.4502 -221.52h-128.26v212.3zM0 -16v41.5996
-c0 41.1406 18.8799 77.5107 48 102.16v-191.76c-26.5098 0 -48 21.4902 -48 48zM256 32c26.4697 0 48 -21.5303 48 -48s-21.5303 -48 -48 -48h-12.71l-42.6699 96h55.3799zM313.6 160c74.2305 0 134.4 -60.1699 134.4 -134.4v-41.5996c0 -26.5098 -21.4902 -48 -48 -48
-h-80.4102c10.1504 13.4102 16.4102 29.9199 16.4102 48c0 44.1104 -35.8896 80 -80 80h-69.5898l-42.6699 96h7.37012c22.2393 -10.1797 46.8799 -16 72.8896 -16s50.6504 5.82031 72.8896 16h16.71z" />
-    <glyph glyph-name="vr-cardboard" unicode="&#xf729;" horiz-adv-x="640" 
-d="M608 384c17.6699 0 32 -14.3301 32 -32v-320c0 -17.6699 -14.3301 -32 -32 -32h-160.22c-25.1807 0 -48.0303 14.7695 -58.3604 37.7402l-27.7402 61.6396c-7.88965 17.54 -24.0293 28.6201 -41.6797 28.6201s-33.79 -11.0801 -41.6797 -28.6201l-27.7402 -61.6396
-c-10.3301 -22.9707 -33.1699 -37.7402 -58.3604 -37.7402h-160.22c-17.6699 0 -32 14.3301 -32 32v320c0 17.6699 14.3301 32 32 32h576zM160 144c35.3496 0 64 28.6504 64 64s-28.6504 64 -64 64s-64 -28.6504 -64 -64s28.6504 -64 64 -64zM480 144
-c35.3496 0 64 28.6504 64 64s-28.6504 64 -64 64s-64 -28.6504 -64 -64s28.6504 -64 64 -64z" />
-    <glyph glyph-name="wind" unicode="&#xf72e;" 
-d="M156.7 192c48.7002 0 92.2998 -35 98.3994 -83.4004c7.5 -58.5 -38.0996 -108.6 -95.1992 -108.6c-46.6006 0 -85.6006 33.5 -94.2002 77.5996c-1.7998 9.60059 6.09961 18.4004 15.8994 18.4004h32.8008c6.59961 0 13.0996 -3.7998 15.1992 -10.0996
-c4.30078 -12.7002 16.3008 -21.9004 30.4004 -21.9004c19.5 0 34.9004 17.4004 31.5996 37.4004c-2.59961 15.6992 -17.5 26.5996 -33.3994 26.5996h-142.2c-8.7998 0 -16 7.2002 -16 16v32c0 8.7998 7.2002 16 16 16h140.7zM16 224c-8.7998 0 -16 7.2002 -16 16v32
-c0 8.7998 7.2002 16 16 16h334.2c16 0 30.7998 10.9004 33.3994 26.5996c3.30078 20 -12.1992 37.4004 -31.5996 37.4004c-14.0996 0 -26.0996 -9.2002 -30.4004 -21.9004c-2.09961 -6.2998 -8.5 -10.0996 -15.1992 -10.0996h-32.8008
-c-9.69922 0 -17.6992 8.7002 -15.7998 18.2998c9.7998 50.6006 59.5 87.1006 114.9 75.5c36.2002 -7.59961 65.5 -36.8994 73.0996 -73.0996c13 -61.9004 -34.0996 -116.7 -93.7998 -116.7h-336zM400 192c70.5 0 126 -65.5 108.9 -138.7
-c-9.60059 -41.0996 -43.5 -74 -84.7002 -82.7002c-58.9004 -12.5 -111.601 21.7002 -129.4 72.3008c-3.7002 10.2998 4.40039 21.0996 15.2998 21.0996h33.8008c5.7998 0 11.5996 -2.59961 14.5 -7.59961c8.2998 -14.5 23.6992 -24.4004 41.5996 -24.4004
-c26.5 0 48 21.5 48 48s-21.5 48 -48 48h-116.5c-6.59961 25.2002 -20.5 47.4004 -39.7998 64h156.3z" />
-    <glyph glyph-name="wine-bottle" unicode="&#xf72f;" 
-d="M507.31 375.43c6.25 -6.25 6.25 -16.3799 0.0107422 -22.6201l-22.6299 -22.6299c-6.25 -6.25 -16.3809 -6.25 -22.6309 0l-76.6699 -76.6699c19.7002 -46.5801 10.7305 -102.41 -27.2295 -140.37l-158.391 -158.39c-24.9893 -24.9902 -65.5195 -24.9902 -90.5098 0
-l-90.5098 90.5098c-24.9902 24.9902 -24.9902 65.5205 0 90.5098l158.38 158.381c37.9697 37.96 93.79 46.9297 140.37 27.2295l76.6699 76.6699c-6.25 6.25 -6.25 16.3799 0 22.6299l22.6299 22.6299c6.25 6.25 16.3799 6.25 22.6299 0zM179.22 24.71l122.04 122.04
-l-90.5098 90.5098l-122.04 -122.04z" />
-    <glyph glyph-name="cloud-meatball" unicode="&#xf73b;" 
-d="M48 96c26.5 0 48 -21.5 48 -48s-21.5 -48 -48 -48s-48 21.5 -48 48s21.5 48 48 48zM464 96c26.5 0 48 -21.5 48 -48s-21.5 -48 -48 -48s-48 21.5 -48 48s21.5 48 48 48zM345 84.9004c13.5 -7 23 -20.7002 23 -36.9004s-9.5 -29.9004 -23 -36.9004
-c4.59961 -14.5 1.7002 -30.7998 -9.7998 -42.2998c-8.2002 -8.2002 -18.9004 -12.2998 -29.7002 -12.2998c-4.2998 0 -8.5 1.2002 -12.5996 2.5c-7 -13.5 -20.7002 -23 -36.9004 -23s-29.9004 9.5 -36.9004 23c-4.09961 -1.40039 -8.2998 -2.5 -12.5996 -2.5
-c-10.7998 0 -21.5 4.09961 -29.7002 12.2998c-11.5 11.5 -14.5 27.7998 -9.89941 42.2998c-13.5 7 -23 20.7002 -23 36.9004s9.5 29.9004 23 36.9004c-4.5 14.5 -1.60059 30.7998 9.89941 42.2998s27.7998 14.5 42.2998 9.89941c7 13.5 20.7002 23 36.9004 23
-s29.9004 -9.5 36.9004 -23c14.5 4.5 30.7998 1.60059 42.2998 -9.89941c11.3994 -11.5 14.3994 -27.7998 9.7998 -42.2998zM512 224c0 -53 -43 -96 -96 -96h-43.4004c-3.5 8 -8.39941 15.4004 -14.7998 21.7998c-13.5 13.5 -31.5 21.1006 -50.7998 21.2998
-c-13.5 13.2002 -31.7002 20.9004 -51 20.9004s-37.5 -7.7002 -51 -20.9004c-19.2998 -0.199219 -37.2998 -7.7998 -50.7998 -21.2998c-6.40039 -6.39941 -11.2002 -13.7998 -14.7998 -21.7998h-43.4004c-53 0 -96 43 -96 96c0 42.5 27.7998 78.2002 66.0996 90.7998
-c-1.2998 6.90039 -2.09961 13.9004 -2.09961 21.2002c0 61.9004 50.0996 112 112 112c43.2998 0 80.4004 -24.7998 99 -60.7998c14.7002 17.5 36.4004 28.7998 61 28.7998c44.2002 0 80 -35.7998 80 -80c0 -5.59961 -0.5 -11 -1.59961 -16.2002
-c0.5 0 1 0.200195 1.59961 0.200195c53 0 96 -43 96 -96z" />
-    <glyph glyph-name="cloud-moon-rain" unicode="&#xf73c;" horiz-adv-x="576" 
-d="M350.5 222.5c37.2998 -6.7998 65.5 -39.2998 65.5 -78.5c0 -44.2002 -35.7998 -80 -80 -80h-256c-44.2002 0 -80 35.7998 -80 80c0 38.7998 27.5996 71.0996 64.2002 78.4004c0 0.5 -0.200195 1.09961 -0.200195 1.59961c0 53 43 96 96 96
-c32.0996 0 60.2998 -15.9004 77.7002 -40c10.3994 5 22 8 34.2998 8c39.2002 0 71.5996 -28.2998 78.5 -65.5zM567.9 224.2c6.19922 1.2002 10.5996 -6 6.39941 -10.7998c-27 -33.1006 -67.8994 -53.3008 -112.6 -53.3008c-5.2002 0 -10.1006 1 -15.2002 1.5
-c-6.2002 39.4004 -33.0996 72.5 -70.2002 86.8008c-10.7002 27.8994 -32.2002 49.7998 -58.8994 61.6992c3.2998 76.7002 66.5 137.9 144.399 137.9c8.90039 0 17.7998 -0.799805 26.5 -2.40039c6.2002 -1.09961 7.60059 -9.39941 2.10059 -12.5
-c-35.6006 -20.0996 -57.5 -57.5 -57.5 -98.0996c0 -70.5 64.5996 -124.1 135 -110.8zM364.5 29.9004c7.7002 -4.40039 10.2998 -14.1006 6 -21.8008l-36.5996 -64c-3 -5.19922 -8.40039 -8.09961 -13.9004 -8.09961c-2.7002 0 -5.40039 0.700195 -7.90039 2.09961
-c-7.69922 4.40039 -10.3994 14.1006 -6 21.8008l36.6006 64c4.39941 7.7998 14.2002 10.2998 21.7998 6zM268.5 29.9004c7.7002 -4.40039 10.2998 -14.1006 6 -21.8008l-36.5996 -64c-3 -5.19922 -8.40039 -8.09961 -13.9004 -8.09961
-c-2.7002 0 -5.40039 0.700195 -7.90039 2.09961c-7.69922 4.40039 -10.3994 14.1006 -6 21.8008l36.6006 64c4.39941 7.7998 14.2002 10.2998 21.7998 6zM172.5 29.9004c7.7002 -4.40039 10.2998 -14.1006 6 -21.8008l-36.5996 -64
-c-3 -5.19922 -8.40039 -8.09961 -13.9004 -8.09961c-2.7002 0 -5.40039 0.700195 -7.90039 2.09961c-7.69922 4.40039 -10.3994 14.1006 -6 21.8008l36.6006 64c4.39941 7.7998 14.2002 10.2998 21.7998 6zM76.5 29.9004c7.7002 -4.40039 10.2998 -14.1006 6 -21.8008
-l-36.5996 -64c-3 -5.19922 -8.40039 -8.09961 -13.9004 -8.09961c-2.7002 0 -5.40039 0.700195 -7.90039 2.09961c-7.69922 4.40039 -10.3994 14.1006 -6 21.8008l36.6006 64c4.39941 7.7998 14.2002 10.2998 21.7998 6z" />
-    <glyph glyph-name="cloud-rain" unicode="&#xf73d;" 
-d="M416 320c53 0 96 -43 96 -96s-43 -96 -96 -96h-320c-53 0 -96 43 -96 96c0 42.5 27.7998 78.2002 66.0996 90.7998c-1.2998 6.90039 -2.09961 13.9004 -2.09961 21.2002c0 61.9004 50.0996 112 112 112c43.2998 0 80.4004 -24.7998 99 -60.7998
-c14.7002 17.5 36.4004 28.7998 61 28.7998c44.2002 0 80 -35.7998 80 -80c0 -5.59961 -0.5 -11 -1.59961 -16.2002c0.5 0 1 0.200195 1.59961 0.200195zM88 73.7998c2.5 8.5 13.7998 8.10059 16 0c12.7998 -44.5996 40 -56.2998 40 -87.7002
-c0 -27.6992 -21.5 -50.0996 -48 -50.0996s-48 22.4004 -48 50.0996c0 31.3008 27.2002 43.3008 40 87.7002zM248 73.7998c2.5 8.5 13.7998 8.10059 16 0c12.7998 -44.5996 40 -56.2998 40 -87.7002c0 -27.6992 -21.5 -50.0996 -48 -50.0996s-48 22.4004 -48 50.0996
-c0 31.3008 27.2002 43.3008 40 87.7002zM408 73.7998c2.5 8.5 13.7998 8.10059 16 0c12.7998 -44.5996 40 -56.2998 40 -87.7002c0 -27.6992 -21.5 -50.0996 -48 -50.0996s-48 22.4004 -48 50.0996c0 31.3008 27.2002 43.3008 40 87.7002z" />
-    <glyph glyph-name="cloud-showers-heavy" unicode="&#xf740;" 
-d="M183.9 77.9004c7.69922 -4.40039 10.3994 -14.2002 6 -21.8008l-64 -112c-3 -5.19922 -8.40039 -8.09961 -13.9004 -8.09961c-2.7002 0 -5.40039 0.700195 -7.90039 2.09961c-7.69922 4.30078 -10.3994 14.1006 -6 21.8008l64 112
-c4.40039 7.7998 14.2002 10.3994 21.8008 6zM279.9 77.9004c7.69922 -4.40039 10.3994 -14.2002 6 -21.8008l-64 -112c-3 -5.19922 -8.40039 -8.09961 -13.9004 -8.09961c-2.7002 0 -5.40039 0.700195 -7.90039 2.09961c-7.69922 4.30078 -10.3994 14.1006 -6 21.8008
-l64 112c4.40039 7.7998 14.2002 10.3994 21.8008 6zM87.9004 77.9004c7.69922 -4.40039 10.3994 -14.2002 6 -21.8008l-64 -112c-3 -5.19922 -8.40039 -8.09961 -13.9004 -8.09961c-2.7002 0 -5.40039 0.700195 -7.90039 2.09961
-c-7.69922 4.30078 -10.3994 14.1006 -6 21.8008l64 112c4.40039 7.7998 14.2002 10.3994 21.8008 6zM471.9 77.9004c7.69922 -4.40039 10.3994 -14.2002 6 -21.8008l-64 -112c-3 -5.19922 -8.40039 -8.09961 -13.9004 -8.09961
-c-2.7002 0 -5.40039 0.700195 -7.90039 2.09961c-7.69922 4.30078 -10.3994 14.1006 -6 21.8008l64 112c4.40039 7.7998 14.2002 10.3994 21.8008 6zM375.9 77.9004c7.69922 -4.40039 10.3994 -14.2002 6 -21.8008l-64 -112
-c-3 -5.19922 -8.40039 -8.09961 -13.9004 -8.09961c-2.7002 0 -5.40039 0.700195 -7.90039 2.09961c-7.69922 4.30078 -10.3994 14.1006 -6 21.8008l64 112c4.40039 7.7998 14.2002 10.3994 21.8008 6zM416 320c53 0 96 -43 96 -96s-43 -96 -96 -96h-320
-c-53 0 -96 43 -96 96c0 42.5 27.7998 78.2002 66.0996 90.7998c-1.2998 6.90039 -2.09961 13.9004 -2.09961 21.2002c0 61.9004 50.2002 112 112 112c43.2998 0 80.4004 -24.7998 99 -60.7998c14.7002 17.5 36.4004 28.7998 61 28.7998c44.2002 0 80 -35.7998 80 -80
-c0 -5.59961 -0.5 -11 -1.59961 -16.2002c0.5 0 1 0.200195 1.59961 0.200195z" />
-    <glyph glyph-name="cloud-sun-rain" unicode="&#xf743;" horiz-adv-x="576" 
-d="M510.5 222.5c37.2998 -6.7998 65.5 -39.2998 65.5 -78.5c0 -44.2002 -35.7998 -80 -80 -80h-256c-44.2002 0 -80 35.7998 -80 80c0 38.7998 27.5996 71 64.2002 78.4004c0 0.5 -0.200195 1.09961 -0.200195 1.59961c0 53 43 96 96 96
-c32.0996 0 60.2998 -15.9004 77.7002 -40c10.3994 5 22 8 34.2998 8c39.2002 0 71.5996 -28.2998 78.5 -65.5zM124.1 188.1c3.10059 -3.09961 6.60059 -5.59961 10.2002 -8.2998c-3.89941 -11.3994 -6.2002 -23.3994 -6.2002 -35.8994c0 -2.5 0.5 -4.80078 0.700195 -7.2002
-l-59.2002 -19.7002c-10.1992 -3.2998 -19.8994 6.2998 -16.5 16.5l25.1006 75.2998l-71 35.5c-9.60059 4.7998 -9.60059 18.5 0 23.2998l71 35.5l-25.1006 75.3008c-3.39941 10.1992 6.2002 19.8994 16.4004 16.5l75.2998 -25.1006l35.5 71
-c4.7998 9.60059 18.5 9.60059 23.2998 0l35.5 -71l75.3008 25.1006c10.1992 3.39941 19.8994 -6.2002 16.5 -16.4004l-8.90039 -26.7002c-0.700195 0 -1.2998 0.200195 -2 0.200195c-25.5996 0 -49.2002 -7.7998 -69.2002 -20.7002
-c-37.5996 29.4004 -92.0996 27.2002 -126.7 -7.39941c-37.3994 -37.5 -37.3994 -98.4004 0 -135.801zM193.9 246.1c-18.2002 -8.2998 -33.5 -21.2998 -44.8008 -37.1992c-12.8994 11.6992 -21.0996 28.3994 -21.0996 47.0996c0 35.2998 28.7002 64 64 64
-c12.4004 0 24 -3.7002 33.7998 -9.90039c-16.0996 -17.5996 -27.5996 -39.5 -31.8994 -64zM524.5 29.9004c7.7002 -4.40039 10.2998 -14.1006 6 -21.8008l-36.5996 -64c-3 -5.19922 -8.40039 -8.09961 -13.9004 -8.09961c-2.7002 0 -5.40039 0.700195 -7.90039 2.09961
-c-7.69922 4.40039 -10.3994 14.1006 -6 21.8008l36.6006 64c4.39941 7.7998 14.2002 10.2998 21.7998 6zM428.5 29.9004c7.7002 -4.40039 10.2998 -14.1006 6 -21.8008l-36.5996 -64c-3 -5.19922 -8.40039 -8.09961 -13.9004 -8.09961
-c-2.7002 0 -5.40039 0.700195 -7.90039 2.09961c-7.69922 4.40039 -10.3994 14.1006 -6 21.8008l36.6006 64c4.39941 7.7998 14.2002 10.2998 21.7998 6zM332.5 29.9004c7.7002 -4.40039 10.2998 -14.1006 6 -21.8008l-36.5996 -64
-c-3 -5.19922 -8.40039 -8.09961 -13.9004 -8.09961c-2.7002 0 -5.40039 0.700195 -7.90039 2.09961c-7.69922 4.40039 -10.3994 14.1006 -6 21.8008l36.6006 64c4.39941 7.7998 14.2002 10.2998 21.7998 6zM236.5 29.9004c7.7002 -4.40039 10.2998 -14.1006 6 -21.8008
-l-36.5996 -64c-3 -5.19922 -8.40039 -8.09961 -13.9004 -8.09961c-2.7002 0 -5.40039 0.700195 -7.90039 2.09961c-7.69922 4.40039 -10.3994 14.1006 -6 21.8008l36.6006 64c4.39941 7.7998 14.2002 10.2998 21.7998 6z" />
-    <glyph glyph-name="democrat" unicode="&#xf747;" horiz-adv-x="640" 
-d="M637.3 191.1c4.90039 -7.39941 2.90039 -17.2998 -4.39941 -22.2998l-26.6006 -17.7002c-7.39941 -4.89941 -17.2998 -3 -22.2002 4.40039c-21.7998 32.7002 -23.8994 38.0996 -40.0996 50.2998v-77.7998h-352l-54 108l-38.0996 -34.5996
-c-6 -6 -14.1006 -9.40039 -22.6006 -9.40039h-31c-12.0996 0 -23.2002 6.90039 -28.5996 17.7002l-14.2998 28.5996c-5.40039 10.7998 -4.30078 23.7998 3 33.5l74.5996 99.2998c1.7002 2.30078 4.2002 3.7002 6.40039 5.40039c-4 2.2002 -8 4.2002 -11.3008 7.5
-c-16.3994 16.4004 -18.3994 41.7998 -6.09961 60.4004c2.7998 4.19922 8.7998 4.7998 12.4004 1.19922l42.8994 -42.7998l41.7998 41.7998c4.40039 4.40039 11.8008 3.7002 15.2002 -1.5c15.1006 -22.7998 12.6006 -53.7998 -7.5 -73.8994l81.2002 -81.2002h235.6
-c50.8008 0 97.9004 -25.2002 126.101 -67.5zM296.2 204.7c3 2.89941 1.39941 7.89941 -2.60059 8.5l-22.7998 3.2998l-10.2002 20.7002c-1.89941 3.7002 -7.19922 3.7002 -9 0l-10.1992 -20.7002l-22.8008 -3.2998c-4.09961 -0.600586 -5.7998 -5.60059 -2.7998 -8.5
-l16.5 -16.1006l-3.89941 -22.6992c-0.700195 -4.10059 3.59961 -7.2002 7.19922 -5.30078l20.4004 10.7002l20.4004 -10.7002c3.59961 -1.89941 7.89941 1.2002 7.19922 5.30078l-3.89941 22.6992zM408.2 204.7c3 2.89941 1.39941 7.89941 -2.60059 8.5l-22.7998 3.2998
-l-10.2002 20.7002c-1.89941 3.7002 -7.19922 3.7002 -9 0l-10.1992 -20.7002l-22.8008 -3.2998c-4.09961 -0.600586 -5.7998 -5.60059 -2.7998 -8.5l16.5 -16.1006l-3.89941 -22.6992c-0.700195 -4.10059 3.59961 -7.2002 7.19922 -5.30078l20.4004 10.7002
-l20.4004 -10.7002c3.59961 -1.89941 7.89941 1.2002 7.19922 5.30078l-3.89941 22.6992zM520.2 204.7c3 2.89941 1.39941 7.89941 -2.60059 8.5l-22.7998 3.2998l-10.2002 20.7002c-1.89941 3.7002 -7.19922 3.7002 -9 0l-10.1992 -20.7002l-22.8008 -3.2998
-c-4.09961 -0.600586 -5.7998 -5.60059 -2.7998 -8.5l16.5 -16.1006l-3.89941 -22.6992c-0.700195 -4.10059 3.59961 -7.2002 7.19922 -5.30078l20.4004 10.7002l20.4004 -10.7002c3.59961 -1.89941 7.89941 1.2002 7.19922 5.30078l-3.89941 22.6992zM192 -48v144h352v-144
-c0 -8.7998 -7.2002 -16 -16 -16h-64c-8.7998 0 -16 7.2002 -16 16v80h-160v-80c0 -8.7998 -7.2002 -16 -16 -16h-64c-8.7998 0 -16 7.2002 -16 16z" />
-    <glyph glyph-name="flag-usa" unicode="&#xf74d;" 
-d="M32 448c17.7002 0 32 -14.2998 32 -32v-464c0 -8.7998 -7.2002 -16 -16 -16h-32c-8.7998 0 -16 7.2002 -16 16v464c0 17.7002 14.2998 32 32 32zM299.9 144.4c31.0996 -8.2002 62.5996 -16.5 100 -16.6006c31.8994 0 68.5 6.7998 112.1 24.1006v-36
-c0 -12.3008 -7.09961 -23.8008 -18.5 -28.8008c-175.8 -76.3994 -211.8 69.1006 -397.5 -23.0996v69.2998c92.2002 39.9004 146.7 26.2002 203.9 11.1006zM299.9 240.4c31.0996 -8.2002 62.5996 -16.5 100 -16.5c31.8994 0 68.5 6.7998 112.1 24.0996v-61.5
-c-92.2002 -39.9004 -146.7 -26.2002 -203.9 -11.0996c-57.5 15.0996 -117.3 30 -212.1 -7.60059v61.5c92.2002 39.9004 146.7 26.2002 203.9 11.1006zM309.4 366.3c-7 2.10059 -14.1006 4.2002 -21.3008 6.2002v-33.2002c4 -1.09961 8.10059 -2.2998 12.1006 -3.5
-c26.7002 -8.09961 52.8994 -15.8994 85.7002 -15.8994c32.7998 0 72.5 7.89941 126.1 31.3994v-68.8994c-92.2002 -39.8008 -146.7 -26.1006 -203.9 -11.1006c-57.5 15.1006 -117.3 29.9004 -212.1 -7.59961v151.899c209.4 94.6006 195.3 -59.0996 366.6 28.2002
-c22.6006 11.5 49.4004 -1.5 49.4004 -26.5996v-30.7998c-105.2 -49.1006 -150.8 -35.7002 -202.6 -20.1006zM160 319.9c8.7998 0 16 7.09961 16 16c0 8.89941 -7.2002 16 -16 16s-16 -7.2002 -16 -16c0 -8.90039 7.2002 -16 16 -16zM160 375.7c8.7998 0 16 7.2002 16 16
-c0 8.89941 -7.2002 16 -16 16s-16 -7.2002 -16 -16c0 -8.90039 7.2002 -16 16 -16zM224 327.8c8.7998 0 16 7.2002 16 16c0 8.90039 -7.2002 16 -16 16s-16 -7.2002 -16 -16c0 -8.89941 7.2002 -16 16 -16zM224 383.7c8.7998 0 16 7.2002 16 16c0 8.89941 -7.2002 16 -16 16
-s-16 -7.2002 -16 -16c0 -8.90039 7.2002 -16 16 -16z" />
-    <glyph glyph-name="meteor" unicode="&#xf753;" 
-d="M511.328 427.197c-11.6074 -38.7021 -34.3076 -111.702 -61.3037 -187.701c6.99902 -2.09375 13.4043 -4 18.6074 -5.59277c6.58301 -2.00684 11.3779 -8.13184 11.3779 -15.3672c0 -2.71875 -0.685547 -5.29395 -1.87988 -7.53906
-c-22.1055 -42.2969 -82.6904 -152.795 -142.479 -214.403c-0.999023 -1.09375 -1.99902 -2.5 -2.99902 -3.5c-35.2676 -35.2773 -83.9824 -57.1094 -137.757 -57.1094c-107.53 0 -194.83 87.2998 -194.83 194.83c0 53.7559 21.7637 102.511 57.0195 137.775
-c1 1 2.40625 2 3.49902 3c61.6006 59.9053 171.975 120.405 214.374 142.498c2.24512 1.19434 4.80664 1.87109 7.52441 1.87109c7.23535 0 13.374 -4.78711 15.3779 -11.3711c1.59375 -5.09375 3.5 -11.5928 5.59277 -18.5928
-c75.8955 26.999 148.978 49.7021 187.675 61.2959c1.4834 0.448242 3.05664 0.689453 4.68652 0.689453c8.93164 0 16.1826 -7.25098 16.1826 -16.1826c0 -1.59961 -0.236328 -3.14062 -0.668945 -4.60059zM319.951 127.998
-c-0.00976562 70.626 -57.3525 127.962 -127.98 127.962c-70.6348 0 -127.98 -57.3457 -127.98 -127.98c0 -70.6338 57.3457 -127.979 127.98 -127.979c70.6318 0 127.976 57.3438 127.976 127.976c0 0.0078125 0.00488281 0.0146484 0.00488281 0.0224609zM191.971 159.997
-c-0.00292969 -17.6562 -14.3379 -31.9902 -31.9951 -31.9902c-17.6582 0 -31.9951 14.3369 -31.9951 31.9951c0 17.6592 14.3369 31.9951 31.9951 31.9951h0.0371094c17.6387 0 31.959 -14.3203 31.959 -31.959
-c0 -0.0136719 -0.000976562 -0.0263672 -0.000976562 -0.0410156v0zM223.966 79.998c-0.000976562 -8.82812 -7.16895 -15.9951 -15.998 -15.9951s-15.9971 7.16895 -15.9971 15.998s7.16797 15.9971 15.9971 15.9971c8.81738 -0.0283203 15.9707 -7.18262 15.998 -16v0z
-" />
-    <glyph glyph-name="person-booth" unicode="&#xf756;" horiz-adv-x="576" 
-d="M192 -48v176h64v-176c0 -8.7998 -7.2002 -16 -16 -16h-32c-8.7998 0 -16 7.2002 -16 16zM224 224c17.7002 0 32 -14.2998 32 -32s-14.2998 -32 -32 -32h-57.5c-12.7998 0 -24.7998 5 -33.9004 14.0996l-20.8994 20.9004v-80.5996l41.2002 -61.3008
-c4.39941 -8.7998 6.69922 -18.6992 6.69922 -28.5996v-56.5c0 -17.7002 -14.2998 -32 -32 -32c-17.6992 0 -32 14.2998 -32 32v56l-29.0996 43c-0.900391 0.400391 -1.59961 1.2002 -2.5 1.7002l-0.0996094 -100.7c0 -17.7002 -14.4004 -32 -32 -32
-c-17.6006 0 -31.9004 14.2998 -31.9004 32l0.200195 160l-0.200195 95.9004c0 17.0996 6.7002 33.1992 18.7002 45.2998c12.0996 12.0996 28.2002 18.7998 45.2998 18.7998h18.7002c17 0 33.0996 -6.59961 45.2002 -18.7002l45.1992 -45.2998h50.9004zM64 320
-c-26.5 0 -48 21.5 -48 48s21.5 48 48 48s48 -21.5 48 -48s-21.5 -48 -48 -48zM288 416v32h192v-416c0 -17.7002 -14.2998 -32 -32 -32s-32 14.2998 -32 32c0 -17.7002 -14.2998 -32 -32 -32c-17.0996 0 -30.7998 13.5 -31.7002 30.4004
-c-4.2998 -21.3008 -17.0996 -30.4004 -32.2998 -30.4004c-18.4004 0 -35.7002 16.7002 -31.4004 38.2998l30.9004 154.601zM192 416c0 17.7002 14.2998 32 32 32h32v-192h-64v160zM544 448c17.7002 0 32 -14.2998 32 -32v-464c0 -8.7998 -7.2002 -16 -16 -16h-32
-c-8.7998 0 -16 7.2002 -16 16v496h32z" />
-    <glyph glyph-name="poo-storm" unicode="&#xf75a;" horiz-adv-x="448" 
-d="M308 112c9.2002 0 15 -10 10.4004 -18l-88 -152c-2.2002 -3.7998 -6.2002 -6 -10.4004 -6c-7.7002 0 -13.5 7.2002 -11.7002 14.7998l23 97.2002h-59.2998c-7.2998 0 -12.9004 6.40039 -11.9004 13.5996l16 120c0.800781 5.90039 5.90039 10.4004 11.9004 10.4004h68
-c7.90039 0 13.5996 -7.5 11.5996 -15.0996l-17.2998 -64.9004h57.7002zM374.4 223.3c41 -3.2998 73.5996 -37.5 73.5 -79.2998c0 -44 -36 -80 -80 -80h-30l8.09961 14c7.7998 13.5 7.7998 30.4004 0 44s-22.4004 22 -38.0996 22h-16l6.59961 24.7002
-c3.59961 13.2998 0.799805 27.2002 -7.59961 38.0996c-8.40039 10.9004 -21.1006 17.2002 -34.9004 17.2002h-68c-22 0 -40.7002 -16.4004 -43.7002 -38.2002l-16 -120c0 -0.599609 0.100586 -1.2002 0 -1.7998h-48.2998c-44 0 -80 36 -80 80
-c0 41.7998 32.5996 76 73.5996 79.2998c-5.89941 9.60059 -9.59961 20.6006 -9.59961 32.7002c0 35.2998 28.7002 64 64 64h16c44.2002 0 80 35.7998 80 80c0 17.4004 -5.7002 33.4004 -15.0996 46.5c4.89941 0.799805 9.89941 1.5 15.0996 1.5c53 0 96 -43 96 -96
-c0 -11.2998 -2.2998 -21.9004 -5.90039 -32h5.90039c35.2998 0 64 -28.7002 64 -64c0 -12.0996 -3.7002 -23.0996 -9.59961 -32.7002z" />
-    <glyph glyph-name="rainbow" unicode="&#xf75b;" horiz-adv-x="576" 
-d="M268.3 415.3c167.7 11.2998 307.7 -122 307.7 -287.3v-144c0 -8.7998 -7.2002 -16 -16 -16h-32c-8.7998 0 -16 7.2002 -16 16v136.2c0 113.8 -81.5996 215.399 -194.5 229.899c-136.6 17.6006 -253.5 -88.8994 -253.5 -222.1v-144c0 -8.7998 -7.2002 -16 -16 -16h-32
-c-8.7998 0 -16 7.2002 -16 16v133.8c0 153.3 115.4 287.3 268.3 297.5zM262.7 318.4c117.1 15 217.3 -76.2002 217.3 -190.4v-144c0 -8.7998 -7.2002 -16 -16 -16h-32c-8.7998 0 -16 7.2002 -16 16v138.3c0 66.9004 -48.7002 126.601 -115.2 133.101
-c-76.2998 7.39941 -140.8 -52.6006 -140.8 -127.4v-144c0 -8.7998 -7.2002 -16 -16 -16h-32c-8.7998 0 -16 7.2002 -16 16v137.3c0 97.6006 70 184.7 166.7 197.101zM268.9 222.1c61.2998 11.9004 115.1 -34.8994 115.1 -94.0996v-144c0 -8.7998 -7.2002 -16 -16 -16h-32
-c-8.7998 0 -16 7.2002 -16 16v144c0 17.5996 -14.2998 32 -32 32s-32 -14.4004 -32 -32v-144c0 -8.7998 -7.2002 -16 -16 -16h-32c-8.7998 0 -16 7.2002 -16 16v140.2c0 46.3994 31.2998 89 76.9004 97.8994z" />
-    <glyph glyph-name="republican" unicode="&#xf75e;" horiz-adv-x="640" 
-d="M544 256v-64h-544v64c0 88.4004 71.5996 160 160 160h224c88.4004 0 160 -71.5996 160 -160zM176.3 277.6c3.5 3.5 1.60059 9.5 -3.39941 10.2002l-27.4004 4l-12.2002 24.7998c-2.09961 4.40039 -8.5 4.5 -10.7002 0l-12.1992 -24.7998l-27.4004 -4
-c-4.90039 -0.700195 -6.90039 -6.7002 -3.2998 -10.2002l19.7998 -19.2998l-4.7002 -27.2998c-0.799805 -4.90039 4.40039 -8.59961 8.7002 -6.2998l24.5 12.8994l24.5 -12.8994c4.40039 -2.2998 9.5 1.39941 8.7002 6.2998l-4.7002 27.2998zM320.3 277.6
-c3.5 3.5 1.60059 9.5 -3.39941 10.2002l-27.4004 4l-12.2002 24.7998c-2.09961 4.40039 -8.5 4.5 -10.7002 0l-12.1992 -24.7998l-27.4004 -4c-4.90039 -0.700195 -6.90039 -6.7002 -3.2998 -10.2002l19.7998 -19.2998l-4.7002 -27.2998
-c-0.799805 -4.90039 4.40039 -8.59961 8.7002 -6.2998l24.5 12.8994l24.5 -12.8994c4.40039 -2.2998 9.5 1.39941 8.7002 6.2998l-4.7002 27.2998zM464.3 277.6c3.5 3.5 1.60059 9.5 -3.39941 10.2002l-27.4004 4l-12.2002 24.7998c-2.09961 4.40039 -8.5 4.5 -10.7002 0
-l-12.1992 -24.7998l-27.4004 -4c-4.90039 -0.700195 -6.90039 -6.7002 -3.2998 -10.2002l19.7998 -19.2998l-4.7002 -27.2998c-0.799805 -4.90039 4.40039 -8.59961 8.7002 -6.2998l24.5 12.8994l24.5 -12.8994c4.40039 -2.2998 9.5 1.39941 8.7002 6.2998l-4.7002 27.2998z
-M624 128c8.7998 0 16 -7.2002 16 -16v-64c0 -46.9004 -40.5996 -84.5 -88.4004 -79.5996c-41.5996 4.19922 -71.5996 42.5 -71.5996 84.2998v43.2998h-32v-112c0 -8.7998 -7.2002 -16 -16 -16h-96c-8.7998 0 -16 7.2002 -16 16v80h-192v-80c0 -8.7998 -7.2002 -16 -16 -16
-h-96c-8.7998 0 -16 7.2002 -16 16v176h544v-112c0 -8.7998 7.2002 -16 16 -16s16 7.2002 16 16v64c0 8.7998 7.2002 16 16 16h32z" />
-    <glyph glyph-name="smog" unicode="&#xf75f;" horiz-adv-x="640" 
-d="M624 80c8.7998 0 16 -7.2002 16 -16v-16c0 -8.7998 -7.2002 -16 -16 -16h-544c-8.7998 0 -16 7.2002 -16 16v16c0 8.7998 7.2002 16 16 16h544zM144 -16c8.7998 0 16 -7.2002 16 -16v-16c0 -8.7998 -7.2002 -16 -16 -16h-128c-8.7998 0 -16 7.2002 -16 16v16
-c0 8.7998 7.2002 16 16 16h128zM560 -16c8.7998 0 16 -7.2002 16 -16v-16c0 -8.7998 -7.2002 -16 -16 -16h-336c-8.7998 0 -16 7.2002 -16 16v16c0 8.7998 7.2002 16 16 16h336zM144 160c-79.5 0 -144 64.5 -144 144s64.5 144 144 144c41 0 77.7998 -17.2998 104 -44.7998
-c26.2002 27.5 63 44.7998 104 44.7998c54.7998 0 102 -31 126.3 -76.0996c15 7.5 31.7002 12.0996 49.7002 12.0996c61.9004 0 112 -50.0996 112 -112s-50.0996 -112 -112 -112h-60.0996c-22.6006 -19.7002 -51.6006 -32 -83.9004 -32s-61.4004 12.2998 -83.9004 32h-156.1z
-" />
-    <glyph glyph-name="temperature-high" unicode="&#xf769;" 
-d="M416 448c52.9004 0 96 -43.0996 96 -96s-43.0996 -96 -96 -96s-96 43.0996 -96 96s43.0996 96 96 96zM416 320c17.7002 0 32 14.2998 32 32s-14.2998 32 -32 32s-32 -14.2998 -32 -32s14.2998 -32 32 -32zM256 336v-166.5c19.7002 -24.5996 32 -55.5 32 -89.5
-c0 -79.5 -64.5 -144 -144 -144s-144 64.5 -144 144c0 34 12.2998 64.7998 32 89.5v166.5c0 61.9004 50.0996 112 112 112s112 -50.0996 112 -112zM144 0c44.0996 0 80 35.9004 80 80c0 25.5 -12.2002 49 -32 63.7998v192.2c0 26.5 -21.5 48 -48 48s-48 -21.5 -48 -48v-192.2
-c-19.7998 -14.8994 -32 -38.2998 -32 -63.7998c0 -44.0996 35.9004 -80 80 -80zM160 125.1c18.5996 -6.59961 32 -24.1992 32 -45.0996c0 -26.5 -21.5 -48 -48 -48s-48 21.5 -48 48c0 20.9004 13.4004 38.5 32 45.0996v210.9c0 8.7998 7.2002 16 16 16s16 -7.2002 16 -16
-v-210.9z" />
-    <glyph glyph-name="temperature-low" unicode="&#xf76b;" 
-d="M416 448c52.9004 0 96 -43.0996 96 -96s-43.0996 -96 -96 -96s-96 43.0996 -96 96s43.0996 96 96 96zM416 320c17.7002 0 32 14.2998 32 32s-14.2998 32 -32 32s-32 -14.2998 -32 -32s14.2998 -32 32 -32zM256 336v-166.5c19.7002 -24.5996 32 -55.5 32 -89.5
-c0 -79.5 -64.5 -144 -144 -144s-144 64.5 -144 144c0 34 12.2998 64.7998 32 89.5v166.5c0 61.9004 50.0996 112 112 112s112 -50.0996 112 -112zM144 0c44.0996 0 80 35.9004 80 80c0 25.5 -12.2002 49 -32 63.7998v192.2c0 26.5 -21.5 48 -48 48s-48 -21.5 -48 -48v-192.2
-c-19.7998 -14.8994 -32 -38.2998 -32 -63.7998c0 -44.0996 35.9004 -80 80 -80zM160 125.1c18.5996 -6.59961 32 -24.1992 32 -45.0996c0 -26.5 -21.5 -48 -48 -48s-48 21.5 -48 48c0 20.9004 13.4004 38.5 32 45.0996v18.9004c0 8.7998 7.2002 16 16 16s16 -7.2002 16 -16
-v-18.9004z" />
-    <glyph glyph-name="vote-yea" unicode="&#xf772;" horiz-adv-x="640" 
-d="M608 128c17.7002 0 32 -14.2998 32 -32v-96c0 -17.7002 -14.2998 -32 -32 -32h-576c-17.7002 0 -32 14.2998 -32 32v96c0 17.7002 14.2998 32 32 32h64v-64h-22.4004c-5.2998 0 -9.59961 -3.59961 -9.59961 -8v-16c0 -4.40039 4.2998 -8 9.59961 -8h492.801
-c5.2998 0 9.59961 3.59961 9.59961 8v16c0 4.40039 -4.2998 8 -9.59961 8h-22.4004v64h64zM512 64h-384v319.7c0 17.7998 14.5 32.2998 32.4004 32.2998h319.3c17.7998 0 32.2998 -14.4004 32.2998 -32.2998v-319.7zM211.2 246c-4.2002 -4.2002 -4.2998 -11 0 -15.2002
-l74.0996 -74.7002c4.2002 -4.2998 11 -4.2998 15.2002 -0.0996094l128.3 127.2c4.2998 4.2002 4.2998 11 0.100586 15.2002l-25.3008 25.5c-4.19922 4.2998 -11 4.2998 -15.1992 0.0996094l-95.2002 -94.4004l-41.2998 41.6006
-c-4.2002 4.2998 -11 4.2998 -15.2002 0.0996094z" />
-    <glyph glyph-name="water" unicode="&#xf773;" horiz-adv-x="576" 
-d="M562.1 64.0996c8.10059 -0.899414 13.9004 -8.2998 13.8008 -16.2998v-31.5996c0 -9.10059 -7.60059 -16.7998 -16.7002 -16c-28.2002 2.5 -55.7998 11.5996 -79.1006 25.7998c-55 -34.0996 -135.5 -34.5996 -192 0c-55 -34.0996 -135.5 -34.5996 -192 0
-c-23.2998 -14.5 -50.5996 -23.4004 -79.3994 -25.9004c-9.10059 -0.799805 -16.7002 6.90039 -16.7002 16v32.2002c0 7.90039 5.7002 14.9004 13.5996 15.7002c21.7002 2.2998 42.2002 10.2002 57.7002 22.4004c13.7998 10.8994 33.6006 13.1992 47.1006 2
-c38.2998 -31.7002 107.199 -31.8008 145.199 -1.7002c13.7002 10.8994 33.2002 13 46.7002 1.7998c38.5 -31.9004 107.8 -31.9004 145.7 -1.5c14 11.2998 34.0996 11.0996 48.2002 0c15.7998 -12.4004 36.3994 -20.5 57.8994 -22.9004zM562.1 208.1
-c8.10059 -0.899414 13.9004 -8.2998 13.8008 -16.2998v-31.5996c0 -9.10059 -7.60059 -16.7998 -16.7002 -16c-28.2002 2.5 -55.7998 11.5996 -79.1006 25.7998c-55 -34.0996 -135.5 -34.5996 -192 0c-55 -34.0996 -135.5 -34.5996 -192 0
-c-23.2998 -14.5 -50.5996 -23.4004 -79.3994 -25.9004c-9.10059 -0.799805 -16.7002 6.90039 -16.7002 16v32.2002c0 7.90039 5.7002 14.9004 13.5996 15.7002c21.7002 2.2998 42.2002 10.2002 57.7002 22.4004c13.7998 10.8994 33.6006 13.1992 47.1006 2
-c38.2998 -31.7002 107.199 -31.8008 145.199 -1.7002c13.7002 10.8994 33.2002 13 46.7002 1.7998c38.5 -31.9004 107.8 -31.9004 145.7 -1.5c14 11.2998 34.0996 11.0996 48.2002 0c15.7998 -12.4004 36.3994 -20.5 57.8994 -22.9004zM562.1 352.1
-c8.10059 -0.899414 13.9004 -8.2998 13.8008 -16.2998v-31.5996c0 -9.10059 -7.60059 -16.7998 -16.7002 -16c-28.2002 2.5 -55.7998 11.5996 -79.1006 25.7998c-55 -34.0996 -135.5 -34.5996 -192 0c-55 -34.0996 -135.5 -34.5996 -192 0
-c-23.2998 -14.5 -50.5996 -23.4004 -79.3994 -25.9004c-9.10059 -0.799805 -16.7002 6.90039 -16.7002 16v32.2002c0 7.90039 5.7002 14.9004 13.5996 15.7002c21.7002 2.2998 42.2002 10.2002 57.7002 22.4004c13.7998 10.8994 33.6006 13.1992 47.1006 2
-c38.2998 -31.7002 107.199 -31.8008 145.199 -1.7002c13.7002 10.8994 33.2002 13 46.7002 1.7998c38.5 -31.9004 107.8 -31.9004 145.7 -1.5c14 11.2998 34.0996 11.0996 48.2002 0c15.7998 -12.4004 36.3994 -20.4004 57.8994 -22.9004z" />
-    <glyph glyph-name="baby" unicode="&#xf77c;" horiz-adv-x="384" 
-d="M192 288c-44.2002 0 -80 35.7998 -80 80s35.7998 80 80 80s80 -35.7998 80 -80s-35.7998 -80 -80 -80zM138.6 39.2002l29.4004 -39.2002c13.2002 -17.7002 9.7002 -42.7998 -8 -56c-7.2002 -5.40039 -15.7002 -8 -24 -8c-12.0996 0 -24.0996 5.5 -32 16l-48 64
-c-10.9004 14.5996 -10.5996 34.7998 0.799805 49l45.9004 57.4004l61.5 -51.2002zM281.3 122.4l45.9004 -57.4004c11.3994 -14.2002 11.7002 -34.4004 0.799805 -49l-48 -64c-7.7998 -10.5 -19.7998 -16 -32 -16c-8.40039 0 -16.7998 2.59961 -24 8
-c-17.7002 13.2002 -21.2002 38.2998 -8 56l29.4004 39.2002l-25.6006 32zM376.7 303c12.7002 -18.0996 8.39941 -43 -9.7002 -55.7998l-40.5996 -28.5c-17 -11.9004 -35.4004 -20.9004 -54.4004 -27.9004v-30.7998h-160v30.9004c-19 7 -37.4004 16 -54.4004 27.8994
-l-40.5996 28.5c-18 12.7002 -22.4004 37.6006 -9.7002 55.7002c12.7002 18 37.6006 22.4004 55.7002 9.7002l40.5996 -28.4004c52.6006 -37 124.101 -37 176.801 0l40.5996 28.5c18.0996 12.6006 43 8.2998 55.7002 -9.7998z" />
-    <glyph glyph-name="baby-carriage" unicode="&#xf77d;" 
-d="M144.8 431l111.2 -175h-256c0 74 35.2998 140.1 90.7998 184.4c16.7998 13.3994 42.7002 8.39941 54 -9.40039zM496 352c8.7998 0 16 -7.2002 16 -16v-32c0 -8.7998 -7.2002 -16 -16 -16h-48v-64c0 -50.5996 -23 -96.4004 -60.2998 -130.7
-c34.5996 -8.89941 60.2998 -40 60.2998 -77.2998c0 -44.2002 -35.7998 -80 -80 -80s-80 35.7998 -80 80c0 8.90039 1.7002 17.2002 4.40039 25.2002c-21.5 -5.90039 -44.6006 -9.2002 -68.4004 -9.2002s-46.7998 3.2998 -68.4004 9.2002
-c2.60059 -8 4.40039 -16.2998 4.40039 -25.2002c0 -44.2002 -35.7998 -80 -80 -80s-80 35.7998 -80 80c0 37.2998 25.7002 68.4004 60.2998 77.2998c-37.2998 34.2998 -60.2998 80.1006 -60.2998 130.7h384v64c0 35.2998 28.7002 64 64 64h48zM80 -16
-c17.5996 0 32 14.4004 32 32s-14.4004 32 -32 32s-32 -14.4004 -32 -32s14.4004 -32 32 -32zM400 16c0 17.5996 -14.4004 32 -32 32s-32 -14.4004 -32 -32s14.4004 -32 32 -32s32 14.4004 32 32z" />
-    <glyph glyph-name="biohazard" unicode="&#xf780;" horiz-adv-x="576" 
-d="M287.9 336c-18.5 0 -36 -3.7998 -52.5 -9.5c-13.3008 10.2998 -23.6006 24.2998 -29.5 40.7002c25.1992 10.8994 53 16.8994 82.0996 16.8994c29.2002 0 57 -6.09961 82.2002 -17c-5.90039 -16.3994 -16.2002 -30.3994 -29.5 -40.6992
-c-16.6006 5.7998 -34.2002 9.59961 -52.7998 9.59961zM163.6 9.2998c-47.5 35.5 -79.1992 90.7002 -83.2998 153.5c7.2998 2.10059 14.9004 3.10059 22.5 3.10059c9.2002 0 17.9004 -1.80078 26.4004 -4.60059c4.09961 -44.2998 26 -83.2002 58.8994 -109.6
-c-4.09961 -16 -12.5 -30.6006 -24.5 -42.4004zM387.8 51.9004c32.7002 26.3994 54.6006 65.0996 58.7002 109.3c8.59961 2.7998 17.4004 4.7002 26.5996 4.7002c7.5 0 15 -1 22.2002 -3c-3.89941 -62.8008 -35.5996 -118 -83 -153.5c-12 11.7998 -20.3994 26.5 -24.5 42.5z
-M501.3 256.9c34.6006 -20.4004 61 -53.3008 74.1006 -92.4004c1.2998 -3.7002 -0.200195 -7.7998 -3.5 -9.7998c-3.30078 -2 -7.5 -1.2998 -10 1.59961c-9.40039 10.7998 -19 19 -29.2002 25.1006c-57.2998 33.8994 -130.8 13.6992 -163.9 -45
-c-33.0996 -58.7002 -13.3994 -134 43.9004 -167.9c10.2002 -6.09961 21.8994 -10.5 35.7998 -13.4004c3.7998 -0.799805 6.40039 -4.19922 6.40039 -8.09961c-0.100586 -4 -2.7002 -7.2998 -6.5 -8c-39.7002 -7.7998 -80.6006 -0.799805 -115.2 19.7002
-c-18 10.5996 -32.9004 24.5 -45.2998 40.0996c-12.4004 -15.5996 -27.3008 -29.5 -45.3008 -40.0996c-34.5996 -20.5 -75.5 -27.5 -115.199 -19.7002c-3.80078 0.700195 -6.40039 4 -6.5 8c0 3.90039 2.69922 7.2998 6.39941 8.09961
-c13.7998 3 25.6006 7.30078 35.7998 13.4004c57.3008 33.9004 77 109.2 43.9004 167.9c-33.0996 58.6992 -106.6 78.8994 -163.9 45c-10.1992 -6 -19.7998 -14.3008 -29.1992 -25.1006c-2.5 -2.89941 -6.7002 -3.59961 -10 -1.59961
-c-3.30078 2.09961 -4.80078 6.09961 -3.5 9.7998c13.2998 39.0996 39.6992 71.9004 74.2998 92.4004c17.5996 10.3994 36.3994 16.5996 55.2998 19.8994c-6.09961 17.7002 -10 36.4004 -10 56.2002c0 41 14.5996 80.7998 41 112.2c2.5 3 6.59961 3.7002 10 1.7998
-c3.2998 -1.90039 4.7998 -6 3.59961 -9.7002c-4.39941 -13.7998 -6.59961 -26.3994 -6.59961 -38.5c0 -67.7998 53.7998 -122.899 120 -122.899s120 55.0996 120 122.899c0 12.2002 -2.09961 24.7002 -6.59961 38.5c-1.2002 3.7002 0.299805 7.7998 3.59961 9.7002
-c3.40039 1.90039 7.5 1.2002 10 -1.7998c26.5 -31.4004 41 -71.2002 41 -112.2c0 -19.7998 -4 -38.5 -10 -56.2002c19 -3.2998 37.7002 -9.5 55.2998 -19.8994zM287.9 127.9c26.5 0 48 21.5 48 48s-21.5 48 -48 48s-48 -21.5 -48 -48s21.5 -48 48 -48z" />
-    <glyph glyph-name="blog" unicode="&#xf781;" 
-d="M172.2 221.2c75.5 -15 129.899 -89.2998 112.5 -172.2c-11.4004 -54.2998 -55.2998 -98.2998 -109.7 -109.7c-92.9004 -19.5 -175 51.2002 -175 140.7v248c0 13.2998 10.7002 24 24 24h48c13.2998 0 24 -10.7002 24 -24v-248c0 -26.5 21.5 -48 48 -48s48 21.5 48 48
-c0 20.5996 -13.0996 38.2002 -31.2998 45c-9.60059 3.59961 -16.7002 11.7998 -16.7002 22v50.4004c0 14.8994 13.5996 26.6992 28.2002 23.7998zM209 448c163.2 -8.59961 294.4 -139.8 302.9 -303c0.5 -9.2002 -6.80078 -17 -16 -17h-32.1006
-c-8.39941 0 -15.3994 6.59961 -15.8994 15c-7.5 129.5 -111.5 234.5 -240.9 241.5c-8.40039 0.400391 -15 7.40039 -15 15.9004v31.5996c0 9.2002 7.7998 16.5 17 16zM209.3 352c110.101 -8.5 198.2 -96.5996 206.601 -206.7
-c0.699219 -9.2998 -6.80078 -17.2998 -16.1006 -17.2998h-32.2002c-8.2998 0 -15.0996 6.40039 -15.8994 14.7002c-6.90039 77 -68.1006 138.899 -144.9 145.2c-8.2998 0.599609 -14.7998 7.5 -14.7998 15.8994v32.1006c0 9.39941 8 16.7998 17.2998 16.0996z" />
-    <glyph glyph-name="calendar-day" unicode="&#xf783;" horiz-adv-x="448" 
-d="M0 -16v272h448v-272c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48zM64 176v-96c0 -8.7998 7.2002 -16 16 -16h96c8.7998 0 16 7.2002 16 16v96c0 8.7998 -7.2002 16 -16 16h-96c-8.7998 0 -16 -7.2002 -16 -16zM400 384c26.5 0 48 -21.5 48 -48v-48h-448v48
-c0 26.5 21.5 48 48 48h48v48c0 8.7998 7.2002 16 16 16h32c8.7998 0 16 -7.2002 16 -16v-48h128v48c0 8.7998 7.2002 16 16 16h32c8.7998 0 16 -7.2002 16 -16v-48h48z" />
-    <glyph glyph-name="calendar-week" unicode="&#xf784;" horiz-adv-x="448" 
-d="M0 -16v272h448v-272c0 -26.5 -21.5 -48 -48 -48h-352c-26.5 0 -48 21.5 -48 48zM64 176v-64c0 -8.7998 7.2002 -16 16 -16h288c8.7998 0 16 7.2002 16 16v64c0 8.7998 -7.2002 16 -16 16h-288c-8.7998 0 -16 -7.2002 -16 -16zM400 384c26.5 0 48 -21.5 48 -48v-48h-448
-v48c0 26.5 21.5 48 48 48h48v48c0 8.7998 7.2002 16 16 16h32c8.7998 0 16 -7.2002 16 -16v-48h128v48c0 8.7998 7.2002 16 16 16h32c8.7998 0 16 -7.2002 16 -16v-48h48z" />
-    <glyph glyph-name="candy-cane" unicode="&#xf786;" 
-d="M497.5 356c35.7002 -75.5 2.7998 -166.1 -68.9004 -209l-347.3 -206.5c-5.2002 -3 -10.7998 -4.5 -16.3994 -4.5c-10.9004 0 -21.5 5.59961 -27.5 15.5996l-32.8008 54.9004c-9.09961 15.2002 -4.19922 34.7998 11 43.9004l353.601 210.1
-c15.0996 9.09961 20.0996 28.7998 11 43.9004c-6 10 -16.6006 15.5996 -27.5 15.5996c-5.60059 0 -11.2998 -1.40039 -16.4004 -4.5l-27.5 -16.4004c-5.2002 -3 -10.7998 -4.5 -16.3994 -4.5c-10.9004 0 -21.5 5.60059 -27.5 15.6006l-32.8008 54.8994
-c-9.09961 15.2002 -4.19922 34.8008 11 43.9004l27.5 16.4004c25.6006 15.2998 53.9004 22.5996 81.8008 22.5996c59.3994 0 117.199 -33.0996 145.1 -92zM319.8 343c8.5 5.09961 18.1006 7.59961 27.9004 8.40039l-20.6006 61.7998
-c-10.5 -2.10059 -20.5996 -5.5 -30.2998 -10.2002l20.5 -61.5zM145.9 16.2002l30.7998 18.2998l-60.5 38.5l-30.7998 -18.2998zM253.4 80.0996l30.7998 18.3008l-60.5 38.5l-30.7998 -18.3008zM364.3 146l30.7998 18.2998l-60.5 38.5l-30.7998 -18.2998zM384.7 343.3
-c9.2002 -5.39941 17.2002 -13 22.8994 -22.2998l45.7002 45.7002c-6.59961 8.5 -14.2002 16.0996 -22.5996 22.5996zM466.8 235.5c4.60059 9.7998 8 20 10.1006 30.4004l-60.4004 20.0996c-0.0996094 -4.5 -0.700195 -9.09961 -1.7998 -13.5996
-c-1.60059 -6.2002 -4.2002 -11.8008 -7.40039 -17.1006z" />
-    <glyph glyph-name="carrot" unicode="&#xf787;" 
-d="M298.2 291.4c61.7002 -30.1006 87.2998 -104.5 57.2002 -166.2c-12.6006 -25.7998 -33.1006 -45.4004 -57.1006 -57.1006l-102 -49.7998l-57 57c-6.2002 6.2002 -16.2998 6.2002 -22.5996 0s-6.2998 -16.3994 0 -22.5996l49.2002 -49.2002l-133.601 -65.2002
-c-11.0996 -5.39941 -24.5996 -0.799805 -30 10.2998c-3.09961 6.40039 -2.89941 13.7002 0 19.7002l128.101 262.7l50.1992 -50.2002c3.10059 -3.09961 7.2002 -4.7002 11.3008 -4.7002c4.09961 0 8.19922 1.60059 11.2998 4.7002c6.2998 6.2002 6.2998 16.2998 0 22.6006
-l-55.2002 55.1992c35.7002 43.3008 97.5 58.5 150.2 32.8008zM390.3 326.3c40.7002 19.5 88.7998 9.40039 121.7 -30.2998c-41.5996 -50.2998 -107.5 -52.5 -151.9 -7.90039l-8 8c-44.5996 44.4004 -42.3994 110.2 7.90039 151.9
-c39.7002 -32.9004 49.7998 -81 30.2998 -121.7z" />
-    <glyph glyph-name="cash-register" unicode="&#xf788;" 
-d="M511.1 69.2002c0.600586 -3.5 0.900391 -7 0.800781 -10.5v-90.7002c0 -17.7002 -14.3008 -32 -32 -32h-448c-17.7002 0 -32 14.2998 -32 32v90.7998c0 3.5 0.299805 7 0.899414 10.5l26.7002 160c2.59961 15.4004 16 26.7002 31.5996 26.7002h84.9004v64h-96
-c-8.7998 0 -16 7.2002 -16 16v96c0 8.7998 7.2002 16 16 16h256c8.7998 0 16 -7.2002 16 -16v-96.0996c0 -8.80078 -7.2002 -16 -16 -16h-96v-64h244.8c15.7002 0 29 -11.3008 31.6006 -26.7002zM280 200v-16c0 -8.7998 7.2002 -16 16 -16h16c8.7998 0 16 7.2002 16 16v16
-c0 8.7998 -7.2002 16 -16 16h-16c-8.7998 0 -16 -7.2002 -16 -16zM248 136c-8.7998 0 -16 -7.2002 -16 -16v-16c0 -8.7998 7.2002 -16 16 -16h16c8.7998 0 16 7.2002 16 16v16c0 8.7998 -7.2002 16 -16 16h-16zM216 216h-16c-8.7998 0 -16 -7.2002 -16 -16v-16
-c0 -8.7998 7.2002 -16 16 -16h16c8.7998 0 16 7.2002 16 16v16c0 8.7998 -7.2002 16 -16 16zM80 368h192v32h-192v-32zM120 168c8.7998 0 16 7.2002 16 16v16c0 8.7998 -7.2002 16 -16 16h-16c-8.7998 0 -16 -7.2002 -16 -16v-16c0 -8.7998 7.2002 -16 16 -16h16zM136 104
-c0 -8.7998 7.2002 -16 16 -16h16c8.7998 0 16 7.2002 16 16v16c0 8.7998 -7.2002 16 -16 16h-16c-8.7998 0 -16 -7.2002 -16 -16v-16zM352 -8v16c0 4.40039 -3.59961 8 -8 8h-176c-4.40039 0 -8 -3.59961 -8 -8v-16c0 -4.40039 3.59961 -8 8 -8h176c4.40039 0 8 3.59961 8 8
-zM376 104v16c0 8.7998 -7.2002 16 -16 16h-16c-8.7998 0 -16 -7.2002 -16 -16v-16c0 -8.7998 7.2002 -16 16 -16h16c8.7998 0 16 7.2002 16 16zM424 184v16c0 8.7998 -7.2002 16 -16 16h-16c-8.7998 0 -16 -7.2002 -16 -16v-16c0 -8.7998 7.2002 -16 16 -16h16
-c8.7998 0 16 7.2002 16 16z" />
-    <glyph glyph-name="compress-arrows-alt" unicode="&#xf78c;" 
-d="M200 160c13.2998 0 24 -10.7002 24 -24v-112c0 -21.4004 -25.7998 -32.0996 -40.9004 -17l-31.0996 33l-99.2998 -99.2998c-6.2002 -6.2002 -16.4004 -6.2002 -22.6006 0l-25.3994 25.3994c-6.2002 6.2002 -6.2002 16.4004 0 22.6006l99.2002 99.2998l-32.9004 31
-c-15.0996 15.2002 -4.40039 41 17 41h112zM312 224c-13.2998 0 -24 10.7002 -24 24v112c0 21.4004 25.7998 32.0996 40.9004 17l31.0996 -33l99.2998 99.2998c6.2002 6.2002 16.4004 6.2002 22.6006 0l25.3994 -25.3994c6.2002 -6.2002 6.2002 -16.4004 0 -22.6006
-l-99.2998 -99.2998l33 -31c15.0996 -15.0996 4.40039 -41 -17 -41h-112zM408 88l99.2998 -99.4004c6.2002 -6.19922 6.2002 -16.3994 0 -22.5996l-25.3994 -25.4004c-6.2002 -6.19922 -16.4004 -6.19922 -22.6006 0l-99.2998 99.3008l-31 -32.9004
-c-15.0996 -15.0996 -41 -4.40039 -41 17v112c0 13.2998 10.7002 24 24 24h112c21.4004 0 32.0996 -25.7998 17 -40.9004zM183 376.9c15.0996 15.0996 41 4.39941 41 -16.9004v-112c0 -13.2998 -10.7002 -24 -24 -24h-112c-21.4004 0 -32.0996 25.7998 -17 40.9004
-l33 31.0996l-99.2998 99.2998c-6.2002 6.2002 -6.2002 16.4004 0 22.6006l25.3994 25.3994c6.2002 6.2002 16.4004 6.2002 22.6006 0l99.2998 -99.2998z" />
-    <glyph glyph-name="dumpster" unicode="&#xf793;" horiz-adv-x="576" 
-d="M560 288h-97.2998l-25.6006 128h98.9004c7.2998 0 13.7002 -5 15.5 -12.0996l24 -96c2.5 -10.1006 -5.09961 -19.9004 -15.5 -19.9004zM272 416v-128h-126.1l25.5996 128h100.5zM404.5 416l25.5996 -128h-126.1v128h100.5zM16 288c-10.4004 0 -18 9.7998 -15.5 19.9004
-l24 96c1.7998 7.09961 8.2002 12.0996 15.5 12.0996h98.9004l-25.6006 -128h-97.2998zM560 224c8.7998 0 16 -7.2002 16 -16v-32c0 -8.7998 -7.2002 -16 -16 -16h-28l-20 -160v-16c0 -8.7998 -7.2002 -16 -16 -16h-32c-8.7998 0 -16 7.2002 -16 16v16h-320v-16
-c0 -8.7998 -7.2002 -16 -16 -16h-32c-8.7998 0 -16 7.2002 -16 16v16l-20 160h-28c-8.7998 0 -16 7.2002 -16 16v32c0 8.7998 7.2002 16 16 16h20l-4 32h512l-4 -32h20z" />
-    <glyph glyph-name="dumpster-fire" unicode="&#xf794;" horiz-adv-x="640" 
-d="M418.7 343.9c-19.7002 -17.6006 -37.7002 -36.5 -53.9004 -55.8008h-60.7998v128h100.5l14.4004 -72zM272 416v-128h-126.1l25.5996 128h100.5zM461.3 343.9l-11.8994 10.5996l-12.3008 61.5h98.9004c7.2998 0 13.7002 -5 15.4004 -12.0996l24 -96
-c0.199219 -0.800781 -0.100586 -1.5 0 -2.30078c-1 1 -2 2.2002 -3.10059 3.10059l-21.2998 19l-21.2998 -19c-5.90039 -5.2002 -11.6006 -10.7002 -17.2998 -16.2998c-15.6006 17.7998 -32.9004 35.1992 -51.1006 51.5zM16 288c-10.4004 0 -18 9.7998 -15.5 19.9004l24 96
-c1.7998 7.09961 8.2002 12.0996 15.5 12.0996h98.9004l-25.6006 -128h-97.2998zM340.6 256c-32.6992 -46.7002 -52.5996 -93.7002 -52.5996 -129.6c0 -48.5 18.5996 -92.7002 48.7998 -126.4h-208.8v-16c0 -8.7998 -7.2002 -16 -16 -16h-32c-8.7998 0 -16 7.2002 -16 16v16
-l-20 160h-28c-8.7998 0 -16 7.2002 -16 16v32c0 8.7998 7.2002 16 16 16h20l-4 32h308.6zM551.1 284.8c51.8008 -46.2002 88.9004 -121.8 88.8008 -158.399c0 -87.5 -71.6006 -158.4 -160 -158.4c-88.4004 0 -160 70.9004 -160 158.4c0 49.2998 49.7998 130.899 120 193.6
-c27.3994 -24.4004 51.5 -50.5996 71 -76.4004c11.8994 14 25.2998 27.9004 40.1992 41.2002zM532.5 55.4004c33.4004 24.1992 41.2002 71.0996 22.5996 107.8c-2.2998 4.5 -4.89941 9.2002 -7.69922 14l-39.8008 -47s-62.3994 82.5 -67.0996 88.0996
-c-32.9004 -40.8994 -49.4004 -64.7998 -49.4004 -91.8994c0 -54.5 39.9004 -88 88.9004 -88c19.5996 0 37.7998 6.2998 52.5 17z" />
-    <glyph glyph-name="ethernet" unicode="&#xf796;" 
-d="M496 256c8.7998 0 16 -7.2002 16 -16v-224c0 -8.7998 -7.2002 -16 -16 -16h-80v128h-32v-128h-64v128h-32v-128h-64v128h-32v-128h-64v128h-32v-128h-80c-8.7998 0 -16 7.2002 -16 16v224c0 8.7998 7.2002 16 16 16h48v48c0 8.7998 7.2002 16 16 16h48v48
-c0 8.7998 7.2002 16 16 16h224c8.7998 0 16 -7.2002 16 -16v-48h48c8.7998 0 16 -7.2002 16 -16v-48h48z" />
-    <glyph glyph-name="gifts" unicode="&#xf79c;" horiz-adv-x="640" 
-d="M240.6 253.9c-27.7998 -6.90039 -48.5996 -32 -48.5996 -61.9004v-224c0 -11.7002 3.40039 -22.5 8.90039 -32h-168.9c-17.7002 0 -32 14.2998 -32 32v352c0 17.7002 14.2998 32 32 32h29.4004l-30.7002 22c-7.2002 5.09961 -8.7998 15.0996 -3.7002 22.2998l9.2998 13
-c5.10059 7.2002 15.1006 8.7998 22.2998 3.7002l32.1006 -22.7998l-11.5 30.5996c-3.2002 8.2002 1 17.5 9.2998 20.6006l15 5.59961c8.2998 3.09961 17.5 -1.09961 20.5996 -9.40039l19.9004 -53.0996l19.9004 53c3.09961 8.2998 12.2998 12.5 20.5996 9.40039l15 -5.60059
-c8.2998 -3.09961 12.5 -12.2998 9.40039 -20.5996l-11.5 -30.6006l32 22.9004c7.19922 5.2002 17.1992 3.5 22.2998 -3.7002l9.2998 -13c5.2002 -7.2002 3.5 -17.2002 -3.7002 -22.2998l-30.7002 -22h29.4004c12.7002 0 23.4004 -7.5 28.5996 -18.2998
-c-26.6992 -18.6006 -42.0996 -49 -44 -79.7998zM224 -32v96h192v-128h-160c-17.7002 0 -32 14.2998 -32 32zM448 -64v128h192v-96c0 -17.7002 -14.2998 -32 -32 -32h-160zM608 224c17.7002 0 32 -14.2998 32 -32v-96h-192v128h-15.2998l-0.700195 0.200195
-l-0.700195 -0.200195h-15.2998v-128h-192v96c0 17.7002 14.2998 32 32 32h20.4004c-2.7002 7.59961 -4.40039 15.5 -4.40039 23.7998c0 35.5 27 72.2002 72.0996 72.2002c48 0 75.8008 -47.7002 87.9004 -75.2998c12 27.5996 39.7998 75.2998 87.9004 75.2998
-c45.0996 0 72.0996 -36.7002 72.0996 -72.2002c0 -8.2998 -1.7998 -16.2002 -4.40039 -23.7998h20.4004zM336 224h52.5996c-8.89941 20.5996 -25.7998 48 -44.5 48c-17.6992 0 -24.0996 -14.5 -24.0996 -24.2002c0 -5.2002 1.5 -12.5996 8.7998 -19
-c2.10059 -1.7998 4.5 -3.39941 7.2002 -4.7998zM535.2 228.8c7.2998 6.40039 8.7998 13.7998 8.7998 19c0 9.7002 -6.40039 24.2002 -24.0996 24.2002c-18.7002 0 -35.7002 -27.7002 -44.5 -48h52.5996c2.7002 1.40039 5.09961 3 7.2002 4.7998z" />
-    <glyph glyph-name="glass-cheers" unicode="&#xf79f;" horiz-adv-x="640" 
-d="M639.4 14.4004c1.69922 -4.10059 -0.300781 -8.7002 -4.30078 -10.4004l-162.399 -67.4004c-4 -1.69922 -8.7002 0.200195 -10.4004 4.30078c-8.5 20.3994 1.2002 43.7998 21.6006 52.2998l22.0996 9.2002l-39.2998 103.6
-c-4.40039 -0.5 -8.7998 -1.2998 -13.1006 -1.2998c-51.6992 0 -99.3994 33.0996 -113.399 85.2998l-20.2002 75.4004l-20.2002 -75.4004c-14 -52.2002 -61.7002 -85.2998 -113.399 -85.2998c-4.30078 0 -8.7002 0.799805 -13.1006 1.2998l-39.3994 -103.6l22.0996 -9.2002
-c20.4004 -8.5 30 -31.9004 21.5996 -52.2998c-1.69922 -4.10059 -6.2998 -6 -10.3994 -4.30078l-162.3 67.4004c-4.10059 1.7002 -6 6.40039 -4.30078 10.5c8.5 20.4004 31.8008 30.0996 52.2002 21.5996l22.1006 -9.19922l38.6992 101.899
-c-47.8994 34.9004 -64.6992 100.2 -34.5 152.7l86.6006 150.5c8 13.9004 25.0996 19.7998 40 13.5996l114.3 -47.3994l114.3 47.3994c14.9004 6.10059 32 0.300781 40 -13.5996l86.6006 -150.5c30.2998 -52.5 13.3994 -117.8 -34.5 -152.8l38.6992 -101.9l22.1006 9.2002
-c20.3994 8.5 43.7998 -1.2002 52.2002 -21.5996zM275.9 285.9l18.8994 70.6992l-94.5 39.2002l-36.5 -63.3994zM364.1 285.9l112.101 46.5l-36.5 63.3994l-94.5 -39.2002z" />
-    <glyph glyph-name="glass-whiskey" unicode="&#xf7a0;" 
-d="M480 416c19.5 0 34.4004 -17.2002 31.7002 -36.5l-55.6006 -356.5c-4.5 -31.5 -31.5996 -54.9004 -63.3994 -54.9004h-273c-31.9004 0 -58.9004 23.4004 -63.4004 54.9004l-56 356.5c-2.7002 19.2998 12.2002 36.5 31.7002 36.5h448zM442.6 352h-373.199l30.1992 -192
-h313z" />
-    <glyph glyph-name="globe-europe" unicode="&#xf7a2;" horiz-adv-x="496" 
-d="M248 440c137 0 248 -111 248 -248s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM448 192c0 110.3 -89.7002 200 -200.2 200c-1.89941 0 -3.7998 -0.200195 -5.7002 -0.299805l-28.8994 -21.7002c-2 -1.5 -3.2002 -3.90039 -3.2002 -6.40039v-20
-c0 -4.39941 3.59961 -8 8 -8h16c4.40039 0 8 3.60059 8 8v8l16 16h20.7002c6.2002 0 11.2998 -5.09961 11.2998 -11.2998c0 -3 -1.2002 -5.89941 -3.2998 -8l-26.7998 -26.7998c-1.2002 -1.2002 -2.7002 -2.09961 -4.40039 -2.7002l-40 -13.2998
-c-3.2998 -1.09961 -5.5 -4.2002 -5.5 -7.59961c0 -6.60059 -2.59961 -12.9004 -7.2002 -17.5l-20.0996 -20.1006c-3 -3 -4.7002 -7.09961 -4.7002 -11.2998v-25.2998c0 -8.7998 7.2002 -16 16 -16h22.0996c6.10059 0 11.6006 3.39941 14.3008 8.7998l9.39941 18.7002
-c1.40039 2.7002 4.2002 4.39941 7.2002 4.39941h3.09961c4.40039 0 8 -3.59961 8 -8c0 -4.39941 3.60059 -8 8 -8h16c4.40039 0 8 3.60059 8 8v2.2002c0 3.5 2.2002 6.5 5.5 7.60059l31.6006 10.5c6.5 2.19922 10.8994 8.2998 10.8994 15.1992v4.5
-c0 8.80078 7.2002 16 16 16h36.7002c6.2002 0 11.2998 -5.09961 11.2998 -11.2998v-9.39941c0 -6.2002 -5.09961 -11.3008 -11.2998 -11.3008h-32c-3 0 -5.89941 -1.19922 -8 -3.2998l-9.39941 -9.39941c-2.10059 -2.10059 -3.30078 -5 -3.30078 -8
-c0 -6.2002 5.10059 -11.3008 11.3008 -11.3008h16c3 0 5.89941 -1.19922 8 -3.2998l9.39941 -9.39941c2.10059 -2.10059 3.2998 -5 3.2998 -8v-8.7002l-12.5 -12.5c-4.59961 -4.60059 -4.59961 -12.1006 -0.0996094 -16.7002l32 -32.5996
-c3 -3.10059 7.09961 -4.80078 11.4004 -4.80078h20.2998c6.89941 20.2002 10.7998 41.9004 10.7998 64.4004zM130.1 298.9c0 -6.2002 5.10059 -11.3008 11.3008 -11.3008h16c3 0 5.89941 1.2002 8 3.30078l9.39941 9.39941c2.10059 2.10059 3.2998 5 3.2998 8v16
-c0 6.2002 -5.09961 11.2998 -11.2998 11.2998c-3 0 -5.89941 -1.19922 -8 -3.2998l-25.3994 -25.3994c-2.10059 -2.10059 -3.30078 -5 -3.30078 -8zM258.1 -7.5c71.1006 3.59961 132.5 44.2002 164.9 103.1h-13.4004c-4.7998 0 -9.5 1.90039 -12.8994 5.30078
-l-17.2998 17.2998c-6 6 -14.1006 9.39941 -22.6006 9.39941h-18.2998l-43.2002 37.1006c-8.2002 7 -18.7002 10.8994 -29.5996 10.8994h-31.2002c-8.2002 0 -16.2998 -2.2998 -23.4004 -6.5l-42.8994 -25.6992c-13.7002 -8.2002 -22.1006 -23 -22.1006 -39v-23.9004
-c0 -14.2998 6.7002 -27.7998 18.2002 -36.4004l22.2002 -16.6992c8.7002 -6.5 24.5996 -11.8008 35.4004 -11.8008h20.1992c8.80078 0 16 -7.19922 16 -16v-7.09961z" />
-    <glyph glyph-name="grip-lines" unicode="&#xf7a4;" 
-d="M496 160c8.7998 0 16 -7.2002 16 -16v-32c0 -8.7998 -7.2002 -16 -16 -16h-480c-8.7998 0 -16 7.2002 -16 16v32c0 8.7998 7.2002 16 16 16h480zM496 288c8.7998 0 16 -7.2002 16 -16v-32c0 -8.7998 -7.2002 -16 -16 -16h-480c-8.7998 0 -16 7.2002 -16 16v32
-c0 8.7998 7.2002 16 16 16h480z" />
-    <glyph glyph-name="grip-lines-vertical" unicode="&#xf7a5;" horiz-adv-x="256" 
-d="M96 -48c0 -8.7998 -7.2002 -16 -16 -16h-32c-8.7998 0 -16 7.2002 -16 16v480c0 8.7998 7.2002 16 16 16h32c8.7998 0 16 -7.2002 16 -16v-480zM224 -48c0 -8.7998 -7.2002 -16 -16 -16h-32c-8.7998 0 -16 7.2002 -16 16v480c0 8.7998 7.2002 16 16 16h32
-c8.7998 0 16 -7.2002 16 -16v-480z" />
-    <glyph glyph-name="guitar" unicode="&#xf7a6;" 
-d="M502.63 409c5.77344 -5.79004 9.34473 -13.7852 9.34473 -22.5996c0 -8.8291 -3.58398 -16.8281 -9.375 -22.6201l-46.3301 -46.3203c-3.82617 -3.83691 -8.53223 -6.78125 -13.7891 -8.53027l-36.4805 -12.1602l-76.2402 -76.2393
-c8.79004 -12.2002 15.7705 -25.5605 19.1602 -40.2002c7.74023 -33.3896 0.870117 -66.8701 -22 -89.75c-9.26367 -9.2207 -20.71 -16.2314 -33.4795 -20.25c-18.54 -6.00977 -32.6709 -23.29 -34.4307 -42.1396c-2.29004 -23.8105 -11.4502 -45.8301 -28.4502 -62.71
-c-45.5596 -45.4805 -127.5 -37.3809 -182.979 18.0693c-55.4805 55.4502 -63.6904 137.45 -18.0498 182.96c16.8799 16.9902 38.9102 26.1699 62.6094 28.4404c18.9404 1.76953 36.1504 15.8994 42.1504 34.46c4.01172 12.7686 11.0195 24.2119 20.2402 33.4697
-c22.8799 22.8799 56.4297 29.7803 89.8799 22c14.5996 -3.39941 27.9395 -10.3799 40.0996 -19.1396l76.2598 76.2598l12.1602 36.5098c1.74902 5.25781 4.69336 9.96387 8.53027 13.79l46.2803 46.3301c5.79199 5.79395 13.8018 9.37988 22.6338 9.37988
-s16.833 -3.58594 22.626 -9.37988zM208 96c26.4922 0 48 21.5078 48 48s-21.5078 48 -48 48s-48 -21.5078 -48 -48s21.5078 -48 48 -48z" />
-    <glyph glyph-name="heart-broken" unicode="&#xf7a9;" 
-d="M473.7 374.2c48.7002 -49.7998 50.7998 -129.101 7.2998 -182.101l-212.2 -218.699c-7.09961 -7.30078 -18.5996 -7.30078 -25.7002 0l-212.1 218.6c-43.5 53.0996 -41.4004 132.4 7.2998 182.2l2.40039 2.39941c46.2998 47.4004 119 51.8008 170.7 14l28.5996 -86.5
-l-96 -64l144 -144l-48 128l96 64l-34.2998 103.4c51.5996 36.9004 123.6 32.2002 169.6 -14.7998z" />
-    <glyph glyph-name="holly-berry" unicode="&#xf7aa;" horiz-adv-x="448" 
-d="M144 256c-26.5 0 -48 21.5 -48 48s21.5 48 48 48s48 -21.5 48 -48s-21.5 -48 -48 -48zM256 304c0 26.5 21.5 48 48 48s48 -21.5 48 -48s-21.5 -48 -48 -48s-48 21.5 -48 48zM224 352c-26.5 0 -48 21.5 -48 48s21.5 48 48 48s48 -21.5 48 -48s-21.5 -48 -48 -48z
-M207.8 212.9c-0.399414 -39.8008 7.40039 -78.1006 22.9004 -112.301c4 -8.89941 -2 -19.1992 -11.7002 -20.1992c-15.2002 -1.5 -30.4004 -4.60059 -45.2998 -9.10059c-14.9004 -4.5 -23.7998 -19.8994 -20.2002 -35.0996s8.5 -29.9004 14.7002 -43.7998
-c4 -8.90039 -1.90039 -19.3008 -11.6006 -20.2002c-35.8994 -3.40039 -71.5996 -14.9004 -104.8 -33.9004c-12.3994 -7.09961 -27.5 1.60059 -27.5996 16c-0.100586 38.2002 -8 74.9004 -23 107.7c-4 8.90039 2 19.2002 11.7002 20.2002
-c15.1992 1.5 30.3994 4.59961 45.2998 9.09961c14.8994 4.5 23.7998 19.9004 20.2002 35.1006c-3.60059 15.1992 -8.5 29.8994 -14.7002 43.7998c-4 8.89941 1.89941 19.2998 11.5996 20.2002c37.2998 3.5 74.4004 15.8994 108.7 36.1992
-c10.7002 6.40039 23.9004 -1.2998 23.7998 -13.6992zM435 82.4004c9.7002 -1 15.7998 -11.4004 11.5 -20.1006c-15 -32.7002 -22.7998 -69.5 -23 -107.7c0 -14.3994 -15.0996 -23.0996 -27.5996 -16c-33.2002 19 -68.9004 30.5 -104.801 33.9004
-c-9.69922 0.900391 -15.5996 11.2998 -11.5996 20.2002c6.2002 14 11.0996 28.5996 14.7002 43.7998c3.59961 15.2002 -5.2998 30.5996 -20.2002 35.0996c-4.90039 1.5 -9.90039 2.5 -14.7998 3.7002c5.7998 12.2998 6.2998 26.5 0.599609 38.9004
-c-12.8994 28.2998 -19.7002 60.7002 -19.8994 94c0 1.7002 0.199219 3.2998 0.199219 4.89941c-0.0996094 12.3008 13.1006 20 23.8008 13.7002c34.2998 -20.2998 71.3994 -32.7002 108.699 -36.2002c9.7002 -0.899414 15.6006 -11.2998 11.6006 -20.1992
-c-6.2002 -14 -11.1006 -28.6006 -14.7002 -43.8008c-3.59961 -15.1992 5.2998 -30.5996 20.2002 -35.0996c15 -4.40039 30.0996 -7.5 45.2998 -9.09961z" />
-    <glyph glyph-name="horse-head" unicode="&#xf7ab;" 
-d="M509.8 115.5c4.60059 -11.7998 1.7998 -25.2998 -7.09961 -34.4004l-45.2998 -39.7998c-6 -6 -14.1006 -9.39941 -22.6006 -9.39941h-50.2998c-10.2998 0 -20 4.89941 -26 13.2998l-46 63.8994c-13.7998 -8.09961 -29.5996 -13.1992 -46.7998 -13.1992
-c-39.2002 0 -72.6006 23.6992 -87.4004 57.3994c-2.2998 5.10059 -9 6.2998 -12.8994 2.40039l-12.1006 -12.1006c-2.5 -2.39941 -3.2002 -6.19922 -1.59961 -9.2998c19.7002 -38.8994 58.7002 -66.0996 104.3 -69.5996v-0.700195l40.7998 -81.7002
-c10.7002 -21.2998 -4.7998 -46.2998 -28.5996 -46.2998h-236.2c-17.7002 0 -32 14.2998 -32 32v81.2002c0 159.899 35.9004 275.399 166.9 322.5l202.199 75.7002c4.90039 1.7998 10.7002 -1.10059 12 -6.10059c12.1006 -46.3994 -16.1992 -71.7002 -34.1992 -82.2998
-c42.5996 -8.2002 78.0996 -38 93 -79.2002zM328 224c13.2998 0 24 10.7002 24 24s-10.7002 24 -24 24s-24 -10.7002 -24 -24s10.7002 -24 24 -24z" />
-    <glyph glyph-name="icicles" unicode="&#xf7ad;" 
-d="M511.4 410.1l-87.5 -467.699c-1.7002 -8.60059 -14 -8.60059 -15.7002 0l-66.7002 363.8l-45.7998 -172.5c-2.2998 -7.60059 -13 -7.60059 -15.2998 0l-34.1006 133.399l-46.5 -196.899c-1.89941 -8.2998 -13.7002 -8.2998 -15.5996 0l-44.2002 187.3l-36.4004 -124.1
-c-2.39941 -7.2002 -12.5996 -7.2002 -15.0996 0l-87.0996 273.399c-6.2002 20.5 9.19922 41.2002 30.5996 41.2002h448c20 0 35.0996 -18.2002 31.4004 -37.9004z" />
-    <glyph glyph-name="igloo" unicode="&#xf7ae;" horiz-adv-x="576" 
-d="M320 414.1v-126.1h-271.4c51.6006 77.2002 139.601 128 239.4 128c10.7998 0 21.5 -0.700195 32 -1.90039zM96 256v-128h-96c0 46 11.0996 89.4004 30.2998 128h65.7002zM352 408.6c72.7998 -16.5 135.2 -60.5 175.4 -120.6h-175.4v120.6zM480 128v128h65.7002
-c19.2002 -38.5996 30.2998 -82 30.2998 -128h-96zM416 64c0 11.0996 -1.90039 21.7002 -4.5 32h164.5v-96c0 -17.7002 -14.2998 -32 -32 -32h-128v96zM448 256v-128h-49.7998c-22.2002 38.0996 -63 64 -110.2 64s-88 -25.9004 -110.2 -64h-49.7998v128h320zM0 0v96h164.5
-c-2.59961 -10.2998 -4.5 -20.9004 -4.5 -32v-96h-128c-17.7002 0 -32 14.2998 -32 32zM288 160c53 0 96 -43 96 -96v-96h-192v96c0 53 43 96 96 96z" />
-    <glyph glyph-name="mitten" unicode="&#xf7b5;" horiz-adv-x="448" 
-d="M368 32c8.7998 0 16 -7.2002 16 -16v-64c0 -8.7998 -7.2002 -16 -16 -16h-320c-8.7998 0 -16 7.2002 -16 16v64c0 8.7998 7.2002 16 16 16h320zM425 241.1c27.0996 -22.5996 30.7998 -62.8994 8.09961 -90.0996l-72.5 -87h-309l-47.8994 207.6
-c-17.9004 77.5 30.5 154.801 107.899 172.7c77.4004 17.9004 154.801 -30.5 172.801 -108l29.5996 -128.399l20.9004 25c22.5996 27.1992 62.8994 30.7998 90.0996 8.19922z" />
-    <glyph glyph-name="mug-hot" unicode="&#xf7b6;" 
-d="M127.1 301.5c-2.69922 16.5996 -10.3994 31.9004 -22.3994 44.0996c-22.6006 23.1006 -36.7002 52.5 -40.6006 84.4004c-1.09961 9.5 6.5 18 16.3008 18h16.3994c8.2002 0 15 -5.90039 16.1006 -13.7998c2.7998 -20.2002 12 -38.7998 26.3994 -53.5
-c20.2002 -20.5 32.7998 -46.5 36.6006 -74.7002c1.2998 -9.5 -6.5 -18 -16.3008 -18h-16.5c-8 0 -14.6992 5.7998 -16 13.5zM239.1 301.5c-2.69922 16.5996 -10.3994 31.9004 -22.3994 44.0996c-22.6006 23.1006 -36.7002 52.5 -40.6006 84.4004
-c-1.19922 9.5 6.5 18 16.3008 18h16.3994c8.2002 0 15 -5.90039 16.1006 -13.7998c2.7998 -20.2002 12 -38.7998 26.3994 -53.5c20.2002 -20.5 32.7998 -46.5 36.6006 -74.7002c1.2998 -9.5 -6.5 -18 -16.3008 -18h-16.5c-8 0 -14.6992 5.7998 -16 13.5zM400 256
-c61.7998 0 112 -50.2002 112 -112s-50.2002 -112 -112 -112h-16c0 -53 -43 -96 -96 -96h-192c-53 0 -96 43 -96 96v192c0 17.7002 14.2998 32 32 32h368zM400 96c26.5 0 48 21.5 48 48s-21.5 48 -48 48h-16v-96h16z" />
-    <glyph glyph-name="radiation" unicode="&#xf7b9;" horiz-adv-x="496" 
-d="M328.2 192.2c0 28.5996 -15.2002 53.5 -37.7998 67.7998l80.3994 128.4c4.7998 7.69922 15.2998 10.0996 22.7002 4.7998c58.0996 -42 97.4004 -108.4 102.5 -184.2c0.599609 -9.09961 -7.09961 -16.7998 -16.2002 -16.7998h-151.6zM290.4 124.5l80.3994 -128.5
-c4.7998 -7.59961 2.40039 -18.0996 -5.59961 -22.4004c-34.9004 -18.7998 -74.7998 -29.5996 -117.2 -29.5996s-82.2998 10.7998 -117.2 29.5996c-8 4.30078 -10.3994 14.7002 -5.59961 22.4004l80.3994 128.5c12.4004 -7.7002 26.8008 -12.4004 42.4004 -12.4004
-s30.0996 4.7002 42.4004 12.4004zM248 144.2c-26.5 0 -48 21.5 -48 48s21.5 48 48 48s48 -21.5 48 -48s-21.5 -48 -48 -48zM16.2002 192.2c-9.10059 0 -16.7998 7.7002 -16.2002 16.7002c5.09961 75.7998 44.4004 142.199 102.5 184.199
-c7.40039 5.40039 17.9004 2.90039 22.7002 -4.7998l80.3994 -128.399c-22.5996 -14.2002 -37.7998 -39.1006 -37.7998 -67.7002h-151.6z" />
-    <glyph glyph-name="radiation-alt" unicode="&#xf7ba;" horiz-adv-x="496" 
-d="M312 192c0 22.7998 -12.0996 42.7998 -30.0996 54l41.6992 66.7998c5.2002 8.2998 16.4004 9.90039 24 3.7998c32.5 -26 54.9004 -64.1992 59.5 -107.8c0.900391 -9.09961 -6.7998 -16.7998 -16 -16.7998h-79.0996zM214.2 137.9
-c9.7998 -6.2002 21.5 -9.90039 33.8994 -9.90039c12.4004 0 24 3.7002 33.8008 9.90039l41.7998 -66.9004c4.7998 -7.7998 2.39941 -18.4004 -5.7998 -22.5c-21.2002 -10.4004 -44.8008 -16.5 -69.9004 -16.5s-48.7002 6.09961 -69.7998 16.5
-c-8.2002 4.09961 -10.7002 14.7002 -5.7998 22.5zM104.9 192c-9.2002 0 -17 7.7002 -15.9004 16.9004c4.59961 43.5996 26.9004 81.7998 59.5 107.8c7.59961 6.09961 18.7998 4.5 24 -3.7998l41.7002 -66.8008c-18.1006 -11.2998 -30.2002 -31.2998 -30.2002 -54.0996
-h-79.0996zM248 -56c-137 0 -248 111 -248 248s111 248 248 248s248 -111 248 -248s-111 -248 -248 -248zM248 376c-101.5 0 -184 -82.5 -184 -184s82.5 -184 184 -184s184 82.5 184 184s-82.5 184 -184 184zM248 160c-17.7002 0 -32 14.2998 -32 32s14.2998 32 32 32
-s32 -14.2998 32 -32s-14.2998 -32 -32 -32z" />
-    <glyph glyph-name="restroom" unicode="&#xf7bd;" horiz-adv-x="640" 
-d="M128 320c-35.2998 0 -64 28.7002 -64 64s28.7002 64 64 64s64 -28.7002 64 -64s-28.7002 -64 -64 -64zM512 320c-35.2998 0 -64 28.7002 -64 64s28.7002 64 64 64s64 -28.7002 64 -64s-28.7002 -64 -64 -64zM639.3 93.5c3.7002 -15.0996 -8.2998 -29.5 -24.5 -29.5
-h-54.7998v-104c0 -13.2998 -10.7002 -24 -24 -24h-48c-13.2998 0 -24 10.7002 -24 24v104h-54.7998c-16.2002 0 -28.2002 14.4004 -24.7002 29.5l45.5996 185.8c3.30078 13.5 15.5 23 29.8008 24.2002c15 -9.7002 32.7998 -15.5 52 -15.5c19.1992 0 37 5.7998 52 15.5
-c14.2998 -1.2002 26.5 -10.7002 29.7998 -24.2002zM336 448c8.7998 0 16 -7.2002 16 -16v-480c0 -8.7998 -7.2002 -16 -16 -16h-32c-8.7998 0 -16 7.2002 -16 16v480c0 8.7998 7.2002 16 16 16h32zM180.1 303.6c24.6006 -2.09961 43.9004 -22.5 43.9004 -47.5996v-136
-c0 -13.2998 -10.7002 -24 -24 -24h-8v-136c0 -13.2998 -10.7002 -24 -24 -24h-80c-13.2998 0 -24 10.7002 -24 24v136h-8c-13.2998 0 -24 10.7002 -24 24v136c0 25.0996 19.2998 45.5 43.9004 47.5996c15 -9.7998 32.8994 -15.5996 52.0996 -15.5996
-s37.0996 5.7998 52.0996 15.5996z" />
-    <glyph glyph-name="satellite" unicode="&#xf7bf;" 
-d="M502.609 137.958l-96.7041 -96.7168c-5.76758 -5.74707 -13.7207 -9.30176 -22.499 -9.30176c-8.77734 0 -16.7402 3.55469 -22.5078 9.30176l-80.3262 80.418l-9.89258 -9.9082c10.8848 -23.9746 16.9482 -50.5957 16.9482 -78.6221
-c0 -32.3584 -8.10156 -63.1982 -22.3555 -89.9004c-4.50098 -8.50098 -16.3936 -9.59473 -23.207 -2.79785l-107.519 107.515l-17.7998 -17.7988c0.703125 -2.60938 1.60938 -5.00098 1.60938 -7.79785c0 -17.6641 -14.3408 -32.0059 -32.0049 -32.0059
-s-32.0059 14.3418 -32.0059 32.0059s14.3418 32.0039 32.0059 32.0039c2.79688 0 5.18848 -0.90625 7.79785 -1.60938l17.7998 17.7998l-107.518 107.515c-6.79883 6.8125 -5.7041 18.6113 2.79688 23.2061c26.7031 14.2539 57.1895 22.3359 89.5479 22.3359
-c28.0273 0 55.0049 -6.04395 78.9805 -16.9297l9.79883 9.79883l-80.3105 80.417c-5.74609 5.78613 -9.29785 13.7539 -9.29785 22.5449s3.55176 16.7686 9.29785 22.5547l96.7197 96.7168c5.72754 5.74512 13.6484 9.30273 22.3945 9.30273
-c0.0351562 0 0.0732422 -0.00488281 0.109375 -0.00488281h0.0458984c8.79199 0 16.7656 -3.5498 22.5518 -9.29785l80.3262 -80.3076l47.8047 47.8965c6.08301 6.07715 14.4805 9.83789 23.749 9.83789c9.26953 0 17.6768 -3.76074 23.7588 -9.83789l47.5088 -47.5059
-c6.07031 -6.08594 9.82617 -14.4824 9.82617 -23.749s-3.75586 -17.6719 -9.82617 -23.7578l-47.8057 -47.8975l80.3105 -80.417c5.73633 -5.75195 9.28516 -13.6865 9.28516 -22.4434c0 -8.81348 -3.59277 -16.8018 -9.39453 -22.5625zM219.562 250.567l73.8252 73.8223
-l-68.918 68.8994l-73.8096 -73.8066zM457.305 160.461l-68.9023 68.916l-73.8242 -73.8232l68.918 -68.8994z" />
-    <glyph glyph-name="satellite-dish" unicode="&#xf7c0;" 
-d="M305.449 -14.5898c7.3916 -7.29785 6.18848 -20.0967 -3 -25.0039c-77.7129 -41.8027 -176.726 -29.9102 -242.344 35.708c-65.6016 65.6035 -77.5098 164.523 -35.6914 242.332c4.89062 9.09473 17.6895 10.2979 25.0029 3l116.812 -116.813l27.3945 27.3945
-c-0.6875 2.60938 -1.59375 5.00098 -1.59375 7.81348c0 17.6631 14.3398 32.0039 32.0039 32.0039c17.6631 0 32.0039 -14.3408 32.0039 -32.0039c0 -17.6641 -14.3408 -32.0039 -32.0039 -32.0039c-2.79785 0 -5.2041 0.890625 -7.79785 1.59375l-27.4102 -27.4102z
-M511.976 144.933c0.0175781 -0.301758 0.0253906 -0.605469 0.0253906 -0.912109c0 -8.86133 -7.1748 -16.0488 -16.0273 -16.0898h-32.1133c-8.46289 0.0244141 -15.3867 6.65918 -15.8926 15.002c-7.50098 129.519 -111.515 234.533 -240.937 241.534
-c-8.34863 0.444336 -14.9902 7.36426 -14.9902 15.8223c0 0.0292969 -0.0126953 0.0566406 -0.0117188 0.0859375v31.5986c0.0361328 8.85156 7.2334 16.0264 16.0938 16.0264c0.308594 0 0.603516 -0.00683594 0.908203 -0.0244141
-c163.224 -8.59473 294.443 -139.816 302.944 -303.043zM415.964 145.229c0.0244141 -0.364258 0.0371094 -0.732422 0.0371094 -1.10254c0 -8.92578 -7.23145 -16.1621 -16.1484 -16.1963h-32.208c-8.34961 0.0605469 -15.1953 6.51953 -15.8926 14.7051
-c-6.90625 77.0107 -68.1172 138.91 -144.924 145.224c-8.25781 0.592773 -14.7959 7.48633 -14.7988 15.8926v32.1143v0.00390625c0 8.9043 7.22949 16.1338 16.1338 16.1338c0.396484 0 0.775391 -0.0136719 1.16504 -0.0419922
-c110.123 -8.50098 198.229 -96.6074 206.636 -206.732z" />
-    <glyph glyph-name="sd-card" unicode="&#xf7c2;" horiz-adv-x="384" 
-d="M320 448c35.2998 0 64 -28.7002 64 -64v-384c0 -35.2998 -28.7002 -64 -64 -64h-256c-35.2998 0 -64 28.7002 -64 64v320l128 128h192zM160 288v96h-48v-96h48zM240 288v96h-48v-96h48zM320 288v96h-48v-96h48z" />
-    <glyph glyph-name="sim-card" unicode="&#xf7c4;" horiz-adv-x="384" 
-d="M0 384c0 35.2998 28.7002 64 64 64h192l128 -128v-320c0 -35.2998 -28.7002 -64 -64 -64h-256c-35.2998 0 -64 28.7002 -64 64v384zM224 192v64h-64v-64h64zM320 192v32c0 17.7002 -14.2998 32 -32 32h-32v-64h64zM256 64v-64h32c17.7002 0 32 14.2998 32 32v32h-64z
-M160 64v-64h64v64h-64zM64 64v-32c0 -17.7002 14.2998 -32 32 -32h32v64h-64zM64 160v-64h256v64h-256zM64 224v-32h64v64h-32c-17.7002 0 -32 -14.2998 -32 -32z" />
-    <glyph glyph-name="skating" unicode="&#xf7c5;" horiz-adv-x="448" 
-d="M400 448c26.5 0 48 -21.5 48 -48s-21.5 -48 -48 -48s-48 21.5 -48 48s21.5 48 48 48zM400 0c8.7998 0 16 -7.2002 16 -16c0 -26.5 -21.5 -48 -48 -48h-96c-8.7998 0 -16 7.2002 -16 16s7.2002 16 16 16h96c8.7998 0 16 7.2002 16 16s7.2002 16 16 16zM117.8 -8.59961
-c6.2998 6.2998 16.5 6.19922 22.7002 0c6.2002 -6.2002 6.2002 -16.4004 0 -22.6006c-9.2998 -9.2998 -21.5996 -14 -33.9004 -14c-12.2998 0 -24.5996 4.60059 -34 14l-67.8994 67.9004c-6.2002 6.2002 -6.2002 16.3994 0 22.5996s16.3994 6.2002 22.5996 0
-l67.9004 -67.8994c6.2002 -6.30078 16.3994 -6.2002 22.5996 0zM173.9 171.2c3.7998 -6.10059 8.19922 -11.7998 13.1992 -16.7998l30.2002 -30.2002l-91.8994 -91.9004c-6.2002 -6.2998 -14.4004 -9.39941 -22.6006 -9.39941s-16.3994 3.19922 -22.5996 9.39941
-c-12.5 12.4004 -12.5 32.7002 0 45.2002zM128 288c-17.7002 0 -32 14.2998 -32 32s14.2998 32 32 32h204.6c16.3008 0 30.8008 -9.7002 37 -24.7002c6.2002 -15 2.80078 -32.0996 -8.69922 -43.5996l-82.3008 -82.2998c-0.5 -0.5 -1.19922 -0.700195 -1.69922 -1.10059
-l61 -61c9 -8.89941 14.0996 -21.2998 14.0996 -33.8994v-89.4004c0 -17.7002 -14.2998 -32 -32 -32s-32 14.2998 -32 32v82.7998l-78.2002 78.2002c-12.5996 12.5 -19.3994 29.9004 -18.7002 47.7002c0.700195 17.7002 8.80078 34.5996 22.3008 46.0996l20.0996 17.2002
-h-105.5z" />
-    <glyph glyph-name="skiing" unicode="&#xf7c9;" 
-d="M432 352c-26.5 0 -48 21.5 -48 48s21.5 48 48 48s48 -21.5 48 -48s-21.5 -48 -48 -48zM505 -4.09961c9.2998 -9.30078 9.2998 -24.5 0 -33.8008c-17 -17 -39.7998 -26 -63 -26c-12.5996 0 -25.2002 2.60059 -37.0996 8.10059l-391.9 202.5
-c-11.7998 6 -16.4004 20.5 -10.2998 32.2998c6.09961 11.7998 20.5996 16.2998 32.2998 10.2998l197.9 -102.3l45.8994 68.7998l-75.0996 75.2002c-14.2998 14.4004 -20.6006 34.5 -17.7002 54.4004l107 -53.1006l40.4004 -40.5
-c16.1992 -16.0996 18.6992 -41.5996 6 -60.5996l-49.2002 -73.7998l135.8 -70.2002c14.5996 -6.7002 33 -3.40039 45.0996 8.7002c9.30078 9.39941 24.5 9.39941 33.9004 0zM120 356.4l-26.2002 23c-2.2002 1.89941 -2.39941 5.19922 -0.5 7.39941
-c1.2998 1.5 3.2002 2.10059 5 1.7002l34.4004 -7h0.200195l11.0996 21.7002c13.7002 -7 21.2002 -21.1006 20.9004 -35.6006l62.5 -31l81.1992 32.5c43.6006 17.4004 76.4004 -15 84.5 -39.1992l17.1006 -51.2002l52.0996 -26.1006
-c15.7998 -7.89941 22.2002 -27.0996 14.2998 -42.8994c-7.89941 -15.7998 -27 -22.2002 -42.8994 -14.2998l-58.1006 29c-11.3994 5.69922 -20 15.5996 -24 27.6992l-6.39941 19.1006l-32.4004 -13l-114.5 56.7998c0.100586 0.0996094 0.100586 0.200195 0.200195 0.299805
-l-47.2002 23.4004c-11.5996 -9.7002 -28.3994 -12.1006 -42.7998 -4.7998z" />
-    <glyph glyph-name="skiing-nordic" unicode="&#xf7ca;" horiz-adv-x="576" 
-d="M336 352c-26.5 0 -48 21.5 -48 48s21.5 48 48 48s48 -21.5 48 -48s-21.5 -48 -48 -48zM552 32c13.2002 0 24 -10.7998 24 -24c0 -39.7002 -32.2998 -72 -72 -72h-480c-13.2002 0 -24 10.7002 -24 24s10.7998 24 24 24h42.9004l54.0996 270.8
-c-0.700195 0.799805 -1.7002 1.2002 -2.40039 2.10059c-10.7998 14.0996 -8.09961 34.1992 5.90039 44.8994l39.7002 30.4004c23 17.5996 52.5 23.8994 80.7998 17.0996l71.2002 -21.2002c26.2998 -6.69922 49.2998 -25.3994 61.7998 -50.8994l26.0996 -53.2002h44
-c17.7002 0 32 -14.2998 32 -32c0 -13.4004 -8.39941 -24.9004 -20.0996 -29.5996l-25.5 -178.4h69.5c13.2002 0 24 10.7998 24 24c0 13.2998 10.7998 24 24 24zM291.5 -16l25.5 81.2002l-85 50.2002c-27.5996 16.2998 -38.9004 50.7998 -26.2998 80.2998l37.5 87.3994
-l-14.7002 4.40039c-7.90039 1.90039 -17.5996 -0.200195 -25.2998 -6.09961l-39.7002 -30.4004c-3.59961 -2.7002 -7.59961 -4.59961 -11.7002 -5.59961l-52.2998 -261.4h24.2002l62.5 131.8c7.59961 -10.8994 17.3994 -20.5996 29.5 -27.7998l22 -13l-43.1006 -91h96.9004z
-M402.1 -16l25.2002 176h-33.2998c-18.2002 0 -35.0996 10.5996 -43.0996 26.9004l-20.3008 41.3994l-31.2998 -78.2998l61.2002 -36.0996c18.7002 -11.3008 27.5 -33.6006 21.5996 -54.4004l-23.5996 -75.5h43.5996z" />
-    <glyph glyph-name="sleigh" unicode="&#xf7cc;" horiz-adv-x="640" 
-d="M612.7 97.2998c18.5 -14.7002 28.5996 -37.2002 27.2002 -61c-2.2002 -39 -36.9004 -68.2998 -75.9004 -68.2998h-516c-8.7998 0 -16 7.2002 -16 16v16c0 8.7998 7.2002 16 16 16h519.3c13.6006 0 24.6006 11 24.6006 24.5996c0 7.5 -3.30078 14.5 -9.2002 19.2002
-l-9.2998 7.40039c-6.90039 5.5 -8 15.5996 -2.5 22.5l10 12.5c5.5 6.89941 15.5996 8 22.5 2.5zM32 224v128c-17.7002 0 -32 14.2998 -32 32s14.2998 32 32 32h20.7002c65.7002 0 125.899 -37.2002 155.3 -96s89.5 -96 155.3 -96h20.7002c35.2998 0 64 28.7002 64 64v64h96
-c17.7002 0 32 -14.2998 32 -32s-14.2998 -32 -32 -32v-96c0 -53 -43 -96 -96 -96v-48h-64v48h-192v-48h-64v52.5c-55.0996 14.2998 -96 63.9004 -96 123.5z" />
-    <glyph glyph-name="sms" unicode="&#xf7cd;" 
-d="M256 416c141.4 0 256 -93.0996 256 -208s-114.6 -208 -256 -208c-38.4004 0 -74.7002 7.09961 -107.4 19.4004c-24.5996 -19.6006 -74.2998 -51.4004 -140.6 -51.4004c-3.2002 0 -6 1.7998 -7.2998 4.7998s-0.700195 6.40039 1.5 8.7002
-c0.5 0.5 42.2998 45.4004 54.7998 95.7998c-35.5996 35.7002 -57 81.1006 -57 130.7c0 114.9 114.6 208 256 208zM128.2 144c23.3994 0 42.5 17.2998 42.3994 38.5996c0 10.6006 -4.7998 20.9004 -13.2998 28.1006l-21.8994 18.7998
-c-1.30078 1.09961 -2.10059 2.5 -2.10059 3.7998c0 3.10059 4.40039 6.60059 10.4004 6.60059h12.2998c4.40039 0 8 3.59961 8 8v16c0 4.39941 -3.59961 8 -8 8h-12.2002c-23.3994 0 -42.3994 -17.3008 -42.3994 -38.6006c0 -10.5996 4.7998 -20.8994 13.2998 -28.0996
-l21.8994 -18.7998c1.30078 -1.10059 2.10059 -2.5 2.10059 -3.80078c0 -3.09961 -4.40039 -6.59961 -10.4004 -6.59961h-12.2998c-4.40039 0 -8 -3.59961 -8 -8v-16c0 -4.40039 3.59961 -8 8 -8h12.2002zM320 152v104c0 8.7998 -7.2002 16 -16 16h-16
-c-6 0 -11.5996 -3.40039 -14.2998 -8.7998l-17.7002 -35.4004l-17.7002 35.4004c-2.7002 5.39941 -8.2002 8.7998 -14.2998 8.7998h-16c-8.7998 0 -16 -7.2002 -16 -16v-104c0 -4.40039 3.59961 -8 8 -8h16c4.40039 0 8 3.59961 8 8v68.2002l24.9004 -55.7998
-c2.89941 -5.90039 11.3994 -5.90039 14.2998 0l24.7998 55.7998v-68.2002c0 -4.40039 3.59961 -8 8 -8h16c4.40039 0 8 3.59961 8 8zM368.3 144c23.4004 0 42.4004 17.2998 42.2998 38.5996c0 10.6006 -4.7998 20.9004 -13.2998 28.1006l-21.8994 18.7998
-c-1.30078 1.09961 -2.10059 2.5 -2.10059 3.7998c0 3.10059 4.40039 6.60059 10.4004 6.60059h12.2998c4.40039 0 8 3.59961 8 8v16c0 4.39941 -3.59961 8 -8 8h-12.2002c-23.3994 0 -42.3994 -17.3008 -42.3994 -38.6006c0 -10.5996 4.7998 -20.8994 13.2998 -28.0996
-l21.8994 -18.7998c1.30078 -1.10059 2.10059 -2.5 2.10059 -3.80078c0 -3.09961 -4.40039 -6.59961 -10.4004 -6.59961h-12.2998c-4.40039 0 -8 -3.59961 -8 -8v-16c0 -4.40039 3.59961 -8 8 -8h12.2998z" />
-    <glyph glyph-name="snowboarding" unicode="&#xf7ce;" 
-d="M432 352c-26.5 0 -48 21.5 -48 48s21.5 48 48 48s48 -21.5 48 -48s-21.5 -48 -48 -48zM460.8 198.4l-83.5 62.8994l-66 -30.5l52 -39c14.9004 -11.2002 22 -30.2002 18.1006 -48.3994l-21.9004 -102c-2.2002 -10.1006 -9.09961 -17.8008 -17.7998 -21.9004
-l90.7998 -33.0996c9.7002 -3.5 20.2002 -3.10059 29.5 1.2998c12 5.59961 26.2998 0.399414 31.9004 -11.6006c5.59961 -12 0.399414 -26.2998 -11.6006 -31.8994c-11.5996 -5.5 -24 -8.2002 -36.5 -8.2002c-10 0 -20 1.7998 -29.7002 5.2998l-364.8 132.7
-c-21.7998 7.90039 -39.0996 23.7998 -48.8994 44.7998c-5.60059 12 -0.400391 26.2998 11.5996 31.9004c12 5.59961 26.2998 0.399414 31.9004 -11.6006c4.39941 -9.39941 12.0996 -16.5 21.7998 -20l38.7002 -14.0996c-3.80078 3.5 -7 7.7002 -8.7002 12.9004
-c-5.60059 16.7998 3.39941 34.8994 20.2002 40.5l74.0996 24.6992v53.1006c0 24.3994 13.5996 46.2998 35.4004 57.2002l41.1992 20.5996l-16.3994 5.5c-12.1006 4.09961 -22 12.5996 -27.7002 24l-29.0996 58.0996c-7.90039 15.8008 -1.5 35 14.2998 42.9004
-s35 1.5 42.8994 -14.2998l26.1006 -52.1006l63.7002 -21.1992c16.2998 -5.40039 31.5996 -13.5 45.3994 -23.8008l111.4 -83.5c14.2002 -10.5996 17 -30.6992 6.39941 -44.7998c-6.2998 -8.39941 -15.8994 -12.7998 -25.5996 -12.7998
-c-6.7002 0 -13.4004 2.09961 -19.2002 6.40039zM316.4 146.7l-60.5 45.2998v-20.5c0 -20.7002 -13.2002 -39 -32.8008 -45.5l-85 -28.4004c-2.59961 -0.899414 -5.2998 -1.09961 -8 -1.2998l169.4 -61.5996c-2.90039 6.09961 -4.2998 12.8994 -2.7998 20z" />
-    <glyph glyph-name="snowman" unicode="&#xf7d0;" 
-d="M510.9 295.7c3.19922 -8.10059 -0.800781 -17.2002 -8.90039 -20.2998l-135.2 -55.2002c0.400391 -4.10059 1.2002 -8 1.2002 -12.2002c0 -10 -1.7002 -19.5 -4.2002 -28.7002c21.1006 -21.3994 36.1006 -48.7998 41.6006 -79
-c11.5 -63.2002 -16.4004 -120.3 -62.9004 -152.6c-10.9004 -7.60059 -23.9004 -11.7002 -37.2002 -11.7002h-99.2002c-11 0 -22 2.2998 -31.2998 8.2002c-42.3994 26.8994 -70.7998 73.7998 -70.7998 127.8c0 41.7998 16.9004 79.5996 44.2998 107.1
-c-2.5 9.30078 -4.2002 18.8008 -4.2002 28.9004c0 4.2002 0.800781 8.2002 1.2002 12.2002l-135.2 55.2002c-8.19922 3.19922 -12.1992 12.2998 -8.89941 20.2998l5.89941 14.5c3.30078 8 12.6006 11.8994 20.8008 8.7002l28.0996 -11.5v29
-c0 8.59961 7.2002 15.5996 16 15.5996h16c8.7998 0 16 -7 15.7998 -15.5996v-46.9004c0 -0.5 -0.200195 -1 -0.299805 -1.5l56.4004 -23c6 10 13.2998 18.9004 22 26.5996c-13.5 16.6006 -22 37.4004 -22 60.5c0 53 43 96 96 96s96 -43 96 -96
-c0 -23.0996 -8.40039 -43.8994 -22 -60.5c8.69922 -7.69922 16.0996 -16.5996 22 -26.5996l56.3994 23c0 0.5 -0.299805 1 -0.299805 1.5v46.9004c0 8.59961 7.2002 15.5996 16 15.5996h16c8.7998 0 16 -7 16 -15.5996v-29l28.2002 11.5
-c8.2002 3.19922 17.5 -0.700195 20.7998 -8.7002zM224 352c8.7998 0 16 7.2002 16 16s-7.2002 16 -16 16s-16 -7.2002 -16 -16s7.2002 -16 16 -16zM256 80c8.7998 0 16 7.2002 16 16s-7.2002 16 -16 16s-16 -7.2002 -16 -16s7.2002 -16 16 -16zM256 144
-c8.7998 0 16 7.2002 16 16s-7.2002 16 -16 16s-16 -7.2002 -16 -16s7.2002 -16 16 -16zM256 208c8.7998 0 16 7.2002 16 16s-7.2002 16 -16 16s-16 -7.2002 -16 -16s7.2002 -16 16 -16zM256 296c0 0 16 23.2002 16 32s-7.2002 16 -16 16s-16 -7.2002 -16 -16s16 -32 16 -32z
-M288 352c8.7998 0 16 7.2002 16 16s-7.2002 16 -16 16s-16 -7.2002 -16 -16s7.2002 -16 16 -16z" />
-    <glyph glyph-name="snowplow" unicode="&#xf7d2;" horiz-adv-x="640" 
-d="M120 72c13.2998 0 24 -10.7002 24 -24s-10.7002 -24 -24 -24s-24 10.7002 -24 24s10.7002 24 24 24zM200 72c13.2998 0 24 -10.7002 24 -24s-10.7002 -24 -24 -24s-24 10.7002 -24 24s10.7002 24 24 24zM280 72c13.2998 0 24 -10.7002 24 -24s-10.7002 -24 -24 -24
-s-24 10.7002 -24 24s10.7002 24 24 24zM360 72c13.2998 0 24 -10.7002 24 -24s-10.7002 -24 -24 -24s-24 10.7002 -24 24s10.7002 24 24 24zM598.6 22.5996l36.7002 -36.6992c6.2002 -6.2002 6.2002 -16.4004 0 -22.6006l-22.5996 -22.5996
-c-6.2002 -6.2002 -16.4004 -6.2002 -22.6006 0l-36.6992 36.7002c-26.5 26.5 -41.4004 62.3994 -41.4004 99.8994v18.7002h-43.2002c7 -14.5996 11.2002 -30.7002 11.2002 -48c0 -61.9004 -50.0996 -112 -112 -112h-256c-61.9004 0 -112 50.0996 -112 112
-c0 44.5996 26.2998 82.7998 64 100.8v91.2002c0 26.5 21.5 48 48 48h16v112c0 26.5 21.5 48 48 48h144.3c19.2998 0 36.6006 -11.4004 44.2002 -29.0996l78.2998 -182.801c3.40039 -8 5.2002 -16.5 5.2002 -25.1992v-50.9004h64v18.7002
-c0 37.5 14.9004 73.3994 41.4004 99.8994l36.6992 36.7002c6.2002 6.2002 16.4004 6.2002 22.6006 0l22.5996 -22.5996c6.2002 -6.2002 6.2002 -16.4004 0 -22.6006l-36.7002 -36.6992c-14.5 -14.5 -22.5996 -34.1006 -22.5996 -54.6006v-101.6
-c0 -20.5 8.09961 -40.1006 22.5996 -54.6006zM192 384v-96l64 -64h122.4l-68.6006 160h-117.8zM368 0c26.5 0 48 21.5 48 48s-21.5 48 -48 48h-256c-26.5 0 -48 -21.5 -48 -48s21.5 -48 48 -48h256z" />
-    <glyph glyph-name="tenge" unicode="&#xf7d7;" horiz-adv-x="384" 
-d="M372 288c6.59961 0 12 -5.40039 12 -12v-56c0 -6.59961 -5.40039 -12 -12 -12h-140v-228c0 -6.59961 -5.40039 -12 -12 -12h-56c-6.59961 0 -12 5.40039 -12 12v228h-140c-6.59961 0 -12 5.40039 -12 12v56c0 6.59961 5.40039 12 12 12h360zM372 416
-c6.59961 0 12 -5.40039 12 -12v-56c0 -6.59961 -5.40039 -12 -12 -12h-360c-6.59961 0 -12 5.40039 -12 12v56c0 6.59961 5.40039 12 12 12h360z" />
-    <glyph glyph-name="toilet" unicode="&#xf7d8;" horiz-adv-x="384" 
-d="M368 400h-16v-156.7c20.2002 -10.0996 32 -22.2002 32 -35.2998c0 -67.2002 -34.5996 -126.2 -86.7998 -160.5l21.3994 -70.2002c6.30078 -20.5 -9.09961 -41.2998 -30.5996 -41.2998h-192c-21.5 0 -36.9004 20.7998 -30.5996 41.2998l21.3994 70.2002
-c-52.2002 34.2998 -86.7998 93.2998 -86.7998 160.5c0 13.0996 11.7998 25.2002 32 35.2998v156.7h-16c-8.7998 0 -16 7.2002 -16 16v16c0 8.7998 7.2002 16 16 16h352c8.7998 0 16 -7.2002 16 -16v-16c0 -8.7998 -7.2002 -16 -16 -16zM80 376v-16
-c0 -4.40039 3.59961 -8 8 -8h48c4.40039 0 8 3.59961 8 8v16c0 4.40039 -3.59961 8 -8 8h-48c-4.40039 0 -8 -3.59961 -8 -8zM192 176c77.0996 0 139.6 14.2998 139.6 32s-62.5 32 -139.6 32s-139.6 -14.2998 -139.6 -32s62.5 -32 139.6 -32z" />
-    <glyph glyph-name="tools" unicode="&#xf7d9;" 
-d="M501.1 52.2998c14.5 -14.5 14.5 -38.0996 0 -52.7002l-52.6992 -52.6992c-14.5 -14.6006 -38.1006 -14.6006 -52.7002 0l-117.101 117.1c-23.0996 23.0996 -27.5 57.5996 -13.8994 85.4004l-106.601 106.6h-62.0996l-96 128l64 64l128 -96v-62.0996l106.6 -106.601
-c27.8008 13.7002 62.3008 9.2002 85.4004 -13.8994zM331.7 223c-8.2002 0 -16.6006 -1 -24.7002 -2.90039l-82.0996 82.1006c-0.700195 37.5 12.6992 75.0996 41.1992 103.6c37 37 89.2002 49.6006 136.601 37.9004c9.09961 -2.2998 12.2998 -13.6006 5.7002 -20.2002
-l-74.4004 -74.4004l11.2998 -67.8994l67.9004 -11.2998l74.3994 74.3994c6.60059 6.60059 17.9004 3.5 20.1006 -5.5c11.7998 -47.3994 -0.799805 -99.5996 -37.9004 -136.7c-13 -13 -28 -22.5996 -43.7998 -29.5l-19.4004 19.4004c-20 20 -46.5996 31 -74.8994 31z
-M227.8 141c-4.89941 -21.0996 -2.59961 -42.7998 5 -62.7002l-123.6 -123.6c-25 -25 -65.5 -25 -90.5 0s-25 65.5 0 90.5l152.399 152.5zM64 -24c13.2998 0 24 10.7998 24 24c0 13.2998 -10.7002 24 -24 24s-24 -10.7002 -24 -24c0 -13.2002 10.7998 -24 24 -24z" />
-    <glyph glyph-name="tram" unicode="&#xf7da;" 
-d="M288 384c-17.7002 0 -32 14.2998 -32 32s14.2998 32 32 32s32 -14.2998 32 -32s-14.2998 -32 -32 -32zM511.5 396.1c2.2002 -8.5 -2.7998 -17.2998 -11.4004 -19.5996l-228.1 -60.7998v-91.7002h176c17.7002 0 32 -14.2998 32 -32v-224c0 -17.7002 -14.2998 -32 -32 -32
-h-384c-17.7002 0 -32 14.2998 -32 32v224c0 17.7002 14.2998 32 32 32h176v83.2002l-219.9 -58.7002c-1.2998 -0.299805 -2.69922 -0.5 -4.09961 -0.5c-7.09961 0 -13.5 4.7002 -15.4004 11.7998c-2.2998 8.60059 2.80078 17.2998 11.3008 19.6006l480 128
-c8.59961 2.2998 17.2998 -2.7002 19.5996 -11.3008zM176 64v96h-96v-96h96zM336 160v-96h96v96h-96zM304 160h-96v-96h96v96zM192 352c-17.7002 0 -32 14.2998 -32 32s14.2998 32 32 32s32 -14.2998 32 -32s-14.2998 -32 -32 -32z" />
-    <glyph glyph-name="fire-alt" unicode="&#xf7e4;" horiz-adv-x="448" 
-d="M323.56 396.8c72.46 -67.2598 124.44 -177.13 124.44 -230.399c0 -127.25 -100.29 -230.4 -224 -230.4s-224 103.15 -224 230.4c0 71.6396 69.7402 190.43 168 281.6c38.2803 -35.5303 72.0801 -73.6201 99.3398 -111.17
-c16.6406 20.3799 35.4199 40.6699 56.2197 59.9697zM304.09 56.1504c49.2402 34.4492 60.7803 101.229 33.4297 153.42c-3.35938 6.41992 -7.12988 13.1201 -11.2695 19.9697l-58.6299 -66.8799s-91.9004 117.359 -98.8301 125.34
-c-48.4805 -58.1201 -72.79 -92.1396 -72.79 -130.75c0 -77.5098 58.71 -125.25 130.86 -125.25c28.8594 0 55.5693 8.99023 77.2295 24.1504z" />
-    <glyph glyph-name="bacon" unicode="&#xf7e5;" horiz-adv-x="576" 
-d="M218.92 111.61c-34.8604 -34.8799 -59.6504 -44.1602 -85.9199 -54c-26 -9.76074 -53 -20.1299 -88.1699 -52.7305l-35.7598 35.5098c-12.7002 12.6104 -12.0703 33.6104 1.79004 45.0605c36.3398 29.9795 66.21 41.0996 91.0693 50.3594
-c9.16992 3.41016 68.9707 19.2607 98.7207 98.0908c8.60938 22.8096 46.3496 134.58 188.979 187.72c15.8506 5.91016 27.3604 10.2002 41 20.2998c5.14941 3.80859 11.5498 6.08008 18.4404 6.08008c8.46484 0 16.1426 -3.40137 21.7393 -8.91016l37.6709 -37.3896
-c-30.1504 -27.6904 -52.9102 -36.3701 -76.79 -45.3701c-28.3008 -10.6104 -57.5703 -21.5801 -97.3506 -61.3799s-50.7598 -69.0498 -61.3701 -97.3398c-9.84961 -26.3008 -19.1602 -51.1104 -54.0498 -86zM566.92 343.61
-c12.7002 -12.5996 12.0801 -33.6602 -1.80957 -45.0605c-36.3701 -30.0098 -66.2402 -41.1396 -91.1104 -50.4102c-9.2002 -3.43945 -69 -19.3193 -98.7305 -98.1094c-8.93945 -23.5898 -46.7393 -134.69 -188.939 -187.69
-c-15.8496 -5.89941 -27.3398 -10.1797 -40.9404 -20.2402c-5.14941 -3.81055 -11.5527 -6.08301 -18.4453 -6.08301c-8.46289 0 -16.1377 3.39844 -21.7344 8.90332l-37.6797 37.4297c30.1094 27.6699 52.8594 36.3301 76.7197 45.3301
-c28.2998 10.5898 57.5098 21.54 97.2998 61.3203s50.7803 69 61.4199 97.3301c9.81055 26.3096 19.1104 51.1602 54 86c34.8906 34.8398 59.6904 44.1504 85.9502 54c26.0703 9.79004 53.0605 20.1602 88.25 52.79z" />
-    <glyph glyph-name="book-medical" unicode="&#xf7e6;" horiz-adv-x="448" 
-d="M448 89.5996c0 -9.59961 -3.2002 -15.999 -9.59961 -19.1992c-3.2002 -12.8008 -3.2002 -57.6006 0 -73.6006c6.39941 -6.39941 9.59961 -12.7998 9.59961 -19.2002v-16c0 -16 -12.7998 -25.5996 -25.5996 -25.5996h-326.4c-54.4004 0 -96 41.5996 -96 96v320
-c0 54.4004 41.5996 96 96 96h326.4c16 0 25.5996 -9.59961 25.5996 -25.5996v-332.801zM144 280v-48c0 -4.41504 3.58496 -8 8 -8h56v-56c0 -4.41504 3.58496 -8 8 -8h48c4.41504 0 8 3.58496 8 8v56h56c4.41504 0 8 3.58496 8 8v48c0 4.41504 -3.58496 8 -8 8h-56v56
-c0 4.41504 -3.58496 8 -8 8h-48c-4.41504 0 -8 -3.58496 -8 -8v-56h-56c-4.41504 0 -8 -3.58496 -8 -8zM380.8 0v64h-284.8c-16 0 -32 -12.7998 -32 -32s12.7998 -32 32 -32h284.8z" />
-    <glyph glyph-name="bread-slice" unicode="&#xf7ec;" horiz-adv-x="576" 
-d="M288 448c180 0 288 -93.4004 288 -169.14c0 -30.3008 -24.2402 -54.8604 -64 -54.8604v-256c0 -17.6699 -16.1201 -32 -36 -32h-376c-19.8799 0 -36 14.3301 -36 32v256c-39.7598 0 -64 24.5596 -64 54.8604c0 75.7393 108 169.14 288 169.14z" />
-    <glyph glyph-name="cheese" unicode="&#xf7ef;" 
-d="M0 160h512v-160c0 -17.6611 -14.3389 -32 -32 -32h-448c-17.6611 0 -32 14.3389 -32 32v160zM299.83 416c118.17 -6.2002 212.17 -104.11 212.17 -224h-512l278.7 217c5.47656 4.38477 12.4277 7.02051 19.9814 7.02051
-c0.384766 0 0.767578 -0.00683594 1.14844 -0.0205078z" />
-    <glyph glyph-name="clinic-medical" unicode="&#xf7f2;" horiz-adv-x="576" 
-d="M288 333l218.74 -192.9c1.54004 -1.37988 3.55957 -2.04004 5.25977 -3.19922v-184.9c0 -8.83105 -7.16895 -16 -16 -16h-416c-8.83105 0 -16 7.16895 -16 16v184.94c1.78027 1.20996 3.84961 1.88965 5.46973 3.34961zM384 72v48c0 4.41504 -3.58496 8 -8 8h-56v56
-c0 4.41504 -3.58496 8 -8 8h-48c-4.41504 0 -8 -3.58496 -8 -8v-56h-56c-4.41504 0 -8 -3.58496 -8 -8v-48c0 -4.41504 3.58496 -8 8 -8h56v-56c0 -4.41504 3.58496 -8 8 -8h48c4.41504 0 8 3.58496 8 8v56h56c4.41504 0 8 3.58496 8 8zM570.69 211.72
-c3.2627 -2.92969 5.30762 -7.18555 5.30762 -11.9121c0 -4.10156 -1.54688 -7.84473 -4.08789 -10.6777l-21.4004 -23.8203c-2.92969 -3.2627 -7.18457 -5.30762 -11.9111 -5.30762c-4.10742 0 -7.85449 1.55078 -10.6885 4.09766l-229.32 202.271
-c-2.82031 2.48828 -6.53906 3.99902 -10.5928 3.99902c-4.05273 0 -7.75684 -1.51074 -10.5771 -3.99902l-229.32 -202.28c-2.83398 -2.54688 -6.58594 -4.10645 -10.6924 -4.10645c-4.72656 0 -8.97754 2.05371 -11.9072 5.31641l-21.4102 23.8203
-c-2.54688 2.83398 -4.10645 6.58594 -4.10645 10.6934c0 4.72559 2.05371 8.97656 5.31641 11.9062l256 226c7.06934 6.3916 16.4707 10.2852 26.7412 10.2852c10.2715 0 19.6396 -3.89355 26.709 -10.2852z" />
-    <glyph glyph-name="comment-medical" unicode="&#xf7f5;" 
-d="M256 416c141.39 0 256 -93.1201 256 -208s-114.61 -208 -256 -208c-0.161133 0 -0.446289 0.107422 -0.606445 0.107422c-37.5674 0 -73.5547 6.81445 -106.794 19.2725c-24.5996 -19.6299 -74.3398 -51.3799 -140.6 -51.3799
-c-4.41113 0.00488281 -7.99023 3.58984 -7.99023 8.00195c0 2.12891 0.833008 4.06445 2.19043 5.49805c0.5 0.5 42.2598 45.4502 54.7998 95.7598c-35.5898 35.7402 -57 81.1807 -57 130.74c0 114.88 114.62 208 256 208zM352 184v48c0 4.41504 -3.58496 8 -8 8h-56v56
-c0 4.41504 -3.58496 8 -8 8h-48c-4.41504 0 -8 -3.58496 -8 -8v-56h-56c-4.41504 0 -8 -3.58496 -8 -8v-48c0 -4.41504 3.58496 -8 8 -8h56v-56c0 -4.41504 3.58496 -8 8 -8h48c4.41504 0 8 3.58496 8 8v56h56c4.41504 0 8 3.58496 8 8z" />
-    <glyph glyph-name="crutch" unicode="&#xf7f7;" 
-d="M507.31 262.29c2.87109 -2.89258 4.64551 -6.87891 4.64551 -11.2725c0 -4.42285 -1.79883 -8.42969 -4.70508 -11.3271l-22.6201 -22.6309c-2.89648 -2.89648 -6.90137 -4.68945 -11.3174 -4.68945s-8.41602 1.79297 -11.3125 4.68945l-181 181
-c-2.89648 2.89648 -4.68945 6.90137 -4.68945 11.3174s1.79297 8.41699 4.68945 11.3135l22.6904 22.5996c2.89551 2.89355 6.89844 4.68457 11.3115 4.68457c4.41406 0 8.41211 -1.79102 11.3076 -4.68457zM327.77 195.88l55.1006 55.1201l45.25 -45.2695l-109.68 -109.681
-c-12.4922 -12.4961 -28.4805 -21.5479 -46.29 -25.6494l-120.25 -27.75l-102 -102c-2.89648 -2.89746 -6.90137 -4.69043 -11.3174 -4.69043s-8.41699 1.79297 -11.3135 4.69043l-22.6191 22.6191c-2.89746 2.89648 -4.69043 6.90137 -4.69043 11.3174
-s1.79297 8.41699 4.69043 11.3135l102 102l27.7393 120.26c4.11816 17.8066 13.1738 33.7939 25.6699 46.29l109.671 109.67l45.25 -45.25l-55.1006 -55.1006zM273.2 141.31l9.30957 9.31055l-67.8896 67.8896l-9.31055 -9.30957
-c-4.16113 -4.17676 -7.17969 -9.51074 -8.55957 -15.4502l-18.2998 -79.2998l79.2998 18.3193c5.94238 1.36328 11.2783 4.37695 15.4502 8.54004z" />
-    <glyph glyph-name="disease" unicode="&#xf7fa;" 
-d="M472.29 252.1c48.54 -16.6191 53.8301 -73.8301 8.99023 -96.79l-62 -31.7393c-17.8301 -9.12988 -29.2803 -25.2002 -30.6299 -43l-4.7002 -61.8604c-3.4502 -44.79 -65.1299 -66.7803 -104.45 -37.2197l-54.3203 40.8301
-c-15.6201 11.7295 -36.96 16.1201 -57.0693 11.7295l-70 -15.2803c-50.6504 -11.0596 -94.1104 32.5605 -73.46 73.8008l28.4297 57c8.17969 16.3799 6.43945 35.1699 -4.63965 50.2393l-38.54 52.4209c-27.9307 37.9492 7 86.9092 59 82.8398l71.8994 -5.62012
-c20.6602 -1.62012 40.9404 5.59961 54.2002 19.3096l46.0898 47.7207c33.4297 34.5098 98.4199 21.1494 110 -22.6201l16 -60.4502c4.60059 -17.3906 18.8604 -31.71 38.1406 -38.3105zM160 192c17.6611 0 32 14.3389 32 32s-14.3389 32 -32 32s-32 -14.3389 -32 -32
-s14.3389 -32 32 -32zM288 96c17.6611 0 32 14.3389 32 32s-14.3389 32 -32 32s-32 -14.3389 -32 -32s14.3389 -32 32 -32zM304 224c8.83105 0 16 7.16895 16 16s-7.16895 16 -16 16s-16 -7.16895 -16 -16s7.16895 -16 16 -16z" />
-    <glyph glyph-name="egg" unicode="&#xf7fb;" horiz-adv-x="384" 
-d="M192 448c106 0 192 -214 192 -320s-86 -192 -192 -192s-192 86 -192 192s86 320 192 320z" />
-    <glyph glyph-name="hamburger" unicode="&#xf805;" 
-d="M464 192c26.4922 0 48 -21.5078 48 -48s-21.5078 -48 -48 -48h-416c-26.4922 0 -48 21.5078 -48 48s21.5078 48 48 48h416zM480 64c8.83105 0 16 -7.16895 16 -16v-16c0 -35.3223 -28.6777 -64 -64 -64h-352c-35.3223 0 -64 28.6777 -64 64v16
-c0 8.83105 7.16895 16 16 16h448zM58.6396 224c-34.5693 0 -54.6396 43.9102 -34.8193 75.8896c40.1797 64.9102 128.64 116.011 232.18 116.11c103.55 -0.0996094 192 -51.2002 232.18 -116.12c19.8008 -31.9795 -0.25 -75.8799 -34.8193 -75.8799h-394.721zM384 336
-c-8.83105 0 -16 -7.16895 -16 -16s7.16895 -16 16 -16s16 7.16895 16 16s-7.16895 16 -16 16zM256 368c-8.83105 0 -16 -7.16895 -16 -16s7.16895 -16 16 -16s16 7.16895 16 16s-7.16895 16 -16 16zM128 336c-8.83105 0 -16 -7.16895 -16 -16s7.16895 -16 16 -16
-s16 7.16895 16 16s-7.16895 16 -16 16z" />
-    <glyph glyph-name="hand-middle-finger" unicode="&#xf806;" 
-d="M479.93 130.88l0.0703125 -82.8799c0 -61.7979 -50.1592 -111.973 -111.95 -112h-215c-30.9053 0.00292969 -58.9189 12.5361 -79.1895 32.8096l-30.9307 30.9307c-6.75488 6.75391 -10.9297 16.0928 -10.9297 26.3896v73.4697
-c0 14.6221 8.38574 27.2734 20.6396 33.4004l27.3604 15v-76c0 -4.41504 3.58496 -8 8 -8s8 3.58496 8 8v147.04c0 15.2598 12.8701 28.3799 30.8701 31.3799l30.6797 5.12012c17.8203 2.96973 34.4502 -8.38965 34.4502 -23.54v-32c0 -4.41504 3.58496 -8 8 -8
-s8 3.58496 8 8v200c0 0.0078125 -0.0244141 0.015625 -0.0244141 0.0234375c0 26.4912 21.5078 48 48 48c0.50293 0 1.00488 -0.0078125 1.50488 -0.0234375c26.2695 -0.799805 46.5195 -23.7197 46.5195 -50v-198c0 -4.41504 3.58496 -8 8 -8s8 3.58496 8 8v32
-c0 15.1396 16.6299 26.5 34.4502 23.5303l38.3994 -6.40039c13.46 -2.25 23.1504 -12.0996 23.1504 -23.54v-49.5898l35.6504 -8.92969c16.2188 -4.05371 28.2676 -18.7256 28.2793 -36.1904z" />
-    <glyph glyph-name="hard-hat" unicode="&#xf807;" 
-d="M480 160v-64h-448v64c0 80.25 49.2803 148.92 119.19 177.62l40.8096 -81.6201v112c0 8.83105 7.16895 16 16 16h96c8.83105 0 16 -7.16895 16 -16v-112l40.8096 81.6201c69.9102 -28.7002 119.19 -97.3701 119.19 -177.62zM496 64c8.83105 0 16 -7.16895 16 -16v-32
-c0 -8.83105 -7.16895 -16 -16 -16h-480c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h480z" />
-    <glyph glyph-name="hospital-user" unicode="&#xf80d;" horiz-adv-x="640" 
-d="M480 128c-52.9834 0 -96 43.0166 -96 96s43.0166 96 96 96s96 -43.0166 96 -96s-43.0166 -96 -96 -96zM528 96c61.8145 0 112.002 -50.1738 112.002 -111.988c0 -0.210938 -0.000976562 -0.420898 -0.00195312 -0.631836
-c-0.139648 -26.2598 -21.7305 -47.3799 -48 -47.3799h-224c-26.2695 0 -47.8604 21.1201 -48 47.3799c-0.000976562 0.210938 0 0.40918 0 0.620117c0 61.8145 50.1855 112 112 112c0.0273438 0 0.0556641 -0.00488281 0.0830078 -0.00488281
-c2.42871 0 4.77051 -0.380859 6.9668 -1.08496c12.8193 -4.4541 26.6504 -6.87402 40.9775 -6.87402s28.0938 2.41992 40.9131 6.87402c2.19922 0.704102 4.54395 1.08984 6.97656 1.08984h0.0830078zM329.91 85.5498c-25.9033 -25.8965 -41.915 -61.665 -41.915 -101.15
-c0 -0.396484 0.00195312 -0.792969 0.00488281 -1.18945c0.166016 -17.7246 6.24512 -34.1309 16.3096 -47.21h-288.31c-8.83105 0 -16 7.16895 -16 16v368c0 17.6611 14.3389 32 32 32h32v64c0 17.6611 14.3389 32 32 32h160c17.6611 0 32 -14.3389 32 -32v-64h32
-c17.6611 0 32 -14.3389 32 -32v-216.62c-7.98633 -5.24609 -15.3037 -11.1562 -22.0898 -17.8301zM144 44v40c0 6.62305 -5.37695 12 -12 12h-40c-6.62305 0 -12 -5.37695 -12 -12v-40c0 -6.62305 5.37695 -12 12 -12h40c6.62305 0 12 5.37695 12 12zM144 172v40
-c0 6.62305 -5.37695 12 -12 12h-40c-6.62305 0 -12 -5.37695 -12 -12v-40c0 -6.62305 5.37695 -12 12 -12h40c6.62305 0 12 5.37695 12 12zM192 294v26h26c3.31152 0 6 2.68848 6 6v20c0 3.31152 -2.68848 6 -6 6h-26v26c0 3.31152 -2.68848 6 -6 6h-20
-c-3.31152 0 -6 -2.68848 -6 -6v-26h-26c-3.31152 0 -6 -2.68848 -6 -6v-20c0 -3.31152 2.68848 -6 6 -6h26v-26c0 -3.31152 2.68848 -6 6 -6h20c3.31152 0 6 2.68848 6 6zM272 44v40c0 6.62305 -5.37695 12 -12 12h-40c-6.62305 0 -12 -5.37695 -12 -12v-40
-c0 -6.62305 5.37695 -12 12 -12h40c6.62305 0 12 5.37695 12 12zM272 172v40c0 6.62305 -5.37695 12 -12 12h-40c-6.62305 0 -12 -5.37695 -12 -12v-40c0 -6.62305 5.37695 -12 12 -12h40c6.62305 0 12 5.37695 12 12z" />
-    <glyph glyph-name="hotdog" unicode="&#xf80f;" 
-d="M488.56 424.56c14.4766 -14.4795 23.4346 -34.498 23.4346 -56.5703s-8.95801 -42.0693 -23.4346 -56.5488l-352 -352c-14.5518 -15.0674 -34.9814 -24.4199 -57.5615 -24.4199c-44.1523 0 -80 35.8467 -80 80c0 22.5801 9.375 42.9873 24.4424 57.5391l352 352
-c14.4795 14.4766 34.498 23.4346 56.5703 23.4346s42.0693 -8.95801 56.5488 -23.4346zM438.63 329.37c2.89648 2.89648 4.68457 6.90137 4.68457 11.3174c0 8.83105 -7.16992 16.002 -16.002 16.002c-4.41602 0 -8.41602 -1.79297 -11.3125 -4.68945
-c-12.4102 -12.4102 -21.7598 -14 -34.71 -16.2305c-14.4004 -2.46973 -32.3203 -5.55957 -51.9199 -25.1494c-19.6006 -19.5898 -22.6699 -37.5205 -25.1396 -51.9199c-2.24023 -12.9502 -3.84082 -22.3105 -16.2402 -34.71
-c-12.4004 -12.4004 -21.7002 -14.0098 -34.7002 -16.2305c-14.4004 -2.46973 -32.3203 -5.5498 -51.9199 -25.1396c-19.6006 -19.5898 -22.6699 -37.5205 -25.1504 -51.9199c-2.21973 -12.9502 -3.80957 -22.29 -16.2197 -34.7002s-21.71 -14.0098 -34.71 -16.2305
-c-14.4004 -2.46973 -32.3203 -5.5498 -51.9199 -25.1396c-2.89648 -2.89648 -4.68457 -6.90137 -4.68457 -11.3174c0 -8.83105 7.16992 -16.002 16.002 -16.002c4.41602 0 8.41602 1.79297 11.3125 4.68945c12.4004 12.4004 21.7598 14 34.7002 16.2305
-c14.3994 2.46973 32.3301 5.55957 51.9297 25.1494c19.6006 19.5898 22.6699 37.5205 25.1396 51.9199c2.23047 12.9502 3.83008 22.2998 16.2305 34.7002s21.75 14 34.7002 16.2197c14.3994 2.48047 32.3193 5.56055 51.9199 25.1504
-c19.5996 19.5898 22.6699 37.5195 25.1494 51.9199c2.23047 12.9502 3.83008 22.3096 16.2305 34.71s21.7598 14 34.7002 16.2305c14.4102 2.46973 32.3301 5.5498 51.9297 25.1396zM31.4404 125.82l-11.5508 11.5498c-24.9893 24.9902 -26.6592 63.8398 -3.71973 86.7803
-l207.68 207.68c22.9404 22.9395 61.79 21.2803 86.79 -3.71973l11.54 -11.5508zM480.56 258.18l11.5508 -11.54c24.9893 -25 26.6592 -63.8496 3.71973 -86.79l-207.68 -207.68c-22.9404 -22.9395 -61.79 -21.2803 -86.79 3.71973l-11.54 11.5508z" />
-    <glyph glyph-name="ice-cream" unicode="&#xf810;" horiz-adv-x="448" 
-d="M368 288c26.4922 0 48 -21.5078 48 -48s-21.5078 -48 -48 -48h-288c-26.4922 0 -48 21.5078 -48 48s21.5078 48 48 48h0.94043c-0.625 5.43945 -0.93457 10.9707 -0.93457 16.5762c0 79.4756 64.5234 144 144 144c79.4756 0 144 -64.5244 144 -144
-c0 -5.60547 -0.321289 -11.1367 -0.946289 -16.5762h0.94043zM195.38 -45.6904l-99.3799 205.69h256l-99.3799 -205.69c-4.99414 -10.8223 -15.9111 -18.3398 -28.6035 -18.3398s-23.6426 7.51758 -28.6367 18.3398z" />
-    <glyph glyph-name="laptop-medical" unicode="&#xf812;" horiz-adv-x="640" 
-d="M232 224c-4.41504 0 -8 3.58496 -8 8v48c0 4.41504 3.58496 8 8 8h56v56c0 4.41504 3.58496 8 8 8h48c4.41504 0 8 -3.58496 8 -8v-56h56c4.41504 0 8 -3.58496 8 -8v-48c0 -4.41504 -3.58496 -8 -8 -8h-56v-56c0 -4.41504 -3.58496 -8 -8 -8h-48
-c-4.41504 0 -8 3.58496 -8 8v56h-56zM576 400v-336h-512v336c0.0771484 26.4561 21.5439 47.9229 48 48h416c26.4561 -0.0771484 47.9229 -21.5439 48 -48zM512 128v256h-384v-256h384zM624 32c8.83105 0 16 -7.16895 16 -16v-16
-c-0.104492 -35.2744 -28.7256 -63.8955 -64 -64h-512c-35.2744 0.104492 -63.8955 28.7256 -64 64v16c0 8.83105 7.16895 16 16 16h239.23c-0.230469 -14.5303 14.0791 -32 32.7695 -32h60.7998c18.0303 0 32 12.1904 32.7402 32h242.46z" />
-    <glyph glyph-name="pager" unicode="&#xf815;" 
-d="M448 384c35.3223 0 64 -28.6777 64 -64v-256c0 -35.3223 -28.6777 -64 -64 -64h-384c-35.3223 0 -64 28.6777 -64 64v256c0 35.3223 28.6777 64 64 64h384zM160 80v48h-80c-8.83105 0 -16 -7.16895 -16 -16v-16c0 -8.83105 7.16895 -16 16 -16h80zM288 96v16
-c0 8.83105 -7.16895 16 -16 16h-80v-48h80c8.83105 0 16 7.16895 16 16zM448 224v64c0 17.6611 -14.3389 32 -32 32h-320c-17.6611 0 -32 -14.3389 -32 -32v-64c0 -17.6611 14.3389 -32 32 -32h320c17.6611 0 32 14.3389 32 32z" />
-    <glyph glyph-name="pepper-hot" unicode="&#xf816;" 
-d="M330.67 184.88h107.46l37.0498 -38.54c-48.5293 -87.4697 -206.54 -210.34 -419.18 -210.34c-30.9072 0 -56 25.0928 -56 56s25.0928 56 56 56c141.58 0 163.44 181.24 221.92 250.82l52.75 -24.2207v-89.7197zM461.76 313.25
-c30.8984 -28.1729 50.2402 -68.7275 50.2402 -113.795v-0.145508c0 -13.6797 -2.2998 -26.6895 -5.55957 -39.3096l-54.6807 56.8799h-89.0898v78.2402l-74.6699 34.29c22.3398 14.0498 48.3398 22.5898 76.3398 22.5898
-c20.2783 -0.0078125 39.6836 -4.32031 57.1602 -11.96c18.4502 37.2197 8.25977 61.96 1.40039 72.3203c-0.896484 1.29883 -1.42676 2.88184 -1.42676 4.57715c0 2.20117 0.884766 4.19727 2.31641 5.65234l22.9004 23c1.45117 1.47559 3.46777 2.39453 5.69922 2.39453
-c2.5166 0 4.76367 -1.16504 6.23047 -2.98438c18.5596 -23.4805 35.2998 -71.9102 3.13965 -131.75z" />
-    <glyph glyph-name="pizza-slice" unicode="&#xf818;" 
-d="M158.87 447.85c181.91 -17.1699 332.02 -164.93 352.899 -345.71c1.87012 -16.2197 -7.89941 -31.54 -23.6191 -35.8994l-56.9404 -15.7803c-7.94043 186.39 -134.86 311.51 -322.479 317l14.8096 56.2705c4.12988 15.6992 19.1699 25.6396 35.3301 24.1191z
-M100.4 335.85c176.069 -1.95996 294.88 -119.25 299.149 -294.14l-379 -105.1c-1.37793 -0.381836 -2.82324 -0.59375 -4.32227 -0.59375c-8.94629 0 -16.21 7.26367 -16.21 16.21c0 1.42871 0.18457 2.81348 0.532227 4.13379zM128 32c17.6611 0 32 14.3389 32 32
-s-14.3389 32 -32 32s-32 -14.3389 -32 -32s14.3389 -32 32 -32zM176 184c17.6611 0 32 14.3389 32 32s-14.3389 32 -32 32s-32 -14.3389 -32 -32s14.3389 -32 32 -32zM280 80c17.6611 0 32 14.3389 32 32s-14.3389 32 -32 32s-32 -14.3389 -32 -32s14.3389 -32 32 -32z" />
-    <glyph glyph-name="trash-restore" unicode="&#xf829;" horiz-adv-x="448" 
-d="M53.2002 -19l-21.2002 339h384l-21.2002 -339c-1.57031 -25.0762 -22.4316 -44.9971 -47.8994 -45h-245.801c-25.4678 0.00292969 -46.3291 19.9238 -47.8994 45zM123.31 156.8c-10.0791 -10.6201 -2.93945 -28.7998 11.3203 -28.7998h57.3701v-112
-c0 -8.83105 7.16895 -16 16 -16h32c8.83105 0 16 7.16895 16 16v112h57.3701c14.2598 0 21.3994 18.1797 11.3203 28.7998l-89.3809 94.2598c-2.81543 3.04297 -6.83984 4.94922 -11.3086 4.94922s-8.49512 -1.90625 -11.3105 -4.94922zM432 416
-c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-416c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h120l9.40039 18.7002c3.85547 7.88574 11.9434 13.2998 21.3066 13.2998h0.0927734h114.3
-c0.00585938 0 -0.00195312 0.0234375 0.00390625 0.0234375c9.41113 0 17.5645 -5.42871 21.4961 -13.3232l9.40039 -18.7002h120z" />
-    <glyph glyph-name="trash-restore-alt" unicode="&#xf82a;" horiz-adv-x="448" 
-d="M32 -16v336h384v-336c0 -26.4922 -21.5078 -48 -48 -48h-288c-26.4922 0 -48 21.5078 -48 48zM123.31 156.8c-10.0791 -10.6201 -2.93945 -28.7998 11.3203 -28.7998h57.3701v-112c0 -8.83105 7.16895 -16 16 -16h32c8.83105 0 16 7.16895 16 16v112h57.3701
-c14.2598 0 21.3994 18.1797 11.3203 28.7998l-89.3809 94.2598c-2.81543 3.04297 -6.83984 4.94922 -11.3086 4.94922s-8.49512 -1.90625 -11.3105 -4.94922zM432 416c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-416
-c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h120l9.40039 18.7002c3.85547 7.88574 11.9434 13.2998 21.3066 13.2998h0.0927734h114.3c0.00585938 0 -0.00195312 0.0234375 0.00390625 0.0234375c9.41113 0 17.5645 -5.42871 21.4961 -13.3232
-l9.40039 -18.7002h120z" />
-    <glyph glyph-name="user-nurse" unicode="&#xf82f;" horiz-adv-x="448" 
-d="M319.41 128c71.4902 -3.09961 128.59 -61.5996 128.59 -133.79c0 -32.127 -26.083 -58.21 -58.21 -58.21h-331.58c-32.127 0 -58.21 26.083 -58.21 58.21c0 72.1904 57.0996 130.69 128.59 133.79l95.4102 -95.3896zM224 144c-70.6455 0 -128 57.3545 -128 128v110.18
-c0 13.7119 8.62988 25.4092 20.7598 29.96l84.7705 31.79c6.98438 2.61914 14.6035 4.05176 22.498 4.05176s15.457 -1.43262 22.4414 -4.05176l84.7705 -31.75c12.1309 -4.55078 20.7598 -16.248 20.7598 -29.96v-0.0400391v-110.18c0 -70.6455 -57.3545 -128 -128 -128z
-M184 376.33v-16.6602c0 -2.75977 2.24023 -5 5 -5h21.6699v-21.6699c0 -2.75977 2.24023 -5 5 -5h16.6602c2.75977 0 5 2.24023 5 5v21.6699h21.6699c2.75977 0 5 2.24023 5 5v16.6602c0 2.75977 -2.24023 5 -5 5h-21.6699v21.6699c0 2.75977 -2.24023 5 -5 5h-16.6602
-c-2.75977 0 -5 -2.24023 -5 -5v-21.6699h-21.6699c-2.75977 0 -5 -2.24023 -5 -5zM144 288v-16c0 -44.1533 35.8467 -80 80 -80s80 35.8467 80 80v16h-160z" />
-    <glyph glyph-name="wave-square" unicode="&#xf83e;" horiz-adv-x="640" 
-d="M476 -32h-152c-19.8691 0 -36 16.1309 -36 36v348h-96v-156c0 -19.8691 -16.1309 -36 -36 -36h-140c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h112v156c0 19.8691 16.1309 36 36 36h152c19.8691 0 36 -16.1309 36 -36v-348h96v156
-c0 19.8691 16.1309 36 36 36h140c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-112v-156c0 -19.8691 -16.1309 -36 -36 -36z" />
-    <glyph glyph-name="biking" unicode="&#xf84a;" horiz-adv-x="640" 
-d="M400 352c-26.4922 0 -48 21.5078 -48 48s21.5078 48 48 48s48 -21.5078 48 -48s-21.5078 -48 -48 -48zM396 231l-41.3604 33.1104l-58.25 -49.9199l41.3604 -27.5703c8.60547 -5.7373 14.248 -15.5117 14.25 -26.6201v-128c0 -17.6611 -14.3389 -32 -32 -32
-s-32 14.3389 -32 32v110.88l-81.7305 54.5205c-8.60742 5.7373 -14.2686 15.5068 -14.2686 26.6191c0 9.71777 4.3418 18.4297 11.1895 24.3008l112 96c5.58887 4.80176 12.8965 7.70117 20.8359 7.70117c7.55566 0 14.502 -2.62891 19.9736 -7.02148l71.2197 -57h52.7803
-c17.6611 0 32 -14.3389 32 -32s-14.3389 -32 -32 -32h-64c-0.0205078 0 -0.0625 0.0117188 -0.0830078 0.0117188c-7.53125 0 -14.457 2.61621 -19.917 6.98828zM512 192c70.6455 0 128 -57.3545 128 -128s-57.3545 -128 -128 -128s-128 57.3545 -128 128
-s57.3545 128 128 128zM512 0c35.3223 0 64 28.6777 64 64s-28.6777 64 -64 64s-64 -28.6777 -64 -64s28.6777 -64 64 -64zM128 192c70.6455 0 128 -57.3545 128 -128s-57.3545 -128 -128 -128s-128 57.3545 -128 128s57.3545 128 128 128zM128 0c35.3223 0 64 28.6777 64 64
-s-28.6777 64 -64 64s-64 -28.6777 -64 -64s28.6777 -64 64 -64z" />
-    <glyph glyph-name="border-all" unicode="&#xf84c;" horiz-adv-x="448" 
-d="M416 416c17.6611 0 32 -14.3389 32 -32v-384c0 -17.6611 -14.3389 -32 -32 -32h-384c-17.6611 0 -32 14.3389 -32 32v384c0 17.6611 14.3389 32 32 32h384zM384 352h-128v-128h128v128zM192 352h-128v-128h128v128zM64 32h128v128h-128v-128zM256 32h128v128h-128v-128z
-" />
-    <glyph glyph-name="border-none" unicode="&#xf850;" horiz-adv-x="448" 
-d="M240 224c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-32c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h32zM336 224c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-32c-8.83105 0 -16 7.16895 -16 16v32
-c0 8.83105 7.16895 16 16 16h32zM432 224c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-32c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h32zM144 224c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-32
-c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h32zM240 32c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-32c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h32zM336 32c8.83105 0 16 -7.16895 16 -16v-32
-c0 -8.83105 -7.16895 -16 -16 -16h-32c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h32zM432 32c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-32c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h32zM432 128
-c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-32c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h32zM432 320c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-32c-8.83105 0 -16 7.16895 -16 16v32
-c0 8.83105 7.16895 16 16 16h32zM240 128c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-32c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h32zM240 320c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-32
-c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h32zM144 32c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-32c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h32zM240 416c8.83105 0 16 -7.16895 16 -16v-32
-c0 -8.83105 -7.16895 -16 -16 -16h-32c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h32zM336 416c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-32c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h32zM432 416
-c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-32c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h32zM48 224c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-32c-8.83105 0 -16 7.16895 -16 16v32
-c0 8.83105 7.16895 16 16 16h32zM48 32c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-32c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h32zM48 128c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-32
-c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h32zM48 320c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-32c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h32zM48 416c8.83105 0 16 -7.16895 16 -16v-32
-c0 -8.83105 -7.16895 -16 -16 -16h-32c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h32zM144 416c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-32c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h32z" />
-    <glyph glyph-name="border-style" unicode="&#xf853;" horiz-adv-x="448" 
-d="M240 32c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-32c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h32zM144 32c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-32c-8.83105 0 -16 7.16895 -16 16v32
-c0 8.83105 7.16895 16 16 16h32zM336 32c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-32c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h32zM432 224c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-32
-c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h32zM432 128c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-32c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h32zM432 32c8.83105 0 16 -7.16895 16 -16v-32
-c0 -8.83105 -7.16895 -16 -16 -16h-32c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h32zM432 320c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-32c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h32zM432 416
-c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-368v-368c0 -8.83105 -7.16895 -16 -16 -16h-32c-8.83105 0 -16 7.16895 -16 16v400c0 17.6611 14.3389 32 32 32h400z" />
-    <glyph glyph-name="fan" unicode="&#xf863;" 
-d="M352.57 320c81.79 0 149.3 -61.6299 159.3 -141.33c1.30957 -10.4795 -7.17969 -19.6396 -17.6201 -18.5898l-123.11 12.4102c8.34082 -22.9707 12.8604 -48.9707 12.8604 -77.0605c0 -81.79 -61.6299 -149.3 -141.33 -159.3
-c-10.4795 -1.30957 -19.6396 7.19043 -18.5898 17.6201l12.4102 123.11c-22.9707 -8.34082 -48.9707 -12.8604 -77.0605 -12.8604c-81.79 0 -149.3 61.6299 -159.3 141.33c-1.30957 10.4795 7.17969 19.6699 17.6201 18.5898l123.11 -12.4102
-c-8.34082 22.9707 -12.8604 48.9707 -12.8604 77.0605c0 81.79 61.6299 149.3 141.33 159.3c10.4795 1.30957 19.6699 -7.17969 18.5898 -17.6201l-12.4102 -123.11c22.9707 8.34082 48.9707 12.8604 77.0605 12.8604zM256 160c17.6611 0 32 14.3389 32 32
-s-14.3389 32 -32 32s-32 -14.3389 -32 -32s14.3389 -32 32 -32z" />
-    <glyph glyph-name="icons" unicode="&#xf86d;" 
-d="M116.65 228.65l-96.79 99.8301c-28 29.0293 -26.4102 77.0996 5 103.88c27.3896 23.3398 68.1895 19.1396 93.29 -6.80078l9.84961 -10.1396l9.86035 10.1396c25.1396 25.9404 65.8896 30.1406 93.2793 6.80078c31.4102 -26.7803 33.0605 -74.8799 4.91016 -103.88
-l-96.75 -99.8301c-2.85449 -2.98242 -6.875 -4.83984 -11.3252 -4.83984s-8.46973 1.85742 -11.3242 4.83984zM260.57 128.16c15.1406 -0.0107422 27.4297 -12.3066 27.4297 -27.4502v-0.00976562v-137.25c0 -15.1436 -12.2891 -27.4395 -27.4297 -27.4502h-233.141
-c-15.1396 0.00585938 -27.4297 12.2988 -27.4297 27.4395v0.0107422v137.25v0.00976562c0 15.1504 12.2998 27.4502 27.4502 27.4502h0.00976562h48l7 14.2402c3.89258 10.3887 13.9082 17.7793 25.6484 17.7793h0.0117188h71.71
-c0.00390625 0 -0.00195312 0.0126953 0.000976562 0.0126953c11.7412 0 21.7666 -7.40332 25.6592 -17.792l7.08008 -14.2402h48zM144 -20c28.6992 0 52 23.3008 52 52s-23.3008 52 -52 52s-52 -23.3008 -52 -52s23.3008 -52 52 -52zM499.4 95.9004
-c9.70996 0 15.75 -8.79004 10.8691 -15.7002l-92.3994 -138.91c-2.42188 -3.19824 -6.24805 -5.25488 -10.5654 -5.25488c-0.118164 0 -0.236328 0.00195312 -0.354492 0.00488281c-8.03027 0 -14.1201 6.25 -12.2305 12.9004l24.2002 83h-62.3096
-c-7.62012 0 -13.5 5.58984 -12.5 11.8896l16.7998 106.93c0.839844 5.2002 6.2002 9.10059 12.5 9.10059h75.5898c8.25 0 14.2803 -6.56055 12.1797 -13.21l-22.3594 -50.75h60.5801zM478.08 447.67c17.9199 2.75 33.9199 -12.1895 33.9199 -31.6699v-144.26
-c-0.269531 -26.3398 -28.7998 -47.6602 -64 -47.6602c-35.3496 0 -64 21.4795 -64 48c0 26.5195 28.6504 48 64 48c5.49219 -0.0498047 10.8096 -0.633789 16 -1.7002v47.1797l-112 -17.2197v-108.58c-0.269531 -26.3398 -28.7998 -47.6602 -64 -47.6602
-c-35.3496 0 -64 21.4805 -64 48c0 26.5205 28.6504 48 64 48c5.49219 -0.0498047 10.8096 -0.632812 16 -1.69922v106.77c0 15.9102 10.8701 29.4102 25.5098 31.6602z" />
-    <glyph glyph-name="phone-alt" unicode="&#xf879;" 
-d="M497.39 86.2002c8.60059 -3.74121 14.6006 -12.2891 14.6006 -22.2588c0 -1.83496 -0.204102 -3.62305 -0.589844 -5.3418l-24 -104c-2.45801 -10.6416 -12 -18.5996 -23.3848 -18.5996h-0.015625c-256.1 0 -464 207.5 -464 464l0.0136719 0.00390625
-c0 11.3848 7.94434 20.9287 18.5859 23.3857l104 24c1.72754 0.392578 3.49805 0.619141 5.34375 0.619141c9.9082 0 18.4307 -5.97656 22.1562 -14.5186l48 -112c1.23828 -2.88965 1.95117 -6.0791 1.95117 -9.41895c0 -7.49512 -3.45215 -14.1904 -8.85059 -18.5811
-l-60.6006 -49.6006c36.7334 -77.9072 99.2822 -140.457 177.19 -177.189l49.5996 60.5996c4.40332 5.39258 11.1113 8.81055 18.6084 8.81055c3.33203 0 6.50684 -0.680664 9.3916 -1.91016z" />
-    <glyph glyph-name="phone-square-alt" unicode="&#xf87b;" horiz-adv-x="448" 
-d="M400 416c26.4922 0 48 -21.5078 48 -48v-352c0 -26.4922 -21.5078 -48 -48 -48h-352c-26.4922 0 -48 21.5078 -48 48v352c0 26.4922 21.5078 48 48 48h352zM383.61 108.63c0.235352 1.09082 0.369141 2.21387 0.389648 3.37012
-c-0.301758 6.06445 -3.91992 11.2607 -9.08984 13.79l-70 30c-1.83594 0.71582 -3.83789 1.14355 -5.91016 1.20996c-4.58496 -0.251953 -8.69922 -2.31836 -11.6104 -5.5l-31 -37.8896c-48.7002 22.9775 -87.8018 62.0791 -110.779 110.779l37.8896 31
-c3.18164 2.91113 5.24805 7.02539 5.5 11.6104c-0.0673828 2.07129 -0.495117 4.07324 -1.20996 5.91016l-30 70c-2.53223 5.16797 -7.72754 8.78418 -13.79 9.08984c-1.15527 -0.0253906 -2.27734 -0.15918 -3.37012 -0.389648l-65 -15
-c-6.52246 -1.74707 -11.3818 -7.59961 -11.6299 -14.6104c0 -160.29 130 -290 290 -290c7.11426 0.00292969 13.0762 4.97852 14.6104 11.6299z" />
-    <glyph glyph-name="photo-video" unicode="&#xf87c;" horiz-adv-x="640" 
-d="M608 448c17.6611 0 32 -14.3389 32 -32v-320c0 -17.6611 -14.3389 -32 -32 -32h-128v320h-192v-64h-160v96c0 17.6611 14.3389 32 32 32h448zM232 345v30c0 4.9668 -4.0332 9 -9 9h-30c-4.9668 0 -9 -4.0332 -9 -9v-30c0 -4.9668 4.0332 -9 9 -9h30
-c4.9668 0 9 4.0332 9 9zM584 137v30c0 4.9668 -4.0332 9 -9 9h-30c-4.9668 0 -9 -4.0332 -9 -9v-30c0 -4.9668 4.0332 -9 9 -9h30c4.9668 0 9 4.0332 9 9zM584 241v30c0 4.9668 -4.0332 9 -9 9h-30c-4.9668 0 -9 -4.0332 -9 -9v-30c0 -4.9668 4.0332 -9 9 -9h30
-c4.9668 0 9 4.0332 9 9zM584 345v30c0 4.9668 -4.0332 9 -9 9h-30c-4.9668 0 -9 -4.0332 -9 -9v-30c0 -4.9668 4.0332 -9 9 -9h30c4.9668 0 9 4.0332 9 9zM416 288c17.6611 0 32 -14.3389 32 -32v-288c0 -17.6611 -14.3389 -32 -32 -32h-384c-17.6611 0 -32 14.3389 -32 32
-v288c0 17.6611 14.3389 32 32 32h384zM96 224c-17.6611 0 -32 -14.3389 -32 -32s14.3389 -32 32 -32s32 14.3389 32 32s-14.3389 32 -32 32zM384 0v96l-96 96l-128 -128l-32 32l-64 -64v-32h320z" />
-    <glyph glyph-name="remove-format" unicode="&#xf87d;" horiz-adv-x="640" 
-d="M336 32c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-128c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h32.4902l26.5098 79.5996l67.0898 -51.8301l-9.25977 -27.7695h11.1699zM633.82 -10.0996
-c3.76855 -2.92871 6.17676 -7.50977 6.17676 -12.6475c0 -3.69238 -1.25293 -7.09375 -3.35742 -9.80273l-19.6396 -25.2705c-2.92871 -3.76855 -7.50879 -6.17578 -12.6465 -6.17578c-3.69727 0 -7.10254 1.25684 -9.81348 3.36621l-588.36 454.72
-c-3.76562 2.92871 -6.1709 7.50781 -6.1709 12.6426c0 3.69434 1.25488 7.09766 3.36133 9.80762l19.6299 25.2695c2.92871 3.76855 7.50879 6.17676 12.6465 6.17676c3.69727 0 7.10254 -1.25684 9.81348 -3.36621l114.54 -88.5205v43.9004c0 8.83105 7.16895 16 16 16h416
-c8.83105 0 16 -7.16895 16 -16v-96c0 -8.83105 -7.16895 -16 -16 -16h-32c-8.83105 0 -16 7.16895 -16 16v32h-117.83l-49.1699 -147.59zM309.91 240.24l31.9199 95.7598h-117.83v-29.3604z" />
-    <glyph glyph-name="sort-alpha-down-alt" unicode="&#xf881;" horiz-adv-x="448" 
-d="M176 96c14.2197 0 21.3496 -17.2598 11.3301 -27.3096l-80 -96c-2.89551 -2.89453 -6.89844 -4.68555 -11.3125 -4.68555c-4.41309 0 -8.41211 1.79102 -11.3076 4.68555l-80 96c-10.0703 10.0693 -2.90039 27.3096 11.29 27.3096h48v304c0 8.83105 7.16895 16 16 16h32
-c8.83105 0 16 -7.16895 16 -16v-304h48zM288 224c-8.83105 0 -16 7.16895 -16 16v17.6299c0 9.51074 4.14355 18.0566 10.7402 23.9199l61.2598 70.4502h-56c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h128c8.83105 0 16 -7.16895 16 -16v-17.6299
-c0 -9.51074 -4.14355 -18.0566 -10.7402 -23.9199l-61.2598 -70.4502h56c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-128zM447.06 -10.6201c0.600586 -1.67969 0.931641 -3.49512 0.931641 -5.37988c0 -8.82812 -7.16406 -15.9951 -15.9912 -16
-h-24.8398c-0.015625 0 -0.0263672 -0.00195312 -0.0419922 -0.00195312c-7.11426 0 -13.1514 4.6543 -15.2285 11.082l-4.40918 12.9199h-71l-4.4209 -12.9199c-2.07617 -6.42773 -8.10938 -11.0801 -15.2246 -11.0801h-0.00488281h-24.8301
-c-8.82715 0.00488281 -15.9863 7.17773 -15.9863 16.0049c0 1.88574 0.326172 3.69531 0.926758 5.375l59.2695 160c2.20996 6.19043 8.125 10.6201 15.0703 10.6201h41.4395c6.94531 0 12.8604 -4.42969 15.0703 -10.6201zM335.61 48h32.7793l-16.3896 48z" />
-    <glyph glyph-name="sort-alpha-up-alt" unicode="&#xf882;" horiz-adv-x="448" 
-d="M16 288c-14.2197 0 -21.3496 17.2598 -11.3096 27.3096l80 96c2.89551 2.89453 6.89844 4.68555 11.3115 4.68555c4.41406 0 8.41211 -1.79102 11.3076 -4.68555l80 -96c10.0703 -10.0693 2.90039 -27.3096 -11.3096 -27.3096h-48v-304c0 -8.83105 -7.16895 -16 -16 -16
-h-32c-8.83105 0 -16 7.16895 -16 16v304h-48zM288 224c-8.83105 0 -16 7.16895 -16 16v17.6299c0 9.51074 4.14355 18.0566 10.7402 23.9199l61.2598 70.4502h-56c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h128c8.83105 0 16 -7.16895 16 -16v-17.6299
-c0 -9.51074 -4.14355 -18.0566 -10.7402 -23.9199l-61.2598 -70.4502h56c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-128zM447.06 -10.6201c0.600586 -1.67969 0.931641 -3.49512 0.931641 -5.37988c0 -8.82812 -7.16406 -15.9951 -15.9912 -16
-h-24.8398c-0.015625 0 -0.0263672 -0.00195312 -0.0419922 -0.00195312c-7.11426 0 -13.1514 4.6543 -15.2285 11.082l-4.40918 12.9199h-71l-4.4209 -12.9199c-2.07617 -6.42773 -8.10938 -11.0801 -15.2246 -11.0801h-0.00488281h-24.8301
-c-8.82715 0.00488281 -15.9863 7.17773 -15.9863 16.0049c0 1.88574 0.326172 3.69531 0.926758 5.375l59.2695 160c2.20996 6.19043 8.125 10.6201 15.0703 10.6201h41.4395c6.94531 0 12.8604 -4.42969 15.0703 -10.6201zM335.61 48h32.7793l-16.3896 48z" />
-    <glyph glyph-name="sort-amount-down-alt" unicode="&#xf884;" 
-d="M240 352c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h64c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-64zM240 224c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h128c8.83105 0 16 -7.16895 16 -16v-32
-c0 -8.83105 -7.16895 -16 -16 -16h-128zM496 32c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-256c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h256zM240 96c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h192
-c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-192zM176 96c14.2197 0 21.3496 -17.2598 11.3301 -27.3096l-80 -96c-2.89551 -2.89453 -6.89844 -4.68555 -11.3125 -4.68555c-4.41309 0 -8.41211 1.79102 -11.3076 4.68555l-80 96
-c-10.0801 10.0693 -2.90039 27.3096 11.29 27.3096h48v304c0 8.83105 7.16895 16 16 16h32c8.83105 0 16 -7.16895 16 -16v-304h48z" />
-    <glyph glyph-name="sort-amount-up-alt" unicode="&#xf885;" 
-d="M240 352c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h64c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-64zM240 224c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h128c8.83105 0 16 -7.16895 16 -16v-32
-c0 -8.83105 -7.16895 -16 -16 -16h-128zM496 32c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-256c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h256zM240 96c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h192
-c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-192zM16 288c-14.2197 0 -21.3496 17.2598 -11.3096 27.3096l80 96c2.89551 2.89453 6.89844 4.68555 11.3115 4.68555c4.41406 0 8.41211 -1.79102 11.3076 -4.68555l80 -96
-c10.0801 -10.0693 2.90039 -27.3096 -11.3096 -27.3096h-48v-304c0 -8.83105 -7.16895 -16 -16 -16h-32c-8.83105 0 -16 7.16895 -16 16v304h-48z" />
-    <glyph glyph-name="sort-numeric-down-alt" unicode="&#xf886;" horiz-adv-x="448" 
-d="M176 96c14.2197 0 21.3496 -17.2598 11.3301 -27.3096l-80 -96c-2.89551 -2.89453 -6.89844 -4.68555 -11.3125 -4.68555c-4.41309 0 -8.41211 1.79102 -11.3076 4.68555l-80 96c-10.0703 10.0693 -2.90039 27.3096 11.29 27.3096h48v304c0 8.83105 7.16895 16 16 16h32
-c8.83105 0 16 -7.16895 16 -16v-304h48zM400 32c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-96c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h16v64h-16c-8.82422 0.0078125 -15.9775 7.18945 -15.9775 16.0156
-c0 2.57129 0.608398 5.00098 1.6875 7.1543l16 32c2.62598 5.23926 8.03613 8.8252 14.29 8.83008h48c8.83105 0 16 -7.16895 16 -16v-112h16zM330.17 413.09c53.4502 14.25 101.83 -25.8799 101.85 -77.0898v-10.7695c0 -70.3906 -28.25 -107.23 -86.25 -132
-c-8.36914 -3.58008 -18.0293 1.2793 -20.8994 9.90918l-9.90039 20c-2.62012 7.87012 0.610352 16.9404 8.18066 20.3408c7.59961 3.28516 14.6064 7.64258 20.8496 12.9092c-47.6396 4.76074 -83.0996 51.4805 -68.8301 102.53c7.62891 26.2793 28.5596 46.9287 55 54.1699
-zM352 316c11.0381 0 20 8.96191 20 20s-8.96191 20 -20 20s-20 -8.96191 -20 -20s8.96191 -20 20 -20z" />
-    <glyph glyph-name="sort-numeric-up-alt" unicode="&#xf887;" horiz-adv-x="448" 
-d="M107.31 411.31l80 -96c10.0703 -10.0693 2.90039 -27.3096 -11.3096 -27.3096h-48v-304c0 -8.83105 -7.16895 -16 -16 -16h-32c-8.83105 0 -16 7.16895 -16 16v304h-48c-14.2197 0 -21.3496 17.2598 -11.3096 27.3096l80 96
-c2.89551 2.89453 6.89844 4.68555 11.3115 4.68555c4.41406 0 8.41211 -1.79102 11.3076 -4.68555zM400 32c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-96c-8.83105 0 -16 7.16895 -16 16v32c0 8.83105 7.16895 16 16 16h16v64h-16
-c-8.82422 0.0078125 -15.9775 7.18945 -15.9775 16.0156c0 2.57129 0.608398 5.00098 1.6875 7.1543l16 32c2.62598 5.23926 8.03613 8.8252 14.29 8.83008h48c8.83105 0 16 -7.16895 16 -16v-112h16zM330.17 413.09c53.4502 14.25 101.83 -25.8799 101.85 -77.0898
-v-10.7695c0 -70.3906 -28.25 -107.23 -86.25 -132c-8.36914 -3.58008 -18.0293 1.2793 -20.8994 9.90918l-9.90039 20c-2.62012 7.87012 0.610352 16.9404 8.18066 20.3408c7.59961 3.28516 14.6064 7.64258 20.8496 12.9092
-c-47.6396 4.76074 -83.0996 51.4805 -68.8301 102.53c7.62891 26.2793 28.5596 46.9287 55 54.1699zM352 316c11.0381 0 20 8.96191 20 20s-8.96191 20 -20 20s-20 -8.96191 -20 -20s8.96191 -20 20 -20z" />
-    <glyph glyph-name="spell-check" unicode="&#xf891;" horiz-adv-x="576" 
-d="M272 192c-8.83105 0 -16 7.16895 -16 16v224c0 8.83105 7.16895 16 16 16h75c42.2998 0 80.9004 -30.5703 84.6699 -72.6797c0.225586 -2.44238 0.289062 -4.91895 0.289062 -7.41895c0 -13.5479 -3.38281 -26.3115 -9.34863 -37.4912
-c15.6377 -14.5762 25.3984 -35.2832 25.3984 -58.3262c0 -1.59277 -0.046875 -3.1748 -0.138672 -4.74414c-2.50977 -43.1396 -41.3105 -75.3398 -84.5098 -75.3398h-91.3604zM312 392v-48h40c13.2461 0 24 10.7539 24 24s-10.7539 24 -24 24h-40zM312 296v-48h56
-c13.2461 0 24 10.7539 24 24s-10.7539 24 -24 24h-56zM155.12 425.75l68.2998 -213.48c0.376953 -1.36035 0.580078 -2.79004 0.580078 -4.26953c0 -8.83105 -7.16895 -16 -16 -16h-24.9297c-7.35059 0 -13.5488 4.97168 -15.4199 11.7305l-11.9404 36.2695h-87.4199
-l-11.9404 -36.2695c-1.87109 -6.75879 -8.06934 -11.7305 -15.4199 -11.7305h-24.9297c-8.82617 0.00488281 -15.9883 7.16895 -15.9883 15.9961c0 1.47949 0.201172 2.91309 0.578125 4.27344l68.29 213.48c4.12695 12.9004 16.2168 22.25 30.4805 22.25h25.2793
-c14.2637 0 26.3535 -9.34961 30.4805 -22.25zM89.3701 304h45.2598l-22.6299 68.7002zM571.37 171.52c2.8916 -2.89453 4.65918 -6.89648 4.65918 -11.3066c0 -4.40137 -1.78027 -8.38867 -4.65918 -11.2832l-208 -208.21
-c-2.88086 -2.91406 -6.88379 -4.7207 -11.3018 -4.7207s-8.41699 1.80664 -11.2988 4.7207l-112 112.21c-2.88477 2.89453 -4.66895 6.8916 -4.66895 11.2979c0 4.40527 1.78418 8.39746 4.66895 11.292l45.3008 45.3008c2.87891 2.91309 6.87988 4.71973 11.2969 4.71973
-c4.41602 0 8.41309 -1.80664 11.293 -4.71973l55.4102 -55.5l151.5 151.5c2.87891 2.91309 6.87988 4.71973 11.2969 4.71973c4.41602 0 8.41309 -1.80664 11.293 -4.71973z" />
-    <glyph glyph-name="voicemail" unicode="&#xf897;" horiz-adv-x="640" 
-d="M496 320c79.4756 0 144 -64.5244 144 -144s-64.5244 -144 -144 -144h-352c-79.4727 0.00390625 -144.079 64.3818 -144.079 143.854c0 79.4766 64.5244 144 144 144c79.4766 0 144 -64.5234 144 -144c0 -29.5293 -8.90723 -56.9961 -24.1807 -79.8545h112.52
-c-15.2734 22.8584 -24.2598 50.4697 -24.2598 80c0 79.4756 64.5244 144 144 144zM64 176c0 -44.1533 35.8467 -80 80 -80s80 35.8467 80 80s-35.8467 80 -80 80s-80 -35.8467 -80 -80zM496 96c44.1533 0 80 35.8467 80 80s-35.8467 80 -80 80s-80 -35.8467 -80 -80
-s35.8467 -80 80 -80z" />
-    <glyph glyph-name="hat-cowboy" unicode="&#xf8c0;" horiz-adv-x="640" 
-d="M490 151.1c-38.7695 -12.5898 -93.7305 -23.0996 -170 -23.0996s-131.19 10.5303 -169.99 23.1201c9.50977 57.4102 39.5098 232.88 97.71 232.88c14 0 26.4902 -6 37 -14c9.78516 -7.45996 22.0947 -11.8906 35.3369 -11.8906c13.2432 0 25.458 4.43066 35.2432 11.8906
-c10.5098 8.07031 23 14 37 14c58.21 0 88.21 -175.51 97.7002 -232.9zM632.9 188.28c4.27637 -2.87402 7.08008 -7.75195 7.08008 -13.2871c0 -1.94043 -0.34668 -3.80078 -0.980469 -5.52344c-0.730469 -2.01953 -77.3203 -201.47 -319 -201.47s-318.27 199.45 -319 201.47
-c-0.625977 1.71289 -0.966797 3.56543 -0.966797 5.49316c0 8.83105 7.16992 16 16 16c4.12012 0 7.87891 -1.56055 10.7168 -4.12305c1.01953 -0.899414 102.42 -90.8398 293.24 -90.8398c191.89 0 292.16 89.8799 293.16 90.7803
-c2.84863 2.61816 6.6709 4.20996 10.8428 4.20996c3.2959 0 6.36035 -0.999023 8.90723 -2.70996z" />
-    <glyph glyph-name="hat-cowboy-side" unicode="&#xf8c1;" horiz-adv-x="640" 
-d="M260.8 156.94l98.0098 -84.4805c78.1904 -67.3896 129.98 -104.46 233.19 -104.46h-546.12c-14.0498 0 -27.1299 7.53027 -35.8799 20.6396c-9 13.4707 -12.1201 30.7002 -8.57031 47.3008c20.04 93.3398 85.5703 156.06 162.971 156.06
-c34.3994 0 67.7695 -12.1201 96.3994 -35.0596zM495.45 175.23c114.95 -7.90039 144.55 -101.841 144.55 -127.23c0 -26.4922 -21.5078 -48 -48 -48c-97.0996 0 -141.24 35.46 -212.31 96.7002l-98 84.4795c-35.29 28.2705 -75.5 42.8203 -117.29 42.8203
-c-7.09082 0 -13.8906 -1.16992 -20.79 -2l6.88965 65.21c2.96094 27.6465 23.6035 50.1143 50.3496 55.79l191.15 40.5898c4.31055 0.916992 8.73828 1.34277 13.3203 1.34277c31.6191 0 57.9131 -22.9785 63.0801 -53.1328z" />
-    <glyph glyph-name="mouse" unicode="&#xf8cc;" horiz-adv-x="384" 
-d="M0 96v128h384v-128c0 -88.3066 -71.6934 -160 -160 -160h-64c-88.3066 0 -160 71.6934 -160 160zM176 448v-192h-176v32c0 88.3066 71.6934 160 160 160h16zM224 448c88.3066 0 160 -71.6934 160 -160v-32h-176v192h16z" />
-    <glyph glyph-name="record-vinyl" unicode="&#xf8d9;" 
-d="M256 296c57.3994 0 104 -46.6006 104 -104s-46.6006 -104 -104 -104s-104 46.6006 -104 104s46.6006 104 104 104zM256 168c13.2461 0 24 10.7539 24 24s-10.7539 24 -24 24s-24 -10.7539 -24 -24s10.7539 -24 24 -24zM256 440c137 0 248 -111 248 -248
-s-111 -248 -248 -248s-248 111 -248 248s111 248 248 248zM256 64c70.6455 0 128 57.3545 128 128s-57.3545 128 -128 128s-128 -57.3545 -128 -128s57.3545 -128 128 -128z" />
-    <glyph glyph-name="caravan" unicode="&#xf8ff;" horiz-adv-x="640" 
-d="M416 240c8.83105 0 16 -7.16895 16 -16s-7.16895 -16 -16 -16s-16 7.16895 -16 16s7.16895 16 16 16zM624 128c8.83105 0 16 -7.16895 16 -16v-32c0 -8.83105 -7.16895 -16 -16 -16h-336c0 -52.9834 -43.0166 -96 -96 -96s-96 43.0166 -96 96h-32
-c-35.3223 0 -64 28.6777 -64 64v256c0 35.3223 28.6777 64 64 64h352c88.3066 0 160 -71.6934 160 -160v-160h48zM192 16c26.4795 0.0273438 47.9727 21.5205 48 48c0 26.4922 -21.5078 48 -48 48s-48 -21.5078 -48 -48s21.5078 -48 48 -48zM256 256v64
-c0 17.6611 -14.3389 32 -32 32h-128c-17.6611 0 -32 -14.3389 -32 -32v-64c0 -17.6611 14.3389 -32 32 -32h128c17.6611 0 32 14.3389 32 32zM448 128v192c0 17.6611 -14.3389 32 -32 32h-64c-17.6611 0 -32 -14.3389 -32 -32v-192h128z" />
-  </font>
-</defs></svg>
diff --git a/web/static/webfonts/fa-solid-900.ttf b/web/static/webfonts/fa-solid-900.ttf
index e074608433e..99b35ad5053 100644
Binary files a/web/static/webfonts/fa-solid-900.ttf and b/web/static/webfonts/fa-solid-900.ttf differ
diff --git a/web/static/webfonts/fa-solid-900.woff b/web/static/webfonts/fa-solid-900.woff
deleted file mode 100644
index ef6b4474431..00000000000
Binary files a/web/static/webfonts/fa-solid-900.woff and /dev/null differ
diff --git a/web/static/webfonts/fa-solid-900.woff2 b/web/static/webfonts/fa-solid-900.woff2
index 120b3007e1e..c7bd59c241e 100644
Binary files a/web/static/webfonts/fa-solid-900.woff2 and b/web/static/webfonts/fa-solid-900.woff2 differ
diff --git a/web/static/webfonts/fa-v4compatibility.ttf b/web/static/webfonts/fa-v4compatibility.ttf
new file mode 100644
index 00000000000..be0afc27ae9
Binary files /dev/null and b/web/static/webfonts/fa-v4compatibility.ttf differ
diff --git a/web/static/webfonts/fa-v4compatibility.woff2 b/web/static/webfonts/fa-v4compatibility.woff2
new file mode 100644
index 00000000000..37a9b8c79eb
Binary files /dev/null and b/web/static/webfonts/fa-v4compatibility.woff2 differ
diff --git a/web/submission/urls.py b/web/submission/urls.py
index 89c8df7a71c..a2b2f8fde69 100644
--- a/web/submission/urls.py
+++ b/web/submission/urls.py
@@ -2,12 +2,13 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-from django.conf.urls import url
+from django.urls import re_path
+
 from submission import views
 
 urlpatterns = [
-    url(r"^$", views.index, name="submission"),
-    url(r"^resubmit/(?P<resubmit_hash>[\w\d]{64})/$", views.index, name="submission"),
-    url(r"status/(?P<task_id>\d+)/$", views.status, name="submission_status"),
+    re_path(r"^$", views.index, name="submission"),
+    re_path(r"^resubmit/(?P<task_id>\d+)/(?P<resubmit_hash>[\w\d]{64})/$", views.index, name="submission"),
+    re_path(r"status/(?P<task_id>\d+)/$", views.status, name="submission_status"),
+    re_path(r"remote_session/(?P<task_id>\d+)/$", views.remote_session, name="remote_session"),
 ]
diff --git a/web/submission/views.py b/web/submission/views.py
index 7b5376c8e50..cafbcdb62b7 100644
--- a/web/submission/views.py
+++ b/web/submission/views.py
@@ -3,45 +3,51 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-from __future__ import print_function
+import ast
+import logging
 import os
+import random
 import sys
-import logging
 import tempfile
-import random
-
-try:
-    import re2 as re
-except ImportError:
-    import re
+import textwrap
+from base64 import urlsafe_b64encode
+from contextlib import suppress
 
 from django.conf import settings
-from django.shortcuts import redirect, render
 from django.contrib.auth.decorators import login_required
+from django.shortcuts import redirect, render
 
 sys.path.append(settings.CUCKOO_PATH)
-from lib.cuckoo.common.objects import File
+from uuid import NAMESPACE_DNS, uuid3
+
 from lib.cuckoo.common.config import Config
-from lib.cuckoo.common.quarantine import unquarantine
+from lib.cuckoo.common.path_utils import path_delete, path_exists, path_mkdir
 from lib.cuckoo.common.saztopcap import saz_to_pcap
+from lib.cuckoo.common.utils import get_options, get_user_filename, sanitize_filename, store_temp_file
+from lib.cuckoo.common.web_utils import (
+    download_file,
+    download_from_3rdparty,
+    downloader_services,
+    get_file_content,
+    load_vms_exits,
+    load_vms_tags,
+    parse_request_arguments,
+    perform_search,
+    process_new_dlnexec_task,
+    process_new_task_files,
+)
 from lib.cuckoo.core.database import Database
-from lib.cuckoo.core.rooter import vpns, _load_socks5_operational
-from lib.cuckoo.common.utils import store_temp_file, sanitize_filename, get_user_filename, generate_fake_name, get_options
-from lib.cuckoo.common.web_utils import download_file, get_file_content, _download_file, parse_request_arguments, all_vms_tags, download_from_vt, perform_search
-
+from lib.cuckoo.core.rooter import _load_socks5_operational, vpns
 
 # this required for hash searches
-FULL_DB = False
 cfg = Config("cuckoo")
 routing = Config("routing")
 repconf = Config("reporting")
+distconf = Config("distributed")
 processing = Config("processing")
 aux_conf = Config("auxiliary")
 web_conf = Config("web")
 
-VALID_LINUX_TYPES = ["Bourne-Again", "POSIX shell script", "ELF", "Python"]
-
 db = Database()
 
 from urllib3 import disable_warnings
@@ -51,39 +57,173 @@
 logger = logging.getLogger(__name__)
 
 
-if repconf.mongodb.enabled:
-    import pymongo
-
-    results_db = pymongo.MongoClient(
-        repconf.mongodb.host,
-        port=repconf.mongodb.port,
-        username=repconf.mongodb.get("username", None),
-        password=repconf.mongodb.get("password", None),
-        authSource=repconf.mongodb.db,
-    )[repconf.mongodb.db]
-    FULL_DB = True
-
-def get_form_data(platform):
-    files = os.listdir(os.path.join(settings.CUCKOO_PATH, "analyzer", platform, "modules", "packages"))
-
-    packages = []
-    for name in files:
-        name = os.path.splitext(name)[0]
-        if name == "__init__":
-            continue
-        packages.append(name)
+def parse_expr(expr, context):
+    """Return the value from a python AST expression.
+
+    Recursive! the initial call is the right hand side of an assignment.
+    Recursion is necessary because the expression is made up of a variable number
+    of subexpressions, sub-subexpressions, etc.
+    """
+    if isinstance(expr, str):
+        return expr
+    if isinstance(expr, ast.Constant):
+        return expr.value
+    if isinstance(expr, ast.Name):
+        # To get the value associated with the variable name, look up name (expr.id) in context.
+        # If lookup fails (we do not know the value of the variable), return the name.
+        return context.get(expr.id, str(expr.id))
+    if isinstance(expr, ast.List):
+        return [parse_expr(item, context) for item in expr.elts]
+    if isinstance(expr, ast.Tuple):
+        return tuple([parse_expr(item, context) for item in expr.elts])
+    if isinstance(expr, ast.JoinedStr):
+        # JoinedStr - coerce each item to string, and join them.
+        return "".join([str(parse_expr(item, context)) for item in expr.values])
+    if isinstance(expr, ast.FormattedValue):
+        return parse_expr(expr.value, context)
+    if isinstance(expr, ast.Attribute):
+        # Join expr.value to expr.attr with a "." between. Example: os.path.join
+        return parse_expr(expr.value, context) + "." + parse_expr(expr.attr, context)
+    if isinstance(expr, ast.Call):
+        # Figure out what function is being called, with what arguments.
+        func = parse_expr(expr.func, context)
+        args = tuple([parse_expr(item, context) for item in expr.args])
+        # We deem these functions safe to use with "eval".
+        allowed_functions = ("sorted", "set", "os.path.join")
+        if func in allowed_functions:
+            # Actually call the function, passing the args, and return the result.
+            return eval(f"{func}{args}")
+        # Don't execute the call, but instead, give back a string representation.
+        return f"<{func}{args}>"
+    if isinstance(expr, ast.BinOp) and isinstance(expr.op, ast.Add):
+        left = parse_expr(expr.left, context)
+        right = parse_expr(expr.right, context)
+        try:
+            ans = left + right
+        except TypeError:
+            # Expected behavior during unit tests
+            ans = str(left) + str(right)
+        return ans
+    # Not expected to reach this, but should aid in debugging if found.
+    return f"?? Unexpected type({type(expr)}) in parse_expr()"
+
+
+def parse_ast(items, context=None):
+    """Look at each item in a list of ast elements.
+
+    Item type ast.Assign signifies a statement of the form 'name = value'.
+    Work out the value using parse_expr.
+    Add an entry of the form 'name' = value to the context dictionary.
+    """
+    if not context:
+        context = dict()
+    for item in items:
+        if isinstance(item, ast.Assign):
+            key = item.targets[0].id
+            context[key] = parse_expr(item.value, context)
+    return context
+
+
+def get_lib_common_constants(platform):
+    """Extract constants from lib.common.constants into a dict"""
+    constant_file = os.path.join(settings.CUCKOO_PATH, "analyzer", platform, "lib", "common", "constants.py")
+    with open(constant_file, "r") as f:
+        contents = f.read()
+    tr = ast.parse(contents)
+    the_dict = parse_ast(tr.body)
+    return the_dict
+
+
+def get_package_info(dir_name, filename, platform, common_context):
+    """Find out everything we can about the package."""
+    default_summary = f"Package {filename} has no summary"
+    default_description = f"Package {filename} has no description"
+    # Clear out previous package description etc.
+    to_delete = ("summary", "description", "option_names")
+    for item in to_delete:
+        if item in common_context:
+            del common_context[item]
+    with open(os.path.join(dir_name, filename), "r") as f:
+        contents = f.read()
+    tr = ast.parse(contents)
+    expanded_context = parse_ast(tr.body, common_context)
+    classes = [item for item in tr.body if isinstance(item, ast.ClassDef) and item.bases and item.bases[0].id == "Package"]
+    if classes:
+        classname = classes[0].name
+        assignments = parse_ast(classes[0].body, expanded_context)
+    else:
+        # No class inherited from 'Package'
+        classname = "unknown classname"
+        assignments = dict()
+    summary = assignments.get("summary", default_summary)
+    description = textwrap.dedent(assignments.get("description", default_description))
+    option_names = assignments.get("option_names", ())
+    if option_names:
+        description = description + f"\nOPTIONS: {option_names}"
+    result = {
+        "name": os.path.splitext(filename)[0],
+        "value": os.path.splitext(filename)[0],
+        "classname": classname,
+        "platform": platform,
+        "summary": summary,
+        "description": description,
+        "option_names": option_names,
+    }
+    return result
+
+
+def get_enabled_platforms():
+    """Return a list of enabled platforms.
+
+    We are going to assume that the windows platform is first in the list."""
+    platforms = ["windows"]
+    if web_conf.linux.enabled:
+        platforms.append("linux")
+    return platforms
+
+
+def correlate_platform_packages(platform_package_dict):
+    """Given a per-platform dictionary, return a single list of all packages"""
+    package_names = set()
+    result = []
+    for platform in get_enabled_platforms():
+        for package in platform_package_dict.get(platform, []):
+            package_name = package["name"].lower()
+            if package_name not in package_names:
+                package_names.add(package_name)
+                if platform != "windows":
+                    # The windows analyzer package list did not contain this package name.
+                    package["name"] = package["name"] + f" ({platform} only)"
+                result.append(package)
+    return result
+
+
+def get_form_data():
+    """Return data about packages and machines to help build the submission form."""
+    platforms = get_enabled_platforms()
+
+    platform_packages = dict()
+    for platform in platforms:
+        common_context = get_lib_common_constants(platform)
+        package_root = os.path.join(settings.CUCKOO_PATH, "analyzer", platform, "modules", "packages")
+        files = [item.name for item in os.scandir(package_root) if item.is_file() and not item.name.startswith(".")]
+        exclusions = [package.strip() + ".py" for package in web_conf.package_exclusion.packages.split(",")]
+
+        exclusions.append("__init__.py")
+
+        platform_packages[platform] = [
+            get_package_info(package_root, name, platform, common_context) for name in files if name not in exclusions
+        ]
+    packages = correlate_platform_packages(platform_packages)
 
     # Prepare a list of VM names, description label based on tags.
     machines = []
     for machine in db.list_machines():
-        tags = []
-        for tag in machine.tags:
-            tags.append(tag.name)
+        tags = [tag.name for tag in machine.tags]
 
+        label = f"{machine.label}:{machine.arch}"
         if tags:
-            label = "{}:{}".format(machine.label, ",".join(tags))
-        else:
-            label = "{}".format(machine.label)
+            label = f"{label}:{','.join(tags)}"
 
         if web_conf.linux.enabled:
             label = machine.platform + ":" + label
@@ -99,7 +239,7 @@ def get_form_data(platform):
 
 
 # Conditional decorator for web authentication
-class conditional_login_required(object):
+class conditional_login_required:
     def __init__(self, dec, condition):
         self.decorator = dec
         self.condition = condition
@@ -113,29 +253,41 @@ def __call__(self, func):
 def force_int(value):
     try:
         value = int(value)
-    except:
+    except Exception:
         value = 0
     finally:
         return value
 
 
-def get_platform(magic):
-    if magic and any(x in magic for x in VALID_LINUX_TYPES):
-        return "linux"
-    else:
-        return "windows"
-
-
 @conditional_login_required(login_required, settings.WEB_AUTHENTICATION)
-def index(request, resubmit_hash=False):
+def index(request, task_id=None, resubmit_hash=None):
+    remote_console = False
     if request.method == "POST":
-
-        static, package, timeout, priority, options, machine, platform, tags, custom, memory, \
-            clock, enforce_timeout, shrike_url, shrike_msg, shrike_sid, shrike_refer, unique, referrer, \
-            tlp, tags_tasks, route, cape = parse_request_arguments(request)
+        (
+            static,
+            package,
+            timeout,
+            priority,
+            options,
+            machine,
+            platform,
+            tags,
+            custom,
+            memory,
+            clock,
+            enforce_timeout,
+            unique,
+            referrer,
+            tlp,
+            tags_tasks,
+            route,
+            cape,
+        ) = parse_request_arguments(request)
 
         # This is done to remove spaces in options but not breaks custom paths
-        options = ",".join("=".join(value.strip() for value in option.split("=", 1)) for option in options.split(",") if option and "=" in option)
+        options = ",".join(
+            "=".join(value.strip() for value in option.split("=", 1)) for option in options.split(",") if option and "=" in option
+        )
         opt_filename = get_user_filename(options, custom)
 
         if priority and web_conf.public.enabled and web_conf.public.priority and not request.user.is_staff:
@@ -156,6 +308,17 @@ def index(request, resubmit_hash=False):
         if request.POST.get("nohuman"):
             options += "nohuman=yes,"
 
+        if request.POST.get("mitmdump"):
+            options += "mitmdump=yes,"
+
+        if web_conf.guacamole.enabled and request.POST.get("interactive"):
+            remote_console = True
+            options += "interactive=1,"
+            if "nohuman=yes," not in options:
+                options += "nohuman=yes,"
+            if request.POST.get("manual"):
+                options += "manual=1,"
+
         if request.POST.get("tor"):
             options += "tor=yes,"
 
@@ -165,11 +328,17 @@ def index(request, resubmit_hash=False):
         if request.POST.get("process_memory"):
             options += "procmemdump=1,"
 
+        if request.POST.get("amsidump"):
+            options += "amsidump=1,"
+
         if request.POST.get("import_reconstruction"):
             options += "import_reconstruction=1,"
 
-        if request.POST.get("disable_cape"):
-            options += "disable_cape=1,"
+        if request.POST.get("unpacker"):
+            options += "unpacker=2,"
+
+        if not request.POST.get("syscall"):
+            options += "syscall=0,"
 
         if request.POST.get("kernel_analysis"):
             options += "kernel_analysis=yes,"
@@ -178,11 +347,15 @@ def index(request, resubmit_hash=False):
             options += "norefer=1,"
 
         if request.POST.get("oldloader"):
-            options += "loader=oldloader.exe,loader_64=oldloader_x64.exe,"
+            options += "no-iat=1,"
 
         if request.POST.get("unpack"):
             options += "unpack=yes,"
 
+        job_category = False
+        if request.POST.get("job_category"):
+            job_category = request.POST.get("job_category")
+
         options = options[:-1]
 
         opt_apikey = False
@@ -191,8 +364,7 @@ def index(request, resubmit_hash=False):
             opt_apikey = opts.get("apikey", False)
 
         status = "ok"
-        task_ids_tmp = list()
-        existent_tasks = dict()
+        existent_tasks = {}
         details = {
             "errors": [],
             "content": False,
@@ -207,258 +379,286 @@ def index(request, resubmit_hash=False):
             "options": options,
             "only_extraction": False,
             "user_id": request.user.id or 0,
+            "package": package,
         }
+        if opt_apikey:
+            details["apikey"] = opt_apikey
+        task_category = False
+        samples = []
+        if "hash" in request.POST and request.POST.get("hash", False) and request.POST.get("hash")[0] != "":
+            task_category = "resubmit"
+            samples = request.POST.get("hash").strip().split(",")
+        elif "sample" in request.FILES:
+            task_category = "sample"
+            samples = request.FILES.getlist("sample")
+        elif "static" in request.FILES:
+            task_category = "static"
+            samples = request.FILES.getlist("static")
+        elif "pcap" in request.FILES:
+            task_category = "pcap"
+            samples = request.FILES.getlist("pcap")
+        elif "url" in request.POST and request.POST.get("url").strip():
+            task_category = "url"
+            samples = request.POST.get("url").strip()
+        elif "dlnexec" in request.POST and request.POST.get("dlnexec").strip():
+            task_category = "dlnexec"
+            samples = request.POST.get("dlnexec").strip()
+        elif "hashes" in request.POST and request.POST.get("hashes", False) and request.POST.get("hashes")[0] != "":
+            task_category = "downloading_service"
+            samples = request.POST.get("hashes").strip()
+        list_of_tasks = []
+        if task_category in ("url", "dlnexec"):
+            if not samples:
+                return render(request, "error.html", {"error": "You specified an invalid URL!"})
+            for url in samples.split(web_conf.general.url_splitter):
+                url = url.replace("hxxps://", "https://").replace("hxxp://", "http://").replace("[.]", ".")
+                if task_category == "dlnexec":
+                    path, content, sha256 = process_new_dlnexec_task(url, route, options, custom)
+                    if path:
+                        list_of_tasks.append((content, path, sha256))
+                elif task_category == "url":
+                    list_of_tasks.append(("", url, ""))
+
+        elif task_category in ("sample", "static", "pcap"):
+            list_of_tasks, details = process_new_task_files(request, samples, details, opt_filename, unique)
+
+        elif task_category == "resubmit":
+            for hash in samples:
+                paths = []
+                if len(hash) in (32, 40, 64):
+                    paths = db.sample_path_by_hash(hash)
+                else:
+                    task_binary = os.path.join(settings.CUCKOO_PATH, "storage", "analyses", str(task_id), "binary")
+                    if path_exists(task_binary):
+                        paths.append(task_binary)
+                    else:
+                        tmp_paths = db.find_sample(task_id=task_id)
+                        if not tmp_paths:
+                            details["errors"].append({hash: "Task not found for resubmission"})
+                            continue
+                        for tmp_sample in tmp_paths:
+                            path = False
+                            tmp_dict = tmp_sample.to_dict()
+                            if path_exists(tmp_dict.get("target", "")):
+                                path = tmp_dict["target"]
+                            else:
+                                tmp_tasks = db.find_sample(sample_id=tmp_dict["sample_id"])
+                                for tmp_task in tmp_tasks:
+                                    tmp_path = os.path.join(
+                                        settings.CUCKOO_PATH, "storage", "binaries", tmp_task.to_dict()["sha256"]
+                                    )
+                                    if path_exists(tmp_path):
+                                        path = tmp_path
+                                        break
+                            if path:
+                                paths.append(path)
+
+                if not paths:
+                    for folder_name in ("selfextracted", "files", "procdump", "CAPE"):
+                        # Self Extracted support folder
+                        path = os.path.join(settings.CUCKOO_PATH, "storage", "analyses", str(task_id), folder_name, hash)
+                        if path_exists(path):
+                            paths.append(path)
+
+                if not paths:
+                    details["errors"].append({hash: "File not found on hdd for resubmission"})
+                    continue
 
-        if "hash" in request.POST and request.POST.get("hash", False) and request.POST.get("hash")[0] != '':
-            resubmission_hash = request.POST.get("hash").strip()
-            paths = db.sample_path_by_hash(resubmission_hash)
-            if paths:
                 content = get_file_content(paths)
                 if not content:
-                    return render(request, "error.html", {"error": "Can't find {} on disk, {}".format(resubmission_hash, str(paths))})
+                    details["errors"].append({hash: f"Can't find {hash} on disk"})
+                    continue
                 folder = os.path.join(settings.TEMP_PATH, "cape-resubmit")
-                if not os.path.exists(folder):
-                    os.makedirs(folder)
-                base_dir = tempfile.mkdtemp(prefix='resubmit_', dir=folder)
+                if not path_exists(folder):
+                    path_mkdir(folder)
+                base_dir = tempfile.mkdtemp(prefix="resubmit_", dir=folder)
                 if opt_filename:
                     filename = base_dir + "/" + opt_filename
                 else:
-                    filename = base_dir + "/" + sanitize_filename(resubmission_hash)
+                    filename = base_dir + "/" + sanitize_filename(hash)
                 path = store_temp_file(content, filename)
-                details["path"] = path
-                details["content"] = content
-                status, task_ids_tmp = download_file(**details)
-                if status == "error":
-                    details["errors"].append({os.path.basename(filename): task_ids_tmp})
-                else:
-                    details["task_ids"] = task_ids_tmp
-                    records = perform_search("sha256", resubmission_hash)
-                    for record in records:
-                        existent_tasks.setdefault(record["target"]["file"]["sha256"], list())
-                        existent_tasks[record["target"]["file"]["sha256"]].append(record)
-            else:
-                return render(request, "error.html", {"error": "File not found on hdd for resubmission"})
+                list_of_tasks.append((content, path, hash))
 
-        elif "sample" in request.FILES:
-            samples = request.FILES.getlist("sample")
-            details["service"] = "WebGUI"
-            for sample in samples:
-                # Error if there was only one submitted sample and it's empty.
-                # But if there are multiple and one was empty, just ignore it.
-                if not sample.size:
-                    details["errors"].append({sample.name: "You uploaded an empty file."})
-                    continue
-                elif sample.size > settings.MAX_UPLOAD_SIZE:
-                    details["errors"].append({sample.name:  "You uploaded a file that exceeds the maximum allowed upload size specified in web/web/local_settings.py."})
-                    continue
+        # Hack for resubmit first find all files and then put task as proper category
+        if job_category and job_category in ("resubmit", "sample", "static", "pcap", "dlnexec", "downloading_service"):
+            task_category = job_category
 
-                if opt_filename:
-                    filename = opt_filename
-                else:
-                    filename = sanitize_filename(sample.name)
-                # Moving sample from django temporary file to CAPE temporary storage to let it persist between reboot (if user like to configure it in that way).
-                path = store_temp_file(sample.read(), filename)
-                sha256 = File(path).get_sha256()
-                if not request.user.is_staff and (web_conf.uniq_submission.enabled or unique) and db.check_file_uniq(sha256, hours=web_conf.uniq_submission.hours):
-                    details["errors"].append({filename: "Duplicated file, disable unique option on submit or in conf/web.conf to force submission"})
-                    continue
+        if task_category == "resubmit":
+            for content, path, sha256 in list_of_tasks:
+                if web_conf.pre_script.enabled and "pre_script" in request.FILES:
+                    pre_script = request.FILES["pre_script"]
+                    details["pre_script_name"] = request.FILES["pre_script"].name
+                    details["pre_script_content"] = pre_script.read()
 
-                if timeout and web_conf.public.enabled and web_conf.public.timeout and timeout > web_conf.public.timeout:
-                    timeout = web_conf.public.timeout
+                if web_conf.during_script.enabled and "during_script" in request.FILES:
+                    during_script = request.FILES["during_script"]
+                    details["during_script_name"] = request.FILES["during_script"].name
+                    details["during_script_content"] = during_script.read()
 
                 details["path"] = path
-                details["content"] = get_file_content(path)
-                status, task_ids_tmp = download_file(**details)
+                details["content"] = content
+                status, tasks_details = download_file(**details)
                 if status == "error":
-                    details["errors"].append({os.path.basename(path): task_ids_tmp})
+                    details["errors"].append({os.path.basename(filename): tasks_details})
                 else:
-                    records = perform_search("sha256", sha256)
-                    for record in records:
-                        if record.get("target").get("file", {}).get("sha256"):
-                            existent_tasks.setdefault(record["target"]["file"]["sha256"], list())
-                            existent_tasks[record["target"]["file"]["sha256"]].append(record)
-                    details["task_ids"] = task_ids_tmp
-
-        elif "quarantine" in request.FILES:
-            samples = request.FILES.getlist("quarantine")
-            for sample in samples:
-                # Error if there was only one submitted sample and it's empty.
-                # But if there are multiple and one was empty, just ignore it.
-                if not sample.size:
-                    if len(samples) != 1:
-                        continue
-
-                    return render(request, "error.html", {"error": "You uploaded an empty quarantine file."})
-                elif sample.size > settings.MAX_UPLOAD_SIZE:
-                    return render(request, "error.html", {"error": "You uploaded a quarantine file that exceeds the maximum allowed upload size specified in web/web/local_settings.py."})
-
-                # Moving sample from django temporary file to Cuckoo temporary storage to
-                # let it persist between reboot (if user like to configure it in that way).
-                tmp_path = store_temp_file(sample.read(), sample.name)
+                    details["task_ids"] = tasks_details.get("task_ids")
+                    if tasks_details.get("errors"):
+                        details["errors"].extend(tasks_details["errors"])
+                    if web_conf.web_reporting.get("enabled", False) and web_conf.general.get("existent_tasks", False):
+                        records = perform_search("target_sha256", hash, search_limit=5)
+                        if records:
+                            for record in records or []:
+                                existent_tasks.setdefault(record["target"]["file"]["sha256"], []).append(record)
+
+        elif task_category == "sample":
+            details["service"] = "WebGUI"
+            for content, path, sha256 in list_of_tasks:
+                if web_conf.pre_script.enabled and "pre_script" in request.FILES:
+                    pre_script = request.FILES["pre_script"]
+                    details["pre_script_name"] = request.FILES["pre_script"].name
+                    details["pre_script_content"] = pre_script.read()
 
-                path = unquarantine(tmp_path)
-                try:
-                    os.remove(tmp_path)
-                except Exception as e:
-                    print(e)
+                if web_conf.during_script.enabled and "during_script" in request.FILES:
+                    during_script = request.FILES["during_script"]
+                    details["during_script_name"] = request.FILES["during_script"].name
+                    details["during_script_content"] = during_script.read()
 
-                if not path:
-                    return render(request, "error.html", {"error": "You uploaded an unsupported quarantine file."})
+                if timeout and web_conf.public.enabled and web_conf.public.timeout and timeout > web_conf.public.timeout:
+                    timeout = web_conf.public.timeout
 
                 details["path"] = path
-                details["content"] = get_file_content(path)
-                status, task_ids_tmp = download_file(**details)
+                details["content"] = content
+                status, tasks_details = download_file(**details)
                 if status == "error":
-                    details["errors"].append({sample.name: task_ids_tmp})
+                    details["errors"].append({os.path.basename(path): tasks_details})
                 else:
-                    details["task_ids"] = task_ids_tmp
-
-        elif "static" in request.FILES:
-            samples = request.FILES.getlist("static")
-            for sample in samples:
-                if not sample.size:
-                    if len(samples) != 1:
-                        continue
-
-                    return render(request, "error.html", {"error": "You uploaded an empty file."})
-                elif sample.size > settings.MAX_UPLOAD_SIZE:
-                    return render(request, "error.html", {"error": "You uploaded a file that exceeds the maximum allowed upload size specified in web/web/local_settings.py."})
-
-                # Moving sample from django temporary file to Cuckoo temporary storage to
-                # let it persist between reboot (if user like to configure it in that way).
-                path = store_temp_file(sample.read(), sample.name)
-
-                task_id = db.add_static(file_path=path, priority=priority, tlp=tlp)
+                    details["task_ids"] = tasks_details.get("task_ids")
+                    if tasks_details.get("errors"):
+                        details["errors"].extend(tasks_details["errors"])
+                    if web_conf.general.get("existent_tasks", False):
+                        records = perform_search("target_sha256", sha256, search_limit=5)
+                        if records:
+                            for record in records:
+                                if record.get("target").get("file", {}).get("sha256"):
+                                    existent_tasks.setdefault(record["target"]["file"]["sha256"], []).append(record)
+
+        elif task_category == "static":
+            for content, path, sha256 in list_of_tasks:
+                task_id = db.add_static(file_path=path, priority=priority, tlp=tlp, options=options, user_id=request.user.id or 0)
                 if not task_id:
                     return render(request, "error.html", {"error": "We don't have static extractor for this"})
-                details["task_ids"].append(task_id)
-
-        elif "pcap" in request.FILES:
-            samples = request.FILES.getlist("pcap")
-            for sample in samples:
-                if not sample.size:
-                    if len(samples) != 1:
-                        continue
+                details["task_ids"] += task_id
 
-                    return render(request, "error.html", {"error": "You uploaded an empty PCAP file."})
-                elif sample.size > settings.MAX_UPLOAD_SIZE:
-                    return render(request, "error.html", {"error": "You uploaded a PCAP file that exceeds the maximum allowed upload size specified in web/web/local_settings.py."})
-
-                # Moving sample from django temporary file to Cuckoo temporary storage to
-                # let it persist between reboot (if user like to configure it in that way).
-                path = store_temp_file(sample.read(), sample.name)
-
-                if sample.name.lower().endswith(".saz"):
+        elif task_category == "pcap":
+            for content, path, sha256 in list_of_tasks:
+                if path.lower().endswith(b".saz"):
                     saz = saz_to_pcap(path)
                     if saz:
-                        try:
-                            os.remove(path)
-                        except Exception as e:
-                            pass
+                        with suppress(Exception):
+                            path_delete(path)
                         path = saz
                     else:
-                        return render(request, "error.html", {"error": "Conversion from SAZ to PCAP failed."})
+                        details["errors"].append({os.path.basename(path): "Conversion from SAZ to PCAP failed."})
+                        continue
 
                 task_id = db.add_pcap(file_path=path, priority=priority, tlp=tlp, user_id=request.user.id or 0)
                 if task_id:
                     details["task_ids"].append(task_id)
 
-        elif "url" in request.POST and request.POST.get("url").strip():
-            url = request.POST.get("url").strip()
-            if not url:
-                return render(request, "error.html", {"error": "You specified an invalid URL!"})
-
-            url = url.replace("hxxps://", "https://").replace("hxxp://", "http://").replace("[.]", ".")
+        elif task_category == "url":
+            for _, url, _ in list_of_tasks:
+                if machine.lower() == "all":
+                    machines = [vm.name for vm in db.list_machines(platform=platform)]
+                elif machine:
+                    machine_details = db.view_machine(machine)
+                    if platform and hasattr(machine_details, "platform") and not machine_details.platform == platform:
+                        details["errors"].append(
+                            {os.path.basename(url): f"Wrong platform, {machine_details.platform} VM selected for {platform} sample"}
+                        )
+                        continue
+                    else:
+                        machines = [machine]
 
-            if machine.lower() == "all":
-                machines = [vm.name for vm in db.list_machines(platform=platform)]
-            elif machine:
-                machine_details = db.view_machine(machine)
-                if platform and hasattr(machine_details, "platform") and not machine_details.platform == platform:
-                    return render(request, "error.html", {"error": "Wrong platform, {} VM selected for {} sample".format(machine_details.platform, platform)}, )
                 else:
-                    machines = [machine]
-
-            else:
-                machines = [None]
-            for entry in machines:
-                task_id = db.add_url(
-                    url=url,
-                    package=package,
-                    timeout=timeout,
-                    priority=priority,
-                    options=options,
-                    machine=entry,
-                    platform=platform,
-                    tags=tags,
-                    custom=custom,
-                    memory=memory,
-                    enforce_timeout=enforce_timeout,
-                    clock=clock,
-                    shrike_url=shrike_url,
-                    shrike_msg=shrike_msg,
-                    shrike_sid=shrike_sid,
-                    shrike_refer=shrike_refer,
-                    route=route,
-                    cape=cape,
-                    tags_tasks=tags_tasks,
-                    user_id=request.user.id or 0,
-                )
-                details["task_ids"].append(task_id)
+                    machines = [None]
+                for entry in machines:
+                    task_id = db.add_url(
+                        url=url,
+                        package=package,
+                        timeout=timeout,
+                        priority=priority,
+                        options=options,
+                        machine=entry,
+                        platform=platform,
+                        tags=tags,
+                        custom=custom,
+                        memory=memory,
+                        enforce_timeout=enforce_timeout,
+                        clock=clock,
+                        route=route,
+                        cape=cape,
+                        tags_tasks=tags_tasks,
+                        user_id=request.user.id or 0,
+                    )
+                    details["task_ids"].append(task_id)
 
-        elif "dlnexec" in request.POST and request.POST.get("dlnexec").strip():
-            url = request.POST.get("dlnexec").strip()
-            if not url:
-                return render(request, "error.html", {"error": "You specified an invalid URL!"})
+        elif task_category == "dlnexec":
+            for content, path, sha256 in list_of_tasks:
+                details["path"] = path
+                details["content"] = content
+                details["service"] = "DLnExec"
+                details["source_url"] = samples
+                status, tasks_details = download_file(**details)
+                if status == "error":
+                    details["errors"].append({os.path.basename(path): tasks_details})
+                else:
+                    details["task_ids"] = tasks_details.get("task_ids")
+                    if tasks_details.get("errors"):
+                        details["errors"].extend(tasks_details["errors"])
 
-            url = url.replace("hxxps://", "https://").replace("hxxp://", "http://").replace("[.]", ".")
-            response = _download_file(request.POST.get("route", None), url, options)
-            if not response:
-                 return render(request, "error.html", {"error": "Was impossible to retrieve url"})
-
-            name = os.path.basename(url)
-            if not "." in name:
-                name = get_user_filename(options, custom) or generate_fake_name()
-
-            path = store_temp_file(response, name)
-            details["path"] = path
-            details["content"] = get_file_content(path)
-            details["service"] = "DLnExec"
-            status, task_ids_tmp = download_file(**details)
-            if status == "error":
-                details["errors"].append({name: task_ids_tmp})
-            else:
-                details["task_ids"] = task_ids_tmp
-        elif settings.VTDL_ENABLED and "vtdl" in request.POST and request.POST.get("vtdl", False) and request.POST.get("vtdl")[0] != "":
-            if not settings.VTDL_KEY or not settings.VTDL_PATH:
-                    return render(request, "error.html", {"error": "You specified VirusTotal but must edit the file and specify your VTDL_KEY variable and VTDL_PATH base directory"})
-            else:
-                if opt_apikey:
-                    details["apikey"] = opt_apikey
-                details = download_from_vt(request.POST.get("vtdl").strip(), details, opt_filename, settings)
+        elif task_category == "downloading_service":
+            details = download_from_3rdparty(samples, opt_filename, details)
 
         if details.get("task_ids"):
             tasks_count = len(details["task_ids"])
         else:
             tasks_count = 0
         if tasks_count > 0:
-            data = {"tasks": details["task_ids"], "tasks_count": tasks_count, "errors": details["errors"], "existent_tasks": existent_tasks}
+            data = {
+                "title": "Submission",
+                "tasks": details["task_ids"],
+                "tasks_count": tasks_count,
+                "errors": details["errors"],
+                "existent_tasks": existent_tasks,
+                "remote_console": remote_console,
+            }
             return render(request, "submission/complete.html", data)
         else:
-            return render(request, "error.html", {"error": "Error adding task(s) to CAPE's database.", "errors": details["errors"]})
+            err_data = {
+                "error": "Error adding task(s) to CAPE's database.",
+                "errors": details["errors"],
+                "title": "Submission Failure",
+            }
+            return render(request, "error.html", err_data)
     else:
-        enabledconf = dict()
-        enabledconf["vt"] = settings.VTDL_ENABLED
+        enabledconf = {}
         enabledconf["kernel"] = settings.OPT_ZER0M0N
         enabledconf["memory"] = processing.memory.get("enabled")
         enabledconf["procmemory"] = processing.procmemory.get("enabled")
         enabledconf["dlnexec"] = settings.DLNEXEC
         enabledconf["url_analysis"] = settings.URL_ANALYSIS
         enabledconf["tags"] = False
-        enabledconf["dist_master_storage_only"] = repconf.distributed.master_storage_only
+        enabledconf["dist_master_storage_only"] = distconf.distributed.master_storage_only
         enabledconf["linux_on_gui"] = web_conf.linux.enabled
         enabledconf["tlp"] = web_conf.tlp.enabled
         enabledconf["timeout"] = cfg.timeouts.default
+        enabledconf["amsidump"] = web_conf.amsidump.enabled
+        enabledconf["pre_script"] = web_conf.pre_script.enabled
+        enabledconf["during_script"] = web_conf.during_script.enabled
+        enabledconf["downloading_service"] = bool(downloader_services.downloaders)
+        enabledconf["interactive_desktop"] = web_conf.guacamole.enabled
+
+        all_vms_tags = load_vms_tags()
 
         if all_vms_tags:
             enabledconf["tags"] = True
@@ -467,20 +667,21 @@ def index(request, resubmit_hash=False):
             # load multi machinery tags:
             # Get enabled machinery
             machinery = cfg.cuckoo.get("machinery")
+            machinery_tags = "scale_sets" if machinery == "az" else "machines"
             if machinery == "multi":
                 for mmachinery in Config(machinery).multi.get("machinery").split(","):
-                    vms = [x.strip() for x in getattr(Config(mmachinery), mmachinery).get("machines").split(",")]
+                    vms = [x.strip() for x in getattr(Config(mmachinery), mmachinery).get(machinery_tags).split(",") if x.strip()]
                     if any(["tags" in list(getattr(Config(mmachinery), vmtag).keys()) for vmtag in vms]):
                         enabledconf["tags"] = True
                         break
             else:
                 # Get VM names for machinery config elements
-                vms = [x.strip() for x in getattr(Config(machinery), machinery).get("machines").split(",")]
+                vms = [x.strip() for x in str(getattr(Config(machinery), machinery).get(machinery_tags)).split(",") if x.strip()]
                 # Check each VM config element for tags
                 if any(["tags" in list(getattr(Config(machinery), vmtag).keys()) for vmtag in vms]):
                     enabledconf["tags"] = True
 
-        packages, machines = get_form_data("windows")
+        packages, machines = get_form_data()
 
         socks5s = _load_socks5_operational()
 
@@ -488,13 +689,10 @@ def index(request, resubmit_hash=False):
         vpn_random = ""
 
         if routing.socks5.random_socks5 and socks5s:
-            socks5s_random = random.choice(socks5s.values()).get("name", False)
-
-        if routing.vpn.random_vpn:
-            vpn_random =  random.choice(list(vpns.values())).get("name", False)
+            socks5s_random = socks5s[random.choice(list(socks5s.keys()))]
 
-        if socks5s:
-            socks5s_random = random.choice(list(socks5s.values())).get("name", False)
+        if routing.vpn.random_vpn and vpns:
+            vpn_random = vpns[random.choice(list(vpns.keys()))]
 
         random_route = False
         if vpn_random and socks5s_random:
@@ -504,31 +702,57 @@ def index(request, resubmit_hash=False):
         elif socks5s_random:
             random_route = socks5s_random
 
-
-        existent_tasks = dict()
+        # prepare data for the gui rendering
+        if random_route:
+            if random_route is vpn_random:
+                random_route = {
+                    "name": random_route["name"],
+                    "description": random_route["description"],
+                    "interface": random_route["interface"],
+                    "type": "VPN",
+                }
+            else:
+                random_route = {
+                    "name": random_route["description"],
+                    "host": random_route["host"],
+                    "port": random_route["port"],
+                    "type": "SOCKS5",
+                }
+        socks5s_data = [
+            {"name": v["description"], "host": v["host"], "port": v["port"], "type": "socks5"} for k, v in socks5s.items()
+        ]
+        vpns_data = [
+            {"name": v["name"], "description": v["description"], "interface": v["interface"], "type": "vpn"} for v in vpns.values()
+        ]
+
+        existent_tasks = {}
         if resubmit_hash:
-            records = perform_search("sha256", resubmit_hash)
-            for record in records:
-                existent_tasks.setdefault(record["target"]["file"]["sha256"], list())
-                existent_tasks[record["target"]["file"]["sha256"]].append(record)
+            if web_conf.general.get("existent_tasks", False):
+                records = perform_search("target_sha256", resubmit_hash, search_limit=5)
+                if records:
+                    for record in records:
+                        existent_tasks.setdefault(record["target"]["file"]["sha256"], [])
+                        existent_tasks[record["target"]["file"]["sha256"]].append(record)
 
         return render(
             request,
             "submission/index.html",
             {
-                "packages": sorted(packages),
+                "title": "Submit",
+                "packages": sorted(packages, key=lambda i: i["name"].lower()),
                 "machines": machines,
-                "vpns": list(vpns.values()),
+                "vpns": vpns_data,
                 "random_route": random_route,
-                "socks5s": list(socks5s.values()),
+                "socks5s": socks5s_data,
                 "route": routing.routing.route,
                 "internet": routing.routing.internet,
                 "inetsim": routing.inetsim.enabled,
                 "tor": routing.tor.enabled,
                 "config": enabledconf,
                 "resubmit": resubmit_hash,
-                "tags": sorted(list(set(all_vms_tags))),
+                "tags": all_vms_tags,
                 "existent_tasks": existent_tasks,
+                "all_exitnodes": list(sorted(load_vms_exits())),
             },
         )
 
@@ -547,4 +771,49 @@ def status(request, task_id):
     if status == "completed":
         status = "processing"
 
-    return render(request, "submission/status.html", {"completed": completed, "status": status, "task_id": task_id})
+    response = {
+        "title": "Task Status",
+        "completed": completed,
+        "status": status,
+        "task_id": task_id,
+        "session_data": "",
+        "target": task.sample.sha256 if getattr(task, "sample") else task.target,
+    }
+    if web_conf.guacamole.enabled and get_options(task.options).get("interactive") == "1":
+        machine = db.view_machine_by_label(task.machine)
+        if machine:
+            guest_ip = machine.ip
+            session_id = uuid3(NAMESPACE_DNS, task_id).hex[:16]
+            session_data = urlsafe_b64encode(f"{session_id}|{task.machine}|{guest_ip}".encode("utf8")).decode("utf8")
+            response["session_data"] = session_data
+
+    return render(request, "submission/status.html", response)
+
+
+@conditional_login_required(login_required, settings.WEB_AUTHENTICATION)
+def remote_session(request, task_id):
+    task = db.view_task(task_id)
+    if not task:
+        return render(request, "error.html", {"error": "The specified task doesn't seem to exist."})
+
+    machine_status = False
+    session_data = ""
+
+    if task.status == "running":
+        machine = db.view_machine_by_label(task.machine)
+        if not machine:
+            return render(request, "error.html", {"error": "Machine is not set for this task."})
+        guest_ip = machine.ip
+        machine_status = True
+        session_id = uuid3(NAMESPACE_DNS, task_id).hex[:16]
+        session_data = urlsafe_b64encode(f"{session_id}|{machine.label}|{guest_ip}".encode("utf8")).decode("utf8")
+
+    return render(
+        request,
+        "submission/remote_status.html",
+        {
+            "running": machine_status,
+            "task_id": task_id,
+            "session_data": session_data,
+        },
+    )
diff --git a/web/templates/admin/captcha_login.html b/web/templates/admin/captcha_login.html
new file mode 100644
index 00000000000..c314764d571
--- /dev/null
+++ b/web/templates/admin/captcha_login.html
@@ -0,0 +1,70 @@
+{% extends "admin/base_site.html" %}
+{% load i18n static %}
+
+{% block extrastyle %}{{ block.super }}<link rel="stylesheet" type="text/css" href="{% static "admin/css/login.css" %}">
+{{ form.media }}
+{% endblock %}
+
+{% block bodyclass %}{{ block.super }} login{% endblock %}
+
+{% block usertools %}{% endblock %}
+
+{% block nav-global %}{% endblock %}
+
+{% block content_title %}{% endblock %}
+
+{% block breadcrumbs %}{% endblock %}
+
+{% block content %}
+{% if form.errors and not form.non_field_errors %}
+<p class="errornote">
+{% if form.errors.items|length == 1 %}{% trans "Please correct the error below." %}{% else %}{% trans "Please correct the errors below." %}{% endif %}
+</p>
+{% endif %}
+
+{% if form.non_field_errors %}
+{% for error in form.non_field_errors %}
+<p class="errornote">
+    {{ error }}
+</p>
+{% endfor %}
+{% endif %}
+
+<div id="content-main">
+
+{% if user.is_authenticated %}
+<p class="errornote">
+{% blocktrans trimmed %}
+    You are authenticated as {{ username }}, but are not authorized to
+    access this page. Would you like to login to a different account?
+{% endblocktrans %}
+</p>
+{% endif %}
+
+<form action="{{ app_path }}" method="post" id="login-form">{% csrf_token %}
+  <div class="form-row">
+    {{ form.username.errors }}
+    {{ form.username.label_tag }} {{ form.username }}
+  </div>
+  <div class="form-row">
+    {{ form.password.errors }}
+    {{ form.password.label_tag }} {{ form.password }}
+    <input type="hidden" name="next" value="{{ next }}">
+  </div>
+  <div class="form-row">
+    {{ form.captcha.errors }}
+    {{ form.captcha }}
+  </div>
+  {% url 'admin_password_reset' as password_reset_url %}
+  {% if password_reset_url %}
+  <div class="password-reset-link">
+    <a href="{{ password_reset_url }}">{% trans 'Forgotten your password or username?' %}</a>
+  </div>
+  {% endif %}
+  <div class="submit-row">
+    <label>&nbsp;</label><input type="submit" value="{% trans 'Log in' %}">
+  </div>
+</form>
+
+</div>
+{% endblock %}
diff --git a/web/templates/analysis/CAPE/index.html b/web/templates/analysis/CAPE/index.html
index 729cc4017ed..f859ee84a29 100644
--- a/web/templates/analysis/CAPE/index.html
+++ b/web/templates/analysis/CAPE/index.html
@@ -1,212 +1,13 @@
 {% load key_tags %}
-{% if CAPE.payloads %}
-    {% for file in CAPE.payloads|dictsortreversed:"size" %}
-    <div class="panel panel-default">
-        <table class="table table-striped table-bordered" style="table-layout: fixed;">
-            <tr>
-                <th style="border-top: 0; width: 15%;">Type</th>
-                <td style="border-top: 0; word-wrap: break-word;"><b>{{file.cape_type}}</b></td>
-            </tr>
-            <tr>
-                <th>Size</th>
-                <td>{{file.size}} bytes</td>
-            </tr>
-            {% if file.cape_type_code == 8 or file.cape_type_code == 9 %}
-                <tr>
-                    <th>Virtual Address</th>
-                    <td>{{file.virtual_address}}</td>
-                </tr>
-            {% endif %}
-            {% if file.cape_type_code == 5 %}
-                <tr>
-                    <th>Section Handle</th>
-                    <td>{{file.section_handle}}</td>
-                </tr>
-            {% endif %}
-            {% if file.cape_type_code == 3 or file.cape_type_code == 4 %}
-                <tr>
-                    <th>Target Process</th>
-                    <td>{{file.target_process}}</td>
-                </tr>
-                <tr>
-                    <th>Target PID</th>
-                    <td>{{file.target_pid}}</td>
-                </tr>
-                <tr>
-                    <th>Target Path</th>
-                    <td>{{file.target_path}}</td>
-                </tr>
-                <tr>
-                    <th>Injecting Process</th>
-                    <td>{{file.process_name}}</td>
-                </tr>
-                <tr>
-                    <th>Injecting PID</th>
-                    <td>{{file.pid}}</td>
-                </tr>
-                <tr>
-                    <th>Path</th>
-                    <td>{{file.process_path}}</td>
-                </tr>
-            {% else %}
-                {% if file.process_name %}
-                <tr>
-                    <th>Process</th>
-                    <td>{{file.process_name}}</td>
-                </tr>
-                {% endif %}
-                {% if file.pid %}
-                <tr>
-                    <th>PID</th>
-                    <td>{{file.pid}}</td>
-                </tr>
-                {% endif %}
-                {% if file.process_path %}
-                <tr>
-                    <th>Path</th>
-                    <td>{{file.process_path}}</td>
-                </tr>
-                {% endif %}
-            {% endif %}
-            {% if file.timestamp %}
-                <tr>
-                    <th>PE timestamp</th>
-                    <td>{{file.timestamp}}</td>
-                </tr>
-            {% endif %}
-            <tr>
-                <th>MD5</th>
-                <td style="word-wrap: break-word;">{{file.md5}}</td>
-            </tr>
-            <tr>
-                <th>SHA1</th>
-                <td style="word-wrap: break-word;">{{file.sha1}}</td>
-            </tr>
-            <tr>
-                <th>SHA256</th>
-                <td style="word-wrap: break-word;">{{file.sha256}}</td>
-            </tr>
-            {% if file.sha3_384 %}
-            <tr>
-                <th>SHA3-384</th>
-                <td style="word-wrap: break-word;">{{file.sha3_384}}</td>
-            </tr>
-            {% endif %}
-            <tr>
-                <th>CRC32</th>
-                <td>{{file.crc32}}</td>
-            </tr>
-            <tr>
-                <th>Ssdeep</th>
-                <td style="word-wrap: break-word;">{{file.ssdeep}}</td>
-            </tr>
-            {% if file.tlsh %}
-            <tr>
-                <th>TLSH</th>
-                <td style="word-wrap: break-word;">{{file.tlsh}}</td>
-            </tr>
-            {% endif %}
-            <tr>
-                <th>Yara</th>
-                <td>
-                {% if file.yara %}
-                    <ul style="margin-bottom: 0;">
-                    {% for sign in file.yara %}
-                        <li>{{sign.name}} - {{sign.meta.description}}
-                        {% if sign.meta.author %}
-                            - Author: {{sign.meta.author}}
-                        {% endif %}
-                        </li>
-                    {% endfor %}
-                    </ul>
-                {% else %}
-                    None matched
-                {% endif %}
-                </td>
-            </tr>
-            <tr>
-                <th>CAPE Yara</th>
-                <td>
-                {% if file.cape_yara %}
-                    <ul style="margin-bottom: 0;">
-                    {% for sign in file.cape_yara %}
-                        <li>{{sign.name}} - 
-                        {% if sign.meta.cape_type %}
-                            {{sign.meta.cape_type}}
-                        {% elif sign.meta.description %}
-                            {{sign.meta.description}}
-                        {% endif %}
-                        {% if sign.meta.author %}
-                            - Author: {{sign.meta.author}}
-                        {% endif %}
-                        </li>
-                    {% endfor %}
-                    </ul>
-                {% else %}
-                    None matched
-                {% endif %}
-                </td>
-            </tr>
-            {% if file.dropdir %}
-            <tr>
-                <th></th>
-                <td><a href="{% url "file" "CAPE" id file.dropdir %}" class="btn btn-secondary btn-sm">Download</a>
-                </td>
-            </tr>
-            {% elif file.sha256 %}
-            <tr>
-                <th></th>
-                <td>
-                    <a href="{% url "file" "CAPE" id file.sha256 %}" class="btn btn-secondary btn-sm">Download</a>
-                    <a href="{% url "file" "CAPEZIP" id file.sha256 %}" class="btn btn-secondary btn-sm">Download zip</a>
-                    <a class="btn btn-secondary btn-sm" href="/submit/resubmit/{{file.sha256}}"><span class="fa fa-refresh" aria-hidden="true"></span> Submit file</a>
-                </td>
-            </tr>
-            {% endif %}
-        {% if file.flare_capa%}
-        <tr>
-            <th><p><a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#flare_capa_{{file.sha256}}" role="button" aria-expanded="false" aria-controls="flare_capa_{{file.sha256}}">FLARE CAPA</a></p></th>
-            <td>
-            <div class="collapse" id="flare_capa_{{file.sha256}}">
-                <div class="card card-body">
-                <!--Inspired by @snemes trick, code placed in web/views/templateatgs/analysis_tags.py-->
-                {% if file.flare_capa.CAPABILITY %}
-                    {{file.flare_capa|flare_capa_capability}}
-                {% endif %}
-
-                    {% if file.flare_capa.ATTCK %}
-                        {{file.flare_capa|flare_capa_attck}}
-                    {% endif %}
 
-                    {% if file.flare_capa.MBC %}
-                        {{file.flare_capa|flare_capa_mbc}}
-                    {% endif %}
-                    </div>
-                </div>
-            </td>
-        </tr>
+{% if CAPE.payloads %}
+    {% if settings.ZIPPED_DOWNLOAD_ALL and tab_name in 'dropped,procdump,CAPE' %}
+        <center><a href="{% url 'file' tab_name|add:'zipall' id '1' %}" class="btn btn-secondary btn-sm" data-bs-toggle="tooltip" title="Download password-protected file archive with all files"><span class="fas fa-file-archive"></span> <span class="fas fa-download"></span> Download All Files</a></center>
         </br>
-        {% else %}
-        <tr>
-            <th><p><a class="btn btn-secondary btn-sm" href="{% url "on_demand" "flare_capa" id "CAPE" file.sha256 %}" role="button">Generate CAPA</a></p></th>
-            <td></td>
-        </tr>
-        {% endif %}
-        {% if config.bingraph %}
-            {% if bingraph.enabled and bingraph.content|getkey:file.sha256 %}
-            <tr>
-                <th><p><a href="{% url "file_nl" "bingraph" id file.sha256 %}" class="btn btn-secondary btn-sm">Download graph</a></p></th>
-                <td>{{ bingraph.content|getkey:file.sha256|safe }} </td>
-            </tr>
-            {% else %}
-            <tr>
-                <th><p><a class="btn btn-secondary btn-sm" href="{% url "on_demand" "bingraph" id "CAPE" file.sha256 %}" role="button">Generate Bingraph</a></p></th>
-                <td></td>
-            </tr>
-            {% endif %}
-        {% endif %}
-        </table>
-    </div>
+    {% endif %}
+
+    {% for file in CAPE.payloads|dictsortreversed:"size" %}
+        {% include "analysis/generic/_file_info.html" %}
     {% endfor %}
 {% else %}
     <div class="alert alert-secondary"><b>Sorry!</b> No CAPE files.</div>
diff --git a/web/templates/analysis/CAPE/index_old.html b/web/templates/analysis/CAPE/index_old.html
deleted file mode 100644
index 4d98361518b..00000000000
--- a/web/templates/analysis/CAPE/index_old.html
+++ /dev/null
@@ -1,203 +0,0 @@
-{% load key_tags %}
-{% if CAPE %}
-    {% for file in CAPE %}
-        {% if file.cape_config %}
-        <div class="card ">
-            <table class="table table-striped  table-dark table-sm" style="table-layout: fixed;">
-                <tr>
-                    <th style="border-top: 0; width: 15%;">Type</th>
-                    <td style="border-top: 0; word-wrap: break-word;"><b>{{file.cape_name}} Config</b></td>
-                </tr>
-                {% for key, value in file.cape_config.items %}
-                    <tr>
-                        <th style="border-top: 0; width: 15%;"><b>{{key}}</b></th>
-                        <td style="border-top: 0; word-wrap: break-word;">
-                        {% for subvalue in value %}
-                            {% if subvalue|length > 1 %}
-                                {% for subsubvalue in subvalue %}
-                                    {% if subsubvalue|length > 1 %}
-                                        <div>{{subsubvalue}}</div>
-                                    {% else %}
-                                        {% if forloop.first %}
-                                            <div>{{subvalue}}</div>
-                                        {% endif %}
-                                    {% endif %}
-                                {% endfor %}
-                            {% else %}
-                                <div>{{subvalue}}</div>
-                            {% endif %}
-                        {% endfor %}
-                        </td>
-                    </tr>
-                {% endfor %}
-            </table>
-        </div>
-        </tr>
-        {% endif %}
-        {% if file.related_tasks %}
-            <div class="alert alert-success">The triggered CAPE job X can be viewed <a href="{% url "report" task_id %}">here</a></div>
-        {% endif %}
-    {% endfor %}
-    {% for file in CAPE %}
-        {% if not file.cape_config %}
-        <div class="card ">
-            <table class="table table-striped table-dark table-sm" style="table-layout: fixed;">
-                <tr>
-                    <th style="border-top: 0; width: 15%;">Type</th>
-                    <td style="border-top: 0; word-wrap: break-word;"><b>{{file.cape_type}}</b></td>
-                </tr>
-                <tr>
-                    <th>Size</th>
-                    <td>{{file.size}} bytes</td>
-                </tr>
-                {% if file.cape_type_code == 8 or file.cape_type_code == 9 %}
-                    <tr>
-                        <th>Virtual Address</th>
-                        <td>{{file.virtual_address}}</td>
-                    </tr>
-                {% endif %}
-                {% if file.cape_type_code == 5 %}
-                    <tr>
-                        <th>Section Handle</th>
-                        <td>{{file.section_handle}}</td>
-                    </tr>
-                {% endif %}
-                {% if file.cape_type_code == 3 or file.cape_type_code == 4 %}
-                    <tr>
-                        <th>Target Process</th>
-                        <td>{{file.target_process}}</td>
-                    </tr>
-                    <tr>
-                        <th>Target PID</th>
-                        <td>{{file.target_pid}}</td>
-                    </tr>
-                    <tr>
-                        <th>Target Path</th>
-                        <td>{{file.target_path}}</td>
-                    </tr>
-                    <tr>
-                        <th>Injecting Process</th>
-                        <td>{{file.process_name}}</td>
-                    </tr>
-                    <tr>
-                        <th>Injecting PID</th>
-                        <td>{{file.pid}}</td>
-                    </tr>
-                    <tr>
-                        <th>Path</th>
-                        <td>{{file.process_path}}</td>
-                    </tr>
-                {% else %}
-                    {% if file.process_name %}
-                    <tr>
-                        <th>Process</th>
-                        <td>{{file.process_name}}</td>
-                    </tr>
-                    {% endif %}
-                    {% if file.pid %}
-                    <tr>
-                        <th>PID</th>
-                        <td>{{file.pid}}</td>
-                    </tr>
-                    {% endif %}
-                    {% if file.process_path %}
-                    <tr>
-                        <th>Path</th>
-                        <td>{{file.process_path}}</td>
-                    </tr>
-                    {% endif %}
-                {% endif %}
-                {% if file.timestamp %}
-                    <tr>
-                        <th>PE timestamp</th>
-                        <td>{{file.timestamp}}</td>
-                    </tr>
-                {% endif %}
-                <tr>
-                    <th>MD5</th>
-                    <td style="word-wrap: break-word;">{{file.md5}}</td>
-                </tr>
-                <tr>
-                    <th>SHA1</th>
-                    <td style="word-wrap: break-word;">{{file.sha1}}</td>
-                </tr>
-                <tr>
-                    <th>SHA256</th>
-                    <td style="word-wrap: break-word;">{{file.sha256}}</td>
-                </tr>
-                <tr>
-                    <th>CRC32</th>
-                    <td>{{file.crc32}}</td>
-                </tr>
-                <tr>
-                    <th>Ssdeep</th>
-                    <td style="word-wrap: break-word;">{{file.ssdeep}}</td>
-                </tr>
-                <tr>
-                    <th>Yara</th>
-                    <td>
-                    {% if file.yara %}
-                        <ul style="margin-bottom: 0;">
-                        {% for sign in file.yara %}
-                            <li>{{sign.name}} - {{sign.meta.description}}
-                            {% if sign.meta.author %}
-                                - Author: {{sign.meta.author}}
-                            {% endif %}
-                            </li>
-                        {% endfor %}
-                        </ul>
-                    {% else %}
-                        None matched
-                    {% endif %}
-                    </td>
-                </tr>
-                <tr>
-                    <th>CAPE Yara</th>
-                    <td>
-                    {% if file.cape_yara %}
-                        <ul style="margin-bottom: 0;">
-                        {% for sign in file.cape_yara %}
-                            <li>{{sign.name}}
-                            {% if sign.meta.cape_type %}
-                                {{sign.meta.cape_type}}
-                            {% elif sign.meta.description %}
-                                {{sign.meta.description}}
-                            {% endif %}
-                            {% if sign.meta.author %}
-                                - Author: {{sign.meta.author}}
-                            {% endif %}
-                            </li>
-                        {% endfor %}
-                        </ul>
-                    {% else %}
-                        None matched
-                    {% endif %}
-                    </td>
-                </tr>
-                {% if file.dropdir %}
-                <tr>
-                    <th></th>
-                    <td><a href="{% url "file" "CAPE" id file.dropdir %}" class="btn btn-secondary btn-small">Download</a>
-                    </td>
-                </tr>
-                {% elif file.sha256 %}
-                <tr>
-                    <th></th>
-                    <td>
-                        <a href="{% url "file" "CAPE" id file.sha256 %}" class="btn btn-secondary btn-small">Download</a>
-                        <a href="{% url "file" "CAPEZIP" id file.sha256 %}" class="btn btn-secondary btn-small">Download zip</a>
-                        <a class="btn btn-secondary btn-small" href="/submit/resubmit/{{file.sha256}}"><span class="fa fa-refresh" aria-hidden="true"></span> Submit file</a>
-                    </td>
-                </tr>
-                {% endif %}
-            </table>
-            {% if bingraph.enabled and bingraph.content|getkey:file.sha256 %}
-                <h4>BinGraph <a href="{% url "file_nl" "bingraph" id file.sha256 %}" class="btn btn-secondary btn-small">Download graph</a></h4>
-                {{ bingraph.content|getkey:file.sha256|safe }}
-            {% endif %}
-        </div>
-        {% endif %}
-    {% endfor %}
-{% else %}
-    <div class="alert alert-info"><b>Sorry!</b> No CAPE files.</div>
-{% endif %}
diff --git a/web/templates/analysis/admin/index.html b/web/templates/analysis/admin/index.html
index faf74b4f2a9..f97790a6666 100644
--- a/web/templates/analysis/admin/index.html
+++ b/web/templates/analysis/admin/index.html
@@ -3,7 +3,7 @@
     <table class="table table-striped table-bordered">
         <tr>
             <th>Task ID</th>
-            <td>{{analysis.info.id}}</td>
+            <td>{{analysis.info.id}} <a href="{% url "remove" analysis.info.id %}" class="btn btn-secondary btn-sm" data-bs-toggle="tooltip" title="Delete task"><i class="fas fa-trash-alt"></i></a></td>
         </tr>
         {% if config.mongodb %}
         <tr>
@@ -24,15 +24,17 @@
             <th>Cuckoo release</th>
             <td>{{analysis.info.version}}</td>
         </tr>
-        <tr>
-            <th></th>
-            <td><a href="{% url "remove" analysis.info.id %}" class="btn btn-secondary btn-small">Delete</a></td>
-        </tr>
         {% if analysis.info.user_id %}
         <tr>
-            <th>Task submitted by user id:</th>
-            <td>{{analysis.info.user_id}}</td>
+            <th>Task created by user id: <a href="{% url "admin:auth_user_change" analysis.info.user_id  %}">{{analysis.info.user_id}}</a></th>
+            <td>
+                <a href="{% url "ban_user" analysis.info.user_id  %}" class="btn btn-danger btn-sm" data-bs-toggle="tooltip" title="Ban user"><i class="fas fa-user-lock"></i></a>
+                or
+                <a href="{% url "ban_all_user_tasks" analysis.info.user_id  %}" class="btn btn-danger btn-sm" data-bs-toggle="tooltip" title="Ban all task of this user"><i class="fas fa-tasks"></i><i class="fas fa-user-lock"></i></a>
+
+            </td>
         </tr>
+
         {% endif %}
     </table>
 </div>
diff --git a/web/templates/analysis/antivirus.html b/web/templates/analysis/antivirus.html
index d96f6de8140..cfb61b57693 100644
--- a/web/templates/analysis/antivirus.html
+++ b/web/templates/analysis/antivirus.html
@@ -1,5 +1,5 @@
 {% extends "base.html" %}
 {% block content %}
 
-{% include "analysis/static/_antivirus.html" %}
+{% include "analysis/generic/_virustotal.html" %}
 {% endblock %}
diff --git a/web/templates/analysis/behavior/_api_call.html b/web/templates/analysis/behavior/_api_call.html
index 340dd0a09a5..376562d224a 100644
--- a/web/templates/analysis/behavior/_api_call.html
+++ b/web/templates/analysis/behavior/_api_call.html
@@ -34,4 +34,4 @@
             time
         {% endif %}
     {% endif %}
-</td>
\ No newline at end of file
+</td>
diff --git a/web/templates/analysis/behavior/_processes.html b/web/templates/analysis/behavior/_processes.html
index a34a69bd5ad..4230d983a2d 100644
--- a/web/templates/analysis/behavior/_processes.html
+++ b/web/templates/analysis/behavior/_processes.html
@@ -38,6 +38,16 @@
                 typeof callback === 'function' && callback();
             }
         });
+
+        // add pagination if removed
+        $("#top_pagination").removeClass("d-none");
+        $("#bottom_pagination").removeClass("d-none");
+
+        // Reset font sizes
+        $(".badge").css("font-size", "100%");
+
+        // add font increase for current chunk
+        $("#badge_default_" + pid).css("font-size", "125%");
     }
     function show_tab(id, callback) {
         // First, see if tab is already active. If it is, just run the callback
@@ -73,7 +83,11 @@
         });
     }
     function load_filtered_chunk(pid, category, caller, tid) {
-        var encodedlist = ($("#apifilter_" + pid).val() == "") ? encodeURI("!null") : encodeURI($("#apifilter_" + pid).val());
+        // Trim leading and trailing spaces
+        var inputValue = $("#apifilter_" + pid).val().trim();
+        // Split input by commas, trim spaces, and join back with commas
+        var apis = inputValue.split(',').map(api => api.trim()).join(',');
+        var encodedlist = (apis === "") ? encodeURI("!null") : encodeURI(apis);
 
         $("#process_" + pid + " div.calltable").load("/analysis/filtered/{{id}}/" + pid + "/" + category + "/" + encodedlist + "/" + caller + "/" + tid + "/", function (data, status, xhr) {
             if (status == "error") {
@@ -87,6 +101,16 @@
                 });
             }
         });
+
+        // remove pagination
+        $("#top_pagination").addClass("d-none");
+        $("#bottom_pagination").addClass("d-none");
+
+        // Reset font sizes
+        $(".badge").css("font-size", "100%");
+
+        // add font increase for current chunk
+        $("#badge_" + category + "_" + pid).css("font-size", "125%");
     }
 </script>
 
@@ -111,32 +135,49 @@
                 {% if process.environ.CommandLine %}
                 <br />Command Line: <b>{{ process.environ.CommandLine }}</b>
                 {% endif %}
+                {% if process.environ.DllBase %}
+                    <br />Dll Image Base: <b>{{ process.environ.DllBase }}</b>,
+                {% endif %}
+                {% if process.environ.MainExeBase %}
+                    <br />Image Base: <b>{{ process.environ.MainExeBase }}</b>,
+                {% endif %}
+                {% if process.environ.MainExeSize %}
+                    Image Size: <b>{{ process.environ.MainExeSize }}</b>,
+                {% endif %}
+                {% if process.environ.Bitness %}
+                    <b>{{ process.environ.Bitness }}</b>
+                {% endif %}
             </div>
 
             <div>
                 <div style="text-align: center; position:relative;">
                     <div>
                         <div id="currcategory" value="default"></div>
-                        <a id="badge_default_{{process.process_id}}" class="badge badge-primary default" style="color:black;">default</a>
-                        <a id="badge_registry_{{process.process_id}}" class="badge registry" style="color:black;">registry</a>
-                        <a id="badge_filesystem_{{process.process_id}}" class="badge filesystem" style="color:black;">filesystem</a>
-                        <a id="badge_network_{{process.process_id}}" class="badge network" style="color:black;">network</a>
-                        <a id="badge_process_{{process.process_id}}" class="badge process" style="color:black;">process</a>
-                        <a id="badge_threading_{{process.process_id}}" class="badge threading" style="color:black;">threading</a>
-                        <a id="badge_services_{{process.process_id}}" class="badge services" style="color:black;">services</a>
-                        <a id="badge_device_{{process.process_id}}" class="badge device" style="color:black;">device</a>
-                        <a id="badge_sync_{{process.process_id}}" class="badge synchronization" style="color:black;">synchronization</a>
-                        <a id="badge_crypto_{{process.process_id}}" class="badge crypto" style="color:black;">crypto</a>
-                        <a id="badge_browser_{{process.process_id}}" class="badge browser" style="color:black;">browser</a>
-                        <a id="badge_all_{{process.process_id}}" class="badge badge-light all" style="color:black;">all</a>
+                        <a id="badge_default_{{process.process_id}}" class="badge badge-primary default fs-1" role="button" style="color:black;">default</a>
+                        <a id="badge_registry_{{process.process_id}}" class="badge registry" role="button" style="color:black;">registry</a>
+                        <a id="badge_filesystem_{{process.process_id}}" class="badge filesystem" role="button" style="color:black;">filesystem</a>
+                        <a id="badge_network_{{process.process_id}}" class="badge network" role="button" style="color:black;">network</a>
+                        <a id="badge_process_{{process.process_id}}" class="badge process" role="button" style="color:black;">process</a>
+                        <a id="badge_threading_{{process.process_id}}" class="badge threading" role="button" style="color:black;">threading</a>
+                        <a id="badge_services_{{process.process_id}}" class="badge services" role="button" style="color:black;">services</a>
+                        <a id="badge_device_{{process.process_id}}" class="badge device" role="button" style="color:black;">device</a>
+                        <a id="badge_synchronization_{{process.process_id}}" class="badge synchronization" role="button" style="color:black;">synchronization</a>
+                        <a id="badge_crypto_{{process.process_id}}" class="badge crypto" role="button" style="color:black;">crypto</a>
+                        <a id="badge_browser_{{process.process_id}}" class="badge browser" role="button" style="color:black;">browser</a>
+                        <a id="badge_all_{{process.process_id}}" class="badge badge-light all" role="button" style="color:black;">all</a>
                         <div class="form-group" style="display:inline-block; padding-left: 10px">
-                            <label class="sr-only" for="form_search">API Filter</label>
-                            <input type="text" class="form-control" id="apifilter_{{process.process_id}}" name="apifilter" size=25 placeholder="API(list) separated by ',' press all to show results " />
+                            <div class="input-group">
+                                <label class="sr-only" for="form_search">API Filter</label>
+                                <input type="text" class="form-control rounded-left" id="apifilter_{{process.process_id}}" name="apifilter" size=35 placeholder="API(list) separated by ',' Precede with '!' for exclusion" />
+                                <button class="btn btn-outline-secondary rounded-right" id="search_button_{{process.process_id}}" type="button">
+                                    <i class="fas fa-search"></i>
+                                </button>
+                            </div>
                         </div>
                     </div>
                 </div>
 
-                <a id="filter-toggle">
+                <a class="filter-toggle" id="filter_toggle_{{process.process_id}}">
                     <h4>Additional Filters</h4>
                 </a>
                 <div class="filter-box">
@@ -149,7 +190,7 @@ <h4>Additional Filters</h4>
                         <label class="sr-only" for="form_search">API Filter2</label>
                         <input type="text" class="form-control" id="tidfilter_{{process.process_id}}" name="tidfilter" size=25 placeholder="TID" />
                     </div>
-                    <button id="submit-filter" type="submit" class="btn btn-secondary">Filter</button>
+                    <button id="submit_filter_{{process.process_id}}" type="submit" class="btn btn-secondary">Filter</button>
                 </div>
             </div>
 
@@ -164,7 +205,7 @@ <h4>Additional Filters</h4>
                 $("#badge_threading_{{process.process_id}}").click(function() { load_filtered_chunk({{process.process_id}}, "threading", "null", 0); });
                 $("#badge_services_{{process.process_id}}").click(function() { load_filtered_chunk({{process.process_id}}, "services", "null", 0); });
                 $("#badge_device_{{process.process_id}}").click(function() { load_filtered_chunk({{process.process_id}}, "device", "null", 0); });
-                $("#badge_sync_{{process.process_id}}").click(function() { load_filtered_chunk({{process.process_id}}, "synchronization", "null", 0); });
+                $("#badge_synchronization_{{process.process_id}}").click(function() { load_filtered_chunk({{process.process_id}}, "synchronization", "null", 0); });
                 $("#badge_crypto_{{process.process_id}}").click(function() { load_filtered_chunk({{process.process_id}}, "crypto", "null", 0); });
                 $("#badge_browser_{{process.process_id}}").click(function() { load_filtered_chunk({{process.process_id}}, "browser", "null", 0); });
                 $("#badge_all_{{process.process_id}}").click(function() { load_filtered_chunk({{process.process_id}}, "all", "null", 0); });
@@ -176,28 +217,42 @@ <h4>Additional Filters</h4>
                     event.preventDefault();
                 });
                 // toggles additional filtering
-                $("#filter-toggle").click(function(){
+                $("#filter_toggle_{{process.process_id}}").click(function(){
                     $(".filter-box").toggle()
                 })
                 // submits filters to backend
-                $("#submit-filter").click(function(){
+                $("#submit_filter_{{process.process_id}}").click(function(){
                     var pid = {{process.process_id}};
                     var caller = ($("#callerfilter_"+pid).val() == "") ? "null" : $("#callerfilter_"+pid).val();
                     var tid = ($("#tidfilter_"+pid).val() == "") ? 0 : $("#tidfilter_"+pid).val();
                     console.log(caller, tid)
                     load_filtered_chunk(pid, "all", caller, tid);
                 })
+
+                // Filter on enter key in input field
+                $("#apifilter_{{process.process_id}}").keypress(function(e) {
+                    if (e.which == 13) {
+                        load_filtered_chunk({{process.process_id}}, "all", "null", 0);
+                    }
+                })
+
+                // Filter on search button click
+                $("#search_button_{{process.process_id}}").click(function() {
+                    var pid = {{process.process_id}};
+                    var apiFilterValue = $("#apifilter_" + pid).val();
+                    load_filtered_chunk(pid, "all", "null", 0);
+                })
             });
             </script>
 
-            <nav aria-label="Page navigation">
+            <nav id="top_pagination" aria-label="Page navigation">
                 <ul class="pagination justify-content-center">
                 </ul>
             </nav>
 
             <nav aria-label="Page navigation">
                 <div class="calltable"></div>
-                <ul class="pagination justify-content-center pagination_{{process.process_id}}">
+                <ul id="bottom_pagination" class="pagination justify-content-center pagination_{{process.process_id}}">
                 </ul>
             </nav>
 
diff --git a/web/templates/analysis/behavior/_search_results.html b/web/templates/analysis/behavior/_search_results.html
index 2afe9a4c664..d6c9282fd89 100644
--- a/web/templates/analysis/behavior/_search_results.html
+++ b/web/templates/analysis/behavior/_search_results.html
@@ -8,16 +8,16 @@
 <section id="search-results-section">
     <h4>Results</h4>
     <p style="text-align: center;">
-        <span class="badge.badge-pill network" style="color:black;">network</span>
-        <span class="badge.badge-pill filesystem" style="color:black;">filesystem</span>
-        <span class="badge.badge-pill registry" style="color:black;">registry</span>
-        <span class="badge.badge-pill process" style="color:black;">process</span>
-        <span class="badge.badge-pill threading" style="color:black;">threading</span>
-        <span class="badge.badge-pill services" style="color:black;">services</span>
-        <span class="badge.badge-pill device" style="color:black;">device</span>
-        <span class="badge.badge-pill synchronization" style="color:black;">synchronization</span>
-        <span class="badge.badge-pill crypto" style="color:black;">crypto</span>
-        <span class="badge.badge-pill browser" style="color:black;">browser</span>
+        <span class="badge network" style="color:black;">network</span>
+        <span class="badge filesystem" style="color:black;">filesystem</span>
+        <span class="badge registry" style="color:black;">registry</span>
+        <span class="badge process" style="color:black;">process</span>
+        <span class="badge threading" style="color:black;">threading</span>
+        <span class="badge services" style="color:black;">services</span>
+        <span class="badge device" style="color:black;">device</span>
+        <span class="badge synchronization" style="color:black;">synchronization</span>
+        <span class="badge crypto" style="color:black;">crypto</span>
+        <span class="badge browser" style="color:black;">browser</span>
     </p>
     {% if results %}
         <table class="table table-bordered" style="table-layout: fixed;">
diff --git a/web/templates/analysis/curtain.html b/web/templates/analysis/curtain.html
deleted file mode 100644
index 83ecfc3dd07..00000000000
--- a/web/templates/analysis/curtain.html
+++ /dev/null
@@ -1,79 +0,0 @@
-<!--
-__author__  = "Jeff White [karttoon] @noottrak"
-__email__   = "jwhite@paloaltonetworks.com"
-__version__ = "1.0.1"
-__date__    = "29NOV2017
--->
-
-<div class="card ">
-    <div class="container-fluid">
-        <div class="row">
-            <div class="col-md-12">
-                <div class="tabbable tabs">
-                    <ul class="nav nav-tabs" style="margin-bottom: 0;">
-                        <li class="nav-item active"><a class="nav-link" href="#curtain_orig_tab" data-toggle="tab">Original Events</a> </li>
-                        <li class="nav-item"><a class="nav-link" href="#curtain_altr_tab" data-toggle="tab">Altered Events</a></li>
-                        <li class="nav-item"><a class="nav-link" href="#curtain_filt_tab" data-toggle="tab">Filtered Events</a></li>
-                    </ul>
-                    <div class="tab-content">
-                        <div class="tab-pane fade show active" id="curtain_orig_tab">
-                             {% if analysis.curtain %}
-                                {% for pid,dict in analysis.curtain.items %}
-                                <div class="card ">
-                                    <div class="card-header">
-                                        PID: {{pid}} - {% for entry in dict.behaviors %}
-                                        <a class="btn btn-secondary">{{ entry }}</a>
-                                        {% endfor %}
-                                    </div>
-                                    <div class="card-body">
-                                        {% for entry in dict.events %} {% for event,message in entry.items %}
-                                        <b>Event: {{ event }}</b>
-                                        <pre>{{ message.original|linebreaksbr }}</pre> {% endfor %} {% endfor %}
-                                    </div>
-                                </div>
-                                {% endfor %}
-                            {% endif %}
-                        </div>
-                        <div class="tab-pane fade" id="curtain_altr_tab">
-                             {% if analysis.curtain %}
-                                {% for pid,dict in analysis.curtain.items %}
-                                <div class="card ">
-                                    <div class="card-header">
-                                        PID: {{pid}} - {% for entry in dict.behaviors %}
-                                        <a class="btn btn-secondary">{{ entry }}</a>
-                                        {% endfor %}
-                                    </div>
-                                    <div class="card-body">
-                                        {% for entry in dict.events %} {% for event,message in entry.items %} Event:
-                                        <b>{{ event }}</b>
-                                        <pre>{{ message.altered|linebreaksbr }}</pre> {% endfor %} {% endfor %}
-                                    </div>
-                                </div>
-                                {% endfor %}
-                            {% endif %}
-                        </div>
-                        <div class="tab-pane fade" id="curtain_filt_tab">
-                             {% if analysis.curtain %} {% for pid,dict in analysis.curtain.items %}
-                            <div class="card ">
-                                <div class="card-header">
-                                    PID: {{pid}} - {% for entry in dict.behaviors %}
-                                    <a class="btn btn-secondary">{{ entry }}</a>
-                                    {% endfor %}
-                                </div>
-                                <div class="card-body">
-                                    {% for entry in dict.filter %}
-                                    {% for event,message in entry.items %}
-                                    <b>Event: {{ event }}</b>
-                                    <pre>
-                                        {{ message|linebreaksbr }}
-                                    </pre> {% endfor %} {% endfor %}
-                                </div>
-                            </div>
-                            {% endfor %} {% endif %}
-                        </div>
-                    </div>
-                </div>
-            </div>
-        </div>
-    </div>
-</div>
diff --git a/web/templates/analysis/debugger/index.html b/web/templates/analysis/debugger/index.html
index 138000f7544..bdcdc9bdced 100644
--- a/web/templates/analysis/debugger/index.html
+++ b/web/templates/analysis/debugger/index.html
@@ -52,8 +52,8 @@ <h4>Debugger Output</h4>
     {% for process in debugger.processes %}
         {% for key, value in debugger_logs.items %}
             {% if key == process.process_id %}
-            <div class="tab-pane fade {% if forloop.parentloop.counter == 1 %} show active {% endif %}" id="dbg_{{key}}">
-                <div class="alert alert-danger center"><a class="btn btn-secondary btn-small" href="{% url "file" "debugger_log" id key %}">Download Log</a></div>
+            <div class="tab-pane fade {% if forloop.counter == 1 %} show active {% endif %}" id="dbg_{{key}}">
+                <div class="alert alert-danger center"><a class="btn btn-secondary btn-small" href="{% url "file" "debugger_log" id key %}"><i class="fas fa-download"></i> Log</a></div>
                 <pre>{{value}}</pre>
             </div>
             {% endif %}
diff --git a/web/templates/analysis/dropped/index.html b/web/templates/analysis/dropped/index.html
index 5f12b0d4084..4e338e047bc 100644
--- a/web/templates/analysis/dropped/index.html
+++ b/web/templates/analysis/dropped/index.html
@@ -1,145 +1,12 @@
 {% load key_tags %}
+
 {% if dropped|length > 0 %}
+    {% if settings.ZIPPED_DOWNLOAD_ALL and tab_name in 'dropped,procdump,CAPE' %}
+        <center><a href="{% url 'file' tab_name|add:'zipall' id '1' %}" class="btn btn-secondary btn-sm" data-bs-toggle="tooltip" title="Download password-protected file archive with all files"><span class="fas fa-file-archive"></span> <span class="fas fa-download"></span> Download All Files</a></center>
+        </br>
+    {% endif %}
     {% for file in dropped %}
-        <div class="panel panel-default">
-            <table class="table table-striped table-bordered" style="table-layout: fixed;">
-                <tr>
-                    <th style="border-top: 0; width: 15%;">File name</th>
-                    <td>
-                        {% for name in file.name %}
-                        <div style="border-top: 0; word-wrap: break-word;"><b>{{name|safe}}</b></div>
-                        {% endfor %}
-                    </td>
-                </tr>
-                <tr>
-                    <th>Associated Filenames</th>
-                    <td>
-                        {% for path in file.guest_paths %}
-                            <div>{{path}}</div>
-                        {% endfor %}
-                    </td>
-                </tr>
-                <tr>
-                    <th>File Size</th>
-                    <td>{{file.size}} bytes</td>
-                </tr>
-                <tr>
-                    <th>File Type</th>
-                    <td style="word-wrap: break-word;">{{file.type}}</td>
-                </tr>
-                <tr>
-                    <th>MD5</th>
-                    <td style="word-wrap: break-word;">{{file.md5}}</td>
-                </tr>
-                <tr>
-                    <th>SHA1</th>
-                    <td style="word-wrap: break-word;">{{file.sha1}}</td>
-                </tr>
-                <tr>
-                    <th>SHA256</th>
-                    <td style="word-wrap: break-word;">{{file.sha256}}</td>
-                </tr>
-                {% if file.sha3_384 %}
-                <tr>
-                    <th>SHA3-384</th>
-                    <td style="word-wrap: break-word;">{{file.sha3_384}}</td>
-                </tr>
-                {% endif %}
-                <tr>
-                    <th>CRC32</th>
-                    <td>{{file.crc32}}</td>
-                </tr>
-                {% if file.tlsh %}
-                <tr>
-                    <th>TLSH</th>
-                    <td style="word-wrap: break-word;">{{file.tlsh}}</td>
-                </tr>
-                {% endif %}
-                <tr>
-                    <th>Ssdeep</th>
-                    <td style="word-wrap: break-word;">{{file.ssdeep}}</td>
-                </tr>
-                {% if file.clamav %}
-                <tr>
-                    <th>ClamAV</th>
-                    <td>
-                        <ul style="margin-bottom: 0;">
-                        {% for sign in file.clamav %}
-                            <li>{{sign}}</li>
-                        {% endfor %}
-                        </ul>
-                    </td>
-                </tr>
-                {% endif %}
-                {% if file.yara %}
-               <tr>
-                    <th>Yara</th>
-                    <td>
-
-                        <ul style="margin-bottom: 0;">
-                        {% for sign in file.yara %}
-                            <li>{{sign.name}} - {{sign.meta.description}}</li>
-                        {% endfor %}
-                        </ul>
-                    </td>
-                </tr>
-                {% endif %}
-                {% if file.cape_yara %}
-                <tr>
-                    <th>CAPE Yara</th>
-                    <td>
-                        <ul style="margin-bottom: 0;">
-                        {% for sign in file.cape_yara %}
-                            <li>{{sign.name}} - {{sign.meta.cape_type}} - Author: {{sign.meta.author}}</li>
-                        {% endfor %}
-                        </ul>
-                    </td>
-                </tr>
-                {% endif %}
-                <tr>
-                    <th>VirusTotal</th>
-                    <td><a href="https://www.virustotal.com/en/file/{{file.sha256}}/analysis/">Search for Analysis</a></td>
-                </tr>
-                {% if file.dropdir %}
-                <tr>
-                    <th></th>
-                    <td><a href="{% url "file" "dropped" id file.dropdir %}" class="btn btn-secondary btn-sm">Download</a>
-                        {% if file.data %}
-                        &emsp;<a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#h_{{file.sha256}}">Display Text</a>
-                        {% endif %}
-                    </td>
-                </tr>
-                {% else %}
-                <tr>
-                    <th></th>
-                    <td>
-                        <a href="{% url "file" "dropped" id file.sha256 %}" class="btn btn-secondary btn-sm">Download</a>
-                        <a href="{% url "file" "droppedzip" id file.sha256 %}" class="btn btn-secondary btn-sm">Download ZIP</a>
-                        <a class="btn btn-secondary btn-sm" href="/submit/resubmit/{{file.sha256}}"><span class="fa fa-sync-alt" aria-hidden="true"></span> Submit file</a>
-                        {% if file.data %}
-                        &emsp;<a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#h_{{file.sha256}}">Display Text</a>
-                        {% endif %}
-                    </td>
-                    {% if config.vtupload %}
-                        {% if tlp != "Red" %}
-                        <td>
-                            <a class="btn btn-secondary btn-sm" href="{% url "vtupload" "dropped" id file.name file.sha256 %}">Submit to VirusTotal</a>
-                        </td>
-                        {% endif %}
-                    {% endif %}
-                </tr>
-                {% endif %}
-                {% if file.data %}
-                <tr id="h_{{file.sha256}}" class="collapse">
-                    <td colspan="2"><pre>{{file.data}}</pre></td>
-                </tr>
-                {% endif %}
-            </table>
-            {% if graphs.bingraph.enabled and graphs.bingraph.content|getkey:file.sha256 %}
-                <h4>BinGraph <a href="{% url "file" "bingraph" id file.sha256 %}" class="btn btn-secondary btn-sm">Download graph</a></h4>
-                {{ graphs.bingraph.content|getkey:file.sha256|safe }}
-            {% endif %}
-        </div>
+    {% include "analysis/generic/_file_info.html" %}
     {% endfor %}
 {% else %}
     <div class="alert alert-primary"><b>Sorry!</b> No dropped files.</div>
diff --git a/web/templates/analysis/generic/_capeyara.html b/web/templates/analysis/generic/_capeyara.html
new file mode 100644
index 00000000000..75a908122e4
--- /dev/null
+++ b/web/templates/analysis/generic/_capeyara.html
@@ -0,0 +1,50 @@
+<section id="static_analysis">
+    {% load key_tags %}
+    <div>
+        <h4>CAPE Yara Details</h4>
+        <p></p>
+        <div id="cape_yara_details">
+            {% for hit in file.cape_yara %}
+            <div class="card">
+                <div class="card-header">
+                    <h5>
+                        <a class="accordion-toggle" data-toggle="collapse" href="#{{hit.name}}"
+                            data-target="#{{hit.name}}" aria-expanded="false">
+                            {{hit.name}}</a>
+                    </h5>
+                </div>
+                <div id="{{hit.name}}" class="collapse">
+                    <div class="card-body">
+                        <table class="table table-striped table-bordered" style="table-layout: fixed;">
+                            {% if hit.strings %}
+                            <tr>
+                                <th style="border-top: 0; width: 15%;">Strings</th>
+                                <td>
+                                    <ul style="margin-bottom: 0;">
+                                        {% for string in hit.strings %}
+                                        <li>{{string}}</li>
+                                        {% endfor %}
+                                    </ul>
+                                </td>
+                            </tr>
+                            {% endif %}
+                            {% if hit.addresses %}
+                            <tr>
+                                <th style="border-top: 0; width: 15%;">String Name: Address</th>
+                                <td>
+                                    <ul style="margin-bottom: 0;">
+                                        {% for key, value in hit.addresses.items %}
+                                        <li>{{key}}: {{value}}</li>
+                                        {% endfor %}
+                                    </ul>
+                                </td>
+                            </tr>
+                            {% endif %}
+                        </table>
+                    </div>
+                </div>
+            </div>
+            {% endfor %}
+        </div>
+    </div>
+</section>
\ No newline at end of file
diff --git a/web/templates/analysis/generic/_dotnet.html b/web/templates/analysis/generic/_dotnet.html
new file mode 100644
index 00000000000..6892a44e887
--- /dev/null
+++ b/web/templates/analysis/generic/_dotnet.html
@@ -0,0 +1,92 @@
+<section id="static_analysis">
+    {% if file.dotnet %}
+        {% if file.dotnet.typerefs or file.dotnet.assemblyrefs or file.dotnet.assemblyinfo or file.dotnet.customattrs %}
+            <div>
+                <h4>Assembly Information</h4>
+                <div id="dotnet_assembly_information">
+                    <table class="table table-striped table-bordered" style="table-layout: fixed;">
+                        {% if file.dotnet.assemblyinfo %}
+                            <tr>
+                                <th style="width: 15%;">Name</th>
+                                <td>{{file.dotnet.assemblyinfo.name}}</td>
+                            </tr>
+                            <tr>
+                                <th style="width: 15%;">Version</th>
+                                <td>{{file.dotnet.assemblyinfo.version}}</td>
+                            </tr>
+                        {% endif %}
+                     </table>
+                </div>
+            </div>
+            <hr />
+        {% endif %}
+
+        {% if file.dotnet.assemblyrefs %}
+            <div>
+                <h4>Assembly References</h4>
+                <div id="dotnet_assembly_references">
+                    <table class="table table-striped table-bordered">
+                    <tr>
+                        <th>Name</th>
+                        <th>Version</th>
+                    </tr>
+                    {% for asm in file.dotnet.assemblyrefs %}
+                    <tr>
+                        <td>{{asm.name}}</td>
+                        <td>{{asm.version}}</td>
+                    </tr>
+                    {% endfor %}
+                    </table>
+                </div>
+            </div>
+            <hr />
+        {% endif %}
+
+        {% if file.dotnet.customattrs %}
+            <div>
+                <h4>Custom Attributes</h4>
+                <div id="dotnet_custom_attributes">
+                    <table class="table table-striped table-bordered">
+                    <tr>
+                        <th>Type</th>
+                        <th>Name</th>
+                        <th>Value</th>
+                    </tr>
+                    {% for attr in file.dotnet.customattrs %}
+                    <tr>
+                        <td>{{attr.type}}</td>
+                        <td>{{attr.name}}</td>
+                        <td>{{attr.value}}</td>
+                    </tr>
+                    {% endfor %}
+                    </table>
+                </div>
+            </div>
+            <hr />
+        {% endif %}
+
+        {% if file.dotnet.typerefs %}
+            <div>
+                <h4>Type References</h4>
+                <div id="dotnet_type_references">
+                    <table class="table table-striped table-bordered">
+                    <tr>
+                        <th>Assembly</th>
+                        <th>Type Name</th>
+                    </tr>
+                    {% for typeref in file.dotnet.typerefs %}
+                    <tr>
+                        <td>{{typeref.assembly}}</td>
+                        <td>{{typeref.typename}}</td>
+                    </tr>
+                    {% endfor %}
+                    </table>
+                </div>
+            </div>
+            <hr />
+        {% endif %}
+
+    {% else %}
+        Nothing to display.
+    {% endif %}
+</section>
diff --git a/web/templates/analysis/generic/_file_info.html b/web/templates/analysis/generic/_file_info.html
new file mode 100644
index 00000000000..85df4097d05
--- /dev/null
+++ b/web/templates/analysis/generic/_file_info.html
@@ -0,0 +1,467 @@
+{% load key_tags %}
+
+<div class="panel panel-default">
+    <table class="table table-striped table-bordered"
+        {% if tab_name == "static" %}
+            style="table-layout: fixed;"
+        {% else %}
+            style="table-layout: fixed; width: 50%;margin-left: auto;margin-right: auto;"
+        {% endif %}
+        >
+
+        {% if source_url %}
+            <tr>
+                <th style="border-top: 0; width: 15%;">File downloaded from</th>
+                <td style="border-top: 0; word-wrap: break-word;">{{source_url|escape}}</td>
+            </tr>
+            {% endif %}
+
+        {% if file.note %}
+            <tr>
+                <th style="border-top: 0; width: 15%;">Note</th>
+                <td style="border-top: 0; word-wrap: break-word;"><b>{{file.note}}</b></td>
+            </tr>
+        {% endif %}
+        {% if file.cape_type %}
+            <tr>
+                <th style="border-top: 0; width: 15%;">Type</th>
+                <td style="border-top: 0; word-wrap: break-word;"><b>{{file.cape_type}}</b></td>
+            </tr>
+        {% endif %}
+        <tr>
+            <th style="border-top: 0; width: 15%;">File Name</th>
+            <td>
+                {% for name in file.name|str2list %}
+                <div style="border-top: 0; word-wrap: break-word;"><b>{{name|safe}}</b></div>
+                {% endfor %}
+            </td>
+        </tr>
+        {% if file.type %}
+            <tr>
+                <th style="border-top: 0; width: 15%;">File Type</th>
+                <td style="border-top: 0; word-wrap: break-word;"><b>{{file.type}}</b></td>
+            </tr>
+        {% endif %}
+        {% if file.guest_paths and tab_name == "dropped" %}
+            <tr>
+                <th style="border-top: 0; width: 15%;">Associated Filenames</th>
+                <td style="border-top: 0; word-wrap: break-word;">
+                    {% for path in file.guest_paths|str2list %}
+                        <div>{{path}}</div>
+                    {% endfor %}
+                </td>
+            </tr>
+        {% endif %}
+        <tr>
+            <th style="border-top: 0; width: 15%;">File Size</th>
+            <td style="border-top: 0; word-wrap: break-word;"><b>{{file.size}} bytes</b></td>
+        </tr>
+        {% if file.module_path and file.process_path != file.module_path %}
+            <tr>
+                <th>Module Path</th>
+                <td>{{file.module_path}}</td>
+            </tr>
+        {% endif %}
+        {% if file.cape_type_code == 8 or file.cape_type_code == 9 %}
+                <tr>
+                    <th>Virtual Address</th>
+                    <td>{{file.virtual_address}}</td>
+                </tr>
+            {% endif %}
+            {% if file.cape_type_code == 5 %}
+                <tr>
+                    <th>Section Handle</th>
+                    <td>{{file.section_handle}}</td>
+                </tr>
+            {% endif %}
+            {% if file.cape_type_code == 3 or file.cape_type_code == 4 %}
+                <tr>
+                    <th>Target Process</th>
+                    <td>{{file.target_process}}</td>
+                </tr>
+                <tr>
+                    <th>Target PID</th>
+                    <td>{{file.target_pid}}</td>
+                </tr>
+                <tr>
+                    <th>Target Path</th>
+                    <td>{{file.target_path}}</td>
+                </tr>
+                <tr>
+                    <th>Injecting Process</th>
+                    <td>{{file.process_name}}</td>
+                </tr>
+                <tr>
+                    <th>Injecting PID</th>
+                    <td>{{file.pid}}</td>
+                </tr>
+                <tr>
+                    <th>Path</th>
+                    <td>{{file.process_path}}</td>
+                </tr>
+            {% else %}
+                {% if file.process_name %}
+                <tr>
+                    <th>Process</th>
+                    <td>{{file.process_name}}</td>
+                </tr>
+                {% endif %}
+                {% if file.pid %}
+                <tr>
+                    <th>PID</th>
+                    <td>{{file.pid}}</td>
+                </tr>
+                {% endif %}
+                {% if file.process_path %}
+                <tr>
+                    <th>Path</th>
+                    <td>{{file.process_path}}</td>
+                </tr>
+                {% endif %}
+            {% endif %}
+        {% if file.timestamp %}
+            <tr>
+                <th>PE timestamp</th>
+                <td style="word-wrap: break-word;">{{file.timestamp}}</td>
+            </tr>
+        {% endif %}
+        <tr>
+            <th>MD5</th>
+            <td style="word-wrap: break-word;">{{file.md5}}</td>
+        </tr>
+        <tr>
+            <th>SHA1</th>
+            <td style="word-wrap: break-word;">{{file.sha1}}</td>
+        </tr>
+        <tr>
+            <th>SHA256</th>
+            <td style="word-wrap: break-word;">{{file.sha256}}
+                <a href="https://www.virustotal.com/gui/file/{{file.sha256}}/" style="color: #e74c3c">[VT]</a>
+                <a href="https://mwdb.cert.pl/file/{{file.sha256}}" style="color: #e74c3c">[MWDB]</a>
+                <a href="https://bazaar.abuse.ch/sample/{{file.sha256}}/" style="color: #e74c3c">[Bazaar]</a>
+            </td>
+        </tr>
+        {% if file.sha3_384 %}
+        <tr>
+            <th>SHA3-384</th>
+            <td style="word-wrap: break-word;">{{file.sha3_384}}</td>
+        </tr>
+        {% endif %}
+        {% if file.rh_hash %}
+            <tr>
+                <th>RichHeader Hash</th>
+                <td style="word-wrap: break-word;">{{file.rh_hash}}</td>
+            </tr>
+        {% endif %}
+        <tr>
+            <th>CRC32</th>
+            <td>{{file.crc32}}</td>
+        </tr>
+        {% if file.tlsh %}
+        <tr>
+            <th>TLSH</th>
+            <td style="word-wrap: break-word;">{{file.tlsh}}</td>
+        </tr>
+        {% endif %}
+        <tr>
+            <th>Ssdeep</th>
+            <td style="word-wrap: break-word;">{{file.ssdeep}}</td>
+        </tr>
+        {% if file.clamav %}
+        <tr>
+            <th>ClamAV</th>
+            <td>
+                <ul style="margin-bottom: 0;">
+                {% for sign in file.clamav %}
+                    <li>{{sign}}</li>
+                {% endfor %}
+                </ul>
+            </td>
+        </tr>
+        {% endif %}
+        {% if file.yara %}
+        <tr>
+            <th>
+            {% if config.yara_detail %}
+                <a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#yara_{{file.sha256}}" role="button" aria-expanded="false" aria-controls="yara_{{file.sha256}}"  data-bs-toggle="tooltip" title="Display Yara details"><span class="fas fa-file-lines"></span> Yara</a>
+            {% else %}
+                Yara
+            {% endif %}
+            </th>
+            <td>
+                <ul style="margin-bottom: 0;">
+                {% for sign in file.yara %}
+                    <li>
+                    <a href="/analysis/search/yaraname:{{sign.name}}">{{sign.name}}</a>  - {{sign.meta.description}}
+                    {% if sign.meta.author %}
+                        - Author: {{sign.meta.author}}
+                    {% endif %}
+                    </li>
+                {% endfor %}
+                </ul>
+            </td>
+        </tr>
+        {% endif %}
+        {% if file.cape_yara %}
+        <tr>
+            <th>
+            {% if config.yara_detail %}
+                <a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#capeyara_{{file.sha256}}" role="button" aria-expanded="false" aria-controls="capeyara_{{file.sha256}}"  data-bs-toggle="tooltip" title="Display CAPE Yara details"><span class="fas fa-file-lines"></span> CAPE Yara</a>
+            {% else %}
+                CAPE Yara
+            {% endif %}
+            </th>
+            <td>
+                <ul style="margin-bottom: 0;">
+                {% for sign in file.cape_yara %}
+                    <li>
+                    <a href="/analysis/search/capeyara:{{sign.name}}">{{sign.name}}</a>
+                    {% if sign.meta.cape_type %} - {{sign.meta.cape_type}}
+                    {% elif sign.meta.description %} - {{sign.meta.description}}
+                    {% endif %}
+                    {% if sign.meta.author %} - Author: {{sign.meta.author}}{% endif %}
+                    </li>
+                {% endfor %}
+                </ul>
+            </td>
+        </tr>
+        {% endif %}
+        {% if file.trid %}
+        <tr>
+            <th>TriD</th>
+            <td>
+            <ul style="margin-top: 0;margin-bottom: 0;">
+                {% for str in file.trid %}
+                    <li>{{str}}</li>
+                {% endfor %}
+            </ul>
+            </td>
+        </tr>
+        {% endif %}
+
+        {% if file.die %}
+        <tr>
+            <th>Detect It Easy</th>
+            <td>
+            <ul style="margin-top: 0;margin-bottom: 0;">
+                {% for str in file.die %}
+                    <li>{{str}}</li>
+                {% endfor %}
+            </ul>
+            </td>
+        </tr>
+        {% endif %}
+
+        {% if file.dropdir %}
+        <tr>
+            <th></th>
+            <td><a href="{% url "file" tab_name id file.dropdir %}" class="btn btn-secondary btn-sm">Download</a></td>
+        </tr>
+        {% else %}
+        <tr>
+            <th>
+                {% if file.pe %}<a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#pe_{{file.sha256}}" role="button" aria-expanded="false" aria-controls="pe_{{file.sha256}}"  data-bs-toggle="tooltip" title="Display PE info"><span class="fas fa-file-lines"></span> PE</a>{% endif %}
+                {% if file.dotnet %}<a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#dotnet_{{file.sha256}}" role="button" aria-expanded="false" aria-controls="dotnet_{{file.sha256}}"  data-bs-toggle="tooltip" title="Display DotNet info"><span class="fas fa-file-lines"></span> DotNET</a>{% endif %}
+                {% if file.pdf %}<a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#pdf_{{file.sha256}}" role="button" aria-expanded="false" aria-controls="pdf_{{file.sha256}}"  data-bs-toggle="tooltip" title="Display PDF info"><span class="fas fa-file-lines"></span> PDF</a>{% endif %}
+                {% if file.lnk %}<a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#lnk_{{file.sha256}}" role="button" aria-expanded="false" aria-controls="lnk_{{file.sha256}}"  data-bs-toggle="tooltip" title="Display LNK info"><span class="fas fa-file-lines"></span> LNK</a>{% endif %}
+                {% if file.rdp %}<a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#rdp_{{file.sha256}}" role="button" aria-expanded="false" aria-controls="rdp_{{file.sha256}}"  data-bs-toggle="tooltip" title="Display RDP file info"><span class="fas fa-file-lines"></span> RDP</a>{% endif %}
+                {% if file.java %}<a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#java_{{file.sha256}}" role="button" aria-expanded="false" aria-controls="java_{{file.sha256}}"  data-bs-toggle="tooltip" title="Display Java info"><span class="fas fa-file-lines"></span> Java</a>{% endif %}
+                {% if file.office %}<a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#office_{{file.sha256}}" role="button" aria-expanded="false" aria-controls="office_{{file.sha256}}"  data-bs-toggle="tooltip" title="Display Office info"><span class="fas fa-file-lines"></span> Office</a>{% endif %}
+                {% if file.office.XLMMacroDeobfuscator %}<a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#xlmmacro_{{file.sha256}}" role="button" aria-expanded="false" aria-controls="xlmmacro_{{file.sha256}}"  data-bs-toggle="tooltip" title="Display XLM Macro"><span class="fas fa-file-lines"></span> XLM Macro</a>{% endif %}
+                <!--ToDo missed URL-->
+            </th>
+            <td>
+                {% if not config.zipped_download %}
+                    <a href="{% url "file" tab_name id file.sha256 %}" class="btn btn-secondary btn-sm" data-bs-toggle="tooltip" title="Download file"><span class="fas fa-download"></span></a>
+                {% endif %}
+                <a href="{% url "file" tab_name|add:"zip" id file.sha256 %}" class="btn btn-secondary btn-sm" data-bs-toggle="tooltip" title="Download password-protected file archive"><span class="fas fa-file-archive"></span> <span class="fas fa-download"></span></a>
+                <a class="btn btn-secondary btn-sm" href="/submit/resubmit/{{id}}/{{file.sha256}}" data-bs-toggle="tooltip" title="Re-submit file for analysis"><span class="fas fa-sync"></span> File</a>
+                {% if config.flare_capa %}
+                    {% if not file.flare_capa and on_demand.flare_capa %}
+                        <a class="btn btn-secondary btn-sm" href="{% url "on_demand" "flare_capa" id tab_name file.sha256 %}" role="button" data-bs-toggle="tooltip" title="Generate CAPA findings"><span class="fas fa-cogs"></span> CAPA</a>
+                    {% elif file.flare_capa %}
+                        <a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#flare_capa_{{file.sha256}}" role="button" aria-expanded="false" aria-controls="flare_capa_{{file.sha256}}" data-bs-toggle="tooltip" title="Display CAPA"><span class="fas fa-envelope-open-text"></span> FLARE CAPA</a>
+                    {% endif %}
+                {% endif %}
+                {% if config.strings %}
+                    {% if "strings" not in file %}
+                        <a class="btn btn-secondary btn-sm" href="{% url "on_demand" "strings" id tab_name file.sha256 %}" role="button" data-bs-toggle="tooltip" title="Generate strings"><span class="fas fa-cogs"></span> Strings</a>
+                    {% elif file.strings %}
+                        <a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#strings_{{file.sha256}}" role="button" aria-expanded="false" aria-controls="strings_{{file.sha256}}"  data-bs-toggle="tooltip" title="Display strings"><span class="fas fa-envelope-open-text"></span> Strings</a>
+                    {% endif %}
+                {% endif %}
+                {% if file.dotnet_strings %}
+                    <a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#dotnet_strings_{{file.sha256}}" role="button" aria-expanded="false" aria-controls="dotnet_strings_{{file.sha256}}"  data-bs-toggle="tooltip" title="Display strings"><span class="fas fa-envelope-open-text"></span> DotNet Strings</a>
+                {% endif %}
+                {% if config.floss %}
+                    {% if not file.floss %}
+                        <a class="btn btn-secondary btn-sm" href="{% url "on_demand" "floss" id tab_name file.sha256 %}" role="button" data-bs-toggle="tooltip" title="Generate floss strings"><span class="fas fa-cogs"></span> Floss</a>
+                    {% else %}
+                        <a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#floss_{{file.sha256}}" role="button" aria-expanded="false" aria-controls="floss_{{file.sha256}}"  data-bs-toggle="tooltip" title="Display floss strings"><span class="fas fa-envelope-open-text"></span> Floss</a>
+                    {% endif %}
+                {% endif %}
+                {% if config.bingraph %}
+                    {% if not graphs.bingraph.content|getkey:file.sha256 and on_demand.bingraph %}
+                    <a class="btn btn-secondary btn-sm" href="{% url "on_demand" "bingraph" id tab_name file.sha256 %}" role="button" data-bs-toggle="tooltip" title="Generate BinGraph"><span class="fas fa-cogs"></span> BinGraph</a>
+                    {% else %}
+                        <a class="btn btn-secondary btn-sm" href="{% url "file_nl" "bingraph" id file.sha256 %}" aria-expanded="false" aria-controls="bingraph_{{file.sha256}}"  title="Display Bingraph"><span class="fas fa-download"></span> BinGraph</a>
+                    {% endif %}
+                {% endif %}
+                <!--add type check-->
+                {% if graphs.vba2graph.enabled %}
+                    {% if not graphs.vba2graph.content|getkey:file.sha256 and on_demand.vba2graph %}
+                        <a class="btn btn-secondary btn-sm" href="{% url "on_demand" "vba2graph" id "static" file.sha256 %}" role="button" data-bs-toggle="tooltip" title="Generate vba2Graph"><span class="fas fa-cogs"></span> Vba2Graph</a>
+                    {% elif graphs.vba2graph.content|getkey:file.sha256 %}
+                        <a href="{% url "file_nl" "vba2graph" id file.sha256 %}" class="btn btn-secondary btn-sm"><span class="fas fa-download"> Vba2Graph</a>
+                    {% endif %}
+                {% endif %}
+                {% if config.virustotal and not file.virustotal and on_demand.virustotal %}
+                    <a class="btn btn-secondary btn-sm" href="{% url "on_demand" "virustotal" id tab_name file.sha256 %}" role="button" data-bs-toggle="tooltip" title="Fetch VirusTotal results"><span class="fas fa-cogs"></span> VirusTotal</a>
+                {% endif %}
+                {% if file.office and config.xlsdeobf and not file.office.XLMMacroDeobfuscator and on_demand.xlsdeobf %}
+                    <a class="btn btn-secondary btn-sm" href="{% url "on_demand" "xlsdeobf" id "static" file.sha256 %}" role="button" data-bs-toggle="tooltip" title="Run XLMMacroDeobfuscator"><span class="fas fa-cogs"></span><i class="far fa-file-excel"></i> XLMMacros</a>
+                {% endif %}
+                {% if config.vtupload and analysis.info.tlp != "Red" %}
+                    <a class="btn btn-secondary btn-sm" href="{% url "vtupload" tab_name id file.name file.sha256 %}"><span class="fas fa-exclamation-triangle"></span> <span class="fas fa-upload"></span> VirusTotal</a>
+                {% endif %}
+                {% if file.data %}
+                    <a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#text_{{file.sha256}}" role="button" aria-expanded="false" aria-controls="text_{{file.sha256}}"  data-bs-toggle="tooltip" title="Display text"><span class="fas fa-envelope-open-text"></span> Text</a>
+                {% endif %}
+                {% if file.decoded_files %}
+                    <a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#decoded_files_{{file.sha256}}" role="button" aria-expanded="false" aria-controls="decoded_files_{{file.sha256}}"  data-bs-toggle="tooltip" title="Display text"><span class="fas fa-envelope-open-text"></span> {{file.decoded_files_tool}}</a>
+                {% endif %}
+                {% if file.selfextract %}
+                    {% for name, details in file.selfextract.items %}
+                        <a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#selfextract_{{name}}" role="button" aria-expanded="false" aria-controls="selfextract_{{name}}"  data-bs-toggle="tooltip" title="Display extracted files"><span class="fas fa-archive"></span> {{name}} ({{details.extracted_files_time|floatformat:2}})</a>
+                    {% endfor %}
+                {% endif %}
+            </td>
+        </tr>
+        {% endif %}
+    </table>
+
+        {% if file.flare_capa %}
+            <tr>
+                <th></th><td>
+                <div class="collapse" id="flare_capa_{{file.sha256}}">
+                    <div>
+                    <!--Inspired by @snemes trick, code placed in web/views/templateatgs/analysis_tags.py-->
+                    {% if file.flare_capa.CAPABILITY or file.flare_capa.ATTCK or file.flare_capa.MBC %}
+                        {% if file.flare_capa.CAPABILITY %}
+                            {{ file.flare_capa|flare_capa_capability }}
+                        {% endif %}
+                        {% if file.flare_capa.ATTCK %}
+                            {{ file.flare_capa|flare_capa_attck }}
+                        {% endif %}
+                        {% if file.flare_capa.MBC %}
+                            {{ file.flare_capa|flare_capa_mbc }}
+                        {% endif %}
+                    {% else %}
+                        No results
+                    {% endif %}
+                    </div>
+                </div>
+            </td>
+            </tr>
+            </br>
+        {% endif %}
+        {% if graphs.vba2graph.enabled and graphs.vba2graph.content|getkey:file.sha256 %}
+            <tr><th></th>
+                <td>{{ graphs.vba2graph.content|getkey:file.sha256|safe }}</td>
+            </tr>
+        {% endif %}
+        {% if file.virustotal %}
+            <tr>
+                <th></th>
+                <td>{% include "analysis/generic/_virustotal.html" %}</td>
+            </tr>
+        {% endif %}<br>
+        {% if file.misp.event_link %}
+        <tr>
+            <th></th>
+            <td>{% include "analysis/generic/_misp.html" %}</td>
+        </tr>
+        {% endif %}
+        {% if file.strings %}
+            <tr>
+                <th></th><td>
+                <div class="collapse" id="strings_{{file.sha256}}">
+                    <div>
+                    {% for string in file.strings %}
+                        <div>{{string}}</div>
+                    {% endfor %}
+                    </div>
+                </div>
+            </td>
+            </tr>
+        {% endif %}
+        {% if file.dotnet_strings %}
+            <tr>
+                <th></th><td>
+                <div class="collapse" id="dotnet_strings_{{file.sha256}}">
+                    <div>
+                    {% for string in file.dotnet_strings %}
+                        <div>{{string}}</div>
+                    {% endfor %}
+                    </div>
+                </div>
+            </td>
+            </tr>
+        {% endif %}
+        {% if file.data %}
+            <tr>
+                <th></th><td>
+                <div class="collapse" id="text_{{file.sha256}}">
+                    <div>
+                    <pre>{{file.data|escape}}</pre>
+                    </div>
+                </div>
+                </td>
+            </tr>
+        {% endif %}
+        {% if file.decoded_files %}
+            <tr>
+                <th></th><td>
+                <div class="collapse" id="decoded_files_{{file.sha256}}">
+                    <div>
+                    <p>{{file.decoded_files|escape}}</p>
+                    </div>
+                </div>
+            </td>
+            </tr>
+        {% endif %}
+        {% if file.selfextract %}
+            {% for name, details in file.selfextract.items %}
+                <tr>
+                    <th></th><td>
+                    <div class="collapse" id="selfextract_{{name}}">
+                        <div>
+                            {% if details.password %}
+                            <tr>
+                                <th style="border-top: 0; width: 15%;">Archive password:</th>
+                                <td style="border-top: 0; word-wrap: break-word;"><b>{{details.password}}</b></td>
+                            </tr>
+                            {% endif %}
+                        {% for sub_file in details.extracted_files %}
+                            {% include "analysis/generic/_subfile_info.html" %}
+                        {% endfor %}
+                        </div>
+                    </div>
+                    </td>
+                </tr>
+            {% endfor %}
+            </br>
+        {% endif %}
+    {% if config.yara_detail and file.yara %} <div class="collapse" id="yara_{{file.sha256}}"> <div> {% include "analysis/generic/_yara.html" %}</div></div></br>{% endif %}
+    {% if config.yara_detail and file.cape_yara %} <div class="collapse" id="capeyara_{{file.sha256}}"> <div> {% include "analysis/generic/_capeyara.html" %}</div></div></br>{% endif %}
+    {% if file.pe %} <div class="collapse" id="pe_{{file.sha256}}"> <div> {% include "analysis/generic/_pe.html" %}</div></div></br>{% endif %}
+    {% if file.dotnet %} <div class="collapse" id="dotnet_{{file.sha256}}"> <div> {% include "analysis/generic/_dotnet.html" %}</div></div></br>{% endif %}
+    {% if file.pdf %} <div class="collapse" id="pdf_{{file.sha256}}"> <div> {% include "analysis/generic/_pdf.html" %}</div></div></br>{% endif %}
+    {% if file.lnk %} <div class="collapse" id="lnk_{{file.sha256}}"> <div> {% include "analysis/generic/_lnk.html" %}</div></div></br>{% endif %}
+    {% if file.rdp %} <div class="collapse" id="rdp_{{file.sha256}}"> <div> {% include "analysis/generic/_rdp.html" %}</div></div></br>{% endif %}
+    {% if file.java %} <div class="collapse" id="java_{{file.sha256}}"> <div> {% include "analysis/generic/_java.html" %}</div></div></br>{% endif %}
+    {% if file.office %} <div class="collapse" id="office_{{file.sha256}}"> <div> {% include "analysis/generic/_office.html" %}</div></div></br>{% endif %}
+    {% if file.office.XLMMacroDeobfuscator %} <div class="collapse" id="xlmmacro_{{file.sha256}}"> <div> {% include "analysis/generic/_xlmmacro.html" %}</div></div></br>{% endif %}
+    {% if file.floss %} <div class="collapse" id="floss_{{file.sha256}}"> <div> {% include "analysis/generic/_floss.html" %}</div></div></br>{% endif %}
+    {% if graphs.bingraph.enabled and graphs.bingraph.content|getkey:file.sha256 %}<center><td>{{ graphs.bingraph.content|getkey:file.sha256|safe }}</td></center></br>{% endif %}
+</div>
diff --git a/web/templates/analysis/generic/_floss.html b/web/templates/analysis/generic/_floss.html
new file mode 100644
index 00000000000..2e6982f0450
--- /dev/null
+++ b/web/templates/analysis/generic/_floss.html
@@ -0,0 +1,46 @@
+<section id="static_floss">
+    {% if file.floss %}
+        {% if file.floss.decoded_strings %}
+        <h4>Decoded Strings</h4>
+            <div class="well" style="font-family: monospace;">
+                {% for string in file.floss.decoded_strings %}
+                    <div>{{string}}</div>
+                {% endfor %}
+            </div>
+        {% endif %}
+
+        {% if file.floss.stack_strings %}
+        <h4>Stack Strings</h4>
+            <div class="well" style="font-family: monospace;">
+                {% for string in file.floss.stack_strings %}
+                    <div>{{string}}</div>
+                {% endfor %}
+            </div>
+        {% endif %}
+
+        {% if file.floss.tight_strings %}
+        <h4>Tight Strings</h4>
+            <div class="well" style="font-family: monospace;">
+                {% for string in file.floss.tight_strings %}
+                    <div>{{string}}</div>
+                {% endfor %}
+            </div>
+        {% endif %}
+
+        {% if file.floss.static_strings %}
+        <h4>Static Strings</h4>
+            <div class="well" style="font-family: monospace;">
+                {% for string in file.floss.static_strings %}
+                    <div>{{string}}</div>
+                {% endfor %}
+            </div>
+        {% endif %}
+
+        {% if file.floss.msg %}
+        <div class="well" style="font-family: monospace;">
+            <div>{{file.floss.msg}}</div>
+        </div>
+        {% endif %}
+
+    {% endif %}
+</section>
diff --git a/web/templates/analysis/generic/_java.html b/web/templates/analysis/generic/_java.html
new file mode 100644
index 00000000000..12a20021062
--- /dev/null
+++ b/web/templates/analysis/generic/_java.html
@@ -0,0 +1,7 @@
+<section id="static_java">
+    <div class="well" style="font-family: monospace;">
+        {% if file.java and file.java.decompiled %}
+            <div><pre>{{file.java.decompiled}}</pre></div>
+        {% endif %}
+    </div>
+</section>
diff --git a/web/templates/analysis/generic/_lnk.html b/web/templates/analysis/generic/_lnk.html
new file mode 100644
index 00000000000..b27bbf17472
--- /dev/null
+++ b/web/templates/analysis/generic/_lnk.html
@@ -0,0 +1,43 @@
+<section id="static_analysis">
+    {% if file.lnk %}
+        {% if file.lnk.flags %}
+        <div>
+            <h4>Flags</h4>
+            <div id="pe_information">
+                <table class="table table-striped table-bordered" style="table-layout: fixed;">
+                    <colgroup>
+                        <col width="150" />
+                        <col width="*" />
+                    </colgroup>
+                    {% if file.lnk.flags.relapath %}
+                    <tr>
+                        <td><strong>Icon</strong></td>
+                        <td>{{file.lnk.relapath}}</td>
+                    </tr>
+                    {% endif %}
+                    {% if file.lnk.flags.shellidlist %}
+                    <tr>
+                        <td><strong>CMD line</strong></td>
+                        <td>{{file.lnk.cmdline}}</td>
+                    </tr>
+                    {% endif %}
+                    {% if file.lnk.flags.icon %}
+                    <tr>
+                        <td><strong>Icon</strong></td>
+                        <td>{{file.lnk.icon}}</td>
+                    </tr>
+                    {% endif %}
+
+                    </tr>
+                </table>
+            </div>
+        </div>
+        <hr />
+        {% elif file.lnk.data %}
+        <p>{{file.lnk|force_escape}}</p>
+        {% endif %}
+
+    {% else %}
+        Nothing to display.
+    {% endif %}
+</section>
diff --git a/web/templates/analysis/generic/_office.html b/web/templates/analysis/generic/_office.html
new file mode 100644
index 00000000000..3cd8d976f37
--- /dev/null
+++ b/web/templates/analysis/generic/_office.html
@@ -0,0 +1,171 @@
+<section id="static_analysis">
+    {% load key_tags %}
+        {% if file.office %}
+            {% if file.mmbot %}
+                <div>
+                    <div id="mmbot_results">
+                        <h4>Malicious Macro Bot Results</h4>
+                        <table class="table table-striped table-bordered">
+                            <colgroup>
+                                <col width="250" />
+                                <col width="*" />
+                            </colgroup>
+                            {% for key, value in file.mmbot.items|dictsort:0 %}
+                                <tr>
+                                    <td>{{key}}</td>
+                                    <td>{{value}}</td>
+                                </tr>
+                            {% endfor %}
+                        </table>
+                    </div>
+                </div>
+            {% endif %}
+            {% if file.office.Metadata %}
+                {% if file.office.Metadata.SummaryInformation %}
+                <div>
+                    <div id="si_metadata">
+                        <h4>SummaryInformation Metadata</h4>
+                        <table class="table table-striped table-bordered">
+                            <colgroup>
+                                <col width="250" />
+                                <col width="*" />
+                            </colgroup>
+                            {% for key, value in file.office.Metadata.SummaryInformation.items|dictsort:0 %}
+                                <tr>
+                                    <td>{{key}}</td>
+                                    <td>{{value}}</td>
+                                </tr>
+                            {% endfor %}
+                        </table>
+                    </div>
+                </div>
+                <hr />
+                {% endif %}
+                {% if file.office.Metadata.DocumentSummaryInformation %}
+                <div>
+                    <div id="dsi_metadata">
+                        <h4>DocumentSummaryInformation Metadata</h4>
+                        <table class="table table-striped table-bordered">
+                            <colgroup>
+                                <col width="250" />
+                                <col width="*" />
+                            </colgroup>
+                            {% for key, value in file.office.Metadata.DocumentSummaryInformation.items|dictsort:0 %}
+                                <tr>
+                                    <td>{{key}}</td>
+                                    <td>{{value}}</td>
+                                </tr>
+                            {% endfor %}
+                        </table>
+                    </div>
+                </div>
+                <hr />
+                {% endif %}
+            {% endif %}
+            {% if file.office.Macro %}
+                {% if file.office.Macro.Analysis %}
+                    <div id="analysis_sigs">
+                        <h4>File Analysis (Signatures)</h4>
+                        {% for detection in file.office.Macro.Analysis %}
+                        <div>
+                            <div class="panel" id="accordion" style="margin-top: 20px;">
+                            <div class="card-header">
+                                <a class="accordion-toggle" data-parent="#analysis_sigs" data-toggle="collapse" href="#{{detection}}" aria-expanded="false"><i class="icon icon-cog"></i>{{detection}}</a>
+                            </div>
+                            <div id="{{detection}}" class="panel-collapse collapse" style="text-align: left;">
+                                <table class="table table-striped table-bordered">
+                                <colgroup>
+                                    <col width="200">
+                                    <col width="*">
+                                </colgroup>
+                                <th colspan="2">{{detection}}</th>
+                                {% for indicator, description in file.office.Macro.Analysis|getkey:detection %}
+                                    <tr>
+                                        <td>{{indicator}}</td>
+                                        <td>{{description}}</td>
+                                    </tr>
+                                {% endfor %}
+                                </table>
+                            </div>
+                            </div>
+                        {% endfor %}
+                    </div>
+                </div>
+                <hr />
+                {% endif %}
+                {% if file.office.Macro.Code and not file.office.XLMMacroDeobfuscator %}
+                <div>
+                    <div id="macro">
+                    <h4>Extracted Macros</h4>
+                    {% for macrodata in file.office.Macro.Code %}
+                    <table class="table table-striped table-bordered">
+                        <col style="width:20%">
+                        <col style="width:60%">
+                        <col style="width:20%">
+                        {% for name, code in file.office.Macro.Code|getkey:macrodata %}
+                        <tr>
+                            <td>VBA Filename</td>
+                            <td>{{name}}</td>
+                            <td><a class="accordion-toggle" data-toggle="collapse" href="#{{macrodata}}">Extracted Macro</a></td>
+                        </tr>
+                        </table>
+                        <div id="{{macrodata}}" class="collapse">
+                            <pre>{{code}}</pre>
+                        </div>
+                        {% endfor %}
+                    {% endfor %}
+                    </div>
+                </div>
+                {% endif %}
+            {% endif %}
+        {% endif %}
+        {% if file.office.rtf %}
+            <div>
+                <div id="si_metadata">
+                    <h4>RTF document details</h4>
+                    <table class="table table-striped table-bordered">
+                        {% for key, value in file.office.rtf.items %}
+                            <h5>Object ID: {{key}}</h5>
+                            <tr>
+                                <th width=10%>Filename</th>
+                                <td>Size</td>
+                                <th>Index</th>
+                                <td>Class Name</td>
+                                <td>Type Embed</td>
+                                <th>CVE</th>
+                            </tr>
+                            {% for block in value %}
+                                <tr>
+                                    {% if block.sha256 %}
+                                        <td><a href={% url "file" "rtf" id block.sha256 %} class="btn btn-secondary btn-small">{{block.filename}}</a></td>
+                                    {% else %}
+                                        <td>{{block.filename}}</td>
+                                    {% endif %}
+                                    <td>{{block.size}}</td>
+                                    <td>{{block.index}}</td>
+                                    <td>{{block.class_name}}</td>
+                                    <td>{{block.type_embed}}</td>
+                                    <td>{{block.CVE}}</td>
+                                </tr>
+                            {% endfor %}
+                        {% endfor %}
+                    </table>
+                </div>
+            </div>
+            <hr />
+        {% endif %}
+        {% if file.office.dde %}
+        <div id="si_metadata">
+        <table class="table table-striped table-bordered">
+            <colgroup>
+                <col width="200" />
+                <col width="*" />
+            </colgroup>
+            <tr>
+                <td><h4>DDE Detected</h4></td>
+                <td>{{file.dde}}</td>
+            </tr>
+        </table>
+        </div>
+{% endif %}
+</section>
diff --git a/web/templates/analysis/generic/_pdf.html b/web/templates/analysis/generic/_pdf.html
new file mode 100644
index 00000000000..700f19eed6b
--- /dev/null
+++ b/web/templates/analysis/generic/_pdf.html
@@ -0,0 +1,179 @@
+{% load pdf_tags %}
+{% load key_tags %}
+<section id="static_analysis">
+    {% if file.pdf %}
+        {% if file.pdf.Info %}
+        <div>
+            <h4>PDF Information</h4>
+            <div id="PDF_Info">
+                <table class="table table-striped table-bordered">
+                    <colgroup>
+                        <col width="250" />
+                        <col width="*" />
+                    </colgroup>
+                    {% if file.pdf.Info.Creator %}
+                        <tr>
+                            <th>Creator</th>
+                            <td><span class="mono">{{file.pdf.Info.Creator}}</span></td>
+                        </tr>
+                    {% endif %}
+                    {% if file.pdf.Info.Producer %}
+                        <tr>
+                            <th>Producer</th>
+                            <td><span class="mono">{{file.pdf.Info.Producer}}</span></td>
+                        </tr>
+                    {% endif %}
+                    {% if file.pdf.Info.Author %}
+                        <tr>
+                            <th>Author</th>
+                            <td><span class="mono">{{file.pdf.Info.Author}}</span></td>
+                        </tr>
+                    {% endif %}
+                    <tr>
+                        <th>Total Entropy</th>
+                        <td><span class="mono">{{file.pdf.Info|getkey:"Total Entropy"}}</span></td>
+                    </tr>
+                    <tr>
+                        <th>Entropy In Streams</th>
+                        <td><span class="mono">{{file.pdf.Info|getkey:"Entropy In Streams"}}</span></td>
+                    </tr>
+                    <tr>
+                        <th>Entropy Out of Streams</th>
+                        <td><span class="mono">{{file.pdf.Info|getkey:"Entropy Out Streams"}}</span></td>
+                    </tr>
+                    <tr>
+                        <th>Count of "%% EOF"</th>
+                        <td><span class="mono">{{file.pdf.Info|getkey:"Count %% EOF"}}</span></td>
+                    </tr>
+                    <tr>
+                        <th>PDF Header</th>
+                        <td><span class="mono">{{file.pdf.Info|getkey:"PDF Header"}}</span></td>
+                    </tr>
+                    <tr>
+                        <th>Data After EOF</th>
+                        <td><span class="mono">{{file.pdf.Info|getkey:"Data After EOF"}} bytes</span></td>
+                    </tr>
+                    <tr>
+                        <th>File Size</th>
+                        <td><span class="mono">{{file.size}} bytes</span></td>
+                    </tr>
+                    {% if file.pdf.Keywords|getkey:"/Page" %}
+                    <tr>
+                        <th>Number of Pages</th>
+                        <td><span class="mono">{{file.pdf.Keywords|getkey:"/Page"}}</span></td>
+                    </tr>
+                    {% endif %}
+                </table>
+            </div>
+        </div>
+        <hr />
+        {% endif %}
+
+        {% if file.pdf.Dates %}
+        <div>
+            <h4>PDF Date(s)</h4>
+            <div id="date">
+                <table class="table table-striped table-bordered">
+                    <tr>
+                        <th>Name</th>
+                        <th>Value</th>
+                    </tr>
+                    {% for date in file.pdf.Dates %}
+                    <tr>
+                       <td>{{date.name}}</td>
+                       <td>{{date.value|datefmt}}</td>
+                    </tr>
+                    {% endfor %}
+                </table>
+            </div>
+        </div>
+        <hr />
+        {% endif %}
+
+        {% if file.pdf.Keywords %}
+        <div>
+            <h4>Keyword Counts</h4>
+            <div id="keywords">
+                <table class="table table-striped table-bordered">
+                    <colgroup>
+                        <col width="250" />
+                        <col width="*" />
+                    </colgroup>
+                    <tr>
+                        <th>Keyword</th>
+                        <th>Count</th>
+                    </tr>
+                    {% for keyword, count in file.pdf.Keywords.items %}
+                    <tr>
+                        <td>{{keyword}}</td>
+                        <td>{{count}}</td>
+                    </tr>
+                    {% endfor %}
+                </table>
+            </div>
+        </div>
+        <hr />
+        {% endif %}
+        {% if file.pdf.Annot_URLs %}
+        <div>
+            <h4>Link Annotation URLs</h4>
+            <div class="card card-body">
+                {% for url in file.pdf.Annot_URLs %}
+                    {{url}}<br />
+                {% endfor %}
+            </div>
+        </div>
+        {% endif %}
+        {% if file.pdf.JS_URLs %}
+        <div>
+            <h4>Javascript URLs</h4>
+            <div class="card card-body">
+                {% for url in file.pdf.JS_URLs %}
+                    {{url}}<br />
+                {% endfor %}
+            </div>
+        </div>
+        {% endif %}
+        {% if file.pdf.JSStreams %}
+        <div>
+            <h4>Javascript Streams</h4>
+            <div id="objects">
+                {% for obj in file.pdf.JSStreams %}
+                <table class="table table-striped table-bordered">
+                <colgroup>
+                    <col width="250" />
+                    <col width="*" />
+                </colgroup>
+                <tr>
+                    <td>Object ID</td>
+                    <td>{{obj|getkey:"Object ID"}}</td>
+                </tr>
+                <tr>
+                    <td>Size</td>
+                    {% if obj.Size == 1 %}
+                    <td>{{obj.Size}} byte</td>
+                    {% else %}
+                    <td>{{obj.Size}} bytes</td>
+                    {% endif %}
+                </tr>
+                <tr>
+                    <td>Offset</td>
+                    <td>{{obj.Offset}}</td>
+                </tr>
+                <tr>
+                    <td>Data</td>
+                    <td><a class="accordion-toggle" data-toggle="collapse" href="#JSStream_{{obj|getkey:'Object ID'}}_Data">Data Extracted</a></td>
+                </tr>
+                </table>
+                <div id="JSStream_{{obj|getkey:'Object ID'}}_Data" class="collapse">
+                    <pre>{{obj.Data|linebreaksbr}}</pre>
+                </div>
+                {% endfor %}
+            </div>
+        </div>
+        {% endif %}
+
+    {% else %}
+        Nothing to display.
+    {% endif %}
+</section>
diff --git a/web/templates/analysis/generic/_pe.html b/web/templates/analysis/generic/_pe.html
new file mode 100644
index 00000000000..80f9958cc4a
--- /dev/null
+++ b/web/templates/analysis/generic/_pe.html
@@ -0,0 +1,440 @@
+<section id="static_analysis">
+    {% load key_tags %}
+    {% if file.pe %}
+            <div>
+                <h4>PE Information</h4>
+                <div id="pe_information">
+                    <table class="table table-striped table-bordered" style="table-layout: fixed;">
+                        {% if file.pe.imagebase %} <th style="width: 5%;">Image Base</th> {% endif %}
+                        {% if file.pe.entrypoint %} <th style="width: 5%;">Entry Point</th> {% endif %}
+                        {% if file.pe.reported_checksum %} <th style="width: 10%;">Reported Checksum</th> {% endif %}
+                        {% if file.pe.actual_checksum %} <th style="width: 10%;">Actual Checksum</th> {% endif %}
+                        {% if file.pe.osversion %} <th style="width: 10%;">Minimum OS Version</th> {% endif %}
+                        {% if file.pe.pdbpath %} <th style="width: 15%;">PDB Path</th> {% endif %}
+                        {% if file.pe.timestamp %} <th style="width: 10%;">Compile Time</th> {% endif %}
+                        {% if file.pe.imphash %} <th style="width: 15%;">Import Hash</th> {% endif %}
+                        {% if file.pe.icon %} <th style="width: 5%;">Icon</th>{% endif %}
+                        {% if file.pe.icon_hash %} <th style="width: 15%;">Icon Exact Hash</th> {% endif %}
+                        {% if file.pe.icon_fuzzy %} <th style="width: 15%;">Icon Similarity Hash</th> {% endif %}
+                        {% if file.pe.icon_dhash %} <th style="width: 10%;">Icon DHash</th> {% endif %}
+                        {% if file.pe.exported_dll_name %} <th style="width: 15%;">Exported DLL Name</th> {% endif %}
+
+                        <tr>
+                            {% if file.pe.imagebase %}
+                            <td>{{file.pe.imagebase}}</td>
+                            {% endif %}
+                            {% if file.pe.entrypoint %}
+                            <td>{{file.pe.entrypoint}}</td>
+                            {% endif %}
+                            {% if file.pe.reported_checksum %}
+                            <td>{{file.pe.reported_checksum}}</td>
+                            {% endif %}
+                            {% if file.pe.actual_checksum %}
+                            <td>{{file.pe.actual_checksum}}</td>
+                            {% endif %}
+                            {% if file.pe.osversion %}
+                            <td>{{file.pe.osversion}}</td>
+                            {% endif %}
+                            {% if file.pe.pdbpath %}
+                            <td>{{file.pe.pdbpath}}</td>
+                            {% endif %}
+                            {% if file.pe.timestamp %}
+                            <td>{{file.pe.timestamp}}</td>
+                            {% endif %}
+                            {% if file.pe.imphash %}
+                            <td>{{file.pe.imphash}}</td>
+                            {% endif %}
+                            {% if file.pe.icon %}
+                            <td><img src="data:image/jpeg;base64,{{file.pe.icon}}" width="32" height="32" /></td>
+                            {% endif %}
+                            {% if file.pe.icon_hash %}
+                            <td>{{file.pe.icon_hash}}</td>
+                            {% endif %}
+                            {% if file.pe.icon_fuzzy %}
+                            <td>{{file.pe.icon_fuzzy}}</td>
+                            {% endif %}
+                            {% if file.pe.icon_dhash %}
+                            <td>{{file.pe.icon_dhash}}</td>
+                            {% endif %}
+                            {% if file.pe.exported_dll_name %}
+                            <td>{{file.pe.exported_dll_name}}</td>
+                            {% endif %}
+                        </tr>
+                     </table>
+                </div>
+            </div>
+            <hr />
+        {% if file.pe.versioninfo %}
+            <div>
+                <h4>Version Infos</h4>
+                <div id="pe_versioninfo">
+                    <table class="table table-striped table-bordered">
+                        <colgroup>
+                            <col width="150" />
+                            <col width="*" />
+                        </colgroup>
+                        {% for info in file.pe.versioninfo %}
+                        {% if info.name %}
+                            <tr>
+                                <th>{{info.name}}</th>
+                                <td><span class="mono">{{info.value}}</span></td>
+                            </tr>
+                        {% endif %}
+                        {% endfor %}
+                    </table>
+                </div>
+            </div>
+            <hr />
+        {% endif %}
+        {% if file.pe.peid_signatures%}
+        <div>
+            <h4>PEiD Signatures</h4>
+            <div id="peid_signatures">
+                <table class="table table-striped table-bordered">
+                {% for sig in file.pe.peid_signatures %}
+                    <tr><td>{{sig}}</td></tr>
+                {% endfor %}
+                </table>
+            </div>
+        </div>
+        <hr />
+        {% endif %}
+        {% if file.pe.sections %}
+            <div>
+                <h4>Sections</h4>
+                <div id="pe_sections">
+                    <table class="table table-striped table-bordered">
+                        <tr>
+                            <th>Name</th>
+                            <th>RAW Address</th>
+                            <th>Virtual Address</th>
+                            <th>Virtual Size</th>
+                            <th>Size of Raw Data</th>
+                            <th>Characteristics</th>
+                            <th>Entropy</th>
+                        </tr>
+                        {% for section in file.pe.sections %}
+                            <tr>
+                                <td>{{section.name}}</td>
+                                <td>{{section.raw_address}}</td>
+                                <td>{{section.virtual_address}}</td>
+                                <td>{{section.virtual_size}}</td>
+                                <td>{{section.size_of_data}}</td>
+                                <td>{{section.characteristics}}</td>
+                                <td>{{section.entropy}}</td>
+                            </tr>
+                        {% endfor %}
+                </table>
+            </div>
+        </div>
+        <hr />
+        {% endif %}
+
+        {% if file.pe.overlay %}
+        <div>
+            <h4>Overlay</h4>
+            <div id="pe_overlay">
+                <table class="table table-striped table-bordered">
+                    <colgroup>
+                        <col width="150" />
+                        <col width="*" />
+                    </colgroup>
+                    <tr>
+                        <td><strong>Offset</strong></td>
+                        <td>{{file.pe.overlay.offset}}</td>
+                    </tr>
+                    <tr>
+                        <td><strong>Size</strong></td>
+                        <td>{{file.pe.overlay.size}}</td>
+                    </tr>
+                    </table>
+                </div>
+            </div>
+            <hr />
+        {% endif %}
+
+        {% if file.pe.resources %}
+        <div class="card">
+                <div class="card-header">
+                    <h5 class="mb-0">
+                    <button class="btn btn-link" data-toggle="collapse" href="#pe_resources" data-target="#pe_resources_{{file.sha256}}" aria-expanded="false">
+                        <strong>Resources</strong></a>
+                    </button>
+                    </h5>
+                </div>
+
+                <div id="pe_resources_{{file.sha256}}" class="collapse">
+                    <div class="card-body">
+                        <table class="table table-striped table-bordered">
+                            <tr>
+                                <th>Name</th>
+                                <th>Offset</th>
+                                <th>Size</th>
+                                <th>Language</th>
+                                <th>Sub-language</th>
+                                <th>Entropy</th>
+                                <th>File type</th>
+                            </tr>
+                            {% for section in file.pe.resources %}
+                                <tr>
+                                    <td>{{section.name}}</td>
+                                    <td>{{section.offset}}</td>
+                                    <td>{{section.size}}</td>
+                                    <td>{{section.language}}</td>
+                                    <td>{{section.sublanguage}}</td>
+                                    <td>{{section.entropy}}</td>
+                                    <td>{{section.filetype}}</td>
+                                </tr>
+                            {% endfor %}
+                        </table>
+                    </div>
+                </div>
+        </div>
+        <hr />
+        {% endif %}
+
+        {% if file.pe.imports %}
+        <div>
+            <h4>Imports</h4>
+            {% for dll, library in file.pe.imports.items %}
+            <div class="card">
+                <div class="card-header">
+                    <h5 class="mb-0">
+                    <button class="btn btn-link" data-toggle="collapse" href="#{{dll}}" data-target="#{{dll}}" aria-expanded="false">
+                        <strong>{{dll}}</strong></a>
+                    </button>
+                    </h5>
+                </div>
+                <div id="{{dll}}" class="collapse">
+                    <div class="card-body">
+                        <table class="table table-striped table-bordered table-dark">
+                            <tr>
+                                <th>Name</th>
+                                <th>Address</th>
+                            </tr>
+                        <div><span class="mono"><a href="https://docs.microsoft.com/en-us/search/?terms={{function.name}}">{{function.name}}</a> {{function.address}}</span></div>
+                            {% for function in library.imports %}
+                                <tr>
+                                    <td><a href="https://docs.microsoft.com/en-us/search/?terms={{function.name}}">{{function.name}}</a></td>
+                                    <td>{{function.address}}</td>
+                                </tr>
+                            {% endfor %}
+                        </table>
+                    </div>
+                </div>
+            </div>
+            {% endfor %}
+        </div>
+        {% endif %}
+        <hr />
+
+        {% if file.pe.exports %}
+            <div>
+                <h4>Exports</h4>
+                <div id="pe_exports">
+                    <table class="table table-striped table-bordered table-dark">
+                        <tr>
+                            <th>Name</th>
+                            <th>Address</th>
+                            <th>Ordinal</th>
+                        </tr>
+                        {% for export in file.pe.exports %}
+                            <tr>
+                                <td>{{export.name}}</td>
+                                <td>{{export.address}}</td>
+                                <td>{{export.ordinal}}</td>
+                            </tr>
+                        {% endfor %}
+                    </table>
+                </div>
+            </div>
+        {% endif %}
+
+        {% if file.pe.digital_signers %}
+            <div class="card-header">
+                <center><a class="accordion-toggle" data-toggle="collapse" aria-expanded="false" href="#pe_digital_signers">Digital Signers</a></center>
+            </div>
+            <hr />
+            <div id="pe_digital_signers" class="collapse" style="text-align: left;">
+                <div id="digital_signers">
+                    {% for cert in file.pe.digital_signers %}
+                    <table class="table table-striped table-bordered">
+                        <colgroup>
+                            <col width="250" />
+                            <col width="*" />
+                        </colgroup>
+                        {% if cert.subject_commonName %}
+                            <tr>
+                                <th>Certificate Common Name</th>
+                                <td>{{cert.subject_commonName}}</td>
+                            </tr>
+                        {% endif %}
+                        {% if cert.subject_commonName %}
+                        <tr>
+                            <th>Subject Organization Name</th>
+                            <td>{{cert.subject_commonName}}</td>
+                        </tr>
+                        {% endif %}
+                        {% if cert.subject_organizationalUnitName %}
+                        <tr>
+                            <th>Subject Organization Unit Name</th>
+                            <td>{{cert.subject_organizationalUnitName}}</td>
+                        </tr>
+                        {% endif %}
+                        {% if cert.subject_streetAddress %}
+                        <tr>
+                            <th>Subject Street Address</th>
+                            <td>{{cert.subject_streetAddress}}</td>
+                        </tr>
+                        {% endif %}
+                        {% if cert.subject_localityName %}
+                        <tr>
+                            <th>Subject Locality</th>
+                            <td>{{cert.subject_localityName}}</td>
+                        </tr>
+                        {% endif %}
+                        {% if cert.subject_stateOrProvinceName %}
+                        <tr>
+                            <th>Subject State or Province</th>
+                            <td>{{cert.subject_stateOrProvinceName}}</td>
+                        </tr>
+                        {% endif %}
+                        {% if cert.subject_postalCode %}
+                        <tr>
+                            <th>Subject Postal Code</th>
+                            <td>{{cert.subject_postalCode}}</td>
+                        </tr>
+                        {% endif %}
+                        {% if cert.subject_countryName %}
+                        <tr>
+                            <th>Subject Country</th>
+                            <td>{{cert.subject_countryName}}</td>
+                        </tr>
+                        {% endif %}
+                        {% if cert.issuer_commonName %}
+                        <tr>
+                            <th>Issuer Common Name</th>
+                            <td>{{cert.issuer_commonName}}</td>
+                        </tr>
+                        {% endif %}
+                        {% if cert.issuer_organizationName %}
+                        <tr>
+                            <th>Issuer Organization Name</th>
+                            <td>{{cert.issuer_organizationName}}</td>
+                        </tr>
+                        {% endif %}
+                        {% if cert.issuer_organizationalUnitName %}
+                        <tr>
+                            <th>Issuer Organization Unit Name</th>
+                            <td>{{cert.issuer_organizationalUnitName}}</td>
+                        </tr>
+                        {% endif %}
+                        {% if cert.issuer_localityName %}
+                        <tr>
+                            <th>Issuer Locality</th>
+                            <td>{{cert.issuer_localityName}}</td>
+                        </tr>
+                        {% endif %}
+                        {% if cert.issuer_stateOrProvinceName %}
+                        <tr>
+                            <th>Issuer State or Province</th>
+                            <td>{{cert.issuer_stateOrProvinceName}}</td>
+                        </tr>
+                        {% endif %}
+                        {% if cert.issuer_countryName %}
+                        <tr>
+                            <th>Issuer Country</th>
+                            <td>{{cert.issuer_countryName}}</td>
+                        </tr>
+                        {% endif %}
+                        {% if cert.serial_number %}
+                        <tr>
+                            <th>Serial Number</th>
+                            <td>{{cert.serial_number}}</td>
+                        </tr>
+                        {% endif %}
+                        {% if cert.sha256_fingerprint %}
+                        <tr>
+                            <th>SHA256 Fingerprint</th>
+                            <td>{{cert.sha256_fingerprint}}</td>
+                        </tr>
+                        {% endif %}
+                        {% if cert.sha1_fingerprint %}
+                        <tr>
+                            <th>SHA1 Fingerprint</th>
+                            <td>{{cert.sha1_fingerprint}}</td>
+                        </tr>
+                        {% endif %}
+                        {% if cert.md5_fingerprint %}
+                        <tr>
+                            <th>MD5 Fingerprint</th>
+                            <td>{{cert.md5_fingerprint}}</td>
+                        </tr>
+                        {% endif %}
+                        {% if cert.not_before %}
+                        <tr>
+                            <th>Not valid before</th>
+                            <td>{{cert.not_before}}</td>
+                        </tr>
+                        {% endif %}
+                        {% if cert.not_after %}
+                        <tr>
+                            <th>Not valid after</th>
+                            <td>{{cert.not_after}}</td>
+                        </tr>
+                        {% endif %}
+                    {% endfor %}
+                    </table>
+                </div>
+            {% if file.pe.guest_signers.aux_signers %}
+            <div>
+                <h4>Microsoft Certificate Validation (Sign Tool)</h4>
+                <div id="digital_signers_validation">
+                    <table class="table table-striped table-bordered">
+                        <tr>
+                            <th width="20%">SHA1</th>
+                            <th width="20%">Timestamp</th>
+                            <th width="5%">Valid</th>
+                            <th width="55%">Error</th>
+                        </tr>
+                        <tr>
+                            <td>{{file.pe.guest_signers.aux_sha1}}</td>
+                            <td>{{file.pe.guest_signers.aux_timestamp}}</td>
+                            {% if file.pe.guest_signers.aux_valid %}
+                            <td><center><span class="badge badge-success">Yes</span></center></td>
+                            <td>None</td>
+                            {% else %}
+                            <td><center><span class="badge badge-danger">No</span></center></td>
+                            <td>{{file.pe.guest_signers.aux_error_desc}}</td>
+                            {% endif %}
+                        </tr>
+                    </table>
+                    <table class="table table-striped table-bordered">
+                        <tr>
+                            <th><b>Chain</b></th>
+                            <th><b>Issued to</b></th>
+                            <th><b>Issued by</b></th>
+                            <th><b>Expires</b></th>
+                            <th><b>SHA1 Hash</b></th>
+                        </tr>
+
+                        {% for signer in file.pe.guest_signers.aux_signers %}
+                        <tr>
+                                <td>{{signer.name}}</td>
+                                <td>{{signer|getkey:"Issued to"}}</td>
+                                <td>{{signer|getkey:"Issued by"}}</td>
+                                <td>{{signer.Expires}}</td>
+                                <td>{{signer|getkey:"SHA1 hash"}}</td>
+                        </tr>
+                    {% endfor %}
+                    </table>
+                </div>
+            </div>
+            {% endif %}
+            <hr />
+            </div>
+        {% endif %}
+    {% else %}
+        Nothing to display.
+    {% endif %}
+</section>
diff --git a/web/templates/analysis/generic/_rdp.html b/web/templates/analysis/generic/_rdp.html
new file mode 100644
index 00000000000..076bb802ebf
--- /dev/null
+++ b/web/templates/analysis/generic/_rdp.html
@@ -0,0 +1,70 @@
+<section id="static_analysis_rdp">
+{% if file.rdp %}
+    <h4>RDP file details</h4>
+    <div id="rdp_information">
+        <table class="table table-striped table-bordered" style="table-layout: fixed;">
+            <tr>
+                <th style="border-top: 0; width: 15%;">Name</th>
+                <td style="border-top: 0; word-wrap: break-word;"><b>Value </td>
+            </tr>
+        {% for key, value in file.rdp.items %}
+            {% if key != "certificates" %}
+                <tr>
+                    <td><strong>{{key}}</strong></td>
+                    <td>{{value}}</td>
+                </tr>
+            {% else %}
+                </table>
+                {% for cert in value %}
+                    <table class="table table-striped table-bordered" style="table-layout: fixed;">
+                    <tr>
+                        <th style="border-top: 0; width: 15%;">Certificate</th>
+                        <td style="border-top: 0; word-wrap: break-word;"><b>Value </td>
+                    </tr>
+                    {% if cert.subject %}
+                        <th>Subject Organization Name</th> <td>{{cert.subject}}</td>
+                    {% endif %}
+                    {% if cert.issuer %}
+                    <tr>
+                        <th>Issuer</th>
+                        <td>{{cert.issuer}}</td>
+                    </tr>
+                    {% endif %}
+                    {% if cert.not_before %}
+                    <tr>
+                        <th>Not valid before</th>
+                        <td>{{cert.not_before}}</td>
+                    </tr>
+                    {% endif %}
+                    {% if cert.not_after %}
+                    <tr>
+                        <th>Not valid after</th>
+                        <td>{{cert.not_after}}</td>
+                    </tr>
+                    {% endif %}
+                    {% if cert.serial_number %}
+                    <tr>
+                        <th>Serial number</th>
+                        <td>{{cert.serial_number}}</td>
+                    </tr>
+                    {% endif %}
+                    {% if cert.fingerprint_sha256 %}
+                    <tr>
+                        <th>Cert's sha256 fingerprint</th>
+                        <td>{{cert.fingerprint_sha256}}</td>
+                    </tr>
+                    {% endif %}
+                    {% if cert.fingerprint_sha1 %}
+                    <tr>
+                        <th>Cert's sha1 fingerprint</th>
+                        <td>{{cert.fingerprint_sha1}}</td>
+                    </tr>
+                    {% endif %}
+                    </table>
+                {% endfor %}
+            {% endif %}
+        {% endfor %}
+{% else %}
+    Nothing to display.
+{% endif %}
+</section>
diff --git a/web/templates/analysis/generic/_subfile_capeyara.html b/web/templates/analysis/generic/_subfile_capeyara.html
new file mode 100644
index 00000000000..4c65b4a087d
--- /dev/null
+++ b/web/templates/analysis/generic/_subfile_capeyara.html
@@ -0,0 +1,50 @@
+<section id="static_analysis">
+    {% load key_tags %}
+    <div>
+        <h4>CAPE Yara Details</h4>
+        <p></p>
+        <div id="cape_yara_details">
+            {% for hit in sub_file.cape_yara %}
+            <div class="card">
+                <div class="card-header">
+                    <h5>
+                        <a class="accordion-toggle" data-toggle="collapse" href="#{{hit.name}}"
+                            data-target="#{{hit.name}}" aria-expanded="false">
+                            {{hit.name}}</a>
+                    </h5>
+                </div>
+                <div id="{{hit.name}}" class="collapse">
+                    <div class="card-body">
+                        <table class="table table-striped table-bordered" style="table-layout: fixed;">
+                            {% if hit.strings %}
+                            <tr>
+                                <th style="border-top: 0; width: 15%;">Strings</th>
+                                <td>
+                                    <ul style="margin-bottom: 0;">
+                                        {% for string in hit.strings %}
+                                        <li>{{string}}</li>
+                                        {% endfor %}
+                                    </ul>
+                                </td>
+                            </tr>
+                            {% endif %}
+                            {% if hit.addresses %}
+                            <tr>
+                                <th style="border-top: 0; width: 15%;">String Name: Address</th>
+                                <td>
+                                    <ul style="margin-bottom: 0;">
+                                        {% for key, value in hit.addresses.items %}
+                                        <li>{{key}}: {{value}}</li>
+                                        {% endfor %}
+                                    </ul>
+                                </td>
+                            </tr>
+                            {% endif %}
+                        </table>
+                    </div>
+                </div>
+            </div>
+            {% endfor %}
+        </div>
+    </div>
+</section>
diff --git a/web/templates/analysis/generic/_subfile_info.html b/web/templates/analysis/generic/_subfile_info.html
new file mode 100644
index 00000000000..2549ec14f26
--- /dev/null
+++ b/web/templates/analysis/generic/_subfile_info.html
@@ -0,0 +1,439 @@
+<!--this file is identical copy of _file_info.html but just changes "file." to "sub_file." to allow show the same info as subtab-->
+{% load key_tags %}
+<div class="panel panel-default">
+    <table class="table table-striped table-bordered" style="table-layout: fixed;width: 50%;margin-left: auto;margin-right: auto;">
+        {% if sub_file.note %}
+            <tr>
+                <th style="border-top: 0; width: 15%;">Note</th>
+                <td style="border-top: 0; word-wrap: break-word;"><b>{{sub_file.note}}</b></td>
+            </tr>
+        {% endif %}
+        {% if sub_file.cape_type %}
+            <tr>
+                <th style="border-top: 0; width: 15%;">Type</th>
+                <td style="border-top: 0; word-wrap: break-word;"><b>{{sub_file.cape_type}}</b></td>
+            </tr>
+        {% endif %}
+        <tr>
+            <th style="border-top: 0; width: 15%;">Filename</th>
+            <td>
+                {% for name in sub_file.name|str2list %}
+                <div style="border-top: 0; word-wrap: break-word;"><b>{{name|safe}}</b></div>
+                {% endfor %}
+            </td>
+        </tr>
+        {% if sub_file.type %}
+            <tr>
+                <th style="border-top: 0; width: 15%;">File Type</th>
+                <td style="border-top: 0; word-wrap: break-word;"><b>{{sub_file.type}}</b></td>
+            </tr>
+        {% endif %}
+        {% if sub_file.guest_paths %}
+            <tr>
+                <th style="border-top: 0; width: 15%;">Associated Filenames</th>
+                <td style="border-top: 0; word-wrap: break-word;">
+                    {% for path in sub_file.guest_paths|str2list %}
+                        <div>{{path}}</div>
+                    {% endfor %}
+                </td>
+            </tr>
+        {% endif %}
+        <tr>
+            <th style="border-top: 0; width: 15%;">File Size</th>
+            <td style="border-top: 0; word-wrap: break-word;"><b>{{sub_file.size}} bytes</b></td>
+        </tr>
+        {% if sub_file.module_path and sub_file.process_path != sub_file.module_path %}
+            <tr>
+                <th>Module Path</th>
+                <td>{{sub_file.module_path}}</td>
+            </tr>
+        {% endif %}
+        {% if sub_file.cape_type_code == 8 or sub_file.cape_type_code == 9 %}
+                <tr>
+                    <th>Virtual Address</th>
+                    <td>{{sub_file.virtual_address}}</td>
+                </tr>
+            {% endif %}
+            {% if sub_file.cape_type_code == 5 %}
+                <tr>
+                    <th>Section Handle</th>
+                    <td>{{sub_file.section_handle}}</td>
+                </tr>
+            {% endif %}
+            {% if sub_file.cape_type_code == 3 or sub_file.cape_type_code == 4 %}
+                <tr>
+                    <th>Target Process</th>
+                    <td>{{sub_file.target_process}}</td>
+                </tr>
+                <tr>
+                    <th>Target PID</th>
+                    <td>{{sub_file.target_pid}}</td>
+                </tr>
+                <tr>
+                    <th>Target Path</th>
+                    <td>{{sub_file.target_path}}</td>
+                </tr>
+                <tr>
+                    <th>Injecting Process</th>
+                    <td>{{sub_file.process_name}}</td>
+                </tr>
+                <tr>
+                    <th>Injecting PID</th>
+                    <td>{{sub_file.pid}}</td>
+                </tr>
+                <tr>
+                    <th>Path</th>
+                    <td>{{sub_file.process_path}}</td>
+                </tr>
+            {% else %}
+                {% if sub_file.process_name %}
+                <tr>
+                    <th>Process</th>
+                    <td>{{sub_file.process_name}}</td>
+                </tr>
+                {% endif %}
+                {% if sub_file.pid %}
+                <tr>
+                    <th>PID</th>
+                    <td>{{sub_file.pid}}</td>
+                </tr>
+                {% endif %}
+                {% if sub_file.process_path %}
+                <tr>
+                    <th>Path</th>
+                    <td>{{sub_file.process_path}}</td>
+                </tr>
+                {% endif %}
+            {% endif %}
+        {% if sub_file.timestamp %}
+            <tr>
+                <th>PE timestamp</th>
+                <td style="word-wrap: break-word;">{{sub_file.timestamp}}</td>
+            </tr>
+        {% endif %}
+        <tr>
+            <th>MD5</th>
+            <td style="word-wrap: break-word;">{{sub_file.md5}}</td>
+        </tr>
+        <tr>
+            <th>SHA1</th>
+            <td style="word-wrap: break-word;">{{sub_file.sha1}}</td>
+        </tr>
+        <tr>
+            <th>SHA256</th>
+            <td style="word-wrap: break-word;">{{sub_file.sha256}}
+                <a href="https://www.virustotal.com/gui/file/{{sub_file.sha256}}/" style="color: #e74c3c">[VT]</a>
+                <a href="https://mwdb.cert.pl/file/{{sub_file.sha256}}" style="color: #e74c3c">[MWDB]</a>
+                <a href="https://bazaar.abuse.ch/sample/{{sub_file.sha256}}/" style="color: #e74c3c">[Bazaar]</a>
+            </td>
+        </tr>
+        {% if sub_file.sha3_384 %}
+        <tr>
+            <th>SHA3-384</th>
+            <td style="word-wrap: break-word;">{{sub_file.sha3_384}}</td>
+        </tr>
+        {% endif %}
+        {% if sub_file.rh_hash %}
+            <tr>
+                <th>RichHeader Hash</th>
+                <td style="word-wrap: break-word;">{{sub_file.rh_hash}}</td>
+            </tr>
+        {% endif %}
+        <tr>
+            <th>CRC32</th>
+            <td>{{sub_file.crc32}}</td>
+        </tr>
+        {% if sub_file.tlsh %}
+        <tr>
+            <th>TLSH</th>
+            <td style="word-wrap: break-word;">{{sub_file.tlsh}}</td>
+        </tr>
+        {% endif %}
+        <tr>
+            <th>Ssdeep</th>
+            <td style="word-wrap: break-word;">{{sub_file.ssdeep}}</td>
+        </tr>
+        {% if sub_file.clamav %}
+        <tr>
+            <th>ClamAV</th>
+            <td>
+                <ul style="margin-bottom: 0;">
+                {% for sign in sub_file.clamav %}
+                    <li>{{sign}}</li>
+                {% endfor %}
+                </ul>
+            </td>
+        </tr>
+        {% endif %}
+        {% if sub_file.yara %}
+        <tr>
+            <th>
+            {% if config.yara_detail %}
+                <a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#yara_{{sub_file.sha256}}" role="button" aria-expanded="false" aria-controls="yara_{{sub_file.sha256}}"  data-bs-toggle="tooltip" title="Display Yara details"><span class="fas fa-file-lines"></span> Yara</a>
+            {% else %}
+                Yara
+            {% endif %}
+            </th>
+            <td>
+                <ul style="margin-bottom: 0;">
+                {% for sign in sub_file.yara %}
+                    <li>
+                    <a href="/analysis/search/yaraname:{{sign.name}}">{{sign.name}}</a>  - {{sign.meta.description}}
+                    {% if sign.meta.author %}
+                        - Author: {{sign.meta.author}}
+                    {% endif %}
+                    </li>
+                {% endfor %}
+                </ul>
+            </td>
+        </tr>
+        {% endif %}
+        {% if sub_file.cape_yara %}
+        <tr>
+            <th>
+            {% if config.yara_detail %}
+                <a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#capeyara_{{sub_file.sha256}}" role="button" aria-expanded="false" aria-controls="capeyara_{{sub_file.sha256}}"  data-bs-toggle="tooltip" title="Display CAPE Yara details"><span class="fas fa-file-lines"></span> CAPE Yara</a>
+            {% else %}
+                CAPE Yara
+            {% endif %}
+            </th>
+            <td>
+                <ul style="margin-bottom: 0;">
+                {% for sign in sub_file.cape_yara %}
+                    <li>
+                    <a href="/analysis/search/capeyara:{{sign.name}}">{{sign.name}}</a>
+                    {% if sign.meta.cape_type %} - {{sign.meta.cape_type}}
+                    {% elif sign.meta.description %} - {{sign.meta.description}}
+                    {% endif %}
+                    {% if sign.meta.author %} - Author: {{sign.meta.author}}{% endif %}
+                    </li>
+                {% endfor %}
+                </ul>
+            </td>
+        </tr>
+        {% endif %}
+        {% if sub_file.trid %}
+        <tr>
+            <th>TriD</th>
+            <td>
+            <ul style="margin-top: 0;margin-bottom: 0;">
+                {% for str in sub_file.trid %}
+                    <li>{{str}}</li>
+                {% endfor %}
+            </ul>
+            </td>
+        </tr>
+        {% endif %}
+
+        {% if sub_file.die %}
+        <tr>
+            <th>Detect It Easy</th>
+            <td>
+            <ul style="margin-top: 0;margin-bottom: 0;">
+                {% for str in sub_file.die %}
+                    <li>{{str}}</li>
+                {% endfor %}
+            </ul>
+            </td>
+        </tr>
+        {% endif %}
+
+        {% if sub_file.dropdir %}
+        <tr>
+            <th></th>
+            <td><a href="{% url "file" tab_name id sub_file.dropdir %}" class="btn btn-secondary btn-sm">Download</a>
+            </td>
+        </tr>
+        {% else %}
+        <tr>
+            <th>
+                {% if sub_file.pe %}<a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#pe_{{sub_file.sha256}}" role="button" aria-expanded="false" aria-controls="pe_{{sub_file.sha256}}"  data-bs-toggle="tooltip" title="Display PE info"><span class="fas fa-file-lines"></span> PE</a>{% endif %}
+                {% if sub_file.dotnet %}<a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#dotnet_{{sub_file.sha256}}" role="button" aria-expanded="false" aria-controls="dotnet_{{sub_file.sha256}}"  data-bs-toggle="tooltip" title="Display DotNet info"><span class="fas fa-file-lines"></span> DotNET</a>{% endif %}
+                {% if sub_file.pdf %}<a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#pdf_{{sub_file.sha256}}" role="button" aria-expanded="false" aria-controls="pdf_{{sub_file.sha256}}"  data-bs-toggle="tooltip" title="Display PDF info"><span class="fas fa-file-lines"></span> PDF</a>{% endif %}
+                {% if sub_file.lnk %}<a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#lnk_{{sub_file.sha256}}" role="button" aria-expanded="false" aria-controls="lnk_{{sub_file.sha256}}"  data-bs-toggle="tooltip" title="Display LNK info"><span class="fas fa-file-lines"></span> LNK</a>{% endif %}
+                {% if sub_file.java %}<a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#java_{{sub_file.sha256}}" role="button" aria-expanded="false" aria-controls="java_{{sub_file.sha256}}"  data-bs-toggle="tooltip" title="Display Java info"><span class="fas fa-file-lines"></span> Java</a>{% endif %}
+                {% if sub_file.office %}<a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#office_{{sub_file.sha256}}" role="button" aria-expanded="false" aria-controls="office_{{sub_file.sha256}}"  data-bs-toggle="tooltip" title="Display Office info"><span class="fas fa-file-lines"></span> Office</a>{% endif %}
+                <!--ToDo missed URL-->
+            </th>
+
+            </th>
+            <td>
+                {% if not config.zipped_download %}
+                    {% if tab_name == "static" %}
+                        <a href="{% url "file" "dropped" id sub_file.sha256 %}" class="btn btn-secondary btn-sm" data-bs-toggle="tooltip" title="Download file"><span class="fas fa-download"></span></a>
+                    {% else %}
+                        <a href="{% url "file" tab_name id sub_file.sha256 %}" class="btn btn-secondary btn-sm" data-bs-toggle="tooltip" title="Download file"><span class="fas fa-download"></span></a>
+                    {% endif %}
+                {% endif %}
+                {% if tab_name == "static" %}
+                     <a href="{% url "file" "droppedzip" id sub_file.sha256 %}" class="btn btn-secondary btn-sm" data-bs-toggle="tooltip" title="Download password-protected file archive"><span class="fas fa-file-archive"></span> <span class="fas fa-download"></span></a>
+                {% else %}
+                    <a href="{% url "file" tab_name|add:"zip" id sub_file.sha256 %}" class="btn btn-secondary btn-sm" data-bs-toggle="tooltip" title="Download password-protected file archive"><span class="fas fa-file-archive"></span> <span class="fas fa-download"></span></a>
+                {% endif %}
+                    <a class="btn btn-secondary btn-sm" href="/submit/resubmit/{{id}}/{{sub_file.sha256}}" data-bs-toggle="tooltip" title="Re-submit file for analysis"><span class="fas fa-sync"></span> File</a>
+                {% if config.flare_capa %}
+                    {% if not sub_file.flare_capa and on_demand.flare_capa %}
+                        <a class="btn btn-secondary btn-sm" href="{% url "on_demand" "flare_capa" id tab_name sub_file.sha256 %}" role="button" data-bs-toggle="tooltip" title="Generate CAPA findings"><span class="fas fa-cogs"></span> CAPA</a>
+                    {% elif sub_file.flare_capa %}
+                        <a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#flare_capa_{{sub_file.sha256}}"  data-bs-toggle="tooltip" title="Display CAPA"><span class="fas fa-envelope-open-text"></span> FLARE CAPA</a>
+                    {% endif %}
+                {% endif %}
+                {% if config.strings %}
+                    {% if "strings" not in sub_file %}
+                        <a class="btn btn-secondary btn-sm" href="{% url "on_demand" "strings" id "static" sub_file.sha256 %}" role="button" data-bs-toggle="tooltip" title="Generate strings"><span class="fas fa-cogs"></span> Strings</a>
+                    {% elif sub_file.strings %}
+                        <a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#strings_{{sub_file.sha256}}" role="button" aria-expanded="false" aria-controls="strings_{{sub_file.sha256}}"  data-bs-toggle="tooltip" title="Display strings"><span class="fas fa-envelope-open-text"></span> Strings</a>
+                    {% endif %}
+                {% endif %}
+                {% if sub_file.dotnet_strings %}
+                    <a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#dotnet_strings_{{file.sha256}}" role="button" aria-expanded="false" aria-controls="dotnet_strings_{{file.sha256}}"  data-bs-toggle="tooltip" title="Display strings"><span class="fas fa-envelope-open-text"></span> DotNet Strings</a>
+                {% endif %}
+                {% if config.floss %}
+                    {% if not sub_file.floss %}
+                        <a class="btn btn-secondary btn-sm" href="{% url "on_demand" "floss" id "static" sub_file.sha256 %}" role="button" data-bs-toggle="tooltip" title="Generate floss strings"><span class="fas fa-cogs"></span> Floss</a>
+                    {% else %}
+                        <a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#floss_{{sub_file.sha256}}" role="button" aria-expanded="false" aria-controls="floss_{{sub_file.sha256}}"  data-bs-toggle="tooltip" title="Display floss strings"><span class="fas fa-envelope-open-text"></span> Floss</a>
+                    {% endif %}
+                {% endif %}
+
+                {% if config.bingraph %}
+                    {% if not graphs.bingraph.content|getkey:sub_file.sha256 and on_demand.bingraph %}
+                        <a class="btn btn-secondary btn-sm" href="{% url "on_demand" "bingraph" id tab_name sub_file.sha256 %}" role="button" data-bs-toggle="tooltip" title="Generate Bingraph"><span class="fas fa-cogs"></span> Bingraph</a>
+                    {% elif graphs.bingraph.content|getkey:sub_file.sha256 %}
+                        <a href="{% url "file_nl" "bingraph" id sub_file.sha256 %}" class="btn btn-secondary btn-sm"><span class="fas fa-download"> BinGraph</a>
+                    {% endif %}
+                {% endif %}
+                <!--add type check-->
+                {% if graphs.vba2graph.enabled %}
+                    {% if not graphs.vba2graph.content|getkey:sub_file.sha256 and on_demand.vba2graph %}
+                        <a class="btn btn-secondary btn-sm" href="{% url "on_demand" "vba2graph" id "static" sub_file.sha256 %}" role="button" data-bs-toggle="tooltip" title="Generate vba2Graph"><span class="fas fa-cogs"></span> Vba2Graph</a>
+                    {% elif graphs.vba2graph.content|getkey:sub_file.sha256 %}
+                        <a href="{% url "file_nl" "vba2graph" id sub_file.sha256 %}" class="btn btn-secondary btn-sm"><span class="fas fa-download"> Vba2Graph</a>
+                    {% endif %}
+                {% endif %}
+                {% if config.virustotal and not sub_file.virustotal and on_demand.virustotal %}
+                    <a class="btn btn-secondary btn-sm" href="{% url "on_demand" "virustotal" id tab_name sub_file.sha256 %}" role="button" data-bs-toggle="tooltip" title="Fetch VirusTotal results"><span class="fas fa-cogs"></span> VirusTotal</a>
+                {% endif %}
+                {% if config.vtupload and analysis.info.tlp != "Red" %}
+                    <a class="btn btn-secondary btn-sm" href="{% url "vtupload" tab_name id sub_file.name sub_file.sha256 %}"><span class="fas fa-exclamation-triangle"></span> <span class="fas fa-upload"></span> VirusTotal</a>
+                {% endif %}
+                {% if sub_file.data %}
+                    <a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#text_{{sub_file.sha256}}" role="button" aria-expanded="false" aria-controls="text_{{sub_file.sha256}}"  data-bs-toggle="tooltip" title="Display text"><span class="fas fa-envelope-open-text"></span> Text</a>
+                {% endif %}
+                {% if sub_file.decoded_files %}
+                    <a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#decoded_files_{{sub_file.sha256}}" role="button" aria-expanded="false" aria-controls="decoded_files_{{sub_file.sha256}}"  data-bs-toggle="tooltip" title="Display text"><span class="fas fa-envelope-open-text"></span> {{sub_file.decoded_files_tool}}</a>
+                {% endif %}
+                {% if sub_file.extracted_files %}
+                    <a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#extracted_files_{{sub_file.sha256}}" role="button" aria-expanded="false" aria-controls="extracted_files_{{sub_file.sha256}}"  data-bs-toggle="tooltip" title="Display extracted files"><span class="fas fa-archive"></span> {{sub_file.extracted_files_tool}}</a>
+                {% endif %}
+            </td>
+        </tr>
+        {% endif %}
+    </table>
+    {% if sub_file.flare_capa %}
+            <tr>
+                <th></th><td>
+                <div class="collapse" id="flare_capa_{{sub_file.sha256}}">
+                    <div>
+                    <!--Inspired by @snemes trick, code placed in web/views/templateatgs/analysis_tags.py-->
+                    {% if file.flare_capa.CAPABILITY or file.flare_capa.ATTCK or file.flare_capa.MBC %}
+                        {% if file.flare_capa.CAPABILITY %}
+                            {{ file.flare_capa|flare_capa_capability }}
+                        {% endif %}
+                        {% if file.flare_capa.ATTCK %}
+                            {{ file.flare_capa|flare_capa_attck }}
+                        {% endif %}
+                        {% if file.flare_capa.MBC %}
+                            {{ file.flare_capa|flare_capa_mbc }}
+                        {% endif %}
+                    {% else %}
+                        No results
+                    {% endif %}
+                    </div>
+                </div>
+            </td>
+            </tr>
+            </br>
+        {% endif %}
+        {% if graphs.vba2graph.enabled and graphs.vba2graph.content|getkey:sub_file.sha256 %}
+            <tr><th></th>
+                <td>{{ graphs.vba2graph.content|getkey:sub_file.sha256|safe }}</td>
+            </tr>
+        {% endif %}
+        {% if sub_file.virustotal %}
+            <tr>
+                <th></th>
+                <td>{% include "analysis/generic/_virustotal.html" %}</td>
+            </tr>
+        {% endif %}
+        {% if sub_file.strings %}
+            <tr>
+                <th></th><td>
+                <div class="collapse" id="strings_{{sub_file.sha256}}">
+                    <div>
+                    {{sub_file.strings|safe}}
+                    </div>
+                </div>
+            </td>
+            </tr>
+        {% endif %}
+        {% if sub_file.dotnet_strings %}
+            <tr>
+                <th></th><td>
+                <div class="collapse" id="dotnet_strings_{{file.sha256}}">
+                    <div>
+                    {% for string in sub_file.dotnet_strings %}
+                        <div>{{string|safe}}</div>
+                    {% endfor %}
+                    </div>
+                </div>
+            </td>
+            </tr>
+        {% endif %}
+        {% if sub_file.data %}
+            <tr>
+                <th></th><td>
+                <div class="collapse" id="text_{{sub_file.sha256}}">
+                    <div>
+                    <pre>{{sub_file.data|escape}}</pre>
+                    </div>
+                </div>
+            </td>
+            </tr>
+        {% endif %}
+        {% if sub_file.decoded_files %}
+            <tr>
+                <th></th><td>
+                <div class="collapse" id="decoded_files_{{sub_file.sha256}}">
+                    <div>
+                    <p>{{sub_file.decoded_files|escape}}</p>
+                    </div>
+                </div>
+            </td>
+            </tr>
+        {% endif %}
+        {% if sub_file.extracted_files %}
+            <tr>
+                <th></th><td>
+                <div class="collapse" id="extracted_files_{{sub_file.sha256}}">
+                    <div>
+                        {% for sub_file in sub_file.extracted_files %}
+                            {% include "analysis/generic/_subfile_info.html" %}
+                        {% endfor %}
+                    </div>
+                </div>
+            </td>
+            </tr>
+            </br>
+        {% endif %}
+    {% if config.yara_detail and sub_file.yara %} <div class="collapse" id="yara_{{sub_file.sha256}}"> <div> {% include "analysis/generic/_subfile_yara.html" %}</div></div></br>{% endif %}
+    {% if config.yara_detail and sub_file.cape_yara %} <div class="collapse" id="capeyara_{{sub_file.sha256}}"> <div> {% include "analysis/generic/_subfile_capeyara.html" %}</div></div></br>{% endif %}
+    {% if sub_file.pe %} <div class="collapse" id="pe_{{sub_file.sha256}}"> <div> {% include "analysis/generic/_pe.html" %}</div></div></br>{% endif %}
+    {% if sub_file.dotnet %} <div class="collapse" id="dotnet_{{sub_file.sha256}}"> <div> {% include "analysis/generic/_dotnet.html" %}</div></div></br>{% endif %}
+    {% if sub_file.pdf %} <div class="collapse" id="pdf_{{sub_file.sha256}}"> <div> {% include "analysis/generic/_pdf.html" %}</div></div></br>{% endif %}
+    {% if sub_file.lnk %} <div class="collapse" id="lnk_{{sub_file.sha256}}"> <div> {% include "analysis/generic/_lnk.html" %}</div></div></br>{% endif %}
+    {% if sub_file.java %} <div class="collapse" id="java_{{sub_file.sha256}}"> <div> {% include "analysis/generic/_java.html" %}</div></div></br>{% endif %}
+    {% if sub_file.office %} <div class="collapse" id="office_{{sub_file.sha256}}"> <div> {% include "analysis/generic/_office.html" %}</div></div></br>{% endif %}
+    {% if sub_file.floss %} <div class="collapse" id="floss_{{sub_file.sha256}}"> <div> {% include "analysis/generic/_floss.html" %}</div></div></br>{% endif %}
+    {% if graphs.bingraph.enabled and graphs.bingraph.content|getkey:sub_file.sha256 %}<center><td>{{ graphs.bingraph.content|getkey:sub_file.sha256|safe }}</td></center></br>{% endif %}
+</div>
diff --git a/web/templates/analysis/generic/_subfile_yara.html b/web/templates/analysis/generic/_subfile_yara.html
new file mode 100644
index 00000000000..9dd301820b0
--- /dev/null
+++ b/web/templates/analysis/generic/_subfile_yara.html
@@ -0,0 +1,50 @@
+<section id="static_analysis">
+    {% load key_tags %}
+    <div>
+        <h4>Yara Details</h4>
+        <p></p>
+        <div id="yara_details">
+            {% for hit in sub_file.yara %}
+            <div class="card">
+                <div class="card-header">
+                    <h5>
+                        <a class="accordion-toggle" data-toggle="collapse" href="#{{hit.name}}"
+                            data-target="#{{hit.name}}" aria-expanded="false">
+                            {{hit.name}}</a>
+                    </h5>
+                </div>
+                <div id="{{hit.name}}" class="collapse">
+                    <div class="card-body">
+                        <table class="table table-striped table-bordered" style="table-layout: fixed;">
+                            {% if hit.strings %}
+                            <tr>
+                                <th style="border-top: 0; width: 15%;">Strings</th>
+                                <td>
+                                    <ul style="margin-bottom: 0;">
+                                        {% for string in hit.strings %}
+                                        <li>{{string}}</li>
+                                        {% endfor %}
+                                    </ul>
+                                </td>
+                            </tr>
+                            {% endif %}
+                            {% if hit.addresses %}
+                            <tr>
+                                <th style="border-top: 0; width: 15%;">String Name: Address</th>
+                                <td>
+                                    <ul style="margin-bottom: 0;">
+                                        {% for key, value in hit.addresses.items %}
+                                        <li>{{key}}: {{value}}</li>
+                                        {% endfor %}
+                                    </ul>
+                                </td>
+                            </tr>
+                            {% endif %}
+                        </table>
+                    </div>
+                </div>
+            </div>
+            {% endfor %}
+        </div>
+    </div>
+</section>
diff --git a/web/templates/analysis/generic/_virustotal.html b/web/templates/analysis/generic/_virustotal.html
new file mode 100644
index 00000000000..03b79386002
--- /dev/null
+++ b/web/templates/analysis/generic/_virustotal.html
@@ -0,0 +1,40 @@
+{% if file.virustotal and not file.virustotal.error == True %}
+<div class="card-header">
+    <center><a class="accordion-toggle" data-toggle="collapse" aria-expanded="false" href="#virustotal_binary"><i class="fas fa-shield-virus"></i> VirusTotal ({{file.virustotal.positives}}/{{file.virustotal.total}}) {% if file.virustotal.detection %} - {{file.virustotal.detection}} {% endif %}</a></center>
+</div>
+
+<div class="collapse" id="virustotal_binary">
+    <div class="card card-body">
+        {% if file.virustotal.resource %}
+            <h4><a href="https://www.virustotal.com/en/file/{{file.virustotal.resource}}/analysis/">Full Results</a></h4>
+        {% endif %}
+
+        <table class="table table-striped table-bordered">
+            <tr>
+                <th>Engine</th><th>Result</th><th>Engine</th><th>Result</th><th>Engine</th><th>Result</th>
+            </tr>
+
+            {% for av, values in file.virustotal.scans.items %}
+                <td>{{av}}</td>
+                <td>
+                    {% if not values.result %}
+                        <span class="text-muted">Clean</span>
+                    {% else %}
+                        <span class="text-danger">{{values.result}}
+                        {% if values.moloch %}
+                        <a href="{{values.moloch}}" target="_blank">[MLCH]</a>
+                        {% endif %}
+                        </span>
+                    {% endif %}
+                </td>
+            {% if forloop.counter|divisibleby:"3" %}
+                </tr>
+            {% elif forloop.last %}
+                </tr>
+            {% endif %}
+            {% endfor %}
+
+        </table>
+    </div>
+</div>
+{% endif %}
diff --git a/web/templates/analysis/generic/_xlmmacro.html b/web/templates/analysis/generic/_xlmmacro.html
new file mode 100644
index 00000000000..d7153c3bf77
--- /dev/null
+++ b/web/templates/analysis/generic/_xlmmacro.html
@@ -0,0 +1,10 @@
+<section id="static_analysis">
+    <div>
+        <h4>XLM Macro</h4>
+        <pre>
+            {% for line in file.office.XLMMacroDeobfuscator.Code %}
+                {{line}}
+            {% endfor %}
+        </pre>
+    </div >
+</section>
diff --git a/web/templates/analysis/generic/_yara.html b/web/templates/analysis/generic/_yara.html
new file mode 100644
index 00000000000..de5f7b0c338
--- /dev/null
+++ b/web/templates/analysis/generic/_yara.html
@@ -0,0 +1,50 @@
+<section id="static_analysis">
+    {% load key_tags %}
+    <div>
+        <h4>Yara Details</h4>
+        <p></p>
+        <div id="yara_details">
+            {% for hit in file.yara %}
+            <div class="card">
+                <div class="card-header">
+                    <h5>
+                        <a class="accordion-toggle" data-toggle="collapse" href="#{{hit.name}}"
+                            data-target="#{{hit.name}}" aria-expanded="false">
+                            {{hit.name}}</a>
+                    </h5>
+                </div>
+                <div id="{{hit.name}}" class="collapse">
+                    <div class="card-body">
+                        <table class="table table-striped table-bordered" style="table-layout: fixed;">
+                            {% if hit.strings %}
+                            <tr>
+                                <th style="border-top: 0; width: 15%;">Strings</th>
+                                <td>
+                                    <ul style="margin-bottom: 0;">
+                                        {% for string in hit.strings %}
+                                        <li>{{string}}</li>
+                                        {% endfor %}
+                                    </ul>
+                                </td>
+                            </tr>
+                            {% endif %}
+                            {% if hit.addresses %}
+                            <tr>
+                                <th style="border-top: 0; width: 15%;">String Name: Address</th>
+                                <td>
+                                    <ul style="margin-bottom: 0;">
+                                        {% for key, value in hit.addresses.items %}
+                                        <li>{{key}}: {{value}}</li>
+                                        {% endfor %}
+                                    </ul>
+                                </td>
+                            </tr>
+                            {% endif %}
+                        </table>
+                    </div>
+                </div>
+            </div>
+            {% endfor %}
+        </div>
+    </div>
+</section>
\ No newline at end of file
diff --git a/web/templates/analysis/index.html b/web/templates/analysis/index.html
index 5b6dd128312..084fe6e3043 100644
--- a/web/templates/analysis/index.html
+++ b/web/templates/analysis/index.html
@@ -1,8 +1,12 @@
 {% extends "base.html" %}
+{% load analysis_tags %}
 {% block content %}
 <ul class="nav nav-tabs">
     <li class="nav-item"><a class="nav-link active" href="#files" data-toggle="tab">Files</a></li>
-    <li class="nav-item"><a class="nav-link" href="#urls" data-toggle="tab">URLs</a></li>
+    <li class="nav-item"><a class="nav-link" href="#static" data-toggle="tab">Static</a></li>
+    {% if config.url_analysis %}
+        <li class="nav-item"><a class="nav-link" href="#urls" data-toggle="tab">URLs</a></li>
+    {% endif %}
     <li class="nav-item"><a class="nav-link" href="#pcaps" data-toggle="tab">PCAPs</a></li>
 </ul>
 
@@ -10,38 +14,43 @@
     <div class="tab-pane fade show active" id="files">
     {% if paging.show_file_next == "show" or paging.show_file_prev == "show" %}
         <nav aria-label="Page navigation">
-           <ul class="pagination justify-content-center">
-           {% if paging.show_file_prev == "show" %}
-               <li class="page-item"><a class="page-link" href="{% url "analysis" %}page/{{paging.prev_page}}/">&larr; Newer</a></li>
-           {% endif %}
-           {% if paging.files_page_range %}
-               {% for page in paging.files_page_range %}
-                   {% if page == paging.current_page %}
-                   <li class="page-item active"><a class="page-link">{{page}}</a></li>
-                   {% else %}
-                   <li class="page-item"><a class="page-link" href="{% url "analysis" %}page/{{page}}/">{{page}}</a></li>
-                   {% endif %}
-               {% endfor %}
-           {% endif %}
-           {% if paging.show_file_next == "show" %}
-               <li class="page-item"><a class="page-link" href="{% url "analysis" %}page/{{paging.next_page}}/">Older &rarr;</a></li>
-           {% endif %}
-           </ul>
+            <ul class="pagination justify-content-center">
+            {% if paging.show_file_prev == "show" %}
+                <li class="nav-item"><a class="nav-link" href="{% url "analysis" %}page/{{paging.prev_page}}/">&larr; Newer</a></li>
+            {% endif %}
+            {% if paging.files_page_range %}
+                {% for page in paging.files_page_range %}
+                    {% if page == paging.current_page %}
+                        <li class="nav-item active"><a class="nav-link">{{page}}</a></li>
+                    {% else %}
+                        <li class="nav-item"><a class="nav-link" href="{% url "analysis" %}page/{{page}}/">{{page}}</a></li>
+                    {% endif %}
+                {% endfor %}
+            {% endif %}
+            {% if paging.show_file_next == "show" %}
+                <li class="nav-item"><a class="nav-link" href="{% url "analysis" %}page/{{paging.next_page}}/">Older &rarr;</a></li>
+            {% endif %}
+            </ul>
         </nav>
     {% endif %}
         <div class="card ">
             <div class="card-header">Recent Files</div>
             {% if files %}
-            <table class="table table-striped table-sm" style="table-layout: fixed;">
+            <table class="table table-striped table-sm table-hover" style="table-layout: fixed;">
                 <thead>
                 <tr>
                     <th width="5%">ID</th>
                     <th width="10%">Timestamp</th>
-                    <th width="7%">Machine</th>
+                    <th width="10%">Machine</th>
                     <th width="8%">Package</th>
                     <th width="33%">Filename</th>
                     <th width="18%">MD5</th>
                     <th width="7%">Detections</th>
+
+                    {% if config.display_task_tags %}
+                    <th width="7%">Task tags</th>
+                    {% endif %}
+
                     {% if config.expanded_dashboard %}
                     <th width="2.5%">PKG</th>
                     {% endif %}
@@ -62,16 +71,11 @@
                     <th width="4%">VT</th>
                     {% endif %}
                     {% if config.malscore %}
-                        <th width="3%">MalScore</th>
+                        <th width="6%">MalScore</th>
                     {% endif %}
                     {% if config.expanded_dashboard %}
-                    <th width="4%">MalFamily</th>
                     <th width="3%">PCAP</th>
                     <th width="5%">ClamAV</th>
-                    <th width="10%">Custom</th>
-                    {% endif %}
-                    {% if config.display_shrike %}
-                    <th width="5%">Shrike</th>
                     {% endif %}
                     <th width="6%" style="text-align: right;">Status</th>
                 </tr>
@@ -80,10 +84,16 @@
                 {% for analysis in files %}
                     <tr>
                         <td>
+                            {% if analysis.status in "reported,recovered" %}
+                            <a href="{% url "report" analysis.id %}">{{analysis.id}}</a>
+                            {% elif analysis.status in "running,completed,distributed" %}
+                            <a href="{% url "submission_status" analysis.id %}">{{analysis.id}}</a>
+                            {% else %}
                             {{analysis.id}}
+                            {% endif %}
                         </td>
                         <td>
-                        {% if analysis.status == "reported" %}
+                        {% if analysis.status in "reported,recovered" %}
                             {{analysis.completed_on}}
                         {% else %}
                             <span class="muted">{{analysis.added_on}} (added on)</span>
@@ -100,28 +110,45 @@
                             <span class="mono">{{analysis.package}}</span>
                         </td>
                         <td>
-                        {{analysis.filename}}
+                            {% if analysis.status in "reported,recovered" %}
+                            <a href="{% url "report" analysis.id %}">{{analysis.filename}}</a>
+                            {% elif analysis.status in "running,completed,distributed" %}
+                            <a href="{% url "submission_status" analysis.id %}">{{analysis.filename}}</a>
+                            {% else %}
+                            {{analysis.filename}}
+                            {% endif %}
                         </td>
                         <td style="word-wrap: break-word;">
-                            {% if analysis.status == "reported" %}
+                            {% if analysis.status in "reported,recovered" %}
                                 <a href="{% url "report" analysis.id %}"><span class="mono">{{analysis.sample.md5}}</span></a>
-                            {% elif analysis.status == "running" or analysis.status == "completed" %}
+                            {% elif analysis.status in "running,completed,distributed" %}
                                 <a href="{% url "submission_status" analysis.id %}"><span class="mono">{{analysis.sample.md5}}</span></a>
                             {% else %}
                                 <span class="mono">{{analysis.sample.md5}}</span>
                             {% endif %}
                         </td>
                         <td>
-                            {% if analysis.detections %}
+                            {% if analysis.detections|is_string %}
                                 <a href="/analysis/search/detections:{{analysis.detections}}"><span style="color:#EE1B2F;font-weight: bold;">{{analysis.detections}}</span></a>
+                            {% elif analysis.detections|length == 1 %}
+                                <a href="/analysis/search/detections:{{analysis.detections.0.family}}"><span style="color:#EE1B2F;font-weight: bold;">{{analysis.detections.0.family}}</span></a>
+                            {% elif analysis.detections|length > 1 %}
+                                <span style="color:#EE1B2F;font-weight: bold;" title="{% for block in analysis.detections %}{% if block.family %}{{block.family}}&#013;{% endif %}{% endfor %}">Multiple</span>
+                            {% endif %}
+                        </td>
+                        {% if config.display_task_tags %}
+                        <td>
+                            {% if analysis.user_task_tags %}
+                                <span style="color:#00b8e6;font-weight: bold;">{{analysis.user_task_tags}}</span></a>
                             {% endif %}
                         </td>
+                        {% endif %}
                         {% if config.expanded_dashboard %}
                         <td>
                             {% if analysis.package %}
-                                  <span class="mono">{{analysis.package}}</span>
+                                <span class="mono">{{analysis.package}}</span>
                             {% else %}
-                                  <span class="mono">-</span>
+                                <span class="mono">-</span>
                             {% endif %}
                         </td>
                         {% endif %}
@@ -130,7 +157,7 @@
                             {% if analysis.moloch_url %}
                                 <a href={{analysis.moloch_url}} target="_blank"><span class="mono">MOLOCH</span></a>
                             {% else %}
-                                  <span class="mono">-</span>
+                                <span class="mono">-</span>
                             {% endif %}
                         </td>
                         {% endif %}
@@ -157,17 +184,17 @@
                                 {% if analysis.suri_http_cnt %}
                                 -->/<a href="{% url "surihttp" analysis.id %}" target="_blank">{{analysis.suri_http_cnt}}</a><!--
                                 {% else %}
-                                -->/0<!--
+                                -->/-<!--
                                 {% endif %}
                                 {% if analysis.suri_tls_cnt %}
                                 -->/<a href="{% url "suritls" analysis.id %}" target="_blank">{{analysis.suri_tls_cnt}}</a><!--
                                 {% else %}
-                                -->/0<!--
+                                -->/-<!--
                                 {% endif %}
                                 {% if analysis.suri_file_cnt %}
                                 -->/<a href="{% url "surifiles" analysis.id %}" target="_blank">{{analysis.suri_file_cnt}}</a><!--
                                 {% else %}
-                                -->/0<!--
+                                -->/-<!--
                                 {% endif %}
                             {% endif %}
                             --></span>
@@ -178,7 +205,7 @@
                             {% if analysis.virustotal_summary %}
                                 <a href="{% url "antivirus" analysis.id %}" target="_blank"><span class="mono">{{analysis.virustotal_summary}}</span></a>
                             {% else %}
-                                  <span class="mono">-</span>
+                                <span class="mono">-</span>
                             {% endif %}
                         </td>
                         {% endif %}
@@ -203,15 +230,6 @@
                         </td>
                         {% endif %}
                         {% if config.expanded_dashboard %}
-                        <td>
-                            <span class="mono">
-                                {% if analysis.detections %}
-                                {{analysis.detections}}
-                                {% else %}
-                                -
-                                {% endif %}
-                            </span>
-                        </td>
                         <td>
                             <span class="mono">
                             {% if analysis.pcap_sha256 %}
@@ -230,29 +248,240 @@
                             {% endif %}
                             </span>
                         </td>
+                        {% endif %}
+                        <td style="text-align: right;">
+                            {% if analysis.status == "pending" %}
+                                <span class="text-muted">pending</span>
+                            {% elif analysis.status == "running" %}
+                                <span class="text-warning">running</span>
+                            {% elif analysis.status == "distributed" %}
+                                <span class="text-warning">distributed</span>
+                            {% elif analysis.status == "completed" %}
+                                <span class="text-info">processing</span>
+                            {% elif analysis.status == "reported" %}
+                                {% if analysis.errors %}
+                                    <span class="text-danger">
+                                {% else %}
+                                    <span class="text-success">
+                                {% endif%}
+
+                                reported</span>
+                            {% else %}
+                                <span class="text-danger">{{analysis.status}}</span>
+                            {% endif %}
+                        </td>
+                    </tr>
+                {% endfor %}
+                </tbody>
+            </table>
+            {% else %}
+            <div class="card-body">No files to display on this page.</div>
+            {% endif %}
+        </div>
+        {% if paging.show_file_next == "show" or paging.show_file_prev == "show" %}
+        <nav aria-label="Page navigation">
+            <ul class="pagination justify-content-center">
+            {% if paging.show_file_prev == "show" %}
+                <li class="nav-item" ><a class="nav-link" href="{% url "analysis" %}page/{{paging.prev_page}}/">&larr; Newer</a></li>
+            {% endif %}
+            {% if paging.files_page_range %}
+                {% for page in paging.files_page_range %}
+                    {% if page == paging.current_page %}
+                    <li class="nav-item active"><a class="nav-link">{{page}}</a></li>
+                    {% else %}
+                    <li class="nav-item"><a class="nav-link" href="{% url "analysis" %}page/{{page}}/">{{page}}</a></li>
+                    {% endif %}
+                {% endfor %}
+            {% endif %}
+            {% if paging.show_file_next == "show" %}
+                <li class="nav-item"><a class="nav-link" href="{% url "analysis" %}page/{{paging.next_page}}/">Older &rarr;</a></li>
+            {% endif %}
+            </ul>
+        </nav>
+    {% endif %}
+    </div>
+
+    <div class="tab-pane fade show" id="static">
+    {% if paging.show_static_next == "show" or paging.show_static_prev == "show" %}
+        <nav aria-label="Page navigation">
+            <ul class="pagination justify-content-center">
+            {% if paging.show_static_prev == "show" %}
+                <li class="nav-item"><a class="nav-link" href="{% url "analysis" %}page/{{paging.prev_page}}/">&larr; Newer</a></li>
+            {% endif %}
+            {% if paging.static_page_range %}
+                {% for page in paging.static_page_range %}
+                    {% if page == paging.current_page %}
+                    <li class="nav-item active"><a class="nav-link">{{page}}</a></li>
+                    {% else %}
+                    <li class="nav-item"><a class="nav-link" href="{% url "analysis" %}page/{{page}}/">{{page}}</a></li>
+                    {% endif %}
+                {% endfor %}
+            {% endif %}
+            {% if paging.show_static_next == "show" %}
+                <li class="nav-item"><a class="nav-link" href="{% url "analysis" %}page/{{paging.next_page}}/">Older &rarr;</a></li>
+            {% endif %}
+            </ul>
+        </nav>
+    {% endif %}
+        <div class="card ">
+            <div class="card-header">Recent Static</div>
+            {% if static %}
+            <table class="table table-striped table-sm" style="table-layout: fixed;">
+                <thead>
+                <tr>
+                    <th width="5%">ID</th>
+                    <th width="10%">Timestamp</th>
+                    <th width="33%">Filename</th>
+                    <th width="18%">MD5</th>
+                    <th width="7%">Detections</th>
+                    {% if config.display_task_tags %}
+                    <th width="7%">Task tags</th>
+                    {% endif %}
+                    {% if config.expanded_dashboard %}
+                    <th width="2.5%">PKG</th>
+                    {% endif %}
+                    {% if config.moloch %}
+                    <th width="4%">Moloch</th>
+                    {% endif %}
+                    {% if config.display_office_martians %}
+                    <th width="5%">Martians</th>
+                    {% endif %}
+                    {% if config.virustotal %}
+                    <th width="4%">VT</th>
+                    {% endif %}
+                    {% if config.malscore %}
+                        <th width="3%">MalScore</th>
+                    {% endif %}
+                    {% if config.expanded_dashboard %}
+                    <th width="3%">PCAP</th>
+                    <th width="5%">ClamAV</th>
+                    {% endif %}
+                    <th width="6%" style="text-align: right;">Status</th>
+                </tr>
+                </thead>
+                <tbody>
+                {% for analysis in static %}
+                    <tr>
+                        <td>
+                            {{analysis.id}}
+                        </td>
+                        <td>
+                        {% if analysis.status in "reported,recovered" %}
+                            {{analysis.completed_on}}
+                        {% else %}
+                            <span class="muted">{{analysis.added_on}} (added on)</span>
+                        {% endif %}
+                        </td>
+
+                        <td>
+                        {{analysis.filename}}
+                        </td>
+                        <td style="word-wrap: break-word;">
+                            {% if analysis.status in "reported,recovered" %}
+                                <a href="{% url "report" analysis.id %}"><span class="mono">{{analysis.sample.md5}}</span></a>
+                            {% elif analysis.status in "running,completed,distributed" %}
+                                <a href="{% url "submission_status" analysis.id %}"><span class="mono">{{analysis.sample.md5}}</span></a>
+                            {% else %}
+                                <span class="mono">{{analysis.sample.md5}}</span>
+                            {% endif %}
+                        </td>
+                        <td>
+                            <!--1 detection we show the name, more detection we show multi and add tooltip-->
+                            {% if analysis.detections|is_string %}
+                                    <a href="/analysis/search/detections:{{analysis.detections}}"><span style="color:#EE1B2F;font-weight: bold;">{{analysis.detections}}</span></a>
+                            {% elif analysis.detections|length == 1 %}
+                                <a href="/analysis/search/detections:{{analysis.detections.0.family}}" data-bs-toggle="tooltip" title="{{analysis.detections.0.details}}"><span style="color:#EE1B2F;font-weight: bold;">{{analysis.detections.0.family}}</span></a>
+                            {% elif analysis.detections|length > 1 %}
+                                <span style="color:#EE1B2F;font-weight: bold;">Multiple</span>
+                            {% endif %}
+                        </td>
+
+                        {% if config.display_task_tags %}
+                        <td>
+                            {% if analysis.user_task_tags %}
+                                <span style="color:#00b8e6;font-weight: bold;">{{analysis.user_task_tags}}</span></a>
+                            {% endif %}
+                        </td>
+                        {% endif %}
+
+                        {% if config.expanded_dashboard %}
+                        <td>
+                            {% if analysis.package %}
+                                  <span class="mono">{{analysis.package}}</span>
+                            {% else %}
+                                  <span class="mono">-</span>
+                            {% endif %}
+                        </td>
+                        {% endif %}
+                        {% if config.moloch %}
+                        <td>
+                            {% if analysis.moloch_url %}
+                                <a href={{analysis.moloch_url}} target="_blank"><span class="mono">MOLOCH</span></a>
+                            {% else %}
+                                  <span class="mono">-</span>
+                            {% endif %}
+                        </td>
+                        {% endif %}
+                        {% if config.display_office_martians %}
                         <td>
                             <span class="mono">
-                            {% if analysis.custom %}
-                                {{analysis.custom}}
+                            {% if analysis.f_mlist_cnt %}
+                            {{analysis.f_mlist_cnt}}
                             {% else %}
-                                -
+                            None
                             {% endif %}
                             </span>
                         </td>
                         {% endif %}
-                        {% if config.display_shrike %}
+                        {% if config.virustotal %}
+                        <td>
+                            {% if analysis.virustotal_summary %}
+                                <a href="{% url "antivirus" analysis.id %}" target="_blank"><span class="mono">{{analysis.virustotal_summary}}</span></a>
+                            {% else %}
+                                  <span class="mono">-</span>
+                            {% endif %}
+                        </td>
+                        {% endif %}
+                        {% if config.malscore %}
+                        <td>
+                            {% if analysis.malscore != None %}
+                                <span
+                                {% if analysis.malscore <= 2.0 %}
+                                class="badge badge-success"
+                                {% elif analysis.malscore <= 6.0 %}
+                                class="badge badge-warning"
+                                {% else %}
+                                class="badge badge-danger"
+                                {% endif %}
+                                {% if analysis.detections %}
+                                title="{{analysis.detections}}"
+                                {% endif %}
+                                >{{analysis.malscore|floatformat:1}}</span>
+                            {% else %}
+                                <span class="mono">-</span>
+                            {% endif %}
+                        </td>
+                        {% endif %}
+                        {% if config.expanded_dashboard %}
+                        <td>
+                            <span class="mono">
+                            {% if analysis.pcap_sha256 %}
+                            <a href="{% url "file" "pcap" analysis.id analysis.pcap_sha256 %}" target="_blank">PCAP</a>
+                            {% else %}
+                            -
+                            {% endif %}
+                            </span>
+                        </td>
                         <td>
-                            {% if analysis.shrike_msg %}
-                                 {% if analysis.status == "reported" %}
-                                     <a href="{% url "shrike" analysis.id %}" target="_blank"><span class="mono">{{analysis.shrike_msg}}</span></a>
-                                 {% else %}
-                                     <span class="mono">{{analysis.shrike_msg}}</span>
-                                 {% endif %}
+                            <span class="mono">
+                            {% if analysis.clamav %}
+                                {{analysis.clamav}}
                             {% else %}
-                                 <span class="mono">-</span>
+                                -
                             {% endif %}
+                            </span>
                         </td>
-                       {% endif %}
+                        {% endif %}
                         <td style="text-align: right;">
                             {% if analysis.status == "pending" %}
                                 <span class="text-muted">pending</span>
@@ -279,26 +508,26 @@
                 </tbody>
             </table>
             {% else %}
-            <div class="card-body">No files to display on this page.</div>
+            <div class="card-body">No static analyses to display on this page.</div>
             {% endif %}
         </div>
-        {% if paging.show_file_next == "show" or paging.show_file_prev == "show" %}
+        {% if paging.show_static_next == "show" or paging.show_static_prev == "show" %}
         <nav aria-label="Page navigation">
            <ul class="pagination justify-content-center">
-           {% if paging.show_file_prev == "show" %}
-               <li class="page-item" ><a class="page-link" href="{% url "analysis" %}page/{{paging.prev_page}}/">&larr; Newer</a></li>
+           {% if paging.show_static_prev == "show" %}
+               <li class="nav-item" ><a class="nav-link" href="{% url "analysis" %}page/{{paging.prev_page}}/">&larr; Newer</a></li>
            {% endif %}
-           {% if paging.files_page_range %}
-               {% for page in paging.files_page_range %}
+           {% if paging.static_page_range %}
+               {% for page in paging.static_page_range %}
                    {% if page == paging.current_page %}
-                   <li class="page-item active"><a class="page-link">{{page}}</a></li>
+                   <li class="nav-item"><a class="nav-link">{{page}}</a></li>
                    {% else %}
-                   <li class="page-item"><a class="page-link" href="{% url "analysis" %}page/{{page}}/">{{page}}</a></li>
+                   <li class="nav-item"><a class="nav-link" href="{% url "analysis" %}page/{{page}}/">{{page}}</a></li>
                    {% endif %}
                {% endfor %}
            {% endif %}
-           {% if paging.show_file_next == "show" %}
-               <li class="page-item"><a class="page-link" href="{% url "analysis" %}page/{{paging.next_page}}/">Older &rarr;</a></li>
+           {% if paging.show_static_next == "show" %}
+               <li class="nav-item"><a class="nav-link" href="{% url "analysis" %}page/{{paging.next_page}}/">Older &rarr;</a></li>
            {% endif %}
            </ul>
         </nav>
@@ -310,19 +539,19 @@
         <nav>
             <ul class="pagination justify-content-center">
            {% if paging.show_url_prev == "show" %}
-            <li class="page-item"><a class="page-link" href="{% url "analysis" %}page/{{paging.prev_page}}/">&larr; Newer</a></li>
+            <li class="nav-item"><a class="nav-link" href="{% url "analysis" %}page/{{paging.prev_page}}/">&larr; Newer</a></li>
            {% endif %}
                       {% if paging.urls_page_range %}
                {% for page in paging.urls_page_range %}
                    {% if page == paging.current_page %}
-                   <li class="page-item active"><a class="page-link">{{page}}</a></li>
+                   <li class="nav-item active"><a class="nav-link">{{page}}</a></li>
                    {% else %}
-                   <li class="page-item"><a class="page-link" href="{% url "analysis" %}page/{{page}}/">{{page}}</a></li>
+                   <li class="nav-item"><a class="nav-link" href="{% url "analysis" %}page/{{page}}/">{{page}}</a></li>
                    {% endif %}
                {% endfor %}
               {% endif %}
            {% if paging.show_url_next == "show" %}
-                <li class="page-item"><a class="page-link" href="{% url "analysis" %}page/{{paging.next_page}}/">Older &rarr;</a></li>
+                <li class="nav-item"><a class="nav-link" href="{% url "analysis" %}page/{{paging.next_page}}/">Older &rarr;</a></li>
            {% endif %}
            </ul>
         </nav>
@@ -352,15 +581,10 @@
                     {% if config.malscore %}
                         <th width="5%">MalScore</th>
                     {% endif %}
-                    <th width="10%">MalFamily</th>
                     <th width="5%">PCAP</th>
                     <th width="10%">ClamAV</th>
-                    <th width="5%">Custom</th>
-                    {% if config.display_shrike %}
-                    <th width="5%">Shrike</th>
-                    {% endif %}
                     <th width="5%" style="text-align: right;">Status</th>
-                  {% else %}
+                {% else %}
                     <th width="5%">ID</th>
                     <th width="12%">Timestamp</th>
                     <th width="61%">URL</th>
@@ -379,11 +603,8 @@
                     {% if config.malscore %}
                         <th width="5%">MalScore</th>
                     {% endif %}
-                    {% if config.display_shrike %}
-                    <th width="5%">Shrike</th>
-                    {% endif %}
                     <th width="7%" style="text-align: right;">Status</th>
-                  {% endif %}
+                {% endif %}
                 </tr>
                 </thead>
                 <tbody>
@@ -393,16 +614,16 @@
                             {{analysis.id}}
                         </td>
                         <td>
-                        {% if analysis.status == "reported" %}
+                        {% if analysis.status in "reported,recovered" %}
                             {{analysis.completed_on}}
                         {% else %}
                             <span class="muted">{{analysis.added_on}} (added on)</span>
                         {% endif %}
                         </td>
                         <td style="word-wrap: break-word;">
-                            {% if analysis.status == "reported" %}
+                            {% if analysis.status in "reported,recovered" %}
                                 <a href="{% url "report" analysis.id %}"><span class="mono">{{analysis.target}}</span></a>
-                            {% elif analysis.status == "running" or analysis.status == "completed" %}
+                            {% elif analysis.status in "running,completed,distributed" %}
                                 <a href="{% url "submission_status" analysis.id %}"><span class="mono">{{analysis.target}}</span></a>
                             {% else %}
                                 <span class="mono">{{analysis.target}}</span>
@@ -514,30 +735,7 @@
                             {% endif %}
                             </span>
                         </td>
-                        <td>
-                            <span class="mono">
-                            {% if analysis.custom %}
-                                {{analysis.custom}}
-                            {% else %}
-                                -
-                            {% endif %}
-                            </span>
-                        </td>
                         {% endif %}
-                        {% if config.display_shrike %}
-                        <td>
-                            {% if analysis.shrike_msg %}
-                                 {% if analysis.status == "reported" %}
-                                     <a href="{% url "shrike" analysis.id %}" target="_blank"><span class="mono">{{analysis.shrike_msg}}</span></a>
-                                 {% else %}
-                                     <span class="mono">{{analysis.shrike_msg}}</span>
-                                 {% endif %}
-                            {% else %}
-                                 <span class="mono">-</span>
-                            {% endif %}
-                        </td>
-                       {% endif %}
-
                         <td style="text-align: right;">
                             {% if analysis.status == "pending" %}
                                 <span class="text-muted">pending</span>
@@ -563,19 +761,19 @@
         <nav aria-label="Page navigation">
            <ul class="pagination justify-content-center">
            {% if paging.show_url_prev == "show" %}
-               <li class="page-item"><a class="page-link" href="{% url "analysis" %}page/{{paging.prev_page}}/">&larr; Newer</a></li>
+               <li class="nav-item"><a class="nav-link" href="{% url "analysis" %}page/{{paging.prev_page}}/">&larr; Newer</a></li>
            {% endif %}
            {% if paging.urls_page_range %}
                {% for page in paging.urls_page_range %}
                    {% if page == paging.current_page %}
-                   <li class="page-item active"><a class="page-link">{{page}}</a></li>
+                   <li class="nav-item active"><a class="nav-link">{{page}}</a></li>
                    {% else %}
-                   <li class="page-item"><a class="page-link" href="{% url "analysis" %}page/{{page}}/">{{page}}</a></li>
+                   <li class="nav-item"><a class="nav-link" href="{% url "analysis" %}page/{{page}}/">{{page}}</a></li>
                    {% endif %}
                {% endfor %}
            {% endif %}
            {% if paging.show_url_next == "show" %}
-               <li class="page-item"><a class="page-link" href="{% url "analysis" %}page/{{paging.next_page}}/">Older &rarr;</a></li>
+               <li class="nav-item"><a class="nav-link" href="{% url "analysis" %}page/{{paging.next_page}}/">Older &rarr;</a></li>
            {% endif %}
            </ul>
         </nav>
@@ -587,19 +785,19 @@
         <nav aria-label="Page navigation">
            <ul class="pagination justify-content-center">
            {% if paging.show_pcap_prev == "show" %}
-               <li class="page-item"><a class="page-link" href="{% url "analysis" %}page/{{paging.prev_page}}/">&larr; Newer</a></li>
+               <li class="nav-item"><a class="nav-link" href="{% url "analysis" %}page/{{paging.prev_page}}/">&larr; Newer</a></li>
            {% endif %}
            {% if paging.pcaps_page_range %}
                {% for page in paging.pcap_page_range %}
                    {% if page == paging.current_page %}
-                   <li class="page-item active"><a class="page-link">{{page}}</a></li>
+                   <li class="nav-item active"><a class="nav-link">{{page}}</a></li>
                    {% else %}
-                   <li class="page-item"><a class="page-link" href="{% url "analysis" %}page/{{page}}/">{{page}}</a></li>
+                   <li class="nav-item"><a class="nav-link" href="{% url "analysis" %}page/{{page}}/">{{page}}</a></li>
                    {% endif %}
                {% endfor %}
            {% endif %}
            {% if paging.show_pcap_next == "show" %}
-               <li class="page-item"><a class="page-link" href="{% url "analysis" %}page/{{paging.next_page}}/">Older &rarr;</a></li>
+               <li class="nav-item"><a class="nav-link" href="{% url "analysis" %}page/{{paging.next_page}}/">Older &rarr;</a></li>
            {% endif %}
            </ul>
         </nav>
@@ -610,7 +808,7 @@
         <table class="table table-striped" style="table-layout: fixed;">
             <thead>
                 <tr>
-                  {% if config.expanded_dashboard %}
+                {% if config.expanded_dashboard %}
                     <th width="5%">ID</th>
                     <th width="10%">Timestamp</th>
                     <th width="20%">Filename</th>
@@ -624,14 +822,10 @@
                     {% if config.malscore %}
                         <th width="5%">MalScore</th>
                     {% endif %}
-                    <th width="10%">MalFamily</th>
+
                     <th width="5%">PCAP</th>
-                    <th width="5%">Custom</th>
-                    {% if config.display_shrike %}
-                    <th width="5%">Shrike</th>
-                    {% endif %}
                     <th width="5%" style="text-align: right;">Status</th>
-                  {% else %}
+                {% else %}
                     <th width="5%">ID</th>
                     <th width="12%">Timestamp</th>
                     <th width="37%">Filename</th>
@@ -645,11 +839,8 @@
                     {% if config.malscore %}
                         <th width="5%">MalScore</th>
                     {% endif %}
-                    {% if config.display_shrike %}
-                    <th width="5%">Shrike</th>
-                    {% endif %}
                     <th width="6%" style="text-align: right;">Status</th>
-                  {% endif %}
+                {% endif %}
                 </tr>
             </thead>
             <tbody>
@@ -659,7 +850,7 @@
                         {{analysis.id}}
                     </td>
                     <td>
-                        {% if analysis.status == "reported" %}
+                        {% if analysis.status in "reported,recovered" %}
                         {{analysis.completed_on}}
                         {% else %}
                         <span class="muted">{{analysis.added_on}} (added on)</span>
@@ -669,9 +860,9 @@
                         {{analysis.filename}}
                     </td>
                     <td style="word-wrap: break-word;">
-                        {% if analysis.status == "reported" %}
+                        {% if analysis.status in "reported,recovered" %}
                         <a href="{% url "report" analysis.id %}"><span class="mono">{{analysis.sample.md5}}</span></a>
-                        {% elif analysis.status == "running" or analysis.status == "completed" %}
+                        {% elif analysis.status in "running,completed,distributed" %}
                         <a href="{% url "submission_status" analysis.id %}"><span class="mono">{{analysis.sample.md5}}</span></a>
                         {% else %}
                         <span class="mono">{{analysis.sample.md5}}</span>
@@ -733,15 +924,6 @@
                     </td>
                     {% endif %}
                     {% if config.expanded_dashboard %}
-                    <td>
-                        <span class="mono">
-                            {% if analysis.detections %}
-                                {{analysis.detections}}
-                            {% else %}
-                                -
-                            {% endif %}
-                        </span>
-                    </td>
                     <td>
                         <span class="mono">
                             {% if analysis.pcap_sha256 %}
@@ -751,28 +933,6 @@
                             {% endif %}
                         </span>
                     </td>
-                    <td>
-                        <span class="mono">
-                            {% if analysis.custom %}
-                            {{analysis.custom}}
-                            {% else %}
-                            -
-                            {% endif %}
-                        </span>
-                    </td>
-                    {% endif %}
-                    {% if config.display_shrike %}
-                    <td>
-                        {% if analysis.shrike_msg %}
-                        {% if analysis.status == "reported" %}
-                        <a href="{% url "shrike" analysis.id %}" target="_blank"><span class="mono">{{analysis.shrike_msg}}</span></a>
-                        {% else %}
-                        <span class="mono">{{analysis.shrike_msg}}</span>
-                        {% endif %}
-                        {% else %}
-                        <span class="mono">-</span>
-                        {% endif %}
-                    </td>
                     {% endif %}
                     <td style="text-align: right;">
                         {% if analysis.status == "pending" %}
@@ -804,23 +964,23 @@
     </div>
     {% if paging.show_pcap_next == "show" or paging.show_pcap_prev == "show" %}
         <nav aria-label="Page navigation">
-           <ul class="pagination justify-content-center">
-           {% if paging.show_pcap_prev == "show" %}
-               <li class="page-item"><a class="page-link" href="{% url "analysis" %}page/{{paging.prev_page}}/">&larr; Newer</a></li>
-           {% endif %}
-           {% if paging.pcap_page_range %}
-               {% for page in paging.pcap_page_range %}
-                   {% if page == paging.current_page %}
-                   <li class="page-item active"><a class="page-link">{{page}}</a></li>
-                   {% else %}
-                   <li class="page-item"><a class="page-link" href="{% url "analysis" %}page/{{page}}/">{{page}}</a></li>
-                   {% endif %}
-               {% endfor %}
-           {% endif %}
-           {% if paging.show_pcap_next == "show" %}
-               <li class="page-item"><a class="page-link" href="{% url "analysis" %}page/{{paging.next_page}}/">Older &rarr;</a></li>
-           {% endif %}
-           </ul>
+            <ul class="pagination justify-content-center">
+            {% if paging.show_pcap_prev == "show" %}
+                <li class="nav-item"><a class="nav-link" href="{% url "analysis" %}page/{{paging.prev_page}}/">&larr; Newer</a></li>
+            {% endif %}
+            {% if paging.pcap_page_range %}
+                {% for page in paging.pcap_page_range %}
+                    {% if page == paging.current_page %}
+                    <li class="nav-item active"><a class="nav-link">{{page}}</a></li>
+                    {% else %}
+                    <li class="nav-item"><a class="nav-link" href="{% url "analysis" %}page/{{page}}/">{{page}}</a></li>
+                    {% endif %}
+                {% endfor %}
+            {% endif %}
+            {% if paging.show_pcap_next == "show" %}
+                <li class="nav-item"><a class="nav-link" href="{% url "analysis" %}page/{{paging.next_page}}/">Older &rarr;</a></li>
+            {% endif %}
+            </ul>
         </nav>
     {% endif %}
 </div>
diff --git a/web/templates/analysis/memory/_dlllist.html b/web/templates/analysis/memory/_dlllist.html
new file mode 100644
index 00000000000..2424c1f87e8
--- /dev/null
+++ b/web/templates/analysis/memory/_dlllist.html
@@ -0,0 +1,26 @@
+<table class="table table-bordered" style="table-layout: fixed;">
+    <thead>
+        <tr>
+            <th>PID</th>
+            <th>Process</th>
+            <th>Base</td>
+            <th>Size</th>
+            <th>Name</th>
+            <th>Path</th>
+            <th>Load Time</th>
+        </tr>
+    </thead>
+    <tbody>
+    {% for dll in memory.dlllist %}
+        <tr>
+            <td>{{dll.PID}}</td>
+            <td>{{dll.Process}}</td>
+            <td>{{dll.Base}}</td>
+            <td>{{dll.Size}}</td>
+            <td>{{dll.Name}}</td>
+            <td>{{dll.Path}}</td>
+            <td>{{dll.LoadTime}}</td>
+        </tr>
+    {% endfor %}
+    </tbody>
+</table>
diff --git a/web/templates/analysis/memory/_getsids.html b/web/templates/analysis/memory/_getsids.html
new file mode 100644
index 00000000000..9eabdb94b72
--- /dev/null
+++ b/web/templates/analysis/memory/_getsids.html
@@ -0,0 +1,20 @@
+<table class="table table-bordered" style="table-layout: fixed;">
+    <thead>
+        <tr>
+            <th>PID</th>
+            <th>Process</th>
+            <th>SID</th>
+            <th>Name</td>
+        </tr>
+    </thead>
+    <tbody>
+    {% for getsids in memory.getsids %}
+        <tr>
+            <td>{{getsids.PID}}</td>
+            <td>{{getsids.Process}}</td>
+            <td>{{getsids.SID}}</td>
+            <td>{{getsids.Name}}</td>
+        </tr>
+    {% endfor %}
+    </tbody>
+</table>
diff --git a/web/templates/analysis/memory/_handles.html b/web/templates/analysis/memory/_handles.html
new file mode 100644
index 00000000000..759e284543d
--- /dev/null
+++ b/web/templates/analysis/memory/_handles.html
@@ -0,0 +1,26 @@
+<table class="table table-bordered" style="table-layout: fixed;">
+    <thead>
+        <tr>
+            <th>PID</th>
+            <th>Process</th>
+            <th>Offset</td>
+            <th>Handle Value</th>
+            <th>Type</th>
+            <th>Granted Access</th>
+            <th>Name</th>
+        </tr>
+    </thead>
+    <tbody>
+    {% for handles in memory.handles %}
+        <tr>
+            <td>{{handles.PID}}</td>
+            <td>{{handles.Process}}</td>
+            <td>{{handles.Offset}}</td>
+            <td>{{handles.HandleValue}}</td>
+            <td>{{handles.Type}}</td>
+            <td>{{handles.GrantedAccess}}</td>
+            <td>{{handles.Name}}</td>
+        </tr>
+    {% endfor %}
+    </tbody>
+</table>
diff --git a/web/templates/analysis/memory/_mutantscan.html b/web/templates/analysis/memory/_mutantscan.html
new file mode 100644
index 00000000000..36b0ac088cb
--- /dev/null
+++ b/web/templates/analysis/memory/_mutantscan.html
@@ -0,0 +1,16 @@
+<table class="table table-bordered" style="table-layout: fixed;">
+    <thead>
+        <tr>
+            <th>Offset</th>
+            <th>Name</th>
+        </tr>
+    </thead>
+    <tbody>
+    {% for mutex in memory.mutantscan %}
+        <tr>
+            <td>{{mutex.Offset}}</td>
+            <td>{{mutex.Name}}</td>
+        </tr>
+    {% endfor %}
+    </tbody>
+</table>
diff --git a/web/templates/analysis/memory/_privs.html b/web/templates/analysis/memory/_privs.html
new file mode 100644
index 00000000000..0a31c0e979a
--- /dev/null
+++ b/web/templates/analysis/memory/_privs.html
@@ -0,0 +1,22 @@
+<table class="table table-bordered" style="table-layout: fixed;">
+    <thead>
+        <tr>
+            <th>PID</th>
+            <th>Process</th>
+            <th>Privilege</td>
+            <th>Attributes</th>
+            <th>Description</th>
+        </tr>
+    </thead>
+    <tbody>
+    {% for privs in memory.privs %}
+        <tr>
+            <td>{{privs.PID}}</td>
+            <td>{{privs.Process}}</td>
+            <td>{{privs.Privilege}}</td>
+            <td>{{privs.Attributes}}</td>
+            <td>{{privs.Description}}</td>
+        </tr>
+    {% endfor %}
+    </tbody>
+</table>
diff --git a/web/templates/analysis/memory/_psscan.html b/web/templates/analysis/memory/_psscan.html
new file mode 100644
index 00000000000..529c462188a
--- /dev/null
+++ b/web/templates/analysis/memory/_psscan.html
@@ -0,0 +1,36 @@
+<table class="table table-bordered" style="table-layout: fixed;">
+    <thead>
+        <tr>
+            <th>Parent PID</th>
+            <th>PID</th>
+            <th>Name</th>
+            <th>Create Time</th>
+            <th>Exit Time</th>
+            <th># Threads</th>
+            <th># Handles</th>
+            <th>Session ID</th>
+        </tr>
+    </thead>
+    <tbody>
+    {% for proc_psscan in memory.psscan %}
+        <tr>
+            <td>{{proc_psscan.PPID}}</td>
+            <td>{{proc_psscan.PID}}</td>
+            <td>{{proc_psscan.ImageFileName}}</td>
+            <td>{{proc_psscan.CreateTime}}</td>
+            {% if proc_psscan.ExitTime %}
+                <td>{{proc_psscan.ExitTime}}</td>
+            {% else %}
+                <td>-</td>
+            {% endif %}
+            <td>{{proc_psscan.Threads}}</td>
+            <td>{{proc_psscan.Handles}}</td>
+            {% if proc_psscan.SessionId %}
+                <td>{{proc_psscan.SessionId}}</td>
+            {% else %}
+                <td>-</td>
+            {% endif %}
+        </tr>
+    {% endfor %}
+    </tbody>
+</table>
diff --git a/web/templates/analysis/memory/_rootkit.html b/web/templates/analysis/memory/_rootkit.html
new file mode 100644
index 00000000000..6f6b95d793c
--- /dev/null
+++ b/web/templates/analysis/memory/_rootkit.html
@@ -0,0 +1,38 @@
+<table class="table table-bordered" style="table-layout: fixed;">
+    <thead>
+        <tr>
+            <th>Parent PID</th>
+            <th>PID</th>
+            <th>Name</th>
+            <th>Create Time</th>
+            <th>Exit Time</th>
+            <th># Threads</th>
+            <th># Handles</th>
+            <th>Session ID</th>
+        </tr>
+    </thead>
+    <tbody>
+    {% for proc_psscan in memory.psscan %}
+   	{% if proc_psscan not in memory.pslist %}
+        <tr>
+		<td>{{proc_psscan.PPID}}</td>
+       	        <td>{{proc_psscan.PID}}</td>
+        	<td>{{proc_psscan.ImageFileName}}</td>
+        	<td>{{proc_psscan.CreateTime}}</td>
+        	{% if proc_psscan.ExitTime %}
+        		<td>{{proc_psscan.ExitTime}}</td>
+        	{% else %}
+        		<td>-</td>
+        	{% endif %}
+        	<td>{{proc_psscan.Threads}}</td>
+        	<td>{{proc_psscan.Handles}}</td>
+        	{% if proc_psscan.SessionId %}
+			<td>{{proc_psscan.SessionId}}</td>
+        	{% else %}
+        		<td>-</td>
+        	{% endif %}
+        </tr>
+	{% endif %}
+    {% endfor %}
+    </tbody>
+</table>
diff --git a/web/templates/analysis/memory/index.html b/web/templates/analysis/memory/index.html
index 97a648a2bcb..4ea807cba4d 100644
--- a/web/templates/analysis/memory/index.html
+++ b/web/templates/analysis/memory/index.html
@@ -1,11 +1,13 @@
 {% if memory %}
     <div class="alert alert-primary center">
-        <a class="btn btn-secondary btn-sm" href="{% url "full_memory_dump_file" id %}">Download Full Memory Dump</a>
-        <a class="btn btn-secondary btn-sm" href="{% url "full_memory_dump_strings" id %}">Download Full Memory Dump Strings</a>
+        <a class="btn btn-secondary btn-sm" href="{% url "full_memory_dump_file" id %}" data-bs-toggle="tooltip" title="Download file"><span class="fas fa-download"></span> Full Memory Dump</a>
+        <a class="btn btn-secondary btn-sm" href="{% url "full_memory_dump_strings" id %}" data-bs-toggle="tooltip" title="Download strings"><span class="fas fa-download" ></span> Full Memory Dump Strings</a>
     </div>
     <div class="tabbable tabs">
         <ul class="nav nav-tabs" style="margin-bottom: 0;">
             {% if memory.pslist %}<li class="nav-item active"><a class="nav-link" href="#memory_pslist" data-toggle="tab">Process List</a></li>{% endif %}
+            {% if memory.psscan %}<li class="nav-item"><a class="nav-link" href="#memory_psscan" data-toggle="tab">Process Scan</a></li>{% endif %}
+            {% if memory.psscan and memory.pslist %}<li class="nav-item"><a class="nav-link" href="#memory_rootkit" data-toggle="tab">Rootkits</a></li>{% endif %}
             {% if memory.svcscan %}<li class="nav-item"><a class="nav-link" href="#memory_svcscan" data-toggle="tab">Services</a></li>{% endif %}
             {% if memory.modscan %}<li class="nav-item"><a class="nav-link" href="#memory_modscan" data-toggle="tab">Kernel Modules</a></li>{% endif %}
             {% if memory.devicetree %}<li class="nav-item"><a class="nav-link" href="#memory_devicetree" data-toggle="tab">Device Tree</a></li>{% endif %}
@@ -18,7 +20,12 @@
             {% if memory.ssdt %}<li class="nav-item"><a class="nav-link" href="#memory_ssdt" data-toggle="tab">SSDT</a></li>{% endif %}
             {% if memory.idt %}<li class="nav-item"><a class="nav-link" href="#memory_idt" data-toggle="tab">IDT</a></li>{% endif %}
             {% if memory.gdt %}<li class="nav-item"><a class="nav-link" href="#memory_gdt" data-toggle="tab">GDT</a></li>{% endif %}
-            {% if analysis.memory.sockscan or analysis.memory.netscan %}
+            {% if memory.privs %}<li class="nav-item"><a class="nav-link" href="#memory_privs" data-toggle="tab">Privilege</a></li>{% endif %}
+            {% if memory.handles %}<li class="nav-item"><a class="nav-link" href="#memory_handles" data-toggle="tab">Handles</a></li>{% endif %}
+            {% if memory.getsids %}<li class="nav-item"><a class="nav-link" href="#memory_getsids" data-toggle="tab">Sid by Process</a></li>{% endif %}
+            {% if memory.dlllist %}<li class="nav-item"><a class="nav-link" href="#memory_dlllist" data-toggle="tab">Dll List</a></li>{% endif %}
+            {% if memory.mutantscan %}<li class="nav-item"><a class="nav-link" href="#memory_mutantscan" data-toggle="tab">Mutex</a></li>{% endif %}
+            {% if memory.sockscan or memory.netscan %}
             <li class="nav-item"><a class="nav-link" href="#memory_sockets" data-toggle="tab">Sockets</a></li>
             {% endif %}
         </ul>
@@ -29,6 +36,16 @@
                 {% include "analysis/memory/_pslist.html" %}
             </div>
             {% endif %}
+            {% if memory.psscan %}
+            <div class="tab-pane fade show" id="memory_psscan">
+                {% include "analysis/memory/_psscan.html" %}
+            </div>
+            {% endif %}
+            {% if memory.psscan and memory.pslist %}
+            <div class="tab-pane fade show" id="memory_rootkit">
+                {% include "analysis/memory/_rootkit.html" %}
+            </div>
+            {% endif %}
             {% if memory.svcscan %}
             <div class="tab-pane fade show" id="memory_svcscan">
                 {% include "analysis/memory/_svcscan.html" %}
@@ -98,6 +115,31 @@
                 {% include "analysis/memory/_netscan.html" %}
             </div>
             {% endif %}
+            {% if memory.privs %}
+            <div class="tab-pane fade show" id="memory_privs">
+                {% include "analysis/memory/_privs.html" %}
+            </div>
+            {% endif %}
+            {% if memory.handles %}
+            <div class="tab-pane fade show" id="memory_handles">
+                {% include "analysis/memory/_handles.html" %}
+            </div>
+            {% endif %}
+            {% if memory.getsids %}
+            <div class="tab-pane fade show" id="memory_getsids">
+                {% include "analysis/memory/_getsids.html" %}
+            </div>
+            {% endif %}
+            {% if memory.dlllist %}
+            <div class="tab-pane fade show" id="memory_dlllist">
+                {% include "analysis/memory/_dlllist.html" %}
+            </div>
+            {% endif %}
+            {% if memory.mutantscan %}
+            <div class="tab-pane fade show" id="memory_mutantscan">
+                {% include "analysis/memory/_mutantscan.html" %}
+            </div>
+            {% endif %}
         </div>
     </div>
 {% else %}
diff --git a/web/templates/analysis/network/_cif.html b/web/templates/analysis/network/_cif.html
index 0d8587d39ef..327eff3bdb0 100644
--- a/web/templates/analysis/network/_cif.html
+++ b/web/templates/analysis/network/_cif.html
@@ -1,6 +1,6 @@
 <section id="cif">
     <h4>CIF Results</h4>
-    {% if analysis.cif %}
+    {% if cif %}
         <table class="table table-striped table-bordered">
             <tr>
                 <th width="20%">Address</th>
@@ -11,18 +11,18 @@ <h4>CIF Results</h4>
                 <th width="5%">Assessment</th>
                 <th width="30%">Description</th>
             </tr>
-            {% for result in analysis.cif %}
-            {% if result.address %}
-            <tr>
-                <td>{{result.address}}</td>
-                <td>{{result.detecttime}}</td>
-                <td>{{result.reporttime}}</td>
-                <td>{{result.restriction}}</td>
-                <td>{{result.confidence}}</td>
-                <td>{{result.assessment}}</td>
-                <td>{{result.description}}</td>
-            </tr>
-            {% endif %}
+            {% for result in cif %}
+                {% if result.address %}
+                <tr>
+                    <td>{{result.address}}</td>
+                    <td>{{result.detecttime}}</td>
+                    <td>{{result.reporttime}}</td>
+                    <td>{{result.restriction}}</td>
+                    <td>{{result.confidence}}</td>
+                    <td>{{result.assessment}}</td>
+                    <td>{{result.description}}</td>
+                </tr>
+                {% endif %}
             {% endfor %}
         </table>
 
diff --git a/web/templates/analysis/network/_dns.html b/web/templates/analysis/network/_dns.html
index 60700773983..0320e012785 100644
--- a/web/templates/analysis/network/_dns.html
+++ b/web/templates/analysis/network/_dns.html
@@ -1,7 +1,6 @@
 <section id="domains">
-    <h4>DNS</h4>
     {% if network.dns %}
-        <table class="table table-striped table-bordered">
+        <table class="table table-striped table-bordered" style="width: 50%;margin-left: auto;margin-right: auto;">
             <tr>
                 <th>Name</th>
                 <th>Response</th>
@@ -38,14 +37,14 @@ <h4>DNS</h4>
                             {% endif %}
                         {% endfor %}
                     </td>
-                    <td>{% if network.domainlookups and  network.domainlookups|get_item:p.request %}
-                        {{ network.domainlookups|get_item:p.request }}
-                        <a href="https://www.virustotal.com/gui/ip-address/{{network.domainlookups|get_item:p.request}}/detection">[VT]</a>
+                    <td>{% if domainlookups and domainlookups|get_item:p.request %}
+                        {{ domainlookups|get_item:p.request }}
+                        <a href="https://www.virustotal.com/gui/ip-address/{{domainlookups|get_item:p.request}}/detection">[VT]</a>
                         {% if config.display_et_portal %}
-                        <a href="https://threatintel.proofpoint.com/search?q={{network.domainlookups|get_item:p.request}}" target="_blank">[ET]</a>
+                        <a href="https://threatintel.proofpoint.com/search?q={{domainlookups|get_item:p.request}}" target="_blank">[ET]</a>
                         {% endif %}
                         {% if config.display_pt_portal %}
-                        <a href="https://www.passivetotal.org/passive/{{network.domainlookups|get_item:p.request}}" target="_blank">[PT]</a>
+                        <a href="https://www.passivetotal.org/passive/{{domainlookups|get_item:p.request}}" target="_blank">[PT]</a>
                         {% endif %}
                         {% endif %}
                     </td>
diff --git a/web/templates/analysis/network/_hosts.html b/web/templates/analysis/network/_hosts.html
index 8a5215795d3..b74a9a47270 100644
--- a/web/templates/analysis/network/_hosts.html
+++ b/web/templates/analysis/network/_hosts.html
@@ -1,11 +1,11 @@
 <section id="hosts">
-    <h4>Hosts</h4>
     {% if network.hosts %}
-        <table class="table table-striped table-bordered">
+        <table class="table table-striped table-bordered" style="width: 50%;margin-left: auto;margin-right: auto;">
             <tr>
                 <th width="10%">Direct</th>
                 <th>IP</th>
                 <th>Country Name</th>
+                <th>ASN</th>
             </tr>
             {% for host in network.hosts %}
             <tr>
@@ -17,15 +17,18 @@ <h4>Hosts</h4>
                     {% else %}
                         <td>N/A</td>
                     {% endif %}
-                    <td>{{host.ip}} <a href="https://www.virustotal.com/gui/ip-address/{{host.ip}}/detection">[VT]</a>
-                    {% if config.display_et_portal %}
-                    <a href="https://threatintel.proofpoint.com/search?q={{host.ip}}" target="_blank">[ET]</a>
-                    {% endif %}
-                    {% if config.display_pt_portal %}
-                    <a href="https://www.passivetotal.org/passive/{{host.ip}}" target="_blank">[PT]</a>
-                    {% endif %}
+                    <td>{{host.ip}} <a href="https://www.virustotal.com/gui/ip-address/{{host.ip}}/">[VT]</a>
+                        {% if config.display_et_portal %}
+                            <a href="https://threatintel.proofpoint.com/search?q={{host.ip}}" target="_blank">[ET]</a>
+                        {% endif %}
+                        {% if config.display_pt_portal %}
+                            <a href="https://www.passivetotal.org/passive/{{host.ip}}" target="_blank">[PT]</a>
+                        {% endif %}
                     </td>
                     <td>{{host.country_name}}</td>
+                    {% if host.asn %}
+                        <td>{{host.asn}}{% if host.asn_name %} - {{host.asn_name}}{% endif %} </td>
+                    {% endif %}
                 {% endif %}
             </tr>
             {% endfor %}
diff --git a/web/templates/analysis/network/_hosts_not_ajax.html b/web/templates/analysis/network/_hosts_not_ajax.html
index 06a49dac7cd..01381f3946d 100644
--- a/web/templates/analysis/network/_hosts_not_ajax.html
+++ b/web/templates/analysis/network/_hosts_not_ajax.html
@@ -6,6 +6,7 @@ <h4>Hosts</h4>
                 <th width="10%">Direct</th>
                 <th>IP</th>
                 <th>Country Name</th>
+                <th>ASN</th>
             </tr>
             {% for host in analysis.network.hosts %}
             <tr>
@@ -19,13 +20,16 @@ <h4>Hosts</h4>
                     {% endif %}
                     <td>{{host.ip}} <a href="https://www.virustotal.com/gui/ip-address/{{host.ip}}/detection">[VT]</a>
                     {% if config.display_et_portal %}
-                    <a href="https://threatintel.proofpoint.com/search?q={{host.ip}}" target="_blank">[ET]</a>
+                        <a href="https://threatintel.proofpoint.com/search?q={{host.ip}}" target="_blank">[ET]</a>
                     {% endif %}
                     {% if config.display_pt_portal %}
-                    <a href="https://www.passivetotal.org/passive/{{host.ip}}" target="_blank">[PT]</a>
+                        <a href="https://www.passivetotal.org/passive/{{host.ip}}" target="_blank">[PT]</a>
                     {% endif %}
                     </td>
                     <td>{{host.country_name}}</td>
+                    {% if host.asn %}
+                        <td><a href="/analysis/search/asn:{{host.asn}}"><span title="{{host.asn_name}}" style="font-weight: bold;">{{host.asn}}</span></a></td>
+                    {% endif %}
                 {% endif %}
             </tr>
             {% endfor %}
diff --git a/web/templates/analysis/network/_http.html b/web/templates/analysis/network/_http.html
index bf5d0bbd786..7e129df617a 100644
--- a/web/templates/analysis/network/_http.html
+++ b/web/templates/analysis/network/_http.html
@@ -13,7 +13,7 @@ <h4>HTTP Requests</h4>
             {% if http.request %}
                 <tr><td>
                     {% if http.req.sha256 %}
-                        <a href="{% url "file" "networkzip" id http.req.sha256 %}" class="btn btn-secondary btn-sm">Download Request content</a>
+                        <a href="{% url "file" "networkzip" id http.req.sha256 %}" class="btn btn-secondary btn-sm"><span class="fas fa-download"></span> Request content</a>
                     {% else %}
                         Request:
                     {% endif %}
@@ -25,7 +25,7 @@ <h4>HTTP Requests</h4>
             <tr><td>
             {% if http.response %}
                 {% if http.resp.sha256 %}
-                    <a href="{% url "file" "networkzip" id http.resp.sha256 %}" class="btn btn-secondary btn-sm">Download Response content</a>
+                    <a href="{% url "file" "networkzip" id http.resp.sha256 %}" class="btn btn-secondary btn-sm"><span class="fas fa-download"></span> Response content</a>
                 {% else %}
                     Response:
                 {% endif %}
diff --git a/web/templates/analysis/network/_icmp.html b/web/templates/analysis/network/_icmp.html
index b490583dd13..cda2e0648ba 100644
--- a/web/templates/analysis/network/_icmp.html
+++ b/web/templates/analysis/network/_icmp.html
@@ -1,4 +1,3 @@
-<h4>ICMP traffic</h4>
 {% if network.icmp %}
 <table class="table table-striped table-bordered" style="table-layout: fixed;">
     <tr>
diff --git a/web/templates/analysis/network/_smtp.html b/web/templates/analysis/network/_smtp.html
index 56fbd4740a7..943313eee11 100644
--- a/web/templates/analysis/network/_smtp.html
+++ b/web/templates/analysis/network/_smtp.html
@@ -1,5 +1,47 @@
 <h4>SMTP traffic</h4>
-{% if network.smtp %}
+{% if network.smtp_ex %}
+<table class="table table-striped table-bordered" style="table-layout: fixed;">
+    <tr>
+        <th>Destination</th>
+        <th>Data</th>
+    </tr>
+    {% for req in network.smtp_ex %}
+    <tr>
+        <td style="word-wrap: break-word;">{{req.dst}}:{{req.dport}}</td>
+        <td style="word-wrap: break-word;">
+            <table class="table table-striped table-bordered">
+            {% if req %}
+                <tr><td>
+                    Request:
+                    {% for key, value in req.req.items %}
+                    {% if key in "headers,mail_body" %}
+                        <li><b>{{key}}:</b> <pre style="display: inline-block;white-space: pre-wrap;overflow-x: auto;width: 100%;">{{value}}</pre></li>
+                    {% else %}
+                        <li><b>{{key}}:</b> <pre style="display: inline">{{value}}</pre></li>
+                    {% endif %}
+                    {% endfor %}
+                </td></tr>
+            {% endif %}
+            <tr><td>
+            {% if req.resp %}
+                Response:
+                {% for key, value in req.resp.items %}
+                    {% if key in "banner" %}
+                        <li><b>{{key}}:</b> <pre style="display: inline-block;white-space: pre-wrap;overflow-x: auto;width: 100%;">{{value}}</pre></li>
+                    {% else %}
+                        <li><b>{{key}}:</b> <pre style="display: inline">{{value}}</pre></li>
+                    {% endif %}
+                {% endfor %}
+            {% else %}
+                No response
+            {% endif %}
+            </td></tr>
+            </table>
+        </td>
+    </tr>
+    {% endfor %}
+</table>
+{% elif network.smtp %}
 <table class="table table-striped table-bordered" style="table-layout: fixed;">
     <tr>
         <th>Destination</th>
diff --git a/web/templates/analysis/network/_suricata_files.html b/web/templates/analysis/network/_suricata_files.html
index 2ef2b8532cb..692ce7cb3d3 100644
--- a/web/templates/analysis/network/_suricata_files.html
+++ b/web/templates/analysis/network/_suricata_files.html
@@ -1,7 +1,7 @@
 {% if suricata.files|length > 0 %}
-    <div class="alert alert-info center"><a class="btn btn-secondary btn-small" href="{% url "file" "zip" id "files" %}">Download Suri Extracted</a></div>
+    <div class="alert alert-primary center"><a class="btn btn-secondary btn-sm" href="{% url "file" "zip" id "files" %}"><span class="fas fa-download"></span> Suri Extracted</a></div>
     {% for file in suricata.files %}
-        <div class="card ">
+        <div class="table">
             <table class="table table-striped">
                 <tr>
                     <th style="border-top: 0;" width="15%">File name</th>
@@ -114,9 +114,9 @@
                 {% endif %}
                 <tr>
                     <th></th>
-                    <td><a href="{% url "file" "suricata" info.id file.sha256 %}" class="btn btn-secondary btn-small">Download</a>
+                    <td><a href="{% url "file" "suricata" id file.sha256 %}" class="btn btn-secondary btn-sm"><span class="fas fa-download"></span></a>
                     {% if file.file_info.data %}
-                    &emsp;<a class="btn btn-secondary btn-small" data-toggle="collapse" data-target="#{{file.sha256}}">Display Text</a>
+                    &emsp;<a class="btn btn-secondary btn-sm" data-toggle="collapse" data-target="#{{file.sha256}}">Display Text</a>
                     {% endif %}
                     </td>
                 </tr>
@@ -129,5 +129,5 @@
         </div>
     {% endfor %}
 {% else %}
-    <div class="alert alert-info"><b>Sorry!</b> No dropped Suricata Extracted files.</div>
+    <div class="alert alert-primary"><b>Sorry!</b> No Suricata Extracted files.</div>
 {% endif %}
diff --git a/web/templates/analysis/network/_suricata_tls.html b/web/templates/analysis/network/_suricata_tls.html
index 03342a3105c..72f54ab68e0 100644
--- a/web/templates/analysis/network/_suricata_tls.html
+++ b/web/templates/analysis/network/_suricata_tls.html
@@ -52,7 +52,7 @@ <h4>Suricata TLS</h4>
                     {% endif %}
                 </td>
                 <td>{{tls.subject}}</td>
-                <td>{{tls.issuer}}</td>
+                <td>{{tls.issuerdn}}</td>
                 <td>{{tls.fingerprint}} </td>
                 <td>
                     {% if tls.ja3 %}
diff --git a/web/templates/analysis/network/_tcp.html b/web/templates/analysis/network/_tcp.html
index 87d98fa6ec3..f969164d1b8 100644
--- a/web/templates/analysis/network/_tcp.html
+++ b/web/templates/analysis/network/_tcp.html
@@ -1,6 +1,5 @@
 <script src="{{ STATIC_URL }}js/hexdump.js"></script>
 <section id="tcp" class="tcpudp">
-    <h4>TCP</h4>
     {% if network.tcp %}
         <div class="row">
             <div class="col-md-6">
diff --git a/web/templates/analysis/network/_udp.html b/web/templates/analysis/network/_udp.html
index e40bfc4eaad..b9f63445ba5 100644
--- a/web/templates/analysis/network/_udp.html
+++ b/web/templates/analysis/network/_udp.html
@@ -1,6 +1,5 @@
 <script src="{{ STATIC_URL }}js/hexdump.js"></script>
 <section id="udp" class="tcpudp">
-    <h4>UDP</h4>
     {% if network.udp %}
         <div class="row">
             <div class="col-md-6">
diff --git a/web/templates/analysis/network/index.html b/web/templates/analysis/network/index.html
index 00c159caf21..e3bc6349b3d 100644
--- a/web/templates/analysis/network/index.html
+++ b/web/templates/analysis/network/index.html
@@ -1,6 +1,18 @@
 {% if network.pcap_sha256 %}
-    <div class="alert alert-primary center"><a class="btn btn-secondary btn-sm" href="{% url "file" "pcap" id network.pcap_sha256 %}">Download PCAP</a></div>
-    <!--allow dl tls keys-->
+
+    <div class="alert alert-primary center">
+        <a class="btn btn-secondary btn-sm" href="{% url "file" "pcap" id network.pcap_sha256 %}"><span class="fas fa-download"></span> PCAP</a>
+        {% if config.pcap_ng %}
+            <a class="btn btn-secondary btn-sm" title="PCAP with embedded TLS keys for use in WireShark." href="{% url "file" "pcapng" id "dump" %}"><span class="fas fa-download"></span> PCAP-NG</a>
+        {% endif %}
+            <a class="btn btn-secondary btn-sm" href="{% url "file" "pcapzip" id network.pcap_sha256 %}"><span class="fas fa-file-archive"></span><span class="fas fa-download"></span> PCAP</a>
+        {% if tlskeys_exists %}
+            <a class="btn btn-secondary btn-sm" href="{% url "file" "tlskeys" id network.pcap_sha256 %}"><span class="fas fa-download"></span> TLS keys</a>
+        {% endif %}
+        {% if mitmdump_exists %}
+            <a class="btn btn-secondary btn-sm" href="{% url "file" "mitmdump" id 0 %}"><span class="fas fa-download"></span> Mitmdump </a>
+        {% endif %}
+    </div>
 {% endif %}
     <ul class="nav nav-tabs flex-column flex-sm-row" style="margin-bottom: 0;">
         <li class="nav-item active"><a class="nav-link" href="#network_hosts_tab" data-toggle="tab">Hosts ({{ network.hosts|length }})</a></li>
diff --git a/web/templates/analysis/overview/_capa_summary.html b/web/templates/analysis/overview/_capa_summary.html
new file mode 100644
index 00000000000..ddbd3d329b4
--- /dev/null
+++ b/web/templates/analysis/overview/_capa_summary.html
@@ -0,0 +1,27 @@
+{% if analysis.capa_summary %}
+    {% load analysis_tags %}
+    <div class="card-header">
+        <center><a class="accordion-toggle" data-toggle="collapse" aria-expanded="false" href="#capa_summary"><i class="fas fa-rectangle-list"></i> CAPA analysis summary</a></center>
+    </div>
+    <div id="capa_summary" class="collapse">
+        <tr>
+            <th></th><td>
+            <div class="collapse" id="capa_summary">
+                <div>
+                <!--Inspired by @snemes trick, code placed in web/views/templateatgs/analysis_tags.py-->
+                {% if analysis.capa_summary.CAPABILITY %}
+                    {{analysis.capa_summary|flare_capa_capability}}
+                {% endif %}
+                {% if analysis.capa_summary.ATTCK %}
+                    {{analysis.capa_summary|flare_capa_attck}}
+                {% endif %}
+                {% if analysis.capa_summary.MBC %}
+                    {{analysis.capa_summary|flare_capa_mbc}}
+                {% endif %}
+                </div>
+            </div>
+        </td>
+        </tr>
+        </br>
+    </div>
+{% endif %}
diff --git a/web/templates/analysis/overview/_curtain.html b/web/templates/analysis/overview/_curtain.html
new file mode 100644
index 00000000000..5fe78ac413d
--- /dev/null
+++ b/web/templates/analysis/overview/_curtain.html
@@ -0,0 +1,84 @@
+<!--
+__author__  = "Jeff White [karttoon] @noottrak"
+__email__   = "jwhite@paloaltonetworks.com"
+__version__ = "1.0.1"
+__date__    = "29NOV2017
+-->
+
+<div class="card-header">
+    <center><a class="accordion-toggle" data-toggle="collapse" aria-expanded="false" href="#curtain"><i class="fas fa-terminal"></i> Curtain</a></center>
+</div>
+<div id="curtain" class="collapse">
+    <div class="card">
+        <div class="container-fluid">
+            <div class="row">
+                <div class="col-md-12">
+                    <div class="tabbable tabs">
+                        <ul class="nav nav-tabs" style="margin-bottom: 0;">
+                            <li class="nav-item active"><a class="nav-link" href="#curtain_orig_tab" data-toggle="tab">Original Events</a> </li>
+                            <li class="nav-item"><a class="nav-link" href="#curtain_altr_tab" data-toggle="tab">Altered Events</a></li>
+                            <li class="nav-item"><a class="nav-link" href="#curtain_filt_tab" data-toggle="tab">Filtered Events</a></li>
+                        </ul>
+                        <div class="tab-content">
+                            <div class="tab-pane fade show active" id="curtain_orig_tab">
+                                {% if analysis.curtain %}
+                                    {% for pid,dict in analysis.curtain.items %}
+                                    <div class="card ">
+                                        <div class="card-header">
+                                            PID: {{pid}} - {% for entry in dict.behaviors %}
+                                            <a class="btn btn-secondary">{{ entry }}</a>
+                                            {% endfor %}
+                                        </div>
+                                        <div class="card-body">
+                                            {% for entry in dict.events %} {% for event,message in entry.items %}
+                                            <b>Event: {{ event }}</b>
+                                            <p>{{ message.original|linebreaksbr }}</p> {% endfor %} {% endfor %}
+                                        </div>
+                                    </div>
+                                    {% endfor %}
+                                {% endif %}
+                            </div>
+                            <div class="tab-pane fade" id="curtain_altr_tab">
+                                {% if analysis.curtain %}
+                                    {% for pid,dict in analysis.curtain.items %}
+                                    <div class="card ">
+                                        <div class="card-header">
+                                            PID: {{pid}} - {% for entry in dict.behaviors %}
+                                            <a class="btn btn-secondary">{{ entry }}</a>
+                                            {% endfor %}
+                                        </div>
+                                        <div class="card-body">
+                                            {% for entry in dict.events %} {% for event,message in entry.items %} Event:
+                                            <b>{{ event }}</b>
+                                            <p>{{ message.altered|linebreaksbr }}</p> {% endfor %} {% endfor %}
+                                        </div>
+                                    </div>
+                                    {% endfor %}
+                                {% endif %}
+                            </div>
+                            <div class="tab-pane fade" id="curtain_filt_tab">
+                                {% if analysis.curtain %} {% for pid,dict in analysis.curtain.items %}
+                                <div class="card ">
+                                    <div class="card-header">
+                                        PID: {{pid}} - {% for entry in dict.behaviors %}
+                                        <a class="btn btn-secondary">{{ entry }}</a>
+                                        {% endfor %}
+                                    </div>
+                                    <div class="card-body">
+                                        {% for entry in dict.filter %}
+                                        {% for event,message in entry.items %}
+                                        <b>Event: {{ event }}</b>
+                                        <p>
+                                            {{ message|linebreaksbr }}
+                                        </p> {% endfor %} {% endfor %}
+                                    </div>
+                                </div>
+                                {% endfor %} {% endif %}
+                            </div>
+                        </div>
+                    </div>
+                </div>
+            </div>
+        </div>
+    </div>
+</div>
diff --git a/web/templates/analysis/overview/_file.html b/web/templates/analysis/overview/_file.html
deleted file mode 100644
index 3eb582d6732..00000000000
--- a/web/templates/analysis/overview/_file.html
+++ /dev/null
@@ -1,189 +0,0 @@
-<section id="file">
-    <h4>File Details</h4>
-    {% if analysis.info.parent_sample %}
-    <div class="form-group">
-        <label for="parent_file"><a href="#parent_file" data-toggle="collapse">Parent file</a></label>
-        <div id="parent_file" class="collapse">
-            <table class="table table-striped table-dark" style="table-layout: fixed;">
-                <tr>
-                    <th style="border-top: 0; width: 15%;">File Size</th>
-                    <td style="border-top: 0; word-wrap: break-word;">{{analysis.info.parent_sample.file_size}} bytes</td>
-                </tr>
-                <tr>
-                    <th>File Type</th>
-                    <td style="word-wrap: break-word;">{{analysis.info.parent_sample.file_type}}</td>
-                </tr>
-                <tr>
-                    <th>MD5</th>
-                    <td style="word-wrap: break-word;">{{analysis.info.parent_sample.md5}}</td>
-                </tr>
-                <tr>
-                    <th>SHA1</th>
-                    <td style="word-wrap: break-word;">{{analysis.info.parent_sample.sha1}}</td>
-                </tr>
-                <tr>
-                    <th>SHA256</th>
-                    <td style="word-wrap: break-word;">{{analysis.info.parent_sample.sha256}}</td>
-                </tr>
-                <tr>
-                    <th>SHA512</th>
-                    <td style="word-wrap: break-word;">{{analysis.info.parent_sample.sha512}}</td>
-                </tr>
-                <tr>
-                    <th>CRC32</th>
-                    <td>{{analysis.info.parent_sample.crc32}}</td>
-                </tr>
-                {% if analysis.info.parent_sample.ssdeep %}
-                <tr>
-                    <th>Ssdeep</th>
-                    <td style="word-wrap: break-word;">{{analysis.info.parent_sample.ssdeep}}</td>
-                </tr>
-                {% endif %}
-            </table>
-        </div>
-    </div>
-    {% endif %}
-
-        <table class="table table-striped table-dark" style="table-layout: fixed;">
-            {% if analysis.info.source_url %}
-            <tr>
-                <th style="border-top: 0; width: 15%;">File downloaded from</th>
-                <td style="border-top: 0; word-wrap: break-word;">{{analysis.info.source_url|safe}}</td>
-            </tr>
-            {% endif %}
-            <tr>
-                <th style="border-top: 0; width: 15%;">File Name</th>
-                <td style="border-top: 0; word-wrap: break-word;">{{analysis.target.file.name}}</td>
-            </tr>
-            <tr>
-                <th>File Size</th>
-                <td>{{analysis.target.file.size}} bytes</td>
-            </tr>
-            <tr>
-                <th>File Type</th>
-                <td style="word-wrap: break-word;">{{analysis.target.file.type}}</td>
-            </tr>
-            {% if analysis.target.file.timestamp %}
-            <tr>
-                <th>PE timestamp</th>
-                <td style="word-wrap: break-word;">{{analysis.target.file.timestamp}}</td>
-            </tr>
-            {% endif %}
-            <tr>
-                <th>MD5</th>
-                <td style="word-wrap: break-word;">{{analysis.target.file.md5}}</td>
-            </tr>
-            <tr>
-                <th>SHA1</th>
-                <td style="word-wrap: break-word;">{{analysis.target.file.sha1}}</td>
-            </tr>
-            <tr>
-                <th>SHA256</th>
-                <td style="word-wrap: break-word;">{{analysis.target.file.sha256}}</td>
-            </tr>
-            <tr>
-                <th>SHA512</th>
-                <td style="word-wrap: break-word;">{{analysis.target.file.sha512}}</td>
-            </tr>
-            {% if analysis.target.file.sha3_384 %}
-            <tr>
-                <th>SHA3-384</th>
-                <td style="word-wrap: break-word;">{{analysis.target.file.sha3_384}}</td>
-            </tr>
-            {% endif %}
-            <tr>
-                <th>CRC32</th>
-                <td>{{analysis.target.file.crc32}}</td>
-            </tr>
-            {% if analysis.target.file.tlsh %}
-            <tr>
-                <th>TLSH</th>
-                <td style="word-wrap: break-word;">{{analysis.target.file.tlsh}}</td>
-            </tr>
-            {% endif %}
-
-            {% if analysis.target.file.ssdeep %}
-            <tr>
-                <th>Ssdeep</th>
-                <td style="word-wrap: break-word;">{{analysis.target.file.ssdeep}}</td>
-            </tr>
-            {% endif %}
-            {% if analysis.trid %}
-            <tr>
-                <th>TrID</th>
-                <td style="word-wrap: break-word;">
-                    <ul style="margin-top: 0;margin-bottom: 0;">
-                        {% for str in analysis.trid %}
-                        <li>{{str}}</li>
-                        {% endfor %}
-                    </ul>
-                </td>
-            </tr>
-            {% endif %}
-            {% if analysis.target.file.clamav %}
-            <tr>
-                <th>ClamAV</th>
-                <td>
-                    <ul style="margin-bottom: 0;">
-                        {% for sign in analysis.target.file.clamav %}
-                        <li>{{sign}}</li>
-                        {% endfor %}
-                    </ul>
-                </td>
-            </tr>
-            {% endif %}
-            {% if analysis.target.file.yara %}
-            <tr>
-                <th>Yara</th>
-                <td>
-                    <ul style="margin-bottom: 0;">
-                        {% for sign in analysis.target.file.yara %}
-                        <li>{{sign.name}} - {{sign.meta.description}}
-                            {% if sign.meta.author %}
-                            - Author: {{sign.meta.author}}
-                            {% endif %}
-                        </li>
-                        {% endfor %}
-                    </ul>
-                </td>
-            </tr>
-            {% endif %}
-            {% if analysis.target.file.cape_yara %}
-            <tr>
-                <th>CAPE Yara</th>
-                <td>
-                    <ul style="margin-bottom: 0;">
-                        {% for sign in analysis.target.file.cape_yara %}
-                        <li>
-                            {{sign.name}} - 
-                            {% if sign.meta.cape_type %}
-                                {{sign.meta.cape_type}}
-                            {% elif sign.meta.description %}
-                                {{sign.meta.description}}
-                            {% endif %}
-                            {% if sign.meta.author %}
-                                - Author: {{sign.meta.author}}
-                            {% endif %}
-                            </li>
-                        {% endfor %}
-                    </ul>
-                </td>
-            </tr>
-            {% endif %}
-            <tr>
-                <th></th>
-                <td>
-                    <a class="btn btn-secondary btn-small" href="{% url "file" "sample" analysis.info.id analysis.target.file.sha256 %}">Download</a>
-                    <a class="btn btn-secondary btn-small" href="{% url "file" "samplezip" analysis.info.id analysis.target.file.sha256 %}">Download ZIP</a>
-                    <a class="btn btn-secondary btn-small" href="/submit/resubmit/{{analysis.target.file.sha256 }}"><span class="fa fa-refresh" aria-hidden="true"></span> Resubmit sample</a>
-                </td>
-                {% if config.vtupload %}
-                {% if analysis.info.tlp != "Red" %}
-                <td>
-                    <a class="btn btn-secondary btn-small" href="{% url "vtupload" "sample" analysis.info.id analysis.target.file.name analysis.target.file.sha256 %}">Submit to VirusTotal</a>
-                </td>
-                {% endif %}
-                {% endif %}
-            </tr>
-        </table>
-</section>
diff --git a/web/templates/analysis/overview/_info.html b/web/templates/analysis/overview/_info.html
index fb4326868cb..d897aeea682 100644
--- a/web/templates/analysis/overview/_info.html
+++ b/web/templates/analysis/overview/_info.html
@@ -1,48 +1,30 @@
 <section id="information">
-    <div class="row">
-    {% if analysis.malfamily_tag and analysis.detections %}
-    <div class="col-lg-1" style="padding-right: 0px;">
-        <div class="panel panel-primary" style="height: 114px;">
-            <div class="panel-heading">
-                <h4 class="panel-title" style="text-align: center;">Detections</h4>
-            </div>
-            <div class="card">
-                <div class="card-body">
-                    <h5 style="text-align:center;font-size: 16px";>{{analysis.malfamily_tag}}:</h5>
-                    <h5 style="text-align:center; font-size: 16px%;font-weight-bold";><a href="/analysis/search/detections:{{analysis.detections}}"><span class="badge badge-danger">{{analysis.detections}}</span></a></h5>
-                </div>
-              </div>
 
-        </div>
-    </div>
+    {% if analysis.detections %}
+        <p  style="text-align:center; font-size: 18px;font-weight-bold";>Detection(s):
+        {% for block  in analysis.detections %}
+            <a href="/analysis/search/detections:{{block.family}}" data-toggle="tooltip" data-placement="top"><span class="badge badge-danger"  title="{% for subblock in block.details %}{% for k,v in subblock.items %}{{k}}{% if v %} -> {{v}}&#013;{% endif %}{% endfor %}{% endfor %}">{{block.family}}</span></a>
+        {% endfor %}
+        </p>
     {% endif %}
 
-    {% if children|length > 0 %}
-    <div class="col-lg-1" style="padding-right: 0px;">
-        <div class="panel panel-primary" style="height: 114px;">
-            <div class="panel-heading">
-                <h4 class="panel-title" style="text-align: center;">Auto Tasks</h4>
-            </div>
-            <div class="card">
-                <div class="card-body">
-                    {% for child in children %}
-                        <h4 style="text-align:center; font-size: 100%;font-weight-bold" ;><a href="/submit/status/{{ child.0 }}/">#{{ child.0 }}: {{ child.1 }}</a></h4>
-                    {% endfor %}
-                </div>
-            </div>
-        </div>
-    </div>
-    {% endif %}
-    {% if analysis.detections and children|length > 0 %}
-        <div class="col-lg-10">
-    {% elif analysis.detections or children|length > 0 %}
-        <div class="col-lg-11">
-    {% else %}
-        <div class="col-lg-12">
+    {% if config.malscore and analysis.malstatus %}
+        <p  style="text-align:center; font-size: 18px;font-weight-bold";>Status:
+            {% if analysis.malstatus == "Malicious" %}
+                <span class="badge badge-danger">{{analysis.malstatus}}</span>
+            {% elif analysis.malstatus == "Suspicious" %}
+                <span class="badge badge-warning">{{analysis.malstatus}}</span>
+            {% elif analysis.malstatus == "Clean" %}
+                <span class="badge badge-success">{{analysis.malstatus}}</span>
+            {% else %}
+                {{analysis.malstatus}}
+         {% endif %}
+        </p>
     {% endif %}
+
     <div class="panel panel-primary">
         <div class="panel-heading">
-            <h4 class="panel-title">Analysis</h4>
+            <h4 class="panel-title">Analysis {% if settings.REPROCESS_TASKS %} <a class="btn btn-secondary btn-sm" href="{% url "reprocess_tasks" id %}" role="button" data-bs-toggle="tooltip" title="Reprocess the task"><span class="fa-solid fa-rotate"></span></a>{% endif %}</h4>
         </div>
         <table class="table table-striped">
             <thead>
@@ -55,10 +37,16 @@ <h4 class="panel-title">Analysis</h4>
                     {% if analysis.info.options %}
                         <th>Options</th>
                     {% endif %}
-                    {% if analysis.distributed %}
+                    {% if user.is_staff and analysis.distributed %}
                         <th>Distributed</th>
                     {% endif %}
-                    <th>Log</th>
+                    <th>Log(s)</th>
+                    {% if analysis.debug.pre_script_log %}
+                        <th>Pre Script Logs</th>
+                    {% endif %}
+                    {% if analysis.debug.during_script_log %}
+                        <th>During Script Logs</th>
+                    {% endif %}
                     {% if config.malscore and analysis.malscore %}
                         <th>MalScore</th>
                     {% endif %}
@@ -74,18 +62,30 @@ <h4 class="panel-title">Analysis</h4>
                     {% if analysis.info.options %}
                         <td><a class="accordion-toggle" data-toggle="collapse" href="#options">Show Options</a></td>
                     {% endif %}
-                    {% if analysis.distributed %}
+                    {% if user.is_staff and analysis.distributed %}
                         <td>{{analysis.distributed.name}} - {{analysis.distributed.task_id}}</td>
                     {% endif %}
-                    <td><a class="accordion-toggle" data-toggle="collapse" href="#info-log">Show Log</a></td>
+                    <td>
+                        Show <a class="accordion-toggle" data-toggle="collapse" href="#info-log">Analysis</a>
+                        {% if analysis.process_log %}
+                            | <a class="accordion-toggle" data-toggle="collapse" href="#process-log"> Process</a>
+                        {% endif %}
+                        Log
+                    </td>
+                    {% if analysis.debug.pre_script_log %}
+                        <td><a class="accordion-toggle" data-toggle="collapse" href="#info-pre-script-log">Show Pre Script</a></td>
+                    {% endif %}
+                    {% if analysis.debug.during_script_log %}
+                        <td><a class="accordion-toggle" data-toggle="collapse" href="#info-during-script-log">Show During Script</a></td>
+                    {% endif %}
                     {% if config.malscore and analysis.malscore %}
                     <td>
                         {% if analysis.malscore > 6.0 %}
-                           <span class="label badge-danger">{{analysis.malscore|floatformat:1}}</span>
+                           <span class="badge badge-danger">{{analysis.malscore|floatformat:1}}</span>
                             {% elif analysis.malscore > 2.0 %}
-                            <span class="label badge-warning">{{analysis.malscore|floatformat:1}}</span>
+                            <span class="badge badge-warning">{{analysis.malscore|floatformat:1}}</span>
                             {% else %}
-                            <span class="label badge-success">{{analysis.malscore|floatformat:1}}</span>
+                            <span class="badge badge-success">{{analysis.malscore|floatformat:1}}</span>
                         {% endif %}
                     </td>
                     {% endif %}
@@ -109,6 +109,14 @@ <h4 class="panel-title">Analysis</h4>
     <div id="info-log" class="collapse">
         <pre>{{analysis.debug.log}}</pre>
     </div>
+    <div id="process-log" class="collapse">
+        <pre>{{analysis.process_log}}</pre>
+    </div>
+    <div id="info-pre-script-log" class="collapse">
+        <pre>{{analysis.debug.pre_script_log}}</pre>
+    </div>
+    <div id="info-during-script-log" class="collapse">
+        <pre>{{analysis.debug.during_script_log}}</pre>
     </div>
 </section>
 
@@ -118,7 +126,7 @@ <h4 class="panel-title">Analysis</h4>
             <div class="panel-heading">
                 <h4 class="panel-title">Machine</h4>
             </div>
-            <table class="table table-striped table-bordered">
+            <table class="table table-striped">
                 <thead>
                     <tr>
                         <th>Name</th>
diff --git a/web/templates/analysis/overview/_mitre.html b/web/templates/analysis/overview/_mitre.html
index 5cdf5db1868..f37e92150df 100644
--- a/web/templates/analysis/overview/_mitre.html
+++ b/web/templates/analysis/overview/_mitre.html
@@ -1,5 +1,5 @@
 <div class="card-header">
-    <a class="accordion-toggle" data-toggle="collapse" aria-expanded="false" href="#mitre_attack"><i class="fas fa-tasks"></i> Mitre ATT&CK</a>
+    <center><a class="accordion-toggle" data-toggle="collapse" aria-expanded="false" href="#mitre_attack"><i class="fas fa-tasks"></i> Mitre ATT&CK</a></center>
 </div>
 <div id="mitre_attack" class="collapse">
     <table class="table table-bordered table-striped" style="table-layout: fixed;">
@@ -11,10 +11,18 @@
             </tr>
             {% for category, ttps in analysis.mitre_attck.items %}
                 <td>
-                    {% for ttp in ttps %}
-                        <li width=115px><a href="https://attack.mitre.org/techniques/{{ttp.t_id}}/" title="{{ttp.description}}"> {{ttp.t_id}}</a> - {{ ttp.ttp_name }}</li>
-                        <ul><li>Signature - {{ttp.signature}}</ul></li>
-                    {% endfor %}
+                    <ul style="padding-left: 1rem">
+                        {% for ttp in ttps %}
+                            <li style="margin-bottom: 1rem">
+                                <a href="https://attack.mitre.org/techniques/{{ttp.t_id}}/" title="{{ttp.description}}"> {{ttp.t_id}}</a> - {{ ttp.ttp_name }}
+                                <ul>
+                                {% for signature in ttp.signature %}
+                                    <li>{{signature}}</li>
+                                {% endfor %}
+                                </ul>
+                            </li>
+                        {% endfor %}
+                    </ul>
                 </td>
             {% endfor %}
         </tbody>
diff --git a/web/templates/analysis/overview/_playback.html b/web/templates/analysis/overview/_playback.html
new file mode 100644
index 00000000000..07e702f4de1
--- /dev/null
+++ b/web/templates/analysis/overview/_playback.html
@@ -0,0 +1,41 @@
+<link href="{{ STATIC_URL }}css/guac-playback.css" rel="stylesheet" type="text/css"/>
+<script src="{{ STATIC_URL }}js/guac-playback.js"></script>
+<script src="{{ STATIC_URL }}js/guacamole-1.4.0-all.min.js"></script>
+<a class="accordion-toggle" data-toggle="collapse" aria-expanded="false" href="#playback" onclick="playit()"><h4>Session Playback</h4></a>
+<div id="playback" class="collapse" >
+   	{% if analysis.info.options.interactive %}
+	   	<div id="terminal" style="width: 100%; height: 100%;">
+			<!--
+				Guacamole recording player
+			    http://www.apache.org/licenses/LICENSE-2.0
+			-->
+			<div id="player">
+				<!-- Player display -->
+				<div id="display">
+					<div class="notification-container">
+						<div class="seek-notification">
+							<p>
+								Seek in progress...
+								<button id="cancel-seek">Cancel</button>
+							</p>
+						</div>
+					</div>
+				</div>
+				<!-- Player controls -->
+				<div class="controls">
+					<button id="play-pause">Play</button>
+					<input id="position-slider" type="range">
+					<span id="position">00:00</span>
+					<span>/</span>
+					<span id="duration">00:00</span>
+				</div>
+			</div>
+			<!-- -->
+			<script>
+            	function playit() {initExamplePlayer("{{analysis.info.id|playback_url}}")}
+            </script>
+		</div>
+    {% else %}
+    	No playback available.
+    {% endif %}
+</div>
diff --git a/web/templates/analysis/overview/_reports.html b/web/templates/analysis/overview/_reports.html
new file mode 100644
index 00000000000..ab07dda46fe
--- /dev/null
+++ b/web/templates/analysis/overview/_reports.html
@@ -0,0 +1,34 @@
+<div><center>
+    <i class="far fa-file-alt"></i> Reports:
+            {% if config.jsondump %}
+                <a  href="{% url "filereport" analysis.info.id "json" %}">JSON </a>
+            {% endif %}
+            {% if config.reporthtml %}
+                <a href="{% url "filereport" analysis.info.id "html" %}">HTML</a>
+            {% endif %}
+            {% if config.reporthtmlsummary %}
+                 <a href="{% url "filereport" analysis.info.id "htmlsummary" %}">HTML summary </a>
+            {% endif %}
+            {% if config.reportpdf %}
+               <a href="{% url "filereport" analysis.info.id "pdf" %}">PDF</a>
+            {% endif %}
+            {% if config.maec41 %}
+               <a href="{% url "filereport" analysis.info.id "maec" %}">MAEC</a>
+            {% endif %}
+            {% if config.maec5 %}
+               <a href="{% url "filereport" analysis.info.id "maec5" %}">MAEC5</a>
+            {% endif %}
+            {% if config.mmdef %}
+               <a href="{% url "filereport" analysis.info.id "metadata" %}">Metadata</a>
+            {% endif %}
+            {% if config.misp %}
+               <a href="{% url "filereport" analysis.info.id "misp" %}">MISP</a>
+            {% endif %}
+            {% if config.litereport %}
+               <a href="{% url "filereport" analysis.info.id "litereport" %}">Lite</a>
+            {% endif %}
+            {% if config.cents %}
+               <a href="{% url "filereport" analysis.info.id "cents" %}">CENTS</a>
+            {% endif %}
+         </center>
+</div>
diff --git a/web/templates/analysis/overview/_screenshots.html b/web/templates/analysis/overview/_screenshots.html
index 7fd22130ca7..59175c0ff99 100644
--- a/web/templates/analysis/overview/_screenshots.html
+++ b/web/templates/analysis/overview/_screenshots.html
@@ -1,14 +1,6 @@
 <section id="screenshots">
     <h4>Screenshots</h4>
-    {% if analysis.deduplicated_shots %}
-        <div>
-        {% for shot in analysis.deduplicated_shots %}
-            <a data-lightbox="screenshot" href="{% url "file_nl" "screenshot" analysis.info.id shot %}">
-                <img class="opaque" src="{% url "file_nl" "screenshot" analysis.info.id shot %}" style="height: 120px;" />
-            </a>
-        {% endfor %}
-        </div>
-    {% elif analysis.shots %}
+    {% if analysis.shots %}
         <div>
         {% for shot in analysis.shots %}
             <a data-lightbox="screenshot" href="{% url "file_nl" "screenshot" analysis.info.id shot %}">
diff --git a/web/templates/analysis/overview/_signatures.html b/web/templates/analysis/overview/_signatures.html
index d8e670b9191..e6b2c5b4a71 100644
--- a/web/templates/analysis/overview/_signatures.html
+++ b/web/templates/analysis/overview/_signatures.html
@@ -16,8 +16,8 @@
     font-weight: bold;
 }
 </style>
-<section id="signatures">
-    <h4>Signatures</h4>
+<section id="signatures" style="overflow-wrap: break-word;">
+    <h4 style="padding-top: 5px;">Signatures</h4>
     {% if analysis.signatures %}
         {% for signature in analysis.signatures %}
             <a style="text-decoration: none;" href="#signature_{{signature.name}}" data-toggle="collapse">
@@ -71,6 +71,28 @@ <h4>Signatures</h4>
                     </tbody>
                 </table>
             {% endif %}
+            {% if signature.calls %}
+                <div id="signature-calls_{{signature.name}}"></div>
+                {% with data_id="signature-calls-data_"|add:signature.name %}
+                    {{ signature.calls | json_script:data_id }}
+                    <script type="text/javascript">
+                        $("#signature_{{signature.name}}").on("show.bs.collapse", function() {
+                            $.ajax(
+                                "{% url "signature-calls" task_id=analysis.info.id %}",
+                                {
+                                    contentType: "application/json",
+                                    data: document.getElementById("{{data_id}}").textContent,
+                                    dataType: "html",
+                                    method: "POST",
+                                    success: function(responseText) {
+                                        $("#signature-calls_{{signature.name}}").html(responseText);
+                                    }
+                                }
+                            );
+                        });
+                    </script>
+                {% endwith %}
+            {% endif %}
             </div>
         {% endfor %}
     {% else %}
diff --git a/web/templates/analysis/overview/_statistics.html b/web/templates/analysis/overview/_statistics.html
new file mode 100644
index 00000000000..089dbb84305
--- /dev/null
+++ b/web/templates/analysis/overview/_statistics.html
@@ -0,0 +1,60 @@
+{% if analysis.statistics %}
+    {% load analysis_tags %}
+    <div class="card-header">
+        <center><a class="accordion-toggle" data-toggle="collapse" aria-expanded="false" href="#stadistics"><i class="fas fa-stopwatch"></i> Statistics {% if stats_total.total %}({{stats_total.total}}) {% endif %}</a></center>
+    </div>
+    <div id="stadistics" class="collapse">
+        {% if analysis.info.category != "pcap" and analysis.info.category != "static"  %}
+            {% if config.usage %}
+                <center>
+                {% include "analysis/overview/_usage.html" %}
+                </center>
+                <hr />
+            {% endif %}
+        {% endif %}
+        <div class="container">
+            <div class="row">
+                <div class="col-sm">
+                    <h4>Processing&emsp;( {{ stats_total.processing }} seconds )</h4>
+                    <ul class="list-group">
+                        {% for stat in analysis.statistics.processing|dictsortreversed:"time" %}
+                            {% if stat.time %}
+                            <li class="list-group-item">
+                                <span class="badge">{{stat.time}}</span>
+                                {{stat.name}}
+                            </li>
+                            {% endif %}
+                        {% endfor %}
+                    </ul>
+                </div>
+                <div class="col-sm">
+                <h4>Signatures&emsp;( {{ stats_total.signatures }} seconds )</h4>
+                    <ul class="list-group">
+                        {% for stat in analysis.statistics.signatures|dictsortreversed:"time" %}
+                            {% if stat.time %}
+                            <li class="list-group-item">
+                                <span class="badge">{{stat.time}}</span>
+                                {{stat.name}}
+                            </li>
+                            {% endif %}
+                        {% endfor %}
+                    </ul>
+                </div>
+                <div class="col-sm">
+                    <h4>Reporting&emsp;( {{ stats_total.reporting }} seconds )</h4>
+                <ul class="list-group">
+                    {% for stat in analysis.statistics.reporting|dictsortreversed:"time" %}
+                        {% if stat.time %}
+                        <li class="list-group-item">
+                            <span class="badge">{{stat.time}}</span>
+                            {{stat.name}}
+                        </li>
+                        {% endif %}
+                    {% endfor %}
+                </ul>
+                </div>
+            </div>
+        </div>
+
+    </div>
+{% endif %}
diff --git a/web/templates/analysis/overview/_summary.html b/web/templates/analysis/overview/_summary.html
index 03e8b58b792..f39c017b3dc 100644
--- a/web/templates/analysis/overview/_summary.html
+++ b/web/templates/analysis/overview/_summary.html
@@ -1,137 +1,166 @@
 <section id="summary">
     <h4>Summary</h4>
-        <ul class="nav nav-tabs flex-column flex-sm-row">
-            <li class="nav-item active"><a class="nav-link" href="#summary_files" data-toggle="tab">Accessed Files</a></li>
-            <li class="nav-item"><a class="nav-link" href="#summary_read_files" data-toggle="tab">Read Files</a></li>
-            <li class="nav-item"><a class="nav-link" href="#summary_write_files" data-toggle="tab">Modified Files</a></li>
-            <li class="nav-item"><a class="nav-link" href="#summary_delete_files" data-toggle="tab">Deleted Files</a></li>
-            <li class="nav-item"><a class="nav-link" href="#summary_keys" data-toggle="tab">Registry Keys</a></li>
-            <li class="nav-item"><a class="nav-link" href="#summary_read_keys" data-toggle="tab">Read Registry Keys</a></li>
-            <li class="nav-item"><a class="nav-link" href="#summary_write_keys" data-toggle="tab">Modified Registry Keys</a></li>
-            <li class="nav-item"><a class="nav-link" href="#summary_delete_keys" data-toggle="tab">Deleted Registry Keys</a></li>
-            <li class="nav-item"><a class="nav-link" href="#summary_resolved_apis" data-toggle="tab">Resolved APIs</a></li>
-            <li class="nav-item"><a class="nav-link" href="#summary_executed_commands" data-toggle="tab">Executed Commands</a></li>
-            <li class="nav-item"><a class="nav-link" href="#summary_mutexes" data-toggle="tab">Mutexes</a></li>
-            <li class="nav-item"><a class="nav-link" href="#summary_created_services" data-toggle="tab">Created Services</a></li>
-            <li class="nav-item"><a class="nav-link" href="#summary_started_services" data-toggle="tab">Started Services</a></li>
-        </ul>
-        <div class="tab-content">
-            <div class="tab-pane fade show active" id="summary_files">
-                <div class="card card-body">
+    <ul class="nav nav-tabs flex-column flex-sm-row">
+        {% if analysis.behavior.summary.files %}<li class="nav-item active"><a class="nav-link" href="#summary_files" data-toggle="tab">Accessed Files</a></li>{% endif %}
+        {% if analysis.behavior.summary.read_files %}<li class="nav-item"><a class="nav-link" href="#summary_read_files" data-toggle="tab">Read Files</a></li>{% endif %}
+        {% if analysis.behavior.summary.write_files %}<li class="nav-item"><a class="nav-link" href="#summary_write_files" data-toggle="tab">Modified Files</a></li>{% endif %}
+        {% if analysis.behavior.summary.delete_files %}<li class="nav-item"><a class="nav-link" href="#summary_delete_files" data-toggle="tab">Deleted Files</a></li>{% endif %}
+        {% if analysis.behavior.summary.keys %}<li class="nav-item"><a class="nav-link" href="#summary_keys" data-toggle="tab">Registry Keys</a></li>{% endif %}
+        {% if analysis.behavior.summary.read_keys %}<li class="nav-item"><a class="nav-link" href="#summary_read_keys" data-toggle="tab">Read Registry Keys</a></li>{% endif %}
+        {% if analysis.behavior.summary.write_keys %}<li class="nav-item"><a class="nav-link" href="#summary_write_keys" data-toggle="tab">Modified Registry Keys</a></li>{% endif %}
+        {% if analysis.behavior.summary.delete_keys %}<li class="nav-item"><a class="nav-link" href="#summary_delete_keys" data-toggle="tab">Deleted Registry Keys</a></li>{% endif %}
+        {% if analysis.behavior.summary.resolved_apis %}<li class="nav-item"><a class="nav-link" href="#summary_resolved_apis" data-toggle="tab">Resolved APIs</a></li>{% endif %}
+        {% if analysis.behavior.summary.executed_commands %}<li class="nav-item"><a class="nav-link" href="#summary_executed_commands" data-toggle="tab">Executed Commands</a></li>{% endif %}
+        {% if analysis.behavior.summary.mutexes %}<li class="nav-item"><a class="nav-link" href="#summary_mutexes" data-toggle="tab">Mutexes</a></li>{% endif %}
+        {% if analysis.behavior.summary.created_services %}<li class="nav-item"><a class="nav-link" href="#summary_created_services" data-toggle="tab">Created Services</a></li>{% endif %}
+        {% if analysis.behavior.summary.started_services %}<li class="nav-item"><a class="nav-link" href="#summary_started_services" data-toggle="tab">Started Services</a></li>{% endif %}
+        {% if analysis.behavior.summary.reversing_labs %}<li class="nav-item"><a class="nav-link" href="#summary_reversing_labs" data-toggle="tab">Reversing Labs</a></li>{% endif %}
+    </ul>
+    <div class="tab-content">
+        <div class="tab-pane fade show active" id="summary_files">
+            <div class="card card-body">
                 {% if analysis.behavior.summary.files %}
                     {% for file in analysis.behavior.summary.files %}
-                        {{file}}<br />
+                        {{file}}<br/>
                     {% endfor %}
                 {% endif %}
-                </div>
             </div>
-            <div class="tab-pane fade" id="summary_read_files">
-                <div class="card card-body">
+        </div>
+        <div class="tab-pane fade" id="summary_read_files">
+            <div class="card card-body">
                 {% if analysis.behavior.summary.read_files %}
                     {% for file in analysis.behavior.summary.read_files %}
-                        {{file}}<br />
+                        {{file}}<br/>
                     {% endfor %}
                 {% endif %}
-                </div>
             </div>
-            <div class="tab-pane fade" id="summary_write_files">
-                <div class="card card-body">
+        </div>
+        <div class="tab-pane fade" id="summary_write_files">
+            <div class="card card-body">
                 {% if analysis.behavior.summary.write_files %}
                     {% for file in analysis.behavior.summary.write_files %}
-                        {{file}}<br />
+                        {{file}}<br/>
                     {% endfor %}
                 {% endif %}
-                </div>
             </div>
-            <div class="tab-pane fade" id="summary_delete_files">
-                <div class="card card-body">
+        </div>
+        <div class="tab-pane fade" id="summary_delete_files">
+            <div class="card card-body">
                 {% if analysis.behavior.summary.delete_files %}
-                    {% for file in analysis.behavior.summary.delete_files %}
-                        {{file}}<br />
-                    {% endfor %}
+                {% for file in analysis.behavior.summary.delete_files %}
+                {{file}}<br/>
+                {% endfor %}
                 {% endif %}
-                </div>
             </div>
-            <div class="tab-pane fade" id="summary_keys">
-                <div class="card card-body">
+        </div>
+        <div class="tab-pane fade" id="summary_keys">
+            <div class="card card-body">
                 {% if analysis.behavior.summary.keys %}
-                    {% for key in analysis.behavior.summary.keys %}
-                        {{key}}<br />
-                    {% endfor %}
+                {% for key in analysis.behavior.summary.keys %}
+                {{key}}<br/>
+                {% endfor %}
                 {% endif %}
-                </div>
             </div>
-            <div class="tab-pane fade" id="summary_read_keys">
-                <div class="card card-body">
+        </div>
+        <div class="tab-pane fade" id="summary_read_keys">
+            <div class="card card-body">
                 {% if analysis.behavior.summary.read_keys %}
                     {% for key in analysis.behavior.summary.read_keys %}
-                        {{key}}<br />
+                        {{key}}<br/>
                     {% endfor %}
                 {% endif %}
-                </div>
             </div>
-            <div class="tab-pane fade" id="summary_write_keys">
-                <div class="card card-body">
+        </div>
+        <div class="tab-pane fade" id="summary_write_keys">
+            <div class="card card-body">
                 {% if analysis.behavior.summary.write_keys %}
-                    {% for key in analysis.behavior.summary.write_keys %}
-                        {{key}}<br />
-                    {% endfor %}
+                {% for key in analysis.behavior.summary.write_keys %}
+                {{key}}<br/>
+                {% endfor %}
                 {% endif %}
-                </div>
             </div>
-            <div class="tab-pane fade" id="summary_delete_keys">
-                <div class="card card-body">
+        </div>
+        <div class="tab-pane fade" id="summary_delete_keys">
+            <div class="card card-body">
                 {% if analysis.behavior.summary.delete_keys %}
-                    {% for key in analysis.behavior.summary.delete_keys %}
-                        {{key}}<br />
-                    {% endfor %}
+                {% for key in analysis.behavior.summary.delete_keys %}
+                {{key}}<br/>
+                {% endfor %}
                 {% endif %}
-                </div>
             </div>
-            <div class="tab-pane fade" id="summary_resolved_apis">
-                <div class="card card-body">
+        </div>
+        <div class="tab-pane fade" id="summary_resolved_apis">
+            <div class="card card-body">
                 {% if analysis.behavior.summary.resolved_apis %}
-                    {% for api in analysis.behavior.summary.resolved_apis %}
-                        {{api}}<br />
-                    {% endfor %}
+                {% for api in analysis.behavior.summary.resolved_apis %}
+                {{api}}<br/>
+                {% endfor %}
                 {% endif %}
-                </div>
             </div>
-            <div class="tab-pane fade" id="summary_executed_commands">
-                <div class="card card-body">
+        </div>
+        <div class="tab-pane fade" id="summary_executed_commands">
+            <div class="card card-body">
                 {% if analysis.behavior.summary.executed_commands %}
-                    {% for cmd in analysis.behavior.summary.executed_commands %}
-                        {{cmd}}<br />
-                    {% endfor %}
+                {% for cmd in analysis.behavior.summary.executed_commands %}
+                {{cmd}}<br/>
+                {% endfor %}
                 {% endif %}
-                </div>
             </div>
-            <div class="tab-pane fade" id="summary_mutexes">
-                <div class="card card-body">
+        </div>
+        <div class="tab-pane fade" id="summary_mutexes">
+            <div class="card card-body">
                 {% if analysis.behavior.summary.mutexes %}
-                    {% for mutex in analysis.behavior.summary.mutexes %}
-                        {{mutex}}<br />
-                    {% endfor %}
+                {% for mutex in analysis.behavior.summary.mutexes %}
+                {{mutex}}<br/>
+                {% endfor %}
                 {% endif %}
-                </div>
             </div>
-            <div class="tab-pane fade" id="summary_created_services">
-                <div class="card card-body">
+        </div>
+        <div class="tab-pane fade" id="summary_created_services">
+            <div class="card card-body">
                 {% if analysis.behavior.summary.created_services %}
-                    {% for service in analysis.behavior.summary.created_services %}
-                        {{service}}<br />
-                    {% endfor %}
+                {% for service in analysis.behavior.summary.created_services %}
+                {{service}}<br/>
+                {% endfor %}
                 {% endif %}
-                </div>
             </div>
-            <div class="tab-pane fade" id="summary_started_services">
-                <div class="card card-body">
+        </div>
+        <div class="tab-pane fade" id="summary_started_services">
+            <div class="card card-body">
                 {% if analysis.behavior.summary.started_services %}
-                    {% for service in analysis.behavior.summary.started_services %}
-                        {{service}}<br />
+                {% for service in analysis.behavior.summary.started_services %}
+                {{service}}<br/>
+                {% endfor %}
+                {% endif %}
+            </div>
+        </div>
+        <div class="tab-pane fade" id="summary_reversing_labs">
+            <div class="card card-body">
+                {% if analysis.reversinglabs %}
+                <table class="table">
+                    <tr>
+                        <th>Name</th>
+                        <th>Value</th>
+                    </tr>
+                    {% for key, value in analysis.reversinglabs.items %}
+                    <tr>
+                        <td>{{key|capfirst}}</td>
+                        {% if key == "permalink" %}
+                            <td><a target="_blank" href="{{value}}">{{value}}</a></td>
+                        {% elif key == "malicious" and value%}
+                            <td><b style="color:red">yes</b></td>
+                        {% elif key == "malicious" and not value%}
+                            <td><b style="color:green">no</b></td>
+                        {% else %}
+                            <td>{{value}}</td>
+                        {% endif %}
+                    </tr>
                     {% endfor %}
+                </table>
+                {% else %}
+                <center><b style="color:red">No results</b></center>
                 {% endif %}
-                </div>
             </div>
         </div>
+    </div>
 </section>
diff --git a/web/templates/analysis/overview/_url.html b/web/templates/analysis/overview/_url.html
index 675a20cadee..99f03b8f301 100644
--- a/web/templates/analysis/overview/_url.html
+++ b/web/templates/analysis/overview/_url.html
@@ -7,7 +7,7 @@
             </thead>
             <tbody>
                 <tr>
-                    <td><span class="mono">{{analysis.target.url}}</span></td>
+                    <td><span class="mono">{{analysis.url_analysis.url}}</span></td>
                 </tr>
             </tbody>
         </table>
diff --git a/web/templates/analysis/overview/index.html b/web/templates/analysis/overview/index.html
index 67d002a5396..0304c3f1af9 100644
--- a/web/templates/analysis/overview/index.html
+++ b/web/templates/analysis/overview/index.html
@@ -1,59 +1,145 @@
+{% load key_tags %}
 {% include "analysis/overview/_info.html" %}
 <hr />
 {% if analysis.malware_conf %}
     {% for config_block in analysis.malware_conf %}
         {% for family, config in config_block.items %}
-
-        <div class="card-header">
-            <a class="accordion-toggle" data-toggle="collapse" aria-expanded="true" href="#{{family}}_config"><i class="fas fa-tasks"></i><span class="badge badge-danger">{{family}} Config</span></a></div>
-        <div id="{{family}}_config" class="collapse show">
-            <table class="table table-striped table-bordered" style="table-layout: fixed;">
-                <tr>
-                    <th style="border-top: 0; width: 15%;">Type</th>
-                    <td style="border-top: 0; word-wrap: break-word;"><b>{{family}} Config</b></td>
-                </tr>
-                {% for key, value in config.items %}
-                <tr>
-                    <th style="border-top: 0; width: 15%;"><b>{{key}}</b></th>
-                    <td style="border-top: 0; word-wrap: break-word;">{% malware_config value %}</td>
-                </tr>
-                {% endfor %}
-            </table>
-        </div>
+            {% if family|slice:":1" != "_" %}
+                <div class="card-header">
+                    <a class="accordion-toggle" data-toggle="collapse" aria-expanded="true" href="#{{family}}_config"><i class="fas fa-tasks"></i><span> {{family}} Config</span></a>
+                    {% if analysis.info.has_cents_rules %}
+                        <a class="btn btn-secondary btn-sm" href="{% url "filereport" analysis.info.id "cents" %}"><span class="fas fa-download"></span> CENTS ruleset</a>
+                    {% endif %}
+                </div>
+                <div id="{{family}}_config" class="collapse show extracted-config">
+                    <table class="table table-striped table-bordered" style="table-layout: fixed;">
+                        <thead>
+                            <tr>
+                                <th style="border-top: 0; width: 15%;">Type</th>
+                                <th style="border-top: 0; word-wrap: break-word;">{{family}} Config</th>
+                            </tr>
+                        </thead>
+                        {% if config_block|get_item:"_associated_config_hashes" %}
+                            <tfoot>
+                                <tr>
+                                    <th>Extracted From</th>
+                                    <td>
+                                        {% for hashes in config_block|get_item:"_associated_config_hashes" %}
+                                            <div class="card" style="margin-bottom: 4px">
+                                                    {% with short_sha256=hashes.sha256|slice:":8" %}
+                                                    {% with hashes_id=family|add:"-"|add:short_sha256 %}
+                                                    {% with hashes_header_id=hashes_id|add:"-header" %}
+                                                    <div class="card-header" id="{{ hashes_header_id }}" style="padding: 0px">
+                                                        <h3 class="mb-0">
+                                                            <a class="btn btn-block text-left" role="button" data-toggle="collapse" href="#{{ hashes_id }}" aria-expanded="false" aria-controls="{{ hashes_id }}">
+                                                                <b>sha256:</b> {{ hashes.sha256 }}
+                                                            </a>
+                                                        </h3>
+                                                    </div>
+                                                    <div id="{{ hashes_id }}" class="collapse" aria-labelledby="{{ hashes_header_id }}">
+                                                        <div class="card-body">
+                                                            <dl class="row" style="margin-bottom: 0px">
+                                                                {% with sorted_hashes=hashes|sort %}
+                                                                    {% for algo, value in sorted_hashes.items %}
+                                                                        <dt class="col-sm-1">{{ algo }}</dt>
+                                                                        <dd class="col-sm-11">{{ value }}</dd>
+                                                                    {% endfor %}
+                                                                {% endwith %}
+                                                            </dl>
+                                                        </div>
+                                                    </div>
+                                                {% endwith %}
+                                                {% endwith %}
+                                                {% endwith %}
+                                            </div>
+                                        {% endfor %}
+                                    </td>
+                                </tr>
+                            </tfoot>
+                        {% endif %}
+                        <tbody>
+                            {% for key, value in config.items %}
+                                <!-- Filter raw key from web ui but display contents as normal -->
+                                {% if key == "raw" %}
+                                    {% for dict_item in value %}
+                                        {% for subkey, subvalue in dict_item.items %}
+                                            <tr>
+                                                <th style="border-top: 0;"><b>{{ subkey }}</b></th>
+                                                <td style="border-top: 0; word-wrap: break-word;"> {% malware_config subvalue %}</td>
+                                            </tr>
+                                        {% endfor %}
+                                    {% endfor %}
+                                {% else %}
+                                    <tr>
+                                        <th style="border-top: 0; width: 15%;"><b>{{ key }}</b></th>
+                                        <td style="border-top: 0; word-wrap: break-word;">{% malware_config value %}</td>
+                                    </tr>
+                                {% endif %}
+                            {% endfor %}
+                        </tbody>
+                    </table>
+                </div>
+            {% endif %}
         {% endfor %}
     {% endfor %}
+<hr />
 {% endif %}
 
-<hr />
-{% if analysis.info.category != "pcap" %}
-    {% if analysis.info.category in "file,static" and analysis.target %}
-        {% include "analysis/overview/_file.html" %}
-    {% elif analysis.info.category == "url" %}
-        {% include "analysis/overview/_url.html" %}
+{% if analysis.info.category in "file,static" and analysis.target %}
+    <h4>File Details  {% if analysis.info.parent_sample %} <label for="parent_file"><a href="#parent_file" data-toggle="collapse"> - Parent file</a></label> {% endif %} </h4>
+    {% if analysis.info.parent_sample %}
+    <div class="form-group">
+        <div id="parent_file" class="collapse">
+            {% for file in analysis.info.parent_sample|parentfixup|dict2list %}
+                {% include "analysis/generic/_file_info.html" %}
+            {% endfor %}
+        </div>
+    </div>
     {% endif %}
+    {% include "analysis/generic/_file_info.html" %}
+{% elif analysis.info.category == "url" %}
+    {% include "analysis/overview/_url.html" %}
+{% endif %}
+
+<div class="container">
+    <div class="row">
+        {% if reports_exist %}
+        <div class="col-sm">
+            {% include "analysis/overview/_reports.html" %}
+        </div>
+        {% endif %}
+    </div>
+</div>
+
+{% if analysis.capa_summary %}
+    <hr />
+    {% include "analysis/overview/_capa_summary.html" %}
+{% endif %}
+
+{% if analysis.curtain %}
+    <hr />
+    {% include "analysis/overview/_curtain.html" %}
 {% endif %}
-<hr/>
-{% include "analysis/overview/_signatures.html" %}
 
 {% if analysis.mitre_attck %}
     <hr />
     {% include "analysis/overview/_mitre.html" %}
 {% endif %}
-
-{% if analysis.info.category != "pcap" %}
-    {% if analysis.usage %}
+{% if analysis.statistics %}
     <hr />
-    {% include "analysis/overview/_usage.html" %}
+    {% include "analysis/overview/_statistics.html" %}
 {% endif %}
-<hr />
+{% include "analysis/overview/_signatures.html" %}
+
 {% include "analysis/overview/_screenshots.html" %}
-<hr />
+{% if config.guacamole %}
+    {% include "analysis/overview/_playback.html" %}
 {% endif %}
+<hr />
 <div class="row">
     <div class="col-md-6 mx-auto">{% include "analysis/network/_hosts_not_ajax.html" %}</div>
     <div class="col-md-6 mx-auto">{% include "analysis/network/_dns_not_ajax.html" %}</div>
 </div>
-<hr />
 {% if analysis.info.category != "pcap" %}
     {% include "analysis/overview/_summary.html" %}
 {% endif %}
diff --git a/web/templates/analysis/pending.html b/web/templates/analysis/pending.html
index 899ecb63c74..f3db7aad373 100644
--- a/web/templates/analysis/pending.html
+++ b/web/templates/analysis/pending.html
@@ -1,24 +1,28 @@
 {% extends "base.html" %}
 {% block content %}
 <div class="card ">
-    <div class="card-header">Pending Tasks</div>
+    <div class="card-header">Pending Tasks{% if count %}: {{count}} {% endif %}</div>
     {% if tasks %}
     <table class="table table-striped" style="table-layout: fixed;">
         <thead>
         <tr>
+            <th width="5%">ID</th>
             <th width="14%">Timestamp (added on)</th>
             <th width="6%">Category</th>
             <th width="35%">Target</th>
-            <th width="35%">MD5/SHA256</th>
+            <th width="30%">MD5/SHA256</th>
+            <th width="5%">Action</th>
         </tr>
         </thead>
         <tbody>
         {% for task in tasks %}
             <tr>
+                <td>{{task.id}}</td>
                 <td><span class="muted">{{task.added_on}}</span></td>
                 <td>{{task.category}}</td>
                 <td>{{task.target|filename}}</td>
                 <td>{{task.md5}}</br>{{task.sha256}}</td>
+                <td><a href="/apiv2/tasks/delete/{{task.id}}/pending"><i class="fas fa-trash-alt"></i></a></td>
             </tr>
         {% endfor %}
         </tbody>
diff --git a/web/templates/analysis/procdump/index.html b/web/templates/analysis/procdump/index.html
index 36bf0beb8d3..252117e5938 100644
--- a/web/templates/analysis/procdump/index.html
+++ b/web/templates/analysis/procdump/index.html
@@ -1,180 +1,11 @@
-{% load key_tags %}
 <script src="{{ STATIC_URL }}js/hexdump.js"></script>
 {% if procdump|length > 0 %}
+    {% if settings.ZIPPED_DOWNLOAD_ALL and tab_name in 'dropped,procdump,CAPE' %}
+        <center><a href="{% url 'file' tab_name|add:'zipall' id '1' %}" class="btn btn-secondary btn-sm" data-bs-toggle="tooltip" title="Download password-protected file archive with all files"><span class="fas fa-file-archive"></span> <span class="fas fa-download"></span> Download All Files</a></center>
+        </br>
+    {% endif %}
     {% for file in procdump %}
-        <div class="panel panel-default">
-            <table class="table table-striped table-bordered" style="table-layout: fixed;">
-                <tr>
-                    <th style="border-top: 0; width: 15%;">Process Name</th>
-                    <td style="border-top: 0; word-wrap: break-word;">{{file.process_name}}</td>
-                </tr>
-                <tr>
-                    <th>PID</th>
-                    <td>{{file.pid}}</td>
-                </tr>
-                <tr>
-                    <th>Dump Size</th>
-                    <td>{{file.size}} bytes</td>
-                </tr>
-                <tr>
-                    <th>Module Path</th>
-                    <td>{{file.module_path}}</td>
-                </tr>
-                <tr>
-                    <th>Type</th>
-                    <td style="word-wrap: break-word;">{{file.cape_type}}</td>
-                </tr>
-                <tr>
-                    <th>PE timestamp</th>
-                    <td style="word-wrap: break-word;">{{file.timestamp}}</td>
-                </tr>
-                <tr>
-                    <th>MD5</th>
-                    <td style="word-wrap: break-word;">{{file.md5}}</td>
-                </tr>
-                <tr>
-                    <th>SHA1</th>
-                    <td style="word-wrap: break-word;">{{file.sha1}}</td>
-                </tr>
-                <tr>
-                    <th>SHA256</th>
-                    <td style="word-wrap: break-word;">{{file.sha256}}</td>
-                </tr>
-                {% if file.sha3_384 %}
-                <tr>
-                    <th>SHA3-384</th>
-                    <td style="word-wrap: break-word;">{{file.sha3_384}}</td>
-                </tr>
-                {% endif %}
-                <tr>
-                    <th>CRC32</th>
-                    <td>{{file.crc32}}</td>
-                </tr>
-                {% if file.tlsh %}
-                <tr>
-                    <th>TLSH</th>
-                    <td style="word-wrap: break-word;">{{file.tlsh}}</td>
-                </tr>
-                {% endif %}
-                <tr>
-                    <th>Ssdeep</th>
-                    <td style="word-wrap: break-word;">{{file.ssdeep}}</td>
-                </tr>
-                {% if file.clamav %}
-                <tr>
-                    <th>ClamAV</th>
-                    <td>
-                        <ul style="margin-bottom: 0;">
-                        {% for sign in file.clamav %}
-                            <li>{{sign}}</li>
-                        {% endfor %}
-                        </ul>
-
-                    </td>
-                </tr>
-                {% endif %}
-                {% if file.yara %}
-                <tr>
-                    <th>Yara</th>
-                    <td>
-                        <ul style="margin-bottom: 0;">
-                        {% for sign in file.yara %}
-                            <li>
-                            {{sign.name}} - {{sign.meta.description}}
-                            {% if sign.meta.author %}
-                                - Author: {{sign.meta.author}}
-                            {% endif %}
-                            </li>
-                        {% endfor %}
-                        </ul>
-                    </td>
-                </tr>
-                {% endif %}
-                {% if file.cape_yara %}
-                <tr>
-                    <th>CAPE Yara</th>
-                    <td>
-                        <ul style="margin-bottom: 0;">
-                        {% for sign in file.cape_yara %}
-                            <li>
-                            {% if sign.meta.cape_type %}
-                                {{sign.meta.cape_type}}
-                            {% elif sign.meta.description %}
-                                {{sign.meta.description}}
-                            {% endif %}
-                            {% if sign.meta.author %}
-                                - Author: {{sign.meta.author}}
-                            {% endif %}
-                            </li>
-                        {% endfor %}
-                        </ul>
-                    </td>
-                </tr>
-                {% endif %}
-                <tr>
-                    <th>Dump Filename</th>
-                    <td style="word-wrap: break-word;">{{file.name}}</td>
-                </tr>
-                {% if file.dropdir %}
-                <tr>
-                    <th></th>
-                    <td><a href="{% url "file" "procdump" id file.dropdir %}" class="btn btn-secondary btn-sm">Download</a>
-                    </td>
-                </tr>
-                {% else %}
-                <tr>
-                    <th></th>
-                    <td>
-                        <a href="{% url "file" "procdump" id file.sha256 %}" class="btn btn-secondary btn-sm">Download</a>
-                        <a href="{% url "file" "procdumpzip" id file.sha256 %}" class="btn btn-secondary btn-sm">Download Zip</a>
-                        <a class="btn btn-secondary btn-sm" href="/submit/resubmit/{{file.sha256}}"><span class="fa fa-refresh" aria-hidden="true"></span> Submit file</a>
-                    </td>
-                </tr>
-                {% endif %}
-                {% if file.flare_capa %}
-                <tr>
-                    <th><p><a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#flare_capa_{{file.sha256}}" role="button" aria-expanded="false" aria-controls="flare_capa_{{file.sha256}}">FLARE CAPA</a></p></th>
-                    <td>
-                    <div class="collapse" id="flare_capa_{{file.sha256}}">
-                        <div class="card card-body">
-                        <!--Inspired by @snemes trick, code placed in web/views/templateatgs/analysis_tags.py-->
-                        {% if file.flare_capa.CAPABILITY %}
-                            {{file.flare_capa|flare_capa_capability}}
-                        {% endif %}
-
-                        {% if file.flare_capa.ATTCK %}
-                            {{file.flare_capa|flare_capa_attck}}
-                        {% endif %}
-
-                        {% if file.flare_capa.MBC %}
-                            {{file.flare_capa|flare_capa_mbc}}
-                        {% endif %}
-                        </div>
-                    </div>
-                </td>
-                </tr>
-                </br>
-                {% else %}
-                <tr>
-                    <th><p><a class="btn btn-secondary btn-sm" href="{% url "on_demand" "flare_capa" id "procdump" file.sha256 %}" role="button">Generate CAPA</a></p></th>
-                    <td></td>
-                </tr>
-                {% endif %}
-            {% if bingraph.enabled and bingraph.content|getkey:file.sha256 %}
-                <tr>
-                    <th><p><a href="{% url "file_nl" "bingraph" id file.sha256 %}" class="btn btn-secondary btn-sm">Download graph</a></p></th>
-                    <td>{{ bingraph.content|getkey:file.sha256|safe }}</td>
-                </tr>
-            {% else %}
-                {% if config.bingraph %}
-                <tr>
-                    <th><p><a class="btn btn-secondary btn-sm" href="{% url "on_demand" "bingraph" id "procdump" file.sha256 %}" role="button">Generate Bingraph</a></p></th>
-                    <td></td>
-                </tr>
-                {% endif %}
-            {% endif %}
-            </table>
-        </div>
+        {% include "analysis/generic/_file_info.html" %}
     {% endfor %}
 {% else %}
     <div class="alert alert-secondary"><b>Sorry!</b> No process dumps.</div>
diff --git a/web/templates/analysis/procmemory/index.html b/web/templates/analysis/procmemory/index.html
index 022c97b7497..6eaa526b0a8 100644
--- a/web/templates/analysis/procmemory/index.html
+++ b/web/templates/analysis/procmemory/index.html
@@ -1,38 +1,37 @@
-{% if analysis.procmemory %}
+{% if procmemory %}
     <div class="tabbable tabs">
         <ul class="nav nav-tabs" style="margin-bottom: 0;">
-            {% for proc in analysis.procmemory %}
+            {% for proc in procmemory %}
                 <li {%if forloop.first %}class="nav-item active"{% endif %}><a class="nav-link" href="#procmemory_{{proc.pid}}" data-toggle="tab">{{proc.pid}}</a></li>
             {% endfor %}
         </ul>
         <div class="tab-content">
-            {% for proc in analysis.procmemory %}
+            {% for proc in procmemory %}
                 {% if forloop.first %}
                 <div class="tab-pane fade show active" id="procmemory_{{proc.pid}}">
                 {% else %}
                 <div class="tab-pane fade" id="procmemory_{{proc.pid}}">
                 {% endif %}
-                    <h4>Full Dump Information</h4>
-                    <table class="table table-striped table-bordered table-dark table-sm table-hover" style="table-layout: fixed;">
+                    <center><h4>Full Dump Information</h4></center>
+                    <table class="table table-striped table-bordered table-dark table-sm table-hover" style="table-layout: fixed; width: 50%;margin-left: auto;margin-right: auto;">
                         <tr>
                             <th width="15%">Process Name</th>
                             <td>{{proc.name}}</td>
                         </tr>
                         <tr>
                             <th>Executable Path</th>
-                            <td>{{proc.path}}</td>
+                            <td>{{proc.proc_path}}</td>
                         </tr>
                         {% if proc.yara %}
                         <tr>
                             <th>Yara</th>
                             <td>
                                 {% for match in proc.yara %}
-                                    <p>Match: {{match.name}} - {{match.meta.description}}
+                                    <li>Match: {{match.name}} - {{match.meta.description}}
                                     {% if match.meta.author %}
                                         - Author: {{match.meta.author}}
                                     {% endif %}
-                                    <!--{% for string in match.strings %} <div>{{string}}</div> {% endfor %}-->
-                                    </p>
+                                    </li>
                                 {% endfor %}
                             </td>
                         </tr>
@@ -41,43 +40,44 @@ <h4>Full Dump Information</h4>
                         <tr>
                             <th>CAPE Yara</th>
                             <td>
-                                {% for match in proc.cape_yara %}
-                                <p>Match: {{match.name}} - {{match.meta.description}} - Author: {{match.meta.author}}
-                                    <!--{% for string in match.strings %} <div>{{string}}</div> {% endfor %}-->
-                                    {% for key, value in match.memblocks.items %}
-                                        <div span style="padding-left: 16px;">'{{key}}' in address space {{value}}</div>
-                                    {% endfor %}
-                                </p>
-                                {% endfor %}
+                            {% for match in proc.cape_yara %}
+                                <li>
+                                Match: {{match.name}}
+                                {% if match.meta.cape_type %} - {{match.meta.cape_type}}
+                                {% elif match.meta.description %} - {{match.meta.description}}
+                                {% endif %}
+                                {% if match.meta.author %} - Author: {{match.meta.author}}{% endif %}
+                                </li>
+                            {% endfor %}
                             </td>
                         </tr>
                         {% endif %}
-                        {% if proc.file %}
+                        {% if proc.path %}
                             <tr>
                                 <th>Full Dump</th>
                                 <td>
-                                    <a class="btn btn-secondary btn-small" href="{% url "file" "memdump" analysis.info.id proc.pid %}">Download</a>
-                                    <a class="btn btn-secondary btn-small" href="{% url "file" "memdumpzip" analysis.info.id proc.pid %}">Download ZIP</a>
+                                    <a class="btn btn-secondary btn-small" href="{% url "file" "memdump" id proc.pid %}" data-bs-toggle="tooltip" title="Download file"><span class="fas fa-download"></a>
+                                    <a class="btn btn-secondary btn-small" href="{% url "file" "memdumpzip" id proc.pid %}" data-bs-toggle="tooltip" title="Download password-protected archive"><span class="fas fa-file-archive"></span> <span class="fas fa-download"></span></a>
                                 </td>
                             </tr>
                         {% endif %}
                         {% if proc.strings_path %}
                             <tr>
                                 <th>Process Strings</th>
-                                <td><a class="btn btn-secondary btn-small" href="{% url "file" "memdumpstrings" analysis.info.id proc.pid %}">Download</a></td>
+                                <td><a class="btn btn-secondary btn-small" href="{% url "file" "memdumpstrings" id proc.pid %}" data-bs-toggle="tooltip" title="Download strings"><span class="fas fa-download"></a></td>
                             </tr>
                         {% endif %}
                     </table>
                     {% if proc.address_space %}
-                    <h4>Address Space</h4>
-                    <table class="table table-bordered table-stripped table-hover table-sm">
+                    <center><h4>Address Space</h4></center>
+                    <table class="table table-striped table-bordered table-dark table-sm table-hover" style="table-layout: fixed; width: 50%; text-align: center;margin-left: auto;margin-right: auto;">
                             <tr>
                                 <th width="15%">Start</th>
-                                <th>End</th>
-                                <th>Size</th>
-                                <th>Protection</th>
-                                <th>PE</th>
-                                <th>Download</th>
+                                <th width="15%">End</th>
+                                <th width="15%">Size</th>
+                                <th width="10%">Protection</th>
+                                <th width="10%">PE</th>
+                                <th width="15%">Download</th>
                             </tr>
                             {% for memmap in proc.address_space %}
                                 <tr>
@@ -94,8 +94,12 @@ <h4>Address Space</h4>
                                     {% else %}
                                     <td><span class="badge badge-primary">No</span></td>
                                     {% endif %}
-                                    {% if proc.file %}
-                                    <td><a class="btn btn-secondary btn-small" href="{% url "procdump" analysis.info.id proc.pid memmap.start memmap.end %}">Download</a></td>
+                                    {% if proc.path %}
+                                    <td>
+                                        <a class="btn btn-secondary btn-small" href="{% url "procdump" id proc.pid memmap.start memmap.end %}" data-bs-toggle="tooltip" title="Download file"><span class="fas fa-download"></a>
+                                        <a class="btn btn-secondary btn-small" href="{% url "procdump" id proc.pid  memmap.start memmap.end 1 %}" data-bs-toggle="tooltip" title="Download password-protected archive"><span class="fas fa-file-archive"></span> <span class="fas fa-download"></span></a>
+                                    </td>
+
                                     {% endif %}
                                 </tr>
                                 {% if memmap.chunks|length >= 2 %}
@@ -106,8 +110,11 @@ <h4>Address Space</h4>
                                         <td>{{chunk.size}}</td>
                                         <td>{{chunk.prot}}</td>
                                         <td></td>
-                                        {% if proc.file %}
-                                        <td><a class="btn btn-secondary btn-small" href="{% url "procdump" analysis.info.id proc.pid chunk.start chunk.end %}">Download</a></td>
+                                        {% if proc.path %}
+                                        <td>
+                                            <a class="btn btn-secondary btn-small" href="{% url "procdump" id proc.pid chunk.start chunk.end %}" data-bs-toggle="tooltip" title="Download file"><span class="fas fa-download"></a>
+                                            <a class="btn btn-secondary btn-small" href="{% url "procdump" id proc.pid chunk.start chunk.end 1 %}" data-bs-toggle="tooltip" title="Download password-protected archive"><span class="fas fa-file-archive"></span> <span class="fas fa-download"></span></a>
+                                        </td>
                                         {% endif %}
                                     </tr>
                                 {% endfor %}
@@ -119,4 +126,6 @@ <h4>Address Space</h4>
             {% endfor %}
         </div>
     </div>
+{% else %}
+    <div class="alert alert-secondary"><b>Sorry!</b> No process dumps.</div>
 {% endif %}
diff --git a/web/templates/analysis/report.html b/web/templates/analysis/report.html
index e4b99168ac6..ed08b01984f 100644
--- a/web/templates/analysis/report.html
+++ b/web/templates/analysis/report.html
@@ -72,10 +72,10 @@
 
 <ul class="nav nav-tabs">
     <li class="nav-item"><a class="nav-link active" href="#overview" data-toggle="tab">Quick Overview</a></li>
-    {% if analysis.static or config.virustotal and analysis.virustotal %}
-        <li class="nav-item"><a class="nav-link" href="#static" data-toggle="tab">Static Analysis</a></li>
-    {% endif %}
-    {% if analysis.info.category != "pcap" and analysis.info.category != "static" %}
+    {% if analysis.info.machine.platform == "linux" %}
+        <li class="nav-item"><a class="nav-link" href="#strace" data-toggle="tabajax" data-url="/analysis/load_files/{{analysis.info.id}}/strace/" data-toggle="tab">Behavioral Analysis</a></li>
+        <li class="nav-item"><a class="nav-link" href="#tracee" data-toggle="tabajax" data-url="/analysis/load_files/{{analysis.info.id}}/tracee/" data-toggle="tab">Detailed Behaviour (Tracee)</a></li>
+    {% elif analysis.info.category != "pcap" and analysis.info.category != "static" %}
         <li class="nav-item"><a class="nav-link" href="#behavior" data-toggle="tabajax" data-url="/analysis/load_files/{{analysis.info.id}}/behavior/" data-toggle="tab">Behavioral Analysis</a></li>
     {% endif %}
     {% if analysis.info.category != "static" %}
@@ -85,8 +85,8 @@
         {% if analysis.dropped %}
             <li class="nav-item"><a class="nav-link" href="#dropped" data-toggle="tabajax" data-url="/analysis/load_files/{{analysis.info.id}}/dropped/" data-toggle="tab">Dropped Files ({{analysis.dropped}})</a></li>
         {% endif %}
-        {% if analysis.procmemory|length %}
-            <li class="nav-item"><a class="nav-link" href="#procmemory" data-toggle="tab" >Process Memory ({{analysis.procmemory|length}})</a></li>
+        {% if analysis.procmemory %}
+            <li class="nav-item"><a class="nav-link" href="#procmemory" data-toggle="tabajax" data-url="/analysis/load_files/{{analysis.info.id}}/procmemory/" data-toggle="tab" >Process Memory ({{analysis.procmemory}})</a></li>
         {% endif %}
         {% if analysis.memory %}
             <li class="nav-item"><a class="nav-link" href="#memory" data-toggle="tabajax" data-url="/analysis/load_files/{{analysis.info.id}}/memory/" data-toggle="tab">Memory Analysis</a></li>
@@ -97,16 +97,9 @@
         {% if analysis.CAPE %}
             <li class="nav-item"><a class="nav-link" href="#CAPE" data-toggle="tabajax" data-url="/analysis/load_files/{{analysis.info.id}}/CAPE/" data-toggle="tab">Payloads ({{analysis.CAPE}})</a></li>
         {% endif%}
-        <!--ToDo remove in CAPEv3-->
-        {% if analysis.CAPE_old %}
-            <li class="nav-item"><a class="nav-link" href="#CAPE_old" data-toggle="tabajax" data-url="/analysis/load_files/{{analysis.info.id}}/CAPE_old/" data-toggle="tab">CAPE ({{analysis.CAPE_old}})</a></li>
-        {% endif%}
         {% if analysis.debugger_logs %}
             <li class="nav-item"><a class="nav-link" href="#debugger" data-toggle="tabajax" data-url="/analysis/load_files/{{analysis.info.id}}/debugger/" data-toggle="tab">Debugger</a></li>
         {% endif %}
-        {% if reports_exist %}
-            <li class="nav-item"><a class="nav-link" href="#reports" data-toggle="tab">Reports</a></li>
-        {% endif %}
     {% endif %}
     {% if settings.COMMENTS %}
         {% if analysis.info.comments|length %}
@@ -120,21 +113,22 @@
     {% endif %}
     {% if analysis.backscatter %}<li class="nav-item"><a class="nav-link" href="#backscatter" data-toggle="tab">Backscatter</a></li>{% endif %}
     {% if analysis.classification%}<li class="nav-item"><a class="nav-link" href="#classification" data-toggle="tab">Classification</a> </li>{% endif %}
-    {% if analysis.curtain%}<li class="nav-item"> <a class="nav-link" href="#curtain" data-toggle="tab">Curtain</a></li>{% endif %}
-    <li class="nav-item"><a class="nav-link" href="#statistics" data-toggle="tab">Statistics</a></li>
-    {% if analysis.info.category == "file" and analysis.target %}<li class="nav-item"><a class="nav-link" href="{% url "compare_left" analysis.info.id %}">Compare this analysis to...</a></li>{% endif %}
+     {% if analysis.info.category == "file" and analysis.target %}<li class="nav-item"><a class="nav-link" href="{% url "compare_left" analysis.info.id %}">Compare this analysis to...</a></li>{% endif %}
     {% if settings.ADMIN or user.is_staff %}<li class="nav-item"><a class="nav-link" href="#admin" data-toggle="tab">Admin</a></li>{% endif %}
 </ul>
 <div class="tab-content">
     <div class="tab-pane fade show active" id="overview">
         {% include "analysis/overview/index.html" %}
     </div>
-    {% if analysis.static or analysis.strings or config.virustotal and analysis.virustotal %}
-    <div class="tab-pane fade" id="static">
-        {% include "analysis/static/index.html" %}
+    <div class="tab-pane fade" id="behavior">
+        {% include "analysis/behavior/index.html" %}
+    </div>
+    <div class="tab-pane fade" id="strace">
+        {% include "analysis/strace/index.html" %}
+    </div>
+    <div class="tab-pane fade" id="tracee">
+        {% include "analysis/tracee/index.html" %}
     </div>
-    {% endif %}
-    <div class="tab-pane fade" id="behavior">{% include "analysis/behavior/index.html" %}</div>
     <div class="tab-pane fade" id="network">
         {% include "analysis/network/index.html" %}
     </div>
@@ -146,12 +140,6 @@
         {% include "analysis/CAPE/index.html" %}
         </div>
     {% endif %}
-    <!--ToDo remve in CAPEv3-->
-    {% if analysis.CAPE_old %}
-        <div class="tab-pane fade" id="CAPE_old">
-        {% include "analysis/CAPE/index_old.html" %}
-        </div>
-    {% endif %}
     <div class="tab-pane fade" id="procdump">
         {% include "analysis/procdump/index.html" %}
     </div>
@@ -172,9 +160,6 @@
         </div>
         {% endif %}
     {% endif %}
-    <div class="tab-pane fade" id="reports">
-        {% include "analysis/reports/index.html" %}
-    </div>
     {% if settings.COMMENTS %}
     <div class="tab-pane fade" id="comments">
         {% include "analysis/comments/index.html" %}
@@ -200,14 +185,6 @@
         {% include "analysis/classification.html" %}
     </div>
     {% endif %}
-    {% if analysis.curtain %}
-    <div class="tab-pane fade" id="curtain">
-        {% include "analysis/curtain.html" %}
-    </div>
-    {% endif %}
-    <div class="tab-pane fade" id="statistics">
-        {% include "analysis/statistics/index.html" %}
-    </div>
     {% if settings.ADMIN or user.is_staff %}
     <div class="tab-pane fade" id="admin">
         {% include "analysis/admin/index.html" %}
diff --git a/web/templates/analysis/reports/index.html b/web/templates/analysis/reports/index.html
deleted file mode 100644
index 2a88b4d6a18..00000000000
--- a/web/templates/analysis/reports/index.html
+++ /dev/null
@@ -1,52 +0,0 @@
-<div class="card " style="width: 30%;">
-    <table class="table table-striped" style="table-layout: fixed;">
-      {% if config.jsondump %}
-        <tr>
-          <th>JSON Report</th>
-            <td style="text-align: right;"><a class="btn btn-secondary btn-small" href="{% url "filereport" analysis.info.id "json" %}">Download</a></td>
-        </tr>
-      {% endif %}
-      {% if config.reporthtml %}
-        <tr>
-            <th>HTML Report</th>
-            <td style="text-align: right;"><a class="btn btn-secondary btn-small" href="{% url "filereport" analysis.info.id "html" %}">Download</a></td>
-        </tr>
-      {% endif %}
-      {% if config.reporthtmlsummary %}
-        <tr>
-            <th>Summary HTML Report</th>
-            <td style="text-align: right;"><a class="btn btn-secondary btn-small" href="{% url "filereport" analysis.info.id "htmlsummary" %}">Download</a></td>
-        </tr>
-      {% endif %}
-      {% if config.reportpdf %}
-        <tr>
-            <th>PDF Report</th>
-            <td style="text-align: right;"><a class="btn btn-secondary btn-small" href="{% url "filereport" analysis.info.id "pdf" %}">Download</a></td>
-        </tr>
-      {% endif %}
-      {% if config.maec41 %}
-        <tr>
-            <th>MAEC Report</th>
-            <td style="text-align: right;"><a class="btn btn-secondary btn-small" href="{% url "filereport" analysis.info.id "maec" %}">Download</a></td>
-        </tr>
-      {% endif %}
-      {% if config.maec5 %}
-        <tr>
-            <th>MAEC Report</th>
-            <td style="text-align: right;"><a class="btn btn-secondary btn-small" href="{% url "filereport" analysis.info.id "maec5" %}">Download</a></td>
-        </tr>
-      {% endif %}
-      {% if config.mmdef %}
-        <tr>
-            <th>Metadata Report</th>
-            <td style="text-align: right;"><a class="btn btn-secondary btn-small" href="{% url "filereport" analysis.info.id "metadata" %}">Download</a></td>
-        </tr>
-      {% endif %}
-      {% if config.misp %}
-        <tr>
-            <th>MISP Report</th>
-            <td style="text-align: right;"><a class="btn btn-secondary btn-small" href="{% url "filereport" analysis.info.id "misp" %}">Download</a></td>
-        </tr>
-      {% endif %}
-    </table>
-</div>
diff --git a/web/templates/analysis/search.html b/web/templates/analysis/search.html
index 0c38722f368..6ff51d45d3e 100644
--- a/web/templates/analysis/search.html
+++ b/web/templates/analysis/search.html
@@ -2,7 +2,7 @@
 {% block content %}
 <div class="row">
     <div class="col-md-0 mx-auto">
-        <form class="form-inline" role="form" action="{% url "search" %}" enctype="multipart/form-data" method="post">{% csrf_token %}
+        <form class="form-inline" role="form" action="{% url "search" %}" method="get">
             <div class="form-group">
                 <label class="sr-only" for="form_search">Search term</label>
                 <input type="text" class="form-control" id="form_search" name="search" size=50 placeholder="Search term as regex" />
@@ -12,8 +12,8 @@
         <p class="text-muted" style="margin-top: 5px;">For details on how to perform searches, get some <a href="#help" aria-expanded="false" aria-controls="#help" data-toggle="collapse">help</a>.</p>
         <div id="help" class="collapse">
             <p class="text-muted" style="margin-top: 10px;">ElasticSearch queries do not use a prefix. ie: '*windows.*' would match 'time.windows.com'</p>
-            <p class="text-muted" style="margin-top: 10px;">For MD5, SHA1, SHA256 and SHA512 no prefix is needed.</p>
-            <table class="table table-striped table-centered">
+            <p class="text-muted" style="margin-top: 10px;">For MD5, SHA1, SHA3 SHA256 and SHA512 no prefix is needed(will match any file generated by this analysis as binary/dropped/CAPEdump/etc).</p>
+            <table class="table table-striped table-centered table-hover">
                 <thead>
                     <tr>
                         <th style="text-align: center;">Prefix</th>
@@ -21,6 +21,15 @@
                     </tr>
                 </thead>
                 <tbody>
+                    <tr>
+                        <td><code>target_sha256:</code></td>
+                        <td>sha256</td>
+                    </tr>
+                    <tr>
+                        <td><code>configs:</code></td>
+                        <td>Family name</td>
+                    </tr>
+
                     <tr>
                         <td><code>id:</code></td>
                         <td>task_id, Example: id:1</td>
@@ -31,12 +40,16 @@
                     </tr>
                     <tr>
                         <td><code>options:</code></td>
-                        <td>x=y</td>
+                        <td>x=y, Example: options:function=DllMain</td>
                     </tr>
                     <tr>
                         <td><code>tags_tasks:</code></td>
                         <td>my_tag, Example: tags_tasks:mytag</td>
                     </tr>
+                    <tr>
+                        <td><code>package:</code></td>
+                        <td>package, Example: package:ps1</td>
+                    </tr>
                     <tr>
                         <td><code>name:</code></td>
                         <td>File name pattern</td>
@@ -45,10 +58,6 @@
                         <td><code>type:</code></td>
                         <td>File type/format</td>
                     </tr>
-                    <tr>
-                        <td><code>string:</code></td>
-                        <td>String contained in the binary</td>
-                    </tr>
                     <tr>
                         <td><code>ssdeep:</code></td>
                         <td>Fuzzy hash</td>
@@ -89,6 +98,18 @@
                         <td><code>mutex:</code></td>
                         <td>Open mutexes matching the pattern</td>
                     </tr>
+                    <tr>
+                        <td><code>sport:</code></td>
+                        <td>Source port. Ex: sport:X</td>
+                    </tr>
+                    <tr>
+                        <td><code>dport:</code></td>
+                        <td>Destination port. Ex: dport:443</td>
+                    </tr>
+                    <tr>
+                        <td><code>port:</code></td>
+                        <td>Search in Source and Destination ports. Ex port:x</td>
+                    </tr>
                     <tr>
                         <td><code>ip:</code></td>
                         <td>Contact the specified IP address</td>
@@ -138,7 +159,7 @@
                         <td>Search for Referrer in Suricata HTTP Logs</td>
                     </tr>
                     <tr>
-                        <td><code>surihhost:</code></td>
+                        <td><code>surihost:</code></td>
                         <td>Search for Host in Suricata HTTP Logs</td>
                     </tr>
                     <tr>
@@ -175,11 +196,15 @@
                     </tr>
                     <tr>
                         <td><code>yaraname:</code></td>
-                        <td>Yara Rule Name for analysis samples</td>
+                        <td>Yara Rule Name for analysis samples (from binary folder)</td>
                     </tr>
                     <tr>
                         <td><code>capeyara:</code></td>
-                        <td>Yara Rule Name for CAPE Yara hits</td>
+                        <td>Yara Rule Name for CAPE Yara hits (from cape folder)</td>
+                    </tr>
+                    <tr>
+                        <td><code>procdumpyara:</code></td>
+                        <td>Yara Rule Name for process dumps</td>
                     </tr>
                     <tr>
                         <td><code>procmemyara:</code></td>
@@ -202,36 +227,36 @@
                         <td>Custom data</td>
                     </tr>
                     <tr>
-                        <td><code>shrikemsg:</code></td>
-                        <td>Shrike Suri Alert MSG</td>
+                        <td><code>comment:</code></td>
+                        <td>Search for Analysis Comments</td>
                     </tr>
                     <tr>
-                        <td><code>shrikesid:</code></td>
-                        <td>Shrike Suri Alert Sid (exact int)</td>
+                        <td><code>malscore:</code></td>
+                        <td>Search for Malscore greater than the value</td>
                     </tr>
                     <tr>
-                        <td><code>shrikeurl:</code></td>
-                        <td>Shrike url before mangling</td>
+                        <td><code>ttp:</code></td>
+                        <td>TTP id, Ex: T1053</td>
                     </tr>
                     <tr>
-                        <td><code>shrikerefer:</code></td>
-                        <td>Shrike Referrer</td>
+                        <td><code>dhash:</code></td>
+                        <td>hash</td>
                     </tr>
                     <tr>
-                        <td><code>comment:</code></td>
-                        <td>Search for Analysis Comments</td>
+                        <td><code>die:</code></td>
+                        <td>keyboard, Ex die:obsidium</td>
                     </tr>
                     <tr>
-                        <td><code>malscore:</code></td>
-                        <td>Search for Malscore greater than the value</td>
+                        <td><code>extracted_tool:</code></td>
+                        <td>keyboard, Ex extracted_tool:InnoExtract. See file_extra_info.py for the rest of the tool names</td>
                     </tr>
                     <tr>
-                        <td><code>ttp:</code></td>
-                        <td>TTP id, ex: T1053</td>
+                        <td><code>asn:</code></td>
+                        <td>AS ID, Ex asn:AS15169</td>
                     </tr>
                     <tr>
-                        <td><code>payloads:</code></td>
-                        <td>md5/sha1/sha256/sha512</td>
+                        <td><code>asn_name:</code></td>
+                        <td>ASN name, Ex: asn_name:Google LLC </td>
                     </tr>
                 </tbody>
             </table>
@@ -239,7 +264,11 @@
     </div>
 </div>
 {% if term %}
-    <h3>Term <span class="text-danger"><i>{{term}}</i></span></h3>
+    <h3>Term <span class="text-danger"><i>{{term}}</i></span>
+    {% if settings.ZIPPED_DOWNLOAD_ALL and term_only in 'capetype,capeyara' %}
+        <center><a href="{% url 'file' term_only|add:'zipall' '1' value_only %}" class="btn btn-secondary btn-sm" data-bs-toggle="tooltip" title="Download password-protected file archive with all files that matches searched term. All, not only initial target."><span class="fas fa-file-archive"></span> <span class="fas fa-download"></span> Download All Files</a></center>
+    {% endif %}
+    </h3>
 {% endif %}
 {% if analyses != None %}
     {% if analyses|length > 0 %}
@@ -275,16 +304,15 @@ <h3 class="panel-title">Search Results</h3>
                     {% if config.virustotal %}
                     <th width="5%">VT</th>
                     {% endif %}
+                    {% if config.malscore %}
                     <th width="5%">MalScore</th>
+                    {% endif %}
                     {% if config.expanded_dashboard %}
                     <th width="4%">Detections</th>
                     <th width="3%">PCAP</th>
                     <th width="5%">ClamAV</th>
                     <th width="10%">Custom</th>
                     {% endif %}
-                    {% if config.display_shrike %}
-                    <th width="5%">Shrike</th>
-                    {% endif %}
                     <th width="7%" style="text-align: right;">Status</th>
                 </tr>
                 </thead>
@@ -330,7 +358,14 @@ <h3 class="panel-title">Search Results</h3>
                         </td>
                         <td>
                             {% if analysis.detections %}
-                                <a href="/analysis/search/detections:{{analysis.detections}}"><span style="color:#EE1B2F;font-weight: bold;">{{analysis.detections}}</span></a>
+                                <!--ToDo get_type is to show correctly old detection. so To be removed. 1 detection we show the name, more detection we show multi and add tooltip-->
+                                {% if analysis.detections|is_string %}
+                                    <a href="/analysis/search/detections:{{analysis.detections}}"><span style="color:#EE1B2F;font-weight: bold;">{{analysis.detections}}</span></a>
+                                {% elif analysis.detections|length == 1 %}
+                                    <a href="/analysis/search/detections:{{analysis.detections.0.family}}"><span style="color:#EE1B2F;font-weight: bold;">{{analysis.detections.0.family}}</span></a>
+                                {% elif analysis.detections|length > 1 %}
+                                    <span style="color:#EE1B2F;font-weight: bold;" title="{% for block in analysis.detections %}{% if block.family %}{{block.family}}&#013;{% endif %}{% endfor %}">Multiple</span>
+                                {% endif %}
                             {% endif %}
                         </td>
                         {% if config.expanded_dashboard %}
@@ -413,6 +448,7 @@ <h3 class="panel-title">Search Results</h3>
                             {% endif %}
                         </td>
                         {% endif %}
+                        {% if config.malscore %}
                         <td>
                             {% if analysis.malscore != None %}
                                 <span
@@ -431,6 +467,7 @@ <h3 class="panel-title">Search Results</h3>
                                 <span class="mono">None</span>
                             {% endif %}
                         </td>
+                        {% endif %}
                         {% if config.expanded_dashboard %}
                         <td>
                             <span class="mono">
@@ -469,19 +506,6 @@ <h3 class="panel-title">Search Results</h3>
                             </span>
                         </td>
                         {% endif %}
-                        {% if config.display_shrike %}
-                        <td>
-                            {% if analysis.shrike_msg %}
-                                 {% if analysis.status == "reported" %}
-                                     <a href="{% url "shrike" analysis.id %}" target="_blank"><span class="mono">{{analysis.shrike_msg}}</span></a>
-                                 {% else %}
-                                     <span class="mono">{{analysis.shrike_msg}}</span>
-                                 {% endif %}
-                            {% else %}
-                                 <span class="mono">None</span>
-                            {% endif %}
-                        </td>
-                       {% endif %}
                         <td style="text-align: right;">
                             {% if analysis.status == "pending" %}
                                 <span class="text-muted">pending</span>
diff --git a/web/templates/analysis/shrike.html b/web/templates/analysis/shrike.html
deleted file mode 100644
index d1656d0fe63..00000000000
--- a/web/templates/analysis/shrike.html
+++ /dev/null
@@ -1,53 +0,0 @@
-{% extends "base.html" %}
-{% block content %}
-
-<ul class="nav nav-tabs">
-    <li class="active"><a href="#shrike " data-toggle="tab">Shrike</a></li>
-</ul>
-<div class="tab-content">
-    <div class="tab-pane fade in active" id="shrike">
-   {% if shrike.info.shrike_msg %}
-        <table class="table table-striped table-bordered" style="table-layout: fixed;">
-            <tr>
-                <th width="25%">Url</th>
-                <th width="25%">Referrer</th>
-                <th width="25%">Sid</th>
-                <th width="25%">Msg</th>
-            </tr>
-            <tr>
-                    <td>
-                    {%if shrike.info.shrike_url %}
-                        {{shrike.info.shrike_url}}
-                    {% else %}
-                        <span class="mono">None</span>
-                    {% endif %}
-                    </td>
-                    <td>
-                    {%if shrike.info.shrike_refer %}
-                        {{shrike.info.shrike_refer}}
-                    {% else %}
-                        <span class="mono">None</span>
-                    {% endif %}
-                    </td>
-                    <td>
-                    {%if shrike.info.shrike_sid %}
-                        {{shrike.info.shrike_sid}}
-                    {% else %}
-                        <span class="mono">None</span>
-                    {% endif %}
-                    </td>
-                    <td>
-                    {%if shrike.info.shrike_msg %}
-                        {{shrike.info.shrike_msg}}
-                    {% else %}
-                        <span class="mono">None</span>
-                    {% endif %}
-                    </td>
-            </tr>
-        </table>
-    {% else %}
-        <p>No Shrike Data</p>
-    {% endif %}
-    </div>
-</div>
-{% endblock %}
diff --git a/web/templates/analysis/similar/index.html b/web/templates/analysis/similar/index.html
index cee98a873c3..7cdce5a3dcb 100644
--- a/web/templates/analysis/similar/index.html
+++ b/web/templates/analysis/similar/index.html
@@ -85,7 +85,7 @@ <h3 class="card-title">Similar Analyses</h3>
                     {% endif %}
                     <td>
                         {% if analysis.malscore != None %}
-                            <span 
+                            <span
                             {% if analysis.malscore <= 2.0 %}
                             class="badge badge-success"
                             {% elif analysis.malscore <= 6.0 %}
diff --git a/web/templates/analysis/static/_antivirus.html b/web/templates/analysis/static/_antivirus.html
deleted file mode 100644
index 001b78349df..00000000000
--- a/web/templates/analysis/static/_antivirus.html
+++ /dev/null
@@ -1,63 +0,0 @@
-<section id="static_antivirus">
-    {% if analysis.virustotal and analysis.virustotal.response_code %}
-    {% if analysis.virustotal.resource %}
-        <h4><a href="https://www.virustotal.com/en/{{analysis.info.category}}/{{analysis.virustotal.resource}}/analysis/">Full Results</a></h4>
-    {% endif %}
-
-    <table class="table table-striped table-bordered">
-        <tr>
-            <th>Engine</th>
-            {% if analysis.info.category == "file" %}
-                <th>Signature</th>
-            {% else %}
-                <th>Result</th>
-            {% endif %}
-            <th>Engine</th>
-            {% if analysis.info.category == "file" %}
-                <th>Signature</th>
-            {% else %}
-                <th>Result</th>
-            {% endif %}
-            <th>Engine</th>
-            {% if analysis.info.category == "file" %}
-                <th>Signature</th>
-            {% else %}
-                <th>Result</th>
-            {% endif %}
-        </tr>
-
-        {% for av, values in analysis.virustotal.scans.items %}
-            <td>{{av}}</td>
-            <td>
-                {% if analysis.info.category == "file" %}
-                    {% if not values.result %}
-                        <span class="text-muted">Clean</span>
-                    {% else %}
-                        <span class="text-danger">{{values.result}}
-                        {% if values.moloch %}
-                        <a href="{{values.moloch}}" target="_blank">[MLCH]</a>
-                        {% endif %}
-                        </span>
-                    {% endif %}
-                {% else %}
-                    {% if not values.detected %}
-                        <span class="text-muted">
-                    {% else %}
-                        <span class="text-danger">
-                    {% endif %}
-                    {{ values.result|title }}
-                    </span>
-                {% endif %}
-            </td>
-        {% if forloop.counter|divisibleby:"3" %}
-            </tr>
-        {% elif forloop.last %}
-            </tr>
-        {% endif %}
-        {% endfor %}
-
-    </table>
-    {% else %}
-    No antivirus signatures available.
-    {% endif %}
-</section>
diff --git a/web/templates/analysis/static/_java.html b/web/templates/analysis/static/_java.html
deleted file mode 100644
index 381c287c784..00000000000
--- a/web/templates/analysis/static/_java.html
+++ /dev/null
@@ -1,7 +0,0 @@
-<section id="static_java">
-    <div class="well" style="font-family: monospace;">
-        {% if analysis.static and analysis.static.java and analysis.static.java.decompiled %}
-            <div><pre>{{analysis.static.java.decompiled}}</pre></div>
-        {% endif %}
-    </div>
-</section>
\ No newline at end of file
diff --git a/web/templates/analysis/static/_office.html b/web/templates/analysis/static/_office.html
deleted file mode 100644
index 46d573d3405..00000000000
--- a/web/templates/analysis/static/_office.html
+++ /dev/null
@@ -1,296 +0,0 @@
-<section id="static_analysis">
-    {% load key_tags %}
-    {% if graphs.bingraph.enabled and graphs.bingraph.content|getkey:analysis.target.file.sha256 %}
-        <h4>Binary Entropy <a href="{% url "file_nl" "bingraph" analysis.info.id analysis.target.file.sha256 %}" class="btn btn-secondary btn-small">Download graph</a></h4>
-        {{ graphs.bingraph.content|getkey:analysis.target.file.sha256|safe }}
-    </br></br>
-    {% else %}
-        {% if graphs.bingraph.enabled %}
-        <h4>BinGraph</h4>
-            <p><a class="btn btn-secondary btn-small" href="{% url "on_demand" "bingraph" analysis.info.id "static" analysis.target.file.sha256 %}" role="button">Generate Bingraph</a></p>
-        {% endif %}
-    {% endif %}
-    {% if analysis.static %}
-        {% if analysis.static.office %}
-            {% if analysis.mmbot %}
-                <div>
-                    <div id="mmbot_results">
-                        <h4>Malicious Macro Bot Results</h4>
-                        <table class="table table-striped table-bordered">
-                            <colgroup>
-                                <col width="250" />
-                                <col width="*" />
-                            </colgroup>
-                            {% for key, value in analysis.mmbot.items|dictsort:"0.lower" %}
-                                <tr>
-                                    <td>{{key}}</td>
-                                    <td>{{value}}</td>
-                                </tr>
-                            {% endfor %}
-                        </table>
-                    </div>
-                </div>
-            {% endif %}
-            {% if analysis.static.office.Metadata %}
-                {% if analysis.static.office.Metadata.SummaryInformation %}
-                <div>
-                    <div id="si_metadata">
-                        <h4>SummaryInformation Metadata</h4>
-                        <table class="table table-striped table-bordered">
-                            <colgroup>
-                                <col width="250" />
-                                <col width="*" />
-                            </colgroup>
-                            {% if analysis.static.office.Metadata.SummaryInformation.creating_application %}
-                            <tr>
-                                <td>Creating Application</td>
-                                <td>{{analysis.static.office.Metadata.SummaryInformation.creating_application}}</td>
-                            </tr>
-                            {% endif %}
-                            {% if analysis.static.office.Metadata.SummaryInformation.author %}
-                            <tr>
-                                <td>Author</td>
-                                <td>{{analysis.static.office.Metadata.SummaryInformation.author}}</td>
-                            </tr>
-                            {% endif %}
-                            {% if analysis.static.office.Metadata.SummaryInformation.last_saved_by %}
-                            <tr>
-                                <td>Last Saved By</td>
-                                <td>{{analysis.static.office.Metadata.SummaryInformation.last_saved_by}}</td>
-                            </tr>
-                            {% endif %}
-                            {% if analysis.static.office.Metadata.SummaryInformation.create_time %}
-                            <tr>
-                                <td>Creation Time</td>
-                                <td>{{analysis.static.office.Metadata.SummaryInformation.create_time}}</td>
-                            </tr>
-                            {% endif %}
-                            {% if analysis.static.office.Metadata.SummaryInformation.last_saved_time %}
-                            <tr>
-                                <td>Last Saved Time</td>
-                                <td>{{analysis.static.office.Metadata.SummaryInformation.last_saved_time}}</td>
-                            </tr>
-                            {% endif %}
-                            {% if analysis.static.office.Metadata.SummaryInformation.total_edit_time %}
-                            <tr>
-                                <td>Total Edit Time</td>
-                                <td>{{analysis.static.office.Metadata.SummaryInformation.total_edit_time}}</td>
-                            </tr>
-                            {% endif %}
-                            {% if analysis.static.office.Metadata.SummaryInformation.title %}
-                            <tr>
-                                <td>Document Title</td>
-                                <td>{{analysis.static.office.Metadata.SummaryInformation.title}}</td>
-                            </tr>
-                            {% endif %}
-                            {% if analysis.static.office.Metadata.SummaryInformation.subject %}
-                            <tr>
-                                <td>Document Subject</td>
-                                <td>{{analysis.static.office.Metadata.SummaryInformation.subject}}</td>
-                            </tr>
-                            {% endif %}
-                            {% if analysis.static.office.Metadata.SummaryInformation.num_pages %}
-                            <tr>
-                                <td>Amount of Pages</td>
-                                <td>{{analysis.static.office.Metadata.SummaryInformation.num_pages}}</td>
-                            </tr>
-                            {% endif %}
-                            {% if analysis.static.office.Metadata.SummaryInformation.num_words %}
-                            <tr>
-                                <td>Amount of Words</td>
-                                <td>{{analysis.static.office.Metadata.SummaryInformation.num_words}}</td>
-                            </tr>
-                            {% endif %}
-                            {% if analysis.static.office.Metadata.SummaryInformation.num_chars %}
-                            <tr>
-                                <td>Amount of Characters</td>
-                                <td>{{analysis.static.office.Metadata.SummaryInformation.num_chars}}</td>
-                            </tr>
-                            {% endif %}
-                        </table>
-                    </div>
-                </div>
-                <hr />
-                {% endif %}
-                {% if analysis.static.office.Metadata.DocumentSummaryInformation %}
-                <div>
-                    <div id="dsi_metadata">
-                        <h4>DocumentSummaryInformation Metadata</h4>
-                        <table class="table table-striped table-bordered">
-                            <colgroup>
-                                <col width="250" />
-                                <col width="*" />
-                            </colgroup>
-                            {% if analysis.static.office.Metadata.DocumentSummaryInformation.company %}
-                            <tr>
-                                <td>Company</td>
-                                <td>{{analysis.static.office.Metadata.DocumentSummaryInformation.company}}</td>
-                            </tr>
-                            {% endif %}
-                            {% if analysis.static.office.Metadata.DocumentSummaryInformation.doc_version %}
-                            <tr>
-                                <td>Document Version</td>
-                                <td>{{analysis.static.office.Metadata.DocumentSummaryInformation.doc_version}}</td>
-                            </tr>
-                            {% endif %}
-                            {% if analysis.static.office.Metadata.DocumentSummaryInformation.dig_sig %}
-                            <tr>
-                                <td>Digital Signature</td>
-                                <td>{{analysis.static.office.Metadata.DocumentSummaryInformation.dig_sig}}</td>
-                            </tr>
-                            {% endif %}
-                            {% if analysis.static.office.Metadata.DocumentSummaryInformation.language %}
-                            <tr>
-                                <td>Language</td>
-                                <td>{{analysis.static.office.Metadata.DocumentSummaryInformation.language}}</td>
-                            </tr>
-                            {% endif %}
-                            {% if analysis.static.office.Metadata.DocumentSummaryInformation.notes %}
-                            <tr>
-                                <td>Notes</td>
-                                <td>{{analysis.static.office.Metadata.DocumentSummaryInformation.notes}}</td>
-                            </tr>
-                            {% endif %}
-                        </table>
-                    </div>
-                </div>
-                <hr />
-                {% endif %}
-            {% endif %}
-            {% if analysis.static.office.Macro %}
-                {% if analysis.static.office.Macro.Analysis %}
-                    <div id="analysis_sigs">
-                        <h4>File Analysis (Signatures)</h4>
-                        {% for detection in analysis.static.office.Macro.Analysis %}
-                        <div>
-                            <div class="panel" id="accordion" style="margin-top: 20px;">
-                            <div class="card-header">
-                                <a class="accordion-toggle" data-parent="#analysis_sigs" data-toggle="collapse" href="#{{detection}}" aria-expanded="false"><i class="icon icon-cog"></i>{{detection}}</a>
-                            </div>
-                            <div id="{{detection}}" class="panel-collapse collapse" style="text-align: left;">
-                                <table class="table table-striped table-bordered">
-                                <colgroup>
-                                    <col width="200">
-                                    <col width="*">
-                                </colgroup>
-                                <th colspan="2">{{detection}}</th>
-                                {% for indicator, description in analysis.static.office.Macro.Analysis|getkey:detection %}
-                                    <tr>
-                                        <td>{{indicator}}</td>
-                                        <td>{{description}}</td>
-                                    </tr>
-                                {% endfor %}
-                                </table>
-                            </div>
-                            </div>
-                        {% endfor %}
-                    </div>
-                </div>
-                <hr />
-                {% endif %}
-                {% if analysis.static.office.Macro.Code and not analysis.static.office.XLMMacroDeobfuscator %}
-                <div>
-                    <div id="macro">
-                    <h4>Extracted Macros</h4>
-                    {% for macrodata in analysis.static.office.Macro.Code %}
-                    <table class="table table-striped table-bordered">
-                        <col style="width:20%">
-                        <col style="width:60%">
-                        <col style="width:20%">
-                        {% for name, code in analysis.static.office.Macro.Code|getkey:macrodata %}
-                        <tr>
-                            <td>VBA Filename</td>
-                            <td>{{name}}</td>
-                            <td><a class="accordion-toggle" data-toggle="collapse" data-parent="#accordion" href="#{{macrodata}}">Extracted Macro</a></td>
-                        </tr>
-                        </table>
-                        <div id="{{macrodata}}" class="collapse">
-                            <pre>{{code}}</pre>
-                        </div>
-                        {% endfor %}
-                    {% endfor %}
-                    </div>
-                </div>
-                <hr />
-                {% if graphs.vba2graph.enabled %}
-                    {% if graphs.vba2graph.content %}
-                        <h4>Vba2Graph</h4>
-                        {{ graphs.vba2graph.content|safe }}
-                        </br>
-                    {% else %}
-                        <h4>Vba2Graph</h4>
-                        <p><a class="btn btn-secondary  btn-sm" href="{% url "on_demand" "vba2graph" analysis.info.id "static" analysis.target.file.sha256 %}" role="button">Generate VBA2Graph</a></p>
-                    {% endif %}
-                {% endif %}
-                {% endif %}
-            {% endif %}
-        {% endif %}
-        {% if analysis.static.office_rtf %}
-            <div>
-                <div id="si_metadata">
-                    <h4>RTF document details</h4>
-                    <table class="table table-striped table-bordered">
-                        {% for key, value in analysis.static.office_rtf.items %}
-                            <h5>Object ID: {{key}}</h5>
-                            <tr>
-                                <th width=10%>Filename</th>
-                                <td>Size</td>
-                                <th>Index</th>
-                                <td>Class Name</td>
-                                <td>Type Embed</td>
-                                <th>CVE</th>
-                            </tr>
-                            {% for block in value %}
-                                <tr>
-                                    {% if block.sha256 %}
-                                        <td><a href={% url "file" "rtf" analysis.info.id block.sha256 %} class="btn btn-secondary btn-small">{{block.filename}}</a></td>
-                                    {% else %}
-                                        <td>{{block.filename}}</td>
-                                    {% endif %}
-                                    <td>{{block.size}}</td>
-                                    <td>{{block.index}}</td>
-                                    <td>{{block.class_name}}</td>
-                                    <td>{{block.type_embed}}</td>
-                                    <td>{{block.CVE}}</td>
-                                </tr>
-                            {% endfor %}
-                        {% endfor %}
-                    </table>
-                </div>
-            </div>
-            <hr />
-        {% endif %}
-        {% if analysis.static.office_dde %}
-        <div id="si_metadata">
-        <table class="table table-striped table-bordered">
-            <colgroup>
-                <col width="200" />
-                <col width="*" />
-            </colgroup>
-            <tr>
-                <td><h4>DDE Detected</h4></td>
-                <td>{{analysis.static.office_dde}}</td>
-            </tr>
-        </table>
-        </div>
-        {% endif %}
-        {% if analysis.static.office.XLMMacroDeobfuscator %}
-        <div id="xmlmacro">
-        <h4>XLMMacroDeobfuscator</h4>
-        <table class="table table-striped table-bordered">
-            <tr>
-                <td><a class="accordion-toggle" data-toggle="collapse"  data-parent="#accordion" href="#XLMMacroDeobfuscator">Decoded XLM Macro</a></td>
-            </tr>
-        </table>
-        <div id="XLMMacroDeobfuscator" class="collapse" style="text-align: left;">
-            <pre>
-                {% for line in analysis.static.office.XLMMacroDeobfuscator.Code%}
-                    {{line}}
-                {% endfor %}
-            </pre>
-        </div>
-        </div>
-        <hr />
-        {% endif %}
-    {% endif %}
-</section>
diff --git a/web/templates/analysis/static/_pe32.html b/web/templates/analysis/static/_pe32.html
deleted file mode 100644
index ad820bc7e1a..00000000000
--- a/web/templates/analysis/static/_pe32.html
+++ /dev/null
@@ -1,419 +0,0 @@
-<section id="static_analysis">
-    {% load key_tags %}
-    {% if graphs.bingraph.enabled and graphs.bingraph.content|getkey:analysis.target.file.sha256 %}
-        <h4>BinGraph <a href="{% url "file_nl" "bingraph" analysis.info.id analysis.target.file.sha256 %}" class="btn btn-secondary btn-small">Download graph</a></h4>
-        {{ graphs.bingraph.content|getkey:analysis.target.file.sha256|safe }}
-    </br></br>
-    {% else %}
-        {% if graphs.bingraph.enabled %}
-        <h4>BinGraph
-            <p><a class="btn btn-secondary btn-sm" href="{% url "on_demand" "bingraph" analysis.info.id "static" analysis.target.file.sha256 %}" role="button">Generate Bingraph</a></p>
-        </h4>
-        {% endif %}
-    {% endif %}
-    {% if analysis.static.flare_capa %}
-    <p><a class="btn btn-secondary btn-sm" data-toggle="collapse" href="#flare_capa" role="button" aria-expanded="false" aria-controls="flare_capa">FLARE CAPA</a></p>
-        <div class="collapse" id="flare_capa">
-            <div class="card card-body">
-            <!--Inspired by @snemes trick, code placed in web/views/templateatgs/analysis_tags.py-->
-            {% if analysis.static.flare_capa.CAPABILITY %}
-                {{analysis.static.flare_capa|flare_capa_capability}}
-            {% endif %}
-
-            {% if analysis.static.flare_capa.ATTCK %}
-                {{analysis.static.flare_capa|flare_capa_attck}}
-            {% endif %}
-
-            {% if analysis.static.flare_capa.MBC %}
-                {{analysis.static.flare_capa|flare_capa_mbc}}
-            {% endif %}
-            </div>
-        </div>
-    </br>
-    {% else %}
-        <p><a class="btn btn-secondary  btn-sm" href="{% url "on_demand" "flare_capa" analysis.info.id "static" analysis.target.file.sha256 %}" role="button">Generate CAPA</a></p>
-    {% endif %}
-    {% if analysis.static and analysis.static.pe %}
-            <div>
-                <h4>PE Information</h4>
-                <div id="pe_information">
-                    <table class="table table-striped table-bordered" style="table-layout: fixed;">
-                        {% if analysis.static.pe.imagebase %} <th style="width: 15%;">Image Base</th> {% endif %}
-                        {% if analysis.static.pe.entrypoint %} <th style="width: 15%;">Entry Point</th> {% endif %}
-                        {% if analysis.static.pe.reported_checksum %} <th style="width: 15%;">Reported Checksum</th> {% endif %}
-                        {% if analysis.static.pe.actual_checksum %} <th style="width: 15%;">Actual Checksum</th> {% endif %}
-                        {% if analysis.static.pe.osversion %} <th style="width: 15%;">Minimum OS Version</th> {% endif %}
-                        {% if analysis.static.pe.pdbpath %} <th style="width: 15%;">PDB Path</th> {% endif %}
-                        {% if analysis.static.pe.timestamp %} <th style="width: 15%;">Compile Time</th> {% endif %}
-                        {% if analysis.static.pe.imphash %} <th style="width: 15%;">Import Hash</th> {% endif %}
-                        {% if analysis.static.pe.icon %} <th style="width: 15%;">Icon</th>{% endif %}
-                        {% if analysis.static.pe.icon_hash %} <th style="width: 15%;">Icon Exact Hash</th> {% endif %}
-                        {% if analysis.static.pe.icon_fuzzy %} <th style="width: 15%;">Icon Similarity Hash</th> {% endif %}
-                        {% if analysis.static.pe.exported_dll_name %} <th style="width: 15%;">Exported DLL Name</th> {% endif %}
-
-                        <tr>
-                            {% if analysis.static.pe.imagebase %}
-                            <td>{{analysis.static.pe.imagebase}}</td>
-                            {% endif %}
-                            {% if analysis.static.pe.entrypoint %}
-                            <td>{{analysis.static.pe.entrypoint}}</td>
-                            {% endif %}
-                            {% if analysis.static.pe.reported_checksum %}
-                            <td>{{analysis.static.pe.reported_checksum}}</td>
-                            {% endif %}
-                            {% if analysis.static.pe.actual_checksum %}
-                            <td>{{analysis.static.pe.actual_checksum}}</td>
-                            {% endif %}
-                            {% if analysis.static.pe.osversion %}
-                            <td>{{analysis.static.pe.osversion}}</td>
-                            {% endif %}
-                            {% if analysis.static.pe.pdbpath %}
-                            <td>{{analysis.static.pe.pdbpath}}</td>
-                            {% endif %}
-                            {% if analysis.static.pe.timestamp %}
-                            <td>{{analysis.static.pe.timestamp}}</td>
-                            {% endif %}
-                            {% if analysis.static.pe.imphash %}
-                            <td>{{analysis.static.pe.imphash}}</td>
-                            {% endif %}
-                            {% if analysis.static.pe.icon %}
-                            <td><img src="data:image/jpeg;base64,{{analysis.static.pe.icon}}" /></td>
-                            {% endif %}
-                            {% if analysis.static.pe.icon_hash %}
-                            <td>{{analysis.static.pe.icon_hash}}</td>
-                            {% endif %}
-                            {% if analysis.static.pe.icon_fuzzy %}
-                            <td>{{analysis.static.pe.icon_fuzzy}}</td>
-                            {% endif %}
-                            {% if analysis.static.pe.exported_dll_name %}
-                            <td>{{analysis.static.pe.exported_dll_name}}</td>
-                            {% endif %}
-                        </tr>
-                     </table>
-                </div>
-            </div>
-            <hr />
-        {% if analysis.static.pe.versioninfo %}
-            <div>
-                <h4>Version Infos</h4>
-                <div id="pe_versioninfo">
-                    <table class="table table-striped table-bordered">
-                        <colgroup>
-                            <col width="150" />
-                            <col width="*" />
-                        </colgroup>
-                        {% for info in analysis.static.pe.versioninfo %}
-                        {% if info.name %}
-                            <tr>
-                                <th>{{info.name}}</th>
-                                <td><span class="mono">{{info.value}}</span></td>
-                            </tr>
-                        {% endif %}
-                        {% endfor %}
-                    </table>
-                </div>
-            </div>
-            <hr />
-        {% endif %}
-        {% if analysis.static.pe.peid_signatures%}
-        <div>
-            <h4>PEiD Signatures</h4>
-            <div id="peid_signatures">
-                <table class="table table-striped table-bordered">
-                {% for sig in analysis.static.pe.peid_signatures %}
-                    <tr><td>{{sig}}</td></tr>
-                {% endfor %}
-                </table>
-            </div>
-        </div>
-        <hr />
-        {% endif %}
-        {% if analysis.static.pe.digital_signers %}
-        <div>
-            <h4>Digital Signers</h4>
-            <div id="digital_signers">
-                {% for cert in analysis.static.pe.digital_signers %}
-                <table class="table table-striped table-bordered">
-                    <colgroup>
-                        <col width="250" />
-                        <col width="*" />
-                    </colgroup>
-                    <tr>
-                        <th>Certificate Common Name</th>
-                        <td>{{cert.subject_commonName}}</td>
-                    </tr>
-                    <tr>
-                        <th>Subject Organization Name</th>
-                        <td>{{cert.subject_commonName}}</td>
-                    </tr>
-                    <tr>
-                        <th>Subject Organization Unit Name</th>
-                        <td>{{cert.subject_organizationalUnitName}}</td>
-                    </tr>
-                    <tr>
-                        <th>Subject Street Address</th>
-                        <td>{{cert.subject_streetAddress}}</td>
-                    </tr>
-                    <tr>
-                        <th>Subject Locality</th>
-                        <td>{{cert.subject_localityName}}</td>
-                    </tr>
-                    <tr>
-                        <th>Subject State or Province</th>
-                        <td>{{cert.subject_stateOrProvinceName}}</td>
-                    </tr>
-                    <tr>
-                        <th>Subject Postal Code</th>
-                        <td>{{cert.subject_postalCode}}</td>
-                    </tr>
-                    <tr>
-                        <th>Subject Country</th>
-                        <td>{{cert.subject_countryName}}</td>
-                    </tr>
-                    <tr>
-                        <th>Issuer Common Name</th>
-                        <td>{{cert.issuer_commonName}}</td>
-                    </tr>
-                    <tr>
-                        <th>Issuer Organization Name</th>
-                        <td>{{cert.issuer_organizationName}}</td>
-                    </tr>
-                    <tr>
-                        <th>Issuer Organization Unit Name</th>
-                        <td>{{cert.issuer_organizationalUnitName}}</td>
-                    </tr>
-                    <tr>
-                        <th>Issuer Locality</th>
-                        <td>{{cert.issuer_localityName}}</td>
-                    </tr>
-                    <tr>
-                        <th>Issuer State or Province</th>
-                        <td>{{cert.issuer_stateOrProvinceName}}</td>
-                    </tr>
-                    <tr>
-                        <th>Issuer Country</th>
-                        <td>{{cert.issuer_countryName}}</td>
-                    </tr>
-                    <tr>
-                        <th>Serial Number</th>
-                        <td>{{cert.serial_number}}</td>
-                    </tr>
-                    <tr>
-                        <th>SHA256 Fingerprint</th>
-                        <td>{{cert.sha256_fingerprint}}</td>
-                    </tr>
-                    <tr>
-                        <th>SHA1 Fingerprint</th>
-                        <td>{{cert.sha1_fingerprint}}</td>
-                    </tr>
-                    <tr>
-                        <th>MD5 Fingerprint</th>
-                        <td>{{cert.md5_fingerprint}}</td>
-                    </tr>
-                    <tr>
-                        <th>Not valid before</th>
-                        <td>{{cert.not_before}}</td>
-                    </tr>
-                    <tr>
-                        <th>Not valid after</th>
-                        <td>{{cert.not_after}}</td>
-                    </tr>
-                {% endfor %}
-                </table>
-            </div>
-        </div>
-        {% endif %}
-        {% if analysis.static.pe.guest_signers and analysis.static.pe.guest_signers.aux_signers %}
-        <div>
-            <h4>Microsoft Certificate Validation (Sign Tool)</h4>
-            <div id="digital_signers_validation">
-                <table class="table table-striped table-bordered">
-                    <tr>
-                        <th width="20%">SHA1</th>
-                        <th width="20%">Timestamp</th>
-                        <th width="5%">Valid</th>
-                        <th width="55%">Error</th>
-                    </tr>
-                    <tr>
-                        <td>{{analysis.static.pe.guest_signers.aux_sha1}}</td>
-                        <td>{{analysis.static.pe.guest_signers.aux_timestamp}}</td>
-                        {% if analysis.static.pe.guest_signers.aux_valid %}
-                        <td><center><span class="badge badge-success">Yes</span></center></td>
-                        <td>None</td>
-                        {% else %}
-                        <td><center><span class="badge badge-danger">No</span></center></td>
-                        <td>{{analysis.static.pe.guest_signers.aux_error_desc}}</td>
-                        {% endif %}
-                    </tr>
-                </table>
-                {% for signer in analysis.static.pe.guest_signers.aux_signers %}
-                <table class="table table-striped table-bordered">
-                    <colgroup>
-                        <col style="width:15%">
-                        <col style="width:85%">
-                    </colgroup>
-                    <tbody>
-                        <tr>
-                            <td><b>Chain</b></td>
-                            <td>{{signer.name}}</td>
-                        </tr>
-                        <tr>
-                            <td><b>Issued to</b></td>
-                            <td>{{signer|getkey:"Issued to"}}</td>
-                        </tr>
-                        <tr>
-                            <td><b>Issued by</b></td>
-                            <td>{{signer|getkey:"Issued by"}}</td>
-                        </tr>
-                        <tr>
-                            <td><b>Expires</b></td>
-                            <td>{{signer.Expires}}</td>
-                        </tr>
-                        <tr>
-                            <td><b>SHA1 Hash</b></td>
-                            <td>{{signer|getkey:"SHA1 hash"}}</td>
-                        </tr>
-                    </tbody>
-                 </table>
-                 {% endfor %}
-            </div>
-        </div>
-        <hr />
-        {% endif %}
-        {% if analysis.static.pe.sections %}
-            <div>
-                <h4>Sections</h4>
-                <div id="pe_sections">
-                    <table class="table table-striped table-bordered">
-                        <tr>
-                            <th>Name</th>
-                            <th>RAW Address</th>
-                            <th>Virtual Address</th>
-                            <th>Virtual Size</th>
-                            <th>Size of Raw Data</th>
-                            <th>Characteristics</th>
-                            <th>Entropy</th>
-                        </tr>
-                        {% for section in analysis.static.pe.sections %}
-                            <tr>
-                                <td>{{section.name}}</td>
-                                <td>{{section.raw_address}}</td>
-                                <td>{{section.virtual_address}}</td>
-                                <td>{{section.virtual_size}}</td>
-                                <td>{{section.size_of_data}}</td>
-                                <td>{{section.characteristics}}</td>
-                                <td>{{section.entropy}}</td>
-                            </tr>
-                        {% endfor %}
-                </table>
-            </div>
-        </div>
-        <hr />
-        {% endif %}
-
-        {% if analysis.static.pe.overlay %}
-        <div>
-            <h4>Overlay</h4>
-            <div id="pe_overlay">
-                <table class="table table-striped table-bordered">
-                    <colgroup>
-                        <col width="150" />
-                        <col width="*" />
-                    </colgroup>
-                    <tr>
-                        <td><strong>Offset</strong></td>
-                        <td>{{analysis.static.pe.overlay.offset}}</td>
-                    </tr>
-                    <tr>
-                        <td><strong>Size</strong></td>
-                        <td>{{analysis.static.pe.overlay.size}}</td>
-                    </tr>
-                    </table>
-                </div>
-            </div>
-            <hr />
-        {% endif %}
-
-        {% if analysis.static.pe.resources %}
-        <div>
-            <h4>Resources</h4>
-            <div id="pe_resources">
-                <table class="table table-striped table-bordered">
-                    <tr>
-                        <th>Name</th>
-                        <th>Offset</th>
-                        <th>Size</th>
-                        <th>Language</th>
-                        <th>Sub-language</th>
-                        <th>Entropy</th>
-                        <th>File type</th>
-                    </tr>
-                    {% for section in analysis.static.pe.resources %}
-                        <tr>
-                            <td>{{section.name}}</td>
-                            <td>{{section.offset}}</td>
-                            <td>{{section.size}}</td>
-                            <td>{{section.language}}</td>
-                            <td>{{section.sublanguage}}</td>
-                            <td>{{section.entropy}}</td>
-                            <td>{{section.filetype}}</td>
-                        </tr>
-                    {% endfor %}
-                </table>
-            </div>
-        </div>
-        <hr />
-        {% endif %}
-
-        {% if analysis.static.pe.imports %}
-        <div id="accordion">
-            {% for library in analysis.static.pe.imports %}
-            <div class="card">
-                <div class="card-header" id="h_{{library.dll}}">
-                    <h5 class="mb-0">
-                    <button class="btn btn-link" data-toggle="collapse" href="#{{library.dll}}" data-target="#{{library.dll}}" aria-expanded="false" aria-controls="{{library.dll}}">
-                        <strong>Library {{library.dll}}</strong>:</a>
-                    </button>
-                    </h5>
-                </div>
-
-                <div id="{{library.dll}}" class="collapse show" aria-labelledby="h_{{library.dll}}" data-parent="#accordion">
-                    <div class="card-body">
-                        {% for function in library.imports %}
-                        <div>&bull; <span class="mono">{{function.address}} <a href="http://social.msdn.microsoft.com/Search/en-US/windows/desktop?query={{function.name}}">{{function.name}}</a></span></div>
-                        {% endfor %}
-                    </div>
-                </div>
-            </div>
-            {% endfor %}
-        </div>
-        {% endif %}
-        <hr />
-
-        {% if analysis.static.pe.exports %}
-            <div>
-                <h4>Exports</h4>
-                <div id="pe_exports">
-                    <table class="table table-striped table-bordered table-dark">
-                        <tr>
-                            <th>Ordinal</th>
-                            <th>Address</th>
-                            <th>Name</th>
-                        </tr>
-                        {% for export in analysis.static.pe.exports %}
-                            <tr>
-                                <td>{{export.ordinal}}</td>
-                                <td>{{export.address}}</td>
-                                <td>{{export.name}}</td>
-                            </tr>
-                        {% endfor %}
-                    </table>
-                </div>
-            </div>
-        {% endif %}
-    {% else %}
-        Nothing to display.
-    {% endif %}
-</section>
-
-
diff --git a/web/templates/analysis/static/_script.html b/web/templates/analysis/static/_script.html
deleted file mode 100644
index 12bebbafcd4..00000000000
--- a/web/templates/analysis/static/_script.html
+++ /dev/null
@@ -1,7 +0,0 @@
-<section id="static_strings">
-    <div class="card" style="font-family: monospace;">
-        {% for string in analysis.strings %}
-            <div>{{string}}</div>
-        {% endfor %}
-    </div>
-</section>
diff --git a/web/templates/analysis/static/_strings.html b/web/templates/analysis/static/_strings.html
deleted file mode 100644
index 12bebbafcd4..00000000000
--- a/web/templates/analysis/static/_strings.html
+++ /dev/null
@@ -1,7 +0,0 @@
-<section id="static_strings">
-    <div class="card" style="font-family: monospace;">
-        {% for string in analysis.strings %}
-            <div>{{string}}</div>
-        {% endfor %}
-    </div>
-</section>
diff --git a/web/templates/analysis/static/_url.html b/web/templates/analysis/static/_url.html
deleted file mode 100644
index fbe1d736430..00000000000
--- a/web/templates/analysis/static/_url.html
+++ /dev/null
@@ -1,41 +0,0 @@
-<section id="static_url">
-  {% if analysis.static.url.bitly %}
-  <div>
-    <div id="bitly_unshortener">
-      <h4>Bitly Unshortener</h4>
-      <div class="card ">
-        <table class="table table-striped table-bordered" style="table-layout: fixed;">
-          <tbody>
-            <tr>
-              <th style="width: 10%">Target URL</th>
-              <td style="word-wrap: break-word;">{{analysis.target.url}}</td>
-            </tr>
-            <tr>
-              <th style="width: 10%">Unshortened URL</th>
-              <td style="word-wrap: break-word;">{{analysis.static.url.bitly.long_url}}</td>
-            </tr>
-            <tr>
-              <th style="width: 10%">Amount of Clicks</th>
-              <td style="word-wrap: break-word;">{{analysis.static.url.bitly.user_clicks}}</td>
-            </tr>
-            <tr>
-              <th style="width: 10%">Creation Date</th>
-              <td style="word-wrap: break-word;">{{analysis.static.url.bitly.created_at}}</td>
-            </tr>
-            <tr>
-              <th style="width: 10%">Created By</th>
-              <td style="word-wrap: break-word;">{{analysis.static.url.bitly.created_by.display_name}}</td>
-            </tr>
-          </tbody>
-        </table>
-      </div>
-    </div>
-  </div>
-  {% endif %}
-  <div>
-    <div id="whois_information">
-      <h4>WHOIS Information</h4>
-      <pre>{{ analysis.static.url.whois }}</pre>
-    </div>
-  </div>
-</section>
diff --git a/web/templates/analysis/static/index.html b/web/templates/analysis/static/index.html
deleted file mode 100644
index 45a46d0602b..00000000000
--- a/web/templates/analysis/static/index.html
+++ /dev/null
@@ -1,61 +0,0 @@
-{% load generic_tags %}
-<div class="tabbable tabs">
-    <ul class="nav nav-tabs" style="margin-bottom: 0;">
-        {% if analysis.info.category in "file,static" %}
-            <li class="nav-item active"><a class="nav-link" href="#static_analysis_tab" data-toggle="tab">Static Analysis</a></li>
-        {% if analysis.static and "PE32" in analysis.target.file.type and "Mono" in analysis.target.file.type %}
-            <li class="nav-item"><a class="nav-link" href="#static_dotnet_tab" data-toggle="tab">.NET Static Analysis</a></li>
-        {% endif %}
-            <li class="nav-item"><a class="nav-link" href="#static_strings_tab" data-toggle="tab">Strings</a></li>
-        {% endif %}
-        {% if analysis.info.category == "url" %}
-            <li class="nav-item active"><a class="nav-link" href="#static_url_tab" data-toggle="tab">URL Analysis</a></li>
-        {% endif %}
-        {% if config.virustotal %}
-            <li class="nav-item"><a class="nav-link" href="#static_antivirus_tab" data-toggle="tab">VirusTotal</a></li>
-        {% endif %}
-    </ul>
-    <div class="tab-content">
-        {% if analysis.info.category in "file,static" %}
-        <div class="tab-pane fade show active" id="static_analysis_tab">
-            {% if "PE32" in analysis.target.file.type or "MS-DOS executable" in analysis.target.file.type %}
-                {% include "analysis/static/_pe32.html" %}
-            {% elif analysis.info.package == "pdf" %}
-                {% include "analysis/static/_pdf.html" %}
-            {% elif analysis.target.file.type == "XML document text" or analysis.info.package == "wsf" or analysis.info.package == "hta" %}
-                {% include "analysis/static/_script.html" %}
-            {% elif analysis.info.package == "vbs" or analysis.info.package == "js" %}
-                {% include "analysis/static/_script.html" %}
-            {% elif analysis.info.package == "doc" or analysis.info.package == "ppt" or analysis.info.package == "xls" or analysis.info.package == "pub" %}
-                {% include "analysis/static/_office.html" %}
-            {% elif "Java Jar" in analysis.target.file.type or analysis.target.file.name|endswith:".jar" %}
-                {% include "analysis/static/_java.html" %}
-            {% elif "MS Windows shortcut" in analysis.target.file.type or analysis.target.file.name|endswith:".lnk" %}
-                {% include "analysis/static/_lnk.html" %}
-            {% else %}
-                No static analysis available.
-            {% endif %}
-        </div>
-        {% endif %}
-        {% if analysis.info.category in "file,static" and analysis.static and "PE32" in analysis.target.file.type and "Mono" in analysis.target.file.type %}
-            <div class="tab-pane fade show" id="static_dotnet_tab">
-                {% include "analysis/static/_dotnet.html" %}
-            </div>
-        {% endif %}
-        {% if analysis.info.category in "file,static" %}
-            <div class="tab-pane fade show" id="static_strings_tab">
-                {% include "analysis/static/_strings.html" %}
-            </div>
-        {% endif %}
-        {% if analysis.info.category == "url" %}
-            <div class="tab-pane fade show active" id="static_url_tab">
-                {% include "analysis/static/_url.html" %}
-            </div>
-        {% endif %}
-        {% if config.virustotal %}
-            <div class="tab-pane fade show" id="static_antivirus_tab">
-                {% include "analysis/static/_antivirus.html" %}
-            </div>
-        {% endif %}
-    </div>
-</div>
diff --git a/web/templates/analysis/statistics/index.html b/web/templates/analysis/statistics/index.html
deleted file mode 100644
index 86c5cebdf9a..00000000000
--- a/web/templates/analysis/statistics/index.html
+++ /dev/null
@@ -1,50 +0,0 @@
-{% if analysis.statistics %}
-{% load analysis_tags %}
-    <div class="row">
-    <div class="well well-small col-md-6">
-      <h4>Processing&emsp;( {{ analysis.statistics.processing|stats_total }} seconds )</h4>
-        <ul class="list-group">
-            {% for stat in analysis.statistics.processing|dictsortreversed:"time" %}
-            {% if stat.time %}
-            <li class="list-group-item">
-                <span class="badge.badge-pill">{{stat.time}}</span>
-                {{stat.name}}
-            </li>
-            {% endif %}
-            {% endfor %}
-        </ul>
-    </div>
-    </div>
-    <div class="row">
-    <div class="well well-small col-md-6">
-        <h4>Signatures&emsp;( {{ analysis.statistics.signatures|stats_total }} seconds )</h4>
-        <ul class="list-group">
-            {% for stat in analysis.statistics.signatures|dictsortreversed:"time" %}
-            {% if stat.time %}
-            <li class="list-group-item">
-                <span class="badge.badge-pill">{{stat.time}}</span>
-                {{stat.name}}
-            </li>
-            {% endif %}
-            {% endfor %}
-        </ul>
-    </div>
-    </div>
-    <div class="row">
-    <div class="well well-small col-md-6">
-        <h4>Reporting&emsp;( {{ analysis.statistics.reporting|stats_total }} seconds )</h4>
-        <ul class="list-group">
-            {% for stat in analysis.statistics.reporting|dictsortreversed:"time" %}
-            {% if stat.time %}
-            <li class="list-group-item">
-                <span class="badge.badge-pill">{{stat.time}}</span>
-                {{stat.name}}
-            </li>
-            {% endif %}
-            {% endfor %}
-        </ul>
-    </div>
-    </div>
-{% else %}
-    <div class="alert alert-primary">No statistics found.</div>
-{% endif %}
diff --git a/web/templates/analysis/strace/_api_call.html b/web/templates/analysis/strace/_api_call.html
new file mode 100644
index 00000000000..56f75cfb943
--- /dev/null
+++ b/web/templates/analysis/strace/_api_call.html
@@ -0,0 +1,17 @@
+<td>{{call.timestamp}}</td>
+<td><strong>{{call.api}}</strong></td>
+<td style="word-wrap: break-word;">
+    {% for argument in call.arguments %}
+        <span class="gray">{{argument.name}}:</span>
+        <span class="mono">{{argument.value}}</span>
+        <br />
+    {% endfor %}
+</td>
+<!-- <td>
+    {% if call.status %}
+        success
+    {% else %}
+        failed
+    {% endif %}
+</td> -->
+<td style="word-wrap: break-word"><span class="mono">{{call.return}}</span></td>
diff --git a/web/templates/analysis/strace/_chunk.html b/web/templates/analysis/strace/_chunk.html
new file mode 100644
index 00000000000..e99bf95bf85
--- /dev/null
+++ b/web/templates/analysis/strace/_chunk.html
@@ -0,0 +1,18 @@
+<table class="table table-bordered table-responsive-lg" style="table-layout: fixed;">
+    <thead>
+        <tr>
+            <td width="12%"><strong>Timestamp</strong></td>
+            <td width="15%"><strong>Syscall</strong></td>
+            <td width="48%"><strong>Arguments</strong></td>
+            <!-- <td width="12%"><strong>Status</strong></td> -->
+            <td width="13%"><strong>Return Value</strong></td>
+        </tr>
+    </thead>
+    <tbody>
+    {% for call in chunk.calls %}
+        <tr class="{{call.category}}" id="call_{{call.id}}">
+            {% include "analysis/strace/_api_call.html" %}
+        </tr>
+    {% endfor %}
+    </tbody>
+</table>
diff --git a/web/templates/analysis/strace/_processes.html b/web/templates/analysis/strace/_processes.html
new file mode 100644
index 00000000000..d1bab34b29e
--- /dev/null
+++ b/web/templates/analysis/strace/_processes.html
@@ -0,0 +1,221 @@
+{% load analysis_tags %}
+<script type="text/javascript">
+    function paginationbar(pages, page) {
+        if (pages === 0) return "";
+
+        function alert_current_page(i, page) {
+            if (i == page)
+                return " active\"";
+            return "\"";
+        }
+
+        var out = "";
+        out += "<li class=\"page-item" + alert_current_page(1, page) + "><a class=\"page-link\" href=\"#\">1</a></li>";
+
+        if (page - 5 > 5) out += "<li><span>...</span></li>";
+
+        for (i = Math.max(2, page - 5); i <= Math.min(pages - 1, page + 5); i++) {
+            out += "<li class=\"page-item" + alert_current_page(i, page) + "><a class=\"page-link\" href=\"#\">" + i + "</a></li>";
+        }
+
+        if (page + 5 < pages - 1) out += "<li><span>...</span></li>";
+
+        if (pages > 1)
+            out += "<li class=\"page-item" + alert_current_page(pages, page) + "><a class=\"page-link\" href=\"#\">" + pages + "</a></li>";
+        return out;
+    }
+    function load_chunk(pid, pagenum, callback) {
+        $("#process_" + pid + " div.calltable").load("/analysis/chunk/{{id}}/" + pid + "/" + pagenum + "/", function (data, status, xhr) {
+            if (status == "error") {
+                $("#process_" + pid + " div.calltable").html("Error loading data. Please reload the page and if the error persists contact us.");
+            }
+            else {
+                $("#process_" + pid + " ul.pagination").html(paginationbar(parseInt($("#process_" + pid).data("length")), pagenum));
+                $("#process_" + pid + " ul.pagination a").click(function (e) {
+                    var t = $(e.target);
+                    load_chunk(t.parents("#process_" + pid).data("pid"), parseInt(t.text()));
+                });
+                typeof callback === 'function' && callback();
+            }
+        });
+
+        // add pagination if removed
+        $("#top_pagination").removeClass("d-none");
+        $("#bottom_pagination").removeClass("d-none");
+
+        // Reset font sizes
+        $(".badge").css("font-size", "100%");
+
+        // add font increase for current chunk
+        $("#badge_default_" + pid).css("font-size", "125%");
+    }
+    function show_tab(id, callback) {
+        // First, see if tab is already active. If it is, just run the callback
+        if ($('#' + id).hasClass('active')) {
+            typeof callback === 'function' && callback();
+        }
+        // Else, show the tab and run the callback once the tab is shown
+        else {
+            // Wait for tab to be shown
+            $('a[data-toggle="tab"]').on('shown.bs.tab', function (e) {
+                if ($(e.target).attr('href') == '#' + id) {
+                    $('a[data-toggle="tab"]').off('shown.bs.tab');
+                    typeof callback === 'function' && callback();
+                }
+            });
+
+            // Show the tab
+            $('a[href="#' + id + '"]').tab('show');
+        }
+    }
+    function go_to_api_call(pid, call_id) {
+        // Load corresponding chunk
+        pagenum = Math.floor(call_id / 100) + 1;
+        load_chunk(pid, pagenum, function () {
+            // Show behavior tab
+            show_tab('behavior', function () {
+                // Show process tab
+                show_tab('process_' + pid, function () {
+                    // Scroll to call
+                    $('#call_' + call_id).get(0).scrollIntoView(false);
+                });
+            });
+        });
+    }
+    function load_filtered_chunk(pid, category, caller, tid) {
+        // Trim leading and trailing spaces
+        var inputValue = $("#apifilter_" + pid).val().trim(); 
+        // Split input by commas, trim spaces, and join back with commas
+        var apis = inputValue.split(',').map(api => api.trim()).join(','); 
+        var encodedlist = (apis === "") ? encodeURI("!null") : encodeURI(apis);
+
+        $("#process_" + pid + " div.calltable").load("/analysis/filtered/{{id}}/" + pid + "/" + category + "/" + encodedlist + "/" + caller + "/" + tid + "/", function (data, status, xhr) {
+            if (status == "error") {
+                $("#process_" + pid + " div.calltable").html("Error loading data. Please reload the page and if the error persists contact us.");
+            }
+            else {
+                $("#process_" + pid + " div.pagination ul").html(paginationbar(0, 0));
+                $("#process_" + pid + " div.pagination a").click(function (e) {
+                    var t = $(e.target);
+                    load_chunk(t.parents("#process_" + pid).data("pid"), parseInt(t.text()));
+                });
+            }
+        });
+
+        // remove pagination
+        $("#top_pagination").addClass("d-none");
+        $("#bottom_pagination").addClass("d-none");
+
+        // Reset font sizes
+        $(".badge").css("font-size", "100%");
+
+        // add font increase for current chunk
+        $("#badge_" + category + "_" + pid).css("font-size", "125%");
+    }
+</script>
+
+<div class="tabbable">
+    <ul class="nav nav-tabs">
+        <li class="nav-item"><a class="nav-link" href="#search" data-toggle="tab"><span class="fa fa-search"></span> Search</a></li>
+        {% for process in strace.processes %}
+        <li {% if forloop.counter == 1 %} class="nav-item active" {% endif %}><a class="nav-link" href="#process_{{process.process_id}}"
+                data-toggle="tab"><span class="fa fa-cogs"></span>
+                {{process.process_id}}</a></li>
+        {% endfor %}
+    </ul>
+
+    <div class="tab-content">
+        {% include "analysis/behavior/_search.html" %}
+        {% for process in strace.processes %}
+        <div class="tab-pane{% if forloop.counter == 1%} active{% endif %}" id="process_{{process.process_id}}"
+            data-pid="{{process.process_id}}" data-length="{{process.calls|length}}">
+            <div class="alert alert-primary" style="text-align: center;overflow-wrap: break-word;">
+                <b>{{process.process_name}}</b><br>PID: <b>{{process.process_id}}</b>, Parent PID: {{process.parent_id}}
+            </div>
+
+            <div>
+                <div style="text-align: center; position:relative;">
+                    <div>
+                        <div id="currcategory" value="default"></div>
+                        <a id="badge_default_{{process.process_id}}" class="badge badge-primary default fs-1" role="button" style="color:black;">default</a>
+                        <a id="badge_kernel_{{process.process_id}}" class="badge kernel" role="button" style="color:black;">kernel</a>
+                        <a id="badge_fs_{{process.process_id}}" class="badge fs" role="button" style="color:black;">fs</a>
+                        <a id="badge_mm_{{process.process_id}}" class="badge mm" role="button" style="color:black;">mm</a>
+                        <a id="badge_net_{{process.process_id}}" class="badge net" role="button" style="color:black;">net</a>
+                        <a id="badge_ipc_{{process.process_id}}" class="badge ipc" role="button" style="color:black;">ipc</a>
+                        <a id="badge_security_{{process.process_id}}" class="badge security" role="button" style="color:black;">security</a>
+                        <a id="badge_drivers_{{process.process_id}}" class="badge drivers" role="button" style="color:black;">drivers</a>
+                        <a id="badge_io_uring_{{process.process_id}}" class="badge io_uring" role="button" style="color:black;">io_uring</a>
+                        <a id="badge_crypto_{{process.process_id}}" class="badge crypto" role="button" style="color:black;">crypto</a>
+                        <a id="badge_block_{{process.process_id}}" class="badge block" role="button" style="color:black;">block</a>
+                        <a id="badge_all_{{process.process_id}}" class="badge badge-light all" role="button" style="color:black;">all</a>
+                        <div class="form-group" style="display:inline-block; padding-left: 10px">
+                            <div class="input-group">
+                                <label class="sr-only" for="form_search">API Filter</label>
+                                <input type="text" class="form-control rounded-left" id="apifilter_{{process.process_id}}" name="apifilter" size=35 placeholder="API(list) separated by ',' Precede with '!' for exclusion" />
+                                <button class="btn btn-outline-secondary rounded-right" id="search_button_{{process.process_id}}" type="button">
+                                    <i class="fas fa-search"></i>
+                                </button>
+                            </div>
+                        </div>
+                    </div>
+                </div>
+            </div>
+
+            <script type="text/javascript">
+            $(document).ready(function()
+            {
+                $("#badge_default_{{process.process_id}}").click(function() { load_chunk({{process.process_id}}, 1); });
+                $("#badge_kernel_{{process.process_id}}").click(function() { load_filtered_chunk({{process.process_id}}, "kernel", "null", 0); });
+                $("#badge_fs_{{process.process_id}}").click(function() { load_filtered_chunk({{process.process_id}}, "fs", "null", 0); });
+                $("#badge_mm_{{process.process_id}}").click(function() { load_filtered_chunk({{process.process_id}}, "mm", "null", 0); });
+                $("#badge_net_{{process.process_id}}").click(function() { load_filtered_chunk({{process.process_id}}, "net", "null", 0); });
+                $("#badge_ipc_{{process.process_id}}").click(function() { load_filtered_chunk({{process.process_id}}, "ipc", "null", 0); });
+                $("#badge_security_{{process.process_id}}").click(function() { load_filtered_chunk({{process.process_id}}, "security", "null", 0); });
+                $("#badge_crypto_{{process.process_id}}").click(function() { load_filtered_chunk({{process.process_id}}, "crypto", "null", 0); });
+                $("#badge_drivers_{{process.process_id}}").click(function() { load_filtered_chunk({{process.process_id}}, "drivers", "null", 0); });
+                $("#badge_io_uring_{{process.process_id}}").click(function() { load_filtered_chunk({{process.process_id}}, "io_uring", "null", 0); });
+                $("#badge_block_{{process.process_id}}").click(function() { load_filtered_chunk({{process.process_id}}, "block", "null", 0); });
+                $("#badge_all_{{process.process_id}}").click(function() { load_filtered_chunk({{process.process_id}}, "all", "null", 0); });
+                $('.tab-content').on('click', '.call-link', function (event) {
+                    cid = $(this).attr('data-cid');
+                    pid = $(this).attr('data-pid');
+                    go_to_api_call(+pid, +cid);
+
+                    event.preventDefault();
+                });
+                
+                // Filter on enter key in input field
+                $("#apifilter_{{process.process_id}}").keypress(function(e) {
+                    if (e.which == 13) {
+                        load_filtered_chunk({{process.process_id}}, "all", "null", 0);
+                    }
+                })
+
+                // Filter on search button click
+                $("#search_button_{{process.process_id}}").click(function() {
+                    var pid = {{process.process_id}};
+                    var apiFilterValue = $("#apifilter_" + pid).val();
+                    load_filtered_chunk(pid, "all", "null", 0);
+                })
+            });
+            </script>
+
+            <nav id="top_pagination" aria-label="Page navigation">
+                <ul class="pagination justify-content-center">
+                </ul>
+            </nav>
+
+            <nav aria-label="Page navigation">
+                <div class="calltable"></div>
+                <ul id="bottom_pagination" class="pagination justify-content-center pagination_{{process.process_id}}">
+                </ul>
+            </nav>
+
+            <script type="text/javascript">
+                load_chunk({{ process.process_id }}, 1);
+            </script>
+        </div>
+        {% endfor %}
+    </div>
+</div>
diff --git a/web/templates/analysis/strace/_search.html b/web/templates/analysis/strace/_search.html
new file mode 100644
index 00000000000..3eb9fd379bc
--- /dev/null
+++ b/web/templates/analysis/strace/_search.html
@@ -0,0 +1,29 @@
+<script type="text/javascript">
+$(function () {
+	$('#search button[type=submit]').on('click', function(event) {
+		action = $('form#search').attr('action');
+		data = $('form#search').serialize();
+
+		$.post(action, data, function (data) {
+			$('#search-results').html(data);
+		});
+
+		event.preventDefault();
+	});
+});
+</script>
+{% if id %}
+	<div class="tab-pane" id="search">
+		<form id='search' class="form-inline" role="form" action="{% url "search_strace" id %}">
+			{% csrf_token %}
+			<div class="form-group">
+				<label class="sr-only" for="form_search">Search term</label>
+				<input type="text" class="form-control" id="form_search" name="search" size=50 placeholder="Search term" />
+			</div>
+			<button type="submit" class="btn btn-secondary">Search</button>
+		</form>
+
+		<div id="search-results">
+		</div>
+	</div>
+{% endif %}
diff --git a/web/templates/analysis/strace/_syscall.html b/web/templates/analysis/strace/_syscall.html
new file mode 100644
index 00000000000..21d04689ca2
--- /dev/null
+++ b/web/templates/analysis/strace/_syscall.html
@@ -0,0 +1,11 @@
+<td>{{process.time}}</td>
+<td>{{process.pid}}</td>
+<td><strong>{{process.syscall}}</strong></td>
+<td style="word-wrap: break-word;">
+    {% for argument in process.arguments %}
+        <span class="gray">{{argument.name}}:</span>
+        <span class="mono">{{argument.value}}</span>
+        <br />
+    {% endfor %}
+</td>
+<td style="word-wrap: break-word"><span class="mono">{{process.retval}}</span></td>
diff --git a/web/templates/analysis/strace/_tree.html b/web/templates/analysis/strace/_tree.html
new file mode 100644
index 00000000000..c8dfeac984e
--- /dev/null
+++ b/web/templates/analysis/strace/_tree.html
@@ -0,0 +1,19 @@
+{% load generic_tags %}
+
+<h4>Process Tree</h4>
+<ul>
+{% for process in strace.processtree|proctreetolist %}
+    {% if process.startchildren %}
+      <ul>
+    {% elif process.endchildren %}
+      </ul>
+    {% else %}
+      <li>
+    <strong><a href="javascript:show_tab('process_{{process.pid}}');">{{process.pid}}</a></strong>
+      {% if process.name %}
+        <i>{{process.name}}</i>
+      {% endif %}
+     </li>
+    {% endif %}
+{% endfor %}
+</ul>
diff --git a/web/templates/analysis/strace/index.html b/web/templates/analysis/strace/index.html
new file mode 100755
index 00000000000..07f8a28d8da
--- /dev/null
+++ b/web/templates/analysis/strace/index.html
@@ -0,0 +1,7 @@
+{% if strace %}
+    {% include "analysis/strace/_tree.html" %}
+    <hr />
+    {% include "analysis/strace/_processes.html" %}
+{% else %}
+    <div class="alert alert-primary"><b>Sorry!</b> No strace.</div>
+{% endif %}
diff --git a/web/templates/analysis/tracee/index.html b/web/templates/analysis/tracee/index.html
new file mode 100644
index 00000000000..96574b7562f
--- /dev/null
+++ b/web/templates/analysis/tracee/index.html
@@ -0,0 +1,342 @@
+<div id="tracee">
+    {% if tracee %}
+    <script src="/static/js/pako_inflate.min.js" crossorigin="anonymous" referrerpolicy="no-referrer"></script>
+    <script src="/static/js/datatables.min.js" crossorigin="anonymous" referrerpolicy="no-referrer"></script>
+    <link href="/static/css/datatables.min.css" rel="stylesheet" />
+
+    <script>
+        async function tracee() {
+            function base64ToArrayBuffer(base64) {
+                var binaryString = atob(base64);
+                var bytes = new Uint8Array(binaryString.length);
+                for (var i = 0; i < binaryString.length; i++) {
+                    bytes[i] = binaryString.charCodeAt(i);
+                }
+                return bytes.buffer;
+            }
+
+            function SaferHTML(templateData) { // Mozilla Hacks
+                var s = templateData[0];
+                for (var i = 1; i < arguments.length; i++) {
+                    var arg = String(arguments[i]);
+
+                    // Escape special characters in the substitution.
+                    s += arg.replace(/&/g, "&amp;")
+                        .replace(/</g, "&lt;")
+                        .replace(/>/g, "&gt;");
+
+                    // Don't escape special characters in the template.
+                    s += templateData[i];
+                }
+                return s;
+            }
+
+            let dt = null;
+
+            const shownProcs = { 0: true };
+
+            // extract data
+            const rawContent = `{{ tracee.rawData }}`;
+            const inflated = pako.inflate(base64ToArrayBuffer(rawContent));
+            const traceeData = JSON.parse(new TextDecoder().decode(inflated));
+
+            // proctree
+            let procTreeStyle = "";
+
+            function buildProcTree(currentTree) {
+                const li = document.createElement("li");
+                let liInnerHtml = ``;
+
+                if (!currentTree.details.desc) currentTree.details.desc = "(unknown)"
+
+                let procDescription = currentTree.details.desc ? currentTree.details.desc.toString() : "Unknown";
+                if (procDescription.length > 512) procDescription = procDescription.substring(0, 512) + `... <details><summary>Full Cmdline</summary><div>${currentTree.details.desc.toString()}</div></details>`;
+
+                if (currentTree.details.desc.toString().includes("tracee-health-check-1903ae") || currentTree.details.desc.toString().includes("PARENT")) {
+                    liInnerHtml += `<label style="display: none;"><input type="checkbox" id="tracee-${currentTree.pid}" /> ${currentTree.pid} - ${procDescription}</label>`;
+                }
+                else {
+                    shownProcs[currentTree.pid] = true;
+                    liInnerHtml += `<label><input type="checkbox" id="tracee-${currentTree.pid}" checked /> ${currentTree.pid} - ${procDescription}</label>`;
+                }
+
+                const childIds = Object.keys(currentTree.children);
+                if (childIds.length > 0) liInnerHtml += "<ul>";
+                for (const childId of childIds) {
+                    liInnerHtml += buildProcTree(currentTree.children[childId]);
+                }
+                liInnerHtml += "</ul>";
+                li.innerHTML = liInnerHtml;
+
+                return li.outerHTML;
+            }
+
+            const htmlTree = buildProcTree(traceeData.metadata.proctree);
+            document.querySelector("#tracee-procTree").innerHTML = htmlTree;
+            document.querySelector("#tracee-procTree").innerHTML += `<label><input type="checkbox" id="tracee-0" checked /> Show all events, including those outside the known process tree (may be important)</label>`
+
+            document.querySelectorAll(`#tracee-procTree input[type=checkbox]`).forEach(el => {
+                el.addEventListener("change", () => {
+                    const pid = el.getAttribute("id").replace("tracee-", "");
+                    if (el.checked) {
+                        shownProcs[pid] = true;
+                    }
+                    else {
+                        shownProcs[pid] = false;
+                    }
+
+                    dt.draw();
+
+                    console.log(shownProcs);
+                });
+            });
+
+            console.log(traceeData);
+
+            const preparedTraceeData = [];
+
+            const SIGNATURISED = [
+                "stdio_over_socket", "k8s_api_connection", "aslr_inspection", "proc_mem_code_injection", "docker_abuse", "scheduled_task_mod", "ld_preload", "cgroup_notify_on_release",
+                "default_loader_mod", "sudoers_modification", "sched_debug_recon", "system_request_key_mod", "cgroup_release_agent", "rcd_modification", "core_pattern_modification",
+                "proc_kcore_read", "proc_mem_access", "hidden_file_created", "anti_debugging", "ptrace_code_injection", "process_vm_write_inject", "disk_mount", "dynamic_code_loading",
+                "fileless_execution", "illegitimate_shell", "kernel_module_loading", "k8s_cert_theft", "proc_fops_hooking", "syscall_hooking", "dropped_executable", "sched_process_exec",
+
+                "security_inode_unlink", "security_socket_connect", "security_socket_accept", "security_socket_bind", "security_bpf_prog", "security_sb_mount", "net_packet_icmp", "net_packet_icmpv6", "net_packet_dns_request",
+                "net_packet_dns_response", "net_packet_http_request", "net_packet_http_response", "process_vm_readv", "process_vm_writev", "finit_module", "memfd_create"
+            ];
+
+            const DANGEROUS = ["stdio_over_socket","k8s_api_connection","aslr_inspection","proc_mem_code_injection","docker_abuse","scheduled_task_mod","ld_preload","cgroup_notify_on_release",
+                "default_loader_mod","sudoers_modification","sched_debug_recon","system_request_key_mod","cgroup_release_agent","rcd_modification","core_pattern_modification","proc_kcore_read",
+                "proc_mem_access","hidden_file_created","anti_debugging","ptrace_code_injection","process_vm_write_inject","disk_mount","dynamic_code_loading","fileless_execution",
+                "illegitimate_shell","kernel_module_loading","k8s_cert_theft","proc_fops_hooking","syscall_hooking","dropped_executable",
+                
+                "finit_module","security_bpf_prog", "hidden_kernel_module", "hooked_syscall", "kallsysm_lookup_name", "mem_prot_alert", "security_socket_bind", "security_socket_accept"
+            ];
+
+            const EXTRAS_DATA = {
+                finit_module: "A kernel module was loaded. Introduction of malicious kernel modules can introduce significant security threats deep into the system. You may download the kernel module under 'Dropped Files'.",
+                security_bpf_prog: `The kernel generated and returned a file descriptor for BPF programs. Most software does not use this feature,
+and its usage could be suspicious as it can give visibility into low-level system information and enable functions like password stealing or network traffic monitoring.
+<br><b>You can download the eBPF bytecode for analysis in "Dropped Files".</b>
+<br><pre>bpf-objdump -D -b binary -m bpf bpf_artifact_file</pre>`,
+                hidden_kernel_module: "A loaded hidden kernel module was detected on your system. Strong indication that your system is compromised. It periodically checks for a hidden module.",
+                hooked_syscall: "A program which hooks into and modifies the execution flow of fundamental system calls was detected, which is likely malicious.",
+                kallsysm_lookup_name: "Some programs which want to hook syscalls may lookup this table.",
+                mem_prot_alert: "A memory region protection access change is suspicious for malicious activity. Memory access protection changes might expose writeable memory to execution, or hide its possible execution.",
+            };
+
+            for (const [idx, call] of traceeData.syscalls.entries()) {
+                let date = new Date(call.timestamp / 1000000);
+                let securityEventSeverity = "";
+
+                if (DANGEROUS.includes(call.eventName)) securityEventSeverity = `<div class="alert alert-danger mt-2 p-2"><b>⚠️ Security Event</b></div>`;
+                else if (SIGNATURISED.includes(call.eventName)) securityEventSeverity = `<div class="alert alert-info mt-2 p-2"><b>🔍 Significant Event</b></div>`;
+
+                const row = [
+                    `PID ${call.processId}<br>${date.toLocaleString()} ${date.getMilliseconds()}ms`,
+                    `<b>${call.syscall}</b><br>${call.eventName}<br>${securityEventSeverity}`,
+                    '<div class="tracee-details">',
+                    `${call.returnValue}`,
+                    call.eventName,
+                    [call.cat],
+                    call.processId,
+                ];
+                
+                if (call.args[0] && call.args[0].name == "triggeredBy") {
+                    row[2] += `<b>Triggered By:</b><br>`;
+                    call.args = call.args[0].value.args;
+                }
+
+                // render args
+                let searchArgs = "";
+                for (let i = 0; i < call.args.length; i++) {
+                    const arg = call.args[i];
+                    searchArgs += `${arg.type} ${arg.name} ${JSON.stringify(arg.value)}\n`;
+                    row[2] += SaferHTML`<span class="gray">${arg.type} ${arg.name}:</span><span class="mono">${JSON.stringify(arg.value)}</span><br>`;
+                }
+
+                if (call.metadata) {
+                    row[2] += SaferHTML`<details class="mt-2"><summary class="alert alert-info p-2 bold">Details &amp; MITRE ATTACK</summary><div class="alert alert-secondary p-2">${call.metadata.Description}<br><pre>${JSON.stringify(call.metadata.Properties, null, 2)}</pre></div></details>`;
+                }
+                if (EXTRAS_DATA[call.eventName]) {
+                    row[2] += `<div class="alert alert-info mt-2 p-2">${EXTRAS_DATA[call.eventName]}</div>`;
+                }
+
+                row[2] += '</div>';
+
+                // note for security events
+                if (!row[5][0]) row[5] = []
+
+                if (DANGEROUS.includes(call.eventName)) row[5].push("! ONLY SECURITY EVENTS")
+                if (SIGNATURISED.includes(call.eventName)) row[5].push("! DEFAULT SIGNIFICANT + SECURITY + NETWORK EVENTS")
+
+                if (call.metadata && call.metadata.Properties) {
+                    if (call.metadata.Properties.Technique && call.metadata.Properties.external_id) {
+                        row[4] += ` (${call.metadata.Properties.Technique}, MITRE ${call.metadata.Properties.external_id})`;
+                    }
+                }
+
+                preparedTraceeData.push(row);
+            }
+
+            console.log(preparedTraceeData);
+
+            await new Promise(resolve => {
+                setTimeout(() => { resolve() }, 1000)
+            });
+
+            try {
+                dt = new DataTable('#tracee-mainTable', {
+                    data: preparedTraceeData,
+
+                    scrollCollapse: true,
+                    scrollY: 800,
+                    stateSave: false,
+                    pageLength: 200,
+                    lengthMenu: [
+                        [10, 25, 50, 100, 200, -1],
+                        [10, 25, 50, 100, 200, 'All'],
+                    ],
+
+                    ordering: false,
+                    autoWidth: false,
+                    layout: {
+                        top1: {
+                            searchPanes: {
+                                columns: [5, 4],
+                                preSelect: [
+                                    {
+                                        column: 5,
+                                        rows: ['! DEFAULT SIGNIFICANT + SECURITY + NETWORK EVENTS']
+                                    }
+                                ],
+                                cascadePanes: true,
+                                dtOpts: {
+                                    select: {
+                                        style: 'multi'
+                                    }
+                                }
+                            },
+                        },
+                    },
+                    columnDefs: [
+                        {
+                            target: 0,
+                            data: null,
+                            width: "125px",
+                            render: {
+                                _: function (data, type, row, meta) {
+                                    return row[0];
+                                },
+                            },
+                        },
+                        {
+                            target: 1,
+                            /* min-height: 1200px !important; */
+                            data: null,
+                            width: "150px",
+                            render: {
+                                _: function (data, type, row, meta) {
+                                    return row[1];
+                                },
+                            },
+                        },
+                        {
+                            target: 2,
+                            data: null,
+                            render: {
+                                _: function (data, type, row, meta) {
+                                    return row[2];
+                                },
+                            },
+                        },
+                        {
+                            target: 3,
+                            data: null,
+                            width: "75px",
+                            render: {
+                                _: function (data, type, row, meta) {
+                                    return row[3];
+                                },
+                            },
+                        },
+                        {
+                            target: 4,
+                            visible: false,
+                        },
+                        {
+                            target: 5,
+                            visible: false,
+                            searchPanes: {
+                                orthogonal: '_'
+                            }
+                        },
+                        {
+                            target: 6,
+                            visible: false,
+                        },
+                    ],
+                });
+
+                dt.search.fixed('pid', function (searchStr, data, index) {
+                    return shownProcs[0] ? true : shownProcs[data[6]];
+                });
+
+                dt.searchPanes.resizePanes();
+
+                setTimeout(() => {
+                    dt.columns.adjust().draw();
+                }, 1000);
+            }
+            catch (e) {
+                console.log(e);
+            }
+        }
+    </script>
+
+    <style>
+        #tracee-procTree label {
+            margin: 0;
+        }
+
+        .dt-scroll-body:has(#tracee-mainTable) {
+            overflow-x: hidden;
+        }
+
+        #tracee-mainTable {
+            table-layout: fixed;
+            width: 100% !important;
+            max-width: 100%;
+        }
+
+        .tracee-details, #tracee-mainTable td {
+            white-space: pre-wrap;
+            overflow-wrap: break-word;
+        }
+    </style>
+
+    <div class="d-flex">
+        <div id="tracee-procTree"></div>
+    </div>
+
+    <table id="tracee-mainTable" class="display wrap dark" style="width:100%;">
+        <thead style="width: 100%;">
+            <tr>
+                <td>PID / Timestamp</td>
+                <td>Syscall / Event</td>
+                <td>Args &amp; Details</td>
+                <td>ReturnVal</td>
+                <td>Event Type / Syscall</td>
+                <td>Category</td>
+            </tr>
+        </thead>
+    </table>
+
+    <script>
+        tracee();
+    </script>
+
+    {% else %}
+    <div class="alert alert-primary"><b>Sorry!</b> No tracee.</div>
+    {% endif %}
+</div>
\ No newline at end of file
diff --git a/web/templates/api/index.html b/web/templates/api/index.html
deleted file mode 100644
index b419b6da541..00000000000
--- a/web/templates/api/index.html
+++ /dev/null
@@ -1,730 +0,0 @@
-{% extends "base.html" %}
-{% block content %}
-
-<div class="panel panel-primary">
-  <div class="panel-heading">
-    <h3 class="panel-title">API - <a href=https://capev2.readthedocs.io/en/latest/usage/api.html#current-rest-api>Authentification example</a></h3>
-  </div>
-  {% if config %}
-  <table class="table table-striped table-hover" style="table-layout: fixed;">
-    <thead>
-      <tr>
-        <th width="10%">API Node</th>
-        <th width="10%">Enabled</th>
-        <th width="15%">Rate Limits</th>
-        <th width="55%">Description</th>
-        <th width="10%">Example</th>
-      </tr>
-    </thead>
-    <tbody>
-      <tr>
-        <td>File Create</td>
-        {% if config.filecreate.enabled %}
-        <td><span class="badge badge-success">Yes</span></td>
-        {% else %}
-        <td><span class="badge badge-danger">No</span></td>
-        {% endif %}
-        <td>
-          <ul>
-            <li>RPS: {{ config.filecreate.rps }}</li>
-            <li>RPM: {{ config.filecreate.rpm }}</li>
-          </ul>
-        </td>
-        <td>Submit a file task to be analyzed by CAPE. Return object will be JSON.</td>
-        <td><a class="accordion-toggle" data-toggle="collapse" href="#filecreate" aria-expanded="false" aria-controls="#filecreate">Example</a>
-        </td>
-      </tr>
-      <tr class="collapse" id="filecreate">
-          <td colspan="5">
-            <pre>curl -F file=@/path/to/file -F machine="VM-Name" {{ config.api.url }}/api/tasks/create/file/
-  Note: machine is optional.</pre>
-          </td>
-      </tr>
-      <tr>
-        <td>VirusTotal download and analyze</td>
-        {% if config.vtdl.enabled %}
-        <td><span class="badge badge-success">Yes</span></td>
-        {% else %}
-        <td><span class="badge badge-danger">No</span></td>
-        {% endif %}
-        <td>
-          <ul>
-            <li>RPS: {{ config.vtdl.rps }}</li>
-            <li>RPM: {{ config.vtdl.rpm }}</li>
-          </ul>
-        </td>
-        <td>Download a file from VT for analysis. Return object will be JSON.</td>
-        <td><a class="accordion-toggle" data-toggle="collapse" href="#vtdl" aria-expanded="false" aria-controls="#vtdl">Example</a></td>
-      </tr>
-      <tr class="collapse" id="vtdl">
-        <td colspan="5">
-          <pre>curl -F vtdl=hash -F machine="VM-Name" -F apikey="[VT API key]" {{ config.api.url }}/api/tasks/create/vtdl/
-Note: machine is optional.</pre>
-        </td>
-      </tr>
-      <tr>
-        <td>URL Create</td>
-        {% if config.urlcreate.enabled %}
-        <td><span class="badge badge-success">Yes</span></td>
-        {% else %}
-        <td><span class="badge badge-danger">No</span></td>
-        {% endif %}
-        <td>
-          <ul>
-            <li>RPS: {{ config.urlcreate.rps }}</li>
-            <li>RPM: {{ config.urlcreate.rpm }}</li>
-          </ul>
-        </td>
-        <td>Submit a URL task to be analyzed by CAPE. Return object will be JSON.</td>
-        <td><a class="accordion-toggle" data-toggle="collapse" href="#urlcreate" aria-expanded="false" aria-controls="#urlcreate">Example</a>
-        </td>
-      </tr>
-      <tr class="collapse" id="urlcreate">
-        <td colspan="5">
-          <pre>curl -F url="somebadness.tld" {{ config.api.url }}/api/tasks/create/url/</pre>
-        </td>
-      </tr>
-      <tr>
-        <td>Download file and Create file task aka dl'n'exec</td>
-        {% if config.dlnexeccreate.enabled %}
-        <td><span class="badge badge-success">Yes</span></td>
-        {% else %}
-        <td><span class="badge badge-danger">No</span></td>
-        {% endif %}
-        <td>
-          <ul>
-            <li>RPS: {{ config.dlnexeccreate.rps }}</li>
-            <li>RPM: {{ config.dlnexeccreate.rpm }}</li>
-          </ul>
-        </td>
-        <td>Submit a URL it will download and add as file task to be analyzed by CAPE. Return object will be JSON.</td>
-        <td><a cclass="accordion-toggle" data-toggle="collapse" href="#dlnexeccreate" aria-expanded="false" aria-controls="#dlnexeccreate">Example</a></td>
-      </tr>
-      <tr class="collapse" id="dlnexeccreate">
-        <td colspan="5">
-          <pre>curl -X POST -F dlnexec="https://somebadness.tld/supermalware.exe" {{ config.api.url }}/api/tasks/create/dlnexec/</pre>
-        </td>
-      </tr>
-      <tr>
-        <td>Static extraction</td>
-        {% if config.staticextraction.enabled %}
-        <td><span class="badge badge-success">Yes</span></td>
-        {% else %}
-        <td><span class="badge badge-danger">No</span></td>
-        {% endif %}
-        <td>
-          <ul>
-            <li>RPS: {{ config.staticextraction.rps }}</li>
-            <li>RPM: {{ config.staticextraction.rpm }}</li>
-          </ul>
-        </td>
-        <td>Submit a file to try static extractors on it, file won't be submited to Virtual Machine. Return object will
-          be JSON.</td>
-        <td><a class="accordion-toggle" data-toggle="collapse" href="#staticextraction" aria-expanded="false" aria-controls="#staticextraction">Example</a></td>
-      </tr>
-      <tr class="collapse" id="staticextraction">
-        <td colspan="5">
-          <pre>curl -F file=@/path/to/file -F machine="VM-Name" {{ config.api.url }}/api/tasks/create/static/
-        </td>
-      </tr>
-            <tr>
-                <td>File View</td>
-                {% if config.fileview.enabled %}
-                <td><span class="badge badge-success">Yes</span></td>
-                {% else %}
-                <td><span class="badge badge-danger">No</span></td>
-                {% endif %}
-                <td><ul><li>RPS: {{ config.fileview.rps }}</li>
-                        <li>RPM: {{ config.fileview.rpm }}</li></ul></td>
-                <td>View information about a specific sample that it's CAPE's database. Return object will be JSON.</td>
-                <td><a class="accordion-toggle" data-toggle="collapse" href="#fileview" aria-expanded="false" aria-controls="#fileview">Example</a></td>
-            </tr>
-            <tr class="collapse" id="fileview">
-              <td colspan="5"><pre>curl {{ config.api.url }}/api/files/view/md5/[md5 hash]/
-curl {{ config.api.url }}/api/files/view/sha1/[sha1 hash]/
-curl {{ config.api.url }}/api/files/view/sha256/[sha256 hash]/
-curl {{ config.api.url }}/api/files/view/id/[sample id]/</pre>
-        </td>
-      </tr>
-      <tr>
-        <td>Basic Task Search</td>
-        {% if config.tasksearch.enabled %}
-        <td><span class="badge badge-success">Yes</span></td>
-        {% else %}
-        <td><span class="badge badge-danger">No</span></td>
-        {% endif %}
-        <td>
-          <ul>
-            <li>RPS: {{ config.tasksearch.rps }}</li>
-            <li>RPM: {{ config.tasksearch.rpm }}</li>
-          </ul>
-        </td>
-        <td>View information about a specific Task that's in CAPE's database by Hash or ID. Return object will be JSON.
-        </td>
-        <td><a cclass="accordion-toggle" data-toggle="collapse" href="#tasksearch" aria-expanded="false" aria-controls="#tasksearch">Example</a>
-        </td>
-      </tr>
-      <tr class="collapse" id="tasksearch">
-        <td colspan="5">
-          <pre>curl {{ config.api.url }}/api/tasks/search/md5/[md5 hash]/
-curl {{ config.api.url }}/api/tasks/search/sha1/[sha1 hash]/
-curl {{ config.api.url }}/api/tasks/search/sha256/[sha256 hash]/</pre>
-        </td>
-      </tr>
-      <tr>
-        <td>Extended Task Search</td>
-        {% if config.extendedtasksearch.enabled %}
-        <td><span class="badge badge-success">Yes</span></td>
-        {% else %}
-        <td><span class="badge badge-danger">No</span></td>
-        {% endif %}
-        <td>
-          <ul>
-            <li>RPS: {{ config.extendedtasksearch.rps }}</li>
-            <li>RPM: {{ config.extendedtasksearch.rpm }}</li>
-          </ul>
-        </td>
-        <td>Search for Task ID's that's in MongoDB by various options. Return object will be JSON.</td>
-        <td><a class="accordion-toggle" data-toggle="collapse" href="#extendedtasksearch" aria-expanded="false" aria-controls="#extendedtasksearch">Example</a></td>
-      </tr>
-      <tr class="collapse" id="extendedtasksearch">
-        <td colspan="5">
-          <pre>curl -d "option=[option]&argument=[argument]" {{ config.api.url }}/api/tasks/extendedsearch/
-
-Searchable Options List:
-id : Task id
-name : Name of target file name
-type : Name of file type
-string : Match a string in the static analysis section
-ssdeep : Match an ssdeep hash
-crc32 : Match a CRC32 hash
-file : Match a file in the behavioral analysis summary
-command : Match an executed command
-resolvedapi : Match an API that a sample resolved
-key : Match a registry key in the behavioral analysis summary
-mutex : Match a mutex in the behavioral analysis summary
-domain : Match a resolved domain
-ip : Match a contacted IP Address
-signature : Match a CAPE signature description
-signame : Match a CAPE signature name
-detections: Match samples associated with malware family
-url : Match a URL target task (submitted URL task)
-imphash : Match an import hash
-iconhash: Match the exact hash of the icon associated with the PE
-iconfuzzy: Match a hash designed to match on similar-looking icons
-surialert : Match a suricata alert signature
-surihttp : Match suricata HTTP data
-suritls : Match suricata TLS data
-clamav : Match a Clam AV signature
-yaraname : Match a Yara signature name
-virustotal : Match a virustotal AV Signature
-comment : Match a comment posted to a specific task
-md5 : Targets with a specific MD5 hash
-sha1 : Targets with a specific SHA1 hash
-sha256 : Targets with a specific SHA256 hash
-sha512 : Targets with a specific SHA512 hash
-TTP: TTP number
-</pre>
-        </td>
-      </tr>
-      <tr>
-        <td>Tasks List</td>
-        {% if config.tasklist.enabled %}
-        <td><span class="badge badge-success">Yes</span></td>
-        {% else %}
-        <td><span class="badge badge-danger">No</span></td>
-        {% endif %}
-        <td>
-          <ul>
-            <li>RPS: {{ config.tasklist.rps }}</li>
-            <li>RPM: {{ config.tasklist.rpm }}</li>
-          </ul>
-        </td>
-        <td>View information about a range of Task ID's. Return object will be JSON</td>
-        <td><a class="accordion-toggle" data-toggle="collapse" href="#tasklist" aria-expanded="false" aria-controls="#tasklist">Example</a>
-        </td>
-      </tr>
-      <tr class="collapse" id="tasklist">
-        <td colspan="5">
-          <pre>curl {{ config.api.url }}/api/tasks/list/
-curl {{ config.api.url }}/api/tasks/list/[limit]/ (specify a limit of tasks to return)
-curl {{ config.api.url }}/api/tasks/list/[limit]/[offset]/ (specify a limit of tasks to return, offset by a specific amount)
-Acepts as params status to check for status and/or option to search by option LIKE</pre>
-        </td>
-      </tr>
-      <tr>
-        <td>Task View</td>
-        {% if config.taskview.enabled %}
-        <td><span class="badge badge-success">Yes</span></td>
-        {% else %}
-        <td><span class="badge badge-danger">No</span></td>
-        {% endif %}
-        <td>
-          <ul>
-            <li>RPS: {{ config.taskview.rps }}</li>
-            <li>RPM: {{ config.taskview.rpm }}</li>
-          </ul>
-        </td>
-        <td>View information about a specific task including VM, sample, and error information. Return object will be
-          JSON.</td>
-        <td><a class="accordion-toggle" data-toggle="collapse" href="#taskview" aria-expanded="false" aria-controls="#taskview">Example</a>
-        </td>
-      </tr>
-      <tr class="collapse" id="taskview">
-        <td colspan="5">
-          <pre>curl {{ config.api.url }}/api/tasks/view/[task id]/</pre>
-        </td>
-      </tr>
-      <tr>
-        <td>Reschedule Task</td>
-        {% if config.taskresched.enabled %}
-        <td><span class="badge badge-success">Yes</span></td>
-        {% else %}
-        <td><span class="badge badge-danger">No</span></td>
-        {% endif %}
-        <td>
-          <ul>
-            <li>RPS: {{ config.taskresched.rps }}</li>
-            <li>RPM: {{ config.taskresched.rpm }}</li>
-          </ul>
-        </td>
-        <td>Reschedule an analysis task to run again. Return object will be JSON.</td>
-        <td><a class="accordion-toggle" data-toggle="collapse" href="#taskresched" aria-expanded="false" aria-controls="#taskresched">Example</a>
-        </td>
-      </tr>
-      <tr class="collapse" id="taskresched">
-        <td colspan="5">
-          <pre>curl {{ config.api.url }}/api/tasks/reschedule/[task id]/</pre>
-        </td>
-      </tr>
-      <tr>
-        <td>Delete Task</td>
-        {% if config.taskdelete.enabled %}
-        <td><span class="badge badge-success">Yes</span></td>
-        {% else %}
-        <td><span class="badge badge-danger">No</span></td>
-        {% endif %}
-        <td>
-          <ul>
-            <li>RPS: {{ config.taskdelete.rps }}</li>
-            <li>RPM: {{ config.taskdelete.rpm }}</li>
-          </ul>
-        </td>
-        <td>Delete a task from the database. Return object will be JSON.</td>
-        <td><a class="accordion-toggle" data-toggle="collapse" href="#taskdelete" aria-expanded="false" aria-controls="#taskdelete">Example</a>
-        </td>
-      </tr>
-      <tr class="collapse" id="taskdelete">
-        <td colspan="5">
-          <pre>curl {{ config.api.url }}/api/tasks/delete/[task id]/</pre>
-        </td>
-      </tr>
-      <tr>
-        <td>Task Status</td>
-        {% if config.taskstatus.enabled %}
-        <td><span class="badge badge-success">Yes</span></td>
-        {% else %}
-        <td><span class="badge badge-danger">No</span></td>
-        {% endif %}
-        <td>
-          <ul>
-            <li>RPS: {{ config.taskstatus.rps }}</li>
-            <li>RPM: {{ config.taskstatus.rpm }}</li>
-          </ul>
-        </td>
-        <td>Query the status of a Task by ID. Return object will be JSON.</td>
-        <td><a class="accordion-toggle" data-toggle="collapse" href="#taskstatus" aria-expanded="false" aria-controls="#taskstatus">Example</a>
-        </td>
-      </tr>
-      <tr class="collapse" id="taskstatus">
-        <td colspan="5">
-          <pre>curl {{ config.api.url }}/api/tasks/status/[task id]/</pre>
-        </td>
-      </tr>
-      <tr>
-        <td>Task Report</td>
-        {% if config.taskreport.enabled %}
-        <td><span class="badge badge-success">Yes</span></td>
-        {% else %}
-        <td><span class="badge badge-danger">No</span></td>
-        {% endif %}
-        <td>
-          <ul>
-            <li>RPS: {{ config.taskreport.rps }}</li>
-            <li>RPM: {{ config.taskreport.rpm }}</li>
-          </ul>
-        </td>
-        <td>Download a report generated for a specific task. Return object will be JSON, XML, or octet-stream (tar.bz2).
-        </td>
-        <td><a class="accordion-toggle" data-toggle="collapse" href="#taskreport" aria-expanded="false" aria-controls="#taskreport">Example</a>
-        </td>
-      </tr>
-      <tr class="collapse" id="taskreport">
-        <td colspan="5">
-          <pre>curl {{ config.api.url }}/api/tasks/get/report/[task id]/
-curl {{ config.api.url }}/api/tasks/get/report/[task id]/[format]/
-Note: Format can be json/maec/maec5/metadata/all.</pre>
-        </td>
-      </tr>
-      <tr>
-        <td>Task IOCs</td>
-        {% if config.taskiocs.enabled %}
-        <td><span class="badge badge-success">Yes</span></td>
-        {% else %}
-        <td><span class="badge badge-danger">No</span></td>
-        {% endif %}
-        <td>
-          <ul>
-            <li>RPS: {{ config.taskiocs.rps }}</li>
-            <li>RPM: {{ config.taskiocs.rpm }}</li>
-          </ul>
-        </td>
-        <td>View objects of the task report that may contain potential IOCs. Return object will be JSON.</td>
-        <td><a class="accordion-toggle" data-toggle="collapse" href="#taskiocs" aria-expanded="false" aria-controls="#taskiocs">Example</a>
-        </td>
-      </tr>
-      <tr class="collapse" id="taskiocs">
-        <td colspan="5">
-          <pre>curl {{ config.api.url }}/api/tasks/get/iocs/[task id]/
-curl {{ config.api.url }}/api/tasks/get/iocs/[task id]/detailed/</pre>
-        </td>
-      </tr>
-      <tr>
-        <td>Task Screenshots</td>
-        {% if config.taskscreenshot.enabled %}
-        <td><span class="badge badge-success">Yes</span></td>
-        {% else %}
-        <td><span class="badge badge-danger">No</span></td>
-        {% endif %}
-        <td>
-          <ul>
-            <li>RPS: {{ config.taskscreenshot.rps }}</li>
-            <li>RPM: {{ config.taskscreenshot.rpm }}</li>
-          </ul>
-        </td>
-        <td>View/Download screenshots of a Task by ID. Return object will be image/jpeg or octet-stream. (.jpg or
-          .tar.bz2)</td>
-        <td><a class="accordion-toggle" data-toggle="collapse" href="#taskscreenshot" aria-expanded="false" aria-controls="#taskscreenshot">Example</a></td>
-      </tr>
-      <tr class="collapse" id="taskscreenshot">
-        <td colspan="5">
-          <pre>curl {{ config.api.url }}/api/tasks/get/screenshot/[task id]/    (Downloads all screenshots)
-curl {{ config.api.url }}/api/tasks/get/screenshot/[task id]/[screenshot number]/</pre>
-        </td>
-      </tr>
-      <tr>
-        <td>Task PCAP</td>
-        {% if config.taskpcap.enabled %}
-        <td><span class="badge badge-success">Yes</span></td>
-        {% else %}
-        <td><span class="badge badge-danger">No</span></td>
-        {% endif %}
-        <td>
-          <ul>
-            <li>RPS: {{ config.taskpcap.rps }}</li>
-            <li>RPM: {{ config.taskpcap.rpm }}</li>
-          </ul>
-        </td>
-        <td>Download the PCAP dump of a Task by ID. Return object will be application/vnd.tcpdump.pcap. (.pcap)</td>
-        <td><a class="accordion-toggle" data-toggle="collapse" href="#taskpcap" aria-expanded="false" aria-controls="#taskpcap">Example</a>
-        </td>
-      </tr>
-      <tr class="collapse" id="taskpcap">
-        <td colspan="5">
-          <pre>curl {{ config.api.url }}/api/tasks/get/pcap/[task id]/</pre>
-        </td>
-      </tr>
-      <tr>
-        <td>Task Dropped Files</td>
-        {% if config.taskdropped.enabled %}
-        <td><span class="badge badge-success">Yes</span></td>
-        {% else %}
-        <td><span class="badge badge-danger">No</span></td>
-        {% endif %}
-        <td>
-          <ul>
-            <li>RPS: {{ config.taskdropped.rps }}</li>
-            <li>RPM: {{ config.taskdropped.rpm }}</li>
-          </ul>
-        </td>
-        <td>Download the dropped files associated with a Task by ID. Return object will be octet-stream. (.tar.bz2)</td>
-        <td><a class="accordion-toggle" data-toggle="collapse" href="#taskdropped" aria-expanded="false" aria-controls="#taskdropped">Example</a>
-        </td>
-      </tr>
-      <tr class="collapse" id="taskdropped">
-        <td colspan="5">
-          <pre>curl {{ config.api.url }}/api/tasks/get/dropped/[task id]/</pre>
-        </td>
-      </tr>
-      <tr>
-        <td>Task SuriFiles</td>
-        {% if config.tasksurifile.enabled %}
-        <td><span class="badge badge-success">Yes</span></td>
-        {% else %}
-        <td><span class="badge badge-danger">No</span></td>
-        {% endif %}
-        <td>
-          <ul>
-            <li>RPS: {{ config.tasksurifile.rps }}</li>
-            <li>RPM: {{ config.tasksurifile.rpm }}</li>
-          </ul>
-        </td>
-        <td>Download the Suricata captured files associated with a Task by ID. Return object will be octet-stream.
-          (.zip)</td>
-        <td><a class="accordion-toggle" data-toggle="collapse" href="#tasksurifile" aria-expanded="false" aria-controls="#tasksurifile">Example</a>
-        </td>
-      </tr>
-      <tr class="collapse" id="tasksurifile">
-        <td colspan="5">
-          <pre>curl {{ config.api.url }}/api/tasks/get/surifile/[task id]/</pre>
-        </td>
-      </tr>
-      <tr>
-        <td>Task Process Dump</td>
-        {% if config.taskprocmemory.enabled %}
-        <td><span class="badge badge-success">Yes</span></td>
-        {% else %}
-        <td><span class="badge badge-danger">No</span></td>
-        {% endif %}
-        <td>
-          <ul>
-            <li>RPS: {{ config.taskprocmemory.rps }}</li>
-            <li>RPM: {{ config.taskprocmemory.rpm }}</li>
-          </ul>
-        </td>
-        <td>Download a process memory dump from a Task by ID and PID. Return object will be octet-stream. (.dmp or
-          .tar.bz2)</td>
-        <td><a class="accordion-toggle" data-toggle="collapse" href="#taskprocmemory" aria-expanded="false" aria-controls="#taskprocmemory">Example</a></td>
-      </tr>
-      <tr class="collapse" id="taskprocmemory">
-        <td colspan="5">
-          <pre>curl {{ config.api.url }}/api/tasks/get/procmemory/[task id]/    (Downloads all process memory dumps)
-curl {{ config.api.url }}/api/tasks/get/procmemory/[task id]/[pid]/</pre>
-        </td>
-      </tr>
-      <tr>
-        <td>Task Full Memory Dump</td>
-        {% if config.taskfullmemory.enabled %}
-        <td><span class="badge badge-success">Yes</span></td>
-        {% else %}
-        <td><span class="badge badge-danger">No</span></td>
-        {% endif %}
-        <td>
-          <ul>
-            <li>RPS: {{ config.taskfullmemory.rps }}</li>
-            <li>RPM: {{ config.taskfullmemory.rpm }}</li>
-          </ul>
-        </td>
-        <td>Download a full memory dump of a Task by ID. Return object will be octet-stream. (.dmp)</td>
-        <td><a class="accordion-toggle" data-toggle="collapse" href="#taskfullmemory" aria-expanded="false" aria-controls="#taskfullmemory">Example</a></td>
-      </tr>
-      <tr class="collapse" id="taskfullmemory">
-        <td colspan="5">
-          <pre>curl {{ config.api.url }}/api/tasks/get/fullmemory/[task id]/</pre>
-        </td>
-      </tr>
-      <tr>
-        <td>Sample Download</td>
-        {% if config.sampledl.enabled %}
-        <td><span class="badge badge-success">Yes</span></td>
-        {% else %}
-        <td><span class="badge badge-danger">No</span></td>
-        {% endif %}
-        <td>
-          <ul>
-            <li>RPS: {{ config.sampledl.rps }}</li>
-            <li>RPM: {{ config.sampledl.rpm }}</li>
-          </ul>
-        </td>
-        <td>Download a sample from a Task by Task ID/MD5/SHA1/SHA256. Return object will be octet-stream. (.bin)</td>
-        <td><a class="accordion-toggle" data-toggle="collapse" href="#sampledl" aria-expanded="false" aria-controls="#sampledl">Example</a>
-        </td>
-      </tr>
-      <tr class="collapse" id="sampledl">
-        <td colspan="5">
-          <pre>curl {{ config.api.url }}/api/files/get/task/[task id]/
-curl {{ config.api.url }}/api/files/get/md5/[md5 hash]/
-curl {{ config.api.url }}/api/files/get/sha1/[sha1 hash]/
-curl {{ config.api.url }}/api/files/get/sha256/[sha256 hash]/</pre>
-        </td>
-      </tr>
-      <tr>
-        <td>Virtual Machine List</td>
-        {% if config.machinelist.enabled %}
-        <td><span class="badge badge-success">Yes</span></td>
-        {% else %}
-        <td><span class="badge badge-danger">No</span></td>
-        {% endif %}
-        <td>
-          <ul>
-            <li>RPS: {{ config.machinelist.rps }}</li>
-            <li>RPM: {{ config.machinelist.rpm }}</li>
-          </ul>
-        </td>
-        <td>View basic statistics of available/total virtual machines. Return object will be JSON.</td>
-        <td><a class="accordion-toggle" data-toggle="collapse" href="#machinelist" aria-expanded="false" aria-controls="#machinelist">Example</a>
-        </td>
-      </tr>
-      <tr class="collapse" id="machinelist">
-        <td colspan="5">
-          <pre>curl {{ config.api.url }}/api/machines/list/</pre>
-        </td>
-      </tr>
-      <tr>
-        <td>Virtual Machine View</td>
-        {% if config.machineview.enabled %}
-        <td><span class="badge badge-success">Yes</span></td>
-        {% else %}
-        <td><span class="badge badge-danger">No</span></td>
-        {% endif %}
-        <td>
-          <ul>
-            <li>RPS: {{ config.machineview.rps }}</li>
-            <li>RPM: {{ config.machineview.rpm }}</li>
-          </ul>
-        </td>
-        <td>View information about a specific virtual machine. Return object will be JSON.</td>
-        <td><a class="accordion-toggle" data-toggle="collapse" href="#machineview" aria-expanded="false" aria-controls="#machineview">Example</a>
-        </td>
-      </tr>
-      <tr class="collapse" id="machineview">
-        <td colspan="5">
-          <pre>curl {{ config.api.url }}/api/machines/view/[vm-name]/</pre>
-        </td>
-      </tr>
-      <tr>
-        <td>Get tasks ids finished in latest X hours</td>
-        {% if config.latests.enabled %}
-        <td><span class="badge badge-success">Yes</span></td>
-        {% else %}
-        <td><span class="badge badge-danger">No</span></td>
-        {% endif %}
-        <td>
-          <ul>
-            <li>RPS: {{ config.latests.rps }}</li>
-            <li>RPM: {{ config.latests.rpm }}</li>
-          </ul>
-        </td>
-        <td>View ids of tasks finished on latest X hours.</td>
-        <td><a class="accordion-toggle" data-toggle="collapse" href="#latests_ids" aria-expanded="false" aria-controls="#latests_ids">Example</a>
-        </td>
-      </tr>
-      <tr class="collapse" id="latests_ids">
-        <td colspan="5">
-          <pre>curl {{ config.api.url }}/api/tasks/get/latests/1/</pre>
-        </td>
-      </tr>
-      <tr>
-        <td>CAPE Status</td>
-        {% if config.cuckoostatus.enabled %}
-        <td><span class="badge badge-success">Yes</span></td>
-        {% else %}
-        <td><span class="badge badge-danger">No</span></td>
-        {% endif %}
-        <td>
-          <ul>
-            <li>RPS: {{ config.cuckoostatus.rps }}</li>
-            <li>RPM: {{ config.cuckoostatus.rpm }}</li>
-          </ul>
-        </td>
-        <td>View the current status of the CAPE host. Return object will be JSON.</td>
-        <td><a class="accordion-toggle" data-toggle="collapse" href="#capestatus" aria-expanded="false" aria-controls="#capestatus">Example</a>
-        </td>
-      </tr>
-      <tr class="collapse" id="capestatus">
-        <td colspan="5">
-          <pre>curl {{ config.api.url }}/api/cuckoo/status/</pre>
-        </td>
-      </tr>
-      <tr>
-        <td>Extracted Sample Config</td>
-        {% if config.capeconfig.enabled %}
-        <td><span class="badge badge-success">Yes</span></td>
-        {% else %}
-        <td><span class="badge badge-danger">No</span></td>
-        {% endif %}
-        <td>
-          <ul>
-            <li>RPS: {{ config.capeconfig.rps }}</li>
-            <li>RPM: {{ config.capeconfig.rpm }}</li>
-          </ul>
-        </td>
-        <td>View the CAPE extracted sample config associated with a task by ID. Return object will be JSON.</td>
-        <td><a class="accordion-toggle" data-toggle="collapse" href="#capeconfig" aria-expanded="false" aria-controls="#capeconfig">Example</a>
-        </td>
-      </tr>
-      <tr class="collapse" id="capeconfig">
-        <td colspan="5">
-          <pre>curl {{ config.api.url }}/api/tasks/get/config/[task_id]/</pre>
-        </td>
-      </tr>
-      <tr>
-        <td>CAPE Payload Files</td>
-        {% if config.payloadfiles.enabled %}
-        <td><span class="badge badge-success">Yes</span></td>
-        {% else %}
-        <td><span class="badge badge-danger">No</span></td>
-        {% endif %}
-        <td>
-          <ul>
-            <li>RPS: {{ config.payloadfiles.rps }}</li>
-            <li>RPM: {{ config.payloadfiles.rpm }}</li>
-          </ul>
-        </td>
-        <td>Download the Cape payload files associated with a task by ID. Return object will be octet-stream. (.zip). Use 7zip or pyzipper to extract</td>
-        <td><a class="accordion-toggle" data-toggle="collapse" href="#capepayloadfiles" aria-expanded="false" aria-controls="#capepayloadfiles">Example</a></td>
-      </tr>
-      <tr class="collapse" id="capepayloadfiles">
-        <td colspan="5">
-          <pre>curl {{ config.api.url }}/api/tasks/get/payloadfiles/[task_id]/</pre>
-        </td>
-      </tr>
-      <tr>
-        <td>CAPE Procdump Files</td>
-        {% if config.procdumpfiles.enabled %}
-        <td><span class="badge badge-success">Yes</span></td>
-        {% else %}
-        <td><span class="badge badge-danger">No</span></td>
-        {% endif %}
-        <td>
-          <ul>
-            <li>RPS: {{ config.configfiles.rps }}</li>
-            <li>RPM: {{ config.configfiles.rpm }}</li>
-          </ul>
-        </td>
-        <td>Download the procdump files associated with a task by ID. Return object will be octet-stream. (.zip). Use 7zip or pyzipper to extract</td>
-        <td><a class="accordion-toggle" data-toggle="collapse" href="#capeprocdumpfiles" aria-expanded="false" aria-controls="#capeprocdumpfiles">Example</a></td>
-      </tr>
-      <tr class="collapse" id="capeprocdumpfiles">
-        <td colspan="5">
-          <pre>curl {{ config.api.url }}/api/tasks/get/procdumpfiles/[task_id]/</pre>
-        </td>
-      </tr>
-      <tr>
-        <td>Statistics</td>
-        {% if config.statistics.enabled %}
-        <td><span class="badge badge-success">Yes</span></td>
-        {% else %}
-        <td><span class="badge badge-danger">No</span></td>
-        {% endif %}
-        <td>
-          <ul>
-            <li>RPS: {{ config.statistics.rps }}</li>
-            <li>RPM: {{ config.statistics.rpm }}</li>
-          </ul>
-        </td>
-        <td>Details about tasks and time spend on different modules(TOP 30)</td>
-        <td><a class="accordion-toggle" data-toggle="collapse" href="#statistircs" aria-expanded="false" aria-controls="#statistircs">Example</a></td>
-      </tr>
-      <tr class="collapse" id="statistircs">
-        <td colspan="5">
-          <pre>curl {{ config.api.url }}/api/tasks/[days]/</pre>
-        </td>
-      </tr>
-    </tbody>
-  </table>
-  {% else %}
-  <div class="panel-body">Problem loading API configuration file.</div>
-  {% endif %}
-</div>
-{% endblock %}
diff --git a/web/templates/apiv2/index.html b/web/templates/apiv2/index.html
index 2fe6beaa84d..b03e159d43f 100644
--- a/web/templates/apiv2/index.html
+++ b/web/templates/apiv2/index.html
@@ -3,7 +3,7 @@
 
 <div class="panel panel-primary">
   <div class="panel-heading">
-    <h3 class="panel-title">API - <a href=https://capev2.readthedocs.io/en/latest/usage/api.html#current-rest-api>Authentification example</a></h3>
+    <h3 class="panel-title">API - <a href=https://capev2.readthedocs.io/en/latest/usage/api.html#current-rest-api>Authentication example</a></h3>
   </div>
   {% if config %}
   <table class="table table-striped table-hover" style="table-layout: fixed;">
@@ -37,23 +37,24 @@ <h3 class="panel-title">API - <a href=https://capev2.readthedocs.io/en/latest/us
       <tr class="collapse" id="filecreate">
           <td colspan="5">
             <pre>curl -F file=@/path/to/file -F machine="VM-Name" -H "Authorization: Token YOU_TOKEN" {{ config.api.url }}/apiv2/tasks/create/file/
-  Note: machine is optional. Header depends of the config if Token auth is enabled</pre>
+In case of PCAP you need to add -F pcap=1
+Note: machine is optional. Header depends of the config if Token auth is enabled in api.conf</pre>
           </td>
       </tr>
       <tr>
-        <td>VirusTotal download and analyze</td>
-        {% if config.vtdl.enabled %}
+        <td>Download from file service and analyze</td>
+        {% if config.downloading_services.enabled %}
         <td><span class="badge badge-success">Yes</span></td>
         {% else %}
         <td><span class="badge badge-danger">No</span></td>
         {% endif %}
         <td>
           <ul>
-            <li>RPS: {{ config.vtdl.rps }}</li>
-            <li>RPM: {{ config.vtdl.rpm }}</li>
+            <li>RPS: {{ config.downloading_services.rps }}</li>
+            <li>RPM: {{ config.downloading_services.rpm }}</li>
           </ul>
         </td>
-        <td>Download a file from VT for analysis. Return object will be JSON.</td>
+        <td>Download a file from VT or MalwareBazaar or other service for analysis. Return object will be JSON.</td>
         <td><a class="accordion-toggle" data-toggle="collapse" href="#vtdl" aria-expanded="false" aria-controls="#vtdl">Example</a></td>
       </tr>
       <tr class="collapse" id="vtdl">
@@ -136,7 +137,7 @@ <h3 class="panel-title">API - <a href=https://capev2.readthedocs.io/en/latest/us
                 {% endif %}
                 <td><ul><li>RPS: {{ config.fileview.rps }}</li>
                         <li>RPM: {{ config.fileview.rpm }}</li></ul></td>
-                <td>View information about a specific sample that it's CAPE's database. Return object will be JSON.</td>
+                <td>View information about a specific sample that's in CAPE's database. Return object will be JSON.</td>
                 <td><a class="accordion-toggle" data-toggle="collapse" href="#fileview" aria-expanded="false" aria-controls="#fileview">Example</a></td>
             </tr>
             <tr class="collapse" id="fileview">
@@ -297,6 +298,28 @@ <h3 class="panel-title">API - <a href=https://capev2.readthedocs.io/en/latest/us
           <pre>curl {{ config.api.url }}/apiv2/tasks/reschedule/[task id]/</pre>
         </td>
       </tr>
+      <tr>
+          <td>Reprocess Task</td>
+          {% if config.taskreprocess.enabled %}
+              <td><span class="badge badge-success">Yes</span></td>
+          {% else %}
+              <td><span class="badge badge-danger">No</span></td>
+          {% endif %}
+          <td>
+              <ul>
+                  <li>RPS: {{ config.taskreprocess.rps }}</li>
+                  <li>RPM: {{ config.taskreprocess.rpm }}</li>
+              </ul>
+          </td>
+          <td>Mark an analysis task as ready to be processed. Return object will be JSON.</td>
+          <td><a class="accordion-toggle" data-toggle="collapse" href="#taskreprocess" aria-expanded="false" aria-controls="#taskreprocess">Example</a>
+          </td>
+      </tr>
+      <tr class="collapse" id="taskreprocess">
+          <td colspan="5">
+              <pre>curl {{ config.api.url }}/apiv2/tasks/reprocess/[task id]/</pre>
+          </td>
+      </tr>
       <tr>
         <td>Delete Task</td>
         {% if config.taskdelete.enabled %}
@@ -316,7 +339,10 @@ <h3 class="panel-title">API - <a href=https://capev2.readthedocs.io/en/latest/us
       </tr>
       <tr class="collapse" id="taskdelete">
         <td colspan="5">
-          <pre>curl {{ config.api.url }}/apiv2/tasks/delete/[task id]/</pre>
+          <pre>curl {{ config.api.url }}/apiv2/tasks/delete/[task id]/[status]
+curl {{ config.api.url }}/apiv2/tasks/delete/[task id],[task id]/[status]
+curl {{ config.api.url }}/apiv2/tasks/delete/[start_task_id]-[end_task_id]/[status]
+Note: Specify the exact status when the job fails; leave blank if successful</pre>
         </td>
       </tr>
       <tr>
@@ -354,7 +380,7 @@ <h3 class="panel-title">API - <a href=https://capev2.readthedocs.io/en/latest/us
             <li>RPM: {{ config.taskreport.rpm }}</li>
           </ul>
         </td>
-        <td>Download a report generated for a specific task. Return object will be JSON, XML, or octet-stream (tar.bz2).
+        <td>Download a report generated for a specific task. Return object will be JSON, XML, or application/zip (zip).
         </td>
         <td><a class="accordion-toggle" data-toggle="collapse" href="#taskreport" aria-expanded="false" aria-controls="#taskreport">Example</a>
         </td>
@@ -363,7 +389,10 @@ <h3 class="panel-title">API - <a href=https://capev2.readthedocs.io/en/latest/us
         <td colspan="5">
           <pre>curl {{ config.api.url }}/apiv2/tasks/get/report/[task id]/
 curl {{ config.api.url }}/apiv2/tasks/get/report/[task id]/[format]/
-Note: Format can be json/maec/maec5/metadata/all.</pre>
+curl {{ config.api.url }}/apiv2/tasks/get/report/[task id]/[format]/zip/
+Note: Format can be json/maec/maec5/metadata/lite/all.
+Note 2: extra formats: all/dist/dropped/lite - used for distributed cluster reporting
+</pre>
         </td>
       </tr>
       <tr>
@@ -402,8 +431,8 @@ <h3 class="panel-title">API - <a href=https://capev2.readthedocs.io/en/latest/us
             <li>RPM: {{ config.taskscreenshot.rpm }}</li>
           </ul>
         </td>
-        <td>View/Download screenshots of a Task by ID. Return object will be image/jpeg or octet-stream. (.jpg or
-          .tar.bz2)</td>
+        <td>View/Download screenshots of a Task by ID. Return object will be image/jpeg or application/zip (.zip). Use 7zip or pyzipper to extract
+          .zip)</td>
         <td><a class="accordion-toggle" data-toggle="collapse" href="#taskscreenshot" aria-expanded="false" aria-controls="#taskscreenshot">Example</a></td>
       </tr>
       <tr class="collapse" id="taskscreenshot">
@@ -447,7 +476,7 @@ <h3 class="panel-title">API - <a href=https://capev2.readthedocs.io/en/latest/us
             <li>RPM: {{ config.taskdropped.rpm }}</li>
           </ul>
         </td>
-        <td>Download the dropped files associated with a Task by ID. Return object will be octet-stream. (.tar.bz2)</td>
+        <td>Download the dropped files associated with a Task by ID. Return object will be application/zip (.zip). Use 7zip or pyzipper to extract</td>
         <td><a class="accordion-toggle" data-toggle="collapse" href="#taskdropped" aria-expanded="false" aria-controls="#taskdropped">Example</a>
         </td>
       </tr>
@@ -492,8 +521,7 @@ <h3 class="panel-title">API - <a href=https://capev2.readthedocs.io/en/latest/us
             <li>RPM: {{ config.taskprocmemory.rpm }}</li>
           </ul>
         </td>
-        <td>Download a process memory dump from a Task by ID and PID. Return object will be octet-stream. (.dmp or
-          .tar.bz2)</td>
+        <td>Download a process memory dump from a Task by ID and PID. Return object will be application/zip (.zip). Use 7zip or pyzipper to extract</td>
         <td><a class="accordion-toggle" data-toggle="collapse" href="#taskprocmemory" aria-expanded="false" aria-controls="#taskprocmemory">Example</a></td>
       </tr>
       <tr class="collapse" id="taskprocmemory">
@@ -536,7 +564,7 @@ <h3 class="panel-title">API - <a href=https://capev2.readthedocs.io/en/latest/us
             <li>RPM: {{ config.sampledl.rpm }}</li>
           </ul>
         </td>
-        <td>Download a sample from a Task by Task ID/MD5/SHA1/SHA256. Return object will be octet-stream. (.bin)</td>
+        <td>Download a sample from a Task by Task ID/MD5/SHA1/SHA256. Supports zip-encryption with default password. Return object will be octet-stream. (.bin) or application/zip. (.zip) if encrypted</td>
         <td><a class="accordion-toggle" data-toggle="collapse" href="#sampledl" aria-expanded="false" aria-controls="#sampledl">Example</a>
         </td>
       </tr>
@@ -545,7 +573,12 @@ <h3 class="panel-title">API - <a href=https://capev2.readthedocs.io/en/latest/us
           <pre>curl {{ config.api.url }}/apiv2/files/get/task/[task id]/
 curl {{ config.api.url }}/apiv2/files/get/md5/[md5 hash]/
 curl {{ config.api.url }}/apiv2/files/get/sha1/[sha1 hash]/
-curl {{ config.api.url }}/apiv2/files/get/sha256/[sha256 hash]/</pre>
+curl {{ config.api.url }}/apiv2/files/get/sha256/[sha256 hash]/
+
+curl {{ config.api.url }}/apiv2/files/get/task/[task id]/?encrypted=1
+curl {{ config.api.url }}/apiv2/files/get/md5/[md5 hash]/?encrypted=1
+curl {{ config.api.url }}/apiv2/files/get/sha1/[sha1 hash]/?encrypted=1
+curl {{ config.api.url }}/apiv2/files/get/sha256/[sha256 hash]/?encrypted=1</pre>
         </td>
       </tr>
       <tr>
@@ -594,15 +627,15 @@ <h3 class="panel-title">API - <a href=https://capev2.readthedocs.io/en/latest/us
       </tr>
       <tr>
         <td>Get tasks ids finished in latest X hours</td>
-        {% if config.latests.enabled %}
+        {% if config.tasks_latest.enabled %}
         <td><span class="badge badge-success">Yes</span></td>
         {% else %}
         <td><span class="badge badge-danger">No</span></td>
         {% endif %}
         <td>
           <ul>
-            <li>RPS: {{ config.latests.rps }}</li>
-            <li>RPM: {{ config.latests.rpm }}</li>
+            <li>RPS: {{ config.tasks_latest.rps }}</li>
+            <li>RPM: {{ config.tasks_latest.rpm }}</li>
           </ul>
         </td>
         <td>View ids of tasks finished on latest X hours.</td>
@@ -671,7 +704,7 @@ <h3 class="panel-title">API - <a href=https://capev2.readthedocs.io/en/latest/us
             <li>RPM: {{ config.payloadfiles.rpm }}</li>
           </ul>
         </td>
-        <td>Download the Cape payload files associated with a task by ID. Return object will be octet-stream. (.zip). Use 7zip or pyzipper to extract</td>
+        <td>Download the CAPE payload files associated with a task by ID. Return object will be octet-stream. (.zip). Use 7zip or pyzipper to extract</td>
         <td><a class="accordion-toggle" data-toggle="collapse" href="#capepayloadfiles" aria-expanded="false" aria-controls="#capepayloadfiles">Example</a></td>
       </tr>
       <tr class="collapse" id="capepayloadfiles">
@@ -721,6 +754,28 @@ <h3 class="panel-title">API - <a href=https://capev2.readthedocs.io/en/latest/us
           <pre>curl {{ config.api.url }}/apiv2/tasks/[days]/</pre>
         </td>
       </tr>
+      <tr>
+        <td>Mitmdump HAR Download</td>
+        {% if config.mitmdump.enabled %}
+        <td><span class="badge badge-success">Yes</span></td>
+        {% else %}
+        <td><span class="badge badge-danger">No</span></td>
+        {% endif %}
+        <td>
+          <ul>
+            <li>RPS: {{ config.mitmdump.rps }}</li>
+            <li>RPM: {{ config.mitmdump.rpm }}</li>
+          </ul>
+        </td>
+        <td>Download the HAR file of mitmdump given a Task ID. Return will be a HAR file.</td>
+        <td><a class="accordion-toggle" data-toggle="collapse" href="#mitmdump" aria-expanded="false" aria-controls="#mitmdump">Example</a>
+        </td>
+      </tr>
+      <tr class="collapse" id="mitmdump">
+        <td colspan="5">
+          <pre>curl {{ config.api.url }}/apiv2/tasks/get/mitmdump/[task id]/</pre>
+        </td>
+      </tr>
     </tbody>
   </table>
   {% else %}
diff --git a/web/templates/compare/both.html b/web/templates/compare/both.html
index a452e51398d..b1ca2e3ec5a 100644
--- a/web/templates/compare/both.html
+++ b/web/templates/compare/both.html
@@ -12,48 +12,45 @@
         <h2 style="text-align: center;">Analysis 1</h2>
 
         {% include "compare/_info.html" with record=left %}
-
-        <div class="col-md-8">
-            <h4>Execution Graph</h4>
-
-            <p>This graph gives you an abstracted overview of the execution of the analyzer file. More specifically it represents the percentage of occurrences of behavioral events classified by category: the bigger the colored block, the higher is the count of events for the respective category performed by the analyzed malware</p>
-            <p>Comparing two graphs from different analyses can give you help estimate how much the behavior of the two files differ.</p>
-            <p>Following are the colored categories:</p>
-
-            <p style="text-align: center;">
-                <span class="badge.badge-pill registry" style="color:black;">registry</span>
-                <span class="badge.badge-pill filesystem" style="color:black;">filesystem</span>
-                <span class="badge.badge-pill system" style="color:black;">system</span>
-                <span class="badge.badge-pill network" style="color:black;">network</span>
-                <span class="badge.badge-pill process" style="color:black;">process</span>
-                <span class="badge.badge-pill services" style="color:black;">services</span>
-                <span class="badge.badge-pill synchronization" style="color:black;">synchronization</span>
-                <span class="badge.badge-pill windows" style="color:black;">windows</span>
-            </p>
-        </div>
-
-        <div class="col-md-4">
-            <div style="height: 300px;border: 2px solid #666;">
-                {% for cat, count in left_counts.items %}
-                    <div style="height: {{count}}%" class="{{cat}}" data-toggle="tooltip" data-placement="top" title="{{count}}% {{cat}}"></div>
-                {% endfor %}
-            </div>
-        </div>
     </div>
     <div class="col-md-6">
         <h2 style="text-align: center;">Analysis 2</h2>
-
         {% include "compare/_info.html" with record=right %}
-
-        <div class="col-md-4">
-            <div style="height: 300px;border: 2px solid #666;">
-                {% for cat, count in right_counts.items %}
-                    <div style="height: {{count}}%" class="{{cat}}" data-toggle="tooltip" data-placement="top" title="{{count}}% {{cat}}"></div>
-                {% endfor %}
-            </div>
+        <div class="col-md-8">
         </div>
+    </div>
+</div>
+<div class="mt-3">
+    <h4>Execution Graph</h4>
 
-        <div class="col-md-8">
+    <p>This graph gives you an abstracted overview of the execution of the analyzer file. More specifically it represents the percentage of occurrences of behavioral events classified by category: the bigger the colored block, the higher is the count of events for the respective category performed by the analyzed malware</p>
+    <p>Comparing two graphs from different analyses can give you help estimate how much the behavior of the two files differ.</p>
+    <p>Following are the colored categories:</p>
+
+    <p style="text-align: center;">
+        <span class="badge registry" style="color:black;">registry</span>
+        <span class="badge filesystem" style="color:black;">filesystem</span>
+        <span class="badge system" style="color:black;">system</span>
+        <span class="badge network" style="color:black;">network</span>
+        <span class="badge process" style="color:black;">process</span>
+        <span class="badge services" style="color:black;">services</span>
+        <span class="badge synchronization" style="color:black;">synchronization</span>
+        <span class="badge windows" style="color:black;">windows</span>
+    </p>
+</div>
+<div class="row">
+    <div class="col-md-6" style="border-right: 1px dashed #ddd;">
+        <div class="m-auto" style="height: 300px;border: 2px solid #666; width: 30%;">
+            {% for cat, count in left_counts.items %}
+                <div style="height: {{count}}%" class="{{cat}}" data-toggle="tooltip" data-placement="top" title="{{count}}% {{cat}}"></div>
+            {% endfor %}
+        </div>
+    </div>
+    <div class="col-md-6">
+        <div class="m-auto" style="height: 300px;border: 2px solid #666; width: 30%;">
+            {% for cat, count in right_counts.items %}
+                <div style="height: {{count}}%" class="{{cat}}" data-toggle="tooltip" data-placement="top" title="{{count}}% {{cat}}"></div>
+            {% endfor %}
         </div>
     </div>
 </div>
@@ -61,19 +58,19 @@ <h2 style="text-align: center;">Analysis 2</h2>
 <div class="row">
     <h2 style="text-align: left;"> Summary Similarities</h2>
         <ul class="nav nav-pills" style="margin-bottom: 0;">
-            <li class="nav-item active"><a class="nav-link" href=#summary_compare_files" data-toggle="tab">Accessed Files</a></li>
-            <li class="nav-item"><a class="nav-link" href=#summary_compare_read_files" data-toggle="tab">Read Files</a></li>
-            <li class="nav-item"><a class="nav-link" href=#summary_compare_write_files" data-toggle="tab">Modified Files</a></li>
-            <li class="nav-item"><a class="nav-link" href=#summary_compare_delete_files" data-toggle="tab">Deleted Files</a></li>
-            <li class="nav-item"><a class="nav-link" href=#summary_compare_keys" data-toggle="tab">Accessed Registry Keys</a></li>
-            <li class="nav-item"><a class="nav-link" href=#summary_compare_read_keys" data-toggle="tab">Read Registry Keys</a></li>
-            <li class="nav-item"><a class="nav-link" href=#summary_compare_write_keys" data-toggle="tab">Modified Registry Keys</a></li>
-            <li class="nav-item"><a class="nav-link" href=#summary_compare_delete_keys" data-toggle="tab">Deleted Registry Keys</a></li>
-            <li class="nav-item"><a class="nav-link" href=#summary_compare_resolved_apis" data-toggle="tab">Resolved APIs</a></li>
-            <li class="nav-item"><a class="nav-link" href=#summary_compare_executed_commands" data-toggle="tab">Executed Commands</a></li>
-            <li class="nav-item"><a class="nav-link" href=#summary_compare_mutexes" data-toggle="tab">Mutexes</a></li>
-            <li class="nav-item"><a class="nav-link" href=#summary_compare_created_services" data-toggle="tab">Created Services</a></li>
-            <li class="nav-item"><a class="nav-link" href=#summary_compare_started_services" data-toggle="tab">Started Services</a></li>
+            <li class="nav-item active"><a class="nav-link" href=#summary_compare_files data-toggle="tab">Accessed Files</a></li>
+            <li class="nav-item"><a class="nav-link" href=#summary_compare_read_files data-toggle="tab">Read Files</a></li>
+            <li class="nav-item"><a class="nav-link" href=#summary_compare_write_files data-toggle="tab">Modified Files</a></li>
+            <li class="nav-item"><a class="nav-link" href=#summary_compare_delete_files data-toggle="tab">Deleted Files</a></li>
+            <li class="nav-item"><a class="nav-link" href=#summary_compare_keys data-toggle="tab">Accessed Registry Keys</a></li>
+            <li class="nav-item"><a class="nav-link" href=#summary_compare_read_keys data-toggle="tab">Read Registry Keys</a></li>
+            <li class="nav-item"><a class="nav-link" href=#summary_compare_write_keys data-toggle="tab">Modified Registry Keys</a></li>
+            <li class="nav-item"><a class="nav-link" href=#summary_compare_delete_keys data-toggle="tab">Deleted Registry Keys</a></li>
+            <li class="nav-item"><a class="nav-link" href=#summary_compare_resolved_apis data-toggle="tab">Resolved APIs</a></li>
+            <li class="nav-item"><a class="nav-link" href=#summary_compare_executed_commands data-toggle="tab">Executed Commands</a></li>
+            <li class="nav-item"><a class="nav-link" href=#summary_compare_mutexes data-toggle="tab">Mutexes</a></li>
+            <li class="nav-item"><a class="nav-link" href=#summary_compare_created_services data-toggle="tab">Created Services</a></li>
+            <li class="nav-item"><a class="nav-link" href=#summary_compare_started_services data-toggle="tab">Started Services</a></li>
         </ul>
         <div class="tab-content">
             <div class="tab-pane fade show active" id="summary_compare_files">
diff --git a/web/templates/compare/hash.html b/web/templates/compare/hash.html
index 124500aa13f..4d9f591fecf 100644
--- a/web/templates/compare/hash.html
+++ b/web/templates/compare/hash.html
@@ -11,7 +11,7 @@ <h2 style="text-align: center;">Analysis 1</h2>
         <h2 style="text-align: center;">Analysis 2</h2>
 
         <p>You need to select the second analysis.</p>
-        {% if records.count > 0 %}
+        {% if records|length > 0 %}
             <p>Following are all the analyses of the file with provided MD5 <b>{{hash}}</b>:</p>
             {% include "compare/_summary_table.html" %}
         {% else %}
diff --git a/web/templates/compare/left.html b/web/templates/compare/left.html
index 874eec19cb7..0ffcb34f0bf 100644
--- a/web/templates/compare/left.html
+++ b/web/templates/compare/left.html
@@ -23,7 +23,7 @@ <h2 style="text-align: center;">Analysis 1</h2>
         <h2 style="text-align: center;">Analysis 2</h2>
 
         <p>You need to select the second analysis.</p>
-        {% if records.count > 0 %}
+        {% if records|length > 0 %}
             <p>Following are all the other analyses of the same file:</p>
             {% include "compare/_summary_table.html" %}
         {% else %}
diff --git a/web/templates/dashboard/index.html b/web/templates/dashboard/index.html
index 57d0c5ce9a0..04ab94d3fa1 100644
--- a/web/templates/dashboard/index.html
+++ b/web/templates/dashboard/index.html
@@ -21,7 +21,6 @@ <h1>{{report.total_samples}}</h1>
 </div>
 
 {% if report.top_detections %}
-<h4>Top 20 detections</h4>
     <table class="table table-striped table-bordered table-sm">
         {% for block in report.top_detections %}
         <td style="text-align:center">
diff --git a/web/templates/header.html b/web/templates/header.html
index 65de71975c3..033d8508aec 100644
--- a/web/templates/header.html
+++ b/web/templates/header.html
@@ -1,8 +1,12 @@
 <!DOCTYPE html>
-<html lang="en" xmlns="http://www.w3.org/1999/xhtml">
+<html class="datatable-dark" lang="en" xmlns="http://www.w3.org/1999/xhtml">
 <head>
 <meta charset="utf-8">
-<title>CAPEv2 Sandbox</title>
+{% if title %}
+<title>{{ title|add:" · CAPE Sandbox" }}</title>
+{% else %}
+<title>CAPE Sandbox</title>
+{% endif %}
 <meta name="viewport" content="width=device-width, initial-scale=1.0">
 <meta name="description" content="CAPE Sandbox">
 <meta name="author" content="CAPE Sandbox">
@@ -42,9 +46,10 @@
               </div>
             </li>
             {% endif %}
-            <li class="nav-item"><a class="nav-link" href="https://capev2.readthedocs.io/en/latest/"><span class="fas fa-info"></span> Documentation</a></li>
+            <li class="nav-item"><a class="nav-link" href="https://capev2.readthedocs.io/en/latest/"><span class="fas fa-info"></span> Docs</a></li>
+            <li class="nav-item"><a class="nav-link" href="https://github.com/kevoreilly/CAPEv2/blob/master/changelog.md"><span class="far fa-newspaper"></span> Changelog</a></li>
           </ul>
-          <form class="form-inline" style="margin:0px;" action="{% url "search" %}" enctype="multipart/form-data" method="post">{% csrf_token %}
+          <form class="form-inline" style="margin:0px;" action="{% url "search" %}" method="get">
             <input class="form-control" type="text" id="form_search" name="search" placeholder="Search term as regex">
             <button class="btn btn-secondary" type="submit">Search</button>
           </form>
diff --git a/web/templates/statistics.html b/web/templates/statistics.html
index 8ed7744fed6..e09dd3116ef 100644
--- a/web/templates/statistics.html
+++ b/web/templates/statistics.html
@@ -5,25 +5,39 @@
 <h4>Information for {{days}} days. Total number of tasks: {{statistics.total}}, Average per day: {{statistics.average}}</h4>
 
 {% if statistics.detections %}
-<h4>Top 20 detections</h4>
   <table class="table table-striped table-bordered">
-    {% for block in statistics.detections %}
-        <td>{{block.total}}: <span class="text-danger">{{block.family}}</span></td>
-          <!--<form action="{% url "search" %}" method="post">
-          <input type="hidden" id="search" type="text" name="search" value="malfamily:{{name}}">
-          <input style="color:#EE1B2F;font-weight: bold;" class="btn btn-link btn-sm" type="submit" value="{{name}}">
-        </form>
-        -->
+    {% for block in statistics.detections.items %}
+      {% if block.family %}
+        <td>{{block.total}}: <a href="/analysis/search/detections:{{block.family}}"><span style="color:#EE1B2F;font-weight: bold;">{{block.family}}</span></a></td>
+      {% endif %}
+      {% if forloop.counter|divisibleby:"5" %}
+          </tr>
+      {% elif forloop.last %}
+          </tr>
+      {% endif %}
+
+    {% endfor %}
+</table>
+{% endif %}
 
-      {% if forloop.counter|divisibleby:"4" %}
+{% if statistics.asns %}
+  <center><h4>Top ASN</h4></center>
+  <table class="table table-striped table-hover" style="table-layout: fixed; width: 50%; text-align: center;margin-left: auto;margin-right: auto;">
+    {% for block in statistics.asns %}
+      {% if block.asn %}
+        <td>{{block.total}}: <a href="/analysis/search/asn:{{block.asn}}"><span style="color:#EE1B2F;font-weight: bold;">{{block.asn}}</span></a></td>
+      {% endif %}
+      {% if forloop.counter|divisibleby:"5" %}
           </tr>
       {% elif forloop.last %}
           </tr>
       {% endif %}
+
     {% endfor %}
 </table>
 {% endif %}
 
+<h4>Tasks per day</h4>
 <table class="table table-striped table-hover">
     <thead>
       <tr>
@@ -46,103 +60,135 @@ <h4>Top 20 detections</h4>
   </table>
 
 
-{% if statistics.distributed_tasks %}
-<h4>Cluster details</h4>
-<table class="table table-striped table-hover">
-  <thead>
-    <tr>
-      <th scope="col">Day</th>
-      <th scope="col">Node - Tasks</th>
-    </tr>
-  </thead>
-  <tbody>
-  {% for day, block in statistics.distributed_tasks.items %}
+<hr />
+
+  {% if statistics.custom_statistics %}
+  <h4>Custom Signatures data only for Volatility/static extraction</h4>
+  <table class="table table-striped table-hover">
+    <thead>
       <tr>
-          <th scope="row">{{day}}</th>
-          <td>
-            {% for name, tasks in block.items %}
-              <li>Node: {{name}} - Tasks {{tasks}}</li>
-            {% endfor %}
-          </td>
+        <th scope="col">Name</th>
+        <th scope="col">Total time in minutes</th>
+        <th scope="col">Runs</th>
+        <th scope="col">Extracted </th>
+        <th scope="col">Average time in minutes(Total/runs)</th>
       </tr>
-  {% endfor %}
-  </tbody>
-</table>
-{% endif %}
-
-  {% if statistics.processing %}
-    <h4>Processing</h4>
-    <table class="table table-striped table-hover">
-      <thead>
-        <tr>
-          <th scope="col">Name</th>
-          <th scope="col">Total time in minutes</th>
-          <th scope="col">Runs</th>
-          <th scope="col">Average time in minutes(Total/runs)</th>
-        </tr>
-      </thead>
-      <tbody>
-      {% for name, time in statistics.processing.items %}
-          <tr>
-              <td>{{name}}</td>
-              <td>{{time.total}}</td>
-              <td>{{time.runs}}</td>
-              <td>{{time.average}}</td>
-          </tr>
-      {% endfor %}
-      </tbody>
-    </table>
-  {% endif %}
-
-  {% if statistics.signatures %}
-    <h4>Signatures</h4>
-    <table class="table table-striped table-hover">
-      <thead>
+    </thead>
+    <tbody>
+    {% for name, time in statistics.custom_statistics.items %}
         <tr>
-          <th scope="col">Name</th>
-          <th scope="col">Total time in minutes</th>
-          <th scope="col">Runs</th>
-          <th scope="col">Average time in minutes(Total/runs)</th>
+            <td>{{name}}</td>
+            <td>{{time.total}}</td>
+            <td>{{time.runs}}</td>
+            <td>{{time.successful}}</td>
+            <td>{{time.average}}</td>
         </tr>
-      </thead>
-      <tbody>
-      {% for name, time in statistics.signatures.items %}
-          <tr>
-              <td>{{name}}</td>
-              <td>{{time.total}}</td>
-              <td>{{time.runs}}</td>
-              <td>{{time.average}}</td>
-          </tr>
-      {% endfor %}
-      </tbody>
-    </table>
-  {% endif %}
+    {% endfor %}
+    </tbody>
+  </table>
+{% endif %}
+<h4>Time per module</h4>
+<div class="container">
+    <div class="row">
+        {% if statistics.processing %}
+        <div class="col-sm">
+            <h4>Processing</h4>
+            <table class="table table-striped table-hover">
+              <thead>
+                <tr>
+                  <th scope="col">Name</th>
+                  <th scope="col">Total time in minutes</th>
+                  <th scope="col">Runs</th>
+                  <th scope="col">Average time in minutes(Total/runs)</th>
+                </tr>
+              </thead>
+              <tbody>
+              {% for name, time in statistics.processing.items %}
+                  <tr>
+                      <td>{{name}}</td>
+                      <td>{{time.total}}</td>
+                      <td>{{time.runs}}</td>
+                      <td>{{time.average}}</td>
+                  </tr>
+              {% endfor %}
+              </tbody>
+            </table>
+        </div>
+        {% endif %}
+        {% if statistics.signatures %}
+        <div class="col-sm">
+            <h4>Signatures</h4>
+            <table class="table table-striped table-hover">
+              <thead>
+                <tr>
+                  <th scope="col">Name</th>
+                  <th scope="col">Total time in minutes</th>
+                  <th scope="col">Runs</th>
+                  <th scope="col">Average time in minutes(Total/runs)</th>
+                </tr>
+              </thead>
+              <tbody>
+              {% for name, time in statistics.signatures.items %}
+                  <tr>
+                      <td>{{name}}</td>
+                      <td>{{time.total}}</td>
+                      <td>{{time.runs}}</td>
+                      <td>{{time.average}}</td>
+                  </tr>
+              {% endfor %}
+              </tbody>
+            </table>
+        </div>
+        {% endif %}
+        {% if statistics.reporting %}
+        <div class="col-sm">
+            <h4>Reporting</h4>
+            <table class="table table-striped table-hover">
+              <thead>
+                <tr>
+                  <th scope="col">Name</th>
+                  <th scope="col">Total time in minutes</th>
+                  <th scope="col">Runs</th>
+                  <th scope="col">Average time in minutes(Total/runs)</th>
+                </tr>
+              </thead>
+              <tbody>
+              {% for name, time in statistics.reporting.items %}
+                  <tr>
+                      <td>{{name}}</td>
+                      <td>{{time.total}}</td>
+                      <td>{{time.runs}}</td>
+                      <td>{{time.average}}</td>
+                  </tr>
+              {% endfor %}
+              </tbody>
+            </table>
+        </div>
+        {% endif %}
+    </div>
+</div>
 
-  {% if statistics.reporting %}
-    <h4>Reporting</h4>
-    <table class="table table-striped table-hover">
-      <thead>
-        <tr>
-          <th scope="col">Name</th>
-          <th scope="col">Total time in minutes</th>
-          <th scope="col">Runs</th>
-          <th scope="col">Average time in minutes(Total/runs)</th>
-        </tr>
-      </thead>
-      <tbody>
-      {% for name, time in statistics.reporting.items %}
-          <tr>
-              <td>{{name}}</td>
-              <td>{{time.total}}</td>
-              <td>{{time.runs}}</td>
-              <td>{{time.average}}</td>
-          </tr>
-      {% endfor %}
-      </tbody>
-    </table>
-  {% endif %}
 {% else %}
     <div class="alert alert-primary">No statistics found.</div>
 {% endif %}
 
+{% if statistics.distributed_tasks %}
+<h4>Cluster details</h4>
+<div class="container">
+    <div class="row">
+        {% for day, block in statistics.distributed_tasks.items %}
+        <div class="col-2">
+            <th scope="row">{{day}}</th>
+            <td>
+            {% for name, tasks in block.items %}
+              <li>Node: {{name}} - Tasks {{tasks}}</li>
+            {% endfor %}
+          </td>
+
+        </div>
+        {% endfor %}
+    </div>
+</div>
+{% endif %}
+
 {% endblock %}
diff --git a/web/templates/statistics/index.html b/web/templates/statistics/index.html
deleted file mode 100644
index ce681a88c23..00000000000
--- a/web/templates/statistics/index.html
+++ /dev/null
@@ -1,50 +0,0 @@
-{% if analysis.statistics %}
-{% load analysis_tags %}
-    <div class="row">
-    <div class="card col-md-6">
-      <h4>Processing&emsp;( {{ analysis.statistics.processing|stats_total }} seconds )</h4>
-        <ul class="list-group">
-            {% for stat in analysis.statistics.processing|dictsortreversed:"time" %}
-            {% if stat.time %}
-            <li class="list-group-item">
-                <span class="badge.badge-pill">{{stat.time}}</span>
-                {{stat.name}}
-            </li>
-            {% endif %}
-            {% endfor %}
-        </ul>
-    </div>
-    </div>
-    <div class="row">
-    <div class="card col-md-6">
-        <h4>Signatures&emsp;( {{ analysis.statistics.signatures|stats_total }} seconds )</h4>
-        <ul class="list-group">
-            {% for stat in analysis.statistics.signatures|dictsortreversed:"time" %}
-            {% if stat.time %}
-            <li class="list-group-item">
-                <span class="badge.badge-pill">{{stat.time}}</span>
-                {{stat.name}}
-            </li>
-            {% endif %}
-            {% endfor %}
-        </ul>
-    </div>
-    </div>
-    <div class="row">
-    <div class="card col-md-6">
-        <h4>Reporting&emsp;( {{ analysis.statistics.reporting|stats_total }} seconds )</h4>
-        <ul class="list-group">
-            {% for stat in analysis.statistics.reporting|dictsortreversed:"time" %}
-            {% if stat.time %}
-            <li class="list-group-item">
-                <span class="badge.badge-pill">{{stat.time}}</span>
-                {{stat.name}}
-            </li>
-            {% endif %}
-            {% endfor %}
-        </ul>
-    </div>
-    </div>
-{% else %}
-    <div class="alert alert-primary">No statistics found.</div>
-{% endif %}
diff --git a/web/templates/submission/complete.html b/web/templates/submission/complete.html
index 92604f64f67..92b20b1d105 100644
--- a/web/templates/submission/complete.html
+++ b/web/templates/submission/complete.html
@@ -9,6 +9,16 @@
     Click on the links to monitor the status of the submission.
 </div>
 
+{% if remote_console %}
+    <div class="alert alert-secondary"><h4>Remote Control Session</h4>
+        Tasks:
+        {% for task in tasks %}
+            <a href="{% url "remote_session" task %}">{{task}}</a>
+        {% endfor %}.
+        Click on the link to start an interactive remote session.
+    </div>
+{% endif %}
+
 {% if existent_tasks %}
     {% for sha256, details in existent_tasks.items %}
         <div class="alert alert-secondary"><h4>Existent tasks for this hash: {{sha256}}!</h4>
diff --git a/web/templates/submission/index.html b/web/templates/submission/index.html
index 139f24683cb..ca6e31dbcba 100644
--- a/web/templates/submission/index.html
+++ b/web/templates/submission/index.html
@@ -56,6 +56,12 @@
             document.getElementById('non-pcap-2').style.display = "block";
         }
     });
+    $('#form_package').change(function () {
+        let title = $('option:selected', this).attr('title');
+        $("#package_description").text(title);
+    });
+    // tooltips
+    $('[data-toggle="tooltip"]').tooltip();
 });
 </script>
 <div class="row">
@@ -67,11 +73,10 @@
                     {% if resubmit %}
                         <li class="nav-item active"><a class="nav-link" href="#resubmit" data-toggle="tab"><span class="fa fa-file"></span> File resubmission</a></li>
                     {% else %}
-                        <li class="nav-item active"><a class="nav-link" href="#file" data-toggle="tab"><span class="fa fa-file"></span> File</a></li>
-                        {% if config.vt %}
-                            <li class="nav-item"><a class="nav-link" href="#vtdl" data-toggle="tab"><span class="fa fa-download"></span>VirusTotal</a></li>
+                        <li class="nav-item active"><a class="nav-link" href="#file" data-toggle="tab"><span class="fa fa-file"></span> File(s)</a></li>
+                        {% if config.downloading_service %}
+                            <li class="nav-item"><a class="nav-link" href="#downloading_service" data-toggle="tab"><span class="fa fa-download"></span> Download</a></li>
                         {% endif %}
-                        <li class="nav-item"><a class="nav-link" href="#quarantine" data-toggle="tab"><span class="fa fa-fire"></span> Quarantine File</a></li>
                         {% if config.url_analysis %}
                             <li class="nav-item"><a class="nav-link" href="#url" data-toggle="tab"><span class="fa fa-globe"></span> URL</a></li>
                         {% endif %}
@@ -93,33 +98,20 @@
                     {% else %}
                         <div class="tab-pane fade show active" id="file">
                             <div class="input-group">
-                                <span class="input-group-append">
                                     <input type="text" class="form-control" readonly>
                                     <span class="btn btn-secondary btn-file">
                                         Select <input type="file" name="sample" multiple="multiple">
                                     </span>
-                                </span>
                             </div>
                         </div>
-
-                        {% if config.vt %}
-                        <div class="tab-pane fade show" id="vtdl">
-                            <div class="input-group col-md-12">
-                                <label class="sr-only" form="form_vtdl"> VirusTotal</label>
-                                <input type="text" class="form-control" id="form_vtdl" name="vtdl" placeholder="Enter comma separated hashes or just a hash" />
+                        {% if config.downloading_service %}
+                            <div class="tab-pane fade show" id="downloading_service">
+                                <div class="input-group col-md-12">
+                                    <label class="sr-only" form="form_downloading_service"> Sample download</label>
+                                    <input type="text" class="form-control" id="form_downloading_service" name="hashes" placeholder="Enter comma separated hashes or just a hash" />
+                                </div>
                             </div>
-                        </div>
                         {% endif %}
-                        <div class="tab-pane fade show" id="quarantine">
-                            <div class="input-group col-md-6">
-                                <span class="input-group-append">
-                                    <input type="text" class="form-control" readonly>
-                                    <span class="btn btn-secondary btn-file">
-                                        Select <input type="file" name="quarantine" multiple="multiple">
-                                    </span>
-                                </span>
-                            </div>
-                        </div>
                         <div class="tab-pane fade show" id="url">
                             <div class="input-group col-md-12">
                                 <label class="sr-only" form="form_url">URL</label>
@@ -135,22 +127,18 @@
                         </div>
                         {% endif %}
                         <div class="tab-pane fade show" id="pcap">
-                            <div class="input-group col-md-6">
-                                <span class="input-group-append">
+                            <div class="input-group">
                                     <input type="text" class="form-control" readonly>
                                     <span class="btn btn-secondary btn-file">
                                         Select <input type="file" name="pcap" multiple="multiple">
                                     </span>
-                                </span>
                             </div>
                         </div>
                         <div class="tab-pane fade show" id="static">
-                            <div class="input-group col-md-6">
-                                <span class="input-group-append">
+                            <div class="input-group">
                                     <input type="text" class="form-control" readonly>
                                     <span class="btn btn-secondary btn-file">
                                         Select <input type="file" name="static" multiple="multiple">
-                                    </span>
                                 </span>
                             </div>
                         </div>
@@ -181,16 +169,29 @@
                                     </div>
                                 </div>
                                 {% endif %}
-
-
+                                {% if resubmit %}
+                                    <div class="form-group">
+                                        <label for="form_job_category">Task Category</label>
+                                        <select class="form-control" id="form_job_category" name="job_category">
+                                            <option value="hash" checked>Resubmit</option>
+                                            <option value="sample">Files</option>
+                                            <option value="static">Static analysis</option>
+                                            <option value="pcap">Pcap</option>
+                                            <option value="dlnexec">Download and Execute</option>
+                                            <option value="vtdl">Virustotal Download</option>
+                                            <option value="bazaar">MalwareBazaar Download</option>
+                                        </select>
+                                    </div>
+                                {% endif %}
                                 <div class="form-group">
-                                    <label for="form_package">Analysis Package</label>
+                                    <label for="form_package">Analysis Package (hover for more info)</label>
                                     <select class="form-control" id="form_package" name="package">
-                                        <option value="" active>Detect Automatically</option>
+                                        <option value="" title="">Detect Automatically</option>
                                         {% for package in packages %}
-                                        <option value="{{package}}">{{package}}</option>
+                                        <option value="{{package.value}}" title="{{ package.description }}">{{package.name}} - {{ package.summary }}</option>
                                         {% endfor %}
                                     </select>
+                                    <small id="package_description"></small>
                                 </div>
                                 {% if not config.dist_master_storage_only %}
                                     <div class="form-group">
@@ -234,7 +235,11 @@
                                             <option value="internet"{% if route == "internet" %} selected{% endif %}>Internet (dirty line, {{ internet }})</option>
                                         {% endif %}}
                                         {% if random_route %}
-                                            <option value="{{random_route}}" selected>{{random_route}}</option>
+                                            {% if random_route.type == "SOCKS5" %}
+                                            <option value="{{ random_route.name }}" selected hidden>[RANDOM] {{ random_route.name }} - {{ random_route.host }}:{{ random_route.port }} ({{ random_route.type }})</option>
+                                            {% else %}
+                                            <option value="{{ vpn.name }}" selected hidden>[RANDOM] {{ vpn.description }} ({{ vpn.interface }}, {{ vpn.type }})</option>
+                                            {% endif %}
                                         {% endif %}
                                         {% if inetsim %}
                                             <option value="inetsim">inetsim/fakenet-ng</option>
@@ -243,20 +248,57 @@
                                             <option value="tor">tor</option>
                                         {% endif %}
                                         {% for vpn in vpns %}
-                                            <option value="{{ vpn.name }}">{{ vpn.description }} (VPN, {{ vpn.interface }})</option>
+                                            <option value="{{ vpn.name }}">{{ vpn.description }} ({{ vpn.interface }}, {{ vpn.type }})</option>
                                         {% endfor %}
 
-                                        {% for socks5 in socks5s|dictsort:"0.lower" %}
-                                            <option value="{{ socks5.name }}">{{ socks5.description }} (socks5)</option>
+                                        {% for socks5 in socks5s %}
+                                            <option value="{{ socks5.name }}">{{ socks5.name }} - {{ socks5.host }}:{{ socks5.port }} ({{ socks5.type }})</option>
                                         {% endfor %}
-                                        <option value="none" >Drop all VM traffic</option>
+                                        {% if all_exitnodes %}
+                                            {% for route_name in all_exitnodes %}
+                                                <option value="{{ route_name }}">{{ route_name }} (will pick proper server)</option>
+                                            {% endfor %}
+                                        {% endif %}
+                                        <option value="none"{% if route == "none" %} selected{% endif %}>Drop all VM traffic</option>
                                     </select>
                                 </div>
                                 <div class="form-group">
                                     <label for="form_timeout">Timeout (in seconds)</label>
                                     <input type="text" class="form-control" id="form_timeout" name="timeout" value="{{config.timeout}}" />
                                 </div>
+                                {% if config.linux_on_gui %}
                                 <div class="form-group">
+                                    <label for="form_lin_options">Linux Options (<a href="#optionlinuxhelp" data-toggle="collapse">help</a>)</label>
+                                    <div id="optionlinuxhelp" class="collapse">
+                                        <p class="text-muted" style="margin-top: 10px;">Syntax is option1=val1,option2=val2,option3=val3, etc.</p>
+                                        <table class="table table-striped table-centered">
+                                            <thead>
+                                                <tr>
+                                                    <th style="text-align: center;">Option</th>
+                                                    <th style="text-align: center;">Description</th>
+                                                </tr>
+                                            </thead>
+                                            <tbody>
+                                                <tr>
+                                                    <td><code>filename</code></td>
+                                                    <td>Rename the sample file</td>
+                                                </tr>
+                                                <tr>
+                                                    <td><code>file</code></td>
+                                                    <td>When using the zip or rar package, set the name of the file to execute</td>
+                                                </tr>
+                                                <tr>
+                                                    <td><code>password</code></td>
+                                                    <td>When using the zip/rar package, set the password to use for extraction/decryption.  Also used when analyzing password-protected Office documents.</td>
+                                                </tr>
+                                            </tbody>
+                                        </table>
+                                    </div>
+                                    <input type="text" class="form-control" id="form_lin_options" name="lin_options"/>
+                                </div>
+                                {% endif %}
+                            </div>
+                            <div class="form-group">
                                     <label for="form_options">Options (<a href="#optionwindowshelp" data-toggle="collapse">help</a>)</label>
                                     <div id="optionwindowshelp" class="collapse">
                                         <p class="text-muted" style="margin-top: 10px;">Syntax is option1=val1,option2=val2,option3=val3, etc.</p>
@@ -282,6 +324,10 @@
                                                         curdir=%APPDATA%\Microsoft\Windows\Start Menu\Programs\Startup
                                                     </td>
                                                 </tr>
+                                                <tr>
+                                                    <td><code>executiondir</code></td>
+                                                    <td>Sets directory to launch the file from. Need not be the same as the directory of sample file. Defaults to %TEMP% if both executiondir and curdir are not specified. Only supports full paths</td>
+                                                </tr>
                                                 <tr>
                                                     <td><code>free</code></td>
                                                     <td>Run without monitoring (disables many capabilities) Ex: free=1</td>
@@ -324,7 +370,7 @@
                                                 </tr>
                                                 <tr>
                                                     <td><code>function</code></td>
-                                                    <td>When using the dll package, set the name of the exported function to execute</td>
+                                                    <td>When using the dll package, set the name of the exported function/ordinal to execute. Can be multiple function/ordinals splited by colon. Ex: function=func1:func2</td>
                                                 </tr>
                                                 <tr>
                                                     <td><code>dllloader</code></td>
@@ -454,43 +500,59 @@
                                                     <td><code>store_memdump</code></td>
                                                     <td>Will force STORE memdump, only when submitting to analyzer node directly, as distributed cluster can modify this </td>
                                                 </tr>
-                                            </tbody>
-                                        </table>
-                                    </div>
-                                    <input type="text" class="form-control" id="form_options" name="options"/>
-                                </div>
-                                {% if config.linux_on_gui %}
-                                <div class="form-group">
-                                    <label for="form_lin_options">Linux Options (<a href="#optionlinuxhelp" data-toggle="collapse">help</a>)</label>
-                                    <div id="optionlinuxhelp" class="collapse">
-                                        <p class="text-muted" style="margin-top: 10px;">Syntax is option1=val1,option2=val2,option3=val3, etc.</p>
-                                        <table class="table table-striped table-centered">
-                                            <thead>
                                                 <tr>
-                                                    <th style="text-align: center;">Option</th>
-                                                    <th style="text-align: center;">Description</th>
+                                                    <td><code>pre_script_args</code></td>
+                                                    <td>Command line arguments for pre_script. Example: pre_script_args=file1 file2 file3</td>
                                                 </tr>
-                                            </thead>
-                                            <tbody>
                                                 <tr>
-                                                    <td><code>filename</code></td>
-                                                    <td>Rename the sample file</td>
+                                                    <td><code>pre_script_timeout</code></td>
+                                                    <td>pre_script_timeout will default to 60 seconds. Script will stop after timeout Example: pre_script_timeout=30</td>
                                                 </tr>
                                                 <tr>
-                                                    <td><code>file</code></td>
-                                                    <td>When using the zip or rar package, set the name of the file to execute</td>
+                                                    <td><code>during_script_args</code></td>
+                                                    <td>Command line arguments for during_script. Example: during_script_args=file1 file2 file3</td>
                                                 </tr>
                                                 <tr>
-                                                    <td><code>password</code></td>
-                                                    <td>When using the zip/rar package, set the password to use for extraction/decryption.  Also used when analyzing password-protected Office documents.</td>
+                                                    <td><code>ignore_size_check</code></td>
+                                                    <td>Allow ignore file size, must be enabled in conf/web.conf</td>
+                                                </tr>
+                                                <tr>
+                                                    <td><code>pwsh</code></td>
+                                                    <td>When using the ps1 package, prefer PowerShell Core (pwsh.exe) if available (defaults to powershell.exe)</td>
+                                                </tr>
+                                                <tr>
+                                                    <td><code>unpacker</code></td>
+                                                    <td>Ex: unpacker=2 - Add description here</td>
+                                                </tr>
+                                                <tr>
+                                                    <td><code>check_shellcode</code></td>
+                                                    <td>Setting check_shellcode=0 will disable checking for shellcode during package identification and extracting from archive</td>
+                                                </tr>
+                                                <tr>
+                                                    <td><code>unhook-apis</code></td>
+                                                    <td>Capability to dynamically unhook previously hooked functions (unhook-apis option takes colon-separated list e.g. unhook-apis=NtSetInformationThread:NtDelayExecution)</td>
+                                                </tr>
+                                                <tr>
+                                                    <td><code>ttd</code></td>
+                                                    <td>ttd=1. TTD integration (Microsoft Time Travel Debugging). Requires binaries to be placed in correct folder</td>
+                                                </tr>
+                                                <tr>
+                                                    <td><code>polarproxy</code></td>
+                                                    <td>Run PolarProxy to generate PCAP with decrypted TLS streams. Ex: polarproxy=1</td>
+                                                </tr>
+                                                <tr>
+                                                    <td><code>tlsport</code></td>
+                                                    <td>TLS port for PolarProxy to MITM (Default: 443). Ex: tlsport=10443</td>
+                                                </tr>
+                                                <tr>
+                                                    <td><code>mitmdump</code></td>
+                                                    <td>Run mitmdump to generate HAR with decrypted TLS streams. Ex: mitmdump=1</td>
                                                 </tr>
                                             </tbody>
                                         </table>
                                     </div>
-                                    <input type="text" class="form-control" id="form_lin_options" name="lin_options"/>
+                                    <input type="text" class="form-control" id="form_options" name="options"/>
                                 </div>
-                                {% endif %}
-                            </div>
                             <div class="form-group">
                                 <label for="form_priority">Priority</label>
                                 <select class="form-control" id="form_priority" name="priority">
@@ -519,75 +581,128 @@
                                 <label for="form_tags_tasks">Tasks Tags(allows set "tag" for your jobs)</label>
                                 <input type="text" class="form-control" id="form_tags_tasks" name="tags_tasks" />
                             </div>
-                            <div class="form-group">
-                                <label for="form_custom">Custom</label>
-                                <input type="text" class="form-control" id="form_custom" name="custom" />
-                            </div>
-                            <div class="form-check">
-                                <label>
-                                    <input type="checkbox" name="process_dump" /> Disable process dumps
-                                </label>
-                            </div>
-                            {% if config.procmemory %}
-                            <div class="form-check">
-                                <label>
-                                    <input type="checkbox" name="process_memory"/> Full process memory dumps
-                                </label>
-                            </div>
-                            {% endif %}
-                            <div class="form-check">
-                                <label>
-                                    <input type="checkbox" name="import_reconstruction" /> Enable import reconstruction in process dumps
-                                </label>
-                            </div>
-                            {% if config.memory %}
-                            <div class="form-check">
-                                <label>
-                                    <input type="checkbox" name="memory" /> Full Memory Dump <span class="text-muted"><small>(if the "memory" processing module is enabled, will launch a Volatility analysis)</small></span>
-                                </label>
+                            {% if config.pre_script %}
+                            <div class="form-group tab-pane fade show active" id="file">
+                                <label for="form_pre_script">Python Pre-Execution Script to run</label>
+                                <div id="form_pre_script" class="input-group">
+                                    <input type="text" class="form-control" style="background-color: darkgrey !important;" readonly>
+                                    <span class="btn btn-secondary btn-file">
+                                        Select <input type="file" name="pre_script">
+                                    </span>
+                                </div>
                             </div>
                             {% endif %}
-                            <div class="form-check">
-                                <label>
-                                    <input type="checkbox" name="enforce_timeout" /> Enforce Timeout
-                                </label>
-                            </div>
-                            <div class="form-check">
-                                <label>
-                                    <input type="checkbox" name="free" /> Run without monitoring <span class="text-muted"><small>(disables many capabilities)</small></span>
-                                </label>
-                            </div>
-                            <div class="form-check">
-                                <label>
-                                    <input type="checkbox" name="disable_cape" /> Disable automatic job submission </small></span>
-                                </label>
-                            </div>
-                            <div class="form-check">
-                                <label>
-                                    <input type="checkbox" name="norefer" /> No Fake Referrer for URL Tasks
-                                </label>
-                            </div>
-                            <div class="form-check">
-                                <label>
-                                    <input type="checkbox" name="nohuman" /> Disable automated interaction
-                                </label>
-                            </div>
-                            {% if config.kernel %}
-                            <div class="form-check">
-                                <label>
-                                    <input type="checkbox" name="kernel_analysis" /> Enable zer0m0n kernel-based behavioral analysis
-                                </label>
+                            {% if config.during_script %}
+                            <div class="form-group tab-pane fade show active" id="file">
+                                <label for="form_during_script">Python During-Execution Script to run</label>
+                                <div id="form_during_script" class="input-group">
+                                    <input type="text" class="form-control" style="background-color: darkgrey !important;" readonly>
+                                    <span class="btn btn-secondary btn-file">
+                                        Select <input type="file" name="during_script">
+                                    </span>
+                                </div>
                             </div>
                             {% endif %}
-                            <div class="form-check">
-                                <label>
-                                    <input type="checkbox" name="static"/> Try to extract config without VM <span class="text-muted"><small>(Submit to VM if not extracted)</small></span>
-                                </label>
+                            <div class="form-group">
+                                <label for="form_custom">Custom</label>
+                                <input type="text" class="form-control" id="form_custom" name="custom" />
                             </div>
-                            <div class="form-check">
-                                <label>
-                                    <input type="checkbox" name="oldloader" /> Old loader <span class="text-muted"><small>(Use legacy (spender) loader)</small></span>
-                                </label>
+
+                            <!-- Button to toggle the collapse -->
+                            <button class="btn btn-secondary btn-sm mb-3" type="button" data-toggle="collapse" data-target="#advancedOptions" aria-expanded="false" aria-controls="advancedOptions">
+                            Advanced Options
+                            </button>
+                            <div class="collapse" id="advancedOptions">
+                                <div class="form-check">
+                                    <label>
+                                        <input type="checkbox" name="process_dump" /> Disable process dumps
+                                    </label>
+                                </div>
+                                {% if config.procmemory %}
+                                <div class="form-check">
+                                    <label>
+                                        <input type="checkbox" name="process_memory"/> Full process memory dumps
+                                    </label>
+                                </div>
+                                {% endif %}
+                                {% if config.amsidump %}
+                                <div class="form-check">
+                                    <label>
+                                        <input type="checkbox" name="amsidump" /> AMSI dumps <span class="text-muted"><small>(Windows 10+ Anti-Malware Scan Interface)</small></span>
+                                    </label>
+                                </div>
+                                {% endif %}
+                                <div class="form-check">
+                                    <label>
+                                        <input type="checkbox" name="import_reconstruction" data-toggle="tooltip" title="Where an unpacked sample like from upx is missing imports for static analysis" /> Enable import reconstruction in process dumps
+                                    </label>
+                                </div>
+                                {% if config.memory %}
+                                <div class="form-check">
+                                    <label>
+                                        <input type="checkbox" name="memory" /> Full Memory Dump <span class="text-muted"><small>(if the "memory" processing module is enabled, will launch a Volatility analysis)</small></span>
+                                    </label>
+                                </div>
+                                {% endif %}
+                                <div class="form-check">
+                                    <label>
+                                        <input type="checkbox" name="enforce_timeout" /> Enforce Timeout
+                                    </label>
+                                </div>
+                                <div class="form-check">
+                                    <label>
+                                        <input type="checkbox" name="free" /> Run without monitoring <span class="text-muted"><small>(disables many capabilities)</small></span>
+                                    </label>
+                                </div>
+                                <div class="form-check">
+                                    <label>
+                                        <input type="checkbox" name="unpacker" data-toggle="tooltip" title="Where default unpacking isn't producing good/early enough capture (very rare)" /> 'Active' unpacking <span class="text-muted"><small>(uses debugger breakpoints) </small></span>
+                                    </label>
+                                </div>
+                                <div class="form-check">
+                                    <label>
+                                        <input type="checkbox" name="syscall" checked/> Syscall hooks <span class="text-muted"><small>(Windows 10+) </small></span>
+                                    </label>
+                                </div>
+                                <div class="form-check">
+                                    <label>
+                                        <input type="checkbox" name="norefer" /> No Fake Referrer for URL Tasks
+                                    </label>
+                                </div>
+                                <div class="form-check">
+                                    <label>
+                                        <input type="checkbox" name="nohuman" /> Disable automated interaction
+                                    </label>
+                                </div>
+                                {% if config.interactive_desktop %}
+                                <div class="form-check">
+                                    <label>
+                                        <input type="checkbox" id="interactive" name="interactive" /> Interactive desktop
+                                    </label>
+                                </div>
+                                <div class="form-check">
+                                    <label>
+                                        <input type="checkbox" id="manual" name="manual" disabled /> Manual detonation <span class="text-muted"><small>(Must be used with Interactive desktop!)</small></span>
+                                    </label>
+                                </div>
+                                {% endif %}
+                                {% if config.kernel %}
+                                <div class="form-check">
+                                    <label>
+                                        <input type="checkbox" name="kernel_analysis" /> Enable zer0m0n kernel-based behavioral analysis
+                                    </label>
+                                </div>
+                                {% endif %}
+                                <div class="form-check">
+                                    <label>
+                                        <input type="checkbox" name="static"/> Try to extract config without VM <span class="text-muted"><small>(Submit to VM if not extracted)</small></span>
+                                    </label>
+                                </div>
+                                <div class="form-check">
+                                    <label>
+                                        <input type="checkbox" name="oldloader" data-toggle="tooltip" title="May be useful in some rare cases where detonation fails" /> Thread-based monitor injection <span class="text-muted"><small>(Cuckoo-style)</small></span>
+                                    </label>
+                                </div>
                             </div>
                         </div>
                     </div>
@@ -598,4 +713,22 @@
         </form>
     </div>
 </div>
+<script>
+document.addEventListener("DOMContentLoaded", function() {
+    const interactive = document.getElementById("interactive");
+    const manual = document.getElementById("manual");
+
+    if (interactive && manual) {
+        const syncManualCheckbox = () => {
+            manual.disabled = !interactive.checked;
+            if (!interactive.checked) {
+                manual.checked = false;
+            }
+        };
+
+        syncManualCheckbox();
+        interactive.addEventListener("change", syncManualCheckbox);
+    }
+});
+</script>
 {% endblock %}
diff --git a/web/templates/submission/remote_status.html b/web/templates/submission/remote_status.html
new file mode 100644
index 00000000000..28f71cb752d
--- /dev/null
+++ b/web/templates/submission/remote_status.html
@@ -0,0 +1,18 @@
+{% extends "base.html" %}
+{% block content %}
+
+{% if running %}
+    <script>
+        window.open(window.location.origin + "/guac/{{task_id}}/{{session_data}}", "_self");
+    </script>
+{% else %}
+    <script type="text/JavaScript">setTimeout("location.reload(true);",5000);</script>
+    <div class="alert alert-secondary">
+        <h4>Hang on...</h4>
+        <p>The task is not running yet. This page will refresh every 5 seconds.</p>
+        <div class="progress progress-striped active" style="margin-top: 10px;">
+            <div class="progress-bar progress-bar-striped progress-bar-animated" style="width:100%"></div>
+        </div>
+    </div>
+{% endif %}
+{% endblock %}
diff --git a/web/templates/submission/status.html b/web/templates/submission/status.html
index 6dd821fcfb1..67eedd5d466 100644
--- a/web/templates/submission/status.html
+++ b/web/templates/submission/status.html
@@ -3,13 +3,21 @@
 
 {% if completed %}
     <div class="alert alert-secondary"><h4>Good news! :-)</h4>The analysis is completed, you can view it <a href="{% url "report" task_id %}">here</a>.</div>
+{% elif status == "failed_analysis" %}
+<div class="alert alert-secondary">
+    <h4>Status for task {{task_id}} - {{ target }}</h4>
+    <p>The analysis failed with status '{{status}}'. <a href="{% url "submission" task_id sha256 %}">Click here to resubmit.</a></p>
+</div>
 {% else %}
     <script type="text/JavaScript">setTimeout("location.reload(true);",30000);</script>
     <div class="alert alert-secondary">
-        <h4>Hang on...</h4>
+        <h4>Status for task {{task_id}} - {{ target }}</h4>
         <p>The analysis is not finished yet, it's still <b>{{status}}</b>. This page will refresh every 30 seconds.</p>
+        {% if session_data %}
+            <p>To view the Remote Session - click <a href='javascript:window.open(window.location.origin + "/guac/{{task_id}}/{{session_data}}", "_blank");'>here.</a></p>
+        {% endif %}
         <div class="progress progress-striped active" style="margin-top: 10px;">
-            <div class="progress-bar progress-bar-striped progress-bar-animated" style="width:100%"></div>
+                <div class="progress-bar progress-bar-striped progress-bar-animated" style="width:100%"></div>
         </div>
     </div>
 {% endif %}
diff --git a/web/templates/success_simple.html b/web/templates/success_simple.html
index 943fb070d88..5b88b14b2d0 100644
--- a/web/templates/success_simple.html
+++ b/web/templates/success_simple.html
@@ -1,5 +1,5 @@
 {% extends "base.html" %}
 {% block content %}
 
-<div class="alert alert-success">{{message}}</div>
+<div class="alert alert-primary">{{message}}</div>
 {% endblock %}
diff --git a/web/users/__init__.py b/web/users/__init__.py
index 8b137891791..e69de29bb2d 100644
--- a/web/users/__init__.py
+++ b/web/users/__init__.py
@@ -1 +0,0 @@
-
diff --git a/web/users/admin.py b/web/users/admin.py
index 238a41bb82a..7a0477aadf8 100644
--- a/web/users/admin.py
+++ b/web/users/admin.py
@@ -4,24 +4,45 @@
 
 from .models import UserProfile
 
+
+# Django 3.2
+# @admin.action(description='Mark selected stories as published')
+def make_active(modeladmin, news, queryset):
+    queryset.update(is_active=True)
+
+
+make_active.short_description = "Activate selected Users"
+
+
+def make_deactivated(modeladmin, news, queryset):
+    queryset.update(is_active=False)
+
+
+make_deactivated.short_description = "Deactivate selected Users"
+
+
 class ProfileInline(admin.StackedInline):
     model = UserProfile
     can_delete = False
-    verbose_name_plural = 'Profile'
-    fk_name = 'user'
+    verbose_name_plural = "Profile"
+    fk_name = "user"
+
 
 class CustomUserAdmin(UserAdmin):
-    inlines = (ProfileInline, )
-    list_display = ('username', 'email', 'first_name', 'last_name', 'is_staff', 'get_suscription')
-    list_select_related = ('userprofile', )
+    inlines = (ProfileInline,)
+    list_display = ("username", "email", "first_name", "last_name", "is_staff", "get_subscription")
+    list_select_related = ("userprofile",)
+    list_filter = ("is_staff", "is_superuser", "is_active", "groups", "emailaddress__verified")
+    actions = (make_active, make_deactivated)
+
+    def get_subscription(self, instance):
+        return instance.userprofile.subscription
 
-    def get_suscription(self, instance):
-        return instance.userprofile.suscription
-    get_suscription.short_description = 'Suscription'
+    get_subscription.short_description = "Subscription"
 
     def get_inline_instances(self, request, obj=None):
         if not obj:
-            return list()
+            return []
         return super(CustomUserAdmin, self).get_inline_instances(request, obj)
 
 
diff --git a/web/users/apps.py b/web/users/apps.py
index 4ce1fabc032..3ef1284a08e 100644
--- a/web/users/apps.py
+++ b/web/users/apps.py
@@ -2,4 +2,4 @@
 
 
 class UsersConfig(AppConfig):
-    name = 'users'
+    name = "users"
diff --git a/web/users/migrations/0001_initial.py b/web/users/migrations/0001_initial.py
index 3bfaab8b956..e7631ace34b 100644
--- a/web/users/migrations/0001_initial.py
+++ b/web/users/migrations/0001_initial.py
@@ -1,10 +1,9 @@
+import django.db.models.deletion
 from django.conf import settings
 from django.db import migrations, models
-import django.db.models.deletion
 
 
 class Migration(migrations.Migration):
-
     initial = True
 
     dependencies = [
@@ -13,11 +12,11 @@ class Migration(migrations.Migration):
 
     operations = [
         migrations.CreateModel(
-            name='UserProfile',
+            name="UserProfile",
             fields=[
-                ('id', models.AutoField(auto_created=True, primary_key=True, serialize=False, verbose_name='ID')),
-                ('suscription', models.CharField(default='5/m', max_length=50)),
-                ('user', models.OneToOneField(on_delete=django.db.models.deletion.CASCADE, to=settings.AUTH_USER_MODEL)),
+                ("id", models.AutoField(auto_created=True, primary_key=True, serialize=False, verbose_name="ID")),
+                ("subscription", models.CharField(default="5/m", max_length=50)),
+                ("user", models.OneToOneField(on_delete=django.db.models.deletion.CASCADE, to=settings.AUTH_USER_MODEL)),
             ],
         ),
     ]
diff --git a/web/users/migrations/0002_reports.py b/web/users/migrations/0002_reports.py
new file mode 100644
index 00000000000..bdffb93d232
--- /dev/null
+++ b/web/users/migrations/0002_reports.py
@@ -0,0 +1,18 @@
+# Generated by Django 4.1 on 2022-11-24 08:39
+# https://realpython.com/django-migrations-a-primer/
+
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+    dependencies = [
+        ("users", "0001_initial"),
+    ]
+
+    operations = [
+        migrations.AddField(
+            model_name="userprofile",
+            name="reports",
+            field=models.BooleanField(default=False),
+        ),
+    ]
diff --git a/web/users/migrations/0003_rename_field_subscription.py b/web/users/migrations/0003_rename_field_subscription.py
new file mode 100644
index 00000000000..11c8e6f8434
--- /dev/null
+++ b/web/users/migrations/0003_rename_field_subscription.py
@@ -0,0 +1,31 @@
+from django.db import connection, migrations
+
+
+def migrate(apps, schema_editor):
+    with schema_editor.connection.cursor() as cursor:
+        if connection.vendor == "postgresql":
+            cursor.execute("SELECT column_name FROM information_schema.columns WHERE table_name = 'users_userprofile';")
+        elif connection.vendor == "sqlite":
+            cursor.execute("SELECT sql FROM sqlite_master WHERE tbl_name = 'users_userprofile' AND type = 'table';")
+        columns = [el[0] for el in cursor.fetchall()]
+        if "suscription" in columns:
+            cursor.execute("ALTER TABLE users_userprofile RENAME COLUMN suscription TO subscription;")
+
+
+def reverse_migrate(apps, schema_editor):
+    with schema_editor.connection.cursor() as cursor:
+        if connection.vendor == "postgresql":
+            cursor.execute("SELECT column_name FROM information_schema.columns WHERE table_name = 'users_userprofile';")
+        elif connection.vendor == "sqlite":
+            cursor.execute("SELECT sql FROM sqlite_master WHERE tbl_name = 'users_userprofile' AND type = 'table';")
+        columns = [el[0] for el in cursor.fetchall()]
+        if "subscription" in columns:
+            cursor.execute("ALTER TABLE users_userprofile RENAME COLUMN subscription TO suscription;")
+
+
+class Migration(migrations.Migration):
+    dependencies = [
+        ("users", "0002_reports"),
+    ]
+
+    operations = [migrations.RunPython(migrate, reverse_migrate)]
diff --git a/web/users/models.py b/web/users/models.py
index e5c73b65844..bcc57aa535b 100644
--- a/web/users/models.py
+++ b/web/users/models.py
@@ -3,13 +3,16 @@
 from django.db.models.signals import post_save
 from django.dispatch import receiver
 
+
 class UserProfile(models.Model):
     user = models.OneToOneField(User, on_delete=models.CASCADE)
-    suscription = models.CharField(max_length=50, default="5/m")
+    subscription = models.CharField(max_length=50, default="5/m")
+    reports = models.BooleanField(default=False)
 
     def __str__(self):
         return self.user.username
 
+
 @receiver(post_save, sender=User)
 def create_or_update_user_profile(sender, instance, created, **kwargs):
     if created:
diff --git a/web/users/tests.py b/web/users/tests.py
index 7ce503c2dd9..a39b155ac3e 100644
--- a/web/users/tests.py
+++ b/web/users/tests.py
@@ -1,3 +1 @@
-from django.test import TestCase
-
 # Create your tests here.
diff --git a/web/users/views.py b/web/users/views.py
index 91ea44a218f..60f00ef0ef3 100644
--- a/web/users/views.py
+++ b/web/users/views.py
@@ -1,3 +1 @@
-from django.shortcuts import render
-
 # Create your views here.
diff --git a/web/web/allauth_adapters.py b/web/web/allauth_adapters.py
index ef263562027..12fdf93eda3 100644
--- a/web/web/allauth_adapters.py
+++ b/web/web/allauth_adapters.py
@@ -1,19 +1,20 @@
+from allauth.account.adapter import DefaultAccountAdapter
+from allauth.socialaccount.adapter import DefaultSocialAccountAdapter
+from allauth.account.signals import email_confirmed, user_signed_up
 from django import forms
 from django.conf import settings
-from allauth.account.adapter import DefaultAccountAdapter
-
-from allauth.account.signals import user_signed_up, email_confirmed
-from django.dispatch import receiver
 from django.contrib.auth.models import User
+from django.dispatch import receiver
 
-disposable_domain_list = list()
+disposable_domain_list = []
 if hasattr(settings, "DISPOSABLE_DOMAIN_LIST"):
     disposable_domain_list = [domain.strip() for domain in open(settings.DISPOSABLE_DOMAIN_LIST, "r").readlines()]
 
+
 class DisposableEmails(DefaultAccountAdapter):
     # https://fluffycloudsandlines.blog/using-django-allauth-for-google-login-to-any-django-app/
     def clean_email(self, email):
-        if email.split('@')[-1] in disposable_domain_list:
+        if email.rsplit("@", 1)[-1] in disposable_domain_list:
             raise forms.ValidationError("Admin banned disposable email services")
         else:
             return email
@@ -22,14 +23,38 @@ def clean_email(self, email):
     def is_open_for_signup(self, request):
         return settings.REGISTRATION_ENABLED
 
-if settings.EMAIL_CONFIRMATION is False:
+
+if not settings.EMAIL_CONFIRMATION:
+
     @receiver(user_signed_up)
     def user_signed_up_(request, user, **kwargs):
         user.is_active = not settings.MANUAL_APPROVE
         user.save()
 
+
 @receiver(email_confirmed)
 def email_confirmed_(request, email_address, **kwargs):
     user = User.objects.get(email=email_address.email)
     user.is_active = not settings.MANUAL_APPROVE
     user.save()
+
+class MySocialAccountAdapter(DefaultSocialAccountAdapter):
+    def pre_social_login(self, request, sociallogin):
+        """
+        Invoked just before a social login is about to proceed.
+        """
+        user_email = sociallogin.account.extra_data.get("email")
+        if user_email and settings.SOCIAL_AUTH_EMAIL_DOMAIN:
+            domain = user_email.split("@")[1]
+            if domain != settings.SOCIAL_AUTH_EMAIL_DOMAIN:
+                raise forms.ValidationError(f"Please use email with domain: {settings.SOCIAL_AUTH_EMAIL_DOMAIN}")
+
+    def save_user(self, request, sociallogin, form=None):
+        """
+        Saves a new User instance using information provided from social account provider.
+        """
+        user = super(MySocialAccountAdapter, self).save_user(request, sociallogin, form)
+        user.email = sociallogin.account.extra_data.get("email")
+        user.username = sociallogin.account.extra_data.get("email").split("@")[0]
+        user.save()
+        return user
diff --git a/web/web/allauth_forms.py b/web/web/allauth_forms.py
index 10cec41b435..ed18efdcdde 100644
--- a/web/web/allauth_forms.py
+++ b/web/web/allauth_forms.py
@@ -1,6 +1,7 @@
 from django import forms
-from captcha.fields import ReCaptchaField
-from captcha.widgets import ReCaptchaV2Checkbox
+from django_recaptcha.fields import ReCaptchaField
+from django_recaptcha.widgets import ReCaptchaV2Checkbox
+
 
 class CaptchedSignUpForm(forms.Form):
     captcha = ReCaptchaField(widget=ReCaptchaV2Checkbox)
diff --git a/web/web/asgi.py b/web/web/asgi.py
index b72392e09eb..3eef46d26cb 100644
--- a/web/web/asgi.py
+++ b/web/web/asgi.py
@@ -1,5 +1,3 @@
-from __future__ import absolute_import
-
 # Copyright (C) 2010-2015 Cuckoo Foundation.
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
@@ -9,26 +7,31 @@
 Please read https://channels.readthedocs.io/en/latest/deploying.html#nginx-supervisor-ubuntu
 """
 
-# These lines ensure that imports used by the ASGI daemon can be found
 import sys
-from os.path import join, dirname, abspath
 
-# Add / and /web (relative to cuckoo-modified install location) to our path
-webdir = abspath(join(dirname(abspath(__file__)), ".."))
-sys.path.append(abspath(join(webdir, "..")))
-sys.path.append(webdir)
-
-# Have ASGI run out of the WebDir
+# These lines ensure that imports used by the ASGI daemon can be found
 from os import chdir, environ
+from os.path import abspath, dirname, join
 
-chdir(webdir)
+from channels.auth import AuthMiddlewareStack
+from channels.routing import ProtocolTypeRouter, URLRouter
+from django.core.asgi import get_asgi_application
 
-# Set django settings
-environ.setdefault("DJANGO_SETTINGS_MODULE", "web.settings")
+environ.setdefault("DJANGO_SETTINGS_MODULE", "web.guac_settings")
 
-# This application object is used by any ASGI server configured to use this
-# file. This includes Django's development server, if the ASGI_APPLICATION
-# setting points here.
-from django.core.asgi import get_asgi_application
+django_asgi_app = get_asgi_application()
+
+import guac.routing
+
+application = ProtocolTypeRouter(
+    {
+        "websocket": AuthMiddlewareStack(URLRouter(guac.routing.websocket_urlpatterns)),
+    }
+)
+
+# Add / and /web (relative to CAPE install location) to our path
+webdir = abspath(join(dirname(abspath(__file__)), ".."))
+sys.path.append(abspath(join(webdir, "..")))
+sys.path.append(webdir)
 
-application = get_asgi_application()
+chdir(webdir)
diff --git a/web/web/guac_settings.py b/web/web/guac_settings.py
new file mode 100644
index 00000000000..9efc5283123
--- /dev/null
+++ b/web/web/guac_settings.py
@@ -0,0 +1,170 @@
+import logging.config
+import os
+import sys
+from pathlib import Path
+
+from django.utils.log import DEFAULT_LOGGING
+
+CUCKOO_PATH = os.path.join(Path.cwd(), "..")
+sys.path.append(CUCKOO_PATH)
+
+# Build paths inside the project like this: BASE_DIR / "subdir".
+BASE_DIR = Path(__file__).resolve().parent.parent
+
+# Quick-start development settings - unsuitable for production
+# See https://docs.djangoproject.com/en/4.0/howto/deployment/checklist/
+
+# SECURITY WARNING: keep the secret key used in production secret!
+
+# Unique secret key generator.
+# Secret key will be placed in secret_key.py file.
+try:
+    from .secret_key import SECRET_KEY  # noqa: F401
+except ImportError:
+    SETTINGS_DIR = os.path.abspath(os.path.dirname(__file__))
+    # Using the same generation schema of Django startproject.
+    from django.utils.crypto import get_random_string
+
+    key = get_random_string(50, "abcdefghijklmnopqrstuvwxyz0123456789!@#$%^&*(-_=+)")
+
+    # Write secret_key.py
+    _ = Path(os.path.join(SETTINGS_DIR, "secret_key.py")).write_text(f'SECRET_KEY = "{key}"')
+
+    # Reload key.
+    from .secret_key import SECRET_KEY  # noqa: F401
+
+# SECURITY WARNING: don"t run with debug turned on in production!
+DEBUG = True
+
+LOGGING_CONFIG = None
+
+ALLOWED_HOSTS = [
+    "*",
+]
+
+INSTALLED_APPS = [
+    "channels",
+    "guac",
+    "django.contrib.auth",
+    "django.contrib.contenttypes",
+    "django.contrib.messages",
+    "django.contrib.staticfiles",
+    "django.contrib.sessions",
+    "django_extensions",
+]
+
+MIDDLEWARE = [
+    "django.contrib.sessions.middleware.SessionMiddleware",
+    "django.middleware.common.CommonMiddleware",
+    "django.middleware.csrf.CsrfViewMiddleware",
+    "django.contrib.messages.middleware.MessageMiddleware",
+    "django.middleware.clickjacking.XFrameOptionsMiddleware",
+]
+ROOT_URLCONF = "web.guac_urls"
+
+TEMPLATES = [
+    {
+        "BACKEND": "django.template.backends.django.DjangoTemplates",
+        "APP_DIRS": True,
+        "OPTIONS": {
+            "context_processors": [
+                "django.template.context_processors.debug",
+                "django.template.context_processors.request",
+                "django.contrib.messages.context_processors.messages",
+            ],
+        },
+    },
+]
+
+# Database settings. We don't need it.
+DATABASES = {"default": {"ENGINE": "django.db.backends.sqlite3", "NAME": "siteauth.sqlite"}}
+
+ASGI_APPLICATION = "web.asgi.application"
+
+# Internationalization
+# https://docs.djangoproject.com/en/4.0/topics/i18n/
+
+LANGUAGE_CODE = "en-us"
+
+TIME_ZONE = "UTC"
+
+USE_I18N = True
+
+USE_TZ = True
+
+
+# Static files (CSS, JavaScript, Images)
+# https://docs.djangoproject.com/en/4.0/howto/static-files/
+
+STATIC_URL = "/static/"
+
+# Additional locations of static files
+# STATICFILES_DIRS = [os.path.join(BASE_DIR, "static")]
+
+STATIC_ROOT = os.path.join(BASE_DIR, "static")
+
+STATICFILES_FINDERS = (
+    "django.contrib.staticfiles.finders.FileSystemFinder",
+    "django.contrib.staticfiles.finders.AppDirectoriesFinder",
+    #    "django.contrib.staticfiles.finders.DefaultStoragddeFinder",
+)
+
+LOG_LEVEL = "WARNING"
+logging.config.dictConfig(
+    {
+        "version": 1,
+        "disable_existing_loggers": False,
+        "formatters": {
+            "default": {
+                "format": "%(levelname)s:%(name)s:%(message)s",
+            },
+            "django.server": DEFAULT_LOGGING["formatters"]["django.server"],
+        },
+        "handlers": {
+            "console": {
+                "class": "logging.StreamHandler",
+                "formatter": "default",
+            },
+            "file": {
+                "class": "logging.handlers.RotatingFileHandler",
+                "filename": BASE_DIR / "guac-server.log",
+                "formatter": "default",
+                "maxBytes": 1024 * 1024 * 100,  # 100 mb
+            },
+            "gunicorn": {
+                "class": "logging.handlers.RotatingFileHandler",
+                "formatter": "default",
+                "filename": BASE_DIR / "gunicorn.log",
+                "maxBytes": 1024 * 1024 * 100,  # 100 mb
+            },
+            "django.server": DEFAULT_LOGGING["handlers"]["django.server"],
+        },
+        "loggers": {
+            "": {
+                "handlers": ["console"],
+                "level": LOG_LEVEL,
+                "propagate": True,
+            },
+            "django.utils.autoreload": {
+                "handlers": ["console"],
+                "level": "ERROR",
+            },
+            "django": {
+                "handlers": ["file"],
+                "level": LOG_LEVEL,
+                "propagate": False,
+            },
+            "guac-session": {
+                "handlers": ["file"],
+                "level": LOG_LEVEL,
+                "propagate": False,
+            },
+            "gunicorn.errors": {
+                "level": LOG_LEVEL,
+                "handlers": ["gunicorn"],
+                "propagate": True,
+            },
+            "django.server": DEFAULT_LOGGING["loggers"]["django.server"],
+        },
+    }
+)
diff --git a/web/web/guac_urls.py b/web/web/guac_urls.py
new file mode 100644
index 00000000000..935bb260053
--- /dev/null
+++ b/web/web/guac_urls.py
@@ -0,0 +1,7 @@
+from django.conf import settings
+from django.conf.urls.static import static
+from django.urls import include, re_path
+
+urlpatterns = [
+    re_path(r"^guac/", include("guac.urls")),
+] + static(settings.STATIC_URL, document_root=settings.STATIC_ROOT)
diff --git a/web/web/headers.py b/web/web/headers.py
index 06199f1788a..8bb7b519bd7 100644
--- a/web/web/headers.py
+++ b/web/web/headers.py
@@ -2,15 +2,13 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
 import sys
+from contextlib import suppress
 
 from django.conf import settings
 
-try:
+with suppress(Exception):
     from django.utils.deprecation import MiddlewareMixin
-except:
-    pass
 
 sys.path.append(settings.CUCKOO_PATH)
 
@@ -22,6 +20,8 @@ class CuckooHeaders(MiddlewareMixin):
 
     def __init__(self, get_response):
         self.get_response = get_response
+        self._is_coroutine = False
+        self.async_mode = False
 
     def process_response(self, request, response):
         response["Server"] = "Machete Server"
@@ -32,5 +32,7 @@ def process_response(self, request, response):
         response["Pragma"] = "no-cache"
         response["Cache-Control"] = "no-cache"
         response["Expires"] = "0"
-        response["Permissions-Policy"] = "accelerometer=(); autoplay=(); camera=(); encrypted-media=(); fullscreen=(); geolocation=(); gyroscope=(); magnetometer=(); microphone=(); midi=(); payment=(); picture-in-picture=(); sync-xhr=(); usb=();"
+        response["Permissions-Policy"] = (
+            "accelerometer=(); autoplay=(); camera=(); encrypted-media=(); fullscreen=(); geolocation=(); gyroscope=(); magnetometer=(); microphone=(); midi=(); payment=(); picture-in-picture=(); sync-xhr=(); usb=();"
+        )
         return response
diff --git a/web/web/local_settings.py b/web/web/local_settings.py
index d518d65dd1d..566f5b4e88f 100644
--- a/web/web/local_settings.py
+++ b/web/web/local_settings.py
@@ -2,10 +2,8 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-
 LOCAL_SETTINGS = True
-from .settings import *
+from .settings import *  # noqa: F403
 
 # If you want to customize your cuckoo path set it here.
 # CUCKOO_PATH = "/where/cuckoo/is/placed/"
@@ -37,24 +35,23 @@
 ALLOWED_HOSTS = ["*"]
 
 # Uncomment for deployment with NGINX
-#STATIC_ROOT = ""
-#STATIC_ROOT = os.path.join(os.getcwd(), "static")
+# STATIC_ROOT = ""
+# STATIC_ROOT = os.path.join(os.getcwd(), "static")
 
 SOCIALACCOUNT_PROVIDERS = {
-    'google': {
-        'SCOPE': [
-            'profile',
-            'email',
+    "google": {
+        "SCOPE": [
+            "profile",
+            "email",
         ],
-        'AUTH_PARAMS': {
-            'access_type': 'online',
-        }
+        "AUTH_PARAMS": {
+            "access_type": "online",
+        },
     },
-    'github': {
-        'SCOPE': [
-            'user',
-            'repo',
-            'read:org',
+    "github": {
+        "SCOPE": [
+            "read:user",
+            "user:email",
         ],
     },
 }
diff --git a/web/web/middleware/__init__.py b/web/web/middleware/__init__.py
new file mode 100644
index 00000000000..1872ed1b405
--- /dev/null
+++ b/web/web/middleware/__init__.py
@@ -0,0 +1,3 @@
+from .custom_auth import CustomAuth  # noqa
+from .db_transaction import DBTransactionMiddleware  # noqa
+from .disable_auth_in_local import DisableAllauthMiddleware  # noqa
diff --git a/web/web/middleware.py b/web/web/middleware/custom_auth.py
similarity index 81%
rename from web/web/middleware.py
rename to web/web/middleware/custom_auth.py
index aef3ccc4fc1..51f1e07dbc7 100644
--- a/web/web/middleware.py
+++ b/web/web/middleware/custom_auth.py
@@ -1,9 +1,19 @@
 import logging
+
 from django.shortcuts import redirect
 
 logging.basicConfig(level=logging.INFO)
 logger = logging.getLogger()
 
+try:  # django 1.10+
+    from django.utils.deprecation import MiddlewareMixin
+except ImportError:
+
+    class MiddlewareMixin:
+        def __init__(self, get_response=None):
+            pass
+
+
 # You can learn more from those
 # https://docs.djangoproject.com/en/dev/topics/http/middleware/#process-request
 # https://simpleisbetterthancomplex.com/tutorial/2016/07/18/how-to-create-a-custom-django-middleware.html
@@ -12,8 +22,8 @@
 
 # you need to uncomment in web/web/settings.py in Section MIDDLEWARE list -> "web.middleware.CustoAuth",
 
-class CustoAuth(object):
 
+class CustomAuth(MiddlewareMixin):
     def check_auth(self, request):
         """Place custom auth logic here
         Return True on authentificated user
@@ -33,5 +43,4 @@ def process_view(self, request, view_function, view_args, view_kwargs):
         # Custom auth verification logic goes here, redirrect if Auth required
         if self.check_auth(request):
             return None
-        else:
-            return redirect(redirect_url + request_url)
+        return redirect(redirect_url + request_url)
diff --git a/web/web/middleware/db_transaction.py b/web/web/middleware/db_transaction.py
new file mode 100644
index 00000000000..31f461ce154
--- /dev/null
+++ b/web/web/middleware/db_transaction.py
@@ -0,0 +1,13 @@
+from lib.cuckoo.core.database import Database
+
+
+class DBTransactionMiddleware:
+    def __init__(self, get_response):
+        self.get_response = get_response
+
+    def __call__(self, request):
+        db = Database()
+        with db.session.begin():
+            resp = self.get_response(request)
+        db.session.remove()
+        return resp
diff --git a/web/web/middleware/disable_auth_in_local.py b/web/web/middleware/disable_auth_in_local.py
new file mode 100644
index 00000000000..df1e068cca3
--- /dev/null
+++ b/web/web/middleware/disable_auth_in_local.py
@@ -0,0 +1,26 @@
+from allauth.account.middleware import AccountMiddleware
+
+
+class DisableAllauthMiddleware:
+    def __init__(self, get_response):
+        self.get_response = get_response
+        # Instantiate the real AllAuth middleware that we will be wrapping.
+        self.allauth_middleware = AccountMiddleware(get_response)
+
+    def __call__(self, request):
+        # Get the remote IP address, handling proxies.
+        remote_ip = request.META.get("HTTP_X_FORWARDED_FOR", request.META.get("REMOTE_ADDR", "")).split(",")[0].strip()
+
+        # Define the IPs for which we want to skip the middleware.
+        local_ips = ["127.0.0.1", "::1", "localhost"]
+
+        if remote_ip in local_ips:
+            # The IP is local. Skip the AllAuth middleware by calling
+            # the next middleware/view in the chain directly.
+            print("Skipping AllAuth middleware for local request.")  # Optional: for debugging
+            response = self.get_response(request)
+            return response
+        else:
+            # The IP is not local. Execute the AllAuth middleware as usual
+            # by calling its __call__ method.
+            return self.allauth_middleware(request)
diff --git a/web/web/settings.py b/web/web/settings.py
index d2ea0465921..fad99699e22 100644
--- a/web/web/settings.py
+++ b/web/web/settings.py
@@ -1,87 +1,104 @@
 # Copyright (C) 2010-2015 Cuckoo Foundation.
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
-from __future__ import absolute_import
-import sys
 import os
-
+import sys
+from contextlib import suppress
 from pathlib import Path
 
-try:
-    import re2 as re
-except ImportError:
-    import re
+if os.geteuid() == 0 and os.getenv("CAPE_AS_ROOT", "0") != "1":
+    sys.exit("Root is not allowed. You gonna break permission and other parts of CAPE. RTM!")
 
 # Cuckoo path.
-CUCKOO_PATH = os.path.join(os.getcwd(), "..")
+CUCKOO_PATH = os.path.join(os.path.abspath(os.path.dirname(__file__)), "..", "..")
 sys.path.append(CUCKOO_PATH)
 
 BASE_DIR = Path(__file__).resolve().parent.parent
 
+RUNNING_TESTS = "test" in sys.argv
+
 from lib.cuckoo.common.config import Config
 
 # In case we have VPNs enabled we need to initialize through the following
 # two methods as they verify the interaction with VPNs as well as gather
 # which VPNs are available (for representation upon File/URL submission).
+# if not RUNNING_TESTS:
 from lib.cuckoo.core.startup import init_rooter, init_routing
 
 init_rooter()
 init_routing()
 
-
 cfg = Config("reporting")
 aux_cfg = Config("auxiliary")
 web_cfg = Config("web")
 api_cfg = Config("api")
 
-# Error handling for database backends
-if not cfg.mongodb.get("enabled") and not cfg.elasticsearchdb.get("enabled"):
-    raise Exception("No database backend reporting module is enabled! Please enable either ElasticSearch or MongoDB.")
+REPROCESS_TASKS = web_cfg.general.reprocess_tasks
+# CSRF TRUSTED ORIGINS
+# For requests that include the Origin header, Django's CSRF protection
+# requires that header match the origin present in the Host header.
+
+csfr_list = []
+if web_cfg.security.csrf_trusted_origins:
+    for host in web_cfg.security.csrf_trusted_origins.split(","):
+        csfr_list.extend([f"http://{host}", f"https://{host}"])
+
+CSRF_TRUSTED_ORIGINS = csfr_list
+# CSRF_COOKIE_SECURE = "True"
+
+# If reporting is enabled via the web GUI, then require one of these to be enabled
+if web_cfg.web_reporting.get("enabled", True):
+    # Error handling for database backends
+    if not cfg.mongodb.get("enabled") and not cfg.elasticsearchdb.get("enabled"):
+        raise Exception("No database backend reporting module is enabled! Please enable either ElasticSearch or MongoDB.")
 
-if cfg.mongodb.get("enabled") and cfg.elasticsearchdb.get("enabled") and not cfg.elasticsearchdb.get("searchonly"):
-    raise Exception("Both database backend reporting modules are enabled. Please only enable ElasticSearch or MongoDB.")
+    if cfg.mongodb.get("enabled") and cfg.elasticsearchdb.get("enabled") and not cfg.elasticsearchdb.get("searchonly"):
+        raise Exception("Both database backend reporting modules are enabled. Please only enable ElasticSearch or MongoDB.")
 
 WEB_AUTHENTICATION = web_cfg.web_auth.get("enabled", False)
 WEB_OAUTH = web_cfg.oauth
+REMOTE_SESSION = web_cfg.guacamole.enabled
 
 # Get connection options from reporting.conf.
 MONGO_HOST = cfg.mongodb.get("host", "127.0.0.1")
 MONGO_PORT = cfg.mongodb.get("port", 27017)
 MONGO_DB = cfg.mongodb.get("db", "cuckoo")
-MONGO_USER = cfg.mongodb.get("username", None)
-MONGO_PASS = cfg.mongodb.get("password", None)
+MONGO_USER = cfg.mongodb.get("username")
+MONGO_PASS = cfg.mongodb.get("password")
+MONGO_AUTHSOURCE = cfg.mongodb.get("authsource", "cuckoo")
 
 ELASTIC_HOST = cfg.elasticsearchdb.get("host", "127.0.0.1")
 ELASTIC_PORT = cfg.elasticsearchdb.get("port", 9200)
 ELASTIC_INDEX = cfg.elasticsearchdb.get("index", "cuckoo")
+ELASTIC_USER = cfg.elasticsearchdb.get("username", None)
+ELASTIC_PASS = cfg.elasticsearchdb.get("password", None)
+ELASTIC_USE_SSL = cfg.elasticsearchdb.get("use_ssl", None)
+ELASTIC_VERIFY_CERTS = cfg.elasticsearchdb.get("verify_certs", None)
 
 moloch_cfg = cfg.moloch
-vtdl_cfg = aux_cfg.virustotaldl
-zip_cfg = aux_cfg.zipped_download
+zip_cfg = web_cfg.zipped_download
 
 URL_ANALYSIS = web_cfg.url_analysis.get("enabled", False)
 DLNEXEC = web_cfg.dlnexec.get("enabled", False)
 ZIP_PWD = zip_cfg.get("zip_pwd", b"infected")
 if not isinstance(ZIP_PWD, bytes):
-    ZIP_PWD = ZIP_PWD.encode("utf-8")
-MOLOCH_BASE = moloch_cfg.get("base", None)
-MOLOCH_NODE = moloch_cfg.get("node", None)
+    ZIP_PWD = ZIP_PWD.encode()
+ZIPPED_DOWNLOAD_ALL = zip_cfg.get("download_all", False)
+MOLOCH_BASE = moloch_cfg.get("base")
+MOLOCH_NODE = moloch_cfg.get("node")
 MOLOCH_ENABLED = moloch_cfg.get("enabled", False)
-
-VTDL_ENABLED = vtdl_cfg.get("enabled", False)
-VTDL_KEY = vtdl_cfg.get("dlintelkey", None)
-VTDL_PATH = vtdl_cfg.get("dlpath", None)
-
 TEMP_PATH = Config().cuckoo.get("tmppath", "/tmp")
 
-# DEPRICATED - Enabled/Disable Zer0m0n tickbox on the submission page
+# DEPRECATED - Enabled/Disable Zer0m0n tickbox on the submission page
 OPT_ZER0M0N = False
 
 COMMENTS = web_cfg.comments.enabled
 ADMIN = web_cfg.admin.enabled
+ANON_VIEW = web_cfg.general.anon_viewable
+ALLOW_DL_REPORTS_TO_ALL = web_cfg.general.reports_dl_allowed_to_all
 
 # If false run next command
-# python3 manage.py runserver 0.0.0.0:8000 --insecure
+# python3 manage.py runserver_plus 0.0.0.0:8000 --traceback --keep-meta-shutdown
 DEBUG = True
 
 # Database settings. We don't need it.
@@ -93,19 +110,21 @@
 # to load the internationalization machinery.
 USE_I18N = True
 
-# If you set this to False, Django will not format dates, numbers and
-# calendars according to the current locale.
+# Deprecated in Django 5.0
+# If you set this to False, Django will not format dates, numbers and calendars according to the current locale.
 USE_L10N = True
 
 # Disabling time zone support and using local time for web interface and storage.
-# See: https://docs.djangoproject.com/en/1.5/ref/settings/#time-zone
-USE_TZ = True
+# https://docs.djangoproject.com/en/4.0/topics/i18n/
+LANGUAGE_CODE = "en-us"
 TIME_ZONE = "UTC"
+USE_I18N = True
+USE_TZ = True
 
 # Unique secret key generator.
 # Secret key will be placed in secret_key.py file.
 try:
-    from .secret_key import *
+    from .secret_key import SECRET_KEY  # noqa: F401
 except ImportError:
     SETTINGS_DIR = os.path.abspath(os.path.dirname(__file__))
     # Using the same generation schema of Django startproject.
@@ -114,18 +133,10 @@
     key = get_random_string(50, "abcdefghijklmnopqrstuvwxyz0123456789!@#$%^&*(-_=+)")
 
     # Write secret_key.py
-    with open(os.path.join(SETTINGS_DIR, "secret_key.py"), "w") as key_file:
-        key_file.write('SECRET_KEY = "{0}"'.format(key))
+    _ = Path(os.path.join(SETTINGS_DIR, "secret_key.py")).write_text(f'SECRET_KEY = "{key}"')
 
     # Reload key.
-    from secret_key import *
-
-try:
-    from captcha.fields import ReCaptchaField
-    from captcha.widgets import ReCaptchaV2Checkbox
-except ImportError:
-    sys.exit("Missed dependency: pip3 install django-recaptcha==2.0.6")
-
+    from .secret_key import SECRET_KEY  # noqa: F401
 
 # Absolute filesystem path to the directory that will hold user-uploaded files.
 # Example: "/home/media/media.lawrence.com/media/"
@@ -140,14 +151,16 @@
 # Don't put anything in this directory yourself; store your static files
 # in apps' "static/" subdirectories and in STATICFILES_DIRS.
 # Example: "/home/media/media.lawrence.com/static/"
+# When NGINX is as reverse proxy you need to put next line in local_settings.py
 STATIC_ROOT = ""
 
+
 # URL prefix for static files.
 # Example: "http://media.lawrence.com/static/"
 STATIC_URL = "/static/"
 
 # Additional locations of static files
-STATICFILES_DIRS = (os.path.join(os.getcwd(), "static"),)
+STATICFILES_DIRS = (os.path.join(Path.cwd(), "static"),)
 
 # List of finder classes that know how to find static files in
 # various locations.
@@ -161,7 +174,9 @@
 TEMPLATES = [
     {
         "BACKEND": "django.template.backends.django.DjangoTemplates",
-        "DIRS": ["templates",],
+        "DIRS": [
+            os.path.join(CUCKOO_PATH, "web", "templates"),
+        ],
         "OPTIONS": {
             "debug": True,
             "context_processors": [
@@ -175,7 +190,10 @@
                 "django.contrib.messages.context_processors.messages",
                 "django_settings_export.settings_export",
             ],
-            "loaders": ["django.template.loaders.filesystem.Loader", "django.template.loaders.app_directories.Loader",],
+            "loaders": [
+                "django.template.loaders.filesystem.Loader",
+                "django.template.loaders.app_directories.Loader",
+            ],
         },
     },
 ]
@@ -192,21 +210,23 @@
     # Cuckoo headers.
     "web.headers.CuckooHeaders",
     #'web.middleware.ExceptionMiddleware',
-    'django.contrib.auth.middleware.AuthenticationMiddleware',
-    'django_otp.middleware.OTPMiddleware',
-    # in case you want custom auth, place logic in web/web/middleware.py
-    # "web.middleware.CustoAuth",
+    "django.contrib.auth.middleware.AuthenticationMiddleware",
+    # 'django_otp.middleware.OTPMiddleware',
+    # in case you want custom auth, place logic in web/web/middleware/custom_auth.py
+    # "web.middleware.CustomAuth",
+    "web.middleware.DBTransactionMiddleware",
+    "allauth.account.middleware.AccountMiddleware",
 ]
 
-OTP_TOTP_ISSUER = 'CAPE Sandbox'
+OTP_TOTP_ISSUER = "CAPE Sandbox"
 
 # Header/protection related
 SECURE_BROWSER_XSS_FILTER = True
-X_FRAME_OPTIONS = 'DENY'
+X_FRAME_OPTIONS = "DENY"
 
 ROOT_URLCONF = "web.urls"
 
-# Python dotted path to the WSGI application used by Django's runserver.
+# Python dotted path to the WSGI application used by Django's runserver_plus.
 WSGI_APPLICATION = "web.wsgi.application"
 
 INSTALLED_APPS = [
@@ -224,179 +244,74 @@
     "compare",
     "apiv2",
     "users",
-
-    'django_extensions',
-    'django_otp',
-    'django_otp.plugins.otp_totp',
-
-    #allauth
-    'django.contrib.sites',
-    'allauth',
-    'allauth.account',
-    'allauth.socialaccount',
-    'allauth.socialaccount.providers.agave',
-    'allauth.socialaccount.providers.amazon',
-    'allauth.socialaccount.providers.amazon_cognito',
-    'allauth.socialaccount.providers.angellist',
-    'allauth.socialaccount.providers.apple',
-    'allauth.socialaccount.providers.asana',
-    'allauth.socialaccount.providers.auth0',
-    'allauth.socialaccount.providers.authentiq',
-    'allauth.socialaccount.providers.azure',
-    'allauth.socialaccount.providers.baidu',
-    'allauth.socialaccount.providers.basecamp',
-    'allauth.socialaccount.providers.battlenet',
-    'allauth.socialaccount.providers.bitbucket',
-    'allauth.socialaccount.providers.bitbucket_oauth2',
-    'allauth.socialaccount.providers.bitly',
-    'allauth.socialaccount.providers.box',
-    'allauth.socialaccount.providers.cern',
-    'allauth.socialaccount.providers.coinbase',
-    'allauth.socialaccount.providers.dataporten',
-    'allauth.socialaccount.providers.daum',
-    'allauth.socialaccount.providers.digitalocean',
-    'allauth.socialaccount.providers.discord',
-    'allauth.socialaccount.providers.disqus',
-    'allauth.socialaccount.providers.douban',
-    'allauth.socialaccount.providers.doximity',
-    'allauth.socialaccount.providers.draugiem',
-    'allauth.socialaccount.providers.dropbox',
-    'allauth.socialaccount.providers.dwolla',
-    'allauth.socialaccount.providers.edmodo',
-    'allauth.socialaccount.providers.edx',
-    'allauth.socialaccount.providers.eventbrite',
-    'allauth.socialaccount.providers.eveonline',
-    'allauth.socialaccount.providers.evernote',
-    'allauth.socialaccount.providers.exist',
-    'allauth.socialaccount.providers.facebook',
-    'allauth.socialaccount.providers.feedly',
-    'allauth.socialaccount.providers.figma',
-    'allauth.socialaccount.providers.fivehundredpx',
-    'allauth.socialaccount.providers.flickr',
-    'allauth.socialaccount.providers.foursquare',
-    'allauth.socialaccount.providers.fxa',
-    'allauth.socialaccount.providers.github',
-    'allauth.socialaccount.providers.gitlab',
-    'allauth.socialaccount.providers.globus',
-    'allauth.socialaccount.providers.google',
-    'allauth.socialaccount.providers.hubic',
-    'allauth.socialaccount.providers.instagram',
-    'allauth.socialaccount.providers.jupyterhub',
-    'allauth.socialaccount.providers.kakao',
-    'allauth.socialaccount.providers.keycloak',
-    'allauth.socialaccount.providers.line',
-    'allauth.socialaccount.providers.linkedin',
-    'allauth.socialaccount.providers.linkedin_oauth2',
-    'allauth.socialaccount.providers.mailchimp',
-    'allauth.socialaccount.providers.mailru',
-    'allauth.socialaccount.providers.meetup',
-    'allauth.socialaccount.providers.microsoft',
-    'allauth.socialaccount.providers.naver',
-    'allauth.socialaccount.providers.nextcloud',
-    'allauth.socialaccount.providers.odnoklassniki',
-    'allauth.socialaccount.providers.openid',
-    'allauth.socialaccount.providers.openstreetmap',
-    'allauth.socialaccount.providers.orcid',
-    'allauth.socialaccount.providers.patreon',
-    'allauth.socialaccount.providers.paypal',
-    'allauth.socialaccount.providers.persona',
-    'allauth.socialaccount.providers.pinterest',
-    'allauth.socialaccount.providers.quickbooks',
-    'allauth.socialaccount.providers.reddit',
-    'allauth.socialaccount.providers.robinhood',
-    'allauth.socialaccount.providers.salesforce',
-    'allauth.socialaccount.providers.sharefile',
-    'allauth.socialaccount.providers.shopify',
-    'allauth.socialaccount.providers.slack',
-    'allauth.socialaccount.providers.soundcloud',
-    'allauth.socialaccount.providers.spotify',
-    'allauth.socialaccount.providers.stackexchange',
-    'allauth.socialaccount.providers.steam',
-    'allauth.socialaccount.providers.stocktwits',
-    'allauth.socialaccount.providers.strava',
-    'allauth.socialaccount.providers.stripe',
-    'allauth.socialaccount.providers.telegram',
-    'allauth.socialaccount.providers.trello',
-    'allauth.socialaccount.providers.tumblr',
-    'allauth.socialaccount.providers.twentythreeandme',
-    'allauth.socialaccount.providers.twitch',
-    'allauth.socialaccount.providers.twitter',
-    'allauth.socialaccount.providers.untappd',
-    'allauth.socialaccount.providers.vimeo',
-    'allauth.socialaccount.providers.vimeo_oauth2',
-    'allauth.socialaccount.providers.vk',
-    'allauth.socialaccount.providers.weibo',
-    'allauth.socialaccount.providers.weixin',
-    'allauth.socialaccount.providers.windowslive',
-    'allauth.socialaccount.providers.xing',
-    'allauth.socialaccount.providers.yahoo',
-    'allauth.socialaccount.providers.yandex',
-    'allauth.socialaccount.providers.ynab',
-    'allauth.socialaccount.providers.zoho',
-    'allauth.socialaccount.providers.zoom',
-    'allauth.socialaccount.providers.okta',
-
+    "django_extensions",
+    # 'django_otp',
+    # 'django_otp.plugins.otp_totp',
+    # allauth
+    "django.contrib.sites",
+    "allauth",
+    "allauth.account",
+    "allauth.socialaccount",
+    # Keeping this as example but disabling as some of them has extra dependencies. Check official docs.
+    # "allauth.socialaccount.providers.github",
+    # "allauth.socialaccount.providers.gitlab",
+    # "allauth.socialaccount.providers.google",
+    # "allauth.socialaccount.providers.microsoft",
     "crispy_forms",
-    "captcha", # https://pypi.org/project/django-recaptcha/
-
+    "crispy_bootstrap4",
+    "django_recaptcha",  # https://pypi.org/project/django-recaptcha/
     "rest_framework",
-    'rest_framework.authtoken',
+    "rest_framework.authtoken",
 ]
 
 if api_cfg.api.token_auth_enabled:
     REST_FRAMEWORK = {
-        'DEFAULT_AUTHENTICATION_CLASSES': [
-            'rest_framework.authentication.TokenAuthentication',
-            'rest_framework.authentication.SessionAuthentication',
-        ],
-        'DEFAULT_PERMISSION_CLASSES': (
-            'rest_framework.permissions.IsAuthenticated',
-        ),
-        'DEFAULT_THROTTLE_CLASSES': [
-            'rest_framework.throttling.UserRateThrottle',
-            'apiv2.throttling.SubscriptionRateThrottle'
+        "DEFAULT_AUTHENTICATION_CLASSES": [
+            "rest_framework.authentication.TokenAuthentication",
+            "rest_framework.authentication.SessionAuthentication",
         ],
-        'DEFAULT_THROTTLE_RATES': {
-            'user': '5/m',
-            'subscription': '5/m',
-        }
+        "DEFAULT_PERMISSION_CLASSES": ("rest_framework.permissions.IsAuthenticated",),
+        "DEFAULT_THROTTLE_CLASSES": ["apiv2.throttling.SubscriptionRateThrottle"],
+        "DEFAULT_THROTTLE_RATES": {
+            "user": api_cfg.api.default_user_ratelimit,
+            "subscription": api_cfg.api.default_subscription_ratelimit,
+        },
     }
 
 else:
     REST_FRAMEWORK = {
-        'DEFAULT_AUTHENTICATION_CLASSES': [],
-        'DEFAULT_PERMISSION_CLASSES': [
-            'rest_framework.permissions.AllowAny'
-        ],
+        "DEFAULT_AUTHENTICATION_CLASSES": [],
+        "DEFAULT_PERMISSION_CLASSES": ["rest_framework.permissions.AllowAny"],
     }
 
 TWOFA = web_cfg.web_auth.get("2fa", False)
 
 NOCAPTCHA = web_cfg.web_auth.get("captcha", False)
 # create your keys here -> https://www.google.com/recaptcha/about/
-RECAPTCHA_PRIVATE_KEY = 'TEST_PUBLIC_KEY'
-RECAPTCHA_PUBLIC_KEY = 'TEST_PRIVATE_KEY'
-RECAPTCHA_DEFAULT_ACTION = 'generic'
+# Set those in local_settings.py
+RECAPTCHA_PRIVATE_KEY = "TEST_PUBLIC_KEY"
+RECAPTCHA_PUBLIC_KEY = "TEST_PRIVATE_KEY"
+RECAPTCHA_DEFAULT_ACTION = "generic"
 RECAPTCHA_REQUIRED_SCORE = 0.85
 
-#RECAPTCHA_DOMAIN = 'www.recaptcha.net'
+# RECAPTCHA_DOMAIN = 'www.recaptcha.net'
 
-CRISPY_TEMPLATE_PACK = 'bootstrap4'
+CRISPY_TEMPLATE_PACK = "bootstrap4"
 
 AUTHENTICATION_BACKENDS = (
- #used for default signin such as loggin into admin panel
- 'django.contrib.auth.backends.ModelBackend',
-
- #used for social authentications
- 'allauth.account.auth_backends.AuthenticationBackend',
+    # used for default signin such as loggin into admin panel
+    "django.contrib.auth.backends.ModelBackend",
+    # used for social authentications
+    "allauth.account.auth_backends.AuthenticationBackend",
 )
 
 SETTINGS_EXPORT = [
-    'WEB_AUTHENTICATION',
-    'WEB_OAUTH',
+    "WEB_AUTHENTICATION",
+    "WEB_OAUTH",
+    "ZIPPED_DOWNLOAD_ALL",
 ]
 
-EMAIL_BACKEND = 'django.core.mail.backends.smtp.EmailBackend'
+EMAIL_BACKEND = "django.core.mail.backends.smtp.EmailBackend"
 if web_cfg.registration.get("email_confirmation", False):
     EMAIL_HOST = web_cfg.registration.get("email_host", False)
     EMAIL_HOST_USER = web_cfg.registration.get("email_user", False)
@@ -409,30 +324,41 @@
 
 SITE_ID = 1
 
-# https://django-allauth.readthedocs.io/en/latest/configuration.html
+# https://docs.allauth.org/en/dev/socialaccount/configuration.html
 if web_cfg.registration.get("email_confirmation", False):
-    ACCOUNT_EMAIL_VERIFICATION = 'mandatory'
+    ACCOUNT_EMAIL_VERIFICATION = "mandatory"
     SOCIALACCOUNT_EMAIL_VERIFICATION = ACCOUNT_EMAIL_VERIFICATION
 else:
-    ACCOUNT_EMAIL_VERIFICATION = 'none'
+    ACCOUNT_EMAIL_VERIFICATION = "none"
     SOCIALACCOUNT_EMAIL_VERIFICATION = ACCOUNT_EMAIL_VERIFICATION
 
 ACCOUNT_EMAIL_REQUIRED = web_cfg.registration.get("email_required", False)
 ACCOUNT_EMAIL_SUBJECT_PREFIX = web_cfg.registration.get("email_prefix_subject", False)
-ACCOUNT_LOGIN_ATTEMPTS_LIMIT = 3
+ACCOUNT_RATE_LIMITS = {"login_failed": "3/m"}
 LOGIN_REDIRECT_URL = "/"
-ACCOUNT_LOGOUT_REDIRECT_URL = '/accounts/login/'
+ACCOUNT_LOGOUT_REDIRECT_URL = "/accounts/login/"
 MANUAL_APPROVE = web_cfg.registration.get("manual_approve", False)
 REGISTRATION_ENABLED = web_cfg.registration.get("enabled", False)
 EMAIL_CONFIRMATION = web_cfg.registration.get("email_confirmation", False)
-#### ALlauth end
+SOCIAL_AUTH_EMAIL_DOMAIN = web_cfg.web_auth.get("social_auth_email_domain", False)
+
+# be careful with SOCIALACCOUNT_AUTO_SIGNUP, if True, it will bypass custom sighup functions, default is True
+# SOCIALACCOUNT_AUTO_SIGNUP = True
+# SOCIALACCOUNT_ONLY = True
+# SOCIALACCOUNT_LOGIN_ON_GET=True
+# ACCOUNT_SIGNUP_FORM_CLASS = None
+# In case you want to verify domain of email + set the username
+# SOCIALACCOUNT_ADAPTER = 'web.allauth_adapters.MySocialAccountAdapter'
+# ACCOUNT_DEFAULT_HTTP_PROTOCOL = "https"
+
+#### AllAuth end
 
 if web_cfg.registration.get("disposable_email_disable", False):
     DISPOSABLE_DOMAIN_LIST = os.path.join(CUCKOO_PATH, web_cfg.registration.disposable_domain_list)
-    ACCOUNT_ADAPTER = 'web.allauth_adapters.DisposableEmails'
+    ACCOUNT_ADAPTER = "web.allauth_adapters.DisposableEmails"
 
 if web_cfg.registration.get("captcha_enabled", False):
-    ACCOUNT_SIGNUP_FORM_CLASS = 'web.allauth_forms.CaptchedSignUpForm'
+    ACCOUNT_SIGNUP_FORM_CLASS = "web.allauth_forms.CaptchedSignUpForm"
 
 # Fix to avoid migration warning in django 1.7 about test runner (1_6.W001).
 # In future it could be removed: https://code.djangoproject.com/ticket/23469
@@ -443,16 +369,26 @@
 # the site admins on every HTTP 500 error when DEBUG=False.
 # See http://docs.djangoproject.com/en/dev/topics/logging for
 # more details on how to customize your logging configuration.
+# if not RUNNING_TESTS:
 LOGGING = {
     "version": 1,
     "disable_existing_loggers": False,
     "filters": {"require_debug_false": {"()": "django.utils.log.RequireDebugFalse"}},
-    "handlers": {"mail_admins": {"level": "ERROR", "filters": ["require_debug_false"], "class": "django.utils.log.AdminEmailHandler"}},
-    "loggers": {"django.request": {"handlers": ["mail_admins"], "level": "ERROR", "propagate": True,},},
+    "handlers": {
+        "mail_admins": {"level": "ERROR", "filters": ["require_debug_false"], "class": "django.utils.log.AdminEmailHandler"}
+    },
+    "loggers": {
+        "django.request": {
+            "handlers": ["mail_admins"],
+            "level": "ERROR",
+            "propagate": True,
+        },
+    },
 }
 
 SILENCED_SYSTEM_CHECKS = [
     "admin.E408",
+    "models.W042",
     #'captcha.recaptcha_test_key_error'
 ]
 
@@ -460,8 +396,8 @@
 
 # Max size
 MAX_UPLOAD_SIZE = web_cfg.general.max_sample_size
-
-SECURE_REFERRER_POLICY = "same-origin" # "no-referrer-when-downgrade"
+# Google's OAuth might need: "strict-origin-when-cross-origin"
+SECURE_REFERRER_POLICY = "same-origin"  # "no-referrer-when-downgrade"
 
 # https://django-csp.readthedocs.io/en/latest/configuration.html
 CSP_DEFAULT_SRC = ["'self'"]
@@ -476,11 +412,15 @@
 CSP_STYLE_SRC = ["'self'"]
 CSP_IMG_SRC = ["'self'"]
 
+RATELIMIT_ERROR_MSG = "Too many request without auth! You have exceed your free request per minute for anon users. We are researcher friendly and provide api, but if you buy a good whiskey to @doomedraven, we will be even more friendlier ;). Limits can be changed in conf/api.conf"
+
 # Hack to import local settings.
 try:
     LOCAL_SETTINGS
 except NameError:
-    try:
-        from .local_settings import *
-    except ImportError:
-        pass
+    with suppress(ImportError):
+        from .local_settings import *  # noqa: F403
+
+from lib.cuckoo.core.database import init_database
+
+init_database()
diff --git a/web/web/urls.py b/web/web/urls.py
index 96c39b9dab5..6ab01964c20 100644
--- a/web/web/urls.py
+++ b/web/web/urls.py
@@ -2,14 +2,14 @@
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
 
-from __future__ import absolute_import
-from django.conf.urls import include, url
-from django.urls import path
-from django.views.generic.base import TemplateView
-from django.contrib.auth import views as auth_views
-from dashboard import views as dashboard_views
 from analysis import views as analysis_views
+from dashboard import views as dashboard_views
 from django.conf import settings
+from django.conf.urls import include
+
+# from django.contrib.auth import views as auth_views
+from django.urls import path, re_path
+from django.views.generic.base import TemplateView
 
 if settings.NOCAPTCHA:
     from captcha_admin import admin
@@ -18,34 +18,39 @@
 
 if settings.TWOFA:
     from django_otp.admin import OTPAdminSite
+
     admin.site.__class__ = OTPAdminSite
 
 admin.site.site_header = "CAPE Administration"
 admin.site.site_title = "CAPE Administration"
 
-from dashboard import urls as dashboard
 from analysis import urls as analysis
+from apiv2 import urls as apiv2
 from compare import urls as compare
+from dashboard import urls as dashboard
 from submission import urls as submission
-from apiv2 import urls as apiv2
 
-handler403 = 'web.views.handler403'
-handler404 = 'web.views.handler404'
+handler403 = "web.views.handler403"
+handler404 = "web.views.handler404"
 
 urlpatterns = [
-    path('accounts/', include('allauth.urls')),
+    path("accounts/", include("allauth.urls")),
     path("robots.txt", TemplateView.as_view(template_name="robots.txt", content_type="text/plain")),
-    url(r"^$", dashboard_views.index, name="dashboard"),
-    url(r"^admin/", admin.site.urls),
-    url(r"^analysis/", include(analysis)),
-    url(r"^compare/", include(compare)),
-    url(r"^submit/", include(submission)),
-    url(r"^apiv2/", include(apiv2)),
-    url(r"^file/(?P<category>\w+)/(?P<task_id>\d+)/(?P<dlfile>\w+)/$", analysis_views.file, name="file"),
-    url(r"^vtupload/(?P<category>\w+)/(?P<task_id>\d+)/(?P<filename>.+)/(?P<dlfile>\w+)/$", analysis_views.vtupload, name="vtupload"),
-    url(r"^filereport/(?P<task_id>\w+)/(?P<category>\w+)/$", analysis_views.filereport, name="filereport"),
-    url(r"^full_memory/(?P<analysis_number>\w+)/$", analysis_views.full_memory_dump_file, name="full_memory_dump_file"),
-    url(r"^full_memory_strings/(?P<analysis_number>\w+)/$", analysis_views.full_memory_dump_strings, name="full_memory_dump_strings"),
-    url(r"^dashboard/", include(dashboard)),
-    url(r"statistics/(?P<days>\d+)/$", analysis_views.statistics_data, name='statistics_data')
+    re_path(r"^$", dashboard_views.index, name="dashboard"),
+    re_path(r"^admin/", admin.site.urls),
+    re_path(r"^analysis/", include(analysis)),
+    re_path(r"^compare/", include(compare)),
+    re_path(r"^submit/", include(submission)),
+    re_path(r"^apiv2/", include(apiv2)),
+    re_path(r"^file/(?P<category>\w+)/(?P<task_id>\d+)/(?P<dlfile>\w+)/$", analysis_views.file, name="file"),
+    re_path(
+        r"^vtupload/(?P<category>\w+)/(?P<task_id>\d+)/(?P<filename>.+)/(?P<dlfile>\w+)/$", analysis_views.vtupload, name="vtupload"
+    ),
+    re_path(r"^filereport/(?P<task_id>\w+)/(?P<category>\w+)/$", analysis_views.filereport, name="filereport"),
+    re_path(r"^full_memory/(?P<analysis_number>\w+)/$", analysis_views.full_memory_dump_file, name="full_memory_dump_file"),
+    re_path(
+        r"^full_memory_strings/(?P<analysis_number>\w+)/$", analysis_views.full_memory_dump_strings, name="full_memory_dump_strings"
+    ),
+    re_path(r"^dashboard/", include(dashboard)),
+    re_path(r"statistics/(?P<days>\d+)/$", analysis_views.statistics_data, name="statistics_data"),
 ]
diff --git a/web/web/views.py b/web/web/views.py
index 8db33b6207e..a8b1016a56a 100644
--- a/web/web/views.py
+++ b/web/web/views.py
@@ -1,7 +1,20 @@
-from django.shortcuts import render, redirect
+from django.conf import settings
+from django.shortcuts import redirect, render
+
+try:
+    from django_ratelimit.exceptions import Ratelimited
+except ImportError:
+    try:
+        from ratelimit.exceptions import Ratelimited
+    except ImportError:
+        print("missed dependency: poetry run pip install django-ratelimit -U")
+
 
 def handler403(request, exception=None):
-    return render(request, "error.html", {"error": 'Forbidden'}, status=403)
+    if isinstance(exception, Ratelimited):
+        return render(request, "error.html", {"error": settings.RATELIMIT_ERROR_MSG}, status=429)
+    return render(request, "error.html", {"error": "Forbidden"}, status=403)
+
 
 def handler404(request, exception=None):
     return redirect("/")
diff --git a/web/web/wsgi.py b/web/web/wsgi.py
index 388d9ad01b2..161627b26bd 100644
--- a/web/web/wsgi.py
+++ b/web/web/wsgi.py
@@ -1,5 +1,3 @@
-from __future__ import absolute_import
-
 # Copyright (C) 2010-2015 Cuckoo Foundation.
 # This file is part of Cuckoo Sandbox - http://www.cuckoosandbox.org
 # See the file 'docs/LICENSE' for copying permission.
@@ -9,7 +7,7 @@
 
 This module contains the WSGI application used by Django's development server
 and any production WSGI deployments. It should expose a module-level variable
-named ``application``. Django's ``runserver`` and ``runfcgi`` commands discover
+named ``application``. Django's ``runserver_plus`` and ``runfcgi`` commands discover
 this application via the ``WSGI_APPLICATION`` setting.
 
 Usually you will have the standard Django WSGI application here, but it also
@@ -20,57 +18,9 @@
 
 """
 
-"""
-
-:: Correctly setting up WSGI w/ Apache2, using only HTTPS. Start here.
-
-You can use the following command to generate SSL certs for an HTTPS setup.
-# sudo openssl req -x509 -nodes -days 3650 -newkey rsa:4096 -keyout \
-    /etc/apache2/ssl/cert.key -out /etc/apache2/ssl/cert.crt
-
-The following Apache2 vhost will work plug-and-play with the above command
-// Begin Apache2 config for WSGI usage
-
-<VirtualHost *:80>
-        RewriteEngine On
-        RewriteCond %{HTTPS} off
-        RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI}
-</VirtualHost>
-
-<VirtualHost *:443>
-
-        # Remember to change paths where necessary
-
-        SSLEngine On
-        SSLCertificateFile      /etc/apache2/ssl/cert.crt
-        SSLCertificateKeyFile   /etc/apache2/ssl/cert.key
-
-        # WARNING :: I haven't looked to ensure that all libs in use are threadsafe
-        #   If you have some free ram, keep your threadcount at 1; spawn processes
-        #   You've been warned. Weird things may happen...
-        WSGIDaemonProcess web processes=5 threads=20
-
-        WSGIScriptAlias         /       /opt/cuckoo/cuckoo-modified/web/web/wsgi.py
-
-        <Directory /opt/cuckoo/cuckoo-modified/web>
-                Require         all     granted
-                WSGIScriptReloading On
-        </Directory>
-
-        Alias /static /opt/cuckoo/cuckoo-modified/web/static
-
-        ErrorLog        ${APACHE_LOG_DIR}/error.log
-        LogLevel        error
-        CustomLog       ${APACHE_LOG_DIR}/access.log    combined
-
-</VirtualHost>
-
-// End Apache2 config for WSGI usage
-"""
-
 # These lines ensure that imports used by the WSGI daemon can be found
 import sys
-from os.path import join, dirname, abspath
+from os.path import abspath, dirname, join
 
 # Add / and /web (relative to cuckoo-modified install location) to our path
 webdir = abspath(join(dirname(abspath(__file__)), ".."))